UNPKG

@pierskarsenbarg/sdm

Version:

A Pulumi package for creating and managing StrongDM cloud resources.

github.com/pierskarsenbarg/pulumi-sdm

pierskarsenbarg/pulumi-sdm

262 lines 7.69 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
import * as pulumi from "@pulumi/pulumi"; import * as outputs from "./types/output"; /** * Accounts are users that have access to strongDM. The types of accounts are: * 1. **Users:** humans who are authenticated through username and password or SSO. * 2. **Service Accounts:** machines that are authenticated using a service token. * 3. **Tokens** are access keys with permissions that can be used for authentication. * ## Example Usage * * <!--Start PulumiCodeChooser --> * ```typescript * import * as pulumi from "@pulumi/pulumi"; * import * as sdm from "@pierskarsenbarg/sdm"; * * const user_queries = sdm.getAccount({ * type: "user", * email: "*@strongdm.com", * tags: { * region: "us-west", * env: "dev", * }, * }); * const api_key_queries = sdm.getAccount({ * type: "api", * name: "*-dev", * }); * const admin_token_queries = sdm.getAccount({ * type: "admin-token", * name: "*-prod", * }); * ``` * <!--End PulumiCodeChooser --> */ export declare function getAccount(args?: GetAccountArgs, opts?: pulumi.InvokeOptions): Promise<GetAccountResult>; /** * A collection of arguments for invoking getAccount. */ export interface GetAccountArgs { /** * Corresponds to the type of token, e.g. api or admin-token. */ accountType?: string; /** * The User's email address. Must be unique. */ email?: string; /** * Internal employee ID used to identify the user. */ employeeNumber?: string; /** * External ID is an alternative unique ID this user is represented by within an external service. */ externalId?: string; /** * The User's first name. */ firstName?: string; /** * Unique identifier of the User. */ id?: string; /** * The User's last name. */ lastName?: string; /** * Manager ID is the ID of the user's manager. This field is empty when the user has no manager. */ managerId?: string; /** * Unique human-readable name of the Token. */ name?: string; /** * PermissionLevel is the user's permission level e.g. admin, DBA, user. */ permissionLevel?: string; /** * Permissions assigned to the token, e.g. role:create. */ permissions?: string; /** * Reserved for future use. Always false for tokens. */ suspended?: boolean; /** * Tags is a map of key, value pairs. */ tags?: { [key: string]: string; }; /** * a filter to select all items of a certain subtype. See the [filter documentation](https://docs.strongdm.com/references/cli/filters/) for more information. */ type?: string; } /** * A collection of values returned by getAccount. */ export interface GetAccountResult { /** * Corresponds to the type of token, e.g. api or admin-token. */ readonly accountType?: string; /** * A single element list containing a map, where each key lists one of the following objects: * * service: */ readonly accounts: outputs.GetAccountAccount[]; /** * The User's email address. Must be unique. */ readonly email?: string; /** * Internal employee ID used to identify the user. */ readonly employeeNumber?: string; /** * External ID is an alternative unique ID this user is represented by within an external service. */ readonly externalId?: string; /** * The User's first name. */ readonly firstName?: string; /** * Unique identifier of the User. */ readonly id?: string; /** * a list of strings of ids of data sources that match the given arguments. */ readonly ids: string[]; /** * The User's last name. */ readonly lastName?: string; /** * Manager ID is the ID of the user's manager. This field is empty when the user has no manager. */ readonly managerId?: string; /** * Unique human-readable name of the Token. */ readonly name?: string; /** * PermissionLevel is the user's permission level e.g. admin, DBA, user. */ readonly permissionLevel?: string; /** * Permissions assigned to the token, e.g. role:create. */ readonly permissions?: string; /** * Suspended is a read only field for the User's suspended state. */ readonly suspended?: boolean; /** * Tags is a map of key, value pairs. */ readonly tags?: { [key: string]: string; }; readonly type?: string; } /** * Accounts are users that have access to strongDM. The types of accounts are: * 1. **Users:** humans who are authenticated through username and password or SSO. * 2. **Service Accounts:** machines that are authenticated using a service token. * 3. **Tokens** are access keys with permissions that can be used for authentication. * ## Example Usage * * <!--Start PulumiCodeChooser --> * ```typescript * import * as pulumi from "@pulumi/pulumi"; * import * as sdm from "@pierskarsenbarg/sdm"; * * const user_queries = sdm.getAccount({ * type: "user", * email: "*@strongdm.com", * tags: { * region: "us-west", * env: "dev", * }, * }); * const api_key_queries = sdm.getAccount({ * type: "api", * name: "*-dev", * }); * const admin_token_queries = sdm.getAccount({ * type: "admin-token", * name: "*-prod", * }); * ``` * <!--End PulumiCodeChooser --> */ export declare function getAccountOutput(args?: GetAccountOutputArgs, opts?: pulumi.InvokeOutputOptions): pulumi.Output<GetAccountResult>; /** * A collection of arguments for invoking getAccount. */ export interface GetAccountOutputArgs { /** * Corresponds to the type of token, e.g. api or admin-token. */ accountType?: pulumi.Input<string | undefined>; /** * The User's email address. Must be unique. */ email?: pulumi.Input<string | undefined>; /** * Internal employee ID used to identify the user. */ employeeNumber?: pulumi.Input<string | undefined>; /** * External ID is an alternative unique ID this user is represented by within an external service. */ externalId?: pulumi.Input<string | undefined>; /** * The User's first name. */ firstName?: pulumi.Input<string | undefined>; /** * Unique identifier of the User. */ id?: pulumi.Input<string | undefined>; /** * The User's last name. */ lastName?: pulumi.Input<string | undefined>; /** * Manager ID is the ID of the user's manager. This field is empty when the user has no manager. */ managerId?: pulumi.Input<string | undefined>; /** * Unique human-readable name of the Token. */ name?: pulumi.Input<string | undefined>; /** * PermissionLevel is the user's permission level e.g. admin, DBA, user. */ permissionLevel?: pulumi.Input<string | undefined>; /** * Permissions assigned to the token, e.g. role:create. */ permissions?: pulumi.Input<string | undefined>; /** * Reserved for future use. Always false for tokens. */ suspended?: pulumi.Input<boolean | undefined>; /** * Tags is a map of key, value pairs. */ tags?: pulumi.Input<{ [key: string]: pulumi.Input<string>; } | undefined>; /** * a filter to select all items of a certain subtype. See the [filter documentation](https://docs.strongdm.com/references/cli/filters/) for more information. */ type?: pulumi.Input<string | undefined>; } //# sourceMappingURL=getAccount.d.ts.map