Приложение 6. Назначение привилегий методам

Таблица 1. Описание методов и их привилегий

method	method_id	privilege	privilege_id	cluster_master	vdc_admin	vdc_user	vdc_viewer	resource_viewer
vdc-create	1	VDC Create	310000
cluster-disable	3	Global Infrastructure Cluster Management	210000
cluster-enable	4	Global Infrastructure Cluster Management	210000
grant-group-privilege	5	Grant Role/Privilege	110000
grant-group-role	6	Grant Role/Privilege	110000
grant-user-privilege	7	Grant Role/Privilege	110000
grant-user-role	8	Grant Role/Privilege	110000
nets-create	9	Network Create	410000
nets-delete	10	Network Remove	415000
vdc-assign-network	11	VDC Network Assign	310002
vdc-deassign-network	12	VDC Network Deassign	315001
edge-create	13	Edge Create	610000
edge-list	14	Edge List	600000
edge-get	15	Edge Get	600001
edge-start	16	Edge Start	610001
edge-stop	17	Edge Stop	610002
edge-restart	18	Edge Restart	610003
edge-ratelimit	19	Edge Ratelimit	610004
edge-add-nat-rule	20	Edge Add NatRule	610005
edge-add-fw-rule	21	Edge Add FWRule	610006
edge-list-rules	22	Edge List Rules	600002
edge-deploy-rules	26	Edge Deploy Rules	600003
edge-remove-nat-rule	27	Edge Remove NatRule	615001
edge-remove-fw-rule	28	Edge Remove FWRule	615002
edge-add-nic	29	Edge Add NIC	610007
edge-remove-nic	30	Edge Remove NIC	615003
edge-remove	31	Edge Remove	615000
edge-get-pfloggs	32	Edge PFLogs Get	600004
node-inventory	33	Node Inventory	810000
node-hw-list	34	Node HW List	800000
node-cpu-cores	35	Node CPU Cores	800001
node-config-map	36	Node Config Map	800002
node-config-get	37	Node Config Get	800003
node-config-set	38	Node Config Set	810001
filesystems-set	39	Filesystem Set	710000
filesystems-get	40	Filesystem Get	700000
federation-overview	41	Global Infrastructure Overview	100001
cluster-overview	43	Cluster Overview	200000
cluster-totals	44	Cluster Totals	200001
cluster-node-action	45	Cluster Nodes Management	220000
cluster-service-stop	46	Cluster Service Management	230000
cluster-service-start	47	Cluster Service Management	230000
pool-map	48	Pool Map	900000
pool-map-by-guid	49	Pool Map by GUID	900001
vms-suspend-pool	50	Pool Suspend VMs	900002
vms-resume-pool	51	Pool Resume VMs	900003
pools-list	52	Pool List	900004
pools-get	53	Pool Get	900005
pd-list	54	PD List	900006
portgroup-list	55	Portgroup List	810005
pd-led	56	PD LED Control	900007
pd-status-map	57	PD Status Map	900008
net-list	66	Networks List	400000
net-ippool-usage	67	IPPool Usage	410001
net-ippool-free	68	IPPool Free	410002
vdc-set	69	VDC Set	310003
vdc-list	70	VDC List	300000
vdc-networks	71	VDC Networks Assign List	300001
vdc-network-addr-limit	72	Network Addr Limit Set	310001
vm-statuses	73	VM Statuses	510005
vm-profiles	74	VM Profiles	510006
vm-boot_media-list	75	VM Boot Media List	510007
vm-list	76	VM List	500000
vm-history	77	VM History	510008
vm-get	78	VM Get	510023
vms-create	79	VM Create	510000
vm-change-vdc	80	VM Change VDC	510024
vms-add-disk	81	VM Add Disk	510031
vms-add-nic	82	VM Add NIC	510025
vms-disk-resize	83	VM Disk Resize	510030
vm-disk-set-label	84	VM Disk Label	510028
vms-snapshot	85	VM Snapshot	510011
vm-snapshot-list	86	VM Snapshot List	510012
vms-rollback	87	VM Rollback	510013
vm-remove-nic	88	VM Remove NIC	510026
vms-snapshot-remove	89	VM Snapshot Remove	510014
vm-remove-disk	90	VM Remove Disk	510029
vm-ratelimit-disk	91	VM Ratelimit Disk	510009
vm-ratelimit-nic	92	VM Ratelimit NIC	510027
vms-cpu-priority	93	VM CPU Priority	510010
vms-vcpu-class	94	VM VCPU Class	510021
vms-start	95	VM Start	510001
vms-stop	96	VM Stop	510003
vms-restart	97	VM Restart	510002
vm-set	98	VM Set	510022
vm-console	99	VM Console	510004
vm-perfdata	100	VM Perf Data	510015
vm-billing	101	VM Billing	510016
vms-remove	102	VM Remove	515000
vms-suspend	103	VM Suspend	510017
vms-resume	104	VM Resume	510018
vms-balloon	105	VM Ballooning	510019
vm-import-area-list	106	VM Import Area List	510020
api-token	107	Token Info	100000
task	108	Task	100002
get-statusmap	109	Status Map	200002
revoke-group-privilege	110	Revoke Role/Privilege	110001
revoke-group-role	111	Revoke Role/Privilege	110001
revoke-user-privilege	112	Revoke Role/Privilege	110001
revoke-user-role	113	Revoke Role/Privilege	110001
user-list	114	User List	2000000
role-list	115	Role List	100003
privilege-list	116	Privilege List	100004
role-privilege-list	117	Role Privilege List	100005
vdc-roles	118	VDC Roles	300002
vdc-privileges	119	VDC Privileges	300003
user-roles	120	User Roles	2000002
user-privileges	121	User Privileges	2000003
group-roles	122	Group Roles	100006
group-privileges	123	Group Privileges	100007
group-list	124	Group List	100008
ad-config-set	125	Active Directory Config Set	130000
ad-config-get	126	Active Directory Config Get	130001
user-get	127	User Get	2000004
user-set	128	User Set	2010000
node-software	129	Node Software	810002
node-software-inventory	130	Node Software Inventory	810003
cluster-add	131	Global Infrastructure Cluster Management	210000
cluster-remove	132	Global Infrastructure Cluster Management	210000
user-create	133	User Create	2010001
user-set-password	134	User Password Set	2010002
user-delete	135	User Delete	2010003
cluster-crosscheck	136	Global Infrastructure Cluster Management	210000
auth-providers	137	Auth Providers List	100009
auth-provider-set	138	Auth Provider Set	130002
vdc-resolve	139	VDC Conflict Resolve	310004
nets-resolve	140	Network Conflict Resolve	410003
vdc-network-resolve	141	VDC Network Assign Resolve	310005
net-ippool-show	142	Show IPPool	400001
net-ippool-delete	143	Delete IPPool Addr	415001
net-ippool-add	144	Add IPPool Addr	410004
healthwatch-set	145	Healthwatch Set	130003
healthwatch-get	146	Healthwatch Get	100010
net-ippool-crosscheck	147	IPPool Crosscheck	410005
node-perfdata	148	Node Performance Data	800004

Таблица 2. Обозначение цветов

Цвет	Обозначение
	Наличие данной привилегии у ролей
	Привилегия отсутствует

Повторяющиеся привилегии (одна привилегия может давать доступ сразу к нескольким методам):

Таблица 3. Обозначение цветов

Цвет	Привилегия
	Cluster management
	Grant
	Cluster service management
	Revoke