Skip to main content

Resource selectel_iam_user_v1

Last update:
For your information

This instruction is a copy of the Selectel Terraform provider documentation in the Terraform Registry.

Creates and manages a control panel (local) user or a federated user using public API v1. Selectel products support Identity and Access Management (IAM). For more information about users, see the official Selectel documentation.

Example usage

resource "selectel_iam_user_v1" "user_1" {
  email       = "mail@example.com"
  role {
    role_name = "member"
    scope     = "account"
  }
}

Argument reference

  • email — (Required) User email address. Changing this creates a new user. We will send authentication instructions to this email.

  • auth_type — (Optional) User authentication type. Changing this creates a new user. Available types are local (for control panel users, to store credentials locally in Selectel) and federated (for federated users, to store credentials in the corporate Identity Provider). The default value is local. If auth_type is federated, the federation argument is required.

  • federation — (Optional) Information about the federation. auth_type must be set to federated.

    • id — (Required) Unique identifier of the federation.

    • external_id — (Required) Unique user identifier assigned by the Identity Provider.

  • role — (Optional) Manages service user roles. You can add multiple roles—each role in a separate block.

    • role_name — (Required) Role name.

    • scope — (Required) Role scope. Available scopes are account and project. If scope is project, the project_id argument is required.

    • project_id — (Optional) Unique identifier of the associated project. Changing this creates a new service user. If scope is project, the project_id argument is required. Retrieved from the selectel_vpc_project_v2 resource. Learn more about Projects.

Attributes reference

  • keystone_id — Unique Keystone identifier of the user.

Import

You can import a user:

export OS_DOMAIN_NAME=<account_id>
export OS_USERNAME=<username>
export OS_PASSWORD=<password>
terraform import selectel_iam_user_v1.user_1 <user_id>

where:

  • <account_id> — Selectel account ID. The account ID is in the top right corner of the Control panel. Learn more about Registration.

  • <username> — Service user name. To get the name, in the Control panel, go to Identity & Access ManagementUser management ⟶ the Service users tab ⟶ copy the name of the required user. Learn more about Service Users.

  • <password> — Service user password.

  • <user_id> — Unique identifier of the user to import (not the Keystone ID), for example, 123456_5432. To get the user ID, use either iam-go or IAM API.