Policies¶
The following is an overview of all available policies in ironic inspector. For a sample configuration file, refer to Ironic Inspector Policy.
ironic_inspector.api¶
is_adminDefault: role:admin or role:administrator or role:baremetal_adminFull read/write API access
is_observerDefault: role:baremetal_observerRead-only API access
public_apiDefault: is_public_api:TrueInternal flag for public API routes
defaultDefault: !Default API access policy
introspectionDefault: rule:public_apiOperations: - GET
/
Access the API root for available versions information
- GET
introspection:versionDefault: rule:public_apiOperations: - GET
/{version}
Access the versioned API root for version information
- GET
introspection:continueDefault: rule:public_apiOperations: - POST
/continue
Ramdisk callback to continue introspection
- POST
introspection:statusDefault: rule:is_admin or rule:is_observerOperations: - GET
/introspection - GET
/introspection/{node_id}
Get introspection status
- GET
introspection:startDefault: rule:is_adminOperations: - POST
/introspection/{node_id}
Start introspection
- POST
introspection:abortDefault: rule:is_adminOperations: - POST
/introspection/{node_id}/abort
Abort introspection
- POST
introspection:dataDefault: rule:is_adminOperations: - GET
/introspection/{node_id}/data
Get introspection data
- GET
introspection:reapplyDefault: rule:is_adminOperations: - POST
/introspection/{node_id}/data/unprocessed
Reapply introspection on stored data
- POST
introspection:rule:getDefault: rule:is_adminOperations: - GET
/rules - GET
/rules/{rule_id}
Get introspection rule(s)
- GET
introspection:rule:deleteDefault: rule:is_adminOperations: - DELETE
/rules - DELETE
/rules/{rule_id}
Delete introspection rule(s)
- DELETE
introspection:rule:createDefault: rule:is_adminOperations: - POST
/rules
Create introspection rule
- POST