Policy configuration¶
Configuration¶
The following is an overview of all available policies in Karbor. For a sample configuration file.
karbor¶
context_is_adminDefault: role:admin(no description provided)
admin_or_ownerDefault: is_admin:True or (role:admin and is_admin_project:True) or project_id:%(project_id)s(no description provided)
defaultDefault: rule:admin_or_owner(no description provided)
admin_apiDefault: is_admin:True or (role:admin and is_admin_project:True)(no description provided)
plan:createDefault: rule:admin_or_ownerOperations: - POST
/plans
Create a plan.
- POST
plan:updateDefault: rule:admin_or_ownerOperations: - PUT
/plans/{plan_id}
Update a plan.
- PUT
plan:deleteDefault: rule:admin_or_ownerOperations: - DELETE
/plans/{plan_id}
Delete a plan.
- DELETE
plan:getDefault: rule:admin_or_ownerOperations: - GET
/plans/{plan_id}
Get a plan.
- GET
plan:get_allDefault: rule:admin_or_ownerOperations: - GET
/plans
Get plans.
- GET
restore:createDefault: rule:admin_or_ownerOperations: - POST
/restores
Create a restore.
- POST
restore:updateDefault: rule:admin_or_ownerOperations: - PUT
/restores
Update a restore.
- PUT
restore:getDefault: rule:admin_or_ownerOperations: - GET
/restores/{restore_id}
Get a restore.
- GET
restore:get_allDefault: rule:admin_or_ownerOperations: - GET
/restores
Get restores.
- GET
protectable:getDefault: rule:admin_or_ownerOperations: - GET
/protectables/{protectable_type}
Show a protectable type.
- GET
protectable:get_allDefault: rule:admin_or_ownerOperations: - GET
/protectables
List protectable types.
- GET
protectable:instance_getDefault: rule:admin_or_ownerOperations: - GET
/protectables/{protectable_type}/instances/{resource_id}
Show a protectable instance.
- GET
protectable:instance_get_allDefault: rule:admin_or_ownerOperations: - GET
/protectables/{protectable_type}/instances
List protectable instances.
- GET
provider:getDefault: rule:admin_or_ownerOperations: - GET
/providers/{provider_id}
Show a protection provider.
- GET
provider:get_allDefault: rule:admin_or_ownerOperations: - GET
/providers
List protection providers.
- GET
provider:checkpoint_getDefault: rule:admin_or_ownerOperations: - GET
/providers/{provider_id}/checkpoints/{checkpoint_id}
Show a checkpoint.
- GET
provider:checkpoint_get_allDefault: rule:admin_or_ownerOperations: - GET
/providers/{provider_id}/checkpoints
List checkpoints.
- GET
provider:checkpoint_createDefault: rule:admin_or_ownerOperations: - POST
/providers/{provider_id}/checkpoints
Create checkpoint.
- POST
provider:checkpoint_deleteDefault: rule:admin_or_ownerOperations: - DELETE
/providers/{provider_id}/checkpoints/{checkpoint_id}
Delete checkpoint.
- DELETE
provider:checkpoint_updateDefault: rule:admin_or_ownerOperations: - PUT
/providers/{provider_id}/checkpoints/{checkpoint_id}
Reset checkpoint state.
- PUT
trigger:createDefault: rule:admin_or_ownerOperations: - POST
/triggers
Create a trigger.
- POST
trigger:updateDefault: rule:admin_or_ownerOperations: - PUT
/triggers/{trigger_id}
Update a trigger.
- PUT
trigger:deleteDefault: rule:admin_or_ownerOperations: - DELETE
/triggers/{trigger_id}
Delete a trigger.
- DELETE
trigger:getDefault: rule:admin_or_ownerOperations: - GET
/triggers/{trigger_id}
Get a trigger.
- GET
trigger:listDefault: rule:admin_or_ownerOperations: - GET
/triggers
Get triggerss.
- GET
scheduled_operation:createDefault: rule:admin_or_ownerOperations: - POST
/scheduled_operations
Create a scheduled_operation.
- POST
scheduled_operation:deleteDefault: rule:admin_or_ownerOperations: - DELETE
/scheduled_operations/{scheduled_operation_id}
Delete a scheduled_operation.
- DELETE
scheduled_operation:getDefault: rule:admin_or_ownerOperations: - GET
/scheduled_operations/{scheduled_operation_id}
Get a scheduled_operation.
- GET
scheduled_operation:listDefault: rule:admin_or_ownerOperations: - GET
/scheduled_operations
Get scheduled_operations.
- GET
operation_log:getDefault: rule:admin_or_ownerOperations: - GET
/operation_logs/{operation_log_id}
Get an operation_log.
- GET
operation_log:listDefault: rule:admin_or_ownerOperations: - GET
/operation_logs
Get operation_logs.
- GET
verification:createDefault: rule:admin_or_ownerOperations: - POST
/verifications
Create a verification.
- POST
verification:getDefault: rule:admin_or_ownerOperations: - GET
/verifications/{verification_id}
Get a verification.
- GET
verification:get_allDefault: rule:admin_or_ownerOperations: - GET
/verifications
Get verifications.
- GET
service:get_allDefault: rule:admin_apiOperations: - GET
/os-services
List services.
- GET
service:updateDefault: rule:admin_apiOperations: - PUT
/os-services/{service_id}
Update service status
- PUT
quota:updateDefault: rule:admin_apiOperations: - PUT
/quotas/{project_id}
Update quotas for a project.
- PUT
quota:deleteDefault: rule:admin_apiOperations: - DELETE
/quotas/{project_id}
Delete quotas for a project.
- DELETE
quota:getDefault: rule:admin_or_ownerOperations: - GET
/quotas/{project_id}
Get quotas for a project.
- GET
quota:get_defaultDefault: rule:admin_or_ownerOperations: - GET
/quotas/{project_id}/defaults
Get default quotas for a project.
- GET
quota_class:updateDefault: rule:admin_apiOperations: - PUT
/quota_classes/{quota_class_name}
Update quota classes.
- PUT
quota_class:getDefault: rule:admin_or_ownerOperations: - GET
/quota_classes/{quota_class_name}
Get quota classes.
- GET
copy:createDefault: rule:admin_or_ownerOperations: - POST
/{project_id}/providers/{provider_id}/checkpoints/action
Create a copy.
- POST
Except where otherwise noted, this document is licensed under Creative Commons Attribution 3.0 License. See all OpenStack Legal Documents.