tencentcloud 1.82.17, Aug 14 25

tencentcloud 1.82.17 published on Thursday, Aug 14, 2025 by tencentcloudstack

tencentcloudstack/terraform-provider-tencentcloud

tencentcloud.DlcAttachUserPolicyOperation

Explore with Pulumi AI

tencentcloud 1.82.17 published on Thursday, Aug 14, 2025 by tencentcloudstack

tencentcloudstack/terraform-provider-tencentcloud

Create DlcAttachUserPolicyOperation Resource

Resources are created with functions called constructors. To learn more about declaring and configuring resources, see Resources.

Constructor syntax

new DlcAttachUserPolicyOperation(name: string, args: DlcAttachUserPolicyOperationArgs, opts?: CustomResourceOptions);

@overload
def DlcAttachUserPolicyOperation(resource_name: str,
                                 args: DlcAttachUserPolicyOperationArgs,
                                 opts: Optional[ResourceOptions] = None)

@overload
def DlcAttachUserPolicyOperation(resource_name: str,
                                 opts: Optional[ResourceOptions] = None,
                                 user_id: Optional[str] = None,
                                 dlc_attach_user_policy_operation_id: Optional[str] = None,
                                 policy_sets: Optional[Sequence[DlcAttachUserPolicyOperationPolicySetArgs]] = None)

func NewDlcAttachUserPolicyOperation(ctx *Context, name string, args DlcAttachUserPolicyOperationArgs, opts ...ResourceOption) (*DlcAttachUserPolicyOperation, error)

public DlcAttachUserPolicyOperation(string name, DlcAttachUserPolicyOperationArgs args, CustomResourceOptions? opts = null)

public DlcAttachUserPolicyOperation(String name, DlcAttachUserPolicyOperationArgs args)
public DlcAttachUserPolicyOperation(String name, DlcAttachUserPolicyOperationArgs args, CustomResourceOptions options)

type: tencentcloud:DlcAttachUserPolicyOperation
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.

Parameters

name string: The unique name of the resource.
args DlcAttachUserPolicyOperationArgs: The arguments to resource properties.
opts CustomResourceOptions: Bag of options to control resource's behavior.

resource_name str: The unique name of the resource.
args DlcAttachUserPolicyOperationArgs: The arguments to resource properties.
opts ResourceOptions: Bag of options to control resource's behavior.

ctx Context: Context object for the current deployment.
name string: The unique name of the resource.
args DlcAttachUserPolicyOperationArgs: The arguments to resource properties.
opts ResourceOption: Bag of options to control resource's behavior.

name string: The unique name of the resource.
args DlcAttachUserPolicyOperationArgs: The arguments to resource properties.
opts CustomResourceOptions: Bag of options to control resource's behavior.

name String: The unique name of the resource.
args DlcAttachUserPolicyOperationArgs: The arguments to resource properties.
options CustomResourceOptions: Bag of options to control resource's behavior.

DlcAttachUserPolicyOperation Resource Properties

To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.

Inputs

In Python, inputs that are objects can be passed either as argument classes or as dictionary literals.

The DlcAttachUserPolicyOperation resource accepts the following input properties:

UserId string: User ID, which is the same as the sub-user UIN. The CreateUser API is needed to create a user at first. The DescribeUsers API can be used for viewing.
DlcAttachUserPolicyOperationId string
PolicySets List<DlcAttachUserPolicyOperationPolicySet>: Collection of authentication policies.

UserId string: User ID, which is the same as the sub-user UIN. The CreateUser API is needed to create a user at first. The DescribeUsers API can be used for viewing.
DlcAttachUserPolicyOperationId string
PolicySets []DlcAttachUserPolicyOperationPolicySetArgs: Collection of authentication policies.

userId String: User ID, which is the same as the sub-user UIN. The CreateUser API is needed to create a user at first. The DescribeUsers API can be used for viewing.
dlcAttachUserPolicyOperationId String
policySets List<DlcAttachUserPolicyOperationPolicySet>: Collection of authentication policies.

userId string: User ID, which is the same as the sub-user UIN. The CreateUser API is needed to create a user at first. The DescribeUsers API can be used for viewing.
dlcAttachUserPolicyOperationId string
policySets DlcAttachUserPolicyOperationPolicySet[]: Collection of authentication policies.

user_id str: User ID, which is the same as the sub-user UIN. The CreateUser API is needed to create a user at first. The DescribeUsers API can be used for viewing.
dlc_attach_user_policy_operation_id str
policy_sets Sequence[DlcAttachUserPolicyOperationPolicySetArgs]: Collection of authentication policies.

userId String: User ID, which is the same as the sub-user UIN. The CreateUser API is needed to create a user at first. The DescribeUsers API can be used for viewing.
dlcAttachUserPolicyOperationId String
policySets List<Property Map>: Collection of authentication policies.

Outputs

All input properties are implicitly available as output properties. Additionally, the DlcAttachUserPolicyOperation resource produces the following output properties:

Id string: The provider-assigned unique ID for this managed resource.

Id string: The provider-assigned unique ID for this managed resource.

id String: The provider-assigned unique ID for this managed resource.

id string: The provider-assigned unique ID for this managed resource.

id str: The provider-assigned unique ID for this managed resource.

id String: The provider-assigned unique ID for this managed resource.

Look up Existing DlcAttachUserPolicyOperation Resource

Get an existing DlcAttachUserPolicyOperation resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.

public static get(name: string, id: Input<ID>, state?: DlcAttachUserPolicyOperationState, opts?: CustomResourceOptions): DlcAttachUserPolicyOperation

@staticmethod
def get(resource_name: str,
        id: str,
        opts: Optional[ResourceOptions] = None,
        dlc_attach_user_policy_operation_id: Optional[str] = None,
        policy_sets: Optional[Sequence[DlcAttachUserPolicyOperationPolicySetArgs]] = None,
        user_id: Optional[str] = None) -> DlcAttachUserPolicyOperation

func GetDlcAttachUserPolicyOperation(ctx *Context, name string, id IDInput, state *DlcAttachUserPolicyOperationState, opts ...ResourceOption) (*DlcAttachUserPolicyOperation, error)

public static DlcAttachUserPolicyOperation Get(string name, Input<string> id, DlcAttachUserPolicyOperationState? state, CustomResourceOptions? opts = null)

public static DlcAttachUserPolicyOperation get(String name, Output<String> id, DlcAttachUserPolicyOperationState state, CustomResourceOptions options)

resources:  _:    type: tencentcloud:DlcAttachUserPolicyOperation    get:      id: ${id}

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

resource_name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

The following state arguments are supported:

DlcAttachUserPolicyOperationId string
PolicySets List<DlcAttachUserPolicyOperationPolicySet>: Collection of authentication policies.
UserId string: User ID, which is the same as the sub-user UIN. The CreateUser API is needed to create a user at first. The DescribeUsers API can be used for viewing.

DlcAttachUserPolicyOperationId string
PolicySets []DlcAttachUserPolicyOperationPolicySetArgs: Collection of authentication policies.
UserId string: User ID, which is the same as the sub-user UIN. The CreateUser API is needed to create a user at first. The DescribeUsers API can be used for viewing.

dlcAttachUserPolicyOperationId String
policySets List<DlcAttachUserPolicyOperationPolicySet>: Collection of authentication policies.
userId String: User ID, which is the same as the sub-user UIN. The CreateUser API is needed to create a user at first. The DescribeUsers API can be used for viewing.

dlcAttachUserPolicyOperationId string
policySets DlcAttachUserPolicyOperationPolicySet[]: Collection of authentication policies.
userId string: User ID, which is the same as the sub-user UIN. The CreateUser API is needed to create a user at first. The DescribeUsers API can be used for viewing.

dlc_attach_user_policy_operation_id str
policy_sets Sequence[DlcAttachUserPolicyOperationPolicySetArgs]: Collection of authentication policies.
user_id str: User ID, which is the same as the sub-user UIN. The CreateUser API is needed to create a user at first. The DescribeUsers API can be used for viewing.

dlcAttachUserPolicyOperationId String
policySets List<Property Map>: Collection of authentication policies.
userId String: User ID, which is the same as the sub-user UIN. The CreateUser API is needed to create a user at first. The DescribeUsers API can be used for viewing.

Supporting Types

DlcAttachUserPolicyOperationPolicySet, DlcAttachUserPolicyOperationPolicySetArgs

Catalog string: The name of the target data source. To grant admin permission, it must be * (all resources at this level); to grant data source and database permissions, it must be COSDataCatalog or *; to grant table permissions, it can be a custom data source; if it is left empty, DataLakeCatalog is used. Note: To grant permissions on a custom data source, the permissions that can be managed in the Data Lake Compute console are subsets of the account permissions granted when you connect the data source to the console.
Database string: The name of the target database. * represents all databases in the current catalog. To grant admin permissions, it must be *; to grant data connection permissions, it must be null; to grant other permissions, it can be any database.
Operation string: The target permissions, which vary by permission level. Admin: ALL (default); data connection: CREATE; database: ALL, CREATE, ALTER, and DROP; table: ALL, SELECT, INSERT, ALTER, DELETE, DROP, and UPDATE. Note: For table permissions, if a data source other than COSDataCatalog is specified, only the SELECT permission can be granted here.
Table string: The name of the target table. * represents all tables in the current database. To grant admin permissions, it must be *; to grant data connection and database permissions, it must be null; to grant other permissions, it can be any table.
Column string: The name of the target column. * represents all columns. To grant admin permissions, it must be *.
CreateTime string: The permission policy creation time, which is not required as an input parameter.
DataEngine string: The name of the target data engine. * represents all engines. To grant admin permissions, it must be *.
Function string: The name of the target function. * represents all functions in the current catalog. To grant admin permissions, it must be *; to grant data connection permissions, it must be null; to grant other permissions, it can be any function.
Id double: The policy ID.
Mode string: The grant mode, which is not required as an input parameter. Valid values: COMMON and SENIOR.
Operator string: The operator, which is not required as an input parameter.
PolicyType string: The permission type. Valid values: ADMIN, DATASOURCE, DATABASE, TABLE, VIEW, FUNCTION, COLUMN, and ENGINE. Note: If it is left empty, ADMIN is used.
ReAuth bool: Whether the grantee is allowed to further grant the permissions. Valid values: false (default) and true (the grantee can grant permissions gained here to other sub-users).
Source string: The permission source, which is not required when input parameters are passed in. Valid values: USER (from the user) and WORKGROUP (from one or more associated work groups).
SourceId double: The ID of the work group, which applies only when the value of the Source field is WORKGROUP.
SourceName string: The name of the work group, which applies only when the value of the Source field is WORKGROUP.
View string: The name of the target view. * represents all views in the current database. To grant admin permissions, it must be *; to grant data connection and database permissions, it must be null; to grant other permissions, it can be any view.

Catalog string: The name of the target data source. To grant admin permission, it must be * (all resources at this level); to grant data source and database permissions, it must be COSDataCatalog or *; to grant table permissions, it can be a custom data source; if it is left empty, DataLakeCatalog is used. Note: To grant permissions on a custom data source, the permissions that can be managed in the Data Lake Compute console are subsets of the account permissions granted when you connect the data source to the console.
Database string: The name of the target database. * represents all databases in the current catalog. To grant admin permissions, it must be *; to grant data connection permissions, it must be null; to grant other permissions, it can be any database.
Operation string: The target permissions, which vary by permission level. Admin: ALL (default); data connection: CREATE; database: ALL, CREATE, ALTER, and DROP; table: ALL, SELECT, INSERT, ALTER, DELETE, DROP, and UPDATE. Note: For table permissions, if a data source other than COSDataCatalog is specified, only the SELECT permission can be granted here.
Table string: The name of the target table. * represents all tables in the current database. To grant admin permissions, it must be *; to grant data connection and database permissions, it must be null; to grant other permissions, it can be any table.
Column string: The name of the target column. * represents all columns. To grant admin permissions, it must be *.
CreateTime string: The permission policy creation time, which is not required as an input parameter.
DataEngine string: The name of the target data engine. * represents all engines. To grant admin permissions, it must be *.
Function string: The name of the target function. * represents all functions in the current catalog. To grant admin permissions, it must be *; to grant data connection permissions, it must be null; to grant other permissions, it can be any function.
Id float64: The policy ID.
Mode string: The grant mode, which is not required as an input parameter. Valid values: COMMON and SENIOR.
Operator string: The operator, which is not required as an input parameter.
PolicyType string: The permission type. Valid values: ADMIN, DATASOURCE, DATABASE, TABLE, VIEW, FUNCTION, COLUMN, and ENGINE. Note: If it is left empty, ADMIN is used.
ReAuth bool: Whether the grantee is allowed to further grant the permissions. Valid values: false (default) and true (the grantee can grant permissions gained here to other sub-users).
Source string: The permission source, which is not required when input parameters are passed in. Valid values: USER (from the user) and WORKGROUP (from one or more associated work groups).
SourceId float64: The ID of the work group, which applies only when the value of the Source field is WORKGROUP.
SourceName string: The name of the work group, which applies only when the value of the Source field is WORKGROUP.
View string: The name of the target view. * represents all views in the current database. To grant admin permissions, it must be *; to grant data connection and database permissions, it must be null; to grant other permissions, it can be any view.

catalog String: The name of the target data source. To grant admin permission, it must be * (all resources at this level); to grant data source and database permissions, it must be COSDataCatalog or *; to grant table permissions, it can be a custom data source; if it is left empty, DataLakeCatalog is used. Note: To grant permissions on a custom data source, the permissions that can be managed in the Data Lake Compute console are subsets of the account permissions granted when you connect the data source to the console.
database String: The name of the target database. * represents all databases in the current catalog. To grant admin permissions, it must be *; to grant data connection permissions, it must be null; to grant other permissions, it can be any database.
operation String: The target permissions, which vary by permission level. Admin: ALL (default); data connection: CREATE; database: ALL, CREATE, ALTER, and DROP; table: ALL, SELECT, INSERT, ALTER, DELETE, DROP, and UPDATE. Note: For table permissions, if a data source other than COSDataCatalog is specified, only the SELECT permission can be granted here.
table String: The name of the target table. * represents all tables in the current database. To grant admin permissions, it must be *; to grant data connection and database permissions, it must be null; to grant other permissions, it can be any table.
column String: The name of the target column. * represents all columns. To grant admin permissions, it must be *.
createTime String: The permission policy creation time, which is not required as an input parameter.
dataEngine String: The name of the target data engine. * represents all engines. To grant admin permissions, it must be *.
function String: The name of the target function. * represents all functions in the current catalog. To grant admin permissions, it must be *; to grant data connection permissions, it must be null; to grant other permissions, it can be any function.
id Double: The policy ID.
mode String: The grant mode, which is not required as an input parameter. Valid values: COMMON and SENIOR.
operator String: The operator, which is not required as an input parameter.
policyType String: The permission type. Valid values: ADMIN, DATASOURCE, DATABASE, TABLE, VIEW, FUNCTION, COLUMN, and ENGINE. Note: If it is left empty, ADMIN is used.
reAuth Boolean: Whether the grantee is allowed to further grant the permissions. Valid values: false (default) and true (the grantee can grant permissions gained here to other sub-users).
source String: The permission source, which is not required when input parameters are passed in. Valid values: USER (from the user) and WORKGROUP (from one or more associated work groups).
sourceId Double: The ID of the work group, which applies only when the value of the Source field is WORKGROUP.
sourceName String: The name of the work group, which applies only when the value of the Source field is WORKGROUP.
view String: The name of the target view. * represents all views in the current database. To grant admin permissions, it must be *; to grant data connection and database permissions, it must be null; to grant other permissions, it can be any view.

catalog string: The name of the target data source. To grant admin permission, it must be * (all resources at this level); to grant data source and database permissions, it must be COSDataCatalog or *; to grant table permissions, it can be a custom data source; if it is left empty, DataLakeCatalog is used. Note: To grant permissions on a custom data source, the permissions that can be managed in the Data Lake Compute console are subsets of the account permissions granted when you connect the data source to the console.
database string: The name of the target database. * represents all databases in the current catalog. To grant admin permissions, it must be *; to grant data connection permissions, it must be null; to grant other permissions, it can be any database.
operation string: The target permissions, which vary by permission level. Admin: ALL (default); data connection: CREATE; database: ALL, CREATE, ALTER, and DROP; table: ALL, SELECT, INSERT, ALTER, DELETE, DROP, and UPDATE. Note: For table permissions, if a data source other than COSDataCatalog is specified, only the SELECT permission can be granted here.
table string: The name of the target table. * represents all tables in the current database. To grant admin permissions, it must be *; to grant data connection and database permissions, it must be null; to grant other permissions, it can be any table.
column string: The name of the target column. * represents all columns. To grant admin permissions, it must be *.
createTime string: The permission policy creation time, which is not required as an input parameter.
dataEngine string: The name of the target data engine. * represents all engines. To grant admin permissions, it must be *.
function string: The name of the target function. * represents all functions in the current catalog. To grant admin permissions, it must be *; to grant data connection permissions, it must be null; to grant other permissions, it can be any function.
id number: The policy ID.
mode string: The grant mode, which is not required as an input parameter. Valid values: COMMON and SENIOR.
operator string: The operator, which is not required as an input parameter.
policyType string: The permission type. Valid values: ADMIN, DATASOURCE, DATABASE, TABLE, VIEW, FUNCTION, COLUMN, and ENGINE. Note: If it is left empty, ADMIN is used.
reAuth boolean: Whether the grantee is allowed to further grant the permissions. Valid values: false (default) and true (the grantee can grant permissions gained here to other sub-users).
source string: The permission source, which is not required when input parameters are passed in. Valid values: USER (from the user) and WORKGROUP (from one or more associated work groups).
sourceId number: The ID of the work group, which applies only when the value of the Source field is WORKGROUP.
sourceName string: The name of the work group, which applies only when the value of the Source field is WORKGROUP.
view string: The name of the target view. * represents all views in the current database. To grant admin permissions, it must be *; to grant data connection and database permissions, it must be null; to grant other permissions, it can be any view.

catalog str: The name of the target data source. To grant admin permission, it must be * (all resources at this level); to grant data source and database permissions, it must be COSDataCatalog or *; to grant table permissions, it can be a custom data source; if it is left empty, DataLakeCatalog is used. Note: To grant permissions on a custom data source, the permissions that can be managed in the Data Lake Compute console are subsets of the account permissions granted when you connect the data source to the console.
database str: The name of the target database. * represents all databases in the current catalog. To grant admin permissions, it must be *; to grant data connection permissions, it must be null; to grant other permissions, it can be any database.
operation str: The target permissions, which vary by permission level. Admin: ALL (default); data connection: CREATE; database: ALL, CREATE, ALTER, and DROP; table: ALL, SELECT, INSERT, ALTER, DELETE, DROP, and UPDATE. Note: For table permissions, if a data source other than COSDataCatalog is specified, only the SELECT permission can be granted here.
table str: The name of the target table. * represents all tables in the current database. To grant admin permissions, it must be *; to grant data connection and database permissions, it must be null; to grant other permissions, it can be any table.
column str: The name of the target column. * represents all columns. To grant admin permissions, it must be *.
create_time str: The permission policy creation time, which is not required as an input parameter.
data_engine str: The name of the target data engine. * represents all engines. To grant admin permissions, it must be *.
function str: The name of the target function. * represents all functions in the current catalog. To grant admin permissions, it must be *; to grant data connection permissions, it must be null; to grant other permissions, it can be any function.
id float: The policy ID.
mode str: The grant mode, which is not required as an input parameter. Valid values: COMMON and SENIOR.
operator str: The operator, which is not required as an input parameter.
policy_type str: The permission type. Valid values: ADMIN, DATASOURCE, DATABASE, TABLE, VIEW, FUNCTION, COLUMN, and ENGINE. Note: If it is left empty, ADMIN is used.
re_auth bool: Whether the grantee is allowed to further grant the permissions. Valid values: false (default) and true (the grantee can grant permissions gained here to other sub-users).
source str: The permission source, which is not required when input parameters are passed in. Valid values: USER (from the user) and WORKGROUP (from one or more associated work groups).
source_id float: The ID of the work group, which applies only when the value of the Source field is WORKGROUP.
source_name str: The name of the work group, which applies only when the value of the Source field is WORKGROUP.
view str: The name of the target view. * represents all views in the current database. To grant admin permissions, it must be *; to grant data connection and database permissions, it must be null; to grant other permissions, it can be any view.

catalog String: The name of the target data source. To grant admin permission, it must be * (all resources at this level); to grant data source and database permissions, it must be COSDataCatalog or *; to grant table permissions, it can be a custom data source; if it is left empty, DataLakeCatalog is used. Note: To grant permissions on a custom data source, the permissions that can be managed in the Data Lake Compute console are subsets of the account permissions granted when you connect the data source to the console.
database String: The name of the target database. * represents all databases in the current catalog. To grant admin permissions, it must be *; to grant data connection permissions, it must be null; to grant other permissions, it can be any database.
operation String: The target permissions, which vary by permission level. Admin: ALL (default); data connection: CREATE; database: ALL, CREATE, ALTER, and DROP; table: ALL, SELECT, INSERT, ALTER, DELETE, DROP, and UPDATE. Note: For table permissions, if a data source other than COSDataCatalog is specified, only the SELECT permission can be granted here.
table String: The name of the target table. * represents all tables in the current database. To grant admin permissions, it must be *; to grant data connection and database permissions, it must be null; to grant other permissions, it can be any table.
column String: The name of the target column. * represents all columns. To grant admin permissions, it must be *.
createTime String: The permission policy creation time, which is not required as an input parameter.
dataEngine String: The name of the target data engine. * represents all engines. To grant admin permissions, it must be *.
function String: The name of the target function. * represents all functions in the current catalog. To grant admin permissions, it must be *; to grant data connection permissions, it must be null; to grant other permissions, it can be any function.
id Number: The policy ID.
mode String: The grant mode, which is not required as an input parameter. Valid values: COMMON and SENIOR.
operator String: The operator, which is not required as an input parameter.
policyType String: The permission type. Valid values: ADMIN, DATASOURCE, DATABASE, TABLE, VIEW, FUNCTION, COLUMN, and ENGINE. Note: If it is left empty, ADMIN is used.
reAuth Boolean: Whether the grantee is allowed to further grant the permissions. Valid values: false (default) and true (the grantee can grant permissions gained here to other sub-users).
source String: The permission source, which is not required when input parameters are passed in. Valid values: USER (from the user) and WORKGROUP (from one or more associated work groups).
sourceId Number: The ID of the work group, which applies only when the value of the Source field is WORKGROUP.
sourceName String: The name of the work group, which applies only when the value of the Source field is WORKGROUP.
view String: The name of the target view. * represents all views in the current database. To grant admin permissions, it must be *; to grant data connection and database permissions, it must be null; to grant other permissions, it can be any view.

Package Details

Repository: tencentcloud tencentcloudstack/terraform-provider-tencentcloud
License
Notes: This Pulumi package is based on the tencentcloud Terraform Provider.

tencentcloud 1.82.17 published on Thursday, Aug 14, 2025 by tencentcloudstack

tencentcloudstack/terraform-provider-tencentcloud

tencentcloud.DlcAttachUserPolicyOperation

On this page

On this page

Create DlcAttachUserPolicyOperation Resource

Constructor syntax

Parameters

DlcAttachUserPolicyOperation Resource Properties

Inputs

Outputs

Look up Existing DlcAttachUserPolicyOperation Resource

Supporting Types

DlcAttachUserPolicyOperationPolicySet, DlcAttachUserPolicyOperationPolicySetArgs

Package Details

On this page

On this page