Stored ACL Policies

isetsl office

unread,

Dec 1, 2020, 12:40:46 PM12/1/20

to rundeck-discuss

Hi all,

Is it possible to manage the Stored ACL Policies that are stored in the database from the rd acl client of the Rundeck as we can do with ACL files system?

rac...@rundeck.com

unread,

Dec 1, 2020, 2:36:42 PM12/1/20

to rundeck-discuss

Hi!

Sure, I did some examples (considering that you’re using some database backend to store projects).

1) To upload some ACL definition:

rd system acls create --file users.aclpolicy --name users.aclpolicy

Output (that definition is stored on the database backend now):

description: 'Allow system ACL admin access'
context:
  application: 'rundeck'
for:
  system_acl:
    - allow: [admin]
by:
  group: [devops]

2) To list that ACLs (stored at database backend):

rd system acls list

Output:

# 1 ACL Policy items for system

users.aclpolicy

3) Get the ACL definition:

rd system acls get --name users.aclpolicy

Output:

description: 'Allow system ACL admin access'
context:
  application: 'rundeck'
for:
  system_acl:
    - allow: [admin]
by:
  group: [devops]

4) Delete it:

rd system acls delete --name users.aclpolicy

Output:

Deleted System ACL Policy: users.aclpolicy

For more info just do: rd system acls help.

Hope it helps!

isetsl office

unread,

Dec 2, 2020, 2:49:33 AM12/2/20

to rundeck-discuss

thanks a lot

Reply all

Reply to author

Forward