Page History
...
| Gliffy Diagram | ||||||||
|---|---|---|---|---|---|---|---|---|
|
Which model should we pick? Pending decision.
Group
Group contains a number of CloudStack accounts. Customers should be able to Create, Edit, List and Delete Groups. Editing includes adding or removing accounts to or from a group. For backwards compatibility, out of box, CloudStack will provide 3 default groups:
...
Currently CloudStack supports two different views: Full View for root admin user, Restricted View for domain admin and end user. With IAM added, we still need to support this for newly added account groups. Analogy to row filter controlled by Permission, this is like column filter. For this release, we are not supporting dynamic column filter at API level, instead, out-of-box, we will provide two static response views: Full View and Restricted View. When user is creating a group, they can specify what kind of view that this group account should see.
NOTE: It seems making more sense to associate response view to each API action. For current APIs that are both admin and user APIs, they can have two static response view choice. For current admin only API, they should only have Full response view. Pending decision.
IAM Schema
IAM API
New API's
...
Overview
Content Tools
Apps