pulumi-snowflake 1.2.0a1744439488__py3-none-any.whl → 1.3.0a1744699038__py3-none-any.whl

pulumi_snowflake/api_integration.py

@@ -36,14 +36,14 @@ class ApiIntegrationArgs:
         The set of arguments for constructing a ApiIntegration resource.
         :param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] api_allowed_prefixes: Explicitly limits external functions that use the integration to reference one or more HTTPS proxy service endpoints and resources within those proxies.
         :param pulumi.Input[builtins.str] api_provider: Specifies the HTTPS proxy service type.
-        :param pulumi.Input[builtins.str] api_aws_role_arn: ARN of a cloud platform role.
+        :param pulumi.Input[builtins.str] api_aws_role_arn: (Default: ``) ARN of a cloud platform role.
         :param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] api_blocked_prefixes: Lists the endpoints and resources in the HTTPS proxy service that are not allowed to be called from Snowflake.
         :param pulumi.Input[builtins.str] api_gcp_service_account: The service account used for communication with the Google API Gateway.
         :param pulumi.Input[builtins.str] api_key: The API key (also called a “subscription key”).
-        :param pulumi.Input[builtins.str] azure_ad_application_id: The 'Application (client) id' of the Azure AD app for your remote service.
-        :param pulumi.Input[builtins.str] azure_tenant_id: Specifies the ID for your Office 365 tenant that all Azure API Management instances belong to.
-        :param pulumi.Input[builtins.bool] enabled: Specifies whether this API integration is enabled or disabled. If the API integration is disabled, any external function that relies on it will not work.
-        :param pulumi.Input[builtins.str] google_audience: The audience claim when generating the JWT (JSON Web Token) to authenticate to the Google API Gateway.
+        :param pulumi.Input[builtins.str] azure_ad_application_id: (Default: ``) The 'Application (client) id' of the Azure AD app for your remote service.
+        :param pulumi.Input[builtins.str] azure_tenant_id: (Default: ``) Specifies the ID for your Office 365 tenant that all Azure API Management instances belong to.
+        :param pulumi.Input[builtins.bool] enabled: (Default: `true`) Specifies whether this API integration is enabled or disabled. If the API integration is disabled, any external function that relies on it will not work.
+        :param pulumi.Input[builtins.str] google_audience: (Default: ``) The audience claim when generating the JWT (JSON Web Token) to authenticate to the Google API Gateway.
         :param pulumi.Input[builtins.str] name: Specifies the name of the API integration. This name follows the rules for Object Identifiers. The name should be unique among api integrations in your account.
         """
         pulumi.set(__self__, "api_allowed_prefixes", api_allowed_prefixes)
@@ -97,7 +97,7 @@ class ApiIntegrationArgs:
     @pulumi.getter(name="apiAwsRoleArn")
     def api_aws_role_arn(self) -> Optional[pulumi.Input[builtins.str]]:
         """
-        ARN of a cloud platform role.
+        (Default: ``) ARN of a cloud platform role.
         """
         return pulumi.get(self, "api_aws_role_arn")
 
@@ -145,7 +145,7 @@ class ApiIntegrationArgs:
     @pulumi.getter(name="azureAdApplicationId")
     def azure_ad_application_id(self) -> Optional[pulumi.Input[builtins.str]]:
         """
-        The 'Application (client) id' of the Azure AD app for your remote service.
+        (Default: ``) The 'Application (client) id' of the Azure AD app for your remote service.
         """
         return pulumi.get(self, "azure_ad_application_id")
 
@@ -157,7 +157,7 @@ class ApiIntegrationArgs:
     @pulumi.getter(name="azureTenantId")
     def azure_tenant_id(self) -> Optional[pulumi.Input[builtins.str]]:
         """
-        Specifies the ID for your Office 365 tenant that all Azure API Management instances belong to.
+        (Default: ``) Specifies the ID for your Office 365 tenant that all Azure API Management instances belong to.
         """
         return pulumi.get(self, "azure_tenant_id")
 
@@ -178,7 +178,7 @@ class ApiIntegrationArgs:
     @pulumi.getter
     def enabled(self) -> Optional[pulumi.Input[builtins.bool]]:
         """
-        Specifies whether this API integration is enabled or disabled. If the API integration is disabled, any external function that relies on it will not work.
+        (Default: `true`) Specifies whether this API integration is enabled or disabled. If the API integration is disabled, any external function that relies on it will not work.
         """
         return pulumi.get(self, "enabled")
 
@@ -190,7 +190,7 @@ class ApiIntegrationArgs:
     @pulumi.getter(name="googleAudience")
     def google_audience(self) -> Optional[pulumi.Input[builtins.str]]:
         """
-        The audience claim when generating the JWT (JSON Web Token) to authenticate to the Google API Gateway.
+        (Default: ``) The audience claim when generating the JWT (JSON Web Token) to authenticate to the Google API Gateway.
         """
         return pulumi.get(self, "google_audience")
 
@@ -237,17 +237,17 @@ class _ApiIntegrationState:
         :param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] api_allowed_prefixes: Explicitly limits external functions that use the integration to reference one or more HTTPS proxy service endpoints and resources within those proxies.
         :param pulumi.Input[builtins.str] api_aws_external_id: The external ID that Snowflake will use when assuming the AWS role.
         :param pulumi.Input[builtins.str] api_aws_iam_user_arn: The Snowflake user that will attempt to assume the AWS role.
-        :param pulumi.Input[builtins.str] api_aws_role_arn: ARN of a cloud platform role.
+        :param pulumi.Input[builtins.str] api_aws_role_arn: (Default: ``) ARN of a cloud platform role.
         :param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] api_blocked_prefixes: Lists the endpoints and resources in the HTTPS proxy service that are not allowed to be called from Snowflake.
         :param pulumi.Input[builtins.str] api_gcp_service_account: The service account used for communication with the Google API Gateway.
         :param pulumi.Input[builtins.str] api_key: The API key (also called a “subscription key”).
         :param pulumi.Input[builtins.str] api_provider: Specifies the HTTPS proxy service type.
-        :param pulumi.Input[builtins.str] azure_ad_application_id: The 'Application (client) id' of the Azure AD app for your remote service.
-        :param pulumi.Input[builtins.str] azure_tenant_id: Specifies the ID for your Office 365 tenant that all Azure API Management instances belong to.
+        :param pulumi.Input[builtins.str] azure_ad_application_id: (Default: ``) The 'Application (client) id' of the Azure AD app for your remote service.
+        :param pulumi.Input[builtins.str] azure_tenant_id: (Default: ``) Specifies the ID for your Office 365 tenant that all Azure API Management instances belong to.
         :param pulumi.Input[builtins.str] created_on: Date and time when the API integration was created.
-        :param pulumi.Input[builtins.bool] enabled: Specifies whether this API integration is enabled or disabled. If the API integration is disabled, any external function that relies on it will not work.
+        :param pulumi.Input[builtins.bool] enabled: (Default: `true`) Specifies whether this API integration is enabled or disabled. If the API integration is disabled, any external function that relies on it will not work.
         :param pulumi.Input[builtins.str] fully_qualified_name: Fully qualified name of the resource. For more information, see [object name resolution](https://docs.snowflake.com/en/sql-reference/name-resolution).
-        :param pulumi.Input[builtins.str] google_audience: The audience claim when generating the JWT (JSON Web Token) to authenticate to the Google API Gateway.
+        :param pulumi.Input[builtins.str] google_audience: (Default: ``) The audience claim when generating the JWT (JSON Web Token) to authenticate to the Google API Gateway.
         :param pulumi.Input[builtins.str] name: Specifies the name of the API integration. This name follows the rules for Object Identifiers. The name should be unique among api integrations in your account.
         """
         if api_allowed_prefixes is not None:
@@ -327,7 +327,7 @@ class _ApiIntegrationState:
     @pulumi.getter(name="apiAwsRoleArn")
     def api_aws_role_arn(self) -> Optional[pulumi.Input[builtins.str]]:
         """
-        ARN of a cloud platform role.
+        (Default: ``) ARN of a cloud platform role.
         """
         return pulumi.get(self, "api_aws_role_arn")
 
@@ -387,7 +387,7 @@ class _ApiIntegrationState:
     @pulumi.getter(name="azureAdApplicationId")
     def azure_ad_application_id(self) -> Optional[pulumi.Input[builtins.str]]:
         """
-        The 'Application (client) id' of the Azure AD app for your remote service.
+        (Default: ``) The 'Application (client) id' of the Azure AD app for your remote service.
         """
         return pulumi.get(self, "azure_ad_application_id")
 
@@ -417,7 +417,7 @@ class _ApiIntegrationState:
     @pulumi.getter(name="azureTenantId")
     def azure_tenant_id(self) -> Optional[pulumi.Input[builtins.str]]:
         """
-        Specifies the ID for your Office 365 tenant that all Azure API Management instances belong to.
+        (Default: ``) Specifies the ID for your Office 365 tenant that all Azure API Management instances belong to.
         """
         return pulumi.get(self, "azure_tenant_id")
 
@@ -450,7 +450,7 @@ class _ApiIntegrationState:
     @pulumi.getter
     def enabled(self) -> Optional[pulumi.Input[builtins.bool]]:
         """
-        Specifies whether this API integration is enabled or disabled. If the API integration is disabled, any external function that relies on it will not work.
+        (Default: `true`) Specifies whether this API integration is enabled or disabled. If the API integration is disabled, any external function that relies on it will not work.
         """
         return pulumi.get(self, "enabled")
 
@@ -474,7 +474,7 @@ class _ApiIntegrationState:
     @pulumi.getter(name="googleAudience")
     def google_audience(self) -> Optional[pulumi.Input[builtins.str]]:
         """
-        The audience claim when generating the JWT (JSON Web Token) to authenticate to the Google API Gateway.
+        (Default: ``) The audience claim when generating the JWT (JSON Web Token) to authenticate to the Google API Gateway.
         """
         return pulumi.get(self, "google_audience")
 
@@ -523,15 +523,15 @@ class ApiIntegration(pulumi.CustomResource):
         :param str resource_name: The name of the resource.
         :param pulumi.ResourceOptions opts: Options for the resource.
         :param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] api_allowed_prefixes: Explicitly limits external functions that use the integration to reference one or more HTTPS proxy service endpoints and resources within those proxies.
-        :param pulumi.Input[builtins.str] api_aws_role_arn: ARN of a cloud platform role.
+        :param pulumi.Input[builtins.str] api_aws_role_arn: (Default: ``) ARN of a cloud platform role.
         :param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] api_blocked_prefixes: Lists the endpoints and resources in the HTTPS proxy service that are not allowed to be called from Snowflake.
         :param pulumi.Input[builtins.str] api_gcp_service_account: The service account used for communication with the Google API Gateway.
         :param pulumi.Input[builtins.str] api_key: The API key (also called a “subscription key”).
         :param pulumi.Input[builtins.str] api_provider: Specifies the HTTPS proxy service type.
-        :param pulumi.Input[builtins.str] azure_ad_application_id: The 'Application (client) id' of the Azure AD app for your remote service.
-        :param pulumi.Input[builtins.str] azure_tenant_id: Specifies the ID for your Office 365 tenant that all Azure API Management instances belong to.
-        :param pulumi.Input[builtins.bool] enabled: Specifies whether this API integration is enabled or disabled. If the API integration is disabled, any external function that relies on it will not work.
-        :param pulumi.Input[builtins.str] google_audience: The audience claim when generating the JWT (JSON Web Token) to authenticate to the Google API Gateway.
+        :param pulumi.Input[builtins.str] azure_ad_application_id: (Default: ``) The 'Application (client) id' of the Azure AD app for your remote service.
+        :param pulumi.Input[builtins.str] azure_tenant_id: (Default: ``) Specifies the ID for your Office 365 tenant that all Azure API Management instances belong to.
+        :param pulumi.Input[builtins.bool] enabled: (Default: `true`) Specifies whether this API integration is enabled or disabled. If the API integration is disabled, any external function that relies on it will not work.
+        :param pulumi.Input[builtins.str] google_audience: (Default: ``) The audience claim when generating the JWT (JSON Web Token) to authenticate to the Google API Gateway.
         :param pulumi.Input[builtins.str] name: Specifies the name of the API integration. This name follows the rules for Object Identifiers. The name should be unique among api integrations in your account.
         """
         ...
@@ -645,17 +645,17 @@ class ApiIntegration(pulumi.CustomResource):
         :param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] api_allowed_prefixes: Explicitly limits external functions that use the integration to reference one or more HTTPS proxy service endpoints and resources within those proxies.
         :param pulumi.Input[builtins.str] api_aws_external_id: The external ID that Snowflake will use when assuming the AWS role.
         :param pulumi.Input[builtins.str] api_aws_iam_user_arn: The Snowflake user that will attempt to assume the AWS role.
-        :param pulumi.Input[builtins.str] api_aws_role_arn: ARN of a cloud platform role.
+        :param pulumi.Input[builtins.str] api_aws_role_arn: (Default: ``) ARN of a cloud platform role.
         :param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] api_blocked_prefixes: Lists the endpoints and resources in the HTTPS proxy service that are not allowed to be called from Snowflake.
         :param pulumi.Input[builtins.str] api_gcp_service_account: The service account used for communication with the Google API Gateway.
         :param pulumi.Input[builtins.str] api_key: The API key (also called a “subscription key”).
         :param pulumi.Input[builtins.str] api_provider: Specifies the HTTPS proxy service type.
-        :param pulumi.Input[builtins.str] azure_ad_application_id: The 'Application (client) id' of the Azure AD app for your remote service.
-        :param pulumi.Input[builtins.str] azure_tenant_id: Specifies the ID for your Office 365 tenant that all Azure API Management instances belong to.
+        :param pulumi.Input[builtins.str] azure_ad_application_id: (Default: ``) The 'Application (client) id' of the Azure AD app for your remote service.
+        :param pulumi.Input[builtins.str] azure_tenant_id: (Default: ``) Specifies the ID for your Office 365 tenant that all Azure API Management instances belong to.
         :param pulumi.Input[builtins.str] created_on: Date and time when the API integration was created.
-        :param pulumi.Input[builtins.bool] enabled: Specifies whether this API integration is enabled or disabled. If the API integration is disabled, any external function that relies on it will not work.
+        :param pulumi.Input[builtins.bool] enabled: (Default: `true`) Specifies whether this API integration is enabled or disabled. If the API integration is disabled, any external function that relies on it will not work.
         :param pulumi.Input[builtins.str] fully_qualified_name: Fully qualified name of the resource. For more information, see [object name resolution](https://docs.snowflake.com/en/sql-reference/name-resolution).
-        :param pulumi.Input[builtins.str] google_audience: The audience claim when generating the JWT (JSON Web Token) to authenticate to the Google API Gateway.
+        :param pulumi.Input[builtins.str] google_audience: (Default: ``) The audience claim when generating the JWT (JSON Web Token) to authenticate to the Google API Gateway.
         :param pulumi.Input[builtins.str] name: Specifies the name of the API integration. This name follows the rules for Object Identifiers. The name should be unique among api integrations in your account.
         """
         opts = pulumi.ResourceOptions.merge(opts, pulumi.ResourceOptions(id=id))
@@ -710,7 +710,7 @@ class ApiIntegration(pulumi.CustomResource):
     @pulumi.getter(name="apiAwsRoleArn")
     def api_aws_role_arn(self) -> pulumi.Output[Optional[builtins.str]]:
         """
-        ARN of a cloud platform role.
+        (Default: ``) ARN of a cloud platform role.
         """
         return pulumi.get(self, "api_aws_role_arn")
 
@@ -750,7 +750,7 @@ class ApiIntegration(pulumi.CustomResource):
     @pulumi.getter(name="azureAdApplicationId")
     def azure_ad_application_id(self) -> pulumi.Output[Optional[builtins.str]]:
         """
-        The 'Application (client) id' of the Azure AD app for your remote service.
+        (Default: ``) The 'Application (client) id' of the Azure AD app for your remote service.
         """
         return pulumi.get(self, "azure_ad_application_id")
 
@@ -768,7 +768,7 @@ class ApiIntegration(pulumi.CustomResource):
     @pulumi.getter(name="azureTenantId")
     def azure_tenant_id(self) -> pulumi.Output[Optional[builtins.str]]:
         """
-        Specifies the ID for your Office 365 tenant that all Azure API Management instances belong to.
+        (Default: ``) Specifies the ID for your Office 365 tenant that all Azure API Management instances belong to.
         """
         return pulumi.get(self, "azure_tenant_id")
 
@@ -789,7 +789,7 @@ class ApiIntegration(pulumi.CustomResource):
     @pulumi.getter
     def enabled(self) -> pulumi.Output[Optional[builtins.bool]]:
         """
-        Specifies whether this API integration is enabled or disabled. If the API integration is disabled, any external function that relies on it will not work.
+        (Default: `true`) Specifies whether this API integration is enabled or disabled. If the API integration is disabled, any external function that relies on it will not work.
         """
         return pulumi.get(self, "enabled")
 
@@ -805,7 +805,7 @@ class ApiIntegration(pulumi.CustomResource):
     @pulumi.getter(name="googleAudience")
     def google_audience(self) -> pulumi.Output[Optional[builtins.str]]:
         """
-        The audience claim when generating the JWT (JSON Web Token) to authenticate to the Google API Gateway.
+        (Default: ``) The audience claim when generating the JWT (JSON Web Token) to authenticate to the Google API Gateway.
         """
         return pulumi.get(self, "google_audience")
 

pulumi_snowflake/authentication_policy.py

@@ -39,7 +39,7 @@ class AuthenticationPolicyArgs:
         :param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] client_types: A list of clients that can authenticate with Snowflake. If a client tries to connect, and the client is not one of the valid CLIENT*TYPES, then the login attempt fails. Allowed values are `ALL` | `SNOWFLAKE_UI` | `DRIVERS` | `SNOWSQL`. The CLIENT*TYPES property of an authentication policy is a best effort method to block user logins based on specific clients. It should not be used as the sole control to establish a security boundary.
         :param pulumi.Input[builtins.str] comment: Specifies a comment for the authentication policy.
         :param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] mfa_authentication_methods: A list of authentication methods that enforce multi-factor authentication (MFA) during login. Authentication methods not listed in this parameter do not prompt for multi-factor authentication. Allowed values are `ALL` | `SAML` | `PASSWORD`.
-        :param pulumi.Input[builtins.str] mfa_enrollment: Determines whether a user must enroll in multi-factor authentication. Allowed values are REQUIRED and OPTIONAL. When REQUIRED is specified, Enforces users to enroll in MFA. If this value is used, then the CLIENT*TYPES parameter must include SNOWFLAKE*UI, because Snowsight is the only place users can enroll in multi-factor authentication (MFA).
+        :param pulumi.Input[builtins.str] mfa_enrollment: (Default: `OPTIONAL`) Determines whether a user must enroll in multi-factor authentication. Allowed values are REQUIRED and OPTIONAL. When REQUIRED is specified, Enforces users to enroll in MFA. If this value is used, then the CLIENT*TYPES parameter must include SNOWFLAKE*UI, because Snowsight is the only place users can enroll in multi-factor authentication (MFA).
         :param pulumi.Input[builtins.str] name: Specifies the identifier for the authentication policy. Due to technical limitations (read more here), avoid using the following characters: `|`, `.`, `"`.
         :param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] security_integrations: A list of security integrations the authentication policy is associated with. This parameter has no effect when SAML or OAUTH are not in the AUTHENTICATION*METHODS list. All values in the SECURITY*INTEGRATIONS list must be compatible with the values in the AUTHENTICATION*METHODS list. For example, if SECURITY*INTEGRATIONS contains a SAML security integration, and AUTHENTICATION_METHODS contains OAUTH, then you cannot create the authentication policy. To allow all security integrations use ALL as parameter.
         """
@@ -136,7 +136,7 @@ class AuthenticationPolicyArgs:
     @pulumi.getter(name="mfaEnrollment")
     def mfa_enrollment(self) -> Optional[pulumi.Input[builtins.str]]:
         """
-        Determines whether a user must enroll in multi-factor authentication. Allowed values are REQUIRED and OPTIONAL. When REQUIRED is specified, Enforces users to enroll in MFA. If this value is used, then the CLIENT*TYPES parameter must include SNOWFLAKE*UI, because Snowsight is the only place users can enroll in multi-factor authentication (MFA).
+        (Default: `OPTIONAL`) Determines whether a user must enroll in multi-factor authentication. Allowed values are REQUIRED and OPTIONAL. When REQUIRED is specified, Enforces users to enroll in MFA. If this value is used, then the CLIENT*TYPES parameter must include SNOWFLAKE*UI, because Snowsight is the only place users can enroll in multi-factor authentication (MFA).
         """
         return pulumi.get(self, "mfa_enrollment")
 
@@ -193,7 +193,7 @@ class _AuthenticationPolicyState:
         :param pulumi.Input[Sequence[pulumi.Input['AuthenticationPolicyDescribeOutputArgs']]] describe_outputs: Outputs the result of `DESCRIBE AUTHENTICATION POLICY` for the given policy.
         :param pulumi.Input[builtins.str] fully_qualified_name: Fully qualified name of the resource. For more information, see [object name resolution](https://docs.snowflake.com/en/sql-reference/name-resolution).
         :param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] mfa_authentication_methods: A list of authentication methods that enforce multi-factor authentication (MFA) during login. Authentication methods not listed in this parameter do not prompt for multi-factor authentication. Allowed values are `ALL` | `SAML` | `PASSWORD`.
-        :param pulumi.Input[builtins.str] mfa_enrollment: Determines whether a user must enroll in multi-factor authentication. Allowed values are REQUIRED and OPTIONAL. When REQUIRED is specified, Enforces users to enroll in MFA. If this value is used, then the CLIENT*TYPES parameter must include SNOWFLAKE*UI, because Snowsight is the only place users can enroll in multi-factor authentication (MFA).
+        :param pulumi.Input[builtins.str] mfa_enrollment: (Default: `OPTIONAL`) Determines whether a user must enroll in multi-factor authentication. Allowed values are REQUIRED and OPTIONAL. When REQUIRED is specified, Enforces users to enroll in MFA. If this value is used, then the CLIENT*TYPES parameter must include SNOWFLAKE*UI, because Snowsight is the only place users can enroll in multi-factor authentication (MFA).
         :param pulumi.Input[builtins.str] name: Specifies the identifier for the authentication policy. Due to technical limitations (read more here), avoid using the following characters: `|`, `.`, `"`.
         :param pulumi.Input[builtins.str] schema: The schema in which to create the authentication policy. Due to technical limitations (read more here), avoid using the following characters: `|`, `.`, `"`.
         :param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] security_integrations: A list of security integrations the authentication policy is associated with. This parameter has no effect when SAML or OAUTH are not in the AUTHENTICATION*METHODS list. All values in the SECURITY*INTEGRATIONS list must be compatible with the values in the AUTHENTICATION*METHODS list. For example, if SECURITY*INTEGRATIONS contains a SAML security integration, and AUTHENTICATION_METHODS contains OAUTH, then you cannot create the authentication policy. To allow all security integrations use ALL as parameter.
@@ -312,7 +312,7 @@ class _AuthenticationPolicyState:
     @pulumi.getter(name="mfaEnrollment")
     def mfa_enrollment(self) -> Optional[pulumi.Input[builtins.str]]:
         """
-        Determines whether a user must enroll in multi-factor authentication. Allowed values are REQUIRED and OPTIONAL. When REQUIRED is specified, Enforces users to enroll in MFA. If this value is used, then the CLIENT*TYPES parameter must include SNOWFLAKE*UI, because Snowsight is the only place users can enroll in multi-factor authentication (MFA).
+        (Default: `OPTIONAL`) Determines whether a user must enroll in multi-factor authentication. Allowed values are REQUIRED and OPTIONAL. When REQUIRED is specified, Enforces users to enroll in MFA. If this value is used, then the CLIENT*TYPES parameter must include SNOWFLAKE*UI, because Snowsight is the only place users can enroll in multi-factor authentication (MFA).
         """
         return pulumi.get(self, "mfa_enrollment")
 
@@ -398,7 +398,7 @@ class AuthenticationPolicy(pulumi.CustomResource):
         :param pulumi.Input[builtins.str] comment: Specifies a comment for the authentication policy.
         :param pulumi.Input[builtins.str] database: The database in which to create the authentication policy. Due to technical limitations (read more here), avoid using the following characters: `|`, `.`, `"`.
         :param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] mfa_authentication_methods: A list of authentication methods that enforce multi-factor authentication (MFA) during login. Authentication methods not listed in this parameter do not prompt for multi-factor authentication. Allowed values are `ALL` | `SAML` | `PASSWORD`.
-        :param pulumi.Input[builtins.str] mfa_enrollment: Determines whether a user must enroll in multi-factor authentication. Allowed values are REQUIRED and OPTIONAL. When REQUIRED is specified, Enforces users to enroll in MFA. If this value is used, then the CLIENT*TYPES parameter must include SNOWFLAKE*UI, because Snowsight is the only place users can enroll in multi-factor authentication (MFA).
+        :param pulumi.Input[builtins.str] mfa_enrollment: (Default: `OPTIONAL`) Determines whether a user must enroll in multi-factor authentication. Allowed values are REQUIRED and OPTIONAL. When REQUIRED is specified, Enforces users to enroll in MFA. If this value is used, then the CLIENT*TYPES parameter must include SNOWFLAKE*UI, because Snowsight is the only place users can enroll in multi-factor authentication (MFA).
         :param pulumi.Input[builtins.str] name: Specifies the identifier for the authentication policy. Due to technical limitations (read more here), avoid using the following characters: `|`, `.`, `"`.
         :param pulumi.Input[builtins.str] schema: The schema in which to create the authentication policy. Due to technical limitations (read more here), avoid using the following characters: `|`, `.`, `"`.
         :param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] security_integrations: A list of security integrations the authentication policy is associated with. This parameter has no effect when SAML or OAUTH are not in the AUTHENTICATION*METHODS list. All values in the SECURITY*INTEGRATIONS list must be compatible with the values in the AUTHENTICATION*METHODS list. For example, if SECURITY*INTEGRATIONS contains a SAML security integration, and AUTHENTICATION_METHODS contains OAUTH, then you cannot create the authentication policy. To allow all security integrations use ALL as parameter.
@@ -501,7 +501,7 @@ class AuthenticationPolicy(pulumi.CustomResource):
         :param pulumi.Input[Sequence[pulumi.Input[Union['AuthenticationPolicyDescribeOutputArgs', 'AuthenticationPolicyDescribeOutputArgsDict']]]] describe_outputs: Outputs the result of `DESCRIBE AUTHENTICATION POLICY` for the given policy.
         :param pulumi.Input[builtins.str] fully_qualified_name: Fully qualified name of the resource. For more information, see [object name resolution](https://docs.snowflake.com/en/sql-reference/name-resolution).
         :param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] mfa_authentication_methods: A list of authentication methods that enforce multi-factor authentication (MFA) during login. Authentication methods not listed in this parameter do not prompt for multi-factor authentication. Allowed values are `ALL` | `SAML` | `PASSWORD`.
-        :param pulumi.Input[builtins.str] mfa_enrollment: Determines whether a user must enroll in multi-factor authentication. Allowed values are REQUIRED and OPTIONAL. When REQUIRED is specified, Enforces users to enroll in MFA. If this value is used, then the CLIENT*TYPES parameter must include SNOWFLAKE*UI, because Snowsight is the only place users can enroll in multi-factor authentication (MFA).
+        :param pulumi.Input[builtins.str] mfa_enrollment: (Default: `OPTIONAL`) Determines whether a user must enroll in multi-factor authentication. Allowed values are REQUIRED and OPTIONAL. When REQUIRED is specified, Enforces users to enroll in MFA. If this value is used, then the CLIENT*TYPES parameter must include SNOWFLAKE*UI, because Snowsight is the only place users can enroll in multi-factor authentication (MFA).
         :param pulumi.Input[builtins.str] name: Specifies the identifier for the authentication policy. Due to technical limitations (read more here), avoid using the following characters: `|`, `.`, `"`.
         :param pulumi.Input[builtins.str] schema: The schema in which to create the authentication policy. Due to technical limitations (read more here), avoid using the following characters: `|`, `.`, `"`.
         :param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] security_integrations: A list of security integrations the authentication policy is associated with. This parameter has no effect when SAML or OAUTH are not in the AUTHENTICATION*METHODS list. All values in the SECURITY*INTEGRATIONS list must be compatible with the values in the AUTHENTICATION*METHODS list. For example, if SECURITY*INTEGRATIONS contains a SAML security integration, and AUTHENTICATION_METHODS contains OAUTH, then you cannot create the authentication policy. To allow all security integrations use ALL as parameter.
@@ -585,7 +585,7 @@ class AuthenticationPolicy(pulumi.CustomResource):
     @pulumi.getter(name="mfaEnrollment")
     def mfa_enrollment(self) -> pulumi.Output[Optional[builtins.str]]:
         """
-        Determines whether a user must enroll in multi-factor authentication. Allowed values are REQUIRED and OPTIONAL. When REQUIRED is specified, Enforces users to enroll in MFA. If this value is used, then the CLIENT*TYPES parameter must include SNOWFLAKE*UI, because Snowsight is the only place users can enroll in multi-factor authentication (MFA).
+        (Default: `OPTIONAL`) Determines whether a user must enroll in multi-factor authentication. Allowed values are REQUIRED and OPTIONAL. When REQUIRED is specified, Enforces users to enroll in MFA. If this value is used, then the CLIENT*TYPES parameter must include SNOWFLAKE*UI, because Snowsight is the only place users can enroll in multi-factor authentication (MFA).
         """
         return pulumi.get(self, "mfa_enrollment")
 

pulumi_snowflake/dynamic_table.py

@@ -40,10 +40,10 @@ class DynamicTableArgs:
         :param pulumi.Input['DynamicTableTargetLagArgs'] target_lag: Specifies the target lag time for the dynamic table.
         :param pulumi.Input[builtins.str] warehouse: The warehouse in which to create the dynamic table.
         :param pulumi.Input[builtins.str] comment: Specifies a comment for the dynamic table.
-        :param pulumi.Input[builtins.str] initialize: Initialize trigger for the dynamic table. Can only be set on creation. Available options are ON*CREATE and ON*SCHEDULE.
+        :param pulumi.Input[builtins.str] initialize: (Default: `ON_CREATE`) Initialize trigger for the dynamic table. Can only be set on creation. Available options are ON*CREATE and ON*SCHEDULE.
         :param pulumi.Input[builtins.str] name: Specifies the identifier (i.e. name) for the dynamic table; must be unique for the schema in which the dynamic table is created.
-        :param pulumi.Input[builtins.bool] or_replace: Specifies whether to replace the dynamic table if it already exists.
-        :param pulumi.Input[builtins.str] refresh_mode: INCREMENTAL to use incremental refreshes, FULL to recompute the whole table on every refresh, or AUTO to let Snowflake decide.
+        :param pulumi.Input[builtins.bool] or_replace: (Default: `false`) Specifies whether to replace the dynamic table if it already exists.
+        :param pulumi.Input[builtins.str] refresh_mode: (Default: `AUTO`) INCREMENTAL to use incremental refreshes, FULL to recompute the whole table on every refresh, or AUTO to let Snowflake decide.
         """
         pulumi.set(__self__, "database", database)
         pulumi.set(__self__, "query", query)
@@ -137,7 +137,7 @@ class DynamicTableArgs:
     @pulumi.getter
     def initialize(self) -> Optional[pulumi.Input[builtins.str]]:
         """
-        Initialize trigger for the dynamic table. Can only be set on creation. Available options are ON*CREATE and ON*SCHEDULE.
+        (Default: `ON_CREATE`) Initialize trigger for the dynamic table. Can only be set on creation. Available options are ON*CREATE and ON*SCHEDULE.
         """
         return pulumi.get(self, "initialize")
 
@@ -161,7 +161,7 @@ class DynamicTableArgs:
     @pulumi.getter(name="orReplace")
     def or_replace(self) -> Optional[pulumi.Input[builtins.bool]]:
         """
-        Specifies whether to replace the dynamic table if it already exists.
+        (Default: `false`) Specifies whether to replace the dynamic table if it already exists.
         """
         return pulumi.get(self, "or_replace")
 
@@ -173,7 +173,7 @@ class DynamicTableArgs:
     @pulumi.getter(name="refreshMode")
     def refresh_mode(self) -> Optional[pulumi.Input[builtins.str]]:
         """
-        INCREMENTAL to use incremental refreshes, FULL to recompute the whole table on every refresh, or AUTO to let Snowflake decide.
+        (Default: `AUTO`) INCREMENTAL to use incremental refreshes, FULL to recompute the whole table on every refresh, or AUTO to let Snowflake decide.
         """
         return pulumi.get(self, "refresh_mode")
 
@@ -218,15 +218,15 @@ class _DynamicTableState:
         :param pulumi.Input[builtins.str] data_timestamp: Timestamp of the data in the base object(s) that is included in the dynamic table.
         :param pulumi.Input[builtins.str] database: The database in which to create the dynamic table.
         :param pulumi.Input[builtins.str] fully_qualified_name: Fully qualified name of the resource. For more information, see [object name resolution](https://docs.snowflake.com/en/sql-reference/name-resolution).
-        :param pulumi.Input[builtins.str] initialize: Initialize trigger for the dynamic table. Can only be set on creation. Available options are ON*CREATE and ON*SCHEDULE.
+        :param pulumi.Input[builtins.str] initialize: (Default: `ON_CREATE`) Initialize trigger for the dynamic table. Can only be set on creation. Available options are ON*CREATE and ON*SCHEDULE.
         :param pulumi.Input[builtins.bool] is_clone: TRUE if the dynamic table has been cloned, else FALSE.
         :param pulumi.Input[builtins.bool] is_replica: TRUE if the dynamic table is a replica. else FALSE.
         :param pulumi.Input[builtins.str] last_suspended_on: Timestamp of last suspension.
         :param pulumi.Input[builtins.str] name: Specifies the identifier (i.e. name) for the dynamic table; must be unique for the schema in which the dynamic table is created.
-        :param pulumi.Input[builtins.bool] or_replace: Specifies whether to replace the dynamic table if it already exists.
+        :param pulumi.Input[builtins.bool] or_replace: (Default: `false`) Specifies whether to replace the dynamic table if it already exists.
         :param pulumi.Input[builtins.str] owner: Role that owns the dynamic table.
         :param pulumi.Input[builtins.str] query: Specifies the query to use to populate the dynamic table.
-        :param pulumi.Input[builtins.str] refresh_mode: INCREMENTAL to use incremental refreshes, FULL to recompute the whole table on every refresh, or AUTO to let Snowflake decide.
+        :param pulumi.Input[builtins.str] refresh_mode: (Default: `AUTO`) INCREMENTAL to use incremental refreshes, FULL to recompute the whole table on every refresh, or AUTO to let Snowflake decide.
         :param pulumi.Input[builtins.str] refresh_mode_reason: Explanation for why FULL refresh mode was chosen. NULL if refresh mode is not FULL.
         :param pulumi.Input[builtins.int] rows: Number of rows in the table.
         :param pulumi.Input[builtins.str] scheduling_state: Displays ACTIVE for dynamic tables that are actively scheduling refreshes and SUSPENDED for suspended dynamic tables.
@@ -381,7 +381,7 @@ class _DynamicTableState:
     @pulumi.getter
     def initialize(self) -> Optional[pulumi.Input[builtins.str]]:
         """
-        Initialize trigger for the dynamic table. Can only be set on creation. Available options are ON*CREATE and ON*SCHEDULE.
+        (Default: `ON_CREATE`) Initialize trigger for the dynamic table. Can only be set on creation. Available options are ON*CREATE and ON*SCHEDULE.
         """
         return pulumi.get(self, "initialize")
 
@@ -441,7 +441,7 @@ class _DynamicTableState:
     @pulumi.getter(name="orReplace")
     def or_replace(self) -> Optional[pulumi.Input[builtins.bool]]:
         """
-        Specifies whether to replace the dynamic table if it already exists.
+        (Default: `false`) Specifies whether to replace the dynamic table if it already exists.
         """
         return pulumi.get(self, "or_replace")
 
@@ -477,7 +477,7 @@ class _DynamicTableState:
     @pulumi.getter(name="refreshMode")
     def refresh_mode(self) -> Optional[pulumi.Input[builtins.str]]:
         """
-        INCREMENTAL to use incremental refreshes, FULL to recompute the whole table on every refresh, or AUTO to let Snowflake decide.
+        (Default: `AUTO`) INCREMENTAL to use incremental refreshes, FULL to recompute the whole table on every refresh, or AUTO to let Snowflake decide.
         """
         return pulumi.get(self, "refresh_mode")
 
@@ -585,11 +585,11 @@ class DynamicTable(pulumi.CustomResource):
         :param pulumi.ResourceOptions opts: Options for the resource.
         :param pulumi.Input[builtins.str] comment: Specifies a comment for the dynamic table.
         :param pulumi.Input[builtins.str] database: The database in which to create the dynamic table.
-        :param pulumi.Input[builtins.str] initialize: Initialize trigger for the dynamic table. Can only be set on creation. Available options are ON*CREATE and ON*SCHEDULE.
+        :param pulumi.Input[builtins.str] initialize: (Default: `ON_CREATE`) Initialize trigger for the dynamic table. Can only be set on creation. Available options are ON*CREATE and ON*SCHEDULE.
         :param pulumi.Input[builtins.str] name: Specifies the identifier (i.e. name) for the dynamic table; must be unique for the schema in which the dynamic table is created.
-        :param pulumi.Input[builtins.bool] or_replace: Specifies whether to replace the dynamic table if it already exists.
+        :param pulumi.Input[builtins.bool] or_replace: (Default: `false`) Specifies whether to replace the dynamic table if it already exists.
         :param pulumi.Input[builtins.str] query: Specifies the query to use to populate the dynamic table.
-        :param pulumi.Input[builtins.str] refresh_mode: INCREMENTAL to use incremental refreshes, FULL to recompute the whole table on every refresh, or AUTO to let Snowflake decide.
+        :param pulumi.Input[builtins.str] refresh_mode: (Default: `AUTO`) INCREMENTAL to use incremental refreshes, FULL to recompute the whole table on every refresh, or AUTO to let Snowflake decide.
         :param pulumi.Input[builtins.str] schema: The schema in which to create the dynamic table.
         :param pulumi.Input[Union['DynamicTableTargetLagArgs', 'DynamicTableTargetLagArgsDict']] target_lag: Specifies the target lag time for the dynamic table.
         :param pulumi.Input[builtins.str] warehouse: The warehouse in which to create the dynamic table.
@@ -722,15 +722,15 @@ class DynamicTable(pulumi.CustomResource):
         :param pulumi.Input[builtins.str] data_timestamp: Timestamp of the data in the base object(s) that is included in the dynamic table.
         :param pulumi.Input[builtins.str] database: The database in which to create the dynamic table.
         :param pulumi.Input[builtins.str] fully_qualified_name: Fully qualified name of the resource. For more information, see [object name resolution](https://docs.snowflake.com/en/sql-reference/name-resolution).
-        :param pulumi.Input[builtins.str] initialize: Initialize trigger for the dynamic table. Can only be set on creation. Available options are ON*CREATE and ON*SCHEDULE.
+        :param pulumi.Input[builtins.str] initialize: (Default: `ON_CREATE`) Initialize trigger for the dynamic table. Can only be set on creation. Available options are ON*CREATE and ON*SCHEDULE.
         :param pulumi.Input[builtins.bool] is_clone: TRUE if the dynamic table has been cloned, else FALSE.
         :param pulumi.Input[builtins.bool] is_replica: TRUE if the dynamic table is a replica. else FALSE.
         :param pulumi.Input[builtins.str] last_suspended_on: Timestamp of last suspension.
         :param pulumi.Input[builtins.str] name: Specifies the identifier (i.e. name) for the dynamic table; must be unique for the schema in which the dynamic table is created.
-        :param pulumi.Input[builtins.bool] or_replace: Specifies whether to replace the dynamic table if it already exists.
+        :param pulumi.Input[builtins.bool] or_replace: (Default: `false`) Specifies whether to replace the dynamic table if it already exists.
         :param pulumi.Input[builtins.str] owner: Role that owns the dynamic table.
         :param pulumi.Input[builtins.str] query: Specifies the query to use to populate the dynamic table.
-        :param pulumi.Input[builtins.str] refresh_mode: INCREMENTAL to use incremental refreshes, FULL to recompute the whole table on every refresh, or AUTO to let Snowflake decide.
+        :param pulumi.Input[builtins.str] refresh_mode: (Default: `AUTO`) INCREMENTAL to use incremental refreshes, FULL to recompute the whole table on every refresh, or AUTO to let Snowflake decide.
         :param pulumi.Input[builtins.str] refresh_mode_reason: Explanation for why FULL refresh mode was chosen. NULL if refresh mode is not FULL.
         :param pulumi.Input[builtins.int] rows: Number of rows in the table.
         :param pulumi.Input[builtins.str] scheduling_state: Displays ACTIVE for dynamic tables that are actively scheduling refreshes and SUSPENDED for suspended dynamic tables.
@@ -835,7 +835,7 @@ class DynamicTable(pulumi.CustomResource):
     @pulumi.getter
     def initialize(self) -> pulumi.Output[Optional[builtins.str]]:
         """
-        Initialize trigger for the dynamic table. Can only be set on creation. Available options are ON*CREATE and ON*SCHEDULE.
+        (Default: `ON_CREATE`) Initialize trigger for the dynamic table. Can only be set on creation. Available options are ON*CREATE and ON*SCHEDULE.
         """
         return pulumi.get(self, "initialize")
 
@@ -875,7 +875,7 @@ class DynamicTable(pulumi.CustomResource):
     @pulumi.getter(name="orReplace")
     def or_replace(self) -> pulumi.Output[Optional[builtins.bool]]:
         """
-        Specifies whether to replace the dynamic table if it already exists.
+        (Default: `false`) Specifies whether to replace the dynamic table if it already exists.
         """
         return pulumi.get(self, "or_replace")
 
@@ -899,7 +899,7 @@ class DynamicTable(pulumi.CustomResource):
     @pulumi.getter(name="refreshMode")
     def refresh_mode(self) -> pulumi.Output[Optional[builtins.str]]:
         """
-        INCREMENTAL to use incremental refreshes, FULL to recompute the whole table on every refresh, or AUTO to let Snowflake decide.
+        (Default: `AUTO`) INCREMENTAL to use incremental refreshes, FULL to recompute the whole table on every refresh, or AUTO to let Snowflake decide.
         """
         return pulumi.get(self, "refresh_mode")