You can modify the authorization rules for an instance group.
Try it now
Test
RAM authorization
|
Action |
Access level |
Resource type |
Condition key |
Dependent action |
|
iotcc:UpdateGroupAuthorizationRuleAttribute |
update |
*CloudConnector
|
None | None |
Request parameters
|
Parameter |
Type |
Required |
Description |
Example |
| IoTCloudConnectorGroupId |
string |
Yes |
The ID of the IoT Cloud Connector group. |
iotccg-g00epppbi9di9y**** |
| AuthorizationRuleDescription |
string |
No |
A description of the authorization rule. The description must be 2 to 256 characters in length. It must start with a letter or a Chinese character. It cannot start with |
rule |
| AuthorizationRuleName |
string |
No |
The name of the authorization rule. The name must be 2 to 128 characters in length. It must start with a letter or a Chinese character. It can contain letters, digits, periods (.), underscores (_), and hyphens (-). |
ruletest |
| AuthorizationRuleId |
string |
Yes |
The ID of the authorization rule to update. |
gar-ez91t41jvi6tr8**** |
| SourceCidrs |
array |
No |
The source CIDR blocks. Valid values of N: 1 to 20. |
|
|
string |
No |
A source CIDR block. Valid values of N: 1 to 20. |
192.168.0.1 |
|
| DestinationType |
string |
No |
The type of destination. Valid values:
|
Cidr |
| DestinationPort |
string |
No |
The destination port range. Valid values:
|
80/80 |
| Protocol |
string |
No |
The protocol type. Valid values:
|
tcp |
| Destination |
string |
No |
The destination to access. |
47.0.XX.XX |
| Policy |
string |
No |
The access policy. Valid values:
|
Permit |
| ClientToken |
string |
No |
A client token that ensures the idempotence of the request. You must generate a unique value for this parameter. The value can be up to 64 ASCII characters in length. Note
If you do not specify this parameter, the system uses the RequestId of the API request as the ClientToken. The RequestId may differ for each API request. |
123e4567-e89b-12d3-a456-426655440000 |
| DryRun |
boolean |
No |
Specifies whether to perform only a dry run. Valid values:
|
true |
| RegionId |
string |
Yes |
The region ID of the IoT Cloud Connector group. You can call the DescribeRegions operation to query the region ID. |
cn-hangzhou |
Response elements
|
Element |
Type |
Description |
Example |
|
object |
The response information. |
||
| IoTCloudConnectorGroupId |
string |
The ID of the IoT Cloud Connector group. |
iotccg-g00epppbi9di9y**** |
| RequestId |
string |
The ID of the request. |
54B48E3D-DF70-471B-AA93-08E683A1B45 |
| AuthorizationRuleId |
string |
The ID of the authorization rule. |
gar-ez91t41jvi6tr8**** |
Examples
Success response
JSON format
{
"IoTCloudConnectorGroupId": "iotccg-g00epppbi9di9y****",
"RequestId": "54B48E3D-DF70-471B-AA93-08E683A1B45",
"AuthorizationRuleId": "gar-ez91t41jvi6tr8****"
}
Error codes
|
HTTP status code |
Error code |
Error message |
Description |
|---|---|---|---|
| 400 | Forbidden.RAM | Ram user does not have permission to perform this operation. | The error message returned because the RAM user does not have the permissions to perform the operation. |
| 400 | QuotaExceeded.IoTCCGroupInstanceLimit | The quota of IoTCCGroupPerUser is exceeded | |
| 400 | OperationDenied.NoFieldModify | The operation is not allowed because of no field modify. | |
| 400 | OperationDenied.CIDRMaskTooLarge | The operation is not allowed because of CIDR too large. | The error message returned because the length of the subnet mask of the CIDR block exceeds the upper limit. |
| 400 | OperationDenied.CC5GInstanceNotSupport | The operation is not allowed because of CC5G instance not support. | |
| 400 | IllegalParam.Destination | The param of Destination is illegal. | The error message returned because the value of the Destination parameter is invalid. |
See Error Codes for a complete list.
Release notes
See Release Notes for a complete list.