1. Packages
  2. Google Cloud (GCP) Classic
  3. API Docs
  4. accesscontextmanager
  5. AuthorizedOrgsDesc
Google Cloud Classic v8.9.3 published on Monday, Nov 18, 2024 by Pulumi

gcp.accesscontextmanager.AuthorizedOrgsDesc

Explore with Pulumi AI

gcp logo
Google Cloud Classic v8.9.3 published on Monday, Nov 18, 2024 by Pulumi

    An authorized organizations description describes a list of organizations (1) that have been authorized to use certain asset (for example, device) data owned by different organizations at the enforcement points, or (2) with certain asset (for example, device) have been authorized to access the resources in another organization at the enforcement points.

    To get more information about AuthorizedOrgsDesc, see:

    Warning: If you are using User ADCs (Application Default Credentials) with this resource, you must specify a billing_project and set user_project_override to true in the provider configuration. Otherwise the ACM API will return a 403 error. Your account must have the serviceusage.services.use permission on the billing_project you defined.

    Example Usage

    Access Context Manager Authorized Orgs Desc Basic

    import * as pulumi from "@pulumi/pulumi";
    import * as gcp from "@pulumi/gcp";
    
    const test_access = new gcp.accesscontextmanager.AccessPolicy("test-access", {
        parent: "organizations/",
        title: "my policy",
    });
    const authorized_orgs_desc = new gcp.accesscontextmanager.AuthorizedOrgsDesc("authorized-orgs-desc", {
        parent: pulumi.interpolate`accessPolicies/${test_access.name}`,
        name: pulumi.interpolate`accessPolicies/${test_access.name}/authorizedOrgsDescs/fakeDescName`,
        authorizationType: "AUTHORIZATION_TYPE_TRUST",
        assetType: "ASSET_TYPE_CREDENTIAL_STRENGTH",
        authorizationDirection: "AUTHORIZATION_DIRECTION_TO",
        orgs: [
            "organizations/12345",
            "organizations/98765",
        ],
    });
    
    import pulumi
    import pulumi_gcp as gcp
    
    test_access = gcp.accesscontextmanager.AccessPolicy("test-access",
        parent="organizations/",
        title="my policy")
    authorized_orgs_desc = gcp.accesscontextmanager.AuthorizedOrgsDesc("authorized-orgs-desc",
        parent=test_access.name.apply(lambda name: f"accessPolicies/{name}"),
        name=test_access.name.apply(lambda name: f"accessPolicies/{name}/authorizedOrgsDescs/fakeDescName"),
        authorization_type="AUTHORIZATION_TYPE_TRUST",
        asset_type="ASSET_TYPE_CREDENTIAL_STRENGTH",
        authorization_direction="AUTHORIZATION_DIRECTION_TO",
        orgs=[
            "organizations/12345",
            "organizations/98765",
        ])
    
    package main
    
    import (
    	"fmt"
    
    	"github.com/pulumi/pulumi-gcp/sdk/v8/go/gcp/accesscontextmanager"
    	"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
    )
    
    func main() {
    	pulumi.Run(func(ctx *pulumi.Context) error {
    		_, err := accesscontextmanager.NewAccessPolicy(ctx, "test-access", &accesscontextmanager.AccessPolicyArgs{
    			Parent: pulumi.String("organizations/"),
    			Title:  pulumi.String("my policy"),
    		})
    		if err != nil {
    			return err
    		}
    		_, err = accesscontextmanager.NewAuthorizedOrgsDesc(ctx, "authorized-orgs-desc", &accesscontextmanager.AuthorizedOrgsDescArgs{
    			Parent: test_access.Name.ApplyT(func(name string) (string, error) {
    				return fmt.Sprintf("accessPolicies/%v", name), nil
    			}).(pulumi.StringOutput),
    			Name: test_access.Name.ApplyT(func(name string) (string, error) {
    				return fmt.Sprintf("accessPolicies/%v/authorizedOrgsDescs/fakeDescName", name), nil
    			}).(pulumi.StringOutput),
    			AuthorizationType:      pulumi.String("AUTHORIZATION_TYPE_TRUST"),
    			AssetType:              pulumi.String("ASSET_TYPE_CREDENTIAL_STRENGTH"),
    			AuthorizationDirection: pulumi.String("AUTHORIZATION_DIRECTION_TO"),
    			Orgs: pulumi.StringArray{
    				pulumi.String("organizations/12345"),
    				pulumi.String("organizations/98765"),
    			},
    		})
    		if err != nil {
    			return err
    		}
    		return nil
    	})
    }
    
    using System.Collections.Generic;
    using System.Linq;
    using Pulumi;
    using Gcp = Pulumi.Gcp;
    
    return await Deployment.RunAsync(() => 
    {
        var test_access = new Gcp.AccessContextManager.AccessPolicy("test-access", new()
        {
            Parent = "organizations/",
            Title = "my policy",
        });
    
        var authorized_orgs_desc = new Gcp.AccessContextManager.AuthorizedOrgsDesc("authorized-orgs-desc", new()
        {
            Parent = test_access.Name.Apply(name => $"accessPolicies/{name}"),
            Name = test_access.Name.Apply(name => $"accessPolicies/{name}/authorizedOrgsDescs/fakeDescName"),
            AuthorizationType = "AUTHORIZATION_TYPE_TRUST",
            AssetType = "ASSET_TYPE_CREDENTIAL_STRENGTH",
            AuthorizationDirection = "AUTHORIZATION_DIRECTION_TO",
            Orgs = new[]
            {
                "organizations/12345",
                "organizations/98765",
            },
        });
    
    });
    
    package generated_program;
    
    import com.pulumi.Context;
    import com.pulumi.Pulumi;
    import com.pulumi.core.Output;
    import com.pulumi.gcp.accesscontextmanager.AccessPolicy;
    import com.pulumi.gcp.accesscontextmanager.AccessPolicyArgs;
    import com.pulumi.gcp.accesscontextmanager.AuthorizedOrgsDesc;
    import com.pulumi.gcp.accesscontextmanager.AuthorizedOrgsDescArgs;
    import java.util.List;
    import java.util.ArrayList;
    import java.util.Map;
    import java.io.File;
    import java.nio.file.Files;
    import java.nio.file.Paths;
    
    public class App {
        public static void main(String[] args) {
            Pulumi.run(App::stack);
        }
    
        public static void stack(Context ctx) {
            var test_access = new AccessPolicy("test-access", AccessPolicyArgs.builder()
                .parent("organizations/")
                .title("my policy")
                .build());
    
            var authorized_orgs_desc = new AuthorizedOrgsDesc("authorized-orgs-desc", AuthorizedOrgsDescArgs.builder()
                .parent(test_access.name().applyValue(name -> String.format("accessPolicies/%s", name)))
                .name(test_access.name().applyValue(name -> String.format("accessPolicies/%s/authorizedOrgsDescs/fakeDescName", name)))
                .authorizationType("AUTHORIZATION_TYPE_TRUST")
                .assetType("ASSET_TYPE_CREDENTIAL_STRENGTH")
                .authorizationDirection("AUTHORIZATION_DIRECTION_TO")
                .orgs(            
                    "organizations/12345",
                    "organizations/98765")
                .build());
    
        }
    }
    
    resources:
      authorized-orgs-desc:
        type: gcp:accesscontextmanager:AuthorizedOrgsDesc
        properties:
          parent: accessPolicies/${["test-access"].name}
          name: accessPolicies/${["test-access"].name}/authorizedOrgsDescs/fakeDescName
          authorizationType: AUTHORIZATION_TYPE_TRUST
          assetType: ASSET_TYPE_CREDENTIAL_STRENGTH
          authorizationDirection: AUTHORIZATION_DIRECTION_TO
          orgs:
            - organizations/12345
            - organizations/98765
      test-access:
        type: gcp:accesscontextmanager:AccessPolicy
        properties:
          parent: organizations/
          title: my policy
    

    Create AuthorizedOrgsDesc Resource

    Resources are created with functions called constructors. To learn more about declaring and configuring resources, see Resources.

    Constructor syntax

    new AuthorizedOrgsDesc(name: string, args: AuthorizedOrgsDescArgs, opts?: CustomResourceOptions);
    @overload
    def AuthorizedOrgsDesc(resource_name: str,
                           args: AuthorizedOrgsDescArgs,
                           opts: Optional[ResourceOptions] = None)
    
    @overload
    def AuthorizedOrgsDesc(resource_name: str,
                           opts: Optional[ResourceOptions] = None,
                           parent: Optional[str] = None,
                           asset_type: Optional[str] = None,
                           authorization_direction: Optional[str] = None,
                           authorization_type: Optional[str] = None,
                           name: Optional[str] = None,
                           orgs: Optional[Sequence[str]] = None)
    func NewAuthorizedOrgsDesc(ctx *Context, name string, args AuthorizedOrgsDescArgs, opts ...ResourceOption) (*AuthorizedOrgsDesc, error)
    public AuthorizedOrgsDesc(string name, AuthorizedOrgsDescArgs args, CustomResourceOptions? opts = null)
    public AuthorizedOrgsDesc(String name, AuthorizedOrgsDescArgs args)
    public AuthorizedOrgsDesc(String name, AuthorizedOrgsDescArgs args, CustomResourceOptions options)
    
    type: gcp:accesscontextmanager:AuthorizedOrgsDesc
    properties: # The arguments to resource properties.
    options: # Bag of options to control resource's behavior.
    
    

    Parameters

    name string
    The unique name of the resource.
    args AuthorizedOrgsDescArgs
    The arguments to resource properties.
    opts CustomResourceOptions
    Bag of options to control resource's behavior.
    resource_name str
    The unique name of the resource.
    args AuthorizedOrgsDescArgs
    The arguments to resource properties.
    opts ResourceOptions
    Bag of options to control resource's behavior.
    ctx Context
    Context object for the current deployment.
    name string
    The unique name of the resource.
    args AuthorizedOrgsDescArgs
    The arguments to resource properties.
    opts ResourceOption
    Bag of options to control resource's behavior.
    name string
    The unique name of the resource.
    args AuthorizedOrgsDescArgs
    The arguments to resource properties.
    opts CustomResourceOptions
    Bag of options to control resource's behavior.
    name String
    The unique name of the resource.
    args AuthorizedOrgsDescArgs
    The arguments to resource properties.
    options CustomResourceOptions
    Bag of options to control resource's behavior.

    Constructor example

    The following reference example uses placeholder values for all input properties.

    var authorizedOrgsDescResource = new Gcp.AccessContextManager.AuthorizedOrgsDesc("authorizedOrgsDescResource", new()
    {
        Parent = "string",
        AssetType = "string",
        AuthorizationDirection = "string",
        AuthorizationType = "string",
        Name = "string",
        Orgs = new[]
        {
            "string",
        },
    });
    
    example, err := accesscontextmanager.NewAuthorizedOrgsDesc(ctx, "authorizedOrgsDescResource", &accesscontextmanager.AuthorizedOrgsDescArgs{
    	Parent:                 pulumi.String("string"),
    	AssetType:              pulumi.String("string"),
    	AuthorizationDirection: pulumi.String("string"),
    	AuthorizationType:      pulumi.String("string"),
    	Name:                   pulumi.String("string"),
    	Orgs: pulumi.StringArray{
    		pulumi.String("string"),
    	},
    })
    
    var authorizedOrgsDescResource = new AuthorizedOrgsDesc("authorizedOrgsDescResource", AuthorizedOrgsDescArgs.builder()
        .parent("string")
        .assetType("string")
        .authorizationDirection("string")
        .authorizationType("string")
        .name("string")
        .orgs("string")
        .build());
    
    authorized_orgs_desc_resource = gcp.accesscontextmanager.AuthorizedOrgsDesc("authorizedOrgsDescResource",
        parent="string",
        asset_type="string",
        authorization_direction="string",
        authorization_type="string",
        name="string",
        orgs=["string"])
    
    const authorizedOrgsDescResource = new gcp.accesscontextmanager.AuthorizedOrgsDesc("authorizedOrgsDescResource", {
        parent: "string",
        assetType: "string",
        authorizationDirection: "string",
        authorizationType: "string",
        name: "string",
        orgs: ["string"],
    });
    
    type: gcp:accesscontextmanager:AuthorizedOrgsDesc
    properties:
        assetType: string
        authorizationDirection: string
        authorizationType: string
        name: string
        orgs:
            - string
        parent: string
    

    AuthorizedOrgsDesc Resource Properties

    To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.

    Inputs

    In Python, inputs that are objects can be passed either as argument classes or as dictionary literals.

    The AuthorizedOrgsDesc resource accepts the following input properties:

    Parent string
    Required. Resource name for the access policy which owns this AuthorizedOrgsDesc.
    AssetType string
    The type of entities that need to use the authorization relationship during evaluation, such as a device. Valid values are "ASSET_TYPE_DEVICE" and "ASSET_TYPE_CREDENTIAL_STRENGTH". Possible values are: ASSET_TYPE_DEVICE, ASSET_TYPE_CREDENTIAL_STRENGTH.
    AuthorizationDirection string
    The direction of the authorization relationship between this organization and the organizations listed in the "orgs" field. The valid values for this field include the following: AUTHORIZATION_DIRECTION_FROM: Allows this organization to evaluate traffic in the organizations listed in the orgs field. AUTHORIZATION_DIRECTION_TO: Allows the organizations listed in the orgs field to evaluate the traffic in this organization. For the authorization relationship to take effect, all of the organizations must authorize and specify the appropriate relationship direction. For example, if organization A authorized organization B and C to evaluate its traffic, by specifying "AUTHORIZATION_DIRECTION_TO" as the authorization direction, organizations B and C must specify "AUTHORIZATION_DIRECTION_FROM" as the authorization direction in their "AuthorizedOrgsDesc" resource. Possible values are: AUTHORIZATION_DIRECTION_TO, AUTHORIZATION_DIRECTION_FROM.
    AuthorizationType string
    A granular control type for authorization levels. Valid value is "AUTHORIZATION_TYPE_TRUST". Possible values are: AUTHORIZATION_TYPE_TRUST.
    Name string
    Resource name for the AuthorizedOrgsDesc. Format: accessPolicies/{access_policy}/authorizedOrgsDescs/{authorized_orgs_desc}. The authorized_orgs_desc component must begin with a letter, followed by alphanumeric characters or _. After you create an AuthorizedOrgsDesc, you cannot change its name.


    Orgs List<string>
    The list of organization ids in this AuthorizedOrgsDesc. Format: organizations/<org_number> Example: organizations/123456
    Parent string
    Required. Resource name for the access policy which owns this AuthorizedOrgsDesc.
    AssetType string
    The type of entities that need to use the authorization relationship during evaluation, such as a device. Valid values are "ASSET_TYPE_DEVICE" and "ASSET_TYPE_CREDENTIAL_STRENGTH". Possible values are: ASSET_TYPE_DEVICE, ASSET_TYPE_CREDENTIAL_STRENGTH.
    AuthorizationDirection string
    The direction of the authorization relationship between this organization and the organizations listed in the "orgs" field. The valid values for this field include the following: AUTHORIZATION_DIRECTION_FROM: Allows this organization to evaluate traffic in the organizations listed in the orgs field. AUTHORIZATION_DIRECTION_TO: Allows the organizations listed in the orgs field to evaluate the traffic in this organization. For the authorization relationship to take effect, all of the organizations must authorize and specify the appropriate relationship direction. For example, if organization A authorized organization B and C to evaluate its traffic, by specifying "AUTHORIZATION_DIRECTION_TO" as the authorization direction, organizations B and C must specify "AUTHORIZATION_DIRECTION_FROM" as the authorization direction in their "AuthorizedOrgsDesc" resource. Possible values are: AUTHORIZATION_DIRECTION_TO, AUTHORIZATION_DIRECTION_FROM.
    AuthorizationType string
    A granular control type for authorization levels. Valid value is "AUTHORIZATION_TYPE_TRUST". Possible values are: AUTHORIZATION_TYPE_TRUST.
    Name string
    Resource name for the AuthorizedOrgsDesc. Format: accessPolicies/{access_policy}/authorizedOrgsDescs/{authorized_orgs_desc}. The authorized_orgs_desc component must begin with a letter, followed by alphanumeric characters or _. After you create an AuthorizedOrgsDesc, you cannot change its name.


    Orgs []string
    The list of organization ids in this AuthorizedOrgsDesc. Format: organizations/<org_number> Example: organizations/123456
    parent String
    Required. Resource name for the access policy which owns this AuthorizedOrgsDesc.
    assetType String
    The type of entities that need to use the authorization relationship during evaluation, such as a device. Valid values are "ASSET_TYPE_DEVICE" and "ASSET_TYPE_CREDENTIAL_STRENGTH". Possible values are: ASSET_TYPE_DEVICE, ASSET_TYPE_CREDENTIAL_STRENGTH.
    authorizationDirection String
    The direction of the authorization relationship between this organization and the organizations listed in the "orgs" field. The valid values for this field include the following: AUTHORIZATION_DIRECTION_FROM: Allows this organization to evaluate traffic in the organizations listed in the orgs field. AUTHORIZATION_DIRECTION_TO: Allows the organizations listed in the orgs field to evaluate the traffic in this organization. For the authorization relationship to take effect, all of the organizations must authorize and specify the appropriate relationship direction. For example, if organization A authorized organization B and C to evaluate its traffic, by specifying "AUTHORIZATION_DIRECTION_TO" as the authorization direction, organizations B and C must specify "AUTHORIZATION_DIRECTION_FROM" as the authorization direction in their "AuthorizedOrgsDesc" resource. Possible values are: AUTHORIZATION_DIRECTION_TO, AUTHORIZATION_DIRECTION_FROM.
    authorizationType String
    A granular control type for authorization levels. Valid value is "AUTHORIZATION_TYPE_TRUST". Possible values are: AUTHORIZATION_TYPE_TRUST.
    name String
    Resource name for the AuthorizedOrgsDesc. Format: accessPolicies/{access_policy}/authorizedOrgsDescs/{authorized_orgs_desc}. The authorized_orgs_desc component must begin with a letter, followed by alphanumeric characters or _. After you create an AuthorizedOrgsDesc, you cannot change its name.


    orgs List<String>
    The list of organization ids in this AuthorizedOrgsDesc. Format: organizations/<org_number> Example: organizations/123456
    parent string
    Required. Resource name for the access policy which owns this AuthorizedOrgsDesc.
    assetType string
    The type of entities that need to use the authorization relationship during evaluation, such as a device. Valid values are "ASSET_TYPE_DEVICE" and "ASSET_TYPE_CREDENTIAL_STRENGTH". Possible values are: ASSET_TYPE_DEVICE, ASSET_TYPE_CREDENTIAL_STRENGTH.
    authorizationDirection string
    The direction of the authorization relationship between this organization and the organizations listed in the "orgs" field. The valid values for this field include the following: AUTHORIZATION_DIRECTION_FROM: Allows this organization to evaluate traffic in the organizations listed in the orgs field. AUTHORIZATION_DIRECTION_TO: Allows the organizations listed in the orgs field to evaluate the traffic in this organization. For the authorization relationship to take effect, all of the organizations must authorize and specify the appropriate relationship direction. For example, if organization A authorized organization B and C to evaluate its traffic, by specifying "AUTHORIZATION_DIRECTION_TO" as the authorization direction, organizations B and C must specify "AUTHORIZATION_DIRECTION_FROM" as the authorization direction in their "AuthorizedOrgsDesc" resource. Possible values are: AUTHORIZATION_DIRECTION_TO, AUTHORIZATION_DIRECTION_FROM.
    authorizationType string
    A granular control type for authorization levels. Valid value is "AUTHORIZATION_TYPE_TRUST". Possible values are: AUTHORIZATION_TYPE_TRUST.
    name string
    Resource name for the AuthorizedOrgsDesc. Format: accessPolicies/{access_policy}/authorizedOrgsDescs/{authorized_orgs_desc}. The authorized_orgs_desc component must begin with a letter, followed by alphanumeric characters or _. After you create an AuthorizedOrgsDesc, you cannot change its name.


    orgs string[]
    The list of organization ids in this AuthorizedOrgsDesc. Format: organizations/<org_number> Example: organizations/123456
    parent str
    Required. Resource name for the access policy which owns this AuthorizedOrgsDesc.
    asset_type str
    The type of entities that need to use the authorization relationship during evaluation, such as a device. Valid values are "ASSET_TYPE_DEVICE" and "ASSET_TYPE_CREDENTIAL_STRENGTH". Possible values are: ASSET_TYPE_DEVICE, ASSET_TYPE_CREDENTIAL_STRENGTH.
    authorization_direction str
    The direction of the authorization relationship between this organization and the organizations listed in the "orgs" field. The valid values for this field include the following: AUTHORIZATION_DIRECTION_FROM: Allows this organization to evaluate traffic in the organizations listed in the orgs field. AUTHORIZATION_DIRECTION_TO: Allows the organizations listed in the orgs field to evaluate the traffic in this organization. For the authorization relationship to take effect, all of the organizations must authorize and specify the appropriate relationship direction. For example, if organization A authorized organization B and C to evaluate its traffic, by specifying "AUTHORIZATION_DIRECTION_TO" as the authorization direction, organizations B and C must specify "AUTHORIZATION_DIRECTION_FROM" as the authorization direction in their "AuthorizedOrgsDesc" resource. Possible values are: AUTHORIZATION_DIRECTION_TO, AUTHORIZATION_DIRECTION_FROM.
    authorization_type str
    A granular control type for authorization levels. Valid value is "AUTHORIZATION_TYPE_TRUST". Possible values are: AUTHORIZATION_TYPE_TRUST.
    name str
    Resource name for the AuthorizedOrgsDesc. Format: accessPolicies/{access_policy}/authorizedOrgsDescs/{authorized_orgs_desc}. The authorized_orgs_desc component must begin with a letter, followed by alphanumeric characters or _. After you create an AuthorizedOrgsDesc, you cannot change its name.


    orgs Sequence[str]
    The list of organization ids in this AuthorizedOrgsDesc. Format: organizations/<org_number> Example: organizations/123456
    parent String
    Required. Resource name for the access policy which owns this AuthorizedOrgsDesc.
    assetType String
    The type of entities that need to use the authorization relationship during evaluation, such as a device. Valid values are "ASSET_TYPE_DEVICE" and "ASSET_TYPE_CREDENTIAL_STRENGTH". Possible values are: ASSET_TYPE_DEVICE, ASSET_TYPE_CREDENTIAL_STRENGTH.
    authorizationDirection String
    The direction of the authorization relationship between this organization and the organizations listed in the "orgs" field. The valid values for this field include the following: AUTHORIZATION_DIRECTION_FROM: Allows this organization to evaluate traffic in the organizations listed in the orgs field. AUTHORIZATION_DIRECTION_TO: Allows the organizations listed in the orgs field to evaluate the traffic in this organization. For the authorization relationship to take effect, all of the organizations must authorize and specify the appropriate relationship direction. For example, if organization A authorized organization B and C to evaluate its traffic, by specifying "AUTHORIZATION_DIRECTION_TO" as the authorization direction, organizations B and C must specify "AUTHORIZATION_DIRECTION_FROM" as the authorization direction in their "AuthorizedOrgsDesc" resource. Possible values are: AUTHORIZATION_DIRECTION_TO, AUTHORIZATION_DIRECTION_FROM.
    authorizationType String
    A granular control type for authorization levels. Valid value is "AUTHORIZATION_TYPE_TRUST". Possible values are: AUTHORIZATION_TYPE_TRUST.
    name String
    Resource name for the AuthorizedOrgsDesc. Format: accessPolicies/{access_policy}/authorizedOrgsDescs/{authorized_orgs_desc}. The authorized_orgs_desc component must begin with a letter, followed by alphanumeric characters or _. After you create an AuthorizedOrgsDesc, you cannot change its name.


    orgs List<String>
    The list of organization ids in this AuthorizedOrgsDesc. Format: organizations/<org_number> Example: organizations/123456

    Outputs

    All input properties are implicitly available as output properties. Additionally, the AuthorizedOrgsDesc resource produces the following output properties:

    CreateTime string
    Time the AuthorizedOrgsDesc was created in UTC.
    Id string
    The provider-assigned unique ID for this managed resource.
    UpdateTime string
    Time the AuthorizedOrgsDesc was updated in UTC.
    CreateTime string
    Time the AuthorizedOrgsDesc was created in UTC.
    Id string
    The provider-assigned unique ID for this managed resource.
    UpdateTime string
    Time the AuthorizedOrgsDesc was updated in UTC.
    createTime String
    Time the AuthorizedOrgsDesc was created in UTC.
    id String
    The provider-assigned unique ID for this managed resource.
    updateTime String
    Time the AuthorizedOrgsDesc was updated in UTC.
    createTime string
    Time the AuthorizedOrgsDesc was created in UTC.
    id string
    The provider-assigned unique ID for this managed resource.
    updateTime string
    Time the AuthorizedOrgsDesc was updated in UTC.
    create_time str
    Time the AuthorizedOrgsDesc was created in UTC.
    id str
    The provider-assigned unique ID for this managed resource.
    update_time str
    Time the AuthorizedOrgsDesc was updated in UTC.
    createTime String
    Time the AuthorizedOrgsDesc was created in UTC.
    id String
    The provider-assigned unique ID for this managed resource.
    updateTime String
    Time the AuthorizedOrgsDesc was updated in UTC.

    Look up Existing AuthorizedOrgsDesc Resource

    Get an existing AuthorizedOrgsDesc resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.

    public static get(name: string, id: Input<ID>, state?: AuthorizedOrgsDescState, opts?: CustomResourceOptions): AuthorizedOrgsDesc
    @staticmethod
    def get(resource_name: str,
            id: str,
            opts: Optional[ResourceOptions] = None,
            asset_type: Optional[str] = None,
            authorization_direction: Optional[str] = None,
            authorization_type: Optional[str] = None,
            create_time: Optional[str] = None,
            name: Optional[str] = None,
            orgs: Optional[Sequence[str]] = None,
            parent: Optional[str] = None,
            update_time: Optional[str] = None) -> AuthorizedOrgsDesc
    func GetAuthorizedOrgsDesc(ctx *Context, name string, id IDInput, state *AuthorizedOrgsDescState, opts ...ResourceOption) (*AuthorizedOrgsDesc, error)
    public static AuthorizedOrgsDesc Get(string name, Input<string> id, AuthorizedOrgsDescState? state, CustomResourceOptions? opts = null)
    public static AuthorizedOrgsDesc get(String name, Output<String> id, AuthorizedOrgsDescState state, CustomResourceOptions options)
    Resource lookup is not supported in YAML
    name
    The unique name of the resulting resource.
    id
    The unique provider ID of the resource to lookup.
    state
    Any extra arguments used during the lookup.
    opts
    A bag of options that control this resource's behavior.
    resource_name
    The unique name of the resulting resource.
    id
    The unique provider ID of the resource to lookup.
    name
    The unique name of the resulting resource.
    id
    The unique provider ID of the resource to lookup.
    state
    Any extra arguments used during the lookup.
    opts
    A bag of options that control this resource's behavior.
    name
    The unique name of the resulting resource.
    id
    The unique provider ID of the resource to lookup.
    state
    Any extra arguments used during the lookup.
    opts
    A bag of options that control this resource's behavior.
    name
    The unique name of the resulting resource.
    id
    The unique provider ID of the resource to lookup.
    state
    Any extra arguments used during the lookup.
    opts
    A bag of options that control this resource's behavior.
    The following state arguments are supported:
    AssetType string
    The type of entities that need to use the authorization relationship during evaluation, such as a device. Valid values are "ASSET_TYPE_DEVICE" and "ASSET_TYPE_CREDENTIAL_STRENGTH". Possible values are: ASSET_TYPE_DEVICE, ASSET_TYPE_CREDENTIAL_STRENGTH.
    AuthorizationDirection string
    The direction of the authorization relationship between this organization and the organizations listed in the "orgs" field. The valid values for this field include the following: AUTHORIZATION_DIRECTION_FROM: Allows this organization to evaluate traffic in the organizations listed in the orgs field. AUTHORIZATION_DIRECTION_TO: Allows the organizations listed in the orgs field to evaluate the traffic in this organization. For the authorization relationship to take effect, all of the organizations must authorize and specify the appropriate relationship direction. For example, if organization A authorized organization B and C to evaluate its traffic, by specifying "AUTHORIZATION_DIRECTION_TO" as the authorization direction, organizations B and C must specify "AUTHORIZATION_DIRECTION_FROM" as the authorization direction in their "AuthorizedOrgsDesc" resource. Possible values are: AUTHORIZATION_DIRECTION_TO, AUTHORIZATION_DIRECTION_FROM.
    AuthorizationType string
    A granular control type for authorization levels. Valid value is "AUTHORIZATION_TYPE_TRUST". Possible values are: AUTHORIZATION_TYPE_TRUST.
    CreateTime string
    Time the AuthorizedOrgsDesc was created in UTC.
    Name string
    Resource name for the AuthorizedOrgsDesc. Format: accessPolicies/{access_policy}/authorizedOrgsDescs/{authorized_orgs_desc}. The authorized_orgs_desc component must begin with a letter, followed by alphanumeric characters or _. After you create an AuthorizedOrgsDesc, you cannot change its name.


    Orgs List<string>
    The list of organization ids in this AuthorizedOrgsDesc. Format: organizations/<org_number> Example: organizations/123456
    Parent string
    Required. Resource name for the access policy which owns this AuthorizedOrgsDesc.
    UpdateTime string
    Time the AuthorizedOrgsDesc was updated in UTC.
    AssetType string
    The type of entities that need to use the authorization relationship during evaluation, such as a device. Valid values are "ASSET_TYPE_DEVICE" and "ASSET_TYPE_CREDENTIAL_STRENGTH". Possible values are: ASSET_TYPE_DEVICE, ASSET_TYPE_CREDENTIAL_STRENGTH.
    AuthorizationDirection string
    The direction of the authorization relationship between this organization and the organizations listed in the "orgs" field. The valid values for this field include the following: AUTHORIZATION_DIRECTION_FROM: Allows this organization to evaluate traffic in the organizations listed in the orgs field. AUTHORIZATION_DIRECTION_TO: Allows the organizations listed in the orgs field to evaluate the traffic in this organization. For the authorization relationship to take effect, all of the organizations must authorize and specify the appropriate relationship direction. For example, if organization A authorized organization B and C to evaluate its traffic, by specifying "AUTHORIZATION_DIRECTION_TO" as the authorization direction, organizations B and C must specify "AUTHORIZATION_DIRECTION_FROM" as the authorization direction in their "AuthorizedOrgsDesc" resource. Possible values are: AUTHORIZATION_DIRECTION_TO, AUTHORIZATION_DIRECTION_FROM.
    AuthorizationType string
    A granular control type for authorization levels. Valid value is "AUTHORIZATION_TYPE_TRUST". Possible values are: AUTHORIZATION_TYPE_TRUST.
    CreateTime string
    Time the AuthorizedOrgsDesc was created in UTC.
    Name string
    Resource name for the AuthorizedOrgsDesc. Format: accessPolicies/{access_policy}/authorizedOrgsDescs/{authorized_orgs_desc}. The authorized_orgs_desc component must begin with a letter, followed by alphanumeric characters or _. After you create an AuthorizedOrgsDesc, you cannot change its name.


    Orgs []string
    The list of organization ids in this AuthorizedOrgsDesc. Format: organizations/<org_number> Example: organizations/123456
    Parent string
    Required. Resource name for the access policy which owns this AuthorizedOrgsDesc.
    UpdateTime string
    Time the AuthorizedOrgsDesc was updated in UTC.
    assetType String
    The type of entities that need to use the authorization relationship during evaluation, such as a device. Valid values are "ASSET_TYPE_DEVICE" and "ASSET_TYPE_CREDENTIAL_STRENGTH". Possible values are: ASSET_TYPE_DEVICE, ASSET_TYPE_CREDENTIAL_STRENGTH.
    authorizationDirection String
    The direction of the authorization relationship between this organization and the organizations listed in the "orgs" field. The valid values for this field include the following: AUTHORIZATION_DIRECTION_FROM: Allows this organization to evaluate traffic in the organizations listed in the orgs field. AUTHORIZATION_DIRECTION_TO: Allows the organizations listed in the orgs field to evaluate the traffic in this organization. For the authorization relationship to take effect, all of the organizations must authorize and specify the appropriate relationship direction. For example, if organization A authorized organization B and C to evaluate its traffic, by specifying "AUTHORIZATION_DIRECTION_TO" as the authorization direction, organizations B and C must specify "AUTHORIZATION_DIRECTION_FROM" as the authorization direction in their "AuthorizedOrgsDesc" resource. Possible values are: AUTHORIZATION_DIRECTION_TO, AUTHORIZATION_DIRECTION_FROM.
    authorizationType String
    A granular control type for authorization levels. Valid value is "AUTHORIZATION_TYPE_TRUST". Possible values are: AUTHORIZATION_TYPE_TRUST.
    createTime String
    Time the AuthorizedOrgsDesc was created in UTC.
    name String
    Resource name for the AuthorizedOrgsDesc. Format: accessPolicies/{access_policy}/authorizedOrgsDescs/{authorized_orgs_desc}. The authorized_orgs_desc component must begin with a letter, followed by alphanumeric characters or _. After you create an AuthorizedOrgsDesc, you cannot change its name.


    orgs List<String>
    The list of organization ids in this AuthorizedOrgsDesc. Format: organizations/<org_number> Example: organizations/123456
    parent String
    Required. Resource name for the access policy which owns this AuthorizedOrgsDesc.
    updateTime String
    Time the AuthorizedOrgsDesc was updated in UTC.
    assetType string
    The type of entities that need to use the authorization relationship during evaluation, such as a device. Valid values are "ASSET_TYPE_DEVICE" and "ASSET_TYPE_CREDENTIAL_STRENGTH". Possible values are: ASSET_TYPE_DEVICE, ASSET_TYPE_CREDENTIAL_STRENGTH.
    authorizationDirection string
    The direction of the authorization relationship between this organization and the organizations listed in the "orgs" field. The valid values for this field include the following: AUTHORIZATION_DIRECTION_FROM: Allows this organization to evaluate traffic in the organizations listed in the orgs field. AUTHORIZATION_DIRECTION_TO: Allows the organizations listed in the orgs field to evaluate the traffic in this organization. For the authorization relationship to take effect, all of the organizations must authorize and specify the appropriate relationship direction. For example, if organization A authorized organization B and C to evaluate its traffic, by specifying "AUTHORIZATION_DIRECTION_TO" as the authorization direction, organizations B and C must specify "AUTHORIZATION_DIRECTION_FROM" as the authorization direction in their "AuthorizedOrgsDesc" resource. Possible values are: AUTHORIZATION_DIRECTION_TO, AUTHORIZATION_DIRECTION_FROM.
    authorizationType string
    A granular control type for authorization levels. Valid value is "AUTHORIZATION_TYPE_TRUST". Possible values are: AUTHORIZATION_TYPE_TRUST.
    createTime string
    Time the AuthorizedOrgsDesc was created in UTC.
    name string
    Resource name for the AuthorizedOrgsDesc. Format: accessPolicies/{access_policy}/authorizedOrgsDescs/{authorized_orgs_desc}. The authorized_orgs_desc component must begin with a letter, followed by alphanumeric characters or _. After you create an AuthorizedOrgsDesc, you cannot change its name.


    orgs string[]
    The list of organization ids in this AuthorizedOrgsDesc. Format: organizations/<org_number> Example: organizations/123456
    parent string
    Required. Resource name for the access policy which owns this AuthorizedOrgsDesc.
    updateTime string
    Time the AuthorizedOrgsDesc was updated in UTC.
    asset_type str
    The type of entities that need to use the authorization relationship during evaluation, such as a device. Valid values are "ASSET_TYPE_DEVICE" and "ASSET_TYPE_CREDENTIAL_STRENGTH". Possible values are: ASSET_TYPE_DEVICE, ASSET_TYPE_CREDENTIAL_STRENGTH.
    authorization_direction str
    The direction of the authorization relationship between this organization and the organizations listed in the "orgs" field. The valid values for this field include the following: AUTHORIZATION_DIRECTION_FROM: Allows this organization to evaluate traffic in the organizations listed in the orgs field. AUTHORIZATION_DIRECTION_TO: Allows the organizations listed in the orgs field to evaluate the traffic in this organization. For the authorization relationship to take effect, all of the organizations must authorize and specify the appropriate relationship direction. For example, if organization A authorized organization B and C to evaluate its traffic, by specifying "AUTHORIZATION_DIRECTION_TO" as the authorization direction, organizations B and C must specify "AUTHORIZATION_DIRECTION_FROM" as the authorization direction in their "AuthorizedOrgsDesc" resource. Possible values are: AUTHORIZATION_DIRECTION_TO, AUTHORIZATION_DIRECTION_FROM.
    authorization_type str
    A granular control type for authorization levels. Valid value is "AUTHORIZATION_TYPE_TRUST". Possible values are: AUTHORIZATION_TYPE_TRUST.
    create_time str
    Time the AuthorizedOrgsDesc was created in UTC.
    name str
    Resource name for the AuthorizedOrgsDesc. Format: accessPolicies/{access_policy}/authorizedOrgsDescs/{authorized_orgs_desc}. The authorized_orgs_desc component must begin with a letter, followed by alphanumeric characters or _. After you create an AuthorizedOrgsDesc, you cannot change its name.


    orgs Sequence[str]
    The list of organization ids in this AuthorizedOrgsDesc. Format: organizations/<org_number> Example: organizations/123456
    parent str
    Required. Resource name for the access policy which owns this AuthorizedOrgsDesc.
    update_time str
    Time the AuthorizedOrgsDesc was updated in UTC.
    assetType String
    The type of entities that need to use the authorization relationship during evaluation, such as a device. Valid values are "ASSET_TYPE_DEVICE" and "ASSET_TYPE_CREDENTIAL_STRENGTH". Possible values are: ASSET_TYPE_DEVICE, ASSET_TYPE_CREDENTIAL_STRENGTH.
    authorizationDirection String
    The direction of the authorization relationship between this organization and the organizations listed in the "orgs" field. The valid values for this field include the following: AUTHORIZATION_DIRECTION_FROM: Allows this organization to evaluate traffic in the organizations listed in the orgs field. AUTHORIZATION_DIRECTION_TO: Allows the organizations listed in the orgs field to evaluate the traffic in this organization. For the authorization relationship to take effect, all of the organizations must authorize and specify the appropriate relationship direction. For example, if organization A authorized organization B and C to evaluate its traffic, by specifying "AUTHORIZATION_DIRECTION_TO" as the authorization direction, organizations B and C must specify "AUTHORIZATION_DIRECTION_FROM" as the authorization direction in their "AuthorizedOrgsDesc" resource. Possible values are: AUTHORIZATION_DIRECTION_TO, AUTHORIZATION_DIRECTION_FROM.
    authorizationType String
    A granular control type for authorization levels. Valid value is "AUTHORIZATION_TYPE_TRUST". Possible values are: AUTHORIZATION_TYPE_TRUST.
    createTime String
    Time the AuthorizedOrgsDesc was created in UTC.
    name String
    Resource name for the AuthorizedOrgsDesc. Format: accessPolicies/{access_policy}/authorizedOrgsDescs/{authorized_orgs_desc}. The authorized_orgs_desc component must begin with a letter, followed by alphanumeric characters or _. After you create an AuthorizedOrgsDesc, you cannot change its name.


    orgs List<String>
    The list of organization ids in this AuthorizedOrgsDesc. Format: organizations/<org_number> Example: organizations/123456
    parent String
    Required. Resource name for the access policy which owns this AuthorizedOrgsDesc.
    updateTime String
    Time the AuthorizedOrgsDesc was updated in UTC.

    Import

    AuthorizedOrgsDesc can be imported using any of these accepted formats:

    • {{name}}

    When using the pulumi import command, AuthorizedOrgsDesc can be imported using one of the formats above. For example:

    $ pulumi import gcp:accesscontextmanager/authorizedOrgsDesc:AuthorizedOrgsDesc default {{name}}
    

    To learn more about importing existing cloud resources, see Importing resources.

    Package Details

    Repository
    Google Cloud (GCP) Classic pulumi/pulumi-gcp
    License
    Apache-2.0
    Notes
    This Pulumi package is based on the google-beta Terraform Provider.
    gcp logo
    Google Cloud Classic v8.9.3 published on Monday, Nov 18, 2024 by Pulumi