Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- ---
- swagger: '2.0'
- info:
- title: StorageGRID Webscale Management API v2
- description: 'REST API for managing StorageGRID Webscale deployments. Copyright
- (c) 2018 NetApp, Inc. All Rights Reserved'
- version: '2.2'
- schemes:
- - https
- basePath: "/api/v2"
- produces:
- - application/json
- securityDefinitions:
- BearerToken:
- type: apiKey
- name: Authorization
- in: header
- security:
- - BearerToken: []
- definitions:
- error-response:
- title: Error Response
- description: an error response format that augments the response with information
- describing the error that occurred
- type: object
- allOf:
- - "$ref": "#/definitions/response"
- - properties:
- code:
- description: the HTTP response code
- type: integer
- message:
- description: the localized error message
- "$ref": "#/definitions/localized-error"
- errors:
- description: additional error messages such as per-field errors in a validation
- failure
- type: array
- items:
- "$ref": "#/definitions/localized-error"
- localized-error:
- required:
- - text
- properties:
- text:
- description: the localized text describing the error
- type: string
- key:
- description: a unique key representing the message (for programmatic use)
- type: string
- context:
- description: the situation or field where error was triggered
- type: string
- developerMessage:
- description: additional information to aid in debugging
- type: string
- response:
- title: Response
- description: a response format that includes metadata characterizing the response's
- generation and status
- type: object
- required:
- - responseTime
- - status
- - apiVersion
- properties:
- responseTime:
- description: the date and time when the response was generated
- type: string
- format: date-time
- status:
- description: the result of the request
- type: string
- enum:
- - success
- - error
- apiVersion:
- description: the major and minor version of the API
- type: string
- example: '2.2'
- deprecated:
- description: whether the requested API is deprecated, default false
- type: boolean
- default: false
- data:
- description: the response data for the request (required on success and optional
- on error; type and content vary by request)
- credentials:
- title: Credentials
- description: authentication credentials
- type: object
- required:
- - accountId
- - username
- - password
- properties:
- accountId:
- type: string
- example: '12345678901234567000'
- username:
- type: string
- example: MyUserName
- password:
- type: string
- example: MyPassword
- cookie:
- description: flag to ask for an authorization token in the response using
- the Set-Cookie header
- type: boolean
- csrfToken:
- description: flag to ask for a CSRF token in the response using the Set-Cookie
- header. See the Administrator Guide for more information
- type: boolean
- default: false
- authorize-response:
- allOf:
- - "$ref": "#/definitions/response"
- - properties:
- data:
- description: authorization bearer token
- type: string
- example: 00000000-0000-0000-0000-000000000000
- required:
- - data
- identity-source:
- title: Identity Source
- description: An external LDAP server for authentication.
- type: object
- required:
- - id
- - ldapServiceType
- - hostname
- - port
- - username
- - password
- - baseGroupDn
- - baseUserDn
- properties:
- id:
- title: Identity Source identifier
- description: a unique identifier for the identity source (automatically assigned
- when the identity source is configured)
- type: string
- example: 00000000-0000-0000-0000-000000000000
- disable:
- title: disable
- description: whether the identity source will be used for authentication
- type: boolean
- default: true
- hostname:
- title: Hostname
- description: the server hostname or IP address of the identity source
- type: string
- example: 10.1.2.3
- port:
- title: Port
- description: the port to use to connect to the identity source
- type: integer
- example: 389
- username:
- title: Username
- description: the username to use to access the identity source
- type: string
- example: MYDOMAIN\Administrator
- password:
- title: Password
- description: the password to use to access the identity source
- type: string
- example: mypassword
- baseGroupDn:
- title: Group Base DN
- description: the fully qualified Distinguished Name (DN) of an LDAP subtree
- you want to search for groups
- type: string
- example: DC=example,DC=com
- baseUserDn:
- title: User Base DN
- description: the fully qualified Distinguished Name (DN) of an LDAP subtree
- you want to search for users
- type: string
- example: DC=example,DC=com
- ldapServiceType:
- title: LDAP service type
- description: type of the LDAP service
- type: string
- enum:
- - OpenLDAP
- - Active Directory
- - Other
- type:
- title: type
- description: type of the identity source
- type: string
- enum:
- - ldap
- default: ldap
- ldapUserIdAttribute:
- title: LDAP User ID Attribute
- description: LDAP attribute that identifies the LDAP user who attempts authentication
- with unique name/login (only required when ldapServiceType is "Other")
- type: string
- example: sAMAccountName
- ldapUserUUIDAttribute:
- title: LDAP User UUID Attribute
- description: LDAP attribute that identifies the LDAP user's permanent unique
- identity (only required when ldapServiceType is "Other")
- type: string
- example: objectGUID
- ldapGroupIdAttribute:
- title: LDAP Group ID Attribute
- description: LDAP attribute that identifies the LDAP group of the user who
- attempts authentication (only required when ldapServiceType is "Other")
- type: string
- example: sAMAccountName
- ldapGroupUUIDAttribute:
- title: LDAP Group UUID Attribute
- description: LDAP attribute that identifies the LDAP group's permanent unique
- identity (only required when ldapServiceType is "Other")
- type: string
- example: objectGUID
- disableTLS:
- title: Disable TLS
- description: whether Transport Layer Security (TLS) is used to connect to
- the identity source server
- type: boolean
- default: false
- caCert:
- title: CA Certificate
- description: custom certificate to use to connect to the identity source server
- (if no custom certificate is supplied and TLS is enabled, the Operating
- System CA certificate will be used)
- type: string
- example: "-----BEGIN CERTIFICATE----- abcdefghijkl123456780ABCDEFGHIJKL 123456/7890ABCDEFabcdefghijklABCD
- -----END CERTIFICATE-----\n"
- identity-source-get-put-response:
- allOf:
- - "$ref": "#/definitions/response"
- - properties:
- data:
- "$ref": "#/definitions/identity-source"
- required:
- - data
- container:
- description: An S3 bucket or Swift container
- properties:
- name:
- description: S3 bucket or Swift container name
- type: string
- minLength: 3
- maxLength: 63
- example: my-container
- creationTime:
- description: time the bucket or container was created
- type: string
- format: date-time
- region:
- description: the region of this bucket (returned only if requested using the
- S3 include parameter)
- type: string
- example: us-east-1
- default: us-east-1
- compliance:
- description: compliance settings (returned only if requested using the S3
- include parameter)
- allOf:
- - "$ref": "#/definitions/container-compliance-settings"
- required:
- - name
- - creationTime
- container-compliance-settings:
- description: Compliance settings
- required:
- - autoDelete
- - legalHold
- - retentionPeriodMinutes
- properties:
- autoDelete:
- description: whether the objects in this bucket will be deleted automatically
- when their retention period expires, unless the bucket is under a legal
- hold
- type: boolean
- example: false
- legalHold:
- description: whether the bucket is currently under a legal hold (objects cannot
- be deleted)
- type: boolean
- example: false
- retentionPeriodMinutes:
- description: the length of the retention period for objects added to this
- bucket, in minutes, starting when the object is ingested into the grid
- type: integer
- example: 2629800
- minValue: 1
- container-compliance-settings-get-put-response:
- allOf:
- - "$ref": "#/definitions/response"
- - properties:
- data:
- "$ref": "#/definitions/container-compliance-settings"
- required:
- - data
- container-consistency:
- description: S3 bucket or Swift container consistency setting
- properties:
- consistency:
- description: Consistency level. The default option is deprecated in the v2
- API. In the v3 API, a new read-after-new-write option will provide the same
- functionality.
- type: string
- enum:
- - all
- - strong-global
- - strong-site
- - default
- - available
- - weak
- example: available
- required:
- - consistency
- container-consistency-get-put-response:
- allOf:
- - "$ref": "#/definitions/response"
- - properties:
- data:
- "$ref": "#/definitions/container-consistency"
- required:
- - data
- container-cors-configuration:
- description: Configure CORS
- properties:
- cors:
- description: XML for configuring CORS, or null to disable CORS
- type: string
- example: |
- <CORSConfiguration>
- <CORSRule>
- <AllowedOrigin>http://www.example.com</AllowedOrigin>
- <AllowedMethod>GET</AllowedMethod>
- </CORSRule>
- </CORSConfiguration>
- container-cors-configuration-get-put-response:
- allOf:
- - "$ref": "#/definitions/response"
- - properties:
- data:
- "$ref": "#/definitions/container-cors-configuration"
- required:
- - data
- container-create:
- description: Create S3 bucket
- required:
- - name
- properties:
- name:
- description: Bucket name (must be DNS-compatible; see the S3 Implementation
- Guide for details)
- type: string
- example: bucket-1
- minLength: 3
- maxLength: 63
- region:
- description: the region for this bucket, which must already be defined (defaults
- to us-east-1 if not specified)
- type: string
- example: us-east-1
- default: us-east-1
- compliance:
- "$ref": "#/definitions/container-compliance-settings"
- container-create-response:
- allOf:
- - "$ref": "#/definitions/response"
- - properties:
- data:
- "$ref": "#definitions/container-create"
- required:
- - data
- container-last-access-time:
- description: Last access time
- properties:
- lastAccessTime:
- description: Last access time value
- type: string
- enum:
- - disabled
- - enabled
- example: disabled
- required:
- - lastAccessTime
- container-last-access-time-get-put-response:
- allOf:
- - "$ref": "#/definitions/response"
- - properties:
- data:
- "$ref": "#/definitions/container-last-access-time"
- required:
- - data
- container-list-response:
- allOf:
- - "$ref": "#/definitions/response"
- - properties:
- data:
- type: array
- items:
- "$ref": "#/definitions/container"
- required:
- - data
- container-metadata-notification-configuration:
- description: Configure metadata notifications (search)
- properties:
- metadataNotification:
- description: XML for configuring metadata notifications (search), or null
- to disable metadata notifications (search)
- type: string
- example: |
- <MetadataNotificationConfiguration>
- <Rule>
- <ID>Rule-1</ID>
- <Status>Enabled</Status>
- <Prefix></Prefix>
- <Destination>
- <Urn>arn:aws:es:us-east-1:3333333:domain-name</Urn>
- </Destination>
- </Rule>
- </MetadataNotificationConfiguration>
- container-metadata-notification-configuration-get-put-response:
- allOf:
- - "$ref": "#/definitions/response"
- - properties:
- data:
- "$ref": "#/definitions/container-metadata-notification-configuration"
- required:
- - data
- container-notification-configuration:
- description: Notification configuration
- properties:
- notification:
- description: notification configuration XML, or null to disable notifications
- type: string
- example: |
- <?xml version="1.0" encoding="UTF-8"?>
- <NotificationConfiguration xmlns="http://s3.amazonaws.com/doc/2006-03-01/">
- <TopicConfiguration>
- <Id>MyEventForPut</Id>
- <Topic>arn:aws:sns:us-east-1:050340950352:my-topic</Topic>
- <Event>s3:ObjectCreated:Put</Event>
- <Filter>
- <S3Key>
- <FilterRule>
- <Name>prefix</Name>
- <Value>images/</Value>
- </FilterRule>
- <FilterRule>
- <Name>suffix</Name>
- <Value>.jpg</Value>
- </FilterRule>
- </S3Key>
- </Filter>
- </TopicConfiguration>
- </NotificationConfiguration>
- container-notification-configuration-get-put-response:
- allOf:
- - "$ref": "#/definitions/response"
- - properties:
- data:
- "$ref": "#/definitions/container-notification-configuration"
- required:
- - data
- container-replication-configuration:
- description: Replication configuration
- properties:
- replication:
- description: replication configuration XML, or null to disable replications
- type: string
- example: |
- <?xml version="1.0" encoding="UTF-8"?>
- <ReplicationConfiguration xmlns="http://s3.amazonaws.com/doc/2006-03-01/">
- <Rule>
- <ID>rule1</ID>
- <Status>Enabled</Status>
- <Prefix></Prefix>
- <Destination>
- <Bucket>arn:aws:s3:::mybucket-replicated</Bucket>
- <StorageClass>STANDARD</StorageClass>
- </Destination>
- <Role>arn:aws:iam::35667example:role/CrossRegionReplicationRoleForS3</Role>
- </Rule>
- </ReplicationConfiguration>
- container-replication-configuration-get-put-response:
- allOf:
- - "$ref": "#/definitions/response"
- - properties:
- data:
- "$ref": "#/definitions/container-replication-configuration"
- required:
- - data
- regions-get-response:
- allOf:
- - "$ref": "#/definitions/response"
- - properties:
- data:
- type: array
- description: the list of region names configured
- items:
- "$ref": "#/definitions/region-name"
- required:
- - data
- region-name:
- type: string
- description: the name of a region, can only include letters, numbers, and hyphens
- maxLength: 32
- minLength: 2
- pattern: "[-a-zA-Z0-9]+"
- example: us-east-1
- policies:
- title: Policies
- description: Sets of permissions
- type: object
- properties:
- management:
- description: permissions related to the Tenant Management UI/API
- "$ref": "#/definitions/policy-management"
- s3:
- description: permissions related to the S3 API (Tenant only)
- "$ref": "#/definitions/policy-s3"
- swift:
- description: permissions related to the Swift API (Tenant only)
- "$ref": "#/definitions/policy-swift"
- policy-account:
- title: Account Policy
- description: settings for the tenant account
- required:
- - useAccountIdentitySource
- - allowPlatformServices
- properties:
- useAccountIdentitySource:
- title: Use Tenant Account Identity Source
- description: whether the tenant account should configure its own identity
- source. If false, the tenant uses the grid-wide identity source.
- type: boolean
- default: true
- allowPlatformServices:
- title: Allow Platform Services
- description: allows a tenant to use platform services features such as CloudMirror.
- These features send data to an external service that is specified using
- a StorageGRID Webscale endpoint.
- type: boolean
- default: false
- example: false
- quotaObjectBytes:
- title: Object Quota (bytes)
- description: the maximum number of bytes available for this tenant's objects.
- Represents a logical amount (object size), not a physical amount (size on
- disk). If null, an unlimited number of bytes is available.
- type: integer
- minimum: 1
- example: 100000000000
- permissions-list-except-root:
- type: object
- properties:
- manageAllContainers:
- description: ability to manage all S3 buckets or Swift containers for this
- tenant account (overrides permission settings in group or bucket policies)
- type: boolean
- manageEndpoints:
- description: ability to manage all S3 endpoints for this tenant account
- type: boolean
- manageOwnS3Credentials:
- description: ability to manage your personal S3 credentials
- type: boolean
- policy-management:
- title: Management Policy
- allOf:
- - "$ref": "#/definitions/permissions-list-except-root"
- - properties:
- rootAccess:
- description: full access to all tenant administration features
- type: boolean
- policy-s3:
- title: S3 Policy
- type: object
- required:
- - Statement
- properties:
- Id:
- description: S3 Policy ID provided by policy generator tools (currently not
- used)
- type: string
- example: '123456'
- Version:
- description: S3 API Version (currently not used)
- type: string
- example: '2015-09-08'
- Statement:
- description: a list of group policy statements
- type: array
- items:
- "$ref": "#/definitions/policy-s3-statement"
- policy-s3-statement:
- title: S3 Group Policy Statement
- type: object
- properties:
- Sid:
- description: an optional identifier that you provide for the policy statement
- type: string
- Effect:
- description: the specific result of the statement (either an allow or an explicit
- deny)
- type: string
- required: true
- enum:
- - Allow
- - Deny
- Action:
- description: the specific actions that will be allowed (Can be a string if
- only one element. A statement must have either Action or NotAction.)
- type: array
- required: true
- items:
- type: string
- example: s3:GetObject
- NotAction:
- description: the specific exceptional actions (Can be a string if only one
- element. A statement must have either Action or NotAction.)
- type: array
- items:
- type: string
- example: s3:GetObject
- Resource:
- description: the objects that the statement covers (Can be a string if only
- one element. A statement must have either Resource or NotResource.)
- items:
- type: string
- example: urn:s3:::mybucket/myobject
- NotResource:
- description: the objects that the statement does not cover (Can be a string
- if only one element. A statement must have either Resource or NotResource.)
- type: array
- items:
- type: string
- example: urn:s3:::mybucket/myobject
- policy-swift:
- title: Swift Policy
- type: object
- properties:
- roles:
- description: Swift roles to grant
- type: array
- items:
- type: string
- enum:
- - admin
- api-versions-get-response:
- allOf:
- - "$ref": "#/definitions/response"
- - required:
- - data
- properties:
- data:
- type: array
- description: major API versions supported
- items:
- type: integer
- example: 2
- config:
- required:
- - auto-logout
- - user
- - token
- - permissions
- - account
- properties:
- auto-logout:
- title: GUI Inactivity Timeout
- description: the timeout period for the browser session in seconds (zero for
- disabled)
- type: integer
- example: 900
- user:
- description: information about the current User
- "$ref": "#/definitions/config-user"
- token:
- description: information about the current token
- "$ref": "#/definitions/config-token"
- permissions:
- description: the management permissions of the current token
- "$ref": "#/definitions/policy-management"
- deactivated-features:
- description: 'the features that are currently deactivated and thus denied
- to users with rootAccess (returned only if the current token has rootAccess)
- '
- "$ref": "#/definitions/deactivated-features"
- account:
- description: the current account
- "$ref": "#/definitions/account"
- config-get-response:
- allOf:
- - "$ref": "#/definitions/response"
- - required:
- - data
- properties:
- data:
- "$ref": "#/definitions/config"
- config-token:
- title: Config Token
- required:
- - expires
- properties:
- expires:
- title: Token Expiration
- description: time when the token expires
- type: string
- format: date-time
- example: '2020-09-04T00:00:00.000Z'
- config-user:
- title: Config User
- required:
- - id
- - username
- - uniqueName
- - firstName
- - fullName
- - federated
- properties:
- id:
- title: Id
- description: UUID for the User (generated automatically)
- type: string
- format: uuid
- example: 00000000-0000-0000-0000-000000000000
- username:
- title: Username
- description: the username that is used to sign in
- type: string
- example: Test
- maxLength: 1024
- uniqueName:
- title: Unique Name
- description: the machine-readable name for the User (unique within an Account)
- type: string
- example: user/Test
- maxLength: 1024
- firstName:
- title: First Name
- description: the User's first name
- type: string
- example: Test
- maxLength: 32
- fullName:
- title: Full Name
- description: the human-readable name for the User
- type: string
- example: Test User
- maxLength: 128
- federated:
- title: Federated
- description: true if the User is federated, for example, an LDAP User
- type: boolean
- product-version:
- type: object
- required:
- - productVersion
- properties:
- productVersion:
- title: Product Version
- description: 'the product release version currently running on the Admin Node
- serving the request
- '
- type: string
- example: 10.3.0-20160614.1639.bf71535
- product-version-get-response:
- allOf:
- - "$ref": "#/definitions/response"
- - required:
- - data
- properties:
- data:
- "$ref": "#/definitions/product-version"
- deactivated-features:
- title: deactivated features
- description: currently deactivated features
- allOf:
- - "$ref": "#/definitions/permissions-list-except-root"
- deactivated-features-get-response:
- allOf:
- - "$ref": "#/definitions/response"
- - required:
- - data
- - properties:
- data:
- "$ref": "#/definitions/deactivated-features"
- password-change-request:
- title: Change Password
- required:
- - password
- properties:
- password:
- title: New password
- type: string
- minLength: 8
- maxLength: 32
- currentPassword:
- title: Current password
- description: required for requests that change the password of the current
- User
- type: string
- minLength: 8
- maxLength: 32
- patch-user-request:
- title: User
- description: Users can be local or federated.
- type: object
- properties:
- fullName:
- title: Full name
- description: the human-readable name for the User (required for local Users
- and imported automatically for federated Users)
- type: string
- example: Test User
- maxLength: 128
- memberOf:
- description: Group memberships for this User (required for local Users and
- imported automatically for federated Users)
- type: array
- items:
- type: string
- format: uuid
- example:
- - 00000000-0000-0000-0000-000000000000
- disable:
- title: Prevent login
- description: if true, the local User cannot sign in (does not apply to federated
- Users)
- type: boolean
- default: false
- post-user-request:
- title: User
- description: Creates a local User.
- allOf:
- - "$ref": "#/definitions/patch-user-request"
- - required:
- - uniqueName
- - properties:
- uniqueName:
- title: Unique name
- description: the machine-readable name for the User (unique within an Account;
- must begin with user/ or federated-user/). The portion after the slash
- is the "username" that is used to sign in
- type: string
- example: user/Test
- maxLength: 1024
- user:
- title: User
- description: Users can be local or federated.
- allOf:
- - "$ref": "#/definitions/post-user-request"
- - required:
- - accountId
- - id
- - federated
- - userURN
- - properties:
- accountId:
- title: Account Identifier
- description: Storage Tenant Account ID
- type: string
- example: '0'
- id:
- title: Id
- description: UUID for the User (generated automatically)
- type: string
- format: uuid
- example: 00000000-0000-0000-0000-000000000000
- federated:
- title: Federated
- description: true if the User is federated, for example, an LDAP User
- type: boolean
- userURN:
- title: User Uniform Resource Name
- description: contains the User uniqueName and Account ID (generated automatically)
- type: string
- example: urn:sgws:identity::0:user/Test
- list-users-response:
- allOf:
- - "$ref": "#/definitions/response"
- - properties:
- data:
- type: array
- items:
- "$ref": "#/definitions/user"
- required:
- - data
- get-patch-post-put-user-response:
- allOf:
- - "$ref": "#/definitions/response"
- - properties:
- data:
- "$ref": "#/definitions/user"
- required:
- - data
- s3-access-key-expires:
- title: Key expiration time
- description: The key pair will no longer be valid after this time. Null means
- never expires.
- type: string
- format: date-time
- example: '2020-09-04T00:00:00.000Z'
- s3-access-key:
- title: S3 Access Key
- description: S3 credential pair information
- type: object
- required:
- - id
- - accountId
- - displayName
- - userUUID
- properties:
- id:
- title: S3 Credential Pair Identifier
- description: a unique identifier for the S3 credential pair (automatically
- assigned when an access key is created)
- type: string
- example: abcABC_01234-0123456789abcABCabc0123456789==
- accountId:
- title: Account Identifier
- description: Storage Tenant Account ID
- type: string
- example: 12345678901234567890
- displayName:
- title: Display name
- description: Obfuscated Access Key
- type: string
- example: "****************AB12"
- userURN:
- title: User Uniform Resource Name
- description: contains the user name and Account ID (generated automatically)
- type: string
- example: urn:sgws:identity::12345678901234567890:root
- userUUID:
- title: User Universally Unique ID
- description: uniquely identifies the user (generated automatically)
- type: string
- example: 00000000-0000-0000-0000-000000000000
- expires:
- "$ref": "#/definitions/s3-access-key-expires"
- s3-access-key-with-secrets:
- title: S3 Access Key with secrets
- description: S3 credential pair and associated user/account information
- allOf:
- - "$ref": "#/definitions/s3-access-key"
- - type: object
- - properties:
- accessKey:
- title: Access Key
- description: generated automatically (returned only when generated and otherwise
- omitted)
- type: string
- example: ABCDEFabcd1234567890
- secretAccessKey:
- title: Secret Access Key
- description: generated automatically (returned only when generated and otherwise
- omitted)
- type: string
- example: abcABC+123456789012345678901234567890123
- list-access-keys-response:
- allOf:
- - "$ref": "#/definitions/response"
- - properties:
- data:
- type: array
- items:
- "$ref": "#/definitions/s3-access-key"
- required:
- - data
- get-access-key-response:
- allOf:
- - "$ref": "#/definitions/response"
- - properties:
- data:
- "$ref": "#/definitions/s3-access-key"
- required:
- - data
- post-access-key-response:
- allOf:
- - "$ref": "#/definitions/response"
- - properties:
- data:
- "$ref": "#/definitions/s3-access-key-with-secrets"
- required:
- - data
- compliance-global:
- title: Compliance Global Settings
- type: object
- required:
- - complianceEnabled
- properties:
- complianceEnabled:
- title: Compliance Enabled
- description: indicates whether compliance is enabled on the grid
- type: boolean
- example: false
- compliance-global-get-response:
- allOf:
- - "$ref": "#/definitions/response"
- - properties:
- data:
- "$ref": "#/definitions/compliance-global"
- required:
- - data
- endpoint-no-id:
- title: Endpoint
- description: The URI and URN for the external resource.
- type: object
- required:
- - displayName
- - endpointURI
- - endpointURN
- properties:
- displayName:
- title: Display Name
- description: the descriptive name that will be displayed for the endpoint;
- does not need to be unique
- type: string
- maxLength: 32
- example: My endpoint
- endpointURI:
- title: Endpoint URI
- description: the Uniform Resource Locator (URL) of the external resource
- type: string
- maxLength: 255
- example: https://s3-aws-region.amazonaws.com
- endpointURN:
- title: Endpoint URN
- description: the Uniform Resource Name (URN) of the external resource; immutable
- once the endpoint is created
- type: string
- maxLength: 255
- example: arn:aws:s3:::bucket_name
- caCert:
- title: CA Certificate
- description: custom certificate used to connect to the endpoint
- type: string
- maxLength: 64000
- example: "-----BEGIN CERTIFICATE----- abcdefghijkl123456780ABCDEFGHIJKL 123456/7890ABCDEFabcdefghijklABCD
- -----END CERTIFICATE-----\n"
- insecureTLS:
- title: Insecure TLS flag
- description: flag to permit insecure Transport Layer Security (TLS) for endpoint
- connections
- type: boolean
- default: false
- credentials:
- title: Endpoint Credentials
- type: object
- properties:
- accessKeyId:
- title: Access key ID
- description: access key credential for this endpoint; will be obfuscated
- in the response
- type: string
- maxLength: 255
- example: ABCDEFabcd1234567890
- secretAccessKey:
- title: Secret access key
- description: secret access key credential for this endpoint; will be obfuscated
- in the response
- type: string
- maxLength: 255
- example: abcABC+123456789012345678901234567890123
- endpoint:
- allOf:
- - "$ref": "#/definitions/endpoint-no-id"
- - type: object
- required:
- - id
- properties:
- id:
- title: Endpoint Identifier
- description: a unique identifier for the endpoint; automatically assigned
- when an endpoint is created
- type: string
- format: uuid
- example: 00000000-0000-0000-0000-000000000000
- endpoint-get-post-put-response:
- allOf:
- - "$ref": "#/definitions/response"
- - properties:
- data:
- "$ref": "#/definitions/endpoint"
- required:
- - data
- endpoint-get-all-response:
- allOf:
- - "$ref": "#/definitions/response"
- - properties:
- data:
- type: array
- items:
- "$ref": "#/definitions/endpoint"
- required:
- - data
- account:
- title: Storage Tenant Account (Organization)
- type: object
- required:
- - id
- - name
- properties:
- id:
- title: Account Identifier
- description: a unique identifier for the account (automatically assigned when
- an account is created)
- type: string
- example: '12345678901234567890'
- name:
- title: Display Name
- description: the descriptive name specified for the account (This name is
- for display only and might not be unique.)
- type: string
- maxLength: 64
- example: Widgets Unlimited
- capabilities:
- title: Capabilities
- description: the high-level features enabled for this account, such as S3
- or Swift protocols (Accounts must have the "management" capability if users
- will sign into the Tenant Manager.)
- type: array
- items:
- type: string
- enum:
- - management
- - s3
- - swift
- example:
- - management
- - s3
- policy:
- description: settings for the tenant account
- "$ref": "#/definitions/policy-account"
- account-usage-response:
- allOf:
- - "$ref": "#/definitions/response"
- - properties:
- data:
- title: Storage Tenant Account usage metrics
- type: object
- required:
- - calculationTime
- - objectCount
- - dataBytes
- properties:
- calculationTime:
- description: time when the usage data was calculated
- type: string
- format: date-time
- objectCount:
- description: number of objects under this Account
- type: integer
- dataBytes:
- description: logical size in bytes of all objects under this Account
- type: integer
- buckets:
- description: per-container usage metrics (including S3 buckets)
- type: array
- items:
- type: object
- title: Container usage metrics
- required:
- - name
- - objectCount
- - dataBytes
- properties:
- name:
- description: container name
- type: string
- objectCount:
- description: number of objects in this container
- type: integer
- dataBytes:
- description: logical size in bytes of all objects in this container
- type: integer
- patch-group-request:
- title: Group
- description: An organizational unit for Users. Groups can be local or federated.
- type: object
- properties:
- displayName:
- title: Display name
- description: the human-readable name for the Group (required for local Groups
- and imported automatically for federated Groups)
- type: string
- example: Developers
- maxLength: 32
- policies:
- description: Permissions for this Group
- "$ref": "#/definitions/policies"
- post-group-request:
- title: Group
- description: An organizational unit for Users. Groups can be local or federated.
- allOf:
- - "$ref": "#/definitions/patch-group-request"
- - required:
- - uniqueName
- - properties:
- uniqueName:
- title: Unique name
- description: the machine-readable name for the Group (unique within an Account;
- must begin with group/ or federated-group/)
- type: string
- example: federated-group/developers
- maxLength: 1024
- group:
- title: Group
- description: An organizational unit for Users. Groups can be local or federated.
- allOf:
- - "$ref": "#/definitions/post-group-request"
- - required:
- - accountId
- - id
- - federated
- - groupURN
- - properties:
- accountId:
- title: Account Identifier
- description: Storage Tenant Account ID
- type: string
- example: '12345678901234567890'
- id:
- title: Id
- description: UUID for the Group (generated automatically)
- type: string
- example: 00000000-0000-0000-0000-000000000000
- federated:
- title: Federated
- description: true if the Group is federated, for example, an LDAP Group
- type: boolean
- groupURN:
- title: Group Uniform Resource Name
- description: contains the Group uniqueName and Account ID (generated automatically)
- type: string
- example: urn:sgws:identity::12345678901234567890:federated-group/developers
- list-groups-response:
- allOf:
- - "$ref": "#/definitions/response"
- - properties:
- data:
- type: array
- items:
- "$ref": "#/definitions/group"
- required:
- - data
- get-patch-post-put-group-response:
- allOf:
- - "$ref": "#/definitions/response"
- - properties:
- data:
- "$ref": "#/definitions/group"
- required:
- - data
- tags:
- - name: auth
- description: Operations on authorization
- - name: identity-source
- description: Operations on identity sources
- - name: containers
- description: Operations on S3 buckets or Swift containers
- - name: regions
- description: Operations on regions
- - name: config
- description: Operations on version or session information
- - name: deactivated-features
- description: Operations on deactivated features
- - name: users
- description: Operations on users
- - name: s3
- description: Operations on S3 Access Keys
- - name: compliance
- description: Operations on compliance
- - name: endpoints
- description: Operations on endpoints
- - name: account
- description: Operations on the current Storage Tenant Account
- - name: groups
- description: Operations on groups
- paths:
- "/authorize":
- post:
- tags:
- - auth
- summary: Get authorization token
- parameters:
- - name: body
- in: body
- required: true
- schema:
- "$ref": "#/definitions/credentials"
- responses:
- 200:
- schema:
- "$ref": "#/definitions/authorize-response"
- headers:
- Cache-Control:
- description: Indicates the time in seconds until the token expires
- type: string
- example: private, no-cache, max-age=57599
- Expires:
- description: Indicates the token expiration time in RFC2616 format
- type: string
- example: Thu, 19 Nov 2015 08:40:58 GMT
- 401:
- description: invalid credentials
- schema:
- "$ref": "#/definitions/error-response"
- default:
- description: General error
- schema:
- "$ref": "#/definitions/error-response"
- delete:
- tags:
- - auth
- summary: Delete authorization token
- responses:
- 204:
- description: successfully deleted
- default:
- description: General error
- schema:
- "$ref": "#/definitions/error-response"
- "/org/identity-source":
- get:
- tags:
- - identity-source
- summary: Lists Identity Sources
- responses:
- 200:
- schema:
- "$ref": "#/definitions/identity-source-get-put-response"
- default:
- description: General error
- schema:
- "$ref": "#/definitions/error-response"
- put:
- tags:
- - identity-source
- summary: Set or update the Identity Source
- parameters:
- - name: body
- in: body
- required: true
- schema:
- "$ref": "#/definitions/identity-source"
- - name: test
- description: 'If specified, tests communication with the identity source,
- but does not modify the stored configuration. Always succeeds if "disable"
- is omitted or set to true.
- '
- in: query
- type: boolean
- responses:
- 200:
- schema:
- "$ref": "#/definitions/identity-source-get-put-response"
- 204:
- description: communication test succeeded
- 422:
- description: validation failure
- schema:
- "$ref": "#/definitions/error-response"
- default:
- description: General error
- schema:
- "$ref": "#/definitions/error-response"
- "/org/identity-source/synchronize":
- post:
- tags:
- - identity-source
- summary: Requests that users and groups from the identity source be synchronized
- as soon as possible
- parameters:
- - name: body
- description: Ignored, leave blank
- in: body
- required: false
- schema:
- type: string
- responses:
- 204:
- description: request successfully received
- default:
- description: General error
- schema:
- "$ref": "#/definitions/error-response"
- "/org/containers":
- get:
- tags:
- - containers
- summary: Lists the S3 buckets or Swift containers for a tenant account
- parameters:
- - name: include
- description: include optional information (S3 only)
- in: query
- type: array
- items:
- type: string
- enum:
- - compliance
- - region
- responses:
- 200:
- schema:
- "$ref": "#/definitions/container-list-response"
- default:
- description: General error
- schema:
- "$ref": "#/definitions/error-response"
- post:
- tags:
- - containers
- summary: Create a bucket for an S3 tenant account
- parameters:
- - name: body
- in: body
- description: Parameters for creating an S3 bucket
- required: true
- schema:
- "$ref": "#/definitions/container-create"
- responses:
- 201:
- description: successfully created
- schema:
- "$ref": "#/definitions/container-create-response"
- default:
- description: General error
- schema:
- "$ref": "#/definitions/error-response"
- "/org/containers/{bucketName}/compliance":
- get:
- tags:
- - containers
- summary: Gets the compliance settings for an S3 bucket
- parameters:
- - name: bucketName
- in: path
- description: S3 bucket name
- required: true
- type: string
- responses:
- 200:
- schema:
- "$ref": "#/definitions/container-compliance-settings-get-put-response"
- 404:
- description: bucket not found or is not compliant
- schema:
- "$ref": "#/definitions/error-response"
- default:
- description: General error
- schema:
- "$ref": "#/definitions/error-response"
- put:
- tags:
- - containers
- summary: Sets the compliance settings for an S3 bucket
- parameters:
- - name: bucketName
- in: path
- description: S3 bucket name
- required: true
- type: string
- - name: force
- description: if set, the Strong-site consistency level is used (if not set,
- the Strong-global consistency level is used); only use when directed by
- technical support
- in: query
- type: boolean
- - name: body
- in: body
- required: true
- schema:
- "$ref": "#/definitions/container-compliance-settings"
- responses:
- 200:
- schema:
- "$ref": "#/definitions/container-compliance-settings-get-put-response"
- 404:
- description: bucket not found or is not compliant
- schema:
- "$ref": "#/definitions/error-response"
- 422:
- description: validation failure
- schema:
- "$ref": "#/definitions/error-response"
- 503:
- description: unable to achieve the requested consistency level
- schema:
- "$ref": "#/definitions/error-response"
- default:
- description: General error
- schema:
- "$ref": "#/definitions/error-response"
- "/org/containers/{containerName}/consistency":
- get:
- tags:
- - containers
- summary: Gets the consistency level for an S3 bucket or Swift container
- parameters:
- - name: containerName
- in: path
- description: S3 bucket or Swift container name
- required: true
- type: string
- responses:
- 200:
- schema:
- "$ref": "#/definitions/container-consistency-get-put-response"
- default:
- description: General error
- schema:
- "$ref": "#/definitions/error-response"
- put:
- tags:
- - containers
- summary: Sets the consistency level for an S3 bucket or Swift container
- parameters:
- - name: containerName
- in: path
- description: S3 bucket or Swift container name
- required: true
- type: string
- - name: body
- in: body
- required: true
- schema:
- "$ref": "#/definitions/container-consistency"
- responses:
- 200:
- schema:
- "$ref": "#/definitions/container-consistency-get-put-response"
- default:
- description: General error
- schema:
- "$ref": "#/definitions/error-response"
- "/org/containers/{bucketName}/cors":
- get:
- tags:
- - containers
- summary: Gets the Cross-Origin Resource Sharing (CORS) configuration for an
- S3 bucket
- parameters:
- - name: bucketName
- in: path
- description: S3 bucket name
- required: true
- type: string
- responses:
- 200:
- schema:
- "$ref": "#/definitions/container-cors-configuration-get-put-response"
- default:
- description: General error
- schema:
- "$ref": "#/definitions/error-response"
- put:
- tags:
- - containers
- summary: Sets the Cross-Origin Resource Sharing (CORS) configuration for an
- S3 bucket
- parameters:
- - name: bucketName
- in: path
- description: S3 bucket name
- required: true
- type: string
- - name: body
- in: body
- required: true
- schema:
- "$ref": "#/definitions/container-cors-configuration"
- responses:
- 200:
- schema:
- "$ref": "#/definitions/container-cors-configuration-get-put-response"
- default:
- description: General error
- schema:
- "$ref": "#/definitions/error-response"
- "/org/containers/{bucketName}/last-access-time":
- get:
- tags:
- - containers
- summary: Determines if last access time is enabled for an S3 bucket
- parameters:
- - name: bucketName
- in: path
- description: S3 bucket name
- required: true
- type: string
- responses:
- 200:
- schema:
- "$ref": "#/definitions/container-last-access-time-get-put-response"
- default:
- description: General error
- schema:
- "$ref": "#/definitions/error-response"
- put:
- tags:
- - containers
- summary: Enables or disables last access time updates for an S3 bucket
- parameters:
- - name: bucketName
- in: path
- description: S3 bucket name
- required: true
- type: string
- - name: body
- in: body
- required: true
- schema:
- "$ref": "#/definitions/container-last-access-time"
- responses:
- 200:
- schema:
- "$ref": "#/definitions/container-last-access-time-get-put-response"
- default:
- description: General error
- schema:
- "$ref": "#/definitions/error-response"
- "/org/containers/{bucketName}/metadata-notification":
- get:
- tags:
- - containers
- summary: Gets the metadata notification (search) configuration for an S3 bucket
- parameters:
- - name: bucketName
- in: path
- description: S3 bucket name
- required: true
- type: string
- responses:
- 200:
- schema:
- "$ref": "#/definitions/container-metadata-notification-configuration-get-put-response"
- default:
- description: General error
- schema:
- "$ref": "#/definitions/error-response"
- put:
- tags:
- - containers
- summary: Sets the metadata notification (search) configuration for an S3 bucket
- parameters:
- - name: bucketName
- in: path
- description: S3 bucket name
- required: true
- type: string
- - name: body
- in: body
- required: true
- schema:
- "$ref": "#/definitions/container-metadata-notification-configuration"
- responses:
- 200:
- schema:
- "$ref": "#/definitions/container-metadata-notification-configuration-get-put-response"
- default:
- description: General error
- schema:
- "$ref": "#/definitions/error-response"
- "/org/containers/{bucketName}/notification":
- get:
- tags:
- - containers
- summary: Gets the notification configuration for an S3 bucket
- parameters:
- - name: bucketName
- in: path
- description: S3 bucket name
- required: true
- type: string
- responses:
- 200:
- schema:
- "$ref": "#/definitions/container-notification-configuration-get-put-response"
- default:
- description: General error
- schema:
- "$ref": "#/definitions/error-response"
- put:
- tags:
- - containers
- summary: Sets the notification configuration for an S3 bucket
- parameters:
- - name: bucketName
- in: path
- description: S3 bucket name
- required: true
- type: string
- - name: body
- in: body
- required: true
- schema:
- "$ref": "#/definitions/container-notification-configuration"
- responses:
- 200:
- schema:
- "$ref": "#/definitions/container-notification-configuration-get-put-response"
- default:
- description: General error
- schema:
- "$ref": "#/definitions/error-response"
- "/org/containers/{bucketName}/replication":
- get:
- tags:
- - containers
- summary: Gets the replication configuration for an S3 bucket
- parameters:
- - name: bucketName
- in: path
- description: S3 bucket name
- required: true
- type: string
- responses:
- 200:
- schema:
- "$ref": "#/definitions/container-replication-configuration-get-put-response"
- default:
- description: General error
- schema:
- "$ref": "#/definitions/error-response"
- put:
- tags:
- - containers
- summary: Sets the replication configuration for an S3 bucket
- parameters:
- - name: bucketName
- in: path
- description: S3 bucket name
- required: true
- type: string
- - name: body
- in: body
- required: true
- schema:
- "$ref": "#/definitions/container-replication-configuration"
- responses:
- 200:
- schema:
- "$ref": "#/definitions/container-replication-configuration-get-put-response"
- default:
- description: General error
- schema:
- "$ref": "#/definitions/error-response"
- "/org/regions":
- get:
- tags:
- - regions
- summary: Lists configured regions
- responses:
- 200:
- schema:
- "$ref": "#/definitions/regions-get-response"
- default:
- description: General error
- schema:
- "$ref": "#/definitions/error-response"
- "/org/config":
- get:
- tags:
- - config
- summary: Retrieves global configuration and token information
- responses:
- 200:
- schema:
- "$ref": "#/definitions/config-get-response"
- default:
- description: General error
- schema:
- "$ref": "#/definitions/error-response"
- "/org/config/product-version":
- get:
- tags:
- - config
- summary: Retrieves the product release version
- responses:
- 200:
- schema:
- "$ref": "#/definitions/product-version-get-response"
- default:
- description: General error
- schema:
- "$ref": "#/definitions/error-response"
- "/versions":
- get:
- tags:
- - config
- summary: 'Retrieves the major versions of the management API supported by the
- product release
- '
- responses:
- 200:
- schema:
- "$ref": "#/definitions/api-versions-get-response"
- default:
- description: General error
- schema:
- "$ref": "#/definitions/error-response"
- "/org/deactivated-features":
- get:
- tags:
- - deactivated-features
- summary: Retrieves the currently deactivated features
- responses:
- 200:
- schema:
- "$ref": "#/definitions/deactivated-features-get-response"
- default:
- description: General error
- schema:
- "$ref": "#/definitions/error-response"
- "/org/users":
- get:
- tags:
- - users
- summary: Lists Tenant Users
- parameters:
- - name: type
- description: filter by user type
- in: query
- type: string
- enum:
- - local
- - federated
- - name: limit
- description: maximum number of results
- in: query
- type: integer
- default: 25
- maximum: 500
- - name: marker
- description: marker-style pagination offset (value is User's URN)
- in: query
- type: string
- - name: includeMarker
- description: if set, the marker element is also returned
- in: query
- type: boolean
- - name: order
- description: pagination order (desc requires marker)
- in: query
- type: string
- enum:
- - asc
- - desc
- responses:
- 200:
- schema:
- "$ref": "#/definitions/list-users-response"
- default:
- description: General error
- schema:
- "$ref": "#/definitions/error-response"
- post:
- tags:
- - users
- summary: Creates a new local Tenant User
- parameters:
- - name: body
- in: body
- required: true
- schema:
- "$ref": "#/definitions/post-user-request"
- responses:
- 201:
- description: successfully created
- schema:
- "$ref": "#/definitions/get-patch-post-put-user-response"
- 422:
- description: validation failure
- schema:
- "$ref": "#/definitions/error-response"
- default:
- description: General error
- schema:
- "$ref": "#/definitions/error-response"
- "/org/users/current-user/change-password":
- post:
- tags:
- - users
- summary: Updates the current Tenant User's password
- parameters:
- - name: body
- in: body
- required: true
- schema:
- "$ref": "#/definitions/password-change-request"
- responses:
- 204:
- description: successfully updated
- 422:
- description: validation failure
- schema:
- "$ref": "#/definitions/error-response"
- default:
- description: General error
- schema:
- "$ref": "#/definitions/error-response"
- "/org/users/user/{shortName}":
- get:
- tags:
- - users
- summary: Retrieves a local Tenant User by unique name
- parameters:
- - name: shortName
- in: path
- description: uniqueName minus prefix
- required: true
- type: string
- responses:
- 200:
- schema:
- "$ref": "#/definitions/get-patch-post-put-user-response"
- default:
- description: General error
- schema:
- "$ref": "#/definitions/error-response"
- "/org/users/user/{shortName}/change-password":
- post:
- tags:
- - users
- summary: Updates a local Tenant User password by unique name
- parameters:
- - name: shortName
- in: path
- description: uniqueName minus prefix
- required: true
- type: string
- - name: body
- in: body
- required: true
- schema:
- "$ref": "#/definitions/password-change-request"
- responses:
- 204:
- description: successfully updated
- 422:
- description: validation failure
- schema:
- "$ref": "#/definitions/error-response"
- default:
- description: General error
- schema:
- "$ref": "#/definitions/error-response"
- "/org/users/federated-user/{shortName}":
- get:
- tags:
- - users
- summary: Retrieves a federated Tenant User by unique name
- parameters:
- - name: shortName
- in: path
- description: uniqueName minus prefix
- required: true
- type: string
- responses:
- 200:
- schema:
- "$ref": "#/definitions/get-patch-post-put-user-response"
- default:
- description: General error
- schema:
- "$ref": "#/definitions/error-response"
- "/org/users/root":
- get:
- tags:
- - users
- summary: Retrieves the root Tenant User
- responses:
- 200:
- schema:
- "$ref": "#/definitions/get-patch-post-put-user-response"
- default:
- description: General error
- schema:
- "$ref": "#/definitions/error-response"
- "/org/users/root/change-password":
- post:
- tags:
- - users
- summary: Updates the root Tenant User password
- parameters:
- - name: body
- in: body
- required: true
- schema:
- "$ref": "#/definitions/password-change-request"
- responses:
- 204:
- description: successfully updated
- 422:
- description: validation failure
- schema:
- "$ref": "#/definitions/error-response"
- default:
- description: General error
- schema:
- "$ref": "#/definitions/error-response"
- "/org/users/{id}":
- get:
- tags:
- - users
- summary: Retrieves a single Tenant User
- parameters:
- - name: id
- in: path
- description: User ID
- required: true
- type: string
- responses:
- 200:
- schema:
- "$ref": "#/definitions/get-patch-post-put-user-response"
- default:
- description: General error
- schema:
- "$ref": "#/definitions/error-response"
- delete:
- tags:
- - users
- summary: Deletes a single Tenant User
- parameters:
- - name: id
- in: path
- description: User ID
- required: true
- type: string
- responses:
- 204:
- description: successfully deleted
- default:
- description: General error
- schema:
- "$ref": "#/definitions/error-response"
- patch:
- tags:
- - users
- summary: Updates a single Tenant User
- parameters:
- - name: id
- in: path
- description: User ID
- required: true
- type: string
- - name: body
- in: body
- required: true
- schema:
- "$ref": "#/definitions/patch-user-request"
- responses:
- 200:
- schema:
- "$ref": "#/definitions/get-patch-post-put-user-response"
- default:
- description: General error
- schema:
- "$ref": "#/definitions/error-response"
- put:
- tags:
- - users
- summary: Replaces a single Tenant User
- parameters:
- - name: id
- in: path
- description: User ID
- required: true
- type: string
- - in: body
- name: body
- required: true
- schema:
- "$ref": "#/definitions/user"
- responses:
- 200:
- description: successfully replaced
- schema:
- "$ref": "#/definitions/get-patch-post-put-user-response"
- default:
- description: General error
- schema:
- "$ref": "#/definitions/error-response"
- "/org/users/{id}/change-password":
- post:
- tags:
- - users
- summary: Updates a local Tenant User password by UUID
- parameters:
- - name: id
- in: path
- description: User ID
- required: true
- type: string
- - name: body
- in: body
- required: true
- schema:
- "$ref": "#/definitions/password-change-request"
- responses:
- 204:
- description: successfully updated
- 422:
- description: validation failure
- schema:
- "$ref": "#/definitions/error-response"
- default:
- description: General error
- schema:
- "$ref": "#/definitions/error-response"
- "/org/users/current-user/s3-access-keys":
- get:
- tags:
- - s3
- summary: Lists S3 Access Keys for the current User
- responses:
- 200:
- schema:
- "$ref": "#/definitions/list-access-keys-response"
- default:
- description: General error
- schema:
- "$ref": "#/definitions/error-response"
- post:
- tags:
- - s3
- summary: Creates a new S3 Access Key for the current User
- parameters:
- - name: body
- in: body
- required: true
- schema:
- type: object
- properties:
- expires:
- "$ref": "#/definitions/s3-access-key-expires"
- responses:
- 201:
- description: successfully created
- schema:
- "$ref": "#/definitions/post-access-key-response"
- 422:
- description: validation failure
- schema:
- "$ref": "#/definitions/error-response"
- default:
- description: General error
- schema:
- "$ref": "#/definitions/error-response"
- "/org/users/current-user/s3-access-keys/{accessKey}":
- get:
- tags:
- - s3
- summary: Retrieves a single S3 Access Key for the current User
- parameters:
- - name: accessKey
- in: path
- description: Access Key
- required: true
- type: string
- responses:
- 200:
- schema:
- "$ref": "#/definitions/get-access-key-response"
- default:
- description: General error
- schema:
- "$ref": "#/definitions/error-response"
- delete:
- tags:
- - s3
- summary: Deletes a single S3 Access Key for the current User
- parameters:
- - name: accessKey
- in: path
- description: Access Key or S3 credential pair identifier
- required: true
- type: string
- responses:
- 204:
- description: successfully deleted
- default:
- description: General error
- schema:
- "$ref": "#/definitions/error-response"
- "/org/users/{userId}/s3-access-keys":
- get:
- tags:
- - s3
- summary: Lists S3 Access Keys for a given User
- parameters:
- - name: userId
- in: path
- description: User ID
- required: true
- type: string
- responses:
- 200:
- schema:
- "$ref": "#/definitions/list-access-keys-response"
- default:
- description: General error
- schema:
- "$ref": "#/definitions/error-response"
- post:
- tags:
- - s3
- summary: Creates a new S3 Access Key for a given User
- parameters:
- - name: userId
- in: path
- description: User ID
- required: true
- type: string
- - name: body
- in: body
- required: true
- schema:
- type: object
- properties:
- expires:
- "$ref": "#/definitions/s3-access-key-expires"
- responses:
- 201:
- description: successfully created
- schema:
- "$ref": "#/definitions/post-access-key-response"
- 422:
- description: validation failure
- schema:
- "$ref": "#/definitions/error-response"
- default:
- description: General error
- schema:
- "$ref": "#/definitions/error-response"
- "/org/users/{userId}/s3-access-keys/{accessKey}":
- get:
- tags:
- - s3
- summary: Retrieves a single S3 Access Key for a given User
- parameters:
- - name: userId
- in: path
- description: User ID
- required: true
- type: string
- - name: accessKey
- in: path
- description: Access Key
- required: true
- type: string
- responses:
- 200:
- schema:
- "$ref": "#/definitions/get-access-key-response"
- default:
- description: General error
- schema:
- "$ref": "#/definitions/error-response"
- delete:
- tags:
- - s3
- summary: Deletes a single S3 Access Key for a given User
- parameters:
- - name: userId
- in: path
- description: User ID
- required: true
- type: string
- - name: accessKey
- in: path
- description: Access Key or S3 credential pair identifier
- required: true
- type: string
- responses:
- 204:
- description: successfully deleted
- default:
- description: General error
- schema:
- "$ref": "#/definitions/error-response"
- "/org/compliance-global":
- get:
- tags:
- - compliance
- summary: Retrieves the global compliance settings
- responses:
- 200:
- schema:
- "$ref": "#/definitions/compliance-global-get-response"
- default:
- description: General error
- schema:
- "$ref": "#/definitions/error-response"
- "/org/endpoints":
- get:
- tags:
- - endpoints
- summary: Gets the list of endpoints
- parameters:
- - name: limit
- description: maximum number of results
- in: query
- type: integer
- default: 25
- maximum: 500
- - name: marker
- description: marker-style pagination offset (value is Endpoint's URN)
- in: query
- type: string
- - name: includeMarker
- description: if set, the marker element is also returned
- in: query
- type: boolean
- - name: order
- description: pagination order (desc requires marker)
- in: query
- type: string
- enum:
- - asc
- - desc
- responses:
- 200:
- schema:
- "$ref": "#/definitions/endpoint-get-all-response"
- default:
- description: General error
- schema:
- "$ref": "#/definitions/error-response"
- post:
- tags:
- - endpoints
- summary: Creates a new endpoint
- parameters:
- - name: body
- in: body
- required: true
- schema:
- "$ref": "#/definitions/endpoint-no-id"
- - name: test
- description: 'If specified, tests the validity of the endpoint, but does not
- save the endpoint.
- '
- in: query
- type: boolean
- - name: forceSave
- description: save the endpoint without testing its validity
- in: query
- type: boolean
- responses:
- 201:
- description: successfully created
- schema:
- "$ref": "#/definitions/endpoint-get-post-put-response"
- 204:
- description: endpoint validation test succeeded
- 422:
- description: validation failure
- schema:
- "$ref": "#/definitions/error-response"
- default:
- description: General error
- schema:
- "$ref": "#/definitions/error-response"
- "/org/endpoints/{id}":
- get:
- tags:
- - endpoints
- summary: Retrieves a single endpoint
- parameters:
- - name: id
- in: path
- description: Endpoint ID
- required: true
- type: string
- responses:
- 200:
- schema:
- "$ref": "#/definitions/endpoint-get-post-put-response"
- default:
- description: General error
- schema:
- "$ref": "#/definitions/error-response"
- delete:
- tags:
- - endpoints
- summary: Deletes a single endpoint
- parameters:
- - name: id
- in: path
- description: Endpoint ID
- required: true
- type: string
- responses:
- 204:
- description: successfully deleted
- default:
- description: General error
- schema:
- "$ref": "#/definitions/error-response"
- put:
- tags:
- - endpoints
- summary: Replaces a single endpoint
- parameters:
- - name: id
- in: path
- description: Endpoint ID
- required: true
- type: string
- - name: body
- in: body
- required: true
- schema:
- "$ref": "#/definitions/endpoint"
- - name: test
- description: 'If specified, tests the validity of the endpoint, but does not
- modify the stored endpoint.
- '
- in: query
- type: boolean
- - name: forceSave
- description: update the endpoint without testing its validity
- in: query
- type: boolean
- responses:
- 200:
- description: successfully changed
- schema:
- "$ref": "#/definitions/endpoint-get-post-put-response"
- 204:
- description: endpoint validation test succeeded
- 422:
- description: validation failure
- schema:
- "$ref": "#/definitions/error-response"
- default:
- description: General error
- schema:
- "$ref": "#/definitions/error-response"
- "/org/usage":
- get:
- tags:
- - account
- summary: Gets the storage usage information for the current Storage Tenant Account
- responses:
- 200:
- schema:
- "$ref": "#/definitions/account-usage-response"
- default:
- description: General error
- schema:
- "$ref": "#/definitions/error-response"
- "/org/groups":
- get:
- tags:
- - groups
- summary: Lists Tenant User Groups
- parameters:
- - name: type
- description: filter by group type
- in: query
- type: string
- enum:
- - local
- - federated
- - name: limit
- description: maximum number of results
- in: query
- type: integer
- default: 25
- maximum: 500
- - name: marker
- description: marker-style pagination offset (value is Group's URN)
- in: query
- type: string
- - name: includeMarker
- description: if set, the marker element is also returned
- in: query
- type: boolean
- - name: order
- description: pagination order (desc requires marker)
- in: query
- type: string
- enum:
- - asc
- - desc
- responses:
- 200:
- schema:
- "$ref": "#/definitions/list-groups-response"
- default:
- description: General error
- schema:
- "$ref": "#/definitions/error-response"
- post:
- tags:
- - groups
- summary: Creates a new Tenant User Group
- parameters:
- - name: body
- in: body
- required: true
- schema:
- "$ref": "#/definitions/post-group-request"
- responses:
- 201:
- description: successfully created
- schema:
- "$ref": "#/definitions/get-patch-post-put-group-response"
- 422:
- description: validation failure
- schema:
- "$ref": "#/definitions/error-response"
- default:
- description: General error
- schema:
- "$ref": "#/definitions/error-response"
- "/org/groups/group/{shortName}":
- get:
- tags:
- - groups
- summary: Retrieves a local Tenant User Group by unique name
- parameters:
- - name: shortName
- in: path
- description: uniqueName minus prefix
- required: true
- type: string
- responses:
- 200:
- schema:
- "$ref": "#/definitions/get-patch-post-put-group-response"
- default:
- description: General error
- schema:
- "$ref": "#/definitions/error-response"
- "/org/groups/federated-group/{shortName}":
- get:
- tags:
- - groups
- summary: Retrieves a federated Tenant User Group by unique name
- parameters:
- - name: shortName
- in: path
- description: uniqueName minus prefix
- required: true
- type: string
- responses:
- 200:
- schema:
- "$ref": "#/definitions/get-patch-post-put-group-response"
- default:
- description: General error
- schema:
- "$ref": "#/definitions/error-response"
- "/org/groups/{id}":
- get:
- tags:
- - groups
- summary: Retrieves a single Tenant User Group by UUID
- parameters:
- - name: id
- in: path
- description: Group ID
- required: true
- type: string
- responses:
- 200:
- schema:
- "$ref": "#/definitions/get-patch-post-put-group-response"
- default:
- description: General error
- schema:
- "$ref": "#/definitions/error-response"
- delete:
- tags:
- - groups
- summary: Deletes a single Tenant User Group
- parameters:
- - name: id
- in: path
- description: Group ID
- required: true
- type: string
- responses:
- 204:
- description: successfully deleted
- default:
- description: General error
- schema:
- "$ref": "#/definitions/error-response"
- patch:
- tags:
- - groups
- summary: Updates a single Tenant User Group
- parameters:
- - name: id
- in: path
- description: Group ID
- required: true
- type: string
- - name: body
- in: body
- required: true
- schema:
- "$ref": "#/definitions/patch-group-request"
- responses:
- 200:
- schema:
- "$ref": "#/definitions/get-patch-post-put-group-response"
- default:
- description: General error
- schema:
- "$ref": "#/definitions/error-response"
- put:
- tags:
- - groups
- summary: Replaces a single Tenant User Group
- parameters:
- - name: id
- in: path
- description: Group ID
- required: true
- type: string
- - in: body
- name: body
- required: true
- schema:
- "$ref": "#/definitions/group"
- responses:
- 200:
- description: successfully replaced
- schema:
- "$ref": "#/definitions/get-patch-post-put-group-response"
- default:
- description: General error
- schema:
- "$ref": "#/definitions/error-response"
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement