Security Service
Security
The Security service provides methods to manage security settings in TSB.
It provides methods to create and manage security groups within a workspace, allowing to create fine-grained groupings to configure a subset of the workspace namespaces. Access policies can be assigned at group level, providing a fine-grained access control to the security configuration features.
The Security service also provides methods to configure the different security settings that are allowed within each group.
CreateGroup
rpc CreateGroup (tetrateio.api.tsb.security.v2.CreateSecurityGroupRequest) returns (tetrateio.api.tsb.security.v2.Group)
Requires CreateGroup
Create a new security group in the given workspace.
Groups will by default configure all the namespaces owned by their workspace, unless
explicitly configured. If a specific set of namespaces is set for the group, it must be a
subset of the namespaces defined by its workspace.
GetGroup
rpc GetGroup (tetrateio.api.tsb.security.v2.GetSecurityGroupRequest) returns (tetrateio.api.tsb.security.v2.Group)
Requires ReadGroup
Get the details of the given security group.
UpdateGroup
rpc UpdateGroup (tetrateio.api.tsb.security.v2.Group) returns (tetrateio.api.tsb.security.v2.Group)
Requires WriteGroup
Modify a security group.
ListGroups
rpc ListGroups (tetrateio.api.tsb.security.v2.ListSecurityGroupsRequest) returns (tetrateio.api.tsb.security.v2.ListSecurityGroupsResponse)
List all security groups in the given workspace.
DeleteGroup
rpc DeleteGroup (tetrateio.api.tsb.security.v2.DeleteSecurityGroupRequest) returns (google.protobuf.Empty)
Requires DeleteGroup
Delete the given security group. Note that deleting resources in TSB is a recursive operation. Deleting a security group will delete all configuration objects that exist in it.
CreateSettings
rpc CreateSettings (tetrateio.api.tsb.security.v2.CreateSecuritySettingsRequest) returns (tetrateio.api.tsb.security.v2.SecuritySetting)
Requires CreateSettings
Create a security settings object in the security group.
GetSettings
rpc GetSettings (tetrateio.api.tsb.security.v2.GetSecuritySettingsRequest) returns (tetrateio.api.tsb.security.v2.SecuritySetting)
Requires ReadSettings
Get the details of the given security settings object.
UpdateSettings
rpc UpdateSettings (tetrateio.api.tsb.security.v2.SecuritySetting) returns (tetrateio.api.tsb.security.v2.SecuritySetting)
Requires WriteSettings
Modify the given security settings object.
ListSettings
rpc ListSettings (tetrateio.api.tsb.security.v2.ListSecuritySettingsRequest) returns (tetrateio.api.tsb.security.v2.ListSecuritySettingsResponse)
List all security settings objects that have been attached to the security group.
DeleteSettings
rpc DeleteSettings (tetrateio.api.tsb.security.v2.DeleteSecuritySettingsRequest) returns (google.protobuf.Empty)
Requires DeleteSettings
Delete the given security settings from the group.
CreateSecurityGroupRequest
Request to create a Security Group.
Field | Description | Validation Rule |
parent | string | string = { |
name | string | string = { |
group | tetrateio.api.tsb.security.v2.Group | message = { |
CreateSecuritySettingsRequest
Request to create a Security Settings.
Field | Description | Validation Rule |
parent | string | string = { |
name | string | string = { |
settings | tetrateio.api.tsb.security.v2.SecuritySetting | message = { |
DeleteSecurityGroupRequest
Request to delete a Security Group.
Field | Description | Validation Rule |
fqn | string | string = { |
DeleteSecuritySettingsRequest
Request to delete a Security Settings.
Field | Description | Validation Rule |
fqn | string | string = { |
GetSecurityGroupRequest
Request to retrieve a Security Group.
Field | Description | Validation Rule |
fqn | string | string = { |
GetSecuritySettingsRequest
Request to retrieve a Security Settings.
Field | Description | Validation Rule |
fqn | string | string = { |
ListSecurityGroupsRequest
Request to list Security Groups.
Field | Description | Validation Rule |
parent | string | string = { |
ListSecurityGroupsResponse
List of all security groups in the workspace.
Field | Description | Validation Rule |
groups | – |
ListSecuritySettingsRequest
Request to list Security Settings.
Field | Description | Validation Rule |
parent | string | string = { |
ListSecuritySettingsResponse
List of all security settings objects attached to the group.
Field | Description | Validation Rule |
settings | – |