API tools faq
paste
Advertisement
Guest User

Untitled

a guest
Jun 19th, 2014
264
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 7.15 KB | None | 0 0
raw download clone embed print report
  1. # cat /etc/nova/policy.json
  2. {
  3. "context_is_admin": "role:admin",
  4. "admin_or_owner": "is_admin:True or project_id:%(project_id)s",
  5. "default": "rule:admin_or_owner",
  6.  
  7.  
  8. "compute:create": "",
  9. "compute:create:attach_network": "",
  10. "compute:create:attach_volume": "",
  11. "compute:create:forced_host": "is_admin:True",
  12. "compute:get_all": "",
  13. "compute:get_all_tenants": "",
  14.  
  15.  
  16. "admin_api": "is_admin:True",
  17. "compute_extension:accounts": "rule:admin_api",
  18. "compute_extension:admin_actions": "rule:admin_api",
  19. "compute_extension:admin_actions:pause": "rule:admin_or_owner",
  20. "compute_extension:admin_actions:unpause": "rule:admin_or_owner",
  21. "compute_extension:admin_actions:suspend": "rule:admin_or_owner",
  22. "compute_extension:admin_actions:resume": "rule:admin_or_owner",
  23. "compute_extension:admin_actions:lock": "rule:admin_api",
  24. "compute_extension:admin_actions:unlock": "rule:admin_api",
  25. "compute_extension:admin_actions:resetNetwork": "rule:admin_api",
  26. "compute_extension:admin_actions:injectNetworkInfo": "rule:admin_api",
  27. "compute_extension:admin_actions:createBackup": "rule:admin_or_owner",
  28. "compute_extension:admin_actions:migrateLive": "rule:admin_api",
  29. "compute_extension:admin_actions:resetState": "rule:admin_api",
  30. "compute_extension:admin_actions:migrate": "rule:admin_api",
  31. "compute_extension:aggregates": "rule:admin_api",
  32. "compute_extension:agents": "rule:admin_api",
  33. "compute_extension:attach_interfaces": "",
  34. "compute_extension:baremetal_nodes": "rule:admin_api",
  35. "compute_extension:cells": "rule:admin_api",
  36. "compute_extension:certificates": "",
  37. "compute_extension:cloudpipe": "rule:admin_api",
  38. "compute_extension:cloudpipe_update": "rule:admin_api",
  39. "compute_extension:console_output": "",
  40. "compute_extension:consoles": "",
  41. "compute_extension:coverage_ext": "rule:admin_api",
  42. "compute_extension:createserverext": "",
  43. "compute_extension:deferred_delete": "",
  44. "compute_extension:disk_config": "",
  45. "compute_extension:evacuate": "rule:admin_api",
  46. "compute_extension:extended_server_attributes": "rule:admin_api",
  47. "compute_extension:extended_status": "",
  48. "compute_extension:extended_availability_zone": "",
  49. "compute_extension:extended_ips": "",
  50. "compute_extension:fixed_ips": "rule:admin_api",
  51. "compute_extension:flavor_access": "",
  52. "compute_extension:flavor_disabled": "",
  53. "compute_extension:flavor_rxtx": "",
  54. "compute_extension:flavor_swap": "",
  55. "compute_extension:flavorextradata": "",
  56. "compute_extension:flavorextraspecs:index": "",
  57. "compute_extension:flavorextraspecs:show": "",
  58. "compute_extension:flavorextraspecs:create": "rule:admin_api",
  59. "compute_extension:flavorextraspecs:update": "rule:admin_api",
  60. "compute_extension:flavorextraspecs:delete": "rule:admin_api",
  61. "compute_extension:flavormanage": "rule:admin_api",
  62. "compute_extension:floating_ip_dns": "",
  63. "compute_extension:floating_ip_pools": "",
  64. "compute_extension:floating_ips": "",
  65. "compute_extension:floating_ips_bulk": "rule:admin_api",
  66. "compute_extension:fping": "",
  67. "compute_extension:fping:all_tenants": "rule:admin_api",
  68. "compute_extension:hide_server_addresses": "is_admin:False",
  69. "compute_extension:hosts": "rule:admin_api",
  70. "compute_extension:hypervisors": "rule:admin_api",
  71. "compute_extension:image_size": "",
  72. "compute_extension:instance_actions": "",
  73. "compute_extension:instance_actions:events": "rule:admin_api",
  74. "compute_extension:instance_usage_audit_log": "rule:admin_api",
  75. "compute_extension:keypairs": "",
  76. "compute_extension:multinic": "",
  77. "compute_extension:networks": "rule:admin_api",
  78. "compute_extension:networks:view": "",
  79. "compute_extension:networks_associate": "rule:admin_api",
  80. "compute_extension:quotas:show": "",
  81. "compute_extension:quotas:update": "rule:admin_api",
  82. "compute_extension:quota_classes": "",
  83. "compute_extension:rescue": "",
  84. "compute_extension:security_group_default_rules": "rule:admin_api",
  85. "compute_extension:security_groups": "",
  86. "compute_extension:server_diagnostics": "rule:admin_api",
  87. "compute_extension:server_password": "",
  88. "compute_extension:services": "rule:admin_api",
  89. "compute_extension:simple_tenant_usage:show": "rule:admin_or_owner",
  90. "compute_extension:simple_tenant_usage:list": "rule:admin_api",
  91. "compute_extension:users": "rule:admin_api",
  92. "compute_extension:virtual_interfaces": "",
  93. "compute_extension:virtual_storage_arrays": "",
  94. "compute_extension:volumes": "",
  95. "compute_extension:volume_attachments:index": "",
  96. "compute_extension:volume_attachments:show": "",
  97. "compute_extension:volume_attachments:create": "",
  98. "compute_extension:volume_attachments:delete": "",
  99. "compute_extension:volumetypes": "",
  100. "compute_extension:availability_zone:list": "",
  101. "compute_extension:availability_zone:detail": "rule:admin_api",
  102.  
  103.  
  104. "volume:create": "",
  105. "volume:get_all": "",
  106. "volume:get_volume_metadata": "",
  107. "volume:get_snapshot": "",
  108. "volume:get_all_snapshots": "",
  109.  
  110.  
  111. "volume_extension:types_manage": "rule:admin_api",
  112. "volume_extension:types_extra_specs": "rule:admin_api",
  113. "volume_extension:volume_admin_actions:reset_status": "rule:admin_api",
  114. "volume_extension:snapshot_admin_actions:reset_status": "rule:admin_api",
  115. "volume_extension:volume_admin_actions:force_delete": "rule:admin_api",
  116.  
  117.  
  118. "network:get_all": "",
  119. "network:get": "",
  120. "network:create": "",
  121. "network:delete": "",
  122. "network:associate": "",
  123. "network:disassociate": "",
  124. "network:get_vifs_by_instance": "",
  125. "network:allocate_for_instance": "",
  126. "network:deallocate_for_instance": "",
  127. "network:validate_networks": "",
  128. "network:get_instance_uuids_by_ip_filter": "",
  129. "network:get_instance_id_by_floating_address": "",
  130. "network:setup_networks_on_host": "",
  131. "network:get_backdoor_port": "",
  132.  
  133. "network:get_floating_ip": "",
  134. "network:get_floating_ip_pools": "",
  135. "network:get_floating_ip_by_address": "",
  136. "network:get_floating_ips_by_project": "",
  137. "network:get_floating_ips_by_fixed_address": "",
  138. "network:allocate_floating_ip": "",
  139. "network:deallocate_floating_ip": "",
  140. "network:associate_floating_ip": "",
  141. "network:disassociate_floating_ip": "",
  142. "network:release_floating_ip": "",
  143. "network:migrate_instance_start": "",
  144. "network:migrate_instance_finish": "",
  145.  
  146. "network:get_fixed_ip": "",
  147. "network:get_fixed_ip_by_address": "",
  148. "network:add_fixed_ip_to_instance": "",
  149. "network:remove_fixed_ip_from_instance": "",
  150. "network:add_network_to_project": "",
  151. "network:get_instance_nw_info": "",
  152.  
  153. "network:get_dns_domains": "",
  154. "network:add_dns_entry": "",
  155. "network:modify_dns_entry": "",
  156. "network:delete_dns_entry": "",
  157. "network:get_dns_entries_by_address": "",
  158. "network:get_dns_entries_by_name": "",
  159. "network:create_private_dns_domain": "",
  160. "network:create_public_dns_domain": "",
  161. "network:delete_dns_domain": ""
  162. }
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!