Package com.azure.security.keyvault.administration.models

Class KeyVaultPermission

  • public final class KeyVaultPermission
extends Object
    A class describing allowed and forbidden actions and data actions of a KeyVaultRoleDefinition.

    • Constructor Detail

      • KeyVaultPermission

        public KeyVaultPermission​(List<String> actions,
                          List<String> notActions,
                          List<KeyVaultDataAction> dataActions,
                          List<KeyVaultDataAction> notDataActions)
        Creates a new KeyVaultPermission with the specified allowed and forbidden actions and data actions.
        Parameters:
        actions - Action permissions that are granted.
        notActions - Action permissions that are excluded but not denied. They may be granted by other role definitions assigned to a principal.
        dataActions - Data action permissions that are granted.
        notDataActions - Data action permissions that are excluded but not denied. They may be granted by other role definitions assigned to a principal.

    • Method Detail

      • getActions

        public List<String> getActions()
        Get the action permissions that are granted.
        Returns:
        The action permissions that are granted.

      • getNotActions

        public List<String> getNotActions()
        Get the action permissions that are excluded but not denied. They may be granted by other role definitions assigned to a principal
        Returns:
        The action permissions that are excluded but not denied.

      • getDataActions

        public List<KeyVaultDataAction> getDataActions()
        Get the data action permissions that are granted.
        Returns:
        The data action permissions that are granted.

      • getNotDataActions

        public List<KeyVaultDataAction> getNotDataActions()
        Get the data action permissions that are excluded but not denied.
        Returns:
        The data action permissions that are excluded but not denied.