Table: cloudflare_account_member - Query Cloudflare Account Members using SQL
A Cloudflare Account Member represents an individual user in the context of a Cloudflare account. Account Members have various roles and permissions that determine what actions they can perform and what information they can access within the account. This includes access to various Cloudflare services, data, and configurations.
Table Usage Guide
The cloudflare_account_member
table provides insights into individual users within a Cloudflare account. As a system administrator, explore member-specific details through this table, including roles, permissions, and associated metadata. Utilize it to uncover information about members, such as their access levels, the services they can manage, and the configurations they can modify.
Examples
List all members in an account
Explore which members are associated with your account to manage user access and permissions more effectively. This is useful for maintaining security and ensuring the right people have access to the right resources.
select title, account_id, user_emailfrom cloudflare_account_member;
select title, account_id, user_emailfrom cloudflare_account_member;
List of members with Administrator access
Discover the segments that have members with Administrator access. This query can be used to identify potential security risks by highlighting accounts where users have been granted high-level permissions.
select title, account_id, user_email, attached_roles ->> 'name' as attached_role_namefrom cloudflare_account_member, jsonb_array_elements(roles) as attached_roleswhere attached_roles ->> 'name' = 'Administrator';
select title, account_id, user_email, json_extract(attached_roles.value, '$.name') as attached_role_namefrom cloudflare_account_member, json_each(roles) as attached_roleswhere json_extract(attached_roles.value, '$.name') = 'Administrator';
List of members yet to accept the join request
Discover the segments that include members who have not yet accepted their requests to join your Cloudflare account. This is useful for tracking pending invitations and managing team access to your account.
select title, account_id, user_email, statusfrom cloudflare_account_memberwhere status = 'pending';
select title, account_id, user_email, statusfrom cloudflare_account_memberwhere status = 'pending';
Schema for cloudflare_account_member
Name | Type | Operators | Description |
---|---|---|---|
_ctx | jsonb | Steampipe context in JSON form. | |
account_id | text | = | Specifies the account id, the member is associated with. |
code | text | The unique activation code for the account membership. | |
id | text | = | Specifies the account membership identifier. |
roles | jsonb | A list of permissions that a Member of an Account has. | |
sp_connection_name | text | =, !=, ~~, ~~*, !~~, !~~* | Steampipe connection name. |
sp_ctx | jsonb | Steampipe context in JSON form. | |
status | text | A member's status in the account. | |
title | text | Title of the resource. | |
user | jsonb | A set of information about the user. | |
user_email | text | Specifies the user email. | |
user_id | text | =, !=, ~~, ~~*, !~~, !~~* | ID of the current user. |
Export
This table is available as a standalone Exporter CLI. Steampipe exporters are stand-alone binaries that allow you to extract data using Steampipe plugins without a database.
You can download the tarball for your platform from the Releases page, but it is simplest to install them with the steampipe_export_installer.sh
script:
/bin/sh -c "$(curl -fsSL https://steampipe.io/install/export.sh)" -- cloudflare
You can pass the configuration to the command with the --config
argument:
steampipe_export_cloudflare --config '<your_config>' cloudflare_account_member