Documentation
¶
Index ¶
- Constants
- type LookupRoleAssignmentArgs
- type LookupRoleAssignmentResult
- type PrincipalType
- func (PrincipalType) ElementType() reflect.Type
- func (e PrincipalType) ToStringOutput() pulumi.StringOutput
- func (e PrincipalType) ToStringOutputWithContext(ctx context.Context) pulumi.StringOutput
- func (e PrincipalType) ToStringPtrOutput() pulumi.StringPtrOutput
- func (e PrincipalType) ToStringPtrOutputWithContext(ctx context.Context) pulumi.StringPtrOutput
- type RoleAssignment
- type RoleAssignmentArgs
- type RoleAssignmentInput
- type RoleAssignmentOutput
- type RoleAssignmentState
Constants ¶
View Source
const ( PrincipalTypeUser = PrincipalType("User") PrincipalTypeGroup = PrincipalType("Group") PrincipalTypeServicePrincipal = PrincipalType("ServicePrincipal") PrincipalTypeUnknown = PrincipalType("Unknown") PrincipalTypeDirectoryRoleTemplate = PrincipalType("DirectoryRoleTemplate") PrincipalTypeForeignGroup = PrincipalType("ForeignGroup") PrincipalTypeApplication = PrincipalType("Application") PrincipalTypeMSI = PrincipalType("MSI") PrincipalTypeDirectoryObjectOrGroup = PrincipalType("DirectoryObjectOrGroup") PrincipalTypeEveryone = PrincipalType("Everyone") )
Variables ¶
This section is empty.
Functions ¶
This section is empty.
Types ¶
type LookupRoleAssignmentResult ¶
type LookupRoleAssignmentResult struct {
// The Delegation flag for the role assignment
CanDelegate *bool `pulumi:"canDelegate"`
// The conditions on the role assignment. This limits the resources it can be assigned to. e.g.: @Resource[Microsoft.Storage/storageAccounts/blobServices/containers:ContainerName] StringEqualsIgnoreCase 'foo_storage_container'
Condition *string `pulumi:"condition"`
// Version of the condition. Currently accepted value is '2.0'
ConditionVersion *string `pulumi:"conditionVersion"`
// Id of the user who created the assignment
CreatedBy *string `pulumi:"createdBy"`
// Time it was created
CreatedOn *string `pulumi:"createdOn"`
// Id of the delegated managed identity resource
DelegatedManagedIdentityResourceId *string `pulumi:"delegatedManagedIdentityResourceId"`
// Description of role assignment
Description *string `pulumi:"description"`
// The role assignment ID.
Id string `pulumi:"id"`
// The role assignment name.
Name string `pulumi:"name"`
// The principal ID.
PrincipalId *string `pulumi:"principalId"`
// The principal type of the assigned principal ID.
PrincipalType *string `pulumi:"principalType"`
// The role definition ID.
RoleDefinitionId *string `pulumi:"roleDefinitionId"`
// The role assignment scope.
Scope *string `pulumi:"scope"`
// The role assignment type.
Type string `pulumi:"type"`
// Id of the user who updated the assignment
UpdatedBy *string `pulumi:"updatedBy"`
// Time it was updated
UpdatedOn *string `pulumi:"updatedOn"`
}
Role Assignments
func LookupRoleAssignment ¶
func LookupRoleAssignment(ctx *pulumi.Context, args *LookupRoleAssignmentArgs, opts ...pulumi.InvokeOption) (*LookupRoleAssignmentResult, error)
type PrincipalType ¶ added in v0.3.1
The principal type of the assigned principal ID.
func (PrincipalType) ElementType ¶ added in v0.3.1
func (PrincipalType) ElementType() reflect.Type
func (PrincipalType) ToStringOutput ¶ added in v0.3.1
func (e PrincipalType) ToStringOutput() pulumi.StringOutput
func (PrincipalType) ToStringOutputWithContext ¶ added in v0.3.1
func (e PrincipalType) ToStringOutputWithContext(ctx context.Context) pulumi.StringOutput
func (PrincipalType) ToStringPtrOutput ¶ added in v0.3.1
func (e PrincipalType) ToStringPtrOutput() pulumi.StringPtrOutput
func (PrincipalType) ToStringPtrOutputWithContext ¶ added in v0.3.1
func (e PrincipalType) ToStringPtrOutputWithContext(ctx context.Context) pulumi.StringPtrOutput
type RoleAssignment ¶
type RoleAssignment struct {
pulumi.CustomResourceState
// The Delegation flag for the role assignment
CanDelegate pulumi.BoolPtrOutput `pulumi:"canDelegate"`
// The conditions on the role assignment. This limits the resources it can be assigned to. e.g.: @Resource[Microsoft.Storage/storageAccounts/blobServices/containers:ContainerName] StringEqualsIgnoreCase 'foo_storage_container'
Condition pulumi.StringPtrOutput `pulumi:"condition"`
// Version of the condition. Currently accepted value is '2.0'
ConditionVersion pulumi.StringPtrOutput `pulumi:"conditionVersion"`
// Id of the user who created the assignment
CreatedBy pulumi.StringPtrOutput `pulumi:"createdBy"`
// Time it was created
CreatedOn pulumi.StringPtrOutput `pulumi:"createdOn"`
// Id of the delegated managed identity resource
DelegatedManagedIdentityResourceId pulumi.StringPtrOutput `pulumi:"delegatedManagedIdentityResourceId"`
// Description of role assignment
Description pulumi.StringPtrOutput `pulumi:"description"`
// The role assignment name.
Name pulumi.StringOutput `pulumi:"name"`
// The principal ID.
PrincipalId pulumi.StringPtrOutput `pulumi:"principalId"`
// The principal type of the assigned principal ID.
PrincipalType pulumi.StringPtrOutput `pulumi:"principalType"`
// The role definition ID.
RoleDefinitionId pulumi.StringPtrOutput `pulumi:"roleDefinitionId"`
// The role assignment scope.
Scope pulumi.StringPtrOutput `pulumi:"scope"`
// The role assignment type.
Type pulumi.StringOutput `pulumi:"type"`
// Id of the user who updated the assignment
UpdatedBy pulumi.StringPtrOutput `pulumi:"updatedBy"`
// Time it was updated
UpdatedOn pulumi.StringPtrOutput `pulumi:"updatedOn"`
}
Role Assignments
func GetRoleAssignment ¶
func GetRoleAssignment(ctx *pulumi.Context, name string, id pulumi.IDInput, state *RoleAssignmentState, opts ...pulumi.ResourceOption) (*RoleAssignment, error)
GetRoleAssignment gets an existing RoleAssignment resource's state with the given name, ID, and optional state properties that are used to uniquely qualify the lookup (nil if not required).
func NewRoleAssignment ¶
func NewRoleAssignment(ctx *pulumi.Context, name string, args *RoleAssignmentArgs, opts ...pulumi.ResourceOption) (*RoleAssignment, error)
NewRoleAssignment registers a new resource with the given unique name, arguments, and options.
func (*RoleAssignment) ElementType ¶ added in v0.2.6
func (*RoleAssignment) ElementType() reflect.Type
func (*RoleAssignment) ToRoleAssignmentOutput ¶ added in v0.2.6
func (i *RoleAssignment) ToRoleAssignmentOutput() RoleAssignmentOutput
func (*RoleAssignment) ToRoleAssignmentOutputWithContext ¶ added in v0.2.6
func (i *RoleAssignment) ToRoleAssignmentOutputWithContext(ctx context.Context) RoleAssignmentOutput
type RoleAssignmentArgs ¶
type RoleAssignmentArgs struct {
// The delegation flag used for creating a role assignment
CanDelegate pulumi.BoolPtrInput
// The conditions on the role assignment. This limits the resources it can be assigned to. e.g.: @Resource[Microsoft.Storage/storageAccounts/blobServices/containers:ContainerName] StringEqualsIgnoreCase 'foo_storage_container'
Condition pulumi.StringPtrInput
// Version of the condition. Currently accepted value is '2.0'
ConditionVersion pulumi.StringPtrInput
// Description of role assignment
Description pulumi.StringPtrInput
// The principal ID assigned to the role. This maps to the ID inside the Active Directory. It can point to a user, service principal, or security group.
PrincipalId pulumi.StringInput
// The principal type of the assigned principal ID.
PrincipalType pulumi.StringPtrInput
// The name of the role assignment to create. It can be any valid GUID.
RoleAssignmentName pulumi.StringInput
// The role definition ID used in the role assignment.
RoleDefinitionId pulumi.StringInput
// The scope of the role assignment to create. The scope can be any REST resource instance. For example, use '/subscriptions/{subscription-id}/' for a subscription, '/subscriptions/{subscription-id}/resourceGroups/{resource-group-name}' for a resource group, and '/subscriptions/{subscription-id}/resourceGroups/{resource-group-name}/providers/{resource-provider}/{resource-type}/{resource-name}' for a resource.
Scope pulumi.StringInput
}
The set of arguments for constructing a RoleAssignment resource.
func (RoleAssignmentArgs) ElementType ¶
func (RoleAssignmentArgs) ElementType() reflect.Type
type RoleAssignmentInput ¶ added in v0.2.6
type RoleAssignmentInput interface {
pulumi.Input
ToRoleAssignmentOutput() RoleAssignmentOutput
ToRoleAssignmentOutputWithContext(ctx context.Context) RoleAssignmentOutput
}
type RoleAssignmentOutput ¶ added in v0.2.6
type RoleAssignmentOutput struct {
*pulumi.OutputState
}
func (RoleAssignmentOutput) ElementType ¶ added in v0.2.6
func (RoleAssignmentOutput) ElementType() reflect.Type
func (RoleAssignmentOutput) ToRoleAssignmentOutput ¶ added in v0.2.6
func (o RoleAssignmentOutput) ToRoleAssignmentOutput() RoleAssignmentOutput
func (RoleAssignmentOutput) ToRoleAssignmentOutputWithContext ¶ added in v0.2.6
func (o RoleAssignmentOutput) ToRoleAssignmentOutputWithContext(ctx context.Context) RoleAssignmentOutput
type RoleAssignmentState ¶
type RoleAssignmentState struct {
// The Delegation flag for the role assignment
CanDelegate pulumi.BoolPtrInput
// The conditions on the role assignment. This limits the resources it can be assigned to. e.g.: @Resource[Microsoft.Storage/storageAccounts/blobServices/containers:ContainerName] StringEqualsIgnoreCase 'foo_storage_container'
Condition pulumi.StringPtrInput
// Version of the condition. Currently accepted value is '2.0'
ConditionVersion pulumi.StringPtrInput
// Id of the user who created the assignment
CreatedBy pulumi.StringPtrInput
// Time it was created
CreatedOn pulumi.StringPtrInput
// Id of the delegated managed identity resource
DelegatedManagedIdentityResourceId pulumi.StringPtrInput
// Description of role assignment
Description pulumi.StringPtrInput
// The role assignment name.
Name pulumi.StringPtrInput
// The principal ID.
PrincipalId pulumi.StringPtrInput
// The principal type of the assigned principal ID.
PrincipalType pulumi.StringPtrInput
// The role definition ID.
RoleDefinitionId pulumi.StringPtrInput
// The role assignment scope.
Scope pulumi.StringPtrInput
// The role assignment type.
Type pulumi.StringPtrInput
// Id of the user who updated the assignment
UpdatedBy pulumi.StringPtrInput
// Time it was updated
UpdatedOn pulumi.StringPtrInput
}
func (RoleAssignmentState) ElementType ¶
func (RoleAssignmentState) ElementType() reflect.Type
Source Files
Click to show internal directories.
Click to hide internal directories.