com.pulumi.aws.networkfirewall.kotlin.ResourcePolicy.kt Maven / Gradle / Ivy
Go to download
Show more of this group Show more artifacts with this name
Show all versions of pulumi-aws-kotlin Show documentation
Show all versions of pulumi-aws-kotlin Show documentation
Build cloud applications and infrastructure by combining the safety and reliability of infrastructure as code with the power of the Kotlin programming language.
@file:Suppress("NAME_SHADOWING", "DEPRECATION")
package com.pulumi.aws.networkfirewall.kotlin
import com.pulumi.core.Output
import com.pulumi.kotlin.KotlinCustomResource
import com.pulumi.kotlin.PulumiTagMarker
import com.pulumi.kotlin.ResourceMapper
import com.pulumi.kotlin.options.CustomResourceOptions
import com.pulumi.kotlin.options.CustomResourceOptionsBuilder
import com.pulumi.resources.Resource
import kotlin.Boolean
import kotlin.String
import kotlin.Suppress
import kotlin.Unit
/**
* Builder for [ResourcePolicy].
*/
@PulumiTagMarker
public class ResourcePolicyResourceBuilder internal constructor() {
public var name: String? = null
public var args: ResourcePolicyArgs = ResourcePolicyArgs()
public var opts: CustomResourceOptions = CustomResourceOptions()
/**
* @param name The _unique_ name of the resulting resource.
*/
public fun name(`value`: String) {
this.name = value
}
/**
* @param block The arguments to use to populate this resource's properties.
*/
public suspend fun args(block: suspend ResourcePolicyArgsBuilder.() -> Unit) {
val builder = ResourcePolicyArgsBuilder()
block(builder)
this.args = builder.build()
}
/**
* @param block A bag of options that control this resource's behavior.
*/
public suspend fun opts(block: suspend CustomResourceOptionsBuilder.() -> Unit) {
this.opts = com.pulumi.kotlin.options.CustomResourceOptions.opts(block)
}
internal fun build(): ResourcePolicy {
val builtJavaResource = com.pulumi.aws.networkfirewall.ResourcePolicy(
this.name,
this.args.toJava(),
this.opts.toJava(),
)
return ResourcePolicy(builtJavaResource)
}
}
/**
* Provides an AWS Network Firewall Resource Policy Resource for a rule group or firewall policy.
* ## Example Usage
* ### For a Firewall Policy resource
*
* ```typescript
* import * as pulumi from "@pulumi/pulumi";
* import * as aws from "@pulumi/aws";
* const example = new aws.networkfirewall.ResourcePolicy("example", {
* resourceArn: exampleAwsNetworkfirewallFirewallPolicy.arn,
* policy: JSON.stringify({
* Statement: [{
* Action: [
* "network-firewall:ListFirewallPolicies",
* "network-firewall:CreateFirewall",
* "network-firewall:UpdateFirewall",
* "network-firewall:AssociateFirewallPolicy",
* ],
* Effect: "Allow",
* Resource: exampleAwsNetworkfirewallFirewallPolicy.arn,
* Principal: {
* AWS: "arn:aws:iam::123456789012:root",
* },
* }],
* Version: "2012-10-17",
* }),
* });
* ```
* ```python
* import pulumi
* import json
* import pulumi_aws as aws
* example = aws.networkfirewall.ResourcePolicy("example",
* resource_arn=example_aws_networkfirewall_firewall_policy["arn"],
* policy=json.dumps({
* "Statement": [{
* "Action": [
* "network-firewall:ListFirewallPolicies",
* "network-firewall:CreateFirewall",
* "network-firewall:UpdateFirewall",
* "network-firewall:AssociateFirewallPolicy",
* ],
* "Effect": "Allow",
* "Resource": example_aws_networkfirewall_firewall_policy["arn"],
* "Principal": {
* "AWS": "arn:aws:iam::123456789012:root",
* },
* }],
* "Version": "2012-10-17",
* }))
* ```
* ```csharp
* using System.Collections.Generic;
* using System.Linq;
* using System.Text.Json;
* using Pulumi;
* using Aws = Pulumi.Aws;
* return await Deployment.RunAsync(() =>
* {
* var example = new Aws.NetworkFirewall.ResourcePolicy("example", new()
* {
* ResourceArn = exampleAwsNetworkfirewallFirewallPolicy.Arn,
* Policy = JsonSerializer.Serialize(new Dictionary
* {
* ["Statement"] = new[]
* {
* new Dictionary
* {
* ["Action"] = new[]
* {
* "network-firewall:ListFirewallPolicies",
* "network-firewall:CreateFirewall",
* "network-firewall:UpdateFirewall",
* "network-firewall:AssociateFirewallPolicy",
* },
* ["Effect"] = "Allow",
* ["Resource"] = exampleAwsNetworkfirewallFirewallPolicy.Arn,
* ["Principal"] = new Dictionary
* {
* ["AWS"] = "arn:aws:iam::123456789012:root",
* },
* },
* },
* ["Version"] = "2012-10-17",
* }),
* });
* });
* ```
* ```go
* package main
* import (
* "encoding/json"
* "github.com/pulumi/pulumi-aws/sdk/v6/go/aws/networkfirewall"
* "github.com/pulumi/pulumi/sdk/v3/go/pulumi"
* )
* func main() {
* pulumi.Run(func(ctx *pulumi.Context) error {
* tmpJSON0, err := json.Marshal(map[string]interface{}{
* "Statement": []map[string]interface{}{
* map[string]interface{}{
* "Action": []string{
* "network-firewall:ListFirewallPolicies",
* "network-firewall:CreateFirewall",
* "network-firewall:UpdateFirewall",
* "network-firewall:AssociateFirewallPolicy",
* },
* "Effect": "Allow",
* "Resource": exampleAwsNetworkfirewallFirewallPolicy.Arn,
* "Principal": map[string]interface{}{
* "AWS": "arn:aws:iam::123456789012:root",
* },
* },
* },
* "Version": "2012-10-17",
* })
* if err != nil {
* return err
* }
* json0 := string(tmpJSON0)
* _, err = networkfirewall.NewResourcePolicy(ctx, "example", &networkfirewall.ResourcePolicyArgs{
* ResourceArn: pulumi.Any(exampleAwsNetworkfirewallFirewallPolicy.Arn),
* Policy: pulumi.String(json0),
* })
* if err != nil {
* return err
* }
* return nil
* })
* }
* ```
* ```java
* package generated_program;
* import com.pulumi.Context;
* import com.pulumi.Pulumi;
* import com.pulumi.core.Output;
* import com.pulumi.aws.networkfirewall.ResourcePolicy;
* import com.pulumi.aws.networkfirewall.ResourcePolicyArgs;
* import static com.pulumi.codegen.internal.Serialization.*;
* import java.util.List;
* import java.util.ArrayList;
* import java.util.Map;
* import java.io.File;
* import java.nio.file.Files;
* import java.nio.file.Paths;
* public class App {
* public static void main(String[] args) {
* Pulumi.run(App::stack);
* }
* public static void stack(Context ctx) {
* var example = new ResourcePolicy("example", ResourcePolicyArgs.builder()
* .resourceArn(exampleAwsNetworkfirewallFirewallPolicy.arn())
* .policy(serializeJson(
* jsonObject(
* jsonProperty("Statement", jsonArray(jsonObject(
* jsonProperty("Action", jsonArray(
* "network-firewall:ListFirewallPolicies",
* "network-firewall:CreateFirewall",
* "network-firewall:UpdateFirewall",
* "network-firewall:AssociateFirewallPolicy"
* )),
* jsonProperty("Effect", "Allow"),
* jsonProperty("Resource", exampleAwsNetworkfirewallFirewallPolicy.arn()),
* jsonProperty("Principal", jsonObject(
* jsonProperty("AWS", "arn:aws:iam::123456789012:root")
* ))
* ))),
* jsonProperty("Version", "2012-10-17")
* )))
* .build());
* }
* }
* ```
* ```yaml
* resources:
* example:
* type: aws:networkfirewall:ResourcePolicy
* properties:
* resourceArn: ${exampleAwsNetworkfirewallFirewallPolicy.arn}
* policy:
* fn::toJSON:
* Statement:
* - Action:
* - network-firewall:ListFirewallPolicies
* - network-firewall:CreateFirewall
* - network-firewall:UpdateFirewall
* - network-firewall:AssociateFirewallPolicy
* Effect: Allow
* Resource: ${exampleAwsNetworkfirewallFirewallPolicy.arn}
* Principal:
* AWS: arn:aws:iam::123456789012:root
* Version: 2012-10-17
* ```
*
* ### For a Rule Group resource
*
* ```typescript
* import * as pulumi from "@pulumi/pulumi";
* import * as aws from "@pulumi/aws";
* const example = new aws.networkfirewall.ResourcePolicy("example", {
* resourceArn: exampleAwsNetworkfirewallRuleGroup.arn,
* policy: JSON.stringify({
* Statement: [{
* Action: [
* "network-firewall:ListRuleGroups",
* "network-firewall:CreateFirewallPolicy",
* "network-firewall:UpdateFirewallPolicy",
* ],
* Effect: "Allow",
* Resource: exampleAwsNetworkfirewallRuleGroup.arn,
* Principal: {
* AWS: "arn:aws:iam::123456789012:root",
* },
* }],
* Version: "2012-10-17",
* }),
* });
* ```
* ```python
* import pulumi
* import json
* import pulumi_aws as aws
* example = aws.networkfirewall.ResourcePolicy("example",
* resource_arn=example_aws_networkfirewall_rule_group["arn"],
* policy=json.dumps({
* "Statement": [{
* "Action": [
* "network-firewall:ListRuleGroups",
* "network-firewall:CreateFirewallPolicy",
* "network-firewall:UpdateFirewallPolicy",
* ],
* "Effect": "Allow",
* "Resource": example_aws_networkfirewall_rule_group["arn"],
* "Principal": {
* "AWS": "arn:aws:iam::123456789012:root",
* },
* }],
* "Version": "2012-10-17",
* }))
* ```
* ```csharp
* using System.Collections.Generic;
* using System.Linq;
* using System.Text.Json;
* using Pulumi;
* using Aws = Pulumi.Aws;
* return await Deployment.RunAsync(() =>
* {
* var example = new Aws.NetworkFirewall.ResourcePolicy("example", new()
* {
* ResourceArn = exampleAwsNetworkfirewallRuleGroup.Arn,
* Policy = JsonSerializer.Serialize(new Dictionary
* {
* ["Statement"] = new[]
* {
* new Dictionary
* {
* ["Action"] = new[]
* {
* "network-firewall:ListRuleGroups",
* "network-firewall:CreateFirewallPolicy",
* "network-firewall:UpdateFirewallPolicy",
* },
* ["Effect"] = "Allow",
* ["Resource"] = exampleAwsNetworkfirewallRuleGroup.Arn,
* ["Principal"] = new Dictionary
* {
* ["AWS"] = "arn:aws:iam::123456789012:root",
* },
* },
* },
* ["Version"] = "2012-10-17",
* }),
* });
* });
* ```
* ```go
* package main
* import (
* "encoding/json"
* "github.com/pulumi/pulumi-aws/sdk/v6/go/aws/networkfirewall"
* "github.com/pulumi/pulumi/sdk/v3/go/pulumi"
* )
* func main() {
* pulumi.Run(func(ctx *pulumi.Context) error {
* tmpJSON0, err := json.Marshal(map[string]interface{}{
* "Statement": []map[string]interface{}{
* map[string]interface{}{
* "Action": []string{
* "network-firewall:ListRuleGroups",
* "network-firewall:CreateFirewallPolicy",
* "network-firewall:UpdateFirewallPolicy",
* },
* "Effect": "Allow",
* "Resource": exampleAwsNetworkfirewallRuleGroup.Arn,
* "Principal": map[string]interface{}{
* "AWS": "arn:aws:iam::123456789012:root",
* },
* },
* },
* "Version": "2012-10-17",
* })
* if err != nil {
* return err
* }
* json0 := string(tmpJSON0)
* _, err = networkfirewall.NewResourcePolicy(ctx, "example", &networkfirewall.ResourcePolicyArgs{
* ResourceArn: pulumi.Any(exampleAwsNetworkfirewallRuleGroup.Arn),
* Policy: pulumi.String(json0),
* })
* if err != nil {
* return err
* }
* return nil
* })
* }
* ```
* ```java
* package generated_program;
* import com.pulumi.Context;
* import com.pulumi.Pulumi;
* import com.pulumi.core.Output;
* import com.pulumi.aws.networkfirewall.ResourcePolicy;
* import com.pulumi.aws.networkfirewall.ResourcePolicyArgs;
* import static com.pulumi.codegen.internal.Serialization.*;
* import java.util.List;
* import java.util.ArrayList;
* import java.util.Map;
* import java.io.File;
* import java.nio.file.Files;
* import java.nio.file.Paths;
* public class App {
* public static void main(String[] args) {
* Pulumi.run(App::stack);
* }
* public static void stack(Context ctx) {
* var example = new ResourcePolicy("example", ResourcePolicyArgs.builder()
* .resourceArn(exampleAwsNetworkfirewallRuleGroup.arn())
* .policy(serializeJson(
* jsonObject(
* jsonProperty("Statement", jsonArray(jsonObject(
* jsonProperty("Action", jsonArray(
* "network-firewall:ListRuleGroups",
* "network-firewall:CreateFirewallPolicy",
* "network-firewall:UpdateFirewallPolicy"
* )),
* jsonProperty("Effect", "Allow"),
* jsonProperty("Resource", exampleAwsNetworkfirewallRuleGroup.arn()),
* jsonProperty("Principal", jsonObject(
* jsonProperty("AWS", "arn:aws:iam::123456789012:root")
* ))
* ))),
* jsonProperty("Version", "2012-10-17")
* )))
* .build());
* }
* }
* ```
* ```yaml
* resources:
* example:
* type: aws:networkfirewall:ResourcePolicy
* properties:
* resourceArn: ${exampleAwsNetworkfirewallRuleGroup.arn}
* policy:
* fn::toJSON:
* Statement:
* - Action:
* - network-firewall:ListRuleGroups
* - network-firewall:CreateFirewallPolicy
* - network-firewall:UpdateFirewallPolicy
* Effect: Allow
* Resource: ${exampleAwsNetworkfirewallRuleGroup.arn}
* Principal:
* AWS: arn:aws:iam::123456789012:root
* Version: 2012-10-17
* ```
*
* ## Import
* Using `pulumi import`, import Network Firewall Resource Policies using the `resource arn`. For example:
* ```sh
* $ pulumi import aws:networkfirewall/resourcePolicy:ResourcePolicy example arn:aws:network-firewall:us-west-1:123456789012:stateful-rulegroup/example
* ```
*/
public class ResourcePolicy internal constructor(
override val javaResource: com.pulumi.aws.networkfirewall.ResourcePolicy,
) : KotlinCustomResource(javaResource, ResourcePolicyMapper) {
/**
* JSON formatted policy document that controls access to the Network Firewall resource. The policy must be provided **without whitespaces**. We recommend using jsonencode for formatting as seen in the examples above. For more details, including available policy statement Actions, see the [Policy](https://docs.aws.amazon.com/network-firewall/latest/APIReference/API_PutResourcePolicy.html#API_PutResourcePolicy_RequestSyntax) parameter in the AWS API documentation.
*/
public val policy: Output
get() = javaResource.policy().applyValue({ args0 -> args0 })
/**
* The Amazon Resource Name (ARN) of the rule group or firewall policy.
*/
public val resourceArn: Output
get() = javaResource.resourceArn().applyValue({ args0 -> args0 })
}
public object ResourcePolicyMapper : ResourceMapper {
override fun supportsMappingOfType(javaResource: Resource): Boolean =
com.pulumi.aws.networkfirewall.ResourcePolicy::class == javaResource::class
override fun map(javaResource: Resource): ResourcePolicy = ResourcePolicy(
javaResource as
com.pulumi.aws.networkfirewall.ResourcePolicy,
)
}
/**
* @see [ResourcePolicy].
* @param name The _unique_ name of the resulting resource.
* @param block Builder for [ResourcePolicy].
*/
public suspend fun resourcePolicy(
name: String,
block: suspend ResourcePolicyResourceBuilder.() -> Unit,
): ResourcePolicy {
val builder = ResourcePolicyResourceBuilder()
builder.name(name)
block(builder)
return builder.build()
}
/**
* @see [ResourcePolicy].
* @param name The _unique_ name of the resulting resource.
*/
public fun resourcePolicy(name: String): ResourcePolicy {
val builder = ResourcePolicyResourceBuilder()
builder.name(name)
return builder.build()
}
© 2015 - 2024 Weber Informatics LLC | Privacy Policy