Permissions matrix for Cloud Load Balancers

Suggest Edits

The Cloud Load Balancers permissions matrix displays specific permissions for the following role-based access control (RBAC) roles:

Admin provides full access to create, read, update, and delete.
Creator provides access to create, read, and update.
Observer provides read-only access.

The matrix displays the Cloud Load Balancers methods grouped by category, their corresponding RESTful API commands, and the RBAC roles that are supported.

Load balancer

Method	API action	Role	Description
List load balancers	`GET /v1.0/{account}/loadbalancers`	Admin, Creator, Observer	Lists load balancers configured and associated with your account.
Show load balancer details	`GET /v1.0/{account}/loadbalancers/{loadBalancerId}`	Admin, Creator, Observer	Shows details for a specified load balancer.
Create load balancer	`POST /v1.0/{account}/loadbalancers`	Admin, Creator	Creates a new load balancer with the configuration defined by the request.
Update load balancer properties	`PUT /v1.0/{account}/loadbalancers/{loadBalancerId}`	Admin, Creator	Updates the properties of the specified load balancer.
Delete load balancer	`DELETE /v1.0/{account}/loadbalancers/{loadBalancerId}`	Admin	Deletes the specified load balancer and its associated configuration from the account.
Bulk-delete load balancers	`DELETE /v1.0/{account}/loadbalancers?id={loadBalancerId}`	Admin	Deletes all of the load balancers that you specify.

Error pages

Method	API action	Role	Description
Show custom error page	`GET /v1.0/{account}/loadbalancers/{loadBalancerId}/errorpage`	Admin, Creator, Observer	Shows the custom error page configured for the specified load balancer.
Set custom error page	`PUT /v1.0/{account}/loadbalancers/{loadBalancerId}/errorpage`	Admin, Creator	Sets or updates a custom error page for the specified load balancer.
Delete custom error page	`DELETE /v1.0/{account}/loadbalancers/{loadBalancerId}/errorpage`	Admin	Deletes the custom error page for the specified load balancer.

Load balancer statistics

Method	API action	Role	Description
Show load balancer statistics	`GET /v1.0/{account}/loadbalancers/{loadBalancerId}/stats`	Admin, Creator, Observer	Shows the statistics for the specified load balancer.

Nodes

Method	API action	Role	Description
List nodes	`GET /v1.0/{account}/loadbalancers/{loadBalancerId}/nodes`	Admin, Creator, Observer	Lists nodes configured for the specified load balancer.
Show node details	`GET /v1.0/{account}/loadbalancers/{loadBalancerId}/nodes/{nodeId}`	Admin, Creator, Observer	Shows details for the specified node.
Add node	`POST /v1.0/{account}/loadbalancers/{loadBalancerId}/nodes`	Admin, Creator	Adds a node to the specified load balancer.
Update node	`PUT /v1.0/{account}/loadbalancers/{loadBalancerId}/nodes/{nodeId}`	Admin, Creator	Updates the configuration for the specified node on the specified load balancer.
Delete node	`DELETE /v1.0/{account}/loadbalancers/{loadBalancerId}/nodes/{nodeId}`	Admin	Deletes the specified node from the specified load balancer.
Bulk-delete nodes	`DELETE /loadbalancers/{loadBalancerId}/nodes?id='{nodeId}'`	Admin	Deletes the specified nodes from the specified load balancer.
List node service events	`GET /v1.0/{account}/loadbalancers/{loadBalancerId}/nodes/events`	Admin, Creator, Observer	Lists events associated with the activity between the node and the load balancer.

Virtual IPs

Method	API action	Role	Description
List virtual IPs	`GET /v1.0/{account}/loadbalancers/{loadBalancerId}/virtualips`	Admin, Creator, Observer	Lists virtual IPs associated with the specified load balancer.
Add virtual IP version 6	`POST /v1.0/{account}/loadbalancers/{loadBalancerId}/virtualips`	Admin, Creator	Adds virtual IP version 6.
Bulk-delete virtual IPs	`DELETE /v1.0/{account}/loadbalancers/{loadBalancerId}/` `virtualips?id='{virtualIpId}' & id='{virtualIpId}'`	Admin	Deletes the specified virtual IPs.
Delete virtual IP	`DELETE /v1.0/{account}/loadbalancers/{loadBalancerId}/virtualips/{virtualIpId}`	Admin	Deletes the specified virtual IP.

Allowed domains

Method	API action	Role	Description
List allowed domains	`GET /v1.0/{account}/loadbalancers/alloweddomains`	Admin, Creator, Observer	Lists allowed domains.

Usage reports

Method	API action	Role	Description
List billable load balancers	`GET /v1.0/{account}/loadbalancers/billable`	Admin, Creator, Observer	Lists billable load balancers for a specified date range.
Show account-level usage	`GET /v1.0/{account}/loadbalancers/usage`	Admin, Creator, Observer	Shows account-level usage for up to 90 days of service activity.
Show historical usage	`GET /v1.0/{account}/loadbalancers/{loadBalancerId}/usage`	Admin, Creator, Observer	Shows historical usage for up to 90 days of service activity.
Show current usage	`GET /v1.0/{account}/loadbalancers/{loadBalancerId}/usage/current`	Admin, Creator, Observer	Shows current usage.

Access lists

Method	API action	Role	Description
Show access list	`GET /v1.0/{account}/loadbalancers/{loadBalancerId}/accesslist`	Admin, Creator, Observer	Shows the access list.
Create or update access list	`POST /v1.0/{account}/loadbalancers/{loadBalancerId}/accesslist`	Admin, Creator	Creates or appends to an access list.
Delete access list	`DELETE /v1.0/{account}/loadbalancers/{loadBalancerId}/accesslist`	Admin	Deletes the entire access list.
Bulk-delete networks from access list	`DELETE /v1.0/{account}/loadbalancers/{loadBalancerId}/` `accesslist?id='{id1}' & id='{id2}'`	Admin	Deletes the specified networks from the access list.
Delete network from access list	`DELETE /v1.0/{account}/loadbalancers/{loadBalancerId}/accesslist/{networkItemId}`	Admin	Deletes the specified network item from the access list.

Monitors

Method	API action	Role	Description
Show health monitor configuration	`GET /v1.0/{account}/loadbalancers/{loadBalancerId}/healthmonitor`	Admin, Creator, Observer	Shows the health monitor configuration, if one exists.
Update health monitor	`PUT /v1.0/{account}/loadbalancers/{loadBalancerId}/healthmonitor`	Admin, Creator	Updates the settings for a health monitor.
Delete health monitor	`DELETE /v1.0/{account}/loadbalancers/{loadBalancerId}/healthmonitor`	Admin	Deletes a health monitor.

Session persistence

Method	API action	Role	Description
Show session persistence configuration	`GET /v1.0/{account}/loadbalancers/{loadBalancerId}/sessionpersistence`	Admin, Creator, Observer	Shows the session persistence configuration.
Enable session persistence	`PUT /v1.0/{account}/loadbalancers/{loadBalancerId}/sessionpersistence`	Admin, Creator	Enables session persistence.
Disable session persistence	`DELETE /v1.0/{account}/loadbalancers/{loadBalancerId}/sessionpersistence`	Admin	Disables session persistence.

Log connections

Method	API action	Role	Description
Show connection logging configuration	`GET /v1.0/{account}/loadbalancers/{loadBalancerId}/connectionlogging`	Admin, Creator, Observer	Shows the connection logging configuration.
Enable or disable connection logging	`PUT /v1.0/{account}/loadbalancers/{loadBalancerId}/connectionlogging`	Admin, Creator	Enables or disables connection logging.

Throttle connections

Method	API action	Role	Description
Show connection throttling configuration	`GET /v1.0/{account}/loadbalancers/{loadBalancerId}/connectionthrottle`	Admin, Creator, Observer	Shows the connection throttling configuration.
Create or update connection throttling configuration	`PUT /v1.0/{account}/loadbalancers/{loadBalancerId}/connectionthrottle`	Admin, Creator	Creates or updates the throttling configuration.
Delete connection throttling configuration	`DELETE /v1.0/{account}/loadbalancers/{loadBalancerId}/connectionthrottle`	Admin	Deletes the connection throttling configuration.

Content caching

Method	API action	Role	Description
Show content caching configuration	`GET /v1.0/{account}/loadbalancers/{loadBalancerId}/contentcaching`	Admin, Creator, Observer	Shows the current configuration of content caching.
Enable or disable content caching	`PUT /v1.0/{account}/loadbalancers/{loadBalancerId}/contentcaching`	Admin, Creator	Enables or disables content caching.

Protocols

Method	API action	Role	Description
List load balancing protocols	`GET /v1.0/{account}/loadbalancers/protocols`	Admin, Creator, Observer	Lists supported load balancing protocols.

Algorithms

Method	API action	Role	Description
List load balancing algorithms	`GET /v1.0/{account}/loadbalancers/algorithms`	Admin, Creator, Observer	Lists all supported load balancing algorithms.

SSL termination

Method	API action	Role	Description
Show SSL termination configuration	`GET /v1.0/{account}/loadbalancers/{loadBalancerId}/ssltermination`	Admin, Creator, Observer	Shows the load balancer's SSL termination configuration.
Update SSL termination configuration	`PUT /v1.0/{account}/loadbalancers/{loadBalancerId}/ssltermination`	Admin, Creator	Updates the SSL termination configuration.
Delete SSL termination	`DELETE /v1.0/{account}/loadbalancers/{loadBalancerId}/ssltermination`	Admin	Deletes SSL termination.

Certificate mappings

Method	API action	Role	Description
List certificate mappings	`GET /v1.0/{account}/loadbalancers/{loadBalancerId}/ssltermination/certificatemappings`	Admin, Creator, Observer	Lists certificate mappings configured for the specified load balancer.
Add certificate mapping	`POST /v1.0/{account}/loadbalancers/{loadBalancerId}/ssltermination/certificatemappings`	Admin, Creator	Adds a certificate mapping to the specified load balancer.
Show certificate mappings details	`GET /v1.0/{account}/loadbalancers/{loadBalancerId}/ssltermination/` `certificatemappings/{certificateMappingId}`	Admin, Creator, Observer	Shows the details for the specified certificate mapping.
Update certificate mapping	`PUT /v1.0/{account}/loadbalancers/{loadBalancerId}/ssltermination/` `certificatemappings/{certificateMappingId}`	Admin, Creator	Updates the configuration for the specified certificate mapping on the specified load balancer.
Delete certificate mapping	`DELETE /v1.0/{account}/loadbalancers/{loadBalancerId}/ssltermination/` `certificatemappings/{certificateMappingId}`	Admin	Deletes the specified certificate mapping from the specified load balancer.

Metadata

Method	API action	Role	Description
Add load balancer metadata	`POST /v1.0/{account}/loadbalancers/{loadBalancerId}/metadata`	Admin, Creator	Adds a metadata item to the load balancer.
Show load balancer metadata	`GET /v1.0/{account}/loadbalancers/{loadBalancerId}/metadata`	Admin, Creator, Observer	Shows all metadata associated with the specified load balancer.
Bulk-delete load balancer metadata items	`DELETE /v1.0/{account}/loadbalancers/{loadBalancerId}/` `metadata?id={metaId} & id={metaId}`	Admin	Deletes the specified metadata items.
Show load balancer metadata item	`GET /v1.0/{account}/loadbalancers/{loadBalancerId}/metadata/{metaId}`	Admin, Creator, Observer	Shows details for the specified metadata item for the specified load balancer.
Update load balancer metadata item	`PUT /v1.0/{account}/loadbalancers/{loadBalancerId}/metadata/{metaId}`	Admin, Creator	Updates the configuration of the specified metadata item on the specified load balancer.
Delete load balancer metadata item	`DELETE /v1.0/{account}/loadbalancers/{loadBalancerId}/metadata/{metaId}`	Admin	Deletes a metadata item from the load balancer.
Show load balancer node metadata	`GET /v1.0/{account}/loadbalancers/{loadBalancerId}/nodes/{nodeId}/metadata`	Admin, Creator, Observer	Shows all metadata associated with the specified node and load balancer.
Add load balancer node metadata item	`POST /v1.0/{account}/loadbalancers/{loadBalancerId}/nodes/{nodeId}/metadata`	Admin, Creator	Adds a metadata item to the specified node and load balancer.
Bulk-delete load balancer node metadata items	`DELETE /v1.0/{account}/loadbalancers/{loadBalancerId}/nodes/{nodeId}/` `metadata?id='{metaId}' & id='{metaId}'`	Admin	Deletes the specified metadata items.
Show load balancer node metadata item	`GET /v1.0/{account}/loadbalancers/{loadBalancerId}/nodes/{nodeId}/metadata/{metaId}`	Admin, Creator, Observer	Shows details for the specified metadata item for the specified node and load balancer.
Update load balancer node metadata item	`PUT /v1.0/{account}/loadbalancers/{loadBalancerId}/nodes/{nodeId}/metadata/{metaId}`	Admin, Creator	Updates the configuration of a metadata item on the node.
Delete load balancer node metadata item	`DELETE /v1.0/{account}/loadbalancers/{loadBalancerId}/nodes/{nodeId}/metadata/{metaId}`	Admin	Deletes the specified metadata item from the node.

Limits

Method	API action	Role	Description
List absolute limits	`GET /v1.0/{account}/loadbalancers/absolutelimits`	Admin, Creator, Observer	Lists the current absolute limits for the account.
List limits	`GET /v1.0/{account}/loadbalancers/limits`	Admin, Creator, Observer	Lists the current limits for the account.

Role-based Access Control (RBAC) permissions matrix for Cloud Hosting

Updated 12 months ago