juju revoke¶
See also: grant
Summary¶
Revokes access from a Juju user for a model, controller, or application offer.
Usage¶
juju revoke [options] <user name> <permission> [<model name> ... | <offer url> ...]
Options¶
Flag |
Default |
Usage |
|---|---|---|
|
false |
Do not use web browser for authentication |
|
Controller to operate in |
Examples¶
Revoke ‘read’ (and ‘write’) access from user ‘joe’ for model ‘mymodel’:
juju revoke joe read mymodel
Revoke ‘write’ access from user ‘sam’ for models ‘model1’ and ‘model2’:
juju revoke sam write model1 model2
Revoke ‘read’ (and ‘write’) access from user ‘joe’ for application offer ‘fred/prod.hosted-mysql’:
juju revoke joe read fred/prod.hosted-mysql
Revoke ‘consume’ access from user ‘sam’ for models ‘fred/prod.hosted-mysql’ and ‘mary/test.hosted-mysql’:
juju revoke sam consume fred/prod.hosted-mysql mary/test.hosted-mysql
Details¶
By default, the controller is the current controller.
Revoking write access, from a user who has that permission, will leave that user with read access. Revoking read access, however, also revokes write access.
Valid access levels for models are: read write admin
Valid access levels for controllers are: login superuser
Valid access levels for application offers are: read consume admin