RoleAssignment Class
Role Assignments.
Variables are only populated by the server, and will be ignored when sending a request.
- Inheritance
-
azure.mgmt.authorization._serialization.ModelRoleAssignment
Constructor
RoleAssignment(*, scope: str | None = None, role_definition_id: str | None = None, principal_id: str | None = None, principal_type: str | _models.PrincipalType | None = None, can_delegate: bool | None = None, description: str | None = None, condition: str | None = None, condition_version: str | None = None, created_on: datetime | None = None, updated_on: datetime | None = None, created_by: str | None = None, updated_by: str | None = None, delegated_managed_identity_resource_id: str | None = None, **kwargs: Any)Keyword-Only Parameters
| Name | Description |
|---|---|
|
scope
|
The role assignment scope. |
|
role_definition_id
|
The role definition ID. |
|
principal_id
|
The principal ID. |
|
principal_type
|
str or
PrincipalType
The principal type of the assigned principal ID. Known values are: "User", "Group", "ServicePrincipal", and "ForeignGroup". |
|
can_delegate
|
The Delegation flag for the role assignment. |
|
description
|
Description of role assignment. |
|
condition
|
The conditions on the role assignment. This limits the resources it can be assigned to. e.g.: @Resource[Microsoft.Storage/storageAccounts/blobServices/containers:ContainerName] StringEqualsIgnoreCase 'foo_storage_container'. |
|
condition_version
|
Version of the condition. Currently accepted value is '2.0'. |
|
created_on
|
Time it was created. |
|
updated_on
|
Time it was updated. |
|
created_by
|
Id of the user who created the assignment. |
|
updated_by
|
Id of the user who updated the assignment. |
|
delegated_managed_identity_resource_id
|
Id of the delegated managed identity resource. |
Variables
| Name | Description |
|---|---|
|
id
|
The role assignment ID. |
|
name
|
The role assignment name. |
|
type
|
The role assignment type. |
|
scope
|
The role assignment scope. |
|
role_definition_id
|
The role definition ID. |
|
principal_id
|
The principal ID. |
|
principal_type
|
str or
PrincipalType
The principal type of the assigned principal ID. Known values are: "User", "Group", "ServicePrincipal", and "ForeignGroup". |
|
can_delegate
|
The Delegation flag for the role assignment. |
|
description
|
Description of role assignment. |
|
condition
|
The conditions on the role assignment. This limits the resources it can be assigned to. e.g.: @Resource[Microsoft.Storage/storageAccounts/blobServices/containers:ContainerName] StringEqualsIgnoreCase 'foo_storage_container'. |
|
condition_version
|
Version of the condition. Currently accepted value is '2.0'. |
|
created_on
|
Time it was created. |
|
updated_on
|
Time it was updated. |
|
created_by
|
Id of the user who created the assignment. |
|
updated_by
|
Id of the user who updated the assignment. |
|
delegated_managed_identity_resource_id
|
Id of the delegated managed identity resource. |
Azure SDK for Python