@sst-provider/cloudflare5 5.0.0-alpha1

package/bin/zeroTrustAccessPolicy.d.ts

@@ -0,0 +1,197 @@
+import * as pulumi from "@pulumi/pulumi";
+import * as inputs from "./types/input";
+import * as outputs from "./types/output";
+export declare class ZeroTrustAccessPolicy extends pulumi.CustomResource {
+    /**
+     * Get an existing ZeroTrustAccessPolicy resource's state with the given name, ID, and optional extra
+     * properties used to qualify the lookup.
+     *
+     * @param name The _unique_ name of the resulting resource.
+     * @param id The _unique_ provider ID of the resource to lookup.
+     * @param state Any extra arguments used during the lookup.
+     * @param opts Optional settings to control the behavior of the CustomResource.
+     */
+    static get(name: string, id: pulumi.Input<pulumi.ID>, state?: ZeroTrustAccessPolicyState, opts?: pulumi.CustomResourceOptions): ZeroTrustAccessPolicy;
+    /**
+     * Returns true if the given object is an instance of ZeroTrustAccessPolicy.  This is designed to work even
+     * when multiple copies of the Pulumi SDK have been loaded into the same process.
+     */
+    static isInstance(obj: any): obj is ZeroTrustAccessPolicy;
+    /**
+     * The account identifier to target for the resource. Conflicts with `zone_id`.
+     */
+    readonly accountId: pulumi.Output<string | undefined>;
+    /**
+     * The ID of the application the policy is associated with. Required when using `precedence`. **Modifying this attribute
+     * will force creation of a new resource.**
+     */
+    readonly applicationId: pulumi.Output<string | undefined>;
+    readonly approvalGroups: pulumi.Output<outputs.ZeroTrustAccessPolicyApprovalGroup[] | undefined>;
+    readonly approvalRequired: pulumi.Output<boolean | undefined>;
+    /**
+     * The rules that define how users may connect to the targets secured by your application.
+     */
+    readonly connectionRules: pulumi.Output<outputs.ZeroTrustAccessPolicyConnectionRules | undefined>;
+    /**
+     * Defines the action Access will take if the policy matches the user. Available values: `allow`, `deny`, `non_identity`,
+     * `bypass`.
+     */
+    readonly decision: pulumi.Output<string>;
+    readonly excludes: pulumi.Output<outputs.ZeroTrustAccessPolicyExclude[] | undefined>;
+    readonly includes: pulumi.Output<outputs.ZeroTrustAccessPolicyInclude[]>;
+    /**
+     * Require this application to be served in an isolated browser for users matching this policy.
+     */
+    readonly isolationRequired: pulumi.Output<boolean | undefined>;
+    /**
+     * Friendly name of the Access Policy.
+     */
+    readonly name: pulumi.Output<string>;
+    /**
+     * The unique precedence for policies on a single application. Required when using `application_id`.
+     */
+    readonly precedence: pulumi.Output<number | undefined>;
+    /**
+     * The prompt to display to the user for a justification for accessing the resource. Required when using
+     * `purpose_justification_required`.
+     */
+    readonly purposeJustificationPrompt: pulumi.Output<string | undefined>;
+    /**
+     * Whether to prompt the user for a justification for accessing the resource.
+     */
+    readonly purposeJustificationRequired: pulumi.Output<boolean | undefined>;
+    readonly requires: pulumi.Output<outputs.ZeroTrustAccessPolicyRequire[] | undefined>;
+    /**
+     * How often a user will be forced to re-authorise. Must be in the format `48h` or `2h45m`.
+     */
+    readonly sessionDuration: pulumi.Output<string | undefined>;
+    readonly zeroTrustAccessPolicyId: pulumi.Output<string>;
+    /**
+     * The zone identifier to target for the resource. Conflicts with `account_id`.
+     */
+    readonly zoneId: pulumi.Output<string | undefined>;
+    /**
+     * Create a ZeroTrustAccessPolicy resource with the given unique name, arguments, and options.
+     *
+     * @param name The _unique_ name of the resource.
+     * @param args The arguments to use to populate this resource's properties.
+     * @param opts A bag of options that control this resource's behavior.
+     */
+    constructor(name: string, args: ZeroTrustAccessPolicyArgs, opts?: pulumi.CustomResourceOptions);
+}
+/**
+ * Input properties used for looking up and filtering ZeroTrustAccessPolicy resources.
+ */
+export interface ZeroTrustAccessPolicyState {
+    /**
+     * The account identifier to target for the resource. Conflicts with `zone_id`.
+     */
+    accountId?: pulumi.Input<string>;
+    /**
+     * The ID of the application the policy is associated with. Required when using `precedence`. **Modifying this attribute
+     * will force creation of a new resource.**
+     */
+    applicationId?: pulumi.Input<string>;
+    approvalGroups?: pulumi.Input<pulumi.Input<inputs.ZeroTrustAccessPolicyApprovalGroup>[]>;
+    approvalRequired?: pulumi.Input<boolean>;
+    /**
+     * The rules that define how users may connect to the targets secured by your application.
+     */
+    connectionRules?: pulumi.Input<inputs.ZeroTrustAccessPolicyConnectionRules>;
+    /**
+     * Defines the action Access will take if the policy matches the user. Available values: `allow`, `deny`, `non_identity`,
+     * `bypass`.
+     */
+    decision?: pulumi.Input<string>;
+    excludes?: pulumi.Input<pulumi.Input<inputs.ZeroTrustAccessPolicyExclude>[]>;
+    includes?: pulumi.Input<pulumi.Input<inputs.ZeroTrustAccessPolicyInclude>[]>;
+    /**
+     * Require this application to be served in an isolated browser for users matching this policy.
+     */
+    isolationRequired?: pulumi.Input<boolean>;
+    /**
+     * Friendly name of the Access Policy.
+     */
+    name?: pulumi.Input<string>;
+    /**
+     * The unique precedence for policies on a single application. Required when using `application_id`.
+     */
+    precedence?: pulumi.Input<number>;
+    /**
+     * The prompt to display to the user for a justification for accessing the resource. Required when using
+     * `purpose_justification_required`.
+     */
+    purposeJustificationPrompt?: pulumi.Input<string>;
+    /**
+     * Whether to prompt the user for a justification for accessing the resource.
+     */
+    purposeJustificationRequired?: pulumi.Input<boolean>;
+    requires?: pulumi.Input<pulumi.Input<inputs.ZeroTrustAccessPolicyRequire>[]>;
+    /**
+     * How often a user will be forced to re-authorise. Must be in the format `48h` or `2h45m`.
+     */
+    sessionDuration?: pulumi.Input<string>;
+    zeroTrustAccessPolicyId?: pulumi.Input<string>;
+    /**
+     * The zone identifier to target for the resource. Conflicts with `account_id`.
+     */
+    zoneId?: pulumi.Input<string>;
+}
+/**
+ * The set of arguments for constructing a ZeroTrustAccessPolicy resource.
+ */
+export interface ZeroTrustAccessPolicyArgs {
+    /**
+     * The account identifier to target for the resource. Conflicts with `zone_id`.
+     */
+    accountId?: pulumi.Input<string>;
+    /**
+     * The ID of the application the policy is associated with. Required when using `precedence`. **Modifying this attribute
+     * will force creation of a new resource.**
+     */
+    applicationId?: pulumi.Input<string>;
+    approvalGroups?: pulumi.Input<pulumi.Input<inputs.ZeroTrustAccessPolicyApprovalGroup>[]>;
+    approvalRequired?: pulumi.Input<boolean>;
+    /**
+     * The rules that define how users may connect to the targets secured by your application.
+     */
+    connectionRules?: pulumi.Input<inputs.ZeroTrustAccessPolicyConnectionRules>;
+    /**
+     * Defines the action Access will take if the policy matches the user. Available values: `allow`, `deny`, `non_identity`,
+     * `bypass`.
+     */
+    decision: pulumi.Input<string>;
+    excludes?: pulumi.Input<pulumi.Input<inputs.ZeroTrustAccessPolicyExclude>[]>;
+    includes: pulumi.Input<pulumi.Input<inputs.ZeroTrustAccessPolicyInclude>[]>;
+    /**
+     * Require this application to be served in an isolated browser for users matching this policy.
+     */
+    isolationRequired?: pulumi.Input<boolean>;
+    /**
+     * Friendly name of the Access Policy.
+     */
+    name?: pulumi.Input<string>;
+    /**
+     * The unique precedence for policies on a single application. Required when using `application_id`.
+     */
+    precedence?: pulumi.Input<number>;
+    /**
+     * The prompt to display to the user for a justification for accessing the resource. Required when using
+     * `purpose_justification_required`.
+     */
+    purposeJustificationPrompt?: pulumi.Input<string>;
+    /**
+     * Whether to prompt the user for a justification for accessing the resource.
+     */
+    purposeJustificationRequired?: pulumi.Input<boolean>;
+    requires?: pulumi.Input<pulumi.Input<inputs.ZeroTrustAccessPolicyRequire>[]>;
+    /**
+     * How often a user will be forced to re-authorise. Must be in the format `48h` or `2h45m`.
+     */
+    sessionDuration?: pulumi.Input<string>;
+    zeroTrustAccessPolicyId?: pulumi.Input<string>;
+    /**
+     * The zone identifier to target for the resource. Conflicts with `account_id`.
+     */
+    zoneId?: pulumi.Input<string>;
+}

package/bin/zeroTrustAccessPolicy.js

@@ -0,0 +1,87 @@
+"use strict";
+// *** WARNING: this file was generated by pulumi-language-nodejs. ***
+// *** Do not edit by hand unless you're certain you know what you are doing! ***
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.ZeroTrustAccessPolicy = void 0;
+const pulumi = require("@pulumi/pulumi");
+const utilities = require("./utilities");
+class ZeroTrustAccessPolicy extends pulumi.CustomResource {
+    /**
+     * Get an existing ZeroTrustAccessPolicy resource's state with the given name, ID, and optional extra
+     * properties used to qualify the lookup.
+     *
+     * @param name The _unique_ name of the resulting resource.
+     * @param id The _unique_ provider ID of the resource to lookup.
+     * @param state Any extra arguments used during the lookup.
+     * @param opts Optional settings to control the behavior of the CustomResource.
+     */
+    static get(name, id, state, opts) {
+        return new ZeroTrustAccessPolicy(name, state, Object.assign(Object.assign({}, opts), { id: id }));
+    }
+    /**
+     * Returns true if the given object is an instance of ZeroTrustAccessPolicy.  This is designed to work even
+     * when multiple copies of the Pulumi SDK have been loaded into the same process.
+     */
+    static isInstance(obj) {
+        if (obj === undefined || obj === null) {
+            return false;
+        }
+        return obj['__pulumiType'] === ZeroTrustAccessPolicy.__pulumiType;
+    }
+    constructor(name, argsOrState, opts) {
+        let resourceInputs = {};
+        opts = opts || {};
+        if (opts.id) {
+            const state = argsOrState;
+            resourceInputs["accountId"] = state ? state.accountId : undefined;
+            resourceInputs["applicationId"] = state ? state.applicationId : undefined;
+            resourceInputs["approvalGroups"] = state ? state.approvalGroups : undefined;
+            resourceInputs["approvalRequired"] = state ? state.approvalRequired : undefined;
+            resourceInputs["connectionRules"] = state ? state.connectionRules : undefined;
+            resourceInputs["decision"] = state ? state.decision : undefined;
+            resourceInputs["excludes"] = state ? state.excludes : undefined;
+            resourceInputs["includes"] = state ? state.includes : undefined;
+            resourceInputs["isolationRequired"] = state ? state.isolationRequired : undefined;
+            resourceInputs["name"] = state ? state.name : undefined;
+            resourceInputs["precedence"] = state ? state.precedence : undefined;
+            resourceInputs["purposeJustificationPrompt"] = state ? state.purposeJustificationPrompt : undefined;
+            resourceInputs["purposeJustificationRequired"] = state ? state.purposeJustificationRequired : undefined;
+            resourceInputs["requires"] = state ? state.requires : undefined;
+            resourceInputs["sessionDuration"] = state ? state.sessionDuration : undefined;
+            resourceInputs["zeroTrustAccessPolicyId"] = state ? state.zeroTrustAccessPolicyId : undefined;
+            resourceInputs["zoneId"] = state ? state.zoneId : undefined;
+        }
+        else {
+            const args = argsOrState;
+            if ((!args || args.decision === undefined) && !opts.urn) {
+                throw new Error("Missing required property 'decision'");
+            }
+            if ((!args || args.includes === undefined) && !opts.urn) {
+                throw new Error("Missing required property 'includes'");
+            }
+            resourceInputs["accountId"] = args ? args.accountId : undefined;
+            resourceInputs["applicationId"] = args ? args.applicationId : undefined;
+            resourceInputs["approvalGroups"] = args ? args.approvalGroups : undefined;
+            resourceInputs["approvalRequired"] = args ? args.approvalRequired : undefined;
+            resourceInputs["connectionRules"] = args ? args.connectionRules : undefined;
+            resourceInputs["decision"] = args ? args.decision : undefined;
+            resourceInputs["excludes"] = args ? args.excludes : undefined;
+            resourceInputs["includes"] = args ? args.includes : undefined;
+            resourceInputs["isolationRequired"] = args ? args.isolationRequired : undefined;
+            resourceInputs["name"] = args ? args.name : undefined;
+            resourceInputs["precedence"] = args ? args.precedence : undefined;
+            resourceInputs["purposeJustificationPrompt"] = args ? args.purposeJustificationPrompt : undefined;
+            resourceInputs["purposeJustificationRequired"] = args ? args.purposeJustificationRequired : undefined;
+            resourceInputs["requires"] = args ? args.requires : undefined;
+            resourceInputs["sessionDuration"] = args ? args.sessionDuration : undefined;
+            resourceInputs["zeroTrustAccessPolicyId"] = args ? args.zeroTrustAccessPolicyId : undefined;
+            resourceInputs["zoneId"] = args ? args.zoneId : undefined;
+        }
+        opts = pulumi.mergeOptions(utilities.resourceOptsDefaults(), opts);
+        super(ZeroTrustAccessPolicy.__pulumiType, name, resourceInputs, opts, false /*dependency*/, utilities.getPackage());
+    }
+}
+exports.ZeroTrustAccessPolicy = ZeroTrustAccessPolicy;
+/** @internal */
+ZeroTrustAccessPolicy.__pulumiType = 'cloudflare:index/zeroTrustAccessPolicy:ZeroTrustAccessPolicy';
+//# sourceMappingURL=zeroTrustAccessPolicy.js.map

package/bin/zeroTrustAccessPolicy.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"zeroTrustAccessPolicy.js","sourceRoot":"","sources":["../zeroTrustAccessPolicy.ts"],"names":[],"mappings":";AAAA,sEAAsE;AACtE,iFAAiF;;;AAEjF,yCAAyC;AAGzC,yCAAyC;AAEzC,MAAa,qBAAsB,SAAQ,MAAM,CAAC,cAAc;IAC5D;;;;;;;;OAQG;IACI,MAAM,CAAC,GAAG,CAAC,IAAY,EAAE,EAA2B,EAAE,KAAkC,EAAE,IAAmC;QAChI,OAAO,IAAI,qBAAqB,CAAC,IAAI,EAAO,KAAK,kCAAO,IAAI,KAAE,EAAE,EAAE,EAAE,IAAG,CAAC;IAC5E,CAAC;IAKD;;;OAGG;IACI,MAAM,CAAC,UAAU,CAAC,GAAQ;QAC7B,IAAI,GAAG,KAAK,SAAS,IAAI,GAAG,KAAK,IAAI,EAAE;YACnC,OAAO,KAAK,CAAC;SAChB;QACD,OAAO,GAAG,CAAC,cAAc,CAAC,KAAK,qBAAqB,CAAC,YAAY,CAAC;IACtE,CAAC;IAgED,YAAY,IAAY,EAAE,WAAoE,EAAE,IAAmC;QAC/H,IAAI,cAAc,GAAkB,EAAE,CAAC;QACvC,IAAI,GAAG,IAAI,IAAI,EAAE,CAAC;QAClB,IAAI,IAAI,CAAC,EAAE,EAAE;YACT,MAAM,KAAK,GAAG,WAAqD,CAAC;YACpE,cAAc,CAAC,WAAW,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,SAAS,CAAC,CAAC,CAAC,SAAS,CAAC;YAClE,cAAc,CAAC,eAAe,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,aAAa,CAAC,CAAC,CAAC,SAAS,CAAC;YAC1E,cAAc,CAAC,gBAAgB,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,cAAc,CAAC,CAAC,CAAC,SAAS,CAAC;YAC5E,cAAc,CAAC,kBAAkB,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,gBAAgB,CAAC,CAAC,CAAC,SAAS,CAAC;YAChF,cAAc,CAAC,iBAAiB,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,eAAe,CAAC,CAAC,CAAC,SAAS,CAAC;YAC9E,cAAc,CAAC,UAAU,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,QAAQ,CAAC,CAAC,CAAC,SAAS,CAAC;YAChE,cAAc,CAAC,UAAU,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,QAAQ,CAAC,CAAC,CAAC,SAAS,CAAC;YAChE,cAAc,CAAC,UAAU,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,QAAQ,CAAC,CAAC,CAAC,SAAS,CAAC;YAChE,cAAc,CAAC,mBAAmB,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,iBAAiB,CAAC,CAAC,CAAC,SAAS,CAAC;YAClF,cAAc,CAAC,MAAM,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC,CAAC,SAAS,CAAC;YACxD,cAAc,CAAC,YAAY,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,UAAU,CAAC,CAAC,CAAC,SAAS,CAAC;YACpE,cAAc,CAAC,4BAA4B,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,0BAA0B,CAAC,CAAC,CAAC,SAAS,CAAC;YACpG,cAAc,CAAC,8BAA8B,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,4BAA4B,CAAC,CAAC,CAAC,SAAS,CAAC;YACxG,cAAc,CAAC,UAAU,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,QAAQ,CAAC,CAAC,CAAC,SAAS,CAAC;YAChE,cAAc,CAAC,iBAAiB,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,eAAe,CAAC,CAAC,CAAC,SAAS,CAAC;YAC9E,cAAc,CAAC,yBAAyB,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,uBAAuB,CAAC,CAAC,CAAC,SAAS,CAAC;YAC9F,cAAc,CAAC,QAAQ,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC,CAAC,SAAS,CAAC;SAC/D;aAAM;YACH,MAAM,IAAI,GAAG,WAAoD,CAAC;YAClE,IAAI,CAAC,CAAC,IAAI,IAAI,IAAI,CAAC,QAAQ,KAAK,SAAS,CAAC,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE;gBACrD,MAAM,IAAI,KAAK,CAAC,sCAAsC,CAAC,CAAC;aAC3D;YACD,IAAI,CAAC,CAAC,IAAI,IAAI,IAAI,CAAC,QAAQ,KAAK,SAAS,CAAC,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE;gBACrD,MAAM,IAAI,KAAK,CAAC,sCAAsC,CAAC,CAAC;aAC3D;YACD,cAAc,CAAC,WAAW,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,SAAS,CAAC,CAAC,CAAC,SAAS,CAAC;YAChE,cAAc,CAAC,eAAe,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,aAAa,CAAC,CAAC,CAAC,SAAS,CAAC;YACxE,cAAc,CAAC,gBAAgB,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,cAAc,CAAC,CAAC,CAAC,SAAS,CAAC;YAC1E,cAAc,CAAC,kBAAkB,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,gBAAgB,CAAC,CAAC,CAAC,SAAS,CAAC;YAC9E,cAAc,CAAC,iBAAiB,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,eAAe,CAAC,CAAC,CAAC,SAAS,CAAC;YAC5E,cAAc,CAAC,UAAU,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC,CAAC,SAAS,CAAC;YAC9D,cAAc,CAAC,UAAU,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC,CAAC,SAAS,CAAC;YAC9D,cAAc,CAAC,UAAU,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC,CAAC,SAAS,CAAC;YAC9D,cAAc,CAAC,mBAAmB,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,iBAAiB,CAAC,CAAC,CAAC,SAAS,CAAC;YAChF,cAAc,CAAC,MAAM,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC,CAAC,SAAS,CAAC;YACtD,cAAc,CAAC,YAAY,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,UAAU,CAAC,CAAC,CAAC,SAAS,CAAC;YAClE,cAAc,CAAC,4BAA4B,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,0BAA0B,CAAC,CAAC,CAAC,SAAS,CAAC;YAClG,cAAc,CAAC,8BAA8B,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,4BAA4B,CAAC,CAAC,CAAC,SAAS,CAAC;YACtG,cAAc,CAAC,UAAU,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC,CAAC,SAAS,CAAC;YAC9D,cAAc,CAAC,iBAAiB,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,eAAe,CAAC,CAAC,CAAC,SAAS,CAAC;YAC5E,cAAc,CAAC,yBAAyB,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,uBAAuB,CAAC,CAAC,CAAC,SAAS,CAAC;YAC5F,cAAc,CAAC,QAAQ,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC,CAAC,SAAS,CAAC;SAC7D;QACD,IAAI,GAAG,MAAM,CAAC,YAAY,CAAC,SAAS,CAAC,oBAAoB,EAAE,EAAE,IAAI,CAAC,CAAC;QACnE,KAAK,CAAC,qBAAqB,CAAC,YAAY,EAAE,IAAI,EAAE,cAAc,EAAE,IAAI,EAAE,KAAK,CAAC,cAAc,EAAE,SAAS,CAAC,UAAU,EAAE,CAAC,CAAC;IACxH,CAAC;;AA5IL,sDA6IC;AA/HG,gBAAgB;AACO,kCAAY,GAAG,8DAA8D,CAAC"}

package/bin/zeroTrustAccessServiceToken.d.ts

@@ -0,0 +1,114 @@
+import * as pulumi from "@pulumi/pulumi";
+export declare class ZeroTrustAccessServiceToken extends pulumi.CustomResource {
+    /**
+     * Get an existing ZeroTrustAccessServiceToken resource's state with the given name, ID, and optional extra
+     * properties used to qualify the lookup.
+     *
+     * @param name The _unique_ name of the resulting resource.
+     * @param id The _unique_ provider ID of the resource to lookup.
+     * @param state Any extra arguments used during the lookup.
+     * @param opts Optional settings to control the behavior of the CustomResource.
+     */
+    static get(name: string, id: pulumi.Input<pulumi.ID>, state?: ZeroTrustAccessServiceTokenState, opts?: pulumi.CustomResourceOptions): ZeroTrustAccessServiceToken;
+    /**
+     * Returns true if the given object is an instance of ZeroTrustAccessServiceToken.  This is designed to work even
+     * when multiple copies of the Pulumi SDK have been loaded into the same process.
+     */
+    static isInstance(obj: any): obj is ZeroTrustAccessServiceToken;
+    /**
+     * The account identifier to target for the resource. Conflicts with `zone_id`.
+     */
+    readonly accountId: pulumi.Output<string | undefined>;
+    /**
+     * Client ID associated with the Service Token. **Modifying this attribute will force creation of a new resource.**
+     */
+    readonly clientId: pulumi.Output<string>;
+    /**
+     * A secret for interacting with Access protocols. **Modifying this attribute will force creation of a new resource.**
+     */
+    readonly clientSecret: pulumi.Output<string>;
+    /**
+     * Length of time the service token is valid for. Available values: `8760h`, `17520h`, `43800h`, `87600h`, `forever`.
+     */
+    readonly duration: pulumi.Output<string>;
+    /**
+     * Date when the token expires.
+     */
+    readonly expiresAt: pulumi.Output<string>;
+    readonly minDaysForRenewal: pulumi.Output<number | undefined>;
+    /**
+     * Friendly name of the token's intent.
+     */
+    readonly name: pulumi.Output<string>;
+    readonly zeroTrustAccessServiceTokenId: pulumi.Output<string>;
+    /**
+     * The zone identifier to target for the resource. Conflicts with `account_id`.
+     */
+    readonly zoneId: pulumi.Output<string | undefined>;
+    /**
+     * Create a ZeroTrustAccessServiceToken resource with the given unique name, arguments, and options.
+     *
+     * @param name The _unique_ name of the resource.
+     * @param args The arguments to use to populate this resource's properties.
+     * @param opts A bag of options that control this resource's behavior.
+     */
+    constructor(name: string, args?: ZeroTrustAccessServiceTokenArgs, opts?: pulumi.CustomResourceOptions);
+}
+/**
+ * Input properties used for looking up and filtering ZeroTrustAccessServiceToken resources.
+ */
+export interface ZeroTrustAccessServiceTokenState {
+    /**
+     * The account identifier to target for the resource. Conflicts with `zone_id`.
+     */
+    accountId?: pulumi.Input<string>;
+    /**
+     * Client ID associated with the Service Token. **Modifying this attribute will force creation of a new resource.**
+     */
+    clientId?: pulumi.Input<string>;
+    /**
+     * A secret for interacting with Access protocols. **Modifying this attribute will force creation of a new resource.**
+     */
+    clientSecret?: pulumi.Input<string>;
+    /**
+     * Length of time the service token is valid for. Available values: `8760h`, `17520h`, `43800h`, `87600h`, `forever`.
+     */
+    duration?: pulumi.Input<string>;
+    /**
+     * Date when the token expires.
+     */
+    expiresAt?: pulumi.Input<string>;
+    minDaysForRenewal?: pulumi.Input<number>;
+    /**
+     * Friendly name of the token's intent.
+     */
+    name?: pulumi.Input<string>;
+    zeroTrustAccessServiceTokenId?: pulumi.Input<string>;
+    /**
+     * The zone identifier to target for the resource. Conflicts with `account_id`.
+     */
+    zoneId?: pulumi.Input<string>;
+}
+/**
+ * The set of arguments for constructing a ZeroTrustAccessServiceToken resource.
+ */
+export interface ZeroTrustAccessServiceTokenArgs {
+    /**
+     * The account identifier to target for the resource. Conflicts with `zone_id`.
+     */
+    accountId?: pulumi.Input<string>;
+    /**
+     * Length of time the service token is valid for. Available values: `8760h`, `17520h`, `43800h`, `87600h`, `forever`.
+     */
+    duration?: pulumi.Input<string>;
+    minDaysForRenewal?: pulumi.Input<number>;
+    /**
+     * Friendly name of the token's intent.
+     */
+    name?: pulumi.Input<string>;
+    zeroTrustAccessServiceTokenId?: pulumi.Input<string>;
+    /**
+     * The zone identifier to target for the resource. Conflicts with `account_id`.
+     */
+    zoneId?: pulumi.Input<string>;
+}

package/bin/zeroTrustAccessServiceToken.js

@@ -0,0 +1,67 @@
+"use strict";
+// *** WARNING: this file was generated by pulumi-language-nodejs. ***
+// *** Do not edit by hand unless you're certain you know what you are doing! ***
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.ZeroTrustAccessServiceToken = void 0;
+const pulumi = require("@pulumi/pulumi");
+const utilities = require("./utilities");
+class ZeroTrustAccessServiceToken extends pulumi.CustomResource {
+    /**
+     * Get an existing ZeroTrustAccessServiceToken resource's state with the given name, ID, and optional extra
+     * properties used to qualify the lookup.
+     *
+     * @param name The _unique_ name of the resulting resource.
+     * @param id The _unique_ provider ID of the resource to lookup.
+     * @param state Any extra arguments used during the lookup.
+     * @param opts Optional settings to control the behavior of the CustomResource.
+     */
+    static get(name, id, state, opts) {
+        return new ZeroTrustAccessServiceToken(name, state, Object.assign(Object.assign({}, opts), { id: id }));
+    }
+    /**
+     * Returns true if the given object is an instance of ZeroTrustAccessServiceToken.  This is designed to work even
+     * when multiple copies of the Pulumi SDK have been loaded into the same process.
+     */
+    static isInstance(obj) {
+        if (obj === undefined || obj === null) {
+            return false;
+        }
+        return obj['__pulumiType'] === ZeroTrustAccessServiceToken.__pulumiType;
+    }
+    constructor(name, argsOrState, opts) {
+        let resourceInputs = {};
+        opts = opts || {};
+        if (opts.id) {
+            const state = argsOrState;
+            resourceInputs["accountId"] = state ? state.accountId : undefined;
+            resourceInputs["clientId"] = state ? state.clientId : undefined;
+            resourceInputs["clientSecret"] = state ? state.clientSecret : undefined;
+            resourceInputs["duration"] = state ? state.duration : undefined;
+            resourceInputs["expiresAt"] = state ? state.expiresAt : undefined;
+            resourceInputs["minDaysForRenewal"] = state ? state.minDaysForRenewal : undefined;
+            resourceInputs["name"] = state ? state.name : undefined;
+            resourceInputs["zeroTrustAccessServiceTokenId"] = state ? state.zeroTrustAccessServiceTokenId : undefined;
+            resourceInputs["zoneId"] = state ? state.zoneId : undefined;
+        }
+        else {
+            const args = argsOrState;
+            resourceInputs["accountId"] = args ? args.accountId : undefined;
+            resourceInputs["duration"] = args ? args.duration : undefined;
+            resourceInputs["minDaysForRenewal"] = args ? args.minDaysForRenewal : undefined;
+            resourceInputs["name"] = args ? args.name : undefined;
+            resourceInputs["zeroTrustAccessServiceTokenId"] = args ? args.zeroTrustAccessServiceTokenId : undefined;
+            resourceInputs["zoneId"] = args ? args.zoneId : undefined;
+            resourceInputs["clientId"] = undefined /*out*/;
+            resourceInputs["clientSecret"] = undefined /*out*/;
+            resourceInputs["expiresAt"] = undefined /*out*/;
+        }
+        opts = pulumi.mergeOptions(utilities.resourceOptsDefaults(), opts);
+        const secretOpts = { additionalSecretOutputs: ["clientSecret"] };
+        opts = pulumi.mergeOptions(opts, secretOpts);
+        super(ZeroTrustAccessServiceToken.__pulumiType, name, resourceInputs, opts, false /*dependency*/, utilities.getPackage());
+    }
+}
+exports.ZeroTrustAccessServiceToken = ZeroTrustAccessServiceToken;
+/** @internal */
+ZeroTrustAccessServiceToken.__pulumiType = 'cloudflare:index/zeroTrustAccessServiceToken:ZeroTrustAccessServiceToken';
+//# sourceMappingURL=zeroTrustAccessServiceToken.js.map

package/bin/zeroTrustAccessServiceToken.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"zeroTrustAccessServiceToken.js","sourceRoot":"","sources":["../zeroTrustAccessServiceToken.ts"],"names":[],"mappings":";AAAA,sEAAsE;AACtE,iFAAiF;;;AAEjF,yCAAyC;AACzC,yCAAyC;AAEzC,MAAa,2BAA4B,SAAQ,MAAM,CAAC,cAAc;IAClE;;;;;;;;OAQG;IACI,MAAM,CAAC,GAAG,CAAC,IAAY,EAAE,EAA2B,EAAE,KAAwC,EAAE,IAAmC;QACtI,OAAO,IAAI,2BAA2B,CAAC,IAAI,EAAO,KAAK,kCAAO,IAAI,KAAE,EAAE,EAAE,EAAE,IAAG,CAAC;IAClF,CAAC;IAKD;;;OAGG;IACI,MAAM,CAAC,UAAU,CAAC,GAAQ;QAC7B,IAAI,GAAG,KAAK,SAAS,IAAI,GAAG,KAAK,IAAI,EAAE;YACnC,OAAO,KAAK,CAAC;SAChB;QACD,OAAO,GAAG,CAAC,cAAc,CAAC,KAAK,2BAA2B,CAAC,YAAY,CAAC;IAC5E,CAAC;IAyCD,YAAY,IAAY,EAAE,WAAgF,EAAE,IAAmC;QAC3I,IAAI,cAAc,GAAkB,EAAE,CAAC;QACvC,IAAI,GAAG,IAAI,IAAI,EAAE,CAAC;QAClB,IAAI,IAAI,CAAC,EAAE,EAAE;YACT,MAAM,KAAK,GAAG,WAA2D,CAAC;YAC1E,cAAc,CAAC,WAAW,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,SAAS,CAAC,CAAC,CAAC,SAAS,CAAC;YAClE,cAAc,CAAC,UAAU,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,QAAQ,CAAC,CAAC,CAAC,SAAS,CAAC;YAChE,cAAc,CAAC,cAAc,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,YAAY,CAAC,CAAC,CAAC,SAAS,CAAC;YACxE,cAAc,CAAC,UAAU,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,QAAQ,CAAC,CAAC,CAAC,SAAS,CAAC;YAChE,cAAc,CAAC,WAAW,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,SAAS,CAAC,CAAC,CAAC,SAAS,CAAC;YAClE,cAAc,CAAC,mBAAmB,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,iBAAiB,CAAC,CAAC,CAAC,SAAS,CAAC;YAClF,cAAc,CAAC,MAAM,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC,CAAC,SAAS,CAAC;YACxD,cAAc,CAAC,+BAA+B,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,6BAA6B,CAAC,CAAC,CAAC,SAAS,CAAC;YAC1G,cAAc,CAAC,QAAQ,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC,CAAC,SAAS,CAAC;SAC/D;aAAM;YACH,MAAM,IAAI,GAAG,WAA0D,CAAC;YACxE,cAAc,CAAC,WAAW,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,SAAS,CAAC,CAAC,CAAC,SAAS,CAAC;YAChE,cAAc,CAAC,UAAU,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC,CAAC,SAAS,CAAC;YAC9D,cAAc,CAAC,mBAAmB,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,iBAAiB,CAAC,CAAC,CAAC,SAAS,CAAC;YAChF,cAAc,CAAC,MAAM,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC,CAAC,SAAS,CAAC;YACtD,cAAc,CAAC,+BAA+B,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,6BAA6B,CAAC,CAAC,CAAC,SAAS,CAAC;YACxG,cAAc,CAAC,QAAQ,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC,CAAC,SAAS,CAAC;YAC1D,cAAc,CAAC,UAAU,CAAC,GAAG,SAAS,CAAC,OAAO,CAAC;YAC/C,cAAc,CAAC,cAAc,CAAC,GAAG,SAAS,CAAC,OAAO,CAAC;YACnD,cAAc,CAAC,WAAW,CAAC,GAAG,SAAS,CAAC,OAAO,CAAC;SACnD;QACD,IAAI,GAAG,MAAM,CAAC,YAAY,CAAC,SAAS,CAAC,oBAAoB,EAAE,EAAE,IAAI,CAAC,CAAC;QACnE,MAAM,UAAU,GAAG,EAAE,uBAAuB,EAAE,CAAC,cAAc,CAAC,EAAE,CAAC;QACjE,IAAI,GAAG,MAAM,CAAC,YAAY,CAAC,IAAI,EAAE,UAAU,CAAC,CAAC;QAC7C,KAAK,CAAC,2BAA2B,CAAC,YAAY,EAAE,IAAI,EAAE,cAAc,EAAE,IAAI,EAAE,KAAK,CAAC,cAAc,EAAE,SAAS,CAAC,UAAU,EAAE,CAAC,CAAC;IAC9H,CAAC;;AAjGL,kEAkGC;AApFG,gBAAgB;AACO,wCAAY,GAAG,0EAA0E,CAAC"}

package/bin/zeroTrustAccessShortLivedCertificate.d.ts

@@ -0,0 +1,91 @@
+import * as pulumi from "@pulumi/pulumi";
+export declare class ZeroTrustAccessShortLivedCertificate extends pulumi.CustomResource {
+    /**
+     * Get an existing ZeroTrustAccessShortLivedCertificate resource's state with the given name, ID, and optional extra
+     * properties used to qualify the lookup.
+     *
+     * @param name The _unique_ name of the resulting resource.
+     * @param id The _unique_ provider ID of the resource to lookup.
+     * @param state Any extra arguments used during the lookup.
+     * @param opts Optional settings to control the behavior of the CustomResource.
+     */
+    static get(name: string, id: pulumi.Input<pulumi.ID>, state?: ZeroTrustAccessShortLivedCertificateState, opts?: pulumi.CustomResourceOptions): ZeroTrustAccessShortLivedCertificate;
+    /**
+     * Returns true if the given object is an instance of ZeroTrustAccessShortLivedCertificate.  This is designed to work even
+     * when multiple copies of the Pulumi SDK have been loaded into the same process.
+     */
+    static isInstance(obj: any): obj is ZeroTrustAccessShortLivedCertificate;
+    /**
+     * The account identifier to target for the resource. Conflicts with `zone_id`.
+     */
+    readonly accountId: pulumi.Output<string>;
+    /**
+     * The Access Application ID to associate with the CA certificate.
+     */
+    readonly applicationId: pulumi.Output<string>;
+    /**
+     * Application Audience (AUD) Tag of the CA certificate.
+     */
+    readonly aud: pulumi.Output<string>;
+    /**
+     * Cryptographic public key of the generated CA certificate.
+     */
+    readonly publicKey: pulumi.Output<string>;
+    readonly zeroTrustAccessShortLivedCertificateId: pulumi.Output<string>;
+    /**
+     * The zone identifier to target for the resource. Conflicts with `account_id`.
+     */
+    readonly zoneId: pulumi.Output<string>;
+    /**
+     * Create a ZeroTrustAccessShortLivedCertificate resource with the given unique name, arguments, and options.
+     *
+     * @param name The _unique_ name of the resource.
+     * @param args The arguments to use to populate this resource's properties.
+     * @param opts A bag of options that control this resource's behavior.
+     */
+    constructor(name: string, args: ZeroTrustAccessShortLivedCertificateArgs, opts?: pulumi.CustomResourceOptions);
+}
+/**
+ * Input properties used for looking up and filtering ZeroTrustAccessShortLivedCertificate resources.
+ */
+export interface ZeroTrustAccessShortLivedCertificateState {
+    /**
+     * The account identifier to target for the resource. Conflicts with `zone_id`.
+     */
+    accountId?: pulumi.Input<string>;
+    /**
+     * The Access Application ID to associate with the CA certificate.
+     */
+    applicationId?: pulumi.Input<string>;
+    /**
+     * Application Audience (AUD) Tag of the CA certificate.
+     */
+    aud?: pulumi.Input<string>;
+    /**
+     * Cryptographic public key of the generated CA certificate.
+     */
+    publicKey?: pulumi.Input<string>;
+    zeroTrustAccessShortLivedCertificateId?: pulumi.Input<string>;
+    /**
+     * The zone identifier to target for the resource. Conflicts with `account_id`.
+     */
+    zoneId?: pulumi.Input<string>;
+}
+/**
+ * The set of arguments for constructing a ZeroTrustAccessShortLivedCertificate resource.
+ */
+export interface ZeroTrustAccessShortLivedCertificateArgs {
+    /**
+     * The account identifier to target for the resource. Conflicts with `zone_id`.
+     */
+    accountId?: pulumi.Input<string>;
+    /**
+     * The Access Application ID to associate with the CA certificate.
+     */
+    applicationId: pulumi.Input<string>;
+    zeroTrustAccessShortLivedCertificateId?: pulumi.Input<string>;
+    /**
+     * The zone identifier to target for the resource. Conflicts with `account_id`.
+     */
+    zoneId?: pulumi.Input<string>;
+}

package/bin/zeroTrustAccessShortLivedCertificate.js

@@ -0,0 +1,62 @@
+"use strict";
+// *** WARNING: this file was generated by pulumi-language-nodejs. ***
+// *** Do not edit by hand unless you're certain you know what you are doing! ***
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.ZeroTrustAccessShortLivedCertificate = void 0;
+const pulumi = require("@pulumi/pulumi");
+const utilities = require("./utilities");
+class ZeroTrustAccessShortLivedCertificate extends pulumi.CustomResource {
+    /**
+     * Get an existing ZeroTrustAccessShortLivedCertificate resource's state with the given name, ID, and optional extra
+     * properties used to qualify the lookup.
+     *
+     * @param name The _unique_ name of the resulting resource.
+     * @param id The _unique_ provider ID of the resource to lookup.
+     * @param state Any extra arguments used during the lookup.
+     * @param opts Optional settings to control the behavior of the CustomResource.
+     */
+    static get(name, id, state, opts) {
+        return new ZeroTrustAccessShortLivedCertificate(name, state, Object.assign(Object.assign({}, opts), { id: id }));
+    }
+    /**
+     * Returns true if the given object is an instance of ZeroTrustAccessShortLivedCertificate.  This is designed to work even
+     * when multiple copies of the Pulumi SDK have been loaded into the same process.
+     */
+    static isInstance(obj) {
+        if (obj === undefined || obj === null) {
+            return false;
+        }
+        return obj['__pulumiType'] === ZeroTrustAccessShortLivedCertificate.__pulumiType;
+    }
+    constructor(name, argsOrState, opts) {
+        let resourceInputs = {};
+        opts = opts || {};
+        if (opts.id) {
+            const state = argsOrState;
+            resourceInputs["accountId"] = state ? state.accountId : undefined;
+            resourceInputs["applicationId"] = state ? state.applicationId : undefined;
+            resourceInputs["aud"] = state ? state.aud : undefined;
+            resourceInputs["publicKey"] = state ? state.publicKey : undefined;
+            resourceInputs["zeroTrustAccessShortLivedCertificateId"] = state ? state.zeroTrustAccessShortLivedCertificateId : undefined;
+            resourceInputs["zoneId"] = state ? state.zoneId : undefined;
+        }
+        else {
+            const args = argsOrState;
+            if ((!args || args.applicationId === undefined) && !opts.urn) {
+                throw new Error("Missing required property 'applicationId'");
+            }
+            resourceInputs["accountId"] = args ? args.accountId : undefined;
+            resourceInputs["applicationId"] = args ? args.applicationId : undefined;
+            resourceInputs["zeroTrustAccessShortLivedCertificateId"] = args ? args.zeroTrustAccessShortLivedCertificateId : undefined;
+            resourceInputs["zoneId"] = args ? args.zoneId : undefined;
+            resourceInputs["aud"] = undefined /*out*/;
+            resourceInputs["publicKey"] = undefined /*out*/;
+        }
+        opts = pulumi.mergeOptions(utilities.resourceOptsDefaults(), opts);
+        super(ZeroTrustAccessShortLivedCertificate.__pulumiType, name, resourceInputs, opts, false /*dependency*/, utilities.getPackage());
+    }
+}
+exports.ZeroTrustAccessShortLivedCertificate = ZeroTrustAccessShortLivedCertificate;
+/** @internal */
+ZeroTrustAccessShortLivedCertificate.__pulumiType = 'cloudflare:index/zeroTrustAccessShortLivedCertificate:ZeroTrustAccessShortLivedCertificate';
+//# sourceMappingURL=zeroTrustAccessShortLivedCertificate.js.map

package/bin/zeroTrustAccessShortLivedCertificate.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"zeroTrustAccessShortLivedCertificate.js","sourceRoot":"","sources":["../zeroTrustAccessShortLivedCertificate.ts"],"names":[],"mappings":";AAAA,sEAAsE;AACtE,iFAAiF;;;AAEjF,yCAAyC;AACzC,yCAAyC;AAEzC,MAAa,oCAAqC,SAAQ,MAAM,CAAC,cAAc;IAC3E;;;;;;;;OAQG;IACI,MAAM,CAAC,GAAG,CAAC,IAAY,EAAE,EAA2B,EAAE,KAAiD,EAAE,IAAmC;QAC/I,OAAO,IAAI,oCAAoC,CAAC,IAAI,EAAO,KAAK,kCAAO,IAAI,KAAE,EAAE,EAAE,EAAE,IAAG,CAAC;IAC3F,CAAC;IAKD;;;OAGG;IACI,MAAM,CAAC,UAAU,CAAC,GAAQ;QAC7B,IAAI,GAAG,KAAK,SAAS,IAAI,GAAG,KAAK,IAAI,EAAE;YACnC,OAAO,KAAK,CAAC;SAChB;QACD,OAAO,GAAG,CAAC,cAAc,CAAC,KAAK,oCAAoC,CAAC,YAAY,CAAC;IACrF,CAAC;IAgCD,YAAY,IAAY,EAAE,WAAkG,EAAE,IAAmC;QAC7J,IAAI,cAAc,GAAkB,EAAE,CAAC;QACvC,IAAI,GAAG,IAAI,IAAI,EAAE,CAAC;QAClB,IAAI,IAAI,CAAC,EAAE,EAAE;YACT,MAAM,KAAK,GAAG,WAAoE,CAAC;YACnF,cAAc,CAAC,WAAW,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,SAAS,CAAC,CAAC,CAAC,SAAS,CAAC;YAClE,cAAc,CAAC,eAAe,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,aAAa,CAAC,CAAC,CAAC,SAAS,CAAC;YAC1E,cAAc,CAAC,KAAK,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC,SAAS,CAAC;YACtD,cAAc,CAAC,WAAW,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,SAAS,CAAC,CAAC,CAAC,SAAS,CAAC;YAClE,cAAc,CAAC,wCAAwC,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,sCAAsC,CAAC,CAAC,CAAC,SAAS,CAAC;YAC5H,cAAc,CAAC,QAAQ,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC,CAAC,SAAS,CAAC;SAC/D;aAAM;YACH,MAAM,IAAI,GAAG,WAAmE,CAAC;YACjF,IAAI,CAAC,CAAC,IAAI,IAAI,IAAI,CAAC,aAAa,KAAK,SAAS,CAAC,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE;gBAC1D,MAAM,IAAI,KAAK,CAAC,2CAA2C,CAAC,CAAC;aAChE;YACD,cAAc,CAAC,WAAW,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,SAAS,CAAC,CAAC,CAAC,SAAS,CAAC;YAChE,cAAc,CAAC,eAAe,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,aAAa,CAAC,CAAC,CAAC,SAAS,CAAC;YACxE,cAAc,CAAC,wCAAwC,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,sCAAsC,CAAC,CAAC,CAAC,SAAS,CAAC;YAC1H,cAAc,CAAC,QAAQ,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC,CAAC,SAAS,CAAC;YAC1D,cAAc,CAAC,KAAK,CAAC,GAAG,SAAS,CAAC,OAAO,CAAC;YAC1C,cAAc,CAAC,WAAW,CAAC,GAAG,SAAS,CAAC,OAAO,CAAC;SACnD;QACD,IAAI,GAAG,MAAM,CAAC,YAAY,CAAC,SAAS,CAAC,oBAAoB,EAAE,EAAE,IAAI,CAAC,CAAC;QACnE,KAAK,CAAC,oCAAoC,CAAC,YAAY,EAAE,IAAI,EAAE,cAAc,EAAE,IAAI,EAAE,KAAK,CAAC,cAAc,EAAE,SAAS,CAAC,UAAU,EAAE,CAAC,CAAC;IACvI,CAAC;;AAnFL,oFAoFC;AAtEG,gBAAgB;AACO,iDAAY,GAAG,4FAA4F,CAAC"}