Permission interface
Role definition permissions.
Properties
| actions | Allowed actions. |
| condition | The conditions on the role definition. This limits the resources it can be assigned to. e.g.: @Resource[Microsoft.Storage/storageAccounts/blobServices/containers:ContainerName] StringEqualsIgnoreCase 'foo_storage_container' NOTE: This property will not be serialized. It can only be populated by the server. |
| condition |
Version of the condition. Currently the only accepted value is '2.0' NOTE: This property will not be serialized. It can only be populated by the server. |
| data |
Allowed Data actions. |
| not |
Denied actions. |
| not |
Denied Data actions. |
Property Details
actions
Allowed actions.
actions?: string[]Property Value
string[]
condition
The conditions on the role definition. This limits the resources it can be assigned to. e.g.: @Resource[Microsoft.Storage/storageAccounts/blobServices/containers:ContainerName] StringEqualsIgnoreCase 'foo_storage_container' NOTE: This property will not be serialized. It can only be populated by the server.
condition?: stringProperty Value
string
conditionVersion
Version of the condition. Currently the only accepted value is '2.0' NOTE: This property will not be serialized. It can only be populated by the server.
conditionVersion?: stringProperty Value
string
dataActions
Allowed Data actions.
dataActions?: string[]Property Value
string[]
notActions
Denied actions.
notActions?: string[]Property Value
string[]
notDataActions
Denied Data actions.
notDataActions?: string[]Property Value
string[]
