@pulumi/rancher2 10.4.0-alpha.1766506762 → 11.0.0-alpha.1766596160

package/README.md

@@ -3,7 +3,7 @@
 [![NPM version](https://badge.fury.io/js/%40pulumi%2Francher2.svg)](https://www.npmjs.com/package/@pulumi/rancher2)
 [![Python version](https://badge.fury.io/py/pulumi-rancher2.svg)](https://pypi.org/project/pulumi-rancher2)
 [![NuGet version](https://badge.fury.io/nu/pulumi.rancher2.svg)](https://badge.fury.io/nu/pulumi.rancher2)
-[![PkgGoDev](https://pkg.go.dev/badge/github.com/pulumi/pulumi-rancher2/sdk/v9/go)](https://pkg.go.dev/github.com/pulumi/pulumi-rancher2/sdk/v9/go)
+[![PkgGoDev](https://pkg.go.dev/badge/github.com/pulumi/pulumi-rancher2/sdk/v11/go)](https://pkg.go.dev/github.com/pulumi/pulumi-rancher2/sdk/v11/go)
 [![License](https://img.shields.io/npm/l/%40pulumi%2Fpulumi.svg)](https://github.com/pulumi/pulumi-rancher2/blob/master/LICENSE)
 
 # Rancher2 Resource Provider
@@ -35,7 +35,7 @@ To use from Python, install using `pip`:
 
 To use from Go, use `go get` to grab the latest version of the library
 
-    $ go get github.com/pulumi/pulumi-rancher2/sdk/v9
+    $ go get github.com/pulumi/pulumi-rancher2/sdk/v11
 
 ### .NET
 

package/authConfigGenericOidc.d.ts

@@ -0,0 +1,313 @@
+import * as pulumi from "@pulumi/pulumi";
+/**
+ * Provides a Rancher v2 Auth Config Generic OIDC resource. This can be used to configure and enable the Generic OIDC authentication provider for Rancher v2.
+ *
+ * In addition to the built-in local auth, only one external auth config provider can be enabled at a time.
+ *
+ * ## Example Usage
+ *
+ * This example configures Rancher to use GitLab as a Generic OIDC provider.
+ *
+ * ```typescript
+ * import * as pulumi from "@pulumi/pulumi";
+ * import * as rancher2 from "@pulumi/rancher2";
+ *
+ * const genericOidc = new rancher2.AuthConfigGenericOidc("generic_oidc", {
+ *     name: "genericoidc",
+ *     clientId: "<GITLAB_APPLICATION_ID>",
+ *     clientSecret: "<GITLAB_CLIENT_SECRET>",
+ *     issuer: "https://gitlab.com",
+ *     rancherUrl: "https://<RANCHER_URL>/verify-auth",
+ *     scopes: "openid profile email read_api",
+ *     groupsField: "groups",
+ *     groupSearchEnabled: true,
+ * });
+ * ```
+ *
+ * ## Import
+ *
+ * Generic OIDC auth config can be imported using its name.
+ *
+ * ```sh
+ * $ pulumi import rancher2:index/authConfigGenericOidc:AuthConfigGenericOidc generic_oidc genericoidc
+ * ```
+ */
+export declare class AuthConfigGenericOidc extends pulumi.CustomResource {
+    /**
+     * Get an existing AuthConfigGenericOidc resource's state with the given name, ID, and optional extra
+     * properties used to qualify the lookup.
+     *
+     * @param name The _unique_ name of the resulting resource.
+     * @param id The _unique_ provider ID of the resource to lookup.
+     * @param state Any extra arguments used during the lookup.
+     * @param opts Optional settings to control the behavior of the CustomResource.
+     */
+    static get(name: string, id: pulumi.Input<pulumi.ID>, state?: AuthConfigGenericOidcState, opts?: pulumi.CustomResourceOptions): AuthConfigGenericOidc;
+    /**
+     * Returns true if the given object is an instance of AuthConfigGenericOidc.  This is designed to work even
+     * when multiple copies of the Pulumi SDK have been loaded into the same process.
+     */
+    static isInstance(obj: any): obj is AuthConfigGenericOidc;
+    /**
+     * Access mode for auth. `required`, `restricted`, `unrestricted` are supported. Default `unrestricted` (string)
+     */
+    readonly accessMode: pulumi.Output<string | undefined>;
+    /**
+     * Allowed principal IDs for auth. Required if `accessMode` is `required` or `restricted`. Ex: `genericoidc_user://<USER_ID>` `genericoidc_group://<GROUP_ID>` (list)
+     */
+    readonly allowedPrincipalIds: pulumi.Output<string[] | undefined>;
+    /**
+     * Annotations of the resource (map)
+     */
+    readonly annotations: pulumi.Output<{
+        [key: string]: string;
+    }>;
+    /**
+     * The OIDC Auth Endpoint URL.
+     */
+    readonly authEndpoint: pulumi.Output<string>;
+    /**
+     * A PEM-encoded CA certificate for the OIDC provider.
+     */
+    readonly certificate: pulumi.Output<string | undefined>;
+    /**
+     * The OIDC Client ID.
+     */
+    readonly clientId: pulumi.Output<string>;
+    /**
+     * The OIDC Client Secret.
+     */
+    readonly clientSecret: pulumi.Output<string>;
+    /**
+     * Enable the auth config provider. Default `true` (bool)
+     */
+    readonly enabled: pulumi.Output<boolean | undefined>;
+    /**
+     * Enable group search. Default `false` (bool)
+     */
+    readonly groupSearchEnabled: pulumi.Output<boolean | undefined>;
+    /**
+     * The name of the OIDC claim to use for the user's group memberships. Default `groups` (string)
+     */
+    readonly groupsField: pulumi.Output<string>;
+    /**
+     * The OIDC issuer URL.
+     */
+    readonly issuer: pulumi.Output<string>;
+    /**
+     * The OIDC JWKS URL.
+     */
+    readonly jwksUrl: pulumi.Output<string>;
+    /**
+     * Labels of the resource (map)
+     */
+    readonly labels: pulumi.Output<{
+        [key: string]: string;
+    }>;
+    /**
+     * (Computed) The name of the resource (string)
+     */
+    readonly name: pulumi.Output<string>;
+    /**
+     * A PEM-encoded private key for the OIDC provider.
+     */
+    readonly privateKey: pulumi.Output<string | undefined>;
+    /**
+     * The URL of the Rancher server. This is used as the redirect URI for the OIDC provider.
+     */
+    readonly rancherUrl: pulumi.Output<string>;
+    /**
+     * The OIDC scopes to request. Defaults to `openid profile email` (string)
+     */
+    readonly scopes: pulumi.Output<string>;
+    /**
+     * The OIDC Token Endpoint URL.
+     */
+    readonly tokenEndpoint: pulumi.Output<string>;
+    /**
+     * (Computed) The type of the resource (string)
+     */
+    readonly type: pulumi.Output<string>;
+    /**
+     * The OIDC User Info Endpoint URL.
+     */
+    readonly userinfoEndpoint: pulumi.Output<string>;
+    /**
+     * Create a AuthConfigGenericOidc resource with the given unique name, arguments, and options.
+     *
+     * @param name The _unique_ name of the resource.
+     * @param args The arguments to use to populate this resource's properties.
+     * @param opts A bag of options that control this resource's behavior.
+     */
+    constructor(name: string, args: AuthConfigGenericOidcArgs, opts?: pulumi.CustomResourceOptions);
+}
+/**
+ * Input properties used for looking up and filtering AuthConfigGenericOidc resources.
+ */
+export interface AuthConfigGenericOidcState {
+    /**
+     * Access mode for auth. `required`, `restricted`, `unrestricted` are supported. Default `unrestricted` (string)
+     */
+    accessMode?: pulumi.Input<string>;
+    /**
+     * Allowed principal IDs for auth. Required if `accessMode` is `required` or `restricted`. Ex: `genericoidc_user://<USER_ID>` `genericoidc_group://<GROUP_ID>` (list)
+     */
+    allowedPrincipalIds?: pulumi.Input<pulumi.Input<string>[]>;
+    /**
+     * Annotations of the resource (map)
+     */
+    annotations?: pulumi.Input<{
+        [key: string]: pulumi.Input<string>;
+    }>;
+    /**
+     * The OIDC Auth Endpoint URL.
+     */
+    authEndpoint?: pulumi.Input<string>;
+    /**
+     * A PEM-encoded CA certificate for the OIDC provider.
+     */
+    certificate?: pulumi.Input<string>;
+    /**
+     * The OIDC Client ID.
+     */
+    clientId?: pulumi.Input<string>;
+    /**
+     * The OIDC Client Secret.
+     */
+    clientSecret?: pulumi.Input<string>;
+    /**
+     * Enable the auth config provider. Default `true` (bool)
+     */
+    enabled?: pulumi.Input<boolean>;
+    /**
+     * Enable group search. Default `false` (bool)
+     */
+    groupSearchEnabled?: pulumi.Input<boolean>;
+    /**
+     * The name of the OIDC claim to use for the user's group memberships. Default `groups` (string)
+     */
+    groupsField?: pulumi.Input<string>;
+    /**
+     * The OIDC issuer URL.
+     */
+    issuer?: pulumi.Input<string>;
+    /**
+     * The OIDC JWKS URL.
+     */
+    jwksUrl?: pulumi.Input<string>;
+    /**
+     * Labels of the resource (map)
+     */
+    labels?: pulumi.Input<{
+        [key: string]: pulumi.Input<string>;
+    }>;
+    /**
+     * (Computed) The name of the resource (string)
+     */
+    name?: pulumi.Input<string>;
+    /**
+     * A PEM-encoded private key for the OIDC provider.
+     */
+    privateKey?: pulumi.Input<string>;
+    /**
+     * The URL of the Rancher server. This is used as the redirect URI for the OIDC provider.
+     */
+    rancherUrl?: pulumi.Input<string>;
+    /**
+     * The OIDC scopes to request. Defaults to `openid profile email` (string)
+     */
+    scopes?: pulumi.Input<string>;
+    /**
+     * The OIDC Token Endpoint URL.
+     */
+    tokenEndpoint?: pulumi.Input<string>;
+    /**
+     * (Computed) The type of the resource (string)
+     */
+    type?: pulumi.Input<string>;
+    /**
+     * The OIDC User Info Endpoint URL.
+     */
+    userinfoEndpoint?: pulumi.Input<string>;
+}
+/**
+ * The set of arguments for constructing a AuthConfigGenericOidc resource.
+ */
+export interface AuthConfigGenericOidcArgs {
+    /**
+     * Access mode for auth. `required`, `restricted`, `unrestricted` are supported. Default `unrestricted` (string)
+     */
+    accessMode?: pulumi.Input<string>;
+    /**
+     * Allowed principal IDs for auth. Required if `accessMode` is `required` or `restricted`. Ex: `genericoidc_user://<USER_ID>` `genericoidc_group://<GROUP_ID>` (list)
+     */
+    allowedPrincipalIds?: pulumi.Input<pulumi.Input<string>[]>;
+    /**
+     * Annotations of the resource (map)
+     */
+    annotations?: pulumi.Input<{
+        [key: string]: pulumi.Input<string>;
+    }>;
+    /**
+     * The OIDC Auth Endpoint URL.
+     */
+    authEndpoint?: pulumi.Input<string>;
+    /**
+     * A PEM-encoded CA certificate for the OIDC provider.
+     */
+    certificate?: pulumi.Input<string>;
+    /**
+     * The OIDC Client ID.
+     */
+    clientId: pulumi.Input<string>;
+    /**
+     * The OIDC Client Secret.
+     */
+    clientSecret: pulumi.Input<string>;
+    /**
+     * Enable the auth config provider. Default `true` (bool)
+     */
+    enabled?: pulumi.Input<boolean>;
+    /**
+     * Enable group search. Default `false` (bool)
+     */
+    groupSearchEnabled?: pulumi.Input<boolean>;
+    /**
+     * The name of the OIDC claim to use for the user's group memberships. Default `groups` (string)
+     */
+    groupsField?: pulumi.Input<string>;
+    /**
+     * The OIDC issuer URL.
+     */
+    issuer: pulumi.Input<string>;
+    /**
+     * The OIDC JWKS URL.
+     */
+    jwksUrl?: pulumi.Input<string>;
+    /**
+     * Labels of the resource (map)
+     */
+    labels?: pulumi.Input<{
+        [key: string]: pulumi.Input<string>;
+    }>;
+    /**
+     * A PEM-encoded private key for the OIDC provider.
+     */
+    privateKey?: pulumi.Input<string>;
+    /**
+     * The URL of the Rancher server. This is used as the redirect URI for the OIDC provider.
+     */
+    rancherUrl: pulumi.Input<string>;
+    /**
+     * The OIDC scopes to request. Defaults to `openid profile email` (string)
+     */
+    scopes?: pulumi.Input<string>;
+    /**
+     * The OIDC Token Endpoint URL.
+     */
+    tokenEndpoint?: pulumi.Input<string>;
+    /**
+     * The OIDC User Info Endpoint URL.
+     */
+    userinfoEndpoint?: pulumi.Input<string>;
+}

package/authConfigGenericOidc.js

@@ -0,0 +1,134 @@
+"use strict";
+// *** WARNING: this file was generated by pulumi-language-nodejs. ***
+// *** Do not edit by hand unless you're certain you know what you are doing! ***
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.AuthConfigGenericOidc = void 0;
+const pulumi = require("@pulumi/pulumi");
+const utilities = require("./utilities");
+/**
+ * Provides a Rancher v2 Auth Config Generic OIDC resource. This can be used to configure and enable the Generic OIDC authentication provider for Rancher v2.
+ *
+ * In addition to the built-in local auth, only one external auth config provider can be enabled at a time.
+ *
+ * ## Example Usage
+ *
+ * This example configures Rancher to use GitLab as a Generic OIDC provider.
+ *
+ * ```typescript
+ * import * as pulumi from "@pulumi/pulumi";
+ * import * as rancher2 from "@pulumi/rancher2";
+ *
+ * const genericOidc = new rancher2.AuthConfigGenericOidc("generic_oidc", {
+ *     name: "genericoidc",
+ *     clientId: "<GITLAB_APPLICATION_ID>",
+ *     clientSecret: "<GITLAB_CLIENT_SECRET>",
+ *     issuer: "https://gitlab.com",
+ *     rancherUrl: "https://<RANCHER_URL>/verify-auth",
+ *     scopes: "openid profile email read_api",
+ *     groupsField: "groups",
+ *     groupSearchEnabled: true,
+ * });
+ * ```
+ *
+ * ## Import
+ *
+ * Generic OIDC auth config can be imported using its name.
+ *
+ * ```sh
+ * $ pulumi import rancher2:index/authConfigGenericOidc:AuthConfigGenericOidc generic_oidc genericoidc
+ * ```
+ */
+class AuthConfigGenericOidc extends pulumi.CustomResource {
+    /**
+     * Get an existing AuthConfigGenericOidc resource's state with the given name, ID, and optional extra
+     * properties used to qualify the lookup.
+     *
+     * @param name The _unique_ name of the resulting resource.
+     * @param id The _unique_ provider ID of the resource to lookup.
+     * @param state Any extra arguments used during the lookup.
+     * @param opts Optional settings to control the behavior of the CustomResource.
+     */
+    static get(name, id, state, opts) {
+        return new AuthConfigGenericOidc(name, state, { ...opts, id: id });
+    }
+    /**
+     * Returns true if the given object is an instance of AuthConfigGenericOidc.  This is designed to work even
+     * when multiple copies of the Pulumi SDK have been loaded into the same process.
+     */
+    static isInstance(obj) {
+        if (obj === undefined || obj === null) {
+            return false;
+        }
+        return obj['__pulumiType'] === AuthConfigGenericOidc.__pulumiType;
+    }
+    constructor(name, argsOrState, opts) {
+        let resourceInputs = {};
+        opts = opts || {};
+        if (opts.id) {
+            const state = argsOrState;
+            resourceInputs["accessMode"] = state?.accessMode;
+            resourceInputs["allowedPrincipalIds"] = state?.allowedPrincipalIds;
+            resourceInputs["annotations"] = state?.annotations;
+            resourceInputs["authEndpoint"] = state?.authEndpoint;
+            resourceInputs["certificate"] = state?.certificate;
+            resourceInputs["clientId"] = state?.clientId;
+            resourceInputs["clientSecret"] = state?.clientSecret;
+            resourceInputs["enabled"] = state?.enabled;
+            resourceInputs["groupSearchEnabled"] = state?.groupSearchEnabled;
+            resourceInputs["groupsField"] = state?.groupsField;
+            resourceInputs["issuer"] = state?.issuer;
+            resourceInputs["jwksUrl"] = state?.jwksUrl;
+            resourceInputs["labels"] = state?.labels;
+            resourceInputs["name"] = state?.name;
+            resourceInputs["privateKey"] = state?.privateKey;
+            resourceInputs["rancherUrl"] = state?.rancherUrl;
+            resourceInputs["scopes"] = state?.scopes;
+            resourceInputs["tokenEndpoint"] = state?.tokenEndpoint;
+            resourceInputs["type"] = state?.type;
+            resourceInputs["userinfoEndpoint"] = state?.userinfoEndpoint;
+        }
+        else {
+            const args = argsOrState;
+            if (args?.clientId === undefined && !opts.urn) {
+                throw new Error("Missing required property 'clientId'");
+            }
+            if (args?.clientSecret === undefined && !opts.urn) {
+                throw new Error("Missing required property 'clientSecret'");
+            }
+            if (args?.issuer === undefined && !opts.urn) {
+                throw new Error("Missing required property 'issuer'");
+            }
+            if (args?.rancherUrl === undefined && !opts.urn) {
+                throw new Error("Missing required property 'rancherUrl'");
+            }
+            resourceInputs["accessMode"] = args?.accessMode;
+            resourceInputs["allowedPrincipalIds"] = args?.allowedPrincipalIds;
+            resourceInputs["annotations"] = args?.annotations;
+            resourceInputs["authEndpoint"] = args?.authEndpoint;
+            resourceInputs["certificate"] = args?.certificate ? pulumi.secret(args.certificate) : undefined;
+            resourceInputs["clientId"] = args?.clientId ? pulumi.secret(args.clientId) : undefined;
+            resourceInputs["clientSecret"] = args?.clientSecret ? pulumi.secret(args.clientSecret) : undefined;
+            resourceInputs["enabled"] = args?.enabled;
+            resourceInputs["groupSearchEnabled"] = args?.groupSearchEnabled;
+            resourceInputs["groupsField"] = args?.groupsField;
+            resourceInputs["issuer"] = args?.issuer;
+            resourceInputs["jwksUrl"] = args?.jwksUrl;
+            resourceInputs["labels"] = args?.labels;
+            resourceInputs["privateKey"] = args?.privateKey ? pulumi.secret(args.privateKey) : undefined;
+            resourceInputs["rancherUrl"] = args?.rancherUrl;
+            resourceInputs["scopes"] = args?.scopes;
+            resourceInputs["tokenEndpoint"] = args?.tokenEndpoint;
+            resourceInputs["userinfoEndpoint"] = args?.userinfoEndpoint;
+            resourceInputs["name"] = undefined /*out*/;
+            resourceInputs["type"] = undefined /*out*/;
+        }
+        opts = pulumi.mergeOptions(utilities.resourceOptsDefaults(), opts);
+        const secretOpts = { additionalSecretOutputs: ["certificate", "clientId", "clientSecret", "privateKey"] };
+        opts = pulumi.mergeOptions(opts, secretOpts);
+        super(AuthConfigGenericOidc.__pulumiType, name, resourceInputs, opts);
+    }
+}
+exports.AuthConfigGenericOidc = AuthConfigGenericOidc;
+/** @internal */
+AuthConfigGenericOidc.__pulumiType = 'rancher2:index/authConfigGenericOidc:AuthConfigGenericOidc';
+//# sourceMappingURL=authConfigGenericOidc.js.map

package/authConfigGenericOidc.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"authConfigGenericOidc.js","sourceRoot":"","sources":["../authConfigGenericOidc.ts"],"names":[],"mappings":";AAAA,sEAAsE;AACtE,iFAAiF;;;AAEjF,yCAAyC;AACzC,yCAAyC;AAEzC;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GAgCG;AACH,MAAa,qBAAsB,SAAQ,MAAM,CAAC,cAAc;IAC5D;;;;;;;;OAQG;IACI,MAAM,CAAC,GAAG,CAAC,IAAY,EAAE,EAA2B,EAAE,KAAkC,EAAE,IAAmC;QAChI,OAAO,IAAI,qBAAqB,CAAC,IAAI,EAAO,KAAK,EAAE,EAAE,GAAG,IAAI,EAAE,EAAE,EAAE,EAAE,EAAE,CAAC,CAAC;IAC5E,CAAC;IAKD;;;OAGG;IACI,MAAM,CAAC,UAAU,CAAC,GAAQ;QAC7B,IAAI,GAAG,KAAK,SAAS,IAAI,GAAG,KAAK,IAAI,EAAE;YACnC,OAAO,KAAK,CAAC;SAChB;QACD,OAAO,GAAG,CAAC,cAAc,CAAC,KAAK,qBAAqB,CAAC,YAAY,CAAC;IACtE,CAAC;IA2FD,YAAY,IAAY,EAAE,WAAoE,EAAE,IAAmC;QAC/H,IAAI,cAAc,GAAkB,EAAE,CAAC;QACvC,IAAI,GAAG,IAAI,IAAI,EAAE,CAAC;QAClB,IAAI,IAAI,CAAC,EAAE,EAAE;YACT,MAAM,KAAK,GAAG,WAAqD,CAAC;YACpE,cAAc,CAAC,YAAY,CAAC,GAAG,KAAK,EAAE,UAAU,CAAC;YACjD,cAAc,CAAC,qBAAqB,CAAC,GAAG,KAAK,EAAE,mBAAmB,CAAC;YACnE,cAAc,CAAC,aAAa,CAAC,GAAG,KAAK,EAAE,WAAW,CAAC;YACnD,cAAc,CAAC,cAAc,CAAC,GAAG,KAAK,EAAE,YAAY,CAAC;YACrD,cAAc,CAAC,aAAa,CAAC,GAAG,KAAK,EAAE,WAAW,CAAC;YACnD,cAAc,CAAC,UAAU,CAAC,GAAG,KAAK,EAAE,QAAQ,CAAC;YAC7C,cAAc,CAAC,cAAc,CAAC,GAAG,KAAK,EAAE,YAAY,CAAC;YACrD,cAAc,CAAC,SAAS,CAAC,GAAG,KAAK,EAAE,OAAO,CAAC;YAC3C,cAAc,CAAC,oBAAoB,CAAC,GAAG,KAAK,EAAE,kBAAkB,CAAC;YACjE,cAAc,CAAC,aAAa,CAAC,GAAG,KAAK,EAAE,WAAW,CAAC;YACnD,cAAc,CAAC,QAAQ,CAAC,GAAG,KAAK,EAAE,MAAM,CAAC;YACzC,cAAc,CAAC,SAAS,CAAC,GAAG,KAAK,EAAE,OAAO,CAAC;YAC3C,cAAc,CAAC,QAAQ,CAAC,GAAG,KAAK,EAAE,MAAM,CAAC;YACzC,cAAc,CAAC,MAAM,CAAC,GAAG,KAAK,EAAE,IAAI,CAAC;YACrC,cAAc,CAAC,YAAY,CAAC,GAAG,KAAK,EAAE,UAAU,CAAC;YACjD,cAAc,CAAC,YAAY,CAAC,GAAG,KAAK,EAAE,UAAU,CAAC;YACjD,cAAc,CAAC,QAAQ,CAAC,GAAG,KAAK,EAAE,MAAM,CAAC;YACzC,cAAc,CAAC,eAAe,CAAC,GAAG,KAAK,EAAE,aAAa,CAAC;YACvD,cAAc,CAAC,MAAM,CAAC,GAAG,KAAK,EAAE,IAAI,CAAC;YACrC,cAAc,CAAC,kBAAkB,CAAC,GAAG,KAAK,EAAE,gBAAgB,CAAC;SAChE;aAAM;YACH,MAAM,IAAI,GAAG,WAAoD,CAAC;YAClE,IAAI,IAAI,EAAE,QAAQ,KAAK,SAAS,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE;gBAC3C,MAAM,IAAI,KAAK,CAAC,sCAAsC,CAAC,CAAC;aAC3D;YACD,IAAI,IAAI,EAAE,YAAY,KAAK,SAAS,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE;gBAC/C,MAAM,IAAI,KAAK,CAAC,0CAA0C,CAAC,CAAC;aAC/D;YACD,IAAI,IAAI,EAAE,MAAM,KAAK,SAAS,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE;gBACzC,MAAM,IAAI,KAAK,CAAC,oCAAoC,CAAC,CAAC;aACzD;YACD,IAAI,IAAI,EAAE,UAAU,KAAK,SAAS,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE;gBAC7C,MAAM,IAAI,KAAK,CAAC,wCAAwC,CAAC,CAAC;aAC7D;YACD,cAAc,CAAC,YAAY,CAAC,GAAG,IAAI,EAAE,UAAU,CAAC;YAChD,cAAc,CAAC,qBAAqB,CAAC,GAAG,IAAI,EAAE,mBAAmB,CAAC;YAClE,cAAc,CAAC,aAAa,CAAC,GAAG,IAAI,EAAE,WAAW,CAAC;YAClD,cAAc,CAAC,cAAc,CAAC,GAAG,IAAI,EAAE,YAAY,CAAC;YACpD,cAAc,CAAC,aAAa,CAAC,GAAG,IAAI,EAAE,WAAW,CAAC,CAAC,CAAC,MAAM,CAAC,MAAM,CAAC,IAAI,CAAC,WAAW,CAAC,CAAC,CAAC,CAAC,SAAS,CAAC;YAChG,cAAc,CAAC,UAAU,CAAC,GAAG,IAAI,EAAE,QAAQ,CAAC,CAAC,CAAC,MAAM,CAAC,MAAM,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC,CAAC,CAAC,SAAS,CAAC;YACvF,cAAc,CAAC,cAAc,CAAC,GAAG,IAAI,EAAE,YAAY,CAAC,CAAC,CAAC,MAAM,CAAC,MAAM,CAAC,IAAI,CAAC,YAAY,CAAC,CAAC,CAAC,CAAC,SAAS,CAAC;YACnG,cAAc,CAAC,SAAS,CAAC,GAAG,IAAI,EAAE,OAAO,CAAC;YAC1C,cAAc,CAAC,oBAAoB,CAAC,GAAG,IAAI,EAAE,kBAAkB,CAAC;YAChE,cAAc,CAAC,aAAa,CAAC,GAAG,IAAI,EAAE,WAAW,CAAC;YAClD,cAAc,CAAC,QAAQ,CAAC,GAAG,IAAI,EAAE,MAAM,CAAC;YACxC,cAAc,CAAC,SAAS,CAAC,GAAG,IAAI,EAAE,OAAO,CAAC;YAC1C,cAAc,CAAC,QAAQ,CAAC,GAAG,IAAI,EAAE,MAAM,CAAC;YACxC,cAAc,CAAC,YAAY,CAAC,GAAG,IAAI,EAAE,UAAU,CAAC,CAAC,CAAC,MAAM,CAAC,MAAM,CAAC,IAAI,CAAC,UAAU,CAAC,CAAC,CAAC,CAAC,SAAS,CAAC;YAC7F,cAAc,CAAC,YAAY,CAAC,GAAG,IAAI,EAAE,UAAU,CAAC;YAChD,cAAc,CAAC,QAAQ,CAAC,GAAG,IAAI,EAAE,MAAM,CAAC;YACxC,cAAc,CAAC,eAAe,CAAC,GAAG,IAAI,EAAE,aAAa,CAAC;YACtD,cAAc,CAAC,kBAAkB,CAAC,GAAG,IAAI,EAAE,gBAAgB,CAAC;YAC5D,cAAc,CAAC,MAAM,CAAC,GAAG,SAAS,CAAC,OAAO,CAAC;YAC3C,cAAc,CAAC,MAAM,CAAC,GAAG,SAAS,CAAC,OAAO,CAAC;SAC9C;QACD,IAAI,GAAG,MAAM,CAAC,YAAY,CAAC,SAAS,CAAC,oBAAoB,EAAE,EAAE,IAAI,CAAC,CAAC;QACnE,MAAM,UAAU,GAAG,EAAE,uBAAuB,EAAE,CAAC,aAAa,EAAE,UAAU,EAAE,cAAc,EAAE,YAAY,CAAC,EAAE,CAAC;QAC1G,IAAI,GAAG,MAAM,CAAC,YAAY,CAAC,IAAI,EAAE,UAAU,CAAC,CAAC;QAC7C,KAAK,CAAC,qBAAqB,CAAC,YAAY,EAAE,IAAI,EAAE,cAAc,EAAE,IAAI,CAAC,CAAC;IAC1E,CAAC;;AArLL,sDAsLC;AAxKG,gBAAgB;AACO,kCAAY,GAAG,4DAA4D,CAAC"}

package/authConfigGithubapp.d.ts

@@ -0,0 +1,133 @@
+import * as pulumi from "@pulumi/pulumi";
+export declare class AuthConfigGithubapp extends pulumi.CustomResource {
+    /**
+     * Get an existing AuthConfigGithubapp resource's state with the given name, ID, and optional extra
+     * properties used to qualify the lookup.
+     *
+     * @param name The _unique_ name of the resulting resource.
+     * @param id The _unique_ provider ID of the resource to lookup.
+     * @param state Any extra arguments used during the lookup.
+     * @param opts Optional settings to control the behavior of the CustomResource.
+     */
+    static get(name: string, id: pulumi.Input<pulumi.ID>, state?: AuthConfigGithubappState, opts?: pulumi.CustomResourceOptions): AuthConfigGithubapp;
+    /**
+     * Returns true if the given object is an instance of AuthConfigGithubapp.  This is designed to work even
+     * when multiple copies of the Pulumi SDK have been loaded into the same process.
+     */
+    static isInstance(obj: any): obj is AuthConfigGithubapp;
+    readonly accessMode: pulumi.Output<string | undefined>;
+    readonly allowedPrincipalIds: pulumi.Output<string[] | undefined>;
+    /**
+     * Annotations of the resource
+     */
+    readonly annotations: pulumi.Output<{
+        [key: string]: string;
+    }>;
+    /**
+     * The GitHub App ID is provided on the GitHub apps page.
+     */
+    readonly appId: pulumi.Output<string>;
+    readonly clientId: pulumi.Output<string>;
+    readonly clientSecret: pulumi.Output<string>;
+    readonly enabled: pulumi.Output<boolean | undefined>;
+    readonly hostname: pulumi.Output<string | undefined>;
+    /**
+     * If the Installation ID is not provided, all installations for the App will be queried.
+     */
+    readonly installationId: pulumi.Output<string | undefined>;
+    /**
+     * Labels of the resource
+     */
+    readonly labels: pulumi.Output<{
+        [key: string]: string;
+    }>;
+    readonly name: pulumi.Output<string>;
+    /**
+     * PEM format private key for signing requests.
+     */
+    readonly privateKey: pulumi.Output<string>;
+    readonly tls: pulumi.Output<boolean | undefined>;
+    readonly type: pulumi.Output<string>;
+    /**
+     * Create a AuthConfigGithubapp resource with the given unique name, arguments, and options.
+     *
+     * @param name The _unique_ name of the resource.
+     * @param args The arguments to use to populate this resource's properties.
+     * @param opts A bag of options that control this resource's behavior.
+     */
+    constructor(name: string, args: AuthConfigGithubappArgs, opts?: pulumi.CustomResourceOptions);
+}
+/**
+ * Input properties used for looking up and filtering AuthConfigGithubapp resources.
+ */
+export interface AuthConfigGithubappState {
+    accessMode?: pulumi.Input<string>;
+    allowedPrincipalIds?: pulumi.Input<pulumi.Input<string>[]>;
+    /**
+     * Annotations of the resource
+     */
+    annotations?: pulumi.Input<{
+        [key: string]: pulumi.Input<string>;
+    }>;
+    /**
+     * The GitHub App ID is provided on the GitHub apps page.
+     */
+    appId?: pulumi.Input<string>;
+    clientId?: pulumi.Input<string>;
+    clientSecret?: pulumi.Input<string>;
+    enabled?: pulumi.Input<boolean>;
+    hostname?: pulumi.Input<string>;
+    /**
+     * If the Installation ID is not provided, all installations for the App will be queried.
+     */
+    installationId?: pulumi.Input<string>;
+    /**
+     * Labels of the resource
+     */
+    labels?: pulumi.Input<{
+        [key: string]: pulumi.Input<string>;
+    }>;
+    name?: pulumi.Input<string>;
+    /**
+     * PEM format private key for signing requests.
+     */
+    privateKey?: pulumi.Input<string>;
+    tls?: pulumi.Input<boolean>;
+    type?: pulumi.Input<string>;
+}
+/**
+ * The set of arguments for constructing a AuthConfigGithubapp resource.
+ */
+export interface AuthConfigGithubappArgs {
+    accessMode?: pulumi.Input<string>;
+    allowedPrincipalIds?: pulumi.Input<pulumi.Input<string>[]>;
+    /**
+     * Annotations of the resource
+     */
+    annotations?: pulumi.Input<{
+        [key: string]: pulumi.Input<string>;
+    }>;
+    /**
+     * The GitHub App ID is provided on the GitHub apps page.
+     */
+    appId: pulumi.Input<string>;
+    clientId: pulumi.Input<string>;
+    clientSecret: pulumi.Input<string>;
+    enabled?: pulumi.Input<boolean>;
+    hostname?: pulumi.Input<string>;
+    /**
+     * If the Installation ID is not provided, all installations for the App will be queried.
+     */
+    installationId?: pulumi.Input<string>;
+    /**
+     * Labels of the resource
+     */
+    labels?: pulumi.Input<{
+        [key: string]: pulumi.Input<string>;
+    }>;
+    /**
+     * PEM format private key for signing requests.
+     */
+    privateKey: pulumi.Input<string>;
+    tls?: pulumi.Input<boolean>;
+}