pulumi-snowflake 0.50.2a1709892015__py3-none-any.whl → 1.2.0a1736835738__py3-none-any.whl

pulumi_snowflake/grant_privileges_to_database_role.py

@@ -4,9 +4,14 @@
 
 import copy
 import warnings
+import sys
 import pulumi
 import pulumi.runtime
 from typing import Any, Mapping, Optional, Sequence, Union, overload
+if sys.version_info >= (3, 11):
+    from typing import NotRequired, TypedDict, TypeAlias
+else:
+    from typing_extensions import NotRequired, TypedDict, TypeAlias
 from . import _utilities
 from . import outputs
 from ._inputs import *
@@ -27,15 +32,10 @@ class GrantPrivilegesToDatabaseRoleArgs:
                  with_grant_option: Optional[pulumi.Input[bool]] = None):
         """
         The set of arguments for constructing a GrantPrivilegesToDatabaseRole resource.
-        :param pulumi.Input[str] database_role_name: The fully qualified name of the database role to which privileges will be granted.
+        :param pulumi.Input[str] database_role_name: The fully qualified name of the database role to which privileges will be granted. For more information about this resource, see docs.
         :param pulumi.Input[bool] all_privileges: Grant all privileges on the database role.
-        :param pulumi.Input[bool] always_apply: If true, the resource will always produce a “plan” and on “apply” it will re-grant defined privileges. It is
-               supposed to be used only in “grant privileges on all X’s in database / schema Y” or “grant all privileges to
-               X” scenarios to make sure that every new object in a given database / schema is granted by the account role and every
-               new privilege is granted to the database role. Important note: this flag is not compliant with the Terraform assumptions
-               of the config being eventually convergent (producing an empty plan).
         :param pulumi.Input[str] always_apply_trigger: This is a helper field and should not be set. Its main purpose is to help to achieve the functionality described by the always_apply field.
-        :param pulumi.Input[str] on_database: The fully qualified name of the database on which privileges will be granted.
+        :param pulumi.Input[str] on_database: The fully qualified name of the database on which privileges will be granted. For more information about this resource, see docs.
         :param pulumi.Input['GrantPrivilegesToDatabaseRoleOnSchemaArgs'] on_schema: Specifies the schema on which privileges will be granted.
         :param pulumi.Input['GrantPrivilegesToDatabaseRoleOnSchemaObjectArgs'] on_schema_object: Specifies the schema object on which privileges will be granted.
         :param pulumi.Input[Sequence[pulumi.Input[str]]] privileges: The privileges to grant on the database role.
@@ -63,7 +63,7 @@ class GrantPrivilegesToDatabaseRoleArgs:
     @pulumi.getter(name="databaseRoleName")
     def database_role_name(self) -> pulumi.Input[str]:
         """
-        The fully qualified name of the database role to which privileges will be granted.
+        The fully qualified name of the database role to which privileges will be granted. For more information about this resource, see docs.
         """
         return pulumi.get(self, "database_role_name")
 
@@ -86,13 +86,6 @@ class GrantPrivilegesToDatabaseRoleArgs:
     @property
     @pulumi.getter(name="alwaysApply")
     def always_apply(self) -> Optional[pulumi.Input[bool]]:
-        """
-        If true, the resource will always produce a “plan” and on “apply” it will re-grant defined privileges. It is
-        supposed to be used only in “grant privileges on all X’s in database / schema Y” or “grant all privileges to
-        X” scenarios to make sure that every new object in a given database / schema is granted by the account role and every
-        new privilege is granted to the database role. Important note: this flag is not compliant with the Terraform assumptions
-        of the config being eventually convergent (producing an empty plan).
-        """
         return pulumi.get(self, "always_apply")
 
     @always_apply.setter
@@ -115,7 +108,7 @@ class GrantPrivilegesToDatabaseRoleArgs:
     @pulumi.getter(name="onDatabase")
     def on_database(self) -> Optional[pulumi.Input[str]]:
         """
-        The fully qualified name of the database on which privileges will be granted.
+        The fully qualified name of the database on which privileges will be granted. For more information about this resource, see docs.
         """
         return pulumi.get(self, "on_database")
 
@@ -187,14 +180,9 @@ class _GrantPrivilegesToDatabaseRoleState:
         """
         Input properties used for looking up and filtering GrantPrivilegesToDatabaseRole resources.
         :param pulumi.Input[bool] all_privileges: Grant all privileges on the database role.
-        :param pulumi.Input[bool] always_apply: If true, the resource will always produce a “plan” and on “apply” it will re-grant defined privileges. It is
-               supposed to be used only in “grant privileges on all X’s in database / schema Y” or “grant all privileges to
-               X” scenarios to make sure that every new object in a given database / schema is granted by the account role and every
-               new privilege is granted to the database role. Important note: this flag is not compliant with the Terraform assumptions
-               of the config being eventually convergent (producing an empty plan).
         :param pulumi.Input[str] always_apply_trigger: This is a helper field and should not be set. Its main purpose is to help to achieve the functionality described by the always_apply field.
-        :param pulumi.Input[str] database_role_name: The fully qualified name of the database role to which privileges will be granted.
-        :param pulumi.Input[str] on_database: The fully qualified name of the database on which privileges will be granted.
+        :param pulumi.Input[str] database_role_name: The fully qualified name of the database role to which privileges will be granted. For more information about this resource, see docs.
+        :param pulumi.Input[str] on_database: The fully qualified name of the database on which privileges will be granted. For more information about this resource, see docs.
         :param pulumi.Input['GrantPrivilegesToDatabaseRoleOnSchemaArgs'] on_schema: Specifies the schema on which privileges will be granted.
         :param pulumi.Input['GrantPrivilegesToDatabaseRoleOnSchemaObjectArgs'] on_schema_object: Specifies the schema object on which privileges will be granted.
         :param pulumi.Input[Sequence[pulumi.Input[str]]] privileges: The privileges to grant on the database role.
@@ -234,13 +222,6 @@ class _GrantPrivilegesToDatabaseRoleState:
     @property
     @pulumi.getter(name="alwaysApply")
     def always_apply(self) -> Optional[pulumi.Input[bool]]:
-        """
-        If true, the resource will always produce a “plan” and on “apply” it will re-grant defined privileges. It is
-        supposed to be used only in “grant privileges on all X’s in database / schema Y” or “grant all privileges to
-        X” scenarios to make sure that every new object in a given database / schema is granted by the account role and every
-        new privilege is granted to the database role. Important note: this flag is not compliant with the Terraform assumptions
-        of the config being eventually convergent (producing an empty plan).
-        """
         return pulumi.get(self, "always_apply")
 
     @always_apply.setter
@@ -263,7 +244,7 @@ class _GrantPrivilegesToDatabaseRoleState:
     @pulumi.getter(name="databaseRoleName")
     def database_role_name(self) -> Optional[pulumi.Input[str]]:
         """
-        The fully qualified name of the database role to which privileges will be granted.
+        The fully qualified name of the database role to which privileges will be granted. For more information about this resource, see docs.
         """
         return pulumi.get(self, "database_role_name")
 
@@ -275,7 +256,7 @@ class _GrantPrivilegesToDatabaseRoleState:
     @pulumi.getter(name="onDatabase")
     def on_database(self) -> Optional[pulumi.Input[str]]:
         """
-        The fully qualified name of the database on which privileges will be granted.
+        The fully qualified name of the database on which privileges will be granted. For more information about this resource, see docs.
         """
         return pulumi.get(self, "on_database")
 
@@ -342,87 +323,12 @@ class GrantPrivilegesToDatabaseRole(pulumi.CustomResource):
                  always_apply_trigger: Optional[pulumi.Input[str]] = None,
                  database_role_name: Optional[pulumi.Input[str]] = None,
                  on_database: Optional[pulumi.Input[str]] = None,
-                 on_schema: Optional[pulumi.Input[pulumi.InputType['GrantPrivilegesToDatabaseRoleOnSchemaArgs']]] = None,
-                 on_schema_object: Optional[pulumi.Input[pulumi.InputType['GrantPrivilegesToDatabaseRoleOnSchemaObjectArgs']]] = None,
+                 on_schema: Optional[pulumi.Input[Union['GrantPrivilegesToDatabaseRoleOnSchemaArgs', 'GrantPrivilegesToDatabaseRoleOnSchemaArgsDict']]] = None,
+                 on_schema_object: Optional[pulumi.Input[Union['GrantPrivilegesToDatabaseRoleOnSchemaObjectArgs', 'GrantPrivilegesToDatabaseRoleOnSchemaObjectArgsDict']]] = None,
                  privileges: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
                  with_grant_option: Optional[pulumi.Input[bool]] = None,
                  __props__=None):
         """
-        > **Note** This is a preview resource. It's ready for general use. In case of any errors, please file an issue in our GitHub repository.
-
-        !> **Warning** Be careful when using `always_apply` field. It will always produce a plan (even when no changes were made) and can be harmful in some setups. For more details why we decided to introduce it to go our document explaining those design decisions (coming soon).
-
-        ## Example Usage
-        ### on database privileges
-        ##################################
-
-        # list of privileges
-        resource "snowflake_grant_privileges_to_database_role" "example" {
-          privileges         = ["CREATE", "MONITOR"]
-          database_role_name = "\\"${snowflake_database_role.db_role.database}\\".\\"${snowflake_database_role.db_role.name}\\""
-          on_database        = snowflake_database_role.db_role.database
-        }
-
-        # all privileges + grant option
-        resource "snowflake_grant_privileges_to_database_role" "example" {
-          database_role_name = "\\"${snowflake_database_role.db_role.database}\\".\\"${snowflake_database_role.db_role.name}\\""
-          on_database        = snowflake_database_role.db_role.database
-          all_privileges     = true
-          with_grant_option  = true
-        }
-
-        # all privileges + grant option + always apply
-        resource "snowflake_grant_privileges_to_database_role" "example" {
-          database_role_name = "\\"${snowflake_database_role.db_role.database}\\".\\"${snowflake_database_role.db_role.name}\\""
-          on_database        = snowflake_database_role.db_role.database
-          always_apply       = true
-          all_privileges     = true
-          with_grant_option  = true
-        }
-
-        ##################################
-        ### schema privileges
-        ##################################
-
-        # list of privileges
-        resource "snowflake_grant_privileges_to_database_role" "example" {
-          privileges         = ["MODIFY", "CREATE TABLE"]
-          database_role_name = "\\"${snowflake_database_role.db_role.database}\\".\\"${snowflake_database_role.db_role.name}\\""
-          on_schema {
-            schema_name = "\\"${snowflake_database_role.db_role.database}\\".\\"my_schema\\"" # note this is a fully qualified name!
-          }
-        }
-
-        # all privileges + grant option
-        resource "snowflake_grant_privileges_to_database_role" "example" {
-          database_role_name = "\\"${snowflake_database_role.db_role.database}\\".\\"${snowflake_database_role.db_role.name}\\""
-          on_schema {
-            schema_name = "\\"${snowflake_database_role.db_role.database}\\".\\"my_schema\\"" # note this is a fully qualified name!
-          }
-          all_privileges    = true
-          with_grant_option = true
-        }
-
-        # all schemas in database
-        resource "snowflake_grant_privileges_to_database_role" "example" {
-          privileges         = ["MODIFY", "CREATE TABLE"]
-          database_role_name = "\\"${snowflake_database_role.db_role.database}\\".\\"${snowflake_database_role.db_role.name}\\""
-          on_schema {
-            all_schemas_in_database = snowflake_database_role.db_role.database
-          }
-        }
-
-        # future schemas in database
-        resource "snowflake_grant_privileges_to_database_role" "example" {
-          privileges         = ["MODIFY", "CREATE TABLE"]
-          database_role_name = "\\"${snowflake_database_role.db_role.database}\\".\\"${snowflake_database_role.db_role.name}\\""
-          on_schema {
-            future_schemas_in_database = snowflake_database_role.db_role.database
-          }
-        }
-
-        ##################################
-
         ## Import
 
         ### Import examples
@@ -430,40 +336,35 @@ class GrantPrivilegesToDatabaseRole(pulumi.CustomResource):
         #### Grant all privileges OnDatabase
 
         ```sh
-        $ pulumi import snowflake:index/grantPrivilegesToDatabaseRole:GrantPrivilegesToDatabaseRole \\"test_db_role\\"|false|false|ALL|OnDatabase|\\"test_db\\""`
+        $ pulumi import snowflake:index/grantPrivilegesToDatabaseRole:GrantPrivilegesToDatabaseRole example '"test_db"."test_db_role"|false|false|ALL|OnDatabase|"test_db"'`
         ```
 
         #### Grant list of privileges OnAllSchemasInDatabase
 
         ```sh
-        $ pulumi import snowflake:index/grantPrivilegesToDatabaseRole:GrantPrivilegesToDatabaseRole \\"test_db_role\\"|false|false|CREATE TAG,CREATE TABLE|OnSchema|OnAllSchemasInDatabase|\\"test_db\\""`
+        $ pulumi import snowflake:index/grantPrivilegesToDatabaseRole:GrantPrivilegesToDatabaseRole example '"test_db"."test_db_role"|false|false|CREATE TAG,CREATE TABLE|OnSchema|OnAllSchemasInDatabase|"test_db"'`
         ```
 
         #### Grant list of privileges on table
 
         ```sh
-        $ pulumi import snowflake:index/grantPrivilegesToDatabaseRole:GrantPrivilegesToDatabaseRole \\"test_table\\""`
+        $ pulumi import snowflake:index/grantPrivilegesToDatabaseRole:GrantPrivilegesToDatabaseRole example '"test_db"."test_db_role"|false|false|SELECT,DELETE,INSERT|OnSchemaObject|OnObject|TABLE|"test_db"."test_schema"."test_table"'`
         ```
 
         #### Grant list of privileges OnAll tables in schema
 
         ```sh
-        $ pulumi import snowflake:index/grantPrivilegesToDatabaseRole:GrantPrivilegesToDatabaseRole \\"test_schema\\""`
+        $ pulumi import snowflake:index/grantPrivilegesToDatabaseRole:GrantPrivilegesToDatabaseRole example '"test_db"."test_db_role"|false|false|SELECT,DELETE,INSERT|OnSchemaObject|OnAll|TABLES|InSchema|"test_db"."test_schema"'`
         ```
 
         :param str resource_name: The name of the resource.
         :param pulumi.ResourceOptions opts: Options for the resource.
         :param pulumi.Input[bool] all_privileges: Grant all privileges on the database role.
-        :param pulumi.Input[bool] always_apply: If true, the resource will always produce a “plan” and on “apply” it will re-grant defined privileges. It is
-               supposed to be used only in “grant privileges on all X’s in database / schema Y” or “grant all privileges to
-               X” scenarios to make sure that every new object in a given database / schema is granted by the account role and every
-               new privilege is granted to the database role. Important note: this flag is not compliant with the Terraform assumptions
-               of the config being eventually convergent (producing an empty plan).
         :param pulumi.Input[str] always_apply_trigger: This is a helper field and should not be set. Its main purpose is to help to achieve the functionality described by the always_apply field.
-        :param pulumi.Input[str] database_role_name: The fully qualified name of the database role to which privileges will be granted.
-        :param pulumi.Input[str] on_database: The fully qualified name of the database on which privileges will be granted.
-        :param pulumi.Input[pulumi.InputType['GrantPrivilegesToDatabaseRoleOnSchemaArgs']] on_schema: Specifies the schema on which privileges will be granted.
-        :param pulumi.Input[pulumi.InputType['GrantPrivilegesToDatabaseRoleOnSchemaObjectArgs']] on_schema_object: Specifies the schema object on which privileges will be granted.
+        :param pulumi.Input[str] database_role_name: The fully qualified name of the database role to which privileges will be granted. For more information about this resource, see docs.
+        :param pulumi.Input[str] on_database: The fully qualified name of the database on which privileges will be granted. For more information about this resource, see docs.
+        :param pulumi.Input[Union['GrantPrivilegesToDatabaseRoleOnSchemaArgs', 'GrantPrivilegesToDatabaseRoleOnSchemaArgsDict']] on_schema: Specifies the schema on which privileges will be granted.
+        :param pulumi.Input[Union['GrantPrivilegesToDatabaseRoleOnSchemaObjectArgs', 'GrantPrivilegesToDatabaseRoleOnSchemaObjectArgsDict']] on_schema_object: Specifies the schema object on which privileges will be granted.
         :param pulumi.Input[Sequence[pulumi.Input[str]]] privileges: The privileges to grant on the database role.
         :param pulumi.Input[bool] with_grant_option: If specified, allows the recipient role to grant the privileges to other roles.
         """
@@ -474,81 +375,6 @@ class GrantPrivilegesToDatabaseRole(pulumi.CustomResource):
                  args: GrantPrivilegesToDatabaseRoleArgs,
                  opts: Optional[pulumi.ResourceOptions] = None):
         """
-        > **Note** This is a preview resource. It's ready for general use. In case of any errors, please file an issue in our GitHub repository.
-
-        !> **Warning** Be careful when using `always_apply` field. It will always produce a plan (even when no changes were made) and can be harmful in some setups. For more details why we decided to introduce it to go our document explaining those design decisions (coming soon).
-
-        ## Example Usage
-        ### on database privileges
-        ##################################
-
-        # list of privileges
-        resource "snowflake_grant_privileges_to_database_role" "example" {
-          privileges         = ["CREATE", "MONITOR"]
-          database_role_name = "\\"${snowflake_database_role.db_role.database}\\".\\"${snowflake_database_role.db_role.name}\\""
-          on_database        = snowflake_database_role.db_role.database
-        }
-
-        # all privileges + grant option
-        resource "snowflake_grant_privileges_to_database_role" "example" {
-          database_role_name = "\\"${snowflake_database_role.db_role.database}\\".\\"${snowflake_database_role.db_role.name}\\""
-          on_database        = snowflake_database_role.db_role.database
-          all_privileges     = true
-          with_grant_option  = true
-        }
-
-        # all privileges + grant option + always apply
-        resource "snowflake_grant_privileges_to_database_role" "example" {
-          database_role_name = "\\"${snowflake_database_role.db_role.database}\\".\\"${snowflake_database_role.db_role.name}\\""
-          on_database        = snowflake_database_role.db_role.database
-          always_apply       = true
-          all_privileges     = true
-          with_grant_option  = true
-        }
-
-        ##################################
-        ### schema privileges
-        ##################################
-
-        # list of privileges
-        resource "snowflake_grant_privileges_to_database_role" "example" {
-          privileges         = ["MODIFY", "CREATE TABLE"]
-          database_role_name = "\\"${snowflake_database_role.db_role.database}\\".\\"${snowflake_database_role.db_role.name}\\""
-          on_schema {
-            schema_name = "\\"${snowflake_database_role.db_role.database}\\".\\"my_schema\\"" # note this is a fully qualified name!
-          }
-        }
-
-        # all privileges + grant option
-        resource "snowflake_grant_privileges_to_database_role" "example" {
-          database_role_name = "\\"${snowflake_database_role.db_role.database}\\".\\"${snowflake_database_role.db_role.name}\\""
-          on_schema {
-            schema_name = "\\"${snowflake_database_role.db_role.database}\\".\\"my_schema\\"" # note this is a fully qualified name!
-          }
-          all_privileges    = true
-          with_grant_option = true
-        }
-
-        # all schemas in database
-        resource "snowflake_grant_privileges_to_database_role" "example" {
-          privileges         = ["MODIFY", "CREATE TABLE"]
-          database_role_name = "\\"${snowflake_database_role.db_role.database}\\".\\"${snowflake_database_role.db_role.name}\\""
-          on_schema {
-            all_schemas_in_database = snowflake_database_role.db_role.database
-          }
-        }
-
-        # future schemas in database
-        resource "snowflake_grant_privileges_to_database_role" "example" {
-          privileges         = ["MODIFY", "CREATE TABLE"]
-          database_role_name = "\\"${snowflake_database_role.db_role.database}\\".\\"${snowflake_database_role.db_role.name}\\""
-          on_schema {
-            future_schemas_in_database = snowflake_database_role.db_role.database
-          }
-        }
-
-        ##################################
-
         ## Import
 
         ### Import examples
@@ -556,25 +382,25 @@ class GrantPrivilegesToDatabaseRole(pulumi.CustomResource):
         #### Grant all privileges OnDatabase
 
         ```sh
-        $ pulumi import snowflake:index/grantPrivilegesToDatabaseRole:GrantPrivilegesToDatabaseRole \\"test_db_role\\"|false|false|ALL|OnDatabase|\\"test_db\\""`
+        $ pulumi import snowflake:index/grantPrivilegesToDatabaseRole:GrantPrivilegesToDatabaseRole example '"test_db"."test_db_role"|false|false|ALL|OnDatabase|"test_db"'`
         ```
 
         #### Grant list of privileges OnAllSchemasInDatabase
 
         ```sh
-        $ pulumi import snowflake:index/grantPrivilegesToDatabaseRole:GrantPrivilegesToDatabaseRole \\"test_db_role\\"|false|false|CREATE TAG,CREATE TABLE|OnSchema|OnAllSchemasInDatabase|\\"test_db\\""`
+        $ pulumi import snowflake:index/grantPrivilegesToDatabaseRole:GrantPrivilegesToDatabaseRole example '"test_db"."test_db_role"|false|false|CREATE TAG,CREATE TABLE|OnSchema|OnAllSchemasInDatabase|"test_db"'`
         ```
 
         #### Grant list of privileges on table
 
         ```sh
-        $ pulumi import snowflake:index/grantPrivilegesToDatabaseRole:GrantPrivilegesToDatabaseRole \\"test_table\\""`
+        $ pulumi import snowflake:index/grantPrivilegesToDatabaseRole:GrantPrivilegesToDatabaseRole example '"test_db"."test_db_role"|false|false|SELECT,DELETE,INSERT|OnSchemaObject|OnObject|TABLE|"test_db"."test_schema"."test_table"'`
         ```
 
         #### Grant list of privileges OnAll tables in schema
 
         ```sh
-        $ pulumi import snowflake:index/grantPrivilegesToDatabaseRole:GrantPrivilegesToDatabaseRole \\"test_schema\\""`
+        $ pulumi import snowflake:index/grantPrivilegesToDatabaseRole:GrantPrivilegesToDatabaseRole example '"test_db"."test_db_role"|false|false|SELECT,DELETE,INSERT|OnSchemaObject|OnAll|TABLES|InSchema|"test_db"."test_schema"'`
         ```
 
         :param str resource_name: The name of the resource.
@@ -597,8 +423,8 @@ class GrantPrivilegesToDatabaseRole(pulumi.CustomResource):
                  always_apply_trigger: Optional[pulumi.Input[str]] = None,
                  database_role_name: Optional[pulumi.Input[str]] = None,
                  on_database: Optional[pulumi.Input[str]] = None,
-                 on_schema: Optional[pulumi.Input[pulumi.InputType['GrantPrivilegesToDatabaseRoleOnSchemaArgs']]] = None,
-                 on_schema_object: Optional[pulumi.Input[pulumi.InputType['GrantPrivilegesToDatabaseRoleOnSchemaObjectArgs']]] = None,
+                 on_schema: Optional[pulumi.Input[Union['GrantPrivilegesToDatabaseRoleOnSchemaArgs', 'GrantPrivilegesToDatabaseRoleOnSchemaArgsDict']]] = None,
+                 on_schema_object: Optional[pulumi.Input[Union['GrantPrivilegesToDatabaseRoleOnSchemaObjectArgs', 'GrantPrivilegesToDatabaseRoleOnSchemaObjectArgsDict']]] = None,
                  privileges: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
                  with_grant_option: Optional[pulumi.Input[bool]] = None,
                  __props__=None):
@@ -636,8 +462,8 @@ class GrantPrivilegesToDatabaseRole(pulumi.CustomResource):
             always_apply_trigger: Optional[pulumi.Input[str]] = None,
             database_role_name: Optional[pulumi.Input[str]] = None,
             on_database: Optional[pulumi.Input[str]] = None,
-            on_schema: Optional[pulumi.Input[pulumi.InputType['GrantPrivilegesToDatabaseRoleOnSchemaArgs']]] = None,
-            on_schema_object: Optional[pulumi.Input[pulumi.InputType['GrantPrivilegesToDatabaseRoleOnSchemaObjectArgs']]] = None,
+            on_schema: Optional[pulumi.Input[Union['GrantPrivilegesToDatabaseRoleOnSchemaArgs', 'GrantPrivilegesToDatabaseRoleOnSchemaArgsDict']]] = None,
+            on_schema_object: Optional[pulumi.Input[Union['GrantPrivilegesToDatabaseRoleOnSchemaObjectArgs', 'GrantPrivilegesToDatabaseRoleOnSchemaObjectArgsDict']]] = None,
             privileges: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
             with_grant_option: Optional[pulumi.Input[bool]] = None) -> 'GrantPrivilegesToDatabaseRole':
         """
@@ -648,16 +474,11 @@ class GrantPrivilegesToDatabaseRole(pulumi.CustomResource):
         :param pulumi.Input[str] id: The unique provider ID of the resource to lookup.
         :param pulumi.ResourceOptions opts: Options for the resource.
         :param pulumi.Input[bool] all_privileges: Grant all privileges on the database role.
-        :param pulumi.Input[bool] always_apply: If true, the resource will always produce a “plan” and on “apply” it will re-grant defined privileges. It is
-               supposed to be used only in “grant privileges on all X’s in database / schema Y” or “grant all privileges to
-               X” scenarios to make sure that every new object in a given database / schema is granted by the account role and every
-               new privilege is granted to the database role. Important note: this flag is not compliant with the Terraform assumptions
-               of the config being eventually convergent (producing an empty plan).
         :param pulumi.Input[str] always_apply_trigger: This is a helper field and should not be set. Its main purpose is to help to achieve the functionality described by the always_apply field.
-        :param pulumi.Input[str] database_role_name: The fully qualified name of the database role to which privileges will be granted.
-        :param pulumi.Input[str] on_database: The fully qualified name of the database on which privileges will be granted.
-        :param pulumi.Input[pulumi.InputType['GrantPrivilegesToDatabaseRoleOnSchemaArgs']] on_schema: Specifies the schema on which privileges will be granted.
-        :param pulumi.Input[pulumi.InputType['GrantPrivilegesToDatabaseRoleOnSchemaObjectArgs']] on_schema_object: Specifies the schema object on which privileges will be granted.
+        :param pulumi.Input[str] database_role_name: The fully qualified name of the database role to which privileges will be granted. For more information about this resource, see docs.
+        :param pulumi.Input[str] on_database: The fully qualified name of the database on which privileges will be granted. For more information about this resource, see docs.
+        :param pulumi.Input[Union['GrantPrivilegesToDatabaseRoleOnSchemaArgs', 'GrantPrivilegesToDatabaseRoleOnSchemaArgsDict']] on_schema: Specifies the schema on which privileges will be granted.
+        :param pulumi.Input[Union['GrantPrivilegesToDatabaseRoleOnSchemaObjectArgs', 'GrantPrivilegesToDatabaseRoleOnSchemaObjectArgsDict']] on_schema_object: Specifies the schema object on which privileges will be granted.
         :param pulumi.Input[Sequence[pulumi.Input[str]]] privileges: The privileges to grant on the database role.
         :param pulumi.Input[bool] with_grant_option: If specified, allows the recipient role to grant the privileges to other roles.
         """
@@ -687,13 +508,6 @@ class GrantPrivilegesToDatabaseRole(pulumi.CustomResource):
     @property
     @pulumi.getter(name="alwaysApply")
     def always_apply(self) -> pulumi.Output[Optional[bool]]:
-        """
-        If true, the resource will always produce a “plan” and on “apply” it will re-grant defined privileges. It is
-        supposed to be used only in “grant privileges on all X’s in database / schema Y” or “grant all privileges to
-        X” scenarios to make sure that every new object in a given database / schema is granted by the account role and every
-        new privilege is granted to the database role. Important note: this flag is not compliant with the Terraform assumptions
-        of the config being eventually convergent (producing an empty plan).
-        """
         return pulumi.get(self, "always_apply")
 
     @property
@@ -708,7 +522,7 @@ class GrantPrivilegesToDatabaseRole(pulumi.CustomResource):
     @pulumi.getter(name="databaseRoleName")
     def database_role_name(self) -> pulumi.Output[str]:
         """
-        The fully qualified name of the database role to which privileges will be granted.
+        The fully qualified name of the database role to which privileges will be granted. For more information about this resource, see docs.
         """
         return pulumi.get(self, "database_role_name")
 
@@ -716,7 +530,7 @@ class GrantPrivilegesToDatabaseRole(pulumi.CustomResource):
     @pulumi.getter(name="onDatabase")
     def on_database(self) -> pulumi.Output[Optional[str]]:
         """
-        The fully qualified name of the database on which privileges will be granted.
+        The fully qualified name of the database on which privileges will be granted. For more information about this resource, see docs.
         """
         return pulumi.get(self, "on_database")