PyPI - pulumi-gcp - Versions diffs - 7.24.0a1716588893__py3-none-any.whl → 7.25.0__py3-none-any.whl - Mend

pulumi-gcp 7.24.0a1716588893py3-none-any.whl → 7.25.0py3-none-any.whl

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (179) hide show

pulumi_gcp/__init__.py +88 -0
pulumi_gcp/accesscontextmanager/service_perimeter_egress_policy.py +0 -64
pulumi_gcp/accesscontextmanager/service_perimeter_ingress_policy.py +0 -70
pulumi_gcp/alloydb/backup.py +50 -42
pulumi_gcp/alloydb/cluster.py +56 -48
pulumi_gcp/alloydb/instance.py +50 -42
pulumi_gcp/alloydb/user.py +32 -24
pulumi_gcp/apigateway/api_config.py +0 -114
pulumi_gcp/apigateway/gateway.py +0 -44
pulumi_gcp/apigee/addons_config.py +14 -4
pulumi_gcp/apigee/endpoint_attachment.py +4 -2
pulumi_gcp/apigee/env_group.py +4 -2
pulumi_gcp/apigee/environment.py +4 -2
pulumi_gcp/apigee/instance.py +22 -8
pulumi_gcp/apigee/keystores_aliases_self_signed_cert.py +26 -10
pulumi_gcp/apigee/nat_address.py +10 -2
pulumi_gcp/apigee/organization.py +18 -6
pulumi_gcp/apigee/sync_authorization.py +8 -4
pulumi_gcp/apigee/target_server.py +26 -10
pulumi_gcp/appengine/_inputs.py +18 -0
pulumi_gcp/appengine/domain_mapping.py +1 -1
pulumi_gcp/appengine/outputs.py +16 -0
pulumi_gcp/apphub/service.py +40 -20
pulumi_gcp/apphub/service_project_attachment.py +16 -8
pulumi_gcp/apphub/workload.py +0 -418
pulumi_gcp/applicationintegration/auth_config.py +4 -2
pulumi_gcp/artifactregistry/repository.py +14 -12
pulumi_gcp/backupdisasterrecovery/management_server.py +4 -2
pulumi_gcp/bigquery/_inputs.py +286 -2
pulumi_gcp/bigquery/data_transfer_config.py +8 -4
pulumi_gcp/bigquery/job.py +22 -16
pulumi_gcp/bigquery/outputs.py +289 -2
pulumi_gcp/bigquery/table.py +77 -35
pulumi_gcp/certificateauthority/authority.py +10 -2
pulumi_gcp/certificateauthority/certificate.py +8 -4
pulumi_gcp/certificatemanager/certificate.py +84 -80
pulumi_gcp/certificatemanager/certificate_issuance_config.py +32 -30
pulumi_gcp/cloudbuild/bitbucket_server_config.py +12 -6
pulumi_gcp/cloudbuild/trigger.py +22 -14
pulumi_gcp/cloudbuild/worker_pool.py +12 -6
pulumi_gcp/cloudbuildv2/connection.py +10 -2
pulumi_gcp/cloudbuildv2/repository.py +10 -2
pulumi_gcp/cloudfunctionsv2/function.py +110 -66
pulumi_gcp/cloudids/endpoint.py +4 -2
pulumi_gcp/cloudrun/_inputs.py +80 -4
pulumi_gcp/cloudrun/outputs.py +137 -4
pulumi_gcp/cloudrunv2/job.py +32 -20
pulumi_gcp/cloudrunv2/service.py +28 -20
pulumi_gcp/composer/user_workloads_secret.py +4 -4
pulumi_gcp/compute/__init__.py +1 -0
pulumi_gcp/compute/_inputs.py +398 -176
pulumi_gcp/compute/forwarding_rule.py +225 -817
pulumi_gcp/compute/get_subnetworks.py +157 -0
pulumi_gcp/compute/global_forwarding_rule.py +0 -766
pulumi_gcp/compute/instance_group.py +0 -100
pulumi_gcp/compute/instance_group_membership.py +2 -2
pulumi_gcp/compute/interconnect_attachment.py +82 -0
pulumi_gcp/compute/network_endpoint.py +2 -2
pulumi_gcp/compute/network_endpoint_list.py +2 -2
pulumi_gcp/compute/outputs.py +609 -161
pulumi_gcp/compute/packet_mirroring.py +4 -2
pulumi_gcp/compute/region_security_policy_rule.py +4 -2
pulumi_gcp/compute/region_ssl_certificate.py +0 -188
pulumi_gcp/compute/region_ssl_policy.py +39 -40
pulumi_gcp/compute/route.py +10 -2
pulumi_gcp/compute/security_policy_rule.py +55 -1
pulumi_gcp/compute/ssl_certificate.py +0 -166
pulumi_gcp/compute/target_instance.py +4 -2
pulumi_gcp/compute/vpn_gateway.py +12 -2
pulumi_gcp/compute/vpn_tunnel.py +26 -16
pulumi_gcp/container/_inputs.py +560 -0
pulumi_gcp/container/outputs.py +1106 -51
pulumi_gcp/databasemigrationservice/connection_profile.py +32 -16
pulumi_gcp/datacatalog/policy_tag.py +4 -2
pulumi_gcp/datafusion/instance.py +14 -12
pulumi_gcp/dataplex/__init__.py +10 -0
pulumi_gcp/dataplex/_inputs.py +160 -0
pulumi_gcp/dataplex/aspect_type.py +1077 -0
pulumi_gcp/dataplex/aspect_type_iam_binding.py +765 -0
pulumi_gcp/dataplex/aspect_type_iam_member.py +765 -0
pulumi_gcp/dataplex/aspect_type_iam_policy.py +604 -0
pulumi_gcp/dataplex/asset.py +4 -2
pulumi_gcp/dataplex/datascan.py +16 -14
pulumi_gcp/dataplex/entry_group.py +722 -0
pulumi_gcp/dataplex/entry_group_iam_binding.py +765 -0
pulumi_gcp/dataplex/entry_group_iam_member.py +765 -0
pulumi_gcp/dataplex/entry_group_iam_policy.py +604 -0
pulumi_gcp/dataplex/get_aspect_type_iam_policy.py +164 -0
pulumi_gcp/dataplex/get_entry_group_iam_policy.py +164 -0
pulumi_gcp/dataplex/outputs.py +112 -0
pulumi_gcp/datastore/data_store_index.py +4 -2
pulumi_gcp/datastream/connection_profile.py +47 -0
pulumi_gcp/datastream/private_connection.py +47 -0
pulumi_gcp/datastream/stream.py +63 -10
pulumi_gcp/diagflow/cx_test_case.py +4 -4
pulumi_gcp/diagflow/entity_type.py +4 -2
pulumi_gcp/diagflow/fulfillment.py +4 -2
pulumi_gcp/diagflow/intent.py +8 -4
pulumi_gcp/dns/get_managed_zone.py +3 -3
pulumi_gcp/dns/managed_zone.py +7 -7
pulumi_gcp/dns/outputs.py +2 -2
pulumi_gcp/edgecontainer/node_pool.py +4 -2
pulumi_gcp/edgecontainer/vpn_connection.py +4 -2
pulumi_gcp/eventarc/channel.py +4 -2
pulumi_gcp/eventarc/google_channel_config.py +4 -2
pulumi_gcp/firebase/app_check_app_attest_config.py +16 -8
pulumi_gcp/firebase/app_check_debug_token.py +8 -4
pulumi_gcp/firebase/app_check_device_check_config.py +8 -4
pulumi_gcp/firebase/app_check_play_integrity_config.py +16 -8
pulumi_gcp/firebase/app_check_recaptcha_enterprise_config.py +8 -4
pulumi_gcp/firebase/app_check_recaptcha_v3_config.py +8 -4
pulumi_gcp/firebase/app_check_service_config.py +12 -6
pulumi_gcp/firebase/database_instance.py +4 -2
pulumi_gcp/firebaserules/release.py +0 -98
pulumi_gcp/firestore/database.py +24 -20
pulumi_gcp/firestore/document.py +24 -12
pulumi_gcp/folder/access_approval_settings.py +4 -2
pulumi_gcp/gkehub/membership_binding.py +14 -4
pulumi_gcp/gkehub/membership_rbac_role_binding.py +8 -4
pulumi_gcp/gkehub/namespace.py +4 -2
pulumi_gcp/gkehub/scope_rbac_role_binding.py +4 -2
pulumi_gcp/integrationconnectors/connection.py +4 -2
pulumi_gcp/integrationconnectors/managed_zone.py +18 -6
pulumi_gcp/kms/__init__.py +2 -0
pulumi_gcp/kms/autokey_config.py +366 -0
pulumi_gcp/kms/key_handle.py +548 -0
pulumi_gcp/logging/folder_settings.py +12 -10
pulumi_gcp/logging/linked_dataset.py +4 -2
pulumi_gcp/logging/organization_settings.py +12 -10
pulumi_gcp/logging/project_bucket_config.py +4 -2
pulumi_gcp/looker/instance.py +12 -10
pulumi_gcp/netapp/volume_replication.py +4 -2
pulumi_gcp/netapp/volume_snapshot.py +4 -2
pulumi_gcp/networkconnectivity/internal_range.py +14 -12
pulumi_gcp/networksecurity/gateway_security_policy.py +16 -4
pulumi_gcp/networksecurity/tls_inspection_policy.py +22 -4
pulumi_gcp/networkservices/__init__.py +1 -0
pulumi_gcp/networkservices/_inputs.py +245 -27
pulumi_gcp/networkservices/gateway.py +12 -6
pulumi_gcp/networkservices/lb_route_extension.py +663 -0
pulumi_gcp/networkservices/lb_traffic_extension.py +28 -540
pulumi_gcp/networkservices/outputs.py +251 -20
pulumi_gcp/organizations/access_approval_settings.py +4 -2
pulumi_gcp/orgpolicy/policy.py +2 -2
pulumi_gcp/parallelstore/instance.py +20 -18
pulumi_gcp/projects/access_approval_settings.py +4 -2
pulumi_gcp/pubsub/_inputs.py +16 -0
pulumi_gcp/pubsub/outputs.py +25 -0
pulumi_gcp/pubsub/schema.py +4 -2
pulumi_gcp/pubsub/subscription.py +102 -66
pulumi_gcp/pubsub/topic.py +4 -2
pulumi_gcp/pulumi-plugin.json +1 -1
pulumi_gcp/redis/cluster.py +30 -28
pulumi_gcp/redis/instance.py +4 -2
pulumi_gcp/secretmanager/secret.py +4 -2
pulumi_gcp/securesourcemanager/instance.py +20 -8
pulumi_gcp/securitycenter/instance_iam_binding.py +14 -12
pulumi_gcp/securitycenter/instance_iam_member.py +14 -12
pulumi_gcp/securitycenter/instance_iam_policy.py +14 -12
pulumi_gcp/serviceaccount/key.py +2 -2
pulumi_gcp/sql/database_instance.py +4 -2
pulumi_gcp/sql/user.py +4 -4
pulumi_gcp/storage/get_project_service_account.py +4 -2
pulumi_gcp/storage/insights_report_config.py +12 -10
pulumi_gcp/storage/notification.py +18 -16
pulumi_gcp/storage/transfer_agent_pool.py +4 -2
pulumi_gcp/storage/transfer_job.py +14 -4
pulumi_gcp/tpu/_inputs.py +2 -2
pulumi_gcp/tpu/outputs.py +2 -2
pulumi_gcp/tpu/v2_vm.py +10 -6
pulumi_gcp/vertex/ai_endpoint.py +24 -22
pulumi_gcp/vertex/ai_index_endpoint.py +20 -18
pulumi_gcp/vertex/ai_tensorboard.py +14 -12
pulumi_gcp/vmwareengine/external_address.py +4 -2
pulumi_gcp/vmwareengine/network.py +8 -4
{pulumi_gcp-7.24.0a1716588893.dist-info → pulumi_gcp-7.25.0.dist-info}/METADATA +1 -1
{pulumi_gcp-7.24.0a1716588893.dist-info → pulumi_gcp-7.25.0.dist-info}/RECORD +179 -165
{pulumi_gcp-7.24.0a1716588893.dist-info → pulumi_gcp-7.25.0.dist-info}/WHEEL +0 -0
{pulumi_gcp-7.24.0a1716588893.dist-info → pulumi_gcp-7.25.0.dist-info}/top_level.txt +0 -0

pulumi_gcp/cloudfunctionsv2/function.py CHANGED Viewed

@@ -528,7 +528,6 @@ class Function(pulumi.CustomResource):
                 available_memory="256M",
                 timeout_seconds=60,
             ))
-        pulumi.export("functionUri", function.service_config.uri)
         ```
         ### Cloudfunctions2 Full
@@ -684,15 +683,18 @@ class Function(pulumi.CustomResource):
         invoking = gcp.projects.IAMMember("invoking",
             project="my-project-name",
             role="roles/run.invoker",
-            member=account.email.apply(lambda email: f"serviceAccount:{email}"))
+            member=account.email.apply(lambda email: f"serviceAccount:{email}"),
+            opts=pulumi.ResourceOptions(depends_on=[gcs_pubsub_publishing]))
         event_receiving = gcp.projects.IAMMember("event-receiving",
             project="my-project-name",
             role="roles/eventarc.eventReceiver",
-            member=account.email.apply(lambda email: f"serviceAccount:{email}"))
+            member=account.email.apply(lambda email: f"serviceAccount:{email}"),
+            opts=pulumi.ResourceOptions(depends_on=[invoking]))
         artifactregistry_reader = gcp.projects.IAMMember("artifactregistry-reader",
             project="my-project-name",
             role="roles/artifactregistry.reader",
-            member=account.email.apply(lambda email: f"serviceAccount:{email}"))
+            member=account.email.apply(lambda email: f"serviceAccount:{email}"),
+            opts=pulumi.ResourceOptions(depends_on=[event_receiving]))
         function = gcp.cloudfunctionsv2.Function("function",
             name="gcf-function",
             location="us-central1",
@@ -730,7 +732,11 @@ class Function(pulumi.CustomResource):
                     attribute="bucket",
                     value=trigger_bucket.name,
                 )],
-            ))
+            ),
+            opts=pulumi.ResourceOptions(depends_on=[
+                    event_receiving,
+                    artifactregistry_reader,
+                ]))
         ```
         ### Cloudfunctions2 Basic Auditlogs
@@ -768,11 +774,13 @@ class Function(pulumi.CustomResource):
         event_receiving = gcp.projects.IAMMember("event-receiving",
             project="my-project-name",
             role="roles/eventarc.eventReceiver",
-            member=account.email.apply(lambda email: f"serviceAccount:{email}"))
+            member=account.email.apply(lambda email: f"serviceAccount:{email}"),
+            opts=pulumi.ResourceOptions(depends_on=[invoking]))
         artifactregistry_reader = gcp.projects.IAMMember("artifactregistry-reader",
             project="my-project-name",
             role="roles/artifactregistry.reader",
-            member=account.email.apply(lambda email: f"serviceAccount:{email}"))
+            member=account.email.apply(lambda email: f"serviceAccount:{email}"),
+            opts=pulumi.ResourceOptions(depends_on=[event_receiving]))
         function = gcp.cloudfunctionsv2.Function("function",
             name="gcf-function",
             location="us-central1",
@@ -822,7 +830,11 @@ class Function(pulumi.CustomResource):
                         operator="match-path-pattern",
                     ),
                 ],
-            ))
+            ),
+            opts=pulumi.ResourceOptions(depends_on=[
+                    event_receiving,
+                    artifactregistry_reader,
+                ]))
         ```
         ### Cloudfunctions2 Basic Builder
@@ -856,7 +868,12 @@ class Function(pulumi.CustomResource):
             bucket=bucket.name,
             source=pulumi.FileAsset("function-source.zip"))
         # builder permissions need to stablize before it can pull the source zip
-        wait60s = time.index.Sleep("wait_60s", create_duration=60s)
+        wait60s = time.index.Sleep("wait_60s", create_duration=60s,
+        opts=pulumi.ResourceOptions(depends_on=[
+                log_writer,
+                artifact_registry_writer,
+                storage_object_admin,
+            ]))
         function = gcp.cloudfunctionsv2.Function("function",
             name="function-v2",
             location="us-central1",
@@ -876,8 +893,8 @@ class Function(pulumi.CustomResource):
                 max_instance_count=1,
                 available_memory="256M",
                 timeout_seconds=60,
-            ))
-        pulumi.export("functionUri", function.service_config.uri)
+            ),
+            opts=pulumi.ResourceOptions(depends_on=[wait60s]))
         ```
         ### Cloudfunctions2 Secret Env
@@ -903,6 +920,10 @@ class Function(pulumi.CustomResource):
                     )],
                 ),
             ))
+        secret_secret_version = gcp.secretmanager.SecretVersion("secret",
+            secret=secret.name,
+            secret_data="secret",
+            enabled=True)
         function = gcp.cloudfunctionsv2.Function("function",
             name="function-secret",
             location="us-central1",
@@ -927,11 +948,8 @@ class Function(pulumi.CustomResource):
                     secret=secret.secret_id,
                     version="latest",
                 )],
-            ))
-        secret_secret_version = gcp.secretmanager.SecretVersion("secret",
-            secret=secret.name,
-            secret_data="secret",
-            enabled=True)
+            ),
+            opts=pulumi.ResourceOptions(depends_on=[secret_secret_version]))
         ```
         ### Cloudfunctions2 Secret Volume
@@ -957,6 +975,10 @@ class Function(pulumi.CustomResource):
                     )],
                 ),
             ))
+        secret_secret_version = gcp.secretmanager.SecretVersion("secret",
+            secret=secret.name,
+            secret_data="secret",
+            enabled=True)
         function = gcp.cloudfunctionsv2.Function("function",
             name="function-secret",
             location="us-central1",
@@ -980,11 +1002,8 @@ class Function(pulumi.CustomResource):
                     project_id=project,
                     secret=secret.secret_id,
                 )],
-            ))
-        secret_secret_version = gcp.secretmanager.SecretVersion("secret",
-            secret=secret.name,
-            secret_data="secret",
-            enabled=True)
+            ),
+            opts=pulumi.ResourceOptions(depends_on=[secret_secret_version]))
         ```
         ### Cloudfunctions2 Private Workerpool
@@ -1053,16 +1072,6 @@ class Function(pulumi.CustomResource):
             repository_id="ar-repo",
             location="us-central1",
             format="DOCKER")
-        encoded_ar_repo = gcp.artifactregistry.Repository("encoded-ar-repo",
-            location="us-central1",
-            repository_id="cmek-repo",
-            format="DOCKER",
-            kms_key_name="cmek-key")
-        binding = gcp.artifactregistry.RepositoryIamBinding("binding",
-            location=encoded_ar_repo.location,
-            repository=encoded_ar_repo.name,
-            role="roles/artifactregistry.admin",
-            members=[f"serviceAccount:service-{project_get_project.number}@gcf-admin-robot.iam.gserviceaccount.com"])
         gcf_cmek_keyuser = gcp.kms.CryptoKeyIAMBinding("gcf_cmek_keyuser",
             crypto_key_id="cmek-key",
             role="roles/cloudkms.cryptoKeyEncrypterDecrypter",
@@ -1072,7 +1081,19 @@ class Function(pulumi.CustomResource):
                 f"serviceAccount:service-{project_get_project.number}@gs-project-accounts.iam.gserviceaccount.com",
                 f"serviceAccount:service-{project_get_project.number}@serverless-robot-prod.iam.gserviceaccount.com",
                 ea_sa.email.apply(lambda email: f"serviceAccount:{email}"),
-            ])
+            ],
+            opts=pulumi.ResourceOptions(depends_on=[ea_sa]))
+        encoded_ar_repo = gcp.artifactregistry.Repository("encoded-ar-repo",
+            location="us-central1",
+            repository_id="cmek-repo",
+            format="DOCKER",
+            kms_key_name="cmek-key",
+            opts=pulumi.ResourceOptions(depends_on=[gcf_cmek_keyuser]))
+        binding = gcp.artifactregistry.RepositoryIamBinding("binding",
+            location=encoded_ar_repo.location,
+            repository=encoded_ar_repo.name,
+            role="roles/artifactregistry.admin",
+            members=[f"serviceAccount:service-{project_get_project.number}@gcf-admin-robot.iam.gserviceaccount.com"])
         function = gcp.cloudfunctionsv2.Function("function",
             name="function-cmek",
             location="us-central1",
@@ -1093,7 +1114,8 @@ class Function(pulumi.CustomResource):
                 max_instance_count=1,
                 available_memory="256M",
                 timeout_seconds=60,
-            ))
+            ),
+            opts=pulumi.ResourceOptions(depends_on=[gcf_cmek_keyuser]))
         ```
         ## Import
@@ -1195,7 +1217,6 @@ class Function(pulumi.CustomResource):
                 available_memory="256M",
                 timeout_seconds=60,
             ))
-        pulumi.export("functionUri", function.service_config.uri)
         ```
         ### Cloudfunctions2 Full
@@ -1351,15 +1372,18 @@ class Function(pulumi.CustomResource):
         invoking = gcp.projects.IAMMember("invoking",
             project="my-project-name",
             role="roles/run.invoker",
-            member=account.email.apply(lambda email: f"serviceAccount:{email}"))
+            member=account.email.apply(lambda email: f"serviceAccount:{email}"),
+            opts=pulumi.ResourceOptions(depends_on=[gcs_pubsub_publishing]))
         event_receiving = gcp.projects.IAMMember("event-receiving",
             project="my-project-name",
             role="roles/eventarc.eventReceiver",
-            member=account.email.apply(lambda email: f"serviceAccount:{email}"))
+            member=account.email.apply(lambda email: f"serviceAccount:{email}"),
+            opts=pulumi.ResourceOptions(depends_on=[invoking]))
         artifactregistry_reader = gcp.projects.IAMMember("artifactregistry-reader",
             project="my-project-name",
             role="roles/artifactregistry.reader",
-            member=account.email.apply(lambda email: f"serviceAccount:{email}"))
+            member=account.email.apply(lambda email: f"serviceAccount:{email}"),
+            opts=pulumi.ResourceOptions(depends_on=[event_receiving]))
         function = gcp.cloudfunctionsv2.Function("function",
             name="gcf-function",
             location="us-central1",
@@ -1397,7 +1421,11 @@ class Function(pulumi.CustomResource):
                     attribute="bucket",
                     value=trigger_bucket.name,
                 )],
-            ))
+            ),
+            opts=pulumi.ResourceOptions(depends_on=[
+                    event_receiving,
+                    artifactregistry_reader,
+                ]))
         ```
         ### Cloudfunctions2 Basic Auditlogs
@@ -1435,11 +1463,13 @@ class Function(pulumi.CustomResource):
         event_receiving = gcp.projects.IAMMember("event-receiving",
             project="my-project-name",
             role="roles/eventarc.eventReceiver",
-            member=account.email.apply(lambda email: f"serviceAccount:{email}"))
+            member=account.email.apply(lambda email: f"serviceAccount:{email}"),
+            opts=pulumi.ResourceOptions(depends_on=[invoking]))
         artifactregistry_reader = gcp.projects.IAMMember("artifactregistry-reader",
             project="my-project-name",
             role="roles/artifactregistry.reader",
-            member=account.email.apply(lambda email: f"serviceAccount:{email}"))
+            member=account.email.apply(lambda email: f"serviceAccount:{email}"),
+            opts=pulumi.ResourceOptions(depends_on=[event_receiving]))
         function = gcp.cloudfunctionsv2.Function("function",
             name="gcf-function",
             location="us-central1",
@@ -1489,7 +1519,11 @@ class Function(pulumi.CustomResource):
                         operator="match-path-pattern",
                     ),
                 ],
-            ))
+            ),
+            opts=pulumi.ResourceOptions(depends_on=[
+                    event_receiving,
+                    artifactregistry_reader,
+                ]))
         ```
         ### Cloudfunctions2 Basic Builder
@@ -1523,7 +1557,12 @@ class Function(pulumi.CustomResource):
             bucket=bucket.name,
             source=pulumi.FileAsset("function-source.zip"))
         # builder permissions need to stablize before it can pull the source zip
-        wait60s = time.index.Sleep("wait_60s", create_duration=60s)
+        wait60s = time.index.Sleep("wait_60s", create_duration=60s,
+        opts=pulumi.ResourceOptions(depends_on=[
+                log_writer,
+                artifact_registry_writer,
+                storage_object_admin,
+            ]))
         function = gcp.cloudfunctionsv2.Function("function",
             name="function-v2",
             location="us-central1",
@@ -1543,8 +1582,8 @@ class Function(pulumi.CustomResource):
                 max_instance_count=1,
                 available_memory="256M",
                 timeout_seconds=60,
-            ))
-        pulumi.export("functionUri", function.service_config.uri)
+            ),
+            opts=pulumi.ResourceOptions(depends_on=[wait60s]))
         ```
         ### Cloudfunctions2 Secret Env
@@ -1570,6 +1609,10 @@ class Function(pulumi.CustomResource):
                     )],
                 ),
             ))
+        secret_secret_version = gcp.secretmanager.SecretVersion("secret",
+            secret=secret.name,
+            secret_data="secret",
+            enabled=True)
         function = gcp.cloudfunctionsv2.Function("function",
             name="function-secret",
             location="us-central1",
@@ -1594,11 +1637,8 @@ class Function(pulumi.CustomResource):
                     secret=secret.secret_id,
                     version="latest",
                 )],
-            ))
-        secret_secret_version = gcp.secretmanager.SecretVersion("secret",
-            secret=secret.name,
-            secret_data="secret",
-            enabled=True)
+            ),
+            opts=pulumi.ResourceOptions(depends_on=[secret_secret_version]))
         ```
         ### Cloudfunctions2 Secret Volume
@@ -1624,6 +1664,10 @@ class Function(pulumi.CustomResource):
                     )],
                 ),
             ))
+        secret_secret_version = gcp.secretmanager.SecretVersion("secret",
+            secret=secret.name,
+            secret_data="secret",
+            enabled=True)
         function = gcp.cloudfunctionsv2.Function("function",
             name="function-secret",
             location="us-central1",
@@ -1647,11 +1691,8 @@ class Function(pulumi.CustomResource):
                     project_id=project,
                     secret=secret.secret_id,
                 )],
-            ))
-        secret_secret_version = gcp.secretmanager.SecretVersion("secret",
-            secret=secret.name,
-            secret_data="secret",
-            enabled=True)
+            ),
+            opts=pulumi.ResourceOptions(depends_on=[secret_secret_version]))
         ```
         ### Cloudfunctions2 Private Workerpool
@@ -1720,16 +1761,6 @@ class Function(pulumi.CustomResource):
             repository_id="ar-repo",
             location="us-central1",
             format="DOCKER")
-        encoded_ar_repo = gcp.artifactregistry.Repository("encoded-ar-repo",
-            location="us-central1",
-            repository_id="cmek-repo",
-            format="DOCKER",
-            kms_key_name="cmek-key")
-        binding = gcp.artifactregistry.RepositoryIamBinding("binding",
-            location=encoded_ar_repo.location,
-            repository=encoded_ar_repo.name,
-            role="roles/artifactregistry.admin",
-            members=[f"serviceAccount:service-{project_get_project.number}@gcf-admin-robot.iam.gserviceaccount.com"])
         gcf_cmek_keyuser = gcp.kms.CryptoKeyIAMBinding("gcf_cmek_keyuser",
             crypto_key_id="cmek-key",
             role="roles/cloudkms.cryptoKeyEncrypterDecrypter",
@@ -1739,7 +1770,19 @@ class Function(pulumi.CustomResource):
                 f"serviceAccount:service-{project_get_project.number}@gs-project-accounts.iam.gserviceaccount.com",
                 f"serviceAccount:service-{project_get_project.number}@serverless-robot-prod.iam.gserviceaccount.com",
                 ea_sa.email.apply(lambda email: f"serviceAccount:{email}"),
-            ])
+            ],
+            opts=pulumi.ResourceOptions(depends_on=[ea_sa]))
+        encoded_ar_repo = gcp.artifactregistry.Repository("encoded-ar-repo",
+            location="us-central1",
+            repository_id="cmek-repo",
+            format="DOCKER",
+            kms_key_name="cmek-key",
+            opts=pulumi.ResourceOptions(depends_on=[gcf_cmek_keyuser]))
+        binding = gcp.artifactregistry.RepositoryIamBinding("binding",
+            location=encoded_ar_repo.location,
+            repository=encoded_ar_repo.name,
+            role="roles/artifactregistry.admin",
+            members=[f"serviceAccount:service-{project_get_project.number}@gcf-admin-robot.iam.gserviceaccount.com"])
         function = gcp.cloudfunctionsv2.Function("function",
             name="function-cmek",
             location="us-central1",
@@ -1760,7 +1803,8 @@ class Function(pulumi.CustomResource):
                 max_instance_count=1,
                 available_memory="256M",
                 timeout_seconds=60,
-            ))
+            ),
+            opts=pulumi.ResourceOptions(depends_on=[gcf_cmek_keyuser]))
         ```
         ## Import

pulumi_gcp/cloudids/endpoint.py CHANGED Viewed

@@ -375,7 +375,8 @@ class Endpoint(pulumi.CustomResource):
             name="test",
             location="us-central1-f",
             network=default.id,
-            severity="INFORMATIONAL")
+            severity="INFORMATIONAL",
+            opts=pulumi.ResourceOptions(depends_on=[private_service_connection]))
         ```
         ## Import
@@ -453,7 +454,8 @@ class Endpoint(pulumi.CustomResource):
             name="test",
             location="us-central1-f",
             network=default.id,
-            severity="INFORMATIONAL")
+            severity="INFORMATIONAL",
+            opts=pulumi.ResourceOptions(depends_on=[private_service_connection]))
         ```
         ## Import

pulumi_gcp/cloudrun/_inputs.py CHANGED Viewed

@@ -48,6 +48,7 @@ __all__ = [
     'ServiceTemplateSpecVolumeArgs',
     'ServiceTemplateSpecVolumeCsiArgs',
     'ServiceTemplateSpecVolumeEmptyDirArgs',
+    'ServiceTemplateSpecVolumeNfsArgs',
     'ServiceTemplateSpecVolumeSecretArgs',
     'ServiceTemplateSpecVolumeSecretItemArgs',
     'ServiceTrafficArgs',
@@ -2884,6 +2885,7 @@ class ServiceTemplateSpecVolumeArgs:
                  name: pulumi.Input[str],
                  csi: Optional[pulumi.Input['ServiceTemplateSpecVolumeCsiArgs']] = None,
                  empty_dir: Optional[pulumi.Input['ServiceTemplateSpecVolumeEmptyDirArgs']] = None,
+                 nfs: Optional[pulumi.Input['ServiceTemplateSpecVolumeNfsArgs']] = None,
                  secret: Optional[pulumi.Input['ServiceTemplateSpecVolumeSecretArgs']] = None):
         """
         :param pulumi.Input[str] name: Volume's name.
@@ -2891,6 +2893,10 @@ class ServiceTemplateSpecVolumeArgs:
                Structure is documented below.
         :param pulumi.Input['ServiceTemplateSpecVolumeEmptyDirArgs'] empty_dir: Ephemeral storage which can be backed by real disks (HD, SSD), network storage or memory (i.e. tmpfs). For now only in memory (tmpfs) is supported. It is ephemeral in the sense that when the sandbox is taken down, the data is destroyed with it (it does not persist across sandbox runs).
                Structure is documented below.
+        :param pulumi.Input['ServiceTemplateSpecVolumeNfsArgs'] nfs: A filesystem backed by a Network File System share. This filesystem requires the
+               run.googleapis.com/execution-environment annotation to be set to "gen2" and
+               run.googleapis.com/launch-stage set to "BETA" or "ALPHA".
+               Structure is documented below.
         :param pulumi.Input['ServiceTemplateSpecVolumeSecretArgs'] secret: The secret's value will be presented as the content of a file whose
                name is defined in the item path. If no items are defined, the name of
                the file is the secret_name.
@@ -2901,6 +2907,8 @@ class ServiceTemplateSpecVolumeArgs:
             pulumi.set(__self__, "csi", csi)
         if empty_dir is not None:
             pulumi.set(__self__, "empty_dir", empty_dir)
+        if nfs is not None:
+            pulumi.set(__self__, "nfs", nfs)
         if secret is not None:
             pulumi.set(__self__, "secret", secret)
@@ -2942,6 +2950,21 @@ class ServiceTemplateSpecVolumeArgs:
     def empty_dir(self, value: Optional[pulumi.Input['ServiceTemplateSpecVolumeEmptyDirArgs']]):
         pulumi.set(self, "empty_dir", value)
+    @property
+    @pulumi.getter
+    def nfs(self) -> Optional[pulumi.Input['ServiceTemplateSpecVolumeNfsArgs']]:
+        """
+        A filesystem backed by a Network File System share. This filesystem requires the
+        run.googleapis.com/execution-environment annotation to be set to "gen2" and
+        run.googleapis.com/launch-stage set to "BETA" or "ALPHA".
+        Structure is documented below.
+        """
+        return pulumi.get(self, "nfs")
+    @nfs.setter
+    def nfs(self, value: Optional[pulumi.Input['ServiceTemplateSpecVolumeNfsArgs']]):
+        pulumi.set(self, "nfs", value)
     @property
     @pulumi.getter
     def secret(self) -> Optional[pulumi.Input['ServiceTemplateSpecVolumeSecretArgs']]:
@@ -2973,8 +2996,6 @@ class ServiceTemplateSpecVolumeCsiArgs:
         :param pulumi.Input[Mapping[str, pulumi.Input[str]]] volume_attributes: Driver-specific attributes. The following options are supported for available drivers:
                * gcsfuse.run.googleapis.com
                * bucketName: The name of the Cloud Storage Bucket that backs this volume. The Cloud Run Service identity must have access to this bucket.
-               - - -
         """
         pulumi.set(__self__, "driver", driver)
         if read_only is not None:
@@ -3016,8 +3037,6 @@ class ServiceTemplateSpecVolumeCsiArgs:
         Driver-specific attributes. The following options are supported for available drivers:
         * gcsfuse.run.googleapis.com
         * bucketName: The name of the Cloud Storage Bucket that backs this volume. The Cloud Run Service identity must have access to this bucket.
-        - - -
         """
         return pulumi.get(self, "volume_attributes")
@@ -3065,6 +3084,63 @@ class ServiceTemplateSpecVolumeEmptyDirArgs:
         pulumi.set(self, "size_limit", value)
+@pulumi.input_type
+class ServiceTemplateSpecVolumeNfsArgs:
+    def __init__(__self__, *,
+                 path: pulumi.Input[str],
+                 server: pulumi.Input[str],
+                 read_only: Optional[pulumi.Input[bool]] = None):
+        """
+        :param pulumi.Input[str] path: Path exported by the NFS server
+        :param pulumi.Input[str] server: IP address or hostname of the NFS server
+        :param pulumi.Input[bool] read_only: If true, mount the NFS volume as read only in all mounts. Defaults to false.
+               - - -
+        """
+        pulumi.set(__self__, "path", path)
+        pulumi.set(__self__, "server", server)
+        if read_only is not None:
+            pulumi.set(__self__, "read_only", read_only)
+    @property
+    @pulumi.getter
+    def path(self) -> pulumi.Input[str]:
+        """
+        Path exported by the NFS server
+        """
+        return pulumi.get(self, "path")
+    @path.setter
+    def path(self, value: pulumi.Input[str]):
+        pulumi.set(self, "path", value)
+    @property
+    @pulumi.getter
+    def server(self) -> pulumi.Input[str]:
+        """
+        IP address or hostname of the NFS server
+        """
+        return pulumi.get(self, "server")
+    @server.setter
+    def server(self, value: pulumi.Input[str]):
+        pulumi.set(self, "server", value)
+    @property
+    @pulumi.getter(name="readOnly")
+    def read_only(self) -> Optional[pulumi.Input[bool]]:
+        """
+        If true, mount the NFS volume as read only in all mounts. Defaults to false.
+        - - -
+        """
+        return pulumi.get(self, "read_only")
+    @read_only.setter
+    def read_only(self, value: Optional[pulumi.Input[bool]]):
+        pulumi.set(self, "read_only", value)
 @pulumi.input_type
 class ServiceTemplateSpecVolumeSecretArgs:
     def __init__(__self__, *,

pulumi-gcp 7.24.0a1716588893__py3-none-any.whl → 7.25.0__py3-none-any.whl

pulumi-gcp 7.24.0a1716588893py3-none-any.whl → 7.25.0py3-none-any.whl