A newer release of this product is available.
ONTAP REST API Security roles owner.uuid name endpoints
Suggest changes
PDFs
Overview
This APi is used to retrieve or delete a role. The role can be SVM-scoped or cluster-scoped.
Specify the owner UUID and the role name in the URI path. The owner UUID corresponds to the UUID of the SVM for which the role has been created and can be obtained from the response body of a GET call performed on one of the following APIs:
/api/security/roles for all roles
/api/security/roles/?scope=svm for SVM-scoped roles
/api/security/roles/?owner.name=
|
The pre-defined roles can be retrieved but cannot be deleted. |
Examples
Retrieving a role configuration
# The API:
GET "/api/security/roles/{owner.uuid}/{name}"
# The call:
curl -k -u <cluster_admin>:<password> -X GET "https://<mgmt-ip>/api/security/roles/aaef7c38-4bd3-11e9-b238-0050568e2e25/secure_role"
# The response:
{
"owner": {
"uuid": "aaef7c38-4bd3-11e9-b238-0050568e2e25",
"name": "svm1",
"_links": {
"self": {
"href": "/api/svm/svms/aaef7c38-4bd3-11e9-b238-0050568e2e25"
}
}
},
"name": "secure_role",
"privileges": [
{
"path": "/api/security",
"access": "all",
"_links": {
"self": {
"href": "/api/security/roles/aaef7c38-4bd3-11e9-b238-0050568e2e25/secure_role/privileges/%2Fapi%2Fsecurity"
}
}
}
],
"builtin": false,
"scope": "svm",
"_links": {
"self": {
"href": "/api/security/roles/aaef7c38-4bd3-11e9-b238-0050568e2e25/secure_role"
}
}
}
Deleting a custom role
# The API:
DELETE "/api/security/roles/{owner.uuid}/{name}"
# The call:
curl -k -u <cluster_admin>:<password> -X DELETE "https://<mgmt-ip>/api/security/roles/aaef7c38-4bd3-11e9-b238-0050568e2e25/svm_role1"