- URL:https://[root]/portals/[portalID]/roles/[roleID]/setPrivileges(POST only)
Example usage
Below is a sample ArcGIS Online request URL for the setPrivileges operation:
POST /sharing/rest/portals/0123456789ABCDEF/roles/edgebRxFLiLt15df/setPrivileges HTTP/1.1
Host: org.arcgis.com
Content-Type: application/x-www-form-urlencoded
Content-Length: []
privileges={"privileges": ["portal:user:createItem","portal:user:joinGroup"]}&f=pjsonBelow is a sample ArcGIS Enterprise request URL for the setPrivileges operation:
POST /webadaptor/sharing/rest/portals/0123456789ABCDEF/roles/edgebRxFLiLt15df/setPrivileges HTTP/1.1
Host: machine.domain.com
Content-Type: application/x-www-form-urlencoded
Content-Length: []
privileges={"privileges": ["portal:user:createItem","portal:user:joinGroup"]}&f=pjsonDescription
The Set Role Privileges operation (POST only) allows default organization administrators to set privileges for a custom role.
Request parameters
| Parameter | Details |
|---|---|
| privileges | A JSON object that contains an array of strings with predefined permissions within each. See Supported privileges with predefined permissions section below for all available role privileges. Example |
| f | The response format. The default format is html. Values: html | json | pjson |
Supported privileges with predefined permissions
Administrative privileges
Members
| Privilege | Description |
|---|---|
| portal:admin:viewUsers | Grants the ability to view full member account information within organization |
| portal:admin:updateUsers | Grants the ability to update member account information within organization |
| portal:admin:deleteUsers | Grants the ability to delete member accounts within organization |
| portal:admin:inviteUsers | ArcGIS Online only. Grants the ability to invite members to organization. |
| portal:admin:disableUsers | Grants the ability to enable and disable member accounts within organization. |
| portal:admin:changeUserRoles | Grants the ability to change the role a member is assigned within organization; however, it does not grant the ability to promote a member to, or demote a member from, the Administrator role. That privilege is reserved for the Administrator role alone. |
| portal:admin:manageLicenses | Grants the ability to assign licenses to members of organization. |
Groups
| Privilege | Description |
|---|---|
| portal:admin:viewGroups | Grants the ability to view all groups within organization. |
| portal:admin:updateGroups | Grants the ability to update groups within organization. |
| portal:admin:deleteGroups | Grants the ability to delete groups within organization. |
| portal:admin:reassignGroups | Grants the ability to reassign groups to other members within organization. |
| portal:admin:assignToGroups | Grants the ability to assign members to, and remove members from, groups within organization. |
| portal:admin:manageEnterpriseGroups | ArcGIS Enterprise only. Grants the ability to link group membership to an enterprise group. |
| portal:admin:createUpdateCapableGroup | Grants the ability to create and own groups with item update capabilities. |
Content
| Privilege | Description |
|---|---|
| portal:admin:viewItems | Grants the ability to view all content within organization. |
| portal:admin:updateItems | Grants the ability to update and categorize content within organization. |
| portal:admin:deleteItems | Grants the ability to delete content within organization. |
| portal:admin:reassignItems | Grants the ability to reassign content to other members within organization. |
| portal:admin:shareToGroup | Grants the ability to share other member's content to groups the user belongs to. |
| portal:admin:shareToOrg | Grants the ability to share other member's content to organization. |
| portal:admin:shareToPublic | Grants the ability to share other member's content to all users of the portal. |
| portal:admin:updateItemCategorySchema | Grants the ability to configure organization content category schema. |
| portal:publisher:publishServerGPServices | Grants the ability to publish web tools created in ArcGIS Pro to a federated server or publish web tools from a notebook. |
ArcGIS Marketplace subscriptions
This privileges are specific only to ArcGIS Online.
| Privilege | Description |
|---|---|
| marketplace:admin:purchase | Grants the ability to request purchase information about apps and data in ArcGIS Marketplace. |
| marketplace:admin:startTrial | Grants the ability to start trial subscriptions in ArcGIS Marketplace. |
| marketplace:admin:manage | Grants the ability to create listings, list items and manage subscriptions in ArcGIS Marketplace. |
Publisher privileges
| Privilege | Description |
|---|---|
| portal:publisher:publishFeatures | Grants the ability to publish hosted feature layers from shapefiles, CSVs, etc. |
| portal:publisher:publishTiles | Grants the ability to publish hosted tile layers from tile packages, features, etc. |
| portal:publisher:publishScenes | Grants the ability to publish hosted scene layers. |
| portal:publisher:bulkPublishFromDataStores | ArcGIS Enterprise. Grants the ability to publish web layers from a registered data store. |
| portal:publisher:registerDataStores | ArcGIS Enterprise. Grants the ability to register data store to the portal. |
| premium:publisher:createNotebooks | Grants the ability to create and edit interactive notebook documents. |
| premium:publisher:createAdvancedNotebooks | Grants the ability to import and use ArcPy modules in notebooks. |
User privileges
Members
| Privilege | Description |
|---|---|
| portal:user:viewOrgUsers | Grants the ability to view members of the organization. |
Groups
| Privilege | Description |
|---|---|
| portal:user:createGroup | Grants the ability for a member to create, edit, and delete their own groups. |
| portal:user:joinGroup | Grants the ability to join groups within organization. |
| portal:user:joinNonOrgGroup | ArcGIS Online only. Grants the ability to join groups external to the organization. |
| portal:user:viewOrgGroups | Grants the ability to view groups shared with the organization. |
Content
| Privilege | Description |
|---|---|
| portal:user:createItem | Grants the ability for a member to create, edit, and delete their own content. |
| portal:user:viewOrgItems | Grants the ability to view content shared with the organization. |
| portal:user:viewTracks | ArcGIS Enterprise only. Grants the ability to view members' location tracks via shared track views when location tracking is enabled. |
| portal:user:reassignItems | Introduced at ArcGIS Enterprise 11.0. Grants a user the ability to reassign only their content to another member with the privilege to receive content. |
| portal:user:receiveItems | Introduced at ArcGIS Enterprise 11.0. Grants a user the ability to receive content that is reassigned to them by another member with the privilege to reassign content. |
Sharing
| Privilege | Description |
|---|---|
| portal:user:shareToGroup | Grants the ability to share content to groups. |
| portal:user:shareToOrg | Grants the ability to share content to organization. |
| portal:user:shareToPublic | Grants the ability to share content to all users of portal. |
| portal:user:shareGroupToOrg | Grants the ability to make groups discoverable by the organization. |
| portal:user:shareGroupToPublic | Grants the ability to make groups discoverable by all users of portal. |
Premium content
| Privilege | Description |
|---|---|
| premium:user:geocode | Grants the ability to perform large-volume geocoding tasks with the Esri World Geocoder such as publishing a CSV of addresses as hosted feature layer. |
| premium:user:networkanalysis | Grants the ability to perform network analysis tasks such as routing and drive-time areas. |
| premium:user:geoenrichment | Grants the ability to geoenrich features. |
| premium:user:demographics | Grants the ability to make use of premium demographic data. |
| premium:user:spatialanalysis | Grants the ability to perform spatial analysis tasks. |
| premium:user:elevation | Grants the ability to perform analytical tasks on elevation data. |
Features
| Privilege | Description |
|---|---|
| features:user:edit | Grants the ability to edit features in editable layers, according to the edit options enabled on the layer. |
| features:user:fullEdit | Grants the ability to add, delete, and update features in a hosted feature layer regardless of the editing options enabled on the layer. |
Version management
| Privilege | Description |
|---|---|
| features:user:manageVersions | Grants members the ability to manage version locks as well as view, alter, delete, edit, reconcile, and post to all branch versions accessed through ArcGIS Server feature layers. |
Open data
These privileges apply only to ArcGIS Online.
| Privilege | Description |
|---|---|
| opendata:user:openDataAdmin | Grants the ability to manage Open Data Sites for the organization. |
| opendata:user:designateGroup | Grants the ability to designate groups within organization as being available for use in Open Data. |
Response properties
| Property | Details |
|---|---|
| success | Indicates if the operation was successful. |
JSON Response syntax
{
"success": <true | false>
}JSON Response example
{
"success": true
}