Skip to main content
Version: 1.5

wf create policy access

wf create policy access

Creates a policy enabling workspace members to access a cloud account role


Lets you create access policies. These let your workspace members access cloud accounts.

The policies themselves are able to provide a number of constraints that limit the scope of who can access, to which cloud account, with what role, and in what the time period.

wf create policy access [flags]


wf create policy access <cloud account name> <cloud account user role>


      --dry-run                  Shows the resource but does not apply or create (defaults: false)
-h, --help help for access
--non-interactive Do not prompt for user input
--robot strings One or more robots accounts
--subject strings One or more subjects to apply
--time-to-live string How long the access should be granted
--workspace-role strings One or more workspace roles to apply the role
--workspaces strings One or more workspaces to apply

Options inherited from parent commands

      --debug              Indicates we should use debug / trace logging (default: false)
--force Used to force an operation to happen (default: false)
--no-wait Indicates we should not wait for resources to provision
-o, --output string Output format of the resource (json,yaml,table,template) (default "table")
--profile string Use a profile other than your default for this command
--show-headers Indicates we should display headers on table out (default true)
--verbose Enables verbose logging for debugging purposes (default: false)
-w, --workspace string The workspace you are operating within