UNPKG

@pulumi/openstack

Version:

A Pulumi package for creating and managing OpenStack cloud resources.

pulumi.io

pulumi/pulumi-openstack

163 lines (162 loc) 5.64 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
import * as pulumi from "@pulumi/pulumi"; /** * Manages a V3 Inherit Role assignment within OpenStack Keystone. This uses the * Openstack keystone `OS-INHERIT` api to created inherit roles within domains * and parent projects for users and groups. * * > **Note:** You _must_ have admin privileges in your OpenStack cloud to use * this resource. * * ## Example Usage * * ```typescript * import * as pulumi from "@pulumi/pulumi"; * import * as openstack from "@pulumi/openstack"; * * const user1 = new openstack.identity.User("user_1", { * name: "user_1", * domainId: "default", * }); * const role1 = new openstack.identity.Role("role_1", { * name: "role_1", * domainId: "default", * }); * const roleAssignment1 = new openstack.identity.InheritRoleAssignment("role_assignment_1", { * userId: user1.id, * domainId: "default", * roleId: role1.id, * }); * ``` * * ## Import * * Inherit role assignments can be imported using a constructed id. The id should * have the form of `domainID/projectID/groupID/userID/roleID`. When something is * not used then leave blank. * * For example this will import the inherit role assignment for: * projectID: 014395cd-89fc-4c9b-96b7-13d1ee79dad2, * userID: 4142e64b-1b35-44a0-9b1e-5affc7af1106, * roleID: ea257959-eeb1-4c10-8d33-26f0409a755d * ( domainID and groupID are left blank) * * ```sh * $ pulumi import openstack:identity/inheritRoleAssignment:InheritRoleAssignment role_assignment_1 /014395cd-89fc-4c9b-96b7-13d1ee79dad2//4142e64b-1b35-44a0-9b1e-5affc7af1106/ea257959-eeb1-4c10-8d33-26f0409a755d * ``` */ export declare class InheritRoleAssignment extends pulumi.CustomResource { /** * Get an existing InheritRoleAssignment resource's state with the given name, ID, and optional extra * properties used to qualify the lookup. * * @param name The _unique_ name of the resulting resource. * @param id The _unique_ provider ID of the resource to lookup. * @param state Any extra arguments used during the lookup. * @param opts Optional settings to control the behavior of the CustomResource. */ static get(name: string, id: pulumi.Input<pulumi.ID>, state?: InheritRoleAssignmentState, opts?: pulumi.CustomResourceOptions): InheritRoleAssignment; /** * Returns true if the given object is an instance of InheritRoleAssignment. This is designed to work even * when multiple copies of the Pulumi SDK have been loaded into the same process. */ static isInstance(obj: any): obj is InheritRoleAssignment; /** * The domain to assign the role in. */ readonly domainId: pulumi.Output<string | undefined>; /** * The group to assign the role to. */ readonly groupId: pulumi.Output<string | undefined>; /** * The project to assign the role in. * The project should be able to containt child projects. */ readonly projectId: pulumi.Output<string | undefined>; /** * The region in which to obtain the V3 Keystone client. * If omitted, the `region` argument of the provider is used. Changing this * creates a new inherit role assignment. */ readonly region: pulumi.Output<string>; /** * The role to assign. */ readonly roleId: pulumi.Output<string>; /** * The user to assign the role to. */ readonly userId: pulumi.Output<string | undefined>; /** * Create a InheritRoleAssignment resource with the given unique name, arguments, and options. * * @param name The _unique_ name of the resource. * @param args The arguments to use to populate this resource's properties. * @param opts A bag of options that control this resource's behavior. */ constructor(name: string, args: InheritRoleAssignmentArgs, opts?: pulumi.CustomResourceOptions); } /** * Input properties used for looking up and filtering InheritRoleAssignment resources. */ export interface InheritRoleAssignmentState { /** * The domain to assign the role in. */ domainId?: pulumi.Input<string>; /** * The group to assign the role to. */ groupId?: pulumi.Input<string>; /** * The project to assign the role in. * The project should be able to containt child projects. */ projectId?: pulumi.Input<string>; /** * The region in which to obtain the V3 Keystone client. * If omitted, the `region` argument of the provider is used. Changing this * creates a new inherit role assignment. */ region?: pulumi.Input<string>; /** * The role to assign. */ roleId?: pulumi.Input<string>; /** * The user to assign the role to. */ userId?: pulumi.Input<string>; } /** * The set of arguments for constructing a InheritRoleAssignment resource. */ export interface InheritRoleAssignmentArgs { /** * The domain to assign the role in. */ domainId?: pulumi.Input<string>; /** * The group to assign the role to. */ groupId?: pulumi.Input<string>; /** * The project to assign the role in. * The project should be able to containt child projects. */ projectId?: pulumi.Input<string>; /** * The region in which to obtain the V3 Keystone client. * If omitted, the `region` argument of the provider is used. Changing this * creates a new inherit role assignment. */ region?: pulumi.Input<string>; /** * The role to assign. */ roleId: pulumi.Input<string>; /** * The user to assign the role to. */ userId?: pulumi.Input<string>; }