@pulumi/azuread 5.36.0 → 5.37.0

package/accessPackage.d.ts

@@ -0,0 +1,120 @@
+import * as pulumi from "@pulumi/pulumi";
+/**
+ * Manages an Access Package within Identity Governance in Azure Active Directory.
+ *
+ * ## API Permissions
+ *
+ * The following API permissions are required in order to use this resource.
+ *
+ * When authenticated with a service principal, this resource requires the following application role: `EntitlementManagement.ReadWrite.All`.
+ *
+ * When authenticated with a user principal, this resource requires one of the following directory roles: `Catalog owner`, `Access package manager` or `Global Administrator`
+ *
+ * ## Example Usage
+ *
+ * ```typescript
+ * import * as pulumi from "@pulumi/pulumi";
+ * import * as azuread from "@pulumi/azuread";
+ *
+ * const exampleAccessPackageCatalog = new azuread.AccessPackageCatalog("exampleAccessPackageCatalog", {
+ *     displayName: "example-catalog",
+ *     description: "Example catalog",
+ * });
+ * const exampleAccessPackage = new azuread.AccessPackage("exampleAccessPackage", {
+ *     catalogId: exampleAccessPackageCatalog.id,
+ *     displayName: "access-package",
+ *     description: "Access Package",
+ * });
+ * ```
+ *
+ * ## Import
+ *
+ * Access Packages can be imported using the `id`, e.g.
+ *
+ * ```sh
+ *  $ pulumi import azuread:index/accessPackage:AccessPackage example_package 00000000-0000-0000-0000-000000000000
+ * ```
+ */
+export declare class AccessPackage extends pulumi.CustomResource {
+    /**
+     * Get an existing AccessPackage resource's state with the given name, ID, and optional extra
+     * properties used to qualify the lookup.
+     *
+     * @param name The _unique_ name of the resulting resource.
+     * @param id The _unique_ provider ID of the resource to lookup.
+     * @param state Any extra arguments used during the lookup.
+     * @param opts Optional settings to control the behavior of the CustomResource.
+     */
+    static get(name: string, id: pulumi.Input<pulumi.ID>, state?: AccessPackageState, opts?: pulumi.CustomResourceOptions): AccessPackage;
+    /**
+     * Returns true if the given object is an instance of AccessPackage.  This is designed to work even
+     * when multiple copies of the Pulumi SDK have been loaded into the same process.
+     */
+    static isInstance(obj: any): obj is AccessPackage;
+    /**
+     * The ID of the Catalog this access package will be created in.
+     */
+    readonly catalogId: pulumi.Output<string>;
+    /**
+     * The description of the access package.
+     */
+    readonly description: pulumi.Output<string>;
+    /**
+     * The display name of the access package.
+     */
+    readonly displayName: pulumi.Output<string>;
+    /**
+     * Whether the access package is hidden from the requestor.
+     */
+    readonly hidden: pulumi.Output<boolean | undefined>;
+    /**
+     * Create a AccessPackage resource with the given unique name, arguments, and options.
+     *
+     * @param name The _unique_ name of the resource.
+     * @param args The arguments to use to populate this resource's properties.
+     * @param opts A bag of options that control this resource's behavior.
+     */
+    constructor(name: string, args: AccessPackageArgs, opts?: pulumi.CustomResourceOptions);
+}
+/**
+ * Input properties used for looking up and filtering AccessPackage resources.
+ */
+export interface AccessPackageState {
+    /**
+     * The ID of the Catalog this access package will be created in.
+     */
+    catalogId?: pulumi.Input<string>;
+    /**
+     * The description of the access package.
+     */
+    description?: pulumi.Input<string>;
+    /**
+     * The display name of the access package.
+     */
+    displayName?: pulumi.Input<string>;
+    /**
+     * Whether the access package is hidden from the requestor.
+     */
+    hidden?: pulumi.Input<boolean>;
+}
+/**
+ * The set of arguments for constructing a AccessPackage resource.
+ */
+export interface AccessPackageArgs {
+    /**
+     * The ID of the Catalog this access package will be created in.
+     */
+    catalogId: pulumi.Input<string>;
+    /**
+     * The description of the access package.
+     */
+    description: pulumi.Input<string>;
+    /**
+     * The display name of the access package.
+     */
+    displayName: pulumi.Input<string>;
+    /**
+     * Whether the access package is hidden from the requestor.
+     */
+    hidden?: pulumi.Input<boolean>;
+}

package/accessPackage.js

@@ -0,0 +1,100 @@
+"use strict";
+// *** WARNING: this file was generated by the Pulumi Terraform Bridge (tfgen) Tool. ***
+// *** Do not edit by hand unless you're certain you know what you are doing! ***
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.AccessPackage = void 0;
+const pulumi = require("@pulumi/pulumi");
+const utilities = require("./utilities");
+/**
+ * Manages an Access Package within Identity Governance in Azure Active Directory.
+ *
+ * ## API Permissions
+ *
+ * The following API permissions are required in order to use this resource.
+ *
+ * When authenticated with a service principal, this resource requires the following application role: `EntitlementManagement.ReadWrite.All`.
+ *
+ * When authenticated with a user principal, this resource requires one of the following directory roles: `Catalog owner`, `Access package manager` or `Global Administrator`
+ *
+ * ## Example Usage
+ *
+ * ```typescript
+ * import * as pulumi from "@pulumi/pulumi";
+ * import * as azuread from "@pulumi/azuread";
+ *
+ * const exampleAccessPackageCatalog = new azuread.AccessPackageCatalog("exampleAccessPackageCatalog", {
+ *     displayName: "example-catalog",
+ *     description: "Example catalog",
+ * });
+ * const exampleAccessPackage = new azuread.AccessPackage("exampleAccessPackage", {
+ *     catalogId: exampleAccessPackageCatalog.id,
+ *     displayName: "access-package",
+ *     description: "Access Package",
+ * });
+ * ```
+ *
+ * ## Import
+ *
+ * Access Packages can be imported using the `id`, e.g.
+ *
+ * ```sh
+ *  $ pulumi import azuread:index/accessPackage:AccessPackage example_package 00000000-0000-0000-0000-000000000000
+ * ```
+ */
+class AccessPackage extends pulumi.CustomResource {
+    /**
+     * Get an existing AccessPackage resource's state with the given name, ID, and optional extra
+     * properties used to qualify the lookup.
+     *
+     * @param name The _unique_ name of the resulting resource.
+     * @param id The _unique_ provider ID of the resource to lookup.
+     * @param state Any extra arguments used during the lookup.
+     * @param opts Optional settings to control the behavior of the CustomResource.
+     */
+    static get(name, id, state, opts) {
+        return new AccessPackage(name, state, Object.assign(Object.assign({}, opts), { id: id }));
+    }
+    /**
+     * Returns true if the given object is an instance of AccessPackage.  This is designed to work even
+     * when multiple copies of the Pulumi SDK have been loaded into the same process.
+     */
+    static isInstance(obj) {
+        if (obj === undefined || obj === null) {
+            return false;
+        }
+        return obj['__pulumiType'] === AccessPackage.__pulumiType;
+    }
+    constructor(name, argsOrState, opts) {
+        let resourceInputs = {};
+        opts = opts || {};
+        if (opts.id) {
+            const state = argsOrState;
+            resourceInputs["catalogId"] = state ? state.catalogId : undefined;
+            resourceInputs["description"] = state ? state.description : undefined;
+            resourceInputs["displayName"] = state ? state.displayName : undefined;
+            resourceInputs["hidden"] = state ? state.hidden : undefined;
+        }
+        else {
+            const args = argsOrState;
+            if ((!args || args.catalogId === undefined) && !opts.urn) {
+                throw new Error("Missing required property 'catalogId'");
+            }
+            if ((!args || args.description === undefined) && !opts.urn) {
+                throw new Error("Missing required property 'description'");
+            }
+            if ((!args || args.displayName === undefined) && !opts.urn) {
+                throw new Error("Missing required property 'displayName'");
+            }
+            resourceInputs["catalogId"] = args ? args.catalogId : undefined;
+            resourceInputs["description"] = args ? args.description : undefined;
+            resourceInputs["displayName"] = args ? args.displayName : undefined;
+            resourceInputs["hidden"] = args ? args.hidden : undefined;
+        }
+        opts = pulumi.mergeOptions(utilities.resourceOptsDefaults(), opts);
+        super(AccessPackage.__pulumiType, name, resourceInputs, opts);
+    }
+}
+exports.AccessPackage = AccessPackage;
+/** @internal */
+AccessPackage.__pulumiType = 'azuread:index/accessPackage:AccessPackage';
+//# sourceMappingURL=accessPackage.js.map

package/accessPackage.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"accessPackage.js","sourceRoot":"","sources":["../accessPackage.ts"],"names":[],"mappings":";AAAA,wFAAwF;AACxF,iFAAiF;;;AAEjF,yCAAyC;AACzC,yCAAyC;AAEzC;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GAmCG;AACH,MAAa,aAAc,SAAQ,MAAM,CAAC,cAAc;IACpD;;;;;;;;OAQG;IACI,MAAM,CAAC,GAAG,CAAC,IAAY,EAAE,EAA2B,EAAE,KAA0B,EAAE,IAAmC;QACxH,OAAO,IAAI,aAAa,CAAC,IAAI,EAAO,KAAK,kCAAO,IAAI,KAAE,EAAE,EAAE,EAAE,IAAG,CAAC;IACpE,CAAC;IAKD;;;OAGG;IACI,MAAM,CAAC,UAAU,CAAC,GAAQ;QAC7B,IAAI,GAAG,KAAK,SAAS,IAAI,GAAG,KAAK,IAAI,EAAE;YACnC,OAAO,KAAK,CAAC;SAChB;QACD,OAAO,GAAG,CAAC,cAAc,CAAC,KAAK,aAAa,CAAC,YAAY,CAAC;IAC9D,CAAC;IA2BD,YAAY,IAAY,EAAE,WAAoD,EAAE,IAAmC;QAC/G,IAAI,cAAc,GAAkB,EAAE,CAAC;QACvC,IAAI,GAAG,IAAI,IAAI,EAAE,CAAC;QAClB,IAAI,IAAI,CAAC,EAAE,EAAE;YACT,MAAM,KAAK,GAAG,WAA6C,CAAC;YAC5D,cAAc,CAAC,WAAW,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,SAAS,CAAC,CAAC,CAAC,SAAS,CAAC;YAClE,cAAc,CAAC,aAAa,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,WAAW,CAAC,CAAC,CAAC,SAAS,CAAC;YACtE,cAAc,CAAC,aAAa,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,WAAW,CAAC,CAAC,CAAC,SAAS,CAAC;YACtE,cAAc,CAAC,QAAQ,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC,CAAC,SAAS,CAAC;SAC/D;aAAM;YACH,MAAM,IAAI,GAAG,WAA4C,CAAC;YAC1D,IAAI,CAAC,CAAC,IAAI,IAAI,IAAI,CAAC,SAAS,KAAK,SAAS,CAAC,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE;gBACtD,MAAM,IAAI,KAAK,CAAC,uCAAuC,CAAC,CAAC;aAC5D;YACD,IAAI,CAAC,CAAC,IAAI,IAAI,IAAI,CAAC,WAAW,KAAK,SAAS,CAAC,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE;gBACxD,MAAM,IAAI,KAAK,CAAC,yCAAyC,CAAC,CAAC;aAC9D;YACD,IAAI,CAAC,CAAC,IAAI,IAAI,IAAI,CAAC,WAAW,KAAK,SAAS,CAAC,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE;gBACxD,MAAM,IAAI,KAAK,CAAC,yCAAyC,CAAC,CAAC;aAC9D;YACD,cAAc,CAAC,WAAW,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,SAAS,CAAC,CAAC,CAAC,SAAS,CAAC;YAChE,cAAc,CAAC,aAAa,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,WAAW,CAAC,CAAC,CAAC,SAAS,CAAC;YACpE,cAAc,CAAC,aAAa,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,WAAW,CAAC,CAAC,CAAC,SAAS,CAAC;YACpE,cAAc,CAAC,QAAQ,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC,CAAC,SAAS,CAAC;SAC7D;QACD,IAAI,GAAG,MAAM,CAAC,YAAY,CAAC,SAAS,CAAC,oBAAoB,EAAE,EAAE,IAAI,CAAC,CAAC;QACnE,KAAK,CAAC,aAAa,CAAC,YAAY,EAAE,IAAI,EAAE,cAAc,EAAE,IAAI,CAAC,CAAC;IAClE,CAAC;;AAhFL,sCAiFC;AAnEG,gBAAgB;AACO,0BAAY,GAAG,2CAA2C,CAAC"}

package/accessPackageAssignmentPolicy.d.ts

@@ -0,0 +1,229 @@
+import * as pulumi from "@pulumi/pulumi";
+import * as inputs from "./types/input";
+import * as outputs from "./types/output";
+/**
+ * Manages an assignment policy for an access package within Identity Governance in Azure Active Directory.
+ *
+ * ## API Permissions
+ *
+ * The following API permissions are required in order to use this resource.
+ *
+ * When authenticated with a service principal, this resource requires the following application role: `EntitlementManagement.ReadWrite.All`.
+ *
+ * When authenticated with a user principal, this resource requires `Global Administrator` directory role, or one of the `Catalog Owner` and `Access Package Manager` role in Idneity Governance.
+ *
+ * ## Example Usage
+ *
+ * ```typescript
+ * import * as pulumi from "@pulumi/pulumi";
+ * import * as azuread from "@pulumi/azuread";
+ *
+ * const exampleGroup = new azuread.Group("exampleGroup", {
+ *     displayName: "group-name",
+ *     securityEnabled: true,
+ * });
+ * const exampleAccessPackageCatalog = new azuread.AccessPackageCatalog("exampleAccessPackageCatalog", {
+ *     displayName: "example-catalog",
+ *     description: "Example catalog",
+ * });
+ * const exampleAccessPackage = new azuread.AccessPackage("exampleAccessPackage", {
+ *     catalogId: exampleAccessPackageCatalog.id,
+ *     displayName: "access-package",
+ *     description: "Access Package",
+ * });
+ * const test = new azuread.AccessPackageAssignmentPolicy("test", {
+ *     accessPackageId: azuread_access_package.test.id,
+ *     displayName: "assignment-policy",
+ *     description: "My assignment policy",
+ *     durationInDays: 90,
+ *     requestorSettings: {
+ *         scopeType: "AllExistingDirectoryMemberUsers",
+ *     },
+ *     approvalSettings: {
+ *         approvalRequired: true,
+ *         approvalStages: [{
+ *             approvalTimeoutInDays: 14,
+ *             primaryApprovers: [{
+ *                 objectId: azuread_group.test.object_id,
+ *                 subjectType: "groupMembers",
+ *             }],
+ *         }],
+ *     },
+ *     assignmentReviewSettings: {
+ *         enabled: true,
+ *         reviewFrequency: "weekly",
+ *         durationInDays: 3,
+ *         reviewType: "Self",
+ *         accessReviewTimeoutBehavior: "keepAccess",
+ *     },
+ *     questions: [{
+ *         text: {
+ *             defaultText: "hello, how are you?",
+ *         },
+ *     }],
+ * });
+ * ```
+ *
+ * ## Import
+ *
+ * An access package assignment policy can be imported using the ID, e.g.
+ *
+ * ```sh
+ *  $ pulumi import azuread:index/accessPackageAssignmentPolicy:AccessPackageAssignmentPolicy example 00000000-0000-0000-0000-000000000000
+ * ```
+ */
+export declare class AccessPackageAssignmentPolicy extends pulumi.CustomResource {
+    /**
+     * Get an existing AccessPackageAssignmentPolicy resource's state with the given name, ID, and optional extra
+     * properties used to qualify the lookup.
+     *
+     * @param name The _unique_ name of the resulting resource.
+     * @param id The _unique_ provider ID of the resource to lookup.
+     * @param state Any extra arguments used during the lookup.
+     * @param opts Optional settings to control the behavior of the CustomResource.
+     */
+    static get(name: string, id: pulumi.Input<pulumi.ID>, state?: AccessPackageAssignmentPolicyState, opts?: pulumi.CustomResourceOptions): AccessPackageAssignmentPolicy;
+    /**
+     * Returns true if the given object is an instance of AccessPackageAssignmentPolicy.  This is designed to work even
+     * when multiple copies of the Pulumi SDK have been loaded into the same process.
+     */
+    static isInstance(obj: any): obj is AccessPackageAssignmentPolicy;
+    /**
+     * The ID of the access package that will contain the policy.
+     */
+    readonly accessPackageId: pulumi.Output<string>;
+    /**
+     * An `approvalSettings` block to specify whether approvals are required and how they are obtained, as documented below.
+     */
+    readonly approvalSettings: pulumi.Output<outputs.AccessPackageAssignmentPolicyApprovalSettings | undefined>;
+    /**
+     * An `assignmentReviewSettings` block, to specify whether assignment review is needed and how it is conducted, as documented below.
+     */
+    readonly assignmentReviewSettings: pulumi.Output<outputs.AccessPackageAssignmentPolicyAssignmentReviewSettings | undefined>;
+    /**
+     * The description of the policy.
+     */
+    readonly description: pulumi.Output<string>;
+    /**
+     * The display name of the policy.
+     */
+    readonly displayName: pulumi.Output<string>;
+    /**
+     * How many days this assignment is valid for.
+     */
+    readonly durationInDays: pulumi.Output<number | undefined>;
+    /**
+     * The date that this assignment expires, formatted as an RFC3339 date string in UTC(e.g. 2018-01-01T01:02:03Z).
+     */
+    readonly expirationDate: pulumi.Output<string | undefined>;
+    /**
+     * Whether users will be able to request extension of their access to this package before their access expires.
+     */
+    readonly extensionEnabled: pulumi.Output<boolean | undefined>;
+    /**
+     * One or more `question` blocks for the requestor, as documented below.
+     */
+    readonly questions: pulumi.Output<outputs.AccessPackageAssignmentPolicyQuestion[] | undefined>;
+    /**
+     * A `requestorSettings` block to configure the users who can request access, as documented below.
+     */
+    readonly requestorSettings: pulumi.Output<outputs.AccessPackageAssignmentPolicyRequestorSettings | undefined>;
+    /**
+     * Create a AccessPackageAssignmentPolicy resource with the given unique name, arguments, and options.
+     *
+     * @param name The _unique_ name of the resource.
+     * @param args The arguments to use to populate this resource's properties.
+     * @param opts A bag of options that control this resource's behavior.
+     */
+    constructor(name: string, args: AccessPackageAssignmentPolicyArgs, opts?: pulumi.CustomResourceOptions);
+}
+/**
+ * Input properties used for looking up and filtering AccessPackageAssignmentPolicy resources.
+ */
+export interface AccessPackageAssignmentPolicyState {
+    /**
+     * The ID of the access package that will contain the policy.
+     */
+    accessPackageId?: pulumi.Input<string>;
+    /**
+     * An `approvalSettings` block to specify whether approvals are required and how they are obtained, as documented below.
+     */
+    approvalSettings?: pulumi.Input<inputs.AccessPackageAssignmentPolicyApprovalSettings>;
+    /**
+     * An `assignmentReviewSettings` block, to specify whether assignment review is needed and how it is conducted, as documented below.
+     */
+    assignmentReviewSettings?: pulumi.Input<inputs.AccessPackageAssignmentPolicyAssignmentReviewSettings>;
+    /**
+     * The description of the policy.
+     */
+    description?: pulumi.Input<string>;
+    /**
+     * The display name of the policy.
+     */
+    displayName?: pulumi.Input<string>;
+    /**
+     * How many days this assignment is valid for.
+     */
+    durationInDays?: pulumi.Input<number>;
+    /**
+     * The date that this assignment expires, formatted as an RFC3339 date string in UTC(e.g. 2018-01-01T01:02:03Z).
+     */
+    expirationDate?: pulumi.Input<string>;
+    /**
+     * Whether users will be able to request extension of their access to this package before their access expires.
+     */
+    extensionEnabled?: pulumi.Input<boolean>;
+    /**
+     * One or more `question` blocks for the requestor, as documented below.
+     */
+    questions?: pulumi.Input<pulumi.Input<inputs.AccessPackageAssignmentPolicyQuestion>[]>;
+    /**
+     * A `requestorSettings` block to configure the users who can request access, as documented below.
+     */
+    requestorSettings?: pulumi.Input<inputs.AccessPackageAssignmentPolicyRequestorSettings>;
+}
+/**
+ * The set of arguments for constructing a AccessPackageAssignmentPolicy resource.
+ */
+export interface AccessPackageAssignmentPolicyArgs {
+    /**
+     * The ID of the access package that will contain the policy.
+     */
+    accessPackageId: pulumi.Input<string>;
+    /**
+     * An `approvalSettings` block to specify whether approvals are required and how they are obtained, as documented below.
+     */
+    approvalSettings?: pulumi.Input<inputs.AccessPackageAssignmentPolicyApprovalSettings>;
+    /**
+     * An `assignmentReviewSettings` block, to specify whether assignment review is needed and how it is conducted, as documented below.
+     */
+    assignmentReviewSettings?: pulumi.Input<inputs.AccessPackageAssignmentPolicyAssignmentReviewSettings>;
+    /**
+     * The description of the policy.
+     */
+    description: pulumi.Input<string>;
+    /**
+     * The display name of the policy.
+     */
+    displayName: pulumi.Input<string>;
+    /**
+     * How many days this assignment is valid for.
+     */
+    durationInDays?: pulumi.Input<number>;
+    /**
+     * The date that this assignment expires, formatted as an RFC3339 date string in UTC(e.g. 2018-01-01T01:02:03Z).
+     */
+    expirationDate?: pulumi.Input<string>;
+    /**
+     * Whether users will be able to request extension of their access to this package before their access expires.
+     */
+    extensionEnabled?: pulumi.Input<boolean>;
+    /**
+     * One or more `question` blocks for the requestor, as documented below.
+     */
+    questions?: pulumi.Input<pulumi.Input<inputs.AccessPackageAssignmentPolicyQuestion>[]>;
+    /**
+     * A `requestorSettings` block to configure the users who can request access, as documented below.
+     */
+    requestorSettings?: pulumi.Input<inputs.AccessPackageAssignmentPolicyRequestorSettings>;
+}

package/accessPackageAssignmentPolicy.js

@@ -0,0 +1,147 @@
+"use strict";
+// *** WARNING: this file was generated by the Pulumi Terraform Bridge (tfgen) Tool. ***
+// *** Do not edit by hand unless you're certain you know what you are doing! ***
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.AccessPackageAssignmentPolicy = void 0;
+const pulumi = require("@pulumi/pulumi");
+const utilities = require("./utilities");
+/**
+ * Manages an assignment policy for an access package within Identity Governance in Azure Active Directory.
+ *
+ * ## API Permissions
+ *
+ * The following API permissions are required in order to use this resource.
+ *
+ * When authenticated with a service principal, this resource requires the following application role: `EntitlementManagement.ReadWrite.All`.
+ *
+ * When authenticated with a user principal, this resource requires `Global Administrator` directory role, or one of the `Catalog Owner` and `Access Package Manager` role in Idneity Governance.
+ *
+ * ## Example Usage
+ *
+ * ```typescript
+ * import * as pulumi from "@pulumi/pulumi";
+ * import * as azuread from "@pulumi/azuread";
+ *
+ * const exampleGroup = new azuread.Group("exampleGroup", {
+ *     displayName: "group-name",
+ *     securityEnabled: true,
+ * });
+ * const exampleAccessPackageCatalog = new azuread.AccessPackageCatalog("exampleAccessPackageCatalog", {
+ *     displayName: "example-catalog",
+ *     description: "Example catalog",
+ * });
+ * const exampleAccessPackage = new azuread.AccessPackage("exampleAccessPackage", {
+ *     catalogId: exampleAccessPackageCatalog.id,
+ *     displayName: "access-package",
+ *     description: "Access Package",
+ * });
+ * const test = new azuread.AccessPackageAssignmentPolicy("test", {
+ *     accessPackageId: azuread_access_package.test.id,
+ *     displayName: "assignment-policy",
+ *     description: "My assignment policy",
+ *     durationInDays: 90,
+ *     requestorSettings: {
+ *         scopeType: "AllExistingDirectoryMemberUsers",
+ *     },
+ *     approvalSettings: {
+ *         approvalRequired: true,
+ *         approvalStages: [{
+ *             approvalTimeoutInDays: 14,
+ *             primaryApprovers: [{
+ *                 objectId: azuread_group.test.object_id,
+ *                 subjectType: "groupMembers",
+ *             }],
+ *         }],
+ *     },
+ *     assignmentReviewSettings: {
+ *         enabled: true,
+ *         reviewFrequency: "weekly",
+ *         durationInDays: 3,
+ *         reviewType: "Self",
+ *         accessReviewTimeoutBehavior: "keepAccess",
+ *     },
+ *     questions: [{
+ *         text: {
+ *             defaultText: "hello, how are you?",
+ *         },
+ *     }],
+ * });
+ * ```
+ *
+ * ## Import
+ *
+ * An access package assignment policy can be imported using the ID, e.g.
+ *
+ * ```sh
+ *  $ pulumi import azuread:index/accessPackageAssignmentPolicy:AccessPackageAssignmentPolicy example 00000000-0000-0000-0000-000000000000
+ * ```
+ */
+class AccessPackageAssignmentPolicy extends pulumi.CustomResource {
+    /**
+     * Get an existing AccessPackageAssignmentPolicy resource's state with the given name, ID, and optional extra
+     * properties used to qualify the lookup.
+     *
+     * @param name The _unique_ name of the resulting resource.
+     * @param id The _unique_ provider ID of the resource to lookup.
+     * @param state Any extra arguments used during the lookup.
+     * @param opts Optional settings to control the behavior of the CustomResource.
+     */
+    static get(name, id, state, opts) {
+        return new AccessPackageAssignmentPolicy(name, state, Object.assign(Object.assign({}, opts), { id: id }));
+    }
+    /**
+     * Returns true if the given object is an instance of AccessPackageAssignmentPolicy.  This is designed to work even
+     * when multiple copies of the Pulumi SDK have been loaded into the same process.
+     */
+    static isInstance(obj) {
+        if (obj === undefined || obj === null) {
+            return false;
+        }
+        return obj['__pulumiType'] === AccessPackageAssignmentPolicy.__pulumiType;
+    }
+    constructor(name, argsOrState, opts) {
+        let resourceInputs = {};
+        opts = opts || {};
+        if (opts.id) {
+            const state = argsOrState;
+            resourceInputs["accessPackageId"] = state ? state.accessPackageId : undefined;
+            resourceInputs["approvalSettings"] = state ? state.approvalSettings : undefined;
+            resourceInputs["assignmentReviewSettings"] = state ? state.assignmentReviewSettings : undefined;
+            resourceInputs["description"] = state ? state.description : undefined;
+            resourceInputs["displayName"] = state ? state.displayName : undefined;
+            resourceInputs["durationInDays"] = state ? state.durationInDays : undefined;
+            resourceInputs["expirationDate"] = state ? state.expirationDate : undefined;
+            resourceInputs["extensionEnabled"] = state ? state.extensionEnabled : undefined;
+            resourceInputs["questions"] = state ? state.questions : undefined;
+            resourceInputs["requestorSettings"] = state ? state.requestorSettings : undefined;
+        }
+        else {
+            const args = argsOrState;
+            if ((!args || args.accessPackageId === undefined) && !opts.urn) {
+                throw new Error("Missing required property 'accessPackageId'");
+            }
+            if ((!args || args.description === undefined) && !opts.urn) {
+                throw new Error("Missing required property 'description'");
+            }
+            if ((!args || args.displayName === undefined) && !opts.urn) {
+                throw new Error("Missing required property 'displayName'");
+            }
+            resourceInputs["accessPackageId"] = args ? args.accessPackageId : undefined;
+            resourceInputs["approvalSettings"] = args ? args.approvalSettings : undefined;
+            resourceInputs["assignmentReviewSettings"] = args ? args.assignmentReviewSettings : undefined;
+            resourceInputs["description"] = args ? args.description : undefined;
+            resourceInputs["displayName"] = args ? args.displayName : undefined;
+            resourceInputs["durationInDays"] = args ? args.durationInDays : undefined;
+            resourceInputs["expirationDate"] = args ? args.expirationDate : undefined;
+            resourceInputs["extensionEnabled"] = args ? args.extensionEnabled : undefined;
+            resourceInputs["questions"] = args ? args.questions : undefined;
+            resourceInputs["requestorSettings"] = args ? args.requestorSettings : undefined;
+        }
+        opts = pulumi.mergeOptions(utilities.resourceOptsDefaults(), opts);
+        super(AccessPackageAssignmentPolicy.__pulumiType, name, resourceInputs, opts);
+    }
+}
+exports.AccessPackageAssignmentPolicy = AccessPackageAssignmentPolicy;
+/** @internal */
+AccessPackageAssignmentPolicy.__pulumiType = 'azuread:index/accessPackageAssignmentPolicy:AccessPackageAssignmentPolicy';
+//# sourceMappingURL=accessPackageAssignmentPolicy.js.map

package/accessPackageAssignmentPolicy.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"accessPackageAssignmentPolicy.js","sourceRoot":"","sources":["../accessPackageAssignmentPolicy.ts"],"names":[],"mappings":";AAAA,wFAAwF;AACxF,iFAAiF;;;AAEjF,yCAAyC;AAGzC,yCAAyC;AAEzC;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GAsEG;AACH,MAAa,6BAA8B,SAAQ,MAAM,CAAC,cAAc;IACpE;;;;;;;;OAQG;IACI,MAAM,CAAC,GAAG,CAAC,IAAY,EAAE,EAA2B,EAAE,KAA0C,EAAE,IAAmC;QACxI,OAAO,IAAI,6BAA6B,CAAC,IAAI,EAAO,KAAK,kCAAO,IAAI,KAAE,EAAE,EAAE,EAAE,IAAG,CAAC;IACpF,CAAC;IAKD;;;OAGG;IACI,MAAM,CAAC,UAAU,CAAC,GAAQ;QAC7B,IAAI,GAAG,KAAK,SAAS,IAAI,GAAG,KAAK,IAAI,EAAE;YACnC,OAAO,KAAK,CAAC;SAChB;QACD,OAAO,GAAG,CAAC,cAAc,CAAC,KAAK,6BAA6B,CAAC,YAAY,CAAC;IAC9E,CAAC;IAmDD,YAAY,IAAY,EAAE,WAAoF,EAAE,IAAmC;QAC/I,IAAI,cAAc,GAAkB,EAAE,CAAC;QACvC,IAAI,GAAG,IAAI,IAAI,EAAE,CAAC;QAClB,IAAI,IAAI,CAAC,EAAE,EAAE;YACT,MAAM,KAAK,GAAG,WAA6D,CAAC;YAC5E,cAAc,CAAC,iBAAiB,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,eAAe,CAAC,CAAC,CAAC,SAAS,CAAC;YAC9E,cAAc,CAAC,kBAAkB,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,gBAAgB,CAAC,CAAC,CAAC,SAAS,CAAC;YAChF,cAAc,CAAC,0BAA0B,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,wBAAwB,CAAC,CAAC,CAAC,SAAS,CAAC;YAChG,cAAc,CAAC,aAAa,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,WAAW,CAAC,CAAC,CAAC,SAAS,CAAC;YACtE,cAAc,CAAC,aAAa,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,WAAW,CAAC,CAAC,CAAC,SAAS,CAAC;YACtE,cAAc,CAAC,gBAAgB,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,cAAc,CAAC,CAAC,CAAC,SAAS,CAAC;YAC5E,cAAc,CAAC,gBAAgB,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,cAAc,CAAC,CAAC,CAAC,SAAS,CAAC;YAC5E,cAAc,CAAC,kBAAkB,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,gBAAgB,CAAC,CAAC,CAAC,SAAS,CAAC;YAChF,cAAc,CAAC,WAAW,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,SAAS,CAAC,CAAC,CAAC,SAAS,CAAC;YAClE,cAAc,CAAC,mBAAmB,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,iBAAiB,CAAC,CAAC,CAAC,SAAS,CAAC;SACrF;aAAM;YACH,MAAM,IAAI,GAAG,WAA4D,CAAC;YAC1E,IAAI,CAAC,CAAC,IAAI,IAAI,IAAI,CAAC,eAAe,KAAK,SAAS,CAAC,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE;gBAC5D,MAAM,IAAI,KAAK,CAAC,6CAA6C,CAAC,CAAC;aAClE;YACD,IAAI,CAAC,CAAC,IAAI,IAAI,IAAI,CAAC,WAAW,KAAK,SAAS,CAAC,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE;gBACxD,MAAM,IAAI,KAAK,CAAC,yCAAyC,CAAC,CAAC;aAC9D;YACD,IAAI,CAAC,CAAC,IAAI,IAAI,IAAI,CAAC,WAAW,KAAK,SAAS,CAAC,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE;gBACxD,MAAM,IAAI,KAAK,CAAC,yCAAyC,CAAC,CAAC;aAC9D;YACD,cAAc,CAAC,iBAAiB,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,eAAe,CAAC,CAAC,CAAC,SAAS,CAAC;YAC5E,cAAc,CAAC,kBAAkB,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,gBAAgB,CAAC,CAAC,CAAC,SAAS,CAAC;YAC9E,cAAc,CAAC,0BAA0B,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,wBAAwB,CAAC,CAAC,CAAC,SAAS,CAAC;YAC9F,cAAc,CAAC,aAAa,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,WAAW,CAAC,CAAC,CAAC,SAAS,CAAC;YACpE,cAAc,CAAC,aAAa,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,WAAW,CAAC,CAAC,CAAC,SAAS,CAAC;YACpE,cAAc,CAAC,gBAAgB,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,cAAc,CAAC,CAAC,CAAC,SAAS,CAAC;YAC1E,cAAc,CAAC,gBAAgB,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,cAAc,CAAC,CAAC,CAAC,SAAS,CAAC;YAC1E,cAAc,CAAC,kBAAkB,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,gBAAgB,CAAC,CAAC,CAAC,SAAS,CAAC;YAC9E,cAAc,CAAC,WAAW,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,SAAS,CAAC,CAAC,CAAC,SAAS,CAAC;YAChE,cAAc,CAAC,mBAAmB,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,iBAAiB,CAAC,CAAC,CAAC,SAAS,CAAC;SACnF;QACD,IAAI,GAAG,MAAM,CAAC,YAAY,CAAC,SAAS,CAAC,oBAAoB,EAAE,EAAE,IAAI,CAAC,CAAC;QACnE,KAAK,CAAC,6BAA6B,CAAC,YAAY,EAAE,IAAI,EAAE,cAAc,EAAE,IAAI,CAAC,CAAC;IAClF,CAAC;;AApHL,sEAqHC;AAvGG,gBAAgB;AACO,0CAAY,GAAG,2EAA2E,CAAC"}