authorization.azure.com/v1api20200801preview


APIVersion

Value Description
“2020-08-01-preview”

RoleAssignment

Generator information: - Generated from: /authorization/resource-manager/Microsoft.Authorization/preview/2020-08-01-preview/authorization-RoleAssignmentsCalls.json - ARM URI: /{scope}/providers/Microsoft.Authorization/roleAssignments/{roleAssignmentName}

Used by: RoleAssignmentList.

Property Description Type
metav1.TypeMeta
metav1.ObjectMeta
spec RoleAssignment_Spec
Optional
status RoleAssignment_STATUS
Optional

RoleAssignment_Spec

Property Description Type
azureName The name of the resource in Azure. This is often the same as the name of the resource in Kubernetes but it doesn’t have to be. string
Optional
condition The conditions on the role assignment. This limits the resources it can be assigned to. e.g.: @Resource[Microsoft.Storage/storageAccounts/blobServices/containers:ContainerName] StringEqualsIgnoreCase ‘foo_storage_container’ string
Optional
conditionVersion Version of the condition. Currently accepted value is ‘2.0’ string
Optional
delegatedManagedIdentityResourceReference Id of the delegated managed identity resource genruntime.ResourceReference
Optional
description Description of role assignment string
Optional
operatorSpec The specification for configuring operator behavior. This field is interpreted by the operator and not passed directly to Azure RoleAssignmentOperatorSpec
Optional
owner The owner of the resource. The owner controls where the resource goes when it is deployed. The owner also controls the resources lifecycle. When the owner is deleted the resource will also be deleted. This resource is an extension resource, which means that any other Azure resource can be its owner. genruntime.ArbitraryOwnerReference
Required
principalId The principal ID. string
Optional
principalIdFromConfig The principal ID. genruntime.ConfigMapReference
Optional
principalType The principal type of the assigned principal ID. RoleAssignmentProperties_PrincipalType
Optional
roleDefinitionReference The role definition ID. genruntime.ResourceReference
Required

RoleAssignment_STATUS

Property Description Type
condition The conditions on the role assignment. This limits the resources it can be assigned to. e.g.: @Resource[Microsoft.Storage/storageAccounts/blobServices/containers:ContainerName] StringEqualsIgnoreCase ‘foo_storage_container’ string
Optional
conditions The observed state of the resource conditions.Condition[]
Optional
conditionVersion Version of the condition. Currently accepted value is ‘2.0’ string
Optional
createdBy Id of the user who created the assignment string
Optional
createdOn Time it was created string
Optional
delegatedManagedIdentityResourceId Id of the delegated managed identity resource string
Optional
description Description of role assignment string
Optional
id The role assignment ID. string
Optional
name The role assignment name. string
Optional
principalId The principal ID. string
Optional
principalType The principal type of the assigned principal ID. RoleAssignmentProperties_PrincipalType_STATUS
Optional
roleDefinitionId The role definition ID. string
Optional
scope The role assignment scope. string
Optional
type The role assignment type. string
Optional
updatedBy Id of the user who updated the assignment string
Optional
updatedOn Time it was updated string
Optional

RoleAssignmentList

Generator information: - Generated from: /authorization/resource-manager/Microsoft.Authorization/preview/2020-08-01-preview/authorization-RoleAssignmentsCalls.json - ARM URI: /{scope}/providers/Microsoft.Authorization/roleAssignments/{roleAssignmentName}

Property Description Type
metav1.TypeMeta
metav1.ListMeta
items RoleAssignment[]
Optional

RoleAssignment_Spec

Used by: RoleAssignment.

Property Description Type
azureName The name of the resource in Azure. This is often the same as the name of the resource in Kubernetes but it doesn’t have to be. string
Optional
condition The conditions on the role assignment. This limits the resources it can be assigned to. e.g.: @Resource[Microsoft.Storage/storageAccounts/blobServices/containers:ContainerName] StringEqualsIgnoreCase ‘foo_storage_container’ string
Optional
conditionVersion Version of the condition. Currently accepted value is ‘2.0’ string
Optional
delegatedManagedIdentityResourceReference Id of the delegated managed identity resource genruntime.ResourceReference
Optional
description Description of role assignment string
Optional
operatorSpec The specification for configuring operator behavior. This field is interpreted by the operator and not passed directly to Azure RoleAssignmentOperatorSpec
Optional
owner The owner of the resource. The owner controls where the resource goes when it is deployed. The owner also controls the resources lifecycle. When the owner is deleted the resource will also be deleted. This resource is an extension resource, which means that any other Azure resource can be its owner. genruntime.ArbitraryOwnerReference
Required
principalId The principal ID. string
Optional
principalIdFromConfig The principal ID. genruntime.ConfigMapReference
Optional
principalType The principal type of the assigned principal ID. RoleAssignmentProperties_PrincipalType
Optional
roleDefinitionReference The role definition ID. genruntime.ResourceReference
Required

RoleAssignment_STATUS

Role Assignments

Used by: RoleAssignment.

Property Description Type
condition The conditions on the role assignment. This limits the resources it can be assigned to. e.g.: @Resource[Microsoft.Storage/storageAccounts/blobServices/containers:ContainerName] StringEqualsIgnoreCase ‘foo_storage_container’ string
Optional
conditions The observed state of the resource conditions.Condition[]
Optional
conditionVersion Version of the condition. Currently accepted value is ‘2.0’ string
Optional
createdBy Id of the user who created the assignment string
Optional
createdOn Time it was created string
Optional
delegatedManagedIdentityResourceId Id of the delegated managed identity resource string
Optional
description Description of role assignment string
Optional
id The role assignment ID. string
Optional
name The role assignment name. string
Optional
principalId The principal ID. string
Optional
principalType The principal type of the assigned principal ID. RoleAssignmentProperties_PrincipalType_STATUS
Optional
roleDefinitionId The role definition ID. string
Optional
scope The role assignment scope. string
Optional
type The role assignment type. string
Optional
updatedBy Id of the user who updated the assignment string
Optional
updatedOn Time it was updated string
Optional

RoleAssignmentOperatorSpec

Details for configuring operator behavior. Fields in this struct are interpreted by the operator directly rather than being passed to Azure

Used by: RoleAssignment_Spec.

Property Description Type
configMapExpressions configures where to place operator written dynamic ConfigMaps (created with CEL expressions). core.DestinationExpression[]
Optional
namingConvention The uuid generation technique to use for any role without an explicit AzureName. One of ‘stable’ or ‘random’. string
Optional
secretExpressions configures where to place operator written dynamic secrets (created with CEL expressions). core.DestinationExpression[]
Optional

RoleAssignmentProperties_PrincipalType

Used by: RoleAssignment_Spec.

Value Description
“ForeignGroup”
“Group”
“ServicePrincipal”
“User”

RoleAssignmentProperties_PrincipalType_STATUS

Used by: RoleAssignment_STATUS.

Value Description
“ForeignGroup”
“Group”
“ServicePrincipal”
“User”