https://deploy-preview-2170--beryju-gravity.netlify.app/docs/api/Recent content in API Role on GravityHugoen-ushttps://deploy-preview-2170--beryju-gravity.netlify.app/docs/api/reference/Mon, 01 Jan 0001 00:00:00 +0000https://deploy-preview-2170--beryju-gravity.netlify.app/docs/api/reference/<div id="docsy_swagger_ui"></div> <script> window.onload = function () { const ui = SwaggerUIBundle({ url: "/schema.yaml", dom_id: '#docsy_swagger_ui', presets: [ SwaggerUIBundle.presets.apis, SwaggerUIStandalonePreset ] }); window.ui = ui; }; </script>https://deploy-preview-2170--beryju-gravity.netlify.app/docs/api/permissions/Mon, 01 Jan 0001 00:00:00 +0000https://deploy-preview-2170--beryju-gravity.netlify.app/docs/api/permissions/<p>Starting with Gravity 0.16, users can have permissions assigned to them. Permissions are assigned based on HTTP URL paths and methods. For example, to give a user permissions to read all resources, permissions can be set to this:</p> <div class="highlight"><pre tabindex="0" style="color:#f8f8f2;background-color:#272822;-moz-tab-size:4;-o-tab-size:4;tab-size:4;"><code class="language-json" data-lang="json"><span style="display:flex;"><span>[ </span></span><span style="display:flex;"><span> { </span></span><span style="display:flex;"><span> <span style="color:#f92672">&#34;path&#34;</span>: <span style="color:#e6db74">&#34;/*&#34;</span>, </span></span><span style="display:flex;"><span> <span style="color:#f92672">&#34;methods&#34;</span>: [<span style="color:#e6db74">&#34;get&#34;</span>, <span style="color:#e6db74">&#34;head&#34;</span>] </span></span><span style="display:flex;"><span> } </span></span><span style="display:flex;"><span>] </span></span></code></pre></div><p>To give users permissions to view DNS zones and records, you can set the permissions to</p> <div class="highlight"><pre tabindex="0" style="color:#f8f8f2;background-color:#272822;-moz-tab-size:4;-o-tab-size:4;tab-size:4;"><code class="language-json" data-lang="json"><span style="display:flex;"><span>[ </span></span><span style="display:flex;"><span> { </span></span><span style="display:flex;"><span> <span style="color:#f92672">&#34;path&#34;</span>: <span style="color:#e6db74">&#34;/api/v1/dns/zones&#34;</span>, </span></span><span style="display:flex;"><span> <span style="color:#f92672">&#34;methods&#34;</span>: [<span style="color:#e6db74">&#34;get&#34;</span>] </span></span><span style="display:flex;"><span> }, </span></span><span style="display:flex;"><span> { </span></span><span style="display:flex;"><span> <span style="color:#f92672">&#34;path&#34;</span>: <span style="color:#e6db74">&#34;/api/v1/dns/zones/records&#34;</span>, </span></span><span style="display:flex;"><span> <span style="color:#f92672">&#34;methods&#34;</span>: [<span style="color:#e6db74">&#34;get&#34;</span>] </span></span><span style="display:flex;"><span> }, </span></span><span style="display:flex;"><span>] </span></span></code></pre></div><p>To give a user admin permissions, set the permissions to</p>https://deploy-preview-2170--beryju-gravity.netlify.app/docs/api/role_config/Mon, 01 Jan 0001 00:00:00 +0000https://deploy-preview-2170--beryju-gravity.netlify.app/docs/api/role_config/<ul> <li> <p><code>port</code>: The port the API server listens on (defaults to 8008).</p> </li> <li> <p><code>oidc</code>: Optional OpenID Connect config.</p> <ul> <li> <p><code>clientID</code>: OpenID Client Identifier.</p> </li> <li> <p><code>clientSecret</code>: OpenID Client Secret.</p> </li> <li> <p><code>issuer</code>: OpenID Issuer, sometimes also called &ldquo;Configuration URL&rdquo;. Ensure <code>.well-known/openid-configuration</code> suffix is removed.</p> </li> <li> <p><code>redirectURL</code>: Redirect URL Gravity is reachable under. Should end in <code>/auth/oidc/callback</code>.</p> <p>The placeholder <code>$INSTANCE_IDENTIFIER</code> will be replaced by the instance&rsquo;s name and <code>$INSTANCE_IP</code> will be replaced by the instances IP.</p> </li> <li> <p><code>scopes</code>: Array of scopes that are requested. Should contain <code>openid</code> and <code>email</code>.</p>