Skip to main content

🔌 Azure Authorization Role - object.extracts.yaml

  • Contextual name: 🔌 object.extracts.yaml
  • ID: /types/CA10__CaAzureAuthorizationRole__c/object.extracts.yaml

Used In

LogicPolicyFlags
🧠 prod.logic.yaml🟢🛡️ Azure Owner Role has less than 2 or grater than 3 assignments🟢🟢 x3
🧠 prod.logic.yaml🟢🛡️ Azure Subscription Custom Subscription Administrator Roles exist🟢🟢 x3
🧠 prod.logic.yaml🟢🛡️ Azure User Access Administrator Role has assignments🟢🟢 x3

Content

Open File

---
extracts:
# Values: BuiltInRole, CustomRole. Not Nullable. Can't have no access, retrieved via Microsoft.Authorization/roleDefinitions
  - name: "CA10__roleType__c"
    value: 
      FIELD:
        path: "CA10__roleType__c"
        undeterminedIf:
          isEmpty: "Corrupted data. Role Type cannot be empty."
# Not Nullable. Can't have no access, retrieved via Microsoft.Authorization/roleDefinitions
  - name: "CA10__permissionsJson__c"
    value: 
      FIELD:
        path: "CA10__permissionsJson__c"
        undeterminedIf:
          isEmpty: "Corrupted data. Permissions JSON cannot be empty."
# Not Nullable. Can't have no access, retrieved via Microsoft.Authorization/roleDefinitions
  - name: "CA10__assignableScopesJson__c"
    value: 
      FIELD:
        path: "CA10__assignableScopesJson__c"
        undeterminedIf:
            isEmpty: "Corrupted data. Assignable Scopes JSON cannot be empty."
# Not Nullable. 
  - name: "Name"
    value:
      FIELD:
        path: "Name"
        undeterminedIf:
          isEmpty: "Corrupted data. Role Name cannot be empty."