The highest tagged major version is
Documentation
¶
Index ¶
- type AccessLevel
- type AccessLevelArgs
- type AccessLevelBasic
- type AccessLevelBasicArgs
- func (AccessLevelBasicArgs) ElementType() reflect.Type
- func (i AccessLevelBasicArgs) ToAccessLevelBasicOutput() AccessLevelBasicOutput
- func (i AccessLevelBasicArgs) ToAccessLevelBasicOutputWithContext(ctx context.Context) AccessLevelBasicOutput
- func (i AccessLevelBasicArgs) ToAccessLevelBasicPtrOutput() AccessLevelBasicPtrOutput
- func (i AccessLevelBasicArgs) ToAccessLevelBasicPtrOutputWithContext(ctx context.Context) AccessLevelBasicPtrOutput
- type AccessLevelBasicCondition
- type AccessLevelBasicConditionArgs
- func (AccessLevelBasicConditionArgs) ElementType() reflect.Type
- func (i AccessLevelBasicConditionArgs) ToAccessLevelBasicConditionOutput() AccessLevelBasicConditionOutput
- func (i AccessLevelBasicConditionArgs) ToAccessLevelBasicConditionOutputWithContext(ctx context.Context) AccessLevelBasicConditionOutput
- type AccessLevelBasicConditionArray
- func (AccessLevelBasicConditionArray) ElementType() reflect.Type
- func (i AccessLevelBasicConditionArray) ToAccessLevelBasicConditionArrayOutput() AccessLevelBasicConditionArrayOutput
- func (i AccessLevelBasicConditionArray) ToAccessLevelBasicConditionArrayOutputWithContext(ctx context.Context) AccessLevelBasicConditionArrayOutput
- type AccessLevelBasicConditionArrayInput
- type AccessLevelBasicConditionArrayOutput
- func (AccessLevelBasicConditionArrayOutput) ElementType() reflect.Type
- func (o AccessLevelBasicConditionArrayOutput) Index(i pulumi.IntInput) AccessLevelBasicConditionOutput
- func (o AccessLevelBasicConditionArrayOutput) ToAccessLevelBasicConditionArrayOutput() AccessLevelBasicConditionArrayOutput
- func (o AccessLevelBasicConditionArrayOutput) ToAccessLevelBasicConditionArrayOutputWithContext(ctx context.Context) AccessLevelBasicConditionArrayOutput
- type AccessLevelBasicConditionDevicePolicy
- type AccessLevelBasicConditionDevicePolicyArgs
- func (AccessLevelBasicConditionDevicePolicyArgs) ElementType() reflect.Type
- func (i AccessLevelBasicConditionDevicePolicyArgs) ToAccessLevelBasicConditionDevicePolicyOutput() AccessLevelBasicConditionDevicePolicyOutput
- func (i AccessLevelBasicConditionDevicePolicyArgs) ToAccessLevelBasicConditionDevicePolicyOutputWithContext(ctx context.Context) AccessLevelBasicConditionDevicePolicyOutput
- func (i AccessLevelBasicConditionDevicePolicyArgs) ToAccessLevelBasicConditionDevicePolicyPtrOutput() AccessLevelBasicConditionDevicePolicyPtrOutput
- func (i AccessLevelBasicConditionDevicePolicyArgs) ToAccessLevelBasicConditionDevicePolicyPtrOutputWithContext(ctx context.Context) AccessLevelBasicConditionDevicePolicyPtrOutput
- type AccessLevelBasicConditionDevicePolicyInput
- type AccessLevelBasicConditionDevicePolicyOsConstraint
- type AccessLevelBasicConditionDevicePolicyOsConstraintArgs
- func (AccessLevelBasicConditionDevicePolicyOsConstraintArgs) ElementType() reflect.Type
- func (i AccessLevelBasicConditionDevicePolicyOsConstraintArgs) ToAccessLevelBasicConditionDevicePolicyOsConstraintOutput() AccessLevelBasicConditionDevicePolicyOsConstraintOutput
- func (i AccessLevelBasicConditionDevicePolicyOsConstraintArgs) ToAccessLevelBasicConditionDevicePolicyOsConstraintOutputWithContext(ctx context.Context) AccessLevelBasicConditionDevicePolicyOsConstraintOutput
- type AccessLevelBasicConditionDevicePolicyOsConstraintArray
- func (AccessLevelBasicConditionDevicePolicyOsConstraintArray) ElementType() reflect.Type
- func (i AccessLevelBasicConditionDevicePolicyOsConstraintArray) ToAccessLevelBasicConditionDevicePolicyOsConstraintArrayOutput() AccessLevelBasicConditionDevicePolicyOsConstraintArrayOutput
- func (i AccessLevelBasicConditionDevicePolicyOsConstraintArray) ToAccessLevelBasicConditionDevicePolicyOsConstraintArrayOutputWithContext(ctx context.Context) AccessLevelBasicConditionDevicePolicyOsConstraintArrayOutput
- type AccessLevelBasicConditionDevicePolicyOsConstraintArrayInput
- type AccessLevelBasicConditionDevicePolicyOsConstraintArrayOutput
- func (AccessLevelBasicConditionDevicePolicyOsConstraintArrayOutput) ElementType() reflect.Type
- func (o AccessLevelBasicConditionDevicePolicyOsConstraintArrayOutput) Index(i pulumi.IntInput) AccessLevelBasicConditionDevicePolicyOsConstraintOutput
- func (o AccessLevelBasicConditionDevicePolicyOsConstraintArrayOutput) ToAccessLevelBasicConditionDevicePolicyOsConstraintArrayOutput() AccessLevelBasicConditionDevicePolicyOsConstraintArrayOutput
- func (o AccessLevelBasicConditionDevicePolicyOsConstraintArrayOutput) ToAccessLevelBasicConditionDevicePolicyOsConstraintArrayOutputWithContext(ctx context.Context) AccessLevelBasicConditionDevicePolicyOsConstraintArrayOutput
- type AccessLevelBasicConditionDevicePolicyOsConstraintInput
- type AccessLevelBasicConditionDevicePolicyOsConstraintOutput
- func (AccessLevelBasicConditionDevicePolicyOsConstraintOutput) ElementType() reflect.Type
- func (o AccessLevelBasicConditionDevicePolicyOsConstraintOutput) MinimumVersion() pulumi.StringPtrOutput
- func (o AccessLevelBasicConditionDevicePolicyOsConstraintOutput) OsType() pulumi.StringOutput
- func (o AccessLevelBasicConditionDevicePolicyOsConstraintOutput) ToAccessLevelBasicConditionDevicePolicyOsConstraintOutput() AccessLevelBasicConditionDevicePolicyOsConstraintOutput
- func (o AccessLevelBasicConditionDevicePolicyOsConstraintOutput) ToAccessLevelBasicConditionDevicePolicyOsConstraintOutputWithContext(ctx context.Context) AccessLevelBasicConditionDevicePolicyOsConstraintOutput
- type AccessLevelBasicConditionDevicePolicyOutput
- func (o AccessLevelBasicConditionDevicePolicyOutput) AllowedDeviceManagementLevels() pulumi.StringArrayOutput
- func (o AccessLevelBasicConditionDevicePolicyOutput) AllowedEncryptionStatuses() pulumi.StringArrayOutput
- func (AccessLevelBasicConditionDevicePolicyOutput) ElementType() reflect.Type
- func (o AccessLevelBasicConditionDevicePolicyOutput) OsConstraints() AccessLevelBasicConditionDevicePolicyOsConstraintArrayOutput
- func (o AccessLevelBasicConditionDevicePolicyOutput) RequireAdminApproval() pulumi.BoolPtrOutput
- func (o AccessLevelBasicConditionDevicePolicyOutput) RequireCorpOwned() pulumi.BoolPtrOutput
- func (o AccessLevelBasicConditionDevicePolicyOutput) RequireScreenLock() pulumi.BoolPtrOutput
- func (o AccessLevelBasicConditionDevicePolicyOutput) ToAccessLevelBasicConditionDevicePolicyOutput() AccessLevelBasicConditionDevicePolicyOutput
- func (o AccessLevelBasicConditionDevicePolicyOutput) ToAccessLevelBasicConditionDevicePolicyOutputWithContext(ctx context.Context) AccessLevelBasicConditionDevicePolicyOutput
- func (o AccessLevelBasicConditionDevicePolicyOutput) ToAccessLevelBasicConditionDevicePolicyPtrOutput() AccessLevelBasicConditionDevicePolicyPtrOutput
- func (o AccessLevelBasicConditionDevicePolicyOutput) ToAccessLevelBasicConditionDevicePolicyPtrOutputWithContext(ctx context.Context) AccessLevelBasicConditionDevicePolicyPtrOutput
- type AccessLevelBasicConditionDevicePolicyPtrInput
- type AccessLevelBasicConditionDevicePolicyPtrOutput
- func (o AccessLevelBasicConditionDevicePolicyPtrOutput) AllowedDeviceManagementLevels() pulumi.StringArrayOutput
- func (o AccessLevelBasicConditionDevicePolicyPtrOutput) AllowedEncryptionStatuses() pulumi.StringArrayOutput
- func (o AccessLevelBasicConditionDevicePolicyPtrOutput) Elem() AccessLevelBasicConditionDevicePolicyOutput
- func (AccessLevelBasicConditionDevicePolicyPtrOutput) ElementType() reflect.Type
- func (o AccessLevelBasicConditionDevicePolicyPtrOutput) OsConstraints() AccessLevelBasicConditionDevicePolicyOsConstraintArrayOutput
- func (o AccessLevelBasicConditionDevicePolicyPtrOutput) RequireAdminApproval() pulumi.BoolPtrOutput
- func (o AccessLevelBasicConditionDevicePolicyPtrOutput) RequireCorpOwned() pulumi.BoolPtrOutput
- func (o AccessLevelBasicConditionDevicePolicyPtrOutput) RequireScreenLock() pulumi.BoolPtrOutput
- func (o AccessLevelBasicConditionDevicePolicyPtrOutput) ToAccessLevelBasicConditionDevicePolicyPtrOutput() AccessLevelBasicConditionDevicePolicyPtrOutput
- func (o AccessLevelBasicConditionDevicePolicyPtrOutput) ToAccessLevelBasicConditionDevicePolicyPtrOutputWithContext(ctx context.Context) AccessLevelBasicConditionDevicePolicyPtrOutput
- type AccessLevelBasicConditionInput
- type AccessLevelBasicConditionOutput
- func (o AccessLevelBasicConditionOutput) DevicePolicy() AccessLevelBasicConditionDevicePolicyPtrOutput
- func (AccessLevelBasicConditionOutput) ElementType() reflect.Type
- func (o AccessLevelBasicConditionOutput) IpSubnetworks() pulumi.StringArrayOutput
- func (o AccessLevelBasicConditionOutput) Members() pulumi.StringArrayOutput
- func (o AccessLevelBasicConditionOutput) Negate() pulumi.BoolPtrOutput
- func (o AccessLevelBasicConditionOutput) Regions() pulumi.StringArrayOutput
- func (o AccessLevelBasicConditionOutput) RequiredAccessLevels() pulumi.StringArrayOutput
- func (o AccessLevelBasicConditionOutput) ToAccessLevelBasicConditionOutput() AccessLevelBasicConditionOutput
- func (o AccessLevelBasicConditionOutput) ToAccessLevelBasicConditionOutputWithContext(ctx context.Context) AccessLevelBasicConditionOutput
- type AccessLevelBasicInput
- type AccessLevelBasicOutput
- func (o AccessLevelBasicOutput) CombiningFunction() pulumi.StringPtrOutput
- func (o AccessLevelBasicOutput) Conditions() AccessLevelBasicConditionArrayOutput
- func (AccessLevelBasicOutput) ElementType() reflect.Type
- func (o AccessLevelBasicOutput) ToAccessLevelBasicOutput() AccessLevelBasicOutput
- func (o AccessLevelBasicOutput) ToAccessLevelBasicOutputWithContext(ctx context.Context) AccessLevelBasicOutput
- func (o AccessLevelBasicOutput) ToAccessLevelBasicPtrOutput() AccessLevelBasicPtrOutput
- func (o AccessLevelBasicOutput) ToAccessLevelBasicPtrOutputWithContext(ctx context.Context) AccessLevelBasicPtrOutput
- type AccessLevelBasicPtrInput
- type AccessLevelBasicPtrOutput
- func (o AccessLevelBasicPtrOutput) CombiningFunction() pulumi.StringPtrOutput
- func (o AccessLevelBasicPtrOutput) Conditions() AccessLevelBasicConditionArrayOutput
- func (o AccessLevelBasicPtrOutput) Elem() AccessLevelBasicOutput
- func (AccessLevelBasicPtrOutput) ElementType() reflect.Type
- func (o AccessLevelBasicPtrOutput) ToAccessLevelBasicPtrOutput() AccessLevelBasicPtrOutput
- func (o AccessLevelBasicPtrOutput) ToAccessLevelBasicPtrOutputWithContext(ctx context.Context) AccessLevelBasicPtrOutput
- type AccessLevelCondition
- type AccessLevelConditionArgs
- type AccessLevelConditionDevicePolicy
- type AccessLevelConditionDevicePolicyArgs
- func (AccessLevelConditionDevicePolicyArgs) ElementType() reflect.Type
- func (i AccessLevelConditionDevicePolicyArgs) ToAccessLevelConditionDevicePolicyOutput() AccessLevelConditionDevicePolicyOutput
- func (i AccessLevelConditionDevicePolicyArgs) ToAccessLevelConditionDevicePolicyOutputWithContext(ctx context.Context) AccessLevelConditionDevicePolicyOutput
- func (i AccessLevelConditionDevicePolicyArgs) ToAccessLevelConditionDevicePolicyPtrOutput() AccessLevelConditionDevicePolicyPtrOutput
- func (i AccessLevelConditionDevicePolicyArgs) ToAccessLevelConditionDevicePolicyPtrOutputWithContext(ctx context.Context) AccessLevelConditionDevicePolicyPtrOutput
- type AccessLevelConditionDevicePolicyInput
- type AccessLevelConditionDevicePolicyOsConstraint
- type AccessLevelConditionDevicePolicyOsConstraintArgs
- func (AccessLevelConditionDevicePolicyOsConstraintArgs) ElementType() reflect.Type
- func (i AccessLevelConditionDevicePolicyOsConstraintArgs) ToAccessLevelConditionDevicePolicyOsConstraintOutput() AccessLevelConditionDevicePolicyOsConstraintOutput
- func (i AccessLevelConditionDevicePolicyOsConstraintArgs) ToAccessLevelConditionDevicePolicyOsConstraintOutputWithContext(ctx context.Context) AccessLevelConditionDevicePolicyOsConstraintOutput
- type AccessLevelConditionDevicePolicyOsConstraintArray
- func (AccessLevelConditionDevicePolicyOsConstraintArray) ElementType() reflect.Type
- func (i AccessLevelConditionDevicePolicyOsConstraintArray) ToAccessLevelConditionDevicePolicyOsConstraintArrayOutput() AccessLevelConditionDevicePolicyOsConstraintArrayOutput
- func (i AccessLevelConditionDevicePolicyOsConstraintArray) ToAccessLevelConditionDevicePolicyOsConstraintArrayOutputWithContext(ctx context.Context) AccessLevelConditionDevicePolicyOsConstraintArrayOutput
- type AccessLevelConditionDevicePolicyOsConstraintArrayInput
- type AccessLevelConditionDevicePolicyOsConstraintArrayOutput
- func (AccessLevelConditionDevicePolicyOsConstraintArrayOutput) ElementType() reflect.Type
- func (o AccessLevelConditionDevicePolicyOsConstraintArrayOutput) Index(i pulumi.IntInput) AccessLevelConditionDevicePolicyOsConstraintOutput
- func (o AccessLevelConditionDevicePolicyOsConstraintArrayOutput) ToAccessLevelConditionDevicePolicyOsConstraintArrayOutput() AccessLevelConditionDevicePolicyOsConstraintArrayOutput
- func (o AccessLevelConditionDevicePolicyOsConstraintArrayOutput) ToAccessLevelConditionDevicePolicyOsConstraintArrayOutputWithContext(ctx context.Context) AccessLevelConditionDevicePolicyOsConstraintArrayOutput
- type AccessLevelConditionDevicePolicyOsConstraintInput
- type AccessLevelConditionDevicePolicyOsConstraintOutput
- func (AccessLevelConditionDevicePolicyOsConstraintOutput) ElementType() reflect.Type
- func (o AccessLevelConditionDevicePolicyOsConstraintOutput) MinimumVersion() pulumi.StringPtrOutput
- func (o AccessLevelConditionDevicePolicyOsConstraintOutput) OsType() pulumi.StringOutput
- func (o AccessLevelConditionDevicePolicyOsConstraintOutput) ToAccessLevelConditionDevicePolicyOsConstraintOutput() AccessLevelConditionDevicePolicyOsConstraintOutput
- func (o AccessLevelConditionDevicePolicyOsConstraintOutput) ToAccessLevelConditionDevicePolicyOsConstraintOutputWithContext(ctx context.Context) AccessLevelConditionDevicePolicyOsConstraintOutput
- type AccessLevelConditionDevicePolicyOutput
- func (o AccessLevelConditionDevicePolicyOutput) AllowedDeviceManagementLevels() pulumi.StringArrayOutput
- func (o AccessLevelConditionDevicePolicyOutput) AllowedEncryptionStatuses() pulumi.StringArrayOutput
- func (AccessLevelConditionDevicePolicyOutput) ElementType() reflect.Type
- func (o AccessLevelConditionDevicePolicyOutput) OsConstraints() AccessLevelConditionDevicePolicyOsConstraintArrayOutput
- func (o AccessLevelConditionDevicePolicyOutput) RequireAdminApproval() pulumi.BoolPtrOutput
- func (o AccessLevelConditionDevicePolicyOutput) RequireCorpOwned() pulumi.BoolPtrOutput
- func (o AccessLevelConditionDevicePolicyOutput) RequireScreenLock() pulumi.BoolPtrOutput
- func (o AccessLevelConditionDevicePolicyOutput) ToAccessLevelConditionDevicePolicyOutput() AccessLevelConditionDevicePolicyOutput
- func (o AccessLevelConditionDevicePolicyOutput) ToAccessLevelConditionDevicePolicyOutputWithContext(ctx context.Context) AccessLevelConditionDevicePolicyOutput
- func (o AccessLevelConditionDevicePolicyOutput) ToAccessLevelConditionDevicePolicyPtrOutput() AccessLevelConditionDevicePolicyPtrOutput
- func (o AccessLevelConditionDevicePolicyOutput) ToAccessLevelConditionDevicePolicyPtrOutputWithContext(ctx context.Context) AccessLevelConditionDevicePolicyPtrOutput
- type AccessLevelConditionDevicePolicyPtrInput
- type AccessLevelConditionDevicePolicyPtrOutput
- func (o AccessLevelConditionDevicePolicyPtrOutput) AllowedDeviceManagementLevels() pulumi.StringArrayOutput
- func (o AccessLevelConditionDevicePolicyPtrOutput) AllowedEncryptionStatuses() pulumi.StringArrayOutput
- func (o AccessLevelConditionDevicePolicyPtrOutput) Elem() AccessLevelConditionDevicePolicyOutput
- func (AccessLevelConditionDevicePolicyPtrOutput) ElementType() reflect.Type
- func (o AccessLevelConditionDevicePolicyPtrOutput) OsConstraints() AccessLevelConditionDevicePolicyOsConstraintArrayOutput
- func (o AccessLevelConditionDevicePolicyPtrOutput) RequireAdminApproval() pulumi.BoolPtrOutput
- func (o AccessLevelConditionDevicePolicyPtrOutput) RequireCorpOwned() pulumi.BoolPtrOutput
- func (o AccessLevelConditionDevicePolicyPtrOutput) RequireScreenLock() pulumi.BoolPtrOutput
- func (o AccessLevelConditionDevicePolicyPtrOutput) ToAccessLevelConditionDevicePolicyPtrOutput() AccessLevelConditionDevicePolicyPtrOutput
- func (o AccessLevelConditionDevicePolicyPtrOutput) ToAccessLevelConditionDevicePolicyPtrOutputWithContext(ctx context.Context) AccessLevelConditionDevicePolicyPtrOutput
- type AccessLevelConditionInput
- type AccessLevelConditionOutput
- type AccessLevelConditionState
- type AccessLevelCustom
- type AccessLevelCustomArgs
- func (AccessLevelCustomArgs) ElementType() reflect.Type
- func (i AccessLevelCustomArgs) ToAccessLevelCustomOutput() AccessLevelCustomOutput
- func (i AccessLevelCustomArgs) ToAccessLevelCustomOutputWithContext(ctx context.Context) AccessLevelCustomOutput
- func (i AccessLevelCustomArgs) ToAccessLevelCustomPtrOutput() AccessLevelCustomPtrOutput
- func (i AccessLevelCustomArgs) ToAccessLevelCustomPtrOutputWithContext(ctx context.Context) AccessLevelCustomPtrOutput
- type AccessLevelCustomExpr
- type AccessLevelCustomExprArgs
- func (AccessLevelCustomExprArgs) ElementType() reflect.Type
- func (i AccessLevelCustomExprArgs) ToAccessLevelCustomExprOutput() AccessLevelCustomExprOutput
- func (i AccessLevelCustomExprArgs) ToAccessLevelCustomExprOutputWithContext(ctx context.Context) AccessLevelCustomExprOutput
- func (i AccessLevelCustomExprArgs) ToAccessLevelCustomExprPtrOutput() AccessLevelCustomExprPtrOutput
- func (i AccessLevelCustomExprArgs) ToAccessLevelCustomExprPtrOutputWithContext(ctx context.Context) AccessLevelCustomExprPtrOutput
- type AccessLevelCustomExprInput
- type AccessLevelCustomExprOutput
- func (o AccessLevelCustomExprOutput) Description() pulumi.StringPtrOutput
- func (AccessLevelCustomExprOutput) ElementType() reflect.Type
- func (o AccessLevelCustomExprOutput) Expression() pulumi.StringOutput
- func (o AccessLevelCustomExprOutput) Location() pulumi.StringPtrOutput
- func (o AccessLevelCustomExprOutput) Title() pulumi.StringPtrOutput
- func (o AccessLevelCustomExprOutput) ToAccessLevelCustomExprOutput() AccessLevelCustomExprOutput
- func (o AccessLevelCustomExprOutput) ToAccessLevelCustomExprOutputWithContext(ctx context.Context) AccessLevelCustomExprOutput
- func (o AccessLevelCustomExprOutput) ToAccessLevelCustomExprPtrOutput() AccessLevelCustomExprPtrOutput
- func (o AccessLevelCustomExprOutput) ToAccessLevelCustomExprPtrOutputWithContext(ctx context.Context) AccessLevelCustomExprPtrOutput
- type AccessLevelCustomExprPtrInput
- type AccessLevelCustomExprPtrOutput
- func (o AccessLevelCustomExprPtrOutput) Description() pulumi.StringPtrOutput
- func (o AccessLevelCustomExprPtrOutput) Elem() AccessLevelCustomExprOutput
- func (AccessLevelCustomExprPtrOutput) ElementType() reflect.Type
- func (o AccessLevelCustomExprPtrOutput) Expression() pulumi.StringPtrOutput
- func (o AccessLevelCustomExprPtrOutput) Location() pulumi.StringPtrOutput
- func (o AccessLevelCustomExprPtrOutput) Title() pulumi.StringPtrOutput
- func (o AccessLevelCustomExprPtrOutput) ToAccessLevelCustomExprPtrOutput() AccessLevelCustomExprPtrOutput
- func (o AccessLevelCustomExprPtrOutput) ToAccessLevelCustomExprPtrOutputWithContext(ctx context.Context) AccessLevelCustomExprPtrOutput
- type AccessLevelCustomInput
- type AccessLevelCustomOutput
- func (AccessLevelCustomOutput) ElementType() reflect.Type
- func (o AccessLevelCustomOutput) Expr() AccessLevelCustomExprOutput
- func (o AccessLevelCustomOutput) ToAccessLevelCustomOutput() AccessLevelCustomOutput
- func (o AccessLevelCustomOutput) ToAccessLevelCustomOutputWithContext(ctx context.Context) AccessLevelCustomOutput
- func (o AccessLevelCustomOutput) ToAccessLevelCustomPtrOutput() AccessLevelCustomPtrOutput
- func (o AccessLevelCustomOutput) ToAccessLevelCustomPtrOutputWithContext(ctx context.Context) AccessLevelCustomPtrOutput
- type AccessLevelCustomPtrInput
- type AccessLevelCustomPtrOutput
- func (o AccessLevelCustomPtrOutput) Elem() AccessLevelCustomOutput
- func (AccessLevelCustomPtrOutput) ElementType() reflect.Type
- func (o AccessLevelCustomPtrOutput) Expr() AccessLevelCustomExprPtrOutput
- func (o AccessLevelCustomPtrOutput) ToAccessLevelCustomPtrOutput() AccessLevelCustomPtrOutput
- func (o AccessLevelCustomPtrOutput) ToAccessLevelCustomPtrOutputWithContext(ctx context.Context) AccessLevelCustomPtrOutput
- type AccessLevelInput
- type AccessLevelOutput
- type AccessLevelState
- type AccessLevels
- type AccessLevelsAccessLevel
- type AccessLevelsAccessLevelArgs
- type AccessLevelsAccessLevelArray
- func (AccessLevelsAccessLevelArray) ElementType() reflect.Type
- func (i AccessLevelsAccessLevelArray) ToAccessLevelsAccessLevelArrayOutput() AccessLevelsAccessLevelArrayOutput
- func (i AccessLevelsAccessLevelArray) ToAccessLevelsAccessLevelArrayOutputWithContext(ctx context.Context) AccessLevelsAccessLevelArrayOutput
- type AccessLevelsAccessLevelArrayInput
- type AccessLevelsAccessLevelArrayOutput
- func (AccessLevelsAccessLevelArrayOutput) ElementType() reflect.Type
- func (o AccessLevelsAccessLevelArrayOutput) Index(i pulumi.IntInput) AccessLevelsAccessLevelOutput
- func (o AccessLevelsAccessLevelArrayOutput) ToAccessLevelsAccessLevelArrayOutput() AccessLevelsAccessLevelArrayOutput
- func (o AccessLevelsAccessLevelArrayOutput) ToAccessLevelsAccessLevelArrayOutputWithContext(ctx context.Context) AccessLevelsAccessLevelArrayOutput
- type AccessLevelsAccessLevelBasic
- type AccessLevelsAccessLevelBasicArgs
- func (AccessLevelsAccessLevelBasicArgs) ElementType() reflect.Type
- func (i AccessLevelsAccessLevelBasicArgs) ToAccessLevelsAccessLevelBasicOutput() AccessLevelsAccessLevelBasicOutput
- func (i AccessLevelsAccessLevelBasicArgs) ToAccessLevelsAccessLevelBasicOutputWithContext(ctx context.Context) AccessLevelsAccessLevelBasicOutput
- func (i AccessLevelsAccessLevelBasicArgs) ToAccessLevelsAccessLevelBasicPtrOutput() AccessLevelsAccessLevelBasicPtrOutput
- func (i AccessLevelsAccessLevelBasicArgs) ToAccessLevelsAccessLevelBasicPtrOutputWithContext(ctx context.Context) AccessLevelsAccessLevelBasicPtrOutput
- type AccessLevelsAccessLevelBasicCondition
- type AccessLevelsAccessLevelBasicConditionArgs
- func (AccessLevelsAccessLevelBasicConditionArgs) ElementType() reflect.Type
- func (i AccessLevelsAccessLevelBasicConditionArgs) ToAccessLevelsAccessLevelBasicConditionOutput() AccessLevelsAccessLevelBasicConditionOutput
- func (i AccessLevelsAccessLevelBasicConditionArgs) ToAccessLevelsAccessLevelBasicConditionOutputWithContext(ctx context.Context) AccessLevelsAccessLevelBasicConditionOutput
- type AccessLevelsAccessLevelBasicConditionArray
- func (AccessLevelsAccessLevelBasicConditionArray) ElementType() reflect.Type
- func (i AccessLevelsAccessLevelBasicConditionArray) ToAccessLevelsAccessLevelBasicConditionArrayOutput() AccessLevelsAccessLevelBasicConditionArrayOutput
- func (i AccessLevelsAccessLevelBasicConditionArray) ToAccessLevelsAccessLevelBasicConditionArrayOutputWithContext(ctx context.Context) AccessLevelsAccessLevelBasicConditionArrayOutput
- type AccessLevelsAccessLevelBasicConditionArrayInput
- type AccessLevelsAccessLevelBasicConditionArrayOutput
- func (AccessLevelsAccessLevelBasicConditionArrayOutput) ElementType() reflect.Type
- func (o AccessLevelsAccessLevelBasicConditionArrayOutput) Index(i pulumi.IntInput) AccessLevelsAccessLevelBasicConditionOutput
- func (o AccessLevelsAccessLevelBasicConditionArrayOutput) ToAccessLevelsAccessLevelBasicConditionArrayOutput() AccessLevelsAccessLevelBasicConditionArrayOutput
- func (o AccessLevelsAccessLevelBasicConditionArrayOutput) ToAccessLevelsAccessLevelBasicConditionArrayOutputWithContext(ctx context.Context) AccessLevelsAccessLevelBasicConditionArrayOutput
- type AccessLevelsAccessLevelBasicConditionDevicePolicy
- type AccessLevelsAccessLevelBasicConditionDevicePolicyArgs
- func (AccessLevelsAccessLevelBasicConditionDevicePolicyArgs) ElementType() reflect.Type
- func (i AccessLevelsAccessLevelBasicConditionDevicePolicyArgs) ToAccessLevelsAccessLevelBasicConditionDevicePolicyOutput() AccessLevelsAccessLevelBasicConditionDevicePolicyOutput
- func (i AccessLevelsAccessLevelBasicConditionDevicePolicyArgs) ToAccessLevelsAccessLevelBasicConditionDevicePolicyOutputWithContext(ctx context.Context) AccessLevelsAccessLevelBasicConditionDevicePolicyOutput
- func (i AccessLevelsAccessLevelBasicConditionDevicePolicyArgs) ToAccessLevelsAccessLevelBasicConditionDevicePolicyPtrOutput() AccessLevelsAccessLevelBasicConditionDevicePolicyPtrOutput
- func (i AccessLevelsAccessLevelBasicConditionDevicePolicyArgs) ToAccessLevelsAccessLevelBasicConditionDevicePolicyPtrOutputWithContext(ctx context.Context) AccessLevelsAccessLevelBasicConditionDevicePolicyPtrOutput
- type AccessLevelsAccessLevelBasicConditionDevicePolicyInput
- type AccessLevelsAccessLevelBasicConditionDevicePolicyOsConstraint
- type AccessLevelsAccessLevelBasicConditionDevicePolicyOsConstraintArgs
- func (AccessLevelsAccessLevelBasicConditionDevicePolicyOsConstraintArgs) ElementType() reflect.Type
- func (i AccessLevelsAccessLevelBasicConditionDevicePolicyOsConstraintArgs) ToAccessLevelsAccessLevelBasicConditionDevicePolicyOsConstraintOutput() AccessLevelsAccessLevelBasicConditionDevicePolicyOsConstraintOutput
- func (i AccessLevelsAccessLevelBasicConditionDevicePolicyOsConstraintArgs) ToAccessLevelsAccessLevelBasicConditionDevicePolicyOsConstraintOutputWithContext(ctx context.Context) AccessLevelsAccessLevelBasicConditionDevicePolicyOsConstraintOutput
- type AccessLevelsAccessLevelBasicConditionDevicePolicyOsConstraintArray
- func (AccessLevelsAccessLevelBasicConditionDevicePolicyOsConstraintArray) ElementType() reflect.Type
- func (i AccessLevelsAccessLevelBasicConditionDevicePolicyOsConstraintArray) ToAccessLevelsAccessLevelBasicConditionDevicePolicyOsConstraintArrayOutput() AccessLevelsAccessLevelBasicConditionDevicePolicyOsConstraintArrayOutput
- func (i AccessLevelsAccessLevelBasicConditionDevicePolicyOsConstraintArray) ToAccessLevelsAccessLevelBasicConditionDevicePolicyOsConstraintArrayOutputWithContext(ctx context.Context) AccessLevelsAccessLevelBasicConditionDevicePolicyOsConstraintArrayOutput
- type AccessLevelsAccessLevelBasicConditionDevicePolicyOsConstraintArrayInput
- type AccessLevelsAccessLevelBasicConditionDevicePolicyOsConstraintArrayOutput
- func (AccessLevelsAccessLevelBasicConditionDevicePolicyOsConstraintArrayOutput) ElementType() reflect.Type
- func (o AccessLevelsAccessLevelBasicConditionDevicePolicyOsConstraintArrayOutput) Index(i pulumi.IntInput) AccessLevelsAccessLevelBasicConditionDevicePolicyOsConstraintOutput
- func (o AccessLevelsAccessLevelBasicConditionDevicePolicyOsConstraintArrayOutput) ToAccessLevelsAccessLevelBasicConditionDevicePolicyOsConstraintArrayOutput() AccessLevelsAccessLevelBasicConditionDevicePolicyOsConstraintArrayOutput
- func (o AccessLevelsAccessLevelBasicConditionDevicePolicyOsConstraintArrayOutput) ToAccessLevelsAccessLevelBasicConditionDevicePolicyOsConstraintArrayOutputWithContext(ctx context.Context) AccessLevelsAccessLevelBasicConditionDevicePolicyOsConstraintArrayOutput
- type AccessLevelsAccessLevelBasicConditionDevicePolicyOsConstraintInput
- type AccessLevelsAccessLevelBasicConditionDevicePolicyOsConstraintOutput
- func (AccessLevelsAccessLevelBasicConditionDevicePolicyOsConstraintOutput) ElementType() reflect.Type
- func (o AccessLevelsAccessLevelBasicConditionDevicePolicyOsConstraintOutput) MinimumVersion() pulumi.StringPtrOutput
- func (o AccessLevelsAccessLevelBasicConditionDevicePolicyOsConstraintOutput) OsType() pulumi.StringOutput
- func (o AccessLevelsAccessLevelBasicConditionDevicePolicyOsConstraintOutput) ToAccessLevelsAccessLevelBasicConditionDevicePolicyOsConstraintOutput() AccessLevelsAccessLevelBasicConditionDevicePolicyOsConstraintOutput
- func (o AccessLevelsAccessLevelBasicConditionDevicePolicyOsConstraintOutput) ToAccessLevelsAccessLevelBasicConditionDevicePolicyOsConstraintOutputWithContext(ctx context.Context) AccessLevelsAccessLevelBasicConditionDevicePolicyOsConstraintOutput
- type AccessLevelsAccessLevelBasicConditionDevicePolicyOutput
- func (o AccessLevelsAccessLevelBasicConditionDevicePolicyOutput) AllowedDeviceManagementLevels() pulumi.StringArrayOutput
- func (o AccessLevelsAccessLevelBasicConditionDevicePolicyOutput) AllowedEncryptionStatuses() pulumi.StringArrayOutput
- func (AccessLevelsAccessLevelBasicConditionDevicePolicyOutput) ElementType() reflect.Type
- func (o AccessLevelsAccessLevelBasicConditionDevicePolicyOutput) OsConstraints() AccessLevelsAccessLevelBasicConditionDevicePolicyOsConstraintArrayOutput
- func (o AccessLevelsAccessLevelBasicConditionDevicePolicyOutput) RequireAdminApproval() pulumi.BoolPtrOutput
- func (o AccessLevelsAccessLevelBasicConditionDevicePolicyOutput) RequireCorpOwned() pulumi.BoolPtrOutput
- func (o AccessLevelsAccessLevelBasicConditionDevicePolicyOutput) RequireScreenLock() pulumi.BoolPtrOutput
- func (o AccessLevelsAccessLevelBasicConditionDevicePolicyOutput) ToAccessLevelsAccessLevelBasicConditionDevicePolicyOutput() AccessLevelsAccessLevelBasicConditionDevicePolicyOutput
- func (o AccessLevelsAccessLevelBasicConditionDevicePolicyOutput) ToAccessLevelsAccessLevelBasicConditionDevicePolicyOutputWithContext(ctx context.Context) AccessLevelsAccessLevelBasicConditionDevicePolicyOutput
- func (o AccessLevelsAccessLevelBasicConditionDevicePolicyOutput) ToAccessLevelsAccessLevelBasicConditionDevicePolicyPtrOutput() AccessLevelsAccessLevelBasicConditionDevicePolicyPtrOutput
- func (o AccessLevelsAccessLevelBasicConditionDevicePolicyOutput) ToAccessLevelsAccessLevelBasicConditionDevicePolicyPtrOutputWithContext(ctx context.Context) AccessLevelsAccessLevelBasicConditionDevicePolicyPtrOutput
- type AccessLevelsAccessLevelBasicConditionDevicePolicyPtrInput
- type AccessLevelsAccessLevelBasicConditionDevicePolicyPtrOutput
- func (o AccessLevelsAccessLevelBasicConditionDevicePolicyPtrOutput) AllowedDeviceManagementLevels() pulumi.StringArrayOutput
- func (o AccessLevelsAccessLevelBasicConditionDevicePolicyPtrOutput) AllowedEncryptionStatuses() pulumi.StringArrayOutput
- func (o AccessLevelsAccessLevelBasicConditionDevicePolicyPtrOutput) Elem() AccessLevelsAccessLevelBasicConditionDevicePolicyOutput
- func (AccessLevelsAccessLevelBasicConditionDevicePolicyPtrOutput) ElementType() reflect.Type
- func (o AccessLevelsAccessLevelBasicConditionDevicePolicyPtrOutput) OsConstraints() AccessLevelsAccessLevelBasicConditionDevicePolicyOsConstraintArrayOutput
- func (o AccessLevelsAccessLevelBasicConditionDevicePolicyPtrOutput) RequireAdminApproval() pulumi.BoolPtrOutput
- func (o AccessLevelsAccessLevelBasicConditionDevicePolicyPtrOutput) RequireCorpOwned() pulumi.BoolPtrOutput
- func (o AccessLevelsAccessLevelBasicConditionDevicePolicyPtrOutput) RequireScreenLock() pulumi.BoolPtrOutput
- func (o AccessLevelsAccessLevelBasicConditionDevicePolicyPtrOutput) ToAccessLevelsAccessLevelBasicConditionDevicePolicyPtrOutput() AccessLevelsAccessLevelBasicConditionDevicePolicyPtrOutput
- func (o AccessLevelsAccessLevelBasicConditionDevicePolicyPtrOutput) ToAccessLevelsAccessLevelBasicConditionDevicePolicyPtrOutputWithContext(ctx context.Context) AccessLevelsAccessLevelBasicConditionDevicePolicyPtrOutput
- type AccessLevelsAccessLevelBasicConditionInput
- type AccessLevelsAccessLevelBasicConditionOutput
- func (o AccessLevelsAccessLevelBasicConditionOutput) DevicePolicy() AccessLevelsAccessLevelBasicConditionDevicePolicyPtrOutput
- func (AccessLevelsAccessLevelBasicConditionOutput) ElementType() reflect.Type
- func (o AccessLevelsAccessLevelBasicConditionOutput) IpSubnetworks() pulumi.StringArrayOutput
- func (o AccessLevelsAccessLevelBasicConditionOutput) Members() pulumi.StringArrayOutput
- func (o AccessLevelsAccessLevelBasicConditionOutput) Negate() pulumi.BoolPtrOutput
- func (o AccessLevelsAccessLevelBasicConditionOutput) Regions() pulumi.StringArrayOutput
- func (o AccessLevelsAccessLevelBasicConditionOutput) RequiredAccessLevels() pulumi.StringArrayOutput
- func (o AccessLevelsAccessLevelBasicConditionOutput) ToAccessLevelsAccessLevelBasicConditionOutput() AccessLevelsAccessLevelBasicConditionOutput
- func (o AccessLevelsAccessLevelBasicConditionOutput) ToAccessLevelsAccessLevelBasicConditionOutputWithContext(ctx context.Context) AccessLevelsAccessLevelBasicConditionOutput
- type AccessLevelsAccessLevelBasicInput
- type AccessLevelsAccessLevelBasicOutput
- func (o AccessLevelsAccessLevelBasicOutput) CombiningFunction() pulumi.StringPtrOutput
- func (o AccessLevelsAccessLevelBasicOutput) Conditions() AccessLevelsAccessLevelBasicConditionArrayOutput
- func (AccessLevelsAccessLevelBasicOutput) ElementType() reflect.Type
- func (o AccessLevelsAccessLevelBasicOutput) ToAccessLevelsAccessLevelBasicOutput() AccessLevelsAccessLevelBasicOutput
- func (o AccessLevelsAccessLevelBasicOutput) ToAccessLevelsAccessLevelBasicOutputWithContext(ctx context.Context) AccessLevelsAccessLevelBasicOutput
- func (o AccessLevelsAccessLevelBasicOutput) ToAccessLevelsAccessLevelBasicPtrOutput() AccessLevelsAccessLevelBasicPtrOutput
- func (o AccessLevelsAccessLevelBasicOutput) ToAccessLevelsAccessLevelBasicPtrOutputWithContext(ctx context.Context) AccessLevelsAccessLevelBasicPtrOutput
- type AccessLevelsAccessLevelBasicPtrInput
- type AccessLevelsAccessLevelBasicPtrOutput
- func (o AccessLevelsAccessLevelBasicPtrOutput) CombiningFunction() pulumi.StringPtrOutput
- func (o AccessLevelsAccessLevelBasicPtrOutput) Conditions() AccessLevelsAccessLevelBasicConditionArrayOutput
- func (o AccessLevelsAccessLevelBasicPtrOutput) Elem() AccessLevelsAccessLevelBasicOutput
- func (AccessLevelsAccessLevelBasicPtrOutput) ElementType() reflect.Type
- func (o AccessLevelsAccessLevelBasicPtrOutput) ToAccessLevelsAccessLevelBasicPtrOutput() AccessLevelsAccessLevelBasicPtrOutput
- func (o AccessLevelsAccessLevelBasicPtrOutput) ToAccessLevelsAccessLevelBasicPtrOutputWithContext(ctx context.Context) AccessLevelsAccessLevelBasicPtrOutput
- type AccessLevelsAccessLevelCustom
- type AccessLevelsAccessLevelCustomArgs
- func (AccessLevelsAccessLevelCustomArgs) ElementType() reflect.Type
- func (i AccessLevelsAccessLevelCustomArgs) ToAccessLevelsAccessLevelCustomOutput() AccessLevelsAccessLevelCustomOutput
- func (i AccessLevelsAccessLevelCustomArgs) ToAccessLevelsAccessLevelCustomOutputWithContext(ctx context.Context) AccessLevelsAccessLevelCustomOutput
- func (i AccessLevelsAccessLevelCustomArgs) ToAccessLevelsAccessLevelCustomPtrOutput() AccessLevelsAccessLevelCustomPtrOutput
- func (i AccessLevelsAccessLevelCustomArgs) ToAccessLevelsAccessLevelCustomPtrOutputWithContext(ctx context.Context) AccessLevelsAccessLevelCustomPtrOutput
- type AccessLevelsAccessLevelCustomExpr
- type AccessLevelsAccessLevelCustomExprArgs
- func (AccessLevelsAccessLevelCustomExprArgs) ElementType() reflect.Type
- func (i AccessLevelsAccessLevelCustomExprArgs) ToAccessLevelsAccessLevelCustomExprOutput() AccessLevelsAccessLevelCustomExprOutput
- func (i AccessLevelsAccessLevelCustomExprArgs) ToAccessLevelsAccessLevelCustomExprOutputWithContext(ctx context.Context) AccessLevelsAccessLevelCustomExprOutput
- func (i AccessLevelsAccessLevelCustomExprArgs) ToAccessLevelsAccessLevelCustomExprPtrOutput() AccessLevelsAccessLevelCustomExprPtrOutput
- func (i AccessLevelsAccessLevelCustomExprArgs) ToAccessLevelsAccessLevelCustomExprPtrOutputWithContext(ctx context.Context) AccessLevelsAccessLevelCustomExprPtrOutput
- type AccessLevelsAccessLevelCustomExprInput
- type AccessLevelsAccessLevelCustomExprOutput
- func (o AccessLevelsAccessLevelCustomExprOutput) Description() pulumi.StringPtrOutput
- func (AccessLevelsAccessLevelCustomExprOutput) ElementType() reflect.Type
- func (o AccessLevelsAccessLevelCustomExprOutput) Expression() pulumi.StringOutput
- func (o AccessLevelsAccessLevelCustomExprOutput) Location() pulumi.StringPtrOutput
- func (o AccessLevelsAccessLevelCustomExprOutput) Title() pulumi.StringPtrOutput
- func (o AccessLevelsAccessLevelCustomExprOutput) ToAccessLevelsAccessLevelCustomExprOutput() AccessLevelsAccessLevelCustomExprOutput
- func (o AccessLevelsAccessLevelCustomExprOutput) ToAccessLevelsAccessLevelCustomExprOutputWithContext(ctx context.Context) AccessLevelsAccessLevelCustomExprOutput
- func (o AccessLevelsAccessLevelCustomExprOutput) ToAccessLevelsAccessLevelCustomExprPtrOutput() AccessLevelsAccessLevelCustomExprPtrOutput
- func (o AccessLevelsAccessLevelCustomExprOutput) ToAccessLevelsAccessLevelCustomExprPtrOutputWithContext(ctx context.Context) AccessLevelsAccessLevelCustomExprPtrOutput
- type AccessLevelsAccessLevelCustomExprPtrInput
- type AccessLevelsAccessLevelCustomExprPtrOutput
- func (o AccessLevelsAccessLevelCustomExprPtrOutput) Description() pulumi.StringPtrOutput
- func (o AccessLevelsAccessLevelCustomExprPtrOutput) Elem() AccessLevelsAccessLevelCustomExprOutput
- func (AccessLevelsAccessLevelCustomExprPtrOutput) ElementType() reflect.Type
- func (o AccessLevelsAccessLevelCustomExprPtrOutput) Expression() pulumi.StringPtrOutput
- func (o AccessLevelsAccessLevelCustomExprPtrOutput) Location() pulumi.StringPtrOutput
- func (o AccessLevelsAccessLevelCustomExprPtrOutput) Title() pulumi.StringPtrOutput
- func (o AccessLevelsAccessLevelCustomExprPtrOutput) ToAccessLevelsAccessLevelCustomExprPtrOutput() AccessLevelsAccessLevelCustomExprPtrOutput
- func (o AccessLevelsAccessLevelCustomExprPtrOutput) ToAccessLevelsAccessLevelCustomExprPtrOutputWithContext(ctx context.Context) AccessLevelsAccessLevelCustomExprPtrOutput
- type AccessLevelsAccessLevelCustomInput
- type AccessLevelsAccessLevelCustomOutput
- func (AccessLevelsAccessLevelCustomOutput) ElementType() reflect.Type
- func (o AccessLevelsAccessLevelCustomOutput) Expr() AccessLevelsAccessLevelCustomExprOutput
- func (o AccessLevelsAccessLevelCustomOutput) ToAccessLevelsAccessLevelCustomOutput() AccessLevelsAccessLevelCustomOutput
- func (o AccessLevelsAccessLevelCustomOutput) ToAccessLevelsAccessLevelCustomOutputWithContext(ctx context.Context) AccessLevelsAccessLevelCustomOutput
- func (o AccessLevelsAccessLevelCustomOutput) ToAccessLevelsAccessLevelCustomPtrOutput() AccessLevelsAccessLevelCustomPtrOutput
- func (o AccessLevelsAccessLevelCustomOutput) ToAccessLevelsAccessLevelCustomPtrOutputWithContext(ctx context.Context) AccessLevelsAccessLevelCustomPtrOutput
- type AccessLevelsAccessLevelCustomPtrInput
- type AccessLevelsAccessLevelCustomPtrOutput
- func (o AccessLevelsAccessLevelCustomPtrOutput) Elem() AccessLevelsAccessLevelCustomOutput
- func (AccessLevelsAccessLevelCustomPtrOutput) ElementType() reflect.Type
- func (o AccessLevelsAccessLevelCustomPtrOutput) Expr() AccessLevelsAccessLevelCustomExprPtrOutput
- func (o AccessLevelsAccessLevelCustomPtrOutput) ToAccessLevelsAccessLevelCustomPtrOutput() AccessLevelsAccessLevelCustomPtrOutput
- func (o AccessLevelsAccessLevelCustomPtrOutput) ToAccessLevelsAccessLevelCustomPtrOutputWithContext(ctx context.Context) AccessLevelsAccessLevelCustomPtrOutput
- type AccessLevelsAccessLevelInput
- type AccessLevelsAccessLevelOutput
- func (o AccessLevelsAccessLevelOutput) Basic() AccessLevelsAccessLevelBasicPtrOutput
- func (o AccessLevelsAccessLevelOutput) Custom() AccessLevelsAccessLevelCustomPtrOutput
- func (o AccessLevelsAccessLevelOutput) Description() pulumi.StringPtrOutput
- func (AccessLevelsAccessLevelOutput) ElementType() reflect.Type
- func (o AccessLevelsAccessLevelOutput) Name() pulumi.StringOutput
- func (o AccessLevelsAccessLevelOutput) Title() pulumi.StringOutput
- func (o AccessLevelsAccessLevelOutput) ToAccessLevelsAccessLevelOutput() AccessLevelsAccessLevelOutput
- func (o AccessLevelsAccessLevelOutput) ToAccessLevelsAccessLevelOutputWithContext(ctx context.Context) AccessLevelsAccessLevelOutput
- type AccessLevelsArgs
- type AccessLevelsCondition
- type AccessLevelsConditionArgs
- type AccessLevelsConditionState
- type AccessLevelsInput
- type AccessLevelsOutput
- type AccessLevelsState
- type AccessPolicy
- type AccessPolicyArgs
- type AccessPolicyInput
- type AccessPolicyOutput
- type AccessPolicyState
- type GcpUserAccessBinding
- type GcpUserAccessBindingArgs
- type GcpUserAccessBindingInput
- type GcpUserAccessBindingOutput
- type GcpUserAccessBindingState
- type ServicePerimeter
- type ServicePerimeterArgs
- type ServicePerimeterInput
- type ServicePerimeterOutput
- type ServicePerimeterResource
- type ServicePerimeterResourceArgs
- type ServicePerimeterResourceInput
- type ServicePerimeterResourceOutput
- func (ServicePerimeterResourceOutput) ElementType() reflect.Type
- func (o ServicePerimeterResourceOutput) ToServicePerimeterResourceOutput() ServicePerimeterResourceOutput
- func (o ServicePerimeterResourceOutput) ToServicePerimeterResourceOutputWithContext(ctx context.Context) ServicePerimeterResourceOutput
- type ServicePerimeterResourceState
- type ServicePerimeterSpec
- type ServicePerimeterSpecArgs
- func (ServicePerimeterSpecArgs) ElementType() reflect.Type
- func (i ServicePerimeterSpecArgs) ToServicePerimeterSpecOutput() ServicePerimeterSpecOutput
- func (i ServicePerimeterSpecArgs) ToServicePerimeterSpecOutputWithContext(ctx context.Context) ServicePerimeterSpecOutput
- func (i ServicePerimeterSpecArgs) ToServicePerimeterSpecPtrOutput() ServicePerimeterSpecPtrOutput
- func (i ServicePerimeterSpecArgs) ToServicePerimeterSpecPtrOutputWithContext(ctx context.Context) ServicePerimeterSpecPtrOutput
- type ServicePerimeterSpecInput
- type ServicePerimeterSpecOutput
- func (o ServicePerimeterSpecOutput) AccessLevels() pulumi.StringArrayOutput
- func (ServicePerimeterSpecOutput) ElementType() reflect.Type
- func (o ServicePerimeterSpecOutput) Resources() pulumi.StringArrayOutput
- func (o ServicePerimeterSpecOutput) RestrictedServices() pulumi.StringArrayOutput
- func (o ServicePerimeterSpecOutput) ToServicePerimeterSpecOutput() ServicePerimeterSpecOutput
- func (o ServicePerimeterSpecOutput) ToServicePerimeterSpecOutputWithContext(ctx context.Context) ServicePerimeterSpecOutput
- func (o ServicePerimeterSpecOutput) ToServicePerimeterSpecPtrOutput() ServicePerimeterSpecPtrOutput
- func (o ServicePerimeterSpecOutput) ToServicePerimeterSpecPtrOutputWithContext(ctx context.Context) ServicePerimeterSpecPtrOutput
- func (o ServicePerimeterSpecOutput) VpcAccessibleServices() ServicePerimeterSpecVpcAccessibleServicesPtrOutput
- type ServicePerimeterSpecPtrInput
- type ServicePerimeterSpecPtrOutput
- func (o ServicePerimeterSpecPtrOutput) AccessLevels() pulumi.StringArrayOutput
- func (o ServicePerimeterSpecPtrOutput) Elem() ServicePerimeterSpecOutput
- func (ServicePerimeterSpecPtrOutput) ElementType() reflect.Type
- func (o ServicePerimeterSpecPtrOutput) Resources() pulumi.StringArrayOutput
- func (o ServicePerimeterSpecPtrOutput) RestrictedServices() pulumi.StringArrayOutput
- func (o ServicePerimeterSpecPtrOutput) ToServicePerimeterSpecPtrOutput() ServicePerimeterSpecPtrOutput
- func (o ServicePerimeterSpecPtrOutput) ToServicePerimeterSpecPtrOutputWithContext(ctx context.Context) ServicePerimeterSpecPtrOutput
- func (o ServicePerimeterSpecPtrOutput) VpcAccessibleServices() ServicePerimeterSpecVpcAccessibleServicesPtrOutput
- type ServicePerimeterSpecVpcAccessibleServices
- type ServicePerimeterSpecVpcAccessibleServicesArgs
- func (ServicePerimeterSpecVpcAccessibleServicesArgs) ElementType() reflect.Type
- func (i ServicePerimeterSpecVpcAccessibleServicesArgs) ToServicePerimeterSpecVpcAccessibleServicesOutput() ServicePerimeterSpecVpcAccessibleServicesOutput
- func (i ServicePerimeterSpecVpcAccessibleServicesArgs) ToServicePerimeterSpecVpcAccessibleServicesOutputWithContext(ctx context.Context) ServicePerimeterSpecVpcAccessibleServicesOutput
- func (i ServicePerimeterSpecVpcAccessibleServicesArgs) ToServicePerimeterSpecVpcAccessibleServicesPtrOutput() ServicePerimeterSpecVpcAccessibleServicesPtrOutput
- func (i ServicePerimeterSpecVpcAccessibleServicesArgs) ToServicePerimeterSpecVpcAccessibleServicesPtrOutputWithContext(ctx context.Context) ServicePerimeterSpecVpcAccessibleServicesPtrOutput
- type ServicePerimeterSpecVpcAccessibleServicesInput
- type ServicePerimeterSpecVpcAccessibleServicesOutput
- func (o ServicePerimeterSpecVpcAccessibleServicesOutput) AllowedServices() pulumi.StringArrayOutput
- func (ServicePerimeterSpecVpcAccessibleServicesOutput) ElementType() reflect.Type
- func (o ServicePerimeterSpecVpcAccessibleServicesOutput) EnableRestriction() pulumi.BoolPtrOutput
- func (o ServicePerimeterSpecVpcAccessibleServicesOutput) ToServicePerimeterSpecVpcAccessibleServicesOutput() ServicePerimeterSpecVpcAccessibleServicesOutput
- func (o ServicePerimeterSpecVpcAccessibleServicesOutput) ToServicePerimeterSpecVpcAccessibleServicesOutputWithContext(ctx context.Context) ServicePerimeterSpecVpcAccessibleServicesOutput
- func (o ServicePerimeterSpecVpcAccessibleServicesOutput) ToServicePerimeterSpecVpcAccessibleServicesPtrOutput() ServicePerimeterSpecVpcAccessibleServicesPtrOutput
- func (o ServicePerimeterSpecVpcAccessibleServicesOutput) ToServicePerimeterSpecVpcAccessibleServicesPtrOutputWithContext(ctx context.Context) ServicePerimeterSpecVpcAccessibleServicesPtrOutput
- type ServicePerimeterSpecVpcAccessibleServicesPtrInput
- type ServicePerimeterSpecVpcAccessibleServicesPtrOutput
- func (o ServicePerimeterSpecVpcAccessibleServicesPtrOutput) AllowedServices() pulumi.StringArrayOutput
- func (o ServicePerimeterSpecVpcAccessibleServicesPtrOutput) Elem() ServicePerimeterSpecVpcAccessibleServicesOutput
- func (ServicePerimeterSpecVpcAccessibleServicesPtrOutput) ElementType() reflect.Type
- func (o ServicePerimeterSpecVpcAccessibleServicesPtrOutput) EnableRestriction() pulumi.BoolPtrOutput
- func (o ServicePerimeterSpecVpcAccessibleServicesPtrOutput) ToServicePerimeterSpecVpcAccessibleServicesPtrOutput() ServicePerimeterSpecVpcAccessibleServicesPtrOutput
- func (o ServicePerimeterSpecVpcAccessibleServicesPtrOutput) ToServicePerimeterSpecVpcAccessibleServicesPtrOutputWithContext(ctx context.Context) ServicePerimeterSpecVpcAccessibleServicesPtrOutput
- type ServicePerimeterState
- type ServicePerimeterStatus
- type ServicePerimeterStatusArgs
- func (ServicePerimeterStatusArgs) ElementType() reflect.Type
- func (i ServicePerimeterStatusArgs) ToServicePerimeterStatusOutput() ServicePerimeterStatusOutput
- func (i ServicePerimeterStatusArgs) ToServicePerimeterStatusOutputWithContext(ctx context.Context) ServicePerimeterStatusOutput
- func (i ServicePerimeterStatusArgs) ToServicePerimeterStatusPtrOutput() ServicePerimeterStatusPtrOutput
- func (i ServicePerimeterStatusArgs) ToServicePerimeterStatusPtrOutputWithContext(ctx context.Context) ServicePerimeterStatusPtrOutput
- type ServicePerimeterStatusInput
- type ServicePerimeterStatusOutput
- func (o ServicePerimeterStatusOutput) AccessLevels() pulumi.StringArrayOutput
- func (ServicePerimeterStatusOutput) ElementType() reflect.Type
- func (o ServicePerimeterStatusOutput) Resources() pulumi.StringArrayOutput
- func (o ServicePerimeterStatusOutput) RestrictedServices() pulumi.StringArrayOutput
- func (o ServicePerimeterStatusOutput) ToServicePerimeterStatusOutput() ServicePerimeterStatusOutput
- func (o ServicePerimeterStatusOutput) ToServicePerimeterStatusOutputWithContext(ctx context.Context) ServicePerimeterStatusOutput
- func (o ServicePerimeterStatusOutput) ToServicePerimeterStatusPtrOutput() ServicePerimeterStatusPtrOutput
- func (o ServicePerimeterStatusOutput) ToServicePerimeterStatusPtrOutputWithContext(ctx context.Context) ServicePerimeterStatusPtrOutput
- func (o ServicePerimeterStatusOutput) VpcAccessibleServices() ServicePerimeterStatusVpcAccessibleServicesPtrOutput
- type ServicePerimeterStatusPtrInput
- type ServicePerimeterStatusPtrOutput
- func (o ServicePerimeterStatusPtrOutput) AccessLevels() pulumi.StringArrayOutput
- func (o ServicePerimeterStatusPtrOutput) Elem() ServicePerimeterStatusOutput
- func (ServicePerimeterStatusPtrOutput) ElementType() reflect.Type
- func (o ServicePerimeterStatusPtrOutput) Resources() pulumi.StringArrayOutput
- func (o ServicePerimeterStatusPtrOutput) RestrictedServices() pulumi.StringArrayOutput
- func (o ServicePerimeterStatusPtrOutput) ToServicePerimeterStatusPtrOutput() ServicePerimeterStatusPtrOutput
- func (o ServicePerimeterStatusPtrOutput) ToServicePerimeterStatusPtrOutputWithContext(ctx context.Context) ServicePerimeterStatusPtrOutput
- func (o ServicePerimeterStatusPtrOutput) VpcAccessibleServices() ServicePerimeterStatusVpcAccessibleServicesPtrOutput
- type ServicePerimeterStatusVpcAccessibleServices
- type ServicePerimeterStatusVpcAccessibleServicesArgs
- func (ServicePerimeterStatusVpcAccessibleServicesArgs) ElementType() reflect.Type
- func (i ServicePerimeterStatusVpcAccessibleServicesArgs) ToServicePerimeterStatusVpcAccessibleServicesOutput() ServicePerimeterStatusVpcAccessibleServicesOutput
- func (i ServicePerimeterStatusVpcAccessibleServicesArgs) ToServicePerimeterStatusVpcAccessibleServicesOutputWithContext(ctx context.Context) ServicePerimeterStatusVpcAccessibleServicesOutput
- func (i ServicePerimeterStatusVpcAccessibleServicesArgs) ToServicePerimeterStatusVpcAccessibleServicesPtrOutput() ServicePerimeterStatusVpcAccessibleServicesPtrOutput
- func (i ServicePerimeterStatusVpcAccessibleServicesArgs) ToServicePerimeterStatusVpcAccessibleServicesPtrOutputWithContext(ctx context.Context) ServicePerimeterStatusVpcAccessibleServicesPtrOutput
- type ServicePerimeterStatusVpcAccessibleServicesInput
- type ServicePerimeterStatusVpcAccessibleServicesOutput
- func (o ServicePerimeterStatusVpcAccessibleServicesOutput) AllowedServices() pulumi.StringArrayOutput
- func (ServicePerimeterStatusVpcAccessibleServicesOutput) ElementType() reflect.Type
- func (o ServicePerimeterStatusVpcAccessibleServicesOutput) EnableRestriction() pulumi.BoolPtrOutput
- func (o ServicePerimeterStatusVpcAccessibleServicesOutput) ToServicePerimeterStatusVpcAccessibleServicesOutput() ServicePerimeterStatusVpcAccessibleServicesOutput
- func (o ServicePerimeterStatusVpcAccessibleServicesOutput) ToServicePerimeterStatusVpcAccessibleServicesOutputWithContext(ctx context.Context) ServicePerimeterStatusVpcAccessibleServicesOutput
- func (o ServicePerimeterStatusVpcAccessibleServicesOutput) ToServicePerimeterStatusVpcAccessibleServicesPtrOutput() ServicePerimeterStatusVpcAccessibleServicesPtrOutput
- func (o ServicePerimeterStatusVpcAccessibleServicesOutput) ToServicePerimeterStatusVpcAccessibleServicesPtrOutputWithContext(ctx context.Context) ServicePerimeterStatusVpcAccessibleServicesPtrOutput
- type ServicePerimeterStatusVpcAccessibleServicesPtrInput
- type ServicePerimeterStatusVpcAccessibleServicesPtrOutput
- func (o ServicePerimeterStatusVpcAccessibleServicesPtrOutput) AllowedServices() pulumi.StringArrayOutput
- func (o ServicePerimeterStatusVpcAccessibleServicesPtrOutput) Elem() ServicePerimeterStatusVpcAccessibleServicesOutput
- func (ServicePerimeterStatusVpcAccessibleServicesPtrOutput) ElementType() reflect.Type
- func (o ServicePerimeterStatusVpcAccessibleServicesPtrOutput) EnableRestriction() pulumi.BoolPtrOutput
- func (o ServicePerimeterStatusVpcAccessibleServicesPtrOutput) ToServicePerimeterStatusVpcAccessibleServicesPtrOutput() ServicePerimeterStatusVpcAccessibleServicesPtrOutput
- func (o ServicePerimeterStatusVpcAccessibleServicesPtrOutput) ToServicePerimeterStatusVpcAccessibleServicesPtrOutputWithContext(ctx context.Context) ServicePerimeterStatusVpcAccessibleServicesPtrOutput
- type ServicePerimeters
- type ServicePerimetersArgs
- type ServicePerimetersInput
- type ServicePerimetersOutput
- type ServicePerimetersServicePerimeter
- type ServicePerimetersServicePerimeterArgs
- func (ServicePerimetersServicePerimeterArgs) ElementType() reflect.Type
- func (i ServicePerimetersServicePerimeterArgs) ToServicePerimetersServicePerimeterOutput() ServicePerimetersServicePerimeterOutput
- func (i ServicePerimetersServicePerimeterArgs) ToServicePerimetersServicePerimeterOutputWithContext(ctx context.Context) ServicePerimetersServicePerimeterOutput
- type ServicePerimetersServicePerimeterArray
- func (ServicePerimetersServicePerimeterArray) ElementType() reflect.Type
- func (i ServicePerimetersServicePerimeterArray) ToServicePerimetersServicePerimeterArrayOutput() ServicePerimetersServicePerimeterArrayOutput
- func (i ServicePerimetersServicePerimeterArray) ToServicePerimetersServicePerimeterArrayOutputWithContext(ctx context.Context) ServicePerimetersServicePerimeterArrayOutput
- type ServicePerimetersServicePerimeterArrayInput
- type ServicePerimetersServicePerimeterArrayOutput
- func (ServicePerimetersServicePerimeterArrayOutput) ElementType() reflect.Type
- func (o ServicePerimetersServicePerimeterArrayOutput) Index(i pulumi.IntInput) ServicePerimetersServicePerimeterOutput
- func (o ServicePerimetersServicePerimeterArrayOutput) ToServicePerimetersServicePerimeterArrayOutput() ServicePerimetersServicePerimeterArrayOutput
- func (o ServicePerimetersServicePerimeterArrayOutput) ToServicePerimetersServicePerimeterArrayOutputWithContext(ctx context.Context) ServicePerimetersServicePerimeterArrayOutput
- type ServicePerimetersServicePerimeterInput
- type ServicePerimetersServicePerimeterOutput
- func (o ServicePerimetersServicePerimeterOutput) CreateTime() pulumi.StringPtrOutput
- func (o ServicePerimetersServicePerimeterOutput) Description() pulumi.StringPtrOutput
- func (ServicePerimetersServicePerimeterOutput) ElementType() reflect.Type
- func (o ServicePerimetersServicePerimeterOutput) Name() pulumi.StringOutput
- func (o ServicePerimetersServicePerimeterOutput) PerimeterType() pulumi.StringPtrOutput
- func (o ServicePerimetersServicePerimeterOutput) Spec() ServicePerimetersServicePerimeterSpecPtrOutput
- func (o ServicePerimetersServicePerimeterOutput) Status() ServicePerimetersServicePerimeterStatusPtrOutput
- func (o ServicePerimetersServicePerimeterOutput) Title() pulumi.StringOutput
- func (o ServicePerimetersServicePerimeterOutput) ToServicePerimetersServicePerimeterOutput() ServicePerimetersServicePerimeterOutput
- func (o ServicePerimetersServicePerimeterOutput) ToServicePerimetersServicePerimeterOutputWithContext(ctx context.Context) ServicePerimetersServicePerimeterOutput
- func (o ServicePerimetersServicePerimeterOutput) UpdateTime() pulumi.StringPtrOutput
- func (o ServicePerimetersServicePerimeterOutput) UseExplicitDryRunSpec() pulumi.BoolPtrOutput
- type ServicePerimetersServicePerimeterSpec
- type ServicePerimetersServicePerimeterSpecArgs
- func (ServicePerimetersServicePerimeterSpecArgs) ElementType() reflect.Type
- func (i ServicePerimetersServicePerimeterSpecArgs) ToServicePerimetersServicePerimeterSpecOutput() ServicePerimetersServicePerimeterSpecOutput
- func (i ServicePerimetersServicePerimeterSpecArgs) ToServicePerimetersServicePerimeterSpecOutputWithContext(ctx context.Context) ServicePerimetersServicePerimeterSpecOutput
- func (i ServicePerimetersServicePerimeterSpecArgs) ToServicePerimetersServicePerimeterSpecPtrOutput() ServicePerimetersServicePerimeterSpecPtrOutput
- func (i ServicePerimetersServicePerimeterSpecArgs) ToServicePerimetersServicePerimeterSpecPtrOutputWithContext(ctx context.Context) ServicePerimetersServicePerimeterSpecPtrOutput
- type ServicePerimetersServicePerimeterSpecInput
- type ServicePerimetersServicePerimeterSpecOutput
- func (o ServicePerimetersServicePerimeterSpecOutput) AccessLevels() pulumi.StringArrayOutput
- func (ServicePerimetersServicePerimeterSpecOutput) ElementType() reflect.Type
- func (o ServicePerimetersServicePerimeterSpecOutput) Resources() pulumi.StringArrayOutput
- func (o ServicePerimetersServicePerimeterSpecOutput) RestrictedServices() pulumi.StringArrayOutput
- func (o ServicePerimetersServicePerimeterSpecOutput) ToServicePerimetersServicePerimeterSpecOutput() ServicePerimetersServicePerimeterSpecOutput
- func (o ServicePerimetersServicePerimeterSpecOutput) ToServicePerimetersServicePerimeterSpecOutputWithContext(ctx context.Context) ServicePerimetersServicePerimeterSpecOutput
- func (o ServicePerimetersServicePerimeterSpecOutput) ToServicePerimetersServicePerimeterSpecPtrOutput() ServicePerimetersServicePerimeterSpecPtrOutput
- func (o ServicePerimetersServicePerimeterSpecOutput) ToServicePerimetersServicePerimeterSpecPtrOutputWithContext(ctx context.Context) ServicePerimetersServicePerimeterSpecPtrOutput
- func (o ServicePerimetersServicePerimeterSpecOutput) VpcAccessibleServices() ServicePerimetersServicePerimeterSpecVpcAccessibleServicesPtrOutput
- type ServicePerimetersServicePerimeterSpecPtrInput
- type ServicePerimetersServicePerimeterSpecPtrOutput
- func (o ServicePerimetersServicePerimeterSpecPtrOutput) AccessLevels() pulumi.StringArrayOutput
- func (o ServicePerimetersServicePerimeterSpecPtrOutput) Elem() ServicePerimetersServicePerimeterSpecOutput
- func (ServicePerimetersServicePerimeterSpecPtrOutput) ElementType() reflect.Type
- func (o ServicePerimetersServicePerimeterSpecPtrOutput) Resources() pulumi.StringArrayOutput
- func (o ServicePerimetersServicePerimeterSpecPtrOutput) RestrictedServices() pulumi.StringArrayOutput
- func (o ServicePerimetersServicePerimeterSpecPtrOutput) ToServicePerimetersServicePerimeterSpecPtrOutput() ServicePerimetersServicePerimeterSpecPtrOutput
- func (o ServicePerimetersServicePerimeterSpecPtrOutput) ToServicePerimetersServicePerimeterSpecPtrOutputWithContext(ctx context.Context) ServicePerimetersServicePerimeterSpecPtrOutput
- func (o ServicePerimetersServicePerimeterSpecPtrOutput) VpcAccessibleServices() ServicePerimetersServicePerimeterSpecVpcAccessibleServicesPtrOutput
- type ServicePerimetersServicePerimeterSpecVpcAccessibleServices
- type ServicePerimetersServicePerimeterSpecVpcAccessibleServicesArgs
- func (ServicePerimetersServicePerimeterSpecVpcAccessibleServicesArgs) ElementType() reflect.Type
- func (i ServicePerimetersServicePerimeterSpecVpcAccessibleServicesArgs) ToServicePerimetersServicePerimeterSpecVpcAccessibleServicesOutput() ServicePerimetersServicePerimeterSpecVpcAccessibleServicesOutput
- func (i ServicePerimetersServicePerimeterSpecVpcAccessibleServicesArgs) ToServicePerimetersServicePerimeterSpecVpcAccessibleServicesOutputWithContext(ctx context.Context) ServicePerimetersServicePerimeterSpecVpcAccessibleServicesOutput
- func (i ServicePerimetersServicePerimeterSpecVpcAccessibleServicesArgs) ToServicePerimetersServicePerimeterSpecVpcAccessibleServicesPtrOutput() ServicePerimetersServicePerimeterSpecVpcAccessibleServicesPtrOutput
- func (i ServicePerimetersServicePerimeterSpecVpcAccessibleServicesArgs) ToServicePerimetersServicePerimeterSpecVpcAccessibleServicesPtrOutputWithContext(ctx context.Context) ServicePerimetersServicePerimeterSpecVpcAccessibleServicesPtrOutput
- type ServicePerimetersServicePerimeterSpecVpcAccessibleServicesInput
- type ServicePerimetersServicePerimeterSpecVpcAccessibleServicesOutput
- func (o ServicePerimetersServicePerimeterSpecVpcAccessibleServicesOutput) AllowedServices() pulumi.StringArrayOutput
- func (ServicePerimetersServicePerimeterSpecVpcAccessibleServicesOutput) ElementType() reflect.Type
- func (o ServicePerimetersServicePerimeterSpecVpcAccessibleServicesOutput) EnableRestriction() pulumi.BoolPtrOutput
- func (o ServicePerimetersServicePerimeterSpecVpcAccessibleServicesOutput) ToServicePerimetersServicePerimeterSpecVpcAccessibleServicesOutput() ServicePerimetersServicePerimeterSpecVpcAccessibleServicesOutput
- func (o ServicePerimetersServicePerimeterSpecVpcAccessibleServicesOutput) ToServicePerimetersServicePerimeterSpecVpcAccessibleServicesOutputWithContext(ctx context.Context) ServicePerimetersServicePerimeterSpecVpcAccessibleServicesOutput
- func (o ServicePerimetersServicePerimeterSpecVpcAccessibleServicesOutput) ToServicePerimetersServicePerimeterSpecVpcAccessibleServicesPtrOutput() ServicePerimetersServicePerimeterSpecVpcAccessibleServicesPtrOutput
- func (o ServicePerimetersServicePerimeterSpecVpcAccessibleServicesOutput) ToServicePerimetersServicePerimeterSpecVpcAccessibleServicesPtrOutputWithContext(ctx context.Context) ServicePerimetersServicePerimeterSpecVpcAccessibleServicesPtrOutput
- type ServicePerimetersServicePerimeterSpecVpcAccessibleServicesPtrInput
- type ServicePerimetersServicePerimeterSpecVpcAccessibleServicesPtrOutput
- func (o ServicePerimetersServicePerimeterSpecVpcAccessibleServicesPtrOutput) AllowedServices() pulumi.StringArrayOutput
- func (o ServicePerimetersServicePerimeterSpecVpcAccessibleServicesPtrOutput) Elem() ServicePerimetersServicePerimeterSpecVpcAccessibleServicesOutput
- func (ServicePerimetersServicePerimeterSpecVpcAccessibleServicesPtrOutput) ElementType() reflect.Type
- func (o ServicePerimetersServicePerimeterSpecVpcAccessibleServicesPtrOutput) EnableRestriction() pulumi.BoolPtrOutput
- func (o ServicePerimetersServicePerimeterSpecVpcAccessibleServicesPtrOutput) ToServicePerimetersServicePerimeterSpecVpcAccessibleServicesPtrOutput() ServicePerimetersServicePerimeterSpecVpcAccessibleServicesPtrOutput
- func (o ServicePerimetersServicePerimeterSpecVpcAccessibleServicesPtrOutput) ToServicePerimetersServicePerimeterSpecVpcAccessibleServicesPtrOutputWithContext(ctx context.Context) ServicePerimetersServicePerimeterSpecVpcAccessibleServicesPtrOutput
- type ServicePerimetersServicePerimeterStatus
- type ServicePerimetersServicePerimeterStatusArgs
- func (ServicePerimetersServicePerimeterStatusArgs) ElementType() reflect.Type
- func (i ServicePerimetersServicePerimeterStatusArgs) ToServicePerimetersServicePerimeterStatusOutput() ServicePerimetersServicePerimeterStatusOutput
- func (i ServicePerimetersServicePerimeterStatusArgs) ToServicePerimetersServicePerimeterStatusOutputWithContext(ctx context.Context) ServicePerimetersServicePerimeterStatusOutput
- func (i ServicePerimetersServicePerimeterStatusArgs) ToServicePerimetersServicePerimeterStatusPtrOutput() ServicePerimetersServicePerimeterStatusPtrOutput
- func (i ServicePerimetersServicePerimeterStatusArgs) ToServicePerimetersServicePerimeterStatusPtrOutputWithContext(ctx context.Context) ServicePerimetersServicePerimeterStatusPtrOutput
- type ServicePerimetersServicePerimeterStatusInput
- type ServicePerimetersServicePerimeterStatusOutput
- func (o ServicePerimetersServicePerimeterStatusOutput) AccessLevels() pulumi.StringArrayOutput
- func (ServicePerimetersServicePerimeterStatusOutput) ElementType() reflect.Type
- func (o ServicePerimetersServicePerimeterStatusOutput) Resources() pulumi.StringArrayOutput
- func (o ServicePerimetersServicePerimeterStatusOutput) RestrictedServices() pulumi.StringArrayOutput
- func (o ServicePerimetersServicePerimeterStatusOutput) ToServicePerimetersServicePerimeterStatusOutput() ServicePerimetersServicePerimeterStatusOutput
- func (o ServicePerimetersServicePerimeterStatusOutput) ToServicePerimetersServicePerimeterStatusOutputWithContext(ctx context.Context) ServicePerimetersServicePerimeterStatusOutput
- func (o ServicePerimetersServicePerimeterStatusOutput) ToServicePerimetersServicePerimeterStatusPtrOutput() ServicePerimetersServicePerimeterStatusPtrOutput
- func (o ServicePerimetersServicePerimeterStatusOutput) ToServicePerimetersServicePerimeterStatusPtrOutputWithContext(ctx context.Context) ServicePerimetersServicePerimeterStatusPtrOutput
- func (o ServicePerimetersServicePerimeterStatusOutput) VpcAccessibleServices() ServicePerimetersServicePerimeterStatusVpcAccessibleServicesPtrOutput
- type ServicePerimetersServicePerimeterStatusPtrInput
- type ServicePerimetersServicePerimeterStatusPtrOutput
- func (o ServicePerimetersServicePerimeterStatusPtrOutput) AccessLevels() pulumi.StringArrayOutput
- func (o ServicePerimetersServicePerimeterStatusPtrOutput) Elem() ServicePerimetersServicePerimeterStatusOutput
- func (ServicePerimetersServicePerimeterStatusPtrOutput) ElementType() reflect.Type
- func (o ServicePerimetersServicePerimeterStatusPtrOutput) Resources() pulumi.StringArrayOutput
- func (o ServicePerimetersServicePerimeterStatusPtrOutput) RestrictedServices() pulumi.StringArrayOutput
- func (o ServicePerimetersServicePerimeterStatusPtrOutput) ToServicePerimetersServicePerimeterStatusPtrOutput() ServicePerimetersServicePerimeterStatusPtrOutput
- func (o ServicePerimetersServicePerimeterStatusPtrOutput) ToServicePerimetersServicePerimeterStatusPtrOutputWithContext(ctx context.Context) ServicePerimetersServicePerimeterStatusPtrOutput
- func (o ServicePerimetersServicePerimeterStatusPtrOutput) VpcAccessibleServices() ServicePerimetersServicePerimeterStatusVpcAccessibleServicesPtrOutput
- type ServicePerimetersServicePerimeterStatusVpcAccessibleServices
- type ServicePerimetersServicePerimeterStatusVpcAccessibleServicesArgs
- func (ServicePerimetersServicePerimeterStatusVpcAccessibleServicesArgs) ElementType() reflect.Type
- func (i ServicePerimetersServicePerimeterStatusVpcAccessibleServicesArgs) ToServicePerimetersServicePerimeterStatusVpcAccessibleServicesOutput() ServicePerimetersServicePerimeterStatusVpcAccessibleServicesOutput
- func (i ServicePerimetersServicePerimeterStatusVpcAccessibleServicesArgs) ToServicePerimetersServicePerimeterStatusVpcAccessibleServicesOutputWithContext(ctx context.Context) ServicePerimetersServicePerimeterStatusVpcAccessibleServicesOutput
- func (i ServicePerimetersServicePerimeterStatusVpcAccessibleServicesArgs) ToServicePerimetersServicePerimeterStatusVpcAccessibleServicesPtrOutput() ServicePerimetersServicePerimeterStatusVpcAccessibleServicesPtrOutput
- func (i ServicePerimetersServicePerimeterStatusVpcAccessibleServicesArgs) ToServicePerimetersServicePerimeterStatusVpcAccessibleServicesPtrOutputWithContext(ctx context.Context) ServicePerimetersServicePerimeterStatusVpcAccessibleServicesPtrOutput
- type ServicePerimetersServicePerimeterStatusVpcAccessibleServicesInput
- type ServicePerimetersServicePerimeterStatusVpcAccessibleServicesOutput
- func (o ServicePerimetersServicePerimeterStatusVpcAccessibleServicesOutput) AllowedServices() pulumi.StringArrayOutput
- func (ServicePerimetersServicePerimeterStatusVpcAccessibleServicesOutput) ElementType() reflect.Type
- func (o ServicePerimetersServicePerimeterStatusVpcAccessibleServicesOutput) EnableRestriction() pulumi.BoolPtrOutput
- func (o ServicePerimetersServicePerimeterStatusVpcAccessibleServicesOutput) ToServicePerimetersServicePerimeterStatusVpcAccessibleServicesOutput() ServicePerimetersServicePerimeterStatusVpcAccessibleServicesOutput
- func (o ServicePerimetersServicePerimeterStatusVpcAccessibleServicesOutput) ToServicePerimetersServicePerimeterStatusVpcAccessibleServicesOutputWithContext(ctx context.Context) ServicePerimetersServicePerimeterStatusVpcAccessibleServicesOutput
- func (o ServicePerimetersServicePerimeterStatusVpcAccessibleServicesOutput) ToServicePerimetersServicePerimeterStatusVpcAccessibleServicesPtrOutput() ServicePerimetersServicePerimeterStatusVpcAccessibleServicesPtrOutput
- func (o ServicePerimetersServicePerimeterStatusVpcAccessibleServicesOutput) ToServicePerimetersServicePerimeterStatusVpcAccessibleServicesPtrOutputWithContext(ctx context.Context) ServicePerimetersServicePerimeterStatusVpcAccessibleServicesPtrOutput
- type ServicePerimetersServicePerimeterStatusVpcAccessibleServicesPtrInput
- type ServicePerimetersServicePerimeterStatusVpcAccessibleServicesPtrOutput
- func (o ServicePerimetersServicePerimeterStatusVpcAccessibleServicesPtrOutput) AllowedServices() pulumi.StringArrayOutput
- func (o ServicePerimetersServicePerimeterStatusVpcAccessibleServicesPtrOutput) Elem() ServicePerimetersServicePerimeterStatusVpcAccessibleServicesOutput
- func (ServicePerimetersServicePerimeterStatusVpcAccessibleServicesPtrOutput) ElementType() reflect.Type
- func (o ServicePerimetersServicePerimeterStatusVpcAccessibleServicesPtrOutput) EnableRestriction() pulumi.BoolPtrOutput
- func (o ServicePerimetersServicePerimeterStatusVpcAccessibleServicesPtrOutput) ToServicePerimetersServicePerimeterStatusVpcAccessibleServicesPtrOutput() ServicePerimetersServicePerimeterStatusVpcAccessibleServicesPtrOutput
- func (o ServicePerimetersServicePerimeterStatusVpcAccessibleServicesPtrOutput) ToServicePerimetersServicePerimeterStatusVpcAccessibleServicesPtrOutputWithContext(ctx context.Context) ServicePerimetersServicePerimeterStatusVpcAccessibleServicesPtrOutput
- type ServicePerimetersState
Constants ¶
This section is empty.
Variables ¶
This section is empty.
Functions ¶
This section is empty.
Types ¶
type AccessLevel ¶
type AccessLevel struct {
pulumi.CustomResourceState
// A set of predefined conditions for the access level and a combining function.
// Structure is documented below.
Basic AccessLevelBasicPtrOutput `pulumi:"basic"`
// Custom access level conditions are set using the Cloud Common Expression Language to represent the necessary conditions for the level to apply to a request.
// See CEL spec at: https://github.com/google/cel-spec.
// Structure is documented below.
Custom AccessLevelCustomPtrOutput `pulumi:"custom"`
// Description of the expression
Description pulumi.StringPtrOutput `pulumi:"description"`
// Resource name for the Access Level. The shortName component must begin
// with a letter and only include alphanumeric and '_'.
// Format: accessPolicies/{policy_id}/accessLevels/{short_name}
Name pulumi.StringOutput `pulumi:"name"`
// The AccessPolicy this AccessLevel lives in.
// Format: accessPolicies/{policy_id}
Parent pulumi.StringOutput `pulumi:"parent"`
// Title for the expression, i.e. a short string describing its purpose.
Title pulumi.StringOutput `pulumi:"title"`
}
An AccessLevel is a label that can be applied to requests to GCP services, along with a list of requirements necessary for the label to be applied.
To get more information about AccessLevel, see:
* [API documentation](https://cloud.google.com/access-context-manager/docs/reference/rest/v1/accessPolicies.accessLevels) * How-to Guides
- [Access Policy Quickstart](https://cloud.google.com/access-context-manager/docs/quickstart)
> **Warning:** If you are using User ADCs (Application Default Credentials) with this resource, you must specify a `billingProject` and set `userProjectOverride` to true in the provider configuration. Otherwise the ACM API will return a 403 error. Your account must have the `serviceusage.services.use` permission on the `billingProject` you defined.
## Example Usage ### Access Context Manager Access Level Basic
```go package main
import (
"fmt" "github.com/pulumi/pulumi-gcp/sdk/v4/go/gcp/accesscontextmanager" "github.com/pulumi/pulumi/sdk/v2/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
_, err := accesscontextmanager.NewAccessPolicy(ctx, "access_policy", &accesscontextmanager.AccessPolicyArgs{
Parent: pulumi.String("organizations/123456789"),
Title: pulumi.String("my policy"),
})
if err != nil {
return err
}
_, err = accesscontextmanager.NewAccessLevel(ctx, "access_level", &accesscontextmanager.AccessLevelArgs{
Basic: &accesscontextmanager.AccessLevelBasicArgs{
Conditions: accesscontextmanager.AccessLevelBasicConditionArray{
&accesscontextmanager.AccessLevelBasicConditionArgs{
DevicePolicy: &accesscontextmanager.AccessLevelBasicConditionDevicePolicyArgs{
OsConstraints: accesscontextmanager.AccessLevelBasicConditionDevicePolicyOsConstraintArray{
&accesscontextmanager.AccessLevelBasicConditionDevicePolicyOsConstraintArgs{
OsType: pulumi.String("DESKTOP_CHROME_OS"),
},
},
RequireScreenLock: pulumi.Bool(true),
},
Regions: pulumi.StringArray{
pulumi.String("CH"),
pulumi.String("IT"),
pulumi.String("US"),
},
},
},
},
Parent: access_policy.Name.ApplyT(func(name string) (string, error) {
return fmt.Sprintf("%v%v", "accessPolicies/", name), nil
}).(pulumi.StringOutput),
Title: pulumi.String("chromeos_no_lock"),
})
if err != nil {
return err
}
return nil
})
}
```
## Import
AccessLevel can be imported using any of these accepted formats ¶
```sh
$ pulumi import gcp:accesscontextmanager/accessLevel:AccessLevel default {{name}}
```
func GetAccessLevel ¶
func GetAccessLevel(ctx *pulumi.Context, name string, id pulumi.IDInput, state *AccessLevelState, opts ...pulumi.ResourceOption) (*AccessLevel, error)
GetAccessLevel gets an existing AccessLevel resource's state with the given name, ID, and optional state properties that are used to uniquely qualify the lookup (nil if not required).
func NewAccessLevel ¶
func NewAccessLevel(ctx *pulumi.Context, name string, args *AccessLevelArgs, opts ...pulumi.ResourceOption) (*AccessLevel, error)
NewAccessLevel registers a new resource with the given unique name, arguments, and options.
func (*AccessLevel) ElementType ¶ added in v4.4.0
func (*AccessLevel) ElementType() reflect.Type
func (*AccessLevel) ToAccessLevelOutput ¶ added in v4.4.0
func (i *AccessLevel) ToAccessLevelOutput() AccessLevelOutput
func (*AccessLevel) ToAccessLevelOutputWithContext ¶ added in v4.4.0
func (i *AccessLevel) ToAccessLevelOutputWithContext(ctx context.Context) AccessLevelOutput
type AccessLevelArgs ¶
type AccessLevelArgs struct {
// A set of predefined conditions for the access level and a combining function.
// Structure is documented below.
Basic AccessLevelBasicPtrInput
// Custom access level conditions are set using the Cloud Common Expression Language to represent the necessary conditions for the level to apply to a request.
// See CEL spec at: https://github.com/google/cel-spec.
// Structure is documented below.
Custom AccessLevelCustomPtrInput
// Description of the expression
Description pulumi.StringPtrInput
// Resource name for the Access Level. The shortName component must begin
// with a letter and only include alphanumeric and '_'.
// Format: accessPolicies/{policy_id}/accessLevels/{short_name}
Name pulumi.StringPtrInput
// The AccessPolicy this AccessLevel lives in.
// Format: accessPolicies/{policy_id}
Parent pulumi.StringInput
// Title for the expression, i.e. a short string describing its purpose.
Title pulumi.StringInput
}
The set of arguments for constructing a AccessLevel resource.
func (AccessLevelArgs) ElementType ¶
func (AccessLevelArgs) ElementType() reflect.Type
type AccessLevelBasic ¶
type AccessLevelBasic struct {
// How the conditions list should be combined to determine if a request
// is granted this AccessLevel. If AND is used, each Condition in
// conditions must be satisfied for the AccessLevel to be applied. If
// OR is used, at least one Condition in conditions must be satisfied
// for the AccessLevel to be applied.
// Default value is `AND`.
// Possible values are `AND` and `OR`.
CombiningFunction *string `pulumi:"combiningFunction"`
// A set of requirements for the AccessLevel to be granted.
// Structure is documented below.
Conditions []AccessLevelBasicCondition `pulumi:"conditions"`
}
type AccessLevelBasicArgs ¶
type AccessLevelBasicArgs struct {
// How the conditions list should be combined to determine if a request
// is granted this AccessLevel. If AND is used, each Condition in
// conditions must be satisfied for the AccessLevel to be applied. If
// OR is used, at least one Condition in conditions must be satisfied
// for the AccessLevel to be applied.
// Default value is `AND`.
// Possible values are `AND` and `OR`.
CombiningFunction pulumi.StringPtrInput `pulumi:"combiningFunction"`
// A set of requirements for the AccessLevel to be granted.
// Structure is documented below.
Conditions AccessLevelBasicConditionArrayInput `pulumi:"conditions"`
}
func (AccessLevelBasicArgs) ElementType ¶
func (AccessLevelBasicArgs) ElementType() reflect.Type
func (AccessLevelBasicArgs) ToAccessLevelBasicOutput ¶
func (i AccessLevelBasicArgs) ToAccessLevelBasicOutput() AccessLevelBasicOutput
func (AccessLevelBasicArgs) ToAccessLevelBasicOutputWithContext ¶
func (i AccessLevelBasicArgs) ToAccessLevelBasicOutputWithContext(ctx context.Context) AccessLevelBasicOutput
func (AccessLevelBasicArgs) ToAccessLevelBasicPtrOutput ¶
func (i AccessLevelBasicArgs) ToAccessLevelBasicPtrOutput() AccessLevelBasicPtrOutput
func (AccessLevelBasicArgs) ToAccessLevelBasicPtrOutputWithContext ¶
func (i AccessLevelBasicArgs) ToAccessLevelBasicPtrOutputWithContext(ctx context.Context) AccessLevelBasicPtrOutput
type AccessLevelBasicCondition ¶
type AccessLevelBasicCondition struct {
// Device specific restrictions, all restrictions must hold for
// the Condition to be true. If not specified, all devices are
// allowed.
// Structure is documented below.
DevicePolicy *AccessLevelBasicConditionDevicePolicy `pulumi:"devicePolicy"`
// A list of CIDR block IP subnetwork specification. May be IPv4
// or IPv6.
// Note that for a CIDR IP address block, the specified IP address
// portion must be properly truncated (i.e. all the host bits must
// be zero) or the input is considered malformed. For example,
// "192.0.2.0/24" is accepted but "192.0.2.1/24" is not. Similarly,
// for IPv6, "2001:db8::/32" is accepted whereas "2001:db8::1/32"
// is not. The originating IP of a request must be in one of the
// listed subnets in order for this Condition to be true.
// If empty, all IP addresses are allowed.
IpSubnetworks []string `pulumi:"ipSubnetworks"`
// An allowed list of members (users, service accounts).
// Using groups is not supported yet.
// The signed-in user originating the request must be a part of one
// of the provided members. If not specified, a request may come
// from any user (logged in/not logged in, not present in any
// groups, etc.).
// Formats: `user:{emailid}`, `serviceAccount:{emailid}`
Members []string `pulumi:"members"`
// Whether to negate the Condition. If true, the Condition becomes
// a NAND over its non-empty fields, each field must be false for
// the Condition overall to be satisfied. Defaults to false.
Negate *bool `pulumi:"negate"`
// The request must originate from one of the provided
// countries/regions.
// Format: A valid ISO 3166-1 alpha-2 code.
Regions []string `pulumi:"regions"`
// A list of other access levels defined in the same Policy,
// referenced by resource name. Referencing an AccessLevel which
// does not exist is an error. All access levels listed must be
// granted for the Condition to be true.
// Format: accessPolicies/{policy_id}/accessLevels/{short_name}
RequiredAccessLevels []string `pulumi:"requiredAccessLevels"`
}
type AccessLevelBasicConditionArgs ¶
type AccessLevelBasicConditionArgs struct {
// Device specific restrictions, all restrictions must hold for
// the Condition to be true. If not specified, all devices are
// allowed.
// Structure is documented below.
DevicePolicy AccessLevelBasicConditionDevicePolicyPtrInput `pulumi:"devicePolicy"`
// A list of CIDR block IP subnetwork specification. May be IPv4
// or IPv6.
// Note that for a CIDR IP address block, the specified IP address
// portion must be properly truncated (i.e. all the host bits must
// be zero) or the input is considered malformed. For example,
// "192.0.2.0/24" is accepted but "192.0.2.1/24" is not. Similarly,
// for IPv6, "2001:db8::/32" is accepted whereas "2001:db8::1/32"
// is not. The originating IP of a request must be in one of the
// listed subnets in order for this Condition to be true.
// If empty, all IP addresses are allowed.
IpSubnetworks pulumi.StringArrayInput `pulumi:"ipSubnetworks"`
// An allowed list of members (users, service accounts).
// Using groups is not supported yet.
// The signed-in user originating the request must be a part of one
// of the provided members. If not specified, a request may come
// from any user (logged in/not logged in, not present in any
// groups, etc.).
// Formats: `user:{emailid}`, `serviceAccount:{emailid}`
Members pulumi.StringArrayInput `pulumi:"members"`
// Whether to negate the Condition. If true, the Condition becomes
// a NAND over its non-empty fields, each field must be false for
// the Condition overall to be satisfied. Defaults to false.
Negate pulumi.BoolPtrInput `pulumi:"negate"`
// The request must originate from one of the provided
// countries/regions.
// Format: A valid ISO 3166-1 alpha-2 code.
Regions pulumi.StringArrayInput `pulumi:"regions"`
// A list of other access levels defined in the same Policy,
// referenced by resource name. Referencing an AccessLevel which
// does not exist is an error. All access levels listed must be
// granted for the Condition to be true.
// Format: accessPolicies/{policy_id}/accessLevels/{short_name}
RequiredAccessLevels pulumi.StringArrayInput `pulumi:"requiredAccessLevels"`
}
func (AccessLevelBasicConditionArgs) ElementType ¶
func (AccessLevelBasicConditionArgs) ElementType() reflect.Type
func (AccessLevelBasicConditionArgs) ToAccessLevelBasicConditionOutput ¶
func (i AccessLevelBasicConditionArgs) ToAccessLevelBasicConditionOutput() AccessLevelBasicConditionOutput
func (AccessLevelBasicConditionArgs) ToAccessLevelBasicConditionOutputWithContext ¶
func (i AccessLevelBasicConditionArgs) ToAccessLevelBasicConditionOutputWithContext(ctx context.Context) AccessLevelBasicConditionOutput
type AccessLevelBasicConditionArray ¶
type AccessLevelBasicConditionArray []AccessLevelBasicConditionInput
func (AccessLevelBasicConditionArray) ElementType ¶
func (AccessLevelBasicConditionArray) ElementType() reflect.Type
func (AccessLevelBasicConditionArray) ToAccessLevelBasicConditionArrayOutput ¶
func (i AccessLevelBasicConditionArray) ToAccessLevelBasicConditionArrayOutput() AccessLevelBasicConditionArrayOutput
func (AccessLevelBasicConditionArray) ToAccessLevelBasicConditionArrayOutputWithContext ¶
func (i AccessLevelBasicConditionArray) ToAccessLevelBasicConditionArrayOutputWithContext(ctx context.Context) AccessLevelBasicConditionArrayOutput
type AccessLevelBasicConditionArrayInput ¶
type AccessLevelBasicConditionArrayInput interface {
pulumi.Input
ToAccessLevelBasicConditionArrayOutput() AccessLevelBasicConditionArrayOutput
ToAccessLevelBasicConditionArrayOutputWithContext(context.Context) AccessLevelBasicConditionArrayOutput
}
AccessLevelBasicConditionArrayInput is an input type that accepts AccessLevelBasicConditionArray and AccessLevelBasicConditionArrayOutput values. You can construct a concrete instance of `AccessLevelBasicConditionArrayInput` via:
AccessLevelBasicConditionArray{ AccessLevelBasicConditionArgs{...} }
type AccessLevelBasicConditionArrayOutput ¶
type AccessLevelBasicConditionArrayOutput struct{ *pulumi.OutputState }
func (AccessLevelBasicConditionArrayOutput) ElementType ¶
func (AccessLevelBasicConditionArrayOutput) ElementType() reflect.Type
func (AccessLevelBasicConditionArrayOutput) Index ¶
func (o AccessLevelBasicConditionArrayOutput) Index(i pulumi.IntInput) AccessLevelBasicConditionOutput
func (AccessLevelBasicConditionArrayOutput) ToAccessLevelBasicConditionArrayOutput ¶
func (o AccessLevelBasicConditionArrayOutput) ToAccessLevelBasicConditionArrayOutput() AccessLevelBasicConditionArrayOutput
func (AccessLevelBasicConditionArrayOutput) ToAccessLevelBasicConditionArrayOutputWithContext ¶
func (o AccessLevelBasicConditionArrayOutput) ToAccessLevelBasicConditionArrayOutputWithContext(ctx context.Context) AccessLevelBasicConditionArrayOutput
type AccessLevelBasicConditionDevicePolicy ¶
type AccessLevelBasicConditionDevicePolicy struct {
// A list of allowed device management levels.
// An empty list allows all management levels.
// Each value may be one of `MANAGEMENT_UNSPECIFIED`, `NONE`, `BASIC`, and `COMPLETE`.
AllowedDeviceManagementLevels []string `pulumi:"allowedDeviceManagementLevels"`
// A list of allowed encryptions statuses.
// An empty list allows all statuses.
// Each value may be one of `ENCRYPTION_UNSPECIFIED`, `ENCRYPTION_UNSUPPORTED`, `UNENCRYPTED`, and `ENCRYPTED`.
AllowedEncryptionStatuses []string `pulumi:"allowedEncryptionStatuses"`
// A list of allowed OS versions.
// An empty list allows all types and all versions.
// Structure is documented below.
OsConstraints []AccessLevelBasicConditionDevicePolicyOsConstraint `pulumi:"osConstraints"`
// Whether the device needs to be approved by the customer admin.
RequireAdminApproval *bool `pulumi:"requireAdminApproval"`
// Whether the device needs to be corp owned.
RequireCorpOwned *bool `pulumi:"requireCorpOwned"`
// Whether or not screenlock is required for the DevicePolicy
// to be true. Defaults to false.
RequireScreenLock *bool `pulumi:"requireScreenLock"`
}
type AccessLevelBasicConditionDevicePolicyArgs ¶
type AccessLevelBasicConditionDevicePolicyArgs struct {
// A list of allowed device management levels.
// An empty list allows all management levels.
// Each value may be one of `MANAGEMENT_UNSPECIFIED`, `NONE`, `BASIC`, and `COMPLETE`.
AllowedDeviceManagementLevels pulumi.StringArrayInput `pulumi:"allowedDeviceManagementLevels"`
// A list of allowed encryptions statuses.
// An empty list allows all statuses.
// Each value may be one of `ENCRYPTION_UNSPECIFIED`, `ENCRYPTION_UNSUPPORTED`, `UNENCRYPTED`, and `ENCRYPTED`.
AllowedEncryptionStatuses pulumi.StringArrayInput `pulumi:"allowedEncryptionStatuses"`
// A list of allowed OS versions.
// An empty list allows all types and all versions.
// Structure is documented below.
OsConstraints AccessLevelBasicConditionDevicePolicyOsConstraintArrayInput `pulumi:"osConstraints"`
// Whether the device needs to be approved by the customer admin.
RequireAdminApproval pulumi.BoolPtrInput `pulumi:"requireAdminApproval"`
// Whether the device needs to be corp owned.
RequireCorpOwned pulumi.BoolPtrInput `pulumi:"requireCorpOwned"`
// Whether or not screenlock is required for the DevicePolicy
// to be true. Defaults to false.
RequireScreenLock pulumi.BoolPtrInput `pulumi:"requireScreenLock"`
}
func (AccessLevelBasicConditionDevicePolicyArgs) ElementType ¶
func (AccessLevelBasicConditionDevicePolicyArgs) ElementType() reflect.Type
func (AccessLevelBasicConditionDevicePolicyArgs) ToAccessLevelBasicConditionDevicePolicyOutput ¶
func (i AccessLevelBasicConditionDevicePolicyArgs) ToAccessLevelBasicConditionDevicePolicyOutput() AccessLevelBasicConditionDevicePolicyOutput
func (AccessLevelBasicConditionDevicePolicyArgs) ToAccessLevelBasicConditionDevicePolicyOutputWithContext ¶
func (i AccessLevelBasicConditionDevicePolicyArgs) ToAccessLevelBasicConditionDevicePolicyOutputWithContext(ctx context.Context) AccessLevelBasicConditionDevicePolicyOutput
func (AccessLevelBasicConditionDevicePolicyArgs) ToAccessLevelBasicConditionDevicePolicyPtrOutput ¶
func (i AccessLevelBasicConditionDevicePolicyArgs) ToAccessLevelBasicConditionDevicePolicyPtrOutput() AccessLevelBasicConditionDevicePolicyPtrOutput
func (AccessLevelBasicConditionDevicePolicyArgs) ToAccessLevelBasicConditionDevicePolicyPtrOutputWithContext ¶
func (i AccessLevelBasicConditionDevicePolicyArgs) ToAccessLevelBasicConditionDevicePolicyPtrOutputWithContext(ctx context.Context) AccessLevelBasicConditionDevicePolicyPtrOutput
type AccessLevelBasicConditionDevicePolicyInput ¶
type AccessLevelBasicConditionDevicePolicyInput interface {
pulumi.Input
ToAccessLevelBasicConditionDevicePolicyOutput() AccessLevelBasicConditionDevicePolicyOutput
ToAccessLevelBasicConditionDevicePolicyOutputWithContext(context.Context) AccessLevelBasicConditionDevicePolicyOutput
}
AccessLevelBasicConditionDevicePolicyInput is an input type that accepts AccessLevelBasicConditionDevicePolicyArgs and AccessLevelBasicConditionDevicePolicyOutput values. You can construct a concrete instance of `AccessLevelBasicConditionDevicePolicyInput` via:
AccessLevelBasicConditionDevicePolicyArgs{...}
type AccessLevelBasicConditionDevicePolicyOsConstraint ¶
type AccessLevelBasicConditionDevicePolicyOsConstraint struct {
// The minimum allowed OS version. If not set, any version
// of this OS satisfies the constraint.
// Format: "major.minor.patch" such as "10.5.301", "9.2.1".
MinimumVersion *string `pulumi:"minimumVersion"`
// The operating system type of the device.
// Possible values are `OS_UNSPECIFIED`, `DESKTOP_MAC`, `DESKTOP_WINDOWS`, `DESKTOP_LINUX`, and `DESKTOP_CHROME_OS`.
OsType string `pulumi:"osType"`
}
type AccessLevelBasicConditionDevicePolicyOsConstraintArgs ¶
type AccessLevelBasicConditionDevicePolicyOsConstraintArgs struct {
// The minimum allowed OS version. If not set, any version
// of this OS satisfies the constraint.
// Format: "major.minor.patch" such as "10.5.301", "9.2.1".
MinimumVersion pulumi.StringPtrInput `pulumi:"minimumVersion"`
// The operating system type of the device.
// Possible values are `OS_UNSPECIFIED`, `DESKTOP_MAC`, `DESKTOP_WINDOWS`, `DESKTOP_LINUX`, and `DESKTOP_CHROME_OS`.
OsType pulumi.StringInput `pulumi:"osType"`
}
func (AccessLevelBasicConditionDevicePolicyOsConstraintArgs) ElementType ¶
func (AccessLevelBasicConditionDevicePolicyOsConstraintArgs) ElementType() reflect.Type
func (AccessLevelBasicConditionDevicePolicyOsConstraintArgs) ToAccessLevelBasicConditionDevicePolicyOsConstraintOutput ¶
func (i AccessLevelBasicConditionDevicePolicyOsConstraintArgs) ToAccessLevelBasicConditionDevicePolicyOsConstraintOutput() AccessLevelBasicConditionDevicePolicyOsConstraintOutput
func (AccessLevelBasicConditionDevicePolicyOsConstraintArgs) ToAccessLevelBasicConditionDevicePolicyOsConstraintOutputWithContext ¶
func (i AccessLevelBasicConditionDevicePolicyOsConstraintArgs) ToAccessLevelBasicConditionDevicePolicyOsConstraintOutputWithContext(ctx context.Context) AccessLevelBasicConditionDevicePolicyOsConstraintOutput
type AccessLevelBasicConditionDevicePolicyOsConstraintArray ¶
type AccessLevelBasicConditionDevicePolicyOsConstraintArray []AccessLevelBasicConditionDevicePolicyOsConstraintInput
func (AccessLevelBasicConditionDevicePolicyOsConstraintArray) ElementType ¶
func (AccessLevelBasicConditionDevicePolicyOsConstraintArray) ElementType() reflect.Type
func (AccessLevelBasicConditionDevicePolicyOsConstraintArray) ToAccessLevelBasicConditionDevicePolicyOsConstraintArrayOutput ¶
func (i AccessLevelBasicConditionDevicePolicyOsConstraintArray) ToAccessLevelBasicConditionDevicePolicyOsConstraintArrayOutput() AccessLevelBasicConditionDevicePolicyOsConstraintArrayOutput
func (AccessLevelBasicConditionDevicePolicyOsConstraintArray) ToAccessLevelBasicConditionDevicePolicyOsConstraintArrayOutputWithContext ¶
func (i AccessLevelBasicConditionDevicePolicyOsConstraintArray) ToAccessLevelBasicConditionDevicePolicyOsConstraintArrayOutputWithContext(ctx context.Context) AccessLevelBasicConditionDevicePolicyOsConstraintArrayOutput
type AccessLevelBasicConditionDevicePolicyOsConstraintArrayInput ¶
type AccessLevelBasicConditionDevicePolicyOsConstraintArrayInput interface {
pulumi.Input
ToAccessLevelBasicConditionDevicePolicyOsConstraintArrayOutput() AccessLevelBasicConditionDevicePolicyOsConstraintArrayOutput
ToAccessLevelBasicConditionDevicePolicyOsConstraintArrayOutputWithContext(context.Context) AccessLevelBasicConditionDevicePolicyOsConstraintArrayOutput
}
AccessLevelBasicConditionDevicePolicyOsConstraintArrayInput is an input type that accepts AccessLevelBasicConditionDevicePolicyOsConstraintArray and AccessLevelBasicConditionDevicePolicyOsConstraintArrayOutput values. You can construct a concrete instance of `AccessLevelBasicConditionDevicePolicyOsConstraintArrayInput` via:
AccessLevelBasicConditionDevicePolicyOsConstraintArray{ AccessLevelBasicConditionDevicePolicyOsConstraintArgs{...} }
type AccessLevelBasicConditionDevicePolicyOsConstraintArrayOutput ¶
type AccessLevelBasicConditionDevicePolicyOsConstraintArrayOutput struct{ *pulumi.OutputState }
func (AccessLevelBasicConditionDevicePolicyOsConstraintArrayOutput) ElementType ¶
func (AccessLevelBasicConditionDevicePolicyOsConstraintArrayOutput) ElementType() reflect.Type
func (AccessLevelBasicConditionDevicePolicyOsConstraintArrayOutput) ToAccessLevelBasicConditionDevicePolicyOsConstraintArrayOutput ¶
func (o AccessLevelBasicConditionDevicePolicyOsConstraintArrayOutput) ToAccessLevelBasicConditionDevicePolicyOsConstraintArrayOutput() AccessLevelBasicConditionDevicePolicyOsConstraintArrayOutput
func (AccessLevelBasicConditionDevicePolicyOsConstraintArrayOutput) ToAccessLevelBasicConditionDevicePolicyOsConstraintArrayOutputWithContext ¶
func (o AccessLevelBasicConditionDevicePolicyOsConstraintArrayOutput) ToAccessLevelBasicConditionDevicePolicyOsConstraintArrayOutputWithContext(ctx context.Context) AccessLevelBasicConditionDevicePolicyOsConstraintArrayOutput
type AccessLevelBasicConditionDevicePolicyOsConstraintInput ¶
type AccessLevelBasicConditionDevicePolicyOsConstraintInput interface {
pulumi.Input
ToAccessLevelBasicConditionDevicePolicyOsConstraintOutput() AccessLevelBasicConditionDevicePolicyOsConstraintOutput
ToAccessLevelBasicConditionDevicePolicyOsConstraintOutputWithContext(context.Context) AccessLevelBasicConditionDevicePolicyOsConstraintOutput
}
AccessLevelBasicConditionDevicePolicyOsConstraintInput is an input type that accepts AccessLevelBasicConditionDevicePolicyOsConstraintArgs and AccessLevelBasicConditionDevicePolicyOsConstraintOutput values. You can construct a concrete instance of `AccessLevelBasicConditionDevicePolicyOsConstraintInput` via:
AccessLevelBasicConditionDevicePolicyOsConstraintArgs{...}
type AccessLevelBasicConditionDevicePolicyOsConstraintOutput ¶
type AccessLevelBasicConditionDevicePolicyOsConstraintOutput struct{ *pulumi.OutputState }
func (AccessLevelBasicConditionDevicePolicyOsConstraintOutput) ElementType ¶
func (AccessLevelBasicConditionDevicePolicyOsConstraintOutput) ElementType() reflect.Type
func (AccessLevelBasicConditionDevicePolicyOsConstraintOutput) MinimumVersion ¶
func (o AccessLevelBasicConditionDevicePolicyOsConstraintOutput) MinimumVersion() pulumi.StringPtrOutput
The minimum allowed OS version. If not set, any version of this OS satisfies the constraint. Format: "major.minor.patch" such as "10.5.301", "9.2.1".
func (AccessLevelBasicConditionDevicePolicyOsConstraintOutput) OsType ¶
func (o AccessLevelBasicConditionDevicePolicyOsConstraintOutput) OsType() pulumi.StringOutput
The operating system type of the device. Possible values are `OS_UNSPECIFIED`, `DESKTOP_MAC`, `DESKTOP_WINDOWS`, `DESKTOP_LINUX`, and `DESKTOP_CHROME_OS`.
func (AccessLevelBasicConditionDevicePolicyOsConstraintOutput) ToAccessLevelBasicConditionDevicePolicyOsConstraintOutput ¶
func (o AccessLevelBasicConditionDevicePolicyOsConstraintOutput) ToAccessLevelBasicConditionDevicePolicyOsConstraintOutput() AccessLevelBasicConditionDevicePolicyOsConstraintOutput
func (AccessLevelBasicConditionDevicePolicyOsConstraintOutput) ToAccessLevelBasicConditionDevicePolicyOsConstraintOutputWithContext ¶
func (o AccessLevelBasicConditionDevicePolicyOsConstraintOutput) ToAccessLevelBasicConditionDevicePolicyOsConstraintOutputWithContext(ctx context.Context) AccessLevelBasicConditionDevicePolicyOsConstraintOutput
type AccessLevelBasicConditionDevicePolicyOutput ¶
type AccessLevelBasicConditionDevicePolicyOutput struct{ *pulumi.OutputState }
func (AccessLevelBasicConditionDevicePolicyOutput) AllowedDeviceManagementLevels ¶
func (o AccessLevelBasicConditionDevicePolicyOutput) AllowedDeviceManagementLevels() pulumi.StringArrayOutput
A list of allowed device management levels. An empty list allows all management levels. Each value may be one of `MANAGEMENT_UNSPECIFIED`, `NONE`, `BASIC`, and `COMPLETE`.
func (AccessLevelBasicConditionDevicePolicyOutput) AllowedEncryptionStatuses ¶
func (o AccessLevelBasicConditionDevicePolicyOutput) AllowedEncryptionStatuses() pulumi.StringArrayOutput
A list of allowed encryptions statuses. An empty list allows all statuses. Each value may be one of `ENCRYPTION_UNSPECIFIED`, `ENCRYPTION_UNSUPPORTED`, `UNENCRYPTED`, and `ENCRYPTED`.
func (AccessLevelBasicConditionDevicePolicyOutput) ElementType ¶
func (AccessLevelBasicConditionDevicePolicyOutput) ElementType() reflect.Type
func (AccessLevelBasicConditionDevicePolicyOutput) OsConstraints ¶
func (o AccessLevelBasicConditionDevicePolicyOutput) OsConstraints() AccessLevelBasicConditionDevicePolicyOsConstraintArrayOutput
A list of allowed OS versions. An empty list allows all types and all versions. Structure is documented below.
func (AccessLevelBasicConditionDevicePolicyOutput) RequireAdminApproval ¶
func (o AccessLevelBasicConditionDevicePolicyOutput) RequireAdminApproval() pulumi.BoolPtrOutput
Whether the device needs to be approved by the customer admin.
func (AccessLevelBasicConditionDevicePolicyOutput) RequireCorpOwned ¶
func (o AccessLevelBasicConditionDevicePolicyOutput) RequireCorpOwned() pulumi.BoolPtrOutput
Whether the device needs to be corp owned.
func (AccessLevelBasicConditionDevicePolicyOutput) RequireScreenLock ¶
func (o AccessLevelBasicConditionDevicePolicyOutput) RequireScreenLock() pulumi.BoolPtrOutput
Whether or not screenlock is required for the DevicePolicy to be true. Defaults to false.
func (AccessLevelBasicConditionDevicePolicyOutput) ToAccessLevelBasicConditionDevicePolicyOutput ¶
func (o AccessLevelBasicConditionDevicePolicyOutput) ToAccessLevelBasicConditionDevicePolicyOutput() AccessLevelBasicConditionDevicePolicyOutput
func (AccessLevelBasicConditionDevicePolicyOutput) ToAccessLevelBasicConditionDevicePolicyOutputWithContext ¶
func (o AccessLevelBasicConditionDevicePolicyOutput) ToAccessLevelBasicConditionDevicePolicyOutputWithContext(ctx context.Context) AccessLevelBasicConditionDevicePolicyOutput
func (AccessLevelBasicConditionDevicePolicyOutput) ToAccessLevelBasicConditionDevicePolicyPtrOutput ¶
func (o AccessLevelBasicConditionDevicePolicyOutput) ToAccessLevelBasicConditionDevicePolicyPtrOutput() AccessLevelBasicConditionDevicePolicyPtrOutput
func (AccessLevelBasicConditionDevicePolicyOutput) ToAccessLevelBasicConditionDevicePolicyPtrOutputWithContext ¶
func (o AccessLevelBasicConditionDevicePolicyOutput) ToAccessLevelBasicConditionDevicePolicyPtrOutputWithContext(ctx context.Context) AccessLevelBasicConditionDevicePolicyPtrOutput
type AccessLevelBasicConditionDevicePolicyPtrInput ¶
type AccessLevelBasicConditionDevicePolicyPtrInput interface {
pulumi.Input
ToAccessLevelBasicConditionDevicePolicyPtrOutput() AccessLevelBasicConditionDevicePolicyPtrOutput
ToAccessLevelBasicConditionDevicePolicyPtrOutputWithContext(context.Context) AccessLevelBasicConditionDevicePolicyPtrOutput
}
AccessLevelBasicConditionDevicePolicyPtrInput is an input type that accepts AccessLevelBasicConditionDevicePolicyArgs, AccessLevelBasicConditionDevicePolicyPtr and AccessLevelBasicConditionDevicePolicyPtrOutput values. You can construct a concrete instance of `AccessLevelBasicConditionDevicePolicyPtrInput` via:
AccessLevelBasicConditionDevicePolicyArgs{...}
or:
nil
func AccessLevelBasicConditionDevicePolicyPtr ¶
func AccessLevelBasicConditionDevicePolicyPtr(v *AccessLevelBasicConditionDevicePolicyArgs) AccessLevelBasicConditionDevicePolicyPtrInput
type AccessLevelBasicConditionDevicePolicyPtrOutput ¶
type AccessLevelBasicConditionDevicePolicyPtrOutput struct{ *pulumi.OutputState }
func (AccessLevelBasicConditionDevicePolicyPtrOutput) AllowedDeviceManagementLevels ¶
func (o AccessLevelBasicConditionDevicePolicyPtrOutput) AllowedDeviceManagementLevels() pulumi.StringArrayOutput
A list of allowed device management levels. An empty list allows all management levels. Each value may be one of `MANAGEMENT_UNSPECIFIED`, `NONE`, `BASIC`, and `COMPLETE`.
func (AccessLevelBasicConditionDevicePolicyPtrOutput) AllowedEncryptionStatuses ¶
func (o AccessLevelBasicConditionDevicePolicyPtrOutput) AllowedEncryptionStatuses() pulumi.StringArrayOutput
A list of allowed encryptions statuses. An empty list allows all statuses. Each value may be one of `ENCRYPTION_UNSPECIFIED`, `ENCRYPTION_UNSUPPORTED`, `UNENCRYPTED`, and `ENCRYPTED`.
func (AccessLevelBasicConditionDevicePolicyPtrOutput) ElementType ¶
func (AccessLevelBasicConditionDevicePolicyPtrOutput) ElementType() reflect.Type
func (AccessLevelBasicConditionDevicePolicyPtrOutput) OsConstraints ¶
func (o AccessLevelBasicConditionDevicePolicyPtrOutput) OsConstraints() AccessLevelBasicConditionDevicePolicyOsConstraintArrayOutput
A list of allowed OS versions. An empty list allows all types and all versions. Structure is documented below.
func (AccessLevelBasicConditionDevicePolicyPtrOutput) RequireAdminApproval ¶
func (o AccessLevelBasicConditionDevicePolicyPtrOutput) RequireAdminApproval() pulumi.BoolPtrOutput
Whether the device needs to be approved by the customer admin.
func (AccessLevelBasicConditionDevicePolicyPtrOutput) RequireCorpOwned ¶
func (o AccessLevelBasicConditionDevicePolicyPtrOutput) RequireCorpOwned() pulumi.BoolPtrOutput
Whether the device needs to be corp owned.
func (AccessLevelBasicConditionDevicePolicyPtrOutput) RequireScreenLock ¶
func (o AccessLevelBasicConditionDevicePolicyPtrOutput) RequireScreenLock() pulumi.BoolPtrOutput
Whether or not screenlock is required for the DevicePolicy to be true. Defaults to false.
func (AccessLevelBasicConditionDevicePolicyPtrOutput) ToAccessLevelBasicConditionDevicePolicyPtrOutput ¶
func (o AccessLevelBasicConditionDevicePolicyPtrOutput) ToAccessLevelBasicConditionDevicePolicyPtrOutput() AccessLevelBasicConditionDevicePolicyPtrOutput
func (AccessLevelBasicConditionDevicePolicyPtrOutput) ToAccessLevelBasicConditionDevicePolicyPtrOutputWithContext ¶
func (o AccessLevelBasicConditionDevicePolicyPtrOutput) ToAccessLevelBasicConditionDevicePolicyPtrOutputWithContext(ctx context.Context) AccessLevelBasicConditionDevicePolicyPtrOutput
type AccessLevelBasicConditionInput ¶
type AccessLevelBasicConditionInput interface {
pulumi.Input
ToAccessLevelBasicConditionOutput() AccessLevelBasicConditionOutput
ToAccessLevelBasicConditionOutputWithContext(context.Context) AccessLevelBasicConditionOutput
}
AccessLevelBasicConditionInput is an input type that accepts AccessLevelBasicConditionArgs and AccessLevelBasicConditionOutput values. You can construct a concrete instance of `AccessLevelBasicConditionInput` via:
AccessLevelBasicConditionArgs{...}
type AccessLevelBasicConditionOutput ¶
type AccessLevelBasicConditionOutput struct{ *pulumi.OutputState }
func (AccessLevelBasicConditionOutput) DevicePolicy ¶
func (o AccessLevelBasicConditionOutput) DevicePolicy() AccessLevelBasicConditionDevicePolicyPtrOutput
Device specific restrictions, all restrictions must hold for the Condition to be true. If not specified, all devices are allowed. Structure is documented below.
func (AccessLevelBasicConditionOutput) ElementType ¶
func (AccessLevelBasicConditionOutput) ElementType() reflect.Type
func (AccessLevelBasicConditionOutput) IpSubnetworks ¶
func (o AccessLevelBasicConditionOutput) IpSubnetworks() pulumi.StringArrayOutput
A list of CIDR block IP subnetwork specification. May be IPv4 or IPv6. Note that for a CIDR IP address block, the specified IP address portion must be properly truncated (i.e. all the host bits must be zero) or the input is considered malformed. For example, "192.0.2.0/24" is accepted but "192.0.2.1/24" is not. Similarly, for IPv6, "2001:db8::/32" is accepted whereas "2001:db8::1/32" is not. The originating IP of a request must be in one of the listed subnets in order for this Condition to be true. If empty, all IP addresses are allowed.
func (AccessLevelBasicConditionOutput) Members ¶
func (o AccessLevelBasicConditionOutput) Members() pulumi.StringArrayOutput
An allowed list of members (users, service accounts). Using groups is not supported yet. The signed-in user originating the request must be a part of one of the provided members. If not specified, a request may come from any user (logged in/not logged in, not present in any groups, etc.). Formats: `user:{emailid}`, `serviceAccount:{emailid}`
func (AccessLevelBasicConditionOutput) Negate ¶
func (o AccessLevelBasicConditionOutput) Negate() pulumi.BoolPtrOutput
Whether to negate the Condition. If true, the Condition becomes a NAND over its non-empty fields, each field must be false for the Condition overall to be satisfied. Defaults to false.
func (AccessLevelBasicConditionOutput) Regions ¶
func (o AccessLevelBasicConditionOutput) Regions() pulumi.StringArrayOutput
The request must originate from one of the provided countries/regions. Format: A valid ISO 3166-1 alpha-2 code.
func (AccessLevelBasicConditionOutput) RequiredAccessLevels ¶
func (o AccessLevelBasicConditionOutput) RequiredAccessLevels() pulumi.StringArrayOutput
A list of other access levels defined in the same Policy, referenced by resource name. Referencing an AccessLevel which does not exist is an error. All access levels listed must be granted for the Condition to be true. Format: accessPolicies/{policy_id}/accessLevels/{short_name}
func (AccessLevelBasicConditionOutput) ToAccessLevelBasicConditionOutput ¶
func (o AccessLevelBasicConditionOutput) ToAccessLevelBasicConditionOutput() AccessLevelBasicConditionOutput
func (AccessLevelBasicConditionOutput) ToAccessLevelBasicConditionOutputWithContext ¶
func (o AccessLevelBasicConditionOutput) ToAccessLevelBasicConditionOutputWithContext(ctx context.Context) AccessLevelBasicConditionOutput
type AccessLevelBasicInput ¶
type AccessLevelBasicInput interface {
pulumi.Input
ToAccessLevelBasicOutput() AccessLevelBasicOutput
ToAccessLevelBasicOutputWithContext(context.Context) AccessLevelBasicOutput
}
AccessLevelBasicInput is an input type that accepts AccessLevelBasicArgs and AccessLevelBasicOutput values. You can construct a concrete instance of `AccessLevelBasicInput` via:
AccessLevelBasicArgs{...}
type AccessLevelBasicOutput ¶
type AccessLevelBasicOutput struct{ *pulumi.OutputState }
func (AccessLevelBasicOutput) CombiningFunction ¶
func (o AccessLevelBasicOutput) CombiningFunction() pulumi.StringPtrOutput
How the conditions list should be combined to determine if a request is granted this AccessLevel. If AND is used, each Condition in conditions must be satisfied for the AccessLevel to be applied. If OR is used, at least one Condition in conditions must be satisfied for the AccessLevel to be applied. Default value is `AND`. Possible values are `AND` and `OR`.
func (AccessLevelBasicOutput) Conditions ¶
func (o AccessLevelBasicOutput) Conditions() AccessLevelBasicConditionArrayOutput
A set of requirements for the AccessLevel to be granted. Structure is documented below.
func (AccessLevelBasicOutput) ElementType ¶
func (AccessLevelBasicOutput) ElementType() reflect.Type
func (AccessLevelBasicOutput) ToAccessLevelBasicOutput ¶
func (o AccessLevelBasicOutput) ToAccessLevelBasicOutput() AccessLevelBasicOutput
func (AccessLevelBasicOutput) ToAccessLevelBasicOutputWithContext ¶
func (o AccessLevelBasicOutput) ToAccessLevelBasicOutputWithContext(ctx context.Context) AccessLevelBasicOutput
func (AccessLevelBasicOutput) ToAccessLevelBasicPtrOutput ¶
func (o AccessLevelBasicOutput) ToAccessLevelBasicPtrOutput() AccessLevelBasicPtrOutput
func (AccessLevelBasicOutput) ToAccessLevelBasicPtrOutputWithContext ¶
func (o AccessLevelBasicOutput) ToAccessLevelBasicPtrOutputWithContext(ctx context.Context) AccessLevelBasicPtrOutput
type AccessLevelBasicPtrInput ¶
type AccessLevelBasicPtrInput interface {
pulumi.Input
ToAccessLevelBasicPtrOutput() AccessLevelBasicPtrOutput
ToAccessLevelBasicPtrOutputWithContext(context.Context) AccessLevelBasicPtrOutput
}
AccessLevelBasicPtrInput is an input type that accepts AccessLevelBasicArgs, AccessLevelBasicPtr and AccessLevelBasicPtrOutput values. You can construct a concrete instance of `AccessLevelBasicPtrInput` via:
AccessLevelBasicArgs{...}
or:
nil
func AccessLevelBasicPtr ¶
func AccessLevelBasicPtr(v *AccessLevelBasicArgs) AccessLevelBasicPtrInput
type AccessLevelBasicPtrOutput ¶
type AccessLevelBasicPtrOutput struct{ *pulumi.OutputState }
func (AccessLevelBasicPtrOutput) CombiningFunction ¶
func (o AccessLevelBasicPtrOutput) CombiningFunction() pulumi.StringPtrOutput
How the conditions list should be combined to determine if a request is granted this AccessLevel. If AND is used, each Condition in conditions must be satisfied for the AccessLevel to be applied. If OR is used, at least one Condition in conditions must be satisfied for the AccessLevel to be applied. Default value is `AND`. Possible values are `AND` and `OR`.
func (AccessLevelBasicPtrOutput) Conditions ¶
func (o AccessLevelBasicPtrOutput) Conditions() AccessLevelBasicConditionArrayOutput
A set of requirements for the AccessLevel to be granted. Structure is documented below.
func (AccessLevelBasicPtrOutput) Elem ¶
func (o AccessLevelBasicPtrOutput) Elem() AccessLevelBasicOutput
func (AccessLevelBasicPtrOutput) ElementType ¶
func (AccessLevelBasicPtrOutput) ElementType() reflect.Type
func (AccessLevelBasicPtrOutput) ToAccessLevelBasicPtrOutput ¶
func (o AccessLevelBasicPtrOutput) ToAccessLevelBasicPtrOutput() AccessLevelBasicPtrOutput
func (AccessLevelBasicPtrOutput) ToAccessLevelBasicPtrOutputWithContext ¶
func (o AccessLevelBasicPtrOutput) ToAccessLevelBasicPtrOutputWithContext(ctx context.Context) AccessLevelBasicPtrOutput
type AccessLevelCondition ¶ added in v4.1.0
type AccessLevelCondition struct {
pulumi.CustomResourceState
// The name of the Access Level to add this condition to.
AccessLevel pulumi.StringOutput `pulumi:"accessLevel"`
// Device specific restrictions, all restrictions must hold for
// the Condition to be true. If not specified, all devices are
// allowed.
// Structure is documented below.
DevicePolicy AccessLevelConditionDevicePolicyPtrOutput `pulumi:"devicePolicy"`
// A list of CIDR block IP subnetwork specification. May be IPv4
// or IPv6.
// Note that for a CIDR IP address block, the specified IP address
// portion must be properly truncated (i.e. all the host bits must
// be zero) or the input is considered malformed. For example,
// "192.0.2.0/24" is accepted but "192.0.2.1/24" is not. Similarly,
// for IPv6, "2001:db8::/32" is accepted whereas "2001:db8::1/32"
// is not. The originating IP of a request must be in one of the
// listed subnets in order for this Condition to be true.
// If empty, all IP addresses are allowed.
IpSubnetworks pulumi.StringArrayOutput `pulumi:"ipSubnetworks"`
// An allowed list of members (users, service accounts).
// Using groups is not supported yet.
// The signed-in user originating the request must be a part of one
// of the provided members. If not specified, a request may come
// from any user (logged in/not logged in, not present in any
// groups, etc.).
// Formats: `user:{emailid}`, `serviceAccount:{emailid}`
Members pulumi.StringArrayOutput `pulumi:"members"`
// Whether to negate the Condition. If true, the Condition becomes
// a NAND over its non-empty fields, each field must be false for
// the Condition overall to be satisfied. Defaults to false.
Negate pulumi.BoolPtrOutput `pulumi:"negate"`
// The request must originate from one of the provided
// countries/regions.
// Format: A valid ISO 3166-1 alpha-2 code.
Regions pulumi.StringArrayOutput `pulumi:"regions"`
// A list of other access levels defined in the same Policy,
// referenced by resource name. Referencing an AccessLevel which
// does not exist is an error. All access levels listed must be
// granted for the Condition to be true.
// Format: accessPolicies/{policy_id}/accessLevels/{short_name}
RequiredAccessLevels pulumi.StringArrayOutput `pulumi:"requiredAccessLevels"`
}
Allows configuring a single access level condition to be appended to an access level's conditions. This resource is intended to be used in cases where it is not possible to compile a full list of conditions to include in a `accesscontextmanager.AccessLevel` resource, to enable them to be added separately.
> **Note:** If this resource is used alongside a `accesscontextmanager.AccessLevel` resource, the access level resource must have a `lifecycle` block with `ignoreChanges = [basic[0].conditions]` so they don't fight over which service accounts should be included.
To get more information about AccessLevelCondition, see:
* [API documentation](https://cloud.google.com/access-context-manager/docs/reference/rest/v1/accessPolicies.accessLevels) * How-to Guides
- [Access Policy Quickstart](https://cloud.google.com/access-context-manager/docs/quickstart)
> **Warning:** If you are using User ADCs (Application Default Credentials) with this resource, you must specify a `billingProject` and set `userProjectOverride` to true in the provider configuration. Otherwise the ACM API will return a 403 error. Your account must have the `serviceusage.services.use` permission on the `billingProject` you defined.
## Example Usage
## Import
This resource does not support import.
func GetAccessLevelCondition ¶ added in v4.1.0
func GetAccessLevelCondition(ctx *pulumi.Context, name string, id pulumi.IDInput, state *AccessLevelConditionState, opts ...pulumi.ResourceOption) (*AccessLevelCondition, error)
GetAccessLevelCondition gets an existing AccessLevelCondition resource's state with the given name, ID, and optional state properties that are used to uniquely qualify the lookup (nil if not required).
func NewAccessLevelCondition ¶ added in v4.1.0
func NewAccessLevelCondition(ctx *pulumi.Context, name string, args *AccessLevelConditionArgs, opts ...pulumi.ResourceOption) (*AccessLevelCondition, error)
NewAccessLevelCondition registers a new resource with the given unique name, arguments, and options.
func (*AccessLevelCondition) ElementType ¶ added in v4.4.0
func (*AccessLevelCondition) ElementType() reflect.Type
func (*AccessLevelCondition) ToAccessLevelConditionOutput ¶ added in v4.4.0
func (i *AccessLevelCondition) ToAccessLevelConditionOutput() AccessLevelConditionOutput
func (*AccessLevelCondition) ToAccessLevelConditionOutputWithContext ¶ added in v4.4.0
func (i *AccessLevelCondition) ToAccessLevelConditionOutputWithContext(ctx context.Context) AccessLevelConditionOutput
type AccessLevelConditionArgs ¶ added in v4.1.0
type AccessLevelConditionArgs struct {
// The name of the Access Level to add this condition to.
AccessLevel pulumi.StringInput
// Device specific restrictions, all restrictions must hold for
// the Condition to be true. If not specified, all devices are
// allowed.
// Structure is documented below.
DevicePolicy AccessLevelConditionDevicePolicyPtrInput
// A list of CIDR block IP subnetwork specification. May be IPv4
// or IPv6.
// Note that for a CIDR IP address block, the specified IP address
// portion must be properly truncated (i.e. all the host bits must
// be zero) or the input is considered malformed. For example,
// "192.0.2.0/24" is accepted but "192.0.2.1/24" is not. Similarly,
// for IPv6, "2001:db8::/32" is accepted whereas "2001:db8::1/32"
// is not. The originating IP of a request must be in one of the
// listed subnets in order for this Condition to be true.
// If empty, all IP addresses are allowed.
IpSubnetworks pulumi.StringArrayInput
// An allowed list of members (users, service accounts).
// Using groups is not supported yet.
// The signed-in user originating the request must be a part of one
// of the provided members. If not specified, a request may come
// from any user (logged in/not logged in, not present in any
// groups, etc.).
// Formats: `user:{emailid}`, `serviceAccount:{emailid}`
Members pulumi.StringArrayInput
// Whether to negate the Condition. If true, the Condition becomes
// a NAND over its non-empty fields, each field must be false for
// the Condition overall to be satisfied. Defaults to false.
Negate pulumi.BoolPtrInput
// The request must originate from one of the provided
// countries/regions.
// Format: A valid ISO 3166-1 alpha-2 code.
Regions pulumi.StringArrayInput
// A list of other access levels defined in the same Policy,
// referenced by resource name. Referencing an AccessLevel which
// does not exist is an error. All access levels listed must be
// granted for the Condition to be true.
// Format: accessPolicies/{policy_id}/accessLevels/{short_name}
RequiredAccessLevels pulumi.StringArrayInput
}
The set of arguments for constructing a AccessLevelCondition resource.
func (AccessLevelConditionArgs) ElementType ¶ added in v4.1.0
func (AccessLevelConditionArgs) ElementType() reflect.Type
type AccessLevelConditionDevicePolicy ¶ added in v4.1.0
type AccessLevelConditionDevicePolicy struct {
// A list of allowed device management levels.
// An empty list allows all management levels.
// Each value may be one of `MANAGEMENT_UNSPECIFIED`, `NONE`, `BASIC`, and `COMPLETE`.
AllowedDeviceManagementLevels []string `pulumi:"allowedDeviceManagementLevels"`
// A list of allowed encryptions statuses.
// An empty list allows all statuses.
// Each value may be one of `ENCRYPTION_UNSPECIFIED`, `ENCRYPTION_UNSUPPORTED`, `UNENCRYPTED`, and `ENCRYPTED`.
AllowedEncryptionStatuses []string `pulumi:"allowedEncryptionStatuses"`
// A list of allowed OS versions.
// An empty list allows all types and all versions.
// Structure is documented below.
OsConstraints []AccessLevelConditionDevicePolicyOsConstraint `pulumi:"osConstraints"`
// Whether the device needs to be approved by the customer admin.
RequireAdminApproval *bool `pulumi:"requireAdminApproval"`
// Whether the device needs to be corp owned.
RequireCorpOwned *bool `pulumi:"requireCorpOwned"`
// Whether or not screenlock is required for the DevicePolicy
// to be true. Defaults to false.
RequireScreenLock *bool `pulumi:"requireScreenLock"`
}
type AccessLevelConditionDevicePolicyArgs ¶ added in v4.1.0
type AccessLevelConditionDevicePolicyArgs struct {
// A list of allowed device management levels.
// An empty list allows all management levels.
// Each value may be one of `MANAGEMENT_UNSPECIFIED`, `NONE`, `BASIC`, and `COMPLETE`.
AllowedDeviceManagementLevels pulumi.StringArrayInput `pulumi:"allowedDeviceManagementLevels"`
// A list of allowed encryptions statuses.
// An empty list allows all statuses.
// Each value may be one of `ENCRYPTION_UNSPECIFIED`, `ENCRYPTION_UNSUPPORTED`, `UNENCRYPTED`, and `ENCRYPTED`.
AllowedEncryptionStatuses pulumi.StringArrayInput `pulumi:"allowedEncryptionStatuses"`
// A list of allowed OS versions.
// An empty list allows all types and all versions.
// Structure is documented below.
OsConstraints AccessLevelConditionDevicePolicyOsConstraintArrayInput `pulumi:"osConstraints"`
// Whether the device needs to be approved by the customer admin.
RequireAdminApproval pulumi.BoolPtrInput `pulumi:"requireAdminApproval"`
// Whether the device needs to be corp owned.
RequireCorpOwned pulumi.BoolPtrInput `pulumi:"requireCorpOwned"`
// Whether or not screenlock is required for the DevicePolicy
// to be true. Defaults to false.
RequireScreenLock pulumi.BoolPtrInput `pulumi:"requireScreenLock"`
}
func (AccessLevelConditionDevicePolicyArgs) ElementType ¶ added in v4.1.0
func (AccessLevelConditionDevicePolicyArgs) ElementType() reflect.Type
func (AccessLevelConditionDevicePolicyArgs) ToAccessLevelConditionDevicePolicyOutput ¶ added in v4.1.0
func (i AccessLevelConditionDevicePolicyArgs) ToAccessLevelConditionDevicePolicyOutput() AccessLevelConditionDevicePolicyOutput
func (AccessLevelConditionDevicePolicyArgs) ToAccessLevelConditionDevicePolicyOutputWithContext ¶ added in v4.1.0
func (i AccessLevelConditionDevicePolicyArgs) ToAccessLevelConditionDevicePolicyOutputWithContext(ctx context.Context) AccessLevelConditionDevicePolicyOutput
func (AccessLevelConditionDevicePolicyArgs) ToAccessLevelConditionDevicePolicyPtrOutput ¶ added in v4.1.0
func (i AccessLevelConditionDevicePolicyArgs) ToAccessLevelConditionDevicePolicyPtrOutput() AccessLevelConditionDevicePolicyPtrOutput
func (AccessLevelConditionDevicePolicyArgs) ToAccessLevelConditionDevicePolicyPtrOutputWithContext ¶ added in v4.1.0
func (i AccessLevelConditionDevicePolicyArgs) ToAccessLevelConditionDevicePolicyPtrOutputWithContext(ctx context.Context) AccessLevelConditionDevicePolicyPtrOutput
type AccessLevelConditionDevicePolicyInput ¶ added in v4.1.0
type AccessLevelConditionDevicePolicyInput interface {
pulumi.Input
ToAccessLevelConditionDevicePolicyOutput() AccessLevelConditionDevicePolicyOutput
ToAccessLevelConditionDevicePolicyOutputWithContext(context.Context) AccessLevelConditionDevicePolicyOutput
}
AccessLevelConditionDevicePolicyInput is an input type that accepts AccessLevelConditionDevicePolicyArgs and AccessLevelConditionDevicePolicyOutput values. You can construct a concrete instance of `AccessLevelConditionDevicePolicyInput` via:
AccessLevelConditionDevicePolicyArgs{...}
type AccessLevelConditionDevicePolicyOsConstraint ¶ added in v4.1.0
type AccessLevelConditionDevicePolicyOsConstraint struct {
// The minimum allowed OS version. If not set, any version
// of this OS satisfies the constraint.
// Format: "major.minor.patch" such as "10.5.301", "9.2.1".
MinimumVersion *string `pulumi:"minimumVersion"`
// The operating system type of the device.
// Possible values are `OS_UNSPECIFIED`, `DESKTOP_MAC`, `DESKTOP_WINDOWS`, `DESKTOP_LINUX`, and `DESKTOP_CHROME_OS`.
OsType string `pulumi:"osType"`
}
type AccessLevelConditionDevicePolicyOsConstraintArgs ¶ added in v4.1.0
type AccessLevelConditionDevicePolicyOsConstraintArgs struct {
// The minimum allowed OS version. If not set, any version
// of this OS satisfies the constraint.
// Format: "major.minor.patch" such as "10.5.301", "9.2.1".
MinimumVersion pulumi.StringPtrInput `pulumi:"minimumVersion"`
// The operating system type of the device.
// Possible values are `OS_UNSPECIFIED`, `DESKTOP_MAC`, `DESKTOP_WINDOWS`, `DESKTOP_LINUX`, and `DESKTOP_CHROME_OS`.
OsType pulumi.StringInput `pulumi:"osType"`
}
func (AccessLevelConditionDevicePolicyOsConstraintArgs) ElementType ¶ added in v4.1.0
func (AccessLevelConditionDevicePolicyOsConstraintArgs) ElementType() reflect.Type
func (AccessLevelConditionDevicePolicyOsConstraintArgs) ToAccessLevelConditionDevicePolicyOsConstraintOutput ¶ added in v4.1.0
func (i AccessLevelConditionDevicePolicyOsConstraintArgs) ToAccessLevelConditionDevicePolicyOsConstraintOutput() AccessLevelConditionDevicePolicyOsConstraintOutput
func (AccessLevelConditionDevicePolicyOsConstraintArgs) ToAccessLevelConditionDevicePolicyOsConstraintOutputWithContext ¶ added in v4.1.0
func (i AccessLevelConditionDevicePolicyOsConstraintArgs) ToAccessLevelConditionDevicePolicyOsConstraintOutputWithContext(ctx context.Context) AccessLevelConditionDevicePolicyOsConstraintOutput
type AccessLevelConditionDevicePolicyOsConstraintArray ¶ added in v4.1.0
type AccessLevelConditionDevicePolicyOsConstraintArray []AccessLevelConditionDevicePolicyOsConstraintInput
func (AccessLevelConditionDevicePolicyOsConstraintArray) ElementType ¶ added in v4.1.0
func (AccessLevelConditionDevicePolicyOsConstraintArray) ElementType() reflect.Type
func (AccessLevelConditionDevicePolicyOsConstraintArray) ToAccessLevelConditionDevicePolicyOsConstraintArrayOutput ¶ added in v4.1.0
func (i AccessLevelConditionDevicePolicyOsConstraintArray) ToAccessLevelConditionDevicePolicyOsConstraintArrayOutput() AccessLevelConditionDevicePolicyOsConstraintArrayOutput
func (AccessLevelConditionDevicePolicyOsConstraintArray) ToAccessLevelConditionDevicePolicyOsConstraintArrayOutputWithContext ¶ added in v4.1.0
func (i AccessLevelConditionDevicePolicyOsConstraintArray) ToAccessLevelConditionDevicePolicyOsConstraintArrayOutputWithContext(ctx context.Context) AccessLevelConditionDevicePolicyOsConstraintArrayOutput
type AccessLevelConditionDevicePolicyOsConstraintArrayInput ¶ added in v4.1.0
type AccessLevelConditionDevicePolicyOsConstraintArrayInput interface {
pulumi.Input
ToAccessLevelConditionDevicePolicyOsConstraintArrayOutput() AccessLevelConditionDevicePolicyOsConstraintArrayOutput
ToAccessLevelConditionDevicePolicyOsConstraintArrayOutputWithContext(context.Context) AccessLevelConditionDevicePolicyOsConstraintArrayOutput
}
AccessLevelConditionDevicePolicyOsConstraintArrayInput is an input type that accepts AccessLevelConditionDevicePolicyOsConstraintArray and AccessLevelConditionDevicePolicyOsConstraintArrayOutput values. You can construct a concrete instance of `AccessLevelConditionDevicePolicyOsConstraintArrayInput` via:
AccessLevelConditionDevicePolicyOsConstraintArray{ AccessLevelConditionDevicePolicyOsConstraintArgs{...} }
type AccessLevelConditionDevicePolicyOsConstraintArrayOutput ¶ added in v4.1.0
type AccessLevelConditionDevicePolicyOsConstraintArrayOutput struct{ *pulumi.OutputState }
func (AccessLevelConditionDevicePolicyOsConstraintArrayOutput) ElementType ¶ added in v4.1.0
func (AccessLevelConditionDevicePolicyOsConstraintArrayOutput) ElementType() reflect.Type
func (AccessLevelConditionDevicePolicyOsConstraintArrayOutput) ToAccessLevelConditionDevicePolicyOsConstraintArrayOutput ¶ added in v4.1.0
func (o AccessLevelConditionDevicePolicyOsConstraintArrayOutput) ToAccessLevelConditionDevicePolicyOsConstraintArrayOutput() AccessLevelConditionDevicePolicyOsConstraintArrayOutput
func (AccessLevelConditionDevicePolicyOsConstraintArrayOutput) ToAccessLevelConditionDevicePolicyOsConstraintArrayOutputWithContext ¶ added in v4.1.0
func (o AccessLevelConditionDevicePolicyOsConstraintArrayOutput) ToAccessLevelConditionDevicePolicyOsConstraintArrayOutputWithContext(ctx context.Context) AccessLevelConditionDevicePolicyOsConstraintArrayOutput
type AccessLevelConditionDevicePolicyOsConstraintInput ¶ added in v4.1.0
type AccessLevelConditionDevicePolicyOsConstraintInput interface {
pulumi.Input
ToAccessLevelConditionDevicePolicyOsConstraintOutput() AccessLevelConditionDevicePolicyOsConstraintOutput
ToAccessLevelConditionDevicePolicyOsConstraintOutputWithContext(context.Context) AccessLevelConditionDevicePolicyOsConstraintOutput
}
AccessLevelConditionDevicePolicyOsConstraintInput is an input type that accepts AccessLevelConditionDevicePolicyOsConstraintArgs and AccessLevelConditionDevicePolicyOsConstraintOutput values. You can construct a concrete instance of `AccessLevelConditionDevicePolicyOsConstraintInput` via:
AccessLevelConditionDevicePolicyOsConstraintArgs{...}
type AccessLevelConditionDevicePolicyOsConstraintOutput ¶ added in v4.1.0
type AccessLevelConditionDevicePolicyOsConstraintOutput struct{ *pulumi.OutputState }
func (AccessLevelConditionDevicePolicyOsConstraintOutput) ElementType ¶ added in v4.1.0
func (AccessLevelConditionDevicePolicyOsConstraintOutput) ElementType() reflect.Type
func (AccessLevelConditionDevicePolicyOsConstraintOutput) MinimumVersion ¶ added in v4.1.0
func (o AccessLevelConditionDevicePolicyOsConstraintOutput) MinimumVersion() pulumi.StringPtrOutput
The minimum allowed OS version. If not set, any version of this OS satisfies the constraint. Format: "major.minor.patch" such as "10.5.301", "9.2.1".
func (AccessLevelConditionDevicePolicyOsConstraintOutput) OsType ¶ added in v4.1.0
func (o AccessLevelConditionDevicePolicyOsConstraintOutput) OsType() pulumi.StringOutput
The operating system type of the device. Possible values are `OS_UNSPECIFIED`, `DESKTOP_MAC`, `DESKTOP_WINDOWS`, `DESKTOP_LINUX`, and `DESKTOP_CHROME_OS`.
func (AccessLevelConditionDevicePolicyOsConstraintOutput) ToAccessLevelConditionDevicePolicyOsConstraintOutput ¶ added in v4.1.0
func (o AccessLevelConditionDevicePolicyOsConstraintOutput) ToAccessLevelConditionDevicePolicyOsConstraintOutput() AccessLevelConditionDevicePolicyOsConstraintOutput
func (AccessLevelConditionDevicePolicyOsConstraintOutput) ToAccessLevelConditionDevicePolicyOsConstraintOutputWithContext ¶ added in v4.1.0
func (o AccessLevelConditionDevicePolicyOsConstraintOutput) ToAccessLevelConditionDevicePolicyOsConstraintOutputWithContext(ctx context.Context) AccessLevelConditionDevicePolicyOsConstraintOutput
type AccessLevelConditionDevicePolicyOutput ¶ added in v4.1.0
type AccessLevelConditionDevicePolicyOutput struct{ *pulumi.OutputState }
func (AccessLevelConditionDevicePolicyOutput) AllowedDeviceManagementLevels ¶ added in v4.1.0
func (o AccessLevelConditionDevicePolicyOutput) AllowedDeviceManagementLevels() pulumi.StringArrayOutput
A list of allowed device management levels. An empty list allows all management levels. Each value may be one of `MANAGEMENT_UNSPECIFIED`, `NONE`, `BASIC`, and `COMPLETE`.
func (AccessLevelConditionDevicePolicyOutput) AllowedEncryptionStatuses ¶ added in v4.1.0
func (o AccessLevelConditionDevicePolicyOutput) AllowedEncryptionStatuses() pulumi.StringArrayOutput
A list of allowed encryptions statuses. An empty list allows all statuses. Each value may be one of `ENCRYPTION_UNSPECIFIED`, `ENCRYPTION_UNSUPPORTED`, `UNENCRYPTED`, and `ENCRYPTED`.
func (AccessLevelConditionDevicePolicyOutput) ElementType ¶ added in v4.1.0
func (AccessLevelConditionDevicePolicyOutput) ElementType() reflect.Type
func (AccessLevelConditionDevicePolicyOutput) OsConstraints ¶ added in v4.1.0
func (o AccessLevelConditionDevicePolicyOutput) OsConstraints() AccessLevelConditionDevicePolicyOsConstraintArrayOutput
A list of allowed OS versions. An empty list allows all types and all versions. Structure is documented below.
func (AccessLevelConditionDevicePolicyOutput) RequireAdminApproval ¶ added in v4.1.0
func (o AccessLevelConditionDevicePolicyOutput) RequireAdminApproval() pulumi.BoolPtrOutput
Whether the device needs to be approved by the customer admin.
func (AccessLevelConditionDevicePolicyOutput) RequireCorpOwned ¶ added in v4.1.0
func (o AccessLevelConditionDevicePolicyOutput) RequireCorpOwned() pulumi.BoolPtrOutput
Whether the device needs to be corp owned.
func (AccessLevelConditionDevicePolicyOutput) RequireScreenLock ¶ added in v4.1.0
func (o AccessLevelConditionDevicePolicyOutput) RequireScreenLock() pulumi.BoolPtrOutput
Whether or not screenlock is required for the DevicePolicy to be true. Defaults to false.
func (AccessLevelConditionDevicePolicyOutput) ToAccessLevelConditionDevicePolicyOutput ¶ added in v4.1.0
func (o AccessLevelConditionDevicePolicyOutput) ToAccessLevelConditionDevicePolicyOutput() AccessLevelConditionDevicePolicyOutput
func (AccessLevelConditionDevicePolicyOutput) ToAccessLevelConditionDevicePolicyOutputWithContext ¶ added in v4.1.0
func (o AccessLevelConditionDevicePolicyOutput) ToAccessLevelConditionDevicePolicyOutputWithContext(ctx context.Context) AccessLevelConditionDevicePolicyOutput
func (AccessLevelConditionDevicePolicyOutput) ToAccessLevelConditionDevicePolicyPtrOutput ¶ added in v4.1.0
func (o AccessLevelConditionDevicePolicyOutput) ToAccessLevelConditionDevicePolicyPtrOutput() AccessLevelConditionDevicePolicyPtrOutput
func (AccessLevelConditionDevicePolicyOutput) ToAccessLevelConditionDevicePolicyPtrOutputWithContext ¶ added in v4.1.0
func (o AccessLevelConditionDevicePolicyOutput) ToAccessLevelConditionDevicePolicyPtrOutputWithContext(ctx context.Context) AccessLevelConditionDevicePolicyPtrOutput
type AccessLevelConditionDevicePolicyPtrInput ¶ added in v4.1.0
type AccessLevelConditionDevicePolicyPtrInput interface {
pulumi.Input
ToAccessLevelConditionDevicePolicyPtrOutput() AccessLevelConditionDevicePolicyPtrOutput
ToAccessLevelConditionDevicePolicyPtrOutputWithContext(context.Context) AccessLevelConditionDevicePolicyPtrOutput
}
AccessLevelConditionDevicePolicyPtrInput is an input type that accepts AccessLevelConditionDevicePolicyArgs, AccessLevelConditionDevicePolicyPtr and AccessLevelConditionDevicePolicyPtrOutput values. You can construct a concrete instance of `AccessLevelConditionDevicePolicyPtrInput` via:
AccessLevelConditionDevicePolicyArgs{...}
or:
nil
func AccessLevelConditionDevicePolicyPtr ¶ added in v4.1.0
func AccessLevelConditionDevicePolicyPtr(v *AccessLevelConditionDevicePolicyArgs) AccessLevelConditionDevicePolicyPtrInput
type AccessLevelConditionDevicePolicyPtrOutput ¶ added in v4.1.0
type AccessLevelConditionDevicePolicyPtrOutput struct{ *pulumi.OutputState }
func (AccessLevelConditionDevicePolicyPtrOutput) AllowedDeviceManagementLevels ¶ added in v4.1.0
func (o AccessLevelConditionDevicePolicyPtrOutput) AllowedDeviceManagementLevels() pulumi.StringArrayOutput
A list of allowed device management levels. An empty list allows all management levels. Each value may be one of `MANAGEMENT_UNSPECIFIED`, `NONE`, `BASIC`, and `COMPLETE`.
func (AccessLevelConditionDevicePolicyPtrOutput) AllowedEncryptionStatuses ¶ added in v4.1.0
func (o AccessLevelConditionDevicePolicyPtrOutput) AllowedEncryptionStatuses() pulumi.StringArrayOutput
A list of allowed encryptions statuses. An empty list allows all statuses. Each value may be one of `ENCRYPTION_UNSPECIFIED`, `ENCRYPTION_UNSUPPORTED`, `UNENCRYPTED`, and `ENCRYPTED`.
func (AccessLevelConditionDevicePolicyPtrOutput) ElementType ¶ added in v4.1.0
func (AccessLevelConditionDevicePolicyPtrOutput) ElementType() reflect.Type
func (AccessLevelConditionDevicePolicyPtrOutput) OsConstraints ¶ added in v4.1.0
func (o AccessLevelConditionDevicePolicyPtrOutput) OsConstraints() AccessLevelConditionDevicePolicyOsConstraintArrayOutput
A list of allowed OS versions. An empty list allows all types and all versions. Structure is documented below.
func (AccessLevelConditionDevicePolicyPtrOutput) RequireAdminApproval ¶ added in v4.1.0
func (o AccessLevelConditionDevicePolicyPtrOutput) RequireAdminApproval() pulumi.BoolPtrOutput
Whether the device needs to be approved by the customer admin.
func (AccessLevelConditionDevicePolicyPtrOutput) RequireCorpOwned ¶ added in v4.1.0
func (o AccessLevelConditionDevicePolicyPtrOutput) RequireCorpOwned() pulumi.BoolPtrOutput
Whether the device needs to be corp owned.
func (AccessLevelConditionDevicePolicyPtrOutput) RequireScreenLock ¶ added in v4.1.0
func (o AccessLevelConditionDevicePolicyPtrOutput) RequireScreenLock() pulumi.BoolPtrOutput
Whether or not screenlock is required for the DevicePolicy to be true. Defaults to false.
func (AccessLevelConditionDevicePolicyPtrOutput) ToAccessLevelConditionDevicePolicyPtrOutput ¶ added in v4.1.0
func (o AccessLevelConditionDevicePolicyPtrOutput) ToAccessLevelConditionDevicePolicyPtrOutput() AccessLevelConditionDevicePolicyPtrOutput
func (AccessLevelConditionDevicePolicyPtrOutput) ToAccessLevelConditionDevicePolicyPtrOutputWithContext ¶ added in v4.1.0
func (o AccessLevelConditionDevicePolicyPtrOutput) ToAccessLevelConditionDevicePolicyPtrOutputWithContext(ctx context.Context) AccessLevelConditionDevicePolicyPtrOutput
type AccessLevelConditionInput ¶ added in v4.4.0
type AccessLevelConditionInput interface {
pulumi.Input
ToAccessLevelConditionOutput() AccessLevelConditionOutput
ToAccessLevelConditionOutputWithContext(ctx context.Context) AccessLevelConditionOutput
}
type AccessLevelConditionOutput ¶ added in v4.4.0
type AccessLevelConditionOutput struct {
*pulumi.OutputState
}
func (AccessLevelConditionOutput) ElementType ¶ added in v4.4.0
func (AccessLevelConditionOutput) ElementType() reflect.Type
func (AccessLevelConditionOutput) ToAccessLevelConditionOutput ¶ added in v4.4.0
func (o AccessLevelConditionOutput) ToAccessLevelConditionOutput() AccessLevelConditionOutput
func (AccessLevelConditionOutput) ToAccessLevelConditionOutputWithContext ¶ added in v4.4.0
func (o AccessLevelConditionOutput) ToAccessLevelConditionOutputWithContext(ctx context.Context) AccessLevelConditionOutput
type AccessLevelConditionState ¶ added in v4.1.0
type AccessLevelConditionState struct {
// The name of the Access Level to add this condition to.
AccessLevel pulumi.StringPtrInput
// Device specific restrictions, all restrictions must hold for
// the Condition to be true. If not specified, all devices are
// allowed.
// Structure is documented below.
DevicePolicy AccessLevelConditionDevicePolicyPtrInput
// A list of CIDR block IP subnetwork specification. May be IPv4
// or IPv6.
// Note that for a CIDR IP address block, the specified IP address
// portion must be properly truncated (i.e. all the host bits must
// be zero) or the input is considered malformed. For example,
// "192.0.2.0/24" is accepted but "192.0.2.1/24" is not. Similarly,
// for IPv6, "2001:db8::/32" is accepted whereas "2001:db8::1/32"
// is not. The originating IP of a request must be in one of the
// listed subnets in order for this Condition to be true.
// If empty, all IP addresses are allowed.
IpSubnetworks pulumi.StringArrayInput
// An allowed list of members (users, service accounts).
// Using groups is not supported yet.
// The signed-in user originating the request must be a part of one
// of the provided members. If not specified, a request may come
// from any user (logged in/not logged in, not present in any
// groups, etc.).
// Formats: `user:{emailid}`, `serviceAccount:{emailid}`
Members pulumi.StringArrayInput
// Whether to negate the Condition. If true, the Condition becomes
// a NAND over its non-empty fields, each field must be false for
// the Condition overall to be satisfied. Defaults to false.
Negate pulumi.BoolPtrInput
// The request must originate from one of the provided
// countries/regions.
// Format: A valid ISO 3166-1 alpha-2 code.
Regions pulumi.StringArrayInput
// A list of other access levels defined in the same Policy,
// referenced by resource name. Referencing an AccessLevel which
// does not exist is an error. All access levels listed must be
// granted for the Condition to be true.
// Format: accessPolicies/{policy_id}/accessLevels/{short_name}
RequiredAccessLevels pulumi.StringArrayInput
}
func (AccessLevelConditionState) ElementType ¶ added in v4.1.0
func (AccessLevelConditionState) ElementType() reflect.Type
type AccessLevelCustom ¶
type AccessLevelCustom struct {
// Represents a textual expression in the Common Expression Language (CEL) syntax. CEL is a C-like expression language.
// This page details the objects and attributes that are used to the build the CEL expressions for
// custom access levels - https://cloud.google.com/access-context-manager/docs/custom-access-level-spec.
// Structure is documented below.
Expr AccessLevelCustomExpr `pulumi:"expr"`
}
type AccessLevelCustomArgs ¶
type AccessLevelCustomArgs struct {
// Represents a textual expression in the Common Expression Language (CEL) syntax. CEL is a C-like expression language.
// This page details the objects and attributes that are used to the build the CEL expressions for
// custom access levels - https://cloud.google.com/access-context-manager/docs/custom-access-level-spec.
// Structure is documented below.
Expr AccessLevelCustomExprInput `pulumi:"expr"`
}
func (AccessLevelCustomArgs) ElementType ¶
func (AccessLevelCustomArgs) ElementType() reflect.Type
func (AccessLevelCustomArgs) ToAccessLevelCustomOutput ¶
func (i AccessLevelCustomArgs) ToAccessLevelCustomOutput() AccessLevelCustomOutput
func (AccessLevelCustomArgs) ToAccessLevelCustomOutputWithContext ¶
func (i AccessLevelCustomArgs) ToAccessLevelCustomOutputWithContext(ctx context.Context) AccessLevelCustomOutput
func (AccessLevelCustomArgs) ToAccessLevelCustomPtrOutput ¶
func (i AccessLevelCustomArgs) ToAccessLevelCustomPtrOutput() AccessLevelCustomPtrOutput
func (AccessLevelCustomArgs) ToAccessLevelCustomPtrOutputWithContext ¶
func (i AccessLevelCustomArgs) ToAccessLevelCustomPtrOutputWithContext(ctx context.Context) AccessLevelCustomPtrOutput
type AccessLevelCustomExpr ¶
type AccessLevelCustomExpr struct {
// Description of the expression
Description *string `pulumi:"description"`
// Textual representation of an expression in Common Expression Language syntax.
Expression string `pulumi:"expression"`
// String indicating the location of the expression for error reporting, e.g. a file name and a position in the file
Location *string `pulumi:"location"`
// Title for the expression, i.e. a short string describing its purpose.
Title *string `pulumi:"title"`
}
type AccessLevelCustomExprArgs ¶
type AccessLevelCustomExprArgs struct {
// Description of the expression
Description pulumi.StringPtrInput `pulumi:"description"`
// Textual representation of an expression in Common Expression Language syntax.
Expression pulumi.StringInput `pulumi:"expression"`
// String indicating the location of the expression for error reporting, e.g. a file name and a position in the file
Location pulumi.StringPtrInput `pulumi:"location"`
// Title for the expression, i.e. a short string describing its purpose.
Title pulumi.StringPtrInput `pulumi:"title"`
}
func (AccessLevelCustomExprArgs) ElementType ¶
func (AccessLevelCustomExprArgs) ElementType() reflect.Type
func (AccessLevelCustomExprArgs) ToAccessLevelCustomExprOutput ¶
func (i AccessLevelCustomExprArgs) ToAccessLevelCustomExprOutput() AccessLevelCustomExprOutput
func (AccessLevelCustomExprArgs) ToAccessLevelCustomExprOutputWithContext ¶
func (i AccessLevelCustomExprArgs) ToAccessLevelCustomExprOutputWithContext(ctx context.Context) AccessLevelCustomExprOutput
func (AccessLevelCustomExprArgs) ToAccessLevelCustomExprPtrOutput ¶
func (i AccessLevelCustomExprArgs) ToAccessLevelCustomExprPtrOutput() AccessLevelCustomExprPtrOutput
func (AccessLevelCustomExprArgs) ToAccessLevelCustomExprPtrOutputWithContext ¶
func (i AccessLevelCustomExprArgs) ToAccessLevelCustomExprPtrOutputWithContext(ctx context.Context) AccessLevelCustomExprPtrOutput
type AccessLevelCustomExprInput ¶
type AccessLevelCustomExprInput interface {
pulumi.Input
ToAccessLevelCustomExprOutput() AccessLevelCustomExprOutput
ToAccessLevelCustomExprOutputWithContext(context.Context) AccessLevelCustomExprOutput
}
AccessLevelCustomExprInput is an input type that accepts AccessLevelCustomExprArgs and AccessLevelCustomExprOutput values. You can construct a concrete instance of `AccessLevelCustomExprInput` via:
AccessLevelCustomExprArgs{...}
type AccessLevelCustomExprOutput ¶
type AccessLevelCustomExprOutput struct{ *pulumi.OutputState }
func (AccessLevelCustomExprOutput) Description ¶
func (o AccessLevelCustomExprOutput) Description() pulumi.StringPtrOutput
Description of the expression
func (AccessLevelCustomExprOutput) ElementType ¶
func (AccessLevelCustomExprOutput) ElementType() reflect.Type
func (AccessLevelCustomExprOutput) Expression ¶
func (o AccessLevelCustomExprOutput) Expression() pulumi.StringOutput
Textual representation of an expression in Common Expression Language syntax.
func (AccessLevelCustomExprOutput) Location ¶
func (o AccessLevelCustomExprOutput) Location() pulumi.StringPtrOutput
String indicating the location of the expression for error reporting, e.g. a file name and a position in the file
func (AccessLevelCustomExprOutput) Title ¶
func (o AccessLevelCustomExprOutput) Title() pulumi.StringPtrOutput
Title for the expression, i.e. a short string describing its purpose.
func (AccessLevelCustomExprOutput) ToAccessLevelCustomExprOutput ¶
func (o AccessLevelCustomExprOutput) ToAccessLevelCustomExprOutput() AccessLevelCustomExprOutput
func (AccessLevelCustomExprOutput) ToAccessLevelCustomExprOutputWithContext ¶
func (o AccessLevelCustomExprOutput) ToAccessLevelCustomExprOutputWithContext(ctx context.Context) AccessLevelCustomExprOutput
func (AccessLevelCustomExprOutput) ToAccessLevelCustomExprPtrOutput ¶
func (o AccessLevelCustomExprOutput) ToAccessLevelCustomExprPtrOutput() AccessLevelCustomExprPtrOutput
func (AccessLevelCustomExprOutput) ToAccessLevelCustomExprPtrOutputWithContext ¶
func (o AccessLevelCustomExprOutput) ToAccessLevelCustomExprPtrOutputWithContext(ctx context.Context) AccessLevelCustomExprPtrOutput
type AccessLevelCustomExprPtrInput ¶
type AccessLevelCustomExprPtrInput interface {
pulumi.Input
ToAccessLevelCustomExprPtrOutput() AccessLevelCustomExprPtrOutput
ToAccessLevelCustomExprPtrOutputWithContext(context.Context) AccessLevelCustomExprPtrOutput
}
AccessLevelCustomExprPtrInput is an input type that accepts AccessLevelCustomExprArgs, AccessLevelCustomExprPtr and AccessLevelCustomExprPtrOutput values. You can construct a concrete instance of `AccessLevelCustomExprPtrInput` via:
AccessLevelCustomExprArgs{...}
or:
nil
func AccessLevelCustomExprPtr ¶
func AccessLevelCustomExprPtr(v *AccessLevelCustomExprArgs) AccessLevelCustomExprPtrInput
type AccessLevelCustomExprPtrOutput ¶
type AccessLevelCustomExprPtrOutput struct{ *pulumi.OutputState }
func (AccessLevelCustomExprPtrOutput) Description ¶
func (o AccessLevelCustomExprPtrOutput) Description() pulumi.StringPtrOutput
Description of the expression
func (AccessLevelCustomExprPtrOutput) Elem ¶
func (o AccessLevelCustomExprPtrOutput) Elem() AccessLevelCustomExprOutput
func (AccessLevelCustomExprPtrOutput) ElementType ¶
func (AccessLevelCustomExprPtrOutput) ElementType() reflect.Type
func (AccessLevelCustomExprPtrOutput) Expression ¶
func (o AccessLevelCustomExprPtrOutput) Expression() pulumi.StringPtrOutput
Textual representation of an expression in Common Expression Language syntax.
func (AccessLevelCustomExprPtrOutput) Location ¶
func (o AccessLevelCustomExprPtrOutput) Location() pulumi.StringPtrOutput
String indicating the location of the expression for error reporting, e.g. a file name and a position in the file
func (AccessLevelCustomExprPtrOutput) Title ¶
func (o AccessLevelCustomExprPtrOutput) Title() pulumi.StringPtrOutput
Title for the expression, i.e. a short string describing its purpose.
func (AccessLevelCustomExprPtrOutput) ToAccessLevelCustomExprPtrOutput ¶
func (o AccessLevelCustomExprPtrOutput) ToAccessLevelCustomExprPtrOutput() AccessLevelCustomExprPtrOutput
func (AccessLevelCustomExprPtrOutput) ToAccessLevelCustomExprPtrOutputWithContext ¶
func (o AccessLevelCustomExprPtrOutput) ToAccessLevelCustomExprPtrOutputWithContext(ctx context.Context) AccessLevelCustomExprPtrOutput
type AccessLevelCustomInput ¶
type AccessLevelCustomInput interface {
pulumi.Input
ToAccessLevelCustomOutput() AccessLevelCustomOutput
ToAccessLevelCustomOutputWithContext(context.Context) AccessLevelCustomOutput
}
AccessLevelCustomInput is an input type that accepts AccessLevelCustomArgs and AccessLevelCustomOutput values. You can construct a concrete instance of `AccessLevelCustomInput` via:
AccessLevelCustomArgs{...}
type AccessLevelCustomOutput ¶
type AccessLevelCustomOutput struct{ *pulumi.OutputState }
func (AccessLevelCustomOutput) ElementType ¶
func (AccessLevelCustomOutput) ElementType() reflect.Type
func (AccessLevelCustomOutput) Expr ¶
func (o AccessLevelCustomOutput) Expr() AccessLevelCustomExprOutput
Represents a textual expression in the Common Expression Language (CEL) syntax. CEL is a C-like expression language. This page details the objects and attributes that are used to the build the CEL expressions for custom access levels - https://cloud.google.com/access-context-manager/docs/custom-access-level-spec. Structure is documented below.
func (AccessLevelCustomOutput) ToAccessLevelCustomOutput ¶
func (o AccessLevelCustomOutput) ToAccessLevelCustomOutput() AccessLevelCustomOutput
func (AccessLevelCustomOutput) ToAccessLevelCustomOutputWithContext ¶
func (o AccessLevelCustomOutput) ToAccessLevelCustomOutputWithContext(ctx context.Context) AccessLevelCustomOutput
func (AccessLevelCustomOutput) ToAccessLevelCustomPtrOutput ¶
func (o AccessLevelCustomOutput) ToAccessLevelCustomPtrOutput() AccessLevelCustomPtrOutput
func (AccessLevelCustomOutput) ToAccessLevelCustomPtrOutputWithContext ¶
func (o AccessLevelCustomOutput) ToAccessLevelCustomPtrOutputWithContext(ctx context.Context) AccessLevelCustomPtrOutput
type AccessLevelCustomPtrInput ¶
type AccessLevelCustomPtrInput interface {
pulumi.Input
ToAccessLevelCustomPtrOutput() AccessLevelCustomPtrOutput
ToAccessLevelCustomPtrOutputWithContext(context.Context) AccessLevelCustomPtrOutput
}
AccessLevelCustomPtrInput is an input type that accepts AccessLevelCustomArgs, AccessLevelCustomPtr and AccessLevelCustomPtrOutput values. You can construct a concrete instance of `AccessLevelCustomPtrInput` via:
AccessLevelCustomArgs{...}
or:
nil
func AccessLevelCustomPtr ¶
func AccessLevelCustomPtr(v *AccessLevelCustomArgs) AccessLevelCustomPtrInput
type AccessLevelCustomPtrOutput ¶
type AccessLevelCustomPtrOutput struct{ *pulumi.OutputState }
func (AccessLevelCustomPtrOutput) Elem ¶
func (o AccessLevelCustomPtrOutput) Elem() AccessLevelCustomOutput
func (AccessLevelCustomPtrOutput) ElementType ¶
func (AccessLevelCustomPtrOutput) ElementType() reflect.Type
func (AccessLevelCustomPtrOutput) Expr ¶
func (o AccessLevelCustomPtrOutput) Expr() AccessLevelCustomExprPtrOutput
Represents a textual expression in the Common Expression Language (CEL) syntax. CEL is a C-like expression language. This page details the objects and attributes that are used to the build the CEL expressions for custom access levels - https://cloud.google.com/access-context-manager/docs/custom-access-level-spec. Structure is documented below.
func (AccessLevelCustomPtrOutput) ToAccessLevelCustomPtrOutput ¶
func (o AccessLevelCustomPtrOutput) ToAccessLevelCustomPtrOutput() AccessLevelCustomPtrOutput
func (AccessLevelCustomPtrOutput) ToAccessLevelCustomPtrOutputWithContext ¶
func (o AccessLevelCustomPtrOutput) ToAccessLevelCustomPtrOutputWithContext(ctx context.Context) AccessLevelCustomPtrOutput
type AccessLevelInput ¶ added in v4.4.0
type AccessLevelInput interface {
pulumi.Input
ToAccessLevelOutput() AccessLevelOutput
ToAccessLevelOutputWithContext(ctx context.Context) AccessLevelOutput
}
type AccessLevelOutput ¶ added in v4.4.0
type AccessLevelOutput struct {
*pulumi.OutputState
}
func (AccessLevelOutput) ElementType ¶ added in v4.4.0
func (AccessLevelOutput) ElementType() reflect.Type
func (AccessLevelOutput) ToAccessLevelOutput ¶ added in v4.4.0
func (o AccessLevelOutput) ToAccessLevelOutput() AccessLevelOutput
func (AccessLevelOutput) ToAccessLevelOutputWithContext ¶ added in v4.4.0
func (o AccessLevelOutput) ToAccessLevelOutputWithContext(ctx context.Context) AccessLevelOutput
type AccessLevelState ¶
type AccessLevelState struct {
// A set of predefined conditions for the access level and a combining function.
// Structure is documented below.
Basic AccessLevelBasicPtrInput
// Custom access level conditions are set using the Cloud Common Expression Language to represent the necessary conditions for the level to apply to a request.
// See CEL spec at: https://github.com/google/cel-spec.
// Structure is documented below.
Custom AccessLevelCustomPtrInput
// Description of the expression
Description pulumi.StringPtrInput
// Resource name for the Access Level. The shortName component must begin
// with a letter and only include alphanumeric and '_'.
// Format: accessPolicies/{policy_id}/accessLevels/{short_name}
Name pulumi.StringPtrInput
// The AccessPolicy this AccessLevel lives in.
// Format: accessPolicies/{policy_id}
Parent pulumi.StringPtrInput
// Title for the expression, i.e. a short string describing its purpose.
Title pulumi.StringPtrInput
}
func (AccessLevelState) ElementType ¶
func (AccessLevelState) ElementType() reflect.Type
type AccessLevels ¶
type AccessLevels struct {
pulumi.CustomResourceState
// The desired Access Levels that should replace all existing Access Levels in the Access Policy.
// Structure is documented below.
AccessLevels AccessLevelsAccessLevelArrayOutput `pulumi:"accessLevels"`
// The AccessPolicy this AccessLevel lives in.
// Format: accessPolicies/{policy_id}
Parent pulumi.StringOutput `pulumi:"parent"`
}
Replace all existing Access Levels in an Access Policy with the Access Levels provided. This is done atomically. This is a bulk edit of all Access Levels and may override existing Access Levels created by `accesscontextmanager.AccessLevel`, thus causing a permadiff if used alongside `accesscontextmanager.AccessLevel` on the same parent.
To get more information about AccessLevels, see:
* [API documentation](https://cloud.google.com/access-context-manager/docs/reference/rest/v1/accessPolicies.accessLevels) * How-to Guides
- [Access Policy Quickstart](https://cloud.google.com/access-context-manager/docs/quickstart)
## Example Usage ### Access Context Manager Access Levels Basic
```go package main
import (
"fmt" "github.com/pulumi/pulumi-gcp/sdk/v4/go/gcp/accesscontextmanager" "github.com/pulumi/pulumi/sdk/v2/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
_, err := accesscontextmanager.NewAccessPolicy(ctx, "access_policy", &accesscontextmanager.AccessPolicyArgs{
Parent: pulumi.String("organizations/123456789"),
Title: pulumi.String("my policy"),
})
if err != nil {
return err
}
_, err = accesscontextmanager.NewAccessLevels(ctx, "access_levels", &accesscontextmanager.AccessLevelsArgs{
AccessLevels: accesscontextmanager.AccessLevelsAccessLevelArray{
&accesscontextmanager.AccessLevelsAccessLevelArgs{
Basic: &accesscontextmanager.AccessLevelsAccessLevelBasicArgs{
Conditions: accesscontextmanager.AccessLevelsAccessLevelBasicConditionArray{
&accesscontextmanager.AccessLevelsAccessLevelBasicConditionArgs{
DevicePolicy: &accesscontextmanager.AccessLevelsAccessLevelBasicConditionDevicePolicyArgs{
OsConstraints: accesscontextmanager.AccessLevelsAccessLevelBasicConditionDevicePolicyOsConstraintArray{
&accesscontextmanager.AccessLevelsAccessLevelBasicConditionDevicePolicyOsConstraintArgs{
OsType: pulumi.String("DESKTOP_CHROME_OS"),
},
},
RequireScreenLock: pulumi.Bool(true),
},
Regions: pulumi.StringArray{
pulumi.String("CH"),
pulumi.String("IT"),
pulumi.String("US"),
},
},
},
},
Name: access_policy.Name.ApplyT(func(name string) (string, error) {
return fmt.Sprintf("%v%v%v", "accessPolicies/", name, "/accessLevels/chromeos_no_lock"), nil
}).(pulumi.StringOutput),
Title: pulumi.String("chromeos_no_lock"),
},
&accesscontextmanager.AccessLevelsAccessLevelArgs{
Basic: &accesscontextmanager.AccessLevelsAccessLevelBasicArgs{
Conditions: accesscontextmanager.AccessLevelsAccessLevelBasicConditionArray{
&accesscontextmanager.AccessLevelsAccessLevelBasicConditionArgs{
DevicePolicy: &accesscontextmanager.AccessLevelsAccessLevelBasicConditionDevicePolicyArgs{
OsConstraints: accesscontextmanager.AccessLevelsAccessLevelBasicConditionDevicePolicyOsConstraintArray{
&accesscontextmanager.AccessLevelsAccessLevelBasicConditionDevicePolicyOsConstraintArgs{
OsType: pulumi.String("DESKTOP_MAC"),
},
},
RequireScreenLock: pulumi.Bool(true),
},
Regions: pulumi.StringArray{
pulumi.String("CH"),
pulumi.String("IT"),
pulumi.String("US"),
},
},
},
},
Name: access_policy.Name.ApplyT(func(name string) (string, error) {
return fmt.Sprintf("%v%v%v", "accessPolicies/", name, "/accessLevels/mac_no_lock"), nil
}).(pulumi.StringOutput),
Title: pulumi.String("mac_no_lock"),
},
},
Parent: access_policy.Name.ApplyT(func(name string) (string, error) {
return fmt.Sprintf("%v%v", "accessPolicies/", name), nil
}).(pulumi.StringOutput),
})
if err != nil {
return err
}
return nil
})
}
```
## Import
AccessLevels can be imported using any of these accepted formats ¶
```sh
$ pulumi import gcp:accesscontextmanager/accessLevels:AccessLevels default {{parent}}/accessLevels
```
```sh
$ pulumi import gcp:accesscontextmanager/accessLevels:AccessLevels default {{parent}}
```
func GetAccessLevels ¶
func GetAccessLevels(ctx *pulumi.Context, name string, id pulumi.IDInput, state *AccessLevelsState, opts ...pulumi.ResourceOption) (*AccessLevels, error)
GetAccessLevels gets an existing AccessLevels resource's state with the given name, ID, and optional state properties that are used to uniquely qualify the lookup (nil if not required).
func NewAccessLevels ¶
func NewAccessLevels(ctx *pulumi.Context, name string, args *AccessLevelsArgs, opts ...pulumi.ResourceOption) (*AccessLevels, error)
NewAccessLevels registers a new resource with the given unique name, arguments, and options.
func (*AccessLevels) ElementType ¶ added in v4.4.0
func (*AccessLevels) ElementType() reflect.Type
func (*AccessLevels) ToAccessLevelsOutput ¶ added in v4.4.0
func (i *AccessLevels) ToAccessLevelsOutput() AccessLevelsOutput
func (*AccessLevels) ToAccessLevelsOutputWithContext ¶ added in v4.4.0
func (i *AccessLevels) ToAccessLevelsOutputWithContext(ctx context.Context) AccessLevelsOutput
type AccessLevelsAccessLevel ¶
type AccessLevelsAccessLevel struct {
// A set of predefined conditions for the access level and a combining function.
// Structure is documented below.
Basic *AccessLevelsAccessLevelBasic `pulumi:"basic"`
// Custom access level conditions are set using the Cloud Common Expression Language to represent the necessary conditions for the level to apply to a request.
// See CEL spec at: https://github.com/google/cel-spec.
// Structure is documented below.
Custom *AccessLevelsAccessLevelCustom `pulumi:"custom"`
// Description of the expression
Description *string `pulumi:"description"`
// Resource name for the Access Level. The shortName component must begin
// with a letter and only include alphanumeric and '_'.
// Format: accessPolicies/{policy_id}/accessLevels/{short_name}
Name string `pulumi:"name"`
// Title for the expression, i.e. a short string describing its purpose.
Title string `pulumi:"title"`
}
type AccessLevelsAccessLevelArgs ¶
type AccessLevelsAccessLevelArgs struct {
// A set of predefined conditions for the access level and a combining function.
// Structure is documented below.
Basic AccessLevelsAccessLevelBasicPtrInput `pulumi:"basic"`
// Custom access level conditions are set using the Cloud Common Expression Language to represent the necessary conditions for the level to apply to a request.
// See CEL spec at: https://github.com/google/cel-spec.
// Structure is documented below.
Custom AccessLevelsAccessLevelCustomPtrInput `pulumi:"custom"`
// Description of the expression
Description pulumi.StringPtrInput `pulumi:"description"`
// Resource name for the Access Level. The shortName component must begin
// with a letter and only include alphanumeric and '_'.
// Format: accessPolicies/{policy_id}/accessLevels/{short_name}
Name pulumi.StringInput `pulumi:"name"`
// Title for the expression, i.e. a short string describing its purpose.
Title pulumi.StringInput `pulumi:"title"`
}
func (AccessLevelsAccessLevelArgs) ElementType ¶
func (AccessLevelsAccessLevelArgs) ElementType() reflect.Type
func (AccessLevelsAccessLevelArgs) ToAccessLevelsAccessLevelOutput ¶
func (i AccessLevelsAccessLevelArgs) ToAccessLevelsAccessLevelOutput() AccessLevelsAccessLevelOutput
func (AccessLevelsAccessLevelArgs) ToAccessLevelsAccessLevelOutputWithContext ¶
func (i AccessLevelsAccessLevelArgs) ToAccessLevelsAccessLevelOutputWithContext(ctx context.Context) AccessLevelsAccessLevelOutput
type AccessLevelsAccessLevelArray ¶
type AccessLevelsAccessLevelArray []AccessLevelsAccessLevelInput
func (AccessLevelsAccessLevelArray) ElementType ¶
func (AccessLevelsAccessLevelArray) ElementType() reflect.Type
func (AccessLevelsAccessLevelArray) ToAccessLevelsAccessLevelArrayOutput ¶
func (i AccessLevelsAccessLevelArray) ToAccessLevelsAccessLevelArrayOutput() AccessLevelsAccessLevelArrayOutput
func (AccessLevelsAccessLevelArray) ToAccessLevelsAccessLevelArrayOutputWithContext ¶
func (i AccessLevelsAccessLevelArray) ToAccessLevelsAccessLevelArrayOutputWithContext(ctx context.Context) AccessLevelsAccessLevelArrayOutput
type AccessLevelsAccessLevelArrayInput ¶
type AccessLevelsAccessLevelArrayInput interface {
pulumi.Input
ToAccessLevelsAccessLevelArrayOutput() AccessLevelsAccessLevelArrayOutput
ToAccessLevelsAccessLevelArrayOutputWithContext(context.Context) AccessLevelsAccessLevelArrayOutput
}
AccessLevelsAccessLevelArrayInput is an input type that accepts AccessLevelsAccessLevelArray and AccessLevelsAccessLevelArrayOutput values. You can construct a concrete instance of `AccessLevelsAccessLevelArrayInput` via:
AccessLevelsAccessLevelArray{ AccessLevelsAccessLevelArgs{...} }
type AccessLevelsAccessLevelArrayOutput ¶
type AccessLevelsAccessLevelArrayOutput struct{ *pulumi.OutputState }
func (AccessLevelsAccessLevelArrayOutput) ElementType ¶
func (AccessLevelsAccessLevelArrayOutput) ElementType() reflect.Type
func (AccessLevelsAccessLevelArrayOutput) Index ¶
func (o AccessLevelsAccessLevelArrayOutput) Index(i pulumi.IntInput) AccessLevelsAccessLevelOutput
func (AccessLevelsAccessLevelArrayOutput) ToAccessLevelsAccessLevelArrayOutput ¶
func (o AccessLevelsAccessLevelArrayOutput) ToAccessLevelsAccessLevelArrayOutput() AccessLevelsAccessLevelArrayOutput
func (AccessLevelsAccessLevelArrayOutput) ToAccessLevelsAccessLevelArrayOutputWithContext ¶
func (o AccessLevelsAccessLevelArrayOutput) ToAccessLevelsAccessLevelArrayOutputWithContext(ctx context.Context) AccessLevelsAccessLevelArrayOutput
type AccessLevelsAccessLevelBasic ¶
type AccessLevelsAccessLevelBasic struct {
// How the conditions list should be combined to determine if a request
// is granted this AccessLevel. If AND is used, each Condition in
// conditions must be satisfied for the AccessLevel to be applied. If
// OR is used, at least one Condition in conditions must be satisfied
// for the AccessLevel to be applied.
// Default value is `AND`.
// Possible values are `AND` and `OR`.
CombiningFunction *string `pulumi:"combiningFunction"`
// A set of requirements for the AccessLevel to be granted.
// Structure is documented below.
Conditions []AccessLevelsAccessLevelBasicCondition `pulumi:"conditions"`
}
type AccessLevelsAccessLevelBasicArgs ¶
type AccessLevelsAccessLevelBasicArgs struct {
// How the conditions list should be combined to determine if a request
// is granted this AccessLevel. If AND is used, each Condition in
// conditions must be satisfied for the AccessLevel to be applied. If
// OR is used, at least one Condition in conditions must be satisfied
// for the AccessLevel to be applied.
// Default value is `AND`.
// Possible values are `AND` and `OR`.
CombiningFunction pulumi.StringPtrInput `pulumi:"combiningFunction"`
// A set of requirements for the AccessLevel to be granted.
// Structure is documented below.
Conditions AccessLevelsAccessLevelBasicConditionArrayInput `pulumi:"conditions"`
}
func (AccessLevelsAccessLevelBasicArgs) ElementType ¶
func (AccessLevelsAccessLevelBasicArgs) ElementType() reflect.Type
func (AccessLevelsAccessLevelBasicArgs) ToAccessLevelsAccessLevelBasicOutput ¶
func (i AccessLevelsAccessLevelBasicArgs) ToAccessLevelsAccessLevelBasicOutput() AccessLevelsAccessLevelBasicOutput
func (AccessLevelsAccessLevelBasicArgs) ToAccessLevelsAccessLevelBasicOutputWithContext ¶
func (i AccessLevelsAccessLevelBasicArgs) ToAccessLevelsAccessLevelBasicOutputWithContext(ctx context.Context) AccessLevelsAccessLevelBasicOutput
func (AccessLevelsAccessLevelBasicArgs) ToAccessLevelsAccessLevelBasicPtrOutput ¶
func (i AccessLevelsAccessLevelBasicArgs) ToAccessLevelsAccessLevelBasicPtrOutput() AccessLevelsAccessLevelBasicPtrOutput
func (AccessLevelsAccessLevelBasicArgs) ToAccessLevelsAccessLevelBasicPtrOutputWithContext ¶
func (i AccessLevelsAccessLevelBasicArgs) ToAccessLevelsAccessLevelBasicPtrOutputWithContext(ctx context.Context) AccessLevelsAccessLevelBasicPtrOutput
type AccessLevelsAccessLevelBasicCondition ¶
type AccessLevelsAccessLevelBasicCondition struct {
// Device specific restrictions, all restrictions must hold for
// the Condition to be true. If not specified, all devices are
// allowed.
// Structure is documented below.
DevicePolicy *AccessLevelsAccessLevelBasicConditionDevicePolicy `pulumi:"devicePolicy"`
// A list of CIDR block IP subnetwork specification. May be IPv4
// or IPv6.
// Note that for a CIDR IP address block, the specified IP address
// portion must be properly truncated (i.e. all the host bits must
// be zero) or the input is considered malformed. For example,
// "192.0.2.0/24" is accepted but "192.0.2.1/24" is not. Similarly,
// for IPv6, "2001:db8::/32" is accepted whereas "2001:db8::1/32"
// is not. The originating IP of a request must be in one of the
// listed subnets in order for this Condition to be true.
// If empty, all IP addresses are allowed.
IpSubnetworks []string `pulumi:"ipSubnetworks"`
// An allowed list of members (users, service accounts).
// Using groups is not supported yet.
// The signed-in user originating the request must be a part of one
// of the provided members. If not specified, a request may come
// from any user (logged in/not logged in, not present in any
// groups, etc.).
// Formats: `user:{emailid}`, `serviceAccount:{emailid}`
Members []string `pulumi:"members"`
// Whether to negate the Condition. If true, the Condition becomes
// a NAND over its non-empty fields, each field must be false for
// the Condition overall to be satisfied. Defaults to false.
Negate *bool `pulumi:"negate"`
// The request must originate from one of the provided
// countries/regions.
// Format: A valid ISO 3166-1 alpha-2 code.
Regions []string `pulumi:"regions"`
// A list of other access levels defined in the same Policy,
// referenced by resource name. Referencing an AccessLevel which
// does not exist is an error. All access levels listed must be
// granted for the Condition to be true.
// Format: accessPolicies/{policy_id}/accessLevels/{short_name}
RequiredAccessLevels []string `pulumi:"requiredAccessLevels"`
}
type AccessLevelsAccessLevelBasicConditionArgs ¶
type AccessLevelsAccessLevelBasicConditionArgs struct {
// Device specific restrictions, all restrictions must hold for
// the Condition to be true. If not specified, all devices are
// allowed.
// Structure is documented below.
DevicePolicy AccessLevelsAccessLevelBasicConditionDevicePolicyPtrInput `pulumi:"devicePolicy"`
// A list of CIDR block IP subnetwork specification. May be IPv4
// or IPv6.
// Note that for a CIDR IP address block, the specified IP address
// portion must be properly truncated (i.e. all the host bits must
// be zero) or the input is considered malformed. For example,
// "192.0.2.0/24" is accepted but "192.0.2.1/24" is not. Similarly,
// for IPv6, "2001:db8::/32" is accepted whereas "2001:db8::1/32"
// is not. The originating IP of a request must be in one of the
// listed subnets in order for this Condition to be true.
// If empty, all IP addresses are allowed.
IpSubnetworks pulumi.StringArrayInput `pulumi:"ipSubnetworks"`
// An allowed list of members (users, service accounts).
// Using groups is not supported yet.
// The signed-in user originating the request must be a part of one
// of the provided members. If not specified, a request may come
// from any user (logged in/not logged in, not present in any
// groups, etc.).
// Formats: `user:{emailid}`, `serviceAccount:{emailid}`
Members pulumi.StringArrayInput `pulumi:"members"`
// Whether to negate the Condition. If true, the Condition becomes
// a NAND over its non-empty fields, each field must be false for
// the Condition overall to be satisfied. Defaults to false.
Negate pulumi.BoolPtrInput `pulumi:"negate"`
// The request must originate from one of the provided
// countries/regions.
// Format: A valid ISO 3166-1 alpha-2 code.
Regions pulumi.StringArrayInput `pulumi:"regions"`
// A list of other access levels defined in the same Policy,
// referenced by resource name. Referencing an AccessLevel which
// does not exist is an error. All access levels listed must be
// granted for the Condition to be true.
// Format: accessPolicies/{policy_id}/accessLevels/{short_name}
RequiredAccessLevels pulumi.StringArrayInput `pulumi:"requiredAccessLevels"`
}
func (AccessLevelsAccessLevelBasicConditionArgs) ElementType ¶
func (AccessLevelsAccessLevelBasicConditionArgs) ElementType() reflect.Type
func (AccessLevelsAccessLevelBasicConditionArgs) ToAccessLevelsAccessLevelBasicConditionOutput ¶
func (i AccessLevelsAccessLevelBasicConditionArgs) ToAccessLevelsAccessLevelBasicConditionOutput() AccessLevelsAccessLevelBasicConditionOutput
func (AccessLevelsAccessLevelBasicConditionArgs) ToAccessLevelsAccessLevelBasicConditionOutputWithContext ¶
func (i AccessLevelsAccessLevelBasicConditionArgs) ToAccessLevelsAccessLevelBasicConditionOutputWithContext(ctx context.Context) AccessLevelsAccessLevelBasicConditionOutput
type AccessLevelsAccessLevelBasicConditionArray ¶
type AccessLevelsAccessLevelBasicConditionArray []AccessLevelsAccessLevelBasicConditionInput
func (AccessLevelsAccessLevelBasicConditionArray) ElementType ¶
func (AccessLevelsAccessLevelBasicConditionArray) ElementType() reflect.Type
func (AccessLevelsAccessLevelBasicConditionArray) ToAccessLevelsAccessLevelBasicConditionArrayOutput ¶
func (i AccessLevelsAccessLevelBasicConditionArray) ToAccessLevelsAccessLevelBasicConditionArrayOutput() AccessLevelsAccessLevelBasicConditionArrayOutput
func (AccessLevelsAccessLevelBasicConditionArray) ToAccessLevelsAccessLevelBasicConditionArrayOutputWithContext ¶
func (i AccessLevelsAccessLevelBasicConditionArray) ToAccessLevelsAccessLevelBasicConditionArrayOutputWithContext(ctx context.Context) AccessLevelsAccessLevelBasicConditionArrayOutput
type AccessLevelsAccessLevelBasicConditionArrayInput ¶
type AccessLevelsAccessLevelBasicConditionArrayInput interface {
pulumi.Input
ToAccessLevelsAccessLevelBasicConditionArrayOutput() AccessLevelsAccessLevelBasicConditionArrayOutput
ToAccessLevelsAccessLevelBasicConditionArrayOutputWithContext(context.Context) AccessLevelsAccessLevelBasicConditionArrayOutput
}
AccessLevelsAccessLevelBasicConditionArrayInput is an input type that accepts AccessLevelsAccessLevelBasicConditionArray and AccessLevelsAccessLevelBasicConditionArrayOutput values. You can construct a concrete instance of `AccessLevelsAccessLevelBasicConditionArrayInput` via:
AccessLevelsAccessLevelBasicConditionArray{ AccessLevelsAccessLevelBasicConditionArgs{...} }
type AccessLevelsAccessLevelBasicConditionArrayOutput ¶
type AccessLevelsAccessLevelBasicConditionArrayOutput struct{ *pulumi.OutputState }
func (AccessLevelsAccessLevelBasicConditionArrayOutput) ElementType ¶
func (AccessLevelsAccessLevelBasicConditionArrayOutput) ElementType() reflect.Type
func (AccessLevelsAccessLevelBasicConditionArrayOutput) ToAccessLevelsAccessLevelBasicConditionArrayOutput ¶
func (o AccessLevelsAccessLevelBasicConditionArrayOutput) ToAccessLevelsAccessLevelBasicConditionArrayOutput() AccessLevelsAccessLevelBasicConditionArrayOutput
func (AccessLevelsAccessLevelBasicConditionArrayOutput) ToAccessLevelsAccessLevelBasicConditionArrayOutputWithContext ¶
func (o AccessLevelsAccessLevelBasicConditionArrayOutput) ToAccessLevelsAccessLevelBasicConditionArrayOutputWithContext(ctx context.Context) AccessLevelsAccessLevelBasicConditionArrayOutput
type AccessLevelsAccessLevelBasicConditionDevicePolicy ¶
type AccessLevelsAccessLevelBasicConditionDevicePolicy struct {
// A list of allowed device management levels.
// An empty list allows all management levels.
// Each value may be one of `MANAGEMENT_UNSPECIFIED`, `NONE`, `BASIC`, and `COMPLETE`.
AllowedDeviceManagementLevels []string `pulumi:"allowedDeviceManagementLevels"`
// A list of allowed encryptions statuses.
// An empty list allows all statuses.
// Each value may be one of `ENCRYPTION_UNSPECIFIED`, `ENCRYPTION_UNSUPPORTED`, `UNENCRYPTED`, and `ENCRYPTED`.
AllowedEncryptionStatuses []string `pulumi:"allowedEncryptionStatuses"`
// A list of allowed OS versions.
// An empty list allows all types and all versions.
// Structure is documented below.
OsConstraints []AccessLevelsAccessLevelBasicConditionDevicePolicyOsConstraint `pulumi:"osConstraints"`
// Whether the device needs to be approved by the customer admin.
RequireAdminApproval *bool `pulumi:"requireAdminApproval"`
// Whether the device needs to be corp owned.
RequireCorpOwned *bool `pulumi:"requireCorpOwned"`
// Whether or not screenlock is required for the DevicePolicy
// to be true. Defaults to false.
RequireScreenLock *bool `pulumi:"requireScreenLock"`
}
type AccessLevelsAccessLevelBasicConditionDevicePolicyArgs ¶
type AccessLevelsAccessLevelBasicConditionDevicePolicyArgs struct {
// A list of allowed device management levels.
// An empty list allows all management levels.
// Each value may be one of `MANAGEMENT_UNSPECIFIED`, `NONE`, `BASIC`, and `COMPLETE`.
AllowedDeviceManagementLevels pulumi.StringArrayInput `pulumi:"allowedDeviceManagementLevels"`
// A list of allowed encryptions statuses.
// An empty list allows all statuses.
// Each value may be one of `ENCRYPTION_UNSPECIFIED`, `ENCRYPTION_UNSUPPORTED`, `UNENCRYPTED`, and `ENCRYPTED`.
AllowedEncryptionStatuses pulumi.StringArrayInput `pulumi:"allowedEncryptionStatuses"`
// A list of allowed OS versions.
// An empty list allows all types and all versions.
// Structure is documented below.
OsConstraints AccessLevelsAccessLevelBasicConditionDevicePolicyOsConstraintArrayInput `pulumi:"osConstraints"`
// Whether the device needs to be approved by the customer admin.
RequireAdminApproval pulumi.BoolPtrInput `pulumi:"requireAdminApproval"`
// Whether the device needs to be corp owned.
RequireCorpOwned pulumi.BoolPtrInput `pulumi:"requireCorpOwned"`
// Whether or not screenlock is required for the DevicePolicy
// to be true. Defaults to false.
RequireScreenLock pulumi.BoolPtrInput `pulumi:"requireScreenLock"`
}
func (AccessLevelsAccessLevelBasicConditionDevicePolicyArgs) ElementType ¶
func (AccessLevelsAccessLevelBasicConditionDevicePolicyArgs) ElementType() reflect.Type
func (AccessLevelsAccessLevelBasicConditionDevicePolicyArgs) ToAccessLevelsAccessLevelBasicConditionDevicePolicyOutput ¶
func (i AccessLevelsAccessLevelBasicConditionDevicePolicyArgs) ToAccessLevelsAccessLevelBasicConditionDevicePolicyOutput() AccessLevelsAccessLevelBasicConditionDevicePolicyOutput
func (AccessLevelsAccessLevelBasicConditionDevicePolicyArgs) ToAccessLevelsAccessLevelBasicConditionDevicePolicyOutputWithContext ¶
func (i AccessLevelsAccessLevelBasicConditionDevicePolicyArgs) ToAccessLevelsAccessLevelBasicConditionDevicePolicyOutputWithContext(ctx context.Context) AccessLevelsAccessLevelBasicConditionDevicePolicyOutput
func (AccessLevelsAccessLevelBasicConditionDevicePolicyArgs) ToAccessLevelsAccessLevelBasicConditionDevicePolicyPtrOutput ¶
func (i AccessLevelsAccessLevelBasicConditionDevicePolicyArgs) ToAccessLevelsAccessLevelBasicConditionDevicePolicyPtrOutput() AccessLevelsAccessLevelBasicConditionDevicePolicyPtrOutput
func (AccessLevelsAccessLevelBasicConditionDevicePolicyArgs) ToAccessLevelsAccessLevelBasicConditionDevicePolicyPtrOutputWithContext ¶
func (i AccessLevelsAccessLevelBasicConditionDevicePolicyArgs) ToAccessLevelsAccessLevelBasicConditionDevicePolicyPtrOutputWithContext(ctx context.Context) AccessLevelsAccessLevelBasicConditionDevicePolicyPtrOutput
type AccessLevelsAccessLevelBasicConditionDevicePolicyInput ¶
type AccessLevelsAccessLevelBasicConditionDevicePolicyInput interface {
pulumi.Input
ToAccessLevelsAccessLevelBasicConditionDevicePolicyOutput() AccessLevelsAccessLevelBasicConditionDevicePolicyOutput
ToAccessLevelsAccessLevelBasicConditionDevicePolicyOutputWithContext(context.Context) AccessLevelsAccessLevelBasicConditionDevicePolicyOutput
}
AccessLevelsAccessLevelBasicConditionDevicePolicyInput is an input type that accepts AccessLevelsAccessLevelBasicConditionDevicePolicyArgs and AccessLevelsAccessLevelBasicConditionDevicePolicyOutput values. You can construct a concrete instance of `AccessLevelsAccessLevelBasicConditionDevicePolicyInput` via:
AccessLevelsAccessLevelBasicConditionDevicePolicyArgs{...}
type AccessLevelsAccessLevelBasicConditionDevicePolicyOsConstraint ¶
type AccessLevelsAccessLevelBasicConditionDevicePolicyOsConstraint struct {
// The minimum allowed OS version. If not set, any version
// of this OS satisfies the constraint.
// Format: "major.minor.patch" such as "10.5.301", "9.2.1".
MinimumVersion *string `pulumi:"minimumVersion"`
// The operating system type of the device.
// Possible values are `OS_UNSPECIFIED`, `DESKTOP_MAC`, `DESKTOP_WINDOWS`, `DESKTOP_LINUX`, and `DESKTOP_CHROME_OS`.
OsType string `pulumi:"osType"`
}
type AccessLevelsAccessLevelBasicConditionDevicePolicyOsConstraintArgs ¶
type AccessLevelsAccessLevelBasicConditionDevicePolicyOsConstraintArgs struct {
// The minimum allowed OS version. If not set, any version
// of this OS satisfies the constraint.
// Format: "major.minor.patch" such as "10.5.301", "9.2.1".
MinimumVersion pulumi.StringPtrInput `pulumi:"minimumVersion"`
// The operating system type of the device.
// Possible values are `OS_UNSPECIFIED`, `DESKTOP_MAC`, `DESKTOP_WINDOWS`, `DESKTOP_LINUX`, and `DESKTOP_CHROME_OS`.
OsType pulumi.StringInput `pulumi:"osType"`
}
func (AccessLevelsAccessLevelBasicConditionDevicePolicyOsConstraintArgs) ElementType ¶
func (AccessLevelsAccessLevelBasicConditionDevicePolicyOsConstraintArgs) ElementType() reflect.Type
func (AccessLevelsAccessLevelBasicConditionDevicePolicyOsConstraintArgs) ToAccessLevelsAccessLevelBasicConditionDevicePolicyOsConstraintOutput ¶
func (i AccessLevelsAccessLevelBasicConditionDevicePolicyOsConstraintArgs) ToAccessLevelsAccessLevelBasicConditionDevicePolicyOsConstraintOutput() AccessLevelsAccessLevelBasicConditionDevicePolicyOsConstraintOutput
func (AccessLevelsAccessLevelBasicConditionDevicePolicyOsConstraintArgs) ToAccessLevelsAccessLevelBasicConditionDevicePolicyOsConstraintOutputWithContext ¶
func (i AccessLevelsAccessLevelBasicConditionDevicePolicyOsConstraintArgs) ToAccessLevelsAccessLevelBasicConditionDevicePolicyOsConstraintOutputWithContext(ctx context.Context) AccessLevelsAccessLevelBasicConditionDevicePolicyOsConstraintOutput
type AccessLevelsAccessLevelBasicConditionDevicePolicyOsConstraintArray ¶
type AccessLevelsAccessLevelBasicConditionDevicePolicyOsConstraintArray []AccessLevelsAccessLevelBasicConditionDevicePolicyOsConstraintInput
func (AccessLevelsAccessLevelBasicConditionDevicePolicyOsConstraintArray) ElementType ¶
func (AccessLevelsAccessLevelBasicConditionDevicePolicyOsConstraintArray) ElementType() reflect.Type
func (AccessLevelsAccessLevelBasicConditionDevicePolicyOsConstraintArray) ToAccessLevelsAccessLevelBasicConditionDevicePolicyOsConstraintArrayOutput ¶
func (i AccessLevelsAccessLevelBasicConditionDevicePolicyOsConstraintArray) ToAccessLevelsAccessLevelBasicConditionDevicePolicyOsConstraintArrayOutput() AccessLevelsAccessLevelBasicConditionDevicePolicyOsConstraintArrayOutput
func (AccessLevelsAccessLevelBasicConditionDevicePolicyOsConstraintArray) ToAccessLevelsAccessLevelBasicConditionDevicePolicyOsConstraintArrayOutputWithContext ¶
func (i AccessLevelsAccessLevelBasicConditionDevicePolicyOsConstraintArray) ToAccessLevelsAccessLevelBasicConditionDevicePolicyOsConstraintArrayOutputWithContext(ctx context.Context) AccessLevelsAccessLevelBasicConditionDevicePolicyOsConstraintArrayOutput
type AccessLevelsAccessLevelBasicConditionDevicePolicyOsConstraintArrayInput ¶
type AccessLevelsAccessLevelBasicConditionDevicePolicyOsConstraintArrayInput interface {
pulumi.Input
ToAccessLevelsAccessLevelBasicConditionDevicePolicyOsConstraintArrayOutput() AccessLevelsAccessLevelBasicConditionDevicePolicyOsConstraintArrayOutput
ToAccessLevelsAccessLevelBasicConditionDevicePolicyOsConstraintArrayOutputWithContext(context.Context) AccessLevelsAccessLevelBasicConditionDevicePolicyOsConstraintArrayOutput
}
AccessLevelsAccessLevelBasicConditionDevicePolicyOsConstraintArrayInput is an input type that accepts AccessLevelsAccessLevelBasicConditionDevicePolicyOsConstraintArray and AccessLevelsAccessLevelBasicConditionDevicePolicyOsConstraintArrayOutput values. You can construct a concrete instance of `AccessLevelsAccessLevelBasicConditionDevicePolicyOsConstraintArrayInput` via:
AccessLevelsAccessLevelBasicConditionDevicePolicyOsConstraintArray{ AccessLevelsAccessLevelBasicConditionDevicePolicyOsConstraintArgs{...} }
type AccessLevelsAccessLevelBasicConditionDevicePolicyOsConstraintArrayOutput ¶
type AccessLevelsAccessLevelBasicConditionDevicePolicyOsConstraintArrayOutput struct{ *pulumi.OutputState }
func (AccessLevelsAccessLevelBasicConditionDevicePolicyOsConstraintArrayOutput) ElementType ¶
func (AccessLevelsAccessLevelBasicConditionDevicePolicyOsConstraintArrayOutput) ElementType() reflect.Type
func (AccessLevelsAccessLevelBasicConditionDevicePolicyOsConstraintArrayOutput) ToAccessLevelsAccessLevelBasicConditionDevicePolicyOsConstraintArrayOutput ¶
func (o AccessLevelsAccessLevelBasicConditionDevicePolicyOsConstraintArrayOutput) ToAccessLevelsAccessLevelBasicConditionDevicePolicyOsConstraintArrayOutput() AccessLevelsAccessLevelBasicConditionDevicePolicyOsConstraintArrayOutput
func (AccessLevelsAccessLevelBasicConditionDevicePolicyOsConstraintArrayOutput) ToAccessLevelsAccessLevelBasicConditionDevicePolicyOsConstraintArrayOutputWithContext ¶
func (o AccessLevelsAccessLevelBasicConditionDevicePolicyOsConstraintArrayOutput) ToAccessLevelsAccessLevelBasicConditionDevicePolicyOsConstraintArrayOutputWithContext(ctx context.Context) AccessLevelsAccessLevelBasicConditionDevicePolicyOsConstraintArrayOutput
type AccessLevelsAccessLevelBasicConditionDevicePolicyOsConstraintInput ¶
type AccessLevelsAccessLevelBasicConditionDevicePolicyOsConstraintInput interface {
pulumi.Input
ToAccessLevelsAccessLevelBasicConditionDevicePolicyOsConstraintOutput() AccessLevelsAccessLevelBasicConditionDevicePolicyOsConstraintOutput
ToAccessLevelsAccessLevelBasicConditionDevicePolicyOsConstraintOutputWithContext(context.Context) AccessLevelsAccessLevelBasicConditionDevicePolicyOsConstraintOutput
}
AccessLevelsAccessLevelBasicConditionDevicePolicyOsConstraintInput is an input type that accepts AccessLevelsAccessLevelBasicConditionDevicePolicyOsConstraintArgs and AccessLevelsAccessLevelBasicConditionDevicePolicyOsConstraintOutput values. You can construct a concrete instance of `AccessLevelsAccessLevelBasicConditionDevicePolicyOsConstraintInput` via:
AccessLevelsAccessLevelBasicConditionDevicePolicyOsConstraintArgs{...}
type AccessLevelsAccessLevelBasicConditionDevicePolicyOsConstraintOutput ¶
type AccessLevelsAccessLevelBasicConditionDevicePolicyOsConstraintOutput struct{ *pulumi.OutputState }
func (AccessLevelsAccessLevelBasicConditionDevicePolicyOsConstraintOutput) ElementType ¶
func (AccessLevelsAccessLevelBasicConditionDevicePolicyOsConstraintOutput) ElementType() reflect.Type
func (AccessLevelsAccessLevelBasicConditionDevicePolicyOsConstraintOutput) MinimumVersion ¶
func (o AccessLevelsAccessLevelBasicConditionDevicePolicyOsConstraintOutput) MinimumVersion() pulumi.StringPtrOutput
The minimum allowed OS version. If not set, any version of this OS satisfies the constraint. Format: "major.minor.patch" such as "10.5.301", "9.2.1".
func (AccessLevelsAccessLevelBasicConditionDevicePolicyOsConstraintOutput) OsType ¶
func (o AccessLevelsAccessLevelBasicConditionDevicePolicyOsConstraintOutput) OsType() pulumi.StringOutput
The operating system type of the device. Possible values are `OS_UNSPECIFIED`, `DESKTOP_MAC`, `DESKTOP_WINDOWS`, `DESKTOP_LINUX`, and `DESKTOP_CHROME_OS`.
func (AccessLevelsAccessLevelBasicConditionDevicePolicyOsConstraintOutput) ToAccessLevelsAccessLevelBasicConditionDevicePolicyOsConstraintOutput ¶
func (o AccessLevelsAccessLevelBasicConditionDevicePolicyOsConstraintOutput) ToAccessLevelsAccessLevelBasicConditionDevicePolicyOsConstraintOutput() AccessLevelsAccessLevelBasicConditionDevicePolicyOsConstraintOutput
func (AccessLevelsAccessLevelBasicConditionDevicePolicyOsConstraintOutput) ToAccessLevelsAccessLevelBasicConditionDevicePolicyOsConstraintOutputWithContext ¶
func (o AccessLevelsAccessLevelBasicConditionDevicePolicyOsConstraintOutput) ToAccessLevelsAccessLevelBasicConditionDevicePolicyOsConstraintOutputWithContext(ctx context.Context) AccessLevelsAccessLevelBasicConditionDevicePolicyOsConstraintOutput
type AccessLevelsAccessLevelBasicConditionDevicePolicyOutput ¶
type AccessLevelsAccessLevelBasicConditionDevicePolicyOutput struct{ *pulumi.OutputState }
func (AccessLevelsAccessLevelBasicConditionDevicePolicyOutput) AllowedDeviceManagementLevels ¶
func (o AccessLevelsAccessLevelBasicConditionDevicePolicyOutput) AllowedDeviceManagementLevels() pulumi.StringArrayOutput
A list of allowed device management levels. An empty list allows all management levels. Each value may be one of `MANAGEMENT_UNSPECIFIED`, `NONE`, `BASIC`, and `COMPLETE`.
func (AccessLevelsAccessLevelBasicConditionDevicePolicyOutput) AllowedEncryptionStatuses ¶
func (o AccessLevelsAccessLevelBasicConditionDevicePolicyOutput) AllowedEncryptionStatuses() pulumi.StringArrayOutput
A list of allowed encryptions statuses. An empty list allows all statuses. Each value may be one of `ENCRYPTION_UNSPECIFIED`, `ENCRYPTION_UNSUPPORTED`, `UNENCRYPTED`, and `ENCRYPTED`.
func (AccessLevelsAccessLevelBasicConditionDevicePolicyOutput) ElementType ¶
func (AccessLevelsAccessLevelBasicConditionDevicePolicyOutput) ElementType() reflect.Type
func (AccessLevelsAccessLevelBasicConditionDevicePolicyOutput) OsConstraints ¶
func (o AccessLevelsAccessLevelBasicConditionDevicePolicyOutput) OsConstraints() AccessLevelsAccessLevelBasicConditionDevicePolicyOsConstraintArrayOutput
A list of allowed OS versions. An empty list allows all types and all versions. Structure is documented below.
func (AccessLevelsAccessLevelBasicConditionDevicePolicyOutput) RequireAdminApproval ¶
func (o AccessLevelsAccessLevelBasicConditionDevicePolicyOutput) RequireAdminApproval() pulumi.BoolPtrOutput
Whether the device needs to be approved by the customer admin.
func (AccessLevelsAccessLevelBasicConditionDevicePolicyOutput) RequireCorpOwned ¶
func (o AccessLevelsAccessLevelBasicConditionDevicePolicyOutput) RequireCorpOwned() pulumi.BoolPtrOutput
Whether the device needs to be corp owned.
func (AccessLevelsAccessLevelBasicConditionDevicePolicyOutput) RequireScreenLock ¶
func (o AccessLevelsAccessLevelBasicConditionDevicePolicyOutput) RequireScreenLock() pulumi.BoolPtrOutput
Whether or not screenlock is required for the DevicePolicy to be true. Defaults to false.
func (AccessLevelsAccessLevelBasicConditionDevicePolicyOutput) ToAccessLevelsAccessLevelBasicConditionDevicePolicyOutput ¶
func (o AccessLevelsAccessLevelBasicConditionDevicePolicyOutput) ToAccessLevelsAccessLevelBasicConditionDevicePolicyOutput() AccessLevelsAccessLevelBasicConditionDevicePolicyOutput
func (AccessLevelsAccessLevelBasicConditionDevicePolicyOutput) ToAccessLevelsAccessLevelBasicConditionDevicePolicyOutputWithContext ¶
func (o AccessLevelsAccessLevelBasicConditionDevicePolicyOutput) ToAccessLevelsAccessLevelBasicConditionDevicePolicyOutputWithContext(ctx context.Context) AccessLevelsAccessLevelBasicConditionDevicePolicyOutput
func (AccessLevelsAccessLevelBasicConditionDevicePolicyOutput) ToAccessLevelsAccessLevelBasicConditionDevicePolicyPtrOutput ¶
func (o AccessLevelsAccessLevelBasicConditionDevicePolicyOutput) ToAccessLevelsAccessLevelBasicConditionDevicePolicyPtrOutput() AccessLevelsAccessLevelBasicConditionDevicePolicyPtrOutput
func (AccessLevelsAccessLevelBasicConditionDevicePolicyOutput) ToAccessLevelsAccessLevelBasicConditionDevicePolicyPtrOutputWithContext ¶
func (o AccessLevelsAccessLevelBasicConditionDevicePolicyOutput) ToAccessLevelsAccessLevelBasicConditionDevicePolicyPtrOutputWithContext(ctx context.Context) AccessLevelsAccessLevelBasicConditionDevicePolicyPtrOutput
type AccessLevelsAccessLevelBasicConditionDevicePolicyPtrInput ¶
type AccessLevelsAccessLevelBasicConditionDevicePolicyPtrInput interface {
pulumi.Input
ToAccessLevelsAccessLevelBasicConditionDevicePolicyPtrOutput() AccessLevelsAccessLevelBasicConditionDevicePolicyPtrOutput
ToAccessLevelsAccessLevelBasicConditionDevicePolicyPtrOutputWithContext(context.Context) AccessLevelsAccessLevelBasicConditionDevicePolicyPtrOutput
}
AccessLevelsAccessLevelBasicConditionDevicePolicyPtrInput is an input type that accepts AccessLevelsAccessLevelBasicConditionDevicePolicyArgs, AccessLevelsAccessLevelBasicConditionDevicePolicyPtr and AccessLevelsAccessLevelBasicConditionDevicePolicyPtrOutput values. You can construct a concrete instance of `AccessLevelsAccessLevelBasicConditionDevicePolicyPtrInput` via:
AccessLevelsAccessLevelBasicConditionDevicePolicyArgs{...}
or:
nil
func AccessLevelsAccessLevelBasicConditionDevicePolicyPtr ¶
func AccessLevelsAccessLevelBasicConditionDevicePolicyPtr(v *AccessLevelsAccessLevelBasicConditionDevicePolicyArgs) AccessLevelsAccessLevelBasicConditionDevicePolicyPtrInput
type AccessLevelsAccessLevelBasicConditionDevicePolicyPtrOutput ¶
type AccessLevelsAccessLevelBasicConditionDevicePolicyPtrOutput struct{ *pulumi.OutputState }
func (AccessLevelsAccessLevelBasicConditionDevicePolicyPtrOutput) AllowedDeviceManagementLevels ¶
func (o AccessLevelsAccessLevelBasicConditionDevicePolicyPtrOutput) AllowedDeviceManagementLevels() pulumi.StringArrayOutput
A list of allowed device management levels. An empty list allows all management levels. Each value may be one of `MANAGEMENT_UNSPECIFIED`, `NONE`, `BASIC`, and `COMPLETE`.
func (AccessLevelsAccessLevelBasicConditionDevicePolicyPtrOutput) AllowedEncryptionStatuses ¶
func (o AccessLevelsAccessLevelBasicConditionDevicePolicyPtrOutput) AllowedEncryptionStatuses() pulumi.StringArrayOutput
A list of allowed encryptions statuses. An empty list allows all statuses. Each value may be one of `ENCRYPTION_UNSPECIFIED`, `ENCRYPTION_UNSUPPORTED`, `UNENCRYPTED`, and `ENCRYPTED`.
func (AccessLevelsAccessLevelBasicConditionDevicePolicyPtrOutput) ElementType ¶
func (AccessLevelsAccessLevelBasicConditionDevicePolicyPtrOutput) ElementType() reflect.Type
func (AccessLevelsAccessLevelBasicConditionDevicePolicyPtrOutput) OsConstraints ¶
func (o AccessLevelsAccessLevelBasicConditionDevicePolicyPtrOutput) OsConstraints() AccessLevelsAccessLevelBasicConditionDevicePolicyOsConstraintArrayOutput
A list of allowed OS versions. An empty list allows all types and all versions. Structure is documented below.
func (AccessLevelsAccessLevelBasicConditionDevicePolicyPtrOutput) RequireAdminApproval ¶
func (o AccessLevelsAccessLevelBasicConditionDevicePolicyPtrOutput) RequireAdminApproval() pulumi.BoolPtrOutput
Whether the device needs to be approved by the customer admin.
func (AccessLevelsAccessLevelBasicConditionDevicePolicyPtrOutput) RequireCorpOwned ¶
func (o AccessLevelsAccessLevelBasicConditionDevicePolicyPtrOutput) RequireCorpOwned() pulumi.BoolPtrOutput
Whether the device needs to be corp owned.
func (AccessLevelsAccessLevelBasicConditionDevicePolicyPtrOutput) RequireScreenLock ¶
func (o AccessLevelsAccessLevelBasicConditionDevicePolicyPtrOutput) RequireScreenLock() pulumi.BoolPtrOutput
Whether or not screenlock is required for the DevicePolicy to be true. Defaults to false.
func (AccessLevelsAccessLevelBasicConditionDevicePolicyPtrOutput) ToAccessLevelsAccessLevelBasicConditionDevicePolicyPtrOutput ¶
func (o AccessLevelsAccessLevelBasicConditionDevicePolicyPtrOutput) ToAccessLevelsAccessLevelBasicConditionDevicePolicyPtrOutput() AccessLevelsAccessLevelBasicConditionDevicePolicyPtrOutput
func (AccessLevelsAccessLevelBasicConditionDevicePolicyPtrOutput) ToAccessLevelsAccessLevelBasicConditionDevicePolicyPtrOutputWithContext ¶
func (o AccessLevelsAccessLevelBasicConditionDevicePolicyPtrOutput) ToAccessLevelsAccessLevelBasicConditionDevicePolicyPtrOutputWithContext(ctx context.Context) AccessLevelsAccessLevelBasicConditionDevicePolicyPtrOutput
type AccessLevelsAccessLevelBasicConditionInput ¶
type AccessLevelsAccessLevelBasicConditionInput interface {
pulumi.Input
ToAccessLevelsAccessLevelBasicConditionOutput() AccessLevelsAccessLevelBasicConditionOutput
ToAccessLevelsAccessLevelBasicConditionOutputWithContext(context.Context) AccessLevelsAccessLevelBasicConditionOutput
}
AccessLevelsAccessLevelBasicConditionInput is an input type that accepts AccessLevelsAccessLevelBasicConditionArgs and AccessLevelsAccessLevelBasicConditionOutput values. You can construct a concrete instance of `AccessLevelsAccessLevelBasicConditionInput` via:
AccessLevelsAccessLevelBasicConditionArgs{...}
type AccessLevelsAccessLevelBasicConditionOutput ¶
type AccessLevelsAccessLevelBasicConditionOutput struct{ *pulumi.OutputState }
func (AccessLevelsAccessLevelBasicConditionOutput) DevicePolicy ¶
func (o AccessLevelsAccessLevelBasicConditionOutput) DevicePolicy() AccessLevelsAccessLevelBasicConditionDevicePolicyPtrOutput
Device specific restrictions, all restrictions must hold for the Condition to be true. If not specified, all devices are allowed. Structure is documented below.
func (AccessLevelsAccessLevelBasicConditionOutput) ElementType ¶
func (AccessLevelsAccessLevelBasicConditionOutput) ElementType() reflect.Type
func (AccessLevelsAccessLevelBasicConditionOutput) IpSubnetworks ¶
func (o AccessLevelsAccessLevelBasicConditionOutput) IpSubnetworks() pulumi.StringArrayOutput
A list of CIDR block IP subnetwork specification. May be IPv4 or IPv6. Note that for a CIDR IP address block, the specified IP address portion must be properly truncated (i.e. all the host bits must be zero) or the input is considered malformed. For example, "192.0.2.0/24" is accepted but "192.0.2.1/24" is not. Similarly, for IPv6, "2001:db8::/32" is accepted whereas "2001:db8::1/32" is not. The originating IP of a request must be in one of the listed subnets in order for this Condition to be true. If empty, all IP addresses are allowed.
func (AccessLevelsAccessLevelBasicConditionOutput) Members ¶
func (o AccessLevelsAccessLevelBasicConditionOutput) Members() pulumi.StringArrayOutput
An allowed list of members (users, service accounts). Using groups is not supported yet. The signed-in user originating the request must be a part of one of the provided members. If not specified, a request may come from any user (logged in/not logged in, not present in any groups, etc.). Formats: `user:{emailid}`, `serviceAccount:{emailid}`
func (AccessLevelsAccessLevelBasicConditionOutput) Negate ¶
func (o AccessLevelsAccessLevelBasicConditionOutput) Negate() pulumi.BoolPtrOutput
Whether to negate the Condition. If true, the Condition becomes a NAND over its non-empty fields, each field must be false for the Condition overall to be satisfied. Defaults to false.
func (AccessLevelsAccessLevelBasicConditionOutput) Regions ¶
func (o AccessLevelsAccessLevelBasicConditionOutput) Regions() pulumi.StringArrayOutput
The request must originate from one of the provided countries/regions. Format: A valid ISO 3166-1 alpha-2 code.
func (AccessLevelsAccessLevelBasicConditionOutput) RequiredAccessLevels ¶
func (o AccessLevelsAccessLevelBasicConditionOutput) RequiredAccessLevels() pulumi.StringArrayOutput
A list of other access levels defined in the same Policy, referenced by resource name. Referencing an AccessLevel which does not exist is an error. All access levels listed must be granted for the Condition to be true. Format: accessPolicies/{policy_id}/accessLevels/{short_name}
func (AccessLevelsAccessLevelBasicConditionOutput) ToAccessLevelsAccessLevelBasicConditionOutput ¶
func (o AccessLevelsAccessLevelBasicConditionOutput) ToAccessLevelsAccessLevelBasicConditionOutput() AccessLevelsAccessLevelBasicConditionOutput
func (AccessLevelsAccessLevelBasicConditionOutput) ToAccessLevelsAccessLevelBasicConditionOutputWithContext ¶
func (o AccessLevelsAccessLevelBasicConditionOutput) ToAccessLevelsAccessLevelBasicConditionOutputWithContext(ctx context.Context) AccessLevelsAccessLevelBasicConditionOutput
type AccessLevelsAccessLevelBasicInput ¶
type AccessLevelsAccessLevelBasicInput interface {
pulumi.Input
ToAccessLevelsAccessLevelBasicOutput() AccessLevelsAccessLevelBasicOutput
ToAccessLevelsAccessLevelBasicOutputWithContext(context.Context) AccessLevelsAccessLevelBasicOutput
}
AccessLevelsAccessLevelBasicInput is an input type that accepts AccessLevelsAccessLevelBasicArgs and AccessLevelsAccessLevelBasicOutput values. You can construct a concrete instance of `AccessLevelsAccessLevelBasicInput` via:
AccessLevelsAccessLevelBasicArgs{...}
type AccessLevelsAccessLevelBasicOutput ¶
type AccessLevelsAccessLevelBasicOutput struct{ *pulumi.OutputState }
func (AccessLevelsAccessLevelBasicOutput) CombiningFunction ¶
func (o AccessLevelsAccessLevelBasicOutput) CombiningFunction() pulumi.StringPtrOutput
How the conditions list should be combined to determine if a request is granted this AccessLevel. If AND is used, each Condition in conditions must be satisfied for the AccessLevel to be applied. If OR is used, at least one Condition in conditions must be satisfied for the AccessLevel to be applied. Default value is `AND`. Possible values are `AND` and `OR`.
func (AccessLevelsAccessLevelBasicOutput) Conditions ¶
func (o AccessLevelsAccessLevelBasicOutput) Conditions() AccessLevelsAccessLevelBasicConditionArrayOutput
A set of requirements for the AccessLevel to be granted. Structure is documented below.
func (AccessLevelsAccessLevelBasicOutput) ElementType ¶
func (AccessLevelsAccessLevelBasicOutput) ElementType() reflect.Type
func (AccessLevelsAccessLevelBasicOutput) ToAccessLevelsAccessLevelBasicOutput ¶
func (o AccessLevelsAccessLevelBasicOutput) ToAccessLevelsAccessLevelBasicOutput() AccessLevelsAccessLevelBasicOutput
func (AccessLevelsAccessLevelBasicOutput) ToAccessLevelsAccessLevelBasicOutputWithContext ¶
func (o AccessLevelsAccessLevelBasicOutput) ToAccessLevelsAccessLevelBasicOutputWithContext(ctx context.Context) AccessLevelsAccessLevelBasicOutput
func (AccessLevelsAccessLevelBasicOutput) ToAccessLevelsAccessLevelBasicPtrOutput ¶
func (o AccessLevelsAccessLevelBasicOutput) ToAccessLevelsAccessLevelBasicPtrOutput() AccessLevelsAccessLevelBasicPtrOutput
func (AccessLevelsAccessLevelBasicOutput) ToAccessLevelsAccessLevelBasicPtrOutputWithContext ¶
func (o AccessLevelsAccessLevelBasicOutput) ToAccessLevelsAccessLevelBasicPtrOutputWithContext(ctx context.Context) AccessLevelsAccessLevelBasicPtrOutput
type AccessLevelsAccessLevelBasicPtrInput ¶
type AccessLevelsAccessLevelBasicPtrInput interface {
pulumi.Input
ToAccessLevelsAccessLevelBasicPtrOutput() AccessLevelsAccessLevelBasicPtrOutput
ToAccessLevelsAccessLevelBasicPtrOutputWithContext(context.Context) AccessLevelsAccessLevelBasicPtrOutput
}
AccessLevelsAccessLevelBasicPtrInput is an input type that accepts AccessLevelsAccessLevelBasicArgs, AccessLevelsAccessLevelBasicPtr and AccessLevelsAccessLevelBasicPtrOutput values. You can construct a concrete instance of `AccessLevelsAccessLevelBasicPtrInput` via:
AccessLevelsAccessLevelBasicArgs{...}
or:
nil
func AccessLevelsAccessLevelBasicPtr ¶
func AccessLevelsAccessLevelBasicPtr(v *AccessLevelsAccessLevelBasicArgs) AccessLevelsAccessLevelBasicPtrInput
type AccessLevelsAccessLevelBasicPtrOutput ¶
type AccessLevelsAccessLevelBasicPtrOutput struct{ *pulumi.OutputState }
func (AccessLevelsAccessLevelBasicPtrOutput) CombiningFunction ¶
func (o AccessLevelsAccessLevelBasicPtrOutput) CombiningFunction() pulumi.StringPtrOutput
How the conditions list should be combined to determine if a request is granted this AccessLevel. If AND is used, each Condition in conditions must be satisfied for the AccessLevel to be applied. If OR is used, at least one Condition in conditions must be satisfied for the AccessLevel to be applied. Default value is `AND`. Possible values are `AND` and `OR`.
func (AccessLevelsAccessLevelBasicPtrOutput) Conditions ¶
func (o AccessLevelsAccessLevelBasicPtrOutput) Conditions() AccessLevelsAccessLevelBasicConditionArrayOutput
A set of requirements for the AccessLevel to be granted. Structure is documented below.
func (AccessLevelsAccessLevelBasicPtrOutput) ElementType ¶
func (AccessLevelsAccessLevelBasicPtrOutput) ElementType() reflect.Type
func (AccessLevelsAccessLevelBasicPtrOutput) ToAccessLevelsAccessLevelBasicPtrOutput ¶
func (o AccessLevelsAccessLevelBasicPtrOutput) ToAccessLevelsAccessLevelBasicPtrOutput() AccessLevelsAccessLevelBasicPtrOutput
func (AccessLevelsAccessLevelBasicPtrOutput) ToAccessLevelsAccessLevelBasicPtrOutputWithContext ¶
func (o AccessLevelsAccessLevelBasicPtrOutput) ToAccessLevelsAccessLevelBasicPtrOutputWithContext(ctx context.Context) AccessLevelsAccessLevelBasicPtrOutput
type AccessLevelsAccessLevelCustom ¶
type AccessLevelsAccessLevelCustom struct {
// Represents a textual expression in the Common Expression Language (CEL) syntax. CEL is a C-like expression language.
// This page details the objects and attributes that are used to the build the CEL expressions for
// custom access levels - https://cloud.google.com/access-context-manager/docs/custom-access-level-spec.
// Structure is documented below.
Expr AccessLevelsAccessLevelCustomExpr `pulumi:"expr"`
}
type AccessLevelsAccessLevelCustomArgs ¶
type AccessLevelsAccessLevelCustomArgs struct {
// Represents a textual expression in the Common Expression Language (CEL) syntax. CEL is a C-like expression language.
// This page details the objects and attributes that are used to the build the CEL expressions for
// custom access levels - https://cloud.google.com/access-context-manager/docs/custom-access-level-spec.
// Structure is documented below.
Expr AccessLevelsAccessLevelCustomExprInput `pulumi:"expr"`
}
func (AccessLevelsAccessLevelCustomArgs) ElementType ¶
func (AccessLevelsAccessLevelCustomArgs) ElementType() reflect.Type
func (AccessLevelsAccessLevelCustomArgs) ToAccessLevelsAccessLevelCustomOutput ¶
func (i AccessLevelsAccessLevelCustomArgs) ToAccessLevelsAccessLevelCustomOutput() AccessLevelsAccessLevelCustomOutput
func (AccessLevelsAccessLevelCustomArgs) ToAccessLevelsAccessLevelCustomOutputWithContext ¶
func (i AccessLevelsAccessLevelCustomArgs) ToAccessLevelsAccessLevelCustomOutputWithContext(ctx context.Context) AccessLevelsAccessLevelCustomOutput
func (AccessLevelsAccessLevelCustomArgs) ToAccessLevelsAccessLevelCustomPtrOutput ¶
func (i AccessLevelsAccessLevelCustomArgs) ToAccessLevelsAccessLevelCustomPtrOutput() AccessLevelsAccessLevelCustomPtrOutput
func (AccessLevelsAccessLevelCustomArgs) ToAccessLevelsAccessLevelCustomPtrOutputWithContext ¶
func (i AccessLevelsAccessLevelCustomArgs) ToAccessLevelsAccessLevelCustomPtrOutputWithContext(ctx context.Context) AccessLevelsAccessLevelCustomPtrOutput
type AccessLevelsAccessLevelCustomExpr ¶
type AccessLevelsAccessLevelCustomExpr struct {
// Description of the expression
Description *string `pulumi:"description"`
// Textual representation of an expression in Common Expression Language syntax.
Expression string `pulumi:"expression"`
// String indicating the location of the expression for error reporting, e.g. a file name and a position in the file
Location *string `pulumi:"location"`
// Title for the expression, i.e. a short string describing its purpose.
Title *string `pulumi:"title"`
}
type AccessLevelsAccessLevelCustomExprArgs ¶
type AccessLevelsAccessLevelCustomExprArgs struct {
// Description of the expression
Description pulumi.StringPtrInput `pulumi:"description"`
// Textual representation of an expression in Common Expression Language syntax.
Expression pulumi.StringInput `pulumi:"expression"`
// String indicating the location of the expression for error reporting, e.g. a file name and a position in the file
Location pulumi.StringPtrInput `pulumi:"location"`
// Title for the expression, i.e. a short string describing its purpose.
Title pulumi.StringPtrInput `pulumi:"title"`
}
func (AccessLevelsAccessLevelCustomExprArgs) ElementType ¶
func (AccessLevelsAccessLevelCustomExprArgs) ElementType() reflect.Type
func (AccessLevelsAccessLevelCustomExprArgs) ToAccessLevelsAccessLevelCustomExprOutput ¶
func (i AccessLevelsAccessLevelCustomExprArgs) ToAccessLevelsAccessLevelCustomExprOutput() AccessLevelsAccessLevelCustomExprOutput
func (AccessLevelsAccessLevelCustomExprArgs) ToAccessLevelsAccessLevelCustomExprOutputWithContext ¶
func (i AccessLevelsAccessLevelCustomExprArgs) ToAccessLevelsAccessLevelCustomExprOutputWithContext(ctx context.Context) AccessLevelsAccessLevelCustomExprOutput
func (AccessLevelsAccessLevelCustomExprArgs) ToAccessLevelsAccessLevelCustomExprPtrOutput ¶
func (i AccessLevelsAccessLevelCustomExprArgs) ToAccessLevelsAccessLevelCustomExprPtrOutput() AccessLevelsAccessLevelCustomExprPtrOutput
func (AccessLevelsAccessLevelCustomExprArgs) ToAccessLevelsAccessLevelCustomExprPtrOutputWithContext ¶
func (i AccessLevelsAccessLevelCustomExprArgs) ToAccessLevelsAccessLevelCustomExprPtrOutputWithContext(ctx context.Context) AccessLevelsAccessLevelCustomExprPtrOutput
type AccessLevelsAccessLevelCustomExprInput ¶
type AccessLevelsAccessLevelCustomExprInput interface {
pulumi.Input
ToAccessLevelsAccessLevelCustomExprOutput() AccessLevelsAccessLevelCustomExprOutput
ToAccessLevelsAccessLevelCustomExprOutputWithContext(context.Context) AccessLevelsAccessLevelCustomExprOutput
}
AccessLevelsAccessLevelCustomExprInput is an input type that accepts AccessLevelsAccessLevelCustomExprArgs and AccessLevelsAccessLevelCustomExprOutput values. You can construct a concrete instance of `AccessLevelsAccessLevelCustomExprInput` via:
AccessLevelsAccessLevelCustomExprArgs{...}
type AccessLevelsAccessLevelCustomExprOutput ¶
type AccessLevelsAccessLevelCustomExprOutput struct{ *pulumi.OutputState }
func (AccessLevelsAccessLevelCustomExprOutput) Description ¶
func (o AccessLevelsAccessLevelCustomExprOutput) Description() pulumi.StringPtrOutput
Description of the expression
func (AccessLevelsAccessLevelCustomExprOutput) ElementType ¶
func (AccessLevelsAccessLevelCustomExprOutput) ElementType() reflect.Type
func (AccessLevelsAccessLevelCustomExprOutput) Expression ¶
func (o AccessLevelsAccessLevelCustomExprOutput) Expression() pulumi.StringOutput
Textual representation of an expression in Common Expression Language syntax.
func (AccessLevelsAccessLevelCustomExprOutput) Location ¶
func (o AccessLevelsAccessLevelCustomExprOutput) Location() pulumi.StringPtrOutput
String indicating the location of the expression for error reporting, e.g. a file name and a position in the file
func (AccessLevelsAccessLevelCustomExprOutput) Title ¶
func (o AccessLevelsAccessLevelCustomExprOutput) Title() pulumi.StringPtrOutput
Title for the expression, i.e. a short string describing its purpose.
func (AccessLevelsAccessLevelCustomExprOutput) ToAccessLevelsAccessLevelCustomExprOutput ¶
func (o AccessLevelsAccessLevelCustomExprOutput) ToAccessLevelsAccessLevelCustomExprOutput() AccessLevelsAccessLevelCustomExprOutput
func (AccessLevelsAccessLevelCustomExprOutput) ToAccessLevelsAccessLevelCustomExprOutputWithContext ¶
func (o AccessLevelsAccessLevelCustomExprOutput) ToAccessLevelsAccessLevelCustomExprOutputWithContext(ctx context.Context) AccessLevelsAccessLevelCustomExprOutput
func (AccessLevelsAccessLevelCustomExprOutput) ToAccessLevelsAccessLevelCustomExprPtrOutput ¶
func (o AccessLevelsAccessLevelCustomExprOutput) ToAccessLevelsAccessLevelCustomExprPtrOutput() AccessLevelsAccessLevelCustomExprPtrOutput
func (AccessLevelsAccessLevelCustomExprOutput) ToAccessLevelsAccessLevelCustomExprPtrOutputWithContext ¶
func (o AccessLevelsAccessLevelCustomExprOutput) ToAccessLevelsAccessLevelCustomExprPtrOutputWithContext(ctx context.Context) AccessLevelsAccessLevelCustomExprPtrOutput
type AccessLevelsAccessLevelCustomExprPtrInput ¶
type AccessLevelsAccessLevelCustomExprPtrInput interface {
pulumi.Input
ToAccessLevelsAccessLevelCustomExprPtrOutput() AccessLevelsAccessLevelCustomExprPtrOutput
ToAccessLevelsAccessLevelCustomExprPtrOutputWithContext(context.Context) AccessLevelsAccessLevelCustomExprPtrOutput
}
AccessLevelsAccessLevelCustomExprPtrInput is an input type that accepts AccessLevelsAccessLevelCustomExprArgs, AccessLevelsAccessLevelCustomExprPtr and AccessLevelsAccessLevelCustomExprPtrOutput values. You can construct a concrete instance of `AccessLevelsAccessLevelCustomExprPtrInput` via:
AccessLevelsAccessLevelCustomExprArgs{...}
or:
nil
func AccessLevelsAccessLevelCustomExprPtr ¶
func AccessLevelsAccessLevelCustomExprPtr(v *AccessLevelsAccessLevelCustomExprArgs) AccessLevelsAccessLevelCustomExprPtrInput
type AccessLevelsAccessLevelCustomExprPtrOutput ¶
type AccessLevelsAccessLevelCustomExprPtrOutput struct{ *pulumi.OutputState }
func (AccessLevelsAccessLevelCustomExprPtrOutput) Description ¶
func (o AccessLevelsAccessLevelCustomExprPtrOutput) Description() pulumi.StringPtrOutput
Description of the expression
func (AccessLevelsAccessLevelCustomExprPtrOutput) ElementType ¶
func (AccessLevelsAccessLevelCustomExprPtrOutput) ElementType() reflect.Type
func (AccessLevelsAccessLevelCustomExprPtrOutput) Expression ¶
func (o AccessLevelsAccessLevelCustomExprPtrOutput) Expression() pulumi.StringPtrOutput
Textual representation of an expression in Common Expression Language syntax.
func (AccessLevelsAccessLevelCustomExprPtrOutput) Location ¶
func (o AccessLevelsAccessLevelCustomExprPtrOutput) Location() pulumi.StringPtrOutput
String indicating the location of the expression for error reporting, e.g. a file name and a position in the file
func (AccessLevelsAccessLevelCustomExprPtrOutput) Title ¶
func (o AccessLevelsAccessLevelCustomExprPtrOutput) Title() pulumi.StringPtrOutput
Title for the expression, i.e. a short string describing its purpose.
func (AccessLevelsAccessLevelCustomExprPtrOutput) ToAccessLevelsAccessLevelCustomExprPtrOutput ¶
func (o AccessLevelsAccessLevelCustomExprPtrOutput) ToAccessLevelsAccessLevelCustomExprPtrOutput() AccessLevelsAccessLevelCustomExprPtrOutput
func (AccessLevelsAccessLevelCustomExprPtrOutput) ToAccessLevelsAccessLevelCustomExprPtrOutputWithContext ¶
func (o AccessLevelsAccessLevelCustomExprPtrOutput) ToAccessLevelsAccessLevelCustomExprPtrOutputWithContext(ctx context.Context) AccessLevelsAccessLevelCustomExprPtrOutput
type AccessLevelsAccessLevelCustomInput ¶
type AccessLevelsAccessLevelCustomInput interface {
pulumi.Input
ToAccessLevelsAccessLevelCustomOutput() AccessLevelsAccessLevelCustomOutput
ToAccessLevelsAccessLevelCustomOutputWithContext(context.Context) AccessLevelsAccessLevelCustomOutput
}
AccessLevelsAccessLevelCustomInput is an input type that accepts AccessLevelsAccessLevelCustomArgs and AccessLevelsAccessLevelCustomOutput values. You can construct a concrete instance of `AccessLevelsAccessLevelCustomInput` via:
AccessLevelsAccessLevelCustomArgs{...}
type AccessLevelsAccessLevelCustomOutput ¶
type AccessLevelsAccessLevelCustomOutput struct{ *pulumi.OutputState }
func (AccessLevelsAccessLevelCustomOutput) ElementType ¶
func (AccessLevelsAccessLevelCustomOutput) ElementType() reflect.Type
func (AccessLevelsAccessLevelCustomOutput) Expr ¶
Represents a textual expression in the Common Expression Language (CEL) syntax. CEL is a C-like expression language. This page details the objects and attributes that are used to the build the CEL expressions for custom access levels - https://cloud.google.com/access-context-manager/docs/custom-access-level-spec. Structure is documented below.
func (AccessLevelsAccessLevelCustomOutput) ToAccessLevelsAccessLevelCustomOutput ¶
func (o AccessLevelsAccessLevelCustomOutput) ToAccessLevelsAccessLevelCustomOutput() AccessLevelsAccessLevelCustomOutput
func (AccessLevelsAccessLevelCustomOutput) ToAccessLevelsAccessLevelCustomOutputWithContext ¶
func (o AccessLevelsAccessLevelCustomOutput) ToAccessLevelsAccessLevelCustomOutputWithContext(ctx context.Context) AccessLevelsAccessLevelCustomOutput
func (AccessLevelsAccessLevelCustomOutput) ToAccessLevelsAccessLevelCustomPtrOutput ¶
func (o AccessLevelsAccessLevelCustomOutput) ToAccessLevelsAccessLevelCustomPtrOutput() AccessLevelsAccessLevelCustomPtrOutput
func (AccessLevelsAccessLevelCustomOutput) ToAccessLevelsAccessLevelCustomPtrOutputWithContext ¶
func (o AccessLevelsAccessLevelCustomOutput) ToAccessLevelsAccessLevelCustomPtrOutputWithContext(ctx context.Context) AccessLevelsAccessLevelCustomPtrOutput
type AccessLevelsAccessLevelCustomPtrInput ¶
type AccessLevelsAccessLevelCustomPtrInput interface {
pulumi.Input
ToAccessLevelsAccessLevelCustomPtrOutput() AccessLevelsAccessLevelCustomPtrOutput
ToAccessLevelsAccessLevelCustomPtrOutputWithContext(context.Context) AccessLevelsAccessLevelCustomPtrOutput
}
AccessLevelsAccessLevelCustomPtrInput is an input type that accepts AccessLevelsAccessLevelCustomArgs, AccessLevelsAccessLevelCustomPtr and AccessLevelsAccessLevelCustomPtrOutput values. You can construct a concrete instance of `AccessLevelsAccessLevelCustomPtrInput` via:
AccessLevelsAccessLevelCustomArgs{...}
or:
nil
func AccessLevelsAccessLevelCustomPtr ¶
func AccessLevelsAccessLevelCustomPtr(v *AccessLevelsAccessLevelCustomArgs) AccessLevelsAccessLevelCustomPtrInput
type AccessLevelsAccessLevelCustomPtrOutput ¶
type AccessLevelsAccessLevelCustomPtrOutput struct{ *pulumi.OutputState }
func (AccessLevelsAccessLevelCustomPtrOutput) ElementType ¶
func (AccessLevelsAccessLevelCustomPtrOutput) ElementType() reflect.Type
func (AccessLevelsAccessLevelCustomPtrOutput) Expr ¶
Represents a textual expression in the Common Expression Language (CEL) syntax. CEL is a C-like expression language. This page details the objects and attributes that are used to the build the CEL expressions for custom access levels - https://cloud.google.com/access-context-manager/docs/custom-access-level-spec. Structure is documented below.
func (AccessLevelsAccessLevelCustomPtrOutput) ToAccessLevelsAccessLevelCustomPtrOutput ¶
func (o AccessLevelsAccessLevelCustomPtrOutput) ToAccessLevelsAccessLevelCustomPtrOutput() AccessLevelsAccessLevelCustomPtrOutput
func (AccessLevelsAccessLevelCustomPtrOutput) ToAccessLevelsAccessLevelCustomPtrOutputWithContext ¶
func (o AccessLevelsAccessLevelCustomPtrOutput) ToAccessLevelsAccessLevelCustomPtrOutputWithContext(ctx context.Context) AccessLevelsAccessLevelCustomPtrOutput
type AccessLevelsAccessLevelInput ¶
type AccessLevelsAccessLevelInput interface {
pulumi.Input
ToAccessLevelsAccessLevelOutput() AccessLevelsAccessLevelOutput
ToAccessLevelsAccessLevelOutputWithContext(context.Context) AccessLevelsAccessLevelOutput
}
AccessLevelsAccessLevelInput is an input type that accepts AccessLevelsAccessLevelArgs and AccessLevelsAccessLevelOutput values. You can construct a concrete instance of `AccessLevelsAccessLevelInput` via:
AccessLevelsAccessLevelArgs{...}
type AccessLevelsAccessLevelOutput ¶
type AccessLevelsAccessLevelOutput struct{ *pulumi.OutputState }
func (AccessLevelsAccessLevelOutput) Basic ¶
func (o AccessLevelsAccessLevelOutput) Basic() AccessLevelsAccessLevelBasicPtrOutput
A set of predefined conditions for the access level and a combining function. Structure is documented below.
func (AccessLevelsAccessLevelOutput) Custom ¶
func (o AccessLevelsAccessLevelOutput) Custom() AccessLevelsAccessLevelCustomPtrOutput
Custom access level conditions are set using the Cloud Common Expression Language to represent the necessary conditions for the level to apply to a request. See CEL spec at: https://github.com/google/cel-spec. Structure is documented below.
func (AccessLevelsAccessLevelOutput) Description ¶
func (o AccessLevelsAccessLevelOutput) Description() pulumi.StringPtrOutput
Description of the expression
func (AccessLevelsAccessLevelOutput) ElementType ¶
func (AccessLevelsAccessLevelOutput) ElementType() reflect.Type
func (AccessLevelsAccessLevelOutput) Name ¶
func (o AccessLevelsAccessLevelOutput) Name() pulumi.StringOutput
Resource name for the Access Level. The shortName component must begin with a letter and only include alphanumeric and '_'. Format: accessPolicies/{policy_id}/accessLevels/{short_name}
func (AccessLevelsAccessLevelOutput) Title ¶
func (o AccessLevelsAccessLevelOutput) Title() pulumi.StringOutput
Title for the expression, i.e. a short string describing its purpose.
func (AccessLevelsAccessLevelOutput) ToAccessLevelsAccessLevelOutput ¶
func (o AccessLevelsAccessLevelOutput) ToAccessLevelsAccessLevelOutput() AccessLevelsAccessLevelOutput
func (AccessLevelsAccessLevelOutput) ToAccessLevelsAccessLevelOutputWithContext ¶
func (o AccessLevelsAccessLevelOutput) ToAccessLevelsAccessLevelOutputWithContext(ctx context.Context) AccessLevelsAccessLevelOutput
type AccessLevelsArgs ¶
type AccessLevelsArgs struct {
// The desired Access Levels that should replace all existing Access Levels in the Access Policy.
// Structure is documented below.
AccessLevels AccessLevelsAccessLevelArrayInput
// The AccessPolicy this AccessLevel lives in.
// Format: accessPolicies/{policy_id}
Parent pulumi.StringInput
}
The set of arguments for constructing a AccessLevels resource.
func (AccessLevelsArgs) ElementType ¶
func (AccessLevelsArgs) ElementType() reflect.Type
type AccessLevelsCondition ¶ added in v4.1.0
type AccessLevelsCondition struct {
pulumi.CustomResourceState
// The name of the Access Level to add this condition to.
AccessLevel pulumi.StringOutput `pulumi:"accessLevel"`
// Device specific restrictions, all restrictions must hold for
// the Condition to be true. If not specified, all devices are
// allowed.
// Structure is documented below.
DevicePolicy AccessLevelsConditionDevicePolicyPtrOutput `pulumi:"devicePolicy"`
// A list of CIDR block IP subnetwork specification. May be IPv4
// or IPv6.
// Note that for a CIDR IP address block, the specified IP address
// portion must be properly truncated (i.e. all the host bits must
// be zero) or the input is considered malformed. For example,
// "192.0.2.0/24" is accepted but "192.0.2.1/24" is not. Similarly,
// for IPv6, "2001:db8::/32" is accepted whereas "2001:db8::1/32"
// is not. The originating IP of a request must be in one of the
// listed subnets in order for this Condition to be true.
// If empty, all IP addresses are allowed.
IpSubnetworks pulumi.StringArrayOutput `pulumi:"ipSubnetworks"`
// An allowed list of members (users, service accounts).
// Using groups is not supported yet.
// The signed-in user originating the request must be a part of one
// of the provided members. If not specified, a request may come
// from any user (logged in/not logged in, not present in any
// groups, etc.).
// Formats: `user:{emailid}`, `serviceAccount:{emailid}`
Members pulumi.StringArrayOutput `pulumi:"members"`
// Whether to negate the Condition. If true, the Condition becomes
// a NAND over its non-empty fields, each field must be false for
// the Condition overall to be satisfied. Defaults to false.
Negate pulumi.BoolPtrOutput `pulumi:"negate"`
// The request must originate from one of the provided
// countries/regions.
// Format: A valid ISO 3166-1 alpha-2 code.
Regions pulumi.StringArrayOutput `pulumi:"regions"`
// A list of other access levels defined in the same Policy,
// referenced by resource name. Referencing an AccessLevel which
// does not exist is an error. All access levels listed must be
// granted for the Condition to be true.
// Format: accessPolicies/{policy_id}/accessLevels/{short_name}
RequiredAccessLevels pulumi.StringArrayOutput `pulumi:"requiredAccessLevels"`
}
Allows configuring a single access level condition to be appended to an access level's conditions. This resource is intended to be used in cases where it is not possible to compile a full list of conditions to include in a `accesscontextmanager.AccessLevel` resource, to enable them to be added separately.
> **Note:** If this resource is used alongside a `accesscontextmanager.AccessLevel` resource, the access level resource must have a `lifecycle` block with `ignoreChanges = [basic[0].conditions]` so they don't fight over which service accounts should be included.
To get more information about AccessLevelCondition, see:
* [API documentation](https://cloud.google.com/access-context-manager/docs/reference/rest/v1/accessPolicies.accessLevels) * How-to Guides
- [Access Policy Quickstart](https://cloud.google.com/access-context-manager/docs/quickstart)
> **Warning:** If you are using User ADCs (Application Default Credentials) with this resource, you must specify a `billingProject` and set `userProjectOverride` to true in the provider configuration. Otherwise the ACM API will return a 403 error. Your account must have the `serviceusage.services.use` permission on the `billingProject` you defined.
## Example Usage
func GetAccessLevelsCondition ¶ added in v4.1.0
func GetAccessLevelsCondition(ctx *pulumi.Context, name string, id pulumi.IDInput, state *AccessLevelsConditionState, opts ...pulumi.ResourceOption) (*AccessLevelsCondition, error)
GetAccessLevelsCondition gets an existing AccessLevelsCondition resource's state with the given name, ID, and optional state properties that are used to uniquely qualify the lookup (nil if not required).
func NewAccessLevelsCondition ¶ added in v4.1.0
func NewAccessLevelsCondition(ctx *pulumi.Context, name string, args *AccessLevelsConditionArgs, opts ...pulumi.ResourceOption) (*AccessLevelsCondition, error)
NewAccessLevelsCondition registers a new resource with the given unique name, arguments, and options.
type AccessLevelsConditionArgs ¶ added in v4.1.0
type AccessLevelsConditionArgs struct {
// The name of the Access Level to add this condition to.
AccessLevel pulumi.StringInput
// Device specific restrictions, all restrictions must hold for
// the Condition to be true. If not specified, all devices are
// allowed.
// Structure is documented below.
DevicePolicy AccessLevelsConditionDevicePolicyPtrInput
// A list of CIDR block IP subnetwork specification. May be IPv4
// or IPv6.
// Note that for a CIDR IP address block, the specified IP address
// portion must be properly truncated (i.e. all the host bits must
// be zero) or the input is considered malformed. For example,
// "192.0.2.0/24" is accepted but "192.0.2.1/24" is not. Similarly,
// for IPv6, "2001:db8::/32" is accepted whereas "2001:db8::1/32"
// is not. The originating IP of a request must be in one of the
// listed subnets in order for this Condition to be true.
// If empty, all IP addresses are allowed.
IpSubnetworks pulumi.StringArrayInput
// An allowed list of members (users, service accounts).
// Using groups is not supported yet.
// The signed-in user originating the request must be a part of one
// of the provided members. If not specified, a request may come
// from any user (logged in/not logged in, not present in any
// groups, etc.).
// Formats: `user:{emailid}`, `serviceAccount:{emailid}`
Members pulumi.StringArrayInput
// Whether to negate the Condition. If true, the Condition becomes
// a NAND over its non-empty fields, each field must be false for
// the Condition overall to be satisfied. Defaults to false.
Negate pulumi.BoolPtrInput
// The request must originate from one of the provided
// countries/regions.
// Format: A valid ISO 3166-1 alpha-2 code.
Regions pulumi.StringArrayInput
// A list of other access levels defined in the same Policy,
// referenced by resource name. Referencing an AccessLevel which
// does not exist is an error. All access levels listed must be
// granted for the Condition to be true.
// Format: accessPolicies/{policy_id}/accessLevels/{short_name}
RequiredAccessLevels pulumi.StringArrayInput
}
The set of arguments for constructing a AccessLevelsCondition resource.
func (AccessLevelsConditionArgs) ElementType ¶ added in v4.1.0
func (AccessLevelsConditionArgs) ElementType() reflect.Type
type AccessLevelsConditionState ¶ added in v4.1.0
type AccessLevelsConditionState struct {
// The name of the Access Level to add this condition to.
AccessLevel pulumi.StringPtrInput
// Device specific restrictions, all restrictions must hold for
// the Condition to be true. If not specified, all devices are
// allowed.
// Structure is documented below.
DevicePolicy AccessLevelsConditionDevicePolicyPtrInput
// A list of CIDR block IP subnetwork specification. May be IPv4
// or IPv6.
// Note that for a CIDR IP address block, the specified IP address
// portion must be properly truncated (i.e. all the host bits must
// be zero) or the input is considered malformed. For example,
// "192.0.2.0/24" is accepted but "192.0.2.1/24" is not. Similarly,
// for IPv6, "2001:db8::/32" is accepted whereas "2001:db8::1/32"
// is not. The originating IP of a request must be in one of the
// listed subnets in order for this Condition to be true.
// If empty, all IP addresses are allowed.
IpSubnetworks pulumi.StringArrayInput
// An allowed list of members (users, service accounts).
// Using groups is not supported yet.
// The signed-in user originating the request must be a part of one
// of the provided members. If not specified, a request may come
// from any user (logged in/not logged in, not present in any
// groups, etc.).
// Formats: `user:{emailid}`, `serviceAccount:{emailid}`
Members pulumi.StringArrayInput
// Whether to negate the Condition. If true, the Condition becomes
// a NAND over its non-empty fields, each field must be false for
// the Condition overall to be satisfied. Defaults to false.
Negate pulumi.BoolPtrInput
// The request must originate from one of the provided
// countries/regions.
// Format: A valid ISO 3166-1 alpha-2 code.
Regions pulumi.StringArrayInput
// A list of other access levels defined in the same Policy,
// referenced by resource name. Referencing an AccessLevel which
// does not exist is an error. All access levels listed must be
// granted for the Condition to be true.
// Format: accessPolicies/{policy_id}/accessLevels/{short_name}
RequiredAccessLevels pulumi.StringArrayInput
}
func (AccessLevelsConditionState) ElementType ¶ added in v4.1.0
func (AccessLevelsConditionState) ElementType() reflect.Type
type AccessLevelsInput ¶ added in v4.4.0
type AccessLevelsInput interface {
pulumi.Input
ToAccessLevelsOutput() AccessLevelsOutput
ToAccessLevelsOutputWithContext(ctx context.Context) AccessLevelsOutput
}
type AccessLevelsOutput ¶ added in v4.4.0
type AccessLevelsOutput struct {
*pulumi.OutputState
}
func (AccessLevelsOutput) ElementType ¶ added in v4.4.0
func (AccessLevelsOutput) ElementType() reflect.Type
func (AccessLevelsOutput) ToAccessLevelsOutput ¶ added in v4.4.0
func (o AccessLevelsOutput) ToAccessLevelsOutput() AccessLevelsOutput
func (AccessLevelsOutput) ToAccessLevelsOutputWithContext ¶ added in v4.4.0
func (o AccessLevelsOutput) ToAccessLevelsOutputWithContext(ctx context.Context) AccessLevelsOutput
type AccessLevelsState ¶
type AccessLevelsState struct {
// The desired Access Levels that should replace all existing Access Levels in the Access Policy.
// Structure is documented below.
AccessLevels AccessLevelsAccessLevelArrayInput
// The AccessPolicy this AccessLevel lives in.
// Format: accessPolicies/{policy_id}
Parent pulumi.StringPtrInput
}
func (AccessLevelsState) ElementType ¶
func (AccessLevelsState) ElementType() reflect.Type
type AccessPolicy ¶
type AccessPolicy struct {
pulumi.CustomResourceState
// Time the AccessPolicy was created in UTC.
CreateTime pulumi.StringOutput `pulumi:"createTime"`
// Resource name of the AccessPolicy. Format: {policy_id}
Name pulumi.StringOutput `pulumi:"name"`
// The parent of this AccessPolicy in the Cloud Resource Hierarchy.
// Format: organizations/{organization_id}
Parent pulumi.StringOutput `pulumi:"parent"`
// Human readable title. Does not affect behavior.
Title pulumi.StringOutput `pulumi:"title"`
// Time the AccessPolicy was updated in UTC.
UpdateTime pulumi.StringOutput `pulumi:"updateTime"`
}
AccessPolicy is a container for AccessLevels (which define the necessary attributes to use GCP services) and ServicePerimeters (which define regions of services able to freely pass data within a perimeter). An access policy is globally visible within an organization, and the restrictions it specifies apply to all projects within an organization.
To get more information about AccessPolicy, see:
* [API documentation](https://cloud.google.com/access-context-manager/docs/reference/rest/v1/accessPolicies) * How-to Guides
- [Access Policy Quickstart](https://cloud.google.com/access-context-manager/docs/quickstart)
> **Warning:** If you are using User ADCs (Application Default Credentials) with this resource, you must specify a `billingProject` and set `userProjectOverride` to true in the provider configuration. Otherwise the ACM API will return a 403 error. Your account must have the `serviceusage.services.use` permission on the `billingProject` you defined.
## Example Usage ### Access Context Manager Access Policy Basic
```go package main
import (
"github.com/pulumi/pulumi-gcp/sdk/v4/go/gcp/accesscontextmanager" "github.com/pulumi/pulumi/sdk/v2/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
_, err := accesscontextmanager.NewAccessPolicy(ctx, "access_policy", &accesscontextmanager.AccessPolicyArgs{
Parent: pulumi.String("organizations/123456789"),
Title: pulumi.String("my policy"),
})
if err != nil {
return err
}
return nil
})
}
```
## Import
AccessPolicy can be imported using any of these accepted formats ¶
```sh
$ pulumi import gcp:accesscontextmanager/accessPolicy:AccessPolicy default {{name}}
```
func GetAccessPolicy ¶
func GetAccessPolicy(ctx *pulumi.Context, name string, id pulumi.IDInput, state *AccessPolicyState, opts ...pulumi.ResourceOption) (*AccessPolicy, error)
GetAccessPolicy gets an existing AccessPolicy resource's state with the given name, ID, and optional state properties that are used to uniquely qualify the lookup (nil if not required).
func NewAccessPolicy ¶
func NewAccessPolicy(ctx *pulumi.Context, name string, args *AccessPolicyArgs, opts ...pulumi.ResourceOption) (*AccessPolicy, error)
NewAccessPolicy registers a new resource with the given unique name, arguments, and options.
func (*AccessPolicy) ElementType ¶ added in v4.4.0
func (*AccessPolicy) ElementType() reflect.Type
func (*AccessPolicy) ToAccessPolicyOutput ¶ added in v4.4.0
func (i *AccessPolicy) ToAccessPolicyOutput() AccessPolicyOutput
func (*AccessPolicy) ToAccessPolicyOutputWithContext ¶ added in v4.4.0
func (i *AccessPolicy) ToAccessPolicyOutputWithContext(ctx context.Context) AccessPolicyOutput
type AccessPolicyArgs ¶
type AccessPolicyArgs struct {
// The parent of this AccessPolicy in the Cloud Resource Hierarchy.
// Format: organizations/{organization_id}
Parent pulumi.StringInput
// Human readable title. Does not affect behavior.
Title pulumi.StringInput
}
The set of arguments for constructing a AccessPolicy resource.
func (AccessPolicyArgs) ElementType ¶
func (AccessPolicyArgs) ElementType() reflect.Type
type AccessPolicyInput ¶ added in v4.4.0
type AccessPolicyInput interface {
pulumi.Input
ToAccessPolicyOutput() AccessPolicyOutput
ToAccessPolicyOutputWithContext(ctx context.Context) AccessPolicyOutput
}
type AccessPolicyOutput ¶ added in v4.4.0
type AccessPolicyOutput struct {
*pulumi.OutputState
}
func (AccessPolicyOutput) ElementType ¶ added in v4.4.0
func (AccessPolicyOutput) ElementType() reflect.Type
func (AccessPolicyOutput) ToAccessPolicyOutput ¶ added in v4.4.0
func (o AccessPolicyOutput) ToAccessPolicyOutput() AccessPolicyOutput
func (AccessPolicyOutput) ToAccessPolicyOutputWithContext ¶ added in v4.4.0
func (o AccessPolicyOutput) ToAccessPolicyOutputWithContext(ctx context.Context) AccessPolicyOutput
type AccessPolicyState ¶
type AccessPolicyState struct {
// Time the AccessPolicy was created in UTC.
CreateTime pulumi.StringPtrInput
// Resource name of the AccessPolicy. Format: {policy_id}
Name pulumi.StringPtrInput
// The parent of this AccessPolicy in the Cloud Resource Hierarchy.
// Format: organizations/{organization_id}
Parent pulumi.StringPtrInput
// Human readable title. Does not affect behavior.
Title pulumi.StringPtrInput
// Time the AccessPolicy was updated in UTC.
UpdateTime pulumi.StringPtrInput
}
func (AccessPolicyState) ElementType ¶
func (AccessPolicyState) ElementType() reflect.Type
type GcpUserAccessBinding ¶ added in v4.8.0
type GcpUserAccessBinding struct {
pulumi.CustomResourceState
// Required. Access level that a user must have to be granted access. Only one access level is supported, not multiple. This repeated field must have exactly one element. Example: "accessPolicies/9522/accessLevels/device_trusted"
AccessLevels pulumi.StringOutput `pulumi:"accessLevels"`
// Required. Immutable. Google Group id whose members are subject to this binding's restrictions. See "id" in the G Suite Directory API's Groups resource. If a group's email address/alias is changed, this resource will continue to point at the changed group. This field does not accept group email addresses or aliases. Example: "01d520gv4vjcrht"
GroupKey pulumi.StringOutput `pulumi:"groupKey"`
// Immutable. Assigned by the server during creation. The last segment has an arbitrary length and has only URI unreserved
// characters (as defined by RFC 3986 Section 2.3). Should not be specified by the client during creation. Example:
// "organizations/256/gcpUserAccessBindings/b3-BhcX_Ud5N"
Name pulumi.StringOutput `pulumi:"name"`
// Required. ID of the parent organization.
OrganizationId pulumi.StringOutput `pulumi:"organizationId"`
}
Restricts access to Cloud Console and Google Cloud APIs for a set of users using Context-Aware Access.
To get more information about GcpUserAccessBinding, see:
* [API documentation](https://cloud.google.com/access-context-manager/docs/reference/rest/v1/organizations.gcpUserAccessBindings)
## Example Usage
## Import
GcpUserAccessBinding can be imported using any of these accepted formats ¶
```sh
$ pulumi import gcp:accesscontextmanager/gcpUserAccessBinding:GcpUserAccessBinding default {{name}}
```
func GetGcpUserAccessBinding ¶ added in v4.8.0
func GetGcpUserAccessBinding(ctx *pulumi.Context, name string, id pulumi.IDInput, state *GcpUserAccessBindingState, opts ...pulumi.ResourceOption) (*GcpUserAccessBinding, error)
GetGcpUserAccessBinding gets an existing GcpUserAccessBinding resource's state with the given name, ID, and optional state properties that are used to uniquely qualify the lookup (nil if not required).
func NewGcpUserAccessBinding ¶ added in v4.8.0
func NewGcpUserAccessBinding(ctx *pulumi.Context, name string, args *GcpUserAccessBindingArgs, opts ...pulumi.ResourceOption) (*GcpUserAccessBinding, error)
NewGcpUserAccessBinding registers a new resource with the given unique name, arguments, and options.
func (*GcpUserAccessBinding) ElementType ¶ added in v4.8.0
func (*GcpUserAccessBinding) ElementType() reflect.Type
func (*GcpUserAccessBinding) ToGcpUserAccessBindingOutput ¶ added in v4.8.0
func (i *GcpUserAccessBinding) ToGcpUserAccessBindingOutput() GcpUserAccessBindingOutput
func (*GcpUserAccessBinding) ToGcpUserAccessBindingOutputWithContext ¶ added in v4.8.0
func (i *GcpUserAccessBinding) ToGcpUserAccessBindingOutputWithContext(ctx context.Context) GcpUserAccessBindingOutput
type GcpUserAccessBindingArgs ¶ added in v4.8.0
type GcpUserAccessBindingArgs struct {
// Required. Access level that a user must have to be granted access. Only one access level is supported, not multiple. This repeated field must have exactly one element. Example: "accessPolicies/9522/accessLevels/device_trusted"
AccessLevels pulumi.StringInput
// Required. Immutable. Google Group id whose members are subject to this binding's restrictions. See "id" in the G Suite Directory API's Groups resource. If a group's email address/alias is changed, this resource will continue to point at the changed group. This field does not accept group email addresses or aliases. Example: "01d520gv4vjcrht"
GroupKey pulumi.StringInput
// Required. ID of the parent organization.
OrganizationId pulumi.StringInput
}
The set of arguments for constructing a GcpUserAccessBinding resource.
func (GcpUserAccessBindingArgs) ElementType ¶ added in v4.8.0
func (GcpUserAccessBindingArgs) ElementType() reflect.Type
type GcpUserAccessBindingInput ¶ added in v4.8.0
type GcpUserAccessBindingInput interface {
pulumi.Input
ToGcpUserAccessBindingOutput() GcpUserAccessBindingOutput
ToGcpUserAccessBindingOutputWithContext(ctx context.Context) GcpUserAccessBindingOutput
}
type GcpUserAccessBindingOutput ¶ added in v4.8.0
type GcpUserAccessBindingOutput struct {
*pulumi.OutputState
}
func (GcpUserAccessBindingOutput) ElementType ¶ added in v4.8.0
func (GcpUserAccessBindingOutput) ElementType() reflect.Type
func (GcpUserAccessBindingOutput) ToGcpUserAccessBindingOutput ¶ added in v4.8.0
func (o GcpUserAccessBindingOutput) ToGcpUserAccessBindingOutput() GcpUserAccessBindingOutput
func (GcpUserAccessBindingOutput) ToGcpUserAccessBindingOutputWithContext ¶ added in v4.8.0
func (o GcpUserAccessBindingOutput) ToGcpUserAccessBindingOutputWithContext(ctx context.Context) GcpUserAccessBindingOutput
type GcpUserAccessBindingState ¶ added in v4.8.0
type GcpUserAccessBindingState struct {
// Required. Access level that a user must have to be granted access. Only one access level is supported, not multiple. This repeated field must have exactly one element. Example: "accessPolicies/9522/accessLevels/device_trusted"
AccessLevels pulumi.StringPtrInput
// Required. Immutable. Google Group id whose members are subject to this binding's restrictions. See "id" in the G Suite Directory API's Groups resource. If a group's email address/alias is changed, this resource will continue to point at the changed group. This field does not accept group email addresses or aliases. Example: "01d520gv4vjcrht"
GroupKey pulumi.StringPtrInput
// Immutable. Assigned by the server during creation. The last segment has an arbitrary length and has only URI unreserved
// characters (as defined by RFC 3986 Section 2.3). Should not be specified by the client during creation. Example:
// "organizations/256/gcpUserAccessBindings/b3-BhcX_Ud5N"
Name pulumi.StringPtrInput
// Required. ID of the parent organization.
OrganizationId pulumi.StringPtrInput
}
func (GcpUserAccessBindingState) ElementType ¶ added in v4.8.0
func (GcpUserAccessBindingState) ElementType() reflect.Type
type ServicePerimeter ¶
type ServicePerimeter struct {
pulumi.CustomResourceState
// Time the AccessPolicy was created in UTC.
CreateTime pulumi.StringOutput `pulumi:"createTime"`
// Description of the ServicePerimeter and its use. Does not affect
// behavior.
Description pulumi.StringPtrOutput `pulumi:"description"`
// Resource name for the ServicePerimeter. The shortName component must
// begin with a letter and only include alphanumeric and '_'.
// Format: accessPolicies/{policy_id}/servicePerimeters/{short_name}
Name pulumi.StringOutput `pulumi:"name"`
// The AccessPolicy this ServicePerimeter lives in.
// Format: accessPolicies/{policy_id}
Parent pulumi.StringOutput `pulumi:"parent"`
// Specifies the type of the Perimeter. There are two types: regular and
// bridge. Regular Service Perimeter contains resources, access levels,
// and restricted services. Every resource can be in at most
// ONE regular Service Perimeter.
// In addition to being in a regular service perimeter, a resource can also
// be in zero or more perimeter bridges. A perimeter bridge only contains
// resources. Cross project operations are permitted if all effected
// resources share some perimeter (whether bridge or regular). Perimeter
// Bridge does not contain access levels or services: those are governed
// entirely by the regular perimeter that resource is in.
// Perimeter Bridges are typically useful when building more complex
// topologies with many independent perimeters that need to share some data
// with a common perimeter, but should not be able to share data among
// themselves.
// Default value is `PERIMETER_TYPE_REGULAR`.
// Possible values are `PERIMETER_TYPE_REGULAR` and `PERIMETER_TYPE_BRIDGE`.
PerimeterType pulumi.StringPtrOutput `pulumi:"perimeterType"`
// Proposed (or dry run) ServicePerimeter configuration.
// This configuration allows to specify and test ServicePerimeter configuration
// without enforcing actual access restrictions. Only allowed to be set when
// the `useExplicitDryRunSpec` flag is set.
// Structure is documented below.
Spec ServicePerimeterSpecPtrOutput `pulumi:"spec"`
// ServicePerimeter configuration. Specifies sets of resources,
// restricted services and access levels that determine
// perimeter content and boundaries.
// Structure is documented below.
Status ServicePerimeterStatusPtrOutput `pulumi:"status"`
// Human readable title. Must be unique within the Policy.
Title pulumi.StringOutput `pulumi:"title"`
// Time the AccessPolicy was updated in UTC.
UpdateTime pulumi.StringOutput `pulumi:"updateTime"`
// Use explicit dry run spec flag. Ordinarily, a dry-run spec implicitly exists
// for all Service Perimeters, and that spec is identical to the status for those
// Service Perimeters. When this flag is set, it inhibits the generation of the
// implicit spec, thereby allowing the user to explicitly provide a
// configuration ("spec") to use in a dry-run version of the Service Perimeter.
// This allows the user to test changes to the enforced config ("status") without
// actually enforcing them. This testing is done through analyzing the differences
// between currently enforced and suggested restrictions. useExplicitDryRunSpec must
// bet set to True if any of the fields in the spec are set to non-default values.
UseExplicitDryRunSpec pulumi.BoolPtrOutput `pulumi:"useExplicitDryRunSpec"`
}
ServicePerimeter describes a set of GCP resources which can freely import and export data amongst themselves, but not export outside of the ServicePerimeter. If a request with a source within this ServicePerimeter has a target outside of the ServicePerimeter, the request will be blocked. Otherwise the request is allowed. There are two types of Service Perimeter
- Regular and Bridge. Regular Service Perimeters cannot overlap, a single GCP project can only belong to a single regular Service Perimeter. Service Perimeter Bridges can contain only GCP projects as members, a single GCP project may belong to multiple Service Perimeter Bridges.
To get more information about ServicePerimeter, see:
* [API documentation](https://cloud.google.com/access-context-manager/docs/reference/rest/v1/accessPolicies.servicePerimeters) * How-to Guides
- [Service Perimeter Quickstart](https://cloud.google.com/vpc-service-controls/docs/quickstart)
> **Warning:** If you are using User ADCs (Application Default Credentials) with this resource, you must specify a `billingProject` and set `userProjectOverride` to true in the provider configuration. Otherwise the ACM API will return a 403 error. Your account must have the `serviceusage.services.use` permission on the `billingProject` you defined.
## Example Usage ### Access Context Manager Service Perimeter Basic
```go package main
import (
"fmt" "github.com/pulumi/pulumi-gcp/sdk/v4/go/gcp/accesscontextmanager" "github.com/pulumi/pulumi/sdk/v2/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
_, err := accesscontextmanager.NewAccessPolicy(ctx, "access_policy", &accesscontextmanager.AccessPolicyArgs{
Parent: pulumi.String("organizations/123456789"),
Title: pulumi.String("my policy"),
})
if err != nil {
return err
}
_, err = accesscontextmanager.NewServicePerimeter(ctx, "service_perimeter", &accesscontextmanager.ServicePerimeterArgs{
Parent: access_policy.Name.ApplyT(func(name string) (string, error) {
return fmt.Sprintf("%v%v", "accessPolicies/", name), nil
}).(pulumi.StringOutput),
Status: &accesscontextmanager.ServicePerimeterStatusArgs{
RestrictedServices: pulumi.StringArray{
pulumi.String("storage.googleapis.com"),
},
},
Title: pulumi.String("restrict_storage"),
})
if err != nil {
return err
}
_, err = accesscontextmanager.NewAccessLevel(ctx, "access_level", &accesscontextmanager.AccessLevelArgs{
Basic: &accesscontextmanager.AccessLevelBasicArgs{
Conditions: accesscontextmanager.AccessLevelBasicConditionArray{
&accesscontextmanager.AccessLevelBasicConditionArgs{
DevicePolicy: &accesscontextmanager.AccessLevelBasicConditionDevicePolicyArgs{
OsConstraints: accesscontextmanager.AccessLevelBasicConditionDevicePolicyOsConstraintArray{
&accesscontextmanager.AccessLevelBasicConditionDevicePolicyOsConstraintArgs{
OsType: pulumi.String("DESKTOP_CHROME_OS"),
},
},
RequireScreenLock: pulumi.Bool(false),
},
Regions: pulumi.StringArray{
pulumi.String("CH"),
pulumi.String("IT"),
pulumi.String("US"),
},
},
},
},
Parent: access_policy.Name.ApplyT(func(name string) (string, error) {
return fmt.Sprintf("%v%v", "accessPolicies/", name), nil
}).(pulumi.StringOutput),
Title: pulumi.String("chromeos_no_lock"),
})
if err != nil {
return err
}
return nil
})
}
``` ### Access Context Manager Service Perimeter Dry Run
```go package main
import (
"fmt" "github.com/pulumi/pulumi-gcp/sdk/v4/go/gcp/accesscontextmanager" "github.com/pulumi/pulumi/sdk/v2/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
_, err := accesscontextmanager.NewAccessPolicy(ctx, "access_policy", &accesscontextmanager.AccessPolicyArgs{
Parent: pulumi.String("organizations/123456789"),
Title: pulumi.String("my policy"),
})
if err != nil {
return err
}
_, err = accesscontextmanager.NewServicePerimeter(ctx, "service_perimeter", &accesscontextmanager.ServicePerimeterArgs{
Parent: access_policy.Name.ApplyT(func(name string) (string, error) {
return fmt.Sprintf("%v%v", "accessPolicies/", name), nil
}).(pulumi.StringOutput),
Spec: &accesscontextmanager.ServicePerimeterSpecArgs{
RestrictedServices: pulumi.StringArray{
pulumi.String("storage.googleapis.com"),
},
},
Status: &accesscontextmanager.ServicePerimeterStatusArgs{
RestrictedServices: pulumi.StringArray{
pulumi.String("bigquery.googleapis.com"),
},
},
Title: pulumi.String("restrict_bigquery_dryrun_storage"),
UseExplicitDryRunSpec: pulumi.Bool(true),
})
if err != nil {
return err
}
return nil
})
}
```
## Import
ServicePerimeter can be imported using any of these accepted formats ¶
```sh
$ pulumi import gcp:accesscontextmanager/servicePerimeter:ServicePerimeter default {{name}}
```
func GetServicePerimeter ¶
func GetServicePerimeter(ctx *pulumi.Context, name string, id pulumi.IDInput, state *ServicePerimeterState, opts ...pulumi.ResourceOption) (*ServicePerimeter, error)
GetServicePerimeter gets an existing ServicePerimeter resource's state with the given name, ID, and optional state properties that are used to uniquely qualify the lookup (nil if not required).
func NewServicePerimeter ¶
func NewServicePerimeter(ctx *pulumi.Context, name string, args *ServicePerimeterArgs, opts ...pulumi.ResourceOption) (*ServicePerimeter, error)
NewServicePerimeter registers a new resource with the given unique name, arguments, and options.
func (*ServicePerimeter) ElementType ¶ added in v4.4.0
func (*ServicePerimeter) ElementType() reflect.Type
func (*ServicePerimeter) ToServicePerimeterOutput ¶ added in v4.4.0
func (i *ServicePerimeter) ToServicePerimeterOutput() ServicePerimeterOutput
func (*ServicePerimeter) ToServicePerimeterOutputWithContext ¶ added in v4.4.0
func (i *ServicePerimeter) ToServicePerimeterOutputWithContext(ctx context.Context) ServicePerimeterOutput
type ServicePerimeterArgs ¶
type ServicePerimeterArgs struct {
// Description of the ServicePerimeter and its use. Does not affect
// behavior.
Description pulumi.StringPtrInput
// Resource name for the ServicePerimeter. The shortName component must
// begin with a letter and only include alphanumeric and '_'.
// Format: accessPolicies/{policy_id}/servicePerimeters/{short_name}
Name pulumi.StringPtrInput
// The AccessPolicy this ServicePerimeter lives in.
// Format: accessPolicies/{policy_id}
Parent pulumi.StringInput
// Specifies the type of the Perimeter. There are two types: regular and
// bridge. Regular Service Perimeter contains resources, access levels,
// and restricted services. Every resource can be in at most
// ONE regular Service Perimeter.
// In addition to being in a regular service perimeter, a resource can also
// be in zero or more perimeter bridges. A perimeter bridge only contains
// resources. Cross project operations are permitted if all effected
// resources share some perimeter (whether bridge or regular). Perimeter
// Bridge does not contain access levels or services: those are governed
// entirely by the regular perimeter that resource is in.
// Perimeter Bridges are typically useful when building more complex
// topologies with many independent perimeters that need to share some data
// with a common perimeter, but should not be able to share data among
// themselves.
// Default value is `PERIMETER_TYPE_REGULAR`.
// Possible values are `PERIMETER_TYPE_REGULAR` and `PERIMETER_TYPE_BRIDGE`.
PerimeterType pulumi.StringPtrInput
// Proposed (or dry run) ServicePerimeter configuration.
// This configuration allows to specify and test ServicePerimeter configuration
// without enforcing actual access restrictions. Only allowed to be set when
// the `useExplicitDryRunSpec` flag is set.
// Structure is documented below.
Spec ServicePerimeterSpecPtrInput
// ServicePerimeter configuration. Specifies sets of resources,
// restricted services and access levels that determine
// perimeter content and boundaries.
// Structure is documented below.
Status ServicePerimeterStatusPtrInput
// Human readable title. Must be unique within the Policy.
Title pulumi.StringInput
// Use explicit dry run spec flag. Ordinarily, a dry-run spec implicitly exists
// for all Service Perimeters, and that spec is identical to the status for those
// Service Perimeters. When this flag is set, it inhibits the generation of the
// implicit spec, thereby allowing the user to explicitly provide a
// configuration ("spec") to use in a dry-run version of the Service Perimeter.
// This allows the user to test changes to the enforced config ("status") without
// actually enforcing them. This testing is done through analyzing the differences
// between currently enforced and suggested restrictions. useExplicitDryRunSpec must
// bet set to True if any of the fields in the spec are set to non-default values.
UseExplicitDryRunSpec pulumi.BoolPtrInput
}
The set of arguments for constructing a ServicePerimeter resource.
func (ServicePerimeterArgs) ElementType ¶
func (ServicePerimeterArgs) ElementType() reflect.Type
type ServicePerimeterInput ¶ added in v4.4.0
type ServicePerimeterInput interface {
pulumi.Input
ToServicePerimeterOutput() ServicePerimeterOutput
ToServicePerimeterOutputWithContext(ctx context.Context) ServicePerimeterOutput
}
type ServicePerimeterOutput ¶ added in v4.4.0
type ServicePerimeterOutput struct {
*pulumi.OutputState
}
func (ServicePerimeterOutput) ElementType ¶ added in v4.4.0
func (ServicePerimeterOutput) ElementType() reflect.Type
func (ServicePerimeterOutput) ToServicePerimeterOutput ¶ added in v4.4.0
func (o ServicePerimeterOutput) ToServicePerimeterOutput() ServicePerimeterOutput
func (ServicePerimeterOutput) ToServicePerimeterOutputWithContext ¶ added in v4.4.0
func (o ServicePerimeterOutput) ToServicePerimeterOutputWithContext(ctx context.Context) ServicePerimeterOutput
type ServicePerimeterResource ¶
type ServicePerimeterResource struct {
pulumi.CustomResourceState
// The name of the Service Perimeter to add this resource to.
PerimeterName pulumi.StringOutput `pulumi:"perimeterName"`
// A GCP resource that is inside of the service perimeter.
// Currently only projects are allowed.
// Format: projects/{project_number}
Resource pulumi.StringOutput `pulumi:"resource"`
}
Allows configuring a single GCP resource that should be inside of a service perimeter. This resource is intended to be used in cases where it is not possible to compile a full list of projects to include in a `accesscontextmanager.ServicePerimeter` resource, to enable them to be added separately.
> **Note:** If this resource is used alongside a `accesscontextmanager.ServicePerimeter` resource, the service perimeter resource must have a `lifecycle` block with `ignoreChanges = [status[0].resources]` so they don't fight over which resources should be in the policy.
To get more information about ServicePerimeterResource, see:
* [API documentation](https://cloud.google.com/access-context-manager/docs/reference/rest/v1/accessPolicies.servicePerimeters) * How-to Guides
- [Service Perimeter Quickstart](https://cloud.google.com/vpc-service-controls/docs/quickstart)
> **Warning:** If you are using User ADCs (Application Default Credentials) with this resource, you must specify a `billingProject` and set `userProjectOverride` to true in the provider configuration. Otherwise the ACM API will return a 403 error. Your account must have the `serviceusage.services.use` permission on the `billingProject` you defined.
## Example Usage ### Access Context Manager Service Perimeter Resource Basic
```go package main
import (
"fmt" "github.com/pulumi/pulumi-gcp/sdk/v4/go/gcp/accesscontextmanager" "github.com/pulumi/pulumi/sdk/v2/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
_, err := accesscontextmanager.NewAccessPolicy(ctx, "access_policy", &accesscontextmanager.AccessPolicyArgs{
Parent: pulumi.String("organizations/123456789"),
Title: pulumi.String("my policy"),
})
if err != nil {
return err
}
_, err = accesscontextmanager.NewServicePerimeter(ctx, "service_perimeter_resourceServicePerimeter", &accesscontextmanager.ServicePerimeterArgs{
Parent: access_policy.Name.ApplyT(func(name string) (string, error) {
return fmt.Sprintf("%v%v", "accessPolicies/", name), nil
}).(pulumi.StringOutput),
Title: pulumi.String("restrict_all"),
Status: &accesscontextmanager.ServicePerimeterStatusArgs{
RestrictedServices: pulumi.StringArray{
pulumi.String("storage.googleapis.com"),
},
},
})
if err != nil {
return err
}
_, err = accesscontextmanager.NewServicePerimeterResource(ctx, "service_perimeter_resourceServicePerimeterResource", &accesscontextmanager.ServicePerimeterResourceArgs{
PerimeterName: service_perimeter_resourceServicePerimeter.Name,
Resource: pulumi.String("projects/987654321"),
})
if err != nil {
return err
}
return nil
})
}
```
## Import
ServicePerimeterResource can be imported using any of these accepted formats ¶
```sh
$ pulumi import gcp:accesscontextmanager/servicePerimeterResource:ServicePerimeterResource default {{perimeter_name}}/{{resource}}
```
func GetServicePerimeterResource ¶
func GetServicePerimeterResource(ctx *pulumi.Context, name string, id pulumi.IDInput, state *ServicePerimeterResourceState, opts ...pulumi.ResourceOption) (*ServicePerimeterResource, error)
GetServicePerimeterResource gets an existing ServicePerimeterResource resource's state with the given name, ID, and optional state properties that are used to uniquely qualify the lookup (nil if not required).
func NewServicePerimeterResource ¶
func NewServicePerimeterResource(ctx *pulumi.Context, name string, args *ServicePerimeterResourceArgs, opts ...pulumi.ResourceOption) (*ServicePerimeterResource, error)
NewServicePerimeterResource registers a new resource with the given unique name, arguments, and options.
func (*ServicePerimeterResource) ElementType ¶ added in v4.4.0
func (*ServicePerimeterResource) ElementType() reflect.Type
func (*ServicePerimeterResource) ToServicePerimeterResourceOutput ¶ added in v4.4.0
func (i *ServicePerimeterResource) ToServicePerimeterResourceOutput() ServicePerimeterResourceOutput
func (*ServicePerimeterResource) ToServicePerimeterResourceOutputWithContext ¶ added in v4.4.0
func (i *ServicePerimeterResource) ToServicePerimeterResourceOutputWithContext(ctx context.Context) ServicePerimeterResourceOutput
type ServicePerimeterResourceArgs ¶
type ServicePerimeterResourceArgs struct {
// The name of the Service Perimeter to add this resource to.
PerimeterName pulumi.StringInput
// A GCP resource that is inside of the service perimeter.
// Currently only projects are allowed.
// Format: projects/{project_number}
Resource pulumi.StringInput
}
The set of arguments for constructing a ServicePerimeterResource resource.
func (ServicePerimeterResourceArgs) ElementType ¶
func (ServicePerimeterResourceArgs) ElementType() reflect.Type
type ServicePerimeterResourceInput ¶ added in v4.4.0
type ServicePerimeterResourceInput interface {
pulumi.Input
ToServicePerimeterResourceOutput() ServicePerimeterResourceOutput
ToServicePerimeterResourceOutputWithContext(ctx context.Context) ServicePerimeterResourceOutput
}
type ServicePerimeterResourceOutput ¶ added in v4.4.0
type ServicePerimeterResourceOutput struct {
*pulumi.OutputState
}
func (ServicePerimeterResourceOutput) ElementType ¶ added in v4.4.0
func (ServicePerimeterResourceOutput) ElementType() reflect.Type
func (ServicePerimeterResourceOutput) ToServicePerimeterResourceOutput ¶ added in v4.4.0
func (o ServicePerimeterResourceOutput) ToServicePerimeterResourceOutput() ServicePerimeterResourceOutput
func (ServicePerimeterResourceOutput) ToServicePerimeterResourceOutputWithContext ¶ added in v4.4.0
func (o ServicePerimeterResourceOutput) ToServicePerimeterResourceOutputWithContext(ctx context.Context) ServicePerimeterResourceOutput
type ServicePerimeterResourceState ¶
type ServicePerimeterResourceState struct {
// The name of the Service Perimeter to add this resource to.
PerimeterName pulumi.StringPtrInput
// A GCP resource that is inside of the service perimeter.
// Currently only projects are allowed.
// Format: projects/{project_number}
Resource pulumi.StringPtrInput
}
func (ServicePerimeterResourceState) ElementType ¶
func (ServicePerimeterResourceState) ElementType() reflect.Type
type ServicePerimeterSpec ¶
type ServicePerimeterSpec struct {
// A list of AccessLevel resource names that allow resources within
// the ServicePerimeter to be accessed from the internet.
// AccessLevels listed must be in the same policy as this
// ServicePerimeter. Referencing a nonexistent AccessLevel is a
// syntax error. If no AccessLevel names are listed, resources within
// the perimeter can only be accessed via GCP calls with request
// origins within the perimeter. For Service Perimeter Bridge, must
// be empty.
// Format: accessPolicies/{policy_id}/accessLevels/{access_level_name}
AccessLevels []string `pulumi:"accessLevels"`
// A list of GCP resources that are inside of the service perimeter.
// Currently only projects are allowed.
// Format: projects/{project_number}
Resources []string `pulumi:"resources"`
// GCP services that are subject to the Service Perimeter
// restrictions. Must contain a list of services. For example, if
// `storage.googleapis.com` is specified, access to the storage
// buckets inside the perimeter must meet the perimeter's access
// restrictions.
RestrictedServices []string `pulumi:"restrictedServices"`
// Specifies how APIs are allowed to communicate within the Service
// Perimeter.
// Structure is documented below.
VpcAccessibleServices *ServicePerimeterSpecVpcAccessibleServices `pulumi:"vpcAccessibleServices"`
}
type ServicePerimeterSpecArgs ¶
type ServicePerimeterSpecArgs struct {
// A list of AccessLevel resource names that allow resources within
// the ServicePerimeter to be accessed from the internet.
// AccessLevels listed must be in the same policy as this
// ServicePerimeter. Referencing a nonexistent AccessLevel is a
// syntax error. If no AccessLevel names are listed, resources within
// the perimeter can only be accessed via GCP calls with request
// origins within the perimeter. For Service Perimeter Bridge, must
// be empty.
// Format: accessPolicies/{policy_id}/accessLevels/{access_level_name}
AccessLevels pulumi.StringArrayInput `pulumi:"accessLevels"`
// A list of GCP resources that are inside of the service perimeter.
// Currently only projects are allowed.
// Format: projects/{project_number}
Resources pulumi.StringArrayInput `pulumi:"resources"`
// GCP services that are subject to the Service Perimeter
// restrictions. Must contain a list of services. For example, if
// `storage.googleapis.com` is specified, access to the storage
// buckets inside the perimeter must meet the perimeter's access
// restrictions.
RestrictedServices pulumi.StringArrayInput `pulumi:"restrictedServices"`
// Specifies how APIs are allowed to communicate within the Service
// Perimeter.
// Structure is documented below.
VpcAccessibleServices ServicePerimeterSpecVpcAccessibleServicesPtrInput `pulumi:"vpcAccessibleServices"`
}
func (ServicePerimeterSpecArgs) ElementType ¶
func (ServicePerimeterSpecArgs) ElementType() reflect.Type
func (ServicePerimeterSpecArgs) ToServicePerimeterSpecOutput ¶
func (i ServicePerimeterSpecArgs) ToServicePerimeterSpecOutput() ServicePerimeterSpecOutput
func (ServicePerimeterSpecArgs) ToServicePerimeterSpecOutputWithContext ¶
func (i ServicePerimeterSpecArgs) ToServicePerimeterSpecOutputWithContext(ctx context.Context) ServicePerimeterSpecOutput
func (ServicePerimeterSpecArgs) ToServicePerimeterSpecPtrOutput ¶
func (i ServicePerimeterSpecArgs) ToServicePerimeterSpecPtrOutput() ServicePerimeterSpecPtrOutput
func (ServicePerimeterSpecArgs) ToServicePerimeterSpecPtrOutputWithContext ¶
func (i ServicePerimeterSpecArgs) ToServicePerimeterSpecPtrOutputWithContext(ctx context.Context) ServicePerimeterSpecPtrOutput
type ServicePerimeterSpecInput ¶
type ServicePerimeterSpecInput interface {
pulumi.Input
ToServicePerimeterSpecOutput() ServicePerimeterSpecOutput
ToServicePerimeterSpecOutputWithContext(context.Context) ServicePerimeterSpecOutput
}
ServicePerimeterSpecInput is an input type that accepts ServicePerimeterSpecArgs and ServicePerimeterSpecOutput values. You can construct a concrete instance of `ServicePerimeterSpecInput` via:
ServicePerimeterSpecArgs{...}
type ServicePerimeterSpecOutput ¶
type ServicePerimeterSpecOutput struct{ *pulumi.OutputState }
func (ServicePerimeterSpecOutput) AccessLevels ¶
func (o ServicePerimeterSpecOutput) AccessLevels() pulumi.StringArrayOutput
A list of AccessLevel resource names that allow resources within the ServicePerimeter to be accessed from the internet. AccessLevels listed must be in the same policy as this ServicePerimeter. Referencing a nonexistent AccessLevel is a syntax error. If no AccessLevel names are listed, resources within the perimeter can only be accessed via GCP calls with request origins within the perimeter. For Service Perimeter Bridge, must be empty. Format: accessPolicies/{policy_id}/accessLevels/{access_level_name}
func (ServicePerimeterSpecOutput) ElementType ¶
func (ServicePerimeterSpecOutput) ElementType() reflect.Type
func (ServicePerimeterSpecOutput) Resources ¶
func (o ServicePerimeterSpecOutput) Resources() pulumi.StringArrayOutput
A list of GCP resources that are inside of the service perimeter. Currently only projects are allowed. Format: projects/{project_number}
func (ServicePerimeterSpecOutput) RestrictedServices ¶
func (o ServicePerimeterSpecOutput) RestrictedServices() pulumi.StringArrayOutput
GCP services that are subject to the Service Perimeter restrictions. Must contain a list of services. For example, if `storage.googleapis.com` is specified, access to the storage buckets inside the perimeter must meet the perimeter's access restrictions.
func (ServicePerimeterSpecOutput) ToServicePerimeterSpecOutput ¶
func (o ServicePerimeterSpecOutput) ToServicePerimeterSpecOutput() ServicePerimeterSpecOutput
func (ServicePerimeterSpecOutput) ToServicePerimeterSpecOutputWithContext ¶
func (o ServicePerimeterSpecOutput) ToServicePerimeterSpecOutputWithContext(ctx context.Context) ServicePerimeterSpecOutput
func (ServicePerimeterSpecOutput) ToServicePerimeterSpecPtrOutput ¶
func (o ServicePerimeterSpecOutput) ToServicePerimeterSpecPtrOutput() ServicePerimeterSpecPtrOutput
func (ServicePerimeterSpecOutput) ToServicePerimeterSpecPtrOutputWithContext ¶
func (o ServicePerimeterSpecOutput) ToServicePerimeterSpecPtrOutputWithContext(ctx context.Context) ServicePerimeterSpecPtrOutput
func (ServicePerimeterSpecOutput) VpcAccessibleServices ¶
func (o ServicePerimeterSpecOutput) VpcAccessibleServices() ServicePerimeterSpecVpcAccessibleServicesPtrOutput
Specifies how APIs are allowed to communicate within the Service Perimeter. Structure is documented below.
type ServicePerimeterSpecPtrInput ¶
type ServicePerimeterSpecPtrInput interface {
pulumi.Input
ToServicePerimeterSpecPtrOutput() ServicePerimeterSpecPtrOutput
ToServicePerimeterSpecPtrOutputWithContext(context.Context) ServicePerimeterSpecPtrOutput
}
ServicePerimeterSpecPtrInput is an input type that accepts ServicePerimeterSpecArgs, ServicePerimeterSpecPtr and ServicePerimeterSpecPtrOutput values. You can construct a concrete instance of `ServicePerimeterSpecPtrInput` via:
ServicePerimeterSpecArgs{...}
or:
nil
func ServicePerimeterSpecPtr ¶
func ServicePerimeterSpecPtr(v *ServicePerimeterSpecArgs) ServicePerimeterSpecPtrInput
type ServicePerimeterSpecPtrOutput ¶
type ServicePerimeterSpecPtrOutput struct{ *pulumi.OutputState }
func (ServicePerimeterSpecPtrOutput) AccessLevels ¶
func (o ServicePerimeterSpecPtrOutput) AccessLevels() pulumi.StringArrayOutput
A list of AccessLevel resource names that allow resources within the ServicePerimeter to be accessed from the internet. AccessLevels listed must be in the same policy as this ServicePerimeter. Referencing a nonexistent AccessLevel is a syntax error. If no AccessLevel names are listed, resources within the perimeter can only be accessed via GCP calls with request origins within the perimeter. For Service Perimeter Bridge, must be empty. Format: accessPolicies/{policy_id}/accessLevels/{access_level_name}
func (ServicePerimeterSpecPtrOutput) Elem ¶
func (o ServicePerimeterSpecPtrOutput) Elem() ServicePerimeterSpecOutput
func (ServicePerimeterSpecPtrOutput) ElementType ¶
func (ServicePerimeterSpecPtrOutput) ElementType() reflect.Type
func (ServicePerimeterSpecPtrOutput) Resources ¶
func (o ServicePerimeterSpecPtrOutput) Resources() pulumi.StringArrayOutput
A list of GCP resources that are inside of the service perimeter. Currently only projects are allowed. Format: projects/{project_number}
func (ServicePerimeterSpecPtrOutput) RestrictedServices ¶
func (o ServicePerimeterSpecPtrOutput) RestrictedServices() pulumi.StringArrayOutput
GCP services that are subject to the Service Perimeter restrictions. Must contain a list of services. For example, if `storage.googleapis.com` is specified, access to the storage buckets inside the perimeter must meet the perimeter's access restrictions.
func (ServicePerimeterSpecPtrOutput) ToServicePerimeterSpecPtrOutput ¶
func (o ServicePerimeterSpecPtrOutput) ToServicePerimeterSpecPtrOutput() ServicePerimeterSpecPtrOutput
func (ServicePerimeterSpecPtrOutput) ToServicePerimeterSpecPtrOutputWithContext ¶
func (o ServicePerimeterSpecPtrOutput) ToServicePerimeterSpecPtrOutputWithContext(ctx context.Context) ServicePerimeterSpecPtrOutput
func (ServicePerimeterSpecPtrOutput) VpcAccessibleServices ¶
func (o ServicePerimeterSpecPtrOutput) VpcAccessibleServices() ServicePerimeterSpecVpcAccessibleServicesPtrOutput
Specifies how APIs are allowed to communicate within the Service Perimeter. Structure is documented below.
type ServicePerimeterSpecVpcAccessibleServices ¶
type ServicePerimeterSpecVpcAccessibleServices struct {
// The list of APIs usable within the Service Perimeter.
// Must be empty unless `enableRestriction` is True.
AllowedServices []string `pulumi:"allowedServices"`
// Whether to restrict API calls within the Service Perimeter to the
// list of APIs specified in 'allowedServices'.
EnableRestriction *bool `pulumi:"enableRestriction"`
}
type ServicePerimeterSpecVpcAccessibleServicesArgs ¶
type ServicePerimeterSpecVpcAccessibleServicesArgs struct {
// The list of APIs usable within the Service Perimeter.
// Must be empty unless `enableRestriction` is True.
AllowedServices pulumi.StringArrayInput `pulumi:"allowedServices"`
// Whether to restrict API calls within the Service Perimeter to the
// list of APIs specified in 'allowedServices'.
EnableRestriction pulumi.BoolPtrInput `pulumi:"enableRestriction"`
}
func (ServicePerimeterSpecVpcAccessibleServicesArgs) ElementType ¶
func (ServicePerimeterSpecVpcAccessibleServicesArgs) ElementType() reflect.Type
func (ServicePerimeterSpecVpcAccessibleServicesArgs) ToServicePerimeterSpecVpcAccessibleServicesOutput ¶
func (i ServicePerimeterSpecVpcAccessibleServicesArgs) ToServicePerimeterSpecVpcAccessibleServicesOutput() ServicePerimeterSpecVpcAccessibleServicesOutput
func (ServicePerimeterSpecVpcAccessibleServicesArgs) ToServicePerimeterSpecVpcAccessibleServicesOutputWithContext ¶
func (i ServicePerimeterSpecVpcAccessibleServicesArgs) ToServicePerimeterSpecVpcAccessibleServicesOutputWithContext(ctx context.Context) ServicePerimeterSpecVpcAccessibleServicesOutput
func (ServicePerimeterSpecVpcAccessibleServicesArgs) ToServicePerimeterSpecVpcAccessibleServicesPtrOutput ¶
func (i ServicePerimeterSpecVpcAccessibleServicesArgs) ToServicePerimeterSpecVpcAccessibleServicesPtrOutput() ServicePerimeterSpecVpcAccessibleServicesPtrOutput
func (ServicePerimeterSpecVpcAccessibleServicesArgs) ToServicePerimeterSpecVpcAccessibleServicesPtrOutputWithContext ¶
func (i ServicePerimeterSpecVpcAccessibleServicesArgs) ToServicePerimeterSpecVpcAccessibleServicesPtrOutputWithContext(ctx context.Context) ServicePerimeterSpecVpcAccessibleServicesPtrOutput
type ServicePerimeterSpecVpcAccessibleServicesInput ¶
type ServicePerimeterSpecVpcAccessibleServicesInput interface {
pulumi.Input
ToServicePerimeterSpecVpcAccessibleServicesOutput() ServicePerimeterSpecVpcAccessibleServicesOutput
ToServicePerimeterSpecVpcAccessibleServicesOutputWithContext(context.Context) ServicePerimeterSpecVpcAccessibleServicesOutput
}
ServicePerimeterSpecVpcAccessibleServicesInput is an input type that accepts ServicePerimeterSpecVpcAccessibleServicesArgs and ServicePerimeterSpecVpcAccessibleServicesOutput values. You can construct a concrete instance of `ServicePerimeterSpecVpcAccessibleServicesInput` via:
ServicePerimeterSpecVpcAccessibleServicesArgs{...}
type ServicePerimeterSpecVpcAccessibleServicesOutput ¶
type ServicePerimeterSpecVpcAccessibleServicesOutput struct{ *pulumi.OutputState }
func (ServicePerimeterSpecVpcAccessibleServicesOutput) AllowedServices ¶
func (o ServicePerimeterSpecVpcAccessibleServicesOutput) AllowedServices() pulumi.StringArrayOutput
The list of APIs usable within the Service Perimeter. Must be empty unless `enableRestriction` is True.
func (ServicePerimeterSpecVpcAccessibleServicesOutput) ElementType ¶
func (ServicePerimeterSpecVpcAccessibleServicesOutput) ElementType() reflect.Type
func (ServicePerimeterSpecVpcAccessibleServicesOutput) EnableRestriction ¶
func (o ServicePerimeterSpecVpcAccessibleServicesOutput) EnableRestriction() pulumi.BoolPtrOutput
Whether to restrict API calls within the Service Perimeter to the list of APIs specified in 'allowedServices'.
func (ServicePerimeterSpecVpcAccessibleServicesOutput) ToServicePerimeterSpecVpcAccessibleServicesOutput ¶
func (o ServicePerimeterSpecVpcAccessibleServicesOutput) ToServicePerimeterSpecVpcAccessibleServicesOutput() ServicePerimeterSpecVpcAccessibleServicesOutput
func (ServicePerimeterSpecVpcAccessibleServicesOutput) ToServicePerimeterSpecVpcAccessibleServicesOutputWithContext ¶
func (o ServicePerimeterSpecVpcAccessibleServicesOutput) ToServicePerimeterSpecVpcAccessibleServicesOutputWithContext(ctx context.Context) ServicePerimeterSpecVpcAccessibleServicesOutput
func (ServicePerimeterSpecVpcAccessibleServicesOutput) ToServicePerimeterSpecVpcAccessibleServicesPtrOutput ¶
func (o ServicePerimeterSpecVpcAccessibleServicesOutput) ToServicePerimeterSpecVpcAccessibleServicesPtrOutput() ServicePerimeterSpecVpcAccessibleServicesPtrOutput
func (ServicePerimeterSpecVpcAccessibleServicesOutput) ToServicePerimeterSpecVpcAccessibleServicesPtrOutputWithContext ¶
func (o ServicePerimeterSpecVpcAccessibleServicesOutput) ToServicePerimeterSpecVpcAccessibleServicesPtrOutputWithContext(ctx context.Context) ServicePerimeterSpecVpcAccessibleServicesPtrOutput
type ServicePerimeterSpecVpcAccessibleServicesPtrInput ¶
type ServicePerimeterSpecVpcAccessibleServicesPtrInput interface {
pulumi.Input
ToServicePerimeterSpecVpcAccessibleServicesPtrOutput() ServicePerimeterSpecVpcAccessibleServicesPtrOutput
ToServicePerimeterSpecVpcAccessibleServicesPtrOutputWithContext(context.Context) ServicePerimeterSpecVpcAccessibleServicesPtrOutput
}
ServicePerimeterSpecVpcAccessibleServicesPtrInput is an input type that accepts ServicePerimeterSpecVpcAccessibleServicesArgs, ServicePerimeterSpecVpcAccessibleServicesPtr and ServicePerimeterSpecVpcAccessibleServicesPtrOutput values. You can construct a concrete instance of `ServicePerimeterSpecVpcAccessibleServicesPtrInput` via:
ServicePerimeterSpecVpcAccessibleServicesArgs{...}
or:
nil
func ServicePerimeterSpecVpcAccessibleServicesPtr ¶
func ServicePerimeterSpecVpcAccessibleServicesPtr(v *ServicePerimeterSpecVpcAccessibleServicesArgs) ServicePerimeterSpecVpcAccessibleServicesPtrInput
type ServicePerimeterSpecVpcAccessibleServicesPtrOutput ¶
type ServicePerimeterSpecVpcAccessibleServicesPtrOutput struct{ *pulumi.OutputState }
func (ServicePerimeterSpecVpcAccessibleServicesPtrOutput) AllowedServices ¶
func (o ServicePerimeterSpecVpcAccessibleServicesPtrOutput) AllowedServices() pulumi.StringArrayOutput
The list of APIs usable within the Service Perimeter. Must be empty unless `enableRestriction` is True.
func (ServicePerimeterSpecVpcAccessibleServicesPtrOutput) ElementType ¶
func (ServicePerimeterSpecVpcAccessibleServicesPtrOutput) ElementType() reflect.Type
func (ServicePerimeterSpecVpcAccessibleServicesPtrOutput) EnableRestriction ¶
func (o ServicePerimeterSpecVpcAccessibleServicesPtrOutput) EnableRestriction() pulumi.BoolPtrOutput
Whether to restrict API calls within the Service Perimeter to the list of APIs specified in 'allowedServices'.
func (ServicePerimeterSpecVpcAccessibleServicesPtrOutput) ToServicePerimeterSpecVpcAccessibleServicesPtrOutput ¶
func (o ServicePerimeterSpecVpcAccessibleServicesPtrOutput) ToServicePerimeterSpecVpcAccessibleServicesPtrOutput() ServicePerimeterSpecVpcAccessibleServicesPtrOutput
func (ServicePerimeterSpecVpcAccessibleServicesPtrOutput) ToServicePerimeterSpecVpcAccessibleServicesPtrOutputWithContext ¶
func (o ServicePerimeterSpecVpcAccessibleServicesPtrOutput) ToServicePerimeterSpecVpcAccessibleServicesPtrOutputWithContext(ctx context.Context) ServicePerimeterSpecVpcAccessibleServicesPtrOutput
type ServicePerimeterState ¶
type ServicePerimeterState struct {
// Time the AccessPolicy was created in UTC.
CreateTime pulumi.StringPtrInput
// Description of the ServicePerimeter and its use. Does not affect
// behavior.
Description pulumi.StringPtrInput
// Resource name for the ServicePerimeter. The shortName component must
// begin with a letter and only include alphanumeric and '_'.
// Format: accessPolicies/{policy_id}/servicePerimeters/{short_name}
Name pulumi.StringPtrInput
// The AccessPolicy this ServicePerimeter lives in.
// Format: accessPolicies/{policy_id}
Parent pulumi.StringPtrInput
// Specifies the type of the Perimeter. There are two types: regular and
// bridge. Regular Service Perimeter contains resources, access levels,
// and restricted services. Every resource can be in at most
// ONE regular Service Perimeter.
// In addition to being in a regular service perimeter, a resource can also
// be in zero or more perimeter bridges. A perimeter bridge only contains
// resources. Cross project operations are permitted if all effected
// resources share some perimeter (whether bridge or regular). Perimeter
// Bridge does not contain access levels or services: those are governed
// entirely by the regular perimeter that resource is in.
// Perimeter Bridges are typically useful when building more complex
// topologies with many independent perimeters that need to share some data
// with a common perimeter, but should not be able to share data among
// themselves.
// Default value is `PERIMETER_TYPE_REGULAR`.
// Possible values are `PERIMETER_TYPE_REGULAR` and `PERIMETER_TYPE_BRIDGE`.
PerimeterType pulumi.StringPtrInput
// Proposed (or dry run) ServicePerimeter configuration.
// This configuration allows to specify and test ServicePerimeter configuration
// without enforcing actual access restrictions. Only allowed to be set when
// the `useExplicitDryRunSpec` flag is set.
// Structure is documented below.
Spec ServicePerimeterSpecPtrInput
// ServicePerimeter configuration. Specifies sets of resources,
// restricted services and access levels that determine
// perimeter content and boundaries.
// Structure is documented below.
Status ServicePerimeterStatusPtrInput
// Human readable title. Must be unique within the Policy.
Title pulumi.StringPtrInput
// Time the AccessPolicy was updated in UTC.
UpdateTime pulumi.StringPtrInput
// Use explicit dry run spec flag. Ordinarily, a dry-run spec implicitly exists
// for all Service Perimeters, and that spec is identical to the status for those
// Service Perimeters. When this flag is set, it inhibits the generation of the
// implicit spec, thereby allowing the user to explicitly provide a
// configuration ("spec") to use in a dry-run version of the Service Perimeter.
// This allows the user to test changes to the enforced config ("status") without
// actually enforcing them. This testing is done through analyzing the differences
// between currently enforced and suggested restrictions. useExplicitDryRunSpec must
// bet set to True if any of the fields in the spec are set to non-default values.
UseExplicitDryRunSpec pulumi.BoolPtrInput
}
func (ServicePerimeterState) ElementType ¶
func (ServicePerimeterState) ElementType() reflect.Type
type ServicePerimeterStatus ¶
type ServicePerimeterStatus struct {
// A list of AccessLevel resource names that allow resources within
// the ServicePerimeter to be accessed from the internet.
// AccessLevels listed must be in the same policy as this
// ServicePerimeter. Referencing a nonexistent AccessLevel is a
// syntax error. If no AccessLevel names are listed, resources within
// the perimeter can only be accessed via GCP calls with request
// origins within the perimeter. For Service Perimeter Bridge, must
// be empty.
// Format: accessPolicies/{policy_id}/accessLevels/{access_level_name}
AccessLevels []string `pulumi:"accessLevels"`
// A list of GCP resources that are inside of the service perimeter.
// Currently only projects are allowed.
// Format: projects/{project_number}
Resources []string `pulumi:"resources"`
// GCP services that are subject to the Service Perimeter
// restrictions. Must contain a list of services. For example, if
// `storage.googleapis.com` is specified, access to the storage
// buckets inside the perimeter must meet the perimeter's access
// restrictions.
RestrictedServices []string `pulumi:"restrictedServices"`
// Specifies how APIs are allowed to communicate within the Service
// Perimeter.
// Structure is documented below.
VpcAccessibleServices *ServicePerimeterStatusVpcAccessibleServices `pulumi:"vpcAccessibleServices"`
}
type ServicePerimeterStatusArgs ¶
type ServicePerimeterStatusArgs struct {
// A list of AccessLevel resource names that allow resources within
// the ServicePerimeter to be accessed from the internet.
// AccessLevels listed must be in the same policy as this
// ServicePerimeter. Referencing a nonexistent AccessLevel is a
// syntax error. If no AccessLevel names are listed, resources within
// the perimeter can only be accessed via GCP calls with request
// origins within the perimeter. For Service Perimeter Bridge, must
// be empty.
// Format: accessPolicies/{policy_id}/accessLevels/{access_level_name}
AccessLevels pulumi.StringArrayInput `pulumi:"accessLevels"`
// A list of GCP resources that are inside of the service perimeter.
// Currently only projects are allowed.
// Format: projects/{project_number}
Resources pulumi.StringArrayInput `pulumi:"resources"`
// GCP services that are subject to the Service Perimeter
// restrictions. Must contain a list of services. For example, if
// `storage.googleapis.com` is specified, access to the storage
// buckets inside the perimeter must meet the perimeter's access
// restrictions.
RestrictedServices pulumi.StringArrayInput `pulumi:"restrictedServices"`
// Specifies how APIs are allowed to communicate within the Service
// Perimeter.
// Structure is documented below.
VpcAccessibleServices ServicePerimeterStatusVpcAccessibleServicesPtrInput `pulumi:"vpcAccessibleServices"`
}
func (ServicePerimeterStatusArgs) ElementType ¶
func (ServicePerimeterStatusArgs) ElementType() reflect.Type
func (ServicePerimeterStatusArgs) ToServicePerimeterStatusOutput ¶
func (i ServicePerimeterStatusArgs) ToServicePerimeterStatusOutput() ServicePerimeterStatusOutput
func (ServicePerimeterStatusArgs) ToServicePerimeterStatusOutputWithContext ¶
func (i ServicePerimeterStatusArgs) ToServicePerimeterStatusOutputWithContext(ctx context.Context) ServicePerimeterStatusOutput
func (ServicePerimeterStatusArgs) ToServicePerimeterStatusPtrOutput ¶
func (i ServicePerimeterStatusArgs) ToServicePerimeterStatusPtrOutput() ServicePerimeterStatusPtrOutput
func (ServicePerimeterStatusArgs) ToServicePerimeterStatusPtrOutputWithContext ¶
func (i ServicePerimeterStatusArgs) ToServicePerimeterStatusPtrOutputWithContext(ctx context.Context) ServicePerimeterStatusPtrOutput
type ServicePerimeterStatusInput ¶
type ServicePerimeterStatusInput interface {
pulumi.Input
ToServicePerimeterStatusOutput() ServicePerimeterStatusOutput
ToServicePerimeterStatusOutputWithContext(context.Context) ServicePerimeterStatusOutput
}
ServicePerimeterStatusInput is an input type that accepts ServicePerimeterStatusArgs and ServicePerimeterStatusOutput values. You can construct a concrete instance of `ServicePerimeterStatusInput` via:
ServicePerimeterStatusArgs{...}
type ServicePerimeterStatusOutput ¶
type ServicePerimeterStatusOutput struct{ *pulumi.OutputState }
func (ServicePerimeterStatusOutput) AccessLevels ¶
func (o ServicePerimeterStatusOutput) AccessLevels() pulumi.StringArrayOutput
A list of AccessLevel resource names that allow resources within the ServicePerimeter to be accessed from the internet. AccessLevels listed must be in the same policy as this ServicePerimeter. Referencing a nonexistent AccessLevel is a syntax error. If no AccessLevel names are listed, resources within the perimeter can only be accessed via GCP calls with request origins within the perimeter. For Service Perimeter Bridge, must be empty. Format: accessPolicies/{policy_id}/accessLevels/{access_level_name}
func (ServicePerimeterStatusOutput) ElementType ¶
func (ServicePerimeterStatusOutput) ElementType() reflect.Type
func (ServicePerimeterStatusOutput) Resources ¶
func (o ServicePerimeterStatusOutput) Resources() pulumi.StringArrayOutput
A list of GCP resources that are inside of the service perimeter. Currently only projects are allowed. Format: projects/{project_number}
func (ServicePerimeterStatusOutput) RestrictedServices ¶
func (o ServicePerimeterStatusOutput) RestrictedServices() pulumi.StringArrayOutput
GCP services that are subject to the Service Perimeter restrictions. Must contain a list of services. For example, if `storage.googleapis.com` is specified, access to the storage buckets inside the perimeter must meet the perimeter's access restrictions.
func (ServicePerimeterStatusOutput) ToServicePerimeterStatusOutput ¶
func (o ServicePerimeterStatusOutput) ToServicePerimeterStatusOutput() ServicePerimeterStatusOutput
func (ServicePerimeterStatusOutput) ToServicePerimeterStatusOutputWithContext ¶
func (o ServicePerimeterStatusOutput) ToServicePerimeterStatusOutputWithContext(ctx context.Context) ServicePerimeterStatusOutput
func (ServicePerimeterStatusOutput) ToServicePerimeterStatusPtrOutput ¶
func (o ServicePerimeterStatusOutput) ToServicePerimeterStatusPtrOutput() ServicePerimeterStatusPtrOutput
func (ServicePerimeterStatusOutput) ToServicePerimeterStatusPtrOutputWithContext ¶
func (o ServicePerimeterStatusOutput) ToServicePerimeterStatusPtrOutputWithContext(ctx context.Context) ServicePerimeterStatusPtrOutput
func (ServicePerimeterStatusOutput) VpcAccessibleServices ¶
func (o ServicePerimeterStatusOutput) VpcAccessibleServices() ServicePerimeterStatusVpcAccessibleServicesPtrOutput
Specifies how APIs are allowed to communicate within the Service Perimeter. Structure is documented below.
type ServicePerimeterStatusPtrInput ¶
type ServicePerimeterStatusPtrInput interface {
pulumi.Input
ToServicePerimeterStatusPtrOutput() ServicePerimeterStatusPtrOutput
ToServicePerimeterStatusPtrOutputWithContext(context.Context) ServicePerimeterStatusPtrOutput
}
ServicePerimeterStatusPtrInput is an input type that accepts ServicePerimeterStatusArgs, ServicePerimeterStatusPtr and ServicePerimeterStatusPtrOutput values. You can construct a concrete instance of `ServicePerimeterStatusPtrInput` via:
ServicePerimeterStatusArgs{...}
or:
nil
func ServicePerimeterStatusPtr ¶
func ServicePerimeterStatusPtr(v *ServicePerimeterStatusArgs) ServicePerimeterStatusPtrInput
type ServicePerimeterStatusPtrOutput ¶
type ServicePerimeterStatusPtrOutput struct{ *pulumi.OutputState }
func (ServicePerimeterStatusPtrOutput) AccessLevels ¶
func (o ServicePerimeterStatusPtrOutput) AccessLevels() pulumi.StringArrayOutput
A list of AccessLevel resource names that allow resources within the ServicePerimeter to be accessed from the internet. AccessLevels listed must be in the same policy as this ServicePerimeter. Referencing a nonexistent AccessLevel is a syntax error. If no AccessLevel names are listed, resources within the perimeter can only be accessed via GCP calls with request origins within the perimeter. For Service Perimeter Bridge, must be empty. Format: accessPolicies/{policy_id}/accessLevels/{access_level_name}
func (ServicePerimeterStatusPtrOutput) Elem ¶
func (o ServicePerimeterStatusPtrOutput) Elem() ServicePerimeterStatusOutput
func (ServicePerimeterStatusPtrOutput) ElementType ¶
func (ServicePerimeterStatusPtrOutput) ElementType() reflect.Type
func (ServicePerimeterStatusPtrOutput) Resources ¶
func (o ServicePerimeterStatusPtrOutput) Resources() pulumi.StringArrayOutput
A list of GCP resources that are inside of the service perimeter. Currently only projects are allowed. Format: projects/{project_number}
func (ServicePerimeterStatusPtrOutput) RestrictedServices ¶
func (o ServicePerimeterStatusPtrOutput) RestrictedServices() pulumi.StringArrayOutput
GCP services that are subject to the Service Perimeter restrictions. Must contain a list of services. For example, if `storage.googleapis.com` is specified, access to the storage buckets inside the perimeter must meet the perimeter's access restrictions.
func (ServicePerimeterStatusPtrOutput) ToServicePerimeterStatusPtrOutput ¶
func (o ServicePerimeterStatusPtrOutput) ToServicePerimeterStatusPtrOutput() ServicePerimeterStatusPtrOutput
func (ServicePerimeterStatusPtrOutput) ToServicePerimeterStatusPtrOutputWithContext ¶
func (o ServicePerimeterStatusPtrOutput) ToServicePerimeterStatusPtrOutputWithContext(ctx context.Context) ServicePerimeterStatusPtrOutput
func (ServicePerimeterStatusPtrOutput) VpcAccessibleServices ¶
func (o ServicePerimeterStatusPtrOutput) VpcAccessibleServices() ServicePerimeterStatusVpcAccessibleServicesPtrOutput
Specifies how APIs are allowed to communicate within the Service Perimeter. Structure is documented below.
type ServicePerimeterStatusVpcAccessibleServices ¶
type ServicePerimeterStatusVpcAccessibleServices struct {
// The list of APIs usable within the Service Perimeter.
// Must be empty unless `enableRestriction` is True.
AllowedServices []string `pulumi:"allowedServices"`
// Whether to restrict API calls within the Service Perimeter to the
// list of APIs specified in 'allowedServices'.
EnableRestriction *bool `pulumi:"enableRestriction"`
}
type ServicePerimeterStatusVpcAccessibleServicesArgs ¶
type ServicePerimeterStatusVpcAccessibleServicesArgs struct {
// The list of APIs usable within the Service Perimeter.
// Must be empty unless `enableRestriction` is True.
AllowedServices pulumi.StringArrayInput `pulumi:"allowedServices"`
// Whether to restrict API calls within the Service Perimeter to the
// list of APIs specified in 'allowedServices'.
EnableRestriction pulumi.BoolPtrInput `pulumi:"enableRestriction"`
}
func (ServicePerimeterStatusVpcAccessibleServicesArgs) ElementType ¶
func (ServicePerimeterStatusVpcAccessibleServicesArgs) ElementType() reflect.Type
func (ServicePerimeterStatusVpcAccessibleServicesArgs) ToServicePerimeterStatusVpcAccessibleServicesOutput ¶
func (i ServicePerimeterStatusVpcAccessibleServicesArgs) ToServicePerimeterStatusVpcAccessibleServicesOutput() ServicePerimeterStatusVpcAccessibleServicesOutput
func (ServicePerimeterStatusVpcAccessibleServicesArgs) ToServicePerimeterStatusVpcAccessibleServicesOutputWithContext ¶
func (i ServicePerimeterStatusVpcAccessibleServicesArgs) ToServicePerimeterStatusVpcAccessibleServicesOutputWithContext(ctx context.Context) ServicePerimeterStatusVpcAccessibleServicesOutput
func (ServicePerimeterStatusVpcAccessibleServicesArgs) ToServicePerimeterStatusVpcAccessibleServicesPtrOutput ¶
func (i ServicePerimeterStatusVpcAccessibleServicesArgs) ToServicePerimeterStatusVpcAccessibleServicesPtrOutput() ServicePerimeterStatusVpcAccessibleServicesPtrOutput
func (ServicePerimeterStatusVpcAccessibleServicesArgs) ToServicePerimeterStatusVpcAccessibleServicesPtrOutputWithContext ¶
func (i ServicePerimeterStatusVpcAccessibleServicesArgs) ToServicePerimeterStatusVpcAccessibleServicesPtrOutputWithContext(ctx context.Context) ServicePerimeterStatusVpcAccessibleServicesPtrOutput
type ServicePerimeterStatusVpcAccessibleServicesInput ¶
type ServicePerimeterStatusVpcAccessibleServicesInput interface {
pulumi.Input
ToServicePerimeterStatusVpcAccessibleServicesOutput() ServicePerimeterStatusVpcAccessibleServicesOutput
ToServicePerimeterStatusVpcAccessibleServicesOutputWithContext(context.Context) ServicePerimeterStatusVpcAccessibleServicesOutput
}
ServicePerimeterStatusVpcAccessibleServicesInput is an input type that accepts ServicePerimeterStatusVpcAccessibleServicesArgs and ServicePerimeterStatusVpcAccessibleServicesOutput values. You can construct a concrete instance of `ServicePerimeterStatusVpcAccessibleServicesInput` via:
ServicePerimeterStatusVpcAccessibleServicesArgs{...}
type ServicePerimeterStatusVpcAccessibleServicesOutput ¶
type ServicePerimeterStatusVpcAccessibleServicesOutput struct{ *pulumi.OutputState }
func (ServicePerimeterStatusVpcAccessibleServicesOutput) AllowedServices ¶
func (o ServicePerimeterStatusVpcAccessibleServicesOutput) AllowedServices() pulumi.StringArrayOutput
The list of APIs usable within the Service Perimeter. Must be empty unless `enableRestriction` is True.
func (ServicePerimeterStatusVpcAccessibleServicesOutput) ElementType ¶
func (ServicePerimeterStatusVpcAccessibleServicesOutput) ElementType() reflect.Type
func (ServicePerimeterStatusVpcAccessibleServicesOutput) EnableRestriction ¶
func (o ServicePerimeterStatusVpcAccessibleServicesOutput) EnableRestriction() pulumi.BoolPtrOutput
Whether to restrict API calls within the Service Perimeter to the list of APIs specified in 'allowedServices'.
func (ServicePerimeterStatusVpcAccessibleServicesOutput) ToServicePerimeterStatusVpcAccessibleServicesOutput ¶
func (o ServicePerimeterStatusVpcAccessibleServicesOutput) ToServicePerimeterStatusVpcAccessibleServicesOutput() ServicePerimeterStatusVpcAccessibleServicesOutput
func (ServicePerimeterStatusVpcAccessibleServicesOutput) ToServicePerimeterStatusVpcAccessibleServicesOutputWithContext ¶
func (o ServicePerimeterStatusVpcAccessibleServicesOutput) ToServicePerimeterStatusVpcAccessibleServicesOutputWithContext(ctx context.Context) ServicePerimeterStatusVpcAccessibleServicesOutput
func (ServicePerimeterStatusVpcAccessibleServicesOutput) ToServicePerimeterStatusVpcAccessibleServicesPtrOutput ¶
func (o ServicePerimeterStatusVpcAccessibleServicesOutput) ToServicePerimeterStatusVpcAccessibleServicesPtrOutput() ServicePerimeterStatusVpcAccessibleServicesPtrOutput
func (ServicePerimeterStatusVpcAccessibleServicesOutput) ToServicePerimeterStatusVpcAccessibleServicesPtrOutputWithContext ¶
func (o ServicePerimeterStatusVpcAccessibleServicesOutput) ToServicePerimeterStatusVpcAccessibleServicesPtrOutputWithContext(ctx context.Context) ServicePerimeterStatusVpcAccessibleServicesPtrOutput
type ServicePerimeterStatusVpcAccessibleServicesPtrInput ¶
type ServicePerimeterStatusVpcAccessibleServicesPtrInput interface {
pulumi.Input
ToServicePerimeterStatusVpcAccessibleServicesPtrOutput() ServicePerimeterStatusVpcAccessibleServicesPtrOutput
ToServicePerimeterStatusVpcAccessibleServicesPtrOutputWithContext(context.Context) ServicePerimeterStatusVpcAccessibleServicesPtrOutput
}
ServicePerimeterStatusVpcAccessibleServicesPtrInput is an input type that accepts ServicePerimeterStatusVpcAccessibleServicesArgs, ServicePerimeterStatusVpcAccessibleServicesPtr and ServicePerimeterStatusVpcAccessibleServicesPtrOutput values. You can construct a concrete instance of `ServicePerimeterStatusVpcAccessibleServicesPtrInput` via:
ServicePerimeterStatusVpcAccessibleServicesArgs{...}
or:
nil
func ServicePerimeterStatusVpcAccessibleServicesPtr ¶
func ServicePerimeterStatusVpcAccessibleServicesPtr(v *ServicePerimeterStatusVpcAccessibleServicesArgs) ServicePerimeterStatusVpcAccessibleServicesPtrInput
type ServicePerimeterStatusVpcAccessibleServicesPtrOutput ¶
type ServicePerimeterStatusVpcAccessibleServicesPtrOutput struct{ *pulumi.OutputState }
func (ServicePerimeterStatusVpcAccessibleServicesPtrOutput) AllowedServices ¶
func (o ServicePerimeterStatusVpcAccessibleServicesPtrOutput) AllowedServices() pulumi.StringArrayOutput
The list of APIs usable within the Service Perimeter. Must be empty unless `enableRestriction` is True.
func (ServicePerimeterStatusVpcAccessibleServicesPtrOutput) ElementType ¶
func (ServicePerimeterStatusVpcAccessibleServicesPtrOutput) ElementType() reflect.Type
func (ServicePerimeterStatusVpcAccessibleServicesPtrOutput) EnableRestriction ¶
func (o ServicePerimeterStatusVpcAccessibleServicesPtrOutput) EnableRestriction() pulumi.BoolPtrOutput
Whether to restrict API calls within the Service Perimeter to the list of APIs specified in 'allowedServices'.
func (ServicePerimeterStatusVpcAccessibleServicesPtrOutput) ToServicePerimeterStatusVpcAccessibleServicesPtrOutput ¶
func (o ServicePerimeterStatusVpcAccessibleServicesPtrOutput) ToServicePerimeterStatusVpcAccessibleServicesPtrOutput() ServicePerimeterStatusVpcAccessibleServicesPtrOutput
func (ServicePerimeterStatusVpcAccessibleServicesPtrOutput) ToServicePerimeterStatusVpcAccessibleServicesPtrOutputWithContext ¶
func (o ServicePerimeterStatusVpcAccessibleServicesPtrOutput) ToServicePerimeterStatusVpcAccessibleServicesPtrOutputWithContext(ctx context.Context) ServicePerimeterStatusVpcAccessibleServicesPtrOutput
type ServicePerimeters ¶
type ServicePerimeters struct {
pulumi.CustomResourceState
// The AccessPolicy this ServicePerimeter lives in.
// Format: accessPolicies/{policy_id}
Parent pulumi.StringOutput `pulumi:"parent"`
// The desired Service Perimeters that should replace all existing Service Perimeters in the Access Policy.
// Structure is documented below.
ServicePerimeters ServicePerimetersServicePerimeterArrayOutput `pulumi:"servicePerimeters"`
}
Replace all existing Service Perimeters in an Access Policy with the Service Perimeters provided. This is done atomically. This is a bulk edit of all Service Perimeters and may override existing Service Perimeters created by `accesscontextmanager.ServicePerimeter`, thus causing a permadiff if used alongside `accesscontextmanager.ServicePerimeter` on the same parent.
To get more information about ServicePerimeters, see:
* [API documentation](https://cloud.google.com/access-context-manager/docs/reference/rest/v1/accessPolicies.servicePerimeters) * How-to Guides
- [Service Perimeter Quickstart](https://cloud.google.com/vpc-service-controls/docs/quickstart)
## Example Usage ### Access Context Manager Service Perimeters Basic
```go package main
import (
"fmt" "github.com/pulumi/pulumi-gcp/sdk/v4/go/gcp/accesscontextmanager" "github.com/pulumi/pulumi/sdk/v2/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
_, err := accesscontextmanager.NewAccessPolicy(ctx, "access_policy", &accesscontextmanager.AccessPolicyArgs{
Parent: pulumi.String("organizations/123456789"),
Title: pulumi.String("my policy"),
})
if err != nil {
return err
}
_, err = accesscontextmanager.NewServicePerimeters(ctx, "service_perimeter", &accesscontextmanager.ServicePerimetersArgs{
Parent: access_policy.Name.ApplyT(func(name string) (string, error) {
return fmt.Sprintf("%v%v", "accessPolicies/", name), nil
}).(pulumi.StringOutput),
ServicePerimeters: accesscontextmanager.ServicePerimetersServicePerimeterArray{
&accesscontextmanager.ServicePerimetersServicePerimeterArgs{
Name: access_policy.Name.ApplyT(func(name string) (string, error) {
return fmt.Sprintf("%v%v%v", "accessPolicies/", name, "/servicePerimeters/"), nil
}).(pulumi.StringOutput),
Status: &accesscontextmanager.ServicePerimetersServicePerimeterStatusArgs{
RestrictedServices: pulumi.StringArray{
pulumi.String("storage.googleapis.com"),
},
},
Title: pulumi.String(""),
},
&accesscontextmanager.ServicePerimetersServicePerimeterArgs{
Name: access_policy.Name.ApplyT(func(name string) (string, error) {
return fmt.Sprintf("%v%v%v", "accessPolicies/", name, "/servicePerimeters/"), nil
}).(pulumi.StringOutput),
Status: &accesscontextmanager.ServicePerimetersServicePerimeterStatusArgs{
RestrictedServices: pulumi.StringArray{
pulumi.String("bigtable.googleapis.com"),
},
},
Title: pulumi.String(""),
},
},
})
if err != nil {
return err
}
_, err = accesscontextmanager.NewAccessLevel(ctx, "access_level", &accesscontextmanager.AccessLevelArgs{
Basic: &accesscontextmanager.AccessLevelBasicArgs{
Conditions: accesscontextmanager.AccessLevelBasicConditionArray{
&accesscontextmanager.AccessLevelBasicConditionArgs{
DevicePolicy: &accesscontextmanager.AccessLevelBasicConditionDevicePolicyArgs{
OsConstraints: accesscontextmanager.AccessLevelBasicConditionDevicePolicyOsConstraintArray{
&accesscontextmanager.AccessLevelBasicConditionDevicePolicyOsConstraintArgs{
OsType: pulumi.String("DESKTOP_CHROME_OS"),
},
},
RequireScreenLock: pulumi.Bool(false),
},
Regions: pulumi.StringArray{
pulumi.String("CH"),
pulumi.String("IT"),
pulumi.String("US"),
},
},
},
},
Parent: access_policy.Name.ApplyT(func(name string) (string, error) {
return fmt.Sprintf("%v%v", "accessPolicies/", name), nil
}).(pulumi.StringOutput),
Title: pulumi.String("chromeos_no_lock"),
})
if err != nil {
return err
}
return nil
})
}
```
## Import
ServicePerimeters can be imported using any of these accepted formats ¶
```sh
$ pulumi import gcp:accesscontextmanager/servicePerimeters:ServicePerimeters default {{parent}}/servicePerimeters
```
```sh
$ pulumi import gcp:accesscontextmanager/servicePerimeters:ServicePerimeters default {{parent}}
```
func GetServicePerimeters ¶
func GetServicePerimeters(ctx *pulumi.Context, name string, id pulumi.IDInput, state *ServicePerimetersState, opts ...pulumi.ResourceOption) (*ServicePerimeters, error)
GetServicePerimeters gets an existing ServicePerimeters resource's state with the given name, ID, and optional state properties that are used to uniquely qualify the lookup (nil if not required).
func NewServicePerimeters ¶
func NewServicePerimeters(ctx *pulumi.Context, name string, args *ServicePerimetersArgs, opts ...pulumi.ResourceOption) (*ServicePerimeters, error)
NewServicePerimeters registers a new resource with the given unique name, arguments, and options.
func (*ServicePerimeters) ElementType ¶ added in v4.4.0
func (*ServicePerimeters) ElementType() reflect.Type
func (*ServicePerimeters) ToServicePerimetersOutput ¶ added in v4.4.0
func (i *ServicePerimeters) ToServicePerimetersOutput() ServicePerimetersOutput
func (*ServicePerimeters) ToServicePerimetersOutputWithContext ¶ added in v4.4.0
func (i *ServicePerimeters) ToServicePerimetersOutputWithContext(ctx context.Context) ServicePerimetersOutput
type ServicePerimetersArgs ¶
type ServicePerimetersArgs struct {
// The AccessPolicy this ServicePerimeter lives in.
// Format: accessPolicies/{policy_id}
Parent pulumi.StringInput
// The desired Service Perimeters that should replace all existing Service Perimeters in the Access Policy.
// Structure is documented below.
ServicePerimeters ServicePerimetersServicePerimeterArrayInput
}
The set of arguments for constructing a ServicePerimeters resource.
func (ServicePerimetersArgs) ElementType ¶
func (ServicePerimetersArgs) ElementType() reflect.Type
type ServicePerimetersInput ¶ added in v4.4.0
type ServicePerimetersInput interface {
pulumi.Input
ToServicePerimetersOutput() ServicePerimetersOutput
ToServicePerimetersOutputWithContext(ctx context.Context) ServicePerimetersOutput
}
type ServicePerimetersOutput ¶ added in v4.4.0
type ServicePerimetersOutput struct {
*pulumi.OutputState
}
func (ServicePerimetersOutput) ElementType ¶ added in v4.4.0
func (ServicePerimetersOutput) ElementType() reflect.Type
func (ServicePerimetersOutput) ToServicePerimetersOutput ¶ added in v4.4.0
func (o ServicePerimetersOutput) ToServicePerimetersOutput() ServicePerimetersOutput
func (ServicePerimetersOutput) ToServicePerimetersOutputWithContext ¶ added in v4.4.0
func (o ServicePerimetersOutput) ToServicePerimetersOutputWithContext(ctx context.Context) ServicePerimetersOutput
type ServicePerimetersServicePerimeter ¶
type ServicePerimetersServicePerimeter struct {
// -
// Time the AccessPolicy was created in UTC.
CreateTime *string `pulumi:"createTime"`
// Description of the ServicePerimeter and its use. Does not affect
// behavior.
Description *string `pulumi:"description"`
// Resource name for the ServicePerimeter. The shortName component must
// begin with a letter and only include alphanumeric and '_'.
// Format: accessPolicies/{policy_id}/servicePerimeters/{short_name}
Name string `pulumi:"name"`
// Specifies the type of the Perimeter. There are two types: regular and
// bridge. Regular Service Perimeter contains resources, access levels,
// and restricted services. Every resource can be in at most
// ONE regular Service Perimeter.
// In addition to being in a regular service perimeter, a resource can also
// be in zero or more perimeter bridges. A perimeter bridge only contains
// resources. Cross project operations are permitted if all effected
// resources share some perimeter (whether bridge or regular). Perimeter
// Bridge does not contain access levels or services: those are governed
// entirely by the regular perimeter that resource is in.
// Perimeter Bridges are typically useful when building more complex
// topologies with many independent perimeters that need to share some data
// with a common perimeter, but should not be able to share data among
// themselves.
// Default value is `PERIMETER_TYPE_REGULAR`.
// Possible values are `PERIMETER_TYPE_REGULAR` and `PERIMETER_TYPE_BRIDGE`.
PerimeterType *string `pulumi:"perimeterType"`
// Proposed (or dry run) ServicePerimeter configuration.
// This configuration allows to specify and test ServicePerimeter configuration
// without enforcing actual access restrictions. Only allowed to be set when
// the `useExplicitDryRunSpec` flag is set.
// Structure is documented below.
Spec *ServicePerimetersServicePerimeterSpec `pulumi:"spec"`
// ServicePerimeter configuration. Specifies sets of resources,
// restricted services and access levels that determine
// perimeter content and boundaries.
// Structure is documented below.
Status *ServicePerimetersServicePerimeterStatus `pulumi:"status"`
// Human readable title. Must be unique within the Policy.
Title string `pulumi:"title"`
// -
// Time the AccessPolicy was updated in UTC.
UpdateTime *string `pulumi:"updateTime"`
// Use explicit dry run spec flag. Ordinarily, a dry-run spec implicitly exists
// for all Service Perimeters, and that spec is identical to the status for those
// Service Perimeters. When this flag is set, it inhibits the generation of the
// implicit spec, thereby allowing the user to explicitly provide a
// configuration ("spec") to use in a dry-run version of the Service Perimeter.
// This allows the user to test changes to the enforced config ("status") without
// actually enforcing them. This testing is done through analyzing the differences
// between currently enforced and suggested restrictions. useExplicitDryRunSpec must
// bet set to True if any of the fields in the spec are set to non-default values.
UseExplicitDryRunSpec *bool `pulumi:"useExplicitDryRunSpec"`
}
type ServicePerimetersServicePerimeterArgs ¶
type ServicePerimetersServicePerimeterArgs struct {
// -
// Time the AccessPolicy was created in UTC.
CreateTime pulumi.StringPtrInput `pulumi:"createTime"`
// Description of the ServicePerimeter and its use. Does not affect
// behavior.
Description pulumi.StringPtrInput `pulumi:"description"`
// Resource name for the ServicePerimeter. The shortName component must
// begin with a letter and only include alphanumeric and '_'.
// Format: accessPolicies/{policy_id}/servicePerimeters/{short_name}
Name pulumi.StringInput `pulumi:"name"`
// Specifies the type of the Perimeter. There are two types: regular and
// bridge. Regular Service Perimeter contains resources, access levels,
// and restricted services. Every resource can be in at most
// ONE regular Service Perimeter.
// In addition to being in a regular service perimeter, a resource can also
// be in zero or more perimeter bridges. A perimeter bridge only contains
// resources. Cross project operations are permitted if all effected
// resources share some perimeter (whether bridge or regular). Perimeter
// Bridge does not contain access levels or services: those are governed
// entirely by the regular perimeter that resource is in.
// Perimeter Bridges are typically useful when building more complex
// topologies with many independent perimeters that need to share some data
// with a common perimeter, but should not be able to share data among
// themselves.
// Default value is `PERIMETER_TYPE_REGULAR`.
// Possible values are `PERIMETER_TYPE_REGULAR` and `PERIMETER_TYPE_BRIDGE`.
PerimeterType pulumi.StringPtrInput `pulumi:"perimeterType"`
// Proposed (or dry run) ServicePerimeter configuration.
// This configuration allows to specify and test ServicePerimeter configuration
// without enforcing actual access restrictions. Only allowed to be set when
// the `useExplicitDryRunSpec` flag is set.
// Structure is documented below.
Spec ServicePerimetersServicePerimeterSpecPtrInput `pulumi:"spec"`
// ServicePerimeter configuration. Specifies sets of resources,
// restricted services and access levels that determine
// perimeter content and boundaries.
// Structure is documented below.
Status ServicePerimetersServicePerimeterStatusPtrInput `pulumi:"status"`
// Human readable title. Must be unique within the Policy.
Title pulumi.StringInput `pulumi:"title"`
// -
// Time the AccessPolicy was updated in UTC.
UpdateTime pulumi.StringPtrInput `pulumi:"updateTime"`
// Use explicit dry run spec flag. Ordinarily, a dry-run spec implicitly exists
// for all Service Perimeters, and that spec is identical to the status for those
// Service Perimeters. When this flag is set, it inhibits the generation of the
// implicit spec, thereby allowing the user to explicitly provide a
// configuration ("spec") to use in a dry-run version of the Service Perimeter.
// This allows the user to test changes to the enforced config ("status") without
// actually enforcing them. This testing is done through analyzing the differences
// between currently enforced and suggested restrictions. useExplicitDryRunSpec must
// bet set to True if any of the fields in the spec are set to non-default values.
UseExplicitDryRunSpec pulumi.BoolPtrInput `pulumi:"useExplicitDryRunSpec"`
}
func (ServicePerimetersServicePerimeterArgs) ElementType ¶
func (ServicePerimetersServicePerimeterArgs) ElementType() reflect.Type
func (ServicePerimetersServicePerimeterArgs) ToServicePerimetersServicePerimeterOutput ¶
func (i ServicePerimetersServicePerimeterArgs) ToServicePerimetersServicePerimeterOutput() ServicePerimetersServicePerimeterOutput
func (ServicePerimetersServicePerimeterArgs) ToServicePerimetersServicePerimeterOutputWithContext ¶
func (i ServicePerimetersServicePerimeterArgs) ToServicePerimetersServicePerimeterOutputWithContext(ctx context.Context) ServicePerimetersServicePerimeterOutput
type ServicePerimetersServicePerimeterArray ¶
type ServicePerimetersServicePerimeterArray []ServicePerimetersServicePerimeterInput
func (ServicePerimetersServicePerimeterArray) ElementType ¶
func (ServicePerimetersServicePerimeterArray) ElementType() reflect.Type
func (ServicePerimetersServicePerimeterArray) ToServicePerimetersServicePerimeterArrayOutput ¶
func (i ServicePerimetersServicePerimeterArray) ToServicePerimetersServicePerimeterArrayOutput() ServicePerimetersServicePerimeterArrayOutput
func (ServicePerimetersServicePerimeterArray) ToServicePerimetersServicePerimeterArrayOutputWithContext ¶
func (i ServicePerimetersServicePerimeterArray) ToServicePerimetersServicePerimeterArrayOutputWithContext(ctx context.Context) ServicePerimetersServicePerimeterArrayOutput
type ServicePerimetersServicePerimeterArrayInput ¶
type ServicePerimetersServicePerimeterArrayInput interface {
pulumi.Input
ToServicePerimetersServicePerimeterArrayOutput() ServicePerimetersServicePerimeterArrayOutput
ToServicePerimetersServicePerimeterArrayOutputWithContext(context.Context) ServicePerimetersServicePerimeterArrayOutput
}
ServicePerimetersServicePerimeterArrayInput is an input type that accepts ServicePerimetersServicePerimeterArray and ServicePerimetersServicePerimeterArrayOutput values. You can construct a concrete instance of `ServicePerimetersServicePerimeterArrayInput` via:
ServicePerimetersServicePerimeterArray{ ServicePerimetersServicePerimeterArgs{...} }
type ServicePerimetersServicePerimeterArrayOutput ¶
type ServicePerimetersServicePerimeterArrayOutput struct{ *pulumi.OutputState }
func (ServicePerimetersServicePerimeterArrayOutput) ElementType ¶
func (ServicePerimetersServicePerimeterArrayOutput) ElementType() reflect.Type
func (ServicePerimetersServicePerimeterArrayOutput) ToServicePerimetersServicePerimeterArrayOutput ¶
func (o ServicePerimetersServicePerimeterArrayOutput) ToServicePerimetersServicePerimeterArrayOutput() ServicePerimetersServicePerimeterArrayOutput
func (ServicePerimetersServicePerimeterArrayOutput) ToServicePerimetersServicePerimeterArrayOutputWithContext ¶
func (o ServicePerimetersServicePerimeterArrayOutput) ToServicePerimetersServicePerimeterArrayOutputWithContext(ctx context.Context) ServicePerimetersServicePerimeterArrayOutput
type ServicePerimetersServicePerimeterInput ¶
type ServicePerimetersServicePerimeterInput interface {
pulumi.Input
ToServicePerimetersServicePerimeterOutput() ServicePerimetersServicePerimeterOutput
ToServicePerimetersServicePerimeterOutputWithContext(context.Context) ServicePerimetersServicePerimeterOutput
}
ServicePerimetersServicePerimeterInput is an input type that accepts ServicePerimetersServicePerimeterArgs and ServicePerimetersServicePerimeterOutput values. You can construct a concrete instance of `ServicePerimetersServicePerimeterInput` via:
ServicePerimetersServicePerimeterArgs{...}
type ServicePerimetersServicePerimeterOutput ¶
type ServicePerimetersServicePerimeterOutput struct{ *pulumi.OutputState }
func (ServicePerimetersServicePerimeterOutput) CreateTime ¶
func (o ServicePerimetersServicePerimeterOutput) CreateTime() pulumi.StringPtrOutput
- Time the AccessPolicy was created in UTC.
func (ServicePerimetersServicePerimeterOutput) Description ¶
func (o ServicePerimetersServicePerimeterOutput) Description() pulumi.StringPtrOutput
Description of the ServicePerimeter and its use. Does not affect behavior.
func (ServicePerimetersServicePerimeterOutput) ElementType ¶
func (ServicePerimetersServicePerimeterOutput) ElementType() reflect.Type
func (ServicePerimetersServicePerimeterOutput) Name ¶
func (o ServicePerimetersServicePerimeterOutput) Name() pulumi.StringOutput
Resource name for the ServicePerimeter. The shortName component must begin with a letter and only include alphanumeric and '_'. Format: accessPolicies/{policy_id}/servicePerimeters/{short_name}
func (ServicePerimetersServicePerimeterOutput) PerimeterType ¶
func (o ServicePerimetersServicePerimeterOutput) PerimeterType() pulumi.StringPtrOutput
Specifies the type of the Perimeter. There are two types: regular and bridge. Regular Service Perimeter contains resources, access levels, and restricted services. Every resource can be in at most ONE regular Service Perimeter. In addition to being in a regular service perimeter, a resource can also be in zero or more perimeter bridges. A perimeter bridge only contains resources. Cross project operations are permitted if all effected resources share some perimeter (whether bridge or regular). Perimeter Bridge does not contain access levels or services: those are governed entirely by the regular perimeter that resource is in. Perimeter Bridges are typically useful when building more complex topologies with many independent perimeters that need to share some data with a common perimeter, but should not be able to share data among themselves. Default value is `PERIMETER_TYPE_REGULAR`. Possible values are `PERIMETER_TYPE_REGULAR` and `PERIMETER_TYPE_BRIDGE`.
func (ServicePerimetersServicePerimeterOutput) Spec ¶
func (o ServicePerimetersServicePerimeterOutput) Spec() ServicePerimetersServicePerimeterSpecPtrOutput
Proposed (or dry run) ServicePerimeter configuration. This configuration allows to specify and test ServicePerimeter configuration without enforcing actual access restrictions. Only allowed to be set when the `useExplicitDryRunSpec` flag is set. Structure is documented below.
func (ServicePerimetersServicePerimeterOutput) Status ¶
func (o ServicePerimetersServicePerimeterOutput) Status() ServicePerimetersServicePerimeterStatusPtrOutput
ServicePerimeter configuration. Specifies sets of resources, restricted services and access levels that determine perimeter content and boundaries. Structure is documented below.
func (ServicePerimetersServicePerimeterOutput) Title ¶
func (o ServicePerimetersServicePerimeterOutput) Title() pulumi.StringOutput
Human readable title. Must be unique within the Policy.
func (ServicePerimetersServicePerimeterOutput) ToServicePerimetersServicePerimeterOutput ¶
func (o ServicePerimetersServicePerimeterOutput) ToServicePerimetersServicePerimeterOutput() ServicePerimetersServicePerimeterOutput
func (ServicePerimetersServicePerimeterOutput) ToServicePerimetersServicePerimeterOutputWithContext ¶
func (o ServicePerimetersServicePerimeterOutput) ToServicePerimetersServicePerimeterOutputWithContext(ctx context.Context) ServicePerimetersServicePerimeterOutput
func (ServicePerimetersServicePerimeterOutput) UpdateTime ¶
func (o ServicePerimetersServicePerimeterOutput) UpdateTime() pulumi.StringPtrOutput
- Time the AccessPolicy was updated in UTC.
func (ServicePerimetersServicePerimeterOutput) UseExplicitDryRunSpec ¶
func (o ServicePerimetersServicePerimeterOutput) UseExplicitDryRunSpec() pulumi.BoolPtrOutput
Use explicit dry run spec flag. Ordinarily, a dry-run spec implicitly exists for all Service Perimeters, and that spec is identical to the status for those Service Perimeters. When this flag is set, it inhibits the generation of the implicit spec, thereby allowing the user to explicitly provide a configuration ("spec") to use in a dry-run version of the Service Perimeter. This allows the user to test changes to the enforced config ("status") without actually enforcing them. This testing is done through analyzing the differences between currently enforced and suggested restrictions. useExplicitDryRunSpec must bet set to True if any of the fields in the spec are set to non-default values.
type ServicePerimetersServicePerimeterSpec ¶
type ServicePerimetersServicePerimeterSpec struct {
// A list of AccessLevel resource names that allow resources within
// the ServicePerimeter to be accessed from the internet.
// AccessLevels listed must be in the same policy as this
// ServicePerimeter. Referencing a nonexistent AccessLevel is a
// syntax error. If no AccessLevel names are listed, resources within
// the perimeter can only be accessed via GCP calls with request
// origins within the perimeter. For Service Perimeter Bridge, must
// be empty.
// Format: accessPolicies/{policy_id}/accessLevels/{access_level_name}
AccessLevels []string `pulumi:"accessLevels"`
// A list of GCP resources that are inside of the service perimeter.
// Currently only projects are allowed.
// Format: projects/{project_number}
Resources []string `pulumi:"resources"`
// GCP services that are subject to the Service Perimeter
// restrictions. Must contain a list of services. For example, if
// `storage.googleapis.com` is specified, access to the storage
// buckets inside the perimeter must meet the perimeter's access
// restrictions.
RestrictedServices []string `pulumi:"restrictedServices"`
// Specifies how APIs are allowed to communicate within the Service
// Perimeter.
// Structure is documented below.
VpcAccessibleServices *ServicePerimetersServicePerimeterSpecVpcAccessibleServices `pulumi:"vpcAccessibleServices"`
}
type ServicePerimetersServicePerimeterSpecArgs ¶
type ServicePerimetersServicePerimeterSpecArgs struct {
// A list of AccessLevel resource names that allow resources within
// the ServicePerimeter to be accessed from the internet.
// AccessLevels listed must be in the same policy as this
// ServicePerimeter. Referencing a nonexistent AccessLevel is a
// syntax error. If no AccessLevel names are listed, resources within
// the perimeter can only be accessed via GCP calls with request
// origins within the perimeter. For Service Perimeter Bridge, must
// be empty.
// Format: accessPolicies/{policy_id}/accessLevels/{access_level_name}
AccessLevels pulumi.StringArrayInput `pulumi:"accessLevels"`
// A list of GCP resources that are inside of the service perimeter.
// Currently only projects are allowed.
// Format: projects/{project_number}
Resources pulumi.StringArrayInput `pulumi:"resources"`
// GCP services that are subject to the Service Perimeter
// restrictions. Must contain a list of services. For example, if
// `storage.googleapis.com` is specified, access to the storage
// buckets inside the perimeter must meet the perimeter's access
// restrictions.
RestrictedServices pulumi.StringArrayInput `pulumi:"restrictedServices"`
// Specifies how APIs are allowed to communicate within the Service
// Perimeter.
// Structure is documented below.
VpcAccessibleServices ServicePerimetersServicePerimeterSpecVpcAccessibleServicesPtrInput `pulumi:"vpcAccessibleServices"`
}
func (ServicePerimetersServicePerimeterSpecArgs) ElementType ¶
func (ServicePerimetersServicePerimeterSpecArgs) ElementType() reflect.Type
func (ServicePerimetersServicePerimeterSpecArgs) ToServicePerimetersServicePerimeterSpecOutput ¶
func (i ServicePerimetersServicePerimeterSpecArgs) ToServicePerimetersServicePerimeterSpecOutput() ServicePerimetersServicePerimeterSpecOutput
func (ServicePerimetersServicePerimeterSpecArgs) ToServicePerimetersServicePerimeterSpecOutputWithContext ¶
func (i ServicePerimetersServicePerimeterSpecArgs) ToServicePerimetersServicePerimeterSpecOutputWithContext(ctx context.Context) ServicePerimetersServicePerimeterSpecOutput
func (ServicePerimetersServicePerimeterSpecArgs) ToServicePerimetersServicePerimeterSpecPtrOutput ¶
func (i ServicePerimetersServicePerimeterSpecArgs) ToServicePerimetersServicePerimeterSpecPtrOutput() ServicePerimetersServicePerimeterSpecPtrOutput
func (ServicePerimetersServicePerimeterSpecArgs) ToServicePerimetersServicePerimeterSpecPtrOutputWithContext ¶
func (i ServicePerimetersServicePerimeterSpecArgs) ToServicePerimetersServicePerimeterSpecPtrOutputWithContext(ctx context.Context) ServicePerimetersServicePerimeterSpecPtrOutput
type ServicePerimetersServicePerimeterSpecInput ¶
type ServicePerimetersServicePerimeterSpecInput interface {
pulumi.Input
ToServicePerimetersServicePerimeterSpecOutput() ServicePerimetersServicePerimeterSpecOutput
ToServicePerimetersServicePerimeterSpecOutputWithContext(context.Context) ServicePerimetersServicePerimeterSpecOutput
}
ServicePerimetersServicePerimeterSpecInput is an input type that accepts ServicePerimetersServicePerimeterSpecArgs and ServicePerimetersServicePerimeterSpecOutput values. You can construct a concrete instance of `ServicePerimetersServicePerimeterSpecInput` via:
ServicePerimetersServicePerimeterSpecArgs{...}
type ServicePerimetersServicePerimeterSpecOutput ¶
type ServicePerimetersServicePerimeterSpecOutput struct{ *pulumi.OutputState }
func (ServicePerimetersServicePerimeterSpecOutput) AccessLevels ¶
func (o ServicePerimetersServicePerimeterSpecOutput) AccessLevels() pulumi.StringArrayOutput
A list of AccessLevel resource names that allow resources within the ServicePerimeter to be accessed from the internet. AccessLevels listed must be in the same policy as this ServicePerimeter. Referencing a nonexistent AccessLevel is a syntax error. If no AccessLevel names are listed, resources within the perimeter can only be accessed via GCP calls with request origins within the perimeter. For Service Perimeter Bridge, must be empty. Format: accessPolicies/{policy_id}/accessLevels/{access_level_name}
func (ServicePerimetersServicePerimeterSpecOutput) ElementType ¶
func (ServicePerimetersServicePerimeterSpecOutput) ElementType() reflect.Type
func (ServicePerimetersServicePerimeterSpecOutput) Resources ¶
func (o ServicePerimetersServicePerimeterSpecOutput) Resources() pulumi.StringArrayOutput
A list of GCP resources that are inside of the service perimeter. Currently only projects are allowed. Format: projects/{project_number}
func (ServicePerimetersServicePerimeterSpecOutput) RestrictedServices ¶
func (o ServicePerimetersServicePerimeterSpecOutput) RestrictedServices() pulumi.StringArrayOutput
GCP services that are subject to the Service Perimeter restrictions. Must contain a list of services. For example, if `storage.googleapis.com` is specified, access to the storage buckets inside the perimeter must meet the perimeter's access restrictions.
func (ServicePerimetersServicePerimeterSpecOutput) ToServicePerimetersServicePerimeterSpecOutput ¶
func (o ServicePerimetersServicePerimeterSpecOutput) ToServicePerimetersServicePerimeterSpecOutput() ServicePerimetersServicePerimeterSpecOutput
func (ServicePerimetersServicePerimeterSpecOutput) ToServicePerimetersServicePerimeterSpecOutputWithContext ¶
func (o ServicePerimetersServicePerimeterSpecOutput) ToServicePerimetersServicePerimeterSpecOutputWithContext(ctx context.Context) ServicePerimetersServicePerimeterSpecOutput
func (ServicePerimetersServicePerimeterSpecOutput) ToServicePerimetersServicePerimeterSpecPtrOutput ¶
func (o ServicePerimetersServicePerimeterSpecOutput) ToServicePerimetersServicePerimeterSpecPtrOutput() ServicePerimetersServicePerimeterSpecPtrOutput
func (ServicePerimetersServicePerimeterSpecOutput) ToServicePerimetersServicePerimeterSpecPtrOutputWithContext ¶
func (o ServicePerimetersServicePerimeterSpecOutput) ToServicePerimetersServicePerimeterSpecPtrOutputWithContext(ctx context.Context) ServicePerimetersServicePerimeterSpecPtrOutput
func (ServicePerimetersServicePerimeterSpecOutput) VpcAccessibleServices ¶
func (o ServicePerimetersServicePerimeterSpecOutput) VpcAccessibleServices() ServicePerimetersServicePerimeterSpecVpcAccessibleServicesPtrOutput
Specifies how APIs are allowed to communicate within the Service Perimeter. Structure is documented below.
type ServicePerimetersServicePerimeterSpecPtrInput ¶
type ServicePerimetersServicePerimeterSpecPtrInput interface {
pulumi.Input
ToServicePerimetersServicePerimeterSpecPtrOutput() ServicePerimetersServicePerimeterSpecPtrOutput
ToServicePerimetersServicePerimeterSpecPtrOutputWithContext(context.Context) ServicePerimetersServicePerimeterSpecPtrOutput
}
ServicePerimetersServicePerimeterSpecPtrInput is an input type that accepts ServicePerimetersServicePerimeterSpecArgs, ServicePerimetersServicePerimeterSpecPtr and ServicePerimetersServicePerimeterSpecPtrOutput values. You can construct a concrete instance of `ServicePerimetersServicePerimeterSpecPtrInput` via:
ServicePerimetersServicePerimeterSpecArgs{...}
or:
nil
func ServicePerimetersServicePerimeterSpecPtr ¶
func ServicePerimetersServicePerimeterSpecPtr(v *ServicePerimetersServicePerimeterSpecArgs) ServicePerimetersServicePerimeterSpecPtrInput
type ServicePerimetersServicePerimeterSpecPtrOutput ¶
type ServicePerimetersServicePerimeterSpecPtrOutput struct{ *pulumi.OutputState }
func (ServicePerimetersServicePerimeterSpecPtrOutput) AccessLevels ¶
func (o ServicePerimetersServicePerimeterSpecPtrOutput) AccessLevels() pulumi.StringArrayOutput
A list of AccessLevel resource names that allow resources within the ServicePerimeter to be accessed from the internet. AccessLevels listed must be in the same policy as this ServicePerimeter. Referencing a nonexistent AccessLevel is a syntax error. If no AccessLevel names are listed, resources within the perimeter can only be accessed via GCP calls with request origins within the perimeter. For Service Perimeter Bridge, must be empty. Format: accessPolicies/{policy_id}/accessLevels/{access_level_name}
func (ServicePerimetersServicePerimeterSpecPtrOutput) ElementType ¶
func (ServicePerimetersServicePerimeterSpecPtrOutput) ElementType() reflect.Type
func (ServicePerimetersServicePerimeterSpecPtrOutput) Resources ¶
func (o ServicePerimetersServicePerimeterSpecPtrOutput) Resources() pulumi.StringArrayOutput
A list of GCP resources that are inside of the service perimeter. Currently only projects are allowed. Format: projects/{project_number}
func (ServicePerimetersServicePerimeterSpecPtrOutput) RestrictedServices ¶
func (o ServicePerimetersServicePerimeterSpecPtrOutput) RestrictedServices() pulumi.StringArrayOutput
GCP services that are subject to the Service Perimeter restrictions. Must contain a list of services. For example, if `storage.googleapis.com` is specified, access to the storage buckets inside the perimeter must meet the perimeter's access restrictions.
func (ServicePerimetersServicePerimeterSpecPtrOutput) ToServicePerimetersServicePerimeterSpecPtrOutput ¶
func (o ServicePerimetersServicePerimeterSpecPtrOutput) ToServicePerimetersServicePerimeterSpecPtrOutput() ServicePerimetersServicePerimeterSpecPtrOutput
func (ServicePerimetersServicePerimeterSpecPtrOutput) ToServicePerimetersServicePerimeterSpecPtrOutputWithContext ¶
func (o ServicePerimetersServicePerimeterSpecPtrOutput) ToServicePerimetersServicePerimeterSpecPtrOutputWithContext(ctx context.Context) ServicePerimetersServicePerimeterSpecPtrOutput
func (ServicePerimetersServicePerimeterSpecPtrOutput) VpcAccessibleServices ¶
func (o ServicePerimetersServicePerimeterSpecPtrOutput) VpcAccessibleServices() ServicePerimetersServicePerimeterSpecVpcAccessibleServicesPtrOutput
Specifies how APIs are allowed to communicate within the Service Perimeter. Structure is documented below.
type ServicePerimetersServicePerimeterSpecVpcAccessibleServices ¶
type ServicePerimetersServicePerimeterSpecVpcAccessibleServices struct {
// The list of APIs usable within the Service Perimeter.
// Must be empty unless `enableRestriction` is True.
AllowedServices []string `pulumi:"allowedServices"`
// Whether to restrict API calls within the Service Perimeter to the
// list of APIs specified in 'allowedServices'.
EnableRestriction *bool `pulumi:"enableRestriction"`
}
type ServicePerimetersServicePerimeterSpecVpcAccessibleServicesArgs ¶
type ServicePerimetersServicePerimeterSpecVpcAccessibleServicesArgs struct {
// The list of APIs usable within the Service Perimeter.
// Must be empty unless `enableRestriction` is True.
AllowedServices pulumi.StringArrayInput `pulumi:"allowedServices"`
// Whether to restrict API calls within the Service Perimeter to the
// list of APIs specified in 'allowedServices'.
EnableRestriction pulumi.BoolPtrInput `pulumi:"enableRestriction"`
}
func (ServicePerimetersServicePerimeterSpecVpcAccessibleServicesArgs) ElementType ¶
func (ServicePerimetersServicePerimeterSpecVpcAccessibleServicesArgs) ElementType() reflect.Type
func (ServicePerimetersServicePerimeterSpecVpcAccessibleServicesArgs) ToServicePerimetersServicePerimeterSpecVpcAccessibleServicesOutput ¶
func (i ServicePerimetersServicePerimeterSpecVpcAccessibleServicesArgs) ToServicePerimetersServicePerimeterSpecVpcAccessibleServicesOutput() ServicePerimetersServicePerimeterSpecVpcAccessibleServicesOutput
func (ServicePerimetersServicePerimeterSpecVpcAccessibleServicesArgs) ToServicePerimetersServicePerimeterSpecVpcAccessibleServicesOutputWithContext ¶
func (i ServicePerimetersServicePerimeterSpecVpcAccessibleServicesArgs) ToServicePerimetersServicePerimeterSpecVpcAccessibleServicesOutputWithContext(ctx context.Context) ServicePerimetersServicePerimeterSpecVpcAccessibleServicesOutput
func (ServicePerimetersServicePerimeterSpecVpcAccessibleServicesArgs) ToServicePerimetersServicePerimeterSpecVpcAccessibleServicesPtrOutput ¶
func (i ServicePerimetersServicePerimeterSpecVpcAccessibleServicesArgs) ToServicePerimetersServicePerimeterSpecVpcAccessibleServicesPtrOutput() ServicePerimetersServicePerimeterSpecVpcAccessibleServicesPtrOutput
func (ServicePerimetersServicePerimeterSpecVpcAccessibleServicesArgs) ToServicePerimetersServicePerimeterSpecVpcAccessibleServicesPtrOutputWithContext ¶
func (i ServicePerimetersServicePerimeterSpecVpcAccessibleServicesArgs) ToServicePerimetersServicePerimeterSpecVpcAccessibleServicesPtrOutputWithContext(ctx context.Context) ServicePerimetersServicePerimeterSpecVpcAccessibleServicesPtrOutput
type ServicePerimetersServicePerimeterSpecVpcAccessibleServicesInput ¶
type ServicePerimetersServicePerimeterSpecVpcAccessibleServicesInput interface {
pulumi.Input
ToServicePerimetersServicePerimeterSpecVpcAccessibleServicesOutput() ServicePerimetersServicePerimeterSpecVpcAccessibleServicesOutput
ToServicePerimetersServicePerimeterSpecVpcAccessibleServicesOutputWithContext(context.Context) ServicePerimetersServicePerimeterSpecVpcAccessibleServicesOutput
}
ServicePerimetersServicePerimeterSpecVpcAccessibleServicesInput is an input type that accepts ServicePerimetersServicePerimeterSpecVpcAccessibleServicesArgs and ServicePerimetersServicePerimeterSpecVpcAccessibleServicesOutput values. You can construct a concrete instance of `ServicePerimetersServicePerimeterSpecVpcAccessibleServicesInput` via:
ServicePerimetersServicePerimeterSpecVpcAccessibleServicesArgs{...}
type ServicePerimetersServicePerimeterSpecVpcAccessibleServicesOutput ¶
type ServicePerimetersServicePerimeterSpecVpcAccessibleServicesOutput struct{ *pulumi.OutputState }
func (ServicePerimetersServicePerimeterSpecVpcAccessibleServicesOutput) AllowedServices ¶
func (o ServicePerimetersServicePerimeterSpecVpcAccessibleServicesOutput) AllowedServices() pulumi.StringArrayOutput
The list of APIs usable within the Service Perimeter. Must be empty unless `enableRestriction` is True.
func (ServicePerimetersServicePerimeterSpecVpcAccessibleServicesOutput) ElementType ¶
func (ServicePerimetersServicePerimeterSpecVpcAccessibleServicesOutput) ElementType() reflect.Type
func (ServicePerimetersServicePerimeterSpecVpcAccessibleServicesOutput) EnableRestriction ¶
func (o ServicePerimetersServicePerimeterSpecVpcAccessibleServicesOutput) EnableRestriction() pulumi.BoolPtrOutput
Whether to restrict API calls within the Service Perimeter to the list of APIs specified in 'allowedServices'.
func (ServicePerimetersServicePerimeterSpecVpcAccessibleServicesOutput) ToServicePerimetersServicePerimeterSpecVpcAccessibleServicesOutput ¶
func (o ServicePerimetersServicePerimeterSpecVpcAccessibleServicesOutput) ToServicePerimetersServicePerimeterSpecVpcAccessibleServicesOutput() ServicePerimetersServicePerimeterSpecVpcAccessibleServicesOutput
func (ServicePerimetersServicePerimeterSpecVpcAccessibleServicesOutput) ToServicePerimetersServicePerimeterSpecVpcAccessibleServicesOutputWithContext ¶
func (o ServicePerimetersServicePerimeterSpecVpcAccessibleServicesOutput) ToServicePerimetersServicePerimeterSpecVpcAccessibleServicesOutputWithContext(ctx context.Context) ServicePerimetersServicePerimeterSpecVpcAccessibleServicesOutput
func (ServicePerimetersServicePerimeterSpecVpcAccessibleServicesOutput) ToServicePerimetersServicePerimeterSpecVpcAccessibleServicesPtrOutput ¶
func (o ServicePerimetersServicePerimeterSpecVpcAccessibleServicesOutput) ToServicePerimetersServicePerimeterSpecVpcAccessibleServicesPtrOutput() ServicePerimetersServicePerimeterSpecVpcAccessibleServicesPtrOutput
func (ServicePerimetersServicePerimeterSpecVpcAccessibleServicesOutput) ToServicePerimetersServicePerimeterSpecVpcAccessibleServicesPtrOutputWithContext ¶
func (o ServicePerimetersServicePerimeterSpecVpcAccessibleServicesOutput) ToServicePerimetersServicePerimeterSpecVpcAccessibleServicesPtrOutputWithContext(ctx context.Context) ServicePerimetersServicePerimeterSpecVpcAccessibleServicesPtrOutput
type ServicePerimetersServicePerimeterSpecVpcAccessibleServicesPtrInput ¶
type ServicePerimetersServicePerimeterSpecVpcAccessibleServicesPtrInput interface {
pulumi.Input
ToServicePerimetersServicePerimeterSpecVpcAccessibleServicesPtrOutput() ServicePerimetersServicePerimeterSpecVpcAccessibleServicesPtrOutput
ToServicePerimetersServicePerimeterSpecVpcAccessibleServicesPtrOutputWithContext(context.Context) ServicePerimetersServicePerimeterSpecVpcAccessibleServicesPtrOutput
}
ServicePerimetersServicePerimeterSpecVpcAccessibleServicesPtrInput is an input type that accepts ServicePerimetersServicePerimeterSpecVpcAccessibleServicesArgs, ServicePerimetersServicePerimeterSpecVpcAccessibleServicesPtr and ServicePerimetersServicePerimeterSpecVpcAccessibleServicesPtrOutput values. You can construct a concrete instance of `ServicePerimetersServicePerimeterSpecVpcAccessibleServicesPtrInput` via:
ServicePerimetersServicePerimeterSpecVpcAccessibleServicesArgs{...}
or:
nil
func ServicePerimetersServicePerimeterSpecVpcAccessibleServicesPtr ¶
func ServicePerimetersServicePerimeterSpecVpcAccessibleServicesPtr(v *ServicePerimetersServicePerimeterSpecVpcAccessibleServicesArgs) ServicePerimetersServicePerimeterSpecVpcAccessibleServicesPtrInput
type ServicePerimetersServicePerimeterSpecVpcAccessibleServicesPtrOutput ¶
type ServicePerimetersServicePerimeterSpecVpcAccessibleServicesPtrOutput struct{ *pulumi.OutputState }
func (ServicePerimetersServicePerimeterSpecVpcAccessibleServicesPtrOutput) AllowedServices ¶
func (o ServicePerimetersServicePerimeterSpecVpcAccessibleServicesPtrOutput) AllowedServices() pulumi.StringArrayOutput
The list of APIs usable within the Service Perimeter. Must be empty unless `enableRestriction` is True.
func (ServicePerimetersServicePerimeterSpecVpcAccessibleServicesPtrOutput) ElementType ¶
func (ServicePerimetersServicePerimeterSpecVpcAccessibleServicesPtrOutput) ElementType() reflect.Type
func (ServicePerimetersServicePerimeterSpecVpcAccessibleServicesPtrOutput) EnableRestriction ¶
func (o ServicePerimetersServicePerimeterSpecVpcAccessibleServicesPtrOutput) EnableRestriction() pulumi.BoolPtrOutput
Whether to restrict API calls within the Service Perimeter to the list of APIs specified in 'allowedServices'.
func (ServicePerimetersServicePerimeterSpecVpcAccessibleServicesPtrOutput) ToServicePerimetersServicePerimeterSpecVpcAccessibleServicesPtrOutput ¶
func (o ServicePerimetersServicePerimeterSpecVpcAccessibleServicesPtrOutput) ToServicePerimetersServicePerimeterSpecVpcAccessibleServicesPtrOutput() ServicePerimetersServicePerimeterSpecVpcAccessibleServicesPtrOutput
func (ServicePerimetersServicePerimeterSpecVpcAccessibleServicesPtrOutput) ToServicePerimetersServicePerimeterSpecVpcAccessibleServicesPtrOutputWithContext ¶
func (o ServicePerimetersServicePerimeterSpecVpcAccessibleServicesPtrOutput) ToServicePerimetersServicePerimeterSpecVpcAccessibleServicesPtrOutputWithContext(ctx context.Context) ServicePerimetersServicePerimeterSpecVpcAccessibleServicesPtrOutput
type ServicePerimetersServicePerimeterStatus ¶
type ServicePerimetersServicePerimeterStatus struct {
// A list of AccessLevel resource names that allow resources within
// the ServicePerimeter to be accessed from the internet.
// AccessLevels listed must be in the same policy as this
// ServicePerimeter. Referencing a nonexistent AccessLevel is a
// syntax error. If no AccessLevel names are listed, resources within
// the perimeter can only be accessed via GCP calls with request
// origins within the perimeter. For Service Perimeter Bridge, must
// be empty.
// Format: accessPolicies/{policy_id}/accessLevels/{access_level_name}
AccessLevels []string `pulumi:"accessLevels"`
// A list of GCP resources that are inside of the service perimeter.
// Currently only projects are allowed.
// Format: projects/{project_number}
Resources []string `pulumi:"resources"`
// GCP services that are subject to the Service Perimeter
// restrictions. Must contain a list of services. For example, if
// `storage.googleapis.com` is specified, access to the storage
// buckets inside the perimeter must meet the perimeter's access
// restrictions.
RestrictedServices []string `pulumi:"restrictedServices"`
// Specifies how APIs are allowed to communicate within the Service
// Perimeter.
// Structure is documented below.
VpcAccessibleServices *ServicePerimetersServicePerimeterStatusVpcAccessibleServices `pulumi:"vpcAccessibleServices"`
}
type ServicePerimetersServicePerimeterStatusArgs ¶
type ServicePerimetersServicePerimeterStatusArgs struct {
// A list of AccessLevel resource names that allow resources within
// the ServicePerimeter to be accessed from the internet.
// AccessLevels listed must be in the same policy as this
// ServicePerimeter. Referencing a nonexistent AccessLevel is a
// syntax error. If no AccessLevel names are listed, resources within
// the perimeter can only be accessed via GCP calls with request
// origins within the perimeter. For Service Perimeter Bridge, must
// be empty.
// Format: accessPolicies/{policy_id}/accessLevels/{access_level_name}
AccessLevels pulumi.StringArrayInput `pulumi:"accessLevels"`
// A list of GCP resources that are inside of the service perimeter.
// Currently only projects are allowed.
// Format: projects/{project_number}
Resources pulumi.StringArrayInput `pulumi:"resources"`
// GCP services that are subject to the Service Perimeter
// restrictions. Must contain a list of services. For example, if
// `storage.googleapis.com` is specified, access to the storage
// buckets inside the perimeter must meet the perimeter's access
// restrictions.
RestrictedServices pulumi.StringArrayInput `pulumi:"restrictedServices"`
// Specifies how APIs are allowed to communicate within the Service
// Perimeter.
// Structure is documented below.
VpcAccessibleServices ServicePerimetersServicePerimeterStatusVpcAccessibleServicesPtrInput `pulumi:"vpcAccessibleServices"`
}
func (ServicePerimetersServicePerimeterStatusArgs) ElementType ¶
func (ServicePerimetersServicePerimeterStatusArgs) ElementType() reflect.Type
func (ServicePerimetersServicePerimeterStatusArgs) ToServicePerimetersServicePerimeterStatusOutput ¶
func (i ServicePerimetersServicePerimeterStatusArgs) ToServicePerimetersServicePerimeterStatusOutput() ServicePerimetersServicePerimeterStatusOutput
func (ServicePerimetersServicePerimeterStatusArgs) ToServicePerimetersServicePerimeterStatusOutputWithContext ¶
func (i ServicePerimetersServicePerimeterStatusArgs) ToServicePerimetersServicePerimeterStatusOutputWithContext(ctx context.Context) ServicePerimetersServicePerimeterStatusOutput
func (ServicePerimetersServicePerimeterStatusArgs) ToServicePerimetersServicePerimeterStatusPtrOutput ¶
func (i ServicePerimetersServicePerimeterStatusArgs) ToServicePerimetersServicePerimeterStatusPtrOutput() ServicePerimetersServicePerimeterStatusPtrOutput
func (ServicePerimetersServicePerimeterStatusArgs) ToServicePerimetersServicePerimeterStatusPtrOutputWithContext ¶
func (i ServicePerimetersServicePerimeterStatusArgs) ToServicePerimetersServicePerimeterStatusPtrOutputWithContext(ctx context.Context) ServicePerimetersServicePerimeterStatusPtrOutput
type ServicePerimetersServicePerimeterStatusInput ¶
type ServicePerimetersServicePerimeterStatusInput interface {
pulumi.Input
ToServicePerimetersServicePerimeterStatusOutput() ServicePerimetersServicePerimeterStatusOutput
ToServicePerimetersServicePerimeterStatusOutputWithContext(context.Context) ServicePerimetersServicePerimeterStatusOutput
}
ServicePerimetersServicePerimeterStatusInput is an input type that accepts ServicePerimetersServicePerimeterStatusArgs and ServicePerimetersServicePerimeterStatusOutput values. You can construct a concrete instance of `ServicePerimetersServicePerimeterStatusInput` via:
ServicePerimetersServicePerimeterStatusArgs{...}
type ServicePerimetersServicePerimeterStatusOutput ¶
type ServicePerimetersServicePerimeterStatusOutput struct{ *pulumi.OutputState }
func (ServicePerimetersServicePerimeterStatusOutput) AccessLevels ¶
func (o ServicePerimetersServicePerimeterStatusOutput) AccessLevels() pulumi.StringArrayOutput
A list of AccessLevel resource names that allow resources within the ServicePerimeter to be accessed from the internet. AccessLevels listed must be in the same policy as this ServicePerimeter. Referencing a nonexistent AccessLevel is a syntax error. If no AccessLevel names are listed, resources within the perimeter can only be accessed via GCP calls with request origins within the perimeter. For Service Perimeter Bridge, must be empty. Format: accessPolicies/{policy_id}/accessLevels/{access_level_name}
func (ServicePerimetersServicePerimeterStatusOutput) ElementType ¶
func (ServicePerimetersServicePerimeterStatusOutput) ElementType() reflect.Type
func (ServicePerimetersServicePerimeterStatusOutput) Resources ¶
func (o ServicePerimetersServicePerimeterStatusOutput) Resources() pulumi.StringArrayOutput
A list of GCP resources that are inside of the service perimeter. Currently only projects are allowed. Format: projects/{project_number}
func (ServicePerimetersServicePerimeterStatusOutput) RestrictedServices ¶
func (o ServicePerimetersServicePerimeterStatusOutput) RestrictedServices() pulumi.StringArrayOutput
GCP services that are subject to the Service Perimeter restrictions. Must contain a list of services. For example, if `storage.googleapis.com` is specified, access to the storage buckets inside the perimeter must meet the perimeter's access restrictions.
func (ServicePerimetersServicePerimeterStatusOutput) ToServicePerimetersServicePerimeterStatusOutput ¶
func (o ServicePerimetersServicePerimeterStatusOutput) ToServicePerimetersServicePerimeterStatusOutput() ServicePerimetersServicePerimeterStatusOutput
func (ServicePerimetersServicePerimeterStatusOutput) ToServicePerimetersServicePerimeterStatusOutputWithContext ¶
func (o ServicePerimetersServicePerimeterStatusOutput) ToServicePerimetersServicePerimeterStatusOutputWithContext(ctx context.Context) ServicePerimetersServicePerimeterStatusOutput
func (ServicePerimetersServicePerimeterStatusOutput) ToServicePerimetersServicePerimeterStatusPtrOutput ¶
func (o ServicePerimetersServicePerimeterStatusOutput) ToServicePerimetersServicePerimeterStatusPtrOutput() ServicePerimetersServicePerimeterStatusPtrOutput
func (ServicePerimetersServicePerimeterStatusOutput) ToServicePerimetersServicePerimeterStatusPtrOutputWithContext ¶
func (o ServicePerimetersServicePerimeterStatusOutput) ToServicePerimetersServicePerimeterStatusPtrOutputWithContext(ctx context.Context) ServicePerimetersServicePerimeterStatusPtrOutput
func (ServicePerimetersServicePerimeterStatusOutput) VpcAccessibleServices ¶
func (o ServicePerimetersServicePerimeterStatusOutput) VpcAccessibleServices() ServicePerimetersServicePerimeterStatusVpcAccessibleServicesPtrOutput
Specifies how APIs are allowed to communicate within the Service Perimeter. Structure is documented below.
type ServicePerimetersServicePerimeterStatusPtrInput ¶
type ServicePerimetersServicePerimeterStatusPtrInput interface {
pulumi.Input
ToServicePerimetersServicePerimeterStatusPtrOutput() ServicePerimetersServicePerimeterStatusPtrOutput
ToServicePerimetersServicePerimeterStatusPtrOutputWithContext(context.Context) ServicePerimetersServicePerimeterStatusPtrOutput
}
ServicePerimetersServicePerimeterStatusPtrInput is an input type that accepts ServicePerimetersServicePerimeterStatusArgs, ServicePerimetersServicePerimeterStatusPtr and ServicePerimetersServicePerimeterStatusPtrOutput values. You can construct a concrete instance of `ServicePerimetersServicePerimeterStatusPtrInput` via:
ServicePerimetersServicePerimeterStatusArgs{...}
or:
nil
func ServicePerimetersServicePerimeterStatusPtr ¶
func ServicePerimetersServicePerimeterStatusPtr(v *ServicePerimetersServicePerimeterStatusArgs) ServicePerimetersServicePerimeterStatusPtrInput
type ServicePerimetersServicePerimeterStatusPtrOutput ¶
type ServicePerimetersServicePerimeterStatusPtrOutput struct{ *pulumi.OutputState }
func (ServicePerimetersServicePerimeterStatusPtrOutput) AccessLevels ¶
func (o ServicePerimetersServicePerimeterStatusPtrOutput) AccessLevels() pulumi.StringArrayOutput
A list of AccessLevel resource names that allow resources within the ServicePerimeter to be accessed from the internet. AccessLevels listed must be in the same policy as this ServicePerimeter. Referencing a nonexistent AccessLevel is a syntax error. If no AccessLevel names are listed, resources within the perimeter can only be accessed via GCP calls with request origins within the perimeter. For Service Perimeter Bridge, must be empty. Format: accessPolicies/{policy_id}/accessLevels/{access_level_name}
func (ServicePerimetersServicePerimeterStatusPtrOutput) ElementType ¶
func (ServicePerimetersServicePerimeterStatusPtrOutput) ElementType() reflect.Type
func (ServicePerimetersServicePerimeterStatusPtrOutput) Resources ¶
func (o ServicePerimetersServicePerimeterStatusPtrOutput) Resources() pulumi.StringArrayOutput
A list of GCP resources that are inside of the service perimeter. Currently only projects are allowed. Format: projects/{project_number}
func (ServicePerimetersServicePerimeterStatusPtrOutput) RestrictedServices ¶
func (o ServicePerimetersServicePerimeterStatusPtrOutput) RestrictedServices() pulumi.StringArrayOutput
GCP services that are subject to the Service Perimeter restrictions. Must contain a list of services. For example, if `storage.googleapis.com` is specified, access to the storage buckets inside the perimeter must meet the perimeter's access restrictions.
func (ServicePerimetersServicePerimeterStatusPtrOutput) ToServicePerimetersServicePerimeterStatusPtrOutput ¶
func (o ServicePerimetersServicePerimeterStatusPtrOutput) ToServicePerimetersServicePerimeterStatusPtrOutput() ServicePerimetersServicePerimeterStatusPtrOutput
func (ServicePerimetersServicePerimeterStatusPtrOutput) ToServicePerimetersServicePerimeterStatusPtrOutputWithContext ¶
func (o ServicePerimetersServicePerimeterStatusPtrOutput) ToServicePerimetersServicePerimeterStatusPtrOutputWithContext(ctx context.Context) ServicePerimetersServicePerimeterStatusPtrOutput
func (ServicePerimetersServicePerimeterStatusPtrOutput) VpcAccessibleServices ¶
func (o ServicePerimetersServicePerimeterStatusPtrOutput) VpcAccessibleServices() ServicePerimetersServicePerimeterStatusVpcAccessibleServicesPtrOutput
Specifies how APIs are allowed to communicate within the Service Perimeter. Structure is documented below.
type ServicePerimetersServicePerimeterStatusVpcAccessibleServices ¶
type ServicePerimetersServicePerimeterStatusVpcAccessibleServices struct {
// The list of APIs usable within the Service Perimeter.
// Must be empty unless `enableRestriction` is True.
AllowedServices []string `pulumi:"allowedServices"`
// Whether to restrict API calls within the Service Perimeter to the
// list of APIs specified in 'allowedServices'.
EnableRestriction *bool `pulumi:"enableRestriction"`
}
type ServicePerimetersServicePerimeterStatusVpcAccessibleServicesArgs ¶
type ServicePerimetersServicePerimeterStatusVpcAccessibleServicesArgs struct {
// The list of APIs usable within the Service Perimeter.
// Must be empty unless `enableRestriction` is True.
AllowedServices pulumi.StringArrayInput `pulumi:"allowedServices"`
// Whether to restrict API calls within the Service Perimeter to the
// list of APIs specified in 'allowedServices'.
EnableRestriction pulumi.BoolPtrInput `pulumi:"enableRestriction"`
}
func (ServicePerimetersServicePerimeterStatusVpcAccessibleServicesArgs) ElementType ¶
func (ServicePerimetersServicePerimeterStatusVpcAccessibleServicesArgs) ElementType() reflect.Type
func (ServicePerimetersServicePerimeterStatusVpcAccessibleServicesArgs) ToServicePerimetersServicePerimeterStatusVpcAccessibleServicesOutput ¶
func (i ServicePerimetersServicePerimeterStatusVpcAccessibleServicesArgs) ToServicePerimetersServicePerimeterStatusVpcAccessibleServicesOutput() ServicePerimetersServicePerimeterStatusVpcAccessibleServicesOutput
func (ServicePerimetersServicePerimeterStatusVpcAccessibleServicesArgs) ToServicePerimetersServicePerimeterStatusVpcAccessibleServicesOutputWithContext ¶
func (i ServicePerimetersServicePerimeterStatusVpcAccessibleServicesArgs) ToServicePerimetersServicePerimeterStatusVpcAccessibleServicesOutputWithContext(ctx context.Context) ServicePerimetersServicePerimeterStatusVpcAccessibleServicesOutput
func (ServicePerimetersServicePerimeterStatusVpcAccessibleServicesArgs) ToServicePerimetersServicePerimeterStatusVpcAccessibleServicesPtrOutput ¶
func (i ServicePerimetersServicePerimeterStatusVpcAccessibleServicesArgs) ToServicePerimetersServicePerimeterStatusVpcAccessibleServicesPtrOutput() ServicePerimetersServicePerimeterStatusVpcAccessibleServicesPtrOutput
func (ServicePerimetersServicePerimeterStatusVpcAccessibleServicesArgs) ToServicePerimetersServicePerimeterStatusVpcAccessibleServicesPtrOutputWithContext ¶
func (i ServicePerimetersServicePerimeterStatusVpcAccessibleServicesArgs) ToServicePerimetersServicePerimeterStatusVpcAccessibleServicesPtrOutputWithContext(ctx context.Context) ServicePerimetersServicePerimeterStatusVpcAccessibleServicesPtrOutput
type ServicePerimetersServicePerimeterStatusVpcAccessibleServicesInput ¶
type ServicePerimetersServicePerimeterStatusVpcAccessibleServicesInput interface {
pulumi.Input
ToServicePerimetersServicePerimeterStatusVpcAccessibleServicesOutput() ServicePerimetersServicePerimeterStatusVpcAccessibleServicesOutput
ToServicePerimetersServicePerimeterStatusVpcAccessibleServicesOutputWithContext(context.Context) ServicePerimetersServicePerimeterStatusVpcAccessibleServicesOutput
}
ServicePerimetersServicePerimeterStatusVpcAccessibleServicesInput is an input type that accepts ServicePerimetersServicePerimeterStatusVpcAccessibleServicesArgs and ServicePerimetersServicePerimeterStatusVpcAccessibleServicesOutput values. You can construct a concrete instance of `ServicePerimetersServicePerimeterStatusVpcAccessibleServicesInput` via:
ServicePerimetersServicePerimeterStatusVpcAccessibleServicesArgs{...}
type ServicePerimetersServicePerimeterStatusVpcAccessibleServicesOutput ¶
type ServicePerimetersServicePerimeterStatusVpcAccessibleServicesOutput struct{ *pulumi.OutputState }
func (ServicePerimetersServicePerimeterStatusVpcAccessibleServicesOutput) AllowedServices ¶
func (o ServicePerimetersServicePerimeterStatusVpcAccessibleServicesOutput) AllowedServices() pulumi.StringArrayOutput
The list of APIs usable within the Service Perimeter. Must be empty unless `enableRestriction` is True.
func (ServicePerimetersServicePerimeterStatusVpcAccessibleServicesOutput) ElementType ¶
func (ServicePerimetersServicePerimeterStatusVpcAccessibleServicesOutput) ElementType() reflect.Type
func (ServicePerimetersServicePerimeterStatusVpcAccessibleServicesOutput) EnableRestriction ¶
func (o ServicePerimetersServicePerimeterStatusVpcAccessibleServicesOutput) EnableRestriction() pulumi.BoolPtrOutput
Whether to restrict API calls within the Service Perimeter to the list of APIs specified in 'allowedServices'.
func (ServicePerimetersServicePerimeterStatusVpcAccessibleServicesOutput) ToServicePerimetersServicePerimeterStatusVpcAccessibleServicesOutput ¶
func (o ServicePerimetersServicePerimeterStatusVpcAccessibleServicesOutput) ToServicePerimetersServicePerimeterStatusVpcAccessibleServicesOutput() ServicePerimetersServicePerimeterStatusVpcAccessibleServicesOutput
func (ServicePerimetersServicePerimeterStatusVpcAccessibleServicesOutput) ToServicePerimetersServicePerimeterStatusVpcAccessibleServicesOutputWithContext ¶
func (o ServicePerimetersServicePerimeterStatusVpcAccessibleServicesOutput) ToServicePerimetersServicePerimeterStatusVpcAccessibleServicesOutputWithContext(ctx context.Context) ServicePerimetersServicePerimeterStatusVpcAccessibleServicesOutput
func (ServicePerimetersServicePerimeterStatusVpcAccessibleServicesOutput) ToServicePerimetersServicePerimeterStatusVpcAccessibleServicesPtrOutput ¶
func (o ServicePerimetersServicePerimeterStatusVpcAccessibleServicesOutput) ToServicePerimetersServicePerimeterStatusVpcAccessibleServicesPtrOutput() ServicePerimetersServicePerimeterStatusVpcAccessibleServicesPtrOutput
func (ServicePerimetersServicePerimeterStatusVpcAccessibleServicesOutput) ToServicePerimetersServicePerimeterStatusVpcAccessibleServicesPtrOutputWithContext ¶
func (o ServicePerimetersServicePerimeterStatusVpcAccessibleServicesOutput) ToServicePerimetersServicePerimeterStatusVpcAccessibleServicesPtrOutputWithContext(ctx context.Context) ServicePerimetersServicePerimeterStatusVpcAccessibleServicesPtrOutput
type ServicePerimetersServicePerimeterStatusVpcAccessibleServicesPtrInput ¶
type ServicePerimetersServicePerimeterStatusVpcAccessibleServicesPtrInput interface {
pulumi.Input
ToServicePerimetersServicePerimeterStatusVpcAccessibleServicesPtrOutput() ServicePerimetersServicePerimeterStatusVpcAccessibleServicesPtrOutput
ToServicePerimetersServicePerimeterStatusVpcAccessibleServicesPtrOutputWithContext(context.Context) ServicePerimetersServicePerimeterStatusVpcAccessibleServicesPtrOutput
}
ServicePerimetersServicePerimeterStatusVpcAccessibleServicesPtrInput is an input type that accepts ServicePerimetersServicePerimeterStatusVpcAccessibleServicesArgs, ServicePerimetersServicePerimeterStatusVpcAccessibleServicesPtr and ServicePerimetersServicePerimeterStatusVpcAccessibleServicesPtrOutput values. You can construct a concrete instance of `ServicePerimetersServicePerimeterStatusVpcAccessibleServicesPtrInput` via:
ServicePerimetersServicePerimeterStatusVpcAccessibleServicesArgs{...}
or:
nil
func ServicePerimetersServicePerimeterStatusVpcAccessibleServicesPtr ¶
func ServicePerimetersServicePerimeterStatusVpcAccessibleServicesPtr(v *ServicePerimetersServicePerimeterStatusVpcAccessibleServicesArgs) ServicePerimetersServicePerimeterStatusVpcAccessibleServicesPtrInput
type ServicePerimetersServicePerimeterStatusVpcAccessibleServicesPtrOutput ¶
type ServicePerimetersServicePerimeterStatusVpcAccessibleServicesPtrOutput struct{ *pulumi.OutputState }
func (ServicePerimetersServicePerimeterStatusVpcAccessibleServicesPtrOutput) AllowedServices ¶
func (o ServicePerimetersServicePerimeterStatusVpcAccessibleServicesPtrOutput) AllowedServices() pulumi.StringArrayOutput
The list of APIs usable within the Service Perimeter. Must be empty unless `enableRestriction` is True.
func (ServicePerimetersServicePerimeterStatusVpcAccessibleServicesPtrOutput) ElementType ¶
func (ServicePerimetersServicePerimeterStatusVpcAccessibleServicesPtrOutput) ElementType() reflect.Type
func (ServicePerimetersServicePerimeterStatusVpcAccessibleServicesPtrOutput) EnableRestriction ¶
func (o ServicePerimetersServicePerimeterStatusVpcAccessibleServicesPtrOutput) EnableRestriction() pulumi.BoolPtrOutput
Whether to restrict API calls within the Service Perimeter to the list of APIs specified in 'allowedServices'.
func (ServicePerimetersServicePerimeterStatusVpcAccessibleServicesPtrOutput) ToServicePerimetersServicePerimeterStatusVpcAccessibleServicesPtrOutput ¶
func (o ServicePerimetersServicePerimeterStatusVpcAccessibleServicesPtrOutput) ToServicePerimetersServicePerimeterStatusVpcAccessibleServicesPtrOutput() ServicePerimetersServicePerimeterStatusVpcAccessibleServicesPtrOutput
func (ServicePerimetersServicePerimeterStatusVpcAccessibleServicesPtrOutput) ToServicePerimetersServicePerimeterStatusVpcAccessibleServicesPtrOutputWithContext ¶
func (o ServicePerimetersServicePerimeterStatusVpcAccessibleServicesPtrOutput) ToServicePerimetersServicePerimeterStatusVpcAccessibleServicesPtrOutputWithContext(ctx context.Context) ServicePerimetersServicePerimeterStatusVpcAccessibleServicesPtrOutput
type ServicePerimetersState ¶
type ServicePerimetersState struct {
// The AccessPolicy this ServicePerimeter lives in.
// Format: accessPolicies/{policy_id}
Parent pulumi.StringPtrInput
// The desired Service Perimeters that should replace all existing Service Perimeters in the Access Policy.
// Structure is documented below.
ServicePerimeters ServicePerimetersServicePerimeterArrayInput
}
func (ServicePerimetersState) ElementType ¶
func (ServicePerimetersState) ElementType() reflect.Type
Source Files
Click to show internal directories.
Click to hide internal directories.