pulumi-gcp 8.9.0a1731366299__py3-none-any.whl → 8.9.0a1731432418__py3-none-any.whl

pulumi_gcp/healthcare/hl7_store.py

@@ -49,7 +49,7 @@ class Hl7StoreArgs:
         :param pulumi.Input[str] name: The resource name for the Hl7V2Store.
                ** Changing this property may recreate the Hl7v2 store (removing all data) **
         :param pulumi.Input['Hl7StoreNotificationConfigArgs'] notification_config: (Optional, Deprecated)
-               A nested object resource
+               A nested object resource.
                Structure is documented below.
                
                > **Warning:** `notification_config` is deprecated and will be removed in a future major release. Use `notification_configs` instead.
@@ -57,7 +57,7 @@ class Hl7StoreArgs:
                message (both Ingest & Create) on the corresponding notification destination. Only the message name
                is sent as part of the notification. Supplied by the client.
                Structure is documented below.
-        :param pulumi.Input['Hl7StoreParserConfigArgs'] parser_config: A nested object resource
+        :param pulumi.Input['Hl7StoreParserConfigArgs'] parser_config: A nested object resource.
                Structure is documented below.
         :param pulumi.Input[bool] reject_duplicate_message: Determines whether duplicate messages are allowed.
         """
@@ -135,7 +135,7 @@ class Hl7StoreArgs:
     def notification_config(self) -> Optional[pulumi.Input['Hl7StoreNotificationConfigArgs']]:
         """
         (Optional, Deprecated)
-        A nested object resource
+        A nested object resource.
         Structure is documented below.
 
         > **Warning:** `notification_config` is deprecated and will be removed in a future major release. Use `notification_configs` instead.
@@ -165,7 +165,7 @@ class Hl7StoreArgs:
     @pulumi.getter(name="parserConfig")
     def parser_config(self) -> Optional[pulumi.Input['Hl7StoreParserConfigArgs']]:
         """
-        A nested object resource
+        A nested object resource.
         Structure is documented below.
         """
         return pulumi.get(self, "parser_config")
@@ -222,7 +222,7 @@ class _Hl7StoreState:
         :param pulumi.Input[str] name: The resource name for the Hl7V2Store.
                ** Changing this property may recreate the Hl7v2 store (removing all data) **
         :param pulumi.Input['Hl7StoreNotificationConfigArgs'] notification_config: (Optional, Deprecated)
-               A nested object resource
+               A nested object resource.
                Structure is documented below.
                
                > **Warning:** `notification_config` is deprecated and will be removed in a future major release. Use `notification_configs` instead.
@@ -230,7 +230,7 @@ class _Hl7StoreState:
                message (both Ingest & Create) on the corresponding notification destination. Only the message name
                is sent as part of the notification. Supplied by the client.
                Structure is documented below.
-        :param pulumi.Input['Hl7StoreParserConfigArgs'] parser_config: A nested object resource
+        :param pulumi.Input['Hl7StoreParserConfigArgs'] parser_config: A nested object resource.
                Structure is documented below.
         :param pulumi.Input[Mapping[str, pulumi.Input[str]]] pulumi_labels: The combination of labels configured directly on the resource
                and default labels configured on the provider.
@@ -330,7 +330,7 @@ class _Hl7StoreState:
     def notification_config(self) -> Optional[pulumi.Input['Hl7StoreNotificationConfigArgs']]:
         """
         (Optional, Deprecated)
-        A nested object resource
+        A nested object resource.
         Structure is documented below.
 
         > **Warning:** `notification_config` is deprecated and will be removed in a future major release. Use `notification_configs` instead.
@@ -360,7 +360,7 @@ class _Hl7StoreState:
     @pulumi.getter(name="parserConfig")
     def parser_config(self) -> Optional[pulumi.Input['Hl7StoreParserConfigArgs']]:
         """
-        A nested object resource
+        A nested object resource.
         Structure is documented below.
         """
         return pulumi.get(self, "parser_config")
@@ -607,7 +607,7 @@ class Hl7Store(pulumi.CustomResource):
         :param pulumi.Input[str] name: The resource name for the Hl7V2Store.
                ** Changing this property may recreate the Hl7v2 store (removing all data) **
         :param pulumi.Input[Union['Hl7StoreNotificationConfigArgs', 'Hl7StoreNotificationConfigArgsDict']] notification_config: (Optional, Deprecated)
-               A nested object resource
+               A nested object resource.
                Structure is documented below.
                
                > **Warning:** `notification_config` is deprecated and will be removed in a future major release. Use `notification_configs` instead.
@@ -615,7 +615,7 @@ class Hl7Store(pulumi.CustomResource):
                message (both Ingest & Create) on the corresponding notification destination. Only the message name
                is sent as part of the notification. Supplied by the client.
                Structure is documented below.
-        :param pulumi.Input[Union['Hl7StoreParserConfigArgs', 'Hl7StoreParserConfigArgsDict']] parser_config: A nested object resource
+        :param pulumi.Input[Union['Hl7StoreParserConfigArgs', 'Hl7StoreParserConfigArgsDict']] parser_config: A nested object resource.
                Structure is documented below.
         :param pulumi.Input[bool] reject_duplicate_message: Determines whether duplicate messages are allowed.
         """
@@ -883,7 +883,7 @@ class Hl7Store(pulumi.CustomResource):
         :param pulumi.Input[str] name: The resource name for the Hl7V2Store.
                ** Changing this property may recreate the Hl7v2 store (removing all data) **
         :param pulumi.Input[Union['Hl7StoreNotificationConfigArgs', 'Hl7StoreNotificationConfigArgsDict']] notification_config: (Optional, Deprecated)
-               A nested object resource
+               A nested object resource.
                Structure is documented below.
                
                > **Warning:** `notification_config` is deprecated and will be removed in a future major release. Use `notification_configs` instead.
@@ -891,7 +891,7 @@ class Hl7Store(pulumi.CustomResource):
                message (both Ingest & Create) on the corresponding notification destination. Only the message name
                is sent as part of the notification. Supplied by the client.
                Structure is documented below.
-        :param pulumi.Input[Union['Hl7StoreParserConfigArgs', 'Hl7StoreParserConfigArgsDict']] parser_config: A nested object resource
+        :param pulumi.Input[Union['Hl7StoreParserConfigArgs', 'Hl7StoreParserConfigArgsDict']] parser_config: A nested object resource.
                Structure is documented below.
         :param pulumi.Input[Mapping[str, pulumi.Input[str]]] pulumi_labels: The combination of labels configured directly on the resource
                and default labels configured on the provider.
@@ -967,7 +967,7 @@ class Hl7Store(pulumi.CustomResource):
     def notification_config(self) -> pulumi.Output[Optional['outputs.Hl7StoreNotificationConfig']]:
         """
         (Optional, Deprecated)
-        A nested object resource
+        A nested object resource.
         Structure is documented below.
 
         > **Warning:** `notification_config` is deprecated and will be removed in a future major release. Use `notification_configs` instead.
@@ -989,7 +989,7 @@ class Hl7Store(pulumi.CustomResource):
     @pulumi.getter(name="parserConfig")
     def parser_config(self) -> pulumi.Output['outputs.Hl7StoreParserConfig']:
         """
-        A nested object resource
+        A nested object resource.
         Structure is documented below.
         """
         return pulumi.get(self, "parser_config")

pulumi_gcp/iam/__init__.py

@@ -11,6 +11,7 @@ from .get_rule import *
 from .get_testable_permissions import *
 from .get_workload_identity_pool import *
 from .get_workload_identity_pool_provider import *
+from .principal_access_boundary_policy import *
 from .workforce_pool import *
 from .workforce_pool_provider import *
 from .workload_identity_pool import *

pulumi_gcp/iam/_inputs.py

@@ -27,6 +27,10 @@ __all__ = [
     'DenyPolicyRuleDenyRuleArgsDict',
     'DenyPolicyRuleDenyRuleDenialConditionArgs',
     'DenyPolicyRuleDenyRuleDenialConditionArgsDict',
+    'PrincipalAccessBoundaryPolicyDetailsArgs',
+    'PrincipalAccessBoundaryPolicyDetailsArgsDict',
+    'PrincipalAccessBoundaryPolicyDetailsRuleArgs',
+    'PrincipalAccessBoundaryPolicyDetailsRuleArgsDict',
     'WorkforcePoolAccessRestrictionsArgs',
     'WorkforcePoolAccessRestrictionsArgsDict',
     'WorkforcePoolAccessRestrictionsAllowedServiceArgs',
@@ -591,6 +595,163 @@ class DenyPolicyRuleDenyRuleDenialConditionArgs:
         pulumi.set(self, "title", value)
 
 
+if not MYPY:
+    class PrincipalAccessBoundaryPolicyDetailsArgsDict(TypedDict):
+        rules: pulumi.Input[Sequence[pulumi.Input['PrincipalAccessBoundaryPolicyDetailsRuleArgsDict']]]
+        """
+        A list of principal access boundary policy rules. The number of rules in a policy is limited to 500.
+        Structure is documented below.
+        """
+        enforcement_version: NotRequired[pulumi.Input[str]]
+        """
+        The version number that indicates which Google Cloud services
+        are included in the enforcement (e.g. \\"latest\\", \\"1\\", ...). If empty, the
+        PAB policy version will be set to the current latest version, and this version
+        won't get updated when new versions are released.
+        """
+elif False:
+    PrincipalAccessBoundaryPolicyDetailsArgsDict: TypeAlias = Mapping[str, Any]
+
+@pulumi.input_type
+class PrincipalAccessBoundaryPolicyDetailsArgs:
+    def __init__(__self__, *,
+                 rules: pulumi.Input[Sequence[pulumi.Input['PrincipalAccessBoundaryPolicyDetailsRuleArgs']]],
+                 enforcement_version: Optional[pulumi.Input[str]] = None):
+        """
+        :param pulumi.Input[Sequence[pulumi.Input['PrincipalAccessBoundaryPolicyDetailsRuleArgs']]] rules: A list of principal access boundary policy rules. The number of rules in a policy is limited to 500.
+               Structure is documented below.
+        :param pulumi.Input[str] enforcement_version: The version number that indicates which Google Cloud services
+               are included in the enforcement (e.g. \\"latest\\", \\"1\\", ...). If empty, the
+               PAB policy version will be set to the current latest version, and this version
+               won't get updated when new versions are released.
+        """
+        pulumi.set(__self__, "rules", rules)
+        if enforcement_version is not None:
+            pulumi.set(__self__, "enforcement_version", enforcement_version)
+
+    @property
+    @pulumi.getter
+    def rules(self) -> pulumi.Input[Sequence[pulumi.Input['PrincipalAccessBoundaryPolicyDetailsRuleArgs']]]:
+        """
+        A list of principal access boundary policy rules. The number of rules in a policy is limited to 500.
+        Structure is documented below.
+        """
+        return pulumi.get(self, "rules")
+
+    @rules.setter
+    def rules(self, value: pulumi.Input[Sequence[pulumi.Input['PrincipalAccessBoundaryPolicyDetailsRuleArgs']]]):
+        pulumi.set(self, "rules", value)
+
+    @property
+    @pulumi.getter(name="enforcementVersion")
+    def enforcement_version(self) -> Optional[pulumi.Input[str]]:
+        """
+        The version number that indicates which Google Cloud services
+        are included in the enforcement (e.g. \\"latest\\", \\"1\\", ...). If empty, the
+        PAB policy version will be set to the current latest version, and this version
+        won't get updated when new versions are released.
+        """
+        return pulumi.get(self, "enforcement_version")
+
+    @enforcement_version.setter
+    def enforcement_version(self, value: Optional[pulumi.Input[str]]):
+        pulumi.set(self, "enforcement_version", value)
+
+
+if not MYPY:
+    class PrincipalAccessBoundaryPolicyDetailsRuleArgsDict(TypedDict):
+        effect: pulumi.Input[str]
+        """
+        The access relationship of principals to the resources in this rule.
+        Possible values: ALLOW
+        """
+        resources: pulumi.Input[Sequence[pulumi.Input[str]]]
+        """
+        A list of Cloud Resource Manager resources. The resource
+        and all the descendants are included. The number of resources in a policy
+        is limited to 500 across all rules.
+        The following resource types are supported:
+        * Organizations, such as `//cloudresourcemanager.googleapis.com/organizations/123`.
+        * Folders, such as `//cloudresourcemanager.googleapis.com/folders/123`.
+        * Projects, such as `//cloudresourcemanager.googleapis.com/projects/123`
+        or `//cloudresourcemanager.googleapis.com/projects/my-project-id`.
+        """
+        description: NotRequired[pulumi.Input[str]]
+        """
+        The description of the principal access boundary policy rule. Must be less than or equal to 256 characters.
+        """
+elif False:
+    PrincipalAccessBoundaryPolicyDetailsRuleArgsDict: TypeAlias = Mapping[str, Any]
+
+@pulumi.input_type
+class PrincipalAccessBoundaryPolicyDetailsRuleArgs:
+    def __init__(__self__, *,
+                 effect: pulumi.Input[str],
+                 resources: pulumi.Input[Sequence[pulumi.Input[str]]],
+                 description: Optional[pulumi.Input[str]] = None):
+        """
+        :param pulumi.Input[str] effect: The access relationship of principals to the resources in this rule.
+               Possible values: ALLOW
+        :param pulumi.Input[Sequence[pulumi.Input[str]]] resources: A list of Cloud Resource Manager resources. The resource
+               and all the descendants are included. The number of resources in a policy
+               is limited to 500 across all rules.
+               The following resource types are supported:
+               * Organizations, such as `//cloudresourcemanager.googleapis.com/organizations/123`.
+               * Folders, such as `//cloudresourcemanager.googleapis.com/folders/123`.
+               * Projects, such as `//cloudresourcemanager.googleapis.com/projects/123`
+               or `//cloudresourcemanager.googleapis.com/projects/my-project-id`.
+        :param pulumi.Input[str] description: The description of the principal access boundary policy rule. Must be less than or equal to 256 characters.
+        """
+        pulumi.set(__self__, "effect", effect)
+        pulumi.set(__self__, "resources", resources)
+        if description is not None:
+            pulumi.set(__self__, "description", description)
+
+    @property
+    @pulumi.getter
+    def effect(self) -> pulumi.Input[str]:
+        """
+        The access relationship of principals to the resources in this rule.
+        Possible values: ALLOW
+        """
+        return pulumi.get(self, "effect")
+
+    @effect.setter
+    def effect(self, value: pulumi.Input[str]):
+        pulumi.set(self, "effect", value)
+
+    @property
+    @pulumi.getter
+    def resources(self) -> pulumi.Input[Sequence[pulumi.Input[str]]]:
+        """
+        A list of Cloud Resource Manager resources. The resource
+        and all the descendants are included. The number of resources in a policy
+        is limited to 500 across all rules.
+        The following resource types are supported:
+        * Organizations, such as `//cloudresourcemanager.googleapis.com/organizations/123`.
+        * Folders, such as `//cloudresourcemanager.googleapis.com/folders/123`.
+        * Projects, such as `//cloudresourcemanager.googleapis.com/projects/123`
+        or `//cloudresourcemanager.googleapis.com/projects/my-project-id`.
+        """
+        return pulumi.get(self, "resources")
+
+    @resources.setter
+    def resources(self, value: pulumi.Input[Sequence[pulumi.Input[str]]]):
+        pulumi.set(self, "resources", value)
+
+    @property
+    @pulumi.getter
+    def description(self) -> Optional[pulumi.Input[str]]:
+        """
+        The description of the principal access boundary policy rule. Must be less than or equal to 256 characters.
+        """
+        return pulumi.get(self, "description")
+
+    @description.setter
+    def description(self, value: Optional[pulumi.Input[str]]):
+        pulumi.set(self, "description", value)
+
+
 if not MYPY:
     class WorkforcePoolAccessRestrictionsArgsDict(TypedDict):
         allowed_services: NotRequired[pulumi.Input[Sequence[pulumi.Input['WorkforcePoolAccessRestrictionsAllowedServiceArgsDict']]]]

pulumi_gcp/iam/outputs.py

@@ -22,6 +22,8 @@ __all__ = [
     'DenyPolicyRule',
     'DenyPolicyRuleDenyRule',
     'DenyPolicyRuleDenyRuleDenialCondition',
+    'PrincipalAccessBoundaryPolicyDetails',
+    'PrincipalAccessBoundaryPolicyDetailsRule',
     'WorkforcePoolAccessRestrictions',
     'WorkforcePoolAccessRestrictionsAllowedService',
     'WorkforcePoolProviderExtraAttributesOauth2Client',
@@ -446,6 +448,118 @@ class DenyPolicyRuleDenyRuleDenialCondition(dict):
         return pulumi.get(self, "title")
 
 
+@pulumi.output_type
+class PrincipalAccessBoundaryPolicyDetails(dict):
+    @staticmethod
+    def __key_warning(key: str):
+        suggest = None
+        if key == "enforcementVersion":
+            suggest = "enforcement_version"
+
+        if suggest:
+            pulumi.log.warn(f"Key '{key}' not found in PrincipalAccessBoundaryPolicyDetails. Access the value via the '{suggest}' property getter instead.")
+
+    def __getitem__(self, key: str) -> Any:
+        PrincipalAccessBoundaryPolicyDetails.__key_warning(key)
+        return super().__getitem__(key)
+
+    def get(self, key: str, default = None) -> Any:
+        PrincipalAccessBoundaryPolicyDetails.__key_warning(key)
+        return super().get(key, default)
+
+    def __init__(__self__, *,
+                 rules: Sequence['outputs.PrincipalAccessBoundaryPolicyDetailsRule'],
+                 enforcement_version: Optional[str] = None):
+        """
+        :param Sequence['PrincipalAccessBoundaryPolicyDetailsRuleArgs'] rules: A list of principal access boundary policy rules. The number of rules in a policy is limited to 500.
+               Structure is documented below.
+        :param str enforcement_version: The version number that indicates which Google Cloud services
+               are included in the enforcement (e.g. \\"latest\\", \\"1\\", ...). If empty, the
+               PAB policy version will be set to the current latest version, and this version
+               won't get updated when new versions are released.
+        """
+        pulumi.set(__self__, "rules", rules)
+        if enforcement_version is not None:
+            pulumi.set(__self__, "enforcement_version", enforcement_version)
+
+    @property
+    @pulumi.getter
+    def rules(self) -> Sequence['outputs.PrincipalAccessBoundaryPolicyDetailsRule']:
+        """
+        A list of principal access boundary policy rules. The number of rules in a policy is limited to 500.
+        Structure is documented below.
+        """
+        return pulumi.get(self, "rules")
+
+    @property
+    @pulumi.getter(name="enforcementVersion")
+    def enforcement_version(self) -> Optional[str]:
+        """
+        The version number that indicates which Google Cloud services
+        are included in the enforcement (e.g. \\"latest\\", \\"1\\", ...). If empty, the
+        PAB policy version will be set to the current latest version, and this version
+        won't get updated when new versions are released.
+        """
+        return pulumi.get(self, "enforcement_version")
+
+
+@pulumi.output_type
+class PrincipalAccessBoundaryPolicyDetailsRule(dict):
+    def __init__(__self__, *,
+                 effect: str,
+                 resources: Sequence[str],
+                 description: Optional[str] = None):
+        """
+        :param str effect: The access relationship of principals to the resources in this rule.
+               Possible values: ALLOW
+        :param Sequence[str] resources: A list of Cloud Resource Manager resources. The resource
+               and all the descendants are included. The number of resources in a policy
+               is limited to 500 across all rules.
+               The following resource types are supported:
+               * Organizations, such as `//cloudresourcemanager.googleapis.com/organizations/123`.
+               * Folders, such as `//cloudresourcemanager.googleapis.com/folders/123`.
+               * Projects, such as `//cloudresourcemanager.googleapis.com/projects/123`
+               or `//cloudresourcemanager.googleapis.com/projects/my-project-id`.
+        :param str description: The description of the principal access boundary policy rule. Must be less than or equal to 256 characters.
+        """
+        pulumi.set(__self__, "effect", effect)
+        pulumi.set(__self__, "resources", resources)
+        if description is not None:
+            pulumi.set(__self__, "description", description)
+
+    @property
+    @pulumi.getter
+    def effect(self) -> str:
+        """
+        The access relationship of principals to the resources in this rule.
+        Possible values: ALLOW
+        """
+        return pulumi.get(self, "effect")
+
+    @property
+    @pulumi.getter
+    def resources(self) -> Sequence[str]:
+        """
+        A list of Cloud Resource Manager resources. The resource
+        and all the descendants are included. The number of resources in a policy
+        is limited to 500 across all rules.
+        The following resource types are supported:
+        * Organizations, such as `//cloudresourcemanager.googleapis.com/organizations/123`.
+        * Folders, such as `//cloudresourcemanager.googleapis.com/folders/123`.
+        * Projects, such as `//cloudresourcemanager.googleapis.com/projects/123`
+        or `//cloudresourcemanager.googleapis.com/projects/my-project-id`.
+        """
+        return pulumi.get(self, "resources")
+
+    @property
+    @pulumi.getter
+    def description(self) -> Optional[str]:
+        """
+        The description of the principal access boundary policy rule. Must be less than or equal to 256 characters.
+        """
+        return pulumi.get(self, "description")
+
+
 @pulumi.output_type
 class WorkforcePoolAccessRestrictions(dict):
     @staticmethod