etcd用户和角色设置:
1.etcd默认没有用户
2.etcd默认角色guest和root
3.etcd默认关闭用户登录认证
创建root用户
etcdctl user add root
查看用户
etcdctl user list
开启/关闭用户登录认证
etcdctl auth enable/disable
创建用户
etcdctl -u root user add etcduser
删除用户
etcdctl -u root user remove etcduser
用户修改密码
etcdctl -u root user passwd etcduser
创建角色
etcdctl -u root role add etcdrole
查看角色
etcdctl -u root role list
删除角色
etcdctl -u root role remove etcdrole
角色授权,角色没有密码,仅仅是定义的一组访问权限,角色的访问权限可以被赋予read(读),write(写),readwrite(读和写)权限
etcdctl -u root role grant etcdrole –path “/*” –read
etcdctl -u root role grant etcdrole –path “/*” –write
etcdctl -u root role grant etcdrole –path “/*” –rw
角色权限回收
etcdctl -u root role revoke etcdrole –path “/*” –write
用户和角色绑定、解除绑定
etcdctl -u root user grant –roles etcdrole etcduser
etcdctl -u root user revoke –roles etcdrole etcduser