@volcengine/pulumi 0.0.30 → 0.0.32

package/vke/permission.d.ts

@@ -0,0 +1,269 @@
+import * as pulumi from "@pulumi/pulumi";
+/**
+ * Provides a resource to manage vke permission
+ * ## Example Usage
+ *
+ * ```typescript
+ * import * as pulumi from "@pulumi/pulumi";
+ * import * as volcengine from "@pulumi/volcengine";
+ * import * as volcengine from "@volcengine/pulumi";
+ *
+ * const fooZones = volcengine.ecs.getZones({});
+ * // create vpc
+ * const fooVpc = new volcengine.vpc.Vpc("fooVpc", {
+ *     vpcName: "acc-test-vpc",
+ *     cidrBlock: "172.16.0.0/16",
+ * });
+ * // create subnet
+ * const fooSubnet = new volcengine.vpc.Subnet("fooSubnet", {
+ *     subnetName: "acc-test-subnet",
+ *     cidrBlock: "172.16.0.0/24",
+ *     zoneId: fooZones.then(fooZones => fooZones.zones?.[0]?.id),
+ *     vpcId: fooVpc.id,
+ * });
+ * // create security group
+ * const fooSecurityGroup = new volcengine.vpc.SecurityGroup("fooSecurityGroup", {
+ *     securityGroupName: "acc-test-security-group",
+ *     vpcId: fooVpc.id,
+ * });
+ * // create vke cluster
+ * const fooCluster = new volcengine.vke.Cluster("fooCluster", {
+ *     description: "created by terraform",
+ *     projectName: "default",
+ *     deleteProtectionEnabled: false,
+ *     clusterConfig: {
+ *         subnetIds: [fooSubnet.id],
+ *         apiServerPublicAccessEnabled: true,
+ *         apiServerPublicAccessConfig: {
+ *             publicAccessNetworkConfig: {
+ *                 billingType: "PostPaidByBandwidth",
+ *                 bandwidth: 1,
+ *             },
+ *         },
+ *         resourcePublicAccessDefaultEnabled: true,
+ *     },
+ *     podsConfig: {
+ *         podNetworkMode: "VpcCniShared",
+ *         vpcCniConfig: {
+ *             subnetIds: [fooSubnet.id],
+ *         },
+ *     },
+ *     servicesConfig: {
+ *         serviceCidrsv4s: ["172.30.0.0/18"],
+ *     },
+ *     tags: [{
+ *         key: "tf-k1",
+ *         value: "tf-v1",
+ *     }],
+ * });
+ * const fooPermission = new volcengine.vke.Permission("fooPermission", {
+ *     roleName: "vke:visitor",
+ *     granteeId: 385500000,
+ *     granteeType: "User",
+ *     roleDomain: "cluster",
+ *     clusterId: fooCluster.id,
+ * });
+ * ```
+ *
+ * ## Import
+ *
+ * VkePermission can be imported using the id, e.g.
+ *
+ * ```sh
+ * $ pulumi import volcengine:vke/permission:Permission default resource_id
+ * ```
+ */
+export declare class Permission extends pulumi.CustomResource {
+    /**
+     * Get an existing Permission resource's state with the given name, ID, and optional extra
+     * properties used to qualify the lookup.
+     *
+     * @param name The _unique_ name of the resulting resource.
+     * @param id The _unique_ provider ID of the resource to lookup.
+     * @param state Any extra arguments used during the lookup.
+     * @param opts Optional settings to control the behavior of the CustomResource.
+     */
+    static get(name: string, id: pulumi.Input<pulumi.ID>, state?: PermissionState, opts?: pulumi.CustomResourceOptions): Permission;
+    /**
+     * Returns true if the given object is an instance of Permission.  This is designed to work even
+     * when multiple copies of the Pulumi SDK have been loaded into the same process.
+     */
+    static isInstance(obj: any): obj is Permission;
+    /**
+     * The authorized time of the RBAC Permission.
+     */
+    readonly authorizedAt: pulumi.Output<string>;
+    /**
+     * The ID of the Authorizer.
+     */
+    readonly authorizerId: pulumi.Output<number>;
+    /**
+     * The name of the Authorizer.
+     */
+    readonly authorizerName: pulumi.Output<string>;
+    /**
+     * The type of the Authorizer.
+     */
+    readonly authorizerType: pulumi.Output<string>;
+    /**
+     * The cluster ID that needs to be authorized to IAM users or roles.
+     */
+    readonly clusterId: pulumi.Output<string>;
+    /**
+     * The granted time of the RBAC Permission.
+     */
+    readonly grantedAt: pulumi.Output<string>;
+    /**
+     * The ID of the grantee.
+     */
+    readonly granteeId: pulumi.Output<number>;
+    /**
+     * The type of the grantee. Valid values: `User`.
+     */
+    readonly granteeType: pulumi.Output<string>;
+    /**
+     * Whether the RBAC role is a custom role. Default is false.
+     */
+    readonly isCustomRole: pulumi.Output<boolean>;
+    /**
+     * The name of the Kube Role Binding.
+     */
+    readonly kubeRoleBindingName: pulumi.Output<string>;
+    /**
+     * The message of the RBAC Permission.
+     */
+    readonly message: pulumi.Output<string>;
+    /**
+     * The namespace that needs to be authorized to IAM users or roles.
+     */
+    readonly namespace: pulumi.Output<string>;
+    /**
+     * The revoked time of the RBAC Permission.
+     */
+    readonly revokedAt: pulumi.Output<string>;
+    /**
+     * The types of permissions granted to IAM users or roles. Valid values: `namespace`, `cluster`, `allClusters`.
+     * When importing resources, this attribute will not be imported. If this attribute is set, please use lifecycle and ignoreChanges ignore changes in fields.
+     */
+    readonly roleDomain: pulumi.Output<string>;
+    /**
+     * The name of RBAC role. The following RBAC permissions can be granted: custom role name, system preset role names.
+     */
+    readonly roleName: pulumi.Output<string>;
+    /**
+     * The status of the RBAC Permission.
+     */
+    readonly status: pulumi.Output<string>;
+    /**
+     * Create a Permission resource with the given unique name, arguments, and options.
+     *
+     * @param name The _unique_ name of the resource.
+     * @param args The arguments to use to populate this resource's properties.
+     * @param opts A bag of options that control this resource's behavior.
+     */
+    constructor(name: string, args: PermissionArgs, opts?: pulumi.CustomResourceOptions);
+}
+/**
+ * Input properties used for looking up and filtering Permission resources.
+ */
+export interface PermissionState {
+    /**
+     * The authorized time of the RBAC Permission.
+     */
+    authorizedAt?: pulumi.Input<string>;
+    /**
+     * The ID of the Authorizer.
+     */
+    authorizerId?: pulumi.Input<number>;
+    /**
+     * The name of the Authorizer.
+     */
+    authorizerName?: pulumi.Input<string>;
+    /**
+     * The type of the Authorizer.
+     */
+    authorizerType?: pulumi.Input<string>;
+    /**
+     * The cluster ID that needs to be authorized to IAM users or roles.
+     */
+    clusterId?: pulumi.Input<string>;
+    /**
+     * The granted time of the RBAC Permission.
+     */
+    grantedAt?: pulumi.Input<string>;
+    /**
+     * The ID of the grantee.
+     */
+    granteeId?: pulumi.Input<number>;
+    /**
+     * The type of the grantee. Valid values: `User`.
+     */
+    granteeType?: pulumi.Input<string>;
+    /**
+     * Whether the RBAC role is a custom role. Default is false.
+     */
+    isCustomRole?: pulumi.Input<boolean>;
+    /**
+     * The name of the Kube Role Binding.
+     */
+    kubeRoleBindingName?: pulumi.Input<string>;
+    /**
+     * The message of the RBAC Permission.
+     */
+    message?: pulumi.Input<string>;
+    /**
+     * The namespace that needs to be authorized to IAM users or roles.
+     */
+    namespace?: pulumi.Input<string>;
+    /**
+     * The revoked time of the RBAC Permission.
+     */
+    revokedAt?: pulumi.Input<string>;
+    /**
+     * The types of permissions granted to IAM users or roles. Valid values: `namespace`, `cluster`, `allClusters`.
+     * When importing resources, this attribute will not be imported. If this attribute is set, please use lifecycle and ignoreChanges ignore changes in fields.
+     */
+    roleDomain?: pulumi.Input<string>;
+    /**
+     * The name of RBAC role. The following RBAC permissions can be granted: custom role name, system preset role names.
+     */
+    roleName?: pulumi.Input<string>;
+    /**
+     * The status of the RBAC Permission.
+     */
+    status?: pulumi.Input<string>;
+}
+/**
+ * The set of arguments for constructing a Permission resource.
+ */
+export interface PermissionArgs {
+    /**
+     * The cluster ID that needs to be authorized to IAM users or roles.
+     */
+    clusterId?: pulumi.Input<string>;
+    /**
+     * The ID of the grantee.
+     */
+    granteeId: pulumi.Input<number>;
+    /**
+     * The type of the grantee. Valid values: `User`.
+     */
+    granteeType: pulumi.Input<string>;
+    /**
+     * Whether the RBAC role is a custom role. Default is false.
+     */
+    isCustomRole?: pulumi.Input<boolean>;
+    /**
+     * The namespace that needs to be authorized to IAM users or roles.
+     */
+    namespace?: pulumi.Input<string>;
+    /**
+     * The types of permissions granted to IAM users or roles. Valid values: `namespace`, `cluster`, `allClusters`.
+     * When importing resources, this attribute will not be imported. If this attribute is set, please use lifecycle and ignoreChanges ignore changes in fields.
+     */
+    roleDomain: pulumi.Input<string>;
+    /**
+     * The name of RBAC role. The following RBAC permissions can be granted: custom role name, system preset role names.
+     */
+    roleName: pulumi.Input<string>;
+}

package/vke/permission.js

@@ -0,0 +1,165 @@
+"use strict";
+// *** WARNING: this file was generated by the Pulumi Terraform Bridge (tfgen) Tool. ***
+// *** Do not edit by hand unless you're certain you know what you are doing! ***
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.Permission = void 0;
+const pulumi = require("@pulumi/pulumi");
+const utilities = require("../utilities");
+/**
+ * Provides a resource to manage vke permission
+ * ## Example Usage
+ *
+ * ```typescript
+ * import * as pulumi from "@pulumi/pulumi";
+ * import * as volcengine from "@pulumi/volcengine";
+ * import * as volcengine from "@volcengine/pulumi";
+ *
+ * const fooZones = volcengine.ecs.getZones({});
+ * // create vpc
+ * const fooVpc = new volcengine.vpc.Vpc("fooVpc", {
+ *     vpcName: "acc-test-vpc",
+ *     cidrBlock: "172.16.0.0/16",
+ * });
+ * // create subnet
+ * const fooSubnet = new volcengine.vpc.Subnet("fooSubnet", {
+ *     subnetName: "acc-test-subnet",
+ *     cidrBlock: "172.16.0.0/24",
+ *     zoneId: fooZones.then(fooZones => fooZones.zones?.[0]?.id),
+ *     vpcId: fooVpc.id,
+ * });
+ * // create security group
+ * const fooSecurityGroup = new volcengine.vpc.SecurityGroup("fooSecurityGroup", {
+ *     securityGroupName: "acc-test-security-group",
+ *     vpcId: fooVpc.id,
+ * });
+ * // create vke cluster
+ * const fooCluster = new volcengine.vke.Cluster("fooCluster", {
+ *     description: "created by terraform",
+ *     projectName: "default",
+ *     deleteProtectionEnabled: false,
+ *     clusterConfig: {
+ *         subnetIds: [fooSubnet.id],
+ *         apiServerPublicAccessEnabled: true,
+ *         apiServerPublicAccessConfig: {
+ *             publicAccessNetworkConfig: {
+ *                 billingType: "PostPaidByBandwidth",
+ *                 bandwidth: 1,
+ *             },
+ *         },
+ *         resourcePublicAccessDefaultEnabled: true,
+ *     },
+ *     podsConfig: {
+ *         podNetworkMode: "VpcCniShared",
+ *         vpcCniConfig: {
+ *             subnetIds: [fooSubnet.id],
+ *         },
+ *     },
+ *     servicesConfig: {
+ *         serviceCidrsv4s: ["172.30.0.0/18"],
+ *     },
+ *     tags: [{
+ *         key: "tf-k1",
+ *         value: "tf-v1",
+ *     }],
+ * });
+ * const fooPermission = new volcengine.vke.Permission("fooPermission", {
+ *     roleName: "vke:visitor",
+ *     granteeId: 385500000,
+ *     granteeType: "User",
+ *     roleDomain: "cluster",
+ *     clusterId: fooCluster.id,
+ * });
+ * ```
+ *
+ * ## Import
+ *
+ * VkePermission can be imported using the id, e.g.
+ *
+ * ```sh
+ * $ pulumi import volcengine:vke/permission:Permission default resource_id
+ * ```
+ */
+class Permission extends pulumi.CustomResource {
+    /**
+     * Get an existing Permission resource's state with the given name, ID, and optional extra
+     * properties used to qualify the lookup.
+     *
+     * @param name The _unique_ name of the resulting resource.
+     * @param id The _unique_ provider ID of the resource to lookup.
+     * @param state Any extra arguments used during the lookup.
+     * @param opts Optional settings to control the behavior of the CustomResource.
+     */
+    static get(name, id, state, opts) {
+        return new Permission(name, state, Object.assign(Object.assign({}, opts), { id: id }));
+    }
+    /**
+     * Returns true if the given object is an instance of Permission.  This is designed to work even
+     * when multiple copies of the Pulumi SDK have been loaded into the same process.
+     */
+    static isInstance(obj) {
+        if (obj === undefined || obj === null) {
+            return false;
+        }
+        return obj['__pulumiType'] === Permission.__pulumiType;
+    }
+    constructor(name, argsOrState, opts) {
+        let resourceInputs = {};
+        opts = opts || {};
+        if (opts.id) {
+            const state = argsOrState;
+            resourceInputs["authorizedAt"] = state ? state.authorizedAt : undefined;
+            resourceInputs["authorizerId"] = state ? state.authorizerId : undefined;
+            resourceInputs["authorizerName"] = state ? state.authorizerName : undefined;
+            resourceInputs["authorizerType"] = state ? state.authorizerType : undefined;
+            resourceInputs["clusterId"] = state ? state.clusterId : undefined;
+            resourceInputs["grantedAt"] = state ? state.grantedAt : undefined;
+            resourceInputs["granteeId"] = state ? state.granteeId : undefined;
+            resourceInputs["granteeType"] = state ? state.granteeType : undefined;
+            resourceInputs["isCustomRole"] = state ? state.isCustomRole : undefined;
+            resourceInputs["kubeRoleBindingName"] = state ? state.kubeRoleBindingName : undefined;
+            resourceInputs["message"] = state ? state.message : undefined;
+            resourceInputs["namespace"] = state ? state.namespace : undefined;
+            resourceInputs["revokedAt"] = state ? state.revokedAt : undefined;
+            resourceInputs["roleDomain"] = state ? state.roleDomain : undefined;
+            resourceInputs["roleName"] = state ? state.roleName : undefined;
+            resourceInputs["status"] = state ? state.status : undefined;
+        }
+        else {
+            const args = argsOrState;
+            if ((!args || args.granteeId === undefined) && !opts.urn) {
+                throw new Error("Missing required property 'granteeId'");
+            }
+            if ((!args || args.granteeType === undefined) && !opts.urn) {
+                throw new Error("Missing required property 'granteeType'");
+            }
+            if ((!args || args.roleDomain === undefined) && !opts.urn) {
+                throw new Error("Missing required property 'roleDomain'");
+            }
+            if ((!args || args.roleName === undefined) && !opts.urn) {
+                throw new Error("Missing required property 'roleName'");
+            }
+            resourceInputs["clusterId"] = args ? args.clusterId : undefined;
+            resourceInputs["granteeId"] = args ? args.granteeId : undefined;
+            resourceInputs["granteeType"] = args ? args.granteeType : undefined;
+            resourceInputs["isCustomRole"] = args ? args.isCustomRole : undefined;
+            resourceInputs["namespace"] = args ? args.namespace : undefined;
+            resourceInputs["roleDomain"] = args ? args.roleDomain : undefined;
+            resourceInputs["roleName"] = args ? args.roleName : undefined;
+            resourceInputs["authorizedAt"] = undefined /*out*/;
+            resourceInputs["authorizerId"] = undefined /*out*/;
+            resourceInputs["authorizerName"] = undefined /*out*/;
+            resourceInputs["authorizerType"] = undefined /*out*/;
+            resourceInputs["grantedAt"] = undefined /*out*/;
+            resourceInputs["kubeRoleBindingName"] = undefined /*out*/;
+            resourceInputs["message"] = undefined /*out*/;
+            resourceInputs["revokedAt"] = undefined /*out*/;
+            resourceInputs["status"] = undefined /*out*/;
+        }
+        opts = pulumi.mergeOptions(utilities.resourceOptsDefaults(), opts);
+        super(Permission.__pulumiType, name, resourceInputs, opts);
+    }
+}
+exports.Permission = Permission;
+/** @internal */
+Permission.__pulumiType = 'volcengine:vke/permission:Permission';
+//# sourceMappingURL=permission.js.map

package/vke/permission.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"permission.js","sourceRoot":"","sources":["../../vke/permission.ts"],"names":[],"mappings":";AAAA,wFAAwF;AACxF,iFAAiF;;;AAEjF,yCAAyC;AACzC,0CAA0C;AAE1C;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GAyEG;AACH,MAAa,UAAW,SAAQ,MAAM,CAAC,cAAc;IACjD;;;;;;;;OAQG;IACI,MAAM,CAAC,GAAG,CAAC,IAAY,EAAE,EAA2B,EAAE,KAAuB,EAAE,IAAmC;QACrH,OAAO,IAAI,UAAU,CAAC,IAAI,EAAO,KAAK,kCAAO,IAAI,KAAE,EAAE,EAAE,EAAE,IAAG,CAAC;IACjE,CAAC;IAKD;;;OAGG;IACI,MAAM,CAAC,UAAU,CAAC,GAAQ;QAC7B,IAAI,GAAG,KAAK,SAAS,IAAI,GAAG,KAAK,IAAI,EAAE;YACnC,OAAO,KAAK,CAAC;SAChB;QACD,OAAO,GAAG,CAAC,cAAc,CAAC,KAAK,UAAU,CAAC,YAAY,CAAC;IAC3D,CAAC;IA4ED,YAAY,IAAY,EAAE,WAA8C,EAAE,IAAmC;QACzG,IAAI,cAAc,GAAkB,EAAE,CAAC;QACvC,IAAI,GAAG,IAAI,IAAI,EAAE,CAAC;QAClB,IAAI,IAAI,CAAC,EAAE,EAAE;YACT,MAAM,KAAK,GAAG,WAA0C,CAAC;YACzD,cAAc,CAAC,cAAc,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,YAAY,CAAC,CAAC,CAAC,SAAS,CAAC;YACxE,cAAc,CAAC,cAAc,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,YAAY,CAAC,CAAC,CAAC,SAAS,CAAC;YACxE,cAAc,CAAC,gBAAgB,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,cAAc,CAAC,CAAC,CAAC,SAAS,CAAC;YAC5E,cAAc,CAAC,gBAAgB,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,cAAc,CAAC,CAAC,CAAC,SAAS,CAAC;YAC5E,cAAc,CAAC,WAAW,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,SAAS,CAAC,CAAC,CAAC,SAAS,CAAC;YAClE,cAAc,CAAC,WAAW,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,SAAS,CAAC,CAAC,CAAC,SAAS,CAAC;YAClE,cAAc,CAAC,WAAW,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,SAAS,CAAC,CAAC,CAAC,SAAS,CAAC;YAClE,cAAc,CAAC,aAAa,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,WAAW,CAAC,CAAC,CAAC,SAAS,CAAC;YACtE,cAAc,CAAC,cAAc,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,YAAY,CAAC,CAAC,CAAC,SAAS,CAAC;YACxE,cAAc,CAAC,qBAAqB,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,mBAAmB,CAAC,CAAC,CAAC,SAAS,CAAC;YACtF,cAAc,CAAC,SAAS,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,SAAS,CAAC;YAC9D,cAAc,CAAC,WAAW,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,SAAS,CAAC,CAAC,CAAC,SAAS,CAAC;YAClE,cAAc,CAAC,WAAW,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,SAAS,CAAC,CAAC,CAAC,SAAS,CAAC;YAClE,cAAc,CAAC,YAAY,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,UAAU,CAAC,CAAC,CAAC,SAAS,CAAC;YACpE,cAAc,CAAC,UAAU,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,QAAQ,CAAC,CAAC,CAAC,SAAS,CAAC;YAChE,cAAc,CAAC,QAAQ,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC,CAAC,SAAS,CAAC;SAC/D;aAAM;YACH,MAAM,IAAI,GAAG,WAAyC,CAAC;YACvD,IAAI,CAAC,CAAC,IAAI,IAAI,IAAI,CAAC,SAAS,KAAK,SAAS,CAAC,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE;gBACtD,MAAM,IAAI,KAAK,CAAC,uCAAuC,CAAC,CAAC;aAC5D;YACD,IAAI,CAAC,CAAC,IAAI,IAAI,IAAI,CAAC,WAAW,KAAK,SAAS,CAAC,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE;gBACxD,MAAM,IAAI,KAAK,CAAC,yCAAyC,CAAC,CAAC;aAC9D;YACD,IAAI,CAAC,CAAC,IAAI,IAAI,IAAI,CAAC,UAAU,KAAK,SAAS,CAAC,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE;gBACvD,MAAM,IAAI,KAAK,CAAC,wCAAwC,CAAC,CAAC;aAC7D;YACD,IAAI,CAAC,CAAC,IAAI,IAAI,IAAI,CAAC,QAAQ,KAAK,SAAS,CAAC,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE;gBACrD,MAAM,IAAI,KAAK,CAAC,sCAAsC,CAAC,CAAC;aAC3D;YACD,cAAc,CAAC,WAAW,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,SAAS,CAAC,CAAC,CAAC,SAAS,CAAC;YAChE,cAAc,CAAC,WAAW,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,SAAS,CAAC,CAAC,CAAC,SAAS,CAAC;YAChE,cAAc,CAAC,aAAa,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,WAAW,CAAC,CAAC,CAAC,SAAS,CAAC;YACpE,cAAc,CAAC,cAAc,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,YAAY,CAAC,CAAC,CAAC,SAAS,CAAC;YACtE,cAAc,CAAC,WAAW,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,SAAS,CAAC,CAAC,CAAC,SAAS,CAAC;YAChE,cAAc,CAAC,YAAY,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,UAAU,CAAC,CAAC,CAAC,SAAS,CAAC;YAClE,cAAc,CAAC,UAAU,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC,CAAC,SAAS,CAAC;YAC9D,cAAc,CAAC,cAAc,CAAC,GAAG,SAAS,CAAC,OAAO,CAAC;YACnD,cAAc,CAAC,cAAc,CAAC,GAAG,SAAS,CAAC,OAAO,CAAC;YACnD,cAAc,CAAC,gBAAgB,CAAC,GAAG,SAAS,CAAC,OAAO,CAAC;YACrD,cAAc,CAAC,gBAAgB,CAAC,GAAG,SAAS,CAAC,OAAO,CAAC;YACrD,cAAc,CAAC,WAAW,CAAC,GAAG,SAAS,CAAC,OAAO,CAAC;YAChD,cAAc,CAAC,qBAAqB,CAAC,GAAG,SAAS,CAAC,OAAO,CAAC;YAC1D,cAAc,CAAC,SAAS,CAAC,GAAG,SAAS,CAAC,OAAO,CAAC;YAC9C,cAAc,CAAC,WAAW,CAAC,GAAG,SAAS,CAAC,OAAO,CAAC;YAChD,cAAc,CAAC,QAAQ,CAAC,GAAG,SAAS,CAAC,OAAO,CAAC;SAChD;QACD,IAAI,GAAG,MAAM,CAAC,YAAY,CAAC,SAAS,CAAC,oBAAoB,EAAE,EAAE,IAAI,CAAC,CAAC;QACnE,KAAK,CAAC,UAAU,CAAC,YAAY,EAAE,IAAI,EAAE,cAAc,EAAE,IAAI,CAAC,CAAC;IAC/D,CAAC;;AA5JL,gCA6JC;AA/IG,gBAAgB;AACO,uBAAY,GAAG,sCAAsC,CAAC"}

package/vke/permissions.d.ts

@@ -0,0 +1,139 @@
+import * as pulumi from "@pulumi/pulumi";
+import * as outputs from "../types/output";
+/**
+ * Use this data source to query detailed information of vke permissions
+ * ## Example Usage
+ *
+ * ```typescript
+ * import * as pulumi from "@pulumi/pulumi";
+ * import * as volcengine from "@pulumi/volcengine";
+ *
+ * const foo = volcengine.vke.getPermissions({
+ *     granteeType: "User",
+ *     ids: ["apd10o9jhqqno0ba25****"],
+ * });
+ * ```
+ */
+/** @deprecated volcengine.vke.Permissions has been deprecated in favor of volcengine.vke.getPermissions */
+export declare function permissions(args?: PermissionsArgs, opts?: pulumi.InvokeOptions): Promise<PermissionsResult>;
+/**
+ * A collection of arguments for invoking Permissions.
+ */
+export interface PermissionsArgs {
+    /**
+     * A list of Cluster IDs.
+     */
+    clusterIds?: string[];
+    /**
+     * A list of Grantee IDs.
+     */
+    granteeIds?: number[];
+    /**
+     * The type of Grantee. Valid values: `User`, `Role`.
+     */
+    granteeType?: string;
+    /**
+     * A list of RBAC Permission IDs.
+     */
+    ids?: string[];
+    /**
+     * A list of Namespaces.
+     */
+    namespaces?: string[];
+    /**
+     * File name where to save data source results.
+     */
+    outputFile?: string;
+    /**
+     * A list of RBAC Role Names.
+     */
+    roleNames?: string[];
+    /**
+     * The status of RBAC Permission.
+     */
+    status?: string;
+}
+/**
+ * A collection of values returned by Permissions.
+ */
+export interface PermissionsResult {
+    /**
+     * The collection of query.
+     */
+    readonly accessPolicies: outputs.vke.PermissionsAccessPolicy[];
+    readonly clusterIds?: string[];
+    readonly granteeIds?: number[];
+    /**
+     * The type of the Grantee.
+     */
+    readonly granteeType?: string;
+    /**
+     * The provider-assigned unique ID for this managed resource.
+     */
+    readonly id: string;
+    readonly ids?: string[];
+    readonly namespaces?: string[];
+    readonly outputFile?: string;
+    readonly roleNames?: string[];
+    /**
+     * The status of the RBAC Permission.
+     */
+    readonly status?: string;
+    /**
+     * The total count of query.
+     */
+    readonly totalCount: number;
+}
+/**
+ * Use this data source to query detailed information of vke permissions
+ * ## Example Usage
+ *
+ * ```typescript
+ * import * as pulumi from "@pulumi/pulumi";
+ * import * as volcengine from "@pulumi/volcengine";
+ *
+ * const foo = volcengine.vke.getPermissions({
+ *     granteeType: "User",
+ *     ids: ["apd10o9jhqqno0ba25****"],
+ * });
+ * ```
+ */
+/** @deprecated volcengine.vke.Permissions has been deprecated in favor of volcengine.vke.getPermissions */
+export declare function permissionsOutput(args?: PermissionsOutputArgs, opts?: pulumi.InvokeOptions): pulumi.Output<PermissionsResult>;
+/**
+ * A collection of arguments for invoking Permissions.
+ */
+export interface PermissionsOutputArgs {
+    /**
+     * A list of Cluster IDs.
+     */
+    clusterIds?: pulumi.Input<pulumi.Input<string>[]>;
+    /**
+     * A list of Grantee IDs.
+     */
+    granteeIds?: pulumi.Input<pulumi.Input<number>[]>;
+    /**
+     * The type of Grantee. Valid values: `User`, `Role`.
+     */
+    granteeType?: pulumi.Input<string>;
+    /**
+     * A list of RBAC Permission IDs.
+     */
+    ids?: pulumi.Input<pulumi.Input<string>[]>;
+    /**
+     * A list of Namespaces.
+     */
+    namespaces?: pulumi.Input<pulumi.Input<string>[]>;
+    /**
+     * File name where to save data source results.
+     */
+    outputFile?: pulumi.Input<string>;
+    /**
+     * A list of RBAC Role Names.
+     */
+    roleNames?: pulumi.Input<pulumi.Input<string>[]>;
+    /**
+     * The status of RBAC Permission.
+     */
+    status?: pulumi.Input<string>;
+}

package/vke/permissions.js

@@ -0,0 +1,58 @@
+"use strict";
+// *** WARNING: this file was generated by the Pulumi Terraform Bridge (tfgen) Tool. ***
+// *** Do not edit by hand unless you're certain you know what you are doing! ***
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.permissionsOutput = exports.permissions = void 0;
+const pulumi = require("@pulumi/pulumi");
+const utilities = require("../utilities");
+/**
+ * Use this data source to query detailed information of vke permissions
+ * ## Example Usage
+ *
+ * ```typescript
+ * import * as pulumi from "@pulumi/pulumi";
+ * import * as volcengine from "@pulumi/volcengine";
+ *
+ * const foo = volcengine.vke.getPermissions({
+ *     granteeType: "User",
+ *     ids: ["apd10o9jhqqno0ba25****"],
+ * });
+ * ```
+ */
+/** @deprecated volcengine.vke.Permissions has been deprecated in favor of volcengine.vke.getPermissions */
+function permissions(args, opts) {
+    pulumi.log.warn("permissions is deprecated: volcengine.vke.Permissions has been deprecated in favor of volcengine.vke.getPermissions");
+    args = args || {};
+    opts = pulumi.mergeOptions(utilities.resourceOptsDefaults(), opts || {});
+    return pulumi.runtime.invoke("volcengine:vke/permissions:Permissions", {
+        "clusterIds": args.clusterIds,
+        "granteeIds": args.granteeIds,
+        "granteeType": args.granteeType,
+        "ids": args.ids,
+        "namespaces": args.namespaces,
+        "outputFile": args.outputFile,
+        "roleNames": args.roleNames,
+        "status": args.status,
+    }, opts);
+}
+exports.permissions = permissions;
+/**
+ * Use this data source to query detailed information of vke permissions
+ * ## Example Usage
+ *
+ * ```typescript
+ * import * as pulumi from "@pulumi/pulumi";
+ * import * as volcengine from "@pulumi/volcengine";
+ *
+ * const foo = volcengine.vke.getPermissions({
+ *     granteeType: "User",
+ *     ids: ["apd10o9jhqqno0ba25****"],
+ * });
+ * ```
+ */
+/** @deprecated volcengine.vke.Permissions has been deprecated in favor of volcengine.vke.getPermissions */
+function permissionsOutput(args, opts) {
+    return pulumi.output(args).apply((a) => permissions(a, opts));
+}
+exports.permissionsOutput = permissionsOutput;
+//# sourceMappingURL=permissions.js.map

package/vke/permissions.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"permissions.js","sourceRoot":"","sources":["../../vke/permissions.ts"],"names":[],"mappings":";AAAA,wFAAwF;AACxF,iFAAiF;;;AAEjF,yCAAyC;AAGzC,0CAA0C;AAE1C;;;;;;;;;;;;;GAaG;AACH,2GAA2G;AAC3G,SAAgB,WAAW,CAAC,IAAsB,EAAE,IAA2B;IAC3E,MAAM,CAAC,GAAG,CAAC,IAAI,CAAC,qHAAqH,CAAC,CAAA;IACtI,IAAI,GAAG,IAAI,IAAI,EAAE,CAAC;IAElB,IAAI,GAAG,MAAM,CAAC,YAAY,CAAC,SAAS,CAAC,oBAAoB,EAAE,EAAE,IAAI,IAAI,EAAE,CAAC,CAAC;IACzE,OAAO,MAAM,CAAC,OAAO,CAAC,MAAM,CAAC,wCAAwC,EAAE;QACnE,YAAY,EAAE,IAAI,CAAC,UAAU;QAC7B,YAAY,EAAE,IAAI,CAAC,UAAU;QAC7B,aAAa,EAAE,IAAI,CAAC,WAAW;QAC/B,KAAK,EAAE,IAAI,CAAC,GAAG;QACf,YAAY,EAAE,IAAI,CAAC,UAAU;QAC7B,YAAY,EAAE,IAAI,CAAC,UAAU;QAC7B,WAAW,EAAE,IAAI,CAAC,SAAS;QAC3B,QAAQ,EAAE,IAAI,CAAC,MAAM;KACxB,EAAE,IAAI,CAAC,CAAC;AACb,CAAC;AAfD,kCAeC;AAuED;;;;;;;;;;;;;GAaG;AACH,2GAA2G;AAC3G,SAAgB,iBAAiB,CAAC,IAA4B,EAAE,IAA2B;IACvF,OAAO,MAAM,CAAC,MAAM,CAAC,IAAI,CAAC,CAAC,KAAK,CAAC,CAAC,CAAM,EAAE,EAAE,CAAC,WAAW,CAAC,CAAC,EAAE,IAAI,CAAC,CAAC,CAAA;AACtE,CAAC;AAFD,8CAEC"}

package/vpc/routeEntry.d.ts

@@ -5,15 +5,36 @@ import * as pulumi from "@pulumi/pulumi";
  *
  * ```typescript
  * import * as pulumi from "@pulumi/pulumi";
+ * import * as volcengine from "@pulumi/volcengine";
  * import * as volcengine from "@volcengine/pulumi";
  *
- * const foo = new volcengine.vpc.RouteEntry("foo", {
- *     description: "tf-test-up",
- *     destinationCidrBlock: "0.0.0.0/2",
- *     nextHopId: "ngw-274gwbqe340zk7fap8spkzo7x",
+ * const fooZones = volcengine.ecs.getZones({});
+ * const fooVpc = new volcengine.vpc.Vpc("fooVpc", {
+ *     vpcName: "acc-test-vpc-rn",
+ *     cidrBlock: "172.16.0.0/16",
+ * });
+ * const fooSubnet = new volcengine.vpc.Subnet("fooSubnet", {
+ *     subnetName: "acc-test-subnet-rn",
+ *     cidrBlock: "172.16.0.0/24",
+ *     zoneId: fooZones.then(fooZones => fooZones.zones?.[0]?.id),
+ *     vpcId: fooVpc.id,
+ * });
+ * const fooGateway = new volcengine.nat.Gateway("fooGateway", {
+ *     vpcId: fooVpc.id,
+ *     subnetId: fooSubnet.id,
+ *     spec: "Small",
+ *     natGatewayName: "acc-test-nat-rn",
+ * });
+ * const fooRouteTable = new volcengine.vpc.RouteTable("fooRouteTable", {
+ *     vpcId: fooVpc.id,
+ *     routeTableName: "acc-test-route-table",
+ * });
+ * const fooRouteEntry = new volcengine.vpc.RouteEntry("fooRouteEntry", {
+ *     routeTableId: fooRouteTable.id,
+ *     destinationCidrBlock: "172.16.1.0/24",
  *     nextHopType: "NatGW",
- *     routeEntryName: "tf-test-up",
- *     routeTableId: "vtb-2744hslq5b7r47fap8tjomgnj",
+ *     nextHopId: fooGateway.id,
+ *     routeEntryName: "acc-test-route-entry",
  * });
  * ```
  *