pulumi-gcp 7.18.0a1712687150__py3-none-any.whl → 7.18.0a1712714650__py3-none-any.whl

pulumi_gcp/applicationintegration/client.py

@@ -271,7 +271,9 @@ class Client(pulumi.CustomResource):
         import pulumi
         import pulumi_gcp as gcp
 
-        example = gcp.applicationintegration.Client("example", location="us-central1")
+        example = gcp.applicationintegration.Client("example",
+            location="us-central1",
+            provision_gmek=True)
         ```
         <!--End PulumiCodeChooser -->
         ### Integrations Client Advance
@@ -284,23 +286,25 @@ class Client(pulumi.CustomResource):
         test_project = gcp.organizations.get_project()
         keyring = gcp.kms.KeyRing("keyring",
             name="my-keyring",
-            location="us-central1")
+            location="us-east1")
         cryptokey = gcp.kms.CryptoKey("cryptokey",
             name="crypto-key-example",
             key_ring=keyring.id,
             rotation_period="7776000s")
         test_key = gcp.kms.CryptoKeyVersion("test_key", crypto_key=cryptokey.id)
+        service_account = gcp.serviceaccount.Account("service_account",
+            account_id="service-account-id",
+            display_name="Service Account")
         example = gcp.applicationintegration.Client("example",
-            location="us-central1",
+            location="us-east1",
             create_sample_workflows=True,
-            provision_gmek=True,
-            run_as_service_account="radndom-service-account",
+            run_as_service_account=service_account.email,
             cloud_kms_config=gcp.applicationintegration.ClientCloudKmsConfigArgs(
-                kms_location="us-central1",
+                kms_location="us-east1",
                 kms_ring=keyring.id,
                 key=cryptokey.id,
                 key_version=test_key.id,
-                kms_project_id=test_project.id,
+                kms_project_id=test_project.project_id,
             ))
         ```
         <!--End PulumiCodeChooser -->
@@ -368,7 +372,9 @@ class Client(pulumi.CustomResource):
         import pulumi
         import pulumi_gcp as gcp
 
-        example = gcp.applicationintegration.Client("example", location="us-central1")
+        example = gcp.applicationintegration.Client("example",
+            location="us-central1",
+            provision_gmek=True)
         ```
         <!--End PulumiCodeChooser -->
         ### Integrations Client Advance
@@ -381,23 +387,25 @@ class Client(pulumi.CustomResource):
         test_project = gcp.organizations.get_project()
         keyring = gcp.kms.KeyRing("keyring",
             name="my-keyring",
-            location="us-central1")
+            location="us-east1")
         cryptokey = gcp.kms.CryptoKey("cryptokey",
             name="crypto-key-example",
             key_ring=keyring.id,
             rotation_period="7776000s")
         test_key = gcp.kms.CryptoKeyVersion("test_key", crypto_key=cryptokey.id)
+        service_account = gcp.serviceaccount.Account("service_account",
+            account_id="service-account-id",
+            display_name="Service Account")
         example = gcp.applicationintegration.Client("example",
-            location="us-central1",
+            location="us-east1",
             create_sample_workflows=True,
-            provision_gmek=True,
-            run_as_service_account="radndom-service-account",
+            run_as_service_account=service_account.email,
             cloud_kms_config=gcp.applicationintegration.ClientCloudKmsConfigArgs(
-                kms_location="us-central1",
+                kms_location="us-east1",
                 kms_ring=keyring.id,
                 key=cryptokey.id,
                 key_version=test_key.id,
-                kms_project_id=test_project.id,
+                kms_project_id=test_project.project_id,
             ))
         ```
         <!--End PulumiCodeChooser -->

pulumi_gcp/cloudrunv2/_inputs.py

@@ -28,6 +28,7 @@ __all__ = [
     'JobTemplateTemplateVolumeCloudSqlInstanceArgs',
     'JobTemplateTemplateVolumeEmptyDirArgs',
     'JobTemplateTemplateVolumeGcsArgs',
+    'JobTemplateTemplateVolumeNfsArgs',
     'JobTemplateTemplateVolumeSecretArgs',
     'JobTemplateTemplateVolumeSecretItemArgs',
     'JobTemplateTemplateVpcAccessArgs',
@@ -1035,6 +1036,7 @@ class JobTemplateTemplateVolumeArgs:
                  cloud_sql_instance: Optional[pulumi.Input['JobTemplateTemplateVolumeCloudSqlInstanceArgs']] = None,
                  empty_dir: Optional[pulumi.Input['JobTemplateTemplateVolumeEmptyDirArgs']] = None,
                  gcs: Optional[pulumi.Input['JobTemplateTemplateVolumeGcsArgs']] = None,
+                 nfs: Optional[pulumi.Input['JobTemplateTemplateVolumeNfsArgs']] = None,
                  secret: Optional[pulumi.Input['JobTemplateTemplateVolumeSecretArgs']] = None):
         """
         :param pulumi.Input[str] name: Volume's name.
@@ -1044,6 +1046,8 @@ class JobTemplateTemplateVolumeArgs:
                Structure is documented below.
         :param pulumi.Input['JobTemplateTemplateVolumeGcsArgs'] gcs: Cloud Storage bucket mounted as a volume using GCSFuse. This feature requires the launch stage to be set to ALPHA or BETA.
                Structure is documented below.
+        :param pulumi.Input['JobTemplateTemplateVolumeNfsArgs'] nfs: NFS share mounted as a volume. This feature requires the launch stage to be set to ALPHA or BETA.
+               Structure is documented below.
         :param pulumi.Input['JobTemplateTemplateVolumeSecretArgs'] secret: Secret represents a secret that should populate this volume. More info: https://kubernetes.io/docs/concepts/storage/volumes#secret
                Structure is documented below.
         """
@@ -1054,6 +1058,8 @@ class JobTemplateTemplateVolumeArgs:
             pulumi.set(__self__, "empty_dir", empty_dir)
         if gcs is not None:
             pulumi.set(__self__, "gcs", gcs)
+        if nfs is not None:
+            pulumi.set(__self__, "nfs", nfs)
         if secret is not None:
             pulumi.set(__self__, "secret", secret)
 
@@ -1108,6 +1114,19 @@ class JobTemplateTemplateVolumeArgs:
     def gcs(self, value: Optional[pulumi.Input['JobTemplateTemplateVolumeGcsArgs']]):
         pulumi.set(self, "gcs", value)
 
+    @property
+    @pulumi.getter
+    def nfs(self) -> Optional[pulumi.Input['JobTemplateTemplateVolumeNfsArgs']]:
+        """
+        NFS share mounted as a volume. This feature requires the launch stage to be set to ALPHA or BETA.
+        Structure is documented below.
+        """
+        return pulumi.get(self, "nfs")
+
+    @nfs.setter
+    def nfs(self, value: Optional[pulumi.Input['JobTemplateTemplateVolumeNfsArgs']]):
+        pulumi.set(self, "nfs", value)
+
     @property
     @pulumi.getter
     def secret(self) -> Optional[pulumi.Input['JobTemplateTemplateVolumeSecretArgs']]:
@@ -1226,6 +1245,60 @@ class JobTemplateTemplateVolumeGcsArgs:
         pulumi.set(self, "read_only", value)
 
 
+@pulumi.input_type
+class JobTemplateTemplateVolumeNfsArgs:
+    def __init__(__self__, *,
+                 server: pulumi.Input[str],
+                 path: Optional[pulumi.Input[str]] = None,
+                 read_only: Optional[pulumi.Input[bool]] = None):
+        """
+        :param pulumi.Input[str] server: Hostname or IP address of the NFS server.
+        :param pulumi.Input[str] path: Path that is exported by the NFS server.
+        :param pulumi.Input[bool] read_only: If true, mount this volume as read-only in all mounts.
+        """
+        pulumi.set(__self__, "server", server)
+        if path is not None:
+            pulumi.set(__self__, "path", path)
+        if read_only is not None:
+            pulumi.set(__self__, "read_only", read_only)
+
+    @property
+    @pulumi.getter
+    def server(self) -> pulumi.Input[str]:
+        """
+        Hostname or IP address of the NFS server.
+        """
+        return pulumi.get(self, "server")
+
+    @server.setter
+    def server(self, value: pulumi.Input[str]):
+        pulumi.set(self, "server", value)
+
+    @property
+    @pulumi.getter
+    def path(self) -> Optional[pulumi.Input[str]]:
+        """
+        Path that is exported by the NFS server.
+        """
+        return pulumi.get(self, "path")
+
+    @path.setter
+    def path(self, value: Optional[pulumi.Input[str]]):
+        pulumi.set(self, "path", value)
+
+    @property
+    @pulumi.getter(name="readOnly")
+    def read_only(self) -> Optional[pulumi.Input[bool]]:
+        """
+        If true, mount this volume as read-only in all mounts.
+        """
+        return pulumi.get(self, "read_only")
+
+    @read_only.setter
+    def read_only(self, value: Optional[pulumi.Input[bool]]):
+        pulumi.set(self, "read_only", value)
+
+
 @pulumi.input_type
 class JobTemplateTemplateVolumeSecretArgs:
     def __init__(__self__, *,

pulumi_gcp/cloudrunv2/outputs.py

@@ -29,6 +29,7 @@ __all__ = [
     'JobTemplateTemplateVolumeCloudSqlInstance',
     'JobTemplateTemplateVolumeEmptyDir',
     'JobTemplateTemplateVolumeGcs',
+    'JobTemplateTemplateVolumeNfs',
     'JobTemplateTemplateVolumeSecret',
     'JobTemplateTemplateVolumeSecretItem',
     'JobTemplateTemplateVpcAccess',
@@ -86,6 +87,7 @@ __all__ = [
     'GetJobTemplateTemplateVolumeCloudSqlInstanceResult',
     'GetJobTemplateTemplateVolumeEmptyDirResult',
     'GetJobTemplateTemplateVolumeGcResult',
+    'GetJobTemplateTemplateVolumeNfResult',
     'GetJobTemplateTemplateVolumeSecretResult',
     'GetJobTemplateTemplateVolumeSecretItemResult',
     'GetJobTemplateTemplateVpcAccessResult',
@@ -1090,6 +1092,7 @@ class JobTemplateTemplateVolume(dict):
                  cloud_sql_instance: Optional['outputs.JobTemplateTemplateVolumeCloudSqlInstance'] = None,
                  empty_dir: Optional['outputs.JobTemplateTemplateVolumeEmptyDir'] = None,
                  gcs: Optional['outputs.JobTemplateTemplateVolumeGcs'] = None,
+                 nfs: Optional['outputs.JobTemplateTemplateVolumeNfs'] = None,
                  secret: Optional['outputs.JobTemplateTemplateVolumeSecret'] = None):
         """
         :param str name: Volume's name.
@@ -1099,6 +1102,8 @@ class JobTemplateTemplateVolume(dict):
                Structure is documented below.
         :param 'JobTemplateTemplateVolumeGcsArgs' gcs: Cloud Storage bucket mounted as a volume using GCSFuse. This feature requires the launch stage to be set to ALPHA or BETA.
                Structure is documented below.
+        :param 'JobTemplateTemplateVolumeNfsArgs' nfs: NFS share mounted as a volume. This feature requires the launch stage to be set to ALPHA or BETA.
+               Structure is documented below.
         :param 'JobTemplateTemplateVolumeSecretArgs' secret: Secret represents a secret that should populate this volume. More info: https://kubernetes.io/docs/concepts/storage/volumes#secret
                Structure is documented below.
         """
@@ -1109,6 +1114,8 @@ class JobTemplateTemplateVolume(dict):
             pulumi.set(__self__, "empty_dir", empty_dir)
         if gcs is not None:
             pulumi.set(__self__, "gcs", gcs)
+        if nfs is not None:
+            pulumi.set(__self__, "nfs", nfs)
         if secret is not None:
             pulumi.set(__self__, "secret", secret)
 
@@ -1147,6 +1154,15 @@ class JobTemplateTemplateVolume(dict):
         """
         return pulumi.get(self, "gcs")
 
+    @property
+    @pulumi.getter
+    def nfs(self) -> Optional['outputs.JobTemplateTemplateVolumeNfs']:
+        """
+        NFS share mounted as a volume. This feature requires the launch stage to be set to ALPHA or BETA.
+        Structure is documented below.
+        """
+        return pulumi.get(self, "nfs")
+
     @property
     @pulumi.getter
     def secret(self) -> Optional['outputs.JobTemplateTemplateVolumeSecret']:
@@ -1275,6 +1291,65 @@ class JobTemplateTemplateVolumeGcs(dict):
         return pulumi.get(self, "read_only")
 
 
+@pulumi.output_type
+class JobTemplateTemplateVolumeNfs(dict):
+    @staticmethod
+    def __key_warning(key: str):
+        suggest = None
+        if key == "readOnly":
+            suggest = "read_only"
+
+        if suggest:
+            pulumi.log.warn(f"Key '{key}' not found in JobTemplateTemplateVolumeNfs. Access the value via the '{suggest}' property getter instead.")
+
+    def __getitem__(self, key: str) -> Any:
+        JobTemplateTemplateVolumeNfs.__key_warning(key)
+        return super().__getitem__(key)
+
+    def get(self, key: str, default = None) -> Any:
+        JobTemplateTemplateVolumeNfs.__key_warning(key)
+        return super().get(key, default)
+
+    def __init__(__self__, *,
+                 server: str,
+                 path: Optional[str] = None,
+                 read_only: Optional[bool] = None):
+        """
+        :param str server: Hostname or IP address of the NFS server.
+        :param str path: Path that is exported by the NFS server.
+        :param bool read_only: If true, mount this volume as read-only in all mounts.
+        """
+        pulumi.set(__self__, "server", server)
+        if path is not None:
+            pulumi.set(__self__, "path", path)
+        if read_only is not None:
+            pulumi.set(__self__, "read_only", read_only)
+
+    @property
+    @pulumi.getter
+    def server(self) -> str:
+        """
+        Hostname or IP address of the NFS server.
+        """
+        return pulumi.get(self, "server")
+
+    @property
+    @pulumi.getter
+    def path(self) -> Optional[str]:
+        """
+        Path that is exported by the NFS server.
+        """
+        return pulumi.get(self, "path")
+
+    @property
+    @pulumi.getter(name="readOnly")
+    def read_only(self) -> Optional[bool]:
+        """
+        If true, mount this volume as read-only in all mounts.
+        """
+        return pulumi.get(self, "read_only")
+
+
 @pulumi.output_type
 class JobTemplateTemplateVolumeSecret(dict):
     @staticmethod
@@ -4623,18 +4698,21 @@ class GetJobTemplateTemplateVolumeResult(dict):
                  empty_dirs: Sequence['outputs.GetJobTemplateTemplateVolumeEmptyDirResult'],
                  gcs: Sequence['outputs.GetJobTemplateTemplateVolumeGcResult'],
                  name: str,
+                 nfs: Sequence['outputs.GetJobTemplateTemplateVolumeNfResult'],
                  secrets: Sequence['outputs.GetJobTemplateTemplateVolumeSecretResult']):
         """
         :param Sequence['GetJobTemplateTemplateVolumeCloudSqlInstanceArgs'] cloud_sql_instances: For Cloud SQL volumes, contains the specific instances that should be mounted. Visit https://cloud.google.com/sql/docs/mysql/connect-run for more information on how to connect Cloud SQL and Cloud Run.
         :param Sequence['GetJobTemplateTemplateVolumeEmptyDirArgs'] empty_dirs: Ephemeral storage used as a shared volume.
         :param Sequence['GetJobTemplateTemplateVolumeGcArgs'] gcs: Cloud Storage bucket mounted as a volume using GCSFuse. This feature requires the launch stage to be set to ALPHA or BETA.
         :param str name: The name of the Cloud Run v2 Job.
+        :param Sequence['GetJobTemplateTemplateVolumeNfArgs'] nfs: NFS share mounted as a volume. This feature requires the launch stage to be set to ALPHA or BETA.
         :param Sequence['GetJobTemplateTemplateVolumeSecretArgs'] secrets: Secret represents a secret that should populate this volume. More info: https://kubernetes.io/docs/concepts/storage/volumes#secret
         """
         pulumi.set(__self__, "cloud_sql_instances", cloud_sql_instances)
         pulumi.set(__self__, "empty_dirs", empty_dirs)
         pulumi.set(__self__, "gcs", gcs)
         pulumi.set(__self__, "name", name)
+        pulumi.set(__self__, "nfs", nfs)
         pulumi.set(__self__, "secrets", secrets)
 
     @property
@@ -4669,6 +4747,14 @@ class GetJobTemplateTemplateVolumeResult(dict):
         """
         return pulumi.get(self, "name")
 
+    @property
+    @pulumi.getter
+    def nfs(self) -> Sequence['outputs.GetJobTemplateTemplateVolumeNfResult']:
+        """
+        NFS share mounted as a volume. This feature requires the launch stage to be set to ALPHA or BETA.
+        """
+        return pulumi.get(self, "nfs")
+
     @property
     @pulumi.getter
     def secrets(self) -> Sequence['outputs.GetJobTemplateTemplateVolumeSecretResult']:
@@ -4754,6 +4840,46 @@ class GetJobTemplateTemplateVolumeGcResult(dict):
         return pulumi.get(self, "read_only")
 
 
+@pulumi.output_type
+class GetJobTemplateTemplateVolumeNfResult(dict):
+    def __init__(__self__, *,
+                 path: str,
+                 read_only: bool,
+                 server: str):
+        """
+        :param str path: Path that is exported by the NFS server.
+        :param bool read_only: If true, mount this volume as read-only in all mounts.
+        :param str server: Hostname or IP address of the NFS server.
+        """
+        pulumi.set(__self__, "path", path)
+        pulumi.set(__self__, "read_only", read_only)
+        pulumi.set(__self__, "server", server)
+
+    @property
+    @pulumi.getter
+    def path(self) -> str:
+        """
+        Path that is exported by the NFS server.
+        """
+        return pulumi.get(self, "path")
+
+    @property
+    @pulumi.getter(name="readOnly")
+    def read_only(self) -> bool:
+        """
+        If true, mount this volume as read-only in all mounts.
+        """
+        return pulumi.get(self, "read_only")
+
+    @property
+    @pulumi.getter
+    def server(self) -> str:
+        """
+        Hostname or IP address of the NFS server.
+        """
+        return pulumi.get(self, "server")
+
+
 @pulumi.output_type
 class GetJobTemplateTemplateVolumeSecretResult(dict):
     def __init__(__self__, *,

pulumi_gcp/container/_inputs.py

@@ -7581,12 +7581,16 @@ class ClusterNodePoolArgs:
 @pulumi.input_type
 class ClusterNodePoolAutoConfigArgs:
     def __init__(__self__, *,
-                 network_tags: Optional[pulumi.Input['ClusterNodePoolAutoConfigNetworkTagsArgs']] = None):
+                 network_tags: Optional[pulumi.Input['ClusterNodePoolAutoConfigNetworkTagsArgs']] = None,
+                 resource_manager_tags: Optional[pulumi.Input[Mapping[str, Any]]] = None):
         """
         :param pulumi.Input['ClusterNodePoolAutoConfigNetworkTagsArgs'] network_tags: The network tag config for the cluster's automatically provisioned node pools.
+        :param pulumi.Input[Mapping[str, Any]] resource_manager_tags: A map of resource manager tag keys and values to be attached to the nodes for managing Compute Engine firewalls using Network Firewall Policies. Tags must be according to specifications found [here](https://cloud.google.com/vpc/docs/tags-firewalls-overview#specifications). A maximum of 5 tag key-value pairs can be specified. Existing tags will be replaced with new values. Tags must be in one of the following formats ([KEY]=[VALUE]) 1. `tagKeys/{tag_key_id}=tagValues/{tag_value_id}` 2. `{org_id}/{tag_key_name}={tag_value_name}` 3. `{project_id}/{tag_key_name}={tag_value_name}`.
         """
         if network_tags is not None:
             pulumi.set(__self__, "network_tags", network_tags)
+        if resource_manager_tags is not None:
+            pulumi.set(__self__, "resource_manager_tags", resource_manager_tags)
 
     @property
     @pulumi.getter(name="networkTags")
@@ -7600,6 +7604,18 @@ class ClusterNodePoolAutoConfigArgs:
     def network_tags(self, value: Optional[pulumi.Input['ClusterNodePoolAutoConfigNetworkTagsArgs']]):
         pulumi.set(self, "network_tags", value)
 
+    @property
+    @pulumi.getter(name="resourceManagerTags")
+    def resource_manager_tags(self) -> Optional[pulumi.Input[Mapping[str, Any]]]:
+        """
+        A map of resource manager tag keys and values to be attached to the nodes for managing Compute Engine firewalls using Network Firewall Policies. Tags must be according to specifications found [here](https://cloud.google.com/vpc/docs/tags-firewalls-overview#specifications). A maximum of 5 tag key-value pairs can be specified. Existing tags will be replaced with new values. Tags must be in one of the following formats ([KEY]=[VALUE]) 1. `tagKeys/{tag_key_id}=tagValues/{tag_value_id}` 2. `{org_id}/{tag_key_name}={tag_value_name}` 3. `{project_id}/{tag_key_name}={tag_value_name}`.
+        """
+        return pulumi.get(self, "resource_manager_tags")
+
+    @resource_manager_tags.setter
+    def resource_manager_tags(self, value: Optional[pulumi.Input[Mapping[str, Any]]]):
+        pulumi.set(self, "resource_manager_tags", value)
+
 
 @pulumi.input_type
 class ClusterNodePoolAutoConfigNetworkTagsArgs:

pulumi_gcp/container/cluster.py

@@ -33,6 +33,7 @@ class ClusterArgs:
                  description: Optional[pulumi.Input[str]] = None,
                  dns_config: Optional[pulumi.Input['ClusterDnsConfigArgs']] = None,
                  enable_autopilot: Optional[pulumi.Input[bool]] = None,
+                 enable_cilium_clusterwide_network_policy: Optional[pulumi.Input[bool]] = None,
                  enable_fqdn_network_policy: Optional[pulumi.Input[bool]] = None,
                  enable_intranode_visibility: Optional[pulumi.Input[bool]] = None,
                  enable_k8s_beta_apis: Optional[pulumi.Input['ClusterEnableK8sBetaApisArgs']] = None,
@@ -127,6 +128,7 @@ class ClusterArgs:
                Note that when this option is enabled, certain features of Standard GKE are not available.
                See the [official documentation](https://cloud.google.com/kubernetes-engine/docs/concepts/autopilot-overview#comparison)
                for available features.
+        :param pulumi.Input[bool] enable_cilium_clusterwide_network_policy: Whether CiliumClusterWideNetworkPolicy is enabled on this cluster. Defaults to false.
         :param pulumi.Input[bool] enable_fqdn_network_policy: Whether FQDN Network Policy is enabled on this cluster. Users who enable this feature for existing Standard clusters must restart the GKE Dataplane V2 `anetd` DaemonSet after enabling it. See the [Enable FQDN Network Policy in an existing cluster](https://cloud.google.com/kubernetes-engine/docs/how-to/fqdn-network-policies#enable_fqdn_network_policy_in_an_existing_cluster) for more information.
         :param pulumi.Input[bool] enable_intranode_visibility: Whether Intra-node visibility is enabled for this cluster. This makes same node pod to pod traffic visible for VPC network.
         :param pulumi.Input['ClusterEnableK8sBetaApisArgs'] enable_k8s_beta_apis: Configuration for Kubernetes Beta APIs.
@@ -323,6 +325,8 @@ class ClusterArgs:
             pulumi.set(__self__, "dns_config", dns_config)
         if enable_autopilot is not None:
             pulumi.set(__self__, "enable_autopilot", enable_autopilot)
+        if enable_cilium_clusterwide_network_policy is not None:
+            pulumi.set(__self__, "enable_cilium_clusterwide_network_policy", enable_cilium_clusterwide_network_policy)
         if enable_fqdn_network_policy is not None:
             pulumi.set(__self__, "enable_fqdn_network_policy", enable_fqdn_network_policy)
         if enable_intranode_visibility is not None:
@@ -654,6 +658,18 @@ class ClusterArgs:
     def enable_autopilot(self, value: Optional[pulumi.Input[bool]]):
         pulumi.set(self, "enable_autopilot", value)
 
+    @property
+    @pulumi.getter(name="enableCiliumClusterwideNetworkPolicy")
+    def enable_cilium_clusterwide_network_policy(self) -> Optional[pulumi.Input[bool]]:
+        """
+        Whether CiliumClusterWideNetworkPolicy is enabled on this cluster. Defaults to false.
+        """
+        return pulumi.get(self, "enable_cilium_clusterwide_network_policy")
+
+    @enable_cilium_clusterwide_network_policy.setter
+    def enable_cilium_clusterwide_network_policy(self, value: Optional[pulumi.Input[bool]]):
+        pulumi.set(self, "enable_cilium_clusterwide_network_policy", value)
+
     @property
     @pulumi.getter(name="enableFqdnNetworkPolicy")
     def enable_fqdn_network_policy(self) -> Optional[pulumi.Input[bool]]:
@@ -1397,6 +1413,7 @@ class _ClusterState:
                  description: Optional[pulumi.Input[str]] = None,
                  dns_config: Optional[pulumi.Input['ClusterDnsConfigArgs']] = None,
                  enable_autopilot: Optional[pulumi.Input[bool]] = None,
+                 enable_cilium_clusterwide_network_policy: Optional[pulumi.Input[bool]] = None,
                  enable_fqdn_network_policy: Optional[pulumi.Input[bool]] = None,
                  enable_intranode_visibility: Optional[pulumi.Input[bool]] = None,
                  enable_k8s_beta_apis: Optional[pulumi.Input['ClusterEnableK8sBetaApisArgs']] = None,
@@ -1498,6 +1515,7 @@ class _ClusterState:
                Note that when this option is enabled, certain features of Standard GKE are not available.
                See the [official documentation](https://cloud.google.com/kubernetes-engine/docs/concepts/autopilot-overview#comparison)
                for available features.
+        :param pulumi.Input[bool] enable_cilium_clusterwide_network_policy: Whether CiliumClusterWideNetworkPolicy is enabled on this cluster. Defaults to false.
         :param pulumi.Input[bool] enable_fqdn_network_policy: Whether FQDN Network Policy is enabled on this cluster. Users who enable this feature for existing Standard clusters must restart the GKE Dataplane V2 `anetd` DaemonSet after enabling it. See the [Enable FQDN Network Policy in an existing cluster](https://cloud.google.com/kubernetes-engine/docs/how-to/fqdn-network-policies#enable_fqdn_network_policy_in_an_existing_cluster) for more information.
         :param pulumi.Input[bool] enable_intranode_visibility: Whether Intra-node visibility is enabled for this cluster. This makes same node pod to pod traffic visible for VPC network.
         :param pulumi.Input['ClusterEnableK8sBetaApisArgs'] enable_k8s_beta_apis: Configuration for Kubernetes Beta APIs.
@@ -1707,6 +1725,8 @@ class _ClusterState:
             pulumi.set(__self__, "dns_config", dns_config)
         if enable_autopilot is not None:
             pulumi.set(__self__, "enable_autopilot", enable_autopilot)
+        if enable_cilium_clusterwide_network_policy is not None:
+            pulumi.set(__self__, "enable_cilium_clusterwide_network_policy", enable_cilium_clusterwide_network_policy)
         if enable_fqdn_network_policy is not None:
             pulumi.set(__self__, "enable_fqdn_network_policy", enable_fqdn_network_policy)
         if enable_intranode_visibility is not None:
@@ -2052,6 +2072,18 @@ class _ClusterState:
     def enable_autopilot(self, value: Optional[pulumi.Input[bool]]):
         pulumi.set(self, "enable_autopilot", value)
 
+    @property
+    @pulumi.getter(name="enableCiliumClusterwideNetworkPolicy")
+    def enable_cilium_clusterwide_network_policy(self) -> Optional[pulumi.Input[bool]]:
+        """
+        Whether CiliumClusterWideNetworkPolicy is enabled on this cluster. Defaults to false.
+        """
+        return pulumi.get(self, "enable_cilium_clusterwide_network_policy")
+
+    @enable_cilium_clusterwide_network_policy.setter
+    def enable_cilium_clusterwide_network_policy(self, value: Optional[pulumi.Input[bool]]):
+        pulumi.set(self, "enable_cilium_clusterwide_network_policy", value)
+
     @property
     @pulumi.getter(name="enableFqdnNetworkPolicy")
     def enable_fqdn_network_policy(self) -> Optional[pulumi.Input[bool]]:
@@ -2885,6 +2917,7 @@ class Cluster(pulumi.CustomResource):
                  description: Optional[pulumi.Input[str]] = None,
                  dns_config: Optional[pulumi.Input[pulumi.InputType['ClusterDnsConfigArgs']]] = None,
                  enable_autopilot: Optional[pulumi.Input[bool]] = None,
+                 enable_cilium_clusterwide_network_policy: Optional[pulumi.Input[bool]] = None,
                  enable_fqdn_network_policy: Optional[pulumi.Input[bool]] = None,
                  enable_intranode_visibility: Optional[pulumi.Input[bool]] = None,
                  enable_k8s_beta_apis: Optional[pulumi.Input[pulumi.InputType['ClusterEnableK8sBetaApisArgs']]] = None,
@@ -3107,6 +3140,7 @@ class Cluster(pulumi.CustomResource):
                Note that when this option is enabled, certain features of Standard GKE are not available.
                See the [official documentation](https://cloud.google.com/kubernetes-engine/docs/concepts/autopilot-overview#comparison)
                for available features.
+        :param pulumi.Input[bool] enable_cilium_clusterwide_network_policy: Whether CiliumClusterWideNetworkPolicy is enabled on this cluster. Defaults to false.
         :param pulumi.Input[bool] enable_fqdn_network_policy: Whether FQDN Network Policy is enabled on this cluster. Users who enable this feature for existing Standard clusters must restart the GKE Dataplane V2 `anetd` DaemonSet after enabling it. See the [Enable FQDN Network Policy in an existing cluster](https://cloud.google.com/kubernetes-engine/docs/how-to/fqdn-network-policies#enable_fqdn_network_policy_in_an_existing_cluster) for more information.
         :param pulumi.Input[bool] enable_intranode_visibility: Whether Intra-node visibility is enabled for this cluster. This makes same node pod to pod traffic visible for VPC network.
         :param pulumi.Input[pulumi.InputType['ClusterEnableK8sBetaApisArgs']] enable_k8s_beta_apis: Configuration for Kubernetes Beta APIs.
@@ -3434,6 +3468,7 @@ class Cluster(pulumi.CustomResource):
                  description: Optional[pulumi.Input[str]] = None,
                  dns_config: Optional[pulumi.Input[pulumi.InputType['ClusterDnsConfigArgs']]] = None,
                  enable_autopilot: Optional[pulumi.Input[bool]] = None,
+                 enable_cilium_clusterwide_network_policy: Optional[pulumi.Input[bool]] = None,
                  enable_fqdn_network_policy: Optional[pulumi.Input[bool]] = None,
                  enable_intranode_visibility: Optional[pulumi.Input[bool]] = None,
                  enable_k8s_beta_apis: Optional[pulumi.Input[pulumi.InputType['ClusterEnableK8sBetaApisArgs']]] = None,
@@ -3511,6 +3546,7 @@ class Cluster(pulumi.CustomResource):
             __props__.__dict__["description"] = description
             __props__.__dict__["dns_config"] = dns_config
             __props__.__dict__["enable_autopilot"] = enable_autopilot
+            __props__.__dict__["enable_cilium_clusterwide_network_policy"] = enable_cilium_clusterwide_network_policy
             __props__.__dict__["enable_fqdn_network_policy"] = enable_fqdn_network_policy
             __props__.__dict__["enable_intranode_visibility"] = enable_intranode_visibility
             __props__.__dict__["enable_k8s_beta_apis"] = enable_k8s_beta_apis
@@ -3596,6 +3632,7 @@ class Cluster(pulumi.CustomResource):
             description: Optional[pulumi.Input[str]] = None,
             dns_config: Optional[pulumi.Input[pulumi.InputType['ClusterDnsConfigArgs']]] = None,
             enable_autopilot: Optional[pulumi.Input[bool]] = None,
+            enable_cilium_clusterwide_network_policy: Optional[pulumi.Input[bool]] = None,
             enable_fqdn_network_policy: Optional[pulumi.Input[bool]] = None,
             enable_intranode_visibility: Optional[pulumi.Input[bool]] = None,
             enable_k8s_beta_apis: Optional[pulumi.Input[pulumi.InputType['ClusterEnableK8sBetaApisArgs']]] = None,
@@ -3702,6 +3739,7 @@ class Cluster(pulumi.CustomResource):
                Note that when this option is enabled, certain features of Standard GKE are not available.
                See the [official documentation](https://cloud.google.com/kubernetes-engine/docs/concepts/autopilot-overview#comparison)
                for available features.
+        :param pulumi.Input[bool] enable_cilium_clusterwide_network_policy: Whether CiliumClusterWideNetworkPolicy is enabled on this cluster. Defaults to false.
         :param pulumi.Input[bool] enable_fqdn_network_policy: Whether FQDN Network Policy is enabled on this cluster. Users who enable this feature for existing Standard clusters must restart the GKE Dataplane V2 `anetd` DaemonSet after enabling it. See the [Enable FQDN Network Policy in an existing cluster](https://cloud.google.com/kubernetes-engine/docs/how-to/fqdn-network-policies#enable_fqdn_network_policy_in_an_existing_cluster) for more information.
         :param pulumi.Input[bool] enable_intranode_visibility: Whether Intra-node visibility is enabled for this cluster. This makes same node pod to pod traffic visible for VPC network.
         :param pulumi.Input[pulumi.InputType['ClusterEnableK8sBetaApisArgs']] enable_k8s_beta_apis: Configuration for Kubernetes Beta APIs.
@@ -3898,6 +3936,7 @@ class Cluster(pulumi.CustomResource):
         __props__.__dict__["description"] = description
         __props__.__dict__["dns_config"] = dns_config
         __props__.__dict__["enable_autopilot"] = enable_autopilot
+        __props__.__dict__["enable_cilium_clusterwide_network_policy"] = enable_cilium_clusterwide_network_policy
         __props__.__dict__["enable_fqdn_network_policy"] = enable_fqdn_network_policy
         __props__.__dict__["enable_intranode_visibility"] = enable_intranode_visibility
         __props__.__dict__["enable_k8s_beta_apis"] = enable_k8s_beta_apis
@@ -4118,6 +4157,14 @@ class Cluster(pulumi.CustomResource):
         """
         return pulumi.get(self, "enable_autopilot")
 
+    @property
+    @pulumi.getter(name="enableCiliumClusterwideNetworkPolicy")
+    def enable_cilium_clusterwide_network_policy(self) -> pulumi.Output[Optional[bool]]:
+        """
+        Whether CiliumClusterWideNetworkPolicy is enabled on this cluster. Defaults to false.
+        """
+        return pulumi.get(self, "enable_cilium_clusterwide_network_policy")
+
     @property
     @pulumi.getter(name="enableFqdnNetworkPolicy")
     def enable_fqdn_network_policy(self) -> pulumi.Output[Optional[bool]]:

pulumi_gcp/container/get_cluster.py

@@ -22,7 +22,7 @@ class GetClusterResult:
     """
     A collection of values returned by getCluster.
     """
-    def __init__(__self__, addons_configs=None, allow_net_admin=None, authenticator_groups_configs=None, binary_authorizations=None, cluster_autoscalings=None, cluster_ipv4_cidr=None, cluster_telemetries=None, confidential_nodes=None, cost_management_configs=None, database_encryptions=None, datapath_provider=None, default_max_pods_per_node=None, default_snat_statuses=None, deletion_protection=None, description=None, dns_configs=None, enable_autopilot=None, enable_fqdn_network_policy=None, enable_intranode_visibility=None, enable_k8s_beta_apis=None, enable_kubernetes_alpha=None, enable_l4_ilb_subsetting=None, enable_legacy_abac=None, enable_multi_networking=None, enable_shielded_nodes=None, enable_tpu=None, endpoint=None, fleets=None, gateway_api_configs=None, id=None, identity_service_configs=None, initial_node_count=None, ip_allocation_policies=None, label_fingerprint=None, location=None, logging_configs=None, logging_service=None, maintenance_policies=None, master_authorized_networks_configs=None, master_auths=None, master_version=None, mesh_certificates=None, min_master_version=None, monitoring_configs=None, monitoring_service=None, name=None, network=None, network_policies=None, networking_mode=None, node_configs=None, node_locations=None, node_pool_auto_configs=None, node_pool_defaults=None, node_pools=None, node_version=None, notification_configs=None, operation=None, pod_security_policy_configs=None, private_cluster_configs=None, private_ipv6_google_access=None, project=None, protect_configs=None, release_channels=None, remove_default_node_pool=None, resource_labels=None, resource_usage_export_configs=None, security_posture_configs=None, self_link=None, service_external_ips_configs=None, services_ipv4_cidr=None, subnetwork=None, tpu_configs=None, tpu_ipv4_cidr_block=None, vertical_pod_autoscalings=None, workload_alts_configs=None, workload_identity_configs=None):
+    def __init__(__self__, addons_configs=None, allow_net_admin=None, authenticator_groups_configs=None, binary_authorizations=None, cluster_autoscalings=None, cluster_ipv4_cidr=None, cluster_telemetries=None, confidential_nodes=None, cost_management_configs=None, database_encryptions=None, datapath_provider=None, default_max_pods_per_node=None, default_snat_statuses=None, deletion_protection=None, description=None, dns_configs=None, enable_autopilot=None, enable_cilium_clusterwide_network_policy=None, enable_fqdn_network_policy=None, enable_intranode_visibility=None, enable_k8s_beta_apis=None, enable_kubernetes_alpha=None, enable_l4_ilb_subsetting=None, enable_legacy_abac=None, enable_multi_networking=None, enable_shielded_nodes=None, enable_tpu=None, endpoint=None, fleets=None, gateway_api_configs=None, id=None, identity_service_configs=None, initial_node_count=None, ip_allocation_policies=None, label_fingerprint=None, location=None, logging_configs=None, logging_service=None, maintenance_policies=None, master_authorized_networks_configs=None, master_auths=None, master_version=None, mesh_certificates=None, min_master_version=None, monitoring_configs=None, monitoring_service=None, name=None, network=None, network_policies=None, networking_mode=None, node_configs=None, node_locations=None, node_pool_auto_configs=None, node_pool_defaults=None, node_pools=None, node_version=None, notification_configs=None, operation=None, pod_security_policy_configs=None, private_cluster_configs=None, private_ipv6_google_access=None, project=None, protect_configs=None, release_channels=None, remove_default_node_pool=None, resource_labels=None, resource_usage_export_configs=None, security_posture_configs=None, self_link=None, service_external_ips_configs=None, services_ipv4_cidr=None, subnetwork=None, tpu_configs=None, tpu_ipv4_cidr_block=None, vertical_pod_autoscalings=None, workload_alts_configs=None, workload_identity_configs=None):
         if addons_configs and not isinstance(addons_configs, list):
             raise TypeError("Expected argument 'addons_configs' to be a list")
         pulumi.set(__self__, "addons_configs", addons_configs)
@@ -74,6 +74,9 @@ class GetClusterResult:
         if enable_autopilot and not isinstance(enable_autopilot, bool):
             raise TypeError("Expected argument 'enable_autopilot' to be a bool")
         pulumi.set(__self__, "enable_autopilot", enable_autopilot)
+        if enable_cilium_clusterwide_network_policy and not isinstance(enable_cilium_clusterwide_network_policy, bool):
+            raise TypeError("Expected argument 'enable_cilium_clusterwide_network_policy' to be a bool")
+        pulumi.set(__self__, "enable_cilium_clusterwide_network_policy", enable_cilium_clusterwide_network_policy)
         if enable_fqdn_network_policy and not isinstance(enable_fqdn_network_policy, bool):
             raise TypeError("Expected argument 'enable_fqdn_network_policy' to be a bool")
         pulumi.set(__self__, "enable_fqdn_network_policy", enable_fqdn_network_policy)
@@ -337,6 +340,11 @@ class GetClusterResult:
     def enable_autopilot(self) -> bool:
         return pulumi.get(self, "enable_autopilot")
 
+    @property
+    @pulumi.getter(name="enableCiliumClusterwideNetworkPolicy")
+    def enable_cilium_clusterwide_network_policy(self) -> bool:
+        return pulumi.get(self, "enable_cilium_clusterwide_network_policy")
+
     @property
     @pulumi.getter(name="enableFqdnNetworkPolicy")
     def enable_fqdn_network_policy(self) -> bool:
@@ -659,6 +667,7 @@ class AwaitableGetClusterResult(GetClusterResult):
             description=self.description,
             dns_configs=self.dns_configs,
             enable_autopilot=self.enable_autopilot,
+            enable_cilium_clusterwide_network_policy=self.enable_cilium_clusterwide_network_policy,
             enable_fqdn_network_policy=self.enable_fqdn_network_policy,
             enable_intranode_visibility=self.enable_intranode_visibility,
             enable_k8s_beta_apis=self.enable_k8s_beta_apis,
@@ -762,6 +771,7 @@ def get_cluster(location: Optional[str] = None,
         description=pulumi.get(__ret__, 'description'),
         dns_configs=pulumi.get(__ret__, 'dns_configs'),
         enable_autopilot=pulumi.get(__ret__, 'enable_autopilot'),
+        enable_cilium_clusterwide_network_policy=pulumi.get(__ret__, 'enable_cilium_clusterwide_network_policy'),
         enable_fqdn_network_policy=pulumi.get(__ret__, 'enable_fqdn_network_policy'),
         enable_intranode_visibility=pulumi.get(__ret__, 'enable_intranode_visibility'),
         enable_k8s_beta_apis=pulumi.get(__ret__, 'enable_k8s_beta_apis'),