PyPI - pulumi-aiven - Versions diffs - 6.29.0a1733375305__py3-none-any.whl → 6.30.0__py3-none-any.whl - Mend

pulumi-aiven 6.29.0a1733375305py3-none-any.whl → 6.30.0py3-none-any.whl

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Potentially problematic release.

This version of pulumi-aiven might be problematic. Click here for more details.

Files changed (98) hide show

pulumi_aiven/__init__.py +39 -0
pulumi_aiven/_inputs.py +3474 -103
pulumi_aiven/account_team_project.py +7 -7
pulumi_aiven/alloydbomni.py +1335 -0
pulumi_aiven/alloydbomni_database.py +347 -0
pulumi_aiven/alloydbomni_user.py +433 -0
pulumi_aiven/billing_group.py +7 -7
pulumi_aiven/clickhouse.py +8 -8
pulumi_aiven/get_account.py +2 -2
pulumi_aiven/get_account_authentication.py +2 -2
pulumi_aiven/get_account_team.py +2 -2
pulumi_aiven/get_account_team_member.py +2 -2
pulumi_aiven/get_account_team_project.py +3 -3
pulumi_aiven/get_alloydbomni.py +499 -0
pulumi_aiven/get_alloydbomni_database.py +168 -0
pulumi_aiven/get_alloydbomni_user.py +210 -0
pulumi_aiven/get_aws_privatelink.py +2 -2
pulumi_aiven/get_aws_vpc_peering_connection.py +2 -2
pulumi_aiven/get_azure_privatelink.py +2 -2
pulumi_aiven/get_azure_vpc_peering_connection.py +2 -2
pulumi_aiven/get_billing_group.py +3 -3
pulumi_aiven/get_cassanda.py +2 -2
pulumi_aiven/get_cassandra.py +2 -2
pulumi_aiven/get_cassandra_user.py +2 -2
pulumi_aiven/get_clickhouse.py +3 -3
pulumi_aiven/get_clickhouse_database.py +2 -2
pulumi_aiven/get_clickhouse_user.py +2 -2
pulumi_aiven/get_connection_pool.py +2 -2
pulumi_aiven/get_dragonfly.py +2 -2
pulumi_aiven/get_external_identity.py +5 -5
pulumi_aiven/get_flink.py +2 -2
pulumi_aiven/get_flink_application.py +2 -2
pulumi_aiven/get_flink_application_version.py +2 -2
pulumi_aiven/get_gcp_privatelink.py +2 -2
pulumi_aiven/get_gcp_vpc_peering_connection.py +2 -2
pulumi_aiven/get_grafana.py +2 -2
pulumi_aiven/get_influx_db.py +2 -2
pulumi_aiven/get_influxdb_database.py +2 -2
pulumi_aiven/get_influxdb_user.py +2 -2
pulumi_aiven/get_kafka.py +2 -2
pulumi_aiven/get_kafka_acl.py +2 -2
pulumi_aiven/get_kafka_connect.py +2 -2
pulumi_aiven/get_kafka_connector.py +2 -2
pulumi_aiven/get_kafka_mirror_maker.py +2 -2
pulumi_aiven/get_kafka_schema.py +2 -2
pulumi_aiven/get_kafka_schema_configuration.py +2 -2
pulumi_aiven/get_kafka_schema_registry_acl.py +2 -2
pulumi_aiven/get_kafka_topic.py +2 -2
pulumi_aiven/get_kafka_user.py +2 -2
pulumi_aiven/get_m3_aggregator.py +2 -2
pulumi_aiven/get_m3_db.py +2 -2
pulumi_aiven/get_m3db_user.py +2 -2
pulumi_aiven/get_mirror_maker_replication_flow.py +17 -3
pulumi_aiven/get_my_sql.py +2 -2
pulumi_aiven/get_mysql_database.py +2 -2
pulumi_aiven/get_mysql_user.py +2 -2
pulumi_aiven/get_open_search.py +2 -2
pulumi_aiven/get_open_search_acl_config.py +2 -2
pulumi_aiven/get_open_search_acl_rule.py +2 -2
pulumi_aiven/get_opensearch_security_plugin_config.py +2 -2
pulumi_aiven/get_opensearch_user.py +2 -2
pulumi_aiven/get_organization.py +2 -2
pulumi_aiven/get_organization_application_user.py +2 -2
pulumi_aiven/get_organization_user.py +2 -2
pulumi_aiven/get_organization_user_group.py +2 -2
pulumi_aiven/get_organization_user_list.py +2 -2
pulumi_aiven/get_organizational_unit.py +2 -2
pulumi_aiven/get_pg.py +2 -2
pulumi_aiven/get_pg_database.py +2 -2
pulumi_aiven/get_pg_user.py +2 -2
pulumi_aiven/get_project.py +2 -2
pulumi_aiven/get_project_user.py +3 -3
pulumi_aiven/get_project_vpc.py +2 -2
pulumi_aiven/get_redis.py +2 -2
pulumi_aiven/get_redis_user.py +2 -2
pulumi_aiven/get_service_component.py +2 -2
pulumi_aiven/get_service_integration.py +34 -6
pulumi_aiven/get_service_integration_endpoint.py +2 -2
pulumi_aiven/get_thanos.py +2 -2
pulumi_aiven/get_transit_gateway_vpc_attachment.py +2 -2
pulumi_aiven/get_valkey.py +2 -2
pulumi_aiven/get_valkey_user.py +11 -11
pulumi_aiven/kafka_acl.py +6 -4
pulumi_aiven/kafka_native_acl.py +588 -0
pulumi_aiven/mirror_maker_replication_flow.py +47 -0
pulumi_aiven/organization_group_project.py +7 -7
pulumi_aiven/organization_permission.py +56 -6
pulumi_aiven/outputs.py +20369 -15964
pulumi_aiven/project_user.py +7 -7
pulumi_aiven/pulumi-plugin.json +1 -1
pulumi_aiven/service_integration.py +98 -4
pulumi_aiven/valkey.py +2 -2
pulumi_aiven/valkey_user.py +142 -48
{pulumi_aiven-6.29.0a1733375305.dist-info → pulumi_aiven-6.30.0.dist-info}/METADATA +3 -3
pulumi_aiven-6.30.0.dist-info/RECORD +169 -0
pulumi_aiven-6.29.0a1733375305.dist-info/RECORD +0 -162
{pulumi_aiven-6.29.0a1733375305.dist-info → pulumi_aiven-6.30.0.dist-info}/WHEEL +0 -0
{pulumi_aiven-6.29.0a1733375305.dist-info → pulumi_aiven-6.30.0.dist-info}/top_level.txt +0 -0

pulumi_aiven/mirror_maker_replication_flow.py CHANGED Viewed

@@ -29,6 +29,7 @@ class MirrorMakerReplicationFlowArgs:
                  config_properties_excludes: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
                  emit_backward_heartbeats_enabled: Optional[pulumi.Input[bool]] = None,
                  emit_heartbeats_enabled: Optional[pulumi.Input[bool]] = None,
+                 exactly_once_delivery_enabled: Optional[pulumi.Input[bool]] = None,
                  replication_factor: Optional[pulumi.Input[int]] = None,
                  sync_group_offsets_enabled: Optional[pulumi.Input[bool]] = None,
                  sync_group_offsets_interval_seconds: Optional[pulumi.Input[int]] = None,
@@ -46,6 +47,7 @@ class MirrorMakerReplicationFlowArgs:
         :param pulumi.Input[Sequence[pulumi.Input[str]]] config_properties_excludes: List of topic configuration properties and/or regular expressions to not replicate. The properties that are not replicated by default are: `follower.replication.throttled.replicas`, `leader.replication.throttled.replicas`, `message.timestamp.difference.max.ms`, `message.timestamp.type`, `unclean.leader.election.enable`, and `min.insync.replicas`. Setting this overrides the defaults. For example, to enable replication for 'min.insync.replicas' and 'unclean.leader.election.enable' set this to: ["follower\\\\.replication\\\\.throttled\\\\.replicas", "leader\\\\.replication\\\\.throttled\\\\.replicas", "message\\\\.timestamp\\\\.difference\\\\.max\\\\.ms",  "message\\\\.timestamp\\\\.type"]
         :param pulumi.Input[bool] emit_backward_heartbeats_enabled: Whether to emit heartbeats to the direction opposite to the flow, i.e. to the source cluster. The default value is `false`.
         :param pulumi.Input[bool] emit_heartbeats_enabled: Whether to emit heartbeats to the target cluster. The default value is `false`.
+        :param pulumi.Input[bool] exactly_once_delivery_enabled: Whether to enable exactly-once message delivery. We recommend you set this to `enabled` for new replications. The default value is `false`.
         :param pulumi.Input[int] replication_factor: Replication factor, `>= 1`.
         :param pulumi.Input[bool] sync_group_offsets_enabled: Sync consumer group offsets. The default value is `false`.
         :param pulumi.Input[int] sync_group_offsets_interval_seconds: Frequency of consumer group offset sync. The default value is `1`.
@@ -65,6 +67,8 @@ class MirrorMakerReplicationFlowArgs:
             pulumi.set(__self__, "emit_backward_heartbeats_enabled", emit_backward_heartbeats_enabled)
         if emit_heartbeats_enabled is not None:
             pulumi.set(__self__, "emit_heartbeats_enabled", emit_heartbeats_enabled)
+        if exactly_once_delivery_enabled is not None:
+            pulumi.set(__self__, "exactly_once_delivery_enabled", exactly_once_delivery_enabled)
         if replication_factor is not None:
             pulumi.set(__self__, "replication_factor", replication_factor)
         if sync_group_offsets_enabled is not None:
@@ -196,6 +200,18 @@ class MirrorMakerReplicationFlowArgs:
     def emit_heartbeats_enabled(self, value: Optional[pulumi.Input[bool]]):
         pulumi.set(self, "emit_heartbeats_enabled", value)
+    @property
+    @pulumi.getter(name="exactlyOnceDeliveryEnabled")
+    def exactly_once_delivery_enabled(self) -> Optional[pulumi.Input[bool]]:
+        """
+        Whether to enable exactly-once message delivery. We recommend you set this to `enabled` for new replications. The default value is `false`.
+        """
+        return pulumi.get(self, "exactly_once_delivery_enabled")
+    @exactly_once_delivery_enabled.setter
+    def exactly_once_delivery_enabled(self, value: Optional[pulumi.Input[bool]]):
+        pulumi.set(self, "exactly_once_delivery_enabled", value)
     @property
     @pulumi.getter(name="replicationFactor")
     def replication_factor(self) -> Optional[pulumi.Input[int]]:
@@ -264,6 +280,7 @@ class _MirrorMakerReplicationFlowState:
                  emit_backward_heartbeats_enabled: Optional[pulumi.Input[bool]] = None,
                  emit_heartbeats_enabled: Optional[pulumi.Input[bool]] = None,
                  enable: Optional[pulumi.Input[bool]] = None,
+                 exactly_once_delivery_enabled: Optional[pulumi.Input[bool]] = None,
                  offset_syncs_topic_location: Optional[pulumi.Input[str]] = None,
                  project: Optional[pulumi.Input[str]] = None,
                  replication_factor: Optional[pulumi.Input[int]] = None,
@@ -281,6 +298,7 @@ class _MirrorMakerReplicationFlowState:
         :param pulumi.Input[bool] emit_backward_heartbeats_enabled: Whether to emit heartbeats to the direction opposite to the flow, i.e. to the source cluster. The default value is `false`.
         :param pulumi.Input[bool] emit_heartbeats_enabled: Whether to emit heartbeats to the target cluster. The default value is `false`.
         :param pulumi.Input[bool] enable: Enable of disable replication flows for a service.
+        :param pulumi.Input[bool] exactly_once_delivery_enabled: Whether to enable exactly-once message delivery. We recommend you set this to `enabled` for new replications. The default value is `false`.
         :param pulumi.Input[str] offset_syncs_topic_location: Offset syncs topic location. The possible values are `source` and `target`.
         :param pulumi.Input[str] project: The name of the project this resource belongs to. To set up proper dependencies please refer to this variable as a reference. Changing this property forces recreation of the resource.
         :param pulumi.Input[int] replication_factor: Replication factor, `>= 1`.
@@ -301,6 +319,8 @@ class _MirrorMakerReplicationFlowState:
             pulumi.set(__self__, "emit_heartbeats_enabled", emit_heartbeats_enabled)
         if enable is not None:
             pulumi.set(__self__, "enable", enable)
+        if exactly_once_delivery_enabled is not None:
+            pulumi.set(__self__, "exactly_once_delivery_enabled", exactly_once_delivery_enabled)
         if offset_syncs_topic_location is not None:
             pulumi.set(__self__, "offset_syncs_topic_location", offset_syncs_topic_location)
         if project is not None:
@@ -372,6 +392,18 @@ class _MirrorMakerReplicationFlowState:
     def enable(self, value: Optional[pulumi.Input[bool]]):
         pulumi.set(self, "enable", value)
+    @property
+    @pulumi.getter(name="exactlyOnceDeliveryEnabled")
+    def exactly_once_delivery_enabled(self) -> Optional[pulumi.Input[bool]]:
+        """
+        Whether to enable exactly-once message delivery. We recommend you set this to `enabled` for new replications. The default value is `false`.
+        """
+        return pulumi.get(self, "exactly_once_delivery_enabled")
+    @exactly_once_delivery_enabled.setter
+    def exactly_once_delivery_enabled(self, value: Optional[pulumi.Input[bool]]):
+        pulumi.set(self, "exactly_once_delivery_enabled", value)
     @property
     @pulumi.getter(name="offsetSyncsTopicLocation")
     def offset_syncs_topic_location(self) -> Optional[pulumi.Input[str]]:
@@ -514,6 +546,7 @@ class MirrorMakerReplicationFlow(pulumi.CustomResource):
                  emit_backward_heartbeats_enabled: Optional[pulumi.Input[bool]] = None,
                  emit_heartbeats_enabled: Optional[pulumi.Input[bool]] = None,
                  enable: Optional[pulumi.Input[bool]] = None,
+                 exactly_once_delivery_enabled: Optional[pulumi.Input[bool]] = None,
                  offset_syncs_topic_location: Optional[pulumi.Input[str]] = None,
                  project: Optional[pulumi.Input[str]] = None,
                  replication_factor: Optional[pulumi.Input[int]] = None,
@@ -569,6 +602,7 @@ class MirrorMakerReplicationFlow(pulumi.CustomResource):
         :param pulumi.Input[bool] emit_backward_heartbeats_enabled: Whether to emit heartbeats to the direction opposite to the flow, i.e. to the source cluster. The default value is `false`.
         :param pulumi.Input[bool] emit_heartbeats_enabled: Whether to emit heartbeats to the target cluster. The default value is `false`.
         :param pulumi.Input[bool] enable: Enable of disable replication flows for a service.
+        :param pulumi.Input[bool] exactly_once_delivery_enabled: Whether to enable exactly-once message delivery. We recommend you set this to `enabled` for new replications. The default value is `false`.
         :param pulumi.Input[str] offset_syncs_topic_location: Offset syncs topic location. The possible values are `source` and `target`.
         :param pulumi.Input[str] project: The name of the project this resource belongs to. To set up proper dependencies please refer to this variable as a reference. Changing this property forces recreation of the resource.
         :param pulumi.Input[int] replication_factor: Replication factor, `>= 1`.
@@ -643,6 +677,7 @@ class MirrorMakerReplicationFlow(pulumi.CustomResource):
                  emit_backward_heartbeats_enabled: Optional[pulumi.Input[bool]] = None,
                  emit_heartbeats_enabled: Optional[pulumi.Input[bool]] = None,
                  enable: Optional[pulumi.Input[bool]] = None,
+                 exactly_once_delivery_enabled: Optional[pulumi.Input[bool]] = None,
                  offset_syncs_topic_location: Optional[pulumi.Input[str]] = None,
                  project: Optional[pulumi.Input[str]] = None,
                  replication_factor: Optional[pulumi.Input[int]] = None,
@@ -669,6 +704,7 @@ class MirrorMakerReplicationFlow(pulumi.CustomResource):
             if enable is None and not opts.urn:
                 raise TypeError("Missing required property 'enable'")
             __props__.__dict__["enable"] = enable
+            __props__.__dict__["exactly_once_delivery_enabled"] = exactly_once_delivery_enabled
             if offset_syncs_topic_location is None and not opts.urn:
                 raise TypeError("Missing required property 'offset_syncs_topic_location'")
             __props__.__dict__["offset_syncs_topic_location"] = offset_syncs_topic_location
@@ -706,6 +742,7 @@ class MirrorMakerReplicationFlow(pulumi.CustomResource):
             emit_backward_heartbeats_enabled: Optional[pulumi.Input[bool]] = None,
             emit_heartbeats_enabled: Optional[pulumi.Input[bool]] = None,
             enable: Optional[pulumi.Input[bool]] = None,
+            exactly_once_delivery_enabled: Optional[pulumi.Input[bool]] = None,
             offset_syncs_topic_location: Optional[pulumi.Input[str]] = None,
             project: Optional[pulumi.Input[str]] = None,
             replication_factor: Optional[pulumi.Input[int]] = None,
@@ -728,6 +765,7 @@ class MirrorMakerReplicationFlow(pulumi.CustomResource):
         :param pulumi.Input[bool] emit_backward_heartbeats_enabled: Whether to emit heartbeats to the direction opposite to the flow, i.e. to the source cluster. The default value is `false`.
         :param pulumi.Input[bool] emit_heartbeats_enabled: Whether to emit heartbeats to the target cluster. The default value is `false`.
         :param pulumi.Input[bool] enable: Enable of disable replication flows for a service.
+        :param pulumi.Input[bool] exactly_once_delivery_enabled: Whether to enable exactly-once message delivery. We recommend you set this to `enabled` for new replications. The default value is `false`.
         :param pulumi.Input[str] offset_syncs_topic_location: Offset syncs topic location. The possible values are `source` and `target`.
         :param pulumi.Input[str] project: The name of the project this resource belongs to. To set up proper dependencies please refer to this variable as a reference. Changing this property forces recreation of the resource.
         :param pulumi.Input[int] replication_factor: Replication factor, `>= 1`.
@@ -748,6 +786,7 @@ class MirrorMakerReplicationFlow(pulumi.CustomResource):
         __props__.__dict__["emit_backward_heartbeats_enabled"] = emit_backward_heartbeats_enabled
         __props__.__dict__["emit_heartbeats_enabled"] = emit_heartbeats_enabled
         __props__.__dict__["enable"] = enable
+        __props__.__dict__["exactly_once_delivery_enabled"] = exactly_once_delivery_enabled
         __props__.__dict__["offset_syncs_topic_location"] = offset_syncs_topic_location
         __props__.__dict__["project"] = project
         __props__.__dict__["replication_factor"] = replication_factor
@@ -793,6 +832,14 @@ class MirrorMakerReplicationFlow(pulumi.CustomResource):
         """
         return pulumi.get(self, "enable")
+    @property
+    @pulumi.getter(name="exactlyOnceDeliveryEnabled")
+    def exactly_once_delivery_enabled(self) -> pulumi.Output[Optional[bool]]:
+        """
+        Whether to enable exactly-once message delivery. We recommend you set this to `enabled` for new replications. The default value is `false`.
+        """
+        return pulumi.get(self, "exactly_once_delivery_enabled")
     @property
     @pulumi.getter(name="offsetSyncsTopicLocation")
     def offset_syncs_topic_location(self) -> pulumi.Output[str]:

pulumi_aiven/organization_group_project.py CHANGED Viewed

@@ -29,7 +29,7 @@ class OrganizationGroupProjectArgs:
         The set of arguments for constructing a OrganizationGroupProject resource.
         :param pulumi.Input[str] group_id: The ID of the user group.
         :param pulumi.Input[str] project: The project that the users in the group are members of.
-        :param pulumi.Input[str] role: [Project-level role](https://aiven.io/docs/platform/reference/project-member-privileges) assigned to all users in the group. The possible values are `admin`, `operator`, `developer`, `read_only`, `project:integrations:read`, `project:integrations:write`, `project:networking:read`, `project:networking:write`, `project:permissions:read`, `service:configuration:write`, `service:logs:read`, `project:services:read`, `project:services:write`, `project:audit_logs:read`, `service:data:write`, `service:secrets:read`, `role:services:maintenance`, `role:services:recover`, `organization:billing:read`, `organization:billing:write`, `organization:audit_logs:read`, `organization:projects:read`, `organization:projects:write`, `organization:users:write`, `organization:permissions:read`, `organization:permissions:write`, `organization:app_users:write`, `organization:groups:write`, `organization:idps:write`, `organization:domains:write`, `organization:network:read`, `organization:network:write`, `role:organization:admin` and `service:users:write`.
+        :param pulumi.Input[str] role: [Project-level role](https://aiven.io/docs/platform/reference/project-member-privileges) assigned to all users in the group. The possible values are `admin`, `operator`, `developer`, `read_only`, `project:integrations:read`, `project:integrations:write`, `project:networking:read`, `project:networking:write`, `project:permissions:read`, `service:configuration:write`, `service:logs:read`, `project:services:read`, `project:services:write`, `project:audit_logs:read`, `service:data:write`, `service:secrets:read`, `service:users:write`, `role:services:maintenance`, `role:services:recover`, `organization:audit_logs:read`, `organization:users:write`, `organization:app_users:write`, `organization:groups:write`, `organization:idps:write`, `organization:domains:write` and `role:organization:admin`.
         """
         pulumi.set(__self__, "group_id", group_id)
         pulumi.set(__self__, "project", project)
@@ -65,7 +65,7 @@ class OrganizationGroupProjectArgs:
     @pulumi.getter
     def role(self) -> pulumi.Input[str]:
         """
-        [Project-level role](https://aiven.io/docs/platform/reference/project-member-privileges) assigned to all users in the group. The possible values are `admin`, `operator`, `developer`, `read_only`, `project:integrations:read`, `project:integrations:write`, `project:networking:read`, `project:networking:write`, `project:permissions:read`, `service:configuration:write`, `service:logs:read`, `project:services:read`, `project:services:write`, `project:audit_logs:read`, `service:data:write`, `service:secrets:read`, `role:services:maintenance`, `role:services:recover`, `organization:billing:read`, `organization:billing:write`, `organization:audit_logs:read`, `organization:projects:read`, `organization:projects:write`, `organization:users:write`, `organization:permissions:read`, `organization:permissions:write`, `organization:app_users:write`, `organization:groups:write`, `organization:idps:write`, `organization:domains:write`, `organization:network:read`, `organization:network:write`, `role:organization:admin` and `service:users:write`.
+        [Project-level role](https://aiven.io/docs/platform/reference/project-member-privileges) assigned to all users in the group. The possible values are `admin`, `operator`, `developer`, `read_only`, `project:integrations:read`, `project:integrations:write`, `project:networking:read`, `project:networking:write`, `project:permissions:read`, `service:configuration:write`, `service:logs:read`, `project:services:read`, `project:services:write`, `project:audit_logs:read`, `service:data:write`, `service:secrets:read`, `service:users:write`, `role:services:maintenance`, `role:services:recover`, `organization:audit_logs:read`, `organization:users:write`, `organization:app_users:write`, `organization:groups:write`, `organization:idps:write`, `organization:domains:write` and `role:organization:admin`.
         """
         return pulumi.get(self, "role")
@@ -94,7 +94,7 @@ class _OrganizationGroupProjectState:
         Input properties used for looking up and filtering OrganizationGroupProject resources.
         :param pulumi.Input[str] group_id: The ID of the user group.
         :param pulumi.Input[str] project: The project that the users in the group are members of.
-        :param pulumi.Input[str] role: [Project-level role](https://aiven.io/docs/platform/reference/project-member-privileges) assigned to all users in the group. The possible values are `admin`, `operator`, `developer`, `read_only`, `project:integrations:read`, `project:integrations:write`, `project:networking:read`, `project:networking:write`, `project:permissions:read`, `service:configuration:write`, `service:logs:read`, `project:services:read`, `project:services:write`, `project:audit_logs:read`, `service:data:write`, `service:secrets:read`, `role:services:maintenance`, `role:services:recover`, `organization:billing:read`, `organization:billing:write`, `organization:audit_logs:read`, `organization:projects:read`, `organization:projects:write`, `organization:users:write`, `organization:permissions:read`, `organization:permissions:write`, `organization:app_users:write`, `organization:groups:write`, `organization:idps:write`, `organization:domains:write`, `organization:network:read`, `organization:network:write`, `role:organization:admin` and `service:users:write`.
+        :param pulumi.Input[str] role: [Project-level role](https://aiven.io/docs/platform/reference/project-member-privileges) assigned to all users in the group. The possible values are `admin`, `operator`, `developer`, `read_only`, `project:integrations:read`, `project:integrations:write`, `project:networking:read`, `project:networking:write`, `project:permissions:read`, `service:configuration:write`, `service:logs:read`, `project:services:read`, `project:services:write`, `project:audit_logs:read`, `service:data:write`, `service:secrets:read`, `service:users:write`, `role:services:maintenance`, `role:services:recover`, `organization:audit_logs:read`, `organization:users:write`, `organization:app_users:write`, `organization:groups:write`, `organization:idps:write`, `organization:domains:write` and `role:organization:admin`.
         """
         if group_id is not None:
             pulumi.set(__self__, "group_id", group_id)
@@ -133,7 +133,7 @@ class _OrganizationGroupProjectState:
     @pulumi.getter
     def role(self) -> Optional[pulumi.Input[str]]:
         """
-        [Project-level role](https://aiven.io/docs/platform/reference/project-member-privileges) assigned to all users in the group. The possible values are `admin`, `operator`, `developer`, `read_only`, `project:integrations:read`, `project:integrations:write`, `project:networking:read`, `project:networking:write`, `project:permissions:read`, `service:configuration:write`, `service:logs:read`, `project:services:read`, `project:services:write`, `project:audit_logs:read`, `service:data:write`, `service:secrets:read`, `role:services:maintenance`, `role:services:recover`, `organization:billing:read`, `organization:billing:write`, `organization:audit_logs:read`, `organization:projects:read`, `organization:projects:write`, `organization:users:write`, `organization:permissions:read`, `organization:permissions:write`, `organization:app_users:write`, `organization:groups:write`, `organization:idps:write`, `organization:domains:write`, `organization:network:read`, `organization:network:write`, `role:organization:admin` and `service:users:write`.
+        [Project-level role](https://aiven.io/docs/platform/reference/project-member-privileges) assigned to all users in the group. The possible values are `admin`, `operator`, `developer`, `read_only`, `project:integrations:read`, `project:integrations:write`, `project:networking:read`, `project:networking:write`, `project:permissions:read`, `service:configuration:write`, `service:logs:read`, `project:services:read`, `project:services:write`, `project:audit_logs:read`, `service:data:write`, `service:secrets:read`, `service:users:write`, `role:services:maintenance`, `role:services:recover`, `organization:audit_logs:read`, `organization:users:write`, `organization:app_users:write`, `organization:groups:write`, `organization:idps:write`, `organization:domains:write` and `role:organization:admin`.
         """
         return pulumi.get(self, "role")
@@ -201,7 +201,7 @@ class OrganizationGroupProject(pulumi.CustomResource):
         :param pulumi.ResourceOptions opts: Options for the resource.
         :param pulumi.Input[str] group_id: The ID of the user group.
         :param pulumi.Input[str] project: The project that the users in the group are members of.
-        :param pulumi.Input[str] role: [Project-level role](https://aiven.io/docs/platform/reference/project-member-privileges) assigned to all users in the group. The possible values are `admin`, `operator`, `developer`, `read_only`, `project:integrations:read`, `project:integrations:write`, `project:networking:read`, `project:networking:write`, `project:permissions:read`, `service:configuration:write`, `service:logs:read`, `project:services:read`, `project:services:write`, `project:audit_logs:read`, `service:data:write`, `service:secrets:read`, `role:services:maintenance`, `role:services:recover`, `organization:billing:read`, `organization:billing:write`, `organization:audit_logs:read`, `organization:projects:read`, `organization:projects:write`, `organization:users:write`, `organization:permissions:read`, `organization:permissions:write`, `organization:app_users:write`, `organization:groups:write`, `organization:idps:write`, `organization:domains:write`, `organization:network:read`, `organization:network:write`, `role:organization:admin` and `service:users:write`.
+        :param pulumi.Input[str] role: [Project-level role](https://aiven.io/docs/platform/reference/project-member-privileges) assigned to all users in the group. The possible values are `admin`, `operator`, `developer`, `read_only`, `project:integrations:read`, `project:integrations:write`, `project:networking:read`, `project:networking:write`, `project:permissions:read`, `service:configuration:write`, `service:logs:read`, `project:services:read`, `project:services:write`, `project:audit_logs:read`, `service:data:write`, `service:secrets:read`, `service:users:write`, `role:services:maintenance`, `role:services:recover`, `organization:audit_logs:read`, `organization:users:write`, `organization:app_users:write`, `organization:groups:write`, `organization:idps:write`, `organization:domains:write` and `role:organization:admin`.
         """
         ...
     @overload
@@ -306,7 +306,7 @@ class OrganizationGroupProject(pulumi.CustomResource):
         :param pulumi.ResourceOptions opts: Options for the resource.
         :param pulumi.Input[str] group_id: The ID of the user group.
         :param pulumi.Input[str] project: The project that the users in the group are members of.
-        :param pulumi.Input[str] role: [Project-level role](https://aiven.io/docs/platform/reference/project-member-privileges) assigned to all users in the group. The possible values are `admin`, `operator`, `developer`, `read_only`, `project:integrations:read`, `project:integrations:write`, `project:networking:read`, `project:networking:write`, `project:permissions:read`, `service:configuration:write`, `service:logs:read`, `project:services:read`, `project:services:write`, `project:audit_logs:read`, `service:data:write`, `service:secrets:read`, `role:services:maintenance`, `role:services:recover`, `organization:billing:read`, `organization:billing:write`, `organization:audit_logs:read`, `organization:projects:read`, `organization:projects:write`, `organization:users:write`, `organization:permissions:read`, `organization:permissions:write`, `organization:app_users:write`, `organization:groups:write`, `organization:idps:write`, `organization:domains:write`, `organization:network:read`, `organization:network:write`, `role:organization:admin` and `service:users:write`.
+        :param pulumi.Input[str] role: [Project-level role](https://aiven.io/docs/platform/reference/project-member-privileges) assigned to all users in the group. The possible values are `admin`, `operator`, `developer`, `read_only`, `project:integrations:read`, `project:integrations:write`, `project:networking:read`, `project:networking:write`, `project:permissions:read`, `service:configuration:write`, `service:logs:read`, `project:services:read`, `project:services:write`, `project:audit_logs:read`, `service:data:write`, `service:secrets:read`, `service:users:write`, `role:services:maintenance`, `role:services:recover`, `organization:audit_logs:read`, `organization:users:write`, `organization:app_users:write`, `organization:groups:write`, `organization:idps:write`, `organization:domains:write` and `role:organization:admin`.
         """
         opts = pulumi.ResourceOptions.merge(opts, pulumi.ResourceOptions(id=id))
@@ -338,7 +338,7 @@ class OrganizationGroupProject(pulumi.CustomResource):
     @pulumi.getter
     def role(self) -> pulumi.Output[str]:
         """
-        [Project-level role](https://aiven.io/docs/platform/reference/project-member-privileges) assigned to all users in the group. The possible values are `admin`, `operator`, `developer`, `read_only`, `project:integrations:read`, `project:integrations:write`, `project:networking:read`, `project:networking:write`, `project:permissions:read`, `service:configuration:write`, `service:logs:read`, `project:services:read`, `project:services:write`, `project:audit_logs:read`, `service:data:write`, `service:secrets:read`, `role:services:maintenance`, `role:services:recover`, `organization:billing:read`, `organization:billing:write`, `organization:audit_logs:read`, `organization:projects:read`, `organization:projects:write`, `organization:users:write`, `organization:permissions:read`, `organization:permissions:write`, `organization:app_users:write`, `organization:groups:write`, `organization:idps:write`, `organization:domains:write`, `organization:network:read`, `organization:network:write`, `role:organization:admin` and `service:users:write`.
+        [Project-level role](https://aiven.io/docs/platform/reference/project-member-privileges) assigned to all users in the group. The possible values are `admin`, `operator`, `developer`, `read_only`, `project:integrations:read`, `project:integrations:write`, `project:networking:read`, `project:networking:write`, `project:permissions:read`, `service:configuration:write`, `service:logs:read`, `project:services:read`, `project:services:write`, `project:audit_logs:read`, `service:data:write`, `service:secrets:read`, `service:users:write`, `role:services:maintenance`, `role:services:recover`, `organization:audit_logs:read`, `organization:users:write`, `organization:app_users:write`, `organization:groups:write`, `organization:idps:write`, `organization:domains:write` and `role:organization:admin`.
         """
         return pulumi.get(self, "role")

pulumi_aiven/organization_permission.py CHANGED Viewed

@@ -169,7 +169,7 @@ class OrganizationPermission(pulumi.CustomResource):
                  resource_type: Optional[pulumi.Input[str]] = None,
                  __props__=None):
         """
-        Grants [roles and permissions](https://aiven.io/docs/platform/concepts/permissions) to a principal for a resource.
+        Grants [roles and permissions](https://aiven.io/docs/platform/concepts/permissions) to a principal for a resource. Permissions can be granted at the organization, organizational unit, and project level. Unit-level permissions aren't shown in the Aiven Console.
         ## Example Usage
@@ -177,7 +177,8 @@ class OrganizationPermission(pulumi.CustomResource):
         import pulumi
         import pulumi_aiven as aiven
-        example_permissions = aiven.OrganizationPermission("example_permissions",
+        # Grant access to a specific project
+        example_project_permissions = aiven.OrganizationPermission("example_project_permissions",
             organization_id=main["id"],
             resource_id=example_project["id"],
             resource_type="project",
@@ -193,13 +194,37 @@ class OrganizationPermission(pulumi.CustomResource):
                 {
                     "permissions": [
                         "project:integrations:write",
-                        "project:networking:read",
                         "developer",
                     ],
                     "principal_id": example_group["groupId"],
                     "principal_type": "user_group",
                 },
             ])
+        # Organization-level permissions
+        example_org_permissions = aiven.OrganizationPermission("example_org_permissions",
+            organization_id=main["id"],
+            resource_id=main["id"],
+            resource_type="organization",
+            permissions=[
+                {
+                    "permissions": [
+                        "organization:app_users:write",
+                        "project:audit_logs:read",
+                    ],
+                    "principal_id": "u123a456b7890c",
+                    "principal_type": "user",
+                },
+                {
+                    "permissions": [
+                        "organization:users:write",
+                        "organization:groups:write",
+                        "organization:domains:write",
+                        "organization:idps:write",
+                    ],
+                    "principal_id": example_group_aiven_organization_user_group["groupId"],
+                    "principal_type": "user_group",
+                },
+            ])
         ```
         ## Import
@@ -222,7 +247,7 @@ class OrganizationPermission(pulumi.CustomResource):
                  args: OrganizationPermissionArgs,
                  opts: Optional[pulumi.ResourceOptions] = None):
         """
-        Grants [roles and permissions](https://aiven.io/docs/platform/concepts/permissions) to a principal for a resource.
+        Grants [roles and permissions](https://aiven.io/docs/platform/concepts/permissions) to a principal for a resource. Permissions can be granted at the organization, organizational unit, and project level. Unit-level permissions aren't shown in the Aiven Console.
         ## Example Usage
@@ -230,7 +255,8 @@ class OrganizationPermission(pulumi.CustomResource):
         import pulumi
         import pulumi_aiven as aiven
-        example_permissions = aiven.OrganizationPermission("example_permissions",
+        # Grant access to a specific project
+        example_project_permissions = aiven.OrganizationPermission("example_project_permissions",
             organization_id=main["id"],
             resource_id=example_project["id"],
             resource_type="project",
@@ -246,13 +272,37 @@ class OrganizationPermission(pulumi.CustomResource):
                 {
                     "permissions": [
                         "project:integrations:write",
-                        "project:networking:read",
                         "developer",
                     ],
                     "principal_id": example_group["groupId"],
                     "principal_type": "user_group",
                 },
             ])
+        # Organization-level permissions
+        example_org_permissions = aiven.OrganizationPermission("example_org_permissions",
+            organization_id=main["id"],
+            resource_id=main["id"],
+            resource_type="organization",
+            permissions=[
+                {
+                    "permissions": [
+                        "organization:app_users:write",
+                        "project:audit_logs:read",
+                    ],
+                    "principal_id": "u123a456b7890c",
+                    "principal_type": "user",
+                },
+                {
+                    "permissions": [
+                        "organization:users:write",
+                        "organization:groups:write",
+                        "organization:domains:write",
+                        "organization:idps:write",
+                    ],
+                    "principal_id": example_group_aiven_organization_user_group["groupId"],
+                    "principal_type": "user_group",
+                },
+            ])
         ```
         ## Import

pulumi-aiven 6.29.0a1733375305__py3-none-any.whl → 6.30.0__py3-none-any.whl

Potentially problematic release.

pulumi-aiven 6.29.0a1733375305py3-none-any.whl → 6.30.0py3-none-any.whl