pulumi-gcp 7.31.0a1720850808__py3-none-any.whl → 7.32.0__py3-none-any.whl

pulumi_gcp/certificatemanager/trust_config.py

@@ -22,6 +22,7 @@ __all__ = ['TrustConfigArgs', 'TrustConfig']
 class TrustConfigArgs:
     def __init__(__self__, *,
                  location: pulumi.Input[str],
+                 allowlisted_certificates: Optional[pulumi.Input[Sequence[pulumi.Input['TrustConfigAllowlistedCertificateArgs']]]] = None,
                  description: Optional[pulumi.Input[str]] = None,
                  labels: Optional[pulumi.Input[Mapping[str, pulumi.Input[str]]]] = None,
                  name: Optional[pulumi.Input[str]] = None,
@@ -33,6 +34,9 @@ class TrustConfigArgs:
                
                
                - - -
+        :param pulumi.Input[Sequence[pulumi.Input['TrustConfigAllowlistedCertificateArgs']]] allowlisted_certificates: Allowlisted PEM-encoded certificates. A certificate matching an allowlisted certificate is always considered valid as long as
+               the certificate is parseable, proof of private key possession is established, and constraints on the certificate's SAN field are met.
+               Structure is documented below.
         :param pulumi.Input[str] description: One or more paragraphs of text description of a trust config.
         :param pulumi.Input[Mapping[str, pulumi.Input[str]]] labels: Set of label tags associated with the trust config.
                **Note**: This field is non-authoritative, and will only manage the labels present in your configuration.
@@ -45,6 +49,8 @@ class TrustConfigArgs:
                Structure is documented below.
         """
         pulumi.set(__self__, "location", location)
+        if allowlisted_certificates is not None:
+            pulumi.set(__self__, "allowlisted_certificates", allowlisted_certificates)
         if description is not None:
             pulumi.set(__self__, "description", description)
         if labels is not None:
@@ -71,6 +77,20 @@ class TrustConfigArgs:
     def location(self, value: pulumi.Input[str]):
         pulumi.set(self, "location", value)
 
+    @property
+    @pulumi.getter(name="allowlistedCertificates")
+    def allowlisted_certificates(self) -> Optional[pulumi.Input[Sequence[pulumi.Input['TrustConfigAllowlistedCertificateArgs']]]]:
+        """
+        Allowlisted PEM-encoded certificates. A certificate matching an allowlisted certificate is always considered valid as long as
+        the certificate is parseable, proof of private key possession is established, and constraints on the certificate's SAN field are met.
+        Structure is documented below.
+        """
+        return pulumi.get(self, "allowlisted_certificates")
+
+    @allowlisted_certificates.setter
+    def allowlisted_certificates(self, value: Optional[pulumi.Input[Sequence[pulumi.Input['TrustConfigAllowlistedCertificateArgs']]]]):
+        pulumi.set(self, "allowlisted_certificates", value)
+
     @property
     @pulumi.getter
     def description(self) -> Optional[pulumi.Input[str]]:
@@ -140,6 +160,7 @@ class TrustConfigArgs:
 @pulumi.input_type
 class _TrustConfigState:
     def __init__(__self__, *,
+                 allowlisted_certificates: Optional[pulumi.Input[Sequence[pulumi.Input['TrustConfigAllowlistedCertificateArgs']]]] = None,
                  create_time: Optional[pulumi.Input[str]] = None,
                  description: Optional[pulumi.Input[str]] = None,
                  effective_labels: Optional[pulumi.Input[Mapping[str, pulumi.Input[str]]]] = None,
@@ -152,6 +173,9 @@ class _TrustConfigState:
                  update_time: Optional[pulumi.Input[str]] = None):
         """
         Input properties used for looking up and filtering TrustConfig resources.
+        :param pulumi.Input[Sequence[pulumi.Input['TrustConfigAllowlistedCertificateArgs']]] allowlisted_certificates: Allowlisted PEM-encoded certificates. A certificate matching an allowlisted certificate is always considered valid as long as
+               the certificate is parseable, proof of private key possession is established, and constraints on the certificate's SAN field are met.
+               Structure is documented below.
         :param pulumi.Input[str] create_time: The creation timestamp of a TrustConfig.
                A timestamp in RFC3339 UTC "Zulu" format, with nanosecond resolution and up to nine fractional digits.
                Examples: "2014-10-02T15:01:23Z" and "2014-10-02T15:01:23.045123456Z".
@@ -176,6 +200,8 @@ class _TrustConfigState:
                A timestamp in RFC3339 UTC "Zulu" format, with nanosecond resolution and up to nine fractional digits.
                Examples: "2014-10-02T15:01:23Z" and "2014-10-02T15:01:23.045123456Z".
         """
+        if allowlisted_certificates is not None:
+            pulumi.set(__self__, "allowlisted_certificates", allowlisted_certificates)
         if create_time is not None:
             pulumi.set(__self__, "create_time", create_time)
         if description is not None:
@@ -197,6 +223,20 @@ class _TrustConfigState:
         if update_time is not None:
             pulumi.set(__self__, "update_time", update_time)
 
+    @property
+    @pulumi.getter(name="allowlistedCertificates")
+    def allowlisted_certificates(self) -> Optional[pulumi.Input[Sequence[pulumi.Input['TrustConfigAllowlistedCertificateArgs']]]]:
+        """
+        Allowlisted PEM-encoded certificates. A certificate matching an allowlisted certificate is always considered valid as long as
+        the certificate is parseable, proof of private key possession is established, and constraints on the certificate's SAN field are met.
+        Structure is documented below.
+        """
+        return pulumi.get(self, "allowlisted_certificates")
+
+    @allowlisted_certificates.setter
+    def allowlisted_certificates(self, value: Optional[pulumi.Input[Sequence[pulumi.Input['TrustConfigAllowlistedCertificateArgs']]]]):
+        pulumi.set(self, "allowlisted_certificates", value)
+
     @property
     @pulumi.getter(name="createTime")
     def create_time(self) -> Optional[pulumi.Input[str]]:
@@ -336,6 +376,7 @@ class TrustConfig(pulumi.CustomResource):
     def __init__(__self__,
                  resource_name: str,
                  opts: Optional[pulumi.ResourceOptions] = None,
+                 allowlisted_certificates: Optional[pulumi.Input[Sequence[pulumi.Input[Union['TrustConfigAllowlistedCertificateArgs', 'TrustConfigAllowlistedCertificateArgsDict']]]]] = None,
                  description: Optional[pulumi.Input[str]] = None,
                  labels: Optional[pulumi.Input[Mapping[str, pulumi.Input[str]]]] = None,
                  location: Optional[pulumi.Input[str]] = None,
@@ -377,6 +418,29 @@ class TrustConfig(pulumi.CustomResource):
                 "foo": "bar",
             })
         ```
+        ### Certificate Manager Trust Config Allowlisted Certificates
+
+        ```python
+        import pulumi
+        import pulumi_gcp as gcp
+        import pulumi_std as std
+
+        default = gcp.certificatemanager.TrustConfig("default",
+            name="trust-config",
+            description="A sample trust config resource with allowlisted certificates",
+            location="global",
+            allowlisted_certificates=[
+                {
+                    "pemCertificate": std.file(input="test-fixtures/cert.pem").result,
+                },
+                {
+                    "pemCertificate": std.file(input="test-fixtures/cert2.pem").result,
+                },
+            ],
+            labels={
+                "foo": "bar",
+            })
+        ```
 
         ## Import
 
@@ -404,6 +468,9 @@ class TrustConfig(pulumi.CustomResource):
 
         :param str resource_name: The name of the resource.
         :param pulumi.ResourceOptions opts: Options for the resource.
+        :param pulumi.Input[Sequence[pulumi.Input[Union['TrustConfigAllowlistedCertificateArgs', 'TrustConfigAllowlistedCertificateArgsDict']]]] allowlisted_certificates: Allowlisted PEM-encoded certificates. A certificate matching an allowlisted certificate is always considered valid as long as
+               the certificate is parseable, proof of private key possession is established, and constraints on the certificate's SAN field are met.
+               Structure is documented below.
         :param pulumi.Input[str] description: One or more paragraphs of text description of a trust config.
         :param pulumi.Input[Mapping[str, pulumi.Input[str]]] labels: Set of label tags associated with the trust config.
                **Note**: This field is non-authoritative, and will only manage the labels present in your configuration.
@@ -459,6 +526,29 @@ class TrustConfig(pulumi.CustomResource):
                 "foo": "bar",
             })
         ```
+        ### Certificate Manager Trust Config Allowlisted Certificates
+
+        ```python
+        import pulumi
+        import pulumi_gcp as gcp
+        import pulumi_std as std
+
+        default = gcp.certificatemanager.TrustConfig("default",
+            name="trust-config",
+            description="A sample trust config resource with allowlisted certificates",
+            location="global",
+            allowlisted_certificates=[
+                {
+                    "pemCertificate": std.file(input="test-fixtures/cert.pem").result,
+                },
+                {
+                    "pemCertificate": std.file(input="test-fixtures/cert2.pem").result,
+                },
+            ],
+            labels={
+                "foo": "bar",
+            })
+        ```
 
         ## Import
 
@@ -499,6 +589,7 @@ class TrustConfig(pulumi.CustomResource):
     def _internal_init(__self__,
                  resource_name: str,
                  opts: Optional[pulumi.ResourceOptions] = None,
+                 allowlisted_certificates: Optional[pulumi.Input[Sequence[pulumi.Input[Union['TrustConfigAllowlistedCertificateArgs', 'TrustConfigAllowlistedCertificateArgsDict']]]]] = None,
                  description: Optional[pulumi.Input[str]] = None,
                  labels: Optional[pulumi.Input[Mapping[str, pulumi.Input[str]]]] = None,
                  location: Optional[pulumi.Input[str]] = None,
@@ -514,6 +605,7 @@ class TrustConfig(pulumi.CustomResource):
                 raise TypeError('__props__ is only valid when passed in combination with a valid opts.id to get an existing resource')
             __props__ = TrustConfigArgs.__new__(TrustConfigArgs)
 
+            __props__.__dict__["allowlisted_certificates"] = allowlisted_certificates
             __props__.__dict__["description"] = description
             __props__.__dict__["labels"] = labels
             if location is None and not opts.urn:
@@ -538,6 +630,7 @@ class TrustConfig(pulumi.CustomResource):
     def get(resource_name: str,
             id: pulumi.Input[str],
             opts: Optional[pulumi.ResourceOptions] = None,
+            allowlisted_certificates: Optional[pulumi.Input[Sequence[pulumi.Input[Union['TrustConfigAllowlistedCertificateArgs', 'TrustConfigAllowlistedCertificateArgsDict']]]]] = None,
             create_time: Optional[pulumi.Input[str]] = None,
             description: Optional[pulumi.Input[str]] = None,
             effective_labels: Optional[pulumi.Input[Mapping[str, pulumi.Input[str]]]] = None,
@@ -555,6 +648,9 @@ class TrustConfig(pulumi.CustomResource):
         :param str resource_name: The unique name of the resulting resource.
         :param pulumi.Input[str] id: The unique provider ID of the resource to lookup.
         :param pulumi.ResourceOptions opts: Options for the resource.
+        :param pulumi.Input[Sequence[pulumi.Input[Union['TrustConfigAllowlistedCertificateArgs', 'TrustConfigAllowlistedCertificateArgsDict']]]] allowlisted_certificates: Allowlisted PEM-encoded certificates. A certificate matching an allowlisted certificate is always considered valid as long as
+               the certificate is parseable, proof of private key possession is established, and constraints on the certificate's SAN field are met.
+               Structure is documented below.
         :param pulumi.Input[str] create_time: The creation timestamp of a TrustConfig.
                A timestamp in RFC3339 UTC "Zulu" format, with nanosecond resolution and up to nine fractional digits.
                Examples: "2014-10-02T15:01:23Z" and "2014-10-02T15:01:23.045123456Z".
@@ -583,6 +679,7 @@ class TrustConfig(pulumi.CustomResource):
 
         __props__ = _TrustConfigState.__new__(_TrustConfigState)
 
+        __props__.__dict__["allowlisted_certificates"] = allowlisted_certificates
         __props__.__dict__["create_time"] = create_time
         __props__.__dict__["description"] = description
         __props__.__dict__["effective_labels"] = effective_labels
@@ -595,6 +692,16 @@ class TrustConfig(pulumi.CustomResource):
         __props__.__dict__["update_time"] = update_time
         return TrustConfig(resource_name, opts=opts, __props__=__props__)
 
+    @property
+    @pulumi.getter(name="allowlistedCertificates")
+    def allowlisted_certificates(self) -> pulumi.Output[Optional[Sequence['outputs.TrustConfigAllowlistedCertificate']]]:
+        """
+        Allowlisted PEM-encoded certificates. A certificate matching an allowlisted certificate is always considered valid as long as
+        the certificate is parseable, proof of private key possession is established, and constraints on the certificate's SAN field are met.
+        Structure is documented below.
+        """
+        return pulumi.get(self, "allowlisted_certificates")
+
     @property
     @pulumi.getter(name="createTime")
     def create_time(self) -> pulumi.Output[str]:

pulumi_gcp/compute/_inputs.py

@@ -39654,8 +39654,7 @@ if not MYPY:
         """
         Time within the window to start the operations.
         It must be in an hourly format "HH:MM",
-        where HH : [00-23] and MM : [00] GMT.
-        eg: 21:00
+        where HH : [00-23] and MM : [00] GMT. eg: 21:00
         """
 elif False:
     ResourcePolicySnapshotSchedulePolicyScheduleHourlyScheduleArgsDict: TypeAlias = Mapping[str, Any]
@@ -39669,8 +39668,7 @@ class ResourcePolicySnapshotSchedulePolicyScheduleHourlyScheduleArgs:
         :param pulumi.Input[int] hours_in_cycle: The number of hours between snapshots.
         :param pulumi.Input[str] start_time: Time within the window to start the operations.
                It must be in an hourly format "HH:MM",
-               where HH : [00-23] and MM : [00] GMT.
-               eg: 21:00
+               where HH : [00-23] and MM : [00] GMT. eg: 21:00
         """
         pulumi.set(__self__, "hours_in_cycle", hours_in_cycle)
         pulumi.set(__self__, "start_time", start_time)
@@ -39693,8 +39691,7 @@ class ResourcePolicySnapshotSchedulePolicyScheduleHourlyScheduleArgs:
         """
         Time within the window to start the operations.
         It must be in an hourly format "HH:MM",
-        where HH : [00-23] and MM : [00] GMT.
-        eg: 21:00
+        where HH : [00-23] and MM : [00] GMT. eg: 21:00
         """
         return pulumi.get(self, "start_time")
 

pulumi_gcp/compute/ca_external_account_key.py

@@ -170,8 +170,8 @@ class CaExternalAccountKey(pulumi.CustomResource):
         * [API documentation](https://cloud.google.com/certificate-manager/docs/reference/public-ca/rest/v1/projects.locations.externalAccountKeys/create)
         * How-to Guides
             * [Official Documentation](https://cloud.google.com/certificate-manager/docs/public-ca)
-            * [Request EAB key ID and HMAC](https://cloud.google.com/certificate-manager/docs/public-ca-tutorial#request-key-hmac)
             * [Request Certificate Using Public CA](https://cloud.google.com/certificate-manager/docs/public-ca-tutorial)
+            * [Request EAB key ID and HMAC](https://cloud.google.com/certificate-manager/docs/public-ca-tutorial#request-key-hmac)
 
         > **Warning:** This resource is create-only and could not be read from the API.
         On delete, the resource would be removed from the state.
@@ -214,8 +214,8 @@ class CaExternalAccountKey(pulumi.CustomResource):
         * [API documentation](https://cloud.google.com/certificate-manager/docs/reference/public-ca/rest/v1/projects.locations.externalAccountKeys/create)
         * How-to Guides
             * [Official Documentation](https://cloud.google.com/certificate-manager/docs/public-ca)
-            * [Request EAB key ID and HMAC](https://cloud.google.com/certificate-manager/docs/public-ca-tutorial#request-key-hmac)
             * [Request Certificate Using Public CA](https://cloud.google.com/certificate-manager/docs/public-ca-tutorial)
+            * [Request EAB key ID and HMAC](https://cloud.google.com/certificate-manager/docs/public-ca-tutorial#request-key-hmac)
 
         > **Warning:** This resource is create-only and could not be read from the API.
         On delete, the resource would be removed from the state.

pulumi_gcp/compute/get_health_check.py

@@ -27,7 +27,7 @@ class GetHealthCheckResult:
     """
     A collection of values returned by getHealthCheck.
     """
-    def __init__(__self__, check_interval_sec=None, creation_timestamp=None, description=None, grpc_health_checks=None, healthy_threshold=None, http2_health_checks=None, http_health_checks=None, https_health_checks=None, id=None, log_configs=None, name=None, project=None, self_link=None, ssl_health_checks=None, tcp_health_checks=None, timeout_sec=None, type=None, unhealthy_threshold=None):
+    def __init__(__self__, check_interval_sec=None, creation_timestamp=None, description=None, grpc_health_checks=None, healthy_threshold=None, http2_health_checks=None, http_health_checks=None, https_health_checks=None, id=None, log_configs=None, name=None, project=None, self_link=None, source_regions=None, ssl_health_checks=None, tcp_health_checks=None, timeout_sec=None, type=None, unhealthy_threshold=None):
         if check_interval_sec and not isinstance(check_interval_sec, int):
             raise TypeError("Expected argument 'check_interval_sec' to be a int")
         pulumi.set(__self__, "check_interval_sec", check_interval_sec)
@@ -67,6 +67,9 @@ class GetHealthCheckResult:
         if self_link and not isinstance(self_link, str):
             raise TypeError("Expected argument 'self_link' to be a str")
         pulumi.set(__self__, "self_link", self_link)
+        if source_regions and not isinstance(source_regions, list):
+            raise TypeError("Expected argument 'source_regions' to be a list")
+        pulumi.set(__self__, "source_regions", source_regions)
         if ssl_health_checks and not isinstance(ssl_health_checks, list):
             raise TypeError("Expected argument 'ssl_health_checks' to be a list")
         pulumi.set(__self__, "ssl_health_checks", ssl_health_checks)
@@ -151,6 +154,11 @@ class GetHealthCheckResult:
     def self_link(self) -> str:
         return pulumi.get(self, "self_link")
 
+    @property
+    @pulumi.getter(name="sourceRegions")
+    def source_regions(self) -> Sequence[str]:
+        return pulumi.get(self, "source_regions")
+
     @property
     @pulumi.getter(name="sslHealthChecks")
     def ssl_health_checks(self) -> Sequence['outputs.GetHealthCheckSslHealthCheckResult']:
@@ -196,6 +204,7 @@ class AwaitableGetHealthCheckResult(GetHealthCheckResult):
             name=self.name,
             project=self.project,
             self_link=self.self_link,
+            source_regions=self.source_regions,
             ssl_health_checks=self.ssl_health_checks,
             tcp_health_checks=self.tcp_health_checks,
             timeout_sec=self.timeout_sec,
@@ -238,6 +247,7 @@ def get_health_check(name: Optional[str] = None,
         name=pulumi.get(__ret__, 'name'),
         project=pulumi.get(__ret__, 'project'),
         self_link=pulumi.get(__ret__, 'self_link'),
+        source_regions=pulumi.get(__ret__, 'source_regions'),
         ssl_health_checks=pulumi.get(__ret__, 'ssl_health_checks'),
         tcp_health_checks=pulumi.get(__ret__, 'tcp_health_checks'),
         timeout_sec=pulumi.get(__ret__, 'timeout_sec'),

pulumi_gcp/compute/global_address.py

@@ -270,6 +270,7 @@ class _GlobalAddressState:
                Possible values are: `EXTERNAL`, `INTERNAL`.
         :param pulumi.Input[str] creation_timestamp: Creation timestamp in RFC3339 text format.
         :param pulumi.Input[str] description: An optional description of this resource.
+        :param pulumi.Input[Mapping[str, pulumi.Input[str]]] effective_labels: All of labels (key/value pairs) present on the resource in GCP, including the labels configured through Pulumi, other clients and services.
         :param pulumi.Input[str] ip_version: The IP Version that will be used by this address. The default value is `IPV4`.
                Possible values are: `IPV4`, `IPV6`.
         :param pulumi.Input[str] label_fingerprint: The fingerprint used for optimistic locking of this resource. Used internally during updates.
@@ -297,7 +298,8 @@ class _GlobalAddressState:
                when purpose=PRIVATE_SERVICE_CONNECT
         :param pulumi.Input[str] project: The ID of the project in which the resource belongs.
                If it is not provided, the provider project is used.
-        :param pulumi.Input[Mapping[str, pulumi.Input[str]]] pulumi_labels: The combination of labels configured directly on the resource and default labels configured on the provider.
+        :param pulumi.Input[Mapping[str, pulumi.Input[str]]] pulumi_labels: The combination of labels configured directly on the resource
+               and default labels configured on the provider.
         :param pulumi.Input[str] purpose: The purpose of the resource. Possible values include:
                * VPC_PEERING - for peer networks
                * PRIVATE_SERVICE_CONNECT - for  Private Service Connect networks
@@ -391,6 +393,9 @@ class _GlobalAddressState:
     @property
     @pulumi.getter(name="effectiveLabels")
     def effective_labels(self) -> Optional[pulumi.Input[Mapping[str, pulumi.Input[str]]]]:
+        """
+        All of labels (key/value pairs) present on the resource in GCP, including the labels configured through Pulumi, other clients and services.
+        """
         return pulumi.get(self, "effective_labels")
 
     @effective_labels.setter
@@ -505,7 +510,8 @@ class _GlobalAddressState:
     @pulumi.getter(name="pulumiLabels")
     def pulumi_labels(self) -> Optional[pulumi.Input[Mapping[str, pulumi.Input[str]]]]:
         """
-        The combination of labels configured directly on the resource and default labels configured on the provider.
+        The combination of labels configured directly on the resource
+        and default labels configured on the provider.
         """
         return pulumi.get(self, "pulumi_labels")
 
@@ -818,6 +824,7 @@ class GlobalAddress(pulumi.CustomResource):
                Possible values are: `EXTERNAL`, `INTERNAL`.
         :param pulumi.Input[str] creation_timestamp: Creation timestamp in RFC3339 text format.
         :param pulumi.Input[str] description: An optional description of this resource.
+        :param pulumi.Input[Mapping[str, pulumi.Input[str]]] effective_labels: All of labels (key/value pairs) present on the resource in GCP, including the labels configured through Pulumi, other clients and services.
         :param pulumi.Input[str] ip_version: The IP Version that will be used by this address. The default value is `IPV4`.
                Possible values are: `IPV4`, `IPV6`.
         :param pulumi.Input[str] label_fingerprint: The fingerprint used for optimistic locking of this resource. Used internally during updates.
@@ -845,7 +852,8 @@ class GlobalAddress(pulumi.CustomResource):
                when purpose=PRIVATE_SERVICE_CONNECT
         :param pulumi.Input[str] project: The ID of the project in which the resource belongs.
                If it is not provided, the provider project is used.
-        :param pulumi.Input[Mapping[str, pulumi.Input[str]]] pulumi_labels: The combination of labels configured directly on the resource and default labels configured on the provider.
+        :param pulumi.Input[Mapping[str, pulumi.Input[str]]] pulumi_labels: The combination of labels configured directly on the resource
+               and default labels configured on the provider.
         :param pulumi.Input[str] purpose: The purpose of the resource. Possible values include:
                * VPC_PEERING - for peer networks
                * PRIVATE_SERVICE_CONNECT - for  Private Service Connect networks
@@ -913,6 +921,9 @@ class GlobalAddress(pulumi.CustomResource):
     @property
     @pulumi.getter(name="effectiveLabels")
     def effective_labels(self) -> pulumi.Output[Mapping[str, str]]:
+        """
+        All of labels (key/value pairs) present on the resource in GCP, including the labels configured through Pulumi, other clients and services.
+        """
         return pulumi.get(self, "effective_labels")
 
     @property
@@ -995,7 +1006,8 @@ class GlobalAddress(pulumi.CustomResource):
     @pulumi.getter(name="pulumiLabels")
     def pulumi_labels(self) -> pulumi.Output[Mapping[str, str]]:
         """
-        The combination of labels configured directly on the resource and default labels configured on the provider.
+        The combination of labels configured directly on the resource
+        and default labels configured on the provider.
         """
         return pulumi.get(self, "pulumi_labels")
 

pulumi_gcp/compute/global_forwarding_rule.py

@@ -1174,8 +1174,7 @@ class GlobalForwardingRule(pulumi.CustomResource):
         balancing. Global forwarding rules can only be used for HTTP load
         balancing.
 
-        For more information, see
-        https://cloud.google.com/compute/docs/load-balancing/http/
+        For more information, see https://cloud.google.com/compute/docs/load-balancing/http/
 
         ## Example Usage
 
@@ -1687,8 +1686,7 @@ class GlobalForwardingRule(pulumi.CustomResource):
         balancing. Global forwarding rules can only be used for HTTP load
         balancing.
 
-        For more information, see
-        https://cloud.google.com/compute/docs/load-balancing/http/
+        For more information, see https://cloud.google.com/compute/docs/load-balancing/http/
 
         ## Example Usage
 

pulumi_gcp/compute/health_check.py

@@ -31,6 +31,7 @@ class HealthCheckArgs:
                  log_config: Optional[pulumi.Input['HealthCheckLogConfigArgs']] = None,
                  name: Optional[pulumi.Input[str]] = None,
                  project: Optional[pulumi.Input[str]] = None,
+                 source_regions: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
                  ssl_health_check: Optional[pulumi.Input['HealthCheckSslHealthCheckArgs']] = None,
                  tcp_health_check: Optional[pulumi.Input['HealthCheckTcpHealthCheckArgs']] = None,
                  timeout_sec: Optional[pulumi.Input[int]] = None,
@@ -65,6 +66,18 @@ class HealthCheckArgs:
                - - -
         :param pulumi.Input[str] project: The ID of the project in which the resource belongs.
                If it is not provided, the provider project is used.
+        :param pulumi.Input[Sequence[pulumi.Input[str]]] source_regions: The list of cloud regions from which health checks are performed. If
+               any regions are specified, then exactly 3 regions should be specified.
+               The region names must be valid names of Google Cloud regions. This can
+               only be set for global health check. If this list is non-empty, then
+               there are restrictions on what other health check fields are supported
+               and what other resources can use this health check:
+               * SSL, HTTP2, and GRPC protocols are not supported.
+               * The TCP request field is not supported.
+               * The proxyHeader field for HTTP, HTTPS, and TCP is not supported.
+               * The checkIntervalSec field must be at least 30.
+               * The health check cannot be used with BackendService nor with managed
+               instance group auto-healing.
         :param pulumi.Input['HealthCheckSslHealthCheckArgs'] ssl_health_check: A nested object resource
                Structure is documented below.
         :param pulumi.Input['HealthCheckTcpHealthCheckArgs'] tcp_health_check: A nested object resource
@@ -95,6 +108,8 @@ class HealthCheckArgs:
             pulumi.set(__self__, "name", name)
         if project is not None:
             pulumi.set(__self__, "project", project)
+        if source_regions is not None:
+            pulumi.set(__self__, "source_regions", source_regions)
         if ssl_health_check is not None:
             pulumi.set(__self__, "ssl_health_check", ssl_health_check)
         if tcp_health_check is not None:
@@ -242,6 +257,29 @@ class HealthCheckArgs:
     def project(self, value: Optional[pulumi.Input[str]]):
         pulumi.set(self, "project", value)
 
+    @property
+    @pulumi.getter(name="sourceRegions")
+    def source_regions(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]:
+        """
+        The list of cloud regions from which health checks are performed. If
+        any regions are specified, then exactly 3 regions should be specified.
+        The region names must be valid names of Google Cloud regions. This can
+        only be set for global health check. If this list is non-empty, then
+        there are restrictions on what other health check fields are supported
+        and what other resources can use this health check:
+        * SSL, HTTP2, and GRPC protocols are not supported.
+        * The TCP request field is not supported.
+        * The proxyHeader field for HTTP, HTTPS, and TCP is not supported.
+        * The checkIntervalSec field must be at least 30.
+        * The health check cannot be used with BackendService nor with managed
+        instance group auto-healing.
+        """
+        return pulumi.get(self, "source_regions")
+
+    @source_regions.setter
+    def source_regions(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]):
+        pulumi.set(self, "source_regions", value)
+
     @property
     @pulumi.getter(name="sslHealthCheck")
     def ssl_health_check(self) -> Optional[pulumi.Input['HealthCheckSslHealthCheckArgs']]:
@@ -311,6 +349,7 @@ class _HealthCheckState:
                  name: Optional[pulumi.Input[str]] = None,
                  project: Optional[pulumi.Input[str]] = None,
                  self_link: Optional[pulumi.Input[str]] = None,
+                 source_regions: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
                  ssl_health_check: Optional[pulumi.Input['HealthCheckSslHealthCheckArgs']] = None,
                  tcp_health_check: Optional[pulumi.Input['HealthCheckTcpHealthCheckArgs']] = None,
                  timeout_sec: Optional[pulumi.Input[int]] = None,
@@ -348,6 +387,18 @@ class _HealthCheckState:
         :param pulumi.Input[str] project: The ID of the project in which the resource belongs.
                If it is not provided, the provider project is used.
         :param pulumi.Input[str] self_link: The URI of the created resource.
+        :param pulumi.Input[Sequence[pulumi.Input[str]]] source_regions: The list of cloud regions from which health checks are performed. If
+               any regions are specified, then exactly 3 regions should be specified.
+               The region names must be valid names of Google Cloud regions. This can
+               only be set for global health check. If this list is non-empty, then
+               there are restrictions on what other health check fields are supported
+               and what other resources can use this health check:
+               * SSL, HTTP2, and GRPC protocols are not supported.
+               * The TCP request field is not supported.
+               * The proxyHeader field for HTTP, HTTPS, and TCP is not supported.
+               * The checkIntervalSec field must be at least 30.
+               * The health check cannot be used with BackendService nor with managed
+               instance group auto-healing.
         :param pulumi.Input['HealthCheckSslHealthCheckArgs'] ssl_health_check: A nested object resource
                Structure is documented below.
         :param pulumi.Input['HealthCheckTcpHealthCheckArgs'] tcp_health_check: A nested object resource
@@ -383,6 +434,8 @@ class _HealthCheckState:
             pulumi.set(__self__, "project", project)
         if self_link is not None:
             pulumi.set(__self__, "self_link", self_link)
+        if source_regions is not None:
+            pulumi.set(__self__, "source_regions", source_regions)
         if ssl_health_check is not None:
             pulumi.set(__self__, "ssl_health_check", ssl_health_check)
         if tcp_health_check is not None:
@@ -556,6 +609,29 @@ class _HealthCheckState:
     def self_link(self, value: Optional[pulumi.Input[str]]):
         pulumi.set(self, "self_link", value)
 
+    @property
+    @pulumi.getter(name="sourceRegions")
+    def source_regions(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]:
+        """
+        The list of cloud regions from which health checks are performed. If
+        any regions are specified, then exactly 3 regions should be specified.
+        The region names must be valid names of Google Cloud regions. This can
+        only be set for global health check. If this list is non-empty, then
+        there are restrictions on what other health check fields are supported
+        and what other resources can use this health check:
+        * SSL, HTTP2, and GRPC protocols are not supported.
+        * The TCP request field is not supported.
+        * The proxyHeader field for HTTP, HTTPS, and TCP is not supported.
+        * The checkIntervalSec field must be at least 30.
+        * The health check cannot be used with BackendService nor with managed
+        instance group auto-healing.
+        """
+        return pulumi.get(self, "source_regions")
+
+    @source_regions.setter
+    def source_regions(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]):
+        pulumi.set(self, "source_regions", value)
+
     @property
     @pulumi.getter(name="sslHealthCheck")
     def ssl_health_check(self) -> Optional[pulumi.Input['HealthCheckSslHealthCheckArgs']]:
@@ -637,6 +713,7 @@ class HealthCheck(pulumi.CustomResource):
                  log_config: Optional[pulumi.Input[Union['HealthCheckLogConfigArgs', 'HealthCheckLogConfigArgsDict']]] = None,
                  name: Optional[pulumi.Input[str]] = None,
                  project: Optional[pulumi.Input[str]] = None,
+                 source_regions: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
                  ssl_health_check: Optional[pulumi.Input[Union['HealthCheckSslHealthCheckArgs', 'HealthCheckSslHealthCheckArgsDict']]] = None,
                  tcp_health_check: Optional[pulumi.Input[Union['HealthCheckTcpHealthCheckArgs', 'HealthCheckTcpHealthCheckArgsDict']]] = None,
                  timeout_sec: Optional[pulumi.Input[int]] = None,
@@ -947,6 +1024,18 @@ class HealthCheck(pulumi.CustomResource):
                - - -
         :param pulumi.Input[str] project: The ID of the project in which the resource belongs.
                If it is not provided, the provider project is used.
+        :param pulumi.Input[Sequence[pulumi.Input[str]]] source_regions: The list of cloud regions from which health checks are performed. If
+               any regions are specified, then exactly 3 regions should be specified.
+               The region names must be valid names of Google Cloud regions. This can
+               only be set for global health check. If this list is non-empty, then
+               there are restrictions on what other health check fields are supported
+               and what other resources can use this health check:
+               * SSL, HTTP2, and GRPC protocols are not supported.
+               * The TCP request field is not supported.
+               * The proxyHeader field for HTTP, HTTPS, and TCP is not supported.
+               * The checkIntervalSec field must be at least 30.
+               * The health check cannot be used with BackendService nor with managed
+               instance group auto-healing.
         :param pulumi.Input[Union['HealthCheckSslHealthCheckArgs', 'HealthCheckSslHealthCheckArgsDict']] ssl_health_check: A nested object resource
                Structure is documented below.
         :param pulumi.Input[Union['HealthCheckTcpHealthCheckArgs', 'HealthCheckTcpHealthCheckArgsDict']] tcp_health_check: A nested object resource
@@ -1263,6 +1352,7 @@ class HealthCheck(pulumi.CustomResource):
                  log_config: Optional[pulumi.Input[Union['HealthCheckLogConfigArgs', 'HealthCheckLogConfigArgsDict']]] = None,
                  name: Optional[pulumi.Input[str]] = None,
                  project: Optional[pulumi.Input[str]] = None,
+                 source_regions: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
                  ssl_health_check: Optional[pulumi.Input[Union['HealthCheckSslHealthCheckArgs', 'HealthCheckSslHealthCheckArgsDict']]] = None,
                  tcp_health_check: Optional[pulumi.Input[Union['HealthCheckTcpHealthCheckArgs', 'HealthCheckTcpHealthCheckArgsDict']]] = None,
                  timeout_sec: Optional[pulumi.Input[int]] = None,
@@ -1286,6 +1376,7 @@ class HealthCheck(pulumi.CustomResource):
             __props__.__dict__["log_config"] = log_config
             __props__.__dict__["name"] = name
             __props__.__dict__["project"] = project
+            __props__.__dict__["source_regions"] = source_regions
             __props__.__dict__["ssl_health_check"] = ssl_health_check
             __props__.__dict__["tcp_health_check"] = tcp_health_check
             __props__.__dict__["timeout_sec"] = timeout_sec
@@ -1315,6 +1406,7 @@ class HealthCheck(pulumi.CustomResource):
             name: Optional[pulumi.Input[str]] = None,
             project: Optional[pulumi.Input[str]] = None,
             self_link: Optional[pulumi.Input[str]] = None,
+            source_regions: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
             ssl_health_check: Optional[pulumi.Input[Union['HealthCheckSslHealthCheckArgs', 'HealthCheckSslHealthCheckArgsDict']]] = None,
             tcp_health_check: Optional[pulumi.Input[Union['HealthCheckTcpHealthCheckArgs', 'HealthCheckTcpHealthCheckArgsDict']]] = None,
             timeout_sec: Optional[pulumi.Input[int]] = None,
@@ -1357,6 +1449,18 @@ class HealthCheck(pulumi.CustomResource):
         :param pulumi.Input[str] project: The ID of the project in which the resource belongs.
                If it is not provided, the provider project is used.
         :param pulumi.Input[str] self_link: The URI of the created resource.
+        :param pulumi.Input[Sequence[pulumi.Input[str]]] source_regions: The list of cloud regions from which health checks are performed. If
+               any regions are specified, then exactly 3 regions should be specified.
+               The region names must be valid names of Google Cloud regions. This can
+               only be set for global health check. If this list is non-empty, then
+               there are restrictions on what other health check fields are supported
+               and what other resources can use this health check:
+               * SSL, HTTP2, and GRPC protocols are not supported.
+               * The TCP request field is not supported.
+               * The proxyHeader field for HTTP, HTTPS, and TCP is not supported.
+               * The checkIntervalSec field must be at least 30.
+               * The health check cannot be used with BackendService nor with managed
+               instance group auto-healing.
         :param pulumi.Input[Union['HealthCheckSslHealthCheckArgs', 'HealthCheckSslHealthCheckArgsDict']] ssl_health_check: A nested object resource
                Structure is documented below.
         :param pulumi.Input[Union['HealthCheckTcpHealthCheckArgs', 'HealthCheckTcpHealthCheckArgsDict']] tcp_health_check: A nested object resource
@@ -1384,6 +1488,7 @@ class HealthCheck(pulumi.CustomResource):
         __props__.__dict__["name"] = name
         __props__.__dict__["project"] = project
         __props__.__dict__["self_link"] = self_link
+        __props__.__dict__["source_regions"] = source_regions
         __props__.__dict__["ssl_health_check"] = ssl_health_check
         __props__.__dict__["tcp_health_check"] = tcp_health_check
         __props__.__dict__["timeout_sec"] = timeout_sec
@@ -1505,6 +1610,25 @@ class HealthCheck(pulumi.CustomResource):
         """
         return pulumi.get(self, "self_link")
 
+    @property
+    @pulumi.getter(name="sourceRegions")
+    def source_regions(self) -> pulumi.Output[Optional[Sequence[str]]]:
+        """
+        The list of cloud regions from which health checks are performed. If
+        any regions are specified, then exactly 3 regions should be specified.
+        The region names must be valid names of Google Cloud regions. This can
+        only be set for global health check. If this list is non-empty, then
+        there are restrictions on what other health check fields are supported
+        and what other resources can use this health check:
+        * SSL, HTTP2, and GRPC protocols are not supported.
+        * The TCP request field is not supported.
+        * The proxyHeader field for HTTP, HTTPS, and TCP is not supported.
+        * The checkIntervalSec field must be at least 30.
+        * The health check cannot be used with BackendService nor with managed
+        instance group auto-healing.
+        """
+        return pulumi.get(self, "source_regions")
+
     @property
     @pulumi.getter(name="sslHealthCheck")
     def ssl_health_check(self) -> pulumi.Output[Optional['outputs.HealthCheckSslHealthCheck']]: