NamespacesInstancesAccess

The Instances.Access structure contains the access control information for a subject on a namespace.


Properties

string
domain Required

Domain of the subject.


string
identity_provider Optional

UUID of an external identity provider for the user, if any. Use this field if the user is coming from an external identity provider configured via the com.vmware.vcenter.namespace_management.supervisors.identity.Providers service. If unset, vCenter Single Sign-On will be used as the identity provider. When clients pass a value of this structure as a parameter, the field must be an identifier for the resource type: com.vmware.vcenter.namespace_management.identity.Provider. When operations return a value of this structure as a result, the field will be an identifier for the resource type: com.vmware.vcenter.namespace_management.identity.Provider.


role Required

The Access.Role enumerated type lists the default roles which can be associated with a subject on a domain on the namespace.
OWNER : This role allows modification and deletion of the namespace.
EDIT : This role allows modification of the namespace.
VIEW : This is a read-only role on the namespace.

Possible values are: OWNEREDITVIEW


string
subject Required

Name of the subject.


subject_type Required

The Access.SubjectType enumerated type lists the types of subjects who can be associated with a Access.Role on the namespace.
USER : Single user.
GROUP : Group of users.

Possible values are: USERGROUP

JSON Example

{
	"domain": "string",
	"role": "OWNER",
	"subject": "string",
	"subject_type": "USER"
}

Feedback

Was this page helpful?