# Permissions

## Get permissions

 - [GET /resources/permissions/v1](https://developers.frontegg.com/ciam/api/identity/permissions/permissionscontrollerv1_getallpermissions.md): Retrieve all permissions configured for your environment.

Each permission object includes the name, description, assigned roles, categories, and other defining information.

## Create permissions

 - [POST /resources/permissions/v1](https://developers.frontegg.com/ciam/api/identity/permissions/permissionscontrollerv1_addpermissions.md): Add a new permission.

Provide the permission information in the request body.

This route does not associate permissions with roles. Use the associate permission to roles route to manage role associations.

## Delete permission

 - [DELETE /resources/permissions/v1/{permissionId}](https://developers.frontegg.com/ciam/api/identity/permissions/permissionscontrollerv1_deletepermission.md): Delete a permission.

Provide the permission ID as a path parameter to specify which permission to delete. You can obtain the permission ID using the Get permissions API.

## Update permission

 - [PATCH /resources/permissions/v1/{permissionId}](https://developers.frontegg.com/ciam/api/identity/permissions/permissionscontrollerv1_updatepermission.md): Update an existing permission.

Provide the permission ID as a path parameter to specify which permission to update, and send the updated permission information in the request body.

This route does not update role associations for the permission. Use the associate permission to roles route to manage role associations.

## Set a permission to multiple roles

 - [PUT /resources/permissions/v1/{permissionId}/roles](https://developers.frontegg.com/ciam/api/identity/permissions/permissionscontrollerv1_setrolestopermission.md): Associate a permission with multiple roles.

Provide the permission ID as a path parameter and include the role IDs in the request body as an array of strings. Any pre-existing role associations will remain.

You can obtain role IDs using the Get roles API.

## Set permissions classification

 - [PUT /resources/permissions/v1/classification](https://developers.frontegg.com/ciam/api/identity/permissions/permissionscontrollerv1_updatepermissionsassignmenttype.md): Classify permissions for self-service usage.

Provide an array of permissionIds and the classification type in the request body. This allows you to segregate which permissions will be used for self-service.