Hawkin
/
arangodb
mirror of https://gitee.com/bigwinds/arangodb
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
arangodb/Documentation/DocuBlocks/Rest/User Management/README.md

399 lines
10 KiB
Markdown
Raw Blame History

<!-- ---------------------------------------------------------------------- -->
@startDocuBlock UserHandling_create
@brief Create a new user.
@RESTHEADER{POST /_api/user, Create User}
@RESTBODYPARAM{user,string,required,string}
The name of the user as a string. This is mandatory.
@RESTBODYPARAM{passwd,string,required,string}
The user password as a string. If no password is specified, the empty
string will be used. If you pass the special value
*ARANGODB_DEFAULT_ROOT_PASSWORD*, the password will be set the value
stored in the environment variable
`ARANGODB_DEFAULT_ROOT_PASSWORD`. This can be used to pass an instance
variable into ArangoDB. For example, the instance identifier from
Amazon.
@RESTBODYPARAM{active,boolean,optional,boolean}
An optional flag that specifies whether the user is active. If not
specified, this will default to true
@RESTBODYPARAM{extra,object,optional,}
An optional JSON object with arbitrary extra data about the user.
@RESTDESCRIPTION
Create a new user. This user will not have access to any database. You
need permission to the *_system* database in order to execute this
REST call.
@RESTRETURNCODES
@RESTRETURNCODE{201}
Returned if the user can be added by the server
@RESTRETURNCODE{400}
If the JSON representation is malformed or mandatory data is missing
from the request.
@EXAMPLES
@EXAMPLE_ARANGOSH_RUN{RestCreateUser}
var url = "/_api/user";
var data = { user: "admin@example", passwd: "secure" };
var response = logCurlRequest('POST', url, data);
assert(response.code === 201);
logJsonResponse(response);
@END_EXAMPLE_ARANGOSH_RUN
@endDocuBlock
<!-- ---------------------------------------------------------------------- -->
@startDocuBlock UserHandling_grantDatabase
@brief Grant or revoke access to a database.
@RESTHEADER{PUT /_api/user/{user}/database/{dbname}, Grant or revoke database access}
@RESTBODYPARAM{grant,string,required,string}
Use "rw" to grant access right and "none" to revoke.
@RESTURLPARAMETERS
@RESTURLPARAM{user,string,required}
The name of the user.
@RESTURLPARAM{dbname,string,required}
The name of the database.
@RESTDESCRIPTION
Grants or revokes access to the database *dbname* for user *user*. You
need permission to the *_system* database in order to execute this
REST call.
@RESTRETURNCODES
@RESTRETURNCODE{201}
Returned if the user can be added by the server
@RESTRETURNCODE{400}
If the JSON representation is malformed or mandatory data is missing
from the request.
@EXAMPLES
@EXAMPLE_ARANGOSH_RUN{RestGrantDatabase}
var users = require("@arangodb/users");
var theUser = "admin@myapp";
users.save(theUser, "secret")
var url = "/_api/user/" + theUser + "/database/_system";
var data = { grant: "rw" };
var response = logCurlRequest('PUT', url, data);
assert(response.code === 200);
logJsonResponse(response);
users.remove(theUser);
@END_EXAMPLE_ARANGOSH_RUN
@endDocuBlock
<!-- ---------------------------------------------------------------------- -->
@startDocuBlock UserHandling_fetchDatabaseList
@brief List available database to the specified user
@RESTHEADER{GET /_api/user/{user}/database/, List the databases available to a User}
@RESTURLPARAMETERS
@RESTURLPARAM{user,string,required}
The name of the user for which you want to query the databases.
@RESTDESCRIPTION
Fetch the list of databases available to the specified *user*. You
need permission to the *_system* database in order to execute this
REST call.
@RESTRETURNCODES
@RESTRETURNCODE{200}
Returned if the list of available databases can be returned.
@RESTRETURNCODE{400}
If the access privileges aren't right etc.
@EXAMPLES
@EXAMPLE_ARANGOSH_RUN{RestFetchUserDatabaseList}
var users = require("@arangodb/users");
var theUser="anotherAdmin@secapp";
users.save(theUser, "secret")
var url = "/_api/user/" + theUser + "/database/";
var response = logCurlRequest('GET', url);
assert(response.code === 200);
logJsonResponse(response);
users.remove(theUser);
@END_EXAMPLE_ARANGOSH_RUN
@endDocuBlock
<!-- ---------------------------------------------------------------------- -->
@startDocuBlock UserHandling_replace
@brief replace an existing user with a new one.
@RESTHEADER{PUT /_api/user/{user}, Replace User}
@RESTURLPARAMETERS
@RESTURLPARAM{user,string,required}
The name of the user
@RESTBODYPARAM{passwd,string,required,string}
The user password as a string. Specifying a password is mandatory, but
the empty string is allowed for passwords
@RESTBODYPARAM{active,boolean,optional,boolean}
An optional flag that specifies whether the user is active. If not
specified, this will default to true
@RESTBODYPARAM{extra,object,optional,}
An optional JSON object with arbitrary extra data about the user.
@RESTDESCRIPTION
Replaces the data of an existing user. The name of an existing user
must be specified in user. You can only change the password of your
self. You need access to the *_system* database to change the
*active* flag.
@RESTRETURNCODES
@RESTRETURNCODE{200}
Is returned if the user data can be replaced by the server
@RESTRETURNCODE{400}
The JSON representation is malformed or mandatory data is missing from the request
@RESTRETURNCODE{404}
The specified user does not exist
@EXAMPLES
@EXAMPLE_ARANGOSH_RUN{RestReplaceUser}
var users = require("@arangodb/users");
var theUser = "admin@myapp";
users.save(theUser, "secret")
var url = "/_api/user/" + theUser;
var data = { passwd: "secure" };
var response = logCurlRequest('PUT', url, data);
assert(response.code === 200);
logJsonResponse(response);
users.remove(theUser);
@END_EXAMPLE_ARANGOSH_RUN
@endDocuBlock
<!-- ---------------------------------------------------------------------- -->
@startDocuBlock UserHandling_modify
@brief modify attributes of an existing user
@RESTHEADER{PATCH /_api/user/{user}, Update User}
@RESTURLPARAMETERS
@RESTURLPARAM{user,string,required}
The name of the user
@RESTBODYPARAM{passwd,string,required,string}
The user password as a string. Specifying a password is mandatory, but
the empty string is allowed for passwords
@RESTBODYPARAM{active,boolean,optional,boolean}
An optional flag that specifies whether the user is active. If not
specified, this will default to true
@RESTBODYPARAM{extra,object,optional,}
An optional JSON object with arbitrary extra data about the user.
@RESTDESCRIPTION
Partially updates the data of an existing user. The name of an existing
user must be specified in *user*. You can only change the password of your
self. You need access to the *_system* database to change the
*active* flag.
@RESTRETURNCODES
@RESTRETURNCODE{200}
Is returned if the user data can be replaced by the server
@RESTRETURNCODE{400}
The JSON representation is malformed or mandatory data is missing from the request
@RESTRETURNCODE{404}
The specified user does not exist
@EXAMPLES
@EXAMPLE_ARANGOSH_RUN{RestUpdateUser}
var users = require("@arangodb/users");
var theUser = "admin@myapp";
users.save(theUser, "secret")
var url = "/_api/user/" + theUser;
var data = { passwd: "secure" };
var response = logCurlRequest('PATCH', url, data);
assert(response.code === 200);
logJsonResponse(response);
users.remove(theUser);
@END_EXAMPLE_ARANGOSH_RUN
@endDocuBlock
@endDocuBlock
<!-- ---------------------------------------------------------------------- -->
@startDocuBlock UserHandling_delete
@brief delete a user permanently.
@RESTHEADER{DELETE /_api/user/{user}, Remove User}
@RESTURLPARAMETERS
@RESTURLPARAM{user,string,required}
The name of the user
@RESTDESCRIPTION
Removes an existing user, identified by *user*. You need access to the
*_system* database.
@RESTRETURNCODES
@RESTRETURNCODE{202}
Is returned if the user was removed by the server
@RESTRETURNCODE{404}
The specified user does not exist
@EXAMPLES
@EXAMPLE_ARANGOSH_RUN{RestDeleteUser}
var users = require("@arangodb/users");
var theUser = "userToDelete@myapp";
users.save(theUser, "secret")
var url = "/_api/user/" + theUser;
var response = logCurlRequest('DELETE', url, {});
assert(response.code === 202);
logJsonResponse(response);
@END_EXAMPLE_ARANGOSH_RUN
@endDocuBlock
<!-- ---------------------------------------------------------------------- -->
@startDocuBlock UserHandling_fetch
@brief fetch the properties of a user.
@RESTHEADER{GET /_api/user/{user}, Fetch User}
@RESTURLPARAMETERS
@RESTURLPARAM{user,string,required}
The name of the user
@RESTDESCRIPTION
Fetches data about the specified user. You can fetch information about yourself
or you need permission to the *_system* database in order to execute this
REST call.
@RESTRETURNCODES
@RESTRETURNCODE{200}
The user was found.
@RESTRETURNCODE{404}
The user with the specified name does not exist.
@EXAMPLES
@EXAMPLE_ARANGOSH_RUN{RestFetchUser}
var users = require("@arangodb/users");
var theUser = "admin@myapp";
users.save(theUser, "secret")
var url = "/_api/user/" + theUser;
var response = logCurlRequest('GET', url);
assert(response.code === 200);
logJsonResponse(response);
users.remove(theUser);
@END_EXAMPLE_ARANGOSH_RUN
@endDocuBlock
<!-- ---------------------------------------------------------------------- -->
@startDocuBlock UserHandling_fetchProperties
@brief fetch the properties of a user.
@RESTHEADER{GET /_api/user/, List available Users}
@RESTDESCRIPTION
Fetches data about all users. You can only execute this call if you
have access to the *_system* database. Otherwise, you will only
get information about yourself.
The call will return a JSON object with at least the following
attributes on success:
- *user*: The name of the user as a string.
- *active*: An optional flag that specifies whether the user is active.
- *extra*: An optional JSON object with arbitrary extra data about the user.
- *changePassword*: An optional flag that specifies whether the user must
change the password or not.
@RESTRETURNCODES
@RESTRETURNCODE{200}
The users that were found.
@EXAMPLES
@EXAMPLE_ARANGOSH_RUN{RestFetchAllUser}
var url = "/_api/user";
var response = logCurlRequest('GET', url);
assert(response.code === 200);
logJsonResponse(response);
@END_EXAMPLE_ARANGOSH_RUN
@endDocuBlock
Reference in New Issue View Git Blame Copy Permalink