Revokes application permissions from the specified identity. The identity may a RAM user or RAM role.
Operation description
Note
You can grant a maximum of 10 application permissions to a RAM user or RAM role.
Debugging
Authorization information
There is currently no authorization information disclosed in the API.
Request parameters
Parameter | Type | Required | Description | Example |
---|---|---|---|---|
IdentityType | string | Yes | The type of the identity. Valid values:
| RamUser |
IdentityName | string | Yes | The ID of the RAM user or the name of the RAM role.
| test****name |
AppId | string | Yes | The ID of the application. This parameter is optional if you set PolicyNames to VODAppAdministratorAccess. This parameter is required if you set PolicyNames to a value other than VODAppAdministratorAccess.
| app-**** |
PolicyNames | string | Yes | The name of the policy. Separate multiple names with commas (,). Only system policies are supported.
| VODAppFullAccess |
Response parameters
Examples
Sample success responses
JSON
format
{
"RequestId": "25818875-5F78-4A13-****-D7393642C",
"NonExistPolicyNames": [
"test****1"
],
"FailedPolicyNames": [
"test****2"
]
}
Error codes
For a list of error codes, visit the Service error codes.
Change history
Change time | Summary of changes | Operation |
---|
No change history
Common errors
The following table describes the common errors that this operation can return.
Error code | Error message | HTTP status code | Description |
---|---|---|---|
OperationDenied.NotOpenAppService | The app service is not open. | 403 | The error message returned because the multi-application service has not been activated. |
Forbidden.OperateApp | User not authorized to operate app. | 403 | The error message returned because you are not authorized to manage the application. |