Page tree

Versions Compared

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

Panel
titleDuraStore REST Methods


Action

Role

Get Stores

ROLE_USER

Get Spaces

ROLE_ANONYMOUS if space ACL allows public read, else ROLE_USER

Get Space

ROLE_ANONYMOUS if space ACL allows public read, else ROLE_USER

Get Space Properties

ROLE_ANONYMOUS if space ACL allows public read, else ROLE_USER

Get Space ACLs

ROLE_ANONYMOUS if space ACL allows public read, else ROLE_USER

Create Space

ROLE_ADMIN

Set Space ACLs

ROLE_ADMIN

Delete Space

ROLE_ADMIN

Get Content

ROLE_ANONYMOUS if space ACL allows public read, else ROLE_USER

Get Content Properties

ROLE_ANONYMOUS if space ACL allows public read, else ROLE_USER

Store Content

ROLE_USER

Copy Content

ROLE_USER

Set Content Properties

ROLE_USER

Delete Content

ROLE_USER

Get Audit LogROLE_ADMIN
Get ManifestROLE_USER
Get Storage Reports by SpaceROLE_USER
Get Storage Reports by StoreROLE_ADMIN

Get Storage Reports for all Spaces in a Store

ROLE_ADMIN
Get Bit Integrity ReportROLE_USER
Get Bit Integrity Report PropertiesROLE_USER

Get Tasks

ROLE_ADMIN

Perform Task

ROLE_ADMIN

Perform Task (restore-content, restore-snapshot)ROLE_ROOT

All ROLE_USER permissions are limited to spaces for which space ACLs permit read and/or write access

...

  • Users are managed via the DuraCloud Management Console. In the Management Console, an account administrator has the ability to:
    1. Add and remove users to the DuraCloud account
    2. Create Groups and add users to groups in order to simplify access control
  • Access Control is managed at the space level
    • Within DuraCloud (via the UI or the REST API), an account administrator has the ability to define which users and groups have access to a space, as well as the type of access (read or write) that is available.