pulumi-gcp 7.28.0__py3-none-any.whl → 7.28.0a1718431623__py3-none-any.whl

pulumi_gcp/__init__.py

@@ -164,8 +164,6 @@ if typing.TYPE_CHECKING:
     logging = __logging
     import pulumi_gcp.looker as __looker
     looker = __looker
-    import pulumi_gcp.managedkafka as __managedkafka
-    managedkafka = __managedkafka
     import pulumi_gcp.memcache as __memcache
     memcache = __memcache
     import pulumi_gcp.migrationcenter as __migrationcenter
@@ -328,7 +326,6 @@ else:
     kms = _utilities.lazy_import('pulumi_gcp.kms')
     logging = _utilities.lazy_import('pulumi_gcp.logging')
     looker = _utilities.lazy_import('pulumi_gcp.looker')
-    managedkafka = _utilities.lazy_import('pulumi_gcp.managedkafka')
     memcache = _utilities.lazy_import('pulumi_gcp.memcache')
     migrationcenter = _utilities.lazy_import('pulumi_gcp.migrationcenter')
     ml = _utilities.lazy_import('pulumi_gcp.ml')
@@ -2071,14 +2068,6 @@ _utilities.register(
    "gcp:composer/environment:Environment": "Environment"
   }
  },
- {
-  "pkg": "gcp",
-  "mod": "composer/userWorkloadsConfigMap",
-  "fqn": "pulumi_gcp.composer",
-  "classes": {
-   "gcp:composer/userWorkloadsConfigMap:UserWorkloadsConfigMap": "UserWorkloadsConfigMap"
-  }
- },
  {
   "pkg": "gcp",
   "mod": "composer/userWorkloadsSecret",
@@ -5823,22 +5812,6 @@ _utilities.register(
    "gcp:looker/instance:Instance": "Instance"
   }
  },
- {
-  "pkg": "gcp",
-  "mod": "managedkafka/cluster",
-  "fqn": "pulumi_gcp.managedkafka",
-  "classes": {
-   "gcp:managedkafka/cluster:Cluster": "Cluster"
-  }
- },
- {
-  "pkg": "gcp",
-  "mod": "managedkafka/topic",
-  "fqn": "pulumi_gcp.managedkafka",
-  "classes": {
-   "gcp:managedkafka/topic:Topic": "Topic"
-  }
- },
  {
   "pkg": "gcp",
   "mod": "memcache/instance",
@@ -5959,14 +5932,6 @@ _utilities.register(
    "gcp:netapp/activeDirectory:ActiveDirectory": "ActiveDirectory"
   }
  },
- {
-  "pkg": "gcp",
-  "mod": "netapp/backup",
-  "fqn": "pulumi_gcp.netapp",
-  "classes": {
-   "gcp:netapp/backup:Backup": "Backup"
-  }
- },
  {
   "pkg": "gcp",
   "mod": "netapp/backupPolicy",
@@ -6935,14 +6900,6 @@ _utilities.register(
    "gcp:securitycenter/instanceIamPolicy:InstanceIamPolicy": "InstanceIamPolicy"
   }
  },
- {
-  "pkg": "gcp",
-  "mod": "securitycenter/managementFolderSecurityHealthAnalyticsCustomModule",
-  "fqn": "pulumi_gcp.securitycenter",
-  "classes": {
-   "gcp:securitycenter/managementFolderSecurityHealthAnalyticsCustomModule:ManagementFolderSecurityHealthAnalyticsCustomModule": "ManagementFolderSecurityHealthAnalyticsCustomModule"
-  }
- },
  {
   "pkg": "gcp",
   "mod": "securitycenter/managementOrganizationEventThreatDetectionCustomModule",
@@ -6951,22 +6908,6 @@ _utilities.register(
    "gcp:securitycenter/managementOrganizationEventThreatDetectionCustomModule:ManagementOrganizationEventThreatDetectionCustomModule": "ManagementOrganizationEventThreatDetectionCustomModule"
   }
  },
- {
-  "pkg": "gcp",
-  "mod": "securitycenter/managementOrganizationSecurityHealthAnalyticsCustomModule",
-  "fqn": "pulumi_gcp.securitycenter",
-  "classes": {
-   "gcp:securitycenter/managementOrganizationSecurityHealthAnalyticsCustomModule:ManagementOrganizationSecurityHealthAnalyticsCustomModule": "ManagementOrganizationSecurityHealthAnalyticsCustomModule"
-  }
- },
- {
-  "pkg": "gcp",
-  "mod": "securitycenter/managementProjectSecurityHealthAnalyticsCustomModule",
-  "fqn": "pulumi_gcp.securitycenter",
-  "classes": {
-   "gcp:securitycenter/managementProjectSecurityHealthAnalyticsCustomModule:ManagementProjectSecurityHealthAnalyticsCustomModule": "ManagementProjectSecurityHealthAnalyticsCustomModule"
-  }
- },
  {
   "pkg": "gcp",
   "mod": "securitycenter/muteConfig",

pulumi_gcp/accesscontextmanager/_inputs.py

@@ -1618,8 +1618,8 @@ class ServicePerimeterEgressPolicyEgressFromArgs:
                  sources: Optional[pulumi.Input[Sequence[pulumi.Input['ServicePerimeterEgressPolicyEgressFromSourceArgs']]]] = None):
         """
         :param pulumi.Input[Sequence[pulumi.Input[str]]] identities: A list of identities that are allowed access through this `EgressPolicy`.
-               Should be in the format of email address. The email address should
-               represent individual user or service account only.
+               Should be in the format of an email address. The email address should
+               represent an individual user, service account, or Google group.
         :param pulumi.Input[str] identity_type: Specifies the type of identities that are allowed access to outside the
                perimeter. If left unspecified, then members of `identities` field will
                be allowed access.
@@ -1643,8 +1643,8 @@ class ServicePerimeterEgressPolicyEgressFromArgs:
     def identities(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]:
         """
         A list of identities that are allowed access through this `EgressPolicy`.
-        Should be in the format of email address. The email address should
-        represent individual user or service account only.
+        Should be in the format of an email address. The email address should
+        represent an individual user, service account, or Google group.
         """
         return pulumi.get(self, "identities")
 
@@ -1891,9 +1891,9 @@ class ServicePerimeterIngressPolicyIngressFromArgs:
                  identity_type: Optional[pulumi.Input[str]] = None,
                  sources: Optional[pulumi.Input[Sequence[pulumi.Input['ServicePerimeterIngressPolicyIngressFromSourceArgs']]]] = None):
         """
-        :param pulumi.Input[Sequence[pulumi.Input[str]]] identities: A list of identities that are allowed access through this ingress policy.
-               Should be in the format of email address. The email address should represent
-               individual user or service account only.
+        :param pulumi.Input[Sequence[pulumi.Input[str]]] identities: A list of identities that are allowed access through this `IngressPolicy`.
+               Should be in the format of an email address. The email address should represent
+               an individual user, service account, or Google group.
         :param pulumi.Input[str] identity_type: Specifies the type of identities that are allowed access from outside the
                perimeter. If left unspecified, then members of `identities` field will be
                allowed access.
@@ -1912,9 +1912,9 @@ class ServicePerimeterIngressPolicyIngressFromArgs:
     @pulumi.getter
     def identities(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]:
         """
-        A list of identities that are allowed access through this ingress policy.
-        Should be in the format of email address. The email address should represent
-        individual user or service account only.
+        A list of identities that are allowed access through this `IngressPolicy`.
+        Should be in the format of an email address. The email address should represent
+        an individual user, service account, or Google group.
         """
         return pulumi.get(self, "identities")
 
@@ -2371,9 +2371,10 @@ class ServicePerimeterSpecEgressPolicyEgressFromArgs:
                  source_restriction: Optional[pulumi.Input[str]] = None,
                  sources: Optional[pulumi.Input[Sequence[pulumi.Input['ServicePerimeterSpecEgressPolicyEgressFromSourceArgs']]]] = None):
         """
-        :param pulumi.Input[Sequence[pulumi.Input[str]]] identities: A list of identities that are allowed access through this `EgressPolicy`.
-               Should be in the format of email address. The email address should
-               represent individual user or service account only.
+        :param pulumi.Input[Sequence[pulumi.Input[str]]] identities: 'A list of identities that are allowed access through this `EgressPolicy`.
+               To specify an identity or identity group, use the IAM v1
+               format specified [here](https://cloud.google.com/iam/docs/principal-identifiers.md#v1).
+               The following prefixes are supprted: user, group, serviceAccount, principal, and principalSet.'
         :param pulumi.Input[str] identity_type: Specifies the type of identities that are allowed access to outside the
                perimeter. If left unspecified, then members of `identities` field will
                be allowed access.
@@ -2396,9 +2397,10 @@ class ServicePerimeterSpecEgressPolicyEgressFromArgs:
     @pulumi.getter
     def identities(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]:
         """
-        A list of identities that are allowed access through this `EgressPolicy`.
-        Should be in the format of email address. The email address should
-        represent individual user or service account only.
+        'A list of identities that are allowed access through this `EgressPolicy`.
+        To specify an identity or identity group, use the IAM v1
+        format specified [here](https://cloud.google.com/iam/docs/principal-identifiers.md#v1).
+        The following prefixes are supprted: user, group, serviceAccount, principal, and principalSet.'
         """
         return pulumi.get(self, "identities")
 
@@ -2692,9 +2694,10 @@ class ServicePerimeterSpecIngressPolicyIngressFromArgs:
                  identity_type: Optional[pulumi.Input[str]] = None,
                  sources: Optional[pulumi.Input[Sequence[pulumi.Input['ServicePerimeterSpecIngressPolicyIngressFromSourceArgs']]]] = None):
         """
-        :param pulumi.Input[Sequence[pulumi.Input[str]]] identities: A list of identities that are allowed access through this ingress policy.
-               Should be in the format of email address. The email address should represent
-               individual user or service account only.
+        :param pulumi.Input[Sequence[pulumi.Input[str]]] identities: 'A list of identities that are allowed access through this `IngressPolicy`.
+               To specify an identity or identity group, use the IAM v1
+               format specified [here](https://cloud.google.com/iam/docs/principal-identifiers.md#v1).
+               The following prefixes are supprted: user, group, serviceAccount, principal, and principalSet.'
         :param pulumi.Input[str] identity_type: Specifies the type of identities that are allowed access from outside the
                perimeter. If left unspecified, then members of `identities` field will be
                allowed access.
@@ -2713,9 +2716,10 @@ class ServicePerimeterSpecIngressPolicyIngressFromArgs:
     @pulumi.getter
     def identities(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]:
         """
-        A list of identities that are allowed access through this ingress policy.
-        Should be in the format of email address. The email address should represent
-        individual user or service account only.
+        'A list of identities that are allowed access through this `IngressPolicy`.
+        To specify an identity or identity group, use the IAM v1
+        format specified [here](https://cloud.google.com/iam/docs/principal-identifiers.md#v1).
+        The following prefixes are supprted: user, group, serviceAccount, principal, and principalSet.'
         """
         return pulumi.get(self, "identities")
 
@@ -3201,9 +3205,10 @@ class ServicePerimeterStatusEgressPolicyEgressFromArgs:
                  source_restriction: Optional[pulumi.Input[str]] = None,
                  sources: Optional[pulumi.Input[Sequence[pulumi.Input['ServicePerimeterStatusEgressPolicyEgressFromSourceArgs']]]] = None):
         """
-        :param pulumi.Input[Sequence[pulumi.Input[str]]] identities: A list of identities that are allowed access through this `EgressPolicy`.
-               Should be in the format of email address. The email address should
-               represent individual user or service account only.
+        :param pulumi.Input[Sequence[pulumi.Input[str]]] identities: 'A list of identities that are allowed access through this `EgressPolicy`.
+               To specify an identity or identity group, use the IAM v1
+               format specified [here](https://cloud.google.com/iam/docs/principal-identifiers.md#v1).
+               The following prefixes are supprted: user, group, serviceAccount, principal, and principalSet.'
         :param pulumi.Input[str] identity_type: Specifies the type of identities that are allowed access to outside the
                perimeter. If left unspecified, then members of `identities` field will
                be allowed access.
@@ -3226,9 +3231,10 @@ class ServicePerimeterStatusEgressPolicyEgressFromArgs:
     @pulumi.getter
     def identities(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]:
         """
-        A list of identities that are allowed access through this `EgressPolicy`.
-        Should be in the format of email address. The email address should
-        represent individual user or service account only.
+        'A list of identities that are allowed access through this `EgressPolicy`.
+        To specify an identity or identity group, use the IAM v1
+        format specified [here](https://cloud.google.com/iam/docs/principal-identifiers.md#v1).
+        The following prefixes are supprted: user, group, serviceAccount, principal, and principalSet.'
         """
         return pulumi.get(self, "identities")
 
@@ -3522,9 +3528,10 @@ class ServicePerimeterStatusIngressPolicyIngressFromArgs:
                  identity_type: Optional[pulumi.Input[str]] = None,
                  sources: Optional[pulumi.Input[Sequence[pulumi.Input['ServicePerimeterStatusIngressPolicyIngressFromSourceArgs']]]] = None):
         """
-        :param pulumi.Input[Sequence[pulumi.Input[str]]] identities: A list of identities that are allowed access through this ingress policy.
-               Should be in the format of email address. The email address should represent
-               individual user or service account only.
+        :param pulumi.Input[Sequence[pulumi.Input[str]]] identities: 'A list of identities that are allowed access through this `IngressPolicy`.
+               To specify an identity or identity group, use the IAM v1
+               format specified [here](https://cloud.google.com/iam/docs/principal-identifiers.md#v1).
+               The following prefixes are supprted: user, group, serviceAccount, principal, and principalSet.'
         :param pulumi.Input[str] identity_type: Specifies the type of identities that are allowed access from outside the
                perimeter. If left unspecified, then members of `identities` field will be
                allowed access.
@@ -3543,9 +3550,10 @@ class ServicePerimeterStatusIngressPolicyIngressFromArgs:
     @pulumi.getter
     def identities(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]:
         """
-        A list of identities that are allowed access through this ingress policy.
-        Should be in the format of email address. The email address should represent
-        individual user or service account only.
+        'A list of identities that are allowed access through this `IngressPolicy`.
+        To specify an identity or identity group, use the IAM v1
+        format specified [here](https://cloud.google.com/iam/docs/principal-identifiers.md#v1).
+        The following prefixes are supprted: user, group, serviceAccount, principal, and principalSet.'
         """
         return pulumi.get(self, "identities")
 
@@ -4250,9 +4258,10 @@ class ServicePerimetersServicePerimeterSpecEgressPolicyEgressFromArgs:
                  source_restriction: Optional[pulumi.Input[str]] = None,
                  sources: Optional[pulumi.Input[Sequence[pulumi.Input['ServicePerimetersServicePerimeterSpecEgressPolicyEgressFromSourceArgs']]]] = None):
         """
-        :param pulumi.Input[Sequence[pulumi.Input[str]]] identities: A list of identities that are allowed access through this `EgressPolicy`.
-               Should be in the format of email address. The email address should
-               represent individual user or service account only.
+        :param pulumi.Input[Sequence[pulumi.Input[str]]] identities: 'A list of identities that are allowed access through this `EgressPolicy`.
+               To specify an identity or identity group, use the IAM v1 format
+               specified [here](https://cloud.google.com/iam/docs/principal-identifiers.md#v1).
+               The following prefixes are supprted: user, group, serviceAccount, principal, and principalSet.'
         :param pulumi.Input[str] identity_type: Specifies the type of identities that are allowed access to outside the
                perimeter. If left unspecified, then members of `identities` field will
                be allowed access.
@@ -4275,9 +4284,10 @@ class ServicePerimetersServicePerimeterSpecEgressPolicyEgressFromArgs:
     @pulumi.getter
     def identities(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]:
         """
-        A list of identities that are allowed access through this `EgressPolicy`.
-        Should be in the format of email address. The email address should
-        represent individual user or service account only.
+        'A list of identities that are allowed access through this `EgressPolicy`.
+        To specify an identity or identity group, use the IAM v1 format
+        specified [here](https://cloud.google.com/iam/docs/principal-identifiers.md#v1).
+        The following prefixes are supprted: user, group, serviceAccount, principal, and principalSet.'
         """
         return pulumi.get(self, "identities")
 
@@ -4571,9 +4581,10 @@ class ServicePerimetersServicePerimeterSpecIngressPolicyIngressFromArgs:
                  identity_type: Optional[pulumi.Input[str]] = None,
                  sources: Optional[pulumi.Input[Sequence[pulumi.Input['ServicePerimetersServicePerimeterSpecIngressPolicyIngressFromSourceArgs']]]] = None):
         """
-        :param pulumi.Input[Sequence[pulumi.Input[str]]] identities: A list of identities that are allowed access through this ingress policy.
-               Should be in the format of email address. The email address should represent
-               individual user or service account only.
+        :param pulumi.Input[Sequence[pulumi.Input[str]]] identities: 'A list of identities that are allowed access through this `IngressPolicy`.
+               To specify an identity or identity group, use the IAM v1 format
+               specified [here](https://cloud.google.com/iam/docs/principal-identifiers.md#v1).
+               The following prefixes are supprted: user, group, serviceAccount, principal, and principalSet.'
         :param pulumi.Input[str] identity_type: Specifies the type of identities that are allowed access from outside the
                perimeter. If left unspecified, then members of `identities` field will be
                allowed access.
@@ -4592,9 +4603,10 @@ class ServicePerimetersServicePerimeterSpecIngressPolicyIngressFromArgs:
     @pulumi.getter
     def identities(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]:
         """
-        A list of identities that are allowed access through this ingress policy.
-        Should be in the format of email address. The email address should represent
-        individual user or service account only.
+        'A list of identities that are allowed access through this `IngressPolicy`.
+        To specify an identity or identity group, use the IAM v1 format
+        specified [here](https://cloud.google.com/iam/docs/principal-identifiers.md#v1).
+        The following prefixes are supprted: user, group, serviceAccount, principal, and principalSet.'
         """
         return pulumi.get(self, "identities")
 
@@ -5080,9 +5092,10 @@ class ServicePerimetersServicePerimeterStatusEgressPolicyEgressFromArgs:
                  source_restriction: Optional[pulumi.Input[str]] = None,
                  sources: Optional[pulumi.Input[Sequence[pulumi.Input['ServicePerimetersServicePerimeterStatusEgressPolicyEgressFromSourceArgs']]]] = None):
         """
-        :param pulumi.Input[Sequence[pulumi.Input[str]]] identities: A list of identities that are allowed access through this `EgressPolicy`.
-               Should be in the format of email address. The email address should
-               represent individual user or service account only.
+        :param pulumi.Input[Sequence[pulumi.Input[str]]] identities: 'A list of identities that are allowed access through this `EgressPolicy`.
+               To specify an identity or identity group, use the IAM v1 format
+               specified [here](https://cloud.google.com/iam/docs/principal-identifiers.md#v1).
+               The following prefixes are supprted: user, group, serviceAccount, principal, and principalSet.'
         :param pulumi.Input[str] identity_type: Specifies the type of identities that are allowed access to outside the
                perimeter. If left unspecified, then members of `identities` field will
                be allowed access.
@@ -5105,9 +5118,10 @@ class ServicePerimetersServicePerimeterStatusEgressPolicyEgressFromArgs:
     @pulumi.getter
     def identities(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]:
         """
-        A list of identities that are allowed access through this `EgressPolicy`.
-        Should be in the format of email address. The email address should
-        represent individual user or service account only.
+        'A list of identities that are allowed access through this `EgressPolicy`.
+        To specify an identity or identity group, use the IAM v1 format
+        specified [here](https://cloud.google.com/iam/docs/principal-identifiers.md#v1).
+        The following prefixes are supprted: user, group, serviceAccount, principal, and principalSet.'
         """
         return pulumi.get(self, "identities")
 
@@ -5401,9 +5415,10 @@ class ServicePerimetersServicePerimeterStatusIngressPolicyIngressFromArgs:
                  identity_type: Optional[pulumi.Input[str]] = None,
                  sources: Optional[pulumi.Input[Sequence[pulumi.Input['ServicePerimetersServicePerimeterStatusIngressPolicyIngressFromSourceArgs']]]] = None):
         """
-        :param pulumi.Input[Sequence[pulumi.Input[str]]] identities: A list of identities that are allowed access through this ingress policy.
-               Should be in the format of email address. The email address should represent
-               individual user or service account only.
+        :param pulumi.Input[Sequence[pulumi.Input[str]]] identities: 'A list of identities that are allowed access through this `IngressPolicy`.
+               To specify an identity or identity group, use the IAM v1 format
+               specified [here](https://cloud.google.com/iam/docs/principal-identifiers.md#v1).
+               The following prefixes are supprted: user, group, serviceAccount, principal, and principalSet.'
         :param pulumi.Input[str] identity_type: Specifies the type of identities that are allowed access from outside the
                perimeter. If left unspecified, then members of `identities` field will be
                allowed access.
@@ -5422,9 +5437,10 @@ class ServicePerimetersServicePerimeterStatusIngressPolicyIngressFromArgs:
     @pulumi.getter
     def identities(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]:
         """
-        A list of identities that are allowed access through this ingress policy.
-        Should be in the format of email address. The email address should represent
-        individual user or service account only.
+        'A list of identities that are allowed access through this `IngressPolicy`.
+        To specify an identity or identity group, use the IAM v1 format
+        specified [here](https://cloud.google.com/iam/docs/principal-identifiers.md#v1).
+        The following prefixes are supprted: user, group, serviceAccount, principal, and principalSet.'
         """
         return pulumi.get(self, "identities")
 

pulumi_gcp/accesscontextmanager/access_levels.py

@@ -121,6 +121,16 @@ class AccessLevels(pulumi.CustomResource):
                  parent: Optional[pulumi.Input[str]] = None,
                  __props__=None):
         """
+        Replace all existing Access Levels in an Access Policy with the Access Levels provided. This is done atomically.
+        This is a bulk edit of all Access Levels and may override existing Access Levels created by `accesscontextmanager.AccessLevel`,
+        thus causing a permadiff if used alongside `accesscontextmanager.AccessLevel` on the same parent.
+
+        To get more information about AccessLevels, see:
+
+        * [API documentation](https://cloud.google.com/access-context-manager/docs/reference/rest/v1/accessPolicies.accessLevels)
+        * How-to Guides
+            * [Access Policy Quickstart](https://cloud.google.com/access-context-manager/docs/quickstart)
+
         ## Example Usage
 
         ### Access Context Manager Access Levels Basic
@@ -211,6 +221,16 @@ class AccessLevels(pulumi.CustomResource):
                  args: AccessLevelsArgs,
                  opts: Optional[pulumi.ResourceOptions] = None):
         """
+        Replace all existing Access Levels in an Access Policy with the Access Levels provided. This is done atomically.
+        This is a bulk edit of all Access Levels and may override existing Access Levels created by `accesscontextmanager.AccessLevel`,
+        thus causing a permadiff if used alongside `accesscontextmanager.AccessLevel` on the same parent.
+
+        To get more information about AccessLevels, see:
+
+        * [API documentation](https://cloud.google.com/access-context-manager/docs/reference/rest/v1/accessPolicies.accessLevels)
+        * How-to Guides
+            * [Access Policy Quickstart](https://cloud.google.com/access-context-manager/docs/quickstart)
+
         ## Example Usage
 
         ### Access Context Manager Access Levels Basic