• API White Paper

wp
  1. Help Center
  2. API White Paper
  3. API Reference
  4. Open Telekom Cloud API Open Scope Principles
  5. Principle 1: All Services Comply with API First Design Policy
  6. Operation Security

Operation Security

Native OpenStack APIs are categorized as APIs available to common users and APIs available to system administrators. Open Telekom Cloud, as the public cloud service used by multiple tenants, must ensure secure operation of its own platform. Therefore, APIs which may adversely affect the system operation security, including APIs available to administrators, are unavailable to common tenants.

For example, if common users randomly call APIs listed in the following table, the system operation security may be adversely affected.

Service

URI

Description

  

Nova

POST /v2/{project_id}/flavors

Creating flavors

Available only to administrators

Nova

DELETE /v2/{project_id}/flavors/{flavor_id}

Deleting flavors

Available only to administrators

Nova

PUT /v2/{project_id}/os-quota-sets/{project_id}

Updating quotas

Available only to administrators

Nova

DELETE /v2/{project_id}/os-quota-sets/{project_id}

Deleting quotas.

Available only to administrators

Nova

GET /v2/{project_id}/os-hypervisors

Querying a hypervisor

Available only to administrators

Nova

GET /v2/{project_id}/os-availability-zone

Querying an AZ

Available only to administrators

Cinder

POST /v2/​{tenant_id}​/types

Creating volume types

Available only to administrators

Cinder

DELETE /v2/​{tenant_id}​/types/​[type_id]

Deleting volume types

Available only to administrators

Cinder

POST v2/{tenant_id}/qos-specs

Creating QoS policies

Available only to administrators

Cinder

PUT v2/{tenant_id}/os-quota-sets/{tenant_id}

Updating quota information for a tenant

Available only to administrators