rules/conditions/Azure/IAM/subscription-role-permissions.json
|
{
filter: [ { conditions : [ ["properties.permissions.actions", "match", "Microsoft.Compute/virtualMachines/delete"], ["properties.permissions.actions", "match", "Microsoft.Compute/virtualMachines/write"], ["properties.permissions.actions", "match", "\\*"] ], operator : 'or' } ] } |