alicloud_cs_kubernetes_permissions

This data source provides a list of Ram user permissions.

-> NOTE: Available since v1.122.0.

Example Usage

# Declare the data source
data "alicloud_ram_users" "default" {
}

# permissions
data "alicloud_cs_kubernetes_permissions" "default" {
  uid = data.alicloud_ram_users.default.users.0.id
}

output "permissions" {
  value = data.alicloud_cs_kubernetes_permissions.default.permissions
}

Argument Reference

The following arguments are supported.

• uid - (Required) The ID of the RAM user. If you want to query the permissions of a RAM role, specify the ID of the RAM role.

Attributes Reference

• id - Resource ID.
• uid - The ID of the RAM user. If you want to query the permissions of a RAM role, specify the ID of the RAM role.
• permissions - A list of user permission. See permissions below.

permissions

The permissions mapping supports the following:

• resource_id - The permission settings to manage ACK clusters.
• resource_type - The authorization type. Valid values cluster, namespace and console.
• role_name - The name of the predefined role. If a custom role is assigned, the value is the name of the assigined custom role.
• role_type - The predefined role. Valid values admin,ops,dev,restricted and custom.
• is_owner - Indicates whether the permissions are granted to the cluster owner. Valid values false, true.
• is_ram_role - Indicates whether the permissions are granted to the RAM role. Valid values false, true.