Retrieve the global catalog ACL, or display that portion of the global catalog ACL which relates to a particular principal.
/api/v1/cat/get_acl?cat=catalog&principal=<principal>&vdc=controller-name
Name of the catalog
A URL-encoded principal
Name of the target virtual data center
synchronous
GET
Example: URL-encoded principal
A URL-encoded principal. E.g. local:user:api@3tera.com should be passed as local%3Auser%3Aapi%403tera.com.
GET http://192.168.123.200/api/v1/cat/get_acl?cat=/test&principal=&vdc=mygrid
{
"acl" : {
"owner" : {
"id" : "b543eff7-db88-4d79-a11c-4de22d5e6d3b"
},
"entries" : {
"entries[0]" : {
"id" : "4f865f5b-e63a-410a-9d9a-96427c3ecfc7",
"full" : 1
},
"entries[1]" : {
"id" : "b543eff7-db88-4d79-a11c-4de22d5e6d3b",
"full" : 1
}
}
}
}
<acl>
<entries>
<name>entries[0]</name>
<full>1</full>
<id>4f865f5b-e63a-410a-9d9a-96427c3ecfc7</id>
</entries>
<entries>
<name>entries[1]</name>
<configure>1</configure>
<id>b543eff7-db88-4d79-a11c-4de22d5e6d3b</id>
</entries>
<owner>
<id>b543eff7-db88-4d79-a11c-4de22d5e6d3b</id>
</owner>
</acl>
Example: Display ACL data for principal
Display the ACL data for principal local:user:api@3tera.com for catalog test
GET http://192.168.123.200/api/v1/cat/get_acl?cat=/test&principal=local%3Auser%3Aapi%403tera.com&vdc=mygrid
{
"acl" : {
"entries" : {
"entries[0]" : {
"id" : "4f865f5b-e63a-410a-9d9a-96427c3ecfc7",
"full" : 1
}
}
}
<acl>
<entries>
<name>entries[0]</name>
<full>1</full>
<id>4f865f5b-e63a-410a-9d9a-96427c3ecfc7</id>
</entries>
</acl>
Entity vdc mygrid not found - A VDC name was specified that is not configured in the WS_API application.
Missing required arguments (cat)
- Argument cat=cat missing
Missing required arguments (principal)
- Argument principal=principal missing
Entity not found - Catalog test does not exist.
- A catalog was specified that does not exist on mygrid.
Entity not found - Failed to retrieve application ACL - ACL does not contain principal local user 'test@3tera.com'.
- An invalid principal was specified
Note: This API is available with WS_API_r6-1.0.6-1 and above.
Replace the entire catalog ACL.
/api/v1/cat/put_acl?cat=catlog&owner=<owner>&acl=<ACLs>&vdc=controller-name
Name of the catalog
A URL-encoded owner attribute of the grid ACL to the specified principal
URL-encoded list of principals separated with a slash (/)
synchronous
GET
Replace the entire ACL for catalog test with an owner api@3tera.com
GET http://192.168.123.200/api/v1/cat/put_acl?cat=/test&owner=local%3Auser%3Aapi%403tera.com&acl=&vdc=mygrid
Replace the entire ACL for catalog test with an owner api@3tera.com and principal local:user:api@3tera.com=full
GET http://192.168.123.200/api/v1/cat/put_acl?cat=/test&owner=local%3Auser%3Aapi%403tera.com&acl= local%3Auser%3Aapi%403tera.com%3Dfull&vdc=mygrid
Replace the entire ACL for catalog test with an owner api@3tera.com and principal local:user:api@3tera.com=full/local:user:test@3tera.com=configure.
GET http://192.168.123.200/api/v1/cat/put_acl?cat=/test&owner=local%3Auser%3Aapi%403tera.com&acl=local%3Auser%3Aapi%403tera.com%3Dfull%2Flocal%3Auser%3Atest%403tera.com%3Dconfigure&vdc=mygrid
{
"message" : ""
}
<message></message>
Entity vdc mygrid not found - A VDC name was specified that is not configured in the WS_API application.
Missing required arguments (cat)
- Argument cat=cat missing
Missing required arguments (owner)
- Argument owner=owner
Missing required arguments (acl)
- Argument acl=acl missing
Entity not found - Catalog test does not exist.
- A catalog was specified that does not exist on mygrid.
Entity not found - Failed to put catalog ACL - invalid principal data - principal local user 'test@3tera.com' does not exist.
- An invalid owner or acl was specified
Note: This API is available with WS_API_r6-1.0.6-1 and above.
Replace that portion of the catalog ACL which relates to the owner or a principal.
/api/v1/cat/modify_acl?cat=catalog&acl=<ACLs>&vdc=controller-name
Name of the catalog
URL-encoded list of principals separated with a slash (/)
synchronous
GET
Modify the ACL for catalog test by replacing the owner with api@3tera.com
GET http://192.168.123.200/api/v1/cat/modify_acl?cat=/test&acl=local%3Auser%3Aapi%403tera.com%3Downer&vdc=mygrid
Modify the ACL for application test by replacing the owner api@3tera.com and principal local:user:api@3tera.com=full
GET http://192.168.123.200/api/v1/cat/modify_acl?cat=/test&acl=local%3Auser%3Aapi%403tera.com%3Downer%2Flocal%3Auser%3Aapi%403tera.com%3Dfull&vdc=mygrid
Modify the ACL for application by replacing the access levels for test@3tera.com and api@3tera.com and principal local:user:api@3tera.com=configure/local:user:test@3tera.com=read.
GET http://192.168.123.200/api/v1/cat/modify_acl?cat=/test&acl=local%3Auser%3Aapi%403tera.com%3Dconfigure%2Flocal%3Auser%3Atest%403tera.com%3Dread&vdc=mygrid
{
"message" : ""
}
<message></message>
Entity vdc mygrid not found - A VDC name was specified that is not configured in the WS_API application.
Missing required arguments (cat)
- Argument cat=cat missing
Missing required arguments (acl)
- Argument acl=acl missing
Entity not found - Catalog test does not exist.
- A catalog was specified that does not exist on mygrid.
Entity not found - Failed to put catalog ACL - invalid principal data - principal local user 'test@3tera.com' does not exist.
- An invalid owner or acl was specified
Note: This API is available with WS_API_r6-1.0.6-1 and above.
|
Copyright © 2012 CA.
All rights reserved.
|
|