Manages permissions for a Library
resource "azuredevops_project" "project" {
name = "Testing"
description = "Testing-description"
visibility = "private"
version_control = "Git"
work_item_template = "Agile"
}
data "azuredevops_group" "tf-project-readers" {
project_id = azuredevops_project.project.id
name = "Readers"
}
resource "azuredevops_library_permissions" "permissions" {
project_id = azuredevops_project.project.id
principal = data.azuredevops_group.tf-project-readers.id
permissions = {
"View" : "allow",
"Administer" : "allow",
"Use" : "allow",
}
}
The Azure DevOps UI uses roles to assign permissions for the Library.
Role | Allowed Permissions |
---|---|
Reader | View |
Creator | View, Create |
User | View, Use |
Administrator | View, Use, Administer |
The following arguments are supported:
project_id
- (Required) The ID of the project.principal
- (Required) The group principal to assign the permissions.permissions
- (Required) the permissions to assign. The following permissions are available.variable_group_id
- (Required) The id of the variable group to assign the permissions.replace
- (Optional) Replace (true
) or merge (false
) the permissions. Default: true
Permission | Description |
---|---|
View | View library item |
Administer | Administer library item |
Create | Create library item |
ViewSecrets | View library item secrets |
Use | Use library item |
Owner | Owner library item |
The resource does not support import.