Permissions Matrix for Cloud Load Balancers

The Cloud Load Balancers permissions matrix displays specific permissions for the following role-based access control (RBAC) roles:

Admin provides full access to create, read, update, and delete.
Creator provides access to create, read, and update.
Observer provides read-only access.

The matrix displays the Cloud Load Balancers methods grouped by category, their corresponding RESTful API commands, and the RBAC roles that are supported.

Load Balancer

Method	API action	Role	Description
List load balancers	`GET /v1.0/{account}/loadbalancers`	Admin, Creator, Observer	Lists load balancers configured and associated with your account.
Show load balancer details	`GET /v1.0/{account}/loadbalancers/{loadBalancerId}`	Admin, Creator, Observer*	Shows details for a specified load balancer.
Create load balancer	`POST /v1.0/{account}/loadbalancers`	Admin, Creator	Creates a new load balancer with the configuration defined by the request.
Update load balancer properties	`PUT /v1.0/{account}/loadbalancers/{loadBalancerId}`	Admin, Creator
Delete load balancer	`DELETE /v1.0/{account}/loadbalancers/{loadBalancerId}`	Admin	Deletes the specified load balancer and its associated configuration from the account.
Bulk-delete load balancers	`DELETE /v1.0/{account}/loadbalancers?id={loadBalancerId}`	Admin	Deletes all of the load balancers that you specify.

Error Pages

Method	API action	Role	Description
Show custom error page	`GET /v1.0/{account}/loadbalancers/{loadBalancerId}/errorpage`	Admin, Creator, Observer	Shows the custom error page configured for the specified load balancer.
Set custom error page	`PUT /v1.0/{account}/loadbalancers/{loadBalancerId}/errorpage`	Admin, Creator
Delete custom error page	`DELETE /v1.0/{account}/loadbalancers/{loadBalancerId}/errorpage`	Admin	Deletes the custom error page for the specified load balancer.

Load Balancer Statistics

Method	API action	Role	Description
Show load balancer statistics	`GET /v1.0/{account}/loadbalancers/{loadBalancerId}/stats`	Admin, Creator, Observer	Shows the statistics for the specified load balancer.

Nodes

Method	API action	Role	Description
List nodes	`GET /v1.0/{account}/loadbalancers/{loadBalancerId}/nodes`	Admin, Creator, Observer	Lists nodes configured for the specified load balancer.
Show node details	`GET /v1.0/{account}/loadbalancers/{loadBalancerId}/nodes/{nodeId}`	Admin, Creator, Observer	Shows details for the specified node.
Add node	`POST /v1.0/{account}/loadbalancers/{loadBalancerId}/nodes`	Admin, Creator
Update node	`PUT /v1.0/{account}/loadbalancers/{loadBalancerId}/nodes/{nodeId}`	Admin, Creator
Delete node	`DELETE /v1.0/{account}/loadbalancers/{loadBalancerId}/nodes/{nodeId}`	Admin	Deletes the specified node from the specified load balancer.
Bulk-delete nodes	`DELETE /loadbalancers/{loadBalancerId}/nodes?id='{nodeId}'`	Admin	Deletes the specified nodes from the specified load balancer.
List node service events	`GET /v1.0/{account}/loadbalancers/{loadBalancerId}/nodes/events`	Admin, Creator, Observer	Lists events associated with the activity between the node and the load balancer.

Virtual IPs

Method	API action	Role	Description
List virtual IPs	`GET /v1.0/{account}/loadbalancers/{loadBalancerId}/virtualips`	Admin, Creator, Observer	Lists virtual IPs associated with the specified load balancer.
Add virtual IP version 6	`POST /v1.0/{account}/loadbalancers/{loadBalancerId}/virtualips`	Admin, Creator
Bulk-delete virtual IPs	`DELETE /v1.0/{account}/loadbalancers/{loadBalancerId}/` `virtualips?id='{virtualIpId}' & id='{virtualIpId}'`	Admin	Deletes the specified virtual IPs.
Delete virtual IP	`DELETE /v1.0/{account}/loadbalancers/{loadBalancerId}/virtualips/{virtualIpId}`	Admin	Deletes the specified virtual IP.

Allowed Domains

Method	API action	Role	Description
List allowed domains	`GET /v1.0/{account}/loadbalancers/alloweddomains`	Admin, Creator, Observer	Lists allowed domains.

Usage Reports

Method	API action	Role	Description
List billable load balancers	`GET /v1.0/{account}/loadbalancers/billable`	Admin, Creator, Observer*	Lists billable load balancers for a specified date range.
Show account-level usage	`GET /v1.0/{account}/loadbalancers/usage`	Admin, Creator, Observer	Shows account-level usage for up to 90 days of service activity.
Show historical usage	`GET /v1.0/{account}/loadbalancers/{loadBalancerId}/usage`	Admin, Creator, Observer	Shows historical usage for up to 90 days of service activity.
Show current usage	`GET /v1.0/{account}/loadbalancers/{loadBalancerId}/usage/current`	Admin, Creator, Observer	Shows current usage.

Access Lists

Method	API action	Role	Description
Show access list	`GET /v1.0/{account}/loadbalancers/{loadBalancerId}/accesslist`	Admin, Creator, Observer	Shows the access list.
Create or update access list	`POST /v1.0/{account}/loadbalancers/{loadBalancerId}/accesslist`	Admin, Creator
Delete access list	`DELETE /v1.0/{account}/loadbalancers/{loadBalancerId}/accesslist`	Admin	Deletes the entire access list.
Bulk-delete networks from access list	`DELETE /v1.0/{account}/loadbalancers/{loadBalancerId}/` `accesslist?id='{id1}' & id='{id2}'`	Admin	Deletes the specified networks from the access list.
Delete network from access list	`DELETE /v1.0/{account}/loadbalancers/{loadBalancerId}/accesslist/{networkItemId}`	Admin	Deletes the specified network item from the access list.

Monitors

Method	API action	Role	Description
Show health monitor configuration	`GET /v1.0/{account}/loadbalancers/{loadBalancerId}/healthmonitor`	Admin, Creator, Observer	Shows the health monitor configuration, if one exists.
Update health monitor	`PUT /v1.0/{account}/loadbalancers/{loadBalancerId}/healthmonitor`	Admin, Creator
Delete health monitor	`DELETE /v1.0/{account}/loadbalancers/{loadBalancerId}/healthmonitor`	Admin	Deletes a health monitor.

Session Persistence

Method	API action	Role	Description
Show session persistence configuration	`GET /v1.0/{account}/loadbalancers/{loadBalancerId}/sessionpersistence`	Admin, Creator, Observer	Shows the session persistence configuration.
Enable session persistence	`PUT /v1.0/{account}/loadbalancers/{loadBalancerId}/sessionpersistence`	Admin, Creator
Disable session persistence	`DELETE /v1.0/{account}/loadbalancers/{loadBalancerId}/sessionpersistence`	Admin	Disables session persistence.

Log Connections

Method	API action	Role	Description
Show connection logging configuration	`GET /v1.0/{account}/loadbalancers/{loadBalancerId}/connectionlogging`	Admin, Creator, Observer	Shows the connection logging configuration.
Enable or disable connection logging	`PUT /v1.0/{account}/loadbalancers/{loadBalancerId}/connectionlogging`	Admin, Creator

Throttle Connections

Method	API action	Role	Description
Show connection throttling configuration	`GET /v1.0/{account}/loadbalancers/{loadBalancerId}/connectionthrottle`	Admin, Creator, Observer	Shows the connection throttling configuration.
Create or update connection throttling configuration	`PUT /v1.0/{account}/loadbalancers/{loadBalancerId}/connectionthrottle`	Admin, Creator
Delete connection throttling configuration	`DELETE /v1.0/{account}/loadbalancers/{loadBalancerId}/connectionthrottle`	Admin	Deletes the connection throttling configuration.

Content Caching

Method	API action	Role	Description
Show content caching configuration	`GET /v1.0/{account}/loadbalancers/{loadBalancerId}/contentcaching`	Admin, Creator, Observer	Shows the current configuration of content caching.
Enable or disable content caching	`PUT /v1.0/{account}/loadbalancers/{loadBalancerId}/contentcaching`	Admin, Creator

Protocols

Method	API action	Role	Description
List load balancing protocols	`GET /v1.0/{account}/loadbalancers/protocols`	Admin, Creator, Observer	Lists supported load balancing protocols.

Algorithms

Method	API action	Role	Description
List load balancing algorithms	`GET /v1.0/{account}/loadbalancers/algorithms`	Admin, Creator, Observer	Lists all supported load balancing algorithms.

SSL Termination

Method	API action	Role	Description
Show SSL termination configuration	`GET /v1.0/{account}/loadbalancers/{loadBalancerId}/ssltermination`	Admin, Creator, Observer	Shows the load balancer's SSL termination configuration.
Update SSL termination configuration	`PUT /v1.0/{account}/loadbalancers/{loadBalancerId}/ssltermination`	Admin, Creator
Delete SSL termination	`DELETE /v1.0/{account}/loadbalancers/{loadBalancerId}/ssltermination`	Admin	Deletes SSL termination.

Certificate Mappings

Method	API action	Role	Description
List certificate mappings	`GET /v1.0/{account}/loadbalancers/{loadBalancerId}/ssltermination/certificatemappings`	Admin, Creator, Observer*	Lists certificate mappings configured for the specified load balancer.
Add certificate mapping	`POST /v1.0/{account}/loadbalancers/{loadBalancerId}/ssltermination/certificatemappings`	Admin, Creator
Show certificate mappings details	`GET /v1.0/{account}/loadbalancers/{loadBalancerId}/ssltermination/` `certificatemappings/{certificateMappingId}`	Admin, Creator, Observer	Shows the details for the specified certificate mapping.
Update certificate mapping	`PUT /v1.0/{account}/loadbalancers/{loadBalancerId}/ssltermination/` `certificatemappings/{certificateMappingId}`	Admin, Creator
Delete certificate mapping	`DELETE /v1.0/{account}/loadbalancers/{loadBalancerId}/ssltermination/` `certificatemappings/{certificateMappingId}`	Admin	Deletes the specified certificate mapping from the specified load balancer.

Metadata

Method	API action	Role	Description
Add load balancer metadata	`POST /v1.0/{account}/loadbalancers/{loadBalancerId}/metadata`	Admin, Creator
Show load balancer metadata	`GET /v1.0/{account}/loadbalancers/{loadBalancerId}/metadata`	Admin, Creator, Observer	Shows all metadata associated with the specified load balancer.
Bulk-delete load balancer metadata items	`DELETE /v1.0/{account}/loadbalancers/{loadBalancerId}/` `metadata?id={metaId} & id={metaId}`	Admin	Deletes the specified metadata items.
Show load balancer metadata item	`GET /v1.0/{account}/loadbalancers/{loadBalancerId}/metadata/{metaId}`	Admin, Creator, Observer*	Shows details for the specified metadata item for the specified load balancer.
Update load balancer metadata item	`PUT /v1.0/{account}/loadbalancers/{loadBalancerId}/metadata/{metaId}`	Admin, Creator
Delete load balancer metadata item	`DELETE /v1.0/{account}/loadbalancers/{loadBalancerId}/metadata/{metaId}`	Admin	Deletes a metadata item from the load balancer.
Show load balancer node metadata	`GET /v1.0/{account}/loadbalancers/{loadBalancerId}/nodes/{nodeId}/metadata`	Admin, Creator, Observer*	Shows all metadata associated with the specified node and load balancer.
Add load balancer node metadata item	`POST /v1.0/{account}/loadbalancers/{loadBalancerId}/nodes/{nodeId}/metadata`	Admin, Creator
Bulk-delete load balancer node metadata items	`DELETE /v1.0/{account}/loadbalancers/{loadBalancerId}/nodes/{nodeId}/` `metadata?id='{metaId}' & id='{metaId}'`	Admin	Deletes the specified metadata items.
Show load balancer node metadata item	`GET /v1.0/{account}/loadbalancers/{loadBalancerId}/nodes/{nodeId}/metadata/{metaId}`	Admin, Creator, Observer*	Shows details for the specified metadata item for the specified node and load balancer.
Update load balancer node metadata item	`PUT /v1.0/{account}/loadbalancers/{loadBalancerId}/nodes/{nodeId}/metadata/{metaId}`	Admin, Creator
Delete load balancer node metadata item	`DELETE /v1.0/{account}/loadbalancers/{loadBalancerId}/nodes/{nodeId}/metadata/{metaId}`	Admin	Deletes the specified metadata item from the node.

Limits

Method	API action	Role	Description
List absolute limits	`GET /v1.0/{account}/loadbalancers/absolutelimits`	Admin, Creator, Observer	Lists the current absolute limits for the account.
List limits	`GET /v1.0/{account}/loadbalancers/limits`	Admin, Creator, Observer	Lists the current limits for the account.