@pulumi/databricks

import * as pulumi from "@pulumi/pulumi"; /** * > This resource can only be used with a workspace-level provider! * * If you use workspaces to isolate user data access, you may want to limit access to catalog, external locations or storage credentials from specific workspaces in your account, also known as workspace binding * * By default, Databricks assigns the securable to all workspaces attached to the current metastore. By using `databricks.WorkspaceBinding`, the securable will be unassigned from all workspaces and only assigned explicitly using this resource. * * > To use this resource the securable must have its isolation mode set to `ISOLATED` (for databricks_catalog) or `ISOLATION_MODE_ISOLATED` (for (for databricks_external_location, databricks.StorageCredential or databricks_credential) for the `isolationMode` attribute. Alternatively, the isolation mode can be set using the UI or API by following [this guide](https://docs.databricks.com/data-governance/unity-catalog/create-catalogs.html#configuration), [this guide](https://docs.databricks.com/en/connect/unity-catalog/external-locations.html#workspace-binding) or [this guide](https://docs.databricks.com/en/connect/unity-catalog/storage-credentials.html#optional-assign-a-storage-credential-to-specific-workspaces). * * > If the securable's isolation mode was set to `ISOLATED` using Pulumi then the securable will have been automatically bound to the workspace it was created from. * * ## Example Usage * * ```typescript * import * as pulumi from "@pulumi/pulumi"; * import * as databricks from "@pulumi/databricks"; * * const sandbox = new databricks.Catalog("sandbox", { * name: "sandbox", * isolationMode: "ISOLATED", * }); * const sandboxWorkspaceBinding = new databricks.WorkspaceBinding("sandbox", { * securableName: sandbox.name, * workspaceId: other.workspaceId, * }); * ``` * * ## Import * * This resource can be imported by using combination of workspace ID, securable type and name: * * ```sh * $ pulumi import databricks:index/workspaceBinding:WorkspaceBinding this "<workspace_id>|<securable_type>|<securable_name>" * ``` */ export declare class WorkspaceBinding extends pulumi.CustomResource { /** * Get an existing WorkspaceBinding resource's state with the given name, ID, and optional extra * properties used to qualify the lookup. * * @param name The _unique_ name of the resulting resource. * @param id The _unique_ provider ID of the resource to lookup. * @param state Any extra arguments used during the lookup. * @param opts Optional settings to control the behavior of the CustomResource. */ static get(name: string, id: pulumi.Input<pulumi.ID>, state?: WorkspaceBindingState, opts?: pulumi.CustomResourceOptions): WorkspaceBinding; /** * Returns true if the given object is an instance of WorkspaceBinding. This is designed to work even * when multiple copies of the Pulumi SDK have been loaded into the same process. */ static isInstance(obj: any): obj is WorkspaceBinding; /** * Binding mode. Default to `BINDING_TYPE_READ_WRITE`. Possible values are `BINDING_TYPE_READ_ONLY`, `BINDING_TYPE_READ_WRITE`. */ readonly bindingType: pulumi.Output<string | undefined>; /** * @deprecated Please use 'securable_name' and 'securable_type instead. */ readonly catalogName: pulumi.Output<string | undefined>; /** * Name of securable. Change forces creation of a new resource. */ readonly securableName: pulumi.Output<string>; /** * Type of securable. Can be `catalog`, `externalLocation`, `storageCredential` or `credential`. Default to `catalog`. Change forces creation of a new resource. */ readonly securableType: pulumi.Output<string | undefined>; /** * ID of the workspace. Change forces creation of a new resource. */ readonly workspaceId: pulumi.Output<string | undefined>; /** * Create a WorkspaceBinding resource with the given unique name, arguments, and options. * * @param name The _unique_ name of the resource. * @param args The arguments to use to populate this resource's properties. * @param opts A bag of options that control this resource's behavior. */ constructor(name: string, args?: WorkspaceBindingArgs, opts?: pulumi.CustomResourceOptions); } /** * Input properties used for looking up and filtering WorkspaceBinding resources. */ export interface WorkspaceBindingState { /** * Binding mode. Default to `BINDING_TYPE_READ_WRITE`. Possible values are `BINDING_TYPE_READ_ONLY`, `BINDING_TYPE_READ_WRITE`. */ bindingType?: pulumi.Input<string>; /** * @deprecated Please use 'securable_name' and 'securable_type instead. */ catalogName?: pulumi.Input<string>; /** * Name of securable. Change forces creation of a new resource. */ securableName?: pulumi.Input<string>; /** * Type of securable. Can be `catalog`, `externalLocation`, `storageCredential` or `credential`. Default to `catalog`. Change forces creation of a new resource. */ securableType?: pulumi.Input<string>; /** * ID of the workspace. Change forces creation of a new resource. */ workspaceId?: pulumi.Input<string>; } /** * The set of arguments for constructing a WorkspaceBinding resource. */ export interface WorkspaceBindingArgs { /** * Binding mode. Default to `BINDING_TYPE_READ_WRITE`. Possible values are `BINDING_TYPE_READ_ONLY`, `BINDING_TYPE_READ_WRITE`. */ bindingType?: pulumi.Input<string>; /** * @deprecated Please use 'securable_name' and 'securable_type instead. */ catalogName?: pulumi.Input<string>; /** * Name of securable. Change forces creation of a new resource. */ securableName?: pulumi.Input<string>; /** * Type of securable. Can be `catalog`, `externalLocation`, `storageCredential` or `credential`. Default to `catalog`. Change forces creation of a new resource. */ securableType?: pulumi.Input<string>; /** * ID of the workspace. Change forces creation of a new resource. */ workspaceId?: pulumi.Input<string>; }