security login rest-role modify
Modify a REST access control role
Availability: This command is available to cluster administrators at the admin privilege level.
Description
The security login rest-role modify command modifies a Representational State Transfer (REST) access-control role.
Parameters
- -vserver <vserver name> - Vserver
- This optionally specifies the Vserver name associated with the REST role.
- -role <text> - Role Name
- This specifies the REST role that is to be modified.
- -api <text> - API Path
- This specifies the Application Programming Interface (API) to which the REST role has access. This API can be a resource-qualified endpoint. Currently, the only supported resource-qualified endpoints are /api/storage/volumes/{volume.uuid}/snapshots and /api/storage/volumes/*/snapshots. * is a wildcard character denoting all volumes.
- [-access {none|readonly|read_create|read_modify|read_create_modify|all}] - Access Level
- This specifies a new access level for the REST role. Possible access level settings are none, readonly, read_create, read_modify, read_create_modify and all.
Examples
The following command modifies a REST access-control role with the role name readonly and the API /api/storage/volumes to have the access level readonly for Vserver vs.example.com:
cluster1::> security login rest-role modify -role readonly -api "/api/storage/volumes"
-access readonly -vserver vs.example.com
cluster1::>
cluster1::> security login rest-role modify -role rest_role1 -api "/api/snapmirror/policies"
-access read_create -vserver cluster1.example.com
cluster1::>
cluster1::> security login rest-role modify -role vs1_role -api "/api/storage/volumes/*/snapshots"
-access readonly -vserver vs1.example.com
cluster1::>
Give documentation feedback