v1

package
v0.32.0 Latest Latest
Warning

This package is not in the latest version of its module.

 Go to latest Published: Nov 29, 2023 License: Apache-2.0 Imports: 8 Imported by: 0

Documentation

Index

Constants

This section is empty.

Variables

This section is empty.

Functions

This section is empty.

Types

type Backup added in v0.16.0 

type Backup struct {
	pulumi.CustomResourceState

	// Required. Backup Id, unique name to identify the backups with the following restrictions: * Must be lowercase letters, numbers, and hyphens * Must start with a letter. * Must contain between 1-63 characters. * Must end with a number or a letter. * Must be unique within the domain.
	BackupId pulumi.StringOutput `pulumi:"backupId"`
	// The time the backups was created.
	CreateTime pulumi.StringOutput `pulumi:"createTime"`
	DomainId   pulumi.StringOutput `pulumi:"domainId"`
	// Optional. Resource labels to represent user provided metadata.
	Labels pulumi.StringMapOutput `pulumi:"labels"`
	// The unique name of the Backup in the form of `projects/{project_id}/locations/global/domains/{domain_name}/backups/{name}`
	Name    pulumi.StringOutput `pulumi:"name"`
	Project pulumi.StringOutput `pulumi:"project"`
	// The current state of the backup.
	State pulumi.StringOutput `pulumi:"state"`
	// Additional information about the current status of this backup, if available.
	StatusMessage pulumi.StringOutput `pulumi:"statusMessage"`
	// Indicates whether it’s an on-demand backup or scheduled.
	Type pulumi.StringOutput `pulumi:"type"`
	// Last update time.
	UpdateTime pulumi.StringOutput `pulumi:"updateTime"`
}

Creates a Backup for a domain. Auto-naming is currently not supported for this resource.

func GetBackup added in v0.16.0 

func GetBackup(ctx *pulumi.Context,
	name string, id pulumi.IDInput, state *BackupState, opts ...pulumi.ResourceOption) (*Backup, error)

GetBackup gets an existing Backup resource's state with the given name, ID, and optional state properties that are used to uniquely qualify the lookup (nil if not required).

func NewBackup added in v0.16.0 

func NewBackup(ctx *pulumi.Context,
	name string, args *BackupArgs, opts ...pulumi.ResourceOption) (*Backup, error)

NewBackup registers a new resource with the given unique name, arguments, and options.

func (*Backup) ElementType added in v0.16.0 

func (*Backup) ElementType() reflect.Type

func (*Backup) ToBackupOutput added in v0.16.0 

func (i *Backup) ToBackupOutput() BackupOutput

func (*Backup) ToBackupOutputWithContext added in v0.16.0 

func (i *Backup) ToBackupOutputWithContext(ctx context.Context) BackupOutput

type BackupArgs added in v0.16.0 

type BackupArgs struct {
	// Required. Backup Id, unique name to identify the backups with the following restrictions: * Must be lowercase letters, numbers, and hyphens * Must start with a letter. * Must contain between 1-63 characters. * Must end with a number or a letter. * Must be unique within the domain.
	BackupId pulumi.StringInput
	DomainId pulumi.StringInput
	// Optional. Resource labels to represent user provided metadata.
	Labels  pulumi.StringMapInput
	Project pulumi.StringPtrInput
}

The set of arguments for constructing a Backup resource.

func (BackupArgs) ElementType added in v0.16.0 

func (BackupArgs) ElementType() reflect.Type

type BackupInput added in v0.16.0 

type BackupInput interface {
	pulumi.Input

	ToBackupOutput() BackupOutput
	ToBackupOutputWithContext(ctx context.Context) BackupOutput
}

type BackupOutput added in v0.16.0 

type BackupOutput struct{ *pulumi.OutputState }

func (BackupOutput) BackupId added in v0.21.0 

func (o BackupOutput) BackupId() pulumi.StringOutput

Required. Backup Id, unique name to identify the backups with the following restrictions: * Must be lowercase letters, numbers, and hyphens * Must start with a letter. * Must contain between 1-63 characters. * Must end with a number or a letter. * Must be unique within the domain.

func (BackupOutput) CreateTime added in v0.19.0 

func (o BackupOutput) CreateTime() pulumi.StringOutput

The time the backups was created.

func (BackupOutput) DomainId added in v0.21.0 

func (o BackupOutput) DomainId() pulumi.StringOutput

func (BackupOutput) ElementType added in v0.16.0 

func (BackupOutput) ElementType() reflect.Type

func (BackupOutput) Labels added in v0.19.0 

func (o BackupOutput) Labels() pulumi.StringMapOutput

Optional. Resource labels to represent user provided metadata.

func (BackupOutput) Name added in v0.19.0 

func (o BackupOutput) Name() pulumi.StringOutput

The unique name of the Backup in the form of `projects/{project_id}/locations/global/domains/{domain_name}/backups/{name}`

func (BackupOutput) Project added in v0.21.0 

func (o BackupOutput) Project() pulumi.StringOutput

func (BackupOutput) State added in v0.19.0 

func (o BackupOutput) State() pulumi.StringOutput

The current state of the backup.

func (BackupOutput) StatusMessage added in v0.19.0 

func (o BackupOutput) StatusMessage() pulumi.StringOutput

Additional information about the current status of this backup, if available.

func (BackupOutput) ToBackupOutput added in v0.16.0 

func (o BackupOutput) ToBackupOutput() BackupOutput

func (BackupOutput) ToBackupOutputWithContext added in v0.16.0 

func (o BackupOutput) ToBackupOutputWithContext(ctx context.Context) BackupOutput

func (BackupOutput) Type added in v0.19.0 

func (o BackupOutput) Type() pulumi.StringOutput

Indicates whether it’s an on-demand backup or scheduled.

func (BackupOutput) UpdateTime added in v0.19.0 

func (o BackupOutput) UpdateTime() pulumi.StringOutput

Last update time.

type BackupState added in v0.16.0 

type BackupState struct {
}

func (BackupState) ElementType added in v0.16.0 

func (BackupState) ElementType() reflect.Type

type Binding 

type Binding struct {
	// The condition that is associated with this binding. If the condition evaluates to `true`, then this binding applies to the current request. If the condition evaluates to `false`, then this binding does not apply to the current request. However, a different role binding might grant the same role to one or more of the principals in this binding. To learn which resources support conditions in their IAM policies, see the [IAM documentation](https://cloud.google.com/iam/help/conditions/resource-policies).
	Condition *Expr `pulumi:"condition"`
	// Specifies the principals requesting access for a Google Cloud resource. `members` can have the following values: * `allUsers`: A special identifier that represents anyone who is on the internet; with or without a Google account. * `allAuthenticatedUsers`: A special identifier that represents anyone who is authenticated with a Google account or a service account. Does not include identities that come from external identity providers (IdPs) through identity federation. * `user:{emailid}`: An email address that represents a specific Google account. For example, `alice@example.com` . * `serviceAccount:{emailid}`: An email address that represents a Google service account. For example, `my-other-app@appspot.gserviceaccount.com`. * `serviceAccount:{projectid}.svc.id.goog[{namespace}/{kubernetes-sa}]`: An identifier for a [Kubernetes service account](https://cloud.google.com/kubernetes-engine/docs/how-to/kubernetes-service-accounts). For example, `my-project.svc.id.goog[my-namespace/my-kubernetes-sa]`. * `group:{emailid}`: An email address that represents a Google group. For example, `admins@example.com`. * `domain:{domain}`: The G Suite domain (primary) that represents all the users of that domain. For example, `google.com` or `example.com`. * `deleted:user:{emailid}?uid={uniqueid}`: An email address (plus unique identifier) representing a user that has been recently deleted. For example, `alice@example.com?uid=123456789012345678901`. If the user is recovered, this value reverts to `user:{emailid}` and the recovered user retains the role in the binding. * `deleted:serviceAccount:{emailid}?uid={uniqueid}`: An email address (plus unique identifier) representing a service account that has been recently deleted. For example, `my-other-app@appspot.gserviceaccount.com?uid=123456789012345678901`. If the service account is undeleted, this value reverts to `serviceAccount:{emailid}` and the undeleted service account retains the role in the binding. * `deleted:group:{emailid}?uid={uniqueid}`: An email address (plus unique identifier) representing a Google group that has been recently deleted. For example, `admins@example.com?uid=123456789012345678901`. If the group is recovered, this value reverts to `group:{emailid}` and the recovered group retains the role in the binding.
	Members []string `pulumi:"members"`
	// Role that is assigned to the list of `members`, or principals. For example, `roles/viewer`, `roles/editor`, or `roles/owner`.
	Role *string `pulumi:"role"`
}

Associates `members`, or principals, with a `role`.

type BindingArgs 

type BindingArgs struct {
	// The condition that is associated with this binding. If the condition evaluates to `true`, then this binding applies to the current request. If the condition evaluates to `false`, then this binding does not apply to the current request. However, a different role binding might grant the same role to one or more of the principals in this binding. To learn which resources support conditions in their IAM policies, see the [IAM documentation](https://cloud.google.com/iam/help/conditions/resource-policies).
	Condition ExprPtrInput `pulumi:"condition"`
	// Specifies the principals requesting access for a Google Cloud resource. `members` can have the following values: * `allUsers`: A special identifier that represents anyone who is on the internet; with or without a Google account. * `allAuthenticatedUsers`: A special identifier that represents anyone who is authenticated with a Google account or a service account. Does not include identities that come from external identity providers (IdPs) through identity federation. * `user:{emailid}`: An email address that represents a specific Google account. For example, `alice@example.com` . * `serviceAccount:{emailid}`: An email address that represents a Google service account. For example, `my-other-app@appspot.gserviceaccount.com`. * `serviceAccount:{projectid}.svc.id.goog[{namespace}/{kubernetes-sa}]`: An identifier for a [Kubernetes service account](https://cloud.google.com/kubernetes-engine/docs/how-to/kubernetes-service-accounts). For example, `my-project.svc.id.goog[my-namespace/my-kubernetes-sa]`. * `group:{emailid}`: An email address that represents a Google group. For example, `admins@example.com`. * `domain:{domain}`: The G Suite domain (primary) that represents all the users of that domain. For example, `google.com` or `example.com`. * `deleted:user:{emailid}?uid={uniqueid}`: An email address (plus unique identifier) representing a user that has been recently deleted. For example, `alice@example.com?uid=123456789012345678901`. If the user is recovered, this value reverts to `user:{emailid}` and the recovered user retains the role in the binding. * `deleted:serviceAccount:{emailid}?uid={uniqueid}`: An email address (plus unique identifier) representing a service account that has been recently deleted. For example, `my-other-app@appspot.gserviceaccount.com?uid=123456789012345678901`. If the service account is undeleted, this value reverts to `serviceAccount:{emailid}` and the undeleted service account retains the role in the binding. * `deleted:group:{emailid}?uid={uniqueid}`: An email address (plus unique identifier) representing a Google group that has been recently deleted. For example, `admins@example.com?uid=123456789012345678901`. If the group is recovered, this value reverts to `group:{emailid}` and the recovered group retains the role in the binding.
	Members pulumi.StringArrayInput `pulumi:"members"`
	// Role that is assigned to the list of `members`, or principals. For example, `roles/viewer`, `roles/editor`, or `roles/owner`.
	Role pulumi.StringPtrInput `pulumi:"role"`
}

Associates `members`, or principals, with a `role`.

func (BindingArgs) ElementType 

func (BindingArgs) ElementType() reflect.Type

func (BindingArgs) ToBindingOutput 

func (i BindingArgs) ToBindingOutput() BindingOutput

func (BindingArgs) ToBindingOutputWithContext 

func (i BindingArgs) ToBindingOutputWithContext(ctx context.Context) BindingOutput

type BindingArray 

type BindingArray []BindingInput

func (BindingArray) ElementType 

func (BindingArray) ElementType() reflect.Type

func (BindingArray) ToBindingArrayOutput 

func (i BindingArray) ToBindingArrayOutput() BindingArrayOutput

func (BindingArray) ToBindingArrayOutputWithContext 

func (i BindingArray) ToBindingArrayOutputWithContext(ctx context.Context) BindingArrayOutput

type BindingArrayInput 

type BindingArrayInput interface {
	pulumi.Input

	ToBindingArrayOutput() BindingArrayOutput
	ToBindingArrayOutputWithContext(context.Context) BindingArrayOutput
}

BindingArrayInput is an input type that accepts BindingArray and BindingArrayOutput values. You can construct a concrete instance of `BindingArrayInput` via: 

BindingArray{ BindingArgs{...} }

type BindingArrayOutput 

type BindingArrayOutput struct{ *pulumi.OutputState }

func (BindingArrayOutput) ElementType 

func (BindingArrayOutput) ElementType() reflect.Type

func (BindingArrayOutput) Index 

func (o BindingArrayOutput) Index(i pulumi.IntInput) BindingOutput

func (BindingArrayOutput) ToBindingArrayOutput 

func (o BindingArrayOutput) ToBindingArrayOutput() BindingArrayOutput

func (BindingArrayOutput) ToBindingArrayOutputWithContext 

func (o BindingArrayOutput) ToBindingArrayOutputWithContext(ctx context.Context) BindingArrayOutput

type BindingInput 

type BindingInput interface {
	pulumi.Input

	ToBindingOutput() BindingOutput
	ToBindingOutputWithContext(context.Context) BindingOutput
}

BindingInput is an input type that accepts BindingArgs and BindingOutput values. You can construct a concrete instance of `BindingInput` via: 

BindingArgs{...}

type BindingOutput 

type BindingOutput struct{ *pulumi.OutputState }

Associates `members`, or principals, with a `role`.

func (BindingOutput) Condition 

func (o BindingOutput) Condition() ExprPtrOutput

The condition that is associated with this binding. If the condition evaluates to `true`, then this binding applies to the current request. If the condition evaluates to `false`, then this binding does not apply to the current request. However, a different role binding might grant the same role to one or more of the principals in this binding. To learn which resources support conditions in their IAM policies, see the [IAM documentation](https://cloud.google.com/iam/help/conditions/resource-policies).

func (BindingOutput) ElementType 

func (BindingOutput) ElementType() reflect.Type

func (BindingOutput) Members 

func (o BindingOutput) Members() pulumi.StringArrayOutput

Specifies the principals requesting access for a Google Cloud resource. `members` can have the following values: * `allUsers`: A special identifier that represents anyone who is on the internet; with or without a Google account. * `allAuthenticatedUsers`: A special identifier that represents anyone who is authenticated with a Google account or a service account. Does not include identities that come from external identity providers (IdPs) through identity federation. * `user:{emailid}`: An email address that represents a specific Google account. For example, `alice@example.com` . * `serviceAccount:{emailid}`: An email address that represents a Google service account. For example, `my-other-app@appspot.gserviceaccount.com`. * `serviceAccount:{projectid}.svc.id.goog[{namespace}/{kubernetes-sa}]`: An identifier for a [Kubernetes service account](https://cloud.google.com/kubernetes-engine/docs/how-to/kubernetes-service-accounts). For example, `my-project.svc.id.goog[my-namespace/my-kubernetes-sa]`. * `group:{emailid}`: An email address that represents a Google group. For example, `admins@example.com`. * `domain:{domain}`: The G Suite domain (primary) that represents all the users of that domain. For example, `google.com` or `example.com`. * `deleted:user:{emailid}?uid={uniqueid}`: An email address (plus unique identifier) representing a user that has been recently deleted. For example, `alice@example.com?uid=123456789012345678901`. If the user is recovered, this value reverts to `user:{emailid}` and the recovered user retains the role in the binding. * `deleted:serviceAccount:{emailid}?uid={uniqueid}`: An email address (plus unique identifier) representing a service account that has been recently deleted. For example, `my-other-app@appspot.gserviceaccount.com?uid=123456789012345678901`. If the service account is undeleted, this value reverts to `serviceAccount:{emailid}` and the undeleted service account retains the role in the binding. * `deleted:group:{emailid}?uid={uniqueid}`: An email address (plus unique identifier) representing a Google group that has been recently deleted. For example, `admins@example.com?uid=123456789012345678901`. If the group is recovered, this value reverts to `group:{emailid}` and the recovered group retains the role in the binding.

func (BindingOutput) Role 

func (o BindingOutput) Role() pulumi.StringPtrOutput

Role that is assigned to the list of `members`, or principals. For example, `roles/viewer`, `roles/editor`, or `roles/owner`.

func (BindingOutput) ToBindingOutput 

func (o BindingOutput) ToBindingOutput() BindingOutput

func (BindingOutput) ToBindingOutputWithContext 

func (o BindingOutput) ToBindingOutputWithContext(ctx context.Context) BindingOutput

type BindingResponse 

type BindingResponse struct {
	// The condition that is associated with this binding. If the condition evaluates to `true`, then this binding applies to the current request. If the condition evaluates to `false`, then this binding does not apply to the current request. However, a different role binding might grant the same role to one or more of the principals in this binding. To learn which resources support conditions in their IAM policies, see the [IAM documentation](https://cloud.google.com/iam/help/conditions/resource-policies).
	Condition ExprResponse `pulumi:"condition"`
	// Specifies the principals requesting access for a Google Cloud resource. `members` can have the following values: * `allUsers`: A special identifier that represents anyone who is on the internet; with or without a Google account. * `allAuthenticatedUsers`: A special identifier that represents anyone who is authenticated with a Google account or a service account. Does not include identities that come from external identity providers (IdPs) through identity federation. * `user:{emailid}`: An email address that represents a specific Google account. For example, `alice@example.com` . * `serviceAccount:{emailid}`: An email address that represents a Google service account. For example, `my-other-app@appspot.gserviceaccount.com`. * `serviceAccount:{projectid}.svc.id.goog[{namespace}/{kubernetes-sa}]`: An identifier for a [Kubernetes service account](https://cloud.google.com/kubernetes-engine/docs/how-to/kubernetes-service-accounts). For example, `my-project.svc.id.goog[my-namespace/my-kubernetes-sa]`. * `group:{emailid}`: An email address that represents a Google group. For example, `admins@example.com`. * `domain:{domain}`: The G Suite domain (primary) that represents all the users of that domain. For example, `google.com` or `example.com`. * `deleted:user:{emailid}?uid={uniqueid}`: An email address (plus unique identifier) representing a user that has been recently deleted. For example, `alice@example.com?uid=123456789012345678901`. If the user is recovered, this value reverts to `user:{emailid}` and the recovered user retains the role in the binding. * `deleted:serviceAccount:{emailid}?uid={uniqueid}`: An email address (plus unique identifier) representing a service account that has been recently deleted. For example, `my-other-app@appspot.gserviceaccount.com?uid=123456789012345678901`. If the service account is undeleted, this value reverts to `serviceAccount:{emailid}` and the undeleted service account retains the role in the binding. * `deleted:group:{emailid}?uid={uniqueid}`: An email address (plus unique identifier) representing a Google group that has been recently deleted. For example, `admins@example.com?uid=123456789012345678901`. If the group is recovered, this value reverts to `group:{emailid}` and the recovered group retains the role in the binding.
	Members []string `pulumi:"members"`
	// Role that is assigned to the list of `members`, or principals. For example, `roles/viewer`, `roles/editor`, or `roles/owner`.
	Role string `pulumi:"role"`
}

Associates `members`, or principals, with a `role`.

type BindingResponseArrayOutput 

type BindingResponseArrayOutput struct{ *pulumi.OutputState }

func (BindingResponseArrayOutput) ElementType 

func (BindingResponseArrayOutput) ElementType() reflect.Type

func (BindingResponseArrayOutput) Index 

func (o BindingResponseArrayOutput) Index(i pulumi.IntInput) BindingResponseOutput

func (BindingResponseArrayOutput) ToBindingResponseArrayOutput 

func (o BindingResponseArrayOutput) ToBindingResponseArrayOutput() BindingResponseArrayOutput

func (BindingResponseArrayOutput) ToBindingResponseArrayOutputWithContext 

func (o BindingResponseArrayOutput) ToBindingResponseArrayOutputWithContext(ctx context.Context) BindingResponseArrayOutput

type BindingResponseOutput 

type BindingResponseOutput struct{ *pulumi.OutputState }

Associates `members`, or principals, with a `role`.

func (BindingResponseOutput) Condition 

func (o BindingResponseOutput) Condition() ExprResponseOutput

The condition that is associated with this binding. If the condition evaluates to `true`, then this binding applies to the current request. If the condition evaluates to `false`, then this binding does not apply to the current request. However, a different role binding might grant the same role to one or more of the principals in this binding. To learn which resources support conditions in their IAM policies, see the [IAM documentation](https://cloud.google.com/iam/help/conditions/resource-policies).

func (BindingResponseOutput) ElementType 

func (BindingResponseOutput) ElementType() reflect.Type

func (BindingResponseOutput) Members 

func (o BindingResponseOutput) Members() pulumi.StringArrayOutput

Specifies the principals requesting access for a Google Cloud resource. `members` can have the following values: * `allUsers`: A special identifier that represents anyone who is on the internet; with or without a Google account. * `allAuthenticatedUsers`: A special identifier that represents anyone who is authenticated with a Google account or a service account. Does not include identities that come from external identity providers (IdPs) through identity federation. * `user:{emailid}`: An email address that represents a specific Google account. For example, `alice@example.com` . * `serviceAccount:{emailid}`: An email address that represents a Google service account. For example, `my-other-app@appspot.gserviceaccount.com`. * `serviceAccount:{projectid}.svc.id.goog[{namespace}/{kubernetes-sa}]`: An identifier for a [Kubernetes service account](https://cloud.google.com/kubernetes-engine/docs/how-to/kubernetes-service-accounts). For example, `my-project.svc.id.goog[my-namespace/my-kubernetes-sa]`. * `group:{emailid}`: An email address that represents a Google group. For example, `admins@example.com`. * `domain:{domain}`: The G Suite domain (primary) that represents all the users of that domain. For example, `google.com` or `example.com`. * `deleted:user:{emailid}?uid={uniqueid}`: An email address (plus unique identifier) representing a user that has been recently deleted. For example, `alice@example.com?uid=123456789012345678901`. If the user is recovered, this value reverts to `user:{emailid}` and the recovered user retains the role in the binding. * `deleted:serviceAccount:{emailid}?uid={uniqueid}`: An email address (plus unique identifier) representing a service account that has been recently deleted. For example, `my-other-app@appspot.gserviceaccount.com?uid=123456789012345678901`. If the service account is undeleted, this value reverts to `serviceAccount:{emailid}` and the undeleted service account retains the role in the binding. * `deleted:group:{emailid}?uid={uniqueid}`: An email address (plus unique identifier) representing a Google group that has been recently deleted. For example, `admins@example.com?uid=123456789012345678901`. If the group is recovered, this value reverts to `group:{emailid}` and the recovered group retains the role in the binding.

func (BindingResponseOutput) Role 

func (o BindingResponseOutput) Role() pulumi.StringOutput

Role that is assigned to the list of `members`, or principals. For example, `roles/viewer`, `roles/editor`, or `roles/owner`.

func (BindingResponseOutput) ToBindingResponseOutput 

func (o BindingResponseOutput) ToBindingResponseOutput() BindingResponseOutput

func (BindingResponseOutput) ToBindingResponseOutputWithContext 

func (o BindingResponseOutput) ToBindingResponseOutputWithContext(ctx context.Context) BindingResponseOutput

type Domain 

type Domain struct {
	pulumi.CustomResourceState

	// Optional. The name of delegated administrator account used to perform Active Directory operations. If not specified, `setupadmin` will be used.
	Admin pulumi.StringOutput `pulumi:"admin"`
	// Optional. Configuration for audit logs. True if audit logs are enabled, else false. Default is audit logs disabled.
	AuditLogsEnabled pulumi.BoolOutput `pulumi:"auditLogsEnabled"`
	// Optional. The full names of the Google Compute Engine [networks](/compute/docs/networks-and-firewalls#networks) the domain instance is connected to. Networks can be added using UpdateDomain. The domain is only available on networks listed in `authorized_networks`. If CIDR subnets overlap between networks, domain creation will fail.
	AuthorizedNetworks pulumi.StringArrayOutput `pulumi:"authorizedNetworks"`
	// The time the instance was created.
	CreateTime pulumi.StringOutput `pulumi:"createTime"`
	// Required. The fully qualified domain name. e.g. mydomain.myorganization.com, with the following restrictions: * Must contain only lowercase letters, numbers, periods and hyphens. * Must start with a letter. * Must contain between 2-64 characters. * Must end with a number or a letter. * Must not start with period. * First segment length (mydomain for example above) shouldn't exceed 15 chars. * The last segment cannot be fully numeric. * Must be unique within the customer project.
	DomainName pulumi.StringOutput `pulumi:"domainName"`
	// The fully-qualified domain name of the exposed domain used by clients to connect to the service. Similar to what would be chosen for an Active Directory set up on an internal network.
	Fqdn pulumi.StringOutput `pulumi:"fqdn"`
	// Optional. Resource labels that can contain user-provided metadata.
	Labels pulumi.StringMapOutput `pulumi:"labels"`
	// Locations where domain needs to be provisioned. regions e.g. us-west1 or us-east4 Service supports up to 4 locations at once. Each location will use a /26 block.
	Locations pulumi.StringArrayOutput `pulumi:"locations"`
	// The unique name of the domain using the form: `projects/{project_id}/locations/global/domains/{domain_name}`.
	Name    pulumi.StringOutput `pulumi:"name"`
	Project pulumi.StringOutput `pulumi:"project"`
	// The CIDR range of internal addresses that are reserved for this domain. Reserved networks must be /24 or larger. Ranges must be unique and non-overlapping with existing subnets in [Domain].[authorized_networks].
	ReservedIpRange pulumi.StringOutput `pulumi:"reservedIpRange"`
	// The current state of this domain.
	State pulumi.StringOutput `pulumi:"state"`
	// Additional information about the current status of this domain, if available.
	StatusMessage pulumi.StringOutput `pulumi:"statusMessage"`
	// The current trusts associated with the domain.
	Trusts TrustResponseArrayOutput `pulumi:"trusts"`
	// The last update time.
	UpdateTime pulumi.StringOutput `pulumi:"updateTime"`
}

Creates a Microsoft AD domain. Auto-naming is currently not supported for this resource.

func GetDomain 

func GetDomain(ctx *pulumi.Context,
	name string, id pulumi.IDInput, state *DomainState, opts ...pulumi.ResourceOption) (*Domain, error)

GetDomain gets an existing Domain resource's state with the given name, ID, and optional state properties that are used to uniquely qualify the lookup (nil if not required).

func NewDomain 

func NewDomain(ctx *pulumi.Context,
	name string, args *DomainArgs, opts ...pulumi.ResourceOption) (*Domain, error)

NewDomain registers a new resource with the given unique name, arguments, and options.

func (*Domain) ElementType 

func (*Domain) ElementType() reflect.Type

func (*Domain) ToDomainOutput 

func (i *Domain) ToDomainOutput() DomainOutput

func (*Domain) ToDomainOutputWithContext 

func (i *Domain) ToDomainOutputWithContext(ctx context.Context) DomainOutput

type DomainArgs 

type DomainArgs struct {
	// Optional. The name of delegated administrator account used to perform Active Directory operations. If not specified, `setupadmin` will be used.
	Admin pulumi.StringPtrInput
	// Optional. Configuration for audit logs. True if audit logs are enabled, else false. Default is audit logs disabled.
	AuditLogsEnabled pulumi.BoolPtrInput
	// Optional. The full names of the Google Compute Engine [networks](/compute/docs/networks-and-firewalls#networks) the domain instance is connected to. Networks can be added using UpdateDomain. The domain is only available on networks listed in `authorized_networks`. If CIDR subnets overlap between networks, domain creation will fail.
	AuthorizedNetworks pulumi.StringArrayInput
	// Required. The fully qualified domain name. e.g. mydomain.myorganization.com, with the following restrictions: * Must contain only lowercase letters, numbers, periods and hyphens. * Must start with a letter. * Must contain between 2-64 characters. * Must end with a number or a letter. * Must not start with period. * First segment length (mydomain for example above) shouldn't exceed 15 chars. * The last segment cannot be fully numeric. * Must be unique within the customer project.
	DomainName pulumi.StringInput
	// Optional. Resource labels that can contain user-provided metadata.
	Labels pulumi.StringMapInput
	// Locations where domain needs to be provisioned. regions e.g. us-west1 or us-east4 Service supports up to 4 locations at once. Each location will use a /26 block.
	Locations pulumi.StringArrayInput
	// The unique name of the domain using the form: `projects/{project_id}/locations/global/domains/{domain_name}`.
	Name    pulumi.StringInput
	Project pulumi.StringPtrInput
	// The CIDR range of internal addresses that are reserved for this domain. Reserved networks must be /24 or larger. Ranges must be unique and non-overlapping with existing subnets in [Domain].[authorized_networks].
	ReservedIpRange pulumi.StringInput
}

The set of arguments for constructing a Domain resource.

func (DomainArgs) ElementType 

func (DomainArgs) ElementType() reflect.Type

type DomainBackupIamBinding added in v0.26.0 

type DomainBackupIamBinding struct {
	pulumi.CustomResourceState

	// An IAM Condition for a given binding. See https://cloud.google.com/iam/docs/conditions-overview for additional details.
	Condition iam.ConditionPtrOutput `pulumi:"condition"`
	// The etag of the resource's IAM policy.
	Etag pulumi.StringOutput `pulumi:"etag"`
	// Specifies the principals requesting access for a Google Cloud resource. `members` can have the following values: * `allUsers`: A special identifier that represents anyone who is on the internet; with or without a Google account. * `allAuthenticatedUsers`: A special identifier that represents anyone who is authenticated with a Google account or a service account. Does not include identities that come from external identity providers (IdPs) through identity federation. * `user:{emailid}`: An email address that represents a specific Google account. For example, `alice@example.com` . * `serviceAccount:{emailid}`: An email address that represents a Google service account. For example, `my-other-app@appspot.gserviceaccount.com`. * `serviceAccount:{projectid}.svc.id.goog[{namespace}/{kubernetes-sa}]`: An identifier for a [Kubernetes service account](https://cloud.google.com/kubernetes-engine/docs/how-to/kubernetes-service-accounts). For example, `my-project.svc.id.goog[my-namespace/my-kubernetes-sa]`. * `group:{emailid}`: An email address that represents a Google group. For example, `admins@example.com`. * `domain:{domain}`: The G Suite domain (primary) that represents all the users of that domain. For example, `google.com` or `example.com`. * `deleted:user:{emailid}?uid={uniqueid}`: An email address (plus unique identifier) representing a user that has been recently deleted. For example, `alice@example.com?uid=123456789012345678901`. If the user is recovered, this value reverts to `user:{emailid}` and the recovered user retains the role in the binding. * `deleted:serviceAccount:{emailid}?uid={uniqueid}`: An email address (plus unique identifier) representing a service account that has been recently deleted. For example, `my-other-app@appspot.gserviceaccount.com?uid=123456789012345678901`. If the service account is undeleted, this value reverts to `serviceAccount:{emailid}` and the undeleted service account retains the role in the binding. * `deleted:group:{emailid}?uid={uniqueid}`: An email address (plus unique identifier) representing a Google group that has been recently deleted. For example, `admins@example.com?uid=123456789012345678901`. If the group is recovered, this value reverts to `group:{emailid}` and the recovered group retains the role in the binding.
	Members pulumi.StringArrayOutput `pulumi:"members"`
	// The name of the resource to manage IAM policies for.
	Name pulumi.StringOutput `pulumi:"name"`
	// The project in which the resource belongs. If it is not provided, a default will be supplied.
	Project pulumi.StringOutput `pulumi:"project"`
	// Role that is assigned to the list of `members`, or principals. For example, `roles/viewer`, `roles/editor`, or `roles/owner`.
	Role pulumi.StringOutput `pulumi:"role"`
}

Sets the access control policy on the specified resource. Replaces any existing policy. Can return `NOT_FOUND`, `INVALID_ARGUMENT`, and `PERMISSION_DENIED` errors.

func GetDomainBackupIamBinding added in v0.26.0 

func GetDomainBackupIamBinding(ctx *pulumi.Context,
	name string, id pulumi.IDInput, state *DomainBackupIamBindingState, opts ...pulumi.ResourceOption) (*DomainBackupIamBinding, error)

GetDomainBackupIamBinding gets an existing DomainBackupIamBinding resource's state with the given name, ID, and optional state properties that are used to uniquely qualify the lookup (nil if not required).

func NewDomainBackupIamBinding added in v0.26.0 

func NewDomainBackupIamBinding(ctx *pulumi.Context,
	name string, args *DomainBackupIamBindingArgs, opts ...pulumi.ResourceOption) (*DomainBackupIamBinding, error)

NewDomainBackupIamBinding registers a new resource with the given unique name, arguments, and options.

func (*DomainBackupIamBinding) ElementType added in v0.26.0 

func (*DomainBackupIamBinding) ElementType() reflect.Type

func (*DomainBackupIamBinding) ToDomainBackupIamBindingOutput added in v0.26.0 

func (i *DomainBackupIamBinding) ToDomainBackupIamBindingOutput() DomainBackupIamBindingOutput

func (*DomainBackupIamBinding) ToDomainBackupIamBindingOutputWithContext added in v0.26.0 

func (i *DomainBackupIamBinding) ToDomainBackupIamBindingOutputWithContext(ctx context.Context) DomainBackupIamBindingOutput

type DomainBackupIamBindingArgs added in v0.26.0 

type DomainBackupIamBindingArgs struct {
	// An IAM Condition for a given binding.
	Condition iam.ConditionPtrInput
	// Identities that will be granted the privilege in role. Each entry can have one of the following values:
	//
	//  * user:{emailid}: An email address that represents a specific Google account. For example, alice@gmail.com or joe@example.com.
	//  * serviceAccount:{emailid}: An email address that represents a service account. For example, my-other-app@appspot.gserviceaccount.com.
	//  * group:{emailid}: An email address that represents a Google group. For example, admins@example.com.
	//  * domain:{domain}: A G Suite domain (primary, instead of alias) name that represents all the users of that domain. For example, google.com or example.com.
	Members pulumi.StringArrayInput
	// The name of the resource to manage IAM policies for.
	Name pulumi.StringInput
	// The role that should be applied. Only one `IamBinding` can be used per role.
	Role pulumi.StringInput
}

The set of arguments for constructing a DomainBackupIamBinding resource.

func (DomainBackupIamBindingArgs) ElementType added in v0.26.0 

func (DomainBackupIamBindingArgs) ElementType() reflect.Type

type DomainBackupIamBindingInput added in v0.26.0 

type DomainBackupIamBindingInput interface {
	pulumi.Input

	ToDomainBackupIamBindingOutput() DomainBackupIamBindingOutput
	ToDomainBackupIamBindingOutputWithContext(ctx context.Context) DomainBackupIamBindingOutput
}

type DomainBackupIamBindingOutput added in v0.26.0 

type DomainBackupIamBindingOutput struct{ *pulumi.OutputState }

func (DomainBackupIamBindingOutput) Condition added in v0.26.0 

func (o DomainBackupIamBindingOutput) Condition() iam.ConditionPtrOutput

An IAM Condition for a given binding. See https://cloud.google.com/iam/docs/conditions-overview for additional details.

func (DomainBackupIamBindingOutput) ElementType added in v0.26.0 

func (DomainBackupIamBindingOutput) ElementType() reflect.Type

func (DomainBackupIamBindingOutput) Etag added in v0.26.0 

func (o DomainBackupIamBindingOutput) Etag() pulumi.StringOutput

The etag of the resource's IAM policy.

func (DomainBackupIamBindingOutput) Members added in v0.26.0 

func (o DomainBackupIamBindingOutput) Members() pulumi.StringArrayOutput

Specifies the principals requesting access for a Google Cloud resource. `members` can have the following values: * `allUsers`: A special identifier that represents anyone who is on the internet; with or without a Google account. * `allAuthenticatedUsers`: A special identifier that represents anyone who is authenticated with a Google account or a service account. Does not include identities that come from external identity providers (IdPs) through identity federation. * `user:{emailid}`: An email address that represents a specific Google account. For example, `alice@example.com` . * `serviceAccount:{emailid}`: An email address that represents a Google service account. For example, `my-other-app@appspot.gserviceaccount.com`. * `serviceAccount:{projectid}.svc.id.goog[{namespace}/{kubernetes-sa}]`: An identifier for a [Kubernetes service account](https://cloud.google.com/kubernetes-engine/docs/how-to/kubernetes-service-accounts). For example, `my-project.svc.id.goog[my-namespace/my-kubernetes-sa]`. * `group:{emailid}`: An email address that represents a Google group. For example, `admins@example.com`. * `domain:{domain}`: The G Suite domain (primary) that represents all the users of that domain. For example, `google.com` or `example.com`. * `deleted:user:{emailid}?uid={uniqueid}`: An email address (plus unique identifier) representing a user that has been recently deleted. For example, `alice@example.com?uid=123456789012345678901`. If the user is recovered, this value reverts to `user:{emailid}` and the recovered user retains the role in the binding. * `deleted:serviceAccount:{emailid}?uid={uniqueid}`: An email address (plus unique identifier) representing a service account that has been recently deleted. For example, `my-other-app@appspot.gserviceaccount.com?uid=123456789012345678901`. If the service account is undeleted, this value reverts to `serviceAccount:{emailid}` and the undeleted service account retains the role in the binding. * `deleted:group:{emailid}?uid={uniqueid}`: An email address (plus unique identifier) representing a Google group that has been recently deleted. For example, `admins@example.com?uid=123456789012345678901`. If the group is recovered, this value reverts to `group:{emailid}` and the recovered group retains the role in the binding.

func (DomainBackupIamBindingOutput) Name added in v0.26.0 

func (o DomainBackupIamBindingOutput) Name() pulumi.StringOutput

The name of the resource to manage IAM policies for.

func (DomainBackupIamBindingOutput) Project added in v0.26.0 

func (o DomainBackupIamBindingOutput) Project() pulumi.StringOutput

The project in which the resource belongs. If it is not provided, a default will be supplied.

func (DomainBackupIamBindingOutput) Role added in v0.26.0 

func (o DomainBackupIamBindingOutput) Role() pulumi.StringOutput

Role that is assigned to the list of `members`, or principals. For example, `roles/viewer`, `roles/editor`, or `roles/owner`.

func (DomainBackupIamBindingOutput) ToDomainBackupIamBindingOutput added in v0.26.0 

func (o DomainBackupIamBindingOutput) ToDomainBackupIamBindingOutput() DomainBackupIamBindingOutput

func (DomainBackupIamBindingOutput) ToDomainBackupIamBindingOutputWithContext added in v0.26.0 

func (o DomainBackupIamBindingOutput) ToDomainBackupIamBindingOutputWithContext(ctx context.Context) DomainBackupIamBindingOutput

type DomainBackupIamBindingState added in v0.26.0 

type DomainBackupIamBindingState struct {
}

func (DomainBackupIamBindingState) ElementType added in v0.26.0 

func (DomainBackupIamBindingState) ElementType() reflect.Type

type DomainBackupIamMember added in v0.26.0 

type DomainBackupIamMember struct {
	pulumi.CustomResourceState

	// An IAM Condition for a given binding. See https://cloud.google.com/iam/docs/conditions-overview for additional details.
	Condition iam.ConditionPtrOutput `pulumi:"condition"`
	// The etag of the resource's IAM policy.
	Etag pulumi.StringOutput `pulumi:"etag"`
	// Specifies the principals requesting access for a Google Cloud resource. `members` can have the following values: * `allUsers`: A special identifier that represents anyone who is on the internet; with or without a Google account. * `allAuthenticatedUsers`: A special identifier that represents anyone who is authenticated with a Google account or a service account. Does not include identities that come from external identity providers (IdPs) through identity federation. * `user:{emailid}`: An email address that represents a specific Google account. For example, `alice@example.com` . * `serviceAccount:{emailid}`: An email address that represents a Google service account. For example, `my-other-app@appspot.gserviceaccount.com`. * `serviceAccount:{projectid}.svc.id.goog[{namespace}/{kubernetes-sa}]`: An identifier for a [Kubernetes service account](https://cloud.google.com/kubernetes-engine/docs/how-to/kubernetes-service-accounts). For example, `my-project.svc.id.goog[my-namespace/my-kubernetes-sa]`. * `group:{emailid}`: An email address that represents a Google group. For example, `admins@example.com`. * `domain:{domain}`: The G Suite domain (primary) that represents all the users of that domain. For example, `google.com` or `example.com`. * `deleted:user:{emailid}?uid={uniqueid}`: An email address (plus unique identifier) representing a user that has been recently deleted. For example, `alice@example.com?uid=123456789012345678901`. If the user is recovered, this value reverts to `user:{emailid}` and the recovered user retains the role in the binding. * `deleted:serviceAccount:{emailid}?uid={uniqueid}`: An email address (plus unique identifier) representing a service account that has been recently deleted. For example, `my-other-app@appspot.gserviceaccount.com?uid=123456789012345678901`. If the service account is undeleted, this value reverts to `serviceAccount:{emailid}` and the undeleted service account retains the role in the binding. * `deleted:group:{emailid}?uid={uniqueid}`: An email address (plus unique identifier) representing a Google group that has been recently deleted. For example, `admins@example.com?uid=123456789012345678901`. If the group is recovered, this value reverts to `group:{emailid}` and the recovered group retains the role in the binding.
	Member pulumi.StringOutput `pulumi:"member"`
	// The name of the resource to manage IAM policies for.
	Name pulumi.StringOutput `pulumi:"name"`
	// The project in which the resource belongs. If it is not provided, a default will be supplied.
	Project pulumi.StringOutput `pulumi:"project"`
	// Role that is assigned to the list of `members`, or principals. For example, `roles/viewer`, `roles/editor`, or `roles/owner`.
	Role pulumi.StringOutput `pulumi:"role"`
}

Sets the access control policy on the specified resource. Replaces any existing policy. Can return `NOT_FOUND`, `INVALID_ARGUMENT`, and `PERMISSION_DENIED` errors.

func GetDomainBackupIamMember added in v0.26.0 

func GetDomainBackupIamMember(ctx *pulumi.Context,
	name string, id pulumi.IDInput, state *DomainBackupIamMemberState, opts ...pulumi.ResourceOption) (*DomainBackupIamMember, error)

GetDomainBackupIamMember gets an existing DomainBackupIamMember resource's state with the given name, ID, and optional state properties that are used to uniquely qualify the lookup (nil if not required).

func NewDomainBackupIamMember added in v0.26.0 

func NewDomainBackupIamMember(ctx *pulumi.Context,
	name string, args *DomainBackupIamMemberArgs, opts ...pulumi.ResourceOption) (*DomainBackupIamMember, error)

NewDomainBackupIamMember registers a new resource with the given unique name, arguments, and options.

func (*DomainBackupIamMember) ElementType added in v0.26.0 

func (*DomainBackupIamMember) ElementType() reflect.Type

func (*DomainBackupIamMember) ToDomainBackupIamMemberOutput added in v0.26.0 

func (i *DomainBackupIamMember) ToDomainBackupIamMemberOutput() DomainBackupIamMemberOutput

func (*DomainBackupIamMember) ToDomainBackupIamMemberOutputWithContext added in v0.26.0 

func (i *DomainBackupIamMember) ToDomainBackupIamMemberOutputWithContext(ctx context.Context) DomainBackupIamMemberOutput

type DomainBackupIamMemberArgs added in v0.26.0 

type DomainBackupIamMemberArgs struct {
	// An IAM Condition for a given binding.
	Condition iam.ConditionPtrInput
	// Identity that will be granted the privilege in role. The entry can have one of the following values:
	//
	//  * user:{emailid}: An email address that represents a specific Google account. For example, alice@gmail.com or joe@example.com.
	//  * serviceAccount:{emailid}: An email address that represents a service account. For example, my-other-app@appspot.gserviceaccount.com.
	//  * group:{emailid}: An email address that represents a Google group. For example, admins@example.com.
	//  * domain:{domain}: A G Suite domain (primary, instead of alias) name that represents all the users of that domain. For example, google.com or example.com.
	Member pulumi.StringInput
	// The name of the resource to manage IAM policies for.
	Name pulumi.StringInput
	// The role that should be applied.
	Role pulumi.StringInput
}

The set of arguments for constructing a DomainBackupIamMember resource.

func (DomainBackupIamMemberArgs) ElementType added in v0.26.0 

func (DomainBackupIamMemberArgs) ElementType() reflect.Type

type DomainBackupIamMemberInput added in v0.26.0 

type DomainBackupIamMemberInput interface {
	pulumi.Input

	ToDomainBackupIamMemberOutput() DomainBackupIamMemberOutput
	ToDomainBackupIamMemberOutputWithContext(ctx context.Context) DomainBackupIamMemberOutput
}

type DomainBackupIamMemberOutput added in v0.26.0 

type DomainBackupIamMemberOutput struct{ *pulumi.OutputState }

func (DomainBackupIamMemberOutput) Condition added in v0.26.0 

func (o DomainBackupIamMemberOutput) Condition() iam.ConditionPtrOutput

An IAM Condition for a given binding. See https://cloud.google.com/iam/docs/conditions-overview for additional details.

func (DomainBackupIamMemberOutput) ElementType added in v0.26.0 

func (DomainBackupIamMemberOutput) ElementType() reflect.Type

func (DomainBackupIamMemberOutput) Etag added in v0.26.0 

func (o DomainBackupIamMemberOutput) Etag() pulumi.StringOutput

The etag of the resource's IAM policy.

func (DomainBackupIamMemberOutput) Member added in v0.26.0 

func (o DomainBackupIamMemberOutput) Member() pulumi.StringOutput

Specifies the principals requesting access for a Google Cloud resource. `members` can have the following values: * `allUsers`: A special identifier that represents anyone who is on the internet; with or without a Google account. * `allAuthenticatedUsers`: A special identifier that represents anyone who is authenticated with a Google account or a service account. Does not include identities that come from external identity providers (IdPs) through identity federation. * `user:{emailid}`: An email address that represents a specific Google account. For example, `alice@example.com` . * `serviceAccount:{emailid}`: An email address that represents a Google service account. For example, `my-other-app@appspot.gserviceaccount.com`. * `serviceAccount:{projectid}.svc.id.goog[{namespace}/{kubernetes-sa}]`: An identifier for a [Kubernetes service account](https://cloud.google.com/kubernetes-engine/docs/how-to/kubernetes-service-accounts). For example, `my-project.svc.id.goog[my-namespace/my-kubernetes-sa]`. * `group:{emailid}`: An email address that represents a Google group. For example, `admins@example.com`. * `domain:{domain}`: The G Suite domain (primary) that represents all the users of that domain. For example, `google.com` or `example.com`. * `deleted:user:{emailid}?uid={uniqueid}`: An email address (plus unique identifier) representing a user that has been recently deleted. For example, `alice@example.com?uid=123456789012345678901`. If the user is recovered, this value reverts to `user:{emailid}` and the recovered user retains the role in the binding. * `deleted:serviceAccount:{emailid}?uid={uniqueid}`: An email address (plus unique identifier) representing a service account that has been recently deleted. For example, `my-other-app@appspot.gserviceaccount.com?uid=123456789012345678901`. If the service account is undeleted, this value reverts to `serviceAccount:{emailid}` and the undeleted service account retains the role in the binding. * `deleted:group:{emailid}?uid={uniqueid}`: An email address (plus unique identifier) representing a Google group that has been recently deleted. For example, `admins@example.com?uid=123456789012345678901`. If the group is recovered, this value reverts to `group:{emailid}` and the recovered group retains the role in the binding.

func (DomainBackupIamMemberOutput) Name added in v0.26.0 

func (o DomainBackupIamMemberOutput) Name() pulumi.StringOutput

The name of the resource to manage IAM policies for.

func (DomainBackupIamMemberOutput) Project added in v0.26.0 

func (o DomainBackupIamMemberOutput) Project() pulumi.StringOutput

The project in which the resource belongs. If it is not provided, a default will be supplied.

func (DomainBackupIamMemberOutput) Role added in v0.26.0 

func (o DomainBackupIamMemberOutput) Role() pulumi.StringOutput

Role that is assigned to the list of `members`, or principals. For example, `roles/viewer`, `roles/editor`, or `roles/owner`.

func (DomainBackupIamMemberOutput) ToDomainBackupIamMemberOutput added in v0.26.0 

func (o DomainBackupIamMemberOutput) ToDomainBackupIamMemberOutput() DomainBackupIamMemberOutput

func (DomainBackupIamMemberOutput) ToDomainBackupIamMemberOutputWithContext added in v0.26.0 

func (o DomainBackupIamMemberOutput) ToDomainBackupIamMemberOutputWithContext(ctx context.Context) DomainBackupIamMemberOutput

type DomainBackupIamMemberState added in v0.26.0 

type DomainBackupIamMemberState struct {
}

func (DomainBackupIamMemberState) ElementType added in v0.26.0 

func (DomainBackupIamMemberState) ElementType() reflect.Type

type DomainBackupIamPolicy added in v0.16.0 

type DomainBackupIamPolicy struct {
	pulumi.CustomResourceState

	BackupId pulumi.StringOutput `pulumi:"backupId"`
	// Associates a list of `members`, or principals, with a `role`. Optionally, may specify a `condition` that determines how and when the `bindings` are applied. Each of the `bindings` must contain at least one principal. The `bindings` in a `Policy` can refer to up to 1,500 principals; up to 250 of these principals can be Google groups. Each occurrence of a principal counts towards these limits. For example, if the `bindings` grant 50 different roles to `user:alice@example.com`, and not to any other principal, then you can add another 1,450 principals to the `bindings` in the `Policy`.
	Bindings BindingResponseArrayOutput `pulumi:"bindings"`
	DomainId pulumi.StringOutput        `pulumi:"domainId"`
	// `etag` is used for optimistic concurrency control as a way to help prevent simultaneous updates of a policy from overwriting each other. It is strongly suggested that systems make use of the `etag` in the read-modify-write cycle to perform policy updates in order to avoid race conditions: An `etag` is returned in the response to `getIamPolicy`, and systems are expected to put that etag in the request to `setIamPolicy` to ensure that their change will be applied to the same version of the policy. **Important:** If you use IAM Conditions, you must include the `etag` field whenever you call `setIamPolicy`. If you omit this field, then IAM allows you to overwrite a version `3` policy with a version `1` policy, and all of the conditions in the version `3` policy are lost.
	Etag    pulumi.StringOutput `pulumi:"etag"`
	Project pulumi.StringOutput `pulumi:"project"`
	// Specifies the format of the policy. Valid values are `0`, `1`, and `3`. Requests that specify an invalid value are rejected. Any operation that affects conditional role bindings must specify version `3`. This requirement applies to the following operations: * Getting a policy that includes a conditional role binding * Adding a conditional role binding to a policy * Changing a conditional role binding in a policy * Removing any role binding, with or without a condition, from a policy that includes conditions **Important:** If you use IAM Conditions, you must include the `etag` field whenever you call `setIamPolicy`. If you omit this field, then IAM allows you to overwrite a version `3` policy with a version `1` policy, and all of the conditions in the version `3` policy are lost. If a policy does not include any conditions, operations on that policy may specify any valid version or leave the field unset. To learn which resources support conditions in their IAM policies, see the [IAM documentation](https://cloud.google.com/iam/help/conditions/resource-policies).
	Version pulumi.IntOutput `pulumi:"version"`
}

Sets the access control policy on the specified resource. Replaces any existing policy. Can return `NOT_FOUND`, `INVALID_ARGUMENT`, and `PERMISSION_DENIED` errors. Note - this resource's API doesn't support deletion. When deleted, the resource will persist on Google Cloud even though it will be deleted from Pulumi state.

func GetDomainBackupIamPolicy added in v0.16.0 

func GetDomainBackupIamPolicy(ctx *pulumi.Context,
	name string, id pulumi.IDInput, state *DomainBackupIamPolicyState, opts ...pulumi.ResourceOption) (*DomainBackupIamPolicy, error)

GetDomainBackupIamPolicy gets an existing DomainBackupIamPolicy resource's state with the given name, ID, and optional state properties that are used to uniquely qualify the lookup (nil if not required).

func NewDomainBackupIamPolicy added in v0.16.0 

func NewDomainBackupIamPolicy(ctx *pulumi.Context,
	name string, args *DomainBackupIamPolicyArgs, opts ...pulumi.ResourceOption) (*DomainBackupIamPolicy, error)

NewDomainBackupIamPolicy registers a new resource with the given unique name, arguments, and options.

func (*DomainBackupIamPolicy) ElementType added in v0.16.0 

func (*DomainBackupIamPolicy) ElementType() reflect.Type

func (*DomainBackupIamPolicy) ToDomainBackupIamPolicyOutput added in v0.16.0 

func (i *DomainBackupIamPolicy) ToDomainBackupIamPolicyOutput() DomainBackupIamPolicyOutput

func (*DomainBackupIamPolicy) ToDomainBackupIamPolicyOutputWithContext added in v0.16.0 

func (i *DomainBackupIamPolicy) ToDomainBackupIamPolicyOutputWithContext(ctx context.Context) DomainBackupIamPolicyOutput

type DomainBackupIamPolicyArgs added in v0.16.0 

type DomainBackupIamPolicyArgs struct {
	BackupId pulumi.StringInput
	// Associates a list of `members`, or principals, with a `role`. Optionally, may specify a `condition` that determines how and when the `bindings` are applied. Each of the `bindings` must contain at least one principal. The `bindings` in a `Policy` can refer to up to 1,500 principals; up to 250 of these principals can be Google groups. Each occurrence of a principal counts towards these limits. For example, if the `bindings` grant 50 different roles to `user:alice@example.com`, and not to any other principal, then you can add another 1,450 principals to the `bindings` in the `Policy`.
	Bindings BindingArrayInput
	DomainId pulumi.StringInput
	// `etag` is used for optimistic concurrency control as a way to help prevent simultaneous updates of a policy from overwriting each other. It is strongly suggested that systems make use of the `etag` in the read-modify-write cycle to perform policy updates in order to avoid race conditions: An `etag` is returned in the response to `getIamPolicy`, and systems are expected to put that etag in the request to `setIamPolicy` to ensure that their change will be applied to the same version of the policy. **Important:** If you use IAM Conditions, you must include the `etag` field whenever you call `setIamPolicy`. If you omit this field, then IAM allows you to overwrite a version `3` policy with a version `1` policy, and all of the conditions in the version `3` policy are lost.
	Etag    pulumi.StringPtrInput
	Project pulumi.StringPtrInput
	// Specifies the format of the policy. Valid values are `0`, `1`, and `3`. Requests that specify an invalid value are rejected. Any operation that affects conditional role bindings must specify version `3`. This requirement applies to the following operations: * Getting a policy that includes a conditional role binding * Adding a conditional role binding to a policy * Changing a conditional role binding in a policy * Removing any role binding, with or without a condition, from a policy that includes conditions **Important:** If you use IAM Conditions, you must include the `etag` field whenever you call `setIamPolicy`. If you omit this field, then IAM allows you to overwrite a version `3` policy with a version `1` policy, and all of the conditions in the version `3` policy are lost. If a policy does not include any conditions, operations on that policy may specify any valid version or leave the field unset. To learn which resources support conditions in their IAM policies, see the [IAM documentation](https://cloud.google.com/iam/help/conditions/resource-policies).
	Version pulumi.IntPtrInput
}

The set of arguments for constructing a DomainBackupIamPolicy resource.

func (DomainBackupIamPolicyArgs) ElementType added in v0.16.0 

func (DomainBackupIamPolicyArgs) ElementType() reflect.Type

type DomainBackupIamPolicyInput added in v0.16.0 

type DomainBackupIamPolicyInput interface {
	pulumi.Input

	ToDomainBackupIamPolicyOutput() DomainBackupIamPolicyOutput
	ToDomainBackupIamPolicyOutputWithContext(ctx context.Context) DomainBackupIamPolicyOutput
}

type DomainBackupIamPolicyOutput added in v0.16.0 

type DomainBackupIamPolicyOutput struct{ *pulumi.OutputState }

func (DomainBackupIamPolicyOutput) BackupId added in v0.21.0 

func (o DomainBackupIamPolicyOutput) BackupId() pulumi.StringOutput

func (DomainBackupIamPolicyOutput) Bindings added in v0.19.0 

func (o DomainBackupIamPolicyOutput) Bindings() BindingResponseArrayOutput

Associates a list of `members`, or principals, with a `role`. Optionally, may specify a `condition` that determines how and when the `bindings` are applied. Each of the `bindings` must contain at least one principal. The `bindings` in a `Policy` can refer to up to 1,500 principals; up to 250 of these principals can be Google groups. Each occurrence of a principal counts towards these limits. For example, if the `bindings` grant 50 different roles to `user:alice@example.com`, and not to any other principal, then you can add another 1,450 principals to the `bindings` in the `Policy`.

func (DomainBackupIamPolicyOutput) DomainId added in v0.21.0 

func (o DomainBackupIamPolicyOutput) DomainId() pulumi.StringOutput

func (DomainBackupIamPolicyOutput) ElementType added in v0.16.0 

func (DomainBackupIamPolicyOutput) ElementType() reflect.Type

func (DomainBackupIamPolicyOutput) Etag added in v0.19.0 

func (o DomainBackupIamPolicyOutput) Etag() pulumi.StringOutput

`etag` is used for optimistic concurrency control as a way to help prevent simultaneous updates of a policy from overwriting each other. It is strongly suggested that systems make use of the `etag` in the read-modify-write cycle to perform policy updates in order to avoid race conditions: An `etag` is returned in the response to `getIamPolicy`, and systems are expected to put that etag in the request to `setIamPolicy` to ensure that their change will be applied to the same version of the policy. **Important:** If you use IAM Conditions, you must include the `etag` field whenever you call `setIamPolicy`. If you omit this field, then IAM allows you to overwrite a version `3` policy with a version `1` policy, and all of the conditions in the version `3` policy are lost.

func (DomainBackupIamPolicyOutput) Project added in v0.21.0 

func (o DomainBackupIamPolicyOutput) Project() pulumi.StringOutput

func (DomainBackupIamPolicyOutput) ToDomainBackupIamPolicyOutput added in v0.16.0 

func (o DomainBackupIamPolicyOutput) ToDomainBackupIamPolicyOutput() DomainBackupIamPolicyOutput

func (DomainBackupIamPolicyOutput) ToDomainBackupIamPolicyOutputWithContext added in v0.16.0 

func (o DomainBackupIamPolicyOutput) ToDomainBackupIamPolicyOutputWithContext(ctx context.Context) DomainBackupIamPolicyOutput

func (DomainBackupIamPolicyOutput) Version added in v0.19.0 

func (o DomainBackupIamPolicyOutput) Version() pulumi.IntOutput

Specifies the format of the policy. Valid values are `0`, `1`, and `3`. Requests that specify an invalid value are rejected. Any operation that affects conditional role bindings must specify version `3`. This requirement applies to the following operations: * Getting a policy that includes a conditional role binding * Adding a conditional role binding to a policy * Changing a conditional role binding in a policy * Removing any role binding, with or without a condition, from a policy that includes conditions **Important:** If you use IAM Conditions, you must include the `etag` field whenever you call `setIamPolicy`. If you omit this field, then IAM allows you to overwrite a version `3` policy with a version `1` policy, and all of the conditions in the version `3` policy are lost. If a policy does not include any conditions, operations on that policy may specify any valid version or leave the field unset. To learn which resources support conditions in their IAM policies, see the [IAM documentation](https://cloud.google.com/iam/help/conditions/resource-policies).

type DomainBackupIamPolicyState added in v0.16.0 

type DomainBackupIamPolicyState struct {
}

func (DomainBackupIamPolicyState) ElementType added in v0.16.0 

func (DomainBackupIamPolicyState) ElementType() reflect.Type

type DomainIamBinding added in v0.26.0 

type DomainIamBinding struct {
	pulumi.CustomResourceState

	// An IAM Condition for a given binding. See https://cloud.google.com/iam/docs/conditions-overview for additional details.
	Condition iam.ConditionPtrOutput `pulumi:"condition"`
	// The etag of the resource's IAM policy.
	Etag pulumi.StringOutput `pulumi:"etag"`
	// Specifies the principals requesting access for a Google Cloud resource. `members` can have the following values: * `allUsers`: A special identifier that represents anyone who is on the internet; with or without a Google account. * `allAuthenticatedUsers`: A special identifier that represents anyone who is authenticated with a Google account or a service account. Does not include identities that come from external identity providers (IdPs) through identity federation. * `user:{emailid}`: An email address that represents a specific Google account. For example, `alice@example.com` . * `serviceAccount:{emailid}`: An email address that represents a Google service account. For example, `my-other-app@appspot.gserviceaccount.com`. * `serviceAccount:{projectid}.svc.id.goog[{namespace}/{kubernetes-sa}]`: An identifier for a [Kubernetes service account](https://cloud.google.com/kubernetes-engine/docs/how-to/kubernetes-service-accounts). For example, `my-project.svc.id.goog[my-namespace/my-kubernetes-sa]`. * `group:{emailid}`: An email address that represents a Google group. For example, `admins@example.com`. * `domain:{domain}`: The G Suite domain (primary) that represents all the users of that domain. For example, `google.com` or `example.com`. * `deleted:user:{emailid}?uid={uniqueid}`: An email address (plus unique identifier) representing a user that has been recently deleted. For example, `alice@example.com?uid=123456789012345678901`. If the user is recovered, this value reverts to `user:{emailid}` and the recovered user retains the role in the binding. * `deleted:serviceAccount:{emailid}?uid={uniqueid}`: An email address (plus unique identifier) representing a service account that has been recently deleted. For example, `my-other-app@appspot.gserviceaccount.com?uid=123456789012345678901`. If the service account is undeleted, this value reverts to `serviceAccount:{emailid}` and the undeleted service account retains the role in the binding. * `deleted:group:{emailid}?uid={uniqueid}`: An email address (plus unique identifier) representing a Google group that has been recently deleted. For example, `admins@example.com?uid=123456789012345678901`. If the group is recovered, this value reverts to `group:{emailid}` and the recovered group retains the role in the binding.
	Members pulumi.StringArrayOutput `pulumi:"members"`
	// The name of the resource to manage IAM policies for.
	Name pulumi.StringOutput `pulumi:"name"`
	// The project in which the resource belongs. If it is not provided, a default will be supplied.
	Project pulumi.StringOutput `pulumi:"project"`
	// Role that is assigned to the list of `members`, or principals. For example, `roles/viewer`, `roles/editor`, or `roles/owner`.
	Role pulumi.StringOutput `pulumi:"role"`
}

Sets the access control policy on the specified resource. Replaces any existing policy. Can return `NOT_FOUND`, `INVALID_ARGUMENT`, and `PERMISSION_DENIED` errors.

func GetDomainIamBinding added in v0.26.0 

func GetDomainIamBinding(ctx *pulumi.Context,
	name string, id pulumi.IDInput, state *DomainIamBindingState, opts ...pulumi.ResourceOption) (*DomainIamBinding, error)

GetDomainIamBinding gets an existing DomainIamBinding resource's state with the given name, ID, and optional state properties that are used to uniquely qualify the lookup (nil if not required).

func NewDomainIamBinding added in v0.26.0 

func NewDomainIamBinding(ctx *pulumi.Context,
	name string, args *DomainIamBindingArgs, opts ...pulumi.ResourceOption) (*DomainIamBinding, error)

NewDomainIamBinding registers a new resource with the given unique name, arguments, and options.

func (*DomainIamBinding) ElementType added in v0.26.0 

func (*DomainIamBinding) ElementType() reflect.Type

func (*DomainIamBinding) ToDomainIamBindingOutput added in v0.26.0 

func (i *DomainIamBinding) ToDomainIamBindingOutput() DomainIamBindingOutput

func (*DomainIamBinding) ToDomainIamBindingOutputWithContext added in v0.26.0 

func (i *DomainIamBinding) ToDomainIamBindingOutputWithContext(ctx context.Context) DomainIamBindingOutput

type DomainIamBindingArgs added in v0.26.0 

type DomainIamBindingArgs struct {
	// An IAM Condition for a given binding.
	Condition iam.ConditionPtrInput
	// Identities that will be granted the privilege in role. Each entry can have one of the following values:
	//
	//  * user:{emailid}: An email address that represents a specific Google account. For example, alice@gmail.com or joe@example.com.
	//  * serviceAccount:{emailid}: An email address that represents a service account. For example, my-other-app@appspot.gserviceaccount.com.
	//  * group:{emailid}: An email address that represents a Google group. For example, admins@example.com.
	//  * domain:{domain}: A G Suite domain (primary, instead of alias) name that represents all the users of that domain. For example, google.com or example.com.
	Members pulumi.StringArrayInput
	// The name of the resource to manage IAM policies for.
	Name pulumi.StringInput
	// The role that should be applied. Only one `IamBinding` can be used per role.
	Role pulumi.StringInput
}

The set of arguments for constructing a DomainIamBinding resource.

func (DomainIamBindingArgs) ElementType added in v0.26.0 

func (DomainIamBindingArgs) ElementType() reflect.Type

type DomainIamBindingInput added in v0.26.0 

type DomainIamBindingInput interface {
	pulumi.Input

	ToDomainIamBindingOutput() DomainIamBindingOutput
	ToDomainIamBindingOutputWithContext(ctx context.Context) DomainIamBindingOutput
}

type DomainIamBindingOutput added in v0.26.0 

type DomainIamBindingOutput struct{ *pulumi.OutputState }

func (DomainIamBindingOutput) Condition added in v0.26.0 

func (o DomainIamBindingOutput) Condition() iam.ConditionPtrOutput

An IAM Condition for a given binding. See https://cloud.google.com/iam/docs/conditions-overview for additional details.

func (DomainIamBindingOutput) ElementType added in v0.26.0 

func (DomainIamBindingOutput) ElementType() reflect.Type

func (DomainIamBindingOutput) Etag added in v0.26.0 

func (o DomainIamBindingOutput) Etag() pulumi.StringOutput

The etag of the resource's IAM policy.

func (DomainIamBindingOutput) Members added in v0.26.0 

func (o DomainIamBindingOutput) Members() pulumi.StringArrayOutput

Specifies the principals requesting access for a Google Cloud resource. `members` can have the following values: * `allUsers`: A special identifier that represents anyone who is on the internet; with or without a Google account. * `allAuthenticatedUsers`: A special identifier that represents anyone who is authenticated with a Google account or a service account. Does not include identities that come from external identity providers (IdPs) through identity federation. * `user:{emailid}`: An email address that represents a specific Google account. For example, `alice@example.com` . * `serviceAccount:{emailid}`: An email address that represents a Google service account. For example, `my-other-app@appspot.gserviceaccount.com`. * `serviceAccount:{projectid}.svc.id.goog[{namespace}/{kubernetes-sa}]`: An identifier for a [Kubernetes service account](https://cloud.google.com/kubernetes-engine/docs/how-to/kubernetes-service-accounts). For example, `my-project.svc.id.goog[my-namespace/my-kubernetes-sa]`. * `group:{emailid}`: An email address that represents a Google group. For example, `admins@example.com`. * `domain:{domain}`: The G Suite domain (primary) that represents all the users of that domain. For example, `google.com` or `example.com`. * `deleted:user:{emailid}?uid={uniqueid}`: An email address (plus unique identifier) representing a user that has been recently deleted. For example, `alice@example.com?uid=123456789012345678901`. If the user is recovered, this value reverts to `user:{emailid}` and the recovered user retains the role in the binding. * `deleted:serviceAccount:{emailid}?uid={uniqueid}`: An email address (plus unique identifier) representing a service account that has been recently deleted. For example, `my-other-app@appspot.gserviceaccount.com?uid=123456789012345678901`. If the service account is undeleted, this value reverts to `serviceAccount:{emailid}` and the undeleted service account retains the role in the binding. * `deleted:group:{emailid}?uid={uniqueid}`: An email address (plus unique identifier) representing a Google group that has been recently deleted. For example, `admins@example.com?uid=123456789012345678901`. If the group is recovered, this value reverts to `group:{emailid}` and the recovered group retains the role in the binding.

func (DomainIamBindingOutput) Name added in v0.26.0 

func (o DomainIamBindingOutput) Name() pulumi.StringOutput

The name of the resource to manage IAM policies for.

func (DomainIamBindingOutput) Project added in v0.26.0 

func (o DomainIamBindingOutput) Project() pulumi.StringOutput

The project in which the resource belongs. If it is not provided, a default will be supplied.

func (DomainIamBindingOutput) Role added in v0.26.0 

func (o DomainIamBindingOutput) Role() pulumi.StringOutput

Role that is assigned to the list of `members`, or principals. For example, `roles/viewer`, `roles/editor`, or `roles/owner`.

func (DomainIamBindingOutput) ToDomainIamBindingOutput added in v0.26.0 

func (o DomainIamBindingOutput) ToDomainIamBindingOutput() DomainIamBindingOutput

func (DomainIamBindingOutput) ToDomainIamBindingOutputWithContext added in v0.26.0 

func (o DomainIamBindingOutput) ToDomainIamBindingOutputWithContext(ctx context.Context) DomainIamBindingOutput

type DomainIamBindingState added in v0.26.0 

type DomainIamBindingState struct {
}

func (DomainIamBindingState) ElementType added in v0.26.0 

func (DomainIamBindingState) ElementType() reflect.Type

type DomainIamMember added in v0.26.0 

type DomainIamMember struct {
	pulumi.CustomResourceState

	// An IAM Condition for a given binding. See https://cloud.google.com/iam/docs/conditions-overview for additional details.
	Condition iam.ConditionPtrOutput `pulumi:"condition"`
	// The etag of the resource's IAM policy.
	Etag pulumi.StringOutput `pulumi:"etag"`
	// Specifies the principals requesting access for a Google Cloud resource. `members` can have the following values: * `allUsers`: A special identifier that represents anyone who is on the internet; with or without a Google account. * `allAuthenticatedUsers`: A special identifier that represents anyone who is authenticated with a Google account or a service account. Does not include identities that come from external identity providers (IdPs) through identity federation. * `user:{emailid}`: An email address that represents a specific Google account. For example, `alice@example.com` . * `serviceAccount:{emailid}`: An email address that represents a Google service account. For example, `my-other-app@appspot.gserviceaccount.com`. * `serviceAccount:{projectid}.svc.id.goog[{namespace}/{kubernetes-sa}]`: An identifier for a [Kubernetes service account](https://cloud.google.com/kubernetes-engine/docs/how-to/kubernetes-service-accounts). For example, `my-project.svc.id.goog[my-namespace/my-kubernetes-sa]`. * `group:{emailid}`: An email address that represents a Google group. For example, `admins@example.com`. * `domain:{domain}`: The G Suite domain (primary) that represents all the users of that domain. For example, `google.com` or `example.com`. * `deleted:user:{emailid}?uid={uniqueid}`: An email address (plus unique identifier) representing a user that has been recently deleted. For example, `alice@example.com?uid=123456789012345678901`. If the user is recovered, this value reverts to `user:{emailid}` and the recovered user retains the role in the binding. * `deleted:serviceAccount:{emailid}?uid={uniqueid}`: An email address (plus unique identifier) representing a service account that has been recently deleted. For example, `my-other-app@appspot.gserviceaccount.com?uid=123456789012345678901`. If the service account is undeleted, this value reverts to `serviceAccount:{emailid}` and the undeleted service account retains the role in the binding. * `deleted:group:{emailid}?uid={uniqueid}`: An email address (plus unique identifier) representing a Google group that has been recently deleted. For example, `admins@example.com?uid=123456789012345678901`. If the group is recovered, this value reverts to `group:{emailid}` and the recovered group retains the role in the binding.
	Member pulumi.StringOutput `pulumi:"member"`
	// The name of the resource to manage IAM policies for.
	Name pulumi.StringOutput `pulumi:"name"`
	// The project in which the resource belongs. If it is not provided, a default will be supplied.
	Project pulumi.StringOutput `pulumi:"project"`
	// Role that is assigned to the list of `members`, or principals. For example, `roles/viewer`, `roles/editor`, or `roles/owner`.
	Role pulumi.StringOutput `pulumi:"role"`
}

Sets the access control policy on the specified resource. Replaces any existing policy. Can return `NOT_FOUND`, `INVALID_ARGUMENT`, and `PERMISSION_DENIED` errors.

func GetDomainIamMember added in v0.26.0 

func GetDomainIamMember(ctx *pulumi.Context,
	name string, id pulumi.IDInput, state *DomainIamMemberState, opts ...pulumi.ResourceOption) (*DomainIamMember, error)

GetDomainIamMember gets an existing DomainIamMember resource's state with the given name, ID, and optional state properties that are used to uniquely qualify the lookup (nil if not required).

func NewDomainIamMember added in v0.26.0 

func NewDomainIamMember(ctx *pulumi.Context,
	name string, args *DomainIamMemberArgs, opts ...pulumi.ResourceOption) (*DomainIamMember, error)

NewDomainIamMember registers a new resource with the given unique name, arguments, and options.

func (*DomainIamMember) ElementType added in v0.26.0 

func (*DomainIamMember) ElementType() reflect.Type

func (*DomainIamMember) ToDomainIamMemberOutput added in v0.26.0 

func (i *DomainIamMember) ToDomainIamMemberOutput() DomainIamMemberOutput

func (*DomainIamMember) ToDomainIamMemberOutputWithContext added in v0.26.0 

func (i *DomainIamMember) ToDomainIamMemberOutputWithContext(ctx context.Context) DomainIamMemberOutput

type DomainIamMemberArgs added in v0.26.0 

type DomainIamMemberArgs struct {
	// An IAM Condition for a given binding.
	Condition iam.ConditionPtrInput
	// Identity that will be granted the privilege in role. The entry can have one of the following values:
	//
	//  * user:{emailid}: An email address that represents a specific Google account. For example, alice@gmail.com or joe@example.com.
	//  * serviceAccount:{emailid}: An email address that represents a service account. For example, my-other-app@appspot.gserviceaccount.com.
	//  * group:{emailid}: An email address that represents a Google group. For example, admins@example.com.
	//  * domain:{domain}: A G Suite domain (primary, instead of alias) name that represents all the users of that domain. For example, google.com or example.com.
	Member pulumi.StringInput
	// The name of the resource to manage IAM policies for.
	Name pulumi.StringInput
	// The role that should be applied.
	Role pulumi.StringInput
}

The set of arguments for constructing a DomainIamMember resource.

func (DomainIamMemberArgs) ElementType added in v0.26.0 

func (DomainIamMemberArgs) ElementType() reflect.Type

type DomainIamMemberInput added in v0.26.0 

type DomainIamMemberInput interface {
	pulumi.Input

	ToDomainIamMemberOutput() DomainIamMemberOutput
	ToDomainIamMemberOutputWithContext(ctx context.Context) DomainIamMemberOutput
}

type DomainIamMemberOutput added in v0.26.0 

type DomainIamMemberOutput struct{ *pulumi.OutputState }

func (DomainIamMemberOutput) Condition added in v0.26.0 

func (o DomainIamMemberOutput) Condition() iam.ConditionPtrOutput

An IAM Condition for a given binding. See https://cloud.google.com/iam/docs/conditions-overview for additional details.

func (DomainIamMemberOutput) ElementType added in v0.26.0 

func (DomainIamMemberOutput) ElementType() reflect.Type

func (DomainIamMemberOutput) Etag added in v0.26.0 

func (o DomainIamMemberOutput) Etag() pulumi.StringOutput

The etag of the resource's IAM policy.

func (DomainIamMemberOutput) Member added in v0.26.0 

func (o DomainIamMemberOutput) Member() pulumi.StringOutput

Specifies the principals requesting access for a Google Cloud resource. `members` can have the following values: * `allUsers`: A special identifier that represents anyone who is on the internet; with or without a Google account. * `allAuthenticatedUsers`: A special identifier that represents anyone who is authenticated with a Google account or a service account. Does not include identities that come from external identity providers (IdPs) through identity federation. * `user:{emailid}`: An email address that represents a specific Google account. For example, `alice@example.com` . * `serviceAccount:{emailid}`: An email address that represents a Google service account. For example, `my-other-app@appspot.gserviceaccount.com`. * `serviceAccount:{projectid}.svc.id.goog[{namespace}/{kubernetes-sa}]`: An identifier for a [Kubernetes service account](https://cloud.google.com/kubernetes-engine/docs/how-to/kubernetes-service-accounts). For example, `my-project.svc.id.goog[my-namespace/my-kubernetes-sa]`. * `group:{emailid}`: An email address that represents a Google group. For example, `admins@example.com`. * `domain:{domain}`: The G Suite domain (primary) that represents all the users of that domain. For example, `google.com` or `example.com`. * `deleted:user:{emailid}?uid={uniqueid}`: An email address (plus unique identifier) representing a user that has been recently deleted. For example, `alice@example.com?uid=123456789012345678901`. If the user is recovered, this value reverts to `user:{emailid}` and the recovered user retains the role in the binding. * `deleted:serviceAccount:{emailid}?uid={uniqueid}`: An email address (plus unique identifier) representing a service account that has been recently deleted. For example, `my-other-app@appspot.gserviceaccount.com?uid=123456789012345678901`. If the service account is undeleted, this value reverts to `serviceAccount:{emailid}` and the undeleted service account retains the role in the binding. * `deleted:group:{emailid}?uid={uniqueid}`: An email address (plus unique identifier) representing a Google group that has been recently deleted. For example, `admins@example.com?uid=123456789012345678901`. If the group is recovered, this value reverts to `group:{emailid}` and the recovered group retains the role in the binding.

func (DomainIamMemberOutput) Name added in v0.26.0 

func (o DomainIamMemberOutput) Name() pulumi.StringOutput

The name of the resource to manage IAM policies for.

func (DomainIamMemberOutput) Project added in v0.26.0 

func (o DomainIamMemberOutput) Project() pulumi.StringOutput

The project in which the resource belongs. If it is not provided, a default will be supplied.

func (DomainIamMemberOutput) Role added in v0.26.0 

func (o DomainIamMemberOutput) Role() pulumi.StringOutput

Role that is assigned to the list of `members`, or principals. For example, `roles/viewer`, `roles/editor`, or `roles/owner`.

func (DomainIamMemberOutput) ToDomainIamMemberOutput added in v0.26.0 

func (o DomainIamMemberOutput) ToDomainIamMemberOutput() DomainIamMemberOutput

func (DomainIamMemberOutput) ToDomainIamMemberOutputWithContext added in v0.26.0 

func (o DomainIamMemberOutput) ToDomainIamMemberOutputWithContext(ctx context.Context) DomainIamMemberOutput

type DomainIamMemberState added in v0.26.0 

type DomainIamMemberState struct {
}

func (DomainIamMemberState) ElementType added in v0.26.0 

func (DomainIamMemberState) ElementType() reflect.Type

type DomainIamPolicy 

type DomainIamPolicy struct {
	pulumi.CustomResourceState

	// Associates a list of `members`, or principals, with a `role`. Optionally, may specify a `condition` that determines how and when the `bindings` are applied. Each of the `bindings` must contain at least one principal. The `bindings` in a `Policy` can refer to up to 1,500 principals; up to 250 of these principals can be Google groups. Each occurrence of a principal counts towards these limits. For example, if the `bindings` grant 50 different roles to `user:alice@example.com`, and not to any other principal, then you can add another 1,450 principals to the `bindings` in the `Policy`.
	Bindings BindingResponseArrayOutput `pulumi:"bindings"`
	DomainId pulumi.StringOutput        `pulumi:"domainId"`
	// `etag` is used for optimistic concurrency control as a way to help prevent simultaneous updates of a policy from overwriting each other. It is strongly suggested that systems make use of the `etag` in the read-modify-write cycle to perform policy updates in order to avoid race conditions: An `etag` is returned in the response to `getIamPolicy`, and systems are expected to put that etag in the request to `setIamPolicy` to ensure that their change will be applied to the same version of the policy. **Important:** If you use IAM Conditions, you must include the `etag` field whenever you call `setIamPolicy`. If you omit this field, then IAM allows you to overwrite a version `3` policy with a version `1` policy, and all of the conditions in the version `3` policy are lost.
	Etag    pulumi.StringOutput `pulumi:"etag"`
	Project pulumi.StringOutput `pulumi:"project"`
	// Specifies the format of the policy. Valid values are `0`, `1`, and `3`. Requests that specify an invalid value are rejected. Any operation that affects conditional role bindings must specify version `3`. This requirement applies to the following operations: * Getting a policy that includes a conditional role binding * Adding a conditional role binding to a policy * Changing a conditional role binding in a policy * Removing any role binding, with or without a condition, from a policy that includes conditions **Important:** If you use IAM Conditions, you must include the `etag` field whenever you call `setIamPolicy`. If you omit this field, then IAM allows you to overwrite a version `3` policy with a version `1` policy, and all of the conditions in the version `3` policy are lost. If a policy does not include any conditions, operations on that policy may specify any valid version or leave the field unset. To learn which resources support conditions in their IAM policies, see the [IAM documentation](https://cloud.google.com/iam/help/conditions/resource-policies).
	Version pulumi.IntOutput `pulumi:"version"`
}

Sets the access control policy on the specified resource. Replaces any existing policy. Can return `NOT_FOUND`, `INVALID_ARGUMENT`, and `PERMISSION_DENIED` errors. Note - this resource's API doesn't support deletion. When deleted, the resource will persist on Google Cloud even though it will be deleted from Pulumi state.

func GetDomainIamPolicy 

func GetDomainIamPolicy(ctx *pulumi.Context,
	name string, id pulumi.IDInput, state *DomainIamPolicyState, opts ...pulumi.ResourceOption) (*DomainIamPolicy, error)

GetDomainIamPolicy gets an existing DomainIamPolicy resource's state with the given name, ID, and optional state properties that are used to uniquely qualify the lookup (nil if not required).

func NewDomainIamPolicy 

func NewDomainIamPolicy(ctx *pulumi.Context,
	name string, args *DomainIamPolicyArgs, opts ...pulumi.ResourceOption) (*DomainIamPolicy, error)

NewDomainIamPolicy registers a new resource with the given unique name, arguments, and options.

func (*DomainIamPolicy) ElementType 

func (*DomainIamPolicy) ElementType() reflect.Type

func (*DomainIamPolicy) ToDomainIamPolicyOutput 

func (i *DomainIamPolicy) ToDomainIamPolicyOutput() DomainIamPolicyOutput

func (*DomainIamPolicy) ToDomainIamPolicyOutputWithContext 

func (i *DomainIamPolicy) ToDomainIamPolicyOutputWithContext(ctx context.Context) DomainIamPolicyOutput

type DomainIamPolicyArgs 

type DomainIamPolicyArgs struct {
	// Associates a list of `members`, or principals, with a `role`. Optionally, may specify a `condition` that determines how and when the `bindings` are applied. Each of the `bindings` must contain at least one principal. The `bindings` in a `Policy` can refer to up to 1,500 principals; up to 250 of these principals can be Google groups. Each occurrence of a principal counts towards these limits. For example, if the `bindings` grant 50 different roles to `user:alice@example.com`, and not to any other principal, then you can add another 1,450 principals to the `bindings` in the `Policy`.
	Bindings BindingArrayInput
	DomainId pulumi.StringInput
	// `etag` is used for optimistic concurrency control as a way to help prevent simultaneous updates of a policy from overwriting each other. It is strongly suggested that systems make use of the `etag` in the read-modify-write cycle to perform policy updates in order to avoid race conditions: An `etag` is returned in the response to `getIamPolicy`, and systems are expected to put that etag in the request to `setIamPolicy` to ensure that their change will be applied to the same version of the policy. **Important:** If you use IAM Conditions, you must include the `etag` field whenever you call `setIamPolicy`. If you omit this field, then IAM allows you to overwrite a version `3` policy with a version `1` policy, and all of the conditions in the version `3` policy are lost.
	Etag    pulumi.StringPtrInput
	Project pulumi.StringPtrInput
	// Specifies the format of the policy. Valid values are `0`, `1`, and `3`. Requests that specify an invalid value are rejected. Any operation that affects conditional role bindings must specify version `3`. This requirement applies to the following operations: * Getting a policy that includes a conditional role binding * Adding a conditional role binding to a policy * Changing a conditional role binding in a policy * Removing any role binding, with or without a condition, from a policy that includes conditions **Important:** If you use IAM Conditions, you must include the `etag` field whenever you call `setIamPolicy`. If you omit this field, then IAM allows you to overwrite a version `3` policy with a version `1` policy, and all of the conditions in the version `3` policy are lost. If a policy does not include any conditions, operations on that policy may specify any valid version or leave the field unset. To learn which resources support conditions in their IAM policies, see the [IAM documentation](https://cloud.google.com/iam/help/conditions/resource-policies).
	Version pulumi.IntPtrInput
}

The set of arguments for constructing a DomainIamPolicy resource.

func (DomainIamPolicyArgs) ElementType 

func (DomainIamPolicyArgs) ElementType() reflect.Type

type DomainIamPolicyInput 

type DomainIamPolicyInput interface {
	pulumi.Input

	ToDomainIamPolicyOutput() DomainIamPolicyOutput
	ToDomainIamPolicyOutputWithContext(ctx context.Context) DomainIamPolicyOutput
}

type DomainIamPolicyOutput 

type DomainIamPolicyOutput struct{ *pulumi.OutputState }

func (DomainIamPolicyOutput) Bindings added in v0.19.0 

func (o DomainIamPolicyOutput) Bindings() BindingResponseArrayOutput

Associates a list of `members`, or principals, with a `role`. Optionally, may specify a `condition` that determines how and when the `bindings` are applied. Each of the `bindings` must contain at least one principal. The `bindings` in a `Policy` can refer to up to 1,500 principals; up to 250 of these principals can be Google groups. Each occurrence of a principal counts towards these limits. For example, if the `bindings` grant 50 different roles to `user:alice@example.com`, and not to any other principal, then you can add another 1,450 principals to the `bindings` in the `Policy`.

func (DomainIamPolicyOutput) DomainId added in v0.21.0 

func (o DomainIamPolicyOutput) DomainId() pulumi.StringOutput

func (DomainIamPolicyOutput) ElementType 

func (DomainIamPolicyOutput) ElementType() reflect.Type

func (DomainIamPolicyOutput) Etag added in v0.19.0 

func (o DomainIamPolicyOutput) Etag() pulumi.StringOutput

`etag` is used for optimistic concurrency control as a way to help prevent simultaneous updates of a policy from overwriting each other. It is strongly suggested that systems make use of the `etag` in the read-modify-write cycle to perform policy updates in order to avoid race conditions: An `etag` is returned in the response to `getIamPolicy`, and systems are expected to put that etag in the request to `setIamPolicy` to ensure that their change will be applied to the same version of the policy. **Important:** If you use IAM Conditions, you must include the `etag` field whenever you call `setIamPolicy`. If you omit this field, then IAM allows you to overwrite a version `3` policy with a version `1` policy, and all of the conditions in the version `3` policy are lost.

func (DomainIamPolicyOutput) Project added in v0.21.0 

func (o DomainIamPolicyOutput) Project() pulumi.StringOutput

func (DomainIamPolicyOutput) ToDomainIamPolicyOutput 

func (o DomainIamPolicyOutput) ToDomainIamPolicyOutput() DomainIamPolicyOutput

func (DomainIamPolicyOutput) ToDomainIamPolicyOutputWithContext 

func (o DomainIamPolicyOutput) ToDomainIamPolicyOutputWithContext(ctx context.Context) DomainIamPolicyOutput

func (DomainIamPolicyOutput) Version added in v0.19.0 

func (o DomainIamPolicyOutput) Version() pulumi.IntOutput

Specifies the format of the policy. Valid values are `0`, `1`, and `3`. Requests that specify an invalid value are rejected. Any operation that affects conditional role bindings must specify version `3`. This requirement applies to the following operations: * Getting a policy that includes a conditional role binding * Adding a conditional role binding to a policy * Changing a conditional role binding in a policy * Removing any role binding, with or without a condition, from a policy that includes conditions **Important:** If you use IAM Conditions, you must include the `etag` field whenever you call `setIamPolicy`. If you omit this field, then IAM allows you to overwrite a version `3` policy with a version `1` policy, and all of the conditions in the version `3` policy are lost. If a policy does not include any conditions, operations on that policy may specify any valid version or leave the field unset. To learn which resources support conditions in their IAM policies, see the [IAM documentation](https://cloud.google.com/iam/help/conditions/resource-policies).

type DomainIamPolicyState 

type DomainIamPolicyState struct {
}

func (DomainIamPolicyState) ElementType 

func (DomainIamPolicyState) ElementType() reflect.Type

type DomainInput 

type DomainInput interface {
	pulumi.Input

	ToDomainOutput() DomainOutput
	ToDomainOutputWithContext(ctx context.Context) DomainOutput
}

type DomainOutput 

type DomainOutput struct{ *pulumi.OutputState }

func (DomainOutput) Admin added in v0.19.0 

func (o DomainOutput) Admin() pulumi.StringOutput

Optional. The name of delegated administrator account used to perform Active Directory operations. If not specified, `setupadmin` will be used.

func (DomainOutput) AuditLogsEnabled added in v0.19.0 

func (o DomainOutput) AuditLogsEnabled() pulumi.BoolOutput

Optional. Configuration for audit logs. True if audit logs are enabled, else false. Default is audit logs disabled.

func (DomainOutput) AuthorizedNetworks added in v0.19.0 

func (o DomainOutput) AuthorizedNetworks() pulumi.StringArrayOutput

Optional. The full names of the Google Compute Engine [networks](/compute/docs/networks-and-firewalls#networks) the domain instance is connected to. Networks can be added using UpdateDomain. The domain is only available on networks listed in `authorized_networks`. If CIDR subnets overlap between networks, domain creation will fail.

func (DomainOutput) CreateTime added in v0.19.0 

func (o DomainOutput) CreateTime() pulumi.StringOutput

The time the instance was created.

func (DomainOutput) DomainName added in v0.21.0 

func (o DomainOutput) DomainName() pulumi.StringOutput

Required. The fully qualified domain name. e.g. mydomain.myorganization.com, with the following restrictions: * Must contain only lowercase letters, numbers, periods and hyphens. * Must start with a letter. * Must contain between 2-64 characters. * Must end with a number or a letter. * Must not start with period. * First segment length (mydomain for example above) shouldn't exceed 15 chars. * The last segment cannot be fully numeric. * Must be unique within the customer project.

func (DomainOutput) ElementType 

func (DomainOutput) ElementType() reflect.Type

func (DomainOutput) Fqdn added in v0.19.0 

func (o DomainOutput) Fqdn() pulumi.StringOutput

The fully-qualified domain name of the exposed domain used by clients to connect to the service. Similar to what would be chosen for an Active Directory set up on an internal network.

func (DomainOutput) Labels added in v0.19.0 

func (o DomainOutput) Labels() pulumi.StringMapOutput

Optional. Resource labels that can contain user-provided metadata.

func (DomainOutput) Locations added in v0.19.0 

func (o DomainOutput) Locations() pulumi.StringArrayOutput

Locations where domain needs to be provisioned. regions e.g. us-west1 or us-east4 Service supports up to 4 locations at once. Each location will use a /26 block.

func (DomainOutput) Name added in v0.19.0 

func (o DomainOutput) Name() pulumi.StringOutput

The unique name of the domain using the form: `projects/{project_id}/locations/global/domains/{domain_name}`.

func (DomainOutput) Project added in v0.21.0 

func (o DomainOutput) Project() pulumi.StringOutput

func (DomainOutput) ReservedIpRange added in v0.19.0 

func (o DomainOutput) ReservedIpRange() pulumi.StringOutput

The CIDR range of internal addresses that are reserved for this domain. Reserved networks must be /24 or larger. Ranges must be unique and non-overlapping with existing subnets in Domain.[authorized_networks].

func (DomainOutput) State added in v0.19.0 

func (o DomainOutput) State() pulumi.StringOutput

The current state of this domain.

func (DomainOutput) StatusMessage added in v0.19.0 

func (o DomainOutput) StatusMessage() pulumi.StringOutput

Additional information about the current status of this domain, if available.

func (DomainOutput) ToDomainOutput 

func (o DomainOutput) ToDomainOutput() DomainOutput

func (DomainOutput) ToDomainOutputWithContext 

func (o DomainOutput) ToDomainOutputWithContext(ctx context.Context) DomainOutput

func (DomainOutput) Trusts added in v0.19.0 

func (o DomainOutput) Trusts() TrustResponseArrayOutput

The current trusts associated with the domain.

func (DomainOutput) UpdateTime added in v0.19.0 

func (o DomainOutput) UpdateTime() pulumi.StringOutput

The last update time.

type DomainState 

type DomainState struct {
}

func (DomainState) ElementType 

func (DomainState) ElementType() reflect.Type

type Expr 

type Expr struct {
	// Optional. Description of the expression. This is a longer text which describes the expression, e.g. when hovered over it in a UI.
	Description *string `pulumi:"description"`
	// Textual representation of an expression in Common Expression Language syntax.
	Expression *string `pulumi:"expression"`
	// Optional. String indicating the location of the expression for error reporting, e.g. a file name and a position in the file.
	Location *string `pulumi:"location"`
	// Optional. Title for the expression, i.e. a short string describing its purpose. This can be used e.g. in UIs which allow to enter the expression.
	Title *string `pulumi:"title"`
}

Represents a textual expression in the Common Expression Language (CEL) syntax. CEL is a C-like expression language. The syntax and semantics of CEL are documented at https://github.com/google/cel-spec. Example (Comparison): title: "Summary size limit" description: "Determines if a summary is less than 100 chars" expression: "document.summary.size() < 100" Example (Equality): title: "Requestor is owner" description: "Determines if requestor is the document owner" expression: "document.owner == request.auth.claims.email" Example (Logic): title: "Public documents" description: "Determine whether the document should be publicly visible" expression: "document.type != 'private' && document.type != 'internal'" Example (Data Manipulation): title: "Notification string" description: "Create a notification string with a timestamp." expression: "'New message received at ' + string(document.create_time)" The exact variables and functions that may be referenced within an expression are determined by the service that evaluates it. See the service documentation for additional information.

type ExprArgs 

type ExprArgs struct {
	// Optional. Description of the expression. This is a longer text which describes the expression, e.g. when hovered over it in a UI.
	Description pulumi.StringPtrInput `pulumi:"description"`
	// Textual representation of an expression in Common Expression Language syntax.
	Expression pulumi.StringPtrInput `pulumi:"expression"`
	// Optional. String indicating the location of the expression for error reporting, e.g. a file name and a position in the file.
	Location pulumi.StringPtrInput `pulumi:"location"`
	// Optional. Title for the expression, i.e. a short string describing its purpose. This can be used e.g. in UIs which allow to enter the expression.
	Title pulumi.StringPtrInput `pulumi:"title"`
}

Represents a textual expression in the Common Expression Language (CEL) syntax. CEL is a C-like expression language. The syntax and semantics of CEL are documented at https://github.com/google/cel-spec. Example (Comparison): title: "Summary size limit" description: "Determines if a summary is less than 100 chars" expression: "document.summary.size() < 100" Example (Equality): title: "Requestor is owner" description: "Determines if requestor is the document owner" expression: "document.owner == request.auth.claims.email" Example (Logic): title: "Public documents" description: "Determine whether the document should be publicly visible" expression: "document.type != 'private' && document.type != 'internal'" Example (Data Manipulation): title: "Notification string" description: "Create a notification string with a timestamp." expression: "'New message received at ' + string(document.create_time)" The exact variables and functions that may be referenced within an expression are determined by the service that evaluates it. See the service documentation for additional information.

func (ExprArgs) ElementType 

func (ExprArgs) ElementType() reflect.Type

func (ExprArgs) ToExprOutput 

func (i ExprArgs) ToExprOutput() ExprOutput

func (ExprArgs) ToExprOutputWithContext 

func (i ExprArgs) ToExprOutputWithContext(ctx context.Context) ExprOutput

func (ExprArgs) ToExprPtrOutput 

func (i ExprArgs) ToExprPtrOutput() ExprPtrOutput

func (ExprArgs) ToExprPtrOutputWithContext 

func (i ExprArgs) ToExprPtrOutputWithContext(ctx context.Context) ExprPtrOutput

type ExprInput 

type ExprInput interface {
	pulumi.Input

	ToExprOutput() ExprOutput
	ToExprOutputWithContext(context.Context) ExprOutput
}

ExprInput is an input type that accepts ExprArgs and ExprOutput values. You can construct a concrete instance of `ExprInput` via: 

ExprArgs{...}

type ExprOutput 

type ExprOutput struct{ *pulumi.OutputState }

Represents a textual expression in the Common Expression Language (CEL) syntax. CEL is a C-like expression language. The syntax and semantics of CEL are documented at https://github.com/google/cel-spec. Example (Comparison): title: "Summary size limit" description: "Determines if a summary is less than 100 chars" expression: "document.summary.size() < 100" Example (Equality): title: "Requestor is owner" description: "Determines if requestor is the document owner" expression: "document.owner == request.auth.claims.email" Example (Logic): title: "Public documents" description: "Determine whether the document should be publicly visible" expression: "document.type != 'private' && document.type != 'internal'" Example (Data Manipulation): title: "Notification string" description: "Create a notification string with a timestamp." expression: "'New message received at ' + string(document.create_time)" The exact variables and functions that may be referenced within an expression are determined by the service that evaluates it. See the service documentation for additional information.

func (ExprOutput) Description 

func (o ExprOutput) Description() pulumi.StringPtrOutput

Optional. Description of the expression. This is a longer text which describes the expression, e.g. when hovered over it in a UI.

func (ExprOutput) ElementType 

func (ExprOutput) ElementType() reflect.Type

func (ExprOutput) Expression 

func (o ExprOutput) Expression() pulumi.StringPtrOutput

Textual representation of an expression in Common Expression Language syntax.

func (ExprOutput) Location 

func (o ExprOutput) Location() pulumi.StringPtrOutput

Optional. String indicating the location of the expression for error reporting, e.g. a file name and a position in the file.

func (ExprOutput) Title 

func (o ExprOutput) Title() pulumi.StringPtrOutput

Optional. Title for the expression, i.e. a short string describing its purpose. This can be used e.g. in UIs which allow to enter the expression.

func (ExprOutput) ToExprOutput 

func (o ExprOutput) ToExprOutput() ExprOutput

func (ExprOutput) ToExprOutputWithContext 

func (o ExprOutput) ToExprOutputWithContext(ctx context.Context) ExprOutput

func (ExprOutput) ToExprPtrOutput 

func (o ExprOutput) ToExprPtrOutput() ExprPtrOutput

func (ExprOutput) ToExprPtrOutputWithContext 

func (o ExprOutput) ToExprPtrOutputWithContext(ctx context.Context) ExprPtrOutput

type ExprPtrInput 

type ExprPtrInput interface {
	pulumi.Input

	ToExprPtrOutput() ExprPtrOutput
	ToExprPtrOutputWithContext(context.Context) ExprPtrOutput
}

ExprPtrInput is an input type that accepts ExprArgs, ExprPtr and ExprPtrOutput values. You can construct a concrete instance of `ExprPtrInput` via: 

        ExprArgs{...}

or:

        nil

func ExprPtr 

func ExprPtr(v *ExprArgs) ExprPtrInput

type ExprPtrOutput 

type ExprPtrOutput struct{ *pulumi.OutputState }

func (ExprPtrOutput) Description 

func (o ExprPtrOutput) Description() pulumi.StringPtrOutput

Optional. Description of the expression. This is a longer text which describes the expression, e.g. when hovered over it in a UI.

func (ExprPtrOutput) Elem 

func (o ExprPtrOutput) Elem() ExprOutput

func (ExprPtrOutput) ElementType 

func (ExprPtrOutput) ElementType() reflect.Type

func (ExprPtrOutput) Expression 

func (o ExprPtrOutput) Expression() pulumi.StringPtrOutput

Textual representation of an expression in Common Expression Language syntax.

func (ExprPtrOutput) Location 

func (o ExprPtrOutput) Location() pulumi.StringPtrOutput

Optional. String indicating the location of the expression for error reporting, e.g. a file name and a position in the file.

func (ExprPtrOutput) Title 

func (o ExprPtrOutput) Title() pulumi.StringPtrOutput

Optional. Title for the expression, i.e. a short string describing its purpose. This can be used e.g. in UIs which allow to enter the expression.

func (ExprPtrOutput) ToExprPtrOutput 

func (o ExprPtrOutput) ToExprPtrOutput() ExprPtrOutput

func (ExprPtrOutput) ToExprPtrOutputWithContext 

func (o ExprPtrOutput) ToExprPtrOutputWithContext(ctx context.Context) ExprPtrOutput

type ExprResponse 

type ExprResponse struct {
	// Optional. Description of the expression. This is a longer text which describes the expression, e.g. when hovered over it in a UI.
	Description string `pulumi:"description"`
	// Textual representation of an expression in Common Expression Language syntax.
	Expression string `pulumi:"expression"`
	// Optional. String indicating the location of the expression for error reporting, e.g. a file name and a position in the file.
	Location string `pulumi:"location"`
	// Optional. Title for the expression, i.e. a short string describing its purpose. This can be used e.g. in UIs which allow to enter the expression.
	Title string `pulumi:"title"`
}

Represents a textual expression in the Common Expression Language (CEL) syntax. CEL is a C-like expression language. The syntax and semantics of CEL are documented at https://github.com/google/cel-spec. Example (Comparison): title: "Summary size limit" description: "Determines if a summary is less than 100 chars" expression: "document.summary.size() < 100" Example (Equality): title: "Requestor is owner" description: "Determines if requestor is the document owner" expression: "document.owner == request.auth.claims.email" Example (Logic): title: "Public documents" description: "Determine whether the document should be publicly visible" expression: "document.type != 'private' && document.type != 'internal'" Example (Data Manipulation): title: "Notification string" description: "Create a notification string with a timestamp." expression: "'New message received at ' + string(document.create_time)" The exact variables and functions that may be referenced within an expression are determined by the service that evaluates it. See the service documentation for additional information.

type ExprResponseOutput 

type ExprResponseOutput struct{ *pulumi.OutputState }

Represents a textual expression in the Common Expression Language (CEL) syntax. CEL is a C-like expression language. The syntax and semantics of CEL are documented at https://github.com/google/cel-spec. Example (Comparison): title: "Summary size limit" description: "Determines if a summary is less than 100 chars" expression: "document.summary.size() < 100" Example (Equality): title: "Requestor is owner" description: "Determines if requestor is the document owner" expression: "document.owner == request.auth.claims.email" Example (Logic): title: "Public documents" description: "Determine whether the document should be publicly visible" expression: "document.type != 'private' && document.type != 'internal'" Example (Data Manipulation): title: "Notification string" description: "Create a notification string with a timestamp." expression: "'New message received at ' + string(document.create_time)" The exact variables and functions that may be referenced within an expression are determined by the service that evaluates it. See the service documentation for additional information.

func (ExprResponseOutput) Description 

func (o ExprResponseOutput) Description() pulumi.StringOutput

Optional. Description of the expression. This is a longer text which describes the expression, e.g. when hovered over it in a UI.

func (ExprResponseOutput) ElementType 

func (ExprResponseOutput) ElementType() reflect.Type

func (ExprResponseOutput) Expression 

func (o ExprResponseOutput) Expression() pulumi.StringOutput

Textual representation of an expression in Common Expression Language syntax.

func (ExprResponseOutput) Location 

func (o ExprResponseOutput) Location() pulumi.StringOutput

Optional. String indicating the location of the expression for error reporting, e.g. a file name and a position in the file.

func (ExprResponseOutput) Title 

func (o ExprResponseOutput) Title() pulumi.StringOutput

Optional. Title for the expression, i.e. a short string describing its purpose. This can be used e.g. in UIs which allow to enter the expression.

func (ExprResponseOutput) ToExprResponseOutput 

func (o ExprResponseOutput) ToExprResponseOutput() ExprResponseOutput

func (ExprResponseOutput) ToExprResponseOutputWithContext 

func (o ExprResponseOutput) ToExprResponseOutputWithContext(ctx context.Context) ExprResponseOutput

type LookupBackupArgs added in v0.16.0 

type LookupBackupArgs struct {
	BackupId string  `pulumi:"backupId"`
	DomainId string  `pulumi:"domainId"`
	Project  *string `pulumi:"project"`
}

type LookupBackupOutputArgs added in v0.16.0 

type LookupBackupOutputArgs struct {
	BackupId pulumi.StringInput    `pulumi:"backupId"`
	DomainId pulumi.StringInput    `pulumi:"domainId"`
	Project  pulumi.StringPtrInput `pulumi:"project"`
}

func (LookupBackupOutputArgs) ElementType added in v0.16.0 

func (LookupBackupOutputArgs) ElementType() reflect.Type

type LookupBackupResult added in v0.16.0 

type LookupBackupResult struct {
	// The time the backups was created.
	CreateTime string `pulumi:"createTime"`
	// Optional. Resource labels to represent user provided metadata.
	Labels map[string]string `pulumi:"labels"`
	// The unique name of the Backup in the form of `projects/{project_id}/locations/global/domains/{domain_name}/backups/{name}`
	Name string `pulumi:"name"`
	// The current state of the backup.
	State string `pulumi:"state"`
	// Additional information about the current status of this backup, if available.
	StatusMessage string `pulumi:"statusMessage"`
	// Indicates whether it’s an on-demand backup or scheduled.
	Type string `pulumi:"type"`
	// Last update time.
	UpdateTime string `pulumi:"updateTime"`
}

func LookupBackup added in v0.16.0 

func LookupBackup(ctx *pulumi.Context, args *LookupBackupArgs, opts ...pulumi.InvokeOption) (*LookupBackupResult, error)

Gets details of a single Backup.

type LookupBackupResultOutput added in v0.16.0 

type LookupBackupResultOutput struct{ *pulumi.OutputState }

func LookupBackupOutput added in v0.16.0 

func LookupBackupOutput(ctx *pulumi.Context, args LookupBackupOutputArgs, opts ...pulumi.InvokeOption) LookupBackupResultOutput

func (LookupBackupResultOutput) CreateTime added in v0.16.0 

func (o LookupBackupResultOutput) CreateTime() pulumi.StringOutput

The time the backups was created.

func (LookupBackupResultOutput) ElementType added in v0.16.0 

func (LookupBackupResultOutput) ElementType() reflect.Type

func (LookupBackupResultOutput) Labels added in v0.16.0 

func (o LookupBackupResultOutput) Labels() pulumi.StringMapOutput

Optional. Resource labels to represent user provided metadata.

func (LookupBackupResultOutput) Name added in v0.16.0 

func (o LookupBackupResultOutput) Name() pulumi.StringOutput

The unique name of the Backup in the form of `projects/{project_id}/locations/global/domains/{domain_name}/backups/{name}`

func (LookupBackupResultOutput) State added in v0.16.0 

func (o LookupBackupResultOutput) State() pulumi.StringOutput

The current state of the backup.

func (LookupBackupResultOutput) StatusMessage added in v0.16.0 

func (o LookupBackupResultOutput) StatusMessage() pulumi.StringOutput

Additional information about the current status of this backup, if available.

func (LookupBackupResultOutput) ToLookupBackupResultOutput added in v0.16.0 

func (o LookupBackupResultOutput) ToLookupBackupResultOutput() LookupBackupResultOutput

func (LookupBackupResultOutput) ToLookupBackupResultOutputWithContext added in v0.16.0 

func (o LookupBackupResultOutput) ToLookupBackupResultOutputWithContext(ctx context.Context) LookupBackupResultOutput

func (LookupBackupResultOutput) Type added in v0.16.0 

func (o LookupBackupResultOutput) Type() pulumi.StringOutput

Indicates whether it’s an on-demand backup or scheduled.

func (LookupBackupResultOutput) UpdateTime added in v0.16.0 

func (o LookupBackupResultOutput) UpdateTime() pulumi.StringOutput

Last update time.

type LookupDomainArgs added in v0.4.0 

type LookupDomainArgs struct {
	DomainId string  `pulumi:"domainId"`
	Project  *string `pulumi:"project"`
}

type LookupDomainBackupIamPolicyArgs added in v0.16.0 

type LookupDomainBackupIamPolicyArgs struct {
	BackupId                      string  `pulumi:"backupId"`
	DomainId                      string  `pulumi:"domainId"`
	OptionsRequestedPolicyVersion *int    `pulumi:"optionsRequestedPolicyVersion"`
	Project                       *string `pulumi:"project"`
}

type LookupDomainBackupIamPolicyOutputArgs added in v0.16.0 

type LookupDomainBackupIamPolicyOutputArgs struct {
	BackupId                      pulumi.StringInput    `pulumi:"backupId"`
	DomainId                      pulumi.StringInput    `pulumi:"domainId"`
	OptionsRequestedPolicyVersion pulumi.IntPtrInput    `pulumi:"optionsRequestedPolicyVersion"`
	Project                       pulumi.StringPtrInput `pulumi:"project"`
}

func (LookupDomainBackupIamPolicyOutputArgs) ElementType added in v0.16.0 

func (LookupDomainBackupIamPolicyOutputArgs) ElementType() reflect.Type

type LookupDomainBackupIamPolicyResult added in v0.16.0 

type LookupDomainBackupIamPolicyResult struct {
	// Associates a list of `members`, or principals, with a `role`. Optionally, may specify a `condition` that determines how and when the `bindings` are applied. Each of the `bindings` must contain at least one principal. The `bindings` in a `Policy` can refer to up to 1,500 principals; up to 250 of these principals can be Google groups. Each occurrence of a principal counts towards these limits. For example, if the `bindings` grant 50 different roles to `user:alice@example.com`, and not to any other principal, then you can add another 1,450 principals to the `bindings` in the `Policy`.
	Bindings []BindingResponse `pulumi:"bindings"`
	// `etag` is used for optimistic concurrency control as a way to help prevent simultaneous updates of a policy from overwriting each other. It is strongly suggested that systems make use of the `etag` in the read-modify-write cycle to perform policy updates in order to avoid race conditions: An `etag` is returned in the response to `getIamPolicy`, and systems are expected to put that etag in the request to `setIamPolicy` to ensure that their change will be applied to the same version of the policy. **Important:** If you use IAM Conditions, you must include the `etag` field whenever you call `setIamPolicy`. If you omit this field, then IAM allows you to overwrite a version `3` policy with a version `1` policy, and all of the conditions in the version `3` policy are lost.
	Etag string `pulumi:"etag"`
	// Specifies the format of the policy. Valid values are `0`, `1`, and `3`. Requests that specify an invalid value are rejected. Any operation that affects conditional role bindings must specify version `3`. This requirement applies to the following operations: * Getting a policy that includes a conditional role binding * Adding a conditional role binding to a policy * Changing a conditional role binding in a policy * Removing any role binding, with or without a condition, from a policy that includes conditions **Important:** If you use IAM Conditions, you must include the `etag` field whenever you call `setIamPolicy`. If you omit this field, then IAM allows you to overwrite a version `3` policy with a version `1` policy, and all of the conditions in the version `3` policy are lost. If a policy does not include any conditions, operations on that policy may specify any valid version or leave the field unset. To learn which resources support conditions in their IAM policies, see the [IAM documentation](https://cloud.google.com/iam/help/conditions/resource-policies).
	Version int `pulumi:"version"`
}

func LookupDomainBackupIamPolicy added in v0.16.0 

func LookupDomainBackupIamPolicy(ctx *pulumi.Context, args *LookupDomainBackupIamPolicyArgs, opts ...pulumi.InvokeOption) (*LookupDomainBackupIamPolicyResult, error)

Gets the access control policy for a resource. Returns an empty policy if the resource exists and does not have a policy set.

type LookupDomainBackupIamPolicyResultOutput added in v0.16.0 

type LookupDomainBackupIamPolicyResultOutput struct{ *pulumi.OutputState }

func LookupDomainBackupIamPolicyOutput added in v0.16.0 

func LookupDomainBackupIamPolicyOutput(ctx *pulumi.Context, args LookupDomainBackupIamPolicyOutputArgs, opts ...pulumi.InvokeOption) LookupDomainBackupIamPolicyResultOutput

func (LookupDomainBackupIamPolicyResultOutput) Bindings added in v0.16.0 

func (o LookupDomainBackupIamPolicyResultOutput) Bindings() BindingResponseArrayOutput

Associates a list of `members`, or principals, with a `role`. Optionally, may specify a `condition` that determines how and when the `bindings` are applied. Each of the `bindings` must contain at least one principal. The `bindings` in a `Policy` can refer to up to 1,500 principals; up to 250 of these principals can be Google groups. Each occurrence of a principal counts towards these limits. For example, if the `bindings` grant 50 different roles to `user:alice@example.com`, and not to any other principal, then you can add another 1,450 principals to the `bindings` in the `Policy`.

func (LookupDomainBackupIamPolicyResultOutput) ElementType added in v0.16.0 

func (LookupDomainBackupIamPolicyResultOutput) ElementType() reflect.Type

func (LookupDomainBackupIamPolicyResultOutput) Etag added in v0.16.0 

func (o LookupDomainBackupIamPolicyResultOutput) Etag() pulumi.StringOutput

`etag` is used for optimistic concurrency control as a way to help prevent simultaneous updates of a policy from overwriting each other. It is strongly suggested that systems make use of the `etag` in the read-modify-write cycle to perform policy updates in order to avoid race conditions: An `etag` is returned in the response to `getIamPolicy`, and systems are expected to put that etag in the request to `setIamPolicy` to ensure that their change will be applied to the same version of the policy. **Important:** If you use IAM Conditions, you must include the `etag` field whenever you call `setIamPolicy`. If you omit this field, then IAM allows you to overwrite a version `3` policy with a version `1` policy, and all of the conditions in the version `3` policy are lost.

func (LookupDomainBackupIamPolicyResultOutput) ToLookupDomainBackupIamPolicyResultOutput added in v0.16.0 

func (o LookupDomainBackupIamPolicyResultOutput) ToLookupDomainBackupIamPolicyResultOutput() LookupDomainBackupIamPolicyResultOutput

func (LookupDomainBackupIamPolicyResultOutput) ToLookupDomainBackupIamPolicyResultOutputWithContext added in v0.16.0 

func (o LookupDomainBackupIamPolicyResultOutput) ToLookupDomainBackupIamPolicyResultOutputWithContext(ctx context.Context) LookupDomainBackupIamPolicyResultOutput

func (LookupDomainBackupIamPolicyResultOutput) Version added in v0.16.0 

func (o LookupDomainBackupIamPolicyResultOutput) Version() pulumi.IntOutput

Specifies the format of the policy. Valid values are `0`, `1`, and `3`. Requests that specify an invalid value are rejected. Any operation that affects conditional role bindings must specify version `3`. This requirement applies to the following operations: * Getting a policy that includes a conditional role binding * Adding a conditional role binding to a policy * Changing a conditional role binding in a policy * Removing any role binding, with or without a condition, from a policy that includes conditions **Important:** If you use IAM Conditions, you must include the `etag` field whenever you call `setIamPolicy`. If you omit this field, then IAM allows you to overwrite a version `3` policy with a version `1` policy, and all of the conditions in the version `3` policy are lost. If a policy does not include any conditions, operations on that policy may specify any valid version or leave the field unset. To learn which resources support conditions in their IAM policies, see the [IAM documentation](https://cloud.google.com/iam/help/conditions/resource-policies).

type LookupDomainIamPolicyArgs added in v0.4.0 

type LookupDomainIamPolicyArgs struct {
	DomainId                      string  `pulumi:"domainId"`
	OptionsRequestedPolicyVersion *int    `pulumi:"optionsRequestedPolicyVersion"`
	Project                       *string `pulumi:"project"`
}

type LookupDomainIamPolicyOutputArgs added in v0.8.0 

type LookupDomainIamPolicyOutputArgs struct {
	DomainId                      pulumi.StringInput    `pulumi:"domainId"`
	OptionsRequestedPolicyVersion pulumi.IntPtrInput    `pulumi:"optionsRequestedPolicyVersion"`
	Project                       pulumi.StringPtrInput `pulumi:"project"`
}

func (LookupDomainIamPolicyOutputArgs) ElementType added in v0.8.0 

func (LookupDomainIamPolicyOutputArgs) ElementType() reflect.Type

type LookupDomainIamPolicyResult added in v0.4.0 

type LookupDomainIamPolicyResult struct {
	// Associates a list of `members`, or principals, with a `role`. Optionally, may specify a `condition` that determines how and when the `bindings` are applied. Each of the `bindings` must contain at least one principal. The `bindings` in a `Policy` can refer to up to 1,500 principals; up to 250 of these principals can be Google groups. Each occurrence of a principal counts towards these limits. For example, if the `bindings` grant 50 different roles to `user:alice@example.com`, and not to any other principal, then you can add another 1,450 principals to the `bindings` in the `Policy`.
	Bindings []BindingResponse `pulumi:"bindings"`
	// `etag` is used for optimistic concurrency control as a way to help prevent simultaneous updates of a policy from overwriting each other. It is strongly suggested that systems make use of the `etag` in the read-modify-write cycle to perform policy updates in order to avoid race conditions: An `etag` is returned in the response to `getIamPolicy`, and systems are expected to put that etag in the request to `setIamPolicy` to ensure that their change will be applied to the same version of the policy. **Important:** If you use IAM Conditions, you must include the `etag` field whenever you call `setIamPolicy`. If you omit this field, then IAM allows you to overwrite a version `3` policy with a version `1` policy, and all of the conditions in the version `3` policy are lost.
	Etag string `pulumi:"etag"`
	// Specifies the format of the policy. Valid values are `0`, `1`, and `3`. Requests that specify an invalid value are rejected. Any operation that affects conditional role bindings must specify version `3`. This requirement applies to the following operations: * Getting a policy that includes a conditional role binding * Adding a conditional role binding to a policy * Changing a conditional role binding in a policy * Removing any role binding, with or without a condition, from a policy that includes conditions **Important:** If you use IAM Conditions, you must include the `etag` field whenever you call `setIamPolicy`. If you omit this field, then IAM allows you to overwrite a version `3` policy with a version `1` policy, and all of the conditions in the version `3` policy are lost. If a policy does not include any conditions, operations on that policy may specify any valid version or leave the field unset. To learn which resources support conditions in their IAM policies, see the [IAM documentation](https://cloud.google.com/iam/help/conditions/resource-policies).
	Version int `pulumi:"version"`
}

func LookupDomainIamPolicy added in v0.4.0 

func LookupDomainIamPolicy(ctx *pulumi.Context, args *LookupDomainIamPolicyArgs, opts ...pulumi.InvokeOption) (*LookupDomainIamPolicyResult, error)

Gets the access control policy for a resource. Returns an empty policy if the resource exists and does not have a policy set.

type LookupDomainIamPolicyResultOutput added in v0.8.0 

type LookupDomainIamPolicyResultOutput struct{ *pulumi.OutputState }

func LookupDomainIamPolicyOutput added in v0.8.0 

func LookupDomainIamPolicyOutput(ctx *pulumi.Context, args LookupDomainIamPolicyOutputArgs, opts ...pulumi.InvokeOption) LookupDomainIamPolicyResultOutput

func (LookupDomainIamPolicyResultOutput) Bindings added in v0.8.0 

func (o LookupDomainIamPolicyResultOutput) Bindings() BindingResponseArrayOutput

Associates a list of `members`, or principals, with a `role`. Optionally, may specify a `condition` that determines how and when the `bindings` are applied. Each of the `bindings` must contain at least one principal. The `bindings` in a `Policy` can refer to up to 1,500 principals; up to 250 of these principals can be Google groups. Each occurrence of a principal counts towards these limits. For example, if the `bindings` grant 50 different roles to `user:alice@example.com`, and not to any other principal, then you can add another 1,450 principals to the `bindings` in the `Policy`.

func (LookupDomainIamPolicyResultOutput) ElementType added in v0.8.0 

func (LookupDomainIamPolicyResultOutput) ElementType() reflect.Type

func (LookupDomainIamPolicyResultOutput) Etag added in v0.8.0 

func (o LookupDomainIamPolicyResultOutput) Etag() pulumi.StringOutput

`etag` is used for optimistic concurrency control as a way to help prevent simultaneous updates of a policy from overwriting each other. It is strongly suggested that systems make use of the `etag` in the read-modify-write cycle to perform policy updates in order to avoid race conditions: An `etag` is returned in the response to `getIamPolicy`, and systems are expected to put that etag in the request to `setIamPolicy` to ensure that their change will be applied to the same version of the policy. **Important:** If you use IAM Conditions, you must include the `etag` field whenever you call `setIamPolicy`. If you omit this field, then IAM allows you to overwrite a version `3` policy with a version `1` policy, and all of the conditions in the version `3` policy are lost.

func (LookupDomainIamPolicyResultOutput) ToLookupDomainIamPolicyResultOutput added in v0.8.0 

func (o LookupDomainIamPolicyResultOutput) ToLookupDomainIamPolicyResultOutput() LookupDomainIamPolicyResultOutput

func (LookupDomainIamPolicyResultOutput) ToLookupDomainIamPolicyResultOutputWithContext added in v0.8.0 

func (o LookupDomainIamPolicyResultOutput) ToLookupDomainIamPolicyResultOutputWithContext(ctx context.Context) LookupDomainIamPolicyResultOutput

func (LookupDomainIamPolicyResultOutput) Version added in v0.8.0 

func (o LookupDomainIamPolicyResultOutput) Version() pulumi.IntOutput

Specifies the format of the policy. Valid values are `0`, `1`, and `3`. Requests that specify an invalid value are rejected. Any operation that affects conditional role bindings must specify version `3`. This requirement applies to the following operations: * Getting a policy that includes a conditional role binding * Adding a conditional role binding to a policy * Changing a conditional role binding in a policy * Removing any role binding, with or without a condition, from a policy that includes conditions **Important:** If you use IAM Conditions, you must include the `etag` field whenever you call `setIamPolicy`. If you omit this field, then IAM allows you to overwrite a version `3` policy with a version `1` policy, and all of the conditions in the version `3` policy are lost. If a policy does not include any conditions, operations on that policy may specify any valid version or leave the field unset. To learn which resources support conditions in their IAM policies, see the [IAM documentation](https://cloud.google.com/iam/help/conditions/resource-policies).

type LookupDomainOutputArgs added in v0.8.0 

type LookupDomainOutputArgs struct {
	DomainId pulumi.StringInput    `pulumi:"domainId"`
	Project  pulumi.StringPtrInput `pulumi:"project"`
}

func (LookupDomainOutputArgs) ElementType added in v0.8.0 

func (LookupDomainOutputArgs) ElementType() reflect.Type

type LookupDomainResult added in v0.4.0 

type LookupDomainResult struct {
	// Optional. The name of delegated administrator account used to perform Active Directory operations. If not specified, `setupadmin` will be used.
	Admin string `pulumi:"admin"`
	// Optional. Configuration for audit logs. True if audit logs are enabled, else false. Default is audit logs disabled.
	AuditLogsEnabled bool `pulumi:"auditLogsEnabled"`
	// Optional. The full names of the Google Compute Engine [networks](/compute/docs/networks-and-firewalls#networks) the domain instance is connected to. Networks can be added using UpdateDomain. The domain is only available on networks listed in `authorized_networks`. If CIDR subnets overlap between networks, domain creation will fail.
	AuthorizedNetworks []string `pulumi:"authorizedNetworks"`
	// The time the instance was created.
	CreateTime string `pulumi:"createTime"`
	// The fully-qualified domain name of the exposed domain used by clients to connect to the service. Similar to what would be chosen for an Active Directory set up on an internal network.
	Fqdn string `pulumi:"fqdn"`
	// Optional. Resource labels that can contain user-provided metadata.
	Labels map[string]string `pulumi:"labels"`
	// Locations where domain needs to be provisioned. regions e.g. us-west1 or us-east4 Service supports up to 4 locations at once. Each location will use a /26 block.
	Locations []string `pulumi:"locations"`
	// The unique name of the domain using the form: `projects/{project_id}/locations/global/domains/{domain_name}`.
	Name string `pulumi:"name"`
	// The CIDR range of internal addresses that are reserved for this domain. Reserved networks must be /24 or larger. Ranges must be unique and non-overlapping with existing subnets in [Domain].[authorized_networks].
	ReservedIpRange string `pulumi:"reservedIpRange"`
	// The current state of this domain.
	State string `pulumi:"state"`
	// Additional information about the current status of this domain, if available.
	StatusMessage string `pulumi:"statusMessage"`
	// The current trusts associated with the domain.
	Trusts []TrustResponse `pulumi:"trusts"`
	// The last update time.
	UpdateTime string `pulumi:"updateTime"`
}

func LookupDomain added in v0.4.0 

func LookupDomain(ctx *pulumi.Context, args *LookupDomainArgs, opts ...pulumi.InvokeOption) (*LookupDomainResult, error)

Gets information about a domain.

type LookupDomainResultOutput added in v0.8.0 

type LookupDomainResultOutput struct{ *pulumi.OutputState }

func LookupDomainOutput added in v0.8.0 

func LookupDomainOutput(ctx *pulumi.Context, args LookupDomainOutputArgs, opts ...pulumi.InvokeOption) LookupDomainResultOutput

func (LookupDomainResultOutput) Admin added in v0.8.0 

func (o LookupDomainResultOutput) Admin() pulumi.StringOutput

Optional. The name of delegated administrator account used to perform Active Directory operations. If not specified, `setupadmin` will be used.

func (LookupDomainResultOutput) AuditLogsEnabled added in v0.8.0 

func (o LookupDomainResultOutput) AuditLogsEnabled() pulumi.BoolOutput

Optional. Configuration for audit logs. True if audit logs are enabled, else false. Default is audit logs disabled.

func (LookupDomainResultOutput) AuthorizedNetworks added in v0.8.0 

func (o LookupDomainResultOutput) AuthorizedNetworks() pulumi.StringArrayOutput

Optional. The full names of the Google Compute Engine [networks](/compute/docs/networks-and-firewalls#networks) the domain instance is connected to. Networks can be added using UpdateDomain. The domain is only available on networks listed in `authorized_networks`. If CIDR subnets overlap between networks, domain creation will fail.

func (LookupDomainResultOutput) CreateTime added in v0.8.0 

func (o LookupDomainResultOutput) CreateTime() pulumi.StringOutput

The time the instance was created.

func (LookupDomainResultOutput) ElementType added in v0.8.0 

func (LookupDomainResultOutput) ElementType() reflect.Type

func (LookupDomainResultOutput) Fqdn added in v0.8.0 

func (o LookupDomainResultOutput) Fqdn() pulumi.StringOutput

The fully-qualified domain name of the exposed domain used by clients to connect to the service. Similar to what would be chosen for an Active Directory set up on an internal network.

func (LookupDomainResultOutput) Labels added in v0.8.0 

func (o LookupDomainResultOutput) Labels() pulumi.StringMapOutput

Optional. Resource labels that can contain user-provided metadata.

func (LookupDomainResultOutput) Locations added in v0.8.0 

func (o LookupDomainResultOutput) Locations() pulumi.StringArrayOutput

Locations where domain needs to be provisioned. regions e.g. us-west1 or us-east4 Service supports up to 4 locations at once. Each location will use a /26 block.

func (LookupDomainResultOutput) Name added in v0.8.0 

func (o LookupDomainResultOutput) Name() pulumi.StringOutput

The unique name of the domain using the form: `projects/{project_id}/locations/global/domains/{domain_name}`.

func (LookupDomainResultOutput) ReservedIpRange added in v0.8.0 

func (o LookupDomainResultOutput) ReservedIpRange() pulumi.StringOutput

The CIDR range of internal addresses that are reserved for this domain. Reserved networks must be /24 or larger. Ranges must be unique and non-overlapping with existing subnets in Domain.[authorized_networks].

func (LookupDomainResultOutput) State added in v0.8.0 

func (o LookupDomainResultOutput) State() pulumi.StringOutput

The current state of this domain.

func (LookupDomainResultOutput) StatusMessage added in v0.8.0 

func (o LookupDomainResultOutput) StatusMessage() pulumi.StringOutput

Additional information about the current status of this domain, if available.

func (LookupDomainResultOutput) ToLookupDomainResultOutput added in v0.8.0 

func (o LookupDomainResultOutput) ToLookupDomainResultOutput() LookupDomainResultOutput

func (LookupDomainResultOutput) ToLookupDomainResultOutputWithContext added in v0.8.0 

func (o LookupDomainResultOutput) ToLookupDomainResultOutputWithContext(ctx context.Context) LookupDomainResultOutput

func (LookupDomainResultOutput) Trusts added in v0.8.0 

func (o LookupDomainResultOutput) Trusts() TrustResponseArrayOutput

The current trusts associated with the domain.

func (LookupDomainResultOutput) UpdateTime added in v0.8.0 

func (o LookupDomainResultOutput) UpdateTime() pulumi.StringOutput

The last update time.

type LookupPeeringArgs added in v0.8.0 

type LookupPeeringArgs struct {
	PeeringId string  `pulumi:"peeringId"`
	Project   *string `pulumi:"project"`
}

type LookupPeeringIamPolicyArgs added in v0.8.0 

type LookupPeeringIamPolicyArgs struct {
	OptionsRequestedPolicyVersion *int    `pulumi:"optionsRequestedPolicyVersion"`
	PeeringId                     string  `pulumi:"peeringId"`
	Project                       *string `pulumi:"project"`
}

type LookupPeeringIamPolicyOutputArgs added in v0.8.0 

type LookupPeeringIamPolicyOutputArgs struct {
	OptionsRequestedPolicyVersion pulumi.IntPtrInput    `pulumi:"optionsRequestedPolicyVersion"`
	PeeringId                     pulumi.StringInput    `pulumi:"peeringId"`
	Project                       pulumi.StringPtrInput `pulumi:"project"`
}

func (LookupPeeringIamPolicyOutputArgs) ElementType added in v0.8.0 

func (LookupPeeringIamPolicyOutputArgs) ElementType() reflect.Type

type LookupPeeringIamPolicyResult added in v0.8.0 

type LookupPeeringIamPolicyResult struct {
	// Associates a list of `members`, or principals, with a `role`. Optionally, may specify a `condition` that determines how and when the `bindings` are applied. Each of the `bindings` must contain at least one principal. The `bindings` in a `Policy` can refer to up to 1,500 principals; up to 250 of these principals can be Google groups. Each occurrence of a principal counts towards these limits. For example, if the `bindings` grant 50 different roles to `user:alice@example.com`, and not to any other principal, then you can add another 1,450 principals to the `bindings` in the `Policy`.
	Bindings []BindingResponse `pulumi:"bindings"`
	// `etag` is used for optimistic concurrency control as a way to help prevent simultaneous updates of a policy from overwriting each other. It is strongly suggested that systems make use of the `etag` in the read-modify-write cycle to perform policy updates in order to avoid race conditions: An `etag` is returned in the response to `getIamPolicy`, and systems are expected to put that etag in the request to `setIamPolicy` to ensure that their change will be applied to the same version of the policy. **Important:** If you use IAM Conditions, you must include the `etag` field whenever you call `setIamPolicy`. If you omit this field, then IAM allows you to overwrite a version `3` policy with a version `1` policy, and all of the conditions in the version `3` policy are lost.
	Etag string `pulumi:"etag"`
	// Specifies the format of the policy. Valid values are `0`, `1`, and `3`. Requests that specify an invalid value are rejected. Any operation that affects conditional role bindings must specify version `3`. This requirement applies to the following operations: * Getting a policy that includes a conditional role binding * Adding a conditional role binding to a policy * Changing a conditional role binding in a policy * Removing any role binding, with or without a condition, from a policy that includes conditions **Important:** If you use IAM Conditions, you must include the `etag` field whenever you call `setIamPolicy`. If you omit this field, then IAM allows you to overwrite a version `3` policy with a version `1` policy, and all of the conditions in the version `3` policy are lost. If a policy does not include any conditions, operations on that policy may specify any valid version or leave the field unset. To learn which resources support conditions in their IAM policies, see the [IAM documentation](https://cloud.google.com/iam/help/conditions/resource-policies).
	Version int `pulumi:"version"`
}

func LookupPeeringIamPolicy added in v0.8.0 

func LookupPeeringIamPolicy(ctx *pulumi.Context, args *LookupPeeringIamPolicyArgs, opts ...pulumi.InvokeOption) (*LookupPeeringIamPolicyResult, error)

Gets the access control policy for a resource. Returns an empty policy if the resource exists and does not have a policy set.

type LookupPeeringIamPolicyResultOutput added in v0.8.0 

type LookupPeeringIamPolicyResultOutput struct{ *pulumi.OutputState }

func LookupPeeringIamPolicyOutput added in v0.8.0 

func LookupPeeringIamPolicyOutput(ctx *pulumi.Context, args LookupPeeringIamPolicyOutputArgs, opts ...pulumi.InvokeOption) LookupPeeringIamPolicyResultOutput

func (LookupPeeringIamPolicyResultOutput) Bindings added in v0.8.0 

func (o LookupPeeringIamPolicyResultOutput) Bindings() BindingResponseArrayOutput

Associates a list of `members`, or principals, with a `role`. Optionally, may specify a `condition` that determines how and when the `bindings` are applied. Each of the `bindings` must contain at least one principal. The `bindings` in a `Policy` can refer to up to 1,500 principals; up to 250 of these principals can be Google groups. Each occurrence of a principal counts towards these limits. For example, if the `bindings` grant 50 different roles to `user:alice@example.com`, and not to any other principal, then you can add another 1,450 principals to the `bindings` in the `Policy`.

func (LookupPeeringIamPolicyResultOutput) ElementType added in v0.8.0 

func (LookupPeeringIamPolicyResultOutput) ElementType() reflect.Type

func (LookupPeeringIamPolicyResultOutput) Etag added in v0.8.0 

func (o LookupPeeringIamPolicyResultOutput) Etag() pulumi.StringOutput

`etag` is used for optimistic concurrency control as a way to help prevent simultaneous updates of a policy from overwriting each other. It is strongly suggested that systems make use of the `etag` in the read-modify-write cycle to perform policy updates in order to avoid race conditions: An `etag` is returned in the response to `getIamPolicy`, and systems are expected to put that etag in the request to `setIamPolicy` to ensure that their change will be applied to the same version of the policy. **Important:** If you use IAM Conditions, you must include the `etag` field whenever you call `setIamPolicy`. If you omit this field, then IAM allows you to overwrite a version `3` policy with a version `1` policy, and all of the conditions in the version `3` policy are lost.

func (LookupPeeringIamPolicyResultOutput) ToLookupPeeringIamPolicyResultOutput added in v0.8.0 

func (o LookupPeeringIamPolicyResultOutput) ToLookupPeeringIamPolicyResultOutput() LookupPeeringIamPolicyResultOutput

func (LookupPeeringIamPolicyResultOutput) ToLookupPeeringIamPolicyResultOutputWithContext added in v0.8.0 

func (o LookupPeeringIamPolicyResultOutput) ToLookupPeeringIamPolicyResultOutputWithContext(ctx context.Context) LookupPeeringIamPolicyResultOutput

func (LookupPeeringIamPolicyResultOutput) Version added in v0.8.0 

func (o LookupPeeringIamPolicyResultOutput) Version() pulumi.IntOutput

Specifies the format of the policy. Valid values are `0`, `1`, and `3`. Requests that specify an invalid value are rejected. Any operation that affects conditional role bindings must specify version `3`. This requirement applies to the following operations: * Getting a policy that includes a conditional role binding * Adding a conditional role binding to a policy * Changing a conditional role binding in a policy * Removing any role binding, with or without a condition, from a policy that includes conditions **Important:** If you use IAM Conditions, you must include the `etag` field whenever you call `setIamPolicy`. If you omit this field, then IAM allows you to overwrite a version `3` policy with a version `1` policy, and all of the conditions in the version `3` policy are lost. If a policy does not include any conditions, operations on that policy may specify any valid version or leave the field unset. To learn which resources support conditions in their IAM policies, see the [IAM documentation](https://cloud.google.com/iam/help/conditions/resource-policies).

type LookupPeeringOutputArgs added in v0.8.0 

type LookupPeeringOutputArgs struct {
	PeeringId pulumi.StringInput    `pulumi:"peeringId"`
	Project   pulumi.StringPtrInput `pulumi:"project"`
}

func (LookupPeeringOutputArgs) ElementType added in v0.8.0 

func (LookupPeeringOutputArgs) ElementType() reflect.Type

type LookupPeeringResult added in v0.8.0 

type LookupPeeringResult struct {
	// The full names of the Google Compute Engine [networks](/compute/docs/networks-and-firewalls#networks) to which the instance is connected. Caller needs to make sure that CIDR subnets do not overlap between networks, else peering creation will fail.
	AuthorizedNetwork string `pulumi:"authorizedNetwork"`
	// The time the instance was created.
	CreateTime string `pulumi:"createTime"`
	// Full domain resource path for the Managed AD Domain involved in peering. The resource path should be in the form: `projects/{project_id}/locations/global/domains/{domain_name}`
	DomainResource string `pulumi:"domainResource"`
	// Optional. Resource labels to represent user-provided metadata.
	Labels map[string]string `pulumi:"labels"`
	// Unique name of the peering in this scope including projects and location using the form: `projects/{project_id}/locations/global/peerings/{peering_id}`.
	Name string `pulumi:"name"`
	// The current state of this Peering.
	State string `pulumi:"state"`
	// Additional information about the current status of this peering, if available.
	StatusMessage string `pulumi:"statusMessage"`
	// Last update time.
	UpdateTime string `pulumi:"updateTime"`
}

func LookupPeering added in v0.8.0 

func LookupPeering(ctx *pulumi.Context, args *LookupPeeringArgs, opts ...pulumi.InvokeOption) (*LookupPeeringResult, error)

Gets details of a single Peering.

type LookupPeeringResultOutput added in v0.8.0 

type LookupPeeringResultOutput struct{ *pulumi.OutputState }

func LookupPeeringOutput added in v0.8.0 

func LookupPeeringOutput(ctx *pulumi.Context, args LookupPeeringOutputArgs, opts ...pulumi.InvokeOption) LookupPeeringResultOutput

func (LookupPeeringResultOutput) AuthorizedNetwork added in v0.8.0 

func (o LookupPeeringResultOutput) AuthorizedNetwork() pulumi.StringOutput

The full names of the Google Compute Engine [networks](/compute/docs/networks-and-firewalls#networks) to which the instance is connected. Caller needs to make sure that CIDR subnets do not overlap between networks, else peering creation will fail.

func (LookupPeeringResultOutput) CreateTime added in v0.8.0 

func (o LookupPeeringResultOutput) CreateTime() pulumi.StringOutput

The time the instance was created.

func (LookupPeeringResultOutput) DomainResource added in v0.8.0 

func (o LookupPeeringResultOutput) DomainResource() pulumi.StringOutput

Full domain resource path for the Managed AD Domain involved in peering. The resource path should be in the form: `projects/{project_id}/locations/global/domains/{domain_name}`

func (LookupPeeringResultOutput) ElementType added in v0.8.0 

func (LookupPeeringResultOutput) ElementType() reflect.Type

func (LookupPeeringResultOutput) Labels added in v0.8.0 

func (o LookupPeeringResultOutput) Labels() pulumi.StringMapOutput

Optional. Resource labels to represent user-provided metadata.

func (LookupPeeringResultOutput) Name added in v0.8.0 

func (o LookupPeeringResultOutput) Name() pulumi.StringOutput

Unique name of the peering in this scope including projects and location using the form: `projects/{project_id}/locations/global/peerings/{peering_id}`.

func (LookupPeeringResultOutput) State added in v0.8.0 

func (o LookupPeeringResultOutput) State() pulumi.StringOutput

The current state of this Peering.

func (LookupPeeringResultOutput) StatusMessage added in v0.8.0 

func (o LookupPeeringResultOutput) StatusMessage() pulumi.StringOutput

Additional information about the current status of this peering, if available.

func (LookupPeeringResultOutput) ToLookupPeeringResultOutput added in v0.8.0 

func (o LookupPeeringResultOutput) ToLookupPeeringResultOutput() LookupPeeringResultOutput

func (LookupPeeringResultOutput) ToLookupPeeringResultOutputWithContext added in v0.8.0 

func (o LookupPeeringResultOutput) ToLookupPeeringResultOutputWithContext(ctx context.Context) LookupPeeringResultOutput

func (LookupPeeringResultOutput) UpdateTime added in v0.8.0 

func (o LookupPeeringResultOutput) UpdateTime() pulumi.StringOutput

Last update time.

type Peering added in v0.8.0 

type Peering struct {
	pulumi.CustomResourceState

	// The full names of the Google Compute Engine [networks](/compute/docs/networks-and-firewalls#networks) to which the instance is connected. Caller needs to make sure that CIDR subnets do not overlap between networks, else peering creation will fail.
	AuthorizedNetwork pulumi.StringOutput `pulumi:"authorizedNetwork"`
	// The time the instance was created.
	CreateTime pulumi.StringOutput `pulumi:"createTime"`
	// Full domain resource path for the Managed AD Domain involved in peering. The resource path should be in the form: `projects/{project_id}/locations/global/domains/{domain_name}`
	DomainResource pulumi.StringOutput `pulumi:"domainResource"`
	// Optional. Resource labels to represent user-provided metadata.
	Labels pulumi.StringMapOutput `pulumi:"labels"`
	// Unique name of the peering in this scope including projects and location using the form: `projects/{project_id}/locations/global/peerings/{peering_id}`.
	Name pulumi.StringOutput `pulumi:"name"`
	// Required. Peering Id, unique name to identify peering. It should follow the regex format "^(?:[a-z](?:[-a-z0-9]{0,61}[a-z0-9])?)$"
	PeeringId pulumi.StringOutput `pulumi:"peeringId"`
	Project   pulumi.StringOutput `pulumi:"project"`
	// The current state of this Peering.
	State pulumi.StringOutput `pulumi:"state"`
	// Additional information about the current status of this peering, if available.
	StatusMessage pulumi.StringOutput `pulumi:"statusMessage"`
	// Last update time.
	UpdateTime pulumi.StringOutput `pulumi:"updateTime"`
}

Creates a Peering for Managed AD instance. Auto-naming is currently not supported for this resource.

func GetPeering added in v0.8.0 

func GetPeering(ctx *pulumi.Context,
	name string, id pulumi.IDInput, state *PeeringState, opts ...pulumi.ResourceOption) (*Peering, error)

GetPeering gets an existing Peering resource's state with the given name, ID, and optional state properties that are used to uniquely qualify the lookup (nil if not required).

func NewPeering added in v0.8.0 

func NewPeering(ctx *pulumi.Context,
	name string, args *PeeringArgs, opts ...pulumi.ResourceOption) (*Peering, error)

NewPeering registers a new resource with the given unique name, arguments, and options.

func (*Peering) ElementType added in v0.8.0 

func (*Peering) ElementType() reflect.Type

func (*Peering) ToPeeringOutput added in v0.8.0 

func (i *Peering) ToPeeringOutput() PeeringOutput

func (*Peering) ToPeeringOutputWithContext added in v0.8.0 

func (i *Peering) ToPeeringOutputWithContext(ctx context.Context) PeeringOutput

type PeeringArgs added in v0.8.0 

type PeeringArgs struct {
	// The full names of the Google Compute Engine [networks](/compute/docs/networks-and-firewalls#networks) to which the instance is connected. Caller needs to make sure that CIDR subnets do not overlap between networks, else peering creation will fail.
	AuthorizedNetwork pulumi.StringInput
	// Full domain resource path for the Managed AD Domain involved in peering. The resource path should be in the form: `projects/{project_id}/locations/global/domains/{domain_name}`
	DomainResource pulumi.StringInput
	// Optional. Resource labels to represent user-provided metadata.
	Labels pulumi.StringMapInput
	// Required. Peering Id, unique name to identify peering. It should follow the regex format "^(?:[a-z](?:[-a-z0-9]{0,61}[a-z0-9])?)$"
	PeeringId pulumi.StringInput
	Project   pulumi.StringPtrInput
}

The set of arguments for constructing a Peering resource.

func (PeeringArgs) ElementType added in v0.8.0 

func (PeeringArgs) ElementType() reflect.Type

type PeeringIamBinding added in v0.26.0 

type PeeringIamBinding struct {
	pulumi.CustomResourceState

	// An IAM Condition for a given binding. See https://cloud.google.com/iam/docs/conditions-overview for additional details.
	Condition iam.ConditionPtrOutput `pulumi:"condition"`
	// The etag of the resource's IAM policy.
	Etag pulumi.StringOutput `pulumi:"etag"`
	// Specifies the principals requesting access for a Google Cloud resource. `members` can have the following values: * `allUsers`: A special identifier that represents anyone who is on the internet; with or without a Google account. * `allAuthenticatedUsers`: A special identifier that represents anyone who is authenticated with a Google account or a service account. Does not include identities that come from external identity providers (IdPs) through identity federation. * `user:{emailid}`: An email address that represents a specific Google account. For example, `alice@example.com` . * `serviceAccount:{emailid}`: An email address that represents a Google service account. For example, `my-other-app@appspot.gserviceaccount.com`. * `serviceAccount:{projectid}.svc.id.goog[{namespace}/{kubernetes-sa}]`: An identifier for a [Kubernetes service account](https://cloud.google.com/kubernetes-engine/docs/how-to/kubernetes-service-accounts). For example, `my-project.svc.id.goog[my-namespace/my-kubernetes-sa]`. * `group:{emailid}`: An email address that represents a Google group. For example, `admins@example.com`. * `domain:{domain}`: The G Suite domain (primary) that represents all the users of that domain. For example, `google.com` or `example.com`. * `deleted:user:{emailid}?uid={uniqueid}`: An email address (plus unique identifier) representing a user that has been recently deleted. For example, `alice@example.com?uid=123456789012345678901`. If the user is recovered, this value reverts to `user:{emailid}` and the recovered user retains the role in the binding. * `deleted:serviceAccount:{emailid}?uid={uniqueid}`: An email address (plus unique identifier) representing a service account that has been recently deleted. For example, `my-other-app@appspot.gserviceaccount.com?uid=123456789012345678901`. If the service account is undeleted, this value reverts to `serviceAccount:{emailid}` and the undeleted service account retains the role in the binding. * `deleted:group:{emailid}?uid={uniqueid}`: An email address (plus unique identifier) representing a Google group that has been recently deleted. For example, `admins@example.com?uid=123456789012345678901`. If the group is recovered, this value reverts to `group:{emailid}` and the recovered group retains the role in the binding.
	Members pulumi.StringArrayOutput `pulumi:"members"`
	// The name of the resource to manage IAM policies for.
	Name pulumi.StringOutput `pulumi:"name"`
	// The project in which the resource belongs. If it is not provided, a default will be supplied.
	Project pulumi.StringOutput `pulumi:"project"`
	// Role that is assigned to the list of `members`, or principals. For example, `roles/viewer`, `roles/editor`, or `roles/owner`.
	Role pulumi.StringOutput `pulumi:"role"`
}

Sets the access control policy on the specified resource. Replaces any existing policy. Can return `NOT_FOUND`, `INVALID_ARGUMENT`, and `PERMISSION_DENIED` errors.

func GetPeeringIamBinding added in v0.26.0 

func GetPeeringIamBinding(ctx *pulumi.Context,
	name string, id pulumi.IDInput, state *PeeringIamBindingState, opts ...pulumi.ResourceOption) (*PeeringIamBinding, error)

GetPeeringIamBinding gets an existing PeeringIamBinding resource's state with the given name, ID, and optional state properties that are used to uniquely qualify the lookup (nil if not required).

func NewPeeringIamBinding added in v0.26.0 

func NewPeeringIamBinding(ctx *pulumi.Context,
	name string, args *PeeringIamBindingArgs, opts ...pulumi.ResourceOption) (*PeeringIamBinding, error)

NewPeeringIamBinding registers a new resource with the given unique name, arguments, and options.

func (*PeeringIamBinding) ElementType added in v0.26.0 

func (*PeeringIamBinding) ElementType() reflect.Type

func (*PeeringIamBinding) ToPeeringIamBindingOutput added in v0.26.0 

func (i *PeeringIamBinding) ToPeeringIamBindingOutput() PeeringIamBindingOutput

func (*PeeringIamBinding) ToPeeringIamBindingOutputWithContext added in v0.26.0 

func (i *PeeringIamBinding) ToPeeringIamBindingOutputWithContext(ctx context.Context) PeeringIamBindingOutput

type PeeringIamBindingArgs added in v0.26.0 

type PeeringIamBindingArgs struct {
	// An IAM Condition for a given binding.
	Condition iam.ConditionPtrInput
	// Identities that will be granted the privilege in role. Each entry can have one of the following values:
	//
	//  * user:{emailid}: An email address that represents a specific Google account. For example, alice@gmail.com or joe@example.com.
	//  * serviceAccount:{emailid}: An email address that represents a service account. For example, my-other-app@appspot.gserviceaccount.com.
	//  * group:{emailid}: An email address that represents a Google group. For example, admins@example.com.
	//  * domain:{domain}: A G Suite domain (primary, instead of alias) name that represents all the users of that domain. For example, google.com or example.com.
	Members pulumi.StringArrayInput
	// The name of the resource to manage IAM policies for.
	Name pulumi.StringInput
	// The role that should be applied. Only one `IamBinding` can be used per role.
	Role pulumi.StringInput
}

The set of arguments for constructing a PeeringIamBinding resource.

func (PeeringIamBindingArgs) ElementType added in v0.26.0 

func (PeeringIamBindingArgs) ElementType() reflect.Type

type PeeringIamBindingInput added in v0.26.0 

type PeeringIamBindingInput interface {
	pulumi.Input

	ToPeeringIamBindingOutput() PeeringIamBindingOutput
	ToPeeringIamBindingOutputWithContext(ctx context.Context) PeeringIamBindingOutput
}

type PeeringIamBindingOutput added in v0.26.0 

type PeeringIamBindingOutput struct{ *pulumi.OutputState }

func (PeeringIamBindingOutput) Condition added in v0.26.0 

func (o PeeringIamBindingOutput) Condition() iam.ConditionPtrOutput

An IAM Condition for a given binding. See https://cloud.google.com/iam/docs/conditions-overview for additional details.

func (PeeringIamBindingOutput) ElementType added in v0.26.0 

func (PeeringIamBindingOutput) ElementType() reflect.Type

func (PeeringIamBindingOutput) Etag added in v0.26.0 

func (o PeeringIamBindingOutput) Etag() pulumi.StringOutput

The etag of the resource's IAM policy.

func (PeeringIamBindingOutput) Members added in v0.26.0 

func (o PeeringIamBindingOutput) Members() pulumi.StringArrayOutput

Specifies the principals requesting access for a Google Cloud resource. `members` can have the following values: * `allUsers`: A special identifier that represents anyone who is on the internet; with or without a Google account. * `allAuthenticatedUsers`: A special identifier that represents anyone who is authenticated with a Google account or a service account. Does not include identities that come from external identity providers (IdPs) through identity federation. * `user:{emailid}`: An email address that represents a specific Google account. For example, `alice@example.com` . * `serviceAccount:{emailid}`: An email address that represents a Google service account. For example, `my-other-app@appspot.gserviceaccount.com`. * `serviceAccount:{projectid}.svc.id.goog[{namespace}/{kubernetes-sa}]`: An identifier for a [Kubernetes service account](https://cloud.google.com/kubernetes-engine/docs/how-to/kubernetes-service-accounts). For example, `my-project.svc.id.goog[my-namespace/my-kubernetes-sa]`. * `group:{emailid}`: An email address that represents a Google group. For example, `admins@example.com`. * `domain:{domain}`: The G Suite domain (primary) that represents all the users of that domain. For example, `google.com` or `example.com`. * `deleted:user:{emailid}?uid={uniqueid}`: An email address (plus unique identifier) representing a user that has been recently deleted. For example, `alice@example.com?uid=123456789012345678901`. If the user is recovered, this value reverts to `user:{emailid}` and the recovered user retains the role in the binding. * `deleted:serviceAccount:{emailid}?uid={uniqueid}`: An email address (plus unique identifier) representing a service account that has been recently deleted. For example, `my-other-app@appspot.gserviceaccount.com?uid=123456789012345678901`. If the service account is undeleted, this value reverts to `serviceAccount:{emailid}` and the undeleted service account retains the role in the binding. * `deleted:group:{emailid}?uid={uniqueid}`: An email address (plus unique identifier) representing a Google group that has been recently deleted. For example, `admins@example.com?uid=123456789012345678901`. If the group is recovered, this value reverts to `group:{emailid}` and the recovered group retains the role in the binding.

func (PeeringIamBindingOutput) Name added in v0.26.0 

func (o PeeringIamBindingOutput) Name() pulumi.StringOutput

The name of the resource to manage IAM policies for.

func (PeeringIamBindingOutput) Project added in v0.26.0 

func (o PeeringIamBindingOutput) Project() pulumi.StringOutput

The project in which the resource belongs. If it is not provided, a default will be supplied.

func (PeeringIamBindingOutput) Role added in v0.26.0 

func (o PeeringIamBindingOutput) Role() pulumi.StringOutput

Role that is assigned to the list of `members`, or principals. For example, `roles/viewer`, `roles/editor`, or `roles/owner`.

func (PeeringIamBindingOutput) ToPeeringIamBindingOutput added in v0.26.0 

func (o PeeringIamBindingOutput) ToPeeringIamBindingOutput() PeeringIamBindingOutput

func (PeeringIamBindingOutput) ToPeeringIamBindingOutputWithContext added in v0.26.0 

func (o PeeringIamBindingOutput) ToPeeringIamBindingOutputWithContext(ctx context.Context) PeeringIamBindingOutput

type PeeringIamBindingState added in v0.26.0 

type PeeringIamBindingState struct {
}

func (PeeringIamBindingState) ElementType added in v0.26.0 

func (PeeringIamBindingState) ElementType() reflect.Type

type PeeringIamMember added in v0.26.0 

type PeeringIamMember struct {
	pulumi.CustomResourceState

	// An IAM Condition for a given binding. See https://cloud.google.com/iam/docs/conditions-overview for additional details.
	Condition iam.ConditionPtrOutput `pulumi:"condition"`
	// The etag of the resource's IAM policy.
	Etag pulumi.StringOutput `pulumi:"etag"`
	// Specifies the principals requesting access for a Google Cloud resource. `members` can have the following values: * `allUsers`: A special identifier that represents anyone who is on the internet; with or without a Google account. * `allAuthenticatedUsers`: A special identifier that represents anyone who is authenticated with a Google account or a service account. Does not include identities that come from external identity providers (IdPs) through identity federation. * `user:{emailid}`: An email address that represents a specific Google account. For example, `alice@example.com` . * `serviceAccount:{emailid}`: An email address that represents a Google service account. For example, `my-other-app@appspot.gserviceaccount.com`. * `serviceAccount:{projectid}.svc.id.goog[{namespace}/{kubernetes-sa}]`: An identifier for a [Kubernetes service account](https://cloud.google.com/kubernetes-engine/docs/how-to/kubernetes-service-accounts). For example, `my-project.svc.id.goog[my-namespace/my-kubernetes-sa]`. * `group:{emailid}`: An email address that represents a Google group. For example, `admins@example.com`. * `domain:{domain}`: The G Suite domain (primary) that represents all the users of that domain. For example, `google.com` or `example.com`. * `deleted:user:{emailid}?uid={uniqueid}`: An email address (plus unique identifier) representing a user that has been recently deleted. For example, `alice@example.com?uid=123456789012345678901`. If the user is recovered, this value reverts to `user:{emailid}` and the recovered user retains the role in the binding. * `deleted:serviceAccount:{emailid}?uid={uniqueid}`: An email address (plus unique identifier) representing a service account that has been recently deleted. For example, `my-other-app@appspot.gserviceaccount.com?uid=123456789012345678901`. If the service account is undeleted, this value reverts to `serviceAccount:{emailid}` and the undeleted service account retains the role in the binding. * `deleted:group:{emailid}?uid={uniqueid}`: An email address (plus unique identifier) representing a Google group that has been recently deleted. For example, `admins@example.com?uid=123456789012345678901`. If the group is recovered, this value reverts to `group:{emailid}` and the recovered group retains the role in the binding.
	Member pulumi.StringOutput `pulumi:"member"`
	// The name of the resource to manage IAM policies for.
	Name pulumi.StringOutput `pulumi:"name"`
	// The project in which the resource belongs. If it is not provided, a default will be supplied.
	Project pulumi.StringOutput `pulumi:"project"`
	// Role that is assigned to the list of `members`, or principals. For example, `roles/viewer`, `roles/editor`, or `roles/owner`.
	Role pulumi.StringOutput `pulumi:"role"`
}

Sets the access control policy on the specified resource. Replaces any existing policy. Can return `NOT_FOUND`, `INVALID_ARGUMENT`, and `PERMISSION_DENIED` errors.

func GetPeeringIamMember added in v0.26.0 

func GetPeeringIamMember(ctx *pulumi.Context,
	name string, id pulumi.IDInput, state *PeeringIamMemberState, opts ...pulumi.ResourceOption) (*PeeringIamMember, error)

GetPeeringIamMember gets an existing PeeringIamMember resource's state with the given name, ID, and optional state properties that are used to uniquely qualify the lookup (nil if not required).

func NewPeeringIamMember added in v0.26.0 

func NewPeeringIamMember(ctx *pulumi.Context,
	name string, args *PeeringIamMemberArgs, opts ...pulumi.ResourceOption) (*PeeringIamMember, error)

NewPeeringIamMember registers a new resource with the given unique name, arguments, and options.

func (*PeeringIamMember) ElementType added in v0.26.0 

func (*PeeringIamMember) ElementType() reflect.Type

func (*PeeringIamMember) ToPeeringIamMemberOutput added in v0.26.0 

func (i *PeeringIamMember) ToPeeringIamMemberOutput() PeeringIamMemberOutput

func (*PeeringIamMember) ToPeeringIamMemberOutputWithContext added in v0.26.0 

func (i *PeeringIamMember) ToPeeringIamMemberOutputWithContext(ctx context.Context) PeeringIamMemberOutput

type PeeringIamMemberArgs added in v0.26.0 

type PeeringIamMemberArgs struct {
	// An IAM Condition for a given binding.
	Condition iam.ConditionPtrInput
	// Identity that will be granted the privilege in role. The entry can have one of the following values:
	//
	//  * user:{emailid}: An email address that represents a specific Google account. For example, alice@gmail.com or joe@example.com.
	//  * serviceAccount:{emailid}: An email address that represents a service account. For example, my-other-app@appspot.gserviceaccount.com.
	//  * group:{emailid}: An email address that represents a Google group. For example, admins@example.com.
	//  * domain:{domain}: A G Suite domain (primary, instead of alias) name that represents all the users of that domain. For example, google.com or example.com.
	Member pulumi.StringInput
	// The name of the resource to manage IAM policies for.
	Name pulumi.StringInput
	// The role that should be applied.
	Role pulumi.StringInput
}

The set of arguments for constructing a PeeringIamMember resource.

func (PeeringIamMemberArgs) ElementType added in v0.26.0 

func (PeeringIamMemberArgs) ElementType() reflect.Type

type PeeringIamMemberInput added in v0.26.0 

type PeeringIamMemberInput interface {
	pulumi.Input

	ToPeeringIamMemberOutput() PeeringIamMemberOutput
	ToPeeringIamMemberOutputWithContext(ctx context.Context) PeeringIamMemberOutput
}

type PeeringIamMemberOutput added in v0.26.0 

type PeeringIamMemberOutput struct{ *pulumi.OutputState }

func (PeeringIamMemberOutput) Condition added in v0.26.0 

func (o PeeringIamMemberOutput) Condition() iam.ConditionPtrOutput

An IAM Condition for a given binding. See https://cloud.google.com/iam/docs/conditions-overview for additional details.

func (PeeringIamMemberOutput) ElementType added in v0.26.0 

func (PeeringIamMemberOutput) ElementType() reflect.Type

func (PeeringIamMemberOutput) Etag added in v0.26.0 

func (o PeeringIamMemberOutput) Etag() pulumi.StringOutput

The etag of the resource's IAM policy.

func (PeeringIamMemberOutput) Member added in v0.26.0 

func (o PeeringIamMemberOutput) Member() pulumi.StringOutput

Specifies the principals requesting access for a Google Cloud resource. `members` can have the following values: * `allUsers`: A special identifier that represents anyone who is on the internet; with or without a Google account. * `allAuthenticatedUsers`: A special identifier that represents anyone who is authenticated with a Google account or a service account. Does not include identities that come from external identity providers (IdPs) through identity federation. * `user:{emailid}`: An email address that represents a specific Google account. For example, `alice@example.com` . * `serviceAccount:{emailid}`: An email address that represents a Google service account. For example, `my-other-app@appspot.gserviceaccount.com`. * `serviceAccount:{projectid}.svc.id.goog[{namespace}/{kubernetes-sa}]`: An identifier for a [Kubernetes service account](https://cloud.google.com/kubernetes-engine/docs/how-to/kubernetes-service-accounts). For example, `my-project.svc.id.goog[my-namespace/my-kubernetes-sa]`. * `group:{emailid}`: An email address that represents a Google group. For example, `admins@example.com`. * `domain:{domain}`: The G Suite domain (primary) that represents all the users of that domain. For example, `google.com` or `example.com`. * `deleted:user:{emailid}?uid={uniqueid}`: An email address (plus unique identifier) representing a user that has been recently deleted. For example, `alice@example.com?uid=123456789012345678901`. If the user is recovered, this value reverts to `user:{emailid}` and the recovered user retains the role in the binding. * `deleted:serviceAccount:{emailid}?uid={uniqueid}`: An email address (plus unique identifier) representing a service account that has been recently deleted. For example, `my-other-app@appspot.gserviceaccount.com?uid=123456789012345678901`. If the service account is undeleted, this value reverts to `serviceAccount:{emailid}` and the undeleted service account retains the role in the binding. * `deleted:group:{emailid}?uid={uniqueid}`: An email address (plus unique identifier) representing a Google group that has been recently deleted. For example, `admins@example.com?uid=123456789012345678901`. If the group is recovered, this value reverts to `group:{emailid}` and the recovered group retains the role in the binding.

func (PeeringIamMemberOutput) Name added in v0.26.0 

func (o PeeringIamMemberOutput) Name() pulumi.StringOutput

The name of the resource to manage IAM policies for.

func (PeeringIamMemberOutput) Project added in v0.26.0 

func (o PeeringIamMemberOutput) Project() pulumi.StringOutput

The project in which the resource belongs. If it is not provided, a default will be supplied.

func (PeeringIamMemberOutput) Role added in v0.26.0 

func (o PeeringIamMemberOutput) Role() pulumi.StringOutput

Role that is assigned to the list of `members`, or principals. For example, `roles/viewer`, `roles/editor`, or `roles/owner`.

func (PeeringIamMemberOutput) ToPeeringIamMemberOutput added in v0.26.0 

func (o PeeringIamMemberOutput) ToPeeringIamMemberOutput() PeeringIamMemberOutput

func (PeeringIamMemberOutput) ToPeeringIamMemberOutputWithContext added in v0.26.0 

func (o PeeringIamMemberOutput) ToPeeringIamMemberOutputWithContext(ctx context.Context) PeeringIamMemberOutput

type PeeringIamMemberState added in v0.26.0 

type PeeringIamMemberState struct {
}

func (PeeringIamMemberState) ElementType added in v0.26.0 

func (PeeringIamMemberState) ElementType() reflect.Type

type PeeringIamPolicy added in v0.8.0 

type PeeringIamPolicy struct {
	pulumi.CustomResourceState

	// Associates a list of `members`, or principals, with a `role`. Optionally, may specify a `condition` that determines how and when the `bindings` are applied. Each of the `bindings` must contain at least one principal. The `bindings` in a `Policy` can refer to up to 1,500 principals; up to 250 of these principals can be Google groups. Each occurrence of a principal counts towards these limits. For example, if the `bindings` grant 50 different roles to `user:alice@example.com`, and not to any other principal, then you can add another 1,450 principals to the `bindings` in the `Policy`.
	Bindings BindingResponseArrayOutput `pulumi:"bindings"`
	// `etag` is used for optimistic concurrency control as a way to help prevent simultaneous updates of a policy from overwriting each other. It is strongly suggested that systems make use of the `etag` in the read-modify-write cycle to perform policy updates in order to avoid race conditions: An `etag` is returned in the response to `getIamPolicy`, and systems are expected to put that etag in the request to `setIamPolicy` to ensure that their change will be applied to the same version of the policy. **Important:** If you use IAM Conditions, you must include the `etag` field whenever you call `setIamPolicy`. If you omit this field, then IAM allows you to overwrite a version `3` policy with a version `1` policy, and all of the conditions in the version `3` policy are lost.
	Etag      pulumi.StringOutput `pulumi:"etag"`
	PeeringId pulumi.StringOutput `pulumi:"peeringId"`
	Project   pulumi.StringOutput `pulumi:"project"`
	// Specifies the format of the policy. Valid values are `0`, `1`, and `3`. Requests that specify an invalid value are rejected. Any operation that affects conditional role bindings must specify version `3`. This requirement applies to the following operations: * Getting a policy that includes a conditional role binding * Adding a conditional role binding to a policy * Changing a conditional role binding in a policy * Removing any role binding, with or without a condition, from a policy that includes conditions **Important:** If you use IAM Conditions, you must include the `etag` field whenever you call `setIamPolicy`. If you omit this field, then IAM allows you to overwrite a version `3` policy with a version `1` policy, and all of the conditions in the version `3` policy are lost. If a policy does not include any conditions, operations on that policy may specify any valid version or leave the field unset. To learn which resources support conditions in their IAM policies, see the [IAM documentation](https://cloud.google.com/iam/help/conditions/resource-policies).
	Version pulumi.IntOutput `pulumi:"version"`
}

Sets the access control policy on the specified resource. Replaces any existing policy. Can return `NOT_FOUND`, `INVALID_ARGUMENT`, and `PERMISSION_DENIED` errors. Note - this resource's API doesn't support deletion. When deleted, the resource will persist on Google Cloud even though it will be deleted from Pulumi state.

func GetPeeringIamPolicy added in v0.8.0 

func GetPeeringIamPolicy(ctx *pulumi.Context,
	name string, id pulumi.IDInput, state *PeeringIamPolicyState, opts ...pulumi.ResourceOption) (*PeeringIamPolicy, error)

GetPeeringIamPolicy gets an existing PeeringIamPolicy resource's state with the given name, ID, and optional state properties that are used to uniquely qualify the lookup (nil if not required).

func NewPeeringIamPolicy added in v0.8.0 

func NewPeeringIamPolicy(ctx *pulumi.Context,
	name string, args *PeeringIamPolicyArgs, opts ...pulumi.ResourceOption) (*PeeringIamPolicy, error)

NewPeeringIamPolicy registers a new resource with the given unique name, arguments, and options.

func (*PeeringIamPolicy) ElementType added in v0.8.0 

func (*PeeringIamPolicy) ElementType() reflect.Type

func (*PeeringIamPolicy) ToPeeringIamPolicyOutput added in v0.8.0 

func (i *PeeringIamPolicy) ToPeeringIamPolicyOutput() PeeringIamPolicyOutput

func (*PeeringIamPolicy) ToPeeringIamPolicyOutputWithContext added in v0.8.0 

func (i *PeeringIamPolicy) ToPeeringIamPolicyOutputWithContext(ctx context.Context) PeeringIamPolicyOutput

type PeeringIamPolicyArgs added in v0.8.0 

type PeeringIamPolicyArgs struct {
	// Associates a list of `members`, or principals, with a `role`. Optionally, may specify a `condition` that determines how and when the `bindings` are applied. Each of the `bindings` must contain at least one principal. The `bindings` in a `Policy` can refer to up to 1,500 principals; up to 250 of these principals can be Google groups. Each occurrence of a principal counts towards these limits. For example, if the `bindings` grant 50 different roles to `user:alice@example.com`, and not to any other principal, then you can add another 1,450 principals to the `bindings` in the `Policy`.
	Bindings BindingArrayInput
	// `etag` is used for optimistic concurrency control as a way to help prevent simultaneous updates of a policy from overwriting each other. It is strongly suggested that systems make use of the `etag` in the read-modify-write cycle to perform policy updates in order to avoid race conditions: An `etag` is returned in the response to `getIamPolicy`, and systems are expected to put that etag in the request to `setIamPolicy` to ensure that their change will be applied to the same version of the policy. **Important:** If you use IAM Conditions, you must include the `etag` field whenever you call `setIamPolicy`. If you omit this field, then IAM allows you to overwrite a version `3` policy with a version `1` policy, and all of the conditions in the version `3` policy are lost.
	Etag      pulumi.StringPtrInput
	PeeringId pulumi.StringInput
	Project   pulumi.StringPtrInput
	// Specifies the format of the policy. Valid values are `0`, `1`, and `3`. Requests that specify an invalid value are rejected. Any operation that affects conditional role bindings must specify version `3`. This requirement applies to the following operations: * Getting a policy that includes a conditional role binding * Adding a conditional role binding to a policy * Changing a conditional role binding in a policy * Removing any role binding, with or without a condition, from a policy that includes conditions **Important:** If you use IAM Conditions, you must include the `etag` field whenever you call `setIamPolicy`. If you omit this field, then IAM allows you to overwrite a version `3` policy with a version `1` policy, and all of the conditions in the version `3` policy are lost. If a policy does not include any conditions, operations on that policy may specify any valid version or leave the field unset. To learn which resources support conditions in their IAM policies, see the [IAM documentation](https://cloud.google.com/iam/help/conditions/resource-policies).
	Version pulumi.IntPtrInput
}

The set of arguments for constructing a PeeringIamPolicy resource.

func (PeeringIamPolicyArgs) ElementType added in v0.8.0 

func (PeeringIamPolicyArgs) ElementType() reflect.Type

type PeeringIamPolicyInput added in v0.8.0 

type PeeringIamPolicyInput interface {
	pulumi.Input

	ToPeeringIamPolicyOutput() PeeringIamPolicyOutput
	ToPeeringIamPolicyOutputWithContext(ctx context.Context) PeeringIamPolicyOutput
}

type PeeringIamPolicyOutput added in v0.8.0 

type PeeringIamPolicyOutput struct{ *pulumi.OutputState }

func (PeeringIamPolicyOutput) Bindings added in v0.19.0 

func (o PeeringIamPolicyOutput) Bindings() BindingResponseArrayOutput

Associates a list of `members`, or principals, with a `role`. Optionally, may specify a `condition` that determines how and when the `bindings` are applied. Each of the `bindings` must contain at least one principal. The `bindings` in a `Policy` can refer to up to 1,500 principals; up to 250 of these principals can be Google groups. Each occurrence of a principal counts towards these limits. For example, if the `bindings` grant 50 different roles to `user:alice@example.com`, and not to any other principal, then you can add another 1,450 principals to the `bindings` in the `Policy`.

func (PeeringIamPolicyOutput) ElementType added in v0.8.0 

func (PeeringIamPolicyOutput) ElementType() reflect.Type

func (PeeringIamPolicyOutput) Etag added in v0.19.0 

func (o PeeringIamPolicyOutput) Etag() pulumi.StringOutput

`etag` is used for optimistic concurrency control as a way to help prevent simultaneous updates of a policy from overwriting each other. It is strongly suggested that systems make use of the `etag` in the read-modify-write cycle to perform policy updates in order to avoid race conditions: An `etag` is returned in the response to `getIamPolicy`, and systems are expected to put that etag in the request to `setIamPolicy` to ensure that their change will be applied to the same version of the policy. **Important:** If you use IAM Conditions, you must include the `etag` field whenever you call `setIamPolicy`. If you omit this field, then IAM allows you to overwrite a version `3` policy with a version `1` policy, and all of the conditions in the version `3` policy are lost.

func (PeeringIamPolicyOutput) PeeringId added in v0.21.0 

func (o PeeringIamPolicyOutput) PeeringId() pulumi.StringOutput

func (PeeringIamPolicyOutput) Project added in v0.21.0 

func (o PeeringIamPolicyOutput) Project() pulumi.StringOutput

func (PeeringIamPolicyOutput) ToPeeringIamPolicyOutput added in v0.8.0 

func (o PeeringIamPolicyOutput) ToPeeringIamPolicyOutput() PeeringIamPolicyOutput

func (PeeringIamPolicyOutput) ToPeeringIamPolicyOutputWithContext added in v0.8.0 

func (o PeeringIamPolicyOutput) ToPeeringIamPolicyOutputWithContext(ctx context.Context) PeeringIamPolicyOutput

func (PeeringIamPolicyOutput) Version added in v0.19.0 

func (o PeeringIamPolicyOutput) Version() pulumi.IntOutput

Specifies the format of the policy. Valid values are `0`, `1`, and `3`. Requests that specify an invalid value are rejected. Any operation that affects conditional role bindings must specify version `3`. This requirement applies to the following operations: * Getting a policy that includes a conditional role binding * Adding a conditional role binding to a policy * Changing a conditional role binding in a policy * Removing any role binding, with or without a condition, from a policy that includes conditions **Important:** If you use IAM Conditions, you must include the `etag` field whenever you call `setIamPolicy`. If you omit this field, then IAM allows you to overwrite a version `3` policy with a version `1` policy, and all of the conditions in the version `3` policy are lost. If a policy does not include any conditions, operations on that policy may specify any valid version or leave the field unset. To learn which resources support conditions in their IAM policies, see the [IAM documentation](https://cloud.google.com/iam/help/conditions/resource-policies).

type PeeringIamPolicyState added in v0.8.0 

type PeeringIamPolicyState struct {
}

func (PeeringIamPolicyState) ElementType added in v0.8.0 

func (PeeringIamPolicyState) ElementType() reflect.Type

type PeeringInput added in v0.8.0 

type PeeringInput interface {
	pulumi.Input

	ToPeeringOutput() PeeringOutput
	ToPeeringOutputWithContext(ctx context.Context) PeeringOutput
}

type PeeringOutput added in v0.8.0 

type PeeringOutput struct{ *pulumi.OutputState }

func (PeeringOutput) AuthorizedNetwork added in v0.19.0 

func (o PeeringOutput) AuthorizedNetwork() pulumi.StringOutput

The full names of the Google Compute Engine [networks](/compute/docs/networks-and-firewalls#networks) to which the instance is connected. Caller needs to make sure that CIDR subnets do not overlap between networks, else peering creation will fail.

func (PeeringOutput) CreateTime added in v0.19.0 

func (o PeeringOutput) CreateTime() pulumi.StringOutput

The time the instance was created.

func (PeeringOutput) DomainResource added in v0.19.0 

func (o PeeringOutput) DomainResource() pulumi.StringOutput

Full domain resource path for the Managed AD Domain involved in peering. The resource path should be in the form: `projects/{project_id}/locations/global/domains/{domain_name}`

func (PeeringOutput) ElementType added in v0.8.0 

func (PeeringOutput) ElementType() reflect.Type

func (PeeringOutput) Labels added in v0.19.0 

func (o PeeringOutput) Labels() pulumi.StringMapOutput

Optional. Resource labels to represent user-provided metadata.

func (PeeringOutput) Name added in v0.19.0 

func (o PeeringOutput) Name() pulumi.StringOutput

Unique name of the peering in this scope including projects and location using the form: `projects/{project_id}/locations/global/peerings/{peering_id}`.

func (PeeringOutput) PeeringId added in v0.21.0 

func (o PeeringOutput) PeeringId() pulumi.StringOutput

Required. Peering Id, unique name to identify peering. It should follow the regex format "^(?:[a-z](?:[-a-z0-9]{0,61}[a-z0-9])?)$"

func (PeeringOutput) Project added in v0.21.0 

func (o PeeringOutput) Project() pulumi.StringOutput

func (PeeringOutput) State added in v0.19.0 

func (o PeeringOutput) State() pulumi.StringOutput

The current state of this Peering.

func (PeeringOutput) StatusMessage added in v0.19.0 

func (o PeeringOutput) StatusMessage() pulumi.StringOutput

Additional information about the current status of this peering, if available.

func (PeeringOutput) ToPeeringOutput added in v0.8.0 

func (o PeeringOutput) ToPeeringOutput() PeeringOutput

func (PeeringOutput) ToPeeringOutputWithContext added in v0.8.0 

func (o PeeringOutput) ToPeeringOutputWithContext(ctx context.Context) PeeringOutput

func (PeeringOutput) UpdateTime added in v0.19.0 

func (o PeeringOutput) UpdateTime() pulumi.StringOutput

Last update time.

type PeeringState added in v0.8.0 

type PeeringState struct {
}

func (PeeringState) ElementType added in v0.8.0 

func (PeeringState) ElementType() reflect.Type

type TrustResponse 

type TrustResponse struct {
	// The time the instance was created.
	CreateTime string `pulumi:"createTime"`
	// The last heartbeat time when the trust was known to be connected.
	LastTrustHeartbeatTime string `pulumi:"lastTrustHeartbeatTime"`
	// Optional. The trust authentication type, which decides whether the trusted side has forest/domain wide access or selective access to an approved set of resources.
	SelectiveAuthentication bool `pulumi:"selectiveAuthentication"`
	// The current state of the trust.
	State string `pulumi:"state"`
	// Additional information about the current state of the trust, if available.
	StateDescription string `pulumi:"stateDescription"`
	// The target DNS server IP addresses which can resolve the remote domain involved in the trust.
	TargetDnsIpAddresses []string `pulumi:"targetDnsIpAddresses"`
	// The fully qualified target domain name which will be in trust with the current domain.
	TargetDomainName string `pulumi:"targetDomainName"`
	// The trust direction, which decides if the current domain is trusted, trusting, or both.
	TrustDirection string `pulumi:"trustDirection"`
	// The trust secret used for the handshake with the target domain. This will not be stored.
	TrustHandshakeSecret string `pulumi:"trustHandshakeSecret"`
	// The type of trust represented by the trust resource.
	TrustType string `pulumi:"trustType"`
	// The last update time.
	UpdateTime string `pulumi:"updateTime"`
}

Represents a relationship between two domains. This allows a controller in one domain to authenticate a user in another domain. If the trust is being changed, it will be placed into the UPDATING state, which indicates that the resource is being reconciled. At this point, Get will reflect an intermediate state.

type TrustResponseArrayOutput 

type TrustResponseArrayOutput struct{ *pulumi.OutputState }

func (TrustResponseArrayOutput) ElementType 

func (TrustResponseArrayOutput) ElementType() reflect.Type

func (TrustResponseArrayOutput) Index 

func (o TrustResponseArrayOutput) Index(i pulumi.IntInput) TrustResponseOutput

func (TrustResponseArrayOutput) ToTrustResponseArrayOutput 

func (o TrustResponseArrayOutput) ToTrustResponseArrayOutput() TrustResponseArrayOutput

func (TrustResponseArrayOutput) ToTrustResponseArrayOutputWithContext 

func (o TrustResponseArrayOutput) ToTrustResponseArrayOutputWithContext(ctx context.Context) TrustResponseArrayOutput

type TrustResponseOutput 

type TrustResponseOutput struct{ *pulumi.OutputState }

Represents a relationship between two domains. This allows a controller in one domain to authenticate a user in another domain. If the trust is being changed, it will be placed into the UPDATING state, which indicates that the resource is being reconciled. At this point, Get will reflect an intermediate state.

func (TrustResponseOutput) CreateTime 

func (o TrustResponseOutput) CreateTime() pulumi.StringOutput

The time the instance was created.

func (TrustResponseOutput) ElementType 

func (TrustResponseOutput) ElementType() reflect.Type

func (TrustResponseOutput) LastTrustHeartbeatTime 

func (o TrustResponseOutput) LastTrustHeartbeatTime() pulumi.StringOutput

The last heartbeat time when the trust was known to be connected.

func (TrustResponseOutput) SelectiveAuthentication 

func (o TrustResponseOutput) SelectiveAuthentication() pulumi.BoolOutput

Optional. The trust authentication type, which decides whether the trusted side has forest/domain wide access or selective access to an approved set of resources.

func (TrustResponseOutput) State 

func (o TrustResponseOutput) State() pulumi.StringOutput

The current state of the trust.

func (TrustResponseOutput) StateDescription 

func (o TrustResponseOutput) StateDescription() pulumi.StringOutput

Additional information about the current state of the trust, if available.

func (TrustResponseOutput) TargetDnsIpAddresses 

func (o TrustResponseOutput) TargetDnsIpAddresses() pulumi.StringArrayOutput

The target DNS server IP addresses which can resolve the remote domain involved in the trust.

func (TrustResponseOutput) TargetDomainName 

func (o TrustResponseOutput) TargetDomainName() pulumi.StringOutput

The fully qualified target domain name which will be in trust with the current domain.

func (TrustResponseOutput) ToTrustResponseOutput 

func (o TrustResponseOutput) ToTrustResponseOutput() TrustResponseOutput

func (TrustResponseOutput) ToTrustResponseOutputWithContext 

func (o TrustResponseOutput) ToTrustResponseOutputWithContext(ctx context.Context) TrustResponseOutput

func (TrustResponseOutput) TrustDirection 

func (o TrustResponseOutput) TrustDirection() pulumi.StringOutput

The trust direction, which decides if the current domain is trusted, trusting, or both.

func (TrustResponseOutput) TrustHandshakeSecret 

func (o TrustResponseOutput) TrustHandshakeSecret() pulumi.StringOutput

The trust secret used for the handshake with the target domain. This will not be stored.

func (TrustResponseOutput) TrustType 

func (o TrustResponseOutput) TrustType() pulumi.StringOutput

The type of trust represented by the trust resource.

func (TrustResponseOutput) UpdateTime 

func (o TrustResponseOutput) UpdateTime() pulumi.StringOutput

The last update time.

Source Files

View all Source files

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f or F : Jump to
y or Y : Canonical URL
go.dev uses cookies from Google to deliver and enhance the quality of its services and to analyze traffic. Learn more.