pulumi-gcp 7.31.0a1720765508__py3-none-any.whl → 7.31.0a1721039192__py3-none-any.whl

pulumi_gcp/orgpolicy/outputs.py

@@ -54,11 +54,14 @@ class PolicyDryRunSpec(dict):
                  rules: Optional[Sequence['outputs.PolicyDryRunSpecRule']] = None,
                  update_time: Optional[str] = None):
         """
-        :param str etag: An opaque tag indicating the current version of the policy, used for concurrency control. This field is ignored if used in a `CreatePolicy` request. When the policy` is returned from either a `GetPolicy` or a `ListPolicies` request, this `etag` indicates the version of the current policy to use when executing a read-modify-write loop. When the policy is returned from a `GetEffectivePolicy` request, the `etag` will be unset.
+        :param str etag: (Output)
+               An opaque tag indicating the current version of the policy, used for concurrency control. This field is ignored if used in a `CreatePolicy` request. When the policy` is returned from either a `GetPolicy` or a `ListPolicies` request, this `etag` indicates the version of the current policy to use when executing a read-modify-write loop. When the policy is returned from a `GetEffectivePolicy` request, the `etag` will be unset.
         :param bool inherit_from_parent: Determines the inheritance behavior for this policy. If `inherit_from_parent` is true, policy rules set higher up in the hierarchy (up to the closest root) are inherited and present in the effective policy. If it is false, then no rules are inherited, and this policy becomes the new root for evaluation. This field can be set only for policies which configure list constraints.
         :param bool reset: Ignores policies set above this resource and restores the `constraint_default` enforcement behavior of the specific constraint at this resource. This field can be set in policies for either list or boolean constraints. If set, `rules` must be empty and `inherit_from_parent` must be set to false.
         :param Sequence['PolicyDryRunSpecRuleArgs'] rules: In policies for boolean constraints, the following requirements apply: - There must be one and only one policy rule where condition is unset. - Boolean policy rules with conditions must set `enforced` to the opposite of the policy rule without a condition. - During policy evaluation, policy rules with conditions that are true for a target resource take precedence.
-        :param str update_time: Output only. The time stamp this was previously updated. This represents the last time a call to `CreatePolicy` or `UpdatePolicy` was made for that policy.
+               Structure is documented below.
+        :param str update_time: (Output)
+               Output only. The time stamp this was previously updated. This represents the last time a call to `CreatePolicy` or `UpdatePolicy` was made for that policy.
         """
         if etag is not None:
             pulumi.set(__self__, "etag", etag)
@@ -75,6 +78,7 @@ class PolicyDryRunSpec(dict):
     @pulumi.getter
     def etag(self) -> Optional[str]:
         """
+        (Output)
         An opaque tag indicating the current version of the policy, used for concurrency control. This field is ignored if used in a `CreatePolicy` request. When the policy` is returned from either a `GetPolicy` or a `ListPolicies` request, this `etag` indicates the version of the current policy to use when executing a read-modify-write loop. When the policy is returned from a `GetEffectivePolicy` request, the `etag` will be unset.
         """
         return pulumi.get(self, "etag")
@@ -100,6 +104,7 @@ class PolicyDryRunSpec(dict):
     def rules(self) -> Optional[Sequence['outputs.PolicyDryRunSpecRule']]:
         """
         In policies for boolean constraints, the following requirements apply: - There must be one and only one policy rule where condition is unset. - Boolean policy rules with conditions must set `enforced` to the opposite of the policy rule without a condition. - During policy evaluation, policy rules with conditions that are true for a target resource take precedence.
+        Structure is documented below.
         """
         return pulumi.get(self, "rules")
 
@@ -107,6 +112,7 @@ class PolicyDryRunSpec(dict):
     @pulumi.getter(name="updateTime")
     def update_time(self) -> Optional[str]:
         """
+        (Output)
         Output only. The time stamp this was previously updated. This represents the last time a call to `CreatePolicy` or `UpdatePolicy` was made for that policy.
         """
         return pulumi.get(self, "update_time")
@@ -142,9 +148,11 @@ class PolicyDryRunSpecRule(dict):
         """
         :param str allow_all: Setting this to `"TRUE"` means that all values are allowed. This field can be set only in Policies for list constraints.
         :param 'PolicyDryRunSpecRuleConditionArgs' condition: A condition which determines whether this rule is used in the evaluation of the policy. When set, the `expression` field in the `Expr' must include from 1 to 10 subexpressions, joined by the "||" or "&&" operators. Each subexpression must be of the form "resource.matchTag('/tag_key_short_name, 'tag_value_short_name')". or "resource.matchTagId('tagKeys/key_id', 'tagValues/value_id')". where key_name and value_name are the resource names for Label Keys and Values. These names are available from the Tag Manager Service. An example expression is: "resource.matchTag('123456789/environment, 'prod')". or "resource.matchTagId('tagKeys/123', 'tagValues/456')".
+               Structure is documented below.
         :param str deny_all: Setting this to `"TRUE"` means that all values are denied. This field can be set only in Policies for list constraints.
         :param str enforce: If `"TRUE"`, then the `Policy` is enforced. If `"FALSE"`, then any configuration is acceptable. This field can be set only in Policies for boolean constraints.
-        :param 'PolicyDryRunSpecRuleValuesArgs' values: List of values to be used for this PolicyRule. This field can be set only in Policies for list constraints.
+        :param 'PolicyDryRunSpecRuleValuesArgs' values: List of values to be used for this policy rule. This field can be set only in policies for list constraints.
+               Structure is documented below.
         """
         if allow_all is not None:
             pulumi.set(__self__, "allow_all", allow_all)
@@ -170,6 +178,7 @@ class PolicyDryRunSpecRule(dict):
     def condition(self) -> Optional['outputs.PolicyDryRunSpecRuleCondition']:
         """
         A condition which determines whether this rule is used in the evaluation of the policy. When set, the `expression` field in the `Expr' must include from 1 to 10 subexpressions, joined by the "||" or "&&" operators. Each subexpression must be of the form "resource.matchTag('/tag_key_short_name, 'tag_value_short_name')". or "resource.matchTagId('tagKeys/key_id', 'tagValues/value_id')". where key_name and value_name are the resource names for Label Keys and Values. These names are available from the Tag Manager Service. An example expression is: "resource.matchTag('123456789/environment, 'prod')". or "resource.matchTagId('tagKeys/123', 'tagValues/456')".
+        Structure is documented below.
         """
         return pulumi.get(self, "condition")
 
@@ -193,7 +202,8 @@ class PolicyDryRunSpecRule(dict):
     @pulumi.getter
     def values(self) -> Optional['outputs.PolicyDryRunSpecRuleValues']:
         """
-        List of values to be used for this PolicyRule. This field can be set only in Policies for list constraints.
+        List of values to be used for this policy rule. This field can be set only in policies for list constraints.
+        Structure is documented below.
         """
         return pulumi.get(self, "values")
 
@@ -331,11 +341,14 @@ class PolicySpec(dict):
                  rules: Optional[Sequence['outputs.PolicySpecRule']] = None,
                  update_time: Optional[str] = None):
         """
-        :param str etag: An opaque tag indicating the current version of the `Policy`, used for concurrency control. This field is ignored if used in a `CreatePolicy` request. When the `Policy` is returned from either a `GetPolicy` or a `ListPolicies` request, this `etag` indicates the version of the current `Policy` to use when executing a read-modify-write loop. When the `Policy` is returned from a `GetEffectivePolicy` request, the `etag` will be unset.
+        :param str etag: (Output)
+               An opaque tag indicating the current version of the `Policy`, used for concurrency control. This field is ignored if used in a `CreatePolicy` request. When the `Policy` is returned from either a `GetPolicy` or a `ListPolicies` request, this `etag` indicates the version of the current `Policy` to use when executing a read-modify-write loop. When the `Policy` is returned from a `GetEffectivePolicy` request, the `etag` will be unset.
         :param bool inherit_from_parent: Determines the inheritance behavior for this `Policy`. If `inherit_from_parent` is true, PolicyRules set higher up in the hierarchy (up to the closest root) are inherited and present in the effective policy. If it is false, then no rules are inherited, and this Policy becomes the new root for evaluation. This field can be set only for Policies which configure list constraints.
         :param bool reset: Ignores policies set above this resource and restores the `constraint_default` enforcement behavior of the specific `Constraint` at this resource. This field can be set in policies for either list or boolean constraints. If set, `rules` must be empty and `inherit_from_parent` must be set to false.
         :param Sequence['PolicySpecRuleArgs'] rules: Up to 10 PolicyRules are allowed. In Policies for boolean constraints, the following requirements apply: - There must be one and only one PolicyRule where condition is unset. - BooleanPolicyRules with conditions must set `enforced` to the opposite of the PolicyRule without a condition. - During policy evaluation, PolicyRules with conditions that are true for a target resource take precedence.
-        :param str update_time: Output only. The time stamp this was previously updated. This represents the last time a call to `CreatePolicy` or `UpdatePolicy` was made for that `Policy`.
+               Structure is documented below.
+        :param str update_time: (Output)
+               Output only. The time stamp this was previously updated. This represents the last time a call to `CreatePolicy` or `UpdatePolicy` was made for that `Policy`.
         """
         if etag is not None:
             pulumi.set(__self__, "etag", etag)
@@ -352,6 +365,7 @@ class PolicySpec(dict):
     @pulumi.getter
     def etag(self) -> Optional[str]:
         """
+        (Output)
         An opaque tag indicating the current version of the `Policy`, used for concurrency control. This field is ignored if used in a `CreatePolicy` request. When the `Policy` is returned from either a `GetPolicy` or a `ListPolicies` request, this `etag` indicates the version of the current `Policy` to use when executing a read-modify-write loop. When the `Policy` is returned from a `GetEffectivePolicy` request, the `etag` will be unset.
         """
         return pulumi.get(self, "etag")
@@ -377,6 +391,7 @@ class PolicySpec(dict):
     def rules(self) -> Optional[Sequence['outputs.PolicySpecRule']]:
         """
         Up to 10 PolicyRules are allowed. In Policies for boolean constraints, the following requirements apply: - There must be one and only one PolicyRule where condition is unset. - BooleanPolicyRules with conditions must set `enforced` to the opposite of the PolicyRule without a condition. - During policy evaluation, PolicyRules with conditions that are true for a target resource take precedence.
+        Structure is documented below.
         """
         return pulumi.get(self, "rules")
 
@@ -384,6 +399,7 @@ class PolicySpec(dict):
     @pulumi.getter(name="updateTime")
     def update_time(self) -> Optional[str]:
         """
+        (Output)
         Output only. The time stamp this was previously updated. This represents the last time a call to `CreatePolicy` or `UpdatePolicy` was made for that `Policy`.
         """
         return pulumi.get(self, "update_time")
@@ -419,9 +435,11 @@ class PolicySpecRule(dict):
         """
         :param str allow_all: Setting this to `"TRUE"` means that all values are allowed. This field can be set only in Policies for list constraints.
         :param 'PolicySpecRuleConditionArgs' condition: A condition which determines whether this rule is used in the evaluation of the policy. When set, the `expression` field in the `Expr' must include from 1 to 10 subexpressions, joined by the "||" or "&&" operators. Each subexpression must be of the form "resource.matchTag('/tag_key_short_name, 'tag_value_short_name')". or "resource.matchTagId('tagKeys/key_id', 'tagValues/value_id')". where key_name and value_name are the resource names for Label Keys and Values. These names are available from the Tag Manager Service. An example expression is: "resource.matchTag('123456789/environment, 'prod')". or "resource.matchTagId('tagKeys/123', 'tagValues/456')".
+               Structure is documented below.
         :param str deny_all: Setting this to `"TRUE"` means that all values are denied. This field can be set only in Policies for list constraints.
         :param str enforce: If `"TRUE"`, then the `Policy` is enforced. If `"FALSE"`, then any configuration is acceptable. This field can be set only in Policies for boolean constraints.
-        :param 'PolicySpecRuleValuesArgs' values: List of values to be used for this PolicyRule. This field can be set only in Policies for list constraints.
+        :param 'PolicySpecRuleValuesArgs' values: List of values to be used for this policy rule. This field can be set only in policies for list constraints.
+               Structure is documented below.
         """
         if allow_all is not None:
             pulumi.set(__self__, "allow_all", allow_all)
@@ -447,6 +465,7 @@ class PolicySpecRule(dict):
     def condition(self) -> Optional['outputs.PolicySpecRuleCondition']:
         """
         A condition which determines whether this rule is used in the evaluation of the policy. When set, the `expression` field in the `Expr' must include from 1 to 10 subexpressions, joined by the "||" or "&&" operators. Each subexpression must be of the form "resource.matchTag('/tag_key_short_name, 'tag_value_short_name')". or "resource.matchTagId('tagKeys/key_id', 'tagValues/value_id')". where key_name and value_name are the resource names for Label Keys and Values. These names are available from the Tag Manager Service. An example expression is: "resource.matchTag('123456789/environment, 'prod')". or "resource.matchTagId('tagKeys/123', 'tagValues/456')".
+        Structure is documented below.
         """
         return pulumi.get(self, "condition")
 
@@ -470,7 +489,8 @@ class PolicySpecRule(dict):
     @pulumi.getter
     def values(self) -> Optional['outputs.PolicySpecRuleValues']:
         """
-        List of values to be used for this PolicyRule. This field can be set only in Policies for list constraints.
+        List of values to be used for this policy rule. This field can be set only in policies for list constraints.
+        Structure is documented below.
         """
         return pulumi.get(self, "values")
 

pulumi_gcp/orgpolicy/policy.py

@@ -30,11 +30,12 @@ class PolicyArgs:
         :param pulumi.Input[str] parent: The parent of the resource.
                
                
-               
                - - -
         :param pulumi.Input['PolicyDryRunSpecArgs'] dry_run_spec: Dry-run policy. Audit-only policy, can be used to monitor how the policy would have impacted the existing and future resources if it's enforced.
+               Structure is documented below.
         :param pulumi.Input[str] name: Immutable. The resource name of the Policy. Must be one of the following forms, where constraint_name is the name of the constraint which this Policy configures: * `projects/{project_number}/policies/{constraint_name}` * `folders/{folder_id}/policies/{constraint_name}` * `organizations/{organization_id}/policies/{constraint_name}` For example, "projects/123/policies/compute.disableSerialPortAccess". Note: `projects/{project_id}/policies/{constraint_name}` is also an acceptable name for API requests, but responses will return the name using the equivalent project number.
         :param pulumi.Input['PolicySpecArgs'] spec: Basic information about the Organization Policy.
+               Structure is documented below.
         """
         pulumi.set(__self__, "parent", parent)
         if dry_run_spec is not None:
@@ -51,7 +52,6 @@ class PolicyArgs:
         The parent of the resource.
 
 
-
         - - -
         """
         return pulumi.get(self, "parent")
@@ -65,6 +65,7 @@ class PolicyArgs:
     def dry_run_spec(self) -> Optional[pulumi.Input['PolicyDryRunSpecArgs']]:
         """
         Dry-run policy. Audit-only policy, can be used to monitor how the policy would have impacted the existing and future resources if it's enforced.
+        Structure is documented below.
         """
         return pulumi.get(self, "dry_run_spec")
 
@@ -89,6 +90,7 @@ class PolicyArgs:
     def spec(self) -> Optional[pulumi.Input['PolicySpecArgs']]:
         """
         Basic information about the Organization Policy.
+        Structure is documented below.
         """
         return pulumi.get(self, "spec")
 
@@ -108,14 +110,15 @@ class _PolicyState:
         """
         Input properties used for looking up and filtering Policy resources.
         :param pulumi.Input['PolicyDryRunSpecArgs'] dry_run_spec: Dry-run policy. Audit-only policy, can be used to monitor how the policy would have impacted the existing and future resources if it's enforced.
+               Structure is documented below.
         :param pulumi.Input[str] etag: Optional. An opaque tag indicating the current state of the policy, used for concurrency control. This 'etag' is computed by the server based on the value of other fields, and may be sent on update and delete requests to ensure the client has an up-to-date value before proceeding.
         :param pulumi.Input[str] name: Immutable. The resource name of the Policy. Must be one of the following forms, where constraint_name is the name of the constraint which this Policy configures: * `projects/{project_number}/policies/{constraint_name}` * `folders/{folder_id}/policies/{constraint_name}` * `organizations/{organization_id}/policies/{constraint_name}` For example, "projects/123/policies/compute.disableSerialPortAccess". Note: `projects/{project_id}/policies/{constraint_name}` is also an acceptable name for API requests, but responses will return the name using the equivalent project number.
         :param pulumi.Input[str] parent: The parent of the resource.
                
                
-               
                - - -
         :param pulumi.Input['PolicySpecArgs'] spec: Basic information about the Organization Policy.
+               Structure is documented below.
         """
         if dry_run_spec is not None:
             pulumi.set(__self__, "dry_run_spec", dry_run_spec)
@@ -133,6 +136,7 @@ class _PolicyState:
     def dry_run_spec(self) -> Optional[pulumi.Input['PolicyDryRunSpecArgs']]:
         """
         Dry-run policy. Audit-only policy, can be used to monitor how the policy would have impacted the existing and future resources if it's enforced.
+        Structure is documented below.
         """
         return pulumi.get(self, "dry_run_spec")
 
@@ -171,7 +175,6 @@ class _PolicyState:
         The parent of the resource.
 
 
-
         - - -
         """
         return pulumi.get(self, "parent")
@@ -185,6 +188,7 @@ class _PolicyState:
     def spec(self) -> Optional[pulumi.Input['PolicySpecArgs']]:
         """
         Basic information about the Organization Policy.
+        Structure is documented below.
         """
         return pulumi.get(self, "spec")
 
@@ -204,16 +208,19 @@ class Policy(pulumi.CustomResource):
                  spec: Optional[pulumi.Input[Union['PolicySpecArgs', 'PolicySpecArgsDict']]] = None,
                  __props__=None):
         """
-        An organization policy gives you programmatic control over your organization's cloud resources.  Using Organization Policies, you will be able to configure constraints across your entire resource hierarchy.
+        Defines an organization policy which is used to specify constraints for configurations of Google Cloud resources.
+
+        To get more information about Policy, see:
+
+        * [API documentation](https://cloud.google.com/resource-manager/docs/reference/orgpolicy/rest/v2/organizations.policies)
+        * How-to Guides
+            * [Official Documentation](https://cloud.google.com/resource-manager/docs/organization-policy/creating-managing-custom-constraints)
+            * [Supported Services](https://cloud.google.com/resource-manager/docs/organization-policy/custom-constraint-supported-services)
 
-        For more information, see:
-        * [Understanding Org Policy concepts](https://cloud.google.com/resource-manager/docs/organization-policy/overview)
-        * [The resource hierarchy](https://cloud.google.com/resource-manager/docs/cloud-platform-resource-hierarchy)
-        * [All valid constraints](https://cloud.google.com/resource-manager/docs/organization-policy/org-policy-constraints)
         ## Example Usage
 
-        ### Enforce_policy
-        A test of an enforce orgpolicy policy for a project
+        ### Org Policy Policy Enforce
+
         ```python
         import pulumi
         import pulumi_gcp as gcp
@@ -231,8 +238,8 @@ class Policy(pulumi.CustomResource):
                 }],
             })
         ```
-        ### Folder_policy
-        A test of an orgpolicy policy for a folder
+        ### Org Policy Policy Folder
+
         ```python
         import pulumi
         import pulumi_gcp as gcp
@@ -250,8 +257,8 @@ class Policy(pulumi.CustomResource):
                 }],
             })
         ```
-        ### Organization_policy
-        A test of an orgpolicy policy for an organization
+        ### Org Policy Policy Organization
+
         ```python
         import pulumi
         import pulumi_gcp as gcp
@@ -263,8 +270,8 @@ class Policy(pulumi.CustomResource):
                 "reset": True,
             })
         ```
-        ### Project_policy
-        A test of an orgpolicy policy for a project
+        ### Org Policy Policy Project
+
         ```python
         import pulumi
         import pulumi_gcp as gcp
@@ -296,7 +303,8 @@ class Policy(pulumi.CustomResource):
                 ],
             })
         ```
-        ### Dry_run_spec
+        ### Org Policy Policy Dry Run Spec
+
         ```python
         import pulumi
         import pulumi_gcp as gcp
@@ -330,6 +338,7 @@ class Policy(pulumi.CustomResource):
         ## Import
 
         Policy can be imported using any of these accepted formats:
+
         * `{{parent}}/policies/{{name}}`
 
         When using the `pulumi import` command, Policy can be imported using one of the formats above. For example:
@@ -341,13 +350,14 @@ class Policy(pulumi.CustomResource):
         :param str resource_name: The name of the resource.
         :param pulumi.ResourceOptions opts: Options for the resource.
         :param pulumi.Input[Union['PolicyDryRunSpecArgs', 'PolicyDryRunSpecArgsDict']] dry_run_spec: Dry-run policy. Audit-only policy, can be used to monitor how the policy would have impacted the existing and future resources if it's enforced.
+               Structure is documented below.
         :param pulumi.Input[str] name: Immutable. The resource name of the Policy. Must be one of the following forms, where constraint_name is the name of the constraint which this Policy configures: * `projects/{project_number}/policies/{constraint_name}` * `folders/{folder_id}/policies/{constraint_name}` * `organizations/{organization_id}/policies/{constraint_name}` For example, "projects/123/policies/compute.disableSerialPortAccess". Note: `projects/{project_id}/policies/{constraint_name}` is also an acceptable name for API requests, but responses will return the name using the equivalent project number.
         :param pulumi.Input[str] parent: The parent of the resource.
                
                
-               
                - - -
         :param pulumi.Input[Union['PolicySpecArgs', 'PolicySpecArgsDict']] spec: Basic information about the Organization Policy.
+               Structure is documented below.
         """
         ...
     @overload
@@ -356,16 +366,19 @@ class Policy(pulumi.CustomResource):
                  args: PolicyArgs,
                  opts: Optional[pulumi.ResourceOptions] = None):
         """
-        An organization policy gives you programmatic control over your organization's cloud resources.  Using Organization Policies, you will be able to configure constraints across your entire resource hierarchy.
+        Defines an organization policy which is used to specify constraints for configurations of Google Cloud resources.
+
+        To get more information about Policy, see:
+
+        * [API documentation](https://cloud.google.com/resource-manager/docs/reference/orgpolicy/rest/v2/organizations.policies)
+        * How-to Guides
+            * [Official Documentation](https://cloud.google.com/resource-manager/docs/organization-policy/creating-managing-custom-constraints)
+            * [Supported Services](https://cloud.google.com/resource-manager/docs/organization-policy/custom-constraint-supported-services)
 
-        For more information, see:
-        * [Understanding Org Policy concepts](https://cloud.google.com/resource-manager/docs/organization-policy/overview)
-        * [The resource hierarchy](https://cloud.google.com/resource-manager/docs/cloud-platform-resource-hierarchy)
-        * [All valid constraints](https://cloud.google.com/resource-manager/docs/organization-policy/org-policy-constraints)
         ## Example Usage
 
-        ### Enforce_policy
-        A test of an enforce orgpolicy policy for a project
+        ### Org Policy Policy Enforce
+
         ```python
         import pulumi
         import pulumi_gcp as gcp
@@ -383,8 +396,8 @@ class Policy(pulumi.CustomResource):
                 }],
             })
         ```
-        ### Folder_policy
-        A test of an orgpolicy policy for a folder
+        ### Org Policy Policy Folder
+
         ```python
         import pulumi
         import pulumi_gcp as gcp
@@ -402,8 +415,8 @@ class Policy(pulumi.CustomResource):
                 }],
             })
         ```
-        ### Organization_policy
-        A test of an orgpolicy policy for an organization
+        ### Org Policy Policy Organization
+
         ```python
         import pulumi
         import pulumi_gcp as gcp
@@ -415,8 +428,8 @@ class Policy(pulumi.CustomResource):
                 "reset": True,
             })
         ```
-        ### Project_policy
-        A test of an orgpolicy policy for a project
+        ### Org Policy Policy Project
+
         ```python
         import pulumi
         import pulumi_gcp as gcp
@@ -448,7 +461,8 @@ class Policy(pulumi.CustomResource):
                 ],
             })
         ```
-        ### Dry_run_spec
+        ### Org Policy Policy Dry Run Spec
+
         ```python
         import pulumi
         import pulumi_gcp as gcp
@@ -482,6 +496,7 @@ class Policy(pulumi.CustomResource):
         ## Import
 
         Policy can be imported using any of these accepted formats:
+
         * `{{parent}}/policies/{{name}}`
 
         When using the `pulumi import` command, Policy can be imported using one of the formats above. For example:
@@ -548,14 +563,15 @@ class Policy(pulumi.CustomResource):
         :param pulumi.Input[str] id: The unique provider ID of the resource to lookup.
         :param pulumi.ResourceOptions opts: Options for the resource.
         :param pulumi.Input[Union['PolicyDryRunSpecArgs', 'PolicyDryRunSpecArgsDict']] dry_run_spec: Dry-run policy. Audit-only policy, can be used to monitor how the policy would have impacted the existing and future resources if it's enforced.
+               Structure is documented below.
         :param pulumi.Input[str] etag: Optional. An opaque tag indicating the current state of the policy, used for concurrency control. This 'etag' is computed by the server based on the value of other fields, and may be sent on update and delete requests to ensure the client has an up-to-date value before proceeding.
         :param pulumi.Input[str] name: Immutable. The resource name of the Policy. Must be one of the following forms, where constraint_name is the name of the constraint which this Policy configures: * `projects/{project_number}/policies/{constraint_name}` * `folders/{folder_id}/policies/{constraint_name}` * `organizations/{organization_id}/policies/{constraint_name}` For example, "projects/123/policies/compute.disableSerialPortAccess". Note: `projects/{project_id}/policies/{constraint_name}` is also an acceptable name for API requests, but responses will return the name using the equivalent project number.
         :param pulumi.Input[str] parent: The parent of the resource.
                
                
-               
                - - -
         :param pulumi.Input[Union['PolicySpecArgs', 'PolicySpecArgsDict']] spec: Basic information about the Organization Policy.
+               Structure is documented below.
         """
         opts = pulumi.ResourceOptions.merge(opts, pulumi.ResourceOptions(id=id))
 
@@ -573,6 +589,7 @@ class Policy(pulumi.CustomResource):
     def dry_run_spec(self) -> pulumi.Output[Optional['outputs.PolicyDryRunSpec']]:
         """
         Dry-run policy. Audit-only policy, can be used to monitor how the policy would have impacted the existing and future resources if it's enforced.
+        Structure is documented below.
         """
         return pulumi.get(self, "dry_run_spec")
 
@@ -599,7 +616,6 @@ class Policy(pulumi.CustomResource):
         The parent of the resource.
 
 
-
         - - -
         """
         return pulumi.get(self, "parent")
@@ -609,6 +625,7 @@ class Policy(pulumi.CustomResource):
     def spec(self) -> pulumi.Output[Optional['outputs.PolicySpec']]:
         """
         Basic information about the Organization Policy.
+        Structure is documented below.
         """
         return pulumi.get(self, "spec")
 

pulumi_gcp/provider.py

@@ -165,6 +165,7 @@ class ProviderArgs:
                  secure_source_manager_custom_endpoint: Optional[pulumi.Input[str]] = None,
                  security_center_custom_endpoint: Optional[pulumi.Input[str]] = None,
                  security_center_management_custom_endpoint: Optional[pulumi.Input[str]] = None,
+                 security_center_v2_custom_endpoint: Optional[pulumi.Input[str]] = None,
                  security_scanner_custom_endpoint: Optional[pulumi.Input[str]] = None,
                  securityposture_custom_endpoint: Optional[pulumi.Input[str]] = None,
                  service_directory_custom_endpoint: Optional[pulumi.Input[str]] = None,
@@ -488,6 +489,8 @@ class ProviderArgs:
             pulumi.set(__self__, "security_center_custom_endpoint", security_center_custom_endpoint)
         if security_center_management_custom_endpoint is not None:
             pulumi.set(__self__, "security_center_management_custom_endpoint", security_center_management_custom_endpoint)
+        if security_center_v2_custom_endpoint is not None:
+            pulumi.set(__self__, "security_center_v2_custom_endpoint", security_center_v2_custom_endpoint)
         if security_scanner_custom_endpoint is not None:
             pulumi.set(__self__, "security_scanner_custom_endpoint", security_scanner_custom_endpoint)
         if securityposture_custom_endpoint is not None:
@@ -1848,6 +1851,15 @@ class ProviderArgs:
     def security_center_management_custom_endpoint(self, value: Optional[pulumi.Input[str]]):
         pulumi.set(self, "security_center_management_custom_endpoint", value)
 
+    @property
+    @pulumi.getter(name="securityCenterV2CustomEndpoint")
+    def security_center_v2_custom_endpoint(self) -> Optional[pulumi.Input[str]]:
+        return pulumi.get(self, "security_center_v2_custom_endpoint")
+
+    @security_center_v2_custom_endpoint.setter
+    def security_center_v2_custom_endpoint(self, value: Optional[pulumi.Input[str]]):
+        pulumi.set(self, "security_center_v2_custom_endpoint", value)
+
     @property
     @pulumi.getter(name="securityScannerCustomEndpoint")
     def security_scanner_custom_endpoint(self) -> Optional[pulumi.Input[str]]:
@@ -2233,6 +2245,7 @@ class Provider(pulumi.ProviderResource):
                  secure_source_manager_custom_endpoint: Optional[pulumi.Input[str]] = None,
                  security_center_custom_endpoint: Optional[pulumi.Input[str]] = None,
                  security_center_management_custom_endpoint: Optional[pulumi.Input[str]] = None,
+                 security_center_v2_custom_endpoint: Optional[pulumi.Input[str]] = None,
                  security_scanner_custom_endpoint: Optional[pulumi.Input[str]] = None,
                  securityposture_custom_endpoint: Optional[pulumi.Input[str]] = None,
                  service_directory_custom_endpoint: Optional[pulumi.Input[str]] = None,
@@ -2441,6 +2454,7 @@ class Provider(pulumi.ProviderResource):
                  secure_source_manager_custom_endpoint: Optional[pulumi.Input[str]] = None,
                  security_center_custom_endpoint: Optional[pulumi.Input[str]] = None,
                  security_center_management_custom_endpoint: Optional[pulumi.Input[str]] = None,
+                 security_center_v2_custom_endpoint: Optional[pulumi.Input[str]] = None,
                  security_scanner_custom_endpoint: Optional[pulumi.Input[str]] = None,
                  securityposture_custom_endpoint: Optional[pulumi.Input[str]] = None,
                  service_directory_custom_endpoint: Optional[pulumi.Input[str]] = None,
@@ -2625,6 +2639,7 @@ class Provider(pulumi.ProviderResource):
             __props__.__dict__["secure_source_manager_custom_endpoint"] = secure_source_manager_custom_endpoint
             __props__.__dict__["security_center_custom_endpoint"] = security_center_custom_endpoint
             __props__.__dict__["security_center_management_custom_endpoint"] = security_center_management_custom_endpoint
+            __props__.__dict__["security_center_v2_custom_endpoint"] = security_center_v2_custom_endpoint
             __props__.__dict__["security_scanner_custom_endpoint"] = security_scanner_custom_endpoint
             __props__.__dict__["securityposture_custom_endpoint"] = securityposture_custom_endpoint
             __props__.__dict__["service_directory_custom_endpoint"] = service_directory_custom_endpoint
@@ -3356,6 +3371,11 @@ class Provider(pulumi.ProviderResource):
     def security_center_management_custom_endpoint(self) -> pulumi.Output[Optional[str]]:
         return pulumi.get(self, "security_center_management_custom_endpoint")
 
+    @property
+    @pulumi.getter(name="securityCenterV2CustomEndpoint")
+    def security_center_v2_custom_endpoint(self) -> pulumi.Output[Optional[str]]:
+        return pulumi.get(self, "security_center_v2_custom_endpoint")
+
     @property
     @pulumi.getter(name="securityScannerCustomEndpoint")
     def security_scanner_custom_endpoint(self) -> pulumi.Output[Optional[str]]:

pulumi_gcp/pubsub/_inputs.py

@@ -401,7 +401,7 @@ if not MYPY:
     class SubscriptionBigqueryConfigArgsDict(TypedDict):
         table: pulumi.Input[str]
         """
-        The name of the table to which to write data, of the form {projectId}:{datasetId}.{tableId}
+        The name of the table to which to write data, of the form {projectId}.{datasetId}.{tableId}
         """
         drop_unknown_fields: NotRequired[pulumi.Input[bool]]
         """
@@ -443,7 +443,7 @@ class SubscriptionBigqueryConfigArgs:
                  use_topic_schema: Optional[pulumi.Input[bool]] = None,
                  write_metadata: Optional[pulumi.Input[bool]] = None):
         """
-        :param pulumi.Input[str] table: The name of the table to which to write data, of the form {projectId}:{datasetId}.{tableId}
+        :param pulumi.Input[str] table: The name of the table to which to write data, of the form {projectId}.{datasetId}.{tableId}
         :param pulumi.Input[bool] drop_unknown_fields: When true and use_topic_schema or use_table_schema is true, any fields that are a part of the topic schema or message schema that
                are not part of the BigQuery table schema are dropped when writing to BigQuery. Otherwise, the schemas must be kept in sync
                and any messages with extra fields are not written and remain in the subscription's backlog.
@@ -473,7 +473,7 @@ class SubscriptionBigqueryConfigArgs:
     @pulumi.getter
     def table(self) -> pulumi.Input[str]:
         """
-        The name of the table to which to write data, of the form {projectId}:{datasetId}.{tableId}
+        The name of the table to which to write data, of the form {projectId}.{datasetId}.{tableId}
         """
         return pulumi.get(self, "table")
 

pulumi_gcp/pubsub/outputs.py

@@ -354,7 +354,7 @@ class SubscriptionBigqueryConfig(dict):
                  use_topic_schema: Optional[bool] = None,
                  write_metadata: Optional[bool] = None):
         """
-        :param str table: The name of the table to which to write data, of the form {projectId}:{datasetId}.{tableId}
+        :param str table: The name of the table to which to write data, of the form {projectId}.{datasetId}.{tableId}
         :param bool drop_unknown_fields: When true and use_topic_schema or use_table_schema is true, any fields that are a part of the topic schema or message schema that
                are not part of the BigQuery table schema are dropped when writing to BigQuery. Otherwise, the schemas must be kept in sync
                and any messages with extra fields are not written and remain in the subscription's backlog.
@@ -384,7 +384,7 @@ class SubscriptionBigqueryConfig(dict):
     @pulumi.getter
     def table(self) -> str:
         """
-        The name of the table to which to write data, of the form {projectId}:{datasetId}.{tableId}
+        The name of the table to which to write data, of the form {projectId}.{datasetId}.{tableId}
         """
         return pulumi.get(self, "table")
 
@@ -1347,7 +1347,7 @@ class GetSubscriptionBigqueryConfigResult(dict):
         :param str service_account_email: The service account to use to write to BigQuery. If not specified, the Pub/Sub
                [service agent](https://cloud.google.com/iam/docs/service-agents),
                service-{project_number}@gcp-sa-pubsub.iam.gserviceaccount.com, is used.
-        :param str table: The name of the table to which to write data, of the form {projectId}:{datasetId}.{tableId}
+        :param str table: The name of the table to which to write data, of the form {projectId}.{datasetId}.{tableId}
         :param bool use_table_schema: When true, use the BigQuery table's schema as the columns to write to in BigQuery. Messages
                must be published in JSON format. Only one of use_topic_schema and use_table_schema can be set.
         :param bool use_topic_schema: When true, use the topic's schema as the columns to write to in BigQuery, if it exists.
@@ -1386,7 +1386,7 @@ class GetSubscriptionBigqueryConfigResult(dict):
     @pulumi.getter
     def table(self) -> str:
         """
-        The name of the table to which to write data, of the form {projectId}:{datasetId}.{tableId}
+        The name of the table to which to write data, of the form {projectId}.{datasetId}.{tableId}
         """
         return pulumi.get(self, "table")
 

pulumi_gcp/pulumi-plugin.json

@@ -1,5 +1,5 @@
 {
   "resource": true,
   "name": "gcp",
-  "version": "7.31.0-alpha.1720765508"
+  "version": "7.31.0-alpha.1721039192"
 }

pulumi_gcp/securesourcemanager/__init__.py

@@ -6,9 +6,14 @@ from .. import _utilities
 import typing
 # Export this package's modules as members:
 from .get_instance_iam_policy import *
+from .get_repository_iam_policy import *
 from .instance import *
 from .instance_iam_binding import *
 from .instance_iam_member import *
 from .instance_iam_policy import *
+from .repository import *
+from .repository_iam_binding import *
+from .repository_iam_member import *
+from .repository_iam_policy import *
 from ._inputs import *
 from . import outputs