@pierskarsenbarg/sdm 1.32.0 → 1.33.0
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/account.d.ts +4 -4
- package/account.js +4 -4
- package/accountAttachment.d.ts +1 -1
- package/accountAttachment.js +1 -1
- package/accountGroup.d.ts +4 -4
- package/accountGroup.js +4 -4
- package/approvalWorkflow.d.ts +10 -6
- package/approvalWorkflow.js +10 -6
- package/approvalWorkflow.js.map +1 -1
- package/getAccount.d.ts +8 -8
- package/getAccount.js +8 -8
- package/getAccountGroup.d.ts +4 -4
- package/getAccountGroup.js +4 -4
- package/getApprovalWorkflow.d.ts +4 -4
- package/getApprovalWorkflow.js +4 -4
- package/getGroupRole.d.ts +4 -4
- package/getGroupRole.js +4 -4
- package/getNode.d.ts +4 -4
- package/getNode.js +4 -4
- package/getResource.d.ts +4 -4
- package/getResource.js +4 -4
- package/getRole.d.ts +2 -0
- package/getRole.js +2 -0
- package/getRole.js.map +1 -1
- package/getWorkflow.d.ts +6 -0
- package/getWorkflow.js +6 -0
- package/getWorkflow.js.map +1 -1
- package/getWorkflowRole.d.ts +6 -2
- package/getWorkflowRole.js +6 -2
- package/getWorkflowRole.js.map +1 -1
- package/group.d.ts +8 -5
- package/group.js +8 -5
- package/group.js.map +1 -1
- package/groupRole.d.ts +4 -4
- package/groupRole.js +4 -4
- package/identityAlias.d.ts +13 -0
- package/identityAlias.js +13 -0
- package/identityAlias.js.map +1 -1
- package/identitySet.d.ts +1 -1
- package/identitySet.js +1 -1
- package/node.d.ts +4 -4
- package/node.js +4 -4
- package/package.json +1 -1
- package/policy.d.ts +3 -4
- package/policy.js +3 -4
- package/policy.js.map +1 -1
- package/proxyClusterKey.d.ts +1 -1
- package/proxyClusterKey.js +1 -1
- package/remoteIdentity.d.ts +13 -0
- package/remoteIdentity.js +13 -0
- package/remoteIdentity.js.map +1 -1
- package/role.d.ts +57 -45
- package/role.js +57 -45
- package/role.js.map +1 -1
- package/secretStore.d.ts +60 -0
- package/secretStore.js +10 -0
- package/secretStore.js.map +1 -1
- package/types/input.d.ts +148 -0
- package/types/output.d.ts +321 -0
- package/workflow.d.ts +10 -4
- package/workflow.js +10 -4
- package/workflow.js.map +1 -1
- package/workflowRole.d.ts +4 -4
- package/workflowRole.js +4 -4
package/getWorkflow.d.ts
CHANGED
|
@@ -10,12 +10,15 @@ import * as outputs from "./types/output";
|
|
|
10
10
|
* import * as pulumi from "@pulumi/pulumi";
|
|
11
11
|
* import * as sdm from "@pierskarsenbarg/sdm";
|
|
12
12
|
*
|
|
13
|
+
* // Query workflow by name
|
|
13
14
|
* const workflowByName = sdm.getWorkflow({
|
|
14
15
|
* name: "workflow example",
|
|
15
16
|
* });
|
|
17
|
+
* // Query workflow by ID
|
|
16
18
|
* const workflowById = sdm.getWorkflow({
|
|
17
19
|
* id: "w-1234567890abcdef",
|
|
18
20
|
* });
|
|
21
|
+
* // Query workflow by approval flow ID
|
|
19
22
|
* const workflowByApprovalFlow = sdm.getWorkflow({
|
|
20
23
|
* approvalFlowId: "aw-1234567890abcdef",
|
|
21
24
|
* });
|
|
@@ -126,12 +129,15 @@ export interface GetWorkflowResult {
|
|
|
126
129
|
* import * as pulumi from "@pulumi/pulumi";
|
|
127
130
|
* import * as sdm from "@pierskarsenbarg/sdm";
|
|
128
131
|
*
|
|
132
|
+
* // Query workflow by name
|
|
129
133
|
* const workflowByName = sdm.getWorkflow({
|
|
130
134
|
* name: "workflow example",
|
|
131
135
|
* });
|
|
136
|
+
* // Query workflow by ID
|
|
132
137
|
* const workflowById = sdm.getWorkflow({
|
|
133
138
|
* id: "w-1234567890abcdef",
|
|
134
139
|
* });
|
|
140
|
+
* // Query workflow by approval flow ID
|
|
135
141
|
* const workflowByApprovalFlow = sdm.getWorkflow({
|
|
136
142
|
* approvalFlowId: "aw-1234567890abcdef",
|
|
137
143
|
* });
|
package/getWorkflow.js
CHANGED
|
@@ -15,12 +15,15 @@ const utilities = require("./utilities");
|
|
|
15
15
|
* import * as pulumi from "@pulumi/pulumi";
|
|
16
16
|
* import * as sdm from "@pierskarsenbarg/sdm";
|
|
17
17
|
*
|
|
18
|
+
* // Query workflow by name
|
|
18
19
|
* const workflowByName = sdm.getWorkflow({
|
|
19
20
|
* name: "workflow example",
|
|
20
21
|
* });
|
|
22
|
+
* // Query workflow by ID
|
|
21
23
|
* const workflowById = sdm.getWorkflow({
|
|
22
24
|
* id: "w-1234567890abcdef",
|
|
23
25
|
* });
|
|
26
|
+
* // Query workflow by approval flow ID
|
|
24
27
|
* const workflowByApprovalFlow = sdm.getWorkflow({
|
|
25
28
|
* approvalFlowId: "aw-1234567890abcdef",
|
|
26
29
|
* });
|
|
@@ -52,12 +55,15 @@ exports.getWorkflow = getWorkflow;
|
|
|
52
55
|
* import * as pulumi from "@pulumi/pulumi";
|
|
53
56
|
* import * as sdm from "@pierskarsenbarg/sdm";
|
|
54
57
|
*
|
|
58
|
+
* // Query workflow by name
|
|
55
59
|
* const workflowByName = sdm.getWorkflow({
|
|
56
60
|
* name: "workflow example",
|
|
57
61
|
* });
|
|
62
|
+
* // Query workflow by ID
|
|
58
63
|
* const workflowById = sdm.getWorkflow({
|
|
59
64
|
* id: "w-1234567890abcdef",
|
|
60
65
|
* });
|
|
66
|
+
* // Query workflow by approval flow ID
|
|
61
67
|
* const workflowByApprovalFlow = sdm.getWorkflow({
|
|
62
68
|
* approvalFlowId: "aw-1234567890abcdef",
|
|
63
69
|
* });
|
package/getWorkflow.js.map
CHANGED
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"getWorkflow.js","sourceRoot":"","sources":["../getWorkflow.ts"],"names":[],"mappings":";AAAA,sEAAsE;AACtE,iFAAiF;;;AAEjF,yCAAyC;AAGzC,yCAAyC;AAEzC
|
|
1
|
+
{"version":3,"file":"getWorkflow.js","sourceRoot":"","sources":["../getWorkflow.ts"],"names":[],"mappings":";AAAA,sEAAsE;AACtE,iFAAiF;;;AAEjF,yCAAyC;AAGzC,yCAAyC;AAEzC;;;;;;;;;;;;;;;;;;;;;;;GAuBG;AACH,SAAgB,WAAW,CAAC,IAAsB,EAAE,IAA2B;IAC3E,IAAI,GAAG,IAAI,IAAI,EAAE,CAAC;IAClB,IAAI,GAAG,MAAM,CAAC,YAAY,CAAC,SAAS,CAAC,oBAAoB,EAAE,EAAE,IAAI,IAAI,EAAE,CAAC,CAAC;IACzE,OAAO,MAAM,CAAC,OAAO,CAAC,MAAM,CAAC,mCAAmC,EAAE;QAC9D,4BAA4B,EAAE,IAAI,CAAC,0BAA0B;QAC7D,0BAA0B,EAAE,IAAI,CAAC,wBAAwB;QACzD,gBAAgB,EAAE,IAAI,CAAC,cAAc;QACrC,WAAW,EAAE,IAAI,CAAC,SAAS;QAC3B,aAAa,EAAE,IAAI,CAAC,WAAW;QAC/B,SAAS,EAAE,IAAI,CAAC,OAAO;QACvB,IAAI,EAAE,IAAI,CAAC,EAAE;QACb,MAAM,EAAE,IAAI,CAAC,IAAI;QACjB,QAAQ,EAAE,IAAI,CAAC,MAAM;KACxB,EAAE,IAAI,CAAC,CAAC;AACb,CAAC;AAdD,kCAcC;AAiGD;;;;;;;;;;;;;;;;;;;;;;;GAuBG;AACH,SAAgB,iBAAiB,CAAC,IAA4B,EAAE,IAAiC;IAC7F,IAAI,GAAG,IAAI,IAAI,EAAE,CAAC;IAClB,IAAI,GAAG,MAAM,CAAC,YAAY,CAAC,SAAS,CAAC,oBAAoB,EAAE,EAAE,IAAI,IAAI,EAAE,CAAC,CAAC;IACzE,OAAO,MAAM,CAAC,OAAO,CAAC,YAAY,CAAC,mCAAmC,EAAE;QACpE,4BAA4B,EAAE,IAAI,CAAC,0BAA0B;QAC7D,0BAA0B,EAAE,IAAI,CAAC,wBAAwB;QACzD,gBAAgB,EAAE,IAAI,CAAC,cAAc;QACrC,WAAW,EAAE,IAAI,CAAC,SAAS;QAC3B,aAAa,EAAE,IAAI,CAAC,WAAW;QAC/B,SAAS,EAAE,IAAI,CAAC,OAAO;QACvB,IAAI,EAAE,IAAI,CAAC,EAAE;QACb,MAAM,EAAE,IAAI,CAAC,IAAI;QACjB,QAAQ,EAAE,IAAI,CAAC,MAAM;KACxB,EAAE,IAAI,CAAC,CAAC;AACb,CAAC;AAdD,8CAcC"}
|
package/getWorkflowRole.d.ts
CHANGED
|
@@ -9,10 +9,12 @@ import * as outputs from "./types/output";
|
|
|
9
9
|
* import * as pulumi from "@pulumi/pulumi";
|
|
10
10
|
* import * as sdm from "@pierskarsenbarg/sdm";
|
|
11
11
|
*
|
|
12
|
+
* // Query workflow role by workflow and role IDs
|
|
12
13
|
* const workflowRoleQuery = sdm.getWorkflowRole({
|
|
13
|
-
* roleId: "r-1234567890abcdef",
|
|
14
14
|
* workflowId: "w-1234567890abcdef",
|
|
15
|
+
* roleId: "r-1234567890abcdef",
|
|
15
16
|
* });
|
|
17
|
+
* // Query workflow role by specific ID
|
|
16
18
|
* const workflowRoleById = sdm.getWorkflowRole({
|
|
17
19
|
* id: "wr-1234567890abcdef",
|
|
18
20
|
* });
|
|
@@ -70,10 +72,12 @@ export interface GetWorkflowRoleResult {
|
|
|
70
72
|
* import * as pulumi from "@pulumi/pulumi";
|
|
71
73
|
* import * as sdm from "@pierskarsenbarg/sdm";
|
|
72
74
|
*
|
|
75
|
+
* // Query workflow role by workflow and role IDs
|
|
73
76
|
* const workflowRoleQuery = sdm.getWorkflowRole({
|
|
74
|
-
* roleId: "r-1234567890abcdef",
|
|
75
77
|
* workflowId: "w-1234567890abcdef",
|
|
78
|
+
* roleId: "r-1234567890abcdef",
|
|
76
79
|
* });
|
|
80
|
+
* // Query workflow role by specific ID
|
|
77
81
|
* const workflowRoleById = sdm.getWorkflowRole({
|
|
78
82
|
* id: "wr-1234567890abcdef",
|
|
79
83
|
* });
|
package/getWorkflowRole.js
CHANGED
|
@@ -14,10 +14,12 @@ const utilities = require("./utilities");
|
|
|
14
14
|
* import * as pulumi from "@pulumi/pulumi";
|
|
15
15
|
* import * as sdm from "@pierskarsenbarg/sdm";
|
|
16
16
|
*
|
|
17
|
+
* // Query workflow role by workflow and role IDs
|
|
17
18
|
* const workflowRoleQuery = sdm.getWorkflowRole({
|
|
18
|
-
* roleId: "r-1234567890abcdef",
|
|
19
19
|
* workflowId: "w-1234567890abcdef",
|
|
20
|
+
* roleId: "r-1234567890abcdef",
|
|
20
21
|
* });
|
|
22
|
+
* // Query workflow role by specific ID
|
|
21
23
|
* const workflowRoleById = sdm.getWorkflowRole({
|
|
22
24
|
* id: "wr-1234567890abcdef",
|
|
23
25
|
* });
|
|
@@ -42,10 +44,12 @@ exports.getWorkflowRole = getWorkflowRole;
|
|
|
42
44
|
* import * as pulumi from "@pulumi/pulumi";
|
|
43
45
|
* import * as sdm from "@pierskarsenbarg/sdm";
|
|
44
46
|
*
|
|
47
|
+
* // Query workflow role by workflow and role IDs
|
|
45
48
|
* const workflowRoleQuery = sdm.getWorkflowRole({
|
|
46
|
-
* roleId: "r-1234567890abcdef",
|
|
47
49
|
* workflowId: "w-1234567890abcdef",
|
|
50
|
+
* roleId: "r-1234567890abcdef",
|
|
48
51
|
* });
|
|
52
|
+
* // Query workflow role by specific ID
|
|
49
53
|
* const workflowRoleById = sdm.getWorkflowRole({
|
|
50
54
|
* id: "wr-1234567890abcdef",
|
|
51
55
|
* });
|
package/getWorkflowRole.js.map
CHANGED
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"getWorkflowRole.js","sourceRoot":"","sources":["../getWorkflowRole.ts"],"names":[],"mappings":";AAAA,sEAAsE;AACtE,iFAAiF;;;AAEjF,yCAAyC;AAGzC,yCAAyC;AAEzC
|
|
1
|
+
{"version":3,"file":"getWorkflowRole.js","sourceRoot":"","sources":["../getWorkflowRole.ts"],"names":[],"mappings":";AAAA,sEAAsE;AACtE,iFAAiF;;;AAEjF,yCAAyC;AAGzC,yCAAyC;AAEzC;;;;;;;;;;;;;;;;;;;GAmBG;AACH,SAAgB,eAAe,CAAC,IAA0B,EAAE,IAA2B;IACnF,IAAI,GAAG,IAAI,IAAI,EAAE,CAAC;IAClB,IAAI,GAAG,MAAM,CAAC,YAAY,CAAC,SAAS,CAAC,oBAAoB,EAAE,EAAE,IAAI,IAAI,EAAE,CAAC,CAAC;IACzE,OAAO,MAAM,CAAC,OAAO,CAAC,MAAM,CAAC,2CAA2C,EAAE;QACtE,IAAI,EAAE,IAAI,CAAC,EAAE;QACb,QAAQ,EAAE,IAAI,CAAC,MAAM;QACrB,YAAY,EAAE,IAAI,CAAC,UAAU;KAChC,EAAE,IAAI,CAAC,CAAC;AACb,CAAC;AARD,0CAQC;AA6CD;;;;;;;;;;;;;;;;;;;GAmBG;AACH,SAAgB,qBAAqB,CAAC,IAAgC,EAAE,IAAiC;IACrG,IAAI,GAAG,IAAI,IAAI,EAAE,CAAC;IAClB,IAAI,GAAG,MAAM,CAAC,YAAY,CAAC,SAAS,CAAC,oBAAoB,EAAE,EAAE,IAAI,IAAI,EAAE,CAAC,CAAC;IACzE,OAAO,MAAM,CAAC,OAAO,CAAC,YAAY,CAAC,2CAA2C,EAAE;QAC5E,IAAI,EAAE,IAAI,CAAC,EAAE;QACb,QAAQ,EAAE,IAAI,CAAC,MAAM;QACrB,YAAY,EAAE,IAAI,CAAC,UAAU;KAChC,EAAE,IAAI,CAAC,CAAC;AACb,CAAC;AARD,sDAQC"}
|
package/group.d.ts
CHANGED
|
@@ -7,11 +7,14 @@ import * as pulumi from "@pulumi/pulumi";
|
|
|
7
7
|
* import * as pulumi from "@pulumi/pulumi";
|
|
8
8
|
* import * as sdm from "@pierskarsenbarg/sdm";
|
|
9
9
|
*
|
|
10
|
-
* const securityTeam = new sdm.Group("
|
|
11
|
-
*
|
|
12
|
-
*
|
|
13
|
-
*
|
|
14
|
-
*
|
|
10
|
+
* const securityTeam = new sdm.Group("security_team", {
|
|
11
|
+
* name: "Security Team",
|
|
12
|
+
* tags: {
|
|
13
|
+
* admin: "true",
|
|
14
|
+
* },
|
|
15
|
+
* });
|
|
16
|
+
* const administrators = new sdm.Group("administrators", {name: "Administrators"});
|
|
17
|
+
* const devopsTeam = new sdm.Group("devops_team", {name: "DevOps Team"});
|
|
15
18
|
* ```
|
|
16
19
|
* This resource can be imported using the import command.
|
|
17
20
|
*
|
package/group.js
CHANGED
|
@@ -13,11 +13,14 @@ const utilities = require("./utilities");
|
|
|
13
13
|
* import * as pulumi from "@pulumi/pulumi";
|
|
14
14
|
* import * as sdm from "@pierskarsenbarg/sdm";
|
|
15
15
|
*
|
|
16
|
-
* const securityTeam = new sdm.Group("
|
|
17
|
-
*
|
|
18
|
-
*
|
|
19
|
-
*
|
|
20
|
-
*
|
|
16
|
+
* const securityTeam = new sdm.Group("security_team", {
|
|
17
|
+
* name: "Security Team",
|
|
18
|
+
* tags: {
|
|
19
|
+
* admin: "true",
|
|
20
|
+
* },
|
|
21
|
+
* });
|
|
22
|
+
* const administrators = new sdm.Group("administrators", {name: "Administrators"});
|
|
23
|
+
* const devopsTeam = new sdm.Group("devops_team", {name: "DevOps Team"});
|
|
21
24
|
* ```
|
|
22
25
|
* This resource can be imported using the import command.
|
|
23
26
|
*
|
package/group.js.map
CHANGED
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"group.js","sourceRoot":"","sources":["../group.ts"],"names":[],"mappings":";AAAA,sEAAsE;AACtE,iFAAiF;;;AAEjF,yCAAyC;AACzC,yCAAyC;AAEzC
|
|
1
|
+
{"version":3,"file":"group.js","sourceRoot":"","sources":["../group.ts"],"names":[],"mappings":";AAAA,sEAAsE;AACtE,iFAAiF;;;AAEjF,yCAAyC;AACzC,yCAAyC;AAEzC;;;;;;;;;;;;;;;;;;;;;;;;;;GA0BG;AACH,MAAa,KAAM,SAAQ,MAAM,CAAC,cAAc;IAC5C;;;;;;;;OAQG;IACI,MAAM,CAAC,GAAG,CAAC,IAAY,EAAE,EAA2B,EAAE,KAAkB,EAAE,IAAmC;QAChH,OAAO,IAAI,KAAK,CAAC,IAAI,EAAO,KAAK,EAAE,EAAE,GAAG,IAAI,EAAE,EAAE,EAAE,EAAE,EAAE,CAAC,CAAC;IAC5D,CAAC;IAKD;;;OAGG;IACI,MAAM,CAAC,UAAU,CAAC,GAAQ;QAC7B,IAAI,GAAG,KAAK,SAAS,IAAI,GAAG,KAAK,IAAI,EAAE;YACnC,OAAO,KAAK,CAAC;SAChB;QACD,OAAO,GAAG,CAAC,cAAc,CAAC,KAAK,KAAK,CAAC,YAAY,CAAC;IACtD,CAAC;IA2BD,YAAY,IAAY,EAAE,WAAoC,EAAE,IAAmC;QAC/F,IAAI,cAAc,GAAkB,EAAE,CAAC;QACvC,IAAI,GAAG,IAAI,IAAI,EAAE,CAAC;QAClB,IAAI,IAAI,CAAC,EAAE,EAAE;YACT,MAAM,KAAK,GAAG,WAAqC,CAAC;YACpD,cAAc,CAAC,aAAa,CAAC,GAAG,KAAK,EAAE,WAAW,CAAC;YACnD,cAAc,CAAC,MAAM,CAAC,GAAG,KAAK,EAAE,IAAI,CAAC;YACrC,cAAc,CAAC,QAAQ,CAAC,GAAG,KAAK,EAAE,MAAM,CAAC;YACzC,cAAc,CAAC,MAAM,CAAC,GAAG,KAAK,EAAE,IAAI,CAAC;SACxC;aAAM;YACH,MAAM,IAAI,GAAG,WAAoC,CAAC;YAClD,cAAc,CAAC,aAAa,CAAC,GAAG,IAAI,EAAE,WAAW,CAAC;YAClD,cAAc,CAAC,MAAM,CAAC,GAAG,IAAI,EAAE,IAAI,CAAC;YACpC,cAAc,CAAC,MAAM,CAAC,GAAG,IAAI,EAAE,IAAI,CAAC;YACpC,cAAc,CAAC,QAAQ,CAAC,GAAG,SAAS,CAAC,OAAO,CAAC;SAChD;QACD,IAAI,GAAG,MAAM,CAAC,YAAY,CAAC,SAAS,CAAC,oBAAoB,EAAE,EAAE,IAAI,CAAC,CAAC;QACnE,KAAK,CAAC,KAAK,CAAC,YAAY,EAAE,IAAI,EAAE,cAAc,EAAE,IAAI,CAAC,CAAC;IAC1D,CAAC;;AAvEL,sBAwEC;AA1DG,gBAAgB;AACO,kBAAY,GAAG,uBAAuB,CAAC"}
|
package/groupRole.d.ts
CHANGED
|
@@ -7,11 +7,11 @@ import * as pulumi from "@pulumi/pulumi";
|
|
|
7
7
|
* import * as pulumi from "@pulumi/pulumi";
|
|
8
8
|
* import * as sdm from "@pierskarsenbarg/sdm";
|
|
9
9
|
*
|
|
10
|
-
* const securityTeamToProductionAccess = new sdm.GroupRole("
|
|
11
|
-
* groupId:
|
|
12
|
-
* roleId:
|
|
10
|
+
* const securityTeamToProductionAccess = new sdm.GroupRole("security_team_to_production_access", {
|
|
11
|
+
* groupId: securityTeam.id,
|
|
12
|
+
* roleId: productionAccess.id,
|
|
13
13
|
* });
|
|
14
|
-
* const administratorsToAdminAccess = new sdm.GroupRole("
|
|
14
|
+
* const administratorsToAdminAccess = new sdm.GroupRole("administrators_to_admin_access", {
|
|
15
15
|
* groupId: "group-1234567890abcdef",
|
|
16
16
|
* roleId: "r-1234567890abcdef",
|
|
17
17
|
* });
|
package/groupRole.js
CHANGED
|
@@ -13,11 +13,11 @@ const utilities = require("./utilities");
|
|
|
13
13
|
* import * as pulumi from "@pulumi/pulumi";
|
|
14
14
|
* import * as sdm from "@pierskarsenbarg/sdm";
|
|
15
15
|
*
|
|
16
|
-
* const securityTeamToProductionAccess = new sdm.GroupRole("
|
|
17
|
-
* groupId:
|
|
18
|
-
* roleId:
|
|
16
|
+
* const securityTeamToProductionAccess = new sdm.GroupRole("security_team_to_production_access", {
|
|
17
|
+
* groupId: securityTeam.id,
|
|
18
|
+
* roleId: productionAccess.id,
|
|
19
19
|
* });
|
|
20
|
-
* const administratorsToAdminAccess = new sdm.GroupRole("
|
|
20
|
+
* const administratorsToAdminAccess = new sdm.GroupRole("administrators_to_admin_access", {
|
|
21
21
|
* groupId: "group-1234567890abcdef",
|
|
22
22
|
* roleId: "r-1234567890abcdef",
|
|
23
23
|
* });
|
package/identityAlias.d.ts
CHANGED
|
@@ -2,6 +2,19 @@ import * as pulumi from "@pulumi/pulumi";
|
|
|
2
2
|
/**
|
|
3
3
|
* IdentityAliases define the username to be used for a specific account
|
|
4
4
|
* when connecting to a remote resource using that identity set.
|
|
5
|
+
* ## Example Usage
|
|
6
|
+
*
|
|
7
|
+
* ```typescript
|
|
8
|
+
* import * as pulumi from "@pulumi/pulumi";
|
|
9
|
+
* import * as sdm from "@pierskarsenbarg/sdm";
|
|
10
|
+
*
|
|
11
|
+
* const user = new sdm.IdentityAlias("user", {
|
|
12
|
+
* id: "i-0900909",
|
|
13
|
+
* username: "user",
|
|
14
|
+
* });
|
|
15
|
+
* ```
|
|
16
|
+
* This resource can be imported using the import command.
|
|
17
|
+
*
|
|
5
18
|
* ## Import
|
|
6
19
|
*
|
|
7
20
|
* A IdentityAlias can be imported using the id, e.g.,
|
package/identityAlias.js
CHANGED
|
@@ -8,6 +8,19 @@ const utilities = require("./utilities");
|
|
|
8
8
|
/**
|
|
9
9
|
* IdentityAliases define the username to be used for a specific account
|
|
10
10
|
* when connecting to a remote resource using that identity set.
|
|
11
|
+
* ## Example Usage
|
|
12
|
+
*
|
|
13
|
+
* ```typescript
|
|
14
|
+
* import * as pulumi from "@pulumi/pulumi";
|
|
15
|
+
* import * as sdm from "@pierskarsenbarg/sdm";
|
|
16
|
+
*
|
|
17
|
+
* const user = new sdm.IdentityAlias("user", {
|
|
18
|
+
* id: "i-0900909",
|
|
19
|
+
* username: "user",
|
|
20
|
+
* });
|
|
21
|
+
* ```
|
|
22
|
+
* This resource can be imported using the import command.
|
|
23
|
+
*
|
|
11
24
|
* ## Import
|
|
12
25
|
*
|
|
13
26
|
* A IdentityAlias can be imported using the id, e.g.,
|
package/identityAlias.js.map
CHANGED
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"identityAlias.js","sourceRoot":"","sources":["../identityAlias.ts"],"names":[],"mappings":";AAAA,sEAAsE;AACtE,iFAAiF;;;AAEjF,yCAAyC;AACzC,yCAAyC;AAEzC
|
|
1
|
+
{"version":3,"file":"identityAlias.js","sourceRoot":"","sources":["../identityAlias.ts"],"names":[],"mappings":";AAAA,sEAAsE;AACtE,iFAAiF;;;AAEjF,yCAAyC;AACzC,yCAAyC;AAEzC;;;;;;;;;;;;;;;;;;;;;;;GAuBG;AACH,MAAa,aAAc,SAAQ,MAAM,CAAC,cAAc;IACpD;;;;;;;;OAQG;IACI,MAAM,CAAC,GAAG,CAAC,IAAY,EAAE,EAA2B,EAAE,KAA0B,EAAE,IAAmC;QACxH,OAAO,IAAI,aAAa,CAAC,IAAI,EAAO,KAAK,EAAE,EAAE,GAAG,IAAI,EAAE,EAAE,EAAE,EAAE,EAAE,CAAC,CAAC;IACpE,CAAC;IAKD;;;OAGG;IACI,MAAM,CAAC,UAAU,CAAC,GAAQ;QAC7B,IAAI,GAAG,KAAK,SAAS,IAAI,GAAG,KAAK,IAAI,EAAE;YACnC,OAAO,KAAK,CAAC;SAChB;QACD,OAAO,GAAG,CAAC,cAAc,CAAC,KAAK,aAAa,CAAC,YAAY,CAAC;IAC9D,CAAC;IAuBD,YAAY,IAAY,EAAE,WAAoD,EAAE,IAAmC;QAC/G,IAAI,cAAc,GAAkB,EAAE,CAAC;QACvC,IAAI,GAAG,IAAI,IAAI,EAAE,CAAC;QAClB,IAAI,IAAI,CAAC,EAAE,EAAE;YACT,MAAM,KAAK,GAAG,WAA6C,CAAC;YAC5D,cAAc,CAAC,WAAW,CAAC,GAAG,KAAK,EAAE,SAAS,CAAC;YAC/C,cAAc,CAAC,eAAe,CAAC,GAAG,KAAK,EAAE,aAAa,CAAC;YACvD,cAAc,CAAC,UAAU,CAAC,GAAG,KAAK,EAAE,QAAQ,CAAC;SAChD;aAAM;YACH,MAAM,IAAI,GAAG,WAA4C,CAAC;YAC1D,IAAI,IAAI,EAAE,SAAS,KAAK,SAAS,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE;gBAC5C,MAAM,IAAI,KAAK,CAAC,uCAAuC,CAAC,CAAC;aAC5D;YACD,IAAI,IAAI,EAAE,aAAa,KAAK,SAAS,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE;gBAChD,MAAM,IAAI,KAAK,CAAC,2CAA2C,CAAC,CAAC;aAChE;YACD,IAAI,IAAI,EAAE,QAAQ,KAAK,SAAS,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE;gBAC3C,MAAM,IAAI,KAAK,CAAC,sCAAsC,CAAC,CAAC;aAC3D;YACD,cAAc,CAAC,WAAW,CAAC,GAAG,IAAI,EAAE,SAAS,CAAC;YAC9C,cAAc,CAAC,eAAe,CAAC,GAAG,IAAI,EAAE,aAAa,CAAC;YACtD,cAAc,CAAC,UAAU,CAAC,GAAG,IAAI,EAAE,QAAQ,CAAC;SAC/C;QACD,IAAI,GAAG,MAAM,CAAC,YAAY,CAAC,SAAS,CAAC,oBAAoB,EAAE,EAAE,IAAI,CAAC,CAAC;QACnE,KAAK,CAAC,aAAa,CAAC,YAAY,EAAE,IAAI,EAAE,cAAc,EAAE,IAAI,CAAC,CAAC;IAClE,CAAC;;AA1EL,sCA2EC;AA7DG,gBAAgB;AACO,0BAAY,GAAG,uCAAuC,CAAC"}
|
package/identitySet.d.ts
CHANGED
|
@@ -7,7 +7,7 @@ import * as pulumi from "@pulumi/pulumi";
|
|
|
7
7
|
* import * as pulumi from "@pulumi/pulumi";
|
|
8
8
|
* import * as sdm from "@pierskarsenbarg/sdm";
|
|
9
9
|
*
|
|
10
|
-
* const _default = new sdm.IdentitySet("default", {});
|
|
10
|
+
* const _default = new sdm.IdentitySet("default", {name: "default"});
|
|
11
11
|
* ```
|
|
12
12
|
* This resource can be imported using the import command.
|
|
13
13
|
*
|
package/identitySet.js
CHANGED
|
@@ -13,7 +13,7 @@ const utilities = require("./utilities");
|
|
|
13
13
|
* import * as pulumi from "@pulumi/pulumi";
|
|
14
14
|
* import * as sdm from "@pierskarsenbarg/sdm";
|
|
15
15
|
*
|
|
16
|
-
* const _default = new sdm.IdentitySet("default", {});
|
|
16
|
+
* const _default = new sdm.IdentitySet("default", {name: "default"});
|
|
17
17
|
* ```
|
|
18
18
|
* This resource can be imported using the import command.
|
|
19
19
|
*
|
package/node.d.ts
CHANGED
|
@@ -13,19 +13,19 @@ import * as outputs from "./types/output";
|
|
|
13
13
|
* import * as sdm from "@pierskarsenbarg/sdm";
|
|
14
14
|
*
|
|
15
15
|
* const gateway = new sdm.Node("gateway", {gateway: {
|
|
16
|
-
* bindAddress: "0.0.0.0:21222",
|
|
17
|
-
* listenAddress: "165.23.40.1:21222",
|
|
18
16
|
* name: "test-gateway",
|
|
17
|
+
* listenAddress: "165.23.40.1:21222",
|
|
18
|
+
* bindAddress: "0.0.0.0:21222",
|
|
19
19
|
* tags: {
|
|
20
|
-
* env: "dev",
|
|
21
20
|
* region: "us-west",
|
|
21
|
+
* env: "dev",
|
|
22
22
|
* },
|
|
23
23
|
* }});
|
|
24
24
|
* const relay = new sdm.Node("relay", {relay: {
|
|
25
25
|
* name: "test-relay",
|
|
26
26
|
* tags: {
|
|
27
|
-
* env: "dev",
|
|
28
27
|
* region: "us-west",
|
|
28
|
+
* env: "dev",
|
|
29
29
|
* },
|
|
30
30
|
* }});
|
|
31
31
|
* ```
|
package/node.js
CHANGED
|
@@ -17,19 +17,19 @@ const utilities = require("./utilities");
|
|
|
17
17
|
* import * as sdm from "@pierskarsenbarg/sdm";
|
|
18
18
|
*
|
|
19
19
|
* const gateway = new sdm.Node("gateway", {gateway: {
|
|
20
|
-
* bindAddress: "0.0.0.0:21222",
|
|
21
|
-
* listenAddress: "165.23.40.1:21222",
|
|
22
20
|
* name: "test-gateway",
|
|
21
|
+
* listenAddress: "165.23.40.1:21222",
|
|
22
|
+
* bindAddress: "0.0.0.0:21222",
|
|
23
23
|
* tags: {
|
|
24
|
-
* env: "dev",
|
|
25
24
|
* region: "us-west",
|
|
25
|
+
* env: "dev",
|
|
26
26
|
* },
|
|
27
27
|
* }});
|
|
28
28
|
* const relay = new sdm.Node("relay", {relay: {
|
|
29
29
|
* name: "test-relay",
|
|
30
30
|
* tags: {
|
|
31
|
-
* env: "dev",
|
|
32
31
|
* region: "us-west",
|
|
32
|
+
* env: "dev",
|
|
33
33
|
* },
|
|
34
34
|
* }});
|
|
35
35
|
* ```
|
package/package.json
CHANGED
package/policy.d.ts
CHANGED
|
@@ -8,11 +8,10 @@ import * as pulumi from "@pulumi/pulumi";
|
|
|
8
8
|
* import * as pulumi from "@pulumi/pulumi";
|
|
9
9
|
* import * as sdm from "@pierskarsenbarg/sdm";
|
|
10
10
|
*
|
|
11
|
-
* const permitEverything = new sdm.Policy("
|
|
11
|
+
* const permitEverything = new sdm.Policy("permit_everything", {
|
|
12
|
+
* name: "permit-everything",
|
|
12
13
|
* description: "this policy permits everything",
|
|
13
|
-
* policyContent:
|
|
14
|
-
*
|
|
15
|
-
* `,
|
|
14
|
+
* policyContent: "permit(principal, action, resource);\n",
|
|
16
15
|
* });
|
|
17
16
|
* ```
|
|
18
17
|
* This resource can be imported using the import command.
|
package/policy.js
CHANGED
|
@@ -14,11 +14,10 @@ const utilities = require("./utilities");
|
|
|
14
14
|
* import * as pulumi from "@pulumi/pulumi";
|
|
15
15
|
* import * as sdm from "@pierskarsenbarg/sdm";
|
|
16
16
|
*
|
|
17
|
-
* const permitEverything = new sdm.Policy("
|
|
17
|
+
* const permitEverything = new sdm.Policy("permit_everything", {
|
|
18
|
+
* name: "permit-everything",
|
|
18
19
|
* description: "this policy permits everything",
|
|
19
|
-
* policyContent:
|
|
20
|
-
*
|
|
21
|
-
* `,
|
|
20
|
+
* policyContent: "permit(principal, action, resource);\n",
|
|
22
21
|
* });
|
|
23
22
|
* ```
|
|
24
23
|
* This resource can be imported using the import command.
|
package/policy.js.map
CHANGED
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"policy.js","sourceRoot":"","sources":["../policy.ts"],"names":[],"mappings":";AAAA,sEAAsE;AACtE,iFAAiF;;;AAEjF,yCAAyC;AACzC,yCAAyC;AAEzC
|
|
1
|
+
{"version":3,"file":"policy.js","sourceRoot":"","sources":["../policy.ts"],"names":[],"mappings":";AAAA,sEAAsE;AACtE,iFAAiF;;;AAEjF,yCAAyC;AACzC,yCAAyC;AAEzC;;;;;;;;;;;;;;;;;;;;;;;;GAwBG;AACH,MAAa,MAAO,SAAQ,MAAM,CAAC,cAAc;IAC7C;;;;;;;;OAQG;IACI,MAAM,CAAC,GAAG,CAAC,IAAY,EAAE,EAA2B,EAAE,KAAmB,EAAE,IAAmC;QACjH,OAAO,IAAI,MAAM,CAAC,IAAI,EAAO,KAAK,EAAE,EAAE,GAAG,IAAI,EAAE,EAAE,EAAE,EAAE,EAAE,CAAC,CAAC;IAC7D,CAAC;IAKD;;;OAGG;IACI,MAAM,CAAC,UAAU,CAAC,GAAQ;QAC7B,IAAI,GAAG,KAAK,SAAS,IAAI,GAAG,KAAK,IAAI,EAAE;YACnC,OAAO,KAAK,CAAC;SAChB;QACD,OAAO,GAAG,CAAC,cAAc,CAAC,KAAK,MAAM,CAAC,YAAY,CAAC;IACvD,CAAC;IAuBD,YAAY,IAAY,EAAE,WAAsC,EAAE,IAAmC;QACjG,IAAI,cAAc,GAAkB,EAAE,CAAC;QACvC,IAAI,GAAG,IAAI,IAAI,EAAE,CAAC;QAClB,IAAI,IAAI,CAAC,EAAE,EAAE;YACT,MAAM,KAAK,GAAG,WAAsC,CAAC;YACrD,cAAc,CAAC,aAAa,CAAC,GAAG,KAAK,EAAE,WAAW,CAAC;YACnD,cAAc,CAAC,MAAM,CAAC,GAAG,KAAK,EAAE,IAAI,CAAC;YACrC,cAAc,CAAC,eAAe,CAAC,GAAG,KAAK,EAAE,aAAa,CAAC;SAC1D;aAAM;YACH,MAAM,IAAI,GAAG,WAAqC,CAAC;YACnD,cAAc,CAAC,aAAa,CAAC,GAAG,IAAI,EAAE,WAAW,CAAC;YAClD,cAAc,CAAC,MAAM,CAAC,GAAG,IAAI,EAAE,IAAI,CAAC;YACpC,cAAc,CAAC,eAAe,CAAC,GAAG,IAAI,EAAE,aAAa,CAAC;SACzD;QACD,IAAI,GAAG,MAAM,CAAC,YAAY,CAAC,SAAS,CAAC,oBAAoB,EAAE,EAAE,IAAI,CAAC,CAAC;QACnE,KAAK,CAAC,MAAM,CAAC,YAAY,EAAE,IAAI,EAAE,cAAc,EAAE,IAAI,CAAC,CAAC;IAC3D,CAAC;;AAjEL,wBAkEC;AApDG,gBAAgB;AACO,mBAAY,GAAG,yBAAyB,CAAC"}
|
package/proxyClusterKey.d.ts
CHANGED
|
@@ -9,7 +9,7 @@ import * as pulumi from "@pulumi/pulumi";
|
|
|
9
9
|
* import * as pulumi from "@pulumi/pulumi";
|
|
10
10
|
* import * as sdm from "@pierskarsenbarg/sdm";
|
|
11
11
|
*
|
|
12
|
-
* const testProxyClusterKey = new sdm.ProxyClusterKey("
|
|
12
|
+
* const testProxyClusterKey = new sdm.ProxyClusterKey("test_proxy_cluster_key", {proxyClusterId: "n-12345123"});
|
|
13
13
|
* ```
|
|
14
14
|
* This resource can be imported using the import command.
|
|
15
15
|
*
|
package/proxyClusterKey.js
CHANGED
|
@@ -15,7 +15,7 @@ const utilities = require("./utilities");
|
|
|
15
15
|
* import * as pulumi from "@pulumi/pulumi";
|
|
16
16
|
* import * as sdm from "@pierskarsenbarg/sdm";
|
|
17
17
|
*
|
|
18
|
-
* const testProxyClusterKey = new sdm.ProxyClusterKey("
|
|
18
|
+
* const testProxyClusterKey = new sdm.ProxyClusterKey("test_proxy_cluster_key", {proxyClusterId: "n-12345123"});
|
|
19
19
|
* ```
|
|
20
20
|
* This resource can be imported using the import command.
|
|
21
21
|
*
|
package/remoteIdentity.d.ts
CHANGED
|
@@ -2,6 +2,19 @@ import * as pulumi from "@pulumi/pulumi";
|
|
|
2
2
|
/**
|
|
3
3
|
* RemoteIdentities define the username to be used for a specific account
|
|
4
4
|
* when connecting to a remote resource using that group.
|
|
5
|
+
* ## Example Usage
|
|
6
|
+
*
|
|
7
|
+
* ```typescript
|
|
8
|
+
* import * as pulumi from "@pulumi/pulumi";
|
|
9
|
+
* import * as sdm from "@pierskarsenbarg/sdm";
|
|
10
|
+
*
|
|
11
|
+
* const user = new sdm.RemoteIdentity("user", {
|
|
12
|
+
* id: "i-0900909",
|
|
13
|
+
* username: "user",
|
|
14
|
+
* });
|
|
15
|
+
* ```
|
|
16
|
+
* This resource can be imported using the import command.
|
|
17
|
+
*
|
|
5
18
|
* ## Import
|
|
6
19
|
*
|
|
7
20
|
* A RemoteIdentity can be imported using the id, e.g.,
|
package/remoteIdentity.js
CHANGED
|
@@ -8,6 +8,19 @@ const utilities = require("./utilities");
|
|
|
8
8
|
/**
|
|
9
9
|
* RemoteIdentities define the username to be used for a specific account
|
|
10
10
|
* when connecting to a remote resource using that group.
|
|
11
|
+
* ## Example Usage
|
|
12
|
+
*
|
|
13
|
+
* ```typescript
|
|
14
|
+
* import * as pulumi from "@pulumi/pulumi";
|
|
15
|
+
* import * as sdm from "@pierskarsenbarg/sdm";
|
|
16
|
+
*
|
|
17
|
+
* const user = new sdm.RemoteIdentity("user", {
|
|
18
|
+
* id: "i-0900909",
|
|
19
|
+
* username: "user",
|
|
20
|
+
* });
|
|
21
|
+
* ```
|
|
22
|
+
* This resource can be imported using the import command.
|
|
23
|
+
*
|
|
11
24
|
* ## Import
|
|
12
25
|
*
|
|
13
26
|
* A RemoteIdentity can be imported using the id, e.g.,
|
package/remoteIdentity.js.map
CHANGED
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"remoteIdentity.js","sourceRoot":"","sources":["../remoteIdentity.ts"],"names":[],"mappings":";AAAA,sEAAsE;AACtE,iFAAiF;;;AAEjF,yCAAyC;AACzC,yCAAyC;AAEzC
|
|
1
|
+
{"version":3,"file":"remoteIdentity.js","sourceRoot":"","sources":["../remoteIdentity.ts"],"names":[],"mappings":";AAAA,sEAAsE;AACtE,iFAAiF;;;AAEjF,yCAAyC;AACzC,yCAAyC;AAEzC;;;;;;;;;;;;;;;;;;;;;;;GAuBG;AACH,MAAa,cAAe,SAAQ,MAAM,CAAC,cAAc;IACrD;;;;;;;;OAQG;IACI,MAAM,CAAC,GAAG,CAAC,IAAY,EAAE,EAA2B,EAAE,KAA2B,EAAE,IAAmC;QACzH,OAAO,IAAI,cAAc,CAAC,IAAI,EAAO,KAAK,EAAE,EAAE,GAAG,IAAI,EAAE,EAAE,EAAE,EAAE,EAAE,CAAC,CAAC;IACrE,CAAC;IAKD;;;OAGG;IACI,MAAM,CAAC,UAAU,CAAC,GAAQ;QAC7B,IAAI,GAAG,KAAK,SAAS,IAAI,GAAG,KAAK,IAAI,EAAE;YACnC,OAAO,KAAK,CAAC;SAChB;QACD,OAAO,GAAG,CAAC,cAAc,CAAC,KAAK,cAAc,CAAC,YAAY,CAAC;IAC/D,CAAC;IAuBD,YAAY,IAAY,EAAE,WAAsD,EAAE,IAAmC;QACjH,IAAI,cAAc,GAAkB,EAAE,CAAC;QACvC,IAAI,GAAG,IAAI,IAAI,EAAE,CAAC;QAClB,IAAI,IAAI,CAAC,EAAE,EAAE;YACT,MAAM,KAAK,GAAG,WAA8C,CAAC;YAC7D,cAAc,CAAC,WAAW,CAAC,GAAG,KAAK,EAAE,SAAS,CAAC;YAC/C,cAAc,CAAC,uBAAuB,CAAC,GAAG,KAAK,EAAE,qBAAqB,CAAC;YACvE,cAAc,CAAC,UAAU,CAAC,GAAG,KAAK,EAAE,QAAQ,CAAC;SAChD;aAAM;YACH,MAAM,IAAI,GAAG,WAA6C,CAAC;YAC3D,IAAI,IAAI,EAAE,SAAS,KAAK,SAAS,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE;gBAC5C,MAAM,IAAI,KAAK,CAAC,uCAAuC,CAAC,CAAC;aAC5D;YACD,IAAI,IAAI,EAAE,qBAAqB,KAAK,SAAS,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE;gBACxD,MAAM,IAAI,KAAK,CAAC,mDAAmD,CAAC,CAAC;aACxE;YACD,IAAI,IAAI,EAAE,QAAQ,KAAK,SAAS,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE;gBAC3C,MAAM,IAAI,KAAK,CAAC,sCAAsC,CAAC,CAAC;aAC3D;YACD,cAAc,CAAC,WAAW,CAAC,GAAG,IAAI,EAAE,SAAS,CAAC;YAC9C,cAAc,CAAC,uBAAuB,CAAC,GAAG,IAAI,EAAE,qBAAqB,CAAC;YACtE,cAAc,CAAC,UAAU,CAAC,GAAG,IAAI,EAAE,QAAQ,CAAC;SAC/C;QACD,IAAI,GAAG,MAAM,CAAC,YAAY,CAAC,SAAS,CAAC,oBAAoB,EAAE,EAAE,IAAI,CAAC,CAAC;QACnE,KAAK,CAAC,cAAc,CAAC,YAAY,EAAE,IAAI,EAAE,cAAc,EAAE,IAAI,CAAC,CAAC;IACnE,CAAC;;AA1EL,wCA2EC;AA7DG,gBAAgB;AACO,2BAAY,GAAG,yCAAyC,CAAC"}
|
package/role.d.ts
CHANGED
|
@@ -9,63 +9,75 @@ import * as pulumi from "@pulumi/pulumi";
|
|
|
9
9
|
* import * as pulumi from "@pulumi/pulumi";
|
|
10
10
|
* import * as sdm from "@pierskarsenbarg/sdm";
|
|
11
11
|
*
|
|
12
|
-
* const engineers = new sdm.Role("engineers", {
|
|
13
|
-
*
|
|
14
|
-
* }});
|
|
15
|
-
* const example_role = new sdm.Role("example-role", {accessRules: JSON.stringify([
|
|
16
|
-
* {
|
|
17
|
-
* tags: {
|
|
18
|
-
* env: "staging",
|
|
19
|
-
* },
|
|
20
|
-
* },
|
|
21
|
-
* {
|
|
22
|
-
* type: "postgres",
|
|
23
|
-
* tags: {
|
|
24
|
-
* region: "us-west",
|
|
25
|
-
* env: "dev",
|
|
26
|
-
* },
|
|
27
|
-
* },
|
|
28
|
-
* {
|
|
29
|
-
* ids: ["rs-093e6f3061eb4dad"],
|
|
30
|
-
* },
|
|
31
|
-
* ])});
|
|
32
|
-
* const k8s_admin = new sdm.Role("k8s-admin", {accessRules: JSON.stringify([{
|
|
12
|
+
* const engineers = new sdm.Role("engineers", {
|
|
13
|
+
* name: "engineers",
|
|
33
14
|
* tags: {
|
|
34
|
-
*
|
|
15
|
+
* foo: "bar",
|
|
35
16
|
* },
|
|
36
|
-
*
|
|
37
|
-
*
|
|
38
|
-
*
|
|
17
|
+
* });
|
|
18
|
+
* const example_role = new sdm.Role("example-role", {
|
|
19
|
+
* name: "example-role",
|
|
20
|
+
* accessRules: JSON.stringify([
|
|
21
|
+
* {
|
|
22
|
+
* tags: {
|
|
23
|
+
* env: "staging",
|
|
24
|
+
* },
|
|
39
25
|
* },
|
|
40
|
-
*
|
|
41
|
-
*
|
|
42
|
-
*
|
|
43
|
-
*
|
|
44
|
-
*
|
|
26
|
+
* {
|
|
27
|
+
* type: "postgres",
|
|
28
|
+
* tags: {
|
|
29
|
+
* region: "us-west",
|
|
30
|
+
* env: "dev",
|
|
31
|
+
* },
|
|
32
|
+
* },
|
|
33
|
+
* {
|
|
34
|
+
* ids: ["rs-093e6f3061eb4dad"],
|
|
35
|
+
* },
|
|
36
|
+
* ]),
|
|
37
|
+
* });
|
|
38
|
+
* const k8s_admin = new sdm.Role("k8s-admin", {
|
|
39
|
+
* name: "k8s-admin",
|
|
40
|
+
* accessRules: JSON.stringify([{
|
|
45
41
|
* tags: {
|
|
46
|
-
* env: "
|
|
42
|
+
* env: "production",
|
|
47
43
|
* },
|
|
48
44
|
* privileges: {
|
|
49
45
|
* k8s: {
|
|
50
|
-
* groups: [
|
|
51
|
-
* "developers",
|
|
52
|
-
* "viewers",
|
|
53
|
-
* ],
|
|
46
|
+
* groups: ["system:masters"],
|
|
54
47
|
* },
|
|
55
48
|
* },
|
|
56
|
-
* },
|
|
57
|
-
*
|
|
58
|
-
*
|
|
59
|
-
*
|
|
60
|
-
*
|
|
49
|
+
* }]),
|
|
50
|
+
* });
|
|
51
|
+
* const k8s_developers = new sdm.Role("k8s-developers", {
|
|
52
|
+
* name: "k8s-developers",
|
|
53
|
+
* accessRules: JSON.stringify([
|
|
54
|
+
* {
|
|
55
|
+
* type: "amazon_eks",
|
|
56
|
+
* tags: {
|
|
57
|
+
* env: "dev",
|
|
58
|
+
* },
|
|
59
|
+
* privileges: {
|
|
60
|
+
* k8s: {
|
|
61
|
+
* groups: [
|
|
62
|
+
* "developers",
|
|
63
|
+
* "viewers",
|
|
64
|
+
* ],
|
|
65
|
+
* },
|
|
66
|
+
* },
|
|
61
67
|
* },
|
|
62
|
-
*
|
|
63
|
-
*
|
|
64
|
-
*
|
|
68
|
+
* {
|
|
69
|
+
* type: "kubernetes",
|
|
70
|
+
* tags: {
|
|
71
|
+
* region: "us-west",
|
|
72
|
+
* },
|
|
73
|
+
* privileges: {
|
|
74
|
+
* k8s: {
|
|
75
|
+
* groups: ["edit"],
|
|
76
|
+
* },
|
|
65
77
|
* },
|
|
66
78
|
* },
|
|
67
|
-
*
|
|
68
|
-
*
|
|
79
|
+
* ]),
|
|
80
|
+
* });
|
|
69
81
|
* ```
|
|
70
82
|
* This resource can be imported using the import command.
|
|
71
83
|
*
|