RoleAssignment Class
Role Assignments.
Variables are only populated by the server, and will be ignored when sending a request.
Constructor
RoleAssignment(*, role_definition_id: str | None = None, principal_id: str | None = None, principal_type: str | _models.PrincipalType = 'User', description: str | None = None, condition: str | None = None, condition_version: str | None = None, delegated_managed_identity_resource_id: str | None = None, **kwargs: Any)Keyword-Only Parameters
| Name | Description |
|---|---|
|
role_definition_id
|
The role definition ID. Default value: None
|
|
principal_id
|
The principal ID. Default value: None
|
|
principal_type
|
str or
PrincipalType
The principal type of the assigned principal ID. Known values are: "User", "Group", "ServicePrincipal", "ForeignGroup", and "Device". Default value: User
|
|
description
|
Description of role assignment. Default value: None
|
|
condition
|
The conditions on the role assignment. This limits the resources it can be assigned to. e.g.: @Resource[Microsoft.Storage/storageAccounts/blobServices/containers:ContainerName] StringEqualsIgnoreCase 'foo_storage_container'. Default value: None
|
|
condition_version
|
Version of the condition. Currently the only accepted value is '2.0'. Default value: None
|
|
delegated_managed_identity_resource_id
|
Id of the delegated managed identity resource. Default value: None
|
Variables
| Name | Description |
|---|---|
|
id
|
The role assignment ID. |
|
name
|
The role assignment name. |
|
type
|
The role assignment type. |
|
scope
|
The role assignment scope. |
|
role_definition_id
|
The role definition ID. |
|
principal_id
|
The principal ID. |
|
principal_type
|
str or
PrincipalType
The principal type of the assigned principal ID. Known values are: "User", "Group", "ServicePrincipal", "ForeignGroup", and "Device". |
|
description
|
Description of role assignment. |
|
condition
|
The conditions on the role assignment. This limits the resources it can be assigned to. e.g.: @Resource[Microsoft.Storage/storageAccounts/blobServices/containers:ContainerName] StringEqualsIgnoreCase 'foo_storage_container'. |
|
condition_version
|
Version of the condition. Currently the only accepted value is '2.0'. |
|
created_on
|
Time it was created. |
|
updated_on
|
Time it was updated. |
|
created_by
|
Id of the user who created the assignment. |
|
updated_by
|
Id of the user who updated the assignment. |
|
delegated_managed_identity_resource_id
|
Id of the delegated managed identity resource. |
