Skip to content

iteration_permissions.html.markdown

Latest commit

 

History

History
99 lines (71 loc) · 3.18 KB

iteration_permissions.html.markdown

File metadata and controls

99 lines (71 loc) · 3.18 KB
layout page_title description
azuredevops
AzureDevops: azuredevops_iteration_permissions
Manages permissions for a AzureDevOps Iteration (Sprint)

azuredevops_iteration_permissions

Manages permissions for an Iteration (Sprint)

~> Note Permissions can be assigned to group principals and not to single user principals.

Permission levels

Permission for Iterations within Azure DevOps can be applied on two different levels. Those levels are reflected by specifying (or omitting) values for the arguments project_id and path.

Example Usage

resource "azuredevops_project" "example" {
  name               = "Example Project"
  work_item_template = "Agile"
  version_control    = "Git"
  visibility         = "private"
  description        = "Managed by Terraform"
}

data "azuredevops_group" "example-readers" {
  project_id = azuredevops_project.example.id
  name       = "Readers"
}

resource "azuredevops_iteration_permissions" "example-root-permissions" {
  project_id = azuredevops_project.example.id
  principal  = data.azuredevops_group.example-readers.id
  permissions = {
    CREATE_CHILDREN = "Deny"
    GENERIC_READ    = "NotSet"
    DELETE          = "Deny"
  }
}

resource "azuredevops_iteration_permissions" "example-iteration-permissions" {
  project_id = azuredevops_project.example.id
  principal  = data.azuredevops_group.example-readers.id
  path       = "Iteration 1"
  permissions = {
    CREATE_CHILDREN = "Allow"
    GENERIC_READ    = "NotSet"
    DELETE          = "Allow"
  }
}

Argument Reference

The following arguments are supported:

  • project_id - (Required) The ID of the project to assign the permissions.

  • principal - (Required) The group principal to assign the permissions.

  • permissions - (Required) the permissions to assign. The following permissions are available.

    Permission Description
    GENERIC_READ View permissions for this node
    GENERIC_WRITE Edit this node
    CREATE_CHILDREN Create child nodes
    DELETE Delete this node

  • path - (Optional) The name of the branch to assign the permissions.

  • replace - (Optional) Replace (true) or merge (false) the permissions. Default: true

Relevant Links

Timeouts

The timeouts block allows you to specify timeouts for certain actions:

  • create - (Defaults to 10 minutes) Used when creating the Iteration Permission.
  • read - (Defaults to 5 minute) Used when retrieving the Iteration Permission.
  • update - (Defaults to 10 minutes) Used when updating the Iteration Permission.
  • delete - (Defaults to 10 minutes) Used when deleting the Iteration Permission.

Import

The resource does not support import.

PAT Permissions Required

  • Project & Team: vso.security_manage - Grants the ability to read, write, and manage security permissions.