updateRole()

Security Requirements and Controls

Manage users API permission

API Stability Long-Term

The updateRole() GraphQL mutation is used to update a user role in LogScale. This includes changing the permissions granted to users assigned the role.

For more information in general on user accounts in LogScale, see the Manage Users and Permissions documentation page. For more on user roles, see the Manage Roles and Edit a user role pages.

Syntax

graphql

updateRole(
     input: UpdateRoleInput!
   ): UpdateRoleMutation!

Example

Below is an example of how this mutation field might be used:

Raw

graphql

mutation {
  updateRole( input:
    { roleId: "oM04QwJ9N3FDHdzqOyboxvjYSwQsXzA2",
      displayName: "Testers",
      viewPermissions: [ ChangeDashboards, ReadAccess ]
    }
  )
  { role { usersCount } }
}

Mac OS or Linux (curl)

shell

curl -v -X POST $YOUR_LOGSCALE_URL/graphql \
    -H "Authorization: Bearer $TOKEN" \
    -H "Content-Type: application/json" \
    -d @- << EOF
{"query" : "mutation {
  updateRole( input:
    { roleId: \"oM04QwJ9N3FDHdzqOyboxvjYSwQsXzA2\",
      displayName: \"Testers\",
      viewPermissions: [ ChangeDashboards, ReadAccess ]
    }
  )
  { role { usersCount } }
}"
}
EOF

Mac OS or Linux (curl) One-line

shell

curl -v -X POST $YOUR_LOGSCALE_URL/graphql \
    -H "Authorization: Bearer $TOKEN" \
    -H "Content-Type: application/json" \
    -d @- << EOF
{"query" : "mutation {
  updateRole( input:
    { roleId: \"oM04QwJ9N3FDHdzqOyboxvjYSwQsXzA2\",
      displayName: \"Testers\",
      viewPermissions: [ ChangeDashboards, ReadAccess ]
    }
  )
  { role { usersCount } }
}"
}
EOF

Windows Cmd and curl

shell

curl -v -X POST $YOUR_LOGSCALE_URL/graphql ^
    -H "Authorization: Bearer $TOKEN" ^
    -H "Content-Type: application/json" ^
    -d @'{"query" : "mutation { ^
  updateRole( input: ^
    { roleId: \"oM04QwJ9N3FDHdzqOyboxvjYSwQsXzA2\", ^
      displayName: \"Testers\", ^
      viewPermissions: [ ChangeDashboards, ReadAccess ] ^
    } ^
  ) ^
  { role { usersCount } } ^
}" ^
} '

Windows Powershell and curl

powershell

curl.exe -X POST 
    -H "Authorization: Bearer $TOKEN"
    -H "Content-Type: application/json"
    -d '{"query" : "mutation {
  updateRole( input:
    { roleId: \"oM04QwJ9N3FDHdzqOyboxvjYSwQsXzA2\",
      displayName: \"Testers\",
      viewPermissions: [ ChangeDashboards, ReadAccess ]
    }
  )
  { role { usersCount } }
}"
}'
    "$YOUR_LOGSCALE_URL/graphql"

Perl

perl

#!/usr/bin/perl

use HTTP::Request;
use LWP;

my $TOKEN = "TOKEN";

my $uri = '$YOUR_LOGSCALE_URL/graphql';

my $query = "mutation {
  updateRole( input:
    { roleId: \"oM04QwJ9N3FDHdzqOyboxvjYSwQsXzA2\",
      displayName: \"Testers\",
      viewPermissions: [ ChangeDashboards, ReadAccess ]
    }
  )
  { role { usersCount } }
}";
$query =~ s/\n/ /g;
my $json = sprintf('{"query" : "%s"}',$query);
my $req = HTTP::Request->new("POST", $uri );

$req->header("Authorization" => "Bearer $TOKEN");
$req->header("Content-Type" => "application/json");

$req->content( $json );

my $lwp = LWP::UserAgent->new;

my $result = $lwp->request( $req );

print $result->{"_content"},"\n";

Python

python

#! /usr/local/bin/python3

import requests

url = '$YOUR_LOGSCALE_URL/graphql'
mydata = r'''{"query" : "mutation {
  updateRole( input:
    { roleId: \"oM04QwJ9N3FDHdzqOyboxvjYSwQsXzA2\",
      displayName: \"Testers\",
      viewPermissions: [ ChangeDashboards, ReadAccess ]
    }
  )
  { role { usersCount } }
}"
}'''

resp = requests.post(url,
                     data = mydata,
                     headers = {
   "Authorization" : "Bearer $TOKEN",
   "Content-Type" : "application/json"
}
)

print(resp.text)

Node.js

javascript

const https = require('https');

const data = JSON.stringify(
    {"query" : "mutation {
  updateRole( input:
    { roleId: \"oM04QwJ9N3FDHdzqOyboxvjYSwQsXzA2\",
      displayName: \"Testers\",
      viewPermissions: [ ChangeDashboards, ReadAccess ]
    }
  )
  { role { usersCount } }
}"
}
);


const options = {
  hostname: '$YOUR_LOGSCALE_URL',
  path: 'graphql',
  port: 443,
  method: 'POST',
  headers: {
    'Content-Type': 'application/json',
    'Content-Length': data.length,
    Authorization: 'BEARER ' + process.env.TOKEN,
    'User-Agent': 'Node',
  },
};

const req = https.request(options, (res) => {
  let data = '';
  console.log(`statusCode: ${res.statusCode}`);

  res.on('data', (d) => {
    data += d;
  });
  res.on('end', () => {
    console.log(JSON.parse(data).data);
  });
});

req.on('error', (error) => {
  console.error(error);
});

req.write(data);
req.end();

Example Responses

Success (HTTP Response Code 200 OK)

json

{
  "data": {
    "updateRole": {
      "role": {
        "usersCount": 6
      }
    }
  }
}

Given Datatype

For this input datatype, you'll have to give the unique identifier of the role you want to update, the display name, the permissions assigned the role, and whatever else you want to change. The table below provides more details:

Table: UpdateRoleInput

Parameter	Type	Required	Stability	Description
Some arguments may be required, as indicated in the Required column. For return datatypes, this indicates that you must specify which fields you want returned in the results.
Table last updated: Aug 18, 2025
color	string		`Long-Term`	The color for displaying the role.
description	string		`Long-Term`	The description of the role to update.
displayName	string	yes	`Long-Term`	The display name of the role to update.
objectAction	ObjectAction		`Long-Term`	The object of the action. See ObjectAction.
organizationManagementPermissions	[OrganizationManagementPermission]		`Long-Term`	List of permissions given for organization management. See OrganizationManagementPermission.
organizationPermissions	[OrganizationPermission]		`Long-Term`	List of permissions given for the organization. See OrganizationPermission.
roleId	string	yes	`Long-Term`	The unique identifier of the role to update.
systemPermissions	[SystemPermission]		`Long-Term`	List of permissions given for users who are assigned the role. See SystemPermission.
viewPermissions	[Permission]	yes	`Long-Term`	A list of permissions associated with the view. See Permission.

Returned Datatype

For the return datatype, through sub-parameters, you can get information on the group, such as how many users, a list of them, and which assets they can access. You can also get a list of roles using the roles parameter. The table below contains a link to another table with the sub-parameters:

Table: UpdateRoleMutation

Parameter	Type	Required	Stability	Description
Some arguments may be required, as indicated in the Required column. For return datatypes, this indicates that you must specify which fields you want returned in the results.
Table last updated: Oct 4, 2024
role	Role	yes	`Long-Term`	The role to update. See Role.

Versions of this Page

GraphQL Mutations

GraphQL API Stability

GraphQL Queries

GraphQL Datatypes

updateRole()

Security Requirements and Controls

Syntax

Example

Given Datatype

Returned Datatype

Other articles on this topic

Similar Content

Related Language Syntax

Terminology

Related KB Articles

Related Release Notes

Related GraphQL API

Training

Enter search term