Run Dry Run on Identity

Execute a policy dry run against a specific identity to preview actions without performing them

Endpoint

POST /api/private/lifecycle_management/policies/{policy_id}/identities/{identity_id}:dry_run

Description

Execute a policy dry run against a specific identity to preview what actions would be taken without actually performing them. This is essential for testing policy configurations, validating conditions, and understanding policy behavior before activation.

Use this endpoint to:

  • Test new policies before activating them

  • Validate policy changes against specific users

  • Debug why policies are or aren't executing for certain identities

  • Demonstrate policy behavior to stakeholders

  • Ensure policy changes won't have unintended consequences

circle-info

Dry runs are read-only operations that simulate policy execution without making any actual changes to user access or system state.

API Reference

post
Authorizations
AuthorizationstringRequired

Veza API key for authentication. Generate keys in Administration > API Keys.

Path parameters
policy_idstringRequired
idstringRequired
Body
policy_idstringOptional
idstringOptional
version_numberinteger · int32Optional
stateinteger · enumOptional
skip_disabled_workflowsbooleanOptional
Responses
chevron-right
200

OK

application/json
workflows_matchedstring[]Optional
messagesstring[]Optional
access_profile_idsstring[]Optional
post
/api/private/lifecycle_management/policies/{policy_id}/identities/{id}:dry_run

Request Examples

Response

post
Authorizations
AuthorizationstringRequired

Veza API key for authentication. Generate keys in Administration > API Keys.

Path parameters
policy_idstringRequired
idstringRequired
Body
policy_idstringOptional
idstringOptional
version_numberinteger · int32Optional
stateinteger · enumOptional
skip_disabled_workflowsbooleanOptional
Responses
chevron-right
200

OK

application/json
workflows_matchedstring[]Optional
messagesstring[]Optional
access_profile_idsstring[]Optional
post
/api/private/lifecycle_management/policies/{policy_id}/identities/{id}:dry_run

Example Response

chevron-rightDry Run Responsehashtag

This example shows a more detailed response including job requests and workflow matching:

Response Fields

Field
Description

workflows_matched

Array of workflow names that matched the dry run criteria

job_requests

Array of job request objects that would be created

messages

Array of informational messages about the dry run execution

access_profile_ids

Array of access profile IDs that were found in the dry run

Last updated

Was this helpful?