Skip to content

Harness APIs (1.0)

The Harness Software Delivery Platform uses OpenAPI Specification v3.0. Harness constantly improves these APIs. Please be aware that some improvements could cause breaking changes.

Find out more about Swagger

Introduction

The Harness API allows you to integrate and use all the services and modules we provide on the Harness Platform. If you use client-side SDKs, Harness functionality can be integrated with your client-side automation, helping you reduce manual efforts and deploy code faster.

For more information about how Harness works, visit the Harness Developer Hub.

How it works

The Harness API is a RESTful API that uses standard HTTP verbs. You can send requests in JSON, YAML, or form-data format. The format of the response matches the format of your request. You must send a single request at a time and ensure that you include your authentication key. For more information about this, go to Authentication.

Get started

Before you start integrating, get to know our API better by reading the following topics:

The methods you need to integrate with depend on the functionality you want to use. Work with your Harness Solutions Engineer to determine which methods you need.

Authentication

To authenticate with the Harness API, you need to:

  1. Generate an API token on the Harness Platform.
  2. Send the API token you generate in the x-api-key header in each request.

Generate an API token

To generate an API token, complete the following steps:

  1. Go to the Harness Platform.
  2. On the left-hand navigation, click My Profile.
  3. Click +API Key, enter a name for your key and then click Save.
  4. Within the API Key tile, click +Token.
  5. Enter a name for your token and click Generate Token. Important: Make sure to save your token securely. Harness does not store the API token for future reference, so make sure to save your token securely before you leave the page.

Send the API token in your requests

Send the token you created in the Harness Platform in the x-api-key header. For example: x-api-key: YOUR_API_KEY_HERE

Requests and Responses

The structure for each request and response is outlined in the API documentation. We have examples in JSON and YAML for every request and response. You can use our online editor to test the examples.

Common Parameters [Beta]

Field NameTypeDefaultDescription
identifierstringnoneURL-friendly version of the name, used to identify a resource within it's scope and so needs to be unique within the scope.
namestringnoneHuman-friendly name for the resource.
orgstringnoneLimit to provided org identifiers.
projectstringnoneLimit to provided project identifiers.
descriptionstringnoneMore information about the specific resource.
tagsmap[string]stringnoneList of labels applied to the resource.
orderstringdescOrder to use when sorting the specified fields. Type: enum(asc,desc).
sortstringnoneFields on which to sort. Note: Specify the fields that you want to use for sorting. When doing so, consider the operational overhead of sorting fields.
limitint30Pagination: Number of items to return.
pageint1Pagination page number strategy: Specify the page number within the paginated collection related to the number of items in each page.
createdint64noneUnix timestamp that shows when the resource was created (in milliseconds).
updatedint64noneUnix timestamp that shows when the resource was last edited (in milliseconds).

Status Codes

Harness uses conventional HTTP status codes to indicate the status of an API request. Generally, 2xx responses are reserved for success and 4xx status codes are reserved for failures. A 5xx response code indicates an error on the Harness server.

Error CodeDescription
200OK
201Created
202Accepted
204No Content
400Bad Request
401Unauthorized
403Forbidden
412Precondition Failed
415Unsupported Media Type
500Server Error

To view our error response structures, go here.

Versioning [Beta]

Harness Version

The current version of our Beta APIs is yet to be announced. The version number will use the date-header format and will be valid only for our Beta APIs.

Generation

All our beta APIs are versioned as a Generation, and this version is included in the path to every API resource. For example, v1 beta APIs begin with app.harness.io/v1/, where v1 is the API Generation.

The version number represents the core API and does not change frequently. The version number changes only if there is a significant departure from the basic underpinnings of the existing API. For example, when Harness performs a system-wide refactoring of core concepts or resources.

Pagination [Beta]

We use pagination to place limits on the number of responses associated with list endpoints. Pagination is achieved by the use of limit query parameters. The limit defaults to 30. Its maximum value is 100.

Following are the pagination headers supported in the response bodies of paginated APIs:

  1. X-Total-Elements : Indicates the total number of entries in a paginated response.
  2. X-Page-Number : Indicates the page number currently returned for a paginated response.
  3. X-Page-Size : Indicates the number of entries per page for a paginated response.

For example:

X-Total-Elements : 30
X-Page-Number : 0
X-Page-Size : 10
Download OpenAPI description
openapi-merged.json
openapi-merged.yaml
Overview
URL

https://harness.io/

API Support

contact@harness.io

Terms of Service

Languages
Servers
Mock server

https://apidocs.harness.io/_mock/openapi-merged/

Harness host URL

https://app.harness.io/

Vanity URL

https://{vanity}/

Organization

Create and manage organizations in your account. You use organizations to group together related projects. For example, you can use an organization to group together projects within a business unit or division.

Operations

Project [Beta]

This contains APIs for projects.

Operations

Project

This contains APIs related to Project as defined in Harness

Operations

Account Secrets [Beta]

This contains APIs for account-scoped secrets.

Operations

Organization Secrets [Beta]

This contains APIs for organization-scoped secrets.

Operations

Project Secrets [Beta]

This contains APIs for project-scoped secrets.

Operations

Secrets

This contains APIs related to Secrets as defined in Harness

Operations

Account Connectors [Beta]

This contains APIs for Account-scoped Connectors.

Operations

Organization Connectors [Beta]

This contains APIs for Organization-scoped Connectors.

Operations

Project Connectors [Beta]

This contains APIs for Project-scoped Connectors.

Operations

Connectors

This contains APIs related to Connectors as defined in Harness

Operations

GoogleSecretManagerConnector

This contains APIs specific to Google Secret Manager Connector as defined in Harness

Operations

Account Roles [Beta]

This contains APIs for Account-scoped Roles.

Operations

Organization Roles [Beta]

This contains APIs for Organization-scoped Roles.

Operations

Project Roles [Beta]

This contains APIs for Project-scoped Roles.

Operations

Roles

This contains APIs for CRUD on roles

Operations

Account Resource Groups [Beta]

This contains APIs for Account-scoped Resource Groups.

Operations

Organization Resource Groups [Beta]

This contains APIs for Organization-scoped Resource Groups.

Operations

Project Resource Groups [Beta]

This contains APIs for Project-scoped Resource Groups.

Operations

Filter Resource Groups [Beta]

This contains the filter endpoint for Resource Groups.

Operations

Account Role Assignments [Beta]

This contains APIs for Account-scoped Role Assignments.

Operations

Organization Role Assignments [Beta]

This contains APIs for Organization-scoped Role Assignments.

Operations

Project Role Assignments [Beta]

This contains APIs for Project-scoped Role Assignments.

Operations

Role Assignments

This contains APIs for CRUD on role assignments

Operations

Access Control List

This contains the APIs to perform access control checks

Operations

Account Banner

This contains APIs for Account Banners.

Operations

Account Banner

This contains APIs for Account Banners.

Operations

Account Licensed Modules

This contains APIs for Account Licensed Modules.

Operations

Account License Type

Operations

Account Webhooks

This contains APIs for Account Webhooks.

Operations

AccountSetting

This contains APIs related to Account Settings as defined in Harness

Operations

Accounts

This contains APIs related to accounts as defined in Harness

Operations

Analyze Account Access Policy

Operations

Analyze Organization Access Policy

Operations

Analyze Project Access Policy

Operations

ApiKey

This fetches API keys defined in Harness

Operations

Audit

This contains APIs related to Audit as defined in Harness

Operations

AuditFilters

This contains APIs related to Filter of type Audit as defined in Harness

Operations

Authentication Settings

This contains APIs related to Authentication settings as defined in Harness

Operations

Canny

This contains APIs required for the creation of Canny tickets

Operations

Devops Essentials License Data By Account

Operations

EULA [Beta]

This contains APIs for EULA.

Operations

Filter

This contains APIs related to Filter as defined in Harness

Operations

Invite

This contains APIs related to Invite as defined in Harness

Operations

IP Allowlist [Beta]

This contains APIs for IP Allowlist.

Operations

Nextgen Ldap

This contains APIs related to Nextgen Ldap as defined in Harness

Operations

Notification Channels

This contains APIs for Notification Channels

Operations

Notification Rules

This contains APIs for Notification Rules

Operations

OIDC

This contains APIs related to the Harness OIDC config

Operations

Oidc-Access-Token

This contains APIs related to OIDC Access Token generation as defined in Harness

Operations

Oidc-ID-Token

This contains APIs related to OIDC ID Token generation as defined in Harness

Operations

Org Webhooks

This contains APIs for Org Webhooks.

Operations

Permissions

This contains the APIs related to permissions

Operations

Project Webhooks

This contains APIs for Project Webhooks.

Operations

Secret Managers

This contains APIs related to SecretManagers as defined in Harness

Operations

Service Account

This has all the APIs specific to the Service Accounts in Harness.

Operations

Setting

This contains APIs related to Settings as defined in Harness

Operations

SMTP

This contains APIs related to SmtpConfig as defined in Harness

Operations

Source Code Manager

Contains APIs related to Source Code Manager

Operations

Token

This contains APIs related to Token as defined in Harness

Operations

User

This contains APIs related to User as defined in Harness

Operations

User Group

This contains APIs related to User Group as defined in Harness

Operations

Variables

This contains APIs related to Variables as defined in Harness.

Operations

Agent mTLS Endpoint Management

Contains APIs related to Agent mTLS Endpoint management.

Operations

Delegate Download Resource

Contains APIs related to Downloading Delegates

Operations

Delegate Group Tags Resource

Contains APIs related to Delegate Group Tags management

Operations

Delegate Setup Resource

Contains Delegate Setup APIs

Operations

Delegate Token Resource

Contains APIs related to Delegate Token management

Operations

Pipelines [Beta]

This contains APIs for performing CRUD operations on Pipelines.

Operations

Input Sets [Beta]

This contains APIs for Input Sets.

Operations

Approvals

This contains APIs for Approvals.

Operations

Pipeline Execution [Beta]

This contains APIs for Pipeline Execution.

Operations

Pipeline Dashboard

This contains APIs related to Pipeline Dashboard

Operations

Pipeline Input Set

This contains APIs related to Input Sets

Operations

Pipeline

This contains pipeline APIs for files as provided as runtime input during pipeline execution

Operations

Pipeline Execution Details

This contains APIs for fetching Pipeline Execution Details

Operations

Pipeline Execute

This contains APIs for Executing a Pipeline

Operations

Pipeline Refresh

This contains APIs related to validation of templates in pipeline yaml

Operations

Pipeline data retention

This contains APIs related to retention of pipeline execution data

Operations

Triggers [Beta]

This contains APIs for performing CRUD operations on Triggers.

Operations

TriggersEvents

This contains APIs related to Trigger Event History.

Operations

Webhook Triggers

This contains APIs related to Webhook Triggers.

Operations

Webhook Event Handler

Contains APIs corresponding to Webhook Triggers.

Operations

Registries

APIs to create, update, list registries

Operations

Artifacts

APIs to get, list artifacts

Operations

Docker Artifacts

APIs to get details of docker artifacts

Operations

Helm Artifacts

APIs to get details of helm artifacts

Operations

Webhooks

APIs to create, update, list webhooks

Operations

Replication

Operations

Spaces

Operations

Database Schema

This contains APIs for performing CRUD operations on Database Schema Entity

Operations

Database Instance

This contains APIs for performing CRUD operations on Database Instance Entity

Operations

Deployed State

This contains APIs for tracking changeSet deployment status

Operations

Execution Config

This contains APIs for execution config for image tags

Operations

Migration State

This contains APIs for getting Migration State of Database Schema Entity

Operations

K8s Release Service Mapping [Beta]

This contains APIs for Fetching Release details regarding a pod.

Operations

CustomDeployment

This contains APIs related to Custom Deployment

Operations

Environments

This contains APIs related to Environments

Operations

EnvironmentGroup

This contains APIs related to EnvironmentGroup.

Operations

Infrastructures

This contains APIs related to Infrastructure Definitions

Operations

Usage

This contains APIs specific to CD license usage

Operations

File Store

This contains APIs related to File Store in Harness

Operations

Service Dashboard

This contains APIs related to Service Dashboard

Operations

ServiceOverrides

This contains APIs related to Service Overrides V2

Operations

Rollback

This contains APIs related to Post Prod Rollback of specific service

Operations

tas

This contains APIs related to tas

Operations

Freeze CRUD

This contains APIs related to Freeze CRUD

Operations

Freeze Evaluation

This contains APIs related to evaluation Freeze status

Freeze Schema

This contains APIs related to construct schema for Freeze

Account Services [Beta]

This contains APIs for account-scoped services.

Operations

Organization Services [Beta]

This contains APIs for organization-scoped services.

Operations

Project Services [Beta]

This contains APIs for project-scoped services.

Operations

Services

This contains APIs related to Services

Operations

Account Rancher Infrastructure [Beta]

This contains APIs for Rancher infra entities for account level.

Operations

Org Rancher Infrastructure [Beta]

This contains APIs for Rancher infra entities for org level.

Operations

Project Rancher Infrastructure [Beta]

This contains APIs for Rancher infra entities for project level.

Operations

Account Templates [Beta]

This contains APIs for Account-scoped Templates.

Operations

Organization Templates [Beta]

This contains APIs for Organization-scoped Templates.

Operations

Project Templates [Beta]

This contains APIs for Project-scoped Templates.

Operations

Templates

This contains a list of APIs specific to the Templates Validations and Refresh

Operations

Global Templates

This contains a list of APIs specific to the Global Templates

Agents

Operations

Application

Operations

Applications

Operations

Certificates

Operations

Clusters

This contains APIs related to Gitops Clusters

Operations

Dashboard Aggregates

Operations

Dashboards

Operations

GnuPGP Keys

Operations

GPG Keys

Operations

Hosts

This contains APIs related to Hosts as defined in Harness

Operations

Project mappings

Operations

Projects

Operations

Reconciler

Operations

Repositories

Operations

Repository Certificates

Operations

Repository credentials

Operations

ValidateHost

This contains APIs related to SSH or WinRm host validation

Operations

Account GitX Webhooks

This contains APIs for Account GitX Webhooks.

Operations

Org Gitx Webhooks

Operations

Project Gitx Webhooks

Operations

Cloud Cost Anomalies

Get details about any anomalous spike in your cloud costs

Operations

Cloud Cost BI Dashboards

Get details of BI-dashboards specific to CCM

Operations

Cloud Cost Budget Groups

Manage Budget Groups and receive alerts when your costs exceed (or are forecasted to exceed) your configured budget group.

Operations

Cloud Cost Budgets

Manage Budgets and receive alerts when your costs exceed (or are forecasted to exceed) your budget.

Operations

Cloud Cost K8S Connectors Metadata

Health related metadata for your k8S clusters having cost access enabled.

Operations

Cloud Cost Details

Fetch cloud cost data for cost analysis

Operations

Cloud Cost Overview

Get overview of CCM features.

Operations

Cloud Cost Cost Categories

Allows you to categorize based on business requirements and get a contextual view of your expenses.

Operations

RuleEnforcement

This contains APIs related to Rule Enforcement

Operations

Rule

This contains APIs related to Governance Rule Management

Operations

Rule Executions

This contains APIs related to Rule Executions

Operations

Rule Sets

Rule sets serve as logical bindings on top of individual rules that help you organize and manage rules.

Operations

Governance Overview

This contains APIs related to CCM Governance Overview Page

Operations

Cloud Cost Perspectives Folders

Group your Perspectives using Folders in ways that are more meaningful to your business needs.

Operations

Cloud Cost Perspective Reports

Manage cost reports created on Perspectives.

Operations

Cloud Cost Perspectives

Group your resources using Perspectives in ways that are more meaningful to your business needs.

Operations

Cloud Cost Recommendations Details

Cloud Cost Recommendations details for workloads and node pools.

Operations

Cloud Cost Recommendations

Recommendations for workloads and node pools.

Operations

Cloud Cost Recommendation Jira

Cloud Cost recommendation CRUD apis for jira.

Operations

Cloud Cost Recommendation Servicenow

Cloud Cost recommendation CRUD apis for servicenow.

Operations

Cloud Cost Recommendation Ignore List

Cloud Cost recommendation CRUD apis for recommendations ignore list.

Operations

Cloud Cost AutoStopping Rules

This contains APIs to create and manage AutoStopping Rules for your cloud resources.

Operations

Cloud Cost AutoStopping Rules V2

This contains Autostopping v2 APIs that support the usage of Autostopping Proxy for managing cloud resources.

Operations

Cloud Cost AutoStopping Load Balancers

This contains APIs to create and manage load balancers used for AutoStopping.

Operations

Cloud Cost AutoStopping Fixed Schedules

This contains APIs to manage fixed schedules for the AutoStopping Rules.

Operations

Commitment Orchestrator Events APIs

This contains APIs to fetch commitment orchestrator events data.

Operations

API Keys

APIs to create and manage Feature Flag SDK API Keys

Operations

Feature Flags

APIs to create and manage Feature Flags

Operations

Targets

APIs to create and manage Feature Flag Targets

Operations

Target Groups

APIs to create and manage Feature Flag Target Groups

Operations

Environment Perspectives

APIs to create and manage Feature Flag Environment perspectives

Operations

Anomalies

APIs to manage Anomalies on the Feature Flag Service

Operations

Proxy

APIs used by the ff-proxy

Operations

Tags

APIs to create and manage Feature Flag Tags

Operations

Monitored Services

This contains APIs related to CRUD operations of Monitored Services

Operations

SLOs dashboard

This contains APIs related to SLOs dashboard

Operations

NG SLOs

This contains APIs related to CRUD operations of SLOs (simple & composite)

Operations

SLOs

This contains APIs related to CRUD operations of SLOs

Operations

Downtime

This contains APIs related to CRUD operations of Downtime

Operations

Srm Notification

This contains APIs related to CRUD operations of srm notifications

Operations

Entities

APIs for managing catalog Entities which represent the core components of your system. Entities can represent services, APIs, user groups, resources, and more. These endpoints allow you to create, retrieve, update, delete, and query entities across different scopes.

Operations

Catalog Custom Properties

Catalog Custom Properties

Operations

Scores Information

Scores Information

Operations

DataSource Information

DataSource Information

Operations

Kubernetes DataPoints Information

Kubernetes DataPoints Information

Operations

IDP App Configurations

IDP App Configurations

Operations

Plugin Information

Plugin Information

Operations

Layout Proxy

Layout Proxy

Operations

aida

AIDA API's for Harness OPA

Operations

dashboards

Operations

downloads

Operations

folders

Operations

dashboard

Aggregate summary of policies, policy sets and evaluations for display on the dashboard

Operations

examples

Example rego policies and corresponding input

Operations

policies

Create, edit and delete Governance policies written in rego

Operations

evaluate

Perform evaluations

Operations

evaluations

Access evaluation results

Operations

policysets

Create, edit and delete Governance policy sets

Operations

system

System version and health

Operations

repository

Operations

status_checks

Operations

pullreq

Operations

upload

Operations

webhook

Operations

resource

Operations

rules

Operations

labels

Operations

usage

Usage service handles licencing

Operations

approvals

Approval service handles the approval API to approve or reject pipeline executions

Operations

costs

Costs Service handles the API related with the costs attached to workspaces. This API is read only as all the cost are generated in the plugin side

Operations

executions

Executions Service handles the API for workflow executions.

At this time it is a read-only API with no ability to directly create or edit executions. Instead these are triggered from the Workspaces Service.

Operations

module-registry

The module-registry service is a private registry for Terraform/Opentofu modules

Operations

workspaces

Workspaces Service handles the API for managing workspaces and triggering workflows against them.

Operations

settings

Settings service handles all API endpoints related to configuration settings

Operations

tf-standard-backend

HTTP standard backend for Terraform

Operations

variables

Variables Service handles the API for managing workspace variables.

Operations

Exemptions

Access and modify Exemptions to Security Issues

Operations

Exemptions#ListExemptions

Request

List a collection of Exemptions

Query
accountIdstring^[a-zA-Z0-9_-]{22}$required

Harness Account ID

Example: accountId=abcdef1234567890ghijkl
pageinteger(int64)>= 0

Page number to fetch (starting from 0)

Default 0
Example: page=4
pageSizeinteger(int64)[ 1 .. 100 ]

Number of results per page

Default 30
Example: pageSize=50
orgIdstring<= 128 characters^[A-Za-z_][A-Za-z0-9_]*$

Harness Organization ID

Example: orgId=example_org
projectIdstring<= 128 characters^[A-Za-z_][A-Za-z0-9_]*$

Harness Project ID

Example: projectId=example_project
Headers
X-Api-Keystring

Harness personal or service access token

Example: Officiis aspernatur sint sunt magni ad.
curl -i -X GET \
  'https://apidocs.harness.io/_mock/openapi-merged/sto/api/v2/exemptions?accountId=abcdef1234567890ghijkl&page=4&pageSize=50&orgId=example_org&projectId=example_project' \
  -H 'X-Api-Key: Officiis aspernatur sint sunt magni ad.'

Responses

OK response.

Bodyapplication/json
paginationobject(StoPagination)required
Example: {"link":"","page":4,"pageSize":20,"totalItems":230,"totalPages":12}
pagination.​linkstring

Link-based paging

Example: ""
pagination.​pageinteger(int64)required

Page number (starting from 0)

Example: 4
pagination.​pageSizeinteger(int64)required

Requested page size

Example: 20
pagination.​totalItemsinteger(int64)required

Total results available

Example: 230
pagination.​totalPagesinteger(int64)required

Total pages available

Example: 12
resultsArray of objects(Exemption)required
Example: [{"approverId":"user111111111111111111","canApproveFor":["ACCOUNT","ORG","PROJECT","PIPELINE"],"canCancel":true,"canCreate":true,"canReApprove":true,"canReject":true,"comment":"This exemption was reviewed by the security team.","created":1651578240,"exemptionStatusAtScan":"Approved","expiration":1651578240,"id":"abcdef1234567890ghijkl","isDeleted":true,"issueId":"abcdef1234567890ghijkl","lastModified":1651578240,"link":"https://example.com/ABC-1234","numOccurrences":10,"occurrences":[42,666],"orgId":"your_project","orgName":"Organization Name","pendingChanges":{"durationDays":7},"pipelineId":"your_pipeline","projectId":"your_project","projectName":"Project Name","reason":"Waiting on upstream bug fix","requesterId":"user111111111111111111","scanId":"abcdef1234567890ghijkl","scope":"PROJECT","search":"CWE-123,5","status":"Rejected","targetId":"abcdef1234567890ghijkl","type":"Other"},{"approverId":"user111111111111111111","canApproveFor":["ACCOUNT","ORG","PROJECT","PIPELINE"],"canCancel":true,"canCreate":true,"canReApprove":true,"canReject":true,"comment":"This exemption was reviewed by the security team.","created":1651578240,"exemptionStatusAtScan":"Approved","expiration":1651578240,"id":"abcdef1234567890ghijkl","isDeleted":true,"issueId":"abcdef1234567890ghijkl","lastModified":1651578240,"link":"https://example.com/ABC-1234","numOccurrences":10,"occurrences":[42,666],"orgId":"your_project","orgName":"Organization Name","pendingChanges":{"durationDays":7},"pipelineId":"your_pipeline","projectId":"your_project","projectName":"Project Name","reason":"Waiting on upstream bug fix","requesterId":"user111111111111111111","scanId":"abcdef1234567890ghijkl","scope":"PROJECT","search":"CWE-123,5","status":"Rejected","targetId":"abcdef1234567890ghijkl","type":"Other"},{"approverId":"user111111111111111111","canApproveFor":["ACCOUNT","ORG","PROJECT","PIPELINE"],"canCancel":true,"canCreate":true,"canReApprove":true,"canReject":true,"comment":"This exemption was reviewed by the security team.","created":1651578240,"exemptionStatusAtScan":"Approved","expiration":1651578240,"id":"abcdef1234567890ghijkl","isDeleted":true,"issueId":"abcdef1234567890ghijkl","lastModified":1651578240,"link":"https://example.com/ABC-1234","numOccurrences":10,"occurrences":[42,666],"orgId":"your_project","orgName":"Organization Name","pendingChanges":{"durationDays":7},"pipelineId":"your_pipeline","projectId":"your_project","projectName":"Project Name","reason":"Waiting on upstream bug fix","requesterId":"user111111111111111111","scanId":"abcdef1234567890ghijkl","scope":"PROJECT","search":"CWE-123,5","status":"Rejected","targetId":"abcdef1234567890ghijkl","type":"Other"}]
results[].​approverIdstring^[a-zA-Z0-9_-]{22}$

User ID the user who approved or rejected this exemptions

Example: "user111111111111111111"
results[].​canApproveForArray of strings

Consists of RBAC scopes for an user associated with this Exemption

Items Enum"ACCOUNT""ORG""PROJECT""PIPELINE""TARGET"
Example: ["ACCOUNT","ORG","PROJECT","PIPELINE"]
results[].​canCancelboolean

States if the user can cancel the exemption

Default false
Example: true
results[].​canCreateboolean

States whether the user can create or reopen the exemption

Default false
Example: true
results[].​canReApproveboolean

States if the user can re-approve the exemption for the exemption's scope

Default false
Example: true
results[].​canRejectboolean

States whether the user can reject the exemption

Default false
Example: true
results[].​commentstring

The additional comment to include with the exemption

Example: "This exemption was reviewed by the security team."
results[].​createdinteger(int64)required

Unix timestamp at which the resource was created

Example: 1651578240
results[].​exemptionStatusAtScanstring

Exemption's status at the Security Scan created time

Enum"Pending""Approved""Rejected""Expired"
Example: "Pending"
results[].​expirationinteger(int64)

Unix timestamp at which this Exemption will expire

Example: 1651578240
results[].​idstring^[a-zA-Z0-9_-]{22}$required

Resource identifier

Example: "abcdef1234567890ghijkl"
results[].​isDeletedboolean

States if the exemption is deleted

Default false
Example: true
results[].​issueIdstring^[a-zA-Z0-9_-]{22}$required

Issue ID associated with the Exemption

Example: "abcdef1234567890ghijkl"
results[].​lastModifiedinteger(int64)required

Unix timestamp at which the resource was most recently modified

Example: 1651578240
results[].​linkstring<= 1024 characters

Link to a related ticket

Example: "https://example.com/ABC-1234"
results[].​numOccurrencesinteger(int64)

States how may occurrences are associated with the exemption, if not an issue level exemption

Default 0
Example: 10
results[].​occurrencesArray of integers(int64)

Array of occurrence Ids

Example: [42,666]
results[].​orgIdstring<= 128 characters^[A-Za-z_][A-Za-z0-9_]*$

ID of the Harness Organization to which the exemption applies. Cannot be specified alongside "targetId".

Example: "your_project"
results[].​orgNamestring

Name of the organization associated with the exemption

Example: "Organization Name"
results[].​pendingChangesobject(PendingChanges)required
Example: {"durationDays":7}
results[].​pendingChanges.​durationDaysinteger(int64)

The number of days an issue should be exempted for

Example: 7
results[].​pipelineIdstring<= 128 characters^[A-Za-z_][A-Za-z0-9_]*$

ID of the Harness Pipeline to which the exemption applies. You must also specify "projectId" and "orgId". Cannot be specified alongside "targetId".

Example: "your_pipeline"
results[].​projectIdstring<= 128 characters^[A-Za-z_][A-Za-z0-9_]*$

ID of the Harness Project to which the exemption applies. You must also specify "orgId". Cannot be specified alongside "targetId".

Example: "your_project"
results[].​projectNamestring

Name of the project associated with the exemption

Example: "Project Name"
results[].​reasonstring<= 1024 charactersrequired

Text describing why this Exemption is necessary

Example: "Waiting on upstream bug fix"
results[].​requesterIdstring^[a-zA-Z0-9_-]{22}$required

User ID of user who requested this exemptions

Example: "user111111111111111111"
results[].​scanIdstring^[a-zA-Z0-9_-]{22}$

ID of the Harness Scan to determine all the occurrences for the scan-issue. You must also specify "projectId", "orgId" and "targetId". Cannot be specified alongside "pipelineId".

Example: "abcdef1234567890ghijkl"
results[].​scopestring

States the scope for the exemption

Enum"ACCOUNT""ORG""PROJECT""PIPELINE""TARGET"
Example: "PROJECT"
results[].​searchstring<= 256 characters

Search parameter to find filtered occurrences of the issue

Example: "CWE-123,5"
results[].​statusstringrequired

Approval status of Exemption

Default "Pending"
Enum"Pending""Approved""Rejected""Expired""Canceled"
Example: "Pending"
results[].​targetIdstring^[a-zA-Z0-9_-]{22}$

ID of the Target to which the exemption applies. Cannot be specified alongside "projectId" or "pipelineId".

Example: "abcdef1234567890ghijkl"
results[].​typestringrequired

Type of Exemption (Compensating Controls / Acceptable Use / Acceptable Risk / False Positive / Fix Unavailable / Other)

Enum"Compensating Controls""Acceptable Use""Acceptable Risk""False Positive""Fix Unavailable""Other"
Example: "Other"
Response
application/json
{
  "pagination": {
    "link": "",
    "page": 4,
    "pageSize": 20,
    "totalItems": 230,
    "totalPages": 12
  },
  "results": [
    { … },
    { … },
    { … }
  ]
}

Exemptions#CreateExemption

Request

Create a new Exemption

Query
accountIdstring^[a-zA-Z0-9_-]{22}$required

Harness Account ID

Example: accountId=abcdef1234567890ghijkl
orgIdstring<= 128 characters^[A-Za-z_][A-Za-z0-9_]*$required

ID of the Harness Organization to which the exemption applies. Cannot be specified alongside "targetId".

Examples:
orgId=your_project
projectIdstring<= 128 characters^[A-Za-z_][A-Za-z0-9_]*$required

ID of the Harness Project to which the exemption applies. You must also specify "orgId". Cannot be specified alongside "targetId".

Examples:
projectId=your_project
Headers
X-Api-Keystring

Harness personal or service access token

Example: Consequatur omnis amet repellendus autem sit pariatur.
Bodyapplication/jsonrequired
exemptFutureOccurrencesboolean

States if the user wants to exempt future occurrences of the issue

Default true
Example: false
expirationinteger(int64)

Unix timestamp at which this Exemption will expire

Example: 1651578240
issueIdstring^[a-zA-Z0-9_-]{22}$required

Issue ID associated with the Exemption

Example: "abcdef1234567890ghijkl"
linkstring<= 1024 characters

Link to a related ticket

Example: "https://example.com/ABC-1234"
occurrencesArray of integers(int64)

Array of occurrence Ids

Example: [42,666]
pendingChangesobject(PendingChanges)required
Example: {"durationDays":7}
pendingChanges.​durationDaysinteger(int64)

The number of days an issue should be exempted for

Example: 7
pipelineIdstring<= 128 characters^[A-Za-z_][A-Za-z0-9_]*$

ID of the Harness Pipeline to which the exemption applies. You must also specify "projectId" and "orgId". Cannot be specified alongside "targetId".

Example: "your_pipeline"
reasonstring<= 1024 charactersrequired

Text describing why this Exemption is necessary

Example: "Waiting on upstream bug fix"
requesterIdstring^[a-zA-Z0-9_-]{22}$required

User ID of user who requested this exemptions

Example: "user111111111111111111"
scanIdstring^[a-zA-Z0-9_-]{22}$

ID of the Harness Scan to determine all the occurrences for the scan-issue. You must also specify "projectId", "orgId" and "targetId". Cannot be specified alongside "pipelineId".

Example: "abcdef1234567890ghijkl"
searchstring<= 256 characters

Search parameter to find filtered occurrences of the issue

Example: "CWE-123,5"
targetIdstring^[a-zA-Z0-9_-]{22}$

ID of the Target to which the exemption applies. Cannot be specified alongside "projectId" or "pipelineId".

Example: "abcdef1234567890ghijkl"
typestringrequired

Type of Exemption (Compensating Controls / Acceptable Use / Acceptable Risk / False Positive / Fix Unavailable / Other)

Enum"Compensating Controls""Acceptable Use""Acceptable Risk""False Positive""Fix Unavailable""Other"
Example: "Other"
curl -i -X POST \
  'https://apidocs.harness.io/_mock/openapi-merged/sto/api/v2/exemptions?accountId=abcdef1234567890ghijkl&orgId=your_project&projectId=your_project' \
  -H 'Content-Type: application/json' \
  -H 'X-Api-Key: Consequatur omnis amet repellendus autem sit pariatur.' \
  -d '{
    "exemptFutureOccurrences": false,
    "expiration": 1651578240,
    "issueId": "abcdef1234567890ghijkl",
    "link": "https://example.com/ABC-1234",
    "occurrences": [
      42,
      666
    ],
    "pendingChanges": {
      "durationDays": 7
    },
    "pipelineId": "your_pipeline",
    "reason": "Waiting on upstream bug fix",
    "requesterId": "user111111111111111111",
    "scanId": "abcdef1234567890ghijkl",
    "search": "CWE-123,5",
    "targetId": "abcdef1234567890ghijkl",
    "type": "Other"
  }'

Responses

OK response.

Bodyapplication/json
idstring^[a-zA-Z0-9_-]{22}$required

Resource identifier

Example: "abcdef1234567890ghijkl"
Response
application/json
{
  "id": "abcdef1234567890ghijkl"
}

Exemptions#FindExemptionById

Request

Find Exemption by ID

Path
idstring^[a-zA-Z0-9_-]{22}$required

The ID of the Exemption to retrieve

Example: abcdef1234567890ghijkl
Query
accountIdstring^[a-zA-Z0-9_-]{22}$required

Harness Account ID

Example: accountId=abcdef1234567890ghijkl
orgIdstring<= 128 characters^[A-Za-z_][A-Za-z0-9_]*$

Harness Organization ID

Examples:
orgId=example_org
projectIdstring<= 128 characters^[A-Za-z_][A-Za-z0-9_]*$

Harness Project ID

Examples:
projectId=example_project
executionIdstring^[a-zA-Z0-9_-]{22}$

Harness Execution ID

Example: executionId=abcdef1234567890ghijkl
ignoreScopeboolean

Ignore scope

Example: ignoreScope=true
Headers
X-Api-Keystring

Harness personal or service access token

Example: Minus eum impedit totam aut qui dolorem.
curl -i -X GET \
  'https://apidocs.harness.io/_mock/openapi-merged/sto/api/v2/exemptions/abcdef1234567890ghijkl?accountId=abcdef1234567890ghijkl&orgId=example_org&projectId=example_project&executionId=abcdef1234567890ghijkl&ignoreScope=true' \
  -H 'X-Api-Key: Minus eum impedit totam aut qui dolorem.'

Responses

OK response.

Bodyapplication/json
approverIdstring^[a-zA-Z0-9_-]{22}$

User ID the user who approved or rejected this exemptions

Example: "user111111111111111111"
canApproveForArray of strings

Consists of RBAC scopes for an user associated with this Exemption

Items Enum"ACCOUNT""ORG""PROJECT""PIPELINE""TARGET"
Example: ["ACCOUNT","ORG","PROJECT","PIPELINE"]
canCancelboolean

States if the user can cancel the exemption

Default false
Example: true
canCreateboolean

States whether the user can create or reopen the exemption

Default false
Example: true
canReApproveboolean

States if the user can re-approve the exemption for the exemption's scope

Default false
Example: true
canRejectboolean

States whether the user can reject the exemption

Default false
Example: true
commentstring

The additional comment to include with the exemption

Example: "This exemption was reviewed by the security team."
createdinteger(int64)required

Unix timestamp at which the resource was created

Example: 1651578240
exemptionStatusAtScanstring

Exemption's status at the Security Scan created time

Enum"Pending""Approved""Rejected""Expired"
Example: "Pending"
expirationinteger(int64)

Unix timestamp at which this Exemption will expire

Example: 1651578240
idstring^[a-zA-Z0-9_-]{22}$required

Resource identifier

Example: "abcdef1234567890ghijkl"
isDeletedboolean

States if the exemption is deleted

Default false
Example: true
issueIdstring^[a-zA-Z0-9_-]{22}$required

Issue ID associated with the Exemption

Example: "abcdef1234567890ghijkl"
lastModifiedinteger(int64)required

Unix timestamp at which the resource was most recently modified

Example: 1651578240
linkstring<= 1024 characters

Link to a related ticket

Example: "https://example.com/ABC-1234"
numOccurrencesinteger(int64)

States how may occurrences are associated with the exemption, if not an issue level exemption

Default 0
Example: 10
occurrencesArray of integers(int64)

Array of occurrence Ids

Example: [42,666]
orgIdstring<= 128 characters^[A-Za-z_][A-Za-z0-9_]*$

ID of the Harness Organization to which the exemption applies. Cannot be specified alongside "targetId".

Example: "your_project"
orgNamestring

Name of the organization associated with the exemption

Example: "Organization Name"
pendingChangesobject(PendingChanges)required
Example: {"durationDays":7}
pendingChanges.​durationDaysinteger(int64)

The number of days an issue should be exempted for

Example: 7
pipelineIdstring<= 128 characters^[A-Za-z_][A-Za-z0-9_]*$

ID of the Harness Pipeline to which the exemption applies. You must also specify "projectId" and "orgId". Cannot be specified alongside "targetId".

Example: "your_pipeline"
projectIdstring<= 128 characters^[A-Za-z_][A-Za-z0-9_]*$

ID of the Harness Project to which the exemption applies. You must also specify "orgId". Cannot be specified alongside "targetId".

Example: "your_project"
projectNamestring

Name of the project associated with the exemption

Example: "Project Name"
reasonstring<= 1024 charactersrequired

Text describing why this Exemption is necessary

Example: "Waiting on upstream bug fix"
requesterIdstring^[a-zA-Z0-9_-]{22}$required

User ID of user who requested this exemptions

Example: "user111111111111111111"
scanIdstring^[a-zA-Z0-9_-]{22}$

ID of the Harness Scan to determine all the occurrences for the scan-issue. You must also specify "projectId", "orgId" and "targetId". Cannot be specified alongside "pipelineId".

Example: "abcdef1234567890ghijkl"
scopestring

States the scope for the exemption

Enum"ACCOUNT""ORG""PROJECT""PIPELINE""TARGET"
Example: "PROJECT"
searchstring<= 256 characters

Search parameter to find filtered occurrences of the issue

Example: "CWE-123,5"
statusstringrequired

Approval status of Exemption

Default "Pending"
Enum"Pending""Approved""Rejected""Expired""Canceled"
Example: "Pending"
targetIdstring^[a-zA-Z0-9_-]{22}$

ID of the Target to which the exemption applies. Cannot be specified alongside "projectId" or "pipelineId".

Example: "abcdef1234567890ghijkl"
typestringrequired

Type of Exemption (Compensating Controls / Acceptable Use / Acceptable Risk / False Positive / Fix Unavailable / Other)

Enum"Compensating Controls""Acceptable Use""Acceptable Risk""False Positive""Fix Unavailable""Other"
Example: "Other"
Response
application/json
{
  "approverId": "user111111111111111111",
  "canApproveFor": [
    "ACCOUNT",
    "ORG",
    "PROJECT",
    "PIPELINE"
  ],
  "canCancel": true,
  "canCreate": true,
  "canReApprove": true,
  "canReject": true,
  "comment": "This exemption was reviewed by the security team.",
  "created": 1651578240,
  "exemptionStatusAtScan": "Approved",
  "expiration": 1651578240,
  "id": "abcdef1234567890ghijkl",
  "isDeleted": true,
  "issueId": "abcdef1234567890ghijkl",
  "lastModified": 1651578240,
  "link": "https://example.com/ABC-1234",
  "numOccurrences": 10,
  "occurrences": [
    42,
    666
  ],
  "orgId": "your_project",
  "orgName": "Organization Name",
  "pendingChanges": {
    "durationDays": 7
  },
  "pipelineId": "your_pipeline",
  "projectId": "your_project",
  "projectName": "Project Name",
  "reason": "Waiting on upstream bug fix",
  "requesterId": "user111111111111111111",
  "scanId": "abcdef1234567890ghijkl",
  "scope": "PROJECT",
  "search": "CWE-123,5",
  "status": "Rejected",
  "targetId": "abcdef1234567890ghijkl",
  "type": "Other"
}

Issues

Access and modify Security Issues

Operations

Scans

Access and modify Security Test Scans

Operations

Products

Access Scan Tool information

Operations

Test Targets

Access and modify Scan Targets

Operations

Target Variants

Access and modify Scan Target Variants

Operations

Collection categories

This contains APIs specific to the Collection categories

Operations

Collections

This contains APIs specific to Collections

Operations

Contributors

This contains APIs specific to the Contributors

Operations

DORA

This contains APIs specific to the DORA reports

Operations

Git Branches

Contains APIs related to Git Sync Branch

Operations

Git Full Sync

Contains APIs related to Git Full Sync

Operations

Git Sync Settings

Contains APIs related to Git Sync Settings

Operations

Git Sync

Contains APIs for CRUD on Git Sync

Operations

Git Sync Errors

Contains APIs related to Git Sync Errors

Operations

integration

Operations

PipelineInfraConfig

Operations

SBOM

Operations

Integration Step Config

Operations

Delete Step Config

Operations

Delete Repositories

Operations

Pipeline Store Config

Operations