@sst-provider/cloudflare5 5.0.0-alpha1

package/bin/zeroTrustDevicePostureRule.d.ts

@@ -0,0 +1,140 @@
+import * as pulumi from "@pulumi/pulumi";
+import * as inputs from "./types/input";
+import * as outputs from "./types/output";
+export declare class ZeroTrustDevicePostureRule extends pulumi.CustomResource {
+    /**
+     * Get an existing ZeroTrustDevicePostureRule resource's state with the given name, ID, and optional extra
+     * properties used to qualify the lookup.
+     *
+     * @param name The _unique_ name of the resulting resource.
+     * @param id The _unique_ provider ID of the resource to lookup.
+     * @param state Any extra arguments used during the lookup.
+     * @param opts Optional settings to control the behavior of the CustomResource.
+     */
+    static get(name: string, id: pulumi.Input<pulumi.ID>, state?: ZeroTrustDevicePostureRuleState, opts?: pulumi.CustomResourceOptions): ZeroTrustDevicePostureRule;
+    /**
+     * Returns true if the given object is an instance of ZeroTrustDevicePostureRule.  This is designed to work even
+     * when multiple copies of the Pulumi SDK have been loaded into the same process.
+     */
+    static isInstance(obj: any): obj is ZeroTrustDevicePostureRule;
+    /**
+     * The account identifier to target for the resource.
+     */
+    readonly accountId: pulumi.Output<string>;
+    readonly description: pulumi.Output<string | undefined>;
+    /**
+     * Expire posture results after the specified amount of time. Must be in the format `1h` or `30m`. Valid units are `h` and
+     * `m`.
+     */
+    readonly expiration: pulumi.Output<string | undefined>;
+    /**
+     * Required for all rule types except `warp`, `gateway`, and `tanium`.
+     */
+    readonly inputs: pulumi.Output<outputs.ZeroTrustDevicePostureRuleInput[] | undefined>;
+    /**
+     * The conditions that the client must match to run the rule.
+     */
+    readonly matches: pulumi.Output<outputs.ZeroTrustDevicePostureRuleMatch[] | undefined>;
+    /**
+     * Name of the device posture rule.
+     */
+    readonly name: pulumi.Output<string>;
+    /**
+     * Tells the client when to run the device posture check. Must be in the format `1h` or `30m`. Valid units are `h` and `m`.
+     */
+    readonly schedule: pulumi.Output<string | undefined>;
+    /**
+     * The device posture rule type. Available values: `serial_number`, `file`, `application`, `gateway`, `warp`,
+     * `domain_joined`, `os_version`, `disk_encryption`, `firewall`, `client_certificate`, `client_certificate_v2`,
+     * `workspace_one`, `unique_client_id`, `crowdstrike_s2s`, `sentinelone`, `kolide`, `tanium_s2s`, `intune`,
+     * `sentinelone_s2s`, `custom_s2s`.
+     */
+    readonly type: pulumi.Output<string>;
+    readonly zeroTrustDevicePostureRuleId: pulumi.Output<string>;
+    /**
+     * Create a ZeroTrustDevicePostureRule resource with the given unique name, arguments, and options.
+     *
+     * @param name The _unique_ name of the resource.
+     * @param args The arguments to use to populate this resource's properties.
+     * @param opts A bag of options that control this resource's behavior.
+     */
+    constructor(name: string, args: ZeroTrustDevicePostureRuleArgs, opts?: pulumi.CustomResourceOptions);
+}
+/**
+ * Input properties used for looking up and filtering ZeroTrustDevicePostureRule resources.
+ */
+export interface ZeroTrustDevicePostureRuleState {
+    /**
+     * The account identifier to target for the resource.
+     */
+    accountId?: pulumi.Input<string>;
+    description?: pulumi.Input<string>;
+    /**
+     * Expire posture results after the specified amount of time. Must be in the format `1h` or `30m`. Valid units are `h` and
+     * `m`.
+     */
+    expiration?: pulumi.Input<string>;
+    /**
+     * Required for all rule types except `warp`, `gateway`, and `tanium`.
+     */
+    inputs?: pulumi.Input<pulumi.Input<inputs.ZeroTrustDevicePostureRuleInput>[]>;
+    /**
+     * The conditions that the client must match to run the rule.
+     */
+    matches?: pulumi.Input<pulumi.Input<inputs.ZeroTrustDevicePostureRuleMatch>[]>;
+    /**
+     * Name of the device posture rule.
+     */
+    name?: pulumi.Input<string>;
+    /**
+     * Tells the client when to run the device posture check. Must be in the format `1h` or `30m`. Valid units are `h` and `m`.
+     */
+    schedule?: pulumi.Input<string>;
+    /**
+     * The device posture rule type. Available values: `serial_number`, `file`, `application`, `gateway`, `warp`,
+     * `domain_joined`, `os_version`, `disk_encryption`, `firewall`, `client_certificate`, `client_certificate_v2`,
+     * `workspace_one`, `unique_client_id`, `crowdstrike_s2s`, `sentinelone`, `kolide`, `tanium_s2s`, `intune`,
+     * `sentinelone_s2s`, `custom_s2s`.
+     */
+    type?: pulumi.Input<string>;
+    zeroTrustDevicePostureRuleId?: pulumi.Input<string>;
+}
+/**
+ * The set of arguments for constructing a ZeroTrustDevicePostureRule resource.
+ */
+export interface ZeroTrustDevicePostureRuleArgs {
+    /**
+     * The account identifier to target for the resource.
+     */
+    accountId: pulumi.Input<string>;
+    description?: pulumi.Input<string>;
+    /**
+     * Expire posture results after the specified amount of time. Must be in the format `1h` or `30m`. Valid units are `h` and
+     * `m`.
+     */
+    expiration?: pulumi.Input<string>;
+    /**
+     * Required for all rule types except `warp`, `gateway`, and `tanium`.
+     */
+    inputs?: pulumi.Input<pulumi.Input<inputs.ZeroTrustDevicePostureRuleInput>[]>;
+    /**
+     * The conditions that the client must match to run the rule.
+     */
+    matches?: pulumi.Input<pulumi.Input<inputs.ZeroTrustDevicePostureRuleMatch>[]>;
+    /**
+     * Name of the device posture rule.
+     */
+    name?: pulumi.Input<string>;
+    /**
+     * Tells the client when to run the device posture check. Must be in the format `1h` or `30m`. Valid units are `h` and `m`.
+     */
+    schedule?: pulumi.Input<string>;
+    /**
+     * The device posture rule type. Available values: `serial_number`, `file`, `application`, `gateway`, `warp`,
+     * `domain_joined`, `os_version`, `disk_encryption`, `firewall`, `client_certificate`, `client_certificate_v2`,
+     * `workspace_one`, `unique_client_id`, `crowdstrike_s2s`, `sentinelone`, `kolide`, `tanium_s2s`, `intune`,
+     * `sentinelone_s2s`, `custom_s2s`.
+     */
+    type: pulumi.Input<string>;
+    zeroTrustDevicePostureRuleId?: pulumi.Input<string>;
+}

package/bin/zeroTrustDevicePostureRule.js

@@ -0,0 +1,71 @@
+"use strict";
+// *** WARNING: this file was generated by pulumi-language-nodejs. ***
+// *** Do not edit by hand unless you're certain you know what you are doing! ***
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.ZeroTrustDevicePostureRule = void 0;
+const pulumi = require("@pulumi/pulumi");
+const utilities = require("./utilities");
+class ZeroTrustDevicePostureRule extends pulumi.CustomResource {
+    /**
+     * Get an existing ZeroTrustDevicePostureRule resource's state with the given name, ID, and optional extra
+     * properties used to qualify the lookup.
+     *
+     * @param name The _unique_ name of the resulting resource.
+     * @param id The _unique_ provider ID of the resource to lookup.
+     * @param state Any extra arguments used during the lookup.
+     * @param opts Optional settings to control the behavior of the CustomResource.
+     */
+    static get(name, id, state, opts) {
+        return new ZeroTrustDevicePostureRule(name, state, Object.assign(Object.assign({}, opts), { id: id }));
+    }
+    /**
+     * Returns true if the given object is an instance of ZeroTrustDevicePostureRule.  This is designed to work even
+     * when multiple copies of the Pulumi SDK have been loaded into the same process.
+     */
+    static isInstance(obj) {
+        if (obj === undefined || obj === null) {
+            return false;
+        }
+        return obj['__pulumiType'] === ZeroTrustDevicePostureRule.__pulumiType;
+    }
+    constructor(name, argsOrState, opts) {
+        let resourceInputs = {};
+        opts = opts || {};
+        if (opts.id) {
+            const state = argsOrState;
+            resourceInputs["accountId"] = state ? state.accountId : undefined;
+            resourceInputs["description"] = state ? state.description : undefined;
+            resourceInputs["expiration"] = state ? state.expiration : undefined;
+            resourceInputs["inputs"] = state ? state.inputs : undefined;
+            resourceInputs["matches"] = state ? state.matches : undefined;
+            resourceInputs["name"] = state ? state.name : undefined;
+            resourceInputs["schedule"] = state ? state.schedule : undefined;
+            resourceInputs["type"] = state ? state.type : undefined;
+            resourceInputs["zeroTrustDevicePostureRuleId"] = state ? state.zeroTrustDevicePostureRuleId : undefined;
+        }
+        else {
+            const args = argsOrState;
+            if ((!args || args.accountId === undefined) && !opts.urn) {
+                throw new Error("Missing required property 'accountId'");
+            }
+            if ((!args || args.type === undefined) && !opts.urn) {
+                throw new Error("Missing required property 'type'");
+            }
+            resourceInputs["accountId"] = args ? args.accountId : undefined;
+            resourceInputs["description"] = args ? args.description : undefined;
+            resourceInputs["expiration"] = args ? args.expiration : undefined;
+            resourceInputs["inputs"] = args ? args.inputs : undefined;
+            resourceInputs["matches"] = args ? args.matches : undefined;
+            resourceInputs["name"] = args ? args.name : undefined;
+            resourceInputs["schedule"] = args ? args.schedule : undefined;
+            resourceInputs["type"] = args ? args.type : undefined;
+            resourceInputs["zeroTrustDevicePostureRuleId"] = args ? args.zeroTrustDevicePostureRuleId : undefined;
+        }
+        opts = pulumi.mergeOptions(utilities.resourceOptsDefaults(), opts);
+        super(ZeroTrustDevicePostureRule.__pulumiType, name, resourceInputs, opts, false /*dependency*/, utilities.getPackage());
+    }
+}
+exports.ZeroTrustDevicePostureRule = ZeroTrustDevicePostureRule;
+/** @internal */
+ZeroTrustDevicePostureRule.__pulumiType = 'cloudflare:index/zeroTrustDevicePostureRule:ZeroTrustDevicePostureRule';
+//# sourceMappingURL=zeroTrustDevicePostureRule.js.map

package/bin/zeroTrustDevicePostureRule.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"zeroTrustDevicePostureRule.js","sourceRoot":"","sources":["../zeroTrustDevicePostureRule.ts"],"names":[],"mappings":";AAAA,sEAAsE;AACtE,iFAAiF;;;AAEjF,yCAAyC;AAGzC,yCAAyC;AAEzC,MAAa,0BAA2B,SAAQ,MAAM,CAAC,cAAc;IACjE;;;;;;;;OAQG;IACI,MAAM,CAAC,GAAG,CAAC,IAAY,EAAE,EAA2B,EAAE,KAAuC,EAAE,IAAmC;QACrI,OAAO,IAAI,0BAA0B,CAAC,IAAI,EAAO,KAAK,kCAAO,IAAI,KAAE,EAAE,EAAE,EAAE,IAAG,CAAC;IACjF,CAAC;IAKD;;;OAGG;IACI,MAAM,CAAC,UAAU,CAAC,GAAQ;QAC7B,IAAI,GAAG,KAAK,SAAS,IAAI,GAAG,KAAK,IAAI,EAAE;YACnC,OAAO,KAAK,CAAC;SAChB;QACD,OAAO,GAAG,CAAC,cAAc,CAAC,KAAK,0BAA0B,CAAC,YAAY,CAAC;IAC3E,CAAC;IA6CD,YAAY,IAAY,EAAE,WAA8E,EAAE,IAAmC;QACzI,IAAI,cAAc,GAAkB,EAAE,CAAC;QACvC,IAAI,GAAG,IAAI,IAAI,EAAE,CAAC;QAClB,IAAI,IAAI,CAAC,EAAE,EAAE;YACT,MAAM,KAAK,GAAG,WAA0D,CAAC;YACzE,cAAc,CAAC,WAAW,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,SAAS,CAAC,CAAC,CAAC,SAAS,CAAC;YAClE,cAAc,CAAC,aAAa,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,WAAW,CAAC,CAAC,CAAC,SAAS,CAAC;YACtE,cAAc,CAAC,YAAY,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,UAAU,CAAC,CAAC,CAAC,SAAS,CAAC;YACpE,cAAc,CAAC,QAAQ,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC,CAAC,SAAS,CAAC;YAC5D,cAAc,CAAC,SAAS,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,SAAS,CAAC;YAC9D,cAAc,CAAC,MAAM,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC,CAAC,SAAS,CAAC;YACxD,cAAc,CAAC,UAAU,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,QAAQ,CAAC,CAAC,CAAC,SAAS,CAAC;YAChE,cAAc,CAAC,MAAM,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC,CAAC,SAAS,CAAC;YACxD,cAAc,CAAC,8BAA8B,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,4BAA4B,CAAC,CAAC,CAAC,SAAS,CAAC;SAC3G;aAAM;YACH,MAAM,IAAI,GAAG,WAAyD,CAAC;YACvE,IAAI,CAAC,CAAC,IAAI,IAAI,IAAI,CAAC,SAAS,KAAK,SAAS,CAAC,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE;gBACtD,MAAM,IAAI,KAAK,CAAC,uCAAuC,CAAC,CAAC;aAC5D;YACD,IAAI,CAAC,CAAC,IAAI,IAAI,IAAI,CAAC,IAAI,KAAK,SAAS,CAAC,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE;gBACjD,MAAM,IAAI,KAAK,CAAC,kCAAkC,CAAC,CAAC;aACvD;YACD,cAAc,CAAC,WAAW,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,SAAS,CAAC,CAAC,CAAC,SAAS,CAAC;YAChE,cAAc,CAAC,aAAa,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,WAAW,CAAC,CAAC,CAAC,SAAS,CAAC;YACpE,cAAc,CAAC,YAAY,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,UAAU,CAAC,CAAC,CAAC,SAAS,CAAC;YAClE,cAAc,CAAC,QAAQ,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC,CAAC,SAAS,CAAC;YAC1D,cAAc,CAAC,SAAS,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC,CAAC,SAAS,CAAC;YAC5D,cAAc,CAAC,MAAM,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC,CAAC,SAAS,CAAC;YACtD,cAAc,CAAC,UAAU,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC,CAAC,SAAS,CAAC;YAC9D,cAAc,CAAC,MAAM,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC,CAAC,SAAS,CAAC;YACtD,cAAc,CAAC,8BAA8B,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,4BAA4B,CAAC,CAAC,CAAC,SAAS,CAAC;SACzG;QACD,IAAI,GAAG,MAAM,CAAC,YAAY,CAAC,SAAS,CAAC,oBAAoB,EAAE,EAAE,IAAI,CAAC,CAAC;QACnE,KAAK,CAAC,0BAA0B,CAAC,YAAY,EAAE,IAAI,EAAE,cAAc,EAAE,IAAI,EAAE,KAAK,CAAC,cAAc,EAAE,SAAS,CAAC,UAAU,EAAE,CAAC,CAAC;IAC7H,CAAC;;AAzGL,gEA0GC;AA5FG,gBAAgB;AACO,uCAAY,GAAG,wEAAwE,CAAC"}

package/bin/zeroTrustDeviceProfiles.d.ts

@@ -0,0 +1,267 @@
+import * as pulumi from "@pulumi/pulumi";
+export declare class ZeroTrustDeviceProfiles extends pulumi.CustomResource {
+    /**
+     * Get an existing ZeroTrustDeviceProfiles resource's state with the given name, ID, and optional extra
+     * properties used to qualify the lookup.
+     *
+     * @param name The _unique_ name of the resulting resource.
+     * @param id The _unique_ provider ID of the resource to lookup.
+     * @param state Any extra arguments used during the lookup.
+     * @param opts Optional settings to control the behavior of the CustomResource.
+     */
+    static get(name: string, id: pulumi.Input<pulumi.ID>, state?: ZeroTrustDeviceProfilesState, opts?: pulumi.CustomResourceOptions): ZeroTrustDeviceProfiles;
+    /**
+     * Returns true if the given object is an instance of ZeroTrustDeviceProfiles.  This is designed to work even
+     * when multiple copies of the Pulumi SDK have been loaded into the same process.
+     */
+    static isInstance(obj: any): obj is ZeroTrustDeviceProfiles;
+    /**
+     * The account identifier to target for the resource.
+     */
+    readonly accountId: pulumi.Output<string>;
+    /**
+     * Whether to allow mode switch for this policy.
+     */
+    readonly allowModeSwitch: pulumi.Output<boolean | undefined>;
+    /**
+     * Whether to allow updates under this policy.
+     */
+    readonly allowUpdates: pulumi.Output<boolean | undefined>;
+    /**
+     * Whether to allow devices to leave the organization. Defaults to `true`.
+     */
+    readonly allowedToLeave: pulumi.Output<boolean | undefined>;
+    /**
+     * The amount of time in seconds to reconnect after having been disabled.
+     */
+    readonly autoConnect: pulumi.Output<number | undefined>;
+    /**
+     * The captive portal value for this policy. Defaults to `180`.
+     */
+    readonly captivePortal: pulumi.Output<number | undefined>;
+    /**
+     * Whether the policy refers to the default account policy.
+     */
+    readonly default: pulumi.Output<boolean | undefined>;
+    /**
+     * Description of Policy.
+     */
+    readonly description: pulumi.Output<string>;
+    /**
+     * Whether to disable auto fallback for this policy.
+     */
+    readonly disableAutoFallback: pulumi.Output<boolean | undefined>;
+    /**
+     * Whether the policy is enabled (cannot be set for default policies). Defaults to `true`.
+     */
+    readonly enabled: pulumi.Output<boolean | undefined>;
+    /**
+     * Whether to add Microsoft IPs to split tunnel exclusions.
+     */
+    readonly excludeOfficeIps: pulumi.Output<boolean | undefined>;
+    /**
+     * Wirefilter expression to match a device against when evaluating whether this policy should take effect for that device.
+     */
+    readonly match: pulumi.Output<string | undefined>;
+    /**
+     * Name of the policy.
+     */
+    readonly name: pulumi.Output<string>;
+    /**
+     * The precedence of the policy. Lower values indicate higher precedence.
+     */
+    readonly precedence: pulumi.Output<number | undefined>;
+    /**
+     * The service mode. Available values: `1dot1`, `warp`, `proxy`, `posture_only`, `warp_tunnel_only`. Defaults to `warp`.
+     */
+    readonly serviceModeV2Mode: pulumi.Output<string | undefined>;
+    /**
+     * The port to use for the proxy service mode. Required when using `service_mode_v2_mode`.
+     */
+    readonly serviceModeV2Port: pulumi.Output<number | undefined>;
+    /**
+     * The support URL that will be opened when sending feedback.
+     */
+    readonly supportUrl: pulumi.Output<string | undefined>;
+    /**
+     * Enablement of the ZT client switch lock.
+     */
+    readonly switchLocked: pulumi.Output<boolean | undefined>;
+    /**
+     * Determines which tunnel protocol to use. Available values: `""`, `wireguard`, `masque`. Defaults to `wireguard`.
+     */
+    readonly tunnelProtocol: pulumi.Output<string | undefined>;
+    readonly zeroTrustDeviceProfilesId: pulumi.Output<string>;
+    /**
+     * Create a ZeroTrustDeviceProfiles resource with the given unique name, arguments, and options.
+     *
+     * @param name The _unique_ name of the resource.
+     * @param args The arguments to use to populate this resource's properties.
+     * @param opts A bag of options that control this resource's behavior.
+     */
+    constructor(name: string, args: ZeroTrustDeviceProfilesArgs, opts?: pulumi.CustomResourceOptions);
+}
+/**
+ * Input properties used for looking up and filtering ZeroTrustDeviceProfiles resources.
+ */
+export interface ZeroTrustDeviceProfilesState {
+    /**
+     * The account identifier to target for the resource.
+     */
+    accountId?: pulumi.Input<string>;
+    /**
+     * Whether to allow mode switch for this policy.
+     */
+    allowModeSwitch?: pulumi.Input<boolean>;
+    /**
+     * Whether to allow updates under this policy.
+     */
+    allowUpdates?: pulumi.Input<boolean>;
+    /**
+     * Whether to allow devices to leave the organization. Defaults to `true`.
+     */
+    allowedToLeave?: pulumi.Input<boolean>;
+    /**
+     * The amount of time in seconds to reconnect after having been disabled.
+     */
+    autoConnect?: pulumi.Input<number>;
+    /**
+     * The captive portal value for this policy. Defaults to `180`.
+     */
+    captivePortal?: pulumi.Input<number>;
+    /**
+     * Whether the policy refers to the default account policy.
+     */
+    default?: pulumi.Input<boolean>;
+    /**
+     * Description of Policy.
+     */
+    description?: pulumi.Input<string>;
+    /**
+     * Whether to disable auto fallback for this policy.
+     */
+    disableAutoFallback?: pulumi.Input<boolean>;
+    /**
+     * Whether the policy is enabled (cannot be set for default policies). Defaults to `true`.
+     */
+    enabled?: pulumi.Input<boolean>;
+    /**
+     * Whether to add Microsoft IPs to split tunnel exclusions.
+     */
+    excludeOfficeIps?: pulumi.Input<boolean>;
+    /**
+     * Wirefilter expression to match a device against when evaluating whether this policy should take effect for that device.
+     */
+    match?: pulumi.Input<string>;
+    /**
+     * Name of the policy.
+     */
+    name?: pulumi.Input<string>;
+    /**
+     * The precedence of the policy. Lower values indicate higher precedence.
+     */
+    precedence?: pulumi.Input<number>;
+    /**
+     * The service mode. Available values: `1dot1`, `warp`, `proxy`, `posture_only`, `warp_tunnel_only`. Defaults to `warp`.
+     */
+    serviceModeV2Mode?: pulumi.Input<string>;
+    /**
+     * The port to use for the proxy service mode. Required when using `service_mode_v2_mode`.
+     */
+    serviceModeV2Port?: pulumi.Input<number>;
+    /**
+     * The support URL that will be opened when sending feedback.
+     */
+    supportUrl?: pulumi.Input<string>;
+    /**
+     * Enablement of the ZT client switch lock.
+     */
+    switchLocked?: pulumi.Input<boolean>;
+    /**
+     * Determines which tunnel protocol to use. Available values: `""`, `wireguard`, `masque`. Defaults to `wireguard`.
+     */
+    tunnelProtocol?: pulumi.Input<string>;
+    zeroTrustDeviceProfilesId?: pulumi.Input<string>;
+}
+/**
+ * The set of arguments for constructing a ZeroTrustDeviceProfiles resource.
+ */
+export interface ZeroTrustDeviceProfilesArgs {
+    /**
+     * The account identifier to target for the resource.
+     */
+    accountId: pulumi.Input<string>;
+    /**
+     * Whether to allow mode switch for this policy.
+     */
+    allowModeSwitch?: pulumi.Input<boolean>;
+    /**
+     * Whether to allow updates under this policy.
+     */
+    allowUpdates?: pulumi.Input<boolean>;
+    /**
+     * Whether to allow devices to leave the organization. Defaults to `true`.
+     */
+    allowedToLeave?: pulumi.Input<boolean>;
+    /**
+     * The amount of time in seconds to reconnect after having been disabled.
+     */
+    autoConnect?: pulumi.Input<number>;
+    /**
+     * The captive portal value for this policy. Defaults to `180`.
+     */
+    captivePortal?: pulumi.Input<number>;
+    /**
+     * Whether the policy refers to the default account policy.
+     */
+    default?: pulumi.Input<boolean>;
+    /**
+     * Description of Policy.
+     */
+    description: pulumi.Input<string>;
+    /**
+     * Whether to disable auto fallback for this policy.
+     */
+    disableAutoFallback?: pulumi.Input<boolean>;
+    /**
+     * Whether the policy is enabled (cannot be set for default policies). Defaults to `true`.
+     */
+    enabled?: pulumi.Input<boolean>;
+    /**
+     * Whether to add Microsoft IPs to split tunnel exclusions.
+     */
+    excludeOfficeIps?: pulumi.Input<boolean>;
+    /**
+     * Wirefilter expression to match a device against when evaluating whether this policy should take effect for that device.
+     */
+    match?: pulumi.Input<string>;
+    /**
+     * Name of the policy.
+     */
+    name?: pulumi.Input<string>;
+    /**
+     * The precedence of the policy. Lower values indicate higher precedence.
+     */
+    precedence?: pulumi.Input<number>;
+    /**
+     * The service mode. Available values: `1dot1`, `warp`, `proxy`, `posture_only`, `warp_tunnel_only`. Defaults to `warp`.
+     */
+    serviceModeV2Mode?: pulumi.Input<string>;
+    /**
+     * The port to use for the proxy service mode. Required when using `service_mode_v2_mode`.
+     */
+    serviceModeV2Port?: pulumi.Input<number>;
+    /**
+     * The support URL that will be opened when sending feedback.
+     */
+    supportUrl?: pulumi.Input<string>;
+    /**
+     * Enablement of the ZT client switch lock.
+     */
+    switchLocked?: pulumi.Input<boolean>;
+    /**
+     * Determines which tunnel protocol to use. Available values: `""`, `wireguard`, `masque`. Defaults to `wireguard`.
+     */
+    tunnelProtocol?: pulumi.Input<string>;
+    zeroTrustDeviceProfilesId?: pulumi.Input<string>;
+}

package/bin/zeroTrustDeviceProfiles.js

@@ -0,0 +1,93 @@
+"use strict";
+// *** WARNING: this file was generated by pulumi-language-nodejs. ***
+// *** Do not edit by hand unless you're certain you know what you are doing! ***
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.ZeroTrustDeviceProfiles = void 0;
+const pulumi = require("@pulumi/pulumi");
+const utilities = require("./utilities");
+class ZeroTrustDeviceProfiles extends pulumi.CustomResource {
+    /**
+     * Get an existing ZeroTrustDeviceProfiles resource's state with the given name, ID, and optional extra
+     * properties used to qualify the lookup.
+     *
+     * @param name The _unique_ name of the resulting resource.
+     * @param id The _unique_ provider ID of the resource to lookup.
+     * @param state Any extra arguments used during the lookup.
+     * @param opts Optional settings to control the behavior of the CustomResource.
+     */
+    static get(name, id, state, opts) {
+        return new ZeroTrustDeviceProfiles(name, state, Object.assign(Object.assign({}, opts), { id: id }));
+    }
+    /**
+     * Returns true if the given object is an instance of ZeroTrustDeviceProfiles.  This is designed to work even
+     * when multiple copies of the Pulumi SDK have been loaded into the same process.
+     */
+    static isInstance(obj) {
+        if (obj === undefined || obj === null) {
+            return false;
+        }
+        return obj['__pulumiType'] === ZeroTrustDeviceProfiles.__pulumiType;
+    }
+    constructor(name, argsOrState, opts) {
+        let resourceInputs = {};
+        opts = opts || {};
+        if (opts.id) {
+            const state = argsOrState;
+            resourceInputs["accountId"] = state ? state.accountId : undefined;
+            resourceInputs["allowModeSwitch"] = state ? state.allowModeSwitch : undefined;
+            resourceInputs["allowUpdates"] = state ? state.allowUpdates : undefined;
+            resourceInputs["allowedToLeave"] = state ? state.allowedToLeave : undefined;
+            resourceInputs["autoConnect"] = state ? state.autoConnect : undefined;
+            resourceInputs["captivePortal"] = state ? state.captivePortal : undefined;
+            resourceInputs["default"] = state ? state.default : undefined;
+            resourceInputs["description"] = state ? state.description : undefined;
+            resourceInputs["disableAutoFallback"] = state ? state.disableAutoFallback : undefined;
+            resourceInputs["enabled"] = state ? state.enabled : undefined;
+            resourceInputs["excludeOfficeIps"] = state ? state.excludeOfficeIps : undefined;
+            resourceInputs["match"] = state ? state.match : undefined;
+            resourceInputs["name"] = state ? state.name : undefined;
+            resourceInputs["precedence"] = state ? state.precedence : undefined;
+            resourceInputs["serviceModeV2Mode"] = state ? state.serviceModeV2Mode : undefined;
+            resourceInputs["serviceModeV2Port"] = state ? state.serviceModeV2Port : undefined;
+            resourceInputs["supportUrl"] = state ? state.supportUrl : undefined;
+            resourceInputs["switchLocked"] = state ? state.switchLocked : undefined;
+            resourceInputs["tunnelProtocol"] = state ? state.tunnelProtocol : undefined;
+            resourceInputs["zeroTrustDeviceProfilesId"] = state ? state.zeroTrustDeviceProfilesId : undefined;
+        }
+        else {
+            const args = argsOrState;
+            if ((!args || args.accountId === undefined) && !opts.urn) {
+                throw new Error("Missing required property 'accountId'");
+            }
+            if ((!args || args.description === undefined) && !opts.urn) {
+                throw new Error("Missing required property 'description'");
+            }
+            resourceInputs["accountId"] = args ? args.accountId : undefined;
+            resourceInputs["allowModeSwitch"] = args ? args.allowModeSwitch : undefined;
+            resourceInputs["allowUpdates"] = args ? args.allowUpdates : undefined;
+            resourceInputs["allowedToLeave"] = args ? args.allowedToLeave : undefined;
+            resourceInputs["autoConnect"] = args ? args.autoConnect : undefined;
+            resourceInputs["captivePortal"] = args ? args.captivePortal : undefined;
+            resourceInputs["default"] = args ? args.default : undefined;
+            resourceInputs["description"] = args ? args.description : undefined;
+            resourceInputs["disableAutoFallback"] = args ? args.disableAutoFallback : undefined;
+            resourceInputs["enabled"] = args ? args.enabled : undefined;
+            resourceInputs["excludeOfficeIps"] = args ? args.excludeOfficeIps : undefined;
+            resourceInputs["match"] = args ? args.match : undefined;
+            resourceInputs["name"] = args ? args.name : undefined;
+            resourceInputs["precedence"] = args ? args.precedence : undefined;
+            resourceInputs["serviceModeV2Mode"] = args ? args.serviceModeV2Mode : undefined;
+            resourceInputs["serviceModeV2Port"] = args ? args.serviceModeV2Port : undefined;
+            resourceInputs["supportUrl"] = args ? args.supportUrl : undefined;
+            resourceInputs["switchLocked"] = args ? args.switchLocked : undefined;
+            resourceInputs["tunnelProtocol"] = args ? args.tunnelProtocol : undefined;
+            resourceInputs["zeroTrustDeviceProfilesId"] = args ? args.zeroTrustDeviceProfilesId : undefined;
+        }
+        opts = pulumi.mergeOptions(utilities.resourceOptsDefaults(), opts);
+        super(ZeroTrustDeviceProfiles.__pulumiType, name, resourceInputs, opts, false /*dependency*/, utilities.getPackage());
+    }
+}
+exports.ZeroTrustDeviceProfiles = ZeroTrustDeviceProfiles;
+/** @internal */
+ZeroTrustDeviceProfiles.__pulumiType = 'cloudflare:index/zeroTrustDeviceProfiles:ZeroTrustDeviceProfiles';
+//# sourceMappingURL=zeroTrustDeviceProfiles.js.map

package/bin/zeroTrustDeviceProfiles.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"zeroTrustDeviceProfiles.js","sourceRoot":"","sources":["../zeroTrustDeviceProfiles.ts"],"names":[],"mappings":";AAAA,sEAAsE;AACtE,iFAAiF;;;AAEjF,yCAAyC;AACzC,yCAAyC;AAEzC,MAAa,uBAAwB,SAAQ,MAAM,CAAC,cAAc;IAC9D;;;;;;;;OAQG;IACI,MAAM,CAAC,GAAG,CAAC,IAAY,EAAE,EAA2B,EAAE,KAAoC,EAAE,IAAmC;QAClI,OAAO,IAAI,uBAAuB,CAAC,IAAI,EAAO,KAAK,kCAAO,IAAI,KAAE,EAAE,EAAE,EAAE,IAAG,CAAC;IAC9E,CAAC;IAKD;;;OAGG;IACI,MAAM,CAAC,UAAU,CAAC,GAAQ;QAC7B,IAAI,GAAG,KAAK,SAAS,IAAI,GAAG,KAAK,IAAI,EAAE;YACnC,OAAO,KAAK,CAAC;SAChB;QACD,OAAO,GAAG,CAAC,cAAc,CAAC,KAAK,uBAAuB,CAAC,YAAY,CAAC;IACxE,CAAC;IAwFD,YAAY,IAAY,EAAE,WAAwE,EAAE,IAAmC;QACnI,IAAI,cAAc,GAAkB,EAAE,CAAC;QACvC,IAAI,GAAG,IAAI,IAAI,EAAE,CAAC;QAClB,IAAI,IAAI,CAAC,EAAE,EAAE;YACT,MAAM,KAAK,GAAG,WAAuD,CAAC;YACtE,cAAc,CAAC,WAAW,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,SAAS,CAAC,CAAC,CAAC,SAAS,CAAC;YAClE,cAAc,CAAC,iBAAiB,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,eAAe,CAAC,CAAC,CAAC,SAAS,CAAC;YAC9E,cAAc,CAAC,cAAc,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,YAAY,CAAC,CAAC,CAAC,SAAS,CAAC;YACxE,cAAc,CAAC,gBAAgB,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,cAAc,CAAC,CAAC,CAAC,SAAS,CAAC;YAC5E,cAAc,CAAC,aAAa,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,WAAW,CAAC,CAAC,CAAC,SAAS,CAAC;YACtE,cAAc,CAAC,eAAe,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,aAAa,CAAC,CAAC,CAAC,SAAS,CAAC;YAC1E,cAAc,CAAC,SAAS,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,SAAS,CAAC;YAC9D,cAAc,CAAC,aAAa,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,WAAW,CAAC,CAAC,CAAC,SAAS,CAAC;YACtE,cAAc,CAAC,qBAAqB,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,mBAAmB,CAAC,CAAC,CAAC,SAAS,CAAC;YACtF,cAAc,CAAC,SAAS,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,SAAS,CAAC;YAC9D,cAAc,CAAC,kBAAkB,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,gBAAgB,CAAC,CAAC,CAAC,SAAS,CAAC;YAChF,cAAc,CAAC,OAAO,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,KAAK,CAAC,CAAC,CAAC,SAAS,CAAC;YAC1D,cAAc,CAAC,MAAM,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC,CAAC,SAAS,CAAC;YACxD,cAAc,CAAC,YAAY,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,UAAU,CAAC,CAAC,CAAC,SAAS,CAAC;YACpE,cAAc,CAAC,mBAAmB,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,iBAAiB,CAAC,CAAC,CAAC,SAAS,CAAC;YAClF,cAAc,CAAC,mBAAmB,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,iBAAiB,CAAC,CAAC,CAAC,SAAS,CAAC;YAClF,cAAc,CAAC,YAAY,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,UAAU,CAAC,CAAC,CAAC,SAAS,CAAC;YACpE,cAAc,CAAC,cAAc,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,YAAY,CAAC,CAAC,CAAC,SAAS,CAAC;YACxE,cAAc,CAAC,gBAAgB,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,cAAc,CAAC,CAAC,CAAC,SAAS,CAAC;YAC5E,cAAc,CAAC,2BAA2B,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,yBAAyB,CAAC,CAAC,CAAC,SAAS,CAAC;SACrG;aAAM;YACH,MAAM,IAAI,GAAG,WAAsD,CAAC;YACpE,IAAI,CAAC,CAAC,IAAI,IAAI,IAAI,CAAC,SAAS,KAAK,SAAS,CAAC,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE;gBACtD,MAAM,IAAI,KAAK,CAAC,uCAAuC,CAAC,CAAC;aAC5D;YACD,IAAI,CAAC,CAAC,IAAI,IAAI,IAAI,CAAC,WAAW,KAAK,SAAS,CAAC,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE;gBACxD,MAAM,IAAI,KAAK,CAAC,yCAAyC,CAAC,CAAC;aAC9D;YACD,cAAc,CAAC,WAAW,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,SAAS,CAAC,CAAC,CAAC,SAAS,CAAC;YAChE,cAAc,CAAC,iBAAiB,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,eAAe,CAAC,CAAC,CAAC,SAAS,CAAC;YAC5E,cAAc,CAAC,cAAc,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,YAAY,CAAC,CAAC,CAAC,SAAS,CAAC;YACtE,cAAc,CAAC,gBAAgB,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,cAAc,CAAC,CAAC,CAAC,SAAS,CAAC;YAC1E,cAAc,CAAC,aAAa,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,WAAW,CAAC,CAAC,CAAC,SAAS,CAAC;YACpE,cAAc,CAAC,eAAe,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,aAAa,CAAC,CAAC,CAAC,SAAS,CAAC;YACxE,cAAc,CAAC,SAAS,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC,CAAC,SAAS,CAAC;YAC5D,cAAc,CAAC,aAAa,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,WAAW,CAAC,CAAC,CAAC,SAAS,CAAC;YACpE,cAAc,CAAC,qBAAqB,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,mBAAmB,CAAC,CAAC,CAAC,SAAS,CAAC;YACpF,cAAc,CAAC,SAAS,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC,CAAC,SAAS,CAAC;YAC5D,cAAc,CAAC,kBAAkB,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,gBAAgB,CAAC,CAAC,CAAC,SAAS,CAAC;YAC9E,cAAc,CAAC,OAAO,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,CAAC,SAAS,CAAC;YACxD,cAAc,CAAC,MAAM,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC,CAAC,SAAS,CAAC;YACtD,cAAc,CAAC,YAAY,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,UAAU,CAAC,CAAC,CAAC,SAAS,CAAC;YAClE,cAAc,CAAC,mBAAmB,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,iBAAiB,CAAC,CAAC,CAAC,SAAS,CAAC;YAChF,cAAc,CAAC,mBAAmB,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,iBAAiB,CAAC,CAAC,CAAC,SAAS,CAAC;YAChF,cAAc,CAAC,YAAY,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,UAAU,CAAC,CAAC,CAAC,SAAS,CAAC;YAClE,cAAc,CAAC,cAAc,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,YAAY,CAAC,CAAC,CAAC,SAAS,CAAC;YACtE,cAAc,CAAC,gBAAgB,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,cAAc,CAAC,CAAC,CAAC,SAAS,CAAC;YAC1E,cAAc,CAAC,2BAA2B,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,yBAAyB,CAAC,CAAC,CAAC,SAAS,CAAC;SACnG;QACD,IAAI,GAAG,MAAM,CAAC,YAAY,CAAC,SAAS,CAAC,oBAAoB,EAAE,EAAE,IAAI,CAAC,CAAC;QACnE,KAAK,CAAC,uBAAuB,CAAC,YAAY,EAAE,IAAI,EAAE,cAAc,EAAE,IAAI,EAAE,KAAK,CAAC,cAAc,EAAE,SAAS,CAAC,UAAU,EAAE,CAAC,CAAC;IAC1H,CAAC;;AA1KL,0DA2KC;AA7JG,gBAAgB;AACO,oCAAY,GAAG,kEAAkE,CAAC"}