This resource allows you to attach a role or databricks_instance_profile (AWS) to a databricks_service_principal.
Granting a service principal access to an instance profile
resource "databricks_instance_profile" "instance_profile" {
instance_profile_arn = "my_instance_profile_arn"
}
resource "databricks_service_principal" "this" {
display_name = "My Service Principal"
}
resource "databricks_service_principal_role" "my_service_principal_instance_profile" {
service_principal_id = databricks_service_principal.this.id
role = databricks_instance_profile.instance_profile.id
}
The following arguments are supported:
service_principal_id
- (Required) This is the id of the service principal resource.role
- (Required) This is the id of the role or instance profile resource.In addition to all arguments above, the following attributes are exported:
id
- The id in the format <service_principal_id>|<role>
.The following resources are often used in the same context: