UNPKG

@pulumi/azuredevops

Version:

A Pulumi package for creating and managing Azure DevOps.

pulumi.io

pulumi/pulumi-azuredevops

216 lines (215 loc) 9.21 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
import * as pulumi from "@pulumi/pulumi"; /** * Manages a group within Azure DevOps. * * ## Example Usage * * ```typescript * import * as pulumi from "@pulumi/pulumi"; * import * as azuredevops from "@pulumi/azuredevops"; * * const example = new azuredevops.Project("example", {name: "Example Project"}); * const example_readers = azuredevops.getGroupOutput({ * projectId: example.id, * name: "Readers", * }); * const example_contributors = azuredevops.getGroupOutput({ * projectId: example.id, * name: "Contributors", * }); * const exampleGroup = new azuredevops.Group("example", { * scope: example.id, * displayName: "Example group", * description: "Example description", * members: [ * example_readers.apply(example_readers => example_readers.descriptor), * example_contributors.apply(example_contributors => example_contributors.descriptor), * ], * }); * ``` * * ## Relevant Links * * - [Azure DevOps Service REST API 7.0 - Groups](https://docs.microsoft.com/en-us/rest/api/azure/devops/graph/groups?view=azure-devops-rest-7.0) * * ## PAT Permissions Required * * - **Project & Team**: Read, Write, & Manage * * ## Import * * Azure DevOps groups can be imported using the group identity descriptor, e.g. * * ```sh * $ pulumi import azuredevops:index/group:Group example aadgp.Uy0xLTktMTU1MTM3NDI0NS0xMjA0NDAwOTY5LTI0MDI5ODY0MTMtMjE3OTQwODYxNi0zLTIxNjc2NjQyNTMtMzI1Nzg0NDI4OS0yMjU4MjcwOTc0LTI2MDYxODY2NDU * ``` */ export declare class Group extends pulumi.CustomResource { /** * Get an existing Group resource's state with the given name, ID, and optional extra * properties used to qualify the lookup. * * @param name The _unique_ name of the resulting resource. * @param id The _unique_ provider ID of the resource to lookup. * @param state Any extra arguments used during the lookup. * @param opts Optional settings to control the behavior of the CustomResource. */ static get(name: string, id: pulumi.Input<pulumi.ID>, state?: GroupState, opts?: pulumi.CustomResourceOptions): Group; /** * Returns true if the given object is an instance of Group. This is designed to work even * when multiple copies of the Pulumi SDK have been loaded into the same process. */ static isInstance(obj: any): obj is Group; /** * The Description of the Project. */ readonly description: pulumi.Output<string | undefined>; /** * The identity (subject) descriptor of the Group. */ readonly descriptor: pulumi.Output<string>; /** * The name of a new Azure DevOps group that is not backed by an external provider. The `originId` and `mail` arguments cannot be used simultaneously with `displayName`. */ readonly displayName: pulumi.Output<string>; /** * This represents the name of the container of origin for a graph member. */ readonly domain: pulumi.Output<string>; /** * The ID of the Group. */ readonly groupId: pulumi.Output<string>; /** * The mail address as a reference to an existing group from an external AD or AAD backed provider. The `scope`, `originId` and `displayName` arguments cannot be used simultaneously with `mail`. */ readonly mail: pulumi.Output<string>; /** * The member of the Group. * * > **NOTE:** It's possible to define group members both within the `azuredevops.Group` resource via the members block and by using the `azuredevops.GroupMembership` resource. However it's not possible to use both methods to manage group members, since there'll be conflicts. */ readonly members: pulumi.Output<string[]>; /** * The type of source provider for the origin identifier (ex:AD, AAD, MSA) */ readonly origin: pulumi.Output<string>; /** * The OriginID as a reference to a group from an external AD or AAD backed provider. The `scope`, `mail` and `displayName` arguments cannot be used simultaneously with `originId`. */ readonly originId: pulumi.Output<string>; /** * This is the PrincipalName of this graph member from the source provider. */ readonly principalName: pulumi.Output<string>; /** * The scope of the group. A descriptor referencing the scope (collection, project) in which the group should be created. If omitted, will be created in the scope of the enclosing account or organization.x */ readonly scope: pulumi.Output<string | undefined>; /** * This field identifies the type of the graph subject (ex: Group, Scope, User). */ readonly subjectKind: pulumi.Output<string>; /** * This url is the full route to the source resource of this graph subject. */ readonly url: pulumi.Output<string>; /** * Create a Group resource with the given unique name, arguments, and options. * * @param name The _unique_ name of the resource. * @param args The arguments to use to populate this resource's properties. * @param opts A bag of options that control this resource's behavior. */ constructor(name: string, args?: GroupArgs, opts?: pulumi.CustomResourceOptions); } /** * Input properties used for looking up and filtering Group resources. */ export interface GroupState { /** * The Description of the Project. */ description?: pulumi.Input<string>; /** * The identity (subject) descriptor of the Group. */ descriptor?: pulumi.Input<string>; /** * The name of a new Azure DevOps group that is not backed by an external provider. The `originId` and `mail` arguments cannot be used simultaneously with `displayName`. */ displayName?: pulumi.Input<string>; /** * This represents the name of the container of origin for a graph member. */ domain?: pulumi.Input<string>; /** * The ID of the Group. */ groupId?: pulumi.Input<string>; /** * The mail address as a reference to an existing group from an external AD or AAD backed provider. The `scope`, `originId` and `displayName` arguments cannot be used simultaneously with `mail`. */ mail?: pulumi.Input<string>; /** * The member of the Group. * * > **NOTE:** It's possible to define group members both within the `azuredevops.Group` resource via the members block and by using the `azuredevops.GroupMembership` resource. However it's not possible to use both methods to manage group members, since there'll be conflicts. */ members?: pulumi.Input<pulumi.Input<string>[]>; /** * The type of source provider for the origin identifier (ex:AD, AAD, MSA) */ origin?: pulumi.Input<string>; /** * The OriginID as a reference to a group from an external AD or AAD backed provider. The `scope`, `mail` and `displayName` arguments cannot be used simultaneously with `originId`. */ originId?: pulumi.Input<string>; /** * This is the PrincipalName of this graph member from the source provider. */ principalName?: pulumi.Input<string>; /** * The scope of the group. A descriptor referencing the scope (collection, project) in which the group should be created. If omitted, will be created in the scope of the enclosing account or organization.x */ scope?: pulumi.Input<string>; /** * This field identifies the type of the graph subject (ex: Group, Scope, User). */ subjectKind?: pulumi.Input<string>; /** * This url is the full route to the source resource of this graph subject. */ url?: pulumi.Input<string>; } /** * The set of arguments for constructing a Group resource. */ export interface GroupArgs { /** * The Description of the Project. */ description?: pulumi.Input<string>; /** * The name of a new Azure DevOps group that is not backed by an external provider. The `originId` and `mail` arguments cannot be used simultaneously with `displayName`. */ displayName?: pulumi.Input<string>; /** * The mail address as a reference to an existing group from an external AD or AAD backed provider. The `scope`, `originId` and `displayName` arguments cannot be used simultaneously with `mail`. */ mail?: pulumi.Input<string>; /** * The member of the Group. * * > **NOTE:** It's possible to define group members both within the `azuredevops.Group` resource via the members block and by using the `azuredevops.GroupMembership` resource. However it's not possible to use both methods to manage group members, since there'll be conflicts. */ members?: pulumi.Input<pulumi.Input<string>[]>; /** * The OriginID as a reference to a group from an external AD or AAD backed provider. The `scope`, `mail` and `displayName` arguments cannot be used simultaneously with `originId`. */ originId?: pulumi.Input<string>; /** * The scope of the group. A descriptor referencing the scope (collection, project) in which the group should be created. If omitted, will be created in the scope of the enclosing account or organization.x */ scope?: pulumi.Input<string>; }