List a user's grants

get deprecated

https://api.linode.com/{apiVersion}/account/users/{username}/grants

Deprecated Returns the full grants structure for an account username you specify. This includes all entities on the account, and the level of access this user has to each of them. This doesn't apply to the account owner or the current authenticated user. You can run the List grants operation to view those grants.

🚧
RBAC Identity and Access
Grants are now replaced with RBAC Identity and Access. Use the Get a user's access level operation instead. To learn more, see Identity and Access for Akamai Cloud.

Permissions and scopes

To call this operation, you need permissions, based on the model you're using:

Identity and access permissions. Your user needs a role with these permissions. Learn more.
- Permissions: list_user_grants
OAuth scopes. Your user needs these scopes assigned. Learn more.
- Scopes: account:read_only

Responses

Response body

object

database

array of objects

The grants this user has for individual Managed Databases on this account.

database

object

integer

The unique identifier of the resource this grant applies to.

label

string

Read-only The name of the entity this grant applies to. This is only for display purposes.

permissions

string | null

enum

The level of access this user has to this entity. If null, this user has no access.

read_only read_write

domain

array of objects

The grants this user has for individual domains on this account.

domain

object

integer

The unique identifier of the resource this grant applies to.

label

string

Read-only The name of the entity this grant applies to. This is only for display purposes.

permissions

string | null

enum

The level of access this user has to this entity. If null, this user has no access.

read_only read_write

firewall

array of objects

The grants this user has for individual firewalls on this account.

firewall

object

integer

The unique identifier of the resource this grant applies to.

label

string

Read-only The name of the entity this grant applies to. This is only for display purposes.

permissions

string | null

enum

The level of access this user has to this entity. If null, this user has no access.

read_only read_write

global

object

The grants the user has to all resources on your account.

account_access

string | null

enum

The level of access this user has to account-level actions, like billing information and user management.

📘
A restricted user can't be used to manage users, even if this is set to read-write. Only unrestricted users can manage other users on an account.

Parent and child accounts

In the context of the parent and child accounts feature, use the Update a user's access level to manage delegate user's access.

read_only read_write

add_databases

boolean

Whether this user can add Managed Databases on the account.

add_domains

boolean

Whether this user can add domains on the account.

add_firewalls

boolean

Whether this user can add Firewalls on the account.

add_images

boolean

Whether this user can create images from disks on your Linodes, on the account.

add_linodes

boolean

Whether this user can create Linodes.

add_longview

boolean

Whether this user can create Longview clients and view the current plan.

add_nodebalancers

boolean

Whether this user can add NodeBalancers on the account.

add_stackscripts

boolean

Whether this user can add StackScripts on the account.

add_volumes

boolean

Whether this user can add volumes on the account.

add_vpcs

boolean

Whether this user can add Virtual Private Clouds (VPCs) on the account.

cancel_account

boolean

Whether this user can cancel the entire account.

child_account_access

boolean | null

deprecated

Deprecated In order to provide a parent account user access to a child account, add them to an account delegation. This is null for all non-parent accounts.

longview_subscription

boolean

Whether this user can manage your account's Longview subscription.

image

array of objects

The grants this user has for individual images on this account.

image

object

integer

The unique identifier of the resource this grant applies to.

label

string

Read-only The name of the entity this grant applies to. This is only for display purposes.

permissions

string | null

enum

The level of access this user has to this entity. If null, this user has no access.

read_only read_write

linode

array of objects

The grants this user has for individual Linodes on this account.

linode

object

integer

The unique identifier of the resource this grant applies to.

label

string

Read-only The name of the entity this grant applies to. This is only for display purposes.

permissions

string | null

enum

The level of access this user has to this entity. If null, this user has no access.

read_only read_write

longview

array of objects

The grants this user has for individual Longview Clients on this account.

longview

object

integer

The unique identifier of the resource this grant applies to.

label

string

Read-only The name of the entity this grant applies to. This is only for display purposes.

permissions

string | null

enum

The level of access this user has to this entity. If null, this user has no access.

read_only read_write

nodebalancer

array of objects

The grants this user has for individual NodeBalancers on this account.

nodebalancer

object

integer

The unique identifier of the resource this grant applies to.

label

string

Read-only The name of the entity this grant applies to. This is only for display purposes.

permissions

string | null

enum

The level of access this user has to this entity. If null, this user has no access.

read_only read_write

stackscript

array of objects

The grants this User has for individual StackScripts on this account.

stackscript

object

integer

The unique identifier of the resource this grant applies to.

label

string

Read-only The name of the entity this grant applies to. This is only for display purposes.

permissions

string | null

enum

The level of access this user has to this entity. If null, this user has no access.

read_only read_write

volume

array of objects

The grants this user has individual Block Storage Volumes on this account.

volume

object

integer

The unique identifier of the resource this grant applies to.

label

string

Read-only The name of the entity this grant applies to. This is only for display purposes.

permissions

string | null

enum

The level of access this user has to this entity. If null, this user has no access.

read_only read_write

vpc

array of objects

The grants this user has individual Virtual Private Clouds (VPCs) on this account.

vpc

object

integer

The unique identifier of the resource this grant applies to.

label

string

Read-only The name of the entity this grant applies to. This is only for display purposes.

permissions

string | null

enum

The level of access this user has to this entity. If null, this user has no access.

read_only read_write

204

This is an unrestricted user. These users don't use grants. They can access everything on the account and perform all actions.

Language

Credentials


xxxxxxxxxx
1
curl --request GET \
2
     --url https://api.linode.com/v4/account/users/username/grants \
3
     --header 'accept: application/json'


xxxxxxxxxx
87
}
1
{
2
  "database": [
3
    {
4
      "id": 123,
5
      "label": "example-entity",
6
      "permissions": "read_only"
7
    }
8
  ],
9
  "domain": [
10
    {
11
      "id": 123,
12
      "label": "example-entity",
13
      "permissions": "read_only"
14
    }
15
  ],
16
  "firewall": [
17
    {
18
      "id": 123,
19
      "label": "example-entity",
20
      "permissions": "read_only"
21
    }
22
  ],
23
  "global": {
24
    "account_access": "read_only",
25
    "add_databases": true,
26
    "add_domains": true,
27
    "add_firewalls": true,
28
    "add_images": true,
29
    "add_linodes": true,
30
    "add_longview": true,
31
    "add_nodebalancers": true,
32
    "add_stackscripts": true,
33
    "add_volumes": true,
34
    "add_vpcs": true,
35
    "cancel_account": false,
36
    "longview_subscription": true
37
  },
38
  "image": [
39
    {
40
      "id": 123,
41
      "label": "example-entity",
42
      "permissions": "read_only"
43
    }
44
  ],
45
  "linode": [
46
    {
47
      "id": 123,
48
      "label": "example-entity",
49
      "permissions": "read_only"

200The User's grants.

defaultSee Errors for the range of possible error response codes.