@pulumi/keycloak 6.7.0 → 6.7.1
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/attributeImporterIdentityProviderMapper.js +20 -20
- package/attributeImporterIdentityProviderMapper.js.map +1 -1
- package/attributeToRoleIdentityMapper.js +24 -24
- package/attributeToRoleIdentityMapper.js.map +1 -1
- package/authentication/bindings.js +18 -18
- package/authentication/bindings.js.map +1 -1
- package/authentication/execution.js +14 -14
- package/authentication/execution.js.map +1 -1
- package/authentication/executionConfig.js +12 -12
- package/authentication/executionConfig.js.map +1 -1
- package/authentication/flow.js +10 -10
- package/authentication/flow.js.map +1 -1
- package/authentication/subflow.js +19 -19
- package/authentication/subflow.js.map +1 -1
- package/config/vars.d.ts +2 -4
- package/config/vars.js +1 -2
- package/config/vars.js.map +1 -1
- package/customIdentityProviderMapping.js +14 -14
- package/customIdentityProviderMapping.js.map +1 -1
- package/customUserFederation.js +23 -23
- package/customUserFederation.js.map +1 -1
- package/defaultGroups.js +7 -7
- package/defaultGroups.js.map +1 -1
- package/defaultRoles.js +7 -7
- package/defaultRoles.js.map +1 -1
- package/genericClientProtocolMapper.js +19 -19
- package/genericClientProtocolMapper.js.map +1 -1
- package/genericClientRoleMapper.js +11 -11
- package/genericClientRoleMapper.js.map +1 -1
- package/genericProtocolMapper.js +19 -19
- package/genericProtocolMapper.js.map +1 -1
- package/genericRoleMapper.js +11 -11
- package/genericRoleMapper.js.map +1 -1
- package/group.js +11 -11
- package/group.js.map +1 -1
- package/groupMemberships.js +9 -9
- package/groupMemberships.js.map +1 -1
- package/groupPermissions.js +19 -19
- package/groupPermissions.js.map +1 -1
- package/groupRoles.js +12 -12
- package/groupRoles.js.map +1 -1
- package/hardcodedAttributeIdentityProviderMapper.js +18 -18
- package/hardcodedAttributeIdentityProviderMapper.js.map +1 -1
- package/hardcodedAttributeMapper.js +15 -15
- package/hardcodedAttributeMapper.js.map +1 -1
- package/hardcodedGroupIdentityProviderMapper.d.ts +2 -0
- package/hardcodedGroupIdentityProviderMapper.js +15 -13
- package/hardcodedGroupIdentityProviderMapper.js.map +1 -1
- package/hardcodedRoleIdentityMapper.js +13 -13
- package/hardcodedRoleIdentityMapper.js.map +1 -1
- package/identityProviderTokenExchangeScopePermission.js +16 -16
- package/identityProviderTokenExchangeScopePermission.js.map +1 -1
- package/ldap/customMapper.js +17 -17
- package/ldap/customMapper.js.map +1 -1
- package/ldap/fullNameMapper.js +16 -16
- package/ldap/fullNameMapper.js.map +1 -1
- package/ldap/groupMapper.js +44 -44
- package/ldap/groupMapper.js.map +1 -1
- package/ldap/hardcodedAttributeMapper.js +15 -15
- package/ldap/hardcodedAttributeMapper.js.map +1 -1
- package/ldap/hardcodedGroupMapper.js +12 -12
- package/ldap/hardcodedGroupMapper.js.map +1 -1
- package/ldap/hardcodedRoleMapper.js +12 -12
- package/ldap/hardcodedRoleMapper.js.map +1 -1
- package/ldap/msadLdsUserAccountControlMapper.js +9 -9
- package/ldap/msadLdsUserAccountControlMapper.js.map +1 -1
- package/ldap/msadUserAccountControlMapper.js +11 -11
- package/ldap/msadUserAccountControlMapper.js.map +1 -1
- package/ldap/roleMapper.js +38 -38
- package/ldap/roleMapper.js.map +1 -1
- package/ldap/userAttributeMapper.js +27 -27
- package/ldap/userAttributeMapper.js.map +1 -1
- package/ldap/userFederation.js +72 -72
- package/ldap/userFederation.js.map +1 -1
- package/oidc/googleIdentityProvider.js +58 -58
- package/oidc/googleIdentityProvider.js.map +1 -1
- package/oidc/identityProvider.js +79 -79
- package/oidc/identityProvider.js.map +1 -1
- package/openid/audienceProtocolMapper.js +18 -18
- package/openid/audienceProtocolMapper.js.map +1 -1
- package/openid/audienceResolveProtocolMapper.js +10 -10
- package/openid/audienceResolveProtocolMapper.js.map +1 -1
- package/openid/client.js +105 -105
- package/openid/client.js.map +1 -1
- package/openid/clientAggregatePolicy.js +19 -19
- package/openid/clientAggregatePolicy.js.map +1 -1
- package/openid/clientAuthorizationClientScopePolicy.js +18 -18
- package/openid/clientAuthorizationClientScopePolicy.js.map +1 -1
- package/openid/clientAuthorizationPermission.js +23 -23
- package/openid/clientAuthorizationPermission.js.map +1 -1
- package/openid/clientAuthorizationResource.js +23 -23
- package/openid/clientAuthorizationResource.js.map +1 -1
- package/openid/clientAuthorizationScope.js +13 -13
- package/openid/clientAuthorizationScope.js.map +1 -1
- package/openid/clientDefaultScopes.js +10 -10
- package/openid/clientDefaultScopes.js.map +1 -1
- package/openid/clientGroupPolicy.js +21 -21
- package/openid/clientGroupPolicy.js.map +1 -1
- package/openid/clientJsPolicy.js +21 -21
- package/openid/clientJsPolicy.js.map +1 -1
- package/openid/clientOptionalScopes.js +10 -10
- package/openid/clientOptionalScopes.js.map +1 -1
- package/openid/clientPermissions.js +23 -23
- package/openid/clientPermissions.js.map +1 -1
- package/openid/clientPolicy.js +18 -18
- package/openid/clientPolicy.js.map +1 -1
- package/openid/clientRolePolicy.js +23 -23
- package/openid/clientRolePolicy.js.map +1 -1
- package/openid/clientScope.js +14 -14
- package/openid/clientScope.js.map +1 -1
- package/openid/clientServiceAccountRealmRole.js +10 -10
- package/openid/clientServiceAccountRealmRole.js.map +1 -1
- package/openid/clientServiceAccountRole.js +13 -13
- package/openid/clientServiceAccountRole.js.map +1 -1
- package/openid/clientTimePolicy.js +40 -40
- package/openid/clientTimePolicy.js.map +1 -1
- package/openid/clientUserPolicy.js +19 -19
- package/openid/clientUserPolicy.js.map +1 -1
- package/openid/fullNameProtocolMapper.js +16 -16
- package/openid/fullNameProtocolMapper.js.map +1 -1
- package/openid/groupMembershipProtocolMapper.js +21 -21
- package/openid/groupMembershipProtocolMapper.js.map +1 -1
- package/openid/hardcodedClaimProtocolMapper.js +24 -24
- package/openid/hardcodedClaimProtocolMapper.js.map +1 -1
- package/openid/hardcodedRoleProtocolMapper.js +13 -13
- package/openid/hardcodedRoleProtocolMapper.js.map +1 -1
- package/openid/scriptProtocolMapper.js +26 -26
- package/openid/scriptProtocolMapper.js.map +1 -1
- package/openid/userAttributeProtocolMapper.js +28 -28
- package/openid/userAttributeProtocolMapper.js.map +1 -1
- package/openid/userClientRoleProtocolMapper.js +27 -27
- package/openid/userClientRoleProtocolMapper.js.map +1 -1
- package/openid/userPropertyProtocolMapper.js +24 -24
- package/openid/userPropertyProtocolMapper.js.map +1 -1
- package/openid/userRealmRoleProtocolMapper.js +27 -27
- package/openid/userRealmRoleProtocolMapper.js.map +1 -1
- package/openid/userSessionNoteProtocolMapper.js +21 -21
- package/openid/userSessionNoteProtocolMapper.js.map +1 -1
- package/organization.js +19 -19
- package/organization.js.map +1 -1
- package/package.json +2 -2
- package/provider.d.ts +2 -4
- package/provider.js +15 -16
- package/provider.js.map +1 -1
- package/realm.d.ts +3 -9
- package/realm.js +117 -117
- package/realm.js.map +1 -1
- package/realmClientPolicyProfile.js +10 -10
- package/realmClientPolicyProfile.js.map +1 -1
- package/realmClientPolicyProfilePolicy.js +15 -15
- package/realmClientPolicyProfilePolicy.js.map +1 -1
- package/realmDefaultClientScopes.js +7 -7
- package/realmDefaultClientScopes.js.map +1 -1
- package/realmEvents.js +16 -16
- package/realmEvents.js.map +1 -1
- package/realmKeystoreAesGenerated.js +14 -14
- package/realmKeystoreAesGenerated.js.map +1 -1
- package/realmKeystoreEcdsaGenerated.js +14 -14
- package/realmKeystoreEcdsaGenerated.js.map +1 -1
- package/realmKeystoreHmacGenerated.js +16 -16
- package/realmKeystoreHmacGenerated.js.map +1 -1
- package/realmKeystoreJavaGenerated.js +26 -26
- package/realmKeystoreJavaGenerated.js.map +1 -1
- package/realmKeystoreRsa.d.ts +2 -0
- package/realmKeystoreRsa.js +24 -22
- package/realmKeystoreRsa.js.map +1 -1
- package/realmKeystoreRsaGenerated.js +16 -16
- package/realmKeystoreRsaGenerated.js.map +1 -1
- package/realmLocalization.js +9 -9
- package/realmLocalization.js.map +1 -1
- package/realmOptionalClientScopes.js +7 -7
- package/realmOptionalClientScopes.js.map +1 -1
- package/realmUserProfile.js +10 -10
- package/realmUserProfile.js.map +1 -1
- package/requiredAction.js +17 -17
- package/requiredAction.js.map +1 -1
- package/role.js +16 -16
- package/role.js.map +1 -1
- package/saml/client.js +78 -78
- package/saml/client.js.map +1 -1
- package/saml/clientDefaultScope.js +10 -10
- package/saml/clientDefaultScope.js.map +1 -1
- package/saml/clientScope.js +12 -12
- package/saml/clientScope.js.map +1 -1
- package/saml/identityProvider.js +86 -86
- package/saml/identityProvider.js.map +1 -1
- package/saml/scriptProtocolMapper.js +23 -23
- package/saml/scriptProtocolMapper.js.map +1 -1
- package/saml/userAttributeProtocolMapper.js +23 -23
- package/saml/userAttributeProtocolMapper.js.map +1 -1
- package/saml/userPropertyProtocolMapper.js +21 -21
- package/saml/userPropertyProtocolMapper.js.map +1 -1
- package/user.js +27 -27
- package/user.js.map +1 -1
- package/userGroups.js +12 -12
- package/userGroups.js.map +1 -1
- package/userRoles.js +12 -12
- package/userRoles.js.map +1 -1
- package/userTemplateImporterIdentityProviderMapper.js +13 -13
- package/userTemplateImporterIdentityProviderMapper.js.map +1 -1
- package/usersPermissions.d.ts +30 -0
- package/usersPermissions.js +48 -18
- package/usersPermissions.js.map +1 -1
- package/utilities.js +18 -29
- package/utilities.js.map +1 -1
package/user.js
CHANGED
|
@@ -73,7 +73,7 @@ class User extends pulumi.CustomResource {
|
|
|
73
73
|
* @param opts Optional settings to control the behavior of the CustomResource.
|
|
74
74
|
*/
|
|
75
75
|
static get(name, id, state, opts) {
|
|
76
|
-
return new User(name, state,
|
|
76
|
+
return new User(name, state, { ...opts, id: id });
|
|
77
77
|
}
|
|
78
78
|
/**
|
|
79
79
|
* Returns true if the given object is an instance of User. This is designed to work even
|
|
@@ -90,39 +90,39 @@ class User extends pulumi.CustomResource {
|
|
|
90
90
|
opts = opts || {};
|
|
91
91
|
if (opts.id) {
|
|
92
92
|
const state = argsOrState;
|
|
93
|
-
resourceInputs["attributes"] = state
|
|
94
|
-
resourceInputs["email"] = state
|
|
95
|
-
resourceInputs["emailVerified"] = state
|
|
96
|
-
resourceInputs["enabled"] = state
|
|
97
|
-
resourceInputs["federatedIdentities"] = state
|
|
98
|
-
resourceInputs["firstName"] = state
|
|
99
|
-
resourceInputs["import"] = state
|
|
100
|
-
resourceInputs["initialPassword"] = state
|
|
101
|
-
resourceInputs["lastName"] = state
|
|
102
|
-
resourceInputs["realmId"] = state
|
|
103
|
-
resourceInputs["requiredActions"] = state
|
|
104
|
-
resourceInputs["username"] = state
|
|
93
|
+
resourceInputs["attributes"] = state?.attributes;
|
|
94
|
+
resourceInputs["email"] = state?.email;
|
|
95
|
+
resourceInputs["emailVerified"] = state?.emailVerified;
|
|
96
|
+
resourceInputs["enabled"] = state?.enabled;
|
|
97
|
+
resourceInputs["federatedIdentities"] = state?.federatedIdentities;
|
|
98
|
+
resourceInputs["firstName"] = state?.firstName;
|
|
99
|
+
resourceInputs["import"] = state?.import;
|
|
100
|
+
resourceInputs["initialPassword"] = state?.initialPassword;
|
|
101
|
+
resourceInputs["lastName"] = state?.lastName;
|
|
102
|
+
resourceInputs["realmId"] = state?.realmId;
|
|
103
|
+
resourceInputs["requiredActions"] = state?.requiredActions;
|
|
104
|
+
resourceInputs["username"] = state?.username;
|
|
105
105
|
}
|
|
106
106
|
else {
|
|
107
107
|
const args = argsOrState;
|
|
108
|
-
if (
|
|
108
|
+
if (args?.realmId === undefined && !opts.urn) {
|
|
109
109
|
throw new Error("Missing required property 'realmId'");
|
|
110
110
|
}
|
|
111
|
-
if (
|
|
111
|
+
if (args?.username === undefined && !opts.urn) {
|
|
112
112
|
throw new Error("Missing required property 'username'");
|
|
113
113
|
}
|
|
114
|
-
resourceInputs["attributes"] = args
|
|
115
|
-
resourceInputs["email"] = args
|
|
116
|
-
resourceInputs["emailVerified"] = args
|
|
117
|
-
resourceInputs["enabled"] = args
|
|
118
|
-
resourceInputs["federatedIdentities"] = args
|
|
119
|
-
resourceInputs["firstName"] = args
|
|
120
|
-
resourceInputs["import"] = args
|
|
121
|
-
resourceInputs["initialPassword"] = args
|
|
122
|
-
resourceInputs["lastName"] = args
|
|
123
|
-
resourceInputs["realmId"] = args
|
|
124
|
-
resourceInputs["requiredActions"] = args
|
|
125
|
-
resourceInputs["username"] = args
|
|
114
|
+
resourceInputs["attributes"] = args?.attributes;
|
|
115
|
+
resourceInputs["email"] = args?.email;
|
|
116
|
+
resourceInputs["emailVerified"] = args?.emailVerified;
|
|
117
|
+
resourceInputs["enabled"] = args?.enabled;
|
|
118
|
+
resourceInputs["federatedIdentities"] = args?.federatedIdentities;
|
|
119
|
+
resourceInputs["firstName"] = args?.firstName;
|
|
120
|
+
resourceInputs["import"] = args?.import;
|
|
121
|
+
resourceInputs["initialPassword"] = args?.initialPassword;
|
|
122
|
+
resourceInputs["lastName"] = args?.lastName;
|
|
123
|
+
resourceInputs["realmId"] = args?.realmId;
|
|
124
|
+
resourceInputs["requiredActions"] = args?.requiredActions;
|
|
125
|
+
resourceInputs["username"] = args?.username;
|
|
126
126
|
}
|
|
127
127
|
opts = pulumi.mergeOptions(utilities.resourceOptsDefaults(), opts);
|
|
128
128
|
super(User.__pulumiType, name, resourceInputs, opts);
|
package/user.js.map
CHANGED
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"user.js","sourceRoot":"","sources":["../user.ts"],"names":[],"mappings":";AAAA,sEAAsE;AACtE,iFAAiF;;;AAEjF,yCAAyC;AAGzC,yCAAyC;AAEzC;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GAwDG;AACH,MAAa,IAAK,SAAQ,MAAM,CAAC,cAAc;IAC3C;;;;;;;;OAQG;IACI,MAAM,CAAC,GAAG,CAAC,IAAY,EAAE,EAA2B,EAAE,KAAiB,EAAE,IAAmC;QAC/G,OAAO,IAAI,IAAI,CAAC,IAAI,EAAO,KAAK,
|
|
1
|
+
{"version":3,"file":"user.js","sourceRoot":"","sources":["../user.ts"],"names":[],"mappings":";AAAA,sEAAsE;AACtE,iFAAiF;;;AAEjF,yCAAyC;AAGzC,yCAAyC;AAEzC;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GAwDG;AACH,MAAa,IAAK,SAAQ,MAAM,CAAC,cAAc;IAC3C;;;;;;;;OAQG;IACI,MAAM,CAAC,GAAG,CAAC,IAAY,EAAE,EAA2B,EAAE,KAAiB,EAAE,IAAmC;QAC/G,OAAO,IAAI,IAAI,CAAC,IAAI,EAAO,KAAK,EAAE,EAAE,GAAG,IAAI,EAAE,EAAE,EAAE,EAAE,EAAE,CAAC,CAAC;IAC3D,CAAC;IAKD;;;OAGG;IACI,MAAM,CAAC,UAAU,CAAC,GAAQ;QAC7B,IAAI,GAAG,KAAK,SAAS,IAAI,GAAG,KAAK,IAAI,EAAE;YACnC,OAAO,KAAK,CAAC;SAChB;QACD,OAAO,GAAG,CAAC,cAAc,CAAC,KAAK,IAAI,CAAC,YAAY,CAAC;IACrD,CAAC;IA2DD,YAAY,IAAY,EAAE,WAAkC,EAAE,IAAmC;QAC7F,IAAI,cAAc,GAAkB,EAAE,CAAC;QACvC,IAAI,GAAG,IAAI,IAAI,EAAE,CAAC;QAClB,IAAI,IAAI,CAAC,EAAE,EAAE;YACT,MAAM,KAAK,GAAG,WAAoC,CAAC;YACnD,cAAc,CAAC,YAAY,CAAC,GAAG,KAAK,EAAE,UAAU,CAAC;YACjD,cAAc,CAAC,OAAO,CAAC,GAAG,KAAK,EAAE,KAAK,CAAC;YACvC,cAAc,CAAC,eAAe,CAAC,GAAG,KAAK,EAAE,aAAa,CAAC;YACvD,cAAc,CAAC,SAAS,CAAC,GAAG,KAAK,EAAE,OAAO,CAAC;YAC3C,cAAc,CAAC,qBAAqB,CAAC,GAAG,KAAK,EAAE,mBAAmB,CAAC;YACnE,cAAc,CAAC,WAAW,CAAC,GAAG,KAAK,EAAE,SAAS,CAAC;YAC/C,cAAc,CAAC,QAAQ,CAAC,GAAG,KAAK,EAAE,MAAM,CAAC;YACzC,cAAc,CAAC,iBAAiB,CAAC,GAAG,KAAK,EAAE,eAAe,CAAC;YAC3D,cAAc,CAAC,UAAU,CAAC,GAAG,KAAK,EAAE,QAAQ,CAAC;YAC7C,cAAc,CAAC,SAAS,CAAC,GAAG,KAAK,EAAE,OAAO,CAAC;YAC3C,cAAc,CAAC,iBAAiB,CAAC,GAAG,KAAK,EAAE,eAAe,CAAC;YAC3D,cAAc,CAAC,UAAU,CAAC,GAAG,KAAK,EAAE,QAAQ,CAAC;SAChD;aAAM;YACH,MAAM,IAAI,GAAG,WAAmC,CAAC;YACjD,IAAI,IAAI,EAAE,OAAO,KAAK,SAAS,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE;gBAC1C,MAAM,IAAI,KAAK,CAAC,qCAAqC,CAAC,CAAC;aAC1D;YACD,IAAI,IAAI,EAAE,QAAQ,KAAK,SAAS,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE;gBAC3C,MAAM,IAAI,KAAK,CAAC,sCAAsC,CAAC,CAAC;aAC3D;YACD,cAAc,CAAC,YAAY,CAAC,GAAG,IAAI,EAAE,UAAU,CAAC;YAChD,cAAc,CAAC,OAAO,CAAC,GAAG,IAAI,EAAE,KAAK,CAAC;YACtC,cAAc,CAAC,eAAe,CAAC,GAAG,IAAI,EAAE,aAAa,CAAC;YACtD,cAAc,CAAC,SAAS,CAAC,GAAG,IAAI,EAAE,OAAO,CAAC;YAC1C,cAAc,CAAC,qBAAqB,CAAC,GAAG,IAAI,EAAE,mBAAmB,CAAC;YAClE,cAAc,CAAC,WAAW,CAAC,GAAG,IAAI,EAAE,SAAS,CAAC;YAC9C,cAAc,CAAC,QAAQ,CAAC,GAAG,IAAI,EAAE,MAAM,CAAC;YACxC,cAAc,CAAC,iBAAiB,CAAC,GAAG,IAAI,EAAE,eAAe,CAAC;YAC1D,cAAc,CAAC,UAAU,CAAC,GAAG,IAAI,EAAE,QAAQ,CAAC;YAC5C,cAAc,CAAC,SAAS,CAAC,GAAG,IAAI,EAAE,OAAO,CAAC;YAC1C,cAAc,CAAC,iBAAiB,CAAC,GAAG,IAAI,EAAE,eAAe,CAAC;YAC1D,cAAc,CAAC,UAAU,CAAC,GAAG,IAAI,EAAE,QAAQ,CAAC;SAC/C;QACD,IAAI,GAAG,MAAM,CAAC,YAAY,CAAC,SAAS,CAAC,oBAAoB,EAAE,EAAE,IAAI,CAAC,CAAC;QACnE,KAAK,CAAC,IAAI,CAAC,YAAY,EAAE,IAAI,EAAE,cAAc,EAAE,IAAI,CAAC,CAAC;IACzD,CAAC;;AA7HL,oBA8HC;AAhHG,gBAAgB;AACO,iBAAY,GAAG,0BAA0B,CAAC"}
|
package/userGroups.js
CHANGED
|
@@ -48,7 +48,7 @@ class UserGroups extends pulumi.CustomResource {
|
|
|
48
48
|
* @param opts Optional settings to control the behavior of the CustomResource.
|
|
49
49
|
*/
|
|
50
50
|
static get(name, id, state, opts) {
|
|
51
|
-
return new UserGroups(name, state,
|
|
51
|
+
return new UserGroups(name, state, { ...opts, id: id });
|
|
52
52
|
}
|
|
53
53
|
/**
|
|
54
54
|
* Returns true if the given object is an instance of UserGroups. This is designed to work even
|
|
@@ -65,26 +65,26 @@ class UserGroups extends pulumi.CustomResource {
|
|
|
65
65
|
opts = opts || {};
|
|
66
66
|
if (opts.id) {
|
|
67
67
|
const state = argsOrState;
|
|
68
|
-
resourceInputs["exhaustive"] = state
|
|
69
|
-
resourceInputs["groupIds"] = state
|
|
70
|
-
resourceInputs["realmId"] = state
|
|
71
|
-
resourceInputs["userId"] = state
|
|
68
|
+
resourceInputs["exhaustive"] = state?.exhaustive;
|
|
69
|
+
resourceInputs["groupIds"] = state?.groupIds;
|
|
70
|
+
resourceInputs["realmId"] = state?.realmId;
|
|
71
|
+
resourceInputs["userId"] = state?.userId;
|
|
72
72
|
}
|
|
73
73
|
else {
|
|
74
74
|
const args = argsOrState;
|
|
75
|
-
if (
|
|
75
|
+
if (args?.groupIds === undefined && !opts.urn) {
|
|
76
76
|
throw new Error("Missing required property 'groupIds'");
|
|
77
77
|
}
|
|
78
|
-
if (
|
|
78
|
+
if (args?.realmId === undefined && !opts.urn) {
|
|
79
79
|
throw new Error("Missing required property 'realmId'");
|
|
80
80
|
}
|
|
81
|
-
if (
|
|
81
|
+
if (args?.userId === undefined && !opts.urn) {
|
|
82
82
|
throw new Error("Missing required property 'userId'");
|
|
83
83
|
}
|
|
84
|
-
resourceInputs["exhaustive"] = args
|
|
85
|
-
resourceInputs["groupIds"] = args
|
|
86
|
-
resourceInputs["realmId"] = args
|
|
87
|
-
resourceInputs["userId"] = args
|
|
84
|
+
resourceInputs["exhaustive"] = args?.exhaustive;
|
|
85
|
+
resourceInputs["groupIds"] = args?.groupIds;
|
|
86
|
+
resourceInputs["realmId"] = args?.realmId;
|
|
87
|
+
resourceInputs["userId"] = args?.userId;
|
|
88
88
|
}
|
|
89
89
|
opts = pulumi.mergeOptions(utilities.resourceOptsDefaults(), opts);
|
|
90
90
|
super(UserGroups.__pulumiType, name, resourceInputs, opts);
|
package/userGroups.js.map
CHANGED
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"userGroups.js","sourceRoot":"","sources":["../userGroups.ts"],"names":[],"mappings":";AAAA,sEAAsE;AACtE,iFAAiF;;;AAEjF,yCAAyC;AACzC,yCAAyC;AAEzC;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GA+BG;AACH,MAAa,UAAW,SAAQ,MAAM,CAAC,cAAc;IACjD;;;;;;;;OAQG;IACI,MAAM,CAAC,GAAG,CAAC,IAAY,EAAE,EAA2B,EAAE,KAAuB,EAAE,IAAmC;QACrH,OAAO,IAAI,UAAU,CAAC,IAAI,EAAO,KAAK,
|
|
1
|
+
{"version":3,"file":"userGroups.js","sourceRoot":"","sources":["../userGroups.ts"],"names":[],"mappings":";AAAA,sEAAsE;AACtE,iFAAiF;;;AAEjF,yCAAyC;AACzC,yCAAyC;AAEzC;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GA+BG;AACH,MAAa,UAAW,SAAQ,MAAM,CAAC,cAAc;IACjD;;;;;;;;OAQG;IACI,MAAM,CAAC,GAAG,CAAC,IAAY,EAAE,EAA2B,EAAE,KAAuB,EAAE,IAAmC;QACrH,OAAO,IAAI,UAAU,CAAC,IAAI,EAAO,KAAK,EAAE,EAAE,GAAG,IAAI,EAAE,EAAE,EAAE,EAAE,EAAE,CAAC,CAAC;IACjE,CAAC;IAKD;;;OAGG;IACI,MAAM,CAAC,UAAU,CAAC,GAAQ;QAC7B,IAAI,GAAG,KAAK,SAAS,IAAI,GAAG,KAAK,IAAI,EAAE;YACnC,OAAO,KAAK,CAAC;SAChB;QACD,OAAO,GAAG,CAAC,cAAc,CAAC,KAAK,UAAU,CAAC,YAAY,CAAC;IAC3D,CAAC;IA2BD,YAAY,IAAY,EAAE,WAA8C,EAAE,IAAmC;QACzG,IAAI,cAAc,GAAkB,EAAE,CAAC;QACvC,IAAI,GAAG,IAAI,IAAI,EAAE,CAAC;QAClB,IAAI,IAAI,CAAC,EAAE,EAAE;YACT,MAAM,KAAK,GAAG,WAA0C,CAAC;YACzD,cAAc,CAAC,YAAY,CAAC,GAAG,KAAK,EAAE,UAAU,CAAC;YACjD,cAAc,CAAC,UAAU,CAAC,GAAG,KAAK,EAAE,QAAQ,CAAC;YAC7C,cAAc,CAAC,SAAS,CAAC,GAAG,KAAK,EAAE,OAAO,CAAC;YAC3C,cAAc,CAAC,QAAQ,CAAC,GAAG,KAAK,EAAE,MAAM,CAAC;SAC5C;aAAM;YACH,MAAM,IAAI,GAAG,WAAyC,CAAC;YACvD,IAAI,IAAI,EAAE,QAAQ,KAAK,SAAS,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE;gBAC3C,MAAM,IAAI,KAAK,CAAC,sCAAsC,CAAC,CAAC;aAC3D;YACD,IAAI,IAAI,EAAE,OAAO,KAAK,SAAS,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE;gBAC1C,MAAM,IAAI,KAAK,CAAC,qCAAqC,CAAC,CAAC;aAC1D;YACD,IAAI,IAAI,EAAE,MAAM,KAAK,SAAS,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE;gBACzC,MAAM,IAAI,KAAK,CAAC,oCAAoC,CAAC,CAAC;aACzD;YACD,cAAc,CAAC,YAAY,CAAC,GAAG,IAAI,EAAE,UAAU,CAAC;YAChD,cAAc,CAAC,UAAU,CAAC,GAAG,IAAI,EAAE,QAAQ,CAAC;YAC5C,cAAc,CAAC,SAAS,CAAC,GAAG,IAAI,EAAE,OAAO,CAAC;YAC1C,cAAc,CAAC,QAAQ,CAAC,GAAG,IAAI,EAAE,MAAM,CAAC;SAC3C;QACD,IAAI,GAAG,MAAM,CAAC,YAAY,CAAC,SAAS,CAAC,oBAAoB,EAAE,EAAE,IAAI,CAAC,CAAC;QACnE,KAAK,CAAC,UAAU,CAAC,YAAY,EAAE,IAAI,EAAE,cAAc,EAAE,IAAI,CAAC,CAAC;IAC/D,CAAC;;AAhFL,gCAiFC;AAnEG,gBAAgB;AACO,uBAAY,GAAG,sCAAsC,CAAC"}
|
package/userRoles.js
CHANGED
|
@@ -88,7 +88,7 @@ class UserRoles extends pulumi.CustomResource {
|
|
|
88
88
|
* @param opts Optional settings to control the behavior of the CustomResource.
|
|
89
89
|
*/
|
|
90
90
|
static get(name, id, state, opts) {
|
|
91
|
-
return new UserRoles(name, state,
|
|
91
|
+
return new UserRoles(name, state, { ...opts, id: id });
|
|
92
92
|
}
|
|
93
93
|
/**
|
|
94
94
|
* Returns true if the given object is an instance of UserRoles. This is designed to work even
|
|
@@ -105,26 +105,26 @@ class UserRoles extends pulumi.CustomResource {
|
|
|
105
105
|
opts = opts || {};
|
|
106
106
|
if (opts.id) {
|
|
107
107
|
const state = argsOrState;
|
|
108
|
-
resourceInputs["exhaustive"] = state
|
|
109
|
-
resourceInputs["realmId"] = state
|
|
110
|
-
resourceInputs["roleIds"] = state
|
|
111
|
-
resourceInputs["userId"] = state
|
|
108
|
+
resourceInputs["exhaustive"] = state?.exhaustive;
|
|
109
|
+
resourceInputs["realmId"] = state?.realmId;
|
|
110
|
+
resourceInputs["roleIds"] = state?.roleIds;
|
|
111
|
+
resourceInputs["userId"] = state?.userId;
|
|
112
112
|
}
|
|
113
113
|
else {
|
|
114
114
|
const args = argsOrState;
|
|
115
|
-
if (
|
|
115
|
+
if (args?.realmId === undefined && !opts.urn) {
|
|
116
116
|
throw new Error("Missing required property 'realmId'");
|
|
117
117
|
}
|
|
118
|
-
if (
|
|
118
|
+
if (args?.roleIds === undefined && !opts.urn) {
|
|
119
119
|
throw new Error("Missing required property 'roleIds'");
|
|
120
120
|
}
|
|
121
|
-
if (
|
|
121
|
+
if (args?.userId === undefined && !opts.urn) {
|
|
122
122
|
throw new Error("Missing required property 'userId'");
|
|
123
123
|
}
|
|
124
|
-
resourceInputs["exhaustive"] = args
|
|
125
|
-
resourceInputs["realmId"] = args
|
|
126
|
-
resourceInputs["roleIds"] = args
|
|
127
|
-
resourceInputs["userId"] = args
|
|
124
|
+
resourceInputs["exhaustive"] = args?.exhaustive;
|
|
125
|
+
resourceInputs["realmId"] = args?.realmId;
|
|
126
|
+
resourceInputs["roleIds"] = args?.roleIds;
|
|
127
|
+
resourceInputs["userId"] = args?.userId;
|
|
128
128
|
}
|
|
129
129
|
opts = pulumi.mergeOptions(utilities.resourceOptsDefaults(), opts);
|
|
130
130
|
super(UserRoles.__pulumiType, name, resourceInputs, opts);
|
package/userRoles.js.map
CHANGED
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"userRoles.js","sourceRoot":"","sources":["../userRoles.ts"],"names":[],"mappings":";AAAA,sEAAsE;AACtE,iFAAiF;;;AAEjF,yCAAyC;AACzC,yCAAyC;AAEzC;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GAuEG;AACH,MAAa,SAAU,SAAQ,MAAM,CAAC,cAAc;IAChD;;;;;;;;OAQG;IACI,MAAM,CAAC,GAAG,CAAC,IAAY,EAAE,EAA2B,EAAE,KAAsB,EAAE,IAAmC;QACpH,OAAO,IAAI,SAAS,CAAC,IAAI,EAAO,KAAK,
|
|
1
|
+
{"version":3,"file":"userRoles.js","sourceRoot":"","sources":["../userRoles.ts"],"names":[],"mappings":";AAAA,sEAAsE;AACtE,iFAAiF;;;AAEjF,yCAAyC;AACzC,yCAAyC;AAEzC;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GAuEG;AACH,MAAa,SAAU,SAAQ,MAAM,CAAC,cAAc;IAChD;;;;;;;;OAQG;IACI,MAAM,CAAC,GAAG,CAAC,IAAY,EAAE,EAA2B,EAAE,KAAsB,EAAE,IAAmC;QACpH,OAAO,IAAI,SAAS,CAAC,IAAI,EAAO,KAAK,EAAE,EAAE,GAAG,IAAI,EAAE,EAAE,EAAE,EAAE,EAAE,CAAC,CAAC;IAChE,CAAC;IAKD;;;OAGG;IACI,MAAM,CAAC,UAAU,CAAC,GAAQ;QAC7B,IAAI,GAAG,KAAK,SAAS,IAAI,GAAG,KAAK,IAAI,EAAE;YACnC,OAAO,KAAK,CAAC;SAChB;QACD,OAAO,GAAG,CAAC,cAAc,CAAC,KAAK,SAAS,CAAC,YAAY,CAAC;IAC1D,CAAC;IA2BD,YAAY,IAAY,EAAE,WAA4C,EAAE,IAAmC;QACvG,IAAI,cAAc,GAAkB,EAAE,CAAC;QACvC,IAAI,GAAG,IAAI,IAAI,EAAE,CAAC;QAClB,IAAI,IAAI,CAAC,EAAE,EAAE;YACT,MAAM,KAAK,GAAG,WAAyC,CAAC;YACxD,cAAc,CAAC,YAAY,CAAC,GAAG,KAAK,EAAE,UAAU,CAAC;YACjD,cAAc,CAAC,SAAS,CAAC,GAAG,KAAK,EAAE,OAAO,CAAC;YAC3C,cAAc,CAAC,SAAS,CAAC,GAAG,KAAK,EAAE,OAAO,CAAC;YAC3C,cAAc,CAAC,QAAQ,CAAC,GAAG,KAAK,EAAE,MAAM,CAAC;SAC5C;aAAM;YACH,MAAM,IAAI,GAAG,WAAwC,CAAC;YACtD,IAAI,IAAI,EAAE,OAAO,KAAK,SAAS,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE;gBAC1C,MAAM,IAAI,KAAK,CAAC,qCAAqC,CAAC,CAAC;aAC1D;YACD,IAAI,IAAI,EAAE,OAAO,KAAK,SAAS,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE;gBAC1C,MAAM,IAAI,KAAK,CAAC,qCAAqC,CAAC,CAAC;aAC1D;YACD,IAAI,IAAI,EAAE,MAAM,KAAK,SAAS,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE;gBACzC,MAAM,IAAI,KAAK,CAAC,oCAAoC,CAAC,CAAC;aACzD;YACD,cAAc,CAAC,YAAY,CAAC,GAAG,IAAI,EAAE,UAAU,CAAC;YAChD,cAAc,CAAC,SAAS,CAAC,GAAG,IAAI,EAAE,OAAO,CAAC;YAC1C,cAAc,CAAC,SAAS,CAAC,GAAG,IAAI,EAAE,OAAO,CAAC;YAC1C,cAAc,CAAC,QAAQ,CAAC,GAAG,IAAI,EAAE,MAAM,CAAC;SAC3C;QACD,IAAI,GAAG,MAAM,CAAC,YAAY,CAAC,SAAS,CAAC,oBAAoB,EAAE,EAAE,IAAI,CAAC,CAAC;QACnE,KAAK,CAAC,SAAS,CAAC,YAAY,EAAE,IAAI,EAAE,cAAc,EAAE,IAAI,CAAC,CAAC;IAC9D,CAAC;;AAhFL,8BAiFC;AAnEG,gBAAgB;AACO,sBAAY,GAAG,oCAAoC,CAAC"}
|
|
@@ -69,7 +69,7 @@ class UserTemplateImporterIdentityProviderMapper extends pulumi.CustomResource {
|
|
|
69
69
|
* @param opts Optional settings to control the behavior of the CustomResource.
|
|
70
70
|
*/
|
|
71
71
|
static get(name, id, state, opts) {
|
|
72
|
-
return new UserTemplateImporterIdentityProviderMapper(name, state,
|
|
72
|
+
return new UserTemplateImporterIdentityProviderMapper(name, state, { ...opts, id: id });
|
|
73
73
|
}
|
|
74
74
|
/**
|
|
75
75
|
* Returns true if the given object is an instance of UserTemplateImporterIdentityProviderMapper. This is designed to work even
|
|
@@ -86,25 +86,25 @@ class UserTemplateImporterIdentityProviderMapper extends pulumi.CustomResource {
|
|
|
86
86
|
opts = opts || {};
|
|
87
87
|
if (opts.id) {
|
|
88
88
|
const state = argsOrState;
|
|
89
|
-
resourceInputs["extraConfig"] = state
|
|
90
|
-
resourceInputs["identityProviderAlias"] = state
|
|
91
|
-
resourceInputs["name"] = state
|
|
92
|
-
resourceInputs["realm"] = state
|
|
93
|
-
resourceInputs["template"] = state
|
|
89
|
+
resourceInputs["extraConfig"] = state?.extraConfig;
|
|
90
|
+
resourceInputs["identityProviderAlias"] = state?.identityProviderAlias;
|
|
91
|
+
resourceInputs["name"] = state?.name;
|
|
92
|
+
resourceInputs["realm"] = state?.realm;
|
|
93
|
+
resourceInputs["template"] = state?.template;
|
|
94
94
|
}
|
|
95
95
|
else {
|
|
96
96
|
const args = argsOrState;
|
|
97
|
-
if (
|
|
97
|
+
if (args?.identityProviderAlias === undefined && !opts.urn) {
|
|
98
98
|
throw new Error("Missing required property 'identityProviderAlias'");
|
|
99
99
|
}
|
|
100
|
-
if (
|
|
100
|
+
if (args?.realm === undefined && !opts.urn) {
|
|
101
101
|
throw new Error("Missing required property 'realm'");
|
|
102
102
|
}
|
|
103
|
-
resourceInputs["extraConfig"] = args
|
|
104
|
-
resourceInputs["identityProviderAlias"] = args
|
|
105
|
-
resourceInputs["name"] = args
|
|
106
|
-
resourceInputs["realm"] = args
|
|
107
|
-
resourceInputs["template"] = args
|
|
103
|
+
resourceInputs["extraConfig"] = args?.extraConfig;
|
|
104
|
+
resourceInputs["identityProviderAlias"] = args?.identityProviderAlias;
|
|
105
|
+
resourceInputs["name"] = args?.name;
|
|
106
|
+
resourceInputs["realm"] = args?.realm;
|
|
107
|
+
resourceInputs["template"] = args?.template;
|
|
108
108
|
}
|
|
109
109
|
opts = pulumi.mergeOptions(utilities.resourceOptsDefaults(), opts);
|
|
110
110
|
super(UserTemplateImporterIdentityProviderMapper.__pulumiType, name, resourceInputs, opts);
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"userTemplateImporterIdentityProviderMapper.js","sourceRoot":"","sources":["../userTemplateImporterIdentityProviderMapper.ts"],"names":[],"mappings":";AAAA,sEAAsE;AACtE,iFAAiF;;;AAEjF,yCAAyC;AACzC,yCAAyC;AAEzC;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GAoDG;AACH,MAAa,0CAA2C,SAAQ,MAAM,CAAC,cAAc;IACjF;;;;;;;;OAQG;IACI,MAAM,CAAC,GAAG,CAAC,IAAY,EAAE,EAA2B,EAAE,KAAuD,EAAE,IAAmC;QACrJ,OAAO,IAAI,0CAA0C,CAAC,IAAI,EAAO,KAAK,
|
|
1
|
+
{"version":3,"file":"userTemplateImporterIdentityProviderMapper.js","sourceRoot":"","sources":["../userTemplateImporterIdentityProviderMapper.ts"],"names":[],"mappings":";AAAA,sEAAsE;AACtE,iFAAiF;;;AAEjF,yCAAyC;AACzC,yCAAyC;AAEzC;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GAoDG;AACH,MAAa,0CAA2C,SAAQ,MAAM,CAAC,cAAc;IACjF;;;;;;;;OAQG;IACI,MAAM,CAAC,GAAG,CAAC,IAAY,EAAE,EAA2B,EAAE,KAAuD,EAAE,IAAmC;QACrJ,OAAO,IAAI,0CAA0C,CAAC,IAAI,EAAO,KAAK,EAAE,EAAE,GAAG,IAAI,EAAE,EAAE,EAAE,EAAE,EAAE,CAAC,CAAC;IACjG,CAAC;IAKD;;;OAGG;IACI,MAAM,CAAC,UAAU,CAAC,GAAQ;QAC7B,IAAI,GAAG,KAAK,SAAS,IAAI,GAAG,KAAK,IAAI,EAAE;YACnC,OAAO,KAAK,CAAC;SAChB;QACD,OAAO,GAAG,CAAC,cAAc,CAAC,KAAK,0CAA0C,CAAC,YAAY,CAAC;IAC3F,CAAC;IA+BD,YAAY,IAAY,EAAE,WAA8G,EAAE,IAAmC;QACzK,IAAI,cAAc,GAAkB,EAAE,CAAC;QACvC,IAAI,GAAG,IAAI,IAAI,EAAE,CAAC;QAClB,IAAI,IAAI,CAAC,EAAE,EAAE;YACT,MAAM,KAAK,GAAG,WAA0E,CAAC;YACzF,cAAc,CAAC,aAAa,CAAC,GAAG,KAAK,EAAE,WAAW,CAAC;YACnD,cAAc,CAAC,uBAAuB,CAAC,GAAG,KAAK,EAAE,qBAAqB,CAAC;YACvE,cAAc,CAAC,MAAM,CAAC,GAAG,KAAK,EAAE,IAAI,CAAC;YACrC,cAAc,CAAC,OAAO,CAAC,GAAG,KAAK,EAAE,KAAK,CAAC;YACvC,cAAc,CAAC,UAAU,CAAC,GAAG,KAAK,EAAE,QAAQ,CAAC;SAChD;aAAM;YACH,MAAM,IAAI,GAAG,WAAyE,CAAC;YACvF,IAAI,IAAI,EAAE,qBAAqB,KAAK,SAAS,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE;gBACxD,MAAM,IAAI,KAAK,CAAC,mDAAmD,CAAC,CAAC;aACxE;YACD,IAAI,IAAI,EAAE,KAAK,KAAK,SAAS,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE;gBACxC,MAAM,IAAI,KAAK,CAAC,mCAAmC,CAAC,CAAC;aACxD;YACD,cAAc,CAAC,aAAa,CAAC,GAAG,IAAI,EAAE,WAAW,CAAC;YAClD,cAAc,CAAC,uBAAuB,CAAC,GAAG,IAAI,EAAE,qBAAqB,CAAC;YACtE,cAAc,CAAC,MAAM,CAAC,GAAG,IAAI,EAAE,IAAI,CAAC;YACpC,cAAc,CAAC,OAAO,CAAC,GAAG,IAAI,EAAE,KAAK,CAAC;YACtC,cAAc,CAAC,UAAU,CAAC,GAAG,IAAI,EAAE,QAAQ,CAAC;SAC/C;QACD,IAAI,GAAG,MAAM,CAAC,YAAY,CAAC,SAAS,CAAC,oBAAoB,EAAE,EAAE,IAAI,CAAC,CAAC;QACnE,KAAK,CAAC,0CAA0C,CAAC,YAAY,EAAE,IAAI,EAAE,cAAc,EAAE,IAAI,CAAC,CAAC;IAC/F,CAAC;;AAnFL,gGAoFC;AAtEG,gBAAgB;AACO,uDAAY,GAAG,sGAAsG,CAAC"}
|
package/usersPermissions.d.ts
CHANGED
|
@@ -15,6 +15,36 @@ import * as outputs from "./types/output";
|
|
|
15
15
|
* 4. Create all scope based permission for the scopes and users resources.
|
|
16
16
|
*
|
|
17
17
|
* > This resource should only be created once per realm.
|
|
18
|
+
*
|
|
19
|
+
* ## Example Usage
|
|
20
|
+
*
|
|
21
|
+
* ### Argument Reference
|
|
22
|
+
*
|
|
23
|
+
* The following arguments are supported:
|
|
24
|
+
*
|
|
25
|
+
* - `realmId` - (Required) The realm in which to manage fine-grained user permissions.
|
|
26
|
+
*
|
|
27
|
+
* Each of the scopes that can be managed are defined below:
|
|
28
|
+
*
|
|
29
|
+
* - `viewScope` - (Optional) When specified, set the scope based view permission.
|
|
30
|
+
* - `manageScope` - (Optional) When specified, set the scope based manage permission.
|
|
31
|
+
* - `mapRolesScope` - (Optional) When specified, set the scope based mapRoles permission.
|
|
32
|
+
* - `manageGroupMembershipScope` - (Optional) When specified, set the scope based manageGroupMembership permission.
|
|
33
|
+
* - `impersonateScope` - (Optional) When specified, set the scope based impersonate permission.
|
|
34
|
+
* - `userImpersonatedScope` - (Optional) When specified, set the scope based userImpersonated permission.
|
|
35
|
+
*
|
|
36
|
+
* The configuration block for each of these scopes supports the following arguments:
|
|
37
|
+
*
|
|
38
|
+
* - `policies` - (Optional) Assigned policies to the permission. Each element within this list should be a policy ID.
|
|
39
|
+
* - `description` - (Optional) Description of the permission.
|
|
40
|
+
* - `decisionStrategy` - (Optional) Decision strategy of the permission.
|
|
41
|
+
*
|
|
42
|
+
* ### Attributes Reference
|
|
43
|
+
*
|
|
44
|
+
* In addition to the arguments listed above, the following computed attributes are exported:
|
|
45
|
+
*
|
|
46
|
+
* - `enabled` - When true, this indicates that fine-grained user permissions are enabled. This will always be `true`.
|
|
47
|
+
* - `authorizationResourceServerId` - Resource server id representing the realm management client on which these permissions are managed.
|
|
18
48
|
*/
|
|
19
49
|
export declare class UsersPermissions extends pulumi.CustomResource {
|
|
20
50
|
/**
|
package/usersPermissions.js
CHANGED
|
@@ -19,6 +19,36 @@ const utilities = require("./utilities");
|
|
|
19
19
|
* 4. Create all scope based permission for the scopes and users resources.
|
|
20
20
|
*
|
|
21
21
|
* > This resource should only be created once per realm.
|
|
22
|
+
*
|
|
23
|
+
* ## Example Usage
|
|
24
|
+
*
|
|
25
|
+
* ### Argument Reference
|
|
26
|
+
*
|
|
27
|
+
* The following arguments are supported:
|
|
28
|
+
*
|
|
29
|
+
* - `realmId` - (Required) The realm in which to manage fine-grained user permissions.
|
|
30
|
+
*
|
|
31
|
+
* Each of the scopes that can be managed are defined below:
|
|
32
|
+
*
|
|
33
|
+
* - `viewScope` - (Optional) When specified, set the scope based view permission.
|
|
34
|
+
* - `manageScope` - (Optional) When specified, set the scope based manage permission.
|
|
35
|
+
* - `mapRolesScope` - (Optional) When specified, set the scope based mapRoles permission.
|
|
36
|
+
* - `manageGroupMembershipScope` - (Optional) When specified, set the scope based manageGroupMembership permission.
|
|
37
|
+
* - `impersonateScope` - (Optional) When specified, set the scope based impersonate permission.
|
|
38
|
+
* - `userImpersonatedScope` - (Optional) When specified, set the scope based userImpersonated permission.
|
|
39
|
+
*
|
|
40
|
+
* The configuration block for each of these scopes supports the following arguments:
|
|
41
|
+
*
|
|
42
|
+
* - `policies` - (Optional) Assigned policies to the permission. Each element within this list should be a policy ID.
|
|
43
|
+
* - `description` - (Optional) Description of the permission.
|
|
44
|
+
* - `decisionStrategy` - (Optional) Decision strategy of the permission.
|
|
45
|
+
*
|
|
46
|
+
* ### Attributes Reference
|
|
47
|
+
*
|
|
48
|
+
* In addition to the arguments listed above, the following computed attributes are exported:
|
|
49
|
+
*
|
|
50
|
+
* - `enabled` - When true, this indicates that fine-grained user permissions are enabled. This will always be `true`.
|
|
51
|
+
* - `authorizationResourceServerId` - Resource server id representing the realm management client on which these permissions are managed.
|
|
22
52
|
*/
|
|
23
53
|
class UsersPermissions extends pulumi.CustomResource {
|
|
24
54
|
/**
|
|
@@ -31,7 +61,7 @@ class UsersPermissions extends pulumi.CustomResource {
|
|
|
31
61
|
* @param opts Optional settings to control the behavior of the CustomResource.
|
|
32
62
|
*/
|
|
33
63
|
static get(name, id, state, opts) {
|
|
34
|
-
return new UsersPermissions(name, state,
|
|
64
|
+
return new UsersPermissions(name, state, { ...opts, id: id });
|
|
35
65
|
}
|
|
36
66
|
/**
|
|
37
67
|
* Returns true if the given object is an instance of UsersPermissions. This is designed to work even
|
|
@@ -48,28 +78,28 @@ class UsersPermissions extends pulumi.CustomResource {
|
|
|
48
78
|
opts = opts || {};
|
|
49
79
|
if (opts.id) {
|
|
50
80
|
const state = argsOrState;
|
|
51
|
-
resourceInputs["authorizationResourceServerId"] = state
|
|
52
|
-
resourceInputs["enabled"] = state
|
|
53
|
-
resourceInputs["impersonateScope"] = state
|
|
54
|
-
resourceInputs["manageGroupMembershipScope"] = state
|
|
55
|
-
resourceInputs["manageScope"] = state
|
|
56
|
-
resourceInputs["mapRolesScope"] = state
|
|
57
|
-
resourceInputs["realmId"] = state
|
|
58
|
-
resourceInputs["userImpersonatedScope"] = state
|
|
59
|
-
resourceInputs["viewScope"] = state
|
|
81
|
+
resourceInputs["authorizationResourceServerId"] = state?.authorizationResourceServerId;
|
|
82
|
+
resourceInputs["enabled"] = state?.enabled;
|
|
83
|
+
resourceInputs["impersonateScope"] = state?.impersonateScope;
|
|
84
|
+
resourceInputs["manageGroupMembershipScope"] = state?.manageGroupMembershipScope;
|
|
85
|
+
resourceInputs["manageScope"] = state?.manageScope;
|
|
86
|
+
resourceInputs["mapRolesScope"] = state?.mapRolesScope;
|
|
87
|
+
resourceInputs["realmId"] = state?.realmId;
|
|
88
|
+
resourceInputs["userImpersonatedScope"] = state?.userImpersonatedScope;
|
|
89
|
+
resourceInputs["viewScope"] = state?.viewScope;
|
|
60
90
|
}
|
|
61
91
|
else {
|
|
62
92
|
const args = argsOrState;
|
|
63
|
-
if (
|
|
93
|
+
if (args?.realmId === undefined && !opts.urn) {
|
|
64
94
|
throw new Error("Missing required property 'realmId'");
|
|
65
95
|
}
|
|
66
|
-
resourceInputs["impersonateScope"] = args
|
|
67
|
-
resourceInputs["manageGroupMembershipScope"] = args
|
|
68
|
-
resourceInputs["manageScope"] = args
|
|
69
|
-
resourceInputs["mapRolesScope"] = args
|
|
70
|
-
resourceInputs["realmId"] = args
|
|
71
|
-
resourceInputs["userImpersonatedScope"] = args
|
|
72
|
-
resourceInputs["viewScope"] = args
|
|
96
|
+
resourceInputs["impersonateScope"] = args?.impersonateScope;
|
|
97
|
+
resourceInputs["manageGroupMembershipScope"] = args?.manageGroupMembershipScope;
|
|
98
|
+
resourceInputs["manageScope"] = args?.manageScope;
|
|
99
|
+
resourceInputs["mapRolesScope"] = args?.mapRolesScope;
|
|
100
|
+
resourceInputs["realmId"] = args?.realmId;
|
|
101
|
+
resourceInputs["userImpersonatedScope"] = args?.userImpersonatedScope;
|
|
102
|
+
resourceInputs["viewScope"] = args?.viewScope;
|
|
73
103
|
resourceInputs["authorizationResourceServerId"] = undefined /*out*/;
|
|
74
104
|
resourceInputs["enabled"] = undefined /*out*/;
|
|
75
105
|
}
|
package/usersPermissions.js.map
CHANGED
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"usersPermissions.js","sourceRoot":"","sources":["../usersPermissions.ts"],"names":[],"mappings":";AAAA,sEAAsE;AACtE,iFAAiF;;;AAEjF,yCAAyC;AAGzC,yCAAyC;AAEzC
|
|
1
|
+
{"version":3,"file":"usersPermissions.js","sourceRoot":"","sources":["../usersPermissions.ts"],"names":[],"mappings":";AAAA,sEAAsE;AACtE,iFAAiF;;;AAEjF,yCAAyC;AAGzC,yCAAyC;AAEzC;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GA4CG;AACH,MAAa,gBAAiB,SAAQ,MAAM,CAAC,cAAc;IACvD;;;;;;;;OAQG;IACI,MAAM,CAAC,GAAG,CAAC,IAAY,EAAE,EAA2B,EAAE,KAA6B,EAAE,IAAmC;QAC3H,OAAO,IAAI,gBAAgB,CAAC,IAAI,EAAO,KAAK,EAAE,EAAE,GAAG,IAAI,EAAE,EAAE,EAAE,EAAE,EAAE,CAAC,CAAC;IACvE,CAAC;IAKD;;;OAGG;IACI,MAAM,CAAC,UAAU,CAAC,GAAQ;QAC7B,IAAI,GAAG,KAAK,SAAS,IAAI,GAAG,KAAK,IAAI,EAAE;YACnC,OAAO,KAAK,CAAC;SAChB;QACD,OAAO,GAAG,CAAC,cAAc,CAAC,KAAK,gBAAgB,CAAC,YAAY,CAAC;IACjE,CAAC;IAuBD,YAAY,IAAY,EAAE,WAA0D,EAAE,IAAmC;QACrH,IAAI,cAAc,GAAkB,EAAE,CAAC;QACvC,IAAI,GAAG,IAAI,IAAI,EAAE,CAAC;QAClB,IAAI,IAAI,CAAC,EAAE,EAAE;YACT,MAAM,KAAK,GAAG,WAAgD,CAAC;YAC/D,cAAc,CAAC,+BAA+B,CAAC,GAAG,KAAK,EAAE,6BAA6B,CAAC;YACvF,cAAc,CAAC,SAAS,CAAC,GAAG,KAAK,EAAE,OAAO,CAAC;YAC3C,cAAc,CAAC,kBAAkB,CAAC,GAAG,KAAK,EAAE,gBAAgB,CAAC;YAC7D,cAAc,CAAC,4BAA4B,CAAC,GAAG,KAAK,EAAE,0BAA0B,CAAC;YACjF,cAAc,CAAC,aAAa,CAAC,GAAG,KAAK,EAAE,WAAW,CAAC;YACnD,cAAc,CAAC,eAAe,CAAC,GAAG,KAAK,EAAE,aAAa,CAAC;YACvD,cAAc,CAAC,SAAS,CAAC,GAAG,KAAK,EAAE,OAAO,CAAC;YAC3C,cAAc,CAAC,uBAAuB,CAAC,GAAG,KAAK,EAAE,qBAAqB,CAAC;YACvE,cAAc,CAAC,WAAW,CAAC,GAAG,KAAK,EAAE,SAAS,CAAC;SAClD;aAAM;YACH,MAAM,IAAI,GAAG,WAA+C,CAAC;YAC7D,IAAI,IAAI,EAAE,OAAO,KAAK,SAAS,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE;gBAC1C,MAAM,IAAI,KAAK,CAAC,qCAAqC,CAAC,CAAC;aAC1D;YACD,cAAc,CAAC,kBAAkB,CAAC,GAAG,IAAI,EAAE,gBAAgB,CAAC;YAC5D,cAAc,CAAC,4BAA4B,CAAC,GAAG,IAAI,EAAE,0BAA0B,CAAC;YAChF,cAAc,CAAC,aAAa,CAAC,GAAG,IAAI,EAAE,WAAW,CAAC;YAClD,cAAc,CAAC,eAAe,CAAC,GAAG,IAAI,EAAE,aAAa,CAAC;YACtD,cAAc,CAAC,SAAS,CAAC,GAAG,IAAI,EAAE,OAAO,CAAC;YAC1C,cAAc,CAAC,uBAAuB,CAAC,GAAG,IAAI,EAAE,qBAAqB,CAAC;YACtE,cAAc,CAAC,WAAW,CAAC,GAAG,IAAI,EAAE,SAAS,CAAC;YAC9C,cAAc,CAAC,+BAA+B,CAAC,GAAG,SAAS,CAAC,OAAO,CAAC;YACpE,cAAc,CAAC,SAAS,CAAC,GAAG,SAAS,CAAC,OAAO,CAAC;SACjD;QACD,IAAI,GAAG,MAAM,CAAC,YAAY,CAAC,SAAS,CAAC,oBAAoB,EAAE,EAAE,IAAI,CAAC,CAAC;QACnE,KAAK,CAAC,gBAAgB,CAAC,YAAY,EAAE,IAAI,EAAE,cAAc,EAAE,IAAI,CAAC,CAAC;IACrE,CAAC;;AAhFL,4CAiFC;AAnEG,gBAAgB;AACO,6BAAY,GAAG,kDAAkD,CAAC"}
|
package/utilities.js
CHANGED
|
@@ -1,15 +1,6 @@
|
|
|
1
1
|
"use strict";
|
|
2
2
|
// *** WARNING: this file was generated by pulumi-language-nodejs. ***
|
|
3
3
|
// *** Do not edit by hand unless you're certain you know what you are doing! ***
|
|
4
|
-
var __awaiter = (this && this.__awaiter) || function (thisArg, _arguments, P, generator) {
|
|
5
|
-
function adopt(value) { return value instanceof P ? value : new P(function (resolve) { resolve(value); }); }
|
|
6
|
-
return new (P || (P = Promise))(function (resolve, reject) {
|
|
7
|
-
function fulfilled(value) { try { step(generator.next(value)); } catch (e) { reject(e); } }
|
|
8
|
-
function rejected(value) { try { step(generator["throw"](value)); } catch (e) { reject(e); } }
|
|
9
|
-
function step(result) { result.done ? resolve(result.value) : adopt(result.value).then(fulfilled, rejected); }
|
|
10
|
-
step((generator = generator.apply(thisArg, _arguments || [])).next());
|
|
11
|
-
});
|
|
12
|
-
};
|
|
13
4
|
Object.defineProperty(exports, "__esModule", { value: true });
|
|
14
5
|
exports.callAsync = exports.lazyLoad = exports.resourceOptsDefaults = exports.getVersion = exports.getEnvNumber = exports.getEnvBoolean = exports.getEnv = void 0;
|
|
15
6
|
const runtime = require("@pulumi/pulumi/runtime");
|
|
@@ -77,26 +68,24 @@ function lazyLoad(exports, props, loadModule) {
|
|
|
77
68
|
}
|
|
78
69
|
exports.lazyLoad = lazyLoad;
|
|
79
70
|
/** @internal */
|
|
80
|
-
function callAsync(tok, props, res, opts) {
|
|
81
|
-
|
|
82
|
-
|
|
83
|
-
|
|
84
|
-
|
|
85
|
-
|
|
86
|
-
|
|
87
|
-
:
|
|
88
|
-
|
|
89
|
-
|
|
90
|
-
|
|
91
|
-
|
|
92
|
-
|
|
93
|
-
|
|
94
|
-
|
|
95
|
-
|
|
96
|
-
|
|
97
|
-
|
|
98
|
-
return value;
|
|
99
|
-
});
|
|
71
|
+
async function callAsync(tok, props, res, opts) {
|
|
72
|
+
const o = runtime.call(tok, props, res);
|
|
73
|
+
const value = await o.promise(true /*withUnknowns*/);
|
|
74
|
+
const isKnown = await o.isKnown;
|
|
75
|
+
const isSecret = await o.isSecret;
|
|
76
|
+
const problem = !isKnown ? "an unknown value"
|
|
77
|
+
: isSecret ? "a secret value"
|
|
78
|
+
: undefined;
|
|
79
|
+
// Ingoring o.resources silently. They are typically non-empty, r.f() calls include r as a dependency.
|
|
80
|
+
if (problem) {
|
|
81
|
+
throw new Error(`Plain resource method "${tok}" incorrectly returned ${problem}. ` +
|
|
82
|
+
"This is an error in the provider, please report this to the provider developer.");
|
|
83
|
+
}
|
|
84
|
+
// Extract a single property if requested.
|
|
85
|
+
if (opts && opts.property) {
|
|
86
|
+
return value[opts.property];
|
|
87
|
+
}
|
|
88
|
+
return value;
|
|
100
89
|
}
|
|
101
90
|
exports.callAsync = callAsync;
|
|
102
91
|
//# sourceMappingURL=utilities.js.map
|
package/utilities.js.map
CHANGED
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"utilities.js","sourceRoot":"","sources":["../utilities.ts"],"names":[],"mappings":";AAAA,sEAAsE;AACtE,iFAAiF
|
|
1
|
+
{"version":3,"file":"utilities.js","sourceRoot":"","sources":["../utilities.ts"],"names":[],"mappings":";AAAA,sEAAsE;AACtE,iFAAiF;;;AAGjF,kDAAkD;AAGlD,SAAgB,MAAM,CAAC,GAAG,IAAc;IACpC,KAAK,MAAM,CAAC,IAAI,IAAI,EAAE;QAClB,MAAM,KAAK,GAAG,OAAO,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC;QAC7B,IAAI,KAAK,EAAE;YACP,OAAO,KAAK,CAAC;SAChB;KACJ;IACD,OAAO,SAAS,CAAC;AACrB,CAAC;AARD,wBAQC;AAED,SAAgB,aAAa,CAAC,GAAG,IAAc;IAC3C,MAAM,CAAC,GAAG,MAAM,CAAC,GAAG,IAAI,CAAC,CAAC;IAC1B,IAAI,CAAC,KAAK,SAAS,EAAE;QACjB,uGAAuG;QACvG,yDAAyD;QACzD,IAAI,CAAC,GAAG,EAAE,GAAG,EAAE,GAAG,EAAE,MAAM,EAAE,MAAM,EAAE,MAAM,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,KAAK,CAAC,CAAC,KAAK,SAAS,EAAE;YAC1E,OAAO,IAAI,CAAC;SACf;QACD,IAAI,CAAC,GAAG,EAAE,GAAG,EAAE,GAAG,EAAE,OAAO,EAAE,OAAO,EAAE,OAAO,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,KAAK,CAAC,CAAC,KAAK,SAAS,EAAE;YAC7E,OAAO,KAAK,CAAC;SAChB;KACJ;IACD,OAAO,SAAS,CAAC;AACrB,CAAC;AAbD,sCAaC;AAED,SAAgB,YAAY,CAAC,GAAG,IAAc;IAC1C,MAAM,CAAC,GAAG,MAAM,CAAC,GAAG,IAAI,CAAC,CAAC;IAC1B,IAAI,CAAC,KAAK,SAAS,EAAE;QACjB,MAAM,CAAC,GAAG,UAAU,CAAC,CAAC,CAAC,CAAC;QACxB,IAAI,CAAC,KAAK,CAAC,CAAC,CAAC,EAAE;YACX,OAAO,CAAC,CAAC;SACZ;KACJ;IACD,OAAO,SAAS,CAAC;AACrB,CAAC;AATD,oCASC;AAED,SAAgB,UAAU;IACtB,IAAI,OAAO,GAAG,OAAO,CAAC,gBAAgB,CAAC,CAAC,OAAO,CAAC;IAChD,6EAA6E;IAC7E,iCAAiC;IACjC,IAAI,OAAO,CAAC,OAAO,CAAC,GAAG,CAAC,KAAK,CAAC,EAAE;QAC5B,OAAO,GAAG,OAAO,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC;KAC9B;IACD,OAAO,OAAO,CAAC;AACnB,CAAC;AARD,gCAQC;AAED,gBAAgB;AAChB,SAAgB,oBAAoB;IAChC,OAAO,EAAE,OAAO,EAAE,UAAU,EAAE,EAAE,CAAC;AACrC,CAAC;AAFD,oDAEC;AAED,gBAAgB;AAChB,SAAgB,QAAQ,CAAC,OAAY,EAAE,KAAe,EAAE,UAAe;IACnE,KAAK,IAAI,QAAQ,IAAI,KAAK,EAAE;QACxB,MAAM,CAAC,cAAc,CAAC,OAAO,EAAE,QAAQ,EAAE;YACrC,UAAU,EAAE,IAAI;YAChB,GAAG,EAAE;gBACD,OAAO,UAAU,EAAE,CAAC,QAAQ,CAAC,CAAC;YAClC,CAAC;SACJ,CAAC,CAAC;KACN;AACL,CAAC;AATD,4BASC;AAED,gBAAgB;AACT,KAAK,UAAU,SAAS,CAC3B,GAAW,EACX,KAAoB,EACpB,GAAqB,EACrB,IAA0B;IAE1B,MAAM,CAAC,GAAQ,OAAO,CAAC,IAAI,CAAI,GAAG,EAAE,KAAK,EAAE,GAAG,CAAC,CAAC;IAChD,MAAM,KAAK,GAAG,MAAM,CAAC,CAAC,OAAO,CAAC,IAAI,CAAC,gBAAgB,CAAC,CAAC;IACrD,MAAM,OAAO,GAAG,MAAM,CAAC,CAAC,OAAO,CAAC;IAChC,MAAM,QAAQ,GAAG,MAAM,CAAC,CAAC,QAAQ,CAAC;IAClC,MAAM,OAAO,GACT,CAAC,OAAO,CAAC,CAAC,CAAC,kBAAkB;QAC7B,CAAC,CAAC,QAAQ,CAAC,CAAC,CAAC,gBAAgB;YAC7B,CAAC,CAAC,SAAS,CAAC;IAChB,sGAAsG;IACtG,IAAI,OAAO,EAAE;QACT,MAAM,IAAI,KAAK,CAAC,0BAA0B,GAAG,0BAA0B,OAAO,IAAI;YAC9E,iFAAiF,CAAC,CAAC;KAC1F;IACD,0CAA0C;IAC1C,IAAI,IAAI,IAAI,IAAI,CAAC,QAAQ,EAAE;QACvB,OAAO,KAAK,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC;KAC/B;IACD,OAAO,KAAK,CAAC;AACjB,CAAC;AAxBD,8BAwBC"}
|