observe_rbac_statement¶

Manages a RBAC Statement.

Example Usage¶

data "observe_workspace" "default" {
  name = "Default"
}

data "observe_user" "example" {
  email = "[email protected]"
}

data "observe_rbac_group" "example" {
  name = "engineering"
}

resource "observe_rbac_statement" "user_example" {
  description = "Allow user access to workspace contents"
  subject {
    user = data.observe_user.example.oid
  }
  object {
    workspace = data.observe_workspace.default.id
  }
  role = "Viewer"
}

resource "observe_rbac_statement" "group_example" {
  description = "Allow group access to workspace contents"
  subject {
    group = data.observe_rbac_group.example.oid
  }
  object {
    workspace = data.observe_workspace.default.id
  }
  role = "Viewer"
}

Schema¶

Required¶

object (Block List, Min: 1, Max: 1) (see below for nested schema)
role (String)
subject (Block List, Min: 1, Max: 1) (see below for nested schema)

Optional¶

description (String)

Read-Only¶

id (String) The ID of this resource.
oid (String)

Nested Schema for `object`¶

Optional:

all (Boolean)
folder (String) The Observe ID for a folder.
id (String) The Observe ID for an object.
name (String) The name of object. Can be provided along with type.
owner (Boolean) True to bind to objects owned by the user. Can be provided along with type.
type (String) The type of object such as dataset.
workspace (String) The Observe ID for a workspace.

Nested Schema for `subject`¶

Optional:

all (Boolean)
group (String) OID of a RBAC Group.
user (String) OID of a user.

Import¶

Import is supported using the following syntax:

terraform import observe_rbac_statement.example 1414010

observe_rbac_statement¶

Example Usage¶

Schema¶

Required¶

Optional¶

Read-Only¶

Nested Schema for object¶

Nested Schema for subject¶

Import¶

Nested Schema for `object`¶

Nested Schema for `subject`¶