pulumi-aiven 6.36.0a1741493223__py3-none-any.whl → 6.37.0__py3-none-any.whl

pulumi_aiven/organization_application_user.py

@@ -2,6 +2,7 @@
 # *** WARNING: this file was generated by the Pulumi Terraform Bridge (tfgen) Tool. ***
 # *** Do not edit by hand unless you're certain you know what you are doing! ***
 
+import builtins
 import copy
 import warnings
 import sys
@@ -19,14 +20,14 @@ __all__ = ['OrganizationApplicationUserArgs', 'OrganizationApplicationUser']
 @pulumi.input_type
 class OrganizationApplicationUserArgs:
     def __init__(__self__, *,
-                 organization_id: pulumi.Input[str],
-                 is_super_admin: Optional[pulumi.Input[bool]] = None,
-                 name: Optional[pulumi.Input[str]] = None):
+                 organization_id: pulumi.Input[builtins.str],
+                 is_super_admin: Optional[pulumi.Input[builtins.bool]] = None,
+                 name: Optional[pulumi.Input[builtins.str]] = None):
         """
         The set of arguments for constructing a OrganizationApplicationUser resource.
-        :param pulumi.Input[str] organization_id: The ID of the organization the application user belongs to.
-        :param pulumi.Input[bool] is_super_admin: Makes the application user a super admin. The super admin role has full access to an organization, its billing and settings, and all its organizational units, projects, and services.
-        :param pulumi.Input[str] name: Name of the application user.
+        :param pulumi.Input[builtins.str] organization_id: The ID of the organization the application user belongs to.
+        :param pulumi.Input[builtins.bool] is_super_admin: Makes the application user a super admin. The super admin role has completely unrestricted access to all organization resources and settings. This role should be limited to as few users as possible. For daily administrative tasks, assign users the organization admin role instead using the `OrganizationPermission` resource.
+        :param pulumi.Input[builtins.str] name: Name of the application user.
         """
         pulumi.set(__self__, "organization_id", organization_id)
         if is_super_admin is not None:
@@ -36,56 +37,56 @@ class OrganizationApplicationUserArgs:
 
     @property
     @pulumi.getter(name="organizationId")
-    def organization_id(self) -> pulumi.Input[str]:
+    def organization_id(self) -> pulumi.Input[builtins.str]:
         """
         The ID of the organization the application user belongs to.
         """
         return pulumi.get(self, "organization_id")
 
     @organization_id.setter
-    def organization_id(self, value: pulumi.Input[str]):
+    def organization_id(self, value: pulumi.Input[builtins.str]):
         pulumi.set(self, "organization_id", value)
 
     @property
     @pulumi.getter(name="isSuperAdmin")
-    def is_super_admin(self) -> Optional[pulumi.Input[bool]]:
+    def is_super_admin(self) -> Optional[pulumi.Input[builtins.bool]]:
         """
-        Makes the application user a super admin. The super admin role has full access to an organization, its billing and settings, and all its organizational units, projects, and services.
+        Makes the application user a super admin. The super admin role has completely unrestricted access to all organization resources and settings. This role should be limited to as few users as possible. For daily administrative tasks, assign users the organization admin role instead using the `OrganizationPermission` resource.
         """
         return pulumi.get(self, "is_super_admin")
 
     @is_super_admin.setter
-    def is_super_admin(self, value: Optional[pulumi.Input[bool]]):
+    def is_super_admin(self, value: Optional[pulumi.Input[builtins.bool]]):
         pulumi.set(self, "is_super_admin", value)
 
     @property
     @pulumi.getter
-    def name(self) -> Optional[pulumi.Input[str]]:
+    def name(self) -> Optional[pulumi.Input[builtins.str]]:
         """
         Name of the application user.
         """
         return pulumi.get(self, "name")
 
     @name.setter
-    def name(self, value: Optional[pulumi.Input[str]]):
+    def name(self, value: Optional[pulumi.Input[builtins.str]]):
         pulumi.set(self, "name", value)
 
 
 @pulumi.input_type
 class _OrganizationApplicationUserState:
     def __init__(__self__, *,
-                 email: Optional[pulumi.Input[str]] = None,
-                 is_super_admin: Optional[pulumi.Input[bool]] = None,
-                 name: Optional[pulumi.Input[str]] = None,
-                 organization_id: Optional[pulumi.Input[str]] = None,
-                 user_id: Optional[pulumi.Input[str]] = None):
+                 email: Optional[pulumi.Input[builtins.str]] = None,
+                 is_super_admin: Optional[pulumi.Input[builtins.bool]] = None,
+                 name: Optional[pulumi.Input[builtins.str]] = None,
+                 organization_id: Optional[pulumi.Input[builtins.str]] = None,
+                 user_id: Optional[pulumi.Input[builtins.str]] = None):
         """
         Input properties used for looking up and filtering OrganizationApplicationUser resources.
-        :param pulumi.Input[str] email: An email address automatically generated by Aiven to help identify the application user. No notifications are sent to this email.
-        :param pulumi.Input[bool] is_super_admin: Makes the application user a super admin. The super admin role has full access to an organization, its billing and settings, and all its organizational units, projects, and services.
-        :param pulumi.Input[str] name: Name of the application user.
-        :param pulumi.Input[str] organization_id: The ID of the organization the application user belongs to.
-        :param pulumi.Input[str] user_id: The ID of the application user.
+        :param pulumi.Input[builtins.str] email: An email address automatically generated by Aiven to help identify the application user. No notifications are sent to this email.
+        :param pulumi.Input[builtins.bool] is_super_admin: Makes the application user a super admin. The super admin role has completely unrestricted access to all organization resources and settings. This role should be limited to as few users as possible. For daily administrative tasks, assign users the organization admin role instead using the `OrganizationPermission` resource.
+        :param pulumi.Input[builtins.str] name: Name of the application user.
+        :param pulumi.Input[builtins.str] organization_id: The ID of the organization the application user belongs to.
+        :param pulumi.Input[builtins.str] user_id: The ID of the application user.
         """
         if email is not None:
             pulumi.set(__self__, "email", email)
@@ -100,62 +101,62 @@ class _OrganizationApplicationUserState:
 
     @property
     @pulumi.getter
-    def email(self) -> Optional[pulumi.Input[str]]:
+    def email(self) -> Optional[pulumi.Input[builtins.str]]:
         """
         An email address automatically generated by Aiven to help identify the application user. No notifications are sent to this email.
         """
         return pulumi.get(self, "email")
 
     @email.setter
-    def email(self, value: Optional[pulumi.Input[str]]):
+    def email(self, value: Optional[pulumi.Input[builtins.str]]):
         pulumi.set(self, "email", value)
 
     @property
     @pulumi.getter(name="isSuperAdmin")
-    def is_super_admin(self) -> Optional[pulumi.Input[bool]]:
+    def is_super_admin(self) -> Optional[pulumi.Input[builtins.bool]]:
         """
-        Makes the application user a super admin. The super admin role has full access to an organization, its billing and settings, and all its organizational units, projects, and services.
+        Makes the application user a super admin. The super admin role has completely unrestricted access to all organization resources and settings. This role should be limited to as few users as possible. For daily administrative tasks, assign users the organization admin role instead using the `OrganizationPermission` resource.
         """
         return pulumi.get(self, "is_super_admin")
 
     @is_super_admin.setter
-    def is_super_admin(self, value: Optional[pulumi.Input[bool]]):
+    def is_super_admin(self, value: Optional[pulumi.Input[builtins.bool]]):
         pulumi.set(self, "is_super_admin", value)
 
     @property
     @pulumi.getter
-    def name(self) -> Optional[pulumi.Input[str]]:
+    def name(self) -> Optional[pulumi.Input[builtins.str]]:
         """
         Name of the application user.
         """
         return pulumi.get(self, "name")
 
     @name.setter
-    def name(self, value: Optional[pulumi.Input[str]]):
+    def name(self, value: Optional[pulumi.Input[builtins.str]]):
         pulumi.set(self, "name", value)
 
     @property
     @pulumi.getter(name="organizationId")
-    def organization_id(self) -> Optional[pulumi.Input[str]]:
+    def organization_id(self) -> Optional[pulumi.Input[builtins.str]]:
         """
         The ID of the organization the application user belongs to.
         """
         return pulumi.get(self, "organization_id")
 
     @organization_id.setter
-    def organization_id(self, value: Optional[pulumi.Input[str]]):
+    def organization_id(self, value: Optional[pulumi.Input[builtins.str]]):
         pulumi.set(self, "organization_id", value)
 
     @property
     @pulumi.getter(name="userId")
-    def user_id(self) -> Optional[pulumi.Input[str]]:
+    def user_id(self) -> Optional[pulumi.Input[builtins.str]]:
         """
         The ID of the application user.
         """
         return pulumi.get(self, "user_id")
 
     @user_id.setter
-    def user_id(self, value: Optional[pulumi.Input[str]]):
+    def user_id(self, value: Optional[pulumi.Input[builtins.str]]):
         pulumi.set(self, "user_id", value)
 
 
@@ -164,17 +165,16 @@ class OrganizationApplicationUser(pulumi.CustomResource):
     def __init__(__self__,
                  resource_name: str,
                  opts: Optional[pulumi.ResourceOptions] = None,
-                 is_super_admin: Optional[pulumi.Input[bool]] = None,
-                 name: Optional[pulumi.Input[str]] = None,
-                 organization_id: Optional[pulumi.Input[str]] = None,
+                 is_super_admin: Optional[pulumi.Input[builtins.bool]] = None,
+                 name: Optional[pulumi.Input[builtins.str]] = None,
+                 organization_id: Optional[pulumi.Input[builtins.str]] = None,
                  __props__=None):
         """
         Creates and manages an organization application user. [Application users](https://aiven.io/docs/platform/concepts/application-users) can be used for
-        programmatic access to the platform.
+        programmatic access to the platform using a token created with the `OrganizationApplicationUserToken` resource.
 
-        You give application users access to projects by adding them as members of a group using `OrganizationUserGroupMember`
-        and assigning the group to a project with `OrganizationGroupProject`. You can give an application user access to all
-        resources in your organization by setting `is_super_admin = true` .
+        You give application users access to your organization, projects, and services using the `OrganizationPermission` resource. You can also add application users to
+        groups using the `OrganizationUserGroupMember` resource.
 
         ## Example Usage
 
@@ -195,9 +195,9 @@ class OrganizationApplicationUser(pulumi.CustomResource):
 
         :param str resource_name: The name of the resource.
         :param pulumi.ResourceOptions opts: Options for the resource.
-        :param pulumi.Input[bool] is_super_admin: Makes the application user a super admin. The super admin role has full access to an organization, its billing and settings, and all its organizational units, projects, and services.
-        :param pulumi.Input[str] name: Name of the application user.
-        :param pulumi.Input[str] organization_id: The ID of the organization the application user belongs to.
+        :param pulumi.Input[builtins.bool] is_super_admin: Makes the application user a super admin. The super admin role has completely unrestricted access to all organization resources and settings. This role should be limited to as few users as possible. For daily administrative tasks, assign users the organization admin role instead using the `OrganizationPermission` resource.
+        :param pulumi.Input[builtins.str] name: Name of the application user.
+        :param pulumi.Input[builtins.str] organization_id: The ID of the organization the application user belongs to.
         """
         ...
     @overload
@@ -207,11 +207,10 @@ class OrganizationApplicationUser(pulumi.CustomResource):
                  opts: Optional[pulumi.ResourceOptions] = None):
         """
         Creates and manages an organization application user. [Application users](https://aiven.io/docs/platform/concepts/application-users) can be used for
-        programmatic access to the platform.
+        programmatic access to the platform using a token created with the `OrganizationApplicationUserToken` resource.
 
-        You give application users access to projects by adding them as members of a group using `OrganizationUserGroupMember`
-        and assigning the group to a project with `OrganizationGroupProject`. You can give an application user access to all
-        resources in your organization by setting `is_super_admin = true` .
+        You give application users access to your organization, projects, and services using the `OrganizationPermission` resource. You can also add application users to
+        groups using the `OrganizationUserGroupMember` resource.
 
         ## Example Usage
 
@@ -245,9 +244,9 @@ class OrganizationApplicationUser(pulumi.CustomResource):
     def _internal_init(__self__,
                  resource_name: str,
                  opts: Optional[pulumi.ResourceOptions] = None,
-                 is_super_admin: Optional[pulumi.Input[bool]] = None,
-                 name: Optional[pulumi.Input[str]] = None,
-                 organization_id: Optional[pulumi.Input[str]] = None,
+                 is_super_admin: Optional[pulumi.Input[builtins.bool]] = None,
+                 name: Optional[pulumi.Input[builtins.str]] = None,
+                 organization_id: Optional[pulumi.Input[builtins.str]] = None,
                  __props__=None):
         opts = pulumi.ResourceOptions.merge(_utilities.get_resource_opts_defaults(), opts)
         if not isinstance(opts, pulumi.ResourceOptions):
@@ -274,11 +273,11 @@ class OrganizationApplicationUser(pulumi.CustomResource):
     def get(resource_name: str,
             id: pulumi.Input[str],
             opts: Optional[pulumi.ResourceOptions] = None,
-            email: Optional[pulumi.Input[str]] = None,
-            is_super_admin: Optional[pulumi.Input[bool]] = None,
-            name: Optional[pulumi.Input[str]] = None,
-            organization_id: Optional[pulumi.Input[str]] = None,
-            user_id: Optional[pulumi.Input[str]] = None) -> 'OrganizationApplicationUser':
+            email: Optional[pulumi.Input[builtins.str]] = None,
+            is_super_admin: Optional[pulumi.Input[builtins.bool]] = None,
+            name: Optional[pulumi.Input[builtins.str]] = None,
+            organization_id: Optional[pulumi.Input[builtins.str]] = None,
+            user_id: Optional[pulumi.Input[builtins.str]] = None) -> 'OrganizationApplicationUser':
         """
         Get an existing OrganizationApplicationUser resource's state with the given name, id, and optional extra
         properties used to qualify the lookup.
@@ -286,11 +285,11 @@ class OrganizationApplicationUser(pulumi.CustomResource):
         :param str resource_name: The unique name of the resulting resource.
         :param pulumi.Input[str] id: The unique provider ID of the resource to lookup.
         :param pulumi.ResourceOptions opts: Options for the resource.
-        :param pulumi.Input[str] email: An email address automatically generated by Aiven to help identify the application user. No notifications are sent to this email.
-        :param pulumi.Input[bool] is_super_admin: Makes the application user a super admin. The super admin role has full access to an organization, its billing and settings, and all its organizational units, projects, and services.
-        :param pulumi.Input[str] name: Name of the application user.
-        :param pulumi.Input[str] organization_id: The ID of the organization the application user belongs to.
-        :param pulumi.Input[str] user_id: The ID of the application user.
+        :param pulumi.Input[builtins.str] email: An email address automatically generated by Aiven to help identify the application user. No notifications are sent to this email.
+        :param pulumi.Input[builtins.bool] is_super_admin: Makes the application user a super admin. The super admin role has completely unrestricted access to all organization resources and settings. This role should be limited to as few users as possible. For daily administrative tasks, assign users the organization admin role instead using the `OrganizationPermission` resource.
+        :param pulumi.Input[builtins.str] name: Name of the application user.
+        :param pulumi.Input[builtins.str] organization_id: The ID of the organization the application user belongs to.
+        :param pulumi.Input[builtins.str] user_id: The ID of the application user.
         """
         opts = pulumi.ResourceOptions.merge(opts, pulumi.ResourceOptions(id=id))
 
@@ -305,7 +304,7 @@ class OrganizationApplicationUser(pulumi.CustomResource):
 
     @property
     @pulumi.getter
-    def email(self) -> pulumi.Output[str]:
+    def email(self) -> pulumi.Output[builtins.str]:
         """
         An email address automatically generated by Aiven to help identify the application user. No notifications are sent to this email.
         """
@@ -313,15 +312,15 @@ class OrganizationApplicationUser(pulumi.CustomResource):
 
     @property
     @pulumi.getter(name="isSuperAdmin")
-    def is_super_admin(self) -> pulumi.Output[Optional[bool]]:
+    def is_super_admin(self) -> pulumi.Output[Optional[builtins.bool]]:
         """
-        Makes the application user a super admin. The super admin role has full access to an organization, its billing and settings, and all its organizational units, projects, and services.
+        Makes the application user a super admin. The super admin role has completely unrestricted access to all organization resources and settings. This role should be limited to as few users as possible. For daily administrative tasks, assign users the organization admin role instead using the `OrganizationPermission` resource.
         """
         return pulumi.get(self, "is_super_admin")
 
     @property
     @pulumi.getter
-    def name(self) -> pulumi.Output[str]:
+    def name(self) -> pulumi.Output[builtins.str]:
         """
         Name of the application user.
         """
@@ -329,7 +328,7 @@ class OrganizationApplicationUser(pulumi.CustomResource):
 
     @property
     @pulumi.getter(name="organizationId")
-    def organization_id(self) -> pulumi.Output[str]:
+    def organization_id(self) -> pulumi.Output[builtins.str]:
         """
         The ID of the organization the application user belongs to.
         """
@@ -337,7 +336,7 @@ class OrganizationApplicationUser(pulumi.CustomResource):
 
     @property
     @pulumi.getter(name="userId")
-    def user_id(self) -> pulumi.Output[str]:
+    def user_id(self) -> pulumi.Output[builtins.str]:
         """
         The ID of the application user.
         """