All Downloads are FREE. Search and download functionalities are using the official Maven repository.

com.pulumi.gcp.artifactregistry.kotlin.RepositoryIamBinding.kt Maven / Gradle / Ivy

@file:Suppress("NAME_SHADOWING", "DEPRECATION")

package com.pulumi.gcp.artifactregistry.kotlin

import com.pulumi.core.Output
import com.pulumi.gcp.artifactregistry.kotlin.outputs.RepositoryIamBindingCondition
import com.pulumi.gcp.artifactregistry.kotlin.outputs.RepositoryIamBindingCondition.Companion.toKotlin
import com.pulumi.kotlin.KotlinCustomResource
import com.pulumi.kotlin.PulumiTagMarker
import com.pulumi.kotlin.ResourceMapper
import com.pulumi.kotlin.options.CustomResourceOptions
import com.pulumi.kotlin.options.CustomResourceOptionsBuilder
import com.pulumi.resources.Resource
import kotlin.Boolean
import kotlin.String
import kotlin.Suppress
import kotlin.Unit
import kotlin.collections.List

/**
 * Builder for [RepositoryIamBinding].
 */
@PulumiTagMarker
public class RepositoryIamBindingResourceBuilder internal constructor() {
    public var name: String? = null

    public var args: RepositoryIamBindingArgs = RepositoryIamBindingArgs()

    public var opts: CustomResourceOptions = CustomResourceOptions()

    /**
     * @param name The _unique_ name of the resulting resource.
     */
    public fun name(`value`: String) {
        this.name = value
    }

    /**
     * @param block The arguments to use to populate this resource's properties.
     */
    public suspend fun args(block: suspend RepositoryIamBindingArgsBuilder.() -> Unit) {
        val builder = RepositoryIamBindingArgsBuilder()
        block(builder)
        this.args = builder.build()
    }

    /**
     * @param block A bag of options that control this resource's behavior.
     */
    public suspend fun opts(block: suspend CustomResourceOptionsBuilder.() -> Unit) {
        this.opts = com.pulumi.kotlin.options.CustomResourceOptions.opts(block)
    }

    internal fun build(): RepositoryIamBinding {
        val builtJavaResource =
            com.pulumi.gcp.artifactregistry.RepositoryIamBinding(
                this.name,
                this.args.toJava(),
                this.opts.toJava(),
            )
        return RepositoryIamBinding(builtJavaResource)
    }
}

/**
 * Three different resources help you manage your IAM policy for Artifact Registry Repository. Each of these resources serves a different use case:
 * * `gcp.artifactregistry.RepositoryIamPolicy`: Authoritative. Sets the IAM policy for the repository and replaces any existing policy already attached.
 * * `gcp.artifactregistry.RepositoryIamBinding`: Authoritative for a given role. Updates the IAM policy to grant a role to a list of members. Other roles within the IAM policy for the repository are preserved.
 * * `gcp.artifactregistry.RepositoryIamMember`: Non-authoritative. Updates the IAM policy to grant a role to a new member. Other members for the role for the repository are preserved.
 * A data source can be used to retrieve policy data in advent you do not need creation
 * * `gcp.artifactregistry.RepositoryIamPolicy`: Retrieves the IAM policy for the repository
 * > **Note:** `gcp.artifactregistry.RepositoryIamPolicy` **cannot** be used in conjunction with `gcp.artifactregistry.RepositoryIamBinding` and `gcp.artifactregistry.RepositoryIamMember` or they will fight over what your policy should be.
 * > **Note:** `gcp.artifactregistry.RepositoryIamBinding` resources **can be** used in conjunction with `gcp.artifactregistry.RepositoryIamMember` resources **only if** they do not grant privilege to the same role.
 * ## gcp.artifactregistry.RepositoryIamPolicy
 * 
 * ```typescript
 * import * as pulumi from "@pulumi/pulumi";
 * import * as gcp from "@pulumi/gcp";
 * const admin = gcp.organizations.getIAMPolicy({
 *     bindings: [{
 *         role: "roles/artifactregistry.reader",
 *         members: ["user:jane@example.com"],
 *     }],
 * });
 * const policy = new gcp.artifactregistry.RepositoryIamPolicy("policy", {
 *     project: my_repo.project,
 *     location: my_repo.location,
 *     repository: my_repo.name,
 *     policyData: admin.then(admin => admin.policyData),
 * });
 * ```
 * ```python
 * import pulumi
 * import pulumi_gcp as gcp
 * admin = gcp.organizations.get_iam_policy(bindings=[{
 *     "role": "roles/artifactregistry.reader",
 *     "members": ["user:jane@example.com"],
 * }])
 * policy = gcp.artifactregistry.RepositoryIamPolicy("policy",
 *     project=my_repo["project"],
 *     location=my_repo["location"],
 *     repository=my_repo["name"],
 *     policy_data=admin.policy_data)
 * ```
 * ```csharp
 * using System.Collections.Generic;
 * using System.Linq;
 * using Pulumi;
 * using Gcp = Pulumi.Gcp;
 * return await Deployment.RunAsync(() =>
 * {
 *     var admin = Gcp.Organizations.GetIAMPolicy.Invoke(new()
 *     {
 *         Bindings = new[]
 *         {
 *             new Gcp.Organizations.Inputs.GetIAMPolicyBindingInputArgs
 *             {
 *                 Role = "roles/artifactregistry.reader",
 *                 Members = new[]
 *                 {
 *                     "user:[email protected]",
 *                 },
 *             },
 *         },
 *     });
 *     var policy = new Gcp.ArtifactRegistry.RepositoryIamPolicy("policy", new()
 *     {
 *         Project = my_repo.Project,
 *         Location = my_repo.Location,
 *         Repository = my_repo.Name,
 *         PolicyData = admin.Apply(getIAMPolicyResult => getIAMPolicyResult.PolicyData),
 *     });
 * });
 * ```
 * ```go
 * package main
 * import (
 * 	"github.com/pulumi/pulumi-gcp/sdk/v7/go/gcp/artifactregistry"
 * 	"github.com/pulumi/pulumi-gcp/sdk/v7/go/gcp/organizations"
 * 	"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
 * )
 * func main() {
 * 	pulumi.Run(func(ctx *pulumi.Context) error {
 * 		admin, err := organizations.LookupIAMPolicy(ctx, &organizations.LookupIAMPolicyArgs{
 * 			Bindings: []organizations.GetIAMPolicyBinding{
 * 				{
 * 					Role: "roles/artifactregistry.reader",
 * 					Members: []string{
 * 						"user:[email protected]",
 * 					},
 * 				},
 * 			},
 * 		}, nil)
 * 		if err != nil {
 * 			return err
 * 		}
 * 		_, err = artifactregistry.NewRepositoryIamPolicy(ctx, "policy", &artifactregistry.RepositoryIamPolicyArgs{
 * 			Project:    pulumi.Any(my_repo.Project),
 * 			Location:   pulumi.Any(my_repo.Location),
 * 			Repository: pulumi.Any(my_repo.Name),
 * 			PolicyData: pulumi.String(admin.PolicyData),
 * 		})
 * 		if err != nil {
 * 			return err
 * 		}
 * 		return nil
 * 	})
 * }
 * ```
 * ```java
 * package generated_program;
 * import com.pulumi.Context;
 * import com.pulumi.Pulumi;
 * import com.pulumi.core.Output;
 * import com.pulumi.gcp.organizations.OrganizationsFunctions;
 * import com.pulumi.gcp.organizations.inputs.GetIAMPolicyArgs;
 * import com.pulumi.gcp.artifactregistry.RepositoryIamPolicy;
 * import com.pulumi.gcp.artifactregistry.RepositoryIamPolicyArgs;
 * import java.util.List;
 * import java.util.ArrayList;
 * import java.util.Map;
 * import java.io.File;
 * import java.nio.file.Files;
 * import java.nio.file.Paths;
 * public class App {
 *     public static void main(String[] args) {
 *         Pulumi.run(App::stack);
 *     }
 *     public static void stack(Context ctx) {
 *         final var admin = OrganizationsFunctions.getIAMPolicy(GetIAMPolicyArgs.builder()
 *             .bindings(GetIAMPolicyBindingArgs.builder()
 *                 .role("roles/artifactregistry.reader")
 *                 .members("user:[email protected]")
 *                 .build())
 *             .build());
 *         var policy = new RepositoryIamPolicy("policy", RepositoryIamPolicyArgs.builder()
 *             .project(my_repo.project())
 *             .location(my_repo.location())
 *             .repository(my_repo.name())
 *             .policyData(admin.applyValue(getIAMPolicyResult -> getIAMPolicyResult.policyData()))
 *             .build());
 *     }
 * }
 * ```
 * ```yaml
 * resources:
 *   policy:
 *     type: gcp:artifactregistry:RepositoryIamPolicy
 *     properties:
 *       project: ${["my-repo"].project}
 *       location: ${["my-repo"].location}
 *       repository: ${["my-repo"].name}
 *       policyData: ${admin.policyData}
 * variables:
 *   admin:
 *     fn::invoke:
 *       Function: gcp:organizations:getIAMPolicy
 *       Arguments:
 *         bindings:
 *           - role: roles/artifactregistry.reader
 *             members:
 *               - user:[email protected]
 * ```
 * 
 * ## gcp.artifactregistry.RepositoryIamBinding
 * 
 * ```typescript
 * import * as pulumi from "@pulumi/pulumi";
 * import * as gcp from "@pulumi/gcp";
 * const binding = new gcp.artifactregistry.RepositoryIamBinding("binding", {
 *     project: my_repo.project,
 *     location: my_repo.location,
 *     repository: my_repo.name,
 *     role: "roles/artifactregistry.reader",
 *     members: ["user:jane@example.com"],
 * });
 * ```
 * ```python
 * import pulumi
 * import pulumi_gcp as gcp
 * binding = gcp.artifactregistry.RepositoryIamBinding("binding",
 *     project=my_repo["project"],
 *     location=my_repo["location"],
 *     repository=my_repo["name"],
 *     role="roles/artifactregistry.reader",
 *     members=["user:jane@example.com"])
 * ```
 * ```csharp
 * using System.Collections.Generic;
 * using System.Linq;
 * using Pulumi;
 * using Gcp = Pulumi.Gcp;
 * return await Deployment.RunAsync(() =>
 * {
 *     var binding = new Gcp.ArtifactRegistry.RepositoryIamBinding("binding", new()
 *     {
 *         Project = my_repo.Project,
 *         Location = my_repo.Location,
 *         Repository = my_repo.Name,
 *         Role = "roles/artifactregistry.reader",
 *         Members = new[]
 *         {
 *             "user:[email protected]",
 *         },
 *     });
 * });
 * ```
 * ```go
 * package main
 * import (
 * 	"github.com/pulumi/pulumi-gcp/sdk/v7/go/gcp/artifactregistry"
 * 	"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
 * )
 * func main() {
 * 	pulumi.Run(func(ctx *pulumi.Context) error {
 * 		_, err := artifactregistry.NewRepositoryIamBinding(ctx, "binding", &artifactregistry.RepositoryIamBindingArgs{
 * 			Project:    pulumi.Any(my_repo.Project),
 * 			Location:   pulumi.Any(my_repo.Location),
 * 			Repository: pulumi.Any(my_repo.Name),
 * 			Role:       pulumi.String("roles/artifactregistry.reader"),
 * 			Members: pulumi.StringArray{
 * 				pulumi.String("user:[email protected]"),
 * 			},
 * 		})
 * 		if err != nil {
 * 			return err
 * 		}
 * 		return nil
 * 	})
 * }
 * ```
 * ```java
 * package generated_program;
 * import com.pulumi.Context;
 * import com.pulumi.Pulumi;
 * import com.pulumi.core.Output;
 * import com.pulumi.gcp.artifactregistry.RepositoryIamBinding;
 * import com.pulumi.gcp.artifactregistry.RepositoryIamBindingArgs;
 * import java.util.List;
 * import java.util.ArrayList;
 * import java.util.Map;
 * import java.io.File;
 * import java.nio.file.Files;
 * import java.nio.file.Paths;
 * public class App {
 *     public static void main(String[] args) {
 *         Pulumi.run(App::stack);
 *     }
 *     public static void stack(Context ctx) {
 *         var binding = new RepositoryIamBinding("binding", RepositoryIamBindingArgs.builder()
 *             .project(my_repo.project())
 *             .location(my_repo.location())
 *             .repository(my_repo.name())
 *             .role("roles/artifactregistry.reader")
 *             .members("user:[email protected]")
 *             .build());
 *     }
 * }
 * ```
 * ```yaml
 * resources:
 *   binding:
 *     type: gcp:artifactregistry:RepositoryIamBinding
 *     properties:
 *       project: ${["my-repo"].project}
 *       location: ${["my-repo"].location}
 *       repository: ${["my-repo"].name}
 *       role: roles/artifactregistry.reader
 *       members:
 *         - user:[email protected]
 * ```
 * 
 * ## gcp.artifactregistry.RepositoryIamMember
 * 
 * ```typescript
 * import * as pulumi from "@pulumi/pulumi";
 * import * as gcp from "@pulumi/gcp";
 * const member = new gcp.artifactregistry.RepositoryIamMember("member", {
 *     project: my_repo.project,
 *     location: my_repo.location,
 *     repository: my_repo.name,
 *     role: "roles/artifactregistry.reader",
 *     member: "user:[email protected]",
 * });
 * ```
 * ```python
 * import pulumi
 * import pulumi_gcp as gcp
 * member = gcp.artifactregistry.RepositoryIamMember("member",
 *     project=my_repo["project"],
 *     location=my_repo["location"],
 *     repository=my_repo["name"],
 *     role="roles/artifactregistry.reader",
 *     member="user:[email protected]")
 * ```
 * ```csharp
 * using System.Collections.Generic;
 * using System.Linq;
 * using Pulumi;
 * using Gcp = Pulumi.Gcp;
 * return await Deployment.RunAsync(() =>
 * {
 *     var member = new Gcp.ArtifactRegistry.RepositoryIamMember("member", new()
 *     {
 *         Project = my_repo.Project,
 *         Location = my_repo.Location,
 *         Repository = my_repo.Name,
 *         Role = "roles/artifactregistry.reader",
 *         Member = "user:[email protected]",
 *     });
 * });
 * ```
 * ```go
 * package main
 * import (
 * 	"github.com/pulumi/pulumi-gcp/sdk/v7/go/gcp/artifactregistry"
 * 	"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
 * )
 * func main() {
 * 	pulumi.Run(func(ctx *pulumi.Context) error {
 * 		_, err := artifactregistry.NewRepositoryIamMember(ctx, "member", &artifactregistry.RepositoryIamMemberArgs{
 * 			Project:    pulumi.Any(my_repo.Project),
 * 			Location:   pulumi.Any(my_repo.Location),
 * 			Repository: pulumi.Any(my_repo.Name),
 * 			Role:       pulumi.String("roles/artifactregistry.reader"),
 * 			Member:     pulumi.String("user:[email protected]"),
 * 		})
 * 		if err != nil {
 * 			return err
 * 		}
 * 		return nil
 * 	})
 * }
 * ```
 * ```java
 * package generated_program;
 * import com.pulumi.Context;
 * import com.pulumi.Pulumi;
 * import com.pulumi.core.Output;
 * import com.pulumi.gcp.artifactregistry.RepositoryIamMember;
 * import com.pulumi.gcp.artifactregistry.RepositoryIamMemberArgs;
 * import java.util.List;
 * import java.util.ArrayList;
 * import java.util.Map;
 * import java.io.File;
 * import java.nio.file.Files;
 * import java.nio.file.Paths;
 * public class App {
 *     public static void main(String[] args) {
 *         Pulumi.run(App::stack);
 *     }
 *     public static void stack(Context ctx) {
 *         var member = new RepositoryIamMember("member", RepositoryIamMemberArgs.builder()
 *             .project(my_repo.project())
 *             .location(my_repo.location())
 *             .repository(my_repo.name())
 *             .role("roles/artifactregistry.reader")
 *             .member("user:[email protected]")
 *             .build());
 *     }
 * }
 * ```
 * ```yaml
 * resources:
 *   member:
 *     type: gcp:artifactregistry:RepositoryIamMember
 *     properties:
 *       project: ${["my-repo"].project}
 *       location: ${["my-repo"].location}
 *       repository: ${["my-repo"].name}
 *       role: roles/artifactregistry.reader
 *       member: user:[email protected]
 * ```
 * 
 * ## This resource supports User Project Overrides.
 * -
 * # IAM policy for Artifact Registry Repository
 * Three different resources help you manage your IAM policy for Artifact Registry Repository. Each of these resources serves a different use case:
 * * `gcp.artifactregistry.RepositoryIamPolicy`: Authoritative. Sets the IAM policy for the repository and replaces any existing policy already attached.
 * * `gcp.artifactregistry.RepositoryIamBinding`: Authoritative for a given role. Updates the IAM policy to grant a role to a list of members. Other roles within the IAM policy for the repository are preserved.
 * * `gcp.artifactregistry.RepositoryIamMember`: Non-authoritative. Updates the IAM policy to grant a role to a new member. Other members for the role for the repository are preserved.
 * A data source can be used to retrieve policy data in advent you do not need creation
 * * `gcp.artifactregistry.RepositoryIamPolicy`: Retrieves the IAM policy for the repository
 * > **Note:** `gcp.artifactregistry.RepositoryIamPolicy` **cannot** be used in conjunction with `gcp.artifactregistry.RepositoryIamBinding` and `gcp.artifactregistry.RepositoryIamMember` or they will fight over what your policy should be.
 * > **Note:** `gcp.artifactregistry.RepositoryIamBinding` resources **can be** used in conjunction with `gcp.artifactregistry.RepositoryIamMember` resources **only if** they do not grant privilege to the same role.
 * ## gcp.artifactregistry.RepositoryIamPolicy
 * 
 * ```typescript
 * import * as pulumi from "@pulumi/pulumi";
 * import * as gcp from "@pulumi/gcp";
 * const admin = gcp.organizations.getIAMPolicy({
 *     bindings: [{
 *         role: "roles/artifactregistry.reader",
 *         members: ["user:jane@example.com"],
 *     }],
 * });
 * const policy = new gcp.artifactregistry.RepositoryIamPolicy("policy", {
 *     project: my_repo.project,
 *     location: my_repo.location,
 *     repository: my_repo.name,
 *     policyData: admin.then(admin => admin.policyData),
 * });
 * ```
 * ```python
 * import pulumi
 * import pulumi_gcp as gcp
 * admin = gcp.organizations.get_iam_policy(bindings=[{
 *     "role": "roles/artifactregistry.reader",
 *     "members": ["user:jane@example.com"],
 * }])
 * policy = gcp.artifactregistry.RepositoryIamPolicy("policy",
 *     project=my_repo["project"],
 *     location=my_repo["location"],
 *     repository=my_repo["name"],
 *     policy_data=admin.policy_data)
 * ```
 * ```csharp
 * using System.Collections.Generic;
 * using System.Linq;
 * using Pulumi;
 * using Gcp = Pulumi.Gcp;
 * return await Deployment.RunAsync(() =>
 * {
 *     var admin = Gcp.Organizations.GetIAMPolicy.Invoke(new()
 *     {
 *         Bindings = new[]
 *         {
 *             new Gcp.Organizations.Inputs.GetIAMPolicyBindingInputArgs
 *             {
 *                 Role = "roles/artifactregistry.reader",
 *                 Members = new[]
 *                 {
 *                     "user:[email protected]",
 *                 },
 *             },
 *         },
 *     });
 *     var policy = new Gcp.ArtifactRegistry.RepositoryIamPolicy("policy", new()
 *     {
 *         Project = my_repo.Project,
 *         Location = my_repo.Location,
 *         Repository = my_repo.Name,
 *         PolicyData = admin.Apply(getIAMPolicyResult => getIAMPolicyResult.PolicyData),
 *     });
 * });
 * ```
 * ```go
 * package main
 * import (
 * 	"github.com/pulumi/pulumi-gcp/sdk/v7/go/gcp/artifactregistry"
 * 	"github.com/pulumi/pulumi-gcp/sdk/v7/go/gcp/organizations"
 * 	"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
 * )
 * func main() {
 * 	pulumi.Run(func(ctx *pulumi.Context) error {
 * 		admin, err := organizations.LookupIAMPolicy(ctx, &organizations.LookupIAMPolicyArgs{
 * 			Bindings: []organizations.GetIAMPolicyBinding{
 * 				{
 * 					Role: "roles/artifactregistry.reader",
 * 					Members: []string{
 * 						"user:[email protected]",
 * 					},
 * 				},
 * 			},
 * 		}, nil)
 * 		if err != nil {
 * 			return err
 * 		}
 * 		_, err = artifactregistry.NewRepositoryIamPolicy(ctx, "policy", &artifactregistry.RepositoryIamPolicyArgs{
 * 			Project:    pulumi.Any(my_repo.Project),
 * 			Location:   pulumi.Any(my_repo.Location),
 * 			Repository: pulumi.Any(my_repo.Name),
 * 			PolicyData: pulumi.String(admin.PolicyData),
 * 		})
 * 		if err != nil {
 * 			return err
 * 		}
 * 		return nil
 * 	})
 * }
 * ```
 * ```java
 * package generated_program;
 * import com.pulumi.Context;
 * import com.pulumi.Pulumi;
 * import com.pulumi.core.Output;
 * import com.pulumi.gcp.organizations.OrganizationsFunctions;
 * import com.pulumi.gcp.organizations.inputs.GetIAMPolicyArgs;
 * import com.pulumi.gcp.artifactregistry.RepositoryIamPolicy;
 * import com.pulumi.gcp.artifactregistry.RepositoryIamPolicyArgs;
 * import java.util.List;
 * import java.util.ArrayList;
 * import java.util.Map;
 * import java.io.File;
 * import java.nio.file.Files;
 * import java.nio.file.Paths;
 * public class App {
 *     public static void main(String[] args) {
 *         Pulumi.run(App::stack);
 *     }
 *     public static void stack(Context ctx) {
 *         final var admin = OrganizationsFunctions.getIAMPolicy(GetIAMPolicyArgs.builder()
 *             .bindings(GetIAMPolicyBindingArgs.builder()
 *                 .role("roles/artifactregistry.reader")
 *                 .members("user:[email protected]")
 *                 .build())
 *             .build());
 *         var policy = new RepositoryIamPolicy("policy", RepositoryIamPolicyArgs.builder()
 *             .project(my_repo.project())
 *             .location(my_repo.location())
 *             .repository(my_repo.name())
 *             .policyData(admin.applyValue(getIAMPolicyResult -> getIAMPolicyResult.policyData()))
 *             .build());
 *     }
 * }
 * ```
 * ```yaml
 * resources:
 *   policy:
 *     type: gcp:artifactregistry:RepositoryIamPolicy
 *     properties:
 *       project: ${["my-repo"].project}
 *       location: ${["my-repo"].location}
 *       repository: ${["my-repo"].name}
 *       policyData: ${admin.policyData}
 * variables:
 *   admin:
 *     fn::invoke:
 *       Function: gcp:organizations:getIAMPolicy
 *       Arguments:
 *         bindings:
 *           - role: roles/artifactregistry.reader
 *             members:
 *               - user:[email protected]
 * ```
 * 
 * ## gcp.artifactregistry.RepositoryIamBinding
 * 
 * ```typescript
 * import * as pulumi from "@pulumi/pulumi";
 * import * as gcp from "@pulumi/gcp";
 * const binding = new gcp.artifactregistry.RepositoryIamBinding("binding", {
 *     project: my_repo.project,
 *     location: my_repo.location,
 *     repository: my_repo.name,
 *     role: "roles/artifactregistry.reader",
 *     members: ["user:jane@example.com"],
 * });
 * ```
 * ```python
 * import pulumi
 * import pulumi_gcp as gcp
 * binding = gcp.artifactregistry.RepositoryIamBinding("binding",
 *     project=my_repo["project"],
 *     location=my_repo["location"],
 *     repository=my_repo["name"],
 *     role="roles/artifactregistry.reader",
 *     members=["user:jane@example.com"])
 * ```
 * ```csharp
 * using System.Collections.Generic;
 * using System.Linq;
 * using Pulumi;
 * using Gcp = Pulumi.Gcp;
 * return await Deployment.RunAsync(() =>
 * {
 *     var binding = new Gcp.ArtifactRegistry.RepositoryIamBinding("binding", new()
 *     {
 *         Project = my_repo.Project,
 *         Location = my_repo.Location,
 *         Repository = my_repo.Name,
 *         Role = "roles/artifactregistry.reader",
 *         Members = new[]
 *         {
 *             "user:[email protected]",
 *         },
 *     });
 * });
 * ```
 * ```go
 * package main
 * import (
 * 	"github.com/pulumi/pulumi-gcp/sdk/v7/go/gcp/artifactregistry"
 * 	"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
 * )
 * func main() {
 * 	pulumi.Run(func(ctx *pulumi.Context) error {
 * 		_, err := artifactregistry.NewRepositoryIamBinding(ctx, "binding", &artifactregistry.RepositoryIamBindingArgs{
 * 			Project:    pulumi.Any(my_repo.Project),
 * 			Location:   pulumi.Any(my_repo.Location),
 * 			Repository: pulumi.Any(my_repo.Name),
 * 			Role:       pulumi.String("roles/artifactregistry.reader"),
 * 			Members: pulumi.StringArray{
 * 				pulumi.String("user:[email protected]"),
 * 			},
 * 		})
 * 		if err != nil {
 * 			return err
 * 		}
 * 		return nil
 * 	})
 * }
 * ```
 * ```java
 * package generated_program;
 * import com.pulumi.Context;
 * import com.pulumi.Pulumi;
 * import com.pulumi.core.Output;
 * import com.pulumi.gcp.artifactregistry.RepositoryIamBinding;
 * import com.pulumi.gcp.artifactregistry.RepositoryIamBindingArgs;
 * import java.util.List;
 * import java.util.ArrayList;
 * import java.util.Map;
 * import java.io.File;
 * import java.nio.file.Files;
 * import java.nio.file.Paths;
 * public class App {
 *     public static void main(String[] args) {
 *         Pulumi.run(App::stack);
 *     }
 *     public static void stack(Context ctx) {
 *         var binding = new RepositoryIamBinding("binding", RepositoryIamBindingArgs.builder()
 *             .project(my_repo.project())
 *             .location(my_repo.location())
 *             .repository(my_repo.name())
 *             .role("roles/artifactregistry.reader")
 *             .members("user:[email protected]")
 *             .build());
 *     }
 * }
 * ```
 * ```yaml
 * resources:
 *   binding:
 *     type: gcp:artifactregistry:RepositoryIamBinding
 *     properties:
 *       project: ${["my-repo"].project}
 *       location: ${["my-repo"].location}
 *       repository: ${["my-repo"].name}
 *       role: roles/artifactregistry.reader
 *       members:
 *         - user:[email protected]
 * ```
 * 
 * ## gcp.artifactregistry.RepositoryIamMember
 * 
 * ```typescript
 * import * as pulumi from "@pulumi/pulumi";
 * import * as gcp from "@pulumi/gcp";
 * const member = new gcp.artifactregistry.RepositoryIamMember("member", {
 *     project: my_repo.project,
 *     location: my_repo.location,
 *     repository: my_repo.name,
 *     role: "roles/artifactregistry.reader",
 *     member: "user:[email protected]",
 * });
 * ```
 * ```python
 * import pulumi
 * import pulumi_gcp as gcp
 * member = gcp.artifactregistry.RepositoryIamMember("member",
 *     project=my_repo["project"],
 *     location=my_repo["location"],
 *     repository=my_repo["name"],
 *     role="roles/artifactregistry.reader",
 *     member="user:[email protected]")
 * ```
 * ```csharp
 * using System.Collections.Generic;
 * using System.Linq;
 * using Pulumi;
 * using Gcp = Pulumi.Gcp;
 * return await Deployment.RunAsync(() =>
 * {
 *     var member = new Gcp.ArtifactRegistry.RepositoryIamMember("member", new()
 *     {
 *         Project = my_repo.Project,
 *         Location = my_repo.Location,
 *         Repository = my_repo.Name,
 *         Role = "roles/artifactregistry.reader",
 *         Member = "user:[email protected]",
 *     });
 * });
 * ```
 * ```go
 * package main
 * import (
 * 	"github.com/pulumi/pulumi-gcp/sdk/v7/go/gcp/artifactregistry"
 * 	"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
 * )
 * func main() {
 * 	pulumi.Run(func(ctx *pulumi.Context) error {
 * 		_, err := artifactregistry.NewRepositoryIamMember(ctx, "member", &artifactregistry.RepositoryIamMemberArgs{
 * 			Project:    pulumi.Any(my_repo.Project),
 * 			Location:   pulumi.Any(my_repo.Location),
 * 			Repository: pulumi.Any(my_repo.Name),
 * 			Role:       pulumi.String("roles/artifactregistry.reader"),
 * 			Member:     pulumi.String("user:[email protected]"),
 * 		})
 * 		if err != nil {
 * 			return err
 * 		}
 * 		return nil
 * 	})
 * }
 * ```
 * ```java
 * package generated_program;
 * import com.pulumi.Context;
 * import com.pulumi.Pulumi;
 * import com.pulumi.core.Output;
 * import com.pulumi.gcp.artifactregistry.RepositoryIamMember;
 * import com.pulumi.gcp.artifactregistry.RepositoryIamMemberArgs;
 * import java.util.List;
 * import java.util.ArrayList;
 * import java.util.Map;
 * import java.io.File;
 * import java.nio.file.Files;
 * import java.nio.file.Paths;
 * public class App {
 *     public static void main(String[] args) {
 *         Pulumi.run(App::stack);
 *     }
 *     public static void stack(Context ctx) {
 *         var member = new RepositoryIamMember("member", RepositoryIamMemberArgs.builder()
 *             .project(my_repo.project())
 *             .location(my_repo.location())
 *             .repository(my_repo.name())
 *             .role("roles/artifactregistry.reader")
 *             .member("user:[email protected]")
 *             .build());
 *     }
 * }
 * ```
 * ```yaml
 * resources:
 *   member:
 *     type: gcp:artifactregistry:RepositoryIamMember
 *     properties:
 *       project: ${["my-repo"].project}
 *       location: ${["my-repo"].location}
 *       repository: ${["my-repo"].name}
 *       role: roles/artifactregistry.reader
 *       member: user:[email protected]
 * ```
 * 
 * ## Import
 * For all import syntaxes, the "resource in question" can take any of the following forms:
 * * projects/{{project}}/locations/{{location}}/repositories/{{repository}}
 * * {{project}}/{{location}}/{{repository}}
 * * {{location}}/{{repository}}
 * * {{repository}}
 * Any variables not passed in the import command will be taken from the provider configuration.
 * Artifact Registry repository IAM resources can be imported using the resource identifiers, role, and member.
 * IAM member imports use space-delimited identifiers: the resource in question, the role, and the member identity, e.g.
 * ```sh
 * $ pulumi import gcp:artifactregistry/repositoryIamBinding:RepositoryIamBinding editor "projects/{{project}}/locations/{{location}}/repositories/{{repository}} roles/artifactregistry.reader user:[email protected]"
 * ```
 * IAM binding imports use space-delimited identifiers: the resource in question and the role, e.g.
 * ```sh
 * $ pulumi import gcp:artifactregistry/repositoryIamBinding:RepositoryIamBinding editor "projects/{{project}}/locations/{{location}}/repositories/{{repository}} roles/artifactregistry.reader"
 * ```
 * IAM policy imports use the identifier of the resource in question, e.g.
 * ```sh
 * $ pulumi import gcp:artifactregistry/repositoryIamBinding:RepositoryIamBinding editor projects/{{project}}/locations/{{location}}/repositories/{{repository}}
 * ```
 * -> **Custom Roles**: If you're importing a IAM resource with a custom role, make sure to use the
 *  full name of the custom role, e.g. `[projects/my-project|organizations/my-org]/roles/my-custom-role`.
 */
public class RepositoryIamBinding internal constructor(
    override val javaResource: com.pulumi.gcp.artifactregistry.RepositoryIamBinding,
) : KotlinCustomResource(javaResource, RepositoryIamBindingMapper) {
    public val condition: Output?
        get() = javaResource.condition().applyValue({ args0 ->
            args0.map({ args0 ->
                args0.let({ args0 ->
                    toKotlin(args0)
                })
            }).orElse(null)
        })

    /**
     * (Computed) The etag of the IAM policy.
     */
    public val etag: Output
        get() = javaResource.etag().applyValue({ args0 -> args0 })

    /**
     * The name of the location this repository is located in.
     * Used to find the parent resource to bind the IAM policy to. If not specified,
     * the value will be parsed from the identifier of the parent resource. If no location is provided in the parent identifier and no
     * location is specified, it is taken from the provider configuration.
     */
    public val location: Output
        get() = javaResource.location().applyValue({ args0 -> args0 })

    /**
     * Identities that will be granted the privilege in `role`.
     * Each entry can have one of the following values:
     * * **allUsers**: A special identifier that represents anyone who is on the internet; with or without a Google account.
     * * **allAuthenticatedUsers**: A special identifier that represents anyone who is authenticated with a Google account or a service account.
     * * **user:{emailid}**: An email address that represents a specific Google account. For example, [email protected] or [email protected].
     * * **serviceAccount:{emailid}**: An email address that represents a service account. For example, [email protected].
     * * **group:{emailid}**: An email address that represents a Google group. For example, [email protected].
     * * **domain:{domain}**: A G Suite domain (primary, instead of alias) name that represents all the users of that domain. For example, google.com or example.com.
     * * **projectOwner:projectid**: Owners of the given project. For example, "projectOwner:my-example-project"
     * * **projectEditor:projectid**: Editors of the given project. For example, "projectEditor:my-example-project"
     * * **projectViewer:projectid**: Viewers of the given project. For example, "projectViewer:my-example-project"
     */
    public val members: Output>
        get() = javaResource.members().applyValue({ args0 -> args0.map({ args0 -> args0 }) })

    /**
     * The ID of the project in which the resource belongs.
     * If it is not provided, the project will be parsed from the identifier of the parent resource. If no project is provided in the parent identifier and no project is specified, the provider project is used.
     */
    public val project: Output
        get() = javaResource.project().applyValue({ args0 -> args0 })

    /**
     * Used to find the parent resource to bind the IAM policy to
     */
    public val repository: Output
        get() = javaResource.repository().applyValue({ args0 -> args0 })

    /**
     * The role that should be applied. Only one
     * `gcp.artifactregistry.RepositoryIamBinding` can be used per role. Note that custom roles must be of the format
     * `[projects|organizations]/{parent-name}/roles/{role-name}`.
     */
    public val role: Output
        get() = javaResource.role().applyValue({ args0 -> args0 })
}

public object RepositoryIamBindingMapper : ResourceMapper {
    override fun supportsMappingOfType(javaResource: Resource): Boolean =
        com.pulumi.gcp.artifactregistry.RepositoryIamBinding::class == javaResource::class

    override fun map(javaResource: Resource): RepositoryIamBinding = RepositoryIamBinding(
        javaResource
            as com.pulumi.gcp.artifactregistry.RepositoryIamBinding,
    )
}

/**
 * @see [RepositoryIamBinding].
 * @param name The _unique_ name of the resulting resource.
 * @param block Builder for [RepositoryIamBinding].
 */
public suspend fun repositoryIamBinding(
    name: String,
    block: suspend RepositoryIamBindingResourceBuilder.() -> Unit,
): RepositoryIamBinding {
    val builder = RepositoryIamBindingResourceBuilder()
    builder.name(name)
    block(builder)
    return builder.build()
}

/**
 * @see [RepositoryIamBinding].
 * @param name The _unique_ name of the resulting resource.
 */
public fun repositoryIamBinding(name: String): RepositoryIamBinding {
    val builder = RepositoryIamBindingResourceBuilder()
    builder.name(name)
    return builder.build()
}




© 2015 - 2024 Weber Informatics LLC | Privacy Policy