Policies

Last updated 4 months ago

Was this helpful?

Create policy

PUT/v1/auth/ratls/policies

Body

created*integer (int64)

Creation timestamp, set by the plugin

identities*object (map)

A map of all identity types with their respective selector

name*string

Name of the policy

Response

Body

authobject

dataobject

Request

const response = await fetch('/v1/auth/ratls/policies', {
    method: 'PUT',
    headers: {
      "Content-Type": "application/json"
    },
    body: JSON.stringify({
      "created": 1,
      "identities": {
        "provider": "azure-sev-snp-vtpm",
        "platform": null,
        "firmware": [
          {
            "name": "azure-dc2asv5",
            "policy": null
          },
          {
            "name": "azure-dc4asv5",
            "policy": null
          }
        ],
        "workload": {
          "name": "azure-ubuntu",
          "policy": {
            "pcrs.0": false
          }
        },
        "metadata": null
      },
      "name": "text"
    }),
});
const data = await response.json();

Response

{
  "auth": {},
  "data": {
    "created": 1,
    "identities": {
      "provider": "azure-sev-snp-vtpm",
      "platform": null,
      "firmware": [
        {
          "name": "azure-dc2asv5",
          "policy": null
        },
        {
          "name": "azure-dc4asv5",
          "policy": null
        }
      ],
      "workload": {
        "name": "azure-ubuntu",
        "policy": {
          "pcrs.0": false
        }
      },
      "metadata": null
    },
    "name": "text"
  }
}

Update policy

POST/v1/auth/ratls/policies

Body

created*integer (int64)

Creation timestamp, set by the plugin

identities*object (map)

A map of all identity types with their respective selector

name*string

Name of the policy

Response

Body

authobject

dataobject

Request

const response = await fetch('/v1/auth/ratls/policies', {
    method: 'POST',
    headers: {
      "Content-Type": "application/json"
    },
    body: JSON.stringify({
      "created": 1,
      "identities": {
        "provider": "azure-sev-snp-vtpm",
        "platform": null,
        "firmware": [
          {
            "name": "azure-dc2asv5",
            "policy": null
          },
          {
            "name": "azure-dc4asv5",
            "policy": null
          }
        ],
        "workload": {
          "name": "azure-ubuntu",
          "policy": {
            "pcrs.0": false
          }
        },
        "metadata": null
      },
      "name": "text"
    }),
});
const data = await response.json();

Response

{
  "auth": {},
  "data": {
    "created": 1,
    "identities": {
      "provider": "azure-sev-snp-vtpm",
      "platform": null,
      "firmware": [
        {
          "name": "azure-dc2asv5",
          "policy": null
        },
        {
          "name": "azure-dc4asv5",
          "policy": null
        }
      ],
      "workload": {
        "name": "azure-ubuntu",
        "policy": {
          "pcrs.0": false
        }
      },
      "metadata": null
    },
    "name": "text"
  }
}

List policies

GET/v1/auth/ratls/policies/

Query parameters

Response

Body

authobject

dataobject

Request

const response = await fetch('/v1/auth/ratls/policies/?list=true', {
    method: 'GET',
    headers: {},
});
const data = await response.json();

Response

{
  "auth": {},
  "data": {
    "keys": []
  }
}

Read policy

GET/v1/auth/ratls/policies/{name}

Path parameters

name*string

Name of the policy

Response

Body

authobject

dataobject

Request

const response = await fetch('/v1/auth/ratls/policies/{name}', {
    method: 'GET',
    headers: {},
});
const data = await response.json();

Response

{
  "auth": {},
  "data": {
    "created": 1,
    "identities": {
      "provider": "azure-sev-snp-vtpm",
      "platform": null,
      "firmware": [
        {
          "name": "azure-dc2asv5",
          "policy": null
        },
        {
          "name": "azure-dc4asv5",
          "policy": null
        }
      ],
      "workload": {
        "name": "azure-ubuntu",
        "policy": {
          "pcrs.0": false
        }
      },
      "metadata": null
    },
    "name": "text"
  }
}

Delete policy

DELETE/v1/auth/ratls/policies/{name}

Path parameters

name*string

Name of the policy

Response

Request

const response = await fetch('/v1/auth/ratls/policies/{name}', {
    method: 'DELETE',
    headers: {},
});
const data = await response.json();