Permissions matrix for Cloud Load Balancers
The Cloud Load Balancers permissions matrix displays specific permissions for the following role-based access control (RBAC) roles:
- Admin provides full access to create, read, update, and delete.
- Creator provides access to create, read, and update.
- Observer provides read-only access.
The matrix displays the Cloud Load Balancers methods grouped by category, their corresponding RESTful API commands, and the RBAC roles that are supported.
Load balancer
Method | API action | Role | Description |
---|---|---|---|
List load balancers | GET /v1.0/{account}/loadbalancers | Admin, Creator, Observer | Lists load balancers configured and associated with your account. |
Show load balancer details | GET /v1.0/{account}/loadbalancers/{loadBalancerId} | Admin, Creator, Observer | Shows details for a specified load balancer. |
Create load balancer | POST /v1.0/{account}/loadbalancers | Admin, Creator | Creates a new load balancer with the configuration defined by the request. |
Update load balancer properties | PUT /v1.0/{account}/loadbalancers/{loadBalancerId} | Admin, Creator | Updates the properties of the specified load balancer. |
Delete load balancer | DELETE /v1.0/{account}/loadbalancers/{loadBalancerId} | Admin | Deletes the specified load balancer and its associated configuration from the account. |
Bulk-delete load balancers | DELETE /v1.0/{account}/loadbalancers?id={loadBalancerId} | Admin | Deletes all of the load balancers that you specify. |
Error pages
Method | API action | Role | Description |
---|---|---|---|
Show custom error page | GET /v1.0/{account}/loadbalancers/{loadBalancerId}/errorpage | Admin, Creator, Observer | Shows the custom error page configured for the specified load balancer. |
Set custom error page | PUT /v1.0/{account}/loadbalancers/{loadBalancerId}/errorpage | Admin, Creator | Sets or updates a custom error page for the specified load balancer. |
Delete custom error page | DELETE /v1.0/{account}/loadbalancers/{loadBalancerId}/errorpage | Admin | Deletes the custom error page for the specified load balancer. |
Load balancer statistics
Method | API action | Role | Description |
---|---|---|---|
Show load balancer statistics | GET /v1.0/{account}/loadbalancers/{loadBalancerId}/stats | Admin, Creator, Observer | Shows the statistics for the specified load balancer. |
Nodes
Method | API action | Role | Description |
---|---|---|---|
List nodes | GET /v1.0/{account}/loadbalancers/{loadBalancerId}/nodes | Admin, Creator, Observer | Lists nodes configured for the specified load balancer. |
Show node details | GET /v1.0/{account}/loadbalancers/{loadBalancerId}/nodes/{nodeId} | Admin, Creator, Observer | Shows details for the specified node. |
Add node | POST /v1.0/{account}/loadbalancers/{loadBalancerId}/nodes | Admin, Creator | Adds a node to the specified load balancer. |
Update node | PUT /v1.0/{account}/loadbalancers/{loadBalancerId}/nodes/{nodeId} | Admin, Creator | Updates the configuration for the specified node on the specified load balancer. |
Delete node | DELETE /v1.0/{account}/loadbalancers/{loadBalancerId}/nodes/{nodeId} | Admin | Deletes the specified node from the specified load balancer. |
Bulk-delete nodes | DELETE /loadbalancers/{loadBalancerId}/nodes?id='{nodeId}' | Admin | Deletes the specified nodes from the specified load balancer. |
List node service events | GET /v1.0/{account}/loadbalancers/{loadBalancerId}/nodes/events | Admin, Creator, Observer | Lists events associated with the activity between the node and the load balancer. |
Virtual IPs
Method | API action | Role | Description |
---|---|---|---|
List virtual IPs | GET /v1.0/{account}/loadbalancers/{loadBalancerId}/virtualips | Admin, Creator, Observer | Lists virtual IPs associated with the specified load balancer. |
Add virtual IP version 6 | POST /v1.0/{account}/loadbalancers/{loadBalancerId}/virtualips | Admin, Creator | Adds virtual IP version 6. |
Bulk-delete virtual IPs | DELETE /v1.0/{account}/loadbalancers/{loadBalancerId}/ virtualips?id='{virtualIpId}' & id='{virtualIpId}' | Admin | Deletes the specified virtual IPs. |
Delete virtual IP | DELETE /v1.0/{account}/loadbalancers/{loadBalancerId}/virtualips/{virtualIpId} | Admin | Deletes the specified virtual IP. |
Allowed domains
Method | API action | Role | Description |
---|---|---|---|
List allowed domains | GET /v1.0/{account}/loadbalancers/alloweddomains | Admin, Creator, Observer | Lists allowed domains. |
Usage reports
Method | API action | Role | Description |
---|---|---|---|
List billable load balancers | GET /v1.0/{account}/loadbalancers/billable | Admin, Creator, Observer | Lists billable load balancers for a specified date range. |
Show account-level usage | GET /v1.0/{account}/loadbalancers/usage | Admin, Creator, Observer | Shows account-level usage for up to 90 days of service activity. |
Show historical usage | GET /v1.0/{account}/loadbalancers/{loadBalancerId}/usage | Admin, Creator, Observer | Shows historical usage for up to 90 days of service activity. |
Show current usage | GET /v1.0/{account}/loadbalancers/{loadBalancerId}/usage/current | Admin, Creator, Observer | Shows current usage. |
Access lists
Method | API action | Role | Description |
---|---|---|---|
Show access list | GET /v1.0/{account}/loadbalancers/{loadBalancerId}/accesslist | Admin, Creator, Observer | Shows the access list. |
Create or update access list | POST /v1.0/{account}/loadbalancers/{loadBalancerId}/accesslist | Admin, Creator | Creates or appends to an access list. |
Delete access list | DELETE /v1.0/{account}/loadbalancers/{loadBalancerId}/accesslist | Admin | Deletes the entire access list. |
Bulk-delete networks from access list | DELETE /v1.0/{account}/loadbalancers/{loadBalancerId}/ accesslist?id='{id1}' & id='{id2}' | Admin | Deletes the specified networks from the access list. |
Delete network from access list | DELETE /v1.0/{account}/loadbalancers/{loadBalancerId}/accesslist/{networkItemId} | Admin | Deletes the specified network item from the access list. |
Monitors
Method | API action | Role | Description |
---|---|---|---|
Show health monitor configuration | GET /v1.0/{account}/loadbalancers/{loadBalancerId}/healthmonitor | Admin, Creator, Observer | Shows the health monitor configuration, if one exists. |
Update health monitor | PUT /v1.0/{account}/loadbalancers/{loadBalancerId}/healthmonitor | Admin, Creator | Updates the settings for a health monitor. |
Delete health monitor | DELETE /v1.0/{account}/loadbalancers/{loadBalancerId}/healthmonitor | Admin | Deletes a health monitor. |
Session persistence
Method | API action | Role | Description |
---|---|---|---|
Show session persistence configuration | GET /v1.0/{account}/loadbalancers/{loadBalancerId}/sessionpersistence | Admin, Creator, Observer | Shows the session persistence configuration. |
Enable session persistence | PUT /v1.0/{account}/loadbalancers/{loadBalancerId}/sessionpersistence | Admin, Creator | Enables session persistence. |
Disable session persistence | DELETE /v1.0/{account}/loadbalancers/{loadBalancerId}/sessionpersistence | Admin | Disables session persistence. |
Log connections
Method | API action | Role | Description |
---|---|---|---|
Show connection logging configuration | GET /v1.0/{account}/loadbalancers/{loadBalancerId}/connectionlogging | Admin, Creator, Observer | Shows the connection logging configuration. |
Enable or disable connection logging | PUT /v1.0/{account}/loadbalancers/{loadBalancerId}/connectionlogging | Admin, Creator | Enables or disables connection logging. |
Throttle connections
Method | API action | Role | Description |
---|---|---|---|
Show connection throttling configuration | GET /v1.0/{account}/loadbalancers/{loadBalancerId}/connectionthrottle | Admin, Creator, Observer | Shows the connection throttling configuration. |
Create or update connection throttling configuration | PUT /v1.0/{account}/loadbalancers/{loadBalancerId}/connectionthrottle | Admin, Creator | Creates or updates the throttling configuration. |
Delete connection throttling configuration | DELETE /v1.0/{account}/loadbalancers/{loadBalancerId}/connectionthrottle | Admin | Deletes the connection throttling configuration. |
Content caching
Method | API action | Role | Description |
---|---|---|---|
Show content caching configuration | GET /v1.0/{account}/loadbalancers/{loadBalancerId}/contentcaching | Admin, Creator, Observer | Shows the current configuration of content caching. |
Enable or disable content caching | PUT /v1.0/{account}/loadbalancers/{loadBalancerId}/contentcaching | Admin, Creator | Enables or disables content caching. |
Protocols
Method | API action | Role | Description |
---|---|---|---|
List load balancing protocols | GET /v1.0/{account}/loadbalancers/protocols | Admin, Creator, Observer | Lists supported load balancing protocols. |
Algorithms
Method | API action | Role | Description |
---|---|---|---|
List load balancing algorithms | GET /v1.0/{account}/loadbalancers/algorithms | Admin, Creator, Observer | Lists all supported load balancing algorithms. |
SSL termination
Method | API action | Role | Description |
---|---|---|---|
Show SSL termination configuration | GET /v1.0/{account}/loadbalancers/{loadBalancerId}/ssltermination | Admin, Creator, Observer | Shows the load balancer's SSL termination configuration. |
Update SSL termination configuration | PUT /v1.0/{account}/loadbalancers/{loadBalancerId}/ssltermination | Admin, Creator | Updates the SSL termination configuration. |
Delete SSL termination | DELETE /v1.0/{account}/loadbalancers/{loadBalancerId}/ssltermination | Admin | Deletes SSL termination. |
Certificate mappings
Method | API action | Role | Description |
---|---|---|---|
List certificate mappings | GET /v1.0/{account}/loadbalancers/{loadBalancerId}/ssltermination/certificatemappings | Admin, Creator, Observer | Lists certificate mappings configured for the specified load balancer. |
Add certificate mapping | POST /v1.0/{account}/loadbalancers/{loadBalancerId}/ssltermination/certificatemappings | Admin, Creator | Adds a certificate mapping to the specified load balancer. |
Show certificate mappings details | GET /v1.0/{account}/loadbalancers/{loadBalancerId}/ssltermination/ certificatemappings/{certificateMappingId} | Admin, Creator, Observer | Shows the details for the specified certificate mapping. |
Update certificate mapping | PUT /v1.0/{account}/loadbalancers/{loadBalancerId}/ssltermination/ certificatemappings/{certificateMappingId} | Admin, Creator | Updates the configuration for the specified certificate mapping on the specified load balancer. |
Delete certificate mapping | DELETE /v1.0/{account}/loadbalancers/{loadBalancerId}/ssltermination/ certificatemappings/{certificateMappingId} | Admin | Deletes the specified certificate mapping from the specified load balancer. |
Metadata
Method | API action | Role | Description |
---|---|---|---|
Add load balancer metadata | POST /v1.0/{account}/loadbalancers/{loadBalancerId}/metadata | Admin, Creator | Adds a metadata item to the load balancer. |
Show load balancer metadata | GET /v1.0/{account}/loadbalancers/{loadBalancerId}/metadata | Admin, Creator, Observer | Shows all metadata associated with the specified load balancer. |
Bulk-delete load balancer metadata items | DELETE /v1.0/{account}/loadbalancers/{loadBalancerId}/ metadata?id={metaId} & id={metaId} | Admin | Deletes the specified metadata items. |
Show load balancer metadata item | GET /v1.0/{account}/loadbalancers/{loadBalancerId}/metadata/{metaId} | Admin, Creator, Observer | Shows details for the specified metadata item for the specified load balancer. |
Update load balancer metadata item | PUT /v1.0/{account}/loadbalancers/{loadBalancerId}/metadata/{metaId} | Admin, Creator | Updates the configuration of the specified metadata item on the specified load balancer. |
Delete load balancer metadata item | DELETE /v1.0/{account}/loadbalancers/{loadBalancerId}/metadata/{metaId} | Admin | Deletes a metadata item from the load balancer. |
Show load balancer node metadata | GET /v1.0/{account}/loadbalancers/{loadBalancerId}/nodes/{nodeId}/metadata | Admin, Creator, Observer | Shows all metadata associated with the specified node and load balancer. |
Add load balancer node metadata item | POST /v1.0/{account}/loadbalancers/{loadBalancerId}/nodes/{nodeId}/metadata | Admin, Creator | Adds a metadata item to the specified node and load balancer. |
Bulk-delete load balancer node metadata items | DELETE /v1.0/{account}/loadbalancers/{loadBalancerId}/nodes/{nodeId}/ metadata?id='{metaId}' & id='{metaId}' | Admin | Deletes the specified metadata items. |
Show load balancer node metadata item | GET /v1.0/{account}/loadbalancers/{loadBalancerId}/nodes/{nodeId}/metadata/{metaId} | Admin, Creator, Observer | Shows details for the specified metadata item for the specified node and load balancer. |
Update load balancer node metadata item | PUT /v1.0/{account}/loadbalancers/{loadBalancerId}/nodes/{nodeId}/metadata/{metaId} | Admin, Creator | Updates the configuration of a metadata item on the node. |
Delete load balancer node metadata item | DELETE /v1.0/{account}/loadbalancers/{loadBalancerId}/nodes/{nodeId}/metadata/{metaId} | Admin | Deletes the specified metadata item from the node. |
Limits
Method | API action | Role | Description |
---|---|---|---|
List absolute limits | GET /v1.0/{account}/loadbalancers/absolutelimits | Admin, Creator, Observer | Lists the current absolute limits for the account. |
List limits | GET /v1.0/{account}/loadbalancers/limits | Admin, Creator, Observer | Lists the current limits for the account. |
Related article
Role-based Access Control (RBAC) permissions matrix for Cloud Hosting
Updated about 1 year ago