Querying the ACL for Console Access
Function
This API is used to query the ACL for console access.
The API can be called using both the global endpoint and region-specific endpoints.
Authorization Information
Each account is authorized to call all APIs, but its IAM users must obtain the required permissions. For details, see Permissions and Supported Actions.
URI
GET /v3.0/OS-SECURITYPOLICY/domains/{domain_id}/console-acl-policy
Parameter | Mandatory | Type | Description |
|---|---|---|---|
domain_id | Yes | String | Account ID. For details about how to obtain the account ID, see Obtaining Account, IAM User, Group, Project, Region, and Agency Information. |
Request Parameters
Parameter | Mandatory | Type | Description |
|---|---|---|---|
X-Auth-Token | Yes | String | Access token issued to a user to bear its identity and permissions. For details about the permissions required by the token, see Actions. |
Response Parameters
Parameter | Type | Description |
|---|---|---|
object | ACL for console access. |
Parameter | Type | Description |
|---|---|---|
Array of objects | IPv4 address or CIDR block from which access is allowed. This parameter is only returned when an IPv4 address or CIDR block from which console access is allowed is specified. | |
Array of objects | IPv4 address range from which access is allowed. This parameter is only returned when an IP address range from which access is allowed is specified. | |
Array of objects | IPv6 address or CIDR block from which access is allowed. | |
Array of objects | IPv6 address range from which access is allowed. |
Parameter | Type | Description |
|---|---|---|
address_netmask | String | IPv4 address or CIDR block, for example, 192.168.0.1/24. |
description | String | Description of an IP address or CIDR block. |
Parameter | Type | Description |
|---|---|---|
description | String | Description of an IP address range. |
ip_range | String | IPv4 address range, for example, 0.0.0.0-255.255.255.255. |
Example Request
Request for querying the ACL for console access
GET https://iam.myhuaweicloud.eu/v3.0/OS-SECURITYPOLICY/domains/{domain_id}/console-acl-policy Example Response
Status code: 200
The request is successful.
{
"console_acl_policy" : {
"allow_ip_ranges" : [ {
"ip_range" : "0.0.0.0-255.255.255.255",
"description" : ""
}, {
"ip_range" : "0.0.0.0-255.255.255.255",
"description" : ""
} ],
"allow_address_netmasks" : [ {
"address_netmask" : "192.168.0.1/24",
"description" : ""
}, {
"address_netmask" : "192.168.0.1/24",
"description" : ""
} ]
}
} Status code: 403
Access denied.
- Example 1
{
"error_msg" : "You are not authorized to perform the requested action.",
"error_code" : "IAM.0002"
} - Example 2
{
"error_msg" : "Policy doesn't allow %(actions)s to be performed.",
"error_code" : "IAM.0003"
} Status code: 404
The requested resource cannot be found.
{
"error_msg" : "Could not find %(target)s: %(target_id)s.",
"error_code" : "IAM.0004"
} Status code: 500
Internal server error.
{
"error_msg" : "An unexpected error prevented the server from fulfilling your request.",
"error_code" : "IAM.0006"
} Status Codes
Status Code | Description |
|---|---|
200 | The request is successful. |
401 | Authentication failed. |
403 | Access denied. |
404 | The requested resource cannot be found. |
500 | Internal server error. |
Error Codes
For details, see Error Codes.
Feedback
Was this page helpful?
Provide feedbackThank you very much for your feedback. We will continue working to improve the documentation.
