PyPI - pulumi-gcp - Versions diffs - 7.20.0a1713984378__py3-none-any.whl → 7.21.0__py3-none-any.whl - Mend

pulumi-gcp 7.20.0a1713984378py3-none-any.whl → 7.21.0py3-none-any.whl

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (131) hide show

pulumi_gcp/__init__.py +48 -0
pulumi_gcp/alloydb/_inputs.py +74 -0
pulumi_gcp/alloydb/backup.py +0 -12
pulumi_gcp/alloydb/cluster.py +0 -12
pulumi_gcp/alloydb/instance.py +90 -81
pulumi_gcp/alloydb/outputs.py +98 -0
pulumi_gcp/apigee/environment.py +47 -0
pulumi_gcp/apigee/organization.py +162 -0
pulumi_gcp/apigee/sharedflow.py +0 -20
pulumi_gcp/appengine/flexible_app_version.py +0 -20
pulumi_gcp/applicationintegration/__init__.py +1 -0
pulumi_gcp/applicationintegration/_inputs.py +843 -0
pulumi_gcp/applicationintegration/auth_config.py +998 -0
pulumi_gcp/applicationintegration/outputs.py +891 -0
pulumi_gcp/artifactregistry/_inputs.py +186 -0
pulumi_gcp/artifactregistry/outputs.py +297 -4
pulumi_gcp/artifactregistry/repository.py +346 -16
pulumi_gcp/bigquery/table.py +61 -0
pulumi_gcp/bigquerydatapolicy/_inputs.py +21 -4
pulumi_gcp/bigquerydatapolicy/data_policy.py +78 -0
pulumi_gcp/bigquerydatapolicy/outputs.py +16 -3
pulumi_gcp/billing/budget.py +54 -0
pulumi_gcp/certificateauthority/_inputs.py +92 -12
pulumi_gcp/certificateauthority/authority.py +117 -27
pulumi_gcp/certificateauthority/certificate.py +176 -0
pulumi_gcp/certificateauthority/outputs.py +144 -12
pulumi_gcp/cloudbuild/worker_pool.py +0 -12
pulumi_gcp/cloudbuildv2/connection.py +0 -12
pulumi_gcp/cloudbuildv2/repository.py +0 -12
pulumi_gcp/clouddeploy/automation.py +0 -12
pulumi_gcp/clouddeploy/custom_target_type.py +0 -12
pulumi_gcp/clouddeploy/delivery_pipeline.py +0 -12
pulumi_gcp/clouddeploy/target.py +0 -12
pulumi_gcp/cloudfunctionsv2/_inputs.py +16 -0
pulumi_gcp/cloudfunctionsv2/function.py +110 -0
pulumi_gcp/cloudfunctionsv2/outputs.py +25 -0
pulumi_gcp/cloudrunv2/job.py +0 -12
pulumi_gcp/cloudrunv2/service.py +0 -12
pulumi_gcp/composer/__init__.py +1 -0
pulumi_gcp/composer/environment.py +35 -47
pulumi_gcp/composer/user_workloads_secret.py +441 -0
pulumi_gcp/compute/__init__.py +1 -0
pulumi_gcp/compute/_inputs.py +169 -58
pulumi_gcp/compute/forwarding_rule.py +0 -13
pulumi_gcp/compute/get_instance_group_manager.py +11 -1
pulumi_gcp/compute/global_address.py +0 -12
pulumi_gcp/compute/global_forwarding_rule.py +0 -282
pulumi_gcp/compute/instance_from_machine_image.py +14 -46
pulumi_gcp/compute/instance_from_template.py +14 -46
pulumi_gcp/compute/instance_group_manager.py +68 -21
pulumi_gcp/compute/outputs.py +213 -65
pulumi_gcp/compute/region_instance_group_manager.py +61 -14
pulumi_gcp/compute/region_instance_template.py +0 -13
pulumi_gcp/compute/region_target_https_proxy.py +257 -0
pulumi_gcp/compute/region_url_map.py +0 -470
pulumi_gcp/compute/security_policy_rule.py +850 -0
pulumi_gcp/container/attached_cluster.py +0 -12
pulumi_gcp/container/aws_cluster.py +0 -12
pulumi_gcp/container/aws_node_pool.py +0 -12
pulumi_gcp/container/azure_cluster.py +0 -12
pulumi_gcp/container/azure_node_pool.py +0 -12
pulumi_gcp/container/cluster.py +0 -20
pulumi_gcp/container/outputs.py +4 -4
pulumi_gcp/dataflow/flex_template_job.py +0 -39
pulumi_gcp/dataloss/__init__.py +1 -0
pulumi_gcp/dataloss/_inputs.py +1040 -0
pulumi_gcp/dataloss/outputs.py +1123 -0
pulumi_gcp/dataloss/prevention_discovery_config.py +737 -0
pulumi_gcp/dataproc/cluster.py +0 -20
pulumi_gcp/dataproc/workflow_template.py +21 -26
pulumi_gcp/deploymentmanager/deployment.py +0 -34
pulumi_gcp/dns/_inputs.py +2 -130
pulumi_gcp/dns/get_keys.py +1 -1
pulumi_gcp/dns/get_managed_zones.py +3 -9
pulumi_gcp/dns/get_record_set.py +3 -0
pulumi_gcp/dns/outputs.py +36 -58
pulumi_gcp/dns/record_set.py +2 -36
pulumi_gcp/filestore/get_instance.py +11 -1
pulumi_gcp/filestore/instance.py +101 -0
pulumi_gcp/firebase/_inputs.py +16 -0
pulumi_gcp/firebase/android_app.py +0 -27
pulumi_gcp/firebase/app_check_play_integrity_config.py +20 -0
pulumi_gcp/firebase/app_check_recaptcha_enterprise_config.py +10 -0
pulumi_gcp/firebase/app_check_service_config.py +0 -125
pulumi_gcp/firebase/apple_app.py +0 -27
pulumi_gcp/firebase/hosting_custom_domain.py +0 -27
pulumi_gcp/firebase/hosting_version.py +44 -0
pulumi_gcp/firebase/outputs.py +12 -0
pulumi_gcp/firebase/web_app.py +0 -20
pulumi_gcp/firestore/database.py +0 -68
pulumi_gcp/firestore/document.py +4 -4
pulumi_gcp/gkeonprem/bare_metal_admin_cluster.py +0 -12
pulumi_gcp/gkeonprem/bare_metal_cluster.py +0 -12
pulumi_gcp/gkeonprem/bare_metal_node_pool.py +0 -12
pulumi_gcp/gkeonprem/v_mware_cluster.py +0 -12
pulumi_gcp/gkeonprem/v_mware_node_pool.py +0 -12
pulumi_gcp/logging/folder_sink.py +54 -0
pulumi_gcp/logging/organization_sink.py +54 -0
pulumi_gcp/monitoring/_inputs.py +46 -2
pulumi_gcp/monitoring/outputs.py +40 -2
pulumi_gcp/monitoring/uptime_check_config.py +6 -0
pulumi_gcp/netapp/active_directory.py +0 -20
pulumi_gcp/netapp/volume_replication.py +0 -68
pulumi_gcp/networkconnectivity/__init__.py +1 -0
pulumi_gcp/networkconnectivity/internal_range.py +1024 -0
pulumi_gcp/organizations/get_active_folder.py +18 -3
pulumi_gcp/projects/__init__.py +1 -0
pulumi_gcp/projects/iam_member_remove.py +313 -0
pulumi_gcp/provider.py +3 -1
pulumi_gcp/secretmanager/get_secret.py +13 -3
pulumi_gcp/secretmanager/outputs.py +20 -1
pulumi_gcp/secretmanager/secret.py +90 -15
pulumi_gcp/servicenetworking/connection.py +0 -20
pulumi_gcp/spanner/database.py +0 -41
pulumi_gcp/spanner/instance.py +0 -40
pulumi_gcp/storage/__init__.py +1 -0
pulumi_gcp/storage/bucket.py +0 -12
pulumi_gcp/storage/get_bucket_objects.py +153 -0
pulumi_gcp/storage/outputs.py +63 -0
pulumi_gcp/vmwareengine/_inputs.py +63 -5
pulumi_gcp/vmwareengine/get_private_cloud.py +1 -21
pulumi_gcp/vmwareengine/outputs.py +113 -5
pulumi_gcp/vmwareengine/private_cloud.py +0 -94
pulumi_gcp/workbench/instance.py +4 -4
pulumi_gcp/workstations/workstation.py +0 -12
pulumi_gcp/workstations/workstation_cluster.py +32 -12
pulumi_gcp/workstations/workstation_config.py +0 -12
{pulumi_gcp-7.20.0a1713984378.dist-info → pulumi_gcp-7.21.0.dist-info}/METADATA +1 -1
{pulumi_gcp-7.20.0a1713984378.dist-info → pulumi_gcp-7.21.0.dist-info}/RECORD +131 -124
{pulumi_gcp-7.20.0a1713984378.dist-info → pulumi_gcp-7.21.0.dist-info}/WHEEL +0 -0
{pulumi_gcp-7.20.0a1713984378.dist-info → pulumi_gcp-7.21.0.dist-info}/top_level.txt +0 -0

pulumi_gcp/certificateauthority/authority.py CHANGED Viewed

@@ -44,8 +44,6 @@ class AuthorityArgs:
         :param pulumi.Input[str] location: Location of the CertificateAuthority. A full list of valid locations can be found by
                running `gcloud privateca locations list`.
         :param pulumi.Input[str] pool: The name of the CaPool this Certificate Authority belongs to.
-        :param pulumi.Input[bool] deletion_protection: Whether or not to allow Terraform to destroy the CertificateAuthority. Unless this field is set to false in Terraform
-               state, a 'terraform destroy' or 'terraform apply' that would delete the instance will fail.
         :param pulumi.Input[str] desired_state: Desired state of the CertificateAuthority. Set this field to 'STAGED' to create a 'STAGED' root CA.
         :param pulumi.Input[str] gcs_bucket: The name of a Cloud Storage bucket where this CertificateAuthority will publish content, such as the CA certificate and
                CRLs. This must be a bucket name, without any prefixes (such as 'gs://') or suffixes (such as '.googleapis.com'). For
@@ -65,7 +63,7 @@ class AuthorityArgs:
                'false'.
         :param pulumi.Input['AuthoritySubordinateConfigArgs'] subordinate_config: If this is a subordinate CertificateAuthority, this field will be set with the subordinate configuration, which
                describes its issuers.
-        :param pulumi.Input[str] type: The Type of this CertificateAuthority. ~> **Note:** For 'SUBORDINATE' Certificate Authorities, they need to be activated
+        :param pulumi.Input[str] type: The Type of this CertificateAuthority. > **Note:** For 'SUBORDINATE' Certificate Authorities, they need to be activated
                before they can issue certificates. Default value: "SELF_SIGNED" Possible values: ["SELF_SIGNED", "SUBORDINATE"]
         """
         pulumi.set(__self__, "certificate_authority_id", certificate_authority_id)
@@ -164,10 +162,6 @@ class AuthorityArgs:
     @property
     @pulumi.getter(name="deletionProtection")
     def deletion_protection(self) -> Optional[pulumi.Input[bool]]:
-        """
-        Whether or not to allow Terraform to destroy the CertificateAuthority. Unless this field is set to false in Terraform
-        state, a 'terraform destroy' or 'terraform apply' that would delete the instance will fail.
-        """
         return pulumi.get(self, "deletion_protection")
     @deletion_protection.setter
@@ -294,7 +288,7 @@ class AuthorityArgs:
     @pulumi.getter
     def type(self) -> Optional[pulumi.Input[str]]:
         """
-        The Type of this CertificateAuthority. ~> **Note:** For 'SUBORDINATE' Certificate Authorities, they need to be activated
+        The Type of this CertificateAuthority. > **Note:** For 'SUBORDINATE' Certificate Authorities, they need to be activated
         before they can issue certificates. Default value: "SELF_SIGNED" Possible values: ["SELF_SIGNED", "SUBORDINATE"]
         """
         return pulumi.get(self, "type")
@@ -341,8 +335,6 @@ class _AuthorityState:
         :param pulumi.Input[str] create_time: The time at which this CertificateAuthority was created.
                A timestamp in RFC3339 UTC "Zulu" format, with nanosecond resolution and up to nine
                fractional digits. Examples: "2014-10-02T15:01:23Z" and "2014-10-02T15:01:23.045123456Z".
-        :param pulumi.Input[bool] deletion_protection: Whether or not to allow Terraform to destroy the CertificateAuthority. Unless this field is set to false in Terraform
-               state, a 'terraform destroy' or 'terraform apply' that would delete the instance will fail.
         :param pulumi.Input[str] desired_state: Desired state of the CertificateAuthority. Set this field to 'STAGED' to create a 'STAGED' root CA.
         :param pulumi.Input[Mapping[str, pulumi.Input[str]]] effective_labels: All of labels (key/value pairs) present on the resource in GCP, including the labels configured through Pulumi, other clients and services.
         :param pulumi.Input[str] gcs_bucket: The name of a Cloud Storage bucket where this CertificateAuthority will publish content, such as the CA certificate and
@@ -379,7 +371,7 @@ class _AuthorityState:
         :param pulumi.Input[str] state: The State for this CertificateAuthority.
         :param pulumi.Input['AuthoritySubordinateConfigArgs'] subordinate_config: If this is a subordinate CertificateAuthority, this field will be set with the subordinate configuration, which
                describes its issuers.
-        :param pulumi.Input[str] type: The Type of this CertificateAuthority. ~> **Note:** For 'SUBORDINATE' Certificate Authorities, they need to be activated
+        :param pulumi.Input[str] type: The Type of this CertificateAuthority. > **Note:** For 'SUBORDINATE' Certificate Authorities, they need to be activated
                before they can issue certificates. Default value: "SELF_SIGNED" Possible values: ["SELF_SIGNED", "SUBORDINATE"]
         :param pulumi.Input[str] update_time: The time at which this CertificateAuthority was updated.
                A timestamp in RFC3339 UTC "Zulu" format, with nanosecond resolution and up to nine
@@ -489,10 +481,6 @@ class _AuthorityState:
     @property
     @pulumi.getter(name="deletionProtection")
     def deletion_protection(self) -> Optional[pulumi.Input[bool]]:
-        """
-        Whether or not to allow Terraform to destroy the CertificateAuthority. Unless this field is set to false in Terraform
-        state, a 'terraform destroy' or 'terraform apply' that would delete the instance will fail.
-        """
         return pulumi.get(self, "deletion_protection")
     @deletion_protection.setter
@@ -724,7 +712,7 @@ class _AuthorityState:
     @pulumi.getter
     def type(self) -> Optional[pulumi.Input[str]]:
         """
-        The Type of this CertificateAuthority. ~> **Note:** For 'SUBORDINATE' Certificate Authorities, they need to be activated
+        The Type of this CertificateAuthority. > **Note:** For 'SUBORDINATE' Certificate Authorities, they need to be activated
         before they can issue certificates. Default value: "SELF_SIGNED" Possible values: ["SELF_SIGNED", "SUBORDINATE"]
         """
         return pulumi.get(self, "type")
@@ -987,6 +975,61 @@ class Authority(pulumi.CustomResource):
                 ),
             ))
         ```
+        ### Privateca Certificate Authority Custom Ski
+        ```python
+        import pulumi
+        import pulumi_gcp as gcp
+        default = gcp.certificateauthority.Authority("default",
+            pool="ca-pool",
+            certificate_authority_id="my-certificate-authority",
+            location="us-central1",
+            deletion_protection=True,
+            config=gcp.certificateauthority.AuthorityConfigArgs(
+                subject_config=gcp.certificateauthority.AuthorityConfigSubjectConfigArgs(
+                    subject=gcp.certificateauthority.AuthorityConfigSubjectConfigSubjectArgs(
+                        organization="HashiCorp",
+                        common_name="my-certificate-authority",
+                    ),
+                    subject_alt_name=gcp.certificateauthority.AuthorityConfigSubjectConfigSubjectAltNameArgs(
+                        dns_names=["hashicorp.com"],
+                    ),
+                ),
+                subject_key_id=gcp.certificateauthority.AuthorityConfigSubjectKeyIdArgs(
+                    key_id="4cf3372289b1d411b999dbb9ebcd44744b6b2fca",
+                ),
+                x509_config=gcp.certificateauthority.AuthorityConfigX509ConfigArgs(
+                    ca_options=gcp.certificateauthority.AuthorityConfigX509ConfigCaOptionsArgs(
+                        is_ca=True,
+                        max_issuer_path_length=10,
+                    ),
+                    key_usage=gcp.certificateauthority.AuthorityConfigX509ConfigKeyUsageArgs(
+                        base_key_usage=gcp.certificateauthority.AuthorityConfigX509ConfigKeyUsageBaseKeyUsageArgs(
+                            digital_signature=True,
+                            content_commitment=True,
+                            key_encipherment=False,
+                            data_encipherment=True,
+                            key_agreement=True,
+                            cert_sign=True,
+                            crl_sign=True,
+                            decipher_only=True,
+                        ),
+                        extended_key_usage=gcp.certificateauthority.AuthorityConfigX509ConfigKeyUsageExtendedKeyUsageArgs(
+                            server_auth=True,
+                            client_auth=False,
+                            email_protection=True,
+                            code_signing=True,
+                            time_stamping=True,
+                        ),
+                    ),
+                ),
+            ),
+            lifetime="86400s",
+            key_spec=gcp.certificateauthority.AuthorityKeySpecArgs(
+                cloud_kms_key_version="projects/keys-project/locations/us-central1/keyRings/key-ring/cryptoKeys/crypto-key/cryptoKeyVersions/1",
+            ))
+        ```
         ## Import
@@ -1017,8 +1060,6 @@ class Authority(pulumi.CustomResource):
         :param pulumi.Input[str] certificate_authority_id: The user provided Resource ID for this Certificate Authority.
         :param pulumi.Input[pulumi.InputType['AuthorityConfigArgs']] config: The config used to create a self-signed X.509 certificate or CSR.
                Structure is documented below.
-        :param pulumi.Input[bool] deletion_protection: Whether or not to allow Terraform to destroy the CertificateAuthority. Unless this field is set to false in Terraform
-               state, a 'terraform destroy' or 'terraform apply' that would delete the instance will fail.
         :param pulumi.Input[str] desired_state: Desired state of the CertificateAuthority. Set this field to 'STAGED' to create a 'STAGED' root CA.
         :param pulumi.Input[str] gcs_bucket: The name of a Cloud Storage bucket where this CertificateAuthority will publish content, such as the CA certificate and
                CRLs. This must be a bucket name, without any prefixes (such as 'gs://') or suffixes (such as '.googleapis.com'). For
@@ -1045,7 +1086,7 @@ class Authority(pulumi.CustomResource):
                'false'.
         :param pulumi.Input[pulumi.InputType['AuthoritySubordinateConfigArgs']] subordinate_config: If this is a subordinate CertificateAuthority, this field will be set with the subordinate configuration, which
                describes its issuers.
-        :param pulumi.Input[str] type: The Type of this CertificateAuthority. ~> **Note:** For 'SUBORDINATE' Certificate Authorities, they need to be activated
+        :param pulumi.Input[str] type: The Type of this CertificateAuthority. > **Note:** For 'SUBORDINATE' Certificate Authorities, they need to be activated
                before they can issue certificates. Default value: "SELF_SIGNED" Possible values: ["SELF_SIGNED", "SUBORDINATE"]
         """
         ...
@@ -1271,6 +1312,61 @@ class Authority(pulumi.CustomResource):
                 ),
             ))
         ```
+        ### Privateca Certificate Authority Custom Ski
+        ```python
+        import pulumi
+        import pulumi_gcp as gcp
+        default = gcp.certificateauthority.Authority("default",
+            pool="ca-pool",
+            certificate_authority_id="my-certificate-authority",
+            location="us-central1",
+            deletion_protection=True,
+            config=gcp.certificateauthority.AuthorityConfigArgs(
+                subject_config=gcp.certificateauthority.AuthorityConfigSubjectConfigArgs(
+                    subject=gcp.certificateauthority.AuthorityConfigSubjectConfigSubjectArgs(
+                        organization="HashiCorp",
+                        common_name="my-certificate-authority",
+                    ),
+                    subject_alt_name=gcp.certificateauthority.AuthorityConfigSubjectConfigSubjectAltNameArgs(
+                        dns_names=["hashicorp.com"],
+                    ),
+                ),
+                subject_key_id=gcp.certificateauthority.AuthorityConfigSubjectKeyIdArgs(
+                    key_id="4cf3372289b1d411b999dbb9ebcd44744b6b2fca",
+                ),
+                x509_config=gcp.certificateauthority.AuthorityConfigX509ConfigArgs(
+                    ca_options=gcp.certificateauthority.AuthorityConfigX509ConfigCaOptionsArgs(
+                        is_ca=True,
+                        max_issuer_path_length=10,
+                    ),
+                    key_usage=gcp.certificateauthority.AuthorityConfigX509ConfigKeyUsageArgs(
+                        base_key_usage=gcp.certificateauthority.AuthorityConfigX509ConfigKeyUsageBaseKeyUsageArgs(
+                            digital_signature=True,
+                            content_commitment=True,
+                            key_encipherment=False,
+                            data_encipherment=True,
+                            key_agreement=True,
+                            cert_sign=True,
+                            crl_sign=True,
+                            decipher_only=True,
+                        ),
+                        extended_key_usage=gcp.certificateauthority.AuthorityConfigX509ConfigKeyUsageExtendedKeyUsageArgs(
+                            server_auth=True,
+                            client_auth=False,
+                            email_protection=True,
+                            code_signing=True,
+                            time_stamping=True,
+                        ),
+                    ),
+                ),
+            ),
+            lifetime="86400s",
+            key_spec=gcp.certificateauthority.AuthorityKeySpecArgs(
+                cloud_kms_key_version="projects/keys-project/locations/us-central1/keyRings/key-ring/cryptoKeys/crypto-key/cryptoKeyVersions/1",
+            ))
+        ```
         ## Import
@@ -1421,8 +1517,6 @@ class Authority(pulumi.CustomResource):
         :param pulumi.Input[str] create_time: The time at which this CertificateAuthority was created.
                A timestamp in RFC3339 UTC "Zulu" format, with nanosecond resolution and up to nine
                fractional digits. Examples: "2014-10-02T15:01:23Z" and "2014-10-02T15:01:23.045123456Z".
-        :param pulumi.Input[bool] deletion_protection: Whether or not to allow Terraform to destroy the CertificateAuthority. Unless this field is set to false in Terraform
-               state, a 'terraform destroy' or 'terraform apply' that would delete the instance will fail.
         :param pulumi.Input[str] desired_state: Desired state of the CertificateAuthority. Set this field to 'STAGED' to create a 'STAGED' root CA.
         :param pulumi.Input[Mapping[str, pulumi.Input[str]]] effective_labels: All of labels (key/value pairs) present on the resource in GCP, including the labels configured through Pulumi, other clients and services.
         :param pulumi.Input[str] gcs_bucket: The name of a Cloud Storage bucket where this CertificateAuthority will publish content, such as the CA certificate and
@@ -1459,7 +1553,7 @@ class Authority(pulumi.CustomResource):
         :param pulumi.Input[str] state: The State for this CertificateAuthority.
         :param pulumi.Input[pulumi.InputType['AuthoritySubordinateConfigArgs']] subordinate_config: If this is a subordinate CertificateAuthority, this field will be set with the subordinate configuration, which
                describes its issuers.
-        :param pulumi.Input[str] type: The Type of this CertificateAuthority. ~> **Note:** For 'SUBORDINATE' Certificate Authorities, they need to be activated
+        :param pulumi.Input[str] type: The Type of this CertificateAuthority. > **Note:** For 'SUBORDINATE' Certificate Authorities, they need to be activated
                before they can issue certificates. Default value: "SELF_SIGNED" Possible values: ["SELF_SIGNED", "SUBORDINATE"]
         :param pulumi.Input[str] update_time: The time at which this CertificateAuthority was updated.
                A timestamp in RFC3339 UTC "Zulu" format, with nanosecond resolution and up to nine
@@ -1534,10 +1628,6 @@ class Authority(pulumi.CustomResource):
     @property
     @pulumi.getter(name="deletionProtection")
     def deletion_protection(self) -> pulumi.Output[Optional[bool]]:
-        """
-        Whether or not to allow Terraform to destroy the CertificateAuthority. Unless this field is set to false in Terraform
-        state, a 'terraform destroy' or 'terraform apply' that would delete the instance will fail.
-        """
         return pulumi.get(self, "deletion_protection")
     @property
@@ -1697,7 +1787,7 @@ class Authority(pulumi.CustomResource):
     @pulumi.getter
     def type(self) -> pulumi.Output[Optional[str]]:
         """
-        The Type of this CertificateAuthority. ~> **Note:** For 'SUBORDINATE' Certificate Authorities, they need to be activated
+        The Type of this CertificateAuthority. > **Note:** For 'SUBORDINATE' Certificate Authorities, they need to be activated
         before they can issue certificates. Default value: "SELF_SIGNED" Possible values: ["SELF_SIGNED", "SUBORDINATE"]
         """
         return pulumi.get(self, "type")

pulumi_gcp/certificateauthority/certificate.py CHANGED Viewed

@@ -968,6 +968,94 @@ class Certificate(pulumi.CustomResource):
                 ),
             ))
         ```
+        ### Privateca Certificate Custom Ski
+        ```python
+        import pulumi
+        import pulumi_gcp as gcp
+        import pulumi_std as std
+        default = gcp.certificateauthority.CaPool("default",
+            location="us-central1",
+            name="my-pool",
+            tier="ENTERPRISE")
+        default_authority = gcp.certificateauthority.Authority("default",
+            location="us-central1",
+            pool=default.name,
+            certificate_authority_id="my-authority",
+            config=gcp.certificateauthority.AuthorityConfigArgs(
+                subject_config=gcp.certificateauthority.AuthorityConfigSubjectConfigArgs(
+                    subject=gcp.certificateauthority.AuthorityConfigSubjectConfigSubjectArgs(
+                        organization="HashiCorp",
+                        common_name="my-certificate-authority",
+                    ),
+                    subject_alt_name=gcp.certificateauthority.AuthorityConfigSubjectConfigSubjectAltNameArgs(
+                        dns_names=["hashicorp.com"],
+                    ),
+                ),
+                x509_config=gcp.certificateauthority.AuthorityConfigX509ConfigArgs(
+                    ca_options=gcp.certificateauthority.AuthorityConfigX509ConfigCaOptionsArgs(
+                        is_ca=True,
+                    ),
+                    key_usage=gcp.certificateauthority.AuthorityConfigX509ConfigKeyUsageArgs(
+                        base_key_usage=gcp.certificateauthority.AuthorityConfigX509ConfigKeyUsageBaseKeyUsageArgs(
+                            digital_signature=True,
+                            cert_sign=True,
+                            crl_sign=True,
+                        ),
+                        extended_key_usage=gcp.certificateauthority.AuthorityConfigX509ConfigKeyUsageExtendedKeyUsageArgs(
+                            server_auth=True,
+                        ),
+                    ),
+                ),
+            ),
+            lifetime="86400s",
+            key_spec=gcp.certificateauthority.AuthorityKeySpecArgs(
+                algorithm="RSA_PKCS1_4096_SHA256",
+            ),
+            deletion_protection=False,
+            skip_grace_period=True,
+            ignore_active_certificates_on_deletion=True)
+        default_certificate = gcp.certificateauthority.Certificate("default",
+            location="us-central1",
+            pool=default.name,
+            name="my-certificate",
+            lifetime="860s",
+            config=gcp.certificateauthority.CertificateConfigArgs(
+                subject_config=gcp.certificateauthority.CertificateConfigSubjectConfigArgs(
+                    subject=gcp.certificateauthority.CertificateConfigSubjectConfigSubjectArgs(
+                        common_name="san1.example.com",
+                        country_code="us",
+                        organization="google",
+                        organizational_unit="enterprise",
+                        locality="mountain view",
+                        province="california",
+                        street_address="1600 amphitheatre parkway",
+                        postal_code="94109",
+                    ),
+                ),
+                subject_key_id=gcp.certificateauthority.CertificateConfigSubjectKeyIdArgs(
+                    key_id="4cf3372289b1d411b999dbb9ebcd44744b6b2fca",
+                ),
+                x509_config=gcp.certificateauthority.CertificateConfigX509ConfigArgs(
+                    ca_options=gcp.certificateauthority.CertificateConfigX509ConfigCaOptionsArgs(
+                        is_ca=False,
+                    ),
+                    key_usage=gcp.certificateauthority.CertificateConfigX509ConfigKeyUsageArgs(
+                        base_key_usage=gcp.certificateauthority.CertificateConfigX509ConfigKeyUsageBaseKeyUsageArgs(
+                            crl_sign=True,
+                        ),
+                        extended_key_usage=gcp.certificateauthority.CertificateConfigX509ConfigKeyUsageExtendedKeyUsageArgs(
+                            server_auth=True,
+                        ),
+                    ),
+                ),
+                public_key=gcp.certificateauthority.CertificateConfigPublicKeyArgs(
+                    format="PEM",
+                    key=std.filebase64(input="test-fixtures/rsa_public.pem").result,
+                ),
+            ))
+        ```
         ## Import
@@ -1407,6 +1495,94 @@ class Certificate(pulumi.CustomResource):
                 ),
             ))
         ```
+        ### Privateca Certificate Custom Ski
+        ```python
+        import pulumi
+        import pulumi_gcp as gcp
+        import pulumi_std as std
+        default = gcp.certificateauthority.CaPool("default",
+            location="us-central1",
+            name="my-pool",
+            tier="ENTERPRISE")
+        default_authority = gcp.certificateauthority.Authority("default",
+            location="us-central1",
+            pool=default.name,
+            certificate_authority_id="my-authority",
+            config=gcp.certificateauthority.AuthorityConfigArgs(
+                subject_config=gcp.certificateauthority.AuthorityConfigSubjectConfigArgs(
+                    subject=gcp.certificateauthority.AuthorityConfigSubjectConfigSubjectArgs(
+                        organization="HashiCorp",
+                        common_name="my-certificate-authority",
+                    ),
+                    subject_alt_name=gcp.certificateauthority.AuthorityConfigSubjectConfigSubjectAltNameArgs(
+                        dns_names=["hashicorp.com"],
+                    ),
+                ),
+                x509_config=gcp.certificateauthority.AuthorityConfigX509ConfigArgs(
+                    ca_options=gcp.certificateauthority.AuthorityConfigX509ConfigCaOptionsArgs(
+                        is_ca=True,
+                    ),
+                    key_usage=gcp.certificateauthority.AuthorityConfigX509ConfigKeyUsageArgs(
+                        base_key_usage=gcp.certificateauthority.AuthorityConfigX509ConfigKeyUsageBaseKeyUsageArgs(
+                            digital_signature=True,
+                            cert_sign=True,
+                            crl_sign=True,
+                        ),
+                        extended_key_usage=gcp.certificateauthority.AuthorityConfigX509ConfigKeyUsageExtendedKeyUsageArgs(
+                            server_auth=True,
+                        ),
+                    ),
+                ),
+            ),
+            lifetime="86400s",
+            key_spec=gcp.certificateauthority.AuthorityKeySpecArgs(
+                algorithm="RSA_PKCS1_4096_SHA256",
+            ),
+            deletion_protection=False,
+            skip_grace_period=True,
+            ignore_active_certificates_on_deletion=True)
+        default_certificate = gcp.certificateauthority.Certificate("default",
+            location="us-central1",
+            pool=default.name,
+            name="my-certificate",
+            lifetime="860s",
+            config=gcp.certificateauthority.CertificateConfigArgs(
+                subject_config=gcp.certificateauthority.CertificateConfigSubjectConfigArgs(
+                    subject=gcp.certificateauthority.CertificateConfigSubjectConfigSubjectArgs(
+                        common_name="san1.example.com",
+                        country_code="us",
+                        organization="google",
+                        organizational_unit="enterprise",
+                        locality="mountain view",
+                        province="california",
+                        street_address="1600 amphitheatre parkway",
+                        postal_code="94109",
+                    ),
+                ),
+                subject_key_id=gcp.certificateauthority.CertificateConfigSubjectKeyIdArgs(
+                    key_id="4cf3372289b1d411b999dbb9ebcd44744b6b2fca",
+                ),
+                x509_config=gcp.certificateauthority.CertificateConfigX509ConfigArgs(
+                    ca_options=gcp.certificateauthority.CertificateConfigX509ConfigCaOptionsArgs(
+                        is_ca=False,
+                    ),
+                    key_usage=gcp.certificateauthority.CertificateConfigX509ConfigKeyUsageArgs(
+                        base_key_usage=gcp.certificateauthority.CertificateConfigX509ConfigKeyUsageBaseKeyUsageArgs(
+                            crl_sign=True,
+                        ),
+                        extended_key_usage=gcp.certificateauthority.CertificateConfigX509ConfigKeyUsageExtendedKeyUsageArgs(
+                            server_auth=True,
+                        ),
+                    ),
+                ),
+                public_key=gcp.certificateauthority.CertificateConfigPublicKeyArgs(
+                    format="PEM",
+                    key=std.filebase64(input="test-fixtures/rsa_public.pem").result,
+                ),
+            ))
+        ```
         ## Import

pulumi-gcp 7.20.0a1713984378__py3-none-any.whl → 7.21.0__py3-none-any.whl

pulumi-gcp 7.20.0a1713984378py3-none-any.whl → 7.21.0py3-none-any.whl