UNPKG

@pulumi/aws

Version:

A Pulumi package for creating and managing Amazon Web Services (AWS) cloud resources.

pulumi.io

pulumi/pulumi-aws

149 lines (148 loc) 5.41 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
import * as pulumi from "@pulumi/pulumi"; /** * Manages an association with WAF Regional Web ACL. * * > **Note:** An Application Load Balancer can only be associated with one WAF Regional WebACL. * * ## Example Usage * * ### Application Load Balancer Association * * ```typescript * import * as pulumi from "@pulumi/pulumi"; * import * as aws from "@pulumi/aws"; * * const ipset = new aws.wafregional.IpSet("ipset", { * name: "tfIPSet", * ipSetDescriptors: [{ * type: "IPV4", * value: "192.0.7.0/24", * }], * }); * const foo = new aws.wafregional.Rule("foo", { * name: "tfWAFRule", * metricName: "tfWAFRule", * predicates: [{ * dataId: ipset.id, * negated: false, * type: "IPMatch", * }], * }); * const fooWebAcl = new aws.wafregional.WebAcl("foo", { * name: "foo", * metricName: "foo", * defaultAction: { * type: "ALLOW", * }, * rules: [{ * action: { * type: "BLOCK", * }, * priority: 1, * ruleId: foo.id, * }], * }); * const fooVpc = new aws.ec2.Vpc("foo", {cidrBlock: "10.1.0.0/16"}); * const available = aws.getAvailabilityZones({}); * const fooSubnet = new aws.ec2.Subnet("foo", { * vpcId: fooVpc.id, * cidrBlock: "10.1.1.0/24", * availabilityZone: available.then(available => available.names?.[0]), * }); * const bar = new aws.ec2.Subnet("bar", { * vpcId: fooVpc.id, * cidrBlock: "10.1.2.0/24", * availabilityZone: available.then(available => available.names?.[1]), * }); * const fooLoadBalancer = new aws.alb.LoadBalancer("foo", { * internal: true, * subnets: [ * fooSubnet.id, * bar.id, * ], * }); * const fooWebAclAssociation = new aws.wafregional.WebAclAssociation("foo", { * resourceArn: fooLoadBalancer.arn, * webAclId: fooWebAcl.id, * }); * ``` * * ## Import * * Using `pulumi import`, import WAF Regional Web ACL Association using their `web_acl_id:resource_arn`. For example: * * ```sh * $ pulumi import aws:wafregional/webAclAssociation:WebAclAssociation foo web_acl_id:resource_arn * ``` */ export declare class WebAclAssociation extends pulumi.CustomResource { /** * Get an existing WebAclAssociation resource's state with the given name, ID, and optional extra * properties used to qualify the lookup. * * @param name The _unique_ name of the resulting resource. * @param id The _unique_ provider ID of the resource to lookup. * @param state Any extra arguments used during the lookup. * @param opts Optional settings to control the behavior of the CustomResource. */ static get(name: string, id: pulumi.Input<pulumi.ID>, state?: WebAclAssociationState, opts?: pulumi.CustomResourceOptions): WebAclAssociation; /** * Returns true if the given object is an instance of WebAclAssociation. This is designed to work even * when multiple copies of the Pulumi SDK have been loaded into the same process. */ static isInstance(obj: any): obj is WebAclAssociation; /** * Region where this resource will be [managed](https://docs.aws.amazon.com/general/latest/gr/rande.html#regional-endpoints). Defaults to the Region set in the provider configuration. */ readonly region: pulumi.Output<string>; /** * ARN of the resource to associate with. For example, an Application Load Balancer or API Gateway Stage. */ readonly resourceArn: pulumi.Output<string>; /** * The ID of the WAF Regional WebACL to create an association. */ readonly webAclId: pulumi.Output<string>; /** * Create a WebAclAssociation resource with the given unique name, arguments, and options. * * @param name The _unique_ name of the resource. * @param args The arguments to use to populate this resource's properties. * @param opts A bag of options that control this resource's behavior. */ constructor(name: string, args: WebAclAssociationArgs, opts?: pulumi.CustomResourceOptions); } /** * Input properties used for looking up and filtering WebAclAssociation resources. */ export interface WebAclAssociationState { /** * Region where this resource will be [managed](https://docs.aws.amazon.com/general/latest/gr/rande.html#regional-endpoints). Defaults to the Region set in the provider configuration. */ region?: pulumi.Input<string>; /** * ARN of the resource to associate with. For example, an Application Load Balancer or API Gateway Stage. */ resourceArn?: pulumi.Input<string>; /** * The ID of the WAF Regional WebACL to create an association. */ webAclId?: pulumi.Input<string>; } /** * The set of arguments for constructing a WebAclAssociation resource. */ export interface WebAclAssociationArgs { /** * Region where this resource will be [managed](https://docs.aws.amazon.com/general/latest/gr/rande.html#regional-endpoints). Defaults to the Region set in the provider configuration. */ region?: pulumi.Input<string>; /** * ARN of the resource to associate with. For example, an Application Load Balancer or API Gateway Stage. */ resourceArn: pulumi.Input<string>; /** * The ID of the WAF Regional WebACL to create an association. */ webAclId: pulumi.Input<string>; }