角色管理接口
更新时间:2021-11-24
创建角色
创建角色,请参考如下代码:
Python
1def create_role():
2
3 iam_client = IamClient(iam_sample_conf.config)
4
5 # 创建角色的请求为dict
6 # 设置角色名name
7 # 设置角色描述description
8 # 指定允许扮演角色的载体assumeRolePolicyDocument
9 create_role_request = {"name": "test_role", "description": "create role: test_role",
10 "assumeRolePolicyDocument": "{\"version\":\"v1\",\"accessControlList\":[{"
11 "\"service\":\"bce:iam\",\"permission\":[\"AssumeRole\"],"
12 "\"region\":\"*\",\"grantee\":[{"
13 "\"id\":\"test_account_id\"}],"
14 "\"effect\":\"Allow\"}]}"}
15 response = iam_client.create_role(create_role_request)
16
17 print(response)查询角色
查询角色,请参考如下代码:
Python
1def get_role():
2
3 iam_client = IamClient(iam_sample_conf.config)
4
5 # 设置角色名
6 role_name = b"test_role"
7 response = iam_client.get_role(role_name)
8
9 print(response)更新角色
更新角色,请参考如下代码:
Python
1def update_role():
2
3 iam_client = IamClient(iam_sample_conf.config)
4
5 # 旧的角色名
6 role_name = b"test_role"
7
8 # 更新角色的请求为dict
9 # 设置更新的角色名 name
10 # 设置更新的角色描述 description
11 # 设置更新的允许扮演角色的载体 assumeRolePolicyDocument
12 update_role_request = {"name": "test_role_new", "description": "update role: test_role",
13 "assumeRolePolicyDocument": "{\"version\":\"v1\",\"accessControlList\":[{"
14 "\"service\":\"bce:iam\",\"permission\":[\"AssumeRole\"],"
15 "\"region\":\"*\",\"grantee\":[{"
16 "\"id\":\"test_account_id\"}],"
17 "\"effect\":\"Allow\"}]}"}
18 response = iam_client.update_role(role_name, update_role_request)
19
20 print(response)删除角色
删除角色,请参考如下代码:
Python
1def delete_role():
2
3 iam_client = IamClient(iam_sample_conf.config)
4
5 # 需要删除的角色名
6 role_name = b"test_role"
7 response = iam_client.delete_role(role_name=role_name)
8
9 print(response)列举角色
列举角色,请参考如下代码:
Python
1def list_role():
2
3 iam_client = IamClient(iam_sample_conf.config)
4
5 response = iam_client.list_role()
6
7 print(response)