Page History

...

Panel

title	DuraStore REST Methods

Action	Role
Get Stores	ROLE_USER
Get Spaces	ROLE_ANONYMOUS if space ACL allows public read, else ROLE_USER
Get Space	ROLE_ANONYMOUS if space ACL allows public read, else ROLE_USER
Get Space Properties	ROLE_ANONYMOUS if space ACL allows public read, else ROLE_USER
Get Space ACLs	ROLE_ANONYMOUS if space ACL allows public read, else ROLE_USER
Create Space	ROLE_ADMIN
Set Space Properties	ROLE_USER
Set Space ALCsACLs	ROLE_ADMIN
Delete Space	ROLE_ADMIN
Get Content	ROLE_ANONYMOUS if space ACL allows public read, else ROLE_USER
Get Content Properties	ROLE_ANONYMOUS if space ACL allows public read, else ROLE_USER
Store Content	ROLE_USER
Copy Content	ROLE_USER
Set Content Properties	ROLE_USER
Delete Content	ROLE_USER
Get Tasks	ROLE_ADMIN
Perform Task	ROLE_ADMIN

...

User Management and Access Control

In order for the administrator of a DuraCloud account to manage new users, an initial user with ROLE_ADMIN privileges is provided at start-up:
- username: admin
- password: changeme

...

Users are managed via the DuraCloud Management Console. In the Management Console, an account administrator has the ability to:
1. Add and remove users to the DuraCloud account
2. Create Groups and add users to groups in order to simplify access control
Access Control is managed at the space level
- Within DuraCloud (via the UI or the REST API), an account administrator has the ability to define which users and groups have access to a space, as well as the type of access (read or write) that is available.