Get the schemas for all DNS providers we support for ACME DNS Challenge and the respective attributes required for connecting to them while validating a DNS Challenge

/acme/dns/authenticator/authenticator_schemas

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

`query-options.extra` can be specified as query parameters with prefixing them with `extra.` prefix. For example, `extra.retrieve_properties=false` will pass `retrieve_properties` as an extra argument to pool/dataset endpoint.

/acme/dns/authenticator

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

Delete DNS Authenticator of `id`

/acme/dns/authenticator/id/{id}

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

`query-options.extra` can be specified as query parameters with prefixing them with `extra.` prefix. For example, `extra.retrieve_properties=false` will pass `retrieve_properties` as an extra argument to pool/dataset endpoint.

/acme/dns/authenticator/id/{id}

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

Update DNS Authenticator of `id`

/acme/dns/authenticator/id/{id}

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

Create a DNS Authenticator Create a specific DNS Authenticator containing required authentication details for the said provider to successfully connect with it

/acme/dns/authenticator

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

Force an update of the AD machine account password. This can be used to refresh the Kerberos principals in the server's system keytab.

/activedirectory/change_trust_account_pw

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

Returns the following information about the currently joined domain: `LDAP server` IP address of current LDAP server to which TrueNAS is connected. `LDAP server name` DNS name of LDAP server to which TrueNAS is connected `Realm` Kerberos realm `LDAP port` `Server time` timestamp. `KDC server` Kerberos KDC to which TrueNAS is connected `Server time offset` current time offset from DC. `Last machine account password change`. timestamp

/activedirectory/domain_info

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

/activedirectory

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

Return list of kerberos SPN entries registered for the server's Active Directory computer account. This may not reflect the state of the server's current kerberos keytab.

/activedirectory/get_spn_list

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

Wrapper function for 'directoryservices.get_state'. Returns only the state of the Active Directory service.

/activedirectory/get_state

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

Leave Active Directory domain. This will remove computer object from AD and clear relevant configuration data from the NAS. This requires credentials for appropriately-privileged user. Credentials are used to obtain a kerberos ticket, which is used to perform the actual removal from the domain.

/activedirectory/leave

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

Returns list of available LDAP schema choices.

/activedirectory/nss_info_choices

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

Update active directory configuration. `domainname` full DNS domain name of the Active Directory domain. `bindname` username used to perform the intial domain join. `bindpw` password used to perform the initial domain join. User- provided credentials are used to obtain a kerberos ticket, which is used to perform the actual domain join. `verbose_logging` increase logging during the domain join process. `use_default_domain` controls whether domain users and groups have the pre-windows 2000 domain name prepended to the user account. When enabled, the user appears as "administrator" rather than "EXAMPLEdministrator" `allow_trusted_doms` enable support for trusted domains. If this parameter is enabled, then separate idmap backends _must_ be configured for each trusted domain, and the idmap cache should be cleared. `allow_dns_updates` during the domain join process, automatically generate DNS entries in the AD domain for the NAS. If this is disabled, then a domain administrator must manually add appropriate DNS entries for the NAS. This parameter is recommended for TrueNAS HA servers. `disable_freenas_cache` disables active caching of AD users and groups. When disabled, only users cached in winbind's internal cache are visible in GUI dropdowns. Disabling active caching is recommended in environments with a large amount of users. `site` AD site of which the NAS is a member. This parameter is auto- detected during the domain join process. If no AD site is configured for the subnet in which the NAS is configured, then this parameter appears as 'Default-First-Site-Name'. Auto-detection is only performed during the initial domain join. `kerberos_realm` in which the server is located. This parameter is automatically populated during the initial domain join. If the NAS has an AD site configured and that site has multiple kerberos servers, then the kerberos realm is automatically updated with a site-specific configuration to use those servers. Auto-detection is only performed during initial domain join. `kerberos_principal` kerberos principal to use for AD-related operations outside of Samba. After intial domain join, this field is updated with the kerberos principal associated with the AD machine account for the NAS. `nss_info` controls how Winbind retrieves Name Service Information to construct a user's home directory and login shell. This parameter is only effective if the Active Directory Domain Controller supports the Microsoft Services for Unix (SFU) LDAP schema. `timeout` timeout value for winbind-related operations. This value may need to be increased in environments with high latencies for communications with domain controllers or a large number of domain controllers. Lowering the value may cause status checks to fail. `dns_timeout` timeout value for DNS queries during the initial domain join. This value is also set as the NETWORK_TIMEOUT in the ldap config file. `createcomputer` Active Directory Organizational Unit in which new computer accounts are created. The OU string is read from top to bottom without RDNs. Slashes ("/") are used as delimiters, like `Computers/Servers/NAS`. The backslash ("\") is used to escape characters but not as a separator. Backslashes are interpreted at multiple levels and might require doubling or even quadrupling to take effect. When this field is blank, new computer accounts are created in the Active Directory default OU. The Active Directory service is started after a configuration update if the service was initially disabled, and the updated configuration sets `enable` to `True`. The Active Directory service is stopped if `enable` is changed to `False`. If the configuration is updated, but the initial `enable` state is `True`, and remains unchanged, then the samba server is only restarted. During the domain join, a kerberos keytab for the newly-created AD machine account is generated. It is used for all future LDAP / AD interaction and the user-provided credentials are removed.

/activedirectory

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

Issue a no-effect command to our DC. This checks if our secure channel connection to our domain controller is still alive. It has much less impact than wbinfo -t. Default winbind request timeout is 60 seconds, and can be adjusted by the smb4.conf parameter 'winbind request timeout ='

/activedirectory/started

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

Dismiss `id` alert.

/alert/dismiss

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

List all types of alerts which the system can issue.

/alert/list_categories

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

List all types of alerts including active/dismissed currently in the system.

/alert/list

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

List all alert policies which indicate the frequency of the alerts.

/alert/list_policies

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

Restore `id` alert which had been dismissed.

/alert/restore

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

/alertclasses

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

Update default Alert settings.

/alertclasses

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

`query-options.extra` can be specified as query parameters with prefixing them with `extra.` prefix. For example, `extra.retrieve_properties=false` will pass `retrieve_properties` as an extra argument to pool/dataset endpoint.

/alertservice

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

Delete Alert Service of `id`.

/alertservice/id/{id}

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

`query-options.extra` can be specified as query parameters with prefixing them with `extra.` prefix. For example, `extra.retrieve_properties=false` will pass `retrieve_properties` as an extra argument to pool/dataset endpoint.

/alertservice/id/{id}

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

Update Alert Service of `id`.

/alertservice/id/{id}

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

List all types of supported Alert services which can be configured with the system.

/alertservice/list_types

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

Create an Alert Service of specified `type`. If `enabled`, it sends alerts to the configured `type` of Alert Service.

/alertservice

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

Send a test alert using `type` of Alert Service.

/alertservice/test

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

`query-options.extra` can be specified as query parameters with prefixing them with `extra.` prefix. For example, `extra.retrieve_properties=false` will pass `retrieve_properties` as an extra argument to pool/dataset endpoint.

/api_key

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

Delete API Key `id`.

/api_key/id/{id}

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

`query-options.extra` can be specified as query parameters with prefixing them with `extra.` prefix. For example, `extra.retrieve_properties=false` will pass `retrieve_properties` as an extra argument to pool/dataset endpoint.

/api_key/id/{id}

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

Update API Key `id`. Specify `reset: true` to reset this API Key.

/api_key/id/{id}

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

Creates API Key. `name` is a user-readable name for key.

/api_key

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

Verify username and password

/auth/check_password

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

Verify username and password (this will only validate root user's password and would return `false` for any other user)

/auth/check_user

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

Generate a token to be used for authentication. `ttl` stands for Time To Live, in seconds. The token will be invalidated if the connection has been inactive for a time greater than this. `attrs` is a general purpose object/dictionary to hold information about the token.

/auth/generate_token

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

Returns list of active auth sessions. Example of return value: [ { "id": "NyhB1J5vjPjIV82yZ6caU12HLA1boDJcZNWuVQM4hQWuiyUWMGZTz2ElDp7Yk87d", "origin": "192.168.0.3:40392", "credentials": "TOKEN", "internal": False, "created_at": {"$date": 1545842426070} } ] `credentials` can be `UNIX_SOCKET`, `ROOT_TCP_SOCKET`, `TRUENAS_NODE`, `LOGIN_PASSWORD` or `TOKEN`, depending on what authentication method was used. If you want to exclude all internal connections from the list, call this method with following arguments: [ [ ["internal", "=", True] ] ] `query-options.extra` can be specified as query parameters with prefixing them with `extra.` prefix. For example, `extra.retrieve_properties=false` will pass `retrieve_properties` as an extra argument to pool/dataset endpoint.

/auth/sessions

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

Returns true if two factor authorization is required for authorizing user's login.

/auth/two_factor_auth

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

/auth/twofactor

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

Returns the provisioning URI for the OTP. This can then be encoded in a QR Code and used to provision an OTP app like Google Authenticator.

/auth/twofactor/provisioning_uri

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

`otp_digits` represents number of allowed digits in the OTP. `window` extends the validity to `window` many counter ticks before and after the current one. `interval` is time duration in seconds specifying OTP expiration time from it's creation time.

/auth/twofactor

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

Generates a new secret for Two Factor Authentication. Returns boolean true on success.

/auth/twofactor/renew_secret

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

Returns boolean true if provided `token` is successfully authenticated.

/auth/twofactor/verify

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

Attach a disk to the boot pool, turning a stripe into a mirror. `expand` option will determine whether the new disk partition will be the maximum available or the same size as the current disk.

/boot/attach

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

Detach given `dev` from boot pool.

/boot/detach

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

Returns disks of the boot pool.

/boot/get_disks

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

Get Automatic Scrub Interval value in days.

/boot/get_scrub_interval

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

Returns the current state of the boot pool, including all vdevs, properties and datasets.

/boot/get_state

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

Replace device `label` on boot pool with `dev`.

/boot/replace

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

Scrub on boot pool.

/boot/scrub

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

Set Automatic Scrub Interval value in days.

/boot/set_scrub_interval

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

Query all Boot Environments with `query-filters` and `query-options`. `query-options.extra` can be specified as query parameters with prefixing them with `extra.` prefix. For example, `extra.retrieve_properties=false` will pass `retrieve_properties` as an extra argument to pool/dataset endpoint.

/bootenv

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

Activates boot environment `id`.

/bootenv/id/{id}/activate

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

Delete `id` boot environment. This removes the clone from the system.

/bootenv/id/{id}

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

Query all Boot Environments with `query-filters` and `query-options`. `query-options.extra` can be specified as query parameters with prefixing them with `extra.` prefix. For example, `extra.retrieve_properties=false` will pass `retrieve_properties` as an extra argument to pool/dataset endpoint.

/bootenv/id/{id}

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

Update `id` boot environment name with a new provided valid `name`.

/bootenv/id/{id}

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

Sets attributes boot environment `id`. Currently only `keep` attribute is allowed.

/bootenv/id/{id}/set_attribute

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

Create a new boot environment using `name`. If a new boot environment is desired which is a clone of another boot environment, `source` can be passed. Then, a new boot environment of `name` is created using boot environment `source` by cloning it. Ensure that `name` and `source` are valid boot environment names.

/bootenv

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

`query-options.extra` can be specified as query parameters with prefixing them with `extra.` prefix. For example, `extra.retrieve_properties=false` will pass `retrieve_properties` as an extra argument to pool/dataset endpoint.

/catalog

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

Retrieve information of `item_name` `item_version_details.catalog` catalog item.

/catalog/get_item_details

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

/catalog/id/{id}

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

`query-options.extra` can be specified as query parameters with prefixing them with `extra.` prefix. For example, `extra.retrieve_properties=false` will pass `retrieve_properties` as an extra argument to pool/dataset endpoint.

/catalog/id/{id}

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

/catalog/id/{id}

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

Retrieve item details for `label` catalog. `options.cache` is a boolean which when set will try to get items details for `label` catalog from cache if available. `options.cache_only` is a boolean which when set will force usage of cache only for retrieving catalog information. If the content for the catalog in question is not cached, no content would be returned. If `options.cache` is unset, this attribute has no effect. `options.retrieve_all_trains` is a boolean value which when set will retrieve information for all the trains present in the catalog ( it is set by default ). `options.trains` is a list of train name(s) which will allow selective filtering to retrieve only information of desired trains in a catalog. If `options.retrieve_all_trains` is set, it has precedence over `options.train`. `options.retrieve_versions` can be unset to skip retrieving version details of each catalog item. This can help in cases to optimize performance. Retrieving versions would be deprecated in the next major release from this endpoint.

/catalog/items

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

`catalog_create.preferred_trains` specifies trains which will be displayed in the UI directly for a user.

/catalog

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

Refresh all available catalogs from upstream.

/catalog/sync_all

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

Sync `label` catalog to retrieve latest changes from upstream.

/catalog/sync

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

Validates `label` catalog format which includes validating trains and applications with their versions. This does not test if an app version is valid in terms of kubernetes resources but instead ensures it has the correct format and files necessary for TrueNAS to use it.

/catalog/validate

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

Dictionary of popular ACME Servers with their directory URI endpoints which we display automatically in UI

/certificate/acme_server_choices

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

Returns a dictionary of predefined options for specific use cases i.e openvpn client/server configurations which can be used for creating certificate signing requests.

/certificate/certificate_signing_requests_profiles

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

Returns country choices for creating a certificate/csr.

/certificate/country_choices

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

Dictionary of supported EC curves.

/certificate/ec_curve_choices

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

Dictionary of choices for `ExtendedKeyUsage` extension which can be passed over to `usages` attribute.

/certificate/extended_key_usage_choices

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

`query-options.extra` can be specified as query parameters with prefixing them with `extra.` prefix. For example, `extra.retrieve_properties=false` will pass `retrieve_properties` as an extra argument to pool/dataset endpoint.

/certificate

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

Delete certificate of `id`. If the certificate is an ACME based certificate, certificate service will try to revoke the certificate by updating it's status with the ACME server, if it fails an exception is raised and the certificate is not deleted from the system. However, if `force` is set to True, certificate is deleted from the system even if some error occurred while revoking the certificate with the ACME Server

/certificate/id/{id}

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

`query-options.extra` can be specified as query parameters with prefixing them with `extra.` prefix. For example, `extra.retrieve_properties=false` will pass `retrieve_properties` as an extra argument to pool/dataset endpoint.

/certificate/id/{id}

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

Update certificate of `id` Only name and revoked attribute can be updated. When `revoked` is enabled, the specified cert `id` is revoked and if it belongs to a CA chain which exists on this system, its serial number is added to the CA's certificate revocation list.

/certificate/id/{id}

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

Dictionary of supported key types for certificates.

/certificate/key_type_choices

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

Create a new Certificate Certificates are classified under following types and the necessary keywords to be passed for `create_type` attribute to create the respective type of certificate 1) Internal Certificate - CERTIFICATE_CREATE_INTERNAL 2) Imported Certificate - CERTIFICATE_CREATE_IMPORTED 3) Certificate Signing Request - CERTIFICATE_CREATE_CSR 4) Imported Certificate Signing Request - CERTIFICATE_CREATE_IMPORTED_CSR 5) ACME Certificate - CERTIFICATE_CREATE_ACME By default, created certs use RSA keys. If an Elliptic Curve Key is desired, it can be specified with the `key_type` attribute. If the `ec_curve` attribute is not specified for the Elliptic Curve Key, then default to using "BrainpoolP384R1" curve. A type is selected by the Certificate Service based on `create_type`. The rest of the values in `data` are validated accordingly and finally a certificate is made based on the selected type. `cert_extensions` can be specified to set X509v3 extensions.

/certificate

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

Returns a dictionary of predefined options for specific use cases i.e openvpn client/server configurations which can be used for creating certificates.

/certificate/profiles

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

Sign CSR by Certificate Authority of `ca_id` Sign CSR's and generate a certificate from it. `ca_id` provides which CA is to be used for signing a CSR of `csr_cert_id` which exists in the system `cert_extensions` can be specified if specific extensions are to be set in the newly signed certificate.

/certificateauthority/ca_sign_csr

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

`query-options.extra` can be specified as query parameters with prefixing them with `extra.` prefix. For example, `extra.retrieve_properties=false` will pass `retrieve_properties` as an extra argument to pool/dataset endpoint.

/certificateauthority

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

Delete a Certificate Authority of `id`

/certificateauthority/id/{id}

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

`query-options.extra` can be specified as query parameters with prefixing them with `extra.` prefix. For example, `extra.retrieve_properties=false` will pass `retrieve_properties` as an extra argument to pool/dataset endpoint.

/certificateauthority/id/{id}

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

Update Certificate Authority of `id` Only `name` and `revoked` attribute can be updated. If `revoked` is enabled, the CA and its complete chain is marked as revoked and added to the CA's certificate revocation list.

/certificateauthority/id/{id}

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

Create a new Certificate Authority Certificate Authorities are classified under following types with the necessary keywords to be passed for `create_type` attribute to create the respective type of certificate authority 1) Internal Certificate Authority - CA_CREATE_INTERNAL 2) Imported Certificate Authority - CA_CREATE_IMPORTED 3) Intermediate Certificate Authority - CA_CREATE_INTERMEDIATE Created certificate authorities use RSA keys by default. If an Elliptic Curve Key is desired, then it can be specified with the `key_type` attribute. If the `ec_curve` attribute is not specified for the Elliptic Curve Key, default to using "BrainpoolP384R1" curve. A type is selected by the Certificate Authority Service based on `create_type`. The rest of the values are validated accordingly and finally a certificate is made based on the selected type. `cert_extensions` can be specified to set X509v3 extensions.

/certificateauthority

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

Returns a dictionary of predefined options for specific use cases i.e OpenVPN certificate authority configurations which can be used for creating certificate authorities.

/certificateauthority/profiles

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

Returns certificate authorities which can be used by applications.

/chart/release/certificate_authority_choices

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

Returns certificates which can be used by applications.

/chart/release/certificate_choices

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

Returns kubernetes events for `release_name` Chart Release.

/chart/release/events

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

Query available chart releases. `query-options.extra.retrieve_resources` is a boolean when set will retrieve existing kubernetes resources in the chart namespace. `query-options.extra.history` is a boolean when set will retrieve all chart version upgrades for a chart release. `query-options.extra.include_chart_schema` is a boolean when set will retrieve the schema being used by the chart release in question. `query-options.extra.resource_events` is a boolean when set will retrieve individual events of each resource. This only has effect if `query-options.extra.retrieve_resources` is set. `query-options.extra` can be specified as query parameters with prefixing them with `extra.` prefix. For example, `extra.retrieve_properties=false` will pass `retrieve_properties` as an extra argument to pool/dataset endpoint.

/chart/release

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

Delete existing chart release. This will delete the chart release from the kubernetes cluster and also remove any associated volumes / data. To clarify, host path volumes will not be deleted which live outside the chart release dataset.

/chart/release/id/{id}

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

Query available chart releases. `query-options.extra.retrieve_resources` is a boolean when set will retrieve existing kubernetes resources in the chart namespace. `query-options.extra.history` is a boolean when set will retrieve all chart version upgrades for a chart release. `query-options.extra.include_chart_schema` is a boolean when set will retrieve the schema being used by the chart release in question. `query-options.extra.resource_events` is a boolean when set will retrieve individual events of each resource. This only has effect if `query-options.extra.retrieve_resources` is set. `query-options.extra` can be specified as query parameters with prefixing them with `extra.` prefix. For example, `extra.retrieve_properties=false` will pass `retrieve_properties` as an extra argument to pool/dataset endpoint.

/chart/release/id/{id}

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

Update an existing chart release. `values` is configuration specified for the catalog item version in question which will be used to create the chart release.

/chart/release/id/{id}

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

Available choices for NIC which can be added to a pod in a chart release.

/chart/release/nic_choices

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

Returns choices for console access to a chart release. Output is a dictionary with names of pods as keys and containing names of containers which the pod comprises of.

/chart/release/pod_console_choices

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

Returns choices for accessing logs of any container in any pod in a chart release.

/chart/release/pod_logs_choices

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

Retrieve available/desired pods status for a chart release and it's current state.

/chart/release/pod_status

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

Create a chart release for a catalog item. `release_name` is the name which will be used to identify the created chart release. `catalog` is a valid catalog id where system will look for catalog `item` details. `train` is which train to look for under `catalog` i.e stable / testing etc. `version` specifies the catalog `item` version. `values` is configuration specified for the catalog item version in question which will be used to create the chart release.

/chart/release

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

Update container images being used by `release_name` chart release. `redeploy` when set will redeploy pods which will result in chart release using newer updated versions of the container images.

/chart/release/pull_container_images

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

Redeploy will initiate a new rollout of the Helm chart according to upgrade strategy defined by the chart release workloads. A good example for redeploying is updating kubernetes pods with an updated container image.

/chart/release/redeploy

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

Remove `volume_name` ix_volume from `release_name` chart release.

/chart/release/remove_ix_volume

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

Rollback a chart release to a previous chart version. `item_version` is version which we want to rollback a chart release to. `rollback_snapshot` is a boolean value which when set will rollback snapshots of any PVC's or ix volumes being consumed by the chart release. `force_rollback` is a boolean which when set will force rollback operation to move forward even if no snapshots are found. This is only useful when `rollback_snapshot` is set. `recreate_resources` is a boolean which will delete and then create the kubernetes resources on rollback of chart release. This should be used with caution as if chart release is consuming immutable objects like a PVC, the rollback operation can't be performed and will fail as helm tries to do a 3 way patch for rollback. Rollback is functional for the actual configuration of the release at the `item_version` specified and any associated `ix_volumes` with any PVC's which were consuming chart release storage class.

/chart/release/rollback

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

Scale a `release_name` chart release to `scale_options.replica_count` specified. This will scale deployments/statefulset to replica count specified.

/chart/release/scale

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

Scale workloads in a chart release to specified `replica_count`.

/chart/release/scale_workloads

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

Returns choices for types of workloads which can be scaled up/down.

/chart/release/scaleable_resources

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

Upgrade `release_name` chart release. `upgrade_options.item_version` specifies to which item version chart release should be upgraded to. System will update container images being used by `release_name` chart release as a chart release upgrade is not considered complete until the images in use have also been updated to latest versions. During upgrade, `upgrade_options.values` can be specified to apply configuration changes for configuration changes for the chart release in question. When chart version is upgraded, system will automatically take a snapshot of `ix_volumes` in question which can be used to rollback later on.

/chart/release/upgrade

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

Retrieve upgrade summary for `release_name` which will include which container images will be updated and changelog for `options.item_version` chart version specified if applicable. If only container images need to be updated, changelog will be `null`. If chart release `release_name` does not require an upgrade, an error will be raised.

/chart/release/upgrade_summary

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

Returns ports in use by applications.

/chart/release/used_ports

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

Query all Cloud Sync Tasks with `query-filters` and `query-options`. `query-options.extra` can be specified as query parameters with prefixing them with `extra.` prefix. For example, `extra.retrieve_properties=false` will pass `retrieve_properties` as an extra argument to pool/dataset endpoint.

/cloudsync

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

Aborts cloud sync task.

/cloudsync/id/{id}/abort

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

Deletes cloud_sync entry `id`.

/cloudsync/id/{id}

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

Query all Cloud Sync Tasks with `query-filters` and `query-options`. `query-options.extra` can be specified as query parameters with prefixing them with `extra.` prefix. For example, `extra.retrieve_properties=false` will pass `retrieve_properties` as an extra argument to pool/dataset endpoint.

/cloudsync/id/{id}

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

Updates the cloud_sync entry `id` with `data`.

/cloudsync/id/{id}

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

Create the opposite of cloud sync task `id` (PULL if it was PUSH and vice versa).

/cloudsync/id/{id}/restore

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

Run the cloud_sync job `id`, syncing the local data to remote.

/cloudsync/id/{id}/sync

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

/cloudsync/list_buckets

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

List contents of a remote bucket / directory. If remote supports buckets, path is constructed by two keys "bucket"/"folder" in `attributes`. If remote does not support buckets, path is constructed using "folder" key only in `attributes`. "folder" is directory name and "bucket" is bucket name for remote. Path examples: S3 Service `bucketname/directory/name` Dropbox Service `directory/name` `credentials` is a valid id of a Cloud Sync Credential which will be used to connect to the provider.

/cloudsync/list_directory

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

Lists all available drives and their types for given Microsoft OneDrive credentials.

/cloudsync/onedrive_list_drives

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

Creates a new cloud_sync entry.

/cloudsync

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

Returns a list of dictionaries of supported providers for Cloud Sync Tasks. `credentials_schema` is JSON schema for credentials attributes. `task_schema` is JSON schema for task attributes. `buckets` is a boolean value which is set to "true" if provider supports buckets. Example of a single provider: [ { "name": "AMAZON_CLOUD_DRIVE", "title": "Amazon Cloud Drive", "credentials_schema": [ { "property": "client_id", "schema": { "title": "Amazon Application Client ID", "_required_": true, "type": "string" } }, { "property": "client_secret", "schema": { "title": "Application Key", "_required_": true, "type": "string" } } ], "credentials_oauth": null, "buckets": false, "bucket_title": "Bucket", "task_schema": [] } ]

/cloudsync/providers

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

Run cloud sync task without creating it.

/cloudsync/sync_onetime

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

`query-options.extra` can be specified as query parameters with prefixing them with `extra.` prefix. For example, `extra.retrieve_properties=false` will pass `retrieve_properties` as an extra argument to pool/dataset endpoint.

/cloudsync/credentials

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

Delete Cloud Sync Credentials of `id`.

/cloudsync/credentials/id/{id}

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

`query-options.extra` can be specified as query parameters with prefixing them with `extra.` prefix. For example, `extra.retrieve_properties=false` will pass `retrieve_properties` as an extra argument to pool/dataset endpoint.

/cloudsync/credentials/id/{id}

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

Update Cloud Sync Credentials of `id`.

/cloudsync/credentials/id/{id}

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

Create Cloud Sync Credentials. `attributes` is a dictionary of valid values which will be used to authorize with the `provider`.

/cloudsync/credentials

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

Verify if `attributes` provided for `provider` are authorized by the `provider`.

/cloudsync/credentials/verify

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

Reset database to configuration defaults. If `reboot` is true this job will reboot the system after its completed with a delay of 10 seconds.

/config/reset

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

/container

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

When `enable_image_updates` is set, system will check if existing container images need to be updated. System will basically check if we have an updated image hash available for the same tag available and if we do, user is alerted to update the image. A use case for unsetting this variable can be rate limits for docker registries, as each time we check if a single image needs update, we consume the rate limit and eventually it can hinder operations if the number of images to be checked is a lot.

/container

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

Retrieve container images present in the system. `query-options.extra.parse_tags` is a boolean which when set will have normalized tags to be retrieved for container images. `query-options.extra` can be specified as query parameters with prefixing them with `extra.` prefix. For example, `extra.retrieve_properties=false` will pass `retrieve_properties` as an extra argument to pool/dataset endpoint.

/container/image

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

`options.force` should be used to force delete an image even if it's in use by a stopped container.

/container/image/id/{id}

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

Retrieve container images present in the system. `query-options.extra.parse_tags` is a boolean which when set will have normalized tags to be retrieved for container images. `query-options.extra` can be specified as query parameters with prefixing them with `extra.` prefix. For example, `extra.retrieve_properties=false` will pass `retrieve_properties` as an extra argument to pool/dataset endpoint.

/container/image/id/{id}

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

`from_image` is the name of the image to pull. Format for the name is "registry/repo/image" where registry may be omitted and it will default to docker registry in this case. `tag` specifies tag of the image and defaults to `null`. In case of `null` it will retrieve all the tags of the image. `docker_authentication` should be specified if image to be retrieved is under a private repository.

/container/image/pull

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

Will loop on a list of items for the given method, returning a list of dicts containing a result and error key. `description` contains format string for job progress (e.g. "Deleting snapshot {0[dataset]}@{0[name]}") Result will be the message returned by the method being called, or a string of an error, in which case the error key will be the exception

/core/bulk

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

/core/debug_mode_enabled

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

Setup middlewared for remote debugging. engines: - PTVS: Python Visual Studio - PYDEV: Python Dev (Eclipse/PyCharm) - REMOTE_PDB: Remote vanilla PDB (over TCP sockets) options: - secret: password for PTVS - host: required for PYDEV, hostname of local computer (developer workstation) - local_path: required for PYDEV, path for middlewared source in local computer (e.g. /home/user/freenas/src/middlewared/middlewared - threaded: run debugger in a new thread instead of event loop

/core/debug

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

Core helper to call a job marked for download. Non-`buffered` downloads will allow job to write to pipe as soon as download URL is requested, job will stay blocked meanwhile. `buffered` downloads must wait for job to complete before requesting download URL, job's pipe output will be buffered to ramfs. Returns the job id and the URL for download.

/core/download

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

Returns metadata for every possible event emitted from websocket server.

/core/get_events

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

Get the long running jobs. `query-options.extra` can be specified as query parameters with prefixing them with `extra.` prefix. For example, `extra.retrieve_properties=false` will pass `retrieve_properties` as an extra argument to pool/dataset endpoint.

/core/get_jobs

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

Return methods metadata of every available service. `service` parameter is optional and filters the result for a single service.

/core/get_methods

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

Returns a list of all registered services.

/core/get_services

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

Retrieve last 1000 incoming/outgoing message(s) logged over websocket.

/core/get_websocket_messages

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

/core/job_abort

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

/core/job_update

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

/core/job_wait

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

Utility method which just returns "pong". Can be used to keep connection/authtoken alive instead of using "ping" protocol message.

/core/ping

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

Method that will send an ICMP echo request to "hostname" and will wait up to "timeout" for a reply.

/core/ping_remote

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

Resize terminal session (/websocket/shell) to cols x rows

/core/resize_shell

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

Get currently open websocket sessions. `query-options.extra` can be specified as query parameters with prefixing them with `extra.` prefix. For example, `extra.retrieve_properties=false` will pass `retrieve_properties` as an extra argument to pool/dataset endpoint.

/core/sessions

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

Set `debug_mode` for middleware.

/core/set_debug_mode

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

`query-options.extra` can be specified as query parameters with prefixing them with `extra.` prefix. For example, `extra.retrieve_properties=false` will pass `retrieve_properties` as an extra argument to pool/dataset endpoint.

/cronjob

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

Delete cronjob of `id`.

/cronjob/id/{id}

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

`query-options.extra` can be specified as query parameters with prefixing them with `extra.` prefix. For example, `extra.retrieve_properties=false` will pass `retrieve_properties` as an extra argument to pool/dataset endpoint.

/cronjob/id/{id}

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

Update cronjob of `id`.

/cronjob/id/{id}

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

Create a new cron job. `stderr` and `stdout` are boolean values which if `true`, represent that we would like to suppress standard error / standard output respectively.

/cronjob

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

Job to run cronjob task of `id`.

/cronjob/run

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

Returns a boolean if the ctdb cluster is healthy.

/ctdb/general/healthy

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

Return a list of public ip addresses in the ctdb cluster.

/ctdb/general/ips

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

Return a list of nodes in the ctdb cluster.

/ctdb/general/listnodes

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

Return node number for this node. This value should be static for life of cluster.

/ctdb/general/pnn

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

List the status of nodes in the ctdb cluster. `all_nodes`: Boolean if True, return status for all nodes in the cluster else return status of this node.

/ctdb/general/status

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

`query-options.extra` can be specified as query parameters with prefixing them with `extra.` prefix. For example, `extra.retrieve_properties=false` will pass `retrieve_properties` as an extra argument to pool/dataset endpoint.

/ctdb/private/ips

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

`query-options.extra` can be specified as query parameters with prefixing them with `extra.` prefix. For example, `extra.retrieve_properties=false` will pass `retrieve_properties` as an extra argument to pool/dataset endpoint.

/ctdb/private/ips/id/{id}

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

Update Private IP address from the ctdb cluster with pnn value of `id`. `id` integer representing the PNN value for the node. `enable` boolean. When True, enable the node else disable the node.

/ctdb/private/ips/id/{id}

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

Add a ctdb private address to the cluster `ip` string representing an IP v4/v6 address

/ctdb/private/ips

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

Retrieve information about configured public IP addresses for the ctdb cluster. This call raise a CallError with errno set to ENXIO if this node is not in a state where it can provide accurate information about cluster. Examples problematic states are: - ctdb or glusterd are not running on this node - ctdb shared volume is not mounted `query-options.extra` can be specified as query parameters with prefixing them with `extra.` prefix. For example, `extra.retrieve_properties=false` will pass `retrieve_properties` as an extra argument to pool/dataset endpoint.

/ctdb/public/ips

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

Retrieve information about configured public IP addresses for the ctdb cluster. This call raise a CallError with errno set to ENXIO if this node is not in a state where it can provide accurate information about cluster. Examples problematic states are: - ctdb or glusterd are not running on this node - ctdb shared volume is not mounted `query-options.extra` can be specified as query parameters with prefixing them with `extra.` prefix. For example, `extra.retrieve_properties=false` will pass `retrieve_properties` as an extra argument to pool/dataset endpoint.

/ctdb/public/ips/id/{id}

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

Update Public IP address in the ctdb cluster. `pnn` - cluster node number `ip` string representing the public ip address `enable` boolean. When True, enable the node else disable the node.

/ctdb/public/ips/id/{id}

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

Add a ctdb public address to the cluster `pnn` node number of record to adjust `ip` string representing an IP v4/v6 address `netmask` integer representing a cidr notated netmask (i.e. 16/24/48/64 etc) `interface` string representing a network interface to apply the `ip`

/ctdb/public/ips

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

Get info for SERIAL/DISK/GPU device types.

/device/get_info

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

Retrieve choices for GPU PCI ids located in the system.

/device/gpu_pci_ids_choices

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

This method refreshes the directory services cache for users and groups that is used as a backing for `user.query` and `group.query` methods. The first cache fill in an Active Directory domain may take a significant amount of time to complete and so it is performed as within a job. The most likely situation in which a user may desire to refresh the directory services cache is after new users or groups to a remote directory server with the intention to have said users or groups appear in the results of the aforementioned account-related methods. A cache refresh is not required in order to use newly-added users and groups for in permissions and ACL related methods. Likewise, a cache refresh will not resolve issues with users being unable to authenticate to shares.

/directoryservices/cache_refresh

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

`DISABLED` Directory Service is disabled. `FAULTED` Directory Service is enabled, but not HEALTHY. Review logs and generated alert messages to debug the issue causing the service to be in a FAULTED state. `LEAVING` Directory Service is in process of stopping. `JOINING` Directory Service is in process of starting. `HEALTHY` Directory Service is enabled, and last status check has passed.

/directoryservices/get_state

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

Query disks. The following extra options are supported: include_expired: true - will also include expired disks (default: false) passwords: true - will not hide KMIP password for the disks (default: false) pools: true - will join pool name for each disk (default: false) `query-options.extra` can be specified as query parameters with prefixing them with `extra.` prefix. For example, `extra.retrieve_properties=false` will pass `retrieve_properties` as an extra argument to pool/dataset endpoint.

/disk

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

Helper method to get all disks that are not in use, either by the boot pool or the user pools.

/disk/get_unused

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

Query disks. The following extra options are supported: include_expired: true - will also include expired disks (default: false) passwords: true - will not hide KMIP password for the disks (default: false) pools: true - will join pool name for each disk (default: false) `query-options.extra` can be specified as query parameters with prefixing them with `extra.` prefix. For example, `extra.retrieve_properties=false` will pass `retrieve_properties` as an extra argument to pool/dataset endpoint.

/disk/id/{id}

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

Update disk of `id`. If extra options need to be passed to SMART which we don't already support, they can be passed by `smartoptions`. `critical`, `informational` and `difference` are integer values on which alerts for SMART are configured if the disk temperature crosses the assigned threshold for each respective attribute. If they are set to null, then SMARTD config values are used as defaults. Email of log level LOG_CRIT is issued when disk temperature crosses `critical`. Email of log level LOG_INFO is issued when disk temperature crosses `informational`. If temperature of a disk changes by `difference` degree Celsius since the last report, SMART reports this.

/disk/id/{id}

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

Returns S.M.A.R.T. attributes values for specified disk name.

/disk/smart_attributes

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

Returns temperature for device `name` using specified S.M.A.R.T. `powermode`.

/disk/temperature

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

Returns temperatures for a list of devices (runs in parallel). See `disk.temperature` documentation for more details.

/disk/temperatures

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

Performs a wipe of a disk `dev`. It can be of the following modes: - QUICK: clean the first and last 32 megabytes on `dev` - FULL: write whole disk with zero's - FULL_RANDOM: write whole disk with random bytes

/disk/wipe

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

Query Name Servers with `query-filters` and `query-options`. `query-options.extra` can be specified as query parameters with prefixing them with `extra.` prefix. For example, `extra.retrieve_properties=false` will pass `retrieve_properties` as an extra argument to pool/dataset endpoint.

/dns/query

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

/dyndns

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

List supported Dynamic DNS Service Providers.

/dyndns/provider_choices

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

Update dynamic dns service configuration. `period` indicates how often the IP is checked in seconds. `ssl` if set to true, makes sure that HTTPS is used for the connection to the server which updates the DNS record.

/dyndns

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

`query-options.extra` can be specified as query parameters with prefixing them with `extra.` prefix. For example, `extra.retrieve_properties=false` will pass `retrieve_properties` as an extra argument to pool/dataset endpoint.

/enclosure

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

`query-options.extra` can be specified as query parameters with prefixing them with `extra.` prefix. For example, `extra.retrieve_properties=false` will pass `retrieve_properties` as an extra argument to pool/dataset endpoint.

/enclosure/id/{id}

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

/enclosure/id/{id}

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

/enclosure/set_slot_status

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

Restart the keepavlived service which will cause any VIP addresses on this controller to be migrated to the other controller. This will cause a failover event if run on the master controller. If this is run on the passive controller it will do 1 of 2 things: 1: if there are no VIP(s) on the passive controller, then this will do nothing. 2: if there are VIP(s) on the passive controller, then the VIP(s) will be migrated to the active controller. A failover event will be triggered but it will do nothing since the active will already have the zpool(s) imported.

/failover/become_passive

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

Call a method in the other node.

/failover/call_remote

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

/failover/control

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

Force this controller to become MASTER, if it's not already.

/failover/force_master

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

/failover

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

Returns the hardware type for an HA system. ECHOSTREAM ECHOWARP PUMA BHYVE MANUAL

/failover/hardware

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

Returns True if there is an ongoing failover event.

/failover/in_progress

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

Checks whether this instance is licensed as a HA unit.

/failover/licensed

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

Returns the slot position in the chassis that the controller is located. A - First node B - Seconde Node MANUAL - slot position in chassis could not be determined

/failover/node

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

Update failover state. `disabled` When true indicates that HA will be disabled. `master` Marks the particular node in the chassis as the master node. The standby node will have the opposite value. `timeout` is the time to WAIT until a failover occurs when a network event occurs on an interface that is marked critical for failover AND HA is enabled and working appropriately. The default time to wait is 2 seconds. **NOTE** This setting does NOT effect the `disabled` or `master` parameters.

/failover

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

Get the current HA status. Returns: MASTER BACKUP ELECTING IMPORTING ERROR SINGLE

/failover/status

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

Sync database and files from the other controller.

/failover/sync_from_peer

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

Sync database and files to the other controller. `reboot` as true will reboot the other controller after syncing.

/failover/sync_to_peer

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

Unlock datasets in HA, syncing passphrase between controllers and forcing this controller to be MASTER importing the pools.

/failover/unlock

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

Perform the last stage of an HA upgrade. This will activate the new boot environment on the Standby Controller and reboot it.

/failover/upgrade_finish

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

Verify if HA upgrade is pending. `upgrade_finish` needs to be called to finish the HA upgrade process if this method returns true.

/failover/upgrade_pending

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

Upgrades both controllers. Files will be downloaded to the Active Controller and then transferred to the Standby Controller. Upgrade process will start concurrently on both nodes. Once both upgrades are applied, the Standby Controller will reboot. This job will wait for that job to complete before finalizing. A file can be uploaded to this end point. This end point is special, please refer to Jobs section in Websocket API documentation for details.

/failover/upgrade

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

Returns True if the ACL can be fully expressed as a file mode without losing any access rules. Paths on clustered volumes may be specifed with the path prefix `CLUSTER:<volume name>`. For example, to list directories in the directory 'data' in the clustered volume `smb01`, the path should be specified as `CLUSTER:smb01/data`.

/filesystem/acl_is_trivial

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

Check if `username` is able to access `path` with specific `permissions`. At least one of `read/write/execute` permission must be specified for checking with each of these defaulting to `null`. `null` for `read/write/execute` represents that the permission should not be checked.

/filesystem/can_access_as_user

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

Change owner or group of file at `path`. `uid` and `gid` specify new owner of the file. If either key is absent or None, then existing value on the file is not changed. `recursive` performs action recursively, but does not traverse filesystem mount points. If `traverse` and `recursive` are specified, then the chown operation will traverse filesystem mount points.

/filesystem/chown

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

`DEPRECATED` Returns list of names of ACL templates. Wrapper around filesystem.acltemplate.query.

/filesystem/default_acl_choices

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

`DEPRECATED` Returns a default ACL depending on the usage specified by `acl_type`. If an admin group is defined, then an entry granting it full control will be placed at the top of the ACL. Optionally may pass `share_type` to argument to get share-specific template ACL.

/filesystem/get_default_acl

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

Return ACL of a given path. This may return a POSIX1e ACL or a NFSv4 ACL. The acl type is indicated by the `acltype` key. `simplified` - effect of this depends on ACL type on underlying filesystem. In the case of NFSv4 ACLs simplified permissions and flags are returned for ACL entries where applicable. NFSv4 errata below. In the case of POSIX1E ACls, this setting has no impact on returned ACL. `resolve_ids` - adds additional `who` key to each ACL entry, that converts the numeric id to a user name or group name. In the case of owner@ and group@ (NFSv4) or USER_OBJ and GROUP_OBJ (POSIX1E), st_uid or st_gid will be converted from stat() return for file. In the case of MASK (POSIX1E), OTHER (POSIX1E), everyone@ (NFSv4), key `who` will be included, but set to null. In case of failure to resolve the id to a name, `who` will be set to null. This option should only be used if resolving ids to names is required. Errata about ACLType NFSv4: `simplified` returns a shortened form of the ACL permset and flags where applicable. If permissions have been simplified, then the `perms` object will contain only a single `BASIC` key with a string describing the underlying permissions set. `TRAVERSE` sufficient rights to traverse a directory, but not read contents. `READ` sufficient rights to traverse a directory, and read file contents. `MODIFIY` sufficient rights to traverse, read, write, and modify a file. `FULL_CONTROL` all permissions. If the permisssions do not fit within one of the pre-defined simplified permissions types, then the full ACL entry will be returned.

/filesystem/getacl

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

Retrieves boolean which is set when immutable flag is set on `path`.

/filesystem/is_immutable

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

Get the contents of a directory. Paths on clustered volumes may be specifed with the path prefix `CLUSTER:<volume name>`. For example, to list directories in the directory 'data' in the clustered volume `smb01`, the path should be specified as `CLUSTER:smb01/data`. Each entry of the list consists of: name(str): name of the file path(str): absolute path of the entry realpath(str): absolute real path of the entry (if SYMLINK) type(str): DIRECTORY | FILESYSTEM | SYMLINK | OTHER size(int): size of the entry mode(int): file mode/permission uid(int): user id of entry owner gid(int): group id of entry onwer acl(bool): extended ACL is present on file

/filesystem/listdir

Usage and SDK Samples

Parameters

Responses

Status: 200 - Operation succeeded

Status: 401 - No authorization for this endpoint

Create a directory at the specified path.

/filesystem/mkdir

Usage and SDK Samples

Parameters