IBM Cloud Docs
IAM and Activity Tracker actions by API

IAM and Activity Tracker actions by API

Find detailed information on IBM Cloud events from IAM and IBM Cloud® Activity Tracker actions, listed here by API method.

Resource Configuration API

The first table details the API for configuring IBM Cloud® Object Storage buckets: COS Resource Configuration API

  • Note the endpoint URL: https://config.cloud-object-storage.cloud.ibm.com/v1
RC API actions
Action Method IAM Action Activity Tracker action
Returns metadata for the specified bucket GET {endpoint}/b/{bucket} cloud-object-storage.bucket.list_bucket_crn,
cloud-object-storage.bucket.get_firewall,
cloud-object-storage.bucket.get_activity_tracking,
cloud-object-storage.bucket.get_metrics_monitoring
cloud-object-storage.resource-configuration.read
Make changes to a bucket's configuration PATCH {endpoint}/b/{bucket} cloud-object-storage.bucket.put_firewall,
cloud-object-storage.bucket.put_activity_tracking,
cloud-object-storage.bucket.put_metrics_monitoring
cloud-object-storage.resource-configuration.update
Create a backup policy on a bucket POST /v1/buckets/{bucket_name}/backup_policies cloud-object-storage.bucket.post_backup_policy cloud-object-storage.bucket-backup-policy.create
Read a backup policy on a bucket GET /v1/buckets/{bucket_name}/backup_policies/{policy_id} cloud-object-storage.bucket.get_backup_policy cloud-object-storage.bucket-backup-policy.read
List all the backup policies on a bucket GET /v1/buckets/{bucket_name}/backup_policies cloud-object-storage.bucket.list_backup_policies cloud-object-storage.bucket-backup-policy.list
Delete a backup policy on a bucket DELETE /v1/buckets/{bucket_name}/backup_policies/{policy_id} cloud-object-storage.bucket.delete_backup_policy cloud-object-storage.bucket-backup-policy.delete
Action Method IAM Action Activity Tracker action
Get all backup vaults in a service instance GET /v1/backup_vaults cloud-object-storage.account.list_account_backup_vaults cloud-object-storage.backup-vault.list
Create a backup vault POST /v1/backup_vaults cloud-object-storage.backup-vault.post_backup_vault,
cloud-object-storage.backup-vault.put_activity_tracking,
cloud-object-storage.backup-vault.put_metrics_monitoring
cloud-object-storage.backup-vault.create
View configuration on a backup vault GET /v1/backup_vaults/{backup_vault_name} cloud-object-storage.backup-vault.get_basic,
cloud-object-storage.backup-vault.get_activity_tracking,
cloud-object-storage.backup-vault.get_metrics_monitoring,
cloud-object-storage.backup-vault.get_crk_id
cloud-object-storage.backup-vault-configuration.read
Update the configuration on a backup vault PATCH /v1/backup_vaults/{backup_vault_name} cloud-object-storage.backup-vault.put_activity_tracking,
cloud-object-storage.backup-vault.put_metrics_monitoring
cloud-object-storage.backup-vault-configuration.update
Delete a backup vault DELETE /v1/backup_vaults/{backup_vault_name} cloud-object-storage.backup-vault.delete_backup_vault cloud-object-storage.backup-vault.delete
List recovery ranges in a backup vault GET /v1/backup_vaults/{backup_vault_name}/recovery_ranges cloud-object-storage.backup-vault.list_recovery_ranges cloud-object-storage.backup-recovery-range.list
View a recovery range GET /v1/backup_vaults/{backup_vault_name}/recovery_ranges/{recovery_range_id} cloud-object-storage.backup-vault.get_recovery_range cloud-object-storage.backup-recovery-range.read
Update a recovery range configuration PATCH /v1/backup_vaults/{backup_vault_name}/recovery_ranges/{recovery_range_id} cloud-object-storage.backup-vault.put_retention cloud-object-storage.backup-recovery-range.update
Create a new restore operation POST /v1/backup_vaults/{backup_vault_name}/restores cloud-object-storage.backup-vault.post_restore cloud-object-storage.backup-restore.create
View all restore operations on a backup vault GET /v1/backup_vaults/{backup_vault_name}/restores cloud-object-storage.backup-vault.list_restores cloud-object-storage.backup-restore.list
View a restore opration GET /v1/backup_vaults/{backup_vault_name}/restores/{restore_id} cloud-object-storage.backup-vault.get_restore cloud-object-storage.backup-restore.read

S3 API

The next table describes the API for reading and writing objects as defined in the COS Compatibility S3 API

  • Note that the endpoint URL for S3 operations differs by region: Endpoints
S3 API actions
Action Method IAM Action Activity Tracker action
List buckets GET {endpoint}/ cloud-object-storage.account.get_account_buckets cloud-object-storage.instance.list
Create a bucket PUT {endpoint}/{bucket} cloud-object-storage.bucket.put_bucket cloud-object-storage.bucket.create
List objects GET {endpoint}/{bucket} cloud-object-storage.bucket.get cloud-object-storage.bucket.list
Check a bucket's headers HEAD {endpoint}/{bucket} cloud-object-storage.bucket.head,
cloud-object-storage.bucket.list_crk_id
cloud-object-storage.bucket-metadata.read
Delete a bucket DELETE {endpoint}/{bucket} cloud-object-storage.bucket.delete_bucket cloud-object-storage.bucket.delete
Upload an object PUT {endpoint}/{bucket}/{key} cloud-object-storage.object.put cloud-object-storage.object.create
Download an object GET {endpoint}/{bucket}/{key} cloud-object-storage.object.get cloud-object-storage.object.read
Check an object's headers HEAD {endpoint}/{Bucket}/{key} cloud-object-storage.object.head cloud-object-storage.object-metadata.read
Delete an object DELETE {endpoint}/{bucket}/{key} cloud-object-storage.object.delete cloud-object-storage.object.delete
Add a CORS configuration PUT {endpoint}/{bucket}?cors cloud-object-storage.bucket.put_cors cloud-object-storage.bucket-cors.create
Read a CORS configuration GET {endpoint}/{bucket}?cors cloud-object-storage.bucket.get_cors cloud-object-storage.bucket-cors.read
Delete a CORS configuration DELETE {endpoint}/{bucket}?cors cloud-object-storage.bucket.delete_cors cloud-object-storage.bucket-cors.delete
Add/edit a bucket's lifecycle configuration PUT {endpoint}/{bucket}?lifecycle cloud-object-storage.bucket.put_lifecycle cloud-object-storage.bucket-lifecycle.create
Read a bucket's lifecycle configuration GET {endpoint}/{bucket}?lifecycle cloud-object-storage.bucket.get_lifecycle cloud-object-storage.bucket-lifecycle.read
Delete a bucket's lifecycle configuration DELETE {endpoint}/{bucket}?lifecycle cloud-object-storage.bucket.put_lifecycle cloud-object-storage.bucket-lifecycle.delete
Add/edit/remove a bucket's Immutable Storage policy PUT {endpoint}/{bucket}?protection cloud-object-storage.bucket.put_protection cloud-object-storage.bucket-retention.create
Read a bucket's Immutable Storage policy GET {endpoint}/{bucket}?protection cloud-object-storage.bucket.get_protection cloud-object-storage.bucket-retention.read
Initiate a multipart upload POST {endpoint}/{bucket}/{key}?uploads cloud-object-storage.object.post_initiate_upload cloud-object-storage.object-multipart.start
Upload a part PUT {endpoint}/{bucket}/{key}?uploadId={uploadId}&partNumber={partNumber} cloud-object-storage.object.put_part cloud-object-storage.object-multipart.create
Complete a multipart upload POST {endpoint}/{bucket}/{key}?uploadID={uploadId} cloud-object-storage.object.post_initiate_upload cloud-object-storage.object-multipart.complete
Add a public ACL block configuration PUT {endpoint}/{bucket}?publicAccessBlock cloud-object-storage.bucket.put_public_access_block cloud-object-storage.bucket-public-access-block.create
Read a public ACL block configuration GET {endpoint}/{bucket}?publicAccessBlock cloud-object-storage.bucket.get_public_access_block cloud-object-storage.bucket-public-access-block.read
Delete a public ACL block configuration DELETE {endpoint}/{bucket}?publicAccessBlock cloud-object-storage.bucket.delete_public_access_block cloud-object-storage.bucket-public-access-block.delete