Note: This article applies only when you attempting to create a RBAC role via API on OPDK (On-prem). Please disregard this if you are trying to create a RBAC role on Edge (via API or UI) and on OPDK (On-prem) via UI.
Once you have created a RBAC role using the API provided at : http://apigee.com/docs/api-services/content/role-based-access-control , you will have to add permissions to role. Below is the minimum set of permissions that have to be set, else it will result in users ( belonging to the role) being unable to log in.
{"path" : "/,"permissions" : [ "get" ]}'
{"path" : "/*","permissions" : [ ]}'
{"path" : "/environments","permissions" : [ "get" ]}
{"path" : "/userroles","permissions" : [ "get" ]}
Setting the above will allow users to be able to login. You can then further add permissions to allow access to Apigee Edge entities based on your requirement. Creating the role via the UI automatically handles the above permissions.
Contributors
4 People are following this .
