The following is an overview of all available policies in Manila.
context_is_admin
role:admin
(no description provided)
admin_or_owner
is_admin:True or project_id:%(project_id)s
(no description provided)
default
rule:admin_or_owner
(no description provided)
admin_api
is_admin:True
(no description provided)
availability_zone:index
rule:default
GET /os-availability-zone
GET /availability-zone
Get all storage availability zones.
scheduler_stats:pools:index
rule:admin_api
GET /scheduler-stats/pools
GET /scheduler-stats/pools?{query}
Get information regarding backends (and storage pools) known to the scheduler.
scheduler_stats:pools:detail
rule:admin_api
GET /scheduler-stats/pools/detail?{query}
GET /scheduler-stats/pools/detail
Get detailed information regarding backends (and storage pools) known to the scheduler.
share:create
<empty string>
POST /shares
Create share.
share:create_public_share
rule:admin_api
POST /shares
Create shares visible across all projects in the cloud. This option will default to rule:admin_api in the 9.0.0 (Train) release of the OpenStack Shared File Systems (manila) service.
share:get
rule:default
GET /shares/{share_id}
Get share.
share:get_all
rule:default
GET /shares
GET /shares/detail
List shares.
share:update
rule:default
PUT /shares
Update share.
share:set_public_share
rule:admin_api
PUT /shares
Update shares to be visible across all projects in the cloud. This option will default to rule:admin_api in the 9.0.0 (Train) release of the OpenStack Shared File Systems (manila) service.
share:delete
rule:default
DELETE /shares/{share_id}
Delete share.
share:force_delete
rule:admin_api
DELETE /shares/{share_id}
Force Delete a share.
share:manage
rule:admin_api
POST /shares/manage
Manage share.
share:unmanage
rule:admin_api
POST /shares/unmanage
Unmanage share.
share:create_snapshot
rule:default
POST /snapshots
Create share snapshot.
share:list_by_host
rule:admin_api
GET /shares
GET /shares/detail
List share by host.
share:list_by_share_server_id
rule:admin_api
GET /shares
GET /shares/detail
List share by server id.
share:access_get
rule:default
POST /shares/{share_id}/action
Get share access rule, it under deny access operation.
share:access_get_all
rule:default
GET /shares/{share_id}/action
List share access rules.
share:extend
rule:default
POST /shares/{share_id}/action
Extend share.
share:shrink
rule:default
POST /shares/{share_id}/action
Shrink share.
share:migration_start
rule:admin_api
POST /shares/{share_id}/action
Migrate a share to the specified host.
share:migration_complete
rule:admin_api
POST /shares/{share_id}/action
Invokes 2nd phase of share migration.
share:migration_cancel
rule:admin_api
POST /shares/{share_id}/action
Attempts to cancel share migration.
share:migration_get_progress
rule:admin_api
POST /shares/{share_id}/action
Retrieve share migration progress for a given share.
share:reset_task_state
rule:admin_api
POST /shares/{share_id}/action
Reset task state.
share:reset_status
rule:admin_api
POST /shares/{share_id}/action
Reset status.
share:revert_to_snapshot
rule:default
POST /shares/{share_id}/action
Revert a share to a snapshot.
share:allow_access
rule:default
POST /shares/{share_id}/action
Add share access rule.
share:deny_access
rule:default
POST /shares/{share_id}/action
Remove share access rule.
share:delete_snapshot
rule:default
DELETE /snapshots/{snapshot_id}
Delete share snapshot.
share:snapshot_update
rule:default
PUT /snapshots/{snapshot_id}/action
Update share snapshot.
share:update_share_metadata
rule:default
PUT /shares/{share_id}/metadata
Update share metadata.
share:delete_share_metadata
rule:default
DELETE /shares/{share_id}/metadata/{key}
Delete share metadata.
share:get_share_metadata
rule:default
GET /shares/{share_id}/metadata
Get share metadata.
share_instance_export_location:index
rule:admin_api
POST /share_instances/{share_instance_id}/export_locations
Return data about the requested export location.
share_instance_export_location:show
rule:admin_api
GET /share_instances/{share_instance_id}/export_locations/{export_location_id}
Return data about the requested export location.
share_type:create
rule:admin_api
POST /types
Create share type.
share_type:update
rule:admin_api
PUT /types/{share_type_id}
Update share type.
share_type:show
rule:default
GET /types/{share_type_id}
Get share type.
share_type:index
rule:default
GET /types
GET /types?is_public=all
List share types.
share_type:default
rule:default
GET /types/default
Get default share type.
share_type:delete
rule:admin_api
DELETE /types/{share_type_id}
Delete share type.
share_type:list_project_access
rule:admin_api
GET /types/{share_type_id}
List share type project access.
share_type:add_project_access
rule:admin_api
POST /types/{share_type_id}/action
Add share type to project.
share_type:remove_project_access
rule:admin_api
POST /types/{share_type_id}/action
Remove share type from project.
share_types_extra_spec:create
rule:admin_api
POST /types/{share_type_id}/extra_specs
Create share type extra spec.
share_types_extra_spec:show
rule:admin_api
GET /types/{share_type_id}/extra_specs
Get share type extra specs of a given share type.
share_types_extra_spec:index
rule:admin_api
GET /types/{share_type_id}/extra_specs/{extra_spec_id}
Get details of a share type extra spec.
share_types_extra_spec:update
rule:admin_api
PUT /types/{share_type_id}/extra_specs
Update share type extra spec.
share_types_extra_spec:delete
rule:admin_api
DELETE /types/{share_type_id}/extra_specs/{key}
Delete share type extra spec.
share_snapshot:get_snapshot
rule:default
GET /snapshots/{snapshot_id}
Get share snapshot.
share_snapshot:get_all_snapshots
rule:default
GET /snapshots
GET /snapshots/detail
GET /snapshots?{query}
GET /snapshots/detail?{query}
Get all share snapshots.
share_snapshot:force_delete
rule:admin_api
DELETE /snapshots/{snapshot_id}
Force Delete a share snapshot.
share_snapshot:manage_snapshot
rule:admin_api
POST /snapshots/manage
Manage share snapshot.
share_snapshot:unmanage_snapshot
rule:admin_api
POST /snapshots/{snapshot_id}/action
Unmanage share snapshot.
share_snapshot:reset_status
rule:admin_api
POST /snapshots/{snapshot_id}/action
Reset status.
share_snapshot:access_list
rule:default
GET /snapshots/{snapshot_id}/access-list
List access rules of a share snapshot.
share_snapshot:allow_access
rule:default
POST /snapshots/{snapshot_id}/action
Allow access to a share snapshot.
share_snapshot:deny_access
rule:default
POST /snapshots/{snapshot_id}/action
Deny access to a share snapshot.
share_snapshot_export_location:index
rule:default
GET /snapshots/{snapshot_id}/export-locations/
List export locations of a share snapshot.
share_snapshot_export_location:show
rule:default
GET /snapshots/{snapshot_id}/export-locations/{export_location_id}
Get details of a specified export location of a share snapshot.
share_snapshot_instance:show
rule:admin_api
GET /snapshot-instances/{snapshot_instance_id}
Get share snapshot instance.
share_snapshot_instance:index
rule:admin_api
GET /snapshot-instances
GET /snapshot-instances?{query}
Get all share snapshot instances.
share_snapshot_instance:detail
rule:admin_api
GET /snapshot-instances/detail
GET /snapshot-instances/detail?{query}
Get details of share snapshot instances.
share_snapshot_instance:reset_status
rule:admin_api
POST /snapshot-instances/{snapshot_instance_id}/action
Reset share snapshot instance’s status.
share_snapshot_instance_export_location:index
rule:admin_api
GET /snapshot-instances/{snapshot_instance_id}/export-locations
List export locations of a share snapshot instance.
share_snapshot_instance_export_location:show
rule:admin_api
GET /snapshot-instances/{snapshot_instance_id}/export-locations/{export_location_id}
Show details of a specified export location of a share snapshot instance.
share_server:index
rule:admin_api
GET /share-servers
GET /share-servers?{query}
Get share servers.
share_server:show
rule:admin_api
GET /share-servers/{server_id}
Show share server.
share_server:details
rule:admin_api
GET /share-servers/{server_id}/details
Get share server details.
share_server:delete
rule:admin_api
DELETE /share-servers/{server_id}
Delete share server.
share_server:manage_share_server
rule:admin_api
POST /share-servers/manage
Manage share server.
share_server:unmanage_share_server
rule:admin_api
POST /share-servers/{share_server_id}/action
Unmanage share server.
share_server:reset_status
rule:admin_api
POST /share-servers/{share_server_id}/action
Reset the status of a share server.
share_server:share_server_migration_start
rule:admin_api
POST /share-servers/{share_server_id}/action
Migrates a share server to the specified host.
share_server:share_server_migration_check
rule:admin_api
POST /share-servers/{share_server_id}/action
Check if can migrates a share server to the specified host.
share_server:share_server_migration_complete
rule:admin_api
POST /share-servers/{share_server_id}/action
Invokes the 2nd phase of share server migration.
share_server:share_server_migration_cancel
rule:admin_api
POST /share-servers/{share_server_id}/action
Attempts to cancel share server migration.
share_server:share_server_migration_get_progress
rule:admin_api
POST /share-servers/{share_server_id}/action
Retrieves the share server migration progress for a given share server.
share_server:share_server_reset_task_state
rule:admin_api
POST /share-servers/{share_server_id}/action
Resets task state.
service:index
rule:admin_api
GET /os-services
GET /os-services?{query}
GET /services
GET /services?{query}
Return a list of all running services.
service:update
rule:admin_api
PUT /os-services/disable
PUT /os-services/enable
PUT /services/disable
PUT /services/enable
Enable/Disable scheduling for a service.
quota_set:update
rule:admin_api
PUT /quota-sets/{tenant_id}
PUT /quota-sets/{tenant_id}?user_id={user_id}
PUT /quota-sets/{tenant_id}?share_type={share_type_id}
PUT /os-quota-sets/{tenant_id}
PUT /os-quota-sets/{tenant_id}?user_id={user_id}
Update the quotas for a project/user and/or share type.
quota_set:show
rule:default
GET /quota-sets/{tenant_id}/defaults
GET /os-quota-sets/{tenant_id}/defaults
List the quotas for a tenant/user.
quota_set:delete
rule:admin_api
DELETE /quota-sets/{tenant_id}
DELETE /quota-sets/{tenant_id}?user_id={user_id}
DELETE /quota-sets/{tenant_id}?share_type={share_type_id}
DELETE /os-quota-sets/{tenant_id}
DELETE /os-quota-sets/{tenant_id}?user_id={user_id}
Delete quota for a tenant/user or tenant/share-type. The quota will revert back to default (Admin only).
quota_class_set:update
rule:admin_api
PUT /quota-class-sets/{class_name}
PUT /os-quota-class-sets/{class_name}
Update quota class.
quota_class_set:show
rule:default
GET /quota-class-sets/{class_name}
GET /os-quota-class-sets/{class_name}
Get quota class.
share_group_types_spec:create
rule:admin_api
POST /share-group-types/{share_group_type_id}/group-specs
Create share group type specs.
share_group_types_spec:index
rule:admin_api
GET /share-group-types/{share_group_type_id}/group-specs
Get share group type specs.
share_group_types_spec:show
rule:admin_api
GET /share-group-types/{share_group_type_id}/group-specs/{key}
Get details of a share group type spec.
share_group_types_spec:update
rule:admin_api
PUT /share-group-types/{share_group_type_id}/group-specs/{key}
Update a share group type spec.
share_group_types_spec:delete
rule:admin_api
DELETE /share-group-types/{share_group_type_id}/group-specs/{key}
Delete a share group type spec.
share_group_type:create
rule:admin_api
POST /share-group-types
Create a new share group type.
share_group_type:index
rule:default
GET /share-group-types
GET /share-group-types?is_public=all
Get the list of share group types.
share_group_type:show
rule:default
GET /share-group-types/{share_group_type_id}
Get details regarding the specified share group type.
share_group_type:default
rule:default
GET /share-group-types/default
Get the default share group type.
share_group_type:delete
rule:admin_api
DELETE /share-group-types/{share_group_type_id}
Delete an existing group type.
share_group_type:list_project_access
rule:admin_api
POST /share-group-types/{share_group_type_id}/access
Get project access by share group type.
share_group_type:add_project_access
rule:admin_api
POST /share-group-types/{share_group_type_id}/action
Allow project to use the share group type.
share_group_type:remove_project_access
rule:admin_api
POST /share-group-types/{share_group_type_id}/action
Deny project access to use the share group type.
share_group_snapshot:create
rule:default
POST /share-group-snapshots
Create a new share group snapshot.
share_group_snapshot:get
rule:default
GET /share-group-snapshots/{share_group_snapshot_id}
Get details of a share group snapshot.
share_group_snapshot:get_all
rule:default
GET /share-group-snapshots
GET /share-group-snapshots/detail
GET /share-group-snapshots/{query}
GET /share-group-snapshots/detail?{query}
Get all share group snapshots.
share_group_snapshot:update
rule:default
PUT /share-group-snapshots/{share_group_snapshot_id}
Update a share group snapshot.
share_group_snapshot:delete
rule:default
DELETE /share-group-snapshots/{share_group_snapshot_id}
Delete a share group snapshot.
share_group_snapshot:force_delete
rule:admin_api
POST /share-group-snapshots/{share_group_snapshot_id}/action
Force delete a share group snapshot.
share_group_snapshot:reset_status
rule:admin_api
POST /share-group-snapshots/{share_group_snapshot_id}/action
Reset a share group snapshot’s status.
share_group:create
rule:default
POST /share-groups
Create share group.
share_group:get
rule:default
GET /share-groups/{share_group_id}
Get details of a share group.
share_group:get_all
rule:default
GET /share-groups
GET /share-groups/detail
GET /share-groups?{query}
GET /share-groups/detail?{query}
Get all share groups.
share_group:update
rule:default
PUT /share-groups/{share_group_id}
Update share group.
share_group:delete
rule:default
DELETE /share-groups/{share_group_id}
Delete share group.
share_group:force_delete
rule:admin_api
POST /share-groups/{share_group_id}/action
Force delete a share group.
share_group:reset_status
rule:admin_api
POST /share-groups/{share_group_id}/action
Reset share group’s status.
share_replica:create
rule:default
POST /share-replicas
Create share replica.
share_replica:get_all
rule:default
GET /share-replicas
GET /share-replicas/detail
GET /share-replicas/detail?share_id={share_id}
Get all share replicas.
share_replica:show
rule:default
GET /share-replicas/{share_replica_id}
Get details of a share replica.
share_replica:delete
rule:default
DELETE /share-replicas/{share_replica_id}
Delete a share replica.
share_replica:force_delete
rule:admin_api
POST /share-replicas/{share_replica_id}/action
Force delete a share replica.
share_replica:promote
rule:default
POST /share-replicas/{share_replica_id}/action
Promote a non-active share replica to active.
share_replica:resync
rule:admin_api
POST /share-replicas/{share_replica_id}/action
Resync a share replica that is out of sync.
share_replica:reset_replica_state
rule:admin_api
POST /share-replicas/{share_replica_id}/action
Reset share replica’s replica_state attribute.
share_replica:reset_status
rule:admin_api
POST /share-replicas/{share_replica_id}/action
Reset share replica’s status.
share_replica_export_location:index
rule:default
GET /share-replicas/{share_replica_id}/export-locations
Get all export locations of a given share replica.
share_replica_export_location:show
rule:default
GET /share-replicas/{share_replica_id}/export-locations/{export_location_id}
Get details about the requested share replica export location.
share_network:create
rule:default
POST /share-networks
Create share network.
share_network:show
rule:default
GET /share-networks/{share_network_id}
Get details of a share network.
share_network:index
rule:default
GET /share-networks
GET /share-networks?{query}
Get all share networks.
share_network:detail
rule:default
GET /share-networks/detail?{query}
GET /share-networks/detail
Get details of share networks .
share_network:update
rule:default
PUT /share-networks/{share_network_id}
Update a share network.
share_network:delete
rule:default
DELETE /share-networks/{share_network_id}
Delete a share network.
share_network:add_security_service
rule:default
POST /share-networks/{share_network_id}/action
Add security service to share network.
share_network:remove_security_service
rule:default
POST /share-networks/{share_network_id}/action
Remove security service from share network.
share_network:get_all_share_networks
rule:admin_api
GET /share-networks?all_tenants=1
GET /share-networks/detail?all_tenants=1
Get share networks belonging to all projects.
share_network_subnet:create
rule:default
POST /share-networks/{share_network_id}/subnets
Create a new share network subnet.
share_network_subnet:delete
rule:default
DELETE /share-networks/{share_network_id}/subnets/{share_network_subnet_id}
Delete a share network subnet.
share_network_subnet:show
rule:default
GET /share-networks/{share_network_id}/subnets/{share_network_subnet_id}
Shows a share network subnet.
share_network_subnet:index
rule:default
GET /share-networks/{share_network_id}/subnets
Get all share network subnets.
security_service:create
rule:default
POST /security-services
Create security service.
security_service:show
rule:default
GET /security-services/{security_service_id}
Get details of a security service.
security_service:detail
rule:default
GET /security-services/detail?{query}
GET /security-services/detail
Get details of all security services.
security_service:index
rule:default
GET /security-services
GET /security-services?{query}
Get all security services.
security_service:update
rule:default
PUT /security-services/{security_service_id}
Update a security service.
security_service:delete
rule:default
DELETE /security-services/{security_service_id}
Delete a security service.
security_service:get_all_security_services
rule:admin_api
GET /security-services?all_tenants=1
GET /security-services/detail?all_tenants=1
Get security services of all projects.
share_export_location:index
rule:default
GET /shares/{share_id}/export_locations
Get all export locations of a given share.
share_export_location:show
rule:default
GET /shares/{share_id}/export_locations/{export_location_id}
Get details about the requested export location.
share_instance:index
rule:admin_api
GET /share_instances
GET /share_instances?{query}
Get all share instances.
share_instance:show
rule:admin_api
GET /share_instances/{share_instance_id}
Get details of a share instance.
share_instance:force_delete
rule:admin_api
POST /share_instances/{share_instance_id}/action
Force delete a share instance.
share_instance:reset_status
rule:admin_api
POST /share_instances/{share_instance_id}/action
Reset share instance’s status.
message:get
rule:default
GET /messages/{message_id}
Get details of a given message.
message:get_all
rule:default
GET /messages
GET /messages?{query}
Get all messages.
message:delete
rule:default
DELETE /messages/{message_id}
Delete a message.
share_access_rule:get
rule:default
GET /share-access-rules/{share_access_id}
Get details of a share access rule.
share_access_rule:index
rule:default
GET /share-access-rules?share_id={share_id}&key1=value1&key2=value2
List access rules of a given share.
share_access_metadata:update
rule:default
PUT /share-access-rules/{share_access_id}/metadata
Set metadata for a share access rule.
share_access_metadata:delete
rule:default
DELETE /share-access-rules/{share_access_id}/metadata/{key}
Delete metadata for a share access rule.
Except where otherwise noted, this document is licensed under Creative Commons Attribution 3.0 License. See all OpenStack Legal Documents.