UNPKG

@pulumi/gcp

Version:

A Pulumi package for creating and managing Google Cloud Platform resources.

pulumi/pulumi-gcp

159 lines • 6.3 kB

JavaScript

"use strict"; // *** WARNING: this file was generated by pulumi-language-nodejs. *** // *** Do not edit by hand unless you're certain you know what you are doing! *** Object.defineProperty(exports, "__esModule", { value: true }); exports.AuthorizationPolicy = void 0; const pulumi = require("@pulumi/pulumi"); const utilities = require("../utilities"); /** * AuthorizationPolicy is a resource that specifies how a server should authorize incoming connections. This resource in itself does not change the configuration unless it's attached to a target https proxy or endpoint config selector resource. * * To get more information about AuthorizationPolicy, see: * * * [API documentation](https://cloud.google.com/traffic-director/docs/reference/network-security/rest/v1beta1/projects.locations.authorizationPolicies) * * ## Example Usage * * ### Network Security Authorization Policy Basic * * ```typescript * import * as pulumi from "@pulumi/pulumi"; * import * as gcp from "@pulumi/gcp"; * * const _default = new gcp.networksecurity.AuthorizationPolicy("default", { * name: "my-authorization-policy", * labels: { * foo: "bar", * }, * description: "my description", * action: "ALLOW", * rules: [{ * sources: [{ * principals: ["namespace/*"], * ipBlocks: ["1.2.3.0/24"], * }], * }], * }); * ``` * ### Network Security Authorization Policy Destinations * * ```typescript * import * as pulumi from "@pulumi/pulumi"; * import * as gcp from "@pulumi/gcp"; * * const _default = new gcp.networksecurity.AuthorizationPolicy("default", { * name: "my-authorization-policy", * labels: { * foo: "bar", * }, * description: "my description", * action: "ALLOW", * rules: [{ * sources: [{ * principals: ["namespace/*"], * ipBlocks: ["1.2.3.0/24"], * }], * destinations: [{ * hosts: ["mydomain.*"], * ports: [8080], * methods: ["GET"], * httpHeaderMatch: { * headerName: ":method", * regexMatch: "GET", * }, * }], * }], * }); * ``` * * ## Import * * AuthorizationPolicy can be imported using any of these accepted formats: * * * `projects/{{project}}/locations/{{location}}/authorizationPolicies/{{name}}` * * * `{{project}}/{{location}}/{{name}}` * * * `{{location}}/{{name}}` * * When using the `pulumi import` command, AuthorizationPolicy can be imported using one of the formats above. For example: * * ```sh * $ pulumi import gcp:networksecurity/authorizationPolicy:AuthorizationPolicy default projects/{{project}}/locations/{{location}}/authorizationPolicies/{{name}} * ``` * * ```sh * $ pulumi import gcp:networksecurity/authorizationPolicy:AuthorizationPolicy default {{project}}/{{location}}/{{name}} * ``` * * ```sh * $ pulumi import gcp:networksecurity/authorizationPolicy:AuthorizationPolicy default {{location}}/{{name}} * ``` */ class AuthorizationPolicy extends pulumi.CustomResource { /** * Get an existing AuthorizationPolicy resource's state with the given name, ID, and optional extra * properties used to qualify the lookup. * * @param name The _unique_ name of the resulting resource. * @param id The _unique_ provider ID of the resource to lookup. * @param state Any extra arguments used during the lookup. * @param opts Optional settings to control the behavior of the CustomResource. */ static get(name, id, state, opts) { return new AuthorizationPolicy(name, state, { ...opts, id: id }); } /** * Returns true if the given object is an instance of AuthorizationPolicy. This is designed to work even * when multiple copies of the Pulumi SDK have been loaded into the same process. */ static isInstance(obj) { if (obj === undefined || obj === null) { return false; } return obj['__pulumiType'] === AuthorizationPolicy.__pulumiType; } constructor(name, argsOrState, opts) { let resourceInputs = {}; opts = opts || {}; if (opts.id) { const state = argsOrState; resourceInputs["action"] = state?.action; resourceInputs["createTime"] = state?.createTime; resourceInputs["description"] = state?.description; resourceInputs["effectiveLabels"] = state?.effectiveLabels; resourceInputs["labels"] = state?.labels; resourceInputs["location"] = state?.location; resourceInputs["name"] = state?.name; resourceInputs["project"] = state?.project; resourceInputs["pulumiLabels"] = state?.pulumiLabels; resourceInputs["rules"] = state?.rules; resourceInputs["updateTime"] = state?.updateTime; } else { const args = argsOrState; if (args?.action === undefined && !opts.urn) { throw new Error("Missing required property 'action'"); } resourceInputs["action"] = args?.action; resourceInputs["description"] = args?.description; resourceInputs["labels"] = args?.labels; resourceInputs["location"] = args?.location; resourceInputs["name"] = args?.name; resourceInputs["project"] = args?.project; resourceInputs["rules"] = args?.rules; resourceInputs["createTime"] = undefined /*out*/; resourceInputs["effectiveLabels"] = undefined /*out*/; resourceInputs["pulumiLabels"] = undefined /*out*/; resourceInputs["updateTime"] = undefined /*out*/; } opts = pulumi.mergeOptions(utilities.resourceOptsDefaults(), opts); const secretOpts = { additionalSecretOutputs: ["effectiveLabels", "pulumiLabels"] }; opts = pulumi.mergeOptions(opts, secretOpts); super(AuthorizationPolicy.__pulumiType, name, resourceInputs, opts); } } exports.AuthorizationPolicy = AuthorizationPolicy; /** @internal */ AuthorizationPolicy.__pulumiType = 'gcp:networksecurity/authorizationPolicy:AuthorizationPolicy'; //# sourceMappingURL=authorizationPolicy.js.map