2014-11-18 15:11:32 -06:00
|
|
|
====
|
|
|
|
|
role
|
|
|
|
|
====
|
|
|
|
|
|
|
|
|
|
Identity v2, v3
|
|
|
|
|
|
|
|
|
|
role add
|
|
|
|
|
--------
|
|
|
|
|
|
|
|
|
|
Add role to a user or group in a project or domain
|
|
|
|
|
|
|
|
|
|
.. program:: role add
|
|
|
|
|
.. code:: bash
|
|
|
|
|
|
|
|
|
|
os role add
|
2015-05-30 09:18:42 -04:00
|
|
|
--domain <domain> | --project <project> [--project-domain <project-domain>]
|
|
|
|
|
--user <user> [--user-domain <user-domain>] | --group <group> [--group-domain <group-domain>]
|
2015-08-06 22:15:42 -07:00
|
|
|
--inherited
|
2014-11-18 15:11:32 -06:00
|
|
|
<role>
|
|
|
|
|
|
|
|
|
|
.. option:: --domain <domain>
|
|
|
|
|
|
|
|
|
|
Include `<domain>` (name or ID)
|
|
|
|
|
|
|
|
|
|
.. versionadded:: 3
|
|
|
|
|
|
|
|
|
|
.. option:: --project <project>
|
|
|
|
|
|
|
|
|
|
Include `<project>` (name or ID)
|
|
|
|
|
|
|
|
|
|
.. option:: --user <user>
|
|
|
|
|
|
|
|
|
|
Include `<user>` (name or ID)
|
|
|
|
|
|
|
|
|
|
.. option:: --group <group>
|
|
|
|
|
|
|
|
|
|
Include `<group>` (name or ID)
|
|
|
|
|
|
|
|
|
|
.. versionadded:: 3
|
2015-05-06 22:46:32 +03:00
|
|
|
|
|
|
|
|
.. option:: --user-domain <user-domain>
|
|
|
|
|
|
|
|
|
|
Domain the user belongs to (name or ID).
|
|
|
|
|
This can be used in case collisions between user names exist.
|
|
|
|
|
|
|
|
|
|
.. versionadded:: 3
|
|
|
|
|
|
|
|
|
|
.. option:: --group-domain <group-domain>
|
|
|
|
|
|
|
|
|
|
Domain the group belongs to (name or ID).
|
|
|
|
|
This can be used in case collisions between group names exist.
|
|
|
|
|
|
|
|
|
|
.. versionadded:: 3
|
|
|
|
|
|
|
|
|
|
.. option:: --project-domain <project-domain>
|
|
|
|
|
|
|
|
|
|
Domain the project belongs to (name or ID).
|
|
|
|
|
This can be used in case collisions between project names exist.
|
|
|
|
|
|
|
|
|
|
.. versionadded:: 3
|
2014-11-18 15:11:32 -06:00
|
|
|
|
2015-08-06 22:15:42 -07:00
|
|
|
.. option:: --inherited
|
|
|
|
|
|
|
|
|
|
Specifies if the role grant is inheritable to the sub projects.
|
|
|
|
|
|
|
|
|
|
.. versionadded:: 3
|
|
|
|
|
|
2014-11-18 15:11:32 -06:00
|
|
|
.. describe:: <role>
|
|
|
|
|
|
|
|
|
|
Role to add to `<project>`:`<user>` (name or ID)
|
|
|
|
|
|
|
|
|
|
role create
|
|
|
|
|
-----------
|
|
|
|
|
|
|
|
|
|
Create new role
|
|
|
|
|
|
|
|
|
|
.. program:: role create
|
|
|
|
|
.. code:: bash
|
|
|
|
|
|
|
|
|
|
os role create
|
2015-07-18 18:19:01 +08:00
|
|
|
[--or-show]
|
2014-11-18 15:11:32 -06:00
|
|
|
<name>
|
|
|
|
|
|
2015-07-18 18:19:01 +08:00
|
|
|
.. option:: --or-show
|
|
|
|
|
|
|
|
|
|
Return existing role
|
|
|
|
|
|
2015-07-19 06:06:19 -06:00
|
|
|
If the role already exists return the existing role data and do not fail.
|
2015-07-18 18:19:01 +08:00
|
|
|
|
2014-11-18 15:11:32 -06:00
|
|
|
.. describe:: <name>
|
|
|
|
|
|
|
|
|
|
New role name
|
|
|
|
|
|
2014-12-23 16:30:47 -06:00
|
|
|
role delete
|
|
|
|
|
-----------
|
2014-11-18 15:11:32 -06:00
|
|
|
|
2014-12-10 14:09:01 +08:00
|
|
|
Delete role(s)
|
2014-11-18 15:11:32 -06:00
|
|
|
|
2014-12-23 16:30:47 -06:00
|
|
|
.. program:: role delete
|
2014-11-18 15:11:32 -06:00
|
|
|
.. code:: bash
|
|
|
|
|
|
|
|
|
|
os role delete
|
2014-12-10 14:09:01 +08:00
|
|
|
<role> [<role> ...]
|
2014-11-18 15:11:32 -06:00
|
|
|
|
2015-01-17 02:55:57 -05:00
|
|
|
.. describe:: <role>
|
2014-11-18 15:11:32 -06:00
|
|
|
|
|
|
|
|
Role to delete (name or ID)
|
|
|
|
|
|
|
|
|
|
role list
|
|
|
|
|
---------
|
|
|
|
|
|
|
|
|
|
List roles
|
|
|
|
|
|
|
|
|
|
.. program:: role list
|
|
|
|
|
.. code:: bash
|
|
|
|
|
|
|
|
|
|
os role list
|
2015-06-08 16:30:06 +03:00
|
|
|
--domain <domain> | --project <project> [--project-domain <project-domain>]
|
|
|
|
|
--user <user> [--user-domain <user-domain>] | --group <group> [--group-domain <group-domain>]
|
2015-08-06 22:15:42 -07:00
|
|
|
--inherited
|
2014-11-18 15:11:32 -06:00
|
|
|
|
|
|
|
|
.. option:: --domain <domain>
|
|
|
|
|
|
|
|
|
|
Filter roles by <domain> (name or ID)
|
|
|
|
|
|
|
|
|
|
.. versionadded:: 3
|
|
|
|
|
|
|
|
|
|
.. option:: --project <project>
|
|
|
|
|
|
|
|
|
|
Filter roles by <project> (name or ID)
|
|
|
|
|
|
|
|
|
|
.. versionadded:: 3
|
|
|
|
|
|
|
|
|
|
.. option:: --user <user>
|
|
|
|
|
|
|
|
|
|
Filter roles by <user> (name or ID)
|
|
|
|
|
|
|
|
|
|
.. versionadded:: 3
|
|
|
|
|
|
|
|
|
|
.. option:: --group <group>
|
|
|
|
|
|
|
|
|
|
Filter roles by <group> (name or ID)
|
|
|
|
|
|
|
|
|
|
.. versionadded:: 3
|
|
|
|
|
|
2015-06-08 16:30:06 +03:00
|
|
|
.. option:: --user-domain <user-domain>
|
|
|
|
|
|
|
|
|
|
Domain the user belongs to (name or ID).
|
|
|
|
|
This can be used in case collisions between user names exist.
|
|
|
|
|
|
|
|
|
|
.. versionadded:: 3
|
|
|
|
|
|
|
|
|
|
.. option:: --group-domain <group-domain>
|
|
|
|
|
|
|
|
|
|
Domain the group belongs to (name or ID).
|
|
|
|
|
This can be used in case collisions between group names exist.
|
|
|
|
|
|
|
|
|
|
.. versionadded:: 3
|
|
|
|
|
|
|
|
|
|
.. option:: --project-domain <project-domain>
|
|
|
|
|
|
|
|
|
|
Domain the project belongs to (name or ID).
|
|
|
|
|
This can be used in case collisions between project names exist.
|
|
|
|
|
|
|
|
|
|
.. versionadded:: 3
|
|
|
|
|
|
2015-08-06 22:15:42 -07:00
|
|
|
.. option:: --inherited
|
|
|
|
|
|
|
|
|
|
Specifies if the role grant is inheritable to the sub projects.
|
|
|
|
|
|
|
|
|
|
.. versionadded:: 3
|
|
|
|
|
|
2014-11-18 15:11:32 -06:00
|
|
|
role remove
|
|
|
|
|
-----------
|
|
|
|
|
|
|
|
|
|
Remove role from domain/project : user/group
|
|
|
|
|
|
|
|
|
|
.. program:: role remove
|
|
|
|
|
.. code:: bash
|
|
|
|
|
|
|
|
|
|
os role remove
|
2015-06-08 16:30:06 +03:00
|
|
|
--domain <domain> | --project <project> [--project-domain <project-domain>]
|
|
|
|
|
--user <user> [--user-domain <user-domain>] | --group <group> [--group-domain <group-domain>]
|
2015-08-06 22:15:42 -07:00
|
|
|
--inherited
|
2014-11-18 15:11:32 -06:00
|
|
|
<role>
|
|
|
|
|
|
|
|
|
|
.. option:: --domain <domain>
|
|
|
|
|
|
|
|
|
|
Include `<domain>` (name or ID)
|
|
|
|
|
|
|
|
|
|
.. versionadded:: 3
|
|
|
|
|
|
|
|
|
|
.. option:: --project <project>
|
|
|
|
|
|
|
|
|
|
Include `<project>` (name or ID)
|
|
|
|
|
|
|
|
|
|
.. option:: --user <user>
|
|
|
|
|
|
|
|
|
|
Include `<user>` (name or ID)
|
|
|
|
|
|
|
|
|
|
.. option:: --group <group>
|
|
|
|
|
|
|
|
|
|
Include `<group>` (name or ID)
|
|
|
|
|
|
|
|
|
|
.. versionadded:: 3
|
|
|
|
|
|
2015-06-08 16:30:06 +03:00
|
|
|
.. option:: --user-domain <user-domain>
|
|
|
|
|
|
|
|
|
|
Domain the user belongs to (name or ID).
|
|
|
|
|
This can be used in case collisions between user names exist.
|
|
|
|
|
|
|
|
|
|
.. versionadded:: 3
|
|
|
|
|
|
|
|
|
|
.. option:: --group-domain <group-domain>
|
|
|
|
|
|
|
|
|
|
Domain the group belongs to (name or ID).
|
|
|
|
|
This can be used in case collisions between group names exist.
|
|
|
|
|
|
|
|
|
|
.. versionadded:: 3
|
|
|
|
|
|
|
|
|
|
.. option:: --project-domain <project-domain>
|
|
|
|
|
|
|
|
|
|
Domain the project belongs to (name or ID).
|
|
|
|
|
This can be used in case collisions between project names exist.
|
|
|
|
|
|
|
|
|
|
.. versionadded:: 3
|
|
|
|
|
|
2015-08-06 22:15:42 -07:00
|
|
|
.. option:: --inherited
|
|
|
|
|
|
|
|
|
|
Specifies if the role grant is inheritable to the sub projects.
|
|
|
|
|
|
|
|
|
|
.. versionadded:: 3
|
|
|
|
|
|
2014-11-18 15:11:32 -06:00
|
|
|
.. describe:: <role>
|
|
|
|
|
|
2015-01-09 19:13:03 -05:00
|
|
|
Role to remove (name or ID)
|
2014-11-18 15:11:32 -06:00
|
|
|
|
|
|
|
|
role set
|
|
|
|
|
--------
|
|
|
|
|
|
|
|
|
|
Set role properties
|
|
|
|
|
|
|
|
|
|
.. versionadded:: 3
|
|
|
|
|
|
|
|
|
|
.. program:: role set
|
|
|
|
|
.. code:: bash
|
|
|
|
|
|
|
|
|
|
os role set
|
|
|
|
|
[--name <name>]
|
|
|
|
|
<role>
|
|
|
|
|
|
|
|
|
|
.. option:: --name <name>
|
|
|
|
|
|
|
|
|
|
Set role name
|
|
|
|
|
|
|
|
|
|
.. describe:: <role>
|
|
|
|
|
|
|
|
|
|
Role to modify (name or ID)
|
|
|
|
|
|
|
|
|
|
role show
|
|
|
|
|
---------
|
|
|
|
|
|
2015-01-09 19:13:03 -05:00
|
|
|
Display role details
|
|
|
|
|
|
2014-11-18 15:11:32 -06:00
|
|
|
.. program:: role show
|
|
|
|
|
.. code:: bash
|
|
|
|
|
|
|
|
|
|
os role show
|
|
|
|
|
<role>
|
|
|
|
|
|
|
|
|
|
.. describe:: <role>
|
|
|
|
|
|
2015-01-09 19:13:03 -05:00
|
|
|
Role to display (name or ID)
|
