com.pulumi.gcp.apigee.kotlin.Organization.kt Maven / Gradle / Ivy
Go to download
Show more of this group Show more artifacts with this name
Show all versions of pulumi-gcp-kotlin Show documentation
Show all versions of pulumi-gcp-kotlin Show documentation
Build cloud applications and infrastructure by combining the safety and reliability of infrastructure as code with the power of the Kotlin programming language.
@file:Suppress("NAME_SHADOWING", "DEPRECATION")
package com.pulumi.gcp.apigee.kotlin
import com.pulumi.core.Output
import com.pulumi.gcp.apigee.kotlin.outputs.OrganizationProperties
import com.pulumi.gcp.apigee.kotlin.outputs.OrganizationProperties.Companion.toKotlin
import com.pulumi.kotlin.KotlinCustomResource
import com.pulumi.kotlin.PulumiTagMarker
import com.pulumi.kotlin.ResourceMapper
import com.pulumi.kotlin.options.CustomResourceOptions
import com.pulumi.kotlin.options.CustomResourceOptionsBuilder
import com.pulumi.resources.Resource
import kotlin.Boolean
import kotlin.String
import kotlin.Suppress
import kotlin.Unit
/**
* Builder for [Organization].
*/
@PulumiTagMarker
public class OrganizationResourceBuilder internal constructor() {
public var name: String? = null
public var args: OrganizationArgs = OrganizationArgs()
public var opts: CustomResourceOptions = CustomResourceOptions()
/**
* @param name The _unique_ name of the resulting resource.
*/
public fun name(`value`: String) {
this.name = value
}
/**
* @param block The arguments to use to populate this resource's properties.
*/
public suspend fun args(block: suspend OrganizationArgsBuilder.() -> Unit) {
val builder = OrganizationArgsBuilder()
block(builder)
this.args = builder.build()
}
/**
* @param block A bag of options that control this resource's behavior.
*/
public suspend fun opts(block: suspend CustomResourceOptionsBuilder.() -> Unit) {
this.opts = com.pulumi.kotlin.options.CustomResourceOptions.opts(block)
}
internal fun build(): Organization {
val builtJavaResource = com.pulumi.gcp.apigee.Organization(
this.name,
this.args.toJava(),
this.opts.toJava(),
)
return Organization(builtJavaResource)
}
}
/**
* An `Organization` is the top-level container in Apigee.
* To get more information about Organization, see:
* * [API documentation](https://cloud.google.com/apigee/docs/reference/apis/apigee/rest/v1/organizations)
* * How-to Guides
* * [Creating an API organization](https://cloud.google.com/apigee/docs/api-platform/get-started/create-org)
* ## Example Usage
* ### Apigee Organization Cloud Basic
*
* ```typescript
* import * as pulumi from "@pulumi/pulumi";
* import * as gcp from "@pulumi/gcp";
* const current = gcp.organizations.getClientConfig({});
* const apigeeNetwork = new gcp.compute.Network("apigee_network", {name: "apigee-network"});
* const apigeeRange = new gcp.compute.GlobalAddress("apigee_range", {
* name: "apigee-range",
* purpose: "VPC_PEERING",
* addressType: "INTERNAL",
* prefixLength: 16,
* network: apigeeNetwork.id,
* });
* const apigeeVpcConnection = new gcp.servicenetworking.Connection("apigee_vpc_connection", {
* network: apigeeNetwork.id,
* service: "servicenetworking.googleapis.com",
* reservedPeeringRanges: [apigeeRange.name],
* });
* const org = new gcp.apigee.Organization("org", {
* analyticsRegion: "us-central1",
* projectId: current.then(current => current.project),
* authorizedNetwork: apigeeNetwork.id,
* });
* ```
* ```python
* import pulumi
* import pulumi_gcp as gcp
* current = gcp.organizations.get_client_config()
* apigee_network = gcp.compute.Network("apigee_network", name="apigee-network")
* apigee_range = gcp.compute.GlobalAddress("apigee_range",
* name="apigee-range",
* purpose="VPC_PEERING",
* address_type="INTERNAL",
* prefix_length=16,
* network=apigee_network.id)
* apigee_vpc_connection = gcp.servicenetworking.Connection("apigee_vpc_connection",
* network=apigee_network.id,
* service="servicenetworking.googleapis.com",
* reserved_peering_ranges=[apigee_range.name])
* org = gcp.apigee.Organization("org",
* analytics_region="us-central1",
* project_id=current.project,
* authorized_network=apigee_network.id)
* ```
* ```csharp
* using System.Collections.Generic;
* using System.Linq;
* using Pulumi;
* using Gcp = Pulumi.Gcp;
* return await Deployment.RunAsync(() =>
* {
* var current = Gcp.Organizations.GetClientConfig.Invoke();
* var apigeeNetwork = new Gcp.Compute.Network("apigee_network", new()
* {
* Name = "apigee-network",
* });
* var apigeeRange = new Gcp.Compute.GlobalAddress("apigee_range", new()
* {
* Name = "apigee-range",
* Purpose = "VPC_PEERING",
* AddressType = "INTERNAL",
* PrefixLength = 16,
* Network = apigeeNetwork.Id,
* });
* var apigeeVpcConnection = new Gcp.ServiceNetworking.Connection("apigee_vpc_connection", new()
* {
* Network = apigeeNetwork.Id,
* Service = "servicenetworking.googleapis.com",
* ReservedPeeringRanges = new[]
* {
* apigeeRange.Name,
* },
* });
* var org = new Gcp.Apigee.Organization("org", new()
* {
* AnalyticsRegion = "us-central1",
* ProjectId = current.Apply(getClientConfigResult => getClientConfigResult.Project),
* AuthorizedNetwork = apigeeNetwork.Id,
* });
* });
* ```
* ```go
* package main
* import (
* "github.com/pulumi/pulumi-gcp/sdk/v7/go/gcp/apigee"
* "github.com/pulumi/pulumi-gcp/sdk/v7/go/gcp/compute"
* "github.com/pulumi/pulumi-gcp/sdk/v7/go/gcp/organizations"
* "github.com/pulumi/pulumi-gcp/sdk/v7/go/gcp/servicenetworking"
* "github.com/pulumi/pulumi/sdk/v3/go/pulumi"
* )
* func main() {
* pulumi.Run(func(ctx *pulumi.Context) error {
* current, err := organizations.GetClientConfig(ctx, nil, nil)
* if err != nil {
* return err
* }
* apigeeNetwork, err := compute.NewNetwork(ctx, "apigee_network", &compute.NetworkArgs{
* Name: pulumi.String("apigee-network"),
* })
* if err != nil {
* return err
* }
* apigeeRange, err := compute.NewGlobalAddress(ctx, "apigee_range", &compute.GlobalAddressArgs{
* Name: pulumi.String("apigee-range"),
* Purpose: pulumi.String("VPC_PEERING"),
* AddressType: pulumi.String("INTERNAL"),
* PrefixLength: pulumi.Int(16),
* Network: apigeeNetwork.ID(),
* })
* if err != nil {
* return err
* }
* _, err = servicenetworking.NewConnection(ctx, "apigee_vpc_connection", &servicenetworking.ConnectionArgs{
* Network: apigeeNetwork.ID(),
* Service: pulumi.String("servicenetworking.googleapis.com"),
* ReservedPeeringRanges: pulumi.StringArray{
* apigeeRange.Name,
* },
* })
* if err != nil {
* return err
* }
* _, err = apigee.NewOrganization(ctx, "org", &apigee.OrganizationArgs{
* AnalyticsRegion: pulumi.String("us-central1"),
* ProjectId: pulumi.String(current.Project),
* AuthorizedNetwork: apigeeNetwork.ID(),
* })
* if err != nil {
* return err
* }
* return nil
* })
* }
* ```
* ```java
* package generated_program;
* import com.pulumi.Context;
* import com.pulumi.Pulumi;
* import com.pulumi.core.Output;
* import com.pulumi.gcp.organizations.OrganizationsFunctions;
* import com.pulumi.gcp.compute.Network;
* import com.pulumi.gcp.compute.NetworkArgs;
* import com.pulumi.gcp.compute.GlobalAddress;
* import com.pulumi.gcp.compute.GlobalAddressArgs;
* import com.pulumi.gcp.servicenetworking.Connection;
* import com.pulumi.gcp.servicenetworking.ConnectionArgs;
* import com.pulumi.gcp.apigee.Organization;
* import com.pulumi.gcp.apigee.OrganizationArgs;
* import java.util.List;
* import java.util.ArrayList;
* import java.util.Map;
* import java.io.File;
* import java.nio.file.Files;
* import java.nio.file.Paths;
* public class App {
* public static void main(String[] args) {
* Pulumi.run(App::stack);
* }
* public static void stack(Context ctx) {
* final var current = OrganizationsFunctions.getClientConfig();
* var apigeeNetwork = new Network("apigeeNetwork", NetworkArgs.builder()
* .name("apigee-network")
* .build());
* var apigeeRange = new GlobalAddress("apigeeRange", GlobalAddressArgs.builder()
* .name("apigee-range")
* .purpose("VPC_PEERING")
* .addressType("INTERNAL")
* .prefixLength(16)
* .network(apigeeNetwork.id())
* .build());
* var apigeeVpcConnection = new Connection("apigeeVpcConnection", ConnectionArgs.builder()
* .network(apigeeNetwork.id())
* .service("servicenetworking.googleapis.com")
* .reservedPeeringRanges(apigeeRange.name())
* .build());
* var org = new Organization("org", OrganizationArgs.builder()
* .analyticsRegion("us-central1")
* .projectId(current.applyValue(getClientConfigResult -> getClientConfigResult.project()))
* .authorizedNetwork(apigeeNetwork.id())
* .build());
* }
* }
* ```
* ```yaml
* resources:
* apigeeNetwork:
* type: gcp:compute:Network
* name: apigee_network
* properties:
* name: apigee-network
* apigeeRange:
* type: gcp:compute:GlobalAddress
* name: apigee_range
* properties:
* name: apigee-range
* purpose: VPC_PEERING
* addressType: INTERNAL
* prefixLength: 16
* network: ${apigeeNetwork.id}
* apigeeVpcConnection:
* type: gcp:servicenetworking:Connection
* name: apigee_vpc_connection
* properties:
* network: ${apigeeNetwork.id}
* service: servicenetworking.googleapis.com
* reservedPeeringRanges:
* - ${apigeeRange.name}
* org:
* type: gcp:apigee:Organization
* properties:
* analyticsRegion: us-central1
* projectId: ${current.project}
* authorizedNetwork: ${apigeeNetwork.id}
* variables:
* current:
* fn::invoke:
* Function: gcp:organizations:getClientConfig
* Arguments: {}
* ```
*
* ### Apigee Organization Cloud Basic Disable Vpc Peering
*
* ```typescript
* import * as pulumi from "@pulumi/pulumi";
* import * as gcp from "@pulumi/gcp";
* const current = gcp.organizations.getClientConfig({});
* const org = new gcp.apigee.Organization("org", {
* description: "Terraform-provisioned basic Apigee Org without VPC Peering.",
* analyticsRegion: "us-central1",
* projectId: current.then(current => current.project),
* disableVpcPeering: true,
* });
* ```
* ```python
* import pulumi
* import pulumi_gcp as gcp
* current = gcp.organizations.get_client_config()
* org = gcp.apigee.Organization("org",
* description="Terraform-provisioned basic Apigee Org without VPC Peering.",
* analytics_region="us-central1",
* project_id=current.project,
* disable_vpc_peering=True)
* ```
* ```csharp
* using System.Collections.Generic;
* using System.Linq;
* using Pulumi;
* using Gcp = Pulumi.Gcp;
* return await Deployment.RunAsync(() =>
* {
* var current = Gcp.Organizations.GetClientConfig.Invoke();
* var org = new Gcp.Apigee.Organization("org", new()
* {
* Description = "Terraform-provisioned basic Apigee Org without VPC Peering.",
* AnalyticsRegion = "us-central1",
* ProjectId = current.Apply(getClientConfigResult => getClientConfigResult.Project),
* DisableVpcPeering = true,
* });
* });
* ```
* ```go
* package main
* import (
* "github.com/pulumi/pulumi-gcp/sdk/v7/go/gcp/apigee"
* "github.com/pulumi/pulumi-gcp/sdk/v7/go/gcp/organizations"
* "github.com/pulumi/pulumi/sdk/v3/go/pulumi"
* )
* func main() {
* pulumi.Run(func(ctx *pulumi.Context) error {
* current, err := organizations.GetClientConfig(ctx, nil, nil)
* if err != nil {
* return err
* }
* _, err = apigee.NewOrganization(ctx, "org", &apigee.OrganizationArgs{
* Description: pulumi.String("Terraform-provisioned basic Apigee Org without VPC Peering."),
* AnalyticsRegion: pulumi.String("us-central1"),
* ProjectId: pulumi.String(current.Project),
* DisableVpcPeering: pulumi.Bool(true),
* })
* if err != nil {
* return err
* }
* return nil
* })
* }
* ```
* ```java
* package generated_program;
* import com.pulumi.Context;
* import com.pulumi.Pulumi;
* import com.pulumi.core.Output;
* import com.pulumi.gcp.organizations.OrganizationsFunctions;
* import com.pulumi.gcp.apigee.Organization;
* import com.pulumi.gcp.apigee.OrganizationArgs;
* import java.util.List;
* import java.util.ArrayList;
* import java.util.Map;
* import java.io.File;
* import java.nio.file.Files;
* import java.nio.file.Paths;
* public class App {
* public static void main(String[] args) {
* Pulumi.run(App::stack);
* }
* public static void stack(Context ctx) {
* final var current = OrganizationsFunctions.getClientConfig();
* var org = new Organization("org", OrganizationArgs.builder()
* .description("Terraform-provisioned basic Apigee Org without VPC Peering.")
* .analyticsRegion("us-central1")
* .projectId(current.applyValue(getClientConfigResult -> getClientConfigResult.project()))
* .disableVpcPeering(true)
* .build());
* }
* }
* ```
* ```yaml
* resources:
* org:
* type: gcp:apigee:Organization
* properties:
* description: Terraform-provisioned basic Apigee Org without VPC Peering.
* analyticsRegion: us-central1
* projectId: ${current.project}
* disableVpcPeering: true
* variables:
* current:
* fn::invoke:
* Function: gcp:organizations:getClientConfig
* Arguments: {}
* ```
*
* ### Apigee Organization Cloud Full
*
* ```typescript
* import * as pulumi from "@pulumi/pulumi";
* import * as gcp from "@pulumi/gcp";
* const current = gcp.organizations.getClientConfig({});
* const apigeeNetwork = new gcp.compute.Network("apigee_network", {name: "apigee-network"});
* const apigeeRange = new gcp.compute.GlobalAddress("apigee_range", {
* name: "apigee-range",
* purpose: "VPC_PEERING",
* addressType: "INTERNAL",
* prefixLength: 16,
* network: apigeeNetwork.id,
* });
* const apigeeVpcConnection = new gcp.servicenetworking.Connection("apigee_vpc_connection", {
* network: apigeeNetwork.id,
* service: "servicenetworking.googleapis.com",
* reservedPeeringRanges: [apigeeRange.name],
* });
* const apigeeKeyring = new gcp.kms.KeyRing("apigee_keyring", {
* name: "apigee-keyring",
* location: "us-central1",
* });
* const apigeeKey = new gcp.kms.CryptoKey("apigee_key", {
* name: "apigee-key",
* keyRing: apigeeKeyring.id,
* });
* const apigeeSa = new gcp.projects.ServiceIdentity("apigee_sa", {
* project: project.projectId,
* service: apigee.service,
* });
* const apigeeSaKeyuser = new gcp.kms.CryptoKeyIAMMember("apigee_sa_keyuser", {
* cryptoKeyId: apigeeKey.id,
* role: "roles/cloudkms.cryptoKeyEncrypterDecrypter",
* member: pulumi.interpolate`serviceAccount:${apigeeSa.email}`,
* });
* const org = new gcp.apigee.Organization("org", {
* analyticsRegion: "us-central1",
* displayName: "apigee-org",
* description: "Auto-provisioned Apigee Org.",
* projectId: current.then(current => current.project),
* authorizedNetwork: apigeeNetwork.id,
* runtimeDatabaseEncryptionKeyName: apigeeKey.id,
* });
* ```
* ```python
* import pulumi
* import pulumi_gcp as gcp
* current = gcp.organizations.get_client_config()
* apigee_network = gcp.compute.Network("apigee_network", name="apigee-network")
* apigee_range = gcp.compute.GlobalAddress("apigee_range",
* name="apigee-range",
* purpose="VPC_PEERING",
* address_type="INTERNAL",
* prefix_length=16,
* network=apigee_network.id)
* apigee_vpc_connection = gcp.servicenetworking.Connection("apigee_vpc_connection",
* network=apigee_network.id,
* service="servicenetworking.googleapis.com",
* reserved_peering_ranges=[apigee_range.name])
* apigee_keyring = gcp.kms.KeyRing("apigee_keyring",
* name="apigee-keyring",
* location="us-central1")
* apigee_key = gcp.kms.CryptoKey("apigee_key",
* name="apigee-key",
* key_ring=apigee_keyring.id)
* apigee_sa = gcp.projects.ServiceIdentity("apigee_sa",
* project=project["projectId"],
* service=apigee["service"])
* apigee_sa_keyuser = gcp.kms.CryptoKeyIAMMember("apigee_sa_keyuser",
* crypto_key_id=apigee_key.id,
* role="roles/cloudkms.cryptoKeyEncrypterDecrypter",
* member=apigee_sa.email.apply(lambda email: f"serviceAccount:{email}"))
* org = gcp.apigee.Organization("org",
* analytics_region="us-central1",
* display_name="apigee-org",
* description="Auto-provisioned Apigee Org.",
* project_id=current.project,
* authorized_network=apigee_network.id,
* runtime_database_encryption_key_name=apigee_key.id)
* ```
* ```csharp
* using System.Collections.Generic;
* using System.Linq;
* using Pulumi;
* using Gcp = Pulumi.Gcp;
* return await Deployment.RunAsync(() =>
* {
* var current = Gcp.Organizations.GetClientConfig.Invoke();
* var apigeeNetwork = new Gcp.Compute.Network("apigee_network", new()
* {
* Name = "apigee-network",
* });
* var apigeeRange = new Gcp.Compute.GlobalAddress("apigee_range", new()
* {
* Name = "apigee-range",
* Purpose = "VPC_PEERING",
* AddressType = "INTERNAL",
* PrefixLength = 16,
* Network = apigeeNetwork.Id,
* });
* var apigeeVpcConnection = new Gcp.ServiceNetworking.Connection("apigee_vpc_connection", new()
* {
* Network = apigeeNetwork.Id,
* Service = "servicenetworking.googleapis.com",
* ReservedPeeringRanges = new[]
* {
* apigeeRange.Name,
* },
* });
* var apigeeKeyring = new Gcp.Kms.KeyRing("apigee_keyring", new()
* {
* Name = "apigee-keyring",
* Location = "us-central1",
* });
* var apigeeKey = new Gcp.Kms.CryptoKey("apigee_key", new()
* {
* Name = "apigee-key",
* KeyRing = apigeeKeyring.Id,
* });
* var apigeeSa = new Gcp.Projects.ServiceIdentity("apigee_sa", new()
* {
* Project = project.ProjectId,
* Service = apigee.Service,
* });
* var apigeeSaKeyuser = new Gcp.Kms.CryptoKeyIAMMember("apigee_sa_keyuser", new()
* {
* CryptoKeyId = apigeeKey.Id,
* Role = "roles/cloudkms.cryptoKeyEncrypterDecrypter",
* Member = apigeeSa.Email.Apply(email => $"serviceAccount:{email}"),
* });
* var org = new Gcp.Apigee.Organization("org", new()
* {
* AnalyticsRegion = "us-central1",
* DisplayName = "apigee-org",
* Description = "Auto-provisioned Apigee Org.",
* ProjectId = current.Apply(getClientConfigResult => getClientConfigResult.Project),
* AuthorizedNetwork = apigeeNetwork.Id,
* RuntimeDatabaseEncryptionKeyName = apigeeKey.Id,
* });
* });
* ```
* ```go
* package main
* import (
* "fmt"
* "github.com/pulumi/pulumi-gcp/sdk/v7/go/gcp/apigee"
* "github.com/pulumi/pulumi-gcp/sdk/v7/go/gcp/compute"
* "github.com/pulumi/pulumi-gcp/sdk/v7/go/gcp/kms"
* "github.com/pulumi/pulumi-gcp/sdk/v7/go/gcp/organizations"
* "github.com/pulumi/pulumi-gcp/sdk/v7/go/gcp/projects"
* "github.com/pulumi/pulumi-gcp/sdk/v7/go/gcp/servicenetworking"
* "github.com/pulumi/pulumi/sdk/v3/go/pulumi"
* )
* func main() {
* pulumi.Run(func(ctx *pulumi.Context) error {
* current, err := organizations.GetClientConfig(ctx, nil, nil)
* if err != nil {
* return err
* }
* apigeeNetwork, err := compute.NewNetwork(ctx, "apigee_network", &compute.NetworkArgs{
* Name: pulumi.String("apigee-network"),
* })
* if err != nil {
* return err
* }
* apigeeRange, err := compute.NewGlobalAddress(ctx, "apigee_range", &compute.GlobalAddressArgs{
* Name: pulumi.String("apigee-range"),
* Purpose: pulumi.String("VPC_PEERING"),
* AddressType: pulumi.String("INTERNAL"),
* PrefixLength: pulumi.Int(16),
* Network: apigeeNetwork.ID(),
* })
* if err != nil {
* return err
* }
* _, err = servicenetworking.NewConnection(ctx, "apigee_vpc_connection", &servicenetworking.ConnectionArgs{
* Network: apigeeNetwork.ID(),
* Service: pulumi.String("servicenetworking.googleapis.com"),
* ReservedPeeringRanges: pulumi.StringArray{
* apigeeRange.Name,
* },
* })
* if err != nil {
* return err
* }
* apigeeKeyring, err := kms.NewKeyRing(ctx, "apigee_keyring", &kms.KeyRingArgs{
* Name: pulumi.String("apigee-keyring"),
* Location: pulumi.String("us-central1"),
* })
* if err != nil {
* return err
* }
* apigeeKey, err := kms.NewCryptoKey(ctx, "apigee_key", &kms.CryptoKeyArgs{
* Name: pulumi.String("apigee-key"),
* KeyRing: apigeeKeyring.ID(),
* })
* if err != nil {
* return err
* }
* apigeeSa, err := projects.NewServiceIdentity(ctx, "apigee_sa", &projects.ServiceIdentityArgs{
* Project: pulumi.Any(project.ProjectId),
* Service: pulumi.Any(apigee.Service),
* })
* if err != nil {
* return err
* }
* _, err = kms.NewCryptoKeyIAMMember(ctx, "apigee_sa_keyuser", &kms.CryptoKeyIAMMemberArgs{
* CryptoKeyId: apigeeKey.ID(),
* Role: pulumi.String("roles/cloudkms.cryptoKeyEncrypterDecrypter"),
* Member: apigeeSa.Email.ApplyT(func(email string) (string, error) {
* return fmt.Sprintf("serviceAccount:%v", email), nil
* }).(pulumi.StringOutput),
* })
* if err != nil {
* return err
* }
* _, err = apigee.NewOrganization(ctx, "org", &apigee.OrganizationArgs{
* AnalyticsRegion: pulumi.String("us-central1"),
* DisplayName: pulumi.String("apigee-org"),
* Description: pulumi.String("Auto-provisioned Apigee Org."),
* ProjectId: pulumi.String(current.Project),
* AuthorizedNetwork: apigeeNetwork.ID(),
* RuntimeDatabaseEncryptionKeyName: apigeeKey.ID(),
* })
* if err != nil {
* return err
* }
* return nil
* })
* }
* ```
* ```java
* package generated_program;
* import com.pulumi.Context;
* import com.pulumi.Pulumi;
* import com.pulumi.core.Output;
* import com.pulumi.gcp.organizations.OrganizationsFunctions;
* import com.pulumi.gcp.compute.Network;
* import com.pulumi.gcp.compute.NetworkArgs;
* import com.pulumi.gcp.compute.GlobalAddress;
* import com.pulumi.gcp.compute.GlobalAddressArgs;
* import com.pulumi.gcp.servicenetworking.Connection;
* import com.pulumi.gcp.servicenetworking.ConnectionArgs;
* import com.pulumi.gcp.kms.KeyRing;
* import com.pulumi.gcp.kms.KeyRingArgs;
* import com.pulumi.gcp.kms.CryptoKey;
* import com.pulumi.gcp.kms.CryptoKeyArgs;
* import com.pulumi.gcp.projects.ServiceIdentity;
* import com.pulumi.gcp.projects.ServiceIdentityArgs;
* import com.pulumi.gcp.kms.CryptoKeyIAMMember;
* import com.pulumi.gcp.kms.CryptoKeyIAMMemberArgs;
* import com.pulumi.gcp.apigee.Organization;
* import com.pulumi.gcp.apigee.OrganizationArgs;
* import java.util.List;
* import java.util.ArrayList;
* import java.util.Map;
* import java.io.File;
* import java.nio.file.Files;
* import java.nio.file.Paths;
* public class App {
* public static void main(String[] args) {
* Pulumi.run(App::stack);
* }
* public static void stack(Context ctx) {
* final var current = OrganizationsFunctions.getClientConfig();
* var apigeeNetwork = new Network("apigeeNetwork", NetworkArgs.builder()
* .name("apigee-network")
* .build());
* var apigeeRange = new GlobalAddress("apigeeRange", GlobalAddressArgs.builder()
* .name("apigee-range")
* .purpose("VPC_PEERING")
* .addressType("INTERNAL")
* .prefixLength(16)
* .network(apigeeNetwork.id())
* .build());
* var apigeeVpcConnection = new Connection("apigeeVpcConnection", ConnectionArgs.builder()
* .network(apigeeNetwork.id())
* .service("servicenetworking.googleapis.com")
* .reservedPeeringRanges(apigeeRange.name())
* .build());
* var apigeeKeyring = new KeyRing("apigeeKeyring", KeyRingArgs.builder()
* .name("apigee-keyring")
* .location("us-central1")
* .build());
* var apigeeKey = new CryptoKey("apigeeKey", CryptoKeyArgs.builder()
* .name("apigee-key")
* .keyRing(apigeeKeyring.id())
* .build());
* var apigeeSa = new ServiceIdentity("apigeeSa", ServiceIdentityArgs.builder()
* .project(project.projectId())
* .service(apigee.service())
* .build());
* var apigeeSaKeyuser = new CryptoKeyIAMMember("apigeeSaKeyuser", CryptoKeyIAMMemberArgs.builder()
* .cryptoKeyId(apigeeKey.id())
* .role("roles/cloudkms.cryptoKeyEncrypterDecrypter")
* .member(apigeeSa.email().applyValue(email -> String.format("serviceAccount:%s", email)))
* .build());
* var org = new Organization("org", OrganizationArgs.builder()
* .analyticsRegion("us-central1")
* .displayName("apigee-org")
* .description("Auto-provisioned Apigee Org.")
* .projectId(current.applyValue(getClientConfigResult -> getClientConfigResult.project()))
* .authorizedNetwork(apigeeNetwork.id())
* .runtimeDatabaseEncryptionKeyName(apigeeKey.id())
* .build());
* }
* }
* ```
* ```yaml
* resources:
* apigeeNetwork:
* type: gcp:compute:Network
* name: apigee_network
* properties:
* name: apigee-network
* apigeeRange:
* type: gcp:compute:GlobalAddress
* name: apigee_range
* properties:
* name: apigee-range
* purpose: VPC_PEERING
* addressType: INTERNAL
* prefixLength: 16
* network: ${apigeeNetwork.id}
* apigeeVpcConnection:
* type: gcp:servicenetworking:Connection
* name: apigee_vpc_connection
* properties:
* network: ${apigeeNetwork.id}
* service: servicenetworking.googleapis.com
* reservedPeeringRanges:
* - ${apigeeRange.name}
* apigeeKeyring:
* type: gcp:kms:KeyRing
* name: apigee_keyring
* properties:
* name: apigee-keyring
* location: us-central1
* apigeeKey:
* type: gcp:kms:CryptoKey
* name: apigee_key
* properties:
* name: apigee-key
* keyRing: ${apigeeKeyring.id}
* apigeeSa:
* type: gcp:projects:ServiceIdentity
* name: apigee_sa
* properties:
* project: ${project.projectId}
* service: ${apigee.service}
* apigeeSaKeyuser:
* type: gcp:kms:CryptoKeyIAMMember
* name: apigee_sa_keyuser
* properties:
* cryptoKeyId: ${apigeeKey.id}
* role: roles/cloudkms.cryptoKeyEncrypterDecrypter
* member: serviceAccount:${apigeeSa.email}
* org:
* type: gcp:apigee:Organization
* properties:
* analyticsRegion: us-central1
* displayName: apigee-org
* description: Auto-provisioned Apigee Org.
* projectId: ${current.project}
* authorizedNetwork: ${apigeeNetwork.id}
* runtimeDatabaseEncryptionKeyName: ${apigeeKey.id}
* variables:
* current:
* fn::invoke:
* Function: gcp:organizations:getClientConfig
* Arguments: {}
* ```
*
* ### Apigee Organization Cloud Full Disable Vpc Peering
*
* ```typescript
* import * as pulumi from "@pulumi/pulumi";
* import * as gcp from "@pulumi/gcp";
* const current = gcp.organizations.getClientConfig({});
* const apigeeKeyring = new gcp.kms.KeyRing("apigee_keyring", {
* name: "apigee-keyring",
* location: "us-central1",
* });
* const apigeeKey = new gcp.kms.CryptoKey("apigee_key", {
* name: "apigee-key",
* keyRing: apigeeKeyring.id,
* });
* const apigeeSa = new gcp.projects.ServiceIdentity("apigee_sa", {
* project: project.projectId,
* service: apigee.service,
* });
* const apigeeSaKeyuser = new gcp.kms.CryptoKeyIAMMember("apigee_sa_keyuser", {
* cryptoKeyId: apigeeKey.id,
* role: "roles/cloudkms.cryptoKeyEncrypterDecrypter",
* member: pulumi.interpolate`serviceAccount:${apigeeSa.email}`,
* });
* const org = new gcp.apigee.Organization("org", {
* analyticsRegion: "us-central1",
* displayName: "apigee-org",
* description: "Terraform-provisioned Apigee Org without VPC Peering.",
* projectId: current.then(current => current.project),
* disableVpcPeering: true,
* runtimeDatabaseEncryptionKeyName: apigeeKey.id,
* });
* ```
* ```python
* import pulumi
* import pulumi_gcp as gcp
* current = gcp.organizations.get_client_config()
* apigee_keyring = gcp.kms.KeyRing("apigee_keyring",
* name="apigee-keyring",
* location="us-central1")
* apigee_key = gcp.kms.CryptoKey("apigee_key",
* name="apigee-key",
* key_ring=apigee_keyring.id)
* apigee_sa = gcp.projects.ServiceIdentity("apigee_sa",
* project=project["projectId"],
* service=apigee["service"])
* apigee_sa_keyuser = gcp.kms.CryptoKeyIAMMember("apigee_sa_keyuser",
* crypto_key_id=apigee_key.id,
* role="roles/cloudkms.cryptoKeyEncrypterDecrypter",
* member=apigee_sa.email.apply(lambda email: f"serviceAccount:{email}"))
* org = gcp.apigee.Organization("org",
* analytics_region="us-central1",
* display_name="apigee-org",
* description="Terraform-provisioned Apigee Org without VPC Peering.",
* project_id=current.project,
* disable_vpc_peering=True,
* runtime_database_encryption_key_name=apigee_key.id)
* ```
* ```csharp
* using System.Collections.Generic;
* using System.Linq;
* using Pulumi;
* using Gcp = Pulumi.Gcp;
* return await Deployment.RunAsync(() =>
* {
* var current = Gcp.Organizations.GetClientConfig.Invoke();
* var apigeeKeyring = new Gcp.Kms.KeyRing("apigee_keyring", new()
* {
* Name = "apigee-keyring",
* Location = "us-central1",
* });
* var apigeeKey = new Gcp.Kms.CryptoKey("apigee_key", new()
* {
* Name = "apigee-key",
* KeyRing = apigeeKeyring.Id,
* });
* var apigeeSa = new Gcp.Projects.ServiceIdentity("apigee_sa", new()
* {
* Project = project.ProjectId,
* Service = apigee.Service,
* });
* var apigeeSaKeyuser = new Gcp.Kms.CryptoKeyIAMMember("apigee_sa_keyuser", new()
* {
* CryptoKeyId = apigeeKey.Id,
* Role = "roles/cloudkms.cryptoKeyEncrypterDecrypter",
* Member = apigeeSa.Email.Apply(email => $"serviceAccount:{email}"),
* });
* var org = new Gcp.Apigee.Organization("org", new()
* {
* AnalyticsRegion = "us-central1",
* DisplayName = "apigee-org",
* Description = "Terraform-provisioned Apigee Org without VPC Peering.",
* ProjectId = current.Apply(getClientConfigResult => getClientConfigResult.Project),
* DisableVpcPeering = true,
* RuntimeDatabaseEncryptionKeyName = apigeeKey.Id,
* });
* });
* ```
* ```go
* package main
* import (
* "fmt"
* "github.com/pulumi/pulumi-gcp/sdk/v7/go/gcp/apigee"
* "github.com/pulumi/pulumi-gcp/sdk/v7/go/gcp/kms"
* "github.com/pulumi/pulumi-gcp/sdk/v7/go/gcp/organizations"
* "github.com/pulumi/pulumi-gcp/sdk/v7/go/gcp/projects"
* "github.com/pulumi/pulumi/sdk/v3/go/pulumi"
* )
* func main() {
* pulumi.Run(func(ctx *pulumi.Context) error {
* current, err := organizations.GetClientConfig(ctx, nil, nil)
* if err != nil {
* return err
* }
* apigeeKeyring, err := kms.NewKeyRing(ctx, "apigee_keyring", &kms.KeyRingArgs{
* Name: pulumi.String("apigee-keyring"),
* Location: pulumi.String("us-central1"),
* })
* if err != nil {
* return err
* }
* apigeeKey, err := kms.NewCryptoKey(ctx, "apigee_key", &kms.CryptoKeyArgs{
* Name: pulumi.String("apigee-key"),
* KeyRing: apigeeKeyring.ID(),
* })
* if err != nil {
* return err
* }
* apigeeSa, err := projects.NewServiceIdentity(ctx, "apigee_sa", &projects.ServiceIdentityArgs{
* Project: pulumi.Any(project.ProjectId),
* Service: pulumi.Any(apigee.Service),
* })
* if err != nil {
* return err
* }
* _, err = kms.NewCryptoKeyIAMMember(ctx, "apigee_sa_keyuser", &kms.CryptoKeyIAMMemberArgs{
* CryptoKeyId: apigeeKey.ID(),
* Role: pulumi.String("roles/cloudkms.cryptoKeyEncrypterDecrypter"),
* Member: apigeeSa.Email.ApplyT(func(email string) (string, error) {
* return fmt.Sprintf("serviceAccount:%v", email), nil
* }).(pulumi.StringOutput),
* })
* if err != nil {
* return err
* }
* _, err = apigee.NewOrganization(ctx, "org", &apigee.OrganizationArgs{
* AnalyticsRegion: pulumi.String("us-central1"),
* DisplayName: pulumi.String("apigee-org"),
* Description: pulumi.String("Terraform-provisioned Apigee Org without VPC Peering."),
* ProjectId: pulumi.String(current.Project),
* DisableVpcPeering: pulumi.Bool(true),
* RuntimeDatabaseEncryptionKeyName: apigeeKey.ID(),
* })
* if err != nil {
* return err
* }
* return nil
* })
* }
* ```
* ```java
* package generated_program;
* import com.pulumi.Context;
* import com.pulumi.Pulumi;
* import com.pulumi.core.Output;
* import com.pulumi.gcp.organizations.OrganizationsFunctions;
* import com.pulumi.gcp.kms.KeyRing;
* import com.pulumi.gcp.kms.KeyRingArgs;
* import com.pulumi.gcp.kms.CryptoKey;
* import com.pulumi.gcp.kms.CryptoKeyArgs;
* import com.pulumi.gcp.projects.ServiceIdentity;
* import com.pulumi.gcp.projects.ServiceIdentityArgs;
* import com.pulumi.gcp.kms.CryptoKeyIAMMember;
* import com.pulumi.gcp.kms.CryptoKeyIAMMemberArgs;
* import com.pulumi.gcp.apigee.Organization;
* import com.pulumi.gcp.apigee.OrganizationArgs;
* import java.util.List;
* import java.util.ArrayList;
* import java.util.Map;
* import java.io.File;
* import java.nio.file.Files;
* import java.nio.file.Paths;
* public class App {
* public static void main(String[] args) {
* Pulumi.run(App::stack);
* }
* public static void stack(Context ctx) {
* final var current = OrganizationsFunctions.getClientConfig();
* var apigeeKeyring = new KeyRing("apigeeKeyring", KeyRingArgs.builder()
* .name("apigee-keyring")
* .location("us-central1")
* .build());
* var apigeeKey = new CryptoKey("apigeeKey", CryptoKeyArgs.builder()
* .name("apigee-key")
* .keyRing(apigeeKeyring.id())
* .build());
* var apigeeSa = new ServiceIdentity("apigeeSa", ServiceIdentityArgs.builder()
* .project(project.projectId())
* .service(apigee.service())
* .build());
* var apigeeSaKeyuser = new CryptoKeyIAMMember("apigeeSaKeyuser", CryptoKeyIAMMemberArgs.builder()
* .cryptoKeyId(apigeeKey.id())
* .role("roles/cloudkms.cryptoKeyEncrypterDecrypter")
* .member(apigeeSa.email().applyValue(email -> String.format("serviceAccount:%s", email)))
* .build());
* var org = new Organization("org", OrganizationArgs.builder()
* .analyticsRegion("us-central1")
* .displayName("apigee-org")
* .description("Terraform-provisioned Apigee Org without VPC Peering.")
* .projectId(current.applyValue(getClientConfigResult -> getClientConfigResult.project()))
* .disableVpcPeering(true)
* .runtimeDatabaseEncryptionKeyName(apigeeKey.id())
* .build());
* }
* }
* ```
* ```yaml
* resources:
* apigeeKeyring:
* type: gcp:kms:KeyRing
* name: apigee_keyring
* properties:
* name: apigee-keyring
* location: us-central1
* apigeeKey:
* type: gcp:kms:CryptoKey
* name: apigee_key
* properties:
* name: apigee-key
* keyRing: ${apigeeKeyring.id}
* apigeeSa:
* type: gcp:projects:ServiceIdentity
* name: apigee_sa
* properties:
* project: ${project.projectId}
* service: ${apigee.service}
* apigeeSaKeyuser:
* type: gcp:kms:CryptoKeyIAMMember
* name: apigee_sa_keyuser
* properties:
* cryptoKeyId: ${apigeeKey.id}
* role: roles/cloudkms.cryptoKeyEncrypterDecrypter
* member: serviceAccount:${apigeeSa.email}
* org:
* type: gcp:apigee:Organization
* properties:
* analyticsRegion: us-central1
* displayName: apigee-org
* description: Terraform-provisioned Apigee Org without VPC Peering.
* projectId: ${current.project}
* disableVpcPeering: true
* runtimeDatabaseEncryptionKeyName: ${apigeeKey.id}
* variables:
* current:
* fn::invoke:
* Function: gcp:organizations:getClientConfig
* Arguments: {}
* ```
*
* ## Import
* Organization can be imported using any of these accepted formats:
* * `organizations/{{name}}`
* * `{{name}}`
* When using the `pulumi import` command, Organization can be imported using one of the formats above. For example:
* ```sh
* $ pulumi import gcp:apigee/organization:Organization default organizations/{{name}}
* ```
* ```sh
* $ pulumi import gcp:apigee/organization:Organization default {{name}}
* ```
*/
public class Organization internal constructor(
override val javaResource: com.pulumi.gcp.apigee.Organization,
) : KotlinCustomResource(javaResource, OrganizationMapper) {
/**
* Primary GCP region for analytics data storage. For valid values, see [Create an Apigee organization](https://cloud.google.com/apigee/docs/api-platform/get-started/create-org).
*/
public val analyticsRegion: Output?
get() = javaResource.analyticsRegion().applyValue({ args0 ->
args0.map({ args0 ->
args0
}).orElse(null)
})
/**
* Cloud KMS key name used for encrypting API consumer data.
*/
public val apiConsumerDataEncryptionKeyName: Output?
get() = javaResource.apiConsumerDataEncryptionKeyName().applyValue({ args0 ->
args0.map({ args0 ->
args0
}).orElse(null)
})
/**
* This field is needed only for customers using non-default data residency regions.
* Apigee stores some control plane data only in single region.
* This field determines which single region Apigee should use.
*/
public val apiConsumerDataLocation: Output?
get() = javaResource.apiConsumerDataLocation().applyValue({ args0 ->
args0.map({ args0 ->
args0
}).orElse(null)
})
/**
* Output only. Project ID of the Apigee Tenant Project.
*/
public val apigeeProjectId: Output
get() = javaResource.apigeeProjectId().applyValue({ args0 -> args0 })
/**
* Compute Engine network used for Service Networking to be peered with Apigee runtime instances.
* See [Getting started with the Service Networking API](https://cloud.google.com/service-infrastructure/docs/service-networking/getting-started).
* Valid only when `RuntimeType` is set to CLOUD. The value can be updated only when there are no runtime instances. For example: "default".
*/
public val authorizedNetwork: Output?
get() = javaResource.authorizedNetwork().applyValue({ args0 ->
args0.map({ args0 ->
args0
}).orElse(null)
})
/**
* Billing type of the Apigee organization. See [Apigee pricing](https://cloud.google.com/apigee/pricing).
*/
public val billingType: Output
get() = javaResource.billingType().applyValue({ args0 -> args0 })
/**
* Output only. Base64-encoded public certificate for the root CA of the Apigee organization.
* Valid only when `RuntimeType` is CLOUD. A base64-encoded string.
*/
public val caCertificate: Output
get() = javaResource.caCertificate().applyValue({ args0 -> args0 })
/**
* Cloud KMS key name used for encrypting control plane data that is stored in a multi region.
* Only used for the data residency region "US" or "EU".
*/
public val controlPlaneEncryptionKeyName: Output?
get() = javaResource.controlPlaneEncryptionKeyName().applyValue({ args0 ->
args0.map({ args0 ->
args0
}).orElse(null)
})
/**
* Description of the Apigee organization.
*/
public val description: Output?
get() = javaResource.description().applyValue({ args0 ->
args0.map({ args0 ->
args0
}).orElse(null)
})
/**
* Flag that specifies whether the VPC Peering through Private Google Access should be
* disabled between the consumer network and Apigee. Required if an `authorizedNetwork`
* on the consumer project is not provided, in which case the flag should be set to `true`.
* Valid only when `RuntimeType` is set to CLOUD. The value must be set before the creation
* of any Apigee runtime instance and can be updated only when there are no runtime instances.
*/
public val disableVpcPeering: Output?
get() = javaResource.disableVpcPeering().applyValue({ args0 ->
args0.map({ args0 ->
args0
}).orElse(null)
})
/**
* The display name of the Apigee organization.
*/
public val displayName: Output?
get() = javaResource.displayName().applyValue({ args0 ->
args0.map({ args0 ->
args0
}).orElse(null)
})
/**
* Output only. Name of the Apigee organization.
*/
public val name: Output
get() = javaResource.name().applyValue({ args0 -> args0 })
/**
* The project ID associated with the Apigee organization.
* - - -
*/
public val projectId: Output
get() = javaResource.projectId().applyValue({ args0 -> args0 })
/**
* Properties defined in the Apigee organization profile.
* Structure is documented below.
*/
public val properties: Output
get() = javaResource.properties().applyValue({ args0 -> args0.let({ args0 -> toKotlin(args0) }) })
/**
* Optional. This setting is applicable only for organizations that are soft-deleted (i.e., BillingType
* is not EVALUATION). It controls how long Organization data will be retained after the initial delete
* operation completes. During this period, the Organization may be restored to its last known state.
* After this period, the Organization will no longer be able to be restored.
* Default value is `DELETION_RETENTION_UNSPECIFIED`.
* Possible values are: `DELETION_RETENTION_UNSPECIFIED`, `MINIMUM`.
*/
public val retention: Output?
get() = javaResource.retention().applyValue({ args0 -> args0.map({ args0 -> args0 }).orElse(null) })
/**
* Cloud KMS key name used for encrypting the data that is stored and replicated across runtime instances.
* Update is not allowed after the organization is created.
* If not specified, a Google-Managed encryption key will be used.
* Valid only when `RuntimeType` is CLOUD. For example: `projects/foo/locations/us/keyRings/bar/cryptoKeys/baz`.
*/
public val runtimeDatabaseEncryptionKeyName: Output?
get() = javaResource.runtimeDatabaseEncryptionKeyName().applyValue({ args0 ->
args0.map({ args0 ->
args0
}).orElse(null)
})
/**
* Runtime type of the Apigee organization based on the Apigee subscription purchased.
* Default value is `CLOUD`.
* Possible values are: `CLOUD`, `HYBRID`.
*/
public val runtimeType: Output?
get() = javaResource.runtimeType().applyValue({ args0 ->
args0.map({ args0 ->
args0
}).orElse(null)
})
/**
* Output only. Subscription type of the Apigee organization.
* Valid values include trial (free, limited, and for evaluation purposes only) or paid (full subscription has been purchased).
*/
public val subscriptionType: Output
get() = javaResource.subscriptionType().applyValue({ args0 -> args0 })
}
public object OrganizationMapper : ResourceMapper {
override fun supportsMappingOfType(javaResource: Resource): Boolean =
com.pulumi.gcp.apigee.Organization::class == javaResource::class
override fun map(javaResource: Resource): Organization = Organization(
javaResource as
com.pulumi.gcp.apigee.Organization,
)
}
/**
* @see [Organization].
* @param name The _unique_ name of the resulting resource.
* @param block Builder for [Organization].
*/
public suspend fun organization(
name: String,
block: suspend OrganizationResourceBuilder.() -> Unit,
): Organization {
val builder = OrganizationResourceBuilder()
builder.name(name)
block(builder)
return builder.build()
}
/**
* @see [Organization].
* @param name The _unique_ name of the resulting resource.
*/
public fun organization(name: String): Organization {
val builder = OrganizationResourceBuilder()
builder.name(name)
return builder.build()
}
© 2015 - 2025 Weber Informatics LLC | Privacy Policy