Identity Authentication and Access Control
FunctionGraph uses Identity and Access Management (IAM) to authenticate user identities and control access to Huawei Cloud resources.
Identity Authentication
You can access FunctionGraph through the FunctionGraph console, APIs, or SDKs. All these access modes are implemented through REST APIs provided by FunctionGraph. FunctionGraph supports authentication using token and AK/SK.
Access Control
FunctionGraph uses IAM for access control and fine-grained permission management. For details, see Permissions Management.
User authorization should comply with the principle of least privilege to effectively reduce the attack scope and minimize the impact on services when credentials are disclosed.
- Event source configuration: Create a trigger for an event source and assign permissions to trigger the function.
- Cloud service access: To access other cloud services, such as OBS and LTS, grant FunctionGraph with the corresponding access permissions.
- IAM account authorization: FunctionGraph can use IAM to grant different function operation permissions to IAM users.
Feedback
Was this page helpful?
Provide feedbackThank you very much for your feedback. We will continue working to improve the documentation.See the reply and handling status in My Cloud VOC.
For any further questions, feel free to contact us through the chatbot.
Chatbot
