Feedback Edit

RoleAssignmentCreateParameters Class

  • Reference

Role assignment create parameters.

Variables are only populated by the server, and will be ignored when sending a request.

All required parameters must be populated in order to send to Azure.

Inheritance
Model
RoleAssignmentCreateParameters

Constructor

RoleAssignmentCreateParameters(*, role_definition_id: str, principal_id: str, principal_type: Optional[Union[str, azure.mgmt.authorization.v2020_10_01_preview.models._authorization_management_client_enums.PrincipalType]] = None, description: Optional[str] = None, condition: Optional[str] = None, condition_version: Optional[str] = None, delegated_managed_identity_resource_id: Optional[str] = None, **kwargs)

Parameters

role_definition_id
str
Required

Required. The role definition ID.

principal_id
str
Required

Required. The principal ID.

principal_type
str or PrincipalType
Required

The principal type of the assigned principal ID. Possible values include: "User", "Group", "ServicePrincipal", "ForeignGroup", "Device".

description
str
Required

Description of role assignment.

condition
str
Required

The conditions on the role assignment. This limits the resources it can be assigned to. e.g.: @Resource[Microsoft.Storage/storageAccounts/blobServices/containers:ContainerName] StringEqualsIgnoreCase 'foo_storage_container'.

condition_version
str
Required

Version of the condition. Currently accepted value is '2.0'.

delegated_managed_identity_resource_id
str
Required

Id of the delegated managed identity resource.

Variables

scope
str

The role assignment scope.

created_on
datetime

Time it was created.

updated_on
datetime

Time it was updated.

created_by
str

Id of the user who created the assignment.

updated_by
str

Id of the user who updated the assignment.