pulumi-gcp 7.36.0a1723010828__py3-none-any.whl → 7.36.0a1723456487__py3-none-any.whl

pulumi_gcp/spanner/database_iam_member.py

@@ -407,43 +407,6 @@ class DatabaseIAMMember(pulumi.CustomResource):
             })
         ```
 
-        ## spanner.DatabaseIAMPolicy
-
-        ```python
-        import pulumi
-        import pulumi_gcp as gcp
-
-        admin = gcp.organizations.get_iam_policy(bindings=[{
-            "role": "roles/editor",
-            "members": ["user:jane@example.com"],
-        }])
-        database = gcp.spanner.DatabaseIAMPolicy("database",
-            instance="your-instance-name",
-            database="your-database-name",
-            policy_data=admin.policy_data)
-        ```
-
-        With IAM Conditions:
-
-        ```python
-        import pulumi
-        import pulumi_gcp as gcp
-
-        admin = gcp.organizations.get_iam_policy(bindings=[{
-            "role": "roles/editor",
-            "members": ["user:jane@example.com"],
-            "condition": {
-                "title": "My Role",
-                "description": "Grant permissions on my_role",
-                "expression": "(resource.type == \\"spanner.googleapis.com/DatabaseRole\\" && (resource.name.endsWith(\\"/myrole\\")))",
-            },
-        }])
-        database = gcp.spanner.DatabaseIAMPolicy("database",
-            instance="your-instance-name",
-            database="your-database-name",
-            policy_data=admin.policy_data)
-        ```
-
         ## spanner.DatabaseIAMBinding
 
         ```python
@@ -671,43 +634,6 @@ class DatabaseIAMMember(pulumi.CustomResource):
             })
         ```
 
-        ## spanner.DatabaseIAMPolicy
-
-        ```python
-        import pulumi
-        import pulumi_gcp as gcp
-
-        admin = gcp.organizations.get_iam_policy(bindings=[{
-            "role": "roles/editor",
-            "members": ["user:jane@example.com"],
-        }])
-        database = gcp.spanner.DatabaseIAMPolicy("database",
-            instance="your-instance-name",
-            database="your-database-name",
-            policy_data=admin.policy_data)
-        ```
-
-        With IAM Conditions:
-
-        ```python
-        import pulumi
-        import pulumi_gcp as gcp
-
-        admin = gcp.organizations.get_iam_policy(bindings=[{
-            "role": "roles/editor",
-            "members": ["user:jane@example.com"],
-            "condition": {
-                "title": "My Role",
-                "description": "Grant permissions on my_role",
-                "expression": "(resource.type == \\"spanner.googleapis.com/DatabaseRole\\" && (resource.name.endsWith(\\"/myrole\\")))",
-            },
-        }])
-        database = gcp.spanner.DatabaseIAMPolicy("database",
-            instance="your-instance-name",
-            database="your-database-name",
-            policy_data=admin.policy_data)
-        ```
-
         ## spanner.DatabaseIAMBinding
 
         ```python

pulumi_gcp/spanner/database_iam_policy.py

@@ -304,43 +304,6 @@ class DatabaseIAMPolicy(pulumi.CustomResource):
             })
         ```
 
-        ## spanner.DatabaseIAMPolicy
-
-        ```python
-        import pulumi
-        import pulumi_gcp as gcp
-
-        admin = gcp.organizations.get_iam_policy(bindings=[{
-            "role": "roles/editor",
-            "members": ["user:jane@example.com"],
-        }])
-        database = gcp.spanner.DatabaseIAMPolicy("database",
-            instance="your-instance-name",
-            database="your-database-name",
-            policy_data=admin.policy_data)
-        ```
-
-        With IAM Conditions:
-
-        ```python
-        import pulumi
-        import pulumi_gcp as gcp
-
-        admin = gcp.organizations.get_iam_policy(bindings=[{
-            "role": "roles/editor",
-            "members": ["user:jane@example.com"],
-            "condition": {
-                "title": "My Role",
-                "description": "Grant permissions on my_role",
-                "expression": "(resource.type == \\"spanner.googleapis.com/DatabaseRole\\" && (resource.name.endsWith(\\"/myrole\\")))",
-            },
-        }])
-        database = gcp.spanner.DatabaseIAMPolicy("database",
-            instance="your-instance-name",
-            database="your-database-name",
-            policy_data=admin.policy_data)
-        ```
-
         ## spanner.DatabaseIAMBinding
 
         ```python
@@ -557,43 +520,6 @@ class DatabaseIAMPolicy(pulumi.CustomResource):
             })
         ```
 
-        ## spanner.DatabaseIAMPolicy
-
-        ```python
-        import pulumi
-        import pulumi_gcp as gcp
-
-        admin = gcp.organizations.get_iam_policy(bindings=[{
-            "role": "roles/editor",
-            "members": ["user:jane@example.com"],
-        }])
-        database = gcp.spanner.DatabaseIAMPolicy("database",
-            instance="your-instance-name",
-            database="your-database-name",
-            policy_data=admin.policy_data)
-        ```
-
-        With IAM Conditions:
-
-        ```python
-        import pulumi
-        import pulumi_gcp as gcp
-
-        admin = gcp.organizations.get_iam_policy(bindings=[{
-            "role": "roles/editor",
-            "members": ["user:jane@example.com"],
-            "condition": {
-                "title": "My Role",
-                "description": "Grant permissions on my_role",
-                "expression": "(resource.type == \\"spanner.googleapis.com/DatabaseRole\\" && (resource.name.endsWith(\\"/myrole\\")))",
-            },
-        }])
-        database = gcp.spanner.DatabaseIAMPolicy("database",
-            instance="your-instance-name",
-            database="your-database-name",
-            policy_data=admin.policy_data)
-        ```
-
         ## spanner.DatabaseIAMBinding
 
         ```python

pulumi_gcp/spanner/instance_iam_binding.py

@@ -303,21 +303,6 @@ class InstanceIAMBinding(pulumi.CustomResource):
             member="user:jane@example.com")
         ```
 
-        ## spanner.InstanceIAMPolicy
-
-        ```python
-        import pulumi
-        import pulumi_gcp as gcp
-
-        admin = gcp.organizations.get_iam_policy(bindings=[{
-            "role": "roles/editor",
-            "members": ["user:jane@example.com"],
-        }])
-        instance = gcp.spanner.InstanceIAMPolicy("instance",
-            instance="your-instance-name",
-            policy_data=admin.policy_data)
-        ```
-
         ## spanner.InstanceIAMBinding
 
         ```python
@@ -444,21 +429,6 @@ class InstanceIAMBinding(pulumi.CustomResource):
             member="user:jane@example.com")
         ```
 
-        ## spanner.InstanceIAMPolicy
-
-        ```python
-        import pulumi
-        import pulumi_gcp as gcp
-
-        admin = gcp.organizations.get_iam_policy(bindings=[{
-            "role": "roles/editor",
-            "members": ["user:jane@example.com"],
-        }])
-        instance = gcp.spanner.InstanceIAMPolicy("instance",
-            instance="your-instance-name",
-            policy_data=admin.policy_data)
-        ```
-
         ## spanner.InstanceIAMBinding
 
         ```python

pulumi_gcp/spanner/instance_iam_member.py

@@ -303,21 +303,6 @@ class InstanceIAMMember(pulumi.CustomResource):
             member="user:jane@example.com")
         ```
 
-        ## spanner.InstanceIAMPolicy
-
-        ```python
-        import pulumi
-        import pulumi_gcp as gcp
-
-        admin = gcp.organizations.get_iam_policy(bindings=[{
-            "role": "roles/editor",
-            "members": ["user:jane@example.com"],
-        }])
-        instance = gcp.spanner.InstanceIAMPolicy("instance",
-            instance="your-instance-name",
-            policy_data=admin.policy_data)
-        ```
-
         ## spanner.InstanceIAMBinding
 
         ```python
@@ -444,21 +429,6 @@ class InstanceIAMMember(pulumi.CustomResource):
             member="user:jane@example.com")
         ```
 
-        ## spanner.InstanceIAMPolicy
-
-        ```python
-        import pulumi
-        import pulumi_gcp as gcp
-
-        admin = gcp.organizations.get_iam_policy(bindings=[{
-            "role": "roles/editor",
-            "members": ["user:jane@example.com"],
-        }])
-        instance = gcp.spanner.InstanceIAMPolicy("instance",
-            instance="your-instance-name",
-            policy_data=admin.policy_data)
-        ```
-
         ## spanner.InstanceIAMBinding
 
         ```python

pulumi_gcp/spanner/instance_iam_policy.py

@@ -212,21 +212,6 @@ class InstanceIAMPolicy(pulumi.CustomResource):
             member="user:jane@example.com")
         ```
 
-        ## spanner.InstanceIAMPolicy
-
-        ```python
-        import pulumi
-        import pulumi_gcp as gcp
-
-        admin = gcp.organizations.get_iam_policy(bindings=[{
-            "role": "roles/editor",
-            "members": ["user:jane@example.com"],
-        }])
-        instance = gcp.spanner.InstanceIAMPolicy("instance",
-            instance="your-instance-name",
-            policy_data=admin.policy_data)
-        ```
-
         ## spanner.InstanceIAMBinding
 
         ```python
@@ -344,21 +329,6 @@ class InstanceIAMPolicy(pulumi.CustomResource):
             member="user:jane@example.com")
         ```
 
-        ## spanner.InstanceIAMPolicy
-
-        ```python
-        import pulumi
-        import pulumi_gcp as gcp
-
-        admin = gcp.organizations.get_iam_policy(bindings=[{
-            "role": "roles/editor",
-            "members": ["user:jane@example.com"],
-        }])
-        instance = gcp.spanner.InstanceIAMPolicy("instance",
-            instance="your-instance-name",
-            policy_data=admin.policy_data)
-        ```
-
         ## spanner.InstanceIAMBinding
 
         ```python

pulumi_gcp/storage/bucket_iam_binding.py

@@ -345,6 +345,27 @@ class BucketIAMBinding(pulumi.CustomResource):
             })
         ```
 
+        ## This resource supports User Project Overrides.
+
+        - 
+
+        # IAM policy for Cloud Storage Bucket
+        Three different resources help you manage your IAM policy for Cloud Storage Bucket. Each of these resources serves a different use case:
+
+        * `storage.BucketIAMPolicy`: Authoritative. Sets the IAM policy for the bucket and replaces any existing policy already attached.
+        * `storage.BucketIAMBinding`: Authoritative for a given role. Updates the IAM policy to grant a role to a list of members. Other roles within the IAM policy for the bucket are preserved.
+        * `storage.BucketIAMMember`: Non-authoritative. Updates the IAM policy to grant a role to a new member. Other members for the role for the bucket are preserved.
+
+        A data source can be used to retrieve policy data in advent you do not need creation
+
+        * `storage.BucketIAMPolicy`: Retrieves the IAM policy for the bucket
+
+        > **Note:** `storage.BucketIAMPolicy` **cannot** be used in conjunction with `storage.BucketIAMBinding` and `storage.BucketIAMMember` or they will fight over what your policy should be.
+
+        > **Note:** `storage.BucketIAMBinding` resources **can be** used in conjunction with `storage.BucketIAMMember` resources **only if** they do not grant privilege to the same role.
+
+        > **Note:**  This resource supports IAM Conditions but they have some known limitations which can be found [here](https://cloud.google.com/iam/docs/conditions-overview#limitations). Please review this article if you are having issues with IAM Conditions.
+
         ## storage.BucketIAMPolicy
 
         ```python
@@ -604,6 +625,27 @@ class BucketIAMBinding(pulumi.CustomResource):
             })
         ```
 
+        ## This resource supports User Project Overrides.
+
+        - 
+
+        # IAM policy for Cloud Storage Bucket
+        Three different resources help you manage your IAM policy for Cloud Storage Bucket. Each of these resources serves a different use case:
+
+        * `storage.BucketIAMPolicy`: Authoritative. Sets the IAM policy for the bucket and replaces any existing policy already attached.
+        * `storage.BucketIAMBinding`: Authoritative for a given role. Updates the IAM policy to grant a role to a list of members. Other roles within the IAM policy for the bucket are preserved.
+        * `storage.BucketIAMMember`: Non-authoritative. Updates the IAM policy to grant a role to a new member. Other members for the role for the bucket are preserved.
+
+        A data source can be used to retrieve policy data in advent you do not need creation
+
+        * `storage.BucketIAMPolicy`: Retrieves the IAM policy for the bucket
+
+        > **Note:** `storage.BucketIAMPolicy` **cannot** be used in conjunction with `storage.BucketIAMBinding` and `storage.BucketIAMMember` or they will fight over what your policy should be.
+
+        > **Note:** `storage.BucketIAMBinding` resources **can be** used in conjunction with `storage.BucketIAMMember` resources **only if** they do not grant privilege to the same role.
+
+        > **Note:**  This resource supports IAM Conditions but they have some known limitations which can be found [here](https://cloud.google.com/iam/docs/conditions-overview#limitations). Please review this article if you are having issues with IAM Conditions.
+
         ## storage.BucketIAMPolicy
 
         ```python

pulumi_gcp/storage/bucket_iam_member.py

@@ -345,6 +345,27 @@ class BucketIAMMember(pulumi.CustomResource):
             })
         ```
 
+        ## This resource supports User Project Overrides.
+
+        - 
+
+        # IAM policy for Cloud Storage Bucket
+        Three different resources help you manage your IAM policy for Cloud Storage Bucket. Each of these resources serves a different use case:
+
+        * `storage.BucketIAMPolicy`: Authoritative. Sets the IAM policy for the bucket and replaces any existing policy already attached.
+        * `storage.BucketIAMBinding`: Authoritative for a given role. Updates the IAM policy to grant a role to a list of members. Other roles within the IAM policy for the bucket are preserved.
+        * `storage.BucketIAMMember`: Non-authoritative. Updates the IAM policy to grant a role to a new member. Other members for the role for the bucket are preserved.
+
+        A data source can be used to retrieve policy data in advent you do not need creation
+
+        * `storage.BucketIAMPolicy`: Retrieves the IAM policy for the bucket
+
+        > **Note:** `storage.BucketIAMPolicy` **cannot** be used in conjunction with `storage.BucketIAMBinding` and `storage.BucketIAMMember` or they will fight over what your policy should be.
+
+        > **Note:** `storage.BucketIAMBinding` resources **can be** used in conjunction with `storage.BucketIAMMember` resources **only if** they do not grant privilege to the same role.
+
+        > **Note:**  This resource supports IAM Conditions but they have some known limitations which can be found [here](https://cloud.google.com/iam/docs/conditions-overview#limitations). Please review this article if you are having issues with IAM Conditions.
+
         ## storage.BucketIAMPolicy
 
         ```python
@@ -604,6 +625,27 @@ class BucketIAMMember(pulumi.CustomResource):
             })
         ```
 
+        ## This resource supports User Project Overrides.
+
+        - 
+
+        # IAM policy for Cloud Storage Bucket
+        Three different resources help you manage your IAM policy for Cloud Storage Bucket. Each of these resources serves a different use case:
+
+        * `storage.BucketIAMPolicy`: Authoritative. Sets the IAM policy for the bucket and replaces any existing policy already attached.
+        * `storage.BucketIAMBinding`: Authoritative for a given role. Updates the IAM policy to grant a role to a list of members. Other roles within the IAM policy for the bucket are preserved.
+        * `storage.BucketIAMMember`: Non-authoritative. Updates the IAM policy to grant a role to a new member. Other members for the role for the bucket are preserved.
+
+        A data source can be used to retrieve policy data in advent you do not need creation
+
+        * `storage.BucketIAMPolicy`: Retrieves the IAM policy for the bucket
+
+        > **Note:** `storage.BucketIAMPolicy` **cannot** be used in conjunction with `storage.BucketIAMBinding` and `storage.BucketIAMMember` or they will fight over what your policy should be.
+
+        > **Note:** `storage.BucketIAMBinding` resources **can be** used in conjunction with `storage.BucketIAMMember` resources **only if** they do not grant privilege to the same role.
+
+        > **Note:**  This resource supports IAM Conditions but they have some known limitations which can be found [here](https://cloud.google.com/iam/docs/conditions-overview#limitations). Please review this article if you are having issues with IAM Conditions.
+
         ## storage.BucketIAMPolicy
 
         ```python

pulumi_gcp/storage/bucket_iam_policy.py

@@ -230,6 +230,27 @@ class BucketIAMPolicy(pulumi.CustomResource):
             })
         ```
 
+        ## This resource supports User Project Overrides.
+
+        - 
+
+        # IAM policy for Cloud Storage Bucket
+        Three different resources help you manage your IAM policy for Cloud Storage Bucket. Each of these resources serves a different use case:
+
+        * `storage.BucketIAMPolicy`: Authoritative. Sets the IAM policy for the bucket and replaces any existing policy already attached.
+        * `storage.BucketIAMBinding`: Authoritative for a given role. Updates the IAM policy to grant a role to a list of members. Other roles within the IAM policy for the bucket are preserved.
+        * `storage.BucketIAMMember`: Non-authoritative. Updates the IAM policy to grant a role to a new member. Other members for the role for the bucket are preserved.
+
+        A data source can be used to retrieve policy data in advent you do not need creation
+
+        * `storage.BucketIAMPolicy`: Retrieves the IAM policy for the bucket
+
+        > **Note:** `storage.BucketIAMPolicy` **cannot** be used in conjunction with `storage.BucketIAMBinding` and `storage.BucketIAMMember` or they will fight over what your policy should be.
+
+        > **Note:** `storage.BucketIAMBinding` resources **can be** used in conjunction with `storage.BucketIAMMember` resources **only if** they do not grant privilege to the same role.
+
+        > **Note:**  This resource supports IAM Conditions but they have some known limitations which can be found [here](https://cloud.google.com/iam/docs/conditions-overview#limitations). Please review this article if you are having issues with IAM Conditions.
+
         ## storage.BucketIAMPolicy
 
         ```python
@@ -475,6 +496,27 @@ class BucketIAMPolicy(pulumi.CustomResource):
             })
         ```
 
+        ## This resource supports User Project Overrides.
+
+        - 
+
+        # IAM policy for Cloud Storage Bucket
+        Three different resources help you manage your IAM policy for Cloud Storage Bucket. Each of these resources serves a different use case:
+
+        * `storage.BucketIAMPolicy`: Authoritative. Sets the IAM policy for the bucket and replaces any existing policy already attached.
+        * `storage.BucketIAMBinding`: Authoritative for a given role. Updates the IAM policy to grant a role to a list of members. Other roles within the IAM policy for the bucket are preserved.
+        * `storage.BucketIAMMember`: Non-authoritative. Updates the IAM policy to grant a role to a new member. Other members for the role for the bucket are preserved.
+
+        A data source can be used to retrieve policy data in advent you do not need creation
+
+        * `storage.BucketIAMPolicy`: Retrieves the IAM policy for the bucket
+
+        > **Note:** `storage.BucketIAMPolicy` **cannot** be used in conjunction with `storage.BucketIAMBinding` and `storage.BucketIAMMember` or they will fight over what your policy should be.
+
+        > **Note:** `storage.BucketIAMBinding` resources **can be** used in conjunction with `storage.BucketIAMMember` resources **only if** they do not grant privilege to the same role.
+
+        > **Note:**  This resource supports IAM Conditions but they have some known limitations which can be found [here](https://cloud.google.com/iam/docs/conditions-overview#limitations). Please review this article if you are having issues with IAM Conditions.
+
         ## storage.BucketIAMPolicy
 
         ```python

pulumi_gcp/storage/managed_folder_iam_binding.py

@@ -383,6 +383,28 @@ class ManagedFolderIamBinding(pulumi.CustomResource):
             })
         ```
 
+        ## > **Custom Roles**: If you're importing a IAM resource with a custom role, make sure to use the
+
+        full name of the custom role, e.g. `[projects/my-project|organizations/my-org]/roles/my-custom-role`.
+        ---
+
+        # IAM policy for Cloud Storage ManagedFolder
+        Three different resources help you manage your IAM policy for Cloud Storage ManagedFolder. Each of these resources serves a different use case:
+
+        * `storage.ManagedFolderIamPolicy`: Authoritative. Sets the IAM policy for the managedfolder and replaces any existing policy already attached.
+        * `storage.ManagedFolderIamBinding`: Authoritative for a given role. Updates the IAM policy to grant a role to a list of members. Other roles within the IAM policy for the managedfolder are preserved.
+        * `storage.ManagedFolderIamMember`: Non-authoritative. Updates the IAM policy to grant a role to a new member. Other members for the role for the managedfolder are preserved.
+
+        A data source can be used to retrieve policy data in advent you do not need creation
+
+        * `storage.ManagedFolderIamPolicy`: Retrieves the IAM policy for the managedfolder
+
+        > **Note:** `storage.ManagedFolderIamPolicy` **cannot** be used in conjunction with `storage.ManagedFolderIamBinding` and `storage.ManagedFolderIamMember` or they will fight over what your policy should be.
+
+        > **Note:** `storage.ManagedFolderIamBinding` resources **can be** used in conjunction with `storage.ManagedFolderIamMember` resources **only if** they do not grant privilege to the same role.
+
+        > **Note:**  This resource supports IAM Conditions but they have some known limitations which can be found [here](https://cloud.google.com/iam/docs/conditions-overview#limitations). Please review this article if you are having issues with IAM Conditions.
+
         ## storage.ManagedFolderIamPolicy
 
         ```python
@@ -655,6 +677,28 @@ class ManagedFolderIamBinding(pulumi.CustomResource):
             })
         ```
 
+        ## > **Custom Roles**: If you're importing a IAM resource with a custom role, make sure to use the
+
+        full name of the custom role, e.g. `[projects/my-project|organizations/my-org]/roles/my-custom-role`.
+        ---
+
+        # IAM policy for Cloud Storage ManagedFolder
+        Three different resources help you manage your IAM policy for Cloud Storage ManagedFolder. Each of these resources serves a different use case:
+
+        * `storage.ManagedFolderIamPolicy`: Authoritative. Sets the IAM policy for the managedfolder and replaces any existing policy already attached.
+        * `storage.ManagedFolderIamBinding`: Authoritative for a given role. Updates the IAM policy to grant a role to a list of members. Other roles within the IAM policy for the managedfolder are preserved.
+        * `storage.ManagedFolderIamMember`: Non-authoritative. Updates the IAM policy to grant a role to a new member. Other members for the role for the managedfolder are preserved.
+
+        A data source can be used to retrieve policy data in advent you do not need creation
+
+        * `storage.ManagedFolderIamPolicy`: Retrieves the IAM policy for the managedfolder
+
+        > **Note:** `storage.ManagedFolderIamPolicy` **cannot** be used in conjunction with `storage.ManagedFolderIamBinding` and `storage.ManagedFolderIamMember` or they will fight over what your policy should be.
+
+        > **Note:** `storage.ManagedFolderIamBinding` resources **can be** used in conjunction with `storage.ManagedFolderIamMember` resources **only if** they do not grant privilege to the same role.
+
+        > **Note:**  This resource supports IAM Conditions but they have some known limitations which can be found [here](https://cloud.google.com/iam/docs/conditions-overview#limitations). Please review this article if you are having issues with IAM Conditions.
+
         ## storage.ManagedFolderIamPolicy
 
         ```python

pulumi_gcp/storage/managed_folder_iam_member.py

@@ -383,6 +383,28 @@ class ManagedFolderIamMember(pulumi.CustomResource):
             })
         ```
 
+        ## > **Custom Roles**: If you're importing a IAM resource with a custom role, make sure to use the
+
+        full name of the custom role, e.g. `[projects/my-project|organizations/my-org]/roles/my-custom-role`.
+        ---
+
+        # IAM policy for Cloud Storage ManagedFolder
+        Three different resources help you manage your IAM policy for Cloud Storage ManagedFolder. Each of these resources serves a different use case:
+
+        * `storage.ManagedFolderIamPolicy`: Authoritative. Sets the IAM policy for the managedfolder and replaces any existing policy already attached.
+        * `storage.ManagedFolderIamBinding`: Authoritative for a given role. Updates the IAM policy to grant a role to a list of members. Other roles within the IAM policy for the managedfolder are preserved.
+        * `storage.ManagedFolderIamMember`: Non-authoritative. Updates the IAM policy to grant a role to a new member. Other members for the role for the managedfolder are preserved.
+
+        A data source can be used to retrieve policy data in advent you do not need creation
+
+        * `storage.ManagedFolderIamPolicy`: Retrieves the IAM policy for the managedfolder
+
+        > **Note:** `storage.ManagedFolderIamPolicy` **cannot** be used in conjunction with `storage.ManagedFolderIamBinding` and `storage.ManagedFolderIamMember` or they will fight over what your policy should be.
+
+        > **Note:** `storage.ManagedFolderIamBinding` resources **can be** used in conjunction with `storage.ManagedFolderIamMember` resources **only if** they do not grant privilege to the same role.
+
+        > **Note:**  This resource supports IAM Conditions but they have some known limitations which can be found [here](https://cloud.google.com/iam/docs/conditions-overview#limitations). Please review this article if you are having issues with IAM Conditions.
+
         ## storage.ManagedFolderIamPolicy
 
         ```python
@@ -655,6 +677,28 @@ class ManagedFolderIamMember(pulumi.CustomResource):
             })
         ```
 
+        ## > **Custom Roles**: If you're importing a IAM resource with a custom role, make sure to use the
+
+        full name of the custom role, e.g. `[projects/my-project|organizations/my-org]/roles/my-custom-role`.
+        ---
+
+        # IAM policy for Cloud Storage ManagedFolder
+        Three different resources help you manage your IAM policy for Cloud Storage ManagedFolder. Each of these resources serves a different use case:
+
+        * `storage.ManagedFolderIamPolicy`: Authoritative. Sets the IAM policy for the managedfolder and replaces any existing policy already attached.
+        * `storage.ManagedFolderIamBinding`: Authoritative for a given role. Updates the IAM policy to grant a role to a list of members. Other roles within the IAM policy for the managedfolder are preserved.
+        * `storage.ManagedFolderIamMember`: Non-authoritative. Updates the IAM policy to grant a role to a new member. Other members for the role for the managedfolder are preserved.
+
+        A data source can be used to retrieve policy data in advent you do not need creation
+
+        * `storage.ManagedFolderIamPolicy`: Retrieves the IAM policy for the managedfolder
+
+        > **Note:** `storage.ManagedFolderIamPolicy` **cannot** be used in conjunction with `storage.ManagedFolderIamBinding` and `storage.ManagedFolderIamMember` or they will fight over what your policy should be.
+
+        > **Note:** `storage.ManagedFolderIamBinding` resources **can be** used in conjunction with `storage.ManagedFolderIamMember` resources **only if** they do not grant privilege to the same role.
+
+        > **Note:**  This resource supports IAM Conditions but they have some known limitations which can be found [here](https://cloud.google.com/iam/docs/conditions-overview#limitations). Please review this article if you are having issues with IAM Conditions.
+
         ## storage.ManagedFolderIamPolicy
 
         ```python

pulumi_gcp/storage/managed_folder_iam_policy.py

@@ -268,6 +268,28 @@ class ManagedFolderIamPolicy(pulumi.CustomResource):
             })
         ```
 
+        ## > **Custom Roles**: If you're importing a IAM resource with a custom role, make sure to use the
+
+        full name of the custom role, e.g. `[projects/my-project|organizations/my-org]/roles/my-custom-role`.
+        ---
+
+        # IAM policy for Cloud Storage ManagedFolder
+        Three different resources help you manage your IAM policy for Cloud Storage ManagedFolder. Each of these resources serves a different use case:
+
+        * `storage.ManagedFolderIamPolicy`: Authoritative. Sets the IAM policy for the managedfolder and replaces any existing policy already attached.
+        * `storage.ManagedFolderIamBinding`: Authoritative for a given role. Updates the IAM policy to grant a role to a list of members. Other roles within the IAM policy for the managedfolder are preserved.
+        * `storage.ManagedFolderIamMember`: Non-authoritative. Updates the IAM policy to grant a role to a new member. Other members for the role for the managedfolder are preserved.
+
+        A data source can be used to retrieve policy data in advent you do not need creation
+
+        * `storage.ManagedFolderIamPolicy`: Retrieves the IAM policy for the managedfolder
+
+        > **Note:** `storage.ManagedFolderIamPolicy` **cannot** be used in conjunction with `storage.ManagedFolderIamBinding` and `storage.ManagedFolderIamMember` or they will fight over what your policy should be.
+
+        > **Note:** `storage.ManagedFolderIamBinding` resources **can be** used in conjunction with `storage.ManagedFolderIamMember` resources **only if** they do not grant privilege to the same role.
+
+        > **Note:**  This resource supports IAM Conditions but they have some known limitations which can be found [here](https://cloud.google.com/iam/docs/conditions-overview#limitations). Please review this article if you are having issues with IAM Conditions.
+
         ## storage.ManagedFolderIamPolicy
 
         ```python
@@ -526,6 +548,28 @@ class ManagedFolderIamPolicy(pulumi.CustomResource):
             })
         ```
 
+        ## > **Custom Roles**: If you're importing a IAM resource with a custom role, make sure to use the
+
+        full name of the custom role, e.g. `[projects/my-project|organizations/my-org]/roles/my-custom-role`.
+        ---
+
+        # IAM policy for Cloud Storage ManagedFolder
+        Three different resources help you manage your IAM policy for Cloud Storage ManagedFolder. Each of these resources serves a different use case:
+
+        * `storage.ManagedFolderIamPolicy`: Authoritative. Sets the IAM policy for the managedfolder and replaces any existing policy already attached.
+        * `storage.ManagedFolderIamBinding`: Authoritative for a given role. Updates the IAM policy to grant a role to a list of members. Other roles within the IAM policy for the managedfolder are preserved.
+        * `storage.ManagedFolderIamMember`: Non-authoritative. Updates the IAM policy to grant a role to a new member. Other members for the role for the managedfolder are preserved.
+
+        A data source can be used to retrieve policy data in advent you do not need creation
+
+        * `storage.ManagedFolderIamPolicy`: Retrieves the IAM policy for the managedfolder
+
+        > **Note:** `storage.ManagedFolderIamPolicy` **cannot** be used in conjunction with `storage.ManagedFolderIamBinding` and `storage.ManagedFolderIamMember` or they will fight over what your policy should be.
+
+        > **Note:** `storage.ManagedFolderIamBinding` resources **can be** used in conjunction with `storage.ManagedFolderIamMember` resources **only if** they do not grant privilege to the same role.
+
+        > **Note:**  This resource supports IAM Conditions but they have some known limitations which can be found [here](https://cloud.google.com/iam/docs/conditions-overview#limitations). Please review this article if you are having issues with IAM Conditions.
+
         ## storage.ManagedFolderIamPolicy
 
         ```python