Permissions matrix for Cloud Load Balancers

  • Last updated on: 2017-02-06
  • Authored by: Renee Rendon

The Cloud Load Balancers permissions matrix displays specific permissions for the following role-based access control (RBAC) roles:

  • Admin provides full access to create, read, update, and delete.
  • Creator provides access to create, read, and update.
  • Observer provides read-only access.

The matrix displays the Cloud Load Balancers methods grouped by category, their corresponding RESTful API commands, and the RBAC roles that are supported.

Load balancer

Method API action Role Description
List load balancers GET /v1.0/{account}/loadbalancers Admin,
Creator,
Observer
Lists load balancers configured and associated with your account.
Show load balancer details GET /v1.0/{account}/loadbalancers/{loadBalancerId} Admin,
Creator,
Observer
Shows details for a specified load balancer.
Create load balancer POST /v1.0/{account}/loadbalancers Admin,
Creator
Creates a new load balancer with the configuration defined by the request.
Update load balancer properties PUT /v1.0/{account}/loadbalancers/{loadBalancerId} Admin,
Creator
Updates the properties of the specified load balancer.
Delete load balancer DELETE /v1.0/{account}/loadbalancers/{loadBalancerId} Admin Deletes the specified load balancer and its associated configuration from the account.
Bulk-delete load balancers DELETE /v1.0/{account}/loadbalancers?id={loadBalancerId} Admin Deletes all of the load balancers that you specify.

Error pages

Method API action Role Description
Show custom error page GET /v1.0/{account}/loadbalancers/{loadBalancerId}/errorpage Admin,
Creator,
Observer
Shows the custom error page configured for the specified load balancer.
Set custom error page PUT /v1.0/{account}/loadbalancers/{loadBalancerId}/errorpage Admin,
Creator
Sets or updates a custom error page for the specified load balancer.
Delete custom error page DELETE /v1.0/{account}/loadbalancers/{loadBalancerId}/errorpage Admin Deletes the custom error page for the specified load balancer.

Load balancer statistics

Method API action Role Description
Show load balancer statistics GET /v1.0/{account}/loadbalancers/{loadBalancerId}/stats Admin,
Creator,
Observer
Shows the statistics for the specified load balancer.

Nodes

Method API action Role Description
List nodes GET /v1.0/{account}/loadbalancers/{loadBalancerId}/nodes Admin,
Creator,
Observer
Lists nodes configured for the specified load balancer.
Show node details GET /v1.0/{account}/loadbalancers/{loadBalancerId}/nodes/{nodeId} Admin,
Creator,
Observer
Shows details for the specified node.
Add node POST /v1.0/{account}/loadbalancers/{loadBalancerId}/nodes Admin,
Creator
Adds a node to the specified load balancer.
Update node PUT /v1.0/{account}/loadbalancers/{loadBalancerId}/nodes/{nodeId} Admin,
Creator
Updates the configuration for the specified node on the specified load balancer.
Delete node DELETE /v1.0/{account}/loadbalancers/{loadBalancerId}/nodes/{nodeId} Admin Deletes the specified node from the specified load balancer.
Bulk-delete nodes DELETE /loadbalancers/{loadBalancerId}/nodes?id='{nodeId}' Admin Deletes the specified nodes from the specified load balancer.
List node service events GET /v1.0/{account}/loadbalancers/{loadBalancerId}/nodes/events Admin,
Creator,
Observer
Lists events associated with the activity between the node and the load balancer.

Virtual IPs

Method API action Role Description
List virtual IPs GET /v1.0/{account}/loadbalancers/{loadBalancerId}/virtualips Admin,
Creator,
Observer
Lists virtual IPs associated with the specified load balancer.
Add virtual IP version 6 POST /v1.0/{account}/loadbalancers/{loadBalancerId}/virtualips Admin,
Creator
Adds virtual IP version 6.
Bulk-delete virtual IPs DELETE /v1.0/{account}/loadbalancers/{loadBalancerId}/
virtualips?id='{virtualIpId}' & id='{virtualIpId}'
Admin Deletes the specified virtual IPs.
Delete virtual IP DELETE /v1.0/{account}/loadbalancers/{loadBalancerId}/virtualips/{virtualIpId} Admin Deletes the specified virtual IP.

Allowed domains

Method API action Role Description
List allowed domains GET /v1.0/{account}/loadbalancers/alloweddomains Admin,
Creator,
Observer
Lists allowed domains.

Usage reports

Method API action Role Description
List billable load balancers GET /v1.0/{account}/loadbalancers/billable Admin,
Creator,
Observer
Lists billable load balancers for a specified date range.
Show account-level usage GET /v1.0/{account}/loadbalancers/usage Admin,
Creator,
Observer
Shows account-level usage for up to 90 days of service activity.
Show historical usage GET /v1.0/{account}/loadbalancers/{loadBalancerId}/usage Admin,
Creator,
Observer
Shows historical usage for up to 90 days of service activity.
Show current usage GET /v1.0/{account}/loadbalancers/{loadBalancerId}/usage/current Admin,
Creator,
Observer
Shows current usage.

Access lists

Method API action Role Description
Show access list GET /v1.0/{account}/loadbalancers/{loadBalancerId}/accesslist Admin,
Creator,
Observer
Shows the access list.
Create or update access list POST /v1.0/{account}/loadbalancers/{loadBalancerId}/accesslist Admin,
Creator
Creates or appends to an access list.
Delete access list DELETE /v1.0/{account}/loadbalancers/{loadBalancerId}/accesslist Admin Deletes the entire access list.
Bulk-delete networks from access list DELETE /v1.0/{account}/loadbalancers/{loadBalancerId}/
accesslist?id='{id1}' & id='{id2}'
Admin Deletes the specified networks from the access list.
Delete network from access list DELETE /v1.0/{account}/loadbalancers/{loadBalancerId}/accesslist/{networkItemId} Admin Deletes the specified network item from the access list.

Monitors

Method API action Role Description
Show health monitor configuration GET /v1.0/{account}/loadbalancers/{loadBalancerId}/healthmonitor Admin,
Creator,
Observer
Shows the health monitor configuration, if one exists.
Update health monitor PUT /v1.0/{account}/loadbalancers/{loadBalancerId}/healthmonitor Admin,
Creator
Updates the settings for a health monitor.
Delete health monitor DELETE /v1.0/{account}/loadbalancers/{loadBalancerId}/healthmonitor Admin Deletes a health monitor.

Session persistence

Method API action Role Description
Show session persistence configuration GET /v1.0/{account}/loadbalancers/{loadBalancerId}/sessionpersistence Admin,
Creator,
Observer
Shows the session persistence configuration.
Enable session persistence PUT /v1.0/{account}/loadbalancers/{loadBalancerId}/sessionpersistence Admin,
Creator
Enables session persistence.
Disable session persistence DELETE /v1.0/{account}/loadbalancers/{loadBalancerId}/sessionpersistence Admin Disables session persistence.

Log connections

Method API action Role Description
Show connection logging configuration GET /v1.0/{account}/loadbalancers/{loadBalancerId}/connectionlogging Admin,
Creator,
Observer
Shows the connection logging configuration.
Enable or disable connection logging PUT /v1.0/{account}/loadbalancers/{loadBalancerId}/connectionlogging Admin,
Creator
Enables or disables connection logging.

Throttle connections

Method API action Role Description
Show connection throttling configuration GET /v1.0/{account}/loadbalancers/{loadBalancerId}/connectionthrottle Admin,
Creator,
Observer
Shows the connection throttling configuration.
Create or update connection throttling configuration PUT /v1.0/{account}/loadbalancers/{loadBalancerId}/connectionthrottle Admin,
Creator
Creates or updates the throttling configuration.
Delete connection throttling configuration DELETE /v1.0/{account}/loadbalancers/{loadBalancerId}/connectionthrottle Admin Deletes the connection throttling configuration.

Content caching

Method API action Role Description
Show content caching configuration GET /v1.0/{account}/loadbalancers/{loadBalancerId}/contentcaching Admin,
Creator,
Observer
Shows the current configuration of content caching.
Enable or disable content caching PUT /v1.0/{account}/loadbalancers/{loadBalancerId}/contentcaching Admin,
Creator
Enables or disables content caching.

Protocols

Method API action Role Description
List load balancing protocols GET /v1.0/{account}/loadbalancers/protocols Admin,
Creator,
Observer
Lists supported load balancing protocols.

Algorithms

Method API action Role Description
List load balancing algorithms GET /v1.0/{account}/loadbalancers/algorithms Admin,
Creator,
Observer
Lists all supported load balancing algorithms.

SSL termination

Method API action Role Description
Show SSL termination configuration GET /v1.0/{account}/loadbalancers/{loadBalancerId}/ssltermination Admin,
Creator,
Observer
Shows the load balancer’s SSL termination configuration.
Update SSL termination configuration PUT /v1.0/{account}/loadbalancers/{loadBalancerId}/ssltermination Admin,
Creator
Updates the SSL termination configuration.
Delete SSL termination DELETE /v1.0/{account}/loadbalancers/{loadBalancerId}/ssltermination Admin Deletes SSL termination.

Certificate mappings

Method API action Role Description
List certificate mappings GET /v1.0/{account}/loadbalancers/{loadBalancerId}/ssltermination/certificatemappings Admin,
Creator,
Observer
Lists certificate mappings configured for the specified load balancer.
Add certificate mapping POST /v1.0/{account}/loadbalancers/{loadBalancerId}/ssltermination/certificatemappings Admin,
Creator
Adds a certificate mapping to the specified load balancer.
Show certificate mappings details GET /v1.0/{account}/loadbalancers/{loadBalancerId}/ssltermination/
certificatemappings/{certificateMappingId}
Admin,
Creator,
Observer
Shows the details for the specified certificate mapping.
Update certificate mapping PUT /v1.0/{account}/loadbalancers/{loadBalancerId}/ssltermination/
certificatemappings/{certificateMappingId}
Admin,
Creator
Updates the configuration for the specified certificate mapping on the specified load balancer.
Delete certificate mapping DELETE /v1.0/{account}/loadbalancers/{loadBalancerId}/ssltermination/
certificatemappings/{certificateMappingId}
Admin Deletes the specified certificate mapping from the specified load balancer.

Metadata

Method API action Role Description
Add load balancer metadata POST /v1.0/{account}/loadbalancers/{loadBalancerId}/metadata Admin,
Creator
Adds a metadata item to the load balancer.
Show load balancer metadata GET /v1.0/{account}/loadbalancers/{loadBalancerId}/metadata Admin,
Creator,
Observer
Shows all metadata associated with the specified load balancer.
Bulk-delete load balancer metadata items DELETE /v1.0/{account}/loadbalancers/{loadBalancerId}/
metadata?id={metaId} & id={metaId}
Admin Deletes the specified metadata items.
Show load balancer metadata item GET /v1.0/{account}/loadbalancers/{loadBalancerId}/metadata/{metaId} Admin,
Creator,
Observer
Shows details for the specified metadata item for the specified load balancer.
Update load balancer metadata item PUT /v1.0/{account}/loadbalancers/{loadBalancerId}/metadata/{metaId} Admin,
Creator
Updates the configuration of the specified metadata item on the specified load balancer.
Delete load balancer metadata item DELETE /v1.0/{account}/loadbalancers/{loadBalancerId}/metadata/{metaId} Admin Deletes a metadata item from the load balancer.
Show load balancer node metadata GET /v1.0/{account}/loadbalancers/{loadBalancerId}/nodes/{nodeId}/metadata Admin,
Creator,
Observer
Shows all metadata associated with the specified node and load balancer.
Add load balancer node metadata item POST /v1.0/{account}/loadbalancers/{loadBalancerId}/nodes/{nodeId}/metadata Admin,
Creator
Adds a metadata item to the specified node and load balancer.
Bulk-delete load balancer node metadata items DELETE /v1.0/{account}/loadbalancers/{loadBalancerId}/nodes/{nodeId}/
metadata?id='{metaId}' & id='{metaId}'
Admin Deletes the specified metadata items.
Show load balancer node metadata item GET /v1.0/{account}/loadbalancers/{loadBalancerId}/nodes/{nodeId}/metadata/{metaId} Admin,
Creator,
Observer
Shows details for the specified metadata item for the specified node and load balancer.
Update load balancer node metadata item PUT /v1.0/{account}/loadbalancers/{loadBalancerId}/nodes/{nodeId}/metadata/{metaId} Admin,
Creator
Updates the configuration of a metadata item on the node.
Delete load balancer node metadata item DELETE /v1.0/{account}/loadbalancers/{loadBalancerId}/nodes/{nodeId}/metadata/{metaId} Admin Deletes the specified metadata item from the node.

Limits

Method API action Role Description
List absolute limits GET /v1.0/{account}/loadbalancers/absolutelimits Admin,
Creator,
Observer
Lists the current absolute limits for the account.
List limits GET /v1.0/{account}/loadbalancers/limits Admin,
Creator,
Observer
Lists the current limits for the account.

Related article

Role-based Access Control (RBAC) permissions matrix for Cloud Hosting

Continue the conversation in the Rackspace Community.