@pulumi/cloudflare 5.50.0-alpha.1744436206 → 6.0.0

package/zeroTrustRiskBehavior.d.ts

@@ -2,7 +2,22 @@ import * as pulumi from "@pulumi/pulumi";
 import * as inputs from "./types/input";
 import * as outputs from "./types/output";
 /**
- * The [Risk Behavior](https://developers.cloudflare.com/cloudflare-one/insights/risk-score/) resource allows you to configure Cloudflare Risk Behaviors for an account.
+ * ## Example Usage
+ *
+ * ```typescript
+ * import * as pulumi from "@pulumi/pulumi";
+ * import * as cloudflare from "@pulumi/cloudflare";
+ *
+ * const exampleZeroTrustRiskBehavior = new cloudflare.ZeroTrustRiskBehavior("example_zero_trust_risk_behavior", {
+ *     accountId: "account_id",
+ *     behaviors: {
+ *         foo: {
+ *             enabled: true,
+ *             riskLevel: "low",
+ *         },
+ *     },
+ * });
+ * ```
  */
 export declare class ZeroTrustRiskBehavior extends pulumi.CustomResource {
     /**
@@ -20,14 +35,10 @@ export declare class ZeroTrustRiskBehavior extends pulumi.CustomResource {
      * when multiple copies of the Pulumi SDK have been loaded into the same process.
      */
     static isInstance(obj: any): obj is ZeroTrustRiskBehavior;
-    /**
-     * The account identifier to target for the resource.
-     */
     readonly accountId: pulumi.Output<string>;
-    /**
-     * Zero Trust risk behaviors configured on this account
-     */
-    readonly behaviors: pulumi.Output<outputs.ZeroTrustRiskBehaviorBehavior[] | undefined>;
+    readonly behaviors: pulumi.Output<{
+        [key: string]: outputs.ZeroTrustRiskBehaviorBehaviors;
+    }>;
     /**
      * Create a ZeroTrustRiskBehavior resource with the given unique name, arguments, and options.
      *
@@ -41,25 +52,17 @@ export declare class ZeroTrustRiskBehavior extends pulumi.CustomResource {
  * Input properties used for looking up and filtering ZeroTrustRiskBehavior resources.
  */
 export interface ZeroTrustRiskBehaviorState {
-    /**
-     * The account identifier to target for the resource.
-     */
     accountId?: pulumi.Input<string>;
-    /**
-     * Zero Trust risk behaviors configured on this account
-     */
-    behaviors?: pulumi.Input<pulumi.Input<inputs.ZeroTrustRiskBehaviorBehavior>[]>;
+    behaviors?: pulumi.Input<{
+        [key: string]: pulumi.Input<inputs.ZeroTrustRiskBehaviorBehaviors>;
+    }>;
 }
 /**
  * The set of arguments for constructing a ZeroTrustRiskBehavior resource.
  */
 export interface ZeroTrustRiskBehaviorArgs {
-    /**
-     * The account identifier to target for the resource.
-     */
     accountId: pulumi.Input<string>;
-    /**
-     * Zero Trust risk behaviors configured on this account
-     */
-    behaviors?: pulumi.Input<pulumi.Input<inputs.ZeroTrustRiskBehaviorBehavior>[]>;
+    behaviors: pulumi.Input<{
+        [key: string]: pulumi.Input<inputs.ZeroTrustRiskBehaviorBehaviors>;
+    }>;
 }

package/zeroTrustRiskBehavior.js

@@ -6,7 +6,22 @@ exports.ZeroTrustRiskBehavior = void 0;
 const pulumi = require("@pulumi/pulumi");
 const utilities = require("./utilities");
 /**
- * The [Risk Behavior](https://developers.cloudflare.com/cloudflare-one/insights/risk-score/) resource allows you to configure Cloudflare Risk Behaviors for an account.
+ * ## Example Usage
+ *
+ * ```typescript
+ * import * as pulumi from "@pulumi/pulumi";
+ * import * as cloudflare from "@pulumi/cloudflare";
+ *
+ * const exampleZeroTrustRiskBehavior = new cloudflare.ZeroTrustRiskBehavior("example_zero_trust_risk_behavior", {
+ *     accountId: "account_id",
+ *     behaviors: {
+ *         foo: {
+ *             enabled: true,
+ *             riskLevel: "low",
+ *         },
+ *     },
+ * });
+ * ```
  */
 class ZeroTrustRiskBehavior extends pulumi.CustomResource {
     /**
@@ -44,10 +59,15 @@ class ZeroTrustRiskBehavior extends pulumi.CustomResource {
             if ((!args || args.accountId === undefined) && !opts.urn) {
                 throw new Error("Missing required property 'accountId'");
             }
+            if ((!args || args.behaviors === undefined) && !opts.urn) {
+                throw new Error("Missing required property 'behaviors'");
+            }
             resourceInputs["accountId"] = args ? args.accountId : undefined;
             resourceInputs["behaviors"] = args ? args.behaviors : undefined;
         }
         opts = pulumi.mergeOptions(utilities.resourceOptsDefaults(), opts);
+        const aliasOpts = { aliases: [{ type: "cloudflare:index/riskBehavior:RiskBehavior" }] };
+        opts = pulumi.mergeOptions(opts, aliasOpts);
         super(ZeroTrustRiskBehavior.__pulumiType, name, resourceInputs, opts);
     }
 }

package/zeroTrustRiskBehavior.js.map

@@ -1 +1 @@
-{"version":3,"file":"zeroTrustRiskBehavior.js","sourceRoot":"","sources":["../zeroTrustRiskBehavior.ts"],"names":[],"mappings":";AAAA,wFAAwF;AACxF,iFAAiF;;;AAEjF,yCAAyC;AAGzC,yCAAyC;AAEzC;;GAEG;AACH,MAAa,qBAAsB,SAAQ,MAAM,CAAC,cAAc;IAC5D;;;;;;;;OAQG;IACI,MAAM,CAAC,GAAG,CAAC,IAAY,EAAE,EAA2B,EAAE,KAAkC,EAAE,IAAmC;QAChI,OAAO,IAAI,qBAAqB,CAAC,IAAI,EAAO,KAAK,kCAAO,IAAI,KAAE,EAAE,EAAE,EAAE,IAAG,CAAC;IAC5E,CAAC;IAKD;;;OAGG;IACI,MAAM,CAAC,UAAU,CAAC,GAAQ;QAC7B,IAAI,GAAG,KAAK,SAAS,IAAI,GAAG,KAAK,IAAI,EAAE;YACnC,OAAO,KAAK,CAAC;SAChB;QACD,OAAO,GAAG,CAAC,cAAc,CAAC,KAAK,qBAAqB,CAAC,YAAY,CAAC;IACtE,CAAC;IAmBD,YAAY,IAAY,EAAE,WAAoE,EAAE,IAAmC;QAC/H,IAAI,cAAc,GAAkB,EAAE,CAAC;QACvC,IAAI,GAAG,IAAI,IAAI,EAAE,CAAC;QAClB,IAAI,IAAI,CAAC,EAAE,EAAE;YACT,MAAM,KAAK,GAAG,WAAqD,CAAC;YACpE,cAAc,CAAC,WAAW,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,SAAS,CAAC,CAAC,CAAC,SAAS,CAAC;YAClE,cAAc,CAAC,WAAW,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,SAAS,CAAC,CAAC,CAAC,SAAS,CAAC;SACrE;aAAM;YACH,MAAM,IAAI,GAAG,WAAoD,CAAC;YAClE,IAAI,CAAC,CAAC,IAAI,IAAI,IAAI,CAAC,SAAS,KAAK,SAAS,CAAC,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE;gBACtD,MAAM,IAAI,KAAK,CAAC,uCAAuC,CAAC,CAAC;aAC5D;YACD,cAAc,CAAC,WAAW,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,SAAS,CAAC,CAAC,CAAC,SAAS,CAAC;YAChE,cAAc,CAAC,WAAW,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,SAAS,CAAC,CAAC,CAAC,SAAS,CAAC;SACnE;QACD,IAAI,GAAG,MAAM,CAAC,YAAY,CAAC,SAAS,CAAC,oBAAoB,EAAE,EAAE,IAAI,CAAC,CAAC;QACnE,KAAK,CAAC,qBAAqB,CAAC,YAAY,EAAE,IAAI,EAAE,cAAc,EAAE,IAAI,CAAC,CAAC;IAC1E,CAAC;;AA9DL,sDA+DC;AAjDG,gBAAgB;AACO,kCAAY,GAAG,8DAA8D,CAAC"}
+{"version":3,"file":"zeroTrustRiskBehavior.js","sourceRoot":"","sources":["../zeroTrustRiskBehavior.ts"],"names":[],"mappings":";AAAA,wFAAwF;AACxF,iFAAiF;;;AAEjF,yCAAyC;AAGzC,yCAAyC;AAEzC;;;;;;;;;;;;;;;;;GAiBG;AACH,MAAa,qBAAsB,SAAQ,MAAM,CAAC,cAAc;IAC5D;;;;;;;;OAQG;IACI,MAAM,CAAC,GAAG,CAAC,IAAY,EAAE,EAA2B,EAAE,KAAkC,EAAE,IAAmC;QAChI,OAAO,IAAI,qBAAqB,CAAC,IAAI,EAAO,KAAK,kCAAO,IAAI,KAAE,EAAE,EAAE,EAAE,IAAG,CAAC;IAC5E,CAAC;IAKD;;;OAGG;IACI,MAAM,CAAC,UAAU,CAAC,GAAQ;QAC7B,IAAI,GAAG,KAAK,SAAS,IAAI,GAAG,KAAK,IAAI,EAAE;YACnC,OAAO,KAAK,CAAC;SAChB;QACD,OAAO,GAAG,CAAC,cAAc,CAAC,KAAK,qBAAqB,CAAC,YAAY,CAAC;IACtE,CAAC;IAaD,YAAY,IAAY,EAAE,WAAoE,EAAE,IAAmC;QAC/H,IAAI,cAAc,GAAkB,EAAE,CAAC;QACvC,IAAI,GAAG,IAAI,IAAI,EAAE,CAAC;QAClB,IAAI,IAAI,CAAC,EAAE,EAAE;YACT,MAAM,KAAK,GAAG,WAAqD,CAAC;YACpE,cAAc,CAAC,WAAW,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,SAAS,CAAC,CAAC,CAAC,SAAS,CAAC;YAClE,cAAc,CAAC,WAAW,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,SAAS,CAAC,CAAC,CAAC,SAAS,CAAC;SACrE;aAAM;YACH,MAAM,IAAI,GAAG,WAAoD,CAAC;YAClE,IAAI,CAAC,CAAC,IAAI,IAAI,IAAI,CAAC,SAAS,KAAK,SAAS,CAAC,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE;gBACtD,MAAM,IAAI,KAAK,CAAC,uCAAuC,CAAC,CAAC;aAC5D;YACD,IAAI,CAAC,CAAC,IAAI,IAAI,IAAI,CAAC,SAAS,KAAK,SAAS,CAAC,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE;gBACtD,MAAM,IAAI,KAAK,CAAC,uCAAuC,CAAC,CAAC;aAC5D;YACD,cAAc,CAAC,WAAW,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,SAAS,CAAC,CAAC,CAAC,SAAS,CAAC;YAChE,cAAc,CAAC,WAAW,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,SAAS,CAAC,CAAC,CAAC,SAAS,CAAC;SACnE;QACD,IAAI,GAAG,MAAM,CAAC,YAAY,CAAC,SAAS,CAAC,oBAAoB,EAAE,EAAE,IAAI,CAAC,CAAC;QACnE,MAAM,SAAS,GAAG,EAAE,OAAO,EAAE,CAAC,EAAE,IAAI,EAAE,4CAA4C,EAAE,CAAC,EAAE,CAAC;QACxF,IAAI,GAAG,MAAM,CAAC,YAAY,CAAC,IAAI,EAAE,SAAS,CAAC,CAAC;QAC5C,KAAK,CAAC,qBAAqB,CAAC,YAAY,EAAE,IAAI,EAAE,cAAc,EAAE,IAAI,CAAC,CAAC;IAC1E,CAAC;;AA7DL,sDA8DC;AAhDG,gBAAgB;AACO,kCAAY,GAAG,8DAA8D,CAAC"}

package/zeroTrustRiskScoringIntegration.d.ts

@@ -0,0 +1,135 @@
+import * as pulumi from "@pulumi/pulumi";
+/**
+ * ## Example Usage
+ *
+ * ```typescript
+ * import * as pulumi from "@pulumi/pulumi";
+ * import * as cloudflare from "@pulumi/cloudflare";
+ *
+ * const exampleZeroTrustRiskScoringIntegration = new cloudflare.ZeroTrustRiskScoringIntegration("example_zero_trust_risk_scoring_integration", {
+ *     accountId: "account_id",
+ *     integrationType: "Okta",
+ *     tenantUrl: "https://example.com",
+ *     referenceId: "reference_id",
+ * });
+ * ```
+ *
+ * ## Import
+ *
+ * ```sh
+ * $ pulumi import cloudflare:index/zeroTrustRiskScoringIntegration:ZeroTrustRiskScoringIntegration example '<account_id>/<integration_id>'
+ * ```
+ */
+export declare class ZeroTrustRiskScoringIntegration extends pulumi.CustomResource {
+    /**
+     * Get an existing ZeroTrustRiskScoringIntegration resource's state with the given name, ID, and optional extra
+     * properties used to qualify the lookup.
+     *
+     * @param name The _unique_ name of the resulting resource.
+     * @param id The _unique_ provider ID of the resource to lookup.
+     * @param state Any extra arguments used during the lookup.
+     * @param opts Optional settings to control the behavior of the CustomResource.
+     */
+    static get(name: string, id: pulumi.Input<pulumi.ID>, state?: ZeroTrustRiskScoringIntegrationState, opts?: pulumi.CustomResourceOptions): ZeroTrustRiskScoringIntegration;
+    /**
+     * Returns true if the given object is an instance of ZeroTrustRiskScoringIntegration.  This is designed to work even
+     * when multiple copies of the Pulumi SDK have been loaded into the same process.
+     */
+    static isInstance(obj: any): obj is ZeroTrustRiskScoringIntegration;
+    readonly accountId: pulumi.Output<string>;
+    /**
+     * The Cloudflare account tag.
+     */
+    readonly accountTag: pulumi.Output<string>;
+    /**
+     * Whether this integration is enabled. If disabled, no risk changes will be exported to the third-party.
+     */
+    readonly active: pulumi.Output<boolean | undefined>;
+    /**
+     * When the integration was created in RFC3339 format.
+     */
+    readonly createdAt: pulumi.Output<string>;
+    /**
+     * Available values: "Okta".
+     */
+    readonly integrationType: pulumi.Output<string>;
+    /**
+     * A reference id that can be supplied by the client. Currently this should be set to the Access-Okta IDP ID (a UUIDv4).
+     * https://developers.cloudflare.com/api/operations/access-identity-providers-get-an-access-identity-provider
+     */
+    readonly referenceId: pulumi.Output<string | undefined>;
+    /**
+     * The base url of the tenant, e.g. "https://tenant.okta.com"
+     */
+    readonly tenantUrl: pulumi.Output<string>;
+    /**
+     * The URL for the Shared Signals Framework configuration, e.g. "/.well-known/sse-configuration/{integration*uuid}/". https://openid.net/specs/openid-sse-framework-1*0.html#rfc.section.6.2.1
+     */
+    readonly wellKnownUrl: pulumi.Output<string>;
+    /**
+     * Create a ZeroTrustRiskScoringIntegration resource with the given unique name, arguments, and options.
+     *
+     * @param name The _unique_ name of the resource.
+     * @param args The arguments to use to populate this resource's properties.
+     * @param opts A bag of options that control this resource's behavior.
+     */
+    constructor(name: string, args: ZeroTrustRiskScoringIntegrationArgs, opts?: pulumi.CustomResourceOptions);
+}
+/**
+ * Input properties used for looking up and filtering ZeroTrustRiskScoringIntegration resources.
+ */
+export interface ZeroTrustRiskScoringIntegrationState {
+    accountId?: pulumi.Input<string>;
+    /**
+     * The Cloudflare account tag.
+     */
+    accountTag?: pulumi.Input<string>;
+    /**
+     * Whether this integration is enabled. If disabled, no risk changes will be exported to the third-party.
+     */
+    active?: pulumi.Input<boolean>;
+    /**
+     * When the integration was created in RFC3339 format.
+     */
+    createdAt?: pulumi.Input<string>;
+    /**
+     * Available values: "Okta".
+     */
+    integrationType?: pulumi.Input<string>;
+    /**
+     * A reference id that can be supplied by the client. Currently this should be set to the Access-Okta IDP ID (a UUIDv4).
+     * https://developers.cloudflare.com/api/operations/access-identity-providers-get-an-access-identity-provider
+     */
+    referenceId?: pulumi.Input<string>;
+    /**
+     * The base url of the tenant, e.g. "https://tenant.okta.com"
+     */
+    tenantUrl?: pulumi.Input<string>;
+    /**
+     * The URL for the Shared Signals Framework configuration, e.g. "/.well-known/sse-configuration/{integration*uuid}/". https://openid.net/specs/openid-sse-framework-1*0.html#rfc.section.6.2.1
+     */
+    wellKnownUrl?: pulumi.Input<string>;
+}
+/**
+ * The set of arguments for constructing a ZeroTrustRiskScoringIntegration resource.
+ */
+export interface ZeroTrustRiskScoringIntegrationArgs {
+    accountId: pulumi.Input<string>;
+    /**
+     * Whether this integration is enabled. If disabled, no risk changes will be exported to the third-party.
+     */
+    active?: pulumi.Input<boolean>;
+    /**
+     * Available values: "Okta".
+     */
+    integrationType: pulumi.Input<string>;
+    /**
+     * A reference id that can be supplied by the client. Currently this should be set to the Access-Okta IDP ID (a UUIDv4).
+     * https://developers.cloudflare.com/api/operations/access-identity-providers-get-an-access-identity-provider
+     */
+    referenceId?: pulumi.Input<string>;
+    /**
+     * The base url of the tenant, e.g. "https://tenant.okta.com"
+     */
+    tenantUrl: pulumi.Input<string>;
+}

package/{zeroTrustRiskScoreIntegration.js → zeroTrustRiskScoringIntegration.js}

@@ -2,15 +2,33 @@
 // *** WARNING: this file was generated by the Pulumi Terraform Bridge (tfgen) Tool. ***
 // *** Do not edit by hand unless you're certain you know what you are doing! ***
 Object.defineProperty(exports, "__esModule", { value: true });
-exports.ZeroTrustRiskScoreIntegration = void 0;
+exports.ZeroTrustRiskScoringIntegration = void 0;
 const pulumi = require("@pulumi/pulumi");
 const utilities = require("./utilities");
 /**
- * The [Risk Score Integration](https://developers.cloudflare.com/cloudflare-one/insights/risk-score/#send-risk-score-to-okta) resource allows you to transmit changes in User Risk Score to a specified vendor such as Okta.
+ * ## Example Usage
+ *
+ * ```typescript
+ * import * as pulumi from "@pulumi/pulumi";
+ * import * as cloudflare from "@pulumi/cloudflare";
+ *
+ * const exampleZeroTrustRiskScoringIntegration = new cloudflare.ZeroTrustRiskScoringIntegration("example_zero_trust_risk_scoring_integration", {
+ *     accountId: "account_id",
+ *     integrationType: "Okta",
+ *     tenantUrl: "https://example.com",
+ *     referenceId: "reference_id",
+ * });
+ * ```
+ *
+ * ## Import
+ *
+ * ```sh
+ * $ pulumi import cloudflare:index/zeroTrustRiskScoringIntegration:ZeroTrustRiskScoringIntegration example '<account_id>/<integration_id>'
+ * ```
  */
-class ZeroTrustRiskScoreIntegration extends pulumi.CustomResource {
+class ZeroTrustRiskScoringIntegration extends pulumi.CustomResource {
     /**
-     * Get an existing ZeroTrustRiskScoreIntegration resource's state with the given name, ID, and optional extra
+     * Get an existing ZeroTrustRiskScoringIntegration resource's state with the given name, ID, and optional extra
      * properties used to qualify the lookup.
      *
      * @param name The _unique_ name of the resulting resource.
@@ -19,17 +37,17 @@ class ZeroTrustRiskScoreIntegration extends pulumi.CustomResource {
      * @param opts Optional settings to control the behavior of the CustomResource.
      */
     static get(name, id, state, opts) {
-        return new ZeroTrustRiskScoreIntegration(name, state, Object.assign(Object.assign({}, opts), { id: id }));
+        return new ZeroTrustRiskScoringIntegration(name, state, Object.assign(Object.assign({}, opts), { id: id }));
     }
     /**
-     * Returns true if the given object is an instance of ZeroTrustRiskScoreIntegration.  This is designed to work even
+     * Returns true if the given object is an instance of ZeroTrustRiskScoringIntegration.  This is designed to work even
      * when multiple copies of the Pulumi SDK have been loaded into the same process.
      */
     static isInstance(obj) {
         if (obj === undefined || obj === null) {
             return false;
         }
-        return obj['__pulumiType'] === ZeroTrustRiskScoreIntegration.__pulumiType;
+        return obj['__pulumiType'] === ZeroTrustRiskScoringIntegration.__pulumiType;
     }
     constructor(name, argsOrState, opts) {
         let resourceInputs = {};
@@ -37,7 +55,9 @@ class ZeroTrustRiskScoreIntegration extends pulumi.CustomResource {
         if (opts.id) {
             const state = argsOrState;
             resourceInputs["accountId"] = state ? state.accountId : undefined;
+            resourceInputs["accountTag"] = state ? state.accountTag : undefined;
             resourceInputs["active"] = state ? state.active : undefined;
+            resourceInputs["createdAt"] = state ? state.createdAt : undefined;
             resourceInputs["integrationType"] = state ? state.integrationType : undefined;
             resourceInputs["referenceId"] = state ? state.referenceId : undefined;
             resourceInputs["tenantUrl"] = state ? state.tenantUrl : undefined;
@@ -59,13 +79,15 @@ class ZeroTrustRiskScoreIntegration extends pulumi.CustomResource {
             resourceInputs["integrationType"] = args ? args.integrationType : undefined;
             resourceInputs["referenceId"] = args ? args.referenceId : undefined;
             resourceInputs["tenantUrl"] = args ? args.tenantUrl : undefined;
+            resourceInputs["accountTag"] = undefined /*out*/;
+            resourceInputs["createdAt"] = undefined /*out*/;
             resourceInputs["wellKnownUrl"] = undefined /*out*/;
         }
         opts = pulumi.mergeOptions(utilities.resourceOptsDefaults(), opts);
-        super(ZeroTrustRiskScoreIntegration.__pulumiType, name, resourceInputs, opts);
+        super(ZeroTrustRiskScoringIntegration.__pulumiType, name, resourceInputs, opts);
     }
 }
-exports.ZeroTrustRiskScoreIntegration = ZeroTrustRiskScoreIntegration;
+exports.ZeroTrustRiskScoringIntegration = ZeroTrustRiskScoringIntegration;
 /** @internal */
-ZeroTrustRiskScoreIntegration.__pulumiType = 'cloudflare:index/zeroTrustRiskScoreIntegration:ZeroTrustRiskScoreIntegration';
-//# sourceMappingURL=zeroTrustRiskScoreIntegration.js.map
+ZeroTrustRiskScoringIntegration.__pulumiType = 'cloudflare:index/zeroTrustRiskScoringIntegration:ZeroTrustRiskScoringIntegration';
+//# sourceMappingURL=zeroTrustRiskScoringIntegration.js.map

package/zeroTrustRiskScoringIntegration.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"zeroTrustRiskScoringIntegration.js","sourceRoot":"","sources":["../zeroTrustRiskScoringIntegration.ts"],"names":[],"mappings":";AAAA,wFAAwF;AACxF,iFAAiF;;;AAEjF,yCAAyC;AACzC,yCAAyC;AAEzC;;;;;;;;;;;;;;;;;;;;GAoBG;AACH,MAAa,+BAAgC,SAAQ,MAAM,CAAC,cAAc;IACtE;;;;;;;;OAQG;IACI,MAAM,CAAC,GAAG,CAAC,IAAY,EAAE,EAA2B,EAAE,KAA4C,EAAE,IAAmC;QAC1I,OAAO,IAAI,+BAA+B,CAAC,IAAI,EAAO,KAAK,kCAAO,IAAI,KAAE,EAAE,EAAE,EAAE,IAAG,CAAC;IACtF,CAAC;IAKD;;;OAGG;IACI,MAAM,CAAC,UAAU,CAAC,GAAQ;QAC7B,IAAI,GAAG,KAAK,SAAS,IAAI,GAAG,KAAK,IAAI,EAAE;YACnC,OAAO,KAAK,CAAC;SAChB;QACD,OAAO,GAAG,CAAC,cAAc,CAAC,KAAK,+BAA+B,CAAC,YAAY,CAAC;IAChF,CAAC;IAyCD,YAAY,IAAY,EAAE,WAAwF,EAAE,IAAmC;QACnJ,IAAI,cAAc,GAAkB,EAAE,CAAC;QACvC,IAAI,GAAG,IAAI,IAAI,EAAE,CAAC;QAClB,IAAI,IAAI,CAAC,EAAE,EAAE;YACT,MAAM,KAAK,GAAG,WAA+D,CAAC;YAC9E,cAAc,CAAC,WAAW,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,SAAS,CAAC,CAAC,CAAC,SAAS,CAAC;YAClE,cAAc,CAAC,YAAY,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,UAAU,CAAC,CAAC,CAAC,SAAS,CAAC;YACpE,cAAc,CAAC,QAAQ,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC,CAAC,SAAS,CAAC;YAC5D,cAAc,CAAC,WAAW,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,SAAS,CAAC,CAAC,CAAC,SAAS,CAAC;YAClE,cAAc,CAAC,iBAAiB,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,eAAe,CAAC,CAAC,CAAC,SAAS,CAAC;YAC9E,cAAc,CAAC,aAAa,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,WAAW,CAAC,CAAC,CAAC,SAAS,CAAC;YACtE,cAAc,CAAC,WAAW,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,SAAS,CAAC,CAAC,CAAC,SAAS,CAAC;YAClE,cAAc,CAAC,cAAc,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,YAAY,CAAC,CAAC,CAAC,SAAS,CAAC;SAC3E;aAAM;YACH,MAAM,IAAI,GAAG,WAA8D,CAAC;YAC5E,IAAI,CAAC,CAAC,IAAI,IAAI,IAAI,CAAC,SAAS,KAAK,SAAS,CAAC,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE;gBACtD,MAAM,IAAI,KAAK,CAAC,uCAAuC,CAAC,CAAC;aAC5D;YACD,IAAI,CAAC,CAAC,IAAI,IAAI,IAAI,CAAC,eAAe,KAAK,SAAS,CAAC,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE;gBAC5D,MAAM,IAAI,KAAK,CAAC,6CAA6C,CAAC,CAAC;aAClE;YACD,IAAI,CAAC,CAAC,IAAI,IAAI,IAAI,CAAC,SAAS,KAAK,SAAS,CAAC,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE;gBACtD,MAAM,IAAI,KAAK,CAAC,uCAAuC,CAAC,CAAC;aAC5D;YACD,cAAc,CAAC,WAAW,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,SAAS,CAAC,CAAC,CAAC,SAAS,CAAC;YAChE,cAAc,CAAC,QAAQ,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC,CAAC,SAAS,CAAC;YAC1D,cAAc,CAAC,iBAAiB,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,eAAe,CAAC,CAAC,CAAC,SAAS,CAAC;YAC5E,cAAc,CAAC,aAAa,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,WAAW,CAAC,CAAC,CAAC,SAAS,CAAC;YACpE,cAAc,CAAC,WAAW,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,SAAS,CAAC,CAAC,CAAC,SAAS,CAAC;YAChE,cAAc,CAAC,YAAY,CAAC,GAAG,SAAS,CAAC,OAAO,CAAC;YACjD,cAAc,CAAC,WAAW,CAAC,GAAG,SAAS,CAAC,OAAO,CAAC;YAChD,cAAc,CAAC,cAAc,CAAC,GAAG,SAAS,CAAC,OAAO,CAAC;SACtD;QACD,IAAI,GAAG,MAAM,CAAC,YAAY,CAAC,SAAS,CAAC,oBAAoB,EAAE,EAAE,IAAI,CAAC,CAAC;QACnE,KAAK,CAAC,+BAA+B,CAAC,YAAY,EAAE,IAAI,EAAE,cAAc,EAAE,IAAI,CAAC,CAAC;IACpF,CAAC;;AAtGL,0EAuGC;AAzFG,gBAAgB;AACO,4CAAY,GAAG,kFAAkF,CAAC"}

package/zeroTrustTunnelCloudflared.d.ts

@@ -1,26 +1,25 @@
 import * as pulumi from "@pulumi/pulumi";
+import * as inputs from "./types/input";
+import * as outputs from "./types/output";
 /**
- * Tunnel exposes applications running on your local web server on any
- * network with an internet connection without manually adding DNS
- * records or configuring a firewall or router.
- *
  * ## Example Usage
  *
  * ```typescript
  * import * as pulumi from "@pulumi/pulumi";
  * import * as cloudflare from "@pulumi/cloudflare";
  *
- * const example = new cloudflare.ZeroTrustTunnelCloudflared("example", {
- *     accountId: "f037e56e89293a057740de681ac9abbe",
- *     name: "my-tunnel",
- *     secret: "AQIDBAUGBwgBAgMEBQYHCAECAwQFBgcIAQIDBAUGBwg=",
+ * const exampleZeroTrustTunnelCloudflared = new cloudflare.ZeroTrustTunnelCloudflared("example_zero_trust_tunnel_cloudflared", {
+ *     accountId: "699d98642c564d2e855e9661899b7252",
+ *     name: "blog",
+ *     configSrc: "local",
+ *     tunnelSecret: "AQIDBAUGBwgBAgMEBQYHCAECAwQFBgcIAQIDBAUGBwg=",
  * });
  * ```
  *
  * ## Import
  *
  * ```sh
- * $ pulumi import cloudflare:index/zeroTrustTunnelCloudflared:ZeroTrustTunnelCloudflared example <account_id>/<tunnel_id>
+ * $ pulumi import cloudflare:index/zeroTrustTunnelCloudflared:ZeroTrustTunnelCloudflared example '<account_id>/<tunnel_id>'
  * ```
  */
 export declare class ZeroTrustTunnelCloudflared extends pulumi.CustomResource {
@@ -40,29 +39,64 @@ export declare class ZeroTrustTunnelCloudflared extends pulumi.CustomResource {
      */
     static isInstance(obj: any): obj is ZeroTrustTunnelCloudflared;
     /**
-     * The account identifier to target for the resource. **Modifying this attribute will force creation of a new resource.**
+     * Cloudflare account ID
      */
     readonly accountId: pulumi.Output<string>;
     /**
-     * Usable CNAME for accessing the Tunnel.
+     * Cloudflare account ID
+     */
+    readonly accountTag: pulumi.Output<string>;
+    /**
+     * Indicates if this is a locally or remotely configured tunnel. If `local`, manage the tunnel using a YAML file on the origin machine. If `cloudflare`, manage the tunnel on the Zero Trust dashboard.
+     * Available values: "local", "cloudflare".
+     */
+    readonly configSrc: pulumi.Output<string>;
+    /**
+     * The Cloudflare Tunnel connections between your origin and Cloudflare's edge.
+     */
+    readonly connections: pulumi.Output<outputs.ZeroTrustTunnelCloudflaredConnection[]>;
+    /**
+     * Timestamp of when the tunnel established at least one connection to Cloudflare's edge. If `null`, the tunnel is inactive.
+     */
+    readonly connsActiveAt: pulumi.Output<string>;
+    /**
+     * Timestamp of when the tunnel became inactive (no connections to Cloudflare's edge). If `null`, the tunnel is active.
      */
-    readonly cname: pulumi.Output<string>;
+    readonly connsInactiveAt: pulumi.Output<string>;
     /**
-     * Indicates if this is a locally or remotely configured tunnel. If `local`, manage the tunnel using a YAML file on the origin machine. If `cloudflare`, manage the tunnel on the Zero Trust dashboard or using tunnel*config, tunnel*route or tunnel*virtual*network resources. Available values: `local`, `cloudflare`. **Modifying this attribute will force creation of a new resource.**
+     * Timestamp of when the resource was created.
      */
-    readonly configSrc: pulumi.Output<string | undefined>;
+    readonly createdAt: pulumi.Output<string>;
     /**
-     * A user-friendly name chosen when the tunnel is created. **Modifying this attribute will force creation of a new resource.**
+     * Timestamp of when the resource was deleted. If `null`, the resource has not been deleted.
+     */
+    readonly deletedAt: pulumi.Output<string>;
+    /**
+     * Metadata associated with the tunnel.
+     */
+    readonly metadata: pulumi.Output<string>;
+    /**
+     * A user-friendly name for a tunnel.
      */
     readonly name: pulumi.Output<string>;
     /**
-     * 32 or more bytes, encoded as a base64 string. The Create Argo Tunnel endpoint sets this as the tunnel's password. Anyone wishing to run the tunnel needs this password. **Modifying this attribute will force creation of a new resource.**
+     * If `true`, the tunnel can be configured remotely from the Zero Trust dashboard. If `false`, the tunnel must be configured locally on the origin machine.
+     */
+    readonly remoteConfig: pulumi.Output<boolean>;
+    /**
+     * The status of the tunnel. Valid values are `inactive` (tunnel has never been run), `degraded` (tunnel is active and able to serve traffic but in an unhealthy state), `healthy` (tunnel is active and able to serve traffic), or `down` (tunnel can not serve traffic as it has no connections to the Cloudflare Edge).
+     * Available values: "inactive", "degraded", "healthy", "down".
+     */
+    readonly status: pulumi.Output<string>;
+    /**
+     * The type of tunnel.
+     * Available values: "cfd*tunnel", "warp*connector", "warp", "magic", "ipSec", "gre", "cni".
      */
-    readonly secret: pulumi.Output<string>;
+    readonly tunType: pulumi.Output<string>;
     /**
-     * Token used by a connector to authenticate and run the tunnel.
+     * Sets the password required to run a locally-managed tunnel. Must be at least 32 bytes and encoded as a base64 string.
      */
-    readonly tunnelToken: pulumi.Output<string>;
+    readonly tunnelSecret: pulumi.Output<string | undefined>;
     /**
      * Create a ZeroTrustTunnelCloudflared resource with the given unique name, arguments, and options.
      *
@@ -77,48 +111,84 @@ export declare class ZeroTrustTunnelCloudflared extends pulumi.CustomResource {
  */
 export interface ZeroTrustTunnelCloudflaredState {
     /**
-     * The account identifier to target for the resource. **Modifying this attribute will force creation of a new resource.**
+     * Cloudflare account ID
      */
     accountId?: pulumi.Input<string>;
     /**
-     * Usable CNAME for accessing the Tunnel.
+     * Cloudflare account ID
      */
-    cname?: pulumi.Input<string>;
+    accountTag?: pulumi.Input<string>;
     /**
-     * Indicates if this is a locally or remotely configured tunnel. If `local`, manage the tunnel using a YAML file on the origin machine. If `cloudflare`, manage the tunnel on the Zero Trust dashboard or using tunnel*config, tunnel*route or tunnel*virtual*network resources. Available values: `local`, `cloudflare`. **Modifying this attribute will force creation of a new resource.**
+     * Indicates if this is a locally or remotely configured tunnel. If `local`, manage the tunnel using a YAML file on the origin machine. If `cloudflare`, manage the tunnel on the Zero Trust dashboard.
+     * Available values: "local", "cloudflare".
      */
     configSrc?: pulumi.Input<string>;
     /**
-     * A user-friendly name chosen when the tunnel is created. **Modifying this attribute will force creation of a new resource.**
+     * The Cloudflare Tunnel connections between your origin and Cloudflare's edge.
+     */
+    connections?: pulumi.Input<pulumi.Input<inputs.ZeroTrustTunnelCloudflaredConnection>[]>;
+    /**
+     * Timestamp of when the tunnel established at least one connection to Cloudflare's edge. If `null`, the tunnel is inactive.
+     */
+    connsActiveAt?: pulumi.Input<string>;
+    /**
+     * Timestamp of when the tunnel became inactive (no connections to Cloudflare's edge). If `null`, the tunnel is active.
+     */
+    connsInactiveAt?: pulumi.Input<string>;
+    /**
+     * Timestamp of when the resource was created.
+     */
+    createdAt?: pulumi.Input<string>;
+    /**
+     * Timestamp of when the resource was deleted. If `null`, the resource has not been deleted.
+     */
+    deletedAt?: pulumi.Input<string>;
+    /**
+     * Metadata associated with the tunnel.
+     */
+    metadata?: pulumi.Input<string>;
+    /**
+     * A user-friendly name for a tunnel.
      */
     name?: pulumi.Input<string>;
     /**
-     * 32 or more bytes, encoded as a base64 string. The Create Argo Tunnel endpoint sets this as the tunnel's password. Anyone wishing to run the tunnel needs this password. **Modifying this attribute will force creation of a new resource.**
+     * If `true`, the tunnel can be configured remotely from the Zero Trust dashboard. If `false`, the tunnel must be configured locally on the origin machine.
+     */
+    remoteConfig?: pulumi.Input<boolean>;
+    /**
+     * The status of the tunnel. Valid values are `inactive` (tunnel has never been run), `degraded` (tunnel is active and able to serve traffic but in an unhealthy state), `healthy` (tunnel is active and able to serve traffic), or `down` (tunnel can not serve traffic as it has no connections to the Cloudflare Edge).
+     * Available values: "inactive", "degraded", "healthy", "down".
+     */
+    status?: pulumi.Input<string>;
+    /**
+     * The type of tunnel.
+     * Available values: "cfd*tunnel", "warp*connector", "warp", "magic", "ipSec", "gre", "cni".
      */
-    secret?: pulumi.Input<string>;
+    tunType?: pulumi.Input<string>;
     /**
-     * Token used by a connector to authenticate and run the tunnel.
+     * Sets the password required to run a locally-managed tunnel. Must be at least 32 bytes and encoded as a base64 string.
      */
-    tunnelToken?: pulumi.Input<string>;
+    tunnelSecret?: pulumi.Input<string>;
 }
 /**
  * The set of arguments for constructing a ZeroTrustTunnelCloudflared resource.
  */
 export interface ZeroTrustTunnelCloudflaredArgs {
     /**
-     * The account identifier to target for the resource. **Modifying this attribute will force creation of a new resource.**
+     * Cloudflare account ID
      */
     accountId: pulumi.Input<string>;
     /**
-     * Indicates if this is a locally or remotely configured tunnel. If `local`, manage the tunnel using a YAML file on the origin machine. If `cloudflare`, manage the tunnel on the Zero Trust dashboard or using tunnel*config, tunnel*route or tunnel*virtual*network resources. Available values: `local`, `cloudflare`. **Modifying this attribute will force creation of a new resource.**
+     * Indicates if this is a locally or remotely configured tunnel. If `local`, manage the tunnel using a YAML file on the origin machine. If `cloudflare`, manage the tunnel on the Zero Trust dashboard.
+     * Available values: "local", "cloudflare".
      */
     configSrc?: pulumi.Input<string>;
     /**
-     * A user-friendly name chosen when the tunnel is created. **Modifying this attribute will force creation of a new resource.**
+     * A user-friendly name for a tunnel.
      */
     name: pulumi.Input<string>;
     /**
-     * 32 or more bytes, encoded as a base64 string. The Create Argo Tunnel endpoint sets this as the tunnel's password. Anyone wishing to run the tunnel needs this password. **Modifying this attribute will force creation of a new resource.**
+     * Sets the password required to run a locally-managed tunnel. Must be at least 32 bytes and encoded as a base64 string.
      */
-    secret: pulumi.Input<string>;
+    tunnelSecret?: pulumi.Input<string>;
 }