Docs Home
This is the latest version of Azure Native. Use the Azure Native v1 docs if using the v1 version of this package.
Azure Native v2.89.1 published on Sunday, Mar 2, 2025 by Pulumi
azure-native.authorization.getRoleDefinition
Explore with Pulumi AI
This is the latest version of Azure Native. Use the Azure Native v1 docs if using the v1 version of this package.
Azure Native v2.89.1 published on Sunday, Mar 2, 2025 by Pulumi
Get role definition by ID (GUID). Azure REST API version: 2022-05-01-preview.
Using getRoleDefinition
Two invocation forms are available. The direct form accepts plain arguments and either blocks until the result value is available, or returns a Promise-wrapped result. The output form accepts Input-wrapped arguments and returns an Output-wrapped result.
function getRoleDefinition(args: GetRoleDefinitionArgs, opts?: InvokeOptions): Promise<GetRoleDefinitionResult>
function getRoleDefinitionOutput(args: GetRoleDefinitionOutputArgs, opts?: InvokeOptions): Output<GetRoleDefinitionResult>def get_role_definition(role_definition_id: Optional[str] = None,
scope: Optional[str] = None,
opts: Optional[InvokeOptions] = None) -> GetRoleDefinitionResult
def get_role_definition_output(role_definition_id: Optional[pulumi.Input[str]] = None,
scope: Optional[pulumi.Input[str]] = None,
opts: Optional[InvokeOptions] = None) -> Output[GetRoleDefinitionResult]func LookupRoleDefinition(ctx *Context, args *LookupRoleDefinitionArgs, opts ...InvokeOption) (*LookupRoleDefinitionResult, error)
func LookupRoleDefinitionOutput(ctx *Context, args *LookupRoleDefinitionOutputArgs, opts ...InvokeOption) LookupRoleDefinitionResultOutput> Note: This function is named LookupRoleDefinition in the Go SDK.
public static class GetRoleDefinition
{
public static Task<GetRoleDefinitionResult> InvokeAsync(GetRoleDefinitionArgs args, InvokeOptions? opts = null)
public static Output<GetRoleDefinitionResult> Invoke(GetRoleDefinitionInvokeArgs args, InvokeOptions? opts = null)
}public static CompletableFuture<GetRoleDefinitionResult> getRoleDefinition(GetRoleDefinitionArgs args, InvokeOptions options)
public static Output<GetRoleDefinitionResult> getRoleDefinition(GetRoleDefinitionArgs args, InvokeOptions options)
fn::invoke:
function: azure-native:authorization:getRoleDefinition
arguments:
# arguments dictionaryThe following arguments are supported:
- Role
Definition stringId - The ID of the role definition.
- Scope string
- The scope of the operation or resource. Valid scopes are: subscription (format: '/subscriptions/{subscriptionId}'), resource group (format: '/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}', or resource (format: '/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/{resourceProviderNamespace}/[{parentResourcePath}/]{resourceType}/{resourceName}'
- Role
Definition stringId - The ID of the role definition.
- Scope string
- The scope of the operation or resource. Valid scopes are: subscription (format: '/subscriptions/{subscriptionId}'), resource group (format: '/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}', or resource (format: '/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/{resourceProviderNamespace}/[{parentResourcePath}/]{resourceType}/{resourceName}'
- role
Definition StringId - The ID of the role definition.
- scope String
- The scope of the operation or resource. Valid scopes are: subscription (format: '/subscriptions/{subscriptionId}'), resource group (format: '/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}', or resource (format: '/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/{resourceProviderNamespace}/[{parentResourcePath}/]{resourceType}/{resourceName}'
- role
Definition stringId - The ID of the role definition.
- scope string
- The scope of the operation or resource. Valid scopes are: subscription (format: '/subscriptions/{subscriptionId}'), resource group (format: '/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}', or resource (format: '/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/{resourceProviderNamespace}/[{parentResourcePath}/]{resourceType}/{resourceName}'
- role_
definition_ strid - The ID of the role definition.
- scope str
- The scope of the operation or resource. Valid scopes are: subscription (format: '/subscriptions/{subscriptionId}'), resource group (format: '/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}', or resource (format: '/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/{resourceProviderNamespace}/[{parentResourcePath}/]{resourceType}/{resourceName}'
- role
Definition StringId - The ID of the role definition.
- scope String
- The scope of the operation or resource. Valid scopes are: subscription (format: '/subscriptions/{subscriptionId}'), resource group (format: '/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}', or resource (format: '/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/{resourceProviderNamespace}/[{parentResourcePath}/]{resourceType}/{resourceName}'
getRoleDefinition Result
The following output properties are available:
- Created
By string - Id of the user who created the assignment
- Created
On string - Time it was created
- Id string
- The role definition ID.
- Name string
- The role definition name.
- Type string
- The role definition type.
- Updated
By string - Id of the user who updated the assignment
- Updated
On string - Time it was updated
- Assignable
Scopes List<string> - Role definition assignable scopes.
- Description string
- The role definition description.
- Permissions
List<Pulumi.
Azure Native. Authorization. Outputs. Permission Response> - Role definition permissions.
- Role
Name string - The role name.
- Role
Type string - The role type.
- Created
By string - Id of the user who created the assignment
- Created
On string - Time it was created
- Id string
- The role definition ID.
- Name string
- The role definition name.
- Type string
- The role definition type.
- Updated
By string - Id of the user who updated the assignment
- Updated
On string - Time it was updated
- Assignable
Scopes []string - Role definition assignable scopes.
- Description string
- The role definition description.
- Permissions
[]Permission
Response - Role definition permissions.
- Role
Name string - The role name.
- Role
Type string - The role type.
- created
By String - Id of the user who created the assignment
- created
On String - Time it was created
- id String
- The role definition ID.
- name String
- The role definition name.
- type String
- The role definition type.
- updated
By String - Id of the user who updated the assignment
- updated
On String - Time it was updated
- assignable
Scopes List<String> - Role definition assignable scopes.
- description String
- The role definition description.
- permissions
List<Permission
Response> - Role definition permissions.
- role
Name String - The role name.
- role
Type String - The role type.
- created
By string - Id of the user who created the assignment
- created
On string - Time it was created
- id string
- The role definition ID.
- name string
- The role definition name.
- type string
- The role definition type.
- updated
By string - Id of the user who updated the assignment
- updated
On string - Time it was updated
- assignable
Scopes string[] - Role definition assignable scopes.
- description string
- The role definition description.
- permissions
Permission
Response[] - Role definition permissions.
- role
Name string - The role name.
- role
Type string - The role type.
- created_
by str - Id of the user who created the assignment
- created_
on str - Time it was created
- id str
- The role definition ID.
- name str
- The role definition name.
- type str
- The role definition type.
- updated_
by str - Id of the user who updated the assignment
- updated_
on str - Time it was updated
- assignable_
scopes Sequence[str] - Role definition assignable scopes.
- description str
- The role definition description.
- permissions
Sequence[Permission
Response] - Role definition permissions.
- role_
name str - The role name.
- role_
type str - The role type.
- created
By String - Id of the user who created the assignment
- created
On String - Time it was created
- id String
- The role definition ID.
- name String
- The role definition name.
- type String
- The role definition type.
- updated
By String - Id of the user who updated the assignment
- updated
On String - Time it was updated
- assignable
Scopes List<String> - Role definition assignable scopes.
- description String
- The role definition description.
- permissions List<Property Map>
- Role definition permissions.
- role
Name String - The role name.
- role
Type String - The role type.
Supporting Types
PermissionResponse
- Condition string
- The conditions on the role definition. This limits the resources it can be assigned to. e.g.: @Resource[Microsoft.Storage/storageAccounts/blobServices/containers:ContainerName] StringEqualsIgnoreCase 'foo_storage_container'
- Condition
Version string - Version of the condition. Currently the only accepted value is '2.0'
- Actions List<string>
- Allowed actions.
- Data
Actions List<string> - Allowed Data actions.
- Not
Actions List<string> - Denied actions.
- Not
Data List<string>Actions - Denied Data actions.
- Condition string
- The conditions on the role definition. This limits the resources it can be assigned to. e.g.: @Resource[Microsoft.Storage/storageAccounts/blobServices/containers:ContainerName] StringEqualsIgnoreCase 'foo_storage_container'
- Condition
Version string - Version of the condition. Currently the only accepted value is '2.0'
- Actions []string
- Allowed actions.
- Data
Actions []string - Allowed Data actions.
- Not
Actions []string - Denied actions.
- Not
Data []stringActions - Denied Data actions.
- condition String
- The conditions on the role definition. This limits the resources it can be assigned to. e.g.: @Resource[Microsoft.Storage/storageAccounts/blobServices/containers:ContainerName] StringEqualsIgnoreCase 'foo_storage_container'
- condition
Version String - Version of the condition. Currently the only accepted value is '2.0'
- actions List<String>
- Allowed actions.
- data
Actions List<String> - Allowed Data actions.
- not
Actions List<String> - Denied actions.
- not
Data List<String>Actions - Denied Data actions.
- condition string
- The conditions on the role definition. This limits the resources it can be assigned to. e.g.: @Resource[Microsoft.Storage/storageAccounts/blobServices/containers:ContainerName] StringEqualsIgnoreCase 'foo_storage_container'
- condition
Version string - Version of the condition. Currently the only accepted value is '2.0'
- actions string[]
- Allowed actions.
- data
Actions string[] - Allowed Data actions.
- not
Actions string[] - Denied actions.
- not
Data string[]Actions - Denied Data actions.
- condition str
- The conditions on the role definition. This limits the resources it can be assigned to. e.g.: @Resource[Microsoft.Storage/storageAccounts/blobServices/containers:ContainerName] StringEqualsIgnoreCase 'foo_storage_container'
- condition_
version str - Version of the condition. Currently the only accepted value is '2.0'
- actions Sequence[str]
- Allowed actions.
- data_
actions Sequence[str] - Allowed Data actions.
- not_
actions Sequence[str] - Denied actions.
- not_
data_ Sequence[str]actions - Denied Data actions.
- condition String
- The conditions on the role definition. This limits the resources it can be assigned to. e.g.: @Resource[Microsoft.Storage/storageAccounts/blobServices/containers:ContainerName] StringEqualsIgnoreCase 'foo_storage_container'
- condition
Version String - Version of the condition. Currently the only accepted value is '2.0'
- actions List<String>
- Allowed actions.
- data
Actions List<String> - Allowed Data actions.
- not
Actions List<String> - Denied actions.
- not
Data List<String>Actions - Denied Data actions.
Package Details
- Repository
- Azure Native pulumi/pulumi-azure-native
- License
- Apache-2.0
This is the latest version of Azure Native. Use the Azure Native v1 docs if using the v1 version of this package.
Azure Native v2.89.1 published on Sunday, Mar 2, 2025 by Pulumi