v1

package
v0.17.0 Latest Latest
Warning

This package is not in the latest version of its module.

 Go to latest Published: Mar 17, 2022 License: Apache-2.0 Imports: 7 Imported by: 0

Documentation

Index

Constants

View Source 
const (
	// Default value.
	AuthorizationPolicyActionActionUnspecified = AuthorizationPolicyAction("ACTION_UNSPECIFIED")
	// Grant access.
	AuthorizationPolicyActionAllow = AuthorizationPolicyAction("ALLOW")
	// Deny access. Deny rules should be avoided unless they are used to provide a default "deny all" fallback.
	AuthorizationPolicyActionDeny = AuthorizationPolicyAction("DENY")
)
View Source 
const (
	// Default case. Should never be this.
	GoogleIamV1AuditLogConfigLogTypeLogTypeUnspecified = GoogleIamV1AuditLogConfigLogType("LOG_TYPE_UNSPECIFIED")
	// Admin reads. Example: CloudIAM getIamPolicy
	GoogleIamV1AuditLogConfigLogTypeAdminRead = GoogleIamV1AuditLogConfigLogType("ADMIN_READ")
	// Data writes. Example: CloudSQL Users create
	GoogleIamV1AuditLogConfigLogTypeDataWrite = GoogleIamV1AuditLogConfigLogType("DATA_WRITE")
	// Data reads. Example: CloudSQL Users list
	GoogleIamV1AuditLogConfigLogTypeDataRead = GoogleIamV1AuditLogConfigLogType("DATA_READ")
)

Variables

This section is empty.

Functions

This section is empty.

Types

type AuthorizationPolicy 

type AuthorizationPolicy struct {
	pulumi.CustomResourceState

	// The action to take when a rule match is found. Possible values are "ALLOW" or "DENY".
	Action pulumi.StringOutput `pulumi:"action"`
	// The timestamp when the resource was created.
	CreateTime pulumi.StringOutput `pulumi:"createTime"`
	// Optional. Free-text description of the resource.
	Description pulumi.StringOutput `pulumi:"description"`
	// Optional. Set of label tags associated with the AuthorizationPolicy resource.
	Labels pulumi.StringMapOutput `pulumi:"labels"`
	// Name of the AuthorizationPolicy resource. It matches pattern `projects/{project}/locations/{location}/authorizationPolicies/`.
	Name pulumi.StringOutput `pulumi:"name"`
	// Optional. List of rules to match. Note that at least one of the rules must match in order for the action specified in the 'action' field to be taken. A rule is a match if there is a matching source and destination. If left blank, the action specified in the `action` field will be applied on every request.
	Rules RuleResponseArrayOutput `pulumi:"rules"`
	// The timestamp when the resource was updated.
	UpdateTime pulumi.StringOutput `pulumi:"updateTime"`
}

Creates a new AuthorizationPolicy in a given project and location.

func GetAuthorizationPolicy 

func GetAuthorizationPolicy(ctx *pulumi.Context,
	name string, id pulumi.IDInput, state *AuthorizationPolicyState, opts ...pulumi.ResourceOption) (*AuthorizationPolicy, error)

GetAuthorizationPolicy gets an existing AuthorizationPolicy resource's state with the given name, ID, and optional state properties that are used to uniquely qualify the lookup (nil if not required).

func NewAuthorizationPolicy 

func NewAuthorizationPolicy(ctx *pulumi.Context,
	name string, args *AuthorizationPolicyArgs, opts ...pulumi.ResourceOption) (*AuthorizationPolicy, error)

NewAuthorizationPolicy registers a new resource with the given unique name, arguments, and options.

func (*AuthorizationPolicy) ElementType 

func (*AuthorizationPolicy) ElementType() reflect.Type

func (*AuthorizationPolicy) ToAuthorizationPolicyOutput 

func (i *AuthorizationPolicy) ToAuthorizationPolicyOutput() AuthorizationPolicyOutput

func (*AuthorizationPolicy) ToAuthorizationPolicyOutputWithContext 

func (i *AuthorizationPolicy) ToAuthorizationPolicyOutputWithContext(ctx context.Context) AuthorizationPolicyOutput

type AuthorizationPolicyAction 

type AuthorizationPolicyAction string

Required. The action to take when a rule match is found. Possible values are "ALLOW" or "DENY".

func (AuthorizationPolicyAction) ElementType 

func (AuthorizationPolicyAction) ElementType() reflect.Type

func (AuthorizationPolicyAction) ToAuthorizationPolicyActionOutput 

func (e AuthorizationPolicyAction) ToAuthorizationPolicyActionOutput() AuthorizationPolicyActionOutput

func (AuthorizationPolicyAction) ToAuthorizationPolicyActionOutputWithContext 

func (e AuthorizationPolicyAction) ToAuthorizationPolicyActionOutputWithContext(ctx context.Context) AuthorizationPolicyActionOutput

func (AuthorizationPolicyAction) ToAuthorizationPolicyActionPtrOutput 

func (e AuthorizationPolicyAction) ToAuthorizationPolicyActionPtrOutput() AuthorizationPolicyActionPtrOutput

func (AuthorizationPolicyAction) ToAuthorizationPolicyActionPtrOutputWithContext 

func (e AuthorizationPolicyAction) ToAuthorizationPolicyActionPtrOutputWithContext(ctx context.Context) AuthorizationPolicyActionPtrOutput

func (AuthorizationPolicyAction) ToStringOutput 

func (e AuthorizationPolicyAction) ToStringOutput() pulumi.StringOutput

func (AuthorizationPolicyAction) ToStringOutputWithContext 

func (e AuthorizationPolicyAction) ToStringOutputWithContext(ctx context.Context) pulumi.StringOutput

func (AuthorizationPolicyAction) ToStringPtrOutput 

func (e AuthorizationPolicyAction) ToStringPtrOutput() pulumi.StringPtrOutput

func (AuthorizationPolicyAction) ToStringPtrOutputWithContext 

func (e AuthorizationPolicyAction) ToStringPtrOutputWithContext(ctx context.Context) pulumi.StringPtrOutput

type AuthorizationPolicyActionInput 

type AuthorizationPolicyActionInput interface {
	pulumi.Input

	ToAuthorizationPolicyActionOutput() AuthorizationPolicyActionOutput
	ToAuthorizationPolicyActionOutputWithContext(context.Context) AuthorizationPolicyActionOutput
}

AuthorizationPolicyActionInput is an input type that accepts AuthorizationPolicyActionArgs and AuthorizationPolicyActionOutput values. You can construct a concrete instance of `AuthorizationPolicyActionInput` via: 

AuthorizationPolicyActionArgs{...}

type AuthorizationPolicyActionOutput 

type AuthorizationPolicyActionOutput struct{ *pulumi.OutputState }

func (AuthorizationPolicyActionOutput) ElementType 

func (AuthorizationPolicyActionOutput) ElementType() reflect.Type

func (AuthorizationPolicyActionOutput) ToAuthorizationPolicyActionOutput 

func (o AuthorizationPolicyActionOutput) ToAuthorizationPolicyActionOutput() AuthorizationPolicyActionOutput

func (AuthorizationPolicyActionOutput) ToAuthorizationPolicyActionOutputWithContext 

func (o AuthorizationPolicyActionOutput) ToAuthorizationPolicyActionOutputWithContext(ctx context.Context) AuthorizationPolicyActionOutput

func (AuthorizationPolicyActionOutput) ToAuthorizationPolicyActionPtrOutput 

func (o AuthorizationPolicyActionOutput) ToAuthorizationPolicyActionPtrOutput() AuthorizationPolicyActionPtrOutput

func (AuthorizationPolicyActionOutput) ToAuthorizationPolicyActionPtrOutputWithContext 

func (o AuthorizationPolicyActionOutput) ToAuthorizationPolicyActionPtrOutputWithContext(ctx context.Context) AuthorizationPolicyActionPtrOutput

func (AuthorizationPolicyActionOutput) ToStringOutput 

func (o AuthorizationPolicyActionOutput) ToStringOutput() pulumi.StringOutput

func (AuthorizationPolicyActionOutput) ToStringOutputWithContext 

func (o AuthorizationPolicyActionOutput) ToStringOutputWithContext(ctx context.Context) pulumi.StringOutput

func (AuthorizationPolicyActionOutput) ToStringPtrOutput 

func (o AuthorizationPolicyActionOutput) ToStringPtrOutput() pulumi.StringPtrOutput

func (AuthorizationPolicyActionOutput) ToStringPtrOutputWithContext 

func (o AuthorizationPolicyActionOutput) ToStringPtrOutputWithContext(ctx context.Context) pulumi.StringPtrOutput

type AuthorizationPolicyActionPtrInput 

type AuthorizationPolicyActionPtrInput interface {
	pulumi.Input

	ToAuthorizationPolicyActionPtrOutput() AuthorizationPolicyActionPtrOutput
	ToAuthorizationPolicyActionPtrOutputWithContext(context.Context) AuthorizationPolicyActionPtrOutput
}

func AuthorizationPolicyActionPtr 

func AuthorizationPolicyActionPtr(v string) AuthorizationPolicyActionPtrInput

type AuthorizationPolicyActionPtrOutput 

type AuthorizationPolicyActionPtrOutput struct{ *pulumi.OutputState }

func (AuthorizationPolicyActionPtrOutput) Elem 

func (o AuthorizationPolicyActionPtrOutput) Elem() AuthorizationPolicyActionOutput

func (AuthorizationPolicyActionPtrOutput) ElementType 

func (AuthorizationPolicyActionPtrOutput) ElementType() reflect.Type

func (AuthorizationPolicyActionPtrOutput) ToAuthorizationPolicyActionPtrOutput 

func (o AuthorizationPolicyActionPtrOutput) ToAuthorizationPolicyActionPtrOutput() AuthorizationPolicyActionPtrOutput

func (AuthorizationPolicyActionPtrOutput) ToAuthorizationPolicyActionPtrOutputWithContext 

func (o AuthorizationPolicyActionPtrOutput) ToAuthorizationPolicyActionPtrOutputWithContext(ctx context.Context) AuthorizationPolicyActionPtrOutput

func (AuthorizationPolicyActionPtrOutput) ToStringPtrOutput 

func (o AuthorizationPolicyActionPtrOutput) ToStringPtrOutput() pulumi.StringPtrOutput

func (AuthorizationPolicyActionPtrOutput) ToStringPtrOutputWithContext 

func (o AuthorizationPolicyActionPtrOutput) ToStringPtrOutputWithContext(ctx context.Context) pulumi.StringPtrOutput

type AuthorizationPolicyArgs 

type AuthorizationPolicyArgs struct {
	// The action to take when a rule match is found. Possible values are "ALLOW" or "DENY".
	Action AuthorizationPolicyActionInput
	// Required. Short name of the AuthorizationPolicy resource to be created. This value should be 1-63 characters long, containing only letters, numbers, hyphens, and underscores, and should not start with a number. E.g. "authz_policy".
	AuthorizationPolicyId pulumi.StringInput
	// Optional. Free-text description of the resource.
	Description pulumi.StringPtrInput
	// Optional. Set of label tags associated with the AuthorizationPolicy resource.
	Labels   pulumi.StringMapInput
	Location pulumi.StringPtrInput
	// Name of the AuthorizationPolicy resource. It matches pattern `projects/{project}/locations/{location}/authorizationPolicies/`.
	Name    pulumi.StringPtrInput
	Project pulumi.StringPtrInput
	// Optional. List of rules to match. Note that at least one of the rules must match in order for the action specified in the 'action' field to be taken. A rule is a match if there is a matching source and destination. If left blank, the action specified in the `action` field will be applied on every request.
	Rules RuleArrayInput
}

The set of arguments for constructing a AuthorizationPolicy resource.

func (AuthorizationPolicyArgs) ElementType 

func (AuthorizationPolicyArgs) ElementType() reflect.Type

type AuthorizationPolicyIamPolicy 

type AuthorizationPolicyIamPolicy struct {
	pulumi.CustomResourceState

	// Specifies cloud audit logging configuration for this policy.
	AuditConfigs GoogleIamV1AuditConfigResponseArrayOutput `pulumi:"auditConfigs"`
	// Associates a list of `members`, or principals, with a `role`. Optionally, may specify a `condition` that determines how and when the `bindings` are applied. Each of the `bindings` must contain at least one principal. The `bindings` in a `Policy` can refer to up to 1,500 principals; up to 250 of these principals can be Google groups. Each occurrence of a principal counts towards these limits. For example, if the `bindings` grant 50 different roles to `user:alice@example.com`, and not to any other principal, then you can add another 1,450 principals to the `bindings` in the `Policy`.
	Bindings GoogleIamV1BindingResponseArrayOutput `pulumi:"bindings"`
	// `etag` is used for optimistic concurrency control as a way to help prevent simultaneous updates of a policy from overwriting each other. It is strongly suggested that systems make use of the `etag` in the read-modify-write cycle to perform policy updates in order to avoid race conditions: An `etag` is returned in the response to `getIamPolicy`, and systems are expected to put that etag in the request to `setIamPolicy` to ensure that their change will be applied to the same version of the policy. **Important:** If you use IAM Conditions, you must include the `etag` field whenever you call `setIamPolicy`. If you omit this field, then IAM allows you to overwrite a version `3` policy with a version `1` policy, and all of the conditions in the version `3` policy are lost.
	Etag pulumi.StringOutput `pulumi:"etag"`
	// Specifies the format of the policy. Valid values are `0`, `1`, and `3`. Requests that specify an invalid value are rejected. Any operation that affects conditional role bindings must specify version `3`. This requirement applies to the following operations: * Getting a policy that includes a conditional role binding * Adding a conditional role binding to a policy * Changing a conditional role binding in a policy * Removing any role binding, with or without a condition, from a policy that includes conditions **Important:** If you use IAM Conditions, you must include the `etag` field whenever you call `setIamPolicy`. If you omit this field, then IAM allows you to overwrite a version `3` policy with a version `1` policy, and all of the conditions in the version `3` policy are lost. If a policy does not include any conditions, operations on that policy may specify any valid version or leave the field unset. To learn which resources support conditions in their IAM policies, see the [IAM documentation](https://cloud.google.com/iam/help/conditions/resource-policies).
	Version pulumi.IntOutput `pulumi:"version"`
}

Sets the access control policy on the specified resource. Replaces any existing policy. Can return `NOT_FOUND`, `INVALID_ARGUMENT`, and `PERMISSION_DENIED` errors. Note - this resource's API doesn't support deletion. When deleted, the resource will persist on Google Cloud even though it will be deleted from Pulumi state.

func GetAuthorizationPolicyIamPolicy 

func GetAuthorizationPolicyIamPolicy(ctx *pulumi.Context,
	name string, id pulumi.IDInput, state *AuthorizationPolicyIamPolicyState, opts ...pulumi.ResourceOption) (*AuthorizationPolicyIamPolicy, error)

GetAuthorizationPolicyIamPolicy gets an existing AuthorizationPolicyIamPolicy resource's state with the given name, ID, and optional state properties that are used to uniquely qualify the lookup (nil if not required).

func NewAuthorizationPolicyIamPolicy 

func NewAuthorizationPolicyIamPolicy(ctx *pulumi.Context,
	name string, args *AuthorizationPolicyIamPolicyArgs, opts ...pulumi.ResourceOption) (*AuthorizationPolicyIamPolicy, error)

NewAuthorizationPolicyIamPolicy registers a new resource with the given unique name, arguments, and options.

func (*AuthorizationPolicyIamPolicy) ElementType 

func (*AuthorizationPolicyIamPolicy) ElementType() reflect.Type

func (*AuthorizationPolicyIamPolicy) ToAuthorizationPolicyIamPolicyOutput 

func (i *AuthorizationPolicyIamPolicy) ToAuthorizationPolicyIamPolicyOutput() AuthorizationPolicyIamPolicyOutput

func (*AuthorizationPolicyIamPolicy) ToAuthorizationPolicyIamPolicyOutputWithContext 

func (i *AuthorizationPolicyIamPolicy) ToAuthorizationPolicyIamPolicyOutputWithContext(ctx context.Context) AuthorizationPolicyIamPolicyOutput

type AuthorizationPolicyIamPolicyArgs 

type AuthorizationPolicyIamPolicyArgs struct {
	// Specifies cloud audit logging configuration for this policy.
	AuditConfigs          GoogleIamV1AuditConfigArrayInput
	AuthorizationPolicyId pulumi.StringInput
	// Associates a list of `members`, or principals, with a `role`. Optionally, may specify a `condition` that determines how and when the `bindings` are applied. Each of the `bindings` must contain at least one principal. The `bindings` in a `Policy` can refer to up to 1,500 principals; up to 250 of these principals can be Google groups. Each occurrence of a principal counts towards these limits. For example, if the `bindings` grant 50 different roles to `user:alice@example.com`, and not to any other principal, then you can add another 1,450 principals to the `bindings` in the `Policy`.
	Bindings GoogleIamV1BindingArrayInput
	// `etag` is used for optimistic concurrency control as a way to help prevent simultaneous updates of a policy from overwriting each other. It is strongly suggested that systems make use of the `etag` in the read-modify-write cycle to perform policy updates in order to avoid race conditions: An `etag` is returned in the response to `getIamPolicy`, and systems are expected to put that etag in the request to `setIamPolicy` to ensure that their change will be applied to the same version of the policy. **Important:** If you use IAM Conditions, you must include the `etag` field whenever you call `setIamPolicy`. If you omit this field, then IAM allows you to overwrite a version `3` policy with a version `1` policy, and all of the conditions in the version `3` policy are lost.
	Etag     pulumi.StringPtrInput
	Location pulumi.StringPtrInput
	Project  pulumi.StringPtrInput
	// OPTIONAL: A FieldMask specifying which fields of the policy to modify. Only the fields in the mask will be modified. If no mask is provided, the following default mask is used: `paths: "bindings, etag"`
	UpdateMask pulumi.StringPtrInput
	// Specifies the format of the policy. Valid values are `0`, `1`, and `3`. Requests that specify an invalid value are rejected. Any operation that affects conditional role bindings must specify version `3`. This requirement applies to the following operations: * Getting a policy that includes a conditional role binding * Adding a conditional role binding to a policy * Changing a conditional role binding in a policy * Removing any role binding, with or without a condition, from a policy that includes conditions **Important:** If you use IAM Conditions, you must include the `etag` field whenever you call `setIamPolicy`. If you omit this field, then IAM allows you to overwrite a version `3` policy with a version `1` policy, and all of the conditions in the version `3` policy are lost. If a policy does not include any conditions, operations on that policy may specify any valid version or leave the field unset. To learn which resources support conditions in their IAM policies, see the [IAM documentation](https://cloud.google.com/iam/help/conditions/resource-policies).
	Version pulumi.IntPtrInput
}

The set of arguments for constructing a AuthorizationPolicyIamPolicy resource.

func (AuthorizationPolicyIamPolicyArgs) ElementType 

func (AuthorizationPolicyIamPolicyArgs) ElementType() reflect.Type

type AuthorizationPolicyIamPolicyInput 

type AuthorizationPolicyIamPolicyInput interface {
	pulumi.Input

	ToAuthorizationPolicyIamPolicyOutput() AuthorizationPolicyIamPolicyOutput
	ToAuthorizationPolicyIamPolicyOutputWithContext(ctx context.Context) AuthorizationPolicyIamPolicyOutput
}

type AuthorizationPolicyIamPolicyOutput 

type AuthorizationPolicyIamPolicyOutput struct{ *pulumi.OutputState }

func (AuthorizationPolicyIamPolicyOutput) ElementType 

func (AuthorizationPolicyIamPolicyOutput) ElementType() reflect.Type

func (AuthorizationPolicyIamPolicyOutput) ToAuthorizationPolicyIamPolicyOutput 

func (o AuthorizationPolicyIamPolicyOutput) ToAuthorizationPolicyIamPolicyOutput() AuthorizationPolicyIamPolicyOutput

func (AuthorizationPolicyIamPolicyOutput) ToAuthorizationPolicyIamPolicyOutputWithContext 

func (o AuthorizationPolicyIamPolicyOutput) ToAuthorizationPolicyIamPolicyOutputWithContext(ctx context.Context) AuthorizationPolicyIamPolicyOutput

type AuthorizationPolicyIamPolicyState 

type AuthorizationPolicyIamPolicyState struct {
}

func (AuthorizationPolicyIamPolicyState) ElementType 

func (AuthorizationPolicyIamPolicyState) ElementType() reflect.Type

type AuthorizationPolicyInput 

type AuthorizationPolicyInput interface {
	pulumi.Input

	ToAuthorizationPolicyOutput() AuthorizationPolicyOutput
	ToAuthorizationPolicyOutputWithContext(ctx context.Context) AuthorizationPolicyOutput
}

type AuthorizationPolicyOutput 

type AuthorizationPolicyOutput struct{ *pulumi.OutputState }

func (AuthorizationPolicyOutput) ElementType 

func (AuthorizationPolicyOutput) ElementType() reflect.Type

func (AuthorizationPolicyOutput) ToAuthorizationPolicyOutput 

func (o AuthorizationPolicyOutput) ToAuthorizationPolicyOutput() AuthorizationPolicyOutput

func (AuthorizationPolicyOutput) ToAuthorizationPolicyOutputWithContext 

func (o AuthorizationPolicyOutput) ToAuthorizationPolicyOutputWithContext(ctx context.Context) AuthorizationPolicyOutput

type AuthorizationPolicyState 

type AuthorizationPolicyState struct {
}

func (AuthorizationPolicyState) ElementType 

func (AuthorizationPolicyState) ElementType() reflect.Type

type CertificateProviderInstance 

type CertificateProviderInstance struct {
	// Plugin instance name, used to locate and load CertificateProvider instance configuration. Set to "google_cloud_private_spiffe" to use Certificate Authority Service certificate provider instance.
	PluginInstance string `pulumi:"pluginInstance"`
}

Specification of a TLS certificate provider instance. Workloads may have one or more CertificateProvider instances (plugins) and one of them is enabled and configured by specifying this message. Workloads use the values from this message to locate and load the CertificateProvider instance configuration.

type CertificateProviderInstanceArgs 

type CertificateProviderInstanceArgs struct {
	// Plugin instance name, used to locate and load CertificateProvider instance configuration. Set to "google_cloud_private_spiffe" to use Certificate Authority Service certificate provider instance.
	PluginInstance pulumi.StringInput `pulumi:"pluginInstance"`
}

Specification of a TLS certificate provider instance. Workloads may have one or more CertificateProvider instances (plugins) and one of them is enabled and configured by specifying this message. Workloads use the values from this message to locate and load the CertificateProvider instance configuration.

func (CertificateProviderInstanceArgs) ElementType 

func (CertificateProviderInstanceArgs) ElementType() reflect.Type

func (CertificateProviderInstanceArgs) ToCertificateProviderInstanceOutput 

func (i CertificateProviderInstanceArgs) ToCertificateProviderInstanceOutput() CertificateProviderInstanceOutput

func (CertificateProviderInstanceArgs) ToCertificateProviderInstanceOutputWithContext 

func (i CertificateProviderInstanceArgs) ToCertificateProviderInstanceOutputWithContext(ctx context.Context) CertificateProviderInstanceOutput

func (CertificateProviderInstanceArgs) ToCertificateProviderInstancePtrOutput 

func (i CertificateProviderInstanceArgs) ToCertificateProviderInstancePtrOutput() CertificateProviderInstancePtrOutput

func (CertificateProviderInstanceArgs) ToCertificateProviderInstancePtrOutputWithContext 

func (i CertificateProviderInstanceArgs) ToCertificateProviderInstancePtrOutputWithContext(ctx context.Context) CertificateProviderInstancePtrOutput

type CertificateProviderInstanceInput 

type CertificateProviderInstanceInput interface {
	pulumi.Input

	ToCertificateProviderInstanceOutput() CertificateProviderInstanceOutput
	ToCertificateProviderInstanceOutputWithContext(context.Context) CertificateProviderInstanceOutput
}

CertificateProviderInstanceInput is an input type that accepts CertificateProviderInstanceArgs and CertificateProviderInstanceOutput values. You can construct a concrete instance of `CertificateProviderInstanceInput` via: 

CertificateProviderInstanceArgs{...}

type CertificateProviderInstanceOutput 

type CertificateProviderInstanceOutput struct{ *pulumi.OutputState }

Specification of a TLS certificate provider instance. Workloads may have one or more CertificateProvider instances (plugins) and one of them is enabled and configured by specifying this message. Workloads use the values from this message to locate and load the CertificateProvider instance configuration.

func (CertificateProviderInstanceOutput) ElementType 

func (CertificateProviderInstanceOutput) ElementType() reflect.Type

func (CertificateProviderInstanceOutput) PluginInstance 

func (o CertificateProviderInstanceOutput) PluginInstance() pulumi.StringOutput

Plugin instance name, used to locate and load CertificateProvider instance configuration. Set to "google_cloud_private_spiffe" to use Certificate Authority Service certificate provider instance.

func (CertificateProviderInstanceOutput) ToCertificateProviderInstanceOutput 

func (o CertificateProviderInstanceOutput) ToCertificateProviderInstanceOutput() CertificateProviderInstanceOutput

func (CertificateProviderInstanceOutput) ToCertificateProviderInstanceOutputWithContext 

func (o CertificateProviderInstanceOutput) ToCertificateProviderInstanceOutputWithContext(ctx context.Context) CertificateProviderInstanceOutput

func (CertificateProviderInstanceOutput) ToCertificateProviderInstancePtrOutput 

func (o CertificateProviderInstanceOutput) ToCertificateProviderInstancePtrOutput() CertificateProviderInstancePtrOutput

func (CertificateProviderInstanceOutput) ToCertificateProviderInstancePtrOutputWithContext 

func (o CertificateProviderInstanceOutput) ToCertificateProviderInstancePtrOutputWithContext(ctx context.Context) CertificateProviderInstancePtrOutput

type CertificateProviderInstancePtrInput 

type CertificateProviderInstancePtrInput interface {
	pulumi.Input

	ToCertificateProviderInstancePtrOutput() CertificateProviderInstancePtrOutput
	ToCertificateProviderInstancePtrOutputWithContext(context.Context) CertificateProviderInstancePtrOutput
}

CertificateProviderInstancePtrInput is an input type that accepts CertificateProviderInstanceArgs, CertificateProviderInstancePtr and CertificateProviderInstancePtrOutput values. You can construct a concrete instance of `CertificateProviderInstancePtrInput` via: 

        CertificateProviderInstanceArgs{...}

or:

        nil

func CertificateProviderInstancePtr 

func CertificateProviderInstancePtr(v *CertificateProviderInstanceArgs) CertificateProviderInstancePtrInput

type CertificateProviderInstancePtrOutput 

type CertificateProviderInstancePtrOutput struct{ *pulumi.OutputState }

func (CertificateProviderInstancePtrOutput) Elem 

func (o CertificateProviderInstancePtrOutput) Elem() CertificateProviderInstanceOutput

func (CertificateProviderInstancePtrOutput) ElementType 

func (CertificateProviderInstancePtrOutput) ElementType() reflect.Type

func (CertificateProviderInstancePtrOutput) PluginInstance 

func (o CertificateProviderInstancePtrOutput) PluginInstance() pulumi.StringPtrOutput

Plugin instance name, used to locate and load CertificateProvider instance configuration. Set to "google_cloud_private_spiffe" to use Certificate Authority Service certificate provider instance.

func (CertificateProviderInstancePtrOutput) ToCertificateProviderInstancePtrOutput 

func (o CertificateProviderInstancePtrOutput) ToCertificateProviderInstancePtrOutput() CertificateProviderInstancePtrOutput

func (CertificateProviderInstancePtrOutput) ToCertificateProviderInstancePtrOutputWithContext 

func (o CertificateProviderInstancePtrOutput) ToCertificateProviderInstancePtrOutputWithContext(ctx context.Context) CertificateProviderInstancePtrOutput

type CertificateProviderInstanceResponse 

type CertificateProviderInstanceResponse struct {
	// Plugin instance name, used to locate and load CertificateProvider instance configuration. Set to "google_cloud_private_spiffe" to use Certificate Authority Service certificate provider instance.
	PluginInstance string `pulumi:"pluginInstance"`
}

Specification of a TLS certificate provider instance. Workloads may have one or more CertificateProvider instances (plugins) and one of them is enabled and configured by specifying this message. Workloads use the values from this message to locate and load the CertificateProvider instance configuration.

type CertificateProviderInstanceResponseOutput 

type CertificateProviderInstanceResponseOutput struct{ *pulumi.OutputState }

Specification of a TLS certificate provider instance. Workloads may have one or more CertificateProvider instances (plugins) and one of them is enabled and configured by specifying this message. Workloads use the values from this message to locate and load the CertificateProvider instance configuration.

func (CertificateProviderInstanceResponseOutput) ElementType 

func (CertificateProviderInstanceResponseOutput) ElementType() reflect.Type

func (CertificateProviderInstanceResponseOutput) PluginInstance 

func (o CertificateProviderInstanceResponseOutput) PluginInstance() pulumi.StringOutput

Plugin instance name, used to locate and load CertificateProvider instance configuration. Set to "google_cloud_private_spiffe" to use Certificate Authority Service certificate provider instance.

func (CertificateProviderInstanceResponseOutput) ToCertificateProviderInstanceResponseOutput 

func (o CertificateProviderInstanceResponseOutput) ToCertificateProviderInstanceResponseOutput() CertificateProviderInstanceResponseOutput

func (CertificateProviderInstanceResponseOutput) ToCertificateProviderInstanceResponseOutputWithContext 

func (o CertificateProviderInstanceResponseOutput) ToCertificateProviderInstanceResponseOutputWithContext(ctx context.Context) CertificateProviderInstanceResponseOutput

type ClientTlsPolicy 

type ClientTlsPolicy struct {
	pulumi.CustomResourceState

	// Optional. Defines a mechanism to provision client identity (public and private keys) for peer to peer authentication. The presence of this dictates mTLS.
	ClientCertificate GoogleCloudNetworksecurityV1CertificateProviderResponseOutput `pulumi:"clientCertificate"`
	// The timestamp when the resource was created.
	CreateTime pulumi.StringOutput `pulumi:"createTime"`
	// Optional. Free-text description of the resource.
	Description pulumi.StringOutput `pulumi:"description"`
	// Optional. Set of label tags associated with the resource.
	Labels pulumi.StringMapOutput `pulumi:"labels"`
	// Name of the ClientTlsPolicy resource. It matches the pattern `projects/*/locations/{location}/clientTlsPolicies/{client_tls_policy}`
	Name pulumi.StringOutput `pulumi:"name"`
	// Optional. Defines the mechanism to obtain the Certificate Authority certificate to validate the server certificate. If empty, client does not validate the server certificate.
	ServerValidationCa ValidationCAResponseArrayOutput `pulumi:"serverValidationCa"`
	// Optional. Server Name Indication string to present to the server during TLS handshake. E.g: "secure.example.com".
	Sni pulumi.StringOutput `pulumi:"sni"`
	// The timestamp when the resource was updated.
	UpdateTime pulumi.StringOutput `pulumi:"updateTime"`
}

Creates a new ClientTlsPolicy in a given project and location.

func GetClientTlsPolicy 

func GetClientTlsPolicy(ctx *pulumi.Context,
	name string, id pulumi.IDInput, state *ClientTlsPolicyState, opts ...pulumi.ResourceOption) (*ClientTlsPolicy, error)

GetClientTlsPolicy gets an existing ClientTlsPolicy resource's state with the given name, ID, and optional state properties that are used to uniquely qualify the lookup (nil if not required).

func NewClientTlsPolicy 

func NewClientTlsPolicy(ctx *pulumi.Context,
	name string, args *ClientTlsPolicyArgs, opts ...pulumi.ResourceOption) (*ClientTlsPolicy, error)

NewClientTlsPolicy registers a new resource with the given unique name, arguments, and options.

func (*ClientTlsPolicy) ElementType 

func (*ClientTlsPolicy) ElementType() reflect.Type

func (*ClientTlsPolicy) ToClientTlsPolicyOutput 

func (i *ClientTlsPolicy) ToClientTlsPolicyOutput() ClientTlsPolicyOutput

func (*ClientTlsPolicy) ToClientTlsPolicyOutputWithContext 

func (i *ClientTlsPolicy) ToClientTlsPolicyOutputWithContext(ctx context.Context) ClientTlsPolicyOutput

type ClientTlsPolicyArgs 

type ClientTlsPolicyArgs struct {
	// Optional. Defines a mechanism to provision client identity (public and private keys) for peer to peer authentication. The presence of this dictates mTLS.
	ClientCertificate GoogleCloudNetworksecurityV1CertificateProviderPtrInput
	// Required. Short name of the ClientTlsPolicy resource to be created. This value should be 1-63 characters long, containing only letters, numbers, hyphens, and underscores, and should not start with a number. E.g. "client_mtls_policy".
	ClientTlsPolicyId pulumi.StringInput
	// Optional. Free-text description of the resource.
	Description pulumi.StringPtrInput
	// Optional. Set of label tags associated with the resource.
	Labels   pulumi.StringMapInput
	Location pulumi.StringPtrInput
	// Name of the ClientTlsPolicy resource. It matches the pattern `projects/*/locations/{location}/clientTlsPolicies/{client_tls_policy}`
	Name    pulumi.StringPtrInput
	Project pulumi.StringPtrInput
	// Optional. Defines the mechanism to obtain the Certificate Authority certificate to validate the server certificate. If empty, client does not validate the server certificate.
	ServerValidationCa ValidationCAArrayInput
	// Optional. Server Name Indication string to present to the server during TLS handshake. E.g: "secure.example.com".
	Sni pulumi.StringPtrInput
}

The set of arguments for constructing a ClientTlsPolicy resource.

func (ClientTlsPolicyArgs) ElementType 

func (ClientTlsPolicyArgs) ElementType() reflect.Type

type ClientTlsPolicyIamPolicy 

type ClientTlsPolicyIamPolicy struct {
	pulumi.CustomResourceState

	// Specifies cloud audit logging configuration for this policy.
	AuditConfigs GoogleIamV1AuditConfigResponseArrayOutput `pulumi:"auditConfigs"`
	// Associates a list of `members`, or principals, with a `role`. Optionally, may specify a `condition` that determines how and when the `bindings` are applied. Each of the `bindings` must contain at least one principal. The `bindings` in a `Policy` can refer to up to 1,500 principals; up to 250 of these principals can be Google groups. Each occurrence of a principal counts towards these limits. For example, if the `bindings` grant 50 different roles to `user:alice@example.com`, and not to any other principal, then you can add another 1,450 principals to the `bindings` in the `Policy`.
	Bindings GoogleIamV1BindingResponseArrayOutput `pulumi:"bindings"`
	// `etag` is used for optimistic concurrency control as a way to help prevent simultaneous updates of a policy from overwriting each other. It is strongly suggested that systems make use of the `etag` in the read-modify-write cycle to perform policy updates in order to avoid race conditions: An `etag` is returned in the response to `getIamPolicy`, and systems are expected to put that etag in the request to `setIamPolicy` to ensure that their change will be applied to the same version of the policy. **Important:** If you use IAM Conditions, you must include the `etag` field whenever you call `setIamPolicy`. If you omit this field, then IAM allows you to overwrite a version `3` policy with a version `1` policy, and all of the conditions in the version `3` policy are lost.
	Etag pulumi.StringOutput `pulumi:"etag"`
	// Specifies the format of the policy. Valid values are `0`, `1`, and `3`. Requests that specify an invalid value are rejected. Any operation that affects conditional role bindings must specify version `3`. This requirement applies to the following operations: * Getting a policy that includes a conditional role binding * Adding a conditional role binding to a policy * Changing a conditional role binding in a policy * Removing any role binding, with or without a condition, from a policy that includes conditions **Important:** If you use IAM Conditions, you must include the `etag` field whenever you call `setIamPolicy`. If you omit this field, then IAM allows you to overwrite a version `3` policy with a version `1` policy, and all of the conditions in the version `3` policy are lost. If a policy does not include any conditions, operations on that policy may specify any valid version or leave the field unset. To learn which resources support conditions in their IAM policies, see the [IAM documentation](https://cloud.google.com/iam/help/conditions/resource-policies).
	Version pulumi.IntOutput `pulumi:"version"`
}

Sets the access control policy on the specified resource. Replaces any existing policy. Can return `NOT_FOUND`, `INVALID_ARGUMENT`, and `PERMISSION_DENIED` errors. Note - this resource's API doesn't support deletion. When deleted, the resource will persist on Google Cloud even though it will be deleted from Pulumi state.

func GetClientTlsPolicyIamPolicy 

func GetClientTlsPolicyIamPolicy(ctx *pulumi.Context,
	name string, id pulumi.IDInput, state *ClientTlsPolicyIamPolicyState, opts ...pulumi.ResourceOption) (*ClientTlsPolicyIamPolicy, error)

GetClientTlsPolicyIamPolicy gets an existing ClientTlsPolicyIamPolicy resource's state with the given name, ID, and optional state properties that are used to uniquely qualify the lookup (nil if not required).

func NewClientTlsPolicyIamPolicy 

func NewClientTlsPolicyIamPolicy(ctx *pulumi.Context,
	name string, args *ClientTlsPolicyIamPolicyArgs, opts ...pulumi.ResourceOption) (*ClientTlsPolicyIamPolicy, error)

NewClientTlsPolicyIamPolicy registers a new resource with the given unique name, arguments, and options.

func (*ClientTlsPolicyIamPolicy) ElementType 

func (*ClientTlsPolicyIamPolicy) ElementType() reflect.Type

func (*ClientTlsPolicyIamPolicy) ToClientTlsPolicyIamPolicyOutput 

func (i *ClientTlsPolicyIamPolicy) ToClientTlsPolicyIamPolicyOutput() ClientTlsPolicyIamPolicyOutput

func (*ClientTlsPolicyIamPolicy) ToClientTlsPolicyIamPolicyOutputWithContext 

func (i *ClientTlsPolicyIamPolicy) ToClientTlsPolicyIamPolicyOutputWithContext(ctx context.Context) ClientTlsPolicyIamPolicyOutput

type ClientTlsPolicyIamPolicyArgs 

type ClientTlsPolicyIamPolicyArgs struct {
	// Specifies cloud audit logging configuration for this policy.
	AuditConfigs GoogleIamV1AuditConfigArrayInput
	// Associates a list of `members`, or principals, with a `role`. Optionally, may specify a `condition` that determines how and when the `bindings` are applied. Each of the `bindings` must contain at least one principal. The `bindings` in a `Policy` can refer to up to 1,500 principals; up to 250 of these principals can be Google groups. Each occurrence of a principal counts towards these limits. For example, if the `bindings` grant 50 different roles to `user:alice@example.com`, and not to any other principal, then you can add another 1,450 principals to the `bindings` in the `Policy`.
	Bindings          GoogleIamV1BindingArrayInput
	ClientTlsPolicyId pulumi.StringInput
	// `etag` is used for optimistic concurrency control as a way to help prevent simultaneous updates of a policy from overwriting each other. It is strongly suggested that systems make use of the `etag` in the read-modify-write cycle to perform policy updates in order to avoid race conditions: An `etag` is returned in the response to `getIamPolicy`, and systems are expected to put that etag in the request to `setIamPolicy` to ensure that their change will be applied to the same version of the policy. **Important:** If you use IAM Conditions, you must include the `etag` field whenever you call `setIamPolicy`. If you omit this field, then IAM allows you to overwrite a version `3` policy with a version `1` policy, and all of the conditions in the version `3` policy are lost.
	Etag     pulumi.StringPtrInput
	Location pulumi.StringPtrInput
	Project  pulumi.StringPtrInput
	// OPTIONAL: A FieldMask specifying which fields of the policy to modify. Only the fields in the mask will be modified. If no mask is provided, the following default mask is used: `paths: "bindings, etag"`
	UpdateMask pulumi.StringPtrInput
	// Specifies the format of the policy. Valid values are `0`, `1`, and `3`. Requests that specify an invalid value are rejected. Any operation that affects conditional role bindings must specify version `3`. This requirement applies to the following operations: * Getting a policy that includes a conditional role binding * Adding a conditional role binding to a policy * Changing a conditional role binding in a policy * Removing any role binding, with or without a condition, from a policy that includes conditions **Important:** If you use IAM Conditions, you must include the `etag` field whenever you call `setIamPolicy`. If you omit this field, then IAM allows you to overwrite a version `3` policy with a version `1` policy, and all of the conditions in the version `3` policy are lost. If a policy does not include any conditions, operations on that policy may specify any valid version or leave the field unset. To learn which resources support conditions in their IAM policies, see the [IAM documentation](https://cloud.google.com/iam/help/conditions/resource-policies).
	Version pulumi.IntPtrInput
}

The set of arguments for constructing a ClientTlsPolicyIamPolicy resource.

func (ClientTlsPolicyIamPolicyArgs) ElementType 

func (ClientTlsPolicyIamPolicyArgs) ElementType() reflect.Type

type ClientTlsPolicyIamPolicyInput 

type ClientTlsPolicyIamPolicyInput interface {
	pulumi.Input

	ToClientTlsPolicyIamPolicyOutput() ClientTlsPolicyIamPolicyOutput
	ToClientTlsPolicyIamPolicyOutputWithContext(ctx context.Context) ClientTlsPolicyIamPolicyOutput
}

type ClientTlsPolicyIamPolicyOutput 

type ClientTlsPolicyIamPolicyOutput struct{ *pulumi.OutputState }

func (ClientTlsPolicyIamPolicyOutput) ElementType 

func (ClientTlsPolicyIamPolicyOutput) ElementType() reflect.Type

func (ClientTlsPolicyIamPolicyOutput) ToClientTlsPolicyIamPolicyOutput 

func (o ClientTlsPolicyIamPolicyOutput) ToClientTlsPolicyIamPolicyOutput() ClientTlsPolicyIamPolicyOutput

func (ClientTlsPolicyIamPolicyOutput) ToClientTlsPolicyIamPolicyOutputWithContext 

func (o ClientTlsPolicyIamPolicyOutput) ToClientTlsPolicyIamPolicyOutputWithContext(ctx context.Context) ClientTlsPolicyIamPolicyOutput

type ClientTlsPolicyIamPolicyState 

type ClientTlsPolicyIamPolicyState struct {
}

func (ClientTlsPolicyIamPolicyState) ElementType 

func (ClientTlsPolicyIamPolicyState) ElementType() reflect.Type

type ClientTlsPolicyInput 

type ClientTlsPolicyInput interface {
	pulumi.Input

	ToClientTlsPolicyOutput() ClientTlsPolicyOutput
	ToClientTlsPolicyOutputWithContext(ctx context.Context) ClientTlsPolicyOutput
}

type ClientTlsPolicyOutput 

type ClientTlsPolicyOutput struct{ *pulumi.OutputState }

func (ClientTlsPolicyOutput) ElementType 

func (ClientTlsPolicyOutput) ElementType() reflect.Type

func (ClientTlsPolicyOutput) ToClientTlsPolicyOutput 

func (o ClientTlsPolicyOutput) ToClientTlsPolicyOutput() ClientTlsPolicyOutput

func (ClientTlsPolicyOutput) ToClientTlsPolicyOutputWithContext 

func (o ClientTlsPolicyOutput) ToClientTlsPolicyOutputWithContext(ctx context.Context) ClientTlsPolicyOutput

type ClientTlsPolicyState 

type ClientTlsPolicyState struct {
}

func (ClientTlsPolicyState) ElementType 

func (ClientTlsPolicyState) ElementType() reflect.Type

type Destination 

type Destination struct {
	// List of host names to match. Matched against the ":authority" header in http requests. At least one host should match. Each host can be an exact match, or a prefix match (example "mydomain.*") or a suffix match (example // *.myorg.com") or a presence(any) match "*".
	Hosts []string `pulumi:"hosts"`
	// Optional. Match against key:value pair in http header. Provides a flexible match based on HTTP headers, for potentially advanced use cases. At least one header should match. Avoid using header matches to make authorization decisions unless there is a strong guarantee that requests arrive through a trusted client or proxy.
	HttpHeaderMatch *HttpHeaderMatch `pulumi:"httpHeaderMatch"`
	// Optional. A list of HTTP methods to match. At least one method should match. Should not be set for gRPC services.
	Methods []string `pulumi:"methods"`
	// List of destination ports to match. At least one port should match.
	Ports []int `pulumi:"ports"`
}

Specification of traffic destination attributes.

type DestinationArgs 

type DestinationArgs struct {
	// List of host names to match. Matched against the ":authority" header in http requests. At least one host should match. Each host can be an exact match, or a prefix match (example "mydomain.*") or a suffix match (example // *.myorg.com") or a presence(any) match "*".
	Hosts pulumi.StringArrayInput `pulumi:"hosts"`
	// Optional. Match against key:value pair in http header. Provides a flexible match based on HTTP headers, for potentially advanced use cases. At least one header should match. Avoid using header matches to make authorization decisions unless there is a strong guarantee that requests arrive through a trusted client or proxy.
	HttpHeaderMatch HttpHeaderMatchPtrInput `pulumi:"httpHeaderMatch"`
	// Optional. A list of HTTP methods to match. At least one method should match. Should not be set for gRPC services.
	Methods pulumi.StringArrayInput `pulumi:"methods"`
	// List of destination ports to match. At least one port should match.
	Ports pulumi.IntArrayInput `pulumi:"ports"`
}

Specification of traffic destination attributes.

func (DestinationArgs) ElementType 

func (DestinationArgs) ElementType() reflect.Type

func (DestinationArgs) ToDestinationOutput 

func (i DestinationArgs) ToDestinationOutput() DestinationOutput

func (DestinationArgs) ToDestinationOutputWithContext 

func (i DestinationArgs) ToDestinationOutputWithContext(ctx context.Context) DestinationOutput

type DestinationArray 

type DestinationArray []DestinationInput

func (DestinationArray) ElementType 

func (DestinationArray) ElementType() reflect.Type

func (DestinationArray) ToDestinationArrayOutput 

func (i DestinationArray) ToDestinationArrayOutput() DestinationArrayOutput

func (DestinationArray) ToDestinationArrayOutputWithContext 

func (i DestinationArray) ToDestinationArrayOutputWithContext(ctx context.Context) DestinationArrayOutput

type DestinationArrayInput 

type DestinationArrayInput interface {
	pulumi.Input

	ToDestinationArrayOutput() DestinationArrayOutput
	ToDestinationArrayOutputWithContext(context.Context) DestinationArrayOutput
}

DestinationArrayInput is an input type that accepts DestinationArray and DestinationArrayOutput values. You can construct a concrete instance of `DestinationArrayInput` via: 

DestinationArray{ DestinationArgs{...} }

type DestinationArrayOutput 

type DestinationArrayOutput struct{ *pulumi.OutputState }

func (DestinationArrayOutput) ElementType 

func (DestinationArrayOutput) ElementType() reflect.Type

func (DestinationArrayOutput) Index 

func (o DestinationArrayOutput) Index(i pulumi.IntInput) DestinationOutput

func (DestinationArrayOutput) ToDestinationArrayOutput 

func (o DestinationArrayOutput) ToDestinationArrayOutput() DestinationArrayOutput

func (DestinationArrayOutput) ToDestinationArrayOutputWithContext 

func (o DestinationArrayOutput) ToDestinationArrayOutputWithContext(ctx context.Context) DestinationArrayOutput

type DestinationInput 

type DestinationInput interface {
	pulumi.Input

	ToDestinationOutput() DestinationOutput
	ToDestinationOutputWithContext(context.Context) DestinationOutput
}

DestinationInput is an input type that accepts DestinationArgs and DestinationOutput values. You can construct a concrete instance of `DestinationInput` via: 

DestinationArgs{...}

type DestinationOutput 

type DestinationOutput struct{ *pulumi.OutputState }

Specification of traffic destination attributes.

func (DestinationOutput) ElementType 

func (DestinationOutput) ElementType() reflect.Type

func (DestinationOutput) Hosts 

func (o DestinationOutput) Hosts() pulumi.StringArrayOutput

List of host names to match. Matched against the ":authority" header in http requests. At least one host should match. Each host can be an exact match, or a prefix match (example "mydomain.*") or a suffix match (example // *.myorg.com") or a presence(any) match "*".

func (DestinationOutput) HttpHeaderMatch 

func (o DestinationOutput) HttpHeaderMatch() HttpHeaderMatchPtrOutput

Optional. Match against key:value pair in http header. Provides a flexible match based on HTTP headers, for potentially advanced use cases. At least one header should match. Avoid using header matches to make authorization decisions unless there is a strong guarantee that requests arrive through a trusted client or proxy.

func (DestinationOutput) Methods 

func (o DestinationOutput) Methods() pulumi.StringArrayOutput

Optional. A list of HTTP methods to match. At least one method should match. Should not be set for gRPC services.

func (DestinationOutput) Ports 

func (o DestinationOutput) Ports() pulumi.IntArrayOutput

List of destination ports to match. At least one port should match.

func (DestinationOutput) ToDestinationOutput 

func (o DestinationOutput) ToDestinationOutput() DestinationOutput

func (DestinationOutput) ToDestinationOutputWithContext 

func (o DestinationOutput) ToDestinationOutputWithContext(ctx context.Context) DestinationOutput

type DestinationResponse 

type DestinationResponse struct {
	// List of host names to match. Matched against the ":authority" header in http requests. At least one host should match. Each host can be an exact match, or a prefix match (example "mydomain.*") or a suffix match (example // *.myorg.com") or a presence(any) match "*".
	Hosts []string `pulumi:"hosts"`
	// Optional. Match against key:value pair in http header. Provides a flexible match based on HTTP headers, for potentially advanced use cases. At least one header should match. Avoid using header matches to make authorization decisions unless there is a strong guarantee that requests arrive through a trusted client or proxy.
	HttpHeaderMatch HttpHeaderMatchResponse `pulumi:"httpHeaderMatch"`
	// Optional. A list of HTTP methods to match. At least one method should match. Should not be set for gRPC services.
	Methods []string `pulumi:"methods"`
	// List of destination ports to match. At least one port should match.
	Ports []int `pulumi:"ports"`
}

Specification of traffic destination attributes.

type DestinationResponseArrayOutput 

type DestinationResponseArrayOutput struct{ *pulumi.OutputState }

func (DestinationResponseArrayOutput) ElementType 

func (DestinationResponseArrayOutput) ElementType() reflect.Type

func (DestinationResponseArrayOutput) Index 

func (o DestinationResponseArrayOutput) Index(i pulumi.IntInput) DestinationResponseOutput

func (DestinationResponseArrayOutput) ToDestinationResponseArrayOutput 

func (o DestinationResponseArrayOutput) ToDestinationResponseArrayOutput() DestinationResponseArrayOutput

func (DestinationResponseArrayOutput) ToDestinationResponseArrayOutputWithContext 

func (o DestinationResponseArrayOutput) ToDestinationResponseArrayOutputWithContext(ctx context.Context) DestinationResponseArrayOutput

type DestinationResponseOutput 

type DestinationResponseOutput struct{ *pulumi.OutputState }

Specification of traffic destination attributes.

func (DestinationResponseOutput) ElementType 

func (DestinationResponseOutput) ElementType() reflect.Type

func (DestinationResponseOutput) Hosts 

func (o DestinationResponseOutput) Hosts() pulumi.StringArrayOutput

List of host names to match. Matched against the ":authority" header in http requests. At least one host should match. Each host can be an exact match, or a prefix match (example "mydomain.*") or a suffix match (example // *.myorg.com") or a presence(any) match "*".

func (DestinationResponseOutput) HttpHeaderMatch 

func (o DestinationResponseOutput) HttpHeaderMatch() HttpHeaderMatchResponseOutput

Optional. Match against key:value pair in http header. Provides a flexible match based on HTTP headers, for potentially advanced use cases. At least one header should match. Avoid using header matches to make authorization decisions unless there is a strong guarantee that requests arrive through a trusted client or proxy.

func (DestinationResponseOutput) Methods 

func (o DestinationResponseOutput) Methods() pulumi.StringArrayOutput

Optional. A list of HTTP methods to match. At least one method should match. Should not be set for gRPC services.

func (DestinationResponseOutput) Ports 

func (o DestinationResponseOutput) Ports() pulumi.IntArrayOutput

List of destination ports to match. At least one port should match.

func (DestinationResponseOutput) ToDestinationResponseOutput 

func (o DestinationResponseOutput) ToDestinationResponseOutput() DestinationResponseOutput

func (DestinationResponseOutput) ToDestinationResponseOutputWithContext 

func (o DestinationResponseOutput) ToDestinationResponseOutputWithContext(ctx context.Context) DestinationResponseOutput

type Expr 

type Expr struct {
	// Optional. Description of the expression. This is a longer text which describes the expression, e.g. when hovered over it in a UI.
	Description *string `pulumi:"description"`
	// Textual representation of an expression in Common Expression Language syntax.
	Expression *string `pulumi:"expression"`
	// Optional. String indicating the location of the expression for error reporting, e.g. a file name and a position in the file.
	Location *string `pulumi:"location"`
	// Optional. Title for the expression, i.e. a short string describing its purpose. This can be used e.g. in UIs which allow to enter the expression.
	Title *string `pulumi:"title"`
}

Represents a textual expression in the Common Expression Language (CEL) syntax. CEL is a C-like expression language. The syntax and semantics of CEL are documented at https://github.com/google/cel-spec. Example (Comparison): title: "Summary size limit" description: "Determines if a summary is less than 100 chars" expression: "document.summary.size() < 100" Example (Equality): title: "Requestor is owner" description: "Determines if requestor is the document owner" expression: "document.owner == request.auth.claims.email" Example (Logic): title: "Public documents" description: "Determine whether the document should be publicly visible" expression: "document.type != 'private' && document.type != 'internal'" Example (Data Manipulation): title: "Notification string" description: "Create a notification string with a timestamp." expression: "'New message received at ' + string(document.create_time)" The exact variables and functions that may be referenced within an expression are determined by the service that evaluates it. See the service documentation for additional information.

type ExprArgs 

type ExprArgs struct {
	// Optional. Description of the expression. This is a longer text which describes the expression, e.g. when hovered over it in a UI.
	Description pulumi.StringPtrInput `pulumi:"description"`
	// Textual representation of an expression in Common Expression Language syntax.
	Expression pulumi.StringPtrInput `pulumi:"expression"`
	// Optional. String indicating the location of the expression for error reporting, e.g. a file name and a position in the file.
	Location pulumi.StringPtrInput `pulumi:"location"`
	// Optional. Title for the expression, i.e. a short string describing its purpose. This can be used e.g. in UIs which allow to enter the expression.
	Title pulumi.StringPtrInput `pulumi:"title"`
}

Represents a textual expression in the Common Expression Language (CEL) syntax. CEL is a C-like expression language. The syntax and semantics of CEL are documented at https://github.com/google/cel-spec. Example (Comparison): title: "Summary size limit" description: "Determines if a summary is less than 100 chars" expression: "document.summary.size() < 100" Example (Equality): title: "Requestor is owner" description: "Determines if requestor is the document owner" expression: "document.owner == request.auth.claims.email" Example (Logic): title: "Public documents" description: "Determine whether the document should be publicly visible" expression: "document.type != 'private' && document.type != 'internal'" Example (Data Manipulation): title: "Notification string" description: "Create a notification string with a timestamp." expression: "'New message received at ' + string(document.create_time)" The exact variables and functions that may be referenced within an expression are determined by the service that evaluates it. See the service documentation for additional information.

func (ExprArgs) ElementType 

func (ExprArgs) ElementType() reflect.Type

func (ExprArgs) ToExprOutput 

func (i ExprArgs) ToExprOutput() ExprOutput

func (ExprArgs) ToExprOutputWithContext 

func (i ExprArgs) ToExprOutputWithContext(ctx context.Context) ExprOutput

func (ExprArgs) ToExprPtrOutput 

func (i ExprArgs) ToExprPtrOutput() ExprPtrOutput

func (ExprArgs) ToExprPtrOutputWithContext 

func (i ExprArgs) ToExprPtrOutputWithContext(ctx context.Context) ExprPtrOutput

type ExprInput 

type ExprInput interface {
	pulumi.Input

	ToExprOutput() ExprOutput
	ToExprOutputWithContext(context.Context) ExprOutput
}

ExprInput is an input type that accepts ExprArgs and ExprOutput values. You can construct a concrete instance of `ExprInput` via: 

ExprArgs{...}

type ExprOutput 

type ExprOutput struct{ *pulumi.OutputState }

Represents a textual expression in the Common Expression Language (CEL) syntax. CEL is a C-like expression language. The syntax and semantics of CEL are documented at https://github.com/google/cel-spec. Example (Comparison): title: "Summary size limit" description: "Determines if a summary is less than 100 chars" expression: "document.summary.size() < 100" Example (Equality): title: "Requestor is owner" description: "Determines if requestor is the document owner" expression: "document.owner == request.auth.claims.email" Example (Logic): title: "Public documents" description: "Determine whether the document should be publicly visible" expression: "document.type != 'private' && document.type != 'internal'" Example (Data Manipulation): title: "Notification string" description: "Create a notification string with a timestamp." expression: "'New message received at ' + string(document.create_time)" The exact variables and functions that may be referenced within an expression are determined by the service that evaluates it. See the service documentation for additional information.

func (ExprOutput) Description 

func (o ExprOutput) Description() pulumi.StringPtrOutput

Optional. Description of the expression. This is a longer text which describes the expression, e.g. when hovered over it in a UI.

func (ExprOutput) ElementType 

func (ExprOutput) ElementType() reflect.Type

func (ExprOutput) Expression 

func (o ExprOutput) Expression() pulumi.StringPtrOutput

Textual representation of an expression in Common Expression Language syntax.

func (ExprOutput) Location 

func (o ExprOutput) Location() pulumi.StringPtrOutput

Optional. String indicating the location of the expression for error reporting, e.g. a file name and a position in the file.

func (ExprOutput) Title 

func (o ExprOutput) Title() pulumi.StringPtrOutput

Optional. Title for the expression, i.e. a short string describing its purpose. This can be used e.g. in UIs which allow to enter the expression.

func (ExprOutput) ToExprOutput 

func (o ExprOutput) ToExprOutput() ExprOutput

func (ExprOutput) ToExprOutputWithContext 

func (o ExprOutput) ToExprOutputWithContext(ctx context.Context) ExprOutput

func (ExprOutput) ToExprPtrOutput 

func (o ExprOutput) ToExprPtrOutput() ExprPtrOutput

func (ExprOutput) ToExprPtrOutputWithContext 

func (o ExprOutput) ToExprPtrOutputWithContext(ctx context.Context) ExprPtrOutput

type ExprPtrInput 

type ExprPtrInput interface {
	pulumi.Input

	ToExprPtrOutput() ExprPtrOutput
	ToExprPtrOutputWithContext(context.Context) ExprPtrOutput
}

ExprPtrInput is an input type that accepts ExprArgs, ExprPtr and ExprPtrOutput values. You can construct a concrete instance of `ExprPtrInput` via: 

        ExprArgs{...}

or:

        nil

func ExprPtr 

func ExprPtr(v *ExprArgs) ExprPtrInput

type ExprPtrOutput 

type ExprPtrOutput struct{ *pulumi.OutputState }

func (ExprPtrOutput) Description 

func (o ExprPtrOutput) Description() pulumi.StringPtrOutput

Optional. Description of the expression. This is a longer text which describes the expression, e.g. when hovered over it in a UI.

func (ExprPtrOutput) Elem 

func (o ExprPtrOutput) Elem() ExprOutput

func (ExprPtrOutput) ElementType 

func (ExprPtrOutput) ElementType() reflect.Type

func (ExprPtrOutput) Expression 

func (o ExprPtrOutput) Expression() pulumi.StringPtrOutput

Textual representation of an expression in Common Expression Language syntax.

func (ExprPtrOutput) Location 

func (o ExprPtrOutput) Location() pulumi.StringPtrOutput

Optional. String indicating the location of the expression for error reporting, e.g. a file name and a position in the file.

func (ExprPtrOutput) Title 

func (o ExprPtrOutput) Title() pulumi.StringPtrOutput

Optional. Title for the expression, i.e. a short string describing its purpose. This can be used e.g. in UIs which allow to enter the expression.

func (ExprPtrOutput) ToExprPtrOutput 

func (o ExprPtrOutput) ToExprPtrOutput() ExprPtrOutput

func (ExprPtrOutput) ToExprPtrOutputWithContext 

func (o ExprPtrOutput) ToExprPtrOutputWithContext(ctx context.Context) ExprPtrOutput

type ExprResponse 

type ExprResponse struct {
	// Optional. Description of the expression. This is a longer text which describes the expression, e.g. when hovered over it in a UI.
	Description string `pulumi:"description"`
	// Textual representation of an expression in Common Expression Language syntax.
	Expression string `pulumi:"expression"`
	// Optional. String indicating the location of the expression for error reporting, e.g. a file name and a position in the file.
	Location string `pulumi:"location"`
	// Optional. Title for the expression, i.e. a short string describing its purpose. This can be used e.g. in UIs which allow to enter the expression.
	Title string `pulumi:"title"`
}

Represents a textual expression in the Common Expression Language (CEL) syntax. CEL is a C-like expression language. The syntax and semantics of CEL are documented at https://github.com/google/cel-spec. Example (Comparison): title: "Summary size limit" description: "Determines if a summary is less than 100 chars" expression: "document.summary.size() < 100" Example (Equality): title: "Requestor is owner" description: "Determines if requestor is the document owner" expression: "document.owner == request.auth.claims.email" Example (Logic): title: "Public documents" description: "Determine whether the document should be publicly visible" expression: "document.type != 'private' && document.type != 'internal'" Example (Data Manipulation): title: "Notification string" description: "Create a notification string with a timestamp." expression: "'New message received at ' + string(document.create_time)" The exact variables and functions that may be referenced within an expression are determined by the service that evaluates it. See the service documentation for additional information.

type ExprResponseOutput 

type ExprResponseOutput struct{ *pulumi.OutputState }

Represents a textual expression in the Common Expression Language (CEL) syntax. CEL is a C-like expression language. The syntax and semantics of CEL are documented at https://github.com/google/cel-spec. Example (Comparison): title: "Summary size limit" description: "Determines if a summary is less than 100 chars" expression: "document.summary.size() < 100" Example (Equality): title: "Requestor is owner" description: "Determines if requestor is the document owner" expression: "document.owner == request.auth.claims.email" Example (Logic): title: "Public documents" description: "Determine whether the document should be publicly visible" expression: "document.type != 'private' && document.type != 'internal'" Example (Data Manipulation): title: "Notification string" description: "Create a notification string with a timestamp." expression: "'New message received at ' + string(document.create_time)" The exact variables and functions that may be referenced within an expression are determined by the service that evaluates it. See the service documentation for additional information.

func (ExprResponseOutput) Description 

func (o ExprResponseOutput) Description() pulumi.StringOutput

Optional. Description of the expression. This is a longer text which describes the expression, e.g. when hovered over it in a UI.

func (ExprResponseOutput) ElementType 

func (ExprResponseOutput) ElementType() reflect.Type

func (ExprResponseOutput) Expression 

func (o ExprResponseOutput) Expression() pulumi.StringOutput

Textual representation of an expression in Common Expression Language syntax.

func (ExprResponseOutput) Location 

func (o ExprResponseOutput) Location() pulumi.StringOutput

Optional. String indicating the location of the expression for error reporting, e.g. a file name and a position in the file.

func (ExprResponseOutput) Title 

func (o ExprResponseOutput) Title() pulumi.StringOutput

Optional. Title for the expression, i.e. a short string describing its purpose. This can be used e.g. in UIs which allow to enter the expression.

func (ExprResponseOutput) ToExprResponseOutput 

func (o ExprResponseOutput) ToExprResponseOutput() ExprResponseOutput

func (ExprResponseOutput) ToExprResponseOutputWithContext 

func (o ExprResponseOutput) ToExprResponseOutputWithContext(ctx context.Context) ExprResponseOutput

type GoogleCloudNetworksecurityV1CertificateProvider 

type GoogleCloudNetworksecurityV1CertificateProvider struct {
	// The certificate provider instance specification that will be passed to the data plane, which will be used to load necessary credential information.
	CertificateProviderInstance *CertificateProviderInstance `pulumi:"certificateProviderInstance"`
	// gRPC specific configuration to access the gRPC server to obtain the cert and private key.
	GrpcEndpoint *GoogleCloudNetworksecurityV1GrpcEndpoint `pulumi:"grpcEndpoint"`
}

Specification of certificate provider. Defines the mechanism to obtain the certificate and private key for peer to peer authentication.

type GoogleCloudNetworksecurityV1CertificateProviderArgs 

type GoogleCloudNetworksecurityV1CertificateProviderArgs struct {
	// The certificate provider instance specification that will be passed to the data plane, which will be used to load necessary credential information.
	CertificateProviderInstance CertificateProviderInstancePtrInput `pulumi:"certificateProviderInstance"`
	// gRPC specific configuration to access the gRPC server to obtain the cert and private key.
	GrpcEndpoint GoogleCloudNetworksecurityV1GrpcEndpointPtrInput `pulumi:"grpcEndpoint"`
}

Specification of certificate provider. Defines the mechanism to obtain the certificate and private key for peer to peer authentication.

func (GoogleCloudNetworksecurityV1CertificateProviderArgs) ElementType 

func (GoogleCloudNetworksecurityV1CertificateProviderArgs) ElementType() reflect.Type

func (GoogleCloudNetworksecurityV1CertificateProviderArgs) ToGoogleCloudNetworksecurityV1CertificateProviderOutput 

func (i GoogleCloudNetworksecurityV1CertificateProviderArgs) ToGoogleCloudNetworksecurityV1CertificateProviderOutput() GoogleCloudNetworksecurityV1CertificateProviderOutput

func (GoogleCloudNetworksecurityV1CertificateProviderArgs) ToGoogleCloudNetworksecurityV1CertificateProviderOutputWithContext 

func (i GoogleCloudNetworksecurityV1CertificateProviderArgs) ToGoogleCloudNetworksecurityV1CertificateProviderOutputWithContext(ctx context.Context) GoogleCloudNetworksecurityV1CertificateProviderOutput

func (GoogleCloudNetworksecurityV1CertificateProviderArgs) ToGoogleCloudNetworksecurityV1CertificateProviderPtrOutput 

func (i GoogleCloudNetworksecurityV1CertificateProviderArgs) ToGoogleCloudNetworksecurityV1CertificateProviderPtrOutput() GoogleCloudNetworksecurityV1CertificateProviderPtrOutput

func (GoogleCloudNetworksecurityV1CertificateProviderArgs) ToGoogleCloudNetworksecurityV1CertificateProviderPtrOutputWithContext 

func (i GoogleCloudNetworksecurityV1CertificateProviderArgs) ToGoogleCloudNetworksecurityV1CertificateProviderPtrOutputWithContext(ctx context.Context) GoogleCloudNetworksecurityV1CertificateProviderPtrOutput

type GoogleCloudNetworksecurityV1CertificateProviderInput 

type GoogleCloudNetworksecurityV1CertificateProviderInput interface {
	pulumi.Input

	ToGoogleCloudNetworksecurityV1CertificateProviderOutput() GoogleCloudNetworksecurityV1CertificateProviderOutput
	ToGoogleCloudNetworksecurityV1CertificateProviderOutputWithContext(context.Context) GoogleCloudNetworksecurityV1CertificateProviderOutput
}

GoogleCloudNetworksecurityV1CertificateProviderInput is an input type that accepts GoogleCloudNetworksecurityV1CertificateProviderArgs and GoogleCloudNetworksecurityV1CertificateProviderOutput values. You can construct a concrete instance of `GoogleCloudNetworksecurityV1CertificateProviderInput` via: 

GoogleCloudNetworksecurityV1CertificateProviderArgs{...}

type GoogleCloudNetworksecurityV1CertificateProviderOutput 

type GoogleCloudNetworksecurityV1CertificateProviderOutput struct{ *pulumi.OutputState }

Specification of certificate provider. Defines the mechanism to obtain the certificate and private key for peer to peer authentication.

func (GoogleCloudNetworksecurityV1CertificateProviderOutput) CertificateProviderInstance 

func (o GoogleCloudNetworksecurityV1CertificateProviderOutput) CertificateProviderInstance() CertificateProviderInstancePtrOutput

The certificate provider instance specification that will be passed to the data plane, which will be used to load necessary credential information.

func (GoogleCloudNetworksecurityV1CertificateProviderOutput) ElementType 

func (GoogleCloudNetworksecurityV1CertificateProviderOutput) ElementType() reflect.Type

func (GoogleCloudNetworksecurityV1CertificateProviderOutput) GrpcEndpoint 

func (o GoogleCloudNetworksecurityV1CertificateProviderOutput) GrpcEndpoint() GoogleCloudNetworksecurityV1GrpcEndpointPtrOutput

gRPC specific configuration to access the gRPC server to obtain the cert and private key.

func (GoogleCloudNetworksecurityV1CertificateProviderOutput) ToGoogleCloudNetworksecurityV1CertificateProviderOutput 

func (o GoogleCloudNetworksecurityV1CertificateProviderOutput) ToGoogleCloudNetworksecurityV1CertificateProviderOutput() GoogleCloudNetworksecurityV1CertificateProviderOutput

func (GoogleCloudNetworksecurityV1CertificateProviderOutput) ToGoogleCloudNetworksecurityV1CertificateProviderOutputWithContext 

func (o GoogleCloudNetworksecurityV1CertificateProviderOutput) ToGoogleCloudNetworksecurityV1CertificateProviderOutputWithContext(ctx context.Context) GoogleCloudNetworksecurityV1CertificateProviderOutput

func (GoogleCloudNetworksecurityV1CertificateProviderOutput) ToGoogleCloudNetworksecurityV1CertificateProviderPtrOutput 

func (o GoogleCloudNetworksecurityV1CertificateProviderOutput) ToGoogleCloudNetworksecurityV1CertificateProviderPtrOutput() GoogleCloudNetworksecurityV1CertificateProviderPtrOutput

func (GoogleCloudNetworksecurityV1CertificateProviderOutput) ToGoogleCloudNetworksecurityV1CertificateProviderPtrOutputWithContext 

func (o GoogleCloudNetworksecurityV1CertificateProviderOutput) ToGoogleCloudNetworksecurityV1CertificateProviderPtrOutputWithContext(ctx context.Context) GoogleCloudNetworksecurityV1CertificateProviderPtrOutput

type GoogleCloudNetworksecurityV1CertificateProviderPtrInput 

type GoogleCloudNetworksecurityV1CertificateProviderPtrInput interface {
	pulumi.Input

	ToGoogleCloudNetworksecurityV1CertificateProviderPtrOutput() GoogleCloudNetworksecurityV1CertificateProviderPtrOutput
	ToGoogleCloudNetworksecurityV1CertificateProviderPtrOutputWithContext(context.Context) GoogleCloudNetworksecurityV1CertificateProviderPtrOutput
}

GoogleCloudNetworksecurityV1CertificateProviderPtrInput is an input type that accepts GoogleCloudNetworksecurityV1CertificateProviderArgs, GoogleCloudNetworksecurityV1CertificateProviderPtr and GoogleCloudNetworksecurityV1CertificateProviderPtrOutput values. You can construct a concrete instance of `GoogleCloudNetworksecurityV1CertificateProviderPtrInput` via: 

        GoogleCloudNetworksecurityV1CertificateProviderArgs{...}

or:

        nil

func GoogleCloudNetworksecurityV1CertificateProviderPtr 

func GoogleCloudNetworksecurityV1CertificateProviderPtr(v *GoogleCloudNetworksecurityV1CertificateProviderArgs) GoogleCloudNetworksecurityV1CertificateProviderPtrInput

type GoogleCloudNetworksecurityV1CertificateProviderPtrOutput 

type GoogleCloudNetworksecurityV1CertificateProviderPtrOutput struct{ *pulumi.OutputState }

func (GoogleCloudNetworksecurityV1CertificateProviderPtrOutput) CertificateProviderInstance 

func (o GoogleCloudNetworksecurityV1CertificateProviderPtrOutput) CertificateProviderInstance() CertificateProviderInstancePtrOutput

The certificate provider instance specification that will be passed to the data plane, which will be used to load necessary credential information.

func (GoogleCloudNetworksecurityV1CertificateProviderPtrOutput) Elem 

func (o GoogleCloudNetworksecurityV1CertificateProviderPtrOutput) Elem() GoogleCloudNetworksecurityV1CertificateProviderOutput

func (GoogleCloudNetworksecurityV1CertificateProviderPtrOutput) ElementType 

func (GoogleCloudNetworksecurityV1CertificateProviderPtrOutput) ElementType() reflect.Type

func (GoogleCloudNetworksecurityV1CertificateProviderPtrOutput) GrpcEndpoint 

func (o GoogleCloudNetworksecurityV1CertificateProviderPtrOutput) GrpcEndpoint() GoogleCloudNetworksecurityV1GrpcEndpointPtrOutput

gRPC specific configuration to access the gRPC server to obtain the cert and private key.

func (GoogleCloudNetworksecurityV1CertificateProviderPtrOutput) ToGoogleCloudNetworksecurityV1CertificateProviderPtrOutput 

func (o GoogleCloudNetworksecurityV1CertificateProviderPtrOutput) ToGoogleCloudNetworksecurityV1CertificateProviderPtrOutput() GoogleCloudNetworksecurityV1CertificateProviderPtrOutput

func (GoogleCloudNetworksecurityV1CertificateProviderPtrOutput) ToGoogleCloudNetworksecurityV1CertificateProviderPtrOutputWithContext 

func (o GoogleCloudNetworksecurityV1CertificateProviderPtrOutput) ToGoogleCloudNetworksecurityV1CertificateProviderPtrOutputWithContext(ctx context.Context) GoogleCloudNetworksecurityV1CertificateProviderPtrOutput

type GoogleCloudNetworksecurityV1CertificateProviderResponse 

type GoogleCloudNetworksecurityV1CertificateProviderResponse struct {
	// The certificate provider instance specification that will be passed to the data plane, which will be used to load necessary credential information.
	CertificateProviderInstance CertificateProviderInstanceResponse `pulumi:"certificateProviderInstance"`
	// gRPC specific configuration to access the gRPC server to obtain the cert and private key.
	GrpcEndpoint GoogleCloudNetworksecurityV1GrpcEndpointResponse `pulumi:"grpcEndpoint"`
}

Specification of certificate provider. Defines the mechanism to obtain the certificate and private key for peer to peer authentication.

type GoogleCloudNetworksecurityV1CertificateProviderResponseOutput 

type GoogleCloudNetworksecurityV1CertificateProviderResponseOutput struct{ *pulumi.OutputState }

Specification of certificate provider. Defines the mechanism to obtain the certificate and private key for peer to peer authentication.

func (GoogleCloudNetworksecurityV1CertificateProviderResponseOutput) CertificateProviderInstance 

func (o GoogleCloudNetworksecurityV1CertificateProviderResponseOutput) CertificateProviderInstance() CertificateProviderInstanceResponseOutput

The certificate provider instance specification that will be passed to the data plane, which will be used to load necessary credential information.

func (GoogleCloudNetworksecurityV1CertificateProviderResponseOutput) ElementType 

func (GoogleCloudNetworksecurityV1CertificateProviderResponseOutput) ElementType() reflect.Type

func (GoogleCloudNetworksecurityV1CertificateProviderResponseOutput) GrpcEndpoint 

func (o GoogleCloudNetworksecurityV1CertificateProviderResponseOutput) GrpcEndpoint() GoogleCloudNetworksecurityV1GrpcEndpointResponseOutput

gRPC specific configuration to access the gRPC server to obtain the cert and private key.

func (GoogleCloudNetworksecurityV1CertificateProviderResponseOutput) ToGoogleCloudNetworksecurityV1CertificateProviderResponseOutput 

func (o GoogleCloudNetworksecurityV1CertificateProviderResponseOutput) ToGoogleCloudNetworksecurityV1CertificateProviderResponseOutput() GoogleCloudNetworksecurityV1CertificateProviderResponseOutput

func (GoogleCloudNetworksecurityV1CertificateProviderResponseOutput) ToGoogleCloudNetworksecurityV1CertificateProviderResponseOutputWithContext 

func (o GoogleCloudNetworksecurityV1CertificateProviderResponseOutput) ToGoogleCloudNetworksecurityV1CertificateProviderResponseOutputWithContext(ctx context.Context) GoogleCloudNetworksecurityV1CertificateProviderResponseOutput

type GoogleCloudNetworksecurityV1GrpcEndpoint 

type GoogleCloudNetworksecurityV1GrpcEndpoint struct {
	// The target URI of the gRPC endpoint. Only UDS path is supported, and should start with “unix:”.
	TargetUri string `pulumi:"targetUri"`
}

Specification of the GRPC Endpoint.

type GoogleCloudNetworksecurityV1GrpcEndpointArgs 

type GoogleCloudNetworksecurityV1GrpcEndpointArgs struct {
	// The target URI of the gRPC endpoint. Only UDS path is supported, and should start with “unix:”.
	TargetUri pulumi.StringInput `pulumi:"targetUri"`
}

Specification of the GRPC Endpoint.

func (GoogleCloudNetworksecurityV1GrpcEndpointArgs) ElementType 

func (GoogleCloudNetworksecurityV1GrpcEndpointArgs) ElementType() reflect.Type

func (GoogleCloudNetworksecurityV1GrpcEndpointArgs) ToGoogleCloudNetworksecurityV1GrpcEndpointOutput 

func (i GoogleCloudNetworksecurityV1GrpcEndpointArgs) ToGoogleCloudNetworksecurityV1GrpcEndpointOutput() GoogleCloudNetworksecurityV1GrpcEndpointOutput

func (GoogleCloudNetworksecurityV1GrpcEndpointArgs) ToGoogleCloudNetworksecurityV1GrpcEndpointOutputWithContext 

func (i GoogleCloudNetworksecurityV1GrpcEndpointArgs) ToGoogleCloudNetworksecurityV1GrpcEndpointOutputWithContext(ctx context.Context) GoogleCloudNetworksecurityV1GrpcEndpointOutput

func (GoogleCloudNetworksecurityV1GrpcEndpointArgs) ToGoogleCloudNetworksecurityV1GrpcEndpointPtrOutput 

func (i GoogleCloudNetworksecurityV1GrpcEndpointArgs) ToGoogleCloudNetworksecurityV1GrpcEndpointPtrOutput() GoogleCloudNetworksecurityV1GrpcEndpointPtrOutput

func (GoogleCloudNetworksecurityV1GrpcEndpointArgs) ToGoogleCloudNetworksecurityV1GrpcEndpointPtrOutputWithContext 

func (i GoogleCloudNetworksecurityV1GrpcEndpointArgs) ToGoogleCloudNetworksecurityV1GrpcEndpointPtrOutputWithContext(ctx context.Context) GoogleCloudNetworksecurityV1GrpcEndpointPtrOutput

type GoogleCloudNetworksecurityV1GrpcEndpointInput 

type GoogleCloudNetworksecurityV1GrpcEndpointInput interface {
	pulumi.Input

	ToGoogleCloudNetworksecurityV1GrpcEndpointOutput() GoogleCloudNetworksecurityV1GrpcEndpointOutput
	ToGoogleCloudNetworksecurityV1GrpcEndpointOutputWithContext(context.Context) GoogleCloudNetworksecurityV1GrpcEndpointOutput
}

GoogleCloudNetworksecurityV1GrpcEndpointInput is an input type that accepts GoogleCloudNetworksecurityV1GrpcEndpointArgs and GoogleCloudNetworksecurityV1GrpcEndpointOutput values. You can construct a concrete instance of `GoogleCloudNetworksecurityV1GrpcEndpointInput` via: 

GoogleCloudNetworksecurityV1GrpcEndpointArgs{...}

type GoogleCloudNetworksecurityV1GrpcEndpointOutput 

type GoogleCloudNetworksecurityV1GrpcEndpointOutput struct{ *pulumi.OutputState }

Specification of the GRPC Endpoint.

func (GoogleCloudNetworksecurityV1GrpcEndpointOutput) ElementType 

func (GoogleCloudNetworksecurityV1GrpcEndpointOutput) ElementType() reflect.Type

func (GoogleCloudNetworksecurityV1GrpcEndpointOutput) TargetUri 

func (o GoogleCloudNetworksecurityV1GrpcEndpointOutput) TargetUri() pulumi.StringOutput

The target URI of the gRPC endpoint. Only UDS path is supported, and should start with “unix:”.

func (GoogleCloudNetworksecurityV1GrpcEndpointOutput) ToGoogleCloudNetworksecurityV1GrpcEndpointOutput 

func (o GoogleCloudNetworksecurityV1GrpcEndpointOutput) ToGoogleCloudNetworksecurityV1GrpcEndpointOutput() GoogleCloudNetworksecurityV1GrpcEndpointOutput

func (GoogleCloudNetworksecurityV1GrpcEndpointOutput) ToGoogleCloudNetworksecurityV1GrpcEndpointOutputWithContext 

func (o GoogleCloudNetworksecurityV1GrpcEndpointOutput) ToGoogleCloudNetworksecurityV1GrpcEndpointOutputWithContext(ctx context.Context) GoogleCloudNetworksecurityV1GrpcEndpointOutput

func (GoogleCloudNetworksecurityV1GrpcEndpointOutput) ToGoogleCloudNetworksecurityV1GrpcEndpointPtrOutput 

func (o GoogleCloudNetworksecurityV1GrpcEndpointOutput) ToGoogleCloudNetworksecurityV1GrpcEndpointPtrOutput() GoogleCloudNetworksecurityV1GrpcEndpointPtrOutput

func (GoogleCloudNetworksecurityV1GrpcEndpointOutput) ToGoogleCloudNetworksecurityV1GrpcEndpointPtrOutputWithContext 

func (o GoogleCloudNetworksecurityV1GrpcEndpointOutput) ToGoogleCloudNetworksecurityV1GrpcEndpointPtrOutputWithContext(ctx context.Context) GoogleCloudNetworksecurityV1GrpcEndpointPtrOutput

type GoogleCloudNetworksecurityV1GrpcEndpointPtrInput 

type GoogleCloudNetworksecurityV1GrpcEndpointPtrInput interface {
	pulumi.Input

	ToGoogleCloudNetworksecurityV1GrpcEndpointPtrOutput() GoogleCloudNetworksecurityV1GrpcEndpointPtrOutput
	ToGoogleCloudNetworksecurityV1GrpcEndpointPtrOutputWithContext(context.Context) GoogleCloudNetworksecurityV1GrpcEndpointPtrOutput
}

GoogleCloudNetworksecurityV1GrpcEndpointPtrInput is an input type that accepts GoogleCloudNetworksecurityV1GrpcEndpointArgs, GoogleCloudNetworksecurityV1GrpcEndpointPtr and GoogleCloudNetworksecurityV1GrpcEndpointPtrOutput values. You can construct a concrete instance of `GoogleCloudNetworksecurityV1GrpcEndpointPtrInput` via: 

        GoogleCloudNetworksecurityV1GrpcEndpointArgs{...}

or:

        nil

func GoogleCloudNetworksecurityV1GrpcEndpointPtr 

func GoogleCloudNetworksecurityV1GrpcEndpointPtr(v *GoogleCloudNetworksecurityV1GrpcEndpointArgs) GoogleCloudNetworksecurityV1GrpcEndpointPtrInput

type GoogleCloudNetworksecurityV1GrpcEndpointPtrOutput 

type GoogleCloudNetworksecurityV1GrpcEndpointPtrOutput struct{ *pulumi.OutputState }

func (GoogleCloudNetworksecurityV1GrpcEndpointPtrOutput) Elem 

func (o GoogleCloudNetworksecurityV1GrpcEndpointPtrOutput) Elem() GoogleCloudNetworksecurityV1GrpcEndpointOutput

func (GoogleCloudNetworksecurityV1GrpcEndpointPtrOutput) ElementType 

func (GoogleCloudNetworksecurityV1GrpcEndpointPtrOutput) ElementType() reflect.Type

func (GoogleCloudNetworksecurityV1GrpcEndpointPtrOutput) TargetUri 

func (o GoogleCloudNetworksecurityV1GrpcEndpointPtrOutput) TargetUri() pulumi.StringPtrOutput

The target URI of the gRPC endpoint. Only UDS path is supported, and should start with “unix:”.

func (GoogleCloudNetworksecurityV1GrpcEndpointPtrOutput) ToGoogleCloudNetworksecurityV1GrpcEndpointPtrOutput 

func (o GoogleCloudNetworksecurityV1GrpcEndpointPtrOutput) ToGoogleCloudNetworksecurityV1GrpcEndpointPtrOutput() GoogleCloudNetworksecurityV1GrpcEndpointPtrOutput

func (GoogleCloudNetworksecurityV1GrpcEndpointPtrOutput) ToGoogleCloudNetworksecurityV1GrpcEndpointPtrOutputWithContext 

func (o GoogleCloudNetworksecurityV1GrpcEndpointPtrOutput) ToGoogleCloudNetworksecurityV1GrpcEndpointPtrOutputWithContext(ctx context.Context) GoogleCloudNetworksecurityV1GrpcEndpointPtrOutput

type GoogleCloudNetworksecurityV1GrpcEndpointResponse 

type GoogleCloudNetworksecurityV1GrpcEndpointResponse struct {
	// The target URI of the gRPC endpoint. Only UDS path is supported, and should start with “unix:”.
	TargetUri string `pulumi:"targetUri"`
}

Specification of the GRPC Endpoint.

type GoogleCloudNetworksecurityV1GrpcEndpointResponseOutput 

type GoogleCloudNetworksecurityV1GrpcEndpointResponseOutput struct{ *pulumi.OutputState }

Specification of the GRPC Endpoint.

func (GoogleCloudNetworksecurityV1GrpcEndpointResponseOutput) ElementType 

func (GoogleCloudNetworksecurityV1GrpcEndpointResponseOutput) ElementType() reflect.Type

func (GoogleCloudNetworksecurityV1GrpcEndpointResponseOutput) TargetUri 

func (o GoogleCloudNetworksecurityV1GrpcEndpointResponseOutput) TargetUri() pulumi.StringOutput

The target URI of the gRPC endpoint. Only UDS path is supported, and should start with “unix:”.

func (GoogleCloudNetworksecurityV1GrpcEndpointResponseOutput) ToGoogleCloudNetworksecurityV1GrpcEndpointResponseOutput 

func (o GoogleCloudNetworksecurityV1GrpcEndpointResponseOutput) ToGoogleCloudNetworksecurityV1GrpcEndpointResponseOutput() GoogleCloudNetworksecurityV1GrpcEndpointResponseOutput

func (GoogleCloudNetworksecurityV1GrpcEndpointResponseOutput) ToGoogleCloudNetworksecurityV1GrpcEndpointResponseOutputWithContext 

func (o GoogleCloudNetworksecurityV1GrpcEndpointResponseOutput) ToGoogleCloudNetworksecurityV1GrpcEndpointResponseOutputWithContext(ctx context.Context) GoogleCloudNetworksecurityV1GrpcEndpointResponseOutput

type GoogleIamV1AuditConfig 

type GoogleIamV1AuditConfig struct {
	// The configuration for logging of each type of permission.
	AuditLogConfigs []GoogleIamV1AuditLogConfig `pulumi:"auditLogConfigs"`
	// Specifies a service that will be enabled for audit logging. For example, `storage.googleapis.com`, `cloudsql.googleapis.com`. `allServices` is a special value that covers all services.
	Service *string `pulumi:"service"`
}

Specifies the audit configuration for a service. The configuration determines which permission types are logged, and what identities, if any, are exempted from logging. An AuditConfig must have one or more AuditLogConfigs. If there are AuditConfigs for both `allServices` and a specific service, the union of the two AuditConfigs is used for that service: the log_types specified in each AuditConfig are enabled, and the exempted_members in each AuditLogConfig are exempted. Example Policy with multiple AuditConfigs: { "audit_configs": [ { "service": "allServices", "audit_log_configs": [ { "log_type": "DATA_READ", "exempted_members": [ "user:jose@example.com" ] }, { "log_type": "DATA_WRITE" }, { "log_type": "ADMIN_READ" } ] }, { "service": "sampleservice.googleapis.com", "audit_log_configs": [ { "log_type": "DATA_READ" }, { "log_type": "DATA_WRITE", "exempted_members": [ "user:aliya@example.com" ] } ] } ] } For sampleservice, this policy enables DATA_READ, DATA_WRITE and ADMIN_READ logging. It also exempts jose@example.com from DATA_READ logging, and aliya@example.com from DATA_WRITE logging.

type GoogleIamV1AuditConfigArgs 

type GoogleIamV1AuditConfigArgs struct {
	// The configuration for logging of each type of permission.
	AuditLogConfigs GoogleIamV1AuditLogConfigArrayInput `pulumi:"auditLogConfigs"`
	// Specifies a service that will be enabled for audit logging. For example, `storage.googleapis.com`, `cloudsql.googleapis.com`. `allServices` is a special value that covers all services.
	Service pulumi.StringPtrInput `pulumi:"service"`
}

Specifies the audit configuration for a service. The configuration determines which permission types are logged, and what identities, if any, are exempted from logging. An AuditConfig must have one or more AuditLogConfigs. If there are AuditConfigs for both `allServices` and a specific service, the union of the two AuditConfigs is used for that service: the log_types specified in each AuditConfig are enabled, and the exempted_members in each AuditLogConfig are exempted. Example Policy with multiple AuditConfigs: { "audit_configs": [ { "service": "allServices", "audit_log_configs": [ { "log_type": "DATA_READ", "exempted_members": [ "user:jose@example.com" ] }, { "log_type": "DATA_WRITE" }, { "log_type": "ADMIN_READ" } ] }, { "service": "sampleservice.googleapis.com", "audit_log_configs": [ { "log_type": "DATA_READ" }, { "log_type": "DATA_WRITE", "exempted_members": [ "user:aliya@example.com" ] } ] } ] } For sampleservice, this policy enables DATA_READ, DATA_WRITE and ADMIN_READ logging. It also exempts jose@example.com from DATA_READ logging, and aliya@example.com from DATA_WRITE logging.

func (GoogleIamV1AuditConfigArgs) ElementType 

func (GoogleIamV1AuditConfigArgs) ElementType() reflect.Type

func (GoogleIamV1AuditConfigArgs) ToGoogleIamV1AuditConfigOutput 

func (i GoogleIamV1AuditConfigArgs) ToGoogleIamV1AuditConfigOutput() GoogleIamV1AuditConfigOutput

func (GoogleIamV1AuditConfigArgs) ToGoogleIamV1AuditConfigOutputWithContext 

func (i GoogleIamV1AuditConfigArgs) ToGoogleIamV1AuditConfigOutputWithContext(ctx context.Context) GoogleIamV1AuditConfigOutput

type GoogleIamV1AuditConfigArray 

type GoogleIamV1AuditConfigArray []GoogleIamV1AuditConfigInput

func (GoogleIamV1AuditConfigArray) ElementType 

func (GoogleIamV1AuditConfigArray) ElementType() reflect.Type

func (GoogleIamV1AuditConfigArray) ToGoogleIamV1AuditConfigArrayOutput 

func (i GoogleIamV1AuditConfigArray) ToGoogleIamV1AuditConfigArrayOutput() GoogleIamV1AuditConfigArrayOutput

func (GoogleIamV1AuditConfigArray) ToGoogleIamV1AuditConfigArrayOutputWithContext 

func (i GoogleIamV1AuditConfigArray) ToGoogleIamV1AuditConfigArrayOutputWithContext(ctx context.Context) GoogleIamV1AuditConfigArrayOutput

type GoogleIamV1AuditConfigArrayInput 

type GoogleIamV1AuditConfigArrayInput interface {
	pulumi.Input

	ToGoogleIamV1AuditConfigArrayOutput() GoogleIamV1AuditConfigArrayOutput
	ToGoogleIamV1AuditConfigArrayOutputWithContext(context.Context) GoogleIamV1AuditConfigArrayOutput
}

GoogleIamV1AuditConfigArrayInput is an input type that accepts GoogleIamV1AuditConfigArray and GoogleIamV1AuditConfigArrayOutput values. You can construct a concrete instance of `GoogleIamV1AuditConfigArrayInput` via: 

GoogleIamV1AuditConfigArray{ GoogleIamV1AuditConfigArgs{...} }

type GoogleIamV1AuditConfigArrayOutput 

type GoogleIamV1AuditConfigArrayOutput struct{ *pulumi.OutputState }

func (GoogleIamV1AuditConfigArrayOutput) ElementType 

func (GoogleIamV1AuditConfigArrayOutput) ElementType() reflect.Type

func (GoogleIamV1AuditConfigArrayOutput) Index 

func (o GoogleIamV1AuditConfigArrayOutput) Index(i pulumi.IntInput) GoogleIamV1AuditConfigOutput

func (GoogleIamV1AuditConfigArrayOutput) ToGoogleIamV1AuditConfigArrayOutput 

func (o GoogleIamV1AuditConfigArrayOutput) ToGoogleIamV1AuditConfigArrayOutput() GoogleIamV1AuditConfigArrayOutput

func (GoogleIamV1AuditConfigArrayOutput) ToGoogleIamV1AuditConfigArrayOutputWithContext 

func (o GoogleIamV1AuditConfigArrayOutput) ToGoogleIamV1AuditConfigArrayOutputWithContext(ctx context.Context) GoogleIamV1AuditConfigArrayOutput

type GoogleIamV1AuditConfigInput 

type GoogleIamV1AuditConfigInput interface {
	pulumi.Input

	ToGoogleIamV1AuditConfigOutput() GoogleIamV1AuditConfigOutput
	ToGoogleIamV1AuditConfigOutputWithContext(context.Context) GoogleIamV1AuditConfigOutput
}

GoogleIamV1AuditConfigInput is an input type that accepts GoogleIamV1AuditConfigArgs and GoogleIamV1AuditConfigOutput values. You can construct a concrete instance of `GoogleIamV1AuditConfigInput` via: 

GoogleIamV1AuditConfigArgs{...}

type GoogleIamV1AuditConfigOutput 

type GoogleIamV1AuditConfigOutput struct{ *pulumi.OutputState }

Specifies the audit configuration for a service. The configuration determines which permission types are logged, and what identities, if any, are exempted from logging. An AuditConfig must have one or more AuditLogConfigs. If there are AuditConfigs for both `allServices` and a specific service, the union of the two AuditConfigs is used for that service: the log_types specified in each AuditConfig are enabled, and the exempted_members in each AuditLogConfig are exempted. Example Policy with multiple AuditConfigs: { "audit_configs": [ { "service": "allServices", "audit_log_configs": [ { "log_type": "DATA_READ", "exempted_members": [ "user:jose@example.com" ] }, { "log_type": "DATA_WRITE" }, { "log_type": "ADMIN_READ" } ] }, { "service": "sampleservice.googleapis.com", "audit_log_configs": [ { "log_type": "DATA_READ" }, { "log_type": "DATA_WRITE", "exempted_members": [ "user:aliya@example.com" ] } ] } ] } For sampleservice, this policy enables DATA_READ, DATA_WRITE and ADMIN_READ logging. It also exempts jose@example.com from DATA_READ logging, and aliya@example.com from DATA_WRITE logging.

func (GoogleIamV1AuditConfigOutput) AuditLogConfigs 

func (o GoogleIamV1AuditConfigOutput) AuditLogConfigs() GoogleIamV1AuditLogConfigArrayOutput

The configuration for logging of each type of permission.

func (GoogleIamV1AuditConfigOutput) ElementType 

func (GoogleIamV1AuditConfigOutput) ElementType() reflect.Type

func (GoogleIamV1AuditConfigOutput) Service 

func (o GoogleIamV1AuditConfigOutput) Service() pulumi.StringPtrOutput

Specifies a service that will be enabled for audit logging. For example, `storage.googleapis.com`, `cloudsql.googleapis.com`. `allServices` is a special value that covers all services.

func (GoogleIamV1AuditConfigOutput) ToGoogleIamV1AuditConfigOutput 

func (o GoogleIamV1AuditConfigOutput) ToGoogleIamV1AuditConfigOutput() GoogleIamV1AuditConfigOutput

func (GoogleIamV1AuditConfigOutput) ToGoogleIamV1AuditConfigOutputWithContext 

func (o GoogleIamV1AuditConfigOutput) ToGoogleIamV1AuditConfigOutputWithContext(ctx context.Context) GoogleIamV1AuditConfigOutput

type GoogleIamV1AuditConfigResponse 

type GoogleIamV1AuditConfigResponse struct {
	// The configuration for logging of each type of permission.
	AuditLogConfigs []GoogleIamV1AuditLogConfigResponse `pulumi:"auditLogConfigs"`
	// Specifies a service that will be enabled for audit logging. For example, `storage.googleapis.com`, `cloudsql.googleapis.com`. `allServices` is a special value that covers all services.
	Service string `pulumi:"service"`
}

Specifies the audit configuration for a service. The configuration determines which permission types are logged, and what identities, if any, are exempted from logging. An AuditConfig must have one or more AuditLogConfigs. If there are AuditConfigs for both `allServices` and a specific service, the union of the two AuditConfigs is used for that service: the log_types specified in each AuditConfig are enabled, and the exempted_members in each AuditLogConfig are exempted. Example Policy with multiple AuditConfigs: { "audit_configs": [ { "service": "allServices", "audit_log_configs": [ { "log_type": "DATA_READ", "exempted_members": [ "user:jose@example.com" ] }, { "log_type": "DATA_WRITE" }, { "log_type": "ADMIN_READ" } ] }, { "service": "sampleservice.googleapis.com", "audit_log_configs": [ { "log_type": "DATA_READ" }, { "log_type": "DATA_WRITE", "exempted_members": [ "user:aliya@example.com" ] } ] } ] } For sampleservice, this policy enables DATA_READ, DATA_WRITE and ADMIN_READ logging. It also exempts jose@example.com from DATA_READ logging, and aliya@example.com from DATA_WRITE logging.

type GoogleIamV1AuditConfigResponseArrayOutput 

type GoogleIamV1AuditConfigResponseArrayOutput struct{ *pulumi.OutputState }

func (GoogleIamV1AuditConfigResponseArrayOutput) ElementType 

func (GoogleIamV1AuditConfigResponseArrayOutput) ElementType() reflect.Type

func (GoogleIamV1AuditConfigResponseArrayOutput) Index 

func (o GoogleIamV1AuditConfigResponseArrayOutput) Index(i pulumi.IntInput) GoogleIamV1AuditConfigResponseOutput

func (GoogleIamV1AuditConfigResponseArrayOutput) ToGoogleIamV1AuditConfigResponseArrayOutput 

func (o GoogleIamV1AuditConfigResponseArrayOutput) ToGoogleIamV1AuditConfigResponseArrayOutput() GoogleIamV1AuditConfigResponseArrayOutput

func (GoogleIamV1AuditConfigResponseArrayOutput) ToGoogleIamV1AuditConfigResponseArrayOutputWithContext 

func (o GoogleIamV1AuditConfigResponseArrayOutput) ToGoogleIamV1AuditConfigResponseArrayOutputWithContext(ctx context.Context) GoogleIamV1AuditConfigResponseArrayOutput

type GoogleIamV1AuditConfigResponseOutput 

type GoogleIamV1AuditConfigResponseOutput struct{ *pulumi.OutputState }

Specifies the audit configuration for a service. The configuration determines which permission types are logged, and what identities, if any, are exempted from logging. An AuditConfig must have one or more AuditLogConfigs. If there are AuditConfigs for both `allServices` and a specific service, the union of the two AuditConfigs is used for that service: the log_types specified in each AuditConfig are enabled, and the exempted_members in each AuditLogConfig are exempted. Example Policy with multiple AuditConfigs: { "audit_configs": [ { "service": "allServices", "audit_log_configs": [ { "log_type": "DATA_READ", "exempted_members": [ "user:jose@example.com" ] }, { "log_type": "DATA_WRITE" }, { "log_type": "ADMIN_READ" } ] }, { "service": "sampleservice.googleapis.com", "audit_log_configs": [ { "log_type": "DATA_READ" }, { "log_type": "DATA_WRITE", "exempted_members": [ "user:aliya@example.com" ] } ] } ] } For sampleservice, this policy enables DATA_READ, DATA_WRITE and ADMIN_READ logging. It also exempts jose@example.com from DATA_READ logging, and aliya@example.com from DATA_WRITE logging.

func (GoogleIamV1AuditConfigResponseOutput) AuditLogConfigs 

func (o GoogleIamV1AuditConfigResponseOutput) AuditLogConfigs() GoogleIamV1AuditLogConfigResponseArrayOutput

The configuration for logging of each type of permission.

func (GoogleIamV1AuditConfigResponseOutput) ElementType 

func (GoogleIamV1AuditConfigResponseOutput) ElementType() reflect.Type

func (GoogleIamV1AuditConfigResponseOutput) Service 

func (o GoogleIamV1AuditConfigResponseOutput) Service() pulumi.StringOutput

Specifies a service that will be enabled for audit logging. For example, `storage.googleapis.com`, `cloudsql.googleapis.com`. `allServices` is a special value that covers all services.

func (GoogleIamV1AuditConfigResponseOutput) ToGoogleIamV1AuditConfigResponseOutput 

func (o GoogleIamV1AuditConfigResponseOutput) ToGoogleIamV1AuditConfigResponseOutput() GoogleIamV1AuditConfigResponseOutput

func (GoogleIamV1AuditConfigResponseOutput) ToGoogleIamV1AuditConfigResponseOutputWithContext 

func (o GoogleIamV1AuditConfigResponseOutput) ToGoogleIamV1AuditConfigResponseOutputWithContext(ctx context.Context) GoogleIamV1AuditConfigResponseOutput

type GoogleIamV1AuditLogConfig 

type GoogleIamV1AuditLogConfig struct {
	// Specifies the identities that do not cause logging for this type of permission. Follows the same format of Binding.members.
	ExemptedMembers []string `pulumi:"exemptedMembers"`
	// The log type that this config enables.
	LogType *GoogleIamV1AuditLogConfigLogType `pulumi:"logType"`
}

Provides the configuration for logging a type of permissions. Example: { "audit_log_configs": [ { "log_type": "DATA_READ", "exempted_members": [ "user:jose@example.com" ] }, { "log_type": "DATA_WRITE" } ] } This enables 'DATA_READ' and 'DATA_WRITE' logging, while exempting jose@example.com from DATA_READ logging.

type GoogleIamV1AuditLogConfigArgs 

type GoogleIamV1AuditLogConfigArgs struct {
	// Specifies the identities that do not cause logging for this type of permission. Follows the same format of Binding.members.
	ExemptedMembers pulumi.StringArrayInput `pulumi:"exemptedMembers"`
	// The log type that this config enables.
	LogType GoogleIamV1AuditLogConfigLogTypePtrInput `pulumi:"logType"`
}

Provides the configuration for logging a type of permissions. Example: { "audit_log_configs": [ { "log_type": "DATA_READ", "exempted_members": [ "user:jose@example.com" ] }, { "log_type": "DATA_WRITE" } ] } This enables 'DATA_READ' and 'DATA_WRITE' logging, while exempting jose@example.com from DATA_READ logging.

func (GoogleIamV1AuditLogConfigArgs) ElementType 

func (GoogleIamV1AuditLogConfigArgs) ElementType() reflect.Type

func (GoogleIamV1AuditLogConfigArgs) ToGoogleIamV1AuditLogConfigOutput 

func (i GoogleIamV1AuditLogConfigArgs) ToGoogleIamV1AuditLogConfigOutput() GoogleIamV1AuditLogConfigOutput

func (GoogleIamV1AuditLogConfigArgs) ToGoogleIamV1AuditLogConfigOutputWithContext 

func (i GoogleIamV1AuditLogConfigArgs) ToGoogleIamV1AuditLogConfigOutputWithContext(ctx context.Context) GoogleIamV1AuditLogConfigOutput

type GoogleIamV1AuditLogConfigArray 

type GoogleIamV1AuditLogConfigArray []GoogleIamV1AuditLogConfigInput

func (GoogleIamV1AuditLogConfigArray) ElementType 

func (GoogleIamV1AuditLogConfigArray) ElementType() reflect.Type

func (GoogleIamV1AuditLogConfigArray) ToGoogleIamV1AuditLogConfigArrayOutput 

func (i GoogleIamV1AuditLogConfigArray) ToGoogleIamV1AuditLogConfigArrayOutput() GoogleIamV1AuditLogConfigArrayOutput

func (GoogleIamV1AuditLogConfigArray) ToGoogleIamV1AuditLogConfigArrayOutputWithContext 

func (i GoogleIamV1AuditLogConfigArray) ToGoogleIamV1AuditLogConfigArrayOutputWithContext(ctx context.Context) GoogleIamV1AuditLogConfigArrayOutput

type GoogleIamV1AuditLogConfigArrayInput 

type GoogleIamV1AuditLogConfigArrayInput interface {
	pulumi.Input

	ToGoogleIamV1AuditLogConfigArrayOutput() GoogleIamV1AuditLogConfigArrayOutput
	ToGoogleIamV1AuditLogConfigArrayOutputWithContext(context.Context) GoogleIamV1AuditLogConfigArrayOutput
}

GoogleIamV1AuditLogConfigArrayInput is an input type that accepts GoogleIamV1AuditLogConfigArray and GoogleIamV1AuditLogConfigArrayOutput values. You can construct a concrete instance of `GoogleIamV1AuditLogConfigArrayInput` via: 

GoogleIamV1AuditLogConfigArray{ GoogleIamV1AuditLogConfigArgs{...} }

type GoogleIamV1AuditLogConfigArrayOutput 

type GoogleIamV1AuditLogConfigArrayOutput struct{ *pulumi.OutputState }

func (GoogleIamV1AuditLogConfigArrayOutput) ElementType 

func (GoogleIamV1AuditLogConfigArrayOutput) ElementType() reflect.Type

func (GoogleIamV1AuditLogConfigArrayOutput) Index 

func (o GoogleIamV1AuditLogConfigArrayOutput) Index(i pulumi.IntInput) GoogleIamV1AuditLogConfigOutput

func (GoogleIamV1AuditLogConfigArrayOutput) ToGoogleIamV1AuditLogConfigArrayOutput 

func (o GoogleIamV1AuditLogConfigArrayOutput) ToGoogleIamV1AuditLogConfigArrayOutput() GoogleIamV1AuditLogConfigArrayOutput

func (GoogleIamV1AuditLogConfigArrayOutput) ToGoogleIamV1AuditLogConfigArrayOutputWithContext 

func (o GoogleIamV1AuditLogConfigArrayOutput) ToGoogleIamV1AuditLogConfigArrayOutputWithContext(ctx context.Context) GoogleIamV1AuditLogConfigArrayOutput

type GoogleIamV1AuditLogConfigInput 

type GoogleIamV1AuditLogConfigInput interface {
	pulumi.Input

	ToGoogleIamV1AuditLogConfigOutput() GoogleIamV1AuditLogConfigOutput
	ToGoogleIamV1AuditLogConfigOutputWithContext(context.Context) GoogleIamV1AuditLogConfigOutput
}

GoogleIamV1AuditLogConfigInput is an input type that accepts GoogleIamV1AuditLogConfigArgs and GoogleIamV1AuditLogConfigOutput values. You can construct a concrete instance of `GoogleIamV1AuditLogConfigInput` via: 

GoogleIamV1AuditLogConfigArgs{...}

type GoogleIamV1AuditLogConfigLogType 

type GoogleIamV1AuditLogConfigLogType string

The log type that this config enables.

func (GoogleIamV1AuditLogConfigLogType) ElementType 

func (GoogleIamV1AuditLogConfigLogType) ElementType() reflect.Type

func (GoogleIamV1AuditLogConfigLogType) ToGoogleIamV1AuditLogConfigLogTypeOutput 

func (e GoogleIamV1AuditLogConfigLogType) ToGoogleIamV1AuditLogConfigLogTypeOutput() GoogleIamV1AuditLogConfigLogTypeOutput

func (GoogleIamV1AuditLogConfigLogType) ToGoogleIamV1AuditLogConfigLogTypeOutputWithContext 

func (e GoogleIamV1AuditLogConfigLogType) ToGoogleIamV1AuditLogConfigLogTypeOutputWithContext(ctx context.Context) GoogleIamV1AuditLogConfigLogTypeOutput

func (GoogleIamV1AuditLogConfigLogType) ToGoogleIamV1AuditLogConfigLogTypePtrOutput 

func (e GoogleIamV1AuditLogConfigLogType) ToGoogleIamV1AuditLogConfigLogTypePtrOutput() GoogleIamV1AuditLogConfigLogTypePtrOutput

func (GoogleIamV1AuditLogConfigLogType) ToGoogleIamV1AuditLogConfigLogTypePtrOutputWithContext 

func (e GoogleIamV1AuditLogConfigLogType) ToGoogleIamV1AuditLogConfigLogTypePtrOutputWithContext(ctx context.Context) GoogleIamV1AuditLogConfigLogTypePtrOutput

func (GoogleIamV1AuditLogConfigLogType) ToStringOutput 

func (e GoogleIamV1AuditLogConfigLogType) ToStringOutput() pulumi.StringOutput

func (GoogleIamV1AuditLogConfigLogType) ToStringOutputWithContext 

func (e GoogleIamV1AuditLogConfigLogType) ToStringOutputWithContext(ctx context.Context) pulumi.StringOutput

func (GoogleIamV1AuditLogConfigLogType) ToStringPtrOutput 

func (e GoogleIamV1AuditLogConfigLogType) ToStringPtrOutput() pulumi.StringPtrOutput

func (GoogleIamV1AuditLogConfigLogType) ToStringPtrOutputWithContext 

func (e GoogleIamV1AuditLogConfigLogType) ToStringPtrOutputWithContext(ctx context.Context) pulumi.StringPtrOutput

type GoogleIamV1AuditLogConfigLogTypeInput 

type GoogleIamV1AuditLogConfigLogTypeInput interface {
	pulumi.Input

	ToGoogleIamV1AuditLogConfigLogTypeOutput() GoogleIamV1AuditLogConfigLogTypeOutput
	ToGoogleIamV1AuditLogConfigLogTypeOutputWithContext(context.Context) GoogleIamV1AuditLogConfigLogTypeOutput
}

GoogleIamV1AuditLogConfigLogTypeInput is an input type that accepts GoogleIamV1AuditLogConfigLogTypeArgs and GoogleIamV1AuditLogConfigLogTypeOutput values. You can construct a concrete instance of `GoogleIamV1AuditLogConfigLogTypeInput` via: 

GoogleIamV1AuditLogConfigLogTypeArgs{...}

type GoogleIamV1AuditLogConfigLogTypeOutput 

type GoogleIamV1AuditLogConfigLogTypeOutput struct{ *pulumi.OutputState }

func (GoogleIamV1AuditLogConfigLogTypeOutput) ElementType 

func (GoogleIamV1AuditLogConfigLogTypeOutput) ElementType() reflect.Type

func (GoogleIamV1AuditLogConfigLogTypeOutput) ToGoogleIamV1AuditLogConfigLogTypeOutput 

func (o GoogleIamV1AuditLogConfigLogTypeOutput) ToGoogleIamV1AuditLogConfigLogTypeOutput() GoogleIamV1AuditLogConfigLogTypeOutput

func (GoogleIamV1AuditLogConfigLogTypeOutput) ToGoogleIamV1AuditLogConfigLogTypeOutputWithContext 

func (o GoogleIamV1AuditLogConfigLogTypeOutput) ToGoogleIamV1AuditLogConfigLogTypeOutputWithContext(ctx context.Context) GoogleIamV1AuditLogConfigLogTypeOutput

func (GoogleIamV1AuditLogConfigLogTypeOutput) ToGoogleIamV1AuditLogConfigLogTypePtrOutput 

func (o GoogleIamV1AuditLogConfigLogTypeOutput) ToGoogleIamV1AuditLogConfigLogTypePtrOutput() GoogleIamV1AuditLogConfigLogTypePtrOutput

func (GoogleIamV1AuditLogConfigLogTypeOutput) ToGoogleIamV1AuditLogConfigLogTypePtrOutputWithContext 

func (o GoogleIamV1AuditLogConfigLogTypeOutput) ToGoogleIamV1AuditLogConfigLogTypePtrOutputWithContext(ctx context.Context) GoogleIamV1AuditLogConfigLogTypePtrOutput

func (GoogleIamV1AuditLogConfigLogTypeOutput) ToStringOutput 

func (o GoogleIamV1AuditLogConfigLogTypeOutput) ToStringOutput() pulumi.StringOutput

func (GoogleIamV1AuditLogConfigLogTypeOutput) ToStringOutputWithContext 

func (o GoogleIamV1AuditLogConfigLogTypeOutput) ToStringOutputWithContext(ctx context.Context) pulumi.StringOutput

func (GoogleIamV1AuditLogConfigLogTypeOutput) ToStringPtrOutput 

func (o GoogleIamV1AuditLogConfigLogTypeOutput) ToStringPtrOutput() pulumi.StringPtrOutput

func (GoogleIamV1AuditLogConfigLogTypeOutput) ToStringPtrOutputWithContext 

func (o GoogleIamV1AuditLogConfigLogTypeOutput) ToStringPtrOutputWithContext(ctx context.Context) pulumi.StringPtrOutput

type GoogleIamV1AuditLogConfigLogTypePtrInput 

type GoogleIamV1AuditLogConfigLogTypePtrInput interface {
	pulumi.Input

	ToGoogleIamV1AuditLogConfigLogTypePtrOutput() GoogleIamV1AuditLogConfigLogTypePtrOutput
	ToGoogleIamV1AuditLogConfigLogTypePtrOutputWithContext(context.Context) GoogleIamV1AuditLogConfigLogTypePtrOutput
}

func GoogleIamV1AuditLogConfigLogTypePtr 

func GoogleIamV1AuditLogConfigLogTypePtr(v string) GoogleIamV1AuditLogConfigLogTypePtrInput

type GoogleIamV1AuditLogConfigLogTypePtrOutput 

type GoogleIamV1AuditLogConfigLogTypePtrOutput struct{ *pulumi.OutputState }

func (GoogleIamV1AuditLogConfigLogTypePtrOutput) Elem 

func (o GoogleIamV1AuditLogConfigLogTypePtrOutput) Elem() GoogleIamV1AuditLogConfigLogTypeOutput

func (GoogleIamV1AuditLogConfigLogTypePtrOutput) ElementType 

func (GoogleIamV1AuditLogConfigLogTypePtrOutput) ElementType() reflect.Type

func (GoogleIamV1AuditLogConfigLogTypePtrOutput) ToGoogleIamV1AuditLogConfigLogTypePtrOutput 

func (o GoogleIamV1AuditLogConfigLogTypePtrOutput) ToGoogleIamV1AuditLogConfigLogTypePtrOutput() GoogleIamV1AuditLogConfigLogTypePtrOutput

func (GoogleIamV1AuditLogConfigLogTypePtrOutput) ToGoogleIamV1AuditLogConfigLogTypePtrOutputWithContext 

func (o GoogleIamV1AuditLogConfigLogTypePtrOutput) ToGoogleIamV1AuditLogConfigLogTypePtrOutputWithContext(ctx context.Context) GoogleIamV1AuditLogConfigLogTypePtrOutput

func (GoogleIamV1AuditLogConfigLogTypePtrOutput) ToStringPtrOutput 

func (o GoogleIamV1AuditLogConfigLogTypePtrOutput) ToStringPtrOutput() pulumi.StringPtrOutput

func (GoogleIamV1AuditLogConfigLogTypePtrOutput) ToStringPtrOutputWithContext 

func (o GoogleIamV1AuditLogConfigLogTypePtrOutput) ToStringPtrOutputWithContext(ctx context.Context) pulumi.StringPtrOutput

type GoogleIamV1AuditLogConfigOutput 

type GoogleIamV1AuditLogConfigOutput struct{ *pulumi.OutputState }

Provides the configuration for logging a type of permissions. Example: { "audit_log_configs": [ { "log_type": "DATA_READ", "exempted_members": [ "user:jose@example.com" ] }, { "log_type": "DATA_WRITE" } ] } This enables 'DATA_READ' and 'DATA_WRITE' logging, while exempting jose@example.com from DATA_READ logging.

func (GoogleIamV1AuditLogConfigOutput) ElementType 

func (GoogleIamV1AuditLogConfigOutput) ElementType() reflect.Type

func (GoogleIamV1AuditLogConfigOutput) ExemptedMembers 

func (o GoogleIamV1AuditLogConfigOutput) ExemptedMembers() pulumi.StringArrayOutput

Specifies the identities that do not cause logging for this type of permission. Follows the same format of Binding.members.

func (GoogleIamV1AuditLogConfigOutput) LogType 

func (o GoogleIamV1AuditLogConfigOutput) LogType() GoogleIamV1AuditLogConfigLogTypePtrOutput

The log type that this config enables.

func (GoogleIamV1AuditLogConfigOutput) ToGoogleIamV1AuditLogConfigOutput 

func (o GoogleIamV1AuditLogConfigOutput) ToGoogleIamV1AuditLogConfigOutput() GoogleIamV1AuditLogConfigOutput

func (GoogleIamV1AuditLogConfigOutput) ToGoogleIamV1AuditLogConfigOutputWithContext 

func (o GoogleIamV1AuditLogConfigOutput) ToGoogleIamV1AuditLogConfigOutputWithContext(ctx context.Context) GoogleIamV1AuditLogConfigOutput

type GoogleIamV1AuditLogConfigResponse 

type GoogleIamV1AuditLogConfigResponse struct {
	// Specifies the identities that do not cause logging for this type of permission. Follows the same format of Binding.members.
	ExemptedMembers []string `pulumi:"exemptedMembers"`
	// The log type that this config enables.
	LogType string `pulumi:"logType"`
}

Provides the configuration for logging a type of permissions. Example: { "audit_log_configs": [ { "log_type": "DATA_READ", "exempted_members": [ "user:jose@example.com" ] }, { "log_type": "DATA_WRITE" } ] } This enables 'DATA_READ' and 'DATA_WRITE' logging, while exempting jose@example.com from DATA_READ logging.

type GoogleIamV1AuditLogConfigResponseArrayOutput 

type GoogleIamV1AuditLogConfigResponseArrayOutput struct{ *pulumi.OutputState }

func (GoogleIamV1AuditLogConfigResponseArrayOutput) ElementType 

func (GoogleIamV1AuditLogConfigResponseArrayOutput) ElementType() reflect.Type

func (GoogleIamV1AuditLogConfigResponseArrayOutput) Index 

func (o GoogleIamV1AuditLogConfigResponseArrayOutput) Index(i pulumi.IntInput) GoogleIamV1AuditLogConfigResponseOutput

func (GoogleIamV1AuditLogConfigResponseArrayOutput) ToGoogleIamV1AuditLogConfigResponseArrayOutput 

func (o GoogleIamV1AuditLogConfigResponseArrayOutput) ToGoogleIamV1AuditLogConfigResponseArrayOutput() GoogleIamV1AuditLogConfigResponseArrayOutput

func (GoogleIamV1AuditLogConfigResponseArrayOutput) ToGoogleIamV1AuditLogConfigResponseArrayOutputWithContext 

func (o GoogleIamV1AuditLogConfigResponseArrayOutput) ToGoogleIamV1AuditLogConfigResponseArrayOutputWithContext(ctx context.Context) GoogleIamV1AuditLogConfigResponseArrayOutput

type GoogleIamV1AuditLogConfigResponseOutput 

type GoogleIamV1AuditLogConfigResponseOutput struct{ *pulumi.OutputState }

Provides the configuration for logging a type of permissions. Example: { "audit_log_configs": [ { "log_type": "DATA_READ", "exempted_members": [ "user:jose@example.com" ] }, { "log_type": "DATA_WRITE" } ] } This enables 'DATA_READ' and 'DATA_WRITE' logging, while exempting jose@example.com from DATA_READ logging.

func (GoogleIamV1AuditLogConfigResponseOutput) ElementType 

func (GoogleIamV1AuditLogConfigResponseOutput) ElementType() reflect.Type

func (GoogleIamV1AuditLogConfigResponseOutput) ExemptedMembers 

func (o GoogleIamV1AuditLogConfigResponseOutput) ExemptedMembers() pulumi.StringArrayOutput

Specifies the identities that do not cause logging for this type of permission. Follows the same format of Binding.members.

func (GoogleIamV1AuditLogConfigResponseOutput) LogType 

func (o GoogleIamV1AuditLogConfigResponseOutput) LogType() pulumi.StringOutput

The log type that this config enables.

func (GoogleIamV1AuditLogConfigResponseOutput) ToGoogleIamV1AuditLogConfigResponseOutput 

func (o GoogleIamV1AuditLogConfigResponseOutput) ToGoogleIamV1AuditLogConfigResponseOutput() GoogleIamV1AuditLogConfigResponseOutput

func (GoogleIamV1AuditLogConfigResponseOutput) ToGoogleIamV1AuditLogConfigResponseOutputWithContext 

func (o GoogleIamV1AuditLogConfigResponseOutput) ToGoogleIamV1AuditLogConfigResponseOutputWithContext(ctx context.Context) GoogleIamV1AuditLogConfigResponseOutput

type GoogleIamV1Binding 

type GoogleIamV1Binding struct {
	// The condition that is associated with this binding. If the condition evaluates to `true`, then this binding applies to the current request. If the condition evaluates to `false`, then this binding does not apply to the current request. However, a different role binding might grant the same role to one or more of the principals in this binding. To learn which resources support conditions in their IAM policies, see the [IAM documentation](https://cloud.google.com/iam/help/conditions/resource-policies).
	Condition *Expr `pulumi:"condition"`
	// Specifies the principals requesting access for a Cloud Platform resource. `members` can have the following values: * `allUsers`: A special identifier that represents anyone who is on the internet; with or without a Google account. * `allAuthenticatedUsers`: A special identifier that represents anyone who is authenticated with a Google account or a service account. * `user:{emailid}`: An email address that represents a specific Google account. For example, `alice@example.com` . * `serviceAccount:{emailid}`: An email address that represents a service account. For example, `my-other-app@appspot.gserviceaccount.com`. * `group:{emailid}`: An email address that represents a Google group. For example, `admins@example.com`. * `deleted:user:{emailid}?uid={uniqueid}`: An email address (plus unique identifier) representing a user that has been recently deleted. For example, `alice@example.com?uid=123456789012345678901`. If the user is recovered, this value reverts to `user:{emailid}` and the recovered user retains the role in the binding. * `deleted:serviceAccount:{emailid}?uid={uniqueid}`: An email address (plus unique identifier) representing a service account that has been recently deleted. For example, `my-other-app@appspot.gserviceaccount.com?uid=123456789012345678901`. If the service account is undeleted, this value reverts to `serviceAccount:{emailid}` and the undeleted service account retains the role in the binding. * `deleted:group:{emailid}?uid={uniqueid}`: An email address (plus unique identifier) representing a Google group that has been recently deleted. For example, `admins@example.com?uid=123456789012345678901`. If the group is recovered, this value reverts to `group:{emailid}` and the recovered group retains the role in the binding. * `domain:{domain}`: The G Suite domain (primary) that represents all the users of that domain. For example, `google.com` or `example.com`.
	Members []string `pulumi:"members"`
	// Role that is assigned to the list of `members`, or principals. For example, `roles/viewer`, `roles/editor`, or `roles/owner`.
	Role *string `pulumi:"role"`
}

Associates `members`, or principals, with a `role`.

type GoogleIamV1BindingArgs 

type GoogleIamV1BindingArgs struct {
	// The condition that is associated with this binding. If the condition evaluates to `true`, then this binding applies to the current request. If the condition evaluates to `false`, then this binding does not apply to the current request. However, a different role binding might grant the same role to one or more of the principals in this binding. To learn which resources support conditions in their IAM policies, see the [IAM documentation](https://cloud.google.com/iam/help/conditions/resource-policies).
	Condition ExprPtrInput `pulumi:"condition"`
	// Specifies the principals requesting access for a Cloud Platform resource. `members` can have the following values: * `allUsers`: A special identifier that represents anyone who is on the internet; with or without a Google account. * `allAuthenticatedUsers`: A special identifier that represents anyone who is authenticated with a Google account or a service account. * `user:{emailid}`: An email address that represents a specific Google account. For example, `alice@example.com` . * `serviceAccount:{emailid}`: An email address that represents a service account. For example, `my-other-app@appspot.gserviceaccount.com`. * `group:{emailid}`: An email address that represents a Google group. For example, `admins@example.com`. * `deleted:user:{emailid}?uid={uniqueid}`: An email address (plus unique identifier) representing a user that has been recently deleted. For example, `alice@example.com?uid=123456789012345678901`. If the user is recovered, this value reverts to `user:{emailid}` and the recovered user retains the role in the binding. * `deleted:serviceAccount:{emailid}?uid={uniqueid}`: An email address (plus unique identifier) representing a service account that has been recently deleted. For example, `my-other-app@appspot.gserviceaccount.com?uid=123456789012345678901`. If the service account is undeleted, this value reverts to `serviceAccount:{emailid}` and the undeleted service account retains the role in the binding. * `deleted:group:{emailid}?uid={uniqueid}`: An email address (plus unique identifier) representing a Google group that has been recently deleted. For example, `admins@example.com?uid=123456789012345678901`. If the group is recovered, this value reverts to `group:{emailid}` and the recovered group retains the role in the binding. * `domain:{domain}`: The G Suite domain (primary) that represents all the users of that domain. For example, `google.com` or `example.com`.
	Members pulumi.StringArrayInput `pulumi:"members"`
	// Role that is assigned to the list of `members`, or principals. For example, `roles/viewer`, `roles/editor`, or `roles/owner`.
	Role pulumi.StringPtrInput `pulumi:"role"`
}

Associates `members`, or principals, with a `role`.

func (GoogleIamV1BindingArgs) ElementType 

func (GoogleIamV1BindingArgs) ElementType() reflect.Type

func (GoogleIamV1BindingArgs) ToGoogleIamV1BindingOutput 

func (i GoogleIamV1BindingArgs) ToGoogleIamV1BindingOutput() GoogleIamV1BindingOutput

func (GoogleIamV1BindingArgs) ToGoogleIamV1BindingOutputWithContext 

func (i GoogleIamV1BindingArgs) ToGoogleIamV1BindingOutputWithContext(ctx context.Context) GoogleIamV1BindingOutput

type GoogleIamV1BindingArray 

type GoogleIamV1BindingArray []GoogleIamV1BindingInput

func (GoogleIamV1BindingArray) ElementType 

func (GoogleIamV1BindingArray) ElementType() reflect.Type

func (GoogleIamV1BindingArray) ToGoogleIamV1BindingArrayOutput 

func (i GoogleIamV1BindingArray) ToGoogleIamV1BindingArrayOutput() GoogleIamV1BindingArrayOutput

func (GoogleIamV1BindingArray) ToGoogleIamV1BindingArrayOutputWithContext 

func (i GoogleIamV1BindingArray) ToGoogleIamV1BindingArrayOutputWithContext(ctx context.Context) GoogleIamV1BindingArrayOutput

type GoogleIamV1BindingArrayInput 

type GoogleIamV1BindingArrayInput interface {
	pulumi.Input

	ToGoogleIamV1BindingArrayOutput() GoogleIamV1BindingArrayOutput
	ToGoogleIamV1BindingArrayOutputWithContext(context.Context) GoogleIamV1BindingArrayOutput
}

GoogleIamV1BindingArrayInput is an input type that accepts GoogleIamV1BindingArray and GoogleIamV1BindingArrayOutput values. You can construct a concrete instance of `GoogleIamV1BindingArrayInput` via: 

GoogleIamV1BindingArray{ GoogleIamV1BindingArgs{...} }

type GoogleIamV1BindingArrayOutput 

type GoogleIamV1BindingArrayOutput struct{ *pulumi.OutputState }

func (GoogleIamV1BindingArrayOutput) ElementType 

func (GoogleIamV1BindingArrayOutput) ElementType() reflect.Type

func (GoogleIamV1BindingArrayOutput) Index 

func (o GoogleIamV1BindingArrayOutput) Index(i pulumi.IntInput) GoogleIamV1BindingOutput

func (GoogleIamV1BindingArrayOutput) ToGoogleIamV1BindingArrayOutput 

func (o GoogleIamV1BindingArrayOutput) ToGoogleIamV1BindingArrayOutput() GoogleIamV1BindingArrayOutput

func (GoogleIamV1BindingArrayOutput) ToGoogleIamV1BindingArrayOutputWithContext 

func (o GoogleIamV1BindingArrayOutput) ToGoogleIamV1BindingArrayOutputWithContext(ctx context.Context) GoogleIamV1BindingArrayOutput

type GoogleIamV1BindingInput 

type GoogleIamV1BindingInput interface {
	pulumi.Input

	ToGoogleIamV1BindingOutput() GoogleIamV1BindingOutput
	ToGoogleIamV1BindingOutputWithContext(context.Context) GoogleIamV1BindingOutput
}

GoogleIamV1BindingInput is an input type that accepts GoogleIamV1BindingArgs and GoogleIamV1BindingOutput values. You can construct a concrete instance of `GoogleIamV1BindingInput` via: 

GoogleIamV1BindingArgs{...}

type GoogleIamV1BindingOutput 

type GoogleIamV1BindingOutput struct{ *pulumi.OutputState }

Associates `members`, or principals, with a `role`.

func (GoogleIamV1BindingOutput) Condition 

func (o GoogleIamV1BindingOutput) Condition() ExprPtrOutput

The condition that is associated with this binding. If the condition evaluates to `true`, then this binding applies to the current request. If the condition evaluates to `false`, then this binding does not apply to the current request. However, a different role binding might grant the same role to one or more of the principals in this binding. To learn which resources support conditions in their IAM policies, see the [IAM documentation](https://cloud.google.com/iam/help/conditions/resource-policies).

func (GoogleIamV1BindingOutput) ElementType 

func (GoogleIamV1BindingOutput) ElementType() reflect.Type

func (GoogleIamV1BindingOutput) Members 

func (o GoogleIamV1BindingOutput) Members() pulumi.StringArrayOutput

Specifies the principals requesting access for a Cloud Platform resource. `members` can have the following values: * `allUsers`: A special identifier that represents anyone who is on the internet; with or without a Google account. * `allAuthenticatedUsers`: A special identifier that represents anyone who is authenticated with a Google account or a service account. * `user:{emailid}`: An email address that represents a specific Google account. For example, `alice@example.com` . * `serviceAccount:{emailid}`: An email address that represents a service account. For example, `my-other-app@appspot.gserviceaccount.com`. * `group:{emailid}`: An email address that represents a Google group. For example, `admins@example.com`. * `deleted:user:{emailid}?uid={uniqueid}`: An email address (plus unique identifier) representing a user that has been recently deleted. For example, `alice@example.com?uid=123456789012345678901`. If the user is recovered, this value reverts to `user:{emailid}` and the recovered user retains the role in the binding. * `deleted:serviceAccount:{emailid}?uid={uniqueid}`: An email address (plus unique identifier) representing a service account that has been recently deleted. For example, `my-other-app@appspot.gserviceaccount.com?uid=123456789012345678901`. If the service account is undeleted, this value reverts to `serviceAccount:{emailid}` and the undeleted service account retains the role in the binding. * `deleted:group:{emailid}?uid={uniqueid}`: An email address (plus unique identifier) representing a Google group that has been recently deleted. For example, `admins@example.com?uid=123456789012345678901`. If the group is recovered, this value reverts to `group:{emailid}` and the recovered group retains the role in the binding. * `domain:{domain}`: The G Suite domain (primary) that represents all the users of that domain. For example, `google.com` or `example.com`.

func (GoogleIamV1BindingOutput) Role 

func (o GoogleIamV1BindingOutput) Role() pulumi.StringPtrOutput

Role that is assigned to the list of `members`, or principals. For example, `roles/viewer`, `roles/editor`, or `roles/owner`.

func (GoogleIamV1BindingOutput) ToGoogleIamV1BindingOutput 

func (o GoogleIamV1BindingOutput) ToGoogleIamV1BindingOutput() GoogleIamV1BindingOutput

func (GoogleIamV1BindingOutput) ToGoogleIamV1BindingOutputWithContext 

func (o GoogleIamV1BindingOutput) ToGoogleIamV1BindingOutputWithContext(ctx context.Context) GoogleIamV1BindingOutput

type GoogleIamV1BindingResponse 

type GoogleIamV1BindingResponse struct {
	// The condition that is associated with this binding. If the condition evaluates to `true`, then this binding applies to the current request. If the condition evaluates to `false`, then this binding does not apply to the current request. However, a different role binding might grant the same role to one or more of the principals in this binding. To learn which resources support conditions in their IAM policies, see the [IAM documentation](https://cloud.google.com/iam/help/conditions/resource-policies).
	Condition ExprResponse `pulumi:"condition"`
	// Specifies the principals requesting access for a Cloud Platform resource. `members` can have the following values: * `allUsers`: A special identifier that represents anyone who is on the internet; with or without a Google account. * `allAuthenticatedUsers`: A special identifier that represents anyone who is authenticated with a Google account or a service account. * `user:{emailid}`: An email address that represents a specific Google account. For example, `alice@example.com` . * `serviceAccount:{emailid}`: An email address that represents a service account. For example, `my-other-app@appspot.gserviceaccount.com`. * `group:{emailid}`: An email address that represents a Google group. For example, `admins@example.com`. * `deleted:user:{emailid}?uid={uniqueid}`: An email address (plus unique identifier) representing a user that has been recently deleted. For example, `alice@example.com?uid=123456789012345678901`. If the user is recovered, this value reverts to `user:{emailid}` and the recovered user retains the role in the binding. * `deleted:serviceAccount:{emailid}?uid={uniqueid}`: An email address (plus unique identifier) representing a service account that has been recently deleted. For example, `my-other-app@appspot.gserviceaccount.com?uid=123456789012345678901`. If the service account is undeleted, this value reverts to `serviceAccount:{emailid}` and the undeleted service account retains the role in the binding. * `deleted:group:{emailid}?uid={uniqueid}`: An email address (plus unique identifier) representing a Google group that has been recently deleted. For example, `admins@example.com?uid=123456789012345678901`. If the group is recovered, this value reverts to `group:{emailid}` and the recovered group retains the role in the binding. * `domain:{domain}`: The G Suite domain (primary) that represents all the users of that domain. For example, `google.com` or `example.com`.
	Members []string `pulumi:"members"`
	// Role that is assigned to the list of `members`, or principals. For example, `roles/viewer`, `roles/editor`, or `roles/owner`.
	Role string `pulumi:"role"`
}

Associates `members`, or principals, with a `role`.

type GoogleIamV1BindingResponseArrayOutput 

type GoogleIamV1BindingResponseArrayOutput struct{ *pulumi.OutputState }

func (GoogleIamV1BindingResponseArrayOutput) ElementType 

func (GoogleIamV1BindingResponseArrayOutput) ElementType() reflect.Type

func (GoogleIamV1BindingResponseArrayOutput) Index 

func (o GoogleIamV1BindingResponseArrayOutput) Index(i pulumi.IntInput) GoogleIamV1BindingResponseOutput

func (GoogleIamV1BindingResponseArrayOutput) ToGoogleIamV1BindingResponseArrayOutput 

func (o GoogleIamV1BindingResponseArrayOutput) ToGoogleIamV1BindingResponseArrayOutput() GoogleIamV1BindingResponseArrayOutput

func (GoogleIamV1BindingResponseArrayOutput) ToGoogleIamV1BindingResponseArrayOutputWithContext 

func (o GoogleIamV1BindingResponseArrayOutput) ToGoogleIamV1BindingResponseArrayOutputWithContext(ctx context.Context) GoogleIamV1BindingResponseArrayOutput

type GoogleIamV1BindingResponseOutput 

type GoogleIamV1BindingResponseOutput struct{ *pulumi.OutputState }

Associates `members`, or principals, with a `role`.

func (GoogleIamV1BindingResponseOutput) Condition 

func (o GoogleIamV1BindingResponseOutput) Condition() ExprResponseOutput

The condition that is associated with this binding. If the condition evaluates to `true`, then this binding applies to the current request. If the condition evaluates to `false`, then this binding does not apply to the current request. However, a different role binding might grant the same role to one or more of the principals in this binding. To learn which resources support conditions in their IAM policies, see the [IAM documentation](https://cloud.google.com/iam/help/conditions/resource-policies).

func (GoogleIamV1BindingResponseOutput) ElementType 

func (GoogleIamV1BindingResponseOutput) ElementType() reflect.Type

func (GoogleIamV1BindingResponseOutput) Members 

func (o GoogleIamV1BindingResponseOutput) Members() pulumi.StringArrayOutput

Specifies the principals requesting access for a Cloud Platform resource. `members` can have the following values: * `allUsers`: A special identifier that represents anyone who is on the internet; with or without a Google account. * `allAuthenticatedUsers`: A special identifier that represents anyone who is authenticated with a Google account or a service account. * `user:{emailid}`: An email address that represents a specific Google account. For example, `alice@example.com` . * `serviceAccount:{emailid}`: An email address that represents a service account. For example, `my-other-app@appspot.gserviceaccount.com`. * `group:{emailid}`: An email address that represents a Google group. For example, `admins@example.com`. * `deleted:user:{emailid}?uid={uniqueid}`: An email address (plus unique identifier) representing a user that has been recently deleted. For example, `alice@example.com?uid=123456789012345678901`. If the user is recovered, this value reverts to `user:{emailid}` and the recovered user retains the role in the binding. * `deleted:serviceAccount:{emailid}?uid={uniqueid}`: An email address (plus unique identifier) representing a service account that has been recently deleted. For example, `my-other-app@appspot.gserviceaccount.com?uid=123456789012345678901`. If the service account is undeleted, this value reverts to `serviceAccount:{emailid}` and the undeleted service account retains the role in the binding. * `deleted:group:{emailid}?uid={uniqueid}`: An email address (plus unique identifier) representing a Google group that has been recently deleted. For example, `admins@example.com?uid=123456789012345678901`. If the group is recovered, this value reverts to `group:{emailid}` and the recovered group retains the role in the binding. * `domain:{domain}`: The G Suite domain (primary) that represents all the users of that domain. For example, `google.com` or `example.com`.

func (GoogleIamV1BindingResponseOutput) Role 

func (o GoogleIamV1BindingResponseOutput) Role() pulumi.StringOutput

Role that is assigned to the list of `members`, or principals. For example, `roles/viewer`, `roles/editor`, or `roles/owner`.

func (GoogleIamV1BindingResponseOutput) ToGoogleIamV1BindingResponseOutput 

func (o GoogleIamV1BindingResponseOutput) ToGoogleIamV1BindingResponseOutput() GoogleIamV1BindingResponseOutput

func (GoogleIamV1BindingResponseOutput) ToGoogleIamV1BindingResponseOutputWithContext 

func (o GoogleIamV1BindingResponseOutput) ToGoogleIamV1BindingResponseOutputWithContext(ctx context.Context) GoogleIamV1BindingResponseOutput

type HttpHeaderMatch 

type HttpHeaderMatch struct {
	// The name of the HTTP header to match. For matching against the HTTP request's authority, use a headerMatch with the header name ":authority". For matching a request's method, use the headerName ":method".
	HeaderName string `pulumi:"headerName"`
	// The value of the header must match the regular expression specified in regexMatch. For regular expression grammar, please see: en.cppreference.com/w/cpp/regex/ecmascript For matching against a port specified in the HTTP request, use a headerMatch with headerName set to Host and a regular expression that satisfies the RFC2616 Host header's port specifier.
	RegexMatch string `pulumi:"regexMatch"`
}

Specification of HTTP header match atrributes.

type HttpHeaderMatchArgs 

type HttpHeaderMatchArgs struct {
	// The name of the HTTP header to match. For matching against the HTTP request's authority, use a headerMatch with the header name ":authority". For matching a request's method, use the headerName ":method".
	HeaderName pulumi.StringInput `pulumi:"headerName"`
	// The value of the header must match the regular expression specified in regexMatch. For regular expression grammar, please see: en.cppreference.com/w/cpp/regex/ecmascript For matching against a port specified in the HTTP request, use a headerMatch with headerName set to Host and a regular expression that satisfies the RFC2616 Host header's port specifier.
	RegexMatch pulumi.StringInput `pulumi:"regexMatch"`
}

Specification of HTTP header match atrributes.

func (HttpHeaderMatchArgs) ElementType 

func (HttpHeaderMatchArgs) ElementType() reflect.Type

func (HttpHeaderMatchArgs) ToHttpHeaderMatchOutput 

func (i HttpHeaderMatchArgs) ToHttpHeaderMatchOutput() HttpHeaderMatchOutput

func (HttpHeaderMatchArgs) ToHttpHeaderMatchOutputWithContext 

func (i HttpHeaderMatchArgs) ToHttpHeaderMatchOutputWithContext(ctx context.Context) HttpHeaderMatchOutput

func (HttpHeaderMatchArgs) ToHttpHeaderMatchPtrOutput 

func (i HttpHeaderMatchArgs) ToHttpHeaderMatchPtrOutput() HttpHeaderMatchPtrOutput

func (HttpHeaderMatchArgs) ToHttpHeaderMatchPtrOutputWithContext 

func (i HttpHeaderMatchArgs) ToHttpHeaderMatchPtrOutputWithContext(ctx context.Context) HttpHeaderMatchPtrOutput

type HttpHeaderMatchInput 

type HttpHeaderMatchInput interface {
	pulumi.Input

	ToHttpHeaderMatchOutput() HttpHeaderMatchOutput
	ToHttpHeaderMatchOutputWithContext(context.Context) HttpHeaderMatchOutput
}

HttpHeaderMatchInput is an input type that accepts HttpHeaderMatchArgs and HttpHeaderMatchOutput values. You can construct a concrete instance of `HttpHeaderMatchInput` via: 

HttpHeaderMatchArgs{...}

type HttpHeaderMatchOutput 

type HttpHeaderMatchOutput struct{ *pulumi.OutputState }

Specification of HTTP header match atrributes.

func (HttpHeaderMatchOutput) ElementType 

func (HttpHeaderMatchOutput) ElementType() reflect.Type

func (HttpHeaderMatchOutput) HeaderName 

func (o HttpHeaderMatchOutput) HeaderName() pulumi.StringOutput

The name of the HTTP header to match. For matching against the HTTP request's authority, use a headerMatch with the header name ":authority". For matching a request's method, use the headerName ":method".

func (HttpHeaderMatchOutput) RegexMatch 

func (o HttpHeaderMatchOutput) RegexMatch() pulumi.StringOutput

The value of the header must match the regular expression specified in regexMatch. For regular expression grammar, please see: en.cppreference.com/w/cpp/regex/ecmascript For matching against a port specified in the HTTP request, use a headerMatch with headerName set to Host and a regular expression that satisfies the RFC2616 Host header's port specifier.

func (HttpHeaderMatchOutput) ToHttpHeaderMatchOutput 

func (o HttpHeaderMatchOutput) ToHttpHeaderMatchOutput() HttpHeaderMatchOutput

func (HttpHeaderMatchOutput) ToHttpHeaderMatchOutputWithContext 

func (o HttpHeaderMatchOutput) ToHttpHeaderMatchOutputWithContext(ctx context.Context) HttpHeaderMatchOutput

func (HttpHeaderMatchOutput) ToHttpHeaderMatchPtrOutput 

func (o HttpHeaderMatchOutput) ToHttpHeaderMatchPtrOutput() HttpHeaderMatchPtrOutput

func (HttpHeaderMatchOutput) ToHttpHeaderMatchPtrOutputWithContext 

func (o HttpHeaderMatchOutput) ToHttpHeaderMatchPtrOutputWithContext(ctx context.Context) HttpHeaderMatchPtrOutput

type HttpHeaderMatchPtrInput 

type HttpHeaderMatchPtrInput interface {
	pulumi.Input

	ToHttpHeaderMatchPtrOutput() HttpHeaderMatchPtrOutput
	ToHttpHeaderMatchPtrOutputWithContext(context.Context) HttpHeaderMatchPtrOutput
}

HttpHeaderMatchPtrInput is an input type that accepts HttpHeaderMatchArgs, HttpHeaderMatchPtr and HttpHeaderMatchPtrOutput values. You can construct a concrete instance of `HttpHeaderMatchPtrInput` via: 

        HttpHeaderMatchArgs{...}

or:

        nil

func HttpHeaderMatchPtr 

func HttpHeaderMatchPtr(v *HttpHeaderMatchArgs) HttpHeaderMatchPtrInput

type HttpHeaderMatchPtrOutput 

type HttpHeaderMatchPtrOutput struct{ *pulumi.OutputState }

func (HttpHeaderMatchPtrOutput) Elem 

func (o HttpHeaderMatchPtrOutput) Elem() HttpHeaderMatchOutput

func (HttpHeaderMatchPtrOutput) ElementType 

func (HttpHeaderMatchPtrOutput) ElementType() reflect.Type

func (HttpHeaderMatchPtrOutput) HeaderName 

func (o HttpHeaderMatchPtrOutput) HeaderName() pulumi.StringPtrOutput

The name of the HTTP header to match. For matching against the HTTP request's authority, use a headerMatch with the header name ":authority". For matching a request's method, use the headerName ":method".

func (HttpHeaderMatchPtrOutput) RegexMatch 

func (o HttpHeaderMatchPtrOutput) RegexMatch() pulumi.StringPtrOutput

The value of the header must match the regular expression specified in regexMatch. For regular expression grammar, please see: en.cppreference.com/w/cpp/regex/ecmascript For matching against a port specified in the HTTP request, use a headerMatch with headerName set to Host and a regular expression that satisfies the RFC2616 Host header's port specifier.

func (HttpHeaderMatchPtrOutput) ToHttpHeaderMatchPtrOutput 

func (o HttpHeaderMatchPtrOutput) ToHttpHeaderMatchPtrOutput() HttpHeaderMatchPtrOutput

func (HttpHeaderMatchPtrOutput) ToHttpHeaderMatchPtrOutputWithContext 

func (o HttpHeaderMatchPtrOutput) ToHttpHeaderMatchPtrOutputWithContext(ctx context.Context) HttpHeaderMatchPtrOutput

type HttpHeaderMatchResponse 

type HttpHeaderMatchResponse struct {
	// The name of the HTTP header to match. For matching against the HTTP request's authority, use a headerMatch with the header name ":authority". For matching a request's method, use the headerName ":method".
	HeaderName string `pulumi:"headerName"`
	// The value of the header must match the regular expression specified in regexMatch. For regular expression grammar, please see: en.cppreference.com/w/cpp/regex/ecmascript For matching against a port specified in the HTTP request, use a headerMatch with headerName set to Host and a regular expression that satisfies the RFC2616 Host header's port specifier.
	RegexMatch string `pulumi:"regexMatch"`
}

Specification of HTTP header match atrributes.

type HttpHeaderMatchResponseOutput 

type HttpHeaderMatchResponseOutput struct{ *pulumi.OutputState }

Specification of HTTP header match atrributes.

func (HttpHeaderMatchResponseOutput) ElementType 

func (HttpHeaderMatchResponseOutput) ElementType() reflect.Type

func (HttpHeaderMatchResponseOutput) HeaderName 

func (o HttpHeaderMatchResponseOutput) HeaderName() pulumi.StringOutput

The name of the HTTP header to match. For matching against the HTTP request's authority, use a headerMatch with the header name ":authority". For matching a request's method, use the headerName ":method".

func (HttpHeaderMatchResponseOutput) RegexMatch 

func (o HttpHeaderMatchResponseOutput) RegexMatch() pulumi.StringOutput

The value of the header must match the regular expression specified in regexMatch. For regular expression grammar, please see: en.cppreference.com/w/cpp/regex/ecmascript For matching against a port specified in the HTTP request, use a headerMatch with headerName set to Host and a regular expression that satisfies the RFC2616 Host header's port specifier.

func (HttpHeaderMatchResponseOutput) ToHttpHeaderMatchResponseOutput 

func (o HttpHeaderMatchResponseOutput) ToHttpHeaderMatchResponseOutput() HttpHeaderMatchResponseOutput

func (HttpHeaderMatchResponseOutput) ToHttpHeaderMatchResponseOutputWithContext 

func (o HttpHeaderMatchResponseOutput) ToHttpHeaderMatchResponseOutputWithContext(ctx context.Context) HttpHeaderMatchResponseOutput

type LookupAuthorizationPolicyArgs 

type LookupAuthorizationPolicyArgs struct {
	AuthorizationPolicyId string  `pulumi:"authorizationPolicyId"`
	Location              string  `pulumi:"location"`
	Project               *string `pulumi:"project"`
}

type LookupAuthorizationPolicyIamPolicyArgs 

type LookupAuthorizationPolicyIamPolicyArgs struct {
	AuthorizationPolicyId         string  `pulumi:"authorizationPolicyId"`
	Location                      string  `pulumi:"location"`
	OptionsRequestedPolicyVersion *string `pulumi:"optionsRequestedPolicyVersion"`
	Project                       *string `pulumi:"project"`
}

type LookupAuthorizationPolicyIamPolicyOutputArgs 

type LookupAuthorizationPolicyIamPolicyOutputArgs struct {
	AuthorizationPolicyId         pulumi.StringInput    `pulumi:"authorizationPolicyId"`
	Location                      pulumi.StringInput    `pulumi:"location"`
	OptionsRequestedPolicyVersion pulumi.StringPtrInput `pulumi:"optionsRequestedPolicyVersion"`
	Project                       pulumi.StringPtrInput `pulumi:"project"`
}

func (LookupAuthorizationPolicyIamPolicyOutputArgs) ElementType 

func (LookupAuthorizationPolicyIamPolicyOutputArgs) ElementType() reflect.Type

type LookupAuthorizationPolicyIamPolicyResult 

type LookupAuthorizationPolicyIamPolicyResult struct {
	// Specifies cloud audit logging configuration for this policy.
	AuditConfigs []GoogleIamV1AuditConfigResponse `pulumi:"auditConfigs"`
	// Associates a list of `members`, or principals, with a `role`. Optionally, may specify a `condition` that determines how and when the `bindings` are applied. Each of the `bindings` must contain at least one principal. The `bindings` in a `Policy` can refer to up to 1,500 principals; up to 250 of these principals can be Google groups. Each occurrence of a principal counts towards these limits. For example, if the `bindings` grant 50 different roles to `user:alice@example.com`, and not to any other principal, then you can add another 1,450 principals to the `bindings` in the `Policy`.
	Bindings []GoogleIamV1BindingResponse `pulumi:"bindings"`
	// `etag` is used for optimistic concurrency control as a way to help prevent simultaneous updates of a policy from overwriting each other. It is strongly suggested that systems make use of the `etag` in the read-modify-write cycle to perform policy updates in order to avoid race conditions: An `etag` is returned in the response to `getIamPolicy`, and systems are expected to put that etag in the request to `setIamPolicy` to ensure that their change will be applied to the same version of the policy. **Important:** If you use IAM Conditions, you must include the `etag` field whenever you call `setIamPolicy`. If you omit this field, then IAM allows you to overwrite a version `3` policy with a version `1` policy, and all of the conditions in the version `3` policy are lost.
	Etag string `pulumi:"etag"`
	// Specifies the format of the policy. Valid values are `0`, `1`, and `3`. Requests that specify an invalid value are rejected. Any operation that affects conditional role bindings must specify version `3`. This requirement applies to the following operations: * Getting a policy that includes a conditional role binding * Adding a conditional role binding to a policy * Changing a conditional role binding in a policy * Removing any role binding, with or without a condition, from a policy that includes conditions **Important:** If you use IAM Conditions, you must include the `etag` field whenever you call `setIamPolicy`. If you omit this field, then IAM allows you to overwrite a version `3` policy with a version `1` policy, and all of the conditions in the version `3` policy are lost. If a policy does not include any conditions, operations on that policy may specify any valid version or leave the field unset. To learn which resources support conditions in their IAM policies, see the [IAM documentation](https://cloud.google.com/iam/help/conditions/resource-policies).
	Version int `pulumi:"version"`
}

func LookupAuthorizationPolicyIamPolicy 

func LookupAuthorizationPolicyIamPolicy(ctx *pulumi.Context, args *LookupAuthorizationPolicyIamPolicyArgs, opts ...pulumi.InvokeOption) (*LookupAuthorizationPolicyIamPolicyResult, error)

Gets the access control policy for a resource. Returns an empty policy if the resource exists and does not have a policy set.

type LookupAuthorizationPolicyIamPolicyResultOutput 

type LookupAuthorizationPolicyIamPolicyResultOutput struct{ *pulumi.OutputState }

func LookupAuthorizationPolicyIamPolicyOutput 

func LookupAuthorizationPolicyIamPolicyOutput(ctx *pulumi.Context, args LookupAuthorizationPolicyIamPolicyOutputArgs, opts ...pulumi.InvokeOption) LookupAuthorizationPolicyIamPolicyResultOutput

func (LookupAuthorizationPolicyIamPolicyResultOutput) AuditConfigs 

func (o LookupAuthorizationPolicyIamPolicyResultOutput) AuditConfigs() GoogleIamV1AuditConfigResponseArrayOutput

Specifies cloud audit logging configuration for this policy.

func (LookupAuthorizationPolicyIamPolicyResultOutput) Bindings 

func (o LookupAuthorizationPolicyIamPolicyResultOutput) Bindings() GoogleIamV1BindingResponseArrayOutput

Associates a list of `members`, or principals, with a `role`. Optionally, may specify a `condition` that determines how and when the `bindings` are applied. Each of the `bindings` must contain at least one principal. The `bindings` in a `Policy` can refer to up to 1,500 principals; up to 250 of these principals can be Google groups. Each occurrence of a principal counts towards these limits. For example, if the `bindings` grant 50 different roles to `user:alice@example.com`, and not to any other principal, then you can add another 1,450 principals to the `bindings` in the `Policy`.

func (LookupAuthorizationPolicyIamPolicyResultOutput) ElementType 

func (LookupAuthorizationPolicyIamPolicyResultOutput) ElementType() reflect.Type

func (LookupAuthorizationPolicyIamPolicyResultOutput) Etag 

func (o LookupAuthorizationPolicyIamPolicyResultOutput) Etag() pulumi.StringOutput

`etag` is used for optimistic concurrency control as a way to help prevent simultaneous updates of a policy from overwriting each other. It is strongly suggested that systems make use of the `etag` in the read-modify-write cycle to perform policy updates in order to avoid race conditions: An `etag` is returned in the response to `getIamPolicy`, and systems are expected to put that etag in the request to `setIamPolicy` to ensure that their change will be applied to the same version of the policy. **Important:** If you use IAM Conditions, you must include the `etag` field whenever you call `setIamPolicy`. If you omit this field, then IAM allows you to overwrite a version `3` policy with a version `1` policy, and all of the conditions in the version `3` policy are lost.

func (LookupAuthorizationPolicyIamPolicyResultOutput) ToLookupAuthorizationPolicyIamPolicyResultOutput 

func (o LookupAuthorizationPolicyIamPolicyResultOutput) ToLookupAuthorizationPolicyIamPolicyResultOutput() LookupAuthorizationPolicyIamPolicyResultOutput

func (LookupAuthorizationPolicyIamPolicyResultOutput) ToLookupAuthorizationPolicyIamPolicyResultOutputWithContext 

func (o LookupAuthorizationPolicyIamPolicyResultOutput) ToLookupAuthorizationPolicyIamPolicyResultOutputWithContext(ctx context.Context) LookupAuthorizationPolicyIamPolicyResultOutput

func (LookupAuthorizationPolicyIamPolicyResultOutput) Version 

func (o LookupAuthorizationPolicyIamPolicyResultOutput) Version() pulumi.IntOutput

Specifies the format of the policy. Valid values are `0`, `1`, and `3`. Requests that specify an invalid value are rejected. Any operation that affects conditional role bindings must specify version `3`. This requirement applies to the following operations: * Getting a policy that includes a conditional role binding * Adding a conditional role binding to a policy * Changing a conditional role binding in a policy * Removing any role binding, with or without a condition, from a policy that includes conditions **Important:** If you use IAM Conditions, you must include the `etag` field whenever you call `setIamPolicy`. If you omit this field, then IAM allows you to overwrite a version `3` policy with a version `1` policy, and all of the conditions in the version `3` policy are lost. If a policy does not include any conditions, operations on that policy may specify any valid version or leave the field unset. To learn which resources support conditions in their IAM policies, see the [IAM documentation](https://cloud.google.com/iam/help/conditions/resource-policies).

type LookupAuthorizationPolicyOutputArgs 

type LookupAuthorizationPolicyOutputArgs struct {
	AuthorizationPolicyId pulumi.StringInput    `pulumi:"authorizationPolicyId"`
	Location              pulumi.StringInput    `pulumi:"location"`
	Project               pulumi.StringPtrInput `pulumi:"project"`
}

func (LookupAuthorizationPolicyOutputArgs) ElementType 

func (LookupAuthorizationPolicyOutputArgs) ElementType() reflect.Type

type LookupAuthorizationPolicyResult 

type LookupAuthorizationPolicyResult struct {
	// The action to take when a rule match is found. Possible values are "ALLOW" or "DENY".
	Action string `pulumi:"action"`
	// The timestamp when the resource was created.
	CreateTime string `pulumi:"createTime"`
	// Optional. Free-text description of the resource.
	Description string `pulumi:"description"`
	// Optional. Set of label tags associated with the AuthorizationPolicy resource.
	Labels map[string]string `pulumi:"labels"`
	// Name of the AuthorizationPolicy resource. It matches pattern `projects/{project}/locations/{location}/authorizationPolicies/`.
	Name string `pulumi:"name"`
	// Optional. List of rules to match. Note that at least one of the rules must match in order for the action specified in the 'action' field to be taken. A rule is a match if there is a matching source and destination. If left blank, the action specified in the `action` field will be applied on every request.
	Rules []RuleResponse `pulumi:"rules"`
	// The timestamp when the resource was updated.
	UpdateTime string `pulumi:"updateTime"`
}

func LookupAuthorizationPolicy 

func LookupAuthorizationPolicy(ctx *pulumi.Context, args *LookupAuthorizationPolicyArgs, opts ...pulumi.InvokeOption) (*LookupAuthorizationPolicyResult, error)

Gets details of a single AuthorizationPolicy.

type LookupAuthorizationPolicyResultOutput 

type LookupAuthorizationPolicyResultOutput struct{ *pulumi.OutputState }

func LookupAuthorizationPolicyOutput 

func LookupAuthorizationPolicyOutput(ctx *pulumi.Context, args LookupAuthorizationPolicyOutputArgs, opts ...pulumi.InvokeOption) LookupAuthorizationPolicyResultOutput

func (LookupAuthorizationPolicyResultOutput) Action 

func (o LookupAuthorizationPolicyResultOutput) Action() pulumi.StringOutput

The action to take when a rule match is found. Possible values are "ALLOW" or "DENY".

func (LookupAuthorizationPolicyResultOutput) CreateTime 

func (o LookupAuthorizationPolicyResultOutput) CreateTime() pulumi.StringOutput

The timestamp when the resource was created.

func (LookupAuthorizationPolicyResultOutput) Description 

func (o LookupAuthorizationPolicyResultOutput) Description() pulumi.StringOutput

Optional. Free-text description of the resource.

func (LookupAuthorizationPolicyResultOutput) ElementType 

func (LookupAuthorizationPolicyResultOutput) ElementType() reflect.Type

func (LookupAuthorizationPolicyResultOutput) Labels 

func (o LookupAuthorizationPolicyResultOutput) Labels() pulumi.StringMapOutput

Optional. Set of label tags associated with the AuthorizationPolicy resource.

func (LookupAuthorizationPolicyResultOutput) Name 

func (o LookupAuthorizationPolicyResultOutput) Name() pulumi.StringOutput

Name of the AuthorizationPolicy resource. It matches pattern `projects/{project}/locations/{location}/authorizationPolicies/`.

func (LookupAuthorizationPolicyResultOutput) Rules 

func (o LookupAuthorizationPolicyResultOutput) Rules() RuleResponseArrayOutput

Optional. List of rules to match. Note that at least one of the rules must match in order for the action specified in the 'action' field to be taken. A rule is a match if there is a matching source and destination. If left blank, the action specified in the `action` field will be applied on every request.

func (LookupAuthorizationPolicyResultOutput) ToLookupAuthorizationPolicyResultOutput 

func (o LookupAuthorizationPolicyResultOutput) ToLookupAuthorizationPolicyResultOutput() LookupAuthorizationPolicyResultOutput

func (LookupAuthorizationPolicyResultOutput) ToLookupAuthorizationPolicyResultOutputWithContext 

func (o LookupAuthorizationPolicyResultOutput) ToLookupAuthorizationPolicyResultOutputWithContext(ctx context.Context) LookupAuthorizationPolicyResultOutput

func (LookupAuthorizationPolicyResultOutput) UpdateTime 

func (o LookupAuthorizationPolicyResultOutput) UpdateTime() pulumi.StringOutput

The timestamp when the resource was updated.

type LookupClientTlsPolicyArgs 

type LookupClientTlsPolicyArgs struct {
	ClientTlsPolicyId string  `pulumi:"clientTlsPolicyId"`
	Location          string  `pulumi:"location"`
	Project           *string `pulumi:"project"`
}

type LookupClientTlsPolicyIamPolicyArgs 

type LookupClientTlsPolicyIamPolicyArgs struct {
	ClientTlsPolicyId             string  `pulumi:"clientTlsPolicyId"`
	Location                      string  `pulumi:"location"`
	OptionsRequestedPolicyVersion *string `pulumi:"optionsRequestedPolicyVersion"`
	Project                       *string `pulumi:"project"`
}

type LookupClientTlsPolicyIamPolicyOutputArgs 

type LookupClientTlsPolicyIamPolicyOutputArgs struct {
	ClientTlsPolicyId             pulumi.StringInput    `pulumi:"clientTlsPolicyId"`
	Location                      pulumi.StringInput    `pulumi:"location"`
	OptionsRequestedPolicyVersion pulumi.StringPtrInput `pulumi:"optionsRequestedPolicyVersion"`
	Project                       pulumi.StringPtrInput `pulumi:"project"`
}

func (LookupClientTlsPolicyIamPolicyOutputArgs) ElementType 

func (LookupClientTlsPolicyIamPolicyOutputArgs) ElementType() reflect.Type

type LookupClientTlsPolicyIamPolicyResult 

type LookupClientTlsPolicyIamPolicyResult struct {
	// Specifies cloud audit logging configuration for this policy.
	AuditConfigs []GoogleIamV1AuditConfigResponse `pulumi:"auditConfigs"`
	// Associates a list of `members`, or principals, with a `role`. Optionally, may specify a `condition` that determines how and when the `bindings` are applied. Each of the `bindings` must contain at least one principal. The `bindings` in a `Policy` can refer to up to 1,500 principals; up to 250 of these principals can be Google groups. Each occurrence of a principal counts towards these limits. For example, if the `bindings` grant 50 different roles to `user:alice@example.com`, and not to any other principal, then you can add another 1,450 principals to the `bindings` in the `Policy`.
	Bindings []GoogleIamV1BindingResponse `pulumi:"bindings"`
	// `etag` is used for optimistic concurrency control as a way to help prevent simultaneous updates of a policy from overwriting each other. It is strongly suggested that systems make use of the `etag` in the read-modify-write cycle to perform policy updates in order to avoid race conditions: An `etag` is returned in the response to `getIamPolicy`, and systems are expected to put that etag in the request to `setIamPolicy` to ensure that their change will be applied to the same version of the policy. **Important:** If you use IAM Conditions, you must include the `etag` field whenever you call `setIamPolicy`. If you omit this field, then IAM allows you to overwrite a version `3` policy with a version `1` policy, and all of the conditions in the version `3` policy are lost.
	Etag string `pulumi:"etag"`
	// Specifies the format of the policy. Valid values are `0`, `1`, and `3`. Requests that specify an invalid value are rejected. Any operation that affects conditional role bindings must specify version `3`. This requirement applies to the following operations: * Getting a policy that includes a conditional role binding * Adding a conditional role binding to a policy * Changing a conditional role binding in a policy * Removing any role binding, with or without a condition, from a policy that includes conditions **Important:** If you use IAM Conditions, you must include the `etag` field whenever you call `setIamPolicy`. If you omit this field, then IAM allows you to overwrite a version `3` policy with a version `1` policy, and all of the conditions in the version `3` policy are lost. If a policy does not include any conditions, operations on that policy may specify any valid version or leave the field unset. To learn which resources support conditions in their IAM policies, see the [IAM documentation](https://cloud.google.com/iam/help/conditions/resource-policies).
	Version int `pulumi:"version"`
}

func LookupClientTlsPolicyIamPolicy 

func LookupClientTlsPolicyIamPolicy(ctx *pulumi.Context, args *LookupClientTlsPolicyIamPolicyArgs, opts ...pulumi.InvokeOption) (*LookupClientTlsPolicyIamPolicyResult, error)

Gets the access control policy for a resource. Returns an empty policy if the resource exists and does not have a policy set.

type LookupClientTlsPolicyIamPolicyResultOutput 

type LookupClientTlsPolicyIamPolicyResultOutput struct{ *pulumi.OutputState }

func LookupClientTlsPolicyIamPolicyOutput 

func LookupClientTlsPolicyIamPolicyOutput(ctx *pulumi.Context, args LookupClientTlsPolicyIamPolicyOutputArgs, opts ...pulumi.InvokeOption) LookupClientTlsPolicyIamPolicyResultOutput

func (LookupClientTlsPolicyIamPolicyResultOutput) AuditConfigs 

func (o LookupClientTlsPolicyIamPolicyResultOutput) AuditConfigs() GoogleIamV1AuditConfigResponseArrayOutput

Specifies cloud audit logging configuration for this policy.

func (LookupClientTlsPolicyIamPolicyResultOutput) Bindings 

func (o LookupClientTlsPolicyIamPolicyResultOutput) Bindings() GoogleIamV1BindingResponseArrayOutput

Associates a list of `members`, or principals, with a `role`. Optionally, may specify a `condition` that determines how and when the `bindings` are applied. Each of the `bindings` must contain at least one principal. The `bindings` in a `Policy` can refer to up to 1,500 principals; up to 250 of these principals can be Google groups. Each occurrence of a principal counts towards these limits. For example, if the `bindings` grant 50 different roles to `user:alice@example.com`, and not to any other principal, then you can add another 1,450 principals to the `bindings` in the `Policy`.

func (LookupClientTlsPolicyIamPolicyResultOutput) ElementType 

func (LookupClientTlsPolicyIamPolicyResultOutput) ElementType() reflect.Type

func (LookupClientTlsPolicyIamPolicyResultOutput) Etag 

func (o LookupClientTlsPolicyIamPolicyResultOutput) Etag() pulumi.StringOutput

`etag` is used for optimistic concurrency control as a way to help prevent simultaneous updates of a policy from overwriting each other. It is strongly suggested that systems make use of the `etag` in the read-modify-write cycle to perform policy updates in order to avoid race conditions: An `etag` is returned in the response to `getIamPolicy`, and systems are expected to put that etag in the request to `setIamPolicy` to ensure that their change will be applied to the same version of the policy. **Important:** If you use IAM Conditions, you must include the `etag` field whenever you call `setIamPolicy`. If you omit this field, then IAM allows you to overwrite a version `3` policy with a version `1` policy, and all of the conditions in the version `3` policy are lost.

func (LookupClientTlsPolicyIamPolicyResultOutput) ToLookupClientTlsPolicyIamPolicyResultOutput 

func (o LookupClientTlsPolicyIamPolicyResultOutput) ToLookupClientTlsPolicyIamPolicyResultOutput() LookupClientTlsPolicyIamPolicyResultOutput

func (LookupClientTlsPolicyIamPolicyResultOutput) ToLookupClientTlsPolicyIamPolicyResultOutputWithContext 

func (o LookupClientTlsPolicyIamPolicyResultOutput) ToLookupClientTlsPolicyIamPolicyResultOutputWithContext(ctx context.Context) LookupClientTlsPolicyIamPolicyResultOutput

func (LookupClientTlsPolicyIamPolicyResultOutput) Version 

func (o LookupClientTlsPolicyIamPolicyResultOutput) Version() pulumi.IntOutput

Specifies the format of the policy. Valid values are `0`, `1`, and `3`. Requests that specify an invalid value are rejected. Any operation that affects conditional role bindings must specify version `3`. This requirement applies to the following operations: * Getting a policy that includes a conditional role binding * Adding a conditional role binding to a policy * Changing a conditional role binding in a policy * Removing any role binding, with or without a condition, from a policy that includes conditions **Important:** If you use IAM Conditions, you must include the `etag` field whenever you call `setIamPolicy`. If you omit this field, then IAM allows you to overwrite a version `3` policy with a version `1` policy, and all of the conditions in the version `3` policy are lost. If a policy does not include any conditions, operations on that policy may specify any valid version or leave the field unset. To learn which resources support conditions in their IAM policies, see the [IAM documentation](https://cloud.google.com/iam/help/conditions/resource-policies).

type LookupClientTlsPolicyOutputArgs 

type LookupClientTlsPolicyOutputArgs struct {
	ClientTlsPolicyId pulumi.StringInput    `pulumi:"clientTlsPolicyId"`
	Location          pulumi.StringInput    `pulumi:"location"`
	Project           pulumi.StringPtrInput `pulumi:"project"`
}

func (LookupClientTlsPolicyOutputArgs) ElementType 

func (LookupClientTlsPolicyOutputArgs) ElementType() reflect.Type

type LookupClientTlsPolicyResult 

type LookupClientTlsPolicyResult struct {
	// Optional. Defines a mechanism to provision client identity (public and private keys) for peer to peer authentication. The presence of this dictates mTLS.
	ClientCertificate GoogleCloudNetworksecurityV1CertificateProviderResponse `pulumi:"clientCertificate"`
	// The timestamp when the resource was created.
	CreateTime string `pulumi:"createTime"`
	// Optional. Free-text description of the resource.
	Description string `pulumi:"description"`
	// Optional. Set of label tags associated with the resource.
	Labels map[string]string `pulumi:"labels"`
	// Name of the ClientTlsPolicy resource. It matches the pattern `projects/*/locations/{location}/clientTlsPolicies/{client_tls_policy}`
	Name string `pulumi:"name"`
	// Optional. Defines the mechanism to obtain the Certificate Authority certificate to validate the server certificate. If empty, client does not validate the server certificate.
	ServerValidationCa []ValidationCAResponse `pulumi:"serverValidationCa"`
	// Optional. Server Name Indication string to present to the server during TLS handshake. E.g: "secure.example.com".
	Sni string `pulumi:"sni"`
	// The timestamp when the resource was updated.
	UpdateTime string `pulumi:"updateTime"`
}

func LookupClientTlsPolicy 

func LookupClientTlsPolicy(ctx *pulumi.Context, args *LookupClientTlsPolicyArgs, opts ...pulumi.InvokeOption) (*LookupClientTlsPolicyResult, error)

Gets details of a single ClientTlsPolicy.

type LookupClientTlsPolicyResultOutput 

type LookupClientTlsPolicyResultOutput struct{ *pulumi.OutputState }

func LookupClientTlsPolicyOutput 

func LookupClientTlsPolicyOutput(ctx *pulumi.Context, args LookupClientTlsPolicyOutputArgs, opts ...pulumi.InvokeOption) LookupClientTlsPolicyResultOutput

func (LookupClientTlsPolicyResultOutput) ClientCertificate 

func (o LookupClientTlsPolicyResultOutput) ClientCertificate() GoogleCloudNetworksecurityV1CertificateProviderResponseOutput

Optional. Defines a mechanism to provision client identity (public and private keys) for peer to peer authentication. The presence of this dictates mTLS.

func (LookupClientTlsPolicyResultOutput) CreateTime 

func (o LookupClientTlsPolicyResultOutput) CreateTime() pulumi.StringOutput

The timestamp when the resource was created.

func (LookupClientTlsPolicyResultOutput) Description 

func (o LookupClientTlsPolicyResultOutput) Description() pulumi.StringOutput

Optional. Free-text description of the resource.

func (LookupClientTlsPolicyResultOutput) ElementType 

func (LookupClientTlsPolicyResultOutput) ElementType() reflect.Type

func (LookupClientTlsPolicyResultOutput) Labels 

func (o LookupClientTlsPolicyResultOutput) Labels() pulumi.StringMapOutput

Optional. Set of label tags associated with the resource.

func (LookupClientTlsPolicyResultOutput) Name 

func (o LookupClientTlsPolicyResultOutput) Name() pulumi.StringOutput

Name of the ClientTlsPolicy resource. It matches the pattern `projects/*/locations/{location}/clientTlsPolicies/{client_tls_policy}`

func (LookupClientTlsPolicyResultOutput) ServerValidationCa 

func (o LookupClientTlsPolicyResultOutput) ServerValidationCa() ValidationCAResponseArrayOutput

Optional. Defines the mechanism to obtain the Certificate Authority certificate to validate the server certificate. If empty, client does not validate the server certificate.

func (LookupClientTlsPolicyResultOutput) Sni 

func (o LookupClientTlsPolicyResultOutput) Sni() pulumi.StringOutput

Optional. Server Name Indication string to present to the server during TLS handshake. E.g: "secure.example.com".

func (LookupClientTlsPolicyResultOutput) ToLookupClientTlsPolicyResultOutput 

func (o LookupClientTlsPolicyResultOutput) ToLookupClientTlsPolicyResultOutput() LookupClientTlsPolicyResultOutput

func (LookupClientTlsPolicyResultOutput) ToLookupClientTlsPolicyResultOutputWithContext 

func (o LookupClientTlsPolicyResultOutput) ToLookupClientTlsPolicyResultOutputWithContext(ctx context.Context) LookupClientTlsPolicyResultOutput

func (LookupClientTlsPolicyResultOutput) UpdateTime 

func (o LookupClientTlsPolicyResultOutput) UpdateTime() pulumi.StringOutput

The timestamp when the resource was updated.

type LookupServerTlsPolicyArgs 

type LookupServerTlsPolicyArgs struct {
	Location          string  `pulumi:"location"`
	Project           *string `pulumi:"project"`
	ServerTlsPolicyId string  `pulumi:"serverTlsPolicyId"`
}

type LookupServerTlsPolicyIamPolicyArgs 

type LookupServerTlsPolicyIamPolicyArgs struct {
	Location                      string  `pulumi:"location"`
	OptionsRequestedPolicyVersion *string `pulumi:"optionsRequestedPolicyVersion"`
	Project                       *string `pulumi:"project"`
	ServerTlsPolicyId             string  `pulumi:"serverTlsPolicyId"`
}

type LookupServerTlsPolicyIamPolicyOutputArgs 

type LookupServerTlsPolicyIamPolicyOutputArgs struct {
	Location                      pulumi.StringInput    `pulumi:"location"`
	OptionsRequestedPolicyVersion pulumi.StringPtrInput `pulumi:"optionsRequestedPolicyVersion"`
	Project                       pulumi.StringPtrInput `pulumi:"project"`
	ServerTlsPolicyId             pulumi.StringInput    `pulumi:"serverTlsPolicyId"`
}

func (LookupServerTlsPolicyIamPolicyOutputArgs) ElementType 

func (LookupServerTlsPolicyIamPolicyOutputArgs) ElementType() reflect.Type

type LookupServerTlsPolicyIamPolicyResult 

type LookupServerTlsPolicyIamPolicyResult struct {
	// Specifies cloud audit logging configuration for this policy.
	AuditConfigs []GoogleIamV1AuditConfigResponse `pulumi:"auditConfigs"`
	// Associates a list of `members`, or principals, with a `role`. Optionally, may specify a `condition` that determines how and when the `bindings` are applied. Each of the `bindings` must contain at least one principal. The `bindings` in a `Policy` can refer to up to 1,500 principals; up to 250 of these principals can be Google groups. Each occurrence of a principal counts towards these limits. For example, if the `bindings` grant 50 different roles to `user:alice@example.com`, and not to any other principal, then you can add another 1,450 principals to the `bindings` in the `Policy`.
	Bindings []GoogleIamV1BindingResponse `pulumi:"bindings"`
	// `etag` is used for optimistic concurrency control as a way to help prevent simultaneous updates of a policy from overwriting each other. It is strongly suggested that systems make use of the `etag` in the read-modify-write cycle to perform policy updates in order to avoid race conditions: An `etag` is returned in the response to `getIamPolicy`, and systems are expected to put that etag in the request to `setIamPolicy` to ensure that their change will be applied to the same version of the policy. **Important:** If you use IAM Conditions, you must include the `etag` field whenever you call `setIamPolicy`. If you omit this field, then IAM allows you to overwrite a version `3` policy with a version `1` policy, and all of the conditions in the version `3` policy are lost.
	Etag string `pulumi:"etag"`
	// Specifies the format of the policy. Valid values are `0`, `1`, and `3`. Requests that specify an invalid value are rejected. Any operation that affects conditional role bindings must specify version `3`. This requirement applies to the following operations: * Getting a policy that includes a conditional role binding * Adding a conditional role binding to a policy * Changing a conditional role binding in a policy * Removing any role binding, with or without a condition, from a policy that includes conditions **Important:** If you use IAM Conditions, you must include the `etag` field whenever you call `setIamPolicy`. If you omit this field, then IAM allows you to overwrite a version `3` policy with a version `1` policy, and all of the conditions in the version `3` policy are lost. If a policy does not include any conditions, operations on that policy may specify any valid version or leave the field unset. To learn which resources support conditions in their IAM policies, see the [IAM documentation](https://cloud.google.com/iam/help/conditions/resource-policies).
	Version int `pulumi:"version"`
}

func LookupServerTlsPolicyIamPolicy 

func LookupServerTlsPolicyIamPolicy(ctx *pulumi.Context, args *LookupServerTlsPolicyIamPolicyArgs, opts ...pulumi.InvokeOption) (*LookupServerTlsPolicyIamPolicyResult, error)

Gets the access control policy for a resource. Returns an empty policy if the resource exists and does not have a policy set.

type LookupServerTlsPolicyIamPolicyResultOutput 

type LookupServerTlsPolicyIamPolicyResultOutput struct{ *pulumi.OutputState }

func LookupServerTlsPolicyIamPolicyOutput 

func LookupServerTlsPolicyIamPolicyOutput(ctx *pulumi.Context, args LookupServerTlsPolicyIamPolicyOutputArgs, opts ...pulumi.InvokeOption) LookupServerTlsPolicyIamPolicyResultOutput

func (LookupServerTlsPolicyIamPolicyResultOutput) AuditConfigs 

func (o LookupServerTlsPolicyIamPolicyResultOutput) AuditConfigs() GoogleIamV1AuditConfigResponseArrayOutput

Specifies cloud audit logging configuration for this policy.

func (LookupServerTlsPolicyIamPolicyResultOutput) Bindings 

func (o LookupServerTlsPolicyIamPolicyResultOutput) Bindings() GoogleIamV1BindingResponseArrayOutput

Associates a list of `members`, or principals, with a `role`. Optionally, may specify a `condition` that determines how and when the `bindings` are applied. Each of the `bindings` must contain at least one principal. The `bindings` in a `Policy` can refer to up to 1,500 principals; up to 250 of these principals can be Google groups. Each occurrence of a principal counts towards these limits. For example, if the `bindings` grant 50 different roles to `user:alice@example.com`, and not to any other principal, then you can add another 1,450 principals to the `bindings` in the `Policy`.

func (LookupServerTlsPolicyIamPolicyResultOutput) ElementType 

func (LookupServerTlsPolicyIamPolicyResultOutput) ElementType() reflect.Type

func (LookupServerTlsPolicyIamPolicyResultOutput) Etag 

func (o LookupServerTlsPolicyIamPolicyResultOutput) Etag() pulumi.StringOutput

`etag` is used for optimistic concurrency control as a way to help prevent simultaneous updates of a policy from overwriting each other. It is strongly suggested that systems make use of the `etag` in the read-modify-write cycle to perform policy updates in order to avoid race conditions: An `etag` is returned in the response to `getIamPolicy`, and systems are expected to put that etag in the request to `setIamPolicy` to ensure that their change will be applied to the same version of the policy. **Important:** If you use IAM Conditions, you must include the `etag` field whenever you call `setIamPolicy`. If you omit this field, then IAM allows you to overwrite a version `3` policy with a version `1` policy, and all of the conditions in the version `3` policy are lost.

func (LookupServerTlsPolicyIamPolicyResultOutput) ToLookupServerTlsPolicyIamPolicyResultOutput 

func (o LookupServerTlsPolicyIamPolicyResultOutput) ToLookupServerTlsPolicyIamPolicyResultOutput() LookupServerTlsPolicyIamPolicyResultOutput

func (LookupServerTlsPolicyIamPolicyResultOutput) ToLookupServerTlsPolicyIamPolicyResultOutputWithContext 

func (o LookupServerTlsPolicyIamPolicyResultOutput) ToLookupServerTlsPolicyIamPolicyResultOutputWithContext(ctx context.Context) LookupServerTlsPolicyIamPolicyResultOutput

func (LookupServerTlsPolicyIamPolicyResultOutput) Version 

func (o LookupServerTlsPolicyIamPolicyResultOutput) Version() pulumi.IntOutput

Specifies the format of the policy. Valid values are `0`, `1`, and `3`. Requests that specify an invalid value are rejected. Any operation that affects conditional role bindings must specify version `3`. This requirement applies to the following operations: * Getting a policy that includes a conditional role binding * Adding a conditional role binding to a policy * Changing a conditional role binding in a policy * Removing any role binding, with or without a condition, from a policy that includes conditions **Important:** If you use IAM Conditions, you must include the `etag` field whenever you call `setIamPolicy`. If you omit this field, then IAM allows you to overwrite a version `3` policy with a version `1` policy, and all of the conditions in the version `3` policy are lost. If a policy does not include any conditions, operations on that policy may specify any valid version or leave the field unset. To learn which resources support conditions in their IAM policies, see the [IAM documentation](https://cloud.google.com/iam/help/conditions/resource-policies).

type LookupServerTlsPolicyOutputArgs 

type LookupServerTlsPolicyOutputArgs struct {
	Location          pulumi.StringInput    `pulumi:"location"`
	Project           pulumi.StringPtrInput `pulumi:"project"`
	ServerTlsPolicyId pulumi.StringInput    `pulumi:"serverTlsPolicyId"`
}

func (LookupServerTlsPolicyOutputArgs) ElementType 

func (LookupServerTlsPolicyOutputArgs) ElementType() reflect.Type

type LookupServerTlsPolicyResult 

type LookupServerTlsPolicyResult struct {
	//  Determines if server allows plaintext connections. If set to true, server allows plain text connections. By default, it is set to false. This setting is not exclusive of other encryption modes. For example, if `allow_open` and `mtls_policy` are set, server allows both plain text and mTLS connections. See documentation of other encryption modes to confirm compatibility.
	AllowOpen bool `pulumi:"allowOpen"`
	// The timestamp when the resource was created.
	CreateTime string `pulumi:"createTime"`
	// Free-text description of the resource.
	Description string `pulumi:"description"`
	// Set of label tags associated with the resource.
	Labels map[string]string `pulumi:"labels"`
	//  Defines a mechanism to provision peer validation certificates for peer to peer authentication (Mutual TLS - mTLS). If not specified, client certificate will not be requested. The connection is treated as TLS and not mTLS. If `allow_open` and `mtls_policy` are set, server allows both plain text and mTLS connections.
	MtlsPolicy MTLSPolicyResponse `pulumi:"mtlsPolicy"`
	// Name of the ServerTlsPolicy resource. It matches the pattern `projects/*/locations/{location}/serverTlsPolicies/{server_tls_policy}`
	Name string `pulumi:"name"`
	//  Defines a mechanism to provision server identity (public and private keys). Cannot be combined with `allow_open` as a permissive mode that allows both plain text and TLS is not supported.
	ServerCertificate GoogleCloudNetworksecurityV1CertificateProviderResponse `pulumi:"serverCertificate"`
	// The timestamp when the resource was updated.
	UpdateTime string `pulumi:"updateTime"`
}

func LookupServerTlsPolicy 

func LookupServerTlsPolicy(ctx *pulumi.Context, args *LookupServerTlsPolicyArgs, opts ...pulumi.InvokeOption) (*LookupServerTlsPolicyResult, error)

Gets details of a single ServerTlsPolicy.

type LookupServerTlsPolicyResultOutput 

type LookupServerTlsPolicyResultOutput struct{ *pulumi.OutputState }

func LookupServerTlsPolicyOutput 

func LookupServerTlsPolicyOutput(ctx *pulumi.Context, args LookupServerTlsPolicyOutputArgs, opts ...pulumi.InvokeOption) LookupServerTlsPolicyResultOutput

func (LookupServerTlsPolicyResultOutput) AllowOpen 

func (o LookupServerTlsPolicyResultOutput) AllowOpen() pulumi.BoolOutput

Determines if server allows plaintext connections. If set to true, server allows plain text connections. By default, it is set to false. This setting is not exclusive of other encryption modes. For example, if `allow_open` and `mtls_policy` are set, server allows both plain text and mTLS connections. See documentation of other encryption modes to confirm compatibility.

func (LookupServerTlsPolicyResultOutput) CreateTime 

func (o LookupServerTlsPolicyResultOutput) CreateTime() pulumi.StringOutput

The timestamp when the resource was created.

func (LookupServerTlsPolicyResultOutput) Description 

func (o LookupServerTlsPolicyResultOutput) Description() pulumi.StringOutput

Free-text description of the resource.

func (LookupServerTlsPolicyResultOutput) ElementType 

func (LookupServerTlsPolicyResultOutput) ElementType() reflect.Type

func (LookupServerTlsPolicyResultOutput) Labels 

func (o LookupServerTlsPolicyResultOutput) Labels() pulumi.StringMapOutput

Set of label tags associated with the resource.

func (LookupServerTlsPolicyResultOutput) MtlsPolicy 

func (o LookupServerTlsPolicyResultOutput) MtlsPolicy() MTLSPolicyResponseOutput

Defines a mechanism to provision peer validation certificates for peer to peer authentication (Mutual TLS - mTLS). If not specified, client certificate will not be requested. The connection is treated as TLS and not mTLS. If `allow_open` and `mtls_policy` are set, server allows both plain text and mTLS connections.

func (LookupServerTlsPolicyResultOutput) Name 

func (o LookupServerTlsPolicyResultOutput) Name() pulumi.StringOutput

Name of the ServerTlsPolicy resource. It matches the pattern `projects/*/locations/{location}/serverTlsPolicies/{server_tls_policy}`

func (LookupServerTlsPolicyResultOutput) ServerCertificate 

func (o LookupServerTlsPolicyResultOutput) ServerCertificate() GoogleCloudNetworksecurityV1CertificateProviderResponseOutput

Defines a mechanism to provision server identity (public and private keys). Cannot be combined with `allow_open` as a permissive mode that allows both plain text and TLS is not supported.

func (LookupServerTlsPolicyResultOutput) ToLookupServerTlsPolicyResultOutput 

func (o LookupServerTlsPolicyResultOutput) ToLookupServerTlsPolicyResultOutput() LookupServerTlsPolicyResultOutput

func (LookupServerTlsPolicyResultOutput) ToLookupServerTlsPolicyResultOutputWithContext 

func (o LookupServerTlsPolicyResultOutput) ToLookupServerTlsPolicyResultOutputWithContext(ctx context.Context) LookupServerTlsPolicyResultOutput

func (LookupServerTlsPolicyResultOutput) UpdateTime 

func (o LookupServerTlsPolicyResultOutput) UpdateTime() pulumi.StringOutput

The timestamp when the resource was updated.

type MTLSPolicy 

type MTLSPolicy struct {
	//  Defines the mechanism to obtain the Certificate Authority certificate to validate the client certificate.
	ClientValidationCa []ValidationCA `pulumi:"clientValidationCa"`
}

Specification of the MTLSPolicy.

type MTLSPolicyArgs 

type MTLSPolicyArgs struct {
	//  Defines the mechanism to obtain the Certificate Authority certificate to validate the client certificate.
	ClientValidationCa ValidationCAArrayInput `pulumi:"clientValidationCa"`
}

Specification of the MTLSPolicy.

func (MTLSPolicyArgs) ElementType 

func (MTLSPolicyArgs) ElementType() reflect.Type

func (MTLSPolicyArgs) ToMTLSPolicyOutput 

func (i MTLSPolicyArgs) ToMTLSPolicyOutput() MTLSPolicyOutput

func (MTLSPolicyArgs) ToMTLSPolicyOutputWithContext 

func (i MTLSPolicyArgs) ToMTLSPolicyOutputWithContext(ctx context.Context) MTLSPolicyOutput

func (MTLSPolicyArgs) ToMTLSPolicyPtrOutput 

func (i MTLSPolicyArgs) ToMTLSPolicyPtrOutput() MTLSPolicyPtrOutput

func (MTLSPolicyArgs) ToMTLSPolicyPtrOutputWithContext 

func (i MTLSPolicyArgs) ToMTLSPolicyPtrOutputWithContext(ctx context.Context) MTLSPolicyPtrOutput

type MTLSPolicyInput 

type MTLSPolicyInput interface {
	pulumi.Input

	ToMTLSPolicyOutput() MTLSPolicyOutput
	ToMTLSPolicyOutputWithContext(context.Context) MTLSPolicyOutput
}

MTLSPolicyInput is an input type that accepts MTLSPolicyArgs and MTLSPolicyOutput values. You can construct a concrete instance of `MTLSPolicyInput` via: 

MTLSPolicyArgs{...}

type MTLSPolicyOutput 

type MTLSPolicyOutput struct{ *pulumi.OutputState }

Specification of the MTLSPolicy.

func (MTLSPolicyOutput) ClientValidationCa 

func (o MTLSPolicyOutput) ClientValidationCa() ValidationCAArrayOutput

Defines the mechanism to obtain the Certificate Authority certificate to validate the client certificate.

func (MTLSPolicyOutput) ElementType 

func (MTLSPolicyOutput) ElementType() reflect.Type

func (MTLSPolicyOutput) ToMTLSPolicyOutput 

func (o MTLSPolicyOutput) ToMTLSPolicyOutput() MTLSPolicyOutput

func (MTLSPolicyOutput) ToMTLSPolicyOutputWithContext 

func (o MTLSPolicyOutput) ToMTLSPolicyOutputWithContext(ctx context.Context) MTLSPolicyOutput

func (MTLSPolicyOutput) ToMTLSPolicyPtrOutput 

func (o MTLSPolicyOutput) ToMTLSPolicyPtrOutput() MTLSPolicyPtrOutput

func (MTLSPolicyOutput) ToMTLSPolicyPtrOutputWithContext 

func (o MTLSPolicyOutput) ToMTLSPolicyPtrOutputWithContext(ctx context.Context) MTLSPolicyPtrOutput

type MTLSPolicyPtrInput 

type MTLSPolicyPtrInput interface {
	pulumi.Input

	ToMTLSPolicyPtrOutput() MTLSPolicyPtrOutput
	ToMTLSPolicyPtrOutputWithContext(context.Context) MTLSPolicyPtrOutput
}

MTLSPolicyPtrInput is an input type that accepts MTLSPolicyArgs, MTLSPolicyPtr and MTLSPolicyPtrOutput values. You can construct a concrete instance of `MTLSPolicyPtrInput` via: 

        MTLSPolicyArgs{...}

or:

        nil

func MTLSPolicyPtr 

func MTLSPolicyPtr(v *MTLSPolicyArgs) MTLSPolicyPtrInput

type MTLSPolicyPtrOutput 

type MTLSPolicyPtrOutput struct{ *pulumi.OutputState }

func (MTLSPolicyPtrOutput) ClientValidationCa 

func (o MTLSPolicyPtrOutput) ClientValidationCa() ValidationCAArrayOutput

Defines the mechanism to obtain the Certificate Authority certificate to validate the client certificate.

func (MTLSPolicyPtrOutput) Elem 

func (o MTLSPolicyPtrOutput) Elem() MTLSPolicyOutput

func (MTLSPolicyPtrOutput) ElementType 

func (MTLSPolicyPtrOutput) ElementType() reflect.Type

func (MTLSPolicyPtrOutput) ToMTLSPolicyPtrOutput 

func (o MTLSPolicyPtrOutput) ToMTLSPolicyPtrOutput() MTLSPolicyPtrOutput

func (MTLSPolicyPtrOutput) ToMTLSPolicyPtrOutputWithContext 

func (o MTLSPolicyPtrOutput) ToMTLSPolicyPtrOutputWithContext(ctx context.Context) MTLSPolicyPtrOutput

type MTLSPolicyResponse 

type MTLSPolicyResponse struct {
	//  Defines the mechanism to obtain the Certificate Authority certificate to validate the client certificate.
	ClientValidationCa []ValidationCAResponse `pulumi:"clientValidationCa"`
}

Specification of the MTLSPolicy.

type MTLSPolicyResponseOutput 

type MTLSPolicyResponseOutput struct{ *pulumi.OutputState }

Specification of the MTLSPolicy.

func (MTLSPolicyResponseOutput) ClientValidationCa 

func (o MTLSPolicyResponseOutput) ClientValidationCa() ValidationCAResponseArrayOutput

Defines the mechanism to obtain the Certificate Authority certificate to validate the client certificate.

func (MTLSPolicyResponseOutput) ElementType 

func (MTLSPolicyResponseOutput) ElementType() reflect.Type

func (MTLSPolicyResponseOutput) ToMTLSPolicyResponseOutput 

func (o MTLSPolicyResponseOutput) ToMTLSPolicyResponseOutput() MTLSPolicyResponseOutput

func (MTLSPolicyResponseOutput) ToMTLSPolicyResponseOutputWithContext 

func (o MTLSPolicyResponseOutput) ToMTLSPolicyResponseOutputWithContext(ctx context.Context) MTLSPolicyResponseOutput

type Rule 

type Rule struct {
	// Optional. List of attributes for the traffic destination. All of the destinations must match. A destination is a match if a request matches all the specified hosts, ports, methods and headers. If not set, the action specified in the 'action' field will be applied without any rule checks for the destination.
	Destinations []Destination `pulumi:"destinations"`
	// Optional. List of attributes for the traffic source. All of the sources must match. A source is a match if both principals and ip_blocks match. If not set, the action specified in the 'action' field will be applied without any rule checks for the source.
	Sources []Source `pulumi:"sources"`
}

Specification of rules.

type RuleArgs 

type RuleArgs struct {
	// Optional. List of attributes for the traffic destination. All of the destinations must match. A destination is a match if a request matches all the specified hosts, ports, methods and headers. If not set, the action specified in the 'action' field will be applied without any rule checks for the destination.
	Destinations DestinationArrayInput `pulumi:"destinations"`
	// Optional. List of attributes for the traffic source. All of the sources must match. A source is a match if both principals and ip_blocks match. If not set, the action specified in the 'action' field will be applied without any rule checks for the source.
	Sources SourceArrayInput `pulumi:"sources"`
}

Specification of rules.

func (RuleArgs) ElementType 

func (RuleArgs) ElementType() reflect.Type

func (RuleArgs) ToRuleOutput 

func (i RuleArgs) ToRuleOutput() RuleOutput

func (RuleArgs) ToRuleOutputWithContext 

func (i RuleArgs) ToRuleOutputWithContext(ctx context.Context) RuleOutput

type RuleArray 

type RuleArray []RuleInput

func (RuleArray) ElementType 

func (RuleArray) ElementType() reflect.Type

func (RuleArray) ToRuleArrayOutput 

func (i RuleArray) ToRuleArrayOutput() RuleArrayOutput

func (RuleArray) ToRuleArrayOutputWithContext 

func (i RuleArray) ToRuleArrayOutputWithContext(ctx context.Context) RuleArrayOutput

type RuleArrayInput 

type RuleArrayInput interface {
	pulumi.Input

	ToRuleArrayOutput() RuleArrayOutput
	ToRuleArrayOutputWithContext(context.Context) RuleArrayOutput
}

RuleArrayInput is an input type that accepts RuleArray and RuleArrayOutput values. You can construct a concrete instance of `RuleArrayInput` via: 

RuleArray{ RuleArgs{...} }

type RuleArrayOutput 

type RuleArrayOutput struct{ *pulumi.OutputState }

func (RuleArrayOutput) ElementType 

func (RuleArrayOutput) ElementType() reflect.Type

func (RuleArrayOutput) Index 

func (o RuleArrayOutput) Index(i pulumi.IntInput) RuleOutput

func (RuleArrayOutput) ToRuleArrayOutput 

func (o RuleArrayOutput) ToRuleArrayOutput() RuleArrayOutput

func (RuleArrayOutput) ToRuleArrayOutputWithContext 

func (o RuleArrayOutput) ToRuleArrayOutputWithContext(ctx context.Context) RuleArrayOutput

type RuleInput 

type RuleInput interface {
	pulumi.Input

	ToRuleOutput() RuleOutput
	ToRuleOutputWithContext(context.Context) RuleOutput
}

RuleInput is an input type that accepts RuleArgs and RuleOutput values. You can construct a concrete instance of `RuleInput` via: 

RuleArgs{...}

type RuleOutput 

type RuleOutput struct{ *pulumi.OutputState }

Specification of rules.

func (RuleOutput) Destinations 

func (o RuleOutput) Destinations() DestinationArrayOutput

Optional. List of attributes for the traffic destination. All of the destinations must match. A destination is a match if a request matches all the specified hosts, ports, methods and headers. If not set, the action specified in the 'action' field will be applied without any rule checks for the destination.

func (RuleOutput) ElementType 

func (RuleOutput) ElementType() reflect.Type

func (RuleOutput) Sources 

func (o RuleOutput) Sources() SourceArrayOutput

Optional. List of attributes for the traffic source. All of the sources must match. A source is a match if both principals and ip_blocks match. If not set, the action specified in the 'action' field will be applied without any rule checks for the source.

func (RuleOutput) ToRuleOutput 

func (o RuleOutput) ToRuleOutput() RuleOutput

func (RuleOutput) ToRuleOutputWithContext 

func (o RuleOutput) ToRuleOutputWithContext(ctx context.Context) RuleOutput

type RuleResponse 

type RuleResponse struct {
	// Optional. List of attributes for the traffic destination. All of the destinations must match. A destination is a match if a request matches all the specified hosts, ports, methods and headers. If not set, the action specified in the 'action' field will be applied without any rule checks for the destination.
	Destinations []DestinationResponse `pulumi:"destinations"`
	// Optional. List of attributes for the traffic source. All of the sources must match. A source is a match if both principals and ip_blocks match. If not set, the action specified in the 'action' field will be applied without any rule checks for the source.
	Sources []SourceResponse `pulumi:"sources"`
}

Specification of rules.

type RuleResponseArrayOutput 

type RuleResponseArrayOutput struct{ *pulumi.OutputState }

func (RuleResponseArrayOutput) ElementType 

func (RuleResponseArrayOutput) ElementType() reflect.Type

func (RuleResponseArrayOutput) Index 

func (o RuleResponseArrayOutput) Index(i pulumi.IntInput) RuleResponseOutput

func (RuleResponseArrayOutput) ToRuleResponseArrayOutput 

func (o RuleResponseArrayOutput) ToRuleResponseArrayOutput() RuleResponseArrayOutput

func (RuleResponseArrayOutput) ToRuleResponseArrayOutputWithContext 

func (o RuleResponseArrayOutput) ToRuleResponseArrayOutputWithContext(ctx context.Context) RuleResponseArrayOutput

type RuleResponseOutput 

type RuleResponseOutput struct{ *pulumi.OutputState }

Specification of rules.

func (RuleResponseOutput) Destinations 

func (o RuleResponseOutput) Destinations() DestinationResponseArrayOutput

Optional. List of attributes for the traffic destination. All of the destinations must match. A destination is a match if a request matches all the specified hosts, ports, methods and headers. If not set, the action specified in the 'action' field will be applied without any rule checks for the destination.

func (RuleResponseOutput) ElementType 

func (RuleResponseOutput) ElementType() reflect.Type

func (RuleResponseOutput) Sources 

func (o RuleResponseOutput) Sources() SourceResponseArrayOutput

Optional. List of attributes for the traffic source. All of the sources must match. A source is a match if both principals and ip_blocks match. If not set, the action specified in the 'action' field will be applied without any rule checks for the source.

func (RuleResponseOutput) ToRuleResponseOutput 

func (o RuleResponseOutput) ToRuleResponseOutput() RuleResponseOutput

func (RuleResponseOutput) ToRuleResponseOutputWithContext 

func (o RuleResponseOutput) ToRuleResponseOutputWithContext(ctx context.Context) RuleResponseOutput

type ServerTlsPolicy 

type ServerTlsPolicy struct {
	pulumi.CustomResourceState

	//  Determines if server allows plaintext connections. If set to true, server allows plain text connections. By default, it is set to false. This setting is not exclusive of other encryption modes. For example, if `allow_open` and `mtls_policy` are set, server allows both plain text and mTLS connections. See documentation of other encryption modes to confirm compatibility.
	AllowOpen pulumi.BoolOutput `pulumi:"allowOpen"`
	// The timestamp when the resource was created.
	CreateTime pulumi.StringOutput `pulumi:"createTime"`
	// Free-text description of the resource.
	Description pulumi.StringOutput `pulumi:"description"`
	// Set of label tags associated with the resource.
	Labels pulumi.StringMapOutput `pulumi:"labels"`
	//  Defines a mechanism to provision peer validation certificates for peer to peer authentication (Mutual TLS - mTLS). If not specified, client certificate will not be requested. The connection is treated as TLS and not mTLS. If `allow_open` and `mtls_policy` are set, server allows both plain text and mTLS connections.
	MtlsPolicy MTLSPolicyResponseOutput `pulumi:"mtlsPolicy"`
	// Name of the ServerTlsPolicy resource. It matches the pattern `projects/*/locations/{location}/serverTlsPolicies/{server_tls_policy}`
	Name pulumi.StringOutput `pulumi:"name"`
	//  Defines a mechanism to provision server identity (public and private keys). Cannot be combined with `allow_open` as a permissive mode that allows both plain text and TLS is not supported.
	ServerCertificate GoogleCloudNetworksecurityV1CertificateProviderResponseOutput `pulumi:"serverCertificate"`
	// The timestamp when the resource was updated.
	UpdateTime pulumi.StringOutput `pulumi:"updateTime"`
}

Creates a new ServerTlsPolicy in a given project and location.

func GetServerTlsPolicy 

func GetServerTlsPolicy(ctx *pulumi.Context,
	name string, id pulumi.IDInput, state *ServerTlsPolicyState, opts ...pulumi.ResourceOption) (*ServerTlsPolicy, error)

GetServerTlsPolicy gets an existing ServerTlsPolicy resource's state with the given name, ID, and optional state properties that are used to uniquely qualify the lookup (nil if not required).

func NewServerTlsPolicy 

func NewServerTlsPolicy(ctx *pulumi.Context,
	name string, args *ServerTlsPolicyArgs, opts ...pulumi.ResourceOption) (*ServerTlsPolicy, error)

NewServerTlsPolicy registers a new resource with the given unique name, arguments, and options.

func (*ServerTlsPolicy) ElementType 

func (*ServerTlsPolicy) ElementType() reflect.Type

func (*ServerTlsPolicy) ToServerTlsPolicyOutput 

func (i *ServerTlsPolicy) ToServerTlsPolicyOutput() ServerTlsPolicyOutput

func (*ServerTlsPolicy) ToServerTlsPolicyOutputWithContext 

func (i *ServerTlsPolicy) ToServerTlsPolicyOutputWithContext(ctx context.Context) ServerTlsPolicyOutput

type ServerTlsPolicyArgs 

type ServerTlsPolicyArgs struct {
	//  Determines if server allows plaintext connections. If set to true, server allows plain text connections. By default, it is set to false. This setting is not exclusive of other encryption modes. For example, if `allow_open` and `mtls_policy` are set, server allows both plain text and mTLS connections. See documentation of other encryption modes to confirm compatibility.
	AllowOpen pulumi.BoolPtrInput
	// Free-text description of the resource.
	Description pulumi.StringPtrInput
	// Set of label tags associated with the resource.
	Labels   pulumi.StringMapInput
	Location pulumi.StringPtrInput
	//  Defines a mechanism to provision peer validation certificates for peer to peer authentication (Mutual TLS - mTLS). If not specified, client certificate will not be requested. The connection is treated as TLS and not mTLS. If `allow_open` and `mtls_policy` are set, server allows both plain text and mTLS connections.
	MtlsPolicy MTLSPolicyPtrInput
	// Name of the ServerTlsPolicy resource. It matches the pattern `projects/*/locations/{location}/serverTlsPolicies/{server_tls_policy}`
	Name    pulumi.StringPtrInput
	Project pulumi.StringPtrInput
	//  Defines a mechanism to provision server identity (public and private keys). Cannot be combined with `allow_open` as a permissive mode that allows both plain text and TLS is not supported.
	ServerCertificate GoogleCloudNetworksecurityV1CertificateProviderPtrInput
	// Required. Short name of the ServerTlsPolicy resource to be created. This value should be 1-63 characters long, containing only letters, numbers, hyphens, and underscores, and should not start with a number. E.g. "server_mtls_policy".
	ServerTlsPolicyId pulumi.StringInput
}

The set of arguments for constructing a ServerTlsPolicy resource.

func (ServerTlsPolicyArgs) ElementType 

func (ServerTlsPolicyArgs) ElementType() reflect.Type

type ServerTlsPolicyIamPolicy 

type ServerTlsPolicyIamPolicy struct {
	pulumi.CustomResourceState

	// Specifies cloud audit logging configuration for this policy.
	AuditConfigs GoogleIamV1AuditConfigResponseArrayOutput `pulumi:"auditConfigs"`
	// Associates a list of `members`, or principals, with a `role`. Optionally, may specify a `condition` that determines how and when the `bindings` are applied. Each of the `bindings` must contain at least one principal. The `bindings` in a `Policy` can refer to up to 1,500 principals; up to 250 of these principals can be Google groups. Each occurrence of a principal counts towards these limits. For example, if the `bindings` grant 50 different roles to `user:alice@example.com`, and not to any other principal, then you can add another 1,450 principals to the `bindings` in the `Policy`.
	Bindings GoogleIamV1BindingResponseArrayOutput `pulumi:"bindings"`
	// `etag` is used for optimistic concurrency control as a way to help prevent simultaneous updates of a policy from overwriting each other. It is strongly suggested that systems make use of the `etag` in the read-modify-write cycle to perform policy updates in order to avoid race conditions: An `etag` is returned in the response to `getIamPolicy`, and systems are expected to put that etag in the request to `setIamPolicy` to ensure that their change will be applied to the same version of the policy. **Important:** If you use IAM Conditions, you must include the `etag` field whenever you call `setIamPolicy`. If you omit this field, then IAM allows you to overwrite a version `3` policy with a version `1` policy, and all of the conditions in the version `3` policy are lost.
	Etag pulumi.StringOutput `pulumi:"etag"`
	// Specifies the format of the policy. Valid values are `0`, `1`, and `3`. Requests that specify an invalid value are rejected. Any operation that affects conditional role bindings must specify version `3`. This requirement applies to the following operations: * Getting a policy that includes a conditional role binding * Adding a conditional role binding to a policy * Changing a conditional role binding in a policy * Removing any role binding, with or without a condition, from a policy that includes conditions **Important:** If you use IAM Conditions, you must include the `etag` field whenever you call `setIamPolicy`. If you omit this field, then IAM allows you to overwrite a version `3` policy with a version `1` policy, and all of the conditions in the version `3` policy are lost. If a policy does not include any conditions, operations on that policy may specify any valid version or leave the field unset. To learn which resources support conditions in their IAM policies, see the [IAM documentation](https://cloud.google.com/iam/help/conditions/resource-policies).
	Version pulumi.IntOutput `pulumi:"version"`
}

Sets the access control policy on the specified resource. Replaces any existing policy. Can return `NOT_FOUND`, `INVALID_ARGUMENT`, and `PERMISSION_DENIED` errors. Note - this resource's API doesn't support deletion. When deleted, the resource will persist on Google Cloud even though it will be deleted from Pulumi state.

func GetServerTlsPolicyIamPolicy 

func GetServerTlsPolicyIamPolicy(ctx *pulumi.Context,
	name string, id pulumi.IDInput, state *ServerTlsPolicyIamPolicyState, opts ...pulumi.ResourceOption) (*ServerTlsPolicyIamPolicy, error)

GetServerTlsPolicyIamPolicy gets an existing ServerTlsPolicyIamPolicy resource's state with the given name, ID, and optional state properties that are used to uniquely qualify the lookup (nil if not required).

func NewServerTlsPolicyIamPolicy 

func NewServerTlsPolicyIamPolicy(ctx *pulumi.Context,
	name string, args *ServerTlsPolicyIamPolicyArgs, opts ...pulumi.ResourceOption) (*ServerTlsPolicyIamPolicy, error)

NewServerTlsPolicyIamPolicy registers a new resource with the given unique name, arguments, and options.

func (*ServerTlsPolicyIamPolicy) ElementType 

func (*ServerTlsPolicyIamPolicy) ElementType() reflect.Type

func (*ServerTlsPolicyIamPolicy) ToServerTlsPolicyIamPolicyOutput 

func (i *ServerTlsPolicyIamPolicy) ToServerTlsPolicyIamPolicyOutput() ServerTlsPolicyIamPolicyOutput

func (*ServerTlsPolicyIamPolicy) ToServerTlsPolicyIamPolicyOutputWithContext 

func (i *ServerTlsPolicyIamPolicy) ToServerTlsPolicyIamPolicyOutputWithContext(ctx context.Context) ServerTlsPolicyIamPolicyOutput

type ServerTlsPolicyIamPolicyArgs 

type ServerTlsPolicyIamPolicyArgs struct {
	// Specifies cloud audit logging configuration for this policy.
	AuditConfigs GoogleIamV1AuditConfigArrayInput
	// Associates a list of `members`, or principals, with a `role`. Optionally, may specify a `condition` that determines how and when the `bindings` are applied. Each of the `bindings` must contain at least one principal. The `bindings` in a `Policy` can refer to up to 1,500 principals; up to 250 of these principals can be Google groups. Each occurrence of a principal counts towards these limits. For example, if the `bindings` grant 50 different roles to `user:alice@example.com`, and not to any other principal, then you can add another 1,450 principals to the `bindings` in the `Policy`.
	Bindings GoogleIamV1BindingArrayInput
	// `etag` is used for optimistic concurrency control as a way to help prevent simultaneous updates of a policy from overwriting each other. It is strongly suggested that systems make use of the `etag` in the read-modify-write cycle to perform policy updates in order to avoid race conditions: An `etag` is returned in the response to `getIamPolicy`, and systems are expected to put that etag in the request to `setIamPolicy` to ensure that their change will be applied to the same version of the policy. **Important:** If you use IAM Conditions, you must include the `etag` field whenever you call `setIamPolicy`. If you omit this field, then IAM allows you to overwrite a version `3` policy with a version `1` policy, and all of the conditions in the version `3` policy are lost.
	Etag              pulumi.StringPtrInput
	Location          pulumi.StringPtrInput
	Project           pulumi.StringPtrInput
	ServerTlsPolicyId pulumi.StringInput
	// OPTIONAL: A FieldMask specifying which fields of the policy to modify. Only the fields in the mask will be modified. If no mask is provided, the following default mask is used: `paths: "bindings, etag"`
	UpdateMask pulumi.StringPtrInput
	// Specifies the format of the policy. Valid values are `0`, `1`, and `3`. Requests that specify an invalid value are rejected. Any operation that affects conditional role bindings must specify version `3`. This requirement applies to the following operations: * Getting a policy that includes a conditional role binding * Adding a conditional role binding to a policy * Changing a conditional role binding in a policy * Removing any role binding, with or without a condition, from a policy that includes conditions **Important:** If you use IAM Conditions, you must include the `etag` field whenever you call `setIamPolicy`. If you omit this field, then IAM allows you to overwrite a version `3` policy with a version `1` policy, and all of the conditions in the version `3` policy are lost. If a policy does not include any conditions, operations on that policy may specify any valid version or leave the field unset. To learn which resources support conditions in their IAM policies, see the [IAM documentation](https://cloud.google.com/iam/help/conditions/resource-policies).
	Version pulumi.IntPtrInput
}

The set of arguments for constructing a ServerTlsPolicyIamPolicy resource.

func (ServerTlsPolicyIamPolicyArgs) ElementType 

func (ServerTlsPolicyIamPolicyArgs) ElementType() reflect.Type

type ServerTlsPolicyIamPolicyInput 

type ServerTlsPolicyIamPolicyInput interface {
	pulumi.Input

	ToServerTlsPolicyIamPolicyOutput() ServerTlsPolicyIamPolicyOutput
	ToServerTlsPolicyIamPolicyOutputWithContext(ctx context.Context) ServerTlsPolicyIamPolicyOutput
}

type ServerTlsPolicyIamPolicyOutput 

type ServerTlsPolicyIamPolicyOutput struct{ *pulumi.OutputState }

func (ServerTlsPolicyIamPolicyOutput) ElementType 

func (ServerTlsPolicyIamPolicyOutput) ElementType() reflect.Type

func (ServerTlsPolicyIamPolicyOutput) ToServerTlsPolicyIamPolicyOutput 

func (o ServerTlsPolicyIamPolicyOutput) ToServerTlsPolicyIamPolicyOutput() ServerTlsPolicyIamPolicyOutput

func (ServerTlsPolicyIamPolicyOutput) ToServerTlsPolicyIamPolicyOutputWithContext 

func (o ServerTlsPolicyIamPolicyOutput) ToServerTlsPolicyIamPolicyOutputWithContext(ctx context.Context) ServerTlsPolicyIamPolicyOutput

type ServerTlsPolicyIamPolicyState 

type ServerTlsPolicyIamPolicyState struct {
}

func (ServerTlsPolicyIamPolicyState) ElementType 

func (ServerTlsPolicyIamPolicyState) ElementType() reflect.Type

type ServerTlsPolicyInput 

type ServerTlsPolicyInput interface {
	pulumi.Input

	ToServerTlsPolicyOutput() ServerTlsPolicyOutput
	ToServerTlsPolicyOutputWithContext(ctx context.Context) ServerTlsPolicyOutput
}

type ServerTlsPolicyOutput 

type ServerTlsPolicyOutput struct{ *pulumi.OutputState }

func (ServerTlsPolicyOutput) ElementType 

func (ServerTlsPolicyOutput) ElementType() reflect.Type

func (ServerTlsPolicyOutput) ToServerTlsPolicyOutput 

func (o ServerTlsPolicyOutput) ToServerTlsPolicyOutput() ServerTlsPolicyOutput

func (ServerTlsPolicyOutput) ToServerTlsPolicyOutputWithContext 

func (o ServerTlsPolicyOutput) ToServerTlsPolicyOutputWithContext(ctx context.Context) ServerTlsPolicyOutput

type ServerTlsPolicyState 

type ServerTlsPolicyState struct {
}

func (ServerTlsPolicyState) ElementType 

func (ServerTlsPolicyState) ElementType() reflect.Type

type Source 

type Source struct {
	// Optional. List of CIDR ranges to match based on source IP address. At least one IP block should match. Single IP (e.g., "1.2.3.4") and CIDR (e.g., "1.2.3.0/24") are supported. Authorization based on source IP alone should be avoided. The IP addresses of any load balancers or proxies should be considered untrusted.
	IpBlocks []string `pulumi:"ipBlocks"`
	// Optional. List of peer identities to match for authorization. At least one principal should match. Each peer can be an exact match, or a prefix match (example, "namespace/*") or a suffix match (example, // */service-account") or a presence match "*". Authorization based on the principal name without certificate validation (configured by ServerTlsPolicy resource) is considered insecure.
	Principals []string `pulumi:"principals"`
}

Specification of traffic source attributes.

type SourceArgs 

type SourceArgs struct {
	// Optional. List of CIDR ranges to match based on source IP address. At least one IP block should match. Single IP (e.g., "1.2.3.4") and CIDR (e.g., "1.2.3.0/24") are supported. Authorization based on source IP alone should be avoided. The IP addresses of any load balancers or proxies should be considered untrusted.
	IpBlocks pulumi.StringArrayInput `pulumi:"ipBlocks"`
	// Optional. List of peer identities to match for authorization. At least one principal should match. Each peer can be an exact match, or a prefix match (example, "namespace/*") or a suffix match (example, // */service-account") or a presence match "*". Authorization based on the principal name without certificate validation (configured by ServerTlsPolicy resource) is considered insecure.
	Principals pulumi.StringArrayInput `pulumi:"principals"`
}

Specification of traffic source attributes.

func (SourceArgs) ElementType 

func (SourceArgs) ElementType() reflect.Type

func (SourceArgs) ToSourceOutput 

func (i SourceArgs) ToSourceOutput() SourceOutput

func (SourceArgs) ToSourceOutputWithContext 

func (i SourceArgs) ToSourceOutputWithContext(ctx context.Context) SourceOutput

type SourceArray 

type SourceArray []SourceInput

func (SourceArray) ElementType 

func (SourceArray) ElementType() reflect.Type

func (SourceArray) ToSourceArrayOutput 

func (i SourceArray) ToSourceArrayOutput() SourceArrayOutput

func (SourceArray) ToSourceArrayOutputWithContext 

func (i SourceArray) ToSourceArrayOutputWithContext(ctx context.Context) SourceArrayOutput

type SourceArrayInput 

type SourceArrayInput interface {
	pulumi.Input

	ToSourceArrayOutput() SourceArrayOutput
	ToSourceArrayOutputWithContext(context.Context) SourceArrayOutput
}

SourceArrayInput is an input type that accepts SourceArray and SourceArrayOutput values. You can construct a concrete instance of `SourceArrayInput` via: 

SourceArray{ SourceArgs{...} }

type SourceArrayOutput 

type SourceArrayOutput struct{ *pulumi.OutputState }

func (SourceArrayOutput) ElementType 

func (SourceArrayOutput) ElementType() reflect.Type

func (SourceArrayOutput) Index 

func (o SourceArrayOutput) Index(i pulumi.IntInput) SourceOutput

func (SourceArrayOutput) ToSourceArrayOutput 

func (o SourceArrayOutput) ToSourceArrayOutput() SourceArrayOutput

func (SourceArrayOutput) ToSourceArrayOutputWithContext 

func (o SourceArrayOutput) ToSourceArrayOutputWithContext(ctx context.Context) SourceArrayOutput

type SourceInput 

type SourceInput interface {
	pulumi.Input

	ToSourceOutput() SourceOutput
	ToSourceOutputWithContext(context.Context) SourceOutput
}

SourceInput is an input type that accepts SourceArgs and SourceOutput values. You can construct a concrete instance of `SourceInput` via: 

SourceArgs{...}

type SourceOutput 

type SourceOutput struct{ *pulumi.OutputState }

Specification of traffic source attributes.

func (SourceOutput) ElementType 

func (SourceOutput) ElementType() reflect.Type

func (SourceOutput) IpBlocks 

func (o SourceOutput) IpBlocks() pulumi.StringArrayOutput

Optional. List of CIDR ranges to match based on source IP address. At least one IP block should match. Single IP (e.g., "1.2.3.4") and CIDR (e.g., "1.2.3.0/24") are supported. Authorization based on source IP alone should be avoided. The IP addresses of any load balancers or proxies should be considered untrusted.

func (SourceOutput) Principals 

func (o SourceOutput) Principals() pulumi.StringArrayOutput

Optional. List of peer identities to match for authorization. At least one principal should match. Each peer can be an exact match, or a prefix match (example, "namespace/*") or a suffix match (example, // */service-account") or a presence match "*". Authorization based on the principal name without certificate validation (configured by ServerTlsPolicy resource) is considered insecure.

func (SourceOutput) ToSourceOutput 

func (o SourceOutput) ToSourceOutput() SourceOutput

func (SourceOutput) ToSourceOutputWithContext 

func (o SourceOutput) ToSourceOutputWithContext(ctx context.Context) SourceOutput

type SourceResponse 

type SourceResponse struct {
	// Optional. List of CIDR ranges to match based on source IP address. At least one IP block should match. Single IP (e.g., "1.2.3.4") and CIDR (e.g., "1.2.3.0/24") are supported. Authorization based on source IP alone should be avoided. The IP addresses of any load balancers or proxies should be considered untrusted.
	IpBlocks []string `pulumi:"ipBlocks"`
	// Optional. List of peer identities to match for authorization. At least one principal should match. Each peer can be an exact match, or a prefix match (example, "namespace/*") or a suffix match (example, // */service-account") or a presence match "*". Authorization based on the principal name without certificate validation (configured by ServerTlsPolicy resource) is considered insecure.
	Principals []string `pulumi:"principals"`
}

Specification of traffic source attributes.

type SourceResponseArrayOutput 

type SourceResponseArrayOutput struct{ *pulumi.OutputState }

func (SourceResponseArrayOutput) ElementType 

func (SourceResponseArrayOutput) ElementType() reflect.Type

func (SourceResponseArrayOutput) Index 

func (o SourceResponseArrayOutput) Index(i pulumi.IntInput) SourceResponseOutput

func (SourceResponseArrayOutput) ToSourceResponseArrayOutput 

func (o SourceResponseArrayOutput) ToSourceResponseArrayOutput() SourceResponseArrayOutput

func (SourceResponseArrayOutput) ToSourceResponseArrayOutputWithContext 

func (o SourceResponseArrayOutput) ToSourceResponseArrayOutputWithContext(ctx context.Context) SourceResponseArrayOutput

type SourceResponseOutput 

type SourceResponseOutput struct{ *pulumi.OutputState }

Specification of traffic source attributes.

func (SourceResponseOutput) ElementType 

func (SourceResponseOutput) ElementType() reflect.Type

func (SourceResponseOutput) IpBlocks 

func (o SourceResponseOutput) IpBlocks() pulumi.StringArrayOutput

Optional. List of CIDR ranges to match based on source IP address. At least one IP block should match. Single IP (e.g., "1.2.3.4") and CIDR (e.g., "1.2.3.0/24") are supported. Authorization based on source IP alone should be avoided. The IP addresses of any load balancers or proxies should be considered untrusted.

func (SourceResponseOutput) Principals 

func (o SourceResponseOutput) Principals() pulumi.StringArrayOutput

Optional. List of peer identities to match for authorization. At least one principal should match. Each peer can be an exact match, or a prefix match (example, "namespace/*") or a suffix match (example, // */service-account") or a presence match "*". Authorization based on the principal name without certificate validation (configured by ServerTlsPolicy resource) is considered insecure.

func (SourceResponseOutput) ToSourceResponseOutput 

func (o SourceResponseOutput) ToSourceResponseOutput() SourceResponseOutput

func (SourceResponseOutput) ToSourceResponseOutputWithContext 

func (o SourceResponseOutput) ToSourceResponseOutputWithContext(ctx context.Context) SourceResponseOutput

type ValidationCA 

type ValidationCA struct {
	// The certificate provider instance specification that will be passed to the data plane, which will be used to load necessary credential information.
	CertificateProviderInstance *CertificateProviderInstance `pulumi:"certificateProviderInstance"`
	// gRPC specific configuration to access the gRPC server to obtain the CA certificate.
	GrpcEndpoint *GoogleCloudNetworksecurityV1GrpcEndpoint `pulumi:"grpcEndpoint"`
}

Specification of ValidationCA. Defines the mechanism to obtain the Certificate Authority certificate to validate the peer certificate.

type ValidationCAArgs 

type ValidationCAArgs struct {
	// The certificate provider instance specification that will be passed to the data plane, which will be used to load necessary credential information.
	CertificateProviderInstance CertificateProviderInstancePtrInput `pulumi:"certificateProviderInstance"`
	// gRPC specific configuration to access the gRPC server to obtain the CA certificate.
	GrpcEndpoint GoogleCloudNetworksecurityV1GrpcEndpointPtrInput `pulumi:"grpcEndpoint"`
}

Specification of ValidationCA. Defines the mechanism to obtain the Certificate Authority certificate to validate the peer certificate.

func (ValidationCAArgs) ElementType 

func (ValidationCAArgs) ElementType() reflect.Type

func (ValidationCAArgs) ToValidationCAOutput 

func (i ValidationCAArgs) ToValidationCAOutput() ValidationCAOutput

func (ValidationCAArgs) ToValidationCAOutputWithContext 

func (i ValidationCAArgs) ToValidationCAOutputWithContext(ctx context.Context) ValidationCAOutput

type ValidationCAArray 

type ValidationCAArray []ValidationCAInput

func (ValidationCAArray) ElementType 

func (ValidationCAArray) ElementType() reflect.Type

func (ValidationCAArray) ToValidationCAArrayOutput 

func (i ValidationCAArray) ToValidationCAArrayOutput() ValidationCAArrayOutput

func (ValidationCAArray) ToValidationCAArrayOutputWithContext 

func (i ValidationCAArray) ToValidationCAArrayOutputWithContext(ctx context.Context) ValidationCAArrayOutput

type ValidationCAArrayInput 

type ValidationCAArrayInput interface {
	pulumi.Input

	ToValidationCAArrayOutput() ValidationCAArrayOutput
	ToValidationCAArrayOutputWithContext(context.Context) ValidationCAArrayOutput
}

ValidationCAArrayInput is an input type that accepts ValidationCAArray and ValidationCAArrayOutput values. You can construct a concrete instance of `ValidationCAArrayInput` via: 

ValidationCAArray{ ValidationCAArgs{...} }

type ValidationCAArrayOutput 

type ValidationCAArrayOutput struct{ *pulumi.OutputState }

func (ValidationCAArrayOutput) ElementType 

func (ValidationCAArrayOutput) ElementType() reflect.Type

func (ValidationCAArrayOutput) Index 

func (o ValidationCAArrayOutput) Index(i pulumi.IntInput) ValidationCAOutput

func (ValidationCAArrayOutput) ToValidationCAArrayOutput 

func (o ValidationCAArrayOutput) ToValidationCAArrayOutput() ValidationCAArrayOutput

func (ValidationCAArrayOutput) ToValidationCAArrayOutputWithContext 

func (o ValidationCAArrayOutput) ToValidationCAArrayOutputWithContext(ctx context.Context) ValidationCAArrayOutput

type ValidationCAInput 

type ValidationCAInput interface {
	pulumi.Input

	ToValidationCAOutput() ValidationCAOutput
	ToValidationCAOutputWithContext(context.Context) ValidationCAOutput
}

ValidationCAInput is an input type that accepts ValidationCAArgs and ValidationCAOutput values. You can construct a concrete instance of `ValidationCAInput` via: 

ValidationCAArgs{...}

type ValidationCAOutput 

type ValidationCAOutput struct{ *pulumi.OutputState }

Specification of ValidationCA. Defines the mechanism to obtain the Certificate Authority certificate to validate the peer certificate.

func (ValidationCAOutput) CertificateProviderInstance 

func (o ValidationCAOutput) CertificateProviderInstance() CertificateProviderInstancePtrOutput

The certificate provider instance specification that will be passed to the data plane, which will be used to load necessary credential information.

func (ValidationCAOutput) ElementType 

func (ValidationCAOutput) ElementType() reflect.Type

func (ValidationCAOutput) GrpcEndpoint 

func (o ValidationCAOutput) GrpcEndpoint() GoogleCloudNetworksecurityV1GrpcEndpointPtrOutput

gRPC specific configuration to access the gRPC server to obtain the CA certificate.

func (ValidationCAOutput) ToValidationCAOutput 

func (o ValidationCAOutput) ToValidationCAOutput() ValidationCAOutput

func (ValidationCAOutput) ToValidationCAOutputWithContext 

func (o ValidationCAOutput) ToValidationCAOutputWithContext(ctx context.Context) ValidationCAOutput

type ValidationCAResponse 

type ValidationCAResponse struct {
	// The certificate provider instance specification that will be passed to the data plane, which will be used to load necessary credential information.
	CertificateProviderInstance CertificateProviderInstanceResponse `pulumi:"certificateProviderInstance"`
	// gRPC specific configuration to access the gRPC server to obtain the CA certificate.
	GrpcEndpoint GoogleCloudNetworksecurityV1GrpcEndpointResponse `pulumi:"grpcEndpoint"`
}

Specification of ValidationCA. Defines the mechanism to obtain the Certificate Authority certificate to validate the peer certificate.

type ValidationCAResponseArrayOutput 

type ValidationCAResponseArrayOutput struct{ *pulumi.OutputState }

func (ValidationCAResponseArrayOutput) ElementType 

func (ValidationCAResponseArrayOutput) ElementType() reflect.Type

func (ValidationCAResponseArrayOutput) Index 

func (o ValidationCAResponseArrayOutput) Index(i pulumi.IntInput) ValidationCAResponseOutput

func (ValidationCAResponseArrayOutput) ToValidationCAResponseArrayOutput 

func (o ValidationCAResponseArrayOutput) ToValidationCAResponseArrayOutput() ValidationCAResponseArrayOutput

func (ValidationCAResponseArrayOutput) ToValidationCAResponseArrayOutputWithContext 

func (o ValidationCAResponseArrayOutput) ToValidationCAResponseArrayOutputWithContext(ctx context.Context) ValidationCAResponseArrayOutput

type ValidationCAResponseOutput 

type ValidationCAResponseOutput struct{ *pulumi.OutputState }

Specification of ValidationCA. Defines the mechanism to obtain the Certificate Authority certificate to validate the peer certificate.

func (ValidationCAResponseOutput) CertificateProviderInstance 

func (o ValidationCAResponseOutput) CertificateProviderInstance() CertificateProviderInstanceResponseOutput

The certificate provider instance specification that will be passed to the data plane, which will be used to load necessary credential information.

func (ValidationCAResponseOutput) ElementType 

func (ValidationCAResponseOutput) ElementType() reflect.Type

func (ValidationCAResponseOutput) GrpcEndpoint 

func (o ValidationCAResponseOutput) GrpcEndpoint() GoogleCloudNetworksecurityV1GrpcEndpointResponseOutput

gRPC specific configuration to access the gRPC server to obtain the CA certificate.

func (ValidationCAResponseOutput) ToValidationCAResponseOutput 

func (o ValidationCAResponseOutput) ToValidationCAResponseOutput() ValidationCAResponseOutput

func (ValidationCAResponseOutput) ToValidationCAResponseOutputWithContext 

func (o ValidationCAResponseOutput) ToValidationCAResponseOutputWithContext(ctx context.Context) ValidationCAResponseOutput

Source Files

View all Source files

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f or F : Jump to
y or Y : Canonical URL
go.dev uses cookies from Google to deliver and enhance the quality of its services and to analyze traffic. Learn more.