Detailed permissions matrix for Cloud DNS

The Cloud DNS permissions matrix displays specific permissions for the following role-based access control (RBAC) roles:

  • Admin provides full access to create, read, update, and delete.
  • Creator provides access to create, read, and update.
  • Observer provides read-only access.

The matrix displays the Cloud DNS methods, their corresponding RESTful API commands, and the RBAC roles that are supported.

Limits

MethodAPI actionRoleDescription
List limitsGET /limitsAdmin,
Creator,
Observer
Lists all applicable limits.
List limit typesGET /limits/typesAdmin,
Creator,
Observer
Lists the types of limits.
Show limitsGET /limits/{type}Admin
Creator
Observer
Lists assigned limits of the specified type, such as domain_limit, rate_limit, and domain_record_limit.

Domains

MethodAPI actionRoleDescription
List domainsGET /domainsAdmin,
Creator,
Observer
Lists all account domains.
List domains by nameGET /domains?name={domainName}Admin,
Creator,
Observer
Lists all domains manageable by the account that exactly match the value of the name parameter.
List domain details without subdomainsGET /domains/{domainId}Admin,
Creator
Lists details for a specific domain. By default, this operation displays information for records but not subdomains.
Show domain changesGET /domains/{domainId}/changes?since=[date/time]Admin,
Creator,
Observer
Shows all changes to the specified domain since the specified date or time.
Export domainGET /domains/{domainId}/exportAdmin,
Creator,
Observer
Exports details of the specified domain.
Search domainsGET /domains/search?name={domainName}Admin,
Creator,
Observer
Lists all names manageable by the account that have the value of the name parameter as part of their name.
Create domainPOST /domainsAdmin,
Creator
Creates a new domain.
Clone domainPOST /domains/{domainId}/clone?cloneName={newDomainName}Admin,
Creator
Creates a new domain by cloning the specified domain.
Import domainPOST /domains/importAdmin,
Creator
Imports a new domain with the configuration specified by the request.
Update domainPUT /domains/{domainId}Admin,
Creator
Modifies the configuration of a domain.
Update domainsPUT /domainsAdmin,
Creator
Modifies multiple domains.
Delete domainDELETE /domains/{domainId}AdminRemoves a domain.
Delete domain and its subdomainsDELETE /domains/{domainId}?deleteSubdomains=trueAdminRemoves a domain and all of its subdomains.
Delete domainsDELETE /domains?id={domainId1}&id={domainId2}AdminRemoves multiple domains.
Delete domains and subdomainsDELETE /domains?id={domainId1}&id={domainId2}&deleteSubdomains=trueAdminRemoves multiple domains and their subdomains.

Subdomains

MethodAPI actionRoleDescription
List subdomainsGET /domains/{domainId}/subdomainsAdmin,
Creator,
Observer
Lists domains that are subdomains of the specified domain.

Records

MethodAPI actionRoleDescription
List recordsGET /domains/{domainId}/recordsAdmin,
Creator,
Observer
Lists all records configured for the domain.
Search recordsGET /domains/{domainId}/records?type={recordType}&name={recordName}&data={recordData}Admin,
Creator,
Observer
Lists all records for the specified domain of the specified type that match the specified name or data.
Show record detailsGET /domains/{domainId}/records/{recordId}Admin,
Creator,
Observer
Lists details for a specific record.
Add recordsPOST /domains/{domainId}/recordsAdmin,
Creator
Adds one or more new records to the domain.
Update recordPUT /domains/{domainId}/records/{recordId}Admin,
Creator
Modifies the configuration of a record in the domain.
Update recordsPUT /domains/{domainId}/recordsAdmin,
Creator
Modifies the configuration of records in the domain.
Delete recordDELETE /domains/{domainId}/records/{recordId}AdminRemoves a record from the domain.
Delete recordsDELETE /domains/{domainId}/records?id={recordId1}&id={recordId2}AdminRemoves multiple records from the domain.

Reverse DNS

Note: To create a PTR record for a cloud load balancer or cloud server, you must also have at least the Observer role for the service you are associating the PTR record with.

MethodAPI actionRoleDescription
List PTR recordsGET /rdns/{service-name}?href={deviceResourceUri}Admin,
Creator,
Observer
Lists all PTR records configured for a Rackspace Cloud device.
Show PTR recordGET /rdns/{service-name}/{recordId}?href={deviceResourceUri}Admin,
Creator,
Observer
Lists details for a specific PTR record associated with a Rackspace Cloud device.
Add PTR recordsPOST /rdnsAdmin,
Creator
Adds one or more new PTR records for a Rackspace Cloud device.
Update PTR recordsPUT /rdnsAdmin,
Creator
Modifies one or more PTR records associated with a Rackspace Cloud device.
Delete PTR recordsDELETE /rdns/{service-name}?href={deviceResourceUri}&ip={optionalIpAddress}AdminRemoves one or all PTR records associated with a Rackspace Cloud device.

Job status

MethodAPI actionRoleDescription
View Jobs StatusGET /status/{jobId}?showDetails=[true|false]Admin,
Creator,
Observer
Lists the status of all asynchronous job requests for an account and filters the information requested by using the optional Boolean request parameters.

Related articles