tencent cloud

Feedback

TencentDB for CTSDB

Last updated: 2024-04-22 09:16:53

    Fundamental information

    Product Abbreviation in CAM Console Authorization by Tag Authorization Granularity IP Restriction
    TencentDB for CTSDB ctsdb Supported Supported Resource level Partially supported

    Note:

    The authorization granularity of cloud products is divided into three levels: service level, operation level, and resource level, based on the degree of granularity.

    • Service level: It defines whether a user has the permission to access the service as a whole. A user can have either full access or no access to the service. For the authorization granularity of cloud products at service level, the authorization of specific APIs are not supported.
    • Operation level: It defines whether a user has the permission to call a specific API of the service. For example, granting an account read-only access to the CVM service is an authorization at the operation level.
    • Resource level: It is the finest authorization granularity which defines whether a user has the permission to access specific resources. For example, granting an account read/write access to a specific CVM instance is an authorization at the resource level.

    API authorization granularity

    Two authorization granularity levels of API are supported: resource level, and operation level.

    • Resource level: It supports the authorization of a specific resource.
    • Operation level: It does not support the authorization of a specific resource. If the policy syntax restricts a specific resource during authorization, CAM will determine that this API is not within the scope of authorization, and deem it as unauthorized.

    Write operations

    API API Description Authorization Granularity Six-segment Resource Description IP Restriction
    CreateCluster create ctsdb instance Operation level * Supported
    CreateComponent create component Resource level qcs::ctsdb:${region}:uin/${uin}:instance/${instance} Supported
    CreateDatabase create database for instance Resource level qcs::ctsdb:${region}:uin/${uin}:instance/${instance} Supported
    CreateHourResource create post pay instance Operation level * not supported
    DestroyCluster destroy ctsdb instance Resource level qcs::ctsdb:${region}:uin/${uin}:instance/${instance} Supported
    DestroyComponent destroy component for instance Resource level qcs::ctsdb:${region}:uin/${uin}:instance/${instance} Supported
    DestroyDatabase destroy database for instance Resource level qcs::ctsdb:${region}:uin/${uin}:instance/${instance} Supported
    InitDBInstance Initialize the database instance Resource level qcs::ctsdb:${region}:uin/${uin}:instance/$instanceId not supported
    ModifyAccountPassword modify account password for instance Resource level qcs::ctsdb:${region}:uin/${uin}:instance/${instance} Supported
    ModifyCluster modify cluster info Resource level qcs::ctsdb:${region}:uin/${uin}:instance/${instance} Supported
    ModifyClusterHorizontalDowngrade instance horizontal downgrade Resource level qcs::ctsdb:${region}:uin/${uin}:instance/${instance} Supported
    ModifyClusterHorizontalUpgrade instance horizontal upgrade Resource level qcs::ctsdb:${region}:uin/${uin}:instance/${instance} Supported
    ModifyClusterSecurity modify instance security group Resource level qcs::ctsdb:${region}:uin/${uin}:instance/${instance} Supported
    ModifyClusterVerticalDowngrade instance vertical downgrade Resource level qcs::ctsdb:${region}:uin/${uin}:instance/${instance} Supported
    ModifyClusterVerticalUpgrade instance vertical upgrade Resource level qcs::ctsdb:${region}:uin/${uin}:instance/${instance} Supported
    ModifyComponent modify component Resource level qcs::ctsdb:${region}:uin/${uin}:instance/${instance} Supported
    ModifyDBInstanceName Modify the name of database instance Resource level qcs::ctsdb:${region}:uin/${uin}:instance/$instanceId not supported
    ModifyDBInstanceProject Modify the project to which the database instance belongs Resource level qcs::ctsdb:${region}:uin/${uin}:instance/$instanceId not supported
    ModifyDBInstanceUserPassword Change the password of user in database instance Resource level qcs::ctsdb:${region}:uin/${uin}:instance/$instanceId not supported
    ModifyDatabase modify database for instance Resource level qcs::ctsdb:${region}:uin/${uin}:instance/${instance} Supported
    ModifyHourResource modify post pay resource Operation level * not supported
    RecycleDBInstance Recycling the database instance Resource level qcs::ctsdb:${region}:uin/${uin}:instance/$instanceId not supported
    SetRenewFlag config auto renew flag Operation level * not supported

    Read operations

    API API Description Authorization Granularity Six-segment Resource Description IP Restriction
    DescribeAccessPool show access pool info Resource level qcs::ctsdb:${region}:uin/${uin}:instance/${instance} Supported
    DescribeBackupRules describe backup rules Resource level qcs::ctsdb:${region}:uin/${uin}:instance/${instance} Supported
    DescribeClusters List of description instances Operation level * Supported
    DescribeDBInstanceMetricInfo Querying Metric Information in a Database Instance Resource level qcs::ctsdb:${region}:uin/${uin}:instance/$instanceId not supported
    DescribeDBInstanceMetricList Query the list of metrics in database instance Resource level qcs::ctsdb:${region}:uin/${uin}:instance/$instanceId not supported
    DescribeDBInstanceMetricQuery Describe the database instance metric query Resource level qcs::ctsdb:${region}:uin/${uin}:instance/$instanceId not supported
    DescribeSaleSpec Querying Database Instance Specifications Available for Sale Operation level * not supported
    DescribeSaleSpecs describe sale specs Operation level * Supported
    DescribeSaleZone Query areas where database instances can be sold Operation level * not supported

    List Operations

    API API Description Authorization Granularity Six-segment Resource Description IP Restriction
    DescribeAccounts show account list for instance Resource level qcs::ctsdb:${region}:uin/${uin}:instance/${instance} Supported
    DescribeBackups describe backup list Resource level qcs::ctsdb:${region}:uin/${uin}:instance/${instance} Supported
    DescribeDBInstances List of description instances Resource level qcs::ctsdb:${region}:uin/${uin}:instance/$instanceId not supported
    DescribeDatabases show database list for instance Resource level qcs::ctsdb:${region}:uin/${uin}:instance/${instance} Supported
    Contact Us

    Contact our sales team or business advisors to help your business.

    Technical Support

    Open a ticket if you're looking for further assistance. Our Ticket is 7x24 avaliable.

    7x24 Phone Support