Docs
PackagesWe recommend using Azure Native.
Azure Classic v5.81.0 published on Monday, Jun 24, 2024 by Pulumi
azure.keyvault.getManagedHardwareSecurityModuleRoleDefinition
Explore with Pulumi AI
Use this data source to access information about an existing KeyVault Role Definition.
Example Usage
import * as pulumi from "@pulumi/pulumi";
import * as azure from "@pulumi/azure";
const example = azure.keyvault.getManagedHardwareSecurityModuleRoleDefinition({
vaultBaseUrl: test.hsmUri,
name: "21dbd100-6940-42c2-9190-5d6cb909625b",
});
export const id = example.then(example => example.resourceManagerId);
import pulumi
import pulumi_azure as azure
example = azure.keyvault.get_managed_hardware_security_module_role_definition(vault_base_url=test["hsmUri"],
name="21dbd100-6940-42c2-9190-5d6cb909625b")
pulumi.export("id", example.resource_manager_id)
package main
import (
"github.com/pulumi/pulumi-azure/sdk/v5/go/azure/keyvault"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
example, err := keyvault.LookupManagedHardwareSecurityModuleRoleDefinition(ctx, &keyvault.LookupManagedHardwareSecurityModuleRoleDefinitionArgs{
VaultBaseUrl: pulumi.StringRef(test.HsmUri),
Name: "21dbd100-6940-42c2-9190-5d6cb909625b",
}, nil)
if err != nil {
return err
}
ctx.Export("id", example.ResourceManagerId)
return nil
})
}
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using Azure = Pulumi.Azure;
return await Deployment.RunAsync(() =>
{
var example = Azure.KeyVault.GetManagedHardwareSecurityModuleRoleDefinition.Invoke(new()
{
VaultBaseUrl = test.HsmUri,
Name = "21dbd100-6940-42c2-9190-5d6cb909625b",
});
return new Dictionary<string, object?>
{
["id"] = example.Apply(getManagedHardwareSecurityModuleRoleDefinitionResult => getManagedHardwareSecurityModuleRoleDefinitionResult.ResourceManagerId),
};
});
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.azure.keyvault.KeyvaultFunctions;
import com.pulumi.azure.keyvault.inputs.GetManagedHardwareSecurityModuleRoleDefinitionArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
final var example = KeyvaultFunctions.getManagedHardwareSecurityModuleRoleDefinition(GetManagedHardwareSecurityModuleRoleDefinitionArgs.builder()
.vaultBaseUrl(test.hsmUri())
.name("21dbd100-6940-42c2-9190-5d6cb909625b")
.build());
ctx.export("id", example.applyValue(getManagedHardwareSecurityModuleRoleDefinitionResult -> getManagedHardwareSecurityModuleRoleDefinitionResult.resourceManagerId()));
}
}
variables:
example:
fn::invoke:
Function: azure:keyvault:getManagedHardwareSecurityModuleRoleDefinition
Arguments:
vaultBaseUrl: ${test.hsmUri}
name: 21dbd100-6940-42c2-9190-5d6cb909625b
outputs:
id: ${example.resourceManagerId}
Using getManagedHardwareSecurityModuleRoleDefinition
Two invocation forms are available. The direct form accepts plain arguments and either blocks until the result value is available, or returns a Promise-wrapped result. The output form accepts Input-wrapped arguments and returns an Output-wrapped result.
function getManagedHardwareSecurityModuleRoleDefinition(args: GetManagedHardwareSecurityModuleRoleDefinitionArgs, opts?: InvokeOptions): Promise<GetManagedHardwareSecurityModuleRoleDefinitionResult>
function getManagedHardwareSecurityModuleRoleDefinitionOutput(args: GetManagedHardwareSecurityModuleRoleDefinitionOutputArgs, opts?: InvokeOptions): Output<GetManagedHardwareSecurityModuleRoleDefinitionResult>def get_managed_hardware_security_module_role_definition(managed_hsm_id: Optional[str] = None,
name: Optional[str] = None,
vault_base_url: Optional[str] = None,
opts: Optional[InvokeOptions] = None) -> GetManagedHardwareSecurityModuleRoleDefinitionResult
def get_managed_hardware_security_module_role_definition_output(managed_hsm_id: Optional[pulumi.Input[str]] = None,
name: Optional[pulumi.Input[str]] = None,
vault_base_url: Optional[pulumi.Input[str]] = None,
opts: Optional[InvokeOptions] = None) -> Output[GetManagedHardwareSecurityModuleRoleDefinitionResult]func LookupManagedHardwareSecurityModuleRoleDefinition(ctx *Context, args *LookupManagedHardwareSecurityModuleRoleDefinitionArgs, opts ...InvokeOption) (*LookupManagedHardwareSecurityModuleRoleDefinitionResult, error)
func LookupManagedHardwareSecurityModuleRoleDefinitionOutput(ctx *Context, args *LookupManagedHardwareSecurityModuleRoleDefinitionOutputArgs, opts ...InvokeOption) LookupManagedHardwareSecurityModuleRoleDefinitionResultOutput> Note: This function is named LookupManagedHardwareSecurityModuleRoleDefinition in the Go SDK.
public static class GetManagedHardwareSecurityModuleRoleDefinition
{
public static Task<GetManagedHardwareSecurityModuleRoleDefinitionResult> InvokeAsync(GetManagedHardwareSecurityModuleRoleDefinitionArgs args, InvokeOptions? opts = null)
public static Output<GetManagedHardwareSecurityModuleRoleDefinitionResult> Invoke(GetManagedHardwareSecurityModuleRoleDefinitionInvokeArgs args, InvokeOptions? opts = null)
}public static CompletableFuture<GetManagedHardwareSecurityModuleRoleDefinitionResult> getManagedHardwareSecurityModuleRoleDefinition(GetManagedHardwareSecurityModuleRoleDefinitionArgs args, InvokeOptions options)
// Output-based functions aren't available in Java yet
fn::invoke:
function: azure:keyvault/getManagedHardwareSecurityModuleRoleDefinition:getManagedHardwareSecurityModuleRoleDefinition
arguments:
# arguments dictionaryThe following arguments are supported:
- Name string
- The name in UUID notation of this KeyVault Role Definition.
- Managed
Hsm stringId - Vault
Base stringUrl - Specify the base URL of the Managed HSM resource.
- Name string
- The name in UUID notation of this KeyVault Role Definition.
- Managed
Hsm stringId - Vault
Base stringUrl - Specify the base URL of the Managed HSM resource.
- name String
- The name in UUID notation of this KeyVault Role Definition.
- managed
Hsm StringId - vault
Base StringUrl - Specify the base URL of the Managed HSM resource.
- name string
- The name in UUID notation of this KeyVault Role Definition.
- managed
Hsm stringId - vault
Base stringUrl - Specify the base URL of the Managed HSM resource.
- name str
- The name in UUID notation of this KeyVault Role Definition.
- managed_
hsm_ strid - vault_
base_ strurl - Specify the base URL of the Managed HSM resource.
- name String
- The name in UUID notation of this KeyVault Role Definition.
- managed
Hsm StringId - vault
Base StringUrl - Specify the base URL of the Managed HSM resource.
getManagedHardwareSecurityModuleRoleDefinition Result
The following output properties are available:
- Assignable
Scopes List<string> - A list of assignable role scope. Possible values are
/and/keys. - Description string
- A text description of this role definition.
- Id string
- The provider-assigned unique ID for this managed resource.
- Managed
Hsm stringId - Name string
- Permissions
List<Get
Managed Hardware Security Module Role Definition Permission> - A
permissionblock as defined below. - Resource
Manager stringId - The ID of the role definition resource without base url.
- Role
Name string - The role name of the role definition.
- Role
Type string - The type of the role definition. Possible values are
AKVBuiltInRoleandCustomRole. - Vault
Base stringUrl
- Assignable
Scopes []string - A list of assignable role scope. Possible values are
/and/keys. - Description string
- A text description of this role definition.
- Id string
- The provider-assigned unique ID for this managed resource.
- Managed
Hsm stringId - Name string
- Permissions
[]Get
Managed Hardware Security Module Role Definition Permission - A
permissionblock as defined below. - Resource
Manager stringId - The ID of the role definition resource without base url.
- Role
Name string - The role name of the role definition.
- Role
Type string - The type of the role definition. Possible values are
AKVBuiltInRoleandCustomRole. - Vault
Base stringUrl
- assignable
Scopes List<String> - A list of assignable role scope. Possible values are
/and/keys. - description String
- A text description of this role definition.
- id String
- The provider-assigned unique ID for this managed resource.
- managed
Hsm StringId - name String
- permissions
List<Get
Managed Hardware Security Module Role Definition Permission> - A
permissionblock as defined below. - resource
Manager StringId - The ID of the role definition resource without base url.
- role
Name String - The role name of the role definition.
- role
Type String - The type of the role definition. Possible values are
AKVBuiltInRoleandCustomRole. - vault
Base StringUrl
- assignable
Scopes string[] - A list of assignable role scope. Possible values are
/and/keys. - description string
- A text description of this role definition.
- id string
- The provider-assigned unique ID for this managed resource.
- managed
Hsm stringId - name string
- permissions
Get
Managed Hardware Security Module Role Definition Permission[] - A
permissionblock as defined below. - resource
Manager stringId - The ID of the role definition resource without base url.
- role
Name string - The role name of the role definition.
- role
Type string - The type of the role definition. Possible values are
AKVBuiltInRoleandCustomRole. - vault
Base stringUrl
- assignable_
scopes Sequence[str] - A list of assignable role scope. Possible values are
/and/keys. - description str
- A text description of this role definition.
- id str
- The provider-assigned unique ID for this managed resource.
- managed_
hsm_ strid - name str
- permissions
Sequence[Get
Managed Hardware Security Module Role Definition Permission] - A
permissionblock as defined below. - resource_
manager_ strid - The ID of the role definition resource without base url.
- role_
name str - The role name of the role definition.
- role_
type str - The type of the role definition. Possible values are
AKVBuiltInRoleandCustomRole. - vault_
base_ strurl
- assignable
Scopes List<String> - A list of assignable role scope. Possible values are
/and/keys. - description String
- A text description of this role definition.
- id String
- The provider-assigned unique ID for this managed resource.
- managed
Hsm StringId - name String
- permissions List<Property Map>
- A
permissionblock as defined below. - resource
Manager StringId - The ID of the role definition resource without base url.
- role
Name String - The role name of the role definition.
- role
Type String - The type of the role definition. Possible values are
AKVBuiltInRoleandCustomRole. - vault
Base StringUrl
Supporting Types
GetManagedHardwareSecurityModuleRoleDefinitionPermission
- Actions List<string>
- A list of action permission granted.
- Data
Actions List<string> - A list of data action permission granted.
- Not
Actions List<string> - A list of action permission excluded (but not denied).
- Not
Data List<string>Actions - (Optional) A list of data action permission granted.
- Actions []string
- A list of action permission granted.
- Data
Actions []string - A list of data action permission granted.
- Not
Actions []string - A list of action permission excluded (but not denied).
- Not
Data []stringActions - (Optional) A list of data action permission granted.
- actions List<String>
- A list of action permission granted.
- data
Actions List<String> - A list of data action permission granted.
- not
Actions List<String> - A list of action permission excluded (but not denied).
- not
Data List<String>Actions - (Optional) A list of data action permission granted.
- actions string[]
- A list of action permission granted.
- data
Actions string[] - A list of data action permission granted.
- not
Actions string[] - A list of action permission excluded (but not denied).
- not
Data string[]Actions - (Optional) A list of data action permission granted.
- actions Sequence[str]
- A list of action permission granted.
- data_
actions Sequence[str] - A list of data action permission granted.
- not_
actions Sequence[str] - A list of action permission excluded (but not denied).
- not_
data_ Sequence[str]actions - (Optional) A list of data action permission granted.
- actions List<String>
- A list of action permission granted.
- data
Actions List<String> - A list of data action permission granted.
- not
Actions List<String> - A list of action permission excluded (but not denied).
- not
Data List<String>Actions - (Optional) A list of data action permission granted.
Package Details
- Repository
- Azure Classic pulumi/pulumi-azure
- License
- Apache-2.0
- Notes
- This Pulumi package is based on the
azurermTerraform Provider.