npm - @pulumi/databricks - Versions diffs - 1.48.0-alpha.1721971593 → 1.48.0-alpha.1722058383 - Mend

@pulumi/databricks 1.48.0-alpha.1721971593 → 1.48.0-alpha.1722058383

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (150) hide show

package/artifactAllowlist.d.ts +7 -0
package/artifactAllowlist.js +7 -0
package/artifactAllowlist.js.map +1 -1
package/catalog.d.ts +6 -0
package/catalog.js +6 -0
package/catalog.js.map +1 -1
package/catalogWorkspaceBinding.d.ts +12 -0
package/catalogWorkspaceBinding.js +12 -0
package/catalogWorkspaceBinding.js.map +1 -1
package/cluster.d.ts +9 -0
package/cluster.js.map +1 -1
package/dashboard.d.ts +24 -0
package/dashboard.js +24 -0
package/dashboard.js.map +1 -1
package/dbfsFile.d.ts +11 -0
package/dbfsFile.js +2 -0
package/dbfsFile.js.map +1 -1
package/directory.d.ts +38 -0
package/directory.js +29 -0
package/directory.js.map +1 -1
package/file.d.ts +69 -0
package/file.js +69 -0
package/file.js.map +1 -1
package/getCatalog.d.ts +12 -0
package/getCatalog.js +12 -0
package/getCatalog.js.map +1 -1
package/getCatalogs.d.ts +12 -0
package/getCatalogs.js +12 -0
package/getCatalogs.js.map +1 -1
package/getClusters.d.ts +8 -0
package/getClusters.js +8 -0
package/getClusters.js.map +1 -1
package/getCurrentUser.d.ts +4 -4
package/getCurrentUser.js +4 -4
package/getExternalLocation.d.ts +8 -0
package/getExternalLocation.js +8 -0
package/getExternalLocation.js.map +1 -1
package/getExternalLocations.d.ts +8 -0
package/getExternalLocations.js +8 -0
package/getExternalLocations.js.map +1 -1
package/getJobs.d.ts +12 -0
package/getJobs.js +12 -0
package/getJobs.js.map +1 -1
package/getMetastore.d.ts +12 -0
package/getMetastore.js +12 -0
package/getMetastore.js.map +1 -1
package/getMetastores.d.ts +12 -0
package/getMetastores.js +12 -0
package/getMetastores.js.map +1 -1
package/getSchema.d.ts +4 -6
package/getSchema.js +4 -6
package/getSchema.js.map +1 -1
package/getSchemas.d.ts +12 -0
package/getSchemas.js +12 -0
package/getSchemas.js.map +1 -1
package/getShare.d.ts +4 -0
package/getShare.js +4 -0
package/getShare.js.map +1 -1
package/getShares.d.ts +4 -0
package/getShares.js +4 -0
package/getShares.js.map +1 -1
package/getSqlWarehouses.d.ts +8 -0
package/getSqlWarehouses.js +8 -0
package/getSqlWarehouses.js.map +1 -1
package/getStorageCredential.d.ts +8 -0
package/getStorageCredential.js +8 -0
package/getStorageCredential.js.map +1 -1
package/getStorageCredentials.d.ts +8 -0
package/getStorageCredentials.js +8 -0
package/getStorageCredentials.js.map +1 -1
package/getTable.d.ts +12 -0
package/getTable.js +12 -0
package/getTable.js.map +1 -1
package/getTables.d.ts +12 -0
package/getTables.js +12 -0
package/getTables.js.map +1 -1
package/getViews.d.ts +4 -4
package/getViews.js +4 -4
package/getVolume.d.ts +4 -6
package/getVolume.js +4 -6
package/getVolume.js.map +1 -1
package/getVolumes.d.ts +8 -0
package/getVolumes.js +8 -0
package/getVolumes.js.map +1 -1
package/gitCredential.d.ts +23 -0
package/gitCredential.js +23 -0
package/gitCredential.js.map +1 -1
package/globalInitScript.d.ts +11 -0
package/globalInitScript.js +2 -0
package/globalInitScript.js.map +1 -1
package/grant.d.ts +396 -0
package/grant.js +396 -0
package/grant.js.map +1 -1
package/grants.d.ts +433 -0
package/grants.js +433 -0
package/grants.js.map +1 -1
package/group.d.ts +9 -0
package/group.js.map +1 -1
package/job.d.ts +69 -0
package/job.js +69 -0
package/job.js.map +1 -1
package/mlflowWebhook.d.ts +1 -1
package/mlflowWebhook.js +1 -1
package/mwsCustomerManagedKeys.d.ts +9 -0
package/mwsCustomerManagedKeys.js +9 -0
package/mwsCustomerManagedKeys.js.map +1 -1
package/mwsVpcEndpoint.d.ts +192 -0
package/mwsVpcEndpoint.js +192 -0
package/mwsVpcEndpoint.js.map +1 -1
package/notebook.d.ts +11 -0
package/notebook.js +2 -0
package/notebook.js.map +1 -1
package/oboToken.d.ts +64 -0
package/oboToken.js +64 -0
package/oboToken.js.map +1 -1
package/package.json +2 -2
package/permissionAssignment.d.ts +9 -0
package/permissionAssignment.js.map +1 -1
package/permissions.d.ts +684 -18
package/permissions.js +684 -18
package/permissions.js.map +1 -1
package/repo.d.ts +32 -0
package/repo.js +32 -0
package/repo.js.map +1 -1
package/servicePrincipal.d.ts +9 -0
package/servicePrincipal.js.map +1 -1
package/servicePrincipalSecret.d.ts +8 -0
package/servicePrincipalSecret.js +8 -0
package/servicePrincipalSecret.js.map +1 -1
package/share.d.ts +93 -0
package/share.js +93 -0
package/share.js.map +1 -1
package/sqlPermissions.d.ts +15 -3
package/sqlPermissions.js +15 -3
package/sqlPermissions.js.map +1 -1
package/token.d.ts +2 -2
package/token.js +2 -2
package/types/input.d.ts +16 -0
package/types/output.d.ts +16 -0
package/user.d.ts +9 -0
package/user.js.map +1 -1
package/workspaceBinding.d.ts +12 -0
package/workspaceBinding.js +12 -0
package/workspaceBinding.js.map +1 -1
package/workspaceConf.d.ts +4 -0
package/workspaceConf.js +4 -0
package/workspaceConf.js.map +1 -1
package/workspaceFile.d.ts +11 -0
package/workspaceFile.js +2 -0
package/workspaceFile.js.map +1 -1

package/grants.js CHANGED Viewed

@@ -6,6 +6,439 @@ exports.Grants = void 0;
 const pulumi = require("@pulumi/pulumi");
 const utilities = require("./utilities");
 /**
+ * > **Note**
+ *   This article refers to the privileges and inheritance model in Privilege Model version 1.0. If you created your metastore during the public preview (before August 25, 2022), you can upgrade to Privilege Model version 1.0 following [Upgrade to privilege inheritance](https://docs.databricks.com/data-governance/unity-catalog/hive-metastore.html)
+ *
+ * > **Note**
+ *   Unity Catalog APIs are accessible via **workspace-level APIs**. This design may change in the future. Account-level principal grants can be assigned with any valid workspace as the Unity Catalog is decoupled from specific workspaces. More information in [the official documentation](https://docs.databricks.com/data-governance/unity-catalog/index.html).
+ *
+ * Two different resources help you manage your Unity Catalog grants for a securable. Each of these resources serves a different use case:
+ *
+ * - databricks_grants: Authoritative. Sets the grants of a securable and replaces any existing grants defined inside or outside of Pulumi.
+ * - databricks_grant: Authoritative for a given principal. Updates the grants of a securable to a single principal. Other principals within the grants for the securables are preserved.
+ *
+ * In Unity Catalog all users initially have no access to data. Only Metastore Admins can create objects and can grant/revoke access on individual objects to users and groups. Every securable object in Unity Catalog has an owner. The owner can be any account-level user or group, called principals in general. The principal that creates an object becomes its owner. Owners receive `ALL_PRIVILEGES` on the securable object (e.g., `SELECT` and `MODIFY` on a table), as well as the permission to grant privileges to other principals.
+ *
+ * Securable objects are hierarchical and privileges are inherited downward. The highest level object that privileges are inherited from is the catalog. This means that granting a privilege on a catalog or schema automatically grants the privilege to all current and future objects within the catalog or schema. Privileges that are granted on a metastore are not inherited.
+ *
+ * Every `databricks.Grants` resource must have exactly one securable identifier and one or more `grant` blocks with the following arguments:
+ *
+ * - `principal` - User name, group name or service principal application ID.
+ * - `privileges` - One or more privileges that are specific to a securable type.
+ *
+ * For the latest list of privilege types that apply to each securable object in Unity Catalog, please refer to the [official documentation](https://docs.databricks.com/en/data-governance/unity-catalog/manage-privileges/privileges.html#privilege-types-by-securable-object-in-unity-catalog)
+ *
+ * Pulumi will handle any configuration drift on every `pulumi up` run, even when grants are changed outside of Pulumi state.
+ *
+ * Unlike the [SQL specification](https://docs.databricks.com/sql/language-manual/sql-ref-privileges.html#privilege-types), all privileges to be written with underscore instead of space, e.g. `CREATE_TABLE` and not `CREATE TABLE`. Below summarizes which privilege types apply to each securable object in the catalog:
+ *
+ * ## Metastore grants
+ *
+ * You can grant `CREATE_CATALOG`, `CREATE_CONNECTION`, `CREATE_EXTERNAL_LOCATION`, `CREATE_PROVIDER`, `CREATE_RECIPIENT`, `CREATE_SHARE`, `CREATE_STORAGE_CREDENTIAL`, `MANAGE_ALLOWLIST`, `SET_SHARE_PERMISSION`, `USE_MARKETPLACE_ASSETS`, `USE_CONNECTION`, `USE_PROVIDER`, `USE_RECIPIENT` and `USE_SHARE` privileges to databricks.Metastore assigned to the workspace.
+ *
+ * ```typescript
+ * import * as pulumi from "@pulumi/pulumi";
+ * import * as databricks from "@pulumi/databricks";
+ *
+ * const sandbox = new databricks.Grants("sandbox", {
+ *     metastore: "metastore_id",
+ *     grants: [
+ *         {
+ *             principal: "Data Engineers",
+ *             privileges: [
+ *                 "CREATE_CATALOG",
+ *                 "CREATE_EXTERNAL_LOCATION",
+ *             ],
+ *         },
+ *         {
+ *             principal: "Data Sharer",
+ *             privileges: [
+ *                 "CREATE_RECIPIENT",
+ *                 "CREATE_SHARE",
+ *             ],
+ *         },
+ *     ],
+ * });
+ * ```
+ *
+ * ## Catalog grants
+ *
+ * You can grant `ALL_PRIVILEGES`, `APPLY_TAG`, `CREATE_CONNECTION`, `CREATE_SCHEMA`, `USE_CATALOG` privileges to databricks.Catalog specified in the `catalog` attribute. You can also grant `CREATE_FUNCTION`, `CREATE_TABLE`, `CREATE_VOLUME`, `EXECUTE`, `MODIFY`, `REFRESH`, `SELECT`, `READ_VOLUME`, `WRITE_VOLUME` and `USE_SCHEMA` at the catalog level to apply them to the pertinent current and future securable objects within the catalog:
+ *
+ * ```typescript
+ * import * as pulumi from "@pulumi/pulumi";
+ * import * as databricks from "@pulumi/databricks";
+ *
+ * const sandbox = new databricks.Catalog("sandbox", {
+ *     name: "sandbox",
+ *     comment: "this catalog is managed by terraform",
+ *     properties: {
+ *         purpose: "testing",
+ *     },
+ * });
+ * const sandboxGrants = new databricks.Grants("sandbox", {
+ *     catalog: sandbox.name,
+ *     grants: [
+ *         {
+ *             principal: "Data Scientists",
+ *             privileges: [
+ *                 "USE_CATALOG",
+ *                 "USE_SCHEMA",
+ *                 "CREATE_TABLE",
+ *                 "SELECT",
+ *             ],
+ *         },
+ *         {
+ *             principal: "Data Engineers",
+ *             privileges: [
+ *                 "USE_CATALOG",
+ *                 "USE_SCHEMA",
+ *                 "CREATE_SCHEMA",
+ *                 "CREATE_TABLE",
+ *                 "MODIFY",
+ *             ],
+ *         },
+ *         {
+ *             principal: "Data Analyst",
+ *             privileges: [
+ *                 "USE_CATALOG",
+ *                 "USE_SCHEMA",
+ *                 "SELECT",
+ *             ],
+ *         },
+ *     ],
+ * });
+ * ```
+ *
+ * ## Schema grants
+ *
+ * You can grant `ALL_PRIVILEGES`, `APPLY_TAG`, `CREATE_FUNCTION`, `CREATE_TABLE`, `CREATE_VOLUME` and `USE_SCHEMA` privileges to _`catalog.schema`_ specified in the `schema` attribute. You can also grant `EXECUTE`, `MODIFY`, `REFRESH`, `SELECT`, `READ_VOLUME`, `WRITE_VOLUME` at the schema level to apply them to the pertinent current and future securable objects within the schema:
+ *
+ * ```typescript
+ * import * as pulumi from "@pulumi/pulumi";
+ * import * as databricks from "@pulumi/databricks";
+ *
+ * const things = new databricks.Schema("things", {
+ *     catalogName: sandbox.id,
+ *     name: "things",
+ *     comment: "this schema is managed by terraform",
+ *     properties: {
+ *         kind: "various",
+ *     },
+ * });
+ * const thingsGrants = new databricks.Grants("things", {
+ *     schema: things.id,
+ *     grants: [{
+ *         principal: "Data Engineers",
+ *         privileges: [
+ *             "USE_SCHEMA",
+ *             "MODIFY",
+ *         ],
+ *     }],
+ * });
+ * ```
+ *
+ * ## Table grants
+ *
+ * You can grant `ALL_PRIVILEGES`, `APPLY_TAG`, `SELECT` and `MODIFY` privileges to _`catalog.schema.table`_ specified in the `table` attribute.
+ *
+ * ```typescript
+ * import * as pulumi from "@pulumi/pulumi";
+ * import * as databricks from "@pulumi/databricks";
+ *
+ * const customers = new databricks.Grants("customers", {
+ *     table: "main.reporting.customers",
+ *     grants: [
+ *         {
+ *             principal: "Data Engineers",
+ *             privileges: [
+ *                 "MODIFY",
+ *                 "SELECT",
+ *             ],
+ *         },
+ *         {
+ *             principal: "Data Analysts",
+ *             privileges: ["SELECT"],
+ *         },
+ *     ],
+ * });
+ * ```
+ *
+ * You can also apply grants dynamically with databricks.getTables data resource:
+ *
+ * ```typescript
+ * import * as pulumi from "@pulumi/pulumi";
+ * import * as databricks from "@pulumi/databricks";
+ *
+ * export = async () => {
+ *     const things = await databricks.getTables({
+ *         catalogName: "sandbox",
+ *         schemaName: "things",
+ *     });
+ *     const thingsGrants: databricks.Grants[] = [];
+ *     for (const range of things.ids.map((v, k) => ({key: k, value: v}))) {
+ *         thingsGrants.push(new databricks.Grants(`things-${range.key}`, {
+ *             table: range.value,
+ *             grants: [{
+ *                 principal: "sensitive",
+ *                 privileges: [
+ *                     "SELECT",
+ *                     "MODIFY",
+ *                 ],
+ *             }],
+ *         }));
+ *     }
+ * }
+ * ```
+ *
+ * ## View grants
+ *
+ * You can grant `ALL_PRIVILEGES`, `APPLY_TAG` and `SELECT` privileges to _`catalog.schema.view`_ specified in `table` attribute.
+ *
+ * ```typescript
+ * import * as pulumi from "@pulumi/pulumi";
+ * import * as databricks from "@pulumi/databricks";
+ *
+ * const customer360 = new databricks.Grants("customer360", {
+ *     table: "main.reporting.customer360",
+ *     grants: [{
+ *         principal: "Data Analysts",
+ *         privileges: ["SELECT"],
+ *     }],
+ * });
+ * ```
+ *
+ * You can also apply grants dynamically with databricks.getViews data resource:
+ *
+ * ```typescript
+ * import * as pulumi from "@pulumi/pulumi";
+ * import * as databricks from "@pulumi/databricks";
+ *
+ * export = async () => {
+ *     const customers = await databricks.getViews({
+ *         catalogName: "main",
+ *         schemaName: "customers",
+ *     });
+ *     const customersGrants: databricks.Grants[] = [];
+ *     for (const range of customers.ids.map((v, k) => ({key: k, value: v}))) {
+ *         customersGrants.push(new databricks.Grants(`customers-${range.key}`, {
+ *             table: range.value,
+ *             grants: [{
+ *                 principal: "sensitive",
+ *                 privileges: [
+ *                     "SELECT",
+ *                     "MODIFY",
+ *                 ],
+ *             }],
+ *         }));
+ *     }
+ * }
+ * ```
+ *
+ * ## Volume grants
+ *
+ * You can grant `ALL_PRIVILEGES`, `READ_VOLUME` and `WRITE_VOLUME` privileges to _`catalog.schema.volume`_ specified in the `volume` attribute.
+ *
+ * ```typescript
+ * import * as pulumi from "@pulumi/pulumi";
+ * import * as databricks from "@pulumi/databricks";
+ *
+ * const _this = new databricks.Volume("this", {
+ *     name: "quickstart_volume",
+ *     catalogName: sandbox.name,
+ *     schemaName: things.name,
+ *     volumeType: "EXTERNAL",
+ *     storageLocation: some.url,
+ *     comment: "this volume is managed by terraform",
+ * });
+ * const volume = new databricks.Grants("volume", {
+ *     volume: _this.id,
+ *     grants: [{
+ *         principal: "Data Engineers",
+ *         privileges: ["WRITE_VOLUME"],
+ *     }],
+ * });
+ * ```
+ *
+ * ## Registered model grants
+ *
+ * You can grant `ALL_PRIVILEGES`, `APPLY_TAG`, and `EXECUTE` privileges to _`catalog.schema.model`_ specified in the `model` attribute.
+ *
+ * ```typescript
+ * import * as pulumi from "@pulumi/pulumi";
+ * import * as databricks from "@pulumi/databricks";
+ *
+ * const customers = new databricks.Grants("customers", {
+ *     model: "main.reporting.customer_model",
+ *     grants: [
+ *         {
+ *             principal: "Data Engineers",
+ *             privileges: [
+ *                 "APPLY_TAG",
+ *                 "EXECUTE",
+ *             ],
+ *         },
+ *         {
+ *             principal: "Data Analysts",
+ *             privileges: ["EXECUTE"],
+ *         },
+ *     ],
+ * });
+ * ```
+ *
+ * ## Function grants
+ *
+ * You can grant `ALL_PRIVILEGES` and `EXECUTE` privileges to _`catalog.schema.function`_ specified in the `function` attribute.
+ *
+ * ```typescript
+ * import * as pulumi from "@pulumi/pulumi";
+ * import * as databricks from "@pulumi/databricks";
+ *
+ * const udf = new databricks.Grants("udf", {
+ *     "function": "main.reporting.udf",
+ *     grants: [
+ *         {
+ *             principal: "Data Engineers",
+ *             privileges: ["EXECUTE"],
+ *         },
+ *         {
+ *             principal: "Data Analysts",
+ *             privileges: ["EXECUTE"],
+ *         },
+ *     ],
+ * });
+ * ```
+ *
+ * ## Storage credential grants
+ *
+ * You can grant `ALL_PRIVILEGES`, `CREATE_EXTERNAL_LOCATION`, `CREATE_EXTERNAL_TABLE`, `READ_FILES` and `WRITE_FILES` privileges to databricks.StorageCredential id specified in `storageCredential` attribute:
+ *
+ * ```typescript
+ * import * as pulumi from "@pulumi/pulumi";
+ * import * as databricks from "@pulumi/databricks";
+ *
+ * const external = new databricks.StorageCredential("external", {
+ *     name: externalDataAccess.name,
+ *     awsIamRole: {
+ *         roleArn: externalDataAccess.arn,
+ *     },
+ *     comment: "Managed by TF",
+ * });
+ * const externalCreds = new databricks.Grants("external_creds", {
+ *     storageCredential: external.id,
+ *     grants: [{
+ *         principal: "Data Engineers",
+ *         privileges: ["CREATE_EXTERNAL_TABLE"],
+ *     }],
+ * });
+ * ```
+ *
+ * ## External location grants
+ *
+ * You can grant `ALL_PRIVILEGES`, `CREATE_EXTERNAL_TABLE`, `CREATE_MANAGED_STORAGE`, `CREATE EXTERNAL VOLUME`, `READ_FILES` and `WRITE_FILES` privileges to databricks.ExternalLocation id specified in `externalLocation` attribute:
+ *
+ * ```typescript
+ * import * as pulumi from "@pulumi/pulumi";
+ * import * as databricks from "@pulumi/databricks";
+ *
+ * const some = new databricks.ExternalLocation("some", {
+ *     name: "external",
+ *     url: `s3://${externalAwsS3Bucket.id}/some`,
+ *     credentialName: external.id,
+ *     comment: "Managed by TF",
+ * });
+ * const someGrants = new databricks.Grants("some", {
+ *     externalLocation: some.id,
+ *     grants: [
+ *         {
+ *             principal: "Data Engineers",
+ *             privileges: [
+ *                 "CREATE_EXTERNAL_TABLE",
+ *                 "READ_FILES",
+ *             ],
+ *         },
+ *         {
+ *             principal: mySp.applicationId,
+ *             privileges: [
+ *                 "CREATE_EXTERNAL_TABLE",
+ *                 "READ_FILES",
+ *             ],
+ *         },
+ *         {
+ *             principal: myGroup.displayName,
+ *             privileges: [
+ *                 "CREATE_EXTERNAL_TABLE",
+ *                 "READ_FILES",
+ *             ],
+ *         },
+ *         {
+ *             principal: myUser.userName,
+ *             privileges: [
+ *                 "CREATE_EXTERNAL_TABLE",
+ *                 "READ_FILES",
+ *             ],
+ *         },
+ *     ],
+ * });
+ * ```
+ *
+ * ## Connection grants
+ *
+ * You can grant `ALL_PRIVILEGES`, `USE_CONNECTION` and `CREATE_FOREIGN_CATALOG` to databricks.Connection specified in `foreignConnection` attribute:
+ *
+ * ```typescript
+ * import * as pulumi from "@pulumi/pulumi";
+ * import * as databricks from "@pulumi/databricks";
+ *
+ * const mysql = new databricks.Connection("mysql", {
+ *     name: "mysql_connection",
+ *     connectionType: "MYSQL",
+ *     comment: "this is a connection to mysql db",
+ *     options: {
+ *         host: "test.mysql.database.azure.com",
+ *         port: "3306",
+ *         user: "user",
+ *         password: "password",
+ *     },
+ *     properties: {
+ *         purpose: "testing",
+ *     },
+ * });
+ * const some = new databricks.Grants("some", {
+ *     foreignConnection: mysql.name,
+ *     grants: [{
+ *         principal: "Data Engineers",
+ *         privileges: [
+ *             "CREATE_FOREIGN_CATALOG",
+ *             "USE_CONNECTION",
+ *         ],
+ *     }],
+ * });
+ * ```
+ *
+ * ## Delta Sharing share grants
+ *
+ * You can grant `SELECT` to databricks.Recipient on databricks.Share name specified in `share` attribute:
+ *
+ * ```typescript
+ * import * as pulumi from "@pulumi/pulumi";
+ * import * as databricks from "@pulumi/databricks";
+ *
+ * const some = new databricks.Share("some", {name: "my_share"});
+ * const someRecipient = new databricks.Recipient("some", {name: "my_recipient"});
+ * const someGrants = new databricks.Grants("some", {
+ *     share: some.name,
+ *     grants: [{
+ *         principal: someRecipient.name,
+ *         privileges: ["SELECT"],
+ *     }],
+ * });
+ * ```
+ *
+ * ## Other access control
+ *
+ * You can control Databricks General Permissions through databricks.Permissions resource.
+ *
  * ## Import
  *
  * The resource can be imported using combination of securable type (`table`, `catalog`, `foreign_connection`, ...) and it's name:

package/grants.js.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"file":"grants.js","sourceRoot":"","sources":["../grants.ts"],"names":[],"mappings":";AAAA,wFAAwF;AACxF,iFAAiF;;;AAEjF,yCAAyC;AAGzC,yCAAyC;AAEzC~~;;;;;;;;;;GAUG~~;AACH,MAAa,MAAO,SAAQ,MAAM,CAAC,cAAc;IAC7C;;;;;;;;OAQG;IACI,MAAM,CAAC,GAAG,CAAC,IAAY,EAAE,EAA2B,EAAE,KAAmB,EAAE,IAAmC;QACjH,OAAO,IAAI,MAAM,CAAC,IAAI,EAAO,KAAK,kCAAO,IAAI,KAAE,EAAE,EAAE,EAAE,IAAG,CAAC;IAC7D,CAAC;IAKD;;;OAGG;IACI,MAAM,CAAC,UAAU,CAAC,GAAQ;QAC7B,IAAI,GAAG,KAAK,SAAS,IAAI,GAAG,KAAK,IAAI,EAAE;YACnC,OAAO,KAAK,CAAC;SAChB;QACD,OAAO,GAAG,CAAC,cAAc,CAAC,KAAK,MAAM,CAAC,YAAY,CAAC;IACvD,CAAC;IAyBD,YAAY,IAAY,EAAE,WAAsC,EAAE,IAAmC;QACjG,IAAI,cAAc,GAAkB,EAAE,CAAC;QACvC,IAAI,GAAG,IAAI,IAAI,EAAE,CAAC;QAClB,IAAI,IAAI,CAAC,EAAE,EAAE;YACT,MAAM,KAAK,GAAG,WAAsC,CAAC;YACrD,cAAc,CAAC,SAAS,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,SAAS,CAAC;YAC9D,cAAc,CAAC,kBAAkB,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,gBAAgB,CAAC,CAAC,CAAC,SAAS,CAAC;YAChF,cAAc,CAAC,mBAAmB,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,iBAAiB,CAAC,CAAC,CAAC,SAAS,CAAC;YAClF,cAAc,CAAC,UAAU,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,QAAQ,CAAC,CAAC,CAAC,SAAS,CAAC;YAChE,cAAc,CAAC,QAAQ,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC,CAAC,SAAS,CAAC;YAC5D,cAAc,CAAC,WAAW,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,SAAS,CAAC,CAAC,CAAC,SAAS,CAAC;YAClE,cAAc,CAAC,OAAO,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,KAAK,CAAC,CAAC,CAAC,SAAS,CAAC;YAC1D,cAAc,CAAC,UAAU,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,QAAQ,CAAC,CAAC,CAAC,SAAS,CAAC;YAChE,cAAc,CAAC,WAAW,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,SAAS,CAAC,CAAC,CAAC,SAAS,CAAC;YAClE,cAAc,CAAC,QAAQ,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC,CAAC,SAAS,CAAC;YAC5D,cAAc,CAAC,OAAO,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,KAAK,CAAC,CAAC,CAAC,SAAS,CAAC;YAC1D,cAAc,CAAC,mBAAmB,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,iBAAiB,CAAC,CAAC,CAAC,SAAS,CAAC;YAClF,cAAc,CAAC,OAAO,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,KAAK,CAAC,CAAC,CAAC,SAAS,CAAC;YAC1D,cAAc,CAAC,QAAQ,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC,CAAC,SAAS,CAAC;SAC/D;aAAM;YACH,MAAM,IAAI,GAAG,WAAqC,CAAC;YACnD,IAAI,CAAC,CAAC,IAAI,IAAI,IAAI,CAAC,MAAM,KAAK,SAAS,CAAC,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE;gBACnD,MAAM,IAAI,KAAK,CAAC,oCAAoC,CAAC,CAAC;aACzD;YACD,cAAc,CAAC,SAAS,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC,CAAC,SAAS,CAAC;YAC5D,cAAc,CAAC,kBAAkB,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,gBAAgB,CAAC,CAAC,CAAC,SAAS,CAAC;YAC9E,cAAc,CAAC,mBAAmB,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,iBAAiB,CAAC,CAAC,CAAC,SAAS,CAAC;YAChF,cAAc,CAAC,UAAU,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC,CAAC,SAAS,CAAC;YAC9D,cAAc,CAAC,QAAQ,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC,CAAC,SAAS,CAAC;YAC1D,cAAc,CAAC,WAAW,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,SAAS,CAAC,CAAC,CAAC,SAAS,CAAC;YAChE,cAAc,CAAC,OAAO,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,CAAC,SAAS,CAAC;YACxD,cAAc,CAAC,UAAU,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC,CAAC,SAAS,CAAC;YAC9D,cAAc,CAAC,WAAW,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,SAAS,CAAC,CAAC,CAAC,SAAS,CAAC;YAChE,cAAc,CAAC,QAAQ,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC,CAAC,SAAS,CAAC;YAC1D,cAAc,CAAC,OAAO,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,CAAC,SAAS,CAAC;YACxD,cAAc,CAAC,mBAAmB,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,iBAAiB,CAAC,CAAC,CAAC,SAAS,CAAC;YAChF,cAAc,CAAC,OAAO,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,CAAC,SAAS,CAAC;YACxD,cAAc,CAAC,QAAQ,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC,CAAC,SAAS,CAAC;SAC7D;QACD,IAAI,GAAG,MAAM,CAAC,YAAY,CAAC,SAAS,CAAC,oBAAoB,EAAE,EAAE,IAAI,CAAC,CAAC;QACnE,KAAK,CAAC,MAAM,CAAC,YAAY,EAAE,IAAI,EAAE,cAAc,EAAE,IAAI,CAAC,CAAC;IAC3D,CAAC;;AA5FL,wBA6FC;AA/EG,gBAAgB;AACO,mBAAY,GAAG,gCAAgC,CAAC"}
1	+ {"version":3,"file":"grants.js","sourceRoot":"","sources":["../grants.ts"],"names":[],"mappings":";AAAA,wFAAwF;AACxF,iFAAiF;;;AAEjF,yCAAyC;AAGzC,yCAAyC;AAEzC;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GA2bG;AACH,MAAa,MAAO,SAAQ,MAAM,CAAC,cAAc;IAC7C;;;;;;;;OAQG;IACI,MAAM,CAAC,GAAG,CAAC,IAAY,EAAE,EAA2B,EAAE,KAAmB,EAAE,IAAmC;QACjH,OAAO,IAAI,MAAM,CAAC,IAAI,EAAO,KAAK,kCAAO,IAAI,KAAE,EAAE,EAAE,EAAE,IAAG,CAAC;IAC7D,CAAC;IAKD;;;OAGG;IACI,MAAM,CAAC,UAAU,CAAC,GAAQ;QAC7B,IAAI,GAAG,KAAK,SAAS,IAAI,GAAG,KAAK,IAAI,EAAE;YACnC,OAAO,KAAK,CAAC;SAChB;QACD,OAAO,GAAG,CAAC,cAAc,CAAC,KAAK,MAAM,CAAC,YAAY,CAAC;IACvD,CAAC;IAyBD,YAAY,IAAY,EAAE,WAAsC,EAAE,IAAmC;QACjG,IAAI,cAAc,GAAkB,EAAE,CAAC;QACvC,IAAI,GAAG,IAAI,IAAI,EAAE,CAAC;QAClB,IAAI,IAAI,CAAC,EAAE,EAAE;YACT,MAAM,KAAK,GAAG,WAAsC,CAAC;YACrD,cAAc,CAAC,SAAS,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,SAAS,CAAC;YAC9D,cAAc,CAAC,kBAAkB,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,gBAAgB,CAAC,CAAC,CAAC,SAAS,CAAC;YAChF,cAAc,CAAC,mBAAmB,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,iBAAiB,CAAC,CAAC,CAAC,SAAS,CAAC;YAClF,cAAc,CAAC,UAAU,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,QAAQ,CAAC,CAAC,CAAC,SAAS,CAAC;YAChE,cAAc,CAAC,QAAQ,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC,CAAC,SAAS,CAAC;YAC5D,cAAc,CAAC,WAAW,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,SAAS,CAAC,CAAC,CAAC,SAAS,CAAC;YAClE,cAAc,CAAC,OAAO,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,KAAK,CAAC,CAAC,CAAC,SAAS,CAAC;YAC1D,cAAc,CAAC,UAAU,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,QAAQ,CAAC,CAAC,CAAC,SAAS,CAAC;YAChE,cAAc,CAAC,WAAW,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,SAAS,CAAC,CAAC,CAAC,SAAS,CAAC;YAClE,cAAc,CAAC,QAAQ,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC,CAAC,SAAS,CAAC;YAC5D,cAAc,CAAC,OAAO,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,KAAK,CAAC,CAAC,CAAC,SAAS,CAAC;YAC1D,cAAc,CAAC,mBAAmB,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,iBAAiB,CAAC,CAAC,CAAC,SAAS,CAAC;YAClF,cAAc,CAAC,OAAO,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,KAAK,CAAC,CAAC,CAAC,SAAS,CAAC;YAC1D,cAAc,CAAC,QAAQ,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC,CAAC,SAAS,CAAC;SAC/D;aAAM;YACH,MAAM,IAAI,GAAG,WAAqC,CAAC;YACnD,IAAI,CAAC,CAAC,IAAI,IAAI,IAAI,CAAC,MAAM,KAAK,SAAS,CAAC,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE;gBACnD,MAAM,IAAI,KAAK,CAAC,oCAAoC,CAAC,CAAC;aACzD;YACD,cAAc,CAAC,SAAS,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC,CAAC,SAAS,CAAC;YAC5D,cAAc,CAAC,kBAAkB,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,gBAAgB,CAAC,CAAC,CAAC,SAAS,CAAC;YAC9E,cAAc,CAAC,mBAAmB,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,iBAAiB,CAAC,CAAC,CAAC,SAAS,CAAC;YAChF,cAAc,CAAC,UAAU,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC,CAAC,SAAS,CAAC;YAC9D,cAAc,CAAC,QAAQ,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC,CAAC,SAAS,CAAC;YAC1D,cAAc,CAAC,WAAW,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,SAAS,CAAC,CAAC,CAAC,SAAS,CAAC;YAChE,cAAc,CAAC,OAAO,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,CAAC,SAAS,CAAC;YACxD,cAAc,CAAC,UAAU,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC,CAAC,SAAS,CAAC;YAC9D,cAAc,CAAC,WAAW,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,SAAS,CAAC,CAAC,CAAC,SAAS,CAAC;YAChE,cAAc,CAAC,QAAQ,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC,CAAC,SAAS,CAAC;YAC1D,cAAc,CAAC,OAAO,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,CAAC,SAAS,CAAC;YACxD,cAAc,CAAC,mBAAmB,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,iBAAiB,CAAC,CAAC,CAAC,SAAS,CAAC;YAChF,cAAc,CAAC,OAAO,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,CAAC,SAAS,CAAC;YACxD,cAAc,CAAC,QAAQ,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC,CAAC,SAAS,CAAC;SAC7D;QACD,IAAI,GAAG,MAAM,CAAC,YAAY,CAAC,SAAS,CAAC,oBAAoB,EAAE,EAAE,IAAI,CAAC,CAAC;QACnE,KAAK,CAAC,MAAM,CAAC,YAAY,EAAE,IAAI,EAAE,cAAc,EAAE,IAAI,CAAC,CAAC;IAC3D,CAAC;;AA5FL,wBA6FC;AA/EG,gBAAgB;AACO,mBAAY,GAAG,gCAAgC,CAAC"}

package/group.d.ts CHANGED Viewed

@@ -115,6 +115,9 @@ export declare class Group extends pulumi.CustomResource {
      * ID of the group in an external identity provider.
      */
     readonly externalId: pulumi.Output<string | undefined>;
+    /**
+     * Ignore `cannot create group: Group with name X already exists.` errors and implicitly import the specific group into Pulumi state, enforcing entitlements defined in the instance of resource. _This functionality is experimental_ and is designed to simplify corner cases, like Azure Active Directory synchronisation.
+     */
     readonly force: pulumi.Output<boolean | undefined>;
     readonly url: pulumi.Output<string>;
     /**
@@ -158,6 +161,9 @@ export interface GroupState {
      * ID of the group in an external identity provider.
      */
     externalId?: pulumi.Input<string>;
+    /**
+     * Ignore `cannot create group: Group with name X already exists.` errors and implicitly import the specific group into Pulumi state, enforcing entitlements defined in the instance of resource. _This functionality is experimental_ and is designed to simplify corner cases, like Azure Active Directory synchronisation.
+     */
     force?: pulumi.Input<boolean>;
     url?: pulumi.Input<string>;
     /**
@@ -193,6 +199,9 @@ export interface GroupArgs {
      * ID of the group in an external identity provider.
      */
     externalId?: pulumi.Input<string>;
+    /**
+     * Ignore `cannot create group: Group with name X already exists.` errors and implicitly import the specific group into Pulumi state, enforcing entitlements defined in the instance of resource. _This functionality is experimental_ and is designed to simplify corner cases, like Azure Active Directory synchronisation.
+     */
     force?: pulumi.Input<boolean>;
     url?: pulumi.Input<string>;
     /**

package/group.js.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"file":"group.js","sourceRoot":"","sources":["../group.ts"],"names":[],"mappings":";AAAA,wFAAwF;AACxF,iFAAiF;;;AAEjF,yCAAyC;AACzC,yCAAyC;AAEzC;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GA2EG;AACH,MAAa,KAAM,SAAQ,MAAM,CAAC,cAAc;IAC5C;;;;;;;;OAQG;IACI,MAAM,CAAC,GAAG,CAAC,IAAY,EAAE,EAA2B,EAAE,KAAkB,EAAE,IAAmC;QAChH,OAAO,IAAI,KAAK,CAAC,IAAI,EAAO,KAAK,kCAAO,IAAI,KAAE,EAAE,EAAE,EAAE,IAAG,CAAC;IAC5D,CAAC;IAKD;;;OAGG;IACI,MAAM,CAAC,UAAU,CAAC,GAAQ;QAC7B,IAAI,GAAG,KAAK,SAAS,IAAI,GAAG,KAAK,IAAI,EAAE;YACnC,OAAO,KAAK,CAAC;SAChB;QACD,OAAO,GAAG,CAAC,cAAc,CAAC,KAAK,KAAK,CAAC,YAAY,CAAC;IACtD,CAAC;~~IAyCD~~,YAAY,IAAY,EAAE,WAAoC,EAAE,IAAmC;QAC/F,IAAI,cAAc,GAAkB,EAAE,CAAC;QACvC,IAAI,GAAG,IAAI,IAAI,EAAE,CAAC;QAClB,IAAI,IAAI,CAAC,EAAE,EAAE;YACT,MAAM,KAAK,GAAG,WAAqC,CAAC;YACpD,cAAc,CAAC,gBAAgB,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,cAAc,CAAC,CAAC,CAAC,SAAS,CAAC;YAC5E,cAAc,CAAC,oBAAoB,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,kBAAkB,CAAC,CAAC,CAAC,SAAS,CAAC;YACpF,cAAc,CAAC,yBAAyB,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,uBAAuB,CAAC,CAAC,CAAC,SAAS,CAAC;YAC9F,cAAc,CAAC,qBAAqB,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,mBAAmB,CAAC,CAAC,CAAC,SAAS,CAAC;YACtF,cAAc,CAAC,aAAa,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,WAAW,CAAC,CAAC,CAAC,SAAS,CAAC;YACtE,cAAc,CAAC,YAAY,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,UAAU,CAAC,CAAC,CAAC,SAAS,CAAC;YACpE,cAAc,CAAC,OAAO,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,KAAK,CAAC,CAAC,CAAC,SAAS,CAAC;YAC1D,cAAc,CAAC,KAAK,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC,SAAS,CAAC;YACtD,cAAc,CAAC,iBAAiB,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,eAAe,CAAC,CAAC,CAAC,SAAS,CAAC;SACjF;aAAM;YACH,MAAM,IAAI,GAAG,WAAoC,CAAC;YAClD,cAAc,CAAC,gBAAgB,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,cAAc,CAAC,CAAC,CAAC,SAAS,CAAC;YAC1E,cAAc,CAAC,oBAAoB,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,kBAAkB,CAAC,CAAC,CAAC,SAAS,CAAC;YAClF,cAAc,CAAC,yBAAyB,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,uBAAuB,CAAC,CAAC,CAAC,SAAS,CAAC;YAC5F,cAAc,CAAC,qBAAqB,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,mBAAmB,CAAC,CAAC,CAAC,SAAS,CAAC;YACpF,cAAc,CAAC,aAAa,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,WAAW,CAAC,CAAC,CAAC,SAAS,CAAC;YACpE,cAAc,CAAC,YAAY,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,UAAU,CAAC,CAAC,CAAC,SAAS,CAAC;YAClE,cAAc,CAAC,OAAO,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,CAAC,SAAS,CAAC;YACxD,cAAc,CAAC,KAAK,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC,CAAC,SAAS,CAAC;YACpD,cAAc,CAAC,iBAAiB,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,eAAe,CAAC,CAAC,CAAC,SAAS,CAAC;SAC/E;QACD,IAAI,GAAG,MAAM,CAAC,YAAY,CAAC,SAAS,CAAC,oBAAoB,EAAE,EAAE,IAAI,CAAC,CAAC;QACnE,KAAK,CAAC,KAAK,CAAC,YAAY,EAAE,IAAI,EAAE,cAAc,EAAE,IAAI,CAAC,CAAC;IAC1D,CAAC;;~~AA/FL~~,~~sBAgGC~~;~~AAlFG~~,gBAAgB;AACO,kBAAY,GAAG,8BAA8B,CAAC"}
1	+ {"version":3,"file":"group.js","sourceRoot":"","sources":["../group.ts"],"names":[],"mappings":";AAAA,wFAAwF;AACxF,iFAAiF;;;AAEjF,yCAAyC;AACzC,yCAAyC;AAEzC;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GA2EG;AACH,MAAa,KAAM,SAAQ,MAAM,CAAC,cAAc;IAC5C;;;;;;;;OAQG;IACI,MAAM,CAAC,GAAG,CAAC,IAAY,EAAE,EAA2B,EAAE,KAAkB,EAAE,IAAmC;QAChH,OAAO,IAAI,KAAK,CAAC,IAAI,EAAO,KAAK,kCAAO,IAAI,KAAE,EAAE,EAAE,EAAE,IAAG,CAAC;IAC5D,CAAC;IAKD;;;OAGG;IACI,MAAM,CAAC,UAAU,CAAC,GAAQ;QAC7B,IAAI,GAAG,KAAK,SAAS,IAAI,GAAG,KAAK,IAAI,EAAE;YACnC,OAAO,KAAK,CAAC;SAChB;QACD,OAAO,GAAG,CAAC,cAAc,CAAC,KAAK,KAAK,CAAC,YAAY,CAAC;IACtD,CAAC;IA4CD,YAAY,IAAY,EAAE,WAAoC,EAAE,IAAmC;QAC/F,IAAI,cAAc,GAAkB,EAAE,CAAC;QACvC,IAAI,GAAG,IAAI,IAAI,EAAE,CAAC;QAClB,IAAI,IAAI,CAAC,EAAE,EAAE;YACT,MAAM,KAAK,GAAG,WAAqC,CAAC;YACpD,cAAc,CAAC,gBAAgB,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,cAAc,CAAC,CAAC,CAAC,SAAS,CAAC;YAC5E,cAAc,CAAC,oBAAoB,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,kBAAkB,CAAC,CAAC,CAAC,SAAS,CAAC;YACpF,cAAc,CAAC,yBAAyB,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,uBAAuB,CAAC,CAAC,CAAC,SAAS,CAAC;YAC9F,cAAc,CAAC,qBAAqB,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,mBAAmB,CAAC,CAAC,CAAC,SAAS,CAAC;YACtF,cAAc,CAAC,aAAa,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,WAAW,CAAC,CAAC,CAAC,SAAS,CAAC;YACtE,cAAc,CAAC,YAAY,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,UAAU,CAAC,CAAC,CAAC,SAAS,CAAC;YACpE,cAAc,CAAC,OAAO,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,KAAK,CAAC,CAAC,CAAC,SAAS,CAAC;YAC1D,cAAc,CAAC,KAAK,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC,SAAS,CAAC;YACtD,cAAc,CAAC,iBAAiB,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,eAAe,CAAC,CAAC,CAAC,SAAS,CAAC;SACjF;aAAM;YACH,MAAM,IAAI,GAAG,WAAoC,CAAC;YAClD,cAAc,CAAC,gBAAgB,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,cAAc,CAAC,CAAC,CAAC,SAAS,CAAC;YAC1E,cAAc,CAAC,oBAAoB,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,kBAAkB,CAAC,CAAC,CAAC,SAAS,CAAC;YAClF,cAAc,CAAC,yBAAyB,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,uBAAuB,CAAC,CAAC,CAAC,SAAS,CAAC;YAC5F,cAAc,CAAC,qBAAqB,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,mBAAmB,CAAC,CAAC,CAAC,SAAS,CAAC;YACpF,cAAc,CAAC,aAAa,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,WAAW,CAAC,CAAC,CAAC,SAAS,CAAC;YACpE,cAAc,CAAC,YAAY,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,UAAU,CAAC,CAAC,CAAC,SAAS,CAAC;YAClE,cAAc,CAAC,OAAO,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,CAAC,SAAS,CAAC;YACxD,cAAc,CAAC,KAAK,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC,CAAC,SAAS,CAAC;YACpD,cAAc,CAAC,iBAAiB,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,eAAe,CAAC,CAAC,CAAC,SAAS,CAAC;SAC/E;QACD,IAAI,GAAG,MAAM,CAAC,YAAY,CAAC,SAAS,CAAC,oBAAoB,EAAE,EAAE,IAAI,CAAC,CAAC;QACnE,KAAK,CAAC,KAAK,CAAC,YAAY,EAAE,IAAI,EAAE,cAAc,EAAE,IAAI,CAAC,CAAC;IAC1D,CAAC;;AAlGL,sBAmGC;AArFG,gBAAgB;AACO,kBAAY,GAAG,8BAA8B,CAAC"}

package/job.d.ts CHANGED Viewed

@@ -2,6 +2,75 @@ import * as pulumi from "@pulumi/pulumi";
 import * as inputs from "./types/input";
 import * as outputs from "./types/output";
 /**
+ * The `databricks.Job` resource allows you to manage [Databricks Jobs](https://docs.databricks.com/jobs.html) to run non-interactive code in a databricks_cluster.
+ *
+ * ## Example Usage
+ *
+ * > **Note** In Pulumi configuration, it is recommended to define tasks in alphabetical order of their `taskKey` arguments, so that you get consistent and readable diff. Whenever tasks are added or removed, or `taskKey` is renamed, you'll observe a change in the majority of tasks. It's related to the fact that the current version of the provider treats `task` blocks as an ordered list. Alternatively, `task` block could have been an unordered set, though end-users would see the entire block replaced upon a change in single property of the task.
+ *
+ * It is possible to create [a Databricks job](https://docs.databricks.com/data-engineering/jobs/jobs-user-guide.html) using `task` blocks. A single task is defined with the `task` block containing one of the `*_task` blocks, `taskKey`, and additional arguments described below.
+ *
+ * ```typescript
+ * import * as pulumi from "@pulumi/pulumi";
+ * import * as databricks from "@pulumi/databricks";
+ *
+ * const _this = new databricks.Job("this", {
+ *     name: "Job with multiple tasks",
+ *     description: "This job executes multiple tasks on a shared job cluster, which will be provisioned as part of execution, and terminated once all tasks are finished.",
+ *     jobClusters: [{
+ *         jobClusterKey: "j",
+ *         newCluster: {
+ *             numWorkers: 2,
+ *             sparkVersion: latest.id,
+ *             nodeTypeId: smallest.id,
+ *         },
+ *     }],
+ *     tasks: [
+ *         {
+ *             taskKey: "a",
+ *             newCluster: {
+ *                 numWorkers: 1,
+ *                 sparkVersion: latest.id,
+ *                 nodeTypeId: smallest.id,
+ *             },
+ *             notebookTask: {
+ *                 notebookPath: thisDatabricksNotebook.path,
+ *             },
+ *         },
+ *         {
+ *             taskKey: "b",
+ *             dependsOns: [{
+ *                 taskKey: "a",
+ *             }],
+ *             existingClusterId: shared.id,
+ *             sparkJarTask: {
+ *                 mainClassName: "com.acme.data.Main",
+ *             },
+ *         },
+ *         {
+ *             taskKey: "c",
+ *             jobClusterKey: "j",
+ *             notebookTask: {
+ *                 notebookPath: thisDatabricksNotebook.path,
+ *             },
+ *         },
+ *         {
+ *             taskKey: "d",
+ *             pipelineTask: {
+ *                 pipelineId: thisDatabricksPipeline.id,
+ *             },
+ *         },
+ *     ],
+ * });
+ * ```
+ *
+ * ## Access Control
+ *
+ * By default, all users can create and modify jobs unless an administrator [enables jobs access control](https://docs.databricks.com/administration-guide/access-control/jobs-acl.html). With jobs access control, individual permissions determine a user’s abilities.
+ *
+ * * databricks.Permissions can control which groups or individual users can *Can View*, *Can Manage Run*, and *Can Manage*.
+ * * databricks.ClusterPolicy can control which kinds of clusters users can create for jobs.
+ *
  * ## Import
  *
  * The resource job can be imported using the id of the job

package/job.js CHANGED Viewed

@@ -6,6 +6,75 @@ exports.Job = void 0;
 const pulumi = require("@pulumi/pulumi");
 const utilities = require("./utilities");
 /**
+ * The `databricks.Job` resource allows you to manage [Databricks Jobs](https://docs.databricks.com/jobs.html) to run non-interactive code in a databricks_cluster.
+ *
+ * ## Example Usage
+ *
+ * > **Note** In Pulumi configuration, it is recommended to define tasks in alphabetical order of their `taskKey` arguments, so that you get consistent and readable diff. Whenever tasks are added or removed, or `taskKey` is renamed, you'll observe a change in the majority of tasks. It's related to the fact that the current version of the provider treats `task` blocks as an ordered list. Alternatively, `task` block could have been an unordered set, though end-users would see the entire block replaced upon a change in single property of the task.
+ *
+ * It is possible to create [a Databricks job](https://docs.databricks.com/data-engineering/jobs/jobs-user-guide.html) using `task` blocks. A single task is defined with the `task` block containing one of the `*_task` blocks, `taskKey`, and additional arguments described below.
+ *
+ * ```typescript
+ * import * as pulumi from "@pulumi/pulumi";
+ * import * as databricks from "@pulumi/databricks";
+ *
+ * const _this = new databricks.Job("this", {
+ *     name: "Job with multiple tasks",
+ *     description: "This job executes multiple tasks on a shared job cluster, which will be provisioned as part of execution, and terminated once all tasks are finished.",
+ *     jobClusters: [{
+ *         jobClusterKey: "j",
+ *         newCluster: {
+ *             numWorkers: 2,
+ *             sparkVersion: latest.id,
+ *             nodeTypeId: smallest.id,
+ *         },
+ *     }],
+ *     tasks: [
+ *         {
+ *             taskKey: "a",
+ *             newCluster: {
+ *                 numWorkers: 1,
+ *                 sparkVersion: latest.id,
+ *                 nodeTypeId: smallest.id,
+ *             },
+ *             notebookTask: {
+ *                 notebookPath: thisDatabricksNotebook.path,
+ *             },
+ *         },
+ *         {
+ *             taskKey: "b",
+ *             dependsOns: [{
+ *                 taskKey: "a",
+ *             }],
+ *             existingClusterId: shared.id,
+ *             sparkJarTask: {
+ *                 mainClassName: "com.acme.data.Main",
+ *             },
+ *         },
+ *         {
+ *             taskKey: "c",
+ *             jobClusterKey: "j",
+ *             notebookTask: {
+ *                 notebookPath: thisDatabricksNotebook.path,
+ *             },
+ *         },
+ *         {
+ *             taskKey: "d",
+ *             pipelineTask: {
+ *                 pipelineId: thisDatabricksPipeline.id,
+ *             },
+ *         },
+ *     ],
+ * });
+ * ```
+ *
+ * ## Access Control
+ *
+ * By default, all users can create and modify jobs unless an administrator [enables jobs access control](https://docs.databricks.com/administration-guide/access-control/jobs-acl.html). With jobs access control, individual permissions determine a user’s abilities.
+ *
+ * * databricks.Permissions can control which groups or individual users can *Can View*, *Can Manage Run*, and *Can Manage*.
+ * * databricks.ClusterPolicy can control which kinds of clusters users can create for jobs.
+ *
  * ## Import
  *
  * The resource job can be imported using the id of the job