@pulumi/datadog 4.58.0-alpha.1760375617 → 4.58.0-alpha.1760585632

package/types/output.d.ts

@@ -216,6 +216,42 @@ export interface AwsCurConfigAccountFilters {
      */
     includedAccounts?: string[];
 }
+export interface AzureUcConfigActualBillConfig {
+    /**
+     * The name of the configured Azure Export.
+     */
+    exportName: string;
+    /**
+     * The path where the Azure Export is saved.
+     */
+    exportPath: string;
+    /**
+     * The name of the storage account where the Azure Export is saved.
+     */
+    storageAccount: string;
+    /**
+     * The name of the storage container where the Azure Export is saved.
+     */
+    storageContainer: string;
+}
+export interface AzureUcConfigAmortizedBillConfig {
+    /**
+     * The name of the configured Azure Export.
+     */
+    exportName: string;
+    /**
+     * The path where the Azure Export is saved.
+     */
+    exportPath: string;
+    /**
+     * The name of the storage account where the Azure Export is saved.
+     */
+    storageAccount: string;
+    /**
+     * The name of the storage container where the Azure Export is saved.
+     */
+    storageContainer: string;
+}
 export interface ChildOrganizationApiKey {
     /**
      * API key.
@@ -405,6 +441,120 @@ export interface CsmThreatsAgentRuleActionSet {
      */
     value: string;
 }
+export interface CustomAllocationRuleCostsToAllocate {
+    /**
+     * The condition to match. Valid values are `=`, `!=`, `is`, `is not`, `like`, `in`, `not in`.
+     */
+    condition?: string;
+    /**
+     * The tag key to filter on (e.g., `awsProduct`, `team`, `environment`).
+     */
+    tag?: string;
+    /**
+     * The single tag value to match. Use this field for conditions like `=`, `!=`, `is`, `is not`, `like`. Do not use with `in` or `not in` conditions.
+     */
+    value?: string;
+    /**
+     * A list of tag values to match. Use this field for `in` or `not in` conditions only. Do not use with single-value conditions.
+     */
+    values?: string[];
+}
+export interface CustomAllocationRuleStrategy {
+    allocatedBies?: outputs.CustomAllocationRuleStrategyAllocatedBy[];
+    allocatedByFilters?: outputs.CustomAllocationRuleStrategyAllocatedByFilter[];
+    /**
+     * List of tag keys used to allocate costs (e.g., `["team", "project"]`). Costs will be distributed across unique values of these tags.
+     */
+    allocatedByTagKeys?: string[];
+    basedOnCosts?: outputs.CustomAllocationRuleStrategyBasedOnCost[];
+    basedOnTimeseries?: outputs.CustomAllocationRuleStrategyBasedOnTimeseries;
+    evaluateGroupedByFilters?: outputs.CustomAllocationRuleStrategyEvaluateGroupedByFilter[];
+    /**
+     * List of tag keys used to group costs before allocation. Costs are grouped by these tag values before applying the allocation strategy.
+     */
+    evaluateGroupedByTagKeys?: string[];
+    /**
+     * The granularity level for cost allocation. Valid values are `daily` or `monthly`.
+     */
+    granularity?: string;
+    /**
+     * The allocation method. Valid values are `even`, `proportional`, `proportionalTimeseries`, or `percent`.
+     */
+    method?: string;
+}
+export interface CustomAllocationRuleStrategyAllocatedBy {
+    allocatedTags?: outputs.CustomAllocationRuleStrategyAllocatedByAllocatedTag[];
+    /**
+     * The percentage of costs to allocate to this target as a decimal (e.g., 0.33 for 33%). Used when `method` is `percent`.
+     */
+    percentage?: number;
+}
+export interface CustomAllocationRuleStrategyAllocatedByAllocatedTag {
+    /**
+     * The tag key to allocate costs to (e.g., `team`, `environment`).
+     */
+    key?: string;
+    /**
+     * The tag value to allocate costs to (e.g., `backend`, `production`).
+     */
+    value?: string;
+}
+export interface CustomAllocationRuleStrategyAllocatedByFilter {
+    /**
+     * The condition to match. Valid values are `=`, `!=`, `is`, `is not`, `like`, `in`, `not in`.
+     */
+    condition?: string;
+    /**
+     * The tag key to filter on for allocation targets.
+     */
+    tag?: string;
+    /**
+     * The single tag value to match for allocation. Use with conditions like `=`, `!=`, `is`, `is not`, `like`.
+     */
+    value?: string;
+    /**
+     * A list of tag values to match for allocation. Use with `in` or `not in` conditions.
+     */
+    values?: string[];
+}
+export interface CustomAllocationRuleStrategyBasedOnCost {
+    /**
+     * The condition to match. Valid values are `=`, `!=`, `is`, `is not`, `like`, `in`, `not in`.
+     */
+    condition?: string;
+    /**
+     * The tag key to use as the basis for cost allocation calculations.
+     */
+    tag?: string;
+    /**
+     * The single tag value to use for cost calculations. Use with conditions like `=`, `!=`, `is`, `is not`, `like`.
+     */
+    value?: string;
+    /**
+     * A list of tag values to use for cost calculations. Use with `in` or `not in` conditions.
+     */
+    values?: string[];
+}
+export interface CustomAllocationRuleStrategyBasedOnTimeseries {
+}
+export interface CustomAllocationRuleStrategyEvaluateGroupedByFilter {
+    /**
+     * The condition to match. Valid values are `=`, `!=`, `is`, `is not`, `like`, `in`, `not in`.
+     */
+    condition?: string;
+    /**
+     * The tag key to filter on when grouping costs for evaluation.
+     */
+    tag?: string;
+    /**
+     * The single tag value to match when grouping. Use with conditions like `=`, `!=`, `is`, `is not`, `like`.
+     */
+    value?: string;
+    /**
+     * A list of tag values to match when grouping. Use with `in` or `not in` conditions.
+     */
+    values?: string[];
+}
 export interface DashboardListDashItem {
     /**
      * The ID of the dashboard to add
@@ -9065,6 +9215,42 @@ export interface GetAwsCurConfigAccountFilters {
      */
     includedAccounts: string[];
 }
+export interface GetAzureUcConfigActualBillConfig {
+    /**
+     * The name of the configured Azure Export.
+     */
+    exportName: string;
+    /**
+     * The path where the Azure Export is saved.
+     */
+    exportPath: string;
+    /**
+     * The name of the storage account where the Azure Export is saved.
+     */
+    storageAccount: string;
+    /**
+     * The name of the storage container where the Azure Export is saved.
+     */
+    storageContainer: string;
+}
+export interface GetAzureUcConfigAmortizedBillConfig {
+    /**
+     * The name of the configured Azure Export.
+     */
+    exportName: string;
+    /**
+     * The path where the Azure Export is saved.
+     */
+    exportPath: string;
+    /**
+     * The name of the storage account where the Azure Export is saved.
+     */
+    storageAccount: string;
+    /**
+     * The name of the storage container where the Azure Export is saved.
+     */
+    storageContainer: string;
+}
 export interface GetCloudWorkloadSecurityAgentRulesAgentRule {
     /**
      * The description of the Agent rule.
@@ -9128,6 +9314,120 @@ export interface GetCsmThreatsPoliciesPolicy {
     name: string;
     tags: string[];
 }
+export interface GetCustomAllocationRuleCostsToAllocate {
+    /**
+     * The condition used to match tags. Valid values are `=`, `!=`, `is`, `is not`, `like`, `in`, `not in`.
+     */
+    condition: string;
+    /**
+     * The tag key used in the filter.
+     */
+    tag: string;
+    /**
+     * The tag value used in the filter (for single-value conditions).
+     */
+    value: string;
+    /**
+     * The list of tag values used in the filter (for multi-value conditions like `in` or `notIn`).
+     */
+    values: string[];
+}
+export interface GetCustomAllocationRuleStrategy {
+    allocatedBies?: outputs.GetCustomAllocationRuleStrategyAllocatedBy[];
+    allocatedByFilters?: outputs.GetCustomAllocationRuleStrategyAllocatedByFilter[];
+    /**
+     * List of tag keys used to allocate costs.
+     */
+    allocatedByTagKeys: string[];
+    basedOnCosts?: outputs.GetCustomAllocationRuleStrategyBasedOnCost[];
+    basedOnTimeseries?: outputs.GetCustomAllocationRuleStrategyBasedOnTimeseries;
+    evaluateGroupedByFilters?: outputs.GetCustomAllocationRuleStrategyEvaluateGroupedByFilter[];
+    /**
+     * List of tag keys used to group costs before allocation.
+     */
+    evaluateGroupedByTagKeys: string[];
+    /**
+     * The granularity level for cost allocation (`daily` or `monthly`).
+     */
+    granularity: string;
+    /**
+     * The allocation method. Valid values are `even`, `proportional`, `proportionalTimeseries`, or `percent`.
+     */
+    method: string;
+}
+export interface GetCustomAllocationRuleStrategyAllocatedBy {
+    allocatedTags?: outputs.GetCustomAllocationRuleStrategyAllocatedByAllocatedTag[];
+    /**
+     * The percentage of costs allocated to this target as a decimal (e.g., 0.33 for 33%).
+     */
+    percentage: number;
+}
+export interface GetCustomAllocationRuleStrategyAllocatedByAllocatedTag {
+    /**
+     * The tag key for cost allocation.
+     */
+    key: string;
+    /**
+     * The tag value used in the filter (for single-value conditions).
+     */
+    value: string;
+}
+export interface GetCustomAllocationRuleStrategyAllocatedByFilter {
+    /**
+     * The condition used to match tags. Valid values are `=`, `!=`, `is`, `is not`, `like`, `in`, `not in`.
+     */
+    condition: string;
+    /**
+     * The tag key used in the filter.
+     */
+    tag: string;
+    /**
+     * The tag value used in the filter (for single-value conditions).
+     */
+    value: string;
+    /**
+     * The list of tag values used in the filter (for multi-value conditions like `in` or `notIn`).
+     */
+    values: string[];
+}
+export interface GetCustomAllocationRuleStrategyBasedOnCost {
+    /**
+     * The condition used to match tags. Valid values are `=`, `!=`, `is`, `is not`, `like`, `in`, `not in`.
+     */
+    condition: string;
+    /**
+     * The tag key used in the filter.
+     */
+    tag: string;
+    /**
+     * The tag value used in the filter (for single-value conditions).
+     */
+    value: string;
+    /**
+     * The list of tag values used in the filter (for multi-value conditions like `in` or `notIn`).
+     */
+    values: string[];
+}
+export interface GetCustomAllocationRuleStrategyBasedOnTimeseries {
+}
+export interface GetCustomAllocationRuleStrategyEvaluateGroupedByFilter {
+    /**
+     * The condition used to match tags. Valid values are `=`, `!=`, `is`, `is not`, `like`, `in`, `not in`.
+     */
+    condition: string;
+    /**
+     * The tag key used in the filter.
+     */
+    tag: string;
+    /**
+     * The tag value used in the filter (for single-value conditions).
+     */
+    value: string;
+    /**
+     * The list of tag values used in the filter (for multi-value conditions like `in` or `notIn`).
+     */
+    values: string[];
+}
 export interface GetHostsHostList {
     aliases: string[];
     apps: string[];
@@ -9600,6 +9900,10 @@ export interface GetSecurityMonitoringRulesRuleOptions {
      * New value rules specific options.
      */
     newValueOptions?: outputs.GetSecurityMonitoringRulesRuleOptionsNewValueOptions;
+    /**
+     * Options for rules using the sequence detection method.
+     */
+    sequenceDetectionOptions?: outputs.GetSecurityMonitoringRulesRuleOptionsSequenceDetectionOptions;
     /**
      * Options for rules using the third-party detection method.
      */
@@ -9629,6 +9933,44 @@ export interface GetSecurityMonitoringRulesRuleOptionsNewValueOptions {
      */
     learningThreshold?: number;
 }
+export interface GetSecurityMonitoringRulesRuleOptionsSequenceDetectionOptions {
+    /**
+     * Edges of the step graph.
+     */
+    stepTransitions?: outputs.GetSecurityMonitoringRulesRuleOptionsSequenceDetectionOptionsStepTransition[];
+    /**
+     * Sequence steps.
+     */
+    steps?: outputs.GetSecurityMonitoringRulesRuleOptionsSequenceDetectionOptionsStep[];
+}
+export interface GetSecurityMonitoringRulesRuleOptionsSequenceDetectionOptionsStep {
+    /**
+     * Condition for the step to match.
+     */
+    condition: string;
+    /**
+     * Evaluation window for the step.
+     */
+    evaluationWindow?: number;
+    /**
+     * Unique name of the step.
+     */
+    name: string;
+}
+export interface GetSecurityMonitoringRulesRuleOptionsSequenceDetectionOptionsStepTransition {
+    /**
+     * Child step name.
+     */
+    child: string;
+    /**
+     * Maximum time allowed to transition from parent to child.
+     */
+    evaluationWindow?: number;
+    /**
+     * Parent step name.
+     */
+    parent: string;
+}
 export interface GetSecurityMonitoringRulesRuleOptionsThirdPartyRuleOptions {
     /**
      * Notification targets for the default rule case, when none of the third-party cases match.
@@ -9841,6 +10183,108 @@ export interface GetSoftwareCatalogEntity {
     owner: string;
     tags: string[];
 }
+export interface GetTagPipelineRulesetRule {
+    /**
+     * Whether the rule is enabled.
+     */
+    enabled: boolean;
+    /**
+     * The mapping configuration for the rule.
+     */
+    mapping?: outputs.GetTagPipelineRulesetRuleMapping;
+    /**
+     * Rule metadata key-value pairs.
+     */
+    metadata: {
+        [key: string]: string;
+    };
+    /**
+     * The name of the rule.
+     */
+    name: string;
+    /**
+     * The query configuration for the rule.
+     */
+    query?: outputs.GetTagPipelineRulesetRuleQuery;
+    /**
+     * The reference table configuration for the rule.
+     */
+    referenceTable?: outputs.GetTagPipelineRulesetRuleReferenceTable;
+}
+export interface GetTagPipelineRulesetRuleMapping {
+    /**
+     * The destination key for the mapping.
+     */
+    destinationKey: string;
+    /**
+     * Whether to apply the mapping only if the destination key doesn't exist.
+     */
+    ifNotExists: boolean;
+    /**
+     * The source keys for the mapping.
+     */
+    sourceKeys: string[];
+}
+export interface GetTagPipelineRulesetRuleQuery {
+    /**
+     * The addition configuration for the query.
+     */
+    addition?: outputs.GetTagPipelineRulesetRuleQueryAddition;
+    /**
+     * Whether the query matching is case insensitive.
+     */
+    caseInsensitivity: boolean;
+    /**
+     * Whether to apply the query only if the key doesn't exist.
+     */
+    ifNotExists: boolean;
+    /**
+     * The query string.
+     */
+    query: string;
+}
+export interface GetTagPipelineRulesetRuleQueryAddition {
+    /**
+     * The key to add.
+     */
+    key: string;
+    /**
+     * The value to add.
+     */
+    value: string;
+}
+export interface GetTagPipelineRulesetRuleReferenceTable {
+    /**
+     * Whether the reference table lookup is case insensitive.
+     */
+    caseInsensitivity: boolean;
+    /**
+     * The field pairs for the reference table.
+     */
+    fieldPairs?: outputs.GetTagPipelineRulesetRuleReferenceTableFieldPair[];
+    /**
+     * Whether to apply the reference table only if the key doesn't exist.
+     */
+    ifNotExists: boolean;
+    /**
+     * The source keys for the reference table lookup.
+     */
+    sourceKeys: string[];
+    /**
+     * The name of the reference table.
+     */
+    tableName: string;
+}
+export interface GetTagPipelineRulesetRuleReferenceTableFieldPair {
+    /**
+     * The input column name.
+     */
+    inputColumn: string;
+    /**
+     * The output key name.
+     */
+    outputKey: string;
+}
 export interface GetTeamMembershipsTeamMembership {
     id: string;
     role: string;
@@ -25624,6 +26068,10 @@ export interface SecurityMonitoringRuleOptions {
      * New value rules specific options.
      */
     newValueOptions?: outputs.SecurityMonitoringRuleOptionsNewValueOptions;
+    /**
+     * Options for rules using the sequence detection method.
+     */
+    sequenceDetectionOptions?: outputs.SecurityMonitoringRuleOptionsSequenceDetectionOptions;
     /**
      * Options for rules using the third-party detection method.
      */
@@ -25653,6 +26101,44 @@ export interface SecurityMonitoringRuleOptionsNewValueOptions {
      */
     learningThreshold?: number;
 }
+export interface SecurityMonitoringRuleOptionsSequenceDetectionOptions {
+    /**
+     * Edges of the step graph.
+     */
+    stepTransitions?: outputs.SecurityMonitoringRuleOptionsSequenceDetectionOptionsStepTransition[];
+    /**
+     * Sequence steps.
+     */
+    steps?: outputs.SecurityMonitoringRuleOptionsSequenceDetectionOptionsStep[];
+}
+export interface SecurityMonitoringRuleOptionsSequenceDetectionOptionsStep {
+    /**
+     * Condition for the step to match.
+     */
+    condition: string;
+    /**
+     * Evaluation window for the step. Valid values are `0`, `60`, `300`, `600`, `900`, `1800`, `3600`, `7200`, `10800`, `21600`, `43200`, `86400`.
+     */
+    evaluationWindow?: number;
+    /**
+     * Unique name of the step.
+     */
+    name: string;
+}
+export interface SecurityMonitoringRuleOptionsSequenceDetectionOptionsStepTransition {
+    /**
+     * Child step name.
+     */
+    child: string;
+    /**
+     * Maximum time allowed to transition from parent to child. Valid values are `0`, `60`, `300`, `600`, `900`, `1800`, `3600`, `7200`, `10800`, `21600`, `43200`, `86400`.
+     */
+    evaluationWindow?: number;
+    /**
+     * Parent step name.
+     */
+    parent: string;
+}
 export interface SecurityMonitoringRuleOptionsThirdPartyRuleOptions {
     /**
      * Notification targets for the default rule case, when none of the third-party cases match.
@@ -27438,6 +27924,108 @@ export interface SyntheticsTestRequestProxy {
      */
     url: string;
 }
+export interface TagPipelineRulesetRule {
+    /**
+     * Whether the rule is enabled.
+     */
+    enabled: boolean;
+    /**
+     * The mapping configuration for the rule.
+     */
+    mapping?: outputs.TagPipelineRulesetRuleMapping;
+    /**
+     * Rule metadata key-value pairs.
+     */
+    metadata: {
+        [key: string]: string;
+    };
+    /**
+     * The name of the rule.
+     */
+    name: string;
+    /**
+     * The query configuration for the rule.
+     */
+    query?: outputs.TagPipelineRulesetRuleQuery;
+    /**
+     * The reference table configuration for the rule.
+     */
+    referenceTable?: outputs.TagPipelineRulesetRuleReferenceTable;
+}
+export interface TagPipelineRulesetRuleMapping {
+    /**
+     * The destination key for the mapping.
+     */
+    destinationKey?: string;
+    /**
+     * Whether to apply the mapping only if the destination key doesn't exist.
+     */
+    ifNotExists: boolean;
+    /**
+     * The source keys for the mapping.
+     */
+    sourceKeys?: string[];
+}
+export interface TagPipelineRulesetRuleQuery {
+    /**
+     * The addition configuration for the query.
+     */
+    addition?: outputs.TagPipelineRulesetRuleQueryAddition;
+    /**
+     * Whether the query matching is case insensitive.
+     */
+    caseInsensitivity: boolean;
+    /**
+     * Whether to apply the query only if the key doesn't exist.
+     */
+    ifNotExists: boolean;
+    /**
+     * The query string.
+     */
+    query?: string;
+}
+export interface TagPipelineRulesetRuleQueryAddition {
+    /**
+     * The key to add.
+     */
+    key?: string;
+    /**
+     * The value to add.
+     */
+    value?: string;
+}
+export interface TagPipelineRulesetRuleReferenceTable {
+    /**
+     * Whether the reference table lookup is case insensitive.
+     */
+    caseInsensitivity: boolean;
+    /**
+     * The field pairs for the reference table.
+     */
+    fieldPairs?: outputs.TagPipelineRulesetRuleReferenceTableFieldPair[];
+    /**
+     * Whether to apply the reference table only if the key doesn't exist.
+     */
+    ifNotExists: boolean;
+    /**
+     * The source keys for the reference table lookup.
+     */
+    sourceKeys?: string[];
+    /**
+     * The name of the reference table.
+     */
+    tableName?: string;
+}
+export interface TagPipelineRulesetRuleReferenceTableFieldPair {
+    /**
+     * The input column name.
+     */
+    inputColumn?: string;
+    /**
+     * The output key name.
+     */
+    outputKey?: string;
+}
 export declare namespace aws {
     interface GetIntegrationLogsServicesAwsLogsService {
         /**

package/userRole.d.ts

@@ -8,16 +8,24 @@ import * as pulumi from "@pulumi/pulumi";
  * import * as pulumi from "@pulumi/pulumi";
  * import * as datadog from "@pulumi/datadog";
  *
- * const monitorWriterRole = new datadog.Role("monitor_writer_role", {
- *     name: "Monitor Writer Role",
- *     permissions: [{
- *         id: bar.permissions.monitorsWrite,
- *     }],
+ * // Source the permissions
+ * const ddPerms = datadog.getPermissions({});
+ * // Create an API Key Manager role
+ * const apiKeyManager = new datadog.Role("api_key_manager", {
+ *     name: "API Key Manager",
+ *     permissions: [
+ *         {
+ *             id: ddPerms.then(ddPerms => ddPerms.permissions?.apiKeysRead),
+ *         },
+ *         {
+ *             id: ddPerms.then(ddPerms => ddPerms.permissions?.apiKeysWrite),
+ *         },
+ *     ],
  * });
  * const newUser = new datadog.User("new_user", {email: "new@example.com"});
- * // Create new user_role resource
- * const newUserWithMonitorWriterRole = new datadog.UserRole("new_user_with_monitor_writer_role", {
- *     roleId: monitorWriterRole.id,
+ * // Assign the API Key Manager role to the user
+ * const newUserWithApiKeyManagerRole = new datadog.UserRole("new_user_with_api_key_manager_role", {
+ *     roleId: apiKeyManager.id,
  *     userId: newUser.id,
  * });
  * ```