pulumi-gcp 8.17.0a1738274430__py3-none-any.whl → 8.18.0__py3-none-any.whl

pulumi_gcp/gemini/repository_group_iam_member.py

@@ -320,6 +320,135 @@ class RepositoryGroupIamMember(pulumi.CustomResource):
                  role: Optional[pulumi.Input[str]] = None,
                  __props__=None):
         """
+        Three different resources help you manage your IAM policy for Gemini for Google Cloud RepositoryGroup. Each of these resources serves a different use case:
+
+        * `gemini.RepositoryGroupIamPolicy`: Authoritative. Sets the IAM policy for the repositorygroup and replaces any existing policy already attached.
+        * `gemini.RepositoryGroupIamBinding`: Authoritative for a given role. Updates the IAM policy to grant a role to a list of members. Other roles within the IAM policy for the repositorygroup are preserved.
+        * `gemini.RepositoryGroupIamMember`: Non-authoritative. Updates the IAM policy to grant a role to a new member. Other members for the role for the repositorygroup are preserved.
+
+        A data source can be used to retrieve policy data in advent you do not need creation
+
+        * `gemini.RepositoryGroupIamPolicy`: Retrieves the IAM policy for the repositorygroup
+
+        > **Note:** `gemini.RepositoryGroupIamPolicy` **cannot** be used in conjunction with `gemini.RepositoryGroupIamBinding` and `gemini.RepositoryGroupIamMember` or they will fight over what your policy should be.
+
+        > **Note:** `gemini.RepositoryGroupIamBinding` resources **can be** used in conjunction with `gemini.RepositoryGroupIamMember` resources **only if** they do not grant privilege to the same role.
+
+        ## gemini.RepositoryGroupIamPolicy
+
+        ```python
+        import pulumi
+        import pulumi_gcp as gcp
+
+        admin = gcp.organizations.get_iam_policy(bindings=[{
+            "role": "roles/cloudaicompanion.repositoryGroupsUser",
+            "members": ["user:jane@example.com"],
+        }])
+        policy = gcp.gemini.RepositoryGroupIamPolicy("policy",
+            project=example["project"],
+            location=example["location"],
+            code_repository_index=example["codeRepositoryIndex"],
+            repository_group_id=example["repositoryGroupId"],
+            policy_data=admin.policy_data)
+        ```
+
+        ## gemini.RepositoryGroupIamBinding
+
+        ```python
+        import pulumi
+        import pulumi_gcp as gcp
+
+        binding = gcp.gemini.RepositoryGroupIamBinding("binding",
+            project=example["project"],
+            location=example["location"],
+            code_repository_index=example["codeRepositoryIndex"],
+            repository_group_id=example["repositoryGroupId"],
+            role="roles/cloudaicompanion.repositoryGroupsUser",
+            members=["user:jane@example.com"])
+        ```
+
+        ## gemini.RepositoryGroupIamMember
+
+        ```python
+        import pulumi
+        import pulumi_gcp as gcp
+
+        member = gcp.gemini.RepositoryGroupIamMember("member",
+            project=example["project"],
+            location=example["location"],
+            code_repository_index=example["codeRepositoryIndex"],
+            repository_group_id=example["repositoryGroupId"],
+            role="roles/cloudaicompanion.repositoryGroupsUser",
+            member="user:jane@example.com")
+        ```
+
+        ## This resource supports User Project Overrides.
+
+        - 
+
+        # IAM policy for Gemini for Google Cloud RepositoryGroup
+        Three different resources help you manage your IAM policy for Gemini for Google Cloud RepositoryGroup. Each of these resources serves a different use case:
+
+        * `gemini.RepositoryGroupIamPolicy`: Authoritative. Sets the IAM policy for the repositorygroup and replaces any existing policy already attached.
+        * `gemini.RepositoryGroupIamBinding`: Authoritative for a given role. Updates the IAM policy to grant a role to a list of members. Other roles within the IAM policy for the repositorygroup are preserved.
+        * `gemini.RepositoryGroupIamMember`: Non-authoritative. Updates the IAM policy to grant a role to a new member. Other members for the role for the repositorygroup are preserved.
+
+        A data source can be used to retrieve policy data in advent you do not need creation
+
+        * `gemini.RepositoryGroupIamPolicy`: Retrieves the IAM policy for the repositorygroup
+
+        > **Note:** `gemini.RepositoryGroupIamPolicy` **cannot** be used in conjunction with `gemini.RepositoryGroupIamBinding` and `gemini.RepositoryGroupIamMember` or they will fight over what your policy should be.
+
+        > **Note:** `gemini.RepositoryGroupIamBinding` resources **can be** used in conjunction with `gemini.RepositoryGroupIamMember` resources **only if** they do not grant privilege to the same role.
+
+        ## gemini.RepositoryGroupIamPolicy
+
+        ```python
+        import pulumi
+        import pulumi_gcp as gcp
+
+        admin = gcp.organizations.get_iam_policy(bindings=[{
+            "role": "roles/cloudaicompanion.repositoryGroupsUser",
+            "members": ["user:jane@example.com"],
+        }])
+        policy = gcp.gemini.RepositoryGroupIamPolicy("policy",
+            project=example["project"],
+            location=example["location"],
+            code_repository_index=example["codeRepositoryIndex"],
+            repository_group_id=example["repositoryGroupId"],
+            policy_data=admin.policy_data)
+        ```
+
+        ## gemini.RepositoryGroupIamBinding
+
+        ```python
+        import pulumi
+        import pulumi_gcp as gcp
+
+        binding = gcp.gemini.RepositoryGroupIamBinding("binding",
+            project=example["project"],
+            location=example["location"],
+            code_repository_index=example["codeRepositoryIndex"],
+            repository_group_id=example["repositoryGroupId"],
+            role="roles/cloudaicompanion.repositoryGroupsUser",
+            members=["user:jane@example.com"])
+        ```
+
+        ## gemini.RepositoryGroupIamMember
+
+        ```python
+        import pulumi
+        import pulumi_gcp as gcp
+
+        member = gcp.gemini.RepositoryGroupIamMember("member",
+            project=example["project"],
+            location=example["location"],
+            code_repository_index=example["codeRepositoryIndex"],
+            repository_group_id=example["repositoryGroupId"],
+            role="roles/cloudaicompanion.repositoryGroupsUser",
+            member="user:jane@example.com")
+        ```
+
         ## Import
 
         For all import syntaxes, the "resource in question" can take any of the following forms:
@@ -387,6 +516,135 @@ class RepositoryGroupIamMember(pulumi.CustomResource):
                  args: RepositoryGroupIamMemberArgs,
                  opts: Optional[pulumi.ResourceOptions] = None):
         """
+        Three different resources help you manage your IAM policy for Gemini for Google Cloud RepositoryGroup. Each of these resources serves a different use case:
+
+        * `gemini.RepositoryGroupIamPolicy`: Authoritative. Sets the IAM policy for the repositorygroup and replaces any existing policy already attached.
+        * `gemini.RepositoryGroupIamBinding`: Authoritative for a given role. Updates the IAM policy to grant a role to a list of members. Other roles within the IAM policy for the repositorygroup are preserved.
+        * `gemini.RepositoryGroupIamMember`: Non-authoritative. Updates the IAM policy to grant a role to a new member. Other members for the role for the repositorygroup are preserved.
+
+        A data source can be used to retrieve policy data in advent you do not need creation
+
+        * `gemini.RepositoryGroupIamPolicy`: Retrieves the IAM policy for the repositorygroup
+
+        > **Note:** `gemini.RepositoryGroupIamPolicy` **cannot** be used in conjunction with `gemini.RepositoryGroupIamBinding` and `gemini.RepositoryGroupIamMember` or they will fight over what your policy should be.
+
+        > **Note:** `gemini.RepositoryGroupIamBinding` resources **can be** used in conjunction with `gemini.RepositoryGroupIamMember` resources **only if** they do not grant privilege to the same role.
+
+        ## gemini.RepositoryGroupIamPolicy
+
+        ```python
+        import pulumi
+        import pulumi_gcp as gcp
+
+        admin = gcp.organizations.get_iam_policy(bindings=[{
+            "role": "roles/cloudaicompanion.repositoryGroupsUser",
+            "members": ["user:jane@example.com"],
+        }])
+        policy = gcp.gemini.RepositoryGroupIamPolicy("policy",
+            project=example["project"],
+            location=example["location"],
+            code_repository_index=example["codeRepositoryIndex"],
+            repository_group_id=example["repositoryGroupId"],
+            policy_data=admin.policy_data)
+        ```
+
+        ## gemini.RepositoryGroupIamBinding
+
+        ```python
+        import pulumi
+        import pulumi_gcp as gcp
+
+        binding = gcp.gemini.RepositoryGroupIamBinding("binding",
+            project=example["project"],
+            location=example["location"],
+            code_repository_index=example["codeRepositoryIndex"],
+            repository_group_id=example["repositoryGroupId"],
+            role="roles/cloudaicompanion.repositoryGroupsUser",
+            members=["user:jane@example.com"])
+        ```
+
+        ## gemini.RepositoryGroupIamMember
+
+        ```python
+        import pulumi
+        import pulumi_gcp as gcp
+
+        member = gcp.gemini.RepositoryGroupIamMember("member",
+            project=example["project"],
+            location=example["location"],
+            code_repository_index=example["codeRepositoryIndex"],
+            repository_group_id=example["repositoryGroupId"],
+            role="roles/cloudaicompanion.repositoryGroupsUser",
+            member="user:jane@example.com")
+        ```
+
+        ## This resource supports User Project Overrides.
+
+        - 
+
+        # IAM policy for Gemini for Google Cloud RepositoryGroup
+        Three different resources help you manage your IAM policy for Gemini for Google Cloud RepositoryGroup. Each of these resources serves a different use case:
+
+        * `gemini.RepositoryGroupIamPolicy`: Authoritative. Sets the IAM policy for the repositorygroup and replaces any existing policy already attached.
+        * `gemini.RepositoryGroupIamBinding`: Authoritative for a given role. Updates the IAM policy to grant a role to a list of members. Other roles within the IAM policy for the repositorygroup are preserved.
+        * `gemini.RepositoryGroupIamMember`: Non-authoritative. Updates the IAM policy to grant a role to a new member. Other members for the role for the repositorygroup are preserved.
+
+        A data source can be used to retrieve policy data in advent you do not need creation
+
+        * `gemini.RepositoryGroupIamPolicy`: Retrieves the IAM policy for the repositorygroup
+
+        > **Note:** `gemini.RepositoryGroupIamPolicy` **cannot** be used in conjunction with `gemini.RepositoryGroupIamBinding` and `gemini.RepositoryGroupIamMember` or they will fight over what your policy should be.
+
+        > **Note:** `gemini.RepositoryGroupIamBinding` resources **can be** used in conjunction with `gemini.RepositoryGroupIamMember` resources **only if** they do not grant privilege to the same role.
+
+        ## gemini.RepositoryGroupIamPolicy
+
+        ```python
+        import pulumi
+        import pulumi_gcp as gcp
+
+        admin = gcp.organizations.get_iam_policy(bindings=[{
+            "role": "roles/cloudaicompanion.repositoryGroupsUser",
+            "members": ["user:jane@example.com"],
+        }])
+        policy = gcp.gemini.RepositoryGroupIamPolicy("policy",
+            project=example["project"],
+            location=example["location"],
+            code_repository_index=example["codeRepositoryIndex"],
+            repository_group_id=example["repositoryGroupId"],
+            policy_data=admin.policy_data)
+        ```
+
+        ## gemini.RepositoryGroupIamBinding
+
+        ```python
+        import pulumi
+        import pulumi_gcp as gcp
+
+        binding = gcp.gemini.RepositoryGroupIamBinding("binding",
+            project=example["project"],
+            location=example["location"],
+            code_repository_index=example["codeRepositoryIndex"],
+            repository_group_id=example["repositoryGroupId"],
+            role="roles/cloudaicompanion.repositoryGroupsUser",
+            members=["user:jane@example.com"])
+        ```
+
+        ## gemini.RepositoryGroupIamMember
+
+        ```python
+        import pulumi
+        import pulumi_gcp as gcp
+
+        member = gcp.gemini.RepositoryGroupIamMember("member",
+            project=example["project"],
+            location=example["location"],
+            code_repository_index=example["codeRepositoryIndex"],
+            repository_group_id=example["repositoryGroupId"],
+            role="roles/cloudaicompanion.repositoryGroupsUser",
+            member="user:jane@example.com")
+        ```
+
         ## Import
 
         For all import syntaxes, the "resource in question" can take any of the following forms:

pulumi_gcp/gemini/repository_group_iam_policy.py

@@ -217,6 +217,135 @@ class RepositoryGroupIamPolicy(pulumi.CustomResource):
                  repository_group_id: Optional[pulumi.Input[str]] = None,
                  __props__=None):
         """
+        Three different resources help you manage your IAM policy for Gemini for Google Cloud RepositoryGroup. Each of these resources serves a different use case:
+
+        * `gemini.RepositoryGroupIamPolicy`: Authoritative. Sets the IAM policy for the repositorygroup and replaces any existing policy already attached.
+        * `gemini.RepositoryGroupIamBinding`: Authoritative for a given role. Updates the IAM policy to grant a role to a list of members. Other roles within the IAM policy for the repositorygroup are preserved.
+        * `gemini.RepositoryGroupIamMember`: Non-authoritative. Updates the IAM policy to grant a role to a new member. Other members for the role for the repositorygroup are preserved.
+
+        A data source can be used to retrieve policy data in advent you do not need creation
+
+        * `gemini.RepositoryGroupIamPolicy`: Retrieves the IAM policy for the repositorygroup
+
+        > **Note:** `gemini.RepositoryGroupIamPolicy` **cannot** be used in conjunction with `gemini.RepositoryGroupIamBinding` and `gemini.RepositoryGroupIamMember` or they will fight over what your policy should be.
+
+        > **Note:** `gemini.RepositoryGroupIamBinding` resources **can be** used in conjunction with `gemini.RepositoryGroupIamMember` resources **only if** they do not grant privilege to the same role.
+
+        ## gemini.RepositoryGroupIamPolicy
+
+        ```python
+        import pulumi
+        import pulumi_gcp as gcp
+
+        admin = gcp.organizations.get_iam_policy(bindings=[{
+            "role": "roles/cloudaicompanion.repositoryGroupsUser",
+            "members": ["user:jane@example.com"],
+        }])
+        policy = gcp.gemini.RepositoryGroupIamPolicy("policy",
+            project=example["project"],
+            location=example["location"],
+            code_repository_index=example["codeRepositoryIndex"],
+            repository_group_id=example["repositoryGroupId"],
+            policy_data=admin.policy_data)
+        ```
+
+        ## gemini.RepositoryGroupIamBinding
+
+        ```python
+        import pulumi
+        import pulumi_gcp as gcp
+
+        binding = gcp.gemini.RepositoryGroupIamBinding("binding",
+            project=example["project"],
+            location=example["location"],
+            code_repository_index=example["codeRepositoryIndex"],
+            repository_group_id=example["repositoryGroupId"],
+            role="roles/cloudaicompanion.repositoryGroupsUser",
+            members=["user:jane@example.com"])
+        ```
+
+        ## gemini.RepositoryGroupIamMember
+
+        ```python
+        import pulumi
+        import pulumi_gcp as gcp
+
+        member = gcp.gemini.RepositoryGroupIamMember("member",
+            project=example["project"],
+            location=example["location"],
+            code_repository_index=example["codeRepositoryIndex"],
+            repository_group_id=example["repositoryGroupId"],
+            role="roles/cloudaicompanion.repositoryGroupsUser",
+            member="user:jane@example.com")
+        ```
+
+        ## This resource supports User Project Overrides.
+
+        - 
+
+        # IAM policy for Gemini for Google Cloud RepositoryGroup
+        Three different resources help you manage your IAM policy for Gemini for Google Cloud RepositoryGroup. Each of these resources serves a different use case:
+
+        * `gemini.RepositoryGroupIamPolicy`: Authoritative. Sets the IAM policy for the repositorygroup and replaces any existing policy already attached.
+        * `gemini.RepositoryGroupIamBinding`: Authoritative for a given role. Updates the IAM policy to grant a role to a list of members. Other roles within the IAM policy for the repositorygroup are preserved.
+        * `gemini.RepositoryGroupIamMember`: Non-authoritative. Updates the IAM policy to grant a role to a new member. Other members for the role for the repositorygroup are preserved.
+
+        A data source can be used to retrieve policy data in advent you do not need creation
+
+        * `gemini.RepositoryGroupIamPolicy`: Retrieves the IAM policy for the repositorygroup
+
+        > **Note:** `gemini.RepositoryGroupIamPolicy` **cannot** be used in conjunction with `gemini.RepositoryGroupIamBinding` and `gemini.RepositoryGroupIamMember` or they will fight over what your policy should be.
+
+        > **Note:** `gemini.RepositoryGroupIamBinding` resources **can be** used in conjunction with `gemini.RepositoryGroupIamMember` resources **only if** they do not grant privilege to the same role.
+
+        ## gemini.RepositoryGroupIamPolicy
+
+        ```python
+        import pulumi
+        import pulumi_gcp as gcp
+
+        admin = gcp.organizations.get_iam_policy(bindings=[{
+            "role": "roles/cloudaicompanion.repositoryGroupsUser",
+            "members": ["user:jane@example.com"],
+        }])
+        policy = gcp.gemini.RepositoryGroupIamPolicy("policy",
+            project=example["project"],
+            location=example["location"],
+            code_repository_index=example["codeRepositoryIndex"],
+            repository_group_id=example["repositoryGroupId"],
+            policy_data=admin.policy_data)
+        ```
+
+        ## gemini.RepositoryGroupIamBinding
+
+        ```python
+        import pulumi
+        import pulumi_gcp as gcp
+
+        binding = gcp.gemini.RepositoryGroupIamBinding("binding",
+            project=example["project"],
+            location=example["location"],
+            code_repository_index=example["codeRepositoryIndex"],
+            repository_group_id=example["repositoryGroupId"],
+            role="roles/cloudaicompanion.repositoryGroupsUser",
+            members=["user:jane@example.com"])
+        ```
+
+        ## gemini.RepositoryGroupIamMember
+
+        ```python
+        import pulumi
+        import pulumi_gcp as gcp
+
+        member = gcp.gemini.RepositoryGroupIamMember("member",
+            project=example["project"],
+            location=example["location"],
+            code_repository_index=example["codeRepositoryIndex"],
+            repository_group_id=example["repositoryGroupId"],
+            role="roles/cloudaicompanion.repositoryGroupsUser",
+            member="user:jane@example.com")
+        ```
+
         ## Import
 
         For all import syntaxes, the "resource in question" can take any of the following forms:
@@ -272,6 +401,135 @@ class RepositoryGroupIamPolicy(pulumi.CustomResource):
                  args: RepositoryGroupIamPolicyArgs,
                  opts: Optional[pulumi.ResourceOptions] = None):
         """
+        Three different resources help you manage your IAM policy for Gemini for Google Cloud RepositoryGroup. Each of these resources serves a different use case:
+
+        * `gemini.RepositoryGroupIamPolicy`: Authoritative. Sets the IAM policy for the repositorygroup and replaces any existing policy already attached.
+        * `gemini.RepositoryGroupIamBinding`: Authoritative for a given role. Updates the IAM policy to grant a role to a list of members. Other roles within the IAM policy for the repositorygroup are preserved.
+        * `gemini.RepositoryGroupIamMember`: Non-authoritative. Updates the IAM policy to grant a role to a new member. Other members for the role for the repositorygroup are preserved.
+
+        A data source can be used to retrieve policy data in advent you do not need creation
+
+        * `gemini.RepositoryGroupIamPolicy`: Retrieves the IAM policy for the repositorygroup
+
+        > **Note:** `gemini.RepositoryGroupIamPolicy` **cannot** be used in conjunction with `gemini.RepositoryGroupIamBinding` and `gemini.RepositoryGroupIamMember` or they will fight over what your policy should be.
+
+        > **Note:** `gemini.RepositoryGroupIamBinding` resources **can be** used in conjunction with `gemini.RepositoryGroupIamMember` resources **only if** they do not grant privilege to the same role.
+
+        ## gemini.RepositoryGroupIamPolicy
+
+        ```python
+        import pulumi
+        import pulumi_gcp as gcp
+
+        admin = gcp.organizations.get_iam_policy(bindings=[{
+            "role": "roles/cloudaicompanion.repositoryGroupsUser",
+            "members": ["user:jane@example.com"],
+        }])
+        policy = gcp.gemini.RepositoryGroupIamPolicy("policy",
+            project=example["project"],
+            location=example["location"],
+            code_repository_index=example["codeRepositoryIndex"],
+            repository_group_id=example["repositoryGroupId"],
+            policy_data=admin.policy_data)
+        ```
+
+        ## gemini.RepositoryGroupIamBinding
+
+        ```python
+        import pulumi
+        import pulumi_gcp as gcp
+
+        binding = gcp.gemini.RepositoryGroupIamBinding("binding",
+            project=example["project"],
+            location=example["location"],
+            code_repository_index=example["codeRepositoryIndex"],
+            repository_group_id=example["repositoryGroupId"],
+            role="roles/cloudaicompanion.repositoryGroupsUser",
+            members=["user:jane@example.com"])
+        ```
+
+        ## gemini.RepositoryGroupIamMember
+
+        ```python
+        import pulumi
+        import pulumi_gcp as gcp
+
+        member = gcp.gemini.RepositoryGroupIamMember("member",
+            project=example["project"],
+            location=example["location"],
+            code_repository_index=example["codeRepositoryIndex"],
+            repository_group_id=example["repositoryGroupId"],
+            role="roles/cloudaicompanion.repositoryGroupsUser",
+            member="user:jane@example.com")
+        ```
+
+        ## This resource supports User Project Overrides.
+
+        - 
+
+        # IAM policy for Gemini for Google Cloud RepositoryGroup
+        Three different resources help you manage your IAM policy for Gemini for Google Cloud RepositoryGroup. Each of these resources serves a different use case:
+
+        * `gemini.RepositoryGroupIamPolicy`: Authoritative. Sets the IAM policy for the repositorygroup and replaces any existing policy already attached.
+        * `gemini.RepositoryGroupIamBinding`: Authoritative for a given role. Updates the IAM policy to grant a role to a list of members. Other roles within the IAM policy for the repositorygroup are preserved.
+        * `gemini.RepositoryGroupIamMember`: Non-authoritative. Updates the IAM policy to grant a role to a new member. Other members for the role for the repositorygroup are preserved.
+
+        A data source can be used to retrieve policy data in advent you do not need creation
+
+        * `gemini.RepositoryGroupIamPolicy`: Retrieves the IAM policy for the repositorygroup
+
+        > **Note:** `gemini.RepositoryGroupIamPolicy` **cannot** be used in conjunction with `gemini.RepositoryGroupIamBinding` and `gemini.RepositoryGroupIamMember` or they will fight over what your policy should be.
+
+        > **Note:** `gemini.RepositoryGroupIamBinding` resources **can be** used in conjunction with `gemini.RepositoryGroupIamMember` resources **only if** they do not grant privilege to the same role.
+
+        ## gemini.RepositoryGroupIamPolicy
+
+        ```python
+        import pulumi
+        import pulumi_gcp as gcp
+
+        admin = gcp.organizations.get_iam_policy(bindings=[{
+            "role": "roles/cloudaicompanion.repositoryGroupsUser",
+            "members": ["user:jane@example.com"],
+        }])
+        policy = gcp.gemini.RepositoryGroupIamPolicy("policy",
+            project=example["project"],
+            location=example["location"],
+            code_repository_index=example["codeRepositoryIndex"],
+            repository_group_id=example["repositoryGroupId"],
+            policy_data=admin.policy_data)
+        ```
+
+        ## gemini.RepositoryGroupIamBinding
+
+        ```python
+        import pulumi
+        import pulumi_gcp as gcp
+
+        binding = gcp.gemini.RepositoryGroupIamBinding("binding",
+            project=example["project"],
+            location=example["location"],
+            code_repository_index=example["codeRepositoryIndex"],
+            repository_group_id=example["repositoryGroupId"],
+            role="roles/cloudaicompanion.repositoryGroupsUser",
+            members=["user:jane@example.com"])
+        ```
+
+        ## gemini.RepositoryGroupIamMember
+
+        ```python
+        import pulumi
+        import pulumi_gcp as gcp
+
+        member = gcp.gemini.RepositoryGroupIamMember("member",
+            project=example["project"],
+            location=example["location"],
+            code_repository_index=example["codeRepositoryIndex"],
+            repository_group_id=example["repositoryGroupId"],
+            role="roles/cloudaicompanion.repositoryGroupsUser",
+            member="user:jane@example.com")
+        ```
+
         ## Import
 
         For all import syntaxes, the "resource in question" can take any of the following forms:

pulumi_gcp/gkehub/_inputs.py

@@ -333,6 +333,10 @@ if not MYPY:
         Git repo configuration for the cluster
         Structure is documented below.
         """
+        metrics_gcp_service_account_email: NotRequired[pulumi.Input[str]]
+        """
+        The Email of the Google Cloud Service Account (GSA) used for exporting Config Sync metrics to Cloud Monitoring. The GSA should have the Monitoring Metric Writer(roles/monitoring.metricWriter) IAM role. The Kubernetes ServiceAccount `default` in the namespace `config-management-monitoring` should be bound to the GSA.
+        """
         oci: NotRequired[pulumi.Input['FeatureFleetDefaultMemberConfigConfigmanagementConfigSyncOciArgsDict']]
         """
         OCI repo configuration for the cluster
@@ -354,6 +358,7 @@ class FeatureFleetDefaultMemberConfigConfigmanagementConfigSyncArgs:
     def __init__(__self__, *,
                  enabled: Optional[pulumi.Input[bool]] = None,
                  git: Optional[pulumi.Input['FeatureFleetDefaultMemberConfigConfigmanagementConfigSyncGitArgs']] = None,
+                 metrics_gcp_service_account_email: Optional[pulumi.Input[str]] = None,
                  oci: Optional[pulumi.Input['FeatureFleetDefaultMemberConfigConfigmanagementConfigSyncOciArgs']] = None,
                  prevent_drift: Optional[pulumi.Input[bool]] = None,
                  source_format: Optional[pulumi.Input[str]] = None):
@@ -361,6 +366,7 @@ class FeatureFleetDefaultMemberConfigConfigmanagementConfigSyncArgs:
         :param pulumi.Input[bool] enabled: Enables the installation of ConfigSync. If set to true, ConfigSync resources will be created and the other ConfigSync fields will be applied if exist. If set to false, all other ConfigSync fields will be ignored, ConfigSync resources will be deleted. If omitted, ConfigSync resources will be managed depends on the presence of the git or oci field.
         :param pulumi.Input['FeatureFleetDefaultMemberConfigConfigmanagementConfigSyncGitArgs'] git: Git repo configuration for the cluster
                Structure is documented below.
+        :param pulumi.Input[str] metrics_gcp_service_account_email: The Email of the Google Cloud Service Account (GSA) used for exporting Config Sync metrics to Cloud Monitoring. The GSA should have the Monitoring Metric Writer(roles/monitoring.metricWriter) IAM role. The Kubernetes ServiceAccount `default` in the namespace `config-management-monitoring` should be bound to the GSA.
         :param pulumi.Input['FeatureFleetDefaultMemberConfigConfigmanagementConfigSyncOciArgs'] oci: OCI repo configuration for the cluster
                Structure is documented below.
         :param pulumi.Input[bool] prevent_drift: Set to true to enable the Config Sync admission webhook to prevent drifts. If set to `false`, disables the Config Sync admission webhook and does not prevent drifts.
@@ -370,6 +376,8 @@ class FeatureFleetDefaultMemberConfigConfigmanagementConfigSyncArgs:
             pulumi.set(__self__, "enabled", enabled)
         if git is not None:
             pulumi.set(__self__, "git", git)
+        if metrics_gcp_service_account_email is not None:
+            pulumi.set(__self__, "metrics_gcp_service_account_email", metrics_gcp_service_account_email)
         if oci is not None:
             pulumi.set(__self__, "oci", oci)
         if prevent_drift is not None:
@@ -402,6 +410,18 @@ class FeatureFleetDefaultMemberConfigConfigmanagementConfigSyncArgs:
     def git(self, value: Optional[pulumi.Input['FeatureFleetDefaultMemberConfigConfigmanagementConfigSyncGitArgs']]):
         pulumi.set(self, "git", value)
 
+    @property
+    @pulumi.getter(name="metricsGcpServiceAccountEmail")
+    def metrics_gcp_service_account_email(self) -> Optional[pulumi.Input[str]]:
+        """
+        The Email of the Google Cloud Service Account (GSA) used for exporting Config Sync metrics to Cloud Monitoring. The GSA should have the Monitoring Metric Writer(roles/monitoring.metricWriter) IAM role. The Kubernetes ServiceAccount `default` in the namespace `config-management-monitoring` should be bound to the GSA.
+        """
+        return pulumi.get(self, "metrics_gcp_service_account_email")
+
+    @metrics_gcp_service_account_email.setter
+    def metrics_gcp_service_account_email(self, value: Optional[pulumi.Input[str]]):
+        pulumi.set(self, "metrics_gcp_service_account_email", value)
+
     @property
     @pulumi.getter
     def oci(self) -> Optional[pulumi.Input['FeatureFleetDefaultMemberConfigConfigmanagementConfigSyncOciArgs']]:

pulumi_gcp/gkehub/membership_binding.py

@@ -423,16 +423,16 @@ class MembershipBinding(pulumi.CustomResource):
             network="default",
             subnetwork="default")
         membership = gcp.gkehub.Membership("membership",
-            membership_id="tf-test-membership_75223",
+            membership_id="tf-test-membership_41819",
             endpoint={
                 "gke_cluster": {
                     "resource_link": primary.id.apply(lambda id: f"//container.googleapis.com/{id}"),
                 },
             },
             opts = pulumi.ResourceOptions(depends_on=[primary]))
-        scope = gcp.gkehub.Scope("scope", scope_id="tf-test-scope_41819")
+        scope = gcp.gkehub.Scope("scope", scope_id="tf-test-scope_75092")
         membership_binding = gcp.gkehub.MembershipBinding("membership_binding",
-            membership_binding_id="tf-test-membership-binding_75092",
+            membership_binding_id="tf-test-membership-binding_2605",
             scope=scope.name,
             membership_id=membership.membership_id,
             location="global",
@@ -519,16 +519,16 @@ class MembershipBinding(pulumi.CustomResource):
             network="default",
             subnetwork="default")
         membership = gcp.gkehub.Membership("membership",
-            membership_id="tf-test-membership_75223",
+            membership_id="tf-test-membership_41819",
             endpoint={
                 "gke_cluster": {
                     "resource_link": primary.id.apply(lambda id: f"//container.googleapis.com/{id}"),
                 },
             },
             opts = pulumi.ResourceOptions(depends_on=[primary]))
-        scope = gcp.gkehub.Scope("scope", scope_id="tf-test-scope_41819")
+        scope = gcp.gkehub.Scope("scope", scope_id="tf-test-scope_75092")
         membership_binding = gcp.gkehub.MembershipBinding("membership_binding",
-            membership_binding_id="tf-test-membership-binding_75092",
+            membership_binding_id="tf-test-membership-binding_2605",
             scope=scope.name,
             membership_id=membership.membership_id,
             location="global",