设置角色权限
POST
/web/v1/workspaces/{workspaceId}/roles/{roleId}/permissions JWT设置分配给工作空间角色的权限。此操作为全量替换:所有现有权限将被移除,并替换为提供的列表。
鉴权
Auth Chain: WEB Chain — 需要
Authorization: Bearer <jwt>系统注入的请求头(前端无需处理):X-PORTAL-ACCESS-CODE(Nginx)、X-Request-Id(Gateway)
请求参数
| Name | Type | Required | In | Description |
|---|---|---|---|---|
workspaceId | String | Required | path | 工作空间业务 ID |
roleId | String | Required | path | 角色业务 ID |
请求体
json
{
"permissionCodes": ["workspace:read", "workspace:write"]
}1
2
3
2
3
请求示例
json
{
"permissionCodes": ["workspace:read", "workspace:write", "role:read"]
}1
2
3
2
3
成功响应
状态码: 200 OK
返回包含新权限代码的更新后角色对象。
成功 200
{
"version": "1.3.0",
"timestamp": 1709337600000,
"success": true,
"code": "2000",
"message": "SUCCESS",
"data": {
"bizId": "ROLE_CUSTOM_TEST_001",
"workspaceBizId": "WS_ROLE_TEST_001",
"roleName": "编辑者",
"roleType": {
"value": 10010902,
"name": "CUSTOM",
"code": "CUSTOM"
},
"description": "编辑角色",
"permissionCodes": [
"workspace:read",
"workspace:write"
],
"createdAt": "2026-03-22T10:30:00Z",
"updatedAt": "2026-03-22T11:00:00Z"
}
}错误响应
未授权 401
{
"success": false,
"code": "4010",
"message": "Invalid or expired token"
}说明
- 此操作为全量替换,非追加。请发送完整的目标权限列表。
- 仅 CUSTOM 角色可设置权限。OWNER 角色隐式拥有所有权限。
- 需要
workspace:role:write权限。