Documentation ¶
Index ¶
- Constants
- type AuditConfig
- type AuditConfigArgs
- type AuditConfigArray
- type AuditConfigArrayInput
- type AuditConfigArrayOutput
- func (AuditConfigArrayOutput) ElementType() reflect.Type
- func (o AuditConfigArrayOutput) Index(i pulumi.IntInput) AuditConfigOutput
- func (o AuditConfigArrayOutput) ToAuditConfigArrayOutput() AuditConfigArrayOutput
- func (o AuditConfigArrayOutput) ToAuditConfigArrayOutputWithContext(ctx context.Context) AuditConfigArrayOutput
- type AuditConfigInput
- type AuditConfigOutput
- func (o AuditConfigOutput) AuditLogConfigs() AuditLogConfigArrayOutput
- func (AuditConfigOutput) ElementType() reflect.Type
- func (o AuditConfigOutput) Service() pulumi.StringPtrOutput
- func (o AuditConfigOutput) ToAuditConfigOutput() AuditConfigOutput
- func (o AuditConfigOutput) ToAuditConfigOutputWithContext(ctx context.Context) AuditConfigOutput
- type AuditConfigResponse
- type AuditConfigResponseArrayOutput
- func (AuditConfigResponseArrayOutput) ElementType() reflect.Type
- func (o AuditConfigResponseArrayOutput) Index(i pulumi.IntInput) AuditConfigResponseOutput
- func (o AuditConfigResponseArrayOutput) ToAuditConfigResponseArrayOutput() AuditConfigResponseArrayOutput
- func (o AuditConfigResponseArrayOutput) ToAuditConfigResponseArrayOutputWithContext(ctx context.Context) AuditConfigResponseArrayOutput
- type AuditConfigResponseOutput
- func (o AuditConfigResponseOutput) AuditLogConfigs() AuditLogConfigResponseArrayOutput
- func (AuditConfigResponseOutput) ElementType() reflect.Type
- func (o AuditConfigResponseOutput) Service() pulumi.StringOutput
- func (o AuditConfigResponseOutput) ToAuditConfigResponseOutput() AuditConfigResponseOutput
- func (o AuditConfigResponseOutput) ToAuditConfigResponseOutputWithContext(ctx context.Context) AuditConfigResponseOutput
- type AuditLogConfig
- type AuditLogConfigArgs
- type AuditLogConfigArray
- type AuditLogConfigArrayInput
- type AuditLogConfigArrayOutput
- func (AuditLogConfigArrayOutput) ElementType() reflect.Type
- func (o AuditLogConfigArrayOutput) Index(i pulumi.IntInput) AuditLogConfigOutput
- func (o AuditLogConfigArrayOutput) ToAuditLogConfigArrayOutput() AuditLogConfigArrayOutput
- func (o AuditLogConfigArrayOutput) ToAuditLogConfigArrayOutputWithContext(ctx context.Context) AuditLogConfigArrayOutput
- type AuditLogConfigInput
- type AuditLogConfigLogType
- func (AuditLogConfigLogType) ElementType() reflect.Type
- func (e AuditLogConfigLogType) ToAuditLogConfigLogTypeOutput() AuditLogConfigLogTypeOutput
- func (e AuditLogConfigLogType) ToAuditLogConfigLogTypeOutputWithContext(ctx context.Context) AuditLogConfigLogTypeOutput
- func (e AuditLogConfigLogType) ToAuditLogConfigLogTypePtrOutput() AuditLogConfigLogTypePtrOutput
- func (e AuditLogConfigLogType) ToAuditLogConfigLogTypePtrOutputWithContext(ctx context.Context) AuditLogConfigLogTypePtrOutput
- func (e AuditLogConfigLogType) ToStringOutput() pulumi.StringOutput
- func (e AuditLogConfigLogType) ToStringOutputWithContext(ctx context.Context) pulumi.StringOutput
- func (e AuditLogConfigLogType) ToStringPtrOutput() pulumi.StringPtrOutput
- func (e AuditLogConfigLogType) ToStringPtrOutputWithContext(ctx context.Context) pulumi.StringPtrOutput
- type AuditLogConfigLogTypeInput
- type AuditLogConfigLogTypeOutput
- func (AuditLogConfigLogTypeOutput) ElementType() reflect.Type
- func (o AuditLogConfigLogTypeOutput) ToAuditLogConfigLogTypeOutput() AuditLogConfigLogTypeOutput
- func (o AuditLogConfigLogTypeOutput) ToAuditLogConfigLogTypeOutputWithContext(ctx context.Context) AuditLogConfigLogTypeOutput
- func (o AuditLogConfigLogTypeOutput) ToAuditLogConfigLogTypePtrOutput() AuditLogConfigLogTypePtrOutput
- func (o AuditLogConfigLogTypeOutput) ToAuditLogConfigLogTypePtrOutputWithContext(ctx context.Context) AuditLogConfigLogTypePtrOutput
- func (o AuditLogConfigLogTypeOutput) ToStringOutput() pulumi.StringOutput
- func (o AuditLogConfigLogTypeOutput) ToStringOutputWithContext(ctx context.Context) pulumi.StringOutput
- func (o AuditLogConfigLogTypeOutput) ToStringPtrOutput() pulumi.StringPtrOutput
- func (o AuditLogConfigLogTypeOutput) ToStringPtrOutputWithContext(ctx context.Context) pulumi.StringPtrOutput
- type AuditLogConfigLogTypePtrInput
- type AuditLogConfigLogTypePtrOutput
- func (o AuditLogConfigLogTypePtrOutput) Elem() AuditLogConfigLogTypeOutput
- func (AuditLogConfigLogTypePtrOutput) ElementType() reflect.Type
- func (o AuditLogConfigLogTypePtrOutput) ToAuditLogConfigLogTypePtrOutput() AuditLogConfigLogTypePtrOutput
- func (o AuditLogConfigLogTypePtrOutput) ToAuditLogConfigLogTypePtrOutputWithContext(ctx context.Context) AuditLogConfigLogTypePtrOutput
- func (o AuditLogConfigLogTypePtrOutput) ToStringPtrOutput() pulumi.StringPtrOutput
- func (o AuditLogConfigLogTypePtrOutput) ToStringPtrOutputWithContext(ctx context.Context) pulumi.StringPtrOutput
- type AuditLogConfigOutput
- func (AuditLogConfigOutput) ElementType() reflect.Type
- func (o AuditLogConfigOutput) ExemptedMembers() pulumi.StringArrayOutput
- func (o AuditLogConfigOutput) LogType() AuditLogConfigLogTypePtrOutput
- func (o AuditLogConfigOutput) ToAuditLogConfigOutput() AuditLogConfigOutput
- func (o AuditLogConfigOutput) ToAuditLogConfigOutputWithContext(ctx context.Context) AuditLogConfigOutput
- type AuditLogConfigResponse
- type AuditLogConfigResponseArrayOutput
- func (AuditLogConfigResponseArrayOutput) ElementType() reflect.Type
- func (o AuditLogConfigResponseArrayOutput) Index(i pulumi.IntInput) AuditLogConfigResponseOutput
- func (o AuditLogConfigResponseArrayOutput) ToAuditLogConfigResponseArrayOutput() AuditLogConfigResponseArrayOutput
- func (o AuditLogConfigResponseArrayOutput) ToAuditLogConfigResponseArrayOutputWithContext(ctx context.Context) AuditLogConfigResponseArrayOutput
- type AuditLogConfigResponseOutput
- func (AuditLogConfigResponseOutput) ElementType() reflect.Type
- func (o AuditLogConfigResponseOutput) ExemptedMembers() pulumi.StringArrayOutput
- func (o AuditLogConfigResponseOutput) LogType() pulumi.StringOutput
- func (o AuditLogConfigResponseOutput) ToAuditLogConfigResponseOutput() AuditLogConfigResponseOutput
- func (o AuditLogConfigResponseOutput) ToAuditLogConfigResponseOutputWithContext(ctx context.Context) AuditLogConfigResponseOutput
- type Binding
- type BindingArgs
- type BindingArray
- type BindingArrayInput
- type BindingArrayOutput
- type BindingInput
- type BindingOutput
- func (o BindingOutput) Condition() ExprPtrOutput
- func (BindingOutput) ElementType() reflect.Type
- func (o BindingOutput) Members() pulumi.StringArrayOutput
- func (o BindingOutput) Role() pulumi.StringPtrOutput
- func (o BindingOutput) ToBindingOutput() BindingOutput
- func (o BindingOutput) ToBindingOutputWithContext(ctx context.Context) BindingOutput
- type BindingResponse
- type BindingResponseArrayOutput
- func (BindingResponseArrayOutput) ElementType() reflect.Type
- func (o BindingResponseArrayOutput) Index(i pulumi.IntInput) BindingResponseOutput
- func (o BindingResponseArrayOutput) ToBindingResponseArrayOutput() BindingResponseArrayOutput
- func (o BindingResponseArrayOutput) ToBindingResponseArrayOutputWithContext(ctx context.Context) BindingResponseArrayOutput
- type BindingResponseOutput
- func (o BindingResponseOutput) Condition() ExprResponseOutput
- func (BindingResponseOutput) ElementType() reflect.Type
- func (o BindingResponseOutput) Members() pulumi.StringArrayOutput
- func (o BindingResponseOutput) Role() pulumi.StringOutput
- func (o BindingResponseOutput) ToBindingResponseOutput() BindingResponseOutput
- func (o BindingResponseOutput) ToBindingResponseOutputWithContext(ctx context.Context) BindingResponseOutput
- type DataMaskingPolicy
- type DataMaskingPolicyArgs
- func (DataMaskingPolicyArgs) ElementType() reflect.Type
- func (i DataMaskingPolicyArgs) ToDataMaskingPolicyOutput() DataMaskingPolicyOutput
- func (i DataMaskingPolicyArgs) ToDataMaskingPolicyOutputWithContext(ctx context.Context) DataMaskingPolicyOutput
- func (i DataMaskingPolicyArgs) ToDataMaskingPolicyPtrOutput() DataMaskingPolicyPtrOutput
- func (i DataMaskingPolicyArgs) ToDataMaskingPolicyPtrOutputWithContext(ctx context.Context) DataMaskingPolicyPtrOutput
- type DataMaskingPolicyInput
- type DataMaskingPolicyOutput
- func (DataMaskingPolicyOutput) ElementType() reflect.Type
- func (o DataMaskingPolicyOutput) PredefinedExpression() DataMaskingPolicyPredefinedExpressionPtrOutput
- func (o DataMaskingPolicyOutput) Routine() pulumi.StringPtrOutput
- func (o DataMaskingPolicyOutput) ToDataMaskingPolicyOutput() DataMaskingPolicyOutput
- func (o DataMaskingPolicyOutput) ToDataMaskingPolicyOutputWithContext(ctx context.Context) DataMaskingPolicyOutput
- func (o DataMaskingPolicyOutput) ToDataMaskingPolicyPtrOutput() DataMaskingPolicyPtrOutput
- func (o DataMaskingPolicyOutput) ToDataMaskingPolicyPtrOutputWithContext(ctx context.Context) DataMaskingPolicyPtrOutput
- type DataMaskingPolicyPredefinedExpression
- func (DataMaskingPolicyPredefinedExpression) ElementType() reflect.Type
- func (e DataMaskingPolicyPredefinedExpression) ToDataMaskingPolicyPredefinedExpressionOutput() DataMaskingPolicyPredefinedExpressionOutput
- func (e DataMaskingPolicyPredefinedExpression) ToDataMaskingPolicyPredefinedExpressionOutputWithContext(ctx context.Context) DataMaskingPolicyPredefinedExpressionOutput
- func (e DataMaskingPolicyPredefinedExpression) ToDataMaskingPolicyPredefinedExpressionPtrOutput() DataMaskingPolicyPredefinedExpressionPtrOutput
- func (e DataMaskingPolicyPredefinedExpression) ToDataMaskingPolicyPredefinedExpressionPtrOutputWithContext(ctx context.Context) DataMaskingPolicyPredefinedExpressionPtrOutput
- func (e DataMaskingPolicyPredefinedExpression) ToStringOutput() pulumi.StringOutput
- func (e DataMaskingPolicyPredefinedExpression) ToStringOutputWithContext(ctx context.Context) pulumi.StringOutput
- func (e DataMaskingPolicyPredefinedExpression) ToStringPtrOutput() pulumi.StringPtrOutput
- func (e DataMaskingPolicyPredefinedExpression) ToStringPtrOutputWithContext(ctx context.Context) pulumi.StringPtrOutput
- type DataMaskingPolicyPredefinedExpressionInput
- type DataMaskingPolicyPredefinedExpressionOutput
- func (DataMaskingPolicyPredefinedExpressionOutput) ElementType() reflect.Type
- func (o DataMaskingPolicyPredefinedExpressionOutput) ToDataMaskingPolicyPredefinedExpressionOutput() DataMaskingPolicyPredefinedExpressionOutput
- func (o DataMaskingPolicyPredefinedExpressionOutput) ToDataMaskingPolicyPredefinedExpressionOutputWithContext(ctx context.Context) DataMaskingPolicyPredefinedExpressionOutput
- func (o DataMaskingPolicyPredefinedExpressionOutput) ToDataMaskingPolicyPredefinedExpressionPtrOutput() DataMaskingPolicyPredefinedExpressionPtrOutput
- func (o DataMaskingPolicyPredefinedExpressionOutput) ToDataMaskingPolicyPredefinedExpressionPtrOutputWithContext(ctx context.Context) DataMaskingPolicyPredefinedExpressionPtrOutput
- func (o DataMaskingPolicyPredefinedExpressionOutput) ToStringOutput() pulumi.StringOutput
- func (o DataMaskingPolicyPredefinedExpressionOutput) ToStringOutputWithContext(ctx context.Context) pulumi.StringOutput
- func (o DataMaskingPolicyPredefinedExpressionOutput) ToStringPtrOutput() pulumi.StringPtrOutput
- func (o DataMaskingPolicyPredefinedExpressionOutput) ToStringPtrOutputWithContext(ctx context.Context) pulumi.StringPtrOutput
- type DataMaskingPolicyPredefinedExpressionPtrInput
- type DataMaskingPolicyPredefinedExpressionPtrOutput
- func (o DataMaskingPolicyPredefinedExpressionPtrOutput) Elem() DataMaskingPolicyPredefinedExpressionOutput
- func (DataMaskingPolicyPredefinedExpressionPtrOutput) ElementType() reflect.Type
- func (o DataMaskingPolicyPredefinedExpressionPtrOutput) ToDataMaskingPolicyPredefinedExpressionPtrOutput() DataMaskingPolicyPredefinedExpressionPtrOutput
- func (o DataMaskingPolicyPredefinedExpressionPtrOutput) ToDataMaskingPolicyPredefinedExpressionPtrOutputWithContext(ctx context.Context) DataMaskingPolicyPredefinedExpressionPtrOutput
- func (o DataMaskingPolicyPredefinedExpressionPtrOutput) ToStringPtrOutput() pulumi.StringPtrOutput
- func (o DataMaskingPolicyPredefinedExpressionPtrOutput) ToStringPtrOutputWithContext(ctx context.Context) pulumi.StringPtrOutput
- type DataMaskingPolicyPtrInput
- type DataMaskingPolicyPtrOutput
- func (o DataMaskingPolicyPtrOutput) Elem() DataMaskingPolicyOutput
- func (DataMaskingPolicyPtrOutput) ElementType() reflect.Type
- func (o DataMaskingPolicyPtrOutput) PredefinedExpression() DataMaskingPolicyPredefinedExpressionPtrOutput
- func (o DataMaskingPolicyPtrOutput) Routine() pulumi.StringPtrOutput
- func (o DataMaskingPolicyPtrOutput) ToDataMaskingPolicyPtrOutput() DataMaskingPolicyPtrOutput
- func (o DataMaskingPolicyPtrOutput) ToDataMaskingPolicyPtrOutputWithContext(ctx context.Context) DataMaskingPolicyPtrOutput
- type DataMaskingPolicyResponse
- type DataMaskingPolicyResponseOutput
- func (DataMaskingPolicyResponseOutput) ElementType() reflect.Type
- func (o DataMaskingPolicyResponseOutput) PredefinedExpression() pulumi.StringOutput
- func (o DataMaskingPolicyResponseOutput) Routine() pulumi.StringOutput
- func (o DataMaskingPolicyResponseOutput) ToDataMaskingPolicyResponseOutput() DataMaskingPolicyResponseOutput
- func (o DataMaskingPolicyResponseOutput) ToDataMaskingPolicyResponseOutputWithContext(ctx context.Context) DataMaskingPolicyResponseOutput
- type DataPolicy
- type DataPolicyArgs
- type DataPolicyDataPolicyType
- func (DataPolicyDataPolicyType) ElementType() reflect.Type
- func (e DataPolicyDataPolicyType) ToDataPolicyDataPolicyTypeOutput() DataPolicyDataPolicyTypeOutput
- func (e DataPolicyDataPolicyType) ToDataPolicyDataPolicyTypeOutputWithContext(ctx context.Context) DataPolicyDataPolicyTypeOutput
- func (e DataPolicyDataPolicyType) ToDataPolicyDataPolicyTypePtrOutput() DataPolicyDataPolicyTypePtrOutput
- func (e DataPolicyDataPolicyType) ToDataPolicyDataPolicyTypePtrOutputWithContext(ctx context.Context) DataPolicyDataPolicyTypePtrOutput
- func (e DataPolicyDataPolicyType) ToStringOutput() pulumi.StringOutput
- func (e DataPolicyDataPolicyType) ToStringOutputWithContext(ctx context.Context) pulumi.StringOutput
- func (e DataPolicyDataPolicyType) ToStringPtrOutput() pulumi.StringPtrOutput
- func (e DataPolicyDataPolicyType) ToStringPtrOutputWithContext(ctx context.Context) pulumi.StringPtrOutput
- type DataPolicyDataPolicyTypeInput
- type DataPolicyDataPolicyTypeOutput
- func (DataPolicyDataPolicyTypeOutput) ElementType() reflect.Type
- func (o DataPolicyDataPolicyTypeOutput) ToDataPolicyDataPolicyTypeOutput() DataPolicyDataPolicyTypeOutput
- func (o DataPolicyDataPolicyTypeOutput) ToDataPolicyDataPolicyTypeOutputWithContext(ctx context.Context) DataPolicyDataPolicyTypeOutput
- func (o DataPolicyDataPolicyTypeOutput) ToDataPolicyDataPolicyTypePtrOutput() DataPolicyDataPolicyTypePtrOutput
- func (o DataPolicyDataPolicyTypeOutput) ToDataPolicyDataPolicyTypePtrOutputWithContext(ctx context.Context) DataPolicyDataPolicyTypePtrOutput
- func (o DataPolicyDataPolicyTypeOutput) ToStringOutput() pulumi.StringOutput
- func (o DataPolicyDataPolicyTypeOutput) ToStringOutputWithContext(ctx context.Context) pulumi.StringOutput
- func (o DataPolicyDataPolicyTypeOutput) ToStringPtrOutput() pulumi.StringPtrOutput
- func (o DataPolicyDataPolicyTypeOutput) ToStringPtrOutputWithContext(ctx context.Context) pulumi.StringPtrOutput
- type DataPolicyDataPolicyTypePtrInput
- type DataPolicyDataPolicyTypePtrOutput
- func (o DataPolicyDataPolicyTypePtrOutput) Elem() DataPolicyDataPolicyTypeOutput
- func (DataPolicyDataPolicyTypePtrOutput) ElementType() reflect.Type
- func (o DataPolicyDataPolicyTypePtrOutput) ToDataPolicyDataPolicyTypePtrOutput() DataPolicyDataPolicyTypePtrOutput
- func (o DataPolicyDataPolicyTypePtrOutput) ToDataPolicyDataPolicyTypePtrOutputWithContext(ctx context.Context) DataPolicyDataPolicyTypePtrOutput
- func (o DataPolicyDataPolicyTypePtrOutput) ToStringPtrOutput() pulumi.StringPtrOutput
- func (o DataPolicyDataPolicyTypePtrOutput) ToStringPtrOutputWithContext(ctx context.Context) pulumi.StringPtrOutput
- type DataPolicyIamBinding
- type DataPolicyIamBindingArgs
- type DataPolicyIamBindingInput
- type DataPolicyIamBindingOutput
- func (o DataPolicyIamBindingOutput) Condition() iam.ConditionPtrOutput
- func (DataPolicyIamBindingOutput) ElementType() reflect.Type
- func (o DataPolicyIamBindingOutput) Etag() pulumi.StringOutput
- func (o DataPolicyIamBindingOutput) Members() pulumi.StringArrayOutput
- func (o DataPolicyIamBindingOutput) Name() pulumi.StringOutput
- func (o DataPolicyIamBindingOutput) Project() pulumi.StringOutput
- func (o DataPolicyIamBindingOutput) Role() pulumi.StringOutput
- func (o DataPolicyIamBindingOutput) ToDataPolicyIamBindingOutput() DataPolicyIamBindingOutput
- func (o DataPolicyIamBindingOutput) ToDataPolicyIamBindingOutputWithContext(ctx context.Context) DataPolicyIamBindingOutput
- type DataPolicyIamBindingState
- type DataPolicyIamMember
- type DataPolicyIamMemberArgs
- type DataPolicyIamMemberInput
- type DataPolicyIamMemberOutput
- func (o DataPolicyIamMemberOutput) Condition() iam.ConditionPtrOutput
- func (DataPolicyIamMemberOutput) ElementType() reflect.Type
- func (o DataPolicyIamMemberOutput) Etag() pulumi.StringOutput
- func (o DataPolicyIamMemberOutput) Member() pulumi.StringOutput
- func (o DataPolicyIamMemberOutput) Name() pulumi.StringOutput
- func (o DataPolicyIamMemberOutput) Project() pulumi.StringOutput
- func (o DataPolicyIamMemberOutput) Role() pulumi.StringOutput
- func (o DataPolicyIamMemberOutput) ToDataPolicyIamMemberOutput() DataPolicyIamMemberOutput
- func (o DataPolicyIamMemberOutput) ToDataPolicyIamMemberOutputWithContext(ctx context.Context) DataPolicyIamMemberOutput
- type DataPolicyIamMemberState
- type DataPolicyIamPolicy
- type DataPolicyIamPolicyArgs
- type DataPolicyIamPolicyInput
- type DataPolicyIamPolicyOutput
- func (o DataPolicyIamPolicyOutput) AuditConfigs() AuditConfigResponseArrayOutput
- func (o DataPolicyIamPolicyOutput) Bindings() BindingResponseArrayOutput
- func (o DataPolicyIamPolicyOutput) DataPolicyId() pulumi.StringOutput
- func (DataPolicyIamPolicyOutput) ElementType() reflect.Type
- func (o DataPolicyIamPolicyOutput) Etag() pulumi.StringOutput
- func (o DataPolicyIamPolicyOutput) Location() pulumi.StringOutput
- func (o DataPolicyIamPolicyOutput) Project() pulumi.StringOutput
- func (o DataPolicyIamPolicyOutput) ToDataPolicyIamPolicyOutput() DataPolicyIamPolicyOutput
- func (o DataPolicyIamPolicyOutput) ToDataPolicyIamPolicyOutputWithContext(ctx context.Context) DataPolicyIamPolicyOutput
- func (o DataPolicyIamPolicyOutput) Version() pulumi.IntOutput
- type DataPolicyIamPolicyState
- type DataPolicyInput
- type DataPolicyOutput
- func (o DataPolicyOutput) DataMaskingPolicy() DataMaskingPolicyResponseOutput
- func (o DataPolicyOutput) DataPolicyId() pulumi.StringOutput
- func (o DataPolicyOutput) DataPolicyType() pulumi.StringOutput
- func (DataPolicyOutput) ElementType() reflect.Type
- func (o DataPolicyOutput) Location() pulumi.StringOutput
- func (o DataPolicyOutput) Name() pulumi.StringOutput
- func (o DataPolicyOutput) PolicyTag() pulumi.StringOutput
- func (o DataPolicyOutput) Project() pulumi.StringOutput
- func (o DataPolicyOutput) ToDataPolicyOutput() DataPolicyOutput
- func (o DataPolicyOutput) ToDataPolicyOutputWithContext(ctx context.Context) DataPolicyOutput
- type DataPolicyState
- type Expr
- type ExprArgs
- type ExprInput
- type ExprOutput
- func (o ExprOutput) Description() pulumi.StringPtrOutput
- func (ExprOutput) ElementType() reflect.Type
- func (o ExprOutput) Expression() pulumi.StringPtrOutput
- func (o ExprOutput) Location() pulumi.StringPtrOutput
- func (o ExprOutput) Title() pulumi.StringPtrOutput
- func (o ExprOutput) ToExprOutput() ExprOutput
- func (o ExprOutput) ToExprOutputWithContext(ctx context.Context) ExprOutput
- func (o ExprOutput) ToExprPtrOutput() ExprPtrOutput
- func (o ExprOutput) ToExprPtrOutputWithContext(ctx context.Context) ExprPtrOutput
- type ExprPtrInput
- type ExprPtrOutput
- func (o ExprPtrOutput) Description() pulumi.StringPtrOutput
- func (o ExprPtrOutput) Elem() ExprOutput
- func (ExprPtrOutput) ElementType() reflect.Type
- func (o ExprPtrOutput) Expression() pulumi.StringPtrOutput
- func (o ExprPtrOutput) Location() pulumi.StringPtrOutput
- func (o ExprPtrOutput) Title() pulumi.StringPtrOutput
- func (o ExprPtrOutput) ToExprPtrOutput() ExprPtrOutput
- func (o ExprPtrOutput) ToExprPtrOutputWithContext(ctx context.Context) ExprPtrOutput
- type ExprResponse
- type ExprResponseOutput
- func (o ExprResponseOutput) Description() pulumi.StringOutput
- func (ExprResponseOutput) ElementType() reflect.Type
- func (o ExprResponseOutput) Expression() pulumi.StringOutput
- func (o ExprResponseOutput) Location() pulumi.StringOutput
- func (o ExprResponseOutput) Title() pulumi.StringOutput
- func (o ExprResponseOutput) ToExprResponseOutput() ExprResponseOutput
- func (o ExprResponseOutput) ToExprResponseOutputWithContext(ctx context.Context) ExprResponseOutput
- type LookupDataPolicyArgs
- type LookupDataPolicyIamPolicyArgs
- type LookupDataPolicyIamPolicyOutputArgs
- type LookupDataPolicyIamPolicyResult
- type LookupDataPolicyIamPolicyResultOutput
- func (o LookupDataPolicyIamPolicyResultOutput) AuditConfigs() AuditConfigResponseArrayOutput
- func (o LookupDataPolicyIamPolicyResultOutput) Bindings() BindingResponseArrayOutput
- func (LookupDataPolicyIamPolicyResultOutput) ElementType() reflect.Type
- func (o LookupDataPolicyIamPolicyResultOutput) Etag() pulumi.StringOutput
- func (o LookupDataPolicyIamPolicyResultOutput) ToLookupDataPolicyIamPolicyResultOutput() LookupDataPolicyIamPolicyResultOutput
- func (o LookupDataPolicyIamPolicyResultOutput) ToLookupDataPolicyIamPolicyResultOutputWithContext(ctx context.Context) LookupDataPolicyIamPolicyResultOutput
- func (o LookupDataPolicyIamPolicyResultOutput) Version() pulumi.IntOutput
- type LookupDataPolicyOutputArgs
- type LookupDataPolicyResult
- type LookupDataPolicyResultOutput
- func (o LookupDataPolicyResultOutput) DataMaskingPolicy() DataMaskingPolicyResponseOutput
- func (o LookupDataPolicyResultOutput) DataPolicyId() pulumi.StringOutput
- func (o LookupDataPolicyResultOutput) DataPolicyType() pulumi.StringOutput
- func (LookupDataPolicyResultOutput) ElementType() reflect.Type
- func (o LookupDataPolicyResultOutput) Name() pulumi.StringOutput
- func (o LookupDataPolicyResultOutput) PolicyTag() pulumi.StringOutput
- func (o LookupDataPolicyResultOutput) ToLookupDataPolicyResultOutput() LookupDataPolicyResultOutput
- func (o LookupDataPolicyResultOutput) ToLookupDataPolicyResultOutputWithContext(ctx context.Context) LookupDataPolicyResultOutput
Constants ¶
const ( // Default case. Should never be this. AuditLogConfigLogTypeLogTypeUnspecified = AuditLogConfigLogType("LOG_TYPE_UNSPECIFIED") // Admin reads. Example: CloudIAM getIamPolicy AuditLogConfigLogTypeAdminRead = AuditLogConfigLogType("ADMIN_READ") // Data writes. Example: CloudSQL Users create AuditLogConfigLogTypeDataWrite = AuditLogConfigLogType("DATA_WRITE") // Data reads. Example: CloudSQL Users list AuditLogConfigLogTypeDataRead = AuditLogConfigLogType("DATA_READ") )
const ( // Default, unspecified predefined expression. No masking will take place since no expression is specified. DataMaskingPolicyPredefinedExpressionPredefinedExpressionUnspecified = DataMaskingPolicyPredefinedExpression("PREDEFINED_EXPRESSION_UNSPECIFIED") // Masking expression to replace data with SHA-256 hash. DataMaskingPolicyPredefinedExpressionSha256 = DataMaskingPolicyPredefinedExpression("SHA256") // Masking expression to replace data with NULLs. DataMaskingPolicyPredefinedExpressionAlwaysNull = DataMaskingPolicyPredefinedExpression("ALWAYS_NULL") // Masking expression to replace data with their default masking values. The default masking values for each type listed as below: * STRING: "" * BYTES: b” * INTEGER: 0 * FLOAT: 0.0 * NUMERIC: 0 * BOOLEAN: FALSE * TIMESTAMP: 1970-01-01 00:00:00 UTC * DATE: 1970-01-01 * TIME: 00:00:00 * DATETIME: 1970-01-01T00:00:00 * GEOGRAPHY: POINT(0 0) * BIGNUMERIC: 0 * ARRAY: [] * STRUCT: NOT_APPLICABLE * JSON: NULL DataMaskingPolicyPredefinedExpressionDefaultMaskingValue = DataMaskingPolicyPredefinedExpression("DEFAULT_MASKING_VALUE") // Masking expression shows the last four characters of text. The masking behavior is as follows: * If text length > 4 characters: Replace text with XXXXX, append last four characters of original text. * If text length <= 4 characters: Apply SHA-256 hash. DataMaskingPolicyPredefinedExpressionLastFourCharacters = DataMaskingPolicyPredefinedExpression("LAST_FOUR_CHARACTERS") // Masking expression shows the first four characters of text. The masking behavior is as follows: * If text length > 4 characters: Replace text with XXXXX, prepend first four characters of original text. * If text length <= 4 characters: Apply SHA-256 hash. DataMaskingPolicyPredefinedExpressionFirstFourCharacters = DataMaskingPolicyPredefinedExpression("FIRST_FOUR_CHARACTERS") // Masking expression for email addresses. The masking behavior is as follows: * Syntax-valid email address: Replace username with XXXXX. For example, cloudysanfrancisco@gmail.com becomes XXXXX@gmail.com. * Syntax-invalid email address: Apply SHA-256 hash. For more information, see Email mask. DataMaskingPolicyPredefinedExpressionEmailMask = DataMaskingPolicyPredefinedExpression("EMAIL_MASK") // Masking expression to only show the *year* of `Date`, `DateTime` and `TimeStamp`. For example, with the year 2076: * DATE : 2076-01-01 * DATETIME : 2076-01-01T00:00:00 * TIMESTAMP : 2076-01-01 00:00:00 UTC Truncation occurs according to the UTC time zone. To change this, adjust the default time zone using the `time_zone` system variable. For more information, see the System variables reference. DataMaskingPolicyPredefinedExpressionDateYearMask = DataMaskingPolicyPredefinedExpression("DATE_YEAR_MASK") )
const ( // Default value for the data policy type. This should not be used. DataPolicyDataPolicyTypeDataPolicyTypeUnspecified = DataPolicyDataPolicyType("DATA_POLICY_TYPE_UNSPECIFIED") // Used to create a data policy for column-level security, without data masking. DataPolicyDataPolicyTypeColumnLevelSecurityPolicy = DataPolicyDataPolicyType("COLUMN_LEVEL_SECURITY_POLICY") // Used to create a data policy for data masking. DataPolicyDataPolicyTypeDataMaskingPolicy = DataPolicyDataPolicyType("DATA_MASKING_POLICY") )
Variables ¶
This section is empty.
Functions ¶
This section is empty.
Types ¶
type AuditConfig ¶
type AuditConfig struct { // The configuration for logging of each type of permission. AuditLogConfigs []AuditLogConfig `pulumi:"auditLogConfigs"` // Specifies a service that will be enabled for audit logging. For example, `storage.googleapis.com`, `cloudsql.googleapis.com`. `allServices` is a special value that covers all services. Service *string `pulumi:"service"` }
Specifies the audit configuration for a service. The configuration determines which permission types are logged, and what identities, if any, are exempted from logging. An AuditConfig must have one or more AuditLogConfigs. If there are AuditConfigs for both `allServices` and a specific service, the union of the two AuditConfigs is used for that service: the log_types specified in each AuditConfig are enabled, and the exempted_members in each AuditLogConfig are exempted. Example Policy with multiple AuditConfigs: { "audit_configs": [ { "service": "allServices", "audit_log_configs": [ { "log_type": "DATA_READ", "exempted_members": [ "user:jose@example.com" ] }, { "log_type": "DATA_WRITE" }, { "log_type": "ADMIN_READ" } ] }, { "service": "sampleservice.googleapis.com", "audit_log_configs": [ { "log_type": "DATA_READ" }, { "log_type": "DATA_WRITE", "exempted_members": [ "user:aliya@example.com" ] } ] } ] } For sampleservice, this policy enables DATA_READ, DATA_WRITE and ADMIN_READ logging. It also exempts `jose@example.com` from DATA_READ logging, and `aliya@example.com` from DATA_WRITE logging.
type AuditConfigArgs ¶
type AuditConfigArgs struct { // The configuration for logging of each type of permission. AuditLogConfigs AuditLogConfigArrayInput `pulumi:"auditLogConfigs"` // Specifies a service that will be enabled for audit logging. For example, `storage.googleapis.com`, `cloudsql.googleapis.com`. `allServices` is a special value that covers all services. Service pulumi.StringPtrInput `pulumi:"service"` }
Specifies the audit configuration for a service. The configuration determines which permission types are logged, and what identities, if any, are exempted from logging. An AuditConfig must have one or more AuditLogConfigs. If there are AuditConfigs for both `allServices` and a specific service, the union of the two AuditConfigs is used for that service: the log_types specified in each AuditConfig are enabled, and the exempted_members in each AuditLogConfig are exempted. Example Policy with multiple AuditConfigs: { "audit_configs": [ { "service": "allServices", "audit_log_configs": [ { "log_type": "DATA_READ", "exempted_members": [ "user:jose@example.com" ] }, { "log_type": "DATA_WRITE" }, { "log_type": "ADMIN_READ" } ] }, { "service": "sampleservice.googleapis.com", "audit_log_configs": [ { "log_type": "DATA_READ" }, { "log_type": "DATA_WRITE", "exempted_members": [ "user:aliya@example.com" ] } ] } ] } For sampleservice, this policy enables DATA_READ, DATA_WRITE and ADMIN_READ logging. It also exempts `jose@example.com` from DATA_READ logging, and `aliya@example.com` from DATA_WRITE logging.
func (AuditConfigArgs) ElementType ¶
func (AuditConfigArgs) ElementType() reflect.Type
func (AuditConfigArgs) ToAuditConfigOutput ¶
func (i AuditConfigArgs) ToAuditConfigOutput() AuditConfigOutput
func (AuditConfigArgs) ToAuditConfigOutputWithContext ¶
func (i AuditConfigArgs) ToAuditConfigOutputWithContext(ctx context.Context) AuditConfigOutput
type AuditConfigArray ¶
type AuditConfigArray []AuditConfigInput
func (AuditConfigArray) ElementType ¶
func (AuditConfigArray) ElementType() reflect.Type
func (AuditConfigArray) ToAuditConfigArrayOutput ¶
func (i AuditConfigArray) ToAuditConfigArrayOutput() AuditConfigArrayOutput
func (AuditConfigArray) ToAuditConfigArrayOutputWithContext ¶
func (i AuditConfigArray) ToAuditConfigArrayOutputWithContext(ctx context.Context) AuditConfigArrayOutput
type AuditConfigArrayInput ¶
type AuditConfigArrayInput interface { pulumi.Input ToAuditConfigArrayOutput() AuditConfigArrayOutput ToAuditConfigArrayOutputWithContext(context.Context) AuditConfigArrayOutput }
AuditConfigArrayInput is an input type that accepts AuditConfigArray and AuditConfigArrayOutput values. You can construct a concrete instance of `AuditConfigArrayInput` via:
AuditConfigArray{ AuditConfigArgs{...} }
type AuditConfigArrayOutput ¶
type AuditConfigArrayOutput struct{ *pulumi.OutputState }
func (AuditConfigArrayOutput) ElementType ¶
func (AuditConfigArrayOutput) ElementType() reflect.Type
func (AuditConfigArrayOutput) Index ¶
func (o AuditConfigArrayOutput) Index(i pulumi.IntInput) AuditConfigOutput
func (AuditConfigArrayOutput) ToAuditConfigArrayOutput ¶
func (o AuditConfigArrayOutput) ToAuditConfigArrayOutput() AuditConfigArrayOutput
func (AuditConfigArrayOutput) ToAuditConfigArrayOutputWithContext ¶
func (o AuditConfigArrayOutput) ToAuditConfigArrayOutputWithContext(ctx context.Context) AuditConfigArrayOutput
type AuditConfigInput ¶
type AuditConfigInput interface { pulumi.Input ToAuditConfigOutput() AuditConfigOutput ToAuditConfigOutputWithContext(context.Context) AuditConfigOutput }
AuditConfigInput is an input type that accepts AuditConfigArgs and AuditConfigOutput values. You can construct a concrete instance of `AuditConfigInput` via:
AuditConfigArgs{...}
type AuditConfigOutput ¶
type AuditConfigOutput struct{ *pulumi.OutputState }
Specifies the audit configuration for a service. The configuration determines which permission types are logged, and what identities, if any, are exempted from logging. An AuditConfig must have one or more AuditLogConfigs. If there are AuditConfigs for both `allServices` and a specific service, the union of the two AuditConfigs is used for that service: the log_types specified in each AuditConfig are enabled, and the exempted_members in each AuditLogConfig are exempted. Example Policy with multiple AuditConfigs: { "audit_configs": [ { "service": "allServices", "audit_log_configs": [ { "log_type": "DATA_READ", "exempted_members": [ "user:jose@example.com" ] }, { "log_type": "DATA_WRITE" }, { "log_type": "ADMIN_READ" } ] }, { "service": "sampleservice.googleapis.com", "audit_log_configs": [ { "log_type": "DATA_READ" }, { "log_type": "DATA_WRITE", "exempted_members": [ "user:aliya@example.com" ] } ] } ] } For sampleservice, this policy enables DATA_READ, DATA_WRITE and ADMIN_READ logging. It also exempts `jose@example.com` from DATA_READ logging, and `aliya@example.com` from DATA_WRITE logging.
func (AuditConfigOutput) AuditLogConfigs ¶
func (o AuditConfigOutput) AuditLogConfigs() AuditLogConfigArrayOutput
The configuration for logging of each type of permission.
func (AuditConfigOutput) ElementType ¶
func (AuditConfigOutput) ElementType() reflect.Type
func (AuditConfigOutput) Service ¶
func (o AuditConfigOutput) Service() pulumi.StringPtrOutput
Specifies a service that will be enabled for audit logging. For example, `storage.googleapis.com`, `cloudsql.googleapis.com`. `allServices` is a special value that covers all services.
func (AuditConfigOutput) ToAuditConfigOutput ¶
func (o AuditConfigOutput) ToAuditConfigOutput() AuditConfigOutput
func (AuditConfigOutput) ToAuditConfigOutputWithContext ¶
func (o AuditConfigOutput) ToAuditConfigOutputWithContext(ctx context.Context) AuditConfigOutput
type AuditConfigResponse ¶
type AuditConfigResponse struct { // The configuration for logging of each type of permission. AuditLogConfigs []AuditLogConfigResponse `pulumi:"auditLogConfigs"` // Specifies a service that will be enabled for audit logging. For example, `storage.googleapis.com`, `cloudsql.googleapis.com`. `allServices` is a special value that covers all services. Service string `pulumi:"service"` }
Specifies the audit configuration for a service. The configuration determines which permission types are logged, and what identities, if any, are exempted from logging. An AuditConfig must have one or more AuditLogConfigs. If there are AuditConfigs for both `allServices` and a specific service, the union of the two AuditConfigs is used for that service: the log_types specified in each AuditConfig are enabled, and the exempted_members in each AuditLogConfig are exempted. Example Policy with multiple AuditConfigs: { "audit_configs": [ { "service": "allServices", "audit_log_configs": [ { "log_type": "DATA_READ", "exempted_members": [ "user:jose@example.com" ] }, { "log_type": "DATA_WRITE" }, { "log_type": "ADMIN_READ" } ] }, { "service": "sampleservice.googleapis.com", "audit_log_configs": [ { "log_type": "DATA_READ" }, { "log_type": "DATA_WRITE", "exempted_members": [ "user:aliya@example.com" ] } ] } ] } For sampleservice, this policy enables DATA_READ, DATA_WRITE and ADMIN_READ logging. It also exempts `jose@example.com` from DATA_READ logging, and `aliya@example.com` from DATA_WRITE logging.
type AuditConfigResponseArrayOutput ¶
type AuditConfigResponseArrayOutput struct{ *pulumi.OutputState }
func (AuditConfigResponseArrayOutput) ElementType ¶
func (AuditConfigResponseArrayOutput) ElementType() reflect.Type
func (AuditConfigResponseArrayOutput) Index ¶
func (o AuditConfigResponseArrayOutput) Index(i pulumi.IntInput) AuditConfigResponseOutput
func (AuditConfigResponseArrayOutput) ToAuditConfigResponseArrayOutput ¶
func (o AuditConfigResponseArrayOutput) ToAuditConfigResponseArrayOutput() AuditConfigResponseArrayOutput
func (AuditConfigResponseArrayOutput) ToAuditConfigResponseArrayOutputWithContext ¶
func (o AuditConfigResponseArrayOutput) ToAuditConfigResponseArrayOutputWithContext(ctx context.Context) AuditConfigResponseArrayOutput
type AuditConfigResponseOutput ¶
type AuditConfigResponseOutput struct{ *pulumi.OutputState }
Specifies the audit configuration for a service. The configuration determines which permission types are logged, and what identities, if any, are exempted from logging. An AuditConfig must have one or more AuditLogConfigs. If there are AuditConfigs for both `allServices` and a specific service, the union of the two AuditConfigs is used for that service: the log_types specified in each AuditConfig are enabled, and the exempted_members in each AuditLogConfig are exempted. Example Policy with multiple AuditConfigs: { "audit_configs": [ { "service": "allServices", "audit_log_configs": [ { "log_type": "DATA_READ", "exempted_members": [ "user:jose@example.com" ] }, { "log_type": "DATA_WRITE" }, { "log_type": "ADMIN_READ" } ] }, { "service": "sampleservice.googleapis.com", "audit_log_configs": [ { "log_type": "DATA_READ" }, { "log_type": "DATA_WRITE", "exempted_members": [ "user:aliya@example.com" ] } ] } ] } For sampleservice, this policy enables DATA_READ, DATA_WRITE and ADMIN_READ logging. It also exempts `jose@example.com` from DATA_READ logging, and `aliya@example.com` from DATA_WRITE logging.
func (AuditConfigResponseOutput) AuditLogConfigs ¶
func (o AuditConfigResponseOutput) AuditLogConfigs() AuditLogConfigResponseArrayOutput
The configuration for logging of each type of permission.
func (AuditConfigResponseOutput) ElementType ¶
func (AuditConfigResponseOutput) ElementType() reflect.Type
func (AuditConfigResponseOutput) Service ¶
func (o AuditConfigResponseOutput) Service() pulumi.StringOutput
Specifies a service that will be enabled for audit logging. For example, `storage.googleapis.com`, `cloudsql.googleapis.com`. `allServices` is a special value that covers all services.
func (AuditConfigResponseOutput) ToAuditConfigResponseOutput ¶
func (o AuditConfigResponseOutput) ToAuditConfigResponseOutput() AuditConfigResponseOutput
func (AuditConfigResponseOutput) ToAuditConfigResponseOutputWithContext ¶
func (o AuditConfigResponseOutput) ToAuditConfigResponseOutputWithContext(ctx context.Context) AuditConfigResponseOutput
type AuditLogConfig ¶
type AuditLogConfig struct { // Specifies the identities that do not cause logging for this type of permission. Follows the same format of Binding.members. ExemptedMembers []string `pulumi:"exemptedMembers"` // The log type that this config enables. LogType *AuditLogConfigLogType `pulumi:"logType"` }
Provides the configuration for logging a type of permissions. Example: { "audit_log_configs": [ { "log_type": "DATA_READ", "exempted_members": [ "user:jose@example.com" ] }, { "log_type": "DATA_WRITE" } ] } This enables 'DATA_READ' and 'DATA_WRITE' logging, while exempting jose@example.com from DATA_READ logging.
type AuditLogConfigArgs ¶
type AuditLogConfigArgs struct { // Specifies the identities that do not cause logging for this type of permission. Follows the same format of Binding.members. ExemptedMembers pulumi.StringArrayInput `pulumi:"exemptedMembers"` // The log type that this config enables. LogType AuditLogConfigLogTypePtrInput `pulumi:"logType"` }
Provides the configuration for logging a type of permissions. Example: { "audit_log_configs": [ { "log_type": "DATA_READ", "exempted_members": [ "user:jose@example.com" ] }, { "log_type": "DATA_WRITE" } ] } This enables 'DATA_READ' and 'DATA_WRITE' logging, while exempting jose@example.com from DATA_READ logging.
func (AuditLogConfigArgs) ElementType ¶
func (AuditLogConfigArgs) ElementType() reflect.Type
func (AuditLogConfigArgs) ToAuditLogConfigOutput ¶
func (i AuditLogConfigArgs) ToAuditLogConfigOutput() AuditLogConfigOutput
func (AuditLogConfigArgs) ToAuditLogConfigOutputWithContext ¶
func (i AuditLogConfigArgs) ToAuditLogConfigOutputWithContext(ctx context.Context) AuditLogConfigOutput
type AuditLogConfigArray ¶
type AuditLogConfigArray []AuditLogConfigInput
func (AuditLogConfigArray) ElementType ¶
func (AuditLogConfigArray) ElementType() reflect.Type
func (AuditLogConfigArray) ToAuditLogConfigArrayOutput ¶
func (i AuditLogConfigArray) ToAuditLogConfigArrayOutput() AuditLogConfigArrayOutput
func (AuditLogConfigArray) ToAuditLogConfigArrayOutputWithContext ¶
func (i AuditLogConfigArray) ToAuditLogConfigArrayOutputWithContext(ctx context.Context) AuditLogConfigArrayOutput
type AuditLogConfigArrayInput ¶
type AuditLogConfigArrayInput interface { pulumi.Input ToAuditLogConfigArrayOutput() AuditLogConfigArrayOutput ToAuditLogConfigArrayOutputWithContext(context.Context) AuditLogConfigArrayOutput }
AuditLogConfigArrayInput is an input type that accepts AuditLogConfigArray and AuditLogConfigArrayOutput values. You can construct a concrete instance of `AuditLogConfigArrayInput` via:
AuditLogConfigArray{ AuditLogConfigArgs{...} }
type AuditLogConfigArrayOutput ¶
type AuditLogConfigArrayOutput struct{ *pulumi.OutputState }
func (AuditLogConfigArrayOutput) ElementType ¶
func (AuditLogConfigArrayOutput) ElementType() reflect.Type
func (AuditLogConfigArrayOutput) Index ¶
func (o AuditLogConfigArrayOutput) Index(i pulumi.IntInput) AuditLogConfigOutput
func (AuditLogConfigArrayOutput) ToAuditLogConfigArrayOutput ¶
func (o AuditLogConfigArrayOutput) ToAuditLogConfigArrayOutput() AuditLogConfigArrayOutput
func (AuditLogConfigArrayOutput) ToAuditLogConfigArrayOutputWithContext ¶
func (o AuditLogConfigArrayOutput) ToAuditLogConfigArrayOutputWithContext(ctx context.Context) AuditLogConfigArrayOutput
type AuditLogConfigInput ¶
type AuditLogConfigInput interface { pulumi.Input ToAuditLogConfigOutput() AuditLogConfigOutput ToAuditLogConfigOutputWithContext(context.Context) AuditLogConfigOutput }
AuditLogConfigInput is an input type that accepts AuditLogConfigArgs and AuditLogConfigOutput values. You can construct a concrete instance of `AuditLogConfigInput` via:
AuditLogConfigArgs{...}
type AuditLogConfigLogType ¶
type AuditLogConfigLogType string
The log type that this config enables.
func (AuditLogConfigLogType) ElementType ¶
func (AuditLogConfigLogType) ElementType() reflect.Type
func (AuditLogConfigLogType) ToAuditLogConfigLogTypeOutput ¶
func (e AuditLogConfigLogType) ToAuditLogConfigLogTypeOutput() AuditLogConfigLogTypeOutput
func (AuditLogConfigLogType) ToAuditLogConfigLogTypeOutputWithContext ¶
func (e AuditLogConfigLogType) ToAuditLogConfigLogTypeOutputWithContext(ctx context.Context) AuditLogConfigLogTypeOutput
func (AuditLogConfigLogType) ToAuditLogConfigLogTypePtrOutput ¶
func (e AuditLogConfigLogType) ToAuditLogConfigLogTypePtrOutput() AuditLogConfigLogTypePtrOutput
func (AuditLogConfigLogType) ToAuditLogConfigLogTypePtrOutputWithContext ¶
func (e AuditLogConfigLogType) ToAuditLogConfigLogTypePtrOutputWithContext(ctx context.Context) AuditLogConfigLogTypePtrOutput
func (AuditLogConfigLogType) ToStringOutput ¶
func (e AuditLogConfigLogType) ToStringOutput() pulumi.StringOutput
func (AuditLogConfigLogType) ToStringOutputWithContext ¶
func (e AuditLogConfigLogType) ToStringOutputWithContext(ctx context.Context) pulumi.StringOutput
func (AuditLogConfigLogType) ToStringPtrOutput ¶
func (e AuditLogConfigLogType) ToStringPtrOutput() pulumi.StringPtrOutput
func (AuditLogConfigLogType) ToStringPtrOutputWithContext ¶
func (e AuditLogConfigLogType) ToStringPtrOutputWithContext(ctx context.Context) pulumi.StringPtrOutput
type AuditLogConfigLogTypeInput ¶
type AuditLogConfigLogTypeInput interface { pulumi.Input ToAuditLogConfigLogTypeOutput() AuditLogConfigLogTypeOutput ToAuditLogConfigLogTypeOutputWithContext(context.Context) AuditLogConfigLogTypeOutput }
AuditLogConfigLogTypeInput is an input type that accepts AuditLogConfigLogTypeArgs and AuditLogConfigLogTypeOutput values. You can construct a concrete instance of `AuditLogConfigLogTypeInput` via:
AuditLogConfigLogTypeArgs{...}
type AuditLogConfigLogTypeOutput ¶
type AuditLogConfigLogTypeOutput struct{ *pulumi.OutputState }
func (AuditLogConfigLogTypeOutput) ElementType ¶
func (AuditLogConfigLogTypeOutput) ElementType() reflect.Type
func (AuditLogConfigLogTypeOutput) ToAuditLogConfigLogTypeOutput ¶
func (o AuditLogConfigLogTypeOutput) ToAuditLogConfigLogTypeOutput() AuditLogConfigLogTypeOutput
func (AuditLogConfigLogTypeOutput) ToAuditLogConfigLogTypeOutputWithContext ¶
func (o AuditLogConfigLogTypeOutput) ToAuditLogConfigLogTypeOutputWithContext(ctx context.Context) AuditLogConfigLogTypeOutput
func (AuditLogConfigLogTypeOutput) ToAuditLogConfigLogTypePtrOutput ¶
func (o AuditLogConfigLogTypeOutput) ToAuditLogConfigLogTypePtrOutput() AuditLogConfigLogTypePtrOutput
func (AuditLogConfigLogTypeOutput) ToAuditLogConfigLogTypePtrOutputWithContext ¶
func (o AuditLogConfigLogTypeOutput) ToAuditLogConfigLogTypePtrOutputWithContext(ctx context.Context) AuditLogConfigLogTypePtrOutput
func (AuditLogConfigLogTypeOutput) ToStringOutput ¶
func (o AuditLogConfigLogTypeOutput) ToStringOutput() pulumi.StringOutput
func (AuditLogConfigLogTypeOutput) ToStringOutputWithContext ¶
func (o AuditLogConfigLogTypeOutput) ToStringOutputWithContext(ctx context.Context) pulumi.StringOutput
func (AuditLogConfigLogTypeOutput) ToStringPtrOutput ¶
func (o AuditLogConfigLogTypeOutput) ToStringPtrOutput() pulumi.StringPtrOutput
func (AuditLogConfigLogTypeOutput) ToStringPtrOutputWithContext ¶
func (o AuditLogConfigLogTypeOutput) ToStringPtrOutputWithContext(ctx context.Context) pulumi.StringPtrOutput
type AuditLogConfigLogTypePtrInput ¶
type AuditLogConfigLogTypePtrInput interface { pulumi.Input ToAuditLogConfigLogTypePtrOutput() AuditLogConfigLogTypePtrOutput ToAuditLogConfigLogTypePtrOutputWithContext(context.Context) AuditLogConfigLogTypePtrOutput }
func AuditLogConfigLogTypePtr ¶
func AuditLogConfigLogTypePtr(v string) AuditLogConfigLogTypePtrInput
type AuditLogConfigLogTypePtrOutput ¶
type AuditLogConfigLogTypePtrOutput struct{ *pulumi.OutputState }
func (AuditLogConfigLogTypePtrOutput) Elem ¶
func (o AuditLogConfigLogTypePtrOutput) Elem() AuditLogConfigLogTypeOutput
func (AuditLogConfigLogTypePtrOutput) ElementType ¶
func (AuditLogConfigLogTypePtrOutput) ElementType() reflect.Type
func (AuditLogConfigLogTypePtrOutput) ToAuditLogConfigLogTypePtrOutput ¶
func (o AuditLogConfigLogTypePtrOutput) ToAuditLogConfigLogTypePtrOutput() AuditLogConfigLogTypePtrOutput
func (AuditLogConfigLogTypePtrOutput) ToAuditLogConfigLogTypePtrOutputWithContext ¶
func (o AuditLogConfigLogTypePtrOutput) ToAuditLogConfigLogTypePtrOutputWithContext(ctx context.Context) AuditLogConfigLogTypePtrOutput
func (AuditLogConfigLogTypePtrOutput) ToStringPtrOutput ¶
func (o AuditLogConfigLogTypePtrOutput) ToStringPtrOutput() pulumi.StringPtrOutput
func (AuditLogConfigLogTypePtrOutput) ToStringPtrOutputWithContext ¶
func (o AuditLogConfigLogTypePtrOutput) ToStringPtrOutputWithContext(ctx context.Context) pulumi.StringPtrOutput
type AuditLogConfigOutput ¶
type AuditLogConfigOutput struct{ *pulumi.OutputState }
Provides the configuration for logging a type of permissions. Example: { "audit_log_configs": [ { "log_type": "DATA_READ", "exempted_members": [ "user:jose@example.com" ] }, { "log_type": "DATA_WRITE" } ] } This enables 'DATA_READ' and 'DATA_WRITE' logging, while exempting jose@example.com from DATA_READ logging.
func (AuditLogConfigOutput) ElementType ¶
func (AuditLogConfigOutput) ElementType() reflect.Type
func (AuditLogConfigOutput) ExemptedMembers ¶
func (o AuditLogConfigOutput) ExemptedMembers() pulumi.StringArrayOutput
Specifies the identities that do not cause logging for this type of permission. Follows the same format of Binding.members.
func (AuditLogConfigOutput) LogType ¶
func (o AuditLogConfigOutput) LogType() AuditLogConfigLogTypePtrOutput
The log type that this config enables.
func (AuditLogConfigOutput) ToAuditLogConfigOutput ¶
func (o AuditLogConfigOutput) ToAuditLogConfigOutput() AuditLogConfigOutput
func (AuditLogConfigOutput) ToAuditLogConfigOutputWithContext ¶
func (o AuditLogConfigOutput) ToAuditLogConfigOutputWithContext(ctx context.Context) AuditLogConfigOutput
type AuditLogConfigResponse ¶
type AuditLogConfigResponse struct { // Specifies the identities that do not cause logging for this type of permission. Follows the same format of Binding.members. ExemptedMembers []string `pulumi:"exemptedMembers"` // The log type that this config enables. LogType string `pulumi:"logType"` }
Provides the configuration for logging a type of permissions. Example: { "audit_log_configs": [ { "log_type": "DATA_READ", "exempted_members": [ "user:jose@example.com" ] }, { "log_type": "DATA_WRITE" } ] } This enables 'DATA_READ' and 'DATA_WRITE' logging, while exempting jose@example.com from DATA_READ logging.
type AuditLogConfigResponseArrayOutput ¶
type AuditLogConfigResponseArrayOutput struct{ *pulumi.OutputState }
func (AuditLogConfigResponseArrayOutput) ElementType ¶
func (AuditLogConfigResponseArrayOutput) ElementType() reflect.Type
func (AuditLogConfigResponseArrayOutput) Index ¶
func (o AuditLogConfigResponseArrayOutput) Index(i pulumi.IntInput) AuditLogConfigResponseOutput
func (AuditLogConfigResponseArrayOutput) ToAuditLogConfigResponseArrayOutput ¶
func (o AuditLogConfigResponseArrayOutput) ToAuditLogConfigResponseArrayOutput() AuditLogConfigResponseArrayOutput
func (AuditLogConfigResponseArrayOutput) ToAuditLogConfigResponseArrayOutputWithContext ¶
func (o AuditLogConfigResponseArrayOutput) ToAuditLogConfigResponseArrayOutputWithContext(ctx context.Context) AuditLogConfigResponseArrayOutput
type AuditLogConfigResponseOutput ¶
type AuditLogConfigResponseOutput struct{ *pulumi.OutputState }
Provides the configuration for logging a type of permissions. Example: { "audit_log_configs": [ { "log_type": "DATA_READ", "exempted_members": [ "user:jose@example.com" ] }, { "log_type": "DATA_WRITE" } ] } This enables 'DATA_READ' and 'DATA_WRITE' logging, while exempting jose@example.com from DATA_READ logging.
func (AuditLogConfigResponseOutput) ElementType ¶
func (AuditLogConfigResponseOutput) ElementType() reflect.Type
func (AuditLogConfigResponseOutput) ExemptedMembers ¶
func (o AuditLogConfigResponseOutput) ExemptedMembers() pulumi.StringArrayOutput
Specifies the identities that do not cause logging for this type of permission. Follows the same format of Binding.members.
func (AuditLogConfigResponseOutput) LogType ¶
func (o AuditLogConfigResponseOutput) LogType() pulumi.StringOutput
The log type that this config enables.
func (AuditLogConfigResponseOutput) ToAuditLogConfigResponseOutput ¶
func (o AuditLogConfigResponseOutput) ToAuditLogConfigResponseOutput() AuditLogConfigResponseOutput
func (AuditLogConfigResponseOutput) ToAuditLogConfigResponseOutputWithContext ¶
func (o AuditLogConfigResponseOutput) ToAuditLogConfigResponseOutputWithContext(ctx context.Context) AuditLogConfigResponseOutput
type Binding ¶
type Binding struct { // The condition that is associated with this binding. If the condition evaluates to `true`, then this binding applies to the current request. If the condition evaluates to `false`, then this binding does not apply to the current request. However, a different role binding might grant the same role to one or more of the principals in this binding. To learn which resources support conditions in their IAM policies, see the [IAM documentation](https://cloud.google.com/iam/help/conditions/resource-policies). Condition *Expr `pulumi:"condition"` // Specifies the principals requesting access for a Google Cloud resource. `members` can have the following values: * `allUsers`: A special identifier that represents anyone who is on the internet; with or without a Google account. * `allAuthenticatedUsers`: A special identifier that represents anyone who is authenticated with a Google account or a service account. Does not include identities that come from external identity providers (IdPs) through identity federation. * `user:{emailid}`: An email address that represents a specific Google account. For example, `alice@example.com` . * `serviceAccount:{emailid}`: An email address that represents a Google service account. For example, `my-other-app@appspot.gserviceaccount.com`. * `serviceAccount:{projectid}.svc.id.goog[{namespace}/{kubernetes-sa}]`: An identifier for a [Kubernetes service account](https://cloud.google.com/kubernetes-engine/docs/how-to/kubernetes-service-accounts). For example, `my-project.svc.id.goog[my-namespace/my-kubernetes-sa]`. * `group:{emailid}`: An email address that represents a Google group. For example, `admins@example.com`. * `domain:{domain}`: The G Suite domain (primary) that represents all the users of that domain. For example, `google.com` or `example.com`. * `deleted:user:{emailid}?uid={uniqueid}`: An email address (plus unique identifier) representing a user that has been recently deleted. For example, `alice@example.com?uid=123456789012345678901`. If the user is recovered, this value reverts to `user:{emailid}` and the recovered user retains the role in the binding. * `deleted:serviceAccount:{emailid}?uid={uniqueid}`: An email address (plus unique identifier) representing a service account that has been recently deleted. For example, `my-other-app@appspot.gserviceaccount.com?uid=123456789012345678901`. If the service account is undeleted, this value reverts to `serviceAccount:{emailid}` and the undeleted service account retains the role in the binding. * `deleted:group:{emailid}?uid={uniqueid}`: An email address (plus unique identifier) representing a Google group that has been recently deleted. For example, `admins@example.com?uid=123456789012345678901`. If the group is recovered, this value reverts to `group:{emailid}` and the recovered group retains the role in the binding. Members []string `pulumi:"members"` // Role that is assigned to the list of `members`, or principals. For example, `roles/viewer`, `roles/editor`, or `roles/owner`. Role *string `pulumi:"role"` }
Associates `members`, or principals, with a `role`.
type BindingArgs ¶
type BindingArgs struct { // The condition that is associated with this binding. If the condition evaluates to `true`, then this binding applies to the current request. If the condition evaluates to `false`, then this binding does not apply to the current request. However, a different role binding might grant the same role to one or more of the principals in this binding. To learn which resources support conditions in their IAM policies, see the [IAM documentation](https://cloud.google.com/iam/help/conditions/resource-policies). Condition ExprPtrInput `pulumi:"condition"` // Specifies the principals requesting access for a Google Cloud resource. `members` can have the following values: * `allUsers`: A special identifier that represents anyone who is on the internet; with or without a Google account. * `allAuthenticatedUsers`: A special identifier that represents anyone who is authenticated with a Google account or a service account. Does not include identities that come from external identity providers (IdPs) through identity federation. * `user:{emailid}`: An email address that represents a specific Google account. For example, `alice@example.com` . * `serviceAccount:{emailid}`: An email address that represents a Google service account. For example, `my-other-app@appspot.gserviceaccount.com`. * `serviceAccount:{projectid}.svc.id.goog[{namespace}/{kubernetes-sa}]`: An identifier for a [Kubernetes service account](https://cloud.google.com/kubernetes-engine/docs/how-to/kubernetes-service-accounts). For example, `my-project.svc.id.goog[my-namespace/my-kubernetes-sa]`. * `group:{emailid}`: An email address that represents a Google group. For example, `admins@example.com`. * `domain:{domain}`: The G Suite domain (primary) that represents all the users of that domain. For example, `google.com` or `example.com`. * `deleted:user:{emailid}?uid={uniqueid}`: An email address (plus unique identifier) representing a user that has been recently deleted. For example, `alice@example.com?uid=123456789012345678901`. If the user is recovered, this value reverts to `user:{emailid}` and the recovered user retains the role in the binding. * `deleted:serviceAccount:{emailid}?uid={uniqueid}`: An email address (plus unique identifier) representing a service account that has been recently deleted. For example, `my-other-app@appspot.gserviceaccount.com?uid=123456789012345678901`. If the service account is undeleted, this value reverts to `serviceAccount:{emailid}` and the undeleted service account retains the role in the binding. * `deleted:group:{emailid}?uid={uniqueid}`: An email address (plus unique identifier) representing a Google group that has been recently deleted. For example, `admins@example.com?uid=123456789012345678901`. If the group is recovered, this value reverts to `group:{emailid}` and the recovered group retains the role in the binding. Members pulumi.StringArrayInput `pulumi:"members"` // Role that is assigned to the list of `members`, or principals. For example, `roles/viewer`, `roles/editor`, or `roles/owner`. Role pulumi.StringPtrInput `pulumi:"role"` }
Associates `members`, or principals, with a `role`.
func (BindingArgs) ElementType ¶
func (BindingArgs) ElementType() reflect.Type
func (BindingArgs) ToBindingOutput ¶
func (i BindingArgs) ToBindingOutput() BindingOutput
func (BindingArgs) ToBindingOutputWithContext ¶
func (i BindingArgs) ToBindingOutputWithContext(ctx context.Context) BindingOutput
type BindingArray ¶
type BindingArray []BindingInput
func (BindingArray) ElementType ¶
func (BindingArray) ElementType() reflect.Type
func (BindingArray) ToBindingArrayOutput ¶
func (i BindingArray) ToBindingArrayOutput() BindingArrayOutput
func (BindingArray) ToBindingArrayOutputWithContext ¶
func (i BindingArray) ToBindingArrayOutputWithContext(ctx context.Context) BindingArrayOutput
type BindingArrayInput ¶
type BindingArrayInput interface { pulumi.Input ToBindingArrayOutput() BindingArrayOutput ToBindingArrayOutputWithContext(context.Context) BindingArrayOutput }
BindingArrayInput is an input type that accepts BindingArray and BindingArrayOutput values. You can construct a concrete instance of `BindingArrayInput` via:
BindingArray{ BindingArgs{...} }
type BindingArrayOutput ¶
type BindingArrayOutput struct{ *pulumi.OutputState }
func (BindingArrayOutput) ElementType ¶
func (BindingArrayOutput) ElementType() reflect.Type
func (BindingArrayOutput) Index ¶
func (o BindingArrayOutput) Index(i pulumi.IntInput) BindingOutput
func (BindingArrayOutput) ToBindingArrayOutput ¶
func (o BindingArrayOutput) ToBindingArrayOutput() BindingArrayOutput
func (BindingArrayOutput) ToBindingArrayOutputWithContext ¶
func (o BindingArrayOutput) ToBindingArrayOutputWithContext(ctx context.Context) BindingArrayOutput
type BindingInput ¶
type BindingInput interface { pulumi.Input ToBindingOutput() BindingOutput ToBindingOutputWithContext(context.Context) BindingOutput }
BindingInput is an input type that accepts BindingArgs and BindingOutput values. You can construct a concrete instance of `BindingInput` via:
BindingArgs{...}
type BindingOutput ¶
type BindingOutput struct{ *pulumi.OutputState }
Associates `members`, or principals, with a `role`.
func (BindingOutput) Condition ¶
func (o BindingOutput) Condition() ExprPtrOutput
The condition that is associated with this binding. If the condition evaluates to `true`, then this binding applies to the current request. If the condition evaluates to `false`, then this binding does not apply to the current request. However, a different role binding might grant the same role to one or more of the principals in this binding. To learn which resources support conditions in their IAM policies, see the [IAM documentation](https://cloud.google.com/iam/help/conditions/resource-policies).
func (BindingOutput) ElementType ¶
func (BindingOutput) ElementType() reflect.Type
func (BindingOutput) Members ¶
func (o BindingOutput) Members() pulumi.StringArrayOutput
Specifies the principals requesting access for a Google Cloud resource. `members` can have the following values: * `allUsers`: A special identifier that represents anyone who is on the internet; with or without a Google account. * `allAuthenticatedUsers`: A special identifier that represents anyone who is authenticated with a Google account or a service account. Does not include identities that come from external identity providers (IdPs) through identity federation. * `user:{emailid}`: An email address that represents a specific Google account. For example, `alice@example.com` . * `serviceAccount:{emailid}`: An email address that represents a Google service account. For example, `my-other-app@appspot.gserviceaccount.com`. * `serviceAccount:{projectid}.svc.id.goog[{namespace}/{kubernetes-sa}]`: An identifier for a [Kubernetes service account](https://cloud.google.com/kubernetes-engine/docs/how-to/kubernetes-service-accounts). For example, `my-project.svc.id.goog[my-namespace/my-kubernetes-sa]`. * `group:{emailid}`: An email address that represents a Google group. For example, `admins@example.com`. * `domain:{domain}`: The G Suite domain (primary) that represents all the users of that domain. For example, `google.com` or `example.com`. * `deleted:user:{emailid}?uid={uniqueid}`: An email address (plus unique identifier) representing a user that has been recently deleted. For example, `alice@example.com?uid=123456789012345678901`. If the user is recovered, this value reverts to `user:{emailid}` and the recovered user retains the role in the binding. * `deleted:serviceAccount:{emailid}?uid={uniqueid}`: An email address (plus unique identifier) representing a service account that has been recently deleted. For example, `my-other-app@appspot.gserviceaccount.com?uid=123456789012345678901`. If the service account is undeleted, this value reverts to `serviceAccount:{emailid}` and the undeleted service account retains the role in the binding. * `deleted:group:{emailid}?uid={uniqueid}`: An email address (plus unique identifier) representing a Google group that has been recently deleted. For example, `admins@example.com?uid=123456789012345678901`. If the group is recovered, this value reverts to `group:{emailid}` and the recovered group retains the role in the binding.
func (BindingOutput) Role ¶
func (o BindingOutput) Role() pulumi.StringPtrOutput
Role that is assigned to the list of `members`, or principals. For example, `roles/viewer`, `roles/editor`, or `roles/owner`.
func (BindingOutput) ToBindingOutput ¶
func (o BindingOutput) ToBindingOutput() BindingOutput
func (BindingOutput) ToBindingOutputWithContext ¶
func (o BindingOutput) ToBindingOutputWithContext(ctx context.Context) BindingOutput
type BindingResponse ¶
type BindingResponse struct { // The condition that is associated with this binding. If the condition evaluates to `true`, then this binding applies to the current request. If the condition evaluates to `false`, then this binding does not apply to the current request. However, a different role binding might grant the same role to one or more of the principals in this binding. To learn which resources support conditions in their IAM policies, see the [IAM documentation](https://cloud.google.com/iam/help/conditions/resource-policies). Condition ExprResponse `pulumi:"condition"` // Specifies the principals requesting access for a Google Cloud resource. `members` can have the following values: * `allUsers`: A special identifier that represents anyone who is on the internet; with or without a Google account. * `allAuthenticatedUsers`: A special identifier that represents anyone who is authenticated with a Google account or a service account. Does not include identities that come from external identity providers (IdPs) through identity federation. * `user:{emailid}`: An email address that represents a specific Google account. For example, `alice@example.com` . * `serviceAccount:{emailid}`: An email address that represents a Google service account. For example, `my-other-app@appspot.gserviceaccount.com`. * `serviceAccount:{projectid}.svc.id.goog[{namespace}/{kubernetes-sa}]`: An identifier for a [Kubernetes service account](https://cloud.google.com/kubernetes-engine/docs/how-to/kubernetes-service-accounts). For example, `my-project.svc.id.goog[my-namespace/my-kubernetes-sa]`. * `group:{emailid}`: An email address that represents a Google group. For example, `admins@example.com`. * `domain:{domain}`: The G Suite domain (primary) that represents all the users of that domain. For example, `google.com` or `example.com`. * `deleted:user:{emailid}?uid={uniqueid}`: An email address (plus unique identifier) representing a user that has been recently deleted. For example, `alice@example.com?uid=123456789012345678901`. If the user is recovered, this value reverts to `user:{emailid}` and the recovered user retains the role in the binding. * `deleted:serviceAccount:{emailid}?uid={uniqueid}`: An email address (plus unique identifier) representing a service account that has been recently deleted. For example, `my-other-app@appspot.gserviceaccount.com?uid=123456789012345678901`. If the service account is undeleted, this value reverts to `serviceAccount:{emailid}` and the undeleted service account retains the role in the binding. * `deleted:group:{emailid}?uid={uniqueid}`: An email address (plus unique identifier) representing a Google group that has been recently deleted. For example, `admins@example.com?uid=123456789012345678901`. If the group is recovered, this value reverts to `group:{emailid}` and the recovered group retains the role in the binding. Members []string `pulumi:"members"` // Role that is assigned to the list of `members`, or principals. For example, `roles/viewer`, `roles/editor`, or `roles/owner`. Role string `pulumi:"role"` }
Associates `members`, or principals, with a `role`.
type BindingResponseArrayOutput ¶
type BindingResponseArrayOutput struct{ *pulumi.OutputState }
func (BindingResponseArrayOutput) ElementType ¶
func (BindingResponseArrayOutput) ElementType() reflect.Type
func (BindingResponseArrayOutput) Index ¶
func (o BindingResponseArrayOutput) Index(i pulumi.IntInput) BindingResponseOutput
func (BindingResponseArrayOutput) ToBindingResponseArrayOutput ¶
func (o BindingResponseArrayOutput) ToBindingResponseArrayOutput() BindingResponseArrayOutput
func (BindingResponseArrayOutput) ToBindingResponseArrayOutputWithContext ¶
func (o BindingResponseArrayOutput) ToBindingResponseArrayOutputWithContext(ctx context.Context) BindingResponseArrayOutput
type BindingResponseOutput ¶
type BindingResponseOutput struct{ *pulumi.OutputState }
Associates `members`, or principals, with a `role`.
func (BindingResponseOutput) Condition ¶
func (o BindingResponseOutput) Condition() ExprResponseOutput
The condition that is associated with this binding. If the condition evaluates to `true`, then this binding applies to the current request. If the condition evaluates to `false`, then this binding does not apply to the current request. However, a different role binding might grant the same role to one or more of the principals in this binding. To learn which resources support conditions in their IAM policies, see the [IAM documentation](https://cloud.google.com/iam/help/conditions/resource-policies).
func (BindingResponseOutput) ElementType ¶
func (BindingResponseOutput) ElementType() reflect.Type
func (BindingResponseOutput) Members ¶
func (o BindingResponseOutput) Members() pulumi.StringArrayOutput
Specifies the principals requesting access for a Google Cloud resource. `members` can have the following values: * `allUsers`: A special identifier that represents anyone who is on the internet; with or without a Google account. * `allAuthenticatedUsers`: A special identifier that represents anyone who is authenticated with a Google account or a service account. Does not include identities that come from external identity providers (IdPs) through identity federation. * `user:{emailid}`: An email address that represents a specific Google account. For example, `alice@example.com` . * `serviceAccount:{emailid}`: An email address that represents a Google service account. For example, `my-other-app@appspot.gserviceaccount.com`. * `serviceAccount:{projectid}.svc.id.goog[{namespace}/{kubernetes-sa}]`: An identifier for a [Kubernetes service account](https://cloud.google.com/kubernetes-engine/docs/how-to/kubernetes-service-accounts). For example, `my-project.svc.id.goog[my-namespace/my-kubernetes-sa]`. * `group:{emailid}`: An email address that represents a Google group. For example, `admins@example.com`. * `domain:{domain}`: The G Suite domain (primary) that represents all the users of that domain. For example, `google.com` or `example.com`. * `deleted:user:{emailid}?uid={uniqueid}`: An email address (plus unique identifier) representing a user that has been recently deleted. For example, `alice@example.com?uid=123456789012345678901`. If the user is recovered, this value reverts to `user:{emailid}` and the recovered user retains the role in the binding. * `deleted:serviceAccount:{emailid}?uid={uniqueid}`: An email address (plus unique identifier) representing a service account that has been recently deleted. For example, `my-other-app@appspot.gserviceaccount.com?uid=123456789012345678901`. If the service account is undeleted, this value reverts to `serviceAccount:{emailid}` and the undeleted service account retains the role in the binding. * `deleted:group:{emailid}?uid={uniqueid}`: An email address (plus unique identifier) representing a Google group that has been recently deleted. For example, `admins@example.com?uid=123456789012345678901`. If the group is recovered, this value reverts to `group:{emailid}` and the recovered group retains the role in the binding.
func (BindingResponseOutput) Role ¶
func (o BindingResponseOutput) Role() pulumi.StringOutput
Role that is assigned to the list of `members`, or principals. For example, `roles/viewer`, `roles/editor`, or `roles/owner`.
func (BindingResponseOutput) ToBindingResponseOutput ¶
func (o BindingResponseOutput) ToBindingResponseOutput() BindingResponseOutput
func (BindingResponseOutput) ToBindingResponseOutputWithContext ¶
func (o BindingResponseOutput) ToBindingResponseOutputWithContext(ctx context.Context) BindingResponseOutput
type DataMaskingPolicy ¶
type DataMaskingPolicy struct { // A predefined masking expression. PredefinedExpression *DataMaskingPolicyPredefinedExpression `pulumi:"predefinedExpression"` // The name of the BigQuery routine that contains the custom masking routine, in the format of `projects/{project_number}/datasets/{dataset_id}/routines/{routine_id}`. Routine *string `pulumi:"routine"` }
The data masking policy that is used to specify data masking rule.
type DataMaskingPolicyArgs ¶
type DataMaskingPolicyArgs struct { // A predefined masking expression. PredefinedExpression DataMaskingPolicyPredefinedExpressionPtrInput `pulumi:"predefinedExpression"` // The name of the BigQuery routine that contains the custom masking routine, in the format of `projects/{project_number}/datasets/{dataset_id}/routines/{routine_id}`. Routine pulumi.StringPtrInput `pulumi:"routine"` }
The data masking policy that is used to specify data masking rule.
func (DataMaskingPolicyArgs) ElementType ¶
func (DataMaskingPolicyArgs) ElementType() reflect.Type
func (DataMaskingPolicyArgs) ToDataMaskingPolicyOutput ¶
func (i DataMaskingPolicyArgs) ToDataMaskingPolicyOutput() DataMaskingPolicyOutput
func (DataMaskingPolicyArgs) ToDataMaskingPolicyOutputWithContext ¶
func (i DataMaskingPolicyArgs) ToDataMaskingPolicyOutputWithContext(ctx context.Context) DataMaskingPolicyOutput
func (DataMaskingPolicyArgs) ToDataMaskingPolicyPtrOutput ¶
func (i DataMaskingPolicyArgs) ToDataMaskingPolicyPtrOutput() DataMaskingPolicyPtrOutput
func (DataMaskingPolicyArgs) ToDataMaskingPolicyPtrOutputWithContext ¶
func (i DataMaskingPolicyArgs) ToDataMaskingPolicyPtrOutputWithContext(ctx context.Context) DataMaskingPolicyPtrOutput
type DataMaskingPolicyInput ¶
type DataMaskingPolicyInput interface { pulumi.Input ToDataMaskingPolicyOutput() DataMaskingPolicyOutput ToDataMaskingPolicyOutputWithContext(context.Context) DataMaskingPolicyOutput }
DataMaskingPolicyInput is an input type that accepts DataMaskingPolicyArgs and DataMaskingPolicyOutput values. You can construct a concrete instance of `DataMaskingPolicyInput` via:
DataMaskingPolicyArgs{...}
type DataMaskingPolicyOutput ¶
type DataMaskingPolicyOutput struct{ *pulumi.OutputState }
The data masking policy that is used to specify data masking rule.
func (DataMaskingPolicyOutput) ElementType ¶
func (DataMaskingPolicyOutput) ElementType() reflect.Type
func (DataMaskingPolicyOutput) PredefinedExpression ¶
func (o DataMaskingPolicyOutput) PredefinedExpression() DataMaskingPolicyPredefinedExpressionPtrOutput
A predefined masking expression.
func (DataMaskingPolicyOutput) Routine ¶
func (o DataMaskingPolicyOutput) Routine() pulumi.StringPtrOutput
The name of the BigQuery routine that contains the custom masking routine, in the format of `projects/{project_number}/datasets/{dataset_id}/routines/{routine_id}`.
func (DataMaskingPolicyOutput) ToDataMaskingPolicyOutput ¶
func (o DataMaskingPolicyOutput) ToDataMaskingPolicyOutput() DataMaskingPolicyOutput
func (DataMaskingPolicyOutput) ToDataMaskingPolicyOutputWithContext ¶
func (o DataMaskingPolicyOutput) ToDataMaskingPolicyOutputWithContext(ctx context.Context) DataMaskingPolicyOutput
func (DataMaskingPolicyOutput) ToDataMaskingPolicyPtrOutput ¶
func (o DataMaskingPolicyOutput) ToDataMaskingPolicyPtrOutput() DataMaskingPolicyPtrOutput
func (DataMaskingPolicyOutput) ToDataMaskingPolicyPtrOutputWithContext ¶
func (o DataMaskingPolicyOutput) ToDataMaskingPolicyPtrOutputWithContext(ctx context.Context) DataMaskingPolicyPtrOutput
type DataMaskingPolicyPredefinedExpression ¶
type DataMaskingPolicyPredefinedExpression string
A predefined masking expression.
func (DataMaskingPolicyPredefinedExpression) ElementType ¶
func (DataMaskingPolicyPredefinedExpression) ElementType() reflect.Type
func (DataMaskingPolicyPredefinedExpression) ToDataMaskingPolicyPredefinedExpressionOutput ¶
func (e DataMaskingPolicyPredefinedExpression) ToDataMaskingPolicyPredefinedExpressionOutput() DataMaskingPolicyPredefinedExpressionOutput
func (DataMaskingPolicyPredefinedExpression) ToDataMaskingPolicyPredefinedExpressionOutputWithContext ¶
func (e DataMaskingPolicyPredefinedExpression) ToDataMaskingPolicyPredefinedExpressionOutputWithContext(ctx context.Context) DataMaskingPolicyPredefinedExpressionOutput
func (DataMaskingPolicyPredefinedExpression) ToDataMaskingPolicyPredefinedExpressionPtrOutput ¶
func (e DataMaskingPolicyPredefinedExpression) ToDataMaskingPolicyPredefinedExpressionPtrOutput() DataMaskingPolicyPredefinedExpressionPtrOutput
func (DataMaskingPolicyPredefinedExpression) ToDataMaskingPolicyPredefinedExpressionPtrOutputWithContext ¶
func (e DataMaskingPolicyPredefinedExpression) ToDataMaskingPolicyPredefinedExpressionPtrOutputWithContext(ctx context.Context) DataMaskingPolicyPredefinedExpressionPtrOutput
func (DataMaskingPolicyPredefinedExpression) ToStringOutput ¶
func (e DataMaskingPolicyPredefinedExpression) ToStringOutput() pulumi.StringOutput
func (DataMaskingPolicyPredefinedExpression) ToStringOutputWithContext ¶
func (e DataMaskingPolicyPredefinedExpression) ToStringOutputWithContext(ctx context.Context) pulumi.StringOutput
func (DataMaskingPolicyPredefinedExpression) ToStringPtrOutput ¶
func (e DataMaskingPolicyPredefinedExpression) ToStringPtrOutput() pulumi.StringPtrOutput
func (DataMaskingPolicyPredefinedExpression) ToStringPtrOutputWithContext ¶
func (e DataMaskingPolicyPredefinedExpression) ToStringPtrOutputWithContext(ctx context.Context) pulumi.StringPtrOutput
type DataMaskingPolicyPredefinedExpressionInput ¶
type DataMaskingPolicyPredefinedExpressionInput interface { pulumi.Input ToDataMaskingPolicyPredefinedExpressionOutput() DataMaskingPolicyPredefinedExpressionOutput ToDataMaskingPolicyPredefinedExpressionOutputWithContext(context.Context) DataMaskingPolicyPredefinedExpressionOutput }
DataMaskingPolicyPredefinedExpressionInput is an input type that accepts DataMaskingPolicyPredefinedExpressionArgs and DataMaskingPolicyPredefinedExpressionOutput values. You can construct a concrete instance of `DataMaskingPolicyPredefinedExpressionInput` via:
DataMaskingPolicyPredefinedExpressionArgs{...}
type DataMaskingPolicyPredefinedExpressionOutput ¶
type DataMaskingPolicyPredefinedExpressionOutput struct{ *pulumi.OutputState }
func (DataMaskingPolicyPredefinedExpressionOutput) ElementType ¶
func (DataMaskingPolicyPredefinedExpressionOutput) ElementType() reflect.Type
func (DataMaskingPolicyPredefinedExpressionOutput) ToDataMaskingPolicyPredefinedExpressionOutput ¶
func (o DataMaskingPolicyPredefinedExpressionOutput) ToDataMaskingPolicyPredefinedExpressionOutput() DataMaskingPolicyPredefinedExpressionOutput
func (DataMaskingPolicyPredefinedExpressionOutput) ToDataMaskingPolicyPredefinedExpressionOutputWithContext ¶
func (o DataMaskingPolicyPredefinedExpressionOutput) ToDataMaskingPolicyPredefinedExpressionOutputWithContext(ctx context.Context) DataMaskingPolicyPredefinedExpressionOutput
func (DataMaskingPolicyPredefinedExpressionOutput) ToDataMaskingPolicyPredefinedExpressionPtrOutput ¶
func (o DataMaskingPolicyPredefinedExpressionOutput) ToDataMaskingPolicyPredefinedExpressionPtrOutput() DataMaskingPolicyPredefinedExpressionPtrOutput
func (DataMaskingPolicyPredefinedExpressionOutput) ToDataMaskingPolicyPredefinedExpressionPtrOutputWithContext ¶
func (o DataMaskingPolicyPredefinedExpressionOutput) ToDataMaskingPolicyPredefinedExpressionPtrOutputWithContext(ctx context.Context) DataMaskingPolicyPredefinedExpressionPtrOutput
func (DataMaskingPolicyPredefinedExpressionOutput) ToStringOutput ¶
func (o DataMaskingPolicyPredefinedExpressionOutput) ToStringOutput() pulumi.StringOutput
func (DataMaskingPolicyPredefinedExpressionOutput) ToStringOutputWithContext ¶
func (o DataMaskingPolicyPredefinedExpressionOutput) ToStringOutputWithContext(ctx context.Context) pulumi.StringOutput
func (DataMaskingPolicyPredefinedExpressionOutput) ToStringPtrOutput ¶
func (o DataMaskingPolicyPredefinedExpressionOutput) ToStringPtrOutput() pulumi.StringPtrOutput
func (DataMaskingPolicyPredefinedExpressionOutput) ToStringPtrOutputWithContext ¶
func (o DataMaskingPolicyPredefinedExpressionOutput) ToStringPtrOutputWithContext(ctx context.Context) pulumi.StringPtrOutput
type DataMaskingPolicyPredefinedExpressionPtrInput ¶
type DataMaskingPolicyPredefinedExpressionPtrInput interface { pulumi.Input ToDataMaskingPolicyPredefinedExpressionPtrOutput() DataMaskingPolicyPredefinedExpressionPtrOutput ToDataMaskingPolicyPredefinedExpressionPtrOutputWithContext(context.Context) DataMaskingPolicyPredefinedExpressionPtrOutput }
func DataMaskingPolicyPredefinedExpressionPtr ¶
func DataMaskingPolicyPredefinedExpressionPtr(v string) DataMaskingPolicyPredefinedExpressionPtrInput
type DataMaskingPolicyPredefinedExpressionPtrOutput ¶
type DataMaskingPolicyPredefinedExpressionPtrOutput struct{ *pulumi.OutputState }
func (DataMaskingPolicyPredefinedExpressionPtrOutput) ElementType ¶
func (DataMaskingPolicyPredefinedExpressionPtrOutput) ElementType() reflect.Type
func (DataMaskingPolicyPredefinedExpressionPtrOutput) ToDataMaskingPolicyPredefinedExpressionPtrOutput ¶
func (o DataMaskingPolicyPredefinedExpressionPtrOutput) ToDataMaskingPolicyPredefinedExpressionPtrOutput() DataMaskingPolicyPredefinedExpressionPtrOutput
func (DataMaskingPolicyPredefinedExpressionPtrOutput) ToDataMaskingPolicyPredefinedExpressionPtrOutputWithContext ¶
func (o DataMaskingPolicyPredefinedExpressionPtrOutput) ToDataMaskingPolicyPredefinedExpressionPtrOutputWithContext(ctx context.Context) DataMaskingPolicyPredefinedExpressionPtrOutput
func (DataMaskingPolicyPredefinedExpressionPtrOutput) ToStringPtrOutput ¶
func (o DataMaskingPolicyPredefinedExpressionPtrOutput) ToStringPtrOutput() pulumi.StringPtrOutput
func (DataMaskingPolicyPredefinedExpressionPtrOutput) ToStringPtrOutputWithContext ¶
func (o DataMaskingPolicyPredefinedExpressionPtrOutput) ToStringPtrOutputWithContext(ctx context.Context) pulumi.StringPtrOutput
type DataMaskingPolicyPtrInput ¶
type DataMaskingPolicyPtrInput interface { pulumi.Input ToDataMaskingPolicyPtrOutput() DataMaskingPolicyPtrOutput ToDataMaskingPolicyPtrOutputWithContext(context.Context) DataMaskingPolicyPtrOutput }
DataMaskingPolicyPtrInput is an input type that accepts DataMaskingPolicyArgs, DataMaskingPolicyPtr and DataMaskingPolicyPtrOutput values. You can construct a concrete instance of `DataMaskingPolicyPtrInput` via:
DataMaskingPolicyArgs{...} or: nil
func DataMaskingPolicyPtr ¶
func DataMaskingPolicyPtr(v *DataMaskingPolicyArgs) DataMaskingPolicyPtrInput
type DataMaskingPolicyPtrOutput ¶
type DataMaskingPolicyPtrOutput struct{ *pulumi.OutputState }
func (DataMaskingPolicyPtrOutput) Elem ¶
func (o DataMaskingPolicyPtrOutput) Elem() DataMaskingPolicyOutput
func (DataMaskingPolicyPtrOutput) ElementType ¶
func (DataMaskingPolicyPtrOutput) ElementType() reflect.Type
func (DataMaskingPolicyPtrOutput) PredefinedExpression ¶
func (o DataMaskingPolicyPtrOutput) PredefinedExpression() DataMaskingPolicyPredefinedExpressionPtrOutput
A predefined masking expression.
func (DataMaskingPolicyPtrOutput) Routine ¶
func (o DataMaskingPolicyPtrOutput) Routine() pulumi.StringPtrOutput
The name of the BigQuery routine that contains the custom masking routine, in the format of `projects/{project_number}/datasets/{dataset_id}/routines/{routine_id}`.
func (DataMaskingPolicyPtrOutput) ToDataMaskingPolicyPtrOutput ¶
func (o DataMaskingPolicyPtrOutput) ToDataMaskingPolicyPtrOutput() DataMaskingPolicyPtrOutput
func (DataMaskingPolicyPtrOutput) ToDataMaskingPolicyPtrOutputWithContext ¶
func (o DataMaskingPolicyPtrOutput) ToDataMaskingPolicyPtrOutputWithContext(ctx context.Context) DataMaskingPolicyPtrOutput
type DataMaskingPolicyResponse ¶
type DataMaskingPolicyResponse struct { // A predefined masking expression. PredefinedExpression string `pulumi:"predefinedExpression"` // The name of the BigQuery routine that contains the custom masking routine, in the format of `projects/{project_number}/datasets/{dataset_id}/routines/{routine_id}`. Routine string `pulumi:"routine"` }
The data masking policy that is used to specify data masking rule.
type DataMaskingPolicyResponseOutput ¶
type DataMaskingPolicyResponseOutput struct{ *pulumi.OutputState }
The data masking policy that is used to specify data masking rule.
func (DataMaskingPolicyResponseOutput) ElementType ¶
func (DataMaskingPolicyResponseOutput) ElementType() reflect.Type
func (DataMaskingPolicyResponseOutput) PredefinedExpression ¶
func (o DataMaskingPolicyResponseOutput) PredefinedExpression() pulumi.StringOutput
A predefined masking expression.
func (DataMaskingPolicyResponseOutput) Routine ¶
func (o DataMaskingPolicyResponseOutput) Routine() pulumi.StringOutput
The name of the BigQuery routine that contains the custom masking routine, in the format of `projects/{project_number}/datasets/{dataset_id}/routines/{routine_id}`.
func (DataMaskingPolicyResponseOutput) ToDataMaskingPolicyResponseOutput ¶
func (o DataMaskingPolicyResponseOutput) ToDataMaskingPolicyResponseOutput() DataMaskingPolicyResponseOutput
func (DataMaskingPolicyResponseOutput) ToDataMaskingPolicyResponseOutputWithContext ¶
func (o DataMaskingPolicyResponseOutput) ToDataMaskingPolicyResponseOutputWithContext(ctx context.Context) DataMaskingPolicyResponseOutput
type DataPolicy ¶
type DataPolicy struct { pulumi.CustomResourceState // The data masking policy that specifies the data masking rule to use. DataMaskingPolicy DataMaskingPolicyResponseOutput `pulumi:"dataMaskingPolicy"` // User-assigned (human readable) ID of the data policy that needs to be unique within a project. Used as {data_policy_id} in part of the resource name. DataPolicyId pulumi.StringOutput `pulumi:"dataPolicyId"` // Type of data policy. DataPolicyType pulumi.StringOutput `pulumi:"dataPolicyType"` Location pulumi.StringOutput `pulumi:"location"` // Resource name of this data policy, in the format of `projects/{project_number}/locations/{location_id}/dataPolicies/{data_policy_id}`. Name pulumi.StringOutput `pulumi:"name"` // Policy tag resource name, in the format of `projects/{project_number}/locations/{location_id}/taxonomies/{taxonomy_id}/policyTags/{policyTag_id}`. PolicyTag pulumi.StringOutput `pulumi:"policyTag"` Project pulumi.StringOutput `pulumi:"project"` }
Creates a new data policy under a project with the given `dataPolicyId` (used as the display name), policy tag, and data policy type. Auto-naming is currently not supported for this resource.
func GetDataPolicy ¶
func GetDataPolicy(ctx *pulumi.Context, name string, id pulumi.IDInput, state *DataPolicyState, opts ...pulumi.ResourceOption) (*DataPolicy, error)
GetDataPolicy gets an existing DataPolicy resource's state with the given name, ID, and optional state properties that are used to uniquely qualify the lookup (nil if not required).
func NewDataPolicy ¶
func NewDataPolicy(ctx *pulumi.Context, name string, args *DataPolicyArgs, opts ...pulumi.ResourceOption) (*DataPolicy, error)
NewDataPolicy registers a new resource with the given unique name, arguments, and options.
func (*DataPolicy) ElementType ¶
func (*DataPolicy) ElementType() reflect.Type
func (*DataPolicy) ToDataPolicyOutput ¶
func (i *DataPolicy) ToDataPolicyOutput() DataPolicyOutput
func (*DataPolicy) ToDataPolicyOutputWithContext ¶
func (i *DataPolicy) ToDataPolicyOutputWithContext(ctx context.Context) DataPolicyOutput
type DataPolicyArgs ¶
type DataPolicyArgs struct { // The data masking policy that specifies the data masking rule to use. DataMaskingPolicy DataMaskingPolicyPtrInput // User-assigned (human readable) ID of the data policy that needs to be unique within a project. Used as {data_policy_id} in part of the resource name. DataPolicyId pulumi.StringPtrInput // Type of data policy. DataPolicyType DataPolicyDataPolicyTypePtrInput Location pulumi.StringPtrInput // Policy tag resource name, in the format of `projects/{project_number}/locations/{location_id}/taxonomies/{taxonomy_id}/policyTags/{policyTag_id}`. PolicyTag pulumi.StringPtrInput Project pulumi.StringPtrInput }
The set of arguments for constructing a DataPolicy resource.
func (DataPolicyArgs) ElementType ¶
func (DataPolicyArgs) ElementType() reflect.Type
type DataPolicyDataPolicyType ¶
type DataPolicyDataPolicyType string
Type of data policy.
func (DataPolicyDataPolicyType) ElementType ¶
func (DataPolicyDataPolicyType) ElementType() reflect.Type
func (DataPolicyDataPolicyType) ToDataPolicyDataPolicyTypeOutput ¶
func (e DataPolicyDataPolicyType) ToDataPolicyDataPolicyTypeOutput() DataPolicyDataPolicyTypeOutput
func (DataPolicyDataPolicyType) ToDataPolicyDataPolicyTypeOutputWithContext ¶
func (e DataPolicyDataPolicyType) ToDataPolicyDataPolicyTypeOutputWithContext(ctx context.Context) DataPolicyDataPolicyTypeOutput
func (DataPolicyDataPolicyType) ToDataPolicyDataPolicyTypePtrOutput ¶
func (e DataPolicyDataPolicyType) ToDataPolicyDataPolicyTypePtrOutput() DataPolicyDataPolicyTypePtrOutput
func (DataPolicyDataPolicyType) ToDataPolicyDataPolicyTypePtrOutputWithContext ¶
func (e DataPolicyDataPolicyType) ToDataPolicyDataPolicyTypePtrOutputWithContext(ctx context.Context) DataPolicyDataPolicyTypePtrOutput
func (DataPolicyDataPolicyType) ToStringOutput ¶
func (e DataPolicyDataPolicyType) ToStringOutput() pulumi.StringOutput
func (DataPolicyDataPolicyType) ToStringOutputWithContext ¶
func (e DataPolicyDataPolicyType) ToStringOutputWithContext(ctx context.Context) pulumi.StringOutput
func (DataPolicyDataPolicyType) ToStringPtrOutput ¶
func (e DataPolicyDataPolicyType) ToStringPtrOutput() pulumi.StringPtrOutput
func (DataPolicyDataPolicyType) ToStringPtrOutputWithContext ¶
func (e DataPolicyDataPolicyType) ToStringPtrOutputWithContext(ctx context.Context) pulumi.StringPtrOutput
type DataPolicyDataPolicyTypeInput ¶
type DataPolicyDataPolicyTypeInput interface { pulumi.Input ToDataPolicyDataPolicyTypeOutput() DataPolicyDataPolicyTypeOutput ToDataPolicyDataPolicyTypeOutputWithContext(context.Context) DataPolicyDataPolicyTypeOutput }
DataPolicyDataPolicyTypeInput is an input type that accepts DataPolicyDataPolicyTypeArgs and DataPolicyDataPolicyTypeOutput values. You can construct a concrete instance of `DataPolicyDataPolicyTypeInput` via:
DataPolicyDataPolicyTypeArgs{...}
type DataPolicyDataPolicyTypeOutput ¶
type DataPolicyDataPolicyTypeOutput struct{ *pulumi.OutputState }
func (DataPolicyDataPolicyTypeOutput) ElementType ¶
func (DataPolicyDataPolicyTypeOutput) ElementType() reflect.Type
func (DataPolicyDataPolicyTypeOutput) ToDataPolicyDataPolicyTypeOutput ¶
func (o DataPolicyDataPolicyTypeOutput) ToDataPolicyDataPolicyTypeOutput() DataPolicyDataPolicyTypeOutput
func (DataPolicyDataPolicyTypeOutput) ToDataPolicyDataPolicyTypeOutputWithContext ¶
func (o DataPolicyDataPolicyTypeOutput) ToDataPolicyDataPolicyTypeOutputWithContext(ctx context.Context) DataPolicyDataPolicyTypeOutput
func (DataPolicyDataPolicyTypeOutput) ToDataPolicyDataPolicyTypePtrOutput ¶
func (o DataPolicyDataPolicyTypeOutput) ToDataPolicyDataPolicyTypePtrOutput() DataPolicyDataPolicyTypePtrOutput
func (DataPolicyDataPolicyTypeOutput) ToDataPolicyDataPolicyTypePtrOutputWithContext ¶
func (o DataPolicyDataPolicyTypeOutput) ToDataPolicyDataPolicyTypePtrOutputWithContext(ctx context.Context) DataPolicyDataPolicyTypePtrOutput
func (DataPolicyDataPolicyTypeOutput) ToStringOutput ¶
func (o DataPolicyDataPolicyTypeOutput) ToStringOutput() pulumi.StringOutput
func (DataPolicyDataPolicyTypeOutput) ToStringOutputWithContext ¶
func (o DataPolicyDataPolicyTypeOutput) ToStringOutputWithContext(ctx context.Context) pulumi.StringOutput
func (DataPolicyDataPolicyTypeOutput) ToStringPtrOutput ¶
func (o DataPolicyDataPolicyTypeOutput) ToStringPtrOutput() pulumi.StringPtrOutput
func (DataPolicyDataPolicyTypeOutput) ToStringPtrOutputWithContext ¶
func (o DataPolicyDataPolicyTypeOutput) ToStringPtrOutputWithContext(ctx context.Context) pulumi.StringPtrOutput
type DataPolicyDataPolicyTypePtrInput ¶
type DataPolicyDataPolicyTypePtrInput interface { pulumi.Input ToDataPolicyDataPolicyTypePtrOutput() DataPolicyDataPolicyTypePtrOutput ToDataPolicyDataPolicyTypePtrOutputWithContext(context.Context) DataPolicyDataPolicyTypePtrOutput }
func DataPolicyDataPolicyTypePtr ¶
func DataPolicyDataPolicyTypePtr(v string) DataPolicyDataPolicyTypePtrInput
type DataPolicyDataPolicyTypePtrOutput ¶
type DataPolicyDataPolicyTypePtrOutput struct{ *pulumi.OutputState }
func (DataPolicyDataPolicyTypePtrOutput) Elem ¶
func (o DataPolicyDataPolicyTypePtrOutput) Elem() DataPolicyDataPolicyTypeOutput
func (DataPolicyDataPolicyTypePtrOutput) ElementType ¶
func (DataPolicyDataPolicyTypePtrOutput) ElementType() reflect.Type
func (DataPolicyDataPolicyTypePtrOutput) ToDataPolicyDataPolicyTypePtrOutput ¶
func (o DataPolicyDataPolicyTypePtrOutput) ToDataPolicyDataPolicyTypePtrOutput() DataPolicyDataPolicyTypePtrOutput
func (DataPolicyDataPolicyTypePtrOutput) ToDataPolicyDataPolicyTypePtrOutputWithContext ¶
func (o DataPolicyDataPolicyTypePtrOutput) ToDataPolicyDataPolicyTypePtrOutputWithContext(ctx context.Context) DataPolicyDataPolicyTypePtrOutput
func (DataPolicyDataPolicyTypePtrOutput) ToStringPtrOutput ¶
func (o DataPolicyDataPolicyTypePtrOutput) ToStringPtrOutput() pulumi.StringPtrOutput
func (DataPolicyDataPolicyTypePtrOutput) ToStringPtrOutputWithContext ¶
func (o DataPolicyDataPolicyTypePtrOutput) ToStringPtrOutputWithContext(ctx context.Context) pulumi.StringPtrOutput
type DataPolicyIamBinding ¶
type DataPolicyIamBinding struct { pulumi.CustomResourceState // An IAM Condition for a given binding. See https://cloud.google.com/iam/docs/conditions-overview for additional details. Condition iam.ConditionPtrOutput `pulumi:"condition"` // The etag of the resource's IAM policy. Etag pulumi.StringOutput `pulumi:"etag"` // Specifies the principals requesting access for a Google Cloud resource. `members` can have the following values: * `allUsers`: A special identifier that represents anyone who is on the internet; with or without a Google account. * `allAuthenticatedUsers`: A special identifier that represents anyone who is authenticated with a Google account or a service account. Does not include identities that come from external identity providers (IdPs) through identity federation. * `user:{emailid}`: An email address that represents a specific Google account. For example, `alice@example.com` . * `serviceAccount:{emailid}`: An email address that represents a Google service account. For example, `my-other-app@appspot.gserviceaccount.com`. * `serviceAccount:{projectid}.svc.id.goog[{namespace}/{kubernetes-sa}]`: An identifier for a [Kubernetes service account](https://cloud.google.com/kubernetes-engine/docs/how-to/kubernetes-service-accounts). For example, `my-project.svc.id.goog[my-namespace/my-kubernetes-sa]`. * `group:{emailid}`: An email address that represents a Google group. For example, `admins@example.com`. * `domain:{domain}`: The G Suite domain (primary) that represents all the users of that domain. For example, `google.com` or `example.com`. * `deleted:user:{emailid}?uid={uniqueid}`: An email address (plus unique identifier) representing a user that has been recently deleted. For example, `alice@example.com?uid=123456789012345678901`. If the user is recovered, this value reverts to `user:{emailid}` and the recovered user retains the role in the binding. * `deleted:serviceAccount:{emailid}?uid={uniqueid}`: An email address (plus unique identifier) representing a service account that has been recently deleted. For example, `my-other-app@appspot.gserviceaccount.com?uid=123456789012345678901`. If the service account is undeleted, this value reverts to `serviceAccount:{emailid}` and the undeleted service account retains the role in the binding. * `deleted:group:{emailid}?uid={uniqueid}`: An email address (plus unique identifier) representing a Google group that has been recently deleted. For example, `admins@example.com?uid=123456789012345678901`. If the group is recovered, this value reverts to `group:{emailid}` and the recovered group retains the role in the binding. Members pulumi.StringArrayOutput `pulumi:"members"` // The name of the resource to manage IAM policies for. Name pulumi.StringOutput `pulumi:"name"` // The project in which the resource belongs. If it is not provided, a default will be supplied. Project pulumi.StringOutput `pulumi:"project"` // Role that is assigned to the list of `members`, or principals. For example, `roles/viewer`, `roles/editor`, or `roles/owner`. Role pulumi.StringOutput `pulumi:"role"` }
Sets the IAM policy for the specified data policy.
func GetDataPolicyIamBinding ¶
func GetDataPolicyIamBinding(ctx *pulumi.Context, name string, id pulumi.IDInput, state *DataPolicyIamBindingState, opts ...pulumi.ResourceOption) (*DataPolicyIamBinding, error)
GetDataPolicyIamBinding gets an existing DataPolicyIamBinding resource's state with the given name, ID, and optional state properties that are used to uniquely qualify the lookup (nil if not required).
func NewDataPolicyIamBinding ¶
func NewDataPolicyIamBinding(ctx *pulumi.Context, name string, args *DataPolicyIamBindingArgs, opts ...pulumi.ResourceOption) (*DataPolicyIamBinding, error)
NewDataPolicyIamBinding registers a new resource with the given unique name, arguments, and options.
func (*DataPolicyIamBinding) ElementType ¶
func (*DataPolicyIamBinding) ElementType() reflect.Type
func (*DataPolicyIamBinding) ToDataPolicyIamBindingOutput ¶
func (i *DataPolicyIamBinding) ToDataPolicyIamBindingOutput() DataPolicyIamBindingOutput
func (*DataPolicyIamBinding) ToDataPolicyIamBindingOutputWithContext ¶
func (i *DataPolicyIamBinding) ToDataPolicyIamBindingOutputWithContext(ctx context.Context) DataPolicyIamBindingOutput
type DataPolicyIamBindingArgs ¶
type DataPolicyIamBindingArgs struct { // An IAM Condition for a given binding. Condition iam.ConditionPtrInput // Identities that will be granted the privilege in role. Each entry can have one of the following values: // // * user:{emailid}: An email address that represents a specific Google account. For example, alice@gmail.com or joe@example.com. // * serviceAccount:{emailid}: An email address that represents a service account. For example, my-other-app@appspot.gserviceaccount.com. // * group:{emailid}: An email address that represents a Google group. For example, admins@example.com. // * domain:{domain}: A G Suite domain (primary, instead of alias) name that represents all the users of that domain. For example, google.com or example.com. Members pulumi.StringArrayInput // The name of the resource to manage IAM policies for. Name pulumi.StringInput // The role that should be applied. Only one `IamBinding` can be used per role. Role pulumi.StringInput }
The set of arguments for constructing a DataPolicyIamBinding resource.
func (DataPolicyIamBindingArgs) ElementType ¶
func (DataPolicyIamBindingArgs) ElementType() reflect.Type
type DataPolicyIamBindingInput ¶
type DataPolicyIamBindingInput interface { pulumi.Input ToDataPolicyIamBindingOutput() DataPolicyIamBindingOutput ToDataPolicyIamBindingOutputWithContext(ctx context.Context) DataPolicyIamBindingOutput }
type DataPolicyIamBindingOutput ¶
type DataPolicyIamBindingOutput struct{ *pulumi.OutputState }
func (DataPolicyIamBindingOutput) Condition ¶
func (o DataPolicyIamBindingOutput) Condition() iam.ConditionPtrOutput
An IAM Condition for a given binding. See https://cloud.google.com/iam/docs/conditions-overview for additional details.
func (DataPolicyIamBindingOutput) ElementType ¶
func (DataPolicyIamBindingOutput) ElementType() reflect.Type
func (DataPolicyIamBindingOutput) Etag ¶
func (o DataPolicyIamBindingOutput) Etag() pulumi.StringOutput
The etag of the resource's IAM policy.
func (DataPolicyIamBindingOutput) Members ¶
func (o DataPolicyIamBindingOutput) Members() pulumi.StringArrayOutput
Specifies the principals requesting access for a Google Cloud resource. `members` can have the following values: * `allUsers`: A special identifier that represents anyone who is on the internet; with or without a Google account. * `allAuthenticatedUsers`: A special identifier that represents anyone who is authenticated with a Google account or a service account. Does not include identities that come from external identity providers (IdPs) through identity federation. * `user:{emailid}`: An email address that represents a specific Google account. For example, `alice@example.com` . * `serviceAccount:{emailid}`: An email address that represents a Google service account. For example, `my-other-app@appspot.gserviceaccount.com`. * `serviceAccount:{projectid}.svc.id.goog[{namespace}/{kubernetes-sa}]`: An identifier for a [Kubernetes service account](https://cloud.google.com/kubernetes-engine/docs/how-to/kubernetes-service-accounts). For example, `my-project.svc.id.goog[my-namespace/my-kubernetes-sa]`. * `group:{emailid}`: An email address that represents a Google group. For example, `admins@example.com`. * `domain:{domain}`: The G Suite domain (primary) that represents all the users of that domain. For example, `google.com` or `example.com`. * `deleted:user:{emailid}?uid={uniqueid}`: An email address (plus unique identifier) representing a user that has been recently deleted. For example, `alice@example.com?uid=123456789012345678901`. If the user is recovered, this value reverts to `user:{emailid}` and the recovered user retains the role in the binding. * `deleted:serviceAccount:{emailid}?uid={uniqueid}`: An email address (plus unique identifier) representing a service account that has been recently deleted. For example, `my-other-app@appspot.gserviceaccount.com?uid=123456789012345678901`. If the service account is undeleted, this value reverts to `serviceAccount:{emailid}` and the undeleted service account retains the role in the binding. * `deleted:group:{emailid}?uid={uniqueid}`: An email address (plus unique identifier) representing a Google group that has been recently deleted. For example, `admins@example.com?uid=123456789012345678901`. If the group is recovered, this value reverts to `group:{emailid}` and the recovered group retains the role in the binding.
func (DataPolicyIamBindingOutput) Name ¶
func (o DataPolicyIamBindingOutput) Name() pulumi.StringOutput
The name of the resource to manage IAM policies for.
func (DataPolicyIamBindingOutput) Project ¶
func (o DataPolicyIamBindingOutput) Project() pulumi.StringOutput
The project in which the resource belongs. If it is not provided, a default will be supplied.
func (DataPolicyIamBindingOutput) Role ¶
func (o DataPolicyIamBindingOutput) Role() pulumi.StringOutput
Role that is assigned to the list of `members`, or principals. For example, `roles/viewer`, `roles/editor`, or `roles/owner`.
func (DataPolicyIamBindingOutput) ToDataPolicyIamBindingOutput ¶
func (o DataPolicyIamBindingOutput) ToDataPolicyIamBindingOutput() DataPolicyIamBindingOutput
func (DataPolicyIamBindingOutput) ToDataPolicyIamBindingOutputWithContext ¶
func (o DataPolicyIamBindingOutput) ToDataPolicyIamBindingOutputWithContext(ctx context.Context) DataPolicyIamBindingOutput
type DataPolicyIamBindingState ¶
type DataPolicyIamBindingState struct { }
func (DataPolicyIamBindingState) ElementType ¶
func (DataPolicyIamBindingState) ElementType() reflect.Type
type DataPolicyIamMember ¶
type DataPolicyIamMember struct { pulumi.CustomResourceState // An IAM Condition for a given binding. See https://cloud.google.com/iam/docs/conditions-overview for additional details. Condition iam.ConditionPtrOutput `pulumi:"condition"` // The etag of the resource's IAM policy. Etag pulumi.StringOutput `pulumi:"etag"` // Specifies the principals requesting access for a Google Cloud resource. `members` can have the following values: * `allUsers`: A special identifier that represents anyone who is on the internet; with or without a Google account. * `allAuthenticatedUsers`: A special identifier that represents anyone who is authenticated with a Google account or a service account. Does not include identities that come from external identity providers (IdPs) through identity federation. * `user:{emailid}`: An email address that represents a specific Google account. For example, `alice@example.com` . * `serviceAccount:{emailid}`: An email address that represents a Google service account. For example, `my-other-app@appspot.gserviceaccount.com`. * `serviceAccount:{projectid}.svc.id.goog[{namespace}/{kubernetes-sa}]`: An identifier for a [Kubernetes service account](https://cloud.google.com/kubernetes-engine/docs/how-to/kubernetes-service-accounts). For example, `my-project.svc.id.goog[my-namespace/my-kubernetes-sa]`. * `group:{emailid}`: An email address that represents a Google group. For example, `admins@example.com`. * `domain:{domain}`: The G Suite domain (primary) that represents all the users of that domain. For example, `google.com` or `example.com`. * `deleted:user:{emailid}?uid={uniqueid}`: An email address (plus unique identifier) representing a user that has been recently deleted. For example, `alice@example.com?uid=123456789012345678901`. If the user is recovered, this value reverts to `user:{emailid}` and the recovered user retains the role in the binding. * `deleted:serviceAccount:{emailid}?uid={uniqueid}`: An email address (plus unique identifier) representing a service account that has been recently deleted. For example, `my-other-app@appspot.gserviceaccount.com?uid=123456789012345678901`. If the service account is undeleted, this value reverts to `serviceAccount:{emailid}` and the undeleted service account retains the role in the binding. * `deleted:group:{emailid}?uid={uniqueid}`: An email address (plus unique identifier) representing a Google group that has been recently deleted. For example, `admins@example.com?uid=123456789012345678901`. If the group is recovered, this value reverts to `group:{emailid}` and the recovered group retains the role in the binding. Member pulumi.StringOutput `pulumi:"member"` // The name of the resource to manage IAM policies for. Name pulumi.StringOutput `pulumi:"name"` // The project in which the resource belongs. If it is not provided, a default will be supplied. Project pulumi.StringOutput `pulumi:"project"` // Role that is assigned to the list of `members`, or principals. For example, `roles/viewer`, `roles/editor`, or `roles/owner`. Role pulumi.StringOutput `pulumi:"role"` }
Sets the IAM policy for the specified data policy.
func GetDataPolicyIamMember ¶
func GetDataPolicyIamMember(ctx *pulumi.Context, name string, id pulumi.IDInput, state *DataPolicyIamMemberState, opts ...pulumi.ResourceOption) (*DataPolicyIamMember, error)
GetDataPolicyIamMember gets an existing DataPolicyIamMember resource's state with the given name, ID, and optional state properties that are used to uniquely qualify the lookup (nil if not required).
func NewDataPolicyIamMember ¶
func NewDataPolicyIamMember(ctx *pulumi.Context, name string, args *DataPolicyIamMemberArgs, opts ...pulumi.ResourceOption) (*DataPolicyIamMember, error)
NewDataPolicyIamMember registers a new resource with the given unique name, arguments, and options.
func (*DataPolicyIamMember) ElementType ¶
func (*DataPolicyIamMember) ElementType() reflect.Type
func (*DataPolicyIamMember) ToDataPolicyIamMemberOutput ¶
func (i *DataPolicyIamMember) ToDataPolicyIamMemberOutput() DataPolicyIamMemberOutput
func (*DataPolicyIamMember) ToDataPolicyIamMemberOutputWithContext ¶
func (i *DataPolicyIamMember) ToDataPolicyIamMemberOutputWithContext(ctx context.Context) DataPolicyIamMemberOutput
type DataPolicyIamMemberArgs ¶
type DataPolicyIamMemberArgs struct { // An IAM Condition for a given binding. Condition iam.ConditionPtrInput // Identity that will be granted the privilege in role. The entry can have one of the following values: // // * user:{emailid}: An email address that represents a specific Google account. For example, alice@gmail.com or joe@example.com. // * serviceAccount:{emailid}: An email address that represents a service account. For example, my-other-app@appspot.gserviceaccount.com. // * group:{emailid}: An email address that represents a Google group. For example, admins@example.com. // * domain:{domain}: A G Suite domain (primary, instead of alias) name that represents all the users of that domain. For example, google.com or example.com. Member pulumi.StringInput // The name of the resource to manage IAM policies for. Name pulumi.StringInput // The role that should be applied. Role pulumi.StringInput }
The set of arguments for constructing a DataPolicyIamMember resource.
func (DataPolicyIamMemberArgs) ElementType ¶
func (DataPolicyIamMemberArgs) ElementType() reflect.Type
type DataPolicyIamMemberInput ¶
type DataPolicyIamMemberInput interface { pulumi.Input ToDataPolicyIamMemberOutput() DataPolicyIamMemberOutput ToDataPolicyIamMemberOutputWithContext(ctx context.Context) DataPolicyIamMemberOutput }
type DataPolicyIamMemberOutput ¶
type DataPolicyIamMemberOutput struct{ *pulumi.OutputState }
func (DataPolicyIamMemberOutput) Condition ¶
func (o DataPolicyIamMemberOutput) Condition() iam.ConditionPtrOutput
An IAM Condition for a given binding. See https://cloud.google.com/iam/docs/conditions-overview for additional details.
func (DataPolicyIamMemberOutput) ElementType ¶
func (DataPolicyIamMemberOutput) ElementType() reflect.Type
func (DataPolicyIamMemberOutput) Etag ¶
func (o DataPolicyIamMemberOutput) Etag() pulumi.StringOutput
The etag of the resource's IAM policy.
func (DataPolicyIamMemberOutput) Member ¶
func (o DataPolicyIamMemberOutput) Member() pulumi.StringOutput
Specifies the principals requesting access for a Google Cloud resource. `members` can have the following values: * `allUsers`: A special identifier that represents anyone who is on the internet; with or without a Google account. * `allAuthenticatedUsers`: A special identifier that represents anyone who is authenticated with a Google account or a service account. Does not include identities that come from external identity providers (IdPs) through identity federation. * `user:{emailid}`: An email address that represents a specific Google account. For example, `alice@example.com` . * `serviceAccount:{emailid}`: An email address that represents a Google service account. For example, `my-other-app@appspot.gserviceaccount.com`. * `serviceAccount:{projectid}.svc.id.goog[{namespace}/{kubernetes-sa}]`: An identifier for a [Kubernetes service account](https://cloud.google.com/kubernetes-engine/docs/how-to/kubernetes-service-accounts). For example, `my-project.svc.id.goog[my-namespace/my-kubernetes-sa]`. * `group:{emailid}`: An email address that represents a Google group. For example, `admins@example.com`. * `domain:{domain}`: The G Suite domain (primary) that represents all the users of that domain. For example, `google.com` or `example.com`. * `deleted:user:{emailid}?uid={uniqueid}`: An email address (plus unique identifier) representing a user that has been recently deleted. For example, `alice@example.com?uid=123456789012345678901`. If the user is recovered, this value reverts to `user:{emailid}` and the recovered user retains the role in the binding. * `deleted:serviceAccount:{emailid}?uid={uniqueid}`: An email address (plus unique identifier) representing a service account that has been recently deleted. For example, `my-other-app@appspot.gserviceaccount.com?uid=123456789012345678901`. If the service account is undeleted, this value reverts to `serviceAccount:{emailid}` and the undeleted service account retains the role in the binding. * `deleted:group:{emailid}?uid={uniqueid}`: An email address (plus unique identifier) representing a Google group that has been recently deleted. For example, `admins@example.com?uid=123456789012345678901`. If the group is recovered, this value reverts to `group:{emailid}` and the recovered group retains the role in the binding.
func (DataPolicyIamMemberOutput) Name ¶
func (o DataPolicyIamMemberOutput) Name() pulumi.StringOutput
The name of the resource to manage IAM policies for.
func (DataPolicyIamMemberOutput) Project ¶
func (o DataPolicyIamMemberOutput) Project() pulumi.StringOutput
The project in which the resource belongs. If it is not provided, a default will be supplied.
func (DataPolicyIamMemberOutput) Role ¶
func (o DataPolicyIamMemberOutput) Role() pulumi.StringOutput
Role that is assigned to the list of `members`, or principals. For example, `roles/viewer`, `roles/editor`, or `roles/owner`.
func (DataPolicyIamMemberOutput) ToDataPolicyIamMemberOutput ¶
func (o DataPolicyIamMemberOutput) ToDataPolicyIamMemberOutput() DataPolicyIamMemberOutput
func (DataPolicyIamMemberOutput) ToDataPolicyIamMemberOutputWithContext ¶
func (o DataPolicyIamMemberOutput) ToDataPolicyIamMemberOutputWithContext(ctx context.Context) DataPolicyIamMemberOutput
type DataPolicyIamMemberState ¶
type DataPolicyIamMemberState struct { }
func (DataPolicyIamMemberState) ElementType ¶
func (DataPolicyIamMemberState) ElementType() reflect.Type
type DataPolicyIamPolicy ¶
type DataPolicyIamPolicy struct { pulumi.CustomResourceState // Specifies cloud audit logging configuration for this policy. AuditConfigs AuditConfigResponseArrayOutput `pulumi:"auditConfigs"` // Associates a list of `members`, or principals, with a `role`. Optionally, may specify a `condition` that determines how and when the `bindings` are applied. Each of the `bindings` must contain at least one principal. The `bindings` in a `Policy` can refer to up to 1,500 principals; up to 250 of these principals can be Google groups. Each occurrence of a principal counts towards these limits. For example, if the `bindings` grant 50 different roles to `user:alice@example.com`, and not to any other principal, then you can add another 1,450 principals to the `bindings` in the `Policy`. Bindings BindingResponseArrayOutput `pulumi:"bindings"` DataPolicyId pulumi.StringOutput `pulumi:"dataPolicyId"` // `etag` is used for optimistic concurrency control as a way to help prevent simultaneous updates of a policy from overwriting each other. It is strongly suggested that systems make use of the `etag` in the read-modify-write cycle to perform policy updates in order to avoid race conditions: An `etag` is returned in the response to `getIamPolicy`, and systems are expected to put that etag in the request to `setIamPolicy` to ensure that their change will be applied to the same version of the policy. **Important:** If you use IAM Conditions, you must include the `etag` field whenever you call `setIamPolicy`. If you omit this field, then IAM allows you to overwrite a version `3` policy with a version `1` policy, and all of the conditions in the version `3` policy are lost. Etag pulumi.StringOutput `pulumi:"etag"` Location pulumi.StringOutput `pulumi:"location"` Project pulumi.StringOutput `pulumi:"project"` // Specifies the format of the policy. Valid values are `0`, `1`, and `3`. Requests that specify an invalid value are rejected. Any operation that affects conditional role bindings must specify version `3`. This requirement applies to the following operations: * Getting a policy that includes a conditional role binding * Adding a conditional role binding to a policy * Changing a conditional role binding in a policy * Removing any role binding, with or without a condition, from a policy that includes conditions **Important:** If you use IAM Conditions, you must include the `etag` field whenever you call `setIamPolicy`. If you omit this field, then IAM allows you to overwrite a version `3` policy with a version `1` policy, and all of the conditions in the version `3` policy are lost. If a policy does not include any conditions, operations on that policy may specify any valid version or leave the field unset. To learn which resources support conditions in their IAM policies, see the [IAM documentation](https://cloud.google.com/iam/help/conditions/resource-policies). Version pulumi.IntOutput `pulumi:"version"` }
Sets the IAM policy for the specified data policy. Note - this resource's API doesn't support deletion. When deleted, the resource will persist on Google Cloud even though it will be deleted from Pulumi state.
func GetDataPolicyIamPolicy ¶
func GetDataPolicyIamPolicy(ctx *pulumi.Context, name string, id pulumi.IDInput, state *DataPolicyIamPolicyState, opts ...pulumi.ResourceOption) (*DataPolicyIamPolicy, error)
GetDataPolicyIamPolicy gets an existing DataPolicyIamPolicy resource's state with the given name, ID, and optional state properties that are used to uniquely qualify the lookup (nil if not required).
func NewDataPolicyIamPolicy ¶
func NewDataPolicyIamPolicy(ctx *pulumi.Context, name string, args *DataPolicyIamPolicyArgs, opts ...pulumi.ResourceOption) (*DataPolicyIamPolicy, error)
NewDataPolicyIamPolicy registers a new resource with the given unique name, arguments, and options.
func (*DataPolicyIamPolicy) ElementType ¶
func (*DataPolicyIamPolicy) ElementType() reflect.Type
func (*DataPolicyIamPolicy) ToDataPolicyIamPolicyOutput ¶
func (i *DataPolicyIamPolicy) ToDataPolicyIamPolicyOutput() DataPolicyIamPolicyOutput
func (*DataPolicyIamPolicy) ToDataPolicyIamPolicyOutputWithContext ¶
func (i *DataPolicyIamPolicy) ToDataPolicyIamPolicyOutputWithContext(ctx context.Context) DataPolicyIamPolicyOutput
type DataPolicyIamPolicyArgs ¶
type DataPolicyIamPolicyArgs struct { // Specifies cloud audit logging configuration for this policy. AuditConfigs AuditConfigArrayInput // Associates a list of `members`, or principals, with a `role`. Optionally, may specify a `condition` that determines how and when the `bindings` are applied. Each of the `bindings` must contain at least one principal. The `bindings` in a `Policy` can refer to up to 1,500 principals; up to 250 of these principals can be Google groups. Each occurrence of a principal counts towards these limits. For example, if the `bindings` grant 50 different roles to `user:alice@example.com`, and not to any other principal, then you can add another 1,450 principals to the `bindings` in the `Policy`. Bindings BindingArrayInput DataPolicyId pulumi.StringInput // `etag` is used for optimistic concurrency control as a way to help prevent simultaneous updates of a policy from overwriting each other. It is strongly suggested that systems make use of the `etag` in the read-modify-write cycle to perform policy updates in order to avoid race conditions: An `etag` is returned in the response to `getIamPolicy`, and systems are expected to put that etag in the request to `setIamPolicy` to ensure that their change will be applied to the same version of the policy. **Important:** If you use IAM Conditions, you must include the `etag` field whenever you call `setIamPolicy`. If you omit this field, then IAM allows you to overwrite a version `3` policy with a version `1` policy, and all of the conditions in the version `3` policy are lost. Etag pulumi.StringPtrInput Location pulumi.StringPtrInput Project pulumi.StringPtrInput // OPTIONAL: A FieldMask specifying which fields of the policy to modify. Only the fields in the mask will be modified. If no mask is provided, the following default mask is used: `paths: "bindings, etag"` UpdateMask pulumi.StringPtrInput // Specifies the format of the policy. Valid values are `0`, `1`, and `3`. Requests that specify an invalid value are rejected. Any operation that affects conditional role bindings must specify version `3`. This requirement applies to the following operations: * Getting a policy that includes a conditional role binding * Adding a conditional role binding to a policy * Changing a conditional role binding in a policy * Removing any role binding, with or without a condition, from a policy that includes conditions **Important:** If you use IAM Conditions, you must include the `etag` field whenever you call `setIamPolicy`. If you omit this field, then IAM allows you to overwrite a version `3` policy with a version `1` policy, and all of the conditions in the version `3` policy are lost. If a policy does not include any conditions, operations on that policy may specify any valid version or leave the field unset. To learn which resources support conditions in their IAM policies, see the [IAM documentation](https://cloud.google.com/iam/help/conditions/resource-policies). Version pulumi.IntPtrInput }
The set of arguments for constructing a DataPolicyIamPolicy resource.
func (DataPolicyIamPolicyArgs) ElementType ¶
func (DataPolicyIamPolicyArgs) ElementType() reflect.Type
type DataPolicyIamPolicyInput ¶
type DataPolicyIamPolicyInput interface { pulumi.Input ToDataPolicyIamPolicyOutput() DataPolicyIamPolicyOutput ToDataPolicyIamPolicyOutputWithContext(ctx context.Context) DataPolicyIamPolicyOutput }
type DataPolicyIamPolicyOutput ¶
type DataPolicyIamPolicyOutput struct{ *pulumi.OutputState }
func (DataPolicyIamPolicyOutput) AuditConfigs ¶
func (o DataPolicyIamPolicyOutput) AuditConfigs() AuditConfigResponseArrayOutput
Specifies cloud audit logging configuration for this policy.
func (DataPolicyIamPolicyOutput) Bindings ¶
func (o DataPolicyIamPolicyOutput) Bindings() BindingResponseArrayOutput
Associates a list of `members`, or principals, with a `role`. Optionally, may specify a `condition` that determines how and when the `bindings` are applied. Each of the `bindings` must contain at least one principal. The `bindings` in a `Policy` can refer to up to 1,500 principals; up to 250 of these principals can be Google groups. Each occurrence of a principal counts towards these limits. For example, if the `bindings` grant 50 different roles to `user:alice@example.com`, and not to any other principal, then you can add another 1,450 principals to the `bindings` in the `Policy`.
func (DataPolicyIamPolicyOutput) DataPolicyId ¶
func (o DataPolicyIamPolicyOutput) DataPolicyId() pulumi.StringOutput
func (DataPolicyIamPolicyOutput) ElementType ¶
func (DataPolicyIamPolicyOutput) ElementType() reflect.Type
func (DataPolicyIamPolicyOutput) Etag ¶
func (o DataPolicyIamPolicyOutput) Etag() pulumi.StringOutput
`etag` is used for optimistic concurrency control as a way to help prevent simultaneous updates of a policy from overwriting each other. It is strongly suggested that systems make use of the `etag` in the read-modify-write cycle to perform policy updates in order to avoid race conditions: An `etag` is returned in the response to `getIamPolicy`, and systems are expected to put that etag in the request to `setIamPolicy` to ensure that their change will be applied to the same version of the policy. **Important:** If you use IAM Conditions, you must include the `etag` field whenever you call `setIamPolicy`. If you omit this field, then IAM allows you to overwrite a version `3` policy with a version `1` policy, and all of the conditions in the version `3` policy are lost.
func (DataPolicyIamPolicyOutput) Location ¶
func (o DataPolicyIamPolicyOutput) Location() pulumi.StringOutput
func (DataPolicyIamPolicyOutput) Project ¶
func (o DataPolicyIamPolicyOutput) Project() pulumi.StringOutput
func (DataPolicyIamPolicyOutput) ToDataPolicyIamPolicyOutput ¶
func (o DataPolicyIamPolicyOutput) ToDataPolicyIamPolicyOutput() DataPolicyIamPolicyOutput
func (DataPolicyIamPolicyOutput) ToDataPolicyIamPolicyOutputWithContext ¶
func (o DataPolicyIamPolicyOutput) ToDataPolicyIamPolicyOutputWithContext(ctx context.Context) DataPolicyIamPolicyOutput
func (DataPolicyIamPolicyOutput) Version ¶
func (o DataPolicyIamPolicyOutput) Version() pulumi.IntOutput
Specifies the format of the policy. Valid values are `0`, `1`, and `3`. Requests that specify an invalid value are rejected. Any operation that affects conditional role bindings must specify version `3`. This requirement applies to the following operations: * Getting a policy that includes a conditional role binding * Adding a conditional role binding to a policy * Changing a conditional role binding in a policy * Removing any role binding, with or without a condition, from a policy that includes conditions **Important:** If you use IAM Conditions, you must include the `etag` field whenever you call `setIamPolicy`. If you omit this field, then IAM allows you to overwrite a version `3` policy with a version `1` policy, and all of the conditions in the version `3` policy are lost. If a policy does not include any conditions, operations on that policy may specify any valid version or leave the field unset. To learn which resources support conditions in their IAM policies, see the [IAM documentation](https://cloud.google.com/iam/help/conditions/resource-policies).
type DataPolicyIamPolicyState ¶
type DataPolicyIamPolicyState struct { }
func (DataPolicyIamPolicyState) ElementType ¶
func (DataPolicyIamPolicyState) ElementType() reflect.Type
type DataPolicyInput ¶
type DataPolicyInput interface { pulumi.Input ToDataPolicyOutput() DataPolicyOutput ToDataPolicyOutputWithContext(ctx context.Context) DataPolicyOutput }
type DataPolicyOutput ¶
type DataPolicyOutput struct{ *pulumi.OutputState }
func (DataPolicyOutput) DataMaskingPolicy ¶
func (o DataPolicyOutput) DataMaskingPolicy() DataMaskingPolicyResponseOutput
The data masking policy that specifies the data masking rule to use.
func (DataPolicyOutput) DataPolicyId ¶
func (o DataPolicyOutput) DataPolicyId() pulumi.StringOutput
User-assigned (human readable) ID of the data policy that needs to be unique within a project. Used as {data_policy_id} in part of the resource name.
func (DataPolicyOutput) DataPolicyType ¶
func (o DataPolicyOutput) DataPolicyType() pulumi.StringOutput
Type of data policy.
func (DataPolicyOutput) ElementType ¶
func (DataPolicyOutput) ElementType() reflect.Type
func (DataPolicyOutput) Location ¶
func (o DataPolicyOutput) Location() pulumi.StringOutput
func (DataPolicyOutput) Name ¶
func (o DataPolicyOutput) Name() pulumi.StringOutput
Resource name of this data policy, in the format of `projects/{project_number}/locations/{location_id}/dataPolicies/{data_policy_id}`.
func (DataPolicyOutput) PolicyTag ¶
func (o DataPolicyOutput) PolicyTag() pulumi.StringOutput
Policy tag resource name, in the format of `projects/{project_number}/locations/{location_id}/taxonomies/{taxonomy_id}/policyTags/{policyTag_id}`.
func (DataPolicyOutput) Project ¶
func (o DataPolicyOutput) Project() pulumi.StringOutput
func (DataPolicyOutput) ToDataPolicyOutput ¶
func (o DataPolicyOutput) ToDataPolicyOutput() DataPolicyOutput
func (DataPolicyOutput) ToDataPolicyOutputWithContext ¶
func (o DataPolicyOutput) ToDataPolicyOutputWithContext(ctx context.Context) DataPolicyOutput
type DataPolicyState ¶
type DataPolicyState struct { }
func (DataPolicyState) ElementType ¶
func (DataPolicyState) ElementType() reflect.Type
type Expr ¶
type Expr struct { // Optional. Description of the expression. This is a longer text which describes the expression, e.g. when hovered over it in a UI. Description *string `pulumi:"description"` // Textual representation of an expression in Common Expression Language syntax. Expression *string `pulumi:"expression"` // Optional. String indicating the location of the expression for error reporting, e.g. a file name and a position in the file. Location *string `pulumi:"location"` // Optional. Title for the expression, i.e. a short string describing its purpose. This can be used e.g. in UIs which allow to enter the expression. Title *string `pulumi:"title"` }
Represents a textual expression in the Common Expression Language (CEL) syntax. CEL is a C-like expression language. The syntax and semantics of CEL are documented at https://github.com/google/cel-spec. Example (Comparison): title: "Summary size limit" description: "Determines if a summary is less than 100 chars" expression: "document.summary.size() < 100" Example (Equality): title: "Requestor is owner" description: "Determines if requestor is the document owner" expression: "document.owner == request.auth.claims.email" Example (Logic): title: "Public documents" description: "Determine whether the document should be publicly visible" expression: "document.type != 'private' && document.type != 'internal'" Example (Data Manipulation): title: "Notification string" description: "Create a notification string with a timestamp." expression: "'New message received at ' + string(document.create_time)" The exact variables and functions that may be referenced within an expression are determined by the service that evaluates it. See the service documentation for additional information.
type ExprArgs ¶
type ExprArgs struct { // Optional. Description of the expression. This is a longer text which describes the expression, e.g. when hovered over it in a UI. Description pulumi.StringPtrInput `pulumi:"description"` // Textual representation of an expression in Common Expression Language syntax. Expression pulumi.StringPtrInput `pulumi:"expression"` // Optional. String indicating the location of the expression for error reporting, e.g. a file name and a position in the file. Location pulumi.StringPtrInput `pulumi:"location"` // Optional. Title for the expression, i.e. a short string describing its purpose. This can be used e.g. in UIs which allow to enter the expression. Title pulumi.StringPtrInput `pulumi:"title"` }
Represents a textual expression in the Common Expression Language (CEL) syntax. CEL is a C-like expression language. The syntax and semantics of CEL are documented at https://github.com/google/cel-spec. Example (Comparison): title: "Summary size limit" description: "Determines if a summary is less than 100 chars" expression: "document.summary.size() < 100" Example (Equality): title: "Requestor is owner" description: "Determines if requestor is the document owner" expression: "document.owner == request.auth.claims.email" Example (Logic): title: "Public documents" description: "Determine whether the document should be publicly visible" expression: "document.type != 'private' && document.type != 'internal'" Example (Data Manipulation): title: "Notification string" description: "Create a notification string with a timestamp." expression: "'New message received at ' + string(document.create_time)" The exact variables and functions that may be referenced within an expression are determined by the service that evaluates it. See the service documentation for additional information.
func (ExprArgs) ElementType ¶
func (ExprArgs) ToExprOutput ¶
func (i ExprArgs) ToExprOutput() ExprOutput
func (ExprArgs) ToExprOutputWithContext ¶
func (i ExprArgs) ToExprOutputWithContext(ctx context.Context) ExprOutput
func (ExprArgs) ToExprPtrOutput ¶
func (i ExprArgs) ToExprPtrOutput() ExprPtrOutput
func (ExprArgs) ToExprPtrOutputWithContext ¶
func (i ExprArgs) ToExprPtrOutputWithContext(ctx context.Context) ExprPtrOutput
type ExprInput ¶
type ExprInput interface { pulumi.Input ToExprOutput() ExprOutput ToExprOutputWithContext(context.Context) ExprOutput }
ExprInput is an input type that accepts ExprArgs and ExprOutput values. You can construct a concrete instance of `ExprInput` via:
ExprArgs{...}
type ExprOutput ¶
type ExprOutput struct{ *pulumi.OutputState }
Represents a textual expression in the Common Expression Language (CEL) syntax. CEL is a C-like expression language. The syntax and semantics of CEL are documented at https://github.com/google/cel-spec. Example (Comparison): title: "Summary size limit" description: "Determines if a summary is less than 100 chars" expression: "document.summary.size() < 100" Example (Equality): title: "Requestor is owner" description: "Determines if requestor is the document owner" expression: "document.owner == request.auth.claims.email" Example (Logic): title: "Public documents" description: "Determine whether the document should be publicly visible" expression: "document.type != 'private' && document.type != 'internal'" Example (Data Manipulation): title: "Notification string" description: "Create a notification string with a timestamp." expression: "'New message received at ' + string(document.create_time)" The exact variables and functions that may be referenced within an expression are determined by the service that evaluates it. See the service documentation for additional information.
func (ExprOutput) Description ¶
func (o ExprOutput) Description() pulumi.StringPtrOutput
Optional. Description of the expression. This is a longer text which describes the expression, e.g. when hovered over it in a UI.
func (ExprOutput) ElementType ¶
func (ExprOutput) ElementType() reflect.Type
func (ExprOutput) Expression ¶
func (o ExprOutput) Expression() pulumi.StringPtrOutput
Textual representation of an expression in Common Expression Language syntax.
func (ExprOutput) Location ¶
func (o ExprOutput) Location() pulumi.StringPtrOutput
Optional. String indicating the location of the expression for error reporting, e.g. a file name and a position in the file.
func (ExprOutput) Title ¶
func (o ExprOutput) Title() pulumi.StringPtrOutput
Optional. Title for the expression, i.e. a short string describing its purpose. This can be used e.g. in UIs which allow to enter the expression.
func (ExprOutput) ToExprOutput ¶
func (o ExprOutput) ToExprOutput() ExprOutput
func (ExprOutput) ToExprOutputWithContext ¶
func (o ExprOutput) ToExprOutputWithContext(ctx context.Context) ExprOutput
func (ExprOutput) ToExprPtrOutput ¶
func (o ExprOutput) ToExprPtrOutput() ExprPtrOutput
func (ExprOutput) ToExprPtrOutputWithContext ¶
func (o ExprOutput) ToExprPtrOutputWithContext(ctx context.Context) ExprPtrOutput
type ExprPtrInput ¶
type ExprPtrInput interface { pulumi.Input ToExprPtrOutput() ExprPtrOutput ToExprPtrOutputWithContext(context.Context) ExprPtrOutput }
ExprPtrInput is an input type that accepts ExprArgs, ExprPtr and ExprPtrOutput values. You can construct a concrete instance of `ExprPtrInput` via:
ExprArgs{...} or: nil
func ExprPtr ¶
func ExprPtr(v *ExprArgs) ExprPtrInput
type ExprPtrOutput ¶
type ExprPtrOutput struct{ *pulumi.OutputState }
func (ExprPtrOutput) Description ¶
func (o ExprPtrOutput) Description() pulumi.StringPtrOutput
Optional. Description of the expression. This is a longer text which describes the expression, e.g. when hovered over it in a UI.
func (ExprPtrOutput) Elem ¶
func (o ExprPtrOutput) Elem() ExprOutput
func (ExprPtrOutput) ElementType ¶
func (ExprPtrOutput) ElementType() reflect.Type
func (ExprPtrOutput) Expression ¶
func (o ExprPtrOutput) Expression() pulumi.StringPtrOutput
Textual representation of an expression in Common Expression Language syntax.
func (ExprPtrOutput) Location ¶
func (o ExprPtrOutput) Location() pulumi.StringPtrOutput
Optional. String indicating the location of the expression for error reporting, e.g. a file name and a position in the file.
func (ExprPtrOutput) Title ¶
func (o ExprPtrOutput) Title() pulumi.StringPtrOutput
Optional. Title for the expression, i.e. a short string describing its purpose. This can be used e.g. in UIs which allow to enter the expression.
func (ExprPtrOutput) ToExprPtrOutput ¶
func (o ExprPtrOutput) ToExprPtrOutput() ExprPtrOutput
func (ExprPtrOutput) ToExprPtrOutputWithContext ¶
func (o ExprPtrOutput) ToExprPtrOutputWithContext(ctx context.Context) ExprPtrOutput
type ExprResponse ¶
type ExprResponse struct { // Optional. Description of the expression. This is a longer text which describes the expression, e.g. when hovered over it in a UI. Description string `pulumi:"description"` // Textual representation of an expression in Common Expression Language syntax. Expression string `pulumi:"expression"` // Optional. String indicating the location of the expression for error reporting, e.g. a file name and a position in the file. Location string `pulumi:"location"` // Optional. Title for the expression, i.e. a short string describing its purpose. This can be used e.g. in UIs which allow to enter the expression. Title string `pulumi:"title"` }
Represents a textual expression in the Common Expression Language (CEL) syntax. CEL is a C-like expression language. The syntax and semantics of CEL are documented at https://github.com/google/cel-spec. Example (Comparison): title: "Summary size limit" description: "Determines if a summary is less than 100 chars" expression: "document.summary.size() < 100" Example (Equality): title: "Requestor is owner" description: "Determines if requestor is the document owner" expression: "document.owner == request.auth.claims.email" Example (Logic): title: "Public documents" description: "Determine whether the document should be publicly visible" expression: "document.type != 'private' && document.type != 'internal'" Example (Data Manipulation): title: "Notification string" description: "Create a notification string with a timestamp." expression: "'New message received at ' + string(document.create_time)" The exact variables and functions that may be referenced within an expression are determined by the service that evaluates it. See the service documentation for additional information.
type ExprResponseOutput ¶
type ExprResponseOutput struct{ *pulumi.OutputState }
Represents a textual expression in the Common Expression Language (CEL) syntax. CEL is a C-like expression language. The syntax and semantics of CEL are documented at https://github.com/google/cel-spec. Example (Comparison): title: "Summary size limit" description: "Determines if a summary is less than 100 chars" expression: "document.summary.size() < 100" Example (Equality): title: "Requestor is owner" description: "Determines if requestor is the document owner" expression: "document.owner == request.auth.claims.email" Example (Logic): title: "Public documents" description: "Determine whether the document should be publicly visible" expression: "document.type != 'private' && document.type != 'internal'" Example (Data Manipulation): title: "Notification string" description: "Create a notification string with a timestamp." expression: "'New message received at ' + string(document.create_time)" The exact variables and functions that may be referenced within an expression are determined by the service that evaluates it. See the service documentation for additional information.
func (ExprResponseOutput) Description ¶
func (o ExprResponseOutput) Description() pulumi.StringOutput
Optional. Description of the expression. This is a longer text which describes the expression, e.g. when hovered over it in a UI.
func (ExprResponseOutput) ElementType ¶
func (ExprResponseOutput) ElementType() reflect.Type
func (ExprResponseOutput) Expression ¶
func (o ExprResponseOutput) Expression() pulumi.StringOutput
Textual representation of an expression in Common Expression Language syntax.
func (ExprResponseOutput) Location ¶
func (o ExprResponseOutput) Location() pulumi.StringOutput
Optional. String indicating the location of the expression for error reporting, e.g. a file name and a position in the file.
func (ExprResponseOutput) Title ¶
func (o ExprResponseOutput) Title() pulumi.StringOutput
Optional. Title for the expression, i.e. a short string describing its purpose. This can be used e.g. in UIs which allow to enter the expression.
func (ExprResponseOutput) ToExprResponseOutput ¶
func (o ExprResponseOutput) ToExprResponseOutput() ExprResponseOutput
func (ExprResponseOutput) ToExprResponseOutputWithContext ¶
func (o ExprResponseOutput) ToExprResponseOutputWithContext(ctx context.Context) ExprResponseOutput
type LookupDataPolicyArgs ¶
type LookupDataPolicyIamPolicyOutputArgs ¶
type LookupDataPolicyIamPolicyOutputArgs struct { DataPolicyId pulumi.StringInput `pulumi:"dataPolicyId"` Location pulumi.StringInput `pulumi:"location"` Project pulumi.StringPtrInput `pulumi:"project"` }
func (LookupDataPolicyIamPolicyOutputArgs) ElementType ¶
func (LookupDataPolicyIamPolicyOutputArgs) ElementType() reflect.Type
type LookupDataPolicyIamPolicyResult ¶
type LookupDataPolicyIamPolicyResult struct { // Specifies cloud audit logging configuration for this policy. AuditConfigs []AuditConfigResponse `pulumi:"auditConfigs"` // Associates a list of `members`, or principals, with a `role`. Optionally, may specify a `condition` that determines how and when the `bindings` are applied. Each of the `bindings` must contain at least one principal. The `bindings` in a `Policy` can refer to up to 1,500 principals; up to 250 of these principals can be Google groups. Each occurrence of a principal counts towards these limits. For example, if the `bindings` grant 50 different roles to `user:alice@example.com`, and not to any other principal, then you can add another 1,450 principals to the `bindings` in the `Policy`. Bindings []BindingResponse `pulumi:"bindings"` // `etag` is used for optimistic concurrency control as a way to help prevent simultaneous updates of a policy from overwriting each other. It is strongly suggested that systems make use of the `etag` in the read-modify-write cycle to perform policy updates in order to avoid race conditions: An `etag` is returned in the response to `getIamPolicy`, and systems are expected to put that etag in the request to `setIamPolicy` to ensure that their change will be applied to the same version of the policy. **Important:** If you use IAM Conditions, you must include the `etag` field whenever you call `setIamPolicy`. If you omit this field, then IAM allows you to overwrite a version `3` policy with a version `1` policy, and all of the conditions in the version `3` policy are lost. Etag string `pulumi:"etag"` // Specifies the format of the policy. Valid values are `0`, `1`, and `3`. Requests that specify an invalid value are rejected. Any operation that affects conditional role bindings must specify version `3`. This requirement applies to the following operations: * Getting a policy that includes a conditional role binding * Adding a conditional role binding to a policy * Changing a conditional role binding in a policy * Removing any role binding, with or without a condition, from a policy that includes conditions **Important:** If you use IAM Conditions, you must include the `etag` field whenever you call `setIamPolicy`. If you omit this field, then IAM allows you to overwrite a version `3` policy with a version `1` policy, and all of the conditions in the version `3` policy are lost. If a policy does not include any conditions, operations on that policy may specify any valid version or leave the field unset. To learn which resources support conditions in their IAM policies, see the [IAM documentation](https://cloud.google.com/iam/help/conditions/resource-policies). Version int `pulumi:"version"` }
func LookupDataPolicyIamPolicy ¶
func LookupDataPolicyIamPolicy(ctx *pulumi.Context, args *LookupDataPolicyIamPolicyArgs, opts ...pulumi.InvokeOption) (*LookupDataPolicyIamPolicyResult, error)
Gets the IAM policy for the specified data policy.
type LookupDataPolicyIamPolicyResultOutput ¶
type LookupDataPolicyIamPolicyResultOutput struct{ *pulumi.OutputState }
func LookupDataPolicyIamPolicyOutput ¶
func LookupDataPolicyIamPolicyOutput(ctx *pulumi.Context, args LookupDataPolicyIamPolicyOutputArgs, opts ...pulumi.InvokeOption) LookupDataPolicyIamPolicyResultOutput
func (LookupDataPolicyIamPolicyResultOutput) AuditConfigs ¶
func (o LookupDataPolicyIamPolicyResultOutput) AuditConfigs() AuditConfigResponseArrayOutput
Specifies cloud audit logging configuration for this policy.
func (LookupDataPolicyIamPolicyResultOutput) Bindings ¶
func (o LookupDataPolicyIamPolicyResultOutput) Bindings() BindingResponseArrayOutput
Associates a list of `members`, or principals, with a `role`. Optionally, may specify a `condition` that determines how and when the `bindings` are applied. Each of the `bindings` must contain at least one principal. The `bindings` in a `Policy` can refer to up to 1,500 principals; up to 250 of these principals can be Google groups. Each occurrence of a principal counts towards these limits. For example, if the `bindings` grant 50 different roles to `user:alice@example.com`, and not to any other principal, then you can add another 1,450 principals to the `bindings` in the `Policy`.
func (LookupDataPolicyIamPolicyResultOutput) ElementType ¶
func (LookupDataPolicyIamPolicyResultOutput) ElementType() reflect.Type
func (LookupDataPolicyIamPolicyResultOutput) Etag ¶
func (o LookupDataPolicyIamPolicyResultOutput) Etag() pulumi.StringOutput
`etag` is used for optimistic concurrency control as a way to help prevent simultaneous updates of a policy from overwriting each other. It is strongly suggested that systems make use of the `etag` in the read-modify-write cycle to perform policy updates in order to avoid race conditions: An `etag` is returned in the response to `getIamPolicy`, and systems are expected to put that etag in the request to `setIamPolicy` to ensure that their change will be applied to the same version of the policy. **Important:** If you use IAM Conditions, you must include the `etag` field whenever you call `setIamPolicy`. If you omit this field, then IAM allows you to overwrite a version `3` policy with a version `1` policy, and all of the conditions in the version `3` policy are lost.
func (LookupDataPolicyIamPolicyResultOutput) ToLookupDataPolicyIamPolicyResultOutput ¶
func (o LookupDataPolicyIamPolicyResultOutput) ToLookupDataPolicyIamPolicyResultOutput() LookupDataPolicyIamPolicyResultOutput
func (LookupDataPolicyIamPolicyResultOutput) ToLookupDataPolicyIamPolicyResultOutputWithContext ¶
func (o LookupDataPolicyIamPolicyResultOutput) ToLookupDataPolicyIamPolicyResultOutputWithContext(ctx context.Context) LookupDataPolicyIamPolicyResultOutput
func (LookupDataPolicyIamPolicyResultOutput) Version ¶
func (o LookupDataPolicyIamPolicyResultOutput) Version() pulumi.IntOutput
Specifies the format of the policy. Valid values are `0`, `1`, and `3`. Requests that specify an invalid value are rejected. Any operation that affects conditional role bindings must specify version `3`. This requirement applies to the following operations: * Getting a policy that includes a conditional role binding * Adding a conditional role binding to a policy * Changing a conditional role binding in a policy * Removing any role binding, with or without a condition, from a policy that includes conditions **Important:** If you use IAM Conditions, you must include the `etag` field whenever you call `setIamPolicy`. If you omit this field, then IAM allows you to overwrite a version `3` policy with a version `1` policy, and all of the conditions in the version `3` policy are lost. If a policy does not include any conditions, operations on that policy may specify any valid version or leave the field unset. To learn which resources support conditions in their IAM policies, see the [IAM documentation](https://cloud.google.com/iam/help/conditions/resource-policies).
type LookupDataPolicyOutputArgs ¶
type LookupDataPolicyOutputArgs struct { DataPolicyId pulumi.StringInput `pulumi:"dataPolicyId"` Location pulumi.StringInput `pulumi:"location"` Project pulumi.StringPtrInput `pulumi:"project"` }
func (LookupDataPolicyOutputArgs) ElementType ¶
func (LookupDataPolicyOutputArgs) ElementType() reflect.Type
type LookupDataPolicyResult ¶
type LookupDataPolicyResult struct { // The data masking policy that specifies the data masking rule to use. DataMaskingPolicy DataMaskingPolicyResponse `pulumi:"dataMaskingPolicy"` // User-assigned (human readable) ID of the data policy that needs to be unique within a project. Used as {data_policy_id} in part of the resource name. DataPolicyId string `pulumi:"dataPolicyId"` // Type of data policy. DataPolicyType string `pulumi:"dataPolicyType"` // Resource name of this data policy, in the format of `projects/{project_number}/locations/{location_id}/dataPolicies/{data_policy_id}`. Name string `pulumi:"name"` // Policy tag resource name, in the format of `projects/{project_number}/locations/{location_id}/taxonomies/{taxonomy_id}/policyTags/{policyTag_id}`. PolicyTag string `pulumi:"policyTag"` }
func LookupDataPolicy ¶
func LookupDataPolicy(ctx *pulumi.Context, args *LookupDataPolicyArgs, opts ...pulumi.InvokeOption) (*LookupDataPolicyResult, error)
Gets the data policy specified by its resource name.
type LookupDataPolicyResultOutput ¶
type LookupDataPolicyResultOutput struct{ *pulumi.OutputState }
func LookupDataPolicyOutput ¶
func LookupDataPolicyOutput(ctx *pulumi.Context, args LookupDataPolicyOutputArgs, opts ...pulumi.InvokeOption) LookupDataPolicyResultOutput
func (LookupDataPolicyResultOutput) DataMaskingPolicy ¶
func (o LookupDataPolicyResultOutput) DataMaskingPolicy() DataMaskingPolicyResponseOutput
The data masking policy that specifies the data masking rule to use.
func (LookupDataPolicyResultOutput) DataPolicyId ¶
func (o LookupDataPolicyResultOutput) DataPolicyId() pulumi.StringOutput
User-assigned (human readable) ID of the data policy that needs to be unique within a project. Used as {data_policy_id} in part of the resource name.
func (LookupDataPolicyResultOutput) DataPolicyType ¶
func (o LookupDataPolicyResultOutput) DataPolicyType() pulumi.StringOutput
Type of data policy.
func (LookupDataPolicyResultOutput) ElementType ¶
func (LookupDataPolicyResultOutput) ElementType() reflect.Type
func (LookupDataPolicyResultOutput) Name ¶
func (o LookupDataPolicyResultOutput) Name() pulumi.StringOutput
Resource name of this data policy, in the format of `projects/{project_number}/locations/{location_id}/dataPolicies/{data_policy_id}`.
func (LookupDataPolicyResultOutput) PolicyTag ¶
func (o LookupDataPolicyResultOutput) PolicyTag() pulumi.StringOutput
Policy tag resource name, in the format of `projects/{project_number}/locations/{location_id}/taxonomies/{taxonomy_id}/policyTags/{policyTag_id}`.
func (LookupDataPolicyResultOutput) ToLookupDataPolicyResultOutput ¶
func (o LookupDataPolicyResultOutput) ToLookupDataPolicyResultOutput() LookupDataPolicyResultOutput
func (LookupDataPolicyResultOutput) ToLookupDataPolicyResultOutputWithContext ¶
func (o LookupDataPolicyResultOutput) ToLookupDataPolicyResultOutputWithContext(ctx context.Context) LookupDataPolicyResultOutput