alicloud_ram_users
更新時間:
This data source provides a list of RAM users in an Alibaba Cloud account according to the specified filters.
-> NOTE: Available since v1.0.0+.
Example Usage
provider "alicloud" {
region = "cn-beijing"
}
resource "alicloud_ram_group" "default" {
name = "group1"
comments = "group comments"
force = true
}
resource "alicloud_ram_user" "default" {
name = "user-example"
display_name = "displayname"
mobile = "86-18888888888"
email = "hello.uuu@aaa.com"
comments = "yoyoyo"
}
resource "alicloud_ram_group_membership" "default" {
group_name = alicloud_ram_group.default.name
user_names = ["${alicloud_ram_user.default.name}"]
}
resource "alicloud_ram_policy" "default" {
policy_name = "ram-policy-example"
policy_document = <<EOF
{
"Statement": [
{
"Action": [
"oss:ListObjects",
"oss:ListObjects"
],
"Effect": "Deny",
"Resource": [
"acs:oss:*:*:mybucket",
"acs:oss:*:*:mybucket/*"
]
}
],
"Version": "1"
}
EOF
description = "this is a policy example"
force = true
}
resource "alicloud_ram_user_policy_attachment" "default" {
policy_name = alicloud_ram_policy.default.policy_name
user_name = alicloud_ram_user.default.name
policy_type = alicloud_ram_policy.default.type
}
data "alicloud_ram_users" "users_ds" {
output_file = "users.txt"
group_name = alicloud_ram_group.default.name
policy_name = alicloud_ram_policy.default.policy_name
policy_type = "Custom"
name_regex = alicloud_ram_user.default.name
}
output "first_user_id" {
value = data.alicloud_ram_users.users_ds.users.0.id
}
Argument Reference
The following arguments are supported:
name_regex
- (Optional, ForceNew) A regex string to filter resulting users by their names.ids
(Optional, Available since v1.53.0) - A list of ram user IDs.group_name
- (Optional, ForceNew) Filter results by a specific group name. Returned users are in the specified group.policy_type
- (Optional, ForceNew) Filter results by a specific policy type. Valid values areCustom
andSystem
. If you set this parameter, you must setpolicy_name
as well.policy_name
- (Optional, ForceNew) Filter results by a specific policy name. If you set this parameter without settingpolicy_type
, the later will be automatically set toSystem
. Returned users are attached to the specified policy.output_file
- (Optional) File name where to save data source results (after runningterraform plan
).
Attributes Reference
The following attributes are exported in addition to the arguments listed above:
ids
- A list of ram user IDs.names
- A list of ram user's name.users
- A list of users. Each element contains the following attributes:id
- The original id is user's name, but it is user id in 1.37.0+.name
- Name of the user.create_date
- Creation date of the user.last_login_date
- (Removed) Last login date of the user. Removed from version 1.79.0.
文檔內容是否對您有幫助?