Modifies role-based access control (RBAC) permissions.

Debugging

OpenAPI Explorer automatically calculates the signature value. For your convenience, we recommend that you call this operation in OpenAPI Explorer. OpenAPI Explorer dynamically generates the sample code of the operation for different SDKs.

Request parameters

Parameter Type Required Example Description
Action String Yes GrantUserPermissions

The operation that you want to perform. Set the value to GrantUserPermissions.

SubAccountUserId String Yes 27852573609480****

The ID of the RAM user or RAM role.

Permissions String No [{"IsCustom":true,"RoleName":"istio-ops","Cluster":"c57b848115458460583a4260cb713****","RoleType":"custom","IsRamRole":false},{"IsCustom":true,"RoleName":"istio-ops","Cluster":"c4ec191f4e12145c09286ea3e2b8f****","RoleType":"custom","IsRamRole":false}]

The permissions that are granted to an entity. The content is a string that consists of JSON arrays. You must specify all permissions that you want to grant to an entity. You can add or remove permissions by modifying the content. Field definition of the sample code:

  • IsCustom: a parameter that is required by the system. Set the value to true.
  • Cluster: the ID of the Alibaba Cloud Service Mesh (ASM) instance.
  • RoleName: the name of the permissions. Valid values: istio-admin, istio-ops, and istio-readonly. A value of istio-admin indicates the permissions of ASM administrators. A value of istio-ops indicates the permissions of ASM restricted users. A value of istio-readonly indicates the read-only permissions.
  • IsRamRole: the entity to which you want to grant the permissions. To grant the permissions to a RAM role, set the value to true. Otherwise, set the value to false.

Response parameters

Parameter Type Example Description
RequestId String 5A7C9E37-C171-584F-9A99-869B48C4****

The ID of the request.

Examples

Sample requests

http(s)://[Endpoint]/?Action=GrantUserPermissions
&SubAccountUserId=27852573609480****
&Permissions=[{"IsCustom":true,"RoleName":"istio-ops","Cluster":"c57b848115458460583a4260cb713****","RoleType":"custom","IsRamRole":false},{"IsCustom":true,"RoleName":"istio-ops","Cluster":"c4ec191f4e12145c09286ea3e2b8f****","RoleType":"custom","IsRamRole":false}]
&<Common request parameters>

Sample responses

XML format 

HTTP/1.1 200 OK
Content-Type:application/xml

<GrantUserPermissionsResponse>
    <RequestId>5A7C9E37-C171-584F-9A99-869B48C4****</RequestId>
</GrantUserPermissionsResponse>

JSON format 

HTTP/1.1 200 OK
Content-Type:application/json

{
  "RequestId" : "5A7C9E37-C171-584F-9A99-869B48C4****"
}

Error codes

For a list of error codes, visit the API Error Center.