I want to use the token auth API to access puppetdb but our documentation is vague on what permissions are required:
Note: The token the user is for must have the correct permissions for viewing or editting node data depending on the operation.
What permissions/operations? We need to be specific
- The page doesn't give enough information for customers to perform the task in-hand
- The easiest way to figure out what permissions to use is to request them using the rbac web ui and then capture the REST requests being sent to the service, eg with firebug
Capturing traffic/probing the GUI will reveal that two levels of access are available - read and write: