How to Detach a Policy from a Role

Log in to the Vultr Console.

Click the organization name in the top navigation bar.

Click Manage Organization.

Click the Roles tab.

Click the name of the role from which you want to detach a policy.

In the Permission Policies section, locate the policy and click the Remove icon next to it.

The policy is detached and users assigned to this role lose the associated permissions.

Send a GET request to the List Roles endpoint to retrieve all roles in your organization.

$ curl "https://api.vultr.com/v2/roles" \
    -X GET \
    -H "Authorization: Bearer ${VULTR_API_KEY}"

Note the id of the role from which you want to detach a policy.

Send a GET request to the List Policies Attached to Role endpoint to retrieve all policies attached to the role. Replace {role-id} with the id of the role. Note the id of the policy you want to detach.

$ curl "https://api.vultr.com/v2/roles/{role-id}/policies" \
    -X GET \
    -H "Authorization: Bearer ${VULTR_API_KEY}"

Send a DELETE request to the Detach Policy from Role endpoint to detach the policy. Replace {role-id} with the role id and {policy-id} with the policy id.

$ curl "https://api.vultr.com/v2/roles/{role-id}/policies/{policy-id}" \
    -X DELETE \
    -H "Authorization: Bearer ${VULTR_API_KEY}"

A successful detachment returns an HTTP 204 No Content response with no response body.

Ensure the Vultr Terraform provider is configured in your Terraform project.

Destroy the role-policy attachment resource. Replace role-policy-attachment with the resource label used in your configuration.

$ terraform destroy -target=vultr_organization_role_policy_attachment.role-policy-attachment

Alternatively, remove the vultr_organization_role_policy_attachment block from your configuration and run:

$ terraform apply

Verify that the output shows vultr_organization_role_policy_attachment.role-policy-attachment: Destruction complete.