pulumi-gcp 7.12.0a1709561306__py3-none-any.whl → 7.13.0a1709814369__py3-none-any.whl

pulumi_gcp/gkehub/scope.py

@@ -18,6 +18,7 @@ class ScopeArgs:
     def __init__(__self__, *,
                  scope_id: pulumi.Input[str],
                  labels: Optional[pulumi.Input[Mapping[str, pulumi.Input[str]]]] = None,
+                 namespace_labels: Optional[pulumi.Input[Mapping[str, pulumi.Input[str]]]] = None,
                  project: Optional[pulumi.Input[str]] = None):
         """
         The set of arguments for constructing a Scope resource.
@@ -29,12 +30,19 @@ class ScopeArgs:
                
                **Note**: This field is non-authoritative, and will only manage the labels present in your configuration.
                Please refer to the field `effective_labels` for all of the labels present on the resource.
+        :param pulumi.Input[Mapping[str, pulumi.Input[str]]] namespace_labels: Scope-level cluster namespace labels. For the member clusters bound
+               to the Scope, these labels are applied to each namespace under the
+               Scope. Scope-level labels take precedence over Namespace-level
+               labels (`namespace_labels` in the Fleet Namespace resource) if they
+               share a key. Keys and values must be Kubernetes-conformant.
         :param pulumi.Input[str] project: The ID of the project in which the resource belongs.
                If it is not provided, the provider project is used.
         """
         pulumi.set(__self__, "scope_id", scope_id)
         if labels is not None:
             pulumi.set(__self__, "labels", labels)
+        if namespace_labels is not None:
+            pulumi.set(__self__, "namespace_labels", namespace_labels)
         if project is not None:
             pulumi.set(__self__, "project", project)
 
@@ -68,6 +76,22 @@ class ScopeArgs:
     def labels(self, value: Optional[pulumi.Input[Mapping[str, pulumi.Input[str]]]]):
         pulumi.set(self, "labels", value)
 
+    @property
+    @pulumi.getter(name="namespaceLabels")
+    def namespace_labels(self) -> Optional[pulumi.Input[Mapping[str, pulumi.Input[str]]]]:
+        """
+        Scope-level cluster namespace labels. For the member clusters bound
+        to the Scope, these labels are applied to each namespace under the
+        Scope. Scope-level labels take precedence over Namespace-level
+        labels (`namespace_labels` in the Fleet Namespace resource) if they
+        share a key. Keys and values must be Kubernetes-conformant.
+        """
+        return pulumi.get(self, "namespace_labels")
+
+    @namespace_labels.setter
+    def namespace_labels(self, value: Optional[pulumi.Input[Mapping[str, pulumi.Input[str]]]]):
+        pulumi.set(self, "namespace_labels", value)
+
     @property
     @pulumi.getter
     def project(self) -> Optional[pulumi.Input[str]]:
@@ -90,6 +114,7 @@ class _ScopeState:
                  effective_labels: Optional[pulumi.Input[Mapping[str, pulumi.Input[str]]]] = None,
                  labels: Optional[pulumi.Input[Mapping[str, pulumi.Input[str]]]] = None,
                  name: Optional[pulumi.Input[str]] = None,
+                 namespace_labels: Optional[pulumi.Input[Mapping[str, pulumi.Input[str]]]] = None,
                  project: Optional[pulumi.Input[str]] = None,
                  pulumi_labels: Optional[pulumi.Input[Mapping[str, pulumi.Input[str]]]] = None,
                  scope_id: Optional[pulumi.Input[str]] = None,
@@ -106,6 +131,11 @@ class _ScopeState:
                **Note**: This field is non-authoritative, and will only manage the labels present in your configuration.
                Please refer to the field `effective_labels` for all of the labels present on the resource.
         :param pulumi.Input[str] name: The unique identifier of the scope
+        :param pulumi.Input[Mapping[str, pulumi.Input[str]]] namespace_labels: Scope-level cluster namespace labels. For the member clusters bound
+               to the Scope, these labels are applied to each namespace under the
+               Scope. Scope-level labels take precedence over Namespace-level
+               labels (`namespace_labels` in the Fleet Namespace resource) if they
+               share a key. Keys and values must be Kubernetes-conformant.
         :param pulumi.Input[str] project: The ID of the project in which the resource belongs.
                If it is not provided, the provider project is used.
         :param pulumi.Input[Mapping[str, pulumi.Input[str]]] pulumi_labels: The combination of labels configured directly on the resource
@@ -129,6 +159,8 @@ class _ScopeState:
             pulumi.set(__self__, "labels", labels)
         if name is not None:
             pulumi.set(__self__, "name", name)
+        if namespace_labels is not None:
+            pulumi.set(__self__, "namespace_labels", namespace_labels)
         if project is not None:
             pulumi.set(__self__, "project", project)
         if pulumi_labels is not None:
@@ -205,6 +237,22 @@ class _ScopeState:
     def name(self, value: Optional[pulumi.Input[str]]):
         pulumi.set(self, "name", value)
 
+    @property
+    @pulumi.getter(name="namespaceLabels")
+    def namespace_labels(self) -> Optional[pulumi.Input[Mapping[str, pulumi.Input[str]]]]:
+        """
+        Scope-level cluster namespace labels. For the member clusters bound
+        to the Scope, these labels are applied to each namespace under the
+        Scope. Scope-level labels take precedence over Namespace-level
+        labels (`namespace_labels` in the Fleet Namespace resource) if they
+        share a key. Keys and values must be Kubernetes-conformant.
+        """
+        return pulumi.get(self, "namespace_labels")
+
+    @namespace_labels.setter
+    def namespace_labels(self, value: Optional[pulumi.Input[Mapping[str, pulumi.Input[str]]]]):
+        pulumi.set(self, "namespace_labels", value)
+
     @property
     @pulumi.getter
     def project(self) -> Optional[pulumi.Input[str]]:
@@ -290,6 +338,7 @@ class Scope(pulumi.CustomResource):
                  resource_name: str,
                  opts: Optional[pulumi.ResourceOptions] = None,
                  labels: Optional[pulumi.Input[Mapping[str, pulumi.Input[str]]]] = None,
+                 namespace_labels: Optional[pulumi.Input[Mapping[str, pulumi.Input[str]]]] = None,
                  project: Optional[pulumi.Input[str]] = None,
                  scope_id: Optional[pulumi.Input[str]] = None,
                  __props__=None):
@@ -311,6 +360,11 @@ class Scope(pulumi.CustomResource):
 
         scope = gcp.gkehub.Scope("scope",
             scope_id="my-scope",
+            namespace_labels={
+                "keyb": "valueb",
+                "keya": "valuea",
+                "keyc": "valuec",
+            },
             labels={
                 "keyb": "valueb",
                 "keya": "valuea",
@@ -348,6 +402,11 @@ class Scope(pulumi.CustomResource):
                
                **Note**: This field is non-authoritative, and will only manage the labels present in your configuration.
                Please refer to the field `effective_labels` for all of the labels present on the resource.
+        :param pulumi.Input[Mapping[str, pulumi.Input[str]]] namespace_labels: Scope-level cluster namespace labels. For the member clusters bound
+               to the Scope, these labels are applied to each namespace under the
+               Scope. Scope-level labels take precedence over Namespace-level
+               labels (`namespace_labels` in the Fleet Namespace resource) if they
+               share a key. Keys and values must be Kubernetes-conformant.
         :param pulumi.Input[str] project: The ID of the project in which the resource belongs.
                If it is not provided, the provider project is used.
         :param pulumi.Input[str] scope_id: The client-provided identifier of the scope.
@@ -379,6 +438,11 @@ class Scope(pulumi.CustomResource):
 
         scope = gcp.gkehub.Scope("scope",
             scope_id="my-scope",
+            namespace_labels={
+                "keyb": "valueb",
+                "keya": "valuea",
+                "keyc": "valuec",
+            },
             labels={
                 "keyb": "valueb",
                 "keya": "valuea",
@@ -426,6 +490,7 @@ class Scope(pulumi.CustomResource):
                  resource_name: str,
                  opts: Optional[pulumi.ResourceOptions] = None,
                  labels: Optional[pulumi.Input[Mapping[str, pulumi.Input[str]]]] = None,
+                 namespace_labels: Optional[pulumi.Input[Mapping[str, pulumi.Input[str]]]] = None,
                  project: Optional[pulumi.Input[str]] = None,
                  scope_id: Optional[pulumi.Input[str]] = None,
                  __props__=None):
@@ -438,6 +503,7 @@ class Scope(pulumi.CustomResource):
             __props__ = ScopeArgs.__new__(ScopeArgs)
 
             __props__.__dict__["labels"] = labels
+            __props__.__dict__["namespace_labels"] = namespace_labels
             __props__.__dict__["project"] = project
             if scope_id is None and not opts.urn:
                 raise TypeError("Missing required property 'scope_id'")
@@ -467,6 +533,7 @@ class Scope(pulumi.CustomResource):
             effective_labels: Optional[pulumi.Input[Mapping[str, pulumi.Input[str]]]] = None,
             labels: Optional[pulumi.Input[Mapping[str, pulumi.Input[str]]]] = None,
             name: Optional[pulumi.Input[str]] = None,
+            namespace_labels: Optional[pulumi.Input[Mapping[str, pulumi.Input[str]]]] = None,
             project: Optional[pulumi.Input[str]] = None,
             pulumi_labels: Optional[pulumi.Input[Mapping[str, pulumi.Input[str]]]] = None,
             scope_id: Optional[pulumi.Input[str]] = None,
@@ -488,6 +555,11 @@ class Scope(pulumi.CustomResource):
                **Note**: This field is non-authoritative, and will only manage the labels present in your configuration.
                Please refer to the field `effective_labels` for all of the labels present on the resource.
         :param pulumi.Input[str] name: The unique identifier of the scope
+        :param pulumi.Input[Mapping[str, pulumi.Input[str]]] namespace_labels: Scope-level cluster namespace labels. For the member clusters bound
+               to the Scope, these labels are applied to each namespace under the
+               Scope. Scope-level labels take precedence over Namespace-level
+               labels (`namespace_labels` in the Fleet Namespace resource) if they
+               share a key. Keys and values must be Kubernetes-conformant.
         :param pulumi.Input[str] project: The ID of the project in which the resource belongs.
                If it is not provided, the provider project is used.
         :param pulumi.Input[Mapping[str, pulumi.Input[str]]] pulumi_labels: The combination of labels configured directly on the resource
@@ -510,6 +582,7 @@ class Scope(pulumi.CustomResource):
         __props__.__dict__["effective_labels"] = effective_labels
         __props__.__dict__["labels"] = labels
         __props__.__dict__["name"] = name
+        __props__.__dict__["namespace_labels"] = namespace_labels
         __props__.__dict__["project"] = project
         __props__.__dict__["pulumi_labels"] = pulumi_labels
         __props__.__dict__["scope_id"] = scope_id
@@ -561,6 +634,18 @@ class Scope(pulumi.CustomResource):
         """
         return pulumi.get(self, "name")
 
+    @property
+    @pulumi.getter(name="namespaceLabels")
+    def namespace_labels(self) -> pulumi.Output[Optional[Mapping[str, str]]]:
+        """
+        Scope-level cluster namespace labels. For the member clusters bound
+        to the Scope, these labels are applied to each namespace under the
+        Scope. Scope-level labels take precedence over Namespace-level
+        labels (`namespace_labels` in the Fleet Namespace resource) if they
+        share a key. Keys and values must be Kubernetes-conformant.
+        """
+        return pulumi.get(self, "namespace_labels")
+
     @property
     @pulumi.getter
     def project(self) -> pulumi.Output[str]:

pulumi_gcp/monitoring/get_app_engine_service.py

@@ -153,7 +153,7 @@ def get_app_engine_service(module_id: Optional[str] = None,
     myapp = gcp.appengine.StandardAppVersion("myapp",
         version_id="v1",
         service="myapp",
-        runtime="nodejs10",
+        runtime="nodejs20",
         entrypoint=gcp.appengine.StandardAppVersionEntrypointArgs(
             shell="node ./app.js",
         ),
@@ -233,7 +233,7 @@ def get_app_engine_service_output(module_id: Optional[pulumi.Input[str]] = None,
     myapp = gcp.appengine.StandardAppVersion("myapp",
         version_id="v1",
         service="myapp",
-        runtime="nodejs10",
+        runtime="nodejs20",
         entrypoint=gcp.appengine.StandardAppVersionEntrypointArgs(
             shell="node ./app.js",
         ),

pulumi_gcp/spanner/_inputs.py

@@ -50,6 +50,10 @@ class DatabaseIAMBindingConditionArgs:
                  expression: pulumi.Input[str],
                  title: pulumi.Input[str],
                  description: Optional[pulumi.Input[str]] = None):
+        """
+        :param pulumi.Input[str] expression: Textual representation of an expression in Common Expression Language syntax.
+        :param pulumi.Input[str] title: A title for the expression, i.e. a short string describing its purpose.
+        """
         pulumi.set(__self__, "expression", expression)
         pulumi.set(__self__, "title", title)
         if description is not None:
@@ -58,6 +62,9 @@ class DatabaseIAMBindingConditionArgs:
     @property
     @pulumi.getter
     def expression(self) -> pulumi.Input[str]:
+        """
+        Textual representation of an expression in Common Expression Language syntax.
+        """
         return pulumi.get(self, "expression")
 
     @expression.setter
@@ -67,6 +74,9 @@ class DatabaseIAMBindingConditionArgs:
     @property
     @pulumi.getter
     def title(self) -> pulumi.Input[str]:
+        """
+        A title for the expression, i.e. a short string describing its purpose.
+        """
         return pulumi.get(self, "title")
 
     @title.setter
@@ -89,6 +99,10 @@ class DatabaseIAMMemberConditionArgs:
                  expression: pulumi.Input[str],
                  title: pulumi.Input[str],
                  description: Optional[pulumi.Input[str]] = None):
+        """
+        :param pulumi.Input[str] expression: Textual representation of an expression in Common Expression Language syntax.
+        :param pulumi.Input[str] title: A title for the expression, i.e. a short string describing its purpose.
+        """
         pulumi.set(__self__, "expression", expression)
         pulumi.set(__self__, "title", title)
         if description is not None:
@@ -97,6 +111,9 @@ class DatabaseIAMMemberConditionArgs:
     @property
     @pulumi.getter
     def expression(self) -> pulumi.Input[str]:
+        """
+        Textual representation of an expression in Common Expression Language syntax.
+        """
         return pulumi.get(self, "expression")
 
     @expression.setter
@@ -106,6 +123,9 @@ class DatabaseIAMMemberConditionArgs:
     @property
     @pulumi.getter
     def title(self) -> pulumi.Input[str]:
+        """
+        A title for the expression, i.e. a short string describing its purpose.
+        """
         return pulumi.get(self, "title")
 
     @title.setter

pulumi_gcp/spanner/database_iam_binding.py

@@ -38,6 +38,8 @@ class DatabaseIAMBindingArgs:
         :param pulumi.Input[str] role: The role that should be applied. Only one
                `spanner.DatabaseIAMBinding` can be used per role. Note that custom roles must be of the format
                `[projects|organizations]/{parent-name}/roles/{role-name}`.
+        :param pulumi.Input['DatabaseIAMBindingConditionArgs'] condition: An [IAM Condition](https://cloud.google.com/iam/docs/conditions-overview) for a given binding.
+               Structure is documented below.
         :param pulumi.Input[str] project: The ID of the project in which the resource belongs. If it
                is not provided, the provider project is used.
         """
@@ -109,6 +111,10 @@ class DatabaseIAMBindingArgs:
     @property
     @pulumi.getter
     def condition(self) -> Optional[pulumi.Input['DatabaseIAMBindingConditionArgs']]:
+        """
+        An [IAM Condition](https://cloud.google.com/iam/docs/conditions-overview) for a given binding.
+        Structure is documented below.
+        """
         return pulumi.get(self, "condition")
 
     @condition.setter
@@ -141,6 +147,8 @@ class _DatabaseIAMBindingState:
                  role: Optional[pulumi.Input[str]] = None):
         """
         Input properties used for looking up and filtering DatabaseIAMBinding resources.
+        :param pulumi.Input['DatabaseIAMBindingConditionArgs'] condition: An [IAM Condition](https://cloud.google.com/iam/docs/conditions-overview) for a given binding.
+               Structure is documented below.
         :param pulumi.Input[str] database: The name of the Spanner database.
         :param pulumi.Input[str] etag: (Computed) The etag of the database's IAM policy.
         :param pulumi.Input[str] instance: The name of the Spanner instance the database belongs to.
@@ -177,6 +185,10 @@ class _DatabaseIAMBindingState:
     @property
     @pulumi.getter
     def condition(self) -> Optional[pulumi.Input['DatabaseIAMBindingConditionArgs']]:
+        """
+        An [IAM Condition](https://cloud.google.com/iam/docs/conditions-overview) for a given binding.
+        Structure is documented below.
+        """
         return pulumi.get(self, "condition")
 
     @condition.setter
@@ -307,6 +319,27 @@ class DatabaseIAMBinding(pulumi.CustomResource):
             policy_data=admin.policy_data)
         ```
 
+        With IAM Conditions:
+
+        ```python
+        import pulumi
+        import pulumi_gcp as gcp
+
+        admin = gcp.organizations.get_iam_policy(bindings=[gcp.organizations.GetIAMPolicyBindingArgs(
+            role="roles/editor",
+            members=["user:jane@example.com"],
+            condition=gcp.organizations.GetIAMPolicyBindingConditionArgs(
+                title="My Role",
+                description="Grant permissions on my_role",
+                expression="(resource.type == \\"spanner.googleapis.com/DatabaseRole\\" && (resource.name.endsWith(\\"/myrole\\")))",
+            ),
+        )])
+        database = gcp.spanner.DatabaseIAMPolicy("database",
+            instance="your-instance-name",
+            database="your-database-name",
+            policy_data=admin.policy_data)
+        ```
+
         ## google\\_spanner\\_database\\_iam\\_binding
 
         ```python
@@ -320,6 +353,24 @@ class DatabaseIAMBinding(pulumi.CustomResource):
             members=["user:jane@example.com"])
         ```
 
+        With IAM Conditions:
+
+        ```python
+        import pulumi
+        import pulumi_gcp as gcp
+
+        database = gcp.spanner.DatabaseIAMBinding("database",
+            instance="your-instance-name",
+            database="your-database-name",
+            role="roles/compute.networkUser",
+            members=["user:jane@example.com"],
+            condition=gcp.spanner.DatabaseIAMBindingConditionArgs(
+                title="My Role",
+                description="Grant permissions on my_role",
+                expression="(resource.type == \\"spanner.googleapis.com/DatabaseRole\\" && (resource.name.endsWith(\\"/myrole\\")))",
+            ))
+        ```
+
         ## google\\_spanner\\_database\\_iam\\_member
 
         ```python
@@ -333,6 +384,24 @@ class DatabaseIAMBinding(pulumi.CustomResource):
             member="user:jane@example.com")
         ```
 
+        With IAM Conditions:
+
+        ```python
+        import pulumi
+        import pulumi_gcp as gcp
+
+        database = gcp.spanner.DatabaseIAMMember("database",
+            instance="your-instance-name",
+            database="your-database-name",
+            role="roles/compute.networkUser",
+            member="user:jane@example.com",
+            condition=gcp.spanner.DatabaseIAMMemberConditionArgs(
+                title="My Role",
+                description="Grant permissions on my_role",
+                expression="(resource.type == \\"spanner.googleapis.com/DatabaseRole\\" && (resource.name.endsWith(\\"/myrole\\")))",
+            ))
+        ```
+
         ## Import
 
         ### Importing IAM policies
@@ -361,6 +430,8 @@ class DatabaseIAMBinding(pulumi.CustomResource):
 
         :param str resource_name: The name of the resource.
         :param pulumi.ResourceOptions opts: Options for the resource.
+        :param pulumi.Input[pulumi.InputType['DatabaseIAMBindingConditionArgs']] condition: An [IAM Condition](https://cloud.google.com/iam/docs/conditions-overview) for a given binding.
+               Structure is documented below.
         :param pulumi.Input[str] database: The name of the Spanner database.
         :param pulumi.Input[str] instance: The name of the Spanner instance the database belongs to.
                
@@ -414,6 +485,27 @@ class DatabaseIAMBinding(pulumi.CustomResource):
             policy_data=admin.policy_data)
         ```
 
+        With IAM Conditions:
+
+        ```python
+        import pulumi
+        import pulumi_gcp as gcp
+
+        admin = gcp.organizations.get_iam_policy(bindings=[gcp.organizations.GetIAMPolicyBindingArgs(
+            role="roles/editor",
+            members=["user:jane@example.com"],
+            condition=gcp.organizations.GetIAMPolicyBindingConditionArgs(
+                title="My Role",
+                description="Grant permissions on my_role",
+                expression="(resource.type == \\"spanner.googleapis.com/DatabaseRole\\" && (resource.name.endsWith(\\"/myrole\\")))",
+            ),
+        )])
+        database = gcp.spanner.DatabaseIAMPolicy("database",
+            instance="your-instance-name",
+            database="your-database-name",
+            policy_data=admin.policy_data)
+        ```
+
         ## google\\_spanner\\_database\\_iam\\_binding
 
         ```python
@@ -427,6 +519,24 @@ class DatabaseIAMBinding(pulumi.CustomResource):
             members=["user:jane@example.com"])
         ```
 
+        With IAM Conditions:
+
+        ```python
+        import pulumi
+        import pulumi_gcp as gcp
+
+        database = gcp.spanner.DatabaseIAMBinding("database",
+            instance="your-instance-name",
+            database="your-database-name",
+            role="roles/compute.networkUser",
+            members=["user:jane@example.com"],
+            condition=gcp.spanner.DatabaseIAMBindingConditionArgs(
+                title="My Role",
+                description="Grant permissions on my_role",
+                expression="(resource.type == \\"spanner.googleapis.com/DatabaseRole\\" && (resource.name.endsWith(\\"/myrole\\")))",
+            ))
+        ```
+
         ## google\\_spanner\\_database\\_iam\\_member
 
         ```python
@@ -440,6 +550,24 @@ class DatabaseIAMBinding(pulumi.CustomResource):
             member="user:jane@example.com")
         ```
 
+        With IAM Conditions:
+
+        ```python
+        import pulumi
+        import pulumi_gcp as gcp
+
+        database = gcp.spanner.DatabaseIAMMember("database",
+            instance="your-instance-name",
+            database="your-database-name",
+            role="roles/compute.networkUser",
+            member="user:jane@example.com",
+            condition=gcp.spanner.DatabaseIAMMemberConditionArgs(
+                title="My Role",
+                description="Grant permissions on my_role",
+                expression="(resource.type == \\"spanner.googleapis.com/DatabaseRole\\" && (resource.name.endsWith(\\"/myrole\\")))",
+            ))
+        ```
+
         ## Import
 
         ### Importing IAM policies
@@ -535,6 +663,8 @@ class DatabaseIAMBinding(pulumi.CustomResource):
         :param str resource_name: The unique name of the resulting resource.
         :param pulumi.Input[str] id: The unique provider ID of the resource to lookup.
         :param pulumi.ResourceOptions opts: Options for the resource.
+        :param pulumi.Input[pulumi.InputType['DatabaseIAMBindingConditionArgs']] condition: An [IAM Condition](https://cloud.google.com/iam/docs/conditions-overview) for a given binding.
+               Structure is documented below.
         :param pulumi.Input[str] database: The name of the Spanner database.
         :param pulumi.Input[str] etag: (Computed) The etag of the database's IAM policy.
         :param pulumi.Input[str] instance: The name of the Spanner instance the database belongs to.
@@ -569,6 +699,10 @@ class DatabaseIAMBinding(pulumi.CustomResource):
     @property
     @pulumi.getter
     def condition(self) -> pulumi.Output[Optional['outputs.DatabaseIAMBindingCondition']]:
+        """
+        An [IAM Condition](https://cloud.google.com/iam/docs/conditions-overview) for a given binding.
+        Structure is documented below.
+        """
         return pulumi.get(self, "condition")
 
     @property