pulumi-aiven 6.36.0a1741493223__py3-none-any.whl → 6.37.0__py3-none-any.whl

pulumi_aiven/organization_application_user_token.py

@@ -2,6 +2,7 @@
 # *** WARNING: this file was generated by the Pulumi Terraform Bridge (tfgen) Tool. ***
 # *** Do not edit by hand unless you're certain you know what you are doing! ***
 
+import builtins
 import copy
 import warnings
 import sys
@@ -19,20 +20,22 @@ __all__ = ['OrganizationApplicationUserTokenArgs', 'OrganizationApplicationUserT
 @pulumi.input_type
 class OrganizationApplicationUserTokenArgs:
     def __init__(__self__, *,
-                 organization_id: pulumi.Input[str],
-                 user_id: pulumi.Input[str],
-                 description: Optional[pulumi.Input[str]] = None,
-                 extend_when_used: Optional[pulumi.Input[bool]] = None,
-                 max_age_seconds: Optional[pulumi.Input[int]] = None,
-                 scopes: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None):
+                 organization_id: pulumi.Input[builtins.str],
+                 user_id: pulumi.Input[builtins.str],
+                 description: Optional[pulumi.Input[builtins.str]] = None,
+                 extend_when_used: Optional[pulumi.Input[builtins.bool]] = None,
+                 ip_allowlists: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
+                 max_age_seconds: Optional[pulumi.Input[builtins.int]] = None,
+                 scopes: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None):
         """
         The set of arguments for constructing a OrganizationApplicationUserToken resource.
-        :param pulumi.Input[str] organization_id: The ID of the organization the application user belongs to.
-        :param pulumi.Input[str] user_id: The ID of the application user the token is created for.
-        :param pulumi.Input[str] description: Description of the token.
-        :param pulumi.Input[bool] extend_when_used: Extends the token session duration when the token is used. Only applicable if a value is set for `max_age_seconds`.
-        :param pulumi.Input[int] max_age_seconds: The number of hours after which a token expires. If not set, it never expires.
-        :param pulumi.Input[Sequence[pulumi.Input[str]]] scopes: Limits access to specific resources by granting read or write privileges to them. For example: `billing:read`. Available scopes are: `authentication`, `billing`, `payments` for [payment methods](https://aiven.io/docs/platform/howto/list-billing), `privatelink`, `projects`, `services`, `static_ips`, and `user`.
+        :param pulumi.Input[builtins.str] organization_id: The ID of the organization the application user belongs to.
+        :param pulumi.Input[builtins.str] user_id: The ID of the application user the token is created for.
+        :param pulumi.Input[builtins.str] description: Description of the token.
+        :param pulumi.Input[builtins.bool] extend_when_used: Extends the token session duration when the token is used. Only applicable if a value is set for `max_age_seconds`.
+        :param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] ip_allowlists: List of allowed IP ranges.
+        :param pulumi.Input[builtins.int] max_age_seconds: The number of hours after which a token expires. If not set, it never expires.
+        :param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] scopes: Limits access to specific resources by granting read or write privileges to them. For example: `billing:read`. Available scopes are: `authentication`, `billing`, `payments` for [payment methods](https://aiven.io/docs/platform/howto/list-billing), `privatelink`, `projects`, `services`, `static_ips`, and `user`.
         """
         pulumi.set(__self__, "organization_id", organization_id)
         pulumi.set(__self__, "user_id", user_id)
@@ -40,6 +43,8 @@ class OrganizationApplicationUserTokenArgs:
             pulumi.set(__self__, "description", description)
         if extend_when_used is not None:
             pulumi.set(__self__, "extend_when_used", extend_when_used)
+        if ip_allowlists is not None:
+            pulumi.set(__self__, "ip_allowlists", ip_allowlists)
         if max_age_seconds is not None:
             pulumi.set(__self__, "max_age_seconds", max_age_seconds)
         if scopes is not None:
@@ -47,114 +52,128 @@ class OrganizationApplicationUserTokenArgs:
 
     @property
     @pulumi.getter(name="organizationId")
-    def organization_id(self) -> pulumi.Input[str]:
+    def organization_id(self) -> pulumi.Input[builtins.str]:
         """
         The ID of the organization the application user belongs to.
         """
         return pulumi.get(self, "organization_id")
 
     @organization_id.setter
-    def organization_id(self, value: pulumi.Input[str]):
+    def organization_id(self, value: pulumi.Input[builtins.str]):
         pulumi.set(self, "organization_id", value)
 
     @property
     @pulumi.getter(name="userId")
-    def user_id(self) -> pulumi.Input[str]:
+    def user_id(self) -> pulumi.Input[builtins.str]:
         """
         The ID of the application user the token is created for.
         """
         return pulumi.get(self, "user_id")
 
     @user_id.setter
-    def user_id(self, value: pulumi.Input[str]):
+    def user_id(self, value: pulumi.Input[builtins.str]):
         pulumi.set(self, "user_id", value)
 
     @property
     @pulumi.getter
-    def description(self) -> Optional[pulumi.Input[str]]:
+    def description(self) -> Optional[pulumi.Input[builtins.str]]:
         """
         Description of the token.
         """
         return pulumi.get(self, "description")
 
     @description.setter
-    def description(self, value: Optional[pulumi.Input[str]]):
+    def description(self, value: Optional[pulumi.Input[builtins.str]]):
         pulumi.set(self, "description", value)
 
     @property
     @pulumi.getter(name="extendWhenUsed")
-    def extend_when_used(self) -> Optional[pulumi.Input[bool]]:
+    def extend_when_used(self) -> Optional[pulumi.Input[builtins.bool]]:
         """
         Extends the token session duration when the token is used. Only applicable if a value is set for `max_age_seconds`.
         """
         return pulumi.get(self, "extend_when_used")
 
     @extend_when_used.setter
-    def extend_when_used(self, value: Optional[pulumi.Input[bool]]):
+    def extend_when_used(self, value: Optional[pulumi.Input[builtins.bool]]):
         pulumi.set(self, "extend_when_used", value)
 
+    @property
+    @pulumi.getter(name="ipAllowlists")
+    def ip_allowlists(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]:
+        """
+        List of allowed IP ranges.
+        """
+        return pulumi.get(self, "ip_allowlists")
+
+    @ip_allowlists.setter
+    def ip_allowlists(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]):
+        pulumi.set(self, "ip_allowlists", value)
+
     @property
     @pulumi.getter(name="maxAgeSeconds")
-    def max_age_seconds(self) -> Optional[pulumi.Input[int]]:
+    def max_age_seconds(self) -> Optional[pulumi.Input[builtins.int]]:
         """
         The number of hours after which a token expires. If not set, it never expires.
         """
         return pulumi.get(self, "max_age_seconds")
 
     @max_age_seconds.setter
-    def max_age_seconds(self, value: Optional[pulumi.Input[int]]):
+    def max_age_seconds(self, value: Optional[pulumi.Input[builtins.int]]):
         pulumi.set(self, "max_age_seconds", value)
 
     @property
     @pulumi.getter
-    def scopes(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]:
+    def scopes(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]:
         """
         Limits access to specific resources by granting read or write privileges to them. For example: `billing:read`. Available scopes are: `authentication`, `billing`, `payments` for [payment methods](https://aiven.io/docs/platform/howto/list-billing), `privatelink`, `projects`, `services`, `static_ips`, and `user`.
         """
         return pulumi.get(self, "scopes")
 
     @scopes.setter
-    def scopes(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]):
+    def scopes(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]):
         pulumi.set(self, "scopes", value)
 
 
 @pulumi.input_type
 class _OrganizationApplicationUserTokenState:
     def __init__(__self__, *,
-                 create_time: Optional[pulumi.Input[str]] = None,
-                 created_manually: Optional[pulumi.Input[bool]] = None,
-                 currently_active: Optional[pulumi.Input[bool]] = None,
-                 description: Optional[pulumi.Input[str]] = None,
-                 expiry_time: Optional[pulumi.Input[str]] = None,
-                 extend_when_used: Optional[pulumi.Input[bool]] = None,
-                 full_token: Optional[pulumi.Input[str]] = None,
-                 last_ip: Optional[pulumi.Input[str]] = None,
-                 last_used_time: Optional[pulumi.Input[str]] = None,
-                 last_user_agent: Optional[pulumi.Input[str]] = None,
-                 last_user_agent_human_readable: Optional[pulumi.Input[str]] = None,
-                 max_age_seconds: Optional[pulumi.Input[int]] = None,
-                 organization_id: Optional[pulumi.Input[str]] = None,
-                 scopes: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
-                 token_prefix: Optional[pulumi.Input[str]] = None,
-                 user_id: Optional[pulumi.Input[str]] = None):
+                 create_time: Optional[pulumi.Input[builtins.str]] = None,
+                 created_manually: Optional[pulumi.Input[builtins.bool]] = None,
+                 currently_active: Optional[pulumi.Input[builtins.bool]] = None,
+                 description: Optional[pulumi.Input[builtins.str]] = None,
+                 expiry_time: Optional[pulumi.Input[builtins.str]] = None,
+                 extend_when_used: Optional[pulumi.Input[builtins.bool]] = None,
+                 full_token: Optional[pulumi.Input[builtins.str]] = None,
+                 ip_allowlists: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
+                 last_ip: Optional[pulumi.Input[builtins.str]] = None,
+                 last_used_time: Optional[pulumi.Input[builtins.str]] = None,
+                 last_user_agent: Optional[pulumi.Input[builtins.str]] = None,
+                 last_user_agent_human_readable: Optional[pulumi.Input[builtins.str]] = None,
+                 max_age_seconds: Optional[pulumi.Input[builtins.int]] = None,
+                 organization_id: Optional[pulumi.Input[builtins.str]] = None,
+                 scopes: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
+                 token_prefix: Optional[pulumi.Input[builtins.str]] = None,
+                 user_id: Optional[pulumi.Input[builtins.str]] = None):
         """
         Input properties used for looking up and filtering OrganizationApplicationUserToken resources.
-        :param pulumi.Input[str] create_time: Time when the token was created.
-        :param pulumi.Input[bool] created_manually: True for tokens explicitly created using the `access_tokens` API. False for tokens created when a user logs in.
-        :param pulumi.Input[bool] currently_active: True if the API request was made with this token.
-        :param pulumi.Input[str] description: Description of the token.
-        :param pulumi.Input[str] expiry_time: Timestamp when the access token will expire unless extended.
-        :param pulumi.Input[bool] extend_when_used: Extends the token session duration when the token is used. Only applicable if a value is set for `max_age_seconds`.
-        :param pulumi.Input[str] full_token: Full token.
-        :param pulumi.Input[str] last_ip: IP address of the last request made with this token.
-        :param pulumi.Input[str] last_used_time: Timestamp when the access token was last used.
-        :param pulumi.Input[str] last_user_agent: User agent of the last request made with this token.
-        :param pulumi.Input[str] last_user_agent_human_readable: User agent of the last request made with this token in human-readable format.
-        :param pulumi.Input[int] max_age_seconds: The number of hours after which a token expires. If not set, it never expires.
-        :param pulumi.Input[str] organization_id: The ID of the organization the application user belongs to.
-        :param pulumi.Input[Sequence[pulumi.Input[str]]] scopes: Limits access to specific resources by granting read or write privileges to them. For example: `billing:read`. Available scopes are: `authentication`, `billing`, `payments` for [payment methods](https://aiven.io/docs/platform/howto/list-billing), `privatelink`, `projects`, `services`, `static_ips`, and `user`.
-        :param pulumi.Input[str] token_prefix: Prefix of the token.
-        :param pulumi.Input[str] user_id: The ID of the application user the token is created for.
+        :param pulumi.Input[builtins.str] create_time: Time when the token was created.
+        :param pulumi.Input[builtins.bool] created_manually: True for tokens explicitly created using the `access_tokens` API. False for tokens created when a user logs in.
+        :param pulumi.Input[builtins.bool] currently_active: True if the API request was made with this token.
+        :param pulumi.Input[builtins.str] description: Description of the token.
+        :param pulumi.Input[builtins.str] expiry_time: Timestamp when the access token will expire unless extended.
+        :param pulumi.Input[builtins.bool] extend_when_used: Extends the token session duration when the token is used. Only applicable if a value is set for `max_age_seconds`.
+        :param pulumi.Input[builtins.str] full_token: Full token.
+        :param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] ip_allowlists: List of allowed IP ranges.
+        :param pulumi.Input[builtins.str] last_ip: IP address of the last request made with this token.
+        :param pulumi.Input[builtins.str] last_used_time: Timestamp when the access token was last used.
+        :param pulumi.Input[builtins.str] last_user_agent: User agent of the last request made with this token.
+        :param pulumi.Input[builtins.str] last_user_agent_human_readable: User agent of the last request made with this token in human-readable format.
+        :param pulumi.Input[builtins.int] max_age_seconds: The number of hours after which a token expires. If not set, it never expires.
+        :param pulumi.Input[builtins.str] organization_id: The ID of the organization the application user belongs to.
+        :param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] scopes: Limits access to specific resources by granting read or write privileges to them. For example: `billing:read`. Available scopes are: `authentication`, `billing`, `payments` for [payment methods](https://aiven.io/docs/platform/howto/list-billing), `privatelink`, `projects`, `services`, `static_ips`, and `user`.
+        :param pulumi.Input[builtins.str] token_prefix: Prefix of the token.
+        :param pulumi.Input[builtins.str] user_id: The ID of the application user the token is created for.
         """
         if create_time is not None:
             pulumi.set(__self__, "create_time", create_time)
@@ -170,6 +189,8 @@ class _OrganizationApplicationUserTokenState:
             pulumi.set(__self__, "extend_when_used", extend_when_used)
         if full_token is not None:
             pulumi.set(__self__, "full_token", full_token)
+        if ip_allowlists is not None:
+            pulumi.set(__self__, "ip_allowlists", ip_allowlists)
         if last_ip is not None:
             pulumi.set(__self__, "last_ip", last_ip)
         if last_used_time is not None:
@@ -191,194 +212,206 @@ class _OrganizationApplicationUserTokenState:
 
     @property
     @pulumi.getter(name="createTime")
-    def create_time(self) -> Optional[pulumi.Input[str]]:
+    def create_time(self) -> Optional[pulumi.Input[builtins.str]]:
         """
         Time when the token was created.
         """
         return pulumi.get(self, "create_time")
 
     @create_time.setter
-    def create_time(self, value: Optional[pulumi.Input[str]]):
+    def create_time(self, value: Optional[pulumi.Input[builtins.str]]):
         pulumi.set(self, "create_time", value)
 
     @property
     @pulumi.getter(name="createdManually")
-    def created_manually(self) -> Optional[pulumi.Input[bool]]:
+    def created_manually(self) -> Optional[pulumi.Input[builtins.bool]]:
         """
         True for tokens explicitly created using the `access_tokens` API. False for tokens created when a user logs in.
         """
         return pulumi.get(self, "created_manually")
 
     @created_manually.setter
-    def created_manually(self, value: Optional[pulumi.Input[bool]]):
+    def created_manually(self, value: Optional[pulumi.Input[builtins.bool]]):
         pulumi.set(self, "created_manually", value)
 
     @property
     @pulumi.getter(name="currentlyActive")
-    def currently_active(self) -> Optional[pulumi.Input[bool]]:
+    def currently_active(self) -> Optional[pulumi.Input[builtins.bool]]:
         """
         True if the API request was made with this token.
         """
         return pulumi.get(self, "currently_active")
 
     @currently_active.setter
-    def currently_active(self, value: Optional[pulumi.Input[bool]]):
+    def currently_active(self, value: Optional[pulumi.Input[builtins.bool]]):
         pulumi.set(self, "currently_active", value)
 
     @property
     @pulumi.getter
-    def description(self) -> Optional[pulumi.Input[str]]:
+    def description(self) -> Optional[pulumi.Input[builtins.str]]:
         """
         Description of the token.
         """
         return pulumi.get(self, "description")
 
     @description.setter
-    def description(self, value: Optional[pulumi.Input[str]]):
+    def description(self, value: Optional[pulumi.Input[builtins.str]]):
         pulumi.set(self, "description", value)
 
     @property
     @pulumi.getter(name="expiryTime")
-    def expiry_time(self) -> Optional[pulumi.Input[str]]:
+    def expiry_time(self) -> Optional[pulumi.Input[builtins.str]]:
         """
         Timestamp when the access token will expire unless extended.
         """
         return pulumi.get(self, "expiry_time")
 
     @expiry_time.setter
-    def expiry_time(self, value: Optional[pulumi.Input[str]]):
+    def expiry_time(self, value: Optional[pulumi.Input[builtins.str]]):
         pulumi.set(self, "expiry_time", value)
 
     @property
     @pulumi.getter(name="extendWhenUsed")
-    def extend_when_used(self) -> Optional[pulumi.Input[bool]]:
+    def extend_when_used(self) -> Optional[pulumi.Input[builtins.bool]]:
         """
         Extends the token session duration when the token is used. Only applicable if a value is set for `max_age_seconds`.
         """
         return pulumi.get(self, "extend_when_used")
 
     @extend_when_used.setter
-    def extend_when_used(self, value: Optional[pulumi.Input[bool]]):
+    def extend_when_used(self, value: Optional[pulumi.Input[builtins.bool]]):
         pulumi.set(self, "extend_when_used", value)
 
     @property
     @pulumi.getter(name="fullToken")
-    def full_token(self) -> Optional[pulumi.Input[str]]:
+    def full_token(self) -> Optional[pulumi.Input[builtins.str]]:
         """
         Full token.
         """
         return pulumi.get(self, "full_token")
 
     @full_token.setter
-    def full_token(self, value: Optional[pulumi.Input[str]]):
+    def full_token(self, value: Optional[pulumi.Input[builtins.str]]):
         pulumi.set(self, "full_token", value)
 
+    @property
+    @pulumi.getter(name="ipAllowlists")
+    def ip_allowlists(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]:
+        """
+        List of allowed IP ranges.
+        """
+        return pulumi.get(self, "ip_allowlists")
+
+    @ip_allowlists.setter
+    def ip_allowlists(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]):
+        pulumi.set(self, "ip_allowlists", value)
+
     @property
     @pulumi.getter(name="lastIp")
-    def last_ip(self) -> Optional[pulumi.Input[str]]:
+    def last_ip(self) -> Optional[pulumi.Input[builtins.str]]:
         """
         IP address of the last request made with this token.
         """
         return pulumi.get(self, "last_ip")
 
     @last_ip.setter
-    def last_ip(self, value: Optional[pulumi.Input[str]]):
+    def last_ip(self, value: Optional[pulumi.Input[builtins.str]]):
         pulumi.set(self, "last_ip", value)
 
     @property
     @pulumi.getter(name="lastUsedTime")
-    def last_used_time(self) -> Optional[pulumi.Input[str]]:
+    def last_used_time(self) -> Optional[pulumi.Input[builtins.str]]:
         """
         Timestamp when the access token was last used.
         """
         return pulumi.get(self, "last_used_time")
 
     @last_used_time.setter
-    def last_used_time(self, value: Optional[pulumi.Input[str]]):
+    def last_used_time(self, value: Optional[pulumi.Input[builtins.str]]):
         pulumi.set(self, "last_used_time", value)
 
     @property
     @pulumi.getter(name="lastUserAgent")
-    def last_user_agent(self) -> Optional[pulumi.Input[str]]:
+    def last_user_agent(self) -> Optional[pulumi.Input[builtins.str]]:
         """
         User agent of the last request made with this token.
         """
         return pulumi.get(self, "last_user_agent")
 
     @last_user_agent.setter
-    def last_user_agent(self, value: Optional[pulumi.Input[str]]):
+    def last_user_agent(self, value: Optional[pulumi.Input[builtins.str]]):
         pulumi.set(self, "last_user_agent", value)
 
     @property
     @pulumi.getter(name="lastUserAgentHumanReadable")
-    def last_user_agent_human_readable(self) -> Optional[pulumi.Input[str]]:
+    def last_user_agent_human_readable(self) -> Optional[pulumi.Input[builtins.str]]:
         """
         User agent of the last request made with this token in human-readable format.
         """
         return pulumi.get(self, "last_user_agent_human_readable")
 
     @last_user_agent_human_readable.setter
-    def last_user_agent_human_readable(self, value: Optional[pulumi.Input[str]]):
+    def last_user_agent_human_readable(self, value: Optional[pulumi.Input[builtins.str]]):
         pulumi.set(self, "last_user_agent_human_readable", value)
 
     @property
     @pulumi.getter(name="maxAgeSeconds")
-    def max_age_seconds(self) -> Optional[pulumi.Input[int]]:
+    def max_age_seconds(self) -> Optional[pulumi.Input[builtins.int]]:
         """
         The number of hours after which a token expires. If not set, it never expires.
         """
         return pulumi.get(self, "max_age_seconds")
 
     @max_age_seconds.setter
-    def max_age_seconds(self, value: Optional[pulumi.Input[int]]):
+    def max_age_seconds(self, value: Optional[pulumi.Input[builtins.int]]):
         pulumi.set(self, "max_age_seconds", value)
 
     @property
     @pulumi.getter(name="organizationId")
-    def organization_id(self) -> Optional[pulumi.Input[str]]:
+    def organization_id(self) -> Optional[pulumi.Input[builtins.str]]:
         """
         The ID of the organization the application user belongs to.
         """
         return pulumi.get(self, "organization_id")
 
     @organization_id.setter
-    def organization_id(self, value: Optional[pulumi.Input[str]]):
+    def organization_id(self, value: Optional[pulumi.Input[builtins.str]]):
         pulumi.set(self, "organization_id", value)
 
     @property
     @pulumi.getter
-    def scopes(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]:
+    def scopes(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]:
         """
         Limits access to specific resources by granting read or write privileges to them. For example: `billing:read`. Available scopes are: `authentication`, `billing`, `payments` for [payment methods](https://aiven.io/docs/platform/howto/list-billing), `privatelink`, `projects`, `services`, `static_ips`, and `user`.
         """
         return pulumi.get(self, "scopes")
 
     @scopes.setter
-    def scopes(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]):
+    def scopes(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]):
         pulumi.set(self, "scopes", value)
 
     @property
     @pulumi.getter(name="tokenPrefix")
-    def token_prefix(self) -> Optional[pulumi.Input[str]]:
+    def token_prefix(self) -> Optional[pulumi.Input[builtins.str]]:
         """
         Prefix of the token.
         """
         return pulumi.get(self, "token_prefix")
 
     @token_prefix.setter
-    def token_prefix(self, value: Optional[pulumi.Input[str]]):
+    def token_prefix(self, value: Optional[pulumi.Input[builtins.str]]):
         pulumi.set(self, "token_prefix", value)
 
     @property
     @pulumi.getter(name="userId")
-    def user_id(self) -> Optional[pulumi.Input[str]]:
+    def user_id(self) -> Optional[pulumi.Input[builtins.str]]:
         """
         The ID of the application user the token is created for.
         """
         return pulumi.get(self, "user_id")
 
     @user_id.setter
-    def user_id(self, value: Optional[pulumi.Input[str]]):
+    def user_id(self, value: Optional[pulumi.Input[builtins.str]]):
         pulumi.set(self, "user_id", value)
 
 
@@ -387,12 +420,13 @@ class OrganizationApplicationUserToken(pulumi.CustomResource):
     def __init__(__self__,
                  resource_name: str,
                  opts: Optional[pulumi.ResourceOptions] = None,
-                 description: Optional[pulumi.Input[str]] = None,
-                 extend_when_used: Optional[pulumi.Input[bool]] = None,
-                 max_age_seconds: Optional[pulumi.Input[int]] = None,
-                 organization_id: Optional[pulumi.Input[str]] = None,
-                 scopes: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
-                 user_id: Optional[pulumi.Input[str]] = None,
+                 description: Optional[pulumi.Input[builtins.str]] = None,
+                 extend_when_used: Optional[pulumi.Input[builtins.bool]] = None,
+                 ip_allowlists: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
+                 max_age_seconds: Optional[pulumi.Input[builtins.int]] = None,
+                 organization_id: Optional[pulumi.Input[builtins.str]] = None,
+                 scopes: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
+                 user_id: Optional[pulumi.Input[builtins.str]] = None,
                  __props__=None):
         """
         Creates and manages an application user token. Review the [best practices](https://aiven.io/docs/platform/concepts/application-users#security-best-practices) for securing application users and their tokens.
@@ -420,12 +454,13 @@ class OrganizationApplicationUserToken(pulumi.CustomResource):
 
         :param str resource_name: The name of the resource.
         :param pulumi.ResourceOptions opts: Options for the resource.
-        :param pulumi.Input[str] description: Description of the token.
-        :param pulumi.Input[bool] extend_when_used: Extends the token session duration when the token is used. Only applicable if a value is set for `max_age_seconds`.
-        :param pulumi.Input[int] max_age_seconds: The number of hours after which a token expires. If not set, it never expires.
-        :param pulumi.Input[str] organization_id: The ID of the organization the application user belongs to.
-        :param pulumi.Input[Sequence[pulumi.Input[str]]] scopes: Limits access to specific resources by granting read or write privileges to them. For example: `billing:read`. Available scopes are: `authentication`, `billing`, `payments` for [payment methods](https://aiven.io/docs/platform/howto/list-billing), `privatelink`, `projects`, `services`, `static_ips`, and `user`.
-        :param pulumi.Input[str] user_id: The ID of the application user the token is created for.
+        :param pulumi.Input[builtins.str] description: Description of the token.
+        :param pulumi.Input[builtins.bool] extend_when_used: Extends the token session duration when the token is used. Only applicable if a value is set for `max_age_seconds`.
+        :param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] ip_allowlists: List of allowed IP ranges.
+        :param pulumi.Input[builtins.int] max_age_seconds: The number of hours after which a token expires. If not set, it never expires.
+        :param pulumi.Input[builtins.str] organization_id: The ID of the organization the application user belongs to.
+        :param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] scopes: Limits access to specific resources by granting read or write privileges to them. For example: `billing:read`. Available scopes are: `authentication`, `billing`, `payments` for [payment methods](https://aiven.io/docs/platform/howto/list-billing), `privatelink`, `projects`, `services`, `static_ips`, and `user`.
+        :param pulumi.Input[builtins.str] user_id: The ID of the application user the token is created for.
         """
         ...
     @overload
@@ -472,12 +507,13 @@ class OrganizationApplicationUserToken(pulumi.CustomResource):
     def _internal_init(__self__,
                  resource_name: str,
                  opts: Optional[pulumi.ResourceOptions] = None,
-                 description: Optional[pulumi.Input[str]] = None,
-                 extend_when_used: Optional[pulumi.Input[bool]] = None,
-                 max_age_seconds: Optional[pulumi.Input[int]] = None,
-                 organization_id: Optional[pulumi.Input[str]] = None,
-                 scopes: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
-                 user_id: Optional[pulumi.Input[str]] = None,
+                 description: Optional[pulumi.Input[builtins.str]] = None,
+                 extend_when_used: Optional[pulumi.Input[builtins.bool]] = None,
+                 ip_allowlists: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
+                 max_age_seconds: Optional[pulumi.Input[builtins.int]] = None,
+                 organization_id: Optional[pulumi.Input[builtins.str]] = None,
+                 scopes: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
+                 user_id: Optional[pulumi.Input[builtins.str]] = None,
                  __props__=None):
         opts = pulumi.ResourceOptions.merge(_utilities.get_resource_opts_defaults(), opts)
         if not isinstance(opts, pulumi.ResourceOptions):
@@ -489,6 +525,7 @@ class OrganizationApplicationUserToken(pulumi.CustomResource):
 
             __props__.__dict__["description"] = description
             __props__.__dict__["extend_when_used"] = extend_when_used
+            __props__.__dict__["ip_allowlists"] = ip_allowlists
             __props__.__dict__["max_age_seconds"] = max_age_seconds
             if organization_id is None and not opts.urn:
                 raise TypeError("Missing required property 'organization_id'")
@@ -519,22 +556,23 @@ class OrganizationApplicationUserToken(pulumi.CustomResource):
     def get(resource_name: str,
             id: pulumi.Input[str],
             opts: Optional[pulumi.ResourceOptions] = None,
-            create_time: Optional[pulumi.Input[str]] = None,
-            created_manually: Optional[pulumi.Input[bool]] = None,
-            currently_active: Optional[pulumi.Input[bool]] = None,
-            description: Optional[pulumi.Input[str]] = None,
-            expiry_time: Optional[pulumi.Input[str]] = None,
-            extend_when_used: Optional[pulumi.Input[bool]] = None,
-            full_token: Optional[pulumi.Input[str]] = None,
-            last_ip: Optional[pulumi.Input[str]] = None,
-            last_used_time: Optional[pulumi.Input[str]] = None,
-            last_user_agent: Optional[pulumi.Input[str]] = None,
-            last_user_agent_human_readable: Optional[pulumi.Input[str]] = None,
-            max_age_seconds: Optional[pulumi.Input[int]] = None,
-            organization_id: Optional[pulumi.Input[str]] = None,
-            scopes: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
-            token_prefix: Optional[pulumi.Input[str]] = None,
-            user_id: Optional[pulumi.Input[str]] = None) -> 'OrganizationApplicationUserToken':
+            create_time: Optional[pulumi.Input[builtins.str]] = None,
+            created_manually: Optional[pulumi.Input[builtins.bool]] = None,
+            currently_active: Optional[pulumi.Input[builtins.bool]] = None,
+            description: Optional[pulumi.Input[builtins.str]] = None,
+            expiry_time: Optional[pulumi.Input[builtins.str]] = None,
+            extend_when_used: Optional[pulumi.Input[builtins.bool]] = None,
+            full_token: Optional[pulumi.Input[builtins.str]] = None,
+            ip_allowlists: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
+            last_ip: Optional[pulumi.Input[builtins.str]] = None,
+            last_used_time: Optional[pulumi.Input[builtins.str]] = None,
+            last_user_agent: Optional[pulumi.Input[builtins.str]] = None,
+            last_user_agent_human_readable: Optional[pulumi.Input[builtins.str]] = None,
+            max_age_seconds: Optional[pulumi.Input[builtins.int]] = None,
+            organization_id: Optional[pulumi.Input[builtins.str]] = None,
+            scopes: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
+            token_prefix: Optional[pulumi.Input[builtins.str]] = None,
+            user_id: Optional[pulumi.Input[builtins.str]] = None) -> 'OrganizationApplicationUserToken':
         """
         Get an existing OrganizationApplicationUserToken resource's state with the given name, id, and optional extra
         properties used to qualify the lookup.
@@ -542,22 +580,23 @@ class OrganizationApplicationUserToken(pulumi.CustomResource):
         :param str resource_name: The unique name of the resulting resource.
         :param pulumi.Input[str] id: The unique provider ID of the resource to lookup.
         :param pulumi.ResourceOptions opts: Options for the resource.
-        :param pulumi.Input[str] create_time: Time when the token was created.
-        :param pulumi.Input[bool] created_manually: True for tokens explicitly created using the `access_tokens` API. False for tokens created when a user logs in.
-        :param pulumi.Input[bool] currently_active: True if the API request was made with this token.
-        :param pulumi.Input[str] description: Description of the token.
-        :param pulumi.Input[str] expiry_time: Timestamp when the access token will expire unless extended.
-        :param pulumi.Input[bool] extend_when_used: Extends the token session duration when the token is used. Only applicable if a value is set for `max_age_seconds`.
-        :param pulumi.Input[str] full_token: Full token.
-        :param pulumi.Input[str] last_ip: IP address of the last request made with this token.
-        :param pulumi.Input[str] last_used_time: Timestamp when the access token was last used.
-        :param pulumi.Input[str] last_user_agent: User agent of the last request made with this token.
-        :param pulumi.Input[str] last_user_agent_human_readable: User agent of the last request made with this token in human-readable format.
-        :param pulumi.Input[int] max_age_seconds: The number of hours after which a token expires. If not set, it never expires.
-        :param pulumi.Input[str] organization_id: The ID of the organization the application user belongs to.
-        :param pulumi.Input[Sequence[pulumi.Input[str]]] scopes: Limits access to specific resources by granting read or write privileges to them. For example: `billing:read`. Available scopes are: `authentication`, `billing`, `payments` for [payment methods](https://aiven.io/docs/platform/howto/list-billing), `privatelink`, `projects`, `services`, `static_ips`, and `user`.
-        :param pulumi.Input[str] token_prefix: Prefix of the token.
-        :param pulumi.Input[str] user_id: The ID of the application user the token is created for.
+        :param pulumi.Input[builtins.str] create_time: Time when the token was created.
+        :param pulumi.Input[builtins.bool] created_manually: True for tokens explicitly created using the `access_tokens` API. False for tokens created when a user logs in.
+        :param pulumi.Input[builtins.bool] currently_active: True if the API request was made with this token.
+        :param pulumi.Input[builtins.str] description: Description of the token.
+        :param pulumi.Input[builtins.str] expiry_time: Timestamp when the access token will expire unless extended.
+        :param pulumi.Input[builtins.bool] extend_when_used: Extends the token session duration when the token is used. Only applicable if a value is set for `max_age_seconds`.
+        :param pulumi.Input[builtins.str] full_token: Full token.
+        :param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] ip_allowlists: List of allowed IP ranges.
+        :param pulumi.Input[builtins.str] last_ip: IP address of the last request made with this token.
+        :param pulumi.Input[builtins.str] last_used_time: Timestamp when the access token was last used.
+        :param pulumi.Input[builtins.str] last_user_agent: User agent of the last request made with this token.
+        :param pulumi.Input[builtins.str] last_user_agent_human_readable: User agent of the last request made with this token in human-readable format.
+        :param pulumi.Input[builtins.int] max_age_seconds: The number of hours after which a token expires. If not set, it never expires.
+        :param pulumi.Input[builtins.str] organization_id: The ID of the organization the application user belongs to.
+        :param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] scopes: Limits access to specific resources by granting read or write privileges to them. For example: `billing:read`. Available scopes are: `authentication`, `billing`, `payments` for [payment methods](https://aiven.io/docs/platform/howto/list-billing), `privatelink`, `projects`, `services`, `static_ips`, and `user`.
+        :param pulumi.Input[builtins.str] token_prefix: Prefix of the token.
+        :param pulumi.Input[builtins.str] user_id: The ID of the application user the token is created for.
         """
         opts = pulumi.ResourceOptions.merge(opts, pulumi.ResourceOptions(id=id))
 
@@ -570,6 +609,7 @@ class OrganizationApplicationUserToken(pulumi.CustomResource):
         __props__.__dict__["expiry_time"] = expiry_time
         __props__.__dict__["extend_when_used"] = extend_when_used
         __props__.__dict__["full_token"] = full_token
+        __props__.__dict__["ip_allowlists"] = ip_allowlists
         __props__.__dict__["last_ip"] = last_ip
         __props__.__dict__["last_used_time"] = last_used_time
         __props__.__dict__["last_user_agent"] = last_user_agent
@@ -583,7 +623,7 @@ class OrganizationApplicationUserToken(pulumi.CustomResource):
 
     @property
     @pulumi.getter(name="createTime")
-    def create_time(self) -> pulumi.Output[str]:
+    def create_time(self) -> pulumi.Output[builtins.str]:
         """
         Time when the token was created.
         """
@@ -591,7 +631,7 @@ class OrganizationApplicationUserToken(pulumi.CustomResource):
 
     @property
     @pulumi.getter(name="createdManually")
-    def created_manually(self) -> pulumi.Output[bool]:
+    def created_manually(self) -> pulumi.Output[builtins.bool]:
         """
         True for tokens explicitly created using the `access_tokens` API. False for tokens created when a user logs in.
         """
@@ -599,7 +639,7 @@ class OrganizationApplicationUserToken(pulumi.CustomResource):
 
     @property
     @pulumi.getter(name="currentlyActive")
-    def currently_active(self) -> pulumi.Output[bool]:
+    def currently_active(self) -> pulumi.Output[builtins.bool]:
         """
         True if the API request was made with this token.
         """
@@ -607,7 +647,7 @@ class OrganizationApplicationUserToken(pulumi.CustomResource):
 
     @property
     @pulumi.getter
-    def description(self) -> pulumi.Output[Optional[str]]:
+    def description(self) -> pulumi.Output[Optional[builtins.str]]:
         """
         Description of the token.
         """
@@ -615,7 +655,7 @@ class OrganizationApplicationUserToken(pulumi.CustomResource):
 
     @property
     @pulumi.getter(name="expiryTime")
-    def expiry_time(self) -> pulumi.Output[str]:
+    def expiry_time(self) -> pulumi.Output[builtins.str]:
         """
         Timestamp when the access token will expire unless extended.
         """
@@ -623,7 +663,7 @@ class OrganizationApplicationUserToken(pulumi.CustomResource):
 
     @property
     @pulumi.getter(name="extendWhenUsed")
-    def extend_when_used(self) -> pulumi.Output[Optional[bool]]:
+    def extend_when_used(self) -> pulumi.Output[Optional[builtins.bool]]:
         """
         Extends the token session duration when the token is used. Only applicable if a value is set for `max_age_seconds`.
         """
@@ -631,15 +671,23 @@ class OrganizationApplicationUserToken(pulumi.CustomResource):
 
     @property
     @pulumi.getter(name="fullToken")
-    def full_token(self) -> pulumi.Output[str]:
+    def full_token(self) -> pulumi.Output[builtins.str]:
         """
         Full token.
         """
         return pulumi.get(self, "full_token")
 
+    @property
+    @pulumi.getter(name="ipAllowlists")
+    def ip_allowlists(self) -> pulumi.Output[Optional[Sequence[builtins.str]]]:
+        """
+        List of allowed IP ranges.
+        """
+        return pulumi.get(self, "ip_allowlists")
+
     @property
     @pulumi.getter(name="lastIp")
-    def last_ip(self) -> pulumi.Output[str]:
+    def last_ip(self) -> pulumi.Output[builtins.str]:
         """
         IP address of the last request made with this token.
         """
@@ -647,7 +695,7 @@ class OrganizationApplicationUserToken(pulumi.CustomResource):
 
     @property
     @pulumi.getter(name="lastUsedTime")
-    def last_used_time(self) -> pulumi.Output[str]:
+    def last_used_time(self) -> pulumi.Output[builtins.str]:
         """
         Timestamp when the access token was last used.
         """
@@ -655,7 +703,7 @@ class OrganizationApplicationUserToken(pulumi.CustomResource):
 
     @property
     @pulumi.getter(name="lastUserAgent")
-    def last_user_agent(self) -> pulumi.Output[str]:
+    def last_user_agent(self) -> pulumi.Output[builtins.str]:
         """
         User agent of the last request made with this token.
         """
@@ -663,7 +711,7 @@ class OrganizationApplicationUserToken(pulumi.CustomResource):
 
     @property
     @pulumi.getter(name="lastUserAgentHumanReadable")
-    def last_user_agent_human_readable(self) -> pulumi.Output[str]:
+    def last_user_agent_human_readable(self) -> pulumi.Output[builtins.str]:
         """
         User agent of the last request made with this token in human-readable format.
         """
@@ -671,7 +719,7 @@ class OrganizationApplicationUserToken(pulumi.CustomResource):
 
     @property
     @pulumi.getter(name="maxAgeSeconds")
-    def max_age_seconds(self) -> pulumi.Output[Optional[int]]:
+    def max_age_seconds(self) -> pulumi.Output[Optional[builtins.int]]:
         """
         The number of hours after which a token expires. If not set, it never expires.
         """
@@ -679,7 +727,7 @@ class OrganizationApplicationUserToken(pulumi.CustomResource):
 
     @property
     @pulumi.getter(name="organizationId")
-    def organization_id(self) -> pulumi.Output[str]:
+    def organization_id(self) -> pulumi.Output[builtins.str]:
         """
         The ID of the organization the application user belongs to.
         """
@@ -687,7 +735,7 @@ class OrganizationApplicationUserToken(pulumi.CustomResource):
 
     @property
     @pulumi.getter
-    def scopes(self) -> pulumi.Output[Optional[Sequence[str]]]:
+    def scopes(self) -> pulumi.Output[Optional[Sequence[builtins.str]]]:
         """
         Limits access to specific resources by granting read or write privileges to them. For example: `billing:read`. Available scopes are: `authentication`, `billing`, `payments` for [payment methods](https://aiven.io/docs/platform/howto/list-billing), `privatelink`, `projects`, `services`, `static_ips`, and `user`.
         """
@@ -695,7 +743,7 @@ class OrganizationApplicationUserToken(pulumi.CustomResource):
 
     @property
     @pulumi.getter(name="tokenPrefix")
-    def token_prefix(self) -> pulumi.Output[str]:
+    def token_prefix(self) -> pulumi.Output[builtins.str]:
         """
         Prefix of the token.
         """
@@ -703,7 +751,7 @@ class OrganizationApplicationUserToken(pulumi.CustomResource):
 
     @property
     @pulumi.getter(name="userId")
-    def user_id(self) -> pulumi.Output[str]:
+    def user_id(self) -> pulumi.Output[builtins.str]:
         """
         The ID of the application user the token is created for.
         """