Adds IP entries to an access control policy group and allows or restricts the forwarding of access requests to listeners for these IP entries by using Settings such as whitelists or blacklists, enabling precise control over client requests. You can call the AddEntriesToAcl operation to add IP entries to an access control policy group.
Operation description
- AddEntriesToAcl is an asynchronous operation. After a request is sent, the system returns a request ID, but the IP entries are not yet added. The addition node continues in the background. You can call GetAcl or ListAcls to query the status of the access control policy group:
If the access control policy group is in the configuring state, the IP entries are being added. In this state, you can only perform query operations and cannot perform other operations.
If the access control policy group is in the active state, the IP entries are added.
You cannot concurrently call AddEntriesToAcl to add IP entries to an access control policy group within the same Global Accelerator (GA) instance.
Try it now
Test
RAM authorization
|
Action |
Access level |
Resource type |
Condition key |
Dependent action |
|
ga:AddEntriesToAcl |
update |
*Acl
|
None | None |
Request parameters
|
Parameter |
Type |
Required |
Description |
Example |
| RegionId |
string |
Yes |
The region ID of the Global Accelerator (GA) instance. Set the value to cn-hangzhou. |
cn-hangzhou |
| AclId |
string |
Yes |
The ID of the access control policy group. |
nacl-hp34s2h0xx1ht4nwo**** |
| AclEntries |
array<object> |
Yes |
The access control policy group entries to add. An entry can be an IP address or a CIDR block. You can add up to 50 entries at a time. |
|
|
object |
No |
The access control policy group entries to add. An entry can be an IP address or a CIDR block. You can add up to 50 entries at a time. |
||
| Entry |
string |
No |
The access control policy group entry to add. An entry can be an IP address or a CIDR block. You can add up to 50 entries at a time. Note
This parameter is required. |
10.0.XX.XX/24 |
| EntryDescription |
string |
No |
The description of the access control policy group entry. You can add descriptions for up to 50 entries at a time. The description must be 1 to 256 characters in length and can contain letters, digits, hyphens (-), forward slashes (/), periods (.), and underscores (_). Chinese characters are supported. |
test-entry |
| ClientToken |
string |
No |
The client token that is used to ensure the idempotence of a request. You can use the client to generate the token, but you must make sure that the token is unique among different requests. The token can contain only ASCII characters. Note
If you do not specify this parameter, the system automatically uses the RequestId value as the ClientToken value. The RequestId value is different for each API request. |
5A2CFF0E-5718-45B5-9D4D-70B3FF3898 |
| DryRun |
boolean |
No |
Specifies whether to perform a dry run. Valid values:
|
false |
Response elements
|
Element |
Type |
Description |
Example |
|
object |
The response parameters. |
||
| RequestId |
string |
The request ID. |
365F4154-92F6-4AE4-92F8-7FF34B540710 |
| AclId |
string |
The ID of the access control policy group. |
nacl-hp34s2h0xx1ht4nwo**** |
Examples
Success response
JSON format
{
"RequestId": "365F4154-92F6-4AE4-92F8-7FF34B540710",
"AclId": "nacl-hp34s2h0xx1ht4nwo****"
}
Error codes
|
HTTP status code |
Error code |
Error message |
Description |
|---|---|---|---|
| 400 | NotExist.Acl | acl %s is not exist | The ACL %s does not exist. |
| 400 | StateError.Acl | acl state %s is illegal | The status of the ACL %s is invalid. |
| 400 | IsExist.AclEntriesIsExist | acl entries %s is exist | The ACL entry %s already exists. |
| 400 | QuotaExceeded.AclEntries | The number of acl entries exceeds the limit | The number of entries in the ACL exceeds the upper limit. |
| 400 | Repeat.AclEntries | acl entries repeat | ACL entries are duplicate. |
See Error Codes for a complete list.
Release notes
See Release Notes for a complete list.