| Field | Type | Required | Description | Example |
|---|---|---|---|---|
id |
str | ✔️ | The unique identifier of the role. | cld::role::prodenv::master_admin |
name |
str | ✔️ | The name of the role. | Master admin |
description |
OptionalNullable[str] | ➖ | A short description of the role. | Full access. |
management_type |
models.ManagementTypeEnum | ✔️ | Specifies whether the role's policies are managed by Cloudinary (system) or by the user (custom). |
system |
permission_type |
str | ✔️ | Specifies whether the permission applies globally across all contexts within the scope (i.e., security settings for the account, or all folders in a product environment), or specifically to designated content instances (i.e., folder with external ID "fg3841spr"). - global - content |
global |
policy_parameters |
List[str] | ➖ | For roles with permission_type set to content, this defines the type of content the role's policies apply to:- The content type can be: folder_id or collection_id.- When assigning the role, provide the instance, e.g. {"folder_id":"asdfjkl12347890"}. This specification is passed to the policy_statement (Cedar). |
[ "folder_id" ] |
scope_type |
models.ScopeTypeEnum | ✔️ | Specifies where the role/policy is applied, either at the account level or within product environments. | prodenv |
created_at |
int | ✔️ | The permission policy creation timestamp in epoch time. | 1719475216 |
updated_at |
int | ✔️ | The permission policy last updated timestamp in epoch time. | 1719475216 |