Permissions matrix for Cloud Load Balancers

The Cloud Load Balancers permissions matrix displays specific permissions for the following role-based access control (RBAC) roles:

  • Admin provides full access to create, read, update, and delete.
  • Creator provides access to create, read, and update.
  • Observer provides read-only access.

The matrix displays the Cloud Load Balancers methods grouped by category, their corresponding RESTful API commands, and the RBAC roles that are supported.

Load balancer

MethodAPI actionRoleDescription
List load balancersGET /v1.0/{account}/loadbalancersAdmin,
Creator,
Observer
Lists load balancers configured and associated with your account.
Show load balancer detailsGET /v1.0/{account}/loadbalancers/{loadBalancerId}Admin,
Creator,
Observer
Shows details for a specified load balancer.
Create load balancerPOST /v1.0/{account}/loadbalancersAdmin,
Creator
Creates a new load balancer with the configuration defined by the request.
Update load balancer propertiesPUT /v1.0/{account}/loadbalancers/{loadBalancerId}Admin,
Creator
Updates the properties of the specified load balancer.
Delete load balancerDELETE /v1.0/{account}/loadbalancers/{loadBalancerId}AdminDeletes the specified load balancer and its associated configuration from the account.
Bulk-delete load balancersDELETE /v1.0/{account}/loadbalancers?id={loadBalancerId}AdminDeletes all of the load balancers that you specify.

Error pages

MethodAPI actionRoleDescription
Show custom error pageGET /v1.0/{account}/loadbalancers/{loadBalancerId}/errorpageAdmin,
Creator,
Observer
Shows the custom error page configured for the specified load balancer.
Set custom error pagePUT /v1.0/{account}/loadbalancers/{loadBalancerId}/errorpageAdmin,
Creator
Sets or updates a custom error page for the specified load balancer.
Delete custom error pageDELETE /v1.0/{account}/loadbalancers/{loadBalancerId}/errorpageAdminDeletes the custom error page for the specified load balancer.

Load balancer statistics

MethodAPI actionRoleDescription
Show load balancer statisticsGET /v1.0/{account}/loadbalancers/{loadBalancerId}/statsAdmin,
Creator,
Observer
Shows the statistics for the specified load balancer.

Nodes

MethodAPI actionRoleDescription
List nodesGET /v1.0/{account}/loadbalancers/{loadBalancerId}/nodesAdmin,
Creator,
Observer
Lists nodes configured for the specified load balancer.
Show node detailsGET /v1.0/{account}/loadbalancers/{loadBalancerId}/nodes/{nodeId}Admin,
Creator,
Observer
Shows details for the specified node.
Add nodePOST /v1.0/{account}/loadbalancers/{loadBalancerId}/nodesAdmin,
Creator
Adds a node to the specified load balancer.
Update nodePUT /v1.0/{account}/loadbalancers/{loadBalancerId}/nodes/{nodeId}Admin,
Creator
Updates the configuration for the specified node on the specified load balancer.
Delete nodeDELETE /v1.0/{account}/loadbalancers/{loadBalancerId}/nodes/{nodeId}AdminDeletes the specified node from the specified load balancer.
Bulk-delete nodesDELETE /loadbalancers/{loadBalancerId}/nodes?id='{nodeId}'AdminDeletes the specified nodes from the specified load balancer.
List node service eventsGET /v1.0/{account}/loadbalancers/{loadBalancerId}/nodes/eventsAdmin,
Creator,
Observer
Lists events associated with the activity between the node and the load balancer.

Virtual IPs

MethodAPI actionRoleDescription
List virtual IPsGET /v1.0/{account}/loadbalancers/{loadBalancerId}/virtualipsAdmin,
Creator,
Observer
Lists virtual IPs associated with the specified load balancer.
Add virtual IP version 6POST /v1.0/{account}/loadbalancers/{loadBalancerId}/virtualipsAdmin,
Creator
Adds virtual IP version 6.
Bulk-delete virtual IPsDELETE /v1.0/{account}/loadbalancers/{loadBalancerId}/
virtualips?id='{virtualIpId}' & id='{virtualIpId}'
AdminDeletes the specified virtual IPs.
Delete virtual IPDELETE /v1.0/{account}/loadbalancers/{loadBalancerId}/virtualips/{virtualIpId}AdminDeletes the specified virtual IP.

Allowed domains

MethodAPI actionRoleDescription
List allowed domainsGET /v1.0/{account}/loadbalancers/alloweddomainsAdmin,
Creator,
Observer
Lists allowed domains.

Usage reports

MethodAPI actionRoleDescription
List billable load balancersGET /v1.0/{account}/loadbalancers/billableAdmin,
Creator,
Observer
Lists billable load balancers for a specified date range.
Show account-level usageGET /v1.0/{account}/loadbalancers/usageAdmin,
Creator,
Observer
Shows account-level usage for up to 90 days of service activity.
Show historical usageGET /v1.0/{account}/loadbalancers/{loadBalancerId}/usageAdmin,
Creator,
Observer
Shows historical usage for up to 90 days of service activity.
Show current usageGET /v1.0/{account}/loadbalancers/{loadBalancerId}/usage/currentAdmin,
Creator,
Observer
Shows current usage.

Access lists

MethodAPI actionRoleDescription
Show access listGET /v1.0/{account}/loadbalancers/{loadBalancerId}/accesslistAdmin,
Creator,
Observer
Shows the access list.
Create or update access listPOST /v1.0/{account}/loadbalancers/{loadBalancerId}/accesslistAdmin,
Creator
Creates or appends to an access list.
Delete access listDELETE /v1.0/{account}/loadbalancers/{loadBalancerId}/accesslistAdminDeletes the entire access list.
Bulk-delete networks from access listDELETE /v1.0/{account}/loadbalancers/{loadBalancerId}/
accesslist?id='{id1}' & id='{id2}'
AdminDeletes the specified networks from the access list.
Delete network from access listDELETE /v1.0/{account}/loadbalancers/{loadBalancerId}/accesslist/{networkItemId}AdminDeletes the specified network item from the access list.

Monitors

MethodAPI actionRoleDescription
Show health monitor configurationGET /v1.0/{account}/loadbalancers/{loadBalancerId}/healthmonitorAdmin,
Creator,
Observer
Shows the health monitor configuration, if one exists.
Update health monitorPUT /v1.0/{account}/loadbalancers/{loadBalancerId}/healthmonitorAdmin,
Creator
Updates the settings for a health monitor.
Delete health monitorDELETE /v1.0/{account}/loadbalancers/{loadBalancerId}/healthmonitorAdminDeletes a health monitor.

Session persistence

MethodAPI actionRoleDescription
Show session persistence configurationGET /v1.0/{account}/loadbalancers/{loadBalancerId}/sessionpersistenceAdmin,
Creator,
Observer
Shows the session persistence configuration.
Enable session persistencePUT /v1.0/{account}/loadbalancers/{loadBalancerId}/sessionpersistenceAdmin,
Creator
Enables session persistence.
Disable session persistenceDELETE /v1.0/{account}/loadbalancers/{loadBalancerId}/sessionpersistenceAdminDisables session persistence.

Log connections

MethodAPI actionRoleDescription
Show connection logging configurationGET /v1.0/{account}/loadbalancers/{loadBalancerId}/connectionloggingAdmin,
Creator,
Observer
Shows the connection logging configuration.
Enable or disable connection loggingPUT /v1.0/{account}/loadbalancers/{loadBalancerId}/connectionloggingAdmin,
Creator
Enables or disables connection logging.

Throttle connections

MethodAPI actionRoleDescription
Show connection throttling configurationGET /v1.0/{account}/loadbalancers/{loadBalancerId}/connectionthrottleAdmin,
Creator,
Observer
Shows the connection throttling configuration.
Create or update connection throttling configurationPUT /v1.0/{account}/loadbalancers/{loadBalancerId}/connectionthrottleAdmin,
Creator
Creates or updates the throttling configuration.
Delete connection throttling configurationDELETE /v1.0/{account}/loadbalancers/{loadBalancerId}/connectionthrottleAdminDeletes the connection throttling configuration.

Content caching

MethodAPI actionRoleDescription
Show content caching configurationGET /v1.0/{account}/loadbalancers/{loadBalancerId}/contentcachingAdmin,
Creator,
Observer
Shows the current configuration of content caching.
Enable or disable content cachingPUT /v1.0/{account}/loadbalancers/{loadBalancerId}/contentcachingAdmin,
Creator
Enables or disables content caching.

Protocols

MethodAPI actionRoleDescription
List load balancing protocolsGET /v1.0/{account}/loadbalancers/protocolsAdmin,
Creator,
Observer
Lists supported load balancing protocols.

Algorithms

MethodAPI actionRoleDescription
List load balancing algorithmsGET /v1.0/{account}/loadbalancers/algorithmsAdmin,
Creator,
Observer
Lists all supported load balancing algorithms.

SSL termination

MethodAPI actionRoleDescription
Show SSL termination configurationGET /v1.0/{account}/loadbalancers/{loadBalancerId}/sslterminationAdmin,
Creator,
Observer
Shows the load balancer's SSL termination configuration.
Update SSL termination configurationPUT /v1.0/{account}/loadbalancers/{loadBalancerId}/sslterminationAdmin,
Creator
Updates the SSL termination configuration.
Delete SSL terminationDELETE /v1.0/{account}/loadbalancers/{loadBalancerId}/sslterminationAdminDeletes SSL termination.

Certificate mappings

MethodAPI actionRoleDescription
List certificate mappingsGET /v1.0/{account}/loadbalancers/{loadBalancerId}/ssltermination/certificatemappingsAdmin,
Creator,
Observer
Lists certificate mappings configured for the specified load balancer.
Add certificate mappingPOST /v1.0/{account}/loadbalancers/{loadBalancerId}/ssltermination/certificatemappingsAdmin,
Creator
Adds a certificate mapping to the specified load balancer.
Show certificate mappings detailsGET /v1.0/{account}/loadbalancers/{loadBalancerId}/ssltermination/
certificatemappings/{certificateMappingId}
Admin,
Creator,
Observer
Shows the details for the specified certificate mapping.
Update certificate mappingPUT /v1.0/{account}/loadbalancers/{loadBalancerId}/ssltermination/
certificatemappings/{certificateMappingId}
Admin,
Creator
Updates the configuration for the specified certificate mapping on the specified load balancer.
Delete certificate mappingDELETE /v1.0/{account}/loadbalancers/{loadBalancerId}/ssltermination/
certificatemappings/{certificateMappingId}
AdminDeletes the specified certificate mapping from the specified load balancer.

Metadata

MethodAPI actionRoleDescription
Add load balancer metadataPOST /v1.0/{account}/loadbalancers/{loadBalancerId}/metadataAdmin,
Creator
Adds a metadata item to the load balancer.
Show load balancer metadataGET /v1.0/{account}/loadbalancers/{loadBalancerId}/metadataAdmin,
Creator,
Observer
Shows all metadata associated with the specified load balancer.
Bulk-delete load balancer metadata itemsDELETE /v1.0/{account}/loadbalancers/{loadBalancerId}/
metadata?id={metaId} & id={metaId}
AdminDeletes the specified metadata items.
Show load balancer metadata itemGET /v1.0/{account}/loadbalancers/{loadBalancerId}/metadata/{metaId}Admin,
Creator,
Observer
Shows details for the specified metadata item for the specified load balancer.
Update load balancer metadata itemPUT /v1.0/{account}/loadbalancers/{loadBalancerId}/metadata/{metaId}Admin,
Creator
Updates the configuration of the specified metadata item on the specified load balancer.
Delete load balancer metadata itemDELETE /v1.0/{account}/loadbalancers/{loadBalancerId}/metadata/{metaId}AdminDeletes a metadata item from the load balancer.
Show load balancer node metadataGET /v1.0/{account}/loadbalancers/{loadBalancerId}/nodes/{nodeId}/metadataAdmin,
Creator,
Observer
Shows all metadata associated with the specified node and load balancer.
Add load balancer node metadata itemPOST /v1.0/{account}/loadbalancers/{loadBalancerId}/nodes/{nodeId}/metadataAdmin,
Creator
Adds a metadata item to the specified node and load balancer.
Bulk-delete load balancer node metadata itemsDELETE /v1.0/{account}/loadbalancers/{loadBalancerId}/nodes/{nodeId}/
metadata?id='{metaId}' & id='{metaId}'
AdminDeletes the specified metadata items.
Show load balancer node metadata itemGET /v1.0/{account}/loadbalancers/{loadBalancerId}/nodes/{nodeId}/metadata/{metaId}Admin,
Creator,
Observer
Shows details for the specified metadata item for the specified node and load balancer.
Update load balancer node metadata itemPUT /v1.0/{account}/loadbalancers/{loadBalancerId}/nodes/{nodeId}/metadata/{metaId}Admin,
Creator
Updates the configuration of a metadata item on the node.
Delete load balancer node metadata itemDELETE /v1.0/{account}/loadbalancers/{loadBalancerId}/nodes/{nodeId}/metadata/{metaId}AdminDeletes the specified metadata item from the node.

Limits

MethodAPI actionRoleDescription
List absolute limitsGET /v1.0/{account}/loadbalancers/absolutelimitsAdmin,
Creator,
Observer
Lists the current absolute limits for the account.
List limitsGET /v1.0/{account}/loadbalancers/limitsAdmin,
Creator,
Observer
Lists the current limits for the account.

Related article

Role-based Access Control (RBAC) permissions matrix for Cloud Hosting