This data source provides a list of Ram user permissions.
# Declare the data source
data "alicloud_ram_users" "default" {
}
# permissions
data "alicloud_cs_kubernetes_permissions" "default" {
uid = data.alicloud_ram_users.default.users.0.id
}
output "permissions" {
value = data.alicloud_cs_kubernetes_permissions.default.permissions
}
The following arguments are supported.
uid
- (Required) The ID of the RAM user. If you want to query the permissions of a RAM role, specify the ID of the RAM role.id
- Resource ID.uid
- The ID of the RAM user. If you want to query the permissions of a RAM role, specify the ID of the RAM role.permissions
- A list of user permission. See permissions
below.permissions
The permissions mapping supports the following:
resource_id
- The permission settings to manage ACK clusters. resource_type
- The authorization type. Valid values cluster
, namespace
and console
.role_name
- The name of the predefined role. If a custom role is assigned, the value is the name of the assigined custom role.role_type
- The predefined role. Valid values admin
,ops
,dev
,restricted
and custom
.is_owner
- Indicates whether the permissions are granted to the cluster owner. Valid values false
, true
.is_ram_role
- Indicates whether the permissions are granted to the RAM role. Valid values false
, true
.