PyPI - pulumi-gcp - Versions diffs - 8.31.0a1747205151__py3-none-any.whl → 8.32.0__py3-none-any.whl - Mend

pulumi-gcp 8.31.0a1747205151py3-none-any.whl → 8.32.0py3-none-any.whl

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (289) hide show

pulumi_gcp/__init__.py +96 -0
pulumi_gcp/accesscontextmanager/authorized_orgs_desc.py +2 -2
pulumi_gcp/alloydb/_inputs.py +164 -0
pulumi_gcp/alloydb/outputs.py +211 -0
pulumi_gcp/apigateway/api_config_iam_binding.py +13 -0
pulumi_gcp/apigateway/api_config_iam_member.py +13 -0
pulumi_gcp/apigateway/api_config_iam_policy.py +13 -0
pulumi_gcp/apigateway/api_iam_binding.py +13 -0
pulumi_gcp/apigateway/api_iam_member.py +13 -0
pulumi_gcp/apigateway/api_iam_policy.py +13 -0
pulumi_gcp/apigateway/gateway_iam_binding.py +13 -0
pulumi_gcp/apigateway/gateway_iam_member.py +13 -0
pulumi_gcp/apigateway/gateway_iam_policy.py +13 -0
pulumi_gcp/apigateway/get_api_config_iam_policy.py +2 -0
pulumi_gcp/apigateway/get_api_iam_policy.py +2 -0
pulumi_gcp/apigateway/get_gateway_iam_policy.py +2 -0
pulumi_gcp/apigee/_inputs.py +20 -0
pulumi_gcp/apigee/environment_iam_binding.py +27 -0
pulumi_gcp/apigee/environment_iam_member.py +27 -0
pulumi_gcp/apigee/environment_iam_policy.py +27 -0
pulumi_gcp/apigee/get_environment_iam_policy.py +6 -0
pulumi_gcp/apigee/outputs.py +12 -0
pulumi_gcp/beyondcorp/__init__.py +1 -0
pulumi_gcp/beyondcorp/application.py +8 -4
pulumi_gcp/beyondcorp/application_iam_binding.py +26 -0
pulumi_gcp/beyondcorp/application_iam_member.py +26 -0
pulumi_gcp/beyondcorp/application_iam_policy.py +26 -0
pulumi_gcp/beyondcorp/get_application_iam_policy.py +4 -0
pulumi_gcp/beyondcorp/get_security_gateway.py +222 -0
pulumi_gcp/beyondcorp/get_security_gateway_iam_policy.py +2 -0
pulumi_gcp/beyondcorp/outputs.py +45 -0
pulumi_gcp/beyondcorp/security_gateway_iam_binding.py +13 -0
pulumi_gcp/beyondcorp/security_gateway_iam_member.py +13 -0
pulumi_gcp/beyondcorp/security_gateway_iam_policy.py +13 -0
pulumi_gcp/bigquery/__init__.py +1 -0
pulumi_gcp/bigquery/connection_iam_binding.py +4 -11
pulumi_gcp/bigquery/connection_iam_member.py +4 -11
pulumi_gcp/bigquery/connection_iam_policy.py +4 -11
pulumi_gcp/bigquery/data_transfer_config.py +2 -2
pulumi_gcp/bigquery/get_connection_iam_policy.py +2 -4
pulumi_gcp/bigquery/get_table_iam_policy.py +4 -0
pulumi_gcp/bigquery/iam_binding.py +26 -0
pulumi_gcp/bigquery/iam_member.py +26 -0
pulumi_gcp/bigquery/iam_policy.py +26 -0
pulumi_gcp/bigquery/routine.py +56 -0
pulumi_gcp/bigquery/row_access_policy.py +787 -0
pulumi_gcp/bigqueryanalyticshub/data_exchange_iam_binding.py +7 -7
pulumi_gcp/bigqueryanalyticshub/data_exchange_iam_member.py +7 -7
pulumi_gcp/bigqueryanalyticshub/data_exchange_iam_policy.py +7 -7
pulumi_gcp/bigqueryanalyticshub/get_data_exchange_iam_policy.py +2 -2
pulumi_gcp/bigqueryanalyticshub/get_listing_iam_policy.py +2 -2
pulumi_gcp/bigqueryanalyticshub/listing_iam_binding.py +7 -7
pulumi_gcp/bigqueryanalyticshub/listing_iam_member.py +7 -7
pulumi_gcp/bigqueryanalyticshub/listing_iam_policy.py +7 -7
pulumi_gcp/bigqueryanalyticshub/listing_subscription.py +6 -6
pulumi_gcp/bigquerydatapolicy/data_policy_iam_binding.py +13 -0
pulumi_gcp/bigquerydatapolicy/data_policy_iam_member.py +13 -0
pulumi_gcp/bigquerydatapolicy/data_policy_iam_policy.py +13 -0
pulumi_gcp/bigquerydatapolicy/get_iam_policy.py +2 -0
pulumi_gcp/bigtable/logical_view.py +49 -0
pulumi_gcp/bigtable/table.py +7 -7
pulumi_gcp/certificateauthority/_inputs.py +20 -19
pulumi_gcp/certificateauthority/authority.py +70 -0
pulumi_gcp/certificateauthority/outputs.py +12 -11
pulumi_gcp/cloudbuild/trigger.py +2 -2
pulumi_gcp/clouddeploy/get_delivery_pipeline_iam_policy.py +6 -0
pulumi_gcp/clouddeploy/get_target_iam_policy.py +6 -0
pulumi_gcp/cloudfunctionsv2/function.py +4 -4
pulumi_gcp/colab/schedule.py +2 -2
pulumi_gcp/compute/__init__.py +1 -0
pulumi_gcp/compute/_inputs.py +438 -0
pulumi_gcp/compute/backend_service.py +259 -51
pulumi_gcp/compute/cross_site_network.py +374 -0
pulumi_gcp/compute/get_backend_service.py +23 -1
pulumi_gcp/compute/get_global_forwarding_rule.py +23 -1
pulumi_gcp/compute/get_health_check.py +12 -1
pulumi_gcp/compute/get_instance_template.py +12 -1
pulumi_gcp/compute/get_network_endpoint_group.py +12 -1
pulumi_gcp/compute/global_forwarding_rule.py +199 -0
pulumi_gcp/compute/health_check.py +120 -0
pulumi_gcp/compute/instance_template.py +28 -0
pulumi_gcp/compute/network_endpoint_group.py +28 -0
pulumi_gcp/compute/outputs.py +463 -0
pulumi_gcp/compute/region_backend_service.py +58 -51
pulumi_gcp/compute/region_health_check.py +120 -0
pulumi_gcp/container/_inputs.py +6 -6
pulumi_gcp/container/cluster.py +47 -0
pulumi_gcp/container/get_cluster.py +12 -1
pulumi_gcp/container/outputs.py +4 -4
pulumi_gcp/datacatalog/entry_group_iam_binding.py +34 -0
pulumi_gcp/datacatalog/entry_group_iam_member.py +34 -0
pulumi_gcp/datacatalog/entry_group_iam_policy.py +34 -0
pulumi_gcp/datacatalog/get_entry_group_iam_policy.py +8 -0
pulumi_gcp/datacatalog/get_tag_template_iam_policy.py +8 -0
pulumi_gcp/datacatalog/get_taxonomy_iam_policy.py +8 -0
pulumi_gcp/datacatalog/tag_template_iam_binding.py +34 -0
pulumi_gcp/datacatalog/tag_template_iam_member.py +34 -0
pulumi_gcp/datacatalog/tag_template_iam_policy.py +34 -0
pulumi_gcp/datacatalog/taxonomy_iam_binding.py +34 -0
pulumi_gcp/datacatalog/taxonomy_iam_member.py +34 -0
pulumi_gcp/datacatalog/taxonomy_iam_policy.py +34 -0
pulumi_gcp/dataplex/__init__.py +5 -0
pulumi_gcp/dataplex/_inputs.py +98 -0
pulumi_gcp/dataplex/aspect_type_iam_binding.py +13 -0
pulumi_gcp/dataplex/aspect_type_iam_member.py +13 -0
pulumi_gcp/dataplex/aspect_type_iam_policy.py +13 -0
pulumi_gcp/dataplex/asset_iam_binding.py +53 -0
pulumi_gcp/dataplex/asset_iam_member.py +53 -0
pulumi_gcp/dataplex/asset_iam_policy.py +53 -0
pulumi_gcp/dataplex/datascan_iam_binding.py +13 -0
pulumi_gcp/dataplex/datascan_iam_member.py +13 -0
pulumi_gcp/dataplex/datascan_iam_policy.py +13 -0
pulumi_gcp/dataplex/entry_group_iam_binding.py +13 -0
pulumi_gcp/dataplex/entry_group_iam_member.py +13 -0
pulumi_gcp/dataplex/entry_group_iam_policy.py +13 -0
pulumi_gcp/dataplex/entry_type_iam_binding.py +13 -0
pulumi_gcp/dataplex/entry_type_iam_member.py +13 -0
pulumi_gcp/dataplex/entry_type_iam_policy.py +13 -0
pulumi_gcp/dataplex/get_aspect_type_iam_policy.py +2 -0
pulumi_gcp/dataplex/get_asset_iam_policy.py +10 -0
pulumi_gcp/dataplex/get_datascan_iam_policy.py +2 -0
pulumi_gcp/dataplex/get_entry_group_iam_policy.py +2 -0
pulumi_gcp/dataplex/get_entry_type_iam_policy.py +2 -0
pulumi_gcp/dataplex/get_glossary_iam_policy.py +185 -0
pulumi_gcp/dataplex/get_lake_iam_policy.py +6 -0
pulumi_gcp/dataplex/get_task_iam_policy.py +2 -0
pulumi_gcp/dataplex/get_zone_iam_policy.py +8 -0
pulumi_gcp/dataplex/glossary.py +772 -0
pulumi_gcp/dataplex/glossary_iam_binding.py +837 -0
pulumi_gcp/dataplex/glossary_iam_member.py +837 -0
pulumi_gcp/dataplex/glossary_iam_policy.py +676 -0
pulumi_gcp/dataplex/lake_iam_binding.py +27 -0
pulumi_gcp/dataplex/lake_iam_member.py +27 -0
pulumi_gcp/dataplex/lake_iam_policy.py +27 -0
pulumi_gcp/dataplex/outputs.py +56 -0
pulumi_gcp/dataplex/task_iam_binding.py +13 -0
pulumi_gcp/dataplex/task_iam_member.py +13 -0
pulumi_gcp/dataplex/task_iam_policy.py +13 -0
pulumi_gcp/dataplex/zone_iam_binding.py +40 -0
pulumi_gcp/dataplex/zone_iam_member.py +40 -0
pulumi_gcp/dataplex/zone_iam_policy.py +40 -0
pulumi_gcp/dataproc/autoscaling_policy_iam_binding.py +4 -25
pulumi_gcp/dataproc/autoscaling_policy_iam_member.py +4 -25
pulumi_gcp/dataproc/autoscaling_policy_iam_policy.py +4 -25
pulumi_gcp/dataproc/get_autoscaling_policy_iam_policy.py +2 -8
pulumi_gcp/dataproc/get_metastore_database_iam_policy.py +8 -0
pulumi_gcp/dataproc/get_metastore_federation_iam_policy.py +2 -0
pulumi_gcp/dataproc/get_metastore_service.py +1 -12
pulumi_gcp/dataproc/get_metastore_service_iam_policy.py +2 -0
pulumi_gcp/dataproc/get_metastore_table_iam_policy.py +10 -0
pulumi_gcp/dataproc/metastore_database_iam_binding.py +40 -0
pulumi_gcp/dataproc/metastore_database_iam_member.py +40 -0
pulumi_gcp/dataproc/metastore_database_iam_policy.py +40 -0
pulumi_gcp/dataproc/metastore_federation_iam_binding.py +13 -0
pulumi_gcp/dataproc/metastore_federation_iam_member.py +13 -0
pulumi_gcp/dataproc/metastore_federation_iam_policy.py +13 -0
pulumi_gcp/dataproc/metastore_service.py +0 -61
pulumi_gcp/dataproc/metastore_service_iam_binding.py +13 -0
pulumi_gcp/dataproc/metastore_service_iam_member.py +13 -0
pulumi_gcp/dataproc/metastore_service_iam_policy.py +13 -0
pulumi_gcp/dataproc/metastore_table_iam_binding.py +53 -0
pulumi_gcp/dataproc/metastore_table_iam_member.py +53 -0
pulumi_gcp/dataproc/metastore_table_iam_policy.py +53 -0
pulumi_gcp/diagflow/_inputs.py +6245 -2553
pulumi_gcp/diagflow/cx_agent.py +60 -0
pulumi_gcp/diagflow/cx_flow.py +306 -0
pulumi_gcp/diagflow/cx_page.py +290 -0
pulumi_gcp/diagflow/entity_type.py +2 -2
pulumi_gcp/diagflow/outputs.py +4924 -2135
pulumi_gcp/edgecontainer/node_pool.py +2 -2
pulumi_gcp/endpoints/consumers_iam_binding.py +26 -0
pulumi_gcp/endpoints/consumers_iam_member.py +26 -0
pulumi_gcp/endpoints/consumers_iam_policy.py +26 -0
pulumi_gcp/endpoints/get_service_consumers_iam_policy.py +8 -0
pulumi_gcp/endpoints/get_service_iam_policy.py +6 -0
pulumi_gcp/endpoints/service_iam_binding.py +13 -0
pulumi_gcp/endpoints/service_iam_member.py +13 -0
pulumi_gcp/endpoints/service_iam_policy.py +13 -0
pulumi_gcp/firebase/__init__.py +3 -0
pulumi_gcp/firebase/_inputs.py +1527 -0
pulumi_gcp/firebase/app_hosting_backend.py +104 -0
pulumi_gcp/firebase/app_hosting_default_domain.py +721 -0
pulumi_gcp/firebase/app_hosting_domain.py +796 -0
pulumi_gcp/firebase/app_hosting_traffic.py +914 -0
pulumi_gcp/firebase/extensions_instance.py +4 -4
pulumi_gcp/firebase/outputs.py +1075 -0
pulumi_gcp/firestore/database.py +9 -0
pulumi_gcp/gemini/get_repository_group_iam_policy.py +4 -0
pulumi_gcp/gemini/repository_group_iam_binding.py +26 -0
pulumi_gcp/gemini/repository_group_iam_member.py +26 -0
pulumi_gcp/gemini/repository_group_iam_policy.py +26 -0
pulumi_gcp/gkebackup/backup_channel.py +9 -9
pulumi_gcp/gkebackup/restore_channel.py +9 -9
pulumi_gcp/gkehub/get_membership_iam_policy.py +2 -0
pulumi_gcp/gkehub/get_scope_iam_policy.py +2 -0
pulumi_gcp/gkehub/membership_iam_binding.py +13 -0
pulumi_gcp/gkehub/membership_iam_member.py +13 -0
pulumi_gcp/gkehub/membership_iam_policy.py +13 -0
pulumi_gcp/gkehub/scope_iam_binding.py +13 -0
pulumi_gcp/gkehub/scope_iam_member.py +13 -0
pulumi_gcp/gkehub/scope_iam_policy.py +13 -0
pulumi_gcp/iam/__init__.py +4 -0
pulumi_gcp/iam/_inputs.py +432 -0
pulumi_gcp/iam/get_workload_identity_pool.py +35 -1
pulumi_gcp/iam/get_workload_identity_pool_iam_policy.py +156 -0
pulumi_gcp/iam/oauth_client_credential.py +6 -0
pulumi_gcp/iam/outputs.py +510 -0
pulumi_gcp/iam/workload_identity_pool.py +446 -24
pulumi_gcp/iam/workload_identity_pool_iam_binding.py +539 -0
pulumi_gcp/iam/workload_identity_pool_iam_member.py +539 -0
pulumi_gcp/iam/workload_identity_pool_iam_policy.py +358 -0
pulumi_gcp/iap/app_engine_service_iam_binding.py +14 -14
pulumi_gcp/iap/app_engine_service_iam_member.py +14 -14
pulumi_gcp/iap/app_engine_service_iam_policy.py +14 -14
pulumi_gcp/iap/app_engine_version_iam_binding.py +14 -14
pulumi_gcp/iap/app_engine_version_iam_member.py +14 -14
pulumi_gcp/iap/app_engine_version_iam_policy.py +14 -14
pulumi_gcp/iap/get_app_engine_service_iam_policy.py +4 -4
pulumi_gcp/iap/get_app_engine_version_iam_policy.py +4 -4
pulumi_gcp/iap/get_tunnel_dest_group_iam_policy.py +2 -0
pulumi_gcp/iap/get_tunnel_instance_iam_policy.py +6 -0
pulumi_gcp/iap/get_web_region_backend_service_iam_policy.py +6 -0
pulumi_gcp/iap/get_web_type_app_engine_iam_policy.py +2 -2
pulumi_gcp/iap/tunnel_dest_group_iam_binding.py +13 -0
pulumi_gcp/iap/tunnel_dest_group_iam_member.py +13 -0
pulumi_gcp/iap/tunnel_dest_group_iam_policy.py +13 -0
pulumi_gcp/iap/tunnel_instance_iam_binding.py +27 -0
pulumi_gcp/iap/tunnel_instance_iam_member.py +27 -0
pulumi_gcp/iap/tunnel_instance_iam_policy.py +27 -0
pulumi_gcp/iap/web_region_backend_service_iam_binding.py +27 -0
pulumi_gcp/iap/web_region_backend_service_iam_member.py +27 -0
pulumi_gcp/iap/web_region_backend_service_iam_policy.py +27 -0
pulumi_gcp/iap/web_type_app_enging_iam_binding.py +7 -7
pulumi_gcp/iap/web_type_app_enging_iam_member.py +7 -7
pulumi_gcp/iap/web_type_app_enging_iam_policy.py +7 -7
pulumi_gcp/lustre/__init__.py +1 -0
pulumi_gcp/lustre/get_instance.py +280 -0
pulumi_gcp/lustre/instance.py +12 -0
pulumi_gcp/netapp/backup.py +58 -2
pulumi_gcp/netapp/backup_vault.py +185 -0
pulumi_gcp/netapp/storage_pool.py +2 -2
pulumi_gcp/networkconnectivity/internal_range.py +47 -0
pulumi_gcp/networkconnectivity/regional_endpoint.py +13 -13
pulumi_gcp/networksecurity/intercept_deployment.py +10 -0
pulumi_gcp/networksecurity/intercept_deployment_group.py +8 -0
pulumi_gcp/networksecurity/intercept_endpoint_group.py +12 -0
pulumi_gcp/networksecurity/intercept_endpoint_group_association.py +16 -0
pulumi_gcp/networkservices/_inputs.py +43 -0
pulumi_gcp/networkservices/edge_cache_origin.py +61 -0
pulumi_gcp/networkservices/outputs.py +43 -0
pulumi_gcp/pulumi-plugin.json +1 -1
pulumi_gcp/redis/get_instance.py +1 -12
pulumi_gcp/redis/instance.py +0 -61
pulumi_gcp/secretmanager/get_regional_secret_iam_policy.py +2 -0
pulumi_gcp/secretmanager/get_secret_iam_policy.py +2 -0
pulumi_gcp/secretmanager/regional_secret_iam_binding.py +13 -0
pulumi_gcp/secretmanager/regional_secret_iam_member.py +13 -0
pulumi_gcp/secretmanager/regional_secret_iam_policy.py +13 -0
pulumi_gcp/secretmanager/secret_iam_binding.py +13 -0
pulumi_gcp/secretmanager/secret_iam_member.py +13 -0
pulumi_gcp/secretmanager/secret_iam_policy.py +13 -0
pulumi_gcp/securesourcemanager/get_instance_iam_policy.py +2 -4
pulumi_gcp/securesourcemanager/get_repository_iam_policy.py +2 -4
pulumi_gcp/securesourcemanager/repository_iam_binding.py +4 -11
pulumi_gcp/securesourcemanager/repository_iam_member.py +4 -11
pulumi_gcp/securesourcemanager/repository_iam_policy.py +4 -11
pulumi_gcp/securitycenter/v2_organization_scc_big_query_export.py +2 -2
pulumi_gcp/securitycenter/v2_organization_scc_big_query_exports.py +2 -2
pulumi_gcp/spanner/database.py +56 -0
pulumi_gcp/spanner/get_database.py +12 -1
pulumi_gcp/storage/bucket.py +4 -4
pulumi_gcp/storage/get_bucket_object_content.py +29 -1
pulumi_gcp/vertex/ai_feature_online_store_featureview_iam_binding.py +13 -0
pulumi_gcp/vertex/ai_feature_online_store_featureview_iam_member.py +13 -0
pulumi_gcp/vertex/ai_feature_online_store_featureview_iam_policy.py +13 -0
pulumi_gcp/vertex/get_ai_feature_online_store_featureview_iam_policy.py +2 -0
pulumi_gcp/vmwareengine/external_address.py +4 -4
pulumi_gcp/workstations/get_workstation_config_iam_policy.py +6 -0
pulumi_gcp/workstations/get_workstation_iam_policy.py +10 -0
pulumi_gcp/workstations/workstation_config_iam_binding.py +33 -0
pulumi_gcp/workstations/workstation_config_iam_member.py +33 -0
pulumi_gcp/workstations/workstation_config_iam_policy.py +33 -0
pulumi_gcp/workstations/workstation_iam_binding.py +53 -0
pulumi_gcp/workstations/workstation_iam_member.py +53 -0
pulumi_gcp/workstations/workstation_iam_policy.py +53 -0
{pulumi_gcp-8.31.0a1747205151.dist-info → pulumi_gcp-8.32.0.dist-info}/METADATA +1 -1
{pulumi_gcp-8.31.0a1747205151.dist-info → pulumi_gcp-8.32.0.dist-info}/RECORD +289 -273
{pulumi_gcp-8.31.0a1747205151.dist-info → pulumi_gcp-8.32.0.dist-info}/WHEEL +1 -1
{pulumi_gcp-8.31.0a1747205151.dist-info → pulumi_gcp-8.32.0.dist-info}/top_level.txt +0 -0

pulumi_gcp/iam/outputs.py CHANGED Viewed

@@ -42,6 +42,12 @@ __all__ = [
     'WorkforcePoolProviderOidcClientSecretValue',
     'WorkforcePoolProviderOidcWebSsoConfig',
     'WorkforcePoolProviderSaml',
+    'WorkloadIdentityPoolIamBindingCondition',
+    'WorkloadIdentityPoolIamMemberCondition',
+    'WorkloadIdentityPoolInlineCertificateIssuanceConfig',
+    'WorkloadIdentityPoolInlineTrustConfig',
+    'WorkloadIdentityPoolInlineTrustConfigAdditionalTrustBundle',
+    'WorkloadIdentityPoolInlineTrustConfigAdditionalTrustBundleTrustAnchor',
     'WorkloadIdentityPoolProviderAws',
     'WorkloadIdentityPoolProviderOidc',
     'WorkloadIdentityPoolProviderSaml',
@@ -50,6 +56,10 @@ __all__ = [
     'WorkloadIdentityPoolProviderX509TrustStoreIntermediateCa',
     'WorkloadIdentityPoolProviderX509TrustStoreTrustAnchor',
     'GetTestablePermissionsPermissionResult',
+    'GetWorkloadIdentityPoolInlineCertificateIssuanceConfigResult',
+    'GetWorkloadIdentityPoolInlineTrustConfigResult',
+    'GetWorkloadIdentityPoolInlineTrustConfigAdditionalTrustBundleResult',
+    'GetWorkloadIdentityPoolInlineTrustConfigAdditionalTrustBundleTrustAnchorResult',
     'GetWorkloadIdentityPoolProviderAwResult',
     'GetWorkloadIdentityPoolProviderOidcResult',
     'GetWorkloadIdentityPoolProviderSamlResult',
@@ -1511,6 +1521,334 @@ class WorkforcePoolProviderSaml(dict):
         return pulumi.get(self, "idp_metadata_xml")
+@pulumi.output_type
+class WorkloadIdentityPoolIamBindingCondition(dict):
+    def __init__(__self__, *,
+                 expression: builtins.str,
+                 title: builtins.str,
+                 description: Optional[builtins.str] = None):
+        """
+        :param builtins.str expression: Textual representation of an expression in Common Expression Language syntax.
+        :param builtins.str title: A title for the expression, i.e. a short string describing its purpose.
+        """
+        pulumi.set(__self__, "expression", expression)
+        pulumi.set(__self__, "title", title)
+        if description is not None:
+            pulumi.set(__self__, "description", description)
+    @property
+    @pulumi.getter
+    def expression(self) -> builtins.str:
+        """
+        Textual representation of an expression in Common Expression Language syntax.
+        """
+        return pulumi.get(self, "expression")
+    @property
+    @pulumi.getter
+    def title(self) -> builtins.str:
+        """
+        A title for the expression, i.e. a short string describing its purpose.
+        """
+        return pulumi.get(self, "title")
+    @property
+    @pulumi.getter
+    def description(self) -> Optional[builtins.str]:
+        return pulumi.get(self, "description")
+@pulumi.output_type
+class WorkloadIdentityPoolIamMemberCondition(dict):
+    def __init__(__self__, *,
+                 expression: builtins.str,
+                 title: builtins.str,
+                 description: Optional[builtins.str] = None):
+        """
+        :param builtins.str expression: Textual representation of an expression in Common Expression Language syntax.
+        :param builtins.str title: A title for the expression, i.e. a short string describing its purpose.
+        """
+        pulumi.set(__self__, "expression", expression)
+        pulumi.set(__self__, "title", title)
+        if description is not None:
+            pulumi.set(__self__, "description", description)
+    @property
+    @pulumi.getter
+    def expression(self) -> builtins.str:
+        """
+        Textual representation of an expression in Common Expression Language syntax.
+        """
+        return pulumi.get(self, "expression")
+    @property
+    @pulumi.getter
+    def title(self) -> builtins.str:
+        """
+        A title for the expression, i.e. a short string describing its purpose.
+        """
+        return pulumi.get(self, "title")
+    @property
+    @pulumi.getter
+    def description(self) -> Optional[builtins.str]:
+        return pulumi.get(self, "description")
+@pulumi.output_type
+class WorkloadIdentityPoolInlineCertificateIssuanceConfig(dict):
+    @staticmethod
+    def __key_warning(key: str):
+        suggest = None
+        if key == "caPools":
+            suggest = "ca_pools"
+        elif key == "keyAlgorithm":
+            suggest = "key_algorithm"
+        elif key == "rotationWindowPercentage":
+            suggest = "rotation_window_percentage"
+        if suggest:
+            pulumi.log.warn(f"Key '{key}' not found in WorkloadIdentityPoolInlineCertificateIssuanceConfig. Access the value via the '{suggest}' property getter instead.")
+    def __getitem__(self, key: str) -> Any:
+        WorkloadIdentityPoolInlineCertificateIssuanceConfig.__key_warning(key)
+        return super().__getitem__(key)
+    def get(self, key: str, default = None) -> Any:
+        WorkloadIdentityPoolInlineCertificateIssuanceConfig.__key_warning(key)
+        return super().get(key, default)
+    def __init__(__self__, *,
+                 ca_pools: Mapping[str, builtins.str],
+                 key_algorithm: Optional[builtins.str] = None,
+                 lifetime: Optional[builtins.str] = None,
+                 rotation_window_percentage: Optional[builtins.int] = None):
+        """
+        :param Mapping[str, builtins.str] ca_pools: A required mapping of a cloud region to the CA pool resource located in that region used
+               for certificate issuance, adhering to these constraints:
+               * **Key format:** A supported cloud region name equivalent to the location identifier in
+               the corresponding map entry's value.
+               * **Value format:** A valid CA pool resource path format like:
+               `projects/{project}/locations/{location}/caPools/{ca_pool}`
+               * **Region Matching:** Workloads are ONLY issued certificates from CA pools within the
+               same region. Also the CA pool region (in value) must match the workload's region (key).
+        :param builtins.str key_algorithm: Key algorithm to use when generating the key pair. This key pair will be used to create
+               the certificate. If unspecified, this will default to `ECDSA_P256`.
+               * `RSA_2048`: Specifies RSA with a 2048-bit modulus.
+               * `RSA_3072`: Specifies RSA with a 3072-bit modulus.
+               * `RSA_4096`: Specifies RSA with a 4096-bit modulus.
+               * `ECDSA_P256`: Specifies ECDSA with curve P256.
+               * `ECDSA_P384`: Specifies ECDSA with curve P384.
+               Possible values are: `RSA_2048`, `RSA_3072`, `RSA_4096`, `ECDSA_P256`, `ECDSA_P384`.
+        :param builtins.str lifetime: Lifetime of the workload certificates issued by the CA pool in seconds. Must be between
+               `86400s` (24 hours) to `2592000s` (30 days), ends in the suffix "`s`" (indicating seconds)
+               and is preceded by the number of seconds. If unspecified, this will be defaulted to
+               `86400s` (24 hours).
+        :param builtins.int rotation_window_percentage: Rotation window percentage indicating when certificate rotation should be initiated based
+               on remaining lifetime. Must be between `50` - `80`. If unspecified, this will be defaulted
+               to `50`.
+        """
+        pulumi.set(__self__, "ca_pools", ca_pools)
+        if key_algorithm is not None:
+            pulumi.set(__self__, "key_algorithm", key_algorithm)
+        if lifetime is not None:
+            pulumi.set(__self__, "lifetime", lifetime)
+        if rotation_window_percentage is not None:
+            pulumi.set(__self__, "rotation_window_percentage", rotation_window_percentage)
+    @property
+    @pulumi.getter(name="caPools")
+    def ca_pools(self) -> Mapping[str, builtins.str]:
+        """
+        A required mapping of a cloud region to the CA pool resource located in that region used
+        for certificate issuance, adhering to these constraints:
+        * **Key format:** A supported cloud region name equivalent to the location identifier in
+        the corresponding map entry's value.
+        * **Value format:** A valid CA pool resource path format like:
+        `projects/{project}/locations/{location}/caPools/{ca_pool}`
+        * **Region Matching:** Workloads are ONLY issued certificates from CA pools within the
+        same region. Also the CA pool region (in value) must match the workload's region (key).
+        """
+        return pulumi.get(self, "ca_pools")
+    @property
+    @pulumi.getter(name="keyAlgorithm")
+    def key_algorithm(self) -> Optional[builtins.str]:
+        """
+        Key algorithm to use when generating the key pair. This key pair will be used to create
+        the certificate. If unspecified, this will default to `ECDSA_P256`.
+        * `RSA_2048`: Specifies RSA with a 2048-bit modulus.
+        * `RSA_3072`: Specifies RSA with a 3072-bit modulus.
+        * `RSA_4096`: Specifies RSA with a 4096-bit modulus.
+        * `ECDSA_P256`: Specifies ECDSA with curve P256.
+        * `ECDSA_P384`: Specifies ECDSA with curve P384.
+        Possible values are: `RSA_2048`, `RSA_3072`, `RSA_4096`, `ECDSA_P256`, `ECDSA_P384`.
+        """
+        return pulumi.get(self, "key_algorithm")
+    @property
+    @pulumi.getter
+    def lifetime(self) -> Optional[builtins.str]:
+        """
+        Lifetime of the workload certificates issued by the CA pool in seconds. Must be between
+        `86400s` (24 hours) to `2592000s` (30 days), ends in the suffix "`s`" (indicating seconds)
+        and is preceded by the number of seconds. If unspecified, this will be defaulted to
+        `86400s` (24 hours).
+        """
+        return pulumi.get(self, "lifetime")
+    @property
+    @pulumi.getter(name="rotationWindowPercentage")
+    def rotation_window_percentage(self) -> Optional[builtins.int]:
+        """
+        Rotation window percentage indicating when certificate rotation should be initiated based
+        on remaining lifetime. Must be between `50` - `80`. If unspecified, this will be defaulted
+        to `50`.
+        """
+        return pulumi.get(self, "rotation_window_percentage")
+@pulumi.output_type
+class WorkloadIdentityPoolInlineTrustConfig(dict):
+    @staticmethod
+    def __key_warning(key: str):
+        suggest = None
+        if key == "additionalTrustBundles":
+            suggest = "additional_trust_bundles"
+        if suggest:
+            pulumi.log.warn(f"Key '{key}' not found in WorkloadIdentityPoolInlineTrustConfig. Access the value via the '{suggest}' property getter instead.")
+    def __getitem__(self, key: str) -> Any:
+        WorkloadIdentityPoolInlineTrustConfig.__key_warning(key)
+        return super().__getitem__(key)
+    def get(self, key: str, default = None) -> Any:
+        WorkloadIdentityPoolInlineTrustConfig.__key_warning(key)
+        return super().get(key, default)
+    def __init__(__self__, *,
+                 additional_trust_bundles: Optional[Sequence['outputs.WorkloadIdentityPoolInlineTrustConfigAdditionalTrustBundle']] = None):
+        """
+        :param Sequence['WorkloadIdentityPoolInlineTrustConfigAdditionalTrustBundleArgs'] additional_trust_bundles: Maps specific trust domains (e.g., "example.com") to their corresponding `TrustStore`
+               objects, which contain the trusted root certificates for that domain. There can be a
+               maximum of `10` trust domain entries in this map.
+               Note that a trust domain automatically trusts itself and don't need to be specified here.
+               If however, this `WorkloadIdentityPool`'s trust domain contains any trust anchors in the
+               `additional_trust_bundles` map, those trust anchors will be *appended to* the Trust Bundle
+               automatically derived from your `InlineCertificateIssuanceConfig`'s `ca_pools`.
+               Structure is documented below.
+        """
+        if additional_trust_bundles is not None:
+            pulumi.set(__self__, "additional_trust_bundles", additional_trust_bundles)
+    @property
+    @pulumi.getter(name="additionalTrustBundles")
+    def additional_trust_bundles(self) -> Optional[Sequence['outputs.WorkloadIdentityPoolInlineTrustConfigAdditionalTrustBundle']]:
+        """
+        Maps specific trust domains (e.g., "example.com") to their corresponding `TrustStore`
+        objects, which contain the trusted root certificates for that domain. There can be a
+        maximum of `10` trust domain entries in this map.
+        Note that a trust domain automatically trusts itself and don't need to be specified here.
+        If however, this `WorkloadIdentityPool`'s trust domain contains any trust anchors in the
+        `additional_trust_bundles` map, those trust anchors will be *appended to* the Trust Bundle
+        automatically derived from your `InlineCertificateIssuanceConfig`'s `ca_pools`.
+        Structure is documented below.
+        """
+        return pulumi.get(self, "additional_trust_bundles")
+@pulumi.output_type
+class WorkloadIdentityPoolInlineTrustConfigAdditionalTrustBundle(dict):
+    @staticmethod
+    def __key_warning(key: str):
+        suggest = None
+        if key == "trustAnchors":
+            suggest = "trust_anchors"
+        elif key == "trustDomain":
+            suggest = "trust_domain"
+        if suggest:
+            pulumi.log.warn(f"Key '{key}' not found in WorkloadIdentityPoolInlineTrustConfigAdditionalTrustBundle. Access the value via the '{suggest}' property getter instead.")
+    def __getitem__(self, key: str) -> Any:
+        WorkloadIdentityPoolInlineTrustConfigAdditionalTrustBundle.__key_warning(key)
+        return super().__getitem__(key)
+    def get(self, key: str, default = None) -> Any:
+        WorkloadIdentityPoolInlineTrustConfigAdditionalTrustBundle.__key_warning(key)
+        return super().get(key, default)
+    def __init__(__self__, *,
+                 trust_anchors: Sequence['outputs.WorkloadIdentityPoolInlineTrustConfigAdditionalTrustBundleTrustAnchor'],
+                 trust_domain: builtins.str):
+        """
+        :param Sequence['WorkloadIdentityPoolInlineTrustConfigAdditionalTrustBundleTrustAnchorArgs'] trust_anchors: List of Trust Anchors to be used while performing validation against a given
+               `TrustStore`. The incoming end entity's certificate must be chained up to one of the
+               trust anchors here.
+               Structure is documented below.
+        :param builtins.str trust_domain: The identifier for this object. Format specified above.
+        """
+        pulumi.set(__self__, "trust_anchors", trust_anchors)
+        pulumi.set(__self__, "trust_domain", trust_domain)
+    @property
+    @pulumi.getter(name="trustAnchors")
+    def trust_anchors(self) -> Sequence['outputs.WorkloadIdentityPoolInlineTrustConfigAdditionalTrustBundleTrustAnchor']:
+        """
+        List of Trust Anchors to be used while performing validation against a given
+        `TrustStore`. The incoming end entity's certificate must be chained up to one of the
+        trust anchors here.
+        Structure is documented below.
+        """
+        return pulumi.get(self, "trust_anchors")
+    @property
+    @pulumi.getter(name="trustDomain")
+    def trust_domain(self) -> builtins.str:
+        """
+        The identifier for this object. Format specified above.
+        """
+        return pulumi.get(self, "trust_domain")
+@pulumi.output_type
+class WorkloadIdentityPoolInlineTrustConfigAdditionalTrustBundleTrustAnchor(dict):
+    @staticmethod
+    def __key_warning(key: str):
+        suggest = None
+        if key == "pemCertificate":
+            suggest = "pem_certificate"
+        if suggest:
+            pulumi.log.warn(f"Key '{key}' not found in WorkloadIdentityPoolInlineTrustConfigAdditionalTrustBundleTrustAnchor. Access the value via the '{suggest}' property getter instead.")
+    def __getitem__(self, key: str) -> Any:
+        WorkloadIdentityPoolInlineTrustConfigAdditionalTrustBundleTrustAnchor.__key_warning(key)
+        return super().__getitem__(key)
+    def get(self, key: str, default = None) -> Any:
+        WorkloadIdentityPoolInlineTrustConfigAdditionalTrustBundleTrustAnchor.__key_warning(key)
+        return super().get(key, default)
+    def __init__(__self__, *,
+                 pem_certificate: builtins.str):
+        """
+        :param builtins.str pem_certificate: PEM certificate of the PKI used for validation. Must only contain one ca
+               certificate(either root or intermediate cert).
+        """
+        pulumi.set(__self__, "pem_certificate", pem_certificate)
+    @property
+    @pulumi.getter(name="pemCertificate")
+    def pem_certificate(self) -> builtins.str:
+        """
+        PEM certificate of the PKI used for validation. Must only contain one ca
+        certificate(either root or intermediate cert).
+        """
+        return pulumi.get(self, "pem_certificate")
 @pulumi.output_type
 class WorkloadIdentityPoolProviderAws(dict):
     @staticmethod
@@ -1954,6 +2292,178 @@ class GetTestablePermissionsPermissionResult(dict):
         return pulumi.get(self, "title")
+@pulumi.output_type
+class GetWorkloadIdentityPoolInlineCertificateIssuanceConfigResult(dict):
+    def __init__(__self__, *,
+                 ca_pools: Mapping[str, builtins.str],
+                 key_algorithm: builtins.str,
+                 lifetime: builtins.str,
+                 rotation_window_percentage: builtins.int):
+        """
+        :param Mapping[str, builtins.str] ca_pools: A required mapping of a cloud region to the CA pool resource located in that region used
+               for certificate issuance, adhering to these constraints:
+               * **Key format:** A supported cloud region name equivalent to the location identifier in
+               the corresponding map entry's value.
+               * **Value format:** A valid CA pool resource path format like:
+               'projects/{project}/locations/{location}/caPools/{ca_pool}'
+               * **Region Matching:** Workloads are ONLY issued certificates from CA pools within the
+               same region. Also the CA pool region (in value) must match the workload's region (key).
+        :param builtins.str key_algorithm: Key algorithm to use when generating the key pair. This key pair will be used to create
+               the certificate. If unspecified, this will default to 'ECDSA_P256'.
+               * 'RSA_2048': Specifies RSA with a 2048-bit modulus.
+               * 'RSA_3072': Specifies RSA with a 3072-bit modulus.
+               * 'RSA_4096': Specifies RSA with a 4096-bit modulus.
+               * 'ECDSA_P256': Specifies ECDSA with curve P256.
+               * 'ECDSA_P384': Specifies ECDSA with curve P384. Possible values: ["RSA_2048", "RSA_3072", "RSA_4096", "ECDSA_P256", "ECDSA_P384"]
+        :param builtins.str lifetime: Lifetime of the workload certificates issued by the CA pool in seconds. Must be between
+               '86400s' (24 hours) to '2592000s' (30 days), ends in the suffix "'s'" (indicating seconds)
+               and is preceded by the number of seconds. If unspecified, this will be defaulted to
+               '86400s' (24 hours).
+        :param builtins.int rotation_window_percentage: Rotation window percentage indicating when certificate rotation should be initiated based
+               on remaining lifetime. Must be between '50' - '80'. If unspecified, this will be defaulted
+               to '50'.
+        """
+        pulumi.set(__self__, "ca_pools", ca_pools)
+        pulumi.set(__self__, "key_algorithm", key_algorithm)
+        pulumi.set(__self__, "lifetime", lifetime)
+        pulumi.set(__self__, "rotation_window_percentage", rotation_window_percentage)
+    @property
+    @pulumi.getter(name="caPools")
+    def ca_pools(self) -> Mapping[str, builtins.str]:
+        """
+        A required mapping of a cloud region to the CA pool resource located in that region used
+        for certificate issuance, adhering to these constraints:
+        * **Key format:** A supported cloud region name equivalent to the location identifier in
+        the corresponding map entry's value.
+        * **Value format:** A valid CA pool resource path format like:
+        'projects/{project}/locations/{location}/caPools/{ca_pool}'
+        * **Region Matching:** Workloads are ONLY issued certificates from CA pools within the
+        same region. Also the CA pool region (in value) must match the workload's region (key).
+        """
+        return pulumi.get(self, "ca_pools")
+    @property
+    @pulumi.getter(name="keyAlgorithm")
+    def key_algorithm(self) -> builtins.str:
+        """
+        Key algorithm to use when generating the key pair. This key pair will be used to create
+        the certificate. If unspecified, this will default to 'ECDSA_P256'.
+        * 'RSA_2048': Specifies RSA with a 2048-bit modulus.
+        * 'RSA_3072': Specifies RSA with a 3072-bit modulus.
+        * 'RSA_4096': Specifies RSA with a 4096-bit modulus.
+        * 'ECDSA_P256': Specifies ECDSA with curve P256.
+        * 'ECDSA_P384': Specifies ECDSA with curve P384. Possible values: ["RSA_2048", "RSA_3072", "RSA_4096", "ECDSA_P256", "ECDSA_P384"]
+        """
+        return pulumi.get(self, "key_algorithm")
+    @property
+    @pulumi.getter
+    def lifetime(self) -> builtins.str:
+        """
+        Lifetime of the workload certificates issued by the CA pool in seconds. Must be between
+        '86400s' (24 hours) to '2592000s' (30 days), ends in the suffix "'s'" (indicating seconds)
+        and is preceded by the number of seconds. If unspecified, this will be defaulted to
+        '86400s' (24 hours).
+        """
+        return pulumi.get(self, "lifetime")
+    @property
+    @pulumi.getter(name="rotationWindowPercentage")
+    def rotation_window_percentage(self) -> builtins.int:
+        """
+        Rotation window percentage indicating when certificate rotation should be initiated based
+        on remaining lifetime. Must be between '50' - '80'. If unspecified, this will be defaulted
+        to '50'.
+        """
+        return pulumi.get(self, "rotation_window_percentage")
+@pulumi.output_type
+class GetWorkloadIdentityPoolInlineTrustConfigResult(dict):
+    def __init__(__self__, *,
+                 additional_trust_bundles: Sequence['outputs.GetWorkloadIdentityPoolInlineTrustConfigAdditionalTrustBundleResult']):
+        """
+        :param Sequence['GetWorkloadIdentityPoolInlineTrustConfigAdditionalTrustBundleArgs'] additional_trust_bundles: Maps specific trust domains (e.g., "example.com") to their corresponding 'TrustStore'
+               objects, which contain the trusted root certificates for that domain. There can be a
+               maximum of '10' trust domain entries in this map.
+               Note that a trust domain automatically trusts itself and don't need to be specified here.
+               If however, this 'WorkloadIdentityPool''s trust domain contains any trust anchors in the
+               'additional_trust_bundles' map, those trust anchors will be *appended to* the Trust Bundle
+               automatically derived from your 'InlineCertificateIssuanceConfig''s 'ca_pools'.
+        """
+        pulumi.set(__self__, "additional_trust_bundles", additional_trust_bundles)
+    @property
+    @pulumi.getter(name="additionalTrustBundles")
+    def additional_trust_bundles(self) -> Sequence['outputs.GetWorkloadIdentityPoolInlineTrustConfigAdditionalTrustBundleResult']:
+        """
+        Maps specific trust domains (e.g., "example.com") to their corresponding 'TrustStore'
+        objects, which contain the trusted root certificates for that domain. There can be a
+        maximum of '10' trust domain entries in this map.
+        Note that a trust domain automatically trusts itself and don't need to be specified here.
+        If however, this 'WorkloadIdentityPool''s trust domain contains any trust anchors in the
+        'additional_trust_bundles' map, those trust anchors will be *appended to* the Trust Bundle
+        automatically derived from your 'InlineCertificateIssuanceConfig''s 'ca_pools'.
+        """
+        return pulumi.get(self, "additional_trust_bundles")
+@pulumi.output_type
+class GetWorkloadIdentityPoolInlineTrustConfigAdditionalTrustBundleResult(dict):
+    def __init__(__self__, *,
+                 trust_anchors: Sequence['outputs.GetWorkloadIdentityPoolInlineTrustConfigAdditionalTrustBundleTrustAnchorResult'],
+                 trust_domain: builtins.str):
+        """
+        :param Sequence['GetWorkloadIdentityPoolInlineTrustConfigAdditionalTrustBundleTrustAnchorArgs'] trust_anchors: List of Trust Anchors to be used while performing validation against a given
+               'TrustStore'. The incoming end entity's certificate must be chained up to one of the
+               trust anchors here.
+        """
+        pulumi.set(__self__, "trust_anchors", trust_anchors)
+        pulumi.set(__self__, "trust_domain", trust_domain)
+    @property
+    @pulumi.getter(name="trustAnchors")
+    def trust_anchors(self) -> Sequence['outputs.GetWorkloadIdentityPoolInlineTrustConfigAdditionalTrustBundleTrustAnchorResult']:
+        """
+        List of Trust Anchors to be used while performing validation against a given
+        'TrustStore'. The incoming end entity's certificate must be chained up to one of the
+        trust anchors here.
+        """
+        return pulumi.get(self, "trust_anchors")
+    @property
+    @pulumi.getter(name="trustDomain")
+    def trust_domain(self) -> builtins.str:
+        return pulumi.get(self, "trust_domain")
+@pulumi.output_type
+class GetWorkloadIdentityPoolInlineTrustConfigAdditionalTrustBundleTrustAnchorResult(dict):
+    def __init__(__self__, *,
+                 pem_certificate: builtins.str):
+        """
+        :param builtins.str pem_certificate: PEM certificate of the PKI used for validation. Must only contain one ca
+               certificate(either root or intermediate cert).
+        """
+        pulumi.set(__self__, "pem_certificate", pem_certificate)
+    @property
+    @pulumi.getter(name="pemCertificate")
+    def pem_certificate(self) -> builtins.str:
+        """
+        PEM certificate of the PKI used for validation. Must only contain one ca
+        certificate(either root or intermediate cert).
+        """
+        return pulumi.get(self, "pem_certificate")
 @pulumi.output_type
 class GetWorkloadIdentityPoolProviderAwResult(dict):
     def __init__(__self__, *,

pulumi-gcp 8.31.0a1747205151__py3-none-any.whl → 8.32.0__py3-none-any.whl

pulumi-gcp 8.31.0a1747205151py3-none-any.whl → 8.32.0py3-none-any.whl