Security Requirements and Controls
API Stability Long-Term

The updateRole() GraphQL mutation is used to update a user role in LogScale. This includes changing the permissions granted to users assigned the role.

For more information in general on user accounts in LogScale, see the Manage Users and Permissions documentation page. For more on user roles, see the Manage Roles and Edit a user role pages.

Syntax

Below is the syntax for the updateRole() mutation field:

graphql
updateRole(
     input: UpdateRoleInput!
   ): UpdateRoleMutation!

Below is an example of how this mutation field might be used:

Raw
graphql
mutation {
  updateRole( input:
    { roleId: "oM04QwJ9N3FDHdzqOyboxvjYSwQsXzA2",
      displayName: "Testers",
      viewPermissions: [ ChangeDashboards, ReadAccess ]
    }
  )
  { role { usersCount } }
}
Mac OS or Linux (curl)
shell
curl -v -X POST $YOUR_LOGSCALE_URL/graphql \
    -H "Authorization: Bearer $TOKEN" \
    -H "Content-Type: application/json" \
    -d @- << EOF
{"query" : "mutation {
  updateRole( input:
    { roleId: \"oM04QwJ9N3FDHdzqOyboxvjYSwQsXzA2\",
      displayName: \"Testers\",
      viewPermissions: [ ChangeDashboards, ReadAccess ]
    }
  )
  { role { usersCount } }
}"
}
EOF
Mac OS or Linux (curl) One-line
shell
curl -v -X POST $YOUR_LOGSCALE_URL/graphql \
    -H "Authorization: Bearer $TOKEN" \
    -H "Content-Type: application/json" \
    -d @- << EOF
{"query" : "mutation {
  updateRole( input:
    { roleId: \"oM04QwJ9N3FDHdzqOyboxvjYSwQsXzA2\",
      displayName: \"Testers\",
      viewPermissions: [ ChangeDashboards, ReadAccess ]
    }
  )
  { role { usersCount } }
}"
}
EOF
Windows Cmd and curl
shell
curl -v -X POST $YOUR_LOGSCALE_URL/graphql ^
    -H "Authorization: Bearer $TOKEN" ^
    -H "Content-Type: application/json" ^
    -d @'{"query" : "mutation { ^
  updateRole( input: ^
    { roleId: \"oM04QwJ9N3FDHdzqOyboxvjYSwQsXzA2\", ^
      displayName: \"Testers\", ^
      viewPermissions: [ ChangeDashboards, ReadAccess ] ^
    } ^
  ) ^
  { role { usersCount } } ^
}" ^
} '
Windows Powershell and curl
powershell
curl.exe -X POST 
    -H "Authorization: Bearer $TOKEN"
    -H "Content-Type: application/json"
    -d '{"query" : "mutation {
  updateRole( input:
    { roleId: \"oM04QwJ9N3FDHdzqOyboxvjYSwQsXzA2\",
      displayName: \"Testers\",
      viewPermissions: [ ChangeDashboards, ReadAccess ]
    }
  )
  { role { usersCount } }
}"
}'
    "$YOUR_LOGSCALE_URL/graphql"
Perl
perl
#!/usr/bin/perl

use HTTP::Request;
use LWP;

my $TOKEN = "TOKEN";

my $uri = '$YOUR_LOGSCALE_URL/graphql';

my $query = "mutation {
  updateRole( input:
    { roleId: \"oM04QwJ9N3FDHdzqOyboxvjYSwQsXzA2\",
      displayName: \"Testers\",
      viewPermissions: [ ChangeDashboards, ReadAccess ]
    }
  )
  { role { usersCount } }
}";
$query =~ s/\n/ /g;
my $json = sprintf('{"query" : "%s"}',$query);
my $req = HTTP::Request->new("POST", $uri );

$req->header("Authorization" => "Bearer $TOKEN");
$req->header("Content-Type" => "application/json");

$req->content( $json );

my $lwp = LWP::UserAgent->new;

my $result = $lwp->request( $req );

print $result->{"_content"},"\n";
Python
python
#! /usr/local/bin/python3

import requests

url = '$YOUR_LOGSCALE_URL/graphql'
mydata = r'''{"query" : "mutation {
  updateRole( input:
    { roleId: \"oM04QwJ9N3FDHdzqOyboxvjYSwQsXzA2\",
      displayName: \"Testers\",
      viewPermissions: [ ChangeDashboards, ReadAccess ]
    }
  )
  { role { usersCount } }
}"
}'''

resp = requests.post(url,
                     data = mydata,
                     headers = {
   "Authorization" : "Bearer $TOKEN",
   "Content-Type" : "application/json"
}
)

print(resp.text)
Node.js
javascript
const https = require('https');

const data = JSON.stringify(
    {"query" : "mutation {
  updateRole( input:
    { roleId: \"oM04QwJ9N3FDHdzqOyboxvjYSwQsXzA2\",
      displayName: \"Testers\",
      viewPermissions: [ ChangeDashboards, ReadAccess ]
    }
  )
  { role { usersCount } }
}"
}
);


const options = {
  hostname: '$YOUR_LOGSCALE_URL/graphql',
  path: '/graphql',
  port: 443,
  method: 'POST',
  headers: {
    'Content-Type': 'application/json',
    'Content-Length': data.length,
    Authorization: 'BEARER ' + process.env.TOKEN,
    'User-Agent': 'Node',
  },
};

const req = https.request(options, (res) => {
  let data = '';
  console.log(`statusCode: ${res.statusCode}`);

  res.on('data', (d) => {
    data += d;
  });
  res.on('end', () => {
    console.log(JSON.parse(data).data);
  });
});

req.on('error', (error) => {
  console.error(error);
});

req.write(data);
req.end();
Example Responses
Success (HTTP Response Code 200 OK)
json
{
  "data": {
    "updateRole": {
      "role": {
        "usersCount": 6
      }
    }
  }
}

Given Datatypes

UpdateRoleInput has several parameters. Below is a list of them along with a description of each:

Table: UpdateRoleInput

ParameterTypeRequiredDefaultStabilityDescription
Some arguments may be required, as indicated in the Required column. For some fields, this column indicates that a result will always be returned for this column.
Table last updated: Aug 18, 2025
colorstring  Long-TermThe color for displaying the role.
descriptionstring  Long-TermThe description of the role to update.
displayNamestringyes Long-TermThe display name of the role to update.
objectActionObjectAction  Long-TermThe object of the action. See ObjectAction.
organizationManagementPermissions[OrganizationManagementPermission]  Long-TermList of permissions given for organization management. See OrganizationManagementPermission.
organizationPermissions[OrganizationPermission]  Long-TermList of permissions given for the organization. See OrganizationPermission.
roleIdstringyes Long-TermThe unique identifier of the role to update.
systemPermissions[SystemPermission]  Long-TermList of permissions given for users who are assigned the role. See SystemPermission.
viewPermissions[Permission]yes Long-TermA list of permissions associated with the view. See Permission.

Returned Datatypes

The returned datatype UpdateRoleMutation has one parameter and several sub-parameters. Click on the link below to see a table containing the sub-parameters:

Table: UpdateRoleMutation

ParameterTypeRequiredDefaultStabilityDescription
Some arguments may be required, as indicated in the Required column. For some fields, this column indicates that a result will always be returned for this column.
Table last updated: Oct 4, 2024
roleRoleyes Long-TermThe role to update. See Role.