pulumi-gitlab 9.3.0a1759182301__py3-none-any.whl → 9.8.1__py3-none-any.whl

pulumi_gitlab/application_settings.py

@@ -375,7 +375,7 @@ class ApplicationSettingsArgs:
         :param pulumi.Input[_builtins.int] decompress_archive_file_timeout: Default timeout for decompressing archived files, in seconds. Set to 0 to disable timeouts.
         :param pulumi.Input[_builtins.str] default_artifacts_expire_in: Set the default expiration time for each job’s artifacts.
         :param pulumi.Input[_builtins.str] default_branch_name: Instance-level custom initial branch name
-        :param pulumi.Input[_builtins.int] default_branch_protection: Determine if developers can push to the default branch. Can take: 0 (not protected, both users with the Developer role or Maintainer role can push new commits and force push), 1 (partially protected, users with the Developer role or Maintainer role can push new commits, but cannot force push) or 2 (fully protected, users with the Developer or Maintainer role cannot push new commits, but users with the Developer or Maintainer role can; no one can force push) as a parameter. Default is 2.
+        :param pulumi.Input[_builtins.int] default_branch_protection: Determine if developers can push to the default branch. Can take: 0 (not protected, both users with the Developer role or Maintainer role can push new commits and force push), 1 (partially protected, users with the Developer role or Maintainer role can push new commits, but cannot force push) or 2 (fully protected, users with the Developer or Maintainer role cannot push new commits, but users with the Developer or Maintainer role can; no one can force push) as a parameter. Default is 2. Use `default_branch_protection_defaults` instead. To be removed in 19.0.
         :param pulumi.Input['ApplicationSettingsDefaultBranchProtectionDefaultsArgs'] default_branch_protection_defaults: The default*branch*protection*defaults attribute describes the default branch protection defaults. All parameters are optional.
         :param pulumi.Input[_builtins.str] default_ci_config_path: Default CI/CD configuration file and path for new projects (.gitlab-ci.yml if not set).
         :param pulumi.Input[_builtins.str] default_group_visibility: What visibility level new groups receive. Can take private, internal and public as a parameter.
@@ -727,6 +727,9 @@ class ApplicationSettingsArgs:
             pulumi.set(__self__, "default_artifacts_expire_in", default_artifacts_expire_in)
         if default_branch_name is not None:
             pulumi.set(__self__, "default_branch_name", default_branch_name)
+        if default_branch_protection is not None:
+            warnings.warn("""Use `default_branch_protection_defaults` instead. To be removed in 19.0.""", DeprecationWarning)
+            pulumi.log.warn("""default_branch_protection is deprecated: Use `default_branch_protection_defaults` instead. To be removed in 19.0.""")
         if default_branch_protection is not None:
             pulumi.set(__self__, "default_branch_protection", default_branch_protection)
         if default_branch_protection_defaults is not None:
@@ -1794,9 +1797,10 @@ class ApplicationSettingsArgs:
 
     @_builtins.property
     @pulumi.getter(name="defaultBranchProtection")
+    @_utilities.deprecated("""Use `default_branch_protection_defaults` instead. To be removed in 19.0.""")
     def default_branch_protection(self) -> Optional[pulumi.Input[_builtins.int]]:
         """
-        Determine if developers can push to the default branch. Can take: 0 (not protected, both users with the Developer role or Maintainer role can push new commits and force push), 1 (partially protected, users with the Developer role or Maintainer role can push new commits, but cannot force push) or 2 (fully protected, users with the Developer or Maintainer role cannot push new commits, but users with the Developer or Maintainer role can; no one can force push) as a parameter. Default is 2.
+        Determine if developers can push to the default branch. Can take: 0 (not protected, both users with the Developer role or Maintainer role can push new commits and force push), 1 (partially protected, users with the Developer role or Maintainer role can push new commits, but cannot force push) or 2 (fully protected, users with the Developer or Maintainer role cannot push new commits, but users with the Developer or Maintainer role can; no one can force push) as a parameter. Default is 2. Use `default_branch_protection_defaults` instead. To be removed in 19.0.
         """
         return pulumi.get(self, "default_branch_protection")
 
@@ -5293,7 +5297,7 @@ class _ApplicationSettingsState:
         :param pulumi.Input[_builtins.int] decompress_archive_file_timeout: Default timeout for decompressing archived files, in seconds. Set to 0 to disable timeouts.
         :param pulumi.Input[_builtins.str] default_artifacts_expire_in: Set the default expiration time for each job’s artifacts.
         :param pulumi.Input[_builtins.str] default_branch_name: Instance-level custom initial branch name
-        :param pulumi.Input[_builtins.int] default_branch_protection: Determine if developers can push to the default branch. Can take: 0 (not protected, both users with the Developer role or Maintainer role can push new commits and force push), 1 (partially protected, users with the Developer role or Maintainer role can push new commits, but cannot force push) or 2 (fully protected, users with the Developer or Maintainer role cannot push new commits, but users with the Developer or Maintainer role can; no one can force push) as a parameter. Default is 2.
+        :param pulumi.Input[_builtins.int] default_branch_protection: Determine if developers can push to the default branch. Can take: 0 (not protected, both users with the Developer role or Maintainer role can push new commits and force push), 1 (partially protected, users with the Developer role or Maintainer role can push new commits, but cannot force push) or 2 (fully protected, users with the Developer or Maintainer role cannot push new commits, but users with the Developer or Maintainer role can; no one can force push) as a parameter. Default is 2. Use `default_branch_protection_defaults` instead. To be removed in 19.0.
         :param pulumi.Input['ApplicationSettingsDefaultBranchProtectionDefaultsArgs'] default_branch_protection_defaults: The default*branch*protection*defaults attribute describes the default branch protection defaults. All parameters are optional.
         :param pulumi.Input[_builtins.str] default_ci_config_path: Default CI/CD configuration file and path for new projects (.gitlab-ci.yml if not set).
         :param pulumi.Input[_builtins.str] default_group_visibility: What visibility level new groups receive. Can take private, internal and public as a parameter.
@@ -5647,6 +5651,9 @@ class _ApplicationSettingsState:
             pulumi.set(__self__, "default_artifacts_expire_in", default_artifacts_expire_in)
         if default_branch_name is not None:
             pulumi.set(__self__, "default_branch_name", default_branch_name)
+        if default_branch_protection is not None:
+            warnings.warn("""Use `default_branch_protection_defaults` instead. To be removed in 19.0.""", DeprecationWarning)
+            pulumi.log.warn("""default_branch_protection is deprecated: Use `default_branch_protection_defaults` instead. To be removed in 19.0.""")
         if default_branch_protection is not None:
             pulumi.set(__self__, "default_branch_protection", default_branch_protection)
         if default_branch_protection_defaults is not None:
@@ -6718,9 +6725,10 @@ class _ApplicationSettingsState:
 
     @_builtins.property
     @pulumi.getter(name="defaultBranchProtection")
+    @_utilities.deprecated("""Use `default_branch_protection_defaults` instead. To be removed in 19.0.""")
     def default_branch_protection(self) -> Optional[pulumi.Input[_builtins.int]]:
         """
-        Determine if developers can push to the default branch. Can take: 0 (not protected, both users with the Developer role or Maintainer role can push new commits and force push), 1 (partially protected, users with the Developer role or Maintainer role can push new commits, but cannot force push) or 2 (fully protected, users with the Developer or Maintainer role cannot push new commits, but users with the Developer or Maintainer role can; no one can force push) as a parameter. Default is 2.
+        Determine if developers can push to the default branch. Can take: 0 (not protected, both users with the Developer role or Maintainer role can push new commits and force push), 1 (partially protected, users with the Developer role or Maintainer role can push new commits, but cannot force push) or 2 (fully protected, users with the Developer or Maintainer role cannot push new commits, but users with the Developer or Maintainer role can; no one can force push) as a parameter. Default is 2. Use `default_branch_protection_defaults` instead. To be removed in 19.0.
         """
         return pulumi.get(self, "default_branch_protection")
 
@@ -10246,7 +10254,7 @@ class ApplicationSettings(pulumi.CustomResource):
         :param pulumi.Input[_builtins.int] decompress_archive_file_timeout: Default timeout for decompressing archived files, in seconds. Set to 0 to disable timeouts.
         :param pulumi.Input[_builtins.str] default_artifacts_expire_in: Set the default expiration time for each job’s artifacts.
         :param pulumi.Input[_builtins.str] default_branch_name: Instance-level custom initial branch name
-        :param pulumi.Input[_builtins.int] default_branch_protection: Determine if developers can push to the default branch. Can take: 0 (not protected, both users with the Developer role or Maintainer role can push new commits and force push), 1 (partially protected, users with the Developer role or Maintainer role can push new commits, but cannot force push) or 2 (fully protected, users with the Developer or Maintainer role cannot push new commits, but users with the Developer or Maintainer role can; no one can force push) as a parameter. Default is 2.
+        :param pulumi.Input[_builtins.int] default_branch_protection: Determine if developers can push to the default branch. Can take: 0 (not protected, both users with the Developer role or Maintainer role can push new commits and force push), 1 (partially protected, users with the Developer role or Maintainer role can push new commits, but cannot force push) or 2 (fully protected, users with the Developer or Maintainer role cannot push new commits, but users with the Developer or Maintainer role can; no one can force push) as a parameter. Default is 2. Use `default_branch_protection_defaults` instead. To be removed in 19.0.
         :param pulumi.Input[Union['ApplicationSettingsDefaultBranchProtectionDefaultsArgs', 'ApplicationSettingsDefaultBranchProtectionDefaultsArgsDict']] default_branch_protection_defaults: The default*branch*protection*defaults attribute describes the default branch protection defaults. All parameters are optional.
         :param pulumi.Input[_builtins.str] default_ci_config_path: Default CI/CD configuration file and path for new projects (.gitlab-ci.yml if not set).
         :param pulumi.Input[_builtins.str] default_group_visibility: What visibility level new groups receive. Can take private, internal and public as a parameter.
@@ -11530,7 +11538,7 @@ class ApplicationSettings(pulumi.CustomResource):
         :param pulumi.Input[_builtins.int] decompress_archive_file_timeout: Default timeout for decompressing archived files, in seconds. Set to 0 to disable timeouts.
         :param pulumi.Input[_builtins.str] default_artifacts_expire_in: Set the default expiration time for each job’s artifacts.
         :param pulumi.Input[_builtins.str] default_branch_name: Instance-level custom initial branch name
-        :param pulumi.Input[_builtins.int] default_branch_protection: Determine if developers can push to the default branch. Can take: 0 (not protected, both users with the Developer role or Maintainer role can push new commits and force push), 1 (partially protected, users with the Developer role or Maintainer role can push new commits, but cannot force push) or 2 (fully protected, users with the Developer or Maintainer role cannot push new commits, but users with the Developer or Maintainer role can; no one can force push) as a parameter. Default is 2.
+        :param pulumi.Input[_builtins.int] default_branch_protection: Determine if developers can push to the default branch. Can take: 0 (not protected, both users with the Developer role or Maintainer role can push new commits and force push), 1 (partially protected, users with the Developer role or Maintainer role can push new commits, but cannot force push) or 2 (fully protected, users with the Developer or Maintainer role cannot push new commits, but users with the Developer or Maintainer role can; no one can force push) as a parameter. Default is 2. Use `default_branch_protection_defaults` instead. To be removed in 19.0.
         :param pulumi.Input[Union['ApplicationSettingsDefaultBranchProtectionDefaultsArgs', 'ApplicationSettingsDefaultBranchProtectionDefaultsArgsDict']] default_branch_protection_defaults: The default*branch*protection*defaults attribute describes the default branch protection defaults. All parameters are optional.
         :param pulumi.Input[_builtins.str] default_ci_config_path: Default CI/CD configuration file and path for new projects (.gitlab-ci.yml if not set).
         :param pulumi.Input[_builtins.str] default_group_visibility: What visibility level new groups receive. Can take private, internal and public as a parameter.
@@ -12471,9 +12479,10 @@ class ApplicationSettings(pulumi.CustomResource):
 
     @_builtins.property
     @pulumi.getter(name="defaultBranchProtection")
+    @_utilities.deprecated("""Use `default_branch_protection_defaults` instead. To be removed in 19.0.""")
     def default_branch_protection(self) -> pulumi.Output[_builtins.int]:
         """
-        Determine if developers can push to the default branch. Can take: 0 (not protected, both users with the Developer role or Maintainer role can push new commits and force push), 1 (partially protected, users with the Developer role or Maintainer role can push new commits, but cannot force push) or 2 (fully protected, users with the Developer or Maintainer role cannot push new commits, but users with the Developer or Maintainer role can; no one can force push) as a parameter. Default is 2.
+        Determine if developers can push to the default branch. Can take: 0 (not protected, both users with the Developer role or Maintainer role can push new commits and force push), 1 (partially protected, users with the Developer role or Maintainer role can push new commits, but cannot force push) or 2 (fully protected, users with the Developer or Maintainer role cannot push new commits, but users with the Developer or Maintainer role can; no one can force push) as a parameter. Default is 2. Use `default_branch_protection_defaults` instead. To be removed in 19.0.
         """
         return pulumi.get(self, "default_branch_protection")
 

pulumi_gitlab/branch.py

@@ -538,7 +538,7 @@ class Branch(pulumi.CustomResource):
 
     @_builtins.property
     @pulumi.getter(name="keepOnDestroy")
-    def keep_on_destroy(self) -> pulumi.Output[Optional[_builtins.bool]]:
+    def keep_on_destroy(self) -> pulumi.Output[_builtins.bool]:
         """
         Indicates whether the branch is kept once the resource destroyed (must be applied before a destroy).
         """

pulumi_gitlab/cluster_agent_token.py

@@ -540,7 +540,7 @@ class ClusterAgentToken(pulumi.CustomResource):
 
     @_builtins.property
     @pulumi.getter
-    def description(self) -> pulumi.Output[Optional[_builtins.str]]:
+    def description(self) -> pulumi.Output[_builtins.str]:
         """
         The Description for the agent.
         """

pulumi_gitlab/config/__init__.pyi

@@ -34,8 +34,23 @@ clientKey: Optional[str]
 File path to client key when GitLab instance is behind company proxy. File must contain PEM encoded data. Required when `client_cert` is set.
 """
 
+configFile: Optional[str]
+"""
+The path to the configuration file to use. It may be sourced from the `GITLAB_CONFIG_FILE` environment variable.
+"""
+
+context: Optional[str]
+"""
+The context to use for authentication and configuration. The context must exist in the configuration file. It may be sourced from the `GITLAB_CONTEXT` environment variable.
+"""
+
 earlyAuthCheck: Optional[bool]
 
+enableAutoCiSupport: Optional[bool]
+"""
+If automatic CI support should be enabled or not. This only works when not providing a token.
+"""
+
 headers: Optional[str]
 """
 A map of headers to append to all API request to the GitLab instance.

pulumi_gitlab/config/vars.py

@@ -48,10 +48,31 @@ class _ExportableConfig(types.ModuleType):
         """
         return __config__.get('clientKey')
 
+    @_builtins.property
+    def config_file(self) -> Optional[str]:
+        """
+        The path to the configuration file to use. It may be sourced from the `GITLAB_CONFIG_FILE` environment variable.
+        """
+        return __config__.get('configFile')
+
+    @_builtins.property
+    def context(self) -> Optional[str]:
+        """
+        The context to use for authentication and configuration. The context must exist in the configuration file. It may be sourced from the `GITLAB_CONTEXT` environment variable.
+        """
+        return __config__.get('context')
+
     @_builtins.property
     def early_auth_check(self) -> Optional[bool]:
         return __config__.get_bool('earlyAuthCheck')
 
+    @_builtins.property
+    def enable_auto_ci_support(self) -> Optional[bool]:
+        """
+        If automatic CI support should be enabled or not. This only works when not providing a token.
+        """
+        return __config__.get_bool('enableAutoCiSupport')
+
     @_builtins.property
     def headers(self) -> Optional[str]:
         """

pulumi_gitlab/deploy_key_enable.py

@@ -21,25 +21,17 @@ class DeployKeyEnableArgs:
     def __init__(__self__, *,
                  key_id: pulumi.Input[_builtins.str],
                  project: pulumi.Input[_builtins.str],
-                 can_push: Optional[pulumi.Input[_builtins.bool]] = None,
-                 key: Optional[pulumi.Input[_builtins.str]] = None,
-                 title: Optional[pulumi.Input[_builtins.str]] = None):
+                 can_push: Optional[pulumi.Input[_builtins.bool]] = None):
         """
         The set of arguments for constructing a DeployKeyEnable resource.
         :param pulumi.Input[_builtins.str] key_id: The Gitlab key id for the pre-existing deploy key
         :param pulumi.Input[_builtins.str] project: The name or id of the project to add the deploy key to.
         :param pulumi.Input[_builtins.bool] can_push: Can deploy key push to the project's repository.
-        :param pulumi.Input[_builtins.str] key: Deploy key.
-        :param pulumi.Input[_builtins.str] title: Deploy key's title.
         """
         pulumi.set(__self__, "key_id", key_id)
         pulumi.set(__self__, "project", project)
         if can_push is not None:
             pulumi.set(__self__, "can_push", can_push)
-        if key is not None:
-            pulumi.set(__self__, "key", key)
-        if title is not None:
-            pulumi.set(__self__, "title", title)
 
     @_builtins.property
     @pulumi.getter(name="keyId")
@@ -77,30 +69,6 @@ class DeployKeyEnableArgs:
     def can_push(self, value: Optional[pulumi.Input[_builtins.bool]]):
         pulumi.set(self, "can_push", value)
 
-    @_builtins.property
-    @pulumi.getter
-    def key(self) -> Optional[pulumi.Input[_builtins.str]]:
-        """
-        Deploy key.
-        """
-        return pulumi.get(self, "key")
-
-    @key.setter
-    def key(self, value: Optional[pulumi.Input[_builtins.str]]):
-        pulumi.set(self, "key", value)
-
-    @_builtins.property
-    @pulumi.getter
-    def title(self) -> Optional[pulumi.Input[_builtins.str]]:
-        """
-        Deploy key's title.
-        """
-        return pulumi.get(self, "title")
-
-    @title.setter
-    def title(self, value: Optional[pulumi.Input[_builtins.str]]):
-        pulumi.set(self, "title", value)
-
 
 @pulumi.input_type
 class _DeployKeyEnableState:
@@ -197,10 +165,8 @@ class DeployKeyEnable(pulumi.CustomResource):
                  resource_name: str,
                  opts: Optional[pulumi.ResourceOptions] = None,
                  can_push: Optional[pulumi.Input[_builtins.bool]] = None,
-                 key: Optional[pulumi.Input[_builtins.str]] = None,
                  key_id: Optional[pulumi.Input[_builtins.str]] = None,
                  project: Optional[pulumi.Input[_builtins.str]] = None,
-                 title: Optional[pulumi.Input[_builtins.str]] = None,
                  __props__=None):
         """
         The `DeployKeyEnable` resource allows to enable an already existing deploy key (see `DeployKey resource`) for a specific project.
@@ -261,10 +227,8 @@ class DeployKeyEnable(pulumi.CustomResource):
         :param str resource_name: The name of the resource.
         :param pulumi.ResourceOptions opts: Options for the resource.
         :param pulumi.Input[_builtins.bool] can_push: Can deploy key push to the project's repository.
-        :param pulumi.Input[_builtins.str] key: Deploy key.
         :param pulumi.Input[_builtins.str] key_id: The Gitlab key id for the pre-existing deploy key
         :param pulumi.Input[_builtins.str] project: The name or id of the project to add the deploy key to.
-        :param pulumi.Input[_builtins.str] title: Deploy key's title.
         """
         ...
     @overload
@@ -344,10 +308,8 @@ class DeployKeyEnable(pulumi.CustomResource):
                  resource_name: str,
                  opts: Optional[pulumi.ResourceOptions] = None,
                  can_push: Optional[pulumi.Input[_builtins.bool]] = None,
-                 key: Optional[pulumi.Input[_builtins.str]] = None,
                  key_id: Optional[pulumi.Input[_builtins.str]] = None,
                  project: Optional[pulumi.Input[_builtins.str]] = None,
-                 title: Optional[pulumi.Input[_builtins.str]] = None,
                  __props__=None):
         opts = pulumi.ResourceOptions.merge(_utilities.get_resource_opts_defaults(), opts)
         if not isinstance(opts, pulumi.ResourceOptions):
@@ -358,14 +320,14 @@ class DeployKeyEnable(pulumi.CustomResource):
             __props__ = DeployKeyEnableArgs.__new__(DeployKeyEnableArgs)
 
             __props__.__dict__["can_push"] = can_push
-            __props__.__dict__["key"] = key
             if key_id is None and not opts.urn:
                 raise TypeError("Missing required property 'key_id'")
             __props__.__dict__["key_id"] = key_id
             if project is None and not opts.urn:
                 raise TypeError("Missing required property 'project'")
             __props__.__dict__["project"] = project
-            __props__.__dict__["title"] = title
+            __props__.__dict__["key"] = None
+            __props__.__dict__["title"] = None
         super(DeployKeyEnable, __self__).__init__(
             'gitlab:index/deployKeyEnable:DeployKeyEnable',
             resource_name,
@@ -407,7 +369,7 @@ class DeployKeyEnable(pulumi.CustomResource):
 
     @_builtins.property
     @pulumi.getter(name="canPush")
-    def can_push(self) -> pulumi.Output[Optional[_builtins.bool]]:
+    def can_push(self) -> pulumi.Output[_builtins.bool]:
         """
         Can deploy key push to the project's repository.
         """

pulumi_gitlab/deploy_token.py

@@ -27,7 +27,7 @@ class DeployTokenArgs:
                  username: Optional[pulumi.Input[_builtins.str]] = None):
         """
         The set of arguments for constructing a DeployToken resource.
-        :param pulumi.Input[Sequence[pulumi.Input[_builtins.str]]] scopes: Valid values: `read_repository`, `read_registry`, `read_package_registry`, `write_registry`, `write_package_registry`.
+        :param pulumi.Input[Sequence[pulumi.Input[_builtins.str]]] scopes: The scopes of the deploy token. Valid values are: `read_repository`, `read_registry`, `write_registry`, `read_virtual_registry`, `write_virtual_registry`, `read_package_registry`, `write_package_registry`
         :param pulumi.Input[_builtins.str] expires_at: Time the token will expire it, RFC3339 format. Will not expire per default.
         :param pulumi.Input[_builtins.str] group: The name or id of the group to add the deploy token to.
         :param pulumi.Input[_builtins.str] name: A name to describe the deploy token with.
@@ -50,7 +50,7 @@ class DeployTokenArgs:
     @pulumi.getter
     def scopes(self) -> pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]:
         """
-        Valid values: `read_repository`, `read_registry`, `read_package_registry`, `write_registry`, `write_package_registry`.
+        The scopes of the deploy token. Valid values are: `read_repository`, `read_registry`, `write_registry`, `read_virtual_registry`, `write_virtual_registry`, `read_package_registry`, `write_package_registry`
         """
         return pulumi.get(self, "scopes")
 
@@ -137,7 +137,7 @@ class _DeployTokenState:
         :param pulumi.Input[_builtins.str] group: The name or id of the group to add the deploy token to.
         :param pulumi.Input[_builtins.str] name: A name to describe the deploy token with.
         :param pulumi.Input[_builtins.str] project: The name or id of the project to add the deploy token to.
-        :param pulumi.Input[Sequence[pulumi.Input[_builtins.str]]] scopes: Valid values: `read_repository`, `read_registry`, `read_package_registry`, `write_registry`, `write_package_registry`.
+        :param pulumi.Input[Sequence[pulumi.Input[_builtins.str]]] scopes: The scopes of the deploy token. Valid values are: `read_repository`, `read_registry`, `write_registry`, `read_virtual_registry`, `write_virtual_registry`, `read_package_registry`, `write_package_registry`
         :param pulumi.Input[_builtins.str] token: The secret token. This is only populated when creating a new deploy token. **Note**: The token is not available for imported resources.
         :param pulumi.Input[_builtins.str] username: A username for the deploy token. Default is `gitlab+deploy-token-{n}`.
         """
@@ -222,7 +222,7 @@ class _DeployTokenState:
     @pulumi.getter
     def scopes(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]]:
         """
-        Valid values: `read_repository`, `read_registry`, `read_package_registry`, `write_registry`, `write_package_registry`.
+        The scopes of the deploy token. Valid values are: `read_repository`, `read_registry`, `write_registry`, `read_virtual_registry`, `write_virtual_registry`, `read_package_registry`, `write_package_registry`
         """
         return pulumi.get(self, "scopes")
 
@@ -271,6 +271,8 @@ class DeployToken(pulumi.CustomResource):
         """
         The `DeployToken` resource allows to manage the lifecycle of group and project deploy tokens.
 
+        > This resource is deprecated and will be removed in 19.0. Use `ProjectDeployToken` or `GroupDeployToken` instead!
+
         **Upstream API**: [GitLab REST API docs](https://docs.gitlab.com/api/deploy_tokens/)
 
         ## Import
@@ -307,7 +309,7 @@ class DeployToken(pulumi.CustomResource):
         :param pulumi.Input[_builtins.str] group: The name or id of the group to add the deploy token to.
         :param pulumi.Input[_builtins.str] name: A name to describe the deploy token with.
         :param pulumi.Input[_builtins.str] project: The name or id of the project to add the deploy token to.
-        :param pulumi.Input[Sequence[pulumi.Input[_builtins.str]]] scopes: Valid values: `read_repository`, `read_registry`, `read_package_registry`, `write_registry`, `write_package_registry`.
+        :param pulumi.Input[Sequence[pulumi.Input[_builtins.str]]] scopes: The scopes of the deploy token. Valid values are: `read_repository`, `read_registry`, `write_registry`, `read_virtual_registry`, `write_virtual_registry`, `read_package_registry`, `write_package_registry`
         :param pulumi.Input[_builtins.str] username: A username for the deploy token. Default is `gitlab+deploy-token-{n}`.
         """
         ...
@@ -319,6 +321,8 @@ class DeployToken(pulumi.CustomResource):
         """
         The `DeployToken` resource allows to manage the lifecycle of group and project deploy tokens.
 
+        > This resource is deprecated and will be removed in 19.0. Use `ProjectDeployToken` or `GroupDeployToken` instead!
+
         **Upstream API**: [GitLab REST API docs](https://docs.gitlab.com/api/deploy_tokens/)
 
         ## Import
@@ -421,7 +425,7 @@ class DeployToken(pulumi.CustomResource):
         :param pulumi.Input[_builtins.str] group: The name or id of the group to add the deploy token to.
         :param pulumi.Input[_builtins.str] name: A name to describe the deploy token with.
         :param pulumi.Input[_builtins.str] project: The name or id of the project to add the deploy token to.
-        :param pulumi.Input[Sequence[pulumi.Input[_builtins.str]]] scopes: Valid values: `read_repository`, `read_registry`, `read_package_registry`, `write_registry`, `write_package_registry`.
+        :param pulumi.Input[Sequence[pulumi.Input[_builtins.str]]] scopes: The scopes of the deploy token. Valid values are: `read_repository`, `read_registry`, `write_registry`, `read_virtual_registry`, `write_virtual_registry`, `read_package_registry`, `write_package_registry`
         :param pulumi.Input[_builtins.str] token: The secret token. This is only populated when creating a new deploy token. **Note**: The token is not available for imported resources.
         :param pulumi.Input[_builtins.str] username: A username for the deploy token. Default is `gitlab+deploy-token-{n}`.
         """
@@ -483,7 +487,7 @@ class DeployToken(pulumi.CustomResource):
     @pulumi.getter
     def scopes(self) -> pulumi.Output[Sequence[_builtins.str]]:
         """
-        Valid values: `read_repository`, `read_registry`, `read_package_registry`, `write_registry`, `write_package_registry`.
+        The scopes of the deploy token. Valid values are: `read_repository`, `read_registry`, `write_registry`, `read_virtual_registry`, `write_virtual_registry`, `read_package_registry`, `write_package_registry`
         """
         return pulumi.get(self, "scopes")
 

pulumi_gitlab/get_artifact_file.py

@@ -0,0 +1,266 @@
+# coding=utf-8
+# *** WARNING: this file was generated by pulumi-language-python. ***
+# *** Do not edit by hand unless you're certain you know what you are doing! ***
+
+import builtins as _builtins
+import warnings
+import sys
+import pulumi
+import pulumi.runtime
+from typing import Any, Mapping, Optional, Sequence, Union, overload
+if sys.version_info >= (3, 11):
+    from typing import NotRequired, TypedDict, TypeAlias
+else:
+    from typing_extensions import NotRequired, TypedDict, TypeAlias
+from . import _utilities
+
+__all__ = [
+    'GetArtifactFileResult',
+    'AwaitableGetArtifactFileResult',
+    'get_artifact_file',
+    'get_artifact_file_output',
+]
+
+@pulumi.output_type
+class GetArtifactFileResult:
+    """
+    A collection of values returned by getArtifactFile.
+    """
+    def __init__(__self__, artifact_path=None, content=None, content_base64=None, id=None, job=None, max_size_bytes=None, project=None, ref=None):
+        if artifact_path and not isinstance(artifact_path, str):
+            raise TypeError("Expected argument 'artifact_path' to be a str")
+        pulumi.set(__self__, "artifact_path", artifact_path)
+        if content and not isinstance(content, str):
+            raise TypeError("Expected argument 'content' to be a str")
+        pulumi.set(__self__, "content", content)
+        if content_base64 and not isinstance(content_base64, str):
+            raise TypeError("Expected argument 'content_base64' to be a str")
+        pulumi.set(__self__, "content_base64", content_base64)
+        if id and not isinstance(id, str):
+            raise TypeError("Expected argument 'id' to be a str")
+        pulumi.set(__self__, "id", id)
+        if job and not isinstance(job, str):
+            raise TypeError("Expected argument 'job' to be a str")
+        pulumi.set(__self__, "job", job)
+        if max_size_bytes and not isinstance(max_size_bytes, int):
+            raise TypeError("Expected argument 'max_size_bytes' to be a int")
+        pulumi.set(__self__, "max_size_bytes", max_size_bytes)
+        if project and not isinstance(project, str):
+            raise TypeError("Expected argument 'project' to be a str")
+        pulumi.set(__self__, "project", project)
+        if ref and not isinstance(ref, str):
+            raise TypeError("Expected argument 'ref' to be a str")
+        pulumi.set(__self__, "ref", ref)
+
+    @_builtins.property
+    @pulumi.getter(name="artifactPath")
+    def artifact_path(self) -> _builtins.str:
+        """
+        Path to the artifact file within the job's artifacts archive. This path is relative to the archive contents (not the local filesystem). Ensure each `get_artifact_file` data source in your configuration uses a unique artifact_path to avoid ambiguity.
+        """
+        return pulumi.get(self, "artifact_path")
+
+    @_builtins.property
+    @pulumi.getter
+    def content(self) -> _builtins.str:
+        """
+        The content of the artifact file as a UTF-8 string. Use `content_base64` for binary files.
+        """
+        return pulumi.get(self, "content")
+
+    @_builtins.property
+    @pulumi.getter(name="contentBase64")
+    def content_base64(self) -> _builtins.str:
+        """
+        The content of the artifact file as a base64-encoded string. Useful for binary files.
+        """
+        return pulumi.get(self, "content_base64")
+
+    @_builtins.property
+    @pulumi.getter
+    def id(self) -> _builtins.str:
+        """
+        The ID of this datasource. In the format `<project>:<ref>:<job>:<artifact_path>`.
+        """
+        return pulumi.get(self, "id")
+
+    @_builtins.property
+    @pulumi.getter
+    def job(self) -> _builtins.str:
+        """
+        The name of the job.
+        """
+        return pulumi.get(self, "job")
+
+    @_builtins.property
+    @pulumi.getter(name="maxSizeBytes")
+    def max_size_bytes(self) -> Optional[_builtins.int]:
+        """
+        Maximum bytes to read from the artifact. Defaults to 10MB (10485760 bytes).
+        """
+        return pulumi.get(self, "max_size_bytes")
+
+    @_builtins.property
+    @pulumi.getter
+    def project(self) -> _builtins.str:
+        """
+        The ID or URL-encoded path of the project.
+        """
+        return pulumi.get(self, "project")
+
+    @_builtins.property
+    @pulumi.getter
+    def ref(self) -> _builtins.str:
+        """
+        The name of the branch, tag, or commit SHA.
+        """
+        return pulumi.get(self, "ref")
+
+
+class AwaitableGetArtifactFileResult(GetArtifactFileResult):
+    # pylint: disable=using-constant-test
+    def __await__(self):
+        if False:
+            yield self
+        return GetArtifactFileResult(
+            artifact_path=self.artifact_path,
+            content=self.content,
+            content_base64=self.content_base64,
+            id=self.id,
+            job=self.job,
+            max_size_bytes=self.max_size_bytes,
+            project=self.project,
+            ref=self.ref)
+
+
+def get_artifact_file(artifact_path: Optional[_builtins.str] = None,
+                      job: Optional[_builtins.str] = None,
+                      max_size_bytes: Optional[_builtins.int] = None,
+                      project: Optional[_builtins.str] = None,
+                      ref: Optional[_builtins.str] = None,
+                      opts: Optional[pulumi.InvokeOptions] = None) -> AwaitableGetArtifactFileResult:
+    """
+    The `get_artifact_file` data source allows downloading a single artifact file from a specific job in the latest successful pipeline for a given reference (branch, tag, or commit).
+    **Upstream API**: [GitLab REST API docs](https://docs.gitlab.com/api/job_artifacts/#download-a-single-artifact-file-by-reference-name)
+
+    ## Example Usage
+
+    ```python
+    import pulumi
+    import pulumi_gitlab as gitlab
+
+    # Download a text artifact file from the latest successful pipeline
+    config = gitlab.get_artifact_file(project="namespace/myproject",
+        job="build-job",
+        ref="main",
+        artifact_path="config/settings.json")
+    pulumi.export("configContent", config.content)
+    # Download a binary artifact file using base64 encoding
+    binary = gitlab.get_artifact_file(project="namespace/myproject",
+        job="build-job",
+        ref="v1.0.0",
+        artifact_path="dist/app.zip")
+    pulumi.export("binaryContentBase64", binary.content_base64)
+    # Download artifact from a specific tag
+    release = gitlab.get_artifact_file(project="12345",
+        job="release-job",
+        ref="v2.1.0",
+        artifact_path="release-notes.txt")
+    # Download a larger artifact with custom size limit
+    large_artifact = gitlab.get_artifact_file(project="namespace/myproject",
+        job="build-job",
+        ref="main",
+        artifact_path="dist/large-file.zip",
+        max_size_bytes=20971520)
+    ```
+
+
+    :param _builtins.str artifact_path: Path to the artifact file within the job's artifacts archive. This path is relative to the archive contents (not the local filesystem). Ensure each `get_artifact_file` data source in your configuration uses a unique artifact_path to avoid ambiguity.
+    :param _builtins.str job: The name of the job.
+    :param _builtins.int max_size_bytes: Maximum bytes to read from the artifact. Defaults to 10MB (10485760 bytes).
+    :param _builtins.str project: The ID or URL-encoded path of the project.
+    :param _builtins.str ref: The name of the branch, tag, or commit SHA.
+    """
+    __args__ = dict()
+    __args__['artifactPath'] = artifact_path
+    __args__['job'] = job
+    __args__['maxSizeBytes'] = max_size_bytes
+    __args__['project'] = project
+    __args__['ref'] = ref
+    opts = pulumi.InvokeOptions.merge(_utilities.get_invoke_opts_defaults(), opts)
+    __ret__ = pulumi.runtime.invoke('gitlab:index/getArtifactFile:getArtifactFile', __args__, opts=opts, typ=GetArtifactFileResult).value
+
+    return AwaitableGetArtifactFileResult(
+        artifact_path=pulumi.get(__ret__, 'artifact_path'),
+        content=pulumi.get(__ret__, 'content'),
+        content_base64=pulumi.get(__ret__, 'content_base64'),
+        id=pulumi.get(__ret__, 'id'),
+        job=pulumi.get(__ret__, 'job'),
+        max_size_bytes=pulumi.get(__ret__, 'max_size_bytes'),
+        project=pulumi.get(__ret__, 'project'),
+        ref=pulumi.get(__ret__, 'ref'))
+def get_artifact_file_output(artifact_path: Optional[pulumi.Input[_builtins.str]] = None,
+                             job: Optional[pulumi.Input[_builtins.str]] = None,
+                             max_size_bytes: Optional[pulumi.Input[Optional[_builtins.int]]] = None,
+                             project: Optional[pulumi.Input[_builtins.str]] = None,
+                             ref: Optional[pulumi.Input[_builtins.str]] = None,
+                             opts: Optional[Union[pulumi.InvokeOptions, pulumi.InvokeOutputOptions]] = None) -> pulumi.Output[GetArtifactFileResult]:
+    """
+    The `get_artifact_file` data source allows downloading a single artifact file from a specific job in the latest successful pipeline for a given reference (branch, tag, or commit).
+    **Upstream API**: [GitLab REST API docs](https://docs.gitlab.com/api/job_artifacts/#download-a-single-artifact-file-by-reference-name)
+
+    ## Example Usage
+
+    ```python
+    import pulumi
+    import pulumi_gitlab as gitlab
+
+    # Download a text artifact file from the latest successful pipeline
+    config = gitlab.get_artifact_file(project="namespace/myproject",
+        job="build-job",
+        ref="main",
+        artifact_path="config/settings.json")
+    pulumi.export("configContent", config.content)
+    # Download a binary artifact file using base64 encoding
+    binary = gitlab.get_artifact_file(project="namespace/myproject",
+        job="build-job",
+        ref="v1.0.0",
+        artifact_path="dist/app.zip")
+    pulumi.export("binaryContentBase64", binary.content_base64)
+    # Download artifact from a specific tag
+    release = gitlab.get_artifact_file(project="12345",
+        job="release-job",
+        ref="v2.1.0",
+        artifact_path="release-notes.txt")
+    # Download a larger artifact with custom size limit
+    large_artifact = gitlab.get_artifact_file(project="namespace/myproject",
+        job="build-job",
+        ref="main",
+        artifact_path="dist/large-file.zip",
+        max_size_bytes=20971520)
+    ```
+
+
+    :param _builtins.str artifact_path: Path to the artifact file within the job's artifacts archive. This path is relative to the archive contents (not the local filesystem). Ensure each `get_artifact_file` data source in your configuration uses a unique artifact_path to avoid ambiguity.
+    :param _builtins.str job: The name of the job.
+    :param _builtins.int max_size_bytes: Maximum bytes to read from the artifact. Defaults to 10MB (10485760 bytes).
+    :param _builtins.str project: The ID or URL-encoded path of the project.
+    :param _builtins.str ref: The name of the branch, tag, or commit SHA.
+    """
+    __args__ = dict()
+    __args__['artifactPath'] = artifact_path
+    __args__['job'] = job
+    __args__['maxSizeBytes'] = max_size_bytes
+    __args__['project'] = project
+    __args__['ref'] = ref
+    opts = pulumi.InvokeOutputOptions.merge(_utilities.get_invoke_opts_defaults(), opts)
+    __ret__ = pulumi.runtime.invoke_output('gitlab:index/getArtifactFile:getArtifactFile', __args__, opts=opts, typ=GetArtifactFileResult)
+    return __ret__.apply(lambda __response__: GetArtifactFileResult(
+        artifact_path=pulumi.get(__response__, 'artifact_path'),
+        content=pulumi.get(__response__, 'content'),
+        content_base64=pulumi.get(__response__, 'content_base64'),
+        id=pulumi.get(__response__, 'id'),
+        job=pulumi.get(__response__, 'job'),
+        max_size_bytes=pulumi.get(__response__, 'max_size_bytes'),
+        project=pulumi.get(__response__, 'project'),
+        ref=pulumi.get(__response__, 'ref')))

pulumi_gitlab/get_branch.py

@@ -106,7 +106,7 @@ class GetBranchResult:
     @pulumi.getter
     def id(self) -> _builtins.str:
         """
-        The provider-assigned unique ID for this managed resource.
+        The ID of this datasource. In the format `<project:name>`.
         """
         return pulumi.get(self, "id")