Volcengine v0.0.38 published on Friday, Oct 31, 2025 by Volcengine
Volcengine v0.0.38 published on Friday, Oct 31, 2025 by Volcengine
Use this data source to query detailed information of cloud identity permission set assignments
Example Usage
import * as pulumi from "@pulumi/pulumi";
import * as volcengine from "@pulumi/volcengine";
import * as volcengine from "@volcengine/pulumi";
const fooPermissionSet = new volcengine.cloud_identity.PermissionSet("fooPermissionSet", {
description: "tf",
sessionDuration: 5000,
permissionPolicies: [
{
permissionPolicyType: "System",
permissionPolicyName: "AdministratorAccess",
inlinePolicyDocument: "",
},
{
permissionPolicyType: "System",
permissionPolicyName: "ReadOnlyAccess",
inlinePolicyDocument: "",
},
{
permissionPolicyType: "Inline",
inlinePolicyDocument: "{\"Statement\":[{\"Effect\":\"Allow\",\"Action\":[\"auto_scaling:DescribeScalingGroups\"],\"Resource\":[\"*\"]}]}",
},
],
});
const fooUser = new volcengine.cloud_identity.User("fooUser", {
userName: "acc-test-user",
displayName: "tf-test-user",
description: "tf",
email: "88@qq.com",
phone: "181",
});
const fooPermissionSetAssignment = new volcengine.cloud_identity.PermissionSetAssignment("fooPermissionSetAssignment", {
permissionSetId: fooPermissionSet.id,
targetId: "210026****",
principalType: "User",
principalId: fooUser.id,
});
const fooPermissionSetAssignments = volcengine.cloud_identity.getPermissionSetAssignmentsOutput({
permissionSetId: fooPermissionSetAssignment.permissionSetId,
});
import pulumi
import pulumi_volcengine as volcengine
foo_permission_set = volcengine.cloud_identity.PermissionSet("fooPermissionSet",
description="tf",
session_duration=5000,
permission_policies=[
volcengine.cloud_identity.PermissionSetPermissionPolicyArgs(
permission_policy_type="System",
permission_policy_name="AdministratorAccess",
inline_policy_document="",
),
volcengine.cloud_identity.PermissionSetPermissionPolicyArgs(
permission_policy_type="System",
permission_policy_name="ReadOnlyAccess",
inline_policy_document="",
),
volcengine.cloud_identity.PermissionSetPermissionPolicyArgs(
permission_policy_type="Inline",
inline_policy_document="{\"Statement\":[{\"Effect\":\"Allow\",\"Action\":[\"auto_scaling:DescribeScalingGroups\"],\"Resource\":[\"*\"]}]}",
),
])
foo_user = volcengine.cloud_identity.User("fooUser",
user_name="acc-test-user",
display_name="tf-test-user",
description="tf",
email="88@qq.com",
phone="181")
foo_permission_set_assignment = volcengine.cloud_identity.PermissionSetAssignment("fooPermissionSetAssignment",
permission_set_id=foo_permission_set.id,
target_id="210026****",
principal_type="User",
principal_id=foo_user.id)
foo_permission_set_assignments = volcengine.cloud_identity.get_permission_set_assignments_output(permission_set_id=foo_permission_set_assignment.permission_set_id)
package main
import (
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
"github.com/volcengine/pulumi-volcengine/sdk/go/volcengine/cloud_identity"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
fooPermissionSet, err := cloud_identity.NewPermissionSet(ctx, "fooPermissionSet", &cloud_identity.PermissionSetArgs{
Description: pulumi.String("tf"),
SessionDuration: pulumi.Int(5000),
PermissionPolicies: cloud_identity.PermissionSetPermissionPolicyArray{
&cloud_identity.PermissionSetPermissionPolicyArgs{
PermissionPolicyType: pulumi.String("System"),
PermissionPolicyName: pulumi.String("AdministratorAccess"),
InlinePolicyDocument: pulumi.String(""),
},
&cloud_identity.PermissionSetPermissionPolicyArgs{
PermissionPolicyType: pulumi.String("System"),
PermissionPolicyName: pulumi.String("ReadOnlyAccess"),
InlinePolicyDocument: pulumi.String(""),
},
&cloud_identity.PermissionSetPermissionPolicyArgs{
PermissionPolicyType: pulumi.String("Inline"),
InlinePolicyDocument: pulumi.String("{\"Statement\":[{\"Effect\":\"Allow\",\"Action\":[\"auto_scaling:DescribeScalingGroups\"],\"Resource\":[\"*\"]}]}"),
},
},
})
if err != nil {
return err
}
fooUser, err := cloud_identity.NewUser(ctx, "fooUser", &cloud_identity.UserArgs{
UserName: pulumi.String("acc-test-user"),
DisplayName: pulumi.String("tf-test-user"),
Description: pulumi.String("tf"),
Email: pulumi.String("88@qq.com"),
Phone: pulumi.String("181"),
})
if err != nil {
return err
}
fooPermissionSetAssignment, err := cloud_identity.NewPermissionSetAssignment(ctx, "fooPermissionSetAssignment", &cloud_identity.PermissionSetAssignmentArgs{
PermissionSetId: fooPermissionSet.ID(),
TargetId: pulumi.String("210026****"),
PrincipalType: pulumi.String("User"),
PrincipalId: fooUser.ID(),
})
if err != nil {
return err
}
_ = cloud_identity.GetPermissionSetAssignmentsOutput(ctx, cloud_identity.GetPermissionSetAssignmentsOutputArgs{
PermissionSetId: fooPermissionSetAssignment.PermissionSetId,
}, nil)
return nil
})
}
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using Volcengine = Pulumi.Volcengine;
return await Deployment.RunAsync(() =>
{
var fooPermissionSet = new Volcengine.Cloud_identity.PermissionSet("fooPermissionSet", new()
{
Description = "tf",
SessionDuration = 5000,
PermissionPolicies = new[]
{
new Volcengine.Cloud_identity.Inputs.PermissionSetPermissionPolicyArgs
{
PermissionPolicyType = "System",
PermissionPolicyName = "AdministratorAccess",
InlinePolicyDocument = "",
},
new Volcengine.Cloud_identity.Inputs.PermissionSetPermissionPolicyArgs
{
PermissionPolicyType = "System",
PermissionPolicyName = "ReadOnlyAccess",
InlinePolicyDocument = "",
},
new Volcengine.Cloud_identity.Inputs.PermissionSetPermissionPolicyArgs
{
PermissionPolicyType = "Inline",
InlinePolicyDocument = "{\"Statement\":[{\"Effect\":\"Allow\",\"Action\":[\"auto_scaling:DescribeScalingGroups\"],\"Resource\":[\"*\"]}]}",
},
},
});
var fooUser = new Volcengine.Cloud_identity.User("fooUser", new()
{
UserName = "acc-test-user",
DisplayName = "tf-test-user",
Description = "tf",
Email = "88@qq.com",
Phone = "181",
});
var fooPermissionSetAssignment = new Volcengine.Cloud_identity.PermissionSetAssignment("fooPermissionSetAssignment", new()
{
PermissionSetId = fooPermissionSet.Id,
TargetId = "210026****",
PrincipalType = "User",
PrincipalId = fooUser.Id,
});
var fooPermissionSetAssignments = Volcengine.Cloud_identity.GetPermissionSetAssignments.Invoke(new()
{
PermissionSetId = fooPermissionSetAssignment.PermissionSetId,
});
});
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.volcengine.cloud_identity.PermissionSet;
import com.pulumi.volcengine.cloud_identity.PermissionSetArgs;
import com.pulumi.volcengine.cloud_identity.inputs.PermissionSetPermissionPolicyArgs;
import com.pulumi.volcengine.cloud_identity.User;
import com.pulumi.volcengine.cloud_identity.UserArgs;
import com.pulumi.volcengine.cloud_identity.PermissionSetAssignment;
import com.pulumi.volcengine.cloud_identity.PermissionSetAssignmentArgs;
import com.pulumi.volcengine.cloud_identity.Cloud_identityFunctions;
import com.pulumi.volcengine.cloud_identity.inputs.GetPermissionSetAssignmentsArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
var fooPermissionSet = new PermissionSet("fooPermissionSet", PermissionSetArgs.builder()
.description("tf")
.sessionDuration(5000)
.permissionPolicies(
PermissionSetPermissionPolicyArgs.builder()
.permissionPolicyType("System")
.permissionPolicyName("AdministratorAccess")
.inlinePolicyDocument("")
.build(),
PermissionSetPermissionPolicyArgs.builder()
.permissionPolicyType("System")
.permissionPolicyName("ReadOnlyAccess")
.inlinePolicyDocument("")
.build(),
PermissionSetPermissionPolicyArgs.builder()
.permissionPolicyType("Inline")
.inlinePolicyDocument("{\"Statement\":[{\"Effect\":\"Allow\",\"Action\":[\"auto_scaling:DescribeScalingGroups\"],\"Resource\":[\"*\"]}]}")
.build())
.build());
var fooUser = new User("fooUser", UserArgs.builder()
.userName("acc-test-user")
.displayName("tf-test-user")
.description("tf")
.email("88@qq.com")
.phone("181")
.build());
var fooPermissionSetAssignment = new PermissionSetAssignment("fooPermissionSetAssignment", PermissionSetAssignmentArgs.builder()
.permissionSetId(fooPermissionSet.id())
.targetId("210026****")
.principalType("User")
.principalId(fooUser.id())
.build());
final var fooPermissionSetAssignments = Cloud_identityFunctions.getPermissionSetAssignments(GetPermissionSetAssignmentsArgs.builder()
.permissionSetId(fooPermissionSetAssignment.permissionSetId())
.build());
}
}
resources:
fooPermissionSet:
type: volcengine:cloud_identity:PermissionSet
properties:
description: tf
sessionDuration: 5000
permissionPolicies:
- permissionPolicyType: System
permissionPolicyName: AdministratorAccess
inlinePolicyDocument:
- permissionPolicyType: System
permissionPolicyName: ReadOnlyAccess
inlinePolicyDocument:
- permissionPolicyType: Inline
inlinePolicyDocument: '{"Statement":[{"Effect":"Allow","Action":["auto_scaling:DescribeScalingGroups"],"Resource":["*"]}]}'
fooUser:
type: volcengine:cloud_identity:User
properties:
userName: acc-test-user
displayName: tf-test-user
description: tf
email: 88@qq.com
phone: '181'
fooPermissionSetAssignment:
type: volcengine:cloud_identity:PermissionSetAssignment
properties:
permissionSetId: ${fooPermissionSet.id}
targetId: 210026****
principalType: User
principalId: ${fooUser.id}
variables:
fooPermissionSetAssignments:
fn::invoke:
Function: volcengine:cloud_identity:getPermissionSetAssignments
Arguments:
permissionSetId: ${fooPermissionSetAssignment.permissionSetId}
Using getPermissionSetAssignments
Two invocation forms are available. The direct form accepts plain arguments and either blocks until the result value is available, or returns a Promise-wrapped result. The output form accepts Input-wrapped arguments and returns an Output-wrapped result.
function getPermissionSetAssignments(args: GetPermissionSetAssignmentsArgs, opts?: InvokeOptions): Promise<GetPermissionSetAssignmentsResult>
function getPermissionSetAssignmentsOutput(args: GetPermissionSetAssignmentsOutputArgs, opts?: InvokeOptions): Output<GetPermissionSetAssignmentsResult>def get_permission_set_assignments(name_regex: Optional[str] = None,
output_file: Optional[str] = None,
permission_set_id: Optional[str] = None,
principal_id: Optional[str] = None,
principal_type: Optional[str] = None,
target_id: Optional[str] = None,
opts: Optional[InvokeOptions] = None) -> GetPermissionSetAssignmentsResult
def get_permission_set_assignments_output(name_regex: Optional[pulumi.Input[str]] = None,
output_file: Optional[pulumi.Input[str]] = None,
permission_set_id: Optional[pulumi.Input[str]] = None,
principal_id: Optional[pulumi.Input[str]] = None,
principal_type: Optional[pulumi.Input[str]] = None,
target_id: Optional[pulumi.Input[str]] = None,
opts: Optional[InvokeOptions] = None) -> Output[GetPermissionSetAssignmentsResult]func GetPermissionSetAssignments(ctx *Context, args *GetPermissionSetAssignmentsArgs, opts ...InvokeOption) (*GetPermissionSetAssignmentsResult, error)
func GetPermissionSetAssignmentsOutput(ctx *Context, args *GetPermissionSetAssignmentsOutputArgs, opts ...InvokeOption) GetPermissionSetAssignmentsResultOutput> Note: This function is named GetPermissionSetAssignments in the Go SDK.
public static class GetPermissionSetAssignments
{
public static Task<GetPermissionSetAssignmentsResult> InvokeAsync(GetPermissionSetAssignmentsArgs args, InvokeOptions? opts = null)
public static Output<GetPermissionSetAssignmentsResult> Invoke(GetPermissionSetAssignmentsInvokeArgs args, InvokeOptions? opts = null)
}public static CompletableFuture<GetPermissionSetAssignmentsResult> getPermissionSetAssignments(GetPermissionSetAssignmentsArgs args, InvokeOptions options)
public static Output<GetPermissionSetAssignmentsResult> getPermissionSetAssignments(GetPermissionSetAssignmentsArgs args, InvokeOptions options)
fn::invoke:
function: volcengine:cloud_identity/getPermissionSetAssignments:getPermissionSetAssignments
arguments:
# arguments dictionaryThe following arguments are supported:
- Name
Regex string - A Name Regex of Resource.
- Output
File string - File name where to save data source results.
- Permission
Set stringId - The id of cloud identity permission set.
- Principal
Id string - The principal id of cloud identity permission set. When the
principal_typeisUser, this field is specified toUserId. When theprincipal_typeisGroup, this field is specified toGroupId. - Principal
Type string - The principal type of cloud identity permission set. Valid values:
User,Group. - Target
Id string - The target account id of cloud identity permission set assignment.
- Name
Regex string - A Name Regex of Resource.
- Output
File string - File name where to save data source results.
- Permission
Set stringId - The id of cloud identity permission set.
- Principal
Id string - The principal id of cloud identity permission set. When the
principal_typeisUser, this field is specified toUserId. When theprincipal_typeisGroup, this field is specified toGroupId. - Principal
Type string - The principal type of cloud identity permission set. Valid values:
User,Group. - Target
Id string - The target account id of cloud identity permission set assignment.
- name
Regex String - A Name Regex of Resource.
- output
File String - File name where to save data source results.
- permission
Set StringId - The id of cloud identity permission set.
- principal
Id String - The principal id of cloud identity permission set. When the
principal_typeisUser, this field is specified toUserId. When theprincipal_typeisGroup, this field is specified toGroupId. - principal
Type String - The principal type of cloud identity permission set. Valid values:
User,Group. - target
Id String - The target account id of cloud identity permission set assignment.
- name
Regex string - A Name Regex of Resource.
- output
File string - File name where to save data source results.
- permission
Set stringId - The id of cloud identity permission set.
- principal
Id string - The principal id of cloud identity permission set. When the
principal_typeisUser, this field is specified toUserId. When theprincipal_typeisGroup, this field is specified toGroupId. - principal
Type string - The principal type of cloud identity permission set. Valid values:
User,Group. - target
Id string - The target account id of cloud identity permission set assignment.
- name_
regex str - A Name Regex of Resource.
- output_
file str - File name where to save data source results.
- permission_
set_ strid - The id of cloud identity permission set.
- principal_
id str - The principal id of cloud identity permission set. When the
principal_typeisUser, this field is specified toUserId. When theprincipal_typeisGroup, this field is specified toGroupId. - principal_
type str - The principal type of cloud identity permission set. Valid values:
User,Group. - target_
id str - The target account id of cloud identity permission set assignment.
- name
Regex String - A Name Regex of Resource.
- output
File String - File name where to save data source results.
- permission
Set StringId - The id of cloud identity permission set.
- principal
Id String - The principal id of cloud identity permission set. When the
principal_typeisUser, this field is specified toUserId. When theprincipal_typeisGroup, this field is specified toGroupId. - principal
Type String - The principal type of cloud identity permission set. Valid values:
User,Group. - target
Id String - The target account id of cloud identity permission set assignment.
getPermissionSetAssignments Result
The following output properties are available:
- Assignments
List<Get
Permission Set Assignments Assignment> - The collection of query.
- Id string
- The provider-assigned unique ID for this managed resource.
- Total
Count int - The total count of query.
- Name
Regex string - Output
File string - Permission
Set stringId - The id of the cloud identity permission set.
- Principal
Id string - The principal id of the cloud identity permission set assignment.
- Principal
Type string - The principal type of the cloud identity permission set assignment.
- Target
Id string - The target account id of the cloud identity permission set assignment.
- Assignments
[]Get
Permission Set Assignments Assignment - The collection of query.
- Id string
- The provider-assigned unique ID for this managed resource.
- Total
Count int - The total count of query.
- Name
Regex string - Output
File string - Permission
Set stringId - The id of the cloud identity permission set.
- Principal
Id string - The principal id of the cloud identity permission set assignment.
- Principal
Type string - The principal type of the cloud identity permission set assignment.
- Target
Id string - The target account id of the cloud identity permission set assignment.
- assignments
List<Get
Permission Set Assignments Assignment> - The collection of query.
- id String
- The provider-assigned unique ID for this managed resource.
- total
Count Integer - The total count of query.
- name
Regex String - output
File String - permission
Set StringId - The id of the cloud identity permission set.
- principal
Id String - The principal id of the cloud identity permission set assignment.
- principal
Type String - The principal type of the cloud identity permission set assignment.
- target
Id String - The target account id of the cloud identity permission set assignment.
- assignments
Get
Permission Set Assignments Assignment[] - The collection of query.
- id string
- The provider-assigned unique ID for this managed resource.
- total
Count number - The total count of query.
- name
Regex string - output
File string - permission
Set stringId - The id of the cloud identity permission set.
- principal
Id string - The principal id of the cloud identity permission set assignment.
- principal
Type string - The principal type of the cloud identity permission set assignment.
- target
Id string - The target account id of the cloud identity permission set assignment.
- assignments
Sequence[Get
Permission Set Assignments Assignment] - The collection of query.
- id str
- The provider-assigned unique ID for this managed resource.
- total_
count int - The total count of query.
- name_
regex str - output_
file str - permission_
set_ strid - The id of the cloud identity permission set.
- principal_
id str - The principal id of the cloud identity permission set assignment.
- principal_
type str - The principal type of the cloud identity permission set assignment.
- target_
id str - The target account id of the cloud identity permission set assignment.
- assignments List<Property Map>
- The collection of query.
- id String
- The provider-assigned unique ID for this managed resource.
- total
Count Number - The total count of query.
- name
Regex String - output
File String - permission
Set StringId - The id of the cloud identity permission set.
- principal
Id String - The principal id of the cloud identity permission set assignment.
- principal
Type String - The principal type of the cloud identity permission set assignment.
- target
Id String - The target account id of the cloud identity permission set assignment.
Supporting Types
GetPermissionSetAssignmentsAssignment
- Create
Time string - The create time of the cloud identity permission set assignment.
- Id string
- The id of the cloud identity permission set.
- Permission
Set stringId - The id of cloud identity permission set.
- Permission
Set stringName - The name of the cloud identity permission set.
- Principal
Id string - The principal id of cloud identity permission set. When the
principal_typeisUser, this field is specified toUserId. When theprincipal_typeisGroup, this field is specified toGroupId. - Principal
Type string - The principal type of cloud identity permission set. Valid values:
User,Group. - Target
Id string - The target account id of cloud identity permission set assignment.
- Create
Time string - The create time of the cloud identity permission set assignment.
- Id string
- The id of the cloud identity permission set.
- Permission
Set stringId - The id of cloud identity permission set.
- Permission
Set stringName - The name of the cloud identity permission set.
- Principal
Id string - The principal id of cloud identity permission set. When the
principal_typeisUser, this field is specified toUserId. When theprincipal_typeisGroup, this field is specified toGroupId. - Principal
Type string - The principal type of cloud identity permission set. Valid values:
User,Group. - Target
Id string - The target account id of cloud identity permission set assignment.
- create
Time String - The create time of the cloud identity permission set assignment.
- id String
- The id of the cloud identity permission set.
- permission
Set StringId - The id of cloud identity permission set.
- permission
Set StringName - The name of the cloud identity permission set.
- principal
Id String - The principal id of cloud identity permission set. When the
principal_typeisUser, this field is specified toUserId. When theprincipal_typeisGroup, this field is specified toGroupId. - principal
Type String - The principal type of cloud identity permission set. Valid values:
User,Group. - target
Id String - The target account id of cloud identity permission set assignment.
- create
Time string - The create time of the cloud identity permission set assignment.
- id string
- The id of the cloud identity permission set.
- permission
Set stringId - The id of cloud identity permission set.
- permission
Set stringName - The name of the cloud identity permission set.
- principal
Id string - The principal id of cloud identity permission set. When the
principal_typeisUser, this field is specified toUserId. When theprincipal_typeisGroup, this field is specified toGroupId. - principal
Type string - The principal type of cloud identity permission set. Valid values:
User,Group. - target
Id string - The target account id of cloud identity permission set assignment.
- create_
time str - The create time of the cloud identity permission set assignment.
- id str
- The id of the cloud identity permission set.
- permission_
set_ strid - The id of cloud identity permission set.
- permission_
set_ strname - The name of the cloud identity permission set.
- principal_
id str - The principal id of cloud identity permission set. When the
principal_typeisUser, this field is specified toUserId. When theprincipal_typeisGroup, this field is specified toGroupId. - principal_
type str - The principal type of cloud identity permission set. Valid values:
User,Group. - target_
id str - The target account id of cloud identity permission set assignment.
- create
Time String - The create time of the cloud identity permission set assignment.
- id String
- The id of the cloud identity permission set.
- permission
Set StringId - The id of cloud identity permission set.
- permission
Set StringName - The name of the cloud identity permission set.
- principal
Id String - The principal id of cloud identity permission set. When the
principal_typeisUser, this field is specified toUserId. When theprincipal_typeisGroup, this field is specified toGroupId. - principal
Type String - The principal type of cloud identity permission set. Valid values:
User,Group. - target
Id String - The target account id of cloud identity permission set assignment.
Package Details
- Repository
- volcengine volcengine/pulumi-volcengine
- License
- Apache-2.0
- Notes
- This Pulumi package is based on the
volcengineTerraform Provider.
Volcengine v0.0.38 published on Friday, Oct 31, 2025 by Volcengine
