Use this data source to look up API Token Permission Groups.
Commonly used as references within cloudflare_token
resources.
data "cloudflare_api_token_permission_groups" "all" {}
# Get zone level DNS read permission ID.
output "dns_read_permission_id" {
value = data.cloudflare_api_token_permission_groups.all.zone["DNS Read"] // 82e64a83756745bbbb1c9c2701bf816b
}
# Get account level "Load Balancing: Monitors and Pools Read" permission ID.
output "account_lb_monitors_and_read_id" {
value = data.cloudflare_api_token_permission_groups.all.account["Load Balancing: Monitors and Pools Read"] // 9d24387c6e8544e2bc4024a03991339f
}
# Get user level "Memberships Read" permission ID.
output "user_memberships_read_id" {
value = data.cloudflare_api_token_permission_groups.all.user["Memberships Read"] // 3518d0f75557482e952c6762d3e64903
}
account
(Map of String) Map of permissions for account level resources.id
(String) Checksum of permissions.permissions
(Map of String, Deprecated) Map of all permissions available. Should not be used as some permissions will overlap resource scope. Instead, use resource level specific attributes.r2
(Map of String) Map of permissions for r2 level resources.user
(Map of String) Map of permissions for user level resources.zone
(Map of String) Map of permissions for zone level resources.