yandex_compute_disk_placement_group_iam_binding (Resource)

Allows creation and management of a single binding within IAM policy for an existing disk_placement_group.

Example usageExample usage

//
// Create a new Disk Placement Group and new IAM Binding for it.
//
resource "yandex_compute_disk_placement_group" "group1" {
  name        = "test-pg"
  folder_id   = "abc*********123"
  description = "my description"
}

resource "yandex_compute_disk_placement_group_iam_binding" "editor" {
  disk_placement_group_id = data.yandex_compute_disk_placement_group.group1.id

  role = "editor"

  members = [
    "userAccount:some_user_id",
  ]
}

SchemaSchema

RequiredRequired

• disk_placement_group_id (String) The ID of the compute disk_placement_group to attach the policy to.
• members (Set of String) An array of identities that will be granted the privilege in the role. Each entry can have one of the following values:

• userAccount:{user_id}: A unique user ID that represents a specific Yandex account.
• serviceAccount:{service_account_id}: A unique service account ID.
• federatedUser:{federated_user_id}: A unique federated user ID.
• federatedUser:{federated_user_id}:: A unique SAML federation user account ID.
• group:{group_id}: A unique group ID.
• system:group:federation:{federation_id}:users: All users in federation.
• system:group:organization:{organization_id}:users: All users in organization.
• system:allAuthenticatedUsers: All authenticated users.
• system:allUsers: All users, including unauthenticated ones.

• role (String) The role that should be assigned. Only one yandex_compute_disk_placement_group_iam_binding can be used per role.

OptionalOptional

• sleep_after (Number) For test purposes, to compensate IAM operations delay

ImportImport