pulumi-snowflake 1.2.0a1744266763__py3-none-any.whl → 1.2.0a1744642997__py3-none-any.whl

pulumi_snowflake/grant_privileges_to_database_role.py

@@ -34,13 +34,13 @@ class GrantPrivilegesToDatabaseRoleArgs:
         """
         The set of arguments for constructing a GrantPrivilegesToDatabaseRole resource.
         :param pulumi.Input[builtins.str] database_role_name: The fully qualified name of the database role to which privileges will be granted. For more information about this resource, see docs.
-        :param pulumi.Input[builtins.bool] all_privileges: Grant all privileges on the database role.
-        :param pulumi.Input[builtins.str] always_apply_trigger: This is a helper field and should not be set. Its main purpose is to help to achieve the functionality described by the always_apply field.
+        :param pulumi.Input[builtins.bool] all_privileges: (Default: `false`) Grant all privileges on the database role.
+        :param pulumi.Input[builtins.str] always_apply_trigger: (Default: ``) This is a helper field and should not be set. Its main purpose is to help to achieve the functionality described by the always_apply field.
         :param pulumi.Input[builtins.str] on_database: The fully qualified name of the database on which privileges will be granted. For more information about this resource, see docs.
         :param pulumi.Input['GrantPrivilegesToDatabaseRoleOnSchemaArgs'] on_schema: Specifies the schema on which privileges will be granted.
         :param pulumi.Input['GrantPrivilegesToDatabaseRoleOnSchemaObjectArgs'] on_schema_object: Specifies the schema object on which privileges will be granted.
         :param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] privileges: The privileges to grant on the database role.
-        :param pulumi.Input[builtins.bool] with_grant_option: If specified, allows the recipient role to grant the privileges to other roles.
+        :param pulumi.Input[builtins.bool] with_grant_option: (Default: `false`) If specified, allows the recipient role to grant the privileges to other roles.
         """
         pulumi.set(__self__, "database_role_name", database_role_name)
         if all_privileges is not None:
@@ -76,7 +76,7 @@ class GrantPrivilegesToDatabaseRoleArgs:
     @pulumi.getter(name="allPrivileges")
     def all_privileges(self) -> Optional[pulumi.Input[builtins.bool]]:
         """
-        Grant all privileges on the database role.
+        (Default: `false`) Grant all privileges on the database role.
         """
         return pulumi.get(self, "all_privileges")
 
@@ -97,7 +97,7 @@ class GrantPrivilegesToDatabaseRoleArgs:
     @pulumi.getter(name="alwaysApplyTrigger")
     def always_apply_trigger(self) -> Optional[pulumi.Input[builtins.str]]:
         """
-        This is a helper field and should not be set. Its main purpose is to help to achieve the functionality described by the always_apply field.
+        (Default: ``) This is a helper field and should not be set. Its main purpose is to help to achieve the functionality described by the always_apply field.
         """
         return pulumi.get(self, "always_apply_trigger")
 
@@ -157,7 +157,7 @@ class GrantPrivilegesToDatabaseRoleArgs:
     @pulumi.getter(name="withGrantOption")
     def with_grant_option(self) -> Optional[pulumi.Input[builtins.bool]]:
         """
-        If specified, allows the recipient role to grant the privileges to other roles.
+        (Default: `false`) If specified, allows the recipient role to grant the privileges to other roles.
         """
         return pulumi.get(self, "with_grant_option")
 
@@ -180,14 +180,14 @@ class _GrantPrivilegesToDatabaseRoleState:
                  with_grant_option: Optional[pulumi.Input[builtins.bool]] = None):
         """
         Input properties used for looking up and filtering GrantPrivilegesToDatabaseRole resources.
-        :param pulumi.Input[builtins.bool] all_privileges: Grant all privileges on the database role.
-        :param pulumi.Input[builtins.str] always_apply_trigger: This is a helper field and should not be set. Its main purpose is to help to achieve the functionality described by the always_apply field.
+        :param pulumi.Input[builtins.bool] all_privileges: (Default: `false`) Grant all privileges on the database role.
+        :param pulumi.Input[builtins.str] always_apply_trigger: (Default: ``) This is a helper field and should not be set. Its main purpose is to help to achieve the functionality described by the always_apply field.
         :param pulumi.Input[builtins.str] database_role_name: The fully qualified name of the database role to which privileges will be granted. For more information about this resource, see docs.
         :param pulumi.Input[builtins.str] on_database: The fully qualified name of the database on which privileges will be granted. For more information about this resource, see docs.
         :param pulumi.Input['GrantPrivilegesToDatabaseRoleOnSchemaArgs'] on_schema: Specifies the schema on which privileges will be granted.
         :param pulumi.Input['GrantPrivilegesToDatabaseRoleOnSchemaObjectArgs'] on_schema_object: Specifies the schema object on which privileges will be granted.
         :param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] privileges: The privileges to grant on the database role.
-        :param pulumi.Input[builtins.bool] with_grant_option: If specified, allows the recipient role to grant the privileges to other roles.
+        :param pulumi.Input[builtins.bool] with_grant_option: (Default: `false`) If specified, allows the recipient role to grant the privileges to other roles.
         """
         if all_privileges is not None:
             pulumi.set(__self__, "all_privileges", all_privileges)
@@ -212,7 +212,7 @@ class _GrantPrivilegesToDatabaseRoleState:
     @pulumi.getter(name="allPrivileges")
     def all_privileges(self) -> Optional[pulumi.Input[builtins.bool]]:
         """
-        Grant all privileges on the database role.
+        (Default: `false`) Grant all privileges on the database role.
         """
         return pulumi.get(self, "all_privileges")
 
@@ -233,7 +233,7 @@ class _GrantPrivilegesToDatabaseRoleState:
     @pulumi.getter(name="alwaysApplyTrigger")
     def always_apply_trigger(self) -> Optional[pulumi.Input[builtins.str]]:
         """
-        This is a helper field and should not be set. Its main purpose is to help to achieve the functionality described by the always_apply field.
+        (Default: ``) This is a helper field and should not be set. Its main purpose is to help to achieve the functionality described by the always_apply field.
         """
         return pulumi.get(self, "always_apply_trigger")
 
@@ -305,7 +305,7 @@ class _GrantPrivilegesToDatabaseRoleState:
     @pulumi.getter(name="withGrantOption")
     def with_grant_option(self) -> Optional[pulumi.Input[builtins.bool]]:
         """
-        If specified, allows the recipient role to grant the privileges to other roles.
+        (Default: `false`) If specified, allows the recipient role to grant the privileges to other roles.
         """
         return pulumi.get(self, "with_grant_option")
 
@@ -360,14 +360,14 @@ class GrantPrivilegesToDatabaseRole(pulumi.CustomResource):
 
         :param str resource_name: The name of the resource.
         :param pulumi.ResourceOptions opts: Options for the resource.
-        :param pulumi.Input[builtins.bool] all_privileges: Grant all privileges on the database role.
-        :param pulumi.Input[builtins.str] always_apply_trigger: This is a helper field and should not be set. Its main purpose is to help to achieve the functionality described by the always_apply field.
+        :param pulumi.Input[builtins.bool] all_privileges: (Default: `false`) Grant all privileges on the database role.
+        :param pulumi.Input[builtins.str] always_apply_trigger: (Default: ``) This is a helper field and should not be set. Its main purpose is to help to achieve the functionality described by the always_apply field.
         :param pulumi.Input[builtins.str] database_role_name: The fully qualified name of the database role to which privileges will be granted. For more information about this resource, see docs.
         :param pulumi.Input[builtins.str] on_database: The fully qualified name of the database on which privileges will be granted. For more information about this resource, see docs.
         :param pulumi.Input[Union['GrantPrivilegesToDatabaseRoleOnSchemaArgs', 'GrantPrivilegesToDatabaseRoleOnSchemaArgsDict']] on_schema: Specifies the schema on which privileges will be granted.
         :param pulumi.Input[Union['GrantPrivilegesToDatabaseRoleOnSchemaObjectArgs', 'GrantPrivilegesToDatabaseRoleOnSchemaObjectArgsDict']] on_schema_object: Specifies the schema object on which privileges will be granted.
         :param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] privileges: The privileges to grant on the database role.
-        :param pulumi.Input[builtins.bool] with_grant_option: If specified, allows the recipient role to grant the privileges to other roles.
+        :param pulumi.Input[builtins.bool] with_grant_option: (Default: `false`) If specified, allows the recipient role to grant the privileges to other roles.
         """
         ...
     @overload
@@ -474,14 +474,14 @@ class GrantPrivilegesToDatabaseRole(pulumi.CustomResource):
         :param str resource_name: The unique name of the resulting resource.
         :param pulumi.Input[str] id: The unique provider ID of the resource to lookup.
         :param pulumi.ResourceOptions opts: Options for the resource.
-        :param pulumi.Input[builtins.bool] all_privileges: Grant all privileges on the database role.
-        :param pulumi.Input[builtins.str] always_apply_trigger: This is a helper field and should not be set. Its main purpose is to help to achieve the functionality described by the always_apply field.
+        :param pulumi.Input[builtins.bool] all_privileges: (Default: `false`) Grant all privileges on the database role.
+        :param pulumi.Input[builtins.str] always_apply_trigger: (Default: ``) This is a helper field and should not be set. Its main purpose is to help to achieve the functionality described by the always_apply field.
         :param pulumi.Input[builtins.str] database_role_name: The fully qualified name of the database role to which privileges will be granted. For more information about this resource, see docs.
         :param pulumi.Input[builtins.str] on_database: The fully qualified name of the database on which privileges will be granted. For more information about this resource, see docs.
         :param pulumi.Input[Union['GrantPrivilegesToDatabaseRoleOnSchemaArgs', 'GrantPrivilegesToDatabaseRoleOnSchemaArgsDict']] on_schema: Specifies the schema on which privileges will be granted.
         :param pulumi.Input[Union['GrantPrivilegesToDatabaseRoleOnSchemaObjectArgs', 'GrantPrivilegesToDatabaseRoleOnSchemaObjectArgsDict']] on_schema_object: Specifies the schema object on which privileges will be granted.
         :param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] privileges: The privileges to grant on the database role.
-        :param pulumi.Input[builtins.bool] with_grant_option: If specified, allows the recipient role to grant the privileges to other roles.
+        :param pulumi.Input[builtins.bool] with_grant_option: (Default: `false`) If specified, allows the recipient role to grant the privileges to other roles.
         """
         opts = pulumi.ResourceOptions.merge(opts, pulumi.ResourceOptions(id=id))
 
@@ -502,7 +502,7 @@ class GrantPrivilegesToDatabaseRole(pulumi.CustomResource):
     @pulumi.getter(name="allPrivileges")
     def all_privileges(self) -> pulumi.Output[Optional[builtins.bool]]:
         """
-        Grant all privileges on the database role.
+        (Default: `false`) Grant all privileges on the database role.
         """
         return pulumi.get(self, "all_privileges")
 
@@ -515,7 +515,7 @@ class GrantPrivilegesToDatabaseRole(pulumi.CustomResource):
     @pulumi.getter(name="alwaysApplyTrigger")
     def always_apply_trigger(self) -> pulumi.Output[Optional[builtins.str]]:
         """
-        This is a helper field and should not be set. Its main purpose is to help to achieve the functionality described by the always_apply field.
+        (Default: ``) This is a helper field and should not be set. Its main purpose is to help to achieve the functionality described by the always_apply field.
         """
         return pulumi.get(self, "always_apply_trigger")
 
@@ -563,7 +563,7 @@ class GrantPrivilegesToDatabaseRole(pulumi.CustomResource):
     @pulumi.getter(name="withGrantOption")
     def with_grant_option(self) -> pulumi.Output[Optional[builtins.bool]]:
         """
-        If specified, allows the recipient role to grant the privileges to other roles.
+        (Default: `false`) If specified, allows the recipient role to grant the privileges to other roles.
         """
         return pulumi.get(self, "with_grant_option")
 

pulumi_snowflake/legacy_service_user.py

@@ -115,9 +115,9 @@ class LegacyServiceUserArgs:
         :param pulumi.Input[builtins.str] date_output_format: Specifies the display format for the DATE data type. For more information, see [Date and time input and output formats](https://docs.snowflake.com/en/sql-reference/date-time-input-output). For more information, check [DATE*OUTPUT*FORMAT docs](https://docs.snowflake.com/en/sql-reference/parameters#date-output-format).
         :param pulumi.Input[builtins.str] default_namespace: Specifies the namespace (database only or database and schema) that is active by default for the user’s session upon login. Note that the CREATE USER operation does not verify that the namespace exists.
         :param pulumi.Input[builtins.str] default_role: Specifies the role that is active by default for the user’s session upon login. Note that specifying a default role for a user does **not** grant the role to the user. The role must be granted explicitly to the user using the [GRANT ROLE](https://docs.snowflake.com/en/sql-reference/sql/grant-role) command. In addition, the CREATE USER operation does not verify that the role exists. For more information about this resource, see docs.
-        :param pulumi.Input[builtins.str] default_secondary_roles_option: Specifies the secondary roles that are active for the user’s session upon login. Valid values are (case-insensitive): `DEFAULT` | `NONE` | `ALL`. More information can be found in [doc](https://docs.snowflake.com/en/sql-reference/sql/create-user#optional-object-properties-objectproperties).
+        :param pulumi.Input[builtins.str] default_secondary_roles_option: (Default: `DEFAULT`) Specifies the secondary roles that are active for the user’s session upon login. Valid values are (case-insensitive): `DEFAULT` | `NONE` | `ALL`. More information can be found in [doc](https://docs.snowflake.com/en/sql-reference/sql/create-user#optional-object-properties-objectproperties).
         :param pulumi.Input[builtins.str] default_warehouse: Specifies the virtual warehouse that is active by default for the user’s session upon login. Note that the CREATE USER operation does not verify that the warehouse exists. For more information about this resource, see docs.
-        :param pulumi.Input[builtins.str] disabled: Specifies whether the user is disabled, which prevents logging in and aborts all the currently-running queries for the user. Available options are: "true" or "false". When the value is not set in the configuration the provider will put "default" there which means to use the Snowflake default for this value.
+        :param pulumi.Input[builtins.str] disabled: (Default: fallback to Snowflake default - uses special value that cannot be set in the configuration manually (`default`)) Specifies whether the user is disabled, which prevents logging in and aborts all the currently-running queries for the user. Available options are: "true" or "false". When the value is not set in the configuration the provider will put "default" there which means to use the Snowflake default for this value.
         :param pulumi.Input[builtins.str] display_name: Name displayed for the user in the Snowflake web interface.
         :param pulumi.Input[builtins.str] email: Email address for the user.
         :param pulumi.Input[builtins.bool] enable_unload_physical_type_optimization: Specifies whether to set the schema for unloaded Parquet files based on the logical column data types (i.e. the types in the unload SQL query or source table) or on the unloaded column values (i.e. the smallest data types and precision that support the values in the output columns of the unload SQL statement or source table). For more information, check [ENABLE*UNLOAD*PHYSICAL*TYPE*OPTIMIZATION docs](https://docs.snowflake.com/en/sql-reference/parameters#enable-unload-physical-type-optimization).
@@ -134,7 +134,7 @@ class LegacyServiceUserArgs:
         :param pulumi.Input[builtins.str] log_level: Specifies the severity level of messages that should be ingested and made available in the active event table. Messages at the specified level (and at more severe levels) are ingested. For more information about log levels, see [Setting log level](https://docs.snowflake.com/en/developer-guide/logging-tracing/logging-log-level). For more information, check [LOG_LEVEL docs](https://docs.snowflake.com/en/sql-reference/parameters#log-level).
         :param pulumi.Input[builtins.str] login_name: The name users use to log in. If not supplied, snowflake will use name instead. Login names are always case-insensitive.
         :param pulumi.Input[builtins.int] multi_statement_count: Number of statements to execute when using the multi-statement capability. For more information, check [MULTI*STATEMENT*COUNT docs](https://docs.snowflake.com/en/sql-reference/parameters#multi-statement-count).
-        :param pulumi.Input[builtins.str] must_change_password: Specifies whether the user is forced to change their password on next login (including their first/initial login) into the system. Available options are: "true" or "false". When the value is not set in the configuration the provider will put "default" there which means to use the Snowflake default for this value.
+        :param pulumi.Input[builtins.str] must_change_password: (Default: fallback to Snowflake default - uses special value that cannot be set in the configuration manually (`default`)) Specifies whether the user is forced to change their password on next login (including their first/initial login) into the system. Available options are: "true" or "false". When the value is not set in the configuration the provider will put "default" there which means to use the Snowflake default for this value.
         :param pulumi.Input[builtins.str] name: Name of the user. Note that if you do not supply login*name this will be used as login*name. Check the [docs](https://docs.snowflake.net/manuals/sql-reference/sql/create-user.html#required-parameters). Due to technical limitations (read more here), avoid using the following characters: `|`, `.`, `"`.
         :param pulumi.Input[builtins.str] network_policy: Specifies the network policy to enforce for your account. Network policies enable restricting access to your account based on users’ IP address. For more details, see [Controlling network traffic with network policies](https://docs.snowflake.com/en/user-guide/network-policies). Any existing network policy (created using [CREATE NETWORK POLICY](https://docs.snowflake.com/en/sql-reference/sql/create-network-policy)). For more information, check [NETWORK_POLICY docs](https://docs.snowflake.com/en/sql-reference/parameters#network-policy).
         :param pulumi.Input[builtins.bool] noorder_sequence_as_default: Specifies whether the ORDER or NOORDER property is set by default when you create a new sequence or add a new table column. The ORDER and NOORDER properties determine whether or not the values are generated for the sequence or auto-incremented column in [increasing or decreasing order](https://docs.snowflake.com/en/user-guide/querying-sequences.html#label-querying-sequences-increasing-values). For more information, check [NOORDER*SEQUENCE*AS_DEFAULT docs](https://docs.snowflake.com/en/sql-reference/parameters#noorder-sequence-as-default).
@@ -536,7 +536,7 @@ class LegacyServiceUserArgs:
     @pulumi.getter(name="defaultSecondaryRolesOption")
     def default_secondary_roles_option(self) -> Optional[pulumi.Input[builtins.str]]:
         """
-        Specifies the secondary roles that are active for the user’s session upon login. Valid values are (case-insensitive): `DEFAULT` | `NONE` | `ALL`. More information can be found in [doc](https://docs.snowflake.com/en/sql-reference/sql/create-user#optional-object-properties-objectproperties).
+        (Default: `DEFAULT`) Specifies the secondary roles that are active for the user’s session upon login. Valid values are (case-insensitive): `DEFAULT` | `NONE` | `ALL`. More information can be found in [doc](https://docs.snowflake.com/en/sql-reference/sql/create-user#optional-object-properties-objectproperties).
         """
         return pulumi.get(self, "default_secondary_roles_option")
 
@@ -560,7 +560,7 @@ class LegacyServiceUserArgs:
     @pulumi.getter
     def disabled(self) -> Optional[pulumi.Input[builtins.str]]:
         """
-        Specifies whether the user is disabled, which prevents logging in and aborts all the currently-running queries for the user. Available options are: "true" or "false". When the value is not set in the configuration the provider will put "default" there which means to use the Snowflake default for this value.
+        (Default: fallback to Snowflake default - uses special value that cannot be set in the configuration manually (`default`)) Specifies whether the user is disabled, which prevents logging in and aborts all the currently-running queries for the user. Available options are: "true" or "false". When the value is not set in the configuration the provider will put "default" there which means to use the Snowflake default for this value.
         """
         return pulumi.get(self, "disabled")
 
@@ -773,7 +773,7 @@ class LegacyServiceUserArgs:
     @pulumi.getter(name="mustChangePassword")
     def must_change_password(self) -> Optional[pulumi.Input[builtins.str]]:
         """
-        Specifies whether the user is forced to change their password on next login (including their first/initial login) into the system. Available options are: "true" or "false". When the value is not set in the configuration the provider will put "default" there which means to use the Snowflake default for this value.
+        (Default: fallback to Snowflake default - uses special value that cannot be set in the configuration manually (`default`)) Specifies whether the user is forced to change their password on next login (including their first/initial login) into the system. Available options are: "true" or "false". When the value is not set in the configuration the provider will put "default" there which means to use the Snowflake default for this value.
         """
         return pulumi.get(self, "must_change_password")
 
@@ -1299,9 +1299,9 @@ class _LegacyServiceUserState:
         :param pulumi.Input[builtins.str] date_output_format: Specifies the display format for the DATE data type. For more information, see [Date and time input and output formats](https://docs.snowflake.com/en/sql-reference/date-time-input-output). For more information, check [DATE*OUTPUT*FORMAT docs](https://docs.snowflake.com/en/sql-reference/parameters#date-output-format).
         :param pulumi.Input[builtins.str] default_namespace: Specifies the namespace (database only or database and schema) that is active by default for the user’s session upon login. Note that the CREATE USER operation does not verify that the namespace exists.
         :param pulumi.Input[builtins.str] default_role: Specifies the role that is active by default for the user’s session upon login. Note that specifying a default role for a user does **not** grant the role to the user. The role must be granted explicitly to the user using the [GRANT ROLE](https://docs.snowflake.com/en/sql-reference/sql/grant-role) command. In addition, the CREATE USER operation does not verify that the role exists. For more information about this resource, see docs.
-        :param pulumi.Input[builtins.str] default_secondary_roles_option: Specifies the secondary roles that are active for the user’s session upon login. Valid values are (case-insensitive): `DEFAULT` | `NONE` | `ALL`. More information can be found in [doc](https://docs.snowflake.com/en/sql-reference/sql/create-user#optional-object-properties-objectproperties).
+        :param pulumi.Input[builtins.str] default_secondary_roles_option: (Default: `DEFAULT`) Specifies the secondary roles that are active for the user’s session upon login. Valid values are (case-insensitive): `DEFAULT` | `NONE` | `ALL`. More information can be found in [doc](https://docs.snowflake.com/en/sql-reference/sql/create-user#optional-object-properties-objectproperties).
         :param pulumi.Input[builtins.str] default_warehouse: Specifies the virtual warehouse that is active by default for the user’s session upon login. Note that the CREATE USER operation does not verify that the warehouse exists. For more information about this resource, see docs.
-        :param pulumi.Input[builtins.str] disabled: Specifies whether the user is disabled, which prevents logging in and aborts all the currently-running queries for the user. Available options are: "true" or "false". When the value is not set in the configuration the provider will put "default" there which means to use the Snowflake default for this value.
+        :param pulumi.Input[builtins.str] disabled: (Default: fallback to Snowflake default - uses special value that cannot be set in the configuration manually (`default`)) Specifies whether the user is disabled, which prevents logging in and aborts all the currently-running queries for the user. Available options are: "true" or "false". When the value is not set in the configuration the provider will put "default" there which means to use the Snowflake default for this value.
         :param pulumi.Input[builtins.str] display_name: Name displayed for the user in the Snowflake web interface.
         :param pulumi.Input[builtins.str] email: Email address for the user.
         :param pulumi.Input[builtins.bool] enable_unload_physical_type_optimization: Specifies whether to set the schema for unloaded Parquet files based on the logical column data types (i.e. the types in the unload SQL query or source table) or on the unloaded column values (i.e. the smallest data types and precision that support the values in the output columns of the unload SQL statement or source table). For more information, check [ENABLE*UNLOAD*PHYSICAL*TYPE*OPTIMIZATION docs](https://docs.snowflake.com/en/sql-reference/parameters#enable-unload-physical-type-optimization).
@@ -1319,7 +1319,7 @@ class _LegacyServiceUserState:
         :param pulumi.Input[builtins.str] log_level: Specifies the severity level of messages that should be ingested and made available in the active event table. Messages at the specified level (and at more severe levels) are ingested. For more information about log levels, see [Setting log level](https://docs.snowflake.com/en/developer-guide/logging-tracing/logging-log-level). For more information, check [LOG_LEVEL docs](https://docs.snowflake.com/en/sql-reference/parameters#log-level).
         :param pulumi.Input[builtins.str] login_name: The name users use to log in. If not supplied, snowflake will use name instead. Login names are always case-insensitive.
         :param pulumi.Input[builtins.int] multi_statement_count: Number of statements to execute when using the multi-statement capability. For more information, check [MULTI*STATEMENT*COUNT docs](https://docs.snowflake.com/en/sql-reference/parameters#multi-statement-count).
-        :param pulumi.Input[builtins.str] must_change_password: Specifies whether the user is forced to change their password on next login (including their first/initial login) into the system. Available options are: "true" or "false". When the value is not set in the configuration the provider will put "default" there which means to use the Snowflake default for this value.
+        :param pulumi.Input[builtins.str] must_change_password: (Default: fallback to Snowflake default - uses special value that cannot be set in the configuration manually (`default`)) Specifies whether the user is forced to change their password on next login (including their first/initial login) into the system. Available options are: "true" or "false". When the value is not set in the configuration the provider will put "default" there which means to use the Snowflake default for this value.
         :param pulumi.Input[builtins.str] name: Name of the user. Note that if you do not supply login*name this will be used as login*name. Check the [docs](https://docs.snowflake.net/manuals/sql-reference/sql/create-user.html#required-parameters). Due to technical limitations (read more here), avoid using the following characters: `|`, `.`, `"`.
         :param pulumi.Input[builtins.str] network_policy: Specifies the network policy to enforce for your account. Network policies enable restricting access to your account based on users’ IP address. For more details, see [Controlling network traffic with network policies](https://docs.snowflake.com/en/user-guide/network-policies). Any existing network policy (created using [CREATE NETWORK POLICY](https://docs.snowflake.com/en/sql-reference/sql/create-network-policy)). For more information, check [NETWORK_POLICY docs](https://docs.snowflake.com/en/sql-reference/parameters#network-policy).
         :param pulumi.Input[builtins.bool] noorder_sequence_as_default: Specifies whether the ORDER or NOORDER property is set by default when you create a new sequence or add a new table column. The ORDER and NOORDER properties determine whether or not the values are generated for the sequence or auto-incremented column in [increasing or decreasing order](https://docs.snowflake.com/en/user-guide/querying-sequences.html#label-querying-sequences-increasing-values). For more information, check [NOORDER*SEQUENCE*AS_DEFAULT docs](https://docs.snowflake.com/en/sql-reference/parameters#noorder-sequence-as-default).
@@ -1732,7 +1732,7 @@ class _LegacyServiceUserState:
     @pulumi.getter(name="defaultSecondaryRolesOption")
     def default_secondary_roles_option(self) -> Optional[pulumi.Input[builtins.str]]:
         """
-        Specifies the secondary roles that are active for the user’s session upon login. Valid values are (case-insensitive): `DEFAULT` | `NONE` | `ALL`. More information can be found in [doc](https://docs.snowflake.com/en/sql-reference/sql/create-user#optional-object-properties-objectproperties).
+        (Default: `DEFAULT`) Specifies the secondary roles that are active for the user’s session upon login. Valid values are (case-insensitive): `DEFAULT` | `NONE` | `ALL`. More information can be found in [doc](https://docs.snowflake.com/en/sql-reference/sql/create-user#optional-object-properties-objectproperties).
         """
         return pulumi.get(self, "default_secondary_roles_option")
 
@@ -1756,7 +1756,7 @@ class _LegacyServiceUserState:
     @pulumi.getter
     def disabled(self) -> Optional[pulumi.Input[builtins.str]]:
         """
-        Specifies whether the user is disabled, which prevents logging in and aborts all the currently-running queries for the user. Available options are: "true" or "false". When the value is not set in the configuration the provider will put "default" there which means to use the Snowflake default for this value.
+        (Default: fallback to Snowflake default - uses special value that cannot be set in the configuration manually (`default`)) Specifies whether the user is disabled, which prevents logging in and aborts all the currently-running queries for the user. Available options are: "true" or "false". When the value is not set in the configuration the provider will put "default" there which means to use the Snowflake default for this value.
         """
         return pulumi.get(self, "disabled")
 
@@ -1981,7 +1981,7 @@ class _LegacyServiceUserState:
     @pulumi.getter(name="mustChangePassword")
     def must_change_password(self) -> Optional[pulumi.Input[builtins.str]]:
         """
-        Specifies whether the user is forced to change their password on next login (including their first/initial login) into the system. Available options are: "true" or "false". When the value is not set in the configuration the provider will put "default" there which means to use the Snowflake default for this value.
+        (Default: fallback to Snowflake default - uses special value that cannot be set in the configuration manually (`default`)) Specifies whether the user is forced to change their password on next login (including their first/initial login) into the system. Available options are: "true" or "false". When the value is not set in the configuration the provider will put "default" there which means to use the Snowflake default for this value.
         """
         return pulumi.get(self, "must_change_password")
 
@@ -2551,9 +2551,9 @@ class LegacyServiceUser(pulumi.CustomResource):
         :param pulumi.Input[builtins.str] date_output_format: Specifies the display format for the DATE data type. For more information, see [Date and time input and output formats](https://docs.snowflake.com/en/sql-reference/date-time-input-output). For more information, check [DATE*OUTPUT*FORMAT docs](https://docs.snowflake.com/en/sql-reference/parameters#date-output-format).
         :param pulumi.Input[builtins.str] default_namespace: Specifies the namespace (database only or database and schema) that is active by default for the user’s session upon login. Note that the CREATE USER operation does not verify that the namespace exists.
         :param pulumi.Input[builtins.str] default_role: Specifies the role that is active by default for the user’s session upon login. Note that specifying a default role for a user does **not** grant the role to the user. The role must be granted explicitly to the user using the [GRANT ROLE](https://docs.snowflake.com/en/sql-reference/sql/grant-role) command. In addition, the CREATE USER operation does not verify that the role exists. For more information about this resource, see docs.
-        :param pulumi.Input[builtins.str] default_secondary_roles_option: Specifies the secondary roles that are active for the user’s session upon login. Valid values are (case-insensitive): `DEFAULT` | `NONE` | `ALL`. More information can be found in [doc](https://docs.snowflake.com/en/sql-reference/sql/create-user#optional-object-properties-objectproperties).
+        :param pulumi.Input[builtins.str] default_secondary_roles_option: (Default: `DEFAULT`) Specifies the secondary roles that are active for the user’s session upon login. Valid values are (case-insensitive): `DEFAULT` | `NONE` | `ALL`. More information can be found in [doc](https://docs.snowflake.com/en/sql-reference/sql/create-user#optional-object-properties-objectproperties).
         :param pulumi.Input[builtins.str] default_warehouse: Specifies the virtual warehouse that is active by default for the user’s session upon login. Note that the CREATE USER operation does not verify that the warehouse exists. For more information about this resource, see docs.
-        :param pulumi.Input[builtins.str] disabled: Specifies whether the user is disabled, which prevents logging in and aborts all the currently-running queries for the user. Available options are: "true" or "false". When the value is not set in the configuration the provider will put "default" there which means to use the Snowflake default for this value.
+        :param pulumi.Input[builtins.str] disabled: (Default: fallback to Snowflake default - uses special value that cannot be set in the configuration manually (`default`)) Specifies whether the user is disabled, which prevents logging in and aborts all the currently-running queries for the user. Available options are: "true" or "false". When the value is not set in the configuration the provider will put "default" there which means to use the Snowflake default for this value.
         :param pulumi.Input[builtins.str] display_name: Name displayed for the user in the Snowflake web interface.
         :param pulumi.Input[builtins.str] email: Email address for the user.
         :param pulumi.Input[builtins.bool] enable_unload_physical_type_optimization: Specifies whether to set the schema for unloaded Parquet files based on the logical column data types (i.e. the types in the unload SQL query or source table) or on the unloaded column values (i.e. the smallest data types and precision that support the values in the output columns of the unload SQL statement or source table). For more information, check [ENABLE*UNLOAD*PHYSICAL*TYPE*OPTIMIZATION docs](https://docs.snowflake.com/en/sql-reference/parameters#enable-unload-physical-type-optimization).
@@ -2570,7 +2570,7 @@ class LegacyServiceUser(pulumi.CustomResource):
         :param pulumi.Input[builtins.str] log_level: Specifies the severity level of messages that should be ingested and made available in the active event table. Messages at the specified level (and at more severe levels) are ingested. For more information about log levels, see [Setting log level](https://docs.snowflake.com/en/developer-guide/logging-tracing/logging-log-level). For more information, check [LOG_LEVEL docs](https://docs.snowflake.com/en/sql-reference/parameters#log-level).
         :param pulumi.Input[builtins.str] login_name: The name users use to log in. If not supplied, snowflake will use name instead. Login names are always case-insensitive.
         :param pulumi.Input[builtins.int] multi_statement_count: Number of statements to execute when using the multi-statement capability. For more information, check [MULTI*STATEMENT*COUNT docs](https://docs.snowflake.com/en/sql-reference/parameters#multi-statement-count).
-        :param pulumi.Input[builtins.str] must_change_password: Specifies whether the user is forced to change their password on next login (including their first/initial login) into the system. Available options are: "true" or "false". When the value is not set in the configuration the provider will put "default" there which means to use the Snowflake default for this value.
+        :param pulumi.Input[builtins.str] must_change_password: (Default: fallback to Snowflake default - uses special value that cannot be set in the configuration manually (`default`)) Specifies whether the user is forced to change their password on next login (including their first/initial login) into the system. Available options are: "true" or "false". When the value is not set in the configuration the provider will put "default" there which means to use the Snowflake default for this value.
         :param pulumi.Input[builtins.str] name: Name of the user. Note that if you do not supply login*name this will be used as login*name. Check the [docs](https://docs.snowflake.net/manuals/sql-reference/sql/create-user.html#required-parameters). Due to technical limitations (read more here), avoid using the following characters: `|`, `.`, `"`.
         :param pulumi.Input[builtins.str] network_policy: Specifies the network policy to enforce for your account. Network policies enable restricting access to your account based on users’ IP address. For more details, see [Controlling network traffic with network policies](https://docs.snowflake.com/en/user-guide/network-policies). Any existing network policy (created using [CREATE NETWORK POLICY](https://docs.snowflake.com/en/sql-reference/sql/create-network-policy)). For more information, check [NETWORK_POLICY docs](https://docs.snowflake.com/en/sql-reference/parameters#network-policy).
         :param pulumi.Input[builtins.bool] noorder_sequence_as_default: Specifies whether the ORDER or NOORDER property is set by default when you create a new sequence or add a new table column. The ORDER and NOORDER properties determine whether or not the values are generated for the sequence or auto-incremented column in [increasing or decreasing order](https://docs.snowflake.com/en/user-guide/querying-sequences.html#label-querying-sequences-increasing-values). For more information, check [NOORDER*SEQUENCE*AS_DEFAULT docs](https://docs.snowflake.com/en/sql-reference/parameters#noorder-sequence-as-default).
@@ -2911,9 +2911,9 @@ class LegacyServiceUser(pulumi.CustomResource):
         :param pulumi.Input[builtins.str] date_output_format: Specifies the display format for the DATE data type. For more information, see [Date and time input and output formats](https://docs.snowflake.com/en/sql-reference/date-time-input-output). For more information, check [DATE*OUTPUT*FORMAT docs](https://docs.snowflake.com/en/sql-reference/parameters#date-output-format).
         :param pulumi.Input[builtins.str] default_namespace: Specifies the namespace (database only or database and schema) that is active by default for the user’s session upon login. Note that the CREATE USER operation does not verify that the namespace exists.
         :param pulumi.Input[builtins.str] default_role: Specifies the role that is active by default for the user’s session upon login. Note that specifying a default role for a user does **not** grant the role to the user. The role must be granted explicitly to the user using the [GRANT ROLE](https://docs.snowflake.com/en/sql-reference/sql/grant-role) command. In addition, the CREATE USER operation does not verify that the role exists. For more information about this resource, see docs.
-        :param pulumi.Input[builtins.str] default_secondary_roles_option: Specifies the secondary roles that are active for the user’s session upon login. Valid values are (case-insensitive): `DEFAULT` | `NONE` | `ALL`. More information can be found in [doc](https://docs.snowflake.com/en/sql-reference/sql/create-user#optional-object-properties-objectproperties).
+        :param pulumi.Input[builtins.str] default_secondary_roles_option: (Default: `DEFAULT`) Specifies the secondary roles that are active for the user’s session upon login. Valid values are (case-insensitive): `DEFAULT` | `NONE` | `ALL`. More information can be found in [doc](https://docs.snowflake.com/en/sql-reference/sql/create-user#optional-object-properties-objectproperties).
         :param pulumi.Input[builtins.str] default_warehouse: Specifies the virtual warehouse that is active by default for the user’s session upon login. Note that the CREATE USER operation does not verify that the warehouse exists. For more information about this resource, see docs.
-        :param pulumi.Input[builtins.str] disabled: Specifies whether the user is disabled, which prevents logging in and aborts all the currently-running queries for the user. Available options are: "true" or "false". When the value is not set in the configuration the provider will put "default" there which means to use the Snowflake default for this value.
+        :param pulumi.Input[builtins.str] disabled: (Default: fallback to Snowflake default - uses special value that cannot be set in the configuration manually (`default`)) Specifies whether the user is disabled, which prevents logging in and aborts all the currently-running queries for the user. Available options are: "true" or "false". When the value is not set in the configuration the provider will put "default" there which means to use the Snowflake default for this value.
         :param pulumi.Input[builtins.str] display_name: Name displayed for the user in the Snowflake web interface.
         :param pulumi.Input[builtins.str] email: Email address for the user.
         :param pulumi.Input[builtins.bool] enable_unload_physical_type_optimization: Specifies whether to set the schema for unloaded Parquet files based on the logical column data types (i.e. the types in the unload SQL query or source table) or on the unloaded column values (i.e. the smallest data types and precision that support the values in the output columns of the unload SQL statement or source table). For more information, check [ENABLE*UNLOAD*PHYSICAL*TYPE*OPTIMIZATION docs](https://docs.snowflake.com/en/sql-reference/parameters#enable-unload-physical-type-optimization).
@@ -2931,7 +2931,7 @@ class LegacyServiceUser(pulumi.CustomResource):
         :param pulumi.Input[builtins.str] log_level: Specifies the severity level of messages that should be ingested and made available in the active event table. Messages at the specified level (and at more severe levels) are ingested. For more information about log levels, see [Setting log level](https://docs.snowflake.com/en/developer-guide/logging-tracing/logging-log-level). For more information, check [LOG_LEVEL docs](https://docs.snowflake.com/en/sql-reference/parameters#log-level).
         :param pulumi.Input[builtins.str] login_name: The name users use to log in. If not supplied, snowflake will use name instead. Login names are always case-insensitive.
         :param pulumi.Input[builtins.int] multi_statement_count: Number of statements to execute when using the multi-statement capability. For more information, check [MULTI*STATEMENT*COUNT docs](https://docs.snowflake.com/en/sql-reference/parameters#multi-statement-count).
-        :param pulumi.Input[builtins.str] must_change_password: Specifies whether the user is forced to change their password on next login (including their first/initial login) into the system. Available options are: "true" or "false". When the value is not set in the configuration the provider will put "default" there which means to use the Snowflake default for this value.
+        :param pulumi.Input[builtins.str] must_change_password: (Default: fallback to Snowflake default - uses special value that cannot be set in the configuration manually (`default`)) Specifies whether the user is forced to change their password on next login (including their first/initial login) into the system. Available options are: "true" or "false". When the value is not set in the configuration the provider will put "default" there which means to use the Snowflake default for this value.
         :param pulumi.Input[builtins.str] name: Name of the user. Note that if you do not supply login*name this will be used as login*name. Check the [docs](https://docs.snowflake.net/manuals/sql-reference/sql/create-user.html#required-parameters). Due to technical limitations (read more here), avoid using the following characters: `|`, `.`, `"`.
         :param pulumi.Input[builtins.str] network_policy: Specifies the network policy to enforce for your account. Network policies enable restricting access to your account based on users’ IP address. For more details, see [Controlling network traffic with network policies](https://docs.snowflake.com/en/user-guide/network-policies). Any existing network policy (created using [CREATE NETWORK POLICY](https://docs.snowflake.com/en/sql-reference/sql/create-network-policy)). For more information, check [NETWORK_POLICY docs](https://docs.snowflake.com/en/sql-reference/parameters#network-policy).
         :param pulumi.Input[builtins.bool] noorder_sequence_as_default: Specifies whether the ORDER or NOORDER property is set by default when you create a new sequence or add a new table column. The ORDER and NOORDER properties determine whether or not the values are generated for the sequence or auto-incremented column in [increasing or decreasing order](https://docs.snowflake.com/en/user-guide/querying-sequences.html#label-querying-sequences-increasing-values). For more information, check [NOORDER*SEQUENCE*AS_DEFAULT docs](https://docs.snowflake.com/en/sql-reference/parameters#noorder-sequence-as-default).
@@ -3199,7 +3199,7 @@ class LegacyServiceUser(pulumi.CustomResource):
     @pulumi.getter(name="defaultSecondaryRolesOption")
     def default_secondary_roles_option(self) -> pulumi.Output[Optional[builtins.str]]:
         """
-        Specifies the secondary roles that are active for the user’s session upon login. Valid values are (case-insensitive): `DEFAULT` | `NONE` | `ALL`. More information can be found in [doc](https://docs.snowflake.com/en/sql-reference/sql/create-user#optional-object-properties-objectproperties).
+        (Default: `DEFAULT`) Specifies the secondary roles that are active for the user’s session upon login. Valid values are (case-insensitive): `DEFAULT` | `NONE` | `ALL`. More information can be found in [doc](https://docs.snowflake.com/en/sql-reference/sql/create-user#optional-object-properties-objectproperties).
         """
         return pulumi.get(self, "default_secondary_roles_option")
 
@@ -3215,7 +3215,7 @@ class LegacyServiceUser(pulumi.CustomResource):
     @pulumi.getter
     def disabled(self) -> pulumi.Output[Optional[builtins.str]]:
         """
-        Specifies whether the user is disabled, which prevents logging in and aborts all the currently-running queries for the user. Available options are: "true" or "false". When the value is not set in the configuration the provider will put "default" there which means to use the Snowflake default for this value.
+        (Default: fallback to Snowflake default - uses special value that cannot be set in the configuration manually (`default`)) Specifies whether the user is disabled, which prevents logging in and aborts all the currently-running queries for the user. Available options are: "true" or "false". When the value is not set in the configuration the provider will put "default" there which means to use the Snowflake default for this value.
         """
         return pulumi.get(self, "disabled")
 
@@ -3364,7 +3364,7 @@ class LegacyServiceUser(pulumi.CustomResource):
     @pulumi.getter(name="mustChangePassword")
     def must_change_password(self) -> pulumi.Output[Optional[builtins.str]]:
         """
-        Specifies whether the user is forced to change their password on next login (including their first/initial login) into the system. Available options are: "true" or "false". When the value is not set in the configuration the provider will put "default" there which means to use the Snowflake default for this value.
+        (Default: fallback to Snowflake default - uses special value that cannot be set in the configuration manually (`default`)) Specifies whether the user is forced to change their password on next login (including their first/initial login) into the system. Available options are: "true" or "false". When the value is not set in the configuration the provider will put "default" there which means to use the Snowflake default for this value.
         """
         return pulumi.get(self, "must_change_password")
 

pulumi_snowflake/managed_account.py

@@ -31,7 +31,7 @@ class ManagedAccountArgs:
         :param pulumi.Input[builtins.str] admin_password: Password for the initial user in the managed account. Check [Snowflake-provided password policy](https://docs.snowflake.com/en/user-guide/admin-user-management#snowflake-provided-password-policy).
         :param pulumi.Input[builtins.str] comment: Specifies a comment for the managed account.
         :param pulumi.Input[builtins.str] name: Identifier for the managed account; must be unique for your account.
-        :param pulumi.Input[builtins.str] type: Specifies the type of managed account.
+        :param pulumi.Input[builtins.str] type: (Default: `READER`) Specifies the type of managed account.
         """
         pulumi.set(__self__, "admin_name", admin_name)
         pulumi.set(__self__, "admin_password", admin_password)
@@ -94,7 +94,7 @@ class ManagedAccountArgs:
     @pulumi.getter
     def type(self) -> Optional[pulumi.Input[builtins.str]]:
         """
-        Specifies the type of managed account.
+        (Default: `READER`) Specifies the type of managed account.
         """
         return pulumi.get(self, "type")
 
@@ -128,7 +128,7 @@ class _ManagedAccountState:
         :param pulumi.Input[builtins.str] locator: Display name of the managed account.
         :param pulumi.Input[builtins.str] name: Identifier for the managed account; must be unique for your account.
         :param pulumi.Input[builtins.str] region: Snowflake Region in which the managed account is located.
-        :param pulumi.Input[builtins.str] type: Specifies the type of managed account.
+        :param pulumi.Input[builtins.str] type: (Default: `READER`) Specifies the type of managed account.
         :param pulumi.Input[builtins.str] url: URL for accessing the managed account, particularly through the web interface.
         """
         if admin_name is not None:
@@ -266,7 +266,7 @@ class _ManagedAccountState:
     @pulumi.getter
     def type(self) -> Optional[pulumi.Input[builtins.str]]:
         """
-        Specifies the type of managed account.
+        (Default: `READER`) Specifies the type of managed account.
         """
         return pulumi.get(self, "type")
 
@@ -311,7 +311,7 @@ class ManagedAccount(pulumi.CustomResource):
         :param pulumi.Input[builtins.str] admin_password: Password for the initial user in the managed account. Check [Snowflake-provided password policy](https://docs.snowflake.com/en/user-guide/admin-user-management#snowflake-provided-password-policy).
         :param pulumi.Input[builtins.str] comment: Specifies a comment for the managed account.
         :param pulumi.Input[builtins.str] name: Identifier for the managed account; must be unique for your account.
-        :param pulumi.Input[builtins.str] type: Specifies the type of managed account.
+        :param pulumi.Input[builtins.str] type: (Default: `READER`) Specifies the type of managed account.
         """
         ...
     @overload
@@ -409,7 +409,7 @@ class ManagedAccount(pulumi.CustomResource):
         :param pulumi.Input[builtins.str] locator: Display name of the managed account.
         :param pulumi.Input[builtins.str] name: Identifier for the managed account; must be unique for your account.
         :param pulumi.Input[builtins.str] region: Snowflake Region in which the managed account is located.
-        :param pulumi.Input[builtins.str] type: Specifies the type of managed account.
+        :param pulumi.Input[builtins.str] type: (Default: `READER`) Specifies the type of managed account.
         :param pulumi.Input[builtins.str] url: URL for accessing the managed account, particularly through the web interface.
         """
         opts = pulumi.ResourceOptions.merge(opts, pulumi.ResourceOptions(id=id))
@@ -505,7 +505,7 @@ class ManagedAccount(pulumi.CustomResource):
     @pulumi.getter
     def type(self) -> pulumi.Output[Optional[builtins.str]]:
         """
-        Specifies the type of managed account.
+        (Default: `READER`) Specifies the type of managed account.
         """
         return pulumi.get(self, "type")
 

pulumi_snowflake/masking_policy.py

@@ -38,7 +38,7 @@ class MaskingPolicyArgs:
         :param pulumi.Input[builtins.str] return_data_type: The return data type must match the input data type of the first column that is specified as an input column. For more information about data types, check [Snowflake docs](https://docs.snowflake.com/en/sql-reference/intro-summary-data-types).
         :param pulumi.Input[builtins.str] schema: The schema in which to create the masking policy. Due to technical limitations (read more here), avoid using the following characters: `|`, `.`, `"`.
         :param pulumi.Input[builtins.str] comment: Specifies a comment for the masking policy.
-        :param pulumi.Input[builtins.str] exempt_other_policies: Specifies whether the row access policy or conditional masking policy can reference a column that is already protected by a masking policy. Due to Snowflake limitations, when value is changed, the resource is recreated. Available options are: "true" or "false". When the value is not set in the configuration the provider will put "default" there which means to use the Snowflake default for this value.
+        :param pulumi.Input[builtins.str] exempt_other_policies: (Default: fallback to Snowflake default - uses special value that cannot be set in the configuration manually (`default`)) Specifies whether the row access policy or conditional masking policy can reference a column that is already protected by a masking policy. Due to Snowflake limitations, when value is changed, the resource is recreated. Available options are: "true" or "false". When the value is not set in the configuration the provider will put "default" there which means to use the Snowflake default for this value.
         :param pulumi.Input[builtins.str] name: Specifies the identifier for the masking policy; must be unique for the database and schema in which the masking policy is created. Due to technical limitations (read more here), avoid using the following characters: `|`, `.`, `"`.
         """
         pulumi.set(__self__, "arguments", arguments)
@@ -129,7 +129,7 @@ class MaskingPolicyArgs:
     @pulumi.getter(name="exemptOtherPolicies")
     def exempt_other_policies(self) -> Optional[pulumi.Input[builtins.str]]:
         """
-        Specifies whether the row access policy or conditional masking policy can reference a column that is already protected by a masking policy. Due to Snowflake limitations, when value is changed, the resource is recreated. Available options are: "true" or "false". When the value is not set in the configuration the provider will put "default" there which means to use the Snowflake default for this value.
+        (Default: fallback to Snowflake default - uses special value that cannot be set in the configuration manually (`default`)) Specifies whether the row access policy or conditional masking policy can reference a column that is already protected by a masking policy. Due to Snowflake limitations, when value is changed, the resource is recreated. Available options are: "true" or "false". When the value is not set in the configuration the provider will put "default" there which means to use the Snowflake default for this value.
         """
         return pulumi.get(self, "exempt_other_policies")
 
@@ -171,7 +171,7 @@ class _MaskingPolicyState:
         :param pulumi.Input[builtins.str] comment: Specifies a comment for the masking policy.
         :param pulumi.Input[builtins.str] database: The database in which to create the masking policy. Due to technical limitations (read more here), avoid using the following characters: `|`, `.`, `"`.
         :param pulumi.Input[Sequence[pulumi.Input['MaskingPolicyDescribeOutputArgs']]] describe_outputs: Outputs the result of `DESCRIBE MASKING POLICY` for the given masking policy.
-        :param pulumi.Input[builtins.str] exempt_other_policies: Specifies whether the row access policy or conditional masking policy can reference a column that is already protected by a masking policy. Due to Snowflake limitations, when value is changed, the resource is recreated. Available options are: "true" or "false". When the value is not set in the configuration the provider will put "default" there which means to use the Snowflake default for this value.
+        :param pulumi.Input[builtins.str] exempt_other_policies: (Default: fallback to Snowflake default - uses special value that cannot be set in the configuration manually (`default`)) Specifies whether the row access policy or conditional masking policy can reference a column that is already protected by a masking policy. Due to Snowflake limitations, when value is changed, the resource is recreated. Available options are: "true" or "false". When the value is not set in the configuration the provider will put "default" there which means to use the Snowflake default for this value.
         :param pulumi.Input[builtins.str] fully_qualified_name: Fully qualified name of the resource. For more information, see [object name resolution](https://docs.snowflake.com/en/sql-reference/name-resolution).
         :param pulumi.Input[builtins.str] name: Specifies the identifier for the masking policy; must be unique for the database and schema in which the masking policy is created. Due to technical limitations (read more here), avoid using the following characters: `|`, `.`, `"`.
         :param pulumi.Input[builtins.str] return_data_type: The return data type must match the input data type of the first column that is specified as an input column. For more information about data types, check [Snowflake docs](https://docs.snowflake.com/en/sql-reference/intro-summary-data-types).
@@ -265,7 +265,7 @@ class _MaskingPolicyState:
     @pulumi.getter(name="exemptOtherPolicies")
     def exempt_other_policies(self) -> Optional[pulumi.Input[builtins.str]]:
         """
-        Specifies whether the row access policy or conditional masking policy can reference a column that is already protected by a masking policy. Due to Snowflake limitations, when value is changed, the resource is recreated. Available options are: "true" or "false". When the value is not set in the configuration the provider will put "default" there which means to use the Snowflake default for this value.
+        (Default: fallback to Snowflake default - uses special value that cannot be set in the configuration manually (`default`)) Specifies whether the row access policy or conditional masking policy can reference a column that is already protected by a masking policy. Due to Snowflake limitations, when value is changed, the resource is recreated. Available options are: "true" or "false". When the value is not set in the configuration the provider will put "default" there which means to use the Snowflake default for this value.
         """
         return pulumi.get(self, "exempt_other_policies")
 
@@ -361,7 +361,7 @@ class MaskingPolicy(pulumi.CustomResource):
         :param pulumi.Input[builtins.str] body: Specifies the SQL expression that transforms the data. To mitigate permadiff on this field, the provider replaces blank characters with a space. This can lead to false positives in cases where a change in case or run of whitespace is semantically significant.
         :param pulumi.Input[builtins.str] comment: Specifies a comment for the masking policy.
         :param pulumi.Input[builtins.str] database: The database in which to create the masking policy. Due to technical limitations (read more here), avoid using the following characters: `|`, `.`, `"`.
-        :param pulumi.Input[builtins.str] exempt_other_policies: Specifies whether the row access policy or conditional masking policy can reference a column that is already protected by a masking policy. Due to Snowflake limitations, when value is changed, the resource is recreated. Available options are: "true" or "false". When the value is not set in the configuration the provider will put "default" there which means to use the Snowflake default for this value.
+        :param pulumi.Input[builtins.str] exempt_other_policies: (Default: fallback to Snowflake default - uses special value that cannot be set in the configuration manually (`default`)) Specifies whether the row access policy or conditional masking policy can reference a column that is already protected by a masking policy. Due to Snowflake limitations, when value is changed, the resource is recreated. Available options are: "true" or "false". When the value is not set in the configuration the provider will put "default" there which means to use the Snowflake default for this value.
         :param pulumi.Input[builtins.str] name: Specifies the identifier for the masking policy; must be unique for the database and schema in which the masking policy is created. Due to technical limitations (read more here), avoid using the following characters: `|`, `.`, `"`.
         :param pulumi.Input[builtins.str] return_data_type: The return data type must match the input data type of the first column that is specified as an input column. For more information about data types, check [Snowflake docs](https://docs.snowflake.com/en/sql-reference/intro-summary-data-types).
         :param pulumi.Input[builtins.str] schema: The schema in which to create the masking policy. Due to technical limitations (read more here), avoid using the following characters: `|`, `.`, `"`.
@@ -465,7 +465,7 @@ class MaskingPolicy(pulumi.CustomResource):
         :param pulumi.Input[builtins.str] comment: Specifies a comment for the masking policy.
         :param pulumi.Input[builtins.str] database: The database in which to create the masking policy. Due to technical limitations (read more here), avoid using the following characters: `|`, `.`, `"`.
         :param pulumi.Input[Sequence[pulumi.Input[Union['MaskingPolicyDescribeOutputArgs', 'MaskingPolicyDescribeOutputArgsDict']]]] describe_outputs: Outputs the result of `DESCRIBE MASKING POLICY` for the given masking policy.
-        :param pulumi.Input[builtins.str] exempt_other_policies: Specifies whether the row access policy or conditional masking policy can reference a column that is already protected by a masking policy. Due to Snowflake limitations, when value is changed, the resource is recreated. Available options are: "true" or "false". When the value is not set in the configuration the provider will put "default" there which means to use the Snowflake default for this value.
+        :param pulumi.Input[builtins.str] exempt_other_policies: (Default: fallback to Snowflake default - uses special value that cannot be set in the configuration manually (`default`)) Specifies whether the row access policy or conditional masking policy can reference a column that is already protected by a masking policy. Due to Snowflake limitations, when value is changed, the resource is recreated. Available options are: "true" or "false". When the value is not set in the configuration the provider will put "default" there which means to use the Snowflake default for this value.
         :param pulumi.Input[builtins.str] fully_qualified_name: Fully qualified name of the resource. For more information, see [object name resolution](https://docs.snowflake.com/en/sql-reference/name-resolution).
         :param pulumi.Input[builtins.str] name: Specifies the identifier for the masking policy; must be unique for the database and schema in which the masking policy is created. Due to technical limitations (read more here), avoid using the following characters: `|`, `.`, `"`.
         :param pulumi.Input[builtins.str] return_data_type: The return data type must match the input data type of the first column that is specified as an input column. For more information about data types, check [Snowflake docs](https://docs.snowflake.com/en/sql-reference/intro-summary-data-types).
@@ -533,7 +533,7 @@ class MaskingPolicy(pulumi.CustomResource):
     @pulumi.getter(name="exemptOtherPolicies")
     def exempt_other_policies(self) -> pulumi.Output[Optional[builtins.str]]:
         """
-        Specifies whether the row access policy or conditional masking policy can reference a column that is already protected by a masking policy. Due to Snowflake limitations, when value is changed, the resource is recreated. Available options are: "true" or "false". When the value is not set in the configuration the provider will put "default" there which means to use the Snowflake default for this value.
+        (Default: fallback to Snowflake default - uses special value that cannot be set in the configuration manually (`default`)) Specifies whether the row access policy or conditional masking policy can reference a column that is already protected by a masking policy. Due to Snowflake limitations, when value is changed, the resource is recreated. Available options are: "true" or "false". When the value is not set in the configuration the provider will put "default" there which means to use the Snowflake default for this value.
         """
         return pulumi.get(self, "exempt_other_policies")
 

pulumi_snowflake/materialized_view.py

@@ -38,9 +38,9 @@ class MaterializedViewArgs:
         :param pulumi.Input[builtins.str] statement: Specifies the query used to create the view.
         :param pulumi.Input[builtins.str] warehouse: The warehouse name.
         :param pulumi.Input[builtins.str] comment: Specifies a comment for the view.
-        :param pulumi.Input[builtins.bool] is_secure: Specifies that the view is secure.
+        :param pulumi.Input[builtins.bool] is_secure: (Default: `false`) Specifies that the view is secure.
         :param pulumi.Input[builtins.str] name: Specifies the identifier for the view; must be unique for the schema in which the view is created.
-        :param pulumi.Input[builtins.bool] or_replace: Overwrites the View if it exists.
+        :param pulumi.Input[builtins.bool] or_replace: (Default: `false`) Overwrites the View if it exists.
         :param pulumi.Input[Sequence[pulumi.Input['MaterializedViewTagArgs']]] tags: Definitions of a tag to associate with the resource.
         """
         pulumi.set(__self__, "database", database)
@@ -125,7 +125,7 @@ class MaterializedViewArgs:
     @pulumi.getter(name="isSecure")
     def is_secure(self) -> Optional[pulumi.Input[builtins.bool]]:
         """
-        Specifies that the view is secure.
+        (Default: `false`) Specifies that the view is secure.
         """
         return pulumi.get(self, "is_secure")
 
@@ -149,7 +149,7 @@ class MaterializedViewArgs:
     @pulumi.getter(name="orReplace")
     def or_replace(self) -> Optional[pulumi.Input[builtins.bool]]:
         """
-        Overwrites the View if it exists.
+        (Default: `false`) Overwrites the View if it exists.
         """
         return pulumi.get(self, "or_replace")
 
@@ -189,9 +189,9 @@ class _MaterializedViewState:
         :param pulumi.Input[builtins.str] comment: Specifies a comment for the view.
         :param pulumi.Input[builtins.str] database: The database in which to create the view. Don't use the | character.
         :param pulumi.Input[builtins.str] fully_qualified_name: Fully qualified name of the resource. For more information, see [object name resolution](https://docs.snowflake.com/en/sql-reference/name-resolution).
-        :param pulumi.Input[builtins.bool] is_secure: Specifies that the view is secure.
+        :param pulumi.Input[builtins.bool] is_secure: (Default: `false`) Specifies that the view is secure.
         :param pulumi.Input[builtins.str] name: Specifies the identifier for the view; must be unique for the schema in which the view is created.
-        :param pulumi.Input[builtins.bool] or_replace: Overwrites the View if it exists.
+        :param pulumi.Input[builtins.bool] or_replace: (Default: `false`) Overwrites the View if it exists.
         :param pulumi.Input[builtins.str] schema: The schema in which to create the view. Don't use the | character.
         :param pulumi.Input[builtins.str] statement: Specifies the query used to create the view.
         :param pulumi.Input[Sequence[pulumi.Input['MaterializedViewTagArgs']]] tags: Definitions of a tag to associate with the resource.
@@ -261,7 +261,7 @@ class _MaterializedViewState:
     @pulumi.getter(name="isSecure")
     def is_secure(self) -> Optional[pulumi.Input[builtins.bool]]:
         """
-        Specifies that the view is secure.
+        (Default: `false`) Specifies that the view is secure.
         """
         return pulumi.get(self, "is_secure")
 
@@ -285,7 +285,7 @@ class _MaterializedViewState:
     @pulumi.getter(name="orReplace")
     def or_replace(self) -> Optional[pulumi.Input[builtins.bool]]:
         """
-        Overwrites the View if it exists.
+        (Default: `false`) Overwrites the View if it exists.
         """
         return pulumi.get(self, "or_replace")
 
@@ -371,9 +371,9 @@ class MaterializedView(pulumi.CustomResource):
         :param pulumi.ResourceOptions opts: Options for the resource.
         :param pulumi.Input[builtins.str] comment: Specifies a comment for the view.
         :param pulumi.Input[builtins.str] database: The database in which to create the view. Don't use the | character.
-        :param pulumi.Input[builtins.bool] is_secure: Specifies that the view is secure.
+        :param pulumi.Input[builtins.bool] is_secure: (Default: `false`) Specifies that the view is secure.
         :param pulumi.Input[builtins.str] name: Specifies the identifier for the view; must be unique for the schema in which the view is created.
-        :param pulumi.Input[builtins.bool] or_replace: Overwrites the View if it exists.
+        :param pulumi.Input[builtins.bool] or_replace: (Default: `false`) Overwrites the View if it exists.
         :param pulumi.Input[builtins.str] schema: The schema in which to create the view. Don't use the | character.
         :param pulumi.Input[builtins.str] statement: Specifies the query used to create the view.
         :param pulumi.Input[Sequence[pulumi.Input[Union['MaterializedViewTagArgs', 'MaterializedViewTagArgsDict']]]] tags: Definitions of a tag to associate with the resource.
@@ -475,9 +475,9 @@ class MaterializedView(pulumi.CustomResource):
         :param pulumi.Input[builtins.str] comment: Specifies a comment for the view.
         :param pulumi.Input[builtins.str] database: The database in which to create the view. Don't use the | character.
         :param pulumi.Input[builtins.str] fully_qualified_name: Fully qualified name of the resource. For more information, see [object name resolution](https://docs.snowflake.com/en/sql-reference/name-resolution).
-        :param pulumi.Input[builtins.bool] is_secure: Specifies that the view is secure.
+        :param pulumi.Input[builtins.bool] is_secure: (Default: `false`) Specifies that the view is secure.
         :param pulumi.Input[builtins.str] name: Specifies the identifier for the view; must be unique for the schema in which the view is created.
-        :param pulumi.Input[builtins.bool] or_replace: Overwrites the View if it exists.
+        :param pulumi.Input[builtins.bool] or_replace: (Default: `false`) Overwrites the View if it exists.
         :param pulumi.Input[builtins.str] schema: The schema in which to create the view. Don't use the | character.
         :param pulumi.Input[builtins.str] statement: Specifies the query used to create the view.
         :param pulumi.Input[Sequence[pulumi.Input[Union['MaterializedViewTagArgs', 'MaterializedViewTagArgsDict']]]] tags: Definitions of a tag to associate with the resource.
@@ -527,7 +527,7 @@ class MaterializedView(pulumi.CustomResource):
     @pulumi.getter(name="isSecure")
     def is_secure(self) -> pulumi.Output[Optional[builtins.bool]]:
         """
-        Specifies that the view is secure.
+        (Default: `false`) Specifies that the view is secure.
         """
         return pulumi.get(self, "is_secure")
 
@@ -543,7 +543,7 @@ class MaterializedView(pulumi.CustomResource):
     @pulumi.getter(name="orReplace")
     def or_replace(self) -> pulumi.Output[Optional[builtins.bool]]:
         """
-        Overwrites the View if it exists.
+        (Default: `false`) Overwrites the View if it exists.
         """
         return pulumi.get(self, "or_replace")