Service Role

A cloud provider role within an organization service. This class inherits from TopLevelResource and has direct access to the resource’s database object. The following attributes are directly accessible:

attr organization_service_id:
 The ID of the parent organization service (cloud)
attr role_id:The ID of the role
attr name:The name assigned to the role
attr create_date:
 The creation date of the role
attr assume_role_policy:
 Assume role policy associated with this role
attr inline_policies:
 Policies that are embedded directly into this role
attr arn:The Amazon Resource Name associated with the role
attr resource_id:
 The primary resource identifier that takes the form of a prefix followed by numbers and letters
attr policy_document:
 An optional assume role policy associated with the role
class DivvyResource.Resources.servicerole.ServiceRole(resource_id)

Bases: DivvyResource.Resources.toplevelresource.TopLevelResource

ServiceRole Operations


Delete this resource.


Retrieve the time from the provider that this resource was created (if available).

static get_db_class()
static get_provider_id_field()
static get_resource_type()

Retrieve all the actions which are supported by this resource.

handle_resource_created(user_resource_id=None, project_resource_id=None)

This should be called when a resource is created/discovered after the basic data is added to the database. This gives an opportunity for post-addition hooks (assignment to groups, alerts, etc)


This should be called when a resource is destroyed before the basic data is removed from the database. This gives an opportunity for pre-destruction hooks (removal from groups, alerts, etc)

handle_resource_modified(resource, *args, **kwargs)

This should be called when a resource is modified after the new data has been updated in the DB session. This gives an opportunity for post-modification hooks