PyPI - pulumi-gcp - Versions diffs - 7.0.0a1699651384__py3-none-any.whl → 7.1.0__py3-none-any.whl - Mend

pulumi-gcp 7.0.0a1699651384py3-none-any.whl → 7.1.0py3-none-any.whl

Files changed (678) hide show

pulumi_gcp/__init__.py +118 -0
pulumi_gcp/accesscontextmanager/_inputs.py +546 -71
pulumi_gcp/accesscontextmanager/access_level.py +18 -2
pulumi_gcp/accesscontextmanager/access_level_condition.py +57 -3
pulumi_gcp/accesscontextmanager/access_levels.py +18 -2
pulumi_gcp/accesscontextmanager/access_policy.py +18 -2
pulumi_gcp/accesscontextmanager/authorized_orgs_desc.py +18 -2
pulumi_gcp/accesscontextmanager/egress_policy.py +18 -2
pulumi_gcp/accesscontextmanager/gcp_user_access_binding.py +18 -2
pulumi_gcp/accesscontextmanager/ingress_policy.py +18 -2
pulumi_gcp/accesscontextmanager/outputs.py +643 -71
pulumi_gcp/accesscontextmanager/service_perimeter.py +18 -2
pulumi_gcp/accesscontextmanager/service_perimeter_egress_policy.py +18 -2
pulumi_gcp/accesscontextmanager/service_perimeter_ingress_policy.py +18 -2
pulumi_gcp/accesscontextmanager/service_perimeter_resource.py +18 -2
pulumi_gcp/accesscontextmanager/service_perimeters.py +18 -2
pulumi_gcp/activedirectory/domain.py +22 -10
pulumi_gcp/activedirectory/domain_trust.py +18 -2
pulumi_gcp/activedirectory/peering.py +4 -8
pulumi_gcp/alloydb/__init__.py +1 -0
pulumi_gcp/alloydb/_inputs.py +93 -0
pulumi_gcp/alloydb/backup.py +22 -10
pulumi_gcp/alloydb/cluster.py +283 -11
pulumi_gcp/alloydb/instance.py +241 -40
pulumi_gcp/alloydb/outputs.py +130 -0
pulumi_gcp/alloydb/user.py +609 -0
pulumi_gcp/apigateway/api.py +22 -10
pulumi_gcp/apigateway/api_config.py +22 -10
pulumi_gcp/apigateway/gateway.py +22 -10
pulumi_gcp/apigee/addons_config.py +18 -2
pulumi_gcp/apigee/endpoint_attachment.py +18 -2
pulumi_gcp/apigee/env_group.py +18 -2
pulumi_gcp/apigee/env_group_attachment.py +18 -2
pulumi_gcp/apigee/env_keystore.py +18 -2
pulumi_gcp/apigee/env_references.py +18 -2
pulumi_gcp/apigee/environment.py +96 -5
pulumi_gcp/apigee/flowhook.py +18 -2
pulumi_gcp/apigee/instance.py +18 -2
pulumi_gcp/apigee/instance_attachment.py +18 -2
pulumi_gcp/apigee/keystores_aliases_key_cert_file.py +18 -2
pulumi_gcp/apigee/keystores_aliases_pkcs12.py +18 -2
pulumi_gcp/apigee/keystores_aliases_self_signed_cert.py +18 -2
pulumi_gcp/apigee/nat_address.py +18 -2
pulumi_gcp/apigee/organization.py +18 -2
pulumi_gcp/apigee/sharedflow.py +18 -2
pulumi_gcp/apigee/sharedflow_deployment.py +18 -2
pulumi_gcp/apigee/sync_authorization.py +18 -2
pulumi_gcp/apigee/target_server.py +18 -2
pulumi_gcp/appengine/application.py +20 -4
pulumi_gcp/appengine/application_url_dispatch_rules.py +18 -2
pulumi_gcp/appengine/domain_mapping.py +18 -2
pulumi_gcp/appengine/engine_split_traffic.py +18 -2
pulumi_gcp/appengine/firewall_rule.py +18 -2
pulumi_gcp/appengine/flexible_app_version.py +18 -2
pulumi_gcp/appengine/service_network_settings.py +18 -2
pulumi_gcp/appengine/standard_app_version.py +18 -2
pulumi_gcp/artifactregistry/_inputs.py +4 -4
pulumi_gcp/artifactregistry/outputs.py +4 -4
pulumi_gcp/artifactregistry/repository.py +24 -12
pulumi_gcp/artifactregistry/vpcsc_config.py +18 -2
pulumi_gcp/assuredworkloads/_inputs.py +178 -4
pulumi_gcp/assuredworkloads/outputs.py +217 -5
pulumi_gcp/assuredworkloads/workload.py +474 -63
pulumi_gcp/backupdisasterrecovery/__init__.py +1 -0
pulumi_gcp/backupdisasterrecovery/get_management_server.py +152 -0
pulumi_gcp/backupdisasterrecovery/management_server.py +18 -2
pulumi_gcp/backupdisasterrecovery/outputs.py +40 -0
pulumi_gcp/beyondcorp/app_connection.py +22 -10
pulumi_gcp/beyondcorp/app_connector.py +22 -10
pulumi_gcp/beyondcorp/app_gateway.py +22 -10
pulumi_gcp/biglake/catalog.py +18 -2
pulumi_gcp/biglake/database.py +18 -2
pulumi_gcp/biglake/table.py +18 -2
pulumi_gcp/bigquery/__init__.py +1 -0
pulumi_gcp/bigquery/_inputs.py +94 -8
pulumi_gcp/bigquery/app_profile.py +18 -2
pulumi_gcp/bigquery/bi_reservation.py +18 -2
pulumi_gcp/bigquery/capacity_commitment.py +25 -9
pulumi_gcp/bigquery/connection.py +56 -2
pulumi_gcp/bigquery/data_transfer_config.py +18 -2
pulumi_gcp/bigquery/dataset.py +22 -10
pulumi_gcp/bigquery/dataset_iam_binding.py +10 -38
pulumi_gcp/bigquery/dataset_iam_member.py +10 -38
pulumi_gcp/bigquery/dataset_iam_policy.py +10 -38
pulumi_gcp/bigquery/get_dataset.py +315 -0
pulumi_gcp/bigquery/job.py +26 -10
pulumi_gcp/bigquery/outputs.py +275 -9
pulumi_gcp/bigquery/reservation.py +18 -2
pulumi_gcp/bigquery/reservation_assignment.py +18 -2
pulumi_gcp/bigquery/routine.py +18 -2
pulumi_gcp/bigquery/table.py +171 -17
pulumi_gcp/bigqueryanalyticshub/data_exchange.py +18 -2
pulumi_gcp/bigqueryanalyticshub/listing.py +18 -2
pulumi_gcp/bigquerydatapolicy/data_policy.py +18 -2
pulumi_gcp/bigtable/instance.py +30 -10
pulumi_gcp/bigtable/instance_iam_binding.py +12 -20
pulumi_gcp/bigtable/instance_iam_member.py +12 -20
pulumi_gcp/bigtable/instance_iam_policy.py +12 -20
pulumi_gcp/bigtable/table.py +18 -6
pulumi_gcp/bigtable/table_iam_binding.py +12 -20
pulumi_gcp/bigtable/table_iam_member.py +12 -20
pulumi_gcp/bigtable/table_iam_policy.py +12 -20
pulumi_gcp/billing/account_iam_binding.py +12 -20
pulumi_gcp/billing/account_iam_member.py +12 -20
pulumi_gcp/billing/account_iam_policy.py +12 -20
pulumi_gcp/billing/budget.py +18 -2
pulumi_gcp/billing/project_info.py +18 -2
pulumi_gcp/billing/sub_account.py +18 -2
pulumi_gcp/binaryauthorization/attestor.py +18 -2
pulumi_gcp/binaryauthorization/policy.py +18 -2
pulumi_gcp/certificateauthority/authority.py +22 -10
pulumi_gcp/certificateauthority/ca_pool.py +22 -10
pulumi_gcp/certificateauthority/certificate.py +22 -10
pulumi_gcp/certificateauthority/certificate_template.py +22 -10
pulumi_gcp/certificatemanager/certificate.py +223 -31
pulumi_gcp/certificatemanager/certificate_issuance_config.py +22 -10
pulumi_gcp/certificatemanager/certificate_map.py +22 -10
pulumi_gcp/certificatemanager/certificate_map_entry.py +22 -10
pulumi_gcp/certificatemanager/dns_authorization.py +22 -10
pulumi_gcp/certificatemanager/trust_config.py +22 -10
pulumi_gcp/cloudasset/folder_feed.py +18 -2
pulumi_gcp/cloudasset/organization_feed.py +18 -2
pulumi_gcp/cloudasset/project_feed.py +18 -2
pulumi_gcp/cloudbuild/bitbucket_server_config.py +18 -2
pulumi_gcp/cloudbuild/trigger.py +18 -2
pulumi_gcp/cloudbuild/worker_pool.py +18 -2
pulumi_gcp/cloudbuildv2/connection.py +18 -2
pulumi_gcp/cloudbuildv2/repository.py +18 -2
pulumi_gcp/clouddeploy/delivery_pipeline.py +22 -10
pulumi_gcp/clouddeploy/target.py +22 -10
pulumi_gcp/cloudfunctions/function.py +26 -14
pulumi_gcp/cloudfunctions/get_function.py +3 -0
pulumi_gcp/cloudfunctionsv2/function.py +22 -10
pulumi_gcp/cloudidentity/__init__.py +1 -0
pulumi_gcp/cloudidentity/_inputs.py +119 -0
pulumi_gcp/cloudidentity/get_group_lookup.py +128 -0
pulumi_gcp/cloudidentity/group.py +50 -2
pulumi_gcp/cloudidentity/group_membership.py +18 -2
pulumi_gcp/cloudidentity/outputs.py +156 -0
pulumi_gcp/cloudids/endpoint.py +18 -2
pulumi_gcp/cloudrun/_inputs.py +12 -0
pulumi_gcp/cloudrun/domain_mapping.py +18 -2
pulumi_gcp/cloudrun/outputs.py +12 -0
pulumi_gcp/cloudrun/service.py +18 -2
pulumi_gcp/cloudrunv2/__init__.py +2 -0
pulumi_gcp/cloudrunv2/get_job.py +394 -0
pulumi_gcp/cloudrunv2/get_service.py +454 -0
pulumi_gcp/cloudrunv2/job.py +40 -27
pulumi_gcp/cloudrunv2/outputs.py +1687 -0
pulumi_gcp/cloudrunv2/service.py +40 -27
pulumi_gcp/cloudscheduler/job.py +18 -2
pulumi_gcp/cloudtasks/queue.py +18 -2
pulumi_gcp/composer/_inputs.py +17 -0
pulumi_gcp/composer/environment.py +68 -5
pulumi_gcp/composer/get_environment.py +13 -3
pulumi_gcp/composer/outputs.py +26 -0
pulumi_gcp/compute/__init__.py +2 -0
pulumi_gcp/compute/_inputs.py +158 -4
pulumi_gcp/compute/address.py +38 -18
pulumi_gcp/compute/attached_disk.py +18 -2
pulumi_gcp/compute/autoscaler.py +18 -2
pulumi_gcp/compute/backend_bucket.py +18 -2
pulumi_gcp/compute/backend_service.py +32 -16
pulumi_gcp/compute/disk.py +22 -10
pulumi_gcp/compute/disk_resource_policy_attachment.py +18 -2
pulumi_gcp/compute/external_vpn_gateway.py +22 -10
pulumi_gcp/compute/firewall.py +18 -2
pulumi_gcp/compute/firewall_policy_association.py +18 -2
pulumi_gcp/compute/firewall_policy_rule.py +18 -2
pulumi_gcp/compute/forwarding_rule.py +377 -276
pulumi_gcp/compute/get_disk.py +3 -0
pulumi_gcp/compute/get_forwarding_rule.py +11 -1
pulumi_gcp/compute/get_image.py +3 -0
pulumi_gcp/compute/get_network.py +14 -1
pulumi_gcp/compute/get_networks.py +130 -0
pulumi_gcp/compute/get_subnetwork.py +14 -1
pulumi_gcp/compute/global_address.py +18 -2
pulumi_gcp/compute/global_forwarding_rule.py +127 -108
pulumi_gcp/compute/global_network_endpoint.py +18 -2
pulumi_gcp/compute/global_network_endpoint_group.py +18 -2
pulumi_gcp/compute/ha_vpn_gateway.py +18 -2
pulumi_gcp/compute/health_check.py +18 -2
pulumi_gcp/compute/http_health_check.py +18 -2
pulumi_gcp/compute/https_health_check.py +18 -2
pulumi_gcp/compute/image.py +22 -10
pulumi_gcp/compute/instance.py +44 -36
pulumi_gcp/compute/instance_group.py +24 -8
pulumi_gcp/compute/instance_group_manager.py +26 -10
pulumi_gcp/compute/instance_group_named_port.py +18 -2
pulumi_gcp/compute/instance_settings.py +387 -0
pulumi_gcp/compute/instance_template.py +29 -21
pulumi_gcp/compute/interconnect_attachment.py +18 -2
pulumi_gcp/compute/machine_image.py +18 -2
pulumi_gcp/compute/managed_ssl_certificate.py +18 -2
pulumi_gcp/compute/manged_ssl_certificate.py +18 -2
pulumi_gcp/compute/network.py +18 -2
pulumi_gcp/compute/network_attachment.py +156 -2
pulumi_gcp/compute/network_edge_security_service.py +18 -2
pulumi_gcp/compute/network_endpoint.py +18 -2
pulumi_gcp/compute/network_endpoint_group.py +32 -16
pulumi_gcp/compute/network_endpoint_list.py +18 -2
pulumi_gcp/compute/network_firewall_policy.py +18 -2
pulumi_gcp/compute/network_firewall_policy_association.py +18 -2
pulumi_gcp/compute/network_firewall_policy_rule.py +18 -2
pulumi_gcp/compute/network_peering.py +20 -4
pulumi_gcp/compute/network_peering_routes_config.py +18 -2
pulumi_gcp/compute/node_group.py +129 -2
pulumi_gcp/compute/node_template.py +18 -2
pulumi_gcp/compute/organization_security_policy.py +18 -2
pulumi_gcp/compute/organization_security_policy_association.py +18 -2
pulumi_gcp/compute/organization_security_policy_rule.py +18 -2
pulumi_gcp/compute/outputs.py +230 -7
pulumi_gcp/compute/packet_mirroring.py +18 -2
pulumi_gcp/compute/per_instance_config.py +18 -2
pulumi_gcp/compute/project_default_network_tier.py +20 -4
pulumi_gcp/compute/project_metadata.py +20 -4
pulumi_gcp/compute/project_metadata_item.py +20 -4
pulumi_gcp/compute/public_advertised_prefix.py +18 -2
pulumi_gcp/compute/public_delegated_prefix.py +18 -2
pulumi_gcp/compute/region_autoscaler.py +18 -2
pulumi_gcp/compute/region_backend_service.py +18 -2
pulumi_gcp/compute/region_commitment.py +18 -2
pulumi_gcp/compute/region_disk.py +22 -10
pulumi_gcp/compute/region_disk_resource_policy_attachment.py +18 -2
pulumi_gcp/compute/region_health_check.py +18 -2
pulumi_gcp/compute/region_instance_group_manager.py +20 -4
pulumi_gcp/compute/region_instance_template.py +29 -21
pulumi_gcp/compute/region_network_endpoint_group.py +18 -2
pulumi_gcp/compute/region_network_firewall_policy.py +18 -2
pulumi_gcp/compute/region_network_firewall_policy_association.py +18 -2
pulumi_gcp/compute/region_network_firewall_policy_rule.py +18 -2
pulumi_gcp/compute/region_per_instance_config.py +18 -2
pulumi_gcp/compute/region_security_policy.py +18 -2
pulumi_gcp/compute/region_security_policy_rule.py +18 -2
pulumi_gcp/compute/region_ssl_certificate.py +18 -2
pulumi_gcp/compute/region_ssl_policy.py +18 -2
pulumi_gcp/compute/region_target_http_proxy.py +18 -2
pulumi_gcp/compute/region_target_https_proxy.py +18 -2
pulumi_gcp/compute/region_target_tcp_proxy.py +18 -2
pulumi_gcp/compute/region_url_map.py +18 -2
pulumi_gcp/compute/reservation.py +18 -2
pulumi_gcp/compute/resource_policy.py +18 -2
pulumi_gcp/compute/route.py +18 -2
pulumi_gcp/compute/router.py +18 -2
pulumi_gcp/compute/router_interface.py +22 -6
pulumi_gcp/compute/router_nat.py +18 -2
pulumi_gcp/compute/router_peer.py +18 -2
pulumi_gcp/compute/security_policy.py +52 -4
pulumi_gcp/compute/security_scan_config.py +18 -2
pulumi_gcp/compute/service_attachment.py +18 -2
pulumi_gcp/compute/shared_vpc_host_project.py +20 -4
pulumi_gcp/compute/shared_vpc_service_project.py +20 -4
pulumi_gcp/compute/snapshot.py +22 -10
pulumi_gcp/compute/ssl_certificate.py +18 -2
pulumi_gcp/compute/ssl_policy.py +18 -2
pulumi_gcp/compute/subnetwork.py +109 -2
pulumi_gcp/compute/target_grpc_proxy.py +18 -2
pulumi_gcp/compute/target_http_proxy.py +18 -2
pulumi_gcp/compute/target_https_proxy.py +181 -16
pulumi_gcp/compute/target_instance.py +18 -2
pulumi_gcp/compute/target_pool.py +18 -2
pulumi_gcp/compute/target_ssl_proxy.py +18 -2
pulumi_gcp/compute/target_tcp_proxy.py +18 -2
pulumi_gcp/compute/url_map.py +18 -2
pulumi_gcp/compute/vpn_gateway.py +18 -2
pulumi_gcp/compute/vpn_tunnel.py +18 -2
pulumi_gcp/config/vars.py +12 -0
pulumi_gcp/container/_inputs.py +299 -54
pulumi_gcp/container/attached_cluster.py +18 -2
pulumi_gcp/container/aws_cluster.py +24 -2
pulumi_gcp/container/aws_node_pool.py +18 -2
pulumi_gcp/container/azure_client.py +18 -2
pulumi_gcp/container/azure_cluster.py +24 -2
pulumi_gcp/container/azure_node_pool.py +18 -2
pulumi_gcp/container/cluster.py +92 -29
pulumi_gcp/container/get_cluster.py +11 -1
pulumi_gcp/container/node_pool.py +22 -6
pulumi_gcp/container/outputs.py +384 -52
pulumi_gcp/containeranalysis/note.py +18 -2
pulumi_gcp/containeranalysis/occurence.py +18 -2
pulumi_gcp/databasemigrationservice/__init__.py +1 -0
pulumi_gcp/databasemigrationservice/_inputs.py +465 -0
pulumi_gcp/databasemigrationservice/connection_profile.py +122 -12
pulumi_gcp/databasemigrationservice/outputs.py +466 -0
pulumi_gcp/databasemigrationservice/private_connection.py +672 -0
pulumi_gcp/datacatalog/entry.py +18 -2
pulumi_gcp/datacatalog/entry_group.py +18 -2
pulumi_gcp/datacatalog/policy_tag.py +18 -2
pulumi_gcp/datacatalog/tag.py +18 -2
pulumi_gcp/datacatalog/tag_template.py +18 -2
pulumi_gcp/datacatalog/taxonomy.py +18 -2
pulumi_gcp/dataflow/job.py +24 -12
pulumi_gcp/dataflow/pipeline.py +18 -2
pulumi_gcp/dataform/_inputs.py +78 -21
pulumi_gcp/dataform/outputs.py +86 -20
pulumi_gcp/dataform/repository.py +140 -9
pulumi_gcp/dataform/repository_release_config.py +18 -2
pulumi_gcp/dataform/repository_workflow_config.py +20 -4
pulumi_gcp/datafusion/instance.py +22 -10
pulumi_gcp/dataloss/prevention_deidentify_template.py +18 -2
pulumi_gcp/dataloss/prevention_inspect_template.py +18 -2
pulumi_gcp/dataloss/prevention_job_trigger.py +18 -2
pulumi_gcp/dataloss/prevention_stored_info_type.py +18 -2
pulumi_gcp/dataplex/asset.py +22 -10
pulumi_gcp/dataplex/datascan.py +22 -10
pulumi_gcp/dataplex/lake.py +22 -10
pulumi_gcp/dataplex/task.py +22 -10
pulumi_gcp/dataplex/zone.py +22 -10
pulumi_gcp/dataproc/_inputs.py +148 -0
pulumi_gcp/dataproc/autoscaling_policy.py +18 -2
pulumi_gcp/dataproc/cluster.py +2 -2
pulumi_gcp/dataproc/cluster_iam_binding.py +12 -20
pulumi_gcp/dataproc/cluster_iam_member.py +12 -20
pulumi_gcp/dataproc/cluster_iam_policy.py +12 -20
pulumi_gcp/dataproc/job.py +20 -8
pulumi_gcp/dataproc/job_iam_binding.py +12 -20
pulumi_gcp/dataproc/job_iam_member.py +12 -20
pulumi_gcp/dataproc/job_iam_policy.py +12 -20
pulumi_gcp/dataproc/metastore_federation.py +22 -10
pulumi_gcp/dataproc/metastore_service.py +22 -10
pulumi_gcp/dataproc/outputs.py +175 -0
pulumi_gcp/dataproc/workflow_template.py +18 -2
pulumi_gcp/datastore/data_store_index.py +18 -2
pulumi_gcp/datastream/connection_profile.py +22 -10
pulumi_gcp/datastream/private_connection.py +22 -10
pulumi_gcp/datastream/stream.py +22 -10
pulumi_gcp/deploymentmanager/deployment.py +18 -2
pulumi_gcp/diagflow/_inputs.py +626 -4
pulumi_gcp/diagflow/agent.py +18 -2
pulumi_gcp/diagflow/cx_agent.py +288 -21
pulumi_gcp/diagflow/cx_entity_type.py +18 -2
pulumi_gcp/diagflow/cx_environment.py +18 -2
pulumi_gcp/diagflow/cx_flow.py +309 -4
pulumi_gcp/diagflow/cx_intent.py +165 -10
pulumi_gcp/diagflow/cx_page.py +109 -4
pulumi_gcp/diagflow/cx_security_settings.py +18 -2
pulumi_gcp/diagflow/cx_test_case.py +18 -2
pulumi_gcp/diagflow/cx_version.py +18 -2
pulumi_gcp/diagflow/cx_webhook.py +18 -2
pulumi_gcp/diagflow/entity_type.py +18 -2
pulumi_gcp/diagflow/fulfillment.py +18 -2
pulumi_gcp/diagflow/intent.py +18 -2
pulumi_gcp/diagflow/outputs.py +722 -5
pulumi_gcp/dns/get_keys.py +16 -2
pulumi_gcp/dns/managed_zone.py +22 -10
pulumi_gcp/dns/policy.py +18 -2
pulumi_gcp/dns/record_set.py +24 -8
pulumi_gcp/dns/response_policy.py +18 -2
pulumi_gcp/dns/response_policy_rule.py +18 -2
pulumi_gcp/edgecontainer/__init__.py +12 -0
pulumi_gcp/edgecontainer/_inputs.py +1171 -0
pulumi_gcp/edgecontainer/cluster.py +1539 -0
pulumi_gcp/edgecontainer/node_pool.py +1062 -0
pulumi_gcp/edgecontainer/outputs.py +1204 -0
pulumi_gcp/edgecontainer/vpn_connection.py +918 -0
pulumi_gcp/edgenetwork/network.py +18 -2
pulumi_gcp/edgenetwork/subnet.py +18 -2
pulumi_gcp/essentialcontacts/contact.py +18 -2
pulumi_gcp/essentialcontacts/document_ai_processor.py +18 -2
pulumi_gcp/essentialcontacts/document_ai_processor_default_version.py +18 -2
pulumi_gcp/essentialcontacts/document_ai_warehouse_document_schema.py +18 -2
pulumi_gcp/eventarc/channel.py +18 -2
pulumi_gcp/eventarc/google_channel_config.py +18 -2
pulumi_gcp/eventarc/trigger.py +22 -10
pulumi_gcp/filestore/backup.py +22 -10
pulumi_gcp/filestore/instance.py +22 -10
pulumi_gcp/filestore/snapshot.py +22 -10
pulumi_gcp/firebase/__init__.py +1 -0
pulumi_gcp/firebase/_inputs.py +878 -0
pulumi_gcp/firebase/android_app.py +18 -2
pulumi_gcp/firebase/apple_app.py +18 -2
pulumi_gcp/firebase/database_instance.py +18 -2
pulumi_gcp/firebase/extensions_instance.py +18 -2
pulumi_gcp/firebase/hosting_channel.py +22 -10
pulumi_gcp/firebase/hosting_custom_domain.py +1274 -0
pulumi_gcp/firebase/hosting_release.py +18 -2
pulumi_gcp/firebase/hosting_site.py +18 -2
pulumi_gcp/firebase/hosting_version.py +18 -2
pulumi_gcp/firebase/outputs.py +905 -0
pulumi_gcp/firebase/project.py +18 -2
pulumi_gcp/firebase/storage_bucket.py +18 -2
pulumi_gcp/firebase/web_app.py +18 -2
pulumi_gcp/firebaserules/release.py +18 -2
pulumi_gcp/firebaserules/ruleset.py +18 -2
pulumi_gcp/firestore/__init__.py +1 -0
pulumi_gcp/firestore/_inputs.py +35 -2
pulumi_gcp/firestore/backup_schedule.py +547 -0
pulumi_gcp/firestore/database.py +24 -4
pulumi_gcp/firestore/document.py +22 -2
pulumi_gcp/firestore/field.py +27 -13
pulumi_gcp/firestore/index.py +140 -21
pulumi_gcp/firestore/outputs.py +31 -2
pulumi_gcp/folder/access_approval_settings.py +18 -2
pulumi_gcp/folder/iam_audit_config.py +10 -58
pulumi_gcp/folder/iam_member.py +10 -58
pulumi_gcp/folder/iam_policy.py +10 -58
pulumi_gcp/folder/organization_policy.py +22 -6
pulumi_gcp/gkebackup/backup_plan.py +22 -10
pulumi_gcp/gkebackup/restore_plan.py +22 -10
pulumi_gcp/gkebackup/restore_plan_iam_binding.py +18 -2
pulumi_gcp/gkebackup/restore_plan_iam_member.py +18 -2
pulumi_gcp/gkebackup/restore_plan_iam_policy.py +18 -2
pulumi_gcp/gkehub/__init__.py +1 -0
pulumi_gcp/gkehub/_inputs.py +431 -0
pulumi_gcp/gkehub/feature.py +76 -10
pulumi_gcp/gkehub/feature_membership.py +22 -2
pulumi_gcp/gkehub/fleet.py +432 -0
pulumi_gcp/gkehub/get_membership_iam_policy.py +24 -3
pulumi_gcp/gkehub/membership.py +120 -16
pulumi_gcp/gkehub/membership_binding.py +22 -10
pulumi_gcp/gkehub/membership_iam_binding.py +67 -0
pulumi_gcp/gkehub/membership_iam_member.py +67 -0
pulumi_gcp/gkehub/membership_iam_policy.py +67 -0
pulumi_gcp/gkehub/membership_rbac_role_binding.py +18 -2
pulumi_gcp/gkehub/namespace.py +22 -10
pulumi_gcp/gkehub/outputs.py +432 -1
pulumi_gcp/gkehub/scope.py +22 -10
pulumi_gcp/gkehub/scope_rbac_role_binding.py +22 -10
pulumi_gcp/gkeonprem/_inputs.py +17 -31
pulumi_gcp/gkeonprem/bare_metal_admin_cluster.py +148 -132
pulumi_gcp/gkeonprem/bare_metal_cluster.py +260 -246
pulumi_gcp/gkeonprem/bare_metal_node_pool.py +30 -18
pulumi_gcp/gkeonprem/outputs.py +17 -31
pulumi_gcp/gkeonprem/v_mware_cluster.py +287 -230
pulumi_gcp/gkeonprem/v_mware_node_pool.py +30 -18
pulumi_gcp/healthcare/consent_store.py +22 -10
pulumi_gcp/healthcare/dataset.py +18 -2
pulumi_gcp/healthcare/dataset_iam_binding.py +10 -38
pulumi_gcp/healthcare/dataset_iam_member.py +10 -38
pulumi_gcp/healthcare/dataset_iam_policy.py +10 -38
pulumi_gcp/healthcare/dicom_store.py +22 -10
pulumi_gcp/healthcare/dicom_store_iam_binding.py +10 -30
pulumi_gcp/healthcare/dicom_store_iam_member.py +10 -30
pulumi_gcp/healthcare/dicom_store_iam_policy.py +10 -30
pulumi_gcp/healthcare/fhir_store.py +22 -10
pulumi_gcp/healthcare/fhir_store_iam_binding.py +10 -30
pulumi_gcp/healthcare/fhir_store_iam_member.py +10 -30
pulumi_gcp/healthcare/fhir_store_iam_policy.py +10 -30
pulumi_gcp/healthcare/hl7_store.py +22 -10
pulumi_gcp/healthcare/hl7_store_iam_binding.py +10 -30
pulumi_gcp/healthcare/hl7_store_iam_member.py +10 -30
pulumi_gcp/healthcare/hl7_store_iam_policy.py +10 -30
pulumi_gcp/iam/_inputs.py +20 -0
pulumi_gcp/iam/access_boundary_policy.py +18 -2
pulumi_gcp/iam/deny_policy.py +18 -2
pulumi_gcp/iam/outputs.py +20 -0
pulumi_gcp/iam/workforce_pool.py +18 -2
pulumi_gcp/iam/workforce_pool_provider.py +18 -2
pulumi_gcp/iam/workload_identity_pool.py +18 -2
pulumi_gcp/iam/workload_identity_pool_provider.py +18 -2
pulumi_gcp/iap/brand.py +18 -2
pulumi_gcp/iap/client.py +18 -2
pulumi_gcp/identityplatform/_inputs.py +92 -0
pulumi_gcp/identityplatform/config.py +91 -5
pulumi_gcp/identityplatform/default_supported_idp_config.py +18 -2
pulumi_gcp/identityplatform/inbound_saml_config.py +18 -2
pulumi_gcp/identityplatform/oauth_idp_config.py +18 -2
pulumi_gcp/identityplatform/outputs.py +129 -0
pulumi_gcp/identityplatform/project_default_config.py +18 -2
pulumi_gcp/identityplatform/tenant.py +18 -2
pulumi_gcp/identityplatform/tenant_default_supported_idp_config.py +18 -2
pulumi_gcp/identityplatform/tenant_inbound_saml_config.py +18 -2
pulumi_gcp/identityplatform/tenant_oauth_idp_config.py +18 -2
pulumi_gcp/integrationconnectors/__init__.py +10 -0
pulumi_gcp/integrationconnectors/_inputs.py +2518 -0
pulumi_gcp/integrationconnectors/connection.py +1921 -0
pulumi_gcp/integrationconnectors/outputs.py +2780 -0
pulumi_gcp/kms/crypto_key.py +22 -10
pulumi_gcp/kms/crypto_key_iam_binding.py +10 -30
pulumi_gcp/kms/crypto_key_iam_member.py +10 -30
pulumi_gcp/kms/crypto_key_iam_policy.py +10 -30
pulumi_gcp/kms/crypto_key_version.py +18 -2
pulumi_gcp/kms/key_ring.py +18 -2
pulumi_gcp/kms/key_ring_iam_binding.py +10 -30
pulumi_gcp/kms/key_ring_iam_member.py +10 -30
pulumi_gcp/kms/key_ring_iam_policy.py +10 -30
pulumi_gcp/kms/key_ring_import_job.py +18 -2
pulumi_gcp/logging/_inputs.py +160 -0
pulumi_gcp/logging/billing_account_bucket_config.py +61 -26
pulumi_gcp/logging/billing_account_exclusion.py +20 -4
pulumi_gcp/logging/billing_account_sink.py +20 -4
pulumi_gcp/logging/folder_bucket_config.py +75 -4
pulumi_gcp/logging/folder_exclusion.py +20 -4
pulumi_gcp/logging/folder_sink.py +20 -4
pulumi_gcp/logging/linked_dataset.py +18 -2
pulumi_gcp/logging/log_view.py +18 -2
pulumi_gcp/logging/metric.py +18 -2
pulumi_gcp/logging/organization_bucket_config.py +75 -4
pulumi_gcp/logging/organization_exclusion.py +20 -4
pulumi_gcp/logging/organization_sink.py +20 -4
pulumi_gcp/logging/outputs.py +196 -0
pulumi_gcp/logging/project_bucket_config.py +59 -134
pulumi_gcp/logging/project_exclusion.py +20 -4
pulumi_gcp/logging/project_sink.py +95 -18
pulumi_gcp/looker/instance.py +18 -2
pulumi_gcp/memcache/instance.py +22 -10
pulumi_gcp/ml/engine_model.py +22 -10
pulumi_gcp/monitoring/_inputs.py +127 -13
pulumi_gcp/monitoring/alert_policy.py +64 -2
pulumi_gcp/monitoring/custom_service.py +18 -2
pulumi_gcp/monitoring/dashboard.py +18 -2
pulumi_gcp/monitoring/generic_service.py +18 -2
pulumi_gcp/monitoring/group.py +18 -2
pulumi_gcp/monitoring/metric_descriptor.py +18 -2
pulumi_gcp/monitoring/monitored_project.py +18 -2
pulumi_gcp/monitoring/notification_channel.py +18 -2
pulumi_gcp/monitoring/outputs.py +158 -13
pulumi_gcp/monitoring/slo.py +18 -2
pulumi_gcp/monitoring/uptime_check_config.py +92 -9
pulumi_gcp/networkconnectivity/__init__.py +1 -0
pulumi_gcp/networkconnectivity/_inputs.py +185 -0
pulumi_gcp/networkconnectivity/hub.py +22 -10
pulumi_gcp/networkconnectivity/outputs.py +189 -0
pulumi_gcp/networkconnectivity/policy_based_route.py +1003 -0
pulumi_gcp/networkconnectivity/service_connection_policy.py +22 -10
pulumi_gcp/networkconnectivity/spoke.py +22 -10
pulumi_gcp/networkmanagement/connectivity_test.py +22 -10
pulumi_gcp/networksecurity/address_group.py +22 -10
pulumi_gcp/networksecurity/authorization_policy.py +22 -10
pulumi_gcp/networksecurity/client_tls_policy.py +22 -10
pulumi_gcp/networksecurity/gateway_security_policy.py +18 -2
pulumi_gcp/networksecurity/gateway_security_policy_rule.py +18 -2
pulumi_gcp/networksecurity/server_tls_policy.py +92 -10
pulumi_gcp/networksecurity/tls_inspection_policy.py +18 -2
pulumi_gcp/networksecurity/url_list.py +18 -2
pulumi_gcp/networkservices/edge_cache_keyset.py +22 -10
pulumi_gcp/networkservices/edge_cache_origin.py +22 -10
pulumi_gcp/networkservices/edge_cache_service.py +22 -10
pulumi_gcp/networkservices/endpoint_policy.py +22 -10
pulumi_gcp/networkservices/gateway.py +22 -10
pulumi_gcp/networkservices/grpc_route.py +22 -10
pulumi_gcp/networkservices/http_route.py +22 -10
pulumi_gcp/networkservices/mesh.py +22 -10
pulumi_gcp/networkservices/service_binding.py +22 -10
pulumi_gcp/networkservices/tcp_route.py +22 -10
pulumi_gcp/networkservices/tls_route.py +18 -2
pulumi_gcp/notebooks/environment.py +18 -2
pulumi_gcp/notebooks/instance.py +22 -10
pulumi_gcp/notebooks/location.py +18 -2
pulumi_gcp/notebooks/runtime.py +18 -2
pulumi_gcp/organizations/access_approval_settings.py +18 -2
pulumi_gcp/organizations/folder.py +22 -6
pulumi_gcp/organizations/iam_member.py +10 -58
pulumi_gcp/organizations/iam_policy.py +10 -58
pulumi_gcp/organizations/policy.py +22 -4
pulumi_gcp/organizations/project.py +24 -12
pulumi_gcp/orgpolicy/custom_constraint.py +50 -22
pulumi_gcp/orgpolicy/policy.py +18 -2
pulumi_gcp/osconfig/guest_policies.py +18 -2
pulumi_gcp/osconfig/os_policy_assignment.py +18 -2
pulumi_gcp/osconfig/patch_deployment.py +18 -2
pulumi_gcp/oslogin/ssh_public_key.py +18 -2
pulumi_gcp/projects/access_approval_settings.py +18 -2
pulumi_gcp/projects/api_key.py +18 -2
pulumi_gcp/projects/iam_audit_config.py +10 -58
pulumi_gcp/projects/iam_binding.py +10 -58
pulumi_gcp/projects/iam_custom_role.py +18 -2
pulumi_gcp/projects/iam_member.py +10 -58
pulumi_gcp/projects/iam_policy.py +10 -58
pulumi_gcp/projects/organization_policy.py +24 -8
pulumi_gcp/projects/service.py +22 -4
pulumi_gcp/projects/usage_export_bucket.py +20 -4
pulumi_gcp/provider.py +60 -0
pulumi_gcp/pubsub/__init__.py +4 -0
pulumi_gcp/pubsub/_inputs.py +80 -0
pulumi_gcp/pubsub/get_schema_iam_policy.py +147 -0
pulumi_gcp/pubsub/lite_reservation.py +18 -2
pulumi_gcp/pubsub/lite_subscription.py +18 -2
pulumi_gcp/pubsub/lite_topic.py +18 -2
pulumi_gcp/pubsub/outputs.py +56 -0
pulumi_gcp/pubsub/schema.py +18 -2
pulumi_gcp/pubsub/schema_iam_binding.py +601 -0
pulumi_gcp/pubsub/schema_iam_member.py +601 -0
pulumi_gcp/pubsub/schema_iam_policy.py +523 -0
pulumi_gcp/pubsub/subscription.py +22 -10
pulumi_gcp/pubsub/subscription_iam_binding.py +12 -20
pulumi_gcp/pubsub/subscription_iam_member.py +12 -20
pulumi_gcp/pubsub/subscription_iam_policy.py +12 -20
pulumi_gcp/pubsub/topic.py +36 -17
pulumi_gcp/recaptcha/enterprise_key.py +22 -10
pulumi_gcp/redis/cluster.py +42 -18
pulumi_gcp/redis/instance.py +22 -58
pulumi_gcp/resourcemanager/lien.py +18 -2
pulumi_gcp/runtimeconfig/config.py +26 -6
pulumi_gcp/runtimeconfig/variable.py +26 -6
pulumi_gcp/secretmanager/__init__.py +1 -0
pulumi_gcp/secretmanager/get_secrets.py +133 -0
pulumi_gcp/secretmanager/outputs.py +354 -0
pulumi_gcp/secretmanager/secret.py +36 -10
pulumi_gcp/secretmanager/secret_version.py +18 -2
pulumi_gcp/securitycenter/folder_custom_module.py +18 -2
pulumi_gcp/securitycenter/instance_iam_binding.py +18 -2
pulumi_gcp/securitycenter/instance_iam_member.py +18 -2
pulumi_gcp/securitycenter/instance_iam_policy.py +18 -2
pulumi_gcp/securitycenter/mute_config.py +18 -2
pulumi_gcp/securitycenter/notification_config.py +18 -2
pulumi_gcp/securitycenter/organization_custom_module.py +18 -2
pulumi_gcp/securitycenter/project_custom_module.py +18 -2
pulumi_gcp/securitycenter/source.py +18 -2
pulumi_gcp/securitycenter/source_iam_binding.py +18 -2
pulumi_gcp/securitycenter/source_iam_member.py +18 -2
pulumi_gcp/securitycenter/source_iam_policy.py +18 -2
pulumi_gcp/serviceaccount/account.py +20 -4
pulumi_gcp/serviceaccount/iam_binding.py +2 -30
pulumi_gcp/serviceaccount/iam_member.py +2 -30
pulumi_gcp/serviceaccount/iam_policy.py +2 -30
pulumi_gcp/servicedirectory/endpoint.py +18 -2
pulumi_gcp/servicedirectory/namespace.py +22 -10
pulumi_gcp/servicedirectory/service.py +18 -2
pulumi_gcp/servicenetworking/connection.py +22 -6
pulumi_gcp/servicenetworking/peered_dns_domain.py +18 -6
pulumi_gcp/serviceusage/consumer_quota_override.py +18 -2
pulumi_gcp/sourcerepo/repository.py +18 -2
pulumi_gcp/spanner/_inputs.py +142 -0
pulumi_gcp/spanner/database.py +18 -2
pulumi_gcp/spanner/database_iam_binding.py +10 -26
pulumi_gcp/spanner/database_iam_member.py +10 -26
pulumi_gcp/spanner/database_iam_policy.py +10 -26
pulumi_gcp/spanner/get_instance.py +12 -1
pulumi_gcp/spanner/instance.py +99 -10
pulumi_gcp/spanner/instance_iam_binding.py +10 -26
pulumi_gcp/spanner/instance_iam_member.py +10 -26
pulumi_gcp/spanner/instance_iam_policy.py +10 -26
pulumi_gcp/spanner/outputs.py +236 -0
pulumi_gcp/sql/_inputs.py +27 -7
pulumi_gcp/sql/database.py +18 -2
pulumi_gcp/sql/database_instance.py +24 -8
pulumi_gcp/sql/outputs.py +41 -9
pulumi_gcp/sql/source_representation_instance.py +25 -9
pulumi_gcp/sql/user.py +38 -8
pulumi_gcp/storage/_inputs.py +59 -1
pulumi_gcp/storage/bucket.py +69 -6
pulumi_gcp/storage/bucket_access_control.py +18 -2
pulumi_gcp/storage/bucket_object.py +47 -0
pulumi_gcp/storage/default_object_access_control.py +18 -2
pulumi_gcp/storage/get_bucket.py +11 -1
pulumi_gcp/storage/get_bucket_object.py +11 -1
pulumi_gcp/storage/get_bucket_object_content.py +11 -1
pulumi_gcp/storage/hmac_key.py +18 -2
pulumi_gcp/storage/insights_report_config.py +18 -2
pulumi_gcp/storage/notification.py +20 -4
pulumi_gcp/storage/object_access_control.py +18 -2
pulumi_gcp/storage/outputs.py +129 -2
pulumi_gcp/storage/transfer_agent_pool.py +18 -2
pulumi_gcp/storage/transfer_job.py +20 -4
pulumi_gcp/tags/location_tag_binding.py +35 -19
pulumi_gcp/tags/tag_binding.py +18 -2
pulumi_gcp/tags/tag_key.py +18 -2
pulumi_gcp/tags/tag_value.py +18 -2
pulumi_gcp/tpu/_inputs.py +450 -0
pulumi_gcp/tpu/node.py +22 -10
pulumi_gcp/tpu/outputs.py +477 -0
pulumi_gcp/tpu/v2_vm.py +906 -38
pulumi_gcp/vertex/_inputs.py +39 -0
pulumi_gcp/vertex/ai_dataset.py +4 -8
pulumi_gcp/vertex/ai_endpoint.py +22 -10
pulumi_gcp/vertex/ai_feature_store.py +22 -10
pulumi_gcp/vertex/ai_feature_store_entity_type.py +22 -10
pulumi_gcp/vertex/ai_feature_store_entity_type_feature.py +22 -10
pulumi_gcp/vertex/ai_index.py +22 -10
pulumi_gcp/vertex/ai_index_endpoint.py +116 -10
pulumi_gcp/vertex/ai_metadata_store.py +18 -2
pulumi_gcp/vertex/ai_tensorboard.py +22 -10
pulumi_gcp/vertex/outputs.py +50 -0
pulumi_gcp/vmwareengine/cluster.py +18 -2
pulumi_gcp/vmwareengine/network.py +18 -2
pulumi_gcp/vmwareengine/private_cloud.py +18 -2
pulumi_gcp/vpcaccess/connector.py +18 -2
pulumi_gcp/workflows/workflow.py +159 -11
pulumi_gcp/workstations/_inputs.py +23 -0
pulumi_gcp/workstations/outputs.py +19 -0
pulumi_gcp/workstations/workstation.py +22 -10
pulumi_gcp/workstations/workstation_cluster.py +142 -10
pulumi_gcp/workstations/workstation_config.py +24 -12
{pulumi_gcp-7.0.0a1699651384.dist-info → pulumi_gcp-7.1.0.dist-info}/METADATA +1 -1
{pulumi_gcp-7.0.0a1699651384.dist-info → pulumi_gcp-7.1.0.dist-info}/RECORD +678 -650
{pulumi_gcp-7.0.0a1699651384.dist-info → pulumi_gcp-7.1.0.dist-info}/WHEEL +0 -0
{pulumi_gcp-7.0.0a1699651384.dist-info → pulumi_gcp-7.1.0.dist-info}/top_level.txt +0 -0

pulumi_gcp/accesscontextmanager/outputs.py CHANGED Viewed

@@ -15,8 +15,12 @@ __all__ = [
     'AccessLevelBasicCondition',
     'AccessLevelBasicConditionDevicePolicy',
     'AccessLevelBasicConditionDevicePolicyOsConstraint',
+    'AccessLevelBasicConditionVpcNetworkSource',
+    'AccessLevelBasicConditionVpcNetworkSourceVpcSubnetwork',
     'AccessLevelConditionDevicePolicy',
     'AccessLevelConditionDevicePolicyOsConstraint',
+    'AccessLevelConditionVpcNetworkSource',
+    'AccessLevelConditionVpcNetworkSourceVpcSubnetwork',
     'AccessLevelCustom',
     'AccessLevelCustomExpr',
     'AccessLevelsAccessLevel',
@@ -24,11 +28,14 @@ __all__ = [
     'AccessLevelsAccessLevelBasicCondition',
     'AccessLevelsAccessLevelBasicConditionDevicePolicy',
     'AccessLevelsAccessLevelBasicConditionDevicePolicyOsConstraint',
+    'AccessLevelsAccessLevelBasicConditionVpcNetworkSource',
+    'AccessLevelsAccessLevelBasicConditionVpcNetworkSourceVpcSubnetwork',
     'AccessLevelsAccessLevelCustom',
     'AccessLevelsAccessLevelCustomExpr',
     'AccessPolicyIamBindingCondition',
     'AccessPolicyIamMemberCondition',
     'ServicePerimeterEgressPolicyEgressFrom',
+    'ServicePerimeterEgressPolicyEgressFromSource',
     'ServicePerimeterEgressPolicyEgressTo',
     'ServicePerimeterEgressPolicyEgressToOperation',
     'ServicePerimeterEgressPolicyEgressToOperationMethodSelector',
@@ -40,6 +47,7 @@ __all__ = [
     'ServicePerimeterSpec',
     'ServicePerimeterSpecEgressPolicy',
     'ServicePerimeterSpecEgressPolicyEgressFrom',
+    'ServicePerimeterSpecEgressPolicyEgressFromSource',
     'ServicePerimeterSpecEgressPolicyEgressTo',
     'ServicePerimeterSpecEgressPolicyEgressToOperation',
     'ServicePerimeterSpecEgressPolicyEgressToOperationMethodSelector',
@@ -53,6 +61,7 @@ __all__ = [
     'ServicePerimeterStatus',
     'ServicePerimeterStatusEgressPolicy',
     'ServicePerimeterStatusEgressPolicyEgressFrom',
+    'ServicePerimeterStatusEgressPolicyEgressFromSource',
     'ServicePerimeterStatusEgressPolicyEgressTo',
     'ServicePerimeterStatusEgressPolicyEgressToOperation',
     'ServicePerimeterStatusEgressPolicyEgressToOperationMethodSelector',
@@ -67,6 +76,7 @@ __all__ = [
     'ServicePerimetersServicePerimeterSpec',
     'ServicePerimetersServicePerimeterSpecEgressPolicy',
     'ServicePerimetersServicePerimeterSpecEgressPolicyEgressFrom',
+    'ServicePerimetersServicePerimeterSpecEgressPolicyEgressFromSource',
     'ServicePerimetersServicePerimeterSpecEgressPolicyEgressTo',
     'ServicePerimetersServicePerimeterSpecEgressPolicyEgressToOperation',
     'ServicePerimetersServicePerimeterSpecEgressPolicyEgressToOperationMethodSelector',
@@ -80,6 +90,7 @@ __all__ = [
     'ServicePerimetersServicePerimeterStatus',
     'ServicePerimetersServicePerimeterStatusEgressPolicy',
     'ServicePerimetersServicePerimeterStatusEgressPolicyEgressFrom',
+    'ServicePerimetersServicePerimeterStatusEgressPolicyEgressFromSource',
     'ServicePerimetersServicePerimeterStatusEgressPolicyEgressTo',
     'ServicePerimetersServicePerimeterStatusEgressPolicyEgressToOperation',
     'ServicePerimetersServicePerimeterStatusEgressPolicyEgressToOperationMethodSelector',
@@ -164,6 +175,8 @@ class AccessLevelBasicCondition(dict):
             suggest = "ip_subnetworks"
         elif key == "requiredAccessLevels":
             suggest = "required_access_levels"
+        elif key == "vpcNetworkSources":
+            suggest = "vpc_network_sources"
         if suggest:
             pulumi.log.warn(f"Key '{key}' not found in AccessLevelBasicCondition. Access the value via the '{suggest}' property getter instead.")
@@ -182,7 +195,8 @@ class AccessLevelBasicCondition(dict):
                  members: Optional[Sequence[str]] = None,
                  negate: Optional[bool] = None,
                  regions: Optional[Sequence[str]] = None,
-                 required_access_levels: Optional[Sequence[str]] = None):
+                 required_access_levels: Optional[Sequence[str]] = None,
+                 vpc_network_sources: Optional[Sequence['outputs.AccessLevelBasicConditionVpcNetworkSource']] = None):
         """
         :param 'AccessLevelBasicConditionDevicePolicyArgs' device_policy: Device specific restrictions, all restrictions must hold for
                the Condition to be true. If not specified, all devices are
@@ -216,6 +230,8 @@ class AccessLevelBasicCondition(dict):
                does not exist is an error. All access levels listed must be
                granted for the Condition to be true.
                Format: accessPolicies/{policy_id}/accessLevels/{short_name}
+        :param Sequence['AccessLevelBasicConditionVpcNetworkSourceArgs'] vpc_network_sources: The request must originate from one of the provided VPC networks in Google Cloud. Cannot specify this field together with `ip_subnetworks`.
+               Structure is documented below.
         """
         if device_policy is not None:
             pulumi.set(__self__, "device_policy", device_policy)
@@ -229,6 +245,8 @@ class AccessLevelBasicCondition(dict):
             pulumi.set(__self__, "regions", regions)
         if required_access_levels is not None:
             pulumi.set(__self__, "required_access_levels", required_access_levels)
+        if vpc_network_sources is not None:
+            pulumi.set(__self__, "vpc_network_sources", vpc_network_sources)
     @property
     @pulumi.getter(name="devicePolicy")
@@ -304,6 +322,15 @@ class AccessLevelBasicCondition(dict):
         """
         return pulumi.get(self, "required_access_levels")
+    @property
+    @pulumi.getter(name="vpcNetworkSources")
+    def vpc_network_sources(self) -> Optional[Sequence['outputs.AccessLevelBasicConditionVpcNetworkSource']]:
+        """
+        The request must originate from one of the provided VPC networks in Google Cloud. Cannot specify this field together with `ip_subnetworks`.
+        Structure is documented below.
+        """
+        return pulumi.get(self, "vpc_network_sources")
 @pulumi.output_type
 class AccessLevelBasicConditionDevicePolicy(dict):
@@ -494,6 +521,91 @@ class AccessLevelBasicConditionDevicePolicyOsConstraint(dict):
         return pulumi.get(self, "require_verified_chrome_os")
+@pulumi.output_type
+class AccessLevelBasicConditionVpcNetworkSource(dict):
+    @staticmethod
+    def __key_warning(key: str):
+        suggest = None
+        if key == "vpcSubnetwork":
+            suggest = "vpc_subnetwork"
+        if suggest:
+            pulumi.log.warn(f"Key '{key}' not found in AccessLevelBasicConditionVpcNetworkSource. Access the value via the '{suggest}' property getter instead.")
+    def __getitem__(self, key: str) -> Any:
+        AccessLevelBasicConditionVpcNetworkSource.__key_warning(key)
+        return super().__getitem__(key)
+    def get(self, key: str, default = None) -> Any:
+        AccessLevelBasicConditionVpcNetworkSource.__key_warning(key)
+        return super().get(key, default)
+    def __init__(__self__, *,
+                 vpc_subnetwork: Optional['outputs.AccessLevelBasicConditionVpcNetworkSourceVpcSubnetwork'] = None):
+        """
+        :param 'AccessLevelBasicConditionVpcNetworkSourceVpcSubnetworkArgs' vpc_subnetwork: Sub networks within a VPC network.
+               Structure is documented below.
+        """
+        if vpc_subnetwork is not None:
+            pulumi.set(__self__, "vpc_subnetwork", vpc_subnetwork)
+    @property
+    @pulumi.getter(name="vpcSubnetwork")
+    def vpc_subnetwork(self) -> Optional['outputs.AccessLevelBasicConditionVpcNetworkSourceVpcSubnetwork']:
+        """
+        Sub networks within a VPC network.
+        Structure is documented below.
+        """
+        return pulumi.get(self, "vpc_subnetwork")
+@pulumi.output_type
+class AccessLevelBasicConditionVpcNetworkSourceVpcSubnetwork(dict):
+    @staticmethod
+    def __key_warning(key: str):
+        suggest = None
+        if key == "vpcIpSubnetworks":
+            suggest = "vpc_ip_subnetworks"
+        if suggest:
+            pulumi.log.warn(f"Key '{key}' not found in AccessLevelBasicConditionVpcNetworkSourceVpcSubnetwork. Access the value via the '{suggest}' property getter instead.")
+    def __getitem__(self, key: str) -> Any:
+        AccessLevelBasicConditionVpcNetworkSourceVpcSubnetwork.__key_warning(key)
+        return super().__getitem__(key)
+    def get(self, key: str, default = None) -> Any:
+        AccessLevelBasicConditionVpcNetworkSourceVpcSubnetwork.__key_warning(key)
+        return super().get(key, default)
+    def __init__(__self__, *,
+                 network: str,
+                 vpc_ip_subnetworks: Optional[Sequence[str]] = None):
+        """
+        :param str network: Required. Network name to be allowed by this Access Level. Networks of foreign organizations requires `compute.network.get` permission to be granted to caller.
+        :param Sequence[str] vpc_ip_subnetworks: CIDR block IP subnetwork specification. Must be IPv4.
+        """
+        pulumi.set(__self__, "network", network)
+        if vpc_ip_subnetworks is not None:
+            pulumi.set(__self__, "vpc_ip_subnetworks", vpc_ip_subnetworks)
+    @property
+    @pulumi.getter
+    def network(self) -> str:
+        """
+        Required. Network name to be allowed by this Access Level. Networks of foreign organizations requires `compute.network.get` permission to be granted to caller.
+        """
+        return pulumi.get(self, "network")
+    @property
+    @pulumi.getter(name="vpcIpSubnetworks")
+    def vpc_ip_subnetworks(self) -> Optional[Sequence[str]]:
+        """
+        CIDR block IP subnetwork specification. Must be IPv4.
+        """
+        return pulumi.get(self, "vpc_ip_subnetworks")
 @pulumi.output_type
 class AccessLevelConditionDevicePolicy(dict):
     @staticmethod
@@ -669,6 +781,91 @@ class AccessLevelConditionDevicePolicyOsConstraint(dict):
         return pulumi.get(self, "minimum_version")
+@pulumi.output_type
+class AccessLevelConditionVpcNetworkSource(dict):
+    @staticmethod
+    def __key_warning(key: str):
+        suggest = None
+        if key == "vpcSubnetwork":
+            suggest = "vpc_subnetwork"
+        if suggest:
+            pulumi.log.warn(f"Key '{key}' not found in AccessLevelConditionVpcNetworkSource. Access the value via the '{suggest}' property getter instead.")
+    def __getitem__(self, key: str) -> Any:
+        AccessLevelConditionVpcNetworkSource.__key_warning(key)
+        return super().__getitem__(key)
+    def get(self, key: str, default = None) -> Any:
+        AccessLevelConditionVpcNetworkSource.__key_warning(key)
+        return super().get(key, default)
+    def __init__(__self__, *,
+                 vpc_subnetwork: Optional['outputs.AccessLevelConditionVpcNetworkSourceVpcSubnetwork'] = None):
+        """
+        :param 'AccessLevelConditionVpcNetworkSourceVpcSubnetworkArgs' vpc_subnetwork: Sub networks within a VPC network.
+               Structure is documented below.
+        """
+        if vpc_subnetwork is not None:
+            pulumi.set(__self__, "vpc_subnetwork", vpc_subnetwork)
+    @property
+    @pulumi.getter(name="vpcSubnetwork")
+    def vpc_subnetwork(self) -> Optional['outputs.AccessLevelConditionVpcNetworkSourceVpcSubnetwork']:
+        """
+        Sub networks within a VPC network.
+        Structure is documented below.
+        """
+        return pulumi.get(self, "vpc_subnetwork")
+@pulumi.output_type
+class AccessLevelConditionVpcNetworkSourceVpcSubnetwork(dict):
+    @staticmethod
+    def __key_warning(key: str):
+        suggest = None
+        if key == "vpcIpSubnetworks":
+            suggest = "vpc_ip_subnetworks"
+        if suggest:
+            pulumi.log.warn(f"Key '{key}' not found in AccessLevelConditionVpcNetworkSourceVpcSubnetwork. Access the value via the '{suggest}' property getter instead.")
+    def __getitem__(self, key: str) -> Any:
+        AccessLevelConditionVpcNetworkSourceVpcSubnetwork.__key_warning(key)
+        return super().__getitem__(key)
+    def get(self, key: str, default = None) -> Any:
+        AccessLevelConditionVpcNetworkSourceVpcSubnetwork.__key_warning(key)
+        return super().get(key, default)
+    def __init__(__self__, *,
+                 network: str,
+                 vpc_ip_subnetworks: Optional[Sequence[str]] = None):
+        """
+        :param str network: Required. Network name to be allowed by this Access Level. Networks of foreign organizations requires `compute.network.get` permission to be granted to caller.
+        :param Sequence[str] vpc_ip_subnetworks: CIDR block IP subnetwork specification. Must be IPv4.
+        """
+        pulumi.set(__self__, "network", network)
+        if vpc_ip_subnetworks is not None:
+            pulumi.set(__self__, "vpc_ip_subnetworks", vpc_ip_subnetworks)
+    @property
+    @pulumi.getter
+    def network(self) -> str:
+        """
+        Required. Network name to be allowed by this Access Level. Networks of foreign organizations requires `compute.network.get` permission to be granted to caller.
+        """
+        return pulumi.get(self, "network")
+    @property
+    @pulumi.getter(name="vpcIpSubnetworks")
+    def vpc_ip_subnetworks(self) -> Optional[Sequence[str]]:
+        """
+        CIDR block IP subnetwork specification. Must be IPv4.
+        """
+        return pulumi.get(self, "vpc_ip_subnetworks")
 @pulumi.output_type
 class AccessLevelCustom(dict):
     def __init__(__self__, *,
@@ -894,6 +1091,8 @@ class AccessLevelsAccessLevelBasicCondition(dict):
             suggest = "ip_subnetworks"
         elif key == "requiredAccessLevels":
             suggest = "required_access_levels"
+        elif key == "vpcNetworkSources":
+            suggest = "vpc_network_sources"
         if suggest:
             pulumi.log.warn(f"Key '{key}' not found in AccessLevelsAccessLevelBasicCondition. Access the value via the '{suggest}' property getter instead.")
@@ -912,7 +1111,8 @@ class AccessLevelsAccessLevelBasicCondition(dict):
                  members: Optional[Sequence[str]] = None,
                  negate: Optional[bool] = None,
                  regions: Optional[Sequence[str]] = None,
-                 required_access_levels: Optional[Sequence[str]] = None):
+                 required_access_levels: Optional[Sequence[str]] = None,
+                 vpc_network_sources: Optional[Sequence['outputs.AccessLevelsAccessLevelBasicConditionVpcNetworkSource']] = None):
         """
         :param 'AccessLevelsAccessLevelBasicConditionDevicePolicyArgs' device_policy: Device specific restrictions, all restrictions must hold for
                the Condition to be true. If not specified, all devices are
@@ -946,6 +1146,8 @@ class AccessLevelsAccessLevelBasicCondition(dict):
                does not exist is an error. All access levels listed must be
                granted for the Condition to be true.
                Format: accessPolicies/{policy_id}/accessLevels/{short_name}
+        :param Sequence['AccessLevelsAccessLevelBasicConditionVpcNetworkSourceArgs'] vpc_network_sources: The request must originate from one of the provided VPC networks in Google Cloud. Cannot specify this field together with `ip_subnetworks`.
+               Structure is documented below.
         """
         if device_policy is not None:
             pulumi.set(__self__, "device_policy", device_policy)
@@ -959,6 +1161,8 @@ class AccessLevelsAccessLevelBasicCondition(dict):
             pulumi.set(__self__, "regions", regions)
         if required_access_levels is not None:
             pulumi.set(__self__, "required_access_levels", required_access_levels)
+        if vpc_network_sources is not None:
+            pulumi.set(__self__, "vpc_network_sources", vpc_network_sources)
     @property
     @pulumi.getter(name="devicePolicy")
@@ -1034,6 +1238,15 @@ class AccessLevelsAccessLevelBasicCondition(dict):
         """
         return pulumi.get(self, "required_access_levels")
+    @property
+    @pulumi.getter(name="vpcNetworkSources")
+    def vpc_network_sources(self) -> Optional[Sequence['outputs.AccessLevelsAccessLevelBasicConditionVpcNetworkSource']]:
+        """
+        The request must originate from one of the provided VPC networks in Google Cloud. Cannot specify this field together with `ip_subnetworks`.
+        Structure is documented below.
+        """
+        return pulumi.get(self, "vpc_network_sources")
 @pulumi.output_type
 class AccessLevelsAccessLevelBasicConditionDevicePolicy(dict):
@@ -1210,6 +1423,91 @@ class AccessLevelsAccessLevelBasicConditionDevicePolicyOsConstraint(dict):
         return pulumi.get(self, "minimum_version")
+@pulumi.output_type
+class AccessLevelsAccessLevelBasicConditionVpcNetworkSource(dict):
+    @staticmethod
+    def __key_warning(key: str):
+        suggest = None
+        if key == "vpcSubnetwork":
+            suggest = "vpc_subnetwork"
+        if suggest:
+            pulumi.log.warn(f"Key '{key}' not found in AccessLevelsAccessLevelBasicConditionVpcNetworkSource. Access the value via the '{suggest}' property getter instead.")
+    def __getitem__(self, key: str) -> Any:
+        AccessLevelsAccessLevelBasicConditionVpcNetworkSource.__key_warning(key)
+        return super().__getitem__(key)
+    def get(self, key: str, default = None) -> Any:
+        AccessLevelsAccessLevelBasicConditionVpcNetworkSource.__key_warning(key)
+        return super().get(key, default)
+    def __init__(__self__, *,
+                 vpc_subnetwork: Optional['outputs.AccessLevelsAccessLevelBasicConditionVpcNetworkSourceVpcSubnetwork'] = None):
+        """
+        :param 'AccessLevelsAccessLevelBasicConditionVpcNetworkSourceVpcSubnetworkArgs' vpc_subnetwork: Sub networks within a VPC network.
+               Structure is documented below.
+        """
+        if vpc_subnetwork is not None:
+            pulumi.set(__self__, "vpc_subnetwork", vpc_subnetwork)
+    @property
+    @pulumi.getter(name="vpcSubnetwork")
+    def vpc_subnetwork(self) -> Optional['outputs.AccessLevelsAccessLevelBasicConditionVpcNetworkSourceVpcSubnetwork']:
+        """
+        Sub networks within a VPC network.
+        Structure is documented below.
+        """
+        return pulumi.get(self, "vpc_subnetwork")
+@pulumi.output_type
+class AccessLevelsAccessLevelBasicConditionVpcNetworkSourceVpcSubnetwork(dict):
+    @staticmethod
+    def __key_warning(key: str):
+        suggest = None
+        if key == "vpcIpSubnetworks":
+            suggest = "vpc_ip_subnetworks"
+        if suggest:
+            pulumi.log.warn(f"Key '{key}' not found in AccessLevelsAccessLevelBasicConditionVpcNetworkSourceVpcSubnetwork. Access the value via the '{suggest}' property getter instead.")
+    def __getitem__(self, key: str) -> Any:
+        AccessLevelsAccessLevelBasicConditionVpcNetworkSourceVpcSubnetwork.__key_warning(key)
+        return super().__getitem__(key)
+    def get(self, key: str, default = None) -> Any:
+        AccessLevelsAccessLevelBasicConditionVpcNetworkSourceVpcSubnetwork.__key_warning(key)
+        return super().get(key, default)
+    def __init__(__self__, *,
+                 network: str,
+                 vpc_ip_subnetworks: Optional[Sequence[str]] = None):
+        """
+        :param str network: Required. Network name to be allowed by this Access Level. Networks of foreign organizations requires `compute.network.get` permission to be granted to caller.
+        :param Sequence[str] vpc_ip_subnetworks: CIDR block IP subnetwork specification. Must be IPv4.
+        """
+        pulumi.set(__self__, "network", network)
+        if vpc_ip_subnetworks is not None:
+            pulumi.set(__self__, "vpc_ip_subnetworks", vpc_ip_subnetworks)
+    @property
+    @pulumi.getter
+    def network(self) -> str:
+        """
+        Required. Network name to be allowed by this Access Level. Networks of foreign organizations requires `compute.network.get` permission to be granted to caller.
+        """
+        return pulumi.get(self, "network")
+    @property
+    @pulumi.getter(name="vpcIpSubnetworks")
+    def vpc_ip_subnetworks(self) -> Optional[Sequence[str]]:
+        """
+        CIDR block IP subnetwork specification. Must be IPv4.
+        """
+        return pulumi.get(self, "vpc_ip_subnetworks")
 @pulumi.output_type
 class AccessLevelsAccessLevelCustom(dict):
     def __init__(__self__, *,
@@ -1349,6 +1647,8 @@ class ServicePerimeterEgressPolicyEgressFrom(dict):
         suggest = None
         if key == "identityType":
             suggest = "identity_type"
+        elif key == "sourceRestriction":
+            suggest = "source_restriction"
         if suggest:
             pulumi.log.warn(f"Key '{key}' not found in ServicePerimeterEgressPolicyEgressFrom. Access the value via the '{suggest}' property getter instead.")
@@ -1363,7 +1663,9 @@ class ServicePerimeterEgressPolicyEgressFrom(dict):
     def __init__(__self__, *,
                  identities: Optional[Sequence[str]] = None,
-                 identity_type: Optional[str] = None):
+                 identity_type: Optional[str] = None,
+                 source_restriction: Optional[str] = None,
+                 sources: Optional[Sequence['outputs.ServicePerimeterEgressPolicyEgressFromSource']] = None):
         """
         :param Sequence[str] identities: A list of identities that are allowed access through this `EgressPolicy`.
                Should be in the format of email address. The email address should
@@ -1372,11 +1674,19 @@ class ServicePerimeterEgressPolicyEgressFrom(dict):
                perimeter. If left unspecified, then members of `identities` field will
                be allowed access.
                Possible values are: `ANY_IDENTITY`, `ANY_USER_ACCOUNT`, `ANY_SERVICE_ACCOUNT`.
+        :param str source_restriction: Whether to enforce traffic restrictions based on `sources` field. If the `sources` field is non-empty, then this field must be set to `SOURCE_RESTRICTION_ENABLED`.
+               Possible values are: `SOURCE_RESTRICTION_UNSPECIFIED`, `SOURCE_RESTRICTION_ENABLED`, `SOURCE_RESTRICTION_DISABLED`.
+        :param Sequence['ServicePerimeterEgressPolicyEgressFromSourceArgs'] sources: Sources that this EgressPolicy authorizes access from.
+               Structure is documented below.
         """
         if identities is not None:
             pulumi.set(__self__, "identities", identities)
         if identity_type is not None:
             pulumi.set(__self__, "identity_type", identity_type)
+        if source_restriction is not None:
+            pulumi.set(__self__, "source_restriction", source_restriction)
+        if sources is not None:
+            pulumi.set(__self__, "sources", sources)
     @property
     @pulumi.getter
@@ -1399,6 +1709,60 @@ class ServicePerimeterEgressPolicyEgressFrom(dict):
         """
         return pulumi.get(self, "identity_type")
+    @property
+    @pulumi.getter(name="sourceRestriction")
+    def source_restriction(self) -> Optional[str]:
+        """
+        Whether to enforce traffic restrictions based on `sources` field. If the `sources` field is non-empty, then this field must be set to `SOURCE_RESTRICTION_ENABLED`.
+        Possible values are: `SOURCE_RESTRICTION_UNSPECIFIED`, `SOURCE_RESTRICTION_ENABLED`, `SOURCE_RESTRICTION_DISABLED`.
+        """
+        return pulumi.get(self, "source_restriction")
+    @property
+    @pulumi.getter
+    def sources(self) -> Optional[Sequence['outputs.ServicePerimeterEgressPolicyEgressFromSource']]:
+        """
+        Sources that this EgressPolicy authorizes access from.
+        Structure is documented below.
+        """
+        return pulumi.get(self, "sources")
+@pulumi.output_type
+class ServicePerimeterEgressPolicyEgressFromSource(dict):
+    @staticmethod
+    def __key_warning(key: str):
+        suggest = None
+        if key == "accessLevel":
+            suggest = "access_level"
+        if suggest:
+            pulumi.log.warn(f"Key '{key}' not found in ServicePerimeterEgressPolicyEgressFromSource. Access the value via the '{suggest}' property getter instead.")
+    def __getitem__(self, key: str) -> Any:
+        ServicePerimeterEgressPolicyEgressFromSource.__key_warning(key)
+        return super().__getitem__(key)
+    def get(self, key: str, default = None) -> Any:
+        ServicePerimeterEgressPolicyEgressFromSource.__key_warning(key)
+        return super().get(key, default)
+    def __init__(__self__, *,
+                 access_level: Optional[str] = None):
+        """
+        :param str access_level: An AccessLevel resource name that allows resources outside the ServicePerimeter to be accessed from the inside.
+        """
+        if access_level is not None:
+            pulumi.set(__self__, "access_level", access_level)
+    @property
+    @pulumi.getter(name="accessLevel")
+    def access_level(self) -> Optional[str]:
+        """
+        An AccessLevel resource name that allows resources outside the ServicePerimeter to be accessed from the inside.
+        """
+        return pulumi.get(self, "access_level")
 @pulumi.output_type
 class ServicePerimeterEgressPolicyEgressTo(dict):
@@ -2082,6 +2446,8 @@ class ServicePerimeterSpecEgressPolicyEgressFrom(dict):
         suggest = None
         if key == "identityType":
             suggest = "identity_type"
+        elif key == "sourceRestriction":
+            suggest = "source_restriction"
         if suggest:
             pulumi.log.warn(f"Key '{key}' not found in ServicePerimeterSpecEgressPolicyEgressFrom. Access the value via the '{suggest}' property getter instead.")
@@ -2096,7 +2462,9 @@ class ServicePerimeterSpecEgressPolicyEgressFrom(dict):
     def __init__(__self__, *,
                  identities: Optional[Sequence[str]] = None,
-                 identity_type: Optional[str] = None):
+                 identity_type: Optional[str] = None,
+                 source_restriction: Optional[str] = None,
+                 sources: Optional[Sequence['outputs.ServicePerimeterSpecEgressPolicyEgressFromSource']] = None):
         """
         :param Sequence[str] identities: A list of identities that are allowed access through this `EgressPolicy`.
                Should be in the format of email address. The email address should
@@ -2105,11 +2473,19 @@ class ServicePerimeterSpecEgressPolicyEgressFrom(dict):
                perimeter. If left unspecified, then members of `identities` field will
                be allowed access.
                Possible values are: `IDENTITY_TYPE_UNSPECIFIED`, `ANY_IDENTITY`, `ANY_USER_ACCOUNT`, `ANY_SERVICE_ACCOUNT`.
+        :param str source_restriction: Whether to enforce traffic restrictions based on `sources` field. If the `sources` field is non-empty, then this field must be set to `SOURCE_RESTRICTION_ENABLED`.
+               Possible values are: `SOURCE_RESTRICTION_UNSPECIFIED`, `SOURCE_RESTRICTION_ENABLED`, `SOURCE_RESTRICTION_DISABLED`.
+        :param Sequence['ServicePerimeterSpecEgressPolicyEgressFromSourceArgs'] sources: Sources that this EgressPolicy authorizes access from.
+               Structure is documented below.
         """
         if identities is not None:
             pulumi.set(__self__, "identities", identities)
         if identity_type is not None:
             pulumi.set(__self__, "identity_type", identity_type)
+        if source_restriction is not None:
+            pulumi.set(__self__, "source_restriction", source_restriction)
+        if sources is not None:
+            pulumi.set(__self__, "sources", sources)
     @property
     @pulumi.getter
@@ -2132,6 +2508,60 @@ class ServicePerimeterSpecEgressPolicyEgressFrom(dict):
         """
         return pulumi.get(self, "identity_type")
+    @property
+    @pulumi.getter(name="sourceRestriction")
+    def source_restriction(self) -> Optional[str]:
+        """
+        Whether to enforce traffic restrictions based on `sources` field. If the `sources` field is non-empty, then this field must be set to `SOURCE_RESTRICTION_ENABLED`.
+        Possible values are: `SOURCE_RESTRICTION_UNSPECIFIED`, `SOURCE_RESTRICTION_ENABLED`, `SOURCE_RESTRICTION_DISABLED`.
+        """
+        return pulumi.get(self, "source_restriction")
+    @property
+    @pulumi.getter
+    def sources(self) -> Optional[Sequence['outputs.ServicePerimeterSpecEgressPolicyEgressFromSource']]:
+        """
+        Sources that this EgressPolicy authorizes access from.
+        Structure is documented below.
+        """
+        return pulumi.get(self, "sources")
+@pulumi.output_type
+class ServicePerimeterSpecEgressPolicyEgressFromSource(dict):
+    @staticmethod
+    def __key_warning(key: str):
+        suggest = None
+        if key == "accessLevel":
+            suggest = "access_level"
+        if suggest:
+            pulumi.log.warn(f"Key '{key}' not found in ServicePerimeterSpecEgressPolicyEgressFromSource. Access the value via the '{suggest}' property getter instead.")
+    def __getitem__(self, key: str) -> Any:
+        ServicePerimeterSpecEgressPolicyEgressFromSource.__key_warning(key)
+        return super().__getitem__(key)
+    def get(self, key: str, default = None) -> Any:
+        ServicePerimeterSpecEgressPolicyEgressFromSource.__key_warning(key)
+        return super().get(key, default)
+    def __init__(__self__, *,
+                 access_level: Optional[str] = None):
+        """
+        :param str access_level: An AccessLevel resource name that allows resources outside the ServicePerimeter to be accessed from the inside.
+        """
+        if access_level is not None:
+            pulumi.set(__self__, "access_level", access_level)
+    @property
+    @pulumi.getter(name="accessLevel")
+    def access_level(self) -> Optional[str]:
+        """
+        An AccessLevel resource name that allows resources outside the ServicePerimeter to be accessed from the inside.
+        """
+        return pulumi.get(self, "access_level")
 @pulumi.output_type
 class ServicePerimeterSpecEgressPolicyEgressTo(dict):
@@ -2461,14 +2891,7 @@ class ServicePerimeterSpecIngressPolicyIngressFromSource(dict):
                  access_level: Optional[str] = None,
                  resource: Optional[str] = None):
         """
-        :param str access_level: An `AccessLevel` resource name that allow resources within the
-               `ServicePerimeters` to be accessed from the internet. `AccessLevels` listed
-               must be in the same policy as this `ServicePerimeter`. Referencing a nonexistent
-               `AccessLevel` will cause an error. If no `AccessLevel` names are listed,
-               resources within the perimeter can only be accessed via Google Cloud calls
-               with request origins within the perimeter.
-               Example `accessPolicies/MY_POLICY/accessLevels/MY_LEVEL.`
-               If * is specified, then all IngressSources will be allowed.
+        :param str access_level: An AccessLevel resource name that allows resources outside the ServicePerimeter to be accessed from the inside.
         :param str resource: A Google Cloud resource that is allowed to ingress the perimeter.
                Requests from these resources will be allowed to access perimeter data.
                Currently only projects are allowed. Format `projects/{project_number}`
@@ -2485,14 +2908,7 @@ class ServicePerimeterSpecIngressPolicyIngressFromSource(dict):
     @pulumi.getter(name="accessLevel")
     def access_level(self) -> Optional[str]:
         """
-        An `AccessLevel` resource name that allow resources within the
-        `ServicePerimeters` to be accessed from the internet. `AccessLevels` listed
-        must be in the same policy as this `ServicePerimeter`. Referencing a nonexistent
-        `AccessLevel` will cause an error. If no `AccessLevel` names are listed,
-        resources within the perimeter can only be accessed via Google Cloud calls
-        with request origins within the perimeter.
-        Example `accessPolicies/MY_POLICY/accessLevels/MY_LEVEL.`
-        If * is specified, then all IngressSources will be allowed.
+        An AccessLevel resource name that allows resources outside the ServicePerimeter to be accessed from the inside.
         """
         return pulumi.get(self, "access_level")
@@ -2927,6 +3343,8 @@ class ServicePerimeterStatusEgressPolicyEgressFrom(dict):
         suggest = None
         if key == "identityType":
             suggest = "identity_type"
+        elif key == "sourceRestriction":
+            suggest = "source_restriction"
         if suggest:
             pulumi.log.warn(f"Key '{key}' not found in ServicePerimeterStatusEgressPolicyEgressFrom. Access the value via the '{suggest}' property getter instead.")
@@ -2941,7 +3359,9 @@ class ServicePerimeterStatusEgressPolicyEgressFrom(dict):
     def __init__(__self__, *,
                  identities: Optional[Sequence[str]] = None,
-                 identity_type: Optional[str] = None):
+                 identity_type: Optional[str] = None,
+                 source_restriction: Optional[str] = None,
+                 sources: Optional[Sequence['outputs.ServicePerimeterStatusEgressPolicyEgressFromSource']] = None):
         """
         :param Sequence[str] identities: A list of identities that are allowed access through this `EgressPolicy`.
                Should be in the format of email address. The email address should
@@ -2950,11 +3370,19 @@ class ServicePerimeterStatusEgressPolicyEgressFrom(dict):
                perimeter. If left unspecified, then members of `identities` field will
                be allowed access.
                Possible values are: `IDENTITY_TYPE_UNSPECIFIED`, `ANY_IDENTITY`, `ANY_USER_ACCOUNT`, `ANY_SERVICE_ACCOUNT`.
+        :param str source_restriction: Whether to enforce traffic restrictions based on `sources` field. If the `sources` field is non-empty, then this field must be set to `SOURCE_RESTRICTION_ENABLED`.
+               Possible values are: `SOURCE_RESTRICTION_UNSPECIFIED`, `SOURCE_RESTRICTION_ENABLED`, `SOURCE_RESTRICTION_DISABLED`.
+        :param Sequence['ServicePerimeterStatusEgressPolicyEgressFromSourceArgs'] sources: Sources that this EgressPolicy authorizes access from.
+               Structure is documented below.
         """
         if identities is not None:
             pulumi.set(__self__, "identities", identities)
         if identity_type is not None:
             pulumi.set(__self__, "identity_type", identity_type)
+        if source_restriction is not None:
+            pulumi.set(__self__, "source_restriction", source_restriction)
+        if sources is not None:
+            pulumi.set(__self__, "sources", sources)
     @property
     @pulumi.getter
@@ -2977,6 +3405,60 @@ class ServicePerimeterStatusEgressPolicyEgressFrom(dict):
         """
         return pulumi.get(self, "identity_type")
+    @property
+    @pulumi.getter(name="sourceRestriction")
+    def source_restriction(self) -> Optional[str]:
+        """
+        Whether to enforce traffic restrictions based on `sources` field. If the `sources` field is non-empty, then this field must be set to `SOURCE_RESTRICTION_ENABLED`.
+        Possible values are: `SOURCE_RESTRICTION_UNSPECIFIED`, `SOURCE_RESTRICTION_ENABLED`, `SOURCE_RESTRICTION_DISABLED`.
+        """
+        return pulumi.get(self, "source_restriction")
+    @property
+    @pulumi.getter
+    def sources(self) -> Optional[Sequence['outputs.ServicePerimeterStatusEgressPolicyEgressFromSource']]:
+        """
+        Sources that this EgressPolicy authorizes access from.
+        Structure is documented below.
+        """
+        return pulumi.get(self, "sources")
+@pulumi.output_type
+class ServicePerimeterStatusEgressPolicyEgressFromSource(dict):
+    @staticmethod
+    def __key_warning(key: str):
+        suggest = None
+        if key == "accessLevel":
+            suggest = "access_level"
+        if suggest:
+            pulumi.log.warn(f"Key '{key}' not found in ServicePerimeterStatusEgressPolicyEgressFromSource. Access the value via the '{suggest}' property getter instead.")
+    def __getitem__(self, key: str) -> Any:
+        ServicePerimeterStatusEgressPolicyEgressFromSource.__key_warning(key)
+        return super().__getitem__(key)
+    def get(self, key: str, default = None) -> Any:
+        ServicePerimeterStatusEgressPolicyEgressFromSource.__key_warning(key)
+        return super().get(key, default)
+    def __init__(__self__, *,
+                 access_level: Optional[str] = None):
+        """
+        :param str access_level: An AccessLevel resource name that allows resources outside the ServicePerimeter to be accessed from the inside.
+        """
+        if access_level is not None:
+            pulumi.set(__self__, "access_level", access_level)
+    @property
+    @pulumi.getter(name="accessLevel")
+    def access_level(self) -> Optional[str]:
+        """
+        An AccessLevel resource name that allows resources outside the ServicePerimeter to be accessed from the inside.
+        """
+        return pulumi.get(self, "access_level")
 @pulumi.output_type
 class ServicePerimeterStatusEgressPolicyEgressTo(dict):
@@ -3306,14 +3788,7 @@ class ServicePerimeterStatusIngressPolicyIngressFromSource(dict):
                  access_level: Optional[str] = None,
                  resource: Optional[str] = None):
         """
-        :param str access_level: An `AccessLevel` resource name that allow resources within the
-               `ServicePerimeters` to be accessed from the internet. `AccessLevels` listed
-               must be in the same policy as this `ServicePerimeter`. Referencing a nonexistent
-               `AccessLevel` will cause an error. If no `AccessLevel` names are listed,
-               resources within the perimeter can only be accessed via Google Cloud calls
-               with request origins within the perimeter.
-               Example `accessPolicies/MY_POLICY/accessLevels/MY_LEVEL.`
-               If * is specified, then all IngressSources will be allowed.
+        :param str access_level: An AccessLevel resource name that allows resources outside the ServicePerimeter to be accessed from the inside.
         :param str resource: A Google Cloud resource that is allowed to ingress the perimeter.
                Requests from these resources will be allowed to access perimeter data.
                Currently only projects are allowed. Format `projects/{project_number}`
@@ -3330,14 +3805,7 @@ class ServicePerimeterStatusIngressPolicyIngressFromSource(dict):
     @pulumi.getter(name="accessLevel")
     def access_level(self) -> Optional[str]:
         """
-        An `AccessLevel` resource name that allow resources within the
-        `ServicePerimeters` to be accessed from the internet. `AccessLevels` listed
-        must be in the same policy as this `ServicePerimeter`. Referencing a nonexistent
-        `AccessLevel` will cause an error. If no `AccessLevel` names are listed,
-        resources within the perimeter can only be accessed via Google Cloud calls
-        with request origins within the perimeter.
-        Example `accessPolicies/MY_POLICY/accessLevels/MY_LEVEL.`
-        If * is specified, then all IngressSources will be allowed.
+        An AccessLevel resource name that allows resources outside the ServicePerimeter to be accessed from the inside.
         """
         return pulumi.get(self, "access_level")
@@ -3978,6 +4446,8 @@ class ServicePerimetersServicePerimeterSpecEgressPolicyEgressFrom(dict):
         suggest = None
         if key == "identityType":
             suggest = "identity_type"
+        elif key == "sourceRestriction":
+            suggest = "source_restriction"
         if suggest:
             pulumi.log.warn(f"Key '{key}' not found in ServicePerimetersServicePerimeterSpecEgressPolicyEgressFrom. Access the value via the '{suggest}' property getter instead.")
@@ -3992,7 +4462,9 @@ class ServicePerimetersServicePerimeterSpecEgressPolicyEgressFrom(dict):
     def __init__(__self__, *,
                  identities: Optional[Sequence[str]] = None,
-                 identity_type: Optional[str] = None):
+                 identity_type: Optional[str] = None,
+                 source_restriction: Optional[str] = None,
+                 sources: Optional[Sequence['outputs.ServicePerimetersServicePerimeterSpecEgressPolicyEgressFromSource']] = None):
         """
         :param Sequence[str] identities: A list of identities that are allowed access through this `EgressPolicy`.
                Should be in the format of email address. The email address should
@@ -4001,11 +4473,19 @@ class ServicePerimetersServicePerimeterSpecEgressPolicyEgressFrom(dict):
                perimeter. If left unspecified, then members of `identities` field will
                be allowed access.
                Possible values are: `IDENTITY_TYPE_UNSPECIFIED`, `ANY_IDENTITY`, `ANY_USER_ACCOUNT`, `ANY_SERVICE_ACCOUNT`.
+        :param str source_restriction: Whether to enforce traffic restrictions based on `sources` field. If the `sources` field is non-empty, then this field must be set to `SOURCE_RESTRICTION_ENABLED`.
+               Possible values are: `SOURCE_RESTRICTION_UNSPECIFIED`, `SOURCE_RESTRICTION_ENABLED`, `SOURCE_RESTRICTION_DISABLED`.
+        :param Sequence['ServicePerimetersServicePerimeterSpecEgressPolicyEgressFromSourceArgs'] sources: Sources that this EgressPolicy authorizes access from.
+               Structure is documented below.
         """
         if identities is not None:
             pulumi.set(__self__, "identities", identities)
         if identity_type is not None:
             pulumi.set(__self__, "identity_type", identity_type)
+        if source_restriction is not None:
+            pulumi.set(__self__, "source_restriction", source_restriction)
+        if sources is not None:
+            pulumi.set(__self__, "sources", sources)
     @property
     @pulumi.getter
@@ -4028,6 +4508,60 @@ class ServicePerimetersServicePerimeterSpecEgressPolicyEgressFrom(dict):
         """
         return pulumi.get(self, "identity_type")
+    @property
+    @pulumi.getter(name="sourceRestriction")
+    def source_restriction(self) -> Optional[str]:
+        """
+        Whether to enforce traffic restrictions based on `sources` field. If the `sources` field is non-empty, then this field must be set to `SOURCE_RESTRICTION_ENABLED`.
+        Possible values are: `SOURCE_RESTRICTION_UNSPECIFIED`, `SOURCE_RESTRICTION_ENABLED`, `SOURCE_RESTRICTION_DISABLED`.
+        """
+        return pulumi.get(self, "source_restriction")
+    @property
+    @pulumi.getter
+    def sources(self) -> Optional[Sequence['outputs.ServicePerimetersServicePerimeterSpecEgressPolicyEgressFromSource']]:
+        """
+        Sources that this EgressPolicy authorizes access from.
+        Structure is documented below.
+        """
+        return pulumi.get(self, "sources")
+@pulumi.output_type
+class ServicePerimetersServicePerimeterSpecEgressPolicyEgressFromSource(dict):
+    @staticmethod
+    def __key_warning(key: str):
+        suggest = None
+        if key == "accessLevel":
+            suggest = "access_level"
+        if suggest:
+            pulumi.log.warn(f"Key '{key}' not found in ServicePerimetersServicePerimeterSpecEgressPolicyEgressFromSource. Access the value via the '{suggest}' property getter instead.")
+    def __getitem__(self, key: str) -> Any:
+        ServicePerimetersServicePerimeterSpecEgressPolicyEgressFromSource.__key_warning(key)
+        return super().__getitem__(key)
+    def get(self, key: str, default = None) -> Any:
+        ServicePerimetersServicePerimeterSpecEgressPolicyEgressFromSource.__key_warning(key)
+        return super().get(key, default)
+    def __init__(__self__, *,
+                 access_level: Optional[str] = None):
+        """
+        :param str access_level: An AccessLevel resource name that allows resources outside the ServicePerimeter to be accessed from the inside.
+        """
+        if access_level is not None:
+            pulumi.set(__self__, "access_level", access_level)
+    @property
+    @pulumi.getter(name="accessLevel")
+    def access_level(self) -> Optional[str]:
+        """
+        An AccessLevel resource name that allows resources outside the ServicePerimeter to be accessed from the inside.
+        """
+        return pulumi.get(self, "access_level")
 @pulumi.output_type
 class ServicePerimetersServicePerimeterSpecEgressPolicyEgressTo(dict):
@@ -4357,14 +4891,7 @@ class ServicePerimetersServicePerimeterSpecIngressPolicyIngressFromSource(dict):
                  access_level: Optional[str] = None,
                  resource: Optional[str] = None):
         """
-        :param str access_level: An `AccessLevel` resource name that allow resources within the
-               `ServicePerimeters` to be accessed from the internet. `AccessLevels` listed
-               must be in the same policy as this `ServicePerimeter`. Referencing a nonexistent
-               `AccessLevel` will cause an error. If no `AccessLevel` names are listed,
-               resources within the perimeter can only be accessed via Google Cloud calls
-               with request origins within the perimeter.
-               Example `accessPolicies/MY_POLICY/accessLevels/MY_LEVEL.`
-               If * is specified, then all IngressSources will be allowed.
+        :param str access_level: An AccessLevel resource name that allows resources outside the ServicePerimeter to be accessed from the inside.
         :param str resource: A Google Cloud resource that is allowed to ingress the perimeter.
                Requests from these resources will be allowed to access perimeter data.
                Currently only projects are allowed. Format `projects/{project_number}`
@@ -4381,14 +4908,7 @@ class ServicePerimetersServicePerimeterSpecIngressPolicyIngressFromSource(dict):
     @pulumi.getter(name="accessLevel")
     def access_level(self) -> Optional[str]:
         """
-        An `AccessLevel` resource name that allow resources within the
-        `ServicePerimeters` to be accessed from the internet. `AccessLevels` listed
-        must be in the same policy as this `ServicePerimeter`. Referencing a nonexistent
-        `AccessLevel` will cause an error. If no `AccessLevel` names are listed,
-        resources within the perimeter can only be accessed via Google Cloud calls
-        with request origins within the perimeter.
-        Example `accessPolicies/MY_POLICY/accessLevels/MY_LEVEL.`
-        If * is specified, then all IngressSources will be allowed.
+        An AccessLevel resource name that allows resources outside the ServicePerimeter to be accessed from the inside.
         """
         return pulumi.get(self, "access_level")
@@ -4823,6 +5343,8 @@ class ServicePerimetersServicePerimeterStatusEgressPolicyEgressFrom(dict):
         suggest = None
         if key == "identityType":
             suggest = "identity_type"
+        elif key == "sourceRestriction":
+            suggest = "source_restriction"
         if suggest:
             pulumi.log.warn(f"Key '{key}' not found in ServicePerimetersServicePerimeterStatusEgressPolicyEgressFrom. Access the value via the '{suggest}' property getter instead.")
@@ -4837,7 +5359,9 @@ class ServicePerimetersServicePerimeterStatusEgressPolicyEgressFrom(dict):
     def __init__(__self__, *,
                  identities: Optional[Sequence[str]] = None,
-                 identity_type: Optional[str] = None):
+                 identity_type: Optional[str] = None,
+                 source_restriction: Optional[str] = None,
+                 sources: Optional[Sequence['outputs.ServicePerimetersServicePerimeterStatusEgressPolicyEgressFromSource']] = None):
         """
         :param Sequence[str] identities: A list of identities that are allowed access through this `EgressPolicy`.
                Should be in the format of email address. The email address should
@@ -4846,11 +5370,19 @@ class ServicePerimetersServicePerimeterStatusEgressPolicyEgressFrom(dict):
                perimeter. If left unspecified, then members of `identities` field will
                be allowed access.
                Possible values are: `IDENTITY_TYPE_UNSPECIFIED`, `ANY_IDENTITY`, `ANY_USER_ACCOUNT`, `ANY_SERVICE_ACCOUNT`.
+        :param str source_restriction: Whether to enforce traffic restrictions based on `sources` field. If the `sources` field is non-empty, then this field must be set to `SOURCE_RESTRICTION_ENABLED`.
+               Possible values are: `SOURCE_RESTRICTION_UNSPECIFIED`, `SOURCE_RESTRICTION_ENABLED`, `SOURCE_RESTRICTION_DISABLED`.
+        :param Sequence['ServicePerimetersServicePerimeterStatusEgressPolicyEgressFromSourceArgs'] sources: Sources that this EgressPolicy authorizes access from.
+               Structure is documented below.
         """
         if identities is not None:
             pulumi.set(__self__, "identities", identities)
         if identity_type is not None:
             pulumi.set(__self__, "identity_type", identity_type)
+        if source_restriction is not None:
+            pulumi.set(__self__, "source_restriction", source_restriction)
+        if sources is not None:
+            pulumi.set(__self__, "sources", sources)
     @property
     @pulumi.getter
@@ -4873,6 +5405,60 @@ class ServicePerimetersServicePerimeterStatusEgressPolicyEgressFrom(dict):
         """
         return pulumi.get(self, "identity_type")
+    @property
+    @pulumi.getter(name="sourceRestriction")
+    def source_restriction(self) -> Optional[str]:
+        """
+        Whether to enforce traffic restrictions based on `sources` field. If the `sources` field is non-empty, then this field must be set to `SOURCE_RESTRICTION_ENABLED`.
+        Possible values are: `SOURCE_RESTRICTION_UNSPECIFIED`, `SOURCE_RESTRICTION_ENABLED`, `SOURCE_RESTRICTION_DISABLED`.
+        """
+        return pulumi.get(self, "source_restriction")
+    @property
+    @pulumi.getter
+    def sources(self) -> Optional[Sequence['outputs.ServicePerimetersServicePerimeterStatusEgressPolicyEgressFromSource']]:
+        """
+        Sources that this EgressPolicy authorizes access from.
+        Structure is documented below.
+        """
+        return pulumi.get(self, "sources")
+@pulumi.output_type
+class ServicePerimetersServicePerimeterStatusEgressPolicyEgressFromSource(dict):
+    @staticmethod
+    def __key_warning(key: str):
+        suggest = None
+        if key == "accessLevel":
+            suggest = "access_level"
+        if suggest:
+            pulumi.log.warn(f"Key '{key}' not found in ServicePerimetersServicePerimeterStatusEgressPolicyEgressFromSource. Access the value via the '{suggest}' property getter instead.")
+    def __getitem__(self, key: str) -> Any:
+        ServicePerimetersServicePerimeterStatusEgressPolicyEgressFromSource.__key_warning(key)
+        return super().__getitem__(key)
+    def get(self, key: str, default = None) -> Any:
+        ServicePerimetersServicePerimeterStatusEgressPolicyEgressFromSource.__key_warning(key)
+        return super().get(key, default)
+    def __init__(__self__, *,
+                 access_level: Optional[str] = None):
+        """
+        :param str access_level: An AccessLevel resource name that allows resources outside the ServicePerimeter to be accessed from the inside.
+        """
+        if access_level is not None:
+            pulumi.set(__self__, "access_level", access_level)
+    @property
+    @pulumi.getter(name="accessLevel")
+    def access_level(self) -> Optional[str]:
+        """
+        An AccessLevel resource name that allows resources outside the ServicePerimeter to be accessed from the inside.
+        """
+        return pulumi.get(self, "access_level")
 @pulumi.output_type
 class ServicePerimetersServicePerimeterStatusEgressPolicyEgressTo(dict):
@@ -5202,14 +5788,7 @@ class ServicePerimetersServicePerimeterStatusIngressPolicyIngressFromSource(dict
                  access_level: Optional[str] = None,
                  resource: Optional[str] = None):
         """
-        :param str access_level: An `AccessLevel` resource name that allow resources within the
-               `ServicePerimeters` to be accessed from the internet. `AccessLevels` listed
-               must be in the same policy as this `ServicePerimeter`. Referencing a nonexistent
-               `AccessLevel` will cause an error. If no `AccessLevel` names are listed,
-               resources within the perimeter can only be accessed via Google Cloud calls
-               with request origins within the perimeter.
-               Example `accessPolicies/MY_POLICY/accessLevels/MY_LEVEL.`
-               If * is specified, then all IngressSources will be allowed.
+        :param str access_level: An AccessLevel resource name that allows resources outside the ServicePerimeter to be accessed from the inside.
         :param str resource: A Google Cloud resource that is allowed to ingress the perimeter.
                Requests from these resources will be allowed to access perimeter data.
                Currently only projects are allowed. Format `projects/{project_number}`
@@ -5226,14 +5805,7 @@ class ServicePerimetersServicePerimeterStatusIngressPolicyIngressFromSource(dict
     @pulumi.getter(name="accessLevel")
     def access_level(self) -> Optional[str]:
         """
-        An `AccessLevel` resource name that allow resources within the
-        `ServicePerimeters` to be accessed from the internet. `AccessLevels` listed
-        must be in the same policy as this `ServicePerimeter`. Referencing a nonexistent
-        `AccessLevel` will cause an error. If no `AccessLevel` names are listed,
-        resources within the perimeter can only be accessed via Google Cloud calls
-        with request origins within the perimeter.
-        Example `accessPolicies/MY_POLICY/accessLevels/MY_LEVEL.`
-        If * is specified, then all IngressSources will be allowed.
+        An AccessLevel resource name that allows resources outside the ServicePerimeter to be accessed from the inside.
         """
         return pulumi.get(self, "access_level")

pulumi-gcp 7.0.0a1699651384__py3-none-any.whl → 7.1.0__py3-none-any.whl

pulumi-gcp 7.0.0a1699651384py3-none-any.whl → 7.1.0py3-none-any.whl