Permissions matrix for Cloud Databases


The following permissions matrix displays specific permissions for the roles in Cloud Databases. The matrix displays the method names, their corresponding RESTful API commands, and the roles that are supported.

API Documentation

Related Knowledge Center Articles

Cloud Databases Terminology

Updated November 25, 2014

CAPABILITY ROLE DESCRIPTION 
Method name API action Observer Creator Admin  

VERSIONS

List versions GET / Lists information about all versions of the API.
List version details GET /{version} Returns detailed information about the specified version of the API.

DATABASE INSTANCES

Create database instance POST /instances   Creates a new database instance.
List all database instances GET /instances Lists the status and information for all database instances.
Update database instance PUT /instances/{instancesId}    Associates a specified database instance with the configuration group. 
List database instance status and details GET /instances/{instanceId} Lists status and details for the specified database instance.
Delete database Instance DELETE /instances/{instanceId}     Deletes the specified database instance.
Get default configuration GET /instances/{instanceId}/configuration

Lists the defaultMySQL configuration settings from the template that were applied to the specified instance.

Enable root user POST /instances/{instanceId}/root     Enables the root user for the specified database instance and returns the root password.
List root-enabled status GET /instances/{instanceId}/root Returns true if the root user is enabled for the specified database instance or false otherwise.

DATABASE INSTANCE ACTIONS

Restart instance POST /instances/{instanceId}/action     Restarts the database service on the specified instance.
Resize the instance POST /instances/{instanceId}/action     Resizes the memory of the specified instance.
Resize the instance volume POST /instances/{instanceId}/action     Resizes the volume attached to the Instance.

DATABASES

Create database POST /instances/{instanceId}/databases   Creates a new database within the specified instance.
List databases for instance GET /instances/{instanceId}/databases Lists databases for the specified instance.
Delete database DELETE /instances/{instanceId}/databases/{databaseName}     Deletes the specified database.

USERS

Create user POST /instances/{instanceId}/users   Creates a user for the specified database instance.
List users in database instance GET /instances/{instanceId}/users Lists the users in the specified database instance.
List user GET /instances/{instanceId}/users/{name} Shows a list of all the databases to which a user has access.
List user access GET /instances/{instanceId}/users/{name}/databases Lists user access for the specified database instance.
Grant user access PUT /instances/{instanceId}/users/{name}/databases   Grants access for the specified user to one or more databases for the specified instance.
Delete user access DELETE /instances/{instanceId}/users/{name}/databases/{database}     Removes access to the specified database for the specified user.
Delete user DELETE /instances/{instanceId}/users/{name}     Deletes the specified user from the specified database instance.
Change user passwords PUT /instances/{instanceId}/users     Changes the user passwords for the specified database instance.
Modify user attributes PUT /instances/{instanceId}/users/{name}     Modifies one or more of the following values for the specified user: name, password, or the host from which the user is allowed to connect to the database.

FLAVORS

List flavors GET /flavors Lists information for all available flavors.
List flavors by ID GET /flavors/{flavorId} Lists information about the specified flavor.

*BACKUPS (available only with the API)

Create backup POST /backups   Creates a new backup for a database instance.
Delete backup DELETE /backups/{backupId}     Deletes the specified backup.
List backups GET /backups Lists all backups for all database instances.
List backup by ID GET /backups/{backupId}     Lists details about the specified backup.
List backups for instance GET /instance/{instanceId}/backups     Lists all backups for the specified instance.
Restore backup POST /instances   Creates a new database instance from a backup.

REPLICATION

Create replica POST /instances  

Creates a replica of the source instance.

List all replicas and replica source database instances GET /instances

Lists the status and information for all replicas or replica sources.

List replica source GET /instances{instanceId}

Lists status and details for the specified replica source instance.

List replica details GET /instances{instanceId}

Lists status and details for the specified replica.

Detach replica PATCH /instances{instanceId}  

Detaches the specified replica instance from its replication source instance.

CONFIGURATIONS

List configurations GET /configurations Lists all defined configuration groups for the tenant.
Create configuration POST /configurations   Creates a new configuration group.
List configuration details GET / configurations/{configId} Lists details for the specified configuration group.
Update some configuration parameters PATCH / configurations/{configId}   Updates some of the configuration parameters associated with the specified configuration group.
Replace all configuration parameters PUT /configurations/{configId}   Replaces all the configuration parameters associated with the specified configuration group.
Delete configuration group DELETE /configurations/{configId}     Deletes the specified configuration group.
List instances for configuration GET / configurations/{configId}/instances Lists instances that are associated with the specified configuration group.

CONFIGURATIONS PARAMETERS

List configuration parameters GET /datastores/{datastoreId}/versions/{versionId}/parameters Lists configuration parameters that may be configured on the system.
List configuration parameter details  GET /datastores/{datastoreId}/versions/{versionId}/parameters/{parameterId} Lists the details of a specified configuration parameter that may be configured on the system.
List configuration parameters without datastore GET /datastores/versions/{versionId}/parameters Lists the configuration parameters that may be configured on the system without specifying a datastore.
List configuration parameter details without datastore  GET /datastores/versions/{versionId}/parameters/{parameterId} Lists the details of a specified configuration parameter that may be configured on the system without specifying a datastore.

DATASTORE TYPES AND VERSIONS

List all datastore types GET /datastores Lists all datastore types.
List all datastore types for datastore GET /datastores/{datastoreId} Lists all datastore types for the specified datastore.
List all datastore versions for datastore GET /datastores/{datastoreId}/versions Lists all datastore versions for the specified datastore.
List datastore version for specified version GET /datastores/{datastoreId}/versions/{versionId} Lists the datastore version for the specified version.

 

Cloud Databases terminology

The following terms are used to describe Cloud Databases.

Database

A MySQL database within a database instance.

Database instance

An isolated MySQL instance in a single-tenant environment on a shared host machine. 

Flavor

An available hardware configuration for a database instance. Each flavor has a unique combination of memory capacity and priority for CPU time.

Volume

User-specified storage that contains the MySQL data directory. Volumes are automatically provisioned on shared Interenet Small Computers System Interface (iSCSI) storage area networks (SAN) that provide for increased performance, scalability, availability, and manageability. 

 

< Permission Matrices for RBAC

 



Was this content helpful?




© 2014 Rackspace US, Inc.

Except where otherwise noted, content on this site is licensed under a Creative Commons Attribution-NonCommercial-NoDerivs 3.0 Unported License


See license specifics and DISCLAIMER