Elastic Compute Service (ECS)
Container Compute Service (ACS)
Creates an account that is granted read-only permissions for shard nodes in an ApsaraDB for MongoDB sharded cluster instance that uses cloud disks.
Operation description
- You can create an account for shard nodes only in an ApsaraDB for MongoDB sharded cluster instance that uses cloud disks.
- The account is granted read-only permissions.
Debugging
Authorization information
The following table shows the authorization information corresponding to the API. The authorization information can be used in the Action policy element to grant a RAM user or RAM role the permissions to call this API operation. Description:
- Operation: the value that you can use in the Action element to specify the operation on a resource.
- Access level: the access level of each operation. The levels are read, write, and list.
- Resource type: the type of the resource on which you can authorize the RAM user or the RAM role to perform the operation. Take note of the following items:
- For mandatory resource types, indicate with a prefix of * .
- If the permissions cannot be granted at the resource level,
All Resourcesis used in the Resource type column of the operation.
- Condition Key: the condition key that is defined by the cloud service.
- Associated operation: other operations that the RAM user or the RAM role must have permissions to perform to complete the operation. To complete the operation, the RAM user or the RAM role must have the permissions to perform the associated operations.
| Operation | Access level | Resource type | Condition key | Associated operation |
|---|
| Operation | Access level | Resource type | Condition key | Associated operation |
|---|---|---|---|---|
| dds:CreateAccount | create | *DBInstance acs:dds:{#regionId}:{#accountId}:dbinstance/{#dbInstanceId} |
| none |
Request parameters
| Parameter | Type | Required | Description | Example |
|---|
| Parameter | Type | Required | Description | Example |
|---|---|---|---|---|
| DBInstanceId | string | Yes | The cluster ID. | dds-uf6e9433e955xxxx |
| AccountName | string | Yes | The name of the database account. The name must be 4 to 16 characters in length. It can contain lowercase letters, digits, and underscores (_). It must start with a lowercase letter. The account is granted read-only permissions. | admin1 |
| AccountPassword | string | Yes | The password of the database account. The password must be 8 to 32 characters in length. It can contain at least three types of the following characters: uppercase letters, lowercase letters, digits, and special characters. Special characters include ! # $ % ^ & * ( ) _ + - = | Test123456! |
| CharacterType | string | No | The type of the account that you want to create. Valid values:
You can set this parameter only to db.
| db |
Response parameters
Examples
Sample success responses
JSONformat
{
"RequestId": "7FEF1BEF-2842-5758-9126-415A297XXXXX"
}Error codes
| HTTP status code | Error code | Error message |
|---|
| HTTP status code | Error code | Error message |
|---|---|---|
| 400 | InvalidAccountName.Malformed | Specified parameter AccountName is not valid. |
| 400 | InvalidAccountPassword.Malformed | Specified parameter AccountPassword is not valid. |
| 400 | InvalidAccountDescription.Malformed | Specified parameter AccountDescription is not valid. |
| 404 | AccountLimitExceeded | AccountQuotaExceeded: Exceeding the allowed amount of account. |
For a list of error codes, visit the Service error codes.
Change history
| Change time | Summary of changes | Operation |
|---|
| Change time | Summary of changes | Operation |
|---|---|---|
| 2025-01-09 | The Error code has changed. The request parameters of the API has changed | View Change Details |
