Namespaces_Instances_Access

Namespaces_Instances_Access
Namespaces_Instances_Access

The Instances.Access structure contains the access control information for a subject on a namespace.

JSON Example 
{
    "subject_type": "string",
    "subject": "string",
    "domain": "string",
    "role": "string",
    "identity_provider": "string"
}
Namespaces_Access_SubjectType
subject_type
Required

The Access.SubjectType enumerated type lists the types of subjects who can be associated with a Access.Role on the namespace.
USER : Single user.
GROUP : Group of users.

string
subject
Required

Name of the subject.

string
domain
Required

Domain of the subject.

Namespaces_Access_Role
role
Required

The Access.Role enumerated type lists the default roles which can be associated with a subject on a domain on the namespace.
OWNER : This role allows modification and deletion of the namespace.
EDIT : This role allows modification of the namespace.
VIEW : This is a read-only role on the namespace.

string
identity_provider
Optional

UUID of an external identity provider for the user, if any. Use this field if the user is coming from an external identity provider configured via the com.vmware.vcenter.namespace_management.supervisors.identity.Providers service. If unset, vCenter Single Sign-On will be used as the identity provider. When clients pass a value of this structure as a parameter, the field must be an identifier for the resource type: com.vmware.vcenter.namespace_management.identity.Provider. When operations return a value of this structure as a result, the field will be an identifier for the resource type: com.vmware.vcenter.namespace_management.identity.Provider.