pulumi-azure-kotlin/com.pulumi.azure.keyvault.kotlin/ManagedHardwareSecurityModuleRoleDefinitionArgs

ManagedHardwareSecurityModuleRoleDefinitionArgs

data class ManagedHardwareSecurityModuleRoleDefinitionArgs(val description: Output<String>? = null, val name: Output<String>? = null, val permissions: Output<List<ManagedHardwareSecurityModuleRoleDefinitionPermissionArgs>>? = null, val roleName: Output<String>? = null, val vaultBaseUrl: Output<String>? = null) : ConvertibleToJava<ManagedHardwareSecurityModuleRoleDefinitionArgs>

Manages a KeyVault Managed Hardware Security Module Role Definition. This resource works together with Managed hardware security module resource.

Example Usage

package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.azure.keyvault.ManagedHardwareSecurityModule;
import com.pulumi.azure.keyvault.ManagedHardwareSecurityModuleArgs;
import com.pulumi.azure.keyvault.ManagedHardwareSecurityModuleRoleDefinition;
import com.pulumi.azure.keyvault.ManagedHardwareSecurityModuleRoleDefinitionArgs;
import com.pulumi.azure.keyvault.inputs.ManagedHardwareSecurityModuleRoleDefinitionPermissionArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
    public static void main(String[] args) {
        Pulumi.run(App::stack);
    }
    public static void stack(Context ctx) {
        var example = new ManagedHardwareSecurityModule("example", ManagedHardwareSecurityModuleArgs.builder()
            .name("example")
            .resourceGroupName(exampleAzurermResourceGroup.name())
            .location(exampleAzurermResourceGroup.location())
            .skuName("Standard_B1")
            .tenantId(current.tenantId())
            .adminObjectIds(current.objectId())
            .purgeProtectionEnabled(false)
            .activeConfig(%!v(PANIC=Format method: runtime error: invalid memory address or nil pointer dereference))
            .build());
        var exampleManagedHardwareSecurityModuleRoleDefinition = new ManagedHardwareSecurityModuleRoleDefinition("exampleManagedHardwareSecurityModuleRoleDefinition", ManagedHardwareSecurityModuleRoleDefinitionArgs.builder()
            .name("7d206142-bf01-11ed-80bc-00155d61ee9e")
            .vaultBaseUrl(example.hsmUri())
            .description("desc foo")
            .permissions(ManagedHardwareSecurityModuleRoleDefinitionPermissionArgs.builder()
                .dataActions("Microsoft.KeyVault/managedHsm/keys/read/action")
                .build())
            .build());
    }
}
Content copied to clipboard

Import

KeyVaults can be imported using the resource id, e.g.

$ pulumi import azure:keyvault/managedHardwareSecurityModuleRoleDefinition:ManagedHardwareSecurityModuleRoleDefinition example https://0000.managedhsm.azure.net///RoleDefinition/00000000-0000-0000-0000-000000000000
Content copied to clipboard

Constructors

fun ManagedHardwareSecurityModuleRoleDefinitionArgs(description: Output<String>? = null, name: Output<String>? = null, permissions: Output<List<ManagedHardwareSecurityModuleRoleDefinitionPermissionArgs>>? = null, roleName: Output<String>? = null, vaultBaseUrl: Output<String>? = null)

Functions

Link copied to clipboard
open override fun toJava(): ManagedHardwareSecurityModuleRoleDefinitionArgs

Properties

Link copied to clipboard
val description: Output<String>? = null

Specifies a text description about this KeyVault Role Definition.

Link copied to clipboard
val name: Output<String>? = null

The name which should be used for this KeyVault Role Definition. Changing this forces a new KeyVault Role Definition to be created.

Link copied to clipboard
val permissions: Output<List<ManagedHardwareSecurityModuleRoleDefinitionPermissionArgs>>? = null

One or more permission blocks as defined below.

Link copied to clipboard
val roleName: Output<String>? = null

Specify a name for this KeyVault Role Definition.

Link copied to clipboard
val vaultBaseUrl: Output<String>? = null

The base URL of the managed hardware security module resource. Changing this forces a new KeyVault Role Definition to be created.