diff --git a/patches/0001-Client-options.patch b/patches/0001-Client-options.patch index 4337838c28..982a3477cc 100644 --- a/patches/0001-Client-options.patch +++ b/patches/0001-Client-options.patch @@ -5,7 +5,7 @@ Subject: [PATCH 1/9] Client-options diff --git a/internal/common/client_options.go b/internal/common/client_options.go -index be5e783620..8d7ccb0110 100644 +index 3a7e72eeb7..f907a35d09 100644 --- a/internal/common/client_options.go +++ b/internal/common/client_options.go @@ -14,7 +14,6 @@ import ( @@ -16,7 +16,7 @@ index be5e783620..8d7ccb0110 100644 "github.com/hashicorp/terraform-provider-azurerm/internal/features" "github.com/hashicorp/terraform-provider-azurerm/version" ) -@@ -96,12 +95,8 @@ func (o ClientOptions) ConfigureClient(c *autorest.Client, authorizer autorest.A +@@ -97,12 +96,8 @@ func (o ClientOptions) ConfigureClient(c *autorest.Client, authorizer autorest.A } func userAgent(userAgent, tfVersion, partnerID string, disableTerraformPartnerID bool) string { @@ -31,7 +31,7 @@ index be5e783620..8d7ccb0110 100644 userAgent = strings.TrimSpace(fmt.Sprintf("%s %s", userAgent, providerUserAgent)) // append the CloudShell version to the user agent if it exists -@@ -110,11 +105,11 @@ func userAgent(userAgent, tfVersion, partnerID string, disableTerraformPartnerID +@@ -111,11 +106,11 @@ func userAgent(userAgent, tfVersion, partnerID string, disableTerraformPartnerID } // only one pid can be interpreted currently diff --git a/patches/0005-Modify-resources.patch b/patches/0005-Modify-resources.patch index 6c9dc24e3f..ab77c0de5c 100644 --- a/patches/0005-Modify-resources.patch +++ b/patches/0005-Modify-resources.patch @@ -325,10 +325,10 @@ index fa43f4e9c8..9ddf246435 100644 string(disks.OperatingSystemTypesLinux), }, false), diff --git a/internal/services/compute/snapshot_resource.go b/internal/services/compute/snapshot_resource.go -index 0b0cd11d72..1918f4e937 100644 +index 539c138df6..5446846a89 100644 --- a/internal/services/compute/snapshot_resource.go +++ b/internal/services/compute/snapshot_resource.go -@@ -67,7 +67,7 @@ func resourceSnapshot() *pluginsdk.Resource { +@@ -68,7 +68,7 @@ func resourceSnapshot() *pluginsdk.Resource { ValidateFunc: validation.StringInSlice([]string{ string(snapshots.DiskCreateOptionCopy), string(snapshots.DiskCreateOptionImport), @@ -488,7 +488,7 @@ index b141d14cfd..0e3d2fd1b2 100644 string(documentdb.IndexingModeConsistent), string(documentdb.IndexingModeNone), diff --git a/internal/services/cosmos/cosmosdb_account_resource.go b/internal/services/cosmos/cosmosdb_account_resource.go -index 4001cad641..835aecb2d8 100644 +index bdbf31ad05..fb941af76c 100644 --- a/internal/services/cosmos/cosmosdb_account_resource.go +++ b/internal/services/cosmos/cosmosdb_account_resource.go @@ -13,6 +13,8 @@ import ( @@ -509,7 +509,7 @@ index 4001cad641..835aecb2d8 100644 }, "analytical_storage": { -@@ -286,7 +288,7 @@ func resourceCosmosDbAccount() *pluginsdk.Resource { +@@ -291,7 +293,7 @@ func resourceCosmosDbAccount() *pluginsdk.Resource { string(cosmosdb.DatabaseAccountKindGlobalDocumentDB), string(cosmosdb.DatabaseAccountKindMongoDB), string(cosmosdb.DatabaseAccountKindParse), @@ -518,7 +518,7 @@ index 4001cad641..835aecb2d8 100644 }, "ip_range_filter": func() *schema.Schema { -@@ -360,7 +362,7 @@ func resourceCosmosDbAccount() *pluginsdk.Resource { +@@ -387,7 +389,7 @@ func resourceCosmosDbAccount() *pluginsdk.Resource { string(cosmosdb.DefaultConsistencyLevelEventual), string(cosmosdb.DefaultConsistencyLevelSession), string(cosmosdb.DefaultConsistencyLevelStrong), @@ -527,7 +527,7 @@ index 4001cad641..835aecb2d8 100644 }, // This value can only change if the 'consistency_level' is set to 'BoundedStaleness' -@@ -419,8 +421,9 @@ func resourceCosmosDbAccount() *pluginsdk.Resource { +@@ -446,8 +448,9 @@ func resourceCosmosDbAccount() *pluginsdk.Resource { Elem: &pluginsdk.Resource{ Schema: map[string]*pluginsdk.Schema{ "name": { @@ -2469,7 +2469,7 @@ index b215edff58..4381151544 100644 if !ok { return fmt.Errorf("could not determine Storage domain suffix for environment %q", meta.(*clients.Client).Account.Environment.Name) diff --git a/internal/services/storage/storage_account_resource.go b/internal/services/storage/storage_account_resource.go -index c6f3f221b2..6c460dddfe 100644 +index e3acc874e6..53984fe280 100644 --- a/internal/services/storage/storage_account_resource.go +++ b/internal/services/storage/storage_account_resource.go @@ -13,6 +13,9 @@ import ( @@ -2482,7 +2482,7 @@ index c6f3f221b2..6c460dddfe 100644 "github.com/Azure/azure-sdk-for-go/services/storage/mgmt/2021-09-01/storage" // nolint: staticcheck azautorest "github.com/Azure/go-autorest/autorest" "github.com/hashicorp/go-azure-helpers/lang/pointer" -@@ -139,8 +142,9 @@ func resourceStorageAccount() *pluginsdk.Resource { +@@ -138,8 +141,9 @@ func resourceStorageAccount() *pluginsdk.Resource { string(storage.KindBlockBlobStorage), string(storage.KindFileStorage), string(storage.KindStorageV2), @@ -2494,7 +2494,7 @@ index c6f3f221b2..6c460dddfe 100644 }, "account_tier": { -@@ -150,7 +154,8 @@ func resourceStorageAccount() *pluginsdk.Resource { +@@ -149,7 +153,8 @@ func resourceStorageAccount() *pluginsdk.Resource { ValidateFunc: validation.StringInSlice([]string{ string(storage.SkuTierStandard), string(storage.SkuTierPremium), @@ -2504,7 +2504,7 @@ index c6f3f221b2..6c460dddfe 100644 }, "account_replication_type": { -@@ -163,7 +168,8 @@ func resourceStorageAccount() *pluginsdk.Resource { +@@ -162,7 +167,8 @@ func resourceStorageAccount() *pluginsdk.Resource { "RAGRS", "GZRS", "RAGZRS", @@ -2514,7 +2514,7 @@ index c6f3f221b2..6c460dddfe 100644 }, // Only valid for FileStorage, BlobStorage & StorageV2 accounts, defaults to "Hot" in create function -@@ -174,7 +180,8 @@ func resourceStorageAccount() *pluginsdk.Resource { +@@ -173,7 +179,8 @@ func resourceStorageAccount() *pluginsdk.Resource { ValidateFunc: validation.StringInSlice([]string{ string(storage.AccessTierCool), string(storage.AccessTierHot), @@ -2524,7 +2524,7 @@ index c6f3f221b2..6c460dddfe 100644 }, "azure_files_authentication": { -@@ -403,7 +410,8 @@ func resourceStorageAccount() *pluginsdk.Resource { +@@ -402,7 +409,8 @@ func resourceStorageAccount() *pluginsdk.Resource { string(storage.BypassLogging), string(storage.BypassMetrics), string(storage.BypassNone), diff --git a/patches/0007-Update-documentation.patch b/patches/0007-Update-documentation.patch index 7111712b90..05fb2d1f57 100644 --- a/patches/0007-Update-documentation.patch +++ b/patches/0007-Update-documentation.patch @@ -1011,7 +1011,7 @@ index aeaa4514d6..0c02bc4313 100644 ```hcl diff --git a/website/docs/r/cosmosdb_account.html.markdown b/website/docs/r/cosmosdb_account.html.markdown -index 0970ddbe7e..51f934438d 100644 +index e15f6badcf..84b98f43a1 100644 --- a/website/docs/r/cosmosdb_account.html.markdown +++ b/website/docs/r/cosmosdb_account.html.markdown @@ -13,9 +13,9 @@ Manages a CosmosDB (formally DocumentDB) Account. @@ -1700,16 +1700,17 @@ index d9c71a1023..c1c041691e 100644 eventhub_endpoint_name = "events" resource_group_name = azurerm_resource_group.example.name diff --git a/website/docs/r/key_vault.html.markdown b/website/docs/r/key_vault.html.markdown -index 9413715a49..1b5b764080 100644 +index 2b480185e6..42864de069 100644 --- a/website/docs/r/key_vault.html.markdown +++ b/website/docs/r/key_vault.html.markdown -@@ -12,11 +12,9 @@ Manages a Key Vault. +@@ -12,12 +12,9 @@ Manages a Key Vault. ## Disclaimers -~> **Note:** It's possible to define Key Vault Access Policies both within [the `azurerm_key_vault` resource](key_vault.html) via the `access_policy` block and by using [the `azurerm_key_vault_access_policy` resource](key_vault_access_policy.html). However it's not possible to use both methods to manage Access Policies within a KeyVault, since there'll be conflicts. +~> **Note:** It's possible to define Key Vault Access Policies both within the `azurerm_key_vault` resource via the `access_policy` block and by using the `azurerm_key_vault_access_policy` resource. However it's not possible to use both methods to manage Access Policies within a KeyVault, since there'll be conflicts. +- -~> **Note:** It's possible to define Key Vault Certificate Contacts both within [the `azurerm_key_vault` resource](key_vault.html) via the `contact` block and by using [the `azurerm_key_vault_certificate_contacts` resource](key_vault_certificate_contacts.html). However it's not possible to use both methods to manage Certificate Contacts within a KeyVault, since there'll be conflicts. - -~> **Note:** Terraform will automatically recover a soft-deleted Key Vault during Creation if one is found - you can opt out of this using the `features` block within the Provider block. @@ -1717,7 +1718,7 @@ index 9413715a49..1b5b764080 100644 ## Example Usage -@@ -83,7 +81,7 @@ The following arguments are supported: +@@ -84,7 +81,7 @@ The following arguments are supported: --- @@ -1726,7 +1727,7 @@ index 9413715a49..1b5b764080 100644 -> **NOTE** Since `access_policy` can be configured both inline and via the separate `azurerm_key_vault_access_policy` resource, we have to explicitly set it to empty slice (`[]`) to remove it. -@@ -99,7 +97,7 @@ The following arguments are supported: +@@ -100,7 +97,7 @@ The following arguments are supported: * `purge_protection_enabled` - (Optional) Is Purge Protection enabled for this Key Vault? @@ -1755,22 +1756,19 @@ index 84fbd56f53..e46bf51e6c 100644 --> **NOTE:** Both Identifiers are unique to Terraform and don't map to an existing object within Azure. +-> **NOTE:** Both Identifiers are unique to this provider and don't map to an existing object within Azure. diff --git a/website/docs/r/key_vault_certificate.html.markdown b/website/docs/r/key_vault_certificate.html.markdown -index 89198d584b..d2c3bee09a 100644 +index 89198d584b..f2ec1a778a 100644 --- a/website/docs/r/key_vault_certificate.html.markdown +++ b/website/docs/r/key_vault_certificate.html.markdown -@@ -11,8 +11,11 @@ description: |- +@@ -11,8 +11,6 @@ description: |- Manages a Key Vault Certificate. -+<<<<<<< HEAD - ~> **Note:** The Azure Provider includes a Feature Toggle which will purge a Key Vault Certificate resource on destroy, rather than the default soft-delete. See [`purge_soft_deleted_certificates_on_destroy`](https://registry.terraform.io/providers/hashicorp/azurerm/latest/docs/guides/features-block#purge_soft_deleted_certificates_on_destroy) for more information. - -+======= -+>>>>>>> 8d78c87098 (Update-documentation) +-~> **Note:** The Azure Provider includes a Feature Toggle which will purge a Key Vault Certificate resource on destroy, rather than the default soft-delete. See [`purge_soft_deleted_certificates_on_destroy`](https://registry.terraform.io/providers/hashicorp/azurerm/latest/docs/guides/features-block#purge_soft_deleted_certificates_on_destroy) for more information. +- ## Example Usage (Importing a PFX) ~> **Note:** this example assumed the PFX file is located in the same directory at `certificate-to-import.pfx`. -@@ -103,7 +106,7 @@ resource "azurerm_key_vault_certificate" "example" { +@@ -103,7 +101,7 @@ resource "azurerm_key_vault_certificate" "example" { } ``` @@ -1780,21 +1778,18 @@ index 89198d584b..d2c3bee09a 100644 ```hcl data "azurerm_client_config" "current" {} diff --git a/website/docs/r/key_vault_secret.html.markdown b/website/docs/r/key_vault_secret.html.markdown -index c6387f8e37..10ac1d0ad4 100644 +index c6387f8e37..ab11365777 100644 --- a/website/docs/r/key_vault_secret.html.markdown +++ b/website/docs/r/key_vault_secret.html.markdown -@@ -11,11 +11,14 @@ description: |- +@@ -11,11 +11,6 @@ description: |- Manages a Key Vault Secret. -+<<<<<<< HEAD - ~> **Note:** All arguments including the secret value will be stored in the raw state as plain-text. - [Read more about sensitive data in state](/docs/state/sensitive-data.html). - - ~> **Note:** The Azure Provider includes a Feature Toggle which will purge a Key Vault Secret resource on destroy, rather than the default soft-delete. See [`purge_soft_deleted_secrets_on_destroy`](https://registry.terraform.io/providers/hashicorp/azurerm/latest/docs/guides/features-block#purge_soft_deleted_secrets_on_destroy) for more information. - -+======= -+>>>>>>> 8d78c87098 (Update-documentation) +-~> **Note:** All arguments including the secret value will be stored in the raw state as plain-text. +-[Read more about sensitive data in state](/docs/state/sensitive-data.html). +- +-~> **Note:** The Azure Provider includes a Feature Toggle which will purge a Key Vault Secret resource on destroy, rather than the default soft-delete. See [`purge_soft_deleted_secrets_on_destroy`](https://registry.terraform.io/providers/hashicorp/azurerm/latest/docs/guides/features-block#purge_soft_deleted_secrets_on_destroy) for more information. +- ## Example Usage ```hcl @@ -2711,7 +2706,7 @@ index 06660e1381..3562812668 100644 -> **NOTE:** You must specify exact one of `blob_uri`, `managed_image_id` and `os_disk_snapshot_id`. diff --git a/website/docs/r/signalr_service.html.markdown b/website/docs/r/signalr_service.html.markdown -index f2e1549d43..4836c3ef0a 100644 +index ea6e5aa12e..596c16baba 100644 --- a/website/docs/r/signalr_service.html.markdown +++ b/website/docs/r/signalr_service.html.markdown @@ -14,8 +14,8 @@ Manages an Azure SignalR service. @@ -2754,7 +2749,7 @@ index 8f57c91d06..e08781fa67 100644 ```hcl diff --git a/website/docs/r/storage_blob.html.markdown b/website/docs/r/storage_blob.html.markdown -index 04ca0f76e5..f0d311a601 100644 +index d5b970d394..34cf87d1ae 100644 --- a/website/docs/r/storage_blob.html.markdown +++ b/website/docs/r/storage_blob.html.markdown @@ -65,8 +65,6 @@ The following arguments are supported: @@ -2763,9 +2758,9 @@ index 04ca0f76e5..f0d311a601 100644 -~> **NOTE:** This property is intended to be used with the Terraform internal [filemd5](https://www.terraform.io/docs/configuration/functions/filemd5.html) and [md5](https://www.terraform.io/docs/configuration/functions/md5.html) functions when `source` or `source_content`, respectively, are defined. - - * `source` - (Optional) An absolute path to a file on the local system. This field cannot be specified for Append blobs and cannot be specified if `source_content` or `source_uri` is specified. Changing this forces a new resource to be created. + * `encryption_scope` - (Optional) The encryption scope to use for this blob. - * `source_content` - (Optional) The content for this blob which should be defined inline. This field can only be specified for Block blobs and cannot be specified if `source` or `source_uri` is specified. Changing this forces a new resource to be created. + * `source` - (Optional) An absolute path to a file on the local system. This field cannot be specified for Append blobs and cannot be specified if `source_content` or `source_uri` is specified. Changing this forces a new resource to be created. diff --git a/website/docs/r/storage_data_lake_gen2_path.html.markdown b/website/docs/r/storage_data_lake_gen2_path.html.markdown index 6786f8eb01..38823a0fd4 100644 --- a/website/docs/r/storage_data_lake_gen2_path.html.markdown @@ -2780,7 +2775,7 @@ index 6786f8eb01..38823a0fd4 100644 name = "example-resources" location = "West Europe" diff --git a/website/docs/r/subnet.html.markdown b/website/docs/r/subnet.html.markdown -index febf934234..d8187c43d6 100644 +index eb2020be7a..6f8b64b8c3 100644 --- a/website/docs/r/subnet.html.markdown +++ b/website/docs/r/subnet.html.markdown @@ -11,7 +11,7 @@ description: |- diff --git a/provider/cmd/pulumi-resource-azure/schema.json b/provider/cmd/pulumi-resource-azure/schema.json index 4dad899b2b..666cac7fec 100644 --- a/provider/cmd/pulumi-resource-azure/schema.json +++ b/provider/cmd/pulumi-resource-azure/schema.json @@ -245,7 +245,7 @@ }, "environment": { "type": "string", - "description": "The Cloud Environment which should be used. Possible values are public, usgovernment, and china. Defaults to public.\n", + "description": "The Cloud Environment which should be used. Possible values are public, usgovernment, and china. Defaults to public. Not\nused and should not be specified when `metadata_host` is specified.\n", "default": "public", "defaultInfo": { "environment": [ @@ -11355,7 +11355,7 @@ "properties": { "azureBlobStorage": { "$ref": "#/types/azure:appservice/LinuxWebAppLogsHttpLogsAzureBlobStorage:LinuxWebAppLogsHttpLogsAzureBlobStorage", - "description": "A `azure_blob_storage_http` block as defined below.\n" + "description": "A `azure_blob_storage_http` block as defined above.\n" }, "fileSystem": { "$ref": "#/types/azure:appservice/LinuxWebAppLogsHttpLogsFileSystem:LinuxWebAppLogsHttpLogsFileSystem", @@ -11603,7 +11603,7 @@ }, "javaVersion": { "type": "string", - "description": "The Version of Java to use. Possible values include `8`, `11`, and `17`.\n\n\u003e **NOTE:** The valid version combinations for `java_version`, `java_server` and `java_server_version` can be checked from the command line via `az webapp list-runtimes --linux`.\n" + "description": "The Version of Java to use. Possible values include `8`, `11`, and `17`.\n\n\u003e **NOTE:** The valid version combinations for `java_version`, `java_server` and `java_server_version` can be checked from the command line via `az webapp list-runtimes --linux`.\n\n\u003e **NOTE:** `java_server`, `java_server_version`, and `java_version` must all be specified if building a java app\n" }, "nodeVersion": { "type": "string", @@ -18175,7 +18175,7 @@ "properties": { "azureBlobStorage": { "$ref": "#/types/azure:appservice/WindowsWebAppLogsHttpLogsAzureBlobStorage:WindowsWebAppLogsHttpLogsAzureBlobStorage", - "description": "A `azure_blob_storage_http` block as defined above.\n" + "description": "A `azure_blob_storage_http` block as defined below.\n" }, "fileSystem": { "$ref": "#/types/azure:appservice/WindowsWebAppLogsHttpLogsFileSystem:WindowsWebAppLogsHttpLogsFileSystem", @@ -86835,7 +86835,7 @@ }, "name": { "type": "string", - "description": "The name of service to delegate to. Possible values are `GitHub.Network/networkSettings`, `Microsoft.ApiManagement/service`, `Microsoft.Apollo/npu`, `Microsoft.App/environments`, `Microsoft.App/testClients`, `Microsoft.AVS/PrivateClouds`, `Microsoft.AzureCosmosDB/clusters`, `Microsoft.BareMetal/AzureHostedService`, `Microsoft.BareMetal/AzureHPC`, `Microsoft.BareMetal/AzurePaymentHSM`, `Microsoft.BareMetal/AzureVMware`, `Microsoft.BareMetal/CrayServers`, `Microsoft.BareMetal/MonitoringServers`, `Microsoft.Batch/batchAccounts`, `Microsoft.CloudTest/hostedpools`, `Microsoft.CloudTest/images`, `Microsoft.CloudTest/pools`, `Microsoft.Codespaces/plans`, `Microsoft.ContainerInstance/containerGroups`, `Microsoft.ContainerService/managedClusters`, `Microsoft.ContainerService/TestClients`, `Microsoft.Databricks/workspaces`, `Microsoft.DBforMySQL/flexibleServers`, `Microsoft.DBforMySQL/servers`, `Microsoft.DBforMySQL/serversv2`, `Microsoft.DBforPostgreSQL/flexibleServers`, `Microsoft.DBforPostgreSQL/serversv2`, `Microsoft.DBforPostgreSQL/singleServers`, `Microsoft.DelegatedNetwork/controller`, `Microsoft.DevCenter/networkConnection`, `Microsoft.DocumentDB/cassandraClusters`, `Microsoft.Fidalgo/networkSettings`, `Microsoft.HardwareSecurityModules/dedicatedHSMs`, `Microsoft.Kusto/clusters`, `Microsoft.LabServices/labplans`, `Microsoft.Logic/integrationServiceEnvironments`, `Microsoft.MachineLearningServices/workspaces`, `Microsoft.Netapp/volumes`, `Microsoft.Network/dnsResolvers`, `Microsoft.Network/managedResolvers`, `Microsoft.Network/fpgaNetworkInterfaces`, `Microsoft.Network/networkWatchers.`, `Microsoft.Network/virtualNetworkGateways`, `Microsoft.Orbital/orbitalGateways`, `Microsoft.PowerPlatform/enterprisePolicies`, `Microsoft.PowerPlatform/vnetaccesslinks`, `Microsoft.ServiceFabricMesh/networks`, `Microsoft.ServiceNetworking/trafficControllers`, `Microsoft.Singularity/accounts/networks`, `Microsoft.Singularity/accounts/npu`, `Microsoft.Sql/managedInstances`, `Microsoft.Sql/managedInstancesOnebox`, `Microsoft.Sql/managedInstancesStage`, `Microsoft.Sql/managedInstancesTest`, `Microsoft.Sql/servers`, `Microsoft.StoragePool/diskPools`, `Microsoft.StreamAnalytics/streamingJobs`, `Microsoft.Synapse/workspaces`, `Microsoft.Web/hostingEnvironments`, `Microsoft.Web/serverFarms`, `NGINX.NGINXPLUS/nginxDeployments`, `PaloAltoNetworks.Cloudngfw/firewalls` and `Qumulo.Storage/fileSystems`.\n" + "description": "The name of service to delegate to. Possible values are `GitHub.Network/networkSettings`, `Microsoft.ApiManagement/service`, `Microsoft.Apollo/npu`, `Microsoft.App/environments`, `Microsoft.App/testClients`, `Microsoft.AVS/PrivateClouds`, `Microsoft.AzureCosmosDB/clusters`, `Microsoft.BareMetal/AzureHostedService`, `Microsoft.BareMetal/AzureHPC`, `Microsoft.BareMetal/AzurePaymentHSM`, `Microsoft.BareMetal/AzureVMware`, `Microsoft.BareMetal/CrayServers`, `Microsoft.BareMetal/MonitoringServers`, `Microsoft.Batch/batchAccounts`, `Microsoft.CloudTest/hostedpools`, `Microsoft.CloudTest/images`, `Microsoft.CloudTest/pools`, `Microsoft.Codespaces/plans`, `Microsoft.ContainerInstance/containerGroups`, `Microsoft.ContainerService/managedClusters`, `Microsoft.ContainerService/TestClients`, `Microsoft.Databricks/workspaces`, `Microsoft.DBforMySQL/flexibleServers`, `Microsoft.DBforMySQL/servers`, `Microsoft.DBforMySQL/serversv2`, `Microsoft.DBforPostgreSQL/flexibleServers`, `Microsoft.DBforPostgreSQL/serversv2`, `Microsoft.DBforPostgreSQL/singleServers`, `Microsoft.DelegatedNetwork/controller`, `Microsoft.DevCenter/networkConnection`, `Microsoft.DocumentDB/cassandraClusters`, `Microsoft.Fidalgo/networkSettings`, `Microsoft.HardwareSecurityModules/dedicatedHSMs`, `Microsoft.Kusto/clusters`, `Microsoft.LabServices/labplans`, `Microsoft.Logic/integrationServiceEnvironments`, `Microsoft.MachineLearningServices/workspaces`, `Microsoft.Netapp/volumes`, `Microsoft.Network/dnsResolvers`, `Microsoft.Network/managedResolvers`, `Microsoft.Network/fpgaNetworkInterfaces`, `Microsoft.Network/networkWatchers.`, `Microsoft.Network/virtualNetworkGateways`, `Microsoft.Orbital/orbitalGateways`, `Microsoft.PowerPlatform/enterprisePolicies`, `Microsoft.PowerPlatform/vnetaccesslinks`, `Microsoft.ServiceFabricMesh/networks`, `Microsoft.ServiceNetworking/trafficControllers`, `Microsoft.Singularity/accounts/networks`, `Microsoft.Singularity/accounts/npu`, `Microsoft.Sql/managedInstances`, `Microsoft.Sql/managedInstancesOnebox`, `Microsoft.Sql/managedInstancesStage`, `Microsoft.Sql/managedInstancesTest`, `Microsoft.Sql/servers`, `Microsoft.StoragePool/diskPools`, `Microsoft.StreamAnalytics/streamingJobs`, `Microsoft.Synapse/workspaces`, `Microsoft.Web/hostingEnvironments`, `Microsoft.Web/serverFarms`, `NGINX.NGINXPLUS/nginxDeployments`, `PaloAltoNetworks.Cloudngfw/firewalls`, `Qumulo.Storage/fileSystems`, and `Oracle.Database/networkAttachments`.\n" } }, "type": "object", @@ -97527,11 +97527,11 @@ "properties": { "capacity": { "type": "integer", - "description": "Specifies the number of units associated with this SignalR service. Valid values are `1`, `2`, `3`, `4`, `5`, `6`, `7`, `8`, `9`, `10`, `20`, `30`, `40`, `50`, `60`, `70`, `80`, `90` and `100`.\n" + "description": "Specifies the number of units associated with this SignalR service. Valid values are `1`, `2`, `3`, `4`, `5`, `6`, `7`, `8`, `9`, `10`, `20`, `30`, `40`, `50`, `60`, `70`, `80`, `90`, `100`, `200`, `300`, `400`, `500`, `600`, `700`, `800`, `900` and `1000`.\n\n\u003e **NOTE:** The valid capacity range for sku `Free_F1` is `1`, for sku `Premium_P2` is from `100` to `1000`, and from `1` to `100` for sku `Standard_S1` and `Premium_P1`.\n" }, "name": { "type": "string", - "description": "Specifies which tier to use. Valid values are `Free_F1`, `Standard_S1` and `Premium_P1`.\n" + "description": "Specifies which tier to use. Valid values are `Free_F1`, `Standard_S1`, `Premium_P1` and `Premium_P2`.\n" } }, "type": "object", @@ -103348,7 +103348,7 @@ }, "environment": { "type": "string", - "description": "The Cloud Environment which should be used. Possible values are public, usgovernment, and china. Defaults to public.\n" + "description": "The Cloud Environment which should be used. Possible values are public, usgovernment, and china. Defaults to public. Not\nused and should not be specified when `metadata_host` is specified.\n" }, "features": { "$ref": "#/types/azure:index/ProviderFeatures:ProviderFeatures" @@ -103472,7 +103472,7 @@ }, "environment": { "type": "string", - "description": "The Cloud Environment which should be used. Possible values are public, usgovernment, and china. Defaults to public.\n", + "description": "The Cloud Environment which should be used. Possible values are public, usgovernment, and china. Defaults to public. Not\nused and should not be specified when `metadata_host` is specified.\n", "default": "public", "defaultInfo": { "environment": [ @@ -135092,7 +135092,7 @@ }, "publicNetworkAccessEnabled": { "type": "boolean", - "description": "Whether public network access is allowed for this server. Defaults to `true`.\n" + "description": "Whether public network access is enabled. Defaults to `true`.\n" }, "resourceGroupName": { "type": "string", @@ -135200,7 +135200,7 @@ }, "publicNetworkAccessEnabled": { "type": "boolean", - "description": "Whether public network access is allowed for this server. Defaults to `true`.\n" + "description": "Whether public network access is enabled. Defaults to `true`.\n" }, "resourceGroupName": { "type": "string", @@ -135309,7 +135309,7 @@ }, "publicNetworkAccessEnabled": { "type": "boolean", - "description": "Whether public network access is allowed for this server. Defaults to `true`.\n" + "description": "Whether public network access is enabled. Defaults to `true`.\n" }, "resourceGroupName": { "type": "string", @@ -137685,7 +137685,7 @@ } }, "azure:chaosstudio/target:Target": { - "description": "\u003c!-- Note: This documentation is generated. Any manual changes will be overwritten --\u003e\n\nManages a Chaos Studio Target.\n\n## Example Usage\n\n\u003c!--Start PulumiCodeChooser --\u003e\n```java\npackage generated_program;\n\nimport com.pulumi.Context;\nimport com.pulumi.Pulumi;\nimport com.pulumi.core.Output;\nimport com.pulumi.azure.core.ResourceGroup;\nimport com.pulumi.azure.core.ResourceGroupArgs;\nimport com.pulumi.azure.containerservice.KubernetesCluster;\nimport com.pulumi.azure.containerservice.KubernetesClusterArgs;\nimport com.pulumi.azure.containerservice.inputs.KubernetesClusterDefaultNodePoolArgs;\nimport com.pulumi.azure.containerservice.inputs.KubernetesClusterIdentityArgs;\nimport com.pulumi.azure.chaosstudio.Target;\nimport com.pulumi.azure.chaosstudio.TargetArgs;\nimport java.util.List;\nimport java.util.ArrayList;\nimport java.util.Map;\nimport java.io.File;\nimport java.nio.file.Files;\nimport java.nio.file.Paths;\n\npublic class App {\n public static void main(String[] args) {\n Pulumi.run(App::stack);\n }\n\n public static void stack(Context ctx) {\n var exampleResourceGroup = new ResourceGroup(\"exampleResourceGroup\", ResourceGroupArgs.builder() \n .name(\"example-resources\")\n .location(\"West Europe\")\n .build());\n\n var example = new KubernetesCluster(\"example\", KubernetesClusterArgs.builder() \n .name(\"example\")\n .location(exampleResourceGroup.location())\n .resourceGroupName(exampleResourceGroup.name())\n .dnsPrefix(\"acctestaksexample\")\n .defaultNodePool(KubernetesClusterDefaultNodePoolArgs.builder()\n .name(\"example-value\")\n .nodeCount(\"example-value\")\n .vmSize(\"example-value\")\n .build())\n .upgradeSettings(%!v(PANIC=Format method: runtime error: invalid memory address or nil pointer dereference))\n .identity(KubernetesClusterIdentityArgs.builder()\n .type(\"example-value\")\n .build())\n .build());\n\n var exampleTarget = new Target(\"exampleTarget\", TargetArgs.builder() \n .location(exampleResourceGroup.location())\n .targetResourceId(example.id())\n .targetType(\"example-value\")\n .build());\n\n }\n}\n```\n```yaml\nresources:\n example:\n type: azure:containerservice:KubernetesCluster\n properties:\n name: example\n location: ${exampleResourceGroup.location}\n resourceGroupName: ${exampleResourceGroup.name}\n dnsPrefix: acctestaksexample\n defaultNodePool:\n name: example-value\n nodeCount: example-value\n vmSize: example-value\n upgradeSettings:\n - maxSurge: example-value\n identity:\n type: example-value\n exampleResourceGroup:\n type: azure:core:ResourceGroup\n name: example\n properties:\n name: example-resources\n location: West Europe\n exampleTarget:\n type: azure:chaosstudio:Target\n name: example\n properties:\n location: ${exampleResourceGroup.location}\n targetResourceId: ${example.id}\n targetType: example-value\n```\n\u003c!--End PulumiCodeChooser --\u003e\n\n## Import\n\nAn existing Chaos Studio Target can be imported into Terraform using the `resource id`, e.g.\n\n```sh\n$ pulumi import azure:chaosstudio/target:Target example /{scope}/providers/Microsoft.Chaos/targets/{targetName}\n```\n\n* Where `{scope}` is the ID of the Azure Resource under which the Chaos Studio Target exists. For example `/subscriptions/12345678-1234-9876-4563-123456789012/resourceGroups/some-resource-group`.\n\n* Where `{targetName}` is the name of the Target. For example `targetValue`.\n\n", + "description": "\u003c!-- Note: This documentation is generated. Any manual changes will be overwritten --\u003e\n\nManages a Chaos Studio Target.\n\n## Example Usage\n\n\u003c!--Start PulumiCodeChooser --\u003e\n```typescript\nimport * as pulumi from \"@pulumi/pulumi\";\nimport * as azure from \"@pulumi/azure\";\n\nconst exampleResourceGroup = new azure.core.ResourceGroup(\"example\", {\n name: \"example-resources\",\n location: \"West Europe\",\n});\nconst example = new azure.containerservice.KubernetesCluster(\"example\", {\n name: \"example\",\n location: exampleResourceGroup.location,\n resourceGroupName: exampleResourceGroup.name,\n dnsPrefix: \"acctestaksexample\",\n defaultNodePool: {\n name: \"example-value\",\n nodeCount: \"example-value\",\n vmSize: \"example-value\",\n upgradeSettings: {\n maxSurge: \"example-value\",\n },\n },\n identity: {\n type: \"example-value\",\n },\n});\nconst exampleTarget = new azure.chaosstudio.Target(\"example\", {\n location: exampleResourceGroup.location,\n targetResourceId: example.id,\n targetType: \"example-value\",\n});\n```\n```python\nimport pulumi\nimport pulumi_azure as azure\n\nexample_resource_group = azure.core.ResourceGroup(\"example\",\n name=\"example-resources\",\n location=\"West Europe\")\nexample = azure.containerservice.KubernetesCluster(\"example\",\n name=\"example\",\n location=example_resource_group.location,\n resource_group_name=example_resource_group.name,\n dns_prefix=\"acctestaksexample\",\n default_node_pool=azure.containerservice.KubernetesClusterDefaultNodePoolArgs(\n name=\"example-value\",\n node_count=\"example-value\",\n vm_size=\"example-value\",\n upgrade_settings=azure.containerservice.KubernetesClusterDefaultNodePoolUpgradeSettingsArgs(\n max_surge=\"example-value\",\n ),\n ),\n identity=azure.containerservice.KubernetesClusterIdentityArgs(\n type=\"example-value\",\n ))\nexample_target = azure.chaosstudio.Target(\"example\",\n location=example_resource_group.location,\n target_resource_id=example.id,\n target_type=\"example-value\")\n```\n```csharp\nusing System.Collections.Generic;\nusing System.Linq;\nusing Pulumi;\nusing Azure = Pulumi.Azure;\n\nreturn await Deployment.RunAsync(() =\u003e \n{\n var exampleResourceGroup = new Azure.Core.ResourceGroup(\"example\", new()\n {\n Name = \"example-resources\",\n Location = \"West Europe\",\n });\n\n var example = new Azure.ContainerService.KubernetesCluster(\"example\", new()\n {\n Name = \"example\",\n Location = exampleResourceGroup.Location,\n ResourceGroupName = exampleResourceGroup.Name,\n DnsPrefix = \"acctestaksexample\",\n DefaultNodePool = new Azure.ContainerService.Inputs.KubernetesClusterDefaultNodePoolArgs\n {\n Name = \"example-value\",\n NodeCount = \"example-value\",\n VmSize = \"example-value\",\n UpgradeSettings = new Azure.ContainerService.Inputs.KubernetesClusterDefaultNodePoolUpgradeSettingsArgs\n {\n MaxSurge = \"example-value\",\n },\n },\n Identity = new Azure.ContainerService.Inputs.KubernetesClusterIdentityArgs\n {\n Type = \"example-value\",\n },\n });\n\n var exampleTarget = new Azure.ChaosStudio.Target(\"example\", new()\n {\n Location = exampleResourceGroup.Location,\n TargetResourceId = example.Id,\n TargetType = \"example-value\",\n });\n\n});\n```\n```go\npackage main\n\nimport (\n\t\"github.com/pulumi/pulumi-azure/sdk/v5/go/azure/chaosstudio\"\n\t\"github.com/pulumi/pulumi-azure/sdk/v5/go/azure/containerservice\"\n\t\"github.com/pulumi/pulumi-azure/sdk/v5/go/azure/core\"\n\t\"github.com/pulumi/pulumi/sdk/v3/go/pulumi\"\n)\n\nfunc main() {\n\tpulumi.Run(func(ctx *pulumi.Context) error {\n\t\texampleResourceGroup, err := core.NewResourceGroup(ctx, \"example\", \u0026core.ResourceGroupArgs{\n\t\t\tName: pulumi.String(\"example-resources\"),\n\t\t\tLocation: pulumi.String(\"West Europe\"),\n\t\t})\n\t\tif err != nil {\n\t\t\treturn err\n\t\t}\n\t\texample, err := containerservice.NewKubernetesCluster(ctx, \"example\", \u0026containerservice.KubernetesClusterArgs{\n\t\t\tName: pulumi.String(\"example\"),\n\t\t\tLocation: exampleResourceGroup.Location,\n\t\t\tResourceGroupName: exampleResourceGroup.Name,\n\t\t\tDnsPrefix: pulumi.String(\"acctestaksexample\"),\n\t\t\tDefaultNodePool: \u0026containerservice.KubernetesClusterDefaultNodePoolArgs{\n\t\t\t\tName: pulumi.String(\"example-value\"),\n\t\t\t\tNodeCount: pulumi.Int(\"example-value\"),\n\t\t\t\tVmSize: pulumi.String(\"example-value\"),\n\t\t\t\tUpgradeSettings: \u0026containerservice.KubernetesClusterDefaultNodePoolUpgradeSettingsArgs{\n\t\t\t\t\tMaxSurge: pulumi.String(\"example-value\"),\n\t\t\t\t},\n\t\t\t},\n\t\t\tIdentity: \u0026containerservice.KubernetesClusterIdentityArgs{\n\t\t\t\tType: pulumi.String(\"example-value\"),\n\t\t\t},\n\t\t})\n\t\tif err != nil {\n\t\t\treturn err\n\t\t}\n\t\t_, err = chaosstudio.NewTarget(ctx, \"example\", \u0026chaosstudio.TargetArgs{\n\t\t\tLocation: exampleResourceGroup.Location,\n\t\t\tTargetResourceId: example.ID(),\n\t\t\tTargetType: pulumi.String(\"example-value\"),\n\t\t})\n\t\tif err != nil {\n\t\t\treturn err\n\t\t}\n\t\treturn nil\n\t})\n}\n```\n```java\npackage generated_program;\n\nimport com.pulumi.Context;\nimport com.pulumi.Pulumi;\nimport com.pulumi.core.Output;\nimport com.pulumi.azure.core.ResourceGroup;\nimport com.pulumi.azure.core.ResourceGroupArgs;\nimport com.pulumi.azure.containerservice.KubernetesCluster;\nimport com.pulumi.azure.containerservice.KubernetesClusterArgs;\nimport com.pulumi.azure.containerservice.inputs.KubernetesClusterDefaultNodePoolArgs;\nimport com.pulumi.azure.containerservice.inputs.KubernetesClusterDefaultNodePoolUpgradeSettingsArgs;\nimport com.pulumi.azure.containerservice.inputs.KubernetesClusterIdentityArgs;\nimport com.pulumi.azure.chaosstudio.Target;\nimport com.pulumi.azure.chaosstudio.TargetArgs;\nimport java.util.List;\nimport java.util.ArrayList;\nimport java.util.Map;\nimport java.io.File;\nimport java.nio.file.Files;\nimport java.nio.file.Paths;\n\npublic class App {\n public static void main(String[] args) {\n Pulumi.run(App::stack);\n }\n\n public static void stack(Context ctx) {\n var exampleResourceGroup = new ResourceGroup(\"exampleResourceGroup\", ResourceGroupArgs.builder() \n .name(\"example-resources\")\n .location(\"West Europe\")\n .build());\n\n var example = new KubernetesCluster(\"example\", KubernetesClusterArgs.builder() \n .name(\"example\")\n .location(exampleResourceGroup.location())\n .resourceGroupName(exampleResourceGroup.name())\n .dnsPrefix(\"acctestaksexample\")\n .defaultNodePool(KubernetesClusterDefaultNodePoolArgs.builder()\n .name(\"example-value\")\n .nodeCount(\"example-value\")\n .vmSize(\"example-value\")\n .upgradeSettings(KubernetesClusterDefaultNodePoolUpgradeSettingsArgs.builder()\n .maxSurge(\"example-value\")\n .build())\n .build())\n .identity(KubernetesClusterIdentityArgs.builder()\n .type(\"example-value\")\n .build())\n .build());\n\n var exampleTarget = new Target(\"exampleTarget\", TargetArgs.builder() \n .location(exampleResourceGroup.location())\n .targetResourceId(example.id())\n .targetType(\"example-value\")\n .build());\n\n }\n}\n```\n```yaml\nresources:\n example:\n type: azure:containerservice:KubernetesCluster\n properties:\n name: example\n location: ${exampleResourceGroup.location}\n resourceGroupName: ${exampleResourceGroup.name}\n dnsPrefix: acctestaksexample\n defaultNodePool:\n name: example-value\n nodeCount: example-value\n vmSize: example-value\n upgradeSettings:\n maxSurge: example-value\n identity:\n type: example-value\n exampleResourceGroup:\n type: azure:core:ResourceGroup\n name: example\n properties:\n name: example-resources\n location: West Europe\n exampleTarget:\n type: azure:chaosstudio:Target\n name: example\n properties:\n location: ${exampleResourceGroup.location}\n targetResourceId: ${example.id}\n targetType: example-value\n```\n\u003c!--End PulumiCodeChooser --\u003e\n\n## Import\n\nAn existing Chaos Studio Target can be imported into Terraform using the `resource id`, e.g.\n\n```sh\n$ pulumi import azure:chaosstudio/target:Target example /{scope}/providers/Microsoft.Chaos/targets/{targetName}\n```\n\n* Where `{scope}` is the ID of the Azure Resource under which the Chaos Studio Target exists. For example `/subscriptions/12345678-1234-9876-4563-123456789012/resourceGroups/some-resource-group`.\n\n* Where `{targetName}` is the name of the Target. For example `targetValue`.\n\n", "properties": { "location": { "type": "string", @@ -145195,6 +145195,14 @@ "type": "string", "description": "Specifies the name of the Snapshot resource. Changing this forces a new resource to be created.\n" }, + "networkAccessPolicy": { + "type": "string", + "description": "Policy for accessing the disk via network. Possible values are `AllowAll`, `AllowPrivate`, or `DenyAll`. Defaults to `AllowAll`.\n" + }, + "publicNetworkAccessEnabled": { + "type": "boolean", + "description": "Policy for controlling export on the disk. Possible values are `true` or `false`. Defaults to `true`.\n" + }, "resourceGroupName": { "type": "string", "description": "The name of the resource group in which to create the Snapshot. Changing this forces a new resource to be created.\n" @@ -145259,6 +145267,14 @@ "description": "Specifies the name of the Snapshot resource. Changing this forces a new resource to be created.\n", "willReplaceOnChanges": true }, + "networkAccessPolicy": { + "type": "string", + "description": "Policy for accessing the disk via network. Possible values are `AllowAll`, `AllowPrivate`, or `DenyAll`. Defaults to `AllowAll`.\n" + }, + "publicNetworkAccessEnabled": { + "type": "boolean", + "description": "Policy for controlling export on the disk. Possible values are `true` or `false`. Defaults to `true`.\n" + }, "resourceGroupName": { "type": "string", "description": "The name of the resource group in which to create the Snapshot. Changing this forces a new resource to be created.\n", @@ -145321,6 +145337,14 @@ "description": "Specifies the name of the Snapshot resource. Changing this forces a new resource to be created.\n", "willReplaceOnChanges": true }, + "networkAccessPolicy": { + "type": "string", + "description": "Policy for accessing the disk via network. Possible values are `AllowAll`, `AllowPrivate`, or `DenyAll`. Defaults to `AllowAll`.\n" + }, + "publicNetworkAccessEnabled": { + "type": "boolean", + "description": "Policy for controlling export on the disk. Possible values are `true` or `false`. Defaults to `true`.\n" + }, "resourceGroupName": { "type": "string", "description": "The name of the resource group in which to create the Snapshot. Changing this forces a new resource to be created.\n", @@ -149445,7 +149469,7 @@ } }, "azure:containerservice/clusterTrustedAccessRoleBinding:ClusterTrustedAccessRoleBinding": { - "description": "\u003c!-- Note: This documentation is generated. Any manual changes will be overwritten --\u003e\n\nManages a Kubernetes Cluster Trusted Access Role Binding\n\u003e **Note:** This Resource is in **Preview** to use this you must be opted into the Preview. You can do this by running `az feature register --namespace Microsoft.ContainerService --name TrustedAccessPreview` and then `az provider register -n Microsoft.ContainerService`\n.\n\n## Example Usage\n\n\u003c!--Start PulumiCodeChooser --\u003e\n```java\npackage generated_program;\n\nimport com.pulumi.Context;\nimport com.pulumi.Pulumi;\nimport com.pulumi.core.Output;\nimport com.pulumi.azure.core.ResourceGroup;\nimport com.pulumi.azure.core.ResourceGroupArgs;\nimport com.pulumi.azure.appinsights.Insights;\nimport com.pulumi.azure.appinsights.InsightsArgs;\nimport com.pulumi.azure.core.CoreFunctions;\nimport com.pulumi.azure.keyvault.KeyVault;\nimport com.pulumi.azure.keyvault.KeyVaultArgs;\nimport com.pulumi.azure.keyvault.AccessPolicy;\nimport com.pulumi.azure.keyvault.AccessPolicyArgs;\nimport com.pulumi.azure.containerservice.KubernetesCluster;\nimport com.pulumi.azure.containerservice.KubernetesClusterArgs;\nimport com.pulumi.azure.containerservice.inputs.KubernetesClusterDefaultNodePoolArgs;\nimport com.pulumi.azure.containerservice.inputs.KubernetesClusterIdentityArgs;\nimport com.pulumi.azure.storage.Account;\nimport com.pulumi.azure.storage.AccountArgs;\nimport com.pulumi.azure.machinelearning.Workspace;\nimport com.pulumi.azure.machinelearning.WorkspaceArgs;\nimport com.pulumi.azure.machinelearning.inputs.WorkspaceIdentityArgs;\nimport com.pulumi.azure.containerservice.ClusterTrustedAccessRoleBinding;\nimport com.pulumi.azure.containerservice.ClusterTrustedAccessRoleBindingArgs;\nimport java.util.List;\nimport java.util.ArrayList;\nimport java.util.Map;\nimport java.io.File;\nimport java.nio.file.Files;\nimport java.nio.file.Paths;\n\npublic class App {\n public static void main(String[] args) {\n Pulumi.run(App::stack);\n }\n\n public static void stack(Context ctx) {\n var exampleResourceGroup = new ResourceGroup(\"exampleResourceGroup\", ResourceGroupArgs.builder() \n .name(\"example-resources\")\n .location(\"West Europe\")\n .build());\n\n var example = new Insights(\"example\", InsightsArgs.builder() \n .name(\"example\")\n .location(exampleResourceGroup.location())\n .resourceGroupName(exampleResourceGroup.name())\n .applicationType(\"example-value\")\n .build());\n\n final var test = CoreFunctions.getClientConfig();\n\n var exampleKeyVault = new KeyVault(\"exampleKeyVault\", KeyVaultArgs.builder() \n .name(\"example\")\n .location(exampleResourceGroup.location())\n .resourceGroupName(exampleResourceGroup.name())\n .tenantId(exampleAzurermClientConfig.tenantId())\n .skuName(\"example-value\")\n .softDeleteRetentionDays(\"example-value\")\n .build());\n\n var exampleAccessPolicy = new AccessPolicy(\"exampleAccessPolicy\", AccessPolicyArgs.builder() \n .keyVaultId(exampleKeyVault.id())\n .tenantId(exampleAzurermClientConfig.tenantId())\n .objectId(exampleAzurermClientConfig.objectId())\n .keyPermissions(\"example-value\")\n .build());\n\n var exampleKubernetesCluster = new KubernetesCluster(\"exampleKubernetesCluster\", KubernetesClusterArgs.builder() \n .name(\"example\")\n .location(exampleResourceGroup.location())\n .resourceGroupName(exampleResourceGroup.name())\n .dnsPrefix(\"acctestaksexample\")\n .defaultNodePool(KubernetesClusterDefaultNodePoolArgs.builder()\n .name(\"example-value\")\n .nodeCount(\"example-value\")\n .vmSize(\"example-value\")\n .build())\n .upgradeSettings(%!v(PANIC=Format method: runtime error: invalid memory address or nil pointer dereference))\n .identity(KubernetesClusterIdentityArgs.builder()\n .type(\"example-value\")\n .build())\n .build());\n\n var exampleAccount = new Account(\"exampleAccount\", AccountArgs.builder() \n .name(\"example\")\n .location(exampleResourceGroup.location())\n .resourceGroupName(exampleResourceGroup.name())\n .accountTier(\"example-value\")\n .accountReplicationType(\"example-value\")\n .build());\n\n var exampleWorkspace = new Workspace(\"exampleWorkspace\", WorkspaceArgs.builder() \n .name(\"example\")\n .location(exampleResourceGroup.location())\n .resourceGroupName(exampleResourceGroup.name())\n .keyVaultId(exampleKeyVault.id())\n .storageAccountId(exampleAccount.id())\n .applicationInsightsId(example.id())\n .identity(WorkspaceIdentityArgs.builder()\n .type(\"example-value\")\n .build())\n .build());\n\n var exampleClusterTrustedAccessRoleBinding = new ClusterTrustedAccessRoleBinding(\"exampleClusterTrustedAccessRoleBinding\", ClusterTrustedAccessRoleBindingArgs.builder() \n .kubernetesClusterId(exampleKubernetesCluster.id())\n .name(\"example\")\n .roles(\"example-value\")\n .sourceResourceId(exampleWorkspace.id())\n .build());\n\n }\n}\n```\n```yaml\nresources:\n example:\n type: azure:appinsights:Insights\n properties:\n name: example\n location: ${exampleResourceGroup.location}\n resourceGroupName: ${exampleResourceGroup.name}\n applicationType: example-value\n exampleKeyVault:\n type: azure:keyvault:KeyVault\n name: example\n properties:\n name: example\n location: ${exampleResourceGroup.location}\n resourceGroupName: ${exampleResourceGroup.name}\n tenantId: ${exampleAzurermClientConfig.tenantId}\n skuName: example-value\n softDeleteRetentionDays: example-value\n exampleAccessPolicy:\n type: azure:keyvault:AccessPolicy\n name: example\n properties:\n keyVaultId: ${exampleKeyVault.id}\n tenantId: ${exampleAzurermClientConfig.tenantId}\n objectId: ${exampleAzurermClientConfig.objectId}\n keyPermissions: example-value\n exampleKubernetesCluster:\n type: azure:containerservice:KubernetesCluster\n name: example\n properties:\n name: example\n location: ${exampleResourceGroup.location}\n resourceGroupName: ${exampleResourceGroup.name}\n dnsPrefix: acctestaksexample\n defaultNodePool:\n name: example-value\n nodeCount: example-value\n vmSize: example-value\n upgradeSettings:\n - maxSurge: example-value\n identity:\n type: example-value\n exampleWorkspace:\n type: azure:machinelearning:Workspace\n name: example\n properties:\n name: example\n location: ${exampleResourceGroup.location}\n resourceGroupName: ${exampleResourceGroup.name}\n keyVaultId: ${exampleKeyVault.id}\n storageAccountId: ${exampleAccount.id}\n applicationInsightsId: ${example.id}\n identity:\n type: example-value\n exampleResourceGroup:\n type: azure:core:ResourceGroup\n name: example\n properties:\n name: example-resources\n location: West Europe\n exampleAccount:\n type: azure:storage:Account\n name: example\n properties:\n name: example\n location: ${exampleResourceGroup.location}\n resourceGroupName: ${exampleResourceGroup.name}\n accountTier: example-value\n accountReplicationType: example-value\n exampleClusterTrustedAccessRoleBinding:\n type: azure:containerservice:ClusterTrustedAccessRoleBinding\n name: example\n properties:\n kubernetesClusterId: ${exampleKubernetesCluster.id}\n name: example\n roles: example-value\n sourceResourceId: ${exampleWorkspace.id}\nvariables:\n test:\n fn::invoke:\n Function: azure:core:getClientConfig\n Arguments: {}\n```\n\u003c!--End PulumiCodeChooser --\u003e\n\n## Import\n\nAn existing Kubernetes Cluster Trusted Access Role Binding can be imported into Terraform using the `resource id`, e.g.\n\n```sh\n$ pulumi import azure:containerservice/clusterTrustedAccessRoleBinding:ClusterTrustedAccessRoleBinding example /subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.ContainerService/managedClusters/{managedClusterName}/trustedAccessRoleBindings/{trustedAccessRoleBindingName}\n```\n\n* Where `{subscriptionId}` is the ID of the Azure Subscription where the Kubernetes Cluster Trusted Access Role Binding exists. For example `12345678-1234-9876-4563-123456789012`.\n\n* Where `{resourceGroupName}` is the name of Resource Group where this Kubernetes Cluster Trusted Access Role Binding exists. For example `example-resource-group`.\n\n* Where `{managedClusterName}` is the name of the Managed Cluster. For example `managedClusterValue`.\n\n* Where `{trustedAccessRoleBindingName}` is the name of the Trusted Access Role Binding. For example `trustedAccessRoleBindingValue`.\n\n", + "description": "\u003c!-- Note: This documentation is generated. Any manual changes will be overwritten --\u003e\n\nManages a Kubernetes Cluster Trusted Access Role Binding\n\u003e **Note:** This Resource is in **Preview** to use this you must be opted into the Preview. You can do this by running `az feature register --namespace Microsoft.ContainerService --name TrustedAccessPreview` and then `az provider register -n Microsoft.ContainerService`\n.\n\n## Example Usage\n\n\u003c!--Start PulumiCodeChooser --\u003e\n```typescript\nimport * as pulumi from \"@pulumi/pulumi\";\nimport * as azure from \"@pulumi/azure\";\n\nconst exampleResourceGroup = new azure.core.ResourceGroup(\"example\", {\n name: \"example-resources\",\n location: \"West Europe\",\n});\nconst example = new azure.appinsights.Insights(\"example\", {\n name: \"example\",\n location: exampleResourceGroup.location,\n resourceGroupName: exampleResourceGroup.name,\n applicationType: \"example-value\",\n});\nconst test = azure.core.getClientConfig({});\nconst exampleKeyVault = new azure.keyvault.KeyVault(\"example\", {\n name: \"example\",\n location: exampleResourceGroup.location,\n resourceGroupName: exampleResourceGroup.name,\n tenantId: exampleAzurermClientConfig.tenantId,\n skuName: \"example-value\",\n softDeleteRetentionDays: \"example-value\",\n});\nconst exampleAccessPolicy = new azure.keyvault.AccessPolicy(\"example\", {\n keyVaultId: exampleKeyVault.id,\n tenantId: exampleAzurermClientConfig.tenantId,\n objectId: exampleAzurermClientConfig.objectId,\n keyPermissions: \"example-value\",\n});\nconst exampleKubernetesCluster = new azure.containerservice.KubernetesCluster(\"example\", {\n name: \"example\",\n location: exampleResourceGroup.location,\n resourceGroupName: exampleResourceGroup.name,\n dnsPrefix: \"acctestaksexample\",\n defaultNodePool: {\n name: \"example-value\",\n nodeCount: \"example-value\",\n vmSize: \"example-value\",\n upgradeSettings: {\n maxSurge: \"example-value\",\n },\n },\n identity: {\n type: \"example-value\",\n },\n});\nconst exampleAccount = new azure.storage.Account(\"example\", {\n name: \"example\",\n location: exampleResourceGroup.location,\n resourceGroupName: exampleResourceGroup.name,\n accountTier: \"example-value\",\n accountReplicationType: \"example-value\",\n});\nconst exampleWorkspace = new azure.machinelearning.Workspace(\"example\", {\n name: \"example\",\n location: exampleResourceGroup.location,\n resourceGroupName: exampleResourceGroup.name,\n keyVaultId: exampleKeyVault.id,\n storageAccountId: exampleAccount.id,\n applicationInsightsId: example.id,\n identity: {\n type: \"example-value\",\n },\n});\nconst exampleClusterTrustedAccessRoleBinding = new azure.containerservice.ClusterTrustedAccessRoleBinding(\"example\", {\n kubernetesClusterId: exampleKubernetesCluster.id,\n name: \"example\",\n roles: \"example-value\",\n sourceResourceId: exampleWorkspace.id,\n});\n```\n```python\nimport pulumi\nimport pulumi_azure as azure\n\nexample_resource_group = azure.core.ResourceGroup(\"example\",\n name=\"example-resources\",\n location=\"West Europe\")\nexample = azure.appinsights.Insights(\"example\",\n name=\"example\",\n location=example_resource_group.location,\n resource_group_name=example_resource_group.name,\n application_type=\"example-value\")\ntest = azure.core.get_client_config()\nexample_key_vault = azure.keyvault.KeyVault(\"example\",\n name=\"example\",\n location=example_resource_group.location,\n resource_group_name=example_resource_group.name,\n tenant_id=example_azurerm_client_config[\"tenantId\"],\n sku_name=\"example-value\",\n soft_delete_retention_days=\"example-value\")\nexample_access_policy = azure.keyvault.AccessPolicy(\"example\",\n key_vault_id=example_key_vault.id,\n tenant_id=example_azurerm_client_config[\"tenantId\"],\n object_id=example_azurerm_client_config[\"objectId\"],\n key_permissions=\"example-value\")\nexample_kubernetes_cluster = azure.containerservice.KubernetesCluster(\"example\",\n name=\"example\",\n location=example_resource_group.location,\n resource_group_name=example_resource_group.name,\n dns_prefix=\"acctestaksexample\",\n default_node_pool=azure.containerservice.KubernetesClusterDefaultNodePoolArgs(\n name=\"example-value\",\n node_count=\"example-value\",\n vm_size=\"example-value\",\n upgrade_settings=azure.containerservice.KubernetesClusterDefaultNodePoolUpgradeSettingsArgs(\n max_surge=\"example-value\",\n ),\n ),\n identity=azure.containerservice.KubernetesClusterIdentityArgs(\n type=\"example-value\",\n ))\nexample_account = azure.storage.Account(\"example\",\n name=\"example\",\n location=example_resource_group.location,\n resource_group_name=example_resource_group.name,\n account_tier=\"example-value\",\n account_replication_type=\"example-value\")\nexample_workspace = azure.machinelearning.Workspace(\"example\",\n name=\"example\",\n location=example_resource_group.location,\n resource_group_name=example_resource_group.name,\n key_vault_id=example_key_vault.id,\n storage_account_id=example_account.id,\n application_insights_id=example.id,\n identity=azure.machinelearning.WorkspaceIdentityArgs(\n type=\"example-value\",\n ))\nexample_cluster_trusted_access_role_binding = azure.containerservice.ClusterTrustedAccessRoleBinding(\"example\",\n kubernetes_cluster_id=example_kubernetes_cluster.id,\n name=\"example\",\n roles=\"example-value\",\n source_resource_id=example_workspace.id)\n```\n```csharp\nusing System.Collections.Generic;\nusing System.Linq;\nusing Pulumi;\nusing Azure = Pulumi.Azure;\n\nreturn await Deployment.RunAsync(() =\u003e \n{\n var exampleResourceGroup = new Azure.Core.ResourceGroup(\"example\", new()\n {\n Name = \"example-resources\",\n Location = \"West Europe\",\n });\n\n var example = new Azure.AppInsights.Insights(\"example\", new()\n {\n Name = \"example\",\n Location = exampleResourceGroup.Location,\n ResourceGroupName = exampleResourceGroup.Name,\n ApplicationType = \"example-value\",\n });\n\n var test = Azure.Core.GetClientConfig.Invoke();\n\n var exampleKeyVault = new Azure.KeyVault.KeyVault(\"example\", new()\n {\n Name = \"example\",\n Location = exampleResourceGroup.Location,\n ResourceGroupName = exampleResourceGroup.Name,\n TenantId = exampleAzurermClientConfig.TenantId,\n SkuName = \"example-value\",\n SoftDeleteRetentionDays = \"example-value\",\n });\n\n var exampleAccessPolicy = new Azure.KeyVault.AccessPolicy(\"example\", new()\n {\n KeyVaultId = exampleKeyVault.Id,\n TenantId = exampleAzurermClientConfig.TenantId,\n ObjectId = exampleAzurermClientConfig.ObjectId,\n KeyPermissions = \"example-value\",\n });\n\n var exampleKubernetesCluster = new Azure.ContainerService.KubernetesCluster(\"example\", new()\n {\n Name = \"example\",\n Location = exampleResourceGroup.Location,\n ResourceGroupName = exampleResourceGroup.Name,\n DnsPrefix = \"acctestaksexample\",\n DefaultNodePool = new Azure.ContainerService.Inputs.KubernetesClusterDefaultNodePoolArgs\n {\n Name = \"example-value\",\n NodeCount = \"example-value\",\n VmSize = \"example-value\",\n UpgradeSettings = new Azure.ContainerService.Inputs.KubernetesClusterDefaultNodePoolUpgradeSettingsArgs\n {\n MaxSurge = \"example-value\",\n },\n },\n Identity = new Azure.ContainerService.Inputs.KubernetesClusterIdentityArgs\n {\n Type = \"example-value\",\n },\n });\n\n var exampleAccount = new Azure.Storage.Account(\"example\", new()\n {\n Name = \"example\",\n Location = exampleResourceGroup.Location,\n ResourceGroupName = exampleResourceGroup.Name,\n AccountTier = \"example-value\",\n AccountReplicationType = \"example-value\",\n });\n\n var exampleWorkspace = new Azure.MachineLearning.Workspace(\"example\", new()\n {\n Name = \"example\",\n Location = exampleResourceGroup.Location,\n ResourceGroupName = exampleResourceGroup.Name,\n KeyVaultId = exampleKeyVault.Id,\n StorageAccountId = exampleAccount.Id,\n ApplicationInsightsId = example.Id,\n Identity = new Azure.MachineLearning.Inputs.WorkspaceIdentityArgs\n {\n Type = \"example-value\",\n },\n });\n\n var exampleClusterTrustedAccessRoleBinding = new Azure.ContainerService.ClusterTrustedAccessRoleBinding(\"example\", new()\n {\n KubernetesClusterId = exampleKubernetesCluster.Id,\n Name = \"example\",\n Roles = \"example-value\",\n SourceResourceId = exampleWorkspace.Id,\n });\n\n});\n```\n```go\npackage main\n\nimport (\n\t\"github.com/pulumi/pulumi-azure/sdk/v5/go/azure/appinsights\"\n\t\"github.com/pulumi/pulumi-azure/sdk/v5/go/azure/containerservice\"\n\t\"github.com/pulumi/pulumi-azure/sdk/v5/go/azure/core\"\n\t\"github.com/pulumi/pulumi-azure/sdk/v5/go/azure/keyvault\"\n\t\"github.com/pulumi/pulumi-azure/sdk/v5/go/azure/machinelearning\"\n\t\"github.com/pulumi/pulumi-azure/sdk/v5/go/azure/storage\"\n\t\"github.com/pulumi/pulumi/sdk/v3/go/pulumi\"\n)\n\nfunc main() {\n\tpulumi.Run(func(ctx *pulumi.Context) error {\n\t\texampleResourceGroup, err := core.NewResourceGroup(ctx, \"example\", \u0026core.ResourceGroupArgs{\n\t\t\tName: pulumi.String(\"example-resources\"),\n\t\t\tLocation: pulumi.String(\"West Europe\"),\n\t\t})\n\t\tif err != nil {\n\t\t\treturn err\n\t\t}\n\t\texample, err := appinsights.NewInsights(ctx, \"example\", \u0026appinsights.InsightsArgs{\n\t\t\tName: pulumi.String(\"example\"),\n\t\t\tLocation: exampleResourceGroup.Location,\n\t\t\tResourceGroupName: exampleResourceGroup.Name,\n\t\t\tApplicationType: pulumi.String(\"example-value\"),\n\t\t})\n\t\tif err != nil {\n\t\t\treturn err\n\t\t}\n\t\t_, err = core.GetClientConfig(ctx, nil, nil)\n\t\tif err != nil {\n\t\t\treturn err\n\t\t}\n\t\texampleKeyVault, err := keyvault.NewKeyVault(ctx, \"example\", \u0026keyvault.KeyVaultArgs{\n\t\t\tName: pulumi.String(\"example\"),\n\t\t\tLocation: exampleResourceGroup.Location,\n\t\t\tResourceGroupName: exampleResourceGroup.Name,\n\t\t\tTenantId: pulumi.Any(exampleAzurermClientConfig.TenantId),\n\t\t\tSkuName: pulumi.String(\"example-value\"),\n\t\t\tSoftDeleteRetentionDays: pulumi.Int(\"example-value\"),\n\t\t})\n\t\tif err != nil {\n\t\t\treturn err\n\t\t}\n\t\t_, err = keyvault.NewAccessPolicy(ctx, \"example\", \u0026keyvault.AccessPolicyArgs{\n\t\t\tKeyVaultId: exampleKeyVault.ID(),\n\t\t\tTenantId: pulumi.Any(exampleAzurermClientConfig.TenantId),\n\t\t\tObjectId: pulumi.Any(exampleAzurermClientConfig.ObjectId),\n\t\t\tKeyPermissions: pulumi.StringArray(\"example-value\"),\n\t\t})\n\t\tif err != nil {\n\t\t\treturn err\n\t\t}\n\t\texampleKubernetesCluster, err := containerservice.NewKubernetesCluster(ctx, \"example\", \u0026containerservice.KubernetesClusterArgs{\n\t\t\tName: pulumi.String(\"example\"),\n\t\t\tLocation: exampleResourceGroup.Location,\n\t\t\tResourceGroupName: exampleResourceGroup.Name,\n\t\t\tDnsPrefix: pulumi.String(\"acctestaksexample\"),\n\t\t\tDefaultNodePool: \u0026containerservice.KubernetesClusterDefaultNodePoolArgs{\n\t\t\t\tName: pulumi.String(\"example-value\"),\n\t\t\t\tNodeCount: pulumi.Int(\"example-value\"),\n\t\t\t\tVmSize: pulumi.String(\"example-value\"),\n\t\t\t\tUpgradeSettings: \u0026containerservice.KubernetesClusterDefaultNodePoolUpgradeSettingsArgs{\n\t\t\t\t\tMaxSurge: pulumi.String(\"example-value\"),\n\t\t\t\t},\n\t\t\t},\n\t\t\tIdentity: \u0026containerservice.KubernetesClusterIdentityArgs{\n\t\t\t\tType: pulumi.String(\"example-value\"),\n\t\t\t},\n\t\t})\n\t\tif err != nil {\n\t\t\treturn err\n\t\t}\n\t\texampleAccount, err := storage.NewAccount(ctx, \"example\", \u0026storage.AccountArgs{\n\t\t\tName: pulumi.String(\"example\"),\n\t\t\tLocation: exampleResourceGroup.Location,\n\t\t\tResourceGroupName: exampleResourceGroup.Name,\n\t\t\tAccountTier: pulumi.String(\"example-value\"),\n\t\t\tAccountReplicationType: pulumi.String(\"example-value\"),\n\t\t})\n\t\tif err != nil {\n\t\t\treturn err\n\t\t}\n\t\texampleWorkspace, err := machinelearning.NewWorkspace(ctx, \"example\", \u0026machinelearning.WorkspaceArgs{\n\t\t\tName: pulumi.String(\"example\"),\n\t\t\tLocation: exampleResourceGroup.Location,\n\t\t\tResourceGroupName: exampleResourceGroup.Name,\n\t\t\tKeyVaultId: exampleKeyVault.ID(),\n\t\t\tStorageAccountId: exampleAccount.ID(),\n\t\t\tApplicationInsightsId: example.ID(),\n\t\t\tIdentity: \u0026machinelearning.WorkspaceIdentityArgs{\n\t\t\t\tType: pulumi.String(\"example-value\"),\n\t\t\t},\n\t\t})\n\t\tif err != nil {\n\t\t\treturn err\n\t\t}\n\t\t_, err = containerservice.NewClusterTrustedAccessRoleBinding(ctx, \"example\", \u0026containerservice.ClusterTrustedAccessRoleBindingArgs{\n\t\t\tKubernetesClusterId: exampleKubernetesCluster.ID(),\n\t\t\tName: pulumi.String(\"example\"),\n\t\t\tRoles: pulumi.StringArray(\"example-value\"),\n\t\t\tSourceResourceId: exampleWorkspace.ID(),\n\t\t})\n\t\tif err != nil {\n\t\t\treturn err\n\t\t}\n\t\treturn nil\n\t})\n}\n```\n```java\npackage generated_program;\n\nimport com.pulumi.Context;\nimport com.pulumi.Pulumi;\nimport com.pulumi.core.Output;\nimport com.pulumi.azure.core.ResourceGroup;\nimport com.pulumi.azure.core.ResourceGroupArgs;\nimport com.pulumi.azure.appinsights.Insights;\nimport com.pulumi.azure.appinsights.InsightsArgs;\nimport com.pulumi.azure.core.CoreFunctions;\nimport com.pulumi.azure.keyvault.KeyVault;\nimport com.pulumi.azure.keyvault.KeyVaultArgs;\nimport com.pulumi.azure.keyvault.AccessPolicy;\nimport com.pulumi.azure.keyvault.AccessPolicyArgs;\nimport com.pulumi.azure.containerservice.KubernetesCluster;\nimport com.pulumi.azure.containerservice.KubernetesClusterArgs;\nimport com.pulumi.azure.containerservice.inputs.KubernetesClusterDefaultNodePoolArgs;\nimport com.pulumi.azure.containerservice.inputs.KubernetesClusterDefaultNodePoolUpgradeSettingsArgs;\nimport com.pulumi.azure.containerservice.inputs.KubernetesClusterIdentityArgs;\nimport com.pulumi.azure.storage.Account;\nimport com.pulumi.azure.storage.AccountArgs;\nimport com.pulumi.azure.machinelearning.Workspace;\nimport com.pulumi.azure.machinelearning.WorkspaceArgs;\nimport com.pulumi.azure.machinelearning.inputs.WorkspaceIdentityArgs;\nimport com.pulumi.azure.containerservice.ClusterTrustedAccessRoleBinding;\nimport com.pulumi.azure.containerservice.ClusterTrustedAccessRoleBindingArgs;\nimport java.util.List;\nimport java.util.ArrayList;\nimport java.util.Map;\nimport java.io.File;\nimport java.nio.file.Files;\nimport java.nio.file.Paths;\n\npublic class App {\n public static void main(String[] args) {\n Pulumi.run(App::stack);\n }\n\n public static void stack(Context ctx) {\n var exampleResourceGroup = new ResourceGroup(\"exampleResourceGroup\", ResourceGroupArgs.builder() \n .name(\"example-resources\")\n .location(\"West Europe\")\n .build());\n\n var example = new Insights(\"example\", InsightsArgs.builder() \n .name(\"example\")\n .location(exampleResourceGroup.location())\n .resourceGroupName(exampleResourceGroup.name())\n .applicationType(\"example-value\")\n .build());\n\n final var test = CoreFunctions.getClientConfig();\n\n var exampleKeyVault = new KeyVault(\"exampleKeyVault\", KeyVaultArgs.builder() \n .name(\"example\")\n .location(exampleResourceGroup.location())\n .resourceGroupName(exampleResourceGroup.name())\n .tenantId(exampleAzurermClientConfig.tenantId())\n .skuName(\"example-value\")\n .softDeleteRetentionDays(\"example-value\")\n .build());\n\n var exampleAccessPolicy = new AccessPolicy(\"exampleAccessPolicy\", AccessPolicyArgs.builder() \n .keyVaultId(exampleKeyVault.id())\n .tenantId(exampleAzurermClientConfig.tenantId())\n .objectId(exampleAzurermClientConfig.objectId())\n .keyPermissions(\"example-value\")\n .build());\n\n var exampleKubernetesCluster = new KubernetesCluster(\"exampleKubernetesCluster\", KubernetesClusterArgs.builder() \n .name(\"example\")\n .location(exampleResourceGroup.location())\n .resourceGroupName(exampleResourceGroup.name())\n .dnsPrefix(\"acctestaksexample\")\n .defaultNodePool(KubernetesClusterDefaultNodePoolArgs.builder()\n .name(\"example-value\")\n .nodeCount(\"example-value\")\n .vmSize(\"example-value\")\n .upgradeSettings(KubernetesClusterDefaultNodePoolUpgradeSettingsArgs.builder()\n .maxSurge(\"example-value\")\n .build())\n .build())\n .identity(KubernetesClusterIdentityArgs.builder()\n .type(\"example-value\")\n .build())\n .build());\n\n var exampleAccount = new Account(\"exampleAccount\", AccountArgs.builder() \n .name(\"example\")\n .location(exampleResourceGroup.location())\n .resourceGroupName(exampleResourceGroup.name())\n .accountTier(\"example-value\")\n .accountReplicationType(\"example-value\")\n .build());\n\n var exampleWorkspace = new Workspace(\"exampleWorkspace\", WorkspaceArgs.builder() \n .name(\"example\")\n .location(exampleResourceGroup.location())\n .resourceGroupName(exampleResourceGroup.name())\n .keyVaultId(exampleKeyVault.id())\n .storageAccountId(exampleAccount.id())\n .applicationInsightsId(example.id())\n .identity(WorkspaceIdentityArgs.builder()\n .type(\"example-value\")\n .build())\n .build());\n\n var exampleClusterTrustedAccessRoleBinding = new ClusterTrustedAccessRoleBinding(\"exampleClusterTrustedAccessRoleBinding\", ClusterTrustedAccessRoleBindingArgs.builder() \n .kubernetesClusterId(exampleKubernetesCluster.id())\n .name(\"example\")\n .roles(\"example-value\")\n .sourceResourceId(exampleWorkspace.id())\n .build());\n\n }\n}\n```\n```yaml\nresources:\n example:\n type: azure:appinsights:Insights\n properties:\n name: example\n location: ${exampleResourceGroup.location}\n resourceGroupName: ${exampleResourceGroup.name}\n applicationType: example-value\n exampleKeyVault:\n type: azure:keyvault:KeyVault\n name: example\n properties:\n name: example\n location: ${exampleResourceGroup.location}\n resourceGroupName: ${exampleResourceGroup.name}\n tenantId: ${exampleAzurermClientConfig.tenantId}\n skuName: example-value\n softDeleteRetentionDays: example-value\n exampleAccessPolicy:\n type: azure:keyvault:AccessPolicy\n name: example\n properties:\n keyVaultId: ${exampleKeyVault.id}\n tenantId: ${exampleAzurermClientConfig.tenantId}\n objectId: ${exampleAzurermClientConfig.objectId}\n keyPermissions: example-value\n exampleKubernetesCluster:\n type: azure:containerservice:KubernetesCluster\n name: example\n properties:\n name: example\n location: ${exampleResourceGroup.location}\n resourceGroupName: ${exampleResourceGroup.name}\n dnsPrefix: acctestaksexample\n defaultNodePool:\n name: example-value\n nodeCount: example-value\n vmSize: example-value\n upgradeSettings:\n maxSurge: example-value\n identity:\n type: example-value\n exampleWorkspace:\n type: azure:machinelearning:Workspace\n name: example\n properties:\n name: example\n location: ${exampleResourceGroup.location}\n resourceGroupName: ${exampleResourceGroup.name}\n keyVaultId: ${exampleKeyVault.id}\n storageAccountId: ${exampleAccount.id}\n applicationInsightsId: ${example.id}\n identity:\n type: example-value\n exampleResourceGroup:\n type: azure:core:ResourceGroup\n name: example\n properties:\n name: example-resources\n location: West Europe\n exampleAccount:\n type: azure:storage:Account\n name: example\n properties:\n name: example\n location: ${exampleResourceGroup.location}\n resourceGroupName: ${exampleResourceGroup.name}\n accountTier: example-value\n accountReplicationType: example-value\n exampleClusterTrustedAccessRoleBinding:\n type: azure:containerservice:ClusterTrustedAccessRoleBinding\n name: example\n properties:\n kubernetesClusterId: ${exampleKubernetesCluster.id}\n name: example\n roles: example-value\n sourceResourceId: ${exampleWorkspace.id}\nvariables:\n test:\n fn::invoke:\n Function: azure:core:getClientConfig\n Arguments: {}\n```\n\u003c!--End PulumiCodeChooser --\u003e\n\n## Import\n\nAn existing Kubernetes Cluster Trusted Access Role Binding can be imported into Terraform using the `resource id`, e.g.\n\n```sh\n$ pulumi import azure:containerservice/clusterTrustedAccessRoleBinding:ClusterTrustedAccessRoleBinding example /subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.ContainerService/managedClusters/{managedClusterName}/trustedAccessRoleBindings/{trustedAccessRoleBindingName}\n```\n\n* Where `{subscriptionId}` is the ID of the Azure Subscription where the Kubernetes Cluster Trusted Access Role Binding exists. For example `12345678-1234-9876-4563-123456789012`.\n\n* Where `{resourceGroupName}` is the name of Resource Group where this Kubernetes Cluster Trusted Access Role Binding exists. For example `example-resource-group`.\n\n* Where `{managedClusterName}` is the name of the Managed Cluster. For example `managedClusterValue`.\n\n* Where `{trustedAccessRoleBindingName}` is the name of the Trusted Access Role Binding. For example `trustedAccessRoleBindingValue`.\n\n", "properties": { "kubernetesClusterId": { "type": "string", @@ -149726,7 +149750,7 @@ } }, "azure:containerservice/fleetMember:FleetMember": { - "description": "\u003c!-- Note: This documentation is generated. Any manual changes will be overwritten --\u003e\n\nManages a Kubernetes Fleet Member.\n\n## Example Usage\n\n\u003c!--Start PulumiCodeChooser --\u003e\n```java\npackage generated_program;\n\nimport com.pulumi.Context;\nimport com.pulumi.Pulumi;\nimport com.pulumi.core.Output;\nimport com.pulumi.azure.core.ResourceGroup;\nimport com.pulumi.azure.core.ResourceGroupArgs;\nimport com.pulumi.azure.containerservice.KubernetesCluster;\nimport com.pulumi.azure.containerservice.KubernetesClusterArgs;\nimport com.pulumi.azure.containerservice.inputs.KubernetesClusterDefaultNodePoolArgs;\nimport com.pulumi.azure.containerservice.inputs.KubernetesClusterIdentityArgs;\nimport com.pulumi.azure.containerservice.KubernetesFleetManager;\nimport com.pulumi.azure.containerservice.KubernetesFleetManagerArgs;\nimport com.pulumi.azure.containerservice.FleetMember;\nimport com.pulumi.azure.containerservice.FleetMemberArgs;\nimport java.util.List;\nimport java.util.ArrayList;\nimport java.util.Map;\nimport java.io.File;\nimport java.nio.file.Files;\nimport java.nio.file.Paths;\n\npublic class App {\n public static void main(String[] args) {\n Pulumi.run(App::stack);\n }\n\n public static void stack(Context ctx) {\n var exampleResourceGroup = new ResourceGroup(\"exampleResourceGroup\", ResourceGroupArgs.builder() \n .name(\"example-resources\")\n .location(\"West Europe\")\n .build());\n\n var example = new KubernetesCluster(\"example\", KubernetesClusterArgs.builder() \n .name(\"example\")\n .location(exampleResourceGroup.location())\n .resourceGroupName(exampleResourceGroup.name())\n .dnsPrefix(\"acctestaksexample\")\n .defaultNodePool(KubernetesClusterDefaultNodePoolArgs.builder()\n .name(\"example-value\")\n .nodeCount(\"example-value\")\n .vmSize(\"example-value\")\n .build())\n .upgradeSettings(%!v(PANIC=Format method: runtime error: invalid memory address or nil pointer dereference))\n .identity(KubernetesClusterIdentityArgs.builder()\n .type(\"example-value\")\n .build())\n .build());\n\n var exampleKubernetesFleetManager = new KubernetesFleetManager(\"exampleKubernetesFleetManager\", KubernetesFleetManagerArgs.builder() \n .name(\"example\")\n .location(exampleResourceGroup.location())\n .resourceGroupName(exampleResourceGroup.name())\n .build());\n\n var exampleFleetMember = new FleetMember(\"exampleFleetMember\", FleetMemberArgs.builder() \n .kubernetesClusterId(example.id())\n .kubernetesFleetId(exampleKubernetesFleetManager.id())\n .name(\"example\")\n .build());\n\n }\n}\n```\n```yaml\nresources:\n example:\n type: azure:containerservice:KubernetesCluster\n properties:\n name: example\n location: ${exampleResourceGroup.location}\n resourceGroupName: ${exampleResourceGroup.name}\n dnsPrefix: acctestaksexample\n defaultNodePool:\n name: example-value\n nodeCount: example-value\n vmSize: example-value\n upgradeSettings:\n - maxSurge: example-value\n identity:\n type: example-value\n exampleKubernetesFleetManager:\n type: azure:containerservice:KubernetesFleetManager\n name: example\n properties:\n name: example\n location: ${exampleResourceGroup.location}\n resourceGroupName: ${exampleResourceGroup.name}\n exampleResourceGroup:\n type: azure:core:ResourceGroup\n name: example\n properties:\n name: example-resources\n location: West Europe\n exampleFleetMember:\n type: azure:containerservice:FleetMember\n name: example\n properties:\n kubernetesClusterId: ${example.id}\n kubernetesFleetId: ${exampleKubernetesFleetManager.id}\n name: example\n```\n\u003c!--End PulumiCodeChooser --\u003e\n\n## Import\n\nAn existing Kubernetes Fleet Member can be imported into Terraform using the `resource id`, e.g.\n\n```sh\n$ pulumi import azure:containerservice/fleetMember:FleetMember example /subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.ContainerService/fleets/{fleetName}/members/{memberName}\n```\n\n* Where `{subscriptionId}` is the ID of the Azure Subscription where the Kubernetes Fleet Member exists. For example `12345678-1234-9876-4563-123456789012`.\n\n* Where `{resourceGroupName}` is the name of Resource Group where this Kubernetes Fleet Member exists. For example `example-resource-group`.\n\n* Where `{fleetName}` is the name of the Fleet. For example `fleetValue`.\n\n* Where `{memberName}` is the name of the Member. For example `memberValue`.\n\n", + "description": "\u003c!-- Note: This documentation is generated. Any manual changes will be overwritten --\u003e\n\nManages a Kubernetes Fleet Member.\n\n## Example Usage\n\n\u003c!--Start PulumiCodeChooser --\u003e\n```typescript\nimport * as pulumi from \"@pulumi/pulumi\";\nimport * as azure from \"@pulumi/azure\";\n\nconst exampleResourceGroup = new azure.core.ResourceGroup(\"example\", {\n name: \"example-resources\",\n location: \"West Europe\",\n});\nconst example = new azure.containerservice.KubernetesCluster(\"example\", {\n name: \"example\",\n location: exampleResourceGroup.location,\n resourceGroupName: exampleResourceGroup.name,\n dnsPrefix: \"acctestaksexample\",\n defaultNodePool: {\n name: \"example-value\",\n nodeCount: \"example-value\",\n vmSize: \"example-value\",\n upgradeSettings: {\n maxSurge: \"example-value\",\n },\n },\n identity: {\n type: \"example-value\",\n },\n});\nconst exampleKubernetesFleetManager = new azure.containerservice.KubernetesFleetManager(\"example\", {\n name: \"example\",\n location: exampleResourceGroup.location,\n resourceGroupName: exampleResourceGroup.name,\n});\nconst exampleFleetMember = new azure.containerservice.FleetMember(\"example\", {\n kubernetesClusterId: example.id,\n kubernetesFleetId: exampleKubernetesFleetManager.id,\n name: \"example\",\n});\n```\n```python\nimport pulumi\nimport pulumi_azure as azure\n\nexample_resource_group = azure.core.ResourceGroup(\"example\",\n name=\"example-resources\",\n location=\"West Europe\")\nexample = azure.containerservice.KubernetesCluster(\"example\",\n name=\"example\",\n location=example_resource_group.location,\n resource_group_name=example_resource_group.name,\n dns_prefix=\"acctestaksexample\",\n default_node_pool=azure.containerservice.KubernetesClusterDefaultNodePoolArgs(\n name=\"example-value\",\n node_count=\"example-value\",\n vm_size=\"example-value\",\n upgrade_settings=azure.containerservice.KubernetesClusterDefaultNodePoolUpgradeSettingsArgs(\n max_surge=\"example-value\",\n ),\n ),\n identity=azure.containerservice.KubernetesClusterIdentityArgs(\n type=\"example-value\",\n ))\nexample_kubernetes_fleet_manager = azure.containerservice.KubernetesFleetManager(\"example\",\n name=\"example\",\n location=example_resource_group.location,\n resource_group_name=example_resource_group.name)\nexample_fleet_member = azure.containerservice.FleetMember(\"example\",\n kubernetes_cluster_id=example.id,\n kubernetes_fleet_id=example_kubernetes_fleet_manager.id,\n name=\"example\")\n```\n```csharp\nusing System.Collections.Generic;\nusing System.Linq;\nusing Pulumi;\nusing Azure = Pulumi.Azure;\n\nreturn await Deployment.RunAsync(() =\u003e \n{\n var exampleResourceGroup = new Azure.Core.ResourceGroup(\"example\", new()\n {\n Name = \"example-resources\",\n Location = \"West Europe\",\n });\n\n var example = new Azure.ContainerService.KubernetesCluster(\"example\", new()\n {\n Name = \"example\",\n Location = exampleResourceGroup.Location,\n ResourceGroupName = exampleResourceGroup.Name,\n DnsPrefix = \"acctestaksexample\",\n DefaultNodePool = new Azure.ContainerService.Inputs.KubernetesClusterDefaultNodePoolArgs\n {\n Name = \"example-value\",\n NodeCount = \"example-value\",\n VmSize = \"example-value\",\n UpgradeSettings = new Azure.ContainerService.Inputs.KubernetesClusterDefaultNodePoolUpgradeSettingsArgs\n {\n MaxSurge = \"example-value\",\n },\n },\n Identity = new Azure.ContainerService.Inputs.KubernetesClusterIdentityArgs\n {\n Type = \"example-value\",\n },\n });\n\n var exampleKubernetesFleetManager = new Azure.ContainerService.KubernetesFleetManager(\"example\", new()\n {\n Name = \"example\",\n Location = exampleResourceGroup.Location,\n ResourceGroupName = exampleResourceGroup.Name,\n });\n\n var exampleFleetMember = new Azure.ContainerService.FleetMember(\"example\", new()\n {\n KubernetesClusterId = example.Id,\n KubernetesFleetId = exampleKubernetesFleetManager.Id,\n Name = \"example\",\n });\n\n});\n```\n```go\npackage main\n\nimport (\n\t\"github.com/pulumi/pulumi-azure/sdk/v5/go/azure/containerservice\"\n\t\"github.com/pulumi/pulumi-azure/sdk/v5/go/azure/core\"\n\t\"github.com/pulumi/pulumi/sdk/v3/go/pulumi\"\n)\n\nfunc main() {\n\tpulumi.Run(func(ctx *pulumi.Context) error {\n\t\texampleResourceGroup, err := core.NewResourceGroup(ctx, \"example\", \u0026core.ResourceGroupArgs{\n\t\t\tName: pulumi.String(\"example-resources\"),\n\t\t\tLocation: pulumi.String(\"West Europe\"),\n\t\t})\n\t\tif err != nil {\n\t\t\treturn err\n\t\t}\n\t\texample, err := containerservice.NewKubernetesCluster(ctx, \"example\", \u0026containerservice.KubernetesClusterArgs{\n\t\t\tName: pulumi.String(\"example\"),\n\t\t\tLocation: exampleResourceGroup.Location,\n\t\t\tResourceGroupName: exampleResourceGroup.Name,\n\t\t\tDnsPrefix: pulumi.String(\"acctestaksexample\"),\n\t\t\tDefaultNodePool: \u0026containerservice.KubernetesClusterDefaultNodePoolArgs{\n\t\t\t\tName: pulumi.String(\"example-value\"),\n\t\t\t\tNodeCount: pulumi.Int(\"example-value\"),\n\t\t\t\tVmSize: pulumi.String(\"example-value\"),\n\t\t\t\tUpgradeSettings: \u0026containerservice.KubernetesClusterDefaultNodePoolUpgradeSettingsArgs{\n\t\t\t\t\tMaxSurge: pulumi.String(\"example-value\"),\n\t\t\t\t},\n\t\t\t},\n\t\t\tIdentity: \u0026containerservice.KubernetesClusterIdentityArgs{\n\t\t\t\tType: pulumi.String(\"example-value\"),\n\t\t\t},\n\t\t})\n\t\tif err != nil {\n\t\t\treturn err\n\t\t}\n\t\texampleKubernetesFleetManager, err := containerservice.NewKubernetesFleetManager(ctx, \"example\", \u0026containerservice.KubernetesFleetManagerArgs{\n\t\t\tName: pulumi.String(\"example\"),\n\t\t\tLocation: exampleResourceGroup.Location,\n\t\t\tResourceGroupName: exampleResourceGroup.Name,\n\t\t})\n\t\tif err != nil {\n\t\t\treturn err\n\t\t}\n\t\t_, err = containerservice.NewFleetMember(ctx, \"example\", \u0026containerservice.FleetMemberArgs{\n\t\t\tKubernetesClusterId: example.ID(),\n\t\t\tKubernetesFleetId: exampleKubernetesFleetManager.ID(),\n\t\t\tName: pulumi.String(\"example\"),\n\t\t})\n\t\tif err != nil {\n\t\t\treturn err\n\t\t}\n\t\treturn nil\n\t})\n}\n```\n```java\npackage generated_program;\n\nimport com.pulumi.Context;\nimport com.pulumi.Pulumi;\nimport com.pulumi.core.Output;\nimport com.pulumi.azure.core.ResourceGroup;\nimport com.pulumi.azure.core.ResourceGroupArgs;\nimport com.pulumi.azure.containerservice.KubernetesCluster;\nimport com.pulumi.azure.containerservice.KubernetesClusterArgs;\nimport com.pulumi.azure.containerservice.inputs.KubernetesClusterDefaultNodePoolArgs;\nimport com.pulumi.azure.containerservice.inputs.KubernetesClusterDefaultNodePoolUpgradeSettingsArgs;\nimport com.pulumi.azure.containerservice.inputs.KubernetesClusterIdentityArgs;\nimport com.pulumi.azure.containerservice.KubernetesFleetManager;\nimport com.pulumi.azure.containerservice.KubernetesFleetManagerArgs;\nimport com.pulumi.azure.containerservice.FleetMember;\nimport com.pulumi.azure.containerservice.FleetMemberArgs;\nimport java.util.List;\nimport java.util.ArrayList;\nimport java.util.Map;\nimport java.io.File;\nimport java.nio.file.Files;\nimport java.nio.file.Paths;\n\npublic class App {\n public static void main(String[] args) {\n Pulumi.run(App::stack);\n }\n\n public static void stack(Context ctx) {\n var exampleResourceGroup = new ResourceGroup(\"exampleResourceGroup\", ResourceGroupArgs.builder() \n .name(\"example-resources\")\n .location(\"West Europe\")\n .build());\n\n var example = new KubernetesCluster(\"example\", KubernetesClusterArgs.builder() \n .name(\"example\")\n .location(exampleResourceGroup.location())\n .resourceGroupName(exampleResourceGroup.name())\n .dnsPrefix(\"acctestaksexample\")\n .defaultNodePool(KubernetesClusterDefaultNodePoolArgs.builder()\n .name(\"example-value\")\n .nodeCount(\"example-value\")\n .vmSize(\"example-value\")\n .upgradeSettings(KubernetesClusterDefaultNodePoolUpgradeSettingsArgs.builder()\n .maxSurge(\"example-value\")\n .build())\n .build())\n .identity(KubernetesClusterIdentityArgs.builder()\n .type(\"example-value\")\n .build())\n .build());\n\n var exampleKubernetesFleetManager = new KubernetesFleetManager(\"exampleKubernetesFleetManager\", KubernetesFleetManagerArgs.builder() \n .name(\"example\")\n .location(exampleResourceGroup.location())\n .resourceGroupName(exampleResourceGroup.name())\n .build());\n\n var exampleFleetMember = new FleetMember(\"exampleFleetMember\", FleetMemberArgs.builder() \n .kubernetesClusterId(example.id())\n .kubernetesFleetId(exampleKubernetesFleetManager.id())\n .name(\"example\")\n .build());\n\n }\n}\n```\n```yaml\nresources:\n example:\n type: azure:containerservice:KubernetesCluster\n properties:\n name: example\n location: ${exampleResourceGroup.location}\n resourceGroupName: ${exampleResourceGroup.name}\n dnsPrefix: acctestaksexample\n defaultNodePool:\n name: example-value\n nodeCount: example-value\n vmSize: example-value\n upgradeSettings:\n maxSurge: example-value\n identity:\n type: example-value\n exampleKubernetesFleetManager:\n type: azure:containerservice:KubernetesFleetManager\n name: example\n properties:\n name: example\n location: ${exampleResourceGroup.location}\n resourceGroupName: ${exampleResourceGroup.name}\n exampleResourceGroup:\n type: azure:core:ResourceGroup\n name: example\n properties:\n name: example-resources\n location: West Europe\n exampleFleetMember:\n type: azure:containerservice:FleetMember\n name: example\n properties:\n kubernetesClusterId: ${example.id}\n kubernetesFleetId: ${exampleKubernetesFleetManager.id}\n name: example\n```\n\u003c!--End PulumiCodeChooser --\u003e\n\n## Import\n\nAn existing Kubernetes Fleet Member can be imported into Terraform using the `resource id`, e.g.\n\n```sh\n$ pulumi import azure:containerservice/fleetMember:FleetMember example /subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.ContainerService/fleets/{fleetName}/members/{memberName}\n```\n\n* Where `{subscriptionId}` is the ID of the Azure Subscription where the Kubernetes Fleet Member exists. For example `12345678-1234-9876-4563-123456789012`.\n\n* Where `{resourceGroupName}` is the name of Resource Group where this Kubernetes Fleet Member exists. For example `example-resource-group`.\n\n* Where `{fleetName}` is the name of the Fleet. For example `fleetValue`.\n\n* Where `{memberName}` is the name of the Member. For example `memberValue`.\n\n", "properties": { "group": { "type": "string", @@ -157509,6 +157533,10 @@ "type": "boolean", "description": "Enable Analytical Storage option for this Cosmos DB account. Defaults to `false`. Enabling and then disabling analytical storage forces a new resource to be created.\n" }, + "automaticFailoverEnabled": { + "type": "boolean", + "description": "Enable automatic failover for this Cosmos DB account.\n" + }, "backup": { "$ref": "#/types/azure:cosmosdb/AccountBackup:AccountBackup", "description": "A `backup` block as defined below.\n" @@ -157529,7 +157557,7 @@ "items": { "type": "string" }, - "description": "A list of connection strings available for this CosmosDB account.\n", + "deprecationMessage": "This property has been superseded by the primary and secondary connection strings for sql, mongodb and readonly and will be removed in v4.0 of the AzureRM provider", "secret": true }, "consistencyPolicy": { @@ -157550,20 +157578,24 @@ }, "enableAutomaticFailover": { "type": "boolean", - "description": "Enable automatic failover for this Cosmos DB account.\n" + "deprecationMessage": "This property has been superseded by `automatic_failover_enabled` and will be removed in v4.0 of the AzureRM Provider" }, "enableFreeTier": { "type": "boolean", - "description": "Enable the Free Tier pricing option for this Cosmos DB account. Defaults to `false`. Changing this forces a new resource to be created.\n" + "deprecationMessage": "This property has been superseded by `free_tier_enabled` and will be removed in v4.0 of the AzureRM Provider" }, "enableMultipleWriteLocations": { "type": "boolean", - "description": "Enable multiple write locations for this Cosmos DB account.\n" + "deprecationMessage": "This property has been superseded by `multiple_write_locations_enabled` and will be removed in v4.0 of the AzureRM Provider" }, "endpoint": { "type": "string", "description": "The endpoint used to connect to the CosmosDB account.\n" }, + "freeTierEnabled": { + "type": "boolean", + "description": "Enable the Free Tier pricing option for this Cosmos DB account. Defaults to `false`. Changing this forces a new resource to be created.\n" + }, "geoLocations": { "type": "array", "items": { @@ -157607,6 +157639,10 @@ "type": "string", "description": "The Server Version of a MongoDB account. Possible values are `4.2`, `4.0`, `3.6`, and `3.2`.\n" }, + "multipleWriteLocationsEnabled": { + "type": "boolean", + "description": "Enable multiple write locations for this Cosmos DB account.\n" + }, "name": { "type": "string", "description": "Specifies the name of the CosmosDB Account. Changing this forces a new resource to be created.\n" @@ -157733,17 +157769,23 @@ }, "required": [ "analyticalStorage", + "automaticFailoverEnabled", "backup", "capabilities", "capacity", "connectionStrings", "consistencyPolicy", "createMode", + "enableAutomaticFailover", + "enableFreeTier", + "enableMultipleWriteLocations", "endpoint", + "freeTierEnabled", "geoLocations", "location", "minimalTlsVersion", "mongoServerVersion", + "multipleWriteLocationsEnabled", "name", "offerType", "primaryKey", @@ -157775,6 +157817,10 @@ "type": "boolean", "description": "Enable Analytical Storage option for this Cosmos DB account. Defaults to `false`. Enabling and then disabling analytical storage forces a new resource to be created.\n" }, + "automaticFailoverEnabled": { + "type": "boolean", + "description": "Enable automatic failover for this Cosmos DB account.\n" + }, "backup": { "$ref": "#/types/azure:cosmosdb/AccountBackup:AccountBackup", "description": "A `backup` block as defined below.\n" @@ -157809,16 +157855,19 @@ }, "enableAutomaticFailover": { "type": "boolean", - "description": "Enable automatic failover for this Cosmos DB account.\n" + "deprecationMessage": "This property has been superseded by `automatic_failover_enabled` and will be removed in v4.0 of the AzureRM Provider" }, "enableFreeTier": { "type": "boolean", - "description": "Enable the Free Tier pricing option for this Cosmos DB account. Defaults to `false`. Changing this forces a new resource to be created.\n", - "willReplaceOnChanges": true + "deprecationMessage": "This property has been superseded by `free_tier_enabled` and will be removed in v4.0 of the AzureRM Provider" }, "enableMultipleWriteLocations": { "type": "boolean", - "description": "Enable multiple write locations for this Cosmos DB account.\n" + "deprecationMessage": "This property has been superseded by `multiple_write_locations_enabled` and will be removed in v4.0 of the AzureRM Provider" + }, + "freeTierEnabled": { + "type": "boolean", + "description": "Enable the Free Tier pricing option for this Cosmos DB account. Defaults to `false`. Changing this forces a new resource to be created.\n" }, "geoLocations": { "type": "array", @@ -157866,6 +157915,10 @@ "type": "string", "description": "The Server Version of a MongoDB account. Possible values are `4.2`, `4.0`, `3.6`, and `3.2`.\n" }, + "multipleWriteLocationsEnabled": { + "type": "boolean", + "description": "Enable multiple write locations for this Cosmos DB account.\n" + }, "name": { "type": "string", "description": "Specifies the name of the CosmosDB Account. Changing this forces a new resource to be created.\n", @@ -157939,6 +157992,10 @@ "type": "boolean", "description": "Enable Analytical Storage option for this Cosmos DB account. Defaults to `false`. Enabling and then disabling analytical storage forces a new resource to be created.\n" }, + "automaticFailoverEnabled": { + "type": "boolean", + "description": "Enable automatic failover for this Cosmos DB account.\n" + }, "backup": { "$ref": "#/types/azure:cosmosdb/AccountBackup:AccountBackup", "description": "A `backup` block as defined below.\n" @@ -157959,7 +158016,7 @@ "items": { "type": "string" }, - "description": "A list of connection strings available for this CosmosDB account.\n", + "deprecationMessage": "This property has been superseded by the primary and secondary connection strings for sql, mongodb and readonly and will be removed in v4.0 of the AzureRM provider", "secret": true }, "consistencyPolicy": { @@ -157981,21 +158038,24 @@ }, "enableAutomaticFailover": { "type": "boolean", - "description": "Enable automatic failover for this Cosmos DB account.\n" + "deprecationMessage": "This property has been superseded by `automatic_failover_enabled` and will be removed in v4.0 of the AzureRM Provider" }, "enableFreeTier": { "type": "boolean", - "description": "Enable the Free Tier pricing option for this Cosmos DB account. Defaults to `false`. Changing this forces a new resource to be created.\n", - "willReplaceOnChanges": true + "deprecationMessage": "This property has been superseded by `free_tier_enabled` and will be removed in v4.0 of the AzureRM Provider" }, "enableMultipleWriteLocations": { "type": "boolean", - "description": "Enable multiple write locations for this Cosmos DB account.\n" + "deprecationMessage": "This property has been superseded by `multiple_write_locations_enabled` and will be removed in v4.0 of the AzureRM Provider" }, "endpoint": { "type": "string", "description": "The endpoint used to connect to the CosmosDB account.\n" }, + "freeTierEnabled": { + "type": "boolean", + "description": "Enable the Free Tier pricing option for this Cosmos DB account. Defaults to `false`. Changing this forces a new resource to be created.\n" + }, "geoLocations": { "type": "array", "items": { @@ -158042,6 +158102,10 @@ "type": "string", "description": "The Server Version of a MongoDB account. Possible values are `4.2`, `4.0`, `3.6`, and `3.2`.\n" }, + "multipleWriteLocationsEnabled": { + "type": "boolean", + "description": "Enable multiple write locations for this Cosmos DB account.\n" + }, "name": { "type": "string", "description": "Specifies the name of the CosmosDB Account. Changing this forces a new resource to be created.\n", @@ -194231,7 +194295,7 @@ } }, "azure:keyvault/certifiate:Certifiate": { - "description": "Manages a Key Vault Certificate.\n\n\u003c\u003c\u003c\u003c\u003c\u003c\u003c HEAD\n\u003e **Note:** The Azure Provider includes a Feature Toggle which will purge a Key Vault Certificate resource on destroy, rather than the default soft-delete. See `purge_soft_deleted_certificates_on_destroy` for more information. \n\n=======\n\u003e\u003e\u003e\u003e\u003e\u003e\u003e 8d78c87098 (Update-documentation)\n## Example Usage\n\n### Importing A PFX)\n\n\u003e **Note:** this example assumed the PFX file is located in the same directory at `certificate-to-import.pfx`.\n\n\u003c!--Start PulumiCodeChooser --\u003e\n```typescript\nimport * as pulumi from \"@pulumi/pulumi\";\nimport * as azure from \"@pulumi/azure\";\nimport * as std from \"@pulumi/std\";\n\nconst current = azure.core.getClientConfig({});\nconst example = new azure.core.ResourceGroup(\"example\", {\n name: \"example-resources\",\n location: \"West Europe\",\n});\nconst exampleKeyVault = new azure.keyvault.KeyVault(\"example\", {\n name: \"examplekeyvault\",\n location: example.location,\n resourceGroupName: example.name,\n tenantId: current.then(current =\u003e current.tenantId),\n skuName: \"premium\",\n accessPolicies: [{\n tenantId: current.then(current =\u003e current.tenantId),\n objectId: current.then(current =\u003e current.objectId),\n certificatePermissions: [\n \"Create\",\n \"Delete\",\n \"DeleteIssuers\",\n \"Get\",\n \"GetIssuers\",\n \"Import\",\n \"List\",\n \"ListIssuers\",\n \"ManageContacts\",\n \"ManageIssuers\",\n \"SetIssuers\",\n \"Update\",\n ],\n keyPermissions: [\n \"Backup\",\n \"Create\",\n \"Decrypt\",\n \"Delete\",\n \"Encrypt\",\n \"Get\",\n \"Import\",\n \"List\",\n \"Purge\",\n \"Recover\",\n \"Restore\",\n \"Sign\",\n \"UnwrapKey\",\n \"Update\",\n \"Verify\",\n \"WrapKey\",\n ],\n secretPermissions: [\n \"Backup\",\n \"Delete\",\n \"Get\",\n \"List\",\n \"Purge\",\n \"Recover\",\n \"Restore\",\n \"Set\",\n ],\n }],\n});\nconst exampleCertificate = new azure.keyvault.Certificate(\"example\", {\n name: \"imported-cert\",\n keyVaultId: exampleKeyVault.id,\n certificate: {\n contents: std.filebase64({\n input: \"certificate-to-import.pfx\",\n }).then(invoke =\u003e invoke.result),\n password: \"\",\n },\n});\n```\n```python\nimport pulumi\nimport pulumi_azure as azure\nimport pulumi_std as std\n\ncurrent = azure.core.get_client_config()\nexample = azure.core.ResourceGroup(\"example\",\n name=\"example-resources\",\n location=\"West Europe\")\nexample_key_vault = azure.keyvault.KeyVault(\"example\",\n name=\"examplekeyvault\",\n location=example.location,\n resource_group_name=example.name,\n tenant_id=current.tenant_id,\n sku_name=\"premium\",\n access_policies=[azure.keyvault.KeyVaultAccessPolicyArgs(\n tenant_id=current.tenant_id,\n object_id=current.object_id,\n certificate_permissions=[\n \"Create\",\n \"Delete\",\n \"DeleteIssuers\",\n \"Get\",\n \"GetIssuers\",\n \"Import\",\n \"List\",\n \"ListIssuers\",\n \"ManageContacts\",\n \"ManageIssuers\",\n \"SetIssuers\",\n \"Update\",\n ],\n key_permissions=[\n \"Backup\",\n \"Create\",\n \"Decrypt\",\n \"Delete\",\n \"Encrypt\",\n \"Get\",\n \"Import\",\n \"List\",\n \"Purge\",\n \"Recover\",\n \"Restore\",\n \"Sign\",\n \"UnwrapKey\",\n \"Update\",\n \"Verify\",\n \"WrapKey\",\n ],\n secret_permissions=[\n \"Backup\",\n \"Delete\",\n \"Get\",\n \"List\",\n \"Purge\",\n \"Recover\",\n \"Restore\",\n \"Set\",\n ],\n )])\nexample_certificate = azure.keyvault.Certificate(\"example\",\n name=\"imported-cert\",\n key_vault_id=example_key_vault.id,\n certificate=azure.keyvault.CertificateCertificateArgs(\n contents=std.filebase64(input=\"certificate-to-import.pfx\").result,\n password=\"\",\n ))\n```\n```csharp\nusing System.Collections.Generic;\nusing System.Linq;\nusing Pulumi;\nusing Azure = Pulumi.Azure;\nusing Std = Pulumi.Std;\n\nreturn await Deployment.RunAsync(() =\u003e \n{\n var current = Azure.Core.GetClientConfig.Invoke();\n\n var example = new Azure.Core.ResourceGroup(\"example\", new()\n {\n Name = \"example-resources\",\n Location = \"West Europe\",\n });\n\n var exampleKeyVault = new Azure.KeyVault.KeyVault(\"example\", new()\n {\n Name = \"examplekeyvault\",\n Location = example.Location,\n ResourceGroupName = example.Name,\n TenantId = current.Apply(getClientConfigResult =\u003e getClientConfigResult.TenantId),\n SkuName = \"premium\",\n AccessPolicies = new[]\n {\n new Azure.KeyVault.Inputs.KeyVaultAccessPolicyArgs\n {\n TenantId = current.Apply(getClientConfigResult =\u003e getClientConfigResult.TenantId),\n ObjectId = current.Apply(getClientConfigResult =\u003e getClientConfigResult.ObjectId),\n CertificatePermissions = new[]\n {\n \"Create\",\n \"Delete\",\n \"DeleteIssuers\",\n \"Get\",\n \"GetIssuers\",\n \"Import\",\n \"List\",\n \"ListIssuers\",\n \"ManageContacts\",\n \"ManageIssuers\",\n \"SetIssuers\",\n \"Update\",\n },\n KeyPermissions = new[]\n {\n \"Backup\",\n \"Create\",\n \"Decrypt\",\n \"Delete\",\n \"Encrypt\",\n \"Get\",\n \"Import\",\n \"List\",\n \"Purge\",\n \"Recover\",\n \"Restore\",\n \"Sign\",\n \"UnwrapKey\",\n \"Update\",\n \"Verify\",\n \"WrapKey\",\n },\n SecretPermissions = new[]\n {\n \"Backup\",\n \"Delete\",\n \"Get\",\n \"List\",\n \"Purge\",\n \"Recover\",\n \"Restore\",\n \"Set\",\n },\n },\n },\n });\n\n var exampleCertificate = new Azure.KeyVault.Certificate(\"example\", new()\n {\n Name = \"imported-cert\",\n KeyVaultId = exampleKeyVault.Id,\n KeyVaultCertificate = new Azure.KeyVault.Inputs.CertificateCertificateArgs\n {\n Contents = Std.Filebase64.Invoke(new()\n {\n Input = \"certificate-to-import.pfx\",\n }).Apply(invoke =\u003e invoke.Result),\n Password = \"\",\n },\n });\n\n});\n```\n```go\npackage main\n\nimport (\n\t\"github.com/pulumi/pulumi-azure/sdk/v5/go/azure/core\"\n\t\"github.com/pulumi/pulumi-azure/sdk/v5/go/azure/keyvault\"\n\t\"github.com/pulumi/pulumi-std/sdk/go/std\"\n\t\"github.com/pulumi/pulumi/sdk/v3/go/pulumi\"\n)\n\nfunc main() {\n\tpulumi.Run(func(ctx *pulumi.Context) error {\n\t\tcurrent, err := core.GetClientConfig(ctx, nil, nil)\n\t\tif err != nil {\n\t\t\treturn err\n\t\t}\n\t\texample, err := core.NewResourceGroup(ctx, \"example\", \u0026core.ResourceGroupArgs{\n\t\t\tName: pulumi.String(\"example-resources\"),\n\t\t\tLocation: pulumi.String(\"West Europe\"),\n\t\t})\n\t\tif err != nil {\n\t\t\treturn err\n\t\t}\n\t\texampleKeyVault, err := keyvault.NewKeyVault(ctx, \"example\", \u0026keyvault.KeyVaultArgs{\n\t\t\tName: pulumi.String(\"examplekeyvault\"),\n\t\t\tLocation: example.Location,\n\t\t\tResourceGroupName: example.Name,\n\t\t\tTenantId: pulumi.String(current.TenantId),\n\t\t\tSkuName: pulumi.String(\"premium\"),\n\t\t\tAccessPolicies: keyvault.KeyVaultAccessPolicyArray{\n\t\t\t\t\u0026keyvault.KeyVaultAccessPolicyArgs{\n\t\t\t\t\tTenantId: pulumi.String(current.TenantId),\n\t\t\t\t\tObjectId: pulumi.String(current.ObjectId),\n\t\t\t\t\tCertificatePermissions: pulumi.StringArray{\n\t\t\t\t\t\tpulumi.String(\"Create\"),\n\t\t\t\t\t\tpulumi.String(\"Delete\"),\n\t\t\t\t\t\tpulumi.String(\"DeleteIssuers\"),\n\t\t\t\t\t\tpulumi.String(\"Get\"),\n\t\t\t\t\t\tpulumi.String(\"GetIssuers\"),\n\t\t\t\t\t\tpulumi.String(\"Import\"),\n\t\t\t\t\t\tpulumi.String(\"List\"),\n\t\t\t\t\t\tpulumi.String(\"ListIssuers\"),\n\t\t\t\t\t\tpulumi.String(\"ManageContacts\"),\n\t\t\t\t\t\tpulumi.String(\"ManageIssuers\"),\n\t\t\t\t\t\tpulumi.String(\"SetIssuers\"),\n\t\t\t\t\t\tpulumi.String(\"Update\"),\n\t\t\t\t\t},\n\t\t\t\t\tKeyPermissions: pulumi.StringArray{\n\t\t\t\t\t\tpulumi.String(\"Backup\"),\n\t\t\t\t\t\tpulumi.String(\"Create\"),\n\t\t\t\t\t\tpulumi.String(\"Decrypt\"),\n\t\t\t\t\t\tpulumi.String(\"Delete\"),\n\t\t\t\t\t\tpulumi.String(\"Encrypt\"),\n\t\t\t\t\t\tpulumi.String(\"Get\"),\n\t\t\t\t\t\tpulumi.String(\"Import\"),\n\t\t\t\t\t\tpulumi.String(\"List\"),\n\t\t\t\t\t\tpulumi.String(\"Purge\"),\n\t\t\t\t\t\tpulumi.String(\"Recover\"),\n\t\t\t\t\t\tpulumi.String(\"Restore\"),\n\t\t\t\t\t\tpulumi.String(\"Sign\"),\n\t\t\t\t\t\tpulumi.String(\"UnwrapKey\"),\n\t\t\t\t\t\tpulumi.String(\"Update\"),\n\t\t\t\t\t\tpulumi.String(\"Verify\"),\n\t\t\t\t\t\tpulumi.String(\"WrapKey\"),\n\t\t\t\t\t},\n\t\t\t\t\tSecretPermissions: pulumi.StringArray{\n\t\t\t\t\t\tpulumi.String(\"Backup\"),\n\t\t\t\t\t\tpulumi.String(\"Delete\"),\n\t\t\t\t\t\tpulumi.String(\"Get\"),\n\t\t\t\t\t\tpulumi.String(\"List\"),\n\t\t\t\t\t\tpulumi.String(\"Purge\"),\n\t\t\t\t\t\tpulumi.String(\"Recover\"),\n\t\t\t\t\t\tpulumi.String(\"Restore\"),\n\t\t\t\t\t\tpulumi.String(\"Set\"),\n\t\t\t\t\t},\n\t\t\t\t},\n\t\t\t},\n\t\t})\n\t\tif err != nil {\n\t\t\treturn err\n\t\t}\n\t\tinvokeFilebase64, err := std.Filebase64(ctx, \u0026std.Filebase64Args{\n\t\t\tInput: \"certificate-to-import.pfx\",\n\t\t}, nil)\n\t\tif err != nil {\n\t\t\treturn err\n\t\t}\n\t\t_, err = keyvault.NewCertificate(ctx, \"example\", \u0026keyvault.CertificateArgs{\n\t\t\tName: pulumi.String(\"imported-cert\"),\n\t\t\tKeyVaultId: exampleKeyVault.ID(),\n\t\t\tCertificate: \u0026keyvault.CertificateCertificateArgs{\n\t\t\t\tContents: invokeFilebase64.Result,\n\t\t\t\tPassword: pulumi.String(\"\"),\n\t\t\t},\n\t\t})\n\t\tif err != nil {\n\t\t\treturn err\n\t\t}\n\t\treturn nil\n\t})\n}\n```\n```java\npackage generated_program;\n\nimport com.pulumi.Context;\nimport com.pulumi.Pulumi;\nimport com.pulumi.core.Output;\nimport com.pulumi.azure.core.CoreFunctions;\nimport com.pulumi.azure.core.ResourceGroup;\nimport com.pulumi.azure.core.ResourceGroupArgs;\nimport com.pulumi.azure.keyvault.KeyVault;\nimport com.pulumi.azure.keyvault.KeyVaultArgs;\nimport com.pulumi.azure.keyvault.inputs.KeyVaultAccessPolicyArgs;\nimport com.pulumi.azure.keyvault.Certificate;\nimport com.pulumi.azure.keyvault.CertificateArgs;\nimport com.pulumi.azure.keyvault.inputs.CertificateCertificateArgs;\nimport java.util.List;\nimport java.util.ArrayList;\nimport java.util.Map;\nimport java.io.File;\nimport java.nio.file.Files;\nimport java.nio.file.Paths;\n\npublic class App {\n public static void main(String[] args) {\n Pulumi.run(App::stack);\n }\n\n public static void stack(Context ctx) {\n final var current = CoreFunctions.getClientConfig();\n\n var example = new ResourceGroup(\"example\", ResourceGroupArgs.builder() \n .name(\"example-resources\")\n .location(\"West Europe\")\n .build());\n\n var exampleKeyVault = new KeyVault(\"exampleKeyVault\", KeyVaultArgs.builder() \n .name(\"examplekeyvault\")\n .location(example.location())\n .resourceGroupName(example.name())\n .tenantId(current.applyValue(getClientConfigResult -\u003e getClientConfigResult.tenantId()))\n .skuName(\"premium\")\n .accessPolicies(KeyVaultAccessPolicyArgs.builder()\n .tenantId(current.applyValue(getClientConfigResult -\u003e getClientConfigResult.tenantId()))\n .objectId(current.applyValue(getClientConfigResult -\u003e getClientConfigResult.objectId()))\n .certificatePermissions( \n \"Create\",\n \"Delete\",\n \"DeleteIssuers\",\n \"Get\",\n \"GetIssuers\",\n \"Import\",\n \"List\",\n \"ListIssuers\",\n \"ManageContacts\",\n \"ManageIssuers\",\n \"SetIssuers\",\n \"Update\")\n .keyPermissions( \n \"Backup\",\n \"Create\",\n \"Decrypt\",\n \"Delete\",\n \"Encrypt\",\n \"Get\",\n \"Import\",\n \"List\",\n \"Purge\",\n \"Recover\",\n \"Restore\",\n \"Sign\",\n \"UnwrapKey\",\n \"Update\",\n \"Verify\",\n \"WrapKey\")\n .secretPermissions( \n \"Backup\",\n \"Delete\",\n \"Get\",\n \"List\",\n \"Purge\",\n \"Recover\",\n \"Restore\",\n \"Set\")\n .build())\n .build());\n\n var exampleCertificate = new Certificate(\"exampleCertificate\", CertificateArgs.builder() \n .name(\"imported-cert\")\n .keyVaultId(exampleKeyVault.id())\n .certificate(CertificateCertificateArgs.builder()\n .contents(StdFunctions.filebase64(Filebase64Args.builder()\n .input(\"certificate-to-import.pfx\")\n .build()).result())\n .password(\"\")\n .build())\n .build());\n\n }\n}\n```\n```yaml\nresources:\n example:\n type: azure:core:ResourceGroup\n properties:\n name: example-resources\n location: West Europe\n exampleKeyVault:\n type: azure:keyvault:KeyVault\n name: example\n properties:\n name: examplekeyvault\n location: ${example.location}\n resourceGroupName: ${example.name}\n tenantId: ${current.tenantId}\n skuName: premium\n accessPolicies:\n - tenantId: ${current.tenantId}\n objectId: ${current.objectId}\n certificatePermissions:\n - Create\n - Delete\n - DeleteIssuers\n - Get\n - GetIssuers\n - Import\n - List\n - ListIssuers\n - ManageContacts\n - ManageIssuers\n - SetIssuers\n - Update\n keyPermissions:\n - Backup\n - Create\n - Decrypt\n - Delete\n - Encrypt\n - Get\n - Import\n - List\n - Purge\n - Recover\n - Restore\n - Sign\n - UnwrapKey\n - Update\n - Verify\n - WrapKey\n secretPermissions:\n - Backup\n - Delete\n - Get\n - List\n - Purge\n - Recover\n - Restore\n - Set\n exampleCertificate:\n type: azure:keyvault:Certificate\n name: example\n properties:\n name: imported-cert\n keyVaultId: ${exampleKeyVault.id}\n certificate:\n contents:\n fn::invoke:\n Function: std:filebase64\n Arguments:\n input: certificate-to-import.pfx\n Return: result\n password:\nvariables:\n current:\n fn::invoke:\n Function: azure:core:getClientConfig\n Arguments: {}\n```\n\u003c!--End PulumiCodeChooser --\u003e\n\n### Generating a new certificate\n\n\u003c!--Start PulumiCodeChooser --\u003e\n```typescript\nimport * as pulumi from \"@pulumi/pulumi\";\nimport * as azure from \"@pulumi/azure\";\n\nconst current = azure.core.getClientConfig({});\nconst example = new azure.core.ResourceGroup(\"example\", {\n name: \"example-resources\",\n location: \"West Europe\",\n});\nconst exampleKeyVault = new azure.keyvault.KeyVault(\"example\", {\n name: \"examplekeyvault\",\n location: example.location,\n resourceGroupName: example.name,\n tenantId: current.then(current =\u003e current.tenantId),\n skuName: \"standard\",\n softDeleteRetentionDays: 7,\n accessPolicies: [{\n tenantId: current.then(current =\u003e current.tenantId),\n objectId: current.then(current =\u003e current.objectId),\n certificatePermissions: [\n \"Create\",\n \"Delete\",\n \"DeleteIssuers\",\n \"Get\",\n \"GetIssuers\",\n \"Import\",\n \"List\",\n \"ListIssuers\",\n \"ManageContacts\",\n \"ManageIssuers\",\n \"Purge\",\n \"SetIssuers\",\n \"Update\",\n ],\n keyPermissions: [\n \"Backup\",\n \"Create\",\n \"Decrypt\",\n \"Delete\",\n \"Encrypt\",\n \"Get\",\n \"Import\",\n \"List\",\n \"Purge\",\n \"Recover\",\n \"Restore\",\n \"Sign\",\n \"UnwrapKey\",\n \"Update\",\n \"Verify\",\n \"WrapKey\",\n ],\n secretPermissions: [\n \"Backup\",\n \"Delete\",\n \"Get\",\n \"List\",\n \"Purge\",\n \"Recover\",\n \"Restore\",\n \"Set\",\n ],\n }],\n});\nconst exampleCertificate = new azure.keyvault.Certificate(\"example\", {\n name: \"generated-cert\",\n keyVaultId: exampleKeyVault.id,\n certificatePolicy: {\n issuerParameters: {\n name: \"Self\",\n },\n keyProperties: {\n exportable: true,\n keySize: 2048,\n keyType: \"RSA\",\n reuseKey: true,\n },\n lifetimeActions: [{\n action: {\n actionType: \"AutoRenew\",\n },\n trigger: {\n daysBeforeExpiry: 30,\n },\n }],\n secretProperties: {\n contentType: \"application/x-pkcs12\",\n },\n x509CertificateProperties: {\n extendedKeyUsages: [\"1.3.6.1.5.5.7.3.1\"],\n keyUsages: [\n \"cRLSign\",\n \"dataEncipherment\",\n \"digitalSignature\",\n \"keyAgreement\",\n \"keyCertSign\",\n \"keyEncipherment\",\n ],\n subjectAlternativeNames: {\n dnsNames: [\n \"internal.contoso.com\",\n \"domain.hello.world\",\n ],\n },\n subject: \"CN=hello-world\",\n validityInMonths: 12,\n },\n },\n});\n```\n```python\nimport pulumi\nimport pulumi_azure as azure\n\ncurrent = azure.core.get_client_config()\nexample = azure.core.ResourceGroup(\"example\",\n name=\"example-resources\",\n location=\"West Europe\")\nexample_key_vault = azure.keyvault.KeyVault(\"example\",\n name=\"examplekeyvault\",\n location=example.location,\n resource_group_name=example.name,\n tenant_id=current.tenant_id,\n sku_name=\"standard\",\n soft_delete_retention_days=7,\n access_policies=[azure.keyvault.KeyVaultAccessPolicyArgs(\n tenant_id=current.tenant_id,\n object_id=current.object_id,\n certificate_permissions=[\n \"Create\",\n \"Delete\",\n \"DeleteIssuers\",\n \"Get\",\n \"GetIssuers\",\n \"Import\",\n \"List\",\n \"ListIssuers\",\n \"ManageContacts\",\n \"ManageIssuers\",\n \"Purge\",\n \"SetIssuers\",\n \"Update\",\n ],\n key_permissions=[\n \"Backup\",\n \"Create\",\n \"Decrypt\",\n \"Delete\",\n \"Encrypt\",\n \"Get\",\n \"Import\",\n \"List\",\n \"Purge\",\n \"Recover\",\n \"Restore\",\n \"Sign\",\n \"UnwrapKey\",\n \"Update\",\n \"Verify\",\n \"WrapKey\",\n ],\n secret_permissions=[\n \"Backup\",\n \"Delete\",\n \"Get\",\n \"List\",\n \"Purge\",\n \"Recover\",\n \"Restore\",\n \"Set\",\n ],\n )])\nexample_certificate = azure.keyvault.Certificate(\"example\",\n name=\"generated-cert\",\n key_vault_id=example_key_vault.id,\n certificate_policy=azure.keyvault.CertificateCertificatePolicyArgs(\n issuer_parameters=azure.keyvault.CertificateCertificatePolicyIssuerParametersArgs(\n name=\"Self\",\n ),\n key_properties=azure.keyvault.CertificateCertificatePolicyKeyPropertiesArgs(\n exportable=True,\n key_size=2048,\n key_type=\"RSA\",\n reuse_key=True,\n ),\n lifetime_actions=[azure.keyvault.CertificateCertificatePolicyLifetimeActionArgs(\n action=azure.keyvault.CertificateCertificatePolicyLifetimeActionActionArgs(\n action_type=\"AutoRenew\",\n ),\n trigger=azure.keyvault.CertificateCertificatePolicyLifetimeActionTriggerArgs(\n days_before_expiry=30,\n ),\n )],\n secret_properties=azure.keyvault.CertificateCertificatePolicySecretPropertiesArgs(\n content_type=\"application/x-pkcs12\",\n ),\n x509_certificate_properties=azure.keyvault.CertificateCertificatePolicyX509CertificatePropertiesArgs(\n extended_key_usages=[\"1.3.6.1.5.5.7.3.1\"],\n key_usages=[\n \"cRLSign\",\n \"dataEncipherment\",\n \"digitalSignature\",\n \"keyAgreement\",\n \"keyCertSign\",\n \"keyEncipherment\",\n ],\n subject_alternative_names=azure.keyvault.CertificateCertificatePolicyX509CertificatePropertiesSubjectAlternativeNamesArgs(\n dns_names=[\n \"internal.contoso.com\",\n \"domain.hello.world\",\n ],\n ),\n subject=\"CN=hello-world\",\n validity_in_months=12,\n ),\n ))\n```\n```csharp\nusing System.Collections.Generic;\nusing System.Linq;\nusing Pulumi;\nusing Azure = Pulumi.Azure;\n\nreturn await Deployment.RunAsync(() =\u003e \n{\n var current = Azure.Core.GetClientConfig.Invoke();\n\n var example = new Azure.Core.ResourceGroup(\"example\", new()\n {\n Name = \"example-resources\",\n Location = \"West Europe\",\n });\n\n var exampleKeyVault = new Azure.KeyVault.KeyVault(\"example\", new()\n {\n Name = \"examplekeyvault\",\n Location = example.Location,\n ResourceGroupName = example.Name,\n TenantId = current.Apply(getClientConfigResult =\u003e getClientConfigResult.TenantId),\n SkuName = \"standard\",\n SoftDeleteRetentionDays = 7,\n AccessPolicies = new[]\n {\n new Azure.KeyVault.Inputs.KeyVaultAccessPolicyArgs\n {\n TenantId = current.Apply(getClientConfigResult =\u003e getClientConfigResult.TenantId),\n ObjectId = current.Apply(getClientConfigResult =\u003e getClientConfigResult.ObjectId),\n CertificatePermissions = new[]\n {\n \"Create\",\n \"Delete\",\n \"DeleteIssuers\",\n \"Get\",\n \"GetIssuers\",\n \"Import\",\n \"List\",\n \"ListIssuers\",\n \"ManageContacts\",\n \"ManageIssuers\",\n \"Purge\",\n \"SetIssuers\",\n \"Update\",\n },\n KeyPermissions = new[]\n {\n \"Backup\",\n \"Create\",\n \"Decrypt\",\n \"Delete\",\n \"Encrypt\",\n \"Get\",\n \"Import\",\n \"List\",\n \"Purge\",\n \"Recover\",\n \"Restore\",\n \"Sign\",\n \"UnwrapKey\",\n \"Update\",\n \"Verify\",\n \"WrapKey\",\n },\n SecretPermissions = new[]\n {\n \"Backup\",\n \"Delete\",\n \"Get\",\n \"List\",\n \"Purge\",\n \"Recover\",\n \"Restore\",\n \"Set\",\n },\n },\n },\n });\n\n var exampleCertificate = new Azure.KeyVault.Certificate(\"example\", new()\n {\n Name = \"generated-cert\",\n KeyVaultId = exampleKeyVault.Id,\n CertificatePolicy = new Azure.KeyVault.Inputs.CertificateCertificatePolicyArgs\n {\n IssuerParameters = new Azure.KeyVault.Inputs.CertificateCertificatePolicyIssuerParametersArgs\n {\n Name = \"Self\",\n },\n KeyProperties = new Azure.KeyVault.Inputs.CertificateCertificatePolicyKeyPropertiesArgs\n {\n Exportable = true,\n KeySize = 2048,\n KeyType = \"RSA\",\n ReuseKey = true,\n },\n LifetimeActions = new[]\n {\n new Azure.KeyVault.Inputs.CertificateCertificatePolicyLifetimeActionArgs\n {\n Action = new Azure.KeyVault.Inputs.CertificateCertificatePolicyLifetimeActionActionArgs\n {\n ActionType = \"AutoRenew\",\n },\n Trigger = new Azure.KeyVault.Inputs.CertificateCertificatePolicyLifetimeActionTriggerArgs\n {\n DaysBeforeExpiry = 30,\n },\n },\n },\n SecretProperties = new Azure.KeyVault.Inputs.CertificateCertificatePolicySecretPropertiesArgs\n {\n ContentType = \"application/x-pkcs12\",\n },\n X509CertificateProperties = new Azure.KeyVault.Inputs.CertificateCertificatePolicyX509CertificatePropertiesArgs\n {\n ExtendedKeyUsages = new[]\n {\n \"1.3.6.1.5.5.7.3.1\",\n },\n KeyUsages = new[]\n {\n \"cRLSign\",\n \"dataEncipherment\",\n \"digitalSignature\",\n \"keyAgreement\",\n \"keyCertSign\",\n \"keyEncipherment\",\n },\n SubjectAlternativeNames = new Azure.KeyVault.Inputs.CertificateCertificatePolicyX509CertificatePropertiesSubjectAlternativeNamesArgs\n {\n DnsNames = new[]\n {\n \"internal.contoso.com\",\n \"domain.hello.world\",\n },\n },\n Subject = \"CN=hello-world\",\n ValidityInMonths = 12,\n },\n },\n });\n\n});\n```\n```go\npackage main\n\nimport (\n\t\"github.com/pulumi/pulumi-azure/sdk/v5/go/azure/core\"\n\t\"github.com/pulumi/pulumi-azure/sdk/v5/go/azure/keyvault\"\n\t\"github.com/pulumi/pulumi/sdk/v3/go/pulumi\"\n)\n\nfunc main() {\n\tpulumi.Run(func(ctx *pulumi.Context) error {\n\t\tcurrent, err := core.GetClientConfig(ctx, nil, nil)\n\t\tif err != nil {\n\t\t\treturn err\n\t\t}\n\t\texample, err := core.NewResourceGroup(ctx, \"example\", \u0026core.ResourceGroupArgs{\n\t\t\tName: pulumi.String(\"example-resources\"),\n\t\t\tLocation: pulumi.String(\"West Europe\"),\n\t\t})\n\t\tif err != nil {\n\t\t\treturn err\n\t\t}\n\t\texampleKeyVault, err := keyvault.NewKeyVault(ctx, \"example\", \u0026keyvault.KeyVaultArgs{\n\t\t\tName: pulumi.String(\"examplekeyvault\"),\n\t\t\tLocation: example.Location,\n\t\t\tResourceGroupName: example.Name,\n\t\t\tTenantId: pulumi.String(current.TenantId),\n\t\t\tSkuName: pulumi.String(\"standard\"),\n\t\t\tSoftDeleteRetentionDays: pulumi.Int(7),\n\t\t\tAccessPolicies: keyvault.KeyVaultAccessPolicyArray{\n\t\t\t\t\u0026keyvault.KeyVaultAccessPolicyArgs{\n\t\t\t\t\tTenantId: pulumi.String(current.TenantId),\n\t\t\t\t\tObjectId: pulumi.String(current.ObjectId),\n\t\t\t\t\tCertificatePermissions: pulumi.StringArray{\n\t\t\t\t\t\tpulumi.String(\"Create\"),\n\t\t\t\t\t\tpulumi.String(\"Delete\"),\n\t\t\t\t\t\tpulumi.String(\"DeleteIssuers\"),\n\t\t\t\t\t\tpulumi.String(\"Get\"),\n\t\t\t\t\t\tpulumi.String(\"GetIssuers\"),\n\t\t\t\t\t\tpulumi.String(\"Import\"),\n\t\t\t\t\t\tpulumi.String(\"List\"),\n\t\t\t\t\t\tpulumi.String(\"ListIssuers\"),\n\t\t\t\t\t\tpulumi.String(\"ManageContacts\"),\n\t\t\t\t\t\tpulumi.String(\"ManageIssuers\"),\n\t\t\t\t\t\tpulumi.String(\"Purge\"),\n\t\t\t\t\t\tpulumi.String(\"SetIssuers\"),\n\t\t\t\t\t\tpulumi.String(\"Update\"),\n\t\t\t\t\t},\n\t\t\t\t\tKeyPermissions: pulumi.StringArray{\n\t\t\t\t\t\tpulumi.String(\"Backup\"),\n\t\t\t\t\t\tpulumi.String(\"Create\"),\n\t\t\t\t\t\tpulumi.String(\"Decrypt\"),\n\t\t\t\t\t\tpulumi.String(\"Delete\"),\n\t\t\t\t\t\tpulumi.String(\"Encrypt\"),\n\t\t\t\t\t\tpulumi.String(\"Get\"),\n\t\t\t\t\t\tpulumi.String(\"Import\"),\n\t\t\t\t\t\tpulumi.String(\"List\"),\n\t\t\t\t\t\tpulumi.String(\"Purge\"),\n\t\t\t\t\t\tpulumi.String(\"Recover\"),\n\t\t\t\t\t\tpulumi.String(\"Restore\"),\n\t\t\t\t\t\tpulumi.String(\"Sign\"),\n\t\t\t\t\t\tpulumi.String(\"UnwrapKey\"),\n\t\t\t\t\t\tpulumi.String(\"Update\"),\n\t\t\t\t\t\tpulumi.String(\"Verify\"),\n\t\t\t\t\t\tpulumi.String(\"WrapKey\"),\n\t\t\t\t\t},\n\t\t\t\t\tSecretPermissions: pulumi.StringArray{\n\t\t\t\t\t\tpulumi.String(\"Backup\"),\n\t\t\t\t\t\tpulumi.String(\"Delete\"),\n\t\t\t\t\t\tpulumi.String(\"Get\"),\n\t\t\t\t\t\tpulumi.String(\"List\"),\n\t\t\t\t\t\tpulumi.String(\"Purge\"),\n\t\t\t\t\t\tpulumi.String(\"Recover\"),\n\t\t\t\t\t\tpulumi.String(\"Restore\"),\n\t\t\t\t\t\tpulumi.String(\"Set\"),\n\t\t\t\t\t},\n\t\t\t\t},\n\t\t\t},\n\t\t})\n\t\tif err != nil {\n\t\t\treturn err\n\t\t}\n\t\t_, err = keyvault.NewCertificate(ctx, \"example\", \u0026keyvault.CertificateArgs{\n\t\t\tName: pulumi.String(\"generated-cert\"),\n\t\t\tKeyVaultId: exampleKeyVault.ID(),\n\t\t\tCertificatePolicy: \u0026keyvault.CertificateCertificatePolicyArgs{\n\t\t\t\tIssuerParameters: \u0026keyvault.CertificateCertificatePolicyIssuerParametersArgs{\n\t\t\t\t\tName: pulumi.String(\"Self\"),\n\t\t\t\t},\n\t\t\t\tKeyProperties: \u0026keyvault.CertificateCertificatePolicyKeyPropertiesArgs{\n\t\t\t\t\tExportable: pulumi.Bool(true),\n\t\t\t\t\tKeySize: pulumi.Int(2048),\n\t\t\t\t\tKeyType: pulumi.String(\"RSA\"),\n\t\t\t\t\tReuseKey: pulumi.Bool(true),\n\t\t\t\t},\n\t\t\t\tLifetimeActions: keyvault.CertificateCertificatePolicyLifetimeActionArray{\n\t\t\t\t\t\u0026keyvault.CertificateCertificatePolicyLifetimeActionArgs{\n\t\t\t\t\t\tAction: \u0026keyvault.CertificateCertificatePolicyLifetimeActionActionArgs{\n\t\t\t\t\t\t\tActionType: pulumi.String(\"AutoRenew\"),\n\t\t\t\t\t\t},\n\t\t\t\t\t\tTrigger: \u0026keyvault.CertificateCertificatePolicyLifetimeActionTriggerArgs{\n\t\t\t\t\t\t\tDaysBeforeExpiry: pulumi.Int(30),\n\t\t\t\t\t\t},\n\t\t\t\t\t},\n\t\t\t\t},\n\t\t\t\tSecretProperties: \u0026keyvault.CertificateCertificatePolicySecretPropertiesArgs{\n\t\t\t\t\tContentType: pulumi.String(\"application/x-pkcs12\"),\n\t\t\t\t},\n\t\t\t\tX509CertificateProperties: \u0026keyvault.CertificateCertificatePolicyX509CertificatePropertiesArgs{\n\t\t\t\t\tExtendedKeyUsages: pulumi.StringArray{\n\t\t\t\t\t\tpulumi.String(\"1.3.6.1.5.5.7.3.1\"),\n\t\t\t\t\t},\n\t\t\t\t\tKeyUsages: pulumi.StringArray{\n\t\t\t\t\t\tpulumi.String(\"cRLSign\"),\n\t\t\t\t\t\tpulumi.String(\"dataEncipherment\"),\n\t\t\t\t\t\tpulumi.String(\"digitalSignature\"),\n\t\t\t\t\t\tpulumi.String(\"keyAgreement\"),\n\t\t\t\t\t\tpulumi.String(\"keyCertSign\"),\n\t\t\t\t\t\tpulumi.String(\"keyEncipherment\"),\n\t\t\t\t\t},\n\t\t\t\t\tSubjectAlternativeNames: \u0026keyvault.CertificateCertificatePolicyX509CertificatePropertiesSubjectAlternativeNamesArgs{\n\t\t\t\t\t\tDnsNames: pulumi.StringArray{\n\t\t\t\t\t\t\tpulumi.String(\"internal.contoso.com\"),\n\t\t\t\t\t\t\tpulumi.String(\"domain.hello.world\"),\n\t\t\t\t\t\t},\n\t\t\t\t\t},\n\t\t\t\t\tSubject: pulumi.String(\"CN=hello-world\"),\n\t\t\t\t\tValidityInMonths: pulumi.Int(12),\n\t\t\t\t},\n\t\t\t},\n\t\t})\n\t\tif err != nil {\n\t\t\treturn err\n\t\t}\n\t\treturn nil\n\t})\n}\n```\n```java\npackage generated_program;\n\nimport com.pulumi.Context;\nimport com.pulumi.Pulumi;\nimport com.pulumi.core.Output;\nimport com.pulumi.azure.core.CoreFunctions;\nimport com.pulumi.azure.core.ResourceGroup;\nimport com.pulumi.azure.core.ResourceGroupArgs;\nimport com.pulumi.azure.keyvault.KeyVault;\nimport com.pulumi.azure.keyvault.KeyVaultArgs;\nimport com.pulumi.azure.keyvault.inputs.KeyVaultAccessPolicyArgs;\nimport com.pulumi.azure.keyvault.Certificate;\nimport com.pulumi.azure.keyvault.CertificateArgs;\nimport com.pulumi.azure.keyvault.inputs.CertificateCertificatePolicyArgs;\nimport com.pulumi.azure.keyvault.inputs.CertificateCertificatePolicyIssuerParametersArgs;\nimport com.pulumi.azure.keyvault.inputs.CertificateCertificatePolicyKeyPropertiesArgs;\nimport com.pulumi.azure.keyvault.inputs.CertificateCertificatePolicySecretPropertiesArgs;\nimport com.pulumi.azure.keyvault.inputs.CertificateCertificatePolicyX509CertificatePropertiesArgs;\nimport com.pulumi.azure.keyvault.inputs.CertificateCertificatePolicyX509CertificatePropertiesSubjectAlternativeNamesArgs;\nimport java.util.List;\nimport java.util.ArrayList;\nimport java.util.Map;\nimport java.io.File;\nimport java.nio.file.Files;\nimport java.nio.file.Paths;\n\npublic class App {\n public static void main(String[] args) {\n Pulumi.run(App::stack);\n }\n\n public static void stack(Context ctx) {\n final var current = CoreFunctions.getClientConfig();\n\n var example = new ResourceGroup(\"example\", ResourceGroupArgs.builder() \n .name(\"example-resources\")\n .location(\"West Europe\")\n .build());\n\n var exampleKeyVault = new KeyVault(\"exampleKeyVault\", KeyVaultArgs.builder() \n .name(\"examplekeyvault\")\n .location(example.location())\n .resourceGroupName(example.name())\n .tenantId(current.applyValue(getClientConfigResult -\u003e getClientConfigResult.tenantId()))\n .skuName(\"standard\")\n .softDeleteRetentionDays(7)\n .accessPolicies(KeyVaultAccessPolicyArgs.builder()\n .tenantId(current.applyValue(getClientConfigResult -\u003e getClientConfigResult.tenantId()))\n .objectId(current.applyValue(getClientConfigResult -\u003e getClientConfigResult.objectId()))\n .certificatePermissions( \n \"Create\",\n \"Delete\",\n \"DeleteIssuers\",\n \"Get\",\n \"GetIssuers\",\n \"Import\",\n \"List\",\n \"ListIssuers\",\n \"ManageContacts\",\n \"ManageIssuers\",\n \"Purge\",\n \"SetIssuers\",\n \"Update\")\n .keyPermissions( \n \"Backup\",\n \"Create\",\n \"Decrypt\",\n \"Delete\",\n \"Encrypt\",\n \"Get\",\n \"Import\",\n \"List\",\n \"Purge\",\n \"Recover\",\n \"Restore\",\n \"Sign\",\n \"UnwrapKey\",\n \"Update\",\n \"Verify\",\n \"WrapKey\")\n .secretPermissions( \n \"Backup\",\n \"Delete\",\n \"Get\",\n \"List\",\n \"Purge\",\n \"Recover\",\n \"Restore\",\n \"Set\")\n .build())\n .build());\n\n var exampleCertificate = new Certificate(\"exampleCertificate\", CertificateArgs.builder() \n .name(\"generated-cert\")\n .keyVaultId(exampleKeyVault.id())\n .certificatePolicy(CertificateCertificatePolicyArgs.builder()\n .issuerParameters(CertificateCertificatePolicyIssuerParametersArgs.builder()\n .name(\"Self\")\n .build())\n .keyProperties(CertificateCertificatePolicyKeyPropertiesArgs.builder()\n .exportable(true)\n .keySize(2048)\n .keyType(\"RSA\")\n .reuseKey(true)\n .build())\n .lifetimeActions(CertificateCertificatePolicyLifetimeActionArgs.builder()\n .action(CertificateCertificatePolicyLifetimeActionActionArgs.builder()\n .actionType(\"AutoRenew\")\n .build())\n .trigger(CertificateCertificatePolicyLifetimeActionTriggerArgs.builder()\n .daysBeforeExpiry(30)\n .build())\n .build())\n .secretProperties(CertificateCertificatePolicySecretPropertiesArgs.builder()\n .contentType(\"application/x-pkcs12\")\n .build())\n .x509CertificateProperties(CertificateCertificatePolicyX509CertificatePropertiesArgs.builder()\n .extendedKeyUsages(\"1.3.6.1.5.5.7.3.1\")\n .keyUsages( \n \"cRLSign\",\n \"dataEncipherment\",\n \"digitalSignature\",\n \"keyAgreement\",\n \"keyCertSign\",\n \"keyEncipherment\")\n .subjectAlternativeNames(CertificateCertificatePolicyX509CertificatePropertiesSubjectAlternativeNamesArgs.builder()\n .dnsNames( \n \"internal.contoso.com\",\n \"domain.hello.world\")\n .build())\n .subject(\"CN=hello-world\")\n .validityInMonths(12)\n .build())\n .build())\n .build());\n\n }\n}\n```\n```yaml\nresources:\n example:\n type: azure:core:ResourceGroup\n properties:\n name: example-resources\n location: West Europe\n exampleKeyVault:\n type: azure:keyvault:KeyVault\n name: example\n properties:\n name: examplekeyvault\n location: ${example.location}\n resourceGroupName: ${example.name}\n tenantId: ${current.tenantId}\n skuName: standard\n softDeleteRetentionDays: 7\n accessPolicies:\n - tenantId: ${current.tenantId}\n objectId: ${current.objectId}\n certificatePermissions:\n - Create\n - Delete\n - DeleteIssuers\n - Get\n - GetIssuers\n - Import\n - List\n - ListIssuers\n - ManageContacts\n - ManageIssuers\n - Purge\n - SetIssuers\n - Update\n keyPermissions:\n - Backup\n - Create\n - Decrypt\n - Delete\n - Encrypt\n - Get\n - Import\n - List\n - Purge\n - Recover\n - Restore\n - Sign\n - UnwrapKey\n - Update\n - Verify\n - WrapKey\n secretPermissions:\n - Backup\n - Delete\n - Get\n - List\n - Purge\n - Recover\n - Restore\n - Set\n exampleCertificate:\n type: azure:keyvault:Certificate\n name: example\n properties:\n name: generated-cert\n keyVaultId: ${exampleKeyVault.id}\n certificatePolicy:\n issuerParameters:\n name: Self\n keyProperties:\n exportable: true\n keySize: 2048\n keyType: RSA\n reuseKey: true\n lifetimeActions:\n - action:\n actionType: AutoRenew\n trigger:\n daysBeforeExpiry: 30\n secretProperties:\n contentType: application/x-pkcs12\n x509CertificateProperties:\n extendedKeyUsages:\n - 1.3.6.1.5.5.7.3.1\n keyUsages:\n - cRLSign\n - dataEncipherment\n - digitalSignature\n - keyAgreement\n - keyCertSign\n - keyEncipherment\n subjectAlternativeNames:\n dnsNames:\n - internal.contoso.com\n - domain.hello.world\n subject: CN=hello-world\n validityInMonths: 12\nvariables:\n current:\n fn::invoke:\n Function: azure:core:getClientConfig\n Arguments: {}\n```\n\u003c!--End PulumiCodeChooser --\u003e\n\n## Import\n\nKey Vault Certificates can be imported using the `resource id`, e.g.\n\n```sh\n$ pulumi import azure:keyvault/certifiate:Certifiate example \"https://example-keyvault.vault.azure.net/certificates/example/fdf067c93bbb4b22bff4d8b7a9a56217\"\n```\n\n", + "description": "Manages a Key Vault Certificate.\n\n## Example Usage\n\n### Importing A PFX)\n\n\u003e **Note:** this example assumed the PFX file is located in the same directory at `certificate-to-import.pfx`.\n\n\u003c!--Start PulumiCodeChooser --\u003e\n```typescript\nimport * as pulumi from \"@pulumi/pulumi\";\nimport * as azure from \"@pulumi/azure\";\nimport * as std from \"@pulumi/std\";\n\nconst current = azure.core.getClientConfig({});\nconst example = new azure.core.ResourceGroup(\"example\", {\n name: \"example-resources\",\n location: \"West Europe\",\n});\nconst exampleKeyVault = new azure.keyvault.KeyVault(\"example\", {\n name: \"examplekeyvault\",\n location: example.location,\n resourceGroupName: example.name,\n tenantId: current.then(current =\u003e current.tenantId),\n skuName: \"premium\",\n accessPolicies: [{\n tenantId: current.then(current =\u003e current.tenantId),\n objectId: current.then(current =\u003e current.objectId),\n certificatePermissions: [\n \"Create\",\n \"Delete\",\n \"DeleteIssuers\",\n \"Get\",\n \"GetIssuers\",\n \"Import\",\n \"List\",\n \"ListIssuers\",\n \"ManageContacts\",\n \"ManageIssuers\",\n \"SetIssuers\",\n \"Update\",\n ],\n keyPermissions: [\n \"Backup\",\n \"Create\",\n \"Decrypt\",\n \"Delete\",\n \"Encrypt\",\n \"Get\",\n \"Import\",\n \"List\",\n \"Purge\",\n \"Recover\",\n \"Restore\",\n \"Sign\",\n \"UnwrapKey\",\n \"Update\",\n \"Verify\",\n \"WrapKey\",\n ],\n secretPermissions: [\n \"Backup\",\n \"Delete\",\n \"Get\",\n \"List\",\n \"Purge\",\n \"Recover\",\n \"Restore\",\n \"Set\",\n ],\n }],\n});\nconst exampleCertificate = new azure.keyvault.Certificate(\"example\", {\n name: \"imported-cert\",\n keyVaultId: exampleKeyVault.id,\n certificate: {\n contents: std.filebase64({\n input: \"certificate-to-import.pfx\",\n }).then(invoke =\u003e invoke.result),\n password: \"\",\n },\n});\n```\n```python\nimport pulumi\nimport pulumi_azure as azure\nimport pulumi_std as std\n\ncurrent = azure.core.get_client_config()\nexample = azure.core.ResourceGroup(\"example\",\n name=\"example-resources\",\n location=\"West Europe\")\nexample_key_vault = azure.keyvault.KeyVault(\"example\",\n name=\"examplekeyvault\",\n location=example.location,\n resource_group_name=example.name,\n tenant_id=current.tenant_id,\n sku_name=\"premium\",\n access_policies=[azure.keyvault.KeyVaultAccessPolicyArgs(\n tenant_id=current.tenant_id,\n object_id=current.object_id,\n certificate_permissions=[\n \"Create\",\n \"Delete\",\n \"DeleteIssuers\",\n \"Get\",\n \"GetIssuers\",\n \"Import\",\n \"List\",\n \"ListIssuers\",\n \"ManageContacts\",\n \"ManageIssuers\",\n \"SetIssuers\",\n \"Update\",\n ],\n key_permissions=[\n \"Backup\",\n \"Create\",\n \"Decrypt\",\n \"Delete\",\n \"Encrypt\",\n \"Get\",\n \"Import\",\n \"List\",\n \"Purge\",\n \"Recover\",\n \"Restore\",\n \"Sign\",\n \"UnwrapKey\",\n \"Update\",\n \"Verify\",\n \"WrapKey\",\n ],\n secret_permissions=[\n \"Backup\",\n \"Delete\",\n \"Get\",\n \"List\",\n \"Purge\",\n \"Recover\",\n \"Restore\",\n \"Set\",\n ],\n )])\nexample_certificate = azure.keyvault.Certificate(\"example\",\n name=\"imported-cert\",\n key_vault_id=example_key_vault.id,\n certificate=azure.keyvault.CertificateCertificateArgs(\n contents=std.filebase64(input=\"certificate-to-import.pfx\").result,\n password=\"\",\n ))\n```\n```csharp\nusing System.Collections.Generic;\nusing System.Linq;\nusing Pulumi;\nusing Azure = Pulumi.Azure;\nusing Std = Pulumi.Std;\n\nreturn await Deployment.RunAsync(() =\u003e \n{\n var current = Azure.Core.GetClientConfig.Invoke();\n\n var example = new Azure.Core.ResourceGroup(\"example\", new()\n {\n Name = \"example-resources\",\n Location = \"West Europe\",\n });\n\n var exampleKeyVault = new Azure.KeyVault.KeyVault(\"example\", new()\n {\n Name = \"examplekeyvault\",\n Location = example.Location,\n ResourceGroupName = example.Name,\n TenantId = current.Apply(getClientConfigResult =\u003e getClientConfigResult.TenantId),\n SkuName = \"premium\",\n AccessPolicies = new[]\n {\n new Azure.KeyVault.Inputs.KeyVaultAccessPolicyArgs\n {\n TenantId = current.Apply(getClientConfigResult =\u003e getClientConfigResult.TenantId),\n ObjectId = current.Apply(getClientConfigResult =\u003e getClientConfigResult.ObjectId),\n CertificatePermissions = new[]\n {\n \"Create\",\n \"Delete\",\n \"DeleteIssuers\",\n \"Get\",\n \"GetIssuers\",\n \"Import\",\n \"List\",\n \"ListIssuers\",\n \"ManageContacts\",\n \"ManageIssuers\",\n \"SetIssuers\",\n \"Update\",\n },\n KeyPermissions = new[]\n {\n \"Backup\",\n \"Create\",\n \"Decrypt\",\n \"Delete\",\n \"Encrypt\",\n \"Get\",\n \"Import\",\n \"List\",\n \"Purge\",\n \"Recover\",\n \"Restore\",\n \"Sign\",\n \"UnwrapKey\",\n \"Update\",\n \"Verify\",\n \"WrapKey\",\n },\n SecretPermissions = new[]\n {\n \"Backup\",\n \"Delete\",\n \"Get\",\n \"List\",\n \"Purge\",\n \"Recover\",\n \"Restore\",\n \"Set\",\n },\n },\n },\n });\n\n var exampleCertificate = new Azure.KeyVault.Certificate(\"example\", new()\n {\n Name = \"imported-cert\",\n KeyVaultId = exampleKeyVault.Id,\n KeyVaultCertificate = new Azure.KeyVault.Inputs.CertificateCertificateArgs\n {\n Contents = Std.Filebase64.Invoke(new()\n {\n Input = \"certificate-to-import.pfx\",\n }).Apply(invoke =\u003e invoke.Result),\n Password = \"\",\n },\n });\n\n});\n```\n```go\npackage main\n\nimport (\n\t\"github.com/pulumi/pulumi-azure/sdk/v5/go/azure/core\"\n\t\"github.com/pulumi/pulumi-azure/sdk/v5/go/azure/keyvault\"\n\t\"github.com/pulumi/pulumi-std/sdk/go/std\"\n\t\"github.com/pulumi/pulumi/sdk/v3/go/pulumi\"\n)\n\nfunc main() {\n\tpulumi.Run(func(ctx *pulumi.Context) error {\n\t\tcurrent, err := core.GetClientConfig(ctx, nil, nil)\n\t\tif err != nil {\n\t\t\treturn err\n\t\t}\n\t\texample, err := core.NewResourceGroup(ctx, \"example\", \u0026core.ResourceGroupArgs{\n\t\t\tName: pulumi.String(\"example-resources\"),\n\t\t\tLocation: pulumi.String(\"West Europe\"),\n\t\t})\n\t\tif err != nil {\n\t\t\treturn err\n\t\t}\n\t\texampleKeyVault, err := keyvault.NewKeyVault(ctx, \"example\", \u0026keyvault.KeyVaultArgs{\n\t\t\tName: pulumi.String(\"examplekeyvault\"),\n\t\t\tLocation: example.Location,\n\t\t\tResourceGroupName: example.Name,\n\t\t\tTenantId: pulumi.String(current.TenantId),\n\t\t\tSkuName: pulumi.String(\"premium\"),\n\t\t\tAccessPolicies: keyvault.KeyVaultAccessPolicyArray{\n\t\t\t\t\u0026keyvault.KeyVaultAccessPolicyArgs{\n\t\t\t\t\tTenantId: pulumi.String(current.TenantId),\n\t\t\t\t\tObjectId: pulumi.String(current.ObjectId),\n\t\t\t\t\tCertificatePermissions: pulumi.StringArray{\n\t\t\t\t\t\tpulumi.String(\"Create\"),\n\t\t\t\t\t\tpulumi.String(\"Delete\"),\n\t\t\t\t\t\tpulumi.String(\"DeleteIssuers\"),\n\t\t\t\t\t\tpulumi.String(\"Get\"),\n\t\t\t\t\t\tpulumi.String(\"GetIssuers\"),\n\t\t\t\t\t\tpulumi.String(\"Import\"),\n\t\t\t\t\t\tpulumi.String(\"List\"),\n\t\t\t\t\t\tpulumi.String(\"ListIssuers\"),\n\t\t\t\t\t\tpulumi.String(\"ManageContacts\"),\n\t\t\t\t\t\tpulumi.String(\"ManageIssuers\"),\n\t\t\t\t\t\tpulumi.String(\"SetIssuers\"),\n\t\t\t\t\t\tpulumi.String(\"Update\"),\n\t\t\t\t\t},\n\t\t\t\t\tKeyPermissions: pulumi.StringArray{\n\t\t\t\t\t\tpulumi.String(\"Backup\"),\n\t\t\t\t\t\tpulumi.String(\"Create\"),\n\t\t\t\t\t\tpulumi.String(\"Decrypt\"),\n\t\t\t\t\t\tpulumi.String(\"Delete\"),\n\t\t\t\t\t\tpulumi.String(\"Encrypt\"),\n\t\t\t\t\t\tpulumi.String(\"Get\"),\n\t\t\t\t\t\tpulumi.String(\"Import\"),\n\t\t\t\t\t\tpulumi.String(\"List\"),\n\t\t\t\t\t\tpulumi.String(\"Purge\"),\n\t\t\t\t\t\tpulumi.String(\"Recover\"),\n\t\t\t\t\t\tpulumi.String(\"Restore\"),\n\t\t\t\t\t\tpulumi.String(\"Sign\"),\n\t\t\t\t\t\tpulumi.String(\"UnwrapKey\"),\n\t\t\t\t\t\tpulumi.String(\"Update\"),\n\t\t\t\t\t\tpulumi.String(\"Verify\"),\n\t\t\t\t\t\tpulumi.String(\"WrapKey\"),\n\t\t\t\t\t},\n\t\t\t\t\tSecretPermissions: pulumi.StringArray{\n\t\t\t\t\t\tpulumi.String(\"Backup\"),\n\t\t\t\t\t\tpulumi.String(\"Delete\"),\n\t\t\t\t\t\tpulumi.String(\"Get\"),\n\t\t\t\t\t\tpulumi.String(\"List\"),\n\t\t\t\t\t\tpulumi.String(\"Purge\"),\n\t\t\t\t\t\tpulumi.String(\"Recover\"),\n\t\t\t\t\t\tpulumi.String(\"Restore\"),\n\t\t\t\t\t\tpulumi.String(\"Set\"),\n\t\t\t\t\t},\n\t\t\t\t},\n\t\t\t},\n\t\t})\n\t\tif err != nil {\n\t\t\treturn err\n\t\t}\n\t\tinvokeFilebase64, err := std.Filebase64(ctx, \u0026std.Filebase64Args{\n\t\t\tInput: \"certificate-to-import.pfx\",\n\t\t}, nil)\n\t\tif err != nil {\n\t\t\treturn err\n\t\t}\n\t\t_, err = keyvault.NewCertificate(ctx, \"example\", \u0026keyvault.CertificateArgs{\n\t\t\tName: pulumi.String(\"imported-cert\"),\n\t\t\tKeyVaultId: exampleKeyVault.ID(),\n\t\t\tCertificate: \u0026keyvault.CertificateCertificateArgs{\n\t\t\t\tContents: invokeFilebase64.Result,\n\t\t\t\tPassword: pulumi.String(\"\"),\n\t\t\t},\n\t\t})\n\t\tif err != nil {\n\t\t\treturn err\n\t\t}\n\t\treturn nil\n\t})\n}\n```\n```java\npackage generated_program;\n\nimport com.pulumi.Context;\nimport com.pulumi.Pulumi;\nimport com.pulumi.core.Output;\nimport com.pulumi.azure.core.CoreFunctions;\nimport com.pulumi.azure.core.ResourceGroup;\nimport com.pulumi.azure.core.ResourceGroupArgs;\nimport com.pulumi.azure.keyvault.KeyVault;\nimport com.pulumi.azure.keyvault.KeyVaultArgs;\nimport com.pulumi.azure.keyvault.inputs.KeyVaultAccessPolicyArgs;\nimport com.pulumi.azure.keyvault.Certificate;\nimport com.pulumi.azure.keyvault.CertificateArgs;\nimport com.pulumi.azure.keyvault.inputs.CertificateCertificateArgs;\nimport java.util.List;\nimport java.util.ArrayList;\nimport java.util.Map;\nimport java.io.File;\nimport java.nio.file.Files;\nimport java.nio.file.Paths;\n\npublic class App {\n public static void main(String[] args) {\n Pulumi.run(App::stack);\n }\n\n public static void stack(Context ctx) {\n final var current = CoreFunctions.getClientConfig();\n\n var example = new ResourceGroup(\"example\", ResourceGroupArgs.builder() \n .name(\"example-resources\")\n .location(\"West Europe\")\n .build());\n\n var exampleKeyVault = new KeyVault(\"exampleKeyVault\", KeyVaultArgs.builder() \n .name(\"examplekeyvault\")\n .location(example.location())\n .resourceGroupName(example.name())\n .tenantId(current.applyValue(getClientConfigResult -\u003e getClientConfigResult.tenantId()))\n .skuName(\"premium\")\n .accessPolicies(KeyVaultAccessPolicyArgs.builder()\n .tenantId(current.applyValue(getClientConfigResult -\u003e getClientConfigResult.tenantId()))\n .objectId(current.applyValue(getClientConfigResult -\u003e getClientConfigResult.objectId()))\n .certificatePermissions( \n \"Create\",\n \"Delete\",\n \"DeleteIssuers\",\n \"Get\",\n \"GetIssuers\",\n \"Import\",\n \"List\",\n \"ListIssuers\",\n \"ManageContacts\",\n \"ManageIssuers\",\n \"SetIssuers\",\n \"Update\")\n .keyPermissions( \n \"Backup\",\n \"Create\",\n \"Decrypt\",\n \"Delete\",\n \"Encrypt\",\n \"Get\",\n \"Import\",\n \"List\",\n \"Purge\",\n \"Recover\",\n \"Restore\",\n \"Sign\",\n \"UnwrapKey\",\n \"Update\",\n \"Verify\",\n \"WrapKey\")\n .secretPermissions( \n \"Backup\",\n \"Delete\",\n \"Get\",\n \"List\",\n \"Purge\",\n \"Recover\",\n \"Restore\",\n \"Set\")\n .build())\n .build());\n\n var exampleCertificate = new Certificate(\"exampleCertificate\", CertificateArgs.builder() \n .name(\"imported-cert\")\n .keyVaultId(exampleKeyVault.id())\n .certificate(CertificateCertificateArgs.builder()\n .contents(StdFunctions.filebase64(Filebase64Args.builder()\n .input(\"certificate-to-import.pfx\")\n .build()).result())\n .password(\"\")\n .build())\n .build());\n\n }\n}\n```\n```yaml\nresources:\n example:\n type: azure:core:ResourceGroup\n properties:\n name: example-resources\n location: West Europe\n exampleKeyVault:\n type: azure:keyvault:KeyVault\n name: example\n properties:\n name: examplekeyvault\n location: ${example.location}\n resourceGroupName: ${example.name}\n tenantId: ${current.tenantId}\n skuName: premium\n accessPolicies:\n - tenantId: ${current.tenantId}\n objectId: ${current.objectId}\n certificatePermissions:\n - Create\n - Delete\n - DeleteIssuers\n - Get\n - GetIssuers\n - Import\n - List\n - ListIssuers\n - ManageContacts\n - ManageIssuers\n - SetIssuers\n - Update\n keyPermissions:\n - Backup\n - Create\n - Decrypt\n - Delete\n - Encrypt\n - Get\n - Import\n - List\n - Purge\n - Recover\n - Restore\n - Sign\n - UnwrapKey\n - Update\n - Verify\n - WrapKey\n secretPermissions:\n - Backup\n - Delete\n - Get\n - List\n - Purge\n - Recover\n - Restore\n - Set\n exampleCertificate:\n type: azure:keyvault:Certificate\n name: example\n properties:\n name: imported-cert\n keyVaultId: ${exampleKeyVault.id}\n certificate:\n contents:\n fn::invoke:\n Function: std:filebase64\n Arguments:\n input: certificate-to-import.pfx\n Return: result\n password:\nvariables:\n current:\n fn::invoke:\n Function: azure:core:getClientConfig\n Arguments: {}\n```\n\u003c!--End PulumiCodeChooser --\u003e\n\n### Generating a new certificate\n\n\u003c!--Start PulumiCodeChooser --\u003e\n```typescript\nimport * as pulumi from \"@pulumi/pulumi\";\nimport * as azure from \"@pulumi/azure\";\n\nconst current = azure.core.getClientConfig({});\nconst example = new azure.core.ResourceGroup(\"example\", {\n name: \"example-resources\",\n location: \"West Europe\",\n});\nconst exampleKeyVault = new azure.keyvault.KeyVault(\"example\", {\n name: \"examplekeyvault\",\n location: example.location,\n resourceGroupName: example.name,\n tenantId: current.then(current =\u003e current.tenantId),\n skuName: \"standard\",\n softDeleteRetentionDays: 7,\n accessPolicies: [{\n tenantId: current.then(current =\u003e current.tenantId),\n objectId: current.then(current =\u003e current.objectId),\n certificatePermissions: [\n \"Create\",\n \"Delete\",\n \"DeleteIssuers\",\n \"Get\",\n \"GetIssuers\",\n \"Import\",\n \"List\",\n \"ListIssuers\",\n \"ManageContacts\",\n \"ManageIssuers\",\n \"Purge\",\n \"SetIssuers\",\n \"Update\",\n ],\n keyPermissions: [\n \"Backup\",\n \"Create\",\n \"Decrypt\",\n \"Delete\",\n \"Encrypt\",\n \"Get\",\n \"Import\",\n \"List\",\n \"Purge\",\n \"Recover\",\n \"Restore\",\n \"Sign\",\n \"UnwrapKey\",\n \"Update\",\n \"Verify\",\n \"WrapKey\",\n ],\n secretPermissions: [\n \"Backup\",\n \"Delete\",\n \"Get\",\n \"List\",\n \"Purge\",\n \"Recover\",\n \"Restore\",\n \"Set\",\n ],\n }],\n});\nconst exampleCertificate = new azure.keyvault.Certificate(\"example\", {\n name: \"generated-cert\",\n keyVaultId: exampleKeyVault.id,\n certificatePolicy: {\n issuerParameters: {\n name: \"Self\",\n },\n keyProperties: {\n exportable: true,\n keySize: 2048,\n keyType: \"RSA\",\n reuseKey: true,\n },\n lifetimeActions: [{\n action: {\n actionType: \"AutoRenew\",\n },\n trigger: {\n daysBeforeExpiry: 30,\n },\n }],\n secretProperties: {\n contentType: \"application/x-pkcs12\",\n },\n x509CertificateProperties: {\n extendedKeyUsages: [\"1.3.6.1.5.5.7.3.1\"],\n keyUsages: [\n \"cRLSign\",\n \"dataEncipherment\",\n \"digitalSignature\",\n \"keyAgreement\",\n \"keyCertSign\",\n \"keyEncipherment\",\n ],\n subjectAlternativeNames: {\n dnsNames: [\n \"internal.contoso.com\",\n \"domain.hello.world\",\n ],\n },\n subject: \"CN=hello-world\",\n validityInMonths: 12,\n },\n },\n});\n```\n```python\nimport pulumi\nimport pulumi_azure as azure\n\ncurrent = azure.core.get_client_config()\nexample = azure.core.ResourceGroup(\"example\",\n name=\"example-resources\",\n location=\"West Europe\")\nexample_key_vault = azure.keyvault.KeyVault(\"example\",\n name=\"examplekeyvault\",\n location=example.location,\n resource_group_name=example.name,\n tenant_id=current.tenant_id,\n sku_name=\"standard\",\n soft_delete_retention_days=7,\n access_policies=[azure.keyvault.KeyVaultAccessPolicyArgs(\n tenant_id=current.tenant_id,\n object_id=current.object_id,\n certificate_permissions=[\n \"Create\",\n \"Delete\",\n \"DeleteIssuers\",\n \"Get\",\n \"GetIssuers\",\n \"Import\",\n \"List\",\n \"ListIssuers\",\n \"ManageContacts\",\n \"ManageIssuers\",\n \"Purge\",\n \"SetIssuers\",\n \"Update\",\n ],\n key_permissions=[\n \"Backup\",\n \"Create\",\n \"Decrypt\",\n \"Delete\",\n \"Encrypt\",\n \"Get\",\n \"Import\",\n \"List\",\n \"Purge\",\n \"Recover\",\n \"Restore\",\n \"Sign\",\n \"UnwrapKey\",\n \"Update\",\n \"Verify\",\n \"WrapKey\",\n ],\n secret_permissions=[\n \"Backup\",\n \"Delete\",\n \"Get\",\n \"List\",\n \"Purge\",\n \"Recover\",\n \"Restore\",\n \"Set\",\n ],\n )])\nexample_certificate = azure.keyvault.Certificate(\"example\",\n name=\"generated-cert\",\n key_vault_id=example_key_vault.id,\n certificate_policy=azure.keyvault.CertificateCertificatePolicyArgs(\n issuer_parameters=azure.keyvault.CertificateCertificatePolicyIssuerParametersArgs(\n name=\"Self\",\n ),\n key_properties=azure.keyvault.CertificateCertificatePolicyKeyPropertiesArgs(\n exportable=True,\n key_size=2048,\n key_type=\"RSA\",\n reuse_key=True,\n ),\n lifetime_actions=[azure.keyvault.CertificateCertificatePolicyLifetimeActionArgs(\n action=azure.keyvault.CertificateCertificatePolicyLifetimeActionActionArgs(\n action_type=\"AutoRenew\",\n ),\n trigger=azure.keyvault.CertificateCertificatePolicyLifetimeActionTriggerArgs(\n days_before_expiry=30,\n ),\n )],\n secret_properties=azure.keyvault.CertificateCertificatePolicySecretPropertiesArgs(\n content_type=\"application/x-pkcs12\",\n ),\n x509_certificate_properties=azure.keyvault.CertificateCertificatePolicyX509CertificatePropertiesArgs(\n extended_key_usages=[\"1.3.6.1.5.5.7.3.1\"],\n key_usages=[\n \"cRLSign\",\n \"dataEncipherment\",\n \"digitalSignature\",\n \"keyAgreement\",\n \"keyCertSign\",\n \"keyEncipherment\",\n ],\n subject_alternative_names=azure.keyvault.CertificateCertificatePolicyX509CertificatePropertiesSubjectAlternativeNamesArgs(\n dns_names=[\n \"internal.contoso.com\",\n \"domain.hello.world\",\n ],\n ),\n subject=\"CN=hello-world\",\n validity_in_months=12,\n ),\n ))\n```\n```csharp\nusing System.Collections.Generic;\nusing System.Linq;\nusing Pulumi;\nusing Azure = Pulumi.Azure;\n\nreturn await Deployment.RunAsync(() =\u003e \n{\n var current = Azure.Core.GetClientConfig.Invoke();\n\n var example = new Azure.Core.ResourceGroup(\"example\", new()\n {\n Name = \"example-resources\",\n Location = \"West Europe\",\n });\n\n var exampleKeyVault = new Azure.KeyVault.KeyVault(\"example\", new()\n {\n Name = \"examplekeyvault\",\n Location = example.Location,\n ResourceGroupName = example.Name,\n TenantId = current.Apply(getClientConfigResult =\u003e getClientConfigResult.TenantId),\n SkuName = \"standard\",\n SoftDeleteRetentionDays = 7,\n AccessPolicies = new[]\n {\n new Azure.KeyVault.Inputs.KeyVaultAccessPolicyArgs\n {\n TenantId = current.Apply(getClientConfigResult =\u003e getClientConfigResult.TenantId),\n ObjectId = current.Apply(getClientConfigResult =\u003e getClientConfigResult.ObjectId),\n CertificatePermissions = new[]\n {\n \"Create\",\n \"Delete\",\n \"DeleteIssuers\",\n \"Get\",\n \"GetIssuers\",\n \"Import\",\n \"List\",\n \"ListIssuers\",\n \"ManageContacts\",\n \"ManageIssuers\",\n \"Purge\",\n \"SetIssuers\",\n \"Update\",\n },\n KeyPermissions = new[]\n {\n \"Backup\",\n \"Create\",\n \"Decrypt\",\n \"Delete\",\n \"Encrypt\",\n \"Get\",\n \"Import\",\n \"List\",\n \"Purge\",\n \"Recover\",\n \"Restore\",\n \"Sign\",\n \"UnwrapKey\",\n \"Update\",\n \"Verify\",\n \"WrapKey\",\n },\n SecretPermissions = new[]\n {\n \"Backup\",\n \"Delete\",\n \"Get\",\n \"List\",\n \"Purge\",\n \"Recover\",\n \"Restore\",\n \"Set\",\n },\n },\n },\n });\n\n var exampleCertificate = new Azure.KeyVault.Certificate(\"example\", new()\n {\n Name = \"generated-cert\",\n KeyVaultId = exampleKeyVault.Id,\n CertificatePolicy = new Azure.KeyVault.Inputs.CertificateCertificatePolicyArgs\n {\n IssuerParameters = new Azure.KeyVault.Inputs.CertificateCertificatePolicyIssuerParametersArgs\n {\n Name = \"Self\",\n },\n KeyProperties = new Azure.KeyVault.Inputs.CertificateCertificatePolicyKeyPropertiesArgs\n {\n Exportable = true,\n KeySize = 2048,\n KeyType = \"RSA\",\n ReuseKey = true,\n },\n LifetimeActions = new[]\n {\n new Azure.KeyVault.Inputs.CertificateCertificatePolicyLifetimeActionArgs\n {\n Action = new Azure.KeyVault.Inputs.CertificateCertificatePolicyLifetimeActionActionArgs\n {\n ActionType = \"AutoRenew\",\n },\n Trigger = new Azure.KeyVault.Inputs.CertificateCertificatePolicyLifetimeActionTriggerArgs\n {\n DaysBeforeExpiry = 30,\n },\n },\n },\n SecretProperties = new Azure.KeyVault.Inputs.CertificateCertificatePolicySecretPropertiesArgs\n {\n ContentType = \"application/x-pkcs12\",\n },\n X509CertificateProperties = new Azure.KeyVault.Inputs.CertificateCertificatePolicyX509CertificatePropertiesArgs\n {\n ExtendedKeyUsages = new[]\n {\n \"1.3.6.1.5.5.7.3.1\",\n },\n KeyUsages = new[]\n {\n \"cRLSign\",\n \"dataEncipherment\",\n \"digitalSignature\",\n \"keyAgreement\",\n \"keyCertSign\",\n \"keyEncipherment\",\n },\n SubjectAlternativeNames = new Azure.KeyVault.Inputs.CertificateCertificatePolicyX509CertificatePropertiesSubjectAlternativeNamesArgs\n {\n DnsNames = new[]\n {\n \"internal.contoso.com\",\n \"domain.hello.world\",\n },\n },\n Subject = \"CN=hello-world\",\n ValidityInMonths = 12,\n },\n },\n });\n\n});\n```\n```go\npackage main\n\nimport (\n\t\"github.com/pulumi/pulumi-azure/sdk/v5/go/azure/core\"\n\t\"github.com/pulumi/pulumi-azure/sdk/v5/go/azure/keyvault\"\n\t\"github.com/pulumi/pulumi/sdk/v3/go/pulumi\"\n)\n\nfunc main() {\n\tpulumi.Run(func(ctx *pulumi.Context) error {\n\t\tcurrent, err := core.GetClientConfig(ctx, nil, nil)\n\t\tif err != nil {\n\t\t\treturn err\n\t\t}\n\t\texample, err := core.NewResourceGroup(ctx, \"example\", \u0026core.ResourceGroupArgs{\n\t\t\tName: pulumi.String(\"example-resources\"),\n\t\t\tLocation: pulumi.String(\"West Europe\"),\n\t\t})\n\t\tif err != nil {\n\t\t\treturn err\n\t\t}\n\t\texampleKeyVault, err := keyvault.NewKeyVault(ctx, \"example\", \u0026keyvault.KeyVaultArgs{\n\t\t\tName: pulumi.String(\"examplekeyvault\"),\n\t\t\tLocation: example.Location,\n\t\t\tResourceGroupName: example.Name,\n\t\t\tTenantId: pulumi.String(current.TenantId),\n\t\t\tSkuName: pulumi.String(\"standard\"),\n\t\t\tSoftDeleteRetentionDays: pulumi.Int(7),\n\t\t\tAccessPolicies: keyvault.KeyVaultAccessPolicyArray{\n\t\t\t\t\u0026keyvault.KeyVaultAccessPolicyArgs{\n\t\t\t\t\tTenantId: pulumi.String(current.TenantId),\n\t\t\t\t\tObjectId: pulumi.String(current.ObjectId),\n\t\t\t\t\tCertificatePermissions: pulumi.StringArray{\n\t\t\t\t\t\tpulumi.String(\"Create\"),\n\t\t\t\t\t\tpulumi.String(\"Delete\"),\n\t\t\t\t\t\tpulumi.String(\"DeleteIssuers\"),\n\t\t\t\t\t\tpulumi.String(\"Get\"),\n\t\t\t\t\t\tpulumi.String(\"GetIssuers\"),\n\t\t\t\t\t\tpulumi.String(\"Import\"),\n\t\t\t\t\t\tpulumi.String(\"List\"),\n\t\t\t\t\t\tpulumi.String(\"ListIssuers\"),\n\t\t\t\t\t\tpulumi.String(\"ManageContacts\"),\n\t\t\t\t\t\tpulumi.String(\"ManageIssuers\"),\n\t\t\t\t\t\tpulumi.String(\"Purge\"),\n\t\t\t\t\t\tpulumi.String(\"SetIssuers\"),\n\t\t\t\t\t\tpulumi.String(\"Update\"),\n\t\t\t\t\t},\n\t\t\t\t\tKeyPermissions: pulumi.StringArray{\n\t\t\t\t\t\tpulumi.String(\"Backup\"),\n\t\t\t\t\t\tpulumi.String(\"Create\"),\n\t\t\t\t\t\tpulumi.String(\"Decrypt\"),\n\t\t\t\t\t\tpulumi.String(\"Delete\"),\n\t\t\t\t\t\tpulumi.String(\"Encrypt\"),\n\t\t\t\t\t\tpulumi.String(\"Get\"),\n\t\t\t\t\t\tpulumi.String(\"Import\"),\n\t\t\t\t\t\tpulumi.String(\"List\"),\n\t\t\t\t\t\tpulumi.String(\"Purge\"),\n\t\t\t\t\t\tpulumi.String(\"Recover\"),\n\t\t\t\t\t\tpulumi.String(\"Restore\"),\n\t\t\t\t\t\tpulumi.String(\"Sign\"),\n\t\t\t\t\t\tpulumi.String(\"UnwrapKey\"),\n\t\t\t\t\t\tpulumi.String(\"Update\"),\n\t\t\t\t\t\tpulumi.String(\"Verify\"),\n\t\t\t\t\t\tpulumi.String(\"WrapKey\"),\n\t\t\t\t\t},\n\t\t\t\t\tSecretPermissions: pulumi.StringArray{\n\t\t\t\t\t\tpulumi.String(\"Backup\"),\n\t\t\t\t\t\tpulumi.String(\"Delete\"),\n\t\t\t\t\t\tpulumi.String(\"Get\"),\n\t\t\t\t\t\tpulumi.String(\"List\"),\n\t\t\t\t\t\tpulumi.String(\"Purge\"),\n\t\t\t\t\t\tpulumi.String(\"Recover\"),\n\t\t\t\t\t\tpulumi.String(\"Restore\"),\n\t\t\t\t\t\tpulumi.String(\"Set\"),\n\t\t\t\t\t},\n\t\t\t\t},\n\t\t\t},\n\t\t})\n\t\tif err != nil {\n\t\t\treturn err\n\t\t}\n\t\t_, err = keyvault.NewCertificate(ctx, \"example\", \u0026keyvault.CertificateArgs{\n\t\t\tName: pulumi.String(\"generated-cert\"),\n\t\t\tKeyVaultId: exampleKeyVault.ID(),\n\t\t\tCertificatePolicy: \u0026keyvault.CertificateCertificatePolicyArgs{\n\t\t\t\tIssuerParameters: \u0026keyvault.CertificateCertificatePolicyIssuerParametersArgs{\n\t\t\t\t\tName: pulumi.String(\"Self\"),\n\t\t\t\t},\n\t\t\t\tKeyProperties: \u0026keyvault.CertificateCertificatePolicyKeyPropertiesArgs{\n\t\t\t\t\tExportable: pulumi.Bool(true),\n\t\t\t\t\tKeySize: pulumi.Int(2048),\n\t\t\t\t\tKeyType: pulumi.String(\"RSA\"),\n\t\t\t\t\tReuseKey: pulumi.Bool(true),\n\t\t\t\t},\n\t\t\t\tLifetimeActions: keyvault.CertificateCertificatePolicyLifetimeActionArray{\n\t\t\t\t\t\u0026keyvault.CertificateCertificatePolicyLifetimeActionArgs{\n\t\t\t\t\t\tAction: \u0026keyvault.CertificateCertificatePolicyLifetimeActionActionArgs{\n\t\t\t\t\t\t\tActionType: pulumi.String(\"AutoRenew\"),\n\t\t\t\t\t\t},\n\t\t\t\t\t\tTrigger: \u0026keyvault.CertificateCertificatePolicyLifetimeActionTriggerArgs{\n\t\t\t\t\t\t\tDaysBeforeExpiry: pulumi.Int(30),\n\t\t\t\t\t\t},\n\t\t\t\t\t},\n\t\t\t\t},\n\t\t\t\tSecretProperties: \u0026keyvault.CertificateCertificatePolicySecretPropertiesArgs{\n\t\t\t\t\tContentType: pulumi.String(\"application/x-pkcs12\"),\n\t\t\t\t},\n\t\t\t\tX509CertificateProperties: \u0026keyvault.CertificateCertificatePolicyX509CertificatePropertiesArgs{\n\t\t\t\t\tExtendedKeyUsages: pulumi.StringArray{\n\t\t\t\t\t\tpulumi.String(\"1.3.6.1.5.5.7.3.1\"),\n\t\t\t\t\t},\n\t\t\t\t\tKeyUsages: pulumi.StringArray{\n\t\t\t\t\t\tpulumi.String(\"cRLSign\"),\n\t\t\t\t\t\tpulumi.String(\"dataEncipherment\"),\n\t\t\t\t\t\tpulumi.String(\"digitalSignature\"),\n\t\t\t\t\t\tpulumi.String(\"keyAgreement\"),\n\t\t\t\t\t\tpulumi.String(\"keyCertSign\"),\n\t\t\t\t\t\tpulumi.String(\"keyEncipherment\"),\n\t\t\t\t\t},\n\t\t\t\t\tSubjectAlternativeNames: \u0026keyvault.CertificateCertificatePolicyX509CertificatePropertiesSubjectAlternativeNamesArgs{\n\t\t\t\t\t\tDnsNames: pulumi.StringArray{\n\t\t\t\t\t\t\tpulumi.String(\"internal.contoso.com\"),\n\t\t\t\t\t\t\tpulumi.String(\"domain.hello.world\"),\n\t\t\t\t\t\t},\n\t\t\t\t\t},\n\t\t\t\t\tSubject: pulumi.String(\"CN=hello-world\"),\n\t\t\t\t\tValidityInMonths: pulumi.Int(12),\n\t\t\t\t},\n\t\t\t},\n\t\t})\n\t\tif err != nil {\n\t\t\treturn err\n\t\t}\n\t\treturn nil\n\t})\n}\n```\n```java\npackage generated_program;\n\nimport com.pulumi.Context;\nimport com.pulumi.Pulumi;\nimport com.pulumi.core.Output;\nimport com.pulumi.azure.core.CoreFunctions;\nimport com.pulumi.azure.core.ResourceGroup;\nimport com.pulumi.azure.core.ResourceGroupArgs;\nimport com.pulumi.azure.keyvault.KeyVault;\nimport com.pulumi.azure.keyvault.KeyVaultArgs;\nimport com.pulumi.azure.keyvault.inputs.KeyVaultAccessPolicyArgs;\nimport com.pulumi.azure.keyvault.Certificate;\nimport com.pulumi.azure.keyvault.CertificateArgs;\nimport com.pulumi.azure.keyvault.inputs.CertificateCertificatePolicyArgs;\nimport com.pulumi.azure.keyvault.inputs.CertificateCertificatePolicyIssuerParametersArgs;\nimport com.pulumi.azure.keyvault.inputs.CertificateCertificatePolicyKeyPropertiesArgs;\nimport com.pulumi.azure.keyvault.inputs.CertificateCertificatePolicySecretPropertiesArgs;\nimport com.pulumi.azure.keyvault.inputs.CertificateCertificatePolicyX509CertificatePropertiesArgs;\nimport com.pulumi.azure.keyvault.inputs.CertificateCertificatePolicyX509CertificatePropertiesSubjectAlternativeNamesArgs;\nimport java.util.List;\nimport java.util.ArrayList;\nimport java.util.Map;\nimport java.io.File;\nimport java.nio.file.Files;\nimport java.nio.file.Paths;\n\npublic class App {\n public static void main(String[] args) {\n Pulumi.run(App::stack);\n }\n\n public static void stack(Context ctx) {\n final var current = CoreFunctions.getClientConfig();\n\n var example = new ResourceGroup(\"example\", ResourceGroupArgs.builder() \n .name(\"example-resources\")\n .location(\"West Europe\")\n .build());\n\n var exampleKeyVault = new KeyVault(\"exampleKeyVault\", KeyVaultArgs.builder() \n .name(\"examplekeyvault\")\n .location(example.location())\n .resourceGroupName(example.name())\n .tenantId(current.applyValue(getClientConfigResult -\u003e getClientConfigResult.tenantId()))\n .skuName(\"standard\")\n .softDeleteRetentionDays(7)\n .accessPolicies(KeyVaultAccessPolicyArgs.builder()\n .tenantId(current.applyValue(getClientConfigResult -\u003e getClientConfigResult.tenantId()))\n .objectId(current.applyValue(getClientConfigResult -\u003e getClientConfigResult.objectId()))\n .certificatePermissions( \n \"Create\",\n \"Delete\",\n \"DeleteIssuers\",\n \"Get\",\n \"GetIssuers\",\n \"Import\",\n \"List\",\n \"ListIssuers\",\n \"ManageContacts\",\n \"ManageIssuers\",\n \"Purge\",\n \"SetIssuers\",\n \"Update\")\n .keyPermissions( \n \"Backup\",\n \"Create\",\n \"Decrypt\",\n \"Delete\",\n \"Encrypt\",\n \"Get\",\n \"Import\",\n \"List\",\n \"Purge\",\n \"Recover\",\n \"Restore\",\n \"Sign\",\n \"UnwrapKey\",\n \"Update\",\n \"Verify\",\n \"WrapKey\")\n .secretPermissions( \n \"Backup\",\n \"Delete\",\n \"Get\",\n \"List\",\n \"Purge\",\n \"Recover\",\n \"Restore\",\n \"Set\")\n .build())\n .build());\n\n var exampleCertificate = new Certificate(\"exampleCertificate\", CertificateArgs.builder() \n .name(\"generated-cert\")\n .keyVaultId(exampleKeyVault.id())\n .certificatePolicy(CertificateCertificatePolicyArgs.builder()\n .issuerParameters(CertificateCertificatePolicyIssuerParametersArgs.builder()\n .name(\"Self\")\n .build())\n .keyProperties(CertificateCertificatePolicyKeyPropertiesArgs.builder()\n .exportable(true)\n .keySize(2048)\n .keyType(\"RSA\")\n .reuseKey(true)\n .build())\n .lifetimeActions(CertificateCertificatePolicyLifetimeActionArgs.builder()\n .action(CertificateCertificatePolicyLifetimeActionActionArgs.builder()\n .actionType(\"AutoRenew\")\n .build())\n .trigger(CertificateCertificatePolicyLifetimeActionTriggerArgs.builder()\n .daysBeforeExpiry(30)\n .build())\n .build())\n .secretProperties(CertificateCertificatePolicySecretPropertiesArgs.builder()\n .contentType(\"application/x-pkcs12\")\n .build())\n .x509CertificateProperties(CertificateCertificatePolicyX509CertificatePropertiesArgs.builder()\n .extendedKeyUsages(\"1.3.6.1.5.5.7.3.1\")\n .keyUsages( \n \"cRLSign\",\n \"dataEncipherment\",\n \"digitalSignature\",\n \"keyAgreement\",\n \"keyCertSign\",\n \"keyEncipherment\")\n .subjectAlternativeNames(CertificateCertificatePolicyX509CertificatePropertiesSubjectAlternativeNamesArgs.builder()\n .dnsNames( \n \"internal.contoso.com\",\n \"domain.hello.world\")\n .build())\n .subject(\"CN=hello-world\")\n .validityInMonths(12)\n .build())\n .build())\n .build());\n\n }\n}\n```\n```yaml\nresources:\n example:\n type: azure:core:ResourceGroup\n properties:\n name: example-resources\n location: West Europe\n exampleKeyVault:\n type: azure:keyvault:KeyVault\n name: example\n properties:\n name: examplekeyvault\n location: ${example.location}\n resourceGroupName: ${example.name}\n tenantId: ${current.tenantId}\n skuName: standard\n softDeleteRetentionDays: 7\n accessPolicies:\n - tenantId: ${current.tenantId}\n objectId: ${current.objectId}\n certificatePermissions:\n - Create\n - Delete\n - DeleteIssuers\n - Get\n - GetIssuers\n - Import\n - List\n - ListIssuers\n - ManageContacts\n - ManageIssuers\n - Purge\n - SetIssuers\n - Update\n keyPermissions:\n - Backup\n - Create\n - Decrypt\n - Delete\n - Encrypt\n - Get\n - Import\n - List\n - Purge\n - Recover\n - Restore\n - Sign\n - UnwrapKey\n - Update\n - Verify\n - WrapKey\n secretPermissions:\n - Backup\n - Delete\n - Get\n - List\n - Purge\n - Recover\n - Restore\n - Set\n exampleCertificate:\n type: azure:keyvault:Certificate\n name: example\n properties:\n name: generated-cert\n keyVaultId: ${exampleKeyVault.id}\n certificatePolicy:\n issuerParameters:\n name: Self\n keyProperties:\n exportable: true\n keySize: 2048\n keyType: RSA\n reuseKey: true\n lifetimeActions:\n - action:\n actionType: AutoRenew\n trigger:\n daysBeforeExpiry: 30\n secretProperties:\n contentType: application/x-pkcs12\n x509CertificateProperties:\n extendedKeyUsages:\n - 1.3.6.1.5.5.7.3.1\n keyUsages:\n - cRLSign\n - dataEncipherment\n - digitalSignature\n - keyAgreement\n - keyCertSign\n - keyEncipherment\n subjectAlternativeNames:\n dnsNames:\n - internal.contoso.com\n - domain.hello.world\n subject: CN=hello-world\n validityInMonths: 12\nvariables:\n current:\n fn::invoke:\n Function: azure:core:getClientConfig\n Arguments: {}\n```\n\u003c!--End PulumiCodeChooser --\u003e\n\n## Import\n\nKey Vault Certificates can be imported using the `resource id`, e.g.\n\n```sh\n$ pulumi import azure:keyvault/certifiate:Certifiate example \"https://example-keyvault.vault.azure.net/certificates/example/fdf067c93bbb4b22bff4d8b7a9a56217\"\n```\n\n", "properties": { "certificate": { "$ref": "#/types/azure:keyvault/CertifiateCertificate:CertifiateCertificate", @@ -194437,7 +194501,7 @@ "deprecationMessage": "azure.keyvault.Certifiate has been deprecated in favor of azure.keyvault.Certificate" }, "azure:keyvault/certificate:Certificate": { - "description": "Manages a Key Vault Certificate.\n\n\u003c\u003c\u003c\u003c\u003c\u003c\u003c HEAD\n\u003e **Note:** The Azure Provider includes a Feature Toggle which will purge a Key Vault Certificate resource on destroy, rather than the default soft-delete. See `purge_soft_deleted_certificates_on_destroy` for more information. \n\n=======\n\u003e\u003e\u003e\u003e\u003e\u003e\u003e 8d78c87098 (Update-documentation)\n## Example Usage\n\n### Importing A PFX)\n\n\u003e **Note:** this example assumed the PFX file is located in the same directory at `certificate-to-import.pfx`.\n\n\u003c!--Start PulumiCodeChooser --\u003e\n```typescript\nimport * as pulumi from \"@pulumi/pulumi\";\nimport * as azure from \"@pulumi/azure\";\nimport * as std from \"@pulumi/std\";\n\nconst current = azure.core.getClientConfig({});\nconst example = new azure.core.ResourceGroup(\"example\", {\n name: \"example-resources\",\n location: \"West Europe\",\n});\nconst exampleKeyVault = new azure.keyvault.KeyVault(\"example\", {\n name: \"examplekeyvault\",\n location: example.location,\n resourceGroupName: example.name,\n tenantId: current.then(current =\u003e current.tenantId),\n skuName: \"premium\",\n accessPolicies: [{\n tenantId: current.then(current =\u003e current.tenantId),\n objectId: current.then(current =\u003e current.objectId),\n certificatePermissions: [\n \"Create\",\n \"Delete\",\n \"DeleteIssuers\",\n \"Get\",\n \"GetIssuers\",\n \"Import\",\n \"List\",\n \"ListIssuers\",\n \"ManageContacts\",\n \"ManageIssuers\",\n \"SetIssuers\",\n \"Update\",\n ],\n keyPermissions: [\n \"Backup\",\n \"Create\",\n \"Decrypt\",\n \"Delete\",\n \"Encrypt\",\n \"Get\",\n \"Import\",\n \"List\",\n \"Purge\",\n \"Recover\",\n \"Restore\",\n \"Sign\",\n \"UnwrapKey\",\n \"Update\",\n \"Verify\",\n \"WrapKey\",\n ],\n secretPermissions: [\n \"Backup\",\n \"Delete\",\n \"Get\",\n \"List\",\n \"Purge\",\n \"Recover\",\n \"Restore\",\n \"Set\",\n ],\n }],\n});\nconst exampleCertificate = new azure.keyvault.Certificate(\"example\", {\n name: \"imported-cert\",\n keyVaultId: exampleKeyVault.id,\n certificate: {\n contents: std.filebase64({\n input: \"certificate-to-import.pfx\",\n }).then(invoke =\u003e invoke.result),\n password: \"\",\n },\n});\n```\n```python\nimport pulumi\nimport pulumi_azure as azure\nimport pulumi_std as std\n\ncurrent = azure.core.get_client_config()\nexample = azure.core.ResourceGroup(\"example\",\n name=\"example-resources\",\n location=\"West Europe\")\nexample_key_vault = azure.keyvault.KeyVault(\"example\",\n name=\"examplekeyvault\",\n location=example.location,\n resource_group_name=example.name,\n tenant_id=current.tenant_id,\n sku_name=\"premium\",\n access_policies=[azure.keyvault.KeyVaultAccessPolicyArgs(\n tenant_id=current.tenant_id,\n object_id=current.object_id,\n certificate_permissions=[\n \"Create\",\n \"Delete\",\n \"DeleteIssuers\",\n \"Get\",\n \"GetIssuers\",\n \"Import\",\n \"List\",\n \"ListIssuers\",\n \"ManageContacts\",\n \"ManageIssuers\",\n \"SetIssuers\",\n \"Update\",\n ],\n key_permissions=[\n \"Backup\",\n \"Create\",\n \"Decrypt\",\n \"Delete\",\n \"Encrypt\",\n \"Get\",\n \"Import\",\n \"List\",\n \"Purge\",\n \"Recover\",\n \"Restore\",\n \"Sign\",\n \"UnwrapKey\",\n \"Update\",\n \"Verify\",\n \"WrapKey\",\n ],\n secret_permissions=[\n \"Backup\",\n \"Delete\",\n \"Get\",\n \"List\",\n \"Purge\",\n \"Recover\",\n \"Restore\",\n \"Set\",\n ],\n )])\nexample_certificate = azure.keyvault.Certificate(\"example\",\n name=\"imported-cert\",\n key_vault_id=example_key_vault.id,\n certificate=azure.keyvault.CertificateCertificateArgs(\n contents=std.filebase64(input=\"certificate-to-import.pfx\").result,\n password=\"\",\n ))\n```\n```csharp\nusing System.Collections.Generic;\nusing System.Linq;\nusing Pulumi;\nusing Azure = Pulumi.Azure;\nusing Std = Pulumi.Std;\n\nreturn await Deployment.RunAsync(() =\u003e \n{\n var current = Azure.Core.GetClientConfig.Invoke();\n\n var example = new Azure.Core.ResourceGroup(\"example\", new()\n {\n Name = \"example-resources\",\n Location = \"West Europe\",\n });\n\n var exampleKeyVault = new Azure.KeyVault.KeyVault(\"example\", new()\n {\n Name = \"examplekeyvault\",\n Location = example.Location,\n ResourceGroupName = example.Name,\n TenantId = current.Apply(getClientConfigResult =\u003e getClientConfigResult.TenantId),\n SkuName = \"premium\",\n AccessPolicies = new[]\n {\n new Azure.KeyVault.Inputs.KeyVaultAccessPolicyArgs\n {\n TenantId = current.Apply(getClientConfigResult =\u003e getClientConfigResult.TenantId),\n ObjectId = current.Apply(getClientConfigResult =\u003e getClientConfigResult.ObjectId),\n CertificatePermissions = new[]\n {\n \"Create\",\n \"Delete\",\n \"DeleteIssuers\",\n \"Get\",\n \"GetIssuers\",\n \"Import\",\n \"List\",\n \"ListIssuers\",\n \"ManageContacts\",\n \"ManageIssuers\",\n \"SetIssuers\",\n \"Update\",\n },\n KeyPermissions = new[]\n {\n \"Backup\",\n \"Create\",\n \"Decrypt\",\n \"Delete\",\n \"Encrypt\",\n \"Get\",\n \"Import\",\n \"List\",\n \"Purge\",\n \"Recover\",\n \"Restore\",\n \"Sign\",\n \"UnwrapKey\",\n \"Update\",\n \"Verify\",\n \"WrapKey\",\n },\n SecretPermissions = new[]\n {\n \"Backup\",\n \"Delete\",\n \"Get\",\n \"List\",\n \"Purge\",\n \"Recover\",\n \"Restore\",\n \"Set\",\n },\n },\n },\n });\n\n var exampleCertificate = new Azure.KeyVault.Certificate(\"example\", new()\n {\n Name = \"imported-cert\",\n KeyVaultId = exampleKeyVault.Id,\n KeyVaultCertificate = new Azure.KeyVault.Inputs.CertificateCertificateArgs\n {\n Contents = Std.Filebase64.Invoke(new()\n {\n Input = \"certificate-to-import.pfx\",\n }).Apply(invoke =\u003e invoke.Result),\n Password = \"\",\n },\n });\n\n});\n```\n```go\npackage main\n\nimport (\n\t\"github.com/pulumi/pulumi-azure/sdk/v5/go/azure/core\"\n\t\"github.com/pulumi/pulumi-azure/sdk/v5/go/azure/keyvault\"\n\t\"github.com/pulumi/pulumi-std/sdk/go/std\"\n\t\"github.com/pulumi/pulumi/sdk/v3/go/pulumi\"\n)\n\nfunc main() {\n\tpulumi.Run(func(ctx *pulumi.Context) error {\n\t\tcurrent, err := core.GetClientConfig(ctx, nil, nil)\n\t\tif err != nil {\n\t\t\treturn err\n\t\t}\n\t\texample, err := core.NewResourceGroup(ctx, \"example\", \u0026core.ResourceGroupArgs{\n\t\t\tName: pulumi.String(\"example-resources\"),\n\t\t\tLocation: pulumi.String(\"West Europe\"),\n\t\t})\n\t\tif err != nil {\n\t\t\treturn err\n\t\t}\n\t\texampleKeyVault, err := keyvault.NewKeyVault(ctx, \"example\", \u0026keyvault.KeyVaultArgs{\n\t\t\tName: pulumi.String(\"examplekeyvault\"),\n\t\t\tLocation: example.Location,\n\t\t\tResourceGroupName: example.Name,\n\t\t\tTenantId: pulumi.String(current.TenantId),\n\t\t\tSkuName: pulumi.String(\"premium\"),\n\t\t\tAccessPolicies: keyvault.KeyVaultAccessPolicyArray{\n\t\t\t\t\u0026keyvault.KeyVaultAccessPolicyArgs{\n\t\t\t\t\tTenantId: pulumi.String(current.TenantId),\n\t\t\t\t\tObjectId: pulumi.String(current.ObjectId),\n\t\t\t\t\tCertificatePermissions: pulumi.StringArray{\n\t\t\t\t\t\tpulumi.String(\"Create\"),\n\t\t\t\t\t\tpulumi.String(\"Delete\"),\n\t\t\t\t\t\tpulumi.String(\"DeleteIssuers\"),\n\t\t\t\t\t\tpulumi.String(\"Get\"),\n\t\t\t\t\t\tpulumi.String(\"GetIssuers\"),\n\t\t\t\t\t\tpulumi.String(\"Import\"),\n\t\t\t\t\t\tpulumi.String(\"List\"),\n\t\t\t\t\t\tpulumi.String(\"ListIssuers\"),\n\t\t\t\t\t\tpulumi.String(\"ManageContacts\"),\n\t\t\t\t\t\tpulumi.String(\"ManageIssuers\"),\n\t\t\t\t\t\tpulumi.String(\"SetIssuers\"),\n\t\t\t\t\t\tpulumi.String(\"Update\"),\n\t\t\t\t\t},\n\t\t\t\t\tKeyPermissions: pulumi.StringArray{\n\t\t\t\t\t\tpulumi.String(\"Backup\"),\n\t\t\t\t\t\tpulumi.String(\"Create\"),\n\t\t\t\t\t\tpulumi.String(\"Decrypt\"),\n\t\t\t\t\t\tpulumi.String(\"Delete\"),\n\t\t\t\t\t\tpulumi.String(\"Encrypt\"),\n\t\t\t\t\t\tpulumi.String(\"Get\"),\n\t\t\t\t\t\tpulumi.String(\"Import\"),\n\t\t\t\t\t\tpulumi.String(\"List\"),\n\t\t\t\t\t\tpulumi.String(\"Purge\"),\n\t\t\t\t\t\tpulumi.String(\"Recover\"),\n\t\t\t\t\t\tpulumi.String(\"Restore\"),\n\t\t\t\t\t\tpulumi.String(\"Sign\"),\n\t\t\t\t\t\tpulumi.String(\"UnwrapKey\"),\n\t\t\t\t\t\tpulumi.String(\"Update\"),\n\t\t\t\t\t\tpulumi.String(\"Verify\"),\n\t\t\t\t\t\tpulumi.String(\"WrapKey\"),\n\t\t\t\t\t},\n\t\t\t\t\tSecretPermissions: pulumi.StringArray{\n\t\t\t\t\t\tpulumi.String(\"Backup\"),\n\t\t\t\t\t\tpulumi.String(\"Delete\"),\n\t\t\t\t\t\tpulumi.String(\"Get\"),\n\t\t\t\t\t\tpulumi.String(\"List\"),\n\t\t\t\t\t\tpulumi.String(\"Purge\"),\n\t\t\t\t\t\tpulumi.String(\"Recover\"),\n\t\t\t\t\t\tpulumi.String(\"Restore\"),\n\t\t\t\t\t\tpulumi.String(\"Set\"),\n\t\t\t\t\t},\n\t\t\t\t},\n\t\t\t},\n\t\t})\n\t\tif err != nil {\n\t\t\treturn err\n\t\t}\n\t\tinvokeFilebase64, err := std.Filebase64(ctx, \u0026std.Filebase64Args{\n\t\t\tInput: \"certificate-to-import.pfx\",\n\t\t}, nil)\n\t\tif err != nil {\n\t\t\treturn err\n\t\t}\n\t\t_, err = keyvault.NewCertificate(ctx, \"example\", \u0026keyvault.CertificateArgs{\n\t\t\tName: pulumi.String(\"imported-cert\"),\n\t\t\tKeyVaultId: exampleKeyVault.ID(),\n\t\t\tCertificate: \u0026keyvault.CertificateCertificateArgs{\n\t\t\t\tContents: invokeFilebase64.Result,\n\t\t\t\tPassword: pulumi.String(\"\"),\n\t\t\t},\n\t\t})\n\t\tif err != nil {\n\t\t\treturn err\n\t\t}\n\t\treturn nil\n\t})\n}\n```\n```java\npackage generated_program;\n\nimport com.pulumi.Context;\nimport com.pulumi.Pulumi;\nimport com.pulumi.core.Output;\nimport com.pulumi.azure.core.CoreFunctions;\nimport com.pulumi.azure.core.ResourceGroup;\nimport com.pulumi.azure.core.ResourceGroupArgs;\nimport com.pulumi.azure.keyvault.KeyVault;\nimport com.pulumi.azure.keyvault.KeyVaultArgs;\nimport com.pulumi.azure.keyvault.inputs.KeyVaultAccessPolicyArgs;\nimport com.pulumi.azure.keyvault.Certificate;\nimport com.pulumi.azure.keyvault.CertificateArgs;\nimport com.pulumi.azure.keyvault.inputs.CertificateCertificateArgs;\nimport java.util.List;\nimport java.util.ArrayList;\nimport java.util.Map;\nimport java.io.File;\nimport java.nio.file.Files;\nimport java.nio.file.Paths;\n\npublic class App {\n public static void main(String[] args) {\n Pulumi.run(App::stack);\n }\n\n public static void stack(Context ctx) {\n final var current = CoreFunctions.getClientConfig();\n\n var example = new ResourceGroup(\"example\", ResourceGroupArgs.builder() \n .name(\"example-resources\")\n .location(\"West Europe\")\n .build());\n\n var exampleKeyVault = new KeyVault(\"exampleKeyVault\", KeyVaultArgs.builder() \n .name(\"examplekeyvault\")\n .location(example.location())\n .resourceGroupName(example.name())\n .tenantId(current.applyValue(getClientConfigResult -\u003e getClientConfigResult.tenantId()))\n .skuName(\"premium\")\n .accessPolicies(KeyVaultAccessPolicyArgs.builder()\n .tenantId(current.applyValue(getClientConfigResult -\u003e getClientConfigResult.tenantId()))\n .objectId(current.applyValue(getClientConfigResult -\u003e getClientConfigResult.objectId()))\n .certificatePermissions( \n \"Create\",\n \"Delete\",\n \"DeleteIssuers\",\n \"Get\",\n \"GetIssuers\",\n \"Import\",\n \"List\",\n \"ListIssuers\",\n \"ManageContacts\",\n \"ManageIssuers\",\n \"SetIssuers\",\n \"Update\")\n .keyPermissions( \n \"Backup\",\n \"Create\",\n \"Decrypt\",\n \"Delete\",\n \"Encrypt\",\n \"Get\",\n \"Import\",\n \"List\",\n \"Purge\",\n \"Recover\",\n \"Restore\",\n \"Sign\",\n \"UnwrapKey\",\n \"Update\",\n \"Verify\",\n \"WrapKey\")\n .secretPermissions( \n \"Backup\",\n \"Delete\",\n \"Get\",\n \"List\",\n \"Purge\",\n \"Recover\",\n \"Restore\",\n \"Set\")\n .build())\n .build());\n\n var exampleCertificate = new Certificate(\"exampleCertificate\", CertificateArgs.builder() \n .name(\"imported-cert\")\n .keyVaultId(exampleKeyVault.id())\n .certificate(CertificateCertificateArgs.builder()\n .contents(StdFunctions.filebase64(Filebase64Args.builder()\n .input(\"certificate-to-import.pfx\")\n .build()).result())\n .password(\"\")\n .build())\n .build());\n\n }\n}\n```\n```yaml\nresources:\n example:\n type: azure:core:ResourceGroup\n properties:\n name: example-resources\n location: West Europe\n exampleKeyVault:\n type: azure:keyvault:KeyVault\n name: example\n properties:\n name: examplekeyvault\n location: ${example.location}\n resourceGroupName: ${example.name}\n tenantId: ${current.tenantId}\n skuName: premium\n accessPolicies:\n - tenantId: ${current.tenantId}\n objectId: ${current.objectId}\n certificatePermissions:\n - Create\n - Delete\n - DeleteIssuers\n - Get\n - GetIssuers\n - Import\n - List\n - ListIssuers\n - ManageContacts\n - ManageIssuers\n - SetIssuers\n - Update\n keyPermissions:\n - Backup\n - Create\n - Decrypt\n - Delete\n - Encrypt\n - Get\n - Import\n - List\n - Purge\n - Recover\n - Restore\n - Sign\n - UnwrapKey\n - Update\n - Verify\n - WrapKey\n secretPermissions:\n - Backup\n - Delete\n - Get\n - List\n - Purge\n - Recover\n - Restore\n - Set\n exampleCertificate:\n type: azure:keyvault:Certificate\n name: example\n properties:\n name: imported-cert\n keyVaultId: ${exampleKeyVault.id}\n certificate:\n contents:\n fn::invoke:\n Function: std:filebase64\n Arguments:\n input: certificate-to-import.pfx\n Return: result\n password:\nvariables:\n current:\n fn::invoke:\n Function: azure:core:getClientConfig\n Arguments: {}\n```\n\u003c!--End PulumiCodeChooser --\u003e\n\n### Generating a new certificate\n\n\u003c!--Start PulumiCodeChooser --\u003e\n```typescript\nimport * as pulumi from \"@pulumi/pulumi\";\nimport * as azure from \"@pulumi/azure\";\n\nconst current = azure.core.getClientConfig({});\nconst example = new azure.core.ResourceGroup(\"example\", {\n name: \"example-resources\",\n location: \"West Europe\",\n});\nconst exampleKeyVault = new azure.keyvault.KeyVault(\"example\", {\n name: \"examplekeyvault\",\n location: example.location,\n resourceGroupName: example.name,\n tenantId: current.then(current =\u003e current.tenantId),\n skuName: \"standard\",\n softDeleteRetentionDays: 7,\n accessPolicies: [{\n tenantId: current.then(current =\u003e current.tenantId),\n objectId: current.then(current =\u003e current.objectId),\n certificatePermissions: [\n \"Create\",\n \"Delete\",\n \"DeleteIssuers\",\n \"Get\",\n \"GetIssuers\",\n \"Import\",\n \"List\",\n \"ListIssuers\",\n \"ManageContacts\",\n \"ManageIssuers\",\n \"Purge\",\n \"SetIssuers\",\n \"Update\",\n ],\n keyPermissions: [\n \"Backup\",\n \"Create\",\n \"Decrypt\",\n \"Delete\",\n \"Encrypt\",\n \"Get\",\n \"Import\",\n \"List\",\n \"Purge\",\n \"Recover\",\n \"Restore\",\n \"Sign\",\n \"UnwrapKey\",\n \"Update\",\n \"Verify\",\n \"WrapKey\",\n ],\n secretPermissions: [\n \"Backup\",\n \"Delete\",\n \"Get\",\n \"List\",\n \"Purge\",\n \"Recover\",\n \"Restore\",\n \"Set\",\n ],\n }],\n});\nconst exampleCertificate = new azure.keyvault.Certificate(\"example\", {\n name: \"generated-cert\",\n keyVaultId: exampleKeyVault.id,\n certificatePolicy: {\n issuerParameters: {\n name: \"Self\",\n },\n keyProperties: {\n exportable: true,\n keySize: 2048,\n keyType: \"RSA\",\n reuseKey: true,\n },\n lifetimeActions: [{\n action: {\n actionType: \"AutoRenew\",\n },\n trigger: {\n daysBeforeExpiry: 30,\n },\n }],\n secretProperties: {\n contentType: \"application/x-pkcs12\",\n },\n x509CertificateProperties: {\n extendedKeyUsages: [\"1.3.6.1.5.5.7.3.1\"],\n keyUsages: [\n \"cRLSign\",\n \"dataEncipherment\",\n \"digitalSignature\",\n \"keyAgreement\",\n \"keyCertSign\",\n \"keyEncipherment\",\n ],\n subjectAlternativeNames: {\n dnsNames: [\n \"internal.contoso.com\",\n \"domain.hello.world\",\n ],\n },\n subject: \"CN=hello-world\",\n validityInMonths: 12,\n },\n },\n});\n```\n```python\nimport pulumi\nimport pulumi_azure as azure\n\ncurrent = azure.core.get_client_config()\nexample = azure.core.ResourceGroup(\"example\",\n name=\"example-resources\",\n location=\"West Europe\")\nexample_key_vault = azure.keyvault.KeyVault(\"example\",\n name=\"examplekeyvault\",\n location=example.location,\n resource_group_name=example.name,\n tenant_id=current.tenant_id,\n sku_name=\"standard\",\n soft_delete_retention_days=7,\n access_policies=[azure.keyvault.KeyVaultAccessPolicyArgs(\n tenant_id=current.tenant_id,\n object_id=current.object_id,\n certificate_permissions=[\n \"Create\",\n \"Delete\",\n \"DeleteIssuers\",\n \"Get\",\n \"GetIssuers\",\n \"Import\",\n \"List\",\n \"ListIssuers\",\n \"ManageContacts\",\n \"ManageIssuers\",\n \"Purge\",\n \"SetIssuers\",\n \"Update\",\n ],\n key_permissions=[\n \"Backup\",\n \"Create\",\n \"Decrypt\",\n \"Delete\",\n \"Encrypt\",\n \"Get\",\n \"Import\",\n \"List\",\n \"Purge\",\n \"Recover\",\n \"Restore\",\n \"Sign\",\n \"UnwrapKey\",\n \"Update\",\n \"Verify\",\n \"WrapKey\",\n ],\n secret_permissions=[\n \"Backup\",\n \"Delete\",\n \"Get\",\n \"List\",\n \"Purge\",\n \"Recover\",\n \"Restore\",\n \"Set\",\n ],\n )])\nexample_certificate = azure.keyvault.Certificate(\"example\",\n name=\"generated-cert\",\n key_vault_id=example_key_vault.id,\n certificate_policy=azure.keyvault.CertificateCertificatePolicyArgs(\n issuer_parameters=azure.keyvault.CertificateCertificatePolicyIssuerParametersArgs(\n name=\"Self\",\n ),\n key_properties=azure.keyvault.CertificateCertificatePolicyKeyPropertiesArgs(\n exportable=True,\n key_size=2048,\n key_type=\"RSA\",\n reuse_key=True,\n ),\n lifetime_actions=[azure.keyvault.CertificateCertificatePolicyLifetimeActionArgs(\n action=azure.keyvault.CertificateCertificatePolicyLifetimeActionActionArgs(\n action_type=\"AutoRenew\",\n ),\n trigger=azure.keyvault.CertificateCertificatePolicyLifetimeActionTriggerArgs(\n days_before_expiry=30,\n ),\n )],\n secret_properties=azure.keyvault.CertificateCertificatePolicySecretPropertiesArgs(\n content_type=\"application/x-pkcs12\",\n ),\n x509_certificate_properties=azure.keyvault.CertificateCertificatePolicyX509CertificatePropertiesArgs(\n extended_key_usages=[\"1.3.6.1.5.5.7.3.1\"],\n key_usages=[\n \"cRLSign\",\n \"dataEncipherment\",\n \"digitalSignature\",\n \"keyAgreement\",\n \"keyCertSign\",\n \"keyEncipherment\",\n ],\n subject_alternative_names=azure.keyvault.CertificateCertificatePolicyX509CertificatePropertiesSubjectAlternativeNamesArgs(\n dns_names=[\n \"internal.contoso.com\",\n \"domain.hello.world\",\n ],\n ),\n subject=\"CN=hello-world\",\n validity_in_months=12,\n ),\n ))\n```\n```csharp\nusing System.Collections.Generic;\nusing System.Linq;\nusing Pulumi;\nusing Azure = Pulumi.Azure;\n\nreturn await Deployment.RunAsync(() =\u003e \n{\n var current = Azure.Core.GetClientConfig.Invoke();\n\n var example = new Azure.Core.ResourceGroup(\"example\", new()\n {\n Name = \"example-resources\",\n Location = \"West Europe\",\n });\n\n var exampleKeyVault = new Azure.KeyVault.KeyVault(\"example\", new()\n {\n Name = \"examplekeyvault\",\n Location = example.Location,\n ResourceGroupName = example.Name,\n TenantId = current.Apply(getClientConfigResult =\u003e getClientConfigResult.TenantId),\n SkuName = \"standard\",\n SoftDeleteRetentionDays = 7,\n AccessPolicies = new[]\n {\n new Azure.KeyVault.Inputs.KeyVaultAccessPolicyArgs\n {\n TenantId = current.Apply(getClientConfigResult =\u003e getClientConfigResult.TenantId),\n ObjectId = current.Apply(getClientConfigResult =\u003e getClientConfigResult.ObjectId),\n CertificatePermissions = new[]\n {\n \"Create\",\n \"Delete\",\n \"DeleteIssuers\",\n \"Get\",\n \"GetIssuers\",\n \"Import\",\n \"List\",\n \"ListIssuers\",\n \"ManageContacts\",\n \"ManageIssuers\",\n \"Purge\",\n \"SetIssuers\",\n \"Update\",\n },\n KeyPermissions = new[]\n {\n \"Backup\",\n \"Create\",\n \"Decrypt\",\n \"Delete\",\n \"Encrypt\",\n \"Get\",\n \"Import\",\n \"List\",\n \"Purge\",\n \"Recover\",\n \"Restore\",\n \"Sign\",\n \"UnwrapKey\",\n \"Update\",\n \"Verify\",\n \"WrapKey\",\n },\n SecretPermissions = new[]\n {\n \"Backup\",\n \"Delete\",\n \"Get\",\n \"List\",\n \"Purge\",\n \"Recover\",\n \"Restore\",\n \"Set\",\n },\n },\n },\n });\n\n var exampleCertificate = new Azure.KeyVault.Certificate(\"example\", new()\n {\n Name = \"generated-cert\",\n KeyVaultId = exampleKeyVault.Id,\n CertificatePolicy = new Azure.KeyVault.Inputs.CertificateCertificatePolicyArgs\n {\n IssuerParameters = new Azure.KeyVault.Inputs.CertificateCertificatePolicyIssuerParametersArgs\n {\n Name = \"Self\",\n },\n KeyProperties = new Azure.KeyVault.Inputs.CertificateCertificatePolicyKeyPropertiesArgs\n {\n Exportable = true,\n KeySize = 2048,\n KeyType = \"RSA\",\n ReuseKey = true,\n },\n LifetimeActions = new[]\n {\n new Azure.KeyVault.Inputs.CertificateCertificatePolicyLifetimeActionArgs\n {\n Action = new Azure.KeyVault.Inputs.CertificateCertificatePolicyLifetimeActionActionArgs\n {\n ActionType = \"AutoRenew\",\n },\n Trigger = new Azure.KeyVault.Inputs.CertificateCertificatePolicyLifetimeActionTriggerArgs\n {\n DaysBeforeExpiry = 30,\n },\n },\n },\n SecretProperties = new Azure.KeyVault.Inputs.CertificateCertificatePolicySecretPropertiesArgs\n {\n ContentType = \"application/x-pkcs12\",\n },\n X509CertificateProperties = new Azure.KeyVault.Inputs.CertificateCertificatePolicyX509CertificatePropertiesArgs\n {\n ExtendedKeyUsages = new[]\n {\n \"1.3.6.1.5.5.7.3.1\",\n },\n KeyUsages = new[]\n {\n \"cRLSign\",\n \"dataEncipherment\",\n \"digitalSignature\",\n \"keyAgreement\",\n \"keyCertSign\",\n \"keyEncipherment\",\n },\n SubjectAlternativeNames = new Azure.KeyVault.Inputs.CertificateCertificatePolicyX509CertificatePropertiesSubjectAlternativeNamesArgs\n {\n DnsNames = new[]\n {\n \"internal.contoso.com\",\n \"domain.hello.world\",\n },\n },\n Subject = \"CN=hello-world\",\n ValidityInMonths = 12,\n },\n },\n });\n\n});\n```\n```go\npackage main\n\nimport (\n\t\"github.com/pulumi/pulumi-azure/sdk/v5/go/azure/core\"\n\t\"github.com/pulumi/pulumi-azure/sdk/v5/go/azure/keyvault\"\n\t\"github.com/pulumi/pulumi/sdk/v3/go/pulumi\"\n)\n\nfunc main() {\n\tpulumi.Run(func(ctx *pulumi.Context) error {\n\t\tcurrent, err := core.GetClientConfig(ctx, nil, nil)\n\t\tif err != nil {\n\t\t\treturn err\n\t\t}\n\t\texample, err := core.NewResourceGroup(ctx, \"example\", \u0026core.ResourceGroupArgs{\n\t\t\tName: pulumi.String(\"example-resources\"),\n\t\t\tLocation: pulumi.String(\"West Europe\"),\n\t\t})\n\t\tif err != nil {\n\t\t\treturn err\n\t\t}\n\t\texampleKeyVault, err := keyvault.NewKeyVault(ctx, \"example\", \u0026keyvault.KeyVaultArgs{\n\t\t\tName: pulumi.String(\"examplekeyvault\"),\n\t\t\tLocation: example.Location,\n\t\t\tResourceGroupName: example.Name,\n\t\t\tTenantId: pulumi.String(current.TenantId),\n\t\t\tSkuName: pulumi.String(\"standard\"),\n\t\t\tSoftDeleteRetentionDays: pulumi.Int(7),\n\t\t\tAccessPolicies: keyvault.KeyVaultAccessPolicyArray{\n\t\t\t\t\u0026keyvault.KeyVaultAccessPolicyArgs{\n\t\t\t\t\tTenantId: pulumi.String(current.TenantId),\n\t\t\t\t\tObjectId: pulumi.String(current.ObjectId),\n\t\t\t\t\tCertificatePermissions: pulumi.StringArray{\n\t\t\t\t\t\tpulumi.String(\"Create\"),\n\t\t\t\t\t\tpulumi.String(\"Delete\"),\n\t\t\t\t\t\tpulumi.String(\"DeleteIssuers\"),\n\t\t\t\t\t\tpulumi.String(\"Get\"),\n\t\t\t\t\t\tpulumi.String(\"GetIssuers\"),\n\t\t\t\t\t\tpulumi.String(\"Import\"),\n\t\t\t\t\t\tpulumi.String(\"List\"),\n\t\t\t\t\t\tpulumi.String(\"ListIssuers\"),\n\t\t\t\t\t\tpulumi.String(\"ManageContacts\"),\n\t\t\t\t\t\tpulumi.String(\"ManageIssuers\"),\n\t\t\t\t\t\tpulumi.String(\"Purge\"),\n\t\t\t\t\t\tpulumi.String(\"SetIssuers\"),\n\t\t\t\t\t\tpulumi.String(\"Update\"),\n\t\t\t\t\t},\n\t\t\t\t\tKeyPermissions: pulumi.StringArray{\n\t\t\t\t\t\tpulumi.String(\"Backup\"),\n\t\t\t\t\t\tpulumi.String(\"Create\"),\n\t\t\t\t\t\tpulumi.String(\"Decrypt\"),\n\t\t\t\t\t\tpulumi.String(\"Delete\"),\n\t\t\t\t\t\tpulumi.String(\"Encrypt\"),\n\t\t\t\t\t\tpulumi.String(\"Get\"),\n\t\t\t\t\t\tpulumi.String(\"Import\"),\n\t\t\t\t\t\tpulumi.String(\"List\"),\n\t\t\t\t\t\tpulumi.String(\"Purge\"),\n\t\t\t\t\t\tpulumi.String(\"Recover\"),\n\t\t\t\t\t\tpulumi.String(\"Restore\"),\n\t\t\t\t\t\tpulumi.String(\"Sign\"),\n\t\t\t\t\t\tpulumi.String(\"UnwrapKey\"),\n\t\t\t\t\t\tpulumi.String(\"Update\"),\n\t\t\t\t\t\tpulumi.String(\"Verify\"),\n\t\t\t\t\t\tpulumi.String(\"WrapKey\"),\n\t\t\t\t\t},\n\t\t\t\t\tSecretPermissions: pulumi.StringArray{\n\t\t\t\t\t\tpulumi.String(\"Backup\"),\n\t\t\t\t\t\tpulumi.String(\"Delete\"),\n\t\t\t\t\t\tpulumi.String(\"Get\"),\n\t\t\t\t\t\tpulumi.String(\"List\"),\n\t\t\t\t\t\tpulumi.String(\"Purge\"),\n\t\t\t\t\t\tpulumi.String(\"Recover\"),\n\t\t\t\t\t\tpulumi.String(\"Restore\"),\n\t\t\t\t\t\tpulumi.String(\"Set\"),\n\t\t\t\t\t},\n\t\t\t\t},\n\t\t\t},\n\t\t})\n\t\tif err != nil {\n\t\t\treturn err\n\t\t}\n\t\t_, err = keyvault.NewCertificate(ctx, \"example\", \u0026keyvault.CertificateArgs{\n\t\t\tName: pulumi.String(\"generated-cert\"),\n\t\t\tKeyVaultId: exampleKeyVault.ID(),\n\t\t\tCertificatePolicy: \u0026keyvault.CertificateCertificatePolicyArgs{\n\t\t\t\tIssuerParameters: \u0026keyvault.CertificateCertificatePolicyIssuerParametersArgs{\n\t\t\t\t\tName: pulumi.String(\"Self\"),\n\t\t\t\t},\n\t\t\t\tKeyProperties: \u0026keyvault.CertificateCertificatePolicyKeyPropertiesArgs{\n\t\t\t\t\tExportable: pulumi.Bool(true),\n\t\t\t\t\tKeySize: pulumi.Int(2048),\n\t\t\t\t\tKeyType: pulumi.String(\"RSA\"),\n\t\t\t\t\tReuseKey: pulumi.Bool(true),\n\t\t\t\t},\n\t\t\t\tLifetimeActions: keyvault.CertificateCertificatePolicyLifetimeActionArray{\n\t\t\t\t\t\u0026keyvault.CertificateCertificatePolicyLifetimeActionArgs{\n\t\t\t\t\t\tAction: \u0026keyvault.CertificateCertificatePolicyLifetimeActionActionArgs{\n\t\t\t\t\t\t\tActionType: pulumi.String(\"AutoRenew\"),\n\t\t\t\t\t\t},\n\t\t\t\t\t\tTrigger: \u0026keyvault.CertificateCertificatePolicyLifetimeActionTriggerArgs{\n\t\t\t\t\t\t\tDaysBeforeExpiry: pulumi.Int(30),\n\t\t\t\t\t\t},\n\t\t\t\t\t},\n\t\t\t\t},\n\t\t\t\tSecretProperties: \u0026keyvault.CertificateCertificatePolicySecretPropertiesArgs{\n\t\t\t\t\tContentType: pulumi.String(\"application/x-pkcs12\"),\n\t\t\t\t},\n\t\t\t\tX509CertificateProperties: \u0026keyvault.CertificateCertificatePolicyX509CertificatePropertiesArgs{\n\t\t\t\t\tExtendedKeyUsages: pulumi.StringArray{\n\t\t\t\t\t\tpulumi.String(\"1.3.6.1.5.5.7.3.1\"),\n\t\t\t\t\t},\n\t\t\t\t\tKeyUsages: pulumi.StringArray{\n\t\t\t\t\t\tpulumi.String(\"cRLSign\"),\n\t\t\t\t\t\tpulumi.String(\"dataEncipherment\"),\n\t\t\t\t\t\tpulumi.String(\"digitalSignature\"),\n\t\t\t\t\t\tpulumi.String(\"keyAgreement\"),\n\t\t\t\t\t\tpulumi.String(\"keyCertSign\"),\n\t\t\t\t\t\tpulumi.String(\"keyEncipherment\"),\n\t\t\t\t\t},\n\t\t\t\t\tSubjectAlternativeNames: \u0026keyvault.CertificateCertificatePolicyX509CertificatePropertiesSubjectAlternativeNamesArgs{\n\t\t\t\t\t\tDnsNames: pulumi.StringArray{\n\t\t\t\t\t\t\tpulumi.String(\"internal.contoso.com\"),\n\t\t\t\t\t\t\tpulumi.String(\"domain.hello.world\"),\n\t\t\t\t\t\t},\n\t\t\t\t\t},\n\t\t\t\t\tSubject: pulumi.String(\"CN=hello-world\"),\n\t\t\t\t\tValidityInMonths: pulumi.Int(12),\n\t\t\t\t},\n\t\t\t},\n\t\t})\n\t\tif err != nil {\n\t\t\treturn err\n\t\t}\n\t\treturn nil\n\t})\n}\n```\n```java\npackage generated_program;\n\nimport com.pulumi.Context;\nimport com.pulumi.Pulumi;\nimport com.pulumi.core.Output;\nimport com.pulumi.azure.core.CoreFunctions;\nimport com.pulumi.azure.core.ResourceGroup;\nimport com.pulumi.azure.core.ResourceGroupArgs;\nimport com.pulumi.azure.keyvault.KeyVault;\nimport com.pulumi.azure.keyvault.KeyVaultArgs;\nimport com.pulumi.azure.keyvault.inputs.KeyVaultAccessPolicyArgs;\nimport com.pulumi.azure.keyvault.Certificate;\nimport com.pulumi.azure.keyvault.CertificateArgs;\nimport com.pulumi.azure.keyvault.inputs.CertificateCertificatePolicyArgs;\nimport com.pulumi.azure.keyvault.inputs.CertificateCertificatePolicyIssuerParametersArgs;\nimport com.pulumi.azure.keyvault.inputs.CertificateCertificatePolicyKeyPropertiesArgs;\nimport com.pulumi.azure.keyvault.inputs.CertificateCertificatePolicySecretPropertiesArgs;\nimport com.pulumi.azure.keyvault.inputs.CertificateCertificatePolicyX509CertificatePropertiesArgs;\nimport com.pulumi.azure.keyvault.inputs.CertificateCertificatePolicyX509CertificatePropertiesSubjectAlternativeNamesArgs;\nimport java.util.List;\nimport java.util.ArrayList;\nimport java.util.Map;\nimport java.io.File;\nimport java.nio.file.Files;\nimport java.nio.file.Paths;\n\npublic class App {\n public static void main(String[] args) {\n Pulumi.run(App::stack);\n }\n\n public static void stack(Context ctx) {\n final var current = CoreFunctions.getClientConfig();\n\n var example = new ResourceGroup(\"example\", ResourceGroupArgs.builder() \n .name(\"example-resources\")\n .location(\"West Europe\")\n .build());\n\n var exampleKeyVault = new KeyVault(\"exampleKeyVault\", KeyVaultArgs.builder() \n .name(\"examplekeyvault\")\n .location(example.location())\n .resourceGroupName(example.name())\n .tenantId(current.applyValue(getClientConfigResult -\u003e getClientConfigResult.tenantId()))\n .skuName(\"standard\")\n .softDeleteRetentionDays(7)\n .accessPolicies(KeyVaultAccessPolicyArgs.builder()\n .tenantId(current.applyValue(getClientConfigResult -\u003e getClientConfigResult.tenantId()))\n .objectId(current.applyValue(getClientConfigResult -\u003e getClientConfigResult.objectId()))\n .certificatePermissions( \n \"Create\",\n \"Delete\",\n \"DeleteIssuers\",\n \"Get\",\n \"GetIssuers\",\n \"Import\",\n \"List\",\n \"ListIssuers\",\n \"ManageContacts\",\n \"ManageIssuers\",\n \"Purge\",\n \"SetIssuers\",\n \"Update\")\n .keyPermissions( \n \"Backup\",\n \"Create\",\n \"Decrypt\",\n \"Delete\",\n \"Encrypt\",\n \"Get\",\n \"Import\",\n \"List\",\n \"Purge\",\n \"Recover\",\n \"Restore\",\n \"Sign\",\n \"UnwrapKey\",\n \"Update\",\n \"Verify\",\n \"WrapKey\")\n .secretPermissions( \n \"Backup\",\n \"Delete\",\n \"Get\",\n \"List\",\n \"Purge\",\n \"Recover\",\n \"Restore\",\n \"Set\")\n .build())\n .build());\n\n var exampleCertificate = new Certificate(\"exampleCertificate\", CertificateArgs.builder() \n .name(\"generated-cert\")\n .keyVaultId(exampleKeyVault.id())\n .certificatePolicy(CertificateCertificatePolicyArgs.builder()\n .issuerParameters(CertificateCertificatePolicyIssuerParametersArgs.builder()\n .name(\"Self\")\n .build())\n .keyProperties(CertificateCertificatePolicyKeyPropertiesArgs.builder()\n .exportable(true)\n .keySize(2048)\n .keyType(\"RSA\")\n .reuseKey(true)\n .build())\n .lifetimeActions(CertificateCertificatePolicyLifetimeActionArgs.builder()\n .action(CertificateCertificatePolicyLifetimeActionActionArgs.builder()\n .actionType(\"AutoRenew\")\n .build())\n .trigger(CertificateCertificatePolicyLifetimeActionTriggerArgs.builder()\n .daysBeforeExpiry(30)\n .build())\n .build())\n .secretProperties(CertificateCertificatePolicySecretPropertiesArgs.builder()\n .contentType(\"application/x-pkcs12\")\n .build())\n .x509CertificateProperties(CertificateCertificatePolicyX509CertificatePropertiesArgs.builder()\n .extendedKeyUsages(\"1.3.6.1.5.5.7.3.1\")\n .keyUsages( \n \"cRLSign\",\n \"dataEncipherment\",\n \"digitalSignature\",\n \"keyAgreement\",\n \"keyCertSign\",\n \"keyEncipherment\")\n .subjectAlternativeNames(CertificateCertificatePolicyX509CertificatePropertiesSubjectAlternativeNamesArgs.builder()\n .dnsNames( \n \"internal.contoso.com\",\n \"domain.hello.world\")\n .build())\n .subject(\"CN=hello-world\")\n .validityInMonths(12)\n .build())\n .build())\n .build());\n\n }\n}\n```\n```yaml\nresources:\n example:\n type: azure:core:ResourceGroup\n properties:\n name: example-resources\n location: West Europe\n exampleKeyVault:\n type: azure:keyvault:KeyVault\n name: example\n properties:\n name: examplekeyvault\n location: ${example.location}\n resourceGroupName: ${example.name}\n tenantId: ${current.tenantId}\n skuName: standard\n softDeleteRetentionDays: 7\n accessPolicies:\n - tenantId: ${current.tenantId}\n objectId: ${current.objectId}\n certificatePermissions:\n - Create\n - Delete\n - DeleteIssuers\n - Get\n - GetIssuers\n - Import\n - List\n - ListIssuers\n - ManageContacts\n - ManageIssuers\n - Purge\n - SetIssuers\n - Update\n keyPermissions:\n - Backup\n - Create\n - Decrypt\n - Delete\n - Encrypt\n - Get\n - Import\n - List\n - Purge\n - Recover\n - Restore\n - Sign\n - UnwrapKey\n - Update\n - Verify\n - WrapKey\n secretPermissions:\n - Backup\n - Delete\n - Get\n - List\n - Purge\n - Recover\n - Restore\n - Set\n exampleCertificate:\n type: azure:keyvault:Certificate\n name: example\n properties:\n name: generated-cert\n keyVaultId: ${exampleKeyVault.id}\n certificatePolicy:\n issuerParameters:\n name: Self\n keyProperties:\n exportable: true\n keySize: 2048\n keyType: RSA\n reuseKey: true\n lifetimeActions:\n - action:\n actionType: AutoRenew\n trigger:\n daysBeforeExpiry: 30\n secretProperties:\n contentType: application/x-pkcs12\n x509CertificateProperties:\n extendedKeyUsages:\n - 1.3.6.1.5.5.7.3.1\n keyUsages:\n - cRLSign\n - dataEncipherment\n - digitalSignature\n - keyAgreement\n - keyCertSign\n - keyEncipherment\n subjectAlternativeNames:\n dnsNames:\n - internal.contoso.com\n - domain.hello.world\n subject: CN=hello-world\n validityInMonths: 12\nvariables:\n current:\n fn::invoke:\n Function: azure:core:getClientConfig\n Arguments: {}\n```\n\u003c!--End PulumiCodeChooser --\u003e\n\n## Import\n\nKey Vault Certificates can be imported using the `resource id`, e.g.\n\n```sh\n$ pulumi import azure:keyvault/certificate:Certificate example \"https://example-keyvault.vault.azure.net/certificates/example/fdf067c93bbb4b22bff4d8b7a9a56217\"\n```\n\n", + "description": "Manages a Key Vault Certificate.\n\n## Example Usage\n\n### Importing A PFX)\n\n\u003e **Note:** this example assumed the PFX file is located in the same directory at `certificate-to-import.pfx`.\n\n\u003c!--Start PulumiCodeChooser --\u003e\n```typescript\nimport * as pulumi from \"@pulumi/pulumi\";\nimport * as azure from \"@pulumi/azure\";\nimport * as std from \"@pulumi/std\";\n\nconst current = azure.core.getClientConfig({});\nconst example = new azure.core.ResourceGroup(\"example\", {\n name: \"example-resources\",\n location: \"West Europe\",\n});\nconst exampleKeyVault = new azure.keyvault.KeyVault(\"example\", {\n name: \"examplekeyvault\",\n location: example.location,\n resourceGroupName: example.name,\n tenantId: current.then(current =\u003e current.tenantId),\n skuName: \"premium\",\n accessPolicies: [{\n tenantId: current.then(current =\u003e current.tenantId),\n objectId: current.then(current =\u003e current.objectId),\n certificatePermissions: [\n \"Create\",\n \"Delete\",\n \"DeleteIssuers\",\n \"Get\",\n \"GetIssuers\",\n \"Import\",\n \"List\",\n \"ListIssuers\",\n \"ManageContacts\",\n \"ManageIssuers\",\n \"SetIssuers\",\n \"Update\",\n ],\n keyPermissions: [\n \"Backup\",\n \"Create\",\n \"Decrypt\",\n \"Delete\",\n \"Encrypt\",\n \"Get\",\n \"Import\",\n \"List\",\n \"Purge\",\n \"Recover\",\n \"Restore\",\n \"Sign\",\n \"UnwrapKey\",\n \"Update\",\n \"Verify\",\n \"WrapKey\",\n ],\n secretPermissions: [\n \"Backup\",\n \"Delete\",\n \"Get\",\n \"List\",\n \"Purge\",\n \"Recover\",\n \"Restore\",\n \"Set\",\n ],\n }],\n});\nconst exampleCertificate = new azure.keyvault.Certificate(\"example\", {\n name: \"imported-cert\",\n keyVaultId: exampleKeyVault.id,\n certificate: {\n contents: std.filebase64({\n input: \"certificate-to-import.pfx\",\n }).then(invoke =\u003e invoke.result),\n password: \"\",\n },\n});\n```\n```python\nimport pulumi\nimport pulumi_azure as azure\nimport pulumi_std as std\n\ncurrent = azure.core.get_client_config()\nexample = azure.core.ResourceGroup(\"example\",\n name=\"example-resources\",\n location=\"West Europe\")\nexample_key_vault = azure.keyvault.KeyVault(\"example\",\n name=\"examplekeyvault\",\n location=example.location,\n resource_group_name=example.name,\n tenant_id=current.tenant_id,\n sku_name=\"premium\",\n access_policies=[azure.keyvault.KeyVaultAccessPolicyArgs(\n tenant_id=current.tenant_id,\n object_id=current.object_id,\n certificate_permissions=[\n \"Create\",\n \"Delete\",\n \"DeleteIssuers\",\n \"Get\",\n \"GetIssuers\",\n \"Import\",\n \"List\",\n \"ListIssuers\",\n \"ManageContacts\",\n \"ManageIssuers\",\n \"SetIssuers\",\n \"Update\",\n ],\n key_permissions=[\n \"Backup\",\n \"Create\",\n \"Decrypt\",\n \"Delete\",\n \"Encrypt\",\n \"Get\",\n \"Import\",\n \"List\",\n \"Purge\",\n \"Recover\",\n \"Restore\",\n \"Sign\",\n \"UnwrapKey\",\n \"Update\",\n \"Verify\",\n \"WrapKey\",\n ],\n secret_permissions=[\n \"Backup\",\n \"Delete\",\n \"Get\",\n \"List\",\n \"Purge\",\n \"Recover\",\n \"Restore\",\n \"Set\",\n ],\n )])\nexample_certificate = azure.keyvault.Certificate(\"example\",\n name=\"imported-cert\",\n key_vault_id=example_key_vault.id,\n certificate=azure.keyvault.CertificateCertificateArgs(\n contents=std.filebase64(input=\"certificate-to-import.pfx\").result,\n password=\"\",\n ))\n```\n```csharp\nusing System.Collections.Generic;\nusing System.Linq;\nusing Pulumi;\nusing Azure = Pulumi.Azure;\nusing Std = Pulumi.Std;\n\nreturn await Deployment.RunAsync(() =\u003e \n{\n var current = Azure.Core.GetClientConfig.Invoke();\n\n var example = new Azure.Core.ResourceGroup(\"example\", new()\n {\n Name = \"example-resources\",\n Location = \"West Europe\",\n });\n\n var exampleKeyVault = new Azure.KeyVault.KeyVault(\"example\", new()\n {\n Name = \"examplekeyvault\",\n Location = example.Location,\n ResourceGroupName = example.Name,\n TenantId = current.Apply(getClientConfigResult =\u003e getClientConfigResult.TenantId),\n SkuName = \"premium\",\n AccessPolicies = new[]\n {\n new Azure.KeyVault.Inputs.KeyVaultAccessPolicyArgs\n {\n TenantId = current.Apply(getClientConfigResult =\u003e getClientConfigResult.TenantId),\n ObjectId = current.Apply(getClientConfigResult =\u003e getClientConfigResult.ObjectId),\n CertificatePermissions = new[]\n {\n \"Create\",\n \"Delete\",\n \"DeleteIssuers\",\n \"Get\",\n \"GetIssuers\",\n \"Import\",\n \"List\",\n \"ListIssuers\",\n \"ManageContacts\",\n \"ManageIssuers\",\n \"SetIssuers\",\n \"Update\",\n },\n KeyPermissions = new[]\n {\n \"Backup\",\n \"Create\",\n \"Decrypt\",\n \"Delete\",\n \"Encrypt\",\n \"Get\",\n \"Import\",\n \"List\",\n \"Purge\",\n \"Recover\",\n \"Restore\",\n \"Sign\",\n \"UnwrapKey\",\n \"Update\",\n \"Verify\",\n \"WrapKey\",\n },\n SecretPermissions = new[]\n {\n \"Backup\",\n \"Delete\",\n \"Get\",\n \"List\",\n \"Purge\",\n \"Recover\",\n \"Restore\",\n \"Set\",\n },\n },\n },\n });\n\n var exampleCertificate = new Azure.KeyVault.Certificate(\"example\", new()\n {\n Name = \"imported-cert\",\n KeyVaultId = exampleKeyVault.Id,\n KeyVaultCertificate = new Azure.KeyVault.Inputs.CertificateCertificateArgs\n {\n Contents = Std.Filebase64.Invoke(new()\n {\n Input = \"certificate-to-import.pfx\",\n }).Apply(invoke =\u003e invoke.Result),\n Password = \"\",\n },\n });\n\n});\n```\n```go\npackage main\n\nimport (\n\t\"github.com/pulumi/pulumi-azure/sdk/v5/go/azure/core\"\n\t\"github.com/pulumi/pulumi-azure/sdk/v5/go/azure/keyvault\"\n\t\"github.com/pulumi/pulumi-std/sdk/go/std\"\n\t\"github.com/pulumi/pulumi/sdk/v3/go/pulumi\"\n)\n\nfunc main() {\n\tpulumi.Run(func(ctx *pulumi.Context) error {\n\t\tcurrent, err := core.GetClientConfig(ctx, nil, nil)\n\t\tif err != nil {\n\t\t\treturn err\n\t\t}\n\t\texample, err := core.NewResourceGroup(ctx, \"example\", \u0026core.ResourceGroupArgs{\n\t\t\tName: pulumi.String(\"example-resources\"),\n\t\t\tLocation: pulumi.String(\"West Europe\"),\n\t\t})\n\t\tif err != nil {\n\t\t\treturn err\n\t\t}\n\t\texampleKeyVault, err := keyvault.NewKeyVault(ctx, \"example\", \u0026keyvault.KeyVaultArgs{\n\t\t\tName: pulumi.String(\"examplekeyvault\"),\n\t\t\tLocation: example.Location,\n\t\t\tResourceGroupName: example.Name,\n\t\t\tTenantId: pulumi.String(current.TenantId),\n\t\t\tSkuName: pulumi.String(\"premium\"),\n\t\t\tAccessPolicies: keyvault.KeyVaultAccessPolicyArray{\n\t\t\t\t\u0026keyvault.KeyVaultAccessPolicyArgs{\n\t\t\t\t\tTenantId: pulumi.String(current.TenantId),\n\t\t\t\t\tObjectId: pulumi.String(current.ObjectId),\n\t\t\t\t\tCertificatePermissions: pulumi.StringArray{\n\t\t\t\t\t\tpulumi.String(\"Create\"),\n\t\t\t\t\t\tpulumi.String(\"Delete\"),\n\t\t\t\t\t\tpulumi.String(\"DeleteIssuers\"),\n\t\t\t\t\t\tpulumi.String(\"Get\"),\n\t\t\t\t\t\tpulumi.String(\"GetIssuers\"),\n\t\t\t\t\t\tpulumi.String(\"Import\"),\n\t\t\t\t\t\tpulumi.String(\"List\"),\n\t\t\t\t\t\tpulumi.String(\"ListIssuers\"),\n\t\t\t\t\t\tpulumi.String(\"ManageContacts\"),\n\t\t\t\t\t\tpulumi.String(\"ManageIssuers\"),\n\t\t\t\t\t\tpulumi.String(\"SetIssuers\"),\n\t\t\t\t\t\tpulumi.String(\"Update\"),\n\t\t\t\t\t},\n\t\t\t\t\tKeyPermissions: pulumi.StringArray{\n\t\t\t\t\t\tpulumi.String(\"Backup\"),\n\t\t\t\t\t\tpulumi.String(\"Create\"),\n\t\t\t\t\t\tpulumi.String(\"Decrypt\"),\n\t\t\t\t\t\tpulumi.String(\"Delete\"),\n\t\t\t\t\t\tpulumi.String(\"Encrypt\"),\n\t\t\t\t\t\tpulumi.String(\"Get\"),\n\t\t\t\t\t\tpulumi.String(\"Import\"),\n\t\t\t\t\t\tpulumi.String(\"List\"),\n\t\t\t\t\t\tpulumi.String(\"Purge\"),\n\t\t\t\t\t\tpulumi.String(\"Recover\"),\n\t\t\t\t\t\tpulumi.String(\"Restore\"),\n\t\t\t\t\t\tpulumi.String(\"Sign\"),\n\t\t\t\t\t\tpulumi.String(\"UnwrapKey\"),\n\t\t\t\t\t\tpulumi.String(\"Update\"),\n\t\t\t\t\t\tpulumi.String(\"Verify\"),\n\t\t\t\t\t\tpulumi.String(\"WrapKey\"),\n\t\t\t\t\t},\n\t\t\t\t\tSecretPermissions: pulumi.StringArray{\n\t\t\t\t\t\tpulumi.String(\"Backup\"),\n\t\t\t\t\t\tpulumi.String(\"Delete\"),\n\t\t\t\t\t\tpulumi.String(\"Get\"),\n\t\t\t\t\t\tpulumi.String(\"List\"),\n\t\t\t\t\t\tpulumi.String(\"Purge\"),\n\t\t\t\t\t\tpulumi.String(\"Recover\"),\n\t\t\t\t\t\tpulumi.String(\"Restore\"),\n\t\t\t\t\t\tpulumi.String(\"Set\"),\n\t\t\t\t\t},\n\t\t\t\t},\n\t\t\t},\n\t\t})\n\t\tif err != nil {\n\t\t\treturn err\n\t\t}\n\t\tinvokeFilebase64, err := std.Filebase64(ctx, \u0026std.Filebase64Args{\n\t\t\tInput: \"certificate-to-import.pfx\",\n\t\t}, nil)\n\t\tif err != nil {\n\t\t\treturn err\n\t\t}\n\t\t_, err = keyvault.NewCertificate(ctx, \"example\", \u0026keyvault.CertificateArgs{\n\t\t\tName: pulumi.String(\"imported-cert\"),\n\t\t\tKeyVaultId: exampleKeyVault.ID(),\n\t\t\tCertificate: \u0026keyvault.CertificateCertificateArgs{\n\t\t\t\tContents: invokeFilebase64.Result,\n\t\t\t\tPassword: pulumi.String(\"\"),\n\t\t\t},\n\t\t})\n\t\tif err != nil {\n\t\t\treturn err\n\t\t}\n\t\treturn nil\n\t})\n}\n```\n```java\npackage generated_program;\n\nimport com.pulumi.Context;\nimport com.pulumi.Pulumi;\nimport com.pulumi.core.Output;\nimport com.pulumi.azure.core.CoreFunctions;\nimport com.pulumi.azure.core.ResourceGroup;\nimport com.pulumi.azure.core.ResourceGroupArgs;\nimport com.pulumi.azure.keyvault.KeyVault;\nimport com.pulumi.azure.keyvault.KeyVaultArgs;\nimport com.pulumi.azure.keyvault.inputs.KeyVaultAccessPolicyArgs;\nimport com.pulumi.azure.keyvault.Certificate;\nimport com.pulumi.azure.keyvault.CertificateArgs;\nimport com.pulumi.azure.keyvault.inputs.CertificateCertificateArgs;\nimport java.util.List;\nimport java.util.ArrayList;\nimport java.util.Map;\nimport java.io.File;\nimport java.nio.file.Files;\nimport java.nio.file.Paths;\n\npublic class App {\n public static void main(String[] args) {\n Pulumi.run(App::stack);\n }\n\n public static void stack(Context ctx) {\n final var current = CoreFunctions.getClientConfig();\n\n var example = new ResourceGroup(\"example\", ResourceGroupArgs.builder() \n .name(\"example-resources\")\n .location(\"West Europe\")\n .build());\n\n var exampleKeyVault = new KeyVault(\"exampleKeyVault\", KeyVaultArgs.builder() \n .name(\"examplekeyvault\")\n .location(example.location())\n .resourceGroupName(example.name())\n .tenantId(current.applyValue(getClientConfigResult -\u003e getClientConfigResult.tenantId()))\n .skuName(\"premium\")\n .accessPolicies(KeyVaultAccessPolicyArgs.builder()\n .tenantId(current.applyValue(getClientConfigResult -\u003e getClientConfigResult.tenantId()))\n .objectId(current.applyValue(getClientConfigResult -\u003e getClientConfigResult.objectId()))\n .certificatePermissions( \n \"Create\",\n \"Delete\",\n \"DeleteIssuers\",\n \"Get\",\n \"GetIssuers\",\n \"Import\",\n \"List\",\n \"ListIssuers\",\n \"ManageContacts\",\n \"ManageIssuers\",\n \"SetIssuers\",\n \"Update\")\n .keyPermissions( \n \"Backup\",\n \"Create\",\n \"Decrypt\",\n \"Delete\",\n \"Encrypt\",\n \"Get\",\n \"Import\",\n \"List\",\n \"Purge\",\n \"Recover\",\n \"Restore\",\n \"Sign\",\n \"UnwrapKey\",\n \"Update\",\n \"Verify\",\n \"WrapKey\")\n .secretPermissions( \n \"Backup\",\n \"Delete\",\n \"Get\",\n \"List\",\n \"Purge\",\n \"Recover\",\n \"Restore\",\n \"Set\")\n .build())\n .build());\n\n var exampleCertificate = new Certificate(\"exampleCertificate\", CertificateArgs.builder() \n .name(\"imported-cert\")\n .keyVaultId(exampleKeyVault.id())\n .certificate(CertificateCertificateArgs.builder()\n .contents(StdFunctions.filebase64(Filebase64Args.builder()\n .input(\"certificate-to-import.pfx\")\n .build()).result())\n .password(\"\")\n .build())\n .build());\n\n }\n}\n```\n```yaml\nresources:\n example:\n type: azure:core:ResourceGroup\n properties:\n name: example-resources\n location: West Europe\n exampleKeyVault:\n type: azure:keyvault:KeyVault\n name: example\n properties:\n name: examplekeyvault\n location: ${example.location}\n resourceGroupName: ${example.name}\n tenantId: ${current.tenantId}\n skuName: premium\n accessPolicies:\n - tenantId: ${current.tenantId}\n objectId: ${current.objectId}\n certificatePermissions:\n - Create\n - Delete\n - DeleteIssuers\n - Get\n - GetIssuers\n - Import\n - List\n - ListIssuers\n - ManageContacts\n - ManageIssuers\n - SetIssuers\n - Update\n keyPermissions:\n - Backup\n - Create\n - Decrypt\n - Delete\n - Encrypt\n - Get\n - Import\n - List\n - Purge\n - Recover\n - Restore\n - Sign\n - UnwrapKey\n - Update\n - Verify\n - WrapKey\n secretPermissions:\n - Backup\n - Delete\n - Get\n - List\n - Purge\n - Recover\n - Restore\n - Set\n exampleCertificate:\n type: azure:keyvault:Certificate\n name: example\n properties:\n name: imported-cert\n keyVaultId: ${exampleKeyVault.id}\n certificate:\n contents:\n fn::invoke:\n Function: std:filebase64\n Arguments:\n input: certificate-to-import.pfx\n Return: result\n password:\nvariables:\n current:\n fn::invoke:\n Function: azure:core:getClientConfig\n Arguments: {}\n```\n\u003c!--End PulumiCodeChooser --\u003e\n\n### Generating a new certificate\n\n\u003c!--Start PulumiCodeChooser --\u003e\n```typescript\nimport * as pulumi from \"@pulumi/pulumi\";\nimport * as azure from \"@pulumi/azure\";\n\nconst current = azure.core.getClientConfig({});\nconst example = new azure.core.ResourceGroup(\"example\", {\n name: \"example-resources\",\n location: \"West Europe\",\n});\nconst exampleKeyVault = new azure.keyvault.KeyVault(\"example\", {\n name: \"examplekeyvault\",\n location: example.location,\n resourceGroupName: example.name,\n tenantId: current.then(current =\u003e current.tenantId),\n skuName: \"standard\",\n softDeleteRetentionDays: 7,\n accessPolicies: [{\n tenantId: current.then(current =\u003e current.tenantId),\n objectId: current.then(current =\u003e current.objectId),\n certificatePermissions: [\n \"Create\",\n \"Delete\",\n \"DeleteIssuers\",\n \"Get\",\n \"GetIssuers\",\n \"Import\",\n \"List\",\n \"ListIssuers\",\n \"ManageContacts\",\n \"ManageIssuers\",\n \"Purge\",\n \"SetIssuers\",\n \"Update\",\n ],\n keyPermissions: [\n \"Backup\",\n \"Create\",\n \"Decrypt\",\n \"Delete\",\n \"Encrypt\",\n \"Get\",\n \"Import\",\n \"List\",\n \"Purge\",\n \"Recover\",\n \"Restore\",\n \"Sign\",\n \"UnwrapKey\",\n \"Update\",\n \"Verify\",\n \"WrapKey\",\n ],\n secretPermissions: [\n \"Backup\",\n \"Delete\",\n \"Get\",\n \"List\",\n \"Purge\",\n \"Recover\",\n \"Restore\",\n \"Set\",\n ],\n }],\n});\nconst exampleCertificate = new azure.keyvault.Certificate(\"example\", {\n name: \"generated-cert\",\n keyVaultId: exampleKeyVault.id,\n certificatePolicy: {\n issuerParameters: {\n name: \"Self\",\n },\n keyProperties: {\n exportable: true,\n keySize: 2048,\n keyType: \"RSA\",\n reuseKey: true,\n },\n lifetimeActions: [{\n action: {\n actionType: \"AutoRenew\",\n },\n trigger: {\n daysBeforeExpiry: 30,\n },\n }],\n secretProperties: {\n contentType: \"application/x-pkcs12\",\n },\n x509CertificateProperties: {\n extendedKeyUsages: [\"1.3.6.1.5.5.7.3.1\"],\n keyUsages: [\n \"cRLSign\",\n \"dataEncipherment\",\n \"digitalSignature\",\n \"keyAgreement\",\n \"keyCertSign\",\n \"keyEncipherment\",\n ],\n subjectAlternativeNames: {\n dnsNames: [\n \"internal.contoso.com\",\n \"domain.hello.world\",\n ],\n },\n subject: \"CN=hello-world\",\n validityInMonths: 12,\n },\n },\n});\n```\n```python\nimport pulumi\nimport pulumi_azure as azure\n\ncurrent = azure.core.get_client_config()\nexample = azure.core.ResourceGroup(\"example\",\n name=\"example-resources\",\n location=\"West Europe\")\nexample_key_vault = azure.keyvault.KeyVault(\"example\",\n name=\"examplekeyvault\",\n location=example.location,\n resource_group_name=example.name,\n tenant_id=current.tenant_id,\n sku_name=\"standard\",\n soft_delete_retention_days=7,\n access_policies=[azure.keyvault.KeyVaultAccessPolicyArgs(\n tenant_id=current.tenant_id,\n object_id=current.object_id,\n certificate_permissions=[\n \"Create\",\n \"Delete\",\n \"DeleteIssuers\",\n \"Get\",\n \"GetIssuers\",\n \"Import\",\n \"List\",\n \"ListIssuers\",\n \"ManageContacts\",\n \"ManageIssuers\",\n \"Purge\",\n \"SetIssuers\",\n \"Update\",\n ],\n key_permissions=[\n \"Backup\",\n \"Create\",\n \"Decrypt\",\n \"Delete\",\n \"Encrypt\",\n \"Get\",\n \"Import\",\n \"List\",\n \"Purge\",\n \"Recover\",\n \"Restore\",\n \"Sign\",\n \"UnwrapKey\",\n \"Update\",\n \"Verify\",\n \"WrapKey\",\n ],\n secret_permissions=[\n \"Backup\",\n \"Delete\",\n \"Get\",\n \"List\",\n \"Purge\",\n \"Recover\",\n \"Restore\",\n \"Set\",\n ],\n )])\nexample_certificate = azure.keyvault.Certificate(\"example\",\n name=\"generated-cert\",\n key_vault_id=example_key_vault.id,\n certificate_policy=azure.keyvault.CertificateCertificatePolicyArgs(\n issuer_parameters=azure.keyvault.CertificateCertificatePolicyIssuerParametersArgs(\n name=\"Self\",\n ),\n key_properties=azure.keyvault.CertificateCertificatePolicyKeyPropertiesArgs(\n exportable=True,\n key_size=2048,\n key_type=\"RSA\",\n reuse_key=True,\n ),\n lifetime_actions=[azure.keyvault.CertificateCertificatePolicyLifetimeActionArgs(\n action=azure.keyvault.CertificateCertificatePolicyLifetimeActionActionArgs(\n action_type=\"AutoRenew\",\n ),\n trigger=azure.keyvault.CertificateCertificatePolicyLifetimeActionTriggerArgs(\n days_before_expiry=30,\n ),\n )],\n secret_properties=azure.keyvault.CertificateCertificatePolicySecretPropertiesArgs(\n content_type=\"application/x-pkcs12\",\n ),\n x509_certificate_properties=azure.keyvault.CertificateCertificatePolicyX509CertificatePropertiesArgs(\n extended_key_usages=[\"1.3.6.1.5.5.7.3.1\"],\n key_usages=[\n \"cRLSign\",\n \"dataEncipherment\",\n \"digitalSignature\",\n \"keyAgreement\",\n \"keyCertSign\",\n \"keyEncipherment\",\n ],\n subject_alternative_names=azure.keyvault.CertificateCertificatePolicyX509CertificatePropertiesSubjectAlternativeNamesArgs(\n dns_names=[\n \"internal.contoso.com\",\n \"domain.hello.world\",\n ],\n ),\n subject=\"CN=hello-world\",\n validity_in_months=12,\n ),\n ))\n```\n```csharp\nusing System.Collections.Generic;\nusing System.Linq;\nusing Pulumi;\nusing Azure = Pulumi.Azure;\n\nreturn await Deployment.RunAsync(() =\u003e \n{\n var current = Azure.Core.GetClientConfig.Invoke();\n\n var example = new Azure.Core.ResourceGroup(\"example\", new()\n {\n Name = \"example-resources\",\n Location = \"West Europe\",\n });\n\n var exampleKeyVault = new Azure.KeyVault.KeyVault(\"example\", new()\n {\n Name = \"examplekeyvault\",\n Location = example.Location,\n ResourceGroupName = example.Name,\n TenantId = current.Apply(getClientConfigResult =\u003e getClientConfigResult.TenantId),\n SkuName = \"standard\",\n SoftDeleteRetentionDays = 7,\n AccessPolicies = new[]\n {\n new Azure.KeyVault.Inputs.KeyVaultAccessPolicyArgs\n {\n TenantId = current.Apply(getClientConfigResult =\u003e getClientConfigResult.TenantId),\n ObjectId = current.Apply(getClientConfigResult =\u003e getClientConfigResult.ObjectId),\n CertificatePermissions = new[]\n {\n \"Create\",\n \"Delete\",\n \"DeleteIssuers\",\n \"Get\",\n \"GetIssuers\",\n \"Import\",\n \"List\",\n \"ListIssuers\",\n \"ManageContacts\",\n \"ManageIssuers\",\n \"Purge\",\n \"SetIssuers\",\n \"Update\",\n },\n KeyPermissions = new[]\n {\n \"Backup\",\n \"Create\",\n \"Decrypt\",\n \"Delete\",\n \"Encrypt\",\n \"Get\",\n \"Import\",\n \"List\",\n \"Purge\",\n \"Recover\",\n \"Restore\",\n \"Sign\",\n \"UnwrapKey\",\n \"Update\",\n \"Verify\",\n \"WrapKey\",\n },\n SecretPermissions = new[]\n {\n \"Backup\",\n \"Delete\",\n \"Get\",\n \"List\",\n \"Purge\",\n \"Recover\",\n \"Restore\",\n \"Set\",\n },\n },\n },\n });\n\n var exampleCertificate = new Azure.KeyVault.Certificate(\"example\", new()\n {\n Name = \"generated-cert\",\n KeyVaultId = exampleKeyVault.Id,\n CertificatePolicy = new Azure.KeyVault.Inputs.CertificateCertificatePolicyArgs\n {\n IssuerParameters = new Azure.KeyVault.Inputs.CertificateCertificatePolicyIssuerParametersArgs\n {\n Name = \"Self\",\n },\n KeyProperties = new Azure.KeyVault.Inputs.CertificateCertificatePolicyKeyPropertiesArgs\n {\n Exportable = true,\n KeySize = 2048,\n KeyType = \"RSA\",\n ReuseKey = true,\n },\n LifetimeActions = new[]\n {\n new Azure.KeyVault.Inputs.CertificateCertificatePolicyLifetimeActionArgs\n {\n Action = new Azure.KeyVault.Inputs.CertificateCertificatePolicyLifetimeActionActionArgs\n {\n ActionType = \"AutoRenew\",\n },\n Trigger = new Azure.KeyVault.Inputs.CertificateCertificatePolicyLifetimeActionTriggerArgs\n {\n DaysBeforeExpiry = 30,\n },\n },\n },\n SecretProperties = new Azure.KeyVault.Inputs.CertificateCertificatePolicySecretPropertiesArgs\n {\n ContentType = \"application/x-pkcs12\",\n },\n X509CertificateProperties = new Azure.KeyVault.Inputs.CertificateCertificatePolicyX509CertificatePropertiesArgs\n {\n ExtendedKeyUsages = new[]\n {\n \"1.3.6.1.5.5.7.3.1\",\n },\n KeyUsages = new[]\n {\n \"cRLSign\",\n \"dataEncipherment\",\n \"digitalSignature\",\n \"keyAgreement\",\n \"keyCertSign\",\n \"keyEncipherment\",\n },\n SubjectAlternativeNames = new Azure.KeyVault.Inputs.CertificateCertificatePolicyX509CertificatePropertiesSubjectAlternativeNamesArgs\n {\n DnsNames = new[]\n {\n \"internal.contoso.com\",\n \"domain.hello.world\",\n },\n },\n Subject = \"CN=hello-world\",\n ValidityInMonths = 12,\n },\n },\n });\n\n});\n```\n```go\npackage main\n\nimport (\n\t\"github.com/pulumi/pulumi-azure/sdk/v5/go/azure/core\"\n\t\"github.com/pulumi/pulumi-azure/sdk/v5/go/azure/keyvault\"\n\t\"github.com/pulumi/pulumi/sdk/v3/go/pulumi\"\n)\n\nfunc main() {\n\tpulumi.Run(func(ctx *pulumi.Context) error {\n\t\tcurrent, err := core.GetClientConfig(ctx, nil, nil)\n\t\tif err != nil {\n\t\t\treturn err\n\t\t}\n\t\texample, err := core.NewResourceGroup(ctx, \"example\", \u0026core.ResourceGroupArgs{\n\t\t\tName: pulumi.String(\"example-resources\"),\n\t\t\tLocation: pulumi.String(\"West Europe\"),\n\t\t})\n\t\tif err != nil {\n\t\t\treturn err\n\t\t}\n\t\texampleKeyVault, err := keyvault.NewKeyVault(ctx, \"example\", \u0026keyvault.KeyVaultArgs{\n\t\t\tName: pulumi.String(\"examplekeyvault\"),\n\t\t\tLocation: example.Location,\n\t\t\tResourceGroupName: example.Name,\n\t\t\tTenantId: pulumi.String(current.TenantId),\n\t\t\tSkuName: pulumi.String(\"standard\"),\n\t\t\tSoftDeleteRetentionDays: pulumi.Int(7),\n\t\t\tAccessPolicies: keyvault.KeyVaultAccessPolicyArray{\n\t\t\t\t\u0026keyvault.KeyVaultAccessPolicyArgs{\n\t\t\t\t\tTenantId: pulumi.String(current.TenantId),\n\t\t\t\t\tObjectId: pulumi.String(current.ObjectId),\n\t\t\t\t\tCertificatePermissions: pulumi.StringArray{\n\t\t\t\t\t\tpulumi.String(\"Create\"),\n\t\t\t\t\t\tpulumi.String(\"Delete\"),\n\t\t\t\t\t\tpulumi.String(\"DeleteIssuers\"),\n\t\t\t\t\t\tpulumi.String(\"Get\"),\n\t\t\t\t\t\tpulumi.String(\"GetIssuers\"),\n\t\t\t\t\t\tpulumi.String(\"Import\"),\n\t\t\t\t\t\tpulumi.String(\"List\"),\n\t\t\t\t\t\tpulumi.String(\"ListIssuers\"),\n\t\t\t\t\t\tpulumi.String(\"ManageContacts\"),\n\t\t\t\t\t\tpulumi.String(\"ManageIssuers\"),\n\t\t\t\t\t\tpulumi.String(\"Purge\"),\n\t\t\t\t\t\tpulumi.String(\"SetIssuers\"),\n\t\t\t\t\t\tpulumi.String(\"Update\"),\n\t\t\t\t\t},\n\t\t\t\t\tKeyPermissions: pulumi.StringArray{\n\t\t\t\t\t\tpulumi.String(\"Backup\"),\n\t\t\t\t\t\tpulumi.String(\"Create\"),\n\t\t\t\t\t\tpulumi.String(\"Decrypt\"),\n\t\t\t\t\t\tpulumi.String(\"Delete\"),\n\t\t\t\t\t\tpulumi.String(\"Encrypt\"),\n\t\t\t\t\t\tpulumi.String(\"Get\"),\n\t\t\t\t\t\tpulumi.String(\"Import\"),\n\t\t\t\t\t\tpulumi.String(\"List\"),\n\t\t\t\t\t\tpulumi.String(\"Purge\"),\n\t\t\t\t\t\tpulumi.String(\"Recover\"),\n\t\t\t\t\t\tpulumi.String(\"Restore\"),\n\t\t\t\t\t\tpulumi.String(\"Sign\"),\n\t\t\t\t\t\tpulumi.String(\"UnwrapKey\"),\n\t\t\t\t\t\tpulumi.String(\"Update\"),\n\t\t\t\t\t\tpulumi.String(\"Verify\"),\n\t\t\t\t\t\tpulumi.String(\"WrapKey\"),\n\t\t\t\t\t},\n\t\t\t\t\tSecretPermissions: pulumi.StringArray{\n\t\t\t\t\t\tpulumi.String(\"Backup\"),\n\t\t\t\t\t\tpulumi.String(\"Delete\"),\n\t\t\t\t\t\tpulumi.String(\"Get\"),\n\t\t\t\t\t\tpulumi.String(\"List\"),\n\t\t\t\t\t\tpulumi.String(\"Purge\"),\n\t\t\t\t\t\tpulumi.String(\"Recover\"),\n\t\t\t\t\t\tpulumi.String(\"Restore\"),\n\t\t\t\t\t\tpulumi.String(\"Set\"),\n\t\t\t\t\t},\n\t\t\t\t},\n\t\t\t},\n\t\t})\n\t\tif err != nil {\n\t\t\treturn err\n\t\t}\n\t\t_, err = keyvault.NewCertificate(ctx, \"example\", \u0026keyvault.CertificateArgs{\n\t\t\tName: pulumi.String(\"generated-cert\"),\n\t\t\tKeyVaultId: exampleKeyVault.ID(),\n\t\t\tCertificatePolicy: \u0026keyvault.CertificateCertificatePolicyArgs{\n\t\t\t\tIssuerParameters: \u0026keyvault.CertificateCertificatePolicyIssuerParametersArgs{\n\t\t\t\t\tName: pulumi.String(\"Self\"),\n\t\t\t\t},\n\t\t\t\tKeyProperties: \u0026keyvault.CertificateCertificatePolicyKeyPropertiesArgs{\n\t\t\t\t\tExportable: pulumi.Bool(true),\n\t\t\t\t\tKeySize: pulumi.Int(2048),\n\t\t\t\t\tKeyType: pulumi.String(\"RSA\"),\n\t\t\t\t\tReuseKey: pulumi.Bool(true),\n\t\t\t\t},\n\t\t\t\tLifetimeActions: keyvault.CertificateCertificatePolicyLifetimeActionArray{\n\t\t\t\t\t\u0026keyvault.CertificateCertificatePolicyLifetimeActionArgs{\n\t\t\t\t\t\tAction: \u0026keyvault.CertificateCertificatePolicyLifetimeActionActionArgs{\n\t\t\t\t\t\t\tActionType: pulumi.String(\"AutoRenew\"),\n\t\t\t\t\t\t},\n\t\t\t\t\t\tTrigger: \u0026keyvault.CertificateCertificatePolicyLifetimeActionTriggerArgs{\n\t\t\t\t\t\t\tDaysBeforeExpiry: pulumi.Int(30),\n\t\t\t\t\t\t},\n\t\t\t\t\t},\n\t\t\t\t},\n\t\t\t\tSecretProperties: \u0026keyvault.CertificateCertificatePolicySecretPropertiesArgs{\n\t\t\t\t\tContentType: pulumi.String(\"application/x-pkcs12\"),\n\t\t\t\t},\n\t\t\t\tX509CertificateProperties: \u0026keyvault.CertificateCertificatePolicyX509CertificatePropertiesArgs{\n\t\t\t\t\tExtendedKeyUsages: pulumi.StringArray{\n\t\t\t\t\t\tpulumi.String(\"1.3.6.1.5.5.7.3.1\"),\n\t\t\t\t\t},\n\t\t\t\t\tKeyUsages: pulumi.StringArray{\n\t\t\t\t\t\tpulumi.String(\"cRLSign\"),\n\t\t\t\t\t\tpulumi.String(\"dataEncipherment\"),\n\t\t\t\t\t\tpulumi.String(\"digitalSignature\"),\n\t\t\t\t\t\tpulumi.String(\"keyAgreement\"),\n\t\t\t\t\t\tpulumi.String(\"keyCertSign\"),\n\t\t\t\t\t\tpulumi.String(\"keyEncipherment\"),\n\t\t\t\t\t},\n\t\t\t\t\tSubjectAlternativeNames: \u0026keyvault.CertificateCertificatePolicyX509CertificatePropertiesSubjectAlternativeNamesArgs{\n\t\t\t\t\t\tDnsNames: pulumi.StringArray{\n\t\t\t\t\t\t\tpulumi.String(\"internal.contoso.com\"),\n\t\t\t\t\t\t\tpulumi.String(\"domain.hello.world\"),\n\t\t\t\t\t\t},\n\t\t\t\t\t},\n\t\t\t\t\tSubject: pulumi.String(\"CN=hello-world\"),\n\t\t\t\t\tValidityInMonths: pulumi.Int(12),\n\t\t\t\t},\n\t\t\t},\n\t\t})\n\t\tif err != nil {\n\t\t\treturn err\n\t\t}\n\t\treturn nil\n\t})\n}\n```\n```java\npackage generated_program;\n\nimport com.pulumi.Context;\nimport com.pulumi.Pulumi;\nimport com.pulumi.core.Output;\nimport com.pulumi.azure.core.CoreFunctions;\nimport com.pulumi.azure.core.ResourceGroup;\nimport com.pulumi.azure.core.ResourceGroupArgs;\nimport com.pulumi.azure.keyvault.KeyVault;\nimport com.pulumi.azure.keyvault.KeyVaultArgs;\nimport com.pulumi.azure.keyvault.inputs.KeyVaultAccessPolicyArgs;\nimport com.pulumi.azure.keyvault.Certificate;\nimport com.pulumi.azure.keyvault.CertificateArgs;\nimport com.pulumi.azure.keyvault.inputs.CertificateCertificatePolicyArgs;\nimport com.pulumi.azure.keyvault.inputs.CertificateCertificatePolicyIssuerParametersArgs;\nimport com.pulumi.azure.keyvault.inputs.CertificateCertificatePolicyKeyPropertiesArgs;\nimport com.pulumi.azure.keyvault.inputs.CertificateCertificatePolicySecretPropertiesArgs;\nimport com.pulumi.azure.keyvault.inputs.CertificateCertificatePolicyX509CertificatePropertiesArgs;\nimport com.pulumi.azure.keyvault.inputs.CertificateCertificatePolicyX509CertificatePropertiesSubjectAlternativeNamesArgs;\nimport java.util.List;\nimport java.util.ArrayList;\nimport java.util.Map;\nimport java.io.File;\nimport java.nio.file.Files;\nimport java.nio.file.Paths;\n\npublic class App {\n public static void main(String[] args) {\n Pulumi.run(App::stack);\n }\n\n public static void stack(Context ctx) {\n final var current = CoreFunctions.getClientConfig();\n\n var example = new ResourceGroup(\"example\", ResourceGroupArgs.builder() \n .name(\"example-resources\")\n .location(\"West Europe\")\n .build());\n\n var exampleKeyVault = new KeyVault(\"exampleKeyVault\", KeyVaultArgs.builder() \n .name(\"examplekeyvault\")\n .location(example.location())\n .resourceGroupName(example.name())\n .tenantId(current.applyValue(getClientConfigResult -\u003e getClientConfigResult.tenantId()))\n .skuName(\"standard\")\n .softDeleteRetentionDays(7)\n .accessPolicies(KeyVaultAccessPolicyArgs.builder()\n .tenantId(current.applyValue(getClientConfigResult -\u003e getClientConfigResult.tenantId()))\n .objectId(current.applyValue(getClientConfigResult -\u003e getClientConfigResult.objectId()))\n .certificatePermissions( \n \"Create\",\n \"Delete\",\n \"DeleteIssuers\",\n \"Get\",\n \"GetIssuers\",\n \"Import\",\n \"List\",\n \"ListIssuers\",\n \"ManageContacts\",\n \"ManageIssuers\",\n \"Purge\",\n \"SetIssuers\",\n \"Update\")\n .keyPermissions( \n \"Backup\",\n \"Create\",\n \"Decrypt\",\n \"Delete\",\n \"Encrypt\",\n \"Get\",\n \"Import\",\n \"List\",\n \"Purge\",\n \"Recover\",\n \"Restore\",\n \"Sign\",\n \"UnwrapKey\",\n \"Update\",\n \"Verify\",\n \"WrapKey\")\n .secretPermissions( \n \"Backup\",\n \"Delete\",\n \"Get\",\n \"List\",\n \"Purge\",\n \"Recover\",\n \"Restore\",\n \"Set\")\n .build())\n .build());\n\n var exampleCertificate = new Certificate(\"exampleCertificate\", CertificateArgs.builder() \n .name(\"generated-cert\")\n .keyVaultId(exampleKeyVault.id())\n .certificatePolicy(CertificateCertificatePolicyArgs.builder()\n .issuerParameters(CertificateCertificatePolicyIssuerParametersArgs.builder()\n .name(\"Self\")\n .build())\n .keyProperties(CertificateCertificatePolicyKeyPropertiesArgs.builder()\n .exportable(true)\n .keySize(2048)\n .keyType(\"RSA\")\n .reuseKey(true)\n .build())\n .lifetimeActions(CertificateCertificatePolicyLifetimeActionArgs.builder()\n .action(CertificateCertificatePolicyLifetimeActionActionArgs.builder()\n .actionType(\"AutoRenew\")\n .build())\n .trigger(CertificateCertificatePolicyLifetimeActionTriggerArgs.builder()\n .daysBeforeExpiry(30)\n .build())\n .build())\n .secretProperties(CertificateCertificatePolicySecretPropertiesArgs.builder()\n .contentType(\"application/x-pkcs12\")\n .build())\n .x509CertificateProperties(CertificateCertificatePolicyX509CertificatePropertiesArgs.builder()\n .extendedKeyUsages(\"1.3.6.1.5.5.7.3.1\")\n .keyUsages( \n \"cRLSign\",\n \"dataEncipherment\",\n \"digitalSignature\",\n \"keyAgreement\",\n \"keyCertSign\",\n \"keyEncipherment\")\n .subjectAlternativeNames(CertificateCertificatePolicyX509CertificatePropertiesSubjectAlternativeNamesArgs.builder()\n .dnsNames( \n \"internal.contoso.com\",\n \"domain.hello.world\")\n .build())\n .subject(\"CN=hello-world\")\n .validityInMonths(12)\n .build())\n .build())\n .build());\n\n }\n}\n```\n```yaml\nresources:\n example:\n type: azure:core:ResourceGroup\n properties:\n name: example-resources\n location: West Europe\n exampleKeyVault:\n type: azure:keyvault:KeyVault\n name: example\n properties:\n name: examplekeyvault\n location: ${example.location}\n resourceGroupName: ${example.name}\n tenantId: ${current.tenantId}\n skuName: standard\n softDeleteRetentionDays: 7\n accessPolicies:\n - tenantId: ${current.tenantId}\n objectId: ${current.objectId}\n certificatePermissions:\n - Create\n - Delete\n - DeleteIssuers\n - Get\n - GetIssuers\n - Import\n - List\n - ListIssuers\n - ManageContacts\n - ManageIssuers\n - Purge\n - SetIssuers\n - Update\n keyPermissions:\n - Backup\n - Create\n - Decrypt\n - Delete\n - Encrypt\n - Get\n - Import\n - List\n - Purge\n - Recover\n - Restore\n - Sign\n - UnwrapKey\n - Update\n - Verify\n - WrapKey\n secretPermissions:\n - Backup\n - Delete\n - Get\n - List\n - Purge\n - Recover\n - Restore\n - Set\n exampleCertificate:\n type: azure:keyvault:Certificate\n name: example\n properties:\n name: generated-cert\n keyVaultId: ${exampleKeyVault.id}\n certificatePolicy:\n issuerParameters:\n name: Self\n keyProperties:\n exportable: true\n keySize: 2048\n keyType: RSA\n reuseKey: true\n lifetimeActions:\n - action:\n actionType: AutoRenew\n trigger:\n daysBeforeExpiry: 30\n secretProperties:\n contentType: application/x-pkcs12\n x509CertificateProperties:\n extendedKeyUsages:\n - 1.3.6.1.5.5.7.3.1\n keyUsages:\n - cRLSign\n - dataEncipherment\n - digitalSignature\n - keyAgreement\n - keyCertSign\n - keyEncipherment\n subjectAlternativeNames:\n dnsNames:\n - internal.contoso.com\n - domain.hello.world\n subject: CN=hello-world\n validityInMonths: 12\nvariables:\n current:\n fn::invoke:\n Function: azure:core:getClientConfig\n Arguments: {}\n```\n\u003c!--End PulumiCodeChooser --\u003e\n\n## Import\n\nKey Vault Certificates can be imported using the `resource id`, e.g.\n\n```sh\n$ pulumi import azure:keyvault/certificate:Certificate example \"https://example-keyvault.vault.azure.net/certificates/example/fdf067c93bbb4b22bff4d8b7a9a56217\"\n```\n\n", "properties": { "certificate": { "$ref": "#/types/azure:keyvault/CertificateCertificate:CertificateCertificate", @@ -194647,14 +194711,14 @@ ] }, "azure:keyvault/certificateContacts:CertificateContacts": { - "description": "Manages Key Vault Certificate Contacts.\n\n## Disclaimers\n\n\u003e **Note:** It's possible to define Key Vault Certificate Contacts both within the `azure.keyvault.KeyVault` resource via the `contact` block and by using the `azure.keyvault.CertificateContacts` resource. However it's not possible to use both methods to manage Certificate Contacts within a KeyVault, since there'll be conflicts.\n\n## Example Usage\n\n\u003c!--Start PulumiCodeChooser --\u003e\n```typescript\nimport * as pulumi from \"@pulumi/pulumi\";\nimport * as azure from \"@pulumi/azure\";\n\nconst current = azure.core.getClientConfig({});\nconst example = new azure.core.ResourceGroup(\"example\", {\n name: \"example-resources\",\n location: \"West Europe\",\n});\nconst exampleKeyVault = new azure.keyvault.KeyVault(\"example\", {\n name: \"examplekeyvault\",\n location: example.location,\n resourceGroupName: example.name,\n tenantId: current.then(current =\u003e current.tenantId),\n skuName: \"premium\",\n});\nconst exampleAccessPolicy = new azure.keyvault.AccessPolicy(\"example\", {\n keyVaultId: exampleKeyVault.id,\n tenantId: current.then(current =\u003e current.tenantId),\n objectId: current.then(current =\u003e current.objectId),\n certificatePermissions: [\"ManageContacts\"],\n keyPermissions: [\"Create\"],\n secretPermissions: [\"Set\"],\n});\nconst exampleCertificateContacts = new azure.keyvault.CertificateContacts(\"example\", {\n keyVaultId: exampleKeyVault.id,\n contacts: [\n {\n email: \"example@example.com\",\n name: \"example\",\n phone: \"01234567890\",\n },\n {\n email: \"example2@example.com\",\n },\n ],\n});\n```\n```python\nimport pulumi\nimport pulumi_azure as azure\n\ncurrent = azure.core.get_client_config()\nexample = azure.core.ResourceGroup(\"example\",\n name=\"example-resources\",\n location=\"West Europe\")\nexample_key_vault = azure.keyvault.KeyVault(\"example\",\n name=\"examplekeyvault\",\n location=example.location,\n resource_group_name=example.name,\n tenant_id=current.tenant_id,\n sku_name=\"premium\")\nexample_access_policy = azure.keyvault.AccessPolicy(\"example\",\n key_vault_id=example_key_vault.id,\n tenant_id=current.tenant_id,\n object_id=current.object_id,\n certificate_permissions=[\"ManageContacts\"],\n key_permissions=[\"Create\"],\n secret_permissions=[\"Set\"])\nexample_certificate_contacts = azure.keyvault.CertificateContacts(\"example\",\n key_vault_id=example_key_vault.id,\n contacts=[\n azure.keyvault.CertificateContactsContactArgs(\n email=\"example@example.com\",\n name=\"example\",\n phone=\"01234567890\",\n ),\n azure.keyvault.CertificateContactsContactArgs(\n email=\"example2@example.com\",\n ),\n ])\n```\n```csharp\nusing System.Collections.Generic;\nusing System.Linq;\nusing Pulumi;\nusing Azure = Pulumi.Azure;\n\nreturn await Deployment.RunAsync(() =\u003e \n{\n var current = Azure.Core.GetClientConfig.Invoke();\n\n var example = new Azure.Core.ResourceGroup(\"example\", new()\n {\n Name = \"example-resources\",\n Location = \"West Europe\",\n });\n\n var exampleKeyVault = new Azure.KeyVault.KeyVault(\"example\", new()\n {\n Name = \"examplekeyvault\",\n Location = example.Location,\n ResourceGroupName = example.Name,\n TenantId = current.Apply(getClientConfigResult =\u003e getClientConfigResult.TenantId),\n SkuName = \"premium\",\n });\n\n var exampleAccessPolicy = new Azure.KeyVault.AccessPolicy(\"example\", new()\n {\n KeyVaultId = exampleKeyVault.Id,\n TenantId = current.Apply(getClientConfigResult =\u003e getClientConfigResult.TenantId),\n ObjectId = current.Apply(getClientConfigResult =\u003e getClientConfigResult.ObjectId),\n CertificatePermissions = new[]\n {\n \"ManageContacts\",\n },\n KeyPermissions = new[]\n {\n \"Create\",\n },\n SecretPermissions = new[]\n {\n \"Set\",\n },\n });\n\n var exampleCertificateContacts = new Azure.KeyVault.CertificateContacts(\"example\", new()\n {\n KeyVaultId = exampleKeyVault.Id,\n Contacts = new[]\n {\n new Azure.KeyVault.Inputs.CertificateContactsContactArgs\n {\n Email = \"example@example.com\",\n Name = \"example\",\n Phone = \"01234567890\",\n },\n new Azure.KeyVault.Inputs.CertificateContactsContactArgs\n {\n Email = \"example2@example.com\",\n },\n },\n });\n\n});\n```\n```go\npackage main\n\nimport (\n\t\"github.com/pulumi/pulumi-azure/sdk/v5/go/azure/core\"\n\t\"github.com/pulumi/pulumi-azure/sdk/v5/go/azure/keyvault\"\n\t\"github.com/pulumi/pulumi/sdk/v3/go/pulumi\"\n)\n\nfunc main() {\n\tpulumi.Run(func(ctx *pulumi.Context) error {\n\t\tcurrent, err := core.GetClientConfig(ctx, nil, nil)\n\t\tif err != nil {\n\t\t\treturn err\n\t\t}\n\t\texample, err := core.NewResourceGroup(ctx, \"example\", \u0026core.ResourceGroupArgs{\n\t\t\tName: pulumi.String(\"example-resources\"),\n\t\t\tLocation: pulumi.String(\"West Europe\"),\n\t\t})\n\t\tif err != nil {\n\t\t\treturn err\n\t\t}\n\t\texampleKeyVault, err := keyvault.NewKeyVault(ctx, \"example\", \u0026keyvault.KeyVaultArgs{\n\t\t\tName: pulumi.String(\"examplekeyvault\"),\n\t\t\tLocation: example.Location,\n\t\t\tResourceGroupName: example.Name,\n\t\t\tTenantId: pulumi.String(current.TenantId),\n\t\t\tSkuName: pulumi.String(\"premium\"),\n\t\t})\n\t\tif err != nil {\n\t\t\treturn err\n\t\t}\n\t\t_, err = keyvault.NewAccessPolicy(ctx, \"example\", \u0026keyvault.AccessPolicyArgs{\n\t\t\tKeyVaultId: exampleKeyVault.ID(),\n\t\t\tTenantId: pulumi.String(current.TenantId),\n\t\t\tObjectId: pulumi.String(current.ObjectId),\n\t\t\tCertificatePermissions: pulumi.StringArray{\n\t\t\t\tpulumi.String(\"ManageContacts\"),\n\t\t\t},\n\t\t\tKeyPermissions: pulumi.StringArray{\n\t\t\t\tpulumi.String(\"Create\"),\n\t\t\t},\n\t\t\tSecretPermissions: pulumi.StringArray{\n\t\t\t\tpulumi.String(\"Set\"),\n\t\t\t},\n\t\t})\n\t\tif err != nil {\n\t\t\treturn err\n\t\t}\n\t\t_, err = keyvault.NewCertificateContacts(ctx, \"example\", \u0026keyvault.CertificateContactsArgs{\n\t\t\tKeyVaultId: exampleKeyVault.ID(),\n\t\t\tContacts: keyvault.CertificateContactsContactArray{\n\t\t\t\t\u0026keyvault.CertificateContactsContactArgs{\n\t\t\t\t\tEmail: pulumi.String(\"example@example.com\"),\n\t\t\t\t\tName: pulumi.String(\"example\"),\n\t\t\t\t\tPhone: pulumi.String(\"01234567890\"),\n\t\t\t\t},\n\t\t\t\t\u0026keyvault.CertificateContactsContactArgs{\n\t\t\t\t\tEmail: pulumi.String(\"example2@example.com\"),\n\t\t\t\t},\n\t\t\t},\n\t\t})\n\t\tif err != nil {\n\t\t\treturn err\n\t\t}\n\t\treturn nil\n\t})\n}\n```\n```java\npackage generated_program;\n\nimport com.pulumi.Context;\nimport com.pulumi.Pulumi;\nimport com.pulumi.core.Output;\nimport com.pulumi.azure.core.CoreFunctions;\nimport com.pulumi.azure.core.ResourceGroup;\nimport com.pulumi.azure.core.ResourceGroupArgs;\nimport com.pulumi.azure.keyvault.KeyVault;\nimport com.pulumi.azure.keyvault.KeyVaultArgs;\nimport com.pulumi.azure.keyvault.AccessPolicy;\nimport com.pulumi.azure.keyvault.AccessPolicyArgs;\nimport com.pulumi.azure.keyvault.CertificateContacts;\nimport com.pulumi.azure.keyvault.CertificateContactsArgs;\nimport com.pulumi.azure.keyvault.inputs.CertificateContactsContactArgs;\nimport java.util.List;\nimport java.util.ArrayList;\nimport java.util.Map;\nimport java.io.File;\nimport java.nio.file.Files;\nimport java.nio.file.Paths;\n\npublic class App {\n public static void main(String[] args) {\n Pulumi.run(App::stack);\n }\n\n public static void stack(Context ctx) {\n final var current = CoreFunctions.getClientConfig();\n\n var example = new ResourceGroup(\"example\", ResourceGroupArgs.builder() \n .name(\"example-resources\")\n .location(\"West Europe\")\n .build());\n\n var exampleKeyVault = new KeyVault(\"exampleKeyVault\", KeyVaultArgs.builder() \n .name(\"examplekeyvault\")\n .location(example.location())\n .resourceGroupName(example.name())\n .tenantId(current.applyValue(getClientConfigResult -\u003e getClientConfigResult.tenantId()))\n .skuName(\"premium\")\n .build());\n\n var exampleAccessPolicy = new AccessPolicy(\"exampleAccessPolicy\", AccessPolicyArgs.builder() \n .keyVaultId(exampleKeyVault.id())\n .tenantId(current.applyValue(getClientConfigResult -\u003e getClientConfigResult.tenantId()))\n .objectId(current.applyValue(getClientConfigResult -\u003e getClientConfigResult.objectId()))\n .certificatePermissions(\"ManageContacts\")\n .keyPermissions(\"Create\")\n .secretPermissions(\"Set\")\n .build());\n\n var exampleCertificateContacts = new CertificateContacts(\"exampleCertificateContacts\", CertificateContactsArgs.builder() \n .keyVaultId(exampleKeyVault.id())\n .contacts( \n CertificateContactsContactArgs.builder()\n .email(\"example@example.com\")\n .name(\"example\")\n .phone(\"01234567890\")\n .build(),\n CertificateContactsContactArgs.builder()\n .email(\"example2@example.com\")\n .build())\n .build());\n\n }\n}\n```\n```yaml\nresources:\n example:\n type: azure:core:ResourceGroup\n properties:\n name: example-resources\n location: West Europe\n exampleKeyVault:\n type: azure:keyvault:KeyVault\n name: example\n properties:\n name: examplekeyvault\n location: ${example.location}\n resourceGroupName: ${example.name}\n tenantId: ${current.tenantId}\n skuName: premium\n exampleAccessPolicy:\n type: azure:keyvault:AccessPolicy\n name: example\n properties:\n keyVaultId: ${exampleKeyVault.id}\n tenantId: ${current.tenantId}\n objectId: ${current.objectId}\n certificatePermissions:\n - ManageContacts\n keyPermissions:\n - Create\n secretPermissions:\n - Set\n exampleCertificateContacts:\n type: azure:keyvault:CertificateContacts\n name: example\n properties:\n keyVaultId: ${exampleKeyVault.id}\n contacts:\n - email: example@example.com\n name: example\n phone: '01234567890'\n - email: example2@example.com\nvariables:\n current:\n fn::invoke:\n Function: azure:core:getClientConfig\n Arguments: {}\n```\n\u003c!--End PulumiCodeChooser --\u003e\n\n## Import\n\nKey Vault Certificate Contacts can be imported using the `resource id`, e.g.\n\n```sh\n$ pulumi import azure:keyvault/certificateContacts:CertificateContacts example https://example-keyvault.vault.azure.net/certificates/contacts\n```\n\n", + "description": "Manages Key Vault Certificate Contacts.\n\n## Disclaimers\n\n\u003c!-- TODO: Remove Note in 4.0 --\u003e\n\u003e **Note:** It's possible to define Key Vault Certificate Contacts both within the `azure.keyvault.KeyVault` resource via the `contact` block and by using the `azure.keyvault.CertificateContacts` resource. However it's not possible to use both methods to manage Certificate Contacts within a KeyVault, since there'll be conflicts.\n\n## Example Usage\n\n\u003c!--Start PulumiCodeChooser --\u003e\n```typescript\nimport * as pulumi from \"@pulumi/pulumi\";\nimport * as azure from \"@pulumi/azure\";\n\nconst current = azure.core.getClientConfig({});\nconst example = new azure.core.ResourceGroup(\"example\", {\n name: \"example-resources\",\n location: \"West Europe\",\n});\nconst exampleKeyVault = new azure.keyvault.KeyVault(\"example\", {\n name: \"examplekeyvault\",\n location: example.location,\n resourceGroupName: example.name,\n tenantId: current.then(current =\u003e current.tenantId),\n skuName: \"premium\",\n});\nconst exampleAccessPolicy = new azure.keyvault.AccessPolicy(\"example\", {\n keyVaultId: exampleKeyVault.id,\n tenantId: current.then(current =\u003e current.tenantId),\n objectId: current.then(current =\u003e current.objectId),\n certificatePermissions: [\"ManageContacts\"],\n keyPermissions: [\"Create\"],\n secretPermissions: [\"Set\"],\n});\nconst exampleCertificateContacts = new azure.keyvault.CertificateContacts(\"example\", {\n keyVaultId: exampleKeyVault.id,\n contacts: [\n {\n email: \"example@example.com\",\n name: \"example\",\n phone: \"01234567890\",\n },\n {\n email: \"example2@example.com\",\n },\n ],\n});\n```\n```python\nimport pulumi\nimport pulumi_azure as azure\n\ncurrent = azure.core.get_client_config()\nexample = azure.core.ResourceGroup(\"example\",\n name=\"example-resources\",\n location=\"West Europe\")\nexample_key_vault = azure.keyvault.KeyVault(\"example\",\n name=\"examplekeyvault\",\n location=example.location,\n resource_group_name=example.name,\n tenant_id=current.tenant_id,\n sku_name=\"premium\")\nexample_access_policy = azure.keyvault.AccessPolicy(\"example\",\n key_vault_id=example_key_vault.id,\n tenant_id=current.tenant_id,\n object_id=current.object_id,\n certificate_permissions=[\"ManageContacts\"],\n key_permissions=[\"Create\"],\n secret_permissions=[\"Set\"])\nexample_certificate_contacts = azure.keyvault.CertificateContacts(\"example\",\n key_vault_id=example_key_vault.id,\n contacts=[\n azure.keyvault.CertificateContactsContactArgs(\n email=\"example@example.com\",\n name=\"example\",\n phone=\"01234567890\",\n ),\n azure.keyvault.CertificateContactsContactArgs(\n email=\"example2@example.com\",\n ),\n ])\n```\n```csharp\nusing System.Collections.Generic;\nusing System.Linq;\nusing Pulumi;\nusing Azure = Pulumi.Azure;\n\nreturn await Deployment.RunAsync(() =\u003e \n{\n var current = Azure.Core.GetClientConfig.Invoke();\n\n var example = new Azure.Core.ResourceGroup(\"example\", new()\n {\n Name = \"example-resources\",\n Location = \"West Europe\",\n });\n\n var exampleKeyVault = new Azure.KeyVault.KeyVault(\"example\", new()\n {\n Name = \"examplekeyvault\",\n Location = example.Location,\n ResourceGroupName = example.Name,\n TenantId = current.Apply(getClientConfigResult =\u003e getClientConfigResult.TenantId),\n SkuName = \"premium\",\n });\n\n var exampleAccessPolicy = new Azure.KeyVault.AccessPolicy(\"example\", new()\n {\n KeyVaultId = exampleKeyVault.Id,\n TenantId = current.Apply(getClientConfigResult =\u003e getClientConfigResult.TenantId),\n ObjectId = current.Apply(getClientConfigResult =\u003e getClientConfigResult.ObjectId),\n CertificatePermissions = new[]\n {\n \"ManageContacts\",\n },\n KeyPermissions = new[]\n {\n \"Create\",\n },\n SecretPermissions = new[]\n {\n \"Set\",\n },\n });\n\n var exampleCertificateContacts = new Azure.KeyVault.CertificateContacts(\"example\", new()\n {\n KeyVaultId = exampleKeyVault.Id,\n Contacts = new[]\n {\n new Azure.KeyVault.Inputs.CertificateContactsContactArgs\n {\n Email = \"example@example.com\",\n Name = \"example\",\n Phone = \"01234567890\",\n },\n new Azure.KeyVault.Inputs.CertificateContactsContactArgs\n {\n Email = \"example2@example.com\",\n },\n },\n });\n\n});\n```\n```go\npackage main\n\nimport (\n\t\"github.com/pulumi/pulumi-azure/sdk/v5/go/azure/core\"\n\t\"github.com/pulumi/pulumi-azure/sdk/v5/go/azure/keyvault\"\n\t\"github.com/pulumi/pulumi/sdk/v3/go/pulumi\"\n)\n\nfunc main() {\n\tpulumi.Run(func(ctx *pulumi.Context) error {\n\t\tcurrent, err := core.GetClientConfig(ctx, nil, nil)\n\t\tif err != nil {\n\t\t\treturn err\n\t\t}\n\t\texample, err := core.NewResourceGroup(ctx, \"example\", \u0026core.ResourceGroupArgs{\n\t\t\tName: pulumi.String(\"example-resources\"),\n\t\t\tLocation: pulumi.String(\"West Europe\"),\n\t\t})\n\t\tif err != nil {\n\t\t\treturn err\n\t\t}\n\t\texampleKeyVault, err := keyvault.NewKeyVault(ctx, \"example\", \u0026keyvault.KeyVaultArgs{\n\t\t\tName: pulumi.String(\"examplekeyvault\"),\n\t\t\tLocation: example.Location,\n\t\t\tResourceGroupName: example.Name,\n\t\t\tTenantId: pulumi.String(current.TenantId),\n\t\t\tSkuName: pulumi.String(\"premium\"),\n\t\t})\n\t\tif err != nil {\n\t\t\treturn err\n\t\t}\n\t\t_, err = keyvault.NewAccessPolicy(ctx, \"example\", \u0026keyvault.AccessPolicyArgs{\n\t\t\tKeyVaultId: exampleKeyVault.ID(),\n\t\t\tTenantId: pulumi.String(current.TenantId),\n\t\t\tObjectId: pulumi.String(current.ObjectId),\n\t\t\tCertificatePermissions: pulumi.StringArray{\n\t\t\t\tpulumi.String(\"ManageContacts\"),\n\t\t\t},\n\t\t\tKeyPermissions: pulumi.StringArray{\n\t\t\t\tpulumi.String(\"Create\"),\n\t\t\t},\n\t\t\tSecretPermissions: pulumi.StringArray{\n\t\t\t\tpulumi.String(\"Set\"),\n\t\t\t},\n\t\t})\n\t\tif err != nil {\n\t\t\treturn err\n\t\t}\n\t\t_, err = keyvault.NewCertificateContacts(ctx, \"example\", \u0026keyvault.CertificateContactsArgs{\n\t\t\tKeyVaultId: exampleKeyVault.ID(),\n\t\t\tContacts: keyvault.CertificateContactsContactArray{\n\t\t\t\t\u0026keyvault.CertificateContactsContactArgs{\n\t\t\t\t\tEmail: pulumi.String(\"example@example.com\"),\n\t\t\t\t\tName: pulumi.String(\"example\"),\n\t\t\t\t\tPhone: pulumi.String(\"01234567890\"),\n\t\t\t\t},\n\t\t\t\t\u0026keyvault.CertificateContactsContactArgs{\n\t\t\t\t\tEmail: pulumi.String(\"example2@example.com\"),\n\t\t\t\t},\n\t\t\t},\n\t\t})\n\t\tif err != nil {\n\t\t\treturn err\n\t\t}\n\t\treturn nil\n\t})\n}\n```\n```java\npackage generated_program;\n\nimport com.pulumi.Context;\nimport com.pulumi.Pulumi;\nimport com.pulumi.core.Output;\nimport com.pulumi.azure.core.CoreFunctions;\nimport com.pulumi.azure.core.ResourceGroup;\nimport com.pulumi.azure.core.ResourceGroupArgs;\nimport com.pulumi.azure.keyvault.KeyVault;\nimport com.pulumi.azure.keyvault.KeyVaultArgs;\nimport com.pulumi.azure.keyvault.AccessPolicy;\nimport com.pulumi.azure.keyvault.AccessPolicyArgs;\nimport com.pulumi.azure.keyvault.CertificateContacts;\nimport com.pulumi.azure.keyvault.CertificateContactsArgs;\nimport com.pulumi.azure.keyvault.inputs.CertificateContactsContactArgs;\nimport java.util.List;\nimport java.util.ArrayList;\nimport java.util.Map;\nimport java.io.File;\nimport java.nio.file.Files;\nimport java.nio.file.Paths;\n\npublic class App {\n public static void main(String[] args) {\n Pulumi.run(App::stack);\n }\n\n public static void stack(Context ctx) {\n final var current = CoreFunctions.getClientConfig();\n\n var example = new ResourceGroup(\"example\", ResourceGroupArgs.builder() \n .name(\"example-resources\")\n .location(\"West Europe\")\n .build());\n\n var exampleKeyVault = new KeyVault(\"exampleKeyVault\", KeyVaultArgs.builder() \n .name(\"examplekeyvault\")\n .location(example.location())\n .resourceGroupName(example.name())\n .tenantId(current.applyValue(getClientConfigResult -\u003e getClientConfigResult.tenantId()))\n .skuName(\"premium\")\n .build());\n\n var exampleAccessPolicy = new AccessPolicy(\"exampleAccessPolicy\", AccessPolicyArgs.builder() \n .keyVaultId(exampleKeyVault.id())\n .tenantId(current.applyValue(getClientConfigResult -\u003e getClientConfigResult.tenantId()))\n .objectId(current.applyValue(getClientConfigResult -\u003e getClientConfigResult.objectId()))\n .certificatePermissions(\"ManageContacts\")\n .keyPermissions(\"Create\")\n .secretPermissions(\"Set\")\n .build());\n\n var exampleCertificateContacts = new CertificateContacts(\"exampleCertificateContacts\", CertificateContactsArgs.builder() \n .keyVaultId(exampleKeyVault.id())\n .contacts( \n CertificateContactsContactArgs.builder()\n .email(\"example@example.com\")\n .name(\"example\")\n .phone(\"01234567890\")\n .build(),\n CertificateContactsContactArgs.builder()\n .email(\"example2@example.com\")\n .build())\n .build());\n\n }\n}\n```\n```yaml\nresources:\n example:\n type: azure:core:ResourceGroup\n properties:\n name: example-resources\n location: West Europe\n exampleKeyVault:\n type: azure:keyvault:KeyVault\n name: example\n properties:\n name: examplekeyvault\n location: ${example.location}\n resourceGroupName: ${example.name}\n tenantId: ${current.tenantId}\n skuName: premium\n exampleAccessPolicy:\n type: azure:keyvault:AccessPolicy\n name: example\n properties:\n keyVaultId: ${exampleKeyVault.id}\n tenantId: ${current.tenantId}\n objectId: ${current.objectId}\n certificatePermissions:\n - ManageContacts\n keyPermissions:\n - Create\n secretPermissions:\n - Set\n exampleCertificateContacts:\n type: azure:keyvault:CertificateContacts\n name: example\n properties:\n keyVaultId: ${exampleKeyVault.id}\n contacts:\n - email: example@example.com\n name: example\n phone: '01234567890'\n - email: example2@example.com\nvariables:\n current:\n fn::invoke:\n Function: azure:core:getClientConfig\n Arguments: {}\n```\n\u003c!--End PulumiCodeChooser --\u003e\n\n## Import\n\nKey Vault Certificate Contacts can be imported using the `resource id`, e.g.\n\n```sh\n$ pulumi import azure:keyvault/certificateContacts:CertificateContacts example https://example-keyvault.vault.azure.net/certificates/contacts\n```\n\n", "properties": { "contacts": { "type": "array", "items": { "$ref": "#/types/azure:keyvault/CertificateContactsContact:CertificateContactsContact" }, - "description": "One or more `contact` blocks as defined below.\n" + "description": "One or more `contact` blocks as defined below.\n--\u003e\n" }, "keyVaultId": { "type": "string", @@ -194671,7 +194735,7 @@ "items": { "$ref": "#/types/azure:keyvault/CertificateContactsContact:CertificateContactsContact" }, - "description": "One or more `contact` blocks as defined below.\n" + "description": "One or more `contact` blocks as defined below.\n--\u003e\n" }, "keyVaultId": { "type": "string", @@ -194691,7 +194755,7 @@ "items": { "$ref": "#/types/azure:keyvault/CertificateContactsContact:CertificateContactsContact" }, - "description": "One or more `contact` blocks as defined below.\n" + "description": "One or more `contact` blocks as defined below.\n--\u003e\n" }, "keyVaultId": { "type": "string", @@ -195102,7 +195166,8 @@ "items": { "$ref": "#/types/azure:keyvault/KeyVaultContact:KeyVaultContact" }, - "description": "One or more `contact` block as defined below.\n\n\u003e **Note:** This field can only be set once user has `managecontacts` certificate permission.\n\n\u003e **Note:** This field can only be set when `public_network_access_enabled` is set to `true`. To manage the `contact` with `public_network_access_enabled` set to `false`, please use the `azure.keyvault.CertificateContacts` resource instead of this property, and remove this property from the configuration. Especially for existing `azure.keyvault.KeyVault`, this means you'll need to import the `azure.keyvault.CertificateContacts` manually.\n" + "description": "One or more `contact` block as defined below.\n\n\u003e **Note:** This field can only be set once user has `managecontacts` certificate permission.\n\n\u003e **Note:** This field can only be set when `public_network_access_enabled` is set to `true`. To manage the `contact` with `public_network_access_enabled` set to `false`, please use the `azure.keyvault.CertificateContacts` resource instead of this property, and remove this property from the configuration. Especially for existing `azure.keyvault.KeyVault`, this means you'll need to import the `azure.keyvault.CertificateContacts` manually.\n", + "deprecationMessage": "As the `contact` property requires reaching out to the dataplane, to better support private endpoints and keyvaults with public network access disabled, `contact` will be removed in favour of the `azure.keyvault.CertificateContacts` resource in version 4.0 of the AzureRM Provider." }, "enableRbacAuthorization": { "type": "boolean", @@ -195150,7 +195215,7 @@ }, "softDeleteRetentionDays": { "type": "integer", - "description": "The number of days that items should be retained for once soft-deleted. This value can be between `7` and `90` (the default) days.\n\n\u003e **Note:** This field can only be configured one time and cannot be updated.\n" + "description": "The number of days that items should be retained for once soft-deleted. This value can be between `7` and `90` (the default) days.\n\n\u003e **Note:** This field can only be configured one time and cannot be updated.\n\n\u003c!-- TODO: Remove `contact` and Notes in 4.0 --\u003e\n" }, "tags": { "type": "object", @@ -195170,6 +195235,7 @@ }, "required": [ "accessPolicies", + "contacts", "location", "name", "networkAcls", @@ -195191,7 +195257,8 @@ "items": { "$ref": "#/types/azure:keyvault/KeyVaultContact:KeyVaultContact" }, - "description": "One or more `contact` block as defined below.\n\n\u003e **Note:** This field can only be set once user has `managecontacts` certificate permission.\n\n\u003e **Note:** This field can only be set when `public_network_access_enabled` is set to `true`. To manage the `contact` with `public_network_access_enabled` set to `false`, please use the `azure.keyvault.CertificateContacts` resource instead of this property, and remove this property from the configuration. Especially for existing `azure.keyvault.KeyVault`, this means you'll need to import the `azure.keyvault.CertificateContacts` manually.\n" + "description": "One or more `contact` block as defined below.\n\n\u003e **Note:** This field can only be set once user has `managecontacts` certificate permission.\n\n\u003e **Note:** This field can only be set when `public_network_access_enabled` is set to `true`. To manage the `contact` with `public_network_access_enabled` set to `false`, please use the `azure.keyvault.CertificateContacts` resource instead of this property, and remove this property from the configuration. Especially for existing `azure.keyvault.KeyVault`, this means you'll need to import the `azure.keyvault.CertificateContacts` manually.\n", + "deprecationMessage": "As the `contact` property requires reaching out to the dataplane, to better support private endpoints and keyvaults with public network access disabled, `contact` will be removed in favour of the `azure.keyvault.CertificateContacts` resource in version 4.0 of the AzureRM Provider." }, "enableRbacAuthorization": { "type": "boolean", @@ -195242,7 +195309,7 @@ }, "softDeleteRetentionDays": { "type": "integer", - "description": "The number of days that items should be retained for once soft-deleted. This value can be between `7` and `90` (the default) days.\n\n\u003e **Note:** This field can only be configured one time and cannot be updated.\n" + "description": "The number of days that items should be retained for once soft-deleted. This value can be between `7` and `90` (the default) days.\n\n\u003e **Note:** This field can only be configured one time and cannot be updated.\n\n\u003c!-- TODO: Remove `contact` and Notes in 4.0 --\u003e\n" }, "tags": { "type": "object", @@ -195276,7 +195343,8 @@ "items": { "$ref": "#/types/azure:keyvault/KeyVaultContact:KeyVaultContact" }, - "description": "One or more `contact` block as defined below.\n\n\u003e **Note:** This field can only be set once user has `managecontacts` certificate permission.\n\n\u003e **Note:** This field can only be set when `public_network_access_enabled` is set to `true`. To manage the `contact` with `public_network_access_enabled` set to `false`, please use the `azure.keyvault.CertificateContacts` resource instead of this property, and remove this property from the configuration. Especially for existing `azure.keyvault.KeyVault`, this means you'll need to import the `azure.keyvault.CertificateContacts` manually.\n" + "description": "One or more `contact` block as defined below.\n\n\u003e **Note:** This field can only be set once user has `managecontacts` certificate permission.\n\n\u003e **Note:** This field can only be set when `public_network_access_enabled` is set to `true`. To manage the `contact` with `public_network_access_enabled` set to `false`, please use the `azure.keyvault.CertificateContacts` resource instead of this property, and remove this property from the configuration. Especially for existing `azure.keyvault.KeyVault`, this means you'll need to import the `azure.keyvault.CertificateContacts` manually.\n", + "deprecationMessage": "As the `contact` property requires reaching out to the dataplane, to better support private endpoints and keyvaults with public network access disabled, `contact` will be removed in favour of the `azure.keyvault.CertificateContacts` resource in version 4.0 of the AzureRM Provider." }, "enableRbacAuthorization": { "type": "boolean", @@ -195327,7 +195395,7 @@ }, "softDeleteRetentionDays": { "type": "integer", - "description": "The number of days that items should be retained for once soft-deleted. This value can be between `7` and `90` (the default) days.\n\n\u003e **Note:** This field can only be configured one time and cannot be updated.\n" + "description": "The number of days that items should be retained for once soft-deleted. This value can be between `7` and `90` (the default) days.\n\n\u003e **Note:** This field can only be configured one time and cannot be updated.\n\n\u003c!-- TODO: Remove `contact` and Notes in 4.0 --\u003e\n" }, "tags": { "type": "object", @@ -196055,7 +196123,7 @@ } }, "azure:keyvault/secret:Secret": { - "description": "Manages a Key Vault Secret.\n\n\u003c\u003c\u003c\u003c\u003c\u003c\u003c HEAD\n\u003e **Note:** All arguments including the secret value will be stored in the raw state as plain-text.\n[Read more about sensitive data in state](https://www.terraform.io/docs/state/sensitive-data.html).\n\n\u003e **Note:** The Azure Provider includes a Feature Toggle which will purge a Key Vault Secret resource on destroy, rather than the default soft-delete. See `purge_soft_deleted_secrets_on_destroy` for more information.\n\n=======\n\u003e\u003e\u003e\u003e\u003e\u003e\u003e 8d78c87098 (Update-documentation)\n## Example Usage\n\n\u003c!--Start PulumiCodeChooser --\u003e\n```typescript\nimport * as pulumi from \"@pulumi/pulumi\";\nimport * as azure from \"@pulumi/azure\";\n\nconst current = azure.core.getClientConfig({});\nconst example = new azure.core.ResourceGroup(\"example\", {\n name: \"example-resources\",\n location: \"West Europe\",\n});\nconst exampleKeyVault = new azure.keyvault.KeyVault(\"example\", {\n name: \"examplekeyvault\",\n location: example.location,\n resourceGroupName: example.name,\n tenantId: current.then(current =\u003e current.tenantId),\n skuName: \"premium\",\n softDeleteRetentionDays: 7,\n accessPolicies: [{\n tenantId: current.then(current =\u003e current.tenantId),\n objectId: current.then(current =\u003e current.objectId),\n keyPermissions: [\n \"Create\",\n \"Get\",\n ],\n secretPermissions: [\n \"Set\",\n \"Get\",\n \"Delete\",\n \"Purge\",\n \"Recover\",\n ],\n }],\n});\nconst exampleSecret = new azure.keyvault.Secret(\"example\", {\n name: \"secret-sauce\",\n value: \"szechuan\",\n keyVaultId: exampleKeyVault.id,\n});\n```\n```python\nimport pulumi\nimport pulumi_azure as azure\n\ncurrent = azure.core.get_client_config()\nexample = azure.core.ResourceGroup(\"example\",\n name=\"example-resources\",\n location=\"West Europe\")\nexample_key_vault = azure.keyvault.KeyVault(\"example\",\n name=\"examplekeyvault\",\n location=example.location,\n resource_group_name=example.name,\n tenant_id=current.tenant_id,\n sku_name=\"premium\",\n soft_delete_retention_days=7,\n access_policies=[azure.keyvault.KeyVaultAccessPolicyArgs(\n tenant_id=current.tenant_id,\n object_id=current.object_id,\n key_permissions=[\n \"Create\",\n \"Get\",\n ],\n secret_permissions=[\n \"Set\",\n \"Get\",\n \"Delete\",\n \"Purge\",\n \"Recover\",\n ],\n )])\nexample_secret = azure.keyvault.Secret(\"example\",\n name=\"secret-sauce\",\n value=\"szechuan\",\n key_vault_id=example_key_vault.id)\n```\n```csharp\nusing System.Collections.Generic;\nusing System.Linq;\nusing Pulumi;\nusing Azure = Pulumi.Azure;\n\nreturn await Deployment.RunAsync(() =\u003e \n{\n var current = Azure.Core.GetClientConfig.Invoke();\n\n var example = new Azure.Core.ResourceGroup(\"example\", new()\n {\n Name = \"example-resources\",\n Location = \"West Europe\",\n });\n\n var exampleKeyVault = new Azure.KeyVault.KeyVault(\"example\", new()\n {\n Name = \"examplekeyvault\",\n Location = example.Location,\n ResourceGroupName = example.Name,\n TenantId = current.Apply(getClientConfigResult =\u003e getClientConfigResult.TenantId),\n SkuName = \"premium\",\n SoftDeleteRetentionDays = 7,\n AccessPolicies = new[]\n {\n new Azure.KeyVault.Inputs.KeyVaultAccessPolicyArgs\n {\n TenantId = current.Apply(getClientConfigResult =\u003e getClientConfigResult.TenantId),\n ObjectId = current.Apply(getClientConfigResult =\u003e getClientConfigResult.ObjectId),\n KeyPermissions = new[]\n {\n \"Create\",\n \"Get\",\n },\n SecretPermissions = new[]\n {\n \"Set\",\n \"Get\",\n \"Delete\",\n \"Purge\",\n \"Recover\",\n },\n },\n },\n });\n\n var exampleSecret = new Azure.KeyVault.Secret(\"example\", new()\n {\n Name = \"secret-sauce\",\n Value = \"szechuan\",\n KeyVaultId = exampleKeyVault.Id,\n });\n\n});\n```\n```go\npackage main\n\nimport (\n\t\"github.com/pulumi/pulumi-azure/sdk/v5/go/azure/core\"\n\t\"github.com/pulumi/pulumi-azure/sdk/v5/go/azure/keyvault\"\n\t\"github.com/pulumi/pulumi/sdk/v3/go/pulumi\"\n)\n\nfunc main() {\n\tpulumi.Run(func(ctx *pulumi.Context) error {\n\t\tcurrent, err := core.GetClientConfig(ctx, nil, nil)\n\t\tif err != nil {\n\t\t\treturn err\n\t\t}\n\t\texample, err := core.NewResourceGroup(ctx, \"example\", \u0026core.ResourceGroupArgs{\n\t\t\tName: pulumi.String(\"example-resources\"),\n\t\t\tLocation: pulumi.String(\"West Europe\"),\n\t\t})\n\t\tif err != nil {\n\t\t\treturn err\n\t\t}\n\t\texampleKeyVault, err := keyvault.NewKeyVault(ctx, \"example\", \u0026keyvault.KeyVaultArgs{\n\t\t\tName: pulumi.String(\"examplekeyvault\"),\n\t\t\tLocation: example.Location,\n\t\t\tResourceGroupName: example.Name,\n\t\t\tTenantId: pulumi.String(current.TenantId),\n\t\t\tSkuName: pulumi.String(\"premium\"),\n\t\t\tSoftDeleteRetentionDays: pulumi.Int(7),\n\t\t\tAccessPolicies: keyvault.KeyVaultAccessPolicyArray{\n\t\t\t\t\u0026keyvault.KeyVaultAccessPolicyArgs{\n\t\t\t\t\tTenantId: pulumi.String(current.TenantId),\n\t\t\t\t\tObjectId: pulumi.String(current.ObjectId),\n\t\t\t\t\tKeyPermissions: pulumi.StringArray{\n\t\t\t\t\t\tpulumi.String(\"Create\"),\n\t\t\t\t\t\tpulumi.String(\"Get\"),\n\t\t\t\t\t},\n\t\t\t\t\tSecretPermissions: pulumi.StringArray{\n\t\t\t\t\t\tpulumi.String(\"Set\"),\n\t\t\t\t\t\tpulumi.String(\"Get\"),\n\t\t\t\t\t\tpulumi.String(\"Delete\"),\n\t\t\t\t\t\tpulumi.String(\"Purge\"),\n\t\t\t\t\t\tpulumi.String(\"Recover\"),\n\t\t\t\t\t},\n\t\t\t\t},\n\t\t\t},\n\t\t})\n\t\tif err != nil {\n\t\t\treturn err\n\t\t}\n\t\t_, err = keyvault.NewSecret(ctx, \"example\", \u0026keyvault.SecretArgs{\n\t\t\tName: pulumi.String(\"secret-sauce\"),\n\t\t\tValue: pulumi.String(\"szechuan\"),\n\t\t\tKeyVaultId: exampleKeyVault.ID(),\n\t\t})\n\t\tif err != nil {\n\t\t\treturn err\n\t\t}\n\t\treturn nil\n\t})\n}\n```\n```java\npackage generated_program;\n\nimport com.pulumi.Context;\nimport com.pulumi.Pulumi;\nimport com.pulumi.core.Output;\nimport com.pulumi.azure.core.CoreFunctions;\nimport com.pulumi.azure.core.ResourceGroup;\nimport com.pulumi.azure.core.ResourceGroupArgs;\nimport com.pulumi.azure.keyvault.KeyVault;\nimport com.pulumi.azure.keyvault.KeyVaultArgs;\nimport com.pulumi.azure.keyvault.inputs.KeyVaultAccessPolicyArgs;\nimport com.pulumi.azure.keyvault.Secret;\nimport com.pulumi.azure.keyvault.SecretArgs;\nimport java.util.List;\nimport java.util.ArrayList;\nimport java.util.Map;\nimport java.io.File;\nimport java.nio.file.Files;\nimport java.nio.file.Paths;\n\npublic class App {\n public static void main(String[] args) {\n Pulumi.run(App::stack);\n }\n\n public static void stack(Context ctx) {\n final var current = CoreFunctions.getClientConfig();\n\n var example = new ResourceGroup(\"example\", ResourceGroupArgs.builder() \n .name(\"example-resources\")\n .location(\"West Europe\")\n .build());\n\n var exampleKeyVault = new KeyVault(\"exampleKeyVault\", KeyVaultArgs.builder() \n .name(\"examplekeyvault\")\n .location(example.location())\n .resourceGroupName(example.name())\n .tenantId(current.applyValue(getClientConfigResult -\u003e getClientConfigResult.tenantId()))\n .skuName(\"premium\")\n .softDeleteRetentionDays(7)\n .accessPolicies(KeyVaultAccessPolicyArgs.builder()\n .tenantId(current.applyValue(getClientConfigResult -\u003e getClientConfigResult.tenantId()))\n .objectId(current.applyValue(getClientConfigResult -\u003e getClientConfigResult.objectId()))\n .keyPermissions( \n \"Create\",\n \"Get\")\n .secretPermissions( \n \"Set\",\n \"Get\",\n \"Delete\",\n \"Purge\",\n \"Recover\")\n .build())\n .build());\n\n var exampleSecret = new Secret(\"exampleSecret\", SecretArgs.builder() \n .name(\"secret-sauce\")\n .value(\"szechuan\")\n .keyVaultId(exampleKeyVault.id())\n .build());\n\n }\n}\n```\n```yaml\nresources:\n example:\n type: azure:core:ResourceGroup\n properties:\n name: example-resources\n location: West Europe\n exampleKeyVault:\n type: azure:keyvault:KeyVault\n name: example\n properties:\n name: examplekeyvault\n location: ${example.location}\n resourceGroupName: ${example.name}\n tenantId: ${current.tenantId}\n skuName: premium\n softDeleteRetentionDays: 7\n accessPolicies:\n - tenantId: ${current.tenantId}\n objectId: ${current.objectId}\n keyPermissions:\n - Create\n - Get\n secretPermissions:\n - Set\n - Get\n - Delete\n - Purge\n - Recover\n exampleSecret:\n type: azure:keyvault:Secret\n name: example\n properties:\n name: secret-sauce\n value: szechuan\n keyVaultId: ${exampleKeyVault.id}\nvariables:\n current:\n fn::invoke:\n Function: azure:core:getClientConfig\n Arguments: {}\n```\n\u003c!--End PulumiCodeChooser --\u003e\n\n## Import\n\nKey Vault Secrets which are Enabled can be imported using the `resource id`, e.g.\n\n```sh\n$ pulumi import azure:keyvault/secret:Secret example \"https://example-keyvault.vault.azure.net/secrets/example/fdf067c93bbb4b22bff4d8b7a9a56217\"\n```\n\n", + "description": "Manages a Key Vault Secret.\n\n## Example Usage\n\n\u003c!--Start PulumiCodeChooser --\u003e\n```typescript\nimport * as pulumi from \"@pulumi/pulumi\";\nimport * as azure from \"@pulumi/azure\";\n\nconst current = azure.core.getClientConfig({});\nconst example = new azure.core.ResourceGroup(\"example\", {\n name: \"example-resources\",\n location: \"West Europe\",\n});\nconst exampleKeyVault = new azure.keyvault.KeyVault(\"example\", {\n name: \"examplekeyvault\",\n location: example.location,\n resourceGroupName: example.name,\n tenantId: current.then(current =\u003e current.tenantId),\n skuName: \"premium\",\n softDeleteRetentionDays: 7,\n accessPolicies: [{\n tenantId: current.then(current =\u003e current.tenantId),\n objectId: current.then(current =\u003e current.objectId),\n keyPermissions: [\n \"Create\",\n \"Get\",\n ],\n secretPermissions: [\n \"Set\",\n \"Get\",\n \"Delete\",\n \"Purge\",\n \"Recover\",\n ],\n }],\n});\nconst exampleSecret = new azure.keyvault.Secret(\"example\", {\n name: \"secret-sauce\",\n value: \"szechuan\",\n keyVaultId: exampleKeyVault.id,\n});\n```\n```python\nimport pulumi\nimport pulumi_azure as azure\n\ncurrent = azure.core.get_client_config()\nexample = azure.core.ResourceGroup(\"example\",\n name=\"example-resources\",\n location=\"West Europe\")\nexample_key_vault = azure.keyvault.KeyVault(\"example\",\n name=\"examplekeyvault\",\n location=example.location,\n resource_group_name=example.name,\n tenant_id=current.tenant_id,\n sku_name=\"premium\",\n soft_delete_retention_days=7,\n access_policies=[azure.keyvault.KeyVaultAccessPolicyArgs(\n tenant_id=current.tenant_id,\n object_id=current.object_id,\n key_permissions=[\n \"Create\",\n \"Get\",\n ],\n secret_permissions=[\n \"Set\",\n \"Get\",\n \"Delete\",\n \"Purge\",\n \"Recover\",\n ],\n )])\nexample_secret = azure.keyvault.Secret(\"example\",\n name=\"secret-sauce\",\n value=\"szechuan\",\n key_vault_id=example_key_vault.id)\n```\n```csharp\nusing System.Collections.Generic;\nusing System.Linq;\nusing Pulumi;\nusing Azure = Pulumi.Azure;\n\nreturn await Deployment.RunAsync(() =\u003e \n{\n var current = Azure.Core.GetClientConfig.Invoke();\n\n var example = new Azure.Core.ResourceGroup(\"example\", new()\n {\n Name = \"example-resources\",\n Location = \"West Europe\",\n });\n\n var exampleKeyVault = new Azure.KeyVault.KeyVault(\"example\", new()\n {\n Name = \"examplekeyvault\",\n Location = example.Location,\n ResourceGroupName = example.Name,\n TenantId = current.Apply(getClientConfigResult =\u003e getClientConfigResult.TenantId),\n SkuName = \"premium\",\n SoftDeleteRetentionDays = 7,\n AccessPolicies = new[]\n {\n new Azure.KeyVault.Inputs.KeyVaultAccessPolicyArgs\n {\n TenantId = current.Apply(getClientConfigResult =\u003e getClientConfigResult.TenantId),\n ObjectId = current.Apply(getClientConfigResult =\u003e getClientConfigResult.ObjectId),\n KeyPermissions = new[]\n {\n \"Create\",\n \"Get\",\n },\n SecretPermissions = new[]\n {\n \"Set\",\n \"Get\",\n \"Delete\",\n \"Purge\",\n \"Recover\",\n },\n },\n },\n });\n\n var exampleSecret = new Azure.KeyVault.Secret(\"example\", new()\n {\n Name = \"secret-sauce\",\n Value = \"szechuan\",\n KeyVaultId = exampleKeyVault.Id,\n });\n\n});\n```\n```go\npackage main\n\nimport (\n\t\"github.com/pulumi/pulumi-azure/sdk/v5/go/azure/core\"\n\t\"github.com/pulumi/pulumi-azure/sdk/v5/go/azure/keyvault\"\n\t\"github.com/pulumi/pulumi/sdk/v3/go/pulumi\"\n)\n\nfunc main() {\n\tpulumi.Run(func(ctx *pulumi.Context) error {\n\t\tcurrent, err := core.GetClientConfig(ctx, nil, nil)\n\t\tif err != nil {\n\t\t\treturn err\n\t\t}\n\t\texample, err := core.NewResourceGroup(ctx, \"example\", \u0026core.ResourceGroupArgs{\n\t\t\tName: pulumi.String(\"example-resources\"),\n\t\t\tLocation: pulumi.String(\"West Europe\"),\n\t\t})\n\t\tif err != nil {\n\t\t\treturn err\n\t\t}\n\t\texampleKeyVault, err := keyvault.NewKeyVault(ctx, \"example\", \u0026keyvault.KeyVaultArgs{\n\t\t\tName: pulumi.String(\"examplekeyvault\"),\n\t\t\tLocation: example.Location,\n\t\t\tResourceGroupName: example.Name,\n\t\t\tTenantId: pulumi.String(current.TenantId),\n\t\t\tSkuName: pulumi.String(\"premium\"),\n\t\t\tSoftDeleteRetentionDays: pulumi.Int(7),\n\t\t\tAccessPolicies: keyvault.KeyVaultAccessPolicyArray{\n\t\t\t\t\u0026keyvault.KeyVaultAccessPolicyArgs{\n\t\t\t\t\tTenantId: pulumi.String(current.TenantId),\n\t\t\t\t\tObjectId: pulumi.String(current.ObjectId),\n\t\t\t\t\tKeyPermissions: pulumi.StringArray{\n\t\t\t\t\t\tpulumi.String(\"Create\"),\n\t\t\t\t\t\tpulumi.String(\"Get\"),\n\t\t\t\t\t},\n\t\t\t\t\tSecretPermissions: pulumi.StringArray{\n\t\t\t\t\t\tpulumi.String(\"Set\"),\n\t\t\t\t\t\tpulumi.String(\"Get\"),\n\t\t\t\t\t\tpulumi.String(\"Delete\"),\n\t\t\t\t\t\tpulumi.String(\"Purge\"),\n\t\t\t\t\t\tpulumi.String(\"Recover\"),\n\t\t\t\t\t},\n\t\t\t\t},\n\t\t\t},\n\t\t})\n\t\tif err != nil {\n\t\t\treturn err\n\t\t}\n\t\t_, err = keyvault.NewSecret(ctx, \"example\", \u0026keyvault.SecretArgs{\n\t\t\tName: pulumi.String(\"secret-sauce\"),\n\t\t\tValue: pulumi.String(\"szechuan\"),\n\t\t\tKeyVaultId: exampleKeyVault.ID(),\n\t\t})\n\t\tif err != nil {\n\t\t\treturn err\n\t\t}\n\t\treturn nil\n\t})\n}\n```\n```java\npackage generated_program;\n\nimport com.pulumi.Context;\nimport com.pulumi.Pulumi;\nimport com.pulumi.core.Output;\nimport com.pulumi.azure.core.CoreFunctions;\nimport com.pulumi.azure.core.ResourceGroup;\nimport com.pulumi.azure.core.ResourceGroupArgs;\nimport com.pulumi.azure.keyvault.KeyVault;\nimport com.pulumi.azure.keyvault.KeyVaultArgs;\nimport com.pulumi.azure.keyvault.inputs.KeyVaultAccessPolicyArgs;\nimport com.pulumi.azure.keyvault.Secret;\nimport com.pulumi.azure.keyvault.SecretArgs;\nimport java.util.List;\nimport java.util.ArrayList;\nimport java.util.Map;\nimport java.io.File;\nimport java.nio.file.Files;\nimport java.nio.file.Paths;\n\npublic class App {\n public static void main(String[] args) {\n Pulumi.run(App::stack);\n }\n\n public static void stack(Context ctx) {\n final var current = CoreFunctions.getClientConfig();\n\n var example = new ResourceGroup(\"example\", ResourceGroupArgs.builder() \n .name(\"example-resources\")\n .location(\"West Europe\")\n .build());\n\n var exampleKeyVault = new KeyVault(\"exampleKeyVault\", KeyVaultArgs.builder() \n .name(\"examplekeyvault\")\n .location(example.location())\n .resourceGroupName(example.name())\n .tenantId(current.applyValue(getClientConfigResult -\u003e getClientConfigResult.tenantId()))\n .skuName(\"premium\")\n .softDeleteRetentionDays(7)\n .accessPolicies(KeyVaultAccessPolicyArgs.builder()\n .tenantId(current.applyValue(getClientConfigResult -\u003e getClientConfigResult.tenantId()))\n .objectId(current.applyValue(getClientConfigResult -\u003e getClientConfigResult.objectId()))\n .keyPermissions( \n \"Create\",\n \"Get\")\n .secretPermissions( \n \"Set\",\n \"Get\",\n \"Delete\",\n \"Purge\",\n \"Recover\")\n .build())\n .build());\n\n var exampleSecret = new Secret(\"exampleSecret\", SecretArgs.builder() \n .name(\"secret-sauce\")\n .value(\"szechuan\")\n .keyVaultId(exampleKeyVault.id())\n .build());\n\n }\n}\n```\n```yaml\nresources:\n example:\n type: azure:core:ResourceGroup\n properties:\n name: example-resources\n location: West Europe\n exampleKeyVault:\n type: azure:keyvault:KeyVault\n name: example\n properties:\n name: examplekeyvault\n location: ${example.location}\n resourceGroupName: ${example.name}\n tenantId: ${current.tenantId}\n skuName: premium\n softDeleteRetentionDays: 7\n accessPolicies:\n - tenantId: ${current.tenantId}\n objectId: ${current.objectId}\n keyPermissions:\n - Create\n - Get\n secretPermissions:\n - Set\n - Get\n - Delete\n - Purge\n - Recover\n exampleSecret:\n type: azure:keyvault:Secret\n name: example\n properties:\n name: secret-sauce\n value: szechuan\n keyVaultId: ${exampleKeyVault.id}\nvariables:\n current:\n fn::invoke:\n Function: azure:core:getClientConfig\n Arguments: {}\n```\n\u003c!--End PulumiCodeChooser --\u003e\n\n## Import\n\nKey Vault Secrets which are Enabled can be imported using the `resource id`, e.g.\n\n```sh\n$ pulumi import azure:keyvault/secret:Secret example \"https://example-keyvault.vault.azure.net/secrets/example/fdf067c93bbb4b22bff4d8b7a9a56217\"\n```\n\n", "properties": { "contentType": { "type": "string", @@ -245252,7 +245320,7 @@ }, "objectIdAlias": { "type": "string", - "description": "The alias of the principal ID. Possible values are `ServicePrincipal` and `UserMSI`. Changing this forces a new Redis Cache Access Policy Assignment to be created.\n" + "description": "The alias of the principal ID. User-friendly name for object ID. Also represents username for token based authentication. Changing this forces a new Redis Cache Access Policy Assignment to be created.\n" }, "redisCacheId": { "type": "string", @@ -245284,7 +245352,7 @@ }, "objectIdAlias": { "type": "string", - "description": "The alias of the principal ID. Possible values are `ServicePrincipal` and `UserMSI`. Changing this forces a new Redis Cache Access Policy Assignment to be created.\n", + "description": "The alias of the principal ID. User-friendly name for object ID. Also represents username for token based authentication. Changing this forces a new Redis Cache Access Policy Assignment to be created.\n", "willReplaceOnChanges": true }, "redisCacheId": { @@ -245319,7 +245387,7 @@ }, "objectIdAlias": { "type": "string", - "description": "The alias of the principal ID. Possible values are `ServicePrincipal` and `UserMSI`. Changing this forces a new Redis Cache Access Policy Assignment to be created.\n", + "description": "The alias of the principal ID. User-friendly name for object ID. Also represents username for token based authentication. Changing this forces a new Redis Cache Access Policy Assignment to be created.\n", "willReplaceOnChanges": true }, "redisCacheId": { @@ -259586,7 +259654,7 @@ }, "queueProperties": { "$ref": "#/types/azure:storage/AccountQueueProperties:AccountQueueProperties", - "description": "A `queue_properties` block as defined below.\n\n\u003e **NOTE:** `queue_properties` cannot be set when the `account_kind` is set to `BlobStorage`\n" + "description": "A `queue_properties` block as defined below.\n\n\u003e **NOTE:** `queue_properties` can only be configured when `account_tier` is set to `Standard` and `account_kind` is set to either `Storage` or `StorageV2`.\n" }, "resourceGroupName": { "type": "string", @@ -259753,7 +259821,7 @@ }, "shareProperties": { "$ref": "#/types/azure:storage/AccountShareProperties:AccountShareProperties", - "description": "A `share_properties` block as defined below.\n" + "description": "A `share_properties` block as defined below.\n\n\u003e **NOTE:** `share_properties` can only be configured when either `account_tier` is `Standard` and `account_kind` is either `Storage` or `StorageV2` - or when `account_tier` is `Premium` and `account_kind` is `FileStorage`.\n" }, "sharedAccessKeyEnabled": { "type": "boolean" @@ -259985,7 +260053,7 @@ }, "queueProperties": { "$ref": "#/types/azure:storage/AccountQueueProperties:AccountQueueProperties", - "description": "A `queue_properties` block as defined below.\n\n\u003e **NOTE:** `queue_properties` cannot be set when the `account_kind` is set to `BlobStorage`\n" + "description": "A `queue_properties` block as defined below.\n\n\u003e **NOTE:** `queue_properties` can only be configured when `account_tier` is set to `Standard` and `account_kind` is set to either `Storage` or `StorageV2`.\n" }, "resourceGroupName": { "type": "string", @@ -260006,7 +260074,7 @@ }, "shareProperties": { "$ref": "#/types/azure:storage/AccountShareProperties:AccountShareProperties", - "description": "A `share_properties` block as defined below.\n" + "description": "A `share_properties` block as defined below.\n\n\u003e **NOTE:** `share_properties` can only be configured when either `account_tier` is `Standard` and `account_kind` is either `Storage` or `StorageV2` - or when `account_tier` is `Premium` and `account_kind` is `FileStorage`.\n" }, "sharedAccessKeyEnabled": { "type": "boolean" @@ -260307,7 +260375,7 @@ }, "queueProperties": { "$ref": "#/types/azure:storage/AccountQueueProperties:AccountQueueProperties", - "description": "A `queue_properties` block as defined below.\n\n\u003e **NOTE:** `queue_properties` cannot be set when the `account_kind` is set to `BlobStorage`\n" + "description": "A `queue_properties` block as defined below.\n\n\u003e **NOTE:** `queue_properties` can only be configured when `account_tier` is set to `Standard` and `account_kind` is set to either `Storage` or `StorageV2`.\n" }, "resourceGroupName": { "type": "string", @@ -260475,7 +260543,7 @@ }, "shareProperties": { "$ref": "#/types/azure:storage/AccountShareProperties:AccountShareProperties", - "description": "A `share_properties` block as defined below.\n" + "description": "A `share_properties` block as defined below.\n\n\u003e **NOTE:** `share_properties` can only be configured when either `account_tier` is `Standard` and `account_kind` is either `Storage` or `StorageV2` - or when `account_tier` is `Premium` and `account_kind` is `FileStorage`.\n" }, "sharedAccessKeyEnabled": { "type": "boolean" @@ -260653,6 +260721,10 @@ "type": "string", "description": "The content type of the storage blob. Cannot be defined if `source_uri` is defined. Defaults to `application/octet-stream`.\n" }, + "encryptionScope": { + "type": "string", + "description": "The encryption scope to use for this blob.\n" + }, "metadata": { "type": "object", "additionalProperties": { @@ -260728,6 +260800,11 @@ "type": "string", "description": "The content type of the storage blob. Cannot be defined if `source_uri` is defined. Defaults to `application/octet-stream`.\n" }, + "encryptionScope": { + "type": "string", + "description": "The encryption scope to use for this blob.\n", + "willReplaceOnChanges": true + }, "metadata": { "type": "object", "additionalProperties": { @@ -260806,6 +260883,11 @@ "type": "string", "description": "The content type of the storage blob. Cannot be defined if `source_uri` is defined. Defaults to `application/octet-stream`.\n" }, + "encryptionScope": { + "type": "string", + "description": "The encryption scope to use for this blob.\n", + "willReplaceOnChanges": true + }, "metadata": { "type": "object", "additionalProperties": { @@ -260929,6 +261011,14 @@ "type": "string", "description": "The Access Level configured for this Container. Possible values are `blob`, `container` or `private`. Defaults to `private`.\n\n\u003e **Note** When updating `container_access_type` for an existing storage container resource, Shared Key authentication will always be used, as AzureAD authentication is not supported.\n" }, + "defaultEncryptionScope": { + "type": "string", + "description": "The default encryption scope to use for blobs uploaded to this container. Changing this forces a new resource to be created.\n" + }, + "encryptionScopeOverrideEnabled": { + "type": "boolean", + "description": "Whether to allow blobs to override the default encryption scope for this container. Can only be set when specifying `default_encryption_scope`. Defaults to `true`. Changing this forces a new resource to be created.\n" + }, "hasImmutabilityPolicy": { "type": "boolean", "description": "Is there an Immutability Policy configured on this Storage Container?\n" @@ -260958,6 +261048,7 @@ } }, "required": [ + "defaultEncryptionScope", "hasImmutabilityPolicy", "hasLegalHold", "metadata", @@ -260970,6 +261061,16 @@ "type": "string", "description": "The Access Level configured for this Container. Possible values are `blob`, `container` or `private`. Defaults to `private`.\n\n\u003e **Note** When updating `container_access_type` for an existing storage container resource, Shared Key authentication will always be used, as AzureAD authentication is not supported.\n" }, + "defaultEncryptionScope": { + "type": "string", + "description": "The default encryption scope to use for blobs uploaded to this container. Changing this forces a new resource to be created.\n", + "willReplaceOnChanges": true + }, + "encryptionScopeOverrideEnabled": { + "type": "boolean", + "description": "Whether to allow blobs to override the default encryption scope for this container. Can only be set when specifying `default_encryption_scope`. Defaults to `true`. Changing this forces a new resource to be created.\n", + "willReplaceOnChanges": true + }, "metadata": { "type": "object", "additionalProperties": { @@ -260998,6 +261099,16 @@ "type": "string", "description": "The Access Level configured for this Container. Possible values are `blob`, `container` or `private`. Defaults to `private`.\n\n\u003e **Note** When updating `container_access_type` for an existing storage container resource, Shared Key authentication will always be used, as AzureAD authentication is not supported.\n" }, + "defaultEncryptionScope": { + "type": "string", + "description": "The default encryption scope to use for blobs uploaded to this container. Changing this forces a new resource to be created.\n", + "willReplaceOnChanges": true + }, + "encryptionScopeOverrideEnabled": { + "type": "boolean", + "description": "Whether to allow blobs to override the default encryption scope for this container. Can only be set when specifying `default_encryption_scope`. Defaults to `true`. Changing this forces a new resource to be created.\n", + "willReplaceOnChanges": true + }, "hasImmutabilityPolicy": { "type": "boolean", "description": "Is there an Immutability Policy configured on this Storage Container?\n" @@ -261146,6 +261257,10 @@ }, "description": "One or more `ace` blocks as defined below to specify the entries for the ACL for the path.\n" }, + "defaultEncryptionScope": { + "type": "string", + "description": "The default encryption scope to use for this filesystem. Changing this forces a new resource to be created.\n" + }, "group": { "type": "string", "description": "Specifies the Object ID of the Azure Active Directory Group to make the owning group of the root path (i.e. `/`). Possible values also include `$superuser`.\n\n\u003e **NOTE:** The Storage Account requires `account_kind` to be either `StorageV2` or `BlobStorage`. In addition, `is_hns_enabled` has to be set to `true`.\n" @@ -261172,6 +261287,7 @@ }, "required": [ "aces", + "defaultEncryptionScope", "group", "name", "owner", @@ -261185,6 +261301,11 @@ }, "description": "One or more `ace` blocks as defined below to specify the entries for the ACL for the path.\n" }, + "defaultEncryptionScope": { + "type": "string", + "description": "The default encryption scope to use for this filesystem. Changing this forces a new resource to be created.\n", + "willReplaceOnChanges": true + }, "group": { "type": "string", "description": "Specifies the Object ID of the Azure Active Directory Group to make the owning group of the root path (i.e. `/`). Possible values also include `$superuser`.\n\n\u003e **NOTE:** The Storage Account requires `account_kind` to be either `StorageV2` or `BlobStorage`. In addition, `is_hns_enabled` has to be set to `true`.\n" @@ -261224,6 +261345,11 @@ }, "description": "One or more `ace` blocks as defined below to specify the entries for the ACL for the path.\n" }, + "defaultEncryptionScope": { + "type": "string", + "description": "The default encryption scope to use for this filesystem. Changing this forces a new resource to be created.\n", + "willReplaceOnChanges": true + }, "group": { "type": "string", "description": "Specifies the Object ID of the Azure Active Directory Group to make the owning group of the root path (i.e. `/`). Possible values also include `$superuser`.\n\n\u003e **NOTE:** The Storage Account requires `account_kind` to be either `StorageV2` or `BlobStorage`. In addition, `is_hns_enabled` has to be set to `true`.\n" @@ -263268,6 +263394,9 @@ "contentType": { "type": "string" }, + "encryptionScope": { + "type": "string" + }, "metadata": { "type": "object", "additionalProperties": { @@ -263329,6 +263458,10 @@ "contentType": { "type": "string" }, + "encryptionScope": { + "type": "string", + "willReplaceOnChanges": true + }, "metadata": { "type": "object", "additionalProperties": { @@ -263393,6 +263526,10 @@ "contentType": { "type": "string" }, + "encryptionScope": { + "type": "string", + "willReplaceOnChanges": true + }, "metadata": { "type": "object", "additionalProperties": { @@ -270974,7 +271111,7 @@ }, "capacity": { "type": "integer", - "description": "Specifies the number of units associated with this Web PubSub resource. Valid values are: Free: `1`, Standard: `1`, `2`, `5`, `10`, `20`, `50`, `100`.\n" + "description": "Specifies the number of units associated with this Web PubSub resource. Valid values are `1`, `2`, `3`, `4`, `5`, `6`, `7`, `8`, `9`, `10`, `20`, `30`, `40`, `50`, `60`, `70`, `80`, `90`, `100`, `200`, `300`, `400`, `500`, `600`, `700`, `800`, `900` and `1000`.\n\n\u003e **NOTE:** The valid capacity range for sku `Free_F1` is `1`, for sku `Premium_P2` is from `100` to `1000`, and from `1` to `100` for sku `Standard_S1` and `Premium_P1`.\n" }, "externalIp": { "type": "string", @@ -271042,7 +271179,7 @@ }, "sku": { "type": "string", - "description": "Specifies which SKU to use. Possible values are `Free_F1`, `Standard_S1`, and `Premium_P1`.\n" + "description": "Specifies which SKU to use. Possible values are `Free_F1`, `Standard_S1`, `Premium_P1` and `Premium_P2`.\n" }, "tags": { "type": "object", @@ -271081,7 +271218,7 @@ }, "capacity": { "type": "integer", - "description": "Specifies the number of units associated with this Web PubSub resource. Valid values are: Free: `1`, Standard: `1`, `2`, `5`, `10`, `20`, `50`, `100`.\n" + "description": "Specifies the number of units associated with this Web PubSub resource. Valid values are `1`, `2`, `3`, `4`, `5`, `6`, `7`, `8`, `9`, `10`, `20`, `30`, `40`, `50`, `60`, `70`, `80`, `90`, `100`, `200`, `300`, `400`, `500`, `600`, `700`, `800`, `900` and `1000`.\n\n\u003e **NOTE:** The valid capacity range for sku `Free_F1` is `1`, for sku `Premium_P2` is from `100` to `1000`, and from `1` to `100` for sku `Standard_S1` and `Premium_P1`.\n" }, "identity": { "$ref": "#/types/azure:webpubsub/ServiceIdentity:ServiceIdentity", @@ -271116,7 +271253,7 @@ }, "sku": { "type": "string", - "description": "Specifies which SKU to use. Possible values are `Free_F1`, `Standard_S1`, and `Premium_P1`.\n" + "description": "Specifies which SKU to use. Possible values are `Free_F1`, `Standard_S1`, `Premium_P1` and `Premium_P2`.\n" }, "tags": { "type": "object", @@ -271143,7 +271280,7 @@ }, "capacity": { "type": "integer", - "description": "Specifies the number of units associated with this Web PubSub resource. Valid values are: Free: `1`, Standard: `1`, `2`, `5`, `10`, `20`, `50`, `100`.\n" + "description": "Specifies the number of units associated with this Web PubSub resource. Valid values are `1`, `2`, `3`, `4`, `5`, `6`, `7`, `8`, `9`, `10`, `20`, `30`, `40`, `50`, `60`, `70`, `80`, `90`, `100`, `200`, `300`, `400`, `500`, `600`, `700`, `800`, `900` and `1000`.\n\n\u003e **NOTE:** The valid capacity range for sku `Free_F1` is `1`, for sku `Premium_P2` is from `100` to `1000`, and from `1` to `100` for sku `Standard_S1` and `Premium_P1`.\n" }, "externalIp": { "type": "string", @@ -271214,7 +271351,7 @@ }, "sku": { "type": "string", - "description": "Specifies which SKU to use. Possible values are `Free_F1`, `Standard_S1`, and `Premium_P1`.\n" + "description": "Specifies which SKU to use. Possible values are `Free_F1`, `Standard_S1`, `Premium_P1` and `Premium_P2`.\n" }, "tags": { "type": "object", @@ -281904,6 +282041,10 @@ "outputs": { "description": "A collection of values returned by getAccount.\n", "properties": { + "automaticFailoverEnabled": { + "description": "If automatic failover is enabled for this CosmosDB Account.\n", + "type": "boolean" + }, "capabilities": { "description": "Capabilities enabled on this Cosmos DB account.\n", "items": { @@ -281912,7 +282053,7 @@ "type": "array" }, "connectionStrings": { - "description": "A list of connection strings available for this CosmosDB account.\n", + "deprecationMessage": "This property has been superseded by the primary and secondary connection strings for sql, mongodb and readonly and will be removed in v4.0 of the AzureRM provider", "items": { "type": "string" }, @@ -281926,21 +282067,25 @@ "type": "array" }, "enableAutomaticFailover": { - "description": "If automatic failover is enabled for this CosmosDB Account.\n", + "deprecationMessage": "This property has been renamed to `automatic_failover_enabled` and will be removed in v4.0 of the AzureRM provider", "type": "boolean" }, "enableFreeTier": { - "description": "If Free Tier pricing option is enabled for this CosmosDB Account. You can have up to one free tier Azure Cosmos DB account per Azure subscription.\n", + "deprecationMessage": "This property has been renamed to `free_tier_enabled` and will be removed in v4.0 of the AzureRM provider", "type": "boolean" }, "enableMultipleWriteLocations": { - "description": "If multiple write locations are enabled for this Cosmos DB account.\n", + "deprecationMessage": "This property has been renamed to `multiple_write_locations_enabled` and will be removed in v4.0 of the AzureRM provider", "type": "boolean" }, "endpoint": { "description": "The endpoint used to connect to the CosmosDB account.\n", "type": "string" }, + "freeTierEnabled": { + "description": "If Free Tier pricing option is enabled for this CosmosDB Account. You can have up to one free tier Azure Cosmos DB account per Azure subscription.\n", + "type": "boolean" + }, "geoLocations": { "items": { "$ref": "#/types/azure:cosmosdb/getAccountGeoLocation:getAccountGeoLocation" @@ -281971,6 +282116,10 @@ "description": "The name of the Azure region hosting replicated data.\n", "type": "string" }, + "multipleWriteLocationsEnabled": { + "description": "If multiple write locations are enabled for this Cosmos DB account.\n", + "type": "boolean" + }, "name": { "type": "string" }, @@ -282071,6 +282220,7 @@ } }, "required": [ + "automaticFailoverEnabled", "capabilities", "connectionStrings", "consistencyPolicies", @@ -282078,12 +282228,14 @@ "enableFreeTier", "enableMultipleWriteLocations", "endpoint", + "freeTierEnabled", "geoLocations", "ipRangeFilter", "isVirtualNetworkFilterEnabled", "keyVaultKeyId", "kind", "location", + "multipleWriteLocationsEnabled", "name", "offerType", "primaryKey", @@ -294857,6 +295009,7 @@ "type": "string" }, "ipPrefix": { + "description": "The Public IP address range, in CIDR notation.\n", "type": "string" }, "location": { @@ -294864,7 +295017,6 @@ "type": "string" }, "name": { - "description": "The name of the Public IP prefix resource.\n", "type": "string" }, "prefixLength": { @@ -294872,7 +295024,6 @@ "type": "integer" }, "resourceGroupName": { - "description": "The name of the resource group in which to create the public IP.\n", "type": "string" }, "sku": { @@ -301820,6 +301971,10 @@ "description": "The content type of the storage blob.\n", "type": "string" }, + "encryptionScope": { + "description": "The encryption scope for this blob.\n", + "type": "string" + }, "id": { "description": "The provider-assigned unique ID for this managed resource.\n", "type": "string" @@ -301853,6 +302008,7 @@ "accessTier", "contentMd5", "contentType", + "encryptionScope", "metadata", "name", "storageAccountName", @@ -302119,6 +302275,14 @@ "description": "The Access Level configured for this Container.\n", "type": "string" }, + "defaultEncryptionScope": { + "description": "The default encryption scope in use for blobs uploaded to this container.\n", + "type": "string" + }, + "encryptionScopeOverrideEnabled": { + "description": "Whether blobs are allowed to override the default encryption scope for this container.\n", + "type": "boolean" + }, "hasImmutabilityPolicy": { "description": "Is there an Immutability Policy configured on this Storage Container?\n", "type": "boolean" @@ -302151,6 +302315,8 @@ }, "required": [ "containerAccessType", + "defaultEncryptionScope", + "encryptionScopeOverrideEnabled", "hasImmutabilityPolicy", "hasLegalHold", "metadata", diff --git a/provider/go.mod b/provider/go.mod index 4d771884b4..4404348774 100644 --- a/provider/go.mod +++ b/provider/go.mod @@ -6,7 +6,7 @@ toolchain go1.21.3 require ( github.com/Azure/go-autorest/autorest/azure/cli v0.4.6 - github.com/hashicorp/go-azure-sdk/sdk v0.20240402.1085733 + github.com/hashicorp/go-azure-sdk/sdk v0.20240411.1104331 github.com/hashicorp/terraform-plugin-sdk/v2 v2.33.0 github.com/hashicorp/terraform-provider-azurerm v1.44.1-0.20220923005104-eaa801c358ff github.com/pulumi/providertest v0.0.11 @@ -124,7 +124,7 @@ require ( github.com/grpc-ecosystem/grpc-opentracing v0.0.0-20180507213350-8e809c8a8645 // indirect github.com/hashicorp/errwrap v1.1.0 // indirect github.com/hashicorp/go-azure-helpers v0.67.0 // indirect - github.com/hashicorp/go-azure-sdk/resource-manager v0.20240402.1085733 // indirect + github.com/hashicorp/go-azure-sdk/resource-manager v0.20240411.1104331 // indirect github.com/hashicorp/go-checkpoint v0.5.0 // indirect github.com/hashicorp/go-cleanhttp v0.5.2 // indirect github.com/hashicorp/go-cty v1.4.1-0.20200414143053-d3edf31b6320 // indirect @@ -228,7 +228,7 @@ require ( github.com/spf13/cobra v1.8.0 // indirect github.com/spf13/pflag v1.0.5 // indirect github.com/texttheater/golang-levenshtein v1.0.1 // indirect - github.com/tombuildsstuff/giovanni v0.25.4 // indirect + github.com/tombuildsstuff/giovanni v0.26.1 // indirect github.com/tombuildsstuff/kermit v0.20240122.1123108 // indirect github.com/tweekmonster/luser v0.0.0-20161003172636-3fa38070dbd7 // indirect github.com/uber/jaeger-client-go v2.30.0+incompatible // indirect diff --git a/provider/go.sum b/provider/go.sum index 3302ed05d0..f6716898c7 100644 --- a/provider/go.sum +++ b/provider/go.sum @@ -2169,10 +2169,10 @@ github.com/hashicorp/errwrap v1.1.0 h1:OxrOeh75EUXMY8TBjag2fzXGZ40LB6IKw45YeGUDY github.com/hashicorp/errwrap v1.1.0/go.mod h1:YH+1FKiLXxHSkmPseP+kNlulaMuP3n2brvKWEqk/Jc4= github.com/hashicorp/go-azure-helpers v0.67.0 h1:0RY6mY3W3Ym2I+jExLtyLx96fh6p5n9vidqisAKGUSE= github.com/hashicorp/go-azure-helpers v0.67.0/go.mod h1:S4Bu66vyJvHA0trqHQB0YVGsISuF7HMH9tyEsMVlx8A= -github.com/hashicorp/go-azure-sdk/resource-manager v0.20240402.1085733 h1:DVlpK94z/cUY65wtQFWUAjZnLgQRQQy7NwJW/RAd4v8= -github.com/hashicorp/go-azure-sdk/resource-manager v0.20240402.1085733/go.mod h1:v/vma+KYHsYCX2CmmefB+XO77SOh0rcWqqeHq1Kec2M= -github.com/hashicorp/go-azure-sdk/sdk v0.20240402.1085733 h1:d5ckUwgcqa5R78G5yqg8wDHqAhppJCjZStyHIif5SKo= -github.com/hashicorp/go-azure-sdk/sdk v0.20240402.1085733/go.mod h1:POOjeoqNp+mvlLBuibJTziUAkBZ7FxXGeGestwemL/w= +github.com/hashicorp/go-azure-sdk/resource-manager v0.20240411.1104331 h1:B6CaXKPRlckMFv6olNDIiVEnM5igZgmTF/ycugEatJk= +github.com/hashicorp/go-azure-sdk/resource-manager v0.20240411.1104331/go.mod h1:JAEN43cznhbtPV1LJ3xhW5K6XigKVY8vhyZvlUsKub0= +github.com/hashicorp/go-azure-sdk/sdk v0.20240411.1104331 h1:LYQI0A1rWPjrMa0J8N8MA5ZjFfHNaVpoPY1vmzrS/C8= +github.com/hashicorp/go-azure-sdk/sdk v0.20240411.1104331/go.mod h1:POOjeoqNp+mvlLBuibJTziUAkBZ7FxXGeGestwemL/w= github.com/hashicorp/go-checkpoint v0.5.0 h1:MFYpPZCnQqQTE18jFwSII6eUQrD/oxMFp3mlgcqk5mU= github.com/hashicorp/go-checkpoint v0.5.0/go.mod h1:7nfLNL10NsxqO4iWuW6tWW0HjZuDrwkBuEQsVcpCOgg= github.com/hashicorp/go-cleanhttp v0.5.0/go.mod h1:JpRdi6/HCYpAwUzNwuwqhbovhLtngrth3wmdIIUrZ80= @@ -3018,8 +3018,8 @@ github.com/tidwall/sjson v1.2.5/go.mod h1:Fvgq9kS/6ociJEDnK0Fk1cpYF4FIW6ZF7LAe+6 github.com/tmc/grpc-websocket-proxy v0.0.0-20170815181823-89b8d40f7ca8/go.mod h1:ncp9v5uamzpCO7NfCPTXjqaC+bZgJeR0sMTm6dMHP7U= github.com/tmc/grpc-websocket-proxy v0.0.0-20190109142713-0ad062ec5ee5/go.mod h1:ncp9v5uamzpCO7NfCPTXjqaC+bZgJeR0sMTm6dMHP7U= github.com/tmc/grpc-websocket-proxy v0.0.0-20201229170055-e5319fda7802/go.mod h1:ncp9v5uamzpCO7NfCPTXjqaC+bZgJeR0sMTm6dMHP7U= -github.com/tombuildsstuff/giovanni v0.25.4 h1:BVFNZVbQZwoYQepxnnnPFn72k12SEkMh8QGUx+S3eag= -github.com/tombuildsstuff/giovanni v0.25.4/go.mod h1:s7xbU2lN5Iz9MBglmDDv9p2QPbn6x3UkJBtpCfUerLs= +github.com/tombuildsstuff/giovanni v0.26.1 h1:RZgnpyIHtgw0GXYpw3xttNk35obJNoI1hztCZsh/Djo= +github.com/tombuildsstuff/giovanni v0.26.1/go.mod h1:s7xbU2lN5Iz9MBglmDDv9p2QPbn6x3UkJBtpCfUerLs= github.com/tombuildsstuff/kermit v0.20240122.1123108 h1:icQaxsv/ANv/KC4Sr0V1trrWA/XIL+3QAVBDpiSTgj8= github.com/tombuildsstuff/kermit v0.20240122.1123108/go.mod h1:T3YBVFhRV4qA7SbnRaNE6eapIMpKDA9rG/V7Ocsjlno= github.com/tv42/httpunix v0.0.0-20150427012821-b75d8614f926/go.mod h1:9ESjWnEqriFuLhtthL60Sar/7RFoluCcXsuvEwTV5KM= diff --git a/sdk/dotnet/AppService/Inputs/LinuxWebAppLogsHttpLogsArgs.cs b/sdk/dotnet/AppService/Inputs/LinuxWebAppLogsHttpLogsArgs.cs index 873d1ab656..d5045f9b7f 100644 --- a/sdk/dotnet/AppService/Inputs/LinuxWebAppLogsHttpLogsArgs.cs +++ b/sdk/dotnet/AppService/Inputs/LinuxWebAppLogsHttpLogsArgs.cs @@ -13,7 +13,7 @@ namespace Pulumi.Azure.AppService.Inputs public sealed class LinuxWebAppLogsHttpLogsArgs : global::Pulumi.ResourceArgs { /// - /// A `azure_blob_storage_http` block as defined below. + /// A `azure_blob_storage_http` block as defined above. /// [Input("azureBlobStorage")] public Input? AzureBlobStorage { get; set; } diff --git a/sdk/dotnet/AppService/Inputs/LinuxWebAppLogsHttpLogsGetArgs.cs b/sdk/dotnet/AppService/Inputs/LinuxWebAppLogsHttpLogsGetArgs.cs index 2aff6f978f..392c4b4f39 100644 --- a/sdk/dotnet/AppService/Inputs/LinuxWebAppLogsHttpLogsGetArgs.cs +++ b/sdk/dotnet/AppService/Inputs/LinuxWebAppLogsHttpLogsGetArgs.cs @@ -13,7 +13,7 @@ namespace Pulumi.Azure.AppService.Inputs public sealed class LinuxWebAppLogsHttpLogsGetArgs : global::Pulumi.ResourceArgs { /// - /// A `azure_blob_storage_http` block as defined below. + /// A `azure_blob_storage_http` block as defined above. /// [Input("azureBlobStorage")] public Input? AzureBlobStorage { get; set; } diff --git a/sdk/dotnet/AppService/Inputs/LinuxWebAppSiteConfigApplicationStackArgs.cs b/sdk/dotnet/AppService/Inputs/LinuxWebAppSiteConfigApplicationStackArgs.cs index bea2a39eb8..4f81686b1c 100644 --- a/sdk/dotnet/AppService/Inputs/LinuxWebAppSiteConfigApplicationStackArgs.cs +++ b/sdk/dotnet/AppService/Inputs/LinuxWebAppSiteConfigApplicationStackArgs.cs @@ -84,6 +84,8 @@ public Input? DockerRegistryPassword /// The Version of Java to use. Possible values include `8`, `11`, and `17`. /// /// > **NOTE:** The valid version combinations for `java_version`, `java_server` and `java_server_version` can be checked from the command line via `az webapp list-runtimes --linux`. + /// + /// > **NOTE:** `java_server`, `java_server_version`, and `java_version` must all be specified if building a java app /// [Input("javaVersion")] public Input? JavaVersion { get; set; } diff --git a/sdk/dotnet/AppService/Inputs/LinuxWebAppSiteConfigApplicationStackGetArgs.cs b/sdk/dotnet/AppService/Inputs/LinuxWebAppSiteConfigApplicationStackGetArgs.cs index 6f4adf32e1..061613336c 100644 --- a/sdk/dotnet/AppService/Inputs/LinuxWebAppSiteConfigApplicationStackGetArgs.cs +++ b/sdk/dotnet/AppService/Inputs/LinuxWebAppSiteConfigApplicationStackGetArgs.cs @@ -84,6 +84,8 @@ public Input? DockerRegistryPassword /// The Version of Java to use. Possible values include `8`, `11`, and `17`. /// /// > **NOTE:** The valid version combinations for `java_version`, `java_server` and `java_server_version` can be checked from the command line via `az webapp list-runtimes --linux`. + /// + /// > **NOTE:** `java_server`, `java_server_version`, and `java_version` must all be specified if building a java app /// [Input("javaVersion")] public Input? JavaVersion { get; set; } diff --git a/sdk/dotnet/AppService/Inputs/WindowsWebAppLogsHttpLogsArgs.cs b/sdk/dotnet/AppService/Inputs/WindowsWebAppLogsHttpLogsArgs.cs index 7dcfae240f..f023b9d0d5 100644 --- a/sdk/dotnet/AppService/Inputs/WindowsWebAppLogsHttpLogsArgs.cs +++ b/sdk/dotnet/AppService/Inputs/WindowsWebAppLogsHttpLogsArgs.cs @@ -13,7 +13,7 @@ namespace Pulumi.Azure.AppService.Inputs public sealed class WindowsWebAppLogsHttpLogsArgs : global::Pulumi.ResourceArgs { /// - /// A `azure_blob_storage_http` block as defined above. + /// A `azure_blob_storage_http` block as defined below. /// [Input("azureBlobStorage")] public Input? AzureBlobStorage { get; set; } diff --git a/sdk/dotnet/AppService/Inputs/WindowsWebAppLogsHttpLogsGetArgs.cs b/sdk/dotnet/AppService/Inputs/WindowsWebAppLogsHttpLogsGetArgs.cs index b4dab705ff..cf1d4c3fd7 100644 --- a/sdk/dotnet/AppService/Inputs/WindowsWebAppLogsHttpLogsGetArgs.cs +++ b/sdk/dotnet/AppService/Inputs/WindowsWebAppLogsHttpLogsGetArgs.cs @@ -13,7 +13,7 @@ namespace Pulumi.Azure.AppService.Inputs public sealed class WindowsWebAppLogsHttpLogsGetArgs : global::Pulumi.ResourceArgs { /// - /// A `azure_blob_storage_http` block as defined above. + /// A `azure_blob_storage_http` block as defined below. /// [Input("azureBlobStorage")] public Input? AzureBlobStorage { get; set; } diff --git a/sdk/dotnet/AppService/Outputs/LinuxWebAppLogsHttpLogs.cs b/sdk/dotnet/AppService/Outputs/LinuxWebAppLogsHttpLogs.cs index e967a5f462..411677e498 100644 --- a/sdk/dotnet/AppService/Outputs/LinuxWebAppLogsHttpLogs.cs +++ b/sdk/dotnet/AppService/Outputs/LinuxWebAppLogsHttpLogs.cs @@ -14,7 +14,7 @@ namespace Pulumi.Azure.AppService.Outputs public sealed class LinuxWebAppLogsHttpLogs { /// - /// A `azure_blob_storage_http` block as defined below. + /// A `azure_blob_storage_http` block as defined above. /// public readonly Outputs.LinuxWebAppLogsHttpLogsAzureBlobStorage? AzureBlobStorage; /// diff --git a/sdk/dotnet/AppService/Outputs/LinuxWebAppSiteConfigApplicationStack.cs b/sdk/dotnet/AppService/Outputs/LinuxWebAppSiteConfigApplicationStack.cs index 6b3f122ecc..d993adb3ef 100644 --- a/sdk/dotnet/AppService/Outputs/LinuxWebAppSiteConfigApplicationStack.cs +++ b/sdk/dotnet/AppService/Outputs/LinuxWebAppSiteConfigApplicationStack.cs @@ -55,6 +55,8 @@ public sealed class LinuxWebAppSiteConfigApplicationStack /// The Version of Java to use. Possible values include `8`, `11`, and `17`. /// /// > **NOTE:** The valid version combinations for `java_version`, `java_server` and `java_server_version` can be checked from the command line via `az webapp list-runtimes --linux`. + /// + /// > **NOTE:** `java_server`, `java_server_version`, and `java_version` must all be specified if building a java app /// public readonly string? JavaVersion; /// diff --git a/sdk/dotnet/AppService/Outputs/WindowsWebAppLogsHttpLogs.cs b/sdk/dotnet/AppService/Outputs/WindowsWebAppLogsHttpLogs.cs index 426ebb0d6c..b475f0d7ae 100644 --- a/sdk/dotnet/AppService/Outputs/WindowsWebAppLogsHttpLogs.cs +++ b/sdk/dotnet/AppService/Outputs/WindowsWebAppLogsHttpLogs.cs @@ -14,7 +14,7 @@ namespace Pulumi.Azure.AppService.Outputs public sealed class WindowsWebAppLogsHttpLogs { /// - /// A `azure_blob_storage_http` block as defined above. + /// A `azure_blob_storage_http` block as defined below. /// public readonly Outputs.WindowsWebAppLogsHttpLogsAzureBlobStorage? AzureBlobStorage; /// diff --git a/sdk/dotnet/Bot/ServiceAzureBot.cs b/sdk/dotnet/Bot/ServiceAzureBot.cs index daefc7439d..ddb8bc2518 100644 --- a/sdk/dotnet/Bot/ServiceAzureBot.cs +++ b/sdk/dotnet/Bot/ServiceAzureBot.cs @@ -183,7 +183,7 @@ public partial class ServiceAzureBot : global::Pulumi.CustomResource public Output Name { get; private set; } = null!; /// - /// Whether public network access is allowed for this server. Defaults to `true`. + /// Whether public network access is enabled. Defaults to `true`. /// [Output("publicNetworkAccessEnabled")] public Output PublicNetworkAccessEnabled { get; private set; } = null!; @@ -388,7 +388,7 @@ public Input? LuisKey public Input? Name { get; set; } /// - /// Whether public network access is allowed for this server. Defaults to `true`. + /// Whether public network access is enabled. Defaults to `true`. /// [Input("publicNetworkAccessEnabled")] public Input? PublicNetworkAccessEnabled { get; set; } @@ -556,7 +556,7 @@ public Input? LuisKey public Input? Name { get; set; } /// - /// Whether public network access is allowed for this server. Defaults to `true`. + /// Whether public network access is enabled. Defaults to `true`. /// [Input("publicNetworkAccessEnabled")] public Input? PublicNetworkAccessEnabled { get; set; } diff --git a/sdk/dotnet/ChaosStudio/Target.cs b/sdk/dotnet/ChaosStudio/Target.cs index 972e2d7369..19ee261e3d 100644 --- a/sdk/dotnet/ChaosStudio/Target.cs +++ b/sdk/dotnet/ChaosStudio/Target.cs @@ -14,6 +14,56 @@ namespace Pulumi.Azure.ChaosStudio /// /// Manages a Chaos Studio Target. /// + /// ## Example Usage + /// + /// <!--Start PulumiCodeChooser --> + /// ```csharp + /// using System.Collections.Generic; + /// using System.Linq; + /// using Pulumi; + /// using Azure = Pulumi.Azure; + /// + /// return await Deployment.RunAsync(() => + /// { + /// var exampleResourceGroup = new Azure.Core.ResourceGroup("example", new() + /// { + /// Name = "example-resources", + /// Location = "West Europe", + /// }); + /// + /// var example = new Azure.ContainerService.KubernetesCluster("example", new() + /// { + /// Name = "example", + /// Location = exampleResourceGroup.Location, + /// ResourceGroupName = exampleResourceGroup.Name, + /// DnsPrefix = "acctestaksexample", + /// DefaultNodePool = new Azure.ContainerService.Inputs.KubernetesClusterDefaultNodePoolArgs + /// { + /// Name = "example-value", + /// NodeCount = "example-value", + /// VmSize = "example-value", + /// UpgradeSettings = new Azure.ContainerService.Inputs.KubernetesClusterDefaultNodePoolUpgradeSettingsArgs + /// { + /// MaxSurge = "example-value", + /// }, + /// }, + /// Identity = new Azure.ContainerService.Inputs.KubernetesClusterIdentityArgs + /// { + /// Type = "example-value", + /// }, + /// }); + /// + /// var exampleTarget = new Azure.ChaosStudio.Target("example", new() + /// { + /// Location = exampleResourceGroup.Location, + /// TargetResourceId = example.Id, + /// TargetType = "example-value", + /// }); + /// + /// }); + /// ``` + /// <!--End PulumiCodeChooser --> + /// /// ## Import /// /// An existing Chaos Studio Target can be imported into Terraform using the `resource id`, e.g. diff --git a/sdk/dotnet/Compute/Snapshot.cs b/sdk/dotnet/Compute/Snapshot.cs index 655c30ee05..7cb579d012 100644 --- a/sdk/dotnet/Compute/Snapshot.cs +++ b/sdk/dotnet/Compute/Snapshot.cs @@ -103,6 +103,18 @@ public partial class Snapshot : global::Pulumi.CustomResource [Output("name")] public Output Name { get; private set; } = null!; + /// + /// Policy for accessing the disk via network. Possible values are `AllowAll`, `AllowPrivate`, or `DenyAll`. Defaults to `AllowAll`. + /// + [Output("networkAccessPolicy")] + public Output NetworkAccessPolicy { get; private set; } = null!; + + /// + /// Policy for controlling export on the disk. Possible values are `true` or `false`. Defaults to `true`. + /// + [Output("publicNetworkAccessEnabled")] + public Output PublicNetworkAccessEnabled { get; private set; } = null!; + /// /// The name of the resource group in which to create the Snapshot. Changing this forces a new resource to be created. /// @@ -225,6 +237,18 @@ public sealed class SnapshotArgs : global::Pulumi.ResourceArgs [Input("name")] public Input? Name { get; set; } + /// + /// Policy for accessing the disk via network. Possible values are `AllowAll`, `AllowPrivate`, or `DenyAll`. Defaults to `AllowAll`. + /// + [Input("networkAccessPolicy")] + public Input? NetworkAccessPolicy { get; set; } + + /// + /// Policy for controlling export on the disk. Possible values are `true` or `false`. Defaults to `true`. + /// + [Input("publicNetworkAccessEnabled")] + public Input? PublicNetworkAccessEnabled { get; set; } + /// /// The name of the resource group in which to create the Snapshot. Changing this forces a new resource to be created. /// @@ -309,6 +333,18 @@ public sealed class SnapshotState : global::Pulumi.ResourceArgs [Input("name")] public Input? Name { get; set; } + /// + /// Policy for accessing the disk via network. Possible values are `AllowAll`, `AllowPrivate`, or `DenyAll`. Defaults to `AllowAll`. + /// + [Input("networkAccessPolicy")] + public Input? NetworkAccessPolicy { get; set; } + + /// + /// Policy for controlling export on the disk. Possible values are `true` or `false`. Defaults to `true`. + /// + [Input("publicNetworkAccessEnabled")] + public Input? PublicNetworkAccessEnabled { get; set; } + /// /// The name of the resource group in which to create the Snapshot. Changing this forces a new resource to be created. /// diff --git a/sdk/dotnet/Config/Config.cs b/sdk/dotnet/Config/Config.cs index eb94a35b0d..acc0bfea5d 100644 --- a/sdk/dotnet/Config/Config.cs +++ b/sdk/dotnet/Config/Config.cs @@ -131,7 +131,8 @@ public static bool? DisableTerraformPartnerId private static readonly __Value _environment = new __Value(() => __config.Get("environment") ?? Utilities.GetEnv("AZURE_ENVIRONMENT", "ARM_ENVIRONMENT") ?? "public"); /// - /// The Cloud Environment which should be used. Possible values are public, usgovernment, and china. Defaults to public. + /// The Cloud Environment which should be used. Possible values are public, usgovernment, and china. Defaults to public. Not + /// used and should not be specified when `metadata_host` is specified. /// public static string? Environment { diff --git a/sdk/dotnet/ContainerService/ClusterTrustedAccessRoleBinding.cs b/sdk/dotnet/ContainerService/ClusterTrustedAccessRoleBinding.cs index 780bd0dd32..baa4fba1af 100644 --- a/sdk/dotnet/ContainerService/ClusterTrustedAccessRoleBinding.cs +++ b/sdk/dotnet/ContainerService/ClusterTrustedAccessRoleBinding.cs @@ -16,6 +16,108 @@ namespace Pulumi.Azure.ContainerService /// > **Note:** This Resource is in **Preview** to use this you must be opted into the Preview. You can do this by running `az feature register --namespace Microsoft.ContainerService --name TrustedAccessPreview` and then `az provider register -n Microsoft.ContainerService` /// . /// + /// ## Example Usage + /// + /// <!--Start PulumiCodeChooser --> + /// ```csharp + /// using System.Collections.Generic; + /// using System.Linq; + /// using Pulumi; + /// using Azure = Pulumi.Azure; + /// + /// return await Deployment.RunAsync(() => + /// { + /// var exampleResourceGroup = new Azure.Core.ResourceGroup("example", new() + /// { + /// Name = "example-resources", + /// Location = "West Europe", + /// }); + /// + /// var example = new Azure.AppInsights.Insights("example", new() + /// { + /// Name = "example", + /// Location = exampleResourceGroup.Location, + /// ResourceGroupName = exampleResourceGroup.Name, + /// ApplicationType = "example-value", + /// }); + /// + /// var test = Azure.Core.GetClientConfig.Invoke(); + /// + /// var exampleKeyVault = new Azure.KeyVault.KeyVault("example", new() + /// { + /// Name = "example", + /// Location = exampleResourceGroup.Location, + /// ResourceGroupName = exampleResourceGroup.Name, + /// TenantId = exampleAzurermClientConfig.TenantId, + /// SkuName = "example-value", + /// SoftDeleteRetentionDays = "example-value", + /// }); + /// + /// var exampleAccessPolicy = new Azure.KeyVault.AccessPolicy("example", new() + /// { + /// KeyVaultId = exampleKeyVault.Id, + /// TenantId = exampleAzurermClientConfig.TenantId, + /// ObjectId = exampleAzurermClientConfig.ObjectId, + /// KeyPermissions = "example-value", + /// }); + /// + /// var exampleKubernetesCluster = new Azure.ContainerService.KubernetesCluster("example", new() + /// { + /// Name = "example", + /// Location = exampleResourceGroup.Location, + /// ResourceGroupName = exampleResourceGroup.Name, + /// DnsPrefix = "acctestaksexample", + /// DefaultNodePool = new Azure.ContainerService.Inputs.KubernetesClusterDefaultNodePoolArgs + /// { + /// Name = "example-value", + /// NodeCount = "example-value", + /// VmSize = "example-value", + /// UpgradeSettings = new Azure.ContainerService.Inputs.KubernetesClusterDefaultNodePoolUpgradeSettingsArgs + /// { + /// MaxSurge = "example-value", + /// }, + /// }, + /// Identity = new Azure.ContainerService.Inputs.KubernetesClusterIdentityArgs + /// { + /// Type = "example-value", + /// }, + /// }); + /// + /// var exampleAccount = new Azure.Storage.Account("example", new() + /// { + /// Name = "example", + /// Location = exampleResourceGroup.Location, + /// ResourceGroupName = exampleResourceGroup.Name, + /// AccountTier = "example-value", + /// AccountReplicationType = "example-value", + /// }); + /// + /// var exampleWorkspace = new Azure.MachineLearning.Workspace("example", new() + /// { + /// Name = "example", + /// Location = exampleResourceGroup.Location, + /// ResourceGroupName = exampleResourceGroup.Name, + /// KeyVaultId = exampleKeyVault.Id, + /// StorageAccountId = exampleAccount.Id, + /// ApplicationInsightsId = example.Id, + /// Identity = new Azure.MachineLearning.Inputs.WorkspaceIdentityArgs + /// { + /// Type = "example-value", + /// }, + /// }); + /// + /// var exampleClusterTrustedAccessRoleBinding = new Azure.ContainerService.ClusterTrustedAccessRoleBinding("example", new() + /// { + /// KubernetesClusterId = exampleKubernetesCluster.Id, + /// Name = "example", + /// Roles = "example-value", + /// SourceResourceId = exampleWorkspace.Id, + /// }); + /// + /// }); + /// ``` + /// <!--End PulumiCodeChooser --> + /// /// ## Import /// /// An existing Kubernetes Cluster Trusted Access Role Binding can be imported into Terraform using the `resource id`, e.g. diff --git a/sdk/dotnet/ContainerService/FleetMember.cs b/sdk/dotnet/ContainerService/FleetMember.cs index 0c2592fe98..c260777a08 100644 --- a/sdk/dotnet/ContainerService/FleetMember.cs +++ b/sdk/dotnet/ContainerService/FleetMember.cs @@ -14,6 +14,63 @@ namespace Pulumi.Azure.ContainerService /// /// Manages a Kubernetes Fleet Member. /// + /// ## Example Usage + /// + /// <!--Start PulumiCodeChooser --> + /// ```csharp + /// using System.Collections.Generic; + /// using System.Linq; + /// using Pulumi; + /// using Azure = Pulumi.Azure; + /// + /// return await Deployment.RunAsync(() => + /// { + /// var exampleResourceGroup = new Azure.Core.ResourceGroup("example", new() + /// { + /// Name = "example-resources", + /// Location = "West Europe", + /// }); + /// + /// var example = new Azure.ContainerService.KubernetesCluster("example", new() + /// { + /// Name = "example", + /// Location = exampleResourceGroup.Location, + /// ResourceGroupName = exampleResourceGroup.Name, + /// DnsPrefix = "acctestaksexample", + /// DefaultNodePool = new Azure.ContainerService.Inputs.KubernetesClusterDefaultNodePoolArgs + /// { + /// Name = "example-value", + /// NodeCount = "example-value", + /// VmSize = "example-value", + /// UpgradeSettings = new Azure.ContainerService.Inputs.KubernetesClusterDefaultNodePoolUpgradeSettingsArgs + /// { + /// MaxSurge = "example-value", + /// }, + /// }, + /// Identity = new Azure.ContainerService.Inputs.KubernetesClusterIdentityArgs + /// { + /// Type = "example-value", + /// }, + /// }); + /// + /// var exampleKubernetesFleetManager = new Azure.ContainerService.KubernetesFleetManager("example", new() + /// { + /// Name = "example", + /// Location = exampleResourceGroup.Location, + /// ResourceGroupName = exampleResourceGroup.Name, + /// }); + /// + /// var exampleFleetMember = new Azure.ContainerService.FleetMember("example", new() + /// { + /// KubernetesClusterId = example.Id, + /// KubernetesFleetId = exampleKubernetesFleetManager.Id, + /// Name = "example", + /// }); + /// + /// }); + /// ``` + /// <!--End PulumiCodeChooser --> + /// /// ## Import /// /// An existing Kubernetes Fleet Member can be imported into Terraform using the `resource id`, e.g. diff --git a/sdk/dotnet/CosmosDB/Account.cs b/sdk/dotnet/CosmosDB/Account.cs index 1fa93f590a..bd286aff35 100644 --- a/sdk/dotnet/CosmosDB/Account.cs +++ b/sdk/dotnet/CosmosDB/Account.cs @@ -185,6 +185,12 @@ public partial class Account : global::Pulumi.CustomResource [Output("analyticalStorageEnabled")] public Output AnalyticalStorageEnabled { get; private set; } = null!; + /// + /// Enable automatic failover for this Cosmos DB account. + /// + [Output("automaticFailoverEnabled")] + public Output AutomaticFailoverEnabled { get; private set; } = null!; + /// /// A `backup` block as defined below. /// @@ -203,9 +209,6 @@ public partial class Account : global::Pulumi.CustomResource [Output("capacity")] public Output Capacity { get; private set; } = null!; - /// - /// A list of connection strings available for this CosmosDB account. - /// [Output("connectionStrings")] public Output> ConnectionStrings { get; private set; } = null!; @@ -235,23 +238,14 @@ public partial class Account : global::Pulumi.CustomResource [Output("defaultIdentityType")] public Output DefaultIdentityType { get; private set; } = null!; - /// - /// Enable automatic failover for this Cosmos DB account. - /// [Output("enableAutomaticFailover")] - public Output EnableAutomaticFailover { get; private set; } = null!; + public Output EnableAutomaticFailover { get; private set; } = null!; - /// - /// Enable the Free Tier pricing option for this Cosmos DB account. Defaults to `false`. Changing this forces a new resource to be created. - /// [Output("enableFreeTier")] - public Output EnableFreeTier { get; private set; } = null!; + public Output EnableFreeTier { get; private set; } = null!; - /// - /// Enable multiple write locations for this Cosmos DB account. - /// [Output("enableMultipleWriteLocations")] - public Output EnableMultipleWriteLocations { get; private set; } = null!; + public Output EnableMultipleWriteLocations { get; private set; } = null!; /// /// The endpoint used to connect to the CosmosDB account. @@ -259,6 +253,12 @@ public partial class Account : global::Pulumi.CustomResource [Output("endpoint")] public Output Endpoint { get; private set; } = null!; + /// + /// Enable the Free Tier pricing option for this Cosmos DB account. Defaults to `false`. Changing this forces a new resource to be created. + /// + [Output("freeTierEnabled")] + public Output FreeTierEnabled { get; private set; } = null!; + /// /// Specifies a `geo_location` resource, used to define where data should be replicated with the `failover_priority` 0 specifying the primary location. Value is a `geo_location` block as defined below. /// @@ -327,6 +327,12 @@ public partial class Account : global::Pulumi.CustomResource [Output("mongoServerVersion")] public Output MongoServerVersion { get; private set; } = null!; + /// + /// Enable multiple write locations for this Cosmos DB account. + /// + [Output("multipleWriteLocationsEnabled")] + public Output MultipleWriteLocationsEnabled { get; private set; } = null!; + /// /// Specifies the name of the CosmosDB Account. Changing this forces a new resource to be created. /// @@ -553,6 +559,12 @@ public sealed class AccountArgs : global::Pulumi.ResourceArgs [Input("analyticalStorageEnabled")] public Input? AnalyticalStorageEnabled { get; set; } + /// + /// Enable automatic failover for this Cosmos DB account. + /// + [Input("automaticFailoverEnabled")] + public Input? AutomaticFailoverEnabled { get; set; } + /// /// A `backup` block as defined below. /// @@ -603,24 +615,21 @@ public InputList Capabilities [Input("defaultIdentityType")] public Input? DefaultIdentityType { get; set; } - /// - /// Enable automatic failover for this Cosmos DB account. - /// [Input("enableAutomaticFailover")] public Input? EnableAutomaticFailover { get; set; } - /// - /// Enable the Free Tier pricing option for this Cosmos DB account. Defaults to `false`. Changing this forces a new resource to be created. - /// [Input("enableFreeTier")] public Input? EnableFreeTier { get; set; } - /// - /// Enable multiple write locations for this Cosmos DB account. - /// [Input("enableMultipleWriteLocations")] public Input? EnableMultipleWriteLocations { get; set; } + /// + /// Enable the Free Tier pricing option for this Cosmos DB account. Defaults to `false`. Changing this forces a new resource to be created. + /// + [Input("freeTierEnabled")] + public Input? FreeTierEnabled { get; set; } + [Input("geoLocations", required: true)] private InputList? _geoLocations; @@ -695,6 +704,12 @@ public InputList GeoLocations [Input("mongoServerVersion")] public Input? MongoServerVersion { get; set; } + /// + /// Enable multiple write locations for this Cosmos DB account. + /// + [Input("multipleWriteLocationsEnabled")] + public Input? MultipleWriteLocationsEnabled { get; set; } + /// /// Specifies the name of the CosmosDB Account. Changing this forces a new resource to be created. /// @@ -801,6 +816,12 @@ public sealed class AccountState : global::Pulumi.ResourceArgs [Input("analyticalStorageEnabled")] public Input? AnalyticalStorageEnabled { get; set; } + /// + /// Enable automatic failover for this Cosmos DB account. + /// + [Input("automaticFailoverEnabled")] + public Input? AutomaticFailoverEnabled { get; set; } + /// /// A `backup` block as defined below. /// @@ -827,10 +848,7 @@ public InputList Capabilities [Input("connectionStrings")] private InputList? _connectionStrings; - - /// - /// A list of connection strings available for this CosmosDB account. - /// + [Obsolete(@"This property has been superseded by the primary and secondary connection strings for sql, mongodb and readonly and will be removed in v4.0 of the AzureRM provider")] public InputList ConnectionStrings { get => _connectionStrings ?? (_connectionStrings = new InputList()); @@ -867,21 +885,12 @@ public InputList ConnectionStrings [Input("defaultIdentityType")] public Input? DefaultIdentityType { get; set; } - /// - /// Enable automatic failover for this Cosmos DB account. - /// [Input("enableAutomaticFailover")] public Input? EnableAutomaticFailover { get; set; } - /// - /// Enable the Free Tier pricing option for this Cosmos DB account. Defaults to `false`. Changing this forces a new resource to be created. - /// [Input("enableFreeTier")] public Input? EnableFreeTier { get; set; } - /// - /// Enable multiple write locations for this Cosmos DB account. - /// [Input("enableMultipleWriteLocations")] public Input? EnableMultipleWriteLocations { get; set; } @@ -891,6 +900,12 @@ public InputList ConnectionStrings [Input("endpoint")] public Input? Endpoint { get; set; } + /// + /// Enable the Free Tier pricing option for this Cosmos DB account. Defaults to `false`. Changing this forces a new resource to be created. + /// + [Input("freeTierEnabled")] + public Input? FreeTierEnabled { get; set; } + [Input("geoLocations")] private InputList? _geoLocations; @@ -965,6 +980,12 @@ public InputList GeoLocations [Input("mongoServerVersion")] public Input? MongoServerVersion { get; set; } + /// + /// Enable multiple write locations for this Cosmos DB account. + /// + [Input("multipleWriteLocationsEnabled")] + public Input? MultipleWriteLocationsEnabled { get; set; } + /// /// Specifies the name of the CosmosDB Account. Changing this forces a new resource to be created. /// diff --git a/sdk/dotnet/CosmosDB/GetAccount.cs b/sdk/dotnet/CosmosDB/GetAccount.cs index d39978a44a..050bc524a0 100644 --- a/sdk/dotnet/CosmosDB/GetAccount.cs +++ b/sdk/dotnet/CosmosDB/GetAccount.cs @@ -120,30 +120,26 @@ public GetAccountInvokeArgs() public sealed class GetAccountResult { /// - /// Capabilities enabled on this Cosmos DB account. + /// If automatic failover is enabled for this CosmosDB Account. /// - public readonly ImmutableArray Capabilities; + public readonly bool AutomaticFailoverEnabled; /// - /// A list of connection strings available for this CosmosDB account. + /// Capabilities enabled on this Cosmos DB account. /// + public readonly ImmutableArray Capabilities; public readonly ImmutableArray ConnectionStrings; public readonly ImmutableArray ConsistencyPolicies; - /// - /// If automatic failover is enabled for this CosmosDB Account. - /// public readonly bool EnableAutomaticFailover; - /// - /// If Free Tier pricing option is enabled for this CosmosDB Account. You can have up to one free tier Azure Cosmos DB account per Azure subscription. - /// public readonly bool EnableFreeTier; - /// - /// If multiple write locations are enabled for this Cosmos DB account. - /// public readonly bool EnableMultipleWriteLocations; /// /// The endpoint used to connect to the CosmosDB account. /// public readonly string Endpoint; + /// + /// If Free Tier pricing option is enabled for this CosmosDB Account. You can have up to one free tier Azure Cosmos DB account per Azure subscription. + /// + public readonly bool FreeTierEnabled; public readonly ImmutableArray GeoLocations; /// /// The provider-assigned unique ID for this managed resource. @@ -169,6 +165,10 @@ public sealed class GetAccountResult /// The name of the Azure region hosting replicated data. /// public readonly string Location; + /// + /// If multiple write locations are enabled for this Cosmos DB account. + /// + public readonly bool MultipleWriteLocationsEnabled; public readonly string Name; /// /// The Offer Type to used by this CosmosDB Account. @@ -242,6 +242,8 @@ public sealed class GetAccountResult [OutputConstructor] private GetAccountResult( + bool automaticFailoverEnabled, + ImmutableArray capabilities, ImmutableArray connectionStrings, @@ -256,6 +258,8 @@ private GetAccountResult( string endpoint, + bool freeTierEnabled, + ImmutableArray geoLocations, string id, @@ -270,6 +274,8 @@ private GetAccountResult( string location, + bool multipleWriteLocationsEnabled, + string name, string offerType, @@ -308,6 +314,7 @@ private GetAccountResult( ImmutableArray writeEndpoints) { + AutomaticFailoverEnabled = automaticFailoverEnabled; Capabilities = capabilities; ConnectionStrings = connectionStrings; ConsistencyPolicies = consistencyPolicies; @@ -315,6 +322,7 @@ private GetAccountResult( EnableFreeTier = enableFreeTier; EnableMultipleWriteLocations = enableMultipleWriteLocations; Endpoint = endpoint; + FreeTierEnabled = freeTierEnabled; GeoLocations = geoLocations; Id = id; IpRangeFilter = ipRangeFilter; @@ -322,6 +330,7 @@ private GetAccountResult( KeyVaultKeyId = keyVaultKeyId; Kind = kind; Location = location; + MultipleWriteLocationsEnabled = multipleWriteLocationsEnabled; Name = name; OfferType = offerType; PrimaryKey = primaryKey; diff --git a/sdk/dotnet/KeyVault/Certifiate.cs b/sdk/dotnet/KeyVault/Certifiate.cs index 3cb19c0d26..7fce4f7d17 100644 --- a/sdk/dotnet/KeyVault/Certifiate.cs +++ b/sdk/dotnet/KeyVault/Certifiate.cs @@ -12,11 +12,6 @@ namespace Pulumi.Azure.KeyVault /// /// Manages a Key Vault Certificate. /// - /// <<<<<<< HEAD - /// > **Note:** The Azure Provider includes a Feature Toggle which will purge a Key Vault Certificate resource on destroy, rather than the default soft-delete. See `purge_soft_deleted_certificates_on_destroy` for more information. - /// - /// ======= - /// > > > > > > > 8d78c87098 (Update-documentation) /// ## Example Usage /// /// ### Importing A PFX) diff --git a/sdk/dotnet/KeyVault/Certificate.cs b/sdk/dotnet/KeyVault/Certificate.cs index 27337f8b0f..aa2420ae49 100644 --- a/sdk/dotnet/KeyVault/Certificate.cs +++ b/sdk/dotnet/KeyVault/Certificate.cs @@ -12,11 +12,6 @@ namespace Pulumi.Azure.KeyVault /// /// Manages a Key Vault Certificate. /// - /// <<<<<<< HEAD - /// > **Note:** The Azure Provider includes a Feature Toggle which will purge a Key Vault Certificate resource on destroy, rather than the default soft-delete. See `purge_soft_deleted_certificates_on_destroy` for more information. - /// - /// ======= - /// > > > > > > > 8d78c87098 (Update-documentation) /// ## Example Usage /// /// ### Importing A PFX) diff --git a/sdk/dotnet/KeyVault/CertificateContacts.cs b/sdk/dotnet/KeyVault/CertificateContacts.cs index 37870732dd..b02c59074a 100644 --- a/sdk/dotnet/KeyVault/CertificateContacts.cs +++ b/sdk/dotnet/KeyVault/CertificateContacts.cs @@ -14,6 +14,7 @@ namespace Pulumi.Azure.KeyVault /// /// ## Disclaimers /// + /// <!-- TODO: Remove Note in 4.0 --> /// > **Note:** It's possible to define Key Vault Certificate Contacts both within the `azure.keyvault.KeyVault` resource via the `contact` block and by using the `azure.keyvault.CertificateContacts` resource. However it's not possible to use both methods to manage Certificate Contacts within a KeyVault, since there'll be conflicts. /// /// ## Example Usage @@ -98,6 +99,7 @@ public partial class CertificateContacts : global::Pulumi.CustomResource { /// /// One or more `contact` blocks as defined below. + /// --> /// [Output("contacts")] public Output> Contacts { get; private set; } = null!; @@ -159,6 +161,7 @@ public sealed class CertificateContactsArgs : global::Pulumi.ResourceArgs /// /// One or more `contact` blocks as defined below. + /// --> /// public InputList Contacts { @@ -185,6 +188,7 @@ public sealed class CertificateContactsState : global::Pulumi.ResourceArgs /// /// One or more `contact` blocks as defined below. + /// --> /// public InputList Contacts { diff --git a/sdk/dotnet/KeyVault/KeyVault.cs b/sdk/dotnet/KeyVault/KeyVault.cs index 8436f319fb..874faec06b 100644 --- a/sdk/dotnet/KeyVault/KeyVault.cs +++ b/sdk/dotnet/KeyVault/KeyVault.cs @@ -174,6 +174,8 @@ public partial class KeyVault : global::Pulumi.CustomResource /// The number of days that items should be retained for once soft-deleted. This value can be between `7` and `90` (the default) days. /// /// > **Note:** This field can only be configured one time and cannot be updated. + /// + /// <!-- TODO: Remove `contact` and Notes in 4.0 --> /// [Output("softDeleteRetentionDays")] public Output SoftDeleteRetentionDays { get; private set; } = null!; @@ -266,6 +268,7 @@ public InputList AccessPolicies /// /// > **Note:** This field can only be set when `public_network_access_enabled` is set to `true`. To manage the `contact` with `public_network_access_enabled` set to `false`, please use the `azure.keyvault.CertificateContacts` resource instead of this property, and remove this property from the configuration. Especially for existing `azure.keyvault.KeyVault`, this means you'll need to import the `azure.keyvault.CertificateContacts` manually. /// + [Obsolete(@"As the `contact` property requires reaching out to the dataplane, to better support private endpoints and keyvaults with public network access disabled, `contact` will be removed in favour of the `azure.keyvault.CertificateContacts` resource in version 4.0 of the AzureRM Provider.")] public InputList Contacts { get => _contacts ?? (_contacts = new InputList()); @@ -344,6 +347,8 @@ public InputList Contacts /// The number of days that items should be retained for once soft-deleted. This value can be between `7` and `90` (the default) days. /// /// > **Note:** This field can only be configured one time and cannot be updated. + /// + /// <!-- TODO: Remove `contact` and Notes in 4.0 --> /// [Input("softDeleteRetentionDays")] public Input? SoftDeleteRetentionDays { get; set; } @@ -398,6 +403,7 @@ public InputList AccessPolicies /// /// > **Note:** This field can only be set when `public_network_access_enabled` is set to `true`. To manage the `contact` with `public_network_access_enabled` set to `false`, please use the `azure.keyvault.CertificateContacts` resource instead of this property, and remove this property from the configuration. Especially for existing `azure.keyvault.KeyVault`, this means you'll need to import the `azure.keyvault.CertificateContacts` manually. /// + [Obsolete(@"As the `contact` property requires reaching out to the dataplane, to better support private endpoints and keyvaults with public network access disabled, `contact` will be removed in favour of the `azure.keyvault.CertificateContacts` resource in version 4.0 of the AzureRM Provider.")] public InputList Contacts { get => _contacts ?? (_contacts = new InputList()); @@ -476,6 +482,8 @@ public InputList Contacts /// The number of days that items should be retained for once soft-deleted. This value can be between `7` and `90` (the default) days. /// /// > **Note:** This field can only be configured one time and cannot be updated. + /// + /// <!-- TODO: Remove `contact` and Notes in 4.0 --> /// [Input("softDeleteRetentionDays")] public Input? SoftDeleteRetentionDays { get; set; } diff --git a/sdk/dotnet/KeyVault/Secret.cs b/sdk/dotnet/KeyVault/Secret.cs index 3a09975263..ebf34c75f0 100644 --- a/sdk/dotnet/KeyVault/Secret.cs +++ b/sdk/dotnet/KeyVault/Secret.cs @@ -12,14 +12,6 @@ namespace Pulumi.Azure.KeyVault /// /// Manages a Key Vault Secret. /// - /// <<<<<<< HEAD - /// > **Note:** All arguments including the secret value will be stored in the raw state as plain-text. - /// [Read more about sensitive data in state](https://www.terraform.io/docs/state/sensitive-data.html). - /// - /// > **Note:** The Azure Provider includes a Feature Toggle which will purge a Key Vault Secret resource on destroy, rather than the default soft-delete. See `purge_soft_deleted_secrets_on_destroy` for more information. - /// - /// ======= - /// > > > > > > > 8d78c87098 (Update-documentation) /// ## Example Usage /// /// <!--Start PulumiCodeChooser --> diff --git a/sdk/dotnet/Network/GetPublicIpPrefix.cs b/sdk/dotnet/Network/GetPublicIpPrefix.cs index fdd12dc6f2..e0c2cfa738 100644 --- a/sdk/dotnet/Network/GetPublicIpPrefix.cs +++ b/sdk/dotnet/Network/GetPublicIpPrefix.cs @@ -127,22 +127,19 @@ public sealed class GetPublicIpPrefixResult /// The provider-assigned unique ID for this managed resource. /// public readonly string Id; + /// + /// The Public IP address range, in CIDR notation. + /// public readonly string IpPrefix; /// /// The supported Azure location where the resource exists. /// public readonly string Location; - /// - /// The name of the Public IP prefix resource. - /// public readonly string Name; /// /// The number of bits of the prefix. /// public readonly int PrefixLength; - /// - /// The name of the resource group in which to create the public IP. - /// public readonly string ResourceGroupName; /// /// The SKU of the Public IP Prefix. diff --git a/sdk/dotnet/Network/Inputs/SubnetDelegationServiceDelegationArgs.cs b/sdk/dotnet/Network/Inputs/SubnetDelegationServiceDelegationArgs.cs index c31810af40..210d2e1308 100644 --- a/sdk/dotnet/Network/Inputs/SubnetDelegationServiceDelegationArgs.cs +++ b/sdk/dotnet/Network/Inputs/SubnetDelegationServiceDelegationArgs.cs @@ -27,7 +27,7 @@ public InputList Actions } /// - /// The name of service to delegate to. Possible values are `GitHub.Network/networkSettings`, `Microsoft.ApiManagement/service`, `Microsoft.Apollo/npu`, `Microsoft.App/environments`, `Microsoft.App/testClients`, `Microsoft.AVS/PrivateClouds`, `Microsoft.AzureCosmosDB/clusters`, `Microsoft.BareMetal/AzureHostedService`, `Microsoft.BareMetal/AzureHPC`, `Microsoft.BareMetal/AzurePaymentHSM`, `Microsoft.BareMetal/AzureVMware`, `Microsoft.BareMetal/CrayServers`, `Microsoft.BareMetal/MonitoringServers`, `Microsoft.Batch/batchAccounts`, `Microsoft.CloudTest/hostedpools`, `Microsoft.CloudTest/images`, `Microsoft.CloudTest/pools`, `Microsoft.Codespaces/plans`, `Microsoft.ContainerInstance/containerGroups`, `Microsoft.ContainerService/managedClusters`, `Microsoft.ContainerService/TestClients`, `Microsoft.Databricks/workspaces`, `Microsoft.DBforMySQL/flexibleServers`, `Microsoft.DBforMySQL/servers`, `Microsoft.DBforMySQL/serversv2`, `Microsoft.DBforPostgreSQL/flexibleServers`, `Microsoft.DBforPostgreSQL/serversv2`, `Microsoft.DBforPostgreSQL/singleServers`, `Microsoft.DelegatedNetwork/controller`, `Microsoft.DevCenter/networkConnection`, `Microsoft.DocumentDB/cassandraClusters`, `Microsoft.Fidalgo/networkSettings`, `Microsoft.HardwareSecurityModules/dedicatedHSMs`, `Microsoft.Kusto/clusters`, `Microsoft.LabServices/labplans`, `Microsoft.Logic/integrationServiceEnvironments`, `Microsoft.MachineLearningServices/workspaces`, `Microsoft.Netapp/volumes`, `Microsoft.Network/dnsResolvers`, `Microsoft.Network/managedResolvers`, `Microsoft.Network/fpgaNetworkInterfaces`, `Microsoft.Network/networkWatchers.`, `Microsoft.Network/virtualNetworkGateways`, `Microsoft.Orbital/orbitalGateways`, `Microsoft.PowerPlatform/enterprisePolicies`, `Microsoft.PowerPlatform/vnetaccesslinks`, `Microsoft.ServiceFabricMesh/networks`, `Microsoft.ServiceNetworking/trafficControllers`, `Microsoft.Singularity/accounts/networks`, `Microsoft.Singularity/accounts/npu`, `Microsoft.Sql/managedInstances`, `Microsoft.Sql/managedInstancesOnebox`, `Microsoft.Sql/managedInstancesStage`, `Microsoft.Sql/managedInstancesTest`, `Microsoft.Sql/servers`, `Microsoft.StoragePool/diskPools`, `Microsoft.StreamAnalytics/streamingJobs`, `Microsoft.Synapse/workspaces`, `Microsoft.Web/hostingEnvironments`, `Microsoft.Web/serverFarms`, `NGINX.NGINXPLUS/nginxDeployments`, `PaloAltoNetworks.Cloudngfw/firewalls` and `Qumulo.Storage/fileSystems`. + /// The name of service to delegate to. Possible values are `GitHub.Network/networkSettings`, `Microsoft.ApiManagement/service`, `Microsoft.Apollo/npu`, `Microsoft.App/environments`, `Microsoft.App/testClients`, `Microsoft.AVS/PrivateClouds`, `Microsoft.AzureCosmosDB/clusters`, `Microsoft.BareMetal/AzureHostedService`, `Microsoft.BareMetal/AzureHPC`, `Microsoft.BareMetal/AzurePaymentHSM`, `Microsoft.BareMetal/AzureVMware`, `Microsoft.BareMetal/CrayServers`, `Microsoft.BareMetal/MonitoringServers`, `Microsoft.Batch/batchAccounts`, `Microsoft.CloudTest/hostedpools`, `Microsoft.CloudTest/images`, `Microsoft.CloudTest/pools`, `Microsoft.Codespaces/plans`, `Microsoft.ContainerInstance/containerGroups`, `Microsoft.ContainerService/managedClusters`, `Microsoft.ContainerService/TestClients`, `Microsoft.Databricks/workspaces`, `Microsoft.DBforMySQL/flexibleServers`, `Microsoft.DBforMySQL/servers`, `Microsoft.DBforMySQL/serversv2`, `Microsoft.DBforPostgreSQL/flexibleServers`, `Microsoft.DBforPostgreSQL/serversv2`, `Microsoft.DBforPostgreSQL/singleServers`, `Microsoft.DelegatedNetwork/controller`, `Microsoft.DevCenter/networkConnection`, `Microsoft.DocumentDB/cassandraClusters`, `Microsoft.Fidalgo/networkSettings`, `Microsoft.HardwareSecurityModules/dedicatedHSMs`, `Microsoft.Kusto/clusters`, `Microsoft.LabServices/labplans`, `Microsoft.Logic/integrationServiceEnvironments`, `Microsoft.MachineLearningServices/workspaces`, `Microsoft.Netapp/volumes`, `Microsoft.Network/dnsResolvers`, `Microsoft.Network/managedResolvers`, `Microsoft.Network/fpgaNetworkInterfaces`, `Microsoft.Network/networkWatchers.`, `Microsoft.Network/virtualNetworkGateways`, `Microsoft.Orbital/orbitalGateways`, `Microsoft.PowerPlatform/enterprisePolicies`, `Microsoft.PowerPlatform/vnetaccesslinks`, `Microsoft.ServiceFabricMesh/networks`, `Microsoft.ServiceNetworking/trafficControllers`, `Microsoft.Singularity/accounts/networks`, `Microsoft.Singularity/accounts/npu`, `Microsoft.Sql/managedInstances`, `Microsoft.Sql/managedInstancesOnebox`, `Microsoft.Sql/managedInstancesStage`, `Microsoft.Sql/managedInstancesTest`, `Microsoft.Sql/servers`, `Microsoft.StoragePool/diskPools`, `Microsoft.StreamAnalytics/streamingJobs`, `Microsoft.Synapse/workspaces`, `Microsoft.Web/hostingEnvironments`, `Microsoft.Web/serverFarms`, `NGINX.NGINXPLUS/nginxDeployments`, `PaloAltoNetworks.Cloudngfw/firewalls`, `Qumulo.Storage/fileSystems`, and `Oracle.Database/networkAttachments`. /// [Input("name", required: true)] public Input Name { get; set; } = null!; diff --git a/sdk/dotnet/Network/Inputs/SubnetDelegationServiceDelegationGetArgs.cs b/sdk/dotnet/Network/Inputs/SubnetDelegationServiceDelegationGetArgs.cs index 053aea925d..f4c053e045 100644 --- a/sdk/dotnet/Network/Inputs/SubnetDelegationServiceDelegationGetArgs.cs +++ b/sdk/dotnet/Network/Inputs/SubnetDelegationServiceDelegationGetArgs.cs @@ -27,7 +27,7 @@ public InputList Actions } /// - /// The name of service to delegate to. Possible values are `GitHub.Network/networkSettings`, `Microsoft.ApiManagement/service`, `Microsoft.Apollo/npu`, `Microsoft.App/environments`, `Microsoft.App/testClients`, `Microsoft.AVS/PrivateClouds`, `Microsoft.AzureCosmosDB/clusters`, `Microsoft.BareMetal/AzureHostedService`, `Microsoft.BareMetal/AzureHPC`, `Microsoft.BareMetal/AzurePaymentHSM`, `Microsoft.BareMetal/AzureVMware`, `Microsoft.BareMetal/CrayServers`, `Microsoft.BareMetal/MonitoringServers`, `Microsoft.Batch/batchAccounts`, `Microsoft.CloudTest/hostedpools`, `Microsoft.CloudTest/images`, `Microsoft.CloudTest/pools`, `Microsoft.Codespaces/plans`, `Microsoft.ContainerInstance/containerGroups`, `Microsoft.ContainerService/managedClusters`, `Microsoft.ContainerService/TestClients`, `Microsoft.Databricks/workspaces`, `Microsoft.DBforMySQL/flexibleServers`, `Microsoft.DBforMySQL/servers`, `Microsoft.DBforMySQL/serversv2`, `Microsoft.DBforPostgreSQL/flexibleServers`, `Microsoft.DBforPostgreSQL/serversv2`, `Microsoft.DBforPostgreSQL/singleServers`, `Microsoft.DelegatedNetwork/controller`, `Microsoft.DevCenter/networkConnection`, `Microsoft.DocumentDB/cassandraClusters`, `Microsoft.Fidalgo/networkSettings`, `Microsoft.HardwareSecurityModules/dedicatedHSMs`, `Microsoft.Kusto/clusters`, `Microsoft.LabServices/labplans`, `Microsoft.Logic/integrationServiceEnvironments`, `Microsoft.MachineLearningServices/workspaces`, `Microsoft.Netapp/volumes`, `Microsoft.Network/dnsResolvers`, `Microsoft.Network/managedResolvers`, `Microsoft.Network/fpgaNetworkInterfaces`, `Microsoft.Network/networkWatchers.`, `Microsoft.Network/virtualNetworkGateways`, `Microsoft.Orbital/orbitalGateways`, `Microsoft.PowerPlatform/enterprisePolicies`, `Microsoft.PowerPlatform/vnetaccesslinks`, `Microsoft.ServiceFabricMesh/networks`, `Microsoft.ServiceNetworking/trafficControllers`, `Microsoft.Singularity/accounts/networks`, `Microsoft.Singularity/accounts/npu`, `Microsoft.Sql/managedInstances`, `Microsoft.Sql/managedInstancesOnebox`, `Microsoft.Sql/managedInstancesStage`, `Microsoft.Sql/managedInstancesTest`, `Microsoft.Sql/servers`, `Microsoft.StoragePool/diskPools`, `Microsoft.StreamAnalytics/streamingJobs`, `Microsoft.Synapse/workspaces`, `Microsoft.Web/hostingEnvironments`, `Microsoft.Web/serverFarms`, `NGINX.NGINXPLUS/nginxDeployments`, `PaloAltoNetworks.Cloudngfw/firewalls` and `Qumulo.Storage/fileSystems`. + /// The name of service to delegate to. Possible values are `GitHub.Network/networkSettings`, `Microsoft.ApiManagement/service`, `Microsoft.Apollo/npu`, `Microsoft.App/environments`, `Microsoft.App/testClients`, `Microsoft.AVS/PrivateClouds`, `Microsoft.AzureCosmosDB/clusters`, `Microsoft.BareMetal/AzureHostedService`, `Microsoft.BareMetal/AzureHPC`, `Microsoft.BareMetal/AzurePaymentHSM`, `Microsoft.BareMetal/AzureVMware`, `Microsoft.BareMetal/CrayServers`, `Microsoft.BareMetal/MonitoringServers`, `Microsoft.Batch/batchAccounts`, `Microsoft.CloudTest/hostedpools`, `Microsoft.CloudTest/images`, `Microsoft.CloudTest/pools`, `Microsoft.Codespaces/plans`, `Microsoft.ContainerInstance/containerGroups`, `Microsoft.ContainerService/managedClusters`, `Microsoft.ContainerService/TestClients`, `Microsoft.Databricks/workspaces`, `Microsoft.DBforMySQL/flexibleServers`, `Microsoft.DBforMySQL/servers`, `Microsoft.DBforMySQL/serversv2`, `Microsoft.DBforPostgreSQL/flexibleServers`, `Microsoft.DBforPostgreSQL/serversv2`, `Microsoft.DBforPostgreSQL/singleServers`, `Microsoft.DelegatedNetwork/controller`, `Microsoft.DevCenter/networkConnection`, `Microsoft.DocumentDB/cassandraClusters`, `Microsoft.Fidalgo/networkSettings`, `Microsoft.HardwareSecurityModules/dedicatedHSMs`, `Microsoft.Kusto/clusters`, `Microsoft.LabServices/labplans`, `Microsoft.Logic/integrationServiceEnvironments`, `Microsoft.MachineLearningServices/workspaces`, `Microsoft.Netapp/volumes`, `Microsoft.Network/dnsResolvers`, `Microsoft.Network/managedResolvers`, `Microsoft.Network/fpgaNetworkInterfaces`, `Microsoft.Network/networkWatchers.`, `Microsoft.Network/virtualNetworkGateways`, `Microsoft.Orbital/orbitalGateways`, `Microsoft.PowerPlatform/enterprisePolicies`, `Microsoft.PowerPlatform/vnetaccesslinks`, `Microsoft.ServiceFabricMesh/networks`, `Microsoft.ServiceNetworking/trafficControllers`, `Microsoft.Singularity/accounts/networks`, `Microsoft.Singularity/accounts/npu`, `Microsoft.Sql/managedInstances`, `Microsoft.Sql/managedInstancesOnebox`, `Microsoft.Sql/managedInstancesStage`, `Microsoft.Sql/managedInstancesTest`, `Microsoft.Sql/servers`, `Microsoft.StoragePool/diskPools`, `Microsoft.StreamAnalytics/streamingJobs`, `Microsoft.Synapse/workspaces`, `Microsoft.Web/hostingEnvironments`, `Microsoft.Web/serverFarms`, `NGINX.NGINXPLUS/nginxDeployments`, `PaloAltoNetworks.Cloudngfw/firewalls`, `Qumulo.Storage/fileSystems`, and `Oracle.Database/networkAttachments`. /// [Input("name", required: true)] public Input Name { get; set; } = null!; diff --git a/sdk/dotnet/Network/Outputs/SubnetDelegationServiceDelegation.cs b/sdk/dotnet/Network/Outputs/SubnetDelegationServiceDelegation.cs index 1f1b9a4dea..1e16878c67 100644 --- a/sdk/dotnet/Network/Outputs/SubnetDelegationServiceDelegation.cs +++ b/sdk/dotnet/Network/Outputs/SubnetDelegationServiceDelegation.cs @@ -20,7 +20,7 @@ public sealed class SubnetDelegationServiceDelegation /// public readonly ImmutableArray Actions; /// - /// The name of service to delegate to. Possible values are `GitHub.Network/networkSettings`, `Microsoft.ApiManagement/service`, `Microsoft.Apollo/npu`, `Microsoft.App/environments`, `Microsoft.App/testClients`, `Microsoft.AVS/PrivateClouds`, `Microsoft.AzureCosmosDB/clusters`, `Microsoft.BareMetal/AzureHostedService`, `Microsoft.BareMetal/AzureHPC`, `Microsoft.BareMetal/AzurePaymentHSM`, `Microsoft.BareMetal/AzureVMware`, `Microsoft.BareMetal/CrayServers`, `Microsoft.BareMetal/MonitoringServers`, `Microsoft.Batch/batchAccounts`, `Microsoft.CloudTest/hostedpools`, `Microsoft.CloudTest/images`, `Microsoft.CloudTest/pools`, `Microsoft.Codespaces/plans`, `Microsoft.ContainerInstance/containerGroups`, `Microsoft.ContainerService/managedClusters`, `Microsoft.ContainerService/TestClients`, `Microsoft.Databricks/workspaces`, `Microsoft.DBforMySQL/flexibleServers`, `Microsoft.DBforMySQL/servers`, `Microsoft.DBforMySQL/serversv2`, `Microsoft.DBforPostgreSQL/flexibleServers`, `Microsoft.DBforPostgreSQL/serversv2`, `Microsoft.DBforPostgreSQL/singleServers`, `Microsoft.DelegatedNetwork/controller`, `Microsoft.DevCenter/networkConnection`, `Microsoft.DocumentDB/cassandraClusters`, `Microsoft.Fidalgo/networkSettings`, `Microsoft.HardwareSecurityModules/dedicatedHSMs`, `Microsoft.Kusto/clusters`, `Microsoft.LabServices/labplans`, `Microsoft.Logic/integrationServiceEnvironments`, `Microsoft.MachineLearningServices/workspaces`, `Microsoft.Netapp/volumes`, `Microsoft.Network/dnsResolvers`, `Microsoft.Network/managedResolvers`, `Microsoft.Network/fpgaNetworkInterfaces`, `Microsoft.Network/networkWatchers.`, `Microsoft.Network/virtualNetworkGateways`, `Microsoft.Orbital/orbitalGateways`, `Microsoft.PowerPlatform/enterprisePolicies`, `Microsoft.PowerPlatform/vnetaccesslinks`, `Microsoft.ServiceFabricMesh/networks`, `Microsoft.ServiceNetworking/trafficControllers`, `Microsoft.Singularity/accounts/networks`, `Microsoft.Singularity/accounts/npu`, `Microsoft.Sql/managedInstances`, `Microsoft.Sql/managedInstancesOnebox`, `Microsoft.Sql/managedInstancesStage`, `Microsoft.Sql/managedInstancesTest`, `Microsoft.Sql/servers`, `Microsoft.StoragePool/diskPools`, `Microsoft.StreamAnalytics/streamingJobs`, `Microsoft.Synapse/workspaces`, `Microsoft.Web/hostingEnvironments`, `Microsoft.Web/serverFarms`, `NGINX.NGINXPLUS/nginxDeployments`, `PaloAltoNetworks.Cloudngfw/firewalls` and `Qumulo.Storage/fileSystems`. + /// The name of service to delegate to. Possible values are `GitHub.Network/networkSettings`, `Microsoft.ApiManagement/service`, `Microsoft.Apollo/npu`, `Microsoft.App/environments`, `Microsoft.App/testClients`, `Microsoft.AVS/PrivateClouds`, `Microsoft.AzureCosmosDB/clusters`, `Microsoft.BareMetal/AzureHostedService`, `Microsoft.BareMetal/AzureHPC`, `Microsoft.BareMetal/AzurePaymentHSM`, `Microsoft.BareMetal/AzureVMware`, `Microsoft.BareMetal/CrayServers`, `Microsoft.BareMetal/MonitoringServers`, `Microsoft.Batch/batchAccounts`, `Microsoft.CloudTest/hostedpools`, `Microsoft.CloudTest/images`, `Microsoft.CloudTest/pools`, `Microsoft.Codespaces/plans`, `Microsoft.ContainerInstance/containerGroups`, `Microsoft.ContainerService/managedClusters`, `Microsoft.ContainerService/TestClients`, `Microsoft.Databricks/workspaces`, `Microsoft.DBforMySQL/flexibleServers`, `Microsoft.DBforMySQL/servers`, `Microsoft.DBforMySQL/serversv2`, `Microsoft.DBforPostgreSQL/flexibleServers`, `Microsoft.DBforPostgreSQL/serversv2`, `Microsoft.DBforPostgreSQL/singleServers`, `Microsoft.DelegatedNetwork/controller`, `Microsoft.DevCenter/networkConnection`, `Microsoft.DocumentDB/cassandraClusters`, `Microsoft.Fidalgo/networkSettings`, `Microsoft.HardwareSecurityModules/dedicatedHSMs`, `Microsoft.Kusto/clusters`, `Microsoft.LabServices/labplans`, `Microsoft.Logic/integrationServiceEnvironments`, `Microsoft.MachineLearningServices/workspaces`, `Microsoft.Netapp/volumes`, `Microsoft.Network/dnsResolvers`, `Microsoft.Network/managedResolvers`, `Microsoft.Network/fpgaNetworkInterfaces`, `Microsoft.Network/networkWatchers.`, `Microsoft.Network/virtualNetworkGateways`, `Microsoft.Orbital/orbitalGateways`, `Microsoft.PowerPlatform/enterprisePolicies`, `Microsoft.PowerPlatform/vnetaccesslinks`, `Microsoft.ServiceFabricMesh/networks`, `Microsoft.ServiceNetworking/trafficControllers`, `Microsoft.Singularity/accounts/networks`, `Microsoft.Singularity/accounts/npu`, `Microsoft.Sql/managedInstances`, `Microsoft.Sql/managedInstancesOnebox`, `Microsoft.Sql/managedInstancesStage`, `Microsoft.Sql/managedInstancesTest`, `Microsoft.Sql/servers`, `Microsoft.StoragePool/diskPools`, `Microsoft.StreamAnalytics/streamingJobs`, `Microsoft.Synapse/workspaces`, `Microsoft.Web/hostingEnvironments`, `Microsoft.Web/serverFarms`, `NGINX.NGINXPLUS/nginxDeployments`, `PaloAltoNetworks.Cloudngfw/firewalls`, `Qumulo.Storage/fileSystems`, and `Oracle.Database/networkAttachments`. /// public readonly string Name; diff --git a/sdk/dotnet/Provider.cs b/sdk/dotnet/Provider.cs index 1ce437db06..0eab5f3d56 100644 --- a/sdk/dotnet/Provider.cs +++ b/sdk/dotnet/Provider.cs @@ -64,7 +64,8 @@ public partial class Provider : global::Pulumi.ProviderResource public Output ClientSecretFilePath { get; private set; } = null!; /// - /// The Cloud Environment which should be used. Possible values are public, usgovernment, and china. Defaults to public. + /// The Cloud Environment which should be used. Possible values are public, usgovernment, and china. Defaults to public. Not + /// used and should not be specified when `metadata_host` is specified. /// [Output("environment")] public Output Environment { get; private set; } = null!; @@ -309,7 +310,8 @@ public Input? ClientSecretFilePath public Input? DisableTerraformPartnerId { get; set; } /// - /// The Cloud Environment which should be used. Possible values are public, usgovernment, and china. Defaults to public. + /// The Cloud Environment which should be used. Possible values are public, usgovernment, and china. Defaults to public. Not + /// used and should not be specified when `metadata_host` is specified. /// [Input("environment")] public Input? Environment { get; set; } diff --git a/sdk/dotnet/Redis/CacheAccessPolicyAssignment.cs b/sdk/dotnet/Redis/CacheAccessPolicyAssignment.cs index 2b7f1c6dce..605d21836d 100644 --- a/sdk/dotnet/Redis/CacheAccessPolicyAssignment.cs +++ b/sdk/dotnet/Redis/CacheAccessPolicyAssignment.cs @@ -91,7 +91,7 @@ public partial class CacheAccessPolicyAssignment : global::Pulumi.CustomResource public Output ObjectId { get; private set; } = null!; /// - /// The alias of the principal ID. Possible values are `ServicePrincipal` and `UserMSI`. Changing this forces a new Redis Cache Access Policy Assignment to be created. + /// The alias of the principal ID. User-friendly name for object ID. Also represents username for token based authentication. Changing this forces a new Redis Cache Access Policy Assignment to be created. /// [Output("objectIdAlias")] public Output ObjectIdAlias { get; private set; } = null!; @@ -167,7 +167,7 @@ public sealed class CacheAccessPolicyAssignmentArgs : global::Pulumi.ResourceArg public Input ObjectId { get; set; } = null!; /// - /// The alias of the principal ID. Possible values are `ServicePrincipal` and `UserMSI`. Changing this forces a new Redis Cache Access Policy Assignment to be created. + /// The alias of the principal ID. User-friendly name for object ID. Also represents username for token based authentication. Changing this forces a new Redis Cache Access Policy Assignment to be created. /// [Input("objectIdAlias", required: true)] public Input ObjectIdAlias { get; set; } = null!; @@ -205,7 +205,7 @@ public sealed class CacheAccessPolicyAssignmentState : global::Pulumi.ResourceAr public Input? ObjectId { get; set; } /// - /// The alias of the principal ID. Possible values are `ServicePrincipal` and `UserMSI`. Changing this forces a new Redis Cache Access Policy Assignment to be created. + /// The alias of the principal ID. User-friendly name for object ID. Also represents username for token based authentication. Changing this forces a new Redis Cache Access Policy Assignment to be created. /// [Input("objectIdAlias")] public Input? ObjectIdAlias { get; set; } diff --git a/sdk/dotnet/SignalR/Inputs/ServiceSkuArgs.cs b/sdk/dotnet/SignalR/Inputs/ServiceSkuArgs.cs index 0c2733a896..39f0e4d3a1 100644 --- a/sdk/dotnet/SignalR/Inputs/ServiceSkuArgs.cs +++ b/sdk/dotnet/SignalR/Inputs/ServiceSkuArgs.cs @@ -13,13 +13,15 @@ namespace Pulumi.Azure.SignalR.Inputs public sealed class ServiceSkuArgs : global::Pulumi.ResourceArgs { /// - /// Specifies the number of units associated with this SignalR service. Valid values are `1`, `2`, `3`, `4`, `5`, `6`, `7`, `8`, `9`, `10`, `20`, `30`, `40`, `50`, `60`, `70`, `80`, `90` and `100`. + /// Specifies the number of units associated with this SignalR service. Valid values are `1`, `2`, `3`, `4`, `5`, `6`, `7`, `8`, `9`, `10`, `20`, `30`, `40`, `50`, `60`, `70`, `80`, `90`, `100`, `200`, `300`, `400`, `500`, `600`, `700`, `800`, `900` and `1000`. + /// + /// > **NOTE:** The valid capacity range for sku `Free_F1` is `1`, for sku `Premium_P2` is from `100` to `1000`, and from `1` to `100` for sku `Standard_S1` and `Premium_P1`. /// [Input("capacity", required: true)] public Input Capacity { get; set; } = null!; /// - /// Specifies which tier to use. Valid values are `Free_F1`, `Standard_S1` and `Premium_P1`. + /// Specifies which tier to use. Valid values are `Free_F1`, `Standard_S1`, `Premium_P1` and `Premium_P2`. /// [Input("name", required: true)] public Input Name { get; set; } = null!; diff --git a/sdk/dotnet/SignalR/Inputs/ServiceSkuGetArgs.cs b/sdk/dotnet/SignalR/Inputs/ServiceSkuGetArgs.cs index 190eeca34d..39c004c343 100644 --- a/sdk/dotnet/SignalR/Inputs/ServiceSkuGetArgs.cs +++ b/sdk/dotnet/SignalR/Inputs/ServiceSkuGetArgs.cs @@ -13,13 +13,15 @@ namespace Pulumi.Azure.SignalR.Inputs public sealed class ServiceSkuGetArgs : global::Pulumi.ResourceArgs { /// - /// Specifies the number of units associated with this SignalR service. Valid values are `1`, `2`, `3`, `4`, `5`, `6`, `7`, `8`, `9`, `10`, `20`, `30`, `40`, `50`, `60`, `70`, `80`, `90` and `100`. + /// Specifies the number of units associated with this SignalR service. Valid values are `1`, `2`, `3`, `4`, `5`, `6`, `7`, `8`, `9`, `10`, `20`, `30`, `40`, `50`, `60`, `70`, `80`, `90`, `100`, `200`, `300`, `400`, `500`, `600`, `700`, `800`, `900` and `1000`. + /// + /// > **NOTE:** The valid capacity range for sku `Free_F1` is `1`, for sku `Premium_P2` is from `100` to `1000`, and from `1` to `100` for sku `Standard_S1` and `Premium_P1`. /// [Input("capacity", required: true)] public Input Capacity { get; set; } = null!; /// - /// Specifies which tier to use. Valid values are `Free_F1`, `Standard_S1` and `Premium_P1`. + /// Specifies which tier to use. Valid values are `Free_F1`, `Standard_S1`, `Premium_P1` and `Premium_P2`. /// [Input("name", required: true)] public Input Name { get; set; } = null!; diff --git a/sdk/dotnet/SignalR/Outputs/ServiceSku.cs b/sdk/dotnet/SignalR/Outputs/ServiceSku.cs index 0154af8bb2..ea7cfb56d4 100644 --- a/sdk/dotnet/SignalR/Outputs/ServiceSku.cs +++ b/sdk/dotnet/SignalR/Outputs/ServiceSku.cs @@ -14,11 +14,13 @@ namespace Pulumi.Azure.SignalR.Outputs public sealed class ServiceSku { /// - /// Specifies the number of units associated with this SignalR service. Valid values are `1`, `2`, `3`, `4`, `5`, `6`, `7`, `8`, `9`, `10`, `20`, `30`, `40`, `50`, `60`, `70`, `80`, `90` and `100`. + /// Specifies the number of units associated with this SignalR service. Valid values are `1`, `2`, `3`, `4`, `5`, `6`, `7`, `8`, `9`, `10`, `20`, `30`, `40`, `50`, `60`, `70`, `80`, `90`, `100`, `200`, `300`, `400`, `500`, `600`, `700`, `800`, `900` and `1000`. + /// + /// > **NOTE:** The valid capacity range for sku `Free_F1` is `1`, for sku `Premium_P2` is from `100` to `1000`, and from `1` to `100` for sku `Standard_S1` and `Premium_P1`. /// public readonly int Capacity; /// - /// Specifies which tier to use. Valid values are `Free_F1`, `Standard_S1` and `Premium_P1`. + /// Specifies which tier to use. Valid values are `Free_F1`, `Standard_S1`, `Premium_P1` and `Premium_P2`. /// public readonly string Name; diff --git a/sdk/dotnet/Storage/Account.cs b/sdk/dotnet/Storage/Account.cs index eb235fdc00..2beefe87dc 100644 --- a/sdk/dotnet/Storage/Account.cs +++ b/sdk/dotnet/Storage/Account.cs @@ -533,7 +533,7 @@ public partial class Account : global::Pulumi.CustomResource /// /// A `queue_properties` block as defined below. /// - /// > **NOTE:** `queue_properties` cannot be set when the `account_kind` is set to `BlobStorage` + /// > **NOTE:** `queue_properties` can only be configured when `account_tier` is set to `Standard` and `account_kind` is set to either `Storage` or `StorageV2`. /// [Output("queueProperties")] public Output QueueProperties { get; private set; } = null!; @@ -782,6 +782,8 @@ public partial class Account : global::Pulumi.CustomResource /// /// A `share_properties` block as defined below. + /// + /// > **NOTE:** `share_properties` can only be configured when either `account_tier` is `Standard` and `account_kind` is either `Storage` or `StorageV2` - or when `account_tier` is `Premium` and `account_kind` is `FileStorage`. /// [Output("shareProperties")] public Output ShareProperties { get; private set; } = null!; @@ -1053,7 +1055,7 @@ public sealed class AccountArgs : global::Pulumi.ResourceArgs /// /// A `queue_properties` block as defined below. /// - /// > **NOTE:** `queue_properties` cannot be set when the `account_kind` is set to `BlobStorage` + /// > **NOTE:** `queue_properties` can only be configured when `account_tier` is set to `Standard` and `account_kind` is set to either `Storage` or `StorageV2`. /// [Input("queueProperties")] public Input? QueueProperties { get; set; } @@ -1086,6 +1088,8 @@ public sealed class AccountArgs : global::Pulumi.ResourceArgs /// /// A `share_properties` block as defined below. + /// + /// > **NOTE:** `share_properties` can only be configured when either `account_tier` is `Standard` and `account_kind` is either `Storage` or `StorageV2` - or when `account_tier` is `Premium` and `account_kind` is `FileStorage`. /// [Input("shareProperties")] public Input? ShareProperties { get; set; } @@ -1562,7 +1566,7 @@ public Input? PrimaryConnectionString /// /// A `queue_properties` block as defined below. /// - /// > **NOTE:** `queue_properties` cannot be set when the `account_kind` is set to `BlobStorage` + /// > **NOTE:** `queue_properties` can only be configured when `account_tier` is set to `Standard` and `account_kind` is set to either `Storage` or `StorageV2`. /// [Input("queueProperties")] public Input? QueueProperties { get; set; } @@ -1841,6 +1845,8 @@ public Input? SecondaryConnectionString /// /// A `share_properties` block as defined below. + /// + /// > **NOTE:** `share_properties` can only be configured when either `account_tier` is `Standard` and `account_kind` is either `Storage` or `StorageV2` - or when `account_tier` is `Premium` and `account_kind` is `FileStorage`. /// [Input("shareProperties")] public Input? ShareProperties { get; set; } diff --git a/sdk/dotnet/Storage/Blob.cs b/sdk/dotnet/Storage/Blob.cs index f858a55f04..50a6ad369b 100644 --- a/sdk/dotnet/Storage/Blob.cs +++ b/sdk/dotnet/Storage/Blob.cs @@ -93,6 +93,12 @@ public partial class Blob : global::Pulumi.CustomResource [Output("contentType")] public Output ContentType { get; private set; } = null!; + /// + /// The encryption scope to use for this blob. + /// + [Output("encryptionScope")] + public Output EncryptionScope { get; private set; } = null!; + /// /// A map of custom blob metadata. /// @@ -233,6 +239,12 @@ public sealed class BlobArgs : global::Pulumi.ResourceArgs [Input("contentType")] public Input? ContentType { get; set; } + /// + /// The encryption scope to use for this blob. + /// + [Input("encryptionScope")] + public Input? EncryptionScope { get; set; } + [Input("metadata")] private InputMap? _metadata; @@ -335,6 +347,12 @@ public sealed class BlobState : global::Pulumi.ResourceArgs [Input("contentType")] public Input? ContentType { get; set; } + /// + /// The encryption scope to use for this blob. + /// + [Input("encryptionScope")] + public Input? EncryptionScope { get; set; } + [Input("metadata")] private InputMap? _metadata; diff --git a/sdk/dotnet/Storage/Container.cs b/sdk/dotnet/Storage/Container.cs index deeadde112..bdf5464728 100644 --- a/sdk/dotnet/Storage/Container.cs +++ b/sdk/dotnet/Storage/Container.cs @@ -72,6 +72,18 @@ public partial class Container : global::Pulumi.CustomResource [Output("containerAccessType")] public Output ContainerAccessType { get; private set; } = null!; + /// + /// The default encryption scope to use for blobs uploaded to this container. Changing this forces a new resource to be created. + /// + [Output("defaultEncryptionScope")] + public Output DefaultEncryptionScope { get; private set; } = null!; + + /// + /// Whether to allow blobs to override the default encryption scope for this container. Can only be set when specifying `default_encryption_scope`. Defaults to `true`. Changing this forces a new resource to be created. + /// + [Output("encryptionScopeOverrideEnabled")] + public Output EncryptionScopeOverrideEnabled { get; private set; } = null!; + /// /// Is there an Immutability Policy configured on this Storage Container? /// @@ -162,6 +174,18 @@ public sealed class ContainerArgs : global::Pulumi.ResourceArgs [Input("containerAccessType")] public Input? ContainerAccessType { get; set; } + /// + /// The default encryption scope to use for blobs uploaded to this container. Changing this forces a new resource to be created. + /// + [Input("defaultEncryptionScope")] + public Input? DefaultEncryptionScope { get; set; } + + /// + /// Whether to allow blobs to override the default encryption scope for this container. Can only be set when specifying `default_encryption_scope`. Defaults to `true`. Changing this forces a new resource to be created. + /// + [Input("encryptionScopeOverrideEnabled")] + public Input? EncryptionScopeOverrideEnabled { get; set; } + [Input("metadata")] private InputMap? _metadata; @@ -202,6 +226,18 @@ public sealed class ContainerState : global::Pulumi.ResourceArgs [Input("containerAccessType")] public Input? ContainerAccessType { get; set; } + /// + /// The default encryption scope to use for blobs uploaded to this container. Changing this forces a new resource to be created. + /// + [Input("defaultEncryptionScope")] + public Input? DefaultEncryptionScope { get; set; } + + /// + /// Whether to allow blobs to override the default encryption scope for this container. Can only be set when specifying `default_encryption_scope`. Defaults to `true`. Changing this forces a new resource to be created. + /// + [Input("encryptionScopeOverrideEnabled")] + public Input? EncryptionScopeOverrideEnabled { get; set; } + /// /// Is there an Immutability Policy configured on this Storage Container? /// diff --git a/sdk/dotnet/Storage/DataLakeGen2Filesystem.cs b/sdk/dotnet/Storage/DataLakeGen2Filesystem.cs index 69df9f181a..7c1851d6a4 100644 --- a/sdk/dotnet/Storage/DataLakeGen2Filesystem.cs +++ b/sdk/dotnet/Storage/DataLakeGen2Filesystem.cs @@ -73,6 +73,12 @@ public partial class DataLakeGen2Filesystem : global::Pulumi.CustomResource [Output("aces")] public Output> Aces { get; private set; } = null!; + /// + /// The default encryption scope to use for this filesystem. Changing this forces a new resource to be created. + /// + [Output("defaultEncryptionScope")] + public Output DefaultEncryptionScope { get; private set; } = null!; + /// /// Specifies the Object ID of the Azure Active Directory Group to make the owning group of the root path (i.e. `/`). Possible values also include `$superuser`. /// @@ -163,6 +169,12 @@ public InputList Aces set => _aces = value; } + /// + /// The default encryption scope to use for this filesystem. Changing this forces a new resource to be created. + /// + [Input("defaultEncryptionScope")] + public Input? DefaultEncryptionScope { get; set; } + /// /// Specifies the Object ID of the Azure Active Directory Group to make the owning group of the root path (i.e. `/`). Possible values also include `$superuser`. /// @@ -221,6 +233,12 @@ public InputList Aces set => _aces = value; } + /// + /// The default encryption scope to use for this filesystem. Changing this forces a new resource to be created. + /// + [Input("defaultEncryptionScope")] + public Input? DefaultEncryptionScope { get; set; } + /// /// Specifies the Object ID of the Azure Active Directory Group to make the owning group of the root path (i.e. `/`). Possible values also include `$superuser`. /// diff --git a/sdk/dotnet/Storage/GetBlob.cs b/sdk/dotnet/Storage/GetBlob.cs index 1861f8deca..0bb80b73c5 100644 --- a/sdk/dotnet/Storage/GetBlob.cs +++ b/sdk/dotnet/Storage/GetBlob.cs @@ -162,6 +162,10 @@ public sealed class GetBlobResult /// public readonly string ContentType; /// + /// The encryption scope for this blob. + /// + public readonly string EncryptionScope; + /// /// The provider-assigned unique ID for this managed resource. /// public readonly string Id; @@ -189,6 +193,8 @@ private GetBlobResult( string contentType, + string encryptionScope, + string id, ImmutableDictionary metadata, @@ -206,6 +212,7 @@ private GetBlobResult( AccessTier = accessTier; ContentMd5 = contentMd5; ContentType = contentType; + EncryptionScope = encryptionScope; Id = id; Metadata = metadata; Name = name; diff --git a/sdk/dotnet/Storage/GetStorageContainer.cs b/sdk/dotnet/Storage/GetStorageContainer.cs index 93ea7df713..fa0e974c79 100644 --- a/sdk/dotnet/Storage/GetStorageContainer.cs +++ b/sdk/dotnet/Storage/GetStorageContainer.cs @@ -140,6 +140,14 @@ public sealed class GetStorageContainerResult /// public readonly string ContainerAccessType; /// + /// The default encryption scope in use for blobs uploaded to this container. + /// + public readonly string DefaultEncryptionScope; + /// + /// Whether blobs are allowed to override the default encryption scope for this container. + /// + public readonly bool EncryptionScopeOverrideEnabled; + /// /// Is there an Immutability Policy configured on this Storage Container? /// public readonly bool HasImmutabilityPolicy; @@ -166,6 +174,10 @@ public sealed class GetStorageContainerResult private GetStorageContainerResult( string containerAccessType, + string defaultEncryptionScope, + + bool encryptionScopeOverrideEnabled, + bool hasImmutabilityPolicy, bool hasLegalHold, @@ -181,6 +193,8 @@ private GetStorageContainerResult( string storageAccountName) { ContainerAccessType = containerAccessType; + DefaultEncryptionScope = defaultEncryptionScope; + EncryptionScopeOverrideEnabled = encryptionScopeOverrideEnabled; HasImmutabilityPolicy = hasImmutabilityPolicy; HasLegalHold = hasLegalHold; Id = id; diff --git a/sdk/dotnet/Storage/ZipBlob.cs b/sdk/dotnet/Storage/ZipBlob.cs index e4fd6de6cf..848493c506 100644 --- a/sdk/dotnet/Storage/ZipBlob.cs +++ b/sdk/dotnet/Storage/ZipBlob.cs @@ -28,6 +28,9 @@ public partial class ZipBlob : global::Pulumi.CustomResource [Output("contentType")] public Output ContentType { get; private set; } = null!; + [Output("encryptionScope")] + public Output EncryptionScope { get; private set; } = null!; + [Output("metadata")] public Output> Metadata { get; private set; } = null!; @@ -119,6 +122,9 @@ public sealed class ZipBlobArgs : global::Pulumi.ResourceArgs [Input("contentType")] public Input? ContentType { get; set; } + [Input("encryptionScope")] + public Input? EncryptionScope { get; set; } + [Input("metadata")] private InputMap? _metadata; public InputMap Metadata @@ -174,6 +180,9 @@ public sealed class ZipBlobState : global::Pulumi.ResourceArgs [Input("contentType")] public Input? ContentType { get; set; } + [Input("encryptionScope")] + public Input? EncryptionScope { get; set; } + [Input("metadata")] private InputMap? _metadata; public InputMap Metadata diff --git a/sdk/dotnet/WebPubSub/Service.cs b/sdk/dotnet/WebPubSub/Service.cs index 9bbec15294..1cb99a95fa 100644 --- a/sdk/dotnet/WebPubSub/Service.cs +++ b/sdk/dotnet/WebPubSub/Service.cs @@ -71,7 +71,9 @@ public partial class Service : global::Pulumi.CustomResource public Output AadAuthEnabled { get; private set; } = null!; /// - /// Specifies the number of units associated with this Web PubSub resource. Valid values are: Free: `1`, Standard: `1`, `2`, `5`, `10`, `20`, `50`, `100`. + /// Specifies the number of units associated with this Web PubSub resource. Valid values are `1`, `2`, `3`, `4`, `5`, `6`, `7`, `8`, `9`, `10`, `20`, `30`, `40`, `50`, `60`, `70`, `80`, `90`, `100`, `200`, `300`, `400`, `500`, `600`, `700`, `800`, `900` and `1000`. + /// + /// > **NOTE:** The valid capacity range for sku `Free_F1` is `1`, for sku `Premium_P2` is from `100` to `1000`, and from `1` to `100` for sku `Standard_S1` and `Premium_P1`. /// [Output("capacity")] public Output Capacity { get; private set; } = null!; @@ -167,7 +169,7 @@ public partial class Service : global::Pulumi.CustomResource public Output ServerPort { get; private set; } = null!; /// - /// Specifies which SKU to use. Possible values are `Free_F1`, `Standard_S1`, and `Premium_P1`. + /// Specifies which SKU to use. Possible values are `Free_F1`, `Standard_S1`, `Premium_P1` and `Premium_P2`. /// [Output("sku")] public Output Sku { get; private set; } = null!; @@ -247,7 +249,9 @@ public sealed class ServiceArgs : global::Pulumi.ResourceArgs public Input? AadAuthEnabled { get; set; } /// - /// Specifies the number of units associated with this Web PubSub resource. Valid values are: Free: `1`, Standard: `1`, `2`, `5`, `10`, `20`, `50`, `100`. + /// Specifies the number of units associated with this Web PubSub resource. Valid values are `1`, `2`, `3`, `4`, `5`, `6`, `7`, `8`, `9`, `10`, `20`, `30`, `40`, `50`, `60`, `70`, `80`, `90`, `100`, `200`, `300`, `400`, `500`, `600`, `700`, `800`, `900` and `1000`. + /// + /// > **NOTE:** The valid capacity range for sku `Free_F1` is `1`, for sku `Premium_P2` is from `100` to `1000`, and from `1` to `100` for sku `Standard_S1` and `Premium_P1`. /// [Input("capacity")] public Input? Capacity { get; set; } @@ -295,7 +299,7 @@ public sealed class ServiceArgs : global::Pulumi.ResourceArgs public Input ResourceGroupName { get; set; } = null!; /// - /// Specifies which SKU to use. Possible values are `Free_F1`, `Standard_S1`, and `Premium_P1`. + /// Specifies which SKU to use. Possible values are `Free_F1`, `Standard_S1`, `Premium_P1` and `Premium_P2`. /// [Input("sku", required: true)] public Input Sku { get; set; } = null!; @@ -333,7 +337,9 @@ public sealed class ServiceState : global::Pulumi.ResourceArgs public Input? AadAuthEnabled { get; set; } /// - /// Specifies the number of units associated with this Web PubSub resource. Valid values are: Free: `1`, Standard: `1`, `2`, `5`, `10`, `20`, `50`, `100`. + /// Specifies the number of units associated with this Web PubSub resource. Valid values are `1`, `2`, `3`, `4`, `5`, `6`, `7`, `8`, `9`, `10`, `20`, `30`, `40`, `50`, `60`, `70`, `80`, `90`, `100`, `200`, `300`, `400`, `500`, `600`, `700`, `800`, `900` and `1000`. + /// + /// > **NOTE:** The valid capacity range for sku `Free_F1` is `1`, for sku `Premium_P2` is from `100` to `1000`, and from `1` to `100` for sku `Standard_S1` and `Premium_P1`. /// [Input("capacity")] public Input? Capacity { get; set; } @@ -469,7 +475,7 @@ public Input? SecondaryConnectionString public Input? ServerPort { get; set; } /// - /// Specifies which SKU to use. Possible values are `Free_F1`, `Standard_S1`, and `Premium_P1`. + /// Specifies which SKU to use. Possible values are `Free_F1`, `Standard_S1`, `Premium_P1` and `Premium_P2`. /// [Input("sku")] public Input? Sku { get; set; } diff --git a/sdk/go/azure/appservice/pulumiTypes.go b/sdk/go/azure/appservice/pulumiTypes.go index 24e01e2fb7..9bd3e25644 100644 --- a/sdk/go/azure/appservice/pulumiTypes.go +++ b/sdk/go/azure/appservice/pulumiTypes.go @@ -33729,7 +33729,7 @@ func (o LinuxWebAppLogsApplicationLogsAzureBlobStoragePtrOutput) SasUrl() pulumi } type LinuxWebAppLogsHttpLogs struct { - // A `azureBlobStorageHttp` block as defined below. + // A `azureBlobStorageHttp` block as defined above. AzureBlobStorage *LinuxWebAppLogsHttpLogsAzureBlobStorage `pulumi:"azureBlobStorage"` // A `fileSystem` block as defined above. FileSystem *LinuxWebAppLogsHttpLogsFileSystem `pulumi:"fileSystem"` @@ -33747,7 +33747,7 @@ type LinuxWebAppLogsHttpLogsInput interface { } type LinuxWebAppLogsHttpLogsArgs struct { - // A `azureBlobStorageHttp` block as defined below. + // A `azureBlobStorageHttp` block as defined above. AzureBlobStorage LinuxWebAppLogsHttpLogsAzureBlobStoragePtrInput `pulumi:"azureBlobStorage"` // A `fileSystem` block as defined above. FileSystem LinuxWebAppLogsHttpLogsFileSystemPtrInput `pulumi:"fileSystem"` @@ -33830,7 +33830,7 @@ func (o LinuxWebAppLogsHttpLogsOutput) ToLinuxWebAppLogsHttpLogsPtrOutputWithCon }).(LinuxWebAppLogsHttpLogsPtrOutput) } -// A `azureBlobStorageHttp` block as defined below. +// A `azureBlobStorageHttp` block as defined above. func (o LinuxWebAppLogsHttpLogsOutput) AzureBlobStorage() LinuxWebAppLogsHttpLogsAzureBlobStoragePtrOutput { return o.ApplyT(func(v LinuxWebAppLogsHttpLogs) *LinuxWebAppLogsHttpLogsAzureBlobStorage { return v.AzureBlobStorage }).(LinuxWebAppLogsHttpLogsAzureBlobStoragePtrOutput) } @@ -33864,7 +33864,7 @@ func (o LinuxWebAppLogsHttpLogsPtrOutput) Elem() LinuxWebAppLogsHttpLogsOutput { }).(LinuxWebAppLogsHttpLogsOutput) } -// A `azureBlobStorageHttp` block as defined below. +// A `azureBlobStorageHttp` block as defined above. func (o LinuxWebAppLogsHttpLogsPtrOutput) AzureBlobStorage() LinuxWebAppLogsHttpLogsAzureBlobStoragePtrOutput { return o.ApplyT(func(v *LinuxWebAppLogsHttpLogs) *LinuxWebAppLogsHttpLogsAzureBlobStorage { if v == nil { @@ -34980,6 +34980,8 @@ type LinuxWebAppSiteConfigApplicationStack struct { // The Version of Java to use. Possible values include `8`, `11`, and `17`. // // > **NOTE:** The valid version combinations for `javaVersion`, `javaServer` and `javaServerVersion` can be checked from the command line via `az webapp list-runtimes --linux`. + // + // > **NOTE:** `javaServer`, `javaServerVersion`, and `javaVersion` must all be specified if building a java app JavaVersion *string `pulumi:"javaVersion"` // The version of Node to run. Possible values include `12-lts`, `14-lts`, `16-lts`, `18-lts` and `20-lts`. This property conflicts with `javaVersion`. // @@ -35034,6 +35036,8 @@ type LinuxWebAppSiteConfigApplicationStackArgs struct { // The Version of Java to use. Possible values include `8`, `11`, and `17`. // // > **NOTE:** The valid version combinations for `javaVersion`, `javaServer` and `javaServerVersion` can be checked from the command line via `az webapp list-runtimes --linux`. + // + // > **NOTE:** `javaServer`, `javaServerVersion`, and `javaVersion` must all be specified if building a java app JavaVersion pulumi.StringPtrInput `pulumi:"javaVersion"` // The version of Node to run. Possible values include `12-lts`, `14-lts`, `16-lts`, `18-lts` and `20-lts`. This property conflicts with `javaVersion`. // @@ -35183,6 +35187,8 @@ func (o LinuxWebAppSiteConfigApplicationStackOutput) JavaServerVersion() pulumi. // The Version of Java to use. Possible values include `8`, `11`, and `17`. // // > **NOTE:** The valid version combinations for `javaVersion`, `javaServer` and `javaServerVersion` can be checked from the command line via `az webapp list-runtimes --linux`. +// +// > **NOTE:** `javaServer`, `javaServerVersion`, and `javaVersion` must all be specified if building a java app func (o LinuxWebAppSiteConfigApplicationStackOutput) JavaVersion() pulumi.StringPtrOutput { return o.ApplyT(func(v LinuxWebAppSiteConfigApplicationStack) *string { return v.JavaVersion }).(pulumi.StringPtrOutput) } @@ -35342,6 +35348,8 @@ func (o LinuxWebAppSiteConfigApplicationStackPtrOutput) JavaServerVersion() pulu // The Version of Java to use. Possible values include `8`, `11`, and `17`. // // > **NOTE:** The valid version combinations for `javaVersion`, `javaServer` and `javaServerVersion` can be checked from the command line via `az webapp list-runtimes --linux`. +// +// > **NOTE:** `javaServer`, `javaServerVersion`, and `javaVersion` must all be specified if building a java app func (o LinuxWebAppSiteConfigApplicationStackPtrOutput) JavaVersion() pulumi.StringPtrOutput { return o.ApplyT(func(v *LinuxWebAppSiteConfigApplicationStack) *string { if v == nil { @@ -73659,7 +73667,7 @@ func (o WindowsWebAppLogsApplicationLogsAzureBlobStoragePtrOutput) SasUrl() pulu } type WindowsWebAppLogsHttpLogs struct { - // A `azureBlobStorageHttp` block as defined above. + // A `azureBlobStorageHttp` block as defined below. AzureBlobStorage *WindowsWebAppLogsHttpLogsAzureBlobStorage `pulumi:"azureBlobStorage"` // A `fileSystem` block as defined above. FileSystem *WindowsWebAppLogsHttpLogsFileSystem `pulumi:"fileSystem"` @@ -73677,7 +73685,7 @@ type WindowsWebAppLogsHttpLogsInput interface { } type WindowsWebAppLogsHttpLogsArgs struct { - // A `azureBlobStorageHttp` block as defined above. + // A `azureBlobStorageHttp` block as defined below. AzureBlobStorage WindowsWebAppLogsHttpLogsAzureBlobStoragePtrInput `pulumi:"azureBlobStorage"` // A `fileSystem` block as defined above. FileSystem WindowsWebAppLogsHttpLogsFileSystemPtrInput `pulumi:"fileSystem"` @@ -73760,7 +73768,7 @@ func (o WindowsWebAppLogsHttpLogsOutput) ToWindowsWebAppLogsHttpLogsPtrOutputWit }).(WindowsWebAppLogsHttpLogsPtrOutput) } -// A `azureBlobStorageHttp` block as defined above. +// A `azureBlobStorageHttp` block as defined below. func (o WindowsWebAppLogsHttpLogsOutput) AzureBlobStorage() WindowsWebAppLogsHttpLogsAzureBlobStoragePtrOutput { return o.ApplyT(func(v WindowsWebAppLogsHttpLogs) *WindowsWebAppLogsHttpLogsAzureBlobStorage { return v.AzureBlobStorage @@ -73796,7 +73804,7 @@ func (o WindowsWebAppLogsHttpLogsPtrOutput) Elem() WindowsWebAppLogsHttpLogsOutp }).(WindowsWebAppLogsHttpLogsOutput) } -// A `azureBlobStorageHttp` block as defined above. +// A `azureBlobStorageHttp` block as defined below. func (o WindowsWebAppLogsHttpLogsPtrOutput) AzureBlobStorage() WindowsWebAppLogsHttpLogsAzureBlobStoragePtrOutput { return o.ApplyT(func(v *WindowsWebAppLogsHttpLogs) *WindowsWebAppLogsHttpLogsAzureBlobStorage { if v == nil { diff --git a/sdk/go/azure/bot/serviceAzureBot.go b/sdk/go/azure/bot/serviceAzureBot.go index fc6da64890..345046fffe 100644 --- a/sdk/go/azure/bot/serviceAzureBot.go +++ b/sdk/go/azure/bot/serviceAzureBot.go @@ -132,7 +132,7 @@ type ServiceAzureBot struct { MicrosoftAppType pulumi.StringPtrOutput `pulumi:"microsoftAppType"` // The name which should be used for this Azure Bot Service. Changing this forces a new resource to be created. Name pulumi.StringOutput `pulumi:"name"` - // Whether public network access is allowed for this server. Defaults to `true`. + // Whether public network access is enabled. Defaults to `true`. PublicNetworkAccessEnabled pulumi.BoolPtrOutput `pulumi:"publicNetworkAccessEnabled"` // The name of the Resource Group where the Azure Bot Service should exist. Changing this forces a new resource to be created. ResourceGroupName pulumi.StringOutput `pulumi:"resourceGroupName"` @@ -228,7 +228,7 @@ type serviceAzureBotState struct { MicrosoftAppType *string `pulumi:"microsoftAppType"` // The name which should be used for this Azure Bot Service. Changing this forces a new resource to be created. Name *string `pulumi:"name"` - // Whether public network access is allowed for this server. Defaults to `true`. + // Whether public network access is enabled. Defaults to `true`. PublicNetworkAccessEnabled *bool `pulumi:"publicNetworkAccessEnabled"` // The name of the Resource Group where the Azure Bot Service should exist. Changing this forces a new resource to be created. ResourceGroupName *string `pulumi:"resourceGroupName"` @@ -275,7 +275,7 @@ type ServiceAzureBotState struct { MicrosoftAppType pulumi.StringPtrInput // The name which should be used for this Azure Bot Service. Changing this forces a new resource to be created. Name pulumi.StringPtrInput - // Whether public network access is allowed for this server. Defaults to `true`. + // Whether public network access is enabled. Defaults to `true`. PublicNetworkAccessEnabled pulumi.BoolPtrInput // The name of the Resource Group where the Azure Bot Service should exist. Changing this forces a new resource to be created. ResourceGroupName pulumi.StringPtrInput @@ -326,7 +326,7 @@ type serviceAzureBotArgs struct { MicrosoftAppType *string `pulumi:"microsoftAppType"` // The name which should be used for this Azure Bot Service. Changing this forces a new resource to be created. Name *string `pulumi:"name"` - // Whether public network access is allowed for this server. Defaults to `true`. + // Whether public network access is enabled. Defaults to `true`. PublicNetworkAccessEnabled *bool `pulumi:"publicNetworkAccessEnabled"` // The name of the Resource Group where the Azure Bot Service should exist. Changing this forces a new resource to be created. ResourceGroupName string `pulumi:"resourceGroupName"` @@ -374,7 +374,7 @@ type ServiceAzureBotArgs struct { MicrosoftAppType pulumi.StringPtrInput // The name which should be used for this Azure Bot Service. Changing this forces a new resource to be created. Name pulumi.StringPtrInput - // Whether public network access is allowed for this server. Defaults to `true`. + // Whether public network access is enabled. Defaults to `true`. PublicNetworkAccessEnabled pulumi.BoolPtrInput // The name of the Resource Group where the Azure Bot Service should exist. Changing this forces a new resource to be created. ResourceGroupName pulumi.StringInput @@ -555,7 +555,7 @@ func (o ServiceAzureBotOutput) Name() pulumi.StringOutput { return o.ApplyT(func(v *ServiceAzureBot) pulumi.StringOutput { return v.Name }).(pulumi.StringOutput) } -// Whether public network access is allowed for this server. Defaults to `true`. +// Whether public network access is enabled. Defaults to `true`. func (o ServiceAzureBotOutput) PublicNetworkAccessEnabled() pulumi.BoolPtrOutput { return o.ApplyT(func(v *ServiceAzureBot) pulumi.BoolPtrOutput { return v.PublicNetworkAccessEnabled }).(pulumi.BoolPtrOutput) } diff --git a/sdk/go/azure/chaosstudio/target.go b/sdk/go/azure/chaosstudio/target.go index 6b362fe103..fff0818718 100644 --- a/sdk/go/azure/chaosstudio/target.go +++ b/sdk/go/azure/chaosstudio/target.go @@ -16,6 +16,65 @@ import ( // // Manages a Chaos Studio Target. // +// ## Example Usage +// +// +// ```go +// package main +// +// import ( +// +// "github.com/pulumi/pulumi-azure/sdk/v5/go/azure/chaosstudio" +// "github.com/pulumi/pulumi-azure/sdk/v5/go/azure/containerservice" +// "github.com/pulumi/pulumi-azure/sdk/v5/go/azure/core" +// "github.com/pulumi/pulumi/sdk/v3/go/pulumi" +// +// ) +// +// func main() { +// pulumi.Run(func(ctx *pulumi.Context) error { +// exampleResourceGroup, err := core.NewResourceGroup(ctx, "example", &core.ResourceGroupArgs{ +// Name: pulumi.String("example-resources"), +// Location: pulumi.String("West Europe"), +// }) +// if err != nil { +// return err +// } +// example, err := containerservice.NewKubernetesCluster(ctx, "example", &containerservice.KubernetesClusterArgs{ +// Name: pulumi.String("example"), +// Location: exampleResourceGroup.Location, +// ResourceGroupName: exampleResourceGroup.Name, +// DnsPrefix: pulumi.String("acctestaksexample"), +// DefaultNodePool: &containerservice.KubernetesClusterDefaultNodePoolArgs{ +// Name: pulumi.String("example-value"), +// NodeCount: pulumi.Int("example-value"), +// VmSize: pulumi.String("example-value"), +// UpgradeSettings: &containerservice.KubernetesClusterDefaultNodePoolUpgradeSettingsArgs{ +// MaxSurge: pulumi.String("example-value"), +// }, +// }, +// Identity: &containerservice.KubernetesClusterIdentityArgs{ +// Type: pulumi.String("example-value"), +// }, +// }) +// if err != nil { +// return err +// } +// _, err = chaosstudio.NewTarget(ctx, "example", &chaosstudio.TargetArgs{ +// Location: exampleResourceGroup.Location, +// TargetResourceId: example.ID(), +// TargetType: pulumi.String("example-value"), +// }) +// if err != nil { +// return err +// } +// return nil +// }) +// } +// +// ``` +// +// // ## Import // // An existing Chaos Studio Target can be imported into Terraform using the `resource id`, e.g. diff --git a/sdk/go/azure/compute/snapshot.go b/sdk/go/azure/compute/snapshot.go index 2c48592770..38303cf1e6 100644 --- a/sdk/go/azure/compute/snapshot.go +++ b/sdk/go/azure/compute/snapshot.go @@ -91,6 +91,10 @@ type Snapshot struct { Location pulumi.StringOutput `pulumi:"location"` // Specifies the name of the Snapshot resource. Changing this forces a new resource to be created. Name pulumi.StringOutput `pulumi:"name"` + // Policy for accessing the disk via network. Possible values are `AllowAll`, `AllowPrivate`, or `DenyAll`. Defaults to `AllowAll`. + NetworkAccessPolicy pulumi.StringPtrOutput `pulumi:"networkAccessPolicy"` + // Policy for controlling export on the disk. Possible values are `true` or `false`. Defaults to `true`. + PublicNetworkAccessEnabled pulumi.BoolPtrOutput `pulumi:"publicNetworkAccessEnabled"` // The name of the resource group in which to create the Snapshot. Changing this forces a new resource to be created. ResourceGroupName pulumi.StringOutput `pulumi:"resourceGroupName"` // Specifies a reference to an existing snapshot, when `createOption` is `Copy`. Changing this forces a new resource to be created. @@ -157,6 +161,10 @@ type snapshotState struct { Location *string `pulumi:"location"` // Specifies the name of the Snapshot resource. Changing this forces a new resource to be created. Name *string `pulumi:"name"` + // Policy for accessing the disk via network. Possible values are `AllowAll`, `AllowPrivate`, or `DenyAll`. Defaults to `AllowAll`. + NetworkAccessPolicy *string `pulumi:"networkAccessPolicy"` + // Policy for controlling export on the disk. Possible values are `true` or `false`. Defaults to `true`. + PublicNetworkAccessEnabled *bool `pulumi:"publicNetworkAccessEnabled"` // The name of the resource group in which to create the Snapshot. Changing this forces a new resource to be created. ResourceGroupName *string `pulumi:"resourceGroupName"` // Specifies a reference to an existing snapshot, when `createOption` is `Copy`. Changing this forces a new resource to be created. @@ -188,6 +196,10 @@ type SnapshotState struct { Location pulumi.StringPtrInput // Specifies the name of the Snapshot resource. Changing this forces a new resource to be created. Name pulumi.StringPtrInput + // Policy for accessing the disk via network. Possible values are `AllowAll`, `AllowPrivate`, or `DenyAll`. Defaults to `AllowAll`. + NetworkAccessPolicy pulumi.StringPtrInput + // Policy for controlling export on the disk. Possible values are `true` or `false`. Defaults to `true`. + PublicNetworkAccessEnabled pulumi.BoolPtrInput // The name of the resource group in which to create the Snapshot. Changing this forces a new resource to be created. ResourceGroupName pulumi.StringPtrInput // Specifies a reference to an existing snapshot, when `createOption` is `Copy`. Changing this forces a new resource to be created. @@ -223,6 +235,10 @@ type snapshotArgs struct { Location *string `pulumi:"location"` // Specifies the name of the Snapshot resource. Changing this forces a new resource to be created. Name *string `pulumi:"name"` + // Policy for accessing the disk via network. Possible values are `AllowAll`, `AllowPrivate`, or `DenyAll`. Defaults to `AllowAll`. + NetworkAccessPolicy *string `pulumi:"networkAccessPolicy"` + // Policy for controlling export on the disk. Possible values are `true` or `false`. Defaults to `true`. + PublicNetworkAccessEnabled *bool `pulumi:"publicNetworkAccessEnabled"` // The name of the resource group in which to create the Snapshot. Changing this forces a new resource to be created. ResourceGroupName string `pulumi:"resourceGroupName"` // Specifies a reference to an existing snapshot, when `createOption` is `Copy`. Changing this forces a new resource to be created. @@ -253,6 +269,10 @@ type SnapshotArgs struct { Location pulumi.StringPtrInput // Specifies the name of the Snapshot resource. Changing this forces a new resource to be created. Name pulumi.StringPtrInput + // Policy for accessing the disk via network. Possible values are `AllowAll`, `AllowPrivate`, or `DenyAll`. Defaults to `AllowAll`. + NetworkAccessPolicy pulumi.StringPtrInput + // Policy for controlling export on the disk. Possible values are `true` or `false`. Defaults to `true`. + PublicNetworkAccessEnabled pulumi.BoolPtrInput // The name of the resource group in which to create the Snapshot. Changing this forces a new resource to be created. ResourceGroupName pulumi.StringInput // Specifies a reference to an existing snapshot, when `createOption` is `Copy`. Changing this forces a new resource to be created. @@ -386,6 +406,16 @@ func (o SnapshotOutput) Name() pulumi.StringOutput { return o.ApplyT(func(v *Snapshot) pulumi.StringOutput { return v.Name }).(pulumi.StringOutput) } +// Policy for accessing the disk via network. Possible values are `AllowAll`, `AllowPrivate`, or `DenyAll`. Defaults to `AllowAll`. +func (o SnapshotOutput) NetworkAccessPolicy() pulumi.StringPtrOutput { + return o.ApplyT(func(v *Snapshot) pulumi.StringPtrOutput { return v.NetworkAccessPolicy }).(pulumi.StringPtrOutput) +} + +// Policy for controlling export on the disk. Possible values are `true` or `false`. Defaults to `true`. +func (o SnapshotOutput) PublicNetworkAccessEnabled() pulumi.BoolPtrOutput { + return o.ApplyT(func(v *Snapshot) pulumi.BoolPtrOutput { return v.PublicNetworkAccessEnabled }).(pulumi.BoolPtrOutput) +} + // The name of the resource group in which to create the Snapshot. Changing this forces a new resource to be created. func (o SnapshotOutput) ResourceGroupName() pulumi.StringOutput { return o.ApplyT(func(v *Snapshot) pulumi.StringOutput { return v.ResourceGroupName }).(pulumi.StringOutput) diff --git a/sdk/go/azure/config/config.go b/sdk/go/azure/config/config.go index f96384e405..e9fb6ca542 100644 --- a/sdk/go/azure/config/config.go +++ b/sdk/go/azure/config/config.go @@ -61,7 +61,8 @@ func GetDisableTerraformPartnerId(ctx *pulumi.Context) bool { return config.GetBool(ctx, "azure:disableTerraformPartnerId") } -// The Cloud Environment which should be used. Possible values are public, usgovernment, and china. Defaults to public. +// The Cloud Environment which should be used. Possible values are public, usgovernment, and china. Defaults to public. Not +// used and should not be specified when `metadataHost` is specified. func GetEnvironment(ctx *pulumi.Context) string { v, err := config.Try(ctx, "azure:environment") if err == nil { diff --git a/sdk/go/azure/containerservice/clusterTrustedAccessRoleBinding.go b/sdk/go/azure/containerservice/clusterTrustedAccessRoleBinding.go index 7559252c1e..03859a08b8 100644 --- a/sdk/go/azure/containerservice/clusterTrustedAccessRoleBinding.go +++ b/sdk/go/azure/containerservice/clusterTrustedAccessRoleBinding.go @@ -18,6 +18,126 @@ import ( // > **Note:** This Resource is in **Preview** to use this you must be opted into the Preview. You can do this by running `az feature register --namespace Microsoft.ContainerService --name TrustedAccessPreview` and then `az provider register -n Microsoft.ContainerService` // . // +// ## Example Usage +// +// +// ```go +// package main +// +// import ( +// +// "github.com/pulumi/pulumi-azure/sdk/v5/go/azure/appinsights" +// "github.com/pulumi/pulumi-azure/sdk/v5/go/azure/containerservice" +// "github.com/pulumi/pulumi-azure/sdk/v5/go/azure/core" +// "github.com/pulumi/pulumi-azure/sdk/v5/go/azure/keyvault" +// "github.com/pulumi/pulumi-azure/sdk/v5/go/azure/machinelearning" +// "github.com/pulumi/pulumi-azure/sdk/v5/go/azure/storage" +// "github.com/pulumi/pulumi/sdk/v3/go/pulumi" +// +// ) +// +// func main() { +// pulumi.Run(func(ctx *pulumi.Context) error { +// exampleResourceGroup, err := core.NewResourceGroup(ctx, "example", &core.ResourceGroupArgs{ +// Name: pulumi.String("example-resources"), +// Location: pulumi.String("West Europe"), +// }) +// if err != nil { +// return err +// } +// example, err := appinsights.NewInsights(ctx, "example", &appinsights.InsightsArgs{ +// Name: pulumi.String("example"), +// Location: exampleResourceGroup.Location, +// ResourceGroupName: exampleResourceGroup.Name, +// ApplicationType: pulumi.String("example-value"), +// }) +// if err != nil { +// return err +// } +// _, err = core.GetClientConfig(ctx, nil, nil) +// if err != nil { +// return err +// } +// exampleKeyVault, err := keyvault.NewKeyVault(ctx, "example", &keyvault.KeyVaultArgs{ +// Name: pulumi.String("example"), +// Location: exampleResourceGroup.Location, +// ResourceGroupName: exampleResourceGroup.Name, +// TenantId: pulumi.Any(exampleAzurermClientConfig.TenantId), +// SkuName: pulumi.String("example-value"), +// SoftDeleteRetentionDays: pulumi.Int("example-value"), +// }) +// if err != nil { +// return err +// } +// _, err = keyvault.NewAccessPolicy(ctx, "example", &keyvault.AccessPolicyArgs{ +// KeyVaultId: exampleKeyVault.ID(), +// TenantId: pulumi.Any(exampleAzurermClientConfig.TenantId), +// ObjectId: pulumi.Any(exampleAzurermClientConfig.ObjectId), +// KeyPermissions: pulumi.StringArray("example-value"), +// }) +// if err != nil { +// return err +// } +// exampleKubernetesCluster, err := containerservice.NewKubernetesCluster(ctx, "example", &containerservice.KubernetesClusterArgs{ +// Name: pulumi.String("example"), +// Location: exampleResourceGroup.Location, +// ResourceGroupName: exampleResourceGroup.Name, +// DnsPrefix: pulumi.String("acctestaksexample"), +// DefaultNodePool: &containerservice.KubernetesClusterDefaultNodePoolArgs{ +// Name: pulumi.String("example-value"), +// NodeCount: pulumi.Int("example-value"), +// VmSize: pulumi.String("example-value"), +// UpgradeSettings: &containerservice.KubernetesClusterDefaultNodePoolUpgradeSettingsArgs{ +// MaxSurge: pulumi.String("example-value"), +// }, +// }, +// Identity: &containerservice.KubernetesClusterIdentityArgs{ +// Type: pulumi.String("example-value"), +// }, +// }) +// if err != nil { +// return err +// } +// exampleAccount, err := storage.NewAccount(ctx, "example", &storage.AccountArgs{ +// Name: pulumi.String("example"), +// Location: exampleResourceGroup.Location, +// ResourceGroupName: exampleResourceGroup.Name, +// AccountTier: pulumi.String("example-value"), +// AccountReplicationType: pulumi.String("example-value"), +// }) +// if err != nil { +// return err +// } +// exampleWorkspace, err := machinelearning.NewWorkspace(ctx, "example", &machinelearning.WorkspaceArgs{ +// Name: pulumi.String("example"), +// Location: exampleResourceGroup.Location, +// ResourceGroupName: exampleResourceGroup.Name, +// KeyVaultId: exampleKeyVault.ID(), +// StorageAccountId: exampleAccount.ID(), +// ApplicationInsightsId: example.ID(), +// Identity: &machinelearning.WorkspaceIdentityArgs{ +// Type: pulumi.String("example-value"), +// }, +// }) +// if err != nil { +// return err +// } +// _, err = containerservice.NewClusterTrustedAccessRoleBinding(ctx, "example", &containerservice.ClusterTrustedAccessRoleBindingArgs{ +// KubernetesClusterId: exampleKubernetesCluster.ID(), +// Name: pulumi.String("example"), +// Roles: pulumi.StringArray("example-value"), +// SourceResourceId: exampleWorkspace.ID(), +// }) +// if err != nil { +// return err +// } +// return nil +// }) +// } +// +// ``` +// +// // ## Import // // An existing Kubernetes Cluster Trusted Access Role Binding can be imported into Terraform using the `resource id`, e.g. diff --git a/sdk/go/azure/containerservice/fleetMember.go b/sdk/go/azure/containerservice/fleetMember.go index 767bbf04a9..b0ec108a1e 100644 --- a/sdk/go/azure/containerservice/fleetMember.go +++ b/sdk/go/azure/containerservice/fleetMember.go @@ -16,6 +16,72 @@ import ( // // Manages a Kubernetes Fleet Member. // +// ## Example Usage +// +// +// ```go +// package main +// +// import ( +// +// "github.com/pulumi/pulumi-azure/sdk/v5/go/azure/containerservice" +// "github.com/pulumi/pulumi-azure/sdk/v5/go/azure/core" +// "github.com/pulumi/pulumi/sdk/v3/go/pulumi" +// +// ) +// +// func main() { +// pulumi.Run(func(ctx *pulumi.Context) error { +// exampleResourceGroup, err := core.NewResourceGroup(ctx, "example", &core.ResourceGroupArgs{ +// Name: pulumi.String("example-resources"), +// Location: pulumi.String("West Europe"), +// }) +// if err != nil { +// return err +// } +// example, err := containerservice.NewKubernetesCluster(ctx, "example", &containerservice.KubernetesClusterArgs{ +// Name: pulumi.String("example"), +// Location: exampleResourceGroup.Location, +// ResourceGroupName: exampleResourceGroup.Name, +// DnsPrefix: pulumi.String("acctestaksexample"), +// DefaultNodePool: &containerservice.KubernetesClusterDefaultNodePoolArgs{ +// Name: pulumi.String("example-value"), +// NodeCount: pulumi.Int("example-value"), +// VmSize: pulumi.String("example-value"), +// UpgradeSettings: &containerservice.KubernetesClusterDefaultNodePoolUpgradeSettingsArgs{ +// MaxSurge: pulumi.String("example-value"), +// }, +// }, +// Identity: &containerservice.KubernetesClusterIdentityArgs{ +// Type: pulumi.String("example-value"), +// }, +// }) +// if err != nil { +// return err +// } +// exampleKubernetesFleetManager, err := containerservice.NewKubernetesFleetManager(ctx, "example", &containerservice.KubernetesFleetManagerArgs{ +// Name: pulumi.String("example"), +// Location: exampleResourceGroup.Location, +// ResourceGroupName: exampleResourceGroup.Name, +// }) +// if err != nil { +// return err +// } +// _, err = containerservice.NewFleetMember(ctx, "example", &containerservice.FleetMemberArgs{ +// KubernetesClusterId: example.ID(), +// KubernetesFleetId: exampleKubernetesFleetManager.ID(), +// Name: pulumi.String("example"), +// }) +// if err != nil { +// return err +// } +// return nil +// }) +// } +// +// ``` +// +// // ## Import // // An existing Kubernetes Fleet Member can be imported into Terraform using the `resource id`, e.g. diff --git a/sdk/go/azure/cosmosdb/account.go b/sdk/go/azure/cosmosdb/account.go index 5443b391b1..5b2b5221e5 100644 --- a/sdk/go/azure/cosmosdb/account.go +++ b/sdk/go/azure/cosmosdb/account.go @@ -183,13 +183,15 @@ type Account struct { AnalyticalStorage AccountAnalyticalStorageOutput `pulumi:"analyticalStorage"` // Enable Analytical Storage option for this Cosmos DB account. Defaults to `false`. Enabling and then disabling analytical storage forces a new resource to be created. AnalyticalStorageEnabled pulumi.BoolPtrOutput `pulumi:"analyticalStorageEnabled"` + // Enable automatic failover for this Cosmos DB account. + AutomaticFailoverEnabled pulumi.BoolOutput `pulumi:"automaticFailoverEnabled"` // A `backup` block as defined below. Backup AccountBackupOutput `pulumi:"backup"` // The capabilities which should be enabled for this Cosmos DB account. Value is a `capabilities` block as defined below. Capabilities AccountCapabilityArrayOutput `pulumi:"capabilities"` // A `capacity` block as defined below. Capacity AccountCapacityOutput `pulumi:"capacity"` - // A list of connection strings available for this CosmosDB account. + // Deprecated: This property has been superseded by the primary and secondary connection strings for sql, mongodb and readonly and will be removed in v4.0 of the AzureRM provider ConnectionStrings pulumi.StringArrayOutput `pulumi:"connectionStrings"` // Specifies one `consistencyPolicy` block as defined below, used to define the consistency policy for this CosmosDB account. ConsistencyPolicy AccountConsistencyPolicyOutput `pulumi:"consistencyPolicy"` @@ -201,14 +203,16 @@ type Account struct { CreateMode pulumi.StringOutput `pulumi:"createMode"` // The default identity for accessing Key Vault. Possible values are `FirstPartyIdentity`, `SystemAssignedIdentity` or `UserAssignedIdentity`. Defaults to `FirstPartyIdentity`. DefaultIdentityType pulumi.StringPtrOutput `pulumi:"defaultIdentityType"` - // Enable automatic failover for this Cosmos DB account. - EnableAutomaticFailover pulumi.BoolPtrOutput `pulumi:"enableAutomaticFailover"` - // Enable the Free Tier pricing option for this Cosmos DB account. Defaults to `false`. Changing this forces a new resource to be created. - EnableFreeTier pulumi.BoolPtrOutput `pulumi:"enableFreeTier"` - // Enable multiple write locations for this Cosmos DB account. - EnableMultipleWriteLocations pulumi.BoolPtrOutput `pulumi:"enableMultipleWriteLocations"` + // Deprecated: This property has been superseded by `automaticFailoverEnabled` and will be removed in v4.0 of the AzureRM Provider + EnableAutomaticFailover pulumi.BoolOutput `pulumi:"enableAutomaticFailover"` + // Deprecated: This property has been superseded by `freeTierEnabled` and will be removed in v4.0 of the AzureRM Provider + EnableFreeTier pulumi.BoolOutput `pulumi:"enableFreeTier"` + // Deprecated: This property has been superseded by `multipleWriteLocationsEnabled` and will be removed in v4.0 of the AzureRM Provider + EnableMultipleWriteLocations pulumi.BoolOutput `pulumi:"enableMultipleWriteLocations"` // The endpoint used to connect to the CosmosDB account. Endpoint pulumi.StringOutput `pulumi:"endpoint"` + // Enable the Free Tier pricing option for this Cosmos DB account. Defaults to `false`. Changing this forces a new resource to be created. + FreeTierEnabled pulumi.BoolOutput `pulumi:"freeTierEnabled"` // Specifies a `geoLocation` resource, used to define where data should be replicated with the `failoverPriority` 0 specifying the primary location. Value is a `geoLocation` block as defined below. GeoLocations AccountGeoLocationArrayOutput `pulumi:"geoLocations"` // An `identity` block as defined below. @@ -237,6 +241,8 @@ type Account struct { MinimalTlsVersion pulumi.StringOutput `pulumi:"minimalTlsVersion"` // The Server Version of a MongoDB account. Possible values are `4.2`, `4.0`, `3.6`, and `3.2`. MongoServerVersion pulumi.StringOutput `pulumi:"mongoServerVersion"` + // Enable multiple write locations for this Cosmos DB account. + MultipleWriteLocationsEnabled pulumi.BoolOutput `pulumi:"multipleWriteLocationsEnabled"` // Specifies the name of the CosmosDB Account. Changing this forces a new resource to be created. Name pulumi.StringOutput `pulumi:"name"` // If Azure services can bypass ACLs. Defaults to `false`. @@ -353,13 +359,15 @@ type accountState struct { AnalyticalStorage *AccountAnalyticalStorage `pulumi:"analyticalStorage"` // Enable Analytical Storage option for this Cosmos DB account. Defaults to `false`. Enabling and then disabling analytical storage forces a new resource to be created. AnalyticalStorageEnabled *bool `pulumi:"analyticalStorageEnabled"` + // Enable automatic failover for this Cosmos DB account. + AutomaticFailoverEnabled *bool `pulumi:"automaticFailoverEnabled"` // A `backup` block as defined below. Backup *AccountBackup `pulumi:"backup"` // The capabilities which should be enabled for this Cosmos DB account. Value is a `capabilities` block as defined below. Capabilities []AccountCapability `pulumi:"capabilities"` // A `capacity` block as defined below. Capacity *AccountCapacity `pulumi:"capacity"` - // A list of connection strings available for this CosmosDB account. + // Deprecated: This property has been superseded by the primary and secondary connection strings for sql, mongodb and readonly and will be removed in v4.0 of the AzureRM provider ConnectionStrings []string `pulumi:"connectionStrings"` // Specifies one `consistencyPolicy` block as defined below, used to define the consistency policy for this CosmosDB account. ConsistencyPolicy *AccountConsistencyPolicy `pulumi:"consistencyPolicy"` @@ -371,14 +379,16 @@ type accountState struct { CreateMode *string `pulumi:"createMode"` // The default identity for accessing Key Vault. Possible values are `FirstPartyIdentity`, `SystemAssignedIdentity` or `UserAssignedIdentity`. Defaults to `FirstPartyIdentity`. DefaultIdentityType *string `pulumi:"defaultIdentityType"` - // Enable automatic failover for this Cosmos DB account. + // Deprecated: This property has been superseded by `automaticFailoverEnabled` and will be removed in v4.0 of the AzureRM Provider EnableAutomaticFailover *bool `pulumi:"enableAutomaticFailover"` - // Enable the Free Tier pricing option for this Cosmos DB account. Defaults to `false`. Changing this forces a new resource to be created. + // Deprecated: This property has been superseded by `freeTierEnabled` and will be removed in v4.0 of the AzureRM Provider EnableFreeTier *bool `pulumi:"enableFreeTier"` - // Enable multiple write locations for this Cosmos DB account. + // Deprecated: This property has been superseded by `multipleWriteLocationsEnabled` and will be removed in v4.0 of the AzureRM Provider EnableMultipleWriteLocations *bool `pulumi:"enableMultipleWriteLocations"` // The endpoint used to connect to the CosmosDB account. Endpoint *string `pulumi:"endpoint"` + // Enable the Free Tier pricing option for this Cosmos DB account. Defaults to `false`. Changing this forces a new resource to be created. + FreeTierEnabled *bool `pulumi:"freeTierEnabled"` // Specifies a `geoLocation` resource, used to define where data should be replicated with the `failoverPriority` 0 specifying the primary location. Value is a `geoLocation` block as defined below. GeoLocations []AccountGeoLocation `pulumi:"geoLocations"` // An `identity` block as defined below. @@ -407,6 +417,8 @@ type accountState struct { MinimalTlsVersion *string `pulumi:"minimalTlsVersion"` // The Server Version of a MongoDB account. Possible values are `4.2`, `4.0`, `3.6`, and `3.2`. MongoServerVersion *string `pulumi:"mongoServerVersion"` + // Enable multiple write locations for this Cosmos DB account. + MultipleWriteLocationsEnabled *bool `pulumi:"multipleWriteLocationsEnabled"` // Specifies the name of the CosmosDB Account. Changing this forces a new resource to be created. Name *string `pulumi:"name"` // If Azure services can bypass ACLs. Defaults to `false`. @@ -466,13 +478,15 @@ type AccountState struct { AnalyticalStorage AccountAnalyticalStoragePtrInput // Enable Analytical Storage option for this Cosmos DB account. Defaults to `false`. Enabling and then disabling analytical storage forces a new resource to be created. AnalyticalStorageEnabled pulumi.BoolPtrInput + // Enable automatic failover for this Cosmos DB account. + AutomaticFailoverEnabled pulumi.BoolPtrInput // A `backup` block as defined below. Backup AccountBackupPtrInput // The capabilities which should be enabled for this Cosmos DB account. Value is a `capabilities` block as defined below. Capabilities AccountCapabilityArrayInput // A `capacity` block as defined below. Capacity AccountCapacityPtrInput - // A list of connection strings available for this CosmosDB account. + // Deprecated: This property has been superseded by the primary and secondary connection strings for sql, mongodb and readonly and will be removed in v4.0 of the AzureRM provider ConnectionStrings pulumi.StringArrayInput // Specifies one `consistencyPolicy` block as defined below, used to define the consistency policy for this CosmosDB account. ConsistencyPolicy AccountConsistencyPolicyPtrInput @@ -484,14 +498,16 @@ type AccountState struct { CreateMode pulumi.StringPtrInput // The default identity for accessing Key Vault. Possible values are `FirstPartyIdentity`, `SystemAssignedIdentity` or `UserAssignedIdentity`. Defaults to `FirstPartyIdentity`. DefaultIdentityType pulumi.StringPtrInput - // Enable automatic failover for this Cosmos DB account. + // Deprecated: This property has been superseded by `automaticFailoverEnabled` and will be removed in v4.0 of the AzureRM Provider EnableAutomaticFailover pulumi.BoolPtrInput - // Enable the Free Tier pricing option for this Cosmos DB account. Defaults to `false`. Changing this forces a new resource to be created. + // Deprecated: This property has been superseded by `freeTierEnabled` and will be removed in v4.0 of the AzureRM Provider EnableFreeTier pulumi.BoolPtrInput - // Enable multiple write locations for this Cosmos DB account. + // Deprecated: This property has been superseded by `multipleWriteLocationsEnabled` and will be removed in v4.0 of the AzureRM Provider EnableMultipleWriteLocations pulumi.BoolPtrInput // The endpoint used to connect to the CosmosDB account. Endpoint pulumi.StringPtrInput + // Enable the Free Tier pricing option for this Cosmos DB account. Defaults to `false`. Changing this forces a new resource to be created. + FreeTierEnabled pulumi.BoolPtrInput // Specifies a `geoLocation` resource, used to define where data should be replicated with the `failoverPriority` 0 specifying the primary location. Value is a `geoLocation` block as defined below. GeoLocations AccountGeoLocationArrayInput // An `identity` block as defined below. @@ -520,6 +536,8 @@ type AccountState struct { MinimalTlsVersion pulumi.StringPtrInput // The Server Version of a MongoDB account. Possible values are `4.2`, `4.0`, `3.6`, and `3.2`. MongoServerVersion pulumi.StringPtrInput + // Enable multiple write locations for this Cosmos DB account. + MultipleWriteLocationsEnabled pulumi.BoolPtrInput // Specifies the name of the CosmosDB Account. Changing this forces a new resource to be created. Name pulumi.StringPtrInput // If Azure services can bypass ACLs. Defaults to `false`. @@ -583,6 +601,8 @@ type accountArgs struct { AnalyticalStorage *AccountAnalyticalStorage `pulumi:"analyticalStorage"` // Enable Analytical Storage option for this Cosmos DB account. Defaults to `false`. Enabling and then disabling analytical storage forces a new resource to be created. AnalyticalStorageEnabled *bool `pulumi:"analyticalStorageEnabled"` + // Enable automatic failover for this Cosmos DB account. + AutomaticFailoverEnabled *bool `pulumi:"automaticFailoverEnabled"` // A `backup` block as defined below. Backup *AccountBackup `pulumi:"backup"` // The capabilities which should be enabled for this Cosmos DB account. Value is a `capabilities` block as defined below. @@ -599,12 +619,14 @@ type accountArgs struct { CreateMode *string `pulumi:"createMode"` // The default identity for accessing Key Vault. Possible values are `FirstPartyIdentity`, `SystemAssignedIdentity` or `UserAssignedIdentity`. Defaults to `FirstPartyIdentity`. DefaultIdentityType *string `pulumi:"defaultIdentityType"` - // Enable automatic failover for this Cosmos DB account. + // Deprecated: This property has been superseded by `automaticFailoverEnabled` and will be removed in v4.0 of the AzureRM Provider EnableAutomaticFailover *bool `pulumi:"enableAutomaticFailover"` - // Enable the Free Tier pricing option for this Cosmos DB account. Defaults to `false`. Changing this forces a new resource to be created. + // Deprecated: This property has been superseded by `freeTierEnabled` and will be removed in v4.0 of the AzureRM Provider EnableFreeTier *bool `pulumi:"enableFreeTier"` - // Enable multiple write locations for this Cosmos DB account. + // Deprecated: This property has been superseded by `multipleWriteLocationsEnabled` and will be removed in v4.0 of the AzureRM Provider EnableMultipleWriteLocations *bool `pulumi:"enableMultipleWriteLocations"` + // Enable the Free Tier pricing option for this Cosmos DB account. Defaults to `false`. Changing this forces a new resource to be created. + FreeTierEnabled *bool `pulumi:"freeTierEnabled"` // Specifies a `geoLocation` resource, used to define where data should be replicated with the `failoverPriority` 0 specifying the primary location. Value is a `geoLocation` block as defined below. GeoLocations []AccountGeoLocation `pulumi:"geoLocations"` // An `identity` block as defined below. @@ -633,6 +655,8 @@ type accountArgs struct { MinimalTlsVersion *string `pulumi:"minimalTlsVersion"` // The Server Version of a MongoDB account. Possible values are `4.2`, `4.0`, `3.6`, and `3.2`. MongoServerVersion *string `pulumi:"mongoServerVersion"` + // Enable multiple write locations for this Cosmos DB account. + MultipleWriteLocationsEnabled *bool `pulumi:"multipleWriteLocationsEnabled"` // Specifies the name of the CosmosDB Account. Changing this forces a new resource to be created. Name *string `pulumi:"name"` // If Azure services can bypass ACLs. Defaults to `false`. @@ -665,6 +689,8 @@ type AccountArgs struct { AnalyticalStorage AccountAnalyticalStoragePtrInput // Enable Analytical Storage option for this Cosmos DB account. Defaults to `false`. Enabling and then disabling analytical storage forces a new resource to be created. AnalyticalStorageEnabled pulumi.BoolPtrInput + // Enable automatic failover for this Cosmos DB account. + AutomaticFailoverEnabled pulumi.BoolPtrInput // A `backup` block as defined below. Backup AccountBackupPtrInput // The capabilities which should be enabled for this Cosmos DB account. Value is a `capabilities` block as defined below. @@ -681,12 +707,14 @@ type AccountArgs struct { CreateMode pulumi.StringPtrInput // The default identity for accessing Key Vault. Possible values are `FirstPartyIdentity`, `SystemAssignedIdentity` or `UserAssignedIdentity`. Defaults to `FirstPartyIdentity`. DefaultIdentityType pulumi.StringPtrInput - // Enable automatic failover for this Cosmos DB account. + // Deprecated: This property has been superseded by `automaticFailoverEnabled` and will be removed in v4.0 of the AzureRM Provider EnableAutomaticFailover pulumi.BoolPtrInput - // Enable the Free Tier pricing option for this Cosmos DB account. Defaults to `false`. Changing this forces a new resource to be created. + // Deprecated: This property has been superseded by `freeTierEnabled` and will be removed in v4.0 of the AzureRM Provider EnableFreeTier pulumi.BoolPtrInput - // Enable multiple write locations for this Cosmos DB account. + // Deprecated: This property has been superseded by `multipleWriteLocationsEnabled` and will be removed in v4.0 of the AzureRM Provider EnableMultipleWriteLocations pulumi.BoolPtrInput + // Enable the Free Tier pricing option for this Cosmos DB account. Defaults to `false`. Changing this forces a new resource to be created. + FreeTierEnabled pulumi.BoolPtrInput // Specifies a `geoLocation` resource, used to define where data should be replicated with the `failoverPriority` 0 specifying the primary location. Value is a `geoLocation` block as defined below. GeoLocations AccountGeoLocationArrayInput // An `identity` block as defined below. @@ -715,6 +743,8 @@ type AccountArgs struct { MinimalTlsVersion pulumi.StringPtrInput // The Server Version of a MongoDB account. Possible values are `4.2`, `4.0`, `3.6`, and `3.2`. MongoServerVersion pulumi.StringPtrInput + // Enable multiple write locations for this Cosmos DB account. + MultipleWriteLocationsEnabled pulumi.BoolPtrInput // Specifies the name of the CosmosDB Account. Changing this forces a new resource to be created. Name pulumi.StringPtrInput // If Azure services can bypass ACLs. Defaults to `false`. @@ -841,6 +871,11 @@ func (o AccountOutput) AnalyticalStorageEnabled() pulumi.BoolPtrOutput { return o.ApplyT(func(v *Account) pulumi.BoolPtrOutput { return v.AnalyticalStorageEnabled }).(pulumi.BoolPtrOutput) } +// Enable automatic failover for this Cosmos DB account. +func (o AccountOutput) AutomaticFailoverEnabled() pulumi.BoolOutput { + return o.ApplyT(func(v *Account) pulumi.BoolOutput { return v.AutomaticFailoverEnabled }).(pulumi.BoolOutput) +} + // A `backup` block as defined below. func (o AccountOutput) Backup() AccountBackupOutput { return o.ApplyT(func(v *Account) AccountBackupOutput { return v.Backup }).(AccountBackupOutput) @@ -856,7 +891,7 @@ func (o AccountOutput) Capacity() AccountCapacityOutput { return o.ApplyT(func(v *Account) AccountCapacityOutput { return v.Capacity }).(AccountCapacityOutput) } -// A list of connection strings available for this CosmosDB account. +// Deprecated: This property has been superseded by the primary and secondary connection strings for sql, mongodb and readonly and will be removed in v4.0 of the AzureRM provider func (o AccountOutput) ConnectionStrings() pulumi.StringArrayOutput { return o.ApplyT(func(v *Account) pulumi.StringArrayOutput { return v.ConnectionStrings }).(pulumi.StringArrayOutput) } @@ -883,19 +918,19 @@ func (o AccountOutput) DefaultIdentityType() pulumi.StringPtrOutput { return o.ApplyT(func(v *Account) pulumi.StringPtrOutput { return v.DefaultIdentityType }).(pulumi.StringPtrOutput) } -// Enable automatic failover for this Cosmos DB account. -func (o AccountOutput) EnableAutomaticFailover() pulumi.BoolPtrOutput { - return o.ApplyT(func(v *Account) pulumi.BoolPtrOutput { return v.EnableAutomaticFailover }).(pulumi.BoolPtrOutput) +// Deprecated: This property has been superseded by `automaticFailoverEnabled` and will be removed in v4.0 of the AzureRM Provider +func (o AccountOutput) EnableAutomaticFailover() pulumi.BoolOutput { + return o.ApplyT(func(v *Account) pulumi.BoolOutput { return v.EnableAutomaticFailover }).(pulumi.BoolOutput) } -// Enable the Free Tier pricing option for this Cosmos DB account. Defaults to `false`. Changing this forces a new resource to be created. -func (o AccountOutput) EnableFreeTier() pulumi.BoolPtrOutput { - return o.ApplyT(func(v *Account) pulumi.BoolPtrOutput { return v.EnableFreeTier }).(pulumi.BoolPtrOutput) +// Deprecated: This property has been superseded by `freeTierEnabled` and will be removed in v4.0 of the AzureRM Provider +func (o AccountOutput) EnableFreeTier() pulumi.BoolOutput { + return o.ApplyT(func(v *Account) pulumi.BoolOutput { return v.EnableFreeTier }).(pulumi.BoolOutput) } -// Enable multiple write locations for this Cosmos DB account. -func (o AccountOutput) EnableMultipleWriteLocations() pulumi.BoolPtrOutput { - return o.ApplyT(func(v *Account) pulumi.BoolPtrOutput { return v.EnableMultipleWriteLocations }).(pulumi.BoolPtrOutput) +// Deprecated: This property has been superseded by `multipleWriteLocationsEnabled` and will be removed in v4.0 of the AzureRM Provider +func (o AccountOutput) EnableMultipleWriteLocations() pulumi.BoolOutput { + return o.ApplyT(func(v *Account) pulumi.BoolOutput { return v.EnableMultipleWriteLocations }).(pulumi.BoolOutput) } // The endpoint used to connect to the CosmosDB account. @@ -903,6 +938,11 @@ func (o AccountOutput) Endpoint() pulumi.StringOutput { return o.ApplyT(func(v *Account) pulumi.StringOutput { return v.Endpoint }).(pulumi.StringOutput) } +// Enable the Free Tier pricing option for this Cosmos DB account. Defaults to `false`. Changing this forces a new resource to be created. +func (o AccountOutput) FreeTierEnabled() pulumi.BoolOutput { + return o.ApplyT(func(v *Account) pulumi.BoolOutput { return v.FreeTierEnabled }).(pulumi.BoolOutput) +} + // Specifies a `geoLocation` resource, used to define where data should be replicated with the `failoverPriority` 0 specifying the primary location. Value is a `geoLocation` block as defined below. func (o AccountOutput) GeoLocations() AccountGeoLocationArrayOutput { return o.ApplyT(func(v *Account) AccountGeoLocationArrayOutput { return v.GeoLocations }).(AccountGeoLocationArrayOutput) @@ -961,6 +1001,11 @@ func (o AccountOutput) MongoServerVersion() pulumi.StringOutput { return o.ApplyT(func(v *Account) pulumi.StringOutput { return v.MongoServerVersion }).(pulumi.StringOutput) } +// Enable multiple write locations for this Cosmos DB account. +func (o AccountOutput) MultipleWriteLocationsEnabled() pulumi.BoolOutput { + return o.ApplyT(func(v *Account) pulumi.BoolOutput { return v.MultipleWriteLocationsEnabled }).(pulumi.BoolOutput) +} + // Specifies the name of the CosmosDB Account. Changing this forces a new resource to be created. func (o AccountOutput) Name() pulumi.StringOutput { return o.ApplyT(func(v *Account) pulumi.StringOutput { return v.Name }).(pulumi.StringOutput) diff --git a/sdk/go/azure/cosmosdb/getAccount.go b/sdk/go/azure/cosmosdb/getAccount.go index 3e9c63a751..8c9f1fe75e 100644 --- a/sdk/go/azure/cosmosdb/getAccount.go +++ b/sdk/go/azure/cosmosdb/getAccount.go @@ -62,20 +62,24 @@ type LookupAccountArgs struct { // A collection of values returned by getAccount. type LookupAccountResult struct { + // If automatic failover is enabled for this CosmosDB Account. + AutomaticFailoverEnabled bool `pulumi:"automaticFailoverEnabled"` // Capabilities enabled on this Cosmos DB account. Capabilities []GetAccountCapability `pulumi:"capabilities"` - // A list of connection strings available for this CosmosDB account. + // Deprecated: This property has been superseded by the primary and secondary connection strings for sql, mongodb and readonly and will be removed in v4.0 of the AzureRM provider ConnectionStrings []string `pulumi:"connectionStrings"` ConsistencyPolicies []GetAccountConsistencyPolicy `pulumi:"consistencyPolicies"` - // If automatic failover is enabled for this CosmosDB Account. + // Deprecated: This property has been renamed to `automaticFailoverEnabled` and will be removed in v4.0 of the AzureRM provider EnableAutomaticFailover bool `pulumi:"enableAutomaticFailover"` - // If Free Tier pricing option is enabled for this CosmosDB Account. You can have up to one free tier Azure Cosmos DB account per Azure subscription. + // Deprecated: This property has been renamed to `freeTierEnabled` and will be removed in v4.0 of the AzureRM provider EnableFreeTier bool `pulumi:"enableFreeTier"` - // If multiple write locations are enabled for this Cosmos DB account. + // Deprecated: This property has been renamed to `multipleWriteLocationsEnabled` and will be removed in v4.0 of the AzureRM provider EnableMultipleWriteLocations bool `pulumi:"enableMultipleWriteLocations"` // The endpoint used to connect to the CosmosDB account. - Endpoint string `pulumi:"endpoint"` - GeoLocations []GetAccountGeoLocation `pulumi:"geoLocations"` + Endpoint string `pulumi:"endpoint"` + // If Free Tier pricing option is enabled for this CosmosDB Account. You can have up to one free tier Azure Cosmos DB account per Azure subscription. + FreeTierEnabled bool `pulumi:"freeTierEnabled"` + GeoLocations []GetAccountGeoLocation `pulumi:"geoLocations"` // The provider-assigned unique ID for this managed resource. Id string `pulumi:"id"` // The current IP Filter for this CosmosDB account @@ -88,7 +92,9 @@ type LookupAccountResult struct { Kind string `pulumi:"kind"` // The name of the Azure region hosting replicated data. Location string `pulumi:"location"` - Name string `pulumi:"name"` + // If multiple write locations are enabled for this Cosmos DB account. + MultipleWriteLocationsEnabled bool `pulumi:"multipleWriteLocationsEnabled"` + Name string `pulumi:"name"` // The Offer Type to used by this CosmosDB Account. OfferType string `pulumi:"offerType"` // The primary key for the CosmosDB account. @@ -166,12 +172,17 @@ func (o LookupAccountResultOutput) ToLookupAccountResultOutputWithContext(ctx co return o } +// If automatic failover is enabled for this CosmosDB Account. +func (o LookupAccountResultOutput) AutomaticFailoverEnabled() pulumi.BoolOutput { + return o.ApplyT(func(v LookupAccountResult) bool { return v.AutomaticFailoverEnabled }).(pulumi.BoolOutput) +} + // Capabilities enabled on this Cosmos DB account. func (o LookupAccountResultOutput) Capabilities() GetAccountCapabilityArrayOutput { return o.ApplyT(func(v LookupAccountResult) []GetAccountCapability { return v.Capabilities }).(GetAccountCapabilityArrayOutput) } -// A list of connection strings available for this CosmosDB account. +// Deprecated: This property has been superseded by the primary and secondary connection strings for sql, mongodb and readonly and will be removed in v4.0 of the AzureRM provider func (o LookupAccountResultOutput) ConnectionStrings() pulumi.StringArrayOutput { return o.ApplyT(func(v LookupAccountResult) []string { return v.ConnectionStrings }).(pulumi.StringArrayOutput) } @@ -180,17 +191,17 @@ func (o LookupAccountResultOutput) ConsistencyPolicies() GetAccountConsistencyPo return o.ApplyT(func(v LookupAccountResult) []GetAccountConsistencyPolicy { return v.ConsistencyPolicies }).(GetAccountConsistencyPolicyArrayOutput) } -// If automatic failover is enabled for this CosmosDB Account. +// Deprecated: This property has been renamed to `automaticFailoverEnabled` and will be removed in v4.0 of the AzureRM provider func (o LookupAccountResultOutput) EnableAutomaticFailover() pulumi.BoolOutput { return o.ApplyT(func(v LookupAccountResult) bool { return v.EnableAutomaticFailover }).(pulumi.BoolOutput) } -// If Free Tier pricing option is enabled for this CosmosDB Account. You can have up to one free tier Azure Cosmos DB account per Azure subscription. +// Deprecated: This property has been renamed to `freeTierEnabled` and will be removed in v4.0 of the AzureRM provider func (o LookupAccountResultOutput) EnableFreeTier() pulumi.BoolOutput { return o.ApplyT(func(v LookupAccountResult) bool { return v.EnableFreeTier }).(pulumi.BoolOutput) } -// If multiple write locations are enabled for this Cosmos DB account. +// Deprecated: This property has been renamed to `multipleWriteLocationsEnabled` and will be removed in v4.0 of the AzureRM provider func (o LookupAccountResultOutput) EnableMultipleWriteLocations() pulumi.BoolOutput { return o.ApplyT(func(v LookupAccountResult) bool { return v.EnableMultipleWriteLocations }).(pulumi.BoolOutput) } @@ -200,6 +211,11 @@ func (o LookupAccountResultOutput) Endpoint() pulumi.StringOutput { return o.ApplyT(func(v LookupAccountResult) string { return v.Endpoint }).(pulumi.StringOutput) } +// If Free Tier pricing option is enabled for this CosmosDB Account. You can have up to one free tier Azure Cosmos DB account per Azure subscription. +func (o LookupAccountResultOutput) FreeTierEnabled() pulumi.BoolOutput { + return o.ApplyT(func(v LookupAccountResult) bool { return v.FreeTierEnabled }).(pulumi.BoolOutput) +} + func (o LookupAccountResultOutput) GeoLocations() GetAccountGeoLocationArrayOutput { return o.ApplyT(func(v LookupAccountResult) []GetAccountGeoLocation { return v.GeoLocations }).(GetAccountGeoLocationArrayOutput) } @@ -234,6 +250,11 @@ func (o LookupAccountResultOutput) Location() pulumi.StringOutput { return o.ApplyT(func(v LookupAccountResult) string { return v.Location }).(pulumi.StringOutput) } +// If multiple write locations are enabled for this Cosmos DB account. +func (o LookupAccountResultOutput) MultipleWriteLocationsEnabled() pulumi.BoolOutput { + return o.ApplyT(func(v LookupAccountResult) bool { return v.MultipleWriteLocationsEnabled }).(pulumi.BoolOutput) +} + func (o LookupAccountResultOutput) Name() pulumi.StringOutput { return o.ApplyT(func(v LookupAccountResult) string { return v.Name }).(pulumi.StringOutput) } diff --git a/sdk/go/azure/keyvault/certifiate.go b/sdk/go/azure/keyvault/certifiate.go index 33915b5990..188e72da86 100644 --- a/sdk/go/azure/keyvault/certifiate.go +++ b/sdk/go/azure/keyvault/certifiate.go @@ -14,11 +14,6 @@ import ( // Manages a Key Vault Certificate. // -// <<<<<<< HEAD -// > **Note:** The Azure Provider includes a Feature Toggle which will purge a Key Vault Certificate resource on destroy, rather than the default soft-delete. See `purgeSoftDeletedCertificatesOnDestroy` for more information. -// -// ======= -// > > > > > > > 8d78c87098 (Update-documentation) // ## Example Usage // // ### Importing A PFX) diff --git a/sdk/go/azure/keyvault/certificate.go b/sdk/go/azure/keyvault/certificate.go index f221e150f5..c1df73026c 100644 --- a/sdk/go/azure/keyvault/certificate.go +++ b/sdk/go/azure/keyvault/certificate.go @@ -14,11 +14,6 @@ import ( // Manages a Key Vault Certificate. // -// <<<<<<< HEAD -// > **Note:** The Azure Provider includes a Feature Toggle which will purge a Key Vault Certificate resource on destroy, rather than the default soft-delete. See `purgeSoftDeletedCertificatesOnDestroy` for more information. -// -// ======= -// > > > > > > > 8d78c87098 (Update-documentation) // ## Example Usage // // ### Importing A PFX) diff --git a/sdk/go/azure/keyvault/certificateContacts.go b/sdk/go/azure/keyvault/certificateContacts.go index 4ffe8ddfda..e41d50ac9c 100644 --- a/sdk/go/azure/keyvault/certificateContacts.go +++ b/sdk/go/azure/keyvault/certificateContacts.go @@ -16,6 +16,7 @@ import ( // // ## Disclaimers // +// // > **Note:** It's possible to define Key Vault Certificate Contacts both within the `keyvault.KeyVault` resource via the `contact` block and by using the `keyvault.CertificateContacts` resource. However it's not possible to use both methods to manage Certificate Contacts within a KeyVault, since there'll be conflicts. // // ## Example Usage @@ -106,6 +107,7 @@ type CertificateContacts struct { pulumi.CustomResourceState // One or more `contact` blocks as defined below. + // --> Contacts CertificateContactsContactArrayOutput `pulumi:"contacts"` // The ID of the Key Vault. Changing this forces a new resource to be created. KeyVaultId pulumi.StringOutput `pulumi:"keyVaultId"` @@ -148,6 +150,7 @@ func GetCertificateContacts(ctx *pulumi.Context, // Input properties used for looking up and filtering CertificateContacts resources. type certificateContactsState struct { // One or more `contact` blocks as defined below. + // --> Contacts []CertificateContactsContact `pulumi:"contacts"` // The ID of the Key Vault. Changing this forces a new resource to be created. KeyVaultId *string `pulumi:"keyVaultId"` @@ -155,6 +158,7 @@ type certificateContactsState struct { type CertificateContactsState struct { // One or more `contact` blocks as defined below. + // --> Contacts CertificateContactsContactArrayInput // The ID of the Key Vault. Changing this forces a new resource to be created. KeyVaultId pulumi.StringPtrInput @@ -166,6 +170,7 @@ func (CertificateContactsState) ElementType() reflect.Type { type certificateContactsArgs struct { // One or more `contact` blocks as defined below. + // --> Contacts []CertificateContactsContact `pulumi:"contacts"` // The ID of the Key Vault. Changing this forces a new resource to be created. KeyVaultId string `pulumi:"keyVaultId"` @@ -174,6 +179,7 @@ type certificateContactsArgs struct { // The set of arguments for constructing a CertificateContacts resource. type CertificateContactsArgs struct { // One or more `contact` blocks as defined below. + // --> Contacts CertificateContactsContactArrayInput // The ID of the Key Vault. Changing this forces a new resource to be created. KeyVaultId pulumi.StringInput @@ -267,6 +273,7 @@ func (o CertificateContactsOutput) ToCertificateContactsOutputWithContext(ctx co } // One or more `contact` blocks as defined below. +// --> func (o CertificateContactsOutput) Contacts() CertificateContactsContactArrayOutput { return o.ApplyT(func(v *CertificateContacts) CertificateContactsContactArrayOutput { return v.Contacts }).(CertificateContactsContactArrayOutput) } diff --git a/sdk/go/azure/keyvault/keyVault.go b/sdk/go/azure/keyvault/keyVault.go index 29747ed00b..6db29a258a 100644 --- a/sdk/go/azure/keyvault/keyVault.go +++ b/sdk/go/azure/keyvault/keyVault.go @@ -101,6 +101,8 @@ type KeyVault struct { // > **Note:** This field can only be set once user has `managecontacts` certificate permission. // // > **Note:** This field can only be set when `publicNetworkAccessEnabled` is set to `true`. To manage the `contact` with `publicNetworkAccessEnabled` set to `false`, please use the `keyvault.CertificateContacts` resource instead of this property, and remove this property from the configuration. Especially for existing `keyvault.KeyVault`, this means you'll need to import the `keyvault.CertificateContacts` manually. + // + // Deprecated: As the `contact` property requires reaching out to the dataplane, to better support private endpoints and keyvaults with public network access disabled, `contact` will be removed in favour of the `keyvault.CertificateContacts` resource in version 4.0 of the AzureRM Provider. Contacts KeyVaultContactArrayOutput `pulumi:"contacts"` // Boolean flag to specify whether Azure Key Vault uses Role Based Access Control (RBAC) for authorization of data actions. EnableRbacAuthorization pulumi.BoolPtrOutput `pulumi:"enableRbacAuthorization"` @@ -129,6 +131,8 @@ type KeyVault struct { // The number of days that items should be retained for once soft-deleted. This value can be between `7` and `90` (the default) days. // // > **Note:** This field can only be configured one time and cannot be updated. + // + // SoftDeleteRetentionDays pulumi.IntPtrOutput `pulumi:"softDeleteRetentionDays"` // A mapping of tags to assign to the resource. Tags pulumi.StringMapOutput `pulumi:"tags"` @@ -186,6 +190,8 @@ type keyVaultState struct { // > **Note:** This field can only be set once user has `managecontacts` certificate permission. // // > **Note:** This field can only be set when `publicNetworkAccessEnabled` is set to `true`. To manage the `contact` with `publicNetworkAccessEnabled` set to `false`, please use the `keyvault.CertificateContacts` resource instead of this property, and remove this property from the configuration. Especially for existing `keyvault.KeyVault`, this means you'll need to import the `keyvault.CertificateContacts` manually. + // + // Deprecated: As the `contact` property requires reaching out to the dataplane, to better support private endpoints and keyvaults with public network access disabled, `contact` will be removed in favour of the `keyvault.CertificateContacts` resource in version 4.0 of the AzureRM Provider. Contacts []KeyVaultContact `pulumi:"contacts"` // Boolean flag to specify whether Azure Key Vault uses Role Based Access Control (RBAC) for authorization of data actions. EnableRbacAuthorization *bool `pulumi:"enableRbacAuthorization"` @@ -214,6 +220,8 @@ type keyVaultState struct { // The number of days that items should be retained for once soft-deleted. This value can be between `7` and `90` (the default) days. // // > **Note:** This field can only be configured one time and cannot be updated. + // + // SoftDeleteRetentionDays *int `pulumi:"softDeleteRetentionDays"` // A mapping of tags to assign to the resource. Tags map[string]string `pulumi:"tags"` @@ -233,6 +241,8 @@ type KeyVaultState struct { // > **Note:** This field can only be set once user has `managecontacts` certificate permission. // // > **Note:** This field can only be set when `publicNetworkAccessEnabled` is set to `true`. To manage the `contact` with `publicNetworkAccessEnabled` set to `false`, please use the `keyvault.CertificateContacts` resource instead of this property, and remove this property from the configuration. Especially for existing `keyvault.KeyVault`, this means you'll need to import the `keyvault.CertificateContacts` manually. + // + // Deprecated: As the `contact` property requires reaching out to the dataplane, to better support private endpoints and keyvaults with public network access disabled, `contact` will be removed in favour of the `keyvault.CertificateContacts` resource in version 4.0 of the AzureRM Provider. Contacts KeyVaultContactArrayInput // Boolean flag to specify whether Azure Key Vault uses Role Based Access Control (RBAC) for authorization of data actions. EnableRbacAuthorization pulumi.BoolPtrInput @@ -261,6 +271,8 @@ type KeyVaultState struct { // The number of days that items should be retained for once soft-deleted. This value can be between `7` and `90` (the default) days. // // > **Note:** This field can only be configured one time and cannot be updated. + // + // SoftDeleteRetentionDays pulumi.IntPtrInput // A mapping of tags to assign to the resource. Tags pulumi.StringMapInput @@ -284,6 +296,8 @@ type keyVaultArgs struct { // > **Note:** This field can only be set once user has `managecontacts` certificate permission. // // > **Note:** This field can only be set when `publicNetworkAccessEnabled` is set to `true`. To manage the `contact` with `publicNetworkAccessEnabled` set to `false`, please use the `keyvault.CertificateContacts` resource instead of this property, and remove this property from the configuration. Especially for existing `keyvault.KeyVault`, this means you'll need to import the `keyvault.CertificateContacts` manually. + // + // Deprecated: As the `contact` property requires reaching out to the dataplane, to better support private endpoints and keyvaults with public network access disabled, `contact` will be removed in favour of the `keyvault.CertificateContacts` resource in version 4.0 of the AzureRM Provider. Contacts []KeyVaultContact `pulumi:"contacts"` // Boolean flag to specify whether Azure Key Vault uses Role Based Access Control (RBAC) for authorization of data actions. EnableRbacAuthorization *bool `pulumi:"enableRbacAuthorization"` @@ -312,6 +326,8 @@ type keyVaultArgs struct { // The number of days that items should be retained for once soft-deleted. This value can be between `7` and `90` (the default) days. // // > **Note:** This field can only be configured one time and cannot be updated. + // + // SoftDeleteRetentionDays *int `pulumi:"softDeleteRetentionDays"` // A mapping of tags to assign to the resource. Tags map[string]string `pulumi:"tags"` @@ -330,6 +346,8 @@ type KeyVaultArgs struct { // > **Note:** This field can only be set once user has `managecontacts` certificate permission. // // > **Note:** This field can only be set when `publicNetworkAccessEnabled` is set to `true`. To manage the `contact` with `publicNetworkAccessEnabled` set to `false`, please use the `keyvault.CertificateContacts` resource instead of this property, and remove this property from the configuration. Especially for existing `keyvault.KeyVault`, this means you'll need to import the `keyvault.CertificateContacts` manually. + // + // Deprecated: As the `contact` property requires reaching out to the dataplane, to better support private endpoints and keyvaults with public network access disabled, `contact` will be removed in favour of the `keyvault.CertificateContacts` resource in version 4.0 of the AzureRM Provider. Contacts KeyVaultContactArrayInput // Boolean flag to specify whether Azure Key Vault uses Role Based Access Control (RBAC) for authorization of data actions. EnableRbacAuthorization pulumi.BoolPtrInput @@ -358,6 +376,8 @@ type KeyVaultArgs struct { // The number of days that items should be retained for once soft-deleted. This value can be between `7` and `90` (the default) days. // // > **Note:** This field can only be configured one time and cannot be updated. + // + // SoftDeleteRetentionDays pulumi.IntPtrInput // A mapping of tags to assign to the resource. Tags pulumi.StringMapInput @@ -464,6 +484,8 @@ func (o KeyVaultOutput) AccessPolicies() KeyVaultAccessPolicyArrayOutput { // > **Note:** This field can only be set once user has `managecontacts` certificate permission. // // > **Note:** This field can only be set when `publicNetworkAccessEnabled` is set to `true`. To manage the `contact` with `publicNetworkAccessEnabled` set to `false`, please use the `keyvault.CertificateContacts` resource instead of this property, and remove this property from the configuration. Especially for existing `keyvault.KeyVault`, this means you'll need to import the `keyvault.CertificateContacts` manually. +// +// Deprecated: As the `contact` property requires reaching out to the dataplane, to better support private endpoints and keyvaults with public network access disabled, `contact` will be removed in favour of the `keyvault.CertificateContacts` resource in version 4.0 of the AzureRM Provider. func (o KeyVaultOutput) Contacts() KeyVaultContactArrayOutput { return o.ApplyT(func(v *KeyVault) KeyVaultContactArrayOutput { return v.Contacts }).(KeyVaultContactArrayOutput) } @@ -528,6 +550,8 @@ func (o KeyVaultOutput) SkuName() pulumi.StringOutput { // The number of days that items should be retained for once soft-deleted. This value can be between `7` and `90` (the default) days. // // > **Note:** This field can only be configured one time and cannot be updated. +// +// func (o KeyVaultOutput) SoftDeleteRetentionDays() pulumi.IntPtrOutput { return o.ApplyT(func(v *KeyVault) pulumi.IntPtrOutput { return v.SoftDeleteRetentionDays }).(pulumi.IntPtrOutput) } diff --git a/sdk/go/azure/keyvault/secret.go b/sdk/go/azure/keyvault/secret.go index 5ee3cd627c..35646ea517 100644 --- a/sdk/go/azure/keyvault/secret.go +++ b/sdk/go/azure/keyvault/secret.go @@ -14,14 +14,6 @@ import ( // Manages a Key Vault Secret. // -// <<<<<<< HEAD -// > **Note:** All arguments including the secret value will be stored in the raw state as plain-text. -// [Read more about sensitive data in state](https://www.terraform.io/docs/state/sensitive-data.html). -// -// > **Note:** The Azure Provider includes a Feature Toggle which will purge a Key Vault Secret resource on destroy, rather than the default soft-delete. See `purgeSoftDeletedSecretsOnDestroy` for more information. -// -// ======= -// > > > > > > > 8d78c87098 (Update-documentation) // ## Example Usage // // diff --git a/sdk/go/azure/network/getPublicIpPrefix.go b/sdk/go/azure/network/getPublicIpPrefix.go index a875c62ab8..55a5b9dda2 100644 --- a/sdk/go/azure/network/getPublicIpPrefix.go +++ b/sdk/go/azure/network/getPublicIpPrefix.go @@ -65,15 +65,14 @@ type LookupPublicIpPrefixArgs struct { // A collection of values returned by getPublicIpPrefix. type LookupPublicIpPrefixResult struct { // The provider-assigned unique ID for this managed resource. - Id string `pulumi:"id"` + Id string `pulumi:"id"` + // The Public IP address range, in CIDR notation. IpPrefix string `pulumi:"ipPrefix"` // The supported Azure location where the resource exists. Location string `pulumi:"location"` - // The name of the Public IP prefix resource. - Name string `pulumi:"name"` + Name string `pulumi:"name"` // The number of bits of the prefix. - PrefixLength int `pulumi:"prefixLength"` - // The name of the resource group in which to create the public IP. + PrefixLength int `pulumi:"prefixLength"` ResourceGroupName string `pulumi:"resourceGroupName"` // The SKU of the Public IP Prefix. Sku string `pulumi:"sku"` @@ -128,6 +127,7 @@ func (o LookupPublicIpPrefixResultOutput) Id() pulumi.StringOutput { return o.ApplyT(func(v LookupPublicIpPrefixResult) string { return v.Id }).(pulumi.StringOutput) } +// The Public IP address range, in CIDR notation. func (o LookupPublicIpPrefixResultOutput) IpPrefix() pulumi.StringOutput { return o.ApplyT(func(v LookupPublicIpPrefixResult) string { return v.IpPrefix }).(pulumi.StringOutput) } @@ -137,7 +137,6 @@ func (o LookupPublicIpPrefixResultOutput) Location() pulumi.StringOutput { return o.ApplyT(func(v LookupPublicIpPrefixResult) string { return v.Location }).(pulumi.StringOutput) } -// The name of the Public IP prefix resource. func (o LookupPublicIpPrefixResultOutput) Name() pulumi.StringOutput { return o.ApplyT(func(v LookupPublicIpPrefixResult) string { return v.Name }).(pulumi.StringOutput) } @@ -147,7 +146,6 @@ func (o LookupPublicIpPrefixResultOutput) PrefixLength() pulumi.IntOutput { return o.ApplyT(func(v LookupPublicIpPrefixResult) int { return v.PrefixLength }).(pulumi.IntOutput) } -// The name of the resource group in which to create the public IP. func (o LookupPublicIpPrefixResultOutput) ResourceGroupName() pulumi.StringOutput { return o.ApplyT(func(v LookupPublicIpPrefixResult) string { return v.ResourceGroupName }).(pulumi.StringOutput) } diff --git a/sdk/go/azure/network/pulumiTypes.go b/sdk/go/azure/network/pulumiTypes.go index c3023d22ac..b3f8c343ae 100644 --- a/sdk/go/azure/network/pulumiTypes.go +++ b/sdk/go/azure/network/pulumiTypes.go @@ -17592,7 +17592,7 @@ type SubnetDelegationServiceDelegation struct { // // > **NOTE:** Azure may add default actions depending on the service delegation name and they can't be changed. Actions []string `pulumi:"actions"` - // The name of service to delegate to. Possible values are `GitHub.Network/networkSettings`, `Microsoft.ApiManagement/service`, `Microsoft.Apollo/npu`, `Microsoft.App/environments`, `Microsoft.App/testClients`, `Microsoft.AVS/PrivateClouds`, `Microsoft.AzureCosmosDB/clusters`, `Microsoft.BareMetal/AzureHostedService`, `Microsoft.BareMetal/AzureHPC`, `Microsoft.BareMetal/AzurePaymentHSM`, `Microsoft.BareMetal/AzureVMware`, `Microsoft.BareMetal/CrayServers`, `Microsoft.BareMetal/MonitoringServers`, `Microsoft.Batch/batchAccounts`, `Microsoft.CloudTest/hostedpools`, `Microsoft.CloudTest/images`, `Microsoft.CloudTest/pools`, `Microsoft.Codespaces/plans`, `Microsoft.ContainerInstance/containerGroups`, `Microsoft.ContainerService/managedClusters`, `Microsoft.ContainerService/TestClients`, `Microsoft.Databricks/workspaces`, `Microsoft.DBforMySQL/flexibleServers`, `Microsoft.DBforMySQL/servers`, `Microsoft.DBforMySQL/serversv2`, `Microsoft.DBforPostgreSQL/flexibleServers`, `Microsoft.DBforPostgreSQL/serversv2`, `Microsoft.DBforPostgreSQL/singleServers`, `Microsoft.DelegatedNetwork/controller`, `Microsoft.DevCenter/networkConnection`, `Microsoft.DocumentDB/cassandraClusters`, `Microsoft.Fidalgo/networkSettings`, `Microsoft.HardwareSecurityModules/dedicatedHSMs`, `Microsoft.Kusto/clusters`, `Microsoft.LabServices/labplans`, `Microsoft.Logic/integrationServiceEnvironments`, `Microsoft.MachineLearningServices/workspaces`, `Microsoft.Netapp/volumes`, `Microsoft.Network/dnsResolvers`, `Microsoft.Network/managedResolvers`, `Microsoft.Network/fpgaNetworkInterfaces`, `Microsoft.Network/networkWatchers.`, `Microsoft.Network/virtualNetworkGateways`, `Microsoft.Orbital/orbitalGateways`, `Microsoft.PowerPlatform/enterprisePolicies`, `Microsoft.PowerPlatform/vnetaccesslinks`, `Microsoft.ServiceFabricMesh/networks`, `Microsoft.ServiceNetworking/trafficControllers`, `Microsoft.Singularity/accounts/networks`, `Microsoft.Singularity/accounts/npu`, `Microsoft.Sql/managedInstances`, `Microsoft.Sql/managedInstancesOnebox`, `Microsoft.Sql/managedInstancesStage`, `Microsoft.Sql/managedInstancesTest`, `Microsoft.Sql/servers`, `Microsoft.StoragePool/diskPools`, `Microsoft.StreamAnalytics/streamingJobs`, `Microsoft.Synapse/workspaces`, `Microsoft.Web/hostingEnvironments`, `Microsoft.Web/serverFarms`, `NGINX.NGINXPLUS/nginxDeployments`, `PaloAltoNetworks.Cloudngfw/firewalls` and `Qumulo.Storage/fileSystems`. + // The name of service to delegate to. Possible values are `GitHub.Network/networkSettings`, `Microsoft.ApiManagement/service`, `Microsoft.Apollo/npu`, `Microsoft.App/environments`, `Microsoft.App/testClients`, `Microsoft.AVS/PrivateClouds`, `Microsoft.AzureCosmosDB/clusters`, `Microsoft.BareMetal/AzureHostedService`, `Microsoft.BareMetal/AzureHPC`, `Microsoft.BareMetal/AzurePaymentHSM`, `Microsoft.BareMetal/AzureVMware`, `Microsoft.BareMetal/CrayServers`, `Microsoft.BareMetal/MonitoringServers`, `Microsoft.Batch/batchAccounts`, `Microsoft.CloudTest/hostedpools`, `Microsoft.CloudTest/images`, `Microsoft.CloudTest/pools`, `Microsoft.Codespaces/plans`, `Microsoft.ContainerInstance/containerGroups`, `Microsoft.ContainerService/managedClusters`, `Microsoft.ContainerService/TestClients`, `Microsoft.Databricks/workspaces`, `Microsoft.DBforMySQL/flexibleServers`, `Microsoft.DBforMySQL/servers`, `Microsoft.DBforMySQL/serversv2`, `Microsoft.DBforPostgreSQL/flexibleServers`, `Microsoft.DBforPostgreSQL/serversv2`, `Microsoft.DBforPostgreSQL/singleServers`, `Microsoft.DelegatedNetwork/controller`, `Microsoft.DevCenter/networkConnection`, `Microsoft.DocumentDB/cassandraClusters`, `Microsoft.Fidalgo/networkSettings`, `Microsoft.HardwareSecurityModules/dedicatedHSMs`, `Microsoft.Kusto/clusters`, `Microsoft.LabServices/labplans`, `Microsoft.Logic/integrationServiceEnvironments`, `Microsoft.MachineLearningServices/workspaces`, `Microsoft.Netapp/volumes`, `Microsoft.Network/dnsResolvers`, `Microsoft.Network/managedResolvers`, `Microsoft.Network/fpgaNetworkInterfaces`, `Microsoft.Network/networkWatchers.`, `Microsoft.Network/virtualNetworkGateways`, `Microsoft.Orbital/orbitalGateways`, `Microsoft.PowerPlatform/enterprisePolicies`, `Microsoft.PowerPlatform/vnetaccesslinks`, `Microsoft.ServiceFabricMesh/networks`, `Microsoft.ServiceNetworking/trafficControllers`, `Microsoft.Singularity/accounts/networks`, `Microsoft.Singularity/accounts/npu`, `Microsoft.Sql/managedInstances`, `Microsoft.Sql/managedInstancesOnebox`, `Microsoft.Sql/managedInstancesStage`, `Microsoft.Sql/managedInstancesTest`, `Microsoft.Sql/servers`, `Microsoft.StoragePool/diskPools`, `Microsoft.StreamAnalytics/streamingJobs`, `Microsoft.Synapse/workspaces`, `Microsoft.Web/hostingEnvironments`, `Microsoft.Web/serverFarms`, `NGINX.NGINXPLUS/nginxDeployments`, `PaloAltoNetworks.Cloudngfw/firewalls`, `Qumulo.Storage/fileSystems`, and `Oracle.Database/networkAttachments`. Name string `pulumi:"name"` } @@ -17612,7 +17612,7 @@ type SubnetDelegationServiceDelegationArgs struct { // // > **NOTE:** Azure may add default actions depending on the service delegation name and they can't be changed. Actions pulumi.StringArrayInput `pulumi:"actions"` - // The name of service to delegate to. Possible values are `GitHub.Network/networkSettings`, `Microsoft.ApiManagement/service`, `Microsoft.Apollo/npu`, `Microsoft.App/environments`, `Microsoft.App/testClients`, `Microsoft.AVS/PrivateClouds`, `Microsoft.AzureCosmosDB/clusters`, `Microsoft.BareMetal/AzureHostedService`, `Microsoft.BareMetal/AzureHPC`, `Microsoft.BareMetal/AzurePaymentHSM`, `Microsoft.BareMetal/AzureVMware`, `Microsoft.BareMetal/CrayServers`, `Microsoft.BareMetal/MonitoringServers`, `Microsoft.Batch/batchAccounts`, `Microsoft.CloudTest/hostedpools`, `Microsoft.CloudTest/images`, `Microsoft.CloudTest/pools`, `Microsoft.Codespaces/plans`, `Microsoft.ContainerInstance/containerGroups`, `Microsoft.ContainerService/managedClusters`, `Microsoft.ContainerService/TestClients`, `Microsoft.Databricks/workspaces`, `Microsoft.DBforMySQL/flexibleServers`, `Microsoft.DBforMySQL/servers`, `Microsoft.DBforMySQL/serversv2`, `Microsoft.DBforPostgreSQL/flexibleServers`, `Microsoft.DBforPostgreSQL/serversv2`, `Microsoft.DBforPostgreSQL/singleServers`, `Microsoft.DelegatedNetwork/controller`, `Microsoft.DevCenter/networkConnection`, `Microsoft.DocumentDB/cassandraClusters`, `Microsoft.Fidalgo/networkSettings`, `Microsoft.HardwareSecurityModules/dedicatedHSMs`, `Microsoft.Kusto/clusters`, `Microsoft.LabServices/labplans`, `Microsoft.Logic/integrationServiceEnvironments`, `Microsoft.MachineLearningServices/workspaces`, `Microsoft.Netapp/volumes`, `Microsoft.Network/dnsResolvers`, `Microsoft.Network/managedResolvers`, `Microsoft.Network/fpgaNetworkInterfaces`, `Microsoft.Network/networkWatchers.`, `Microsoft.Network/virtualNetworkGateways`, `Microsoft.Orbital/orbitalGateways`, `Microsoft.PowerPlatform/enterprisePolicies`, `Microsoft.PowerPlatform/vnetaccesslinks`, `Microsoft.ServiceFabricMesh/networks`, `Microsoft.ServiceNetworking/trafficControllers`, `Microsoft.Singularity/accounts/networks`, `Microsoft.Singularity/accounts/npu`, `Microsoft.Sql/managedInstances`, `Microsoft.Sql/managedInstancesOnebox`, `Microsoft.Sql/managedInstancesStage`, `Microsoft.Sql/managedInstancesTest`, `Microsoft.Sql/servers`, `Microsoft.StoragePool/diskPools`, `Microsoft.StreamAnalytics/streamingJobs`, `Microsoft.Synapse/workspaces`, `Microsoft.Web/hostingEnvironments`, `Microsoft.Web/serverFarms`, `NGINX.NGINXPLUS/nginxDeployments`, `PaloAltoNetworks.Cloudngfw/firewalls` and `Qumulo.Storage/fileSystems`. + // The name of service to delegate to. Possible values are `GitHub.Network/networkSettings`, `Microsoft.ApiManagement/service`, `Microsoft.Apollo/npu`, `Microsoft.App/environments`, `Microsoft.App/testClients`, `Microsoft.AVS/PrivateClouds`, `Microsoft.AzureCosmosDB/clusters`, `Microsoft.BareMetal/AzureHostedService`, `Microsoft.BareMetal/AzureHPC`, `Microsoft.BareMetal/AzurePaymentHSM`, `Microsoft.BareMetal/AzureVMware`, `Microsoft.BareMetal/CrayServers`, `Microsoft.BareMetal/MonitoringServers`, `Microsoft.Batch/batchAccounts`, `Microsoft.CloudTest/hostedpools`, `Microsoft.CloudTest/images`, `Microsoft.CloudTest/pools`, `Microsoft.Codespaces/plans`, `Microsoft.ContainerInstance/containerGroups`, `Microsoft.ContainerService/managedClusters`, `Microsoft.ContainerService/TestClients`, `Microsoft.Databricks/workspaces`, `Microsoft.DBforMySQL/flexibleServers`, `Microsoft.DBforMySQL/servers`, `Microsoft.DBforMySQL/serversv2`, `Microsoft.DBforPostgreSQL/flexibleServers`, `Microsoft.DBforPostgreSQL/serversv2`, `Microsoft.DBforPostgreSQL/singleServers`, `Microsoft.DelegatedNetwork/controller`, `Microsoft.DevCenter/networkConnection`, `Microsoft.DocumentDB/cassandraClusters`, `Microsoft.Fidalgo/networkSettings`, `Microsoft.HardwareSecurityModules/dedicatedHSMs`, `Microsoft.Kusto/clusters`, `Microsoft.LabServices/labplans`, `Microsoft.Logic/integrationServiceEnvironments`, `Microsoft.MachineLearningServices/workspaces`, `Microsoft.Netapp/volumes`, `Microsoft.Network/dnsResolvers`, `Microsoft.Network/managedResolvers`, `Microsoft.Network/fpgaNetworkInterfaces`, `Microsoft.Network/networkWatchers.`, `Microsoft.Network/virtualNetworkGateways`, `Microsoft.Orbital/orbitalGateways`, `Microsoft.PowerPlatform/enterprisePolicies`, `Microsoft.PowerPlatform/vnetaccesslinks`, `Microsoft.ServiceFabricMesh/networks`, `Microsoft.ServiceNetworking/trafficControllers`, `Microsoft.Singularity/accounts/networks`, `Microsoft.Singularity/accounts/npu`, `Microsoft.Sql/managedInstances`, `Microsoft.Sql/managedInstancesOnebox`, `Microsoft.Sql/managedInstancesStage`, `Microsoft.Sql/managedInstancesTest`, `Microsoft.Sql/servers`, `Microsoft.StoragePool/diskPools`, `Microsoft.StreamAnalytics/streamingJobs`, `Microsoft.Synapse/workspaces`, `Microsoft.Web/hostingEnvironments`, `Microsoft.Web/serverFarms`, `NGINX.NGINXPLUS/nginxDeployments`, `PaloAltoNetworks.Cloudngfw/firewalls`, `Qumulo.Storage/fileSystems`, and `Oracle.Database/networkAttachments`. Name pulumi.StringInput `pulumi:"name"` } @@ -17649,7 +17649,7 @@ func (o SubnetDelegationServiceDelegationOutput) Actions() pulumi.StringArrayOut return o.ApplyT(func(v SubnetDelegationServiceDelegation) []string { return v.Actions }).(pulumi.StringArrayOutput) } -// The name of service to delegate to. Possible values are `GitHub.Network/networkSettings`, `Microsoft.ApiManagement/service`, `Microsoft.Apollo/npu`, `Microsoft.App/environments`, `Microsoft.App/testClients`, `Microsoft.AVS/PrivateClouds`, `Microsoft.AzureCosmosDB/clusters`, `Microsoft.BareMetal/AzureHostedService`, `Microsoft.BareMetal/AzureHPC`, `Microsoft.BareMetal/AzurePaymentHSM`, `Microsoft.BareMetal/AzureVMware`, `Microsoft.BareMetal/CrayServers`, `Microsoft.BareMetal/MonitoringServers`, `Microsoft.Batch/batchAccounts`, `Microsoft.CloudTest/hostedpools`, `Microsoft.CloudTest/images`, `Microsoft.CloudTest/pools`, `Microsoft.Codespaces/plans`, `Microsoft.ContainerInstance/containerGroups`, `Microsoft.ContainerService/managedClusters`, `Microsoft.ContainerService/TestClients`, `Microsoft.Databricks/workspaces`, `Microsoft.DBforMySQL/flexibleServers`, `Microsoft.DBforMySQL/servers`, `Microsoft.DBforMySQL/serversv2`, `Microsoft.DBforPostgreSQL/flexibleServers`, `Microsoft.DBforPostgreSQL/serversv2`, `Microsoft.DBforPostgreSQL/singleServers`, `Microsoft.DelegatedNetwork/controller`, `Microsoft.DevCenter/networkConnection`, `Microsoft.DocumentDB/cassandraClusters`, `Microsoft.Fidalgo/networkSettings`, `Microsoft.HardwareSecurityModules/dedicatedHSMs`, `Microsoft.Kusto/clusters`, `Microsoft.LabServices/labplans`, `Microsoft.Logic/integrationServiceEnvironments`, `Microsoft.MachineLearningServices/workspaces`, `Microsoft.Netapp/volumes`, `Microsoft.Network/dnsResolvers`, `Microsoft.Network/managedResolvers`, `Microsoft.Network/fpgaNetworkInterfaces`, `Microsoft.Network/networkWatchers.`, `Microsoft.Network/virtualNetworkGateways`, `Microsoft.Orbital/orbitalGateways`, `Microsoft.PowerPlatform/enterprisePolicies`, `Microsoft.PowerPlatform/vnetaccesslinks`, `Microsoft.ServiceFabricMesh/networks`, `Microsoft.ServiceNetworking/trafficControllers`, `Microsoft.Singularity/accounts/networks`, `Microsoft.Singularity/accounts/npu`, `Microsoft.Sql/managedInstances`, `Microsoft.Sql/managedInstancesOnebox`, `Microsoft.Sql/managedInstancesStage`, `Microsoft.Sql/managedInstancesTest`, `Microsoft.Sql/servers`, `Microsoft.StoragePool/diskPools`, `Microsoft.StreamAnalytics/streamingJobs`, `Microsoft.Synapse/workspaces`, `Microsoft.Web/hostingEnvironments`, `Microsoft.Web/serverFarms`, `NGINX.NGINXPLUS/nginxDeployments`, `PaloAltoNetworks.Cloudngfw/firewalls` and `Qumulo.Storage/fileSystems`. +// The name of service to delegate to. Possible values are `GitHub.Network/networkSettings`, `Microsoft.ApiManagement/service`, `Microsoft.Apollo/npu`, `Microsoft.App/environments`, `Microsoft.App/testClients`, `Microsoft.AVS/PrivateClouds`, `Microsoft.AzureCosmosDB/clusters`, `Microsoft.BareMetal/AzureHostedService`, `Microsoft.BareMetal/AzureHPC`, `Microsoft.BareMetal/AzurePaymentHSM`, `Microsoft.BareMetal/AzureVMware`, `Microsoft.BareMetal/CrayServers`, `Microsoft.BareMetal/MonitoringServers`, `Microsoft.Batch/batchAccounts`, `Microsoft.CloudTest/hostedpools`, `Microsoft.CloudTest/images`, `Microsoft.CloudTest/pools`, `Microsoft.Codespaces/plans`, `Microsoft.ContainerInstance/containerGroups`, `Microsoft.ContainerService/managedClusters`, `Microsoft.ContainerService/TestClients`, `Microsoft.Databricks/workspaces`, `Microsoft.DBforMySQL/flexibleServers`, `Microsoft.DBforMySQL/servers`, `Microsoft.DBforMySQL/serversv2`, `Microsoft.DBforPostgreSQL/flexibleServers`, `Microsoft.DBforPostgreSQL/serversv2`, `Microsoft.DBforPostgreSQL/singleServers`, `Microsoft.DelegatedNetwork/controller`, `Microsoft.DevCenter/networkConnection`, `Microsoft.DocumentDB/cassandraClusters`, `Microsoft.Fidalgo/networkSettings`, `Microsoft.HardwareSecurityModules/dedicatedHSMs`, `Microsoft.Kusto/clusters`, `Microsoft.LabServices/labplans`, `Microsoft.Logic/integrationServiceEnvironments`, `Microsoft.MachineLearningServices/workspaces`, `Microsoft.Netapp/volumes`, `Microsoft.Network/dnsResolvers`, `Microsoft.Network/managedResolvers`, `Microsoft.Network/fpgaNetworkInterfaces`, `Microsoft.Network/networkWatchers.`, `Microsoft.Network/virtualNetworkGateways`, `Microsoft.Orbital/orbitalGateways`, `Microsoft.PowerPlatform/enterprisePolicies`, `Microsoft.PowerPlatform/vnetaccesslinks`, `Microsoft.ServiceFabricMesh/networks`, `Microsoft.ServiceNetworking/trafficControllers`, `Microsoft.Singularity/accounts/networks`, `Microsoft.Singularity/accounts/npu`, `Microsoft.Sql/managedInstances`, `Microsoft.Sql/managedInstancesOnebox`, `Microsoft.Sql/managedInstancesStage`, `Microsoft.Sql/managedInstancesTest`, `Microsoft.Sql/servers`, `Microsoft.StoragePool/diskPools`, `Microsoft.StreamAnalytics/streamingJobs`, `Microsoft.Synapse/workspaces`, `Microsoft.Web/hostingEnvironments`, `Microsoft.Web/serverFarms`, `NGINX.NGINXPLUS/nginxDeployments`, `PaloAltoNetworks.Cloudngfw/firewalls`, `Qumulo.Storage/fileSystems`, and `Oracle.Database/networkAttachments`. func (o SubnetDelegationServiceDelegationOutput) Name() pulumi.StringOutput { return o.ApplyT(func(v SubnetDelegationServiceDelegation) string { return v.Name }).(pulumi.StringOutput) } diff --git a/sdk/go/azure/provider.go b/sdk/go/azure/provider.go index 5fef4055b9..6f695927f1 100644 --- a/sdk/go/azure/provider.go +++ b/sdk/go/azure/provider.go @@ -35,7 +35,8 @@ type Provider struct { // The path to a file containing the Client Secret which should be used. For use When authenticating as a Service Principal // using a Client Secret. ClientSecretFilePath pulumi.StringPtrOutput `pulumi:"clientSecretFilePath"` - // The Cloud Environment which should be used. Possible values are public, usgovernment, and china. Defaults to public. + // The Cloud Environment which should be used. Possible values are public, usgovernment, and china. Defaults to public. Not + // used and should not be specified when `metadata_host` is specified. Environment pulumi.StringPtrOutput `pulumi:"environment"` // The Hostname which should be used for the Azure Metadata Service. MetadataHost pulumi.StringPtrOutput `pulumi:"metadataHost"` @@ -178,7 +179,8 @@ type providerArgs struct { DisableCorrelationRequestId *bool `pulumi:"disableCorrelationRequestId"` // This will disable the Terraform Partner ID which is used if a custom `partner_id` isn't specified. DisableTerraformPartnerId *bool `pulumi:"disableTerraformPartnerId"` - // The Cloud Environment which should be used. Possible values are public, usgovernment, and china. Defaults to public. + // The Cloud Environment which should be used. Possible values are public, usgovernment, and china. Defaults to public. Not + // used and should not be specified when `metadata_host` is specified. Environment *string `pulumi:"environment"` Features *ProviderFeatures `pulumi:"features"` // The Hostname which should be used for the Azure Metadata Service. @@ -241,7 +243,8 @@ type ProviderArgs struct { DisableCorrelationRequestId pulumi.BoolPtrInput // This will disable the Terraform Partner ID which is used if a custom `partner_id` isn't specified. DisableTerraformPartnerId pulumi.BoolPtrInput - // The Cloud Environment which should be used. Possible values are public, usgovernment, and china. Defaults to public. + // The Cloud Environment which should be used. Possible values are public, usgovernment, and china. Defaults to public. Not + // used and should not be specified when `metadata_host` is specified. Environment pulumi.StringPtrInput Features ProviderFeaturesPtrInput // The Hostname which should be used for the Azure Metadata Service. @@ -355,7 +358,8 @@ func (o ProviderOutput) ClientSecretFilePath() pulumi.StringPtrOutput { return o.ApplyT(func(v *Provider) pulumi.StringPtrOutput { return v.ClientSecretFilePath }).(pulumi.StringPtrOutput) } -// The Cloud Environment which should be used. Possible values are public, usgovernment, and china. Defaults to public. +// The Cloud Environment which should be used. Possible values are public, usgovernment, and china. Defaults to public. Not +// used and should not be specified when `metadata_host` is specified. func (o ProviderOutput) Environment() pulumi.StringPtrOutput { return o.ApplyT(func(v *Provider) pulumi.StringPtrOutput { return v.Environment }).(pulumi.StringPtrOutput) } diff --git a/sdk/go/azure/redis/cacheAccessPolicyAssignment.go b/sdk/go/azure/redis/cacheAccessPolicyAssignment.go index 744efba1a7..d97355fe60 100644 --- a/sdk/go/azure/redis/cacheAccessPolicyAssignment.go +++ b/sdk/go/azure/redis/cacheAccessPolicyAssignment.go @@ -91,7 +91,7 @@ type CacheAccessPolicyAssignment struct { Name pulumi.StringOutput `pulumi:"name"` // The principal ID to be assigned the Access Policy. Changing this forces a new Redis Cache Access Policy Assignment to be created. ObjectId pulumi.StringOutput `pulumi:"objectId"` - // The alias of the principal ID. Possible values are `ServicePrincipal` and `UserMSI`. Changing this forces a new Redis Cache Access Policy Assignment to be created. + // The alias of the principal ID. User-friendly name for object ID. Also represents username for token based authentication. Changing this forces a new Redis Cache Access Policy Assignment to be created. ObjectIdAlias pulumi.StringOutput `pulumi:"objectIdAlias"` // The ID of the Redis Cache. Changing this forces a new Redis Cache Access Policy Assignment to be created. RedisCacheId pulumi.StringOutput `pulumi:"redisCacheId"` @@ -145,7 +145,7 @@ type cacheAccessPolicyAssignmentState struct { Name *string `pulumi:"name"` // The principal ID to be assigned the Access Policy. Changing this forces a new Redis Cache Access Policy Assignment to be created. ObjectId *string `pulumi:"objectId"` - // The alias of the principal ID. Possible values are `ServicePrincipal` and `UserMSI`. Changing this forces a new Redis Cache Access Policy Assignment to be created. + // The alias of the principal ID. User-friendly name for object ID. Also represents username for token based authentication. Changing this forces a new Redis Cache Access Policy Assignment to be created. ObjectIdAlias *string `pulumi:"objectIdAlias"` // The ID of the Redis Cache. Changing this forces a new Redis Cache Access Policy Assignment to be created. RedisCacheId *string `pulumi:"redisCacheId"` @@ -158,7 +158,7 @@ type CacheAccessPolicyAssignmentState struct { Name pulumi.StringPtrInput // The principal ID to be assigned the Access Policy. Changing this forces a new Redis Cache Access Policy Assignment to be created. ObjectId pulumi.StringPtrInput - // The alias of the principal ID. Possible values are `ServicePrincipal` and `UserMSI`. Changing this forces a new Redis Cache Access Policy Assignment to be created. + // The alias of the principal ID. User-friendly name for object ID. Also represents username for token based authentication. Changing this forces a new Redis Cache Access Policy Assignment to be created. ObjectIdAlias pulumi.StringPtrInput // The ID of the Redis Cache. Changing this forces a new Redis Cache Access Policy Assignment to be created. RedisCacheId pulumi.StringPtrInput @@ -175,7 +175,7 @@ type cacheAccessPolicyAssignmentArgs struct { Name *string `pulumi:"name"` // The principal ID to be assigned the Access Policy. Changing this forces a new Redis Cache Access Policy Assignment to be created. ObjectId string `pulumi:"objectId"` - // The alias of the principal ID. Possible values are `ServicePrincipal` and `UserMSI`. Changing this forces a new Redis Cache Access Policy Assignment to be created. + // The alias of the principal ID. User-friendly name for object ID. Also represents username for token based authentication. Changing this forces a new Redis Cache Access Policy Assignment to be created. ObjectIdAlias string `pulumi:"objectIdAlias"` // The ID of the Redis Cache. Changing this forces a new Redis Cache Access Policy Assignment to be created. RedisCacheId string `pulumi:"redisCacheId"` @@ -189,7 +189,7 @@ type CacheAccessPolicyAssignmentArgs struct { Name pulumi.StringPtrInput // The principal ID to be assigned the Access Policy. Changing this forces a new Redis Cache Access Policy Assignment to be created. ObjectId pulumi.StringInput - // The alias of the principal ID. Possible values are `ServicePrincipal` and `UserMSI`. Changing this forces a new Redis Cache Access Policy Assignment to be created. + // The alias of the principal ID. User-friendly name for object ID. Also represents username for token based authentication. Changing this forces a new Redis Cache Access Policy Assignment to be created. ObjectIdAlias pulumi.StringInput // The ID of the Redis Cache. Changing this forces a new Redis Cache Access Policy Assignment to be created. RedisCacheId pulumi.StringInput @@ -297,7 +297,7 @@ func (o CacheAccessPolicyAssignmentOutput) ObjectId() pulumi.StringOutput { return o.ApplyT(func(v *CacheAccessPolicyAssignment) pulumi.StringOutput { return v.ObjectId }).(pulumi.StringOutput) } -// The alias of the principal ID. Possible values are `ServicePrincipal` and `UserMSI`. Changing this forces a new Redis Cache Access Policy Assignment to be created. +// The alias of the principal ID. User-friendly name for object ID. Also represents username for token based authentication. Changing this forces a new Redis Cache Access Policy Assignment to be created. func (o CacheAccessPolicyAssignmentOutput) ObjectIdAlias() pulumi.StringOutput { return o.ApplyT(func(v *CacheAccessPolicyAssignment) pulumi.StringOutput { return v.ObjectIdAlias }).(pulumi.StringOutput) } diff --git a/sdk/go/azure/signalr/pulumiTypes.go b/sdk/go/azure/signalr/pulumiTypes.go index 75e9d313da..9949ce6520 100644 --- a/sdk/go/azure/signalr/pulumiTypes.go +++ b/sdk/go/azure/signalr/pulumiTypes.go @@ -812,9 +812,11 @@ func (o ServiceNetworkAclPublicNetworkPtrOutput) DeniedRequestTypes() pulumi.Str } type ServiceSku struct { - // Specifies the number of units associated with this SignalR service. Valid values are `1`, `2`, `3`, `4`, `5`, `6`, `7`, `8`, `9`, `10`, `20`, `30`, `40`, `50`, `60`, `70`, `80`, `90` and `100`. + // Specifies the number of units associated with this SignalR service. Valid values are `1`, `2`, `3`, `4`, `5`, `6`, `7`, `8`, `9`, `10`, `20`, `30`, `40`, `50`, `60`, `70`, `80`, `90`, `100`, `200`, `300`, `400`, `500`, `600`, `700`, `800`, `900` and `1000`. + // + // > **NOTE:** The valid capacity range for sku `Free_F1` is `1`, for sku `Premium_P2` is from `100` to `1000`, and from `1` to `100` for sku `Standard_S1` and `Premium_P1`. Capacity int `pulumi:"capacity"` - // Specifies which tier to use. Valid values are `Free_F1`, `Standard_S1` and `Premium_P1`. + // Specifies which tier to use. Valid values are `Free_F1`, `Standard_S1`, `Premium_P1` and `Premium_P2`. Name string `pulumi:"name"` } @@ -830,9 +832,11 @@ type ServiceSkuInput interface { } type ServiceSkuArgs struct { - // Specifies the number of units associated with this SignalR service. Valid values are `1`, `2`, `3`, `4`, `5`, `6`, `7`, `8`, `9`, `10`, `20`, `30`, `40`, `50`, `60`, `70`, `80`, `90` and `100`. + // Specifies the number of units associated with this SignalR service. Valid values are `1`, `2`, `3`, `4`, `5`, `6`, `7`, `8`, `9`, `10`, `20`, `30`, `40`, `50`, `60`, `70`, `80`, `90`, `100`, `200`, `300`, `400`, `500`, `600`, `700`, `800`, `900` and `1000`. + // + // > **NOTE:** The valid capacity range for sku `Free_F1` is `1`, for sku `Premium_P2` is from `100` to `1000`, and from `1` to `100` for sku `Standard_S1` and `Premium_P1`. Capacity pulumi.IntInput `pulumi:"capacity"` - // Specifies which tier to use. Valid values are `Free_F1`, `Standard_S1` and `Premium_P1`. + // Specifies which tier to use. Valid values are `Free_F1`, `Standard_S1`, `Premium_P1` and `Premium_P2`. Name pulumi.StringInput `pulumi:"name"` } @@ -913,12 +917,14 @@ func (o ServiceSkuOutput) ToServiceSkuPtrOutputWithContext(ctx context.Context) }).(ServiceSkuPtrOutput) } -// Specifies the number of units associated with this SignalR service. Valid values are `1`, `2`, `3`, `4`, `5`, `6`, `7`, `8`, `9`, `10`, `20`, `30`, `40`, `50`, `60`, `70`, `80`, `90` and `100`. +// Specifies the number of units associated with this SignalR service. Valid values are `1`, `2`, `3`, `4`, `5`, `6`, `7`, `8`, `9`, `10`, `20`, `30`, `40`, `50`, `60`, `70`, `80`, `90`, `100`, `200`, `300`, `400`, `500`, `600`, `700`, `800`, `900` and `1000`. +// +// > **NOTE:** The valid capacity range for sku `Free_F1` is `1`, for sku `Premium_P2` is from `100` to `1000`, and from `1` to `100` for sku `Standard_S1` and `Premium_P1`. func (o ServiceSkuOutput) Capacity() pulumi.IntOutput { return o.ApplyT(func(v ServiceSku) int { return v.Capacity }).(pulumi.IntOutput) } -// Specifies which tier to use. Valid values are `Free_F1`, `Standard_S1` and `Premium_P1`. +// Specifies which tier to use. Valid values are `Free_F1`, `Standard_S1`, `Premium_P1` and `Premium_P2`. func (o ServiceSkuOutput) Name() pulumi.StringOutput { return o.ApplyT(func(v ServiceSku) string { return v.Name }).(pulumi.StringOutput) } @@ -947,7 +953,9 @@ func (o ServiceSkuPtrOutput) Elem() ServiceSkuOutput { }).(ServiceSkuOutput) } -// Specifies the number of units associated with this SignalR service. Valid values are `1`, `2`, `3`, `4`, `5`, `6`, `7`, `8`, `9`, `10`, `20`, `30`, `40`, `50`, `60`, `70`, `80`, `90` and `100`. +// Specifies the number of units associated with this SignalR service. Valid values are `1`, `2`, `3`, `4`, `5`, `6`, `7`, `8`, `9`, `10`, `20`, `30`, `40`, `50`, `60`, `70`, `80`, `90`, `100`, `200`, `300`, `400`, `500`, `600`, `700`, `800`, `900` and `1000`. +// +// > **NOTE:** The valid capacity range for sku `Free_F1` is `1`, for sku `Premium_P2` is from `100` to `1000`, and from `1` to `100` for sku `Standard_S1` and `Premium_P1`. func (o ServiceSkuPtrOutput) Capacity() pulumi.IntPtrOutput { return o.ApplyT(func(v *ServiceSku) *int { if v == nil { @@ -957,7 +965,7 @@ func (o ServiceSkuPtrOutput) Capacity() pulumi.IntPtrOutput { }).(pulumi.IntPtrOutput) } -// Specifies which tier to use. Valid values are `Free_F1`, `Standard_S1` and `Premium_P1`. +// Specifies which tier to use. Valid values are `Free_F1`, `Standard_S1`, `Premium_P1` and `Premium_P2`. func (o ServiceSkuPtrOutput) Name() pulumi.StringPtrOutput { return o.ApplyT(func(v *ServiceSku) *string { if v == nil { diff --git a/sdk/go/azure/storage/account.go b/sdk/go/azure/storage/account.go index 66377561ca..cfa6f56b45 100644 --- a/sdk/go/azure/storage/account.go +++ b/sdk/go/azure/storage/account.go @@ -292,7 +292,7 @@ type Account struct { QueueEncryptionKeyType pulumi.StringPtrOutput `pulumi:"queueEncryptionKeyType"` // A `queueProperties` block as defined below. // - // > **NOTE:** `queueProperties` cannot be set when the `accountKind` is set to `BlobStorage` + // > **NOTE:** `queueProperties` can only be configured when `accountTier` is set to `Standard` and `accountKind` is set to either `Storage` or `StorageV2`. QueueProperties AccountQueuePropertiesOutput `pulumi:"queueProperties"` // The name of the resource group in which to create the storage account. Changing this forces a new resource to be created. ResourceGroupName pulumi.StringOutput `pulumi:"resourceGroupName"` @@ -377,6 +377,8 @@ type Account struct { // > **NOTE:** SFTP support requires `isHnsEnabled` set to `true`. [More information on SFTP support can be found here](https://learn.microsoft.com/azure/storage/blobs/secure-file-transfer-protocol-support). Defaults to `false` SftpEnabled pulumi.BoolPtrOutput `pulumi:"sftpEnabled"` // A `shareProperties` block as defined below. + // + // > **NOTE:** `shareProperties` can only be configured when either `accountTier` is `Standard` and `accountKind` is either `Storage` or `StorageV2` - or when `accountTier` is `Premium` and `accountKind` is `FileStorage`. ShareProperties AccountSharePropertiesOutput `pulumi:"shareProperties"` SharedAccessKeyEnabled pulumi.BoolPtrOutput `pulumi:"sharedAccessKeyEnabled"` // A `staticWebsite` block as defined below. @@ -585,7 +587,7 @@ type accountState struct { QueueEncryptionKeyType *string `pulumi:"queueEncryptionKeyType"` // A `queueProperties` block as defined below. // - // > **NOTE:** `queueProperties` cannot be set when the `accountKind` is set to `BlobStorage` + // > **NOTE:** `queueProperties` can only be configured when `accountTier` is set to `Standard` and `accountKind` is set to either `Storage` or `StorageV2`. QueueProperties *AccountQueueProperties `pulumi:"queueProperties"` // The name of the resource group in which to create the storage account. Changing this forces a new resource to be created. ResourceGroupName *string `pulumi:"resourceGroupName"` @@ -670,6 +672,8 @@ type accountState struct { // > **NOTE:** SFTP support requires `isHnsEnabled` set to `true`. [More information on SFTP support can be found here](https://learn.microsoft.com/azure/storage/blobs/secure-file-transfer-protocol-support). Defaults to `false` SftpEnabled *bool `pulumi:"sftpEnabled"` // A `shareProperties` block as defined below. + // + // > **NOTE:** `shareProperties` can only be configured when either `accountTier` is `Standard` and `accountKind` is either `Storage` or `StorageV2` - or when `accountTier` is `Premium` and `accountKind` is `FileStorage`. ShareProperties *AccountShareProperties `pulumi:"shareProperties"` SharedAccessKeyEnabled *bool `pulumi:"sharedAccessKeyEnabled"` // A `staticWebsite` block as defined below. @@ -831,7 +835,7 @@ type AccountState struct { QueueEncryptionKeyType pulumi.StringPtrInput // A `queueProperties` block as defined below. // - // > **NOTE:** `queueProperties` cannot be set when the `accountKind` is set to `BlobStorage` + // > **NOTE:** `queueProperties` can only be configured when `accountTier` is set to `Standard` and `accountKind` is set to either `Storage` or `StorageV2`. QueueProperties AccountQueuePropertiesPtrInput // The name of the resource group in which to create the storage account. Changing this forces a new resource to be created. ResourceGroupName pulumi.StringPtrInput @@ -916,6 +920,8 @@ type AccountState struct { // > **NOTE:** SFTP support requires `isHnsEnabled` set to `true`. [More information on SFTP support can be found here](https://learn.microsoft.com/azure/storage/blobs/secure-file-transfer-protocol-support). Defaults to `false` SftpEnabled pulumi.BoolPtrInput // A `shareProperties` block as defined below. + // + // > **NOTE:** `shareProperties` can only be configured when either `accountTier` is `Standard` and `accountKind` is either `Storage` or `StorageV2` - or when `accountTier` is `Premium` and `accountKind` is `FileStorage`. ShareProperties AccountSharePropertiesPtrInput SharedAccessKeyEnabled pulumi.BoolPtrInput // A `staticWebsite` block as defined below. @@ -1009,7 +1015,7 @@ type accountArgs struct { QueueEncryptionKeyType *string `pulumi:"queueEncryptionKeyType"` // A `queueProperties` block as defined below. // - // > **NOTE:** `queueProperties` cannot be set when the `accountKind` is set to `BlobStorage` + // > **NOTE:** `queueProperties` can only be configured when `accountTier` is set to `Standard` and `accountKind` is set to either `Storage` or `StorageV2`. QueueProperties *AccountQueueProperties `pulumi:"queueProperties"` // The name of the resource group in which to create the storage account. Changing this forces a new resource to be created. ResourceGroupName string `pulumi:"resourceGroupName"` @@ -1022,6 +1028,8 @@ type accountArgs struct { // > **NOTE:** SFTP support requires `isHnsEnabled` set to `true`. [More information on SFTP support can be found here](https://learn.microsoft.com/azure/storage/blobs/secure-file-transfer-protocol-support). Defaults to `false` SftpEnabled *bool `pulumi:"sftpEnabled"` // A `shareProperties` block as defined below. + // + // > **NOTE:** `shareProperties` can only be configured when either `accountTier` is `Standard` and `accountKind` is either `Storage` or `StorageV2` - or when `accountTier` is `Premium` and `accountKind` is `FileStorage`. ShareProperties *AccountShareProperties `pulumi:"shareProperties"` SharedAccessKeyEnabled *bool `pulumi:"sharedAccessKeyEnabled"` // A `staticWebsite` block as defined below. @@ -1112,7 +1120,7 @@ type AccountArgs struct { QueueEncryptionKeyType pulumi.StringPtrInput // A `queueProperties` block as defined below. // - // > **NOTE:** `queueProperties` cannot be set when the `accountKind` is set to `BlobStorage` + // > **NOTE:** `queueProperties` can only be configured when `accountTier` is set to `Standard` and `accountKind` is set to either `Storage` or `StorageV2`. QueueProperties AccountQueuePropertiesPtrInput // The name of the resource group in which to create the storage account. Changing this forces a new resource to be created. ResourceGroupName pulumi.StringInput @@ -1125,6 +1133,8 @@ type AccountArgs struct { // > **NOTE:** SFTP support requires `isHnsEnabled` set to `true`. [More information on SFTP support can be found here](https://learn.microsoft.com/azure/storage/blobs/secure-file-transfer-protocol-support). Defaults to `false` SftpEnabled pulumi.BoolPtrInput // A `shareProperties` block as defined below. + // + // > **NOTE:** `shareProperties` can only be configured when either `accountTier` is `Standard` and `accountKind` is either `Storage` or `StorageV2` - or when `accountTier` is `Premium` and `accountKind` is `FileStorage`. ShareProperties AccountSharePropertiesPtrInput SharedAccessKeyEnabled pulumi.BoolPtrInput // A `staticWebsite` block as defined below. @@ -1564,7 +1574,7 @@ func (o AccountOutput) QueueEncryptionKeyType() pulumi.StringPtrOutput { // A `queueProperties` block as defined below. // -// > **NOTE:** `queueProperties` cannot be set when the `accountKind` is set to `BlobStorage` +// > **NOTE:** `queueProperties` can only be configured when `accountTier` is set to `Standard` and `accountKind` is set to either `Storage` or `StorageV2`. func (o AccountOutput) QueueProperties() AccountQueuePropertiesOutput { return o.ApplyT(func(v *Account) AccountQueuePropertiesOutput { return v.QueueProperties }).(AccountQueuePropertiesOutput) } @@ -1772,6 +1782,8 @@ func (o AccountOutput) SftpEnabled() pulumi.BoolPtrOutput { } // A `shareProperties` block as defined below. +// +// > **NOTE:** `shareProperties` can only be configured when either `accountTier` is `Standard` and `accountKind` is either `Storage` or `StorageV2` - or when `accountTier` is `Premium` and `accountKind` is `FileStorage`. func (o AccountOutput) ShareProperties() AccountSharePropertiesOutput { return o.ApplyT(func(v *Account) AccountSharePropertiesOutput { return v.ShareProperties }).(AccountSharePropertiesOutput) } diff --git a/sdk/go/azure/storage/blob.go b/sdk/go/azure/storage/blob.go index d22d4b27b7..444645a295 100644 --- a/sdk/go/azure/storage/blob.go +++ b/sdk/go/azure/storage/blob.go @@ -90,6 +90,8 @@ type Blob struct { ContentMd5 pulumi.StringPtrOutput `pulumi:"contentMd5"` // The content type of the storage blob. Cannot be defined if `sourceUri` is defined. Defaults to `application/octet-stream`. ContentType pulumi.StringPtrOutput `pulumi:"contentType"` + // The encryption scope to use for this blob. + EncryptionScope pulumi.StringPtrOutput `pulumi:"encryptionScope"` // A map of custom blob metadata. Metadata pulumi.StringMapOutput `pulumi:"metadata"` // The name of the storage blob. Must be unique within the storage container the blob is located. Changing this forces a new resource to be created. @@ -165,6 +167,8 @@ type blobState struct { ContentMd5 *string `pulumi:"contentMd5"` // The content type of the storage blob. Cannot be defined if `sourceUri` is defined. Defaults to `application/octet-stream`. ContentType *string `pulumi:"contentType"` + // The encryption scope to use for this blob. + EncryptionScope *string `pulumi:"encryptionScope"` // A map of custom blob metadata. Metadata map[string]string `pulumi:"metadata"` // The name of the storage blob. Must be unique within the storage container the blob is located. Changing this forces a new resource to be created. @@ -202,6 +206,8 @@ type BlobState struct { ContentMd5 pulumi.StringPtrInput // The content type of the storage blob. Cannot be defined if `sourceUri` is defined. Defaults to `application/octet-stream`. ContentType pulumi.StringPtrInput + // The encryption scope to use for this blob. + EncryptionScope pulumi.StringPtrInput // A map of custom blob metadata. Metadata pulumi.StringMapInput // The name of the storage blob. Must be unique within the storage container the blob is located. Changing this forces a new resource to be created. @@ -243,6 +249,8 @@ type blobArgs struct { ContentMd5 *string `pulumi:"contentMd5"` // The content type of the storage blob. Cannot be defined if `sourceUri` is defined. Defaults to `application/octet-stream`. ContentType *string `pulumi:"contentType"` + // The encryption scope to use for this blob. + EncryptionScope *string `pulumi:"encryptionScope"` // A map of custom blob metadata. Metadata map[string]string `pulumi:"metadata"` // The name of the storage blob. Must be unique within the storage container the blob is located. Changing this forces a new resource to be created. @@ -279,6 +287,8 @@ type BlobArgs struct { ContentMd5 pulumi.StringPtrInput // The content type of the storage blob. Cannot be defined if `sourceUri` is defined. Defaults to `application/octet-stream`. ContentType pulumi.StringPtrInput + // The encryption scope to use for this blob. + EncryptionScope pulumi.StringPtrInput // A map of custom blob metadata. Metadata pulumi.StringMapInput // The name of the storage blob. Must be unique within the storage container the blob is located. Changing this forces a new resource to be created. @@ -412,6 +422,11 @@ func (o BlobOutput) ContentType() pulumi.StringPtrOutput { return o.ApplyT(func(v *Blob) pulumi.StringPtrOutput { return v.ContentType }).(pulumi.StringPtrOutput) } +// The encryption scope to use for this blob. +func (o BlobOutput) EncryptionScope() pulumi.StringPtrOutput { + return o.ApplyT(func(v *Blob) pulumi.StringPtrOutput { return v.EncryptionScope }).(pulumi.StringPtrOutput) +} + // A map of custom blob metadata. func (o BlobOutput) Metadata() pulumi.StringMapOutput { return o.ApplyT(func(v *Blob) pulumi.StringMapOutput { return v.Metadata }).(pulumi.StringMapOutput) diff --git a/sdk/go/azure/storage/container.go b/sdk/go/azure/storage/container.go index bac5e3c0ef..b7680c1dbe 100644 --- a/sdk/go/azure/storage/container.go +++ b/sdk/go/azure/storage/container.go @@ -79,6 +79,10 @@ type Container struct { // // > **Note** When updating `containerAccessType` for an existing storage container resource, Shared Key authentication will always be used, as AzureAD authentication is not supported. ContainerAccessType pulumi.StringPtrOutput `pulumi:"containerAccessType"` + // The default encryption scope to use for blobs uploaded to this container. Changing this forces a new resource to be created. + DefaultEncryptionScope pulumi.StringOutput `pulumi:"defaultEncryptionScope"` + // Whether to allow blobs to override the default encryption scope for this container. Can only be set when specifying `defaultEncryptionScope`. Defaults to `true`. Changing this forces a new resource to be created. + EncryptionScopeOverrideEnabled pulumi.BoolPtrOutput `pulumi:"encryptionScopeOverrideEnabled"` // Is there an Immutability Policy configured on this Storage Container? HasImmutabilityPolicy pulumi.BoolOutput `pulumi:"hasImmutabilityPolicy"` // Is there a Legal Hold configured on this Storage Container? @@ -130,6 +134,10 @@ type containerState struct { // // > **Note** When updating `containerAccessType` for an existing storage container resource, Shared Key authentication will always be used, as AzureAD authentication is not supported. ContainerAccessType *string `pulumi:"containerAccessType"` + // The default encryption scope to use for blobs uploaded to this container. Changing this forces a new resource to be created. + DefaultEncryptionScope *string `pulumi:"defaultEncryptionScope"` + // Whether to allow blobs to override the default encryption scope for this container. Can only be set when specifying `defaultEncryptionScope`. Defaults to `true`. Changing this forces a new resource to be created. + EncryptionScopeOverrideEnabled *bool `pulumi:"encryptionScopeOverrideEnabled"` // Is there an Immutability Policy configured on this Storage Container? HasImmutabilityPolicy *bool `pulumi:"hasImmutabilityPolicy"` // Is there a Legal Hold configured on this Storage Container? @@ -149,6 +157,10 @@ type ContainerState struct { // // > **Note** When updating `containerAccessType` for an existing storage container resource, Shared Key authentication will always be used, as AzureAD authentication is not supported. ContainerAccessType pulumi.StringPtrInput + // The default encryption scope to use for blobs uploaded to this container. Changing this forces a new resource to be created. + DefaultEncryptionScope pulumi.StringPtrInput + // Whether to allow blobs to override the default encryption scope for this container. Can only be set when specifying `defaultEncryptionScope`. Defaults to `true`. Changing this forces a new resource to be created. + EncryptionScopeOverrideEnabled pulumi.BoolPtrInput // Is there an Immutability Policy configured on this Storage Container? HasImmutabilityPolicy pulumi.BoolPtrInput // Is there a Legal Hold configured on this Storage Container? @@ -172,6 +184,10 @@ type containerArgs struct { // // > **Note** When updating `containerAccessType` for an existing storage container resource, Shared Key authentication will always be used, as AzureAD authentication is not supported. ContainerAccessType *string `pulumi:"containerAccessType"` + // The default encryption scope to use for blobs uploaded to this container. Changing this forces a new resource to be created. + DefaultEncryptionScope *string `pulumi:"defaultEncryptionScope"` + // Whether to allow blobs to override the default encryption scope for this container. Can only be set when specifying `defaultEncryptionScope`. Defaults to `true`. Changing this forces a new resource to be created. + EncryptionScopeOverrideEnabled *bool `pulumi:"encryptionScopeOverrideEnabled"` // A mapping of MetaData for this Container. All metadata keys should be lowercase. Metadata map[string]string `pulumi:"metadata"` // The name of the Container which should be created within the Storage Account. Changing this forces a new resource to be created. @@ -186,6 +202,10 @@ type ContainerArgs struct { // // > **Note** When updating `containerAccessType` for an existing storage container resource, Shared Key authentication will always be used, as AzureAD authentication is not supported. ContainerAccessType pulumi.StringPtrInput + // The default encryption scope to use for blobs uploaded to this container. Changing this forces a new resource to be created. + DefaultEncryptionScope pulumi.StringPtrInput + // Whether to allow blobs to override the default encryption scope for this container. Can only be set when specifying `defaultEncryptionScope`. Defaults to `true`. Changing this forces a new resource to be created. + EncryptionScopeOverrideEnabled pulumi.BoolPtrInput // A mapping of MetaData for this Container. All metadata keys should be lowercase. Metadata pulumi.StringMapInput // The name of the Container which should be created within the Storage Account. Changing this forces a new resource to be created. @@ -288,6 +308,16 @@ func (o ContainerOutput) ContainerAccessType() pulumi.StringPtrOutput { return o.ApplyT(func(v *Container) pulumi.StringPtrOutput { return v.ContainerAccessType }).(pulumi.StringPtrOutput) } +// The default encryption scope to use for blobs uploaded to this container. Changing this forces a new resource to be created. +func (o ContainerOutput) DefaultEncryptionScope() pulumi.StringOutput { + return o.ApplyT(func(v *Container) pulumi.StringOutput { return v.DefaultEncryptionScope }).(pulumi.StringOutput) +} + +// Whether to allow blobs to override the default encryption scope for this container. Can only be set when specifying `defaultEncryptionScope`. Defaults to `true`. Changing this forces a new resource to be created. +func (o ContainerOutput) EncryptionScopeOverrideEnabled() pulumi.BoolPtrOutput { + return o.ApplyT(func(v *Container) pulumi.BoolPtrOutput { return v.EncryptionScopeOverrideEnabled }).(pulumi.BoolPtrOutput) +} + // Is there an Immutability Policy configured on this Storage Container? func (o ContainerOutput) HasImmutabilityPolicy() pulumi.BoolOutput { return o.ApplyT(func(v *Container) pulumi.BoolOutput { return v.HasImmutabilityPolicy }).(pulumi.BoolOutput) diff --git a/sdk/go/azure/storage/dataLakeGen2Filesystem.go b/sdk/go/azure/storage/dataLakeGen2Filesystem.go index 8c3e31e9ff..87babfa611 100644 --- a/sdk/go/azure/storage/dataLakeGen2Filesystem.go +++ b/sdk/go/azure/storage/dataLakeGen2Filesystem.go @@ -80,6 +80,8 @@ type DataLakeGen2Filesystem struct { // One or more `ace` blocks as defined below to specify the entries for the ACL for the path. Aces DataLakeGen2FilesystemAceArrayOutput `pulumi:"aces"` + // The default encryption scope to use for this filesystem. Changing this forces a new resource to be created. + DefaultEncryptionScope pulumi.StringOutput `pulumi:"defaultEncryptionScope"` // Specifies the Object ID of the Azure Active Directory Group to make the owning group of the root path (i.e. `/`). Possible values also include `$superuser`. // // > **NOTE:** The Storage Account requires `accountKind` to be either `StorageV2` or `BlobStorage`. In addition, `isHnsEnabled` has to be set to `true`. @@ -129,6 +131,8 @@ func GetDataLakeGen2Filesystem(ctx *pulumi.Context, type dataLakeGen2FilesystemState struct { // One or more `ace` blocks as defined below to specify the entries for the ACL for the path. Aces []DataLakeGen2FilesystemAce `pulumi:"aces"` + // The default encryption scope to use for this filesystem. Changing this forces a new resource to be created. + DefaultEncryptionScope *string `pulumi:"defaultEncryptionScope"` // Specifies the Object ID of the Azure Active Directory Group to make the owning group of the root path (i.e. `/`). Possible values also include `$superuser`. // // > **NOTE:** The Storage Account requires `accountKind` to be either `StorageV2` or `BlobStorage`. In addition, `isHnsEnabled` has to be set to `true`. @@ -146,6 +150,8 @@ type dataLakeGen2FilesystemState struct { type DataLakeGen2FilesystemState struct { // One or more `ace` blocks as defined below to specify the entries for the ACL for the path. Aces DataLakeGen2FilesystemAceArrayInput + // The default encryption scope to use for this filesystem. Changing this forces a new resource to be created. + DefaultEncryptionScope pulumi.StringPtrInput // Specifies the Object ID of the Azure Active Directory Group to make the owning group of the root path (i.e. `/`). Possible values also include `$superuser`. // // > **NOTE:** The Storage Account requires `accountKind` to be either `StorageV2` or `BlobStorage`. In addition, `isHnsEnabled` has to be set to `true`. @@ -167,6 +173,8 @@ func (DataLakeGen2FilesystemState) ElementType() reflect.Type { type dataLakeGen2FilesystemArgs struct { // One or more `ace` blocks as defined below to specify the entries for the ACL for the path. Aces []DataLakeGen2FilesystemAce `pulumi:"aces"` + // The default encryption scope to use for this filesystem. Changing this forces a new resource to be created. + DefaultEncryptionScope *string `pulumi:"defaultEncryptionScope"` // Specifies the Object ID of the Azure Active Directory Group to make the owning group of the root path (i.e. `/`). Possible values also include `$superuser`. // // > **NOTE:** The Storage Account requires `accountKind` to be either `StorageV2` or `BlobStorage`. In addition, `isHnsEnabled` has to be set to `true`. @@ -185,6 +193,8 @@ type dataLakeGen2FilesystemArgs struct { type DataLakeGen2FilesystemArgs struct { // One or more `ace` blocks as defined below to specify the entries for the ACL for the path. Aces DataLakeGen2FilesystemAceArrayInput + // The default encryption scope to use for this filesystem. Changing this forces a new resource to be created. + DefaultEncryptionScope pulumi.StringPtrInput // Specifies the Object ID of the Azure Active Directory Group to make the owning group of the root path (i.e. `/`). Possible values also include `$superuser`. // // > **NOTE:** The Storage Account requires `accountKind` to be either `StorageV2` or `BlobStorage`. In addition, `isHnsEnabled` has to be set to `true`. @@ -291,6 +301,11 @@ func (o DataLakeGen2FilesystemOutput) Aces() DataLakeGen2FilesystemAceArrayOutpu return o.ApplyT(func(v *DataLakeGen2Filesystem) DataLakeGen2FilesystemAceArrayOutput { return v.Aces }).(DataLakeGen2FilesystemAceArrayOutput) } +// The default encryption scope to use for this filesystem. Changing this forces a new resource to be created. +func (o DataLakeGen2FilesystemOutput) DefaultEncryptionScope() pulumi.StringOutput { + return o.ApplyT(func(v *DataLakeGen2Filesystem) pulumi.StringOutput { return v.DefaultEncryptionScope }).(pulumi.StringOutput) +} + // Specifies the Object ID of the Azure Active Directory Group to make the owning group of the root path (i.e. `/`). Possible values also include `$superuser`. // // > **NOTE:** The Storage Account requires `accountKind` to be either `StorageV2` or `BlobStorage`. In addition, `isHnsEnabled` has to be set to `true`. diff --git a/sdk/go/azure/storage/getBlob.go b/sdk/go/azure/storage/getBlob.go index 21d033f06a..0ceab494a9 100644 --- a/sdk/go/azure/storage/getBlob.go +++ b/sdk/go/azure/storage/getBlob.go @@ -72,6 +72,8 @@ type LookupBlobResult struct { ContentMd5 string `pulumi:"contentMd5"` // The content type of the storage blob. ContentType string `pulumi:"contentType"` + // The encryption scope for this blob. + EncryptionScope string `pulumi:"encryptionScope"` // The provider-assigned unique ID for this managed resource. Id string `pulumi:"id"` // A map of custom blob metadata. @@ -144,6 +146,11 @@ func (o LookupBlobResultOutput) ContentType() pulumi.StringOutput { return o.ApplyT(func(v LookupBlobResult) string { return v.ContentType }).(pulumi.StringOutput) } +// The encryption scope for this blob. +func (o LookupBlobResultOutput) EncryptionScope() pulumi.StringOutput { + return o.ApplyT(func(v LookupBlobResult) string { return v.EncryptionScope }).(pulumi.StringOutput) +} + // The provider-assigned unique ID for this managed resource. func (o LookupBlobResultOutput) Id() pulumi.StringOutput { return o.ApplyT(func(v LookupBlobResult) string { return v.Id }).(pulumi.StringOutput) diff --git a/sdk/go/azure/storage/getStorageContainer.go b/sdk/go/azure/storage/getStorageContainer.go index 823dfee823..5a06790a7e 100644 --- a/sdk/go/azure/storage/getStorageContainer.go +++ b/sdk/go/azure/storage/getStorageContainer.go @@ -65,6 +65,10 @@ type GetStorageContainerArgs struct { type GetStorageContainerResult struct { // The Access Level configured for this Container. ContainerAccessType string `pulumi:"containerAccessType"` + // The default encryption scope in use for blobs uploaded to this container. + DefaultEncryptionScope string `pulumi:"defaultEncryptionScope"` + // Whether blobs are allowed to override the default encryption scope for this container. + EncryptionScopeOverrideEnabled bool `pulumi:"encryptionScopeOverrideEnabled"` // Is there an Immutability Policy configured on this Storage Container? HasImmutabilityPolicy bool `pulumi:"hasImmutabilityPolicy"` // Is there a Legal Hold configured on this Storage Container? @@ -126,6 +130,16 @@ func (o GetStorageContainerResultOutput) ContainerAccessType() pulumi.StringOutp return o.ApplyT(func(v GetStorageContainerResult) string { return v.ContainerAccessType }).(pulumi.StringOutput) } +// The default encryption scope in use for blobs uploaded to this container. +func (o GetStorageContainerResultOutput) DefaultEncryptionScope() pulumi.StringOutput { + return o.ApplyT(func(v GetStorageContainerResult) string { return v.DefaultEncryptionScope }).(pulumi.StringOutput) +} + +// Whether blobs are allowed to override the default encryption scope for this container. +func (o GetStorageContainerResultOutput) EncryptionScopeOverrideEnabled() pulumi.BoolOutput { + return o.ApplyT(func(v GetStorageContainerResult) bool { return v.EncryptionScopeOverrideEnabled }).(pulumi.BoolOutput) +} + // Is there an Immutability Policy configured on this Storage Container? func (o GetStorageContainerResultOutput) HasImmutabilityPolicy() pulumi.BoolOutput { return o.ApplyT(func(v GetStorageContainerResult) bool { return v.HasImmutabilityPolicy }).(pulumi.BoolOutput) diff --git a/sdk/go/azure/storage/zipBlob.go b/sdk/go/azure/storage/zipBlob.go index fe4df6fd22..75b2482940 100644 --- a/sdk/go/azure/storage/zipBlob.go +++ b/sdk/go/azure/storage/zipBlob.go @@ -21,6 +21,7 @@ type ZipBlob struct { Content pulumi.ArchiveOutput `pulumi:"content"` ContentMd5 pulumi.StringPtrOutput `pulumi:"contentMd5"` ContentType pulumi.StringPtrOutput `pulumi:"contentType"` + EncryptionScope pulumi.StringPtrOutput `pulumi:"encryptionScope"` Metadata pulumi.StringMapOutput `pulumi:"metadata"` Name pulumi.StringOutput `pulumi:"name"` Parallelism pulumi.IntPtrOutput `pulumi:"parallelism"` @@ -77,6 +78,7 @@ type zipBlobState struct { Content pulumi.Archive `pulumi:"content"` ContentMd5 *string `pulumi:"contentMd5"` ContentType *string `pulumi:"contentType"` + EncryptionScope *string `pulumi:"encryptionScope"` Metadata map[string]string `pulumi:"metadata"` Name *string `pulumi:"name"` Parallelism *int `pulumi:"parallelism"` @@ -95,6 +97,7 @@ type ZipBlobState struct { Content pulumi.ArchiveInput ContentMd5 pulumi.StringPtrInput ContentType pulumi.StringPtrInput + EncryptionScope pulumi.StringPtrInput Metadata pulumi.StringMapInput Name pulumi.StringPtrInput Parallelism pulumi.IntPtrInput @@ -117,6 +120,7 @@ type zipBlobArgs struct { Content pulumi.Archive `pulumi:"content"` ContentMd5 *string `pulumi:"contentMd5"` ContentType *string `pulumi:"contentType"` + EncryptionScope *string `pulumi:"encryptionScope"` Metadata map[string]string `pulumi:"metadata"` Name *string `pulumi:"name"` Parallelism *int `pulumi:"parallelism"` @@ -135,6 +139,7 @@ type ZipBlobArgs struct { Content pulumi.ArchiveInput ContentMd5 pulumi.StringPtrInput ContentType pulumi.StringPtrInput + EncryptionScope pulumi.StringPtrInput Metadata pulumi.StringMapInput Name pulumi.StringPtrInput Parallelism pulumi.IntPtrInput @@ -253,6 +258,10 @@ func (o ZipBlobOutput) ContentType() pulumi.StringPtrOutput { return o.ApplyT(func(v *ZipBlob) pulumi.StringPtrOutput { return v.ContentType }).(pulumi.StringPtrOutput) } +func (o ZipBlobOutput) EncryptionScope() pulumi.StringPtrOutput { + return o.ApplyT(func(v *ZipBlob) pulumi.StringPtrOutput { return v.EncryptionScope }).(pulumi.StringPtrOutput) +} + func (o ZipBlobOutput) Metadata() pulumi.StringMapOutput { return o.ApplyT(func(v *ZipBlob) pulumi.StringMapOutput { return v.Metadata }).(pulumi.StringMapOutput) } diff --git a/sdk/go/azure/webpubsub/service.go b/sdk/go/azure/webpubsub/service.go index c6954d3165..eff28921fa 100644 --- a/sdk/go/azure/webpubsub/service.go +++ b/sdk/go/azure/webpubsub/service.go @@ -75,7 +75,9 @@ type Service struct { // Whether to enable AAD auth? Defaults to `true`. AadAuthEnabled pulumi.BoolPtrOutput `pulumi:"aadAuthEnabled"` - // Specifies the number of units associated with this Web PubSub resource. Valid values are: Free: `1`, Standard: `1`, `2`, `5`, `10`, `20`, `50`, `100`. + // Specifies the number of units associated with this Web PubSub resource. Valid values are `1`, `2`, `3`, `4`, `5`, `6`, `7`, `8`, `9`, `10`, `20`, `30`, `40`, `50`, `60`, `70`, `80`, `90`, `100`, `200`, `300`, `400`, `500`, `600`, `700`, `800`, `900` and `1000`. + // + // > **NOTE:** The valid capacity range for sku `Free_F1` is `1`, for sku `Premium_P2` is from `100` to `1000`, and from `1` to `100` for sku `Standard_S1` and `Premium_P1`. Capacity pulumi.IntPtrOutput `pulumi:"capacity"` // The publicly accessible IP of the Web PubSub service. ExternalIp pulumi.StringOutput `pulumi:"externalIp"` @@ -107,7 +109,7 @@ type Service struct { SecondaryConnectionString pulumi.StringOutput `pulumi:"secondaryConnectionString"` // The publicly accessible port of the Web PubSub service which is designed for customer server side use. ServerPort pulumi.IntOutput `pulumi:"serverPort"` - // Specifies which SKU to use. Possible values are `Free_F1`, `Standard_S1`, and `Premium_P1`. + // Specifies which SKU to use. Possible values are `Free_F1`, `Standard_S1`, `Premium_P1` and `Premium_P2`. Sku pulumi.StringOutput `pulumi:"sku"` // A mapping of tags to assign to the resource. Tags pulumi.StringMapOutput `pulumi:"tags"` @@ -161,7 +163,9 @@ func GetService(ctx *pulumi.Context, type serviceState struct { // Whether to enable AAD auth? Defaults to `true`. AadAuthEnabled *bool `pulumi:"aadAuthEnabled"` - // Specifies the number of units associated with this Web PubSub resource. Valid values are: Free: `1`, Standard: `1`, `2`, `5`, `10`, `20`, `50`, `100`. + // Specifies the number of units associated with this Web PubSub resource. Valid values are `1`, `2`, `3`, `4`, `5`, `6`, `7`, `8`, `9`, `10`, `20`, `30`, `40`, `50`, `60`, `70`, `80`, `90`, `100`, `200`, `300`, `400`, `500`, `600`, `700`, `800`, `900` and `1000`. + // + // > **NOTE:** The valid capacity range for sku `Free_F1` is `1`, for sku `Premium_P2` is from `100` to `1000`, and from `1` to `100` for sku `Standard_S1` and `Premium_P1`. Capacity *int `pulumi:"capacity"` // The publicly accessible IP of the Web PubSub service. ExternalIp *string `pulumi:"externalIp"` @@ -193,7 +197,7 @@ type serviceState struct { SecondaryConnectionString *string `pulumi:"secondaryConnectionString"` // The publicly accessible port of the Web PubSub service which is designed for customer server side use. ServerPort *int `pulumi:"serverPort"` - // Specifies which SKU to use. Possible values are `Free_F1`, `Standard_S1`, and `Premium_P1`. + // Specifies which SKU to use. Possible values are `Free_F1`, `Standard_S1`, `Premium_P1` and `Premium_P2`. Sku *string `pulumi:"sku"` // A mapping of tags to assign to the resource. Tags map[string]string `pulumi:"tags"` @@ -205,7 +209,9 @@ type serviceState struct { type ServiceState struct { // Whether to enable AAD auth? Defaults to `true`. AadAuthEnabled pulumi.BoolPtrInput - // Specifies the number of units associated with this Web PubSub resource. Valid values are: Free: `1`, Standard: `1`, `2`, `5`, `10`, `20`, `50`, `100`. + // Specifies the number of units associated with this Web PubSub resource. Valid values are `1`, `2`, `3`, `4`, `5`, `6`, `7`, `8`, `9`, `10`, `20`, `30`, `40`, `50`, `60`, `70`, `80`, `90`, `100`, `200`, `300`, `400`, `500`, `600`, `700`, `800`, `900` and `1000`. + // + // > **NOTE:** The valid capacity range for sku `Free_F1` is `1`, for sku `Premium_P2` is from `100` to `1000`, and from `1` to `100` for sku `Standard_S1` and `Premium_P1`. Capacity pulumi.IntPtrInput // The publicly accessible IP of the Web PubSub service. ExternalIp pulumi.StringPtrInput @@ -237,7 +243,7 @@ type ServiceState struct { SecondaryConnectionString pulumi.StringPtrInput // The publicly accessible port of the Web PubSub service which is designed for customer server side use. ServerPort pulumi.IntPtrInput - // Specifies which SKU to use. Possible values are `Free_F1`, `Standard_S1`, and `Premium_P1`. + // Specifies which SKU to use. Possible values are `Free_F1`, `Standard_S1`, `Premium_P1` and `Premium_P2`. Sku pulumi.StringPtrInput // A mapping of tags to assign to the resource. Tags pulumi.StringMapInput @@ -253,7 +259,9 @@ func (ServiceState) ElementType() reflect.Type { type serviceArgs struct { // Whether to enable AAD auth? Defaults to `true`. AadAuthEnabled *bool `pulumi:"aadAuthEnabled"` - // Specifies the number of units associated with this Web PubSub resource. Valid values are: Free: `1`, Standard: `1`, `2`, `5`, `10`, `20`, `50`, `100`. + // Specifies the number of units associated with this Web PubSub resource. Valid values are `1`, `2`, `3`, `4`, `5`, `6`, `7`, `8`, `9`, `10`, `20`, `30`, `40`, `50`, `60`, `70`, `80`, `90`, `100`, `200`, `300`, `400`, `500`, `600`, `700`, `800`, `900` and `1000`. + // + // > **NOTE:** The valid capacity range for sku `Free_F1` is `1`, for sku `Premium_P2` is from `100` to `1000`, and from `1` to `100` for sku `Standard_S1` and `Premium_P1`. Capacity *int `pulumi:"capacity"` // An `identity` block as defined below. Identity *ServiceIdentity `pulumi:"identity"` @@ -269,7 +277,7 @@ type serviceArgs struct { PublicNetworkAccessEnabled *bool `pulumi:"publicNetworkAccessEnabled"` // The name of the resource group in which to create the Web PubSub service. Changing this forces a new resource to be created. ResourceGroupName string `pulumi:"resourceGroupName"` - // Specifies which SKU to use. Possible values are `Free_F1`, `Standard_S1`, and `Premium_P1`. + // Specifies which SKU to use. Possible values are `Free_F1`, `Standard_S1`, `Premium_P1` and `Premium_P2`. Sku string `pulumi:"sku"` // A mapping of tags to assign to the resource. Tags map[string]string `pulumi:"tags"` @@ -281,7 +289,9 @@ type serviceArgs struct { type ServiceArgs struct { // Whether to enable AAD auth? Defaults to `true`. AadAuthEnabled pulumi.BoolPtrInput - // Specifies the number of units associated with this Web PubSub resource. Valid values are: Free: `1`, Standard: `1`, `2`, `5`, `10`, `20`, `50`, `100`. + // Specifies the number of units associated with this Web PubSub resource. Valid values are `1`, `2`, `3`, `4`, `5`, `6`, `7`, `8`, `9`, `10`, `20`, `30`, `40`, `50`, `60`, `70`, `80`, `90`, `100`, `200`, `300`, `400`, `500`, `600`, `700`, `800`, `900` and `1000`. + // + // > **NOTE:** The valid capacity range for sku `Free_F1` is `1`, for sku `Premium_P2` is from `100` to `1000`, and from `1` to `100` for sku `Standard_S1` and `Premium_P1`. Capacity pulumi.IntPtrInput // An `identity` block as defined below. Identity ServiceIdentityPtrInput @@ -297,7 +307,7 @@ type ServiceArgs struct { PublicNetworkAccessEnabled pulumi.BoolPtrInput // The name of the resource group in which to create the Web PubSub service. Changing this forces a new resource to be created. ResourceGroupName pulumi.StringInput - // Specifies which SKU to use. Possible values are `Free_F1`, `Standard_S1`, and `Premium_P1`. + // Specifies which SKU to use. Possible values are `Free_F1`, `Standard_S1`, `Premium_P1` and `Premium_P2`. Sku pulumi.StringInput // A mapping of tags to assign to the resource. Tags pulumi.StringMapInput @@ -397,7 +407,9 @@ func (o ServiceOutput) AadAuthEnabled() pulumi.BoolPtrOutput { return o.ApplyT(func(v *Service) pulumi.BoolPtrOutput { return v.AadAuthEnabled }).(pulumi.BoolPtrOutput) } -// Specifies the number of units associated with this Web PubSub resource. Valid values are: Free: `1`, Standard: `1`, `2`, `5`, `10`, `20`, `50`, `100`. +// Specifies the number of units associated with this Web PubSub resource. Valid values are `1`, `2`, `3`, `4`, `5`, `6`, `7`, `8`, `9`, `10`, `20`, `30`, `40`, `50`, `60`, `70`, `80`, `90`, `100`, `200`, `300`, `400`, `500`, `600`, `700`, `800`, `900` and `1000`. +// +// > **NOTE:** The valid capacity range for sku `Free_F1` is `1`, for sku `Premium_P2` is from `100` to `1000`, and from `1` to `100` for sku `Standard_S1` and `Premium_P1`. func (o ServiceOutput) Capacity() pulumi.IntPtrOutput { return o.ApplyT(func(v *Service) pulumi.IntPtrOutput { return v.Capacity }).(pulumi.IntPtrOutput) } @@ -477,7 +489,7 @@ func (o ServiceOutput) ServerPort() pulumi.IntOutput { return o.ApplyT(func(v *Service) pulumi.IntOutput { return v.ServerPort }).(pulumi.IntOutput) } -// Specifies which SKU to use. Possible values are `Free_F1`, `Standard_S1`, and `Premium_P1`. +// Specifies which SKU to use. Possible values are `Free_F1`, `Standard_S1`, `Premium_P1` and `Premium_P2`. func (o ServiceOutput) Sku() pulumi.StringOutput { return o.ApplyT(func(v *Service) pulumi.StringOutput { return v.Sku }).(pulumi.StringOutput) } diff --git a/sdk/java/src/main/java/com/pulumi/azure/Config.java b/sdk/java/src/main/java/com/pulumi/azure/Config.java index d480de8d27..b5b5da5c05 100644 --- a/sdk/java/src/main/java/com/pulumi/azure/Config.java +++ b/sdk/java/src/main/java/com/pulumi/azure/Config.java @@ -80,7 +80,8 @@ public Optional disableTerraformPartnerId() { return Codegen.booleanProp("disableTerraformPartnerId").config(config).get(); } /** - * The Cloud Environment which should be used. Possible values are public, usgovernment, and china. Defaults to public. + * The Cloud Environment which should be used. Possible values are public, usgovernment, and china. Defaults to public. Not + * used and should not be specified when `metadata_host` is specified. * */ public String environment() { diff --git a/sdk/java/src/main/java/com/pulumi/azure/Provider.java b/sdk/java/src/main/java/com/pulumi/azure/Provider.java index 1089c1ecd2..92bd64b471 100644 --- a/sdk/java/src/main/java/com/pulumi/azure/Provider.java +++ b/sdk/java/src/main/java/com/pulumi/azure/Provider.java @@ -128,14 +128,16 @@ public Output> clientSecretFilePath() { return Codegen.optional(this.clientSecretFilePath); } /** - * The Cloud Environment which should be used. Possible values are public, usgovernment, and china. Defaults to public. + * The Cloud Environment which should be used. Possible values are public, usgovernment, and china. Defaults to public. Not + * used and should not be specified when `metadata_host` is specified. * */ @Export(name="environment", refs={String.class}, tree="[0]") private Output environment; /** - * @return The Cloud Environment which should be used. Possible values are public, usgovernment, and china. Defaults to public. + * @return The Cloud Environment which should be used. Possible values are public, usgovernment, and china. Defaults to public. Not + * used and should not be specified when `metadata_host` is specified. * */ public Output> environment() { diff --git a/sdk/java/src/main/java/com/pulumi/azure/ProviderArgs.java b/sdk/java/src/main/java/com/pulumi/azure/ProviderArgs.java index f40622c0b3..ac60f8f66d 100644 --- a/sdk/java/src/main/java/com/pulumi/azure/ProviderArgs.java +++ b/sdk/java/src/main/java/com/pulumi/azure/ProviderArgs.java @@ -168,14 +168,16 @@ public Optional> disableTerraformPartnerId() { } /** - * The Cloud Environment which should be used. Possible values are public, usgovernment, and china. Defaults to public. + * The Cloud Environment which should be used. Possible values are public, usgovernment, and china. Defaults to public. Not + * used and should not be specified when `metadata_host` is specified. * */ @Import(name="environment") private @Nullable Output environment; /** - * @return The Cloud Environment which should be used. Possible values are public, usgovernment, and china. Defaults to public. + * @return The Cloud Environment which should be used. Possible values are public, usgovernment, and china. Defaults to public. Not + * used and should not be specified when `metadata_host` is specified. * */ public Optional> environment() { @@ -681,7 +683,8 @@ public Builder disableTerraformPartnerId(Boolean disableTerraformPartnerId) { } /** - * @param environment The Cloud Environment which should be used. Possible values are public, usgovernment, and china. Defaults to public. + * @param environment The Cloud Environment which should be used. Possible values are public, usgovernment, and china. Defaults to public. Not + * used and should not be specified when `metadata_host` is specified. * * @return builder * @@ -692,7 +695,8 @@ public Builder environment(@Nullable Output environment) { } /** - * @param environment The Cloud Environment which should be used. Possible values are public, usgovernment, and china. Defaults to public. + * @param environment The Cloud Environment which should be used. Possible values are public, usgovernment, and china. Defaults to public. Not + * used and should not be specified when `metadata_host` is specified. * * @return builder * diff --git a/sdk/java/src/main/java/com/pulumi/azure/appservice/inputs/LinuxWebAppLogsHttpLogsArgs.java b/sdk/java/src/main/java/com/pulumi/azure/appservice/inputs/LinuxWebAppLogsHttpLogsArgs.java index 0601050632..5ae2555984 100644 --- a/sdk/java/src/main/java/com/pulumi/azure/appservice/inputs/LinuxWebAppLogsHttpLogsArgs.java +++ b/sdk/java/src/main/java/com/pulumi/azure/appservice/inputs/LinuxWebAppLogsHttpLogsArgs.java @@ -17,14 +17,14 @@ public final class LinuxWebAppLogsHttpLogsArgs extends com.pulumi.resources.Reso public static final LinuxWebAppLogsHttpLogsArgs Empty = new LinuxWebAppLogsHttpLogsArgs(); /** - * A `azure_blob_storage_http` block as defined below. + * A `azure_blob_storage_http` block as defined above. * */ @Import(name="azureBlobStorage") private @Nullable Output azureBlobStorage; /** - * @return A `azure_blob_storage_http` block as defined below. + * @return A `azure_blob_storage_http` block as defined above. * */ public Optional> azureBlobStorage() { @@ -72,7 +72,7 @@ public Builder(LinuxWebAppLogsHttpLogsArgs defaults) { } /** - * @param azureBlobStorage A `azure_blob_storage_http` block as defined below. + * @param azureBlobStorage A `azure_blob_storage_http` block as defined above. * * @return builder * @@ -83,7 +83,7 @@ public Builder azureBlobStorage(@Nullable Output> javaServerVersion() { * * > **NOTE:** The valid version combinations for `java_version`, `java_server` and `java_server_version` can be checked from the command line via `az webapp list-runtimes --linux`. * + * > **NOTE:** `java_server`, `java_server_version`, and `java_version` must all be specified if building a java app + * */ @Import(name="javaVersion") private @Nullable Output javaVersion; @@ -195,6 +197,8 @@ public Optional> javaServerVersion() { * * > **NOTE:** The valid version combinations for `java_version`, `java_server` and `java_server_version` can be checked from the command line via `az webapp list-runtimes --linux`. * + * > **NOTE:** `java_server`, `java_server_version`, and `java_version` must all be specified if building a java app + * */ public Optional> javaVersion() { return Optional.ofNullable(this.javaVersion); @@ -537,6 +541,8 @@ public Builder javaServerVersion(String javaServerVersion) { * * > **NOTE:** The valid version combinations for `java_version`, `java_server` and `java_server_version` can be checked from the command line via `az webapp list-runtimes --linux`. * + * > **NOTE:** `java_server`, `java_server_version`, and `java_version` must all be specified if building a java app + * * @return builder * */ @@ -550,6 +556,8 @@ public Builder javaVersion(@Nullable Output javaVersion) { * * > **NOTE:** The valid version combinations for `java_version`, `java_server` and `java_server_version` can be checked from the command line via `az webapp list-runtimes --linux`. * + * > **NOTE:** `java_server`, `java_server_version`, and `java_version` must all be specified if building a java app + * * @return builder * */ diff --git a/sdk/java/src/main/java/com/pulumi/azure/appservice/inputs/WindowsWebAppLogsHttpLogsArgs.java b/sdk/java/src/main/java/com/pulumi/azure/appservice/inputs/WindowsWebAppLogsHttpLogsArgs.java index 127c25aba1..1be193a0a3 100644 --- a/sdk/java/src/main/java/com/pulumi/azure/appservice/inputs/WindowsWebAppLogsHttpLogsArgs.java +++ b/sdk/java/src/main/java/com/pulumi/azure/appservice/inputs/WindowsWebAppLogsHttpLogsArgs.java @@ -17,14 +17,14 @@ public final class WindowsWebAppLogsHttpLogsArgs extends com.pulumi.resources.Re public static final WindowsWebAppLogsHttpLogsArgs Empty = new WindowsWebAppLogsHttpLogsArgs(); /** - * A `azure_blob_storage_http` block as defined above. + * A `azure_blob_storage_http` block as defined below. * */ @Import(name="azureBlobStorage") private @Nullable Output azureBlobStorage; /** - * @return A `azure_blob_storage_http` block as defined above. + * @return A `azure_blob_storage_http` block as defined below. * */ public Optional> azureBlobStorage() { @@ -72,7 +72,7 @@ public Builder(WindowsWebAppLogsHttpLogsArgs defaults) { } /** - * @param azureBlobStorage A `azure_blob_storage_http` block as defined above. + * @param azureBlobStorage A `azure_blob_storage_http` block as defined below. * * @return builder * @@ -83,7 +83,7 @@ public Builder azureBlobStorage(@Nullable Output azureBlobStorage() { diff --git a/sdk/java/src/main/java/com/pulumi/azure/appservice/outputs/LinuxWebAppSiteConfigApplicationStack.java b/sdk/java/src/main/java/com/pulumi/azure/appservice/outputs/LinuxWebAppSiteConfigApplicationStack.java index 2b377cfadf..4d26349764 100644 --- a/sdk/java/src/main/java/com/pulumi/azure/appservice/outputs/LinuxWebAppSiteConfigApplicationStack.java +++ b/sdk/java/src/main/java/com/pulumi/azure/appservice/outputs/LinuxWebAppSiteConfigApplicationStack.java @@ -74,6 +74,8 @@ public final class LinuxWebAppSiteConfigApplicationStack { * * > **NOTE:** The valid version combinations for `java_version`, `java_server` and `java_server_version` can be checked from the command line via `az webapp list-runtimes --linux`. * + * > **NOTE:** `java_server`, `java_server_version`, and `java_version` must all be specified if building a java app + * */ private @Nullable String javaVersion; /** @@ -185,6 +187,8 @@ public Optional javaServerVersion() { * * > **NOTE:** The valid version combinations for `java_version`, `java_server` and `java_server_version` can be checked from the command line via `az webapp list-runtimes --linux`. * + * > **NOTE:** `java_server`, `java_server_version`, and `java_version` must all be specified if building a java app + * */ public Optional javaVersion() { return Optional.ofNullable(this.javaVersion); diff --git a/sdk/java/src/main/java/com/pulumi/azure/appservice/outputs/WindowsWebAppLogsHttpLogs.java b/sdk/java/src/main/java/com/pulumi/azure/appservice/outputs/WindowsWebAppLogsHttpLogs.java index dcfd1b2430..c5c13518a5 100644 --- a/sdk/java/src/main/java/com/pulumi/azure/appservice/outputs/WindowsWebAppLogsHttpLogs.java +++ b/sdk/java/src/main/java/com/pulumi/azure/appservice/outputs/WindowsWebAppLogsHttpLogs.java @@ -13,7 +13,7 @@ @CustomType public final class WindowsWebAppLogsHttpLogs { /** - * @return A `azure_blob_storage_http` block as defined above. + * @return A `azure_blob_storage_http` block as defined below. * */ private @Nullable WindowsWebAppLogsHttpLogsAzureBlobStorage azureBlobStorage; @@ -25,7 +25,7 @@ public final class WindowsWebAppLogsHttpLogs { private WindowsWebAppLogsHttpLogs() {} /** - * @return A `azure_blob_storage_http` block as defined above. + * @return A `azure_blob_storage_http` block as defined below. * */ public Optional azureBlobStorage() { diff --git a/sdk/java/src/main/java/com/pulumi/azure/bot/ServiceAzureBot.java b/sdk/java/src/main/java/com/pulumi/azure/bot/ServiceAzureBot.java index aeee3d69bb..cd25167b89 100644 --- a/sdk/java/src/main/java/com/pulumi/azure/bot/ServiceAzureBot.java +++ b/sdk/java/src/main/java/com/pulumi/azure/bot/ServiceAzureBot.java @@ -333,14 +333,14 @@ public Output name() { return this.name; } /** - * Whether public network access is allowed for this server. Defaults to `true`. + * Whether public network access is enabled. Defaults to `true`. * */ @Export(name="publicNetworkAccessEnabled", refs={Boolean.class}, tree="[0]") private Output publicNetworkAccessEnabled; /** - * @return Whether public network access is allowed for this server. Defaults to `true`. + * @return Whether public network access is enabled. Defaults to `true`. * */ public Output> publicNetworkAccessEnabled() { diff --git a/sdk/java/src/main/java/com/pulumi/azure/bot/ServiceAzureBotArgs.java b/sdk/java/src/main/java/com/pulumi/azure/bot/ServiceAzureBotArgs.java index 23499d1c52..6b423dd0ac 100644 --- a/sdk/java/src/main/java/com/pulumi/azure/bot/ServiceAzureBotArgs.java +++ b/sdk/java/src/main/java/com/pulumi/azure/bot/ServiceAzureBotArgs.java @@ -264,14 +264,14 @@ public Optional> name() { } /** - * Whether public network access is allowed for this server. Defaults to `true`. + * Whether public network access is enabled. Defaults to `true`. * */ @Import(name="publicNetworkAccessEnabled") private @Nullable Output publicNetworkAccessEnabled; /** - * @return Whether public network access is allowed for this server. Defaults to `true`. + * @return Whether public network access is enabled. Defaults to `true`. * */ public Optional> publicNetworkAccessEnabled() { @@ -733,7 +733,7 @@ public Builder name(String name) { } /** - * @param publicNetworkAccessEnabled Whether public network access is allowed for this server. Defaults to `true`. + * @param publicNetworkAccessEnabled Whether public network access is enabled. Defaults to `true`. * * @return builder * @@ -744,7 +744,7 @@ public Builder publicNetworkAccessEnabled(@Nullable Output publicNetwor } /** - * @param publicNetworkAccessEnabled Whether public network access is allowed for this server. Defaults to `true`. + * @param publicNetworkAccessEnabled Whether public network access is enabled. Defaults to `true`. * * @return builder * diff --git a/sdk/java/src/main/java/com/pulumi/azure/bot/inputs/ServiceAzureBotState.java b/sdk/java/src/main/java/com/pulumi/azure/bot/inputs/ServiceAzureBotState.java index ca8b1bb240..5e79004e5e 100644 --- a/sdk/java/src/main/java/com/pulumi/azure/bot/inputs/ServiceAzureBotState.java +++ b/sdk/java/src/main/java/com/pulumi/azure/bot/inputs/ServiceAzureBotState.java @@ -263,14 +263,14 @@ public Optional> name() { } /** - * Whether public network access is allowed for this server. Defaults to `true`. + * Whether public network access is enabled. Defaults to `true`. * */ @Import(name="publicNetworkAccessEnabled") private @Nullable Output publicNetworkAccessEnabled; /** - * @return Whether public network access is allowed for this server. Defaults to `true`. + * @return Whether public network access is enabled. Defaults to `true`. * */ public Optional> publicNetworkAccessEnabled() { @@ -732,7 +732,7 @@ public Builder name(String name) { } /** - * @param publicNetworkAccessEnabled Whether public network access is allowed for this server. Defaults to `true`. + * @param publicNetworkAccessEnabled Whether public network access is enabled. Defaults to `true`. * * @return builder * @@ -743,7 +743,7 @@ public Builder publicNetworkAccessEnabled(@Nullable Output publicNetwor } /** - * @param publicNetworkAccessEnabled Whether public network access is allowed for this server. Defaults to `true`. + * @param publicNetworkAccessEnabled Whether public network access is enabled. Defaults to `true`. * * @return builder * diff --git a/sdk/java/src/main/java/com/pulumi/azure/chaosstudio/Target.java b/sdk/java/src/main/java/com/pulumi/azure/chaosstudio/Target.java index e5e67d2854..49bd010bba 100644 --- a/sdk/java/src/main/java/com/pulumi/azure/chaosstudio/Target.java +++ b/sdk/java/src/main/java/com/pulumi/azure/chaosstudio/Target.java @@ -32,6 +32,7 @@ * import com.pulumi.azure.containerservice.KubernetesCluster; * import com.pulumi.azure.containerservice.KubernetesClusterArgs; * import com.pulumi.azure.containerservice.inputs.KubernetesClusterDefaultNodePoolArgs; + * import com.pulumi.azure.containerservice.inputs.KubernetesClusterDefaultNodePoolUpgradeSettingsArgs; * import com.pulumi.azure.containerservice.inputs.KubernetesClusterIdentityArgs; * import com.pulumi.azure.chaosstudio.Target; * import com.pulumi.azure.chaosstudio.TargetArgs; @@ -62,8 +63,10 @@ * .name("example-value") * .nodeCount("example-value") * .vmSize("example-value") + * .upgradeSettings(KubernetesClusterDefaultNodePoolUpgradeSettingsArgs.builder() + * .maxSurge("example-value") + * .build()) * .build()) - * .upgradeSettings(%!v(PANIC=Format method: runtime error: invalid memory address or nil pointer dereference)) * .identity(KubernetesClusterIdentityArgs.builder() * .type("example-value") * .build()) diff --git a/sdk/java/src/main/java/com/pulumi/azure/compute/Snapshot.java b/sdk/java/src/main/java/com/pulumi/azure/compute/Snapshot.java index cba4b7f2d1..a30b9ff15c 100644 --- a/sdk/java/src/main/java/com/pulumi/azure/compute/Snapshot.java +++ b/sdk/java/src/main/java/com/pulumi/azure/compute/Snapshot.java @@ -179,6 +179,34 @@ public Output location() { public Output name() { return this.name; } + /** + * Policy for accessing the disk via network. Possible values are `AllowAll`, `AllowPrivate`, or `DenyAll`. Defaults to `AllowAll`. + * + */ + @Export(name="networkAccessPolicy", refs={String.class}, tree="[0]") + private Output networkAccessPolicy; + + /** + * @return Policy for accessing the disk via network. Possible values are `AllowAll`, `AllowPrivate`, or `DenyAll`. Defaults to `AllowAll`. + * + */ + public Output> networkAccessPolicy() { + return Codegen.optional(this.networkAccessPolicy); + } + /** + * Policy for controlling export on the disk. Possible values are `true` or `false`. Defaults to `true`. + * + */ + @Export(name="publicNetworkAccessEnabled", refs={Boolean.class}, tree="[0]") + private Output publicNetworkAccessEnabled; + + /** + * @return Policy for controlling export on the disk. Possible values are `true` or `false`. Defaults to `true`. + * + */ + public Output> publicNetworkAccessEnabled() { + return Codegen.optional(this.publicNetworkAccessEnabled); + } /** * The name of the resource group in which to create the Snapshot. Changing this forces a new resource to be created. * diff --git a/sdk/java/src/main/java/com/pulumi/azure/compute/SnapshotArgs.java b/sdk/java/src/main/java/com/pulumi/azure/compute/SnapshotArgs.java index 5e522afc02..428c42678e 100644 --- a/sdk/java/src/main/java/com/pulumi/azure/compute/SnapshotArgs.java +++ b/sdk/java/src/main/java/com/pulumi/azure/compute/SnapshotArgs.java @@ -118,6 +118,36 @@ public Optional> name() { return Optional.ofNullable(this.name); } + /** + * Policy for accessing the disk via network. Possible values are `AllowAll`, `AllowPrivate`, or `DenyAll`. Defaults to `AllowAll`. + * + */ + @Import(name="networkAccessPolicy") + private @Nullable Output networkAccessPolicy; + + /** + * @return Policy for accessing the disk via network. Possible values are `AllowAll`, `AllowPrivate`, or `DenyAll`. Defaults to `AllowAll`. + * + */ + public Optional> networkAccessPolicy() { + return Optional.ofNullable(this.networkAccessPolicy); + } + + /** + * Policy for controlling export on the disk. Possible values are `true` or `false`. Defaults to `true`. + * + */ + @Import(name="publicNetworkAccessEnabled") + private @Nullable Output publicNetworkAccessEnabled; + + /** + * @return Policy for controlling export on the disk. Possible values are `true` or `false`. Defaults to `true`. + * + */ + public Optional> publicNetworkAccessEnabled() { + return Optional.ofNullable(this.publicNetworkAccessEnabled); + } + /** * The name of the resource group in which to create the Snapshot. Changing this forces a new resource to be created. * @@ -202,6 +232,8 @@ private SnapshotArgs(SnapshotArgs $) { this.incrementalEnabled = $.incrementalEnabled; this.location = $.location; this.name = $.name; + this.networkAccessPolicy = $.networkAccessPolicy; + this.publicNetworkAccessEnabled = $.publicNetworkAccessEnabled; this.resourceGroupName = $.resourceGroupName; this.sourceResourceId = $.sourceResourceId; this.sourceUri = $.sourceUri; @@ -361,6 +393,48 @@ public Builder name(String name) { return name(Output.of(name)); } + /** + * @param networkAccessPolicy Policy for accessing the disk via network. Possible values are `AllowAll`, `AllowPrivate`, or `DenyAll`. Defaults to `AllowAll`. + * + * @return builder + * + */ + public Builder networkAccessPolicy(@Nullable Output networkAccessPolicy) { + $.networkAccessPolicy = networkAccessPolicy; + return this; + } + + /** + * @param networkAccessPolicy Policy for accessing the disk via network. Possible values are `AllowAll`, `AllowPrivate`, or `DenyAll`. Defaults to `AllowAll`. + * + * @return builder + * + */ + public Builder networkAccessPolicy(String networkAccessPolicy) { + return networkAccessPolicy(Output.of(networkAccessPolicy)); + } + + /** + * @param publicNetworkAccessEnabled Policy for controlling export on the disk. Possible values are `true` or `false`. Defaults to `true`. + * + * @return builder + * + */ + public Builder publicNetworkAccessEnabled(@Nullable Output publicNetworkAccessEnabled) { + $.publicNetworkAccessEnabled = publicNetworkAccessEnabled; + return this; + } + + /** + * @param publicNetworkAccessEnabled Policy for controlling export on the disk. Possible values are `true` or `false`. Defaults to `true`. + * + * @return builder + * + */ + public Builder publicNetworkAccessEnabled(Boolean publicNetworkAccessEnabled) { + return publicNetworkAccessEnabled(Output.of(publicNetworkAccessEnabled)); + } + /** * @param resourceGroupName The name of the resource group in which to create the Snapshot. Changing this forces a new resource to be created. * diff --git a/sdk/java/src/main/java/com/pulumi/azure/compute/inputs/SnapshotState.java b/sdk/java/src/main/java/com/pulumi/azure/compute/inputs/SnapshotState.java index d764acfad1..f75cf8442f 100644 --- a/sdk/java/src/main/java/com/pulumi/azure/compute/inputs/SnapshotState.java +++ b/sdk/java/src/main/java/com/pulumi/azure/compute/inputs/SnapshotState.java @@ -117,6 +117,36 @@ public Optional> name() { return Optional.ofNullable(this.name); } + /** + * Policy for accessing the disk via network. Possible values are `AllowAll`, `AllowPrivate`, or `DenyAll`. Defaults to `AllowAll`. + * + */ + @Import(name="networkAccessPolicy") + private @Nullable Output networkAccessPolicy; + + /** + * @return Policy for accessing the disk via network. Possible values are `AllowAll`, `AllowPrivate`, or `DenyAll`. Defaults to `AllowAll`. + * + */ + public Optional> networkAccessPolicy() { + return Optional.ofNullable(this.networkAccessPolicy); + } + + /** + * Policy for controlling export on the disk. Possible values are `true` or `false`. Defaults to `true`. + * + */ + @Import(name="publicNetworkAccessEnabled") + private @Nullable Output publicNetworkAccessEnabled; + + /** + * @return Policy for controlling export on the disk. Possible values are `true` or `false`. Defaults to `true`. + * + */ + public Optional> publicNetworkAccessEnabled() { + return Optional.ofNullable(this.publicNetworkAccessEnabled); + } + /** * The name of the resource group in which to create the Snapshot. Changing this forces a new resource to be created. * @@ -216,6 +246,8 @@ private SnapshotState(SnapshotState $) { this.incrementalEnabled = $.incrementalEnabled; this.location = $.location; this.name = $.name; + this.networkAccessPolicy = $.networkAccessPolicy; + this.publicNetworkAccessEnabled = $.publicNetworkAccessEnabled; this.resourceGroupName = $.resourceGroupName; this.sourceResourceId = $.sourceResourceId; this.sourceUri = $.sourceUri; @@ -376,6 +408,48 @@ public Builder name(String name) { return name(Output.of(name)); } + /** + * @param networkAccessPolicy Policy for accessing the disk via network. Possible values are `AllowAll`, `AllowPrivate`, or `DenyAll`. Defaults to `AllowAll`. + * + * @return builder + * + */ + public Builder networkAccessPolicy(@Nullable Output networkAccessPolicy) { + $.networkAccessPolicy = networkAccessPolicy; + return this; + } + + /** + * @param networkAccessPolicy Policy for accessing the disk via network. Possible values are `AllowAll`, `AllowPrivate`, or `DenyAll`. Defaults to `AllowAll`. + * + * @return builder + * + */ + public Builder networkAccessPolicy(String networkAccessPolicy) { + return networkAccessPolicy(Output.of(networkAccessPolicy)); + } + + /** + * @param publicNetworkAccessEnabled Policy for controlling export on the disk. Possible values are `true` or `false`. Defaults to `true`. + * + * @return builder + * + */ + public Builder publicNetworkAccessEnabled(@Nullable Output publicNetworkAccessEnabled) { + $.publicNetworkAccessEnabled = publicNetworkAccessEnabled; + return this; + } + + /** + * @param publicNetworkAccessEnabled Policy for controlling export on the disk. Possible values are `true` or `false`. Defaults to `true`. + * + * @return builder + * + */ + public Builder publicNetworkAccessEnabled(Boolean publicNetworkAccessEnabled) { + return publicNetworkAccessEnabled(Output.of(publicNetworkAccessEnabled)); + } + /** * @param resourceGroupName The name of the resource group in which to create the Snapshot. Changing this forces a new resource to be created. * diff --git a/sdk/java/src/main/java/com/pulumi/azure/containerservice/ClusterTrustedAccessRoleBinding.java b/sdk/java/src/main/java/com/pulumi/azure/containerservice/ClusterTrustedAccessRoleBinding.java index 2076b9fa07..e4b3a3b136 100644 --- a/sdk/java/src/main/java/com/pulumi/azure/containerservice/ClusterTrustedAccessRoleBinding.java +++ b/sdk/java/src/main/java/com/pulumi/azure/containerservice/ClusterTrustedAccessRoleBinding.java @@ -42,6 +42,7 @@ * import com.pulumi.azure.containerservice.KubernetesCluster; * import com.pulumi.azure.containerservice.KubernetesClusterArgs; * import com.pulumi.azure.containerservice.inputs.KubernetesClusterDefaultNodePoolArgs; + * import com.pulumi.azure.containerservice.inputs.KubernetesClusterDefaultNodePoolUpgradeSettingsArgs; * import com.pulumi.azure.containerservice.inputs.KubernetesClusterIdentityArgs; * import com.pulumi.azure.storage.Account; * import com.pulumi.azure.storage.AccountArgs; @@ -102,8 +103,10 @@ * .name("example-value") * .nodeCount("example-value") * .vmSize("example-value") + * .upgradeSettings(KubernetesClusterDefaultNodePoolUpgradeSettingsArgs.builder() + * .maxSurge("example-value") + * .build()) * .build()) - * .upgradeSettings(%!v(PANIC=Format method: runtime error: invalid memory address or nil pointer dereference)) * .identity(KubernetesClusterIdentityArgs.builder() * .type("example-value") * .build()) diff --git a/sdk/java/src/main/java/com/pulumi/azure/containerservice/FleetMember.java b/sdk/java/src/main/java/com/pulumi/azure/containerservice/FleetMember.java index 3000c4eeb9..73b84e0c5b 100644 --- a/sdk/java/src/main/java/com/pulumi/azure/containerservice/FleetMember.java +++ b/sdk/java/src/main/java/com/pulumi/azure/containerservice/FleetMember.java @@ -33,6 +33,7 @@ * import com.pulumi.azure.containerservice.KubernetesCluster; * import com.pulumi.azure.containerservice.KubernetesClusterArgs; * import com.pulumi.azure.containerservice.inputs.KubernetesClusterDefaultNodePoolArgs; + * import com.pulumi.azure.containerservice.inputs.KubernetesClusterDefaultNodePoolUpgradeSettingsArgs; * import com.pulumi.azure.containerservice.inputs.KubernetesClusterIdentityArgs; * import com.pulumi.azure.containerservice.KubernetesFleetManager; * import com.pulumi.azure.containerservice.KubernetesFleetManagerArgs; @@ -65,8 +66,10 @@ * .name("example-value") * .nodeCount("example-value") * .vmSize("example-value") + * .upgradeSettings(KubernetesClusterDefaultNodePoolUpgradeSettingsArgs.builder() + * .maxSurge("example-value") + * .build()) * .build()) - * .upgradeSettings(%!v(PANIC=Format method: runtime error: invalid memory address or nil pointer dereference)) * .identity(KubernetesClusterIdentityArgs.builder() * .type("example-value") * .build()) diff --git a/sdk/java/src/main/java/com/pulumi/azure/cosmosdb/Account.java b/sdk/java/src/main/java/com/pulumi/azure/cosmosdb/Account.java index 5d33093454..507dd2702e 100644 --- a/sdk/java/src/main/java/com/pulumi/azure/cosmosdb/Account.java +++ b/sdk/java/src/main/java/com/pulumi/azure/cosmosdb/Account.java @@ -229,6 +229,20 @@ public Output analyticalStorage() { public Output> analyticalStorageEnabled() { return Codegen.optional(this.analyticalStorageEnabled); } + /** + * Enable automatic failover for this Cosmos DB account. + * + */ + @Export(name="automaticFailoverEnabled", refs={Boolean.class}, tree="[0]") + private Output automaticFailoverEnabled; + + /** + * @return Enable automatic failover for this Cosmos DB account. + * + */ + public Output automaticFailoverEnabled() { + return this.automaticFailoverEnabled; + } /** * A `backup` block as defined below. * @@ -272,16 +286,14 @@ public Output capacity() { return this.capacity; } /** - * A list of connection strings available for this CosmosDB account. + * @deprecated + * This property has been superseded by the primary and secondary connection strings for sql, mongodb and readonly and will be removed in v4.0 of the AzureRM provider * */ + @Deprecated /* This property has been superseded by the primary and secondary connection strings for sql, mongodb and readonly and will be removed in v4.0 of the AzureRM provider */ @Export(name="connectionStrings", refs={List.class,String.class}, tree="[0,1]") private Output> connectionStrings; - /** - * @return A list of connection strings available for this CosmosDB account. - * - */ public Output> connectionStrings() { return this.connectionStrings; } @@ -346,46 +358,40 @@ public Output> defaultIdentityType() { return Codegen.optional(this.defaultIdentityType); } /** - * Enable automatic failover for this Cosmos DB account. + * @deprecated + * This property has been superseded by `automatic_failover_enabled` and will be removed in v4.0 of the AzureRM Provider * */ + @Deprecated /* This property has been superseded by `automatic_failover_enabled` and will be removed in v4.0 of the AzureRM Provider */ @Export(name="enableAutomaticFailover", refs={Boolean.class}, tree="[0]") - private Output enableAutomaticFailover; + private Output enableAutomaticFailover; - /** - * @return Enable automatic failover for this Cosmos DB account. - * - */ - public Output> enableAutomaticFailover() { - return Codegen.optional(this.enableAutomaticFailover); + public Output enableAutomaticFailover() { + return this.enableAutomaticFailover; } /** - * Enable the Free Tier pricing option for this Cosmos DB account. Defaults to `false`. Changing this forces a new resource to be created. + * @deprecated + * This property has been superseded by `free_tier_enabled` and will be removed in v4.0 of the AzureRM Provider * */ + @Deprecated /* This property has been superseded by `free_tier_enabled` and will be removed in v4.0 of the AzureRM Provider */ @Export(name="enableFreeTier", refs={Boolean.class}, tree="[0]") - private Output enableFreeTier; + private Output enableFreeTier; - /** - * @return Enable the Free Tier pricing option for this Cosmos DB account. Defaults to `false`. Changing this forces a new resource to be created. - * - */ - public Output> enableFreeTier() { - return Codegen.optional(this.enableFreeTier); + public Output enableFreeTier() { + return this.enableFreeTier; } /** - * Enable multiple write locations for this Cosmos DB account. + * @deprecated + * This property has been superseded by `multiple_write_locations_enabled` and will be removed in v4.0 of the AzureRM Provider * */ + @Deprecated /* This property has been superseded by `multiple_write_locations_enabled` and will be removed in v4.0 of the AzureRM Provider */ @Export(name="enableMultipleWriteLocations", refs={Boolean.class}, tree="[0]") - private Output enableMultipleWriteLocations; + private Output enableMultipleWriteLocations; - /** - * @return Enable multiple write locations for this Cosmos DB account. - * - */ - public Output> enableMultipleWriteLocations() { - return Codegen.optional(this.enableMultipleWriteLocations); + public Output enableMultipleWriteLocations() { + return this.enableMultipleWriteLocations; } /** * The endpoint used to connect to the CosmosDB account. @@ -401,6 +407,20 @@ public Output> enableMultipleWriteLocations() { public Output endpoint() { return this.endpoint; } + /** + * Enable the Free Tier pricing option for this Cosmos DB account. Defaults to `false`. Changing this forces a new resource to be created. + * + */ + @Export(name="freeTierEnabled", refs={Boolean.class}, tree="[0]") + private Output freeTierEnabled; + + /** + * @return Enable the Free Tier pricing option for this Cosmos DB account. Defaults to `false`. Changing this forces a new resource to be created. + * + */ + public Output freeTierEnabled() { + return this.freeTierEnabled; + } /** * Specifies a `geo_location` resource, used to define where data should be replicated with the `failover_priority` 0 specifying the primary location. Value is a `geo_location` block as defined below. * @@ -557,6 +577,20 @@ public Output minimalTlsVersion() { public Output mongoServerVersion() { return this.mongoServerVersion; } + /** + * Enable multiple write locations for this Cosmos DB account. + * + */ + @Export(name="multipleWriteLocationsEnabled", refs={Boolean.class}, tree="[0]") + private Output multipleWriteLocationsEnabled; + + /** + * @return Enable multiple write locations for this Cosmos DB account. + * + */ + public Output multipleWriteLocationsEnabled() { + return this.multipleWriteLocationsEnabled; + } /** * Specifies the name of the CosmosDB Account. Changing this forces a new resource to be created. * diff --git a/sdk/java/src/main/java/com/pulumi/azure/cosmosdb/AccountArgs.java b/sdk/java/src/main/java/com/pulumi/azure/cosmosdb/AccountArgs.java index 628ed7ae02..5c2fbb7677 100644 --- a/sdk/java/src/main/java/com/pulumi/azure/cosmosdb/AccountArgs.java +++ b/sdk/java/src/main/java/com/pulumi/azure/cosmosdb/AccountArgs.java @@ -74,6 +74,21 @@ public Optional> analyticalStorageEnabled() { return Optional.ofNullable(this.analyticalStorageEnabled); } + /** + * Enable automatic failover for this Cosmos DB account. + * + */ + @Import(name="automaticFailoverEnabled") + private @Nullable Output automaticFailoverEnabled; + + /** + * @return Enable automatic failover for this Cosmos DB account. + * + */ + public Optional> automaticFailoverEnabled() { + return Optional.ofNullable(this.automaticFailoverEnabled); + } + /** * A `backup` block as defined below. * @@ -184,50 +199,77 @@ public Optional> defaultIdentityType() { } /** - * Enable automatic failover for this Cosmos DB account. + * @deprecated + * This property has been superseded by `automatic_failover_enabled` and will be removed in v4.0 of the AzureRM Provider * */ + @Deprecated /* This property has been superseded by `automatic_failover_enabled` and will be removed in v4.0 of the AzureRM Provider */ @Import(name="enableAutomaticFailover") private @Nullable Output enableAutomaticFailover; /** - * @return Enable automatic failover for this Cosmos DB account. + * @deprecated + * This property has been superseded by `automatic_failover_enabled` and will be removed in v4.0 of the AzureRM Provider * */ + @Deprecated /* This property has been superseded by `automatic_failover_enabled` and will be removed in v4.0 of the AzureRM Provider */ public Optional> enableAutomaticFailover() { return Optional.ofNullable(this.enableAutomaticFailover); } /** - * Enable the Free Tier pricing option for this Cosmos DB account. Defaults to `false`. Changing this forces a new resource to be created. + * @deprecated + * This property has been superseded by `free_tier_enabled` and will be removed in v4.0 of the AzureRM Provider * */ + @Deprecated /* This property has been superseded by `free_tier_enabled` and will be removed in v4.0 of the AzureRM Provider */ @Import(name="enableFreeTier") private @Nullable Output enableFreeTier; /** - * @return Enable the Free Tier pricing option for this Cosmos DB account. Defaults to `false`. Changing this forces a new resource to be created. + * @deprecated + * This property has been superseded by `free_tier_enabled` and will be removed in v4.0 of the AzureRM Provider * */ + @Deprecated /* This property has been superseded by `free_tier_enabled` and will be removed in v4.0 of the AzureRM Provider */ public Optional> enableFreeTier() { return Optional.ofNullable(this.enableFreeTier); } /** - * Enable multiple write locations for this Cosmos DB account. + * @deprecated + * This property has been superseded by `multiple_write_locations_enabled` and will be removed in v4.0 of the AzureRM Provider * */ + @Deprecated /* This property has been superseded by `multiple_write_locations_enabled` and will be removed in v4.0 of the AzureRM Provider */ @Import(name="enableMultipleWriteLocations") private @Nullable Output enableMultipleWriteLocations; /** - * @return Enable multiple write locations for this Cosmos DB account. + * @deprecated + * This property has been superseded by `multiple_write_locations_enabled` and will be removed in v4.0 of the AzureRM Provider * */ + @Deprecated /* This property has been superseded by `multiple_write_locations_enabled` and will be removed in v4.0 of the AzureRM Provider */ public Optional> enableMultipleWriteLocations() { return Optional.ofNullable(this.enableMultipleWriteLocations); } + /** + * Enable the Free Tier pricing option for this Cosmos DB account. Defaults to `false`. Changing this forces a new resource to be created. + * + */ + @Import(name="freeTierEnabled") + private @Nullable Output freeTierEnabled; + + /** + * @return Enable the Free Tier pricing option for this Cosmos DB account. Defaults to `false`. Changing this forces a new resource to be created. + * + */ + public Optional> freeTierEnabled() { + return Optional.ofNullable(this.freeTierEnabled); + } + /** * Specifies a `geo_location` resource, used to define where data should be replicated with the `failover_priority` 0 specifying the primary location. Value is a `geo_location` block as defined below. * @@ -394,6 +436,21 @@ public Optional> mongoServerVersion() { return Optional.ofNullable(this.mongoServerVersion); } + /** + * Enable multiple write locations for this Cosmos DB account. + * + */ + @Import(name="multipleWriteLocationsEnabled") + private @Nullable Output multipleWriteLocationsEnabled; + + /** + * @return Enable multiple write locations for this Cosmos DB account. + * + */ + public Optional> multipleWriteLocationsEnabled() { + return Optional.ofNullable(this.multipleWriteLocationsEnabled); + } + /** * Specifies the name of the CosmosDB Account. Changing this forces a new resource to be created. * @@ -554,6 +611,7 @@ private AccountArgs(AccountArgs $) { this.accessKeyMetadataWritesEnabled = $.accessKeyMetadataWritesEnabled; this.analyticalStorage = $.analyticalStorage; this.analyticalStorageEnabled = $.analyticalStorageEnabled; + this.automaticFailoverEnabled = $.automaticFailoverEnabled; this.backup = $.backup; this.capabilities = $.capabilities; this.capacity = $.capacity; @@ -564,6 +622,7 @@ private AccountArgs(AccountArgs $) { this.enableAutomaticFailover = $.enableAutomaticFailover; this.enableFreeTier = $.enableFreeTier; this.enableMultipleWriteLocations = $.enableMultipleWriteLocations; + this.freeTierEnabled = $.freeTierEnabled; this.geoLocations = $.geoLocations; this.identity = $.identity; this.ipRangeFilter = $.ipRangeFilter; @@ -574,6 +633,7 @@ private AccountArgs(AccountArgs $) { this.location = $.location; this.minimalTlsVersion = $.minimalTlsVersion; this.mongoServerVersion = $.mongoServerVersion; + this.multipleWriteLocationsEnabled = $.multipleWriteLocationsEnabled; this.name = $.name; this.networkAclBypassForAzureServices = $.networkAclBypassForAzureServices; this.networkAclBypassIds = $.networkAclBypassIds; @@ -667,6 +727,27 @@ public Builder analyticalStorageEnabled(Boolean analyticalStorageEnabled) { return analyticalStorageEnabled(Output.of(analyticalStorageEnabled)); } + /** + * @param automaticFailoverEnabled Enable automatic failover for this Cosmos DB account. + * + * @return builder + * + */ + public Builder automaticFailoverEnabled(@Nullable Output automaticFailoverEnabled) { + $.automaticFailoverEnabled = automaticFailoverEnabled; + return this; + } + + /** + * @param automaticFailoverEnabled Enable automatic failover for this Cosmos DB account. + * + * @return builder + * + */ + public Builder automaticFailoverEnabled(Boolean automaticFailoverEnabled) { + return automaticFailoverEnabled(Output.of(automaticFailoverEnabled)); + } + /** * @param backup A `backup` block as defined below. * @@ -829,68 +910,101 @@ public Builder defaultIdentityType(String defaultIdentityType) { } /** - * @param enableAutomaticFailover Enable automatic failover for this Cosmos DB account. - * * @return builder * + * @deprecated + * This property has been superseded by `automatic_failover_enabled` and will be removed in v4.0 of the AzureRM Provider + * */ + @Deprecated /* This property has been superseded by `automatic_failover_enabled` and will be removed in v4.0 of the AzureRM Provider */ public Builder enableAutomaticFailover(@Nullable Output enableAutomaticFailover) { $.enableAutomaticFailover = enableAutomaticFailover; return this; } /** - * @param enableAutomaticFailover Enable automatic failover for this Cosmos DB account. - * * @return builder * + * @deprecated + * This property has been superseded by `automatic_failover_enabled` and will be removed in v4.0 of the AzureRM Provider + * */ + @Deprecated /* This property has been superseded by `automatic_failover_enabled` and will be removed in v4.0 of the AzureRM Provider */ public Builder enableAutomaticFailover(Boolean enableAutomaticFailover) { return enableAutomaticFailover(Output.of(enableAutomaticFailover)); } /** - * @param enableFreeTier Enable the Free Tier pricing option for this Cosmos DB account. Defaults to `false`. Changing this forces a new resource to be created. - * * @return builder * + * @deprecated + * This property has been superseded by `free_tier_enabled` and will be removed in v4.0 of the AzureRM Provider + * */ + @Deprecated /* This property has been superseded by `free_tier_enabled` and will be removed in v4.0 of the AzureRM Provider */ public Builder enableFreeTier(@Nullable Output enableFreeTier) { $.enableFreeTier = enableFreeTier; return this; } /** - * @param enableFreeTier Enable the Free Tier pricing option for this Cosmos DB account. Defaults to `false`. Changing this forces a new resource to be created. - * * @return builder * + * @deprecated + * This property has been superseded by `free_tier_enabled` and will be removed in v4.0 of the AzureRM Provider + * */ + @Deprecated /* This property has been superseded by `free_tier_enabled` and will be removed in v4.0 of the AzureRM Provider */ public Builder enableFreeTier(Boolean enableFreeTier) { return enableFreeTier(Output.of(enableFreeTier)); } /** - * @param enableMultipleWriteLocations Enable multiple write locations for this Cosmos DB account. - * * @return builder * + * @deprecated + * This property has been superseded by `multiple_write_locations_enabled` and will be removed in v4.0 of the AzureRM Provider + * */ + @Deprecated /* This property has been superseded by `multiple_write_locations_enabled` and will be removed in v4.0 of the AzureRM Provider */ public Builder enableMultipleWriteLocations(@Nullable Output enableMultipleWriteLocations) { $.enableMultipleWriteLocations = enableMultipleWriteLocations; return this; } /** - * @param enableMultipleWriteLocations Enable multiple write locations for this Cosmos DB account. - * * @return builder * + * @deprecated + * This property has been superseded by `multiple_write_locations_enabled` and will be removed in v4.0 of the AzureRM Provider + * */ + @Deprecated /* This property has been superseded by `multiple_write_locations_enabled` and will be removed in v4.0 of the AzureRM Provider */ public Builder enableMultipleWriteLocations(Boolean enableMultipleWriteLocations) { return enableMultipleWriteLocations(Output.of(enableMultipleWriteLocations)); } + /** + * @param freeTierEnabled Enable the Free Tier pricing option for this Cosmos DB account. Defaults to `false`. Changing this forces a new resource to be created. + * + * @return builder + * + */ + public Builder freeTierEnabled(@Nullable Output freeTierEnabled) { + $.freeTierEnabled = freeTierEnabled; + return this; + } + + /** + * @param freeTierEnabled Enable the Free Tier pricing option for this Cosmos DB account. Defaults to `false`. Changing this forces a new resource to be created. + * + * @return builder + * + */ + public Builder freeTierEnabled(Boolean freeTierEnabled) { + return freeTierEnabled(Output.of(freeTierEnabled)); + } + /** * @param geoLocations Specifies a `geo_location` resource, used to define where data should be replicated with the `failover_priority` 0 specifying the primary location. Value is a `geo_location` block as defined below. * @@ -1127,6 +1241,27 @@ public Builder mongoServerVersion(String mongoServerVersion) { return mongoServerVersion(Output.of(mongoServerVersion)); } + /** + * @param multipleWriteLocationsEnabled Enable multiple write locations for this Cosmos DB account. + * + * @return builder + * + */ + public Builder multipleWriteLocationsEnabled(@Nullable Output multipleWriteLocationsEnabled) { + $.multipleWriteLocationsEnabled = multipleWriteLocationsEnabled; + return this; + } + + /** + * @param multipleWriteLocationsEnabled Enable multiple write locations for this Cosmos DB account. + * + * @return builder + * + */ + public Builder multipleWriteLocationsEnabled(Boolean multipleWriteLocationsEnabled) { + return multipleWriteLocationsEnabled(Output.of(multipleWriteLocationsEnabled)); + } + /** * @param name Specifies the name of the CosmosDB Account. Changing this forces a new resource to be created. * diff --git a/sdk/java/src/main/java/com/pulumi/azure/cosmosdb/inputs/AccountState.java b/sdk/java/src/main/java/com/pulumi/azure/cosmosdb/inputs/AccountState.java index 5db813a35c..c70f050293 100644 --- a/sdk/java/src/main/java/com/pulumi/azure/cosmosdb/inputs/AccountState.java +++ b/sdk/java/src/main/java/com/pulumi/azure/cosmosdb/inputs/AccountState.java @@ -73,6 +73,21 @@ public Optional> analyticalStorageEnabled() { return Optional.ofNullable(this.analyticalStorageEnabled); } + /** + * Enable automatic failover for this Cosmos DB account. + * + */ + @Import(name="automaticFailoverEnabled") + private @Nullable Output automaticFailoverEnabled; + + /** + * @return Enable automatic failover for this Cosmos DB account. + * + */ + public Optional> automaticFailoverEnabled() { + return Optional.ofNullable(this.automaticFailoverEnabled); + } + /** * A `backup` block as defined below. * @@ -119,16 +134,20 @@ public Optional> capacity() { } /** - * A list of connection strings available for this CosmosDB account. + * @deprecated + * This property has been superseded by the primary and secondary connection strings for sql, mongodb and readonly and will be removed in v4.0 of the AzureRM provider * */ + @Deprecated /* This property has been superseded by the primary and secondary connection strings for sql, mongodb and readonly and will be removed in v4.0 of the AzureRM provider */ @Import(name="connectionStrings") private @Nullable Output> connectionStrings; /** - * @return A list of connection strings available for this CosmosDB account. + * @deprecated + * This property has been superseded by the primary and secondary connection strings for sql, mongodb and readonly and will be removed in v4.0 of the AzureRM provider * */ + @Deprecated /* This property has been superseded by the primary and secondary connection strings for sql, mongodb and readonly and will be removed in v4.0 of the AzureRM provider */ public Optional>> connectionStrings() { return Optional.ofNullable(this.connectionStrings); } @@ -198,46 +217,58 @@ public Optional> defaultIdentityType() { } /** - * Enable automatic failover for this Cosmos DB account. + * @deprecated + * This property has been superseded by `automatic_failover_enabled` and will be removed in v4.0 of the AzureRM Provider * */ + @Deprecated /* This property has been superseded by `automatic_failover_enabled` and will be removed in v4.0 of the AzureRM Provider */ @Import(name="enableAutomaticFailover") private @Nullable Output enableAutomaticFailover; /** - * @return Enable automatic failover for this Cosmos DB account. + * @deprecated + * This property has been superseded by `automatic_failover_enabled` and will be removed in v4.0 of the AzureRM Provider * */ + @Deprecated /* This property has been superseded by `automatic_failover_enabled` and will be removed in v4.0 of the AzureRM Provider */ public Optional> enableAutomaticFailover() { return Optional.ofNullable(this.enableAutomaticFailover); } /** - * Enable the Free Tier pricing option for this Cosmos DB account. Defaults to `false`. Changing this forces a new resource to be created. + * @deprecated + * This property has been superseded by `free_tier_enabled` and will be removed in v4.0 of the AzureRM Provider * */ + @Deprecated /* This property has been superseded by `free_tier_enabled` and will be removed in v4.0 of the AzureRM Provider */ @Import(name="enableFreeTier") private @Nullable Output enableFreeTier; /** - * @return Enable the Free Tier pricing option for this Cosmos DB account. Defaults to `false`. Changing this forces a new resource to be created. + * @deprecated + * This property has been superseded by `free_tier_enabled` and will be removed in v4.0 of the AzureRM Provider * */ + @Deprecated /* This property has been superseded by `free_tier_enabled` and will be removed in v4.0 of the AzureRM Provider */ public Optional> enableFreeTier() { return Optional.ofNullable(this.enableFreeTier); } /** - * Enable multiple write locations for this Cosmos DB account. + * @deprecated + * This property has been superseded by `multiple_write_locations_enabled` and will be removed in v4.0 of the AzureRM Provider * */ + @Deprecated /* This property has been superseded by `multiple_write_locations_enabled` and will be removed in v4.0 of the AzureRM Provider */ @Import(name="enableMultipleWriteLocations") private @Nullable Output enableMultipleWriteLocations; /** - * @return Enable multiple write locations for this Cosmos DB account. + * @deprecated + * This property has been superseded by `multiple_write_locations_enabled` and will be removed in v4.0 of the AzureRM Provider * */ + @Deprecated /* This property has been superseded by `multiple_write_locations_enabled` and will be removed in v4.0 of the AzureRM Provider */ public Optional> enableMultipleWriteLocations() { return Optional.ofNullable(this.enableMultipleWriteLocations); } @@ -257,6 +288,21 @@ public Optional> endpoint() { return Optional.ofNullable(this.endpoint); } + /** + * Enable the Free Tier pricing option for this Cosmos DB account. Defaults to `false`. Changing this forces a new resource to be created. + * + */ + @Import(name="freeTierEnabled") + private @Nullable Output freeTierEnabled; + + /** + * @return Enable the Free Tier pricing option for this Cosmos DB account. Defaults to `false`. Changing this forces a new resource to be created. + * + */ + public Optional> freeTierEnabled() { + return Optional.ofNullable(this.freeTierEnabled); + } + /** * Specifies a `geo_location` resource, used to define where data should be replicated with the `failover_priority` 0 specifying the primary location. Value is a `geo_location` block as defined below. * @@ -423,6 +469,21 @@ public Optional> mongoServerVersion() { return Optional.ofNullable(this.mongoServerVersion); } + /** + * Enable multiple write locations for this Cosmos DB account. + * + */ + @Import(name="multipleWriteLocationsEnabled") + private @Nullable Output multipleWriteLocationsEnabled; + + /** + * @return Enable multiple write locations for this Cosmos DB account. + * + */ + public Optional> multipleWriteLocationsEnabled() { + return Optional.ofNullable(this.multipleWriteLocationsEnabled); + } + /** * Specifies the name of the CosmosDB Account. Changing this forces a new resource to be created. * @@ -793,6 +854,7 @@ private AccountState(AccountState $) { this.accessKeyMetadataWritesEnabled = $.accessKeyMetadataWritesEnabled; this.analyticalStorage = $.analyticalStorage; this.analyticalStorageEnabled = $.analyticalStorageEnabled; + this.automaticFailoverEnabled = $.automaticFailoverEnabled; this.backup = $.backup; this.capabilities = $.capabilities; this.capacity = $.capacity; @@ -805,6 +867,7 @@ private AccountState(AccountState $) { this.enableFreeTier = $.enableFreeTier; this.enableMultipleWriteLocations = $.enableMultipleWriteLocations; this.endpoint = $.endpoint; + this.freeTierEnabled = $.freeTierEnabled; this.geoLocations = $.geoLocations; this.identity = $.identity; this.ipRangeFilter = $.ipRangeFilter; @@ -815,6 +878,7 @@ private AccountState(AccountState $) { this.location = $.location; this.minimalTlsVersion = $.minimalTlsVersion; this.mongoServerVersion = $.mongoServerVersion; + this.multipleWriteLocationsEnabled = $.multipleWriteLocationsEnabled; this.name = $.name; this.networkAclBypassForAzureServices = $.networkAclBypassForAzureServices; this.networkAclBypassIds = $.networkAclBypassIds; @@ -922,6 +986,27 @@ public Builder analyticalStorageEnabled(Boolean analyticalStorageEnabled) { return analyticalStorageEnabled(Output.of(analyticalStorageEnabled)); } + /** + * @param automaticFailoverEnabled Enable automatic failover for this Cosmos DB account. + * + * @return builder + * + */ + public Builder automaticFailoverEnabled(@Nullable Output automaticFailoverEnabled) { + $.automaticFailoverEnabled = automaticFailoverEnabled; + return this; + } + + /** + * @param automaticFailoverEnabled Enable automatic failover for this Cosmos DB account. + * + * @return builder + * + */ + public Builder automaticFailoverEnabled(Boolean automaticFailoverEnabled) { + return automaticFailoverEnabled(Output.of(automaticFailoverEnabled)); + } + /** * @param backup A `backup` block as defined below. * @@ -996,32 +1081,38 @@ public Builder capacity(AccountCapacityArgs capacity) { } /** - * @param connectionStrings A list of connection strings available for this CosmosDB account. - * * @return builder * + * @deprecated + * This property has been superseded by the primary and secondary connection strings for sql, mongodb and readonly and will be removed in v4.0 of the AzureRM provider + * */ + @Deprecated /* This property has been superseded by the primary and secondary connection strings for sql, mongodb and readonly and will be removed in v4.0 of the AzureRM provider */ public Builder connectionStrings(@Nullable Output> connectionStrings) { $.connectionStrings = connectionStrings; return this; } /** - * @param connectionStrings A list of connection strings available for this CosmosDB account. - * * @return builder * + * @deprecated + * This property has been superseded by the primary and secondary connection strings for sql, mongodb and readonly and will be removed in v4.0 of the AzureRM provider + * */ + @Deprecated /* This property has been superseded by the primary and secondary connection strings for sql, mongodb and readonly and will be removed in v4.0 of the AzureRM provider */ public Builder connectionStrings(List connectionStrings) { return connectionStrings(Output.of(connectionStrings)); } /** - * @param connectionStrings A list of connection strings available for this CosmosDB account. - * * @return builder * + * @deprecated + * This property has been superseded by the primary and secondary connection strings for sql, mongodb and readonly and will be removed in v4.0 of the AzureRM provider + * */ + @Deprecated /* This property has been superseded by the primary and secondary connection strings for sql, mongodb and readonly and will be removed in v4.0 of the AzureRM provider */ public Builder connectionStrings(String... connectionStrings) { return connectionStrings(List.of(connectionStrings)); } @@ -1115,64 +1206,76 @@ public Builder defaultIdentityType(String defaultIdentityType) { } /** - * @param enableAutomaticFailover Enable automatic failover for this Cosmos DB account. - * * @return builder * + * @deprecated + * This property has been superseded by `automatic_failover_enabled` and will be removed in v4.0 of the AzureRM Provider + * */ + @Deprecated /* This property has been superseded by `automatic_failover_enabled` and will be removed in v4.0 of the AzureRM Provider */ public Builder enableAutomaticFailover(@Nullable Output enableAutomaticFailover) { $.enableAutomaticFailover = enableAutomaticFailover; return this; } /** - * @param enableAutomaticFailover Enable automatic failover for this Cosmos DB account. - * * @return builder * + * @deprecated + * This property has been superseded by `automatic_failover_enabled` and will be removed in v4.0 of the AzureRM Provider + * */ + @Deprecated /* This property has been superseded by `automatic_failover_enabled` and will be removed in v4.0 of the AzureRM Provider */ public Builder enableAutomaticFailover(Boolean enableAutomaticFailover) { return enableAutomaticFailover(Output.of(enableAutomaticFailover)); } /** - * @param enableFreeTier Enable the Free Tier pricing option for this Cosmos DB account. Defaults to `false`. Changing this forces a new resource to be created. - * * @return builder * + * @deprecated + * This property has been superseded by `free_tier_enabled` and will be removed in v4.0 of the AzureRM Provider + * */ + @Deprecated /* This property has been superseded by `free_tier_enabled` and will be removed in v4.0 of the AzureRM Provider */ public Builder enableFreeTier(@Nullable Output enableFreeTier) { $.enableFreeTier = enableFreeTier; return this; } /** - * @param enableFreeTier Enable the Free Tier pricing option for this Cosmos DB account. Defaults to `false`. Changing this forces a new resource to be created. - * * @return builder * + * @deprecated + * This property has been superseded by `free_tier_enabled` and will be removed in v4.0 of the AzureRM Provider + * */ + @Deprecated /* This property has been superseded by `free_tier_enabled` and will be removed in v4.0 of the AzureRM Provider */ public Builder enableFreeTier(Boolean enableFreeTier) { return enableFreeTier(Output.of(enableFreeTier)); } /** - * @param enableMultipleWriteLocations Enable multiple write locations for this Cosmos DB account. - * * @return builder * + * @deprecated + * This property has been superseded by `multiple_write_locations_enabled` and will be removed in v4.0 of the AzureRM Provider + * */ + @Deprecated /* This property has been superseded by `multiple_write_locations_enabled` and will be removed in v4.0 of the AzureRM Provider */ public Builder enableMultipleWriteLocations(@Nullable Output enableMultipleWriteLocations) { $.enableMultipleWriteLocations = enableMultipleWriteLocations; return this; } /** - * @param enableMultipleWriteLocations Enable multiple write locations for this Cosmos DB account. - * * @return builder * + * @deprecated + * This property has been superseded by `multiple_write_locations_enabled` and will be removed in v4.0 of the AzureRM Provider + * */ + @Deprecated /* This property has been superseded by `multiple_write_locations_enabled` and will be removed in v4.0 of the AzureRM Provider */ public Builder enableMultipleWriteLocations(Boolean enableMultipleWriteLocations) { return enableMultipleWriteLocations(Output.of(enableMultipleWriteLocations)); } @@ -1198,6 +1301,27 @@ public Builder endpoint(String endpoint) { return endpoint(Output.of(endpoint)); } + /** + * @param freeTierEnabled Enable the Free Tier pricing option for this Cosmos DB account. Defaults to `false`. Changing this forces a new resource to be created. + * + * @return builder + * + */ + public Builder freeTierEnabled(@Nullable Output freeTierEnabled) { + $.freeTierEnabled = freeTierEnabled; + return this; + } + + /** + * @param freeTierEnabled Enable the Free Tier pricing option for this Cosmos DB account. Defaults to `false`. Changing this forces a new resource to be created. + * + * @return builder + * + */ + public Builder freeTierEnabled(Boolean freeTierEnabled) { + return freeTierEnabled(Output.of(freeTierEnabled)); + } + /** * @param geoLocations Specifies a `geo_location` resource, used to define where data should be replicated with the `failover_priority` 0 specifying the primary location. Value is a `geo_location` block as defined below. * @@ -1434,6 +1558,27 @@ public Builder mongoServerVersion(String mongoServerVersion) { return mongoServerVersion(Output.of(mongoServerVersion)); } + /** + * @param multipleWriteLocationsEnabled Enable multiple write locations for this Cosmos DB account. + * + * @return builder + * + */ + public Builder multipleWriteLocationsEnabled(@Nullable Output multipleWriteLocationsEnabled) { + $.multipleWriteLocationsEnabled = multipleWriteLocationsEnabled; + return this; + } + + /** + * @param multipleWriteLocationsEnabled Enable multiple write locations for this Cosmos DB account. + * + * @return builder + * + */ + public Builder multipleWriteLocationsEnabled(Boolean multipleWriteLocationsEnabled) { + return multipleWriteLocationsEnabled(Output.of(multipleWriteLocationsEnabled)); + } + /** * @param name Specifies the name of the CosmosDB Account. Changing this forces a new resource to be created. * diff --git a/sdk/java/src/main/java/com/pulumi/azure/cosmosdb/outputs/GetAccountResult.java b/sdk/java/src/main/java/com/pulumi/azure/cosmosdb/outputs/GetAccountResult.java index 359e5094e6..281e3d0200 100644 --- a/sdk/java/src/main/java/com/pulumi/azure/cosmosdb/outputs/GetAccountResult.java +++ b/sdk/java/src/main/java/com/pulumi/azure/cosmosdb/outputs/GetAccountResult.java @@ -17,37 +17,55 @@ @CustomType public final class GetAccountResult { + /** + * @return If automatic failover is enabled for this CosmosDB Account. + * + */ + private Boolean automaticFailoverEnabled; /** * @return Capabilities enabled on this Cosmos DB account. * */ private List capabilities; /** - * @return A list of connection strings available for this CosmosDB account. + * @deprecated + * This property has been superseded by the primary and secondary connection strings for sql, mongodb and readonly and will be removed in v4.0 of the AzureRM provider * */ + @Deprecated /* This property has been superseded by the primary and secondary connection strings for sql, mongodb and readonly and will be removed in v4.0 of the AzureRM provider */ private List connectionStrings; private List consistencyPolicies; /** - * @return If automatic failover is enabled for this CosmosDB Account. + * @deprecated + * This property has been renamed to `automatic_failover_enabled` and will be removed in v4.0 of the AzureRM provider * */ + @Deprecated /* This property has been renamed to `automatic_failover_enabled` and will be removed in v4.0 of the AzureRM provider */ private Boolean enableAutomaticFailover; /** - * @return If Free Tier pricing option is enabled for this CosmosDB Account. You can have up to one free tier Azure Cosmos DB account per Azure subscription. + * @deprecated + * This property has been renamed to `free_tier_enabled` and will be removed in v4.0 of the AzureRM provider * */ + @Deprecated /* This property has been renamed to `free_tier_enabled` and will be removed in v4.0 of the AzureRM provider */ private Boolean enableFreeTier; /** - * @return If multiple write locations are enabled for this Cosmos DB account. + * @deprecated + * This property has been renamed to `multiple_write_locations_enabled` and will be removed in v4.0 of the AzureRM provider * */ + @Deprecated /* This property has been renamed to `multiple_write_locations_enabled` and will be removed in v4.0 of the AzureRM provider */ private Boolean enableMultipleWriteLocations; /** * @return The endpoint used to connect to the CosmosDB account. * */ private String endpoint; + /** + * @return If Free Tier pricing option is enabled for this CosmosDB Account. You can have up to one free tier Azure Cosmos DB account per Azure subscription. + * + */ + private Boolean freeTierEnabled; private List geoLocations; /** * @return The provider-assigned unique ID for this managed resource. @@ -79,6 +97,11 @@ public final class GetAccountResult { * */ private String location; + /** + * @return If multiple write locations are enabled for this Cosmos DB account. + * + */ + private Boolean multipleWriteLocationsEnabled; private String name; /** * @return The Offer Type to used by this CosmosDB Account. @@ -168,6 +191,13 @@ public final class GetAccountResult { private List writeEndpoints; private GetAccountResult() {} + /** + * @return If automatic failover is enabled for this CosmosDB Account. + * + */ + public Boolean automaticFailoverEnabled() { + return this.automaticFailoverEnabled; + } /** * @return Capabilities enabled on this Cosmos DB account. * @@ -176,9 +206,11 @@ public List capabilities() { return this.capabilities; } /** - * @return A list of connection strings available for this CosmosDB account. + * @deprecated + * This property has been superseded by the primary and secondary connection strings for sql, mongodb and readonly and will be removed in v4.0 of the AzureRM provider * */ + @Deprecated /* This property has been superseded by the primary and secondary connection strings for sql, mongodb and readonly and will be removed in v4.0 of the AzureRM provider */ public List connectionStrings() { return this.connectionStrings; } @@ -186,23 +218,29 @@ public List consistencyPolicies() { return this.consistencyPolicies; } /** - * @return If automatic failover is enabled for this CosmosDB Account. + * @deprecated + * This property has been renamed to `automatic_failover_enabled` and will be removed in v4.0 of the AzureRM provider * */ + @Deprecated /* This property has been renamed to `automatic_failover_enabled` and will be removed in v4.0 of the AzureRM provider */ public Boolean enableAutomaticFailover() { return this.enableAutomaticFailover; } /** - * @return If Free Tier pricing option is enabled for this CosmosDB Account. You can have up to one free tier Azure Cosmos DB account per Azure subscription. + * @deprecated + * This property has been renamed to `free_tier_enabled` and will be removed in v4.0 of the AzureRM provider * */ + @Deprecated /* This property has been renamed to `free_tier_enabled` and will be removed in v4.0 of the AzureRM provider */ public Boolean enableFreeTier() { return this.enableFreeTier; } /** - * @return If multiple write locations are enabled for this Cosmos DB account. + * @deprecated + * This property has been renamed to `multiple_write_locations_enabled` and will be removed in v4.0 of the AzureRM provider * */ + @Deprecated /* This property has been renamed to `multiple_write_locations_enabled` and will be removed in v4.0 of the AzureRM provider */ public Boolean enableMultipleWriteLocations() { return this.enableMultipleWriteLocations; } @@ -213,6 +251,13 @@ public Boolean enableMultipleWriteLocations() { public String endpoint() { return this.endpoint; } + /** + * @return If Free Tier pricing option is enabled for this CosmosDB Account. You can have up to one free tier Azure Cosmos DB account per Azure subscription. + * + */ + public Boolean freeTierEnabled() { + return this.freeTierEnabled; + } public List geoLocations() { return this.geoLocations; } @@ -258,6 +303,13 @@ public String kind() { public String location() { return this.location; } + /** + * @return If multiple write locations are enabled for this Cosmos DB account. + * + */ + public Boolean multipleWriteLocationsEnabled() { + return this.multipleWriteLocationsEnabled; + } public String name() { return this.name; } @@ -393,6 +445,7 @@ public static Builder builder(GetAccountResult defaults) { } @CustomType.Builder public static final class Builder { + private Boolean automaticFailoverEnabled; private List capabilities; private List connectionStrings; private List consistencyPolicies; @@ -400,6 +453,7 @@ public static final class Builder { private Boolean enableFreeTier; private Boolean enableMultipleWriteLocations; private String endpoint; + private Boolean freeTierEnabled; private List geoLocations; private String id; private String ipRangeFilter; @@ -407,6 +461,7 @@ public static final class Builder { private String keyVaultKeyId; private String kind; private String location; + private Boolean multipleWriteLocationsEnabled; private String name; private String offerType; private String primaryKey; @@ -429,6 +484,7 @@ public static final class Builder { public Builder() {} public Builder(GetAccountResult defaults) { Objects.requireNonNull(defaults); + this.automaticFailoverEnabled = defaults.automaticFailoverEnabled; this.capabilities = defaults.capabilities; this.connectionStrings = defaults.connectionStrings; this.consistencyPolicies = defaults.consistencyPolicies; @@ -436,6 +492,7 @@ public Builder(GetAccountResult defaults) { this.enableFreeTier = defaults.enableFreeTier; this.enableMultipleWriteLocations = defaults.enableMultipleWriteLocations; this.endpoint = defaults.endpoint; + this.freeTierEnabled = defaults.freeTierEnabled; this.geoLocations = defaults.geoLocations; this.id = defaults.id; this.ipRangeFilter = defaults.ipRangeFilter; @@ -443,6 +500,7 @@ public Builder(GetAccountResult defaults) { this.keyVaultKeyId = defaults.keyVaultKeyId; this.kind = defaults.kind; this.location = defaults.location; + this.multipleWriteLocationsEnabled = defaults.multipleWriteLocationsEnabled; this.name = defaults.name; this.offerType = defaults.offerType; this.primaryKey = defaults.primaryKey; @@ -464,6 +522,14 @@ public Builder(GetAccountResult defaults) { this.writeEndpoints = defaults.writeEndpoints; } + @CustomType.Setter + public Builder automaticFailoverEnabled(Boolean automaticFailoverEnabled) { + if (automaticFailoverEnabled == null) { + throw new MissingRequiredPropertyException("GetAccountResult", "automaticFailoverEnabled"); + } + this.automaticFailoverEnabled = automaticFailoverEnabled; + return this; + } @CustomType.Setter public Builder capabilities(List capabilities) { if (capabilities == null) { @@ -530,6 +596,14 @@ public Builder endpoint(String endpoint) { return this; } @CustomType.Setter + public Builder freeTierEnabled(Boolean freeTierEnabled) { + if (freeTierEnabled == null) { + throw new MissingRequiredPropertyException("GetAccountResult", "freeTierEnabled"); + } + this.freeTierEnabled = freeTierEnabled; + return this; + } + @CustomType.Setter public Builder geoLocations(List geoLocations) { if (geoLocations == null) { throw new MissingRequiredPropertyException("GetAccountResult", "geoLocations"); @@ -589,6 +663,14 @@ public Builder location(String location) { return this; } @CustomType.Setter + public Builder multipleWriteLocationsEnabled(Boolean multipleWriteLocationsEnabled) { + if (multipleWriteLocationsEnabled == null) { + throw new MissingRequiredPropertyException("GetAccountResult", "multipleWriteLocationsEnabled"); + } + this.multipleWriteLocationsEnabled = multipleWriteLocationsEnabled; + return this; + } + @CustomType.Setter public Builder name(String name) { if (name == null) { throw new MissingRequiredPropertyException("GetAccountResult", "name"); @@ -751,6 +833,7 @@ public Builder writeEndpoints(String... writeEndpoints) { } public GetAccountResult build() { final var _resultValue = new GetAccountResult(); + _resultValue.automaticFailoverEnabled = automaticFailoverEnabled; _resultValue.capabilities = capabilities; _resultValue.connectionStrings = connectionStrings; _resultValue.consistencyPolicies = consistencyPolicies; @@ -758,6 +841,7 @@ public GetAccountResult build() { _resultValue.enableFreeTier = enableFreeTier; _resultValue.enableMultipleWriteLocations = enableMultipleWriteLocations; _resultValue.endpoint = endpoint; + _resultValue.freeTierEnabled = freeTierEnabled; _resultValue.geoLocations = geoLocations; _resultValue.id = id; _resultValue.ipRangeFilter = ipRangeFilter; @@ -765,6 +849,7 @@ public GetAccountResult build() { _resultValue.keyVaultKeyId = keyVaultKeyId; _resultValue.kind = kind; _resultValue.location = location; + _resultValue.multipleWriteLocationsEnabled = multipleWriteLocationsEnabled; _resultValue.name = name; _resultValue.offerType = offerType; _resultValue.primaryKey = primaryKey; diff --git a/sdk/java/src/main/java/com/pulumi/azure/keyvault/Certifiate.java b/sdk/java/src/main/java/com/pulumi/azure/keyvault/Certifiate.java index e38cf5826c..9741207783 100644 --- a/sdk/java/src/main/java/com/pulumi/azure/keyvault/Certifiate.java +++ b/sdk/java/src/main/java/com/pulumi/azure/keyvault/Certifiate.java @@ -22,11 +22,6 @@ /** * Manages a Key Vault Certificate. * - * <<<<<<< HEAD - * > **Note:** The Azure Provider includes a Feature Toggle which will purge a Key Vault Certificate resource on destroy, rather than the default soft-delete. See `purge_soft_deleted_certificates_on_destroy` for more information. - * - * ======= - * > > > > > > > 8d78c87098 (Update-documentation) * ## Example Usage * * ### Importing A PFX) diff --git a/sdk/java/src/main/java/com/pulumi/azure/keyvault/Certificate.java b/sdk/java/src/main/java/com/pulumi/azure/keyvault/Certificate.java index 2a566596f1..028ed32cab 100644 --- a/sdk/java/src/main/java/com/pulumi/azure/keyvault/Certificate.java +++ b/sdk/java/src/main/java/com/pulumi/azure/keyvault/Certificate.java @@ -23,11 +23,6 @@ /** * Manages a Key Vault Certificate. * - * <<<<<<< HEAD - * > **Note:** The Azure Provider includes a Feature Toggle which will purge a Key Vault Certificate resource on destroy, rather than the default soft-delete. See `purge_soft_deleted_certificates_on_destroy` for more information. - * - * ======= - * > > > > > > > 8d78c87098 (Update-documentation) * ## Example Usage * * ### Importing A PFX) diff --git a/sdk/java/src/main/java/com/pulumi/azure/keyvault/CertificateContacts.java b/sdk/java/src/main/java/com/pulumi/azure/keyvault/CertificateContacts.java index d400eb4e37..2d7c6ce66d 100644 --- a/sdk/java/src/main/java/com/pulumi/azure/keyvault/CertificateContacts.java +++ b/sdk/java/src/main/java/com/pulumi/azure/keyvault/CertificateContacts.java @@ -20,6 +20,7 @@ * * ## Disclaimers * + * <!-- TODO: Remove Note in 4.0 --> * > **Note:** It's possible to define Key Vault Certificate Contacts both within the `azure.keyvault.KeyVault` resource via the `contact` block and by using the `azure.keyvault.CertificateContacts` resource. However it's not possible to use both methods to manage Certificate Contacts within a KeyVault, since there'll be conflicts. * * ## Example Usage @@ -109,6 +110,7 @@ public class CertificateContacts extends com.pulumi.resources.CustomResource { /** * One or more `contact` blocks as defined below. + * --> * */ @Export(name="contacts", refs={List.class,CertificateContactsContact.class}, tree="[0,1]") @@ -116,6 +118,7 @@ public class CertificateContacts extends com.pulumi.resources.CustomResource { /** * @return One or more `contact` blocks as defined below. + * --> * */ public Output> contacts() { diff --git a/sdk/java/src/main/java/com/pulumi/azure/keyvault/CertificateContactsArgs.java b/sdk/java/src/main/java/com/pulumi/azure/keyvault/CertificateContactsArgs.java index 8d8b275bef..3ae12cc591 100644 --- a/sdk/java/src/main/java/com/pulumi/azure/keyvault/CertificateContactsArgs.java +++ b/sdk/java/src/main/java/com/pulumi/azure/keyvault/CertificateContactsArgs.java @@ -18,6 +18,7 @@ public final class CertificateContactsArgs extends com.pulumi.resources.Resource /** * One or more `contact` blocks as defined below. + * --> * */ @Import(name="contacts", required=true) @@ -25,6 +26,7 @@ public final class CertificateContactsArgs extends com.pulumi.resources.Resource /** * @return One or more `contact` blocks as defined below. + * --> * */ public Output> contacts() { @@ -73,6 +75,7 @@ public Builder(CertificateContactsArgs defaults) { /** * @param contacts One or more `contact` blocks as defined below. + * --> * * @return builder * @@ -84,6 +87,7 @@ public Builder contacts(Output> contacts) { /** * @param contacts One or more `contact` blocks as defined below. + * --> * * @return builder * @@ -94,6 +98,7 @@ public Builder contacts(List contacts) { /** * @param contacts One or more `contact` blocks as defined below. + * --> * * @return builder * diff --git a/sdk/java/src/main/java/com/pulumi/azure/keyvault/KeyVault.java b/sdk/java/src/main/java/com/pulumi/azure/keyvault/KeyVault.java index 634d8b0562..8ddc71ffac 100644 --- a/sdk/java/src/main/java/com/pulumi/azure/keyvault/KeyVault.java +++ b/sdk/java/src/main/java/com/pulumi/azure/keyvault/KeyVault.java @@ -124,9 +124,13 @@ public Output> accessPolicies() { * * > **Note:** This field can only be set when `public_network_access_enabled` is set to `true`. To manage the `contact` with `public_network_access_enabled` set to `false`, please use the `azure.keyvault.CertificateContacts` resource instead of this property, and remove this property from the configuration. Especially for existing `azure.keyvault.KeyVault`, this means you'll need to import the `azure.keyvault.CertificateContacts` manually. * + * @deprecated + * As the `contact` property requires reaching out to the dataplane, to better support private endpoints and keyvaults with public network access disabled, `contact` will be removed in favour of the `azure.keyvault.CertificateContacts` resource in version 4.0 of the AzureRM Provider. + * */ + @Deprecated /* As the `contact` property requires reaching out to the dataplane, to better support private endpoints and keyvaults with public network access disabled, `contact` will be removed in favour of the `azure.keyvault.CertificateContacts` resource in version 4.0 of the AzureRM Provider. */ @Export(name="contacts", refs={List.class,KeyVaultContact.class}, tree="[0,1]") - private Output> contacts; + private Output> contacts; /** * @return One or more `contact` block as defined below. @@ -136,8 +140,8 @@ public Output> accessPolicies() { * > **Note:** This field can only be set when `public_network_access_enabled` is set to `true`. To manage the `contact` with `public_network_access_enabled` set to `false`, please use the `azure.keyvault.CertificateContacts` resource instead of this property, and remove this property from the configuration. Especially for existing `azure.keyvault.KeyVault`, this means you'll need to import the `azure.keyvault.CertificateContacts` manually. * */ - public Output>> contacts() { - return Codegen.optional(this.contacts); + public Output> contacts() { + return this.contacts; } /** * Boolean flag to specify whether Azure Key Vault uses Role Based Access Control (RBAC) for authorization of data actions. @@ -302,6 +306,8 @@ public Output skuName() { * * > **Note:** This field can only be configured one time and cannot be updated. * + * <!-- TODO: Remove `contact` and Notes in 4.0 --> + * */ @Export(name="softDeleteRetentionDays", refs={Integer.class}, tree="[0]") private Output softDeleteRetentionDays; @@ -311,6 +317,8 @@ public Output skuName() { * * > **Note:** This field can only be configured one time and cannot be updated. * + * <!-- TODO: Remove `contact` and Notes in 4.0 --> + * */ public Output> softDeleteRetentionDays() { return Codegen.optional(this.softDeleteRetentionDays); diff --git a/sdk/java/src/main/java/com/pulumi/azure/keyvault/KeyVaultArgs.java b/sdk/java/src/main/java/com/pulumi/azure/keyvault/KeyVaultArgs.java index bbdd44e8e2..c9bee5fd17 100644 --- a/sdk/java/src/main/java/com/pulumi/azure/keyvault/KeyVaultArgs.java +++ b/sdk/java/src/main/java/com/pulumi/azure/keyvault/KeyVaultArgs.java @@ -49,7 +49,11 @@ public Optional>> accessPolicies() { * * > **Note:** This field can only be set when `public_network_access_enabled` is set to `true`. To manage the `contact` with `public_network_access_enabled` set to `false`, please use the `azure.keyvault.CertificateContacts` resource instead of this property, and remove this property from the configuration. Especially for existing `azure.keyvault.KeyVault`, this means you'll need to import the `azure.keyvault.CertificateContacts` manually. * + * @deprecated + * As the `contact` property requires reaching out to the dataplane, to better support private endpoints and keyvaults with public network access disabled, `contact` will be removed in favour of the `azure.keyvault.CertificateContacts` resource in version 4.0 of the AzureRM Provider. + * */ + @Deprecated /* As the `contact` property requires reaching out to the dataplane, to better support private endpoints and keyvaults with public network access disabled, `contact` will be removed in favour of the `azure.keyvault.CertificateContacts` resource in version 4.0 of the AzureRM Provider. */ @Import(name="contacts") private @Nullable Output> contacts; @@ -60,7 +64,11 @@ public Optional>> accessPolicies() { * * > **Note:** This field can only be set when `public_network_access_enabled` is set to `true`. To manage the `contact` with `public_network_access_enabled` set to `false`, please use the `azure.keyvault.CertificateContacts` resource instead of this property, and remove this property from the configuration. Especially for existing `azure.keyvault.KeyVault`, this means you'll need to import the `azure.keyvault.CertificateContacts` manually. * + * @deprecated + * As the `contact` property requires reaching out to the dataplane, to better support private endpoints and keyvaults with public network access disabled, `contact` will be removed in favour of the `azure.keyvault.CertificateContacts` resource in version 4.0 of the AzureRM Provider. + * */ + @Deprecated /* As the `contact` property requires reaching out to the dataplane, to better support private endpoints and keyvaults with public network access disabled, `contact` will be removed in favour of the `azure.keyvault.CertificateContacts` resource in version 4.0 of the AzureRM Provider. */ public Optional>> contacts() { return Optional.ofNullable(this.contacts); } @@ -239,6 +247,8 @@ public Output skuName() { * * > **Note:** This field can only be configured one time and cannot be updated. * + * <!-- TODO: Remove `contact` and Notes in 4.0 --> + * */ @Import(name="softDeleteRetentionDays") private @Nullable Output softDeleteRetentionDays; @@ -248,6 +258,8 @@ public Output skuName() { * * > **Note:** This field can only be configured one time and cannot be updated. * + * <!-- TODO: Remove `contact` and Notes in 4.0 --> + * */ public Optional> softDeleteRetentionDays() { return Optional.ofNullable(this.softDeleteRetentionDays); @@ -368,7 +380,11 @@ public Builder accessPolicies(KeyVaultAccessPolicyArgs... accessPolicies) { * * @return builder * + * @deprecated + * As the `contact` property requires reaching out to the dataplane, to better support private endpoints and keyvaults with public network access disabled, `contact` will be removed in favour of the `azure.keyvault.CertificateContacts` resource in version 4.0 of the AzureRM Provider. + * */ + @Deprecated /* As the `contact` property requires reaching out to the dataplane, to better support private endpoints and keyvaults with public network access disabled, `contact` will be removed in favour of the `azure.keyvault.CertificateContacts` resource in version 4.0 of the AzureRM Provider. */ public Builder contacts(@Nullable Output> contacts) { $.contacts = contacts; return this; @@ -383,7 +399,11 @@ public Builder contacts(@Nullable Output> contacts) { * * @return builder * + * @deprecated + * As the `contact` property requires reaching out to the dataplane, to better support private endpoints and keyvaults with public network access disabled, `contact` will be removed in favour of the `azure.keyvault.CertificateContacts` resource in version 4.0 of the AzureRM Provider. + * */ + @Deprecated /* As the `contact` property requires reaching out to the dataplane, to better support private endpoints and keyvaults with public network access disabled, `contact` will be removed in favour of the `azure.keyvault.CertificateContacts` resource in version 4.0 of the AzureRM Provider. */ public Builder contacts(List contacts) { return contacts(Output.of(contacts)); } @@ -397,7 +417,11 @@ public Builder contacts(List contacts) { * * @return builder * + * @deprecated + * As the `contact` property requires reaching out to the dataplane, to better support private endpoints and keyvaults with public network access disabled, `contact` will be removed in favour of the `azure.keyvault.CertificateContacts` resource in version 4.0 of the AzureRM Provider. + * */ + @Deprecated /* As the `contact` property requires reaching out to the dataplane, to better support private endpoints and keyvaults with public network access disabled, `contact` will be removed in favour of the `azure.keyvault.CertificateContacts` resource in version 4.0 of the AzureRM Provider. */ public Builder contacts(KeyVaultContactArgs... contacts) { return contacts(List.of(contacts)); } @@ -642,6 +666,8 @@ public Builder skuName(String skuName) { * * > **Note:** This field can only be configured one time and cannot be updated. * + * <!-- TODO: Remove `contact` and Notes in 4.0 --> + * * @return builder * */ @@ -655,6 +681,8 @@ public Builder softDeleteRetentionDays(@Nullable Output softDeleteReten * * > **Note:** This field can only be configured one time and cannot be updated. * + * <!-- TODO: Remove `contact` and Notes in 4.0 --> + * * @return builder * */ diff --git a/sdk/java/src/main/java/com/pulumi/azure/keyvault/Secret.java b/sdk/java/src/main/java/com/pulumi/azure/keyvault/Secret.java index d500b907d7..d64ed65949 100644 --- a/sdk/java/src/main/java/com/pulumi/azure/keyvault/Secret.java +++ b/sdk/java/src/main/java/com/pulumi/azure/keyvault/Secret.java @@ -19,14 +19,6 @@ /** * Manages a Key Vault Secret. * - * <<<<<<< HEAD - * > **Note:** All arguments including the secret value will be stored in the raw state as plain-text. - * [Read more about sensitive data in state](https://www.terraform.io/docs/state/sensitive-data.html). - * - * > **Note:** The Azure Provider includes a Feature Toggle which will purge a Key Vault Secret resource on destroy, rather than the default soft-delete. See `purge_soft_deleted_secrets_on_destroy` for more information. - * - * ======= - * > > > > > > > 8d78c87098 (Update-documentation) * ## Example Usage * * <!--Start PulumiCodeChooser --> diff --git a/sdk/java/src/main/java/com/pulumi/azure/keyvault/inputs/CertificateContactsState.java b/sdk/java/src/main/java/com/pulumi/azure/keyvault/inputs/CertificateContactsState.java index da6ac8bd11..9d26eee272 100644 --- a/sdk/java/src/main/java/com/pulumi/azure/keyvault/inputs/CertificateContactsState.java +++ b/sdk/java/src/main/java/com/pulumi/azure/keyvault/inputs/CertificateContactsState.java @@ -19,6 +19,7 @@ public final class CertificateContactsState extends com.pulumi.resources.Resourc /** * One or more `contact` blocks as defined below. + * --> * */ @Import(name="contacts") @@ -26,6 +27,7 @@ public final class CertificateContactsState extends com.pulumi.resources.Resourc /** * @return One or more `contact` blocks as defined below. + * --> * */ public Optional>> contacts() { @@ -74,6 +76,7 @@ public Builder(CertificateContactsState defaults) { /** * @param contacts One or more `contact` blocks as defined below. + * --> * * @return builder * @@ -85,6 +88,7 @@ public Builder contacts(@Nullable Output> c /** * @param contacts One or more `contact` blocks as defined below. + * --> * * @return builder * @@ -95,6 +99,7 @@ public Builder contacts(List contacts) { /** * @param contacts One or more `contact` blocks as defined below. + * --> * * @return builder * diff --git a/sdk/java/src/main/java/com/pulumi/azure/keyvault/inputs/KeyVaultState.java b/sdk/java/src/main/java/com/pulumi/azure/keyvault/inputs/KeyVaultState.java index a6359fda6c..8766bc639d 100644 --- a/sdk/java/src/main/java/com/pulumi/azure/keyvault/inputs/KeyVaultState.java +++ b/sdk/java/src/main/java/com/pulumi/azure/keyvault/inputs/KeyVaultState.java @@ -48,7 +48,11 @@ public Optional>> accessPolicies() { * * > **Note:** This field can only be set when `public_network_access_enabled` is set to `true`. To manage the `contact` with `public_network_access_enabled` set to `false`, please use the `azure.keyvault.CertificateContacts` resource instead of this property, and remove this property from the configuration. Especially for existing `azure.keyvault.KeyVault`, this means you'll need to import the `azure.keyvault.CertificateContacts` manually. * + * @deprecated + * As the `contact` property requires reaching out to the dataplane, to better support private endpoints and keyvaults with public network access disabled, `contact` will be removed in favour of the `azure.keyvault.CertificateContacts` resource in version 4.0 of the AzureRM Provider. + * */ + @Deprecated /* As the `contact` property requires reaching out to the dataplane, to better support private endpoints and keyvaults with public network access disabled, `contact` will be removed in favour of the `azure.keyvault.CertificateContacts` resource in version 4.0 of the AzureRM Provider. */ @Import(name="contacts") private @Nullable Output> contacts; @@ -59,7 +63,11 @@ public Optional>> accessPolicies() { * * > **Note:** This field can only be set when `public_network_access_enabled` is set to `true`. To manage the `contact` with `public_network_access_enabled` set to `false`, please use the `azure.keyvault.CertificateContacts` resource instead of this property, and remove this property from the configuration. Especially for existing `azure.keyvault.KeyVault`, this means you'll need to import the `azure.keyvault.CertificateContacts` manually. * + * @deprecated + * As the `contact` property requires reaching out to the dataplane, to better support private endpoints and keyvaults with public network access disabled, `contact` will be removed in favour of the `azure.keyvault.CertificateContacts` resource in version 4.0 of the AzureRM Provider. + * */ + @Deprecated /* As the `contact` property requires reaching out to the dataplane, to better support private endpoints and keyvaults with public network access disabled, `contact` will be removed in favour of the `azure.keyvault.CertificateContacts` resource in version 4.0 of the AzureRM Provider. */ public Optional>> contacts() { return Optional.ofNullable(this.contacts); } @@ -238,6 +246,8 @@ public Optional> skuName() { * * > **Note:** This field can only be configured one time and cannot be updated. * + * <!-- TODO: Remove `contact` and Notes in 4.0 --> + * */ @Import(name="softDeleteRetentionDays") private @Nullable Output softDeleteRetentionDays; @@ -247,6 +257,8 @@ public Optional> skuName() { * * > **Note:** This field can only be configured one time and cannot be updated. * + * <!-- TODO: Remove `contact` and Notes in 4.0 --> + * */ public Optional> softDeleteRetentionDays() { return Optional.ofNullable(this.softDeleteRetentionDays); @@ -383,7 +395,11 @@ public Builder accessPolicies(KeyVaultAccessPolicyArgs... accessPolicies) { * * @return builder * + * @deprecated + * As the `contact` property requires reaching out to the dataplane, to better support private endpoints and keyvaults with public network access disabled, `contact` will be removed in favour of the `azure.keyvault.CertificateContacts` resource in version 4.0 of the AzureRM Provider. + * */ + @Deprecated /* As the `contact` property requires reaching out to the dataplane, to better support private endpoints and keyvaults with public network access disabled, `contact` will be removed in favour of the `azure.keyvault.CertificateContacts` resource in version 4.0 of the AzureRM Provider. */ public Builder contacts(@Nullable Output> contacts) { $.contacts = contacts; return this; @@ -398,7 +414,11 @@ public Builder contacts(@Nullable Output> contacts) { * * @return builder * + * @deprecated + * As the `contact` property requires reaching out to the dataplane, to better support private endpoints and keyvaults with public network access disabled, `contact` will be removed in favour of the `azure.keyvault.CertificateContacts` resource in version 4.0 of the AzureRM Provider. + * */ + @Deprecated /* As the `contact` property requires reaching out to the dataplane, to better support private endpoints and keyvaults with public network access disabled, `contact` will be removed in favour of the `azure.keyvault.CertificateContacts` resource in version 4.0 of the AzureRM Provider. */ public Builder contacts(List contacts) { return contacts(Output.of(contacts)); } @@ -412,7 +432,11 @@ public Builder contacts(List contacts) { * * @return builder * + * @deprecated + * As the `contact` property requires reaching out to the dataplane, to better support private endpoints and keyvaults with public network access disabled, `contact` will be removed in favour of the `azure.keyvault.CertificateContacts` resource in version 4.0 of the AzureRM Provider. + * */ + @Deprecated /* As the `contact` property requires reaching out to the dataplane, to better support private endpoints and keyvaults with public network access disabled, `contact` will be removed in favour of the `azure.keyvault.CertificateContacts` resource in version 4.0 of the AzureRM Provider. */ public Builder contacts(KeyVaultContactArgs... contacts) { return contacts(List.of(contacts)); } @@ -657,6 +681,8 @@ public Builder skuName(String skuName) { * * > **Note:** This field can only be configured one time and cannot be updated. * + * <!-- TODO: Remove `contact` and Notes in 4.0 --> + * * @return builder * */ @@ -670,6 +696,8 @@ public Builder softDeleteRetentionDays(@Nullable Output softDeleteReten * * > **Note:** This field can only be configured one time and cannot be updated. * + * <!-- TODO: Remove `contact` and Notes in 4.0 --> + * * @return builder * */ diff --git a/sdk/java/src/main/java/com/pulumi/azure/network/inputs/SubnetDelegationServiceDelegationArgs.java b/sdk/java/src/main/java/com/pulumi/azure/network/inputs/SubnetDelegationServiceDelegationArgs.java index 8cc8148976..311a8288f8 100644 --- a/sdk/java/src/main/java/com/pulumi/azure/network/inputs/SubnetDelegationServiceDelegationArgs.java +++ b/sdk/java/src/main/java/com/pulumi/azure/network/inputs/SubnetDelegationServiceDelegationArgs.java @@ -37,14 +37,14 @@ public Optional>> actions() { } /** - * The name of service to delegate to. Possible values are `GitHub.Network/networkSettings`, `Microsoft.ApiManagement/service`, `Microsoft.Apollo/npu`, `Microsoft.App/environments`, `Microsoft.App/testClients`, `Microsoft.AVS/PrivateClouds`, `Microsoft.AzureCosmosDB/clusters`, `Microsoft.BareMetal/AzureHostedService`, `Microsoft.BareMetal/AzureHPC`, `Microsoft.BareMetal/AzurePaymentHSM`, `Microsoft.BareMetal/AzureVMware`, `Microsoft.BareMetal/CrayServers`, `Microsoft.BareMetal/MonitoringServers`, `Microsoft.Batch/batchAccounts`, `Microsoft.CloudTest/hostedpools`, `Microsoft.CloudTest/images`, `Microsoft.CloudTest/pools`, `Microsoft.Codespaces/plans`, `Microsoft.ContainerInstance/containerGroups`, `Microsoft.ContainerService/managedClusters`, `Microsoft.ContainerService/TestClients`, `Microsoft.Databricks/workspaces`, `Microsoft.DBforMySQL/flexibleServers`, `Microsoft.DBforMySQL/servers`, `Microsoft.DBforMySQL/serversv2`, `Microsoft.DBforPostgreSQL/flexibleServers`, `Microsoft.DBforPostgreSQL/serversv2`, `Microsoft.DBforPostgreSQL/singleServers`, `Microsoft.DelegatedNetwork/controller`, `Microsoft.DevCenter/networkConnection`, `Microsoft.DocumentDB/cassandraClusters`, `Microsoft.Fidalgo/networkSettings`, `Microsoft.HardwareSecurityModules/dedicatedHSMs`, `Microsoft.Kusto/clusters`, `Microsoft.LabServices/labplans`, `Microsoft.Logic/integrationServiceEnvironments`, `Microsoft.MachineLearningServices/workspaces`, `Microsoft.Netapp/volumes`, `Microsoft.Network/dnsResolvers`, `Microsoft.Network/managedResolvers`, `Microsoft.Network/fpgaNetworkInterfaces`, `Microsoft.Network/networkWatchers.`, `Microsoft.Network/virtualNetworkGateways`, `Microsoft.Orbital/orbitalGateways`, `Microsoft.PowerPlatform/enterprisePolicies`, `Microsoft.PowerPlatform/vnetaccesslinks`, `Microsoft.ServiceFabricMesh/networks`, `Microsoft.ServiceNetworking/trafficControllers`, `Microsoft.Singularity/accounts/networks`, `Microsoft.Singularity/accounts/npu`, `Microsoft.Sql/managedInstances`, `Microsoft.Sql/managedInstancesOnebox`, `Microsoft.Sql/managedInstancesStage`, `Microsoft.Sql/managedInstancesTest`, `Microsoft.Sql/servers`, `Microsoft.StoragePool/diskPools`, `Microsoft.StreamAnalytics/streamingJobs`, `Microsoft.Synapse/workspaces`, `Microsoft.Web/hostingEnvironments`, `Microsoft.Web/serverFarms`, `NGINX.NGINXPLUS/nginxDeployments`, `PaloAltoNetworks.Cloudngfw/firewalls` and `Qumulo.Storage/fileSystems`. + * The name of service to delegate to. Possible values are `GitHub.Network/networkSettings`, `Microsoft.ApiManagement/service`, `Microsoft.Apollo/npu`, `Microsoft.App/environments`, `Microsoft.App/testClients`, `Microsoft.AVS/PrivateClouds`, `Microsoft.AzureCosmosDB/clusters`, `Microsoft.BareMetal/AzureHostedService`, `Microsoft.BareMetal/AzureHPC`, `Microsoft.BareMetal/AzurePaymentHSM`, `Microsoft.BareMetal/AzureVMware`, `Microsoft.BareMetal/CrayServers`, `Microsoft.BareMetal/MonitoringServers`, `Microsoft.Batch/batchAccounts`, `Microsoft.CloudTest/hostedpools`, `Microsoft.CloudTest/images`, `Microsoft.CloudTest/pools`, `Microsoft.Codespaces/plans`, `Microsoft.ContainerInstance/containerGroups`, `Microsoft.ContainerService/managedClusters`, `Microsoft.ContainerService/TestClients`, `Microsoft.Databricks/workspaces`, `Microsoft.DBforMySQL/flexibleServers`, `Microsoft.DBforMySQL/servers`, `Microsoft.DBforMySQL/serversv2`, `Microsoft.DBforPostgreSQL/flexibleServers`, `Microsoft.DBforPostgreSQL/serversv2`, `Microsoft.DBforPostgreSQL/singleServers`, `Microsoft.DelegatedNetwork/controller`, `Microsoft.DevCenter/networkConnection`, `Microsoft.DocumentDB/cassandraClusters`, `Microsoft.Fidalgo/networkSettings`, `Microsoft.HardwareSecurityModules/dedicatedHSMs`, `Microsoft.Kusto/clusters`, `Microsoft.LabServices/labplans`, `Microsoft.Logic/integrationServiceEnvironments`, `Microsoft.MachineLearningServices/workspaces`, `Microsoft.Netapp/volumes`, `Microsoft.Network/dnsResolvers`, `Microsoft.Network/managedResolvers`, `Microsoft.Network/fpgaNetworkInterfaces`, `Microsoft.Network/networkWatchers.`, `Microsoft.Network/virtualNetworkGateways`, `Microsoft.Orbital/orbitalGateways`, `Microsoft.PowerPlatform/enterprisePolicies`, `Microsoft.PowerPlatform/vnetaccesslinks`, `Microsoft.ServiceFabricMesh/networks`, `Microsoft.ServiceNetworking/trafficControllers`, `Microsoft.Singularity/accounts/networks`, `Microsoft.Singularity/accounts/npu`, `Microsoft.Sql/managedInstances`, `Microsoft.Sql/managedInstancesOnebox`, `Microsoft.Sql/managedInstancesStage`, `Microsoft.Sql/managedInstancesTest`, `Microsoft.Sql/servers`, `Microsoft.StoragePool/diskPools`, `Microsoft.StreamAnalytics/streamingJobs`, `Microsoft.Synapse/workspaces`, `Microsoft.Web/hostingEnvironments`, `Microsoft.Web/serverFarms`, `NGINX.NGINXPLUS/nginxDeployments`, `PaloAltoNetworks.Cloudngfw/firewalls`, `Qumulo.Storage/fileSystems`, and `Oracle.Database/networkAttachments`. * */ @Import(name="name", required=true) private Output name; /** - * @return The name of service to delegate to. Possible values are `GitHub.Network/networkSettings`, `Microsoft.ApiManagement/service`, `Microsoft.Apollo/npu`, `Microsoft.App/environments`, `Microsoft.App/testClients`, `Microsoft.AVS/PrivateClouds`, `Microsoft.AzureCosmosDB/clusters`, `Microsoft.BareMetal/AzureHostedService`, `Microsoft.BareMetal/AzureHPC`, `Microsoft.BareMetal/AzurePaymentHSM`, `Microsoft.BareMetal/AzureVMware`, `Microsoft.BareMetal/CrayServers`, `Microsoft.BareMetal/MonitoringServers`, `Microsoft.Batch/batchAccounts`, `Microsoft.CloudTest/hostedpools`, `Microsoft.CloudTest/images`, `Microsoft.CloudTest/pools`, `Microsoft.Codespaces/plans`, `Microsoft.ContainerInstance/containerGroups`, `Microsoft.ContainerService/managedClusters`, `Microsoft.ContainerService/TestClients`, `Microsoft.Databricks/workspaces`, `Microsoft.DBforMySQL/flexibleServers`, `Microsoft.DBforMySQL/servers`, `Microsoft.DBforMySQL/serversv2`, `Microsoft.DBforPostgreSQL/flexibleServers`, `Microsoft.DBforPostgreSQL/serversv2`, `Microsoft.DBforPostgreSQL/singleServers`, `Microsoft.DelegatedNetwork/controller`, `Microsoft.DevCenter/networkConnection`, `Microsoft.DocumentDB/cassandraClusters`, `Microsoft.Fidalgo/networkSettings`, `Microsoft.HardwareSecurityModules/dedicatedHSMs`, `Microsoft.Kusto/clusters`, `Microsoft.LabServices/labplans`, `Microsoft.Logic/integrationServiceEnvironments`, `Microsoft.MachineLearningServices/workspaces`, `Microsoft.Netapp/volumes`, `Microsoft.Network/dnsResolvers`, `Microsoft.Network/managedResolvers`, `Microsoft.Network/fpgaNetworkInterfaces`, `Microsoft.Network/networkWatchers.`, `Microsoft.Network/virtualNetworkGateways`, `Microsoft.Orbital/orbitalGateways`, `Microsoft.PowerPlatform/enterprisePolicies`, `Microsoft.PowerPlatform/vnetaccesslinks`, `Microsoft.ServiceFabricMesh/networks`, `Microsoft.ServiceNetworking/trafficControllers`, `Microsoft.Singularity/accounts/networks`, `Microsoft.Singularity/accounts/npu`, `Microsoft.Sql/managedInstances`, `Microsoft.Sql/managedInstancesOnebox`, `Microsoft.Sql/managedInstancesStage`, `Microsoft.Sql/managedInstancesTest`, `Microsoft.Sql/servers`, `Microsoft.StoragePool/diskPools`, `Microsoft.StreamAnalytics/streamingJobs`, `Microsoft.Synapse/workspaces`, `Microsoft.Web/hostingEnvironments`, `Microsoft.Web/serverFarms`, `NGINX.NGINXPLUS/nginxDeployments`, `PaloAltoNetworks.Cloudngfw/firewalls` and `Qumulo.Storage/fileSystems`. + * @return The name of service to delegate to. Possible values are `GitHub.Network/networkSettings`, `Microsoft.ApiManagement/service`, `Microsoft.Apollo/npu`, `Microsoft.App/environments`, `Microsoft.App/testClients`, `Microsoft.AVS/PrivateClouds`, `Microsoft.AzureCosmosDB/clusters`, `Microsoft.BareMetal/AzureHostedService`, `Microsoft.BareMetal/AzureHPC`, `Microsoft.BareMetal/AzurePaymentHSM`, `Microsoft.BareMetal/AzureVMware`, `Microsoft.BareMetal/CrayServers`, `Microsoft.BareMetal/MonitoringServers`, `Microsoft.Batch/batchAccounts`, `Microsoft.CloudTest/hostedpools`, `Microsoft.CloudTest/images`, `Microsoft.CloudTest/pools`, `Microsoft.Codespaces/plans`, `Microsoft.ContainerInstance/containerGroups`, `Microsoft.ContainerService/managedClusters`, `Microsoft.ContainerService/TestClients`, `Microsoft.Databricks/workspaces`, `Microsoft.DBforMySQL/flexibleServers`, `Microsoft.DBforMySQL/servers`, `Microsoft.DBforMySQL/serversv2`, `Microsoft.DBforPostgreSQL/flexibleServers`, `Microsoft.DBforPostgreSQL/serversv2`, `Microsoft.DBforPostgreSQL/singleServers`, `Microsoft.DelegatedNetwork/controller`, `Microsoft.DevCenter/networkConnection`, `Microsoft.DocumentDB/cassandraClusters`, `Microsoft.Fidalgo/networkSettings`, `Microsoft.HardwareSecurityModules/dedicatedHSMs`, `Microsoft.Kusto/clusters`, `Microsoft.LabServices/labplans`, `Microsoft.Logic/integrationServiceEnvironments`, `Microsoft.MachineLearningServices/workspaces`, `Microsoft.Netapp/volumes`, `Microsoft.Network/dnsResolvers`, `Microsoft.Network/managedResolvers`, `Microsoft.Network/fpgaNetworkInterfaces`, `Microsoft.Network/networkWatchers.`, `Microsoft.Network/virtualNetworkGateways`, `Microsoft.Orbital/orbitalGateways`, `Microsoft.PowerPlatform/enterprisePolicies`, `Microsoft.PowerPlatform/vnetaccesslinks`, `Microsoft.ServiceFabricMesh/networks`, `Microsoft.ServiceNetworking/trafficControllers`, `Microsoft.Singularity/accounts/networks`, `Microsoft.Singularity/accounts/npu`, `Microsoft.Sql/managedInstances`, `Microsoft.Sql/managedInstancesOnebox`, `Microsoft.Sql/managedInstancesStage`, `Microsoft.Sql/managedInstancesTest`, `Microsoft.Sql/servers`, `Microsoft.StoragePool/diskPools`, `Microsoft.StreamAnalytics/streamingJobs`, `Microsoft.Synapse/workspaces`, `Microsoft.Web/hostingEnvironments`, `Microsoft.Web/serverFarms`, `NGINX.NGINXPLUS/nginxDeployments`, `PaloAltoNetworks.Cloudngfw/firewalls`, `Qumulo.Storage/fileSystems`, and `Oracle.Database/networkAttachments`. * */ public Output name() { @@ -114,7 +114,7 @@ public Builder actions(String... actions) { } /** - * @param name The name of service to delegate to. Possible values are `GitHub.Network/networkSettings`, `Microsoft.ApiManagement/service`, `Microsoft.Apollo/npu`, `Microsoft.App/environments`, `Microsoft.App/testClients`, `Microsoft.AVS/PrivateClouds`, `Microsoft.AzureCosmosDB/clusters`, `Microsoft.BareMetal/AzureHostedService`, `Microsoft.BareMetal/AzureHPC`, `Microsoft.BareMetal/AzurePaymentHSM`, `Microsoft.BareMetal/AzureVMware`, `Microsoft.BareMetal/CrayServers`, `Microsoft.BareMetal/MonitoringServers`, `Microsoft.Batch/batchAccounts`, `Microsoft.CloudTest/hostedpools`, `Microsoft.CloudTest/images`, `Microsoft.CloudTest/pools`, `Microsoft.Codespaces/plans`, `Microsoft.ContainerInstance/containerGroups`, `Microsoft.ContainerService/managedClusters`, `Microsoft.ContainerService/TestClients`, `Microsoft.Databricks/workspaces`, `Microsoft.DBforMySQL/flexibleServers`, `Microsoft.DBforMySQL/servers`, `Microsoft.DBforMySQL/serversv2`, `Microsoft.DBforPostgreSQL/flexibleServers`, `Microsoft.DBforPostgreSQL/serversv2`, `Microsoft.DBforPostgreSQL/singleServers`, `Microsoft.DelegatedNetwork/controller`, `Microsoft.DevCenter/networkConnection`, `Microsoft.DocumentDB/cassandraClusters`, `Microsoft.Fidalgo/networkSettings`, `Microsoft.HardwareSecurityModules/dedicatedHSMs`, `Microsoft.Kusto/clusters`, `Microsoft.LabServices/labplans`, `Microsoft.Logic/integrationServiceEnvironments`, `Microsoft.MachineLearningServices/workspaces`, `Microsoft.Netapp/volumes`, `Microsoft.Network/dnsResolvers`, `Microsoft.Network/managedResolvers`, `Microsoft.Network/fpgaNetworkInterfaces`, `Microsoft.Network/networkWatchers.`, `Microsoft.Network/virtualNetworkGateways`, `Microsoft.Orbital/orbitalGateways`, `Microsoft.PowerPlatform/enterprisePolicies`, `Microsoft.PowerPlatform/vnetaccesslinks`, `Microsoft.ServiceFabricMesh/networks`, `Microsoft.ServiceNetworking/trafficControllers`, `Microsoft.Singularity/accounts/networks`, `Microsoft.Singularity/accounts/npu`, `Microsoft.Sql/managedInstances`, `Microsoft.Sql/managedInstancesOnebox`, `Microsoft.Sql/managedInstancesStage`, `Microsoft.Sql/managedInstancesTest`, `Microsoft.Sql/servers`, `Microsoft.StoragePool/diskPools`, `Microsoft.StreamAnalytics/streamingJobs`, `Microsoft.Synapse/workspaces`, `Microsoft.Web/hostingEnvironments`, `Microsoft.Web/serverFarms`, `NGINX.NGINXPLUS/nginxDeployments`, `PaloAltoNetworks.Cloudngfw/firewalls` and `Qumulo.Storage/fileSystems`. + * @param name The name of service to delegate to. Possible values are `GitHub.Network/networkSettings`, `Microsoft.ApiManagement/service`, `Microsoft.Apollo/npu`, `Microsoft.App/environments`, `Microsoft.App/testClients`, `Microsoft.AVS/PrivateClouds`, `Microsoft.AzureCosmosDB/clusters`, `Microsoft.BareMetal/AzureHostedService`, `Microsoft.BareMetal/AzureHPC`, `Microsoft.BareMetal/AzurePaymentHSM`, `Microsoft.BareMetal/AzureVMware`, `Microsoft.BareMetal/CrayServers`, `Microsoft.BareMetal/MonitoringServers`, `Microsoft.Batch/batchAccounts`, `Microsoft.CloudTest/hostedpools`, `Microsoft.CloudTest/images`, `Microsoft.CloudTest/pools`, `Microsoft.Codespaces/plans`, `Microsoft.ContainerInstance/containerGroups`, `Microsoft.ContainerService/managedClusters`, `Microsoft.ContainerService/TestClients`, `Microsoft.Databricks/workspaces`, `Microsoft.DBforMySQL/flexibleServers`, `Microsoft.DBforMySQL/servers`, `Microsoft.DBforMySQL/serversv2`, `Microsoft.DBforPostgreSQL/flexibleServers`, `Microsoft.DBforPostgreSQL/serversv2`, `Microsoft.DBforPostgreSQL/singleServers`, `Microsoft.DelegatedNetwork/controller`, `Microsoft.DevCenter/networkConnection`, `Microsoft.DocumentDB/cassandraClusters`, `Microsoft.Fidalgo/networkSettings`, `Microsoft.HardwareSecurityModules/dedicatedHSMs`, `Microsoft.Kusto/clusters`, `Microsoft.LabServices/labplans`, `Microsoft.Logic/integrationServiceEnvironments`, `Microsoft.MachineLearningServices/workspaces`, `Microsoft.Netapp/volumes`, `Microsoft.Network/dnsResolvers`, `Microsoft.Network/managedResolvers`, `Microsoft.Network/fpgaNetworkInterfaces`, `Microsoft.Network/networkWatchers.`, `Microsoft.Network/virtualNetworkGateways`, `Microsoft.Orbital/orbitalGateways`, `Microsoft.PowerPlatform/enterprisePolicies`, `Microsoft.PowerPlatform/vnetaccesslinks`, `Microsoft.ServiceFabricMesh/networks`, `Microsoft.ServiceNetworking/trafficControllers`, `Microsoft.Singularity/accounts/networks`, `Microsoft.Singularity/accounts/npu`, `Microsoft.Sql/managedInstances`, `Microsoft.Sql/managedInstancesOnebox`, `Microsoft.Sql/managedInstancesStage`, `Microsoft.Sql/managedInstancesTest`, `Microsoft.Sql/servers`, `Microsoft.StoragePool/diskPools`, `Microsoft.StreamAnalytics/streamingJobs`, `Microsoft.Synapse/workspaces`, `Microsoft.Web/hostingEnvironments`, `Microsoft.Web/serverFarms`, `NGINX.NGINXPLUS/nginxDeployments`, `PaloAltoNetworks.Cloudngfw/firewalls`, `Qumulo.Storage/fileSystems`, and `Oracle.Database/networkAttachments`. * * @return builder * @@ -125,7 +125,7 @@ public Builder name(Output name) { } /** - * @param name The name of service to delegate to. Possible values are `GitHub.Network/networkSettings`, `Microsoft.ApiManagement/service`, `Microsoft.Apollo/npu`, `Microsoft.App/environments`, `Microsoft.App/testClients`, `Microsoft.AVS/PrivateClouds`, `Microsoft.AzureCosmosDB/clusters`, `Microsoft.BareMetal/AzureHostedService`, `Microsoft.BareMetal/AzureHPC`, `Microsoft.BareMetal/AzurePaymentHSM`, `Microsoft.BareMetal/AzureVMware`, `Microsoft.BareMetal/CrayServers`, `Microsoft.BareMetal/MonitoringServers`, `Microsoft.Batch/batchAccounts`, `Microsoft.CloudTest/hostedpools`, `Microsoft.CloudTest/images`, `Microsoft.CloudTest/pools`, `Microsoft.Codespaces/plans`, `Microsoft.ContainerInstance/containerGroups`, `Microsoft.ContainerService/managedClusters`, `Microsoft.ContainerService/TestClients`, `Microsoft.Databricks/workspaces`, `Microsoft.DBforMySQL/flexibleServers`, `Microsoft.DBforMySQL/servers`, `Microsoft.DBforMySQL/serversv2`, `Microsoft.DBforPostgreSQL/flexibleServers`, `Microsoft.DBforPostgreSQL/serversv2`, `Microsoft.DBforPostgreSQL/singleServers`, `Microsoft.DelegatedNetwork/controller`, `Microsoft.DevCenter/networkConnection`, `Microsoft.DocumentDB/cassandraClusters`, `Microsoft.Fidalgo/networkSettings`, `Microsoft.HardwareSecurityModules/dedicatedHSMs`, `Microsoft.Kusto/clusters`, `Microsoft.LabServices/labplans`, `Microsoft.Logic/integrationServiceEnvironments`, `Microsoft.MachineLearningServices/workspaces`, `Microsoft.Netapp/volumes`, `Microsoft.Network/dnsResolvers`, `Microsoft.Network/managedResolvers`, `Microsoft.Network/fpgaNetworkInterfaces`, `Microsoft.Network/networkWatchers.`, `Microsoft.Network/virtualNetworkGateways`, `Microsoft.Orbital/orbitalGateways`, `Microsoft.PowerPlatform/enterprisePolicies`, `Microsoft.PowerPlatform/vnetaccesslinks`, `Microsoft.ServiceFabricMesh/networks`, `Microsoft.ServiceNetworking/trafficControllers`, `Microsoft.Singularity/accounts/networks`, `Microsoft.Singularity/accounts/npu`, `Microsoft.Sql/managedInstances`, `Microsoft.Sql/managedInstancesOnebox`, `Microsoft.Sql/managedInstancesStage`, `Microsoft.Sql/managedInstancesTest`, `Microsoft.Sql/servers`, `Microsoft.StoragePool/diskPools`, `Microsoft.StreamAnalytics/streamingJobs`, `Microsoft.Synapse/workspaces`, `Microsoft.Web/hostingEnvironments`, `Microsoft.Web/serverFarms`, `NGINX.NGINXPLUS/nginxDeployments`, `PaloAltoNetworks.Cloudngfw/firewalls` and `Qumulo.Storage/fileSystems`. + * @param name The name of service to delegate to. Possible values are `GitHub.Network/networkSettings`, `Microsoft.ApiManagement/service`, `Microsoft.Apollo/npu`, `Microsoft.App/environments`, `Microsoft.App/testClients`, `Microsoft.AVS/PrivateClouds`, `Microsoft.AzureCosmosDB/clusters`, `Microsoft.BareMetal/AzureHostedService`, `Microsoft.BareMetal/AzureHPC`, `Microsoft.BareMetal/AzurePaymentHSM`, `Microsoft.BareMetal/AzureVMware`, `Microsoft.BareMetal/CrayServers`, `Microsoft.BareMetal/MonitoringServers`, `Microsoft.Batch/batchAccounts`, `Microsoft.CloudTest/hostedpools`, `Microsoft.CloudTest/images`, `Microsoft.CloudTest/pools`, `Microsoft.Codespaces/plans`, `Microsoft.ContainerInstance/containerGroups`, `Microsoft.ContainerService/managedClusters`, `Microsoft.ContainerService/TestClients`, `Microsoft.Databricks/workspaces`, `Microsoft.DBforMySQL/flexibleServers`, `Microsoft.DBforMySQL/servers`, `Microsoft.DBforMySQL/serversv2`, `Microsoft.DBforPostgreSQL/flexibleServers`, `Microsoft.DBforPostgreSQL/serversv2`, `Microsoft.DBforPostgreSQL/singleServers`, `Microsoft.DelegatedNetwork/controller`, `Microsoft.DevCenter/networkConnection`, `Microsoft.DocumentDB/cassandraClusters`, `Microsoft.Fidalgo/networkSettings`, `Microsoft.HardwareSecurityModules/dedicatedHSMs`, `Microsoft.Kusto/clusters`, `Microsoft.LabServices/labplans`, `Microsoft.Logic/integrationServiceEnvironments`, `Microsoft.MachineLearningServices/workspaces`, `Microsoft.Netapp/volumes`, `Microsoft.Network/dnsResolvers`, `Microsoft.Network/managedResolvers`, `Microsoft.Network/fpgaNetworkInterfaces`, `Microsoft.Network/networkWatchers.`, `Microsoft.Network/virtualNetworkGateways`, `Microsoft.Orbital/orbitalGateways`, `Microsoft.PowerPlatform/enterprisePolicies`, `Microsoft.PowerPlatform/vnetaccesslinks`, `Microsoft.ServiceFabricMesh/networks`, `Microsoft.ServiceNetworking/trafficControllers`, `Microsoft.Singularity/accounts/networks`, `Microsoft.Singularity/accounts/npu`, `Microsoft.Sql/managedInstances`, `Microsoft.Sql/managedInstancesOnebox`, `Microsoft.Sql/managedInstancesStage`, `Microsoft.Sql/managedInstancesTest`, `Microsoft.Sql/servers`, `Microsoft.StoragePool/diskPools`, `Microsoft.StreamAnalytics/streamingJobs`, `Microsoft.Synapse/workspaces`, `Microsoft.Web/hostingEnvironments`, `Microsoft.Web/serverFarms`, `NGINX.NGINXPLUS/nginxDeployments`, `PaloAltoNetworks.Cloudngfw/firewalls`, `Qumulo.Storage/fileSystems`, and `Oracle.Database/networkAttachments`. * * @return builder * diff --git a/sdk/java/src/main/java/com/pulumi/azure/network/outputs/GetPublicIpPrefixResult.java b/sdk/java/src/main/java/com/pulumi/azure/network/outputs/GetPublicIpPrefixResult.java index d77707168b..e4a13ee8e2 100644 --- a/sdk/java/src/main/java/com/pulumi/azure/network/outputs/GetPublicIpPrefixResult.java +++ b/sdk/java/src/main/java/com/pulumi/azure/network/outputs/GetPublicIpPrefixResult.java @@ -18,26 +18,22 @@ public final class GetPublicIpPrefixResult { * */ private String id; - private String ipPrefix; /** - * @return The supported Azure location where the resource exists. + * @return The Public IP address range, in CIDR notation. * */ - private String location; + private String ipPrefix; /** - * @return The name of the Public IP prefix resource. + * @return The supported Azure location where the resource exists. * */ + private String location; private String name; /** * @return The number of bits of the prefix. * */ private Integer prefixLength; - /** - * @return The name of the resource group in which to create the public IP. - * - */ private String resourceGroupName; /** * @return The SKU of the Public IP Prefix. @@ -63,6 +59,10 @@ private GetPublicIpPrefixResult() {} public String id() { return this.id; } + /** + * @return The Public IP address range, in CIDR notation. + * + */ public String ipPrefix() { return this.ipPrefix; } @@ -73,10 +73,6 @@ public String ipPrefix() { public String location() { return this.location; } - /** - * @return The name of the Public IP prefix resource. - * - */ public String name() { return this.name; } @@ -87,10 +83,6 @@ public String name() { public Integer prefixLength() { return this.prefixLength; } - /** - * @return The name of the resource group in which to create the public IP. - * - */ public String resourceGroupName() { return this.resourceGroupName; } diff --git a/sdk/java/src/main/java/com/pulumi/azure/network/outputs/SubnetDelegationServiceDelegation.java b/sdk/java/src/main/java/com/pulumi/azure/network/outputs/SubnetDelegationServiceDelegation.java index b825e070a7..c161d4d0d8 100644 --- a/sdk/java/src/main/java/com/pulumi/azure/network/outputs/SubnetDelegationServiceDelegation.java +++ b/sdk/java/src/main/java/com/pulumi/azure/network/outputs/SubnetDelegationServiceDelegation.java @@ -20,7 +20,7 @@ public final class SubnetDelegationServiceDelegation { */ private @Nullable List actions; /** - * @return The name of service to delegate to. Possible values are `GitHub.Network/networkSettings`, `Microsoft.ApiManagement/service`, `Microsoft.Apollo/npu`, `Microsoft.App/environments`, `Microsoft.App/testClients`, `Microsoft.AVS/PrivateClouds`, `Microsoft.AzureCosmosDB/clusters`, `Microsoft.BareMetal/AzureHostedService`, `Microsoft.BareMetal/AzureHPC`, `Microsoft.BareMetal/AzurePaymentHSM`, `Microsoft.BareMetal/AzureVMware`, `Microsoft.BareMetal/CrayServers`, `Microsoft.BareMetal/MonitoringServers`, `Microsoft.Batch/batchAccounts`, `Microsoft.CloudTest/hostedpools`, `Microsoft.CloudTest/images`, `Microsoft.CloudTest/pools`, `Microsoft.Codespaces/plans`, `Microsoft.ContainerInstance/containerGroups`, `Microsoft.ContainerService/managedClusters`, `Microsoft.ContainerService/TestClients`, `Microsoft.Databricks/workspaces`, `Microsoft.DBforMySQL/flexibleServers`, `Microsoft.DBforMySQL/servers`, `Microsoft.DBforMySQL/serversv2`, `Microsoft.DBforPostgreSQL/flexibleServers`, `Microsoft.DBforPostgreSQL/serversv2`, `Microsoft.DBforPostgreSQL/singleServers`, `Microsoft.DelegatedNetwork/controller`, `Microsoft.DevCenter/networkConnection`, `Microsoft.DocumentDB/cassandraClusters`, `Microsoft.Fidalgo/networkSettings`, `Microsoft.HardwareSecurityModules/dedicatedHSMs`, `Microsoft.Kusto/clusters`, `Microsoft.LabServices/labplans`, `Microsoft.Logic/integrationServiceEnvironments`, `Microsoft.MachineLearningServices/workspaces`, `Microsoft.Netapp/volumes`, `Microsoft.Network/dnsResolvers`, `Microsoft.Network/managedResolvers`, `Microsoft.Network/fpgaNetworkInterfaces`, `Microsoft.Network/networkWatchers.`, `Microsoft.Network/virtualNetworkGateways`, `Microsoft.Orbital/orbitalGateways`, `Microsoft.PowerPlatform/enterprisePolicies`, `Microsoft.PowerPlatform/vnetaccesslinks`, `Microsoft.ServiceFabricMesh/networks`, `Microsoft.ServiceNetworking/trafficControllers`, `Microsoft.Singularity/accounts/networks`, `Microsoft.Singularity/accounts/npu`, `Microsoft.Sql/managedInstances`, `Microsoft.Sql/managedInstancesOnebox`, `Microsoft.Sql/managedInstancesStage`, `Microsoft.Sql/managedInstancesTest`, `Microsoft.Sql/servers`, `Microsoft.StoragePool/diskPools`, `Microsoft.StreamAnalytics/streamingJobs`, `Microsoft.Synapse/workspaces`, `Microsoft.Web/hostingEnvironments`, `Microsoft.Web/serverFarms`, `NGINX.NGINXPLUS/nginxDeployments`, `PaloAltoNetworks.Cloudngfw/firewalls` and `Qumulo.Storage/fileSystems`. + * @return The name of service to delegate to. Possible values are `GitHub.Network/networkSettings`, `Microsoft.ApiManagement/service`, `Microsoft.Apollo/npu`, `Microsoft.App/environments`, `Microsoft.App/testClients`, `Microsoft.AVS/PrivateClouds`, `Microsoft.AzureCosmosDB/clusters`, `Microsoft.BareMetal/AzureHostedService`, `Microsoft.BareMetal/AzureHPC`, `Microsoft.BareMetal/AzurePaymentHSM`, `Microsoft.BareMetal/AzureVMware`, `Microsoft.BareMetal/CrayServers`, `Microsoft.BareMetal/MonitoringServers`, `Microsoft.Batch/batchAccounts`, `Microsoft.CloudTest/hostedpools`, `Microsoft.CloudTest/images`, `Microsoft.CloudTest/pools`, `Microsoft.Codespaces/plans`, `Microsoft.ContainerInstance/containerGroups`, `Microsoft.ContainerService/managedClusters`, `Microsoft.ContainerService/TestClients`, `Microsoft.Databricks/workspaces`, `Microsoft.DBforMySQL/flexibleServers`, `Microsoft.DBforMySQL/servers`, `Microsoft.DBforMySQL/serversv2`, `Microsoft.DBforPostgreSQL/flexibleServers`, `Microsoft.DBforPostgreSQL/serversv2`, `Microsoft.DBforPostgreSQL/singleServers`, `Microsoft.DelegatedNetwork/controller`, `Microsoft.DevCenter/networkConnection`, `Microsoft.DocumentDB/cassandraClusters`, `Microsoft.Fidalgo/networkSettings`, `Microsoft.HardwareSecurityModules/dedicatedHSMs`, `Microsoft.Kusto/clusters`, `Microsoft.LabServices/labplans`, `Microsoft.Logic/integrationServiceEnvironments`, `Microsoft.MachineLearningServices/workspaces`, `Microsoft.Netapp/volumes`, `Microsoft.Network/dnsResolvers`, `Microsoft.Network/managedResolvers`, `Microsoft.Network/fpgaNetworkInterfaces`, `Microsoft.Network/networkWatchers.`, `Microsoft.Network/virtualNetworkGateways`, `Microsoft.Orbital/orbitalGateways`, `Microsoft.PowerPlatform/enterprisePolicies`, `Microsoft.PowerPlatform/vnetaccesslinks`, `Microsoft.ServiceFabricMesh/networks`, `Microsoft.ServiceNetworking/trafficControllers`, `Microsoft.Singularity/accounts/networks`, `Microsoft.Singularity/accounts/npu`, `Microsoft.Sql/managedInstances`, `Microsoft.Sql/managedInstancesOnebox`, `Microsoft.Sql/managedInstancesStage`, `Microsoft.Sql/managedInstancesTest`, `Microsoft.Sql/servers`, `Microsoft.StoragePool/diskPools`, `Microsoft.StreamAnalytics/streamingJobs`, `Microsoft.Synapse/workspaces`, `Microsoft.Web/hostingEnvironments`, `Microsoft.Web/serverFarms`, `NGINX.NGINXPLUS/nginxDeployments`, `PaloAltoNetworks.Cloudngfw/firewalls`, `Qumulo.Storage/fileSystems`, and `Oracle.Database/networkAttachments`. * */ private String name; @@ -36,7 +36,7 @@ public List actions() { return this.actions == null ? List.of() : this.actions; } /** - * @return The name of service to delegate to. Possible values are `GitHub.Network/networkSettings`, `Microsoft.ApiManagement/service`, `Microsoft.Apollo/npu`, `Microsoft.App/environments`, `Microsoft.App/testClients`, `Microsoft.AVS/PrivateClouds`, `Microsoft.AzureCosmosDB/clusters`, `Microsoft.BareMetal/AzureHostedService`, `Microsoft.BareMetal/AzureHPC`, `Microsoft.BareMetal/AzurePaymentHSM`, `Microsoft.BareMetal/AzureVMware`, `Microsoft.BareMetal/CrayServers`, `Microsoft.BareMetal/MonitoringServers`, `Microsoft.Batch/batchAccounts`, `Microsoft.CloudTest/hostedpools`, `Microsoft.CloudTest/images`, `Microsoft.CloudTest/pools`, `Microsoft.Codespaces/plans`, `Microsoft.ContainerInstance/containerGroups`, `Microsoft.ContainerService/managedClusters`, `Microsoft.ContainerService/TestClients`, `Microsoft.Databricks/workspaces`, `Microsoft.DBforMySQL/flexibleServers`, `Microsoft.DBforMySQL/servers`, `Microsoft.DBforMySQL/serversv2`, `Microsoft.DBforPostgreSQL/flexibleServers`, `Microsoft.DBforPostgreSQL/serversv2`, `Microsoft.DBforPostgreSQL/singleServers`, `Microsoft.DelegatedNetwork/controller`, `Microsoft.DevCenter/networkConnection`, `Microsoft.DocumentDB/cassandraClusters`, `Microsoft.Fidalgo/networkSettings`, `Microsoft.HardwareSecurityModules/dedicatedHSMs`, `Microsoft.Kusto/clusters`, `Microsoft.LabServices/labplans`, `Microsoft.Logic/integrationServiceEnvironments`, `Microsoft.MachineLearningServices/workspaces`, `Microsoft.Netapp/volumes`, `Microsoft.Network/dnsResolvers`, `Microsoft.Network/managedResolvers`, `Microsoft.Network/fpgaNetworkInterfaces`, `Microsoft.Network/networkWatchers.`, `Microsoft.Network/virtualNetworkGateways`, `Microsoft.Orbital/orbitalGateways`, `Microsoft.PowerPlatform/enterprisePolicies`, `Microsoft.PowerPlatform/vnetaccesslinks`, `Microsoft.ServiceFabricMesh/networks`, `Microsoft.ServiceNetworking/trafficControllers`, `Microsoft.Singularity/accounts/networks`, `Microsoft.Singularity/accounts/npu`, `Microsoft.Sql/managedInstances`, `Microsoft.Sql/managedInstancesOnebox`, `Microsoft.Sql/managedInstancesStage`, `Microsoft.Sql/managedInstancesTest`, `Microsoft.Sql/servers`, `Microsoft.StoragePool/diskPools`, `Microsoft.StreamAnalytics/streamingJobs`, `Microsoft.Synapse/workspaces`, `Microsoft.Web/hostingEnvironments`, `Microsoft.Web/serverFarms`, `NGINX.NGINXPLUS/nginxDeployments`, `PaloAltoNetworks.Cloudngfw/firewalls` and `Qumulo.Storage/fileSystems`. + * @return The name of service to delegate to. Possible values are `GitHub.Network/networkSettings`, `Microsoft.ApiManagement/service`, `Microsoft.Apollo/npu`, `Microsoft.App/environments`, `Microsoft.App/testClients`, `Microsoft.AVS/PrivateClouds`, `Microsoft.AzureCosmosDB/clusters`, `Microsoft.BareMetal/AzureHostedService`, `Microsoft.BareMetal/AzureHPC`, `Microsoft.BareMetal/AzurePaymentHSM`, `Microsoft.BareMetal/AzureVMware`, `Microsoft.BareMetal/CrayServers`, `Microsoft.BareMetal/MonitoringServers`, `Microsoft.Batch/batchAccounts`, `Microsoft.CloudTest/hostedpools`, `Microsoft.CloudTest/images`, `Microsoft.CloudTest/pools`, `Microsoft.Codespaces/plans`, `Microsoft.ContainerInstance/containerGroups`, `Microsoft.ContainerService/managedClusters`, `Microsoft.ContainerService/TestClients`, `Microsoft.Databricks/workspaces`, `Microsoft.DBforMySQL/flexibleServers`, `Microsoft.DBforMySQL/servers`, `Microsoft.DBforMySQL/serversv2`, `Microsoft.DBforPostgreSQL/flexibleServers`, `Microsoft.DBforPostgreSQL/serversv2`, `Microsoft.DBforPostgreSQL/singleServers`, `Microsoft.DelegatedNetwork/controller`, `Microsoft.DevCenter/networkConnection`, `Microsoft.DocumentDB/cassandraClusters`, `Microsoft.Fidalgo/networkSettings`, `Microsoft.HardwareSecurityModules/dedicatedHSMs`, `Microsoft.Kusto/clusters`, `Microsoft.LabServices/labplans`, `Microsoft.Logic/integrationServiceEnvironments`, `Microsoft.MachineLearningServices/workspaces`, `Microsoft.Netapp/volumes`, `Microsoft.Network/dnsResolvers`, `Microsoft.Network/managedResolvers`, `Microsoft.Network/fpgaNetworkInterfaces`, `Microsoft.Network/networkWatchers.`, `Microsoft.Network/virtualNetworkGateways`, `Microsoft.Orbital/orbitalGateways`, `Microsoft.PowerPlatform/enterprisePolicies`, `Microsoft.PowerPlatform/vnetaccesslinks`, `Microsoft.ServiceFabricMesh/networks`, `Microsoft.ServiceNetworking/trafficControllers`, `Microsoft.Singularity/accounts/networks`, `Microsoft.Singularity/accounts/npu`, `Microsoft.Sql/managedInstances`, `Microsoft.Sql/managedInstancesOnebox`, `Microsoft.Sql/managedInstancesStage`, `Microsoft.Sql/managedInstancesTest`, `Microsoft.Sql/servers`, `Microsoft.StoragePool/diskPools`, `Microsoft.StreamAnalytics/streamingJobs`, `Microsoft.Synapse/workspaces`, `Microsoft.Web/hostingEnvironments`, `Microsoft.Web/serverFarms`, `NGINX.NGINXPLUS/nginxDeployments`, `PaloAltoNetworks.Cloudngfw/firewalls`, `Qumulo.Storage/fileSystems`, and `Oracle.Database/networkAttachments`. * */ public String name() { diff --git a/sdk/java/src/main/java/com/pulumi/azure/redis/CacheAccessPolicyAssignment.java b/sdk/java/src/main/java/com/pulumi/azure/redis/CacheAccessPolicyAssignment.java index 160363c28c..34d223d594 100644 --- a/sdk/java/src/main/java/com/pulumi/azure/redis/CacheAccessPolicyAssignment.java +++ b/sdk/java/src/main/java/com/pulumi/azure/redis/CacheAccessPolicyAssignment.java @@ -135,14 +135,14 @@ public Output objectId() { return this.objectId; } /** - * The alias of the principal ID. Possible values are `ServicePrincipal` and `UserMSI`. Changing this forces a new Redis Cache Access Policy Assignment to be created. + * The alias of the principal ID. User-friendly name for object ID. Also represents username for token based authentication. Changing this forces a new Redis Cache Access Policy Assignment to be created. * */ @Export(name="objectIdAlias", refs={String.class}, tree="[0]") private Output objectIdAlias; /** - * @return The alias of the principal ID. Possible values are `ServicePrincipal` and `UserMSI`. Changing this forces a new Redis Cache Access Policy Assignment to be created. + * @return The alias of the principal ID. User-friendly name for object ID. Also represents username for token based authentication. Changing this forces a new Redis Cache Access Policy Assignment to be created. * */ public Output objectIdAlias() { diff --git a/sdk/java/src/main/java/com/pulumi/azure/redis/CacheAccessPolicyAssignmentArgs.java b/sdk/java/src/main/java/com/pulumi/azure/redis/CacheAccessPolicyAssignmentArgs.java index 65f5054e66..f0fcf416a6 100644 --- a/sdk/java/src/main/java/com/pulumi/azure/redis/CacheAccessPolicyAssignmentArgs.java +++ b/sdk/java/src/main/java/com/pulumi/azure/redis/CacheAccessPolicyAssignmentArgs.java @@ -62,14 +62,14 @@ public Output objectId() { } /** - * The alias of the principal ID. Possible values are `ServicePrincipal` and `UserMSI`. Changing this forces a new Redis Cache Access Policy Assignment to be created. + * The alias of the principal ID. User-friendly name for object ID. Also represents username for token based authentication. Changing this forces a new Redis Cache Access Policy Assignment to be created. * */ @Import(name="objectIdAlias", required=true) private Output objectIdAlias; /** - * @return The alias of the principal ID. Possible values are `ServicePrincipal` and `UserMSI`. Changing this forces a new Redis Cache Access Policy Assignment to be created. + * @return The alias of the principal ID. User-friendly name for object ID. Also represents username for token based authentication. Changing this forces a new Redis Cache Access Policy Assignment to be created. * */ public Output objectIdAlias() { @@ -183,7 +183,7 @@ public Builder objectId(String objectId) { } /** - * @param objectIdAlias The alias of the principal ID. Possible values are `ServicePrincipal` and `UserMSI`. Changing this forces a new Redis Cache Access Policy Assignment to be created. + * @param objectIdAlias The alias of the principal ID. User-friendly name for object ID. Also represents username for token based authentication. Changing this forces a new Redis Cache Access Policy Assignment to be created. * * @return builder * @@ -194,7 +194,7 @@ public Builder objectIdAlias(Output objectIdAlias) { } /** - * @param objectIdAlias The alias of the principal ID. Possible values are `ServicePrincipal` and `UserMSI`. Changing this forces a new Redis Cache Access Policy Assignment to be created. + * @param objectIdAlias The alias of the principal ID. User-friendly name for object ID. Also represents username for token based authentication. Changing this forces a new Redis Cache Access Policy Assignment to be created. * * @return builder * diff --git a/sdk/java/src/main/java/com/pulumi/azure/redis/inputs/CacheAccessPolicyAssignmentState.java b/sdk/java/src/main/java/com/pulumi/azure/redis/inputs/CacheAccessPolicyAssignmentState.java index 1aed73dc5f..0746d6c6da 100644 --- a/sdk/java/src/main/java/com/pulumi/azure/redis/inputs/CacheAccessPolicyAssignmentState.java +++ b/sdk/java/src/main/java/com/pulumi/azure/redis/inputs/CacheAccessPolicyAssignmentState.java @@ -61,14 +61,14 @@ public Optional> objectId() { } /** - * The alias of the principal ID. Possible values are `ServicePrincipal` and `UserMSI`. Changing this forces a new Redis Cache Access Policy Assignment to be created. + * The alias of the principal ID. User-friendly name for object ID. Also represents username for token based authentication. Changing this forces a new Redis Cache Access Policy Assignment to be created. * */ @Import(name="objectIdAlias") private @Nullable Output objectIdAlias; /** - * @return The alias of the principal ID. Possible values are `ServicePrincipal` and `UserMSI`. Changing this forces a new Redis Cache Access Policy Assignment to be created. + * @return The alias of the principal ID. User-friendly name for object ID. Also represents username for token based authentication. Changing this forces a new Redis Cache Access Policy Assignment to be created. * */ public Optional> objectIdAlias() { @@ -182,7 +182,7 @@ public Builder objectId(String objectId) { } /** - * @param objectIdAlias The alias of the principal ID. Possible values are `ServicePrincipal` and `UserMSI`. Changing this forces a new Redis Cache Access Policy Assignment to be created. + * @param objectIdAlias The alias of the principal ID. User-friendly name for object ID. Also represents username for token based authentication. Changing this forces a new Redis Cache Access Policy Assignment to be created. * * @return builder * @@ -193,7 +193,7 @@ public Builder objectIdAlias(@Nullable Output objectIdAlias) { } /** - * @param objectIdAlias The alias of the principal ID. Possible values are `ServicePrincipal` and `UserMSI`. Changing this forces a new Redis Cache Access Policy Assignment to be created. + * @param objectIdAlias The alias of the principal ID. User-friendly name for object ID. Also represents username for token based authentication. Changing this forces a new Redis Cache Access Policy Assignment to be created. * * @return builder * diff --git a/sdk/java/src/main/java/com/pulumi/azure/signalr/inputs/ServiceSkuArgs.java b/sdk/java/src/main/java/com/pulumi/azure/signalr/inputs/ServiceSkuArgs.java index 31090ba84a..04cd7138db 100644 --- a/sdk/java/src/main/java/com/pulumi/azure/signalr/inputs/ServiceSkuArgs.java +++ b/sdk/java/src/main/java/com/pulumi/azure/signalr/inputs/ServiceSkuArgs.java @@ -16,14 +16,18 @@ public final class ServiceSkuArgs extends com.pulumi.resources.ResourceArgs { public static final ServiceSkuArgs Empty = new ServiceSkuArgs(); /** - * Specifies the number of units associated with this SignalR service. Valid values are `1`, `2`, `3`, `4`, `5`, `6`, `7`, `8`, `9`, `10`, `20`, `30`, `40`, `50`, `60`, `70`, `80`, `90` and `100`. + * Specifies the number of units associated with this SignalR service. Valid values are `1`, `2`, `3`, `4`, `5`, `6`, `7`, `8`, `9`, `10`, `20`, `30`, `40`, `50`, `60`, `70`, `80`, `90`, `100`, `200`, `300`, `400`, `500`, `600`, `700`, `800`, `900` and `1000`. + * + * > **NOTE:** The valid capacity range for sku `Free_F1` is `1`, for sku `Premium_P2` is from `100` to `1000`, and from `1` to `100` for sku `Standard_S1` and `Premium_P1`. * */ @Import(name="capacity", required=true) private Output capacity; /** - * @return Specifies the number of units associated with this SignalR service. Valid values are `1`, `2`, `3`, `4`, `5`, `6`, `7`, `8`, `9`, `10`, `20`, `30`, `40`, `50`, `60`, `70`, `80`, `90` and `100`. + * @return Specifies the number of units associated with this SignalR service. Valid values are `1`, `2`, `3`, `4`, `5`, `6`, `7`, `8`, `9`, `10`, `20`, `30`, `40`, `50`, `60`, `70`, `80`, `90`, `100`, `200`, `300`, `400`, `500`, `600`, `700`, `800`, `900` and `1000`. + * + * > **NOTE:** The valid capacity range for sku `Free_F1` is `1`, for sku `Premium_P2` is from `100` to `1000`, and from `1` to `100` for sku `Standard_S1` and `Premium_P1`. * */ public Output capacity() { @@ -31,14 +35,14 @@ public Output capacity() { } /** - * Specifies which tier to use. Valid values are `Free_F1`, `Standard_S1` and `Premium_P1`. + * Specifies which tier to use. Valid values are `Free_F1`, `Standard_S1`, `Premium_P1` and `Premium_P2`. * */ @Import(name="name", required=true) private Output name; /** - * @return Specifies which tier to use. Valid values are `Free_F1`, `Standard_S1` and `Premium_P1`. + * @return Specifies which tier to use. Valid values are `Free_F1`, `Standard_S1`, `Premium_P1` and `Premium_P2`. * */ public Output name() { @@ -71,7 +75,9 @@ public Builder(ServiceSkuArgs defaults) { } /** - * @param capacity Specifies the number of units associated with this SignalR service. Valid values are `1`, `2`, `3`, `4`, `5`, `6`, `7`, `8`, `9`, `10`, `20`, `30`, `40`, `50`, `60`, `70`, `80`, `90` and `100`. + * @param capacity Specifies the number of units associated with this SignalR service. Valid values are `1`, `2`, `3`, `4`, `5`, `6`, `7`, `8`, `9`, `10`, `20`, `30`, `40`, `50`, `60`, `70`, `80`, `90`, `100`, `200`, `300`, `400`, `500`, `600`, `700`, `800`, `900` and `1000`. + * + * > **NOTE:** The valid capacity range for sku `Free_F1` is `1`, for sku `Premium_P2` is from `100` to `1000`, and from `1` to `100` for sku `Standard_S1` and `Premium_P1`. * * @return builder * @@ -82,7 +88,9 @@ public Builder capacity(Output capacity) { } /** - * @param capacity Specifies the number of units associated with this SignalR service. Valid values are `1`, `2`, `3`, `4`, `5`, `6`, `7`, `8`, `9`, `10`, `20`, `30`, `40`, `50`, `60`, `70`, `80`, `90` and `100`. + * @param capacity Specifies the number of units associated with this SignalR service. Valid values are `1`, `2`, `3`, `4`, `5`, `6`, `7`, `8`, `9`, `10`, `20`, `30`, `40`, `50`, `60`, `70`, `80`, `90`, `100`, `200`, `300`, `400`, `500`, `600`, `700`, `800`, `900` and `1000`. + * + * > **NOTE:** The valid capacity range for sku `Free_F1` is `1`, for sku `Premium_P2` is from `100` to `1000`, and from `1` to `100` for sku `Standard_S1` and `Premium_P1`. * * @return builder * @@ -92,7 +100,7 @@ public Builder capacity(Integer capacity) { } /** - * @param name Specifies which tier to use. Valid values are `Free_F1`, `Standard_S1` and `Premium_P1`. + * @param name Specifies which tier to use. Valid values are `Free_F1`, `Standard_S1`, `Premium_P1` and `Premium_P2`. * * @return builder * @@ -103,7 +111,7 @@ public Builder name(Output name) { } /** - * @param name Specifies which tier to use. Valid values are `Free_F1`, `Standard_S1` and `Premium_P1`. + * @param name Specifies which tier to use. Valid values are `Free_F1`, `Standard_S1`, `Premium_P1` and `Premium_P2`. * * @return builder * diff --git a/sdk/java/src/main/java/com/pulumi/azure/signalr/outputs/ServiceSku.java b/sdk/java/src/main/java/com/pulumi/azure/signalr/outputs/ServiceSku.java index 4207985cc8..385b934ec4 100644 --- a/sdk/java/src/main/java/com/pulumi/azure/signalr/outputs/ServiceSku.java +++ b/sdk/java/src/main/java/com/pulumi/azure/signalr/outputs/ServiceSku.java @@ -12,26 +12,30 @@ @CustomType public final class ServiceSku { /** - * @return Specifies the number of units associated with this SignalR service. Valid values are `1`, `2`, `3`, `4`, `5`, `6`, `7`, `8`, `9`, `10`, `20`, `30`, `40`, `50`, `60`, `70`, `80`, `90` and `100`. + * @return Specifies the number of units associated with this SignalR service. Valid values are `1`, `2`, `3`, `4`, `5`, `6`, `7`, `8`, `9`, `10`, `20`, `30`, `40`, `50`, `60`, `70`, `80`, `90`, `100`, `200`, `300`, `400`, `500`, `600`, `700`, `800`, `900` and `1000`. + * + * > **NOTE:** The valid capacity range for sku `Free_F1` is `1`, for sku `Premium_P2` is from `100` to `1000`, and from `1` to `100` for sku `Standard_S1` and `Premium_P1`. * */ private Integer capacity; /** - * @return Specifies which tier to use. Valid values are `Free_F1`, `Standard_S1` and `Premium_P1`. + * @return Specifies which tier to use. Valid values are `Free_F1`, `Standard_S1`, `Premium_P1` and `Premium_P2`. * */ private String name; private ServiceSku() {} /** - * @return Specifies the number of units associated with this SignalR service. Valid values are `1`, `2`, `3`, `4`, `5`, `6`, `7`, `8`, `9`, `10`, `20`, `30`, `40`, `50`, `60`, `70`, `80`, `90` and `100`. + * @return Specifies the number of units associated with this SignalR service. Valid values are `1`, `2`, `3`, `4`, `5`, `6`, `7`, `8`, `9`, `10`, `20`, `30`, `40`, `50`, `60`, `70`, `80`, `90`, `100`, `200`, `300`, `400`, `500`, `600`, `700`, `800`, `900` and `1000`. + * + * > **NOTE:** The valid capacity range for sku `Free_F1` is `1`, for sku `Premium_P2` is from `100` to `1000`, and from `1` to `100` for sku `Standard_S1` and `Premium_P1`. * */ public Integer capacity() { return this.capacity; } /** - * @return Specifies which tier to use. Valid values are `Free_F1`, `Standard_S1` and `Premium_P1`. + * @return Specifies which tier to use. Valid values are `Free_F1`, `Standard_S1`, `Premium_P1` and `Premium_P2`. * */ public String name() { diff --git a/sdk/java/src/main/java/com/pulumi/azure/storage/Account.java b/sdk/java/src/main/java/com/pulumi/azure/storage/Account.java index 4b738789d0..f1c839ca50 100644 --- a/sdk/java/src/main/java/com/pulumi/azure/storage/Account.java +++ b/sdk/java/src/main/java/com/pulumi/azure/storage/Account.java @@ -1091,7 +1091,7 @@ public Output> queueEncryptionKeyType() { /** * A `queue_properties` block as defined below. * - * > **NOTE:** `queue_properties` cannot be set when the `account_kind` is set to `BlobStorage` + * > **NOTE:** `queue_properties` can only be configured when `account_tier` is set to `Standard` and `account_kind` is set to either `Storage` or `StorageV2`. * */ @Export(name="queueProperties", refs={AccountQueueProperties.class}, tree="[0]") @@ -1100,7 +1100,7 @@ public Output> queueEncryptionKeyType() { /** * @return A `queue_properties` block as defined below. * - * > **NOTE:** `queue_properties` cannot be set when the `account_kind` is set to `BlobStorage` + * > **NOTE:** `queue_properties` can only be configured when `account_tier` is set to `Standard` and `account_kind` is set to either `Storage` or `StorageV2`. * */ public Output queueProperties() { @@ -1673,6 +1673,8 @@ public Output> sftpEnabled() { /** * A `share_properties` block as defined below. * + * > **NOTE:** `share_properties` can only be configured when either `account_tier` is `Standard` and `account_kind` is either `Storage` or `StorageV2` - or when `account_tier` is `Premium` and `account_kind` is `FileStorage`. + * */ @Export(name="shareProperties", refs={AccountShareProperties.class}, tree="[0]") private Output shareProperties; @@ -1680,6 +1682,8 @@ public Output> sftpEnabled() { /** * @return A `share_properties` block as defined below. * + * > **NOTE:** `share_properties` can only be configured when either `account_tier` is `Standard` and `account_kind` is either `Storage` or `StorageV2` - or when `account_tier` is `Premium` and `account_kind` is `FileStorage`. + * */ public Output shareProperties() { return this.shareProperties; diff --git a/sdk/java/src/main/java/com/pulumi/azure/storage/AccountArgs.java b/sdk/java/src/main/java/com/pulumi/azure/storage/AccountArgs.java index 567a6ecf82..75ac92a554 100644 --- a/sdk/java/src/main/java/com/pulumi/azure/storage/AccountArgs.java +++ b/sdk/java/src/main/java/com/pulumi/azure/storage/AccountArgs.java @@ -485,7 +485,7 @@ public Optional> queueEncryptionKeyType() { /** * A `queue_properties` block as defined below. * - * > **NOTE:** `queue_properties` cannot be set when the `account_kind` is set to `BlobStorage` + * > **NOTE:** `queue_properties` can only be configured when `account_tier` is set to `Standard` and `account_kind` is set to either `Storage` or `StorageV2`. * */ @Import(name="queueProperties") @@ -494,7 +494,7 @@ public Optional> queueEncryptionKeyType() { /** * @return A `queue_properties` block as defined below. * - * > **NOTE:** `queue_properties` cannot be set when the `account_kind` is set to `BlobStorage` + * > **NOTE:** `queue_properties` can only be configured when `account_tier` is set to `Standard` and `account_kind` is set to either `Storage` or `StorageV2`. * */ public Optional> queueProperties() { @@ -568,6 +568,8 @@ public Optional> sftpEnabled() { /** * A `share_properties` block as defined below. * + * > **NOTE:** `share_properties` can only be configured when either `account_tier` is `Standard` and `account_kind` is either `Storage` or `StorageV2` - or when `account_tier` is `Premium` and `account_kind` is `FileStorage`. + * */ @Import(name="shareProperties") private @Nullable Output shareProperties; @@ -575,6 +577,8 @@ public Optional> sftpEnabled() { /** * @return A `share_properties` block as defined below. * + * > **NOTE:** `share_properties` can only be configured when either `account_tier` is `Standard` and `account_kind` is either `Storage` or `StorageV2` - or when `account_tier` is `Premium` and `account_kind` is `FileStorage`. + * */ public Optional> shareProperties() { return Optional.ofNullable(this.shareProperties); @@ -1324,7 +1328,7 @@ public Builder queueEncryptionKeyType(String queueEncryptionKeyType) { /** * @param queueProperties A `queue_properties` block as defined below. * - * > **NOTE:** `queue_properties` cannot be set when the `account_kind` is set to `BlobStorage` + * > **NOTE:** `queue_properties` can only be configured when `account_tier` is set to `Standard` and `account_kind` is set to either `Storage` or `StorageV2`. * * @return builder * @@ -1337,7 +1341,7 @@ public Builder queueProperties(@Nullable Output queu /** * @param queueProperties A `queue_properties` block as defined below. * - * > **NOTE:** `queue_properties` cannot be set when the `account_kind` is set to `BlobStorage` + * > **NOTE:** `queue_properties` can only be configured when `account_tier` is set to `Standard` and `account_kind` is set to either `Storage` or `StorageV2`. * * @return builder * @@ -1437,6 +1441,8 @@ public Builder sftpEnabled(Boolean sftpEnabled) { /** * @param shareProperties A `share_properties` block as defined below. * + * > **NOTE:** `share_properties` can only be configured when either `account_tier` is `Standard` and `account_kind` is either `Storage` or `StorageV2` - or when `account_tier` is `Premium` and `account_kind` is `FileStorage`. + * * @return builder * */ @@ -1448,6 +1454,8 @@ public Builder shareProperties(@Nullable Output shar /** * @param shareProperties A `share_properties` block as defined below. * + * > **NOTE:** `share_properties` can only be configured when either `account_tier` is `Standard` and `account_kind` is either `Storage` or `StorageV2` - or when `account_tier` is `Premium` and `account_kind` is `FileStorage`. + * * @return builder * */ diff --git a/sdk/java/src/main/java/com/pulumi/azure/storage/Blob.java b/sdk/java/src/main/java/com/pulumi/azure/storage/Blob.java index 79b70e6e97..fec982826f 100644 --- a/sdk/java/src/main/java/com/pulumi/azure/storage/Blob.java +++ b/sdk/java/src/main/java/com/pulumi/azure/storage/Blob.java @@ -150,6 +150,20 @@ public Output> contentMd5() { public Output> contentType() { return Codegen.optional(this.contentType); } + /** + * The encryption scope to use for this blob. + * + */ + @Export(name="encryptionScope", refs={String.class}, tree="[0]") + private Output encryptionScope; + + /** + * @return The encryption scope to use for this blob. + * + */ + public Output> encryptionScope() { + return Codegen.optional(this.encryptionScope); + } /** * A map of custom blob metadata. * diff --git a/sdk/java/src/main/java/com/pulumi/azure/storage/BlobArgs.java b/sdk/java/src/main/java/com/pulumi/azure/storage/BlobArgs.java index b968658719..905a75090f 100644 --- a/sdk/java/src/main/java/com/pulumi/azure/storage/BlobArgs.java +++ b/sdk/java/src/main/java/com/pulumi/azure/storage/BlobArgs.java @@ -79,6 +79,21 @@ public Optional> contentType() { return Optional.ofNullable(this.contentType); } + /** + * The encryption scope to use for this blob. + * + */ + @Import(name="encryptionScope") + private @Nullable Output encryptionScope; + + /** + * @return The encryption scope to use for this blob. + * + */ + public Optional> encryptionScope() { + return Optional.ofNullable(this.encryptionScope); + } + /** * A map of custom blob metadata. * @@ -244,6 +259,7 @@ private BlobArgs(BlobArgs $) { this.cacheControl = $.cacheControl; this.contentMd5 = $.contentMd5; this.contentType = $.contentType; + this.encryptionScope = $.encryptionScope; this.metadata = $.metadata; this.name = $.name; this.parallelism = $.parallelism; @@ -358,6 +374,27 @@ public Builder contentType(String contentType) { return contentType(Output.of(contentType)); } + /** + * @param encryptionScope The encryption scope to use for this blob. + * + * @return builder + * + */ + public Builder encryptionScope(@Nullable Output encryptionScope) { + $.encryptionScope = encryptionScope; + return this; + } + + /** + * @param encryptionScope The encryption scope to use for this blob. + * + * @return builder + * + */ + public Builder encryptionScope(String encryptionScope) { + return encryptionScope(Output.of(encryptionScope)); + } + /** * @param metadata A map of custom blob metadata. * diff --git a/sdk/java/src/main/java/com/pulumi/azure/storage/Container.java b/sdk/java/src/main/java/com/pulumi/azure/storage/Container.java index 371deef0d3..a43b034345 100644 --- a/sdk/java/src/main/java/com/pulumi/azure/storage/Container.java +++ b/sdk/java/src/main/java/com/pulumi/azure/storage/Container.java @@ -101,6 +101,34 @@ public class Container extends com.pulumi.resources.CustomResource { public Output> containerAccessType() { return Codegen.optional(this.containerAccessType); } + /** + * The default encryption scope to use for blobs uploaded to this container. Changing this forces a new resource to be created. + * + */ + @Export(name="defaultEncryptionScope", refs={String.class}, tree="[0]") + private Output defaultEncryptionScope; + + /** + * @return The default encryption scope to use for blobs uploaded to this container. Changing this forces a new resource to be created. + * + */ + public Output defaultEncryptionScope() { + return this.defaultEncryptionScope; + } + /** + * Whether to allow blobs to override the default encryption scope for this container. Can only be set when specifying `default_encryption_scope`. Defaults to `true`. Changing this forces a new resource to be created. + * + */ + @Export(name="encryptionScopeOverrideEnabled", refs={Boolean.class}, tree="[0]") + private Output encryptionScopeOverrideEnabled; + + /** + * @return Whether to allow blobs to override the default encryption scope for this container. Can only be set when specifying `default_encryption_scope`. Defaults to `true`. Changing this forces a new resource to be created. + * + */ + public Output> encryptionScopeOverrideEnabled() { + return Codegen.optional(this.encryptionScopeOverrideEnabled); + } /** * Is there an Immutability Policy configured on this Storage Container? * diff --git a/sdk/java/src/main/java/com/pulumi/azure/storage/ContainerArgs.java b/sdk/java/src/main/java/com/pulumi/azure/storage/ContainerArgs.java index f68e707689..d2aa01faf0 100644 --- a/sdk/java/src/main/java/com/pulumi/azure/storage/ContainerArgs.java +++ b/sdk/java/src/main/java/com/pulumi/azure/storage/ContainerArgs.java @@ -6,6 +6,7 @@ import com.pulumi.core.Output; import com.pulumi.core.annotations.Import; import com.pulumi.exceptions.MissingRequiredPropertyException; +import java.lang.Boolean; import java.lang.String; import java.util.Map; import java.util.Objects; @@ -36,6 +37,36 @@ public Optional> containerAccessType() { return Optional.ofNullable(this.containerAccessType); } + /** + * The default encryption scope to use for blobs uploaded to this container. Changing this forces a new resource to be created. + * + */ + @Import(name="defaultEncryptionScope") + private @Nullable Output defaultEncryptionScope; + + /** + * @return The default encryption scope to use for blobs uploaded to this container. Changing this forces a new resource to be created. + * + */ + public Optional> defaultEncryptionScope() { + return Optional.ofNullable(this.defaultEncryptionScope); + } + + /** + * Whether to allow blobs to override the default encryption scope for this container. Can only be set when specifying `default_encryption_scope`. Defaults to `true`. Changing this forces a new resource to be created. + * + */ + @Import(name="encryptionScopeOverrideEnabled") + private @Nullable Output encryptionScopeOverrideEnabled; + + /** + * @return Whether to allow blobs to override the default encryption scope for this container. Can only be set when specifying `default_encryption_scope`. Defaults to `true`. Changing this forces a new resource to be created. + * + */ + public Optional> encryptionScopeOverrideEnabled() { + return Optional.ofNullable(this.encryptionScopeOverrideEnabled); + } + /** * A mapping of MetaData for this Container. All metadata keys should be lowercase. * @@ -85,6 +116,8 @@ private ContainerArgs() {} private ContainerArgs(ContainerArgs $) { this.containerAccessType = $.containerAccessType; + this.defaultEncryptionScope = $.defaultEncryptionScope; + this.encryptionScopeOverrideEnabled = $.encryptionScopeOverrideEnabled; this.metadata = $.metadata; this.name = $.name; this.storageAccountName = $.storageAccountName; @@ -133,6 +166,48 @@ public Builder containerAccessType(String containerAccessType) { return containerAccessType(Output.of(containerAccessType)); } + /** + * @param defaultEncryptionScope The default encryption scope to use for blobs uploaded to this container. Changing this forces a new resource to be created. + * + * @return builder + * + */ + public Builder defaultEncryptionScope(@Nullable Output defaultEncryptionScope) { + $.defaultEncryptionScope = defaultEncryptionScope; + return this; + } + + /** + * @param defaultEncryptionScope The default encryption scope to use for blobs uploaded to this container. Changing this forces a new resource to be created. + * + * @return builder + * + */ + public Builder defaultEncryptionScope(String defaultEncryptionScope) { + return defaultEncryptionScope(Output.of(defaultEncryptionScope)); + } + + /** + * @param encryptionScopeOverrideEnabled Whether to allow blobs to override the default encryption scope for this container. Can only be set when specifying `default_encryption_scope`. Defaults to `true`. Changing this forces a new resource to be created. + * + * @return builder + * + */ + public Builder encryptionScopeOverrideEnabled(@Nullable Output encryptionScopeOverrideEnabled) { + $.encryptionScopeOverrideEnabled = encryptionScopeOverrideEnabled; + return this; + } + + /** + * @param encryptionScopeOverrideEnabled Whether to allow blobs to override the default encryption scope for this container. Can only be set when specifying `default_encryption_scope`. Defaults to `true`. Changing this forces a new resource to be created. + * + * @return builder + * + */ + public Builder encryptionScopeOverrideEnabled(Boolean encryptionScopeOverrideEnabled) { + return encryptionScopeOverrideEnabled(Output.of(encryptionScopeOverrideEnabled)); + } + /** * @param metadata A mapping of MetaData for this Container. All metadata keys should be lowercase. * diff --git a/sdk/java/src/main/java/com/pulumi/azure/storage/DataLakeGen2Filesystem.java b/sdk/java/src/main/java/com/pulumi/azure/storage/DataLakeGen2Filesystem.java index 2e5fe0da77..fefaac188e 100644 --- a/sdk/java/src/main/java/com/pulumi/azure/storage/DataLakeGen2Filesystem.java +++ b/sdk/java/src/main/java/com/pulumi/azure/storage/DataLakeGen2Filesystem.java @@ -101,6 +101,20 @@ public class DataLakeGen2Filesystem extends com.pulumi.resources.CustomResource public Output> aces() { return this.aces; } + /** + * The default encryption scope to use for this filesystem. Changing this forces a new resource to be created. + * + */ + @Export(name="defaultEncryptionScope", refs={String.class}, tree="[0]") + private Output defaultEncryptionScope; + + /** + * @return The default encryption scope to use for this filesystem. Changing this forces a new resource to be created. + * + */ + public Output defaultEncryptionScope() { + return this.defaultEncryptionScope; + } /** * Specifies the Object ID of the Azure Active Directory Group to make the owning group of the root path (i.e. `/`). Possible values also include `$superuser`. * diff --git a/sdk/java/src/main/java/com/pulumi/azure/storage/DataLakeGen2FilesystemArgs.java b/sdk/java/src/main/java/com/pulumi/azure/storage/DataLakeGen2FilesystemArgs.java index a621e8ffc0..978a254816 100644 --- a/sdk/java/src/main/java/com/pulumi/azure/storage/DataLakeGen2FilesystemArgs.java +++ b/sdk/java/src/main/java/com/pulumi/azure/storage/DataLakeGen2FilesystemArgs.java @@ -34,6 +34,21 @@ public Optional>> aces() { return Optional.ofNullable(this.aces); } + /** + * The default encryption scope to use for this filesystem. Changing this forces a new resource to be created. + * + */ + @Import(name="defaultEncryptionScope") + private @Nullable Output defaultEncryptionScope; + + /** + * @return The default encryption scope to use for this filesystem. Changing this forces a new resource to be created. + * + */ + public Optional> defaultEncryptionScope() { + return Optional.ofNullable(this.defaultEncryptionScope); + } + /** * Specifies the Object ID of the Azure Active Directory Group to make the owning group of the root path (i.e. `/`). Possible values also include `$superuser`. * @@ -117,6 +132,7 @@ private DataLakeGen2FilesystemArgs() {} private DataLakeGen2FilesystemArgs(DataLakeGen2FilesystemArgs $) { this.aces = $.aces; + this.defaultEncryptionScope = $.defaultEncryptionScope; this.group = $.group; this.name = $.name; this.owner = $.owner; @@ -173,6 +189,27 @@ public Builder aces(DataLakeGen2FilesystemAceArgs... aces) { return aces(List.of(aces)); } + /** + * @param defaultEncryptionScope The default encryption scope to use for this filesystem. Changing this forces a new resource to be created. + * + * @return builder + * + */ + public Builder defaultEncryptionScope(@Nullable Output defaultEncryptionScope) { + $.defaultEncryptionScope = defaultEncryptionScope; + return this; + } + + /** + * @param defaultEncryptionScope The default encryption scope to use for this filesystem. Changing this forces a new resource to be created. + * + * @return builder + * + */ + public Builder defaultEncryptionScope(String defaultEncryptionScope) { + return defaultEncryptionScope(Output.of(defaultEncryptionScope)); + } + /** * @param group Specifies the Object ID of the Azure Active Directory Group to make the owning group of the root path (i.e. `/`). Possible values also include `$superuser`. * diff --git a/sdk/java/src/main/java/com/pulumi/azure/storage/ZipBlob.java b/sdk/java/src/main/java/com/pulumi/azure/storage/ZipBlob.java index f35a87368f..ca9d6ef32e 100644 --- a/sdk/java/src/main/java/com/pulumi/azure/storage/ZipBlob.java +++ b/sdk/java/src/main/java/com/pulumi/azure/storage/ZipBlob.java @@ -55,6 +55,12 @@ public Output> contentMd5() { public Output> contentType() { return Codegen.optional(this.contentType); } + @Export(name="encryptionScope", refs={String.class}, tree="[0]") + private Output encryptionScope; + + public Output> encryptionScope() { + return Codegen.optional(this.encryptionScope); + } @Export(name="metadata", refs={Map.class,String.class}, tree="[0,1,1]") private Output> metadata; diff --git a/sdk/java/src/main/java/com/pulumi/azure/storage/ZipBlobArgs.java b/sdk/java/src/main/java/com/pulumi/azure/storage/ZipBlobArgs.java index 9651b32e29..87295b2b1d 100644 --- a/sdk/java/src/main/java/com/pulumi/azure/storage/ZipBlobArgs.java +++ b/sdk/java/src/main/java/com/pulumi/azure/storage/ZipBlobArgs.java @@ -54,6 +54,13 @@ public Optional> contentType() { return Optional.ofNullable(this.contentType); } + @Import(name="encryptionScope") + private @Nullable Output encryptionScope; + + public Optional> encryptionScope() { + return Optional.ofNullable(this.encryptionScope); + } + @Import(name="metadata") private @Nullable Output> metadata; @@ -125,6 +132,7 @@ private ZipBlobArgs(ZipBlobArgs $) { this.content = $.content; this.contentMd5 = $.contentMd5; this.contentType = $.contentType; + this.encryptionScope = $.encryptionScope; this.metadata = $.metadata; this.name = $.name; this.parallelism = $.parallelism; @@ -199,6 +207,15 @@ public Builder contentType(String contentType) { return contentType(Output.of(contentType)); } + public Builder encryptionScope(@Nullable Output encryptionScope) { + $.encryptionScope = encryptionScope; + return this; + } + + public Builder encryptionScope(String encryptionScope) { + return encryptionScope(Output.of(encryptionScope)); + } + public Builder metadata(@Nullable Output> metadata) { $.metadata = metadata; return this; diff --git a/sdk/java/src/main/java/com/pulumi/azure/storage/inputs/AccountState.java b/sdk/java/src/main/java/com/pulumi/azure/storage/inputs/AccountState.java index a32303268c..96129247ec 100644 --- a/sdk/java/src/main/java/com/pulumi/azure/storage/inputs/AccountState.java +++ b/sdk/java/src/main/java/com/pulumi/azure/storage/inputs/AccountState.java @@ -1024,7 +1024,7 @@ public Optional> queueEncryptionKeyType() { /** * A `queue_properties` block as defined below. * - * > **NOTE:** `queue_properties` cannot be set when the `account_kind` is set to `BlobStorage` + * > **NOTE:** `queue_properties` can only be configured when `account_tier` is set to `Standard` and `account_kind` is set to either `Storage` or `StorageV2`. * */ @Import(name="queueProperties") @@ -1033,7 +1033,7 @@ public Optional> queueEncryptionKeyType() { /** * @return A `queue_properties` block as defined below. * - * > **NOTE:** `queue_properties` cannot be set when the `account_kind` is set to `BlobStorage` + * > **NOTE:** `queue_properties` can only be configured when `account_tier` is set to `Standard` and `account_kind` is set to either `Storage` or `StorageV2`. * */ public Optional> queueProperties() { @@ -1647,6 +1647,8 @@ public Optional> sftpEnabled() { /** * A `share_properties` block as defined below. * + * > **NOTE:** `share_properties` can only be configured when either `account_tier` is `Standard` and `account_kind` is either `Storage` or `StorageV2` - or when `account_tier` is `Premium` and `account_kind` is `FileStorage`. + * */ @Import(name="shareProperties") private @Nullable Output shareProperties; @@ -1654,6 +1656,8 @@ public Optional> sftpEnabled() { /** * @return A `share_properties` block as defined below. * + * > **NOTE:** `share_properties` can only be configured when either `account_tier` is `Standard` and `account_kind` is either `Storage` or `StorageV2` - or when `account_tier` is `Premium` and `account_kind` is `FileStorage`. + * */ public Optional> shareProperties() { return Optional.ofNullable(this.shareProperties); @@ -3231,7 +3235,7 @@ public Builder queueEncryptionKeyType(String queueEncryptionKeyType) { /** * @param queueProperties A `queue_properties` block as defined below. * - * > **NOTE:** `queue_properties` cannot be set when the `account_kind` is set to `BlobStorage` + * > **NOTE:** `queue_properties` can only be configured when `account_tier` is set to `Standard` and `account_kind` is set to either `Storage` or `StorageV2`. * * @return builder * @@ -3244,7 +3248,7 @@ public Builder queueProperties(@Nullable Output queu /** * @param queueProperties A `queue_properties` block as defined below. * - * > **NOTE:** `queue_properties` cannot be set when the `account_kind` is set to `BlobStorage` + * > **NOTE:** `queue_properties` can only be configured when `account_tier` is set to `Standard` and `account_kind` is set to either `Storage` or `StorageV2`. * * @return builder * @@ -4100,6 +4104,8 @@ public Builder sftpEnabled(Boolean sftpEnabled) { /** * @param shareProperties A `share_properties` block as defined below. * + * > **NOTE:** `share_properties` can only be configured when either `account_tier` is `Standard` and `account_kind` is either `Storage` or `StorageV2` - or when `account_tier` is `Premium` and `account_kind` is `FileStorage`. + * * @return builder * */ @@ -4111,6 +4117,8 @@ public Builder shareProperties(@Nullable Output shar /** * @param shareProperties A `share_properties` block as defined below. * + * > **NOTE:** `share_properties` can only be configured when either `account_tier` is `Standard` and `account_kind` is either `Storage` or `StorageV2` - or when `account_tier` is `Premium` and `account_kind` is `FileStorage`. + * * @return builder * */ diff --git a/sdk/java/src/main/java/com/pulumi/azure/storage/inputs/BlobState.java b/sdk/java/src/main/java/com/pulumi/azure/storage/inputs/BlobState.java index 26992abd78..e555fb21f0 100644 --- a/sdk/java/src/main/java/com/pulumi/azure/storage/inputs/BlobState.java +++ b/sdk/java/src/main/java/com/pulumi/azure/storage/inputs/BlobState.java @@ -78,6 +78,21 @@ public Optional> contentType() { return Optional.ofNullable(this.contentType); } + /** + * The encryption scope to use for this blob. + * + */ + @Import(name="encryptionScope") + private @Nullable Output encryptionScope; + + /** + * @return The encryption scope to use for this blob. + * + */ + public Optional> encryptionScope() { + return Optional.ofNullable(this.encryptionScope); + } + /** * A map of custom blob metadata. * @@ -258,6 +273,7 @@ private BlobState(BlobState $) { this.cacheControl = $.cacheControl; this.contentMd5 = $.contentMd5; this.contentType = $.contentType; + this.encryptionScope = $.encryptionScope; this.metadata = $.metadata; this.name = $.name; this.parallelism = $.parallelism; @@ -373,6 +389,27 @@ public Builder contentType(String contentType) { return contentType(Output.of(contentType)); } + /** + * @param encryptionScope The encryption scope to use for this blob. + * + * @return builder + * + */ + public Builder encryptionScope(@Nullable Output encryptionScope) { + $.encryptionScope = encryptionScope; + return this; + } + + /** + * @param encryptionScope The encryption scope to use for this blob. + * + * @return builder + * + */ + public Builder encryptionScope(String encryptionScope) { + return encryptionScope(Output.of(encryptionScope)); + } + /** * @param metadata A map of custom blob metadata. * diff --git a/sdk/java/src/main/java/com/pulumi/azure/storage/inputs/ContainerState.java b/sdk/java/src/main/java/com/pulumi/azure/storage/inputs/ContainerState.java index c75baaa5ea..c116765a28 100644 --- a/sdk/java/src/main/java/com/pulumi/azure/storage/inputs/ContainerState.java +++ b/sdk/java/src/main/java/com/pulumi/azure/storage/inputs/ContainerState.java @@ -36,6 +36,36 @@ public Optional> containerAccessType() { return Optional.ofNullable(this.containerAccessType); } + /** + * The default encryption scope to use for blobs uploaded to this container. Changing this forces a new resource to be created. + * + */ + @Import(name="defaultEncryptionScope") + private @Nullable Output defaultEncryptionScope; + + /** + * @return The default encryption scope to use for blobs uploaded to this container. Changing this forces a new resource to be created. + * + */ + public Optional> defaultEncryptionScope() { + return Optional.ofNullable(this.defaultEncryptionScope); + } + + /** + * Whether to allow blobs to override the default encryption scope for this container. Can only be set when specifying `default_encryption_scope`. Defaults to `true`. Changing this forces a new resource to be created. + * + */ + @Import(name="encryptionScopeOverrideEnabled") + private @Nullable Output encryptionScopeOverrideEnabled; + + /** + * @return Whether to allow blobs to override the default encryption scope for this container. Can only be set when specifying `default_encryption_scope`. Defaults to `true`. Changing this forces a new resource to be created. + * + */ + public Optional> encryptionScopeOverrideEnabled() { + return Optional.ofNullable(this.encryptionScopeOverrideEnabled); + } + /** * Is there an Immutability Policy configured on this Storage Container? * @@ -130,6 +160,8 @@ private ContainerState() {} private ContainerState(ContainerState $) { this.containerAccessType = $.containerAccessType; + this.defaultEncryptionScope = $.defaultEncryptionScope; + this.encryptionScopeOverrideEnabled = $.encryptionScopeOverrideEnabled; this.hasImmutabilityPolicy = $.hasImmutabilityPolicy; this.hasLegalHold = $.hasLegalHold; this.metadata = $.metadata; @@ -181,6 +213,48 @@ public Builder containerAccessType(String containerAccessType) { return containerAccessType(Output.of(containerAccessType)); } + /** + * @param defaultEncryptionScope The default encryption scope to use for blobs uploaded to this container. Changing this forces a new resource to be created. + * + * @return builder + * + */ + public Builder defaultEncryptionScope(@Nullable Output defaultEncryptionScope) { + $.defaultEncryptionScope = defaultEncryptionScope; + return this; + } + + /** + * @param defaultEncryptionScope The default encryption scope to use for blobs uploaded to this container. Changing this forces a new resource to be created. + * + * @return builder + * + */ + public Builder defaultEncryptionScope(String defaultEncryptionScope) { + return defaultEncryptionScope(Output.of(defaultEncryptionScope)); + } + + /** + * @param encryptionScopeOverrideEnabled Whether to allow blobs to override the default encryption scope for this container. Can only be set when specifying `default_encryption_scope`. Defaults to `true`. Changing this forces a new resource to be created. + * + * @return builder + * + */ + public Builder encryptionScopeOverrideEnabled(@Nullable Output encryptionScopeOverrideEnabled) { + $.encryptionScopeOverrideEnabled = encryptionScopeOverrideEnabled; + return this; + } + + /** + * @param encryptionScopeOverrideEnabled Whether to allow blobs to override the default encryption scope for this container. Can only be set when specifying `default_encryption_scope`. Defaults to `true`. Changing this forces a new resource to be created. + * + * @return builder + * + */ + public Builder encryptionScopeOverrideEnabled(Boolean encryptionScopeOverrideEnabled) { + return encryptionScopeOverrideEnabled(Output.of(encryptionScopeOverrideEnabled)); + } + /** * @param hasImmutabilityPolicy Is there an Immutability Policy configured on this Storage Container? * diff --git a/sdk/java/src/main/java/com/pulumi/azure/storage/inputs/DataLakeGen2FilesystemState.java b/sdk/java/src/main/java/com/pulumi/azure/storage/inputs/DataLakeGen2FilesystemState.java index eade23e381..34ce04c991 100644 --- a/sdk/java/src/main/java/com/pulumi/azure/storage/inputs/DataLakeGen2FilesystemState.java +++ b/sdk/java/src/main/java/com/pulumi/azure/storage/inputs/DataLakeGen2FilesystemState.java @@ -33,6 +33,21 @@ public Optional>> aces() { return Optional.ofNullable(this.aces); } + /** + * The default encryption scope to use for this filesystem. Changing this forces a new resource to be created. + * + */ + @Import(name="defaultEncryptionScope") + private @Nullable Output defaultEncryptionScope; + + /** + * @return The default encryption scope to use for this filesystem. Changing this forces a new resource to be created. + * + */ + public Optional> defaultEncryptionScope() { + return Optional.ofNullable(this.defaultEncryptionScope); + } + /** * Specifies the Object ID of the Azure Active Directory Group to make the owning group of the root path (i.e. `/`). Possible values also include `$superuser`. * @@ -116,6 +131,7 @@ private DataLakeGen2FilesystemState() {} private DataLakeGen2FilesystemState(DataLakeGen2FilesystemState $) { this.aces = $.aces; + this.defaultEncryptionScope = $.defaultEncryptionScope; this.group = $.group; this.name = $.name; this.owner = $.owner; @@ -172,6 +188,27 @@ public Builder aces(DataLakeGen2FilesystemAceArgs... aces) { return aces(List.of(aces)); } + /** + * @param defaultEncryptionScope The default encryption scope to use for this filesystem. Changing this forces a new resource to be created. + * + * @return builder + * + */ + public Builder defaultEncryptionScope(@Nullable Output defaultEncryptionScope) { + $.defaultEncryptionScope = defaultEncryptionScope; + return this; + } + + /** + * @param defaultEncryptionScope The default encryption scope to use for this filesystem. Changing this forces a new resource to be created. + * + * @return builder + * + */ + public Builder defaultEncryptionScope(String defaultEncryptionScope) { + return defaultEncryptionScope(Output.of(defaultEncryptionScope)); + } + /** * @param group Specifies the Object ID of the Azure Active Directory Group to make the owning group of the root path (i.e. `/`). Possible values also include `$superuser`. * diff --git a/sdk/java/src/main/java/com/pulumi/azure/storage/inputs/ZipBlobState.java b/sdk/java/src/main/java/com/pulumi/azure/storage/inputs/ZipBlobState.java index 228d304283..e9ec0dbe03 100644 --- a/sdk/java/src/main/java/com/pulumi/azure/storage/inputs/ZipBlobState.java +++ b/sdk/java/src/main/java/com/pulumi/azure/storage/inputs/ZipBlobState.java @@ -53,6 +53,13 @@ public Optional> contentType() { return Optional.ofNullable(this.contentType); } + @Import(name="encryptionScope") + private @Nullable Output encryptionScope; + + public Optional> encryptionScope() { + return Optional.ofNullable(this.encryptionScope); + } + @Import(name="metadata") private @Nullable Output> metadata; @@ -131,6 +138,7 @@ private ZipBlobState(ZipBlobState $) { this.content = $.content; this.contentMd5 = $.contentMd5; this.contentType = $.contentType; + this.encryptionScope = $.encryptionScope; this.metadata = $.metadata; this.name = $.name; this.parallelism = $.parallelism; @@ -206,6 +214,15 @@ public Builder contentType(String contentType) { return contentType(Output.of(contentType)); } + public Builder encryptionScope(@Nullable Output encryptionScope) { + $.encryptionScope = encryptionScope; + return this; + } + + public Builder encryptionScope(String encryptionScope) { + return encryptionScope(Output.of(encryptionScope)); + } + public Builder metadata(@Nullable Output> metadata) { $.metadata = metadata; return this; diff --git a/sdk/java/src/main/java/com/pulumi/azure/storage/outputs/GetBlobResult.java b/sdk/java/src/main/java/com/pulumi/azure/storage/outputs/GetBlobResult.java index 470372de12..256b72dff9 100644 --- a/sdk/java/src/main/java/com/pulumi/azure/storage/outputs/GetBlobResult.java +++ b/sdk/java/src/main/java/com/pulumi/azure/storage/outputs/GetBlobResult.java @@ -26,6 +26,11 @@ public final class GetBlobResult { * */ private String contentType; + /** + * @return The encryption scope for this blob. + * + */ + private String encryptionScope; /** * @return The provider-assigned unique ID for this managed resource. * @@ -72,6 +77,13 @@ public String contentMd5() { public String contentType() { return this.contentType; } + /** + * @return The encryption scope for this blob. + * + */ + public String encryptionScope() { + return this.encryptionScope; + } /** * @return The provider-assigned unique ID for this managed resource. * @@ -122,6 +134,7 @@ public static final class Builder { private String accessTier; private String contentMd5; private String contentType; + private String encryptionScope; private String id; private Map metadata; private String name; @@ -135,6 +148,7 @@ public Builder(GetBlobResult defaults) { this.accessTier = defaults.accessTier; this.contentMd5 = defaults.contentMd5; this.contentType = defaults.contentType; + this.encryptionScope = defaults.encryptionScope; this.id = defaults.id; this.metadata = defaults.metadata; this.name = defaults.name; @@ -169,6 +183,14 @@ public Builder contentType(String contentType) { return this; } @CustomType.Setter + public Builder encryptionScope(String encryptionScope) { + if (encryptionScope == null) { + throw new MissingRequiredPropertyException("GetBlobResult", "encryptionScope"); + } + this.encryptionScope = encryptionScope; + return this; + } + @CustomType.Setter public Builder id(String id) { if (id == null) { throw new MissingRequiredPropertyException("GetBlobResult", "id"); @@ -229,6 +251,7 @@ public GetBlobResult build() { _resultValue.accessTier = accessTier; _resultValue.contentMd5 = contentMd5; _resultValue.contentType = contentType; + _resultValue.encryptionScope = encryptionScope; _resultValue.id = id; _resultValue.metadata = metadata; _resultValue.name = name; diff --git a/sdk/java/src/main/java/com/pulumi/azure/storage/outputs/GetStorageContainerResult.java b/sdk/java/src/main/java/com/pulumi/azure/storage/outputs/GetStorageContainerResult.java index 2481ad856f..f96bf25027 100644 --- a/sdk/java/src/main/java/com/pulumi/azure/storage/outputs/GetStorageContainerResult.java +++ b/sdk/java/src/main/java/com/pulumi/azure/storage/outputs/GetStorageContainerResult.java @@ -17,6 +17,16 @@ public final class GetStorageContainerResult { * */ private String containerAccessType; + /** + * @return The default encryption scope in use for blobs uploaded to this container. + * + */ + private String defaultEncryptionScope; + /** + * @return Whether blobs are allowed to override the default encryption scope for this container. + * + */ + private Boolean encryptionScopeOverrideEnabled; /** * @return Is there an Immutability Policy configured on this Storage Container? * @@ -53,6 +63,20 @@ private GetStorageContainerResult() {} public String containerAccessType() { return this.containerAccessType; } + /** + * @return The default encryption scope in use for blobs uploaded to this container. + * + */ + public String defaultEncryptionScope() { + return this.defaultEncryptionScope; + } + /** + * @return Whether blobs are allowed to override the default encryption scope for this container. + * + */ + public Boolean encryptionScopeOverrideEnabled() { + return this.encryptionScopeOverrideEnabled; + } /** * @return Is there an Immutability Policy configured on this Storage Container? * @@ -105,6 +129,8 @@ public static Builder builder(GetStorageContainerResult defaults) { @CustomType.Builder public static final class Builder { private String containerAccessType; + private String defaultEncryptionScope; + private Boolean encryptionScopeOverrideEnabled; private Boolean hasImmutabilityPolicy; private Boolean hasLegalHold; private String id; @@ -116,6 +142,8 @@ public Builder() {} public Builder(GetStorageContainerResult defaults) { Objects.requireNonNull(defaults); this.containerAccessType = defaults.containerAccessType; + this.defaultEncryptionScope = defaults.defaultEncryptionScope; + this.encryptionScopeOverrideEnabled = defaults.encryptionScopeOverrideEnabled; this.hasImmutabilityPolicy = defaults.hasImmutabilityPolicy; this.hasLegalHold = defaults.hasLegalHold; this.id = defaults.id; @@ -134,6 +162,22 @@ public Builder containerAccessType(String containerAccessType) { return this; } @CustomType.Setter + public Builder defaultEncryptionScope(String defaultEncryptionScope) { + if (defaultEncryptionScope == null) { + throw new MissingRequiredPropertyException("GetStorageContainerResult", "defaultEncryptionScope"); + } + this.defaultEncryptionScope = defaultEncryptionScope; + return this; + } + @CustomType.Setter + public Builder encryptionScopeOverrideEnabled(Boolean encryptionScopeOverrideEnabled) { + if (encryptionScopeOverrideEnabled == null) { + throw new MissingRequiredPropertyException("GetStorageContainerResult", "encryptionScopeOverrideEnabled"); + } + this.encryptionScopeOverrideEnabled = encryptionScopeOverrideEnabled; + return this; + } + @CustomType.Setter public Builder hasImmutabilityPolicy(Boolean hasImmutabilityPolicy) { if (hasImmutabilityPolicy == null) { throw new MissingRequiredPropertyException("GetStorageContainerResult", "hasImmutabilityPolicy"); @@ -192,6 +236,8 @@ public Builder storageAccountName(String storageAccountName) { public GetStorageContainerResult build() { final var _resultValue = new GetStorageContainerResult(); _resultValue.containerAccessType = containerAccessType; + _resultValue.defaultEncryptionScope = defaultEncryptionScope; + _resultValue.encryptionScopeOverrideEnabled = encryptionScopeOverrideEnabled; _resultValue.hasImmutabilityPolicy = hasImmutabilityPolicy; _resultValue.hasLegalHold = hasLegalHold; _resultValue.id = id; diff --git a/sdk/java/src/main/java/com/pulumi/azure/webpubsub/Service.java b/sdk/java/src/main/java/com/pulumi/azure/webpubsub/Service.java index b280451245..0c5973a1f5 100644 --- a/sdk/java/src/main/java/com/pulumi/azure/webpubsub/Service.java +++ b/sdk/java/src/main/java/com/pulumi/azure/webpubsub/Service.java @@ -104,14 +104,18 @@ public Output> aadAuthEnabled() { return Codegen.optional(this.aadAuthEnabled); } /** - * Specifies the number of units associated with this Web PubSub resource. Valid values are: Free: `1`, Standard: `1`, `2`, `5`, `10`, `20`, `50`, `100`. + * Specifies the number of units associated with this Web PubSub resource. Valid values are `1`, `2`, `3`, `4`, `5`, `6`, `7`, `8`, `9`, `10`, `20`, `30`, `40`, `50`, `60`, `70`, `80`, `90`, `100`, `200`, `300`, `400`, `500`, `600`, `700`, `800`, `900` and `1000`. + * + * > **NOTE:** The valid capacity range for sku `Free_F1` is `1`, for sku `Premium_P2` is from `100` to `1000`, and from `1` to `100` for sku `Standard_S1` and `Premium_P1`. * */ @Export(name="capacity", refs={Integer.class}, tree="[0]") private Output capacity; /** - * @return Specifies the number of units associated with this Web PubSub resource. Valid values are: Free: `1`, Standard: `1`, `2`, `5`, `10`, `20`, `50`, `100`. + * @return Specifies the number of units associated with this Web PubSub resource. Valid values are `1`, `2`, `3`, `4`, `5`, `6`, `7`, `8`, `9`, `10`, `20`, `30`, `40`, `50`, `60`, `70`, `80`, `90`, `100`, `200`, `300`, `400`, `500`, `600`, `700`, `800`, `900` and `1000`. + * + * > **NOTE:** The valid capacity range for sku `Free_F1` is `1`, for sku `Premium_P2` is from `100` to `1000`, and from `1` to `100` for sku `Standard_S1` and `Premium_P1`. * */ public Output> capacity() { @@ -328,14 +332,14 @@ public Output serverPort() { return this.serverPort; } /** - * Specifies which SKU to use. Possible values are `Free_F1`, `Standard_S1`, and `Premium_P1`. + * Specifies which SKU to use. Possible values are `Free_F1`, `Standard_S1`, `Premium_P1` and `Premium_P2`. * */ @Export(name="sku", refs={String.class}, tree="[0]") private Output sku; /** - * @return Specifies which SKU to use. Possible values are `Free_F1`, `Standard_S1`, and `Premium_P1`. + * @return Specifies which SKU to use. Possible values are `Free_F1`, `Standard_S1`, `Premium_P1` and `Premium_P2`. * */ public Output sku() { diff --git a/sdk/java/src/main/java/com/pulumi/azure/webpubsub/ServiceArgs.java b/sdk/java/src/main/java/com/pulumi/azure/webpubsub/ServiceArgs.java index 974d54ee14..7da6bd89d3 100644 --- a/sdk/java/src/main/java/com/pulumi/azure/webpubsub/ServiceArgs.java +++ b/sdk/java/src/main/java/com/pulumi/azure/webpubsub/ServiceArgs.java @@ -37,14 +37,18 @@ public Optional> aadAuthEnabled() { } /** - * Specifies the number of units associated with this Web PubSub resource. Valid values are: Free: `1`, Standard: `1`, `2`, `5`, `10`, `20`, `50`, `100`. + * Specifies the number of units associated with this Web PubSub resource. Valid values are `1`, `2`, `3`, `4`, `5`, `6`, `7`, `8`, `9`, `10`, `20`, `30`, `40`, `50`, `60`, `70`, `80`, `90`, `100`, `200`, `300`, `400`, `500`, `600`, `700`, `800`, `900` and `1000`. + * + * > **NOTE:** The valid capacity range for sku `Free_F1` is `1`, for sku `Premium_P2` is from `100` to `1000`, and from `1` to `100` for sku `Standard_S1` and `Premium_P1`. * */ @Import(name="capacity") private @Nullable Output capacity; /** - * @return Specifies the number of units associated with this Web PubSub resource. Valid values are: Free: `1`, Standard: `1`, `2`, `5`, `10`, `20`, `50`, `100`. + * @return Specifies the number of units associated with this Web PubSub resource. Valid values are `1`, `2`, `3`, `4`, `5`, `6`, `7`, `8`, `9`, `10`, `20`, `30`, `40`, `50`, `60`, `70`, `80`, `90`, `100`, `200`, `300`, `400`, `500`, `600`, `700`, `800`, `900` and `1000`. + * + * > **NOTE:** The valid capacity range for sku `Free_F1` is `1`, for sku `Premium_P2` is from `100` to `1000`, and from `1` to `100` for sku `Standard_S1` and `Premium_P1`. * */ public Optional> capacity() { @@ -157,14 +161,14 @@ public Output resourceGroupName() { } /** - * Specifies which SKU to use. Possible values are `Free_F1`, `Standard_S1`, and `Premium_P1`. + * Specifies which SKU to use. Possible values are `Free_F1`, `Standard_S1`, `Premium_P1` and `Premium_P2`. * */ @Import(name="sku", required=true) private Output sku; /** - * @return Specifies which SKU to use. Possible values are `Free_F1`, `Standard_S1`, and `Premium_P1`. + * @return Specifies which SKU to use. Possible values are `Free_F1`, `Standard_S1`, `Premium_P1` and `Premium_P2`. * */ public Output sku() { @@ -258,7 +262,9 @@ public Builder aadAuthEnabled(Boolean aadAuthEnabled) { } /** - * @param capacity Specifies the number of units associated with this Web PubSub resource. Valid values are: Free: `1`, Standard: `1`, `2`, `5`, `10`, `20`, `50`, `100`. + * @param capacity Specifies the number of units associated with this Web PubSub resource. Valid values are `1`, `2`, `3`, `4`, `5`, `6`, `7`, `8`, `9`, `10`, `20`, `30`, `40`, `50`, `60`, `70`, `80`, `90`, `100`, `200`, `300`, `400`, `500`, `600`, `700`, `800`, `900` and `1000`. + * + * > **NOTE:** The valid capacity range for sku `Free_F1` is `1`, for sku `Premium_P2` is from `100` to `1000`, and from `1` to `100` for sku `Standard_S1` and `Premium_P1`. * * @return builder * @@ -269,7 +275,9 @@ public Builder capacity(@Nullable Output capacity) { } /** - * @param capacity Specifies the number of units associated with this Web PubSub resource. Valid values are: Free: `1`, Standard: `1`, `2`, `5`, `10`, `20`, `50`, `100`. + * @param capacity Specifies the number of units associated with this Web PubSub resource. Valid values are `1`, `2`, `3`, `4`, `5`, `6`, `7`, `8`, `9`, `10`, `20`, `30`, `40`, `50`, `60`, `70`, `80`, `90`, `100`, `200`, `300`, `400`, `500`, `600`, `700`, `800`, `900` and `1000`. + * + * > **NOTE:** The valid capacity range for sku `Free_F1` is `1`, for sku `Premium_P2` is from `100` to `1000`, and from `1` to `100` for sku `Standard_S1` and `Premium_P1`. * * @return builder * @@ -426,7 +434,7 @@ public Builder resourceGroupName(String resourceGroupName) { } /** - * @param sku Specifies which SKU to use. Possible values are `Free_F1`, `Standard_S1`, and `Premium_P1`. + * @param sku Specifies which SKU to use. Possible values are `Free_F1`, `Standard_S1`, `Premium_P1` and `Premium_P2`. * * @return builder * @@ -437,7 +445,7 @@ public Builder sku(Output sku) { } /** - * @param sku Specifies which SKU to use. Possible values are `Free_F1`, `Standard_S1`, and `Premium_P1`. + * @param sku Specifies which SKU to use. Possible values are `Free_F1`, `Standard_S1`, `Premium_P1` and `Premium_P2`. * * @return builder * diff --git a/sdk/java/src/main/java/com/pulumi/azure/webpubsub/inputs/ServiceState.java b/sdk/java/src/main/java/com/pulumi/azure/webpubsub/inputs/ServiceState.java index d03412121d..ec0ad0b981 100644 --- a/sdk/java/src/main/java/com/pulumi/azure/webpubsub/inputs/ServiceState.java +++ b/sdk/java/src/main/java/com/pulumi/azure/webpubsub/inputs/ServiceState.java @@ -36,14 +36,18 @@ public Optional> aadAuthEnabled() { } /** - * Specifies the number of units associated with this Web PubSub resource. Valid values are: Free: `1`, Standard: `1`, `2`, `5`, `10`, `20`, `50`, `100`. + * Specifies the number of units associated with this Web PubSub resource. Valid values are `1`, `2`, `3`, `4`, `5`, `6`, `7`, `8`, `9`, `10`, `20`, `30`, `40`, `50`, `60`, `70`, `80`, `90`, `100`, `200`, `300`, `400`, `500`, `600`, `700`, `800`, `900` and `1000`. + * + * > **NOTE:** The valid capacity range for sku `Free_F1` is `1`, for sku `Premium_P2` is from `100` to `1000`, and from `1` to `100` for sku `Standard_S1` and `Premium_P1`. * */ @Import(name="capacity") private @Nullable Output capacity; /** - * @return Specifies the number of units associated with this Web PubSub resource. Valid values are: Free: `1`, Standard: `1`, `2`, `5`, `10`, `20`, `50`, `100`. + * @return Specifies the number of units associated with this Web PubSub resource. Valid values are `1`, `2`, `3`, `4`, `5`, `6`, `7`, `8`, `9`, `10`, `20`, `30`, `40`, `50`, `60`, `70`, `80`, `90`, `100`, `200`, `300`, `400`, `500`, `600`, `700`, `800`, `900` and `1000`. + * + * > **NOTE:** The valid capacity range for sku `Free_F1` is `1`, for sku `Premium_P2` is from `100` to `1000`, and from `1` to `100` for sku `Standard_S1` and `Premium_P1`. * */ public Optional> capacity() { @@ -276,14 +280,14 @@ public Optional> serverPort() { } /** - * Specifies which SKU to use. Possible values are `Free_F1`, `Standard_S1`, and `Premium_P1`. + * Specifies which SKU to use. Possible values are `Free_F1`, `Standard_S1`, `Premium_P1` and `Premium_P2`. * */ @Import(name="sku") private @Nullable Output sku; /** - * @return Specifies which SKU to use. Possible values are `Free_F1`, `Standard_S1`, and `Premium_P1`. + * @return Specifies which SKU to use. Possible values are `Free_F1`, `Standard_S1`, `Premium_P1` and `Premium_P2`. * */ public Optional> sku() { @@ -393,7 +397,9 @@ public Builder aadAuthEnabled(Boolean aadAuthEnabled) { } /** - * @param capacity Specifies the number of units associated with this Web PubSub resource. Valid values are: Free: `1`, Standard: `1`, `2`, `5`, `10`, `20`, `50`, `100`. + * @param capacity Specifies the number of units associated with this Web PubSub resource. Valid values are `1`, `2`, `3`, `4`, `5`, `6`, `7`, `8`, `9`, `10`, `20`, `30`, `40`, `50`, `60`, `70`, `80`, `90`, `100`, `200`, `300`, `400`, `500`, `600`, `700`, `800`, `900` and `1000`. + * + * > **NOTE:** The valid capacity range for sku `Free_F1` is `1`, for sku `Premium_P2` is from `100` to `1000`, and from `1` to `100` for sku `Standard_S1` and `Premium_P1`. * * @return builder * @@ -404,7 +410,9 @@ public Builder capacity(@Nullable Output capacity) { } /** - * @param capacity Specifies the number of units associated with this Web PubSub resource. Valid values are: Free: `1`, Standard: `1`, `2`, `5`, `10`, `20`, `50`, `100`. + * @param capacity Specifies the number of units associated with this Web PubSub resource. Valid values are `1`, `2`, `3`, `4`, `5`, `6`, `7`, `8`, `9`, `10`, `20`, `30`, `40`, `50`, `60`, `70`, `80`, `90`, `100`, `200`, `300`, `400`, `500`, `600`, `700`, `800`, `900` and `1000`. + * + * > **NOTE:** The valid capacity range for sku `Free_F1` is `1`, for sku `Premium_P2` is from `100` to `1000`, and from `1` to `100` for sku `Standard_S1` and `Premium_P1`. * * @return builder * @@ -729,7 +737,7 @@ public Builder serverPort(Integer serverPort) { } /** - * @param sku Specifies which SKU to use. Possible values are `Free_F1`, `Standard_S1`, and `Premium_P1`. + * @param sku Specifies which SKU to use. Possible values are `Free_F1`, `Standard_S1`, `Premium_P1` and `Premium_P2`. * * @return builder * @@ -740,7 +748,7 @@ public Builder sku(@Nullable Output sku) { } /** - * @param sku Specifies which SKU to use. Possible values are `Free_F1`, `Standard_S1`, and `Premium_P1`. + * @param sku Specifies which SKU to use. Possible values are `Free_F1`, `Standard_S1`, `Premium_P1` and `Premium_P2`. * * @return builder * diff --git a/sdk/nodejs/bot/serviceAzureBot.ts b/sdk/nodejs/bot/serviceAzureBot.ts index c8432e4cbb..28d2fc051d 100644 --- a/sdk/nodejs/bot/serviceAzureBot.ts +++ b/sdk/nodejs/bot/serviceAzureBot.ts @@ -155,7 +155,7 @@ export class ServiceAzureBot extends pulumi.CustomResource { */ public readonly name!: pulumi.Output; /** - * Whether public network access is allowed for this server. Defaults to `true`. + * Whether public network access is enabled. Defaults to `true`. */ public readonly publicNetworkAccessEnabled!: pulumi.Output; /** @@ -320,7 +320,7 @@ export interface ServiceAzureBotState { */ name?: pulumi.Input; /** - * Whether public network access is allowed for this server. Defaults to `true`. + * Whether public network access is enabled. Defaults to `true`. */ publicNetworkAccessEnabled?: pulumi.Input; /** @@ -412,7 +412,7 @@ export interface ServiceAzureBotArgs { */ name?: pulumi.Input; /** - * Whether public network access is allowed for this server. Defaults to `true`. + * Whether public network access is enabled. Defaults to `true`. */ publicNetworkAccessEnabled?: pulumi.Input; /** diff --git a/sdk/nodejs/chaosstudio/target.ts b/sdk/nodejs/chaosstudio/target.ts index d454510740..c4de60cc73 100644 --- a/sdk/nodejs/chaosstudio/target.ts +++ b/sdk/nodejs/chaosstudio/target.ts @@ -9,6 +9,42 @@ import * as utilities from "../utilities"; * * Manages a Chaos Studio Target. * + * ## Example Usage + * + * + * ```typescript + * import * as pulumi from "@pulumi/pulumi"; + * import * as azure from "@pulumi/azure"; + * + * const exampleResourceGroup = new azure.core.ResourceGroup("example", { + * name: "example-resources", + * location: "West Europe", + * }); + * const example = new azure.containerservice.KubernetesCluster("example", { + * name: "example", + * location: exampleResourceGroup.location, + * resourceGroupName: exampleResourceGroup.name, + * dnsPrefix: "acctestaksexample", + * defaultNodePool: { + * name: "example-value", + * nodeCount: "example-value", + * vmSize: "example-value", + * upgradeSettings: { + * maxSurge: "example-value", + * }, + * }, + * identity: { + * type: "example-value", + * }, + * }); + * const exampleTarget = new azure.chaosstudio.Target("example", { + * location: exampleResourceGroup.location, + * targetResourceId: example.id, + * targetType: "example-value", + * }); + * ``` + * + * * ## Import * * An existing Chaos Studio Target can be imported into Terraform using the `resource id`, e.g. diff --git a/sdk/nodejs/compute/snapshot.ts b/sdk/nodejs/compute/snapshot.ts index 409e9ee72b..45c3c45400 100644 --- a/sdk/nodejs/compute/snapshot.ts +++ b/sdk/nodejs/compute/snapshot.ts @@ -102,6 +102,14 @@ export class Snapshot extends pulumi.CustomResource { * Specifies the name of the Snapshot resource. Changing this forces a new resource to be created. */ public readonly name!: pulumi.Output; + /** + * Policy for accessing the disk via network. Possible values are `AllowAll`, `AllowPrivate`, or `DenyAll`. Defaults to `AllowAll`. + */ + public readonly networkAccessPolicy!: pulumi.Output; + /** + * Policy for controlling export on the disk. Possible values are `true` or `false`. Defaults to `true`. + */ + public readonly publicNetworkAccessEnabled!: pulumi.Output; /** * The name of the resource group in which to create the Snapshot. Changing this forces a new resource to be created. */ @@ -146,6 +154,8 @@ export class Snapshot extends pulumi.CustomResource { resourceInputs["incrementalEnabled"] = state ? state.incrementalEnabled : undefined; resourceInputs["location"] = state ? state.location : undefined; resourceInputs["name"] = state ? state.name : undefined; + resourceInputs["networkAccessPolicy"] = state ? state.networkAccessPolicy : undefined; + resourceInputs["publicNetworkAccessEnabled"] = state ? state.publicNetworkAccessEnabled : undefined; resourceInputs["resourceGroupName"] = state ? state.resourceGroupName : undefined; resourceInputs["sourceResourceId"] = state ? state.sourceResourceId : undefined; resourceInputs["sourceUri"] = state ? state.sourceUri : undefined; @@ -166,6 +176,8 @@ export class Snapshot extends pulumi.CustomResource { resourceInputs["incrementalEnabled"] = args ? args.incrementalEnabled : undefined; resourceInputs["location"] = args ? args.location : undefined; resourceInputs["name"] = args ? args.name : undefined; + resourceInputs["networkAccessPolicy"] = args ? args.networkAccessPolicy : undefined; + resourceInputs["publicNetworkAccessEnabled"] = args ? args.publicNetworkAccessEnabled : undefined; resourceInputs["resourceGroupName"] = args ? args.resourceGroupName : undefined; resourceInputs["sourceResourceId"] = args ? args.sourceResourceId : undefined; resourceInputs["sourceUri"] = args ? args.sourceUri : undefined; @@ -210,6 +222,14 @@ export interface SnapshotState { * Specifies the name of the Snapshot resource. Changing this forces a new resource to be created. */ name?: pulumi.Input; + /** + * Policy for accessing the disk via network. Possible values are `AllowAll`, `AllowPrivate`, or `DenyAll`. Defaults to `AllowAll`. + */ + networkAccessPolicy?: pulumi.Input; + /** + * Policy for controlling export on the disk. Possible values are `true` or `false`. Defaults to `true`. + */ + publicNetworkAccessEnabled?: pulumi.Input; /** * The name of the resource group in which to create the Snapshot. Changing this forces a new resource to be created. */ @@ -268,6 +288,14 @@ export interface SnapshotArgs { * Specifies the name of the Snapshot resource. Changing this forces a new resource to be created. */ name?: pulumi.Input; + /** + * Policy for accessing the disk via network. Possible values are `AllowAll`, `AllowPrivate`, or `DenyAll`. Defaults to `AllowAll`. + */ + networkAccessPolicy?: pulumi.Input; + /** + * Policy for controlling export on the disk. Possible values are `true` or `false`. Defaults to `true`. + */ + publicNetworkAccessEnabled?: pulumi.Input; /** * The name of the resource group in which to create the Snapshot. Changing this forces a new resource to be created. */ diff --git a/sdk/nodejs/config/vars.ts b/sdk/nodejs/config/vars.ts index c4e633c2c3..ffc12c70f2 100644 --- a/sdk/nodejs/config/vars.ts +++ b/sdk/nodejs/config/vars.ts @@ -117,7 +117,8 @@ Object.defineProperty(exports, "disableTerraformPartnerId", { }); /** - * The Cloud Environment which should be used. Possible values are public, usgovernment, and china. Defaults to public. + * The Cloud Environment which should be used. Possible values are public, usgovernment, and china. Defaults to public. Not + * used and should not be specified when `metadataHost` is specified. */ export declare const environment: string; Object.defineProperty(exports, "environment", { diff --git a/sdk/nodejs/containerservice/clusterTrustedAccessRoleBinding.ts b/sdk/nodejs/containerservice/clusterTrustedAccessRoleBinding.ts index 929371fb24..208226fdcb 100644 --- a/sdk/nodejs/containerservice/clusterTrustedAccessRoleBinding.ts +++ b/sdk/nodejs/containerservice/clusterTrustedAccessRoleBinding.ts @@ -11,6 +11,82 @@ import * as utilities from "../utilities"; * > **Note:** This Resource is in **Preview** to use this you must be opted into the Preview. You can do this by running `az feature register --namespace Microsoft.ContainerService --name TrustedAccessPreview` and then `az provider register -n Microsoft.ContainerService` * . * + * ## Example Usage + * + * + * ```typescript + * import * as pulumi from "@pulumi/pulumi"; + * import * as azure from "@pulumi/azure"; + * + * const exampleResourceGroup = new azure.core.ResourceGroup("example", { + * name: "example-resources", + * location: "West Europe", + * }); + * const example = new azure.appinsights.Insights("example", { + * name: "example", + * location: exampleResourceGroup.location, + * resourceGroupName: exampleResourceGroup.name, + * applicationType: "example-value", + * }); + * const test = azure.core.getClientConfig({}); + * const exampleKeyVault = new azure.keyvault.KeyVault("example", { + * name: "example", + * location: exampleResourceGroup.location, + * resourceGroupName: exampleResourceGroup.name, + * tenantId: exampleAzurermClientConfig.tenantId, + * skuName: "example-value", + * softDeleteRetentionDays: "example-value", + * }); + * const exampleAccessPolicy = new azure.keyvault.AccessPolicy("example", { + * keyVaultId: exampleKeyVault.id, + * tenantId: exampleAzurermClientConfig.tenantId, + * objectId: exampleAzurermClientConfig.objectId, + * keyPermissions: "example-value", + * }); + * const exampleKubernetesCluster = new azure.containerservice.KubernetesCluster("example", { + * name: "example", + * location: exampleResourceGroup.location, + * resourceGroupName: exampleResourceGroup.name, + * dnsPrefix: "acctestaksexample", + * defaultNodePool: { + * name: "example-value", + * nodeCount: "example-value", + * vmSize: "example-value", + * upgradeSettings: { + * maxSurge: "example-value", + * }, + * }, + * identity: { + * type: "example-value", + * }, + * }); + * const exampleAccount = new azure.storage.Account("example", { + * name: "example", + * location: exampleResourceGroup.location, + * resourceGroupName: exampleResourceGroup.name, + * accountTier: "example-value", + * accountReplicationType: "example-value", + * }); + * const exampleWorkspace = new azure.machinelearning.Workspace("example", { + * name: "example", + * location: exampleResourceGroup.location, + * resourceGroupName: exampleResourceGroup.name, + * keyVaultId: exampleKeyVault.id, + * storageAccountId: exampleAccount.id, + * applicationInsightsId: example.id, + * identity: { + * type: "example-value", + * }, + * }); + * const exampleClusterTrustedAccessRoleBinding = new azure.containerservice.ClusterTrustedAccessRoleBinding("example", { + * kubernetesClusterId: exampleKubernetesCluster.id, + * name: "example", + * roles: "example-value", + * sourceResourceId: exampleWorkspace.id, + * }); + * ``` + * + * * ## Import * * An existing Kubernetes Cluster Trusted Access Role Binding can be imported into Terraform using the `resource id`, e.g. diff --git a/sdk/nodejs/containerservice/fleetMember.ts b/sdk/nodejs/containerservice/fleetMember.ts index 4c2c88d954..b3572f70d1 100644 --- a/sdk/nodejs/containerservice/fleetMember.ts +++ b/sdk/nodejs/containerservice/fleetMember.ts @@ -9,6 +9,47 @@ import * as utilities from "../utilities"; * * Manages a Kubernetes Fleet Member. * + * ## Example Usage + * + * + * ```typescript + * import * as pulumi from "@pulumi/pulumi"; + * import * as azure from "@pulumi/azure"; + * + * const exampleResourceGroup = new azure.core.ResourceGroup("example", { + * name: "example-resources", + * location: "West Europe", + * }); + * const example = new azure.containerservice.KubernetesCluster("example", { + * name: "example", + * location: exampleResourceGroup.location, + * resourceGroupName: exampleResourceGroup.name, + * dnsPrefix: "acctestaksexample", + * defaultNodePool: { + * name: "example-value", + * nodeCount: "example-value", + * vmSize: "example-value", + * upgradeSettings: { + * maxSurge: "example-value", + * }, + * }, + * identity: { + * type: "example-value", + * }, + * }); + * const exampleKubernetesFleetManager = new azure.containerservice.KubernetesFleetManager("example", { + * name: "example", + * location: exampleResourceGroup.location, + * resourceGroupName: exampleResourceGroup.name, + * }); + * const exampleFleetMember = new azure.containerservice.FleetMember("example", { + * kubernetesClusterId: example.id, + * kubernetesFleetId: exampleKubernetesFleetManager.id, + * name: "example", + * }); + * ``` + * + * * ## Import * * An existing Kubernetes Fleet Member can be imported into Terraform using the `resource id`, e.g. diff --git a/sdk/nodejs/cosmosdb/account.ts b/sdk/nodejs/cosmosdb/account.ts index 45d0e46651..c798bb7a41 100644 --- a/sdk/nodejs/cosmosdb/account.ts +++ b/sdk/nodejs/cosmosdb/account.ts @@ -157,6 +157,10 @@ export class Account extends pulumi.CustomResource { * Enable Analytical Storage option for this Cosmos DB account. Defaults to `false`. Enabling and then disabling analytical storage forces a new resource to be created. */ public readonly analyticalStorageEnabled!: pulumi.Output; + /** + * Enable automatic failover for this Cosmos DB account. + */ + public readonly automaticFailoverEnabled!: pulumi.Output; /** * A `backup` block as defined below. */ @@ -170,7 +174,7 @@ export class Account extends pulumi.CustomResource { */ public readonly capacity!: pulumi.Output; /** - * A list of connection strings available for this CosmosDB account. + * @deprecated This property has been superseded by the primary and secondary connection strings for sql, mongodb and readonly and will be removed in v4.0 of the AzureRM provider */ public /*out*/ readonly connectionStrings!: pulumi.Output; /** @@ -192,21 +196,25 @@ export class Account extends pulumi.CustomResource { */ public readonly defaultIdentityType!: pulumi.Output; /** - * Enable automatic failover for this Cosmos DB account. + * @deprecated This property has been superseded by `automaticFailoverEnabled` and will be removed in v4.0 of the AzureRM Provider */ - public readonly enableAutomaticFailover!: pulumi.Output; + public readonly enableAutomaticFailover!: pulumi.Output; /** - * Enable the Free Tier pricing option for this Cosmos DB account. Defaults to `false`. Changing this forces a new resource to be created. + * @deprecated This property has been superseded by `freeTierEnabled` and will be removed in v4.0 of the AzureRM Provider */ - public readonly enableFreeTier!: pulumi.Output; + public readonly enableFreeTier!: pulumi.Output; /** - * Enable multiple write locations for this Cosmos DB account. + * @deprecated This property has been superseded by `multipleWriteLocationsEnabled` and will be removed in v4.0 of the AzureRM Provider */ - public readonly enableMultipleWriteLocations!: pulumi.Output; + public readonly enableMultipleWriteLocations!: pulumi.Output; /** * The endpoint used to connect to the CosmosDB account. */ public /*out*/ readonly endpoint!: pulumi.Output; + /** + * Enable the Free Tier pricing option for this Cosmos DB account. Defaults to `false`. Changing this forces a new resource to be created. + */ + public readonly freeTierEnabled!: pulumi.Output; /** * Specifies a `geoLocation` resource, used to define where data should be replicated with the `failoverPriority` 0 specifying the primary location. Value is a `geoLocation` block as defined below. */ @@ -255,6 +263,10 @@ export class Account extends pulumi.CustomResource { * The Server Version of a MongoDB account. Possible values are `4.2`, `4.0`, `3.6`, and `3.2`. */ public readonly mongoServerVersion!: pulumi.Output; + /** + * Enable multiple write locations for this Cosmos DB account. + */ + public readonly multipleWriteLocationsEnabled!: pulumi.Output; /** * Specifies the name of the CosmosDB Account. Changing this forces a new resource to be created. */ @@ -370,6 +382,7 @@ export class Account extends pulumi.CustomResource { resourceInputs["accessKeyMetadataWritesEnabled"] = state ? state.accessKeyMetadataWritesEnabled : undefined; resourceInputs["analyticalStorage"] = state ? state.analyticalStorage : undefined; resourceInputs["analyticalStorageEnabled"] = state ? state.analyticalStorageEnabled : undefined; + resourceInputs["automaticFailoverEnabled"] = state ? state.automaticFailoverEnabled : undefined; resourceInputs["backup"] = state ? state.backup : undefined; resourceInputs["capabilities"] = state ? state.capabilities : undefined; resourceInputs["capacity"] = state ? state.capacity : undefined; @@ -382,6 +395,7 @@ export class Account extends pulumi.CustomResource { resourceInputs["enableFreeTier"] = state ? state.enableFreeTier : undefined; resourceInputs["enableMultipleWriteLocations"] = state ? state.enableMultipleWriteLocations : undefined; resourceInputs["endpoint"] = state ? state.endpoint : undefined; + resourceInputs["freeTierEnabled"] = state ? state.freeTierEnabled : undefined; resourceInputs["geoLocations"] = state ? state.geoLocations : undefined; resourceInputs["identity"] = state ? state.identity : undefined; resourceInputs["ipRangeFilter"] = state ? state.ipRangeFilter : undefined; @@ -392,6 +406,7 @@ export class Account extends pulumi.CustomResource { resourceInputs["location"] = state ? state.location : undefined; resourceInputs["minimalTlsVersion"] = state ? state.minimalTlsVersion : undefined; resourceInputs["mongoServerVersion"] = state ? state.mongoServerVersion : undefined; + resourceInputs["multipleWriteLocationsEnabled"] = state ? state.multipleWriteLocationsEnabled : undefined; resourceInputs["name"] = state ? state.name : undefined; resourceInputs["networkAclBypassForAzureServices"] = state ? state.networkAclBypassForAzureServices : undefined; resourceInputs["networkAclBypassIds"] = state ? state.networkAclBypassIds : undefined; @@ -433,6 +448,7 @@ export class Account extends pulumi.CustomResource { resourceInputs["accessKeyMetadataWritesEnabled"] = args ? args.accessKeyMetadataWritesEnabled : undefined; resourceInputs["analyticalStorage"] = args ? args.analyticalStorage : undefined; resourceInputs["analyticalStorageEnabled"] = args ? args.analyticalStorageEnabled : undefined; + resourceInputs["automaticFailoverEnabled"] = args ? args.automaticFailoverEnabled : undefined; resourceInputs["backup"] = args ? args.backup : undefined; resourceInputs["capabilities"] = args ? args.capabilities : undefined; resourceInputs["capacity"] = args ? args.capacity : undefined; @@ -443,6 +459,7 @@ export class Account extends pulumi.CustomResource { resourceInputs["enableAutomaticFailover"] = args ? args.enableAutomaticFailover : undefined; resourceInputs["enableFreeTier"] = args ? args.enableFreeTier : undefined; resourceInputs["enableMultipleWriteLocations"] = args ? args.enableMultipleWriteLocations : undefined; + resourceInputs["freeTierEnabled"] = args ? args.freeTierEnabled : undefined; resourceInputs["geoLocations"] = args ? args.geoLocations : undefined; resourceInputs["identity"] = args ? args.identity : undefined; resourceInputs["ipRangeFilter"] = args ? args.ipRangeFilter : undefined; @@ -453,6 +470,7 @@ export class Account extends pulumi.CustomResource { resourceInputs["location"] = args ? args.location : undefined; resourceInputs["minimalTlsVersion"] = args ? args.minimalTlsVersion : undefined; resourceInputs["mongoServerVersion"] = args ? args.mongoServerVersion : undefined; + resourceInputs["multipleWriteLocationsEnabled"] = args ? args.multipleWriteLocationsEnabled : undefined; resourceInputs["name"] = args ? args.name : undefined; resourceInputs["networkAclBypassForAzureServices"] = args ? args.networkAclBypassForAzureServices : undefined; resourceInputs["networkAclBypassIds"] = args ? args.networkAclBypassIds : undefined; @@ -503,6 +521,10 @@ export interface AccountState { * Enable Analytical Storage option for this Cosmos DB account. Defaults to `false`. Enabling and then disabling analytical storage forces a new resource to be created. */ analyticalStorageEnabled?: pulumi.Input; + /** + * Enable automatic failover for this Cosmos DB account. + */ + automaticFailoverEnabled?: pulumi.Input; /** * A `backup` block as defined below. */ @@ -516,7 +538,7 @@ export interface AccountState { */ capacity?: pulumi.Input; /** - * A list of connection strings available for this CosmosDB account. + * @deprecated This property has been superseded by the primary and secondary connection strings for sql, mongodb and readonly and will be removed in v4.0 of the AzureRM provider */ connectionStrings?: pulumi.Input[]>; /** @@ -538,21 +560,25 @@ export interface AccountState { */ defaultIdentityType?: pulumi.Input; /** - * Enable automatic failover for this Cosmos DB account. + * @deprecated This property has been superseded by `automaticFailoverEnabled` and will be removed in v4.0 of the AzureRM Provider */ enableAutomaticFailover?: pulumi.Input; /** - * Enable the Free Tier pricing option for this Cosmos DB account. Defaults to `false`. Changing this forces a new resource to be created. + * @deprecated This property has been superseded by `freeTierEnabled` and will be removed in v4.0 of the AzureRM Provider */ enableFreeTier?: pulumi.Input; /** - * Enable multiple write locations for this Cosmos DB account. + * @deprecated This property has been superseded by `multipleWriteLocationsEnabled` and will be removed in v4.0 of the AzureRM Provider */ enableMultipleWriteLocations?: pulumi.Input; /** * The endpoint used to connect to the CosmosDB account. */ endpoint?: pulumi.Input; + /** + * Enable the Free Tier pricing option for this Cosmos DB account. Defaults to `false`. Changing this forces a new resource to be created. + */ + freeTierEnabled?: pulumi.Input; /** * Specifies a `geoLocation` resource, used to define where data should be replicated with the `failoverPriority` 0 specifying the primary location. Value is a `geoLocation` block as defined below. */ @@ -601,6 +627,10 @@ export interface AccountState { * The Server Version of a MongoDB account. Possible values are `4.2`, `4.0`, `3.6`, and `3.2`. */ mongoServerVersion?: pulumi.Input; + /** + * Enable multiple write locations for this Cosmos DB account. + */ + multipleWriteLocationsEnabled?: pulumi.Input; /** * Specifies the name of the CosmosDB Account. Changing this forces a new resource to be created. */ @@ -717,6 +747,10 @@ export interface AccountArgs { * Enable Analytical Storage option for this Cosmos DB account. Defaults to `false`. Enabling and then disabling analytical storage forces a new resource to be created. */ analyticalStorageEnabled?: pulumi.Input; + /** + * Enable automatic failover for this Cosmos DB account. + */ + automaticFailoverEnabled?: pulumi.Input; /** * A `backup` block as defined below. */ @@ -748,17 +782,21 @@ export interface AccountArgs { */ defaultIdentityType?: pulumi.Input; /** - * Enable automatic failover for this Cosmos DB account. + * @deprecated This property has been superseded by `automaticFailoverEnabled` and will be removed in v4.0 of the AzureRM Provider */ enableAutomaticFailover?: pulumi.Input; /** - * Enable the Free Tier pricing option for this Cosmos DB account. Defaults to `false`. Changing this forces a new resource to be created. + * @deprecated This property has been superseded by `freeTierEnabled` and will be removed in v4.0 of the AzureRM Provider */ enableFreeTier?: pulumi.Input; /** - * Enable multiple write locations for this Cosmos DB account. + * @deprecated This property has been superseded by `multipleWriteLocationsEnabled` and will be removed in v4.0 of the AzureRM Provider */ enableMultipleWriteLocations?: pulumi.Input; + /** + * Enable the Free Tier pricing option for this Cosmos DB account. Defaults to `false`. Changing this forces a new resource to be created. + */ + freeTierEnabled?: pulumi.Input; /** * Specifies a `geoLocation` resource, used to define where data should be replicated with the `failoverPriority` 0 specifying the primary location. Value is a `geoLocation` block as defined below. */ @@ -807,6 +845,10 @@ export interface AccountArgs { * The Server Version of a MongoDB account. Possible values are `4.2`, `4.0`, `3.6`, and `3.2`. */ mongoServerVersion?: pulumi.Input; + /** + * Enable multiple write locations for this Cosmos DB account. + */ + multipleWriteLocationsEnabled?: pulumi.Input; /** * Specifies the name of the CosmosDB Account. Changing this forces a new resource to be created. */ diff --git a/sdk/nodejs/cosmosdb/getAccount.ts b/sdk/nodejs/cosmosdb/getAccount.ts index 06eca34dea..3593de26d8 100644 --- a/sdk/nodejs/cosmosdb/getAccount.ts +++ b/sdk/nodejs/cosmosdb/getAccount.ts @@ -51,31 +51,39 @@ export interface GetAccountArgs { * A collection of values returned by getAccount. */ export interface GetAccountResult { + /** + * If automatic failover is enabled for this CosmosDB Account. + */ + readonly automaticFailoverEnabled: boolean; /** * Capabilities enabled on this Cosmos DB account. */ readonly capabilities: outputs.cosmosdb.GetAccountCapability[]; /** - * A list of connection strings available for this CosmosDB account. + * @deprecated This property has been superseded by the primary and secondary connection strings for sql, mongodb and readonly and will be removed in v4.0 of the AzureRM provider */ readonly connectionStrings: string[]; readonly consistencyPolicies: outputs.cosmosdb.GetAccountConsistencyPolicy[]; /** - * If automatic failover is enabled for this CosmosDB Account. + * @deprecated This property has been renamed to `automaticFailoverEnabled` and will be removed in v4.0 of the AzureRM provider */ readonly enableAutomaticFailover: boolean; /** - * If Free Tier pricing option is enabled for this CosmosDB Account. You can have up to one free tier Azure Cosmos DB account per Azure subscription. + * @deprecated This property has been renamed to `freeTierEnabled` and will be removed in v4.0 of the AzureRM provider */ readonly enableFreeTier: boolean; /** - * If multiple write locations are enabled for this Cosmos DB account. + * @deprecated This property has been renamed to `multipleWriteLocationsEnabled` and will be removed in v4.0 of the AzureRM provider */ readonly enableMultipleWriteLocations: boolean; /** * The endpoint used to connect to the CosmosDB account. */ readonly endpoint: string; + /** + * If Free Tier pricing option is enabled for this CosmosDB Account. You can have up to one free tier Azure Cosmos DB account per Azure subscription. + */ + readonly freeTierEnabled: boolean; readonly geoLocations: outputs.cosmosdb.GetAccountGeoLocation[]; /** * The provider-assigned unique ID for this managed resource. @@ -101,6 +109,10 @@ export interface GetAccountResult { * The name of the Azure region hosting replicated data. */ readonly location: string; + /** + * If multiple write locations are enabled for this Cosmos DB account. + */ + readonly multipleWriteLocationsEnabled: boolean; readonly name: string; /** * The Offer Type to used by this CosmosDB Account. diff --git a/sdk/nodejs/keyvault/certifiate.ts b/sdk/nodejs/keyvault/certifiate.ts index b6744543d0..c140c495e1 100644 --- a/sdk/nodejs/keyvault/certifiate.ts +++ b/sdk/nodejs/keyvault/certifiate.ts @@ -9,11 +9,6 @@ import * as utilities from "../utilities"; /** * Manages a Key Vault Certificate. * - * <<<<<<< HEAD - * > **Note:** The Azure Provider includes a Feature Toggle which will purge a Key Vault Certificate resource on destroy, rather than the default soft-delete. See `purgeSoftDeletedCertificatesOnDestroy` for more information. - * - * ======= - * > > > > > > > 8d78c87098 (Update-documentation) * ## Example Usage * * ### Importing A PFX) diff --git a/sdk/nodejs/keyvault/certificate.ts b/sdk/nodejs/keyvault/certificate.ts index 4a5bbb5f14..6ab3cbe9af 100644 --- a/sdk/nodejs/keyvault/certificate.ts +++ b/sdk/nodejs/keyvault/certificate.ts @@ -9,11 +9,6 @@ import * as utilities from "../utilities"; /** * Manages a Key Vault Certificate. * - * <<<<<<< HEAD - * > **Note:** The Azure Provider includes a Feature Toggle which will purge a Key Vault Certificate resource on destroy, rather than the default soft-delete. See `purgeSoftDeletedCertificatesOnDestroy` for more information. - * - * ======= - * > > > > > > > 8d78c87098 (Update-documentation) * ## Example Usage * * ### Importing A PFX) diff --git a/sdk/nodejs/keyvault/certificateContacts.ts b/sdk/nodejs/keyvault/certificateContacts.ts index 609397825e..5817da1f3e 100644 --- a/sdk/nodejs/keyvault/certificateContacts.ts +++ b/sdk/nodejs/keyvault/certificateContacts.ts @@ -11,6 +11,7 @@ import * as utilities from "../utilities"; * * ## Disclaimers * + * * > **Note:** It's possible to define Key Vault Certificate Contacts both within the `azure.keyvault.KeyVault` resource via the `contact` block and by using the `azure.keyvault.CertificateContacts` resource. However it's not possible to use both methods to manage Certificate Contacts within a KeyVault, since there'll be conflicts. * * ## Example Usage @@ -94,6 +95,7 @@ export class CertificateContacts extends pulumi.CustomResource { /** * One or more `contact` blocks as defined below. + * --> */ public readonly contacts!: pulumi.Output; /** @@ -138,6 +140,7 @@ export class CertificateContacts extends pulumi.CustomResource { export interface CertificateContactsState { /** * One or more `contact` blocks as defined below. + * --> */ contacts?: pulumi.Input[]>; /** @@ -152,6 +155,7 @@ export interface CertificateContactsState { export interface CertificateContactsArgs { /** * One or more `contact` blocks as defined below. + * --> */ contacts: pulumi.Input[]>; /** diff --git a/sdk/nodejs/keyvault/keyVault.ts b/sdk/nodejs/keyvault/keyVault.ts index 93c039fc24..9e61f04f37 100644 --- a/sdk/nodejs/keyvault/keyVault.ts +++ b/sdk/nodejs/keyvault/keyVault.ts @@ -95,8 +95,10 @@ export class KeyVault extends pulumi.CustomResource { * > **Note:** This field can only be set once user has `managecontacts` certificate permission. * * > **Note:** This field can only be set when `publicNetworkAccessEnabled` is set to `true`. To manage the `contact` with `publicNetworkAccessEnabled` set to `false`, please use the `azure.keyvault.CertificateContacts` resource instead of this property, and remove this property from the configuration. Especially for existing `azure.keyvault.KeyVault`, this means you'll need to import the `azure.keyvault.CertificateContacts` manually. + * + * @deprecated As the `contact` property requires reaching out to the dataplane, to better support private endpoints and keyvaults with public network access disabled, `contact` will be removed in favour of the `azure.keyvault.CertificateContacts` resource in version 4.0 of the AzureRM Provider. */ - public readonly contacts!: pulumi.Output; + public readonly contacts!: pulumi.Output; /** * Boolean flag to specify whether Azure Key Vault uses Role Based Access Control (RBAC) for authorization of data actions. */ @@ -147,6 +149,8 @@ export class KeyVault extends pulumi.CustomResource { * The number of days that items should be retained for once soft-deleted. This value can be between `7` and `90` (the default) days. * * > **Note:** This field can only be configured one time and cannot be updated. + * + * */ public readonly softDeleteRetentionDays!: pulumi.Output; /** @@ -242,6 +246,8 @@ export interface KeyVaultState { * > **Note:** This field can only be set once user has `managecontacts` certificate permission. * * > **Note:** This field can only be set when `publicNetworkAccessEnabled` is set to `true`. To manage the `contact` with `publicNetworkAccessEnabled` set to `false`, please use the `azure.keyvault.CertificateContacts` resource instead of this property, and remove this property from the configuration. Especially for existing `azure.keyvault.KeyVault`, this means you'll need to import the `azure.keyvault.CertificateContacts` manually. + * + * @deprecated As the `contact` property requires reaching out to the dataplane, to better support private endpoints and keyvaults with public network access disabled, `contact` will be removed in favour of the `azure.keyvault.CertificateContacts` resource in version 4.0 of the AzureRM Provider. */ contacts?: pulumi.Input[]>; /** @@ -294,6 +300,8 @@ export interface KeyVaultState { * The number of days that items should be retained for once soft-deleted. This value can be between `7` and `90` (the default) days. * * > **Note:** This field can only be configured one time and cannot be updated. + * + * */ softDeleteRetentionDays?: pulumi.Input; /** @@ -326,6 +334,8 @@ export interface KeyVaultArgs { * > **Note:** This field can only be set once user has `managecontacts` certificate permission. * * > **Note:** This field can only be set when `publicNetworkAccessEnabled` is set to `true`. To manage the `contact` with `publicNetworkAccessEnabled` set to `false`, please use the `azure.keyvault.CertificateContacts` resource instead of this property, and remove this property from the configuration. Especially for existing `azure.keyvault.KeyVault`, this means you'll need to import the `azure.keyvault.CertificateContacts` manually. + * + * @deprecated As the `contact` property requires reaching out to the dataplane, to better support private endpoints and keyvaults with public network access disabled, `contact` will be removed in favour of the `azure.keyvault.CertificateContacts` resource in version 4.0 of the AzureRM Provider. */ contacts?: pulumi.Input[]>; /** @@ -378,6 +388,8 @@ export interface KeyVaultArgs { * The number of days that items should be retained for once soft-deleted. This value can be between `7` and `90` (the default) days. * * > **Note:** This field can only be configured one time and cannot be updated. + * + * */ softDeleteRetentionDays?: pulumi.Input; /** diff --git a/sdk/nodejs/keyvault/secret.ts b/sdk/nodejs/keyvault/secret.ts index 75e83d8ea6..0c3ef69314 100644 --- a/sdk/nodejs/keyvault/secret.ts +++ b/sdk/nodejs/keyvault/secret.ts @@ -7,14 +7,6 @@ import * as utilities from "../utilities"; /** * Manages a Key Vault Secret. * - * <<<<<<< HEAD - * > **Note:** All arguments including the secret value will be stored in the raw state as plain-text. - * [Read more about sensitive data in state](https://www.terraform.io/docs/state/sensitive-data.html). - * - * > **Note:** The Azure Provider includes a Feature Toggle which will purge a Key Vault Secret resource on destroy, rather than the default soft-delete. See `purgeSoftDeletedSecretsOnDestroy` for more information. - * - * ======= - * > > > > > > > 8d78c87098 (Update-documentation) * ## Example Usage * * diff --git a/sdk/nodejs/network/getPublicIpPrefix.ts b/sdk/nodejs/network/getPublicIpPrefix.ts index 8e52269222..3def8a04ad 100644 --- a/sdk/nodejs/network/getPublicIpPrefix.ts +++ b/sdk/nodejs/network/getPublicIpPrefix.ts @@ -55,22 +55,19 @@ export interface GetPublicIpPrefixResult { * The provider-assigned unique ID for this managed resource. */ readonly id: string; + /** + * The Public IP address range, in CIDR notation. + */ readonly ipPrefix: string; /** * The supported Azure location where the resource exists. */ readonly location: string; - /** - * The name of the Public IP prefix resource. - */ readonly name: string; /** * The number of bits of the prefix. */ readonly prefixLength: number; - /** - * The name of the resource group in which to create the public IP. - */ readonly resourceGroupName: string; /** * The SKU of the Public IP Prefix. diff --git a/sdk/nodejs/provider.ts b/sdk/nodejs/provider.ts index 7d190c53b5..715fc26732 100644 --- a/sdk/nodejs/provider.ts +++ b/sdk/nodejs/provider.ts @@ -59,7 +59,8 @@ export class Provider extends pulumi.ProviderResource { */ public readonly clientSecretFilePath!: pulumi.Output; /** - * The Cloud Environment which should be used. Possible values are public, usgovernment, and china. Defaults to public. + * The Cloud Environment which should be used. Possible values are public, usgovernment, and china. Defaults to public. Not + * used and should not be specified when `metadata_host` is specified. */ public readonly environment!: pulumi.Output; /** @@ -193,7 +194,8 @@ export interface ProviderArgs { */ disableTerraformPartnerId?: pulumi.Input; /** - * The Cloud Environment which should be used. Possible values are public, usgovernment, and china. Defaults to public. + * The Cloud Environment which should be used. Possible values are public, usgovernment, and china. Defaults to public. Not + * used and should not be specified when `metadata_host` is specified. */ environment?: pulumi.Input; features?: pulumi.Input; diff --git a/sdk/nodejs/redis/cacheAccessPolicyAssignment.ts b/sdk/nodejs/redis/cacheAccessPolicyAssignment.ts index 2af9a841d5..3802287d14 100644 --- a/sdk/nodejs/redis/cacheAccessPolicyAssignment.ts +++ b/sdk/nodejs/redis/cacheAccessPolicyAssignment.ts @@ -92,7 +92,7 @@ export class CacheAccessPolicyAssignment extends pulumi.CustomResource { */ public readonly objectId!: pulumi.Output; /** - * The alias of the principal ID. Possible values are `ServicePrincipal` and `UserMSI`. Changing this forces a new Redis Cache Access Policy Assignment to be created. + * The alias of the principal ID. User-friendly name for object ID. Also represents username for token based authentication. Changing this forces a new Redis Cache Access Policy Assignment to be created. */ public readonly objectIdAlias!: pulumi.Output; /** @@ -160,7 +160,7 @@ export interface CacheAccessPolicyAssignmentState { */ objectId?: pulumi.Input; /** - * The alias of the principal ID. Possible values are `ServicePrincipal` and `UserMSI`. Changing this forces a new Redis Cache Access Policy Assignment to be created. + * The alias of the principal ID. User-friendly name for object ID. Also represents username for token based authentication. Changing this forces a new Redis Cache Access Policy Assignment to be created. */ objectIdAlias?: pulumi.Input; /** @@ -186,7 +186,7 @@ export interface CacheAccessPolicyAssignmentArgs { */ objectId: pulumi.Input; /** - * The alias of the principal ID. Possible values are `ServicePrincipal` and `UserMSI`. Changing this forces a new Redis Cache Access Policy Assignment to be created. + * The alias of the principal ID. User-friendly name for object ID. Also represents username for token based authentication. Changing this forces a new Redis Cache Access Policy Assignment to be created. */ objectIdAlias: pulumi.Input; /** diff --git a/sdk/nodejs/storage/account.ts b/sdk/nodejs/storage/account.ts index e802b3320b..6d528e6b1e 100644 --- a/sdk/nodejs/storage/account.ts +++ b/sdk/nodejs/storage/account.ts @@ -389,7 +389,7 @@ export class Account extends pulumi.CustomResource { /** * A `queueProperties` block as defined below. * - * > **NOTE:** `queueProperties` cannot be set when the `accountKind` is set to `BlobStorage` + * > **NOTE:** `queueProperties` can only be configured when `accountTier` is set to `Standard` and `accountKind` is set to either `Storage` or `StorageV2`. */ public readonly queueProperties!: pulumi.Output; /** @@ -556,6 +556,8 @@ export class Account extends pulumi.CustomResource { public readonly sftpEnabled!: pulumi.Output; /** * A `shareProperties` block as defined below. + * + * > **NOTE:** `shareProperties` can only be configured when either `accountTier` is `Standard` and `accountKind` is either `Storage` or `StorageV2` - or when `accountTier` is `Premium` and `accountKind` is `FileStorage`. */ public readonly shareProperties!: pulumi.Output; public readonly sharedAccessKeyEnabled!: pulumi.Output; @@ -1107,7 +1109,7 @@ export interface AccountState { /** * A `queueProperties` block as defined below. * - * > **NOTE:** `queueProperties` cannot be set when the `accountKind` is set to `BlobStorage` + * > **NOTE:** `queueProperties` can only be configured when `accountTier` is set to `Standard` and `accountKind` is set to either `Storage` or `StorageV2`. */ queueProperties?: pulumi.Input; /** @@ -1274,6 +1276,8 @@ export interface AccountState { sftpEnabled?: pulumi.Input; /** * A `shareProperties` block as defined below. + * + * > **NOTE:** `shareProperties` can only be configured when either `accountTier` is `Standard` and `accountKind` is either `Storage` or `StorageV2` - or when `accountTier` is `Premium` and `accountKind` is `FileStorage`. */ shareProperties?: pulumi.Input; sharedAccessKeyEnabled?: pulumi.Input; @@ -1430,7 +1434,7 @@ export interface AccountArgs { /** * A `queueProperties` block as defined below. * - * > **NOTE:** `queueProperties` cannot be set when the `accountKind` is set to `BlobStorage` + * > **NOTE:** `queueProperties` can only be configured when `accountTier` is set to `Standard` and `accountKind` is set to either `Storage` or `StorageV2`. */ queueProperties?: pulumi.Input; /** @@ -1453,6 +1457,8 @@ export interface AccountArgs { sftpEnabled?: pulumi.Input; /** * A `shareProperties` block as defined below. + * + * > **NOTE:** `shareProperties` can only be configured when either `accountTier` is `Standard` and `accountKind` is either `Storage` or `StorageV2` - or when `accountTier` is `Premium` and `accountKind` is `FileStorage`. */ shareProperties?: pulumi.Input; sharedAccessKeyEnabled?: pulumi.Input; diff --git a/sdk/nodejs/storage/blob.ts b/sdk/nodejs/storage/blob.ts index 31c30c57d3..99df1da03c 100644 --- a/sdk/nodejs/storage/blob.ts +++ b/sdk/nodejs/storage/blob.ts @@ -92,6 +92,10 @@ export class Blob extends pulumi.CustomResource { * The content type of the storage blob. Cannot be defined if `sourceUri` is defined. Defaults to `application/octet-stream`. */ public readonly contentType!: pulumi.Output; + /** + * The encryption scope to use for this blob. + */ + public readonly encryptionScope!: pulumi.Output; /** * A map of custom blob metadata. */ @@ -158,6 +162,7 @@ export class Blob extends pulumi.CustomResource { resourceInputs["cacheControl"] = state ? state.cacheControl : undefined; resourceInputs["contentMd5"] = state ? state.contentMd5 : undefined; resourceInputs["contentType"] = state ? state.contentType : undefined; + resourceInputs["encryptionScope"] = state ? state.encryptionScope : undefined; resourceInputs["metadata"] = state ? state.metadata : undefined; resourceInputs["name"] = state ? state.name : undefined; resourceInputs["parallelism"] = state ? state.parallelism : undefined; @@ -184,6 +189,7 @@ export class Blob extends pulumi.CustomResource { resourceInputs["cacheControl"] = args ? args.cacheControl : undefined; resourceInputs["contentMd5"] = args ? args.contentMd5 : undefined; resourceInputs["contentType"] = args ? args.contentType : undefined; + resourceInputs["encryptionScope"] = args ? args.encryptionScope : undefined; resourceInputs["metadata"] = args ? args.metadata : undefined; resourceInputs["name"] = args ? args.name : undefined; resourceInputs["parallelism"] = args ? args.parallelism : undefined; @@ -221,6 +227,10 @@ export interface BlobState { * The content type of the storage blob. Cannot be defined if `sourceUri` is defined. Defaults to `application/octet-stream`. */ contentType?: pulumi.Input; + /** + * The encryption scope to use for this blob. + */ + encryptionScope?: pulumi.Input; /** * A map of custom blob metadata. */ @@ -291,6 +301,10 @@ export interface BlobArgs { * The content type of the storage blob. Cannot be defined if `sourceUri` is defined. Defaults to `application/octet-stream`. */ contentType?: pulumi.Input; + /** + * The encryption scope to use for this blob. + */ + encryptionScope?: pulumi.Input; /** * A map of custom blob metadata. */ diff --git a/sdk/nodejs/storage/container.ts b/sdk/nodejs/storage/container.ts index 5a3f84bd0a..0189f8d6fd 100644 --- a/sdk/nodejs/storage/container.ts +++ b/sdk/nodejs/storage/container.ts @@ -78,6 +78,14 @@ export class Container extends pulumi.CustomResource { * > **Note** When updating `containerAccessType` for an existing storage container resource, Shared Key authentication will always be used, as AzureAD authentication is not supported. */ public readonly containerAccessType!: pulumi.Output; + /** + * The default encryption scope to use for blobs uploaded to this container. Changing this forces a new resource to be created. + */ + public readonly defaultEncryptionScope!: pulumi.Output; + /** + * Whether to allow blobs to override the default encryption scope for this container. Can only be set when specifying `defaultEncryptionScope`. Defaults to `true`. Changing this forces a new resource to be created. + */ + public readonly encryptionScopeOverrideEnabled!: pulumi.Output; /** * Is there an Immutability Policy configured on this Storage Container? */ @@ -117,6 +125,8 @@ export class Container extends pulumi.CustomResource { if (opts.id) { const state = argsOrState as ContainerState | undefined; resourceInputs["containerAccessType"] = state ? state.containerAccessType : undefined; + resourceInputs["defaultEncryptionScope"] = state ? state.defaultEncryptionScope : undefined; + resourceInputs["encryptionScopeOverrideEnabled"] = state ? state.encryptionScopeOverrideEnabled : undefined; resourceInputs["hasImmutabilityPolicy"] = state ? state.hasImmutabilityPolicy : undefined; resourceInputs["hasLegalHold"] = state ? state.hasLegalHold : undefined; resourceInputs["metadata"] = state ? state.metadata : undefined; @@ -129,6 +139,8 @@ export class Container extends pulumi.CustomResource { throw new Error("Missing required property 'storageAccountName'"); } resourceInputs["containerAccessType"] = args ? args.containerAccessType : undefined; + resourceInputs["defaultEncryptionScope"] = args ? args.defaultEncryptionScope : undefined; + resourceInputs["encryptionScopeOverrideEnabled"] = args ? args.encryptionScopeOverrideEnabled : undefined; resourceInputs["metadata"] = args ? args.metadata : undefined; resourceInputs["name"] = args ? args.name : undefined; resourceInputs["storageAccountName"] = args ? args.storageAccountName : undefined; @@ -151,6 +163,14 @@ export interface ContainerState { * > **Note** When updating `containerAccessType` for an existing storage container resource, Shared Key authentication will always be used, as AzureAD authentication is not supported. */ containerAccessType?: pulumi.Input; + /** + * The default encryption scope to use for blobs uploaded to this container. Changing this forces a new resource to be created. + */ + defaultEncryptionScope?: pulumi.Input; + /** + * Whether to allow blobs to override the default encryption scope for this container. Can only be set when specifying `defaultEncryptionScope`. Defaults to `true`. Changing this forces a new resource to be created. + */ + encryptionScopeOverrideEnabled?: pulumi.Input; /** * Is there an Immutability Policy configured on this Storage Container? */ @@ -187,6 +207,14 @@ export interface ContainerArgs { * > **Note** When updating `containerAccessType` for an existing storage container resource, Shared Key authentication will always be used, as AzureAD authentication is not supported. */ containerAccessType?: pulumi.Input; + /** + * The default encryption scope to use for blobs uploaded to this container. Changing this forces a new resource to be created. + */ + defaultEncryptionScope?: pulumi.Input; + /** + * Whether to allow blobs to override the default encryption scope for this container. Can only be set when specifying `defaultEncryptionScope`. Defaults to `true`. Changing this forces a new resource to be created. + */ + encryptionScopeOverrideEnabled?: pulumi.Input; /** * A mapping of MetaData for this Container. All metadata keys should be lowercase. */ diff --git a/sdk/nodejs/storage/dataLakeGen2Filesystem.ts b/sdk/nodejs/storage/dataLakeGen2Filesystem.ts index ac38422f19..e9946aa125 100644 --- a/sdk/nodejs/storage/dataLakeGen2Filesystem.ts +++ b/sdk/nodejs/storage/dataLakeGen2Filesystem.ts @@ -81,6 +81,10 @@ export class DataLakeGen2Filesystem extends pulumi.CustomResource { * One or more `ace` blocks as defined below to specify the entries for the ACL for the path. */ public readonly aces!: pulumi.Output; + /** + * The default encryption scope to use for this filesystem. Changing this forces a new resource to be created. + */ + public readonly defaultEncryptionScope!: pulumi.Output; /** * Specifies the Object ID of the Azure Active Directory Group to make the owning group of the root path (i.e. `/`). Possible values also include `$superuser`. * @@ -118,6 +122,7 @@ export class DataLakeGen2Filesystem extends pulumi.CustomResource { if (opts.id) { const state = argsOrState as DataLakeGen2FilesystemState | undefined; resourceInputs["aces"] = state ? state.aces : undefined; + resourceInputs["defaultEncryptionScope"] = state ? state.defaultEncryptionScope : undefined; resourceInputs["group"] = state ? state.group : undefined; resourceInputs["name"] = state ? state.name : undefined; resourceInputs["owner"] = state ? state.owner : undefined; @@ -129,6 +134,7 @@ export class DataLakeGen2Filesystem extends pulumi.CustomResource { throw new Error("Missing required property 'storageAccountId'"); } resourceInputs["aces"] = args ? args.aces : undefined; + resourceInputs["defaultEncryptionScope"] = args ? args.defaultEncryptionScope : undefined; resourceInputs["group"] = args ? args.group : undefined; resourceInputs["name"] = args ? args.name : undefined; resourceInputs["owner"] = args ? args.owner : undefined; @@ -148,6 +154,10 @@ export interface DataLakeGen2FilesystemState { * One or more `ace` blocks as defined below to specify the entries for the ACL for the path. */ aces?: pulumi.Input[]>; + /** + * The default encryption scope to use for this filesystem. Changing this forces a new resource to be created. + */ + defaultEncryptionScope?: pulumi.Input; /** * Specifies the Object ID of the Azure Active Directory Group to make the owning group of the root path (i.e. `/`). Possible values also include `$superuser`. * @@ -180,6 +190,10 @@ export interface DataLakeGen2FilesystemArgs { * One or more `ace` blocks as defined below to specify the entries for the ACL for the path. */ aces?: pulumi.Input[]>; + /** + * The default encryption scope to use for this filesystem. Changing this forces a new resource to be created. + */ + defaultEncryptionScope?: pulumi.Input; /** * Specifies the Object ID of the Azure Active Directory Group to make the owning group of the root path (i.e. `/`). Possible values also include `$superuser`. * diff --git a/sdk/nodejs/storage/getBlob.ts b/sdk/nodejs/storage/getBlob.ts index e5c6c45ea8..804573d0ac 100644 --- a/sdk/nodejs/storage/getBlob.ts +++ b/sdk/nodejs/storage/getBlob.ts @@ -71,6 +71,10 @@ export interface GetBlobResult { * The content type of the storage blob. */ readonly contentType: string; + /** + * The encryption scope for this blob. + */ + readonly encryptionScope: string; /** * The provider-assigned unique ID for this managed resource. */ diff --git a/sdk/nodejs/storage/getStorageContainer.ts b/sdk/nodejs/storage/getStorageContainer.ts index 9fbeda31e4..b85e030fcb 100644 --- a/sdk/nodejs/storage/getStorageContainer.ts +++ b/sdk/nodejs/storage/getStorageContainer.ts @@ -57,6 +57,14 @@ export interface GetStorageContainerResult { * The Access Level configured for this Container. */ readonly containerAccessType: string; + /** + * The default encryption scope in use for blobs uploaded to this container. + */ + readonly defaultEncryptionScope: string; + /** + * Whether blobs are allowed to override the default encryption scope for this container. + */ + readonly encryptionScopeOverrideEnabled: boolean; /** * Is there an Immutability Policy configured on this Storage Container? */ diff --git a/sdk/nodejs/storage/zipBlob.ts b/sdk/nodejs/storage/zipBlob.ts index a3f200ea28..97c88c229d 100644 --- a/sdk/nodejs/storage/zipBlob.ts +++ b/sdk/nodejs/storage/zipBlob.ts @@ -41,6 +41,7 @@ export class ZipBlob extends pulumi.CustomResource { public readonly content!: pulumi.Output; public readonly contentMd5!: pulumi.Output; public readonly contentType!: pulumi.Output; + public readonly encryptionScope!: pulumi.Output; public readonly metadata!: pulumi.Output<{[key: string]: string}>; public readonly name!: pulumi.Output; public readonly parallelism!: pulumi.Output; @@ -73,6 +74,7 @@ export class ZipBlob extends pulumi.CustomResource { resourceInputs["content"] = state ? state.content : undefined; resourceInputs["contentMd5"] = state ? state.contentMd5 : undefined; resourceInputs["contentType"] = state ? state.contentType : undefined; + resourceInputs["encryptionScope"] = state ? state.encryptionScope : undefined; resourceInputs["metadata"] = state ? state.metadata : undefined; resourceInputs["name"] = state ? state.name : undefined; resourceInputs["parallelism"] = state ? state.parallelism : undefined; @@ -99,6 +101,7 @@ export class ZipBlob extends pulumi.CustomResource { resourceInputs["content"] = args ? args.content : undefined; resourceInputs["contentMd5"] = args ? args.contentMd5 : undefined; resourceInputs["contentType"] = args ? args.contentType : undefined; + resourceInputs["encryptionScope"] = args ? args.encryptionScope : undefined; resourceInputs["metadata"] = args ? args.metadata : undefined; resourceInputs["name"] = args ? args.name : undefined; resourceInputs["parallelism"] = args ? args.parallelism : undefined; @@ -124,6 +127,7 @@ export interface ZipBlobState { content?: pulumi.Input; contentMd5?: pulumi.Input; contentType?: pulumi.Input; + encryptionScope?: pulumi.Input; metadata?: pulumi.Input<{[key: string]: pulumi.Input}>; name?: pulumi.Input; parallelism?: pulumi.Input; @@ -145,6 +149,7 @@ export interface ZipBlobArgs { content?: pulumi.Input; contentMd5?: pulumi.Input; contentType?: pulumi.Input; + encryptionScope?: pulumi.Input; metadata?: pulumi.Input<{[key: string]: pulumi.Input}>; name?: pulumi.Input; parallelism?: pulumi.Input; diff --git a/sdk/nodejs/types/input.ts b/sdk/nodejs/types/input.ts index f8109d42a5..b7d2cec753 100644 --- a/sdk/nodejs/types/input.ts +++ b/sdk/nodejs/types/input.ts @@ -7321,7 +7321,7 @@ export namespace appservice { export interface LinuxWebAppLogsHttpLogs { /** - * A `azureBlobStorageHttp` block as defined below. + * A `azureBlobStorageHttp` block as defined above. */ azureBlobStorage?: pulumi.Input; /** @@ -7530,6 +7530,8 @@ export namespace appservice { * The Version of Java to use. Possible values include `8`, `11`, and `17`. * * > **NOTE:** The valid version combinations for `javaVersion`, `javaServer` and `javaServerVersion` can be checked from the command line via `az webapp list-runtimes --linux`. + * + * > **NOTE:** `javaServer`, `javaServerVersion`, and `javaVersion` must all be specified if building a java app */ javaVersion?: pulumi.Input; /** @@ -12309,7 +12311,7 @@ export namespace appservice { export interface WindowsWebAppLogsHttpLogs { /** - * A `azureBlobStorageHttp` block as defined above. + * A `azureBlobStorageHttp` block as defined below. */ azureBlobStorage?: pulumi.Input; /** @@ -45469,7 +45471,7 @@ export namespace network { */ actions?: pulumi.Input[]>; /** - * The name of service to delegate to. Possible values are `GitHub.Network/networkSettings`, `Microsoft.ApiManagement/service`, `Microsoft.Apollo/npu`, `Microsoft.App/environments`, `Microsoft.App/testClients`, `Microsoft.AVS/PrivateClouds`, `Microsoft.AzureCosmosDB/clusters`, `Microsoft.BareMetal/AzureHostedService`, `Microsoft.BareMetal/AzureHPC`, `Microsoft.BareMetal/AzurePaymentHSM`, `Microsoft.BareMetal/AzureVMware`, `Microsoft.BareMetal/CrayServers`, `Microsoft.BareMetal/MonitoringServers`, `Microsoft.Batch/batchAccounts`, `Microsoft.CloudTest/hostedpools`, `Microsoft.CloudTest/images`, `Microsoft.CloudTest/pools`, `Microsoft.Codespaces/plans`, `Microsoft.ContainerInstance/containerGroups`, `Microsoft.ContainerService/managedClusters`, `Microsoft.ContainerService/TestClients`, `Microsoft.Databricks/workspaces`, `Microsoft.DBforMySQL/flexibleServers`, `Microsoft.DBforMySQL/servers`, `Microsoft.DBforMySQL/serversv2`, `Microsoft.DBforPostgreSQL/flexibleServers`, `Microsoft.DBforPostgreSQL/serversv2`, `Microsoft.DBforPostgreSQL/singleServers`, `Microsoft.DelegatedNetwork/controller`, `Microsoft.DevCenter/networkConnection`, `Microsoft.DocumentDB/cassandraClusters`, `Microsoft.Fidalgo/networkSettings`, `Microsoft.HardwareSecurityModules/dedicatedHSMs`, `Microsoft.Kusto/clusters`, `Microsoft.LabServices/labplans`, `Microsoft.Logic/integrationServiceEnvironments`, `Microsoft.MachineLearningServices/workspaces`, `Microsoft.Netapp/volumes`, `Microsoft.Network/dnsResolvers`, `Microsoft.Network/managedResolvers`, `Microsoft.Network/fpgaNetworkInterfaces`, `Microsoft.Network/networkWatchers.`, `Microsoft.Network/virtualNetworkGateways`, `Microsoft.Orbital/orbitalGateways`, `Microsoft.PowerPlatform/enterprisePolicies`, `Microsoft.PowerPlatform/vnetaccesslinks`, `Microsoft.ServiceFabricMesh/networks`, `Microsoft.ServiceNetworking/trafficControllers`, `Microsoft.Singularity/accounts/networks`, `Microsoft.Singularity/accounts/npu`, `Microsoft.Sql/managedInstances`, `Microsoft.Sql/managedInstancesOnebox`, `Microsoft.Sql/managedInstancesStage`, `Microsoft.Sql/managedInstancesTest`, `Microsoft.Sql/servers`, `Microsoft.StoragePool/diskPools`, `Microsoft.StreamAnalytics/streamingJobs`, `Microsoft.Synapse/workspaces`, `Microsoft.Web/hostingEnvironments`, `Microsoft.Web/serverFarms`, `NGINX.NGINXPLUS/nginxDeployments`, `PaloAltoNetworks.Cloudngfw/firewalls` and `Qumulo.Storage/fileSystems`. + * The name of service to delegate to. Possible values are `GitHub.Network/networkSettings`, `Microsoft.ApiManagement/service`, `Microsoft.Apollo/npu`, `Microsoft.App/environments`, `Microsoft.App/testClients`, `Microsoft.AVS/PrivateClouds`, `Microsoft.AzureCosmosDB/clusters`, `Microsoft.BareMetal/AzureHostedService`, `Microsoft.BareMetal/AzureHPC`, `Microsoft.BareMetal/AzurePaymentHSM`, `Microsoft.BareMetal/AzureVMware`, `Microsoft.BareMetal/CrayServers`, `Microsoft.BareMetal/MonitoringServers`, `Microsoft.Batch/batchAccounts`, `Microsoft.CloudTest/hostedpools`, `Microsoft.CloudTest/images`, `Microsoft.CloudTest/pools`, `Microsoft.Codespaces/plans`, `Microsoft.ContainerInstance/containerGroups`, `Microsoft.ContainerService/managedClusters`, `Microsoft.ContainerService/TestClients`, `Microsoft.Databricks/workspaces`, `Microsoft.DBforMySQL/flexibleServers`, `Microsoft.DBforMySQL/servers`, `Microsoft.DBforMySQL/serversv2`, `Microsoft.DBforPostgreSQL/flexibleServers`, `Microsoft.DBforPostgreSQL/serversv2`, `Microsoft.DBforPostgreSQL/singleServers`, `Microsoft.DelegatedNetwork/controller`, `Microsoft.DevCenter/networkConnection`, `Microsoft.DocumentDB/cassandraClusters`, `Microsoft.Fidalgo/networkSettings`, `Microsoft.HardwareSecurityModules/dedicatedHSMs`, `Microsoft.Kusto/clusters`, `Microsoft.LabServices/labplans`, `Microsoft.Logic/integrationServiceEnvironments`, `Microsoft.MachineLearningServices/workspaces`, `Microsoft.Netapp/volumes`, `Microsoft.Network/dnsResolvers`, `Microsoft.Network/managedResolvers`, `Microsoft.Network/fpgaNetworkInterfaces`, `Microsoft.Network/networkWatchers.`, `Microsoft.Network/virtualNetworkGateways`, `Microsoft.Orbital/orbitalGateways`, `Microsoft.PowerPlatform/enterprisePolicies`, `Microsoft.PowerPlatform/vnetaccesslinks`, `Microsoft.ServiceFabricMesh/networks`, `Microsoft.ServiceNetworking/trafficControllers`, `Microsoft.Singularity/accounts/networks`, `Microsoft.Singularity/accounts/npu`, `Microsoft.Sql/managedInstances`, `Microsoft.Sql/managedInstancesOnebox`, `Microsoft.Sql/managedInstancesStage`, `Microsoft.Sql/managedInstancesTest`, `Microsoft.Sql/servers`, `Microsoft.StoragePool/diskPools`, `Microsoft.StreamAnalytics/streamingJobs`, `Microsoft.Synapse/workspaces`, `Microsoft.Web/hostingEnvironments`, `Microsoft.Web/serverFarms`, `NGINX.NGINXPLUS/nginxDeployments`, `PaloAltoNetworks.Cloudngfw/firewalls`, `Qumulo.Storage/fileSystems`, and `Oracle.Database/networkAttachments`. */ name: pulumi.Input; } @@ -49680,11 +49682,13 @@ export namespace signalr { export interface ServiceSku { /** - * Specifies the number of units associated with this SignalR service. Valid values are `1`, `2`, `3`, `4`, `5`, `6`, `7`, `8`, `9`, `10`, `20`, `30`, `40`, `50`, `60`, `70`, `80`, `90` and `100`. + * Specifies the number of units associated with this SignalR service. Valid values are `1`, `2`, `3`, `4`, `5`, `6`, `7`, `8`, `9`, `10`, `20`, `30`, `40`, `50`, `60`, `70`, `80`, `90`, `100`, `200`, `300`, `400`, `500`, `600`, `700`, `800`, `900` and `1000`. + * + * > **NOTE:** The valid capacity range for sku `Free_F1` is `1`, for sku `Premium_P2` is from `100` to `1000`, and from `1` to `100` for sku `Standard_S1` and `Premium_P1`. */ capacity: pulumi.Input; /** - * Specifies which tier to use. Valid values are `Free_F1`, `Standard_S1` and `Premium_P1`. + * Specifies which tier to use. Valid values are `Free_F1`, `Standard_S1`, `Premium_P1` and `Premium_P2`. */ name: pulumi.Input; } diff --git a/sdk/nodejs/types/output.ts b/sdk/nodejs/types/output.ts index 58f8eadb07..26522f8fbc 100644 --- a/sdk/nodejs/types/output.ts +++ b/sdk/nodejs/types/output.ts @@ -12461,7 +12461,7 @@ export namespace appservice { export interface LinuxWebAppLogsHttpLogs { /** - * A `azureBlobStorageHttp` block as defined below. + * A `azureBlobStorageHttp` block as defined above. */ azureBlobStorage?: outputs.appservice.LinuxWebAppLogsHttpLogsAzureBlobStorage; /** @@ -12670,6 +12670,8 @@ export namespace appservice { * The Version of Java to use. Possible values include `8`, `11`, and `17`. * * > **NOTE:** The valid version combinations for `javaVersion`, `javaServer` and `javaServerVersion` can be checked from the command line via `az webapp list-runtimes --linux`. + * + * > **NOTE:** `javaServer`, `javaServerVersion`, and `javaVersion` must all be specified if building a java app */ javaVersion?: string; /** @@ -17449,7 +17451,7 @@ export namespace appservice { export interface WindowsWebAppLogsHttpLogs { /** - * A `azureBlobStorageHttp` block as defined above. + * A `azureBlobStorageHttp` block as defined below. */ azureBlobStorage?: outputs.appservice.WindowsWebAppLogsHttpLogsAzureBlobStorage; /** @@ -58328,7 +58330,7 @@ export namespace network { */ actions?: string[]; /** - * The name of service to delegate to. Possible values are `GitHub.Network/networkSettings`, `Microsoft.ApiManagement/service`, `Microsoft.Apollo/npu`, `Microsoft.App/environments`, `Microsoft.App/testClients`, `Microsoft.AVS/PrivateClouds`, `Microsoft.AzureCosmosDB/clusters`, `Microsoft.BareMetal/AzureHostedService`, `Microsoft.BareMetal/AzureHPC`, `Microsoft.BareMetal/AzurePaymentHSM`, `Microsoft.BareMetal/AzureVMware`, `Microsoft.BareMetal/CrayServers`, `Microsoft.BareMetal/MonitoringServers`, `Microsoft.Batch/batchAccounts`, `Microsoft.CloudTest/hostedpools`, `Microsoft.CloudTest/images`, `Microsoft.CloudTest/pools`, `Microsoft.Codespaces/plans`, `Microsoft.ContainerInstance/containerGroups`, `Microsoft.ContainerService/managedClusters`, `Microsoft.ContainerService/TestClients`, `Microsoft.Databricks/workspaces`, `Microsoft.DBforMySQL/flexibleServers`, `Microsoft.DBforMySQL/servers`, `Microsoft.DBforMySQL/serversv2`, `Microsoft.DBforPostgreSQL/flexibleServers`, `Microsoft.DBforPostgreSQL/serversv2`, `Microsoft.DBforPostgreSQL/singleServers`, `Microsoft.DelegatedNetwork/controller`, `Microsoft.DevCenter/networkConnection`, `Microsoft.DocumentDB/cassandraClusters`, `Microsoft.Fidalgo/networkSettings`, `Microsoft.HardwareSecurityModules/dedicatedHSMs`, `Microsoft.Kusto/clusters`, `Microsoft.LabServices/labplans`, `Microsoft.Logic/integrationServiceEnvironments`, `Microsoft.MachineLearningServices/workspaces`, `Microsoft.Netapp/volumes`, `Microsoft.Network/dnsResolvers`, `Microsoft.Network/managedResolvers`, `Microsoft.Network/fpgaNetworkInterfaces`, `Microsoft.Network/networkWatchers.`, `Microsoft.Network/virtualNetworkGateways`, `Microsoft.Orbital/orbitalGateways`, `Microsoft.PowerPlatform/enterprisePolicies`, `Microsoft.PowerPlatform/vnetaccesslinks`, `Microsoft.ServiceFabricMesh/networks`, `Microsoft.ServiceNetworking/trafficControllers`, `Microsoft.Singularity/accounts/networks`, `Microsoft.Singularity/accounts/npu`, `Microsoft.Sql/managedInstances`, `Microsoft.Sql/managedInstancesOnebox`, `Microsoft.Sql/managedInstancesStage`, `Microsoft.Sql/managedInstancesTest`, `Microsoft.Sql/servers`, `Microsoft.StoragePool/diskPools`, `Microsoft.StreamAnalytics/streamingJobs`, `Microsoft.Synapse/workspaces`, `Microsoft.Web/hostingEnvironments`, `Microsoft.Web/serverFarms`, `NGINX.NGINXPLUS/nginxDeployments`, `PaloAltoNetworks.Cloudngfw/firewalls` and `Qumulo.Storage/fileSystems`. + * The name of service to delegate to. Possible values are `GitHub.Network/networkSettings`, `Microsoft.ApiManagement/service`, `Microsoft.Apollo/npu`, `Microsoft.App/environments`, `Microsoft.App/testClients`, `Microsoft.AVS/PrivateClouds`, `Microsoft.AzureCosmosDB/clusters`, `Microsoft.BareMetal/AzureHostedService`, `Microsoft.BareMetal/AzureHPC`, `Microsoft.BareMetal/AzurePaymentHSM`, `Microsoft.BareMetal/AzureVMware`, `Microsoft.BareMetal/CrayServers`, `Microsoft.BareMetal/MonitoringServers`, `Microsoft.Batch/batchAccounts`, `Microsoft.CloudTest/hostedpools`, `Microsoft.CloudTest/images`, `Microsoft.CloudTest/pools`, `Microsoft.Codespaces/plans`, `Microsoft.ContainerInstance/containerGroups`, `Microsoft.ContainerService/managedClusters`, `Microsoft.ContainerService/TestClients`, `Microsoft.Databricks/workspaces`, `Microsoft.DBforMySQL/flexibleServers`, `Microsoft.DBforMySQL/servers`, `Microsoft.DBforMySQL/serversv2`, `Microsoft.DBforPostgreSQL/flexibleServers`, `Microsoft.DBforPostgreSQL/serversv2`, `Microsoft.DBforPostgreSQL/singleServers`, `Microsoft.DelegatedNetwork/controller`, `Microsoft.DevCenter/networkConnection`, `Microsoft.DocumentDB/cassandraClusters`, `Microsoft.Fidalgo/networkSettings`, `Microsoft.HardwareSecurityModules/dedicatedHSMs`, `Microsoft.Kusto/clusters`, `Microsoft.LabServices/labplans`, `Microsoft.Logic/integrationServiceEnvironments`, `Microsoft.MachineLearningServices/workspaces`, `Microsoft.Netapp/volumes`, `Microsoft.Network/dnsResolvers`, `Microsoft.Network/managedResolvers`, `Microsoft.Network/fpgaNetworkInterfaces`, `Microsoft.Network/networkWatchers.`, `Microsoft.Network/virtualNetworkGateways`, `Microsoft.Orbital/orbitalGateways`, `Microsoft.PowerPlatform/enterprisePolicies`, `Microsoft.PowerPlatform/vnetaccesslinks`, `Microsoft.ServiceFabricMesh/networks`, `Microsoft.ServiceNetworking/trafficControllers`, `Microsoft.Singularity/accounts/networks`, `Microsoft.Singularity/accounts/npu`, `Microsoft.Sql/managedInstances`, `Microsoft.Sql/managedInstancesOnebox`, `Microsoft.Sql/managedInstancesStage`, `Microsoft.Sql/managedInstancesTest`, `Microsoft.Sql/servers`, `Microsoft.StoragePool/diskPools`, `Microsoft.StreamAnalytics/streamingJobs`, `Microsoft.Synapse/workspaces`, `Microsoft.Web/hostingEnvironments`, `Microsoft.Web/serverFarms`, `NGINX.NGINXPLUS/nginxDeployments`, `PaloAltoNetworks.Cloudngfw/firewalls`, `Qumulo.Storage/fileSystems`, and `Oracle.Database/networkAttachments`. */ name: string; } @@ -63195,11 +63197,13 @@ export namespace signalr { export interface ServiceSku { /** - * Specifies the number of units associated with this SignalR service. Valid values are `1`, `2`, `3`, `4`, `5`, `6`, `7`, `8`, `9`, `10`, `20`, `30`, `40`, `50`, `60`, `70`, `80`, `90` and `100`. + * Specifies the number of units associated with this SignalR service. Valid values are `1`, `2`, `3`, `4`, `5`, `6`, `7`, `8`, `9`, `10`, `20`, `30`, `40`, `50`, `60`, `70`, `80`, `90`, `100`, `200`, `300`, `400`, `500`, `600`, `700`, `800`, `900` and `1000`. + * + * > **NOTE:** The valid capacity range for sku `Free_F1` is `1`, for sku `Premium_P2` is from `100` to `1000`, and from `1` to `100` for sku `Standard_S1` and `Premium_P1`. */ capacity: number; /** - * Specifies which tier to use. Valid values are `Free_F1`, `Standard_S1` and `Premium_P1`. + * Specifies which tier to use. Valid values are `Free_F1`, `Standard_S1`, `Premium_P1` and `Premium_P2`. */ name: string; } diff --git a/sdk/nodejs/webpubsub/service.ts b/sdk/nodejs/webpubsub/service.ts index 3639debba2..eee3a14f4c 100644 --- a/sdk/nodejs/webpubsub/service.ts +++ b/sdk/nodejs/webpubsub/service.ts @@ -80,7 +80,9 @@ export class Service extends pulumi.CustomResource { */ public readonly aadAuthEnabled!: pulumi.Output; /** - * Specifies the number of units associated with this Web PubSub resource. Valid values are: Free: `1`, Standard: `1`, `2`, `5`, `10`, `20`, `50`, `100`. + * Specifies the number of units associated with this Web PubSub resource. Valid values are `1`, `2`, `3`, `4`, `5`, `6`, `7`, `8`, `9`, `10`, `20`, `30`, `40`, `50`, `60`, `70`, `80`, `90`, `100`, `200`, `300`, `400`, `500`, `600`, `700`, `800`, `900` and `1000`. + * + * > **NOTE:** The valid capacity range for sku `Free_F1` is `1`, for sku `Premium_P2` is from `100` to `1000`, and from `1` to `100` for sku `Standard_S1` and `Premium_P1`. */ public readonly capacity!: pulumi.Output; /** @@ -144,7 +146,7 @@ export class Service extends pulumi.CustomResource { */ public /*out*/ readonly serverPort!: pulumi.Output; /** - * Specifies which SKU to use. Possible values are `Free_F1`, `Standard_S1`, and `Premium_P1`. + * Specifies which SKU to use. Possible values are `Free_F1`, `Standard_S1`, `Premium_P1` and `Premium_P2`. */ public readonly sku!: pulumi.Output; /** @@ -237,7 +239,9 @@ export interface ServiceState { */ aadAuthEnabled?: pulumi.Input; /** - * Specifies the number of units associated with this Web PubSub resource. Valid values are: Free: `1`, Standard: `1`, `2`, `5`, `10`, `20`, `50`, `100`. + * Specifies the number of units associated with this Web PubSub resource. Valid values are `1`, `2`, `3`, `4`, `5`, `6`, `7`, `8`, `9`, `10`, `20`, `30`, `40`, `50`, `60`, `70`, `80`, `90`, `100`, `200`, `300`, `400`, `500`, `600`, `700`, `800`, `900` and `1000`. + * + * > **NOTE:** The valid capacity range for sku `Free_F1` is `1`, for sku `Premium_P2` is from `100` to `1000`, and from `1` to `100` for sku `Standard_S1` and `Premium_P1`. */ capacity?: pulumi.Input; /** @@ -301,7 +305,7 @@ export interface ServiceState { */ serverPort?: pulumi.Input; /** - * Specifies which SKU to use. Possible values are `Free_F1`, `Standard_S1`, and `Premium_P1`. + * Specifies which SKU to use. Possible values are `Free_F1`, `Standard_S1`, `Premium_P1` and `Premium_P2`. */ sku?: pulumi.Input; /** @@ -324,7 +328,9 @@ export interface ServiceArgs { */ aadAuthEnabled?: pulumi.Input; /** - * Specifies the number of units associated with this Web PubSub resource. Valid values are: Free: `1`, Standard: `1`, `2`, `5`, `10`, `20`, `50`, `100`. + * Specifies the number of units associated with this Web PubSub resource. Valid values are `1`, `2`, `3`, `4`, `5`, `6`, `7`, `8`, `9`, `10`, `20`, `30`, `40`, `50`, `60`, `70`, `80`, `90`, `100`, `200`, `300`, `400`, `500`, `600`, `700`, `800`, `900` and `1000`. + * + * > **NOTE:** The valid capacity range for sku `Free_F1` is `1`, for sku `Premium_P2` is from `100` to `1000`, and from `1` to `100` for sku `Standard_S1` and `Premium_P1`. */ capacity?: pulumi.Input; /** @@ -356,7 +362,7 @@ export interface ServiceArgs { */ resourceGroupName: pulumi.Input; /** - * Specifies which SKU to use. Possible values are `Free_F1`, `Standard_S1`, and `Premium_P1`. + * Specifies which SKU to use. Possible values are `Free_F1`, `Standard_S1`, `Premium_P1` and `Premium_P2`. */ sku: pulumi.Input; /** diff --git a/sdk/python/pulumi_azure/appservice/_inputs.py b/sdk/python/pulumi_azure/appservice/_inputs.py index 0d4aa0a6a3..64e58a33dc 100644 --- a/sdk/python/pulumi_azure/appservice/_inputs.py +++ b/sdk/python/pulumi_azure/appservice/_inputs.py @@ -16173,7 +16173,7 @@ def __init__(__self__, *, azure_blob_storage: Optional[pulumi.Input['LinuxWebAppLogsHttpLogsAzureBlobStorageArgs']] = None, file_system: Optional[pulumi.Input['LinuxWebAppLogsHttpLogsFileSystemArgs']] = None): """ - :param pulumi.Input['LinuxWebAppLogsHttpLogsAzureBlobStorageArgs'] azure_blob_storage: A `azure_blob_storage_http` block as defined below. + :param pulumi.Input['LinuxWebAppLogsHttpLogsAzureBlobStorageArgs'] azure_blob_storage: A `azure_blob_storage_http` block as defined above. :param pulumi.Input['LinuxWebAppLogsHttpLogsFileSystemArgs'] file_system: A `file_system` block as defined above. """ if azure_blob_storage is not None: @@ -16185,7 +16185,7 @@ def __init__(__self__, *, @pulumi.getter(name="azureBlobStorage") def azure_blob_storage(self) -> Optional[pulumi.Input['LinuxWebAppLogsHttpLogsAzureBlobStorageArgs']]: """ - A `azure_blob_storage_http` block as defined below. + A `azure_blob_storage_http` block as defined above. """ return pulumi.get(self, "azure_blob_storage") @@ -16854,6 +16854,8 @@ def __init__(__self__, *, :param pulumi.Input[str] java_version: The Version of Java to use. Possible values include `8`, `11`, and `17`. > **NOTE:** The valid version combinations for `java_version`, `java_server` and `java_server_version` can be checked from the command line via `az webapp list-runtimes --linux`. + + > **NOTE:** `java_server`, `java_server_version`, and `java_version` must all be specified if building a java app :param pulumi.Input[str] node_version: The version of Node to run. Possible values include `12-lts`, `14-lts`, `16-lts`, `18-lts` and `20-lts`. This property conflicts with `java_version`. > **NOTE:** 10.x versions have been/are being deprecated so may cease to work for new resources in the future and may be removed from the provider. @@ -17031,6 +17033,8 @@ def java_version(self) -> Optional[pulumi.Input[str]]: The Version of Java to use. Possible values include `8`, `11`, and `17`. > **NOTE:** The valid version combinations for `java_version`, `java_server` and `java_server_version` can be checked from the command line via `az webapp list-runtimes --linux`. + + > **NOTE:** `java_server`, `java_server_version`, and `java_version` must all be specified if building a java app """ return pulumi.get(self, "java_version") @@ -34692,7 +34696,7 @@ def __init__(__self__, *, azure_blob_storage: Optional[pulumi.Input['WindowsWebAppLogsHttpLogsAzureBlobStorageArgs']] = None, file_system: Optional[pulumi.Input['WindowsWebAppLogsHttpLogsFileSystemArgs']] = None): """ - :param pulumi.Input['WindowsWebAppLogsHttpLogsAzureBlobStorageArgs'] azure_blob_storage: A `azure_blob_storage_http` block as defined above. + :param pulumi.Input['WindowsWebAppLogsHttpLogsAzureBlobStorageArgs'] azure_blob_storage: A `azure_blob_storage_http` block as defined below. :param pulumi.Input['WindowsWebAppLogsHttpLogsFileSystemArgs'] file_system: A `file_system` block as defined above. """ if azure_blob_storage is not None: @@ -34704,7 +34708,7 @@ def __init__(__self__, *, @pulumi.getter(name="azureBlobStorage") def azure_blob_storage(self) -> Optional[pulumi.Input['WindowsWebAppLogsHttpLogsAzureBlobStorageArgs']]: """ - A `azure_blob_storage_http` block as defined above. + A `azure_blob_storage_http` block as defined below. """ return pulumi.get(self, "azure_blob_storage") diff --git a/sdk/python/pulumi_azure/appservice/outputs.py b/sdk/python/pulumi_azure/appservice/outputs.py index 447a10c6f8..2d7cf3417f 100644 --- a/sdk/python/pulumi_azure/appservice/outputs.py +++ b/sdk/python/pulumi_azure/appservice/outputs.py @@ -16364,7 +16364,7 @@ def __init__(__self__, *, azure_blob_storage: Optional['outputs.LinuxWebAppLogsHttpLogsAzureBlobStorage'] = None, file_system: Optional['outputs.LinuxWebAppLogsHttpLogsFileSystem'] = None): """ - :param 'LinuxWebAppLogsHttpLogsAzureBlobStorageArgs' azure_blob_storage: A `azure_blob_storage_http` block as defined below. + :param 'LinuxWebAppLogsHttpLogsAzureBlobStorageArgs' azure_blob_storage: A `azure_blob_storage_http` block as defined above. :param 'LinuxWebAppLogsHttpLogsFileSystemArgs' file_system: A `file_system` block as defined above. """ if azure_blob_storage is not None: @@ -16376,7 +16376,7 @@ def __init__(__self__, *, @pulumi.getter(name="azureBlobStorage") def azure_blob_storage(self) -> Optional['outputs.LinuxWebAppLogsHttpLogsAzureBlobStorage']: """ - A `azure_blob_storage_http` block as defined below. + A `azure_blob_storage_http` block as defined above. """ return pulumi.get(self, "azure_blob_storage") @@ -17049,6 +17049,8 @@ def __init__(__self__, *, :param str java_version: The Version of Java to use. Possible values include `8`, `11`, and `17`. > **NOTE:** The valid version combinations for `java_version`, `java_server` and `java_server_version` can be checked from the command line via `az webapp list-runtimes --linux`. + + > **NOTE:** `java_server`, `java_server_version`, and `java_version` must all be specified if building a java app :param str node_version: The version of Node to run. Possible values include `12-lts`, `14-lts`, `16-lts`, `18-lts` and `20-lts`. This property conflicts with `java_version`. > **NOTE:** 10.x versions have been/are being deprecated so may cease to work for new resources in the future and may be removed from the provider. @@ -17180,6 +17182,8 @@ def java_version(self) -> Optional[str]: The Version of Java to use. Possible values include `8`, `11`, and `17`. > **NOTE:** The valid version combinations for `java_version`, `java_server` and `java_server_version` can be checked from the command line via `az webapp list-runtimes --linux`. + + > **NOTE:** `java_server`, `java_server_version`, and `java_version` must all be specified if building a java app """ return pulumi.get(self, "java_version") @@ -34885,7 +34889,7 @@ def __init__(__self__, *, azure_blob_storage: Optional['outputs.WindowsWebAppLogsHttpLogsAzureBlobStorage'] = None, file_system: Optional['outputs.WindowsWebAppLogsHttpLogsFileSystem'] = None): """ - :param 'WindowsWebAppLogsHttpLogsAzureBlobStorageArgs' azure_blob_storage: A `azure_blob_storage_http` block as defined above. + :param 'WindowsWebAppLogsHttpLogsAzureBlobStorageArgs' azure_blob_storage: A `azure_blob_storage_http` block as defined below. :param 'WindowsWebAppLogsHttpLogsFileSystemArgs' file_system: A `file_system` block as defined above. """ if azure_blob_storage is not None: @@ -34897,7 +34901,7 @@ def __init__(__self__, *, @pulumi.getter(name="azureBlobStorage") def azure_blob_storage(self) -> Optional['outputs.WindowsWebAppLogsHttpLogsAzureBlobStorage']: """ - A `azure_blob_storage_http` block as defined above. + A `azure_blob_storage_http` block as defined below. """ return pulumi.get(self, "azure_blob_storage") diff --git a/sdk/python/pulumi_azure/bot/service_azure_bot.py b/sdk/python/pulumi_azure/bot/service_azure_bot.py index 25c24ae3b3..fce999e543 100644 --- a/sdk/python/pulumi_azure/bot/service_azure_bot.py +++ b/sdk/python/pulumi_azure/bot/service_azure_bot.py @@ -57,7 +57,7 @@ def __init__(__self__, *, :param pulumi.Input[str] microsoft_app_tenant_id: The Tenant ID of the Microsoft App for this Azure Bot Service. Changing this forces a new resource to be created. :param pulumi.Input[str] microsoft_app_type: The Microsoft App Type for this Azure Bot Service. Possible values are `MultiTenant`, `SingleTenant` and `UserAssignedMSI`. Changing this forces a new resource to be created. :param pulumi.Input[str] name: The name which should be used for this Azure Bot Service. Changing this forces a new resource to be created. - :param pulumi.Input[bool] public_network_access_enabled: Whether public network access is allowed for this server. Defaults to `true`. + :param pulumi.Input[bool] public_network_access_enabled: Whether public network access is enabled. Defaults to `true`. :param pulumi.Input[bool] streaming_endpoint_enabled: Is the streaming endpoint enabled for this Azure Bot Service. Defaults to `false`. :param pulumi.Input[Mapping[str, pulumi.Input[str]]] tags: A mapping of tags which should be assigned to this Azure Bot Service. """ @@ -323,7 +323,7 @@ def name(self, value: Optional[pulumi.Input[str]]): @pulumi.getter(name="publicNetworkAccessEnabled") def public_network_access_enabled(self) -> Optional[pulumi.Input[bool]]: """ - Whether public network access is allowed for this server. Defaults to `true`. + Whether public network access is enabled. Defaults to `true`. """ return pulumi.get(self, "public_network_access_enabled") @@ -400,7 +400,7 @@ def __init__(__self__, *, :param pulumi.Input[str] microsoft_app_tenant_id: The Tenant ID of the Microsoft App for this Azure Bot Service. Changing this forces a new resource to be created. :param pulumi.Input[str] microsoft_app_type: The Microsoft App Type for this Azure Bot Service. Possible values are `MultiTenant`, `SingleTenant` and `UserAssignedMSI`. Changing this forces a new resource to be created. :param pulumi.Input[str] name: The name which should be used for this Azure Bot Service. Changing this forces a new resource to be created. - :param pulumi.Input[bool] public_network_access_enabled: Whether public network access is allowed for this server. Defaults to `true`. + :param pulumi.Input[bool] public_network_access_enabled: Whether public network access is enabled. Defaults to `true`. :param pulumi.Input[str] resource_group_name: The name of the Resource Group where the Azure Bot Service should exist. Changing this forces a new resource to be created. :param pulumi.Input[str] sku: The SKU of the Azure Bot Service. Accepted values are `F0` or `S1`. Changing this forces a new resource to be created. :param pulumi.Input[bool] streaming_endpoint_enabled: Is the streaming endpoint enabled for this Azure Bot Service. Defaults to `false`. @@ -647,7 +647,7 @@ def name(self, value: Optional[pulumi.Input[str]]): @pulumi.getter(name="publicNetworkAccessEnabled") def public_network_access_enabled(self) -> Optional[pulumi.Input[bool]]: """ - Whether public network access is allowed for this server. Defaults to `true`. + Whether public network access is enabled. Defaults to `true`. """ return pulumi.get(self, "public_network_access_enabled") @@ -803,7 +803,7 @@ def __init__(__self__, :param pulumi.Input[str] microsoft_app_tenant_id: The Tenant ID of the Microsoft App for this Azure Bot Service. Changing this forces a new resource to be created. :param pulumi.Input[str] microsoft_app_type: The Microsoft App Type for this Azure Bot Service. Possible values are `MultiTenant`, `SingleTenant` and `UserAssignedMSI`. Changing this forces a new resource to be created. :param pulumi.Input[str] name: The name which should be used for this Azure Bot Service. Changing this forces a new resource to be created. - :param pulumi.Input[bool] public_network_access_enabled: Whether public network access is allowed for this server. Defaults to `true`. + :param pulumi.Input[bool] public_network_access_enabled: Whether public network access is enabled. Defaults to `true`. :param pulumi.Input[str] resource_group_name: The name of the Resource Group where the Azure Bot Service should exist. Changing this forces a new resource to be created. :param pulumi.Input[str] sku: The SKU of the Azure Bot Service. Accepted values are `F0` or `S1`. Changing this forces a new resource to be created. :param pulumi.Input[bool] streaming_endpoint_enabled: Is the streaming endpoint enabled for this Azure Bot Service. Defaults to `false`. @@ -997,7 +997,7 @@ def get(resource_name: str, :param pulumi.Input[str] microsoft_app_tenant_id: The Tenant ID of the Microsoft App for this Azure Bot Service. Changing this forces a new resource to be created. :param pulumi.Input[str] microsoft_app_type: The Microsoft App Type for this Azure Bot Service. Possible values are `MultiTenant`, `SingleTenant` and `UserAssignedMSI`. Changing this forces a new resource to be created. :param pulumi.Input[str] name: The name which should be used for this Azure Bot Service. Changing this forces a new resource to be created. - :param pulumi.Input[bool] public_network_access_enabled: Whether public network access is allowed for this server. Defaults to `true`. + :param pulumi.Input[bool] public_network_access_enabled: Whether public network access is enabled. Defaults to `true`. :param pulumi.Input[str] resource_group_name: The name of the Resource Group where the Azure Bot Service should exist. Changing this forces a new resource to be created. :param pulumi.Input[str] sku: The SKU of the Azure Bot Service. Accepted values are `F0` or `S1`. Changing this forces a new resource to be created. :param pulumi.Input[bool] streaming_endpoint_enabled: Is the streaming endpoint enabled for this Azure Bot Service. Defaults to `false`. @@ -1164,7 +1164,7 @@ def name(self) -> pulumi.Output[str]: @pulumi.getter(name="publicNetworkAccessEnabled") def public_network_access_enabled(self) -> pulumi.Output[Optional[bool]]: """ - Whether public network access is allowed for this server. Defaults to `true`. + Whether public network access is enabled. Defaults to `true`. """ return pulumi.get(self, "public_network_access_enabled") diff --git a/sdk/python/pulumi_azure/chaosstudio/target.py b/sdk/python/pulumi_azure/chaosstudio/target.py index 412915b864..cd65b6f8a4 100644 --- a/sdk/python/pulumi_azure/chaosstudio/target.py +++ b/sdk/python/pulumi_azure/chaosstudio/target.py @@ -135,6 +135,39 @@ def __init__(__self__, Manages a Chaos Studio Target. + ## Example Usage + + + ```python + import pulumi + import pulumi_azure as azure + + example_resource_group = azure.core.ResourceGroup("example", + name="example-resources", + location="West Europe") + example = azure.containerservice.KubernetesCluster("example", + name="example", + location=example_resource_group.location, + resource_group_name=example_resource_group.name, + dns_prefix="acctestaksexample", + default_node_pool=azure.containerservice.KubernetesClusterDefaultNodePoolArgs( + name="example-value", + node_count="example-value", + vm_size="example-value", + upgrade_settings=azure.containerservice.KubernetesClusterDefaultNodePoolUpgradeSettingsArgs( + max_surge="example-value", + ), + ), + identity=azure.containerservice.KubernetesClusterIdentityArgs( + type="example-value", + )) + example_target = azure.chaosstudio.Target("example", + location=example_resource_group.location, + target_resource_id=example.id, + target_type="example-value") + ``` + + ## Import An existing Chaos Studio Target can be imported into Terraform using the `resource id`, e.g. @@ -164,6 +197,39 @@ def __init__(__self__, Manages a Chaos Studio Target. + ## Example Usage + + + ```python + import pulumi + import pulumi_azure as azure + + example_resource_group = azure.core.ResourceGroup("example", + name="example-resources", + location="West Europe") + example = azure.containerservice.KubernetesCluster("example", + name="example", + location=example_resource_group.location, + resource_group_name=example_resource_group.name, + dns_prefix="acctestaksexample", + default_node_pool=azure.containerservice.KubernetesClusterDefaultNodePoolArgs( + name="example-value", + node_count="example-value", + vm_size="example-value", + upgrade_settings=azure.containerservice.KubernetesClusterDefaultNodePoolUpgradeSettingsArgs( + max_surge="example-value", + ), + ), + identity=azure.containerservice.KubernetesClusterIdentityArgs( + type="example-value", + )) + example_target = azure.chaosstudio.Target("example", + location=example_resource_group.location, + target_resource_id=example.id, + target_type="example-value") + ``` + + ## Import An existing Chaos Studio Target can be imported into Terraform using the `resource id`, e.g. diff --git a/sdk/python/pulumi_azure/compute/snapshot.py b/sdk/python/pulumi_azure/compute/snapshot.py index 7e0a2c12a2..a28270952e 100644 --- a/sdk/python/pulumi_azure/compute/snapshot.py +++ b/sdk/python/pulumi_azure/compute/snapshot.py @@ -23,6 +23,8 @@ def __init__(__self__, *, incremental_enabled: Optional[pulumi.Input[bool]] = None, location: Optional[pulumi.Input[str]] = None, name: Optional[pulumi.Input[str]] = None, + network_access_policy: Optional[pulumi.Input[str]] = None, + public_network_access_enabled: Optional[pulumi.Input[bool]] = None, source_resource_id: Optional[pulumi.Input[str]] = None, source_uri: Optional[pulumi.Input[str]] = None, storage_account_id: Optional[pulumi.Input[str]] = None, @@ -40,6 +42,8 @@ def __init__(__self__, *, :param pulumi.Input[bool] incremental_enabled: Specifies if the Snapshot is incremental. Changing this forces a new resource to be created. :param pulumi.Input[str] location: Specifies the supported Azure location where the resource exists. Changing this forces a new resource to be created. :param pulumi.Input[str] name: Specifies the name of the Snapshot resource. Changing this forces a new resource to be created. + :param pulumi.Input[str] network_access_policy: Policy for accessing the disk via network. Possible values are `AllowAll`, `AllowPrivate`, or `DenyAll`. Defaults to `AllowAll`. + :param pulumi.Input[bool] public_network_access_enabled: Policy for controlling export on the disk. Possible values are `true` or `false`. Defaults to `true`. :param pulumi.Input[str] source_resource_id: Specifies a reference to an existing snapshot, when `create_option` is `Copy`. Changing this forces a new resource to be created. :param pulumi.Input[str] source_uri: Specifies the URI to a Managed or Unmanaged Disk. Changing this forces a new resource to be created. :param pulumi.Input[str] storage_account_id: Specifies the ID of an storage account. Used with `source_uri` to allow authorization during import of unmanaged blobs from a different subscription. Changing this forces a new resource to be created. @@ -57,6 +61,10 @@ def __init__(__self__, *, pulumi.set(__self__, "location", location) if name is not None: pulumi.set(__self__, "name", name) + if network_access_policy is not None: + pulumi.set(__self__, "network_access_policy", network_access_policy) + if public_network_access_enabled is not None: + pulumi.set(__self__, "public_network_access_enabled", public_network_access_enabled) if source_resource_id is not None: pulumi.set(__self__, "source_resource_id", source_resource_id) if source_uri is not None: @@ -154,6 +162,30 @@ def name(self) -> Optional[pulumi.Input[str]]: def name(self, value: Optional[pulumi.Input[str]]): pulumi.set(self, "name", value) + @property + @pulumi.getter(name="networkAccessPolicy") + def network_access_policy(self) -> Optional[pulumi.Input[str]]: + """ + Policy for accessing the disk via network. Possible values are `AllowAll`, `AllowPrivate`, or `DenyAll`. Defaults to `AllowAll`. + """ + return pulumi.get(self, "network_access_policy") + + @network_access_policy.setter + def network_access_policy(self, value: Optional[pulumi.Input[str]]): + pulumi.set(self, "network_access_policy", value) + + @property + @pulumi.getter(name="publicNetworkAccessEnabled") + def public_network_access_enabled(self) -> Optional[pulumi.Input[bool]]: + """ + Policy for controlling export on the disk. Possible values are `true` or `false`. Defaults to `true`. + """ + return pulumi.get(self, "public_network_access_enabled") + + @public_network_access_enabled.setter + def public_network_access_enabled(self, value: Optional[pulumi.Input[bool]]): + pulumi.set(self, "public_network_access_enabled", value) + @property @pulumi.getter(name="sourceResourceId") def source_resource_id(self) -> Optional[pulumi.Input[str]]: @@ -212,6 +244,8 @@ def __init__(__self__, *, incremental_enabled: Optional[pulumi.Input[bool]] = None, location: Optional[pulumi.Input[str]] = None, name: Optional[pulumi.Input[str]] = None, + network_access_policy: Optional[pulumi.Input[str]] = None, + public_network_access_enabled: Optional[pulumi.Input[bool]] = None, resource_group_name: Optional[pulumi.Input[str]] = None, source_resource_id: Optional[pulumi.Input[str]] = None, source_uri: Optional[pulumi.Input[str]] = None, @@ -230,6 +264,8 @@ def __init__(__self__, *, :param pulumi.Input[bool] incremental_enabled: Specifies if the Snapshot is incremental. Changing this forces a new resource to be created. :param pulumi.Input[str] location: Specifies the supported Azure location where the resource exists. Changing this forces a new resource to be created. :param pulumi.Input[str] name: Specifies the name of the Snapshot resource. Changing this forces a new resource to be created. + :param pulumi.Input[str] network_access_policy: Policy for accessing the disk via network. Possible values are `AllowAll`, `AllowPrivate`, or `DenyAll`. Defaults to `AllowAll`. + :param pulumi.Input[bool] public_network_access_enabled: Policy for controlling export on the disk. Possible values are `true` or `false`. Defaults to `true`. :param pulumi.Input[str] resource_group_name: The name of the resource group in which to create the Snapshot. Changing this forces a new resource to be created. :param pulumi.Input[str] source_resource_id: Specifies a reference to an existing snapshot, when `create_option` is `Copy`. Changing this forces a new resource to be created. :param pulumi.Input[str] source_uri: Specifies the URI to a Managed or Unmanaged Disk. Changing this forces a new resource to be created. @@ -249,6 +285,10 @@ def __init__(__self__, *, pulumi.set(__self__, "location", location) if name is not None: pulumi.set(__self__, "name", name) + if network_access_policy is not None: + pulumi.set(__self__, "network_access_policy", network_access_policy) + if public_network_access_enabled is not None: + pulumi.set(__self__, "public_network_access_enabled", public_network_access_enabled) if resource_group_name is not None: pulumi.set(__self__, "resource_group_name", resource_group_name) if source_resource_id is not None: @@ -338,6 +378,30 @@ def name(self) -> Optional[pulumi.Input[str]]: def name(self, value: Optional[pulumi.Input[str]]): pulumi.set(self, "name", value) + @property + @pulumi.getter(name="networkAccessPolicy") + def network_access_policy(self) -> Optional[pulumi.Input[str]]: + """ + Policy for accessing the disk via network. Possible values are `AllowAll`, `AllowPrivate`, or `DenyAll`. Defaults to `AllowAll`. + """ + return pulumi.get(self, "network_access_policy") + + @network_access_policy.setter + def network_access_policy(self, value: Optional[pulumi.Input[str]]): + pulumi.set(self, "network_access_policy", value) + + @property + @pulumi.getter(name="publicNetworkAccessEnabled") + def public_network_access_enabled(self) -> Optional[pulumi.Input[bool]]: + """ + Policy for controlling export on the disk. Possible values are `true` or `false`. Defaults to `true`. + """ + return pulumi.get(self, "public_network_access_enabled") + + @public_network_access_enabled.setter + def public_network_access_enabled(self, value: Optional[pulumi.Input[bool]]): + pulumi.set(self, "public_network_access_enabled", value) + @property @pulumi.getter(name="resourceGroupName") def resource_group_name(self) -> Optional[pulumi.Input[str]]: @@ -422,6 +486,8 @@ def __init__(__self__, incremental_enabled: Optional[pulumi.Input[bool]] = None, location: Optional[pulumi.Input[str]] = None, name: Optional[pulumi.Input[str]] = None, + network_access_policy: Optional[pulumi.Input[str]] = None, + public_network_access_enabled: Optional[pulumi.Input[bool]] = None, resource_group_name: Optional[pulumi.Input[str]] = None, source_resource_id: Optional[pulumi.Input[str]] = None, source_uri: Optional[pulumi.Input[str]] = None, @@ -477,6 +543,8 @@ def __init__(__self__, :param pulumi.Input[bool] incremental_enabled: Specifies if the Snapshot is incremental. Changing this forces a new resource to be created. :param pulumi.Input[str] location: Specifies the supported Azure location where the resource exists. Changing this forces a new resource to be created. :param pulumi.Input[str] name: Specifies the name of the Snapshot resource. Changing this forces a new resource to be created. + :param pulumi.Input[str] network_access_policy: Policy for accessing the disk via network. Possible values are `AllowAll`, `AllowPrivate`, or `DenyAll`. Defaults to `AllowAll`. + :param pulumi.Input[bool] public_network_access_enabled: Policy for controlling export on the disk. Possible values are `true` or `false`. Defaults to `true`. :param pulumi.Input[str] resource_group_name: The name of the resource group in which to create the Snapshot. Changing this forces a new resource to be created. :param pulumi.Input[str] source_resource_id: Specifies a reference to an existing snapshot, when `create_option` is `Copy`. Changing this forces a new resource to be created. :param pulumi.Input[str] source_uri: Specifies the URI to a Managed or Unmanaged Disk. Changing this forces a new resource to be created. @@ -547,6 +615,8 @@ def _internal_init(__self__, incremental_enabled: Optional[pulumi.Input[bool]] = None, location: Optional[pulumi.Input[str]] = None, name: Optional[pulumi.Input[str]] = None, + network_access_policy: Optional[pulumi.Input[str]] = None, + public_network_access_enabled: Optional[pulumi.Input[bool]] = None, resource_group_name: Optional[pulumi.Input[str]] = None, source_resource_id: Optional[pulumi.Input[str]] = None, source_uri: Optional[pulumi.Input[str]] = None, @@ -569,6 +639,8 @@ def _internal_init(__self__, __props__.__dict__["incremental_enabled"] = incremental_enabled __props__.__dict__["location"] = location __props__.__dict__["name"] = name + __props__.__dict__["network_access_policy"] = network_access_policy + __props__.__dict__["public_network_access_enabled"] = public_network_access_enabled if resource_group_name is None and not opts.urn: raise TypeError("Missing required property 'resource_group_name'") __props__.__dict__["resource_group_name"] = resource_group_name @@ -593,6 +665,8 @@ def get(resource_name: str, incremental_enabled: Optional[pulumi.Input[bool]] = None, location: Optional[pulumi.Input[str]] = None, name: Optional[pulumi.Input[str]] = None, + network_access_policy: Optional[pulumi.Input[str]] = None, + public_network_access_enabled: Optional[pulumi.Input[bool]] = None, resource_group_name: Optional[pulumi.Input[str]] = None, source_resource_id: Optional[pulumi.Input[str]] = None, source_uri: Optional[pulumi.Input[str]] = None, @@ -616,6 +690,8 @@ def get(resource_name: str, :param pulumi.Input[bool] incremental_enabled: Specifies if the Snapshot is incremental. Changing this forces a new resource to be created. :param pulumi.Input[str] location: Specifies the supported Azure location where the resource exists. Changing this forces a new resource to be created. :param pulumi.Input[str] name: Specifies the name of the Snapshot resource. Changing this forces a new resource to be created. + :param pulumi.Input[str] network_access_policy: Policy for accessing the disk via network. Possible values are `AllowAll`, `AllowPrivate`, or `DenyAll`. Defaults to `AllowAll`. + :param pulumi.Input[bool] public_network_access_enabled: Policy for controlling export on the disk. Possible values are `true` or `false`. Defaults to `true`. :param pulumi.Input[str] resource_group_name: The name of the resource group in which to create the Snapshot. Changing this forces a new resource to be created. :param pulumi.Input[str] source_resource_id: Specifies a reference to an existing snapshot, when `create_option` is `Copy`. Changing this forces a new resource to be created. :param pulumi.Input[str] source_uri: Specifies the URI to a Managed or Unmanaged Disk. Changing this forces a new resource to be created. @@ -633,6 +709,8 @@ def get(resource_name: str, __props__.__dict__["incremental_enabled"] = incremental_enabled __props__.__dict__["location"] = location __props__.__dict__["name"] = name + __props__.__dict__["network_access_policy"] = network_access_policy + __props__.__dict__["public_network_access_enabled"] = public_network_access_enabled __props__.__dict__["resource_group_name"] = resource_group_name __props__.__dict__["source_resource_id"] = source_resource_id __props__.__dict__["source_uri"] = source_uri @@ -693,6 +771,22 @@ def name(self) -> pulumi.Output[str]: """ return pulumi.get(self, "name") + @property + @pulumi.getter(name="networkAccessPolicy") + def network_access_policy(self) -> pulumi.Output[Optional[str]]: + """ + Policy for accessing the disk via network. Possible values are `AllowAll`, `AllowPrivate`, or `DenyAll`. Defaults to `AllowAll`. + """ + return pulumi.get(self, "network_access_policy") + + @property + @pulumi.getter(name="publicNetworkAccessEnabled") + def public_network_access_enabled(self) -> pulumi.Output[Optional[bool]]: + """ + Policy for controlling export on the disk. Possible values are `true` or `false`. Defaults to `true`. + """ + return pulumi.get(self, "public_network_access_enabled") + @property @pulumi.getter(name="resourceGroupName") def resource_group_name(self) -> pulumi.Output[str]: diff --git a/sdk/python/pulumi_azure/config/__init__.pyi b/sdk/python/pulumi_azure/config/__init__.pyi index d91cfc62e3..e4bfaf5de5 100644 --- a/sdk/python/pulumi_azure/config/__init__.pyi +++ b/sdk/python/pulumi_azure/config/__init__.pyi @@ -59,7 +59,8 @@ disableTerraformPartnerId: Optional[bool] environment: str """ -The Cloud Environment which should be used. Possible values are public, usgovernment, and china. Defaults to public. +The Cloud Environment which should be used. Possible values are public, usgovernment, and china. Defaults to public. Not +used and should not be specified when `metadata_host` is specified. """ features: Optional[str] diff --git a/sdk/python/pulumi_azure/config/vars.py b/sdk/python/pulumi_azure/config/vars.py index 52dff24418..bf2666913b 100644 --- a/sdk/python/pulumi_azure/config/vars.py +++ b/sdk/python/pulumi_azure/config/vars.py @@ -86,7 +86,8 @@ def disable_terraform_partner_id(self) -> Optional[bool]: @property def environment(self) -> str: """ - The Cloud Environment which should be used. Possible values are public, usgovernment, and china. Defaults to public. + The Cloud Environment which should be used. Possible values are public, usgovernment, and china. Defaults to public. Not + used and should not be specified when `metadata_host` is specified. """ return __config__.get('environment') or (_utilities.get_env('AZURE_ENVIRONMENT', 'ARM_ENVIRONMENT') or 'public') diff --git a/sdk/python/pulumi_azure/containerservice/cluster_trusted_access_role_binding.py b/sdk/python/pulumi_azure/containerservice/cluster_trusted_access_role_binding.py index f5678f3cd9..06c62d2c27 100644 --- a/sdk/python/pulumi_azure/containerservice/cluster_trusted_access_role_binding.py +++ b/sdk/python/pulumi_azure/containerservice/cluster_trusted_access_role_binding.py @@ -169,6 +169,74 @@ def __init__(__self__, > **Note:** This Resource is in **Preview** to use this you must be opted into the Preview. You can do this by running `az feature register --namespace Microsoft.ContainerService --name TrustedAccessPreview` and then `az provider register -n Microsoft.ContainerService` . + ## Example Usage + + + ```python + import pulumi + import pulumi_azure as azure + + example_resource_group = azure.core.ResourceGroup("example", + name="example-resources", + location="West Europe") + example = azure.appinsights.Insights("example", + name="example", + location=example_resource_group.location, + resource_group_name=example_resource_group.name, + application_type="example-value") + test = azure.core.get_client_config() + example_key_vault = azure.keyvault.KeyVault("example", + name="example", + location=example_resource_group.location, + resource_group_name=example_resource_group.name, + tenant_id=example_azurerm_client_config["tenantId"], + sku_name="example-value", + soft_delete_retention_days="example-value") + example_access_policy = azure.keyvault.AccessPolicy("example", + key_vault_id=example_key_vault.id, + tenant_id=example_azurerm_client_config["tenantId"], + object_id=example_azurerm_client_config["objectId"], + key_permissions="example-value") + example_kubernetes_cluster = azure.containerservice.KubernetesCluster("example", + name="example", + location=example_resource_group.location, + resource_group_name=example_resource_group.name, + dns_prefix="acctestaksexample", + default_node_pool=azure.containerservice.KubernetesClusterDefaultNodePoolArgs( + name="example-value", + node_count="example-value", + vm_size="example-value", + upgrade_settings=azure.containerservice.KubernetesClusterDefaultNodePoolUpgradeSettingsArgs( + max_surge="example-value", + ), + ), + identity=azure.containerservice.KubernetesClusterIdentityArgs( + type="example-value", + )) + example_account = azure.storage.Account("example", + name="example", + location=example_resource_group.location, + resource_group_name=example_resource_group.name, + account_tier="example-value", + account_replication_type="example-value") + example_workspace = azure.machinelearning.Workspace("example", + name="example", + location=example_resource_group.location, + resource_group_name=example_resource_group.name, + key_vault_id=example_key_vault.id, + storage_account_id=example_account.id, + application_insights_id=example.id, + identity=azure.machinelearning.WorkspaceIdentityArgs( + type="example-value", + )) + example_cluster_trusted_access_role_binding = azure.containerservice.ClusterTrustedAccessRoleBinding("example", + kubernetes_cluster_id=example_kubernetes_cluster.id, + name="example", + roles="example-value", + source_resource_id=example_workspace.id) + ``` + + ## Import An existing Kubernetes Cluster Trusted Access Role Binding can be imported into Terraform using the `resource id`, e.g. @@ -205,6 +273,74 @@ def __init__(__self__, > **Note:** This Resource is in **Preview** to use this you must be opted into the Preview. You can do this by running `az feature register --namespace Microsoft.ContainerService --name TrustedAccessPreview` and then `az provider register -n Microsoft.ContainerService` . + ## Example Usage + + + ```python + import pulumi + import pulumi_azure as azure + + example_resource_group = azure.core.ResourceGroup("example", + name="example-resources", + location="West Europe") + example = azure.appinsights.Insights("example", + name="example", + location=example_resource_group.location, + resource_group_name=example_resource_group.name, + application_type="example-value") + test = azure.core.get_client_config() + example_key_vault = azure.keyvault.KeyVault("example", + name="example", + location=example_resource_group.location, + resource_group_name=example_resource_group.name, + tenant_id=example_azurerm_client_config["tenantId"], + sku_name="example-value", + soft_delete_retention_days="example-value") + example_access_policy = azure.keyvault.AccessPolicy("example", + key_vault_id=example_key_vault.id, + tenant_id=example_azurerm_client_config["tenantId"], + object_id=example_azurerm_client_config["objectId"], + key_permissions="example-value") + example_kubernetes_cluster = azure.containerservice.KubernetesCluster("example", + name="example", + location=example_resource_group.location, + resource_group_name=example_resource_group.name, + dns_prefix="acctestaksexample", + default_node_pool=azure.containerservice.KubernetesClusterDefaultNodePoolArgs( + name="example-value", + node_count="example-value", + vm_size="example-value", + upgrade_settings=azure.containerservice.KubernetesClusterDefaultNodePoolUpgradeSettingsArgs( + max_surge="example-value", + ), + ), + identity=azure.containerservice.KubernetesClusterIdentityArgs( + type="example-value", + )) + example_account = azure.storage.Account("example", + name="example", + location=example_resource_group.location, + resource_group_name=example_resource_group.name, + account_tier="example-value", + account_replication_type="example-value") + example_workspace = azure.machinelearning.Workspace("example", + name="example", + location=example_resource_group.location, + resource_group_name=example_resource_group.name, + key_vault_id=example_key_vault.id, + storage_account_id=example_account.id, + application_insights_id=example.id, + identity=azure.machinelearning.WorkspaceIdentityArgs( + type="example-value", + )) + example_cluster_trusted_access_role_binding = azure.containerservice.ClusterTrustedAccessRoleBinding("example", + kubernetes_cluster_id=example_kubernetes_cluster.id, + name="example", + roles="example-value", + source_resource_id=example_workspace.id) + ``` + + ## Import An existing Kubernetes Cluster Trusted Access Role Binding can be imported into Terraform using the `resource id`, e.g. diff --git a/sdk/python/pulumi_azure/containerservice/fleet_member.py b/sdk/python/pulumi_azure/containerservice/fleet_member.py index 2388dec588..910098a049 100644 --- a/sdk/python/pulumi_azure/containerservice/fleet_member.py +++ b/sdk/python/pulumi_azure/containerservice/fleet_member.py @@ -168,6 +168,43 @@ def __init__(__self__, Manages a Kubernetes Fleet Member. + ## Example Usage + + + ```python + import pulumi + import pulumi_azure as azure + + example_resource_group = azure.core.ResourceGroup("example", + name="example-resources", + location="West Europe") + example = azure.containerservice.KubernetesCluster("example", + name="example", + location=example_resource_group.location, + resource_group_name=example_resource_group.name, + dns_prefix="acctestaksexample", + default_node_pool=azure.containerservice.KubernetesClusterDefaultNodePoolArgs( + name="example-value", + node_count="example-value", + vm_size="example-value", + upgrade_settings=azure.containerservice.KubernetesClusterDefaultNodePoolUpgradeSettingsArgs( + max_surge="example-value", + ), + ), + identity=azure.containerservice.KubernetesClusterIdentityArgs( + type="example-value", + )) + example_kubernetes_fleet_manager = azure.containerservice.KubernetesFleetManager("example", + name="example", + location=example_resource_group.location, + resource_group_name=example_resource_group.name) + example_fleet_member = azure.containerservice.FleetMember("example", + kubernetes_cluster_id=example.id, + kubernetes_fleet_id=example_kubernetes_fleet_manager.id, + name="example") + ``` + + ## Import An existing Kubernetes Fleet Member can be imported into Terraform using the `resource id`, e.g. @@ -202,6 +239,43 @@ def __init__(__self__, Manages a Kubernetes Fleet Member. + ## Example Usage + + + ```python + import pulumi + import pulumi_azure as azure + + example_resource_group = azure.core.ResourceGroup("example", + name="example-resources", + location="West Europe") + example = azure.containerservice.KubernetesCluster("example", + name="example", + location=example_resource_group.location, + resource_group_name=example_resource_group.name, + dns_prefix="acctestaksexample", + default_node_pool=azure.containerservice.KubernetesClusterDefaultNodePoolArgs( + name="example-value", + node_count="example-value", + vm_size="example-value", + upgrade_settings=azure.containerservice.KubernetesClusterDefaultNodePoolUpgradeSettingsArgs( + max_surge="example-value", + ), + ), + identity=azure.containerservice.KubernetesClusterIdentityArgs( + type="example-value", + )) + example_kubernetes_fleet_manager = azure.containerservice.KubernetesFleetManager("example", + name="example", + location=example_resource_group.location, + resource_group_name=example_resource_group.name) + example_fleet_member = azure.containerservice.FleetMember("example", + kubernetes_cluster_id=example.id, + kubernetes_fleet_id=example_kubernetes_fleet_manager.id, + name="example") + ``` + + ## Import An existing Kubernetes Fleet Member can be imported into Terraform using the `resource id`, e.g. diff --git a/sdk/python/pulumi_azure/cosmosdb/account.py b/sdk/python/pulumi_azure/cosmosdb/account.py index af27fb8a05..46fd1da329 100644 --- a/sdk/python/pulumi_azure/cosmosdb/account.py +++ b/sdk/python/pulumi_azure/cosmosdb/account.py @@ -23,6 +23,7 @@ def __init__(__self__, *, access_key_metadata_writes_enabled: Optional[pulumi.Input[bool]] = None, analytical_storage: Optional[pulumi.Input['AccountAnalyticalStorageArgs']] = None, analytical_storage_enabled: Optional[pulumi.Input[bool]] = None, + automatic_failover_enabled: Optional[pulumi.Input[bool]] = None, backup: Optional[pulumi.Input['AccountBackupArgs']] = None, capabilities: Optional[pulumi.Input[Sequence[pulumi.Input['AccountCapabilityArgs']]]] = None, capacity: Optional[pulumi.Input['AccountCapacityArgs']] = None, @@ -32,6 +33,7 @@ def __init__(__self__, *, enable_automatic_failover: Optional[pulumi.Input[bool]] = None, enable_free_tier: Optional[pulumi.Input[bool]] = None, enable_multiple_write_locations: Optional[pulumi.Input[bool]] = None, + free_tier_enabled: Optional[pulumi.Input[bool]] = None, identity: Optional[pulumi.Input['AccountIdentityArgs']] = None, ip_range_filter: Optional[pulumi.Input[str]] = None, is_virtual_network_filter_enabled: Optional[pulumi.Input[bool]] = None, @@ -41,6 +43,7 @@ def __init__(__self__, *, location: Optional[pulumi.Input[str]] = None, minimal_tls_version: Optional[pulumi.Input[str]] = None, mongo_server_version: Optional[pulumi.Input[str]] = None, + multiple_write_locations_enabled: Optional[pulumi.Input[bool]] = None, name: Optional[pulumi.Input[str]] = None, network_acl_bypass_for_azure_services: Optional[pulumi.Input[bool]] = None, network_acl_bypass_ids: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None, @@ -58,6 +61,7 @@ def __init__(__self__, *, :param pulumi.Input[bool] access_key_metadata_writes_enabled: Is write operations on metadata resources (databases, containers, throughput) via account keys enabled? Defaults to `true`. :param pulumi.Input['AccountAnalyticalStorageArgs'] analytical_storage: An `analytical_storage` block as defined below. :param pulumi.Input[bool] analytical_storage_enabled: Enable Analytical Storage option for this Cosmos DB account. Defaults to `false`. Enabling and then disabling analytical storage forces a new resource to be created. + :param pulumi.Input[bool] automatic_failover_enabled: Enable automatic failover for this Cosmos DB account. :param pulumi.Input['AccountBackupArgs'] backup: A `backup` block as defined below. :param pulumi.Input[Sequence[pulumi.Input['AccountCapabilityArgs']]] capabilities: The capabilities which should be enabled for this Cosmos DB account. Value is a `capabilities` block as defined below. :param pulumi.Input['AccountCapacityArgs'] capacity: A `capacity` block as defined below. @@ -66,9 +70,7 @@ def __init__(__self__, *, > **Note:** `create_mode` can only be defined when the `backup.type` is set to `Continuous`. :param pulumi.Input[str] default_identity_type: The default identity for accessing Key Vault. Possible values are `FirstPartyIdentity`, `SystemAssignedIdentity` or `UserAssignedIdentity`. Defaults to `FirstPartyIdentity`. - :param pulumi.Input[bool] enable_automatic_failover: Enable automatic failover for this Cosmos DB account. - :param pulumi.Input[bool] enable_free_tier: Enable the Free Tier pricing option for this Cosmos DB account. Defaults to `false`. Changing this forces a new resource to be created. - :param pulumi.Input[bool] enable_multiple_write_locations: Enable multiple write locations for this Cosmos DB account. + :param pulumi.Input[bool] free_tier_enabled: Enable the Free Tier pricing option for this Cosmos DB account. Defaults to `false`. Changing this forces a new resource to be created. :param pulumi.Input['AccountIdentityArgs'] identity: An `identity` block as defined below. :param pulumi.Input[str] ip_range_filter: CosmosDB Firewall Support: This value specifies the set of IP addresses or IP address ranges in CIDR form to be included as the allowed list of client IPs for a given database account. IP addresses/ranges must be comma separated and must not contain any spaces. @@ -86,6 +88,7 @@ def __init__(__self__, *, :param pulumi.Input[str] location: Specifies the supported Azure location where the resource exists. Changing this forces a new resource to be created. :param pulumi.Input[str] minimal_tls_version: Specifies the minimal TLS version for the CosmosDB account. Possible values are: `Tls`, `Tls11`, and `Tls12`. Defaults to `Tls12`. :param pulumi.Input[str] mongo_server_version: The Server Version of a MongoDB account. Possible values are `4.2`, `4.0`, `3.6`, and `3.2`. + :param pulumi.Input[bool] multiple_write_locations_enabled: Enable multiple write locations for this Cosmos DB account. :param pulumi.Input[str] name: Specifies the name of the CosmosDB Account. Changing this forces a new resource to be created. :param pulumi.Input[bool] network_acl_bypass_for_azure_services: If Azure services can bypass ACLs. Defaults to `false`. :param pulumi.Input[Sequence[pulumi.Input[str]]] network_acl_bypass_ids: The list of resource Ids for Network Acl Bypass for this Cosmos DB account. @@ -107,6 +110,8 @@ def __init__(__self__, *, pulumi.set(__self__, "analytical_storage", analytical_storage) if analytical_storage_enabled is not None: pulumi.set(__self__, "analytical_storage_enabled", analytical_storage_enabled) + if automatic_failover_enabled is not None: + pulumi.set(__self__, "automatic_failover_enabled", automatic_failover_enabled) if backup is not None: pulumi.set(__self__, "backup", backup) if capabilities is not None: @@ -119,12 +124,23 @@ def __init__(__self__, *, pulumi.set(__self__, "create_mode", create_mode) if default_identity_type is not None: pulumi.set(__self__, "default_identity_type", default_identity_type) + if enable_automatic_failover is not None: + warnings.warn("""This property has been superseded by `automatic_failover_enabled` and will be removed in v4.0 of the AzureRM Provider""", DeprecationWarning) + pulumi.log.warn("""enable_automatic_failover is deprecated: This property has been superseded by `automatic_failover_enabled` and will be removed in v4.0 of the AzureRM Provider""") if enable_automatic_failover is not None: pulumi.set(__self__, "enable_automatic_failover", enable_automatic_failover) + if enable_free_tier is not None: + warnings.warn("""This property has been superseded by `free_tier_enabled` and will be removed in v4.0 of the AzureRM Provider""", DeprecationWarning) + pulumi.log.warn("""enable_free_tier is deprecated: This property has been superseded by `free_tier_enabled` and will be removed in v4.0 of the AzureRM Provider""") if enable_free_tier is not None: pulumi.set(__self__, "enable_free_tier", enable_free_tier) + if enable_multiple_write_locations is not None: + warnings.warn("""This property has been superseded by `multiple_write_locations_enabled` and will be removed in v4.0 of the AzureRM Provider""", DeprecationWarning) + pulumi.log.warn("""enable_multiple_write_locations is deprecated: This property has been superseded by `multiple_write_locations_enabled` and will be removed in v4.0 of the AzureRM Provider""") if enable_multiple_write_locations is not None: pulumi.set(__self__, "enable_multiple_write_locations", enable_multiple_write_locations) + if free_tier_enabled is not None: + pulumi.set(__self__, "free_tier_enabled", free_tier_enabled) if identity is not None: pulumi.set(__self__, "identity", identity) if ip_range_filter is not None: @@ -143,6 +159,8 @@ def __init__(__self__, *, pulumi.set(__self__, "minimal_tls_version", minimal_tls_version) if mongo_server_version is not None: pulumi.set(__self__, "mongo_server_version", mongo_server_version) + if multiple_write_locations_enabled is not None: + pulumi.set(__self__, "multiple_write_locations_enabled", multiple_write_locations_enabled) if name is not None: pulumi.set(__self__, "name", name) if network_acl_bypass_for_azure_services is not None: @@ -244,6 +262,18 @@ def analytical_storage_enabled(self) -> Optional[pulumi.Input[bool]]: def analytical_storage_enabled(self, value: Optional[pulumi.Input[bool]]): pulumi.set(self, "analytical_storage_enabled", value) + @property + @pulumi.getter(name="automaticFailoverEnabled") + def automatic_failover_enabled(self) -> Optional[pulumi.Input[bool]]: + """ + Enable automatic failover for this Cosmos DB account. + """ + return pulumi.get(self, "automatic_failover_enabled") + + @automatic_failover_enabled.setter + def automatic_failover_enabled(self, value: Optional[pulumi.Input[bool]]): + pulumi.set(self, "automatic_failover_enabled", value) + @property @pulumi.getter def backup(self) -> Optional[pulumi.Input['AccountBackupArgs']]: @@ -321,9 +351,9 @@ def default_identity_type(self, value: Optional[pulumi.Input[str]]): @property @pulumi.getter(name="enableAutomaticFailover") def enable_automatic_failover(self) -> Optional[pulumi.Input[bool]]: - """ - Enable automatic failover for this Cosmos DB account. - """ + warnings.warn("""This property has been superseded by `automatic_failover_enabled` and will be removed in v4.0 of the AzureRM Provider""", DeprecationWarning) + pulumi.log.warn("""enable_automatic_failover is deprecated: This property has been superseded by `automatic_failover_enabled` and will be removed in v4.0 of the AzureRM Provider""") + return pulumi.get(self, "enable_automatic_failover") @enable_automatic_failover.setter @@ -333,9 +363,9 @@ def enable_automatic_failover(self, value: Optional[pulumi.Input[bool]]): @property @pulumi.getter(name="enableFreeTier") def enable_free_tier(self) -> Optional[pulumi.Input[bool]]: - """ - Enable the Free Tier pricing option for this Cosmos DB account. Defaults to `false`. Changing this forces a new resource to be created. - """ + warnings.warn("""This property has been superseded by `free_tier_enabled` and will be removed in v4.0 of the AzureRM Provider""", DeprecationWarning) + pulumi.log.warn("""enable_free_tier is deprecated: This property has been superseded by `free_tier_enabled` and will be removed in v4.0 of the AzureRM Provider""") + return pulumi.get(self, "enable_free_tier") @enable_free_tier.setter @@ -345,15 +375,27 @@ def enable_free_tier(self, value: Optional[pulumi.Input[bool]]): @property @pulumi.getter(name="enableMultipleWriteLocations") def enable_multiple_write_locations(self) -> Optional[pulumi.Input[bool]]: - """ - Enable multiple write locations for this Cosmos DB account. - """ + warnings.warn("""This property has been superseded by `multiple_write_locations_enabled` and will be removed in v4.0 of the AzureRM Provider""", DeprecationWarning) + pulumi.log.warn("""enable_multiple_write_locations is deprecated: This property has been superseded by `multiple_write_locations_enabled` and will be removed in v4.0 of the AzureRM Provider""") + return pulumi.get(self, "enable_multiple_write_locations") @enable_multiple_write_locations.setter def enable_multiple_write_locations(self, value: Optional[pulumi.Input[bool]]): pulumi.set(self, "enable_multiple_write_locations", value) + @property + @pulumi.getter(name="freeTierEnabled") + def free_tier_enabled(self) -> Optional[pulumi.Input[bool]]: + """ + Enable the Free Tier pricing option for this Cosmos DB account. Defaults to `false`. Changing this forces a new resource to be created. + """ + return pulumi.get(self, "free_tier_enabled") + + @free_tier_enabled.setter + def free_tier_enabled(self, value: Optional[pulumi.Input[bool]]): + pulumi.set(self, "free_tier_enabled", value) + @property @pulumi.getter def identity(self) -> Optional[pulumi.Input['AccountIdentityArgs']]: @@ -470,6 +512,18 @@ def mongo_server_version(self) -> Optional[pulumi.Input[str]]: def mongo_server_version(self, value: Optional[pulumi.Input[str]]): pulumi.set(self, "mongo_server_version", value) + @property + @pulumi.getter(name="multipleWriteLocationsEnabled") + def multiple_write_locations_enabled(self) -> Optional[pulumi.Input[bool]]: + """ + Enable multiple write locations for this Cosmos DB account. + """ + return pulumi.get(self, "multiple_write_locations_enabled") + + @multiple_write_locations_enabled.setter + def multiple_write_locations_enabled(self, value: Optional[pulumi.Input[bool]]): + pulumi.set(self, "multiple_write_locations_enabled", value) + @property @pulumi.getter def name(self) -> Optional[pulumi.Input[str]]: @@ -575,6 +629,7 @@ def __init__(__self__, *, access_key_metadata_writes_enabled: Optional[pulumi.Input[bool]] = None, analytical_storage: Optional[pulumi.Input['AccountAnalyticalStorageArgs']] = None, analytical_storage_enabled: Optional[pulumi.Input[bool]] = None, + automatic_failover_enabled: Optional[pulumi.Input[bool]] = None, backup: Optional[pulumi.Input['AccountBackupArgs']] = None, capabilities: Optional[pulumi.Input[Sequence[pulumi.Input['AccountCapabilityArgs']]]] = None, capacity: Optional[pulumi.Input['AccountCapacityArgs']] = None, @@ -587,6 +642,7 @@ def __init__(__self__, *, enable_free_tier: Optional[pulumi.Input[bool]] = None, enable_multiple_write_locations: Optional[pulumi.Input[bool]] = None, endpoint: Optional[pulumi.Input[str]] = None, + free_tier_enabled: Optional[pulumi.Input[bool]] = None, geo_locations: Optional[pulumi.Input[Sequence[pulumi.Input['AccountGeoLocationArgs']]]] = None, identity: Optional[pulumi.Input['AccountIdentityArgs']] = None, ip_range_filter: Optional[pulumi.Input[str]] = None, @@ -597,6 +653,7 @@ def __init__(__self__, *, location: Optional[pulumi.Input[str]] = None, minimal_tls_version: Optional[pulumi.Input[str]] = None, mongo_server_version: Optional[pulumi.Input[str]] = None, + multiple_write_locations_enabled: Optional[pulumi.Input[bool]] = None, name: Optional[pulumi.Input[str]] = None, network_acl_bypass_for_azure_services: Optional[pulumi.Input[bool]] = None, network_acl_bypass_ids: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None, @@ -626,20 +683,18 @@ def __init__(__self__, *, :param pulumi.Input[bool] access_key_metadata_writes_enabled: Is write operations on metadata resources (databases, containers, throughput) via account keys enabled? Defaults to `true`. :param pulumi.Input['AccountAnalyticalStorageArgs'] analytical_storage: An `analytical_storage` block as defined below. :param pulumi.Input[bool] analytical_storage_enabled: Enable Analytical Storage option for this Cosmos DB account. Defaults to `false`. Enabling and then disabling analytical storage forces a new resource to be created. + :param pulumi.Input[bool] automatic_failover_enabled: Enable automatic failover for this Cosmos DB account. :param pulumi.Input['AccountBackupArgs'] backup: A `backup` block as defined below. :param pulumi.Input[Sequence[pulumi.Input['AccountCapabilityArgs']]] capabilities: The capabilities which should be enabled for this Cosmos DB account. Value is a `capabilities` block as defined below. :param pulumi.Input['AccountCapacityArgs'] capacity: A `capacity` block as defined below. - :param pulumi.Input[Sequence[pulumi.Input[str]]] connection_strings: A list of connection strings available for this CosmosDB account. :param pulumi.Input['AccountConsistencyPolicyArgs'] consistency_policy: Specifies one `consistency_policy` block as defined below, used to define the consistency policy for this CosmosDB account. :param pulumi.Input['AccountCorsRuleArgs'] cors_rule: A `cors_rule` block as defined below. :param pulumi.Input[str] create_mode: The creation mode for the CosmosDB Account. Possible values are `Default` and `Restore`. Changing this forces a new resource to be created. > **Note:** `create_mode` can only be defined when the `backup.type` is set to `Continuous`. :param pulumi.Input[str] default_identity_type: The default identity for accessing Key Vault. Possible values are `FirstPartyIdentity`, `SystemAssignedIdentity` or `UserAssignedIdentity`. Defaults to `FirstPartyIdentity`. - :param pulumi.Input[bool] enable_automatic_failover: Enable automatic failover for this Cosmos DB account. - :param pulumi.Input[bool] enable_free_tier: Enable the Free Tier pricing option for this Cosmos DB account. Defaults to `false`. Changing this forces a new resource to be created. - :param pulumi.Input[bool] enable_multiple_write_locations: Enable multiple write locations for this Cosmos DB account. :param pulumi.Input[str] endpoint: The endpoint used to connect to the CosmosDB account. + :param pulumi.Input[bool] free_tier_enabled: Enable the Free Tier pricing option for this Cosmos DB account. Defaults to `false`. Changing this forces a new resource to be created. :param pulumi.Input[Sequence[pulumi.Input['AccountGeoLocationArgs']]] geo_locations: Specifies a `geo_location` resource, used to define where data should be replicated with the `failover_priority` 0 specifying the primary location. Value is a `geo_location` block as defined below. :param pulumi.Input['AccountIdentityArgs'] identity: An `identity` block as defined below. :param pulumi.Input[str] ip_range_filter: CosmosDB Firewall Support: This value specifies the set of IP addresses or IP address ranges in CIDR form to be included as the allowed list of client IPs for a given database account. IP addresses/ranges must be comma separated and must not contain any spaces. @@ -658,6 +713,7 @@ def __init__(__self__, *, :param pulumi.Input[str] location: Specifies the supported Azure location where the resource exists. Changing this forces a new resource to be created. :param pulumi.Input[str] minimal_tls_version: Specifies the minimal TLS version for the CosmosDB account. Possible values are: `Tls`, `Tls11`, and `Tls12`. Defaults to `Tls12`. :param pulumi.Input[str] mongo_server_version: The Server Version of a MongoDB account. Possible values are `4.2`, `4.0`, `3.6`, and `3.2`. + :param pulumi.Input[bool] multiple_write_locations_enabled: Enable multiple write locations for this Cosmos DB account. :param pulumi.Input[str] name: Specifies the name of the CosmosDB Account. Changing this forces a new resource to be created. :param pulumi.Input[bool] network_acl_bypass_for_azure_services: If Azure services can bypass ACLs. Defaults to `false`. :param pulumi.Input[Sequence[pulumi.Input[str]]] network_acl_bypass_ids: The list of resource Ids for Network Acl Bypass for this Cosmos DB account. @@ -691,12 +747,17 @@ def __init__(__self__, *, pulumi.set(__self__, "analytical_storage", analytical_storage) if analytical_storage_enabled is not None: pulumi.set(__self__, "analytical_storage_enabled", analytical_storage_enabled) + if automatic_failover_enabled is not None: + pulumi.set(__self__, "automatic_failover_enabled", automatic_failover_enabled) if backup is not None: pulumi.set(__self__, "backup", backup) if capabilities is not None: pulumi.set(__self__, "capabilities", capabilities) if capacity is not None: pulumi.set(__self__, "capacity", capacity) + if connection_strings is not None: + warnings.warn("""This property has been superseded by the primary and secondary connection strings for sql, mongodb and readonly and will be removed in v4.0 of the AzureRM provider""", DeprecationWarning) + pulumi.log.warn("""connection_strings is deprecated: This property has been superseded by the primary and secondary connection strings for sql, mongodb and readonly and will be removed in v4.0 of the AzureRM provider""") if connection_strings is not None: pulumi.set(__self__, "connection_strings", connection_strings) if consistency_policy is not None: @@ -707,14 +768,25 @@ def __init__(__self__, *, pulumi.set(__self__, "create_mode", create_mode) if default_identity_type is not None: pulumi.set(__self__, "default_identity_type", default_identity_type) + if enable_automatic_failover is not None: + warnings.warn("""This property has been superseded by `automatic_failover_enabled` and will be removed in v4.0 of the AzureRM Provider""", DeprecationWarning) + pulumi.log.warn("""enable_automatic_failover is deprecated: This property has been superseded by `automatic_failover_enabled` and will be removed in v4.0 of the AzureRM Provider""") if enable_automatic_failover is not None: pulumi.set(__self__, "enable_automatic_failover", enable_automatic_failover) + if enable_free_tier is not None: + warnings.warn("""This property has been superseded by `free_tier_enabled` and will be removed in v4.0 of the AzureRM Provider""", DeprecationWarning) + pulumi.log.warn("""enable_free_tier is deprecated: This property has been superseded by `free_tier_enabled` and will be removed in v4.0 of the AzureRM Provider""") if enable_free_tier is not None: pulumi.set(__self__, "enable_free_tier", enable_free_tier) + if enable_multiple_write_locations is not None: + warnings.warn("""This property has been superseded by `multiple_write_locations_enabled` and will be removed in v4.0 of the AzureRM Provider""", DeprecationWarning) + pulumi.log.warn("""enable_multiple_write_locations is deprecated: This property has been superseded by `multiple_write_locations_enabled` and will be removed in v4.0 of the AzureRM Provider""") if enable_multiple_write_locations is not None: pulumi.set(__self__, "enable_multiple_write_locations", enable_multiple_write_locations) if endpoint is not None: pulumi.set(__self__, "endpoint", endpoint) + if free_tier_enabled is not None: + pulumi.set(__self__, "free_tier_enabled", free_tier_enabled) if geo_locations is not None: pulumi.set(__self__, "geo_locations", geo_locations) if identity is not None: @@ -735,6 +807,8 @@ def __init__(__self__, *, pulumi.set(__self__, "minimal_tls_version", minimal_tls_version) if mongo_server_version is not None: pulumi.set(__self__, "mongo_server_version", mongo_server_version) + if multiple_write_locations_enabled is not None: + pulumi.set(__self__, "multiple_write_locations_enabled", multiple_write_locations_enabled) if name is not None: pulumi.set(__self__, "name", name) if network_acl_bypass_for_azure_services is not None: @@ -820,6 +894,18 @@ def analytical_storage_enabled(self) -> Optional[pulumi.Input[bool]]: def analytical_storage_enabled(self, value: Optional[pulumi.Input[bool]]): pulumi.set(self, "analytical_storage_enabled", value) + @property + @pulumi.getter(name="automaticFailoverEnabled") + def automatic_failover_enabled(self) -> Optional[pulumi.Input[bool]]: + """ + Enable automatic failover for this Cosmos DB account. + """ + return pulumi.get(self, "automatic_failover_enabled") + + @automatic_failover_enabled.setter + def automatic_failover_enabled(self, value: Optional[pulumi.Input[bool]]): + pulumi.set(self, "automatic_failover_enabled", value) + @property @pulumi.getter def backup(self) -> Optional[pulumi.Input['AccountBackupArgs']]: @@ -859,9 +945,9 @@ def capacity(self, value: Optional[pulumi.Input['AccountCapacityArgs']]): @property @pulumi.getter(name="connectionStrings") def connection_strings(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]: - """ - A list of connection strings available for this CosmosDB account. - """ + warnings.warn("""This property has been superseded by the primary and secondary connection strings for sql, mongodb and readonly and will be removed in v4.0 of the AzureRM provider""", DeprecationWarning) + pulumi.log.warn("""connection_strings is deprecated: This property has been superseded by the primary and secondary connection strings for sql, mongodb and readonly and will be removed in v4.0 of the AzureRM provider""") + return pulumi.get(self, "connection_strings") @connection_strings.setter @@ -921,9 +1007,9 @@ def default_identity_type(self, value: Optional[pulumi.Input[str]]): @property @pulumi.getter(name="enableAutomaticFailover") def enable_automatic_failover(self) -> Optional[pulumi.Input[bool]]: - """ - Enable automatic failover for this Cosmos DB account. - """ + warnings.warn("""This property has been superseded by `automatic_failover_enabled` and will be removed in v4.0 of the AzureRM Provider""", DeprecationWarning) + pulumi.log.warn("""enable_automatic_failover is deprecated: This property has been superseded by `automatic_failover_enabled` and will be removed in v4.0 of the AzureRM Provider""") + return pulumi.get(self, "enable_automatic_failover") @enable_automatic_failover.setter @@ -933,9 +1019,9 @@ def enable_automatic_failover(self, value: Optional[pulumi.Input[bool]]): @property @pulumi.getter(name="enableFreeTier") def enable_free_tier(self) -> Optional[pulumi.Input[bool]]: - """ - Enable the Free Tier pricing option for this Cosmos DB account. Defaults to `false`. Changing this forces a new resource to be created. - """ + warnings.warn("""This property has been superseded by `free_tier_enabled` and will be removed in v4.0 of the AzureRM Provider""", DeprecationWarning) + pulumi.log.warn("""enable_free_tier is deprecated: This property has been superseded by `free_tier_enabled` and will be removed in v4.0 of the AzureRM Provider""") + return pulumi.get(self, "enable_free_tier") @enable_free_tier.setter @@ -945,9 +1031,9 @@ def enable_free_tier(self, value: Optional[pulumi.Input[bool]]): @property @pulumi.getter(name="enableMultipleWriteLocations") def enable_multiple_write_locations(self) -> Optional[pulumi.Input[bool]]: - """ - Enable multiple write locations for this Cosmos DB account. - """ + warnings.warn("""This property has been superseded by `multiple_write_locations_enabled` and will be removed in v4.0 of the AzureRM Provider""", DeprecationWarning) + pulumi.log.warn("""enable_multiple_write_locations is deprecated: This property has been superseded by `multiple_write_locations_enabled` and will be removed in v4.0 of the AzureRM Provider""") + return pulumi.get(self, "enable_multiple_write_locations") @enable_multiple_write_locations.setter @@ -966,6 +1052,18 @@ def endpoint(self) -> Optional[pulumi.Input[str]]: def endpoint(self, value: Optional[pulumi.Input[str]]): pulumi.set(self, "endpoint", value) + @property + @pulumi.getter(name="freeTierEnabled") + def free_tier_enabled(self) -> Optional[pulumi.Input[bool]]: + """ + Enable the Free Tier pricing option for this Cosmos DB account. Defaults to `false`. Changing this forces a new resource to be created. + """ + return pulumi.get(self, "free_tier_enabled") + + @free_tier_enabled.setter + def free_tier_enabled(self, value: Optional[pulumi.Input[bool]]): + pulumi.set(self, "free_tier_enabled", value) + @property @pulumi.getter(name="geoLocations") def geo_locations(self) -> Optional[pulumi.Input[Sequence[pulumi.Input['AccountGeoLocationArgs']]]]: @@ -1094,6 +1192,18 @@ def mongo_server_version(self) -> Optional[pulumi.Input[str]]: def mongo_server_version(self, value: Optional[pulumi.Input[str]]): pulumi.set(self, "mongo_server_version", value) + @property + @pulumi.getter(name="multipleWriteLocationsEnabled") + def multiple_write_locations_enabled(self) -> Optional[pulumi.Input[bool]]: + """ + Enable multiple write locations for this Cosmos DB account. + """ + return pulumi.get(self, "multiple_write_locations_enabled") + + @multiple_write_locations_enabled.setter + def multiple_write_locations_enabled(self, value: Optional[pulumi.Input[bool]]): + pulumi.set(self, "multiple_write_locations_enabled", value) + @property @pulumi.getter def name(self) -> Optional[pulumi.Input[str]]: @@ -1393,6 +1503,7 @@ def __init__(__self__, access_key_metadata_writes_enabled: Optional[pulumi.Input[bool]] = None, analytical_storage: Optional[pulumi.Input[pulumi.InputType['AccountAnalyticalStorageArgs']]] = None, analytical_storage_enabled: Optional[pulumi.Input[bool]] = None, + automatic_failover_enabled: Optional[pulumi.Input[bool]] = None, backup: Optional[pulumi.Input[pulumi.InputType['AccountBackupArgs']]] = None, capabilities: Optional[pulumi.Input[Sequence[pulumi.Input[pulumi.InputType['AccountCapabilityArgs']]]]] = None, capacity: Optional[pulumi.Input[pulumi.InputType['AccountCapacityArgs']]] = None, @@ -1403,6 +1514,7 @@ def __init__(__self__, enable_automatic_failover: Optional[pulumi.Input[bool]] = None, enable_free_tier: Optional[pulumi.Input[bool]] = None, enable_multiple_write_locations: Optional[pulumi.Input[bool]] = None, + free_tier_enabled: Optional[pulumi.Input[bool]] = None, geo_locations: Optional[pulumi.Input[Sequence[pulumi.Input[pulumi.InputType['AccountGeoLocationArgs']]]]] = None, identity: Optional[pulumi.Input[pulumi.InputType['AccountIdentityArgs']]] = None, ip_range_filter: Optional[pulumi.Input[str]] = None, @@ -1413,6 +1525,7 @@ def __init__(__self__, location: Optional[pulumi.Input[str]] = None, minimal_tls_version: Optional[pulumi.Input[str]] = None, mongo_server_version: Optional[pulumi.Input[str]] = None, + multiple_write_locations_enabled: Optional[pulumi.Input[bool]] = None, name: Optional[pulumi.Input[str]] = None, network_acl_bypass_for_azure_services: Optional[pulumi.Input[bool]] = None, network_acl_bypass_ids: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None, @@ -1533,6 +1646,7 @@ def __init__(__self__, :param pulumi.Input[bool] access_key_metadata_writes_enabled: Is write operations on metadata resources (databases, containers, throughput) via account keys enabled? Defaults to `true`. :param pulumi.Input[pulumi.InputType['AccountAnalyticalStorageArgs']] analytical_storage: An `analytical_storage` block as defined below. :param pulumi.Input[bool] analytical_storage_enabled: Enable Analytical Storage option for this Cosmos DB account. Defaults to `false`. Enabling and then disabling analytical storage forces a new resource to be created. + :param pulumi.Input[bool] automatic_failover_enabled: Enable automatic failover for this Cosmos DB account. :param pulumi.Input[pulumi.InputType['AccountBackupArgs']] backup: A `backup` block as defined below. :param pulumi.Input[Sequence[pulumi.Input[pulumi.InputType['AccountCapabilityArgs']]]] capabilities: The capabilities which should be enabled for this Cosmos DB account. Value is a `capabilities` block as defined below. :param pulumi.Input[pulumi.InputType['AccountCapacityArgs']] capacity: A `capacity` block as defined below. @@ -1542,9 +1656,7 @@ def __init__(__self__, > **Note:** `create_mode` can only be defined when the `backup.type` is set to `Continuous`. :param pulumi.Input[str] default_identity_type: The default identity for accessing Key Vault. Possible values are `FirstPartyIdentity`, `SystemAssignedIdentity` or `UserAssignedIdentity`. Defaults to `FirstPartyIdentity`. - :param pulumi.Input[bool] enable_automatic_failover: Enable automatic failover for this Cosmos DB account. - :param pulumi.Input[bool] enable_free_tier: Enable the Free Tier pricing option for this Cosmos DB account. Defaults to `false`. Changing this forces a new resource to be created. - :param pulumi.Input[bool] enable_multiple_write_locations: Enable multiple write locations for this Cosmos DB account. + :param pulumi.Input[bool] free_tier_enabled: Enable the Free Tier pricing option for this Cosmos DB account. Defaults to `false`. Changing this forces a new resource to be created. :param pulumi.Input[Sequence[pulumi.Input[pulumi.InputType['AccountGeoLocationArgs']]]] geo_locations: Specifies a `geo_location` resource, used to define where data should be replicated with the `failover_priority` 0 specifying the primary location. Value is a `geo_location` block as defined below. :param pulumi.Input[pulumi.InputType['AccountIdentityArgs']] identity: An `identity` block as defined below. :param pulumi.Input[str] ip_range_filter: CosmosDB Firewall Support: This value specifies the set of IP addresses or IP address ranges in CIDR form to be included as the allowed list of client IPs for a given database account. IP addresses/ranges must be comma separated and must not contain any spaces. @@ -1563,6 +1675,7 @@ def __init__(__self__, :param pulumi.Input[str] location: Specifies the supported Azure location where the resource exists. Changing this forces a new resource to be created. :param pulumi.Input[str] minimal_tls_version: Specifies the minimal TLS version for the CosmosDB account. Possible values are: `Tls`, `Tls11`, and `Tls12`. Defaults to `Tls12`. :param pulumi.Input[str] mongo_server_version: The Server Version of a MongoDB account. Possible values are `4.2`, `4.0`, `3.6`, and `3.2`. + :param pulumi.Input[bool] multiple_write_locations_enabled: Enable multiple write locations for this Cosmos DB account. :param pulumi.Input[str] name: Specifies the name of the CosmosDB Account. Changing this forces a new resource to be created. :param pulumi.Input[bool] network_acl_bypass_for_azure_services: If Azure services can bypass ACLs. Defaults to `false`. :param pulumi.Input[Sequence[pulumi.Input[str]]] network_acl_bypass_ids: The list of resource Ids for Network Acl Bypass for this Cosmos DB account. @@ -1704,6 +1817,7 @@ def _internal_init(__self__, access_key_metadata_writes_enabled: Optional[pulumi.Input[bool]] = None, analytical_storage: Optional[pulumi.Input[pulumi.InputType['AccountAnalyticalStorageArgs']]] = None, analytical_storage_enabled: Optional[pulumi.Input[bool]] = None, + automatic_failover_enabled: Optional[pulumi.Input[bool]] = None, backup: Optional[pulumi.Input[pulumi.InputType['AccountBackupArgs']]] = None, capabilities: Optional[pulumi.Input[Sequence[pulumi.Input[pulumi.InputType['AccountCapabilityArgs']]]]] = None, capacity: Optional[pulumi.Input[pulumi.InputType['AccountCapacityArgs']]] = None, @@ -1714,6 +1828,7 @@ def _internal_init(__self__, enable_automatic_failover: Optional[pulumi.Input[bool]] = None, enable_free_tier: Optional[pulumi.Input[bool]] = None, enable_multiple_write_locations: Optional[pulumi.Input[bool]] = None, + free_tier_enabled: Optional[pulumi.Input[bool]] = None, geo_locations: Optional[pulumi.Input[Sequence[pulumi.Input[pulumi.InputType['AccountGeoLocationArgs']]]]] = None, identity: Optional[pulumi.Input[pulumi.InputType['AccountIdentityArgs']]] = None, ip_range_filter: Optional[pulumi.Input[str]] = None, @@ -1724,6 +1839,7 @@ def _internal_init(__self__, location: Optional[pulumi.Input[str]] = None, minimal_tls_version: Optional[pulumi.Input[str]] = None, mongo_server_version: Optional[pulumi.Input[str]] = None, + multiple_write_locations_enabled: Optional[pulumi.Input[bool]] = None, name: Optional[pulumi.Input[str]] = None, network_acl_bypass_for_azure_services: Optional[pulumi.Input[bool]] = None, network_acl_bypass_ids: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None, @@ -1746,6 +1862,7 @@ def _internal_init(__self__, __props__.__dict__["access_key_metadata_writes_enabled"] = access_key_metadata_writes_enabled __props__.__dict__["analytical_storage"] = analytical_storage __props__.__dict__["analytical_storage_enabled"] = analytical_storage_enabled + __props__.__dict__["automatic_failover_enabled"] = automatic_failover_enabled __props__.__dict__["backup"] = backup __props__.__dict__["capabilities"] = capabilities __props__.__dict__["capacity"] = capacity @@ -1758,6 +1875,7 @@ def _internal_init(__self__, __props__.__dict__["enable_automatic_failover"] = enable_automatic_failover __props__.__dict__["enable_free_tier"] = enable_free_tier __props__.__dict__["enable_multiple_write_locations"] = enable_multiple_write_locations + __props__.__dict__["free_tier_enabled"] = free_tier_enabled if geo_locations is None and not opts.urn: raise TypeError("Missing required property 'geo_locations'") __props__.__dict__["geo_locations"] = geo_locations @@ -1770,6 +1888,7 @@ def _internal_init(__self__, __props__.__dict__["location"] = location __props__.__dict__["minimal_tls_version"] = minimal_tls_version __props__.__dict__["mongo_server_version"] = mongo_server_version + __props__.__dict__["multiple_write_locations_enabled"] = multiple_write_locations_enabled __props__.__dict__["name"] = name __props__.__dict__["network_acl_bypass_for_azure_services"] = network_acl_bypass_for_azure_services __props__.__dict__["network_acl_bypass_ids"] = network_acl_bypass_ids @@ -1815,6 +1934,7 @@ def get(resource_name: str, access_key_metadata_writes_enabled: Optional[pulumi.Input[bool]] = None, analytical_storage: Optional[pulumi.Input[pulumi.InputType['AccountAnalyticalStorageArgs']]] = None, analytical_storage_enabled: Optional[pulumi.Input[bool]] = None, + automatic_failover_enabled: Optional[pulumi.Input[bool]] = None, backup: Optional[pulumi.Input[pulumi.InputType['AccountBackupArgs']]] = None, capabilities: Optional[pulumi.Input[Sequence[pulumi.Input[pulumi.InputType['AccountCapabilityArgs']]]]] = None, capacity: Optional[pulumi.Input[pulumi.InputType['AccountCapacityArgs']]] = None, @@ -1827,6 +1947,7 @@ def get(resource_name: str, enable_free_tier: Optional[pulumi.Input[bool]] = None, enable_multiple_write_locations: Optional[pulumi.Input[bool]] = None, endpoint: Optional[pulumi.Input[str]] = None, + free_tier_enabled: Optional[pulumi.Input[bool]] = None, geo_locations: Optional[pulumi.Input[Sequence[pulumi.Input[pulumi.InputType['AccountGeoLocationArgs']]]]] = None, identity: Optional[pulumi.Input[pulumi.InputType['AccountIdentityArgs']]] = None, ip_range_filter: Optional[pulumi.Input[str]] = None, @@ -1837,6 +1958,7 @@ def get(resource_name: str, location: Optional[pulumi.Input[str]] = None, minimal_tls_version: Optional[pulumi.Input[str]] = None, mongo_server_version: Optional[pulumi.Input[str]] = None, + multiple_write_locations_enabled: Optional[pulumi.Input[bool]] = None, name: Optional[pulumi.Input[str]] = None, network_acl_bypass_for_azure_services: Optional[pulumi.Input[bool]] = None, network_acl_bypass_ids: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None, @@ -1871,20 +1993,18 @@ def get(resource_name: str, :param pulumi.Input[bool] access_key_metadata_writes_enabled: Is write operations on metadata resources (databases, containers, throughput) via account keys enabled? Defaults to `true`. :param pulumi.Input[pulumi.InputType['AccountAnalyticalStorageArgs']] analytical_storage: An `analytical_storage` block as defined below. :param pulumi.Input[bool] analytical_storage_enabled: Enable Analytical Storage option for this Cosmos DB account. Defaults to `false`. Enabling and then disabling analytical storage forces a new resource to be created. + :param pulumi.Input[bool] automatic_failover_enabled: Enable automatic failover for this Cosmos DB account. :param pulumi.Input[pulumi.InputType['AccountBackupArgs']] backup: A `backup` block as defined below. :param pulumi.Input[Sequence[pulumi.Input[pulumi.InputType['AccountCapabilityArgs']]]] capabilities: The capabilities which should be enabled for this Cosmos DB account. Value is a `capabilities` block as defined below. :param pulumi.Input[pulumi.InputType['AccountCapacityArgs']] capacity: A `capacity` block as defined below. - :param pulumi.Input[Sequence[pulumi.Input[str]]] connection_strings: A list of connection strings available for this CosmosDB account. :param pulumi.Input[pulumi.InputType['AccountConsistencyPolicyArgs']] consistency_policy: Specifies one `consistency_policy` block as defined below, used to define the consistency policy for this CosmosDB account. :param pulumi.Input[pulumi.InputType['AccountCorsRuleArgs']] cors_rule: A `cors_rule` block as defined below. :param pulumi.Input[str] create_mode: The creation mode for the CosmosDB Account. Possible values are `Default` and `Restore`. Changing this forces a new resource to be created. > **Note:** `create_mode` can only be defined when the `backup.type` is set to `Continuous`. :param pulumi.Input[str] default_identity_type: The default identity for accessing Key Vault. Possible values are `FirstPartyIdentity`, `SystemAssignedIdentity` or `UserAssignedIdentity`. Defaults to `FirstPartyIdentity`. - :param pulumi.Input[bool] enable_automatic_failover: Enable automatic failover for this Cosmos DB account. - :param pulumi.Input[bool] enable_free_tier: Enable the Free Tier pricing option for this Cosmos DB account. Defaults to `false`. Changing this forces a new resource to be created. - :param pulumi.Input[bool] enable_multiple_write_locations: Enable multiple write locations for this Cosmos DB account. :param pulumi.Input[str] endpoint: The endpoint used to connect to the CosmosDB account. + :param pulumi.Input[bool] free_tier_enabled: Enable the Free Tier pricing option for this Cosmos DB account. Defaults to `false`. Changing this forces a new resource to be created. :param pulumi.Input[Sequence[pulumi.Input[pulumi.InputType['AccountGeoLocationArgs']]]] geo_locations: Specifies a `geo_location` resource, used to define where data should be replicated with the `failover_priority` 0 specifying the primary location. Value is a `geo_location` block as defined below. :param pulumi.Input[pulumi.InputType['AccountIdentityArgs']] identity: An `identity` block as defined below. :param pulumi.Input[str] ip_range_filter: CosmosDB Firewall Support: This value specifies the set of IP addresses or IP address ranges in CIDR form to be included as the allowed list of client IPs for a given database account. IP addresses/ranges must be comma separated and must not contain any spaces. @@ -1903,6 +2023,7 @@ def get(resource_name: str, :param pulumi.Input[str] location: Specifies the supported Azure location where the resource exists. Changing this forces a new resource to be created. :param pulumi.Input[str] minimal_tls_version: Specifies the minimal TLS version for the CosmosDB account. Possible values are: `Tls`, `Tls11`, and `Tls12`. Defaults to `Tls12`. :param pulumi.Input[str] mongo_server_version: The Server Version of a MongoDB account. Possible values are `4.2`, `4.0`, `3.6`, and `3.2`. + :param pulumi.Input[bool] multiple_write_locations_enabled: Enable multiple write locations for this Cosmos DB account. :param pulumi.Input[str] name: Specifies the name of the CosmosDB Account. Changing this forces a new resource to be created. :param pulumi.Input[bool] network_acl_bypass_for_azure_services: If Azure services can bypass ACLs. Defaults to `false`. :param pulumi.Input[Sequence[pulumi.Input[str]]] network_acl_bypass_ids: The list of resource Ids for Network Acl Bypass for this Cosmos DB account. @@ -1937,6 +2058,7 @@ def get(resource_name: str, __props__.__dict__["access_key_metadata_writes_enabled"] = access_key_metadata_writes_enabled __props__.__dict__["analytical_storage"] = analytical_storage __props__.__dict__["analytical_storage_enabled"] = analytical_storage_enabled + __props__.__dict__["automatic_failover_enabled"] = automatic_failover_enabled __props__.__dict__["backup"] = backup __props__.__dict__["capabilities"] = capabilities __props__.__dict__["capacity"] = capacity @@ -1949,6 +2071,7 @@ def get(resource_name: str, __props__.__dict__["enable_free_tier"] = enable_free_tier __props__.__dict__["enable_multiple_write_locations"] = enable_multiple_write_locations __props__.__dict__["endpoint"] = endpoint + __props__.__dict__["free_tier_enabled"] = free_tier_enabled __props__.__dict__["geo_locations"] = geo_locations __props__.__dict__["identity"] = identity __props__.__dict__["ip_range_filter"] = ip_range_filter @@ -1959,6 +2082,7 @@ def get(resource_name: str, __props__.__dict__["location"] = location __props__.__dict__["minimal_tls_version"] = minimal_tls_version __props__.__dict__["mongo_server_version"] = mongo_server_version + __props__.__dict__["multiple_write_locations_enabled"] = multiple_write_locations_enabled __props__.__dict__["name"] = name __props__.__dict__["network_acl_bypass_for_azure_services"] = network_acl_bypass_for_azure_services __props__.__dict__["network_acl_bypass_ids"] = network_acl_bypass_ids @@ -2009,6 +2133,14 @@ def analytical_storage_enabled(self) -> pulumi.Output[Optional[bool]]: """ return pulumi.get(self, "analytical_storage_enabled") + @property + @pulumi.getter(name="automaticFailoverEnabled") + def automatic_failover_enabled(self) -> pulumi.Output[bool]: + """ + Enable automatic failover for this Cosmos DB account. + """ + return pulumi.get(self, "automatic_failover_enabled") + @property @pulumi.getter def backup(self) -> pulumi.Output['outputs.AccountBackup']: @@ -2036,9 +2168,9 @@ def capacity(self) -> pulumi.Output['outputs.AccountCapacity']: @property @pulumi.getter(name="connectionStrings") def connection_strings(self) -> pulumi.Output[Sequence[str]]: - """ - A list of connection strings available for this CosmosDB account. - """ + warnings.warn("""This property has been superseded by the primary and secondary connection strings for sql, mongodb and readonly and will be removed in v4.0 of the AzureRM provider""", DeprecationWarning) + pulumi.log.warn("""connection_strings is deprecated: This property has been superseded by the primary and secondary connection strings for sql, mongodb and readonly and will be removed in v4.0 of the AzureRM provider""") + return pulumi.get(self, "connection_strings") @property @@ -2077,26 +2209,26 @@ def default_identity_type(self) -> pulumi.Output[Optional[str]]: @property @pulumi.getter(name="enableAutomaticFailover") - def enable_automatic_failover(self) -> pulumi.Output[Optional[bool]]: - """ - Enable automatic failover for this Cosmos DB account. - """ + def enable_automatic_failover(self) -> pulumi.Output[bool]: + warnings.warn("""This property has been superseded by `automatic_failover_enabled` and will be removed in v4.0 of the AzureRM Provider""", DeprecationWarning) + pulumi.log.warn("""enable_automatic_failover is deprecated: This property has been superseded by `automatic_failover_enabled` and will be removed in v4.0 of the AzureRM Provider""") + return pulumi.get(self, "enable_automatic_failover") @property @pulumi.getter(name="enableFreeTier") - def enable_free_tier(self) -> pulumi.Output[Optional[bool]]: - """ - Enable the Free Tier pricing option for this Cosmos DB account. Defaults to `false`. Changing this forces a new resource to be created. - """ + def enable_free_tier(self) -> pulumi.Output[bool]: + warnings.warn("""This property has been superseded by `free_tier_enabled` and will be removed in v4.0 of the AzureRM Provider""", DeprecationWarning) + pulumi.log.warn("""enable_free_tier is deprecated: This property has been superseded by `free_tier_enabled` and will be removed in v4.0 of the AzureRM Provider""") + return pulumi.get(self, "enable_free_tier") @property @pulumi.getter(name="enableMultipleWriteLocations") - def enable_multiple_write_locations(self) -> pulumi.Output[Optional[bool]]: - """ - Enable multiple write locations for this Cosmos DB account. - """ + def enable_multiple_write_locations(self) -> pulumi.Output[bool]: + warnings.warn("""This property has been superseded by `multiple_write_locations_enabled` and will be removed in v4.0 of the AzureRM Provider""", DeprecationWarning) + pulumi.log.warn("""enable_multiple_write_locations is deprecated: This property has been superseded by `multiple_write_locations_enabled` and will be removed in v4.0 of the AzureRM Provider""") + return pulumi.get(self, "enable_multiple_write_locations") @property @@ -2107,6 +2239,14 @@ def endpoint(self) -> pulumi.Output[str]: """ return pulumi.get(self, "endpoint") + @property + @pulumi.getter(name="freeTierEnabled") + def free_tier_enabled(self) -> pulumi.Output[bool]: + """ + Enable the Free Tier pricing option for this Cosmos DB account. Defaults to `false`. Changing this forces a new resource to be created. + """ + return pulumi.get(self, "free_tier_enabled") + @property @pulumi.getter(name="geoLocations") def geo_locations(self) -> pulumi.Output[Sequence['outputs.AccountGeoLocation']]: @@ -2195,6 +2335,14 @@ def mongo_server_version(self) -> pulumi.Output[str]: """ return pulumi.get(self, "mongo_server_version") + @property + @pulumi.getter(name="multipleWriteLocationsEnabled") + def multiple_write_locations_enabled(self) -> pulumi.Output[bool]: + """ + Enable multiple write locations for this Cosmos DB account. + """ + return pulumi.get(self, "multiple_write_locations_enabled") + @property @pulumi.getter def name(self) -> pulumi.Output[str]: diff --git a/sdk/python/pulumi_azure/cosmosdb/get_account.py b/sdk/python/pulumi_azure/cosmosdb/get_account.py index 523f9847f1..4e6704e743 100644 --- a/sdk/python/pulumi_azure/cosmosdb/get_account.py +++ b/sdk/python/pulumi_azure/cosmosdb/get_account.py @@ -22,7 +22,10 @@ class GetAccountResult: """ A collection of values returned by getAccount. """ - def __init__(__self__, capabilities=None, connection_strings=None, consistency_policies=None, enable_automatic_failover=None, enable_free_tier=None, enable_multiple_write_locations=None, endpoint=None, geo_locations=None, id=None, ip_range_filter=None, is_virtual_network_filter_enabled=None, key_vault_key_id=None, kind=None, location=None, name=None, offer_type=None, primary_key=None, primary_mongodb_connection_string=None, primary_readonly_key=None, primary_readonly_mongodb_connection_string=None, primary_readonly_sql_connection_string=None, primary_sql_connection_string=None, read_endpoints=None, resource_group_name=None, secondary_key=None, secondary_mongodb_connection_string=None, secondary_readonly_key=None, secondary_readonly_mongodb_connection_string=None, secondary_readonly_sql_connection_string=None, secondary_sql_connection_string=None, tags=None, virtual_network_rules=None, write_endpoints=None): + def __init__(__self__, automatic_failover_enabled=None, capabilities=None, connection_strings=None, consistency_policies=None, enable_automatic_failover=None, enable_free_tier=None, enable_multiple_write_locations=None, endpoint=None, free_tier_enabled=None, geo_locations=None, id=None, ip_range_filter=None, is_virtual_network_filter_enabled=None, key_vault_key_id=None, kind=None, location=None, multiple_write_locations_enabled=None, name=None, offer_type=None, primary_key=None, primary_mongodb_connection_string=None, primary_readonly_key=None, primary_readonly_mongodb_connection_string=None, primary_readonly_sql_connection_string=None, primary_sql_connection_string=None, read_endpoints=None, resource_group_name=None, secondary_key=None, secondary_mongodb_connection_string=None, secondary_readonly_key=None, secondary_readonly_mongodb_connection_string=None, secondary_readonly_sql_connection_string=None, secondary_sql_connection_string=None, tags=None, virtual_network_rules=None, write_endpoints=None): + if automatic_failover_enabled and not isinstance(automatic_failover_enabled, bool): + raise TypeError("Expected argument 'automatic_failover_enabled' to be a bool") + pulumi.set(__self__, "automatic_failover_enabled", automatic_failover_enabled) if capabilities and not isinstance(capabilities, list): raise TypeError("Expected argument 'capabilities' to be a list") pulumi.set(__self__, "capabilities", capabilities) @@ -44,6 +47,9 @@ def __init__(__self__, capabilities=None, connection_strings=None, consistency_p if endpoint and not isinstance(endpoint, str): raise TypeError("Expected argument 'endpoint' to be a str") pulumi.set(__self__, "endpoint", endpoint) + if free_tier_enabled and not isinstance(free_tier_enabled, bool): + raise TypeError("Expected argument 'free_tier_enabled' to be a bool") + pulumi.set(__self__, "free_tier_enabled", free_tier_enabled) if geo_locations and not isinstance(geo_locations, list): raise TypeError("Expected argument 'geo_locations' to be a list") pulumi.set(__self__, "geo_locations", geo_locations) @@ -65,6 +71,9 @@ def __init__(__self__, capabilities=None, connection_strings=None, consistency_p if location and not isinstance(location, str): raise TypeError("Expected argument 'location' to be a str") pulumi.set(__self__, "location", location) + if multiple_write_locations_enabled and not isinstance(multiple_write_locations_enabled, bool): + raise TypeError("Expected argument 'multiple_write_locations_enabled' to be a bool") + pulumi.set(__self__, "multiple_write_locations_enabled", multiple_write_locations_enabled) if name and not isinstance(name, str): raise TypeError("Expected argument 'name' to be a str") pulumi.set(__self__, "name", name) @@ -123,6 +132,14 @@ def __init__(__self__, capabilities=None, connection_strings=None, consistency_p raise TypeError("Expected argument 'write_endpoints' to be a list") pulumi.set(__self__, "write_endpoints", write_endpoints) + @property + @pulumi.getter(name="automaticFailoverEnabled") + def automatic_failover_enabled(self) -> bool: + """ + If automatic failover is enabled for this CosmosDB Account. + """ + return pulumi.get(self, "automatic_failover_enabled") + @property @pulumi.getter def capabilities(self) -> Sequence['outputs.GetAccountCapabilityResult']: @@ -134,9 +151,9 @@ def capabilities(self) -> Sequence['outputs.GetAccountCapabilityResult']: @property @pulumi.getter(name="connectionStrings") def connection_strings(self) -> Sequence[str]: - """ - A list of connection strings available for this CosmosDB account. - """ + warnings.warn("""This property has been superseded by the primary and secondary connection strings for sql, mongodb and readonly and will be removed in v4.0 of the AzureRM provider""", DeprecationWarning) + pulumi.log.warn("""connection_strings is deprecated: This property has been superseded by the primary and secondary connection strings for sql, mongodb and readonly and will be removed in v4.0 of the AzureRM provider""") + return pulumi.get(self, "connection_strings") @property @@ -147,25 +164,25 @@ def consistency_policies(self) -> Sequence['outputs.GetAccountConsistencyPolicyR @property @pulumi.getter(name="enableAutomaticFailover") def enable_automatic_failover(self) -> bool: - """ - If automatic failover is enabled for this CosmosDB Account. - """ + warnings.warn("""This property has been renamed to `automatic_failover_enabled` and will be removed in v4.0 of the AzureRM provider""", DeprecationWarning) + pulumi.log.warn("""enable_automatic_failover is deprecated: This property has been renamed to `automatic_failover_enabled` and will be removed in v4.0 of the AzureRM provider""") + return pulumi.get(self, "enable_automatic_failover") @property @pulumi.getter(name="enableFreeTier") def enable_free_tier(self) -> bool: - """ - If Free Tier pricing option is enabled for this CosmosDB Account. You can have up to one free tier Azure Cosmos DB account per Azure subscription. - """ + warnings.warn("""This property has been renamed to `free_tier_enabled` and will be removed in v4.0 of the AzureRM provider""", DeprecationWarning) + pulumi.log.warn("""enable_free_tier is deprecated: This property has been renamed to `free_tier_enabled` and will be removed in v4.0 of the AzureRM provider""") + return pulumi.get(self, "enable_free_tier") @property @pulumi.getter(name="enableMultipleWriteLocations") def enable_multiple_write_locations(self) -> bool: - """ - If multiple write locations are enabled for this Cosmos DB account. - """ + warnings.warn("""This property has been renamed to `multiple_write_locations_enabled` and will be removed in v4.0 of the AzureRM provider""", DeprecationWarning) + pulumi.log.warn("""enable_multiple_write_locations is deprecated: This property has been renamed to `multiple_write_locations_enabled` and will be removed in v4.0 of the AzureRM provider""") + return pulumi.get(self, "enable_multiple_write_locations") @property @@ -176,6 +193,14 @@ def endpoint(self) -> str: """ return pulumi.get(self, "endpoint") + @property + @pulumi.getter(name="freeTierEnabled") + def free_tier_enabled(self) -> bool: + """ + If Free Tier pricing option is enabled for this CosmosDB Account. You can have up to one free tier Azure Cosmos DB account per Azure subscription. + """ + return pulumi.get(self, "free_tier_enabled") + @property @pulumi.getter(name="geoLocations") def geo_locations(self) -> Sequence['outputs.GetAccountGeoLocationResult']: @@ -229,6 +254,14 @@ def location(self) -> str: """ return pulumi.get(self, "location") + @property + @pulumi.getter(name="multipleWriteLocationsEnabled") + def multiple_write_locations_enabled(self) -> bool: + """ + If multiple write locations are enabled for this Cosmos DB account. + """ + return pulumi.get(self, "multiple_write_locations_enabled") + @property @pulumi.getter def name(self) -> str: @@ -382,6 +415,7 @@ def __await__(self): if False: yield self return GetAccountResult( + automatic_failover_enabled=self.automatic_failover_enabled, capabilities=self.capabilities, connection_strings=self.connection_strings, consistency_policies=self.consistency_policies, @@ -389,6 +423,7 @@ def __await__(self): enable_free_tier=self.enable_free_tier, enable_multiple_write_locations=self.enable_multiple_write_locations, endpoint=self.endpoint, + free_tier_enabled=self.free_tier_enabled, geo_locations=self.geo_locations, id=self.id, ip_range_filter=self.ip_range_filter, @@ -396,6 +431,7 @@ def __await__(self): key_vault_key_id=self.key_vault_key_id, kind=self.kind, location=self.location, + multiple_write_locations_enabled=self.multiple_write_locations_enabled, name=self.name, offer_type=self.offer_type, primary_key=self.primary_key, @@ -447,6 +483,7 @@ def get_account(name: Optional[str] = None, __ret__ = pulumi.runtime.invoke('azure:cosmosdb/getAccount:getAccount', __args__, opts=opts, typ=GetAccountResult).value return AwaitableGetAccountResult( + automatic_failover_enabled=pulumi.get(__ret__, 'automatic_failover_enabled'), capabilities=pulumi.get(__ret__, 'capabilities'), connection_strings=pulumi.get(__ret__, 'connection_strings'), consistency_policies=pulumi.get(__ret__, 'consistency_policies'), @@ -454,6 +491,7 @@ def get_account(name: Optional[str] = None, enable_free_tier=pulumi.get(__ret__, 'enable_free_tier'), enable_multiple_write_locations=pulumi.get(__ret__, 'enable_multiple_write_locations'), endpoint=pulumi.get(__ret__, 'endpoint'), + free_tier_enabled=pulumi.get(__ret__, 'free_tier_enabled'), geo_locations=pulumi.get(__ret__, 'geo_locations'), id=pulumi.get(__ret__, 'id'), ip_range_filter=pulumi.get(__ret__, 'ip_range_filter'), @@ -461,6 +499,7 @@ def get_account(name: Optional[str] = None, key_vault_key_id=pulumi.get(__ret__, 'key_vault_key_id'), kind=pulumi.get(__ret__, 'kind'), location=pulumi.get(__ret__, 'location'), + multiple_write_locations_enabled=pulumi.get(__ret__, 'multiple_write_locations_enabled'), name=pulumi.get(__ret__, 'name'), offer_type=pulumi.get(__ret__, 'offer_type'), primary_key=pulumi.get(__ret__, 'primary_key'), diff --git a/sdk/python/pulumi_azure/keyvault/certifiate.py b/sdk/python/pulumi_azure/keyvault/certifiate.py index 83bdfaa336..6e6b6d3fac 100644 --- a/sdk/python/pulumi_azure/keyvault/certifiate.py +++ b/sdk/python/pulumi_azure/keyvault/certifiate.py @@ -375,11 +375,6 @@ def __init__(__self__, """ Manages a Key Vault Certificate. - <<<<<<< HEAD - > **Note:** The Azure Provider includes a Feature Toggle which will purge a Key Vault Certificate resource on destroy, rather than the default soft-delete. See `purge_soft_deleted_certificates_on_destroy` for more information. - - ======= - > > > > > > > 8d78c87098 (Update-documentation) ## Example Usage ### Importing A PFX) @@ -597,11 +592,6 @@ def __init__(__self__, """ Manages a Key Vault Certificate. - <<<<<<< HEAD - > **Note:** The Azure Provider includes a Feature Toggle which will purge a Key Vault Certificate resource on destroy, rather than the default soft-delete. See `purge_soft_deleted_certificates_on_destroy` for more information. - - ======= - > > > > > > > 8d78c87098 (Update-documentation) ## Example Usage ### Importing A PFX) diff --git a/sdk/python/pulumi_azure/keyvault/certificate.py b/sdk/python/pulumi_azure/keyvault/certificate.py index c39d98dc7f..e78ab37a74 100644 --- a/sdk/python/pulumi_azure/keyvault/certificate.py +++ b/sdk/python/pulumi_azure/keyvault/certificate.py @@ -370,11 +370,6 @@ def __init__(__self__, """ Manages a Key Vault Certificate. - <<<<<<< HEAD - > **Note:** The Azure Provider includes a Feature Toggle which will purge a Key Vault Certificate resource on destroy, rather than the default soft-delete. See `purge_soft_deleted_certificates_on_destroy` for more information. - - ======= - > > > > > > > 8d78c87098 (Update-documentation) ## Example Usage ### Importing A PFX) @@ -592,11 +587,6 @@ def __init__(__self__, """ Manages a Key Vault Certificate. - <<<<<<< HEAD - > **Note:** The Azure Provider includes a Feature Toggle which will purge a Key Vault Certificate resource on destroy, rather than the default soft-delete. See `purge_soft_deleted_certificates_on_destroy` for more information. - - ======= - > > > > > > > 8d78c87098 (Update-documentation) ## Example Usage ### Importing A PFX) diff --git a/sdk/python/pulumi_azure/keyvault/certificate_contacts.py b/sdk/python/pulumi_azure/keyvault/certificate_contacts.py index 1702ef30a9..fa0c43df49 100644 --- a/sdk/python/pulumi_azure/keyvault/certificate_contacts.py +++ b/sdk/python/pulumi_azure/keyvault/certificate_contacts.py @@ -21,6 +21,7 @@ def __init__(__self__, *, """ The set of arguments for constructing a CertificateContacts resource. :param pulumi.Input[Sequence[pulumi.Input['CertificateContactsContactArgs']]] contacts: One or more `contact` blocks as defined below. + --> :param pulumi.Input[str] key_vault_id: The ID of the Key Vault. Changing this forces a new resource to be created. """ pulumi.set(__self__, "contacts", contacts) @@ -31,6 +32,7 @@ def __init__(__self__, *, def contacts(self) -> pulumi.Input[Sequence[pulumi.Input['CertificateContactsContactArgs']]]: """ One or more `contact` blocks as defined below. + --> """ return pulumi.get(self, "contacts") @@ -59,6 +61,7 @@ def __init__(__self__, *, """ Input properties used for looking up and filtering CertificateContacts resources. :param pulumi.Input[Sequence[pulumi.Input['CertificateContactsContactArgs']]] contacts: One or more `contact` blocks as defined below. + --> :param pulumi.Input[str] key_vault_id: The ID of the Key Vault. Changing this forces a new resource to be created. """ if contacts is not None: @@ -71,6 +74,7 @@ def __init__(__self__, *, def contacts(self) -> Optional[pulumi.Input[Sequence[pulumi.Input['CertificateContactsContactArgs']]]]: """ One or more `contact` blocks as defined below. + --> """ return pulumi.get(self, "contacts") @@ -104,6 +108,7 @@ def __init__(__self__, ## Disclaimers + > **Note:** It's possible to define Key Vault Certificate Contacts both within the `keyvault.KeyVault` resource via the `contact` block and by using the `keyvault.CertificateContacts` resource. However it's not possible to use both methods to manage Certificate Contacts within a KeyVault, since there'll be conflicts. ## Example Usage @@ -156,6 +161,7 @@ def __init__(__self__, :param str resource_name: The name of the resource. :param pulumi.ResourceOptions opts: Options for the resource. :param pulumi.Input[Sequence[pulumi.Input[pulumi.InputType['CertificateContactsContactArgs']]]] contacts: One or more `contact` blocks as defined below. + --> :param pulumi.Input[str] key_vault_id: The ID of the Key Vault. Changing this forces a new resource to be created. """ ... @@ -169,6 +175,7 @@ def __init__(__self__, ## Disclaimers + > **Note:** It's possible to define Key Vault Certificate Contacts both within the `keyvault.KeyVault` resource via the `contact` block and by using the `keyvault.CertificateContacts` resource. However it's not possible to use both methods to manage Certificate Contacts within a KeyVault, since there'll be conflicts. ## Example Usage @@ -270,6 +277,7 @@ def get(resource_name: str, :param pulumi.Input[str] id: The unique provider ID of the resource to lookup. :param pulumi.ResourceOptions opts: Options for the resource. :param pulumi.Input[Sequence[pulumi.Input[pulumi.InputType['CertificateContactsContactArgs']]]] contacts: One or more `contact` blocks as defined below. + --> :param pulumi.Input[str] key_vault_id: The ID of the Key Vault. Changing this forces a new resource to be created. """ opts = pulumi.ResourceOptions.merge(opts, pulumi.ResourceOptions(id=id)) @@ -285,6 +293,7 @@ def get(resource_name: str, def contacts(self) -> pulumi.Output[Sequence['outputs.CertificateContactsContact']]: """ One or more `contact` blocks as defined below. + --> """ return pulumi.get(self, "contacts") diff --git a/sdk/python/pulumi_azure/keyvault/key_vault.py b/sdk/python/pulumi_azure/keyvault/key_vault.py index d9cb596c9b..c24ad37276 100644 --- a/sdk/python/pulumi_azure/keyvault/key_vault.py +++ b/sdk/python/pulumi_azure/keyvault/key_vault.py @@ -59,6 +59,8 @@ def __init__(__self__, *, :param pulumi.Input[int] soft_delete_retention_days: The number of days that items should be retained for once soft-deleted. This value can be between `7` and `90` (the default) days. > **Note:** This field can only be configured one time and cannot be updated. + + :param pulumi.Input[Mapping[str, pulumi.Input[str]]] tags: A mapping of tags to assign to the resource. """ pulumi.set(__self__, "resource_group_name", resource_group_name) @@ -66,6 +68,9 @@ def __init__(__self__, *, pulumi.set(__self__, "tenant_id", tenant_id) if access_policies is not None: pulumi.set(__self__, "access_policies", access_policies) + if contacts is not None: + warnings.warn("""As the `contact` property requires reaching out to the dataplane, to better support private endpoints and keyvaults with public network access disabled, `contact` will be removed in favour of the `keyvault.CertificateContacts` resource in version 4.0 of the AzureRM Provider.""", DeprecationWarning) + pulumi.log.warn("""contacts is deprecated: As the `contact` property requires reaching out to the dataplane, to better support private endpoints and keyvaults with public network access disabled, `contact` will be removed in favour of the `keyvault.CertificateContacts` resource in version 4.0 of the AzureRM Provider.""") if contacts is not None: pulumi.set(__self__, "contacts", contacts) if enable_rbac_authorization is not None: @@ -151,6 +156,9 @@ def contacts(self) -> Optional[pulumi.Input[Sequence[pulumi.Input['KeyVaultConta > **Note:** This field can only be set when `public_network_access_enabled` is set to `true`. To manage the `contact` with `public_network_access_enabled` set to `false`, please use the `keyvault.CertificateContacts` resource instead of this property, and remove this property from the configuration. Especially for existing `keyvault.KeyVault`, this means you'll need to import the `keyvault.CertificateContacts` manually. """ + warnings.warn("""As the `contact` property requires reaching out to the dataplane, to better support private endpoints and keyvaults with public network access disabled, `contact` will be removed in favour of the `keyvault.CertificateContacts` resource in version 4.0 of the AzureRM Provider.""", DeprecationWarning) + pulumi.log.warn("""contacts is deprecated: As the `contact` property requires reaching out to the dataplane, to better support private endpoints and keyvaults with public network access disabled, `contact` will be removed in favour of the `keyvault.CertificateContacts` resource in version 4.0 of the AzureRM Provider.""") + return pulumi.get(self, "contacts") @contacts.setter @@ -274,6 +282,8 @@ def soft_delete_retention_days(self) -> Optional[pulumi.Input[int]]: The number of days that items should be retained for once soft-deleted. This value can be between `7` and `90` (the default) days. > **Note:** This field can only be configured one time and cannot be updated. + + """ return pulumi.get(self, "soft_delete_retention_days") @@ -340,12 +350,17 @@ def __init__(__self__, *, :param pulumi.Input[int] soft_delete_retention_days: The number of days that items should be retained for once soft-deleted. This value can be between `7` and `90` (the default) days. > **Note:** This field can only be configured one time and cannot be updated. + + :param pulumi.Input[Mapping[str, pulumi.Input[str]]] tags: A mapping of tags to assign to the resource. :param pulumi.Input[str] tenant_id: The Azure Active Directory tenant ID that should be used for authenticating requests to the key vault. :param pulumi.Input[str] vault_uri: The URI of the Key Vault, used for performing operations on keys and secrets. """ if access_policies is not None: pulumi.set(__self__, "access_policies", access_policies) + if contacts is not None: + warnings.warn("""As the `contact` property requires reaching out to the dataplane, to better support private endpoints and keyvaults with public network access disabled, `contact` will be removed in favour of the `keyvault.CertificateContacts` resource in version 4.0 of the AzureRM Provider.""", DeprecationWarning) + pulumi.log.warn("""contacts is deprecated: As the `contact` property requires reaching out to the dataplane, to better support private endpoints and keyvaults with public network access disabled, `contact` will be removed in favour of the `keyvault.CertificateContacts` resource in version 4.0 of the AzureRM Provider.""") if contacts is not None: pulumi.set(__self__, "contacts", contacts) if enable_rbac_authorization is not None: @@ -403,6 +418,9 @@ def contacts(self) -> Optional[pulumi.Input[Sequence[pulumi.Input['KeyVaultConta > **Note:** This field can only be set when `public_network_access_enabled` is set to `true`. To manage the `contact` with `public_network_access_enabled` set to `false`, please use the `keyvault.CertificateContacts` resource instead of this property, and remove this property from the configuration. Especially for existing `keyvault.KeyVault`, this means you'll need to import the `keyvault.CertificateContacts` manually. """ + warnings.warn("""As the `contact` property requires reaching out to the dataplane, to better support private endpoints and keyvaults with public network access disabled, `contact` will be removed in favour of the `keyvault.CertificateContacts` resource in version 4.0 of the AzureRM Provider.""", DeprecationWarning) + pulumi.log.warn("""contacts is deprecated: As the `contact` property requires reaching out to the dataplane, to better support private endpoints and keyvaults with public network access disabled, `contact` will be removed in favour of the `keyvault.CertificateContacts` resource in version 4.0 of the AzureRM Provider.""") + return pulumi.get(self, "contacts") @contacts.setter @@ -550,6 +568,8 @@ def soft_delete_retention_days(self) -> Optional[pulumi.Input[int]]: The number of days that items should be retained for once soft-deleted. This value can be between `7` and `90` (the default) days. > **Note:** This field can only be configured one time and cannot be updated. + + """ return pulumi.get(self, "soft_delete_retention_days") @@ -689,6 +709,8 @@ def __init__(__self__, :param pulumi.Input[int] soft_delete_retention_days: The number of days that items should be retained for once soft-deleted. This value can be between `7` and `90` (the default) days. > **Note:** This field can only be configured one time and cannot be updated. + + :param pulumi.Input[Mapping[str, pulumi.Input[str]]] tags: A mapping of tags to assign to the resource. :param pulumi.Input[str] tenant_id: The Azure Active Directory tenant ID that should be used for authenticating requests to the key vault. """ @@ -866,6 +888,8 @@ def get(resource_name: str, :param pulumi.Input[int] soft_delete_retention_days: The number of days that items should be retained for once soft-deleted. This value can be between `7` and `90` (the default) days. > **Note:** This field can only be configured one time and cannot be updated. + + :param pulumi.Input[Mapping[str, pulumi.Input[str]]] tags: A mapping of tags to assign to the resource. :param pulumi.Input[str] tenant_id: The Azure Active Directory tenant ID that should be used for authenticating requests to the key vault. :param pulumi.Input[str] vault_uri: The URI of the Key Vault, used for performing operations on keys and secrets. @@ -905,7 +929,7 @@ def access_policies(self) -> pulumi.Output[Sequence['outputs.KeyVaultAccessPolic @property @pulumi.getter - def contacts(self) -> pulumi.Output[Optional[Sequence['outputs.KeyVaultContact']]]: + def contacts(self) -> pulumi.Output[Sequence['outputs.KeyVaultContact']]: """ One or more `contact` block as defined below. @@ -913,6 +937,9 @@ def contacts(self) -> pulumi.Output[Optional[Sequence['outputs.KeyVaultContact'] > **Note:** This field can only be set when `public_network_access_enabled` is set to `true`. To manage the `contact` with `public_network_access_enabled` set to `false`, please use the `keyvault.CertificateContacts` resource instead of this property, and remove this property from the configuration. Especially for existing `keyvault.KeyVault`, this means you'll need to import the `keyvault.CertificateContacts` manually. """ + warnings.warn("""As the `contact` property requires reaching out to the dataplane, to better support private endpoints and keyvaults with public network access disabled, `contact` will be removed in favour of the `keyvault.CertificateContacts` resource in version 4.0 of the AzureRM Provider.""", DeprecationWarning) + pulumi.log.warn("""contacts is deprecated: As the `contact` property requires reaching out to the dataplane, to better support private endpoints and keyvaults with public network access disabled, `contact` will be removed in favour of the `keyvault.CertificateContacts` resource in version 4.0 of the AzureRM Provider.""") + return pulumi.get(self, "contacts") @property @@ -1012,6 +1039,8 @@ def soft_delete_retention_days(self) -> pulumi.Output[Optional[int]]: The number of days that items should be retained for once soft-deleted. This value can be between `7` and `90` (the default) days. > **Note:** This field can only be configured one time and cannot be updated. + + """ return pulumi.get(self, "soft_delete_retention_days") diff --git a/sdk/python/pulumi_azure/keyvault/secret.py b/sdk/python/pulumi_azure/keyvault/secret.py index 5d697e5c2e..a64fa9b0a6 100644 --- a/sdk/python/pulumi_azure/keyvault/secret.py +++ b/sdk/python/pulumi_azure/keyvault/secret.py @@ -337,14 +337,6 @@ def __init__(__self__, """ Manages a Key Vault Secret. - <<<<<<< HEAD - > **Note:** All arguments including the secret value will be stored in the raw state as plain-text. - [Read more about sensitive data in state](https://www.terraform.io/docs/state/sensitive-data.html). - - > **Note:** The Azure Provider includes a Feature Toggle which will purge a Key Vault Secret resource on destroy, rather than the default soft-delete. See `purge_soft_deleted_secrets_on_destroy` for more information. - - ======= - > > > > > > > 8d78c87098 (Update-documentation) ## Example Usage @@ -414,14 +406,6 @@ def __init__(__self__, """ Manages a Key Vault Secret. - <<<<<<< HEAD - > **Note:** All arguments including the secret value will be stored in the raw state as plain-text. - [Read more about sensitive data in state](https://www.terraform.io/docs/state/sensitive-data.html). - - > **Note:** The Azure Provider includes a Feature Toggle which will purge a Key Vault Secret resource on destroy, rather than the default soft-delete. See `purge_soft_deleted_secrets_on_destroy` for more information. - - ======= - > > > > > > > 8d78c87098 (Update-documentation) ## Example Usage diff --git a/sdk/python/pulumi_azure/network/_inputs.py b/sdk/python/pulumi_azure/network/_inputs.py index eaca8f310d..530b29049f 100644 --- a/sdk/python/pulumi_azure/network/_inputs.py +++ b/sdk/python/pulumi_azure/network/_inputs.py @@ -9076,7 +9076,7 @@ def __init__(__self__, *, name: pulumi.Input[str], actions: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None): """ - :param pulumi.Input[str] name: The name of service to delegate to. Possible values are `GitHub.Network/networkSettings`, `Microsoft.ApiManagement/service`, `Microsoft.Apollo/npu`, `Microsoft.App/environments`, `Microsoft.App/testClients`, `Microsoft.AVS/PrivateClouds`, `Microsoft.AzureCosmosDB/clusters`, `Microsoft.BareMetal/AzureHostedService`, `Microsoft.BareMetal/AzureHPC`, `Microsoft.BareMetal/AzurePaymentHSM`, `Microsoft.BareMetal/AzureVMware`, `Microsoft.BareMetal/CrayServers`, `Microsoft.BareMetal/MonitoringServers`, `Microsoft.Batch/batchAccounts`, `Microsoft.CloudTest/hostedpools`, `Microsoft.CloudTest/images`, `Microsoft.CloudTest/pools`, `Microsoft.Codespaces/plans`, `Microsoft.ContainerInstance/containerGroups`, `Microsoft.ContainerService/managedClusters`, `Microsoft.ContainerService/TestClients`, `Microsoft.Databricks/workspaces`, `Microsoft.DBforMySQL/flexibleServers`, `Microsoft.DBforMySQL/servers`, `Microsoft.DBforMySQL/serversv2`, `Microsoft.DBforPostgreSQL/flexibleServers`, `Microsoft.DBforPostgreSQL/serversv2`, `Microsoft.DBforPostgreSQL/singleServers`, `Microsoft.DelegatedNetwork/controller`, `Microsoft.DevCenter/networkConnection`, `Microsoft.DocumentDB/cassandraClusters`, `Microsoft.Fidalgo/networkSettings`, `Microsoft.HardwareSecurityModules/dedicatedHSMs`, `Microsoft.Kusto/clusters`, `Microsoft.LabServices/labplans`, `Microsoft.Logic/integrationServiceEnvironments`, `Microsoft.MachineLearningServices/workspaces`, `Microsoft.Netapp/volumes`, `Microsoft.Network/dnsResolvers`, `Microsoft.Network/managedResolvers`, `Microsoft.Network/fpgaNetworkInterfaces`, `Microsoft.Network/networkWatchers.`, `Microsoft.Network/virtualNetworkGateways`, `Microsoft.Orbital/orbitalGateways`, `Microsoft.PowerPlatform/enterprisePolicies`, `Microsoft.PowerPlatform/vnetaccesslinks`, `Microsoft.ServiceFabricMesh/networks`, `Microsoft.ServiceNetworking/trafficControllers`, `Microsoft.Singularity/accounts/networks`, `Microsoft.Singularity/accounts/npu`, `Microsoft.Sql/managedInstances`, `Microsoft.Sql/managedInstancesOnebox`, `Microsoft.Sql/managedInstancesStage`, `Microsoft.Sql/managedInstancesTest`, `Microsoft.Sql/servers`, `Microsoft.StoragePool/diskPools`, `Microsoft.StreamAnalytics/streamingJobs`, `Microsoft.Synapse/workspaces`, `Microsoft.Web/hostingEnvironments`, `Microsoft.Web/serverFarms`, `NGINX.NGINXPLUS/nginxDeployments`, `PaloAltoNetworks.Cloudngfw/firewalls` and `Qumulo.Storage/fileSystems`. + :param pulumi.Input[str] name: The name of service to delegate to. Possible values are `GitHub.Network/networkSettings`, `Microsoft.ApiManagement/service`, `Microsoft.Apollo/npu`, `Microsoft.App/environments`, `Microsoft.App/testClients`, `Microsoft.AVS/PrivateClouds`, `Microsoft.AzureCosmosDB/clusters`, `Microsoft.BareMetal/AzureHostedService`, `Microsoft.BareMetal/AzureHPC`, `Microsoft.BareMetal/AzurePaymentHSM`, `Microsoft.BareMetal/AzureVMware`, `Microsoft.BareMetal/CrayServers`, `Microsoft.BareMetal/MonitoringServers`, `Microsoft.Batch/batchAccounts`, `Microsoft.CloudTest/hostedpools`, `Microsoft.CloudTest/images`, `Microsoft.CloudTest/pools`, `Microsoft.Codespaces/plans`, `Microsoft.ContainerInstance/containerGroups`, `Microsoft.ContainerService/managedClusters`, `Microsoft.ContainerService/TestClients`, `Microsoft.Databricks/workspaces`, `Microsoft.DBforMySQL/flexibleServers`, `Microsoft.DBforMySQL/servers`, `Microsoft.DBforMySQL/serversv2`, `Microsoft.DBforPostgreSQL/flexibleServers`, `Microsoft.DBforPostgreSQL/serversv2`, `Microsoft.DBforPostgreSQL/singleServers`, `Microsoft.DelegatedNetwork/controller`, `Microsoft.DevCenter/networkConnection`, `Microsoft.DocumentDB/cassandraClusters`, `Microsoft.Fidalgo/networkSettings`, `Microsoft.HardwareSecurityModules/dedicatedHSMs`, `Microsoft.Kusto/clusters`, `Microsoft.LabServices/labplans`, `Microsoft.Logic/integrationServiceEnvironments`, `Microsoft.MachineLearningServices/workspaces`, `Microsoft.Netapp/volumes`, `Microsoft.Network/dnsResolvers`, `Microsoft.Network/managedResolvers`, `Microsoft.Network/fpgaNetworkInterfaces`, `Microsoft.Network/networkWatchers.`, `Microsoft.Network/virtualNetworkGateways`, `Microsoft.Orbital/orbitalGateways`, `Microsoft.PowerPlatform/enterprisePolicies`, `Microsoft.PowerPlatform/vnetaccesslinks`, `Microsoft.ServiceFabricMesh/networks`, `Microsoft.ServiceNetworking/trafficControllers`, `Microsoft.Singularity/accounts/networks`, `Microsoft.Singularity/accounts/npu`, `Microsoft.Sql/managedInstances`, `Microsoft.Sql/managedInstancesOnebox`, `Microsoft.Sql/managedInstancesStage`, `Microsoft.Sql/managedInstancesTest`, `Microsoft.Sql/servers`, `Microsoft.StoragePool/diskPools`, `Microsoft.StreamAnalytics/streamingJobs`, `Microsoft.Synapse/workspaces`, `Microsoft.Web/hostingEnvironments`, `Microsoft.Web/serverFarms`, `NGINX.NGINXPLUS/nginxDeployments`, `PaloAltoNetworks.Cloudngfw/firewalls`, `Qumulo.Storage/fileSystems`, and `Oracle.Database/networkAttachments`. :param pulumi.Input[Sequence[pulumi.Input[str]]] actions: A list of Actions which should be delegated. This list is specific to the service to delegate to. Possible values are `Microsoft.Network/networkinterfaces/*`, `Microsoft.Network/publicIPAddresses/join/action`, `Microsoft.Network/publicIPAddresses/read`, `Microsoft.Network/virtualNetworks/read`, `Microsoft.Network/virtualNetworks/subnets/action`, `Microsoft.Network/virtualNetworks/subnets/join/action`, `Microsoft.Network/virtualNetworks/subnets/prepareNetworkPolicies/action`, and `Microsoft.Network/virtualNetworks/subnets/unprepareNetworkPolicies/action`. > **NOTE:** Azure may add default actions depending on the service delegation name and they can't be changed. @@ -9089,7 +9089,7 @@ def __init__(__self__, *, @pulumi.getter def name(self) -> pulumi.Input[str]: """ - The name of service to delegate to. Possible values are `GitHub.Network/networkSettings`, `Microsoft.ApiManagement/service`, `Microsoft.Apollo/npu`, `Microsoft.App/environments`, `Microsoft.App/testClients`, `Microsoft.AVS/PrivateClouds`, `Microsoft.AzureCosmosDB/clusters`, `Microsoft.BareMetal/AzureHostedService`, `Microsoft.BareMetal/AzureHPC`, `Microsoft.BareMetal/AzurePaymentHSM`, `Microsoft.BareMetal/AzureVMware`, `Microsoft.BareMetal/CrayServers`, `Microsoft.BareMetal/MonitoringServers`, `Microsoft.Batch/batchAccounts`, `Microsoft.CloudTest/hostedpools`, `Microsoft.CloudTest/images`, `Microsoft.CloudTest/pools`, `Microsoft.Codespaces/plans`, `Microsoft.ContainerInstance/containerGroups`, `Microsoft.ContainerService/managedClusters`, `Microsoft.ContainerService/TestClients`, `Microsoft.Databricks/workspaces`, `Microsoft.DBforMySQL/flexibleServers`, `Microsoft.DBforMySQL/servers`, `Microsoft.DBforMySQL/serversv2`, `Microsoft.DBforPostgreSQL/flexibleServers`, `Microsoft.DBforPostgreSQL/serversv2`, `Microsoft.DBforPostgreSQL/singleServers`, `Microsoft.DelegatedNetwork/controller`, `Microsoft.DevCenter/networkConnection`, `Microsoft.DocumentDB/cassandraClusters`, `Microsoft.Fidalgo/networkSettings`, `Microsoft.HardwareSecurityModules/dedicatedHSMs`, `Microsoft.Kusto/clusters`, `Microsoft.LabServices/labplans`, `Microsoft.Logic/integrationServiceEnvironments`, `Microsoft.MachineLearningServices/workspaces`, `Microsoft.Netapp/volumes`, `Microsoft.Network/dnsResolvers`, `Microsoft.Network/managedResolvers`, `Microsoft.Network/fpgaNetworkInterfaces`, `Microsoft.Network/networkWatchers.`, `Microsoft.Network/virtualNetworkGateways`, `Microsoft.Orbital/orbitalGateways`, `Microsoft.PowerPlatform/enterprisePolicies`, `Microsoft.PowerPlatform/vnetaccesslinks`, `Microsoft.ServiceFabricMesh/networks`, `Microsoft.ServiceNetworking/trafficControllers`, `Microsoft.Singularity/accounts/networks`, `Microsoft.Singularity/accounts/npu`, `Microsoft.Sql/managedInstances`, `Microsoft.Sql/managedInstancesOnebox`, `Microsoft.Sql/managedInstancesStage`, `Microsoft.Sql/managedInstancesTest`, `Microsoft.Sql/servers`, `Microsoft.StoragePool/diskPools`, `Microsoft.StreamAnalytics/streamingJobs`, `Microsoft.Synapse/workspaces`, `Microsoft.Web/hostingEnvironments`, `Microsoft.Web/serverFarms`, `NGINX.NGINXPLUS/nginxDeployments`, `PaloAltoNetworks.Cloudngfw/firewalls` and `Qumulo.Storage/fileSystems`. + The name of service to delegate to. Possible values are `GitHub.Network/networkSettings`, `Microsoft.ApiManagement/service`, `Microsoft.Apollo/npu`, `Microsoft.App/environments`, `Microsoft.App/testClients`, `Microsoft.AVS/PrivateClouds`, `Microsoft.AzureCosmosDB/clusters`, `Microsoft.BareMetal/AzureHostedService`, `Microsoft.BareMetal/AzureHPC`, `Microsoft.BareMetal/AzurePaymentHSM`, `Microsoft.BareMetal/AzureVMware`, `Microsoft.BareMetal/CrayServers`, `Microsoft.BareMetal/MonitoringServers`, `Microsoft.Batch/batchAccounts`, `Microsoft.CloudTest/hostedpools`, `Microsoft.CloudTest/images`, `Microsoft.CloudTest/pools`, `Microsoft.Codespaces/plans`, `Microsoft.ContainerInstance/containerGroups`, `Microsoft.ContainerService/managedClusters`, `Microsoft.ContainerService/TestClients`, `Microsoft.Databricks/workspaces`, `Microsoft.DBforMySQL/flexibleServers`, `Microsoft.DBforMySQL/servers`, `Microsoft.DBforMySQL/serversv2`, `Microsoft.DBforPostgreSQL/flexibleServers`, `Microsoft.DBforPostgreSQL/serversv2`, `Microsoft.DBforPostgreSQL/singleServers`, `Microsoft.DelegatedNetwork/controller`, `Microsoft.DevCenter/networkConnection`, `Microsoft.DocumentDB/cassandraClusters`, `Microsoft.Fidalgo/networkSettings`, `Microsoft.HardwareSecurityModules/dedicatedHSMs`, `Microsoft.Kusto/clusters`, `Microsoft.LabServices/labplans`, `Microsoft.Logic/integrationServiceEnvironments`, `Microsoft.MachineLearningServices/workspaces`, `Microsoft.Netapp/volumes`, `Microsoft.Network/dnsResolvers`, `Microsoft.Network/managedResolvers`, `Microsoft.Network/fpgaNetworkInterfaces`, `Microsoft.Network/networkWatchers.`, `Microsoft.Network/virtualNetworkGateways`, `Microsoft.Orbital/orbitalGateways`, `Microsoft.PowerPlatform/enterprisePolicies`, `Microsoft.PowerPlatform/vnetaccesslinks`, `Microsoft.ServiceFabricMesh/networks`, `Microsoft.ServiceNetworking/trafficControllers`, `Microsoft.Singularity/accounts/networks`, `Microsoft.Singularity/accounts/npu`, `Microsoft.Sql/managedInstances`, `Microsoft.Sql/managedInstancesOnebox`, `Microsoft.Sql/managedInstancesStage`, `Microsoft.Sql/managedInstancesTest`, `Microsoft.Sql/servers`, `Microsoft.StoragePool/diskPools`, `Microsoft.StreamAnalytics/streamingJobs`, `Microsoft.Synapse/workspaces`, `Microsoft.Web/hostingEnvironments`, `Microsoft.Web/serverFarms`, `NGINX.NGINXPLUS/nginxDeployments`, `PaloAltoNetworks.Cloudngfw/firewalls`, `Qumulo.Storage/fileSystems`, and `Oracle.Database/networkAttachments`. """ return pulumi.get(self, "name") diff --git a/sdk/python/pulumi_azure/network/get_public_ip_prefix.py b/sdk/python/pulumi_azure/network/get_public_ip_prefix.py index 1bf9b88710..e289d27a2b 100644 --- a/sdk/python/pulumi_azure/network/get_public_ip_prefix.py +++ b/sdk/python/pulumi_azure/network/get_public_ip_prefix.py @@ -61,6 +61,9 @@ def id(self) -> str: @property @pulumi.getter(name="ipPrefix") def ip_prefix(self) -> str: + """ + The Public IP address range, in CIDR notation. + """ return pulumi.get(self, "ip_prefix") @property @@ -74,9 +77,6 @@ def location(self) -> str: @property @pulumi.getter def name(self) -> str: - """ - The name of the Public IP prefix resource. - """ return pulumi.get(self, "name") @property @@ -90,9 +90,6 @@ def prefix_length(self) -> int: @property @pulumi.getter(name="resourceGroupName") def resource_group_name(self) -> str: - """ - The name of the resource group in which to create the public IP. - """ return pulumi.get(self, "resource_group_name") @property diff --git a/sdk/python/pulumi_azure/network/outputs.py b/sdk/python/pulumi_azure/network/outputs.py index 271f40b972..143c5ab421 100644 --- a/sdk/python/pulumi_azure/network/outputs.py +++ b/sdk/python/pulumi_azure/network/outputs.py @@ -9098,7 +9098,7 @@ def __init__(__self__, *, name: str, actions: Optional[Sequence[str]] = None): """ - :param str name: The name of service to delegate to. Possible values are `GitHub.Network/networkSettings`, `Microsoft.ApiManagement/service`, `Microsoft.Apollo/npu`, `Microsoft.App/environments`, `Microsoft.App/testClients`, `Microsoft.AVS/PrivateClouds`, `Microsoft.AzureCosmosDB/clusters`, `Microsoft.BareMetal/AzureHostedService`, `Microsoft.BareMetal/AzureHPC`, `Microsoft.BareMetal/AzurePaymentHSM`, `Microsoft.BareMetal/AzureVMware`, `Microsoft.BareMetal/CrayServers`, `Microsoft.BareMetal/MonitoringServers`, `Microsoft.Batch/batchAccounts`, `Microsoft.CloudTest/hostedpools`, `Microsoft.CloudTest/images`, `Microsoft.CloudTest/pools`, `Microsoft.Codespaces/plans`, `Microsoft.ContainerInstance/containerGroups`, `Microsoft.ContainerService/managedClusters`, `Microsoft.ContainerService/TestClients`, `Microsoft.Databricks/workspaces`, `Microsoft.DBforMySQL/flexibleServers`, `Microsoft.DBforMySQL/servers`, `Microsoft.DBforMySQL/serversv2`, `Microsoft.DBforPostgreSQL/flexibleServers`, `Microsoft.DBforPostgreSQL/serversv2`, `Microsoft.DBforPostgreSQL/singleServers`, `Microsoft.DelegatedNetwork/controller`, `Microsoft.DevCenter/networkConnection`, `Microsoft.DocumentDB/cassandraClusters`, `Microsoft.Fidalgo/networkSettings`, `Microsoft.HardwareSecurityModules/dedicatedHSMs`, `Microsoft.Kusto/clusters`, `Microsoft.LabServices/labplans`, `Microsoft.Logic/integrationServiceEnvironments`, `Microsoft.MachineLearningServices/workspaces`, `Microsoft.Netapp/volumes`, `Microsoft.Network/dnsResolvers`, `Microsoft.Network/managedResolvers`, `Microsoft.Network/fpgaNetworkInterfaces`, `Microsoft.Network/networkWatchers.`, `Microsoft.Network/virtualNetworkGateways`, `Microsoft.Orbital/orbitalGateways`, `Microsoft.PowerPlatform/enterprisePolicies`, `Microsoft.PowerPlatform/vnetaccesslinks`, `Microsoft.ServiceFabricMesh/networks`, `Microsoft.ServiceNetworking/trafficControllers`, `Microsoft.Singularity/accounts/networks`, `Microsoft.Singularity/accounts/npu`, `Microsoft.Sql/managedInstances`, `Microsoft.Sql/managedInstancesOnebox`, `Microsoft.Sql/managedInstancesStage`, `Microsoft.Sql/managedInstancesTest`, `Microsoft.Sql/servers`, `Microsoft.StoragePool/diskPools`, `Microsoft.StreamAnalytics/streamingJobs`, `Microsoft.Synapse/workspaces`, `Microsoft.Web/hostingEnvironments`, `Microsoft.Web/serverFarms`, `NGINX.NGINXPLUS/nginxDeployments`, `PaloAltoNetworks.Cloudngfw/firewalls` and `Qumulo.Storage/fileSystems`. + :param str name: The name of service to delegate to. Possible values are `GitHub.Network/networkSettings`, `Microsoft.ApiManagement/service`, `Microsoft.Apollo/npu`, `Microsoft.App/environments`, `Microsoft.App/testClients`, `Microsoft.AVS/PrivateClouds`, `Microsoft.AzureCosmosDB/clusters`, `Microsoft.BareMetal/AzureHostedService`, `Microsoft.BareMetal/AzureHPC`, `Microsoft.BareMetal/AzurePaymentHSM`, `Microsoft.BareMetal/AzureVMware`, `Microsoft.BareMetal/CrayServers`, `Microsoft.BareMetal/MonitoringServers`, `Microsoft.Batch/batchAccounts`, `Microsoft.CloudTest/hostedpools`, `Microsoft.CloudTest/images`, `Microsoft.CloudTest/pools`, `Microsoft.Codespaces/plans`, `Microsoft.ContainerInstance/containerGroups`, `Microsoft.ContainerService/managedClusters`, `Microsoft.ContainerService/TestClients`, `Microsoft.Databricks/workspaces`, `Microsoft.DBforMySQL/flexibleServers`, `Microsoft.DBforMySQL/servers`, `Microsoft.DBforMySQL/serversv2`, `Microsoft.DBforPostgreSQL/flexibleServers`, `Microsoft.DBforPostgreSQL/serversv2`, `Microsoft.DBforPostgreSQL/singleServers`, `Microsoft.DelegatedNetwork/controller`, `Microsoft.DevCenter/networkConnection`, `Microsoft.DocumentDB/cassandraClusters`, `Microsoft.Fidalgo/networkSettings`, `Microsoft.HardwareSecurityModules/dedicatedHSMs`, `Microsoft.Kusto/clusters`, `Microsoft.LabServices/labplans`, `Microsoft.Logic/integrationServiceEnvironments`, `Microsoft.MachineLearningServices/workspaces`, `Microsoft.Netapp/volumes`, `Microsoft.Network/dnsResolvers`, `Microsoft.Network/managedResolvers`, `Microsoft.Network/fpgaNetworkInterfaces`, `Microsoft.Network/networkWatchers.`, `Microsoft.Network/virtualNetworkGateways`, `Microsoft.Orbital/orbitalGateways`, `Microsoft.PowerPlatform/enterprisePolicies`, `Microsoft.PowerPlatform/vnetaccesslinks`, `Microsoft.ServiceFabricMesh/networks`, `Microsoft.ServiceNetworking/trafficControllers`, `Microsoft.Singularity/accounts/networks`, `Microsoft.Singularity/accounts/npu`, `Microsoft.Sql/managedInstances`, `Microsoft.Sql/managedInstancesOnebox`, `Microsoft.Sql/managedInstancesStage`, `Microsoft.Sql/managedInstancesTest`, `Microsoft.Sql/servers`, `Microsoft.StoragePool/diskPools`, `Microsoft.StreamAnalytics/streamingJobs`, `Microsoft.Synapse/workspaces`, `Microsoft.Web/hostingEnvironments`, `Microsoft.Web/serverFarms`, `NGINX.NGINXPLUS/nginxDeployments`, `PaloAltoNetworks.Cloudngfw/firewalls`, `Qumulo.Storage/fileSystems`, and `Oracle.Database/networkAttachments`. :param Sequence[str] actions: A list of Actions which should be delegated. This list is specific to the service to delegate to. Possible values are `Microsoft.Network/networkinterfaces/*`, `Microsoft.Network/publicIPAddresses/join/action`, `Microsoft.Network/publicIPAddresses/read`, `Microsoft.Network/virtualNetworks/read`, `Microsoft.Network/virtualNetworks/subnets/action`, `Microsoft.Network/virtualNetworks/subnets/join/action`, `Microsoft.Network/virtualNetworks/subnets/prepareNetworkPolicies/action`, and `Microsoft.Network/virtualNetworks/subnets/unprepareNetworkPolicies/action`. > **NOTE:** Azure may add default actions depending on the service delegation name and they can't be changed. @@ -9111,7 +9111,7 @@ def __init__(__self__, *, @pulumi.getter def name(self) -> str: """ - The name of service to delegate to. Possible values are `GitHub.Network/networkSettings`, `Microsoft.ApiManagement/service`, `Microsoft.Apollo/npu`, `Microsoft.App/environments`, `Microsoft.App/testClients`, `Microsoft.AVS/PrivateClouds`, `Microsoft.AzureCosmosDB/clusters`, `Microsoft.BareMetal/AzureHostedService`, `Microsoft.BareMetal/AzureHPC`, `Microsoft.BareMetal/AzurePaymentHSM`, `Microsoft.BareMetal/AzureVMware`, `Microsoft.BareMetal/CrayServers`, `Microsoft.BareMetal/MonitoringServers`, `Microsoft.Batch/batchAccounts`, `Microsoft.CloudTest/hostedpools`, `Microsoft.CloudTest/images`, `Microsoft.CloudTest/pools`, `Microsoft.Codespaces/plans`, `Microsoft.ContainerInstance/containerGroups`, `Microsoft.ContainerService/managedClusters`, `Microsoft.ContainerService/TestClients`, `Microsoft.Databricks/workspaces`, `Microsoft.DBforMySQL/flexibleServers`, `Microsoft.DBforMySQL/servers`, `Microsoft.DBforMySQL/serversv2`, `Microsoft.DBforPostgreSQL/flexibleServers`, `Microsoft.DBforPostgreSQL/serversv2`, `Microsoft.DBforPostgreSQL/singleServers`, `Microsoft.DelegatedNetwork/controller`, `Microsoft.DevCenter/networkConnection`, `Microsoft.DocumentDB/cassandraClusters`, `Microsoft.Fidalgo/networkSettings`, `Microsoft.HardwareSecurityModules/dedicatedHSMs`, `Microsoft.Kusto/clusters`, `Microsoft.LabServices/labplans`, `Microsoft.Logic/integrationServiceEnvironments`, `Microsoft.MachineLearningServices/workspaces`, `Microsoft.Netapp/volumes`, `Microsoft.Network/dnsResolvers`, `Microsoft.Network/managedResolvers`, `Microsoft.Network/fpgaNetworkInterfaces`, `Microsoft.Network/networkWatchers.`, `Microsoft.Network/virtualNetworkGateways`, `Microsoft.Orbital/orbitalGateways`, `Microsoft.PowerPlatform/enterprisePolicies`, `Microsoft.PowerPlatform/vnetaccesslinks`, `Microsoft.ServiceFabricMesh/networks`, `Microsoft.ServiceNetworking/trafficControllers`, `Microsoft.Singularity/accounts/networks`, `Microsoft.Singularity/accounts/npu`, `Microsoft.Sql/managedInstances`, `Microsoft.Sql/managedInstancesOnebox`, `Microsoft.Sql/managedInstancesStage`, `Microsoft.Sql/managedInstancesTest`, `Microsoft.Sql/servers`, `Microsoft.StoragePool/diskPools`, `Microsoft.StreamAnalytics/streamingJobs`, `Microsoft.Synapse/workspaces`, `Microsoft.Web/hostingEnvironments`, `Microsoft.Web/serverFarms`, `NGINX.NGINXPLUS/nginxDeployments`, `PaloAltoNetworks.Cloudngfw/firewalls` and `Qumulo.Storage/fileSystems`. + The name of service to delegate to. Possible values are `GitHub.Network/networkSettings`, `Microsoft.ApiManagement/service`, `Microsoft.Apollo/npu`, `Microsoft.App/environments`, `Microsoft.App/testClients`, `Microsoft.AVS/PrivateClouds`, `Microsoft.AzureCosmosDB/clusters`, `Microsoft.BareMetal/AzureHostedService`, `Microsoft.BareMetal/AzureHPC`, `Microsoft.BareMetal/AzurePaymentHSM`, `Microsoft.BareMetal/AzureVMware`, `Microsoft.BareMetal/CrayServers`, `Microsoft.BareMetal/MonitoringServers`, `Microsoft.Batch/batchAccounts`, `Microsoft.CloudTest/hostedpools`, `Microsoft.CloudTest/images`, `Microsoft.CloudTest/pools`, `Microsoft.Codespaces/plans`, `Microsoft.ContainerInstance/containerGroups`, `Microsoft.ContainerService/managedClusters`, `Microsoft.ContainerService/TestClients`, `Microsoft.Databricks/workspaces`, `Microsoft.DBforMySQL/flexibleServers`, `Microsoft.DBforMySQL/servers`, `Microsoft.DBforMySQL/serversv2`, `Microsoft.DBforPostgreSQL/flexibleServers`, `Microsoft.DBforPostgreSQL/serversv2`, `Microsoft.DBforPostgreSQL/singleServers`, `Microsoft.DelegatedNetwork/controller`, `Microsoft.DevCenter/networkConnection`, `Microsoft.DocumentDB/cassandraClusters`, `Microsoft.Fidalgo/networkSettings`, `Microsoft.HardwareSecurityModules/dedicatedHSMs`, `Microsoft.Kusto/clusters`, `Microsoft.LabServices/labplans`, `Microsoft.Logic/integrationServiceEnvironments`, `Microsoft.MachineLearningServices/workspaces`, `Microsoft.Netapp/volumes`, `Microsoft.Network/dnsResolvers`, `Microsoft.Network/managedResolvers`, `Microsoft.Network/fpgaNetworkInterfaces`, `Microsoft.Network/networkWatchers.`, `Microsoft.Network/virtualNetworkGateways`, `Microsoft.Orbital/orbitalGateways`, `Microsoft.PowerPlatform/enterprisePolicies`, `Microsoft.PowerPlatform/vnetaccesslinks`, `Microsoft.ServiceFabricMesh/networks`, `Microsoft.ServiceNetworking/trafficControllers`, `Microsoft.Singularity/accounts/networks`, `Microsoft.Singularity/accounts/npu`, `Microsoft.Sql/managedInstances`, `Microsoft.Sql/managedInstancesOnebox`, `Microsoft.Sql/managedInstancesStage`, `Microsoft.Sql/managedInstancesTest`, `Microsoft.Sql/servers`, `Microsoft.StoragePool/diskPools`, `Microsoft.StreamAnalytics/streamingJobs`, `Microsoft.Synapse/workspaces`, `Microsoft.Web/hostingEnvironments`, `Microsoft.Web/serverFarms`, `NGINX.NGINXPLUS/nginxDeployments`, `PaloAltoNetworks.Cloudngfw/firewalls`, `Qumulo.Storage/fileSystems`, and `Oracle.Database/networkAttachments`. """ return pulumi.get(self, "name") diff --git a/sdk/python/pulumi_azure/provider.py b/sdk/python/pulumi_azure/provider.py index b869ec7215..2ab8d56e2a 100644 --- a/sdk/python/pulumi_azure/provider.py +++ b/sdk/python/pulumi_azure/provider.py @@ -56,7 +56,8 @@ def __init__(__self__, *, using a Client Secret. :param pulumi.Input[bool] disable_correlation_request_id: This will disable the x-ms-correlation-request-id header. :param pulumi.Input[bool] disable_terraform_partner_id: This will disable the Terraform Partner ID which is used if a custom `partner_id` isn't specified. - :param pulumi.Input[str] environment: The Cloud Environment which should be used. Possible values are public, usgovernment, and china. Defaults to public. + :param pulumi.Input[str] environment: The Cloud Environment which should be used. Possible values are public, usgovernment, and china. Defaults to public. Not + used and should not be specified when `metadata_host` is specified. :param pulumi.Input[str] metadata_host: The Hostname which should be used for the Azure Metadata Service. :param pulumi.Input[str] msi_endpoint: The path to a custom endpoint for Managed Service Identity - in most circumstances this should be detected automatically. @@ -266,7 +267,8 @@ def disable_terraform_partner_id(self, value: Optional[pulumi.Input[bool]]): @pulumi.getter def environment(self) -> Optional[pulumi.Input[str]]: """ - The Cloud Environment which should be used. Possible values are public, usgovernment, and china. Defaults to public. + The Cloud Environment which should be used. Possible values are public, usgovernment, and china. Defaults to public. Not + used and should not be specified when `metadata_host` is specified. """ return pulumi.get(self, "environment") @@ -521,7 +523,8 @@ def __init__(__self__, using a Client Secret. :param pulumi.Input[bool] disable_correlation_request_id: This will disable the x-ms-correlation-request-id header. :param pulumi.Input[bool] disable_terraform_partner_id: This will disable the Terraform Partner ID which is used if a custom `partner_id` isn't specified. - :param pulumi.Input[str] environment: The Cloud Environment which should be used. Possible values are public, usgovernment, and china. Defaults to public. + :param pulumi.Input[str] environment: The Cloud Environment which should be used. Possible values are public, usgovernment, and china. Defaults to public. Not + used and should not be specified when `metadata_host` is specified. :param pulumi.Input[str] metadata_host: The Hostname which should be used for the Azure Metadata Service. :param pulumi.Input[str] msi_endpoint: The path to a custom endpoint for Managed Service Identity - in most circumstances this should be detected automatically. @@ -713,7 +716,8 @@ def client_secret_file_path(self) -> pulumi.Output[Optional[str]]: @pulumi.getter def environment(self) -> pulumi.Output[Optional[str]]: """ - The Cloud Environment which should be used. Possible values are public, usgovernment, and china. Defaults to public. + The Cloud Environment which should be used. Possible values are public, usgovernment, and china. Defaults to public. Not + used and should not be specified when `metadata_host` is specified. """ return pulumi.get(self, "environment") diff --git a/sdk/python/pulumi_azure/redis/cache_access_policy_assignment.py b/sdk/python/pulumi_azure/redis/cache_access_policy_assignment.py index 26d6728fd3..9e97aa00ea 100644 --- a/sdk/python/pulumi_azure/redis/cache_access_policy_assignment.py +++ b/sdk/python/pulumi_azure/redis/cache_access_policy_assignment.py @@ -23,7 +23,7 @@ def __init__(__self__, *, The set of arguments for constructing a CacheAccessPolicyAssignment resource. :param pulumi.Input[str] access_policy_name: The name of the Access Policy to be assigned. Changing this forces a new Redis Cache Access Policy Assignment to be created. :param pulumi.Input[str] object_id: The principal ID to be assigned the Access Policy. Changing this forces a new Redis Cache Access Policy Assignment to be created. - :param pulumi.Input[str] object_id_alias: The alias of the principal ID. Possible values are `ServicePrincipal` and `UserMSI`. Changing this forces a new Redis Cache Access Policy Assignment to be created. + :param pulumi.Input[str] object_id_alias: The alias of the principal ID. User-friendly name for object ID. Also represents username for token based authentication. Changing this forces a new Redis Cache Access Policy Assignment to be created. :param pulumi.Input[str] redis_cache_id: The ID of the Redis Cache. Changing this forces a new Redis Cache Access Policy Assignment to be created. :param pulumi.Input[str] name: The name of the Redis Cache Access Policy Assignment. Changing this forces a new Redis Cache Access Policy Assignment to be created. """ @@ -62,7 +62,7 @@ def object_id(self, value: pulumi.Input[str]): @pulumi.getter(name="objectIdAlias") def object_id_alias(self) -> pulumi.Input[str]: """ - The alias of the principal ID. Possible values are `ServicePrincipal` and `UserMSI`. Changing this forces a new Redis Cache Access Policy Assignment to be created. + The alias of the principal ID. User-friendly name for object ID. Also represents username for token based authentication. Changing this forces a new Redis Cache Access Policy Assignment to be created. """ return pulumi.get(self, "object_id_alias") @@ -108,7 +108,7 @@ def __init__(__self__, *, :param pulumi.Input[str] access_policy_name: The name of the Access Policy to be assigned. Changing this forces a new Redis Cache Access Policy Assignment to be created. :param pulumi.Input[str] name: The name of the Redis Cache Access Policy Assignment. Changing this forces a new Redis Cache Access Policy Assignment to be created. :param pulumi.Input[str] object_id: The principal ID to be assigned the Access Policy. Changing this forces a new Redis Cache Access Policy Assignment to be created. - :param pulumi.Input[str] object_id_alias: The alias of the principal ID. Possible values are `ServicePrincipal` and `UserMSI`. Changing this forces a new Redis Cache Access Policy Assignment to be created. + :param pulumi.Input[str] object_id_alias: The alias of the principal ID. User-friendly name for object ID. Also represents username for token based authentication. Changing this forces a new Redis Cache Access Policy Assignment to be created. :param pulumi.Input[str] redis_cache_id: The ID of the Redis Cache. Changing this forces a new Redis Cache Access Policy Assignment to be created. """ if access_policy_name is not None: @@ -162,7 +162,7 @@ def object_id(self, value: Optional[pulumi.Input[str]]): @pulumi.getter(name="objectIdAlias") def object_id_alias(self) -> Optional[pulumi.Input[str]]: """ - The alias of the principal ID. Possible values are `ServicePrincipal` and `UserMSI`. Changing this forces a new Redis Cache Access Policy Assignment to be created. + The alias of the principal ID. User-friendly name for object ID. Also represents username for token based authentication. Changing this forces a new Redis Cache Access Policy Assignment to be created. """ return pulumi.get(self, "object_id_alias") @@ -243,7 +243,7 @@ def __init__(__self__, :param pulumi.Input[str] access_policy_name: The name of the Access Policy to be assigned. Changing this forces a new Redis Cache Access Policy Assignment to be created. :param pulumi.Input[str] name: The name of the Redis Cache Access Policy Assignment. Changing this forces a new Redis Cache Access Policy Assignment to be created. :param pulumi.Input[str] object_id: The principal ID to be assigned the Access Policy. Changing this forces a new Redis Cache Access Policy Assignment to be created. - :param pulumi.Input[str] object_id_alias: The alias of the principal ID. Possible values are `ServicePrincipal` and `UserMSI`. Changing this forces a new Redis Cache Access Policy Assignment to be created. + :param pulumi.Input[str] object_id_alias: The alias of the principal ID. User-friendly name for object ID. Also represents username for token based authentication. Changing this forces a new Redis Cache Access Policy Assignment to be created. :param pulumi.Input[str] redis_cache_id: The ID of the Redis Cache. Changing this forces a new Redis Cache Access Policy Assignment to be created. """ ... @@ -363,7 +363,7 @@ def get(resource_name: str, :param pulumi.Input[str] access_policy_name: The name of the Access Policy to be assigned. Changing this forces a new Redis Cache Access Policy Assignment to be created. :param pulumi.Input[str] name: The name of the Redis Cache Access Policy Assignment. Changing this forces a new Redis Cache Access Policy Assignment to be created. :param pulumi.Input[str] object_id: The principal ID to be assigned the Access Policy. Changing this forces a new Redis Cache Access Policy Assignment to be created. - :param pulumi.Input[str] object_id_alias: The alias of the principal ID. Possible values are `ServicePrincipal` and `UserMSI`. Changing this forces a new Redis Cache Access Policy Assignment to be created. + :param pulumi.Input[str] object_id_alias: The alias of the principal ID. User-friendly name for object ID. Also represents username for token based authentication. Changing this forces a new Redis Cache Access Policy Assignment to be created. :param pulumi.Input[str] redis_cache_id: The ID of the Redis Cache. Changing this forces a new Redis Cache Access Policy Assignment to be created. """ opts = pulumi.ResourceOptions.merge(opts, pulumi.ResourceOptions(id=id)) @@ -405,7 +405,7 @@ def object_id(self) -> pulumi.Output[str]: @pulumi.getter(name="objectIdAlias") def object_id_alias(self) -> pulumi.Output[str]: """ - The alias of the principal ID. Possible values are `ServicePrincipal` and `UserMSI`. Changing this forces a new Redis Cache Access Policy Assignment to be created. + The alias of the principal ID. User-friendly name for object ID. Also represents username for token based authentication. Changing this forces a new Redis Cache Access Policy Assignment to be created. """ return pulumi.get(self, "object_id_alias") diff --git a/sdk/python/pulumi_azure/signalr/_inputs.py b/sdk/python/pulumi_azure/signalr/_inputs.py index 356f2aecaf..d6a35a7e15 100644 --- a/sdk/python/pulumi_azure/signalr/_inputs.py +++ b/sdk/python/pulumi_azure/signalr/_inputs.py @@ -301,8 +301,10 @@ def __init__(__self__, *, capacity: pulumi.Input[int], name: pulumi.Input[str]): """ - :param pulumi.Input[int] capacity: Specifies the number of units associated with this SignalR service. Valid values are `1`, `2`, `3`, `4`, `5`, `6`, `7`, `8`, `9`, `10`, `20`, `30`, `40`, `50`, `60`, `70`, `80`, `90` and `100`. - :param pulumi.Input[str] name: Specifies which tier to use. Valid values are `Free_F1`, `Standard_S1` and `Premium_P1`. + :param pulumi.Input[int] capacity: Specifies the number of units associated with this SignalR service. Valid values are `1`, `2`, `3`, `4`, `5`, `6`, `7`, `8`, `9`, `10`, `20`, `30`, `40`, `50`, `60`, `70`, `80`, `90`, `100`, `200`, `300`, `400`, `500`, `600`, `700`, `800`, `900` and `1000`. + + > **NOTE:** The valid capacity range for sku `Free_F1` is `1`, for sku `Premium_P2` is from `100` to `1000`, and from `1` to `100` for sku `Standard_S1` and `Premium_P1`. + :param pulumi.Input[str] name: Specifies which tier to use. Valid values are `Free_F1`, `Standard_S1`, `Premium_P1` and `Premium_P2`. """ pulumi.set(__self__, "capacity", capacity) pulumi.set(__self__, "name", name) @@ -311,7 +313,9 @@ def __init__(__self__, *, @pulumi.getter def capacity(self) -> pulumi.Input[int]: """ - Specifies the number of units associated with this SignalR service. Valid values are `1`, `2`, `3`, `4`, `5`, `6`, `7`, `8`, `9`, `10`, `20`, `30`, `40`, `50`, `60`, `70`, `80`, `90` and `100`. + Specifies the number of units associated with this SignalR service. Valid values are `1`, `2`, `3`, `4`, `5`, `6`, `7`, `8`, `9`, `10`, `20`, `30`, `40`, `50`, `60`, `70`, `80`, `90`, `100`, `200`, `300`, `400`, `500`, `600`, `700`, `800`, `900` and `1000`. + + > **NOTE:** The valid capacity range for sku `Free_F1` is `1`, for sku `Premium_P2` is from `100` to `1000`, and from `1` to `100` for sku `Standard_S1` and `Premium_P1`. """ return pulumi.get(self, "capacity") @@ -323,7 +327,7 @@ def capacity(self, value: pulumi.Input[int]): @pulumi.getter def name(self) -> pulumi.Input[str]: """ - Specifies which tier to use. Valid values are `Free_F1`, `Standard_S1` and `Premium_P1`. + Specifies which tier to use. Valid values are `Free_F1`, `Standard_S1`, `Premium_P1` and `Premium_P2`. """ return pulumi.get(self, "name") diff --git a/sdk/python/pulumi_azure/signalr/outputs.py b/sdk/python/pulumi_azure/signalr/outputs.py index 59a7924d49..fe6fdd4f1b 100644 --- a/sdk/python/pulumi_azure/signalr/outputs.py +++ b/sdk/python/pulumi_azure/signalr/outputs.py @@ -342,8 +342,10 @@ def __init__(__self__, *, capacity: int, name: str): """ - :param int capacity: Specifies the number of units associated with this SignalR service. Valid values are `1`, `2`, `3`, `4`, `5`, `6`, `7`, `8`, `9`, `10`, `20`, `30`, `40`, `50`, `60`, `70`, `80`, `90` and `100`. - :param str name: Specifies which tier to use. Valid values are `Free_F1`, `Standard_S1` and `Premium_P1`. + :param int capacity: Specifies the number of units associated with this SignalR service. Valid values are `1`, `2`, `3`, `4`, `5`, `6`, `7`, `8`, `9`, `10`, `20`, `30`, `40`, `50`, `60`, `70`, `80`, `90`, `100`, `200`, `300`, `400`, `500`, `600`, `700`, `800`, `900` and `1000`. + + > **NOTE:** The valid capacity range for sku `Free_F1` is `1`, for sku `Premium_P2` is from `100` to `1000`, and from `1` to `100` for sku `Standard_S1` and `Premium_P1`. + :param str name: Specifies which tier to use. Valid values are `Free_F1`, `Standard_S1`, `Premium_P1` and `Premium_P2`. """ pulumi.set(__self__, "capacity", capacity) pulumi.set(__self__, "name", name) @@ -352,7 +354,9 @@ def __init__(__self__, *, @pulumi.getter def capacity(self) -> int: """ - Specifies the number of units associated with this SignalR service. Valid values are `1`, `2`, `3`, `4`, `5`, `6`, `7`, `8`, `9`, `10`, `20`, `30`, `40`, `50`, `60`, `70`, `80`, `90` and `100`. + Specifies the number of units associated with this SignalR service. Valid values are `1`, `2`, `3`, `4`, `5`, `6`, `7`, `8`, `9`, `10`, `20`, `30`, `40`, `50`, `60`, `70`, `80`, `90`, `100`, `200`, `300`, `400`, `500`, `600`, `700`, `800`, `900` and `1000`. + + > **NOTE:** The valid capacity range for sku `Free_F1` is `1`, for sku `Premium_P2` is from `100` to `1000`, and from `1` to `100` for sku `Standard_S1` and `Premium_P1`. """ return pulumi.get(self, "capacity") @@ -360,7 +364,7 @@ def capacity(self) -> int: @pulumi.getter def name(self) -> str: """ - Specifies which tier to use. Valid values are `Free_F1`, `Standard_S1` and `Premium_P1`. + Specifies which tier to use. Valid values are `Free_F1`, `Standard_S1`, `Premium_P1` and `Premium_P2`. """ return pulumi.get(self, "name") diff --git a/sdk/python/pulumi_azure/storage/account.py b/sdk/python/pulumi_azure/storage/account.py index d97ae89849..d3cefc37c4 100644 --- a/sdk/python/pulumi_azure/storage/account.py +++ b/sdk/python/pulumi_azure/storage/account.py @@ -103,13 +103,15 @@ def __init__(__self__, *, :param pulumi.Input[str] queue_encryption_key_type: The encryption type of the queue service. Possible values are `Service` and `Account`. Changing this forces a new resource to be created. Default value is `Service`. :param pulumi.Input['AccountQueuePropertiesArgs'] queue_properties: A `queue_properties` block as defined below. - > **NOTE:** `queue_properties` cannot be set when the `account_kind` is set to `BlobStorage` + > **NOTE:** `queue_properties` can only be configured when `account_tier` is set to `Standard` and `account_kind` is set to either `Storage` or `StorageV2`. :param pulumi.Input['AccountRoutingArgs'] routing: A `routing` block as defined below. :param pulumi.Input['AccountSasPolicyArgs'] sas_policy: A `sas_policy` block as defined below. :param pulumi.Input[bool] sftp_enabled: Boolean, enable SFTP for the storage account > **NOTE:** SFTP support requires `is_hns_enabled` set to `true`. [More information on SFTP support can be found here](https://learn.microsoft.com/azure/storage/blobs/secure-file-transfer-protocol-support). Defaults to `false` :param pulumi.Input['AccountSharePropertiesArgs'] share_properties: A `share_properties` block as defined below. + + > **NOTE:** `share_properties` can only be configured when either `account_tier` is `Standard` and `account_kind` is either `Storage` or `StorageV2` - or when `account_tier` is `Premium` and `account_kind` is `FileStorage`. :param pulumi.Input['AccountStaticWebsiteArgs'] static_website: A `static_website` block as defined below. > **NOTE:** `static_website` can only be set when the `account_kind` is set to `StorageV2` or `BlockBlobStorage`. @@ -562,7 +564,7 @@ def queue_properties(self) -> Optional[pulumi.Input['AccountQueuePropertiesArgs' """ A `queue_properties` block as defined below. - > **NOTE:** `queue_properties` cannot be set when the `account_kind` is set to `BlobStorage` + > **NOTE:** `queue_properties` can only be configured when `account_tier` is set to `Standard` and `account_kind` is set to either `Storage` or `StorageV2`. """ return pulumi.get(self, "queue_properties") @@ -613,6 +615,8 @@ def sftp_enabled(self, value: Optional[pulumi.Input[bool]]): def share_properties(self) -> Optional[pulumi.Input['AccountSharePropertiesArgs']]: """ A `share_properties` block as defined below. + + > **NOTE:** `share_properties` can only be configured when either `account_tier` is `Standard` and `account_kind` is either `Storage` or `StorageV2` - or when `account_tier` is `Premium` and `account_kind` is `FileStorage`. """ return pulumi.get(self, "share_properties") @@ -867,7 +871,7 @@ def __init__(__self__, *, :param pulumi.Input[str] queue_encryption_key_type: The encryption type of the queue service. Possible values are `Service` and `Account`. Changing this forces a new resource to be created. Default value is `Service`. :param pulumi.Input['AccountQueuePropertiesArgs'] queue_properties: A `queue_properties` block as defined below. - > **NOTE:** `queue_properties` cannot be set when the `account_kind` is set to `BlobStorage` + > **NOTE:** `queue_properties` can only be configured when `account_tier` is set to `Standard` and `account_kind` is set to either `Storage` or `StorageV2`. :param pulumi.Input[str] resource_group_name: The name of the resource group in which to create the storage account. Changing this forces a new resource to be created. :param pulumi.Input['AccountRoutingArgs'] routing: A `routing` block as defined below. :param pulumi.Input['AccountSasPolicyArgs'] sas_policy: A `sas_policy` block as defined below. @@ -911,6 +915,8 @@ def __init__(__self__, *, > **NOTE:** SFTP support requires `is_hns_enabled` set to `true`. [More information on SFTP support can be found here](https://learn.microsoft.com/azure/storage/blobs/secure-file-transfer-protocol-support). Defaults to `false` :param pulumi.Input['AccountSharePropertiesArgs'] share_properties: A `share_properties` block as defined below. + + > **NOTE:** `share_properties` can only be configured when either `account_tier` is `Standard` and `account_kind` is either `Storage` or `StorageV2` - or when `account_tier` is `Premium` and `account_kind` is `FileStorage`. :param pulumi.Input['AccountStaticWebsiteArgs'] static_website: A `static_website` block as defined below. > **NOTE:** `static_website` can only be set when the `account_kind` is set to `StorageV2` or `BlockBlobStorage`. @@ -1930,7 +1936,7 @@ def queue_properties(self) -> Optional[pulumi.Input['AccountQueuePropertiesArgs' """ A `queue_properties` block as defined below. - > **NOTE:** `queue_properties` cannot be set when the `account_kind` is set to `BlobStorage` + > **NOTE:** `queue_properties` can only be configured when `account_tier` is set to `Standard` and `account_kind` is set to either `Storage` or `StorageV2`. """ return pulumi.get(self, "queue_properties") @@ -2425,6 +2431,8 @@ def sftp_enabled(self, value: Optional[pulumi.Input[bool]]): def share_properties(self) -> Optional[pulumi.Input['AccountSharePropertiesArgs']]: """ A `share_properties` block as defined below. + + > **NOTE:** `share_properties` can only be configured when either `account_tier` is `Standard` and `account_kind` is either `Storage` or `StorageV2` - or when `account_tier` is `Premium` and `account_kind` is `FileStorage`. """ return pulumi.get(self, "share_properties") @@ -2648,7 +2656,7 @@ def __init__(__self__, :param pulumi.Input[str] queue_encryption_key_type: The encryption type of the queue service. Possible values are `Service` and `Account`. Changing this forces a new resource to be created. Default value is `Service`. :param pulumi.Input[pulumi.InputType['AccountQueuePropertiesArgs']] queue_properties: A `queue_properties` block as defined below. - > **NOTE:** `queue_properties` cannot be set when the `account_kind` is set to `BlobStorage` + > **NOTE:** `queue_properties` can only be configured when `account_tier` is set to `Standard` and `account_kind` is set to either `Storage` or `StorageV2`. :param pulumi.Input[str] resource_group_name: The name of the resource group in which to create the storage account. Changing this forces a new resource to be created. :param pulumi.Input[pulumi.InputType['AccountRoutingArgs']] routing: A `routing` block as defined below. :param pulumi.Input[pulumi.InputType['AccountSasPolicyArgs']] sas_policy: A `sas_policy` block as defined below. @@ -2656,6 +2664,8 @@ def __init__(__self__, > **NOTE:** SFTP support requires `is_hns_enabled` set to `true`. [More information on SFTP support can be found here](https://learn.microsoft.com/azure/storage/blobs/secure-file-transfer-protocol-support). Defaults to `false` :param pulumi.Input[pulumi.InputType['AccountSharePropertiesArgs']] share_properties: A `share_properties` block as defined below. + + > **NOTE:** `share_properties` can only be configured when either `account_tier` is `Standard` and `account_kind` is either `Storage` or `StorageV2` - or when `account_tier` is `Premium` and `account_kind` is `FileStorage`. :param pulumi.Input[pulumi.InputType['AccountStaticWebsiteArgs']] static_website: A `static_website` block as defined below. > **NOTE:** `static_website` can only be set when the `account_kind` is set to `StorageV2` or `BlockBlobStorage`. @@ -3133,7 +3143,7 @@ def get(resource_name: str, :param pulumi.Input[str] queue_encryption_key_type: The encryption type of the queue service. Possible values are `Service` and `Account`. Changing this forces a new resource to be created. Default value is `Service`. :param pulumi.Input[pulumi.InputType['AccountQueuePropertiesArgs']] queue_properties: A `queue_properties` block as defined below. - > **NOTE:** `queue_properties` cannot be set when the `account_kind` is set to `BlobStorage` + > **NOTE:** `queue_properties` can only be configured when `account_tier` is set to `Standard` and `account_kind` is set to either `Storage` or `StorageV2`. :param pulumi.Input[str] resource_group_name: The name of the resource group in which to create the storage account. Changing this forces a new resource to be created. :param pulumi.Input[pulumi.InputType['AccountRoutingArgs']] routing: A `routing` block as defined below. :param pulumi.Input[pulumi.InputType['AccountSasPolicyArgs']] sas_policy: A `sas_policy` block as defined below. @@ -3177,6 +3187,8 @@ def get(resource_name: str, > **NOTE:** SFTP support requires `is_hns_enabled` set to `true`. [More information on SFTP support can be found here](https://learn.microsoft.com/azure/storage/blobs/secure-file-transfer-protocol-support). Defaults to `false` :param pulumi.Input[pulumi.InputType['AccountSharePropertiesArgs']] share_properties: A `share_properties` block as defined below. + + > **NOTE:** `share_properties` can only be configured when either `account_tier` is `Standard` and `account_kind` is either `Storage` or `StorageV2` - or when `account_tier` is `Premium` and `account_kind` is `FileStorage`. :param pulumi.Input[pulumi.InputType['AccountStaticWebsiteArgs']] static_website: A `static_website` block as defined below. > **NOTE:** `static_website` can only be set when the `account_kind` is set to `StorageV2` or `BlockBlobStorage`. @@ -3835,7 +3847,7 @@ def queue_properties(self) -> pulumi.Output['outputs.AccountQueueProperties']: """ A `queue_properties` block as defined below. - > **NOTE:** `queue_properties` cannot be set when the `account_kind` is set to `BlobStorage` + > **NOTE:** `queue_properties` can only be configured when `account_tier` is set to `Standard` and `account_kind` is set to either `Storage` or `StorageV2`. """ return pulumi.get(self, "queue_properties") @@ -4166,6 +4178,8 @@ def sftp_enabled(self) -> pulumi.Output[Optional[bool]]: def share_properties(self) -> pulumi.Output['outputs.AccountShareProperties']: """ A `share_properties` block as defined below. + + > **NOTE:** `share_properties` can only be configured when either `account_tier` is `Standard` and `account_kind` is either `Storage` or `StorageV2` - or when `account_tier` is `Premium` and `account_kind` is `FileStorage`. """ return pulumi.get(self, "share_properties") diff --git a/sdk/python/pulumi_azure/storage/blob.py b/sdk/python/pulumi_azure/storage/blob.py index 30bd19fc78..2dde927b56 100644 --- a/sdk/python/pulumi_azure/storage/blob.py +++ b/sdk/python/pulumi_azure/storage/blob.py @@ -21,6 +21,7 @@ def __init__(__self__, *, cache_control: Optional[pulumi.Input[str]] = None, content_md5: Optional[pulumi.Input[str]] = None, content_type: Optional[pulumi.Input[str]] = None, + encryption_scope: Optional[pulumi.Input[str]] = None, metadata: Optional[pulumi.Input[Mapping[str, pulumi.Input[str]]]] = None, name: Optional[pulumi.Input[str]] = None, parallelism: Optional[pulumi.Input[int]] = None, @@ -37,6 +38,7 @@ def __init__(__self__, *, :param pulumi.Input[str] cache_control: Controls the [cache control header](https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Cache-Control) content of the response when blob is requested . :param pulumi.Input[str] content_md5: The MD5 sum of the blob contents. Cannot be defined if `source_uri` is defined, or if blob type is Append or Page. Changing this forces a new resource to be created. :param pulumi.Input[str] content_type: The content type of the storage blob. Cannot be defined if `source_uri` is defined. Defaults to `application/octet-stream`. + :param pulumi.Input[str] encryption_scope: The encryption scope to use for this blob. :param pulumi.Input[Mapping[str, pulumi.Input[str]]] metadata: A map of custom blob metadata. :param pulumi.Input[str] name: The name of the storage blob. Must be unique within the storage container the blob is located. Changing this forces a new resource to be created. :param pulumi.Input[int] parallelism: The number of workers per CPU core to run for concurrent uploads. Defaults to `8`. Changing this forces a new resource to be created. @@ -60,6 +62,8 @@ def __init__(__self__, *, pulumi.set(__self__, "content_md5", content_md5) if content_type is not None: pulumi.set(__self__, "content_type", content_type) + if encryption_scope is not None: + pulumi.set(__self__, "encryption_scope", encryption_scope) if metadata is not None: pulumi.set(__self__, "metadata", metadata) if name is not None: @@ -159,6 +163,18 @@ def content_type(self) -> Optional[pulumi.Input[str]]: def content_type(self, value: Optional[pulumi.Input[str]]): pulumi.set(self, "content_type", value) + @property + @pulumi.getter(name="encryptionScope") + def encryption_scope(self) -> Optional[pulumi.Input[str]]: + """ + The encryption scope to use for this blob. + """ + return pulumi.get(self, "encryption_scope") + + @encryption_scope.setter + def encryption_scope(self, value: Optional[pulumi.Input[str]]): + pulumi.set(self, "encryption_scope", value) + @property @pulumi.getter def metadata(self) -> Optional[pulumi.Input[Mapping[str, pulumi.Input[str]]]]: @@ -255,6 +271,7 @@ def __init__(__self__, *, cache_control: Optional[pulumi.Input[str]] = None, content_md5: Optional[pulumi.Input[str]] = None, content_type: Optional[pulumi.Input[str]] = None, + encryption_scope: Optional[pulumi.Input[str]] = None, metadata: Optional[pulumi.Input[Mapping[str, pulumi.Input[str]]]] = None, name: Optional[pulumi.Input[str]] = None, parallelism: Optional[pulumi.Input[int]] = None, @@ -272,6 +289,7 @@ def __init__(__self__, *, :param pulumi.Input[str] cache_control: Controls the [cache control header](https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Cache-Control) content of the response when blob is requested . :param pulumi.Input[str] content_md5: The MD5 sum of the blob contents. Cannot be defined if `source_uri` is defined, or if blob type is Append or Page. Changing this forces a new resource to be created. :param pulumi.Input[str] content_type: The content type of the storage blob. Cannot be defined if `source_uri` is defined. Defaults to `application/octet-stream`. + :param pulumi.Input[str] encryption_scope: The encryption scope to use for this blob. :param pulumi.Input[Mapping[str, pulumi.Input[str]]] metadata: A map of custom blob metadata. :param pulumi.Input[str] name: The name of the storage blob. Must be unique within the storage container the blob is located. Changing this forces a new resource to be created. :param pulumi.Input[int] parallelism: The number of workers per CPU core to run for concurrent uploads. Defaults to `8`. Changing this forces a new resource to be created. @@ -296,6 +314,8 @@ def __init__(__self__, *, pulumi.set(__self__, "content_md5", content_md5) if content_type is not None: pulumi.set(__self__, "content_type", content_type) + if encryption_scope is not None: + pulumi.set(__self__, "encryption_scope", encryption_scope) if metadata is not None: pulumi.set(__self__, "metadata", metadata) if name is not None: @@ -367,6 +387,18 @@ def content_type(self) -> Optional[pulumi.Input[str]]: def content_type(self, value: Optional[pulumi.Input[str]]): pulumi.set(self, "content_type", value) + @property + @pulumi.getter(name="encryptionScope") + def encryption_scope(self) -> Optional[pulumi.Input[str]]: + """ + The encryption scope to use for this blob. + """ + return pulumi.get(self, "encryption_scope") + + @encryption_scope.setter + def encryption_scope(self, value: Optional[pulumi.Input[str]]): + pulumi.set(self, "encryption_scope", value) + @property @pulumi.getter def metadata(self) -> Optional[pulumi.Input[Mapping[str, pulumi.Input[str]]]]: @@ -513,6 +545,7 @@ def __init__(__self__, cache_control: Optional[pulumi.Input[str]] = None, content_md5: Optional[pulumi.Input[str]] = None, content_type: Optional[pulumi.Input[str]] = None, + encryption_scope: Optional[pulumi.Input[str]] = None, metadata: Optional[pulumi.Input[Mapping[str, pulumi.Input[str]]]] = None, name: Optional[pulumi.Input[str]] = None, parallelism: Optional[pulumi.Input[int]] = None, @@ -570,6 +603,7 @@ def __init__(__self__, :param pulumi.Input[str] cache_control: Controls the [cache control header](https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Cache-Control) content of the response when blob is requested . :param pulumi.Input[str] content_md5: The MD5 sum of the blob contents. Cannot be defined if `source_uri` is defined, or if blob type is Append or Page. Changing this forces a new resource to be created. :param pulumi.Input[str] content_type: The content type of the storage blob. Cannot be defined if `source_uri` is defined. Defaults to `application/octet-stream`. + :param pulumi.Input[str] encryption_scope: The encryption scope to use for this blob. :param pulumi.Input[Mapping[str, pulumi.Input[str]]] metadata: A map of custom blob metadata. :param pulumi.Input[str] name: The name of the storage blob. Must be unique within the storage container the blob is located. Changing this forces a new resource to be created. :param pulumi.Input[int] parallelism: The number of workers per CPU core to run for concurrent uploads. Defaults to `8`. Changing this forces a new resource to be created. @@ -650,6 +684,7 @@ def _internal_init(__self__, cache_control: Optional[pulumi.Input[str]] = None, content_md5: Optional[pulumi.Input[str]] = None, content_type: Optional[pulumi.Input[str]] = None, + encryption_scope: Optional[pulumi.Input[str]] = None, metadata: Optional[pulumi.Input[Mapping[str, pulumi.Input[str]]]] = None, name: Optional[pulumi.Input[str]] = None, parallelism: Optional[pulumi.Input[int]] = None, @@ -673,6 +708,7 @@ def _internal_init(__self__, __props__.__dict__["cache_control"] = cache_control __props__.__dict__["content_md5"] = content_md5 __props__.__dict__["content_type"] = content_type + __props__.__dict__["encryption_scope"] = encryption_scope __props__.__dict__["metadata"] = metadata __props__.__dict__["name"] = name __props__.__dict__["parallelism"] = parallelism @@ -704,6 +740,7 @@ def get(resource_name: str, cache_control: Optional[pulumi.Input[str]] = None, content_md5: Optional[pulumi.Input[str]] = None, content_type: Optional[pulumi.Input[str]] = None, + encryption_scope: Optional[pulumi.Input[str]] = None, metadata: Optional[pulumi.Input[Mapping[str, pulumi.Input[str]]]] = None, name: Optional[pulumi.Input[str]] = None, parallelism: Optional[pulumi.Input[int]] = None, @@ -726,6 +763,7 @@ def get(resource_name: str, :param pulumi.Input[str] cache_control: Controls the [cache control header](https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Cache-Control) content of the response when blob is requested . :param pulumi.Input[str] content_md5: The MD5 sum of the blob contents. Cannot be defined if `source_uri` is defined, or if blob type is Append or Page. Changing this forces a new resource to be created. :param pulumi.Input[str] content_type: The content type of the storage blob. Cannot be defined if `source_uri` is defined. Defaults to `application/octet-stream`. + :param pulumi.Input[str] encryption_scope: The encryption scope to use for this blob. :param pulumi.Input[Mapping[str, pulumi.Input[str]]] metadata: A map of custom blob metadata. :param pulumi.Input[str] name: The name of the storage blob. Must be unique within the storage container the blob is located. Changing this forces a new resource to be created. :param pulumi.Input[int] parallelism: The number of workers per CPU core to run for concurrent uploads. Defaults to `8`. Changing this forces a new resource to be created. @@ -750,6 +788,7 @@ def get(resource_name: str, __props__.__dict__["cache_control"] = cache_control __props__.__dict__["content_md5"] = content_md5 __props__.__dict__["content_type"] = content_type + __props__.__dict__["encryption_scope"] = encryption_scope __props__.__dict__["metadata"] = metadata __props__.__dict__["name"] = name __props__.__dict__["parallelism"] = parallelism @@ -795,6 +834,14 @@ def content_type(self) -> pulumi.Output[Optional[str]]: """ return pulumi.get(self, "content_type") + @property + @pulumi.getter(name="encryptionScope") + def encryption_scope(self) -> pulumi.Output[Optional[str]]: + """ + The encryption scope to use for this blob. + """ + return pulumi.get(self, "encryption_scope") + @property @pulumi.getter def metadata(self) -> pulumi.Output[Mapping[str, str]]: diff --git a/sdk/python/pulumi_azure/storage/container.py b/sdk/python/pulumi_azure/storage/container.py index 6522bd6916..7059c3c72f 100644 --- a/sdk/python/pulumi_azure/storage/container.py +++ b/sdk/python/pulumi_azure/storage/container.py @@ -16,6 +16,8 @@ class ContainerArgs: def __init__(__self__, *, storage_account_name: pulumi.Input[str], container_access_type: Optional[pulumi.Input[str]] = None, + default_encryption_scope: Optional[pulumi.Input[str]] = None, + encryption_scope_override_enabled: Optional[pulumi.Input[bool]] = None, metadata: Optional[pulumi.Input[Mapping[str, pulumi.Input[str]]]] = None, name: Optional[pulumi.Input[str]] = None): """ @@ -24,12 +26,18 @@ def __init__(__self__, *, :param pulumi.Input[str] container_access_type: The Access Level configured for this Container. Possible values are `blob`, `container` or `private`. Defaults to `private`. > **Note** When updating `container_access_type` for an existing storage container resource, Shared Key authentication will always be used, as AzureAD authentication is not supported. + :param pulumi.Input[str] default_encryption_scope: The default encryption scope to use for blobs uploaded to this container. Changing this forces a new resource to be created. + :param pulumi.Input[bool] encryption_scope_override_enabled: Whether to allow blobs to override the default encryption scope for this container. Can only be set when specifying `default_encryption_scope`. Defaults to `true`. Changing this forces a new resource to be created. :param pulumi.Input[Mapping[str, pulumi.Input[str]]] metadata: A mapping of MetaData for this Container. All metadata keys should be lowercase. :param pulumi.Input[str] name: The name of the Container which should be created within the Storage Account. Changing this forces a new resource to be created. """ pulumi.set(__self__, "storage_account_name", storage_account_name) if container_access_type is not None: pulumi.set(__self__, "container_access_type", container_access_type) + if default_encryption_scope is not None: + pulumi.set(__self__, "default_encryption_scope", default_encryption_scope) + if encryption_scope_override_enabled is not None: + pulumi.set(__self__, "encryption_scope_override_enabled", encryption_scope_override_enabled) if metadata is not None: pulumi.set(__self__, "metadata", metadata) if name is not None: @@ -61,6 +69,30 @@ def container_access_type(self) -> Optional[pulumi.Input[str]]: def container_access_type(self, value: Optional[pulumi.Input[str]]): pulumi.set(self, "container_access_type", value) + @property + @pulumi.getter(name="defaultEncryptionScope") + def default_encryption_scope(self) -> Optional[pulumi.Input[str]]: + """ + The default encryption scope to use for blobs uploaded to this container. Changing this forces a new resource to be created. + """ + return pulumi.get(self, "default_encryption_scope") + + @default_encryption_scope.setter + def default_encryption_scope(self, value: Optional[pulumi.Input[str]]): + pulumi.set(self, "default_encryption_scope", value) + + @property + @pulumi.getter(name="encryptionScopeOverrideEnabled") + def encryption_scope_override_enabled(self) -> Optional[pulumi.Input[bool]]: + """ + Whether to allow blobs to override the default encryption scope for this container. Can only be set when specifying `default_encryption_scope`. Defaults to `true`. Changing this forces a new resource to be created. + """ + return pulumi.get(self, "encryption_scope_override_enabled") + + @encryption_scope_override_enabled.setter + def encryption_scope_override_enabled(self, value: Optional[pulumi.Input[bool]]): + pulumi.set(self, "encryption_scope_override_enabled", value) + @property @pulumi.getter def metadata(self) -> Optional[pulumi.Input[Mapping[str, pulumi.Input[str]]]]: @@ -90,6 +122,8 @@ def name(self, value: Optional[pulumi.Input[str]]): class _ContainerState: def __init__(__self__, *, container_access_type: Optional[pulumi.Input[str]] = None, + default_encryption_scope: Optional[pulumi.Input[str]] = None, + encryption_scope_override_enabled: Optional[pulumi.Input[bool]] = None, has_immutability_policy: Optional[pulumi.Input[bool]] = None, has_legal_hold: Optional[pulumi.Input[bool]] = None, metadata: Optional[pulumi.Input[Mapping[str, pulumi.Input[str]]]] = None, @@ -101,6 +135,8 @@ def __init__(__self__, *, :param pulumi.Input[str] container_access_type: The Access Level configured for this Container. Possible values are `blob`, `container` or `private`. Defaults to `private`. > **Note** When updating `container_access_type` for an existing storage container resource, Shared Key authentication will always be used, as AzureAD authentication is not supported. + :param pulumi.Input[str] default_encryption_scope: The default encryption scope to use for blobs uploaded to this container. Changing this forces a new resource to be created. + :param pulumi.Input[bool] encryption_scope_override_enabled: Whether to allow blobs to override the default encryption scope for this container. Can only be set when specifying `default_encryption_scope`. Defaults to `true`. Changing this forces a new resource to be created. :param pulumi.Input[bool] has_immutability_policy: Is there an Immutability Policy configured on this Storage Container? :param pulumi.Input[bool] has_legal_hold: Is there a Legal Hold configured on this Storage Container? :param pulumi.Input[Mapping[str, pulumi.Input[str]]] metadata: A mapping of MetaData for this Container. All metadata keys should be lowercase. @@ -110,6 +146,10 @@ def __init__(__self__, *, """ if container_access_type is not None: pulumi.set(__self__, "container_access_type", container_access_type) + if default_encryption_scope is not None: + pulumi.set(__self__, "default_encryption_scope", default_encryption_scope) + if encryption_scope_override_enabled is not None: + pulumi.set(__self__, "encryption_scope_override_enabled", encryption_scope_override_enabled) if has_immutability_policy is not None: pulumi.set(__self__, "has_immutability_policy", has_immutability_policy) if has_legal_hold is not None: @@ -137,6 +177,30 @@ def container_access_type(self) -> Optional[pulumi.Input[str]]: def container_access_type(self, value: Optional[pulumi.Input[str]]): pulumi.set(self, "container_access_type", value) + @property + @pulumi.getter(name="defaultEncryptionScope") + def default_encryption_scope(self) -> Optional[pulumi.Input[str]]: + """ + The default encryption scope to use for blobs uploaded to this container. Changing this forces a new resource to be created. + """ + return pulumi.get(self, "default_encryption_scope") + + @default_encryption_scope.setter + def default_encryption_scope(self, value: Optional[pulumi.Input[str]]): + pulumi.set(self, "default_encryption_scope", value) + + @property + @pulumi.getter(name="encryptionScopeOverrideEnabled") + def encryption_scope_override_enabled(self) -> Optional[pulumi.Input[bool]]: + """ + Whether to allow blobs to override the default encryption scope for this container. Can only be set when specifying `default_encryption_scope`. Defaults to `true`. Changing this forces a new resource to be created. + """ + return pulumi.get(self, "encryption_scope_override_enabled") + + @encryption_scope_override_enabled.setter + def encryption_scope_override_enabled(self, value: Optional[pulumi.Input[bool]]): + pulumi.set(self, "encryption_scope_override_enabled", value) + @property @pulumi.getter(name="hasImmutabilityPolicy") def has_immutability_policy(self) -> Optional[pulumi.Input[bool]]: @@ -216,6 +280,8 @@ def __init__(__self__, resource_name: str, opts: Optional[pulumi.ResourceOptions] = None, container_access_type: Optional[pulumi.Input[str]] = None, + default_encryption_scope: Optional[pulumi.Input[str]] = None, + encryption_scope_override_enabled: Optional[pulumi.Input[bool]] = None, metadata: Optional[pulumi.Input[Mapping[str, pulumi.Input[str]]]] = None, name: Optional[pulumi.Input[str]] = None, storage_account_name: Optional[pulumi.Input[str]] = None, @@ -262,6 +328,8 @@ def __init__(__self__, :param pulumi.Input[str] container_access_type: The Access Level configured for this Container. Possible values are `blob`, `container` or `private`. Defaults to `private`. > **Note** When updating `container_access_type` for an existing storage container resource, Shared Key authentication will always be used, as AzureAD authentication is not supported. + :param pulumi.Input[str] default_encryption_scope: The default encryption scope to use for blobs uploaded to this container. Changing this forces a new resource to be created. + :param pulumi.Input[bool] encryption_scope_override_enabled: Whether to allow blobs to override the default encryption scope for this container. Can only be set when specifying `default_encryption_scope`. Defaults to `true`. Changing this forces a new resource to be created. :param pulumi.Input[Mapping[str, pulumi.Input[str]]] metadata: A mapping of MetaData for this Container. All metadata keys should be lowercase. :param pulumi.Input[str] name: The name of the Container which should be created within the Storage Account. Changing this forces a new resource to be created. :param pulumi.Input[str] storage_account_name: The name of the Storage Account where the Container should be created. Changing this forces a new resource to be created. @@ -325,6 +393,8 @@ def _internal_init(__self__, resource_name: str, opts: Optional[pulumi.ResourceOptions] = None, container_access_type: Optional[pulumi.Input[str]] = None, + default_encryption_scope: Optional[pulumi.Input[str]] = None, + encryption_scope_override_enabled: Optional[pulumi.Input[bool]] = None, metadata: Optional[pulumi.Input[Mapping[str, pulumi.Input[str]]]] = None, name: Optional[pulumi.Input[str]] = None, storage_account_name: Optional[pulumi.Input[str]] = None, @@ -338,6 +408,8 @@ def _internal_init(__self__, __props__ = ContainerArgs.__new__(ContainerArgs) __props__.__dict__["container_access_type"] = container_access_type + __props__.__dict__["default_encryption_scope"] = default_encryption_scope + __props__.__dict__["encryption_scope_override_enabled"] = encryption_scope_override_enabled __props__.__dict__["metadata"] = metadata __props__.__dict__["name"] = name if storage_account_name is None and not opts.urn: @@ -357,6 +429,8 @@ def get(resource_name: str, id: pulumi.Input[str], opts: Optional[pulumi.ResourceOptions] = None, container_access_type: Optional[pulumi.Input[str]] = None, + default_encryption_scope: Optional[pulumi.Input[str]] = None, + encryption_scope_override_enabled: Optional[pulumi.Input[bool]] = None, has_immutability_policy: Optional[pulumi.Input[bool]] = None, has_legal_hold: Optional[pulumi.Input[bool]] = None, metadata: Optional[pulumi.Input[Mapping[str, pulumi.Input[str]]]] = None, @@ -373,6 +447,8 @@ def get(resource_name: str, :param pulumi.Input[str] container_access_type: The Access Level configured for this Container. Possible values are `blob`, `container` or `private`. Defaults to `private`. > **Note** When updating `container_access_type` for an existing storage container resource, Shared Key authentication will always be used, as AzureAD authentication is not supported. + :param pulumi.Input[str] default_encryption_scope: The default encryption scope to use for blobs uploaded to this container. Changing this forces a new resource to be created. + :param pulumi.Input[bool] encryption_scope_override_enabled: Whether to allow blobs to override the default encryption scope for this container. Can only be set when specifying `default_encryption_scope`. Defaults to `true`. Changing this forces a new resource to be created. :param pulumi.Input[bool] has_immutability_policy: Is there an Immutability Policy configured on this Storage Container? :param pulumi.Input[bool] has_legal_hold: Is there a Legal Hold configured on this Storage Container? :param pulumi.Input[Mapping[str, pulumi.Input[str]]] metadata: A mapping of MetaData for this Container. All metadata keys should be lowercase. @@ -385,6 +461,8 @@ def get(resource_name: str, __props__ = _ContainerState.__new__(_ContainerState) __props__.__dict__["container_access_type"] = container_access_type + __props__.__dict__["default_encryption_scope"] = default_encryption_scope + __props__.__dict__["encryption_scope_override_enabled"] = encryption_scope_override_enabled __props__.__dict__["has_immutability_policy"] = has_immutability_policy __props__.__dict__["has_legal_hold"] = has_legal_hold __props__.__dict__["metadata"] = metadata @@ -403,6 +481,22 @@ def container_access_type(self) -> pulumi.Output[Optional[str]]: """ return pulumi.get(self, "container_access_type") + @property + @pulumi.getter(name="defaultEncryptionScope") + def default_encryption_scope(self) -> pulumi.Output[str]: + """ + The default encryption scope to use for blobs uploaded to this container. Changing this forces a new resource to be created. + """ + return pulumi.get(self, "default_encryption_scope") + + @property + @pulumi.getter(name="encryptionScopeOverrideEnabled") + def encryption_scope_override_enabled(self) -> pulumi.Output[Optional[bool]]: + """ + Whether to allow blobs to override the default encryption scope for this container. Can only be set when specifying `default_encryption_scope`. Defaults to `true`. Changing this forces a new resource to be created. + """ + return pulumi.get(self, "encryption_scope_override_enabled") + @property @pulumi.getter(name="hasImmutabilityPolicy") def has_immutability_policy(self) -> pulumi.Output[bool]: diff --git a/sdk/python/pulumi_azure/storage/data_lake_gen2_filesystem.py b/sdk/python/pulumi_azure/storage/data_lake_gen2_filesystem.py index aeb1607b91..092b1fbe3b 100644 --- a/sdk/python/pulumi_azure/storage/data_lake_gen2_filesystem.py +++ b/sdk/python/pulumi_azure/storage/data_lake_gen2_filesystem.py @@ -18,6 +18,7 @@ class DataLakeGen2FilesystemArgs: def __init__(__self__, *, storage_account_id: pulumi.Input[str], aces: Optional[pulumi.Input[Sequence[pulumi.Input['DataLakeGen2FilesystemAceArgs']]]] = None, + default_encryption_scope: Optional[pulumi.Input[str]] = None, group: Optional[pulumi.Input[str]] = None, name: Optional[pulumi.Input[str]] = None, owner: Optional[pulumi.Input[str]] = None, @@ -26,6 +27,7 @@ def __init__(__self__, *, The set of arguments for constructing a DataLakeGen2Filesystem resource. :param pulumi.Input[str] storage_account_id: Specifies the ID of the Storage Account in which the Data Lake Gen2 File System should exist. Changing this forces a new resource to be created. :param pulumi.Input[Sequence[pulumi.Input['DataLakeGen2FilesystemAceArgs']]] aces: One or more `ace` blocks as defined below to specify the entries for the ACL for the path. + :param pulumi.Input[str] default_encryption_scope: The default encryption scope to use for this filesystem. Changing this forces a new resource to be created. :param pulumi.Input[str] group: Specifies the Object ID of the Azure Active Directory Group to make the owning group of the root path (i.e. `/`). Possible values also include `$superuser`. > **NOTE:** The Storage Account requires `account_kind` to be either `StorageV2` or `BlobStorage`. In addition, `is_hns_enabled` has to be set to `true`. @@ -36,6 +38,8 @@ def __init__(__self__, *, pulumi.set(__self__, "storage_account_id", storage_account_id) if aces is not None: pulumi.set(__self__, "aces", aces) + if default_encryption_scope is not None: + pulumi.set(__self__, "default_encryption_scope", default_encryption_scope) if group is not None: pulumi.set(__self__, "group", group) if name is not None: @@ -69,6 +73,18 @@ def aces(self) -> Optional[pulumi.Input[Sequence[pulumi.Input['DataLakeGen2Files def aces(self, value: Optional[pulumi.Input[Sequence[pulumi.Input['DataLakeGen2FilesystemAceArgs']]]]): pulumi.set(self, "aces", value) + @property + @pulumi.getter(name="defaultEncryptionScope") + def default_encryption_scope(self) -> Optional[pulumi.Input[str]]: + """ + The default encryption scope to use for this filesystem. Changing this forces a new resource to be created. + """ + return pulumi.get(self, "default_encryption_scope") + + @default_encryption_scope.setter + def default_encryption_scope(self, value: Optional[pulumi.Input[str]]): + pulumi.set(self, "default_encryption_scope", value) + @property @pulumi.getter def group(self) -> Optional[pulumi.Input[str]]: @@ -124,6 +140,7 @@ def properties(self, value: Optional[pulumi.Input[Mapping[str, pulumi.Input[str] class _DataLakeGen2FilesystemState: def __init__(__self__, *, aces: Optional[pulumi.Input[Sequence[pulumi.Input['DataLakeGen2FilesystemAceArgs']]]] = None, + default_encryption_scope: Optional[pulumi.Input[str]] = None, group: Optional[pulumi.Input[str]] = None, name: Optional[pulumi.Input[str]] = None, owner: Optional[pulumi.Input[str]] = None, @@ -132,6 +149,7 @@ def __init__(__self__, *, """ Input properties used for looking up and filtering DataLakeGen2Filesystem resources. :param pulumi.Input[Sequence[pulumi.Input['DataLakeGen2FilesystemAceArgs']]] aces: One or more `ace` blocks as defined below to specify the entries for the ACL for the path. + :param pulumi.Input[str] default_encryption_scope: The default encryption scope to use for this filesystem. Changing this forces a new resource to be created. :param pulumi.Input[str] group: Specifies the Object ID of the Azure Active Directory Group to make the owning group of the root path (i.e. `/`). Possible values also include `$superuser`. > **NOTE:** The Storage Account requires `account_kind` to be either `StorageV2` or `BlobStorage`. In addition, `is_hns_enabled` has to be set to `true`. @@ -142,6 +160,8 @@ def __init__(__self__, *, """ if aces is not None: pulumi.set(__self__, "aces", aces) + if default_encryption_scope is not None: + pulumi.set(__self__, "default_encryption_scope", default_encryption_scope) if group is not None: pulumi.set(__self__, "group", group) if name is not None: @@ -165,6 +185,18 @@ def aces(self) -> Optional[pulumi.Input[Sequence[pulumi.Input['DataLakeGen2Files def aces(self, value: Optional[pulumi.Input[Sequence[pulumi.Input['DataLakeGen2FilesystemAceArgs']]]]): pulumi.set(self, "aces", value) + @property + @pulumi.getter(name="defaultEncryptionScope") + def default_encryption_scope(self) -> Optional[pulumi.Input[str]]: + """ + The default encryption scope to use for this filesystem. Changing this forces a new resource to be created. + """ + return pulumi.get(self, "default_encryption_scope") + + @default_encryption_scope.setter + def default_encryption_scope(self, value: Optional[pulumi.Input[str]]): + pulumi.set(self, "default_encryption_scope", value) + @property @pulumi.getter def group(self) -> Optional[pulumi.Input[str]]: @@ -234,6 +266,7 @@ def __init__(__self__, resource_name: str, opts: Optional[pulumi.ResourceOptions] = None, aces: Optional[pulumi.Input[Sequence[pulumi.Input[pulumi.InputType['DataLakeGen2FilesystemAceArgs']]]]] = None, + default_encryption_scope: Optional[pulumi.Input[str]] = None, group: Optional[pulumi.Input[str]] = None, name: Optional[pulumi.Input[str]] = None, owner: Optional[pulumi.Input[str]] = None, @@ -283,6 +316,7 @@ def __init__(__self__, :param str resource_name: The name of the resource. :param pulumi.ResourceOptions opts: Options for the resource. :param pulumi.Input[Sequence[pulumi.Input[pulumi.InputType['DataLakeGen2FilesystemAceArgs']]]] aces: One or more `ace` blocks as defined below to specify the entries for the ACL for the path. + :param pulumi.Input[str] default_encryption_scope: The default encryption scope to use for this filesystem. Changing this forces a new resource to be created. :param pulumi.Input[str] group: Specifies the Object ID of the Azure Active Directory Group to make the owning group of the root path (i.e. `/`). Possible values also include `$superuser`. > **NOTE:** The Storage Account requires `account_kind` to be either `StorageV2` or `BlobStorage`. In addition, `is_hns_enabled` has to be set to `true`. @@ -353,6 +387,7 @@ def _internal_init(__self__, resource_name: str, opts: Optional[pulumi.ResourceOptions] = None, aces: Optional[pulumi.Input[Sequence[pulumi.Input[pulumi.InputType['DataLakeGen2FilesystemAceArgs']]]]] = None, + default_encryption_scope: Optional[pulumi.Input[str]] = None, group: Optional[pulumi.Input[str]] = None, name: Optional[pulumi.Input[str]] = None, owner: Optional[pulumi.Input[str]] = None, @@ -368,6 +403,7 @@ def _internal_init(__self__, __props__ = DataLakeGen2FilesystemArgs.__new__(DataLakeGen2FilesystemArgs) __props__.__dict__["aces"] = aces + __props__.__dict__["default_encryption_scope"] = default_encryption_scope __props__.__dict__["group"] = group __props__.__dict__["name"] = name __props__.__dict__["owner"] = owner @@ -386,6 +422,7 @@ def get(resource_name: str, id: pulumi.Input[str], opts: Optional[pulumi.ResourceOptions] = None, aces: Optional[pulumi.Input[Sequence[pulumi.Input[pulumi.InputType['DataLakeGen2FilesystemAceArgs']]]]] = None, + default_encryption_scope: Optional[pulumi.Input[str]] = None, group: Optional[pulumi.Input[str]] = None, name: Optional[pulumi.Input[str]] = None, owner: Optional[pulumi.Input[str]] = None, @@ -399,6 +436,7 @@ def get(resource_name: str, :param pulumi.Input[str] id: The unique provider ID of the resource to lookup. :param pulumi.ResourceOptions opts: Options for the resource. :param pulumi.Input[Sequence[pulumi.Input[pulumi.InputType['DataLakeGen2FilesystemAceArgs']]]] aces: One or more `ace` blocks as defined below to specify the entries for the ACL for the path. + :param pulumi.Input[str] default_encryption_scope: The default encryption scope to use for this filesystem. Changing this forces a new resource to be created. :param pulumi.Input[str] group: Specifies the Object ID of the Azure Active Directory Group to make the owning group of the root path (i.e. `/`). Possible values also include `$superuser`. > **NOTE:** The Storage Account requires `account_kind` to be either `StorageV2` or `BlobStorage`. In addition, `is_hns_enabled` has to be set to `true`. @@ -412,6 +450,7 @@ def get(resource_name: str, __props__ = _DataLakeGen2FilesystemState.__new__(_DataLakeGen2FilesystemState) __props__.__dict__["aces"] = aces + __props__.__dict__["default_encryption_scope"] = default_encryption_scope __props__.__dict__["group"] = group __props__.__dict__["name"] = name __props__.__dict__["owner"] = owner @@ -427,6 +466,14 @@ def aces(self) -> pulumi.Output[Sequence['outputs.DataLakeGen2FilesystemAce']]: """ return pulumi.get(self, "aces") + @property + @pulumi.getter(name="defaultEncryptionScope") + def default_encryption_scope(self) -> pulumi.Output[str]: + """ + The default encryption scope to use for this filesystem. Changing this forces a new resource to be created. + """ + return pulumi.get(self, "default_encryption_scope") + @property @pulumi.getter def group(self) -> pulumi.Output[str]: diff --git a/sdk/python/pulumi_azure/storage/get_blob.py b/sdk/python/pulumi_azure/storage/get_blob.py index be0db6177b..c71096d59f 100644 --- a/sdk/python/pulumi_azure/storage/get_blob.py +++ b/sdk/python/pulumi_azure/storage/get_blob.py @@ -21,7 +21,7 @@ class GetBlobResult: """ A collection of values returned by getBlob. """ - def __init__(__self__, access_tier=None, content_md5=None, content_type=None, id=None, metadata=None, name=None, storage_account_name=None, storage_container_name=None, type=None, url=None): + def __init__(__self__, access_tier=None, content_md5=None, content_type=None, encryption_scope=None, id=None, metadata=None, name=None, storage_account_name=None, storage_container_name=None, type=None, url=None): if access_tier and not isinstance(access_tier, str): raise TypeError("Expected argument 'access_tier' to be a str") pulumi.set(__self__, "access_tier", access_tier) @@ -31,6 +31,9 @@ def __init__(__self__, access_tier=None, content_md5=None, content_type=None, id if content_type and not isinstance(content_type, str): raise TypeError("Expected argument 'content_type' to be a str") pulumi.set(__self__, "content_type", content_type) + if encryption_scope and not isinstance(encryption_scope, str): + raise TypeError("Expected argument 'encryption_scope' to be a str") + pulumi.set(__self__, "encryption_scope", encryption_scope) if id and not isinstance(id, str): raise TypeError("Expected argument 'id' to be a str") pulumi.set(__self__, "id", id) @@ -77,6 +80,14 @@ def content_type(self) -> str: """ return pulumi.get(self, "content_type") + @property + @pulumi.getter(name="encryptionScope") + def encryption_scope(self) -> str: + """ + The encryption scope for this blob. + """ + return pulumi.get(self, "encryption_scope") + @property @pulumi.getter def id(self) -> str: @@ -134,6 +145,7 @@ def __await__(self): access_tier=self.access_tier, content_md5=self.content_md5, content_type=self.content_type, + encryption_scope=self.encryption_scope, id=self.id, metadata=self.metadata, name=self.name, @@ -182,6 +194,7 @@ def get_blob(metadata: Optional[Mapping[str, str]] = None, access_tier=pulumi.get(__ret__, 'access_tier'), content_md5=pulumi.get(__ret__, 'content_md5'), content_type=pulumi.get(__ret__, 'content_type'), + encryption_scope=pulumi.get(__ret__, 'encryption_scope'), id=pulumi.get(__ret__, 'id'), metadata=pulumi.get(__ret__, 'metadata'), name=pulumi.get(__ret__, 'name'), diff --git a/sdk/python/pulumi_azure/storage/get_storage_container.py b/sdk/python/pulumi_azure/storage/get_storage_container.py index af2475a695..8b9dcf235c 100644 --- a/sdk/python/pulumi_azure/storage/get_storage_container.py +++ b/sdk/python/pulumi_azure/storage/get_storage_container.py @@ -21,10 +21,16 @@ class GetStorageContainerResult: """ A collection of values returned by getStorageContainer. """ - def __init__(__self__, container_access_type=None, has_immutability_policy=None, has_legal_hold=None, id=None, metadata=None, name=None, resource_manager_id=None, storage_account_name=None): + def __init__(__self__, container_access_type=None, default_encryption_scope=None, encryption_scope_override_enabled=None, has_immutability_policy=None, has_legal_hold=None, id=None, metadata=None, name=None, resource_manager_id=None, storage_account_name=None): if container_access_type and not isinstance(container_access_type, str): raise TypeError("Expected argument 'container_access_type' to be a str") pulumi.set(__self__, "container_access_type", container_access_type) + if default_encryption_scope and not isinstance(default_encryption_scope, str): + raise TypeError("Expected argument 'default_encryption_scope' to be a str") + pulumi.set(__self__, "default_encryption_scope", default_encryption_scope) + if encryption_scope_override_enabled and not isinstance(encryption_scope_override_enabled, bool): + raise TypeError("Expected argument 'encryption_scope_override_enabled' to be a bool") + pulumi.set(__self__, "encryption_scope_override_enabled", encryption_scope_override_enabled) if has_immutability_policy and not isinstance(has_immutability_policy, bool): raise TypeError("Expected argument 'has_immutability_policy' to be a bool") pulumi.set(__self__, "has_immutability_policy", has_immutability_policy) @@ -55,6 +61,22 @@ def container_access_type(self) -> str: """ return pulumi.get(self, "container_access_type") + @property + @pulumi.getter(name="defaultEncryptionScope") + def default_encryption_scope(self) -> str: + """ + The default encryption scope in use for blobs uploaded to this container. + """ + return pulumi.get(self, "default_encryption_scope") + + @property + @pulumi.getter(name="encryptionScopeOverrideEnabled") + def encryption_scope_override_enabled(self) -> bool: + """ + Whether blobs are allowed to override the default encryption scope for this container. + """ + return pulumi.get(self, "encryption_scope_override_enabled") + @property @pulumi.getter(name="hasImmutabilityPolicy") def has_immutability_policy(self) -> bool: @@ -113,6 +135,8 @@ def __await__(self): yield self return GetStorageContainerResult( container_access_type=self.container_access_type, + default_encryption_scope=self.default_encryption_scope, + encryption_scope_override_enabled=self.encryption_scope_override_enabled, has_immutability_policy=self.has_immutability_policy, has_legal_hold=self.has_legal_hold, id=self.id, @@ -155,6 +179,8 @@ def get_storage_container(metadata: Optional[Mapping[str, str]] = None, return AwaitableGetStorageContainerResult( container_access_type=pulumi.get(__ret__, 'container_access_type'), + default_encryption_scope=pulumi.get(__ret__, 'default_encryption_scope'), + encryption_scope_override_enabled=pulumi.get(__ret__, 'encryption_scope_override_enabled'), has_immutability_policy=pulumi.get(__ret__, 'has_immutability_policy'), has_legal_hold=pulumi.get(__ret__, 'has_legal_hold'), id=pulumi.get(__ret__, 'id'), diff --git a/sdk/python/pulumi_azure/storage/zip_blob.py b/sdk/python/pulumi_azure/storage/zip_blob.py index dd8d60a8cd..65bbd1eed9 100644 --- a/sdk/python/pulumi_azure/storage/zip_blob.py +++ b/sdk/python/pulumi_azure/storage/zip_blob.py @@ -22,6 +22,7 @@ def __init__(__self__, *, content: Optional[pulumi.Input[pulumi.Archive]] = None, content_md5: Optional[pulumi.Input[str]] = None, content_type: Optional[pulumi.Input[str]] = None, + encryption_scope: Optional[pulumi.Input[str]] = None, metadata: Optional[pulumi.Input[Mapping[str, pulumi.Input[str]]]] = None, name: Optional[pulumi.Input[str]] = None, parallelism: Optional[pulumi.Input[int]] = None, @@ -44,6 +45,8 @@ def __init__(__self__, *, pulumi.set(__self__, "content_md5", content_md5) if content_type is not None: pulumi.set(__self__, "content_type", content_type) + if encryption_scope is not None: + pulumi.set(__self__, "encryption_scope", encryption_scope) if metadata is not None: pulumi.set(__self__, "metadata", metadata) if name is not None: @@ -129,6 +132,15 @@ def content_type(self) -> Optional[pulumi.Input[str]]: def content_type(self, value: Optional[pulumi.Input[str]]): pulumi.set(self, "content_type", value) + @property + @pulumi.getter(name="encryptionScope") + def encryption_scope(self) -> Optional[pulumi.Input[str]]: + return pulumi.get(self, "encryption_scope") + + @encryption_scope.setter + def encryption_scope(self, value: Optional[pulumi.Input[str]]): + pulumi.set(self, "encryption_scope", value) + @property @pulumi.getter def metadata(self) -> Optional[pulumi.Input[Mapping[str, pulumi.Input[str]]]]: @@ -192,6 +204,7 @@ def __init__(__self__, *, content: Optional[pulumi.Input[pulumi.Archive]] = None, content_md5: Optional[pulumi.Input[str]] = None, content_type: Optional[pulumi.Input[str]] = None, + encryption_scope: Optional[pulumi.Input[str]] = None, metadata: Optional[pulumi.Input[Mapping[str, pulumi.Input[str]]]] = None, name: Optional[pulumi.Input[str]] = None, parallelism: Optional[pulumi.Input[int]] = None, @@ -215,6 +228,8 @@ def __init__(__self__, *, pulumi.set(__self__, "content_md5", content_md5) if content_type is not None: pulumi.set(__self__, "content_type", content_type) + if encryption_scope is not None: + pulumi.set(__self__, "encryption_scope", encryption_scope) if metadata is not None: pulumi.set(__self__, "metadata", metadata) if name is not None: @@ -281,6 +296,15 @@ def content_type(self) -> Optional[pulumi.Input[str]]: def content_type(self, value: Optional[pulumi.Input[str]]): pulumi.set(self, "content_type", value) + @property + @pulumi.getter(name="encryptionScope") + def encryption_scope(self) -> Optional[pulumi.Input[str]]: + return pulumi.get(self, "encryption_scope") + + @encryption_scope.setter + def encryption_scope(self, value: Optional[pulumi.Input[str]]): + pulumi.set(self, "encryption_scope", value) + @property @pulumi.getter def metadata(self) -> Optional[pulumi.Input[Mapping[str, pulumi.Input[str]]]]: @@ -387,6 +411,7 @@ def __init__(__self__, content: Optional[pulumi.Input[pulumi.Archive]] = None, content_md5: Optional[pulumi.Input[str]] = None, content_type: Optional[pulumi.Input[str]] = None, + encryption_scope: Optional[pulumi.Input[str]] = None, metadata: Optional[pulumi.Input[Mapping[str, pulumi.Input[str]]]] = None, name: Optional[pulumi.Input[str]] = None, parallelism: Optional[pulumi.Input[int]] = None, @@ -430,6 +455,7 @@ def _internal_init(__self__, content: Optional[pulumi.Input[pulumi.Archive]] = None, content_md5: Optional[pulumi.Input[str]] = None, content_type: Optional[pulumi.Input[str]] = None, + encryption_scope: Optional[pulumi.Input[str]] = None, metadata: Optional[pulumi.Input[Mapping[str, pulumi.Input[str]]]] = None, name: Optional[pulumi.Input[str]] = None, parallelism: Optional[pulumi.Input[int]] = None, @@ -454,6 +480,7 @@ def _internal_init(__self__, __props__.__dict__["content"] = content __props__.__dict__["content_md5"] = content_md5 __props__.__dict__["content_type"] = content_type + __props__.__dict__["encryption_scope"] = encryption_scope __props__.__dict__["metadata"] = metadata __props__.__dict__["name"] = name __props__.__dict__["parallelism"] = parallelism @@ -485,6 +512,7 @@ def get(resource_name: str, content: Optional[pulumi.Input[pulumi.Archive]] = None, content_md5: Optional[pulumi.Input[str]] = None, content_type: Optional[pulumi.Input[str]] = None, + encryption_scope: Optional[pulumi.Input[str]] = None, metadata: Optional[pulumi.Input[Mapping[str, pulumi.Input[str]]]] = None, name: Optional[pulumi.Input[str]] = None, parallelism: Optional[pulumi.Input[int]] = None, @@ -512,6 +540,7 @@ def get(resource_name: str, __props__.__dict__["content"] = content __props__.__dict__["content_md5"] = content_md5 __props__.__dict__["content_type"] = content_type + __props__.__dict__["encryption_scope"] = encryption_scope __props__.__dict__["metadata"] = metadata __props__.__dict__["name"] = name __props__.__dict__["parallelism"] = parallelism @@ -549,6 +578,11 @@ def content_md5(self) -> pulumi.Output[Optional[str]]: def content_type(self) -> pulumi.Output[Optional[str]]: return pulumi.get(self, "content_type") + @property + @pulumi.getter(name="encryptionScope") + def encryption_scope(self) -> pulumi.Output[Optional[str]]: + return pulumi.get(self, "encryption_scope") + @property @pulumi.getter def metadata(self) -> pulumi.Output[Mapping[str, str]]: diff --git a/sdk/python/pulumi_azure/webpubsub/service.py b/sdk/python/pulumi_azure/webpubsub/service.py index 60b9a56d79..208db4028b 100644 --- a/sdk/python/pulumi_azure/webpubsub/service.py +++ b/sdk/python/pulumi_azure/webpubsub/service.py @@ -31,9 +31,11 @@ def __init__(__self__, *, """ The set of arguments for constructing a Service resource. :param pulumi.Input[str] resource_group_name: The name of the resource group in which to create the Web PubSub service. Changing this forces a new resource to be created. - :param pulumi.Input[str] sku: Specifies which SKU to use. Possible values are `Free_F1`, `Standard_S1`, and `Premium_P1`. + :param pulumi.Input[str] sku: Specifies which SKU to use. Possible values are `Free_F1`, `Standard_S1`, `Premium_P1` and `Premium_P2`. :param pulumi.Input[bool] aad_auth_enabled: Whether to enable AAD auth? Defaults to `true`. - :param pulumi.Input[int] capacity: Specifies the number of units associated with this Web PubSub resource. Valid values are: Free: `1`, Standard: `1`, `2`, `5`, `10`, `20`, `50`, `100`. + :param pulumi.Input[int] capacity: Specifies the number of units associated with this Web PubSub resource. Valid values are `1`, `2`, `3`, `4`, `5`, `6`, `7`, `8`, `9`, `10`, `20`, `30`, `40`, `50`, `60`, `70`, `80`, `90`, `100`, `200`, `300`, `400`, `500`, `600`, `700`, `800`, `900` and `1000`. + + > **NOTE:** The valid capacity range for sku `Free_F1` is `1`, for sku `Premium_P2` is from `100` to `1000`, and from `1` to `100` for sku `Standard_S1` and `Premium_P1`. :param pulumi.Input['ServiceIdentityArgs'] identity: An `identity` block as defined below. :param pulumi.Input['ServiceLiveTraceArgs'] live_trace: A `live_trace` block as defined below. :param pulumi.Input[bool] local_auth_enabled: Whether to enable local auth? Defaults to `true`. @@ -82,7 +84,7 @@ def resource_group_name(self, value: pulumi.Input[str]): @pulumi.getter def sku(self) -> pulumi.Input[str]: """ - Specifies which SKU to use. Possible values are `Free_F1`, `Standard_S1`, and `Premium_P1`. + Specifies which SKU to use. Possible values are `Free_F1`, `Standard_S1`, `Premium_P1` and `Premium_P2`. """ return pulumi.get(self, "sku") @@ -106,7 +108,9 @@ def aad_auth_enabled(self, value: Optional[pulumi.Input[bool]]): @pulumi.getter def capacity(self) -> Optional[pulumi.Input[int]]: """ - Specifies the number of units associated with this Web PubSub resource. Valid values are: Free: `1`, Standard: `1`, `2`, `5`, `10`, `20`, `50`, `100`. + Specifies the number of units associated with this Web PubSub resource. Valid values are `1`, `2`, `3`, `4`, `5`, `6`, `7`, `8`, `9`, `10`, `20`, `30`, `40`, `50`, `60`, `70`, `80`, `90`, `100`, `200`, `300`, `400`, `500`, `600`, `700`, `800`, `900` and `1000`. + + > **NOTE:** The valid capacity range for sku `Free_F1` is `1`, for sku `Premium_P2` is from `100` to `1000`, and from `1` to `100` for sku `Standard_S1` and `Premium_P1`. """ return pulumi.get(self, "capacity") @@ -238,7 +242,9 @@ def __init__(__self__, *, """ Input properties used for looking up and filtering Service resources. :param pulumi.Input[bool] aad_auth_enabled: Whether to enable AAD auth? Defaults to `true`. - :param pulumi.Input[int] capacity: Specifies the number of units associated with this Web PubSub resource. Valid values are: Free: `1`, Standard: `1`, `2`, `5`, `10`, `20`, `50`, `100`. + :param pulumi.Input[int] capacity: Specifies the number of units associated with this Web PubSub resource. Valid values are `1`, `2`, `3`, `4`, `5`, `6`, `7`, `8`, `9`, `10`, `20`, `30`, `40`, `50`, `60`, `70`, `80`, `90`, `100`, `200`, `300`, `400`, `500`, `600`, `700`, `800`, `900` and `1000`. + + > **NOTE:** The valid capacity range for sku `Free_F1` is `1`, for sku `Premium_P2` is from `100` to `1000`, and from `1` to `100` for sku `Standard_S1` and `Premium_P1`. :param pulumi.Input[str] external_ip: The publicly accessible IP of the Web PubSub service. :param pulumi.Input[str] hostname: The FQDN of the Web PubSub service. :param pulumi.Input['ServiceIdentityArgs'] identity: An `identity` block as defined below. @@ -254,7 +260,7 @@ def __init__(__self__, *, :param pulumi.Input[str] secondary_access_key: The secondary access key for the Web PubSub service. :param pulumi.Input[str] secondary_connection_string: The secondary connection string for the Web PubSub service. :param pulumi.Input[int] server_port: The publicly accessible port of the Web PubSub service which is designed for customer server side use. - :param pulumi.Input[str] sku: Specifies which SKU to use. Possible values are `Free_F1`, `Standard_S1`, and `Premium_P1`. + :param pulumi.Input[str] sku: Specifies which SKU to use. Possible values are `Free_F1`, `Standard_S1`, `Premium_P1` and `Premium_P2`. :param pulumi.Input[Mapping[str, pulumi.Input[str]]] tags: A mapping of tags to assign to the resource. :param pulumi.Input[bool] tls_client_cert_enabled: Whether to request client certificate during TLS handshake? Defaults to `false`. """ @@ -317,7 +323,9 @@ def aad_auth_enabled(self, value: Optional[pulumi.Input[bool]]): @pulumi.getter def capacity(self) -> Optional[pulumi.Input[int]]: """ - Specifies the number of units associated with this Web PubSub resource. Valid values are: Free: `1`, Standard: `1`, `2`, `5`, `10`, `20`, `50`, `100`. + Specifies the number of units associated with this Web PubSub resource. Valid values are `1`, `2`, `3`, `4`, `5`, `6`, `7`, `8`, `9`, `10`, `20`, `30`, `40`, `50`, `60`, `70`, `80`, `90`, `100`, `200`, `300`, `400`, `500`, `600`, `700`, `800`, `900` and `1000`. + + > **NOTE:** The valid capacity range for sku `Free_F1` is `1`, for sku `Premium_P2` is from `100` to `1000`, and from `1` to `100` for sku `Standard_S1` and `Premium_P1`. """ return pulumi.get(self, "capacity") @@ -509,7 +517,7 @@ def server_port(self, value: Optional[pulumi.Input[int]]): @pulumi.getter def sku(self) -> Optional[pulumi.Input[str]]: """ - Specifies which SKU to use. Possible values are `Free_F1`, `Standard_S1`, and `Premium_P1`. + Specifies which SKU to use. Possible values are `Free_F1`, `Standard_S1`, `Premium_P1` and `Premium_P2`. """ return pulumi.get(self, "sku") @@ -611,7 +619,9 @@ def __init__(__self__, :param str resource_name: The name of the resource. :param pulumi.ResourceOptions opts: Options for the resource. :param pulumi.Input[bool] aad_auth_enabled: Whether to enable AAD auth? Defaults to `true`. - :param pulumi.Input[int] capacity: Specifies the number of units associated with this Web PubSub resource. Valid values are: Free: `1`, Standard: `1`, `2`, `5`, `10`, `20`, `50`, `100`. + :param pulumi.Input[int] capacity: Specifies the number of units associated with this Web PubSub resource. Valid values are `1`, `2`, `3`, `4`, `5`, `6`, `7`, `8`, `9`, `10`, `20`, `30`, `40`, `50`, `60`, `70`, `80`, `90`, `100`, `200`, `300`, `400`, `500`, `600`, `700`, `800`, `900` and `1000`. + + > **NOTE:** The valid capacity range for sku `Free_F1` is `1`, for sku `Premium_P2` is from `100` to `1000`, and from `1` to `100` for sku `Standard_S1` and `Premium_P1`. :param pulumi.Input[pulumi.InputType['ServiceIdentityArgs']] identity: An `identity` block as defined below. :param pulumi.Input[pulumi.InputType['ServiceLiveTraceArgs']] live_trace: A `live_trace` block as defined below. :param pulumi.Input[bool] local_auth_enabled: Whether to enable local auth? Defaults to `true`. @@ -619,7 +629,7 @@ def __init__(__self__, :param pulumi.Input[str] name: The name of the Web PubSub service. Changing this forces a new resource to be created. :param pulumi.Input[bool] public_network_access_enabled: Whether to enable public network access? Defaults to `true`. :param pulumi.Input[str] resource_group_name: The name of the resource group in which to create the Web PubSub service. Changing this forces a new resource to be created. - :param pulumi.Input[str] sku: Specifies which SKU to use. Possible values are `Free_F1`, `Standard_S1`, and `Premium_P1`. + :param pulumi.Input[str] sku: Specifies which SKU to use. Possible values are `Free_F1`, `Standard_S1`, `Premium_P1` and `Premium_P2`. :param pulumi.Input[Mapping[str, pulumi.Input[str]]] tags: A mapping of tags to assign to the resource. :param pulumi.Input[bool] tls_client_cert_enabled: Whether to request client certificate during TLS handshake? Defaults to `false`. """ @@ -770,7 +780,9 @@ def get(resource_name: str, :param pulumi.Input[str] id: The unique provider ID of the resource to lookup. :param pulumi.ResourceOptions opts: Options for the resource. :param pulumi.Input[bool] aad_auth_enabled: Whether to enable AAD auth? Defaults to `true`. - :param pulumi.Input[int] capacity: Specifies the number of units associated with this Web PubSub resource. Valid values are: Free: `1`, Standard: `1`, `2`, `5`, `10`, `20`, `50`, `100`. + :param pulumi.Input[int] capacity: Specifies the number of units associated with this Web PubSub resource. Valid values are `1`, `2`, `3`, `4`, `5`, `6`, `7`, `8`, `9`, `10`, `20`, `30`, `40`, `50`, `60`, `70`, `80`, `90`, `100`, `200`, `300`, `400`, `500`, `600`, `700`, `800`, `900` and `1000`. + + > **NOTE:** The valid capacity range for sku `Free_F1` is `1`, for sku `Premium_P2` is from `100` to `1000`, and from `1` to `100` for sku `Standard_S1` and `Premium_P1`. :param pulumi.Input[str] external_ip: The publicly accessible IP of the Web PubSub service. :param pulumi.Input[str] hostname: The FQDN of the Web PubSub service. :param pulumi.Input[pulumi.InputType['ServiceIdentityArgs']] identity: An `identity` block as defined below. @@ -786,7 +798,7 @@ def get(resource_name: str, :param pulumi.Input[str] secondary_access_key: The secondary access key for the Web PubSub service. :param pulumi.Input[str] secondary_connection_string: The secondary connection string for the Web PubSub service. :param pulumi.Input[int] server_port: The publicly accessible port of the Web PubSub service which is designed for customer server side use. - :param pulumi.Input[str] sku: Specifies which SKU to use. Possible values are `Free_F1`, `Standard_S1`, and `Premium_P1`. + :param pulumi.Input[str] sku: Specifies which SKU to use. Possible values are `Free_F1`, `Standard_S1`, `Premium_P1` and `Premium_P2`. :param pulumi.Input[Mapping[str, pulumi.Input[str]]] tags: A mapping of tags to assign to the resource. :param pulumi.Input[bool] tls_client_cert_enabled: Whether to request client certificate during TLS handshake? Defaults to `false`. """ @@ -829,7 +841,9 @@ def aad_auth_enabled(self) -> pulumi.Output[Optional[bool]]: @pulumi.getter def capacity(self) -> pulumi.Output[Optional[int]]: """ - Specifies the number of units associated with this Web PubSub resource. Valid values are: Free: `1`, Standard: `1`, `2`, `5`, `10`, `20`, `50`, `100`. + Specifies the number of units associated with this Web PubSub resource. Valid values are `1`, `2`, `3`, `4`, `5`, `6`, `7`, `8`, `9`, `10`, `20`, `30`, `40`, `50`, `60`, `70`, `80`, `90`, `100`, `200`, `300`, `400`, `500`, `600`, `700`, `800`, `900` and `1000`. + + > **NOTE:** The valid capacity range for sku `Free_F1` is `1`, for sku `Premium_P2` is from `100` to `1000`, and from `1` to `100` for sku `Standard_S1` and `Premium_P1`. """ return pulumi.get(self, "capacity") @@ -957,7 +971,7 @@ def server_port(self) -> pulumi.Output[int]: @pulumi.getter def sku(self) -> pulumi.Output[str]: """ - Specifies which SKU to use. Possible values are `Free_F1`, `Standard_S1`, and `Premium_P1`. + Specifies which SKU to use. Possible values are `Free_F1`, `Standard_S1`, `Premium_P1` and `Premium_P2`. """ return pulumi.get(self, "sku") diff --git a/upstream b/upstream index c23baefbcc..fd5f0433ab 160000 --- a/upstream +++ b/upstream @@ -1 +1 @@ -Subproject commit c23baefbccbbe56f46924130a21f90d1784afc14 +Subproject commit fd5f0433ab78d101979cb76c5ba8ba705df2b4cd