_custom_role_permissions_table
Account permissions
| Permission | Cloud Ops API | Resource type |
|---|---|---|
cloud.account.get | GetAccount | Account |
cloud.account.update | UpdateAccount | Account |
cloud.asyncoperation.get | GetAsyncOperation | Account |
cloud.auditlog.createSink | CreateAccountAuditLogSink | Account |
cloud.auditlog.deleteSink | DeleteAccountAuditLogSink | Account |
cloud.auditlog.getSink | GetAccountAuditLogSink | Account |
cloud.auditlog.list | GetAuditLogs | Account |
cloud.auditlog.listSinks | GetAccountAuditLogSinks | Account |
cloud.auditlog.updateSink | UpdateAccountAuditLogSink | Account |
cloud.auditlog.validateSink | ValidateAccountAuditLogSink | Account |
cloud.billingreport.create | CreateBillingReport | Account |
cloud.billingreport.get | GetBillingReport | Account |
cloud.connectivityrule.list | GetConnectivityRules | Account, Project |
cloud.migration.abort | AbortMigration | Account |
cloud.migration.confirm | ConfirmMigration | Account |
cloud.migration.get | GetMigration | Account |
cloud.migration.handover | HandoverNamespace | Account |
cloud.migration.list | GetMigrations | Account |
cloud.migration.start | StartMigration | Account |
cloud.namespace.list | GetNamespaces | Account, Project |
cloud.nexusendpoint.list | GetNexusEndpoints | Account, Project |
cloud.project.create | CreateProject | Account |
cloud.project.list | GetProjects | Account |
cloud.region.get | GetRegion | Account |
cloud.region.list | GetRegions | Account |
cloud.usage.get | GetUsage | Account |
cloud.user.create | CreateUser | Account |
cloud.user.delete | DeleteUser | Account |
cloud.user.get | GetUser | Account |
cloud.user.list | GetUsers | Account |
cloud.user.update | UpdateUser | Account |
cloud.usergroup.addMember | AddUserGroupMember | Account |
cloud.usergroup.create | CreateUserGroup | Account |
cloud.usergroup.delete | DeleteUserGroup | Account |
cloud.usergroup.get | GetUserGroup | Account |
cloud.usergroup.getMembers | GetUserGroupMembers | Account |
cloud.usergroup.list | GetUserGroups | Account |
cloud.usergroup.removeMember | RemoveUserGroupMember | Account |
cloud.usergroup.update | UpdateUserGroup | Account |
Namespace permissions
| Permission | Cloud Ops API | Resource type |
|---|---|---|
cloud.namespace.addRegion | AddNamespaceRegion | Namespace |
cloud.namespace.capacityinfo.get | GetNamespaceCapacityInfo | Namespace |
cloud.namespace.delete | DeleteNamespace | Namespace |
cloud.namespace.deleteRegion | DeleteNamespaceRegion | Namespace |
cloud.namespace.exportsink.create | CreateNamespaceExportSink | Namespace |
cloud.namespace.exportsink.delete | DeleteNamespaceExportSink | Namespace |
cloud.namespace.exportsink.get | GetNamespaceExportSink | Namespace |
cloud.namespace.exportsink.list | GetNamespaceExportSinks | Namespace |
cloud.namespace.exportsink.update | UpdateNamespaceExportSink | Namespace |
cloud.namespace.exportsink.validate | ValidateNamespaceExportSink | Namespace |
cloud.namespace.failoverRegion | FailoverNamespaceRegion | Namespace |
cloud.namespace.get | GetNamespace | Namespace |
cloud.namespace.getServiceAccountNamespaceAssignments | GetServiceAccountNamespaceAssignments | Namespace |
cloud.namespace.getUserGroupNamespaceAssignments | GetUserGroupNamespaceAssignments | Namespace |
cloud.namespace.getUserNamespaceAssignments | GetUserNamespaceAssignments | Namespace |
cloud.namespace.renameCustomSearchAttribute | RenameCustomSearchAttribute | Namespace |
cloud.namespace.setUserAccess | SetUserNamespaceAccess | Namespace |
cloud.namespace.setUserGroupAccess | SetUserGroupNamespaceAccess | Namespace |
cloud.namespace.update | UpdateNamespace | Namespace |
cloud.namespace.updateTags | UpdateNamespaceTags | Namespace |
Project permissions
| Permission | Cloud Ops API | Resource type |
|---|---|---|
cloud.connectivityrule.create | CreateConnectivityRule | Project |
cloud.connectivityrule.list | GetConnectivityRules | Account, Project |
cloud.namespace.create | CreateNamespace | Project |
cloud.namespace.list | GetNamespaces | Account, Project |
cloud.nexusendpoint.create | CreateNexusEndpoint | Project |
cloud.nexusendpoint.list | GetNexusEndpoints | Account, Project |
cloud.project.delete | DeleteProject | Project |
cloud.project.get | GetProject | Project |
cloud.project.getServiceAccountProjectAssignments | GetServiceAccountProjectAssignments | Project |
cloud.project.getUserGroupProjectAssignments | GetUserGroupProjectAssignments | Project |
cloud.project.getUserProjectAssignments | GetUserProjectAssignments | Project |
cloud.project.setServiceAccountAccess | SetServiceAccountProjectAccess | Project |
cloud.project.setUserAccess | SetUserProjectAccess | Project |
cloud.project.setUserGroupAccess | SetUserGroupProjectAccess | Project |
cloud.project.update | UpdateProject | Project |
Nexus Endpoint permissions
| Permission | Cloud Ops API | Resource type |
|---|---|---|
cloud.nexusendpoint.delete | DeleteNexusEndpoint | Nexus Endpoint |
cloud.nexusendpoint.get | GetNexusEndpoint | Nexus Endpoint |
cloud.nexusendpoint.update | UpdateNexusEndpoint | Nexus Endpoint |
Connectivity Rule permissions
| Permission | Cloud Ops API | Resource type |
|---|---|---|
cloud.connectivityrule.delete | DeleteConnectivityRule | Connectivity Rule |
cloud.connectivityrule.get | GetConnectivityRule | Connectivity Rule |