UNPKG

@pulumi/pulumiservice

Version:

pulumi.com

pulumi/pulumi-pulumiservice

278 lines (277 loc) 7.77 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
import * as outputs from "../types/output"; import * as enums from "../types/enums"; export interface AWSOIDCConfiguration { /** * Duration of the assume-role session in “XhYmZs” format */ duration?: string; /** * Optional set of IAM policy ARNs that further restrict the assume-role session */ policyARNs?: string[]; /** * The ARN of the role to assume using the OIDC token. */ roleARN: string; /** * The name of the assume-role session. */ sessionName: string; } export interface AuthPolicyDefinition { /** * The permission level for organization tokens. */ authorizedPermissions?: enums.AuthPolicyPermissionLevel[]; /** * The rule type of this policy definition */ decision: enums.AuthPolicyDecision; /** * OIDC rules to set for this policy. */ rules: { [key: string]: string; }; /** * The runner ID for deployment runner tokens. */ runnerID?: string; /** * The team name for team tokens. */ teamName?: string; /** * The token type for this policy definition */ tokenType: enums.AuthPolicyTokenType; /** * The user login for personal tokens. */ userLogin?: string; } export interface AzureOIDCConfiguration { /** * The client ID of the federated workload identity. */ clientId: string; /** * The subscription ID of the federated workload identity. */ subscriptionId: string; /** * The tenant ID of the federated workload identity. */ tenantId: string; } /** * Dependency cache settings for the deployment */ export interface DeploymentSettingsCacheOptions { /** * Enable dependency caching */ enable?: boolean; } /** * deploymentSettingsCacheOptionsProvideDefaults sets the appropriate defaults for DeploymentSettingsCacheOptions */ export declare function deploymentSettingsCacheOptionsProvideDefaults(val: DeploymentSettingsCacheOptions): DeploymentSettingsCacheOptions; /** * The executor context defines information about the executor where the deployment is executed. If unspecified, the default 'pulumi/pulumi' image is used. */ export interface DeploymentSettingsExecutorContext { /** * Allows overriding the default executor image with a custom image. E.g. 'pulumi/pulumi-nodejs:latest' */ executorImage: string; } /** * Git source settings for a deployment. */ export interface DeploymentSettingsGitAuthBasicAuth { /** * Password for git basic authentication. */ password: string; /** * User name for git basic authentication. */ username: string; } /** * Git source settings for a deployment. */ export interface DeploymentSettingsGitAuthSSHAuth { /** * Optional password for SSH authentication. */ password?: string; /** * SSH private key. */ sshPrivateKey: string; } /** * Git source settings for a deployment. */ export interface DeploymentSettingsGitSource { /** * The branch to deploy. One of either `branch` or `commit` must be specified. */ branch?: string; /** * The commit to deploy. One of either `branch` or `commit` must be specified. */ commit?: string; /** * Git authentication configuration for this deployment. Should not be specified if there are `gitHub` settings for this deployment. */ gitAuth?: outputs.DeploymentSettingsGitSourceGitAuth; /** * The directory within the repository where the Pulumi.yaml is located. */ repoDir?: string; /** * The repository URL to use for git settings. Should not be specified if there are `gitHub` settings for this deployment. */ repoUrl?: string; } /** * Git source settings for a deployment. */ export interface DeploymentSettingsGitSourceGitAuth { /** * Basic auth for git authentication. Only one of `personalAccessToken`, `sshAuth`, or `basicAuth` must be defined. */ basicAuth?: outputs.DeploymentSettingsGitAuthBasicAuth; /** * SSH auth for git authentication. Only one of `personalAccessToken`, `sshAuth`, or `basicAuth` must be defined. */ sshAuth?: outputs.DeploymentSettingsGitAuthSSHAuth; } /** * GitHub settings for the deployment. */ export interface DeploymentSettingsGithub { /** * Trigger a deployment running `pulumi up` on commit. */ deployCommits?: boolean; /** * The paths within the repo that deployments should be filtered to. */ paths?: string[]; /** * Trigger a deployment running `pulumi preview` when a PR is opened. */ previewPullRequests?: boolean; /** * Use this stack as a template for pull request review stacks. */ pullRequestTemplate?: boolean; /** * The GitHub repository in the format org/repo. */ repository?: string; } /** * deploymentSettingsGithubProvideDefaults sets the appropriate defaults for DeploymentSettingsGithub */ export declare function deploymentSettingsGithubProvideDefaults(val: DeploymentSettingsGithub): DeploymentSettingsGithub; /** * Settings related to the Pulumi operation environment during the deployment. */ export interface DeploymentSettingsOperationContext { /** * Environment variables to set for the deployment. */ environmentVariables?: { [key: string]: string; }; /** * OIDC configuration to use during the deployment. */ oidc?: outputs.OperationContextOIDC; /** * Options to override default behavior during the deployment. */ options?: outputs.OperationContextOptions; /** * Shell commands to run before the Pulumi operation executes. */ preRunCommands?: string[]; } /** * Settings related to the source of the deployment. */ export interface DeploymentSettingsSourceContext { /** * Git source settings for a deployment. */ git?: outputs.DeploymentSettingsGitSource; } export interface GCPOIDCConfiguration { /** * The numerical ID of the GCP project. */ projectId: string; /** * The ID of the identity provider associated with the workload pool. */ providerId: string; /** * The region of the GCP project. */ region?: string; /** * The email address of the service account to use. */ serviceAccount: string; /** * The lifetime of the temporary credentials in “XhYmZs” format. */ tokenLifetime?: string; /** * The ID of the workload pool to use. */ workloadPoolId: string; } export interface OperationContextOIDC { /** * AWS-specific OIDC configuration. */ aws?: outputs.AWSOIDCConfiguration; /** * Azure-specific OIDC configuration. */ azure?: outputs.AzureOIDCConfiguration; /** * GCP-specific OIDC configuration. */ gcp?: outputs.GCPOIDCConfiguration; } export interface OperationContextOptions { /** * Whether the stack should be deleted after it is destroyed. */ deleteAfterDestroy?: boolean; /** * The shell to use to run commands during the deployment. Defaults to 'bash'. */ shell?: string; /** * Skip the default dependency installation step - use this to customize the dependency installation (e.g. if using yarn or poetry) */ skipInstallDependencies?: boolean; /** * Skip intermediate deployments (Consolidate multiple deployments of the same type into one deployment) */ skipIntermediateDeployments?: boolean; } export interface TemplateSourceDestination { /** * Destination URL that gets filled in on new project creation. */ url?: string; }