OptionalconditionOptionalconditionVersion of the condition. Currently the only accepted value is '2.0'
OptionaldelegatedId of the delegated managed identity resource
OptionaldescriptionDescription of role assignment
The principal ID.
OptionalprincipalThe principal type of the assigned principal ID.
OptionalroleThe name of the role assignment. It can be any valid GUID.
The role definition ID.
The scope of the operation or resource. Valid scopes are: subscription (format: '/subscriptions/{subscriptionId}'), resource group (format: '/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}', or resource (format: '/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/{resourceProviderNamespace}/[{parentResourcePath}/]{resourceType}/{resourceName}'
The conditions on the role assignment. This limits the resources it can be assigned to. e.g.: @Resource[Microsoft.Storage/storageAccounts/blobServices/containers:ContainerName] StringEqualsIgnoreCase 'foo_storage_container'