pulumi-databricks 1.77.0a1760375482__py3-none-any.whl → 1.79.0a1762839813__py3-none-any.whl

pulumi_databricks/git_credential.py

@@ -21,6 +21,7 @@ class GitCredentialArgs:
     def __init__(__self__, *,
                  git_provider: pulumi.Input[_builtins.str],
                  force: Optional[pulumi.Input[_builtins.bool]] = None,
+                 git_email: Optional[pulumi.Input[_builtins.str]] = None,
                  git_username: Optional[pulumi.Input[_builtins.str]] = None,
                  is_default_for_provider: Optional[pulumi.Input[_builtins.bool]] = None,
                  name: Optional[pulumi.Input[_builtins.str]] = None,
@@ -29,7 +30,8 @@ class GitCredentialArgs:
         The set of arguments for constructing a GitCredential resource.
         :param pulumi.Input[_builtins.str] git_provider: case insensitive name of the Git provider.  Following values are supported right now (could be a subject for a change, consult [Git Credentials API documentation](https://docs.databricks.com/dev-tools/api/latest/gitcredentials.html)): `gitHub`, `gitHubEnterprise`, `bitbucketCloud`, `bitbucketServer`, `azureDevOpsServices`, `gitLab`, `gitLabEnterpriseEdition`, `awsCodeCommit`, `azureDevOpsServicesAad`.
         :param pulumi.Input[_builtins.bool] force: specify if settings need to be enforced (i.e., to overwrite previously set credential for service principals).
-        :param pulumi.Input[_builtins.str] git_username: user name at Git provider.
+        :param pulumi.Input[_builtins.str] git_email: The email associated with your Git provider user account. Used for authentication with the remote repository and also sets the author & committer identity for commits.
+        :param pulumi.Input[_builtins.str] git_username: user name at Git provider.  For most Git providers it is only used to set the Git committer & author names for commits, however it may be required for authentication depending on your Git provider / token requirements.
         :param pulumi.Input[_builtins.bool] is_default_for_provider: boolean flag specifying if the credential is the default for the given provider type.
         :param pulumi.Input[_builtins.str] name: the name of the git credential, used for identification and ease of lookup.
         :param pulumi.Input[_builtins.str] personal_access_token: The personal access token used to authenticate to the corresponding Git provider. If value is not provided, it's sourced from the first environment variable of `GITHUB_TOKEN`, `GITLAB_TOKEN`, or `AZDO_PERSONAL_ACCESS_TOKEN`, that has a non-empty value.
@@ -37,6 +39,8 @@ class GitCredentialArgs:
         pulumi.set(__self__, "git_provider", git_provider)
         if force is not None:
             pulumi.set(__self__, "force", force)
+        if git_email is not None:
+            pulumi.set(__self__, "git_email", git_email)
         if git_username is not None:
             pulumi.set(__self__, "git_username", git_username)
         if is_default_for_provider is not None:
@@ -70,11 +74,23 @@ class GitCredentialArgs:
     def force(self, value: Optional[pulumi.Input[_builtins.bool]]):
         pulumi.set(self, "force", value)
 
+    @_builtins.property
+    @pulumi.getter(name="gitEmail")
+    def git_email(self) -> Optional[pulumi.Input[_builtins.str]]:
+        """
+        The email associated with your Git provider user account. Used for authentication with the remote repository and also sets the author & committer identity for commits.
+        """
+        return pulumi.get(self, "git_email")
+
+    @git_email.setter
+    def git_email(self, value: Optional[pulumi.Input[_builtins.str]]):
+        pulumi.set(self, "git_email", value)
+
     @_builtins.property
     @pulumi.getter(name="gitUsername")
     def git_username(self) -> Optional[pulumi.Input[_builtins.str]]:
         """
-        user name at Git provider.
+        user name at Git provider.  For most Git providers it is only used to set the Git committer & author names for commits, however it may be required for authentication depending on your Git provider / token requirements.
         """
         return pulumi.get(self, "git_username")
 
@@ -123,6 +139,7 @@ class GitCredentialArgs:
 class _GitCredentialState:
     def __init__(__self__, *,
                  force: Optional[pulumi.Input[_builtins.bool]] = None,
+                 git_email: Optional[pulumi.Input[_builtins.str]] = None,
                  git_provider: Optional[pulumi.Input[_builtins.str]] = None,
                  git_username: Optional[pulumi.Input[_builtins.str]] = None,
                  is_default_for_provider: Optional[pulumi.Input[_builtins.bool]] = None,
@@ -131,14 +148,17 @@ class _GitCredentialState:
         """
         Input properties used for looking up and filtering GitCredential resources.
         :param pulumi.Input[_builtins.bool] force: specify if settings need to be enforced (i.e., to overwrite previously set credential for service principals).
+        :param pulumi.Input[_builtins.str] git_email: The email associated with your Git provider user account. Used for authentication with the remote repository and also sets the author & committer identity for commits.
         :param pulumi.Input[_builtins.str] git_provider: case insensitive name of the Git provider.  Following values are supported right now (could be a subject for a change, consult [Git Credentials API documentation](https://docs.databricks.com/dev-tools/api/latest/gitcredentials.html)): `gitHub`, `gitHubEnterprise`, `bitbucketCloud`, `bitbucketServer`, `azureDevOpsServices`, `gitLab`, `gitLabEnterpriseEdition`, `awsCodeCommit`, `azureDevOpsServicesAad`.
-        :param pulumi.Input[_builtins.str] git_username: user name at Git provider.
+        :param pulumi.Input[_builtins.str] git_username: user name at Git provider.  For most Git providers it is only used to set the Git committer & author names for commits, however it may be required for authentication depending on your Git provider / token requirements.
         :param pulumi.Input[_builtins.bool] is_default_for_provider: boolean flag specifying if the credential is the default for the given provider type.
         :param pulumi.Input[_builtins.str] name: the name of the git credential, used for identification and ease of lookup.
         :param pulumi.Input[_builtins.str] personal_access_token: The personal access token used to authenticate to the corresponding Git provider. If value is not provided, it's sourced from the first environment variable of `GITHUB_TOKEN`, `GITLAB_TOKEN`, or `AZDO_PERSONAL_ACCESS_TOKEN`, that has a non-empty value.
         """
         if force is not None:
             pulumi.set(__self__, "force", force)
+        if git_email is not None:
+            pulumi.set(__self__, "git_email", git_email)
         if git_provider is not None:
             pulumi.set(__self__, "git_provider", git_provider)
         if git_username is not None:
@@ -162,6 +182,18 @@ class _GitCredentialState:
     def force(self, value: Optional[pulumi.Input[_builtins.bool]]):
         pulumi.set(self, "force", value)
 
+    @_builtins.property
+    @pulumi.getter(name="gitEmail")
+    def git_email(self) -> Optional[pulumi.Input[_builtins.str]]:
+        """
+        The email associated with your Git provider user account. Used for authentication with the remote repository and also sets the author & committer identity for commits.
+        """
+        return pulumi.get(self, "git_email")
+
+    @git_email.setter
+    def git_email(self, value: Optional[pulumi.Input[_builtins.str]]):
+        pulumi.set(self, "git_email", value)
+
     @_builtins.property
     @pulumi.getter(name="gitProvider")
     def git_provider(self) -> Optional[pulumi.Input[_builtins.str]]:
@@ -178,7 +210,7 @@ class _GitCredentialState:
     @pulumi.getter(name="gitUsername")
     def git_username(self) -> Optional[pulumi.Input[_builtins.str]]:
         """
-        user name at Git provider.
+        user name at Git provider.  For most Git providers it is only used to set the Git committer & author names for commits, however it may be required for authentication depending on your Git provider / token requirements.
         """
         return pulumi.get(self, "git_username")
 
@@ -230,6 +262,7 @@ class GitCredential(pulumi.CustomResource):
                  resource_name: str,
                  opts: Optional[pulumi.ResourceOptions] = None,
                  force: Optional[pulumi.Input[_builtins.bool]] = None,
+                 git_email: Optional[pulumi.Input[_builtins.str]] = None,
                  git_provider: Optional[pulumi.Input[_builtins.str]] = None,
                  git_username: Optional[pulumi.Input[_builtins.str]] = None,
                  is_default_for_provider: Optional[pulumi.Input[_builtins.bool]] = None,
@@ -299,8 +332,9 @@ class GitCredential(pulumi.CustomResource):
         :param str resource_name: The name of the resource.
         :param pulumi.ResourceOptions opts: Options for the resource.
         :param pulumi.Input[_builtins.bool] force: specify if settings need to be enforced (i.e., to overwrite previously set credential for service principals).
+        :param pulumi.Input[_builtins.str] git_email: The email associated with your Git provider user account. Used for authentication with the remote repository and also sets the author & committer identity for commits.
         :param pulumi.Input[_builtins.str] git_provider: case insensitive name of the Git provider.  Following values are supported right now (could be a subject for a change, consult [Git Credentials API documentation](https://docs.databricks.com/dev-tools/api/latest/gitcredentials.html)): `gitHub`, `gitHubEnterprise`, `bitbucketCloud`, `bitbucketServer`, `azureDevOpsServices`, `gitLab`, `gitLabEnterpriseEdition`, `awsCodeCommit`, `azureDevOpsServicesAad`.
-        :param pulumi.Input[_builtins.str] git_username: user name at Git provider.
+        :param pulumi.Input[_builtins.str] git_username: user name at Git provider.  For most Git providers it is only used to set the Git committer & author names for commits, however it may be required for authentication depending on your Git provider / token requirements.
         :param pulumi.Input[_builtins.bool] is_default_for_provider: boolean flag specifying if the credential is the default for the given provider type.
         :param pulumi.Input[_builtins.str] name: the name of the git credential, used for identification and ease of lookup.
         :param pulumi.Input[_builtins.str] personal_access_token: The personal access token used to authenticate to the corresponding Git provider. If value is not provided, it's sourced from the first environment variable of `GITHUB_TOKEN`, `GITLAB_TOKEN`, or `AZDO_PERSONAL_ACCESS_TOKEN`, that has a non-empty value.
@@ -387,6 +421,7 @@ class GitCredential(pulumi.CustomResource):
                  resource_name: str,
                  opts: Optional[pulumi.ResourceOptions] = None,
                  force: Optional[pulumi.Input[_builtins.bool]] = None,
+                 git_email: Optional[pulumi.Input[_builtins.str]] = None,
                  git_provider: Optional[pulumi.Input[_builtins.str]] = None,
                  git_username: Optional[pulumi.Input[_builtins.str]] = None,
                  is_default_for_provider: Optional[pulumi.Input[_builtins.bool]] = None,
@@ -402,6 +437,7 @@ class GitCredential(pulumi.CustomResource):
             __props__ = GitCredentialArgs.__new__(GitCredentialArgs)
 
             __props__.__dict__["force"] = force
+            __props__.__dict__["git_email"] = git_email
             if git_provider is None and not opts.urn:
                 raise TypeError("Missing required property 'git_provider'")
             __props__.__dict__["git_provider"] = git_provider
@@ -420,6 +456,7 @@ class GitCredential(pulumi.CustomResource):
             id: pulumi.Input[str],
             opts: Optional[pulumi.ResourceOptions] = None,
             force: Optional[pulumi.Input[_builtins.bool]] = None,
+            git_email: Optional[pulumi.Input[_builtins.str]] = None,
             git_provider: Optional[pulumi.Input[_builtins.str]] = None,
             git_username: Optional[pulumi.Input[_builtins.str]] = None,
             is_default_for_provider: Optional[pulumi.Input[_builtins.bool]] = None,
@@ -433,8 +470,9 @@ class GitCredential(pulumi.CustomResource):
         :param pulumi.Input[str] id: The unique provider ID of the resource to lookup.
         :param pulumi.ResourceOptions opts: Options for the resource.
         :param pulumi.Input[_builtins.bool] force: specify if settings need to be enforced (i.e., to overwrite previously set credential for service principals).
+        :param pulumi.Input[_builtins.str] git_email: The email associated with your Git provider user account. Used for authentication with the remote repository and also sets the author & committer identity for commits.
         :param pulumi.Input[_builtins.str] git_provider: case insensitive name of the Git provider.  Following values are supported right now (could be a subject for a change, consult [Git Credentials API documentation](https://docs.databricks.com/dev-tools/api/latest/gitcredentials.html)): `gitHub`, `gitHubEnterprise`, `bitbucketCloud`, `bitbucketServer`, `azureDevOpsServices`, `gitLab`, `gitLabEnterpriseEdition`, `awsCodeCommit`, `azureDevOpsServicesAad`.
-        :param pulumi.Input[_builtins.str] git_username: user name at Git provider.
+        :param pulumi.Input[_builtins.str] git_username: user name at Git provider.  For most Git providers it is only used to set the Git committer & author names for commits, however it may be required for authentication depending on your Git provider / token requirements.
         :param pulumi.Input[_builtins.bool] is_default_for_provider: boolean flag specifying if the credential is the default for the given provider type.
         :param pulumi.Input[_builtins.str] name: the name of the git credential, used for identification and ease of lookup.
         :param pulumi.Input[_builtins.str] personal_access_token: The personal access token used to authenticate to the corresponding Git provider. If value is not provided, it's sourced from the first environment variable of `GITHUB_TOKEN`, `GITLAB_TOKEN`, or `AZDO_PERSONAL_ACCESS_TOKEN`, that has a non-empty value.
@@ -444,6 +482,7 @@ class GitCredential(pulumi.CustomResource):
         __props__ = _GitCredentialState.__new__(_GitCredentialState)
 
         __props__.__dict__["force"] = force
+        __props__.__dict__["git_email"] = git_email
         __props__.__dict__["git_provider"] = git_provider
         __props__.__dict__["git_username"] = git_username
         __props__.__dict__["is_default_for_provider"] = is_default_for_provider
@@ -459,6 +498,14 @@ class GitCredential(pulumi.CustomResource):
         """
         return pulumi.get(self, "force")
 
+    @_builtins.property
+    @pulumi.getter(name="gitEmail")
+    def git_email(self) -> pulumi.Output[Optional[_builtins.str]]:
+        """
+        The email associated with your Git provider user account. Used for authentication with the remote repository and also sets the author & committer identity for commits.
+        """
+        return pulumi.get(self, "git_email")
+
     @_builtins.property
     @pulumi.getter(name="gitProvider")
     def git_provider(self) -> pulumi.Output[_builtins.str]:
@@ -471,7 +518,7 @@ class GitCredential(pulumi.CustomResource):
     @pulumi.getter(name="gitUsername")
     def git_username(self) -> pulumi.Output[Optional[_builtins.str]]:
         """
-        user name at Git provider.
+        user name at Git provider.  For most Git providers it is only used to set the Git committer & author names for commits, however it may be required for authentication depending on your Git provider / token requirements.
         """
         return pulumi.get(self, "git_username")
 

pulumi_databricks/group.py

@@ -34,12 +34,12 @@ class GroupArgs:
         :param pulumi.Input[_builtins.str] acl_principal_id: identifier for use in databricks_access_control_rule_set, e.g. `groups/Some Group`.
         :param pulumi.Input[_builtins.bool] allow_cluster_create: This is a field to allow the group to have cluster create privileges. More fine grained permissions could be assigned with Permissions and cluster_id argument. Everyone without `allow_cluster_create` argument set, but with permission to use Cluster Policy would be able to create clusters, but within boundaries of that specific policy.
         :param pulumi.Input[_builtins.bool] allow_instance_pool_create: This is a field to allow the group to have instance pool create privileges. More fine grained permissions could be assigned with Permissions and instance_pool_id argument.
-        :param pulumi.Input[_builtins.bool] databricks_sql_access: This is a field to allow the group to have access to [Databricks SQL](https://databricks.com/product/databricks-sql) feature in User Interface and through databricks_sql_endpoint.
+        :param pulumi.Input[_builtins.bool] databricks_sql_access: This is a field to allow the group to have access to [Databricks SQL](https://databricks.com/product/databricks-sql)  UI, [Databricks One](https://docs.databricks.com/aws/en/workspace/databricks-one#who-can-access-databricks-one) and through databricks_sql_endpoint.
         :param pulumi.Input[_builtins.str] display_name: This is the display name for the given group.
         :param pulumi.Input[_builtins.str] external_id: ID of the group in an external identity provider.
         :param pulumi.Input[_builtins.bool] force: Ignore `cannot create group: Group with name X already exists.` errors and implicitly import the specific group into Pulumi state, enforcing entitlements defined in the instance of resource. _This functionality is experimental_ and is designed to simplify corner cases, like Azure Active Directory synchronisation.
-        :param pulumi.Input[_builtins.bool] workspace_access: This is a field to allow the group to have access to a Databricks Workspace.
-        :param pulumi.Input[_builtins.bool] workspace_consume: This is a field to allow the group to have access to a Databricks Workspace as consumer, with limited access to workspace UI.  Couldn't be used with `workspace_access` or `databricks_sql_access`.
+        :param pulumi.Input[_builtins.bool] workspace_access: This is a field to allow the group to have access to a Databricks Workspace UI and [Databricks One](https://docs.databricks.com/aws/en/workspace/databricks-one#who-can-access-databricks-one).
+        :param pulumi.Input[_builtins.bool] workspace_consume: This is a field to allow the group to have access only to [Databricks One](https://docs.databricks.com/aws/en/workspace/databricks-one#who-can-access-databricks-one).  Couldn't be used with `workspace_access` or `databricks_sql_access`.
         """
         if acl_principal_id is not None:
             pulumi.set(__self__, "acl_principal_id", acl_principal_id)
@@ -102,7 +102,7 @@ class GroupArgs:
     @pulumi.getter(name="databricksSqlAccess")
     def databricks_sql_access(self) -> Optional[pulumi.Input[_builtins.bool]]:
         """
-        This is a field to allow the group to have access to [Databricks SQL](https://databricks.com/product/databricks-sql) feature in User Interface and through databricks_sql_endpoint.
+        This is a field to allow the group to have access to [Databricks SQL](https://databricks.com/product/databricks-sql)  UI, [Databricks One](https://docs.databricks.com/aws/en/workspace/databricks-one#who-can-access-databricks-one) and through databricks_sql_endpoint.
         """
         return pulumi.get(self, "databricks_sql_access")
 
@@ -159,7 +159,7 @@ class GroupArgs:
     @pulumi.getter(name="workspaceAccess")
     def workspace_access(self) -> Optional[pulumi.Input[_builtins.bool]]:
         """
-        This is a field to allow the group to have access to a Databricks Workspace.
+        This is a field to allow the group to have access to a Databricks Workspace UI and [Databricks One](https://docs.databricks.com/aws/en/workspace/databricks-one#who-can-access-databricks-one).
         """
         return pulumi.get(self, "workspace_access")
 
@@ -171,7 +171,7 @@ class GroupArgs:
     @pulumi.getter(name="workspaceConsume")
     def workspace_consume(self) -> Optional[pulumi.Input[_builtins.bool]]:
         """
-        This is a field to allow the group to have access to a Databricks Workspace as consumer, with limited access to workspace UI.  Couldn't be used with `workspace_access` or `databricks_sql_access`.
+        This is a field to allow the group to have access only to [Databricks One](https://docs.databricks.com/aws/en/workspace/databricks-one#who-can-access-databricks-one).  Couldn't be used with `workspace_access` or `databricks_sql_access`.
         """
         return pulumi.get(self, "workspace_consume")
 
@@ -198,12 +198,12 @@ class _GroupState:
         :param pulumi.Input[_builtins.str] acl_principal_id: identifier for use in databricks_access_control_rule_set, e.g. `groups/Some Group`.
         :param pulumi.Input[_builtins.bool] allow_cluster_create: This is a field to allow the group to have cluster create privileges. More fine grained permissions could be assigned with Permissions and cluster_id argument. Everyone without `allow_cluster_create` argument set, but with permission to use Cluster Policy would be able to create clusters, but within boundaries of that specific policy.
         :param pulumi.Input[_builtins.bool] allow_instance_pool_create: This is a field to allow the group to have instance pool create privileges. More fine grained permissions could be assigned with Permissions and instance_pool_id argument.
-        :param pulumi.Input[_builtins.bool] databricks_sql_access: This is a field to allow the group to have access to [Databricks SQL](https://databricks.com/product/databricks-sql) feature in User Interface and through databricks_sql_endpoint.
+        :param pulumi.Input[_builtins.bool] databricks_sql_access: This is a field to allow the group to have access to [Databricks SQL](https://databricks.com/product/databricks-sql)  UI, [Databricks One](https://docs.databricks.com/aws/en/workspace/databricks-one#who-can-access-databricks-one) and through databricks_sql_endpoint.
         :param pulumi.Input[_builtins.str] display_name: This is the display name for the given group.
         :param pulumi.Input[_builtins.str] external_id: ID of the group in an external identity provider.
         :param pulumi.Input[_builtins.bool] force: Ignore `cannot create group: Group with name X already exists.` errors and implicitly import the specific group into Pulumi state, enforcing entitlements defined in the instance of resource. _This functionality is experimental_ and is designed to simplify corner cases, like Azure Active Directory synchronisation.
-        :param pulumi.Input[_builtins.bool] workspace_access: This is a field to allow the group to have access to a Databricks Workspace.
-        :param pulumi.Input[_builtins.bool] workspace_consume: This is a field to allow the group to have access to a Databricks Workspace as consumer, with limited access to workspace UI.  Couldn't be used with `workspace_access` or `databricks_sql_access`.
+        :param pulumi.Input[_builtins.bool] workspace_access: This is a field to allow the group to have access to a Databricks Workspace UI and [Databricks One](https://docs.databricks.com/aws/en/workspace/databricks-one#who-can-access-databricks-one).
+        :param pulumi.Input[_builtins.bool] workspace_consume: This is a field to allow the group to have access only to [Databricks One](https://docs.databricks.com/aws/en/workspace/databricks-one#who-can-access-databricks-one).  Couldn't be used with `workspace_access` or `databricks_sql_access`.
         """
         if acl_principal_id is not None:
             pulumi.set(__self__, "acl_principal_id", acl_principal_id)
@@ -266,7 +266,7 @@ class _GroupState:
     @pulumi.getter(name="databricksSqlAccess")
     def databricks_sql_access(self) -> Optional[pulumi.Input[_builtins.bool]]:
         """
-        This is a field to allow the group to have access to [Databricks SQL](https://databricks.com/product/databricks-sql) feature in User Interface and through databricks_sql_endpoint.
+        This is a field to allow the group to have access to [Databricks SQL](https://databricks.com/product/databricks-sql)  UI, [Databricks One](https://docs.databricks.com/aws/en/workspace/databricks-one#who-can-access-databricks-one) and through databricks_sql_endpoint.
         """
         return pulumi.get(self, "databricks_sql_access")
 
@@ -323,7 +323,7 @@ class _GroupState:
     @pulumi.getter(name="workspaceAccess")
     def workspace_access(self) -> Optional[pulumi.Input[_builtins.bool]]:
         """
-        This is a field to allow the group to have access to a Databricks Workspace.
+        This is a field to allow the group to have access to a Databricks Workspace UI and [Databricks One](https://docs.databricks.com/aws/en/workspace/databricks-one#who-can-access-databricks-one).
         """
         return pulumi.get(self, "workspace_access")
 
@@ -335,7 +335,7 @@ class _GroupState:
     @pulumi.getter(name="workspaceConsume")
     def workspace_consume(self) -> Optional[pulumi.Input[_builtins.bool]]:
         """
-        This is a field to allow the group to have access to a Databricks Workspace as consumer, with limited access to workspace UI.  Couldn't be used with `workspace_access` or `databricks_sql_access`.
+        This is a field to allow the group to have access only to [Databricks One](https://docs.databricks.com/aws/en/workspace/databricks-one#who-can-access-databricks-one).  Couldn't be used with `workspace_access` or `databricks_sql_access`.
         """
         return pulumi.get(self, "workspace_consume")
 
@@ -453,12 +453,12 @@ class Group(pulumi.CustomResource):
         :param pulumi.Input[_builtins.str] acl_principal_id: identifier for use in databricks_access_control_rule_set, e.g. `groups/Some Group`.
         :param pulumi.Input[_builtins.bool] allow_cluster_create: This is a field to allow the group to have cluster create privileges. More fine grained permissions could be assigned with Permissions and cluster_id argument. Everyone without `allow_cluster_create` argument set, but with permission to use Cluster Policy would be able to create clusters, but within boundaries of that specific policy.
         :param pulumi.Input[_builtins.bool] allow_instance_pool_create: This is a field to allow the group to have instance pool create privileges. More fine grained permissions could be assigned with Permissions and instance_pool_id argument.
-        :param pulumi.Input[_builtins.bool] databricks_sql_access: This is a field to allow the group to have access to [Databricks SQL](https://databricks.com/product/databricks-sql) feature in User Interface and through databricks_sql_endpoint.
+        :param pulumi.Input[_builtins.bool] databricks_sql_access: This is a field to allow the group to have access to [Databricks SQL](https://databricks.com/product/databricks-sql)  UI, [Databricks One](https://docs.databricks.com/aws/en/workspace/databricks-one#who-can-access-databricks-one) and through databricks_sql_endpoint.
         :param pulumi.Input[_builtins.str] display_name: This is the display name for the given group.
         :param pulumi.Input[_builtins.str] external_id: ID of the group in an external identity provider.
         :param pulumi.Input[_builtins.bool] force: Ignore `cannot create group: Group with name X already exists.` errors and implicitly import the specific group into Pulumi state, enforcing entitlements defined in the instance of resource. _This functionality is experimental_ and is designed to simplify corner cases, like Azure Active Directory synchronisation.
-        :param pulumi.Input[_builtins.bool] workspace_access: This is a field to allow the group to have access to a Databricks Workspace.
-        :param pulumi.Input[_builtins.bool] workspace_consume: This is a field to allow the group to have access to a Databricks Workspace as consumer, with limited access to workspace UI.  Couldn't be used with `workspace_access` or `databricks_sql_access`.
+        :param pulumi.Input[_builtins.bool] workspace_access: This is a field to allow the group to have access to a Databricks Workspace UI and [Databricks One](https://docs.databricks.com/aws/en/workspace/databricks-one#who-can-access-databricks-one).
+        :param pulumi.Input[_builtins.bool] workspace_consume: This is a field to allow the group to have access only to [Databricks One](https://docs.databricks.com/aws/en/workspace/databricks-one#who-can-access-databricks-one).  Couldn't be used with `workspace_access` or `databricks_sql_access`.
         """
         ...
     @overload
@@ -627,12 +627,12 @@ class Group(pulumi.CustomResource):
         :param pulumi.Input[_builtins.str] acl_principal_id: identifier for use in databricks_access_control_rule_set, e.g. `groups/Some Group`.
         :param pulumi.Input[_builtins.bool] allow_cluster_create: This is a field to allow the group to have cluster create privileges. More fine grained permissions could be assigned with Permissions and cluster_id argument. Everyone without `allow_cluster_create` argument set, but with permission to use Cluster Policy would be able to create clusters, but within boundaries of that specific policy.
         :param pulumi.Input[_builtins.bool] allow_instance_pool_create: This is a field to allow the group to have instance pool create privileges. More fine grained permissions could be assigned with Permissions and instance_pool_id argument.
-        :param pulumi.Input[_builtins.bool] databricks_sql_access: This is a field to allow the group to have access to [Databricks SQL](https://databricks.com/product/databricks-sql) feature in User Interface and through databricks_sql_endpoint.
+        :param pulumi.Input[_builtins.bool] databricks_sql_access: This is a field to allow the group to have access to [Databricks SQL](https://databricks.com/product/databricks-sql)  UI, [Databricks One](https://docs.databricks.com/aws/en/workspace/databricks-one#who-can-access-databricks-one) and through databricks_sql_endpoint.
         :param pulumi.Input[_builtins.str] display_name: This is the display name for the given group.
         :param pulumi.Input[_builtins.str] external_id: ID of the group in an external identity provider.
         :param pulumi.Input[_builtins.bool] force: Ignore `cannot create group: Group with name X already exists.` errors and implicitly import the specific group into Pulumi state, enforcing entitlements defined in the instance of resource. _This functionality is experimental_ and is designed to simplify corner cases, like Azure Active Directory synchronisation.
-        :param pulumi.Input[_builtins.bool] workspace_access: This is a field to allow the group to have access to a Databricks Workspace.
-        :param pulumi.Input[_builtins.bool] workspace_consume: This is a field to allow the group to have access to a Databricks Workspace as consumer, with limited access to workspace UI.  Couldn't be used with `workspace_access` or `databricks_sql_access`.
+        :param pulumi.Input[_builtins.bool] workspace_access: This is a field to allow the group to have access to a Databricks Workspace UI and [Databricks One](https://docs.databricks.com/aws/en/workspace/databricks-one#who-can-access-databricks-one).
+        :param pulumi.Input[_builtins.bool] workspace_consume: This is a field to allow the group to have access only to [Databricks One](https://docs.databricks.com/aws/en/workspace/databricks-one#who-can-access-databricks-one).  Couldn't be used with `workspace_access` or `databricks_sql_access`.
         """
         opts = pulumi.ResourceOptions.merge(opts, pulumi.ResourceOptions(id=id))
 
@@ -678,7 +678,7 @@ class Group(pulumi.CustomResource):
     @pulumi.getter(name="databricksSqlAccess")
     def databricks_sql_access(self) -> pulumi.Output[Optional[_builtins.bool]]:
         """
-        This is a field to allow the group to have access to [Databricks SQL](https://databricks.com/product/databricks-sql) feature in User Interface and through databricks_sql_endpoint.
+        This is a field to allow the group to have access to [Databricks SQL](https://databricks.com/product/databricks-sql)  UI, [Databricks One](https://docs.databricks.com/aws/en/workspace/databricks-one#who-can-access-databricks-one) and through databricks_sql_endpoint.
         """
         return pulumi.get(self, "databricks_sql_access")
 
@@ -715,7 +715,7 @@ class Group(pulumi.CustomResource):
     @pulumi.getter(name="workspaceAccess")
     def workspace_access(self) -> pulumi.Output[Optional[_builtins.bool]]:
         """
-        This is a field to allow the group to have access to a Databricks Workspace.
+        This is a field to allow the group to have access to a Databricks Workspace UI and [Databricks One](https://docs.databricks.com/aws/en/workspace/databricks-one#who-can-access-databricks-one).
         """
         return pulumi.get(self, "workspace_access")
 
@@ -723,7 +723,7 @@ class Group(pulumi.CustomResource):
     @pulumi.getter(name="workspaceConsume")
     def workspace_consume(self) -> pulumi.Output[Optional[_builtins.bool]]:
         """
-        This is a field to allow the group to have access to a Databricks Workspace as consumer, with limited access to workspace UI.  Couldn't be used with `workspace_access` or `databricks_sql_access`.
+        This is a field to allow the group to have access only to [Databricks One](https://docs.databricks.com/aws/en/workspace/databricks-one#who-can-access-databricks-one).  Couldn't be used with `workspace_access` or `databricks_sql_access`.
         """
         return pulumi.get(self, "workspace_consume")
 

pulumi_databricks/instance_profile.py

@@ -177,62 +177,6 @@ class InstanceProfile(pulumi.CustomResource):
 
         > Please switch to StorageCredential with Unity Catalog to manage storage credentials, which provides a better and faster way for managing credential security.
 
-        ```python
-        import pulumi
-        import pulumi_aws as aws
-        import pulumi_databricks as databricks
-
-        config = pulumi.Config()
-        # Role that you've specified on https://accounts.cloud.databricks.com/#aws
-        crossaccount_role_name = config.require("crossaccountRoleName")
-        assume_role_for_ec2 = aws.iam.get_policy_document(statements=[{
-            "effect": "Allow",
-            "actions": ["sts:AssumeRole"],
-            "principals": [{
-                "identifiers": ["ec2.amazonaws.com"],
-                "type": "Service",
-            }],
-        }])
-        role_for_s3_access = aws.iam.Role("role_for_s3_access",
-            name="shared-ec2-role-for-s3",
-            description="Role for shared access",
-            assume_role_policy=assume_role_for_ec2.json)
-        pass_role_for_s3_access = aws.iam.get_policy_document_output(statements=[{
-            "effect": "Allow",
-            "actions": ["iam:PassRole"],
-            "resources": [role_for_s3_access.arn],
-        }])
-        pass_role_for_s3_access_policy = aws.iam.Policy("pass_role_for_s3_access",
-            name="shared-pass-role-for-s3-access",
-            path="/",
-            policy=pass_role_for_s3_access.json)
-        cross_account = aws.iam.RolePolicyAttachment("cross_account",
-            policy_arn=pass_role_for_s3_access_policy.arn,
-            role=crossaccount_role_name)
-        shared = aws.iam.InstanceProfile("shared",
-            name="shared-instance-profile",
-            role=role_for_s3_access.name)
-        shared_instance_profile = databricks.InstanceProfile("shared", instance_profile_arn=shared.arn)
-        latest = databricks.get_spark_version()
-        smallest = databricks.get_node_type(local_disk=True)
-        this = databricks.Cluster("this",
-            cluster_name="Shared Autoscaling",
-            spark_version=latest.id,
-            node_type_id=smallest.id,
-            autotermination_minutes=20,
-            autoscale={
-                "min_workers": 1,
-                "max_workers": 50,
-            },
-            aws_attributes={
-                "instance_profile_arn": shared_instance_profile.id,
-                "availability": "SPOT",
-                "zone_id": "us-east-1",
-                "first_on_demand": 1,
-                "spot_bid_price_percent": 100,
-            })
-        ```
-
         ## Usage with Cluster Policies
 
         It is advised to keep all common configurations in Cluster Policies to maintain control of the environments launched, so `Cluster` above could be replaced with `ClusterPolicy`:
@@ -267,41 +211,6 @@ class InstanceProfile(pulumi.CustomResource):
             instance_profile_id=this.id)
         ```
 
-        ## Usage with Databricks SQL serverless
-
-        When the instance profile ARN and its associated IAM role ARN don't match and the instance profile is intended for use with Databricks SQL serverless, the `iam_role_arn` parameter can be specified.
-
-        ```python
-        import pulumi
-        import pulumi_aws as aws
-        import pulumi_databricks as databricks
-
-        sql_serverless_assume_role = aws.iam.get_policy_document(statements=[{
-            "actions": ["sts:AssumeRole"],
-            "principals": [{
-                "type": "AWS",
-                "identifiers": ["arn:aws:iam::790110701330:role/serverless-customer-resource-role"],
-            }],
-            "conditions": [{
-                "test": "StringEquals",
-                "variable": "sts:ExternalID",
-                "values": [
-                    "databricks-serverless-<YOUR_WORKSPACE_ID1>",
-                    "databricks-serverless-<YOUR_WORKSPACE_ID2>",
-                ],
-            }],
-        }])
-        this = aws.iam.Role("this",
-            name="my-databricks-sql-serverless-role",
-            assume_role_policy=sql_serverless_assume_role.json)
-        this_instance_profile = aws.iam.InstanceProfile("this",
-            name="my-databricks-sql-serverless-instance-profile",
-            role=this.name)
-        this_instance_profile2 = databricks.InstanceProfile("this",
-            instance_profile_arn=this_instance_profile.arn,
-            iam_role_arn=this.arn)
-        ```
-
         ## Import
 
         The resource instance profile can be imported using the ARN of it
@@ -344,62 +253,6 @@ class InstanceProfile(pulumi.CustomResource):
 
         > Please switch to StorageCredential with Unity Catalog to manage storage credentials, which provides a better and faster way for managing credential security.
 
-        ```python
-        import pulumi
-        import pulumi_aws as aws
-        import pulumi_databricks as databricks
-
-        config = pulumi.Config()
-        # Role that you've specified on https://accounts.cloud.databricks.com/#aws
-        crossaccount_role_name = config.require("crossaccountRoleName")
-        assume_role_for_ec2 = aws.iam.get_policy_document(statements=[{
-            "effect": "Allow",
-            "actions": ["sts:AssumeRole"],
-            "principals": [{
-                "identifiers": ["ec2.amazonaws.com"],
-                "type": "Service",
-            }],
-        }])
-        role_for_s3_access = aws.iam.Role("role_for_s3_access",
-            name="shared-ec2-role-for-s3",
-            description="Role for shared access",
-            assume_role_policy=assume_role_for_ec2.json)
-        pass_role_for_s3_access = aws.iam.get_policy_document_output(statements=[{
-            "effect": "Allow",
-            "actions": ["iam:PassRole"],
-            "resources": [role_for_s3_access.arn],
-        }])
-        pass_role_for_s3_access_policy = aws.iam.Policy("pass_role_for_s3_access",
-            name="shared-pass-role-for-s3-access",
-            path="/",
-            policy=pass_role_for_s3_access.json)
-        cross_account = aws.iam.RolePolicyAttachment("cross_account",
-            policy_arn=pass_role_for_s3_access_policy.arn,
-            role=crossaccount_role_name)
-        shared = aws.iam.InstanceProfile("shared",
-            name="shared-instance-profile",
-            role=role_for_s3_access.name)
-        shared_instance_profile = databricks.InstanceProfile("shared", instance_profile_arn=shared.arn)
-        latest = databricks.get_spark_version()
-        smallest = databricks.get_node_type(local_disk=True)
-        this = databricks.Cluster("this",
-            cluster_name="Shared Autoscaling",
-            spark_version=latest.id,
-            node_type_id=smallest.id,
-            autotermination_minutes=20,
-            autoscale={
-                "min_workers": 1,
-                "max_workers": 50,
-            },
-            aws_attributes={
-                "instance_profile_arn": shared_instance_profile.id,
-                "availability": "SPOT",
-                "zone_id": "us-east-1",
-                "first_on_demand": 1,
-                "spot_bid_price_percent": 100,
-            })
-        ```
-
         ## Usage with Cluster Policies
 
         It is advised to keep all common configurations in Cluster Policies to maintain control of the environments launched, so `Cluster` above could be replaced with `ClusterPolicy`:
@@ -434,41 +287,6 @@ class InstanceProfile(pulumi.CustomResource):
             instance_profile_id=this.id)
         ```
 
-        ## Usage with Databricks SQL serverless
-
-        When the instance profile ARN and its associated IAM role ARN don't match and the instance profile is intended for use with Databricks SQL serverless, the `iam_role_arn` parameter can be specified.
-
-        ```python
-        import pulumi
-        import pulumi_aws as aws
-        import pulumi_databricks as databricks
-
-        sql_serverless_assume_role = aws.iam.get_policy_document(statements=[{
-            "actions": ["sts:AssumeRole"],
-            "principals": [{
-                "type": "AWS",
-                "identifiers": ["arn:aws:iam::790110701330:role/serverless-customer-resource-role"],
-            }],
-            "conditions": [{
-                "test": "StringEquals",
-                "variable": "sts:ExternalID",
-                "values": [
-                    "databricks-serverless-<YOUR_WORKSPACE_ID1>",
-                    "databricks-serverless-<YOUR_WORKSPACE_ID2>",
-                ],
-            }],
-        }])
-        this = aws.iam.Role("this",
-            name="my-databricks-sql-serverless-role",
-            assume_role_policy=sql_serverless_assume_role.json)
-        this_instance_profile = aws.iam.InstanceProfile("this",
-            name="my-databricks-sql-serverless-instance-profile",
-            role=this.name)
-        this_instance_profile2 = databricks.InstanceProfile("this",
-            instance_profile_arn=this_instance_profile.arn,
-            iam_role_arn=this.arn)
-        ```
-
         ## Import
 
         The resource instance profile can be imported using the ARN of it