This command queries providers and the user database for a user entry. A provider query can be aggregated across providers to yield a merged result or it can be provider-specific. See Querying Users for more information.
You can also use this command to:
-
Attach or remove identity policies to users, and
-
Grant or remove create bucket, delete bucket and super user permissions for users on external providers.
Note
Permission allowed or denied by identity policies to create or delete buckets overrides explicit create bucket and delete bucket permission settings.
Note
If you wish to grant or remove the explicit create bucket, delete bucket and super user permissions for users on the local provider, you can do this using the user modify command.
user query {--uid UID | --username USERNAME | --sid SID} [--context local|udb|ad|ldap|nis|aggregated]
user query {--uid UID | --username USERNAME | --sid SID} [--allow-create-bucket] [--disallow-create-bucket] [--allow-delete-bucket] [--disallow-delete-bucket] [--s3-superuser] [--not-s3-superuser] [--s3-policies-ids [S3_POLICIES_IDS]]
vcli: admin> user query --context local --uid 207 +---------------------+-----------------------------------------------------+ | uid | 207 | | sid | S-1-111-3337806353-1029045180-680611247-152823600-1 | | leading_group | {'gid': '', 'sid': '', 'name': ''} | | leading_group_name | | | leading_group_gid | | | primary_group_name | | | primary_group_sid | | | name | User1 | | login_name | User1 | | groups | [] | | group_count | 0 | | allow_create_bucket | False | | allow_delete_bucket | False | | s3_superuser | False | | s3_policies | ['AllowEverything'] | | s3_policies_ids | [1] | | s3_remote_policies | [] | | access_keys | [] | +---------------------+-----------------------------------------------------+
Comments
0 comments
Article is closed for comments.