Access to functions#
Scopes#
The function access in Bacularis is a term associated with OAuth2 clients. Functions are defined as the OAuth2 scopes and they refer to the general Bacularis API functionalies like:
jobs
directors
clients
storages
devices
volumes
pools
bvfs
joblog
filesets
schedules
config
actions
oauth2
basic
consoles
Setting selected scopes in the OAuth2 client account defines to which Bacularis
API functions the Bacularis Web will have access. For example, if OAuth2 client
has configured scopes: jobs
and clients
, this OAuth2 client will be
able to get job list, run backup job, do restore, but it will not be able to
get volume list or get storage status.
More detailed, the functions are connected with API endpoints in the way that
/jobs/
endpoint refers to jobs scope, /volumes/
endpoint refers to volumes
scope.
What scopes to set#
To work with Bacularis Web typically for administrators it is good to set all
scopes. For an user with limitted access usually you can assign most of scopes
except admin specific scopes like: config
, actions
, oauth2
and
basic
.