Permissions Matrix for Next Generation Cloud Servers


The following permissions matrix displays specific permissions for the roles in Next Gen Cloud Servers. The matrix displays the method names, their corresponding RESTful API commands, and the roles that are supported.  

API Documentation

Related Knowledge Center Articles

Next Generation Cloud Servers Terminology

As of April 21, 2014

CAPABILITYROLEDESCRIPTION 

Method Name

API Action

Observer

Creator

Admin

 

Servers

List Servers GET /serverscheckcheckcheckLists IDs, names, and links for all servers.
List All Details for All Servers GET /servers/detailcheckcheckcheckLists all details for all servers. 
Create Server POST /servers checkcheckCreates a server.
Get Server Details GET /servers/{id}checkcheckcheckLists details for a specified server.
Update Server PUT /servers/{id}  checkUpdates one or more editable attributes for a specified server.

Delete Server

*Note: The user must also have a Cloud Block Storage Admin role. 

DELETE /servers/{id}  checkDeletes a specified server.

Server Key Pairs

Create or Upload a New Keypair POST /os-keypairs  checkcheck Generates or uploads a keypair consisting of private key/public key.
List Keypairs GET /os-keypairs  checkcheck Lists a keypair consisting of private key/public key.
Delete Server Keypair DELETE /os-keypairs/{keypair name}  check Deletes a keypair of a specified name.

Server Addresses

List Addresses GET /servers/{id}/ipscheckcheckcheckLists all networks and server addresses associated with a specified server.
List Addresses by Network GET /servers/{id}/ips/{networkLabel}checkcheckcheckLists addresses associated with a specified server and network.

Server Actions

Change Administrator password, Reboot Server, Rebuild Server, Resize Server, Confirm Resized Server, Revert Resized Server, Enter Resuce Mode, Exit Rescue Mode, or Create Image POST /servers/{id}/action  checkPerforms the requested action.

Volume Attachment Actions

Attach Volume to Server

*Note: The user must also have a Cloud Block Storage Admin or Creator role. 

POST /servers/{id}/os-volume_attachments checkcheckAttaches a volume to the specified server.
List Volume Attachments GET /servers/{id}/os-volume_attachmentscheckcheckcheckLists the volume attachments for the specified server.
Get Volume Attachment Details GET /servers/{id}/os-volume_attachments/{attachment_id}checkcheckcheckLists volume details for the specified volume attachment ID.
Delete Volume Attachment DELETE /servers/{id}/os-volume_attachments/{attachment_id}  checkDeletes a specified volume attachment from a specified server instance.

Flavors

List Flavors GET /flavorscheckcheckcheckLists IDs, names, and links for all available flavors.
Get All Flavors Details GET /flavors/detailcheckcheckcheckLists all details for all available flavors.
Get Flavor Details GET /flavors/{id}checkcheckcheckLists details of the specified flavor.

Images

Create Images

POST /servers/{id}/action

  checkCreates an image.
List Images GET /imagescheckcheckcheckLists IDs, names, and links for all available images.
Get All Image Details GET /images/detailcheckcheckcheckList all details for all available images.
Get Image Details GET /images/{id}checkcheckcheckLists details of the specified image
Delete Image DELETE /images/{id}  checkDeletes the specified image.

Metadata

List Metadata Associated with a Server GET /servers/{id}/metadatacheckcheckcheckLists all metadata associated with a server.
List Metadata Associated with an Image GET /images/{id}/metadatacheckcheckcheckLists all metadata associated with an image.
Set Metadata for a Specified Server PUT /servers/{id}/metadata  checkSets metadata for the specified server.
Set Metadata for a Specified Image PUT /images/{id}/metadata  checkSets metadata for the specified image.
Update Metadata Items for a Specified Server POST /servers/{id}/metadata  checkUpdates metadata items for the specified server.
Update Metadata Items for a Specified Image POST /images/{id}/metadata  checkUpdates metadata items for the specified image.
Get a Metadata Item Associated with a Server GET /servers/{id}/metadata/keycheckcheckcheckRetrieves a single metadata item associated with a server.
Get a Metadata Item Associated with an Image GET /images/{id}/metadata/keycheckcheckcheckRetrieves a single metadata item associated with an image.
Set a Metadata Item for a Specified Server PUT /servers/{id}/metadata/{key}  checkSets a metadata item for a specified server.
Set a Metadata Item for a Specified Image PUT /images/{id}/metadata/{key}  checkSets a metadata item for a specified image.
Delete a Metadata Item for a Specified Server DELETE /servers/{id}/metadata/{key}  checkDeletes a metadata item for the specified server.
Delete a Metadata Item for a Specified Image DELETE /images/{id}/metadata/{key}  checkDeletes a metadata item for the specified image.

RACKSPACE EXTENSIONS

Used Limits Extension

Used Limits Extension GET v2/{tenant_id}/limitscheckcheckcheckExtends limits to include information about the absolute limits that are currently used.

Scheduled Images Extension

Enable Scheduled Images POST /servers/{serverId}/rax-si-image-schedule  checkcheckEnables scheduled images on a server, by creating an image_schedule resource.
Show Scheduled Images GET /servers/{serverId}/rax-si-image-schedule check checkcheck Shows scheduled images setting.
Disable Scheduled Images DELETE /servers/{serverId}/rax-si-image-schedule  checkDisables scheduled images by deleting the image_schedule resource that indicates the scheduled image service should create snapshots of this server.

CLOUD NETWORKS

Networks

List Networks GET /os-networksv2checkcheckcheck Lists the networks configured for a specified tenant ID.
Create Network POST /os-networksv2 checkcheck Creates a network for a specified tenant ID.
Provision Server and Attach Networks POST /os-networksv2 checkcheck Provisions a new server with specified networks.
Shows Network GET /os-networksv2/{id}checkcheckcheck Shows information for a specified network ID.
Delete Network DELETE /os-networksv2/{id}  check Deletes a specified network.

Virtual Interfaces

List Virtual Interfaces  GET /servers/{instance_id}/os-virtual-interfacesv2checkcheckcheck Lists all virtual interfaces configured for a server instance.
Create Virtual Interface  POST /servers/{instance_id}/os-virtual-interfacesv2 checkcheck Creates a virtual interface for a network and attaches the network to a server instance.
Delete Virtual Interface DELETE /servers/{instance_id}/os-virtual-interfacesv2/interface_id  check Deletes a virtual interface from a server instance.

 

Next Generation Cloud Servers Terminology

Flavor

A resource configuration for a server. Each flavor is a unique combination of disk, memory, vCPUs, and network bandwidth.

Image

A collection of files for a specific operating system (OS) that you use to create or rebuild a server. Rackspace provides pre-built images. You can also create custom images from servers that you have launched. Custom images can be used for data backups or as "gold" images for additional servers.

Key Pair

A cryptographic combination of public and private keys used for asymmetric encryption.

Server

A virtual machine (VM) instance in the Cloud Servers environment. To create a server, you must specify a name, flavor reference, and image reference.

 

< Permission Matrices for RBAC

 



Was this content helpful?




© 2015 Rackspace US, Inc.

Except where otherwise noted, content on this site is licensed under a Creative Commons Attribution-NonCommercial-NoDerivs 3.0 Unported License


See license specifics and DISCLAIMER