Many resources are needed to download a project. Please understand that we have to compensate our server costs. Thank you in advance.
Project price only 1 $
You can buy this project and download/modify it how often you want.
com.pulumi.gcp.apigee.kotlin.SyncAuthorizationArgs.kt Maven / Gradle / Ivy
@file:Suppress("NAME_SHADOWING", "DEPRECATION")
package com.pulumi.gcp.apigee.kotlin
import com.pulumi.core.Output
import com.pulumi.core.Output.of
import com.pulumi.gcp.apigee.SyncAuthorizationArgs.builder
import com.pulumi.kotlin.ConvertibleToJava
import com.pulumi.kotlin.PulumiTagMarker
import kotlin.String
import kotlin.Suppress
import kotlin.collections.List
import kotlin.jvm.JvmName
/**
* Authorize the Synchronizer to download environment data from the control plane.
* To get more information about SyncAuthorization, see:
* * [API documentation](https://cloud.google.com/apigee/docs/reference/apis/apigee/rest/v1/organizations#getsyncauthorization)
* * How-to Guides
* * [Enable Synchronizer access](https://cloud.google.com/apigee/docs/hybrid/v1.8/synchronizer-access#enable-synchronizer-access)
* ## Example Usage
* ### Apigee Sync Authorization Basic Test
*
* ```typescript
* import * as pulumi from "@pulumi/pulumi";
* import * as gcp from "@pulumi/gcp";
* const project = new gcp.organizations.Project("project", {
* projectId: "my-project",
* name: "my-project",
* orgId: "123456789",
* billingAccount: "000000-0000000-0000000-000000",
* });
* const apigee = new gcp.projects.Service("apigee", {
* project: project.projectId,
* service: "apigee.googleapis.com",
* });
* const apigeeOrg = new gcp.apigee.Organization("apigee_org", {
* analyticsRegion: "us-central1",
* projectId: project.projectId,
* runtimeType: "HYBRID",
* }, {
* dependsOn: [apigee],
* });
* const serviceAccount = new gcp.serviceaccount.Account("service_account", {
* accountId: "my-account",
* displayName: "Service Account",
* });
* const synchronizer_iam = new gcp.projects.IAMMember("synchronizer-iam", {
* project: project.projectId,
* role: "roles/apigee.synchronizerManager",
* member: pulumi.interpolate`serviceAccount:${serviceAccount.email}`,
* });
* const apigeeSyncAuthorization = new gcp.apigee.SyncAuthorization("apigee_sync_authorization", {
* name: apigeeOrg.name,
* identities: [pulumi.interpolate`serviceAccount:${serviceAccount.email}`],
* }, {
* dependsOn: [synchronizer_iam],
* });
* ```
* ```python
* import pulumi
* import pulumi_gcp as gcp
* project = gcp.organizations.Project("project",
* project_id="my-project",
* name="my-project",
* org_id="123456789",
* billing_account="000000-0000000-0000000-000000")
* apigee = gcp.projects.Service("apigee",
* project=project.project_id,
* service="apigee.googleapis.com")
* apigee_org = gcp.apigee.Organization("apigee_org",
* analytics_region="us-central1",
* project_id=project.project_id,
* runtime_type="HYBRID",
* opts = pulumi.ResourceOptions(depends_on=[apigee]))
* service_account = gcp.serviceaccount.Account("service_account",
* account_id="my-account",
* display_name="Service Account")
* synchronizer_iam = gcp.projects.IAMMember("synchronizer-iam",
* project=project.project_id,
* role="roles/apigee.synchronizerManager",
* member=service_account.email.apply(lambda email: f"serviceAccount:{email}"))
* apigee_sync_authorization = gcp.apigee.SyncAuthorization("apigee_sync_authorization",
* name=apigee_org.name,
* identities=[service_account.email.apply(lambda email: f"serviceAccount:{email}")],
* opts = pulumi.ResourceOptions(depends_on=[synchronizer_iam]))
* ```
* ```csharp
* using System.Collections.Generic;
* using System.Linq;
* using Pulumi;
* using Gcp = Pulumi.Gcp;
* return await Deployment.RunAsync(() =>
* {
* var project = new Gcp.Organizations.Project("project", new()
* {
* ProjectId = "my-project",
* Name = "my-project",
* OrgId = "123456789",
* BillingAccount = "000000-0000000-0000000-000000",
* });
* var apigee = new Gcp.Projects.Service("apigee", new()
* {
* Project = project.ProjectId,
* ServiceName = "apigee.googleapis.com",
* });
* var apigeeOrg = new Gcp.Apigee.Organization("apigee_org", new()
* {
* AnalyticsRegion = "us-central1",
* ProjectId = project.ProjectId,
* RuntimeType = "HYBRID",
* }, new CustomResourceOptions
* {
* DependsOn =
* {
* apigee,
* },
* });
* var serviceAccount = new Gcp.ServiceAccount.Account("service_account", new()
* {
* AccountId = "my-account",
* DisplayName = "Service Account",
* });
* var synchronizer_iam = new Gcp.Projects.IAMMember("synchronizer-iam", new()
* {
* Project = project.ProjectId,
* Role = "roles/apigee.synchronizerManager",
* Member = serviceAccount.Email.Apply(email => $"serviceAccount:{email}"),
* });
* var apigeeSyncAuthorization = new Gcp.Apigee.SyncAuthorization("apigee_sync_authorization", new()
* {
* Name = apigeeOrg.Name,
* Identities = new[]
* {
* serviceAccount.Email.Apply(email => $"serviceAccount:{email}"),
* },
* }, new CustomResourceOptions
* {
* DependsOn =
* {
* synchronizer_iam,
* },
* });
* });
* ```
* ```go
* package main
* import (
* "fmt"
* "github.com/pulumi/pulumi-gcp/sdk/v7/go/gcp/apigee"
* "github.com/pulumi/pulumi-gcp/sdk/v7/go/gcp/organizations"
* "github.com/pulumi/pulumi-gcp/sdk/v7/go/gcp/projects"
* "github.com/pulumi/pulumi-gcp/sdk/v7/go/gcp/serviceaccount"
* "github.com/pulumi/pulumi/sdk/v3/go/pulumi"
* )
* func main() {
* pulumi.Run(func(ctx *pulumi.Context) error {
* project, err := organizations.NewProject(ctx, "project", &organizations.ProjectArgs{
* ProjectId: pulumi.String("my-project"),
* Name: pulumi.String("my-project"),
* OrgId: pulumi.String("123456789"),
* BillingAccount: pulumi.String("000000-0000000-0000000-000000"),
* })
* if err != nil {
* return err
* }
* apigee, err := projects.NewService(ctx, "apigee", &projects.ServiceArgs{
* Project: project.ProjectId,
* Service: pulumi.String("apigee.googleapis.com"),
* })
* if err != nil {
* return err
* }
* apigeeOrg, err := apigee.NewOrganization(ctx, "apigee_org", &apigee.OrganizationArgs{
* AnalyticsRegion: pulumi.String("us-central1"),
* ProjectId: project.ProjectId,
* RuntimeType: pulumi.String("HYBRID"),
* }, pulumi.DependsOn([]pulumi.Resource{
* apigee,
* }))
* if err != nil {
* return err
* }
* serviceAccount, err := serviceaccount.NewAccount(ctx, "service_account", &serviceaccount.AccountArgs{
* AccountId: pulumi.String("my-account"),
* DisplayName: pulumi.String("Service Account"),
* })
* if err != nil {
* return err
* }
* _, err = projects.NewIAMMember(ctx, "synchronizer-iam", &projects.IAMMemberArgs{
* Project: project.ProjectId,
* Role: pulumi.String("roles/apigee.synchronizerManager"),
* Member: serviceAccount.Email.ApplyT(func(email string) (string, error) {
* return fmt.Sprintf("serviceAccount:%v", email), nil
* }).(pulumi.StringOutput),
* })
* if err != nil {
* return err
* }
* _, err = apigee.NewSyncAuthorization(ctx, "apigee_sync_authorization", &apigee.SyncAuthorizationArgs{
* Name: apigeeOrg.Name,
* Identities: pulumi.StringArray{
* serviceAccount.Email.ApplyT(func(email string) (string, error) {
* return fmt.Sprintf("serviceAccount:%v", email), nil
* }).(pulumi.StringOutput),
* },
* }, pulumi.DependsOn([]pulumi.Resource{
* synchronizer_iam,
* }))
* if err != nil {
* return err
* }
* return nil
* })
* }
* ```
* ```java
* package generated_program;
* import com.pulumi.Context;
* import com.pulumi.Pulumi;
* import com.pulumi.core.Output;
* import com.pulumi.gcp.organizations.Project;
* import com.pulumi.gcp.organizations.ProjectArgs;
* import com.pulumi.gcp.projects.Service;
* import com.pulumi.gcp.projects.ServiceArgs;
* import com.pulumi.gcp.apigee.Organization;
* import com.pulumi.gcp.apigee.OrganizationArgs;
* import com.pulumi.gcp.serviceaccount.Account;
* import com.pulumi.gcp.serviceaccount.AccountArgs;
* import com.pulumi.gcp.projects.IAMMember;
* import com.pulumi.gcp.projects.IAMMemberArgs;
* import com.pulumi.gcp.apigee.SyncAuthorization;
* import com.pulumi.gcp.apigee.SyncAuthorizationArgs;
* import com.pulumi.resources.CustomResourceOptions;
* import java.util.List;
* import java.util.ArrayList;
* import java.util.Map;
* import java.io.File;
* import java.nio.file.Files;
* import java.nio.file.Paths;
* public class App {
* public static void main(String[] args) {
* Pulumi.run(App::stack);
* }
* public static void stack(Context ctx) {
* var project = new Project("project", ProjectArgs.builder()
* .projectId("my-project")
* .name("my-project")
* .orgId("123456789")
* .billingAccount("000000-0000000-0000000-000000")
* .build());
* var apigee = new Service("apigee", ServiceArgs.builder()
* .project(project.projectId())
* .service("apigee.googleapis.com")
* .build());
* var apigeeOrg = new Organization("apigeeOrg", OrganizationArgs.builder()
* .analyticsRegion("us-central1")
* .projectId(project.projectId())
* .runtimeType("HYBRID")
* .build(), CustomResourceOptions.builder()
* .dependsOn(apigee)
* .build());
* var serviceAccount = new Account("serviceAccount", AccountArgs.builder()
* .accountId("my-account")
* .displayName("Service Account")
* .build());
* var synchronizer_iam = new IAMMember("synchronizer-iam", IAMMemberArgs.builder()
* .project(project.projectId())
* .role("roles/apigee.synchronizerManager")
* .member(serviceAccount.email().applyValue(email -> String.format("serviceAccount:%s", email)))
* .build());
* var apigeeSyncAuthorization = new SyncAuthorization("apigeeSyncAuthorization", SyncAuthorizationArgs.builder()
* .name(apigeeOrg.name())
* .identities(serviceAccount.email().applyValue(email -> String.format("serviceAccount:%s", email)))
* .build(), CustomResourceOptions.builder()
* .dependsOn(synchronizer_iam)
* .build());
* }
* }
* ```
* ```yaml
* resources:
* project:
* type: gcp:organizations:Project
* properties:
* projectId: my-project
* name: my-project
* orgId: '123456789'
* billingAccount: 000000-0000000-0000000-000000
* apigee:
* type: gcp:projects:Service
* properties:
* project: ${project.projectId}
* service: apigee.googleapis.com
* apigeeOrg:
* type: gcp:apigee:Organization
* name: apigee_org
* properties:
* analyticsRegion: us-central1
* projectId: ${project.projectId}
* runtimeType: HYBRID
* options:
* dependson:
* - ${apigee}
* serviceAccount:
* type: gcp:serviceaccount:Account
* name: service_account
* properties:
* accountId: my-account
* displayName: Service Account
* synchronizer-iam:
* type: gcp:projects:IAMMember
* properties:
* project: ${project.projectId}
* role: roles/apigee.synchronizerManager
* member: serviceAccount:${serviceAccount.email}
* apigeeSyncAuthorization:
* type: gcp:apigee:SyncAuthorization
* name: apigee_sync_authorization
* properties:
* name: ${apigeeOrg.name}
* identities:
* - serviceAccount:${serviceAccount.email}
* options:
* dependson:
* - ${["synchronizer-iam"]}
* ```
*
* ## Import
* SyncAuthorization can be imported using any of these accepted formats:
* * `organizations/{{name}}/syncAuthorization`
* * `{{name}}`
* When using the `pulumi import` command, SyncAuthorization can be imported using one of the formats above. For example:
* ```sh
* $ pulumi import gcp:apigee/syncAuthorization:SyncAuthorization default organizations/{{name}}/syncAuthorization
* ```
* ```sh
* $ pulumi import gcp:apigee/syncAuthorization:SyncAuthorization default {{name}}
* ```
* @property identities Array of service accounts to grant access to control plane resources, each specified using the following format: `serviceAccount:service-account-name`.
* The `service-account-name` is formatted like an email address. For example: my-synchronizer-manager-serviceAccount@my_project_id.iam.gserviceaccount.com
* You might specify multiple service accounts, for example, if you have multiple environments and wish to assign a unique service account to each one.
* The service accounts must have **Apigee Synchronizer Manager** role. See also [Create service accounts](https://cloud.google.com/apigee/docs/hybrid/v1.8/sa-about#create-the-service-accounts).
* @property name Name of the Apigee organization.
* - - -
*/
public data class SyncAuthorizationArgs(
public val identities: Output>? = null,
public val name: Output? = null,
) : ConvertibleToJava {
override fun toJava(): com.pulumi.gcp.apigee.SyncAuthorizationArgs =
com.pulumi.gcp.apigee.SyncAuthorizationArgs.builder()
.identities(identities?.applyValue({ args0 -> args0.map({ args0 -> args0 }) }))
.name(name?.applyValue({ args0 -> args0 })).build()
}
/**
* Builder for [SyncAuthorizationArgs].
*/
@PulumiTagMarker
public class SyncAuthorizationArgsBuilder internal constructor() {
private var identities: Output>? = null
private var name: Output? = null
/**
* @param value Array of service accounts to grant access to control plane resources, each specified using the following format: `serviceAccount:service-account-name`.
* The `service-account-name` is formatted like an email address. For example: my-synchronizer-manager-serviceAccount@my_project_id.iam.gserviceaccount.com
* You might specify multiple service accounts, for example, if you have multiple environments and wish to assign a unique service account to each one.
* The service accounts must have **Apigee Synchronizer Manager** role. See also [Create service accounts](https://cloud.google.com/apigee/docs/hybrid/v1.8/sa-about#create-the-service-accounts).
*/
@JvmName("tfypbuvpbhjvovqm")
public suspend fun identities(`value`: Output>) {
this.identities = value
}
@JvmName("lsdlityhweoengdk")
public suspend fun identities(vararg values: Output) {
this.identities = Output.all(values.asList())
}
/**
* @param values Array of service accounts to grant access to control plane resources, each specified using the following format: `serviceAccount:service-account-name`.
* The `service-account-name` is formatted like an email address. For example: my-synchronizer-manager-serviceAccount@my_project_id.iam.gserviceaccount.com
* You might specify multiple service accounts, for example, if you have multiple environments and wish to assign a unique service account to each one.
* The service accounts must have **Apigee Synchronizer Manager** role. See also [Create service accounts](https://cloud.google.com/apigee/docs/hybrid/v1.8/sa-about#create-the-service-accounts).
*/
@JvmName("vnltnggvvxgaqfgt")
public suspend fun identities(values: List>) {
this.identities = Output.all(values)
}
/**
* @param value Name of the Apigee organization.
* - - -
*/
@JvmName("dsfqfcfxwpgstbgq")
public suspend fun name(`value`: Output) {
this.name = value
}
/**
* @param value Array of service accounts to grant access to control plane resources, each specified using the following format: `serviceAccount:service-account-name`.
* The `service-account-name` is formatted like an email address. For example: my-synchronizer-manager-serviceAccount@my_project_id.iam.gserviceaccount.com
* You might specify multiple service accounts, for example, if you have multiple environments and wish to assign a unique service account to each one.
* The service accounts must have **Apigee Synchronizer Manager** role. See also [Create service accounts](https://cloud.google.com/apigee/docs/hybrid/v1.8/sa-about#create-the-service-accounts).
*/
@JvmName("shikmfuslegroggx")
public suspend fun identities(`value`: List?) {
val toBeMapped = value
val mapped = toBeMapped?.let({ args0 -> of(args0) })
this.identities = mapped
}
/**
* @param values Array of service accounts to grant access to control plane resources, each specified using the following format: `serviceAccount:service-account-name`.
* The `service-account-name` is formatted like an email address. For example: my-synchronizer-manager-serviceAccount@my_project_id.iam.gserviceaccount.com
* You might specify multiple service accounts, for example, if you have multiple environments and wish to assign a unique service account to each one.
* The service accounts must have **Apigee Synchronizer Manager** role. See also [Create service accounts](https://cloud.google.com/apigee/docs/hybrid/v1.8/sa-about#create-the-service-accounts).
*/
@JvmName("nxcnoisxexlakjso")
public suspend fun identities(vararg values: String) {
val toBeMapped = values.toList()
val mapped = toBeMapped.let({ args0 -> of(args0) })
this.identities = mapped
}
/**
* @param value Name of the Apigee organization.
* - - -
*/
@JvmName("owawlsyxluqbhleq")
public suspend fun name(`value`: String?) {
val toBeMapped = value
val mapped = toBeMapped?.let({ args0 -> of(args0) })
this.name = mapped
}
internal fun build(): SyncAuthorizationArgs = SyncAuthorizationArgs(
identities = identities,
name = name,
)
}
