1. Packages
  2. Azure Native v1
  3. API Docs
  4. authorization
  5. RoleDefinition
These are the docs for Azure Native v1. We recommenend using the latest version, Azure Native v2.
Azure Native v1 v1.104.0 published on Thursday, Jul 6, 2023 by Pulumi

azure-native.authorization.RoleDefinition

Explore with Pulumi AI

azure-native-v1 logo
These are the docs for Azure Native v1. We recommenend using the latest version, Azure Native v2.
Azure Native v1 v1.104.0 published on Thursday, Jul 6, 2023 by Pulumi

    Role definition. API Version: 2018-01-01-preview.

    Example Usage

    Create role definition

    using System.Collections.Generic;
    using System.Linq;
    using Pulumi;
    using AzureNative = Pulumi.AzureNative;
    
    return await Deployment.RunAsync(() => 
    {
        var roleDefinition = new AzureNative.Authorization.RoleDefinition("roleDefinition", new()
        {
            RoleDefinitionId = "roleDefinitionId",
            Scope = "scope",
        });
    
    });
    
    package main
    
    import (
    	authorization "github.com/pulumi/pulumi-azure-native-sdk/authorization"
    	"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
    )
    
    func main() {
    	pulumi.Run(func(ctx *pulumi.Context) error {
    		_, err := authorization.NewRoleDefinition(ctx, "roleDefinition", &authorization.RoleDefinitionArgs{
    			RoleDefinitionId: pulumi.String("roleDefinitionId"),
    			Scope:            pulumi.String("scope"),
    		})
    		if err != nil {
    			return err
    		}
    		return nil
    	})
    }
    
    package generated_program;
    
    import com.pulumi.Context;
    import com.pulumi.Pulumi;
    import com.pulumi.core.Output;
    import com.pulumi.azurenative.authorization.RoleDefinition;
    import com.pulumi.azurenative.authorization.RoleDefinitionArgs;
    import java.util.List;
    import java.util.ArrayList;
    import java.util.Map;
    import java.io.File;
    import java.nio.file.Files;
    import java.nio.file.Paths;
    
    public class App {
        public static void main(String[] args) {
            Pulumi.run(App::stack);
        }
    
        public static void stack(Context ctx) {
            var roleDefinition = new RoleDefinition("roleDefinition", RoleDefinitionArgs.builder()        
                .roleDefinitionId("roleDefinitionId")
                .scope("scope")
                .build());
    
        }
    }
    
    import pulumi
    import pulumi_azure_native as azure_native
    
    role_definition = azure_native.authorization.RoleDefinition("roleDefinition",
        role_definition_id="roleDefinitionId",
        scope="scope")
    
    import * as pulumi from "@pulumi/pulumi";
    import * as azure_native from "@pulumi/azure-native";
    
    const roleDefinition = new azure_native.authorization.RoleDefinition("roleDefinition", {
        roleDefinitionId: "roleDefinitionId",
        scope: "scope",
    });
    
    resources:
      roleDefinition:
        type: azure-native:authorization:RoleDefinition
        properties:
          roleDefinitionId: roleDefinitionId
          scope: scope
    

    Create RoleDefinition Resource

    Resources are created with functions called constructors. To learn more about declaring and configuring resources, see Resources.

    Constructor syntax

    new RoleDefinition(name: string, args: RoleDefinitionArgs, opts?: CustomResourceOptions);
    @overload
    def RoleDefinition(resource_name: str,
                       args: RoleDefinitionArgs,
                       opts: Optional[ResourceOptions] = None)
    
    @overload
    def RoleDefinition(resource_name: str,
                       opts: Optional[ResourceOptions] = None,
                       scope: Optional[str] = None,
                       assignable_scopes: Optional[Sequence[str]] = None,
                       description: Optional[str] = None,
                       permissions: Optional[Sequence[PermissionArgs]] = None,
                       role_definition_id: Optional[str] = None,
                       role_name: Optional[str] = None,
                       role_type: Optional[str] = None)
    func NewRoleDefinition(ctx *Context, name string, args RoleDefinitionArgs, opts ...ResourceOption) (*RoleDefinition, error)
    public RoleDefinition(string name, RoleDefinitionArgs args, CustomResourceOptions? opts = null)
    public RoleDefinition(String name, RoleDefinitionArgs args)
    public RoleDefinition(String name, RoleDefinitionArgs args, CustomResourceOptions options)
    
    type: azure-native:authorization:RoleDefinition
    properties: # The arguments to resource properties.
    options: # Bag of options to control resource's behavior.
    
    

    Parameters

    name string
    The unique name of the resource.
    args RoleDefinitionArgs
    The arguments to resource properties.
    opts CustomResourceOptions
    Bag of options to control resource's behavior.
    resource_name str
    The unique name of the resource.
    args RoleDefinitionArgs
    The arguments to resource properties.
    opts ResourceOptions
    Bag of options to control resource's behavior.
    ctx Context
    Context object for the current deployment.
    name string
    The unique name of the resource.
    args RoleDefinitionArgs
    The arguments to resource properties.
    opts ResourceOption
    Bag of options to control resource's behavior.
    name string
    The unique name of the resource.
    args RoleDefinitionArgs
    The arguments to resource properties.
    opts CustomResourceOptions
    Bag of options to control resource's behavior.
    name String
    The unique name of the resource.
    args RoleDefinitionArgs
    The arguments to resource properties.
    options CustomResourceOptions
    Bag of options to control resource's behavior.

    Constructor example

    The following reference example uses placeholder values for all input properties.

    var roleDefinitionResource = new AzureNative.Authorization.RoleDefinition("roleDefinitionResource", new()
    {
        Scope = "string",
        AssignableScopes = new[]
        {
            "string",
        },
        Description = "string",
        Permissions = new[]
        {
            
            {
                { "actions", new[]
                {
                    "string",
                } },
                { "dataActions", new[]
                {
                    "string",
                } },
                { "notActions", new[]
                {
                    "string",
                } },
                { "notDataActions", new[]
                {
                    "string",
                } },
            },
        },
        RoleDefinitionId = "string",
        RoleName = "string",
        RoleType = "string",
    });
    
    example, err := authorization.NewRoleDefinition(ctx, "roleDefinitionResource", &authorization.RoleDefinitionArgs{
    	Scope: "string",
    	AssignableScopes: []string{
    		"string",
    	},
    	Description: "string",
    	Permissions: []map[string]interface{}{
    		map[string]interface{}{
    			"actions": []string{
    				"string",
    			},
    			"dataActions": []string{
    				"string",
    			},
    			"notActions": []string{
    				"string",
    			},
    			"notDataActions": []string{
    				"string",
    			},
    		},
    	},
    	RoleDefinitionId: "string",
    	RoleName:         "string",
    	RoleType:         "string",
    })
    
    var roleDefinitionResource = new RoleDefinition("roleDefinitionResource", RoleDefinitionArgs.builder()
        .scope("string")
        .assignableScopes("string")
        .description("string")
        .permissions(%!v(PANIC=Format method: runtime error: invalid memory address or nil pointer dereference))
        .roleDefinitionId("string")
        .roleName("string")
        .roleType("string")
        .build());
    
    role_definition_resource = azure_native.authorization.RoleDefinition("roleDefinitionResource",
        scope=string,
        assignable_scopes=[string],
        description=string,
        permissions=[{
            actions: [string],
            dataActions: [string],
            notActions: [string],
            notDataActions: [string],
        }],
        role_definition_id=string,
        role_name=string,
        role_type=string)
    
    const roleDefinitionResource = new azure_native.authorization.RoleDefinition("roleDefinitionResource", {
        scope: "string",
        assignableScopes: ["string"],
        description: "string",
        permissions: [{
            actions: ["string"],
            dataActions: ["string"],
            notActions: ["string"],
            notDataActions: ["string"],
        }],
        roleDefinitionId: "string",
        roleName: "string",
        roleType: "string",
    });
    
    type: azure-native:authorization:RoleDefinition
    properties:
        assignableScopes:
            - string
        description: string
        permissions:
            - actions:
                - string
              dataActions:
                - string
              notActions:
                - string
              notDataActions:
                - string
        roleDefinitionId: string
        roleName: string
        roleType: string
        scope: string
    

    RoleDefinition Resource Properties

    To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.

    Inputs

    The RoleDefinition resource accepts the following input properties:

    Scope string
    The scope of the role definition.
    AssignableScopes List<string>
    Role definition assignable scopes.
    Description string
    The role definition description.
    Permissions List<Pulumi.AzureNative.Authorization.Inputs.Permission>
    Role definition permissions.
    RoleDefinitionId string
    The ID of the role definition.
    RoleName string
    The role name.
    RoleType string
    The role type.
    Scope string
    The scope of the role definition.
    AssignableScopes []string
    Role definition assignable scopes.
    Description string
    The role definition description.
    Permissions []PermissionArgs
    Role definition permissions.
    RoleDefinitionId string
    The ID of the role definition.
    RoleName string
    The role name.
    RoleType string
    The role type.
    scope String
    The scope of the role definition.
    assignableScopes List<String>
    Role definition assignable scopes.
    description String
    The role definition description.
    permissions List<Permission>
    Role definition permissions.
    roleDefinitionId String
    The ID of the role definition.
    roleName String
    The role name.
    roleType String
    The role type.
    scope string
    The scope of the role definition.
    assignableScopes string[]
    Role definition assignable scopes.
    description string
    The role definition description.
    permissions Permission[]
    Role definition permissions.
    roleDefinitionId string
    The ID of the role definition.
    roleName string
    The role name.
    roleType string
    The role type.
    scope str
    The scope of the role definition.
    assignable_scopes Sequence[str]
    Role definition assignable scopes.
    description str
    The role definition description.
    permissions Sequence[PermissionArgs]
    Role definition permissions.
    role_definition_id str
    The ID of the role definition.
    role_name str
    The role name.
    role_type str
    The role type.
    scope String
    The scope of the role definition.
    assignableScopes List<String>
    Role definition assignable scopes.
    description String
    The role definition description.
    permissions List<Property Map>
    Role definition permissions.
    roleDefinitionId String
    The ID of the role definition.
    roleName String
    The role name.
    roleType String
    The role type.

    Outputs

    All input properties are implicitly available as output properties. Additionally, the RoleDefinition resource produces the following output properties:

    Id string
    The provider-assigned unique ID for this managed resource.
    Name string
    The role definition name.
    Type string
    The role definition type.
    Id string
    The provider-assigned unique ID for this managed resource.
    Name string
    The role definition name.
    Type string
    The role definition type.
    id String
    The provider-assigned unique ID for this managed resource.
    name String
    The role definition name.
    type String
    The role definition type.
    id string
    The provider-assigned unique ID for this managed resource.
    name string
    The role definition name.
    type string
    The role definition type.
    id str
    The provider-assigned unique ID for this managed resource.
    name str
    The role definition name.
    type str
    The role definition type.
    id String
    The provider-assigned unique ID for this managed resource.
    name String
    The role definition name.
    type String
    The role definition type.

    Supporting Types

    Permission, PermissionArgs

    Actions List<string>
    Allowed actions.
    DataActions List<string>
    Allowed Data actions.
    NotActions List<string>
    Denied actions.
    NotDataActions List<string>
    Denied Data actions.
    Actions []string
    Allowed actions.
    DataActions []string
    Allowed Data actions.
    NotActions []string
    Denied actions.
    NotDataActions []string
    Denied Data actions.
    actions List<String>
    Allowed actions.
    dataActions List<String>
    Allowed Data actions.
    notActions List<String>
    Denied actions.
    notDataActions List<String>
    Denied Data actions.
    actions string[]
    Allowed actions.
    dataActions string[]
    Allowed Data actions.
    notActions string[]
    Denied actions.
    notDataActions string[]
    Denied Data actions.
    actions Sequence[str]
    Allowed actions.
    data_actions Sequence[str]
    Allowed Data actions.
    not_actions Sequence[str]
    Denied actions.
    not_data_actions Sequence[str]
    Denied Data actions.
    actions List<String>
    Allowed actions.
    dataActions List<String>
    Allowed Data actions.
    notActions List<String>
    Denied actions.
    notDataActions List<String>
    Denied Data actions.

    PermissionResponse, PermissionResponseArgs

    Actions List<string>
    Allowed actions.
    DataActions List<string>
    Allowed Data actions.
    NotActions List<string>
    Denied actions.
    NotDataActions List<string>
    Denied Data actions.
    Actions []string
    Allowed actions.
    DataActions []string
    Allowed Data actions.
    NotActions []string
    Denied actions.
    NotDataActions []string
    Denied Data actions.
    actions List<String>
    Allowed actions.
    dataActions List<String>
    Allowed Data actions.
    notActions List<String>
    Denied actions.
    notDataActions List<String>
    Denied Data actions.
    actions string[]
    Allowed actions.
    dataActions string[]
    Allowed Data actions.
    notActions string[]
    Denied actions.
    notDataActions string[]
    Denied Data actions.
    actions Sequence[str]
    Allowed actions.
    data_actions Sequence[str]
    Allowed Data actions.
    not_actions Sequence[str]
    Denied actions.
    not_data_actions Sequence[str]
    Denied Data actions.
    actions List<String>
    Allowed actions.
    dataActions List<String>
    Allowed Data actions.
    notActions List<String>
    Denied actions.
    notDataActions List<String>
    Denied Data actions.

    Import

    An existing resource can be imported using its type token, name, and identifier, e.g.

    $ pulumi import azure-native:authorization:RoleDefinition roleDefinitionId /subscriptions/subID/providers/Microsoft.Authorization/roleDefinitions/roleDefinitionId 
    

    To learn more about importing existing cloud resources, see Importing resources.

    Package Details

    Repository
    azure-native-v1 pulumi/pulumi-azure-native
    License
    Apache-2.0
    azure-native-v1 logo
    These are the docs for Azure Native v1. We recommenend using the latest version, Azure Native v2.
    Azure Native v1 v1.104.0 published on Thursday, Jul 6, 2023 by Pulumi