UNPKG

@pulumi/gcp

Version:

A Pulumi package for creating and managing Google Cloud Platform resources.

pulumi.io

pulumi/pulumi-gcp

114 lines (113 loc) 3.71 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
import * as pulumi from "@pulumi/pulumi"; import * as outputs from "../types/output"; /** * Get the DNSKEY and DS records of DNSSEC-signed managed zones. * * For more information see the * [official documentation](https://cloud.google.com/dns/docs/dnskeys/) * and [API](https://cloud.google.com/dns/docs/reference/v1/dnsKeys). * * > A gcp.dns.ManagedZone resource must have DNSSEC enabled in order * to contain any DNSKEYs. Queries to managed zones without this setting * enabled will result in a 404 error as the collection of DNSKEYs does * not exist in the DNS API. * * ## Example Usage * * ```typescript * import * as pulumi from "@pulumi/pulumi"; * import * as gcp from "@pulumi/gcp"; * * const foo = new gcp.dns.ManagedZone("foo", { * name: "foobar", * dnsName: "foo.bar.", * dnssecConfig: { * state: "on", * nonExistence: "nsec3", * }, * }); * const fooDnsKeys = gcp.dns.getKeysOutput({ * managedZone: foo.id, * }); * export const fooDnsDsRecord = fooDnsKeys.apply(fooDnsKeys => fooDnsKeys.keySigningKeys?.[0]?.dsRecord); * ``` */ export declare function getKeys(args: GetKeysArgs, opts?: pulumi.InvokeOptions): Promise<GetKeysResult>; /** * A collection of arguments for invoking getKeys. */ export interface GetKeysArgs { /** * The name or id of the Cloud DNS managed zone. */ managedZone: string; /** * The ID of the project in which the resource belongs. If `project` is not provided, the provider project is used. */ project?: string; } /** * A collection of values returned by getKeys. */ export interface GetKeysResult { /** * The provider-assigned unique ID for this managed resource. */ readonly id: string; /** * A list of Key-signing key (KSK) records. Structure is documented below. Additionally, the DS record is provided: */ readonly keySigningKeys: outputs.dns.GetKeysKeySigningKey[]; readonly managedZone: string; readonly project: string; /** * A list of Zone-signing key (ZSK) records. Structure is documented below. */ readonly zoneSigningKeys: outputs.dns.GetKeysZoneSigningKey[]; } /** * Get the DNSKEY and DS records of DNSSEC-signed managed zones. * * For more information see the * [official documentation](https://cloud.google.com/dns/docs/dnskeys/) * and [API](https://cloud.google.com/dns/docs/reference/v1/dnsKeys). * * > A gcp.dns.ManagedZone resource must have DNSSEC enabled in order * to contain any DNSKEYs. Queries to managed zones without this setting * enabled will result in a 404 error as the collection of DNSKEYs does * not exist in the DNS API. * * ## Example Usage * * ```typescript * import * as pulumi from "@pulumi/pulumi"; * import * as gcp from "@pulumi/gcp"; * * const foo = new gcp.dns.ManagedZone("foo", { * name: "foobar", * dnsName: "foo.bar.", * dnssecConfig: { * state: "on", * nonExistence: "nsec3", * }, * }); * const fooDnsKeys = gcp.dns.getKeysOutput({ * managedZone: foo.id, * }); * export const fooDnsDsRecord = fooDnsKeys.apply(fooDnsKeys => fooDnsKeys.keySigningKeys?.[0]?.dsRecord); * ``` */ export declare function getKeysOutput(args: GetKeysOutputArgs, opts?: pulumi.InvokeOutputOptions): pulumi.Output<GetKeysResult>; /** * A collection of arguments for invoking getKeys. */ export interface GetKeysOutputArgs { /** * The name or id of the Cloud DNS managed zone. */ managedZone: pulumi.Input<string>; /** * The ID of the project in which the resource belongs. If `project` is not provided, the provider project is used. */ project?: pulumi.Input<string>; }