1 *pveum* `<COMMAND> [ARGS] [OPTIONS]`
3 *pveum acl delete* `<path> --roles <string>` `[OPTIONS]`
5 Update Access Control List (add or remove permissions).
7 `<path>`: `<string>` ::
11 `--groups` `<string>` ::
15 `--propagate` `<boolean>` ('default =' `1`)::
17 Allow to propagate (inherit) permissions.
19 `--roles` `<string>` ::
23 `--tokens` `<string>` ::
27 `--users` `<string>` ::
31 *pveum acl list* `[FORMAT_OPTIONS]`
33 Get Access Control List (ACLs).
35 *pveum acl modify* `<path> --roles <string>` `[OPTIONS]`
37 Update Access Control List (add or remove permissions).
39 `<path>`: `<string>` ::
43 `--groups` `<string>` ::
47 `--propagate` `<boolean>` ('default =' `1`)::
49 Allow to propagate (inherit) permissions.
51 `--roles` `<string>` ::
55 `--tokens` `<string>` ::
59 `--users` `<string>` ::
65 An alias for 'pveum acl delete'.
69 An alias for 'pveum acl modify'.
71 *pveum group add* `<groupid>` `[OPTIONS]`
75 `<groupid>`: `<string>` ::
77 no description available
79 `--comment` `<string>` ::
81 no description available
83 *pveum group delete* `<groupid>`
87 `<groupid>`: `<string>` ::
89 no description available
91 *pveum group list* `[FORMAT_OPTIONS]`
95 *pveum group modify* `<groupid>` `[OPTIONS]`
99 `<groupid>`: `<string>` ::
101 no description available
103 `--comment` `<string>` ::
105 no description available
109 An alias for 'pveum group add'.
113 An alias for 'pveum group delete'.
117 An alias for 'pveum group modify'.
119 *pveum help* `[OPTIONS]`
121 Get help about specified command.
123 `--extra-args` `<array>` ::
125 Shows help for a specific command
127 `--verbose` `<boolean>` ::
129 Verbose output format.
131 *pveum passwd* `<userid>`
133 Change user password.
135 `<userid>`: `<string>` ::
139 *pveum role add* `<roleid>` `[OPTIONS]`
143 `<roleid>`: `<string>` ::
145 no description available
147 `--privs` `<string>` ::
149 no description available
151 *pveum role delete* `<roleid>`
155 `<roleid>`: `<string>` ::
157 no description available
159 *pveum role list* `[FORMAT_OPTIONS]`
163 *pveum role modify* `<roleid>` `[OPTIONS]`
165 Update an existing role.
167 `<roleid>`: `<string>` ::
169 no description available
171 `--append` `<boolean>` ::
173 no description available
175 NOTE: Requires option(s): `privs`
177 `--privs` `<string>` ::
179 no description available
183 An alias for 'pveum role add'.
187 An alias for 'pveum role delete'.
191 An alias for 'pveum role modify'.
193 *pveum ticket* `<username>` `[OPTIONS]`
195 Create or verify authentication ticket.
197 `<username>`: `<string>` ::
201 `--otp` `<string>` ::
203 One-time password for Two-factor authentication.
205 `--path` `<string>` ::
207 Verify ticket, and check if user have access 'privs' on 'path'
209 NOTE: Requires option(s): `privs`
211 `--privs` `<string>` ::
213 Verify ticket, and check if user have access 'privs' on 'path'
215 NOTE: Requires option(s): `path`
217 `--realm` `<string>` ::
219 You can optionally pass the realm using this parameter. Normally the realm is simply added to the username <username>@<relam>.
221 *pveum user add* `<userid>` `[OPTIONS]`
225 `<userid>`: `<string>` ::
229 `--comment` `<string>` ::
231 no description available
233 `--email` `<string>` ::
235 no description available
237 `--enable` `<boolean>` ('default =' `1`)::
239 Enable the account (default). You can set this to '0' to disable the account
241 `--expire` `<integer> (0 - N)` ::
243 Account expiration date (seconds since epoch). '0' means no expiration date.
245 `--firstname` `<string>` ::
247 no description available
249 `--groups` `<string>` ::
251 no description available
253 `--keys` `<string>` ::
255 Keys for two factor auth (yubico).
257 `--lastname` `<string>` ::
259 no description available
261 `--password` `<string>` ::
265 *pveum user delete* `<userid>`
269 `<userid>`: `<string>` ::
273 *pveum user list* `[OPTIONS]` `[FORMAT_OPTIONS]`
277 `--enabled` `<boolean>` ::
279 Optional filter for enable property.
281 `--full` `<boolean>` ('default =' `0`)::
283 Include group and token information.
285 *pveum user modify* `<userid>` `[OPTIONS]`
287 Update user configuration.
289 `<userid>`: `<string>` ::
293 `--append` `<boolean>` ::
295 no description available
297 NOTE: Requires option(s): `groups`
299 `--comment` `<string>` ::
301 no description available
303 `--email` `<string>` ::
305 no description available
307 `--enable` `<boolean>` ('default =' `1`)::
309 Enable the account (default). You can set this to '0' to disable the account
311 `--expire` `<integer> (0 - N)` ::
313 Account expiration date (seconds since epoch). '0' means no expiration date.
315 `--firstname` `<string>` ::
317 no description available
319 `--groups` `<string>` ::
321 no description available
323 `--keys` `<string>` ::
325 Keys for two factor auth (yubico).
327 `--lastname` `<string>` ::
329 no description available
331 *pveum user permissions* `[<userid>]` `[OPTIONS]` `[FORMAT_OPTIONS]`
333 Retrieve effective permissions of given user/token.
335 `<userid>`: `(?^:^(?^:[^\s:/]+)\@(?^:[A-Za-z][A-Za-z0-9\.\-_]+)(?:!(?^:[A-Za-z][A-Za-z0-9\.\-_]+))?$)` ::
337 User ID or full API token ID
339 `--path` `<string>` ::
341 Only dump this specific path, not the whole tree.
343 *pveum user token add* `<userid> <tokenid>` `[OPTIONS]` `[FORMAT_OPTIONS]`
345 Generate a new API token for a specific user. NOTE: returns API token
346 value, which needs to be stored as it cannot be retrieved afterwards!
348 `<userid>`: `<string>` ::
352 `<tokenid>`: `(?^:[A-Za-z][A-Za-z0-9\.\-_]+)` ::
354 User-specific token identifier.
356 `--comment` `<string>` ::
358 no description available
360 `--expire` `<integer> (0 - N)` ('default =' `same as user`)::
362 API token expiration date (seconds since epoch). '0' means no expiration date.
364 `--privsep` `<boolean>` ('default =' `1`)::
366 Restrict API token privileges with separate ACLs (default), or give full privileges of corresponding user.
368 *pveum user token list* `<userid>` `[FORMAT_OPTIONS]`
372 `<userid>`: `<string>` ::
376 *pveum user token modify* `<userid> <tokenid>` `[OPTIONS]` `[FORMAT_OPTIONS]`
378 Update API token for a specific user.
380 `<userid>`: `<string>` ::
384 `<tokenid>`: `(?^:[A-Za-z][A-Za-z0-9\.\-_]+)` ::
386 User-specific token identifier.
388 `--comment` `<string>` ::
390 no description available
392 `--expire` `<integer> (0 - N)` ('default =' `same as user`)::
394 API token expiration date (seconds since epoch). '0' means no expiration date.
396 `--privsep` `<boolean>` ('default =' `1`)::
398 Restrict API token privileges with separate ACLs (default), or give full privileges of corresponding user.
400 *pveum user token permissions* `<userid> <tokenid>` `[OPTIONS]` `[FORMAT_OPTIONS]`
402 Retrieve effective permissions of given token.
404 `<userid>`: `<string>` ::
408 `<tokenid>`: `(?^:[A-Za-z][A-Za-z0-9\.\-_]+)` ::
410 User-specific token identifier.
412 `--path` `<string>` ::
414 Only dump this specific path, not the whole tree.
416 *pveum user token remove* `<userid> <tokenid>` `[FORMAT_OPTIONS]`
418 Remove API token for a specific user.
420 `<userid>`: `<string>` ::
424 `<tokenid>`: `(?^:[A-Za-z][A-Za-z0-9\.\-_]+)` ::
426 User-specific token identifier.
430 An alias for 'pveum user add'.
434 An alias for 'pveum user delete'.
438 An alias for 'pveum user modify'.