pulumi-databricks 1.76.0a1757569246__py3-none-any.whl → 1.79.0a1764999348__py3-none-any.whl

pulumi_databricks/rfa_access_request_destinations.py

@@ -0,0 +1,354 @@
+# coding=utf-8
+# *** WARNING: this file was generated by pulumi-language-python. ***
+# *** Do not edit by hand unless you're certain you know what you are doing! ***
+
+import builtins as _builtins
+import warnings
+import sys
+import pulumi
+import pulumi.runtime
+from typing import Any, Mapping, Optional, Sequence, Union, overload
+if sys.version_info >= (3, 11):
+    from typing import NotRequired, TypedDict, TypeAlias
+else:
+    from typing_extensions import NotRequired, TypedDict, TypeAlias
+from . import _utilities
+from . import outputs
+from ._inputs import *
+
+__all__ = ['RfaAccessRequestDestinationsArgs', 'RfaAccessRequestDestinations']
+
+@pulumi.input_type
+class RfaAccessRequestDestinationsArgs:
+    def __init__(__self__, *,
+                 destinations: pulumi.Input[Sequence[pulumi.Input['RfaAccessRequestDestinationsDestinationArgs']]],
+                 securable: pulumi.Input['RfaAccessRequestDestinationsSecurableArgs']):
+        """
+        The set of arguments for constructing a RfaAccessRequestDestinations resource.
+        :param pulumi.Input[Sequence[pulumi.Input['RfaAccessRequestDestinationsDestinationArgs']]] destinations: The access request destinations for the securable
+        :param pulumi.Input['RfaAccessRequestDestinationsSecurableArgs'] securable: The securable for which the access request destinations are being retrieved
+        """
+        pulumi.set(__self__, "destinations", destinations)
+        pulumi.set(__self__, "securable", securable)
+
+    @_builtins.property
+    @pulumi.getter
+    def destinations(self) -> pulumi.Input[Sequence[pulumi.Input['RfaAccessRequestDestinationsDestinationArgs']]]:
+        """
+        The access request destinations for the securable
+        """
+        return pulumi.get(self, "destinations")
+
+    @destinations.setter
+    def destinations(self, value: pulumi.Input[Sequence[pulumi.Input['RfaAccessRequestDestinationsDestinationArgs']]]):
+        pulumi.set(self, "destinations", value)
+
+    @_builtins.property
+    @pulumi.getter
+    def securable(self) -> pulumi.Input['RfaAccessRequestDestinationsSecurableArgs']:
+        """
+        The securable for which the access request destinations are being retrieved
+        """
+        return pulumi.get(self, "securable")
+
+    @securable.setter
+    def securable(self, value: pulumi.Input['RfaAccessRequestDestinationsSecurableArgs']):
+        pulumi.set(self, "securable", value)
+
+
+@pulumi.input_type
+class _RfaAccessRequestDestinationsState:
+    def __init__(__self__, *,
+                 are_any_destinations_hidden: Optional[pulumi.Input[_builtins.bool]] = None,
+                 destinations: Optional[pulumi.Input[Sequence[pulumi.Input['RfaAccessRequestDestinationsDestinationArgs']]]] = None,
+                 securable: Optional[pulumi.Input['RfaAccessRequestDestinationsSecurableArgs']] = None):
+        """
+        Input properties used for looking up and filtering RfaAccessRequestDestinations resources.
+        :param pulumi.Input[_builtins.bool] are_any_destinations_hidden: (boolean) - Indicates whether any destinations are hidden from the caller due to a lack of permissions.
+               This value is true if the caller does not have permission to see all destinations
+        :param pulumi.Input[Sequence[pulumi.Input['RfaAccessRequestDestinationsDestinationArgs']]] destinations: The access request destinations for the securable
+        :param pulumi.Input['RfaAccessRequestDestinationsSecurableArgs'] securable: The securable for which the access request destinations are being retrieved
+        """
+        if are_any_destinations_hidden is not None:
+            pulumi.set(__self__, "are_any_destinations_hidden", are_any_destinations_hidden)
+        if destinations is not None:
+            pulumi.set(__self__, "destinations", destinations)
+        if securable is not None:
+            pulumi.set(__self__, "securable", securable)
+
+    @_builtins.property
+    @pulumi.getter(name="areAnyDestinationsHidden")
+    def are_any_destinations_hidden(self) -> Optional[pulumi.Input[_builtins.bool]]:
+        """
+        (boolean) - Indicates whether any destinations are hidden from the caller due to a lack of permissions.
+        This value is true if the caller does not have permission to see all destinations
+        """
+        return pulumi.get(self, "are_any_destinations_hidden")
+
+    @are_any_destinations_hidden.setter
+    def are_any_destinations_hidden(self, value: Optional[pulumi.Input[_builtins.bool]]):
+        pulumi.set(self, "are_any_destinations_hidden", value)
+
+    @_builtins.property
+    @pulumi.getter
+    def destinations(self) -> Optional[pulumi.Input[Sequence[pulumi.Input['RfaAccessRequestDestinationsDestinationArgs']]]]:
+        """
+        The access request destinations for the securable
+        """
+        return pulumi.get(self, "destinations")
+
+    @destinations.setter
+    def destinations(self, value: Optional[pulumi.Input[Sequence[pulumi.Input['RfaAccessRequestDestinationsDestinationArgs']]]]):
+        pulumi.set(self, "destinations", value)
+
+    @_builtins.property
+    @pulumi.getter
+    def securable(self) -> Optional[pulumi.Input['RfaAccessRequestDestinationsSecurableArgs']]:
+        """
+        The securable for which the access request destinations are being retrieved
+        """
+        return pulumi.get(self, "securable")
+
+    @securable.setter
+    def securable(self, value: Optional[pulumi.Input['RfaAccessRequestDestinationsSecurableArgs']]):
+        pulumi.set(self, "securable", value)
+
+
+@pulumi.type_token("databricks:index/rfaAccessRequestDestinations:RfaAccessRequestDestinations")
+class RfaAccessRequestDestinations(pulumi.CustomResource):
+    @overload
+    def __init__(__self__,
+                 resource_name: str,
+                 opts: Optional[pulumi.ResourceOptions] = None,
+                 destinations: Optional[pulumi.Input[Sequence[pulumi.Input[Union['RfaAccessRequestDestinationsDestinationArgs', 'RfaAccessRequestDestinationsDestinationArgsDict']]]]] = None,
+                 securable: Optional[pulumi.Input[Union['RfaAccessRequestDestinationsSecurableArgs', 'RfaAccessRequestDestinationsSecurableArgsDict']]] = None,
+                 __props__=None):
+        """
+        [![Public Preview](https://img.shields.io/badge/Release_Stage-Public_Preview-yellowgreen)](https://docs.databricks.com/aws/en/release-notes/release-types)
+
+        Request for Access (RFA) access request destinations allow you to configure where notifications are sent when users request access to securable objects in Unity Catalog. This resource enables you to manage access request destinations for specific securable objects, such as tables, catalogs, or schemas.
+
+        When a user requests access to a securable object, notifications can be sent to various destinations including email addresses, Slack channels, or Microsoft Teams channels. This resource allows you to configure these destinations to ensure that the appropriate stakeholders are notified of access requests.
+
+        ## Example Usage
+
+        ```python
+        import pulumi
+        import pulumi_databricks as databricks
+
+        customer_data_table = databricks.RfaAccessRequestDestinations("customer_data_table",
+            destinations=[
+                {
+                    "destination_id": "john.doe@databricks.com",
+                    "destination_type": "EMAIL",
+                },
+                {
+                    "destination_id": "https://www.databricks.com/",
+                    "destination_type": "URL",
+                },
+                {
+                    "destination_id": "456e7890-e89b-12d3-a456-426614174001",
+                    "destination_type": "SLACK",
+                },
+                {
+                    "destination_id": "789e0123-e89b-12d3-a456-426614174002",
+                    "destination_type": "MICROSOFT_TEAMS",
+                },
+                {
+                    "destination_id": "012e3456-e89b-12d3-a456-426614174003",
+                    "destination_type": "GENERIC_WEBHOOK",
+                },
+            ],
+            securable={
+                "type": "SCHEMA",
+                "full_name": "main.customer_data",
+            },
+            are_any_destinations_hidden=False)
+        ```
+
+        ## Import
+
+        As of Pulumi v1.5, resources can be imported through configuration.
+
+        hcl
+
+        import {
+
+          id = ""
+
+          to = databricks_rfa_access_request_destinations.this
+
+        }
+
+        If you are using an older version of Pulumi, import the resource using the `pulumi import` command as follows:
+
+        ```sh
+        $ pulumi import databricks:index/rfaAccessRequestDestinations:RfaAccessRequestDestinations this ""
+        ```
+
+        :param str resource_name: The name of the resource.
+        :param pulumi.ResourceOptions opts: Options for the resource.
+        :param pulumi.Input[Sequence[pulumi.Input[Union['RfaAccessRequestDestinationsDestinationArgs', 'RfaAccessRequestDestinationsDestinationArgsDict']]]] destinations: The access request destinations for the securable
+        :param pulumi.Input[Union['RfaAccessRequestDestinationsSecurableArgs', 'RfaAccessRequestDestinationsSecurableArgsDict']] securable: The securable for which the access request destinations are being retrieved
+        """
+        ...
+    @overload
+    def __init__(__self__,
+                 resource_name: str,
+                 args: RfaAccessRequestDestinationsArgs,
+                 opts: Optional[pulumi.ResourceOptions] = None):
+        """
+        [![Public Preview](https://img.shields.io/badge/Release_Stage-Public_Preview-yellowgreen)](https://docs.databricks.com/aws/en/release-notes/release-types)
+
+        Request for Access (RFA) access request destinations allow you to configure where notifications are sent when users request access to securable objects in Unity Catalog. This resource enables you to manage access request destinations for specific securable objects, such as tables, catalogs, or schemas.
+
+        When a user requests access to a securable object, notifications can be sent to various destinations including email addresses, Slack channels, or Microsoft Teams channels. This resource allows you to configure these destinations to ensure that the appropriate stakeholders are notified of access requests.
+
+        ## Example Usage
+
+        ```python
+        import pulumi
+        import pulumi_databricks as databricks
+
+        customer_data_table = databricks.RfaAccessRequestDestinations("customer_data_table",
+            destinations=[
+                {
+                    "destination_id": "john.doe@databricks.com",
+                    "destination_type": "EMAIL",
+                },
+                {
+                    "destination_id": "https://www.databricks.com/",
+                    "destination_type": "URL",
+                },
+                {
+                    "destination_id": "456e7890-e89b-12d3-a456-426614174001",
+                    "destination_type": "SLACK",
+                },
+                {
+                    "destination_id": "789e0123-e89b-12d3-a456-426614174002",
+                    "destination_type": "MICROSOFT_TEAMS",
+                },
+                {
+                    "destination_id": "012e3456-e89b-12d3-a456-426614174003",
+                    "destination_type": "GENERIC_WEBHOOK",
+                },
+            ],
+            securable={
+                "type": "SCHEMA",
+                "full_name": "main.customer_data",
+            },
+            are_any_destinations_hidden=False)
+        ```
+
+        ## Import
+
+        As of Pulumi v1.5, resources can be imported through configuration.
+
+        hcl
+
+        import {
+
+          id = ""
+
+          to = databricks_rfa_access_request_destinations.this
+
+        }
+
+        If you are using an older version of Pulumi, import the resource using the `pulumi import` command as follows:
+
+        ```sh
+        $ pulumi import databricks:index/rfaAccessRequestDestinations:RfaAccessRequestDestinations this ""
+        ```
+
+        :param str resource_name: The name of the resource.
+        :param RfaAccessRequestDestinationsArgs args: The arguments to use to populate this resource's properties.
+        :param pulumi.ResourceOptions opts: Options for the resource.
+        """
+        ...
+    def __init__(__self__, resource_name: str, *args, **kwargs):
+        resource_args, opts = _utilities.get_resource_args_opts(RfaAccessRequestDestinationsArgs, pulumi.ResourceOptions, *args, **kwargs)
+        if resource_args is not None:
+            __self__._internal_init(resource_name, opts, **resource_args.__dict__)
+        else:
+            __self__._internal_init(resource_name, *args, **kwargs)
+
+    def _internal_init(__self__,
+                 resource_name: str,
+                 opts: Optional[pulumi.ResourceOptions] = None,
+                 destinations: Optional[pulumi.Input[Sequence[pulumi.Input[Union['RfaAccessRequestDestinationsDestinationArgs', 'RfaAccessRequestDestinationsDestinationArgsDict']]]]] = None,
+                 securable: Optional[pulumi.Input[Union['RfaAccessRequestDestinationsSecurableArgs', 'RfaAccessRequestDestinationsSecurableArgsDict']]] = None,
+                 __props__=None):
+        opts = pulumi.ResourceOptions.merge(_utilities.get_resource_opts_defaults(), opts)
+        if not isinstance(opts, pulumi.ResourceOptions):
+            raise TypeError('Expected resource options to be a ResourceOptions instance')
+        if opts.id is None:
+            if __props__ is not None:
+                raise TypeError('__props__ is only valid when passed in combination with a valid opts.id to get an existing resource')
+            __props__ = RfaAccessRequestDestinationsArgs.__new__(RfaAccessRequestDestinationsArgs)
+
+            if destinations is None and not opts.urn:
+                raise TypeError("Missing required property 'destinations'")
+            __props__.__dict__["destinations"] = destinations
+            if securable is None and not opts.urn:
+                raise TypeError("Missing required property 'securable'")
+            __props__.__dict__["securable"] = securable
+            __props__.__dict__["are_any_destinations_hidden"] = None
+        super(RfaAccessRequestDestinations, __self__).__init__(
+            'databricks:index/rfaAccessRequestDestinations:RfaAccessRequestDestinations',
+            resource_name,
+            __props__,
+            opts)
+
+    @staticmethod
+    def get(resource_name: str,
+            id: pulumi.Input[str],
+            opts: Optional[pulumi.ResourceOptions] = None,
+            are_any_destinations_hidden: Optional[pulumi.Input[_builtins.bool]] = None,
+            destinations: Optional[pulumi.Input[Sequence[pulumi.Input[Union['RfaAccessRequestDestinationsDestinationArgs', 'RfaAccessRequestDestinationsDestinationArgsDict']]]]] = None,
+            securable: Optional[pulumi.Input[Union['RfaAccessRequestDestinationsSecurableArgs', 'RfaAccessRequestDestinationsSecurableArgsDict']]] = None) -> 'RfaAccessRequestDestinations':
+        """
+        Get an existing RfaAccessRequestDestinations resource's state with the given name, id, and optional extra
+        properties used to qualify the lookup.
+
+        :param str resource_name: The unique name of the resulting resource.
+        :param pulumi.Input[str] id: The unique provider ID of the resource to lookup.
+        :param pulumi.ResourceOptions opts: Options for the resource.
+        :param pulumi.Input[_builtins.bool] are_any_destinations_hidden: (boolean) - Indicates whether any destinations are hidden from the caller due to a lack of permissions.
+               This value is true if the caller does not have permission to see all destinations
+        :param pulumi.Input[Sequence[pulumi.Input[Union['RfaAccessRequestDestinationsDestinationArgs', 'RfaAccessRequestDestinationsDestinationArgsDict']]]] destinations: The access request destinations for the securable
+        :param pulumi.Input[Union['RfaAccessRequestDestinationsSecurableArgs', 'RfaAccessRequestDestinationsSecurableArgsDict']] securable: The securable for which the access request destinations are being retrieved
+        """
+        opts = pulumi.ResourceOptions.merge(opts, pulumi.ResourceOptions(id=id))
+
+        __props__ = _RfaAccessRequestDestinationsState.__new__(_RfaAccessRequestDestinationsState)
+
+        __props__.__dict__["are_any_destinations_hidden"] = are_any_destinations_hidden
+        __props__.__dict__["destinations"] = destinations
+        __props__.__dict__["securable"] = securable
+        return RfaAccessRequestDestinations(resource_name, opts=opts, __props__=__props__)
+
+    @_builtins.property
+    @pulumi.getter(name="areAnyDestinationsHidden")
+    def are_any_destinations_hidden(self) -> pulumi.Output[_builtins.bool]:
+        """
+        (boolean) - Indicates whether any destinations are hidden from the caller due to a lack of permissions.
+        This value is true if the caller does not have permission to see all destinations
+        """
+        return pulumi.get(self, "are_any_destinations_hidden")
+
+    @_builtins.property
+    @pulumi.getter
+    def destinations(self) -> pulumi.Output[Sequence['outputs.RfaAccessRequestDestinationsDestination']]:
+        """
+        The access request destinations for the securable
+        """
+        return pulumi.get(self, "destinations")
+
+    @_builtins.property
+    @pulumi.getter
+    def securable(self) -> pulumi.Output['outputs.RfaAccessRequestDestinationsSecurable']:
+        """
+        The securable for which the access request destinations are being retrieved
+        """
+        return pulumi.get(self, "securable")
+

pulumi_databricks/schema.py

@@ -37,7 +37,7 @@ class SchemaArgs:
         :param pulumi.Input[_builtins.str] name: Name of Schema relative to parent catalog. Change forces creation of a new resource.
         :param pulumi.Input[_builtins.str] owner: Username/groupname/sp application_id of the schema owner.
         :param pulumi.Input[Mapping[str, pulumi.Input[_builtins.str]]] properties: Extensible Schema properties.
-        :param pulumi.Input[_builtins.str] storage_root: Managed location of the schema. Location in cloud storage where data for managed tables will be stored. If not specified, the location will default to the catalog root location. Change forces creation of a new resource.
+        :param pulumi.Input[_builtins.str] storage_root: Managed location of the schema. Location in cloud storage where data for managed tables will be stored.  If the URL contains special characters, such as space, `&`, etc., they should be percent-encoded (space > `%20`, etc.). If not specified, the location will default to the catalog root location. Change forces creation of a new resource.
         """
         pulumi.set(__self__, "catalog_name", catalog_name)
         if comment is not None:
@@ -154,7 +154,7 @@ class SchemaArgs:
     @pulumi.getter(name="storageRoot")
     def storage_root(self) -> Optional[pulumi.Input[_builtins.str]]:
         """
-        Managed location of the schema. Location in cloud storage where data for managed tables will be stored. If not specified, the location will default to the catalog root location. Change forces creation of a new resource.
+        Managed location of the schema. Location in cloud storage where data for managed tables will be stored.  If the URL contains special characters, such as space, `&`, etc., they should be percent-encoded (space > `%20`, etc.). If not specified, the location will default to the catalog root location. Change forces creation of a new resource.
         """
         return pulumi.get(self, "storage_root")
 
@@ -186,7 +186,7 @@ class _SchemaState:
         :param pulumi.Input[_builtins.str] owner: Username/groupname/sp application_id of the schema owner.
         :param pulumi.Input[Mapping[str, pulumi.Input[_builtins.str]]] properties: Extensible Schema properties.
         :param pulumi.Input[_builtins.str] schema_id: The unique identifier of the schema.
-        :param pulumi.Input[_builtins.str] storage_root: Managed location of the schema. Location in cloud storage where data for managed tables will be stored. If not specified, the location will default to the catalog root location. Change forces creation of a new resource.
+        :param pulumi.Input[_builtins.str] storage_root: Managed location of the schema. Location in cloud storage where data for managed tables will be stored.  If the URL contains special characters, such as space, `&`, etc., they should be percent-encoded (space > `%20`, etc.). If not specified, the location will default to the catalog root location. Change forces creation of a new resource.
         """
         if catalog_name is not None:
             pulumi.set(__self__, "catalog_name", catalog_name)
@@ -318,7 +318,7 @@ class _SchemaState:
     @pulumi.getter(name="storageRoot")
     def storage_root(self) -> Optional[pulumi.Input[_builtins.str]]:
         """
-        Managed location of the schema. Location in cloud storage where data for managed tables will be stored. If not specified, the location will default to the catalog root location. Change forces creation of a new resource.
+        Managed location of the schema. Location in cloud storage where data for managed tables will be stored.  If the URL contains special characters, such as space, `&`, etc., they should be percent-encoded (space > `%20`, etc.). If not specified, the location will default to the catalog root location. Change forces creation of a new resource.
         """
         return pulumi.get(self, "storage_root")
 
@@ -410,7 +410,7 @@ class Schema(pulumi.CustomResource):
         :param pulumi.Input[_builtins.str] name: Name of Schema relative to parent catalog. Change forces creation of a new resource.
         :param pulumi.Input[_builtins.str] owner: Username/groupname/sp application_id of the schema owner.
         :param pulumi.Input[Mapping[str, pulumi.Input[_builtins.str]]] properties: Extensible Schema properties.
-        :param pulumi.Input[_builtins.str] storage_root: Managed location of the schema. Location in cloud storage where data for managed tables will be stored. If not specified, the location will default to the catalog root location. Change forces creation of a new resource.
+        :param pulumi.Input[_builtins.str] storage_root: Managed location of the schema. Location in cloud storage where data for managed tables will be stored.  If the URL contains special characters, such as space, `&`, etc., they should be percent-encoded (space > `%20`, etc.). If not specified, the location will default to the catalog root location. Change forces creation of a new resource.
         """
         ...
     @overload
@@ -556,7 +556,7 @@ class Schema(pulumi.CustomResource):
         :param pulumi.Input[_builtins.str] owner: Username/groupname/sp application_id of the schema owner.
         :param pulumi.Input[Mapping[str, pulumi.Input[_builtins.str]]] properties: Extensible Schema properties.
         :param pulumi.Input[_builtins.str] schema_id: The unique identifier of the schema.
-        :param pulumi.Input[_builtins.str] storage_root: Managed location of the schema. Location in cloud storage where data for managed tables will be stored. If not specified, the location will default to the catalog root location. Change forces creation of a new resource.
+        :param pulumi.Input[_builtins.str] storage_root: Managed location of the schema. Location in cloud storage where data for managed tables will be stored.  If the URL contains special characters, such as space, `&`, etc., they should be percent-encoded (space > `%20`, etc.). If not specified, the location will default to the catalog root location. Change forces creation of a new resource.
         """
         opts = pulumi.ResourceOptions.merge(opts, pulumi.ResourceOptions(id=id))
 
@@ -647,7 +647,7 @@ class Schema(pulumi.CustomResource):
     @pulumi.getter(name="storageRoot")
     def storage_root(self) -> pulumi.Output[Optional[_builtins.str]]:
         """
-        Managed location of the schema. Location in cloud storage where data for managed tables will be stored. If not specified, the location will default to the catalog root location. Change forces creation of a new resource.
+        Managed location of the schema. Location in cloud storage where data for managed tables will be stored.  If the URL contains special characters, such as space, `&`, etc., they should be percent-encoded (space > `%20`, etc.). If not specified, the location will default to the catalog root location. Change forces creation of a new resource.
         """
         return pulumi.get(self, "storage_root")
 

pulumi_databricks/service_principal_federation_policy.py

@@ -28,8 +28,8 @@ class ServicePrincipalFederationPolicyArgs:
         """
         The set of arguments for constructing a ServicePrincipalFederationPolicy resource.
         :param pulumi.Input[_builtins.str] description: Description of the federation policy
-        :param pulumi.Input[_builtins.str] policy_id: (string) - The ID of the federation policy
-        :param pulumi.Input[_builtins.int] service_principal_id: (integer) - The service principal ID that this federation policy applies to. Only set for service principal federation policies
+        :param pulumi.Input[_builtins.str] policy_id: (string) - The ID of the federation policy. Output only
+        :param pulumi.Input[_builtins.int] service_principal_id: (integer) - The service principal ID that this federation policy applies to. Output only. Only set for service principal federation policies
         """
         if description is not None:
             pulumi.set(__self__, "description", description)
@@ -65,7 +65,7 @@ class ServicePrincipalFederationPolicyArgs:
     @pulumi.getter(name="policyId")
     def policy_id(self) -> Optional[pulumi.Input[_builtins.str]]:
         """
-        (string) - The ID of the federation policy
+        (string) - The ID of the federation policy. Output only
         """
         return pulumi.get(self, "policy_id")
 
@@ -77,7 +77,7 @@ class ServicePrincipalFederationPolicyArgs:
     @pulumi.getter(name="servicePrincipalId")
     def service_principal_id(self) -> Optional[pulumi.Input[_builtins.int]]:
         """
-        (integer) - The service principal ID that this federation policy applies to. Only set for service principal federation policies
+        (integer) - The service principal ID that this federation policy applies to. Output only. Only set for service principal federation policies
         """
         return pulumi.get(self, "service_principal_id")
 
@@ -107,8 +107,8 @@ class _ServicePrincipalFederationPolicyState:
                for Service Principal Federation Policies. Typically an output parameter, which does not need to be
                specified in create or update requests. If specified in a request, must match the value in the
                request URL
-        :param pulumi.Input[_builtins.str] policy_id: (string) - The ID of the federation policy
-        :param pulumi.Input[_builtins.int] service_principal_id: (integer) - The service principal ID that this federation policy applies to. Only set for service principal federation policies
+        :param pulumi.Input[_builtins.str] policy_id: (string) - The ID of the federation policy. Output only
+        :param pulumi.Input[_builtins.int] service_principal_id: (integer) - The service principal ID that this federation policy applies to. Output only. Only set for service principal federation policies
         :param pulumi.Input[_builtins.str] uid: (string) - Unique, immutable id of the federation policy
         :param pulumi.Input[_builtins.str] update_time: (string) - Last update time of the federation policy
         """
@@ -183,7 +183,7 @@ class _ServicePrincipalFederationPolicyState:
     @pulumi.getter(name="policyId")
     def policy_id(self) -> Optional[pulumi.Input[_builtins.str]]:
         """
-        (string) - The ID of the federation policy
+        (string) - The ID of the federation policy. Output only
         """
         return pulumi.get(self, "policy_id")
 
@@ -195,7 +195,7 @@ class _ServicePrincipalFederationPolicyState:
     @pulumi.getter(name="servicePrincipalId")
     def service_principal_id(self) -> Optional[pulumi.Input[_builtins.int]]:
         """
-        (integer) - The service principal ID that this federation policy applies to. Only set for service principal federation policies
+        (integer) - The service principal ID that this federation policy applies to. Output only. Only set for service principal federation policies
         """
         return pulumi.get(self, "service_principal_id")
 
@@ -240,12 +240,30 @@ class ServicePrincipalFederationPolicy(pulumi.CustomResource):
                  service_principal_id: Optional[pulumi.Input[_builtins.int]] = None,
                  __props__=None):
         """
+        [![GA](https://img.shields.io/badge/Release_Stage-GA-green)](https://docs.databricks.com/aws/en/release-notes/release-types)
+
         Service principal federation policies allow automated workloads running outside of Databricks to access Databricks APIs without the need for Databricks secrets. Your application (workload) authenticates to Databricks as a Databricks service principal using tokens issued by the workload runtime, for example Github Actions.
 
         A service principal federation policy is associated with a service principal in your Databricks account, and specifies:
         * The identity provider (or issuer) from which the service principal can authenticate.
         * The workload identity (or subject) that is permitted to authenticate as the Databricks service principal.
 
+        ## Example Usage
+
+        ```python
+        import pulumi
+        import pulumi_databricks as databricks
+
+        this = databricks.ServicePrincipalFederationPolicy("this",
+            service_principal_id=1234,
+            policy_id="my-policy",
+            oidc_policy={
+                "issuer": "https://myidp.example.com",
+                "subject_claim": "sub",
+                "subject": "subject-in-token-from-myidp",
+            })
+        ```
+
         ## Import
 
         As of Pulumi v1.5, resources can be imported through configuration.
@@ -263,14 +281,14 @@ class ServicePrincipalFederationPolicy(pulumi.CustomResource):
         If you are using an older version of Pulumi, import the resource using the `pulumi import` command as follows:
 
         ```sh
-        $ pulumi import databricks:index/servicePrincipalFederationPolicy:ServicePrincipalFederationPolicy databricks_service_principal_federation_policy "service_principal_id,policy_id"
+        $ pulumi import databricks:index/servicePrincipalFederationPolicy:ServicePrincipalFederationPolicy this "service_principal_id,policy_id"
         ```
 
         :param str resource_name: The name of the resource.
         :param pulumi.ResourceOptions opts: Options for the resource.
         :param pulumi.Input[_builtins.str] description: Description of the federation policy
-        :param pulumi.Input[_builtins.str] policy_id: (string) - The ID of the federation policy
-        :param pulumi.Input[_builtins.int] service_principal_id: (integer) - The service principal ID that this federation policy applies to. Only set for service principal federation policies
+        :param pulumi.Input[_builtins.str] policy_id: (string) - The ID of the federation policy. Output only
+        :param pulumi.Input[_builtins.int] service_principal_id: (integer) - The service principal ID that this federation policy applies to. Output only. Only set for service principal federation policies
         """
         ...
     @overload
@@ -279,12 +297,30 @@ class ServicePrincipalFederationPolicy(pulumi.CustomResource):
                  args: Optional[ServicePrincipalFederationPolicyArgs] = None,
                  opts: Optional[pulumi.ResourceOptions] = None):
         """
+        [![GA](https://img.shields.io/badge/Release_Stage-GA-green)](https://docs.databricks.com/aws/en/release-notes/release-types)
+
         Service principal federation policies allow automated workloads running outside of Databricks to access Databricks APIs without the need for Databricks secrets. Your application (workload) authenticates to Databricks as a Databricks service principal using tokens issued by the workload runtime, for example Github Actions.
 
         A service principal federation policy is associated with a service principal in your Databricks account, and specifies:
         * The identity provider (or issuer) from which the service principal can authenticate.
         * The workload identity (or subject) that is permitted to authenticate as the Databricks service principal.
 
+        ## Example Usage
+
+        ```python
+        import pulumi
+        import pulumi_databricks as databricks
+
+        this = databricks.ServicePrincipalFederationPolicy("this",
+            service_principal_id=1234,
+            policy_id="my-policy",
+            oidc_policy={
+                "issuer": "https://myidp.example.com",
+                "subject_claim": "sub",
+                "subject": "subject-in-token-from-myidp",
+            })
+        ```
+
         ## Import
 
         As of Pulumi v1.5, resources can be imported through configuration.
@@ -302,7 +338,7 @@ class ServicePrincipalFederationPolicy(pulumi.CustomResource):
         If you are using an older version of Pulumi, import the resource using the `pulumi import` command as follows:
 
         ```sh
-        $ pulumi import databricks:index/servicePrincipalFederationPolicy:ServicePrincipalFederationPolicy databricks_service_principal_federation_policy "service_principal_id,policy_id"
+        $ pulumi import databricks:index/servicePrincipalFederationPolicy:ServicePrincipalFederationPolicy this "service_principal_id,policy_id"
         ```
 
         :param str resource_name: The name of the resource.
@@ -374,8 +410,8 @@ class ServicePrincipalFederationPolicy(pulumi.CustomResource):
                for Service Principal Federation Policies. Typically an output parameter, which does not need to be
                specified in create or update requests. If specified in a request, must match the value in the
                request URL
-        :param pulumi.Input[_builtins.str] policy_id: (string) - The ID of the federation policy
-        :param pulumi.Input[_builtins.int] service_principal_id: (integer) - The service principal ID that this federation policy applies to. Only set for service principal federation policies
+        :param pulumi.Input[_builtins.str] policy_id: (string) - The ID of the federation policy. Output only
+        :param pulumi.Input[_builtins.int] service_principal_id: (integer) - The service principal ID that this federation policy applies to. Output only. Only set for service principal federation policies
         :param pulumi.Input[_builtins.str] uid: (string) - Unique, immutable id of the federation policy
         :param pulumi.Input[_builtins.str] update_time: (string) - Last update time of the federation policy
         """
@@ -431,7 +467,7 @@ class ServicePrincipalFederationPolicy(pulumi.CustomResource):
     @pulumi.getter(name="policyId")
     def policy_id(self) -> pulumi.Output[_builtins.str]:
         """
-        (string) - The ID of the federation policy
+        (string) - The ID of the federation policy. Output only
         """
         return pulumi.get(self, "policy_id")
 
@@ -439,7 +475,7 @@ class ServicePrincipalFederationPolicy(pulumi.CustomResource):
     @pulumi.getter(name="servicePrincipalId")
     def service_principal_id(self) -> pulumi.Output[_builtins.int]:
         """
-        (integer) - The service principal ID that this federation policy applies to. Only set for service principal federation policies
+        (integer) - The service principal ID that this federation policy applies to. Output only. Only set for service principal federation policies
         """
         return pulumi.get(self, "service_principal_id")