@pulumi/cloudngfwaws 0.0.1

package/types/input.d.ts

@@ -0,0 +1,174 @@
+import * as pulumi from "@pulumi/pulumi";
+import * as inputs from "../types/input";
+export interface GetAccountsAccountDetail {
+    /**
+     * The account id.
+     */
+    accountId?: string;
+    /**
+     * External Id of the onboarded account
+     */
+    externalId?: string;
+    /**
+     * Onboarding status of the account.
+     */
+    onboardingStatus?: string;
+}
+export interface GetAccountsAccountDetailArgs {
+    /**
+     * The account id.
+     */
+    accountId?: pulumi.Input<string>;
+    /**
+     * External Id of the onboarded account
+     */
+    externalId?: pulumi.Input<string>;
+    /**
+     * Onboarding status of the account.
+     */
+    onboardingStatus?: pulumi.Input<string>;
+}
+export interface NgfwLogProfileLogDestination {
+    /**
+     * The log destination details.
+     */
+    destination?: pulumi.Input<string>;
+    /**
+     * The log destination type. Valid values are `S3`, `CloudWatchLogs`, or `KinesisDataFirehose`.
+     */
+    destinationType?: pulumi.Input<string>;
+    /**
+     * The type of logs. Valid values are `TRAFFIC`, `THREAT`, or `DECRYPTION`.
+     */
+    logType?: pulumi.Input<string>;
+}
+export interface NgfwStatus {
+    /**
+     * The firewall attachments.
+     */
+    attachments?: pulumi.Input<pulumi.Input<inputs.NgfwStatusAttachment>[]>;
+    /**
+     * The firewall failure reason.
+     */
+    failureReason?: pulumi.Input<string>;
+    /**
+     * The firewall status.
+     */
+    firewallStatus?: pulumi.Input<string>;
+    /**
+     * The rulestack status.
+     */
+    rulestackStatus?: pulumi.Input<string>;
+}
+export interface NgfwStatusAttachment {
+    /**
+     * The endpoint id.
+     */
+    endpointId?: pulumi.Input<string>;
+    /**
+     * The reject reason.
+     */
+    rejectedReason?: pulumi.Input<string>;
+    /**
+     * The attachment status.
+     */
+    status?: pulumi.Input<string>;
+    /**
+     * The subnet id.
+     */
+    subnetId?: pulumi.Input<string>;
+}
+export interface NgfwSubnetMapping {
+    /**
+     * The availability zone, for when the endpoint mode is customer managed.
+     */
+    availabilityZone?: pulumi.Input<string>;
+    /**
+     * The availability zone ID, for when the endpoint mode is customer managed.
+     */
+    availabilityZoneId?: pulumi.Input<string>;
+    /**
+     * The subnet id, for when the endpoint mode is service managed.
+     */
+    subnetId?: pulumi.Input<string>;
+}
+export interface RulestackProfileConfig {
+    /**
+     * Anti-spyware profile setting. Defaults to `BestPractice`.
+     */
+    antiSpyware?: pulumi.Input<string>;
+    /**
+     * Anti-virus profile setting. Defaults to `BestPractice`.
+     */
+    antiVirus?: pulumi.Input<string>;
+    /**
+     * File blocking profile setting. Defaults to `BestPractice`.
+     */
+    fileBlocking?: pulumi.Input<string>;
+    /**
+     * Outbound trust certificate.
+     */
+    outboundTrustCertificate?: pulumi.Input<string>;
+    /**
+     * Outbound untrust certificate.
+     */
+    outboundUntrustCertificate?: pulumi.Input<string>;
+    /**
+     * URL filtering profile setting. Defaults to `None`.
+     */
+    urlFiltering?: pulumi.Input<string>;
+    /**
+     * Vulnerability profile setting. Defaults to `BestPractice`.
+     */
+    vulnerability?: pulumi.Input<string>;
+}
+export interface SecurityRuleCategory {
+    /**
+     * List of feeds.
+     */
+    feeds?: pulumi.Input<pulumi.Input<string>[]>;
+    /**
+     * List of URL category names.
+     */
+    urlCategoryNames?: pulumi.Input<pulumi.Input<string>[]>;
+}
+export interface SecurityRuleDestination {
+    /**
+     * List of CIDRs.
+     */
+    cidrs?: pulumi.Input<pulumi.Input<string>[]>;
+    /**
+     * List of countries.
+     */
+    countries?: pulumi.Input<pulumi.Input<string>[]>;
+    /**
+     * List of feeds.
+     */
+    feeds?: pulumi.Input<pulumi.Input<string>[]>;
+    /**
+     * List of FQDN lists.
+     */
+    fqdnLists?: pulumi.Input<pulumi.Input<string>[]>;
+    /**
+     * List of prefix list.
+     */
+    prefixLists?: pulumi.Input<pulumi.Input<string>[]>;
+}
+export interface SecurityRuleSource {
+    /**
+     * List of CIDRs.
+     */
+    cidrs?: pulumi.Input<pulumi.Input<string>[]>;
+    /**
+     * List of countries.
+     */
+    countries?: pulumi.Input<pulumi.Input<string>[]>;
+    /**
+     * List of feeds.
+     */
+    feeds?: pulumi.Input<pulumi.Input<string>[]>;
+    /**
+     * List of prefix list.
+     */
+    prefixLists?: pulumi.Input<pulumi.Input<string>[]>;
+}

package/types/input.js

@@ -0,0 +1,5 @@
+"use strict";
+// *** WARNING: this file was generated by the Pulumi Terraform Bridge (tfgen) Tool. ***
+// *** Do not edit by hand unless you're certain you know what you are doing! ***
+Object.defineProperty(exports, "__esModule", { value: true });
+//# sourceMappingURL=input.js.map

package/types/input.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"input.js","sourceRoot":"","sources":["../../types/input.ts"],"names":[],"mappings":";AAAA,wFAAwF;AACxF,iFAAiF"}

package/types/output.d.ts

@@ -0,0 +1,313 @@
+import * as outputs from "../types/output";
+export interface GetAccountsAccountDetail {
+    /**
+     * The account id.
+     */
+    accountId: string;
+    /**
+     * External Id of the onboarded account
+     */
+    externalId: string;
+    /**
+     * Onboarding status of the account.
+     */
+    onboardingStatus: string;
+}
+export interface GetNgfwLogProfileLogDestination {
+    /**
+     * The log destination details.
+     */
+    destination: string;
+    /**
+     * The log destination type. Valid values are `S3`, `CloudWatchLogs`, or `KinesisDataFirehose`.
+     */
+    destinationType: string;
+    /**
+     * The type of logs. Valid values are `TRAFFIC`, `THREAT`, or `DECRYPTION`.
+     */
+    logType: string;
+}
+export interface GetNgfwStatus {
+    /**
+     * The firewall attachments.
+     */
+    attachments: outputs.GetNgfwStatusAttachment[];
+    /**
+     * The firewall failure reason.
+     */
+    failureReason: string;
+    /**
+     * The firewall status.
+     */
+    firewallStatus: string;
+    /**
+     * The rulestack status.
+     */
+    rulestackStatus: string;
+}
+export interface GetNgfwStatusAttachment {
+    /**
+     * The endpoint id.
+     */
+    endpointId: string;
+    /**
+     * The reject reason.
+     */
+    rejectedReason: string;
+    /**
+     * The attachment status.
+     */
+    status: string;
+    /**
+     * The subnet id.
+     */
+    subnetId: string;
+}
+export interface GetNgfwSubnetMapping {
+    /**
+     * The availability zone, for when the endpoint mode is customer managed.
+     */
+    availabilityZone: string;
+    /**
+     * The availability zone ID, for when the endpoint mode is customer managed.
+     */
+    availabilityZoneId: string;
+    /**
+     * The subnet id, for when the endpoint mode is service managed.
+     */
+    subnetId: string;
+}
+export interface GetNgfwsInstance {
+    /**
+     * The account id.
+     */
+    accountId: string;
+    /**
+     * The NGFW name.
+     */
+    name: string;
+}
+export interface GetRulestackProfileConfig {
+    /**
+     * Anti-spyware profile setting.
+     */
+    antiSpyware: string;
+    /**
+     * Anti-virus profile setting.
+     */
+    antiVirus: string;
+    /**
+     * File blocking profile setting.
+     */
+    fileBlocking: string;
+    /**
+     * Outbound trust certificate.
+     */
+    outboundTrustCertificate: string;
+    /**
+     * Outbound untrust certificate.
+     */
+    outboundUntrustCertificate: string;
+    /**
+     * URL filtering profile setting.
+     */
+    urlFiltering: string;
+    /**
+     * Vulnerability profile setting.
+     */
+    vulnerability: string;
+}
+export interface GetSecurityRuleCategory {
+    /**
+     * List of feeds.
+     */
+    feeds: string[];
+    /**
+     * List of URL category names.
+     */
+    urlCategoryNames: string[];
+}
+export interface GetSecurityRuleDestination {
+    /**
+     * List of CIDRs.
+     */
+    cidrs: string[];
+    /**
+     * List of countries.
+     */
+    countries: string[];
+    /**
+     * List of feeds.
+     */
+    feeds: string[];
+    /**
+     * List of FQDN lists.
+     */
+    fqdnLists: string[];
+    /**
+     * List of prefix list.
+     */
+    prefixLists: string[];
+}
+export interface GetSecurityRuleSource {
+    /**
+     * List of CIDRs.
+     */
+    cidrs: string[];
+    /**
+     * List of countries.
+     */
+    countries: string[];
+    /**
+     * List of feeds.
+     */
+    feeds: string[];
+    /**
+     * List of prefix list.
+     */
+    prefixLists: string[];
+}
+export interface NgfwLogProfileLogDestination {
+    /**
+     * The log destination details.
+     */
+    destination?: string;
+    /**
+     * The log destination type. Valid values are `S3`, `CloudWatchLogs`, or `KinesisDataFirehose`.
+     */
+    destinationType?: string;
+    /**
+     * The type of logs. Valid values are `TRAFFIC`, `THREAT`, or `DECRYPTION`.
+     */
+    logType?: string;
+}
+export interface NgfwStatus {
+    /**
+     * The firewall attachments.
+     */
+    attachments: outputs.NgfwStatusAttachment[];
+    /**
+     * The firewall failure reason.
+     */
+    failureReason: string;
+    /**
+     * The firewall status.
+     */
+    firewallStatus: string;
+    /**
+     * The rulestack status.
+     */
+    rulestackStatus: string;
+}
+export interface NgfwStatusAttachment {
+    /**
+     * The endpoint id.
+     */
+    endpointId: string;
+    /**
+     * The reject reason.
+     */
+    rejectedReason: string;
+    /**
+     * The attachment status.
+     */
+    status: string;
+    /**
+     * The subnet id.
+     */
+    subnetId: string;
+}
+export interface NgfwSubnetMapping {
+    /**
+     * The availability zone, for when the endpoint mode is customer managed.
+     */
+    availabilityZone: string;
+    /**
+     * The availability zone ID, for when the endpoint mode is customer managed.
+     */
+    availabilityZoneId: string;
+    /**
+     * The subnet id, for when the endpoint mode is service managed.
+     */
+    subnetId?: string;
+}
+export interface RulestackProfileConfig {
+    /**
+     * Anti-spyware profile setting. Defaults to `BestPractice`.
+     */
+    antiSpyware?: string;
+    /**
+     * Anti-virus profile setting. Defaults to `BestPractice`.
+     */
+    antiVirus?: string;
+    /**
+     * File blocking profile setting. Defaults to `BestPractice`.
+     */
+    fileBlocking?: string;
+    /**
+     * Outbound trust certificate.
+     */
+    outboundTrustCertificate?: string;
+    /**
+     * Outbound untrust certificate.
+     */
+    outboundUntrustCertificate?: string;
+    /**
+     * URL filtering profile setting. Defaults to `None`.
+     */
+    urlFiltering?: string;
+    /**
+     * Vulnerability profile setting. Defaults to `BestPractice`.
+     */
+    vulnerability?: string;
+}
+export interface SecurityRuleCategory {
+    /**
+     * List of feeds.
+     */
+    feeds?: string[];
+    /**
+     * List of URL category names.
+     */
+    urlCategoryNames?: string[];
+}
+export interface SecurityRuleDestination {
+    /**
+     * List of CIDRs.
+     */
+    cidrs?: string[];
+    /**
+     * List of countries.
+     */
+    countries?: string[];
+    /**
+     * List of feeds.
+     */
+    feeds?: string[];
+    /**
+     * List of FQDN lists.
+     */
+    fqdnLists?: string[];
+    /**
+     * List of prefix list.
+     */
+    prefixLists?: string[];
+}
+export interface SecurityRuleSource {
+    /**
+     * List of CIDRs.
+     */
+    cidrs?: string[];
+    /**
+     * List of countries.
+     */
+    countries?: string[];
+    /**
+     * List of feeds.
+     */
+    feeds?: string[];
+    /**
+     * List of prefix list.
+     */
+    prefixLists?: string[];
+}

package/types/output.js

@@ -0,0 +1,5 @@
+"use strict";
+// *** WARNING: this file was generated by the Pulumi Terraform Bridge (tfgen) Tool. ***
+// *** Do not edit by hand unless you're certain you know what you are doing! ***
+Object.defineProperty(exports, "__esModule", { value: true });
+//# sourceMappingURL=output.js.map

package/types/output.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"output.js","sourceRoot":"","sources":["../../types/output.ts"],"names":[],"mappings":";AAAA,wFAAwF;AACxF,iFAAiF"}

package/utilities.d.ts

@@ -0,0 +1,8 @@
+import * as pulumi from "@pulumi/pulumi";
+export declare function getEnv(...vars: string[]): string | undefined;
+export declare function getEnvBoolean(...vars: string[]): boolean | undefined;
+export declare function getEnvNumber(...vars: string[]): number | undefined;
+export declare function getVersion(): string;
+export declare function callAsync<T>(tok: string, props: pulumi.Inputs, res?: pulumi.Resource, opts?: {
+    property?: string;
+}): Promise<T>;

package/utilities.js

@@ -0,0 +1,101 @@
+"use strict";
+// *** WARNING: this file was generated by the Pulumi Terraform Bridge (tfgen) Tool. ***
+// *** Do not edit by hand unless you're certain you know what you are doing! ***
+var __awaiter = (this && this.__awaiter) || function (thisArg, _arguments, P, generator) {
+    function adopt(value) { return value instanceof P ? value : new P(function (resolve) { resolve(value); }); }
+    return new (P || (P = Promise))(function (resolve, reject) {
+        function fulfilled(value) { try { step(generator.next(value)); } catch (e) { reject(e); } }
+        function rejected(value) { try { step(generator["throw"](value)); } catch (e) { reject(e); } }
+        function step(result) { result.done ? resolve(result.value) : adopt(result.value).then(fulfilled, rejected); }
+        step((generator = generator.apply(thisArg, _arguments || [])).next());
+    });
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.callAsync = exports.lazyLoad = exports.resourceOptsDefaults = exports.getVersion = exports.getEnvNumber = exports.getEnvBoolean = exports.getEnv = void 0;
+const runtime = require("@pulumi/pulumi/runtime");
+function getEnv(...vars) {
+    for (const v of vars) {
+        const value = process.env[v];
+        if (value) {
+            return value;
+        }
+    }
+    return undefined;
+}
+exports.getEnv = getEnv;
+function getEnvBoolean(...vars) {
+    const s = getEnv(...vars);
+    if (s !== undefined) {
+        // NOTE: these values are taken from https://golang.org/src/strconv/atob.go?s=351:391#L1, which is what
+        // Terraform uses internally when parsing boolean values.
+        if (["1", "t", "T", "true", "TRUE", "True"].find(v => v === s) !== undefined) {
+            return true;
+        }
+        if (["0", "f", "F", "false", "FALSE", "False"].find(v => v === s) !== undefined) {
+            return false;
+        }
+    }
+    return undefined;
+}
+exports.getEnvBoolean = getEnvBoolean;
+function getEnvNumber(...vars) {
+    const s = getEnv(...vars);
+    if (s !== undefined) {
+        const f = parseFloat(s);
+        if (!isNaN(f)) {
+            return f;
+        }
+    }
+    return undefined;
+}
+exports.getEnvNumber = getEnvNumber;
+function getVersion() {
+    let version = require('./package.json').version;
+    // Node allows for the version to be prefixed by a "v", while semver doesn't.
+    // If there is a v, strip it off.
+    if (version.indexOf('v') === 0) {
+        version = version.slice(1);
+    }
+    return version;
+}
+exports.getVersion = getVersion;
+/** @internal */
+function resourceOptsDefaults() {
+    return { version: getVersion(), pluginDownloadURL: "github://api.github.com/pulumi/pulumi-cloudngfwaws" };
+}
+exports.resourceOptsDefaults = resourceOptsDefaults;
+/** @internal */
+function lazyLoad(exports, props, loadModule) {
+    for (let property of props) {
+        Object.defineProperty(exports, property, {
+            enumerable: true,
+            get: function () {
+                return loadModule()[property];
+            },
+        });
+    }
+}
+exports.lazyLoad = lazyLoad;
+function callAsync(tok, props, res, opts) {
+    return __awaiter(this, void 0, void 0, function* () {
+        const o = runtime.call(tok, props, res);
+        const value = yield o.promise(true /*withUnknowns*/);
+        const isKnown = yield o.isKnown;
+        const isSecret = yield o.isSecret;
+        const problem = !isKnown ? "an unknown value"
+            : isSecret ? "a secret value"
+                : undefined;
+        // Ingoring o.resources silently. They are typically non-empty, r.f() calls include r as a dependency.
+        if (problem) {
+            throw new Error(`Plain resource method "${tok}" incorrectly returned ${problem}. ` +
+                "This is an error in the provider, please report this to the provider developer.");
+        }
+        // Extract a single property if requested.
+        if (opts && opts.property) {
+            return value[opts.property];
+        }
+        return value;
+    });
+}
+exports.callAsync = callAsync;
+//# sourceMappingURL=utilities.js.map

package/utilities.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"utilities.js","sourceRoot":"","sources":["../utilities.ts"],"names":[],"mappings":";AAAA,wFAAwF;AACxF,iFAAiF;;;;;;;;;;;;AAGjF,kDAAkD;AAGlD,SAAgB,MAAM,CAAC,GAAG,IAAc;IACpC,KAAK,MAAM,CAAC,IAAI,IAAI,EAAE;QAClB,MAAM,KAAK,GAAG,OAAO,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC;QAC7B,IAAI,KAAK,EAAE;YACP,OAAO,KAAK,CAAC;SAChB;KACJ;IACD,OAAO,SAAS,CAAC;AACrB,CAAC;AARD,wBAQC;AAED,SAAgB,aAAa,CAAC,GAAG,IAAc;IAC3C,MAAM,CAAC,GAAG,MAAM,CAAC,GAAG,IAAI,CAAC,CAAC;IAC1B,IAAI,CAAC,KAAK,SAAS,EAAE;QACjB,uGAAuG;QACvG,yDAAyD;QACzD,IAAI,CAAC,GAAG,EAAE,GAAG,EAAE,GAAG,EAAE,MAAM,EAAE,MAAM,EAAE,MAAM,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,KAAK,CAAC,CAAC,KAAK,SAAS,EAAE;YAC1E,OAAO,IAAI,CAAC;SACf;QACD,IAAI,CAAC,GAAG,EAAE,GAAG,EAAE,GAAG,EAAE,OAAO,EAAE,OAAO,EAAE,OAAO,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,KAAK,CAAC,CAAC,KAAK,SAAS,EAAE;YAC7E,OAAO,KAAK,CAAC;SAChB;KACJ;IACD,OAAO,SAAS,CAAC;AACrB,CAAC;AAbD,sCAaC;AAED,SAAgB,YAAY,CAAC,GAAG,IAAc;IAC1C,MAAM,CAAC,GAAG,MAAM,CAAC,GAAG,IAAI,CAAC,CAAC;IAC1B,IAAI,CAAC,KAAK,SAAS,EAAE;QACjB,MAAM,CAAC,GAAG,UAAU,CAAC,CAAC,CAAC,CAAC;QACxB,IAAI,CAAC,KAAK,CAAC,CAAC,CAAC,EAAE;YACX,OAAO,CAAC,CAAC;SACZ;KACJ;IACD,OAAO,SAAS,CAAC;AACrB,CAAC;AATD,oCASC;AAED,SAAgB,UAAU;IACtB,IAAI,OAAO,GAAG,OAAO,CAAC,gBAAgB,CAAC,CAAC,OAAO,CAAC;IAChD,6EAA6E;IAC7E,iCAAiC;IACjC,IAAI,OAAO,CAAC,OAAO,CAAC,GAAG,CAAC,KAAK,CAAC,EAAE;QAC5B,OAAO,GAAG,OAAO,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC;KAC9B;IACD,OAAO,OAAO,CAAC;AACnB,CAAC;AARD,gCAQC;AAED,gBAAgB;AAChB,SAAgB,oBAAoB;IAChC,OAAO,EAAE,OAAO,EAAE,UAAU,EAAE,EAAE,iBAAiB,EAAE,oDAAoD,EAAE,CAAC;AAC9G,CAAC;AAFD,oDAEC;AAED,gBAAgB;AAChB,SAAgB,QAAQ,CAAC,OAAY,EAAE,KAAe,EAAE,UAAe;IACnE,KAAK,IAAI,QAAQ,IAAI,KAAK,EAAE;QACxB,MAAM,CAAC,cAAc,CAAC,OAAO,EAAE,QAAQ,EAAE;YACrC,UAAU,EAAE,IAAI;YAChB,GAAG,EAAE;gBACD,OAAO,UAAU,EAAE,CAAC,QAAQ,CAAC,CAAC;YAClC,CAAC;SACJ,CAAC,CAAC;KACN;AACL,CAAC;AATD,4BASC;AAED,SAAsB,SAAS,CAC3B,GAAW,EACX,KAAoB,EACpB,GAAqB,EACrB,IAA0B;;QAE1B,MAAM,CAAC,GAAQ,OAAO,CAAC,IAAI,CAAI,GAAG,EAAE,KAAK,EAAE,GAAG,CAAC,CAAC;QAChD,MAAM,KAAK,GAAG,MAAM,CAAC,CAAC,OAAO,CAAC,IAAI,CAAC,gBAAgB,CAAC,CAAC;QACrD,MAAM,OAAO,GAAG,MAAM,CAAC,CAAC,OAAO,CAAC;QAChC,MAAM,QAAQ,GAAG,MAAM,CAAC,CAAC,QAAQ,CAAC;QAClC,MAAM,OAAO,GACT,CAAC,OAAO,CAAC,CAAC,CAAC,kBAAkB;YAC7B,CAAC,CAAC,QAAQ,CAAC,CAAC,CAAC,gBAAgB;gBAC7B,CAAC,CAAC,SAAS,CAAC;QAChB,sGAAsG;QACtG,IAAI,OAAO,EAAE;YACT,MAAM,IAAI,KAAK,CAAC,0BAA0B,GAAG,0BAA0B,OAAO,IAAI;gBAC9E,iFAAiF,CAAC,CAAC;SAC1F;QACD,0CAA0C;QAC1C,IAAI,IAAI,IAAI,IAAI,CAAC,QAAQ,EAAE;YACvB,OAAO,KAAK,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC;SAC/B;QACD,OAAO,KAAK,CAAC;IACjB,CAAC;CAAA;AAxBD,8BAwBC"}