Authorization Class

Reference

Authorization tuple containing principal Id (of user/service principal/security group) and role definition id.

All required parameters must be populated in order to send to Azure.

Inheritance: Model

Authorization

Constructor

Authorization(*, principal_id: str, role_definition_id: str, principal_id_display_name: Optional[str] = None, delegated_role_definition_ids: Optional[List[str]] = None, **kwargs)

Parameters

principal_id: str

Required

Required. Principal Id of the security group/service principal/user that would be assigned permissions to the projected subscription.

principal_id_display_name: str

Required

Display name of the principal Id.

role_definition_id: str

Required

Required. The role definition identifier. This role will define all the permissions that the security group/service principal/user must have on the projected subscription. This role cannot be an owner role.

delegated_role_definition_ids: list[str]

Required

The delegatedRoleDefinitionIds field is required when the roleDefinitionId refers to the User Access Administrator Role. It is the list of role definition ids which define all the permissions that the user in the authorization can assign to other security groups/service principals/users.

Authorization Class

Constructor

Parameters

Feedback