[Pulp-list] List of possible auth resources

Ashby, Jason (IMS) AshbyJ at imsweb.com
Thu Apr 3 18:24:32 UTC 2014


Hi all,
Is there a way to list all possible pulp resources?  E.g. pulp-admin auth permission list, but showing resources and resource-id's.  I'm guessing this translates to the URLs and REST API, but it's not clear to me in the docs.

The auth permission grant accepts just about anything without error, e.g.

    pulp-admin auth permission grant --resource /booyah1234 --role-id uploaders -o create -o read -o update -o delete -o execute
    Permissions [/booyah1234: ['CREATE', 'READ', 'UPDATE', 'DELETE', 'EXECUTE']] successfully granted to role [uploaders]


My goal is to create two users with minimalist privileges:


1)      an admin that can only upload or delete rpms to a repository.

    pulp-admin auth permission grant --resource /content --role-id uploaders -o create -o read -o update -o delete -o execute

I tried /content and /repositories, but both fail with "Insufficient Permissions" when running the uploads command.


2)      A user that can only register/unregister consumers and bind to repositories.  More detail in my bug report here:  https://bugzilla.redhat.com/show_bug.cgi?id=1081534


Thanks again!
Jason

________________________________

Information in this e-mail may be confidential. It is intended only for the addressee(s) identified above. If you are not the addressee(s), or an employee or agent of the addressee(s), please note that any dissemination, distribution, or copying of this communication is strictly prohibited. If you have received this e-mail in error, please notify the sender of the error.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://listman.redhat.com/archives/pulp-list/attachments/20140403/bb202d91/attachment.htm>


More information about the Pulp-list mailing list