The highest tagged major version is
README
¶
google_binary_authorization_policy
Refer to the Terraform Registory for docs: google_binary_authorization_policy.
Documentation
¶
Index ¶
- func GoogleBinaryAuthorizationPolicy_GenerateConfigForImport(scope constructs.Construct, importToId *string, importFromId *string, ...) cdktf.ImportableResource
- func GoogleBinaryAuthorizationPolicy_IsConstruct(x interface{}) *bool
- func GoogleBinaryAuthorizationPolicy_IsTerraformElement(x interface{}) *bool
- func GoogleBinaryAuthorizationPolicy_IsTerraformResource(x interface{}) *bool
- func GoogleBinaryAuthorizationPolicy_TfResourceType() *string
- func NewGoogleBinaryAuthorizationPolicyAdmissionWhitelistPatternsList_Override(g GoogleBinaryAuthorizationPolicyAdmissionWhitelistPatternsList, ...)
- func NewGoogleBinaryAuthorizationPolicyAdmissionWhitelistPatternsOutputReference_Override(g GoogleBinaryAuthorizationPolicyAdmissionWhitelistPatternsOutputReference, ...)
- func NewGoogleBinaryAuthorizationPolicyClusterAdmissionRulesList_Override(g GoogleBinaryAuthorizationPolicyClusterAdmissionRulesList, ...)
- func NewGoogleBinaryAuthorizationPolicyClusterAdmissionRulesOutputReference_Override(g GoogleBinaryAuthorizationPolicyClusterAdmissionRulesOutputReference, ...)
- func NewGoogleBinaryAuthorizationPolicyDefaultAdmissionRuleOutputReference_Override(g GoogleBinaryAuthorizationPolicyDefaultAdmissionRuleOutputReference, ...)
- func NewGoogleBinaryAuthorizationPolicyTimeoutsOutputReference_Override(g GoogleBinaryAuthorizationPolicyTimeoutsOutputReference, ...)
- func NewGoogleBinaryAuthorizationPolicy_Override(g GoogleBinaryAuthorizationPolicy, scope constructs.Construct, id *string, ...)
- type GoogleBinaryAuthorizationPolicy
- type GoogleBinaryAuthorizationPolicyAdmissionWhitelistPatterns
- type GoogleBinaryAuthorizationPolicyAdmissionWhitelistPatternsList
- type GoogleBinaryAuthorizationPolicyAdmissionWhitelistPatternsOutputReference
- type GoogleBinaryAuthorizationPolicyClusterAdmissionRules
- type GoogleBinaryAuthorizationPolicyClusterAdmissionRulesList
- type GoogleBinaryAuthorizationPolicyClusterAdmissionRulesOutputReference
- type GoogleBinaryAuthorizationPolicyConfig
- type GoogleBinaryAuthorizationPolicyDefaultAdmissionRule
- type GoogleBinaryAuthorizationPolicyDefaultAdmissionRuleOutputReference
- type GoogleBinaryAuthorizationPolicyTimeouts
- type GoogleBinaryAuthorizationPolicyTimeoutsOutputReference
Constants ¶
This section is empty.
Variables ¶
This section is empty.
Functions ¶
func GoogleBinaryAuthorizationPolicy_GenerateConfigForImport ¶
func GoogleBinaryAuthorizationPolicy_GenerateConfigForImport(scope constructs.Construct, importToId *string, importFromId *string, provider cdktf.TerraformProvider) cdktf.ImportableResource
Generates CDKTF code for importing a GoogleBinaryAuthorizationPolicy resource upon running "cdktf plan <stack-name>".
func GoogleBinaryAuthorizationPolicy_IsConstruct ¶
func GoogleBinaryAuthorizationPolicy_IsConstruct(x interface{}) *bool
Checks if `x` is a construct.
Use this method instead of `instanceof` to properly detect `Construct` instances, even when the construct library is symlinked.
Explanation: in JavaScript, multiple copies of the `constructs` library on disk are seen as independent, completely different libraries. As a consequence, the class `Construct` in each copy of the `constructs` library is seen as a different class, and an instance of one class will not test as `instanceof` the other class. `npm install` will not create installations like this, but users may manually symlink construct libraries together or use a monorepo tool: in those cases, multiple copies of the `constructs` library can be accidentally installed, and `instanceof` will behave unpredictably. It is safest to avoid using `instanceof`, and using this type-testing method instead.
Returns: true if `x` is an object created from a class which extends `Construct`.
func GoogleBinaryAuthorizationPolicy_IsTerraformElement ¶
func GoogleBinaryAuthorizationPolicy_IsTerraformElement(x interface{}) *bool
Experimental.
func GoogleBinaryAuthorizationPolicy_IsTerraformResource ¶
func GoogleBinaryAuthorizationPolicy_IsTerraformResource(x interface{}) *bool
Experimental.
func GoogleBinaryAuthorizationPolicy_TfResourceType ¶
func GoogleBinaryAuthorizationPolicy_TfResourceType() *string
func NewGoogleBinaryAuthorizationPolicyAdmissionWhitelistPatternsList_Override ¶
func NewGoogleBinaryAuthorizationPolicyAdmissionWhitelistPatternsList_Override(g GoogleBinaryAuthorizationPolicyAdmissionWhitelistPatternsList, terraformResource cdktf.IInterpolatingParent, terraformAttribute *string, wrapsSet *bool)
func NewGoogleBinaryAuthorizationPolicyAdmissionWhitelistPatternsOutputReference_Override ¶
func NewGoogleBinaryAuthorizationPolicyAdmissionWhitelistPatternsOutputReference_Override(g GoogleBinaryAuthorizationPolicyAdmissionWhitelistPatternsOutputReference, terraformResource cdktf.IInterpolatingParent, terraformAttribute *string, complexObjectIndex *float64, complexObjectIsFromSet *bool)
func NewGoogleBinaryAuthorizationPolicyClusterAdmissionRulesList_Override ¶
func NewGoogleBinaryAuthorizationPolicyClusterAdmissionRulesList_Override(g GoogleBinaryAuthorizationPolicyClusterAdmissionRulesList, terraformResource cdktf.IInterpolatingParent, terraformAttribute *string, wrapsSet *bool)
func NewGoogleBinaryAuthorizationPolicyClusterAdmissionRulesOutputReference_Override ¶
func NewGoogleBinaryAuthorizationPolicyClusterAdmissionRulesOutputReference_Override(g GoogleBinaryAuthorizationPolicyClusterAdmissionRulesOutputReference, terraformResource cdktf.IInterpolatingParent, terraformAttribute *string, complexObjectIndex *float64, complexObjectIsFromSet *bool)
func NewGoogleBinaryAuthorizationPolicyDefaultAdmissionRuleOutputReference_Override ¶
func NewGoogleBinaryAuthorizationPolicyDefaultAdmissionRuleOutputReference_Override(g GoogleBinaryAuthorizationPolicyDefaultAdmissionRuleOutputReference, terraformResource cdktf.IInterpolatingParent, terraformAttribute *string)
func NewGoogleBinaryAuthorizationPolicyTimeoutsOutputReference_Override ¶
func NewGoogleBinaryAuthorizationPolicyTimeoutsOutputReference_Override(g GoogleBinaryAuthorizationPolicyTimeoutsOutputReference, terraformResource cdktf.IInterpolatingParent, terraformAttribute *string)
func NewGoogleBinaryAuthorizationPolicy_Override ¶
func NewGoogleBinaryAuthorizationPolicy_Override(g GoogleBinaryAuthorizationPolicy, scope constructs.Construct, id *string, config *GoogleBinaryAuthorizationPolicyConfig)
Create a new {@link https://registry.terraform.io/providers/hashicorp/google-beta/5.7.0/docs/resources/google_binary_authorization_policy google_binary_authorization_policy} Resource.
Types ¶
type GoogleBinaryAuthorizationPolicy ¶
type GoogleBinaryAuthorizationPolicy interface {
cdktf.TerraformResource
AdmissionWhitelistPatterns() GoogleBinaryAuthorizationPolicyAdmissionWhitelistPatternsList
AdmissionWhitelistPatternsInput() interface{}
// Experimental.
CdktfStack() cdktf.TerraformStack
ClusterAdmissionRules() GoogleBinaryAuthorizationPolicyClusterAdmissionRulesList
ClusterAdmissionRulesInput() interface{}
// Experimental.
Connection() interface{}
// Experimental.
SetConnection(val interface{})
// Experimental.
ConstructNodeMetadata() *map[string]interface{}
// Experimental.
Count() interface{}
// Experimental.
SetCount(val interface{})
DefaultAdmissionRule() GoogleBinaryAuthorizationPolicyDefaultAdmissionRuleOutputReference
DefaultAdmissionRuleInput() *GoogleBinaryAuthorizationPolicyDefaultAdmissionRule
// Experimental.
DependsOn() *[]*string
// Experimental.
SetDependsOn(val *[]*string)
Description() *string
SetDescription(val *string)
DescriptionInput() *string
// Experimental.
ForEach() cdktf.ITerraformIterator
// Experimental.
SetForEach(val cdktf.ITerraformIterator)
// Experimental.
Fqn() *string
// Experimental.
FriendlyUniqueId() *string
GlobalPolicyEvaluationMode() *string
SetGlobalPolicyEvaluationMode(val *string)
GlobalPolicyEvaluationModeInput() *string
Id() *string
SetId(val *string)
IdInput() *string
// Experimental.
Lifecycle() *cdktf.TerraformResourceLifecycle
// Experimental.
SetLifecycle(val *cdktf.TerraformResourceLifecycle)
// The tree node.
Node() constructs.Node
Project() *string
SetProject(val *string)
ProjectInput() *string
// Experimental.
Provider() cdktf.TerraformProvider
// Experimental.
SetProvider(val cdktf.TerraformProvider)
// Experimental.
Provisioners() *[]interface{}
// Experimental.
SetProvisioners(val *[]interface{})
// Experimental.
RawOverrides() interface{}
// Experimental.
TerraformGeneratorMetadata() *cdktf.TerraformProviderGeneratorMetadata
// Experimental.
TerraformMetaArguments() *map[string]interface{}
// Experimental.
TerraformResourceType() *string
Timeouts() GoogleBinaryAuthorizationPolicyTimeoutsOutputReference
TimeoutsInput() interface{}
// Adds a user defined moveTarget string to this resource to be later used in .moveTo(moveTarget) to resolve the location of the move.
// Experimental.
AddMoveTarget(moveTarget *string)
// Experimental.
AddOverride(path *string, value interface{})
// Experimental.
GetAnyMapAttribute(terraformAttribute *string) *map[string]interface{}
// Experimental.
GetBooleanAttribute(terraformAttribute *string) cdktf.IResolvable
// Experimental.
GetBooleanMapAttribute(terraformAttribute *string) *map[string]*bool
// Experimental.
GetListAttribute(terraformAttribute *string) *[]*string
// Experimental.
GetNumberAttribute(terraformAttribute *string) *float64
// Experimental.
GetNumberListAttribute(terraformAttribute *string) *[]*float64
// Experimental.
GetNumberMapAttribute(terraformAttribute *string) *map[string]*float64
// Experimental.
GetStringAttribute(terraformAttribute *string) *string
// Experimental.
GetStringMapAttribute(terraformAttribute *string) *map[string]*string
// Experimental.
ImportFrom(id *string, provider cdktf.TerraformProvider)
// Experimental.
InterpolationForAttribute(terraformAttribute *string) cdktf.IResolvable
// Moves this resource to the target resource given by moveTarget.
// Experimental.
MoveTo(moveTarget *string, index interface{})
// Overrides the auto-generated logical ID with a specific ID.
// Experimental.
OverrideLogicalId(newLogicalId *string)
PutAdmissionWhitelistPatterns(value interface{})
PutClusterAdmissionRules(value interface{})
PutDefaultAdmissionRule(value *GoogleBinaryAuthorizationPolicyDefaultAdmissionRule)
PutTimeouts(value *GoogleBinaryAuthorizationPolicyTimeouts)
ResetAdmissionWhitelistPatterns()
ResetClusterAdmissionRules()
ResetDescription()
ResetGlobalPolicyEvaluationMode()
ResetId()
// Resets a previously passed logical Id to use the auto-generated logical id again.
// Experimental.
ResetOverrideLogicalId()
ResetProject()
ResetTimeouts()
SynthesizeAttributes() *map[string]interface{}
// Experimental.
ToMetadata() interface{}
// Returns a string representation of this construct.
ToString() *string
// Adds this resource to the terraform JSON output.
// Experimental.
ToTerraform() interface{}
}
Represents a {@link https://registry.terraform.io/providers/hashicorp/google-beta/5.7.0/docs/resources/google_binary_authorization_policy google_binary_authorization_policy}.
func NewGoogleBinaryAuthorizationPolicy ¶
func NewGoogleBinaryAuthorizationPolicy(scope constructs.Construct, id *string, config *GoogleBinaryAuthorizationPolicyConfig) GoogleBinaryAuthorizationPolicy
Create a new {@link https://registry.terraform.io/providers/hashicorp/google-beta/5.7.0/docs/resources/google_binary_authorization_policy google_binary_authorization_policy} Resource.
type GoogleBinaryAuthorizationPolicyAdmissionWhitelistPatterns ¶
type GoogleBinaryAuthorizationPolicyAdmissionWhitelistPatterns struct {
// An image name pattern to whitelist, in the form 'registry/path/to/image'.
//
// This supports a trailing * as a
// wildcard, but this is allowed only in text after the registry/
// part.
//
// Docs at Terraform Registry: {@link https://registry.terraform.io/providers/hashicorp/google-beta/5.7.0/docs/resources/google_binary_authorization_policy#name_pattern GoogleBinaryAuthorizationPolicy#name_pattern}
NamePattern *string `field:"required" json:"namePattern" yaml:"namePattern"`
}
type GoogleBinaryAuthorizationPolicyAdmissionWhitelistPatternsList ¶
type GoogleBinaryAuthorizationPolicyAdmissionWhitelistPatternsList interface {
cdktf.ComplexList
// The creation stack of this resolvable which will be appended to errors thrown during resolution.
//
// If this returns an empty array the stack will not be attached.
// Experimental.
CreationStack() *[]*string
// Experimental.
Fqn() *string
InternalValue() interface{}
SetInternalValue(val interface{})
// The attribute on the parent resource this class is referencing.
TerraformAttribute() *string
SetTerraformAttribute(val *string)
// The parent resource.
TerraformResource() cdktf.IInterpolatingParent
SetTerraformResource(val cdktf.IInterpolatingParent)
// whether the list is wrapping a set (will add tolist() to be able to access an item via an index).
WrapsSet() *bool
SetWrapsSet(val *bool)
// Experimental.
ComputeFqn() *string
Get(index *float64) GoogleBinaryAuthorizationPolicyAdmissionWhitelistPatternsOutputReference
// Produce the Token's value at resolution time.
// Experimental.
Resolve(_context cdktf.IResolveContext) interface{}
// Return a string representation of this resolvable object.
//
// Returns a reversible string representation.
// Experimental.
ToString() *string
}
func NewGoogleBinaryAuthorizationPolicyAdmissionWhitelistPatternsList ¶
func NewGoogleBinaryAuthorizationPolicyAdmissionWhitelistPatternsList(terraformResource cdktf.IInterpolatingParent, terraformAttribute *string, wrapsSet *bool) GoogleBinaryAuthorizationPolicyAdmissionWhitelistPatternsList
type GoogleBinaryAuthorizationPolicyAdmissionWhitelistPatternsOutputReference ¶
type GoogleBinaryAuthorizationPolicyAdmissionWhitelistPatternsOutputReference interface {
cdktf.ComplexObject
// the index of the complex object in a list.
// Experimental.
ComplexObjectIndex() interface{}
// Experimental.
SetComplexObjectIndex(val interface{})
// set to true if this item is from inside a set and needs tolist() for accessing it set to "0" for single list items.
// Experimental.
ComplexObjectIsFromSet() *bool
// Experimental.
SetComplexObjectIsFromSet(val *bool)
// The creation stack of this resolvable which will be appended to errors thrown during resolution.
//
// If this returns an empty array the stack will not be attached.
// Experimental.
CreationStack() *[]*string
// Experimental.
Fqn() *string
InternalValue() interface{}
SetInternalValue(val interface{})
NamePattern() *string
SetNamePattern(val *string)
NamePatternInput() *string
// Experimental.
TerraformAttribute() *string
// Experimental.
SetTerraformAttribute(val *string)
// Experimental.
TerraformResource() cdktf.IInterpolatingParent
// Experimental.
SetTerraformResource(val cdktf.IInterpolatingParent)
// Experimental.
ComputeFqn() *string
// Experimental.
GetAnyMapAttribute(terraformAttribute *string) *map[string]interface{}
// Experimental.
GetBooleanAttribute(terraformAttribute *string) cdktf.IResolvable
// Experimental.
GetBooleanMapAttribute(terraformAttribute *string) *map[string]*bool
// Experimental.
GetListAttribute(terraformAttribute *string) *[]*string
// Experimental.
GetNumberAttribute(terraformAttribute *string) *float64
// Experimental.
GetNumberListAttribute(terraformAttribute *string) *[]*float64
// Experimental.
GetNumberMapAttribute(terraformAttribute *string) *map[string]*float64
// Experimental.
GetStringAttribute(terraformAttribute *string) *string
// Experimental.
GetStringMapAttribute(terraformAttribute *string) *map[string]*string
// Experimental.
InterpolationAsList() cdktf.IResolvable
// Experimental.
InterpolationForAttribute(property *string) cdktf.IResolvable
// Produce the Token's value at resolution time.
// Experimental.
Resolve(_context cdktf.IResolveContext) interface{}
// Return a string representation of this resolvable object.
//
// Returns a reversible string representation.
// Experimental.
ToString() *string
}
func NewGoogleBinaryAuthorizationPolicyAdmissionWhitelistPatternsOutputReference ¶
func NewGoogleBinaryAuthorizationPolicyAdmissionWhitelistPatternsOutputReference(terraformResource cdktf.IInterpolatingParent, terraformAttribute *string, complexObjectIndex *float64, complexObjectIsFromSet *bool) GoogleBinaryAuthorizationPolicyAdmissionWhitelistPatternsOutputReference
type GoogleBinaryAuthorizationPolicyClusterAdmissionRules ¶
type GoogleBinaryAuthorizationPolicyClusterAdmissionRules struct {
// Docs at Terraform Registry: {@link https://registry.terraform.io/providers/hashicorp/google-beta/5.7.0/docs/resources/google_binary_authorization_policy#cluster GoogleBinaryAuthorizationPolicy#cluster}.
Cluster *string `field:"required" json:"cluster" yaml:"cluster"`
// The action when a pod creation is denied by the admission rule. Possible values: ["ENFORCED_BLOCK_AND_AUDIT_LOG", "DRYRUN_AUDIT_LOG_ONLY"].
//
// Docs at Terraform Registry: {@link https://registry.terraform.io/providers/hashicorp/google-beta/5.7.0/docs/resources/google_binary_authorization_policy#enforcement_mode GoogleBinaryAuthorizationPolicy#enforcement_mode}
EnforcementMode *string `field:"required" json:"enforcementMode" yaml:"enforcementMode"`
// How this admission rule will be evaluated. Possible values: ["ALWAYS_ALLOW", "REQUIRE_ATTESTATION", "ALWAYS_DENY"].
//
// Docs at Terraform Registry: {@link https://registry.terraform.io/providers/hashicorp/google-beta/5.7.0/docs/resources/google_binary_authorization_policy#evaluation_mode GoogleBinaryAuthorizationPolicy#evaluation_mode}
EvaluationMode *string `field:"required" json:"evaluationMode" yaml:"evaluationMode"`
// The resource names of the attestors that must attest to a container image.
//
// If the attestor is in a different project from the
// policy, it should be specified in the format 'projects/* /attestors/*'.
// Each attestor must exist before a policy can reference it. To add an
// attestor to a policy the principal issuing the policy change
// request must be able to read the attestor resource.
//
// Note: this field must be non-empty when the evaluation_mode field
// specifies REQUIRE_ATTESTATION, otherwise it must be empty.
//
// Docs at Terraform Registry: {@link https://registry.terraform.io/providers/hashicorp/google-beta/5.7.0/docs/resources/google_binary_authorization_policy#require_attestations_by GoogleBinaryAuthorizationPolicy#require_attestations_by}
//
// Note: The above comment contained a comment block ending sequence (* followed by /). We have introduced a space between to prevent syntax errors. Please ignore the space.
RequireAttestationsBy *[]*string `field:"optional" json:"requireAttestationsBy" yaml:"requireAttestationsBy"`
}
type GoogleBinaryAuthorizationPolicyClusterAdmissionRulesList ¶
type GoogleBinaryAuthorizationPolicyClusterAdmissionRulesList interface {
cdktf.ComplexList
// The creation stack of this resolvable which will be appended to errors thrown during resolution.
//
// If this returns an empty array the stack will not be attached.
// Experimental.
CreationStack() *[]*string
// Experimental.
Fqn() *string
InternalValue() interface{}
SetInternalValue(val interface{})
// The attribute on the parent resource this class is referencing.
TerraformAttribute() *string
SetTerraformAttribute(val *string)
// The parent resource.
TerraformResource() cdktf.IInterpolatingParent
SetTerraformResource(val cdktf.IInterpolatingParent)
// whether the list is wrapping a set (will add tolist() to be able to access an item via an index).
WrapsSet() *bool
SetWrapsSet(val *bool)
// Experimental.
ComputeFqn() *string
Get(index *float64) GoogleBinaryAuthorizationPolicyClusterAdmissionRulesOutputReference
// Produce the Token's value at resolution time.
// Experimental.
Resolve(_context cdktf.IResolveContext) interface{}
// Return a string representation of this resolvable object.
//
// Returns a reversible string representation.
// Experimental.
ToString() *string
}
func NewGoogleBinaryAuthorizationPolicyClusterAdmissionRulesList ¶
func NewGoogleBinaryAuthorizationPolicyClusterAdmissionRulesList(terraformResource cdktf.IInterpolatingParent, terraformAttribute *string, wrapsSet *bool) GoogleBinaryAuthorizationPolicyClusterAdmissionRulesList
type GoogleBinaryAuthorizationPolicyClusterAdmissionRulesOutputReference ¶
type GoogleBinaryAuthorizationPolicyClusterAdmissionRulesOutputReference interface {
cdktf.ComplexObject
Cluster() *string
SetCluster(val *string)
ClusterInput() *string
// the index of the complex object in a list.
// Experimental.
ComplexObjectIndex() interface{}
// Experimental.
SetComplexObjectIndex(val interface{})
// set to true if this item is from inside a set and needs tolist() for accessing it set to "0" for single list items.
// Experimental.
ComplexObjectIsFromSet() *bool
// Experimental.
SetComplexObjectIsFromSet(val *bool)
// The creation stack of this resolvable which will be appended to errors thrown during resolution.
//
// If this returns an empty array the stack will not be attached.
// Experimental.
CreationStack() *[]*string
EnforcementMode() *string
SetEnforcementMode(val *string)
EnforcementModeInput() *string
EvaluationMode() *string
SetEvaluationMode(val *string)
EvaluationModeInput() *string
// Experimental.
Fqn() *string
InternalValue() interface{}
SetInternalValue(val interface{})
RequireAttestationsBy() *[]*string
SetRequireAttestationsBy(val *[]*string)
RequireAttestationsByInput() *[]*string
// Experimental.
TerraformAttribute() *string
// Experimental.
SetTerraformAttribute(val *string)
// Experimental.
TerraformResource() cdktf.IInterpolatingParent
// Experimental.
SetTerraformResource(val cdktf.IInterpolatingParent)
// Experimental.
ComputeFqn() *string
// Experimental.
GetAnyMapAttribute(terraformAttribute *string) *map[string]interface{}
// Experimental.
GetBooleanAttribute(terraformAttribute *string) cdktf.IResolvable
// Experimental.
GetBooleanMapAttribute(terraformAttribute *string) *map[string]*bool
// Experimental.
GetListAttribute(terraformAttribute *string) *[]*string
// Experimental.
GetNumberAttribute(terraformAttribute *string) *float64
// Experimental.
GetNumberListAttribute(terraformAttribute *string) *[]*float64
// Experimental.
GetNumberMapAttribute(terraformAttribute *string) *map[string]*float64
// Experimental.
GetStringAttribute(terraformAttribute *string) *string
// Experimental.
GetStringMapAttribute(terraformAttribute *string) *map[string]*string
// Experimental.
InterpolationAsList() cdktf.IResolvable
// Experimental.
InterpolationForAttribute(property *string) cdktf.IResolvable
ResetRequireAttestationsBy()
// Produce the Token's value at resolution time.
// Experimental.
Resolve(_context cdktf.IResolveContext) interface{}
// Return a string representation of this resolvable object.
//
// Returns a reversible string representation.
// Experimental.
ToString() *string
}
func NewGoogleBinaryAuthorizationPolicyClusterAdmissionRulesOutputReference ¶
func NewGoogleBinaryAuthorizationPolicyClusterAdmissionRulesOutputReference(terraformResource cdktf.IInterpolatingParent, terraformAttribute *string, complexObjectIndex *float64, complexObjectIsFromSet *bool) GoogleBinaryAuthorizationPolicyClusterAdmissionRulesOutputReference
type GoogleBinaryAuthorizationPolicyConfig ¶
type GoogleBinaryAuthorizationPolicyConfig struct {
// Experimental.
Connection interface{} `field:"optional" json:"connection" yaml:"connection"`
// Experimental.
Count interface{} `field:"optional" json:"count" yaml:"count"`
// Experimental.
DependsOn *[]cdktf.ITerraformDependable `field:"optional" json:"dependsOn" yaml:"dependsOn"`
// Experimental.
ForEach cdktf.ITerraformIterator `field:"optional" json:"forEach" yaml:"forEach"`
// Experimental.
Lifecycle *cdktf.TerraformResourceLifecycle `field:"optional" json:"lifecycle" yaml:"lifecycle"`
// Experimental.
Provider cdktf.TerraformProvider `field:"optional" json:"provider" yaml:"provider"`
// Experimental.
Provisioners *[]interface{} `field:"optional" json:"provisioners" yaml:"provisioners"`
// default_admission_rule block.
//
// Docs at Terraform Registry: {@link https://registry.terraform.io/providers/hashicorp/google-beta/5.7.0/docs/resources/google_binary_authorization_policy#default_admission_rule GoogleBinaryAuthorizationPolicy#default_admission_rule}
DefaultAdmissionRule *GoogleBinaryAuthorizationPolicyDefaultAdmissionRule `field:"required" json:"defaultAdmissionRule" yaml:"defaultAdmissionRule"`
// admission_whitelist_patterns block.
//
// Docs at Terraform Registry: {@link https://registry.terraform.io/providers/hashicorp/google-beta/5.7.0/docs/resources/google_binary_authorization_policy#admission_whitelist_patterns GoogleBinaryAuthorizationPolicy#admission_whitelist_patterns}
AdmissionWhitelistPatterns interface{} `field:"optional" json:"admissionWhitelistPatterns" yaml:"admissionWhitelistPatterns"`
// cluster_admission_rules block.
//
// Docs at Terraform Registry: {@link https://registry.terraform.io/providers/hashicorp/google-beta/5.7.0/docs/resources/google_binary_authorization_policy#cluster_admission_rules GoogleBinaryAuthorizationPolicy#cluster_admission_rules}
ClusterAdmissionRules interface{} `field:"optional" json:"clusterAdmissionRules" yaml:"clusterAdmissionRules"`
// A descriptive comment.
//
// Docs at Terraform Registry: {@link https://registry.terraform.io/providers/hashicorp/google-beta/5.7.0/docs/resources/google_binary_authorization_policy#description GoogleBinaryAuthorizationPolicy#description}
Description *string `field:"optional" json:"description" yaml:"description"`
// Controls the evaluation of a Google-maintained global admission policy for common system-level images.
//
// Images not covered by the global
// policy will be subject to the project admission policy. Possible values: ["ENABLE", "DISABLE"]
//
// Docs at Terraform Registry: {@link https://registry.terraform.io/providers/hashicorp/google-beta/5.7.0/docs/resources/google_binary_authorization_policy#global_policy_evaluation_mode GoogleBinaryAuthorizationPolicy#global_policy_evaluation_mode}
GlobalPolicyEvaluationMode *string `field:"optional" json:"globalPolicyEvaluationMode" yaml:"globalPolicyEvaluationMode"`
// Docs at Terraform Registry: {@link https://registry.terraform.io/providers/hashicorp/google-beta/5.7.0/docs/resources/google_binary_authorization_policy#id GoogleBinaryAuthorizationPolicy#id}.
//
// Please be aware that the id field is automatically added to all resources in Terraform providers using a Terraform provider SDK version below 2.
// If you experience problems setting this value it might not be settable. Please take a look at the provider documentation to ensure it should be settable.
Id *string `field:"optional" json:"id" yaml:"id"`
// Docs at Terraform Registry: {@link https://registry.terraform.io/providers/hashicorp/google-beta/5.7.0/docs/resources/google_binary_authorization_policy#project GoogleBinaryAuthorizationPolicy#project}.
Project *string `field:"optional" json:"project" yaml:"project"`
// timeouts block.
//
// Docs at Terraform Registry: {@link https://registry.terraform.io/providers/hashicorp/google-beta/5.7.0/docs/resources/google_binary_authorization_policy#timeouts GoogleBinaryAuthorizationPolicy#timeouts}
Timeouts *GoogleBinaryAuthorizationPolicyTimeouts `field:"optional" json:"timeouts" yaml:"timeouts"`
}
type GoogleBinaryAuthorizationPolicyDefaultAdmissionRule ¶
type GoogleBinaryAuthorizationPolicyDefaultAdmissionRule struct {
// The action when a pod creation is denied by the admission rule. Possible values: ["ENFORCED_BLOCK_AND_AUDIT_LOG", "DRYRUN_AUDIT_LOG_ONLY"].
//
// Docs at Terraform Registry: {@link https://registry.terraform.io/providers/hashicorp/google-beta/5.7.0/docs/resources/google_binary_authorization_policy#enforcement_mode GoogleBinaryAuthorizationPolicy#enforcement_mode}
EnforcementMode *string `field:"required" json:"enforcementMode" yaml:"enforcementMode"`
// How this admission rule will be evaluated. Possible values: ["ALWAYS_ALLOW", "REQUIRE_ATTESTATION", "ALWAYS_DENY"].
//
// Docs at Terraform Registry: {@link https://registry.terraform.io/providers/hashicorp/google-beta/5.7.0/docs/resources/google_binary_authorization_policy#evaluation_mode GoogleBinaryAuthorizationPolicy#evaluation_mode}
EvaluationMode *string `field:"required" json:"evaluationMode" yaml:"evaluationMode"`
// The resource names of the attestors that must attest to a container image.
//
// If the attestor is in a different project from the
// policy, it should be specified in the format 'projects/* /attestors/*'.
// Each attestor must exist before a policy can reference it. To add an
// attestor to a policy the principal issuing the policy change
// request must be able to read the attestor resource.
//
// Note: this field must be non-empty when the evaluation_mode field
// specifies REQUIRE_ATTESTATION, otherwise it must be empty.
//
// Docs at Terraform Registry: {@link https://registry.terraform.io/providers/hashicorp/google-beta/5.7.0/docs/resources/google_binary_authorization_policy#require_attestations_by GoogleBinaryAuthorizationPolicy#require_attestations_by}
//
// Note: The above comment contained a comment block ending sequence (* followed by /). We have introduced a space between to prevent syntax errors. Please ignore the space.
RequireAttestationsBy *[]*string `field:"optional" json:"requireAttestationsBy" yaml:"requireAttestationsBy"`
}
type GoogleBinaryAuthorizationPolicyDefaultAdmissionRuleOutputReference ¶
type GoogleBinaryAuthorizationPolicyDefaultAdmissionRuleOutputReference interface {
cdktf.ComplexObject
// the index of the complex object in a list.
// Experimental.
ComplexObjectIndex() interface{}
// Experimental.
SetComplexObjectIndex(val interface{})
// set to true if this item is from inside a set and needs tolist() for accessing it set to "0" for single list items.
// Experimental.
ComplexObjectIsFromSet() *bool
// Experimental.
SetComplexObjectIsFromSet(val *bool)
// The creation stack of this resolvable which will be appended to errors thrown during resolution.
//
// If this returns an empty array the stack will not be attached.
// Experimental.
CreationStack() *[]*string
EnforcementMode() *string
SetEnforcementMode(val *string)
EnforcementModeInput() *string
EvaluationMode() *string
SetEvaluationMode(val *string)
EvaluationModeInput() *string
// Experimental.
Fqn() *string
InternalValue() *GoogleBinaryAuthorizationPolicyDefaultAdmissionRule
SetInternalValue(val *GoogleBinaryAuthorizationPolicyDefaultAdmissionRule)
RequireAttestationsBy() *[]*string
SetRequireAttestationsBy(val *[]*string)
RequireAttestationsByInput() *[]*string
// Experimental.
TerraformAttribute() *string
// Experimental.
SetTerraformAttribute(val *string)
// Experimental.
TerraformResource() cdktf.IInterpolatingParent
// Experimental.
SetTerraformResource(val cdktf.IInterpolatingParent)
// Experimental.
ComputeFqn() *string
// Experimental.
GetAnyMapAttribute(terraformAttribute *string) *map[string]interface{}
// Experimental.
GetBooleanAttribute(terraformAttribute *string) cdktf.IResolvable
// Experimental.
GetBooleanMapAttribute(terraformAttribute *string) *map[string]*bool
// Experimental.
GetListAttribute(terraformAttribute *string) *[]*string
// Experimental.
GetNumberAttribute(terraformAttribute *string) *float64
// Experimental.
GetNumberListAttribute(terraformAttribute *string) *[]*float64
// Experimental.
GetNumberMapAttribute(terraformAttribute *string) *map[string]*float64
// Experimental.
GetStringAttribute(terraformAttribute *string) *string
// Experimental.
GetStringMapAttribute(terraformAttribute *string) *map[string]*string
// Experimental.
InterpolationAsList() cdktf.IResolvable
// Experimental.
InterpolationForAttribute(property *string) cdktf.IResolvable
ResetRequireAttestationsBy()
// Produce the Token's value at resolution time.
// Experimental.
Resolve(_context cdktf.IResolveContext) interface{}
// Return a string representation of this resolvable object.
//
// Returns a reversible string representation.
// Experimental.
ToString() *string
}
func NewGoogleBinaryAuthorizationPolicyDefaultAdmissionRuleOutputReference ¶
func NewGoogleBinaryAuthorizationPolicyDefaultAdmissionRuleOutputReference(terraformResource cdktf.IInterpolatingParent, terraformAttribute *string) GoogleBinaryAuthorizationPolicyDefaultAdmissionRuleOutputReference
type GoogleBinaryAuthorizationPolicyTimeouts ¶
type GoogleBinaryAuthorizationPolicyTimeouts struct {
// Docs at Terraform Registry: {@link https://registry.terraform.io/providers/hashicorp/google-beta/5.7.0/docs/resources/google_binary_authorization_policy#create GoogleBinaryAuthorizationPolicy#create}.
Create *string `field:"optional" json:"create" yaml:"create"`
// Docs at Terraform Registry: {@link https://registry.terraform.io/providers/hashicorp/google-beta/5.7.0/docs/resources/google_binary_authorization_policy#delete GoogleBinaryAuthorizationPolicy#delete}.
Delete *string `field:"optional" json:"delete" yaml:"delete"`
// Docs at Terraform Registry: {@link https://registry.terraform.io/providers/hashicorp/google-beta/5.7.0/docs/resources/google_binary_authorization_policy#update GoogleBinaryAuthorizationPolicy#update}.
Update *string `field:"optional" json:"update" yaml:"update"`
}
type GoogleBinaryAuthorizationPolicyTimeoutsOutputReference ¶
type GoogleBinaryAuthorizationPolicyTimeoutsOutputReference interface {
cdktf.ComplexObject
// the index of the complex object in a list.
// Experimental.
ComplexObjectIndex() interface{}
// Experimental.
SetComplexObjectIndex(val interface{})
// set to true if this item is from inside a set and needs tolist() for accessing it set to "0" for single list items.
// Experimental.
ComplexObjectIsFromSet() *bool
// Experimental.
SetComplexObjectIsFromSet(val *bool)
Create() *string
SetCreate(val *string)
CreateInput() *string
// The creation stack of this resolvable which will be appended to errors thrown during resolution.
//
// If this returns an empty array the stack will not be attached.
// Experimental.
CreationStack() *[]*string
Delete() *string
SetDelete(val *string)
DeleteInput() *string
// Experimental.
Fqn() *string
InternalValue() interface{}
SetInternalValue(val interface{})
// Experimental.
TerraformAttribute() *string
// Experimental.
SetTerraformAttribute(val *string)
// Experimental.
TerraformResource() cdktf.IInterpolatingParent
// Experimental.
SetTerraformResource(val cdktf.IInterpolatingParent)
Update() *string
SetUpdate(val *string)
UpdateInput() *string
// Experimental.
ComputeFqn() *string
// Experimental.
GetAnyMapAttribute(terraformAttribute *string) *map[string]interface{}
// Experimental.
GetBooleanAttribute(terraformAttribute *string) cdktf.IResolvable
// Experimental.
GetBooleanMapAttribute(terraformAttribute *string) *map[string]*bool
// Experimental.
GetListAttribute(terraformAttribute *string) *[]*string
// Experimental.
GetNumberAttribute(terraformAttribute *string) *float64
// Experimental.
GetNumberListAttribute(terraformAttribute *string) *[]*float64
// Experimental.
GetNumberMapAttribute(terraformAttribute *string) *map[string]*float64
// Experimental.
GetStringAttribute(terraformAttribute *string) *string
// Experimental.
GetStringMapAttribute(terraformAttribute *string) *map[string]*string
// Experimental.
InterpolationAsList() cdktf.IResolvable
// Experimental.
InterpolationForAttribute(property *string) cdktf.IResolvable
ResetCreate()
ResetDelete()
ResetUpdate()
// Produce the Token's value at resolution time.
// Experimental.
Resolve(_context cdktf.IResolveContext) interface{}
// Return a string representation of this resolvable object.
//
// Returns a reversible string representation.
// Experimental.
ToString() *string
}
func NewGoogleBinaryAuthorizationPolicyTimeoutsOutputReference ¶
func NewGoogleBinaryAuthorizationPolicyTimeoutsOutputReference(terraformResource cdktf.IInterpolatingParent, terraformAttribute *string) GoogleBinaryAuthorizationPolicyTimeoutsOutputReference
Source Files
¶
- GoogleBinaryAuthorizationPolicy.go
- GoogleBinaryAuthorizationPolicyAdmissionWhitelistPatterns.go
- GoogleBinaryAuthorizationPolicyAdmissionWhitelistPatternsList.go
- GoogleBinaryAuthorizationPolicyAdmissionWhitelistPatternsList__checks.go
- GoogleBinaryAuthorizationPolicyAdmissionWhitelistPatternsOutputReference.go
- GoogleBinaryAuthorizationPolicyAdmissionWhitelistPatternsOutputReference__checks.go
- GoogleBinaryAuthorizationPolicyClusterAdmissionRules.go
- GoogleBinaryAuthorizationPolicyClusterAdmissionRulesList.go
- GoogleBinaryAuthorizationPolicyClusterAdmissionRulesList__checks.go
- GoogleBinaryAuthorizationPolicyClusterAdmissionRulesOutputReference.go
- GoogleBinaryAuthorizationPolicyClusterAdmissionRulesOutputReference__checks.go
- GoogleBinaryAuthorizationPolicyConfig.go
- GoogleBinaryAuthorizationPolicyDefaultAdmissionRule.go
- GoogleBinaryAuthorizationPolicyDefaultAdmissionRuleOutputReference.go
- GoogleBinaryAuthorizationPolicyDefaultAdmissionRuleOutputReference__checks.go
- GoogleBinaryAuthorizationPolicyTimeouts.go
- GoogleBinaryAuthorizationPolicyTimeoutsOutputReference.go
- GoogleBinaryAuthorizationPolicyTimeoutsOutputReference__checks.go
- GoogleBinaryAuthorizationPolicy__checks.go
- main.go
Directories
Click to show internal directories.
Click to hide internal directories.