com.pulumi.azurenative.authorization.kotlin.PolicyAssignmentArgs.kt Maven / Gradle / Ivy
Go to download
Show more of this group Show more artifacts with this name
Show all versions of pulumi-azure-native-kotlin Show documentation
Show all versions of pulumi-azure-native-kotlin Show documentation
Build cloud applications and infrastructure by combining the safety and reliability of infrastructure as code with the power of the Kotlin programming language.
@file:Suppress("NAME_SHADOWING", "DEPRECATION")
package com.pulumi.azurenative.authorization.kotlin
import com.pulumi.azurenative.authorization.PolicyAssignmentArgs.builder
import com.pulumi.azurenative.authorization.kotlin.enums.EnforcementMode
import com.pulumi.azurenative.authorization.kotlin.inputs.IdentityArgs
import com.pulumi.azurenative.authorization.kotlin.inputs.IdentityArgsBuilder
import com.pulumi.azurenative.authorization.kotlin.inputs.NonComplianceMessageArgs
import com.pulumi.azurenative.authorization.kotlin.inputs.NonComplianceMessageArgsBuilder
import com.pulumi.azurenative.authorization.kotlin.inputs.OverrideArgs
import com.pulumi.azurenative.authorization.kotlin.inputs.OverrideArgsBuilder
import com.pulumi.azurenative.authorization.kotlin.inputs.ParameterValuesValueArgs
import com.pulumi.azurenative.authorization.kotlin.inputs.ParameterValuesValueArgsBuilder
import com.pulumi.azurenative.authorization.kotlin.inputs.ResourceSelectorArgs
import com.pulumi.azurenative.authorization.kotlin.inputs.ResourceSelectorArgsBuilder
import com.pulumi.core.Either
import com.pulumi.core.Output
import com.pulumi.core.Output.of
import com.pulumi.kotlin.ConvertibleToJava
import com.pulumi.kotlin.PulumiTagMarker
import com.pulumi.kotlin.applySuspend
import kotlin.Any
import kotlin.Pair
import kotlin.String
import kotlin.Suppress
import kotlin.Unit
import kotlin.collections.List
import kotlin.collections.Map
import kotlin.jvm.JvmName
/**
* The policy assignment.
* Azure REST API version: 2022-06-01. Prior API version in Azure Native 1.x: 2020-09-01.
* Other available API versions: 2016-04-01, 2016-12-01, 2019-06-01, 2020-03-01, 2023-04-01, 2024-04-01, 2024-05-01.
* ## Example Usage
* ### Create or update a policy assignment
* ```csharp
* using System.Collections.Generic;
* using System.Linq;
* using Pulumi;
* using AzureNative = Pulumi.AzureNative;
* return await Deployment.RunAsync(() =>
* {
* var policyAssignment = new AzureNative.Authorization.PolicyAssignment("policyAssignment", new()
* {
* Description = "Force resource names to begin with given DeptA and end with -LC",
* DisplayName = "Enforce resource naming rules",
* Metadata = new Dictionary
* {
* ["assignedBy"] = "Special Someone",
* },
* NonComplianceMessages = new[]
* {
* new AzureNative.Authorization.Inputs.NonComplianceMessageArgs
* {
* Message = "Resource names must start with 'DeptA' and end with '-LC'.",
* },
* },
* Parameters =
* {
* { "prefix", new AzureNative.Authorization.Inputs.ParameterValuesValueArgs
* {
* Value = "DeptA",
* } },
* { "suffix", new AzureNative.Authorization.Inputs.ParameterValuesValueArgs
* {
* Value = "-LC",
* } },
* },
* PolicyAssignmentName = "EnforceNaming",
* PolicyDefinitionId = "/subscriptions/ae640e6b-ba3e-4256-9d62-2993eecfa6f2/providers/Microsoft.Authorization/policyDefinitions/ResourceNaming",
* Scope = "subscriptions/ae640e6b-ba3e-4256-9d62-2993eecfa6f2",
* });
* });
* ```
* ```go
* package main
* import (
* authorization "github.com/pulumi/pulumi-azure-native-sdk/authorization/v2"
* "github.com/pulumi/pulumi/sdk/v3/go/pulumi"
* )
* func main() {
* pulumi.Run(func(ctx *pulumi.Context) error {
* _, err := authorization.NewPolicyAssignment(ctx, "policyAssignment", &authorization.PolicyAssignmentArgs{
* Description: pulumi.String("Force resource names to begin with given DeptA and end with -LC"),
* DisplayName: pulumi.String("Enforce resource naming rules"),
* Metadata: pulumi.Any(map[string]interface{}{
* "assignedBy": "Special Someone",
* }),
* NonComplianceMessages: authorization.NonComplianceMessageArray{
* &authorization.NonComplianceMessageArgs{
* Message: pulumi.String("Resource names must start with 'DeptA' and end with '-LC'."),
* },
* },
* Parameters: authorization.ParameterValuesValueMap{
* "prefix": &authorization.ParameterValuesValueArgs{
* Value: pulumi.Any("DeptA"),
* },
* "suffix": &authorization.ParameterValuesValueArgs{
* Value: pulumi.Any("-LC"),
* },
* },
* PolicyAssignmentName: pulumi.String("EnforceNaming"),
* PolicyDefinitionId: pulumi.String("/subscriptions/ae640e6b-ba3e-4256-9d62-2993eecfa6f2/providers/Microsoft.Authorization/policyDefinitions/ResourceNaming"),
* Scope: pulumi.String("subscriptions/ae640e6b-ba3e-4256-9d62-2993eecfa6f2"),
* })
* if err != nil {
* return err
* }
* return nil
* })
* }
* ```
* ```java
* package generated_program;
* import com.pulumi.Context;
* import com.pulumi.Pulumi;
* import com.pulumi.core.Output;
* import com.pulumi.azurenative.authorization.PolicyAssignment;
* import com.pulumi.azurenative.authorization.PolicyAssignmentArgs;
* import com.pulumi.azurenative.authorization.inputs.NonComplianceMessageArgs;
* import java.util.List;
* import java.util.ArrayList;
* import java.util.Map;
* import java.io.File;
* import java.nio.file.Files;
* import java.nio.file.Paths;
* public class App {
* public static void main(String[] args) {
* Pulumi.run(App::stack);
* }
* public static void stack(Context ctx) {
* var policyAssignment = new PolicyAssignment("policyAssignment", PolicyAssignmentArgs.builder()
* .description("Force resource names to begin with given DeptA and end with -LC")
* .displayName("Enforce resource naming rules")
* .metadata(Map.of("assignedBy", "Special Someone"))
* .nonComplianceMessages(NonComplianceMessageArgs.builder()
* .message("Resource names must start with 'DeptA' and end with '-LC'.")
* .build())
* .parameters(Map.ofEntries(
* Map.entry("prefix", Map.of("value", "DeptA")),
* Map.entry("suffix", Map.of("value", "-LC"))
* ))
* .policyAssignmentName("EnforceNaming")
* .policyDefinitionId("/subscriptions/ae640e6b-ba3e-4256-9d62-2993eecfa6f2/providers/Microsoft.Authorization/policyDefinitions/ResourceNaming")
* .scope("subscriptions/ae640e6b-ba3e-4256-9d62-2993eecfa6f2")
* .build());
* }
* }
* ```
* ### Create or update a policy assignment with a system assigned identity
* ```csharp
* using System.Collections.Generic;
* using System.Linq;
* using Pulumi;
* using AzureNative = Pulumi.AzureNative;
* return await Deployment.RunAsync(() =>
* {
* var policyAssignment = new AzureNative.Authorization.PolicyAssignment("policyAssignment", new()
* {
* Description = "Force resource names to begin with given DeptA and end with -LC",
* DisplayName = "Enforce resource naming rules",
* EnforcementMode = AzureNative.Authorization.EnforcementMode.Default,
* Identity = new AzureNative.Authorization.Inputs.IdentityArgs
* {
* Type = AzureNative.Authorization.ResourceIdentityType.SystemAssigned,
* },
* Location = "eastus",
* Metadata = new Dictionary
* {
* ["assignedBy"] = "Foo Bar",
* },
* Parameters =
* {
* { "prefix", new AzureNative.Authorization.Inputs.ParameterValuesValueArgs
* {
* Value = "DeptA",
* } },
* { "suffix", new AzureNative.Authorization.Inputs.ParameterValuesValueArgs
* {
* Value = "-LC",
* } },
* },
* PolicyAssignmentName = "EnforceNaming",
* PolicyDefinitionId = "/subscriptions/ae640e6b-ba3e-4256-9d62-2993eecfa6f2/providers/Microsoft.Authorization/policyDefinitions/ResourceNaming",
* Scope = "subscriptions/ae640e6b-ba3e-4256-9d62-2993eecfa6f2",
* });
* });
* ```
* ```go
* package main
* import (
* authorization "github.com/pulumi/pulumi-azure-native-sdk/authorization/v2"
* "github.com/pulumi/pulumi/sdk/v3/go/pulumi"
* )
* func main() {
* pulumi.Run(func(ctx *pulumi.Context) error {
* _, err := authorization.NewPolicyAssignment(ctx, "policyAssignment", &authorization.PolicyAssignmentArgs{
* Description: pulumi.String("Force resource names to begin with given DeptA and end with -LC"),
* DisplayName: pulumi.String("Enforce resource naming rules"),
* EnforcementMode: pulumi.String(authorization.EnforcementModeDefault),
* Identity: &authorization.IdentityArgs{
* Type: authorization.ResourceIdentityTypeSystemAssigned,
* },
* Location: pulumi.String("eastus"),
* Metadata: pulumi.Any(map[string]interface{}{
* "assignedBy": "Foo Bar",
* }),
* Parameters: authorization.ParameterValuesValueMap{
* "prefix": &authorization.ParameterValuesValueArgs{
* Value: pulumi.Any("DeptA"),
* },
* "suffix": &authorization.ParameterValuesValueArgs{
* Value: pulumi.Any("-LC"),
* },
* },
* PolicyAssignmentName: pulumi.String("EnforceNaming"),
* PolicyDefinitionId: pulumi.String("/subscriptions/ae640e6b-ba3e-4256-9d62-2993eecfa6f2/providers/Microsoft.Authorization/policyDefinitions/ResourceNaming"),
* Scope: pulumi.String("subscriptions/ae640e6b-ba3e-4256-9d62-2993eecfa6f2"),
* })
* if err != nil {
* return err
* }
* return nil
* })
* }
* ```
* ```java
* package generated_program;
* import com.pulumi.Context;
* import com.pulumi.Pulumi;
* import com.pulumi.core.Output;
* import com.pulumi.azurenative.authorization.PolicyAssignment;
* import com.pulumi.azurenative.authorization.PolicyAssignmentArgs;
* import com.pulumi.azurenative.authorization.inputs.IdentityArgs;
* import java.util.List;
* import java.util.ArrayList;
* import java.util.Map;
* import java.io.File;
* import java.nio.file.Files;
* import java.nio.file.Paths;
* public class App {
* public static void main(String[] args) {
* Pulumi.run(App::stack);
* }
* public static void stack(Context ctx) {
* var policyAssignment = new PolicyAssignment("policyAssignment", PolicyAssignmentArgs.builder()
* .description("Force resource names to begin with given DeptA and end with -LC")
* .displayName("Enforce resource naming rules")
* .enforcementMode("Default")
* .identity(IdentityArgs.builder()
* .type("SystemAssigned")
* .build())
* .location("eastus")
* .metadata(Map.of("assignedBy", "Foo Bar"))
* .parameters(Map.ofEntries(
* Map.entry("prefix", Map.of("value", "DeptA")),
* Map.entry("suffix", Map.of("value", "-LC"))
* ))
* .policyAssignmentName("EnforceNaming")
* .policyDefinitionId("/subscriptions/ae640e6b-ba3e-4256-9d62-2993eecfa6f2/providers/Microsoft.Authorization/policyDefinitions/ResourceNaming")
* .scope("subscriptions/ae640e6b-ba3e-4256-9d62-2993eecfa6f2")
* .build());
* }
* }
* ```
* ### Create or update a policy assignment with multiple non-compliance messages
* ```csharp
* using System.Collections.Generic;
* using System.Linq;
* using Pulumi;
* using AzureNative = Pulumi.AzureNative;
* return await Deployment.RunAsync(() =>
* {
* var policyAssignment = new AzureNative.Authorization.PolicyAssignment("policyAssignment", new()
* {
* DisplayName = "Enforce security policies",
* NonComplianceMessages = new[]
* {
* new AzureNative.Authorization.Inputs.NonComplianceMessageArgs
* {
* Message = "Resources must comply with all internal security policies. See for more info.",
* },
* new AzureNative.Authorization.Inputs.NonComplianceMessageArgs
* {
* Message = "Resource names must start with 'DeptA' and end with '-LC'.",
* PolicyDefinitionReferenceId = "10420126870854049575",
* },
* new AzureNative.Authorization.Inputs.NonComplianceMessageArgs
* {
* Message = "Storage accounts must have firewall rules configured.",
* PolicyDefinitionReferenceId = "8572513655450389710",
* },
* },
* PolicyAssignmentName = "securityInitAssignment",
* PolicyDefinitionId = "/subscriptions/ae640e6b-ba3e-4256-9d62-2993eecfa6f2/providers/Microsoft.Authorization/policySetDefinitions/securityInitiative",
* Scope = "subscriptions/ae640e6b-ba3e-4256-9d62-2993eecfa6f2",
* });
* });
* ```
* ```go
* package main
* import (
* authorization "github.com/pulumi/pulumi-azure-native-sdk/authorization/v2"
* "github.com/pulumi/pulumi/sdk/v3/go/pulumi"
* )
* func main() {
* pulumi.Run(func(ctx *pulumi.Context) error {
* _, err := authorization.NewPolicyAssignment(ctx, "policyAssignment", &authorization.PolicyAssignmentArgs{
* DisplayName: pulumi.String("Enforce security policies"),
* NonComplianceMessages: authorization.NonComplianceMessageArray{
* &authorization.NonComplianceMessageArgs{
* Message: pulumi.String("Resources must comply with all internal security policies. See for more info."),
* },
* &authorization.NonComplianceMessageArgs{
* Message: pulumi.String("Resource names must start with 'DeptA' and end with '-LC'."),
* PolicyDefinitionReferenceId: pulumi.String("10420126870854049575"),
* },
* &authorization.NonComplianceMessageArgs{
* Message: pulumi.String("Storage accounts must have firewall rules configured."),
* PolicyDefinitionReferenceId: pulumi.String("8572513655450389710"),
* },
* },
* PolicyAssignmentName: pulumi.String("securityInitAssignment"),
* PolicyDefinitionId: pulumi.String("/subscriptions/ae640e6b-ba3e-4256-9d62-2993eecfa6f2/providers/Microsoft.Authorization/policySetDefinitions/securityInitiative"),
* Scope: pulumi.String("subscriptions/ae640e6b-ba3e-4256-9d62-2993eecfa6f2"),
* })
* if err != nil {
* return err
* }
* return nil
* })
* }
* ```
* ```java
* package generated_program;
* import com.pulumi.Context;
* import com.pulumi.Pulumi;
* import com.pulumi.core.Output;
* import com.pulumi.azurenative.authorization.PolicyAssignment;
* import com.pulumi.azurenative.authorization.PolicyAssignmentArgs;
* import com.pulumi.azurenative.authorization.inputs.NonComplianceMessageArgs;
* import java.util.List;
* import java.util.ArrayList;
* import java.util.Map;
* import java.io.File;
* import java.nio.file.Files;
* import java.nio.file.Paths;
* public class App {
* public static void main(String[] args) {
* Pulumi.run(App::stack);
* }
* public static void stack(Context ctx) {
* var policyAssignment = new PolicyAssignment("policyAssignment", PolicyAssignmentArgs.builder()
* .displayName("Enforce security policies")
* .nonComplianceMessages(
* NonComplianceMessageArgs.builder()
* .message("Resources must comply with all internal security policies. See for more info.")
* .build(),
* NonComplianceMessageArgs.builder()
* .message("Resource names must start with 'DeptA' and end with '-LC'.")
* .policyDefinitionReferenceId("10420126870854049575")
* .build(),
* NonComplianceMessageArgs.builder()
* .message("Storage accounts must have firewall rules configured.")
* .policyDefinitionReferenceId("8572513655450389710")
* .build())
* .policyAssignmentName("securityInitAssignment")
* .policyDefinitionId("/subscriptions/ae640e6b-ba3e-4256-9d62-2993eecfa6f2/providers/Microsoft.Authorization/policySetDefinitions/securityInitiative")
* .scope("subscriptions/ae640e6b-ba3e-4256-9d62-2993eecfa6f2")
* .build());
* }
* }
* ```
* ### Create or update a policy assignment with overrides
* ```csharp
* using System.Collections.Generic;
* using System.Linq;
* using Pulumi;
* using AzureNative = Pulumi.AzureNative;
* return await Deployment.RunAsync(() =>
* {
* var policyAssignment = new AzureNative.Authorization.PolicyAssignment("policyAssignment", new()
* {
* Description = "Limit the resource location and resource SKU",
* DisplayName = "Limit the resource location and resource SKU",
* Metadata = new Dictionary
* {
* ["assignedBy"] = "Special Someone",
* },
* Overrides = new[]
* {
* new AzureNative.Authorization.Inputs.OverrideArgs
* {
* Kind = AzureNative.Authorization.OverrideKind.PolicyEffect,
* Selectors = new[]
* {
* new AzureNative.Authorization.Inputs.SelectorArgs
* {
* In = new[]
* {
* "Limit_Skus",
* "Limit_Locations",
* },
* Kind = AzureNative.Authorization.SelectorKind.PolicyDefinitionReferenceId,
* },
* },
* Value = "Audit",
* },
* },
* PolicyAssignmentName = "CostManagement",
* PolicyDefinitionId = "/subscriptions/ae640e6b-ba3e-4256-9d62-2993eecfa6f2/providers/Microsoft.Authorization/policySetDefinitions/CostManagement",
* Scope = "subscriptions/ae640e6b-ba3e-4256-9d62-2993eecfa6f2",
* });
* });
* ```
* ```go
* package main
* import (
* authorization "github.com/pulumi/pulumi-azure-native-sdk/authorization/v2"
* "github.com/pulumi/pulumi/sdk/v3/go/pulumi"
* )
* func main() {
* pulumi.Run(func(ctx *pulumi.Context) error {
* _, err := authorization.NewPolicyAssignment(ctx, "policyAssignment", &authorization.PolicyAssignmentArgs{
* Description: pulumi.String("Limit the resource location and resource SKU"),
* DisplayName: pulumi.String("Limit the resource location and resource SKU"),
* Metadata: pulumi.Any(map[string]interface{}{
* "assignedBy": "Special Someone",
* }),
* Overrides: authorization.OverrideArray{
* &authorization.OverrideArgs{
* Kind: pulumi.String(authorization.OverrideKindPolicyEffect),
* Selectors: authorization.SelectorArray{
* &authorization.SelectorArgs{
* In: pulumi.StringArray{
* pulumi.String("Limit_Skus"),
* pulumi.String("Limit_Locations"),
* },
* Kind: pulumi.String(authorization.SelectorKindPolicyDefinitionReferenceId),
* },
* },
* Value: pulumi.String("Audit"),
* },
* },
* PolicyAssignmentName: pulumi.String("CostManagement"),
* PolicyDefinitionId: pulumi.String("/subscriptions/ae640e6b-ba3e-4256-9d62-2993eecfa6f2/providers/Microsoft.Authorization/policySetDefinitions/CostManagement"),
* Scope: pulumi.String("subscriptions/ae640e6b-ba3e-4256-9d62-2993eecfa6f2"),
* })
* if err != nil {
* return err
* }
* return nil
* })
* }
* ```
* ```java
* package generated_program;
* import com.pulumi.Context;
* import com.pulumi.Pulumi;
* import com.pulumi.core.Output;
* import com.pulumi.azurenative.authorization.PolicyAssignment;
* import com.pulumi.azurenative.authorization.PolicyAssignmentArgs;
* import com.pulumi.azurenative.authorization.inputs.OverrideArgs;
* import java.util.List;
* import java.util.ArrayList;
* import java.util.Map;
* import java.io.File;
* import java.nio.file.Files;
* import java.nio.file.Paths;
* public class App {
* public static void main(String[] args) {
* Pulumi.run(App::stack);
* }
* public static void stack(Context ctx) {
* var policyAssignment = new PolicyAssignment("policyAssignment", PolicyAssignmentArgs.builder()
* .description("Limit the resource location and resource SKU")
* .displayName("Limit the resource location and resource SKU")
* .metadata(Map.of("assignedBy", "Special Someone"))
* .overrides(OverrideArgs.builder()
* .kind("policyEffect")
* .selectors(SelectorArgs.builder()
* .in(
* "Limit_Skus",
* "Limit_Locations")
* .kind("policyDefinitionReferenceId")
* .build())
* .value("Audit")
* .build())
* .policyAssignmentName("CostManagement")
* .policyDefinitionId("/subscriptions/ae640e6b-ba3e-4256-9d62-2993eecfa6f2/providers/Microsoft.Authorization/policySetDefinitions/CostManagement")
* .scope("subscriptions/ae640e6b-ba3e-4256-9d62-2993eecfa6f2")
* .build());
* }
* }
* ```
* ### Create or update a policy assignment with resource selectors
* ```csharp
* using System.Collections.Generic;
* using System.Linq;
* using Pulumi;
* using AzureNative = Pulumi.AzureNative;
* return await Deployment.RunAsync(() =>
* {
* var policyAssignment = new AzureNative.Authorization.PolicyAssignment("policyAssignment", new()
* {
* Description = "Limit the resource location and resource SKU",
* DisplayName = "Limit the resource location and resource SKU",
* Metadata = new Dictionary
* {
* ["assignedBy"] = "Special Someone",
* },
* PolicyAssignmentName = "CostManagement",
* PolicyDefinitionId = "/subscriptions/ae640e6b-ba3e-4256-9d62-2993eecfa6f2/providers/Microsoft.Authorization/policySetDefinitions/CostManagement",
* ResourceSelectors = new[]
* {
* new AzureNative.Authorization.Inputs.ResourceSelectorArgs
* {
* Name = "SDPRegions",
* Selectors = new[]
* {
* new AzureNative.Authorization.Inputs.SelectorArgs
* {
* In = new[]
* {
* "eastus2euap",
* "centraluseuap",
* },
* Kind = AzureNative.Authorization.SelectorKind.ResourceLocation,
* },
* },
* },
* },
* Scope = "subscriptions/ae640e6b-ba3e-4256-9d62-2993eecfa6f2",
* });
* });
* ```
* ```go
* package main
* import (
* authorization "github.com/pulumi/pulumi-azure-native-sdk/authorization/v2"
* "github.com/pulumi/pulumi/sdk/v3/go/pulumi"
* )
* func main() {
* pulumi.Run(func(ctx *pulumi.Context) error {
* _, err := authorization.NewPolicyAssignment(ctx, "policyAssignment", &authorization.PolicyAssignmentArgs{
* Description: pulumi.String("Limit the resource location and resource SKU"),
* DisplayName: pulumi.String("Limit the resource location and resource SKU"),
* Metadata: pulumi.Any(map[string]interface{}{
* "assignedBy": "Special Someone",
* }),
* PolicyAssignmentName: pulumi.String("CostManagement"),
* PolicyDefinitionId: pulumi.String("/subscriptions/ae640e6b-ba3e-4256-9d62-2993eecfa6f2/providers/Microsoft.Authorization/policySetDefinitions/CostManagement"),
* ResourceSelectors: authorization.ResourceSelectorArray{
* &authorization.ResourceSelectorArgs{
* Name: pulumi.String("SDPRegions"),
* Selectors: authorization.SelectorArray{
* &authorization.SelectorArgs{
* In: pulumi.StringArray{
* pulumi.String("eastus2euap"),
* pulumi.String("centraluseuap"),
* },
* Kind: pulumi.String(authorization.SelectorKindResourceLocation),
* },
* },
* },
* },
* Scope: pulumi.String("subscriptions/ae640e6b-ba3e-4256-9d62-2993eecfa6f2"),
* })
* if err != nil {
* return err
* }
* return nil
* })
* }
* ```
* ```java
* package generated_program;
* import com.pulumi.Context;
* import com.pulumi.Pulumi;
* import com.pulumi.core.Output;
* import com.pulumi.azurenative.authorization.PolicyAssignment;
* import com.pulumi.azurenative.authorization.PolicyAssignmentArgs;
* import com.pulumi.azurenative.authorization.inputs.ResourceSelectorArgs;
* import java.util.List;
* import java.util.ArrayList;
* import java.util.Map;
* import java.io.File;
* import java.nio.file.Files;
* import java.nio.file.Paths;
* public class App {
* public static void main(String[] args) {
* Pulumi.run(App::stack);
* }
* public static void stack(Context ctx) {
* var policyAssignment = new PolicyAssignment("policyAssignment", PolicyAssignmentArgs.builder()
* .description("Limit the resource location and resource SKU")
* .displayName("Limit the resource location and resource SKU")
* .metadata(Map.of("assignedBy", "Special Someone"))
* .policyAssignmentName("CostManagement")
* .policyDefinitionId("/subscriptions/ae640e6b-ba3e-4256-9d62-2993eecfa6f2/providers/Microsoft.Authorization/policySetDefinitions/CostManagement")
* .resourceSelectors(ResourceSelectorArgs.builder()
* .name("SDPRegions")
* .selectors(SelectorArgs.builder()
* .in(
* "eastus2euap",
* "centraluseuap")
* .kind("resourceLocation")
* .build())
* .build())
* .scope("subscriptions/ae640e6b-ba3e-4256-9d62-2993eecfa6f2")
* .build());
* }
* }
* ```
* ### Create or update a policy assignment without enforcing policy effect during resource creation or update.
* ```csharp
* using System.Collections.Generic;
* using System.Linq;
* using Pulumi;
* using AzureNative = Pulumi.AzureNative;
* return await Deployment.RunAsync(() =>
* {
* var policyAssignment = new AzureNative.Authorization.PolicyAssignment("policyAssignment", new()
* {
* Description = "Force resource names to begin with given DeptA and end with -LC",
* DisplayName = "Enforce resource naming rules",
* EnforcementMode = AzureNative.Authorization.EnforcementMode.DoNotEnforce,
* Metadata = new Dictionary
* {
* ["assignedBy"] = "Special Someone",
* },
* Parameters =
* {
* { "prefix", new AzureNative.Authorization.Inputs.ParameterValuesValueArgs
* {
* Value = "DeptA",
* } },
* { "suffix", new AzureNative.Authorization.Inputs.ParameterValuesValueArgs
* {
* Value = "-LC",
* } },
* },
* PolicyAssignmentName = "EnforceNaming",
* PolicyDefinitionId = "/subscriptions/ae640e6b-ba3e-4256-9d62-2993eecfa6f2/providers/Microsoft.Authorization/policyDefinitions/ResourceNaming",
* Scope = "subscriptions/ae640e6b-ba3e-4256-9d62-2993eecfa6f2",
* });
* });
* ```
* ```go
* package main
* import (
* authorization "github.com/pulumi/pulumi-azure-native-sdk/authorization/v2"
* "github.com/pulumi/pulumi/sdk/v3/go/pulumi"
* )
* func main() {
* pulumi.Run(func(ctx *pulumi.Context) error {
* _, err := authorization.NewPolicyAssignment(ctx, "policyAssignment", &authorization.PolicyAssignmentArgs{
* Description: pulumi.String("Force resource names to begin with given DeptA and end with -LC"),
* DisplayName: pulumi.String("Enforce resource naming rules"),
* EnforcementMode: pulumi.String(authorization.EnforcementModeDoNotEnforce),
* Metadata: pulumi.Any(map[string]interface{}{
* "assignedBy": "Special Someone",
* }),
* Parameters: authorization.ParameterValuesValueMap{
* "prefix": &authorization.ParameterValuesValueArgs{
* Value: pulumi.Any("DeptA"),
* },
* "suffix": &authorization.ParameterValuesValueArgs{
* Value: pulumi.Any("-LC"),
* },
* },
* PolicyAssignmentName: pulumi.String("EnforceNaming"),
* PolicyDefinitionId: pulumi.String("/subscriptions/ae640e6b-ba3e-4256-9d62-2993eecfa6f2/providers/Microsoft.Authorization/policyDefinitions/ResourceNaming"),
* Scope: pulumi.String("subscriptions/ae640e6b-ba3e-4256-9d62-2993eecfa6f2"),
* })
* if err != nil {
* return err
* }
* return nil
* })
* }
* ```
* ```java
* package generated_program;
* import com.pulumi.Context;
* import com.pulumi.Pulumi;
* import com.pulumi.core.Output;
* import com.pulumi.azurenative.authorization.PolicyAssignment;
* import com.pulumi.azurenative.authorization.PolicyAssignmentArgs;
* import java.util.List;
* import java.util.ArrayList;
* import java.util.Map;
* import java.io.File;
* import java.nio.file.Files;
* import java.nio.file.Paths;
* public class App {
* public static void main(String[] args) {
* Pulumi.run(App::stack);
* }
* public static void stack(Context ctx) {
* var policyAssignment = new PolicyAssignment("policyAssignment", PolicyAssignmentArgs.builder()
* .description("Force resource names to begin with given DeptA and end with -LC")
* .displayName("Enforce resource naming rules")
* .enforcementMode("DoNotEnforce")
* .metadata(Map.of("assignedBy", "Special Someone"))
* .parameters(Map.ofEntries(
* Map.entry("prefix", Map.of("value", "DeptA")),
* Map.entry("suffix", Map.of("value", "-LC"))
* ))
* .policyAssignmentName("EnforceNaming")
* .policyDefinitionId("/subscriptions/ae640e6b-ba3e-4256-9d62-2993eecfa6f2/providers/Microsoft.Authorization/policyDefinitions/ResourceNaming")
* .scope("subscriptions/ae640e6b-ba3e-4256-9d62-2993eecfa6f2")
* .build());
* }
* }
* ```
* ## Import
* An existing resource can be imported using its type token, name, and identifier, e.g.
* ```sh
* $ pulumi import azure-native:authorization:PolicyAssignment EnforceNaming /{scope}/providers/Microsoft.Authorization/policyAssignments/{policyAssignmentName}
* ```
* @property description This message will be part of response in case of policy violation.
* @property displayName The display name of the policy assignment.
* @property enforcementMode The policy assignment enforcement mode. Possible values are Default and DoNotEnforce.
* @property identity The managed identity associated with the policy assignment.
* @property location The location of the policy assignment. Only required when utilizing managed identity.
* @property metadata The policy assignment metadata. Metadata is an open ended object and is typically a collection of key value pairs.
* @property nonComplianceMessages The messages that describe why a resource is non-compliant with the policy.
* @property notScopes The policy's excluded scopes.
* @property overrides The policy property value override.
* @property parameters The parameter values for the assigned policy rule. The keys are the parameter names.
* @property policyAssignmentName The name of the policy assignment.
* @property policyDefinitionId The ID of the policy definition or policy set definition being assigned.
* @property resourceSelectors The resource selector list to filter policies by resource properties.
* @property scope The scope of the policy assignment. Valid scopes are: management group (format: '/providers/Microsoft.Management/managementGroups/{managementGroup}'), subscription (format: '/subscriptions/{subscriptionId}'), resource group (format: '/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}', or resource (format: '/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/{resourceProviderNamespace}/[{parentResourcePath}/]{resourceType}/{resourceName}'
*/
public data class PolicyAssignmentArgs(
public val description: Output? = null,
public val displayName: Output? = null,
public val enforcementMode: Output>? = null,
public val identity: Output? = null,
public val location: Output? = null,
public val metadata: Output? = null,
public val nonComplianceMessages: Output>? = null,
public val notScopes: Output>? = null,
public val overrides: Output>? = null,
public val parameters: Output>? = null,
public val policyAssignmentName: Output? = null,
public val policyDefinitionId: Output? = null,
public val resourceSelectors: Output>? = null,
public val scope: Output? = null,
) : ConvertibleToJava {
override fun toJava(): com.pulumi.azurenative.authorization.PolicyAssignmentArgs =
com.pulumi.azurenative.authorization.PolicyAssignmentArgs.builder()
.description(description?.applyValue({ args0 -> args0 }))
.displayName(displayName?.applyValue({ args0 -> args0 }))
.enforcementMode(
enforcementMode?.applyValue({ args0 ->
args0.transform({ args0 -> args0 }, { args0 ->
args0.let({ args0 -> args0.toJava() })
})
}),
)
.identity(identity?.applyValue({ args0 -> args0.let({ args0 -> args0.toJava() }) }))
.location(location?.applyValue({ args0 -> args0 }))
.metadata(metadata?.applyValue({ args0 -> args0 }))
.nonComplianceMessages(
nonComplianceMessages?.applyValue({ args0 ->
args0.map({ args0 ->
args0.let({ args0 -> args0.toJava() })
})
}),
)
.notScopes(notScopes?.applyValue({ args0 -> args0.map({ args0 -> args0 }) }))
.overrides(
overrides?.applyValue({ args0 ->
args0.map({ args0 ->
args0.let({ args0 ->
args0.toJava()
})
})
}),
)
.parameters(
parameters?.applyValue({ args0 ->
args0.map({ args0 ->
args0.key.to(args0.value.let({ args0 -> args0.toJava() }))
}).toMap()
}),
)
.policyAssignmentName(policyAssignmentName?.applyValue({ args0 -> args0 }))
.policyDefinitionId(policyDefinitionId?.applyValue({ args0 -> args0 }))
.resourceSelectors(
resourceSelectors?.applyValue({ args0 ->
args0.map({ args0 ->
args0.let({ args0 ->
args0.toJava()
})
})
}),
)
.scope(scope?.applyValue({ args0 -> args0 })).build()
}
/**
* Builder for [PolicyAssignmentArgs].
*/
@PulumiTagMarker
public class PolicyAssignmentArgsBuilder internal constructor() {
private var description: Output? = null
private var displayName: Output? = null
private var enforcementMode: Output>? = null
private var identity: Output? = null
private var location: Output? = null
private var metadata: Output? = null
private var nonComplianceMessages: Output>? = null
private var notScopes: Output>? = null
private var overrides: Output>? = null
private var parameters: Output>? = null
private var policyAssignmentName: Output? = null
private var policyDefinitionId: Output? = null
private var resourceSelectors: Output>? = null
private var scope: Output? = null
/**
* @param value This message will be part of response in case of policy violation.
*/
@JvmName("umiefhehawrscgmn")
public suspend fun description(`value`: Output) {
this.description = value
}
/**
* @param value The display name of the policy assignment.
*/
@JvmName("haiwwpfmgwhahcxn")
public suspend fun displayName(`value`: Output) {
this.displayName = value
}
/**
* @param value The policy assignment enforcement mode. Possible values are Default and DoNotEnforce.
*/
@JvmName("ldomokapvpkmjrum")
public suspend fun enforcementMode(`value`: Output>) {
this.enforcementMode = value
}
/**
* @param value The managed identity associated with the policy assignment.
*/
@JvmName("kempfcwcciqghgnc")
public suspend fun identity(`value`: Output) {
this.identity = value
}
/**
* @param value The location of the policy assignment. Only required when utilizing managed identity.
*/
@JvmName("rpgpayrpaxraifmb")
public suspend fun location(`value`: Output) {
this.location = value
}
/**
* @param value The policy assignment metadata. Metadata is an open ended object and is typically a collection of key value pairs.
*/
@JvmName("yjrovmuiudistgqa")
public suspend fun metadata(`value`: Output) {
this.metadata = value
}
/**
* @param value The messages that describe why a resource is non-compliant with the policy.
*/
@JvmName("dctmvtbteltgvbql")
public suspend fun nonComplianceMessages(`value`: Output>) {
this.nonComplianceMessages = value
}
@JvmName("vfewqubiyvccqydb")
public suspend fun nonComplianceMessages(vararg values: Output) {
this.nonComplianceMessages = Output.all(values.asList())
}
/**
* @param values The messages that describe why a resource is non-compliant with the policy.
*/
@JvmName("gwrmbfpxiuhqxugv")
public suspend fun nonComplianceMessages(values: List>) {
this.nonComplianceMessages = Output.all(values)
}
/**
* @param value The policy's excluded scopes.
*/
@JvmName("kagxaauiawtrhmky")
public suspend fun notScopes(`value`: Output>) {
this.notScopes = value
}
@JvmName("cjkrnjdnkalsurvq")
public suspend fun notScopes(vararg values: Output) {
this.notScopes = Output.all(values.asList())
}
/**
* @param values The policy's excluded scopes.
*/
@JvmName("khbvhrsrqaxlhktb")
public suspend fun notScopes(values: List>) {
this.notScopes = Output.all(values)
}
/**
* @param value The policy property value override.
*/
@JvmName("jmefhtrshbspyhad")
public suspend fun overrides(`value`: Output>) {
this.overrides = value
}
@JvmName("lhbmerchbsgfrqpu")
public suspend fun overrides(vararg values: Output) {
this.overrides = Output.all(values.asList())
}
/**
* @param values The policy property value override.
*/
@JvmName("apqwyglgkmrvopyw")
public suspend fun overrides(values: List>) {
this.overrides = Output.all(values)
}
/**
* @param value The parameter values for the assigned policy rule. The keys are the parameter names.
*/
@JvmName("qriaokorghemtdur")
public suspend fun parameters(`value`: Output>) {
this.parameters = value
}
/**
* @param value The name of the policy assignment.
*/
@JvmName("jbtsipokcajtxkow")
public suspend fun policyAssignmentName(`value`: Output) {
this.policyAssignmentName = value
}
/**
* @param value The ID of the policy definition or policy set definition being assigned.
*/
@JvmName("ijutesucymhbjiro")
public suspend fun policyDefinitionId(`value`: Output) {
this.policyDefinitionId = value
}
/**
* @param value The resource selector list to filter policies by resource properties.
*/
@JvmName("lrvfquxfkbhouymb")
public suspend fun resourceSelectors(`value`: Output>) {
this.resourceSelectors = value
}
@JvmName("ndchyuupnmdcnine")
public suspend fun resourceSelectors(vararg values: Output) {
this.resourceSelectors = Output.all(values.asList())
}
/**
* @param values The resource selector list to filter policies by resource properties.
*/
@JvmName("qulnucyoiefmhowy")
public suspend fun resourceSelectors(values: List>) {
this.resourceSelectors = Output.all(values)
}
/**
* @param value The scope of the policy assignment. Valid scopes are: management group (format: '/providers/Microsoft.Management/managementGroups/{managementGroup}'), subscription (format: '/subscriptions/{subscriptionId}'), resource group (format: '/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}', or resource (format: '/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/{resourceProviderNamespace}/[{parentResourcePath}/]{resourceType}/{resourceName}'
*/
@JvmName("wtjcqliykmhyyten")
public suspend fun scope(`value`: Output) {
this.scope = value
}
/**
* @param value This message will be part of response in case of policy violation.
*/
@JvmName("fxagyblrihoyfhfd")
public suspend fun description(`value`: String?) {
val toBeMapped = value
val mapped = toBeMapped?.let({ args0 -> of(args0) })
this.description = mapped
}
/**
* @param value The display name of the policy assignment.
*/
@JvmName("tacdmyccqvksjwap")
public suspend fun displayName(`value`: String?) {
val toBeMapped = value
val mapped = toBeMapped?.let({ args0 -> of(args0) })
this.displayName = mapped
}
/**
* @param value The policy assignment enforcement mode. Possible values are Default and DoNotEnforce.
*/
@JvmName("anjrmwbqqgefymsc")
public suspend fun enforcementMode(`value`: Either?) {
val toBeMapped = value
val mapped = toBeMapped?.let({ args0 -> of(args0) })
this.enforcementMode = mapped
}
/**
* @param value The policy assignment enforcement mode. Possible values are Default and DoNotEnforce.
*/
@JvmName("jwnfmemmqqulcusr")
public fun enforcementMode(`value`: String) {
val toBeMapped = Either.ofLeft(value)
val mapped = toBeMapped.let({ args0 -> of(args0) })
this.enforcementMode = mapped
}
/**
* @param value The policy assignment enforcement mode. Possible values are Default and DoNotEnforce.
*/
@JvmName("ubkmtovokuhmingw")
public fun enforcementMode(`value`: EnforcementMode) {
val toBeMapped = Either.ofRight(value)
val mapped = toBeMapped.let({ args0 -> of(args0) })
this.enforcementMode = mapped
}
/**
* @param value The managed identity associated with the policy assignment.
*/
@JvmName("sqlbbsudsfhipfkp")
public suspend fun identity(`value`: IdentityArgs?) {
val toBeMapped = value
val mapped = toBeMapped?.let({ args0 -> of(args0) })
this.identity = mapped
}
/**
* @param argument The managed identity associated with the policy assignment.
*/
@JvmName("wutjpsjhqegabcyn")
public suspend fun identity(argument: suspend IdentityArgsBuilder.() -> Unit) {
val toBeMapped = IdentityArgsBuilder().applySuspend { argument() }.build()
val mapped = of(toBeMapped)
this.identity = mapped
}
/**
* @param value The location of the policy assignment. Only required when utilizing managed identity.
*/
@JvmName("lpygbbnchniecwre")
public suspend fun location(`value`: String?) {
val toBeMapped = value
val mapped = toBeMapped?.let({ args0 -> of(args0) })
this.location = mapped
}
/**
* @param value The policy assignment metadata. Metadata is an open ended object and is typically a collection of key value pairs.
*/
@JvmName("urldmpspsxdntxjy")
public suspend fun metadata(`value`: Any?) {
val toBeMapped = value
val mapped = toBeMapped?.let({ args0 -> of(args0) })
this.metadata = mapped
}
/**
* @param value The messages that describe why a resource is non-compliant with the policy.
*/
@JvmName("pwboqanawcodqece")
public suspend fun nonComplianceMessages(`value`: List?) {
val toBeMapped = value
val mapped = toBeMapped?.let({ args0 -> of(args0) })
this.nonComplianceMessages = mapped
}
/**
* @param argument The messages that describe why a resource is non-compliant with the policy.
*/
@JvmName("meluvwqlvetkvxkl")
public suspend fun nonComplianceMessages(argument: List Unit>) {
val toBeMapped = argument.toList().map {
NonComplianceMessageArgsBuilder().applySuspend {
it()
}.build()
}
val mapped = of(toBeMapped)
this.nonComplianceMessages = mapped
}
/**
* @param argument The messages that describe why a resource is non-compliant with the policy.
*/
@JvmName("nwkmnjsrdsxdowld")
public suspend fun nonComplianceMessages(vararg argument: suspend NonComplianceMessageArgsBuilder.() -> Unit) {
val toBeMapped = argument.toList().map {
NonComplianceMessageArgsBuilder().applySuspend {
it()
}.build()
}
val mapped = of(toBeMapped)
this.nonComplianceMessages = mapped
}
/**
* @param argument The messages that describe why a resource is non-compliant with the policy.
*/
@JvmName("masxpbwhglidtyum")
public suspend fun nonComplianceMessages(argument: suspend NonComplianceMessageArgsBuilder.() -> Unit) {
val toBeMapped = listOf(NonComplianceMessageArgsBuilder().applySuspend { argument() }.build())
val mapped = of(toBeMapped)
this.nonComplianceMessages = mapped
}
/**
* @param values The messages that describe why a resource is non-compliant with the policy.
*/
@JvmName("bfursxdrlgxicbgo")
public suspend fun nonComplianceMessages(vararg values: NonComplianceMessageArgs) {
val toBeMapped = values.toList()
val mapped = toBeMapped.let({ args0 -> of(args0) })
this.nonComplianceMessages = mapped
}
/**
* @param value The policy's excluded scopes.
*/
@JvmName("jskmoriqpgtssjth")
public suspend fun notScopes(`value`: List?) {
val toBeMapped = value
val mapped = toBeMapped?.let({ args0 -> of(args0) })
this.notScopes = mapped
}
/**
* @param values The policy's excluded scopes.
*/
@JvmName("igksvteigyhkeptk")
public suspend fun notScopes(vararg values: String) {
val toBeMapped = values.toList()
val mapped = toBeMapped.let({ args0 -> of(args0) })
this.notScopes = mapped
}
/**
* @param value The policy property value override.
*/
@JvmName("ixolnxkqrjcvmtfn")
public suspend fun overrides(`value`: List?) {
val toBeMapped = value
val mapped = toBeMapped?.let({ args0 -> of(args0) })
this.overrides = mapped
}
/**
* @param argument The policy property value override.
*/
@JvmName("rjcsifikmqfdodye")
public suspend fun overrides(argument: List Unit>) {
val toBeMapped = argument.toList().map { OverrideArgsBuilder().applySuspend { it() }.build() }
val mapped = of(toBeMapped)
this.overrides = mapped
}
/**
* @param argument The policy property value override.
*/
@JvmName("tvhpbuwwppyvwnei")
public suspend fun overrides(vararg argument: suspend OverrideArgsBuilder.() -> Unit) {
val toBeMapped = argument.toList().map { OverrideArgsBuilder().applySuspend { it() }.build() }
val mapped = of(toBeMapped)
this.overrides = mapped
}
/**
* @param argument The policy property value override.
*/
@JvmName("sitpjkggkjghlgff")
public suspend fun overrides(argument: suspend OverrideArgsBuilder.() -> Unit) {
val toBeMapped = listOf(OverrideArgsBuilder().applySuspend { argument() }.build())
val mapped = of(toBeMapped)
this.overrides = mapped
}
/**
* @param values The policy property value override.
*/
@JvmName("kybbfkgjncdrdshd")
public suspend fun overrides(vararg values: OverrideArgs) {
val toBeMapped = values.toList()
val mapped = toBeMapped.let({ args0 -> of(args0) })
this.overrides = mapped
}
/**
* @param value The parameter values for the assigned policy rule. The keys are the parameter names.
*/
@JvmName("aelbdvjrdavcyebd")
public suspend fun parameters(`value`: Map?) {
val toBeMapped = value
val mapped = toBeMapped?.let({ args0 -> of(args0) })
this.parameters = mapped
}
/**
* @param argument The parameter values for the assigned policy rule. The keys are the parameter names.
*/
@JvmName("kudggpgembgteevm")
public suspend fun parameters(vararg argument: Pair Unit>) {
val toBeMapped = argument.toList().map { (left, right) ->
left to
ParameterValuesValueArgsBuilder().applySuspend { right() }.build()
}.toMap()
val mapped = of(toBeMapped)
this.parameters = mapped
}
/**
* @param values The parameter values for the assigned policy rule. The keys are the parameter names.
*/
@JvmName("eybqdxkuntjuoxtn")
public fun parameters(vararg values: Pair) {
val toBeMapped = values.toMap()
val mapped = toBeMapped.let({ args0 -> of(args0) })
this.parameters = mapped
}
/**
* @param value The name of the policy assignment.
*/
@JvmName("ttkimdbrvrxdddrf")
public suspend fun policyAssignmentName(`value`: String?) {
val toBeMapped = value
val mapped = toBeMapped?.let({ args0 -> of(args0) })
this.policyAssignmentName = mapped
}
/**
* @param value The ID of the policy definition or policy set definition being assigned.
*/
@JvmName("dopoqcmlulajkdqi")
public suspend fun policyDefinitionId(`value`: String?) {
val toBeMapped = value
val mapped = toBeMapped?.let({ args0 -> of(args0) })
this.policyDefinitionId = mapped
}
/**
* @param value The resource selector list to filter policies by resource properties.
*/
@JvmName("tmfvchqesglxptje")
public suspend fun resourceSelectors(`value`: List?) {
val toBeMapped = value
val mapped = toBeMapped?.let({ args0 -> of(args0) })
this.resourceSelectors = mapped
}
/**
* @param argument The resource selector list to filter policies by resource properties.
*/
@JvmName("nupcknjksajibmkg")
public suspend fun resourceSelectors(argument: List Unit>) {
val toBeMapped = argument.toList().map {
ResourceSelectorArgsBuilder().applySuspend {
it()
}.build()
}
val mapped = of(toBeMapped)
this.resourceSelectors = mapped
}
/**
* @param argument The resource selector list to filter policies by resource properties.
*/
@JvmName("hcvrnvrpghvqsgtm")
public suspend fun resourceSelectors(vararg argument: suspend ResourceSelectorArgsBuilder.() -> Unit) {
val toBeMapped = argument.toList().map {
ResourceSelectorArgsBuilder().applySuspend {
it()
}.build()
}
val mapped = of(toBeMapped)
this.resourceSelectors = mapped
}
/**
* @param argument The resource selector list to filter policies by resource properties.
*/
@JvmName("pafihmcnxrfxewpc")
public suspend fun resourceSelectors(argument: suspend ResourceSelectorArgsBuilder.() -> Unit) {
val toBeMapped = listOf(ResourceSelectorArgsBuilder().applySuspend { argument() }.build())
val mapped = of(toBeMapped)
this.resourceSelectors = mapped
}
/**
* @param values The resource selector list to filter policies by resource properties.
*/
@JvmName("xeialsdsrgwlpksm")
public suspend fun resourceSelectors(vararg values: ResourceSelectorArgs) {
val toBeMapped = values.toList()
val mapped = toBeMapped.let({ args0 -> of(args0) })
this.resourceSelectors = mapped
}
/**
* @param value The scope of the policy assignment. Valid scopes are: management group (format: '/providers/Microsoft.Management/managementGroups/{managementGroup}'), subscription (format: '/subscriptions/{subscriptionId}'), resource group (format: '/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}', or resource (format: '/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/{resourceProviderNamespace}/[{parentResourcePath}/]{resourceType}/{resourceName}'
*/
@JvmName("bygysglgcslhogax")
public suspend fun scope(`value`: String?) {
val toBeMapped = value
val mapped = toBeMapped?.let({ args0 -> of(args0) })
this.scope = mapped
}
internal fun build(): PolicyAssignmentArgs = PolicyAssignmentArgs(
description = description,
displayName = displayName,
enforcementMode = enforcementMode,
identity = identity,
location = location,
metadata = metadata,
nonComplianceMessages = nonComplianceMessages,
notScopes = notScopes,
overrides = overrides,
parameters = parameters,
policyAssignmentName = policyAssignmentName,
policyDefinitionId = policyDefinitionId,
resourceSelectors = resourceSelectors,
scope = scope,
)
}
© 2015 - 2025 Weber Informatics LLC | Privacy Policy