ByCloud Docs
GuidesCLIAPISDK

Authorize action

bycloud iam authorize create --principal <principal> --action <action> [flags]

Evaluate if a principal is allowed to perform an action on a resource. Used by external services (e.g., console, S3/Ceph) to check permissions.

Options

--output

(-o)

stringoptional

Output format: text, json, or yaml

Values: "text", "json", "yaml"

Default: "text"

Body Options

--action

stringrequired

Action in service:action format

--principal

stringrequired

CRN of the principal requesting access. Format: crn:<region>:<service>:<resource>:<identifier>

--resource

stringrequired

CRN of the resource being accessed. Format: crn:<region>:<service>:<resource>:<identifier>

--context

objectoptional

Additional context for condition evaluation

Command

bycloud iam authorize create \
  --principal "value" \
  --action "value" \
  --resource "value"

Output

POLICY_ID                       POLICY_NAME  STATEMENT_ID  EFFECT
550e8400-e29b-41d4-a716-446655  string       string        allow 
550e8400-e29b-41d4-a716-446655  string       string        allow