When enabled, Org Managers or Space Managers can remove access roles by username. In order for this feature to be enabled the CF operator must: 1) Enable the `/ids/users/` endpoint for UAA 2) Create a UAA `cloud_controller_username_lookup` client with the `scim.userids` authority
GET /v2/config/feature_flags/unset_roles_by_username
Authorization: bearer eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJ1c2VyX2lkIjoidWFhLWlkLTE0MyIsImVtYWlsIjoiZW1haWwtNzlAc29tZWRvbWFpbi5jb20iLCJzY29wZSI6WyJjbG91ZF9jb250cm9sbGVyLmFkbWluIl0sImF1ZCI6WyJjbG91ZF9jb250cm9sbGVyIl0sImV4cCI6MTQ0NTU1NzkzN30.cHQ2OasZ3nW89Dvt1Tz4FZ3UPsW5xSNSssI5y8Xgz-s Host: example.org Cookie:
curl "https://api.[your-domain.com]/v2/config/feature_flags/unset_roles_by_username" -X GET \ -H "Authorization: bearer eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJ1c2VyX2lkIjoidWFhLWlkLTE0MyIsImVtYWlsIjoiZW1haWwtNzlAc29tZWRvbWFpbi5jb20iLCJzY29wZSI6WyJjbG91ZF9jb250cm9sbGVyLmFkbWluIl0sImF1ZCI6WyJjbG91ZF9jb250cm9sbGVyIl0sImV4cCI6MTQ0NTU1NzkzN30.cHQ2OasZ3nW89Dvt1Tz4FZ3UPsW5xSNSssI5y8Xgz-s" \ -H "Host: example.org" \ -H "Cookie: "
200 OK
{ "name": "unset_roles_by_username", "enabled": true, "error_message": null, "url": "/v2/config/feature_flags/unset_roles_by_username" }
Content-Type: application/json;charset=utf-8 X-VCAP-Request-ID: bc8ad8d9-12e7-4993-9874-a8fe3a4ec807 Content-Length: 144 X-Content-Type-Options: nosniff