@pulumi/cloudflare 6.3.0-alpha.1749049430 → 6.3.0-alpha.1749572009

package/types/input.d.ts

@@ -53,7 +53,7 @@ export interface AccessApplicationDestination {
      */
     portRange?: pulumi.Input<string>;
     /**
-     * Available values: "public".
+     * Available values: "public", "private".
      */
     type?: pulumi.Input<string>;
     /**
@@ -933,7 +933,7 @@ export interface AccessApplicationScimConfigAuthentication {
     password?: pulumi.Input<string>;
     /**
      * The authentication scheme to use when making SCIM requests to this application.
-     * Available values: "httpbasic".
+     * Available values: "httpbasic", "oauthbearertoken", "oauth2", "access*service*token".
      */
     scheme: pulumi.Input<string>;
     /**
@@ -2363,7 +2363,7 @@ export interface AccessPolicyRequireServiceToken {
 export interface AccessRuleConfiguration {
     /**
      * The configuration target. You must set the target to `ip` when specifying an IP address in the rule.
-     * Available values: "ip".
+     * Available values: "ip", "ip6", "ipRange", "asn", "country".
      */
     target?: pulumi.Input<string>;
     /**
@@ -2526,26 +2526,11 @@ export interface AccountSettings {
      * Sets an abuse contact email to notify for abuse reports.
      */
     abuseContactEmail?: pulumi.Input<string>;
-    /**
-     * Specifies the default nameservers to be used for new zones added to this account.
-     *
-     * @deprecated This attribute is deprecated.
-     */
-    defaultNameservers?: pulumi.Input<string>;
     /**
      * Indicates whether membership in this account requires that
      * Two-Factor Authentication is enabled
      */
     enforceTwofactor?: pulumi.Input<boolean>;
-    /**
-     * Indicates whether new zones should use the account-level custom
-     * nameservers by default.
-     *
-     * Deprecated in favor of [DNS Settings](https://developers.cloudflare.com/api/operations/dns-settings-for-an-account-update-dns-settings).
-     *
-     * @deprecated This attribute is deprecated.
-     */
-    useAccountCustomNsByDefault?: pulumi.Input<boolean>;
 }
 export interface AccountSubscriptionRatePlan {
     /**
@@ -2662,7 +2647,7 @@ export interface ApiShieldAuthIdCharacteristic {
     name: pulumi.Input<string>;
     /**
      * The type of characteristic.
-     * Available values: "header", "cookie".
+     * Available values: "header", "cookie", "jwt".
      */
     type: pulumi.Input<string>;
 }
@@ -3193,11 +3178,11 @@ export interface DeviceManagedNetworksConfig {
 }
 export interface DevicePostureIntegrationConfig {
     /**
-     * If present, this id will be passed in the `CF-Access-Client-ID` header when hitting the `apiUrl`
+     * If present, this id will be passed in the `CF-Access-Client-ID` header when hitting the `apiUrl`.
      */
     accessClientId?: pulumi.Input<string>;
     /**
-     * If present, this secret will be passed in the `CF-Access-Client-Secret` header when hitting the `apiUrl`
+     * If present, this secret will be passed in the `CF-Access-Client-Secret` header when hitting the `apiUrl`.
      */
     accessClientSecret?: pulumi.Input<string>;
     /**
@@ -3243,12 +3228,12 @@ export interface DevicePostureRuleInput {
      */
     checkPrivateKey?: pulumi.Input<boolean>;
     /**
-     * Common Name that is protected by the certificate
+     * Common Name that is protected by the certificate.
      */
     cn?: pulumi.Input<string>;
     /**
-     * Compliance Status
-     * Available values: "compliant", "noncompliant", "unknown".
+     * Compliance Status.
+     * Available values: "compliant", "noncompliant", "unknown", "notapplicable", "ingraceperiod", "error".
      */
     complianceStatus?: pulumi.Input<string>;
     /**
@@ -3256,12 +3241,12 @@ export interface DevicePostureRuleInput {
      */
     connectionId?: pulumi.Input<string>;
     /**
-     * Count Operator
+     * Count Operator.
      * Available values: "<", "<=", ">", ">=", "==".
      */
     countOperator?: pulumi.Input<string>;
     /**
-     * Domain
+     * Domain.
      */
     domain?: pulumi.Input<string>;
     /**
@@ -3269,15 +3254,15 @@ export interface DevicePostureRuleInput {
      */
     eidLastSeen?: pulumi.Input<string>;
     /**
-     * Enabled
+     * Enabled.
      */
     enabled?: pulumi.Input<boolean>;
     /**
-     * Whether or not file exists
+     * Whether or not file exists.
      */
     exists?: pulumi.Input<boolean>;
     /**
-     * List of values indicating purposes for which the certificate public key can be used
+     * List of values indicating purposes for which the certificate public key can be used.
      */
     extendedKeyUsages?: pulumi.Input<pulumi.Input<string>[]>;
     /**
@@ -3307,8 +3292,8 @@ export interface DevicePostureRuleInput {
      */
     networkStatus?: pulumi.Input<string>;
     /**
-     * Operating system
-     * Available values: "windows", "linux", "mac".
+     * Operating system.
+     * Available values: "windows", "linux", "mac", "android", "ios", "chromeos".
      */
     operatingSystem?: pulumi.Input<string>;
     /**
@@ -3317,28 +3302,28 @@ export interface DevicePostureRuleInput {
      */
     operationalState?: pulumi.Input<string>;
     /**
-     * operator
+     * Operator.
      * Available values: "<", "<=", ">", ">=", "==".
      */
     operator?: pulumi.Input<string>;
     /**
-     * Os Version
+     * Os Version.
      */
     os?: pulumi.Input<string>;
     /**
-     * Operating System Distribution Name (linux only)
+     * Operating System Distribution Name (linux only).
      */
     osDistroName?: pulumi.Input<string>;
     /**
-     * Version of OS Distribution (linux only)
+     * Version of OS Distribution (linux only).
      */
     osDistroRevision?: pulumi.Input<string>;
     /**
-     * Additional version data. For Mac or iOS, the Product Version Extra. For Linux, the kernel release version. (Mac, iOS, and Linux only)
+     * Additional version data. For Mac or iOS, the Product Version Extra. For Linux, the kernel release version. (Mac, iOS, and Linux only).
      */
     osVersionExtra?: pulumi.Input<string>;
     /**
-     * overall
+     * Overall.
      */
     overall?: pulumi.Input<string>;
     /**
@@ -3359,12 +3344,12 @@ export interface DevicePostureRuleInput {
      */
     score?: pulumi.Input<number>;
     /**
-     * Score Operator
+     * Score Operator.
      * Available values: "<", "<=", ">", ">=", "==".
      */
     scoreOperator?: pulumi.Input<string>;
     /**
-     * SensorConfig
+     * SensorConfig.
      */
     sensorConfig?: pulumi.Input<string>;
     /**
@@ -3385,11 +3370,11 @@ export interface DevicePostureRuleInput {
      */
     totalScore?: pulumi.Input<number>;
     /**
-     * Version of OS
+     * Version of OS.
      */
     version?: pulumi.Input<string>;
     /**
-     * Version Operator
+     * Version Operator.
      * Available values: "<", "<=", ">", ">=", "==".
      */
     versionOperator?: pulumi.Input<string>;
@@ -3499,7 +3484,7 @@ export interface DlpCustomProfileProfileSharedEntry {
     enabled: pulumi.Input<boolean>;
     entryId: pulumi.Input<string>;
     /**
-     * Available values: "custom".
+     * Available values: "custom", "predefined", "integration", "exactData".
      */
     entryType: pulumi.Input<string>;
 }
@@ -3507,7 +3492,7 @@ export interface DlpCustomProfileSharedEntry {
     enabled: pulumi.Input<boolean>;
     entryId: pulumi.Input<string>;
     /**
-     * Available values: "custom".
+     * Available values: "custom", "predefined", "integration", "exactData".
      */
     entryType: pulumi.Input<string>;
 }
@@ -3848,7 +3833,7 @@ export interface EmailRoutingRuleMatcher {
     field?: pulumi.Input<string>;
     /**
      * Type of matcher.
-     * Available values: "literal".
+     * Available values: "all", "literal".
      */
     type: pulumi.Input<string>;
     /**
@@ -4289,6 +4274,94 @@ export interface GetApiTokenFilterArgs {
      */
     direction?: pulumi.Input<string>;
 }
+export interface GetCloudforceOneRequestFilter {
+    /**
+     * Retrieve requests completed after this time.
+     */
+    completedAfter?: string;
+    /**
+     * Retrieve requests completed before this time.
+     */
+    completedBefore?: string;
+    /**
+     * Retrieve requests created after this time.
+     */
+    createdAfter?: string;
+    /**
+     * Retrieve requests created before this time.
+     */
+    createdBefore?: string;
+    /**
+     * Page number of results.
+     */
+    page: number;
+    /**
+     * Number of results per page.
+     */
+    perPage: number;
+    /**
+     * Requested information from request.
+     */
+    requestType?: string;
+    /**
+     * Field to sort results by.
+     */
+    sortBy?: string;
+    /**
+     * Sort order (asc or desc).
+     * Available values: "asc", "desc".
+     */
+    sortOrder?: string;
+    /**
+     * Request Status.
+     * Available values: "open", "accepted", "reported", "approved", "completed", "declined".
+     */
+    status?: string;
+}
+export interface GetCloudforceOneRequestFilterArgs {
+    /**
+     * Retrieve requests completed after this time.
+     */
+    completedAfter?: pulumi.Input<string>;
+    /**
+     * Retrieve requests completed before this time.
+     */
+    completedBefore?: pulumi.Input<string>;
+    /**
+     * Retrieve requests created after this time.
+     */
+    createdAfter?: pulumi.Input<string>;
+    /**
+     * Retrieve requests created before this time.
+     */
+    createdBefore?: pulumi.Input<string>;
+    /**
+     * Page number of results.
+     */
+    page: pulumi.Input<number>;
+    /**
+     * Number of results per page.
+     */
+    perPage: pulumi.Input<number>;
+    /**
+     * Requested information from request.
+     */
+    requestType?: pulumi.Input<string>;
+    /**
+     * Field to sort results by.
+     */
+    sortBy?: pulumi.Input<string>;
+    /**
+     * Sort order (asc or desc).
+     * Available values: "asc", "desc".
+     */
+    sortOrder?: pulumi.Input<string>;
+    /**
+     * Request Status.
+     * Available values: "open", "accepted", "reported", "approved", "completed", "declined".
+     */
+    status?: pulumi.Input<string>;
+}
 export interface GetCustomHostnameFilter {
     /**
      * Direction to order hostnames.
@@ -5879,55 +5952,55 @@ export interface HealthcheckTcpConfig {
 }
 export interface HyperdriveConfigCaching {
     /**
-     * When set to true, disables the caching of SQL responses. (Default: false)
+     * Set to true to disable caching of SQL responses. Default is false.
      */
     disabled?: pulumi.Input<boolean>;
     /**
-     * When present, specifies max duration for which items should persist in the cache. Not returned if set to default. (Default: 60)
+     * Specify the maximum duration items should persist in the cache. Not returned if set to the default (60).
      */
     maxAge?: pulumi.Input<number>;
     /**
-     * When present, indicates the number of seconds cache may serve the response after it becomes stale. Not returned if set to default. (Default: 15)
+     * Specify the number of seconds the cache may serve a stale response. Omitted if set to the default (15).
      */
     staleWhileRevalidate?: pulumi.Input<number>;
 }
 export interface HyperdriveConfigMtls {
     /**
-     * CA certificate ID
+     * Define CA certificate ID obtained after uploading CA cert.
      */
     caCertificateId?: pulumi.Input<string>;
     /**
-     * mTLS certificate ID
+     * Define mTLS certificate ID obtained after uploading client cert.
      */
     mtlsCertificateId?: pulumi.Input<string>;
     /**
-     * SSL mode used for CA verification. Must be 'require', 'verify-ca', or 'verify-full'
+     * Set SSL mode to 'require', 'verify-ca', or 'verify-full' to verify the CA.
      */
     sslmode?: pulumi.Input<string>;
 }
 export interface HyperdriveConfigOrigin {
     /**
-     * The Client ID of the Access token to use when connecting to the origin database.
+     * Defines the Client ID of the Access token to use when connecting to the origin database.
      */
     accessClientId?: pulumi.Input<string>;
     /**
-     * The Client Secret of the Access token to use when connecting to the origin database. This value is write-only and never returned by the API.
+     * Defines the Client Secret of the Access Token to use when connecting to the origin database. The API never returns this write-only value.
      */
     accessClientSecret?: pulumi.Input<string>;
     /**
-     * The name of your origin database.
+     * Set the name of your origin database.
      */
     database: pulumi.Input<string>;
     /**
-     * The host (hostname or IP) of your origin database.
+     * Defines the host (hostname or IP) of your origin database.
      */
     host: pulumi.Input<string>;
     /**
-     * The password required to access your origin database. This value is write-only and never returned by the API.
+     * Set the password needed to access your origin database. The API never returns this write-only value.
      */
     password: pulumi.Input<string>;
     /**
-     * The port (default: 5432 for Postgres) of your origin database.
+     * Defines the port (default: 5432 for Postgres) of your origin database.
      */
     port?: pulumi.Input<number>;
     /**
@@ -5936,7 +6009,7 @@ export interface HyperdriveConfigOrigin {
      */
     scheme: pulumi.Input<string>;
     /**
-     * The user of your origin database.
+     * Set the user of your origin database.
      */
     user: pulumi.Input<string>;
 }
@@ -7728,7 +7801,7 @@ export interface PagesProjectCanonicalDeploymentDeploymentTriggerMetadata {
 }
 export interface PagesProjectCanonicalDeploymentEnvVars {
     /**
-     * Available values: "plainText".
+     * Available values: "plain*text", "secret*text".
      */
     type?: pulumi.Input<string>;
     /**
@@ -7923,7 +7996,7 @@ export interface PagesProjectDeploymentConfigsPreviewDurableObjectNamespaces {
 }
 export interface PagesProjectDeploymentConfigsPreviewEnvVars {
     /**
-     * Available values: "plainText".
+     * Available values: "plain*text", "secret*text".
      */
     type: pulumi.Input<string>;
     /**
@@ -8099,7 +8172,7 @@ export interface PagesProjectDeploymentConfigsProductionDurableObjectNamespaces
 }
 export interface PagesProjectDeploymentConfigsProductionEnvVars {
     /**
-     * Available values: "plainText".
+     * Available values: "plain*text", "secret*text".
      */
     type: pulumi.Input<string>;
     /**
@@ -8277,7 +8350,7 @@ export interface PagesProjectLatestDeploymentDeploymentTriggerMetadata {
 }
 export interface PagesProjectLatestDeploymentEnvVars {
     /**
-     * Available values: "plainText".
+     * Available values: "plain*text", "secret*text".
      */
     type?: pulumi.Input<string>;
     /**
@@ -8385,7 +8458,7 @@ export interface QueueConsumer {
     scriptName?: pulumi.Input<string>;
     settings?: pulumi.Input<inputs.QueueConsumerSettings>;
     /**
-     * Available values: "worker".
+     * Available values: "worker", "httpPull".
      */
     type?: pulumi.Input<string>;
 }
@@ -8419,7 +8492,7 @@ export interface QueueProducer {
     bucketName?: pulumi.Input<string>;
     script?: pulumi.Input<string>;
     /**
-     * Available values: "worker".
+     * Available values: "worker", "r2Bucket".
      */
     type?: pulumi.Input<string>;
 }
@@ -8579,7 +8652,7 @@ export interface R2BucketLifecycleRuleDeleteObjectsTransitionCondition {
     date?: pulumi.Input<string>;
     maxAge?: pulumi.Input<number>;
     /**
-     * Available values: "Age".
+     * Available values: "Age", "Date".
      */
     type: pulumi.Input<string>;
 }
@@ -8597,7 +8670,7 @@ export interface R2BucketLifecycleRuleStorageClassTransitionCondition {
     date?: pulumi.Input<string>;
     maxAge?: pulumi.Input<number>;
     /**
-     * Available values: "Age".
+     * Available values: "Age", "Date".
      */
     type: pulumi.Input<string>;
 }
@@ -8623,7 +8696,7 @@ export interface R2BucketLockRuleCondition {
     date?: pulumi.Input<string>;
     maxAgeSeconds?: pulumi.Input<number>;
     /**
-     * Available values: "Age".
+     * Available values: "Age", "Date", "Indefinite".
      */
     type: pulumi.Input<string>;
 }
@@ -8662,7 +8735,7 @@ export interface R2BucketSippySource {
      */
     clientEmail?: pulumi.Input<string>;
     /**
-     * Available values: "aws".
+     * Available values: "aws", "gcs".
      */
     cloudProvider?: pulumi.Input<string>;
     /**
@@ -8940,7 +9013,7 @@ export interface RiskBehaviorBehaviors {
 export interface RulesetRule {
     /**
      * The action to perform when the rule matches.
-     * Available values: "block".
+     * Available values: "block", "challenge", "compress*response", "execute", "js*challenge", "log", "managed*challenge", "redirect", "rewrite", "route", "score", "serve*error", "set*config", "skip", "set*cache*settings", "log*custom*field", "ddos*dynamic", "force*connection*close".
      */
     action?: pulumi.Input<string>;
     /**
@@ -9117,7 +9190,7 @@ export interface RulesetRuleActionParameters {
      */
     overrides?: pulumi.Input<inputs.RulesetRuleActionParametersOverrides>;
     /**
-     * A list of phases to skip the execution of. This option is incompatible with the rulesets options.
+     * A list of phases to skip the execution of. This option is incompatible with the rulesets option.
      */
     phases?: pulumi.Input<pulumi.Input<string>[]>;
     /**
@@ -9164,7 +9237,7 @@ export interface RulesetRuleActionParameters {
         [key: string]: pulumi.Input<pulumi.Input<string>[]>;
     }>;
     /**
-     * A ruleset to skip the execution of. This option is incompatible with the rulesets, rules. It can be incompatible with phases options base on the phase of the ruleset.
+     * A ruleset to skip the execution of. This option is incompatible with the rulesets option.
      * Available values: "current".
      */
     ruleset?: pulumi.Input<string>;
@@ -9453,7 +9526,7 @@ export interface RulesetRuleActionParametersHeaders {
      */
     expression?: pulumi.Input<string>;
     /**
-     * Available values: "remove".
+     * Available values: "remove", "add", "set".
      */
     operation: pulumi.Input<string>;
     /**
@@ -9661,7 +9734,6 @@ export interface RulesetRuleRatelimit {
     mitigationTimeout?: pulumi.Input<number>;
     /**
      * Period in seconds over which the counter is being incremented.
-     * Available values: 10, 60, 600, 3600.
      */
     period: pulumi.Input<number>;
     /**
@@ -9719,7 +9791,7 @@ export interface SpectrumApplicationEdgeIps {
     ips?: pulumi.Input<pulumi.Input<string>[]>;
     /**
      * The type of edge IP configuration specified. Dynamically allocated edge IPs use Spectrum anycast IPs in accordance with the connectivity you specify. Only valid with CNAME DNS names.
-     * Available values: "dynamic".
+     * Available values: "dynamic", "static".
      */
     type?: pulumi.Input<string>;
 }
@@ -10191,7 +10263,7 @@ export interface TeamsAccountSettingsCustomCertificate {
     /**
      * Enable use of custom certificate authority for signing Gateway traffic.
      */
-    enabled?: pulumi.Input<boolean>;
+    enabled: pulumi.Input<boolean>;
     /**
      * UUID of certificate (ID from MTLS certificate store).
      */
@@ -10892,7 +10964,7 @@ export interface TunnelConnection {
 export interface UserAgentBlockingRuleConfiguration {
     /**
      * The configuration target. You must set the target to `ip` when specifying an IP address in the rule.
-     * Available values: "ip".
+     * Available values: "ip", "ip6", "ipRange", "asn", "country".
      */
     target?: pulumi.Input<string>;
     /**
@@ -10981,7 +11053,9 @@ export interface WebAnalyticsSiteRuleset {
     zoneTag?: pulumi.Input<string>;
 }
 export interface WorkerCronTriggerSchedule {
+    createdOn?: pulumi.Input<string>;
     cron: pulumi.Input<string>;
+    modifiedOn?: pulumi.Input<string>;
 }
 export interface WorkerScriptAssets {
     /**
@@ -11119,7 +11193,7 @@ export interface WorkerScriptBinding {
     text?: pulumi.Input<string>;
     /**
      * The kind of resource that the binding provides.
-     * Available values: "ai".
+     * Available values: "ai", "analytics*engine", "assets", "browser", "d1", "dispatch*namespace", "durable*object*namespace", "hyperdrive", "json", "kv*namespace", "mtls*certificate", "plain*text", "pipelines", "queue", "r2*bucket", "secret*text", "service", "tail*consumer", "vectorize", "version*metadata", "secrets*store*secret", "secret*key".
      */
     type: pulumi.Input<string>;
     /**
@@ -11230,6 +11304,24 @@ export interface WorkerScriptObservability {
      * The sampling rate for incoming requests. From 0 to 1 (1 = 100%, 0.1 = 10%). Default is 1.
      */
     headSamplingRate?: pulumi.Input<number>;
+    /**
+     * Log settings for the Worker.
+     */
+    logs?: pulumi.Input<inputs.WorkerScriptObservabilityLogs>;
+}
+export interface WorkerScriptObservabilityLogs {
+    /**
+     * Whether logs are enabled for the Worker.
+     */
+    enabled: pulumi.Input<boolean>;
+    /**
+     * The sampling rate for logs. From 0 to 1 (1 = 100%, 0.1 = 10%). Default is 1.
+     */
+    headSamplingRate?: pulumi.Input<number>;
+    /**
+     * Whether [invocation logs](https://developers.cloudflare.com/workers/observability/logs/workers-logs/#invocation-logs) are enabled for the Worker.
+     */
+    invocationLogs: pulumi.Input<boolean>;
 }
 export interface WorkerScriptPlacement {
     /**
@@ -11262,7 +11354,9 @@ export interface WorkerScriptTailConsumer {
     service: pulumi.Input<string>;
 }
 export interface WorkersCronTriggerSchedule {
+    createdOn?: pulumi.Input<string>;
     cron: pulumi.Input<string>;
+    modifiedOn?: pulumi.Input<string>;
 }
 export interface WorkersDeploymentAnnotations {
     /**
@@ -11432,7 +11526,7 @@ export interface WorkersScriptBinding {
     text?: pulumi.Input<string>;
     /**
      * The kind of resource that the binding provides.
-     * Available values: "ai".
+     * Available values: "ai", "analytics*engine", "assets", "browser", "d1", "dispatch*namespace", "durable*object*namespace", "hyperdrive", "json", "kv*namespace", "mtls*certificate", "plain*text", "pipelines", "queue", "r2*bucket", "secret*text", "service", "tail*consumer", "vectorize", "version*metadata", "secrets*store*secret", "secret*key".
      */
     type: pulumi.Input<string>;
     /**
@@ -11543,6 +11637,24 @@ export interface WorkersScriptObservability {
      * The sampling rate for incoming requests. From 0 to 1 (1 = 100%, 0.1 = 10%). Default is 1.
      */
     headSamplingRate?: pulumi.Input<number>;
+    /**
+     * Log settings for the Worker.
+     */
+    logs?: pulumi.Input<inputs.WorkersScriptObservabilityLogs>;
+}
+export interface WorkersScriptObservabilityLogs {
+    /**
+     * Whether logs are enabled for the Worker.
+     */
+    enabled: pulumi.Input<boolean>;
+    /**
+     * The sampling rate for logs. From 0 to 1 (1 = 100%, 0.1 = 10%). Default is 1.
+     */
+    headSamplingRate?: pulumi.Input<number>;
+    /**
+     * Whether [invocation logs](https://developers.cloudflare.com/workers/observability/logs/workers-logs/#invocation-logs) are enabled for the Worker.
+     */
+    invocationLogs: pulumi.Input<boolean>;
 }
 export interface WorkersScriptPlacement {
     /**
@@ -11627,7 +11739,7 @@ export interface ZeroTrustAccessApplicationDestination {
      */
     portRange?: pulumi.Input<string>;
     /**
-     * Available values: "public".
+     * Available values: "public", "private".
      */
     type?: pulumi.Input<string>;
     /**
@@ -12507,7 +12619,7 @@ export interface ZeroTrustAccessApplicationScimConfigAuthentication {
     password?: pulumi.Input<string>;
     /**
      * The authentication scheme to use when making SCIM requests to this application.
-     * Available values: "httpbasic".
+     * Available values: "httpbasic", "oauthbearertoken", "oauth2", "access*service*token".
      */
     scheme: pulumi.Input<string>;
     /**
@@ -14000,11 +14112,11 @@ export interface ZeroTrustDeviceCustomProfileServiceModeV2 {
 }
 export interface ZeroTrustDeviceCustomProfileTargetTest {
     /**
-     * The id of the DEX test targeting this policy
+     * The id of the DEX test targeting this policy.
      */
     id?: pulumi.Input<string>;
     /**
-     * The name of the DEX test targeting this policy
+     * The name of the DEX test targeting this policy.
      */
     name?: pulumi.Input<string>;
 }
@@ -14086,11 +14198,11 @@ export interface ZeroTrustDeviceManagedNetworksConfig {
 }
 export interface ZeroTrustDevicePostureIntegrationConfig {
     /**
-     * If present, this id will be passed in the `CF-Access-Client-ID` header when hitting the `apiUrl`
+     * If present, this id will be passed in the `CF-Access-Client-ID` header when hitting the `apiUrl`.
      */
     accessClientId?: pulumi.Input<string>;
     /**
-     * If present, this secret will be passed in the `CF-Access-Client-Secret` header when hitting the `apiUrl`
+     * If present, this secret will be passed in the `CF-Access-Client-Secret` header when hitting the `apiUrl`.
      */
     accessClientSecret?: pulumi.Input<string>;
     /**
@@ -14136,12 +14248,12 @@ export interface ZeroTrustDevicePostureRuleInput {
      */
     checkPrivateKey?: pulumi.Input<boolean>;
     /**
-     * Common Name that is protected by the certificate
+     * Common Name that is protected by the certificate.
      */
     cn?: pulumi.Input<string>;
     /**
-     * Compliance Status
-     * Available values: "compliant", "noncompliant", "unknown".
+     * Compliance Status.
+     * Available values: "compliant", "noncompliant", "unknown", "notapplicable", "ingraceperiod", "error".
      */
     complianceStatus?: pulumi.Input<string>;
     /**
@@ -14149,12 +14261,12 @@ export interface ZeroTrustDevicePostureRuleInput {
      */
     connectionId?: pulumi.Input<string>;
     /**
-     * Count Operator
+     * Count Operator.
      * Available values: "<", "<=", ">", ">=", "==".
      */
     countOperator?: pulumi.Input<string>;
     /**
-     * Domain
+     * Domain.
      */
     domain?: pulumi.Input<string>;
     /**
@@ -14162,15 +14274,15 @@ export interface ZeroTrustDevicePostureRuleInput {
      */
     eidLastSeen?: pulumi.Input<string>;
     /**
-     * Enabled
+     * Enabled.
      */
     enabled?: pulumi.Input<boolean>;
     /**
-     * Whether or not file exists
+     * Whether or not file exists.
      */
     exists?: pulumi.Input<boolean>;
     /**
-     * List of values indicating purposes for which the certificate public key can be used
+     * List of values indicating purposes for which the certificate public key can be used.
      */
     extendedKeyUsages?: pulumi.Input<pulumi.Input<string>[]>;
     /**
@@ -14200,8 +14312,8 @@ export interface ZeroTrustDevicePostureRuleInput {
      */
     networkStatus?: pulumi.Input<string>;
     /**
-     * Operating system
-     * Available values: "windows", "linux", "mac".
+     * Operating system.
+     * Available values: "windows", "linux", "mac", "android", "ios", "chromeos".
      */
     operatingSystem?: pulumi.Input<string>;
     /**
@@ -14210,28 +14322,28 @@ export interface ZeroTrustDevicePostureRuleInput {
      */
     operationalState?: pulumi.Input<string>;
     /**
-     * operator
+     * Operator.
      * Available values: "<", "<=", ">", ">=", "==".
      */
     operator?: pulumi.Input<string>;
     /**
-     * Os Version
+     * Os Version.
      */
     os?: pulumi.Input<string>;
     /**
-     * Operating System Distribution Name (linux only)
+     * Operating System Distribution Name (linux only).
      */
     osDistroName?: pulumi.Input<string>;
     /**
-     * Version of OS Distribution (linux only)
+     * Version of OS Distribution (linux only).
      */
     osDistroRevision?: pulumi.Input<string>;
     /**
-     * Additional version data. For Mac or iOS, the Product Version Extra. For Linux, the kernel release version. (Mac, iOS, and Linux only)
+     * Additional version data. For Mac or iOS, the Product Version Extra. For Linux, the kernel release version. (Mac, iOS, and Linux only).
      */
     osVersionExtra?: pulumi.Input<string>;
     /**
-     * overall
+     * Overall.
      */
     overall?: pulumi.Input<string>;
     /**
@@ -14252,12 +14364,12 @@ export interface ZeroTrustDevicePostureRuleInput {
      */
     score?: pulumi.Input<number>;
     /**
-     * Score Operator
+     * Score Operator.
      * Available values: "<", "<=", ">", ">=", "==".
      */
     scoreOperator?: pulumi.Input<string>;
     /**
-     * SensorConfig
+     * SensorConfig.
      */
     sensorConfig?: pulumi.Input<string>;
     /**
@@ -14278,11 +14390,11 @@ export interface ZeroTrustDevicePostureRuleInput {
      */
     totalScore?: pulumi.Input<number>;
     /**
-     * Version of OS
+     * Version of OS.
      */
     version?: pulumi.Input<string>;
     /**
-     * Version Operator
+     * Version Operator.
      * Available values: "<", "<=", ">", ">=", "==".
      */
     versionOperator?: pulumi.Input<string>;
@@ -14303,6 +14415,34 @@ export interface ZeroTrustDevicePostureRuleMatch {
      */
     platform?: pulumi.Input<string>;
 }
+export interface ZeroTrustDexTestData {
+    /**
+     * The desired endpoint to test.
+     */
+    host?: pulumi.Input<string>;
+    /**
+     * The type of test.
+     */
+    kind?: pulumi.Input<string>;
+    /**
+     * The HTTP request method type.
+     */
+    method?: pulumi.Input<string>;
+}
+export interface ZeroTrustDexTestTargetPolicy {
+    /**
+     * Whether the DEX rule is the account default
+     */
+    default?: pulumi.Input<boolean>;
+    /**
+     * The id of the DEX rule
+     */
+    id?: pulumi.Input<string>;
+    /**
+     * The name of the DEX rule
+     */
+    name?: pulumi.Input<string>;
+}
 export interface ZeroTrustDlpCustomProfileContextAwareness {
     /**
      * If true, scan the context of predefined entries to only return matches surrounded by keywords.
@@ -14392,7 +14532,7 @@ export interface ZeroTrustDlpCustomProfileProfileSharedEntry {
     enabled: pulumi.Input<boolean>;
     entryId: pulumi.Input<string>;
     /**
-     * Available values: "custom".
+     * Available values: "custom", "predefined", "integration", "exactData".
      */
     entryType: pulumi.Input<string>;
 }
@@ -14400,7 +14540,7 @@ export interface ZeroTrustDlpCustomProfileSharedEntry {
     enabled: pulumi.Input<boolean>;
     entryId: pulumi.Input<string>;
     /**
-     * Available values: "custom".
+     * Available values: "custom", "predefined", "integration", "exactData".
      */
     entryType: pulumi.Input<string>;
 }
@@ -15146,7 +15286,7 @@ export interface ZeroTrustGatewaySettingsSettingsCustomCertificate {
     /**
      * Enable use of custom certificate authority for signing Gateway traffic.
      */
-    enabled?: pulumi.Input<boolean>;
+    enabled: pulumi.Input<boolean>;
     /**
      * UUID of certificate (ID from MTLS certificate store).
      */
@@ -15567,7 +15707,7 @@ export interface ZoneDnsSettingsSoa {
 export interface ZoneLockdownConfiguration {
     /**
      * The configuration target. You must set the target to `ip` when specifying an IP address in the Zone Lockdown rule.
-     * Available values: "ip".
+     * Available values: "ip", "ipRange".
      */
     target?: pulumi.Input<string>;
     /**
@@ -15616,6 +15756,48 @@ export interface ZoneOwner {
      */
     type?: pulumi.Input<string>;
 }
+export interface ZonePlan {
+    /**
+     * States if the subscription can be activated.
+     */
+    canSubscribe?: pulumi.Input<boolean>;
+    /**
+     * The denomination of the customer.
+     */
+    currency?: pulumi.Input<string>;
+    /**
+     * If this Zone is managed by another company.
+     */
+    externallyManaged?: pulumi.Input<boolean>;
+    /**
+     * How often the customer is billed.
+     */
+    frequency?: pulumi.Input<string>;
+    /**
+     * Identifier
+     */
+    id?: pulumi.Input<string>;
+    /**
+     * States if the subscription active.
+     */
+    isSubscribed?: pulumi.Input<boolean>;
+    /**
+     * If the legacy discount applies to this Zone.
+     */
+    legacyDiscount?: pulumi.Input<boolean>;
+    /**
+     * The legacy name of the plan.
+     */
+    legacyId?: pulumi.Input<string>;
+    /**
+     * Name of the owner
+     */
+    name?: pulumi.Input<string>;
+    /**
+     * How much the customer is paying.
+     */
+    price?: pulumi.Input<number>;
+}
 export interface ZoneSubscriptionRatePlan {
     /**
      * The currency applied to the rate plan subscription.
@@ -15647,3 +15829,19 @@ export interface ZoneSubscriptionRatePlan {
      */
     sets?: pulumi.Input<pulumi.Input<string>[]>;
 }
+export interface ZoneTenant {
+    /**
+     * Identifier
+     */
+    id?: pulumi.Input<string>;
+    /**
+     * The name of the Tenant account.
+     */
+    name?: pulumi.Input<string>;
+}
+export interface ZoneTenantUnit {
+    /**
+     * Identifier
+     */
+    id?: pulumi.Input<string>;
+}