pulumi-gcp 7.35.0a1722924350__py3-none-any.whl → 7.36.0__py3-none-any.whl

pulumi_gcp/organizations/iam_policy.py

@@ -285,53 +285,6 @@ class IAMPolicy(pulumi.CustomResource):
             ])
         ```
 
-        ## organizations.IAMPolicy
-
-        !> **Warning:** New organizations have several default policies which will,
-           without extreme caution, be **overwritten** by use of this resource.
-           The safest alternative is to use multiple `organizations.IAMBinding`
-           resources. This resource makes it easy to remove your own access to
-           an organization, which will require a call to Google Support to have
-           fixed, and can take multiple days to resolve.
-
-           In general, this resource should only be used with organizations
-           fully managed by this provider.I f you do use this resource,
-           the best way to be sure that you are not making dangerous changes is to start
-           by **importing** your existing policy, and examining the diff very closely.
-
-        ```python
-        import pulumi
-        import pulumi_gcp as gcp
-
-        admin = gcp.organizations.get_iam_policy(bindings=[{
-            "role": "roles/editor",
-            "members": ["user:jane@example.com"],
-        }])
-        organization = gcp.organizations.IAMPolicy("organization",
-            org_id="1234567890",
-            policy_data=admin.policy_data)
-        ```
-
-        With IAM Conditions:
-
-        ```python
-        import pulumi
-        import pulumi_gcp as gcp
-
-        admin = gcp.organizations.get_iam_policy(bindings=[{
-            "role": "roles/editor",
-            "members": ["user:jane@example.com"],
-            "condition": {
-                "title": "expires_after_2019_12_31",
-                "description": "Expiring at midnight of 2019-12-31",
-                "expression": "request.time < timestamp(\\"2020-01-01T00:00:00Z\\")",
-            },
-        }])
-        organization = gcp.organizations.IAMPolicy("organization",
-            org_id="1234567890",
-            policy_data=admin.policy_data)
-        ```
-
         ## organizations.IAMBinding
 
         > **Note:** If `role` is set to `roles/owner` and you don't specify a user or service account you have access to in `members`, you can lock yourself out of your organization.
@@ -595,53 +548,6 @@ class IAMPolicy(pulumi.CustomResource):
             ])
         ```
 
-        ## organizations.IAMPolicy
-
-        !> **Warning:** New organizations have several default policies which will,
-           without extreme caution, be **overwritten** by use of this resource.
-           The safest alternative is to use multiple `organizations.IAMBinding`
-           resources. This resource makes it easy to remove your own access to
-           an organization, which will require a call to Google Support to have
-           fixed, and can take multiple days to resolve.
-
-           In general, this resource should only be used with organizations
-           fully managed by this provider.I f you do use this resource,
-           the best way to be sure that you are not making dangerous changes is to start
-           by **importing** your existing policy, and examining the diff very closely.
-
-        ```python
-        import pulumi
-        import pulumi_gcp as gcp
-
-        admin = gcp.organizations.get_iam_policy(bindings=[{
-            "role": "roles/editor",
-            "members": ["user:jane@example.com"],
-        }])
-        organization = gcp.organizations.IAMPolicy("organization",
-            org_id="1234567890",
-            policy_data=admin.policy_data)
-        ```
-
-        With IAM Conditions:
-
-        ```python
-        import pulumi
-        import pulumi_gcp as gcp
-
-        admin = gcp.organizations.get_iam_policy(bindings=[{
-            "role": "roles/editor",
-            "members": ["user:jane@example.com"],
-            "condition": {
-                "title": "expires_after_2019_12_31",
-                "description": "Expiring at midnight of 2019-12-31",
-                "expression": "request.time < timestamp(\\"2020-01-01T00:00:00Z\\")",
-            },
-        }])
-        organization = gcp.organizations.IAMPolicy("organization",
-            org_id="1234567890",
-            policy_data=admin.policy_data)
-        ```
-
         ## organizations.IAMBinding
 
         > **Note:** If `role` is set to `roles/owner` and you don't specify a user or service account you have access to in `members`, you can lock yourself out of your organization.

pulumi_gcp/organizations/project.py

@@ -54,7 +54,7 @@ class ProjectArgs:
                organization.
         :param pulumi.Input[str] project_id: The project ID. Changing this forces a new project to be created.
         :param pulumi.Input[bool] skip_delete: If true, the resource can be deleted
-               without deleting the Project via the Google API.
+               without deleting the Project via the Google API. `skip_delete` is deprecated and will be removed in a future major release. The new release adds support for `deletion_policy` instead.
         """
         if auto_create_network is not None:
             pulumi.set(__self__, "auto_create_network", auto_create_network)
@@ -70,6 +70,9 @@ class ProjectArgs:
             pulumi.set(__self__, "org_id", org_id)
         if project_id is not None:
             pulumi.set(__self__, "project_id", project_id)
+        if skip_delete is not None:
+            warnings.warn("""skip_delete is deprecated and will be removed in a future major release. The new release adds support for deletion_policy instead.""", DeprecationWarning)
+            pulumi.log.warn("""skip_delete is deprecated: skip_delete is deprecated and will be removed in a future major release. The new release adds support for deletion_policy instead.""")
         if skip_delete is not None:
             pulumi.set(__self__, "skip_delete", skip_delete)
 
@@ -176,10 +179,11 @@ class ProjectArgs:
 
     @property
     @pulumi.getter(name="skipDelete")
+    @_utilities.deprecated("""skip_delete is deprecated and will be removed in a future major release. The new release adds support for deletion_policy instead.""")
     def skip_delete(self) -> Optional[pulumi.Input[bool]]:
         """
         If true, the resource can be deleted
-        without deleting the Project via the Google API.
+        without deleting the Project via the Google API. `skip_delete` is deprecated and will be removed in a future major release. The new release adds support for `deletion_policy` instead.
         """
         return pulumi.get(self, "skip_delete")
 
@@ -232,7 +236,7 @@ class _ProjectState:
         :param pulumi.Input[str] project_id: The project ID. Changing this forces a new project to be created.
         :param pulumi.Input[Mapping[str, pulumi.Input[str]]] pulumi_labels: The combination of labels configured directly on the resource and default labels configured on the provider.
         :param pulumi.Input[bool] skip_delete: If true, the resource can be deleted
-               without deleting the Project via the Google API.
+               without deleting the Project via the Google API. `skip_delete` is deprecated and will be removed in a future major release. The new release adds support for `deletion_policy` instead.
         """
         if auto_create_network is not None:
             pulumi.set(__self__, "auto_create_network", auto_create_network)
@@ -254,6 +258,9 @@ class _ProjectState:
             pulumi.set(__self__, "project_id", project_id)
         if pulumi_labels is not None:
             pulumi.set(__self__, "pulumi_labels", pulumi_labels)
+        if skip_delete is not None:
+            warnings.warn("""skip_delete is deprecated and will be removed in a future major release. The new release adds support for deletion_policy instead.""", DeprecationWarning)
+            pulumi.log.warn("""skip_delete is deprecated: skip_delete is deprecated and will be removed in a future major release. The new release adds support for deletion_policy instead.""")
         if skip_delete is not None:
             pulumi.set(__self__, "skip_delete", skip_delete)
 
@@ -396,10 +403,11 @@ class _ProjectState:
 
     @property
     @pulumi.getter(name="skipDelete")
+    @_utilities.deprecated("""skip_delete is deprecated and will be removed in a future major release. The new release adds support for deletion_policy instead.""")
     def skip_delete(self) -> Optional[pulumi.Input[bool]]:
         """
         If true, the resource can be deleted
-        without deleting the Project via the Google API.
+        without deleting the Project via the Google API. `skip_delete` is deprecated and will be removed in a future major release. The new release adds support for `deletion_policy` instead.
         """
         return pulumi.get(self, "skip_delete")
 
@@ -507,7 +515,7 @@ class Project(pulumi.CustomResource):
                organization.
         :param pulumi.Input[str] project_id: The project ID. Changing this forces a new project to be created.
         :param pulumi.Input[bool] skip_delete: If true, the resource can be deleted
-               without deleting the Project via the Google API.
+               without deleting the Project via the Google API. `skip_delete` is deprecated and will be removed in a future major release. The new release adds support for `deletion_policy` instead.
         """
         ...
     @overload
@@ -674,7 +682,7 @@ class Project(pulumi.CustomResource):
         :param pulumi.Input[str] project_id: The project ID. Changing this forces a new project to be created.
         :param pulumi.Input[Mapping[str, pulumi.Input[str]]] pulumi_labels: The combination of labels configured directly on the resource and default labels configured on the provider.
         :param pulumi.Input[bool] skip_delete: If true, the resource can be deleted
-               without deleting the Project via the Google API.
+               without deleting the Project via the Google API. `skip_delete` is deprecated and will be removed in a future major release. The new release adds support for `deletion_policy` instead.
         """
         opts = pulumi.ResourceOptions.merge(opts, pulumi.ResourceOptions(id=id))
 
@@ -792,10 +800,11 @@ class Project(pulumi.CustomResource):
 
     @property
     @pulumi.getter(name="skipDelete")
+    @_utilities.deprecated("""skip_delete is deprecated and will be removed in a future major release. The new release adds support for deletion_policy instead.""")
     def skip_delete(self) -> pulumi.Output[bool]:
         """
         If true, the resource can be deleted
-        without deleting the Project via the Google API.
+        without deleting the Project via the Google API. `skip_delete` is deprecated and will be removed in a future major release. The new release adds support for `deletion_policy` instead.
         """
         return pulumi.get(self, "skip_delete")
 

pulumi_gcp/pubsub/schema_iam_binding.py

@@ -319,6 +319,25 @@ class SchemaIamBinding(pulumi.CustomResource):
             member="user:jane@example.com")
         ```
 
+        ## This resource supports User Project Overrides.
+
+        - 
+
+        # IAM policy for Cloud Pub/Sub Schema
+        Three different resources help you manage your IAM policy for Cloud Pub/Sub Schema. Each of these resources serves a different use case:
+
+        * `pubsub.SchemaIamPolicy`: Authoritative. Sets the IAM policy for the schema and replaces any existing policy already attached.
+        * `pubsub.SchemaIamBinding`: Authoritative for a given role. Updates the IAM policy to grant a role to a list of members. Other roles within the IAM policy for the schema are preserved.
+        * `pubsub.SchemaIamMember`: Non-authoritative. Updates the IAM policy to grant a role to a new member. Other members for the role for the schema are preserved.
+
+        A data source can be used to retrieve policy data in advent you do not need creation
+
+        * `pubsub.SchemaIamPolicy`: Retrieves the IAM policy for the schema
+
+        > **Note:** `pubsub.SchemaIamPolicy` **cannot** be used in conjunction with `pubsub.SchemaIamBinding` and `pubsub.SchemaIamMember` or they will fight over what your policy should be.
+
+        > **Note:** `pubsub.SchemaIamBinding` resources **can be** used in conjunction with `pubsub.SchemaIamMember` resources **only if** they do not grant privilege to the same role.
+
         ## pubsub.SchemaIamPolicy
 
         ```python
@@ -480,6 +499,25 @@ class SchemaIamBinding(pulumi.CustomResource):
             member="user:jane@example.com")
         ```
 
+        ## This resource supports User Project Overrides.
+
+        - 
+
+        # IAM policy for Cloud Pub/Sub Schema
+        Three different resources help you manage your IAM policy for Cloud Pub/Sub Schema. Each of these resources serves a different use case:
+
+        * `pubsub.SchemaIamPolicy`: Authoritative. Sets the IAM policy for the schema and replaces any existing policy already attached.
+        * `pubsub.SchemaIamBinding`: Authoritative for a given role. Updates the IAM policy to grant a role to a list of members. Other roles within the IAM policy for the schema are preserved.
+        * `pubsub.SchemaIamMember`: Non-authoritative. Updates the IAM policy to grant a role to a new member. Other members for the role for the schema are preserved.
+
+        A data source can be used to retrieve policy data in advent you do not need creation
+
+        * `pubsub.SchemaIamPolicy`: Retrieves the IAM policy for the schema
+
+        > **Note:** `pubsub.SchemaIamPolicy` **cannot** be used in conjunction with `pubsub.SchemaIamBinding` and `pubsub.SchemaIamMember` or they will fight over what your policy should be.
+
+        > **Note:** `pubsub.SchemaIamBinding` resources **can be** used in conjunction with `pubsub.SchemaIamMember` resources **only if** they do not grant privilege to the same role.
+
         ## pubsub.SchemaIamPolicy
 
         ```python

pulumi_gcp/pubsub/schema_iam_member.py

@@ -319,6 +319,25 @@ class SchemaIamMember(pulumi.CustomResource):
             member="user:jane@example.com")
         ```
 
+        ## This resource supports User Project Overrides.
+
+        - 
+
+        # IAM policy for Cloud Pub/Sub Schema
+        Three different resources help you manage your IAM policy for Cloud Pub/Sub Schema. Each of these resources serves a different use case:
+
+        * `pubsub.SchemaIamPolicy`: Authoritative. Sets the IAM policy for the schema and replaces any existing policy already attached.
+        * `pubsub.SchemaIamBinding`: Authoritative for a given role. Updates the IAM policy to grant a role to a list of members. Other roles within the IAM policy for the schema are preserved.
+        * `pubsub.SchemaIamMember`: Non-authoritative. Updates the IAM policy to grant a role to a new member. Other members for the role for the schema are preserved.
+
+        A data source can be used to retrieve policy data in advent you do not need creation
+
+        * `pubsub.SchemaIamPolicy`: Retrieves the IAM policy for the schema
+
+        > **Note:** `pubsub.SchemaIamPolicy` **cannot** be used in conjunction with `pubsub.SchemaIamBinding` and `pubsub.SchemaIamMember` or they will fight over what your policy should be.
+
+        > **Note:** `pubsub.SchemaIamBinding` resources **can be** used in conjunction with `pubsub.SchemaIamMember` resources **only if** they do not grant privilege to the same role.
+
         ## pubsub.SchemaIamPolicy
 
         ```python
@@ -480,6 +499,25 @@ class SchemaIamMember(pulumi.CustomResource):
             member="user:jane@example.com")
         ```
 
+        ## This resource supports User Project Overrides.
+
+        - 
+
+        # IAM policy for Cloud Pub/Sub Schema
+        Three different resources help you manage your IAM policy for Cloud Pub/Sub Schema. Each of these resources serves a different use case:
+
+        * `pubsub.SchemaIamPolicy`: Authoritative. Sets the IAM policy for the schema and replaces any existing policy already attached.
+        * `pubsub.SchemaIamBinding`: Authoritative for a given role. Updates the IAM policy to grant a role to a list of members. Other roles within the IAM policy for the schema are preserved.
+        * `pubsub.SchemaIamMember`: Non-authoritative. Updates the IAM policy to grant a role to a new member. Other members for the role for the schema are preserved.
+
+        A data source can be used to retrieve policy data in advent you do not need creation
+
+        * `pubsub.SchemaIamPolicy`: Retrieves the IAM policy for the schema
+
+        > **Note:** `pubsub.SchemaIamPolicy` **cannot** be used in conjunction with `pubsub.SchemaIamBinding` and `pubsub.SchemaIamMember` or they will fight over what your policy should be.
+
+        > **Note:** `pubsub.SchemaIamBinding` resources **can be** used in conjunction with `pubsub.SchemaIamMember` resources **only if** they do not grant privilege to the same role.
+
         ## pubsub.SchemaIamPolicy
 
         ```python

pulumi_gcp/pubsub/schema_iam_policy.py

@@ -216,6 +216,25 @@ class SchemaIamPolicy(pulumi.CustomResource):
             member="user:jane@example.com")
         ```
 
+        ## This resource supports User Project Overrides.
+
+        - 
+
+        # IAM policy for Cloud Pub/Sub Schema
+        Three different resources help you manage your IAM policy for Cloud Pub/Sub Schema. Each of these resources serves a different use case:
+
+        * `pubsub.SchemaIamPolicy`: Authoritative. Sets the IAM policy for the schema and replaces any existing policy already attached.
+        * `pubsub.SchemaIamBinding`: Authoritative for a given role. Updates the IAM policy to grant a role to a list of members. Other roles within the IAM policy for the schema are preserved.
+        * `pubsub.SchemaIamMember`: Non-authoritative. Updates the IAM policy to grant a role to a new member. Other members for the role for the schema are preserved.
+
+        A data source can be used to retrieve policy data in advent you do not need creation
+
+        * `pubsub.SchemaIamPolicy`: Retrieves the IAM policy for the schema
+
+        > **Note:** `pubsub.SchemaIamPolicy` **cannot** be used in conjunction with `pubsub.SchemaIamBinding` and `pubsub.SchemaIamMember` or they will fight over what your policy should be.
+
+        > **Note:** `pubsub.SchemaIamBinding` resources **can be** used in conjunction with `pubsub.SchemaIamMember` resources **only if** they do not grant privilege to the same role.
+
         ## pubsub.SchemaIamPolicy
 
         ```python
@@ -365,6 +384,25 @@ class SchemaIamPolicy(pulumi.CustomResource):
             member="user:jane@example.com")
         ```
 
+        ## This resource supports User Project Overrides.
+
+        - 
+
+        # IAM policy for Cloud Pub/Sub Schema
+        Three different resources help you manage your IAM policy for Cloud Pub/Sub Schema. Each of these resources serves a different use case:
+
+        * `pubsub.SchemaIamPolicy`: Authoritative. Sets the IAM policy for the schema and replaces any existing policy already attached.
+        * `pubsub.SchemaIamBinding`: Authoritative for a given role. Updates the IAM policy to grant a role to a list of members. Other roles within the IAM policy for the schema are preserved.
+        * `pubsub.SchemaIamMember`: Non-authoritative. Updates the IAM policy to grant a role to a new member. Other members for the role for the schema are preserved.
+
+        A data source can be used to retrieve policy data in advent you do not need creation
+
+        * `pubsub.SchemaIamPolicy`: Retrieves the IAM policy for the schema
+
+        > **Note:** `pubsub.SchemaIamPolicy` **cannot** be used in conjunction with `pubsub.SchemaIamBinding` and `pubsub.SchemaIamMember` or they will fight over what your policy should be.
+
+        > **Note:** `pubsub.SchemaIamBinding` resources **can be** used in conjunction with `pubsub.SchemaIamMember` resources **only if** they do not grant privilege to the same role.
+
         ## pubsub.SchemaIamPolicy
 
         ```python

pulumi_gcp/pubsub/subscription_iam_binding.py

@@ -300,21 +300,6 @@ class SubscriptionIAMBinding(pulumi.CustomResource):
             member="user:jane@example.com")
         ```
 
-        ## pubsub.SubscriptionIAMPolicy
-
-        ```python
-        import pulumi
-        import pulumi_gcp as gcp
-
-        admin = gcp.organizations.get_iam_policy(bindings=[{
-            "role": "roles/editor",
-            "members": ["user:jane@example.com"],
-        }])
-        editor = gcp.pubsub.SubscriptionIAMPolicy("editor",
-            subscription="your-subscription-name",
-            policy_data=admin.policy_data)
-        ```
-
         ## pubsub.SubscriptionIAMBinding
 
         ```python
@@ -438,21 +423,6 @@ class SubscriptionIAMBinding(pulumi.CustomResource):
             member="user:jane@example.com")
         ```
 
-        ## pubsub.SubscriptionIAMPolicy
-
-        ```python
-        import pulumi
-        import pulumi_gcp as gcp
-
-        admin = gcp.organizations.get_iam_policy(bindings=[{
-            "role": "roles/editor",
-            "members": ["user:jane@example.com"],
-        }])
-        editor = gcp.pubsub.SubscriptionIAMPolicy("editor",
-            subscription="your-subscription-name",
-            policy_data=admin.policy_data)
-        ```
-
         ## pubsub.SubscriptionIAMBinding
 
         ```python

pulumi_gcp/pubsub/subscription_iam_member.py

@@ -300,21 +300,6 @@ class SubscriptionIAMMember(pulumi.CustomResource):
             member="user:jane@example.com")
         ```
 
-        ## pubsub.SubscriptionIAMPolicy
-
-        ```python
-        import pulumi
-        import pulumi_gcp as gcp
-
-        admin = gcp.organizations.get_iam_policy(bindings=[{
-            "role": "roles/editor",
-            "members": ["user:jane@example.com"],
-        }])
-        editor = gcp.pubsub.SubscriptionIAMPolicy("editor",
-            subscription="your-subscription-name",
-            policy_data=admin.policy_data)
-        ```
-
         ## pubsub.SubscriptionIAMBinding
 
         ```python
@@ -438,21 +423,6 @@ class SubscriptionIAMMember(pulumi.CustomResource):
             member="user:jane@example.com")
         ```
 
-        ## pubsub.SubscriptionIAMPolicy
-
-        ```python
-        import pulumi
-        import pulumi_gcp as gcp
-
-        admin = gcp.organizations.get_iam_policy(bindings=[{
-            "role": "roles/editor",
-            "members": ["user:jane@example.com"],
-        }])
-        editor = gcp.pubsub.SubscriptionIAMPolicy("editor",
-            subscription="your-subscription-name",
-            policy_data=admin.policy_data)
-        ```
-
         ## pubsub.SubscriptionIAMBinding
 
         ```python

pulumi_gcp/pubsub/subscription_iam_policy.py

@@ -217,21 +217,6 @@ class SubscriptionIAMPolicy(pulumi.CustomResource):
             member="user:jane@example.com")
         ```
 
-        ## pubsub.SubscriptionIAMPolicy
-
-        ```python
-        import pulumi
-        import pulumi_gcp as gcp
-
-        admin = gcp.organizations.get_iam_policy(bindings=[{
-            "role": "roles/editor",
-            "members": ["user:jane@example.com"],
-        }])
-        editor = gcp.pubsub.SubscriptionIAMPolicy("editor",
-            subscription="your-subscription-name",
-            policy_data=admin.policy_data)
-        ```
-
         ## pubsub.SubscriptionIAMBinding
 
         ```python
@@ -348,21 +333,6 @@ class SubscriptionIAMPolicy(pulumi.CustomResource):
             member="user:jane@example.com")
         ```
 
-        ## pubsub.SubscriptionIAMPolicy
-
-        ```python
-        import pulumi
-        import pulumi_gcp as gcp
-
-        admin = gcp.organizations.get_iam_policy(bindings=[{
-            "role": "roles/editor",
-            "members": ["user:jane@example.com"],
-        }])
-        editor = gcp.pubsub.SubscriptionIAMPolicy("editor",
-            subscription="your-subscription-name",
-            policy_data=admin.policy_data)
-        ```
-
         ## pubsub.SubscriptionIAMBinding
 
         ```python

pulumi_gcp/pubsub/topic_iam_binding.py

@@ -319,6 +319,25 @@ class TopicIAMBinding(pulumi.CustomResource):
             member="user:jane@example.com")
         ```
 
+        ## This resource supports User Project Overrides.
+
+        - 
+
+        # IAM policy for Cloud Pub/Sub Topic
+        Three different resources help you manage your IAM policy for Cloud Pub/Sub Topic. Each of these resources serves a different use case:
+
+        * `pubsub.TopicIAMPolicy`: Authoritative. Sets the IAM policy for the topic and replaces any existing policy already attached.
+        * `pubsub.TopicIAMBinding`: Authoritative for a given role. Updates the IAM policy to grant a role to a list of members. Other roles within the IAM policy for the topic are preserved.
+        * `pubsub.TopicIAMMember`: Non-authoritative. Updates the IAM policy to grant a role to a new member. Other members for the role for the topic are preserved.
+
+        A data source can be used to retrieve policy data in advent you do not need creation
+
+        * `pubsub.TopicIAMPolicy`: Retrieves the IAM policy for the topic
+
+        > **Note:** `pubsub.TopicIAMPolicy` **cannot** be used in conjunction with `pubsub.TopicIAMBinding` and `pubsub.TopicIAMMember` or they will fight over what your policy should be.
+
+        > **Note:** `pubsub.TopicIAMBinding` resources **can be** used in conjunction with `pubsub.TopicIAMMember` resources **only if** they do not grant privilege to the same role.
+
         ## pubsub.TopicIAMPolicy
 
         ```python
@@ -480,6 +499,25 @@ class TopicIAMBinding(pulumi.CustomResource):
             member="user:jane@example.com")
         ```
 
+        ## This resource supports User Project Overrides.
+
+        - 
+
+        # IAM policy for Cloud Pub/Sub Topic
+        Three different resources help you manage your IAM policy for Cloud Pub/Sub Topic. Each of these resources serves a different use case:
+
+        * `pubsub.TopicIAMPolicy`: Authoritative. Sets the IAM policy for the topic and replaces any existing policy already attached.
+        * `pubsub.TopicIAMBinding`: Authoritative for a given role. Updates the IAM policy to grant a role to a list of members. Other roles within the IAM policy for the topic are preserved.
+        * `pubsub.TopicIAMMember`: Non-authoritative. Updates the IAM policy to grant a role to a new member. Other members for the role for the topic are preserved.
+
+        A data source can be used to retrieve policy data in advent you do not need creation
+
+        * `pubsub.TopicIAMPolicy`: Retrieves the IAM policy for the topic
+
+        > **Note:** `pubsub.TopicIAMPolicy` **cannot** be used in conjunction with `pubsub.TopicIAMBinding` and `pubsub.TopicIAMMember` or they will fight over what your policy should be.
+
+        > **Note:** `pubsub.TopicIAMBinding` resources **can be** used in conjunction with `pubsub.TopicIAMMember` resources **only if** they do not grant privilege to the same role.
+
         ## pubsub.TopicIAMPolicy
 
         ```python

pulumi_gcp/pubsub/topic_iam_member.py

@@ -319,6 +319,25 @@ class TopicIAMMember(pulumi.CustomResource):
             member="user:jane@example.com")
         ```
 
+        ## This resource supports User Project Overrides.
+
+        - 
+
+        # IAM policy for Cloud Pub/Sub Topic
+        Three different resources help you manage your IAM policy for Cloud Pub/Sub Topic. Each of these resources serves a different use case:
+
+        * `pubsub.TopicIAMPolicy`: Authoritative. Sets the IAM policy for the topic and replaces any existing policy already attached.
+        * `pubsub.TopicIAMBinding`: Authoritative for a given role. Updates the IAM policy to grant a role to a list of members. Other roles within the IAM policy for the topic are preserved.
+        * `pubsub.TopicIAMMember`: Non-authoritative. Updates the IAM policy to grant a role to a new member. Other members for the role for the topic are preserved.
+
+        A data source can be used to retrieve policy data in advent you do not need creation
+
+        * `pubsub.TopicIAMPolicy`: Retrieves the IAM policy for the topic
+
+        > **Note:** `pubsub.TopicIAMPolicy` **cannot** be used in conjunction with `pubsub.TopicIAMBinding` and `pubsub.TopicIAMMember` or they will fight over what your policy should be.
+
+        > **Note:** `pubsub.TopicIAMBinding` resources **can be** used in conjunction with `pubsub.TopicIAMMember` resources **only if** they do not grant privilege to the same role.
+
         ## pubsub.TopicIAMPolicy
 
         ```python
@@ -480,6 +499,25 @@ class TopicIAMMember(pulumi.CustomResource):
             member="user:jane@example.com")
         ```
 
+        ## This resource supports User Project Overrides.
+
+        - 
+
+        # IAM policy for Cloud Pub/Sub Topic
+        Three different resources help you manage your IAM policy for Cloud Pub/Sub Topic. Each of these resources serves a different use case:
+
+        * `pubsub.TopicIAMPolicy`: Authoritative. Sets the IAM policy for the topic and replaces any existing policy already attached.
+        * `pubsub.TopicIAMBinding`: Authoritative for a given role. Updates the IAM policy to grant a role to a list of members. Other roles within the IAM policy for the topic are preserved.
+        * `pubsub.TopicIAMMember`: Non-authoritative. Updates the IAM policy to grant a role to a new member. Other members for the role for the topic are preserved.
+
+        A data source can be used to retrieve policy data in advent you do not need creation
+
+        * `pubsub.TopicIAMPolicy`: Retrieves the IAM policy for the topic
+
+        > **Note:** `pubsub.TopicIAMPolicy` **cannot** be used in conjunction with `pubsub.TopicIAMBinding` and `pubsub.TopicIAMMember` or they will fight over what your policy should be.
+
+        > **Note:** `pubsub.TopicIAMBinding` resources **can be** used in conjunction with `pubsub.TopicIAMMember` resources **only if** they do not grant privilege to the same role.
+
         ## pubsub.TopicIAMPolicy
 
         ```python

pulumi_gcp/pubsub/topic_iam_policy.py

@@ -216,6 +216,25 @@ class TopicIAMPolicy(pulumi.CustomResource):
             member="user:jane@example.com")
         ```
 
+        ## This resource supports User Project Overrides.
+
+        - 
+
+        # IAM policy for Cloud Pub/Sub Topic
+        Three different resources help you manage your IAM policy for Cloud Pub/Sub Topic. Each of these resources serves a different use case:
+
+        * `pubsub.TopicIAMPolicy`: Authoritative. Sets the IAM policy for the topic and replaces any existing policy already attached.
+        * `pubsub.TopicIAMBinding`: Authoritative for a given role. Updates the IAM policy to grant a role to a list of members. Other roles within the IAM policy for the topic are preserved.
+        * `pubsub.TopicIAMMember`: Non-authoritative. Updates the IAM policy to grant a role to a new member. Other members for the role for the topic are preserved.
+
+        A data source can be used to retrieve policy data in advent you do not need creation
+
+        * `pubsub.TopicIAMPolicy`: Retrieves the IAM policy for the topic
+
+        > **Note:** `pubsub.TopicIAMPolicy` **cannot** be used in conjunction with `pubsub.TopicIAMBinding` and `pubsub.TopicIAMMember` or they will fight over what your policy should be.
+
+        > **Note:** `pubsub.TopicIAMBinding` resources **can be** used in conjunction with `pubsub.TopicIAMMember` resources **only if** they do not grant privilege to the same role.
+
         ## pubsub.TopicIAMPolicy
 
         ```python
@@ -365,6 +384,25 @@ class TopicIAMPolicy(pulumi.CustomResource):
             member="user:jane@example.com")
         ```
 
+        ## This resource supports User Project Overrides.
+
+        - 
+
+        # IAM policy for Cloud Pub/Sub Topic
+        Three different resources help you manage your IAM policy for Cloud Pub/Sub Topic. Each of these resources serves a different use case:
+
+        * `pubsub.TopicIAMPolicy`: Authoritative. Sets the IAM policy for the topic and replaces any existing policy already attached.
+        * `pubsub.TopicIAMBinding`: Authoritative for a given role. Updates the IAM policy to grant a role to a list of members. Other roles within the IAM policy for the topic are preserved.
+        * `pubsub.TopicIAMMember`: Non-authoritative. Updates the IAM policy to grant a role to a new member. Other members for the role for the topic are preserved.
+
+        A data source can be used to retrieve policy data in advent you do not need creation
+
+        * `pubsub.TopicIAMPolicy`: Retrieves the IAM policy for the topic
+
+        > **Note:** `pubsub.TopicIAMPolicy` **cannot** be used in conjunction with `pubsub.TopicIAMBinding` and `pubsub.TopicIAMMember` or they will fight over what your policy should be.
+
+        > **Note:** `pubsub.TopicIAMBinding` resources **can be** used in conjunction with `pubsub.TopicIAMMember` resources **only if** they do not grant privilege to the same role.
+
         ## pubsub.TopicIAMPolicy
 
         ```python

pulumi_gcp/pulumi-plugin.json

@@ -1,5 +1,5 @@
 {
   "resource": true,
   "name": "gcp",
-  "version": "7.35.0-alpha.1722924350"
+  "version": "7.36.0"
 }