Permission Class
Role definition permissions.
Variables are only populated by the server, and will be ignored when sending a request.
Constructor
Permission(*, actions: List[str] | None = None, not_actions: List[str] | None = None, data_actions: List[str] | None = None, not_data_actions: List[str] | None = None, **kwargs: Any)Keyword-Only Parameters
| Name | Description |
|---|---|
|
actions
|
Allowed actions. Default value: None
|
|
not_actions
|
Denied actions. Default value: None
|
|
data_actions
|
Allowed Data actions. Default value: None
|
|
not_data_actions
|
Denied Data actions. Default value: None
|
Variables
| Name | Description |
|---|---|
|
actions
|
Allowed actions. |
|
not_actions
|
Denied actions. |
|
data_actions
|
Allowed Data actions. |
|
not_data_actions
|
Denied Data actions. |
|
condition
|
The conditions on the role definition. This limits the resources it can be assigned to. e.g.: @Resource[Microsoft.Storage/storageAccounts/blobServices/containers:ContainerName] StringEqualsIgnoreCase 'foo_storage_container'. |
|
condition_version
|
Version of the condition. Currently the only accepted value is '2.0'. |
Collaborate with us on GitHub
The source for this content can be found on GitHub, where you can also create and review issues and pull requests. For more information, see our contributor guide.
Azure SDK for Python