Retrieves the authorization rules for an instance group.
Try it now
Test
RAM authorization
|
Action |
Access level |
Resource type |
Condition key |
Dependent action |
|
iotcc:ListGroupAuthorizationRules |
list |
*CloudConnector
|
None | None |
Request parameters
|
Parameter |
Type |
Required |
Description |
Example |
| IoTCloudConnectorGroupId |
string |
Yes |
ID of the IoT Cloud Connector group. |
iotccg-g00epppbi9di9y**** |
| AuthorizationRuleIds |
array |
No |
IDs of authorization rules. You can specify up to 20 rule IDs. |
|
|
string |
No |
ID of an authorization rule. You can specify up to 20 rule IDs. |
gar-ez91t41jvi6tr8**** |
|
| DestinationType |
array |
No |
Type of destination. You can specify up to 20 destination types. Valid values:
|
|
|
string |
No |
Type of destination. You can specify up to 20 destination types. Valid values:
|
Cidr |
|
| Destination |
array |
No |
Destination address. You can specify up to 20 destination addresses. |
|
|
string |
No |
Destination address. You can specify up to 20 destination addresses. |
47.0.XX.XX |
|
| Protocol |
array |
No |
Protocol type. Valid values:
|
|
|
string |
No |
Protocol type. You can specify up to 20 protocol types. Valid values:
|
tcp |
|
| DestinationPort |
array |
No |
Destination port range. You can specify up to 20 destination ports. Valid values:
|
|
|
string |
No |
Destination port range. You can specify up to 20 destination ports. Valid values:
|
80/80 |
|
| AuthorizationRuleStatus |
array |
No |
Status of the authorization rule. You can specify up to 20 rule statuses. Valid values:
|
|
|
string |
No |
Status of the authorization rule. You can specify up to 20 rule statuses. Valid values:
|
Created |
|
| AuthorizationRuleName |
array |
No |
Name of the authorization rule. You can specify up to 20 rule names. The name must be 2 to 128 characters in length. It must start with a letter or Chinese character. It can contain letters, digits, periods (.), underscores (_), and hyphens (-). |
|
|
string |
No |
Name of the authorization rule. You can specify up to 20 rule names. The name must be 2 to 128 characters in length. It must start with a letter or Chinese character. It can contain letters, digits, periods (.), underscores (_), and hyphens (-). |
ruletest |
|
| Policy |
array |
No |
Access policy. You can specify up to 20 policies. Valid values:
|
|
|
string |
No |
Access policy. You can specify up to 20 policies. Valid values:
|
Permit |
|
| NextToken |
string |
No |
Token for the next query. Valid values:
|
FFmyTO70tTpLG6I3FmYAXGKPd**** |
| MaxResults |
integer |
No |
Maximum number of entries to return per page. Valid values: 1 to 50. Default value: 10. |
10 |
| RegionId |
string |
Yes |
ID of the region where the IoT Cloud Connector group resides. You can call the DescribeRegions operation to query region IDs. |
cn-hangzhou |
| Type |
string |
No |
Type of the authorization rule. Valid values:
|
System |
Response elements
|
Element |
Type |
Description |
Example |
|
object |
Response information. |
||
| RequestId |
string |
ID of the request. |
54B48E3D-DF70-471B-AA93-08E683A1B45 |
| TotalCount |
integer |
Total number of entries. |
10 |
| NextToken |
string |
Token for the next query. Valid values:
|
FFmyTO70tTpLG6I3FmYAXGKPd**** |
| MaxResults |
integer |
Maximum number of entries to return per page. |
10 |
| GroupAuthorizationRules |
array<object> |
List of authorization rules. |
|
|
object |
A list of authorization rules. |
||
| IoTCloudConnectorGroupId |
string |
ID of the IoT Cloud Connector group. |
iotccg-g00epppbi9di9y**** |
| Policy |
string |
Access policy. Valid values:
|
Permit |
| AuthorizationRuleStatus |
string |
Status of the authorization rule. Valid values:
|
Created |
| SourceCidrs |
array |
Source CIDR blocks. |
|
|
string |
Source CIDR block. |
192.168.0.0/32 |
|
| DestinationType |
string |
Type of destination. Valid values:
|
Cidr |
| DestinationPort |
string |
Destination port range. Valid values:
|
80/80 |
| Protocol |
string |
Protocol type. Valid values:
|
tcp |
| Destination |
string |
Destination address. |
47.0.XX.XX |
| AuthorizationRuleName |
string |
Name of the authorization rule. |
ruletest |
| AuthorizationRuleDescription |
string |
Description of the authorization rule. |
rule |
| AuthorizationRuleId |
string |
ID of the authorization rule. |
gar-ez91t41jvi6tr8**** |
| Type |
string |
Type of the authorization rule. Valid values:
|
System |
Examples
Success response
JSON format
{
"RequestId": "54B48E3D-DF70-471B-AA93-08E683A1B45",
"TotalCount": 10,
"NextToken": "FFmyTO70tTpLG6I3FmYAXGKPd****",
"MaxResults": 10,
"GroupAuthorizationRules": [
{
"IoTCloudConnectorGroupId": "iotccg-g00epppbi9di9y****",
"Policy": "Permit",
"AuthorizationRuleStatus": "Created",
"SourceCidrs": [
"192.168.0.0/32"
],
"DestinationType": "Cidr",
"DestinationPort": "80/80",
"Protocol": "tcp",
"Destination": "47.0.XX.XX",
"AuthorizationRuleName": "ruletest",
"AuthorizationRuleDescription": "rule",
"AuthorizationRuleId": "gar-ez91t41jvi6tr8****",
"Type": "System"
}
]
}
Error codes
|
HTTP status code |
Error code |
Error message |
Description |
|---|---|---|---|
| 400 | Forbidden.RAM | Ram user does not have permission to perform this operation. | The error message returned because the RAM user does not have the permissions to perform the operation. |
| 400 | ResourceNotFound.IoTCloudConnectorGroup | The param of IoTCloudConnectorGroupId is illegal. |
See Error Codes for a complete list.
Release notes
See Release Notes for a complete list.