Docs Home
athenz 1.0.45 published on Tuesday, Apr 15, 2025 by athenz
athenz.PolicyVersion
Explore with Pulumi AI
athenz.PolicyVersion provides an Athenz policy resource with all of its versions.
Example Usage
IMPORTANT NOTE: please do NOT use json syntax but only hcl syntax
import * as pulumi from "@pulumi/pulumi";
import * as athenz from "@pulumi/athenz";
const policyWithVersion = new athenz.PolicyVersion("policyWithVersion", {
activeVersion: "version1",
auditRef: "create policy",
domain: "some_domain",
versions: [
{
assertions: [{
action: "*",
effect: "ALLOW",
resource: "some_domain:resource1",
role: "role1",
}],
versionName: "version1",
},
{
assertions: [
{
action: "*",
caseSensitive: true,
effect: "ALLOW",
resource: "some_domain:RESOURCE2",
role: "role2",
},
{
action: "PLAY",
caseSensitive: true,
effect: "DENY",
resource: "some_domain:resource2",
role: "role2",
},
],
versionName: "version2",
},
],
});
import pulumi
import pulumi_athenz as athenz
policy_with_version = athenz.PolicyVersion("policyWithVersion",
active_version="version1",
audit_ref="create policy",
domain="some_domain",
versions=[
{
"assertions": [{
"action": "*",
"effect": "ALLOW",
"resource": "some_domain:resource1",
"role": "role1",
}],
"version_name": "version1",
},
{
"assertions": [
{
"action": "*",
"case_sensitive": True,
"effect": "ALLOW",
"resource": "some_domain:RESOURCE2",
"role": "role2",
},
{
"action": "PLAY",
"case_sensitive": True,
"effect": "DENY",
"resource": "some_domain:resource2",
"role": "role2",
},
],
"version_name": "version2",
},
])
package main
import (
"github.com/pulumi/pulumi-terraform-provider/sdks/go/athenz/athenz"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
_, err := athenz.NewPolicyVersion(ctx, "policyWithVersion", &athenz.PolicyVersionArgs{
ActiveVersion: pulumi.String("version1"),
AuditRef: pulumi.String("create policy"),
Domain: pulumi.String("some_domain"),
Versions: athenz.PolicyVersionVersionArray{
&athenz.PolicyVersionVersionArgs{
Assertions: athenz.PolicyVersionVersionAssertionArray{
&athenz.PolicyVersionVersionAssertionArgs{
Action: pulumi.String("*"),
Effect: pulumi.String("ALLOW"),
Resource: pulumi.String("some_domain:resource1"),
Role: pulumi.String("role1"),
},
},
VersionName: pulumi.String("version1"),
},
&athenz.PolicyVersionVersionArgs{
Assertions: athenz.PolicyVersionVersionAssertionArray{
&athenz.PolicyVersionVersionAssertionArgs{
Action: pulumi.String("*"),
CaseSensitive: pulumi.Bool(true),
Effect: pulumi.String("ALLOW"),
Resource: pulumi.String("some_domain:RESOURCE2"),
Role: pulumi.String("role2"),
},
&athenz.PolicyVersionVersionAssertionArgs{
Action: pulumi.String("PLAY"),
CaseSensitive: pulumi.Bool(true),
Effect: pulumi.String("DENY"),
Resource: pulumi.String("some_domain:resource2"),
Role: pulumi.String("role2"),
},
},
VersionName: pulumi.String("version2"),
},
},
})
if err != nil {
return err
}
return nil
})
}
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using Athenz = Pulumi.Athenz;
return await Deployment.RunAsync(() =>
{
var policyWithVersion = new Athenz.PolicyVersion("policyWithVersion", new()
{
ActiveVersion = "version1",
AuditRef = "create policy",
Domain = "some_domain",
Versions = new[]
{
new Athenz.Inputs.PolicyVersionVersionArgs
{
Assertions = new[]
{
new Athenz.Inputs.PolicyVersionVersionAssertionArgs
{
Action = "*",
Effect = "ALLOW",
Resource = "some_domain:resource1",
Role = "role1",
},
},
VersionName = "version1",
},
new Athenz.Inputs.PolicyVersionVersionArgs
{
Assertions = new[]
{
new Athenz.Inputs.PolicyVersionVersionAssertionArgs
{
Action = "*",
CaseSensitive = true,
Effect = "ALLOW",
Resource = "some_domain:RESOURCE2",
Role = "role2",
},
new Athenz.Inputs.PolicyVersionVersionAssertionArgs
{
Action = "PLAY",
CaseSensitive = true,
Effect = "DENY",
Resource = "some_domain:resource2",
Role = "role2",
},
},
VersionName = "version2",
},
},
});
});
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.athenz.PolicyVersion;
import com.pulumi.athenz.PolicyVersionArgs;
import com.pulumi.athenz.inputs.PolicyVersionVersionArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
var policyWithVersion = new PolicyVersion("policyWithVersion", PolicyVersionArgs.builder()
.activeVersion("version1")
.auditRef("create policy")
.domain("some_domain")
.versions(
PolicyVersionVersionArgs.builder()
.assertions(PolicyVersionVersionAssertionArgs.builder()
.action("*")
.effect("ALLOW")
.resource("some_domain:resource1")
.role("role1")
.build())
.versionName("version1")
.build(),
PolicyVersionVersionArgs.builder()
.assertions(
PolicyVersionVersionAssertionArgs.builder()
.action("*")
.caseSensitive(true)
.effect("ALLOW")
.resource("some_domain:RESOURCE2")
.role("role2")
.build(),
PolicyVersionVersionAssertionArgs.builder()
.action("PLAY")
.caseSensitive(true)
.effect("DENY")
.resource("some_domain:resource2")
.role("role2")
.build())
.versionName("version2")
.build())
.build());
}
}
resources:
policyWithVersion:
type: athenz:PolicyVersion
properties:
activeVersion: version1
auditRef: create policy
domain: some_domain
versions:
- assertions:
- action: '*'
effect: ALLOW
resource: some_domain:resource1
role: role1
versionName: version1
- assertions:
- action: '*'
caseSensitive: true
effect: ALLOW
resource: some_domain:RESOURCE2
role: role2
- action: PLAY
caseSensitive: true
effect: DENY
resource: some_domain:resource2
role: role2
versionName: version2
Create PolicyVersion Resource
Resources are created with functions called constructors. To learn more about declaring and configuring resources, see Resources.
Constructor syntax
new PolicyVersion(name: string, args: PolicyVersionArgs, opts?: CustomResourceOptions);@overload
def PolicyVersion(resource_name: str,
args: PolicyVersionArgs,
opts: Optional[ResourceOptions] = None)
@overload
def PolicyVersion(resource_name: str,
opts: Optional[ResourceOptions] = None,
active_version: Optional[str] = None,
domain: Optional[str] = None,
versions: Optional[Sequence[PolicyVersionVersionArgs]] = None,
audit_ref: Optional[str] = None,
name: Optional[str] = None,
policy_version_id: Optional[str] = None)func NewPolicyVersion(ctx *Context, name string, args PolicyVersionArgs, opts ...ResourceOption) (*PolicyVersion, error)public PolicyVersion(string name, PolicyVersionArgs args, CustomResourceOptions? opts = null)
public PolicyVersion(String name, PolicyVersionArgs args)
public PolicyVersion(String name, PolicyVersionArgs args, CustomResourceOptions options)
type: athenz:PolicyVersion
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.
Parameters
- name string
- The unique name of the resource.
- args PolicyVersionArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- resource_name str
- The unique name of the resource.
- args PolicyVersionArgs
- The arguments to resource properties.
- opts ResourceOptions
- Bag of options to control resource's behavior.
- ctx Context
- Context object for the current deployment.
- name string
- The unique name of the resource.
- args PolicyVersionArgs
- The arguments to resource properties.
- opts ResourceOption
- Bag of options to control resource's behavior.
- name string
- The unique name of the resource.
- args PolicyVersionArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- name String
- The unique name of the resource.
- args PolicyVersionArgs
- The arguments to resource properties.
- options CustomResourceOptions
- Bag of options to control resource's behavior.
Constructor example
The following reference example uses placeholder values for all input properties.
var policyVersionResource = new Athenz.PolicyVersion("policyVersionResource", new()
{
ActiveVersion = "string",
Domain = "string",
Versions = new[]
{
new Athenz.Inputs.PolicyVersionVersionArgs
{
VersionName = "string",
Assertions = new[]
{
new Athenz.Inputs.PolicyVersionVersionAssertionArgs
{
Action = "string",
Effect = "string",
Resource = "string",
Role = "string",
CaseSensitive = false,
Conditions = new[]
{
new Athenz.Inputs.PolicyVersionVersionAssertionConditionArgs
{
Enforcementstate = new Athenz.Inputs.PolicyVersionVersionAssertionConditionEnforcementstateArgs
{
Value = "string",
Operator = 0,
},
Instances = new Athenz.Inputs.PolicyVersionVersionAssertionConditionInstancesArgs
{
Value = "string",
Operator = 0,
},
Scopeall = new Athenz.Inputs.PolicyVersionVersionAssertionConditionScopeallArgs
{
Value = "string",
Operator = 0,
},
Scopeaws = new Athenz.Inputs.PolicyVersionVersionAssertionConditionScopeawsArgs
{
Value = "string",
Operator = 0,
},
Scopeonprem = new Athenz.Inputs.PolicyVersionVersionAssertionConditionScopeonpremArgs
{
Value = "string",
Operator = 0,
},
Id = 0,
},
},
Id = 0,
},
},
},
},
AuditRef = "string",
Name = "string",
PolicyVersionId = "string",
});
example, err := athenz.NewPolicyVersion(ctx, "policyVersionResource", &athenz.PolicyVersionArgs{
ActiveVersion: pulumi.String("string"),
Domain: pulumi.String("string"),
Versions: athenz.PolicyVersionVersionArray{
&athenz.PolicyVersionVersionArgs{
VersionName: pulumi.String("string"),
Assertions: athenz.PolicyVersionVersionAssertionArray{
&athenz.PolicyVersionVersionAssertionArgs{
Action: pulumi.String("string"),
Effect: pulumi.String("string"),
Resource: pulumi.String("string"),
Role: pulumi.String("string"),
CaseSensitive: pulumi.Bool(false),
Conditions: athenz.PolicyVersionVersionAssertionConditionArray{
&athenz.PolicyVersionVersionAssertionConditionArgs{
Enforcementstate: &athenz.PolicyVersionVersionAssertionConditionEnforcementstateArgs{
Value: pulumi.String("string"),
Operator: pulumi.Float64(0),
},
Instances: &athenz.PolicyVersionVersionAssertionConditionInstancesArgs{
Value: pulumi.String("string"),
Operator: pulumi.Float64(0),
},
Scopeall: &athenz.PolicyVersionVersionAssertionConditionScopeallArgs{
Value: pulumi.String("string"),
Operator: pulumi.Float64(0),
},
Scopeaws: &athenz.PolicyVersionVersionAssertionConditionScopeawsArgs{
Value: pulumi.String("string"),
Operator: pulumi.Float64(0),
},
Scopeonprem: &athenz.PolicyVersionVersionAssertionConditionScopeonpremArgs{
Value: pulumi.String("string"),
Operator: pulumi.Float64(0),
},
Id: pulumi.Float64(0),
},
},
Id: pulumi.Float64(0),
},
},
},
},
AuditRef: pulumi.String("string"),
Name: pulumi.String("string"),
PolicyVersionId: pulumi.String("string"),
})
var policyVersionResource = new PolicyVersion("policyVersionResource", PolicyVersionArgs.builder()
.activeVersion("string")
.domain("string")
.versions(PolicyVersionVersionArgs.builder()
.versionName("string")
.assertions(PolicyVersionVersionAssertionArgs.builder()
.action("string")
.effect("string")
.resource("string")
.role("string")
.caseSensitive(false)
.conditions(PolicyVersionVersionAssertionConditionArgs.builder()
.enforcementstate(PolicyVersionVersionAssertionConditionEnforcementstateArgs.builder()
.value("string")
.operator(0)
.build())
.instances(PolicyVersionVersionAssertionConditionInstancesArgs.builder()
.value("string")
.operator(0)
.build())
.scopeall(PolicyVersionVersionAssertionConditionScopeallArgs.builder()
.value("string")
.operator(0)
.build())
.scopeaws(PolicyVersionVersionAssertionConditionScopeawsArgs.builder()
.value("string")
.operator(0)
.build())
.scopeonprem(PolicyVersionVersionAssertionConditionScopeonpremArgs.builder()
.value("string")
.operator(0)
.build())
.id(0)
.build())
.id(0)
.build())
.build())
.auditRef("string")
.name("string")
.policyVersionId("string")
.build());
policy_version_resource = athenz.PolicyVersion("policyVersionResource",
active_version="string",
domain="string",
versions=[{
"version_name": "string",
"assertions": [{
"action": "string",
"effect": "string",
"resource": "string",
"role": "string",
"case_sensitive": False,
"conditions": [{
"enforcementstate": {
"value": "string",
"operator": 0,
},
"instances": {
"value": "string",
"operator": 0,
},
"scopeall": {
"value": "string",
"operator": 0,
},
"scopeaws": {
"value": "string",
"operator": 0,
},
"scopeonprem": {
"value": "string",
"operator": 0,
},
"id": 0,
}],
"id": 0,
}],
}],
audit_ref="string",
name="string",
policy_version_id="string")
const policyVersionResource = new athenz.PolicyVersion("policyVersionResource", {
activeVersion: "string",
domain: "string",
versions: [{
versionName: "string",
assertions: [{
action: "string",
effect: "string",
resource: "string",
role: "string",
caseSensitive: false,
conditions: [{
enforcementstate: {
value: "string",
operator: 0,
},
instances: {
value: "string",
operator: 0,
},
scopeall: {
value: "string",
operator: 0,
},
scopeaws: {
value: "string",
operator: 0,
},
scopeonprem: {
value: "string",
operator: 0,
},
id: 0,
}],
id: 0,
}],
}],
auditRef: "string",
name: "string",
policyVersionId: "string",
});
type: athenz:PolicyVersion
properties:
activeVersion: string
auditRef: string
domain: string
name: string
policyVersionId: string
versions:
- assertions:
- action: string
caseSensitive: false
conditions:
- enforcementstate:
operator: 0
value: string
id: 0
instances:
operator: 0
value: string
scopeall:
operator: 0
value: string
scopeaws:
operator: 0
value: string
scopeonprem:
operator: 0
value: string
effect: string
id: 0
resource: string
role: string
versionName: string
PolicyVersion Resource Properties
To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.
Inputs
In Python, inputs that are objects can be passed either as argument classes or as dictionary literals.
The PolicyVersion resource accepts the following input properties:
- Active
Version string - The active version of the policy. Must match one of the version name defined un the resource
- Domain string
- Name of the domain that policy belongs to
- Versions
List<Policy
Version Version> - A set of policy versions
- Audit
Ref string - Name string
- Name of the policy
- Policy
Version stringId - The ID of this resource.
- Active
Version string - The active version of the policy. Must match one of the version name defined un the resource
- Domain string
- Name of the domain that policy belongs to
- Versions
[]Policy
Version Version Args - A set of policy versions
- Audit
Ref string - Name string
- Name of the policy
- Policy
Version stringId - The ID of this resource.
- active
Version String - The active version of the policy. Must match one of the version name defined un the resource
- domain String
- Name of the domain that policy belongs to
- versions
List<Policy
Version Version> - A set of policy versions
- audit
Ref String - name String
- Name of the policy
- policy
Version StringId - The ID of this resource.
- active
Version string - The active version of the policy. Must match one of the version name defined un the resource
- domain string
- Name of the domain that policy belongs to
- versions
Policy
Version Version[] - A set of policy versions
- audit
Ref string - name string
- Name of the policy
- policy
Version stringId - The ID of this resource.
- active_
version str - The active version of the policy. Must match one of the version name defined un the resource
- domain str
- Name of the domain that policy belongs to
- versions
Sequence[Policy
Version Version Args] - A set of policy versions
- audit_
ref str - name str
- Name of the policy
- policy_
version_ strid - The ID of this resource.
- active
Version String - The active version of the policy. Must match one of the version name defined un the resource
- domain String
- Name of the domain that policy belongs to
- versions List<Property Map>
- A set of policy versions
- audit
Ref String - name String
- Name of the policy
- policy
Version StringId - The ID of this resource.
Outputs
All input properties are implicitly available as output properties. Additionally, the PolicyVersion resource produces the following output properties:
- Id string
- The provider-assigned unique ID for this managed resource.
- Id string
- The provider-assigned unique ID for this managed resource.
- id String
- The provider-assigned unique ID for this managed resource.
- id string
- The provider-assigned unique ID for this managed resource.
- id str
- The provider-assigned unique ID for this managed resource.
- id String
- The provider-assigned unique ID for this managed resource.
Look up Existing PolicyVersion Resource
Get an existing PolicyVersion resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.
public static get(name: string, id: Input<ID>, state?: PolicyVersionState, opts?: CustomResourceOptions): PolicyVersion@staticmethod
def get(resource_name: str,
id: str,
opts: Optional[ResourceOptions] = None,
active_version: Optional[str] = None,
audit_ref: Optional[str] = None,
domain: Optional[str] = None,
name: Optional[str] = None,
policy_version_id: Optional[str] = None,
versions: Optional[Sequence[PolicyVersionVersionArgs]] = None) -> PolicyVersionfunc GetPolicyVersion(ctx *Context, name string, id IDInput, state *PolicyVersionState, opts ...ResourceOption) (*PolicyVersion, error)public static PolicyVersion Get(string name, Input<string> id, PolicyVersionState? state, CustomResourceOptions? opts = null)public static PolicyVersion get(String name, Output<String> id, PolicyVersionState state, CustomResourceOptions options)resources: _: type: athenz:PolicyVersion get: id: ${id}- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- resource_name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- Active
Version string - The active version of the policy. Must match one of the version name defined un the resource
- Audit
Ref string - Domain string
- Name of the domain that policy belongs to
- Name string
- Name of the policy
- Policy
Version stringId - The ID of this resource.
- Versions
List<Policy
Version Version> - A set of policy versions
- Active
Version string - The active version of the policy. Must match one of the version name defined un the resource
- Audit
Ref string - Domain string
- Name of the domain that policy belongs to
- Name string
- Name of the policy
- Policy
Version stringId - The ID of this resource.
- Versions
[]Policy
Version Version Args - A set of policy versions
- active
Version String - The active version of the policy. Must match one of the version name defined un the resource
- audit
Ref String - domain String
- Name of the domain that policy belongs to
- name String
- Name of the policy
- policy
Version StringId - The ID of this resource.
- versions
List<Policy
Version Version> - A set of policy versions
- active
Version string - The active version of the policy. Must match one of the version name defined un the resource
- audit
Ref string - domain string
- Name of the domain that policy belongs to
- name string
- Name of the policy
- policy
Version stringId - The ID of this resource.
- versions
Policy
Version Version[] - A set of policy versions
- active_
version str - The active version of the policy. Must match one of the version name defined un the resource
- audit_
ref str - domain str
- Name of the domain that policy belongs to
- name str
- Name of the policy
- policy_
version_ strid - The ID of this resource.
- versions
Sequence[Policy
Version Version Args] - A set of policy versions
- active
Version String - The active version of the policy. Must match one of the version name defined un the resource
- audit
Ref String - domain String
- Name of the domain that policy belongs to
- name String
- Name of the policy
- policy
Version StringId - The ID of this resource.
- versions List<Property Map>
- A set of policy versions
Supporting Types
PolicyVersionVersion, PolicyVersionVersionArgs
- Version
Name string - The version name.
- Assertions
List<Policy
Version Version Assertion> - A set of assertions that govern usage of resources. where \n\n is \n\n \n\n to \n\n on \n\n.
- Version
Name string - The version name.
- Assertions
[]Policy
Version Version Assertion - A set of assertions that govern usage of resources. where \n\n is \n\n \n\n to \n\n on \n\n.
- version
Name String - The version name.
- assertions
List<Policy
Version Version Assertion> - A set of assertions that govern usage of resources. where \n\n is \n\n \n\n to \n\n on \n\n.
- version
Name string - The version name.
- assertions
Policy
Version Version Assertion[] - A set of assertions that govern usage of resources. where \n\n is \n\n \n\n to \n\n on \n\n.
- version_
name str - The version name.
- assertions
Sequence[Policy
Version Version Assertion] - A set of assertions that govern usage of resources. where \n\n is \n\n \n\n to \n\n on \n\n.
- version
Name String - The version name.
- assertions List<Property Map>
- A set of assertions that govern usage of resources. where \n\n is \n\n \n\n to \n\n on \n\n.
PolicyVersionVersionAssertion, PolicyVersionVersionAssertionArgs
- Action string
- The action is the domain administrator defined action available for the resource (e.g. read, write, delete).
- Effect string
- The value effect must be either ALLOW or DENY.
- Resource string
- The resource is the YRN of the resource this assertion applies to. MUST provide fully qualified name:
<domain name>:<resource name>
- The resource is the YRN of the resource this assertion applies to. MUST provide fully qualified name:
- Role string
- The name of the role this assertion applies to. MUST be the role name only (without the prefix
<domain name>:role).
- The name of the role this assertion applies to. MUST be the role name only (without the prefix
- Case
Sensitive bool - If true, action and resource will be case-sensitive.
- Conditions
List<Policy
Version Version Assertion Condition> - Id double
- The ID of this resource.
- Action string
- The action is the domain administrator defined action available for the resource (e.g. read, write, delete).
- Effect string
- The value effect must be either ALLOW or DENY.
- Resource string
- The resource is the YRN of the resource this assertion applies to. MUST provide fully qualified name:
<domain name>:<resource name>
- The resource is the YRN of the resource this assertion applies to. MUST provide fully qualified name:
- Role string
- The name of the role this assertion applies to. MUST be the role name only (without the prefix
<domain name>:role).
- The name of the role this assertion applies to. MUST be the role name only (without the prefix
- Case
Sensitive bool - If true, action and resource will be case-sensitive.
- Conditions
[]Policy
Version Version Assertion Condition - Id float64
- The ID of this resource.
- action String
- The action is the domain administrator defined action available for the resource (e.g. read, write, delete).
- effect String
- The value effect must be either ALLOW or DENY.
- resource String
- The resource is the YRN of the resource this assertion applies to. MUST provide fully qualified name:
<domain name>:<resource name>
- The resource is the YRN of the resource this assertion applies to. MUST provide fully qualified name:
- role String
- The name of the role this assertion applies to. MUST be the role name only (without the prefix
<domain name>:role).
- The name of the role this assertion applies to. MUST be the role name only (without the prefix
- case
Sensitive Boolean - If true, action and resource will be case-sensitive.
- conditions
List<Policy
Version Version Assertion Condition> - id Double
- The ID of this resource.
- action string
- The action is the domain administrator defined action available for the resource (e.g. read, write, delete).
- effect string
- The value effect must be either ALLOW or DENY.
- resource string
- The resource is the YRN of the resource this assertion applies to. MUST provide fully qualified name:
<domain name>:<resource name>
- The resource is the YRN of the resource this assertion applies to. MUST provide fully qualified name:
- role string
- The name of the role this assertion applies to. MUST be the role name only (without the prefix
<domain name>:role).
- The name of the role this assertion applies to. MUST be the role name only (without the prefix
- case
Sensitive boolean - If true, action and resource will be case-sensitive.
- conditions
Policy
Version Version Assertion Condition[] - id number
- The ID of this resource.
- action str
- The action is the domain administrator defined action available for the resource (e.g. read, write, delete).
- effect str
- The value effect must be either ALLOW or DENY.
- resource str
- The resource is the YRN of the resource this assertion applies to. MUST provide fully qualified name:
<domain name>:<resource name>
- The resource is the YRN of the resource this assertion applies to. MUST provide fully qualified name:
- role str
- The name of the role this assertion applies to. MUST be the role name only (without the prefix
<domain name>:role).
- The name of the role this assertion applies to. MUST be the role name only (without the prefix
- case_
sensitive bool - If true, action and resource will be case-sensitive.
- conditions
Sequence[Policy
Version Version Assertion Condition] - id float
- The ID of this resource.
- action String
- The action is the domain administrator defined action available for the resource (e.g. read, write, delete).
- effect String
- The value effect must be either ALLOW or DENY.
- resource String
- The resource is the YRN of the resource this assertion applies to. MUST provide fully qualified name:
<domain name>:<resource name>
- The resource is the YRN of the resource this assertion applies to. MUST provide fully qualified name:
- role String
- The name of the role this assertion applies to. MUST be the role name only (without the prefix
<domain name>:role).
- The name of the role this assertion applies to. MUST be the role name only (without the prefix
- case
Sensitive Boolean - If true, action and resource will be case-sensitive.
- conditions List<Property Map>
- id Number
- The ID of this resource.
PolicyVersionVersionAssertionCondition, PolicyVersionVersionAssertionConditionArgs
- Enforcementstate
Policy
Version Version Assertion Condition Enforcementstate - Instances
Policy
Version Version Assertion Condition Instances - Scopeall
Policy
Version Version Assertion Condition Scopeall - Scopeaws
Policy
Version Version Assertion Condition Scopeaws - Scopeonprem
Policy
Version Version Assertion Condition Scopeonprem - Id double
- The ID of this resource.
- Enforcementstate
Policy
Version Version Assertion Condition Enforcementstate - Instances
Policy
Version Version Assertion Condition Instances - Scopeall
Policy
Version Version Assertion Condition Scopeall - Scopeaws
Policy
Version Version Assertion Condition Scopeaws - Scopeonprem
Policy
Version Version Assertion Condition Scopeonprem - Id float64
- The ID of this resource.
- enforcementstate
Policy
Version Version Assertion Condition Enforcementstate - instances
Policy
Version Version Assertion Condition Instances - scopeall
Policy
Version Version Assertion Condition Scopeall - scopeaws
Policy
Version Version Assertion Condition Scopeaws - scopeonprem
Policy
Version Version Assertion Condition Scopeonprem - id Double
- The ID of this resource.
- enforcementstate
Policy
Version Version Assertion Condition Enforcementstate - instances
Policy
Version Version Assertion Condition Instances - scopeall
Policy
Version Version Assertion Condition Scopeall - scopeaws
Policy
Version Version Assertion Condition Scopeaws - scopeonprem
Policy
Version Version Assertion Condition Scopeonprem - id number
- The ID of this resource.
- enforcementstate
Policy
Version Version Assertion Condition Enforcementstate - instances
Policy
Version Version Assertion Condition Instances - scopeall
Policy
Version Version Assertion Condition Scopeall - scopeaws
Policy
Version Version Assertion Condition Scopeaws - scopeonprem
Policy
Version Version Assertion Condition Scopeonprem - id float
- The ID of this resource.
- enforcementstate Property Map
- instances Property Map
- scopeall Property Map
- scopeaws Property Map
- scopeonprem Property Map
- id Number
- The ID of this resource.
PolicyVersionVersionAssertionConditionEnforcementstate, PolicyVersionVersionAssertionConditionEnforcementstateArgs
PolicyVersionVersionAssertionConditionInstances, PolicyVersionVersionAssertionConditionInstancesArgs
PolicyVersionVersionAssertionConditionScopeall, PolicyVersionVersionAssertionConditionScopeallArgs
PolicyVersionVersionAssertionConditionScopeaws, PolicyVersionVersionAssertionConditionScopeawsArgs
PolicyVersionVersionAssertionConditionScopeonprem, PolicyVersionVersionAssertionConditionScopeonpremArgs
Package Details
- Repository
- athenz athenz/terraform-provider-athenz
- License
- Notes
- This Pulumi package is based on the
athenzTerraform Provider.