Overview
Provisions Private Link Endpoints on the cloud environments.
Version information
Version : 0.9.152
License information
License : Apache 2.0
Terms of service : https://www.cloudera.com/legal/commercial-terms-and-conditions.html
URI scheme
Schemes : HTTPS
Consumes
-
application/json
Produces
-
application/json
Paths
Authorize Private Link services access for the cloud account id.
POST /api/v1/cloudprivatelinks/authorizePrivateLinkServiceAccess
Description
Returns the list of Private Link service name and its respective authorization status.
Parameters
| Type | Name | Schema |
|---|---|---|
Body |
input |
Responses
| HTTP Code | Description | Schema |
|---|---|---|
200 |
Expected response to a valid request. |
|
default |
The default response on an error. |
Creates Private Link endpoints.
POST /api/v1/cloudprivatelinks/createPrivateLinkEndpoint
Description
Creates the Private Link Endpoints for specified CDP service group.
Parameters
| Type | Name | Schema |
|---|---|---|
Body |
input |
Responses
| HTTP Code | Description | Schema |
|---|---|---|
200 |
Expected response to a valid request. |
|
default |
The default response on an error. |
Deletes Private Link endpoints.
POST /api/v1/cloudprivatelinks/deletePrivateLinkEndpoint
Description
Deletes the Private Link Endpoints for specified CDP service group.
Parameters
| Type | Name | Schema |
|---|---|---|
Body |
input |
Responses
| HTTP Code | Description | Schema |
|---|---|---|
200 |
Expected response to a valid request. |
|
default |
The default response on an error. |
Get the status of a Private Link.
POST /api/v1/cloudprivatelinks/getPrivateLinkStatus
Description
Returns the status of a Private Link.
Parameters
| Type | Name | Schema |
|---|---|---|
Body |
input |
Responses
| HTTP Code | Description | Schema |
|---|---|---|
200 |
Expected response to a valid request. |
|
default |
The default response on an error. |
Lists the statuses of the Private Link endpoints that are in creation/deletion status.
POST /api/v1/cloudprivatelinks/listPrivateLinkEndpointStatuses
Description
Returns the statuses of the Private Link endpoints in creation/deletion.
Parameters
| Type | Name | Schema |
|---|---|---|
Body |
input |
Responses
| HTTP Code | Description | Schema |
|---|---|---|
200 |
Expected response to a valid request. |
|
default |
The default response on an error. |
Lists the Private Link services that are supported for the region and service group.
POST /api/v1/cloudprivatelinks/listPrivateLinkServicesForRegion
Description
Returns the list of Private Link service names and the mapped service components.
Parameters
| Type | Name | Schema |
|---|---|---|
Body |
input |
Responses
| HTTP Code | Description | Schema |
|---|---|---|
200 |
Expected response to a valid request. |
|
default |
The default response on an error. |
Migrates Private Link endpoints to fallback VPCE services.
POST /api/v1/cloudprivatelinks/migratePrivateLinkEndpoints
Description
Migrates Private Link endpoints from non-control plane endpoint service to Control Plane endpoint services.
Parameters
| Type | Name | Schema |
|---|---|---|
Body |
input |
Responses
| HTTP Code | Description | Schema |
|---|---|---|
200 |
Expected response to a valid request. |
|
default |
The default response on an error. |
Revoke Private Link services access for the cloud account ID.
POST /api/v1/cloudprivatelinks/revokePrivateLinkServiceAccess
Description
Returns the Private Link revocation status.
Parameters
| Type | Name | Schema |
|---|---|---|
Body |
input |
Responses
| HTTP Code | Description | Schema |
|---|---|---|
200 |
Expected response to a valid request. |
|
default |
The default response on an error. |
Definitions
AWSAccountDetails
Details of the cloud network and the cross-account role required to create the Private Link endpoint.
| Name | Description | Schema |
|---|---|---|
cloudAccountId |
Account ID to authorize access for Private Link. |
string |
credentialCrn |
CDP Credential CRN to fetch the AWS cross-account RoleArn for the account where the endpoint gets deleted. |
string |
crossAccountRoleDetails |
Cross account role details. |
|
region |
Region in which VPC exists. |
string |
subnetIds |
IDs of the private subnets in which the Private Link should be created. |
< string > array |
vpcId |
VPC ID in which the Private Link should be created. |
string |
AWSAccountInfo
Details of the cloud network and the cross-account role required to delete the Private Link endpoint.
| Name | Description | Schema |
|---|---|---|
credentialCrn |
CDP Credential CRN to fetch the AWS cross-account roleArn for the account where the endpoint gets deleted. |
string |
crossAccountRoleDetails |
Cross account role details. |
|
region |
Region in which VPC exists. |
string |
vpcId |
VPC ID in which the vpc endpoint should be deleted. |
string |
AuthorizePrivateLinkServiceAccessRequest
Request object for the AuthorizePrivateLinkServicesAccess method.
| Name | Description | Schema |
|---|---|---|
cloudAccountId |
AWS account ID to authorize access for Private Link. |
string |
cloudServiceProvider |
Cloud Service Provider. Currently supporting AWS and AZURE. |
|
region |
Region where the Private Link service exists. |
string |
serviceGroup |
CDP service group. Currently supported "CDP-CONTROL-PLANE" for PaaS. |
string |
subscriptionId |
Azure subscription ID to authorize access for Private Link. |
string |
AuthorizePrivateLinkServiceAccessResponse
Response object for the AuthorizePrivateLinkServicesAccess method.
| Name | Description | Schema |
|---|---|---|
authorizePrivateLinkServiceAccessResults |
List of AuthorizePrivateLinkServiceAccessResult objects. |
< AuthorizePrivateLinkServiceAccessResult > array |
status |
Status of Private Link service access authorization. |
string |
AuthorizePrivateLinkServiceAccessResult
Authorization response containing Private Link service name, service component and its authorization status.
| Name | Description | Schema |
|---|---|---|
authorizationStatus |
Authorization status for the Private Link service. |
string |
availabilityZoneList |
Availability zone list. |
string |
hostname |
Hostname of the Private Link Service. |
string |
privateLinkService |
Name of the Private Link service. |
string |
serviceComponent |
CDP service component. |
string |
vpceClientTcpPortList |
VPCE Client TCP port list. |
string |
AzureAccountDetails
Details of the cloud network and the cross-account role required to create the Private Link endpoint.
| Name | Description | Schema |
|---|---|---|
azureClientSecretCredential |
Azure client secret credential, either this or credential CRN should be passed. |
|
credentialCrn |
CDP Credential CRN to fetch the Azure client secret credentials, either this or AzureClientSecretCredential should be passed. |
string |
location |
Azure location where endpoint should be created. |
string |
resourceGroup |
The resource group under which the private endpoint is to be created. |
string |
subnetId |
ID of the private subnet in which the Private Link should be created. |
string |
subscriptionId |
The Subscription for which the Private Link service to be allowed/accessible. |
string |
vNetId |
vNet ID in which the Private Link should be created. |
string |
AzureAccountInfo
Details of the cloud network and the cross-account role required to delete the Private Link endpoint.
| Name | Description | Schema |
|---|---|---|
azureClientSecretCredential |
Azure client secret credential, either this or credential CRN should be passed. |
|
credentialCrn |
CDP Credential CRN to fetch the Azure client secret credentials, either this or AzureClientSecretCredential should be passed. |
string |
location |
Region in which VPC exists. |
string |
vNetId |
vNet ID in which the Private Link should be created. |
string |
AzureClientSecretCredential
Azure client secret credential, either this or credential CRN should be passed.
| Name | Description | Schema |
|---|---|---|
clientId |
The client (application) ID of the service principal |
string |
clientSecret |
A client secret that was generated for the App Registration used to authenticate the client. |
string |
tenantId |
The Azure Active Directory tenant (directory) Id of the service principal. |
string |
CloudServiceProvider
Supported cloud providers
AWS - A value indicating AWS as supported cloud provider for creating Private Links. AZURE - A value indicating Azure as supported cloud provider for creating Private Links.
Type : enum (AWS, AZURE)
CreatePrivateLinkEndpointRequest
Request object for the CreatePrivateLinkEndpoint method.
| Name | Description | Schema |
|---|---|---|
awsAccountDetails |
AWS account details where the Private Link endpoint is created. |
|
azureAccountDetails |
Azure account details where Private Link endpoint is created. |
|
cloudServiceProvider |
Cloud Service Provider. Currently supporting AWS and AZURE. |
|
enablePrivateDns |
Enable Private DNS for Private Link endpoint. |
boolean |
resourceTags |
Custom tags for the different cloud resources created during Private Links creation. |
< ResourceTag > array |
serviceGroup |
CDP service group. |
string |
CreatePrivateLinkEndpointResponse
Response object for the CreatePrivateLinkEndpoint method.
| Name | Description | Schema |
|---|---|---|
trackingId |
Tracking ID of the create endpoint request. |
string |
CrossAccountRoleDetails
Customer cross account role details.
| Name | Description | Schema |
|---|---|---|
crossAccountRole |
Cross-account role. |
string |
externalId |
External ID associated with the cross-account role. |
string |
DeletePrivateLinkEndpointRequest
Request object for the DeletePrivateLinkEndpoint method.
| Name | Description | Schema |
|---|---|---|
awsAccountInfo |
The AWS account details from which this Private Link endpoint is to be deleted. |
|
azureAccountInfo |
The Azure account details from which this Private Link endpoint is to be deleted. |
|
cloudServiceProvider |
Cloud Service Provider. Currently supporting AWS and AZURE. |
DeletePrivateLinkEndpointResponse
Response object for the DeletePrivateLinkEndpoint method.
| Name | Description | Schema |
|---|---|---|
trackingId |
Tracking ID of the delete endpoint request. |
string |
Error
An object returned on an error.
| Name | Description | Schema |
|---|---|---|
code |
The error code. |
string |
message |
The error message. |
string |
GetPrivateLinkStatusRequest
Request object for retrieving the status of a Private Link.
| Name | Description | Schema |
|---|---|---|
cloudServiceProvider |
Cloud Service Provider. Supports AWS and AZURE. |
|
subnetIds |
List of subnets in the given cloud network to query Private Link status. This field has been deprecated. |
< string > array |
vNetId |
Virtual Network Id to query the status of Private Link in Azure. |
string |
vpcId |
VPC ID to query the status of Private Link in AWS. |
string |
GetPrivateLinkStatusResponse
Response object for GetPrivateLinkStatus method.
| Name | Description | Schema |
|---|---|---|
status |
Status of Private Link - enabled or disabled. |
ListPrivateLinkEndpointStatusesRequest
Request object for listPrivateLinkEndpointStatuses method.
| Name | Description | Schema |
|---|---|---|
trackingId |
Tracking ID of the create or delete endpoint request. |
string |
ListPrivateLinkEndpointStatusesResponse
Response object for listPrivateLinkEndpointStatuses method.
| Name | Description | Schema |
|---|---|---|
privatelinkEndpoints |
List of statuses of Private Link endpoints. |
< PrivateLinkEndpointStatus > array |
ListPrivateLinkServicesForRegionRequest
Request object for the ListPrivateLinkServicesForTheRegion method.
| Name | Description | Schema |
|---|---|---|
region |
Region for which the Private Link services are to be queried. |
string |
serviceGroup |
CDP service group. Currently supports "CDP-CONTROL-PLANE" for PaaS. |
string |
ListPrivateLinkServicesForRegionResponse
Response object for the ListPrivateLinkServicesForTheRegion method.
| Name | Description | Schema |
|---|---|---|
listPrivateLinkServicesForRegionResults |
List of ListPrivateLinkServicesForTheRegionResult objects to be returned. |
< ListPrivateLinkServicesForRegionResult > array |
ListPrivateLinkServicesForRegionResult
Response object containing PL service name and CDP service component.
| Name | Description | Schema |
|---|---|---|
availabilityZoneList |
Availability zone list. |
string |
hostname |
Hostname of the Private Link Service. |
string |
privateLinkService |
Name of the Private Link service. |
string |
serviceComponent |
The CDP Service component. |
string |
vpceClientTcpPortList |
VPCE Client tcp port list. |
string |
MigratePrivateLinkEndpointsRequest
Request object for the MigratePrivateLinkEndpoints method.
| Name | Description | Schema |
|---|---|---|
awsAccountInfo |
Migration is AWS-only. AWS account information for the Private Link endpoint migration. Only the VPC ID, region, and credentials are required; subnet and other details are retrieved from the database. |
MigratePrivateLinkEndpointsResponse
Response object for the MigratePrivateLinkEndpoints method.
| Name | Description | Schema |
|---|---|---|
trackingId |
Tracking ID of the migration request. |
string |
PrivateLinkEndpointStatus
Details of the Private Link endpoints.
| Name | Description | Schema |
|---|---|---|
creationTimestamp |
Endpoint creation timestamp. |
string |
dnsNames |
List of Private Link endpoint DNS names on successful creation. |
< string > array |
endpointId |
Private Link endpoint ID on success. |
string |
error |
Error message on failure. |
string |
serviceComponent |
CDP service component name [API/DBUSAPI/IAMAPI/CCMV2/CONSOLEAUTH]. |
string |
status |
Status of the Private Link endpoints. The status is set to SUCCESS when endpoint is created successfully, IN_PROGRESS when the endpoint creation is underway and ERROR when endpoint creation fails. |
string |
PrivateLinkStatus
Status of the Private Link.
ENABLED - Private Link is enabled. DISABLED - Private Link is disabled. ERROR - Error while retrieving the Private Link status.
Type : enum (ENABLED, DISABLED, ERROR)
ResourceTag
Tag object which can be passed to add custom tags for the cloud resources.
| Name | Description | Schema |
|---|---|---|
key |
Key value for the tag. |
string |
value |
Value for the tag. |
string |
RevokePrivateLinkServiceAccessRequest
Request object for the RevokePrivateLinkServiceAccess method.
| Name | Description | Schema |
|---|---|---|
cloudAccountId |
AWS account ID to authorize access for Private Link. |
string |
cloudServiceProvider |
Cloud Service Provider. Currently supporting AWS and AZURE. |
|
region |
Region where the Private Link service exists. |
string |
serviceGroup |
CDP service group. Currently supports "CDP-CONTROL-PLANE" for PaaS. |
string |
subscriptionId |
Azure subscription ID to authorize access for Private Link. |
string |
RevokePrivateLinkServiceAccessResponse
Response object for the RevokePrivateLinkServiceAccess method.
| Name | Description | Schema |
|---|---|---|
revokePrivateLinkServiceAccessResults |
List of RevokePrivateLinkServiceAccessResult objects. |
< RevokePrivateLinkServiceAccessResult > array |
status |
Status of Private Link service access revoke. |
string |
RevokePrivateLinkServiceAccessResult
Revoke response containing PrivateLink service name, service component and its revocation status.
| Name | Description | Schema |
|---|---|---|
privateLinkService |
Name of the Private Link service. |
string |
revocationStatus |
Revocation status for the Private Link service. |
string |
serviceComponent |
CDP service component. |
string |