Google Cloud Native is in preview. Google Cloud Classic is fully supported.
google-native.cloudidentity/v1.Membership
Explore with Pulumi AI
Google Cloud Native is in preview. Google Cloud Classic is fully supported.
Creates a Membership
.
Auto-naming is currently not supported for this resource.
Create Membership Resource
Resources are created with functions called constructors. To learn more about declaring and configuring resources, see Resources.
Constructor syntax
new Membership(name: string, args: MembershipArgs, opts?: CustomResourceOptions);
@overload
def Membership(resource_name: str,
args: MembershipArgs,
opts: Optional[ResourceOptions] = None)
@overload
def Membership(resource_name: str,
opts: Optional[ResourceOptions] = None,
group_id: Optional[str] = None,
preferred_member_key: Optional[EntityKeyArgs] = None,
roles: Optional[Sequence[MembershipRoleArgs]] = None)
func NewMembership(ctx *Context, name string, args MembershipArgs, opts ...ResourceOption) (*Membership, error)
public Membership(string name, MembershipArgs args, CustomResourceOptions? opts = null)
public Membership(String name, MembershipArgs args)
public Membership(String name, MembershipArgs args, CustomResourceOptions options)
type: google-native:cloudidentity/v1:Membership
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.
Parameters
- name string
- The unique name of the resource.
- args MembershipArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- resource_name str
- The unique name of the resource.
- args MembershipArgs
- The arguments to resource properties.
- opts ResourceOptions
- Bag of options to control resource's behavior.
- ctx Context
- Context object for the current deployment.
- name string
- The unique name of the resource.
- args MembershipArgs
- The arguments to resource properties.
- opts ResourceOption
- Bag of options to control resource's behavior.
- name string
- The unique name of the resource.
- args MembershipArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- name String
- The unique name of the resource.
- args MembershipArgs
- The arguments to resource properties.
- options CustomResourceOptions
- Bag of options to control resource's behavior.
Constructor example
The following reference example uses placeholder values for all input properties.
var membershipResource = new GoogleNative.CloudIdentity.V1.Membership("membershipResource", new()
{
GroupId = "string",
PreferredMemberKey = new GoogleNative.CloudIdentity.V1.Inputs.EntityKeyArgs
{
Id = "string",
Namespace = "string",
},
Roles = new[]
{
new GoogleNative.CloudIdentity.V1.Inputs.MembershipRoleArgs
{
ExpiryDetail = new GoogleNative.CloudIdentity.V1.Inputs.ExpiryDetailArgs
{
ExpireTime = "string",
},
Name = "string",
RestrictionEvaluations = new GoogleNative.CloudIdentity.V1.Inputs.RestrictionEvaluationsArgs
{
MemberRestrictionEvaluation = null,
},
},
},
});
example, err := cloudidentity.NewMembership(ctx, "membershipResource", &cloudidentity.MembershipArgs{
GroupId: pulumi.String("string"),
PreferredMemberKey: &cloudidentity.EntityKeyArgs{
Id: pulumi.String("string"),
Namespace: pulumi.String("string"),
},
Roles: cloudidentity.MembershipRoleArray{
&cloudidentity.MembershipRoleArgs{
ExpiryDetail: &cloudidentity.ExpiryDetailArgs{
ExpireTime: pulumi.String("string"),
},
Name: pulumi.String("string"),
RestrictionEvaluations: &cloudidentity.RestrictionEvaluationsArgs{
MemberRestrictionEvaluation: nil,
},
},
},
})
var membershipResource = new Membership("membershipResource", MembershipArgs.builder()
.groupId("string")
.preferredMemberKey(EntityKeyArgs.builder()
.id("string")
.namespace("string")
.build())
.roles(MembershipRoleArgs.builder()
.expiryDetail(ExpiryDetailArgs.builder()
.expireTime("string")
.build())
.name("string")
.restrictionEvaluations(RestrictionEvaluationsArgs.builder()
.memberRestrictionEvaluation()
.build())
.build())
.build());
membership_resource = google_native.cloudidentity.v1.Membership("membershipResource",
group_id="string",
preferred_member_key=google_native.cloudidentity.v1.EntityKeyArgs(
id="string",
namespace="string",
),
roles=[google_native.cloudidentity.v1.MembershipRoleArgs(
expiry_detail=google_native.cloudidentity.v1.ExpiryDetailArgs(
expire_time="string",
),
name="string",
restriction_evaluations=google_native.cloudidentity.v1.RestrictionEvaluationsArgs(
member_restriction_evaluation=google_native.cloudidentity.v1.MembershipRoleRestrictionEvaluationArgs(),
),
)])
const membershipResource = new google_native.cloudidentity.v1.Membership("membershipResource", {
groupId: "string",
preferredMemberKey: {
id: "string",
namespace: "string",
},
roles: [{
expiryDetail: {
expireTime: "string",
},
name: "string",
restrictionEvaluations: {
memberRestrictionEvaluation: {},
},
}],
});
type: google-native:cloudidentity/v1:Membership
properties:
groupId: string
preferredMemberKey:
id: string
namespace: string
roles:
- expiryDetail:
expireTime: string
name: string
restrictionEvaluations:
memberRestrictionEvaluation: {}
Membership Resource Properties
To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.
Inputs
The Membership resource accepts the following input properties:
- Group
Id string - Preferred
Member Pulumi.Key Google Native. Cloud Identity. V1. Inputs. Entity Key - Immutable. The
EntityKey
of the member. - Roles
List<Pulumi.
Google Native. Cloud Identity. V1. Inputs. Membership Role> - The
MembershipRole
s that apply to theMembership
. If unspecified, defaults to a singleMembershipRole
withname
MEMBER
. Must not contain duplicateMembershipRole
s with the samename
.
- Group
Id string - Preferred
Member EntityKey Key Args - Immutable. The
EntityKey
of the member. - Roles
[]Membership
Role Args - The
MembershipRole
s that apply to theMembership
. If unspecified, defaults to a singleMembershipRole
withname
MEMBER
. Must not contain duplicateMembershipRole
s with the samename
.
- group
Id String - preferred
Member EntityKey Key - Immutable. The
EntityKey
of the member. - roles
List<Membership
Role> - The
MembershipRole
s that apply to theMembership
. If unspecified, defaults to a singleMembershipRole
withname
MEMBER
. Must not contain duplicateMembershipRole
s with the samename
.
- group
Id string - preferred
Member EntityKey Key - Immutable. The
EntityKey
of the member. - roles
Membership
Role[] - The
MembershipRole
s that apply to theMembership
. If unspecified, defaults to a singleMembershipRole
withname
MEMBER
. Must not contain duplicateMembershipRole
s with the samename
.
- group_
id str - preferred_
member_ Entitykey Key Args - Immutable. The
EntityKey
of the member. - roles
Sequence[Membership
Role Args] - The
MembershipRole
s that apply to theMembership
. If unspecified, defaults to a singleMembershipRole
withname
MEMBER
. Must not contain duplicateMembershipRole
s with the samename
.
- group
Id String - preferred
Member Property MapKey - Immutable. The
EntityKey
of the member. - roles List<Property Map>
- The
MembershipRole
s that apply to theMembership
. If unspecified, defaults to a singleMembershipRole
withname
MEMBER
. Must not contain duplicateMembershipRole
s with the samename
.
Outputs
All input properties are implicitly available as output properties. Additionally, the Membership resource produces the following output properties:
- Create
Time string - The time when the
Membership
was created. - Delivery
Setting string - Delivery setting associated with the membership.
- Id string
- The provider-assigned unique ID for this managed resource.
- Name string
- The resource name of the
Membership
. Shall be of the formgroups/{group}/memberships/{membership}
. - Type string
- The type of the membership.
- Update
Time string - The time when the
Membership
was last updated.
- Create
Time string - The time when the
Membership
was created. - Delivery
Setting string - Delivery setting associated with the membership.
- Id string
- The provider-assigned unique ID for this managed resource.
- Name string
- The resource name of the
Membership
. Shall be of the formgroups/{group}/memberships/{membership}
. - Type string
- The type of the membership.
- Update
Time string - The time when the
Membership
was last updated.
- create
Time String - The time when the
Membership
was created. - delivery
Setting String - Delivery setting associated with the membership.
- id String
- The provider-assigned unique ID for this managed resource.
- name String
- The resource name of the
Membership
. Shall be of the formgroups/{group}/memberships/{membership}
. - type String
- The type of the membership.
- update
Time String - The time when the
Membership
was last updated.
- create
Time string - The time when the
Membership
was created. - delivery
Setting string - Delivery setting associated with the membership.
- id string
- The provider-assigned unique ID for this managed resource.
- name string
- The resource name of the
Membership
. Shall be of the formgroups/{group}/memberships/{membership}
. - type string
- The type of the membership.
- update
Time string - The time when the
Membership
was last updated.
- create_
time str - The time when the
Membership
was created. - delivery_
setting str - Delivery setting associated with the membership.
- id str
- The provider-assigned unique ID for this managed resource.
- name str
- The resource name of the
Membership
. Shall be of the formgroups/{group}/memberships/{membership}
. - type str
- The type of the membership.
- update_
time str - The time when the
Membership
was last updated.
- create
Time String - The time when the
Membership
was created. - delivery
Setting String - Delivery setting associated with the membership.
- id String
- The provider-assigned unique ID for this managed resource.
- name String
- The resource name of the
Membership
. Shall be of the formgroups/{group}/memberships/{membership}
. - type String
- The type of the membership.
- update
Time String - The time when the
Membership
was last updated.
Supporting Types
EntityKey, EntityKeyArgs
- Id string
- The ID of the entity. For Google-managed entities, the
id
should be the email address of an existing group or user. For external-identity-mapped entities, theid
must be a string conforming to the Identity Source's requirements. Must be unique within anamespace
. - Namespace string
- The namespace in which the entity exists. If not specified, the
EntityKey
represents a Google-managed entity such as a Google user or a Google Group. If specified, theEntityKey
represents an external-identity-mapped group. The namespace must correspond to an identity source created in Admin Console and must be in the form ofidentitysources/{identity_source}
.
- Id string
- The ID of the entity. For Google-managed entities, the
id
should be the email address of an existing group or user. For external-identity-mapped entities, theid
must be a string conforming to the Identity Source's requirements. Must be unique within anamespace
. - Namespace string
- The namespace in which the entity exists. If not specified, the
EntityKey
represents a Google-managed entity such as a Google user or a Google Group. If specified, theEntityKey
represents an external-identity-mapped group. The namespace must correspond to an identity source created in Admin Console and must be in the form ofidentitysources/{identity_source}
.
- id String
- The ID of the entity. For Google-managed entities, the
id
should be the email address of an existing group or user. For external-identity-mapped entities, theid
must be a string conforming to the Identity Source's requirements. Must be unique within anamespace
. - namespace String
- The namespace in which the entity exists. If not specified, the
EntityKey
represents a Google-managed entity such as a Google user or a Google Group. If specified, theEntityKey
represents an external-identity-mapped group. The namespace must correspond to an identity source created in Admin Console and must be in the form ofidentitysources/{identity_source}
.
- id string
- The ID of the entity. For Google-managed entities, the
id
should be the email address of an existing group or user. For external-identity-mapped entities, theid
must be a string conforming to the Identity Source's requirements. Must be unique within anamespace
. - namespace string
- The namespace in which the entity exists. If not specified, the
EntityKey
represents a Google-managed entity such as a Google user or a Google Group. If specified, theEntityKey
represents an external-identity-mapped group. The namespace must correspond to an identity source created in Admin Console and must be in the form ofidentitysources/{identity_source}
.
- id str
- The ID of the entity. For Google-managed entities, the
id
should be the email address of an existing group or user. For external-identity-mapped entities, theid
must be a string conforming to the Identity Source's requirements. Must be unique within anamespace
. - namespace str
- The namespace in which the entity exists. If not specified, the
EntityKey
represents a Google-managed entity such as a Google user or a Google Group. If specified, theEntityKey
represents an external-identity-mapped group. The namespace must correspond to an identity source created in Admin Console and must be in the form ofidentitysources/{identity_source}
.
- id String
- The ID of the entity. For Google-managed entities, the
id
should be the email address of an existing group or user. For external-identity-mapped entities, theid
must be a string conforming to the Identity Source's requirements. Must be unique within anamespace
. - namespace String
- The namespace in which the entity exists. If not specified, the
EntityKey
represents a Google-managed entity such as a Google user or a Google Group. If specified, theEntityKey
represents an external-identity-mapped group. The namespace must correspond to an identity source created in Admin Console and must be in the form ofidentitysources/{identity_source}
.
EntityKeyResponse, EntityKeyResponseArgs
- Namespace string
- The namespace in which the entity exists. If not specified, the
EntityKey
represents a Google-managed entity such as a Google user or a Google Group. If specified, theEntityKey
represents an external-identity-mapped group. The namespace must correspond to an identity source created in Admin Console and must be in the form ofidentitysources/{identity_source}
.
- Namespace string
- The namespace in which the entity exists. If not specified, the
EntityKey
represents a Google-managed entity such as a Google user or a Google Group. If specified, theEntityKey
represents an external-identity-mapped group. The namespace must correspond to an identity source created in Admin Console and must be in the form ofidentitysources/{identity_source}
.
- namespace String
- The namespace in which the entity exists. If not specified, the
EntityKey
represents a Google-managed entity such as a Google user or a Google Group. If specified, theEntityKey
represents an external-identity-mapped group. The namespace must correspond to an identity source created in Admin Console and must be in the form ofidentitysources/{identity_source}
.
- namespace string
- The namespace in which the entity exists. If not specified, the
EntityKey
represents a Google-managed entity such as a Google user or a Google Group. If specified, theEntityKey
represents an external-identity-mapped group. The namespace must correspond to an identity source created in Admin Console and must be in the form ofidentitysources/{identity_source}
.
- namespace str
- The namespace in which the entity exists. If not specified, the
EntityKey
represents a Google-managed entity such as a Google user or a Google Group. If specified, theEntityKey
represents an external-identity-mapped group. The namespace must correspond to an identity source created in Admin Console and must be in the form ofidentitysources/{identity_source}
.
- namespace String
- The namespace in which the entity exists. If not specified, the
EntityKey
represents a Google-managed entity such as a Google user or a Google Group. If specified, theEntityKey
represents an external-identity-mapped group. The namespace must correspond to an identity source created in Admin Console and must be in the form ofidentitysources/{identity_source}
.
ExpiryDetail, ExpiryDetailArgs
- Expire
Time string - The time at which the
MembershipRole
will expire.
- Expire
Time string - The time at which the
MembershipRole
will expire.
- expire
Time String - The time at which the
MembershipRole
will expire.
- expire
Time string - The time at which the
MembershipRole
will expire.
- expire_
time str - The time at which the
MembershipRole
will expire.
- expire
Time String - The time at which the
MembershipRole
will expire.
ExpiryDetailResponse, ExpiryDetailResponseArgs
- Expire
Time string - The time at which the
MembershipRole
will expire.
- Expire
Time string - The time at which the
MembershipRole
will expire.
- expire
Time String - The time at which the
MembershipRole
will expire.
- expire
Time string - The time at which the
MembershipRole
will expire.
- expire_
time str - The time at which the
MembershipRole
will expire.
- expire
Time String - The time at which the
MembershipRole
will expire.
MembershipRole, MembershipRoleArgs
- Expiry
Detail Pulumi.Google Native. Cloud Identity. V1. Inputs. Expiry Detail - The expiry details of the
MembershipRole
. Expiry details are only supported forMEMBER
MembershipRoles
. May be set ifname
isMEMBER
. Must not be set ifname
is any other value. - Name string
- The name of the
MembershipRole
. Must be one ofOWNER
,MANAGER
,MEMBER
. - Restriction
Evaluations Pulumi.Google Native. Cloud Identity. V1. Inputs. Restriction Evaluations - Evaluations of restrictions applied to parent group on this membership.
- Expiry
Detail ExpiryDetail - The expiry details of the
MembershipRole
. Expiry details are only supported forMEMBER
MembershipRoles
. May be set ifname
isMEMBER
. Must not be set ifname
is any other value. - Name string
- The name of the
MembershipRole
. Must be one ofOWNER
,MANAGER
,MEMBER
. - Restriction
Evaluations RestrictionEvaluations - Evaluations of restrictions applied to parent group on this membership.
- expiry
Detail ExpiryDetail - The expiry details of the
MembershipRole
. Expiry details are only supported forMEMBER
MembershipRoles
. May be set ifname
isMEMBER
. Must not be set ifname
is any other value. - name String
- The name of the
MembershipRole
. Must be one ofOWNER
,MANAGER
,MEMBER
. - restriction
Evaluations RestrictionEvaluations - Evaluations of restrictions applied to parent group on this membership.
- expiry
Detail ExpiryDetail - The expiry details of the
MembershipRole
. Expiry details are only supported forMEMBER
MembershipRoles
. May be set ifname
isMEMBER
. Must not be set ifname
is any other value. - name string
- The name of the
MembershipRole
. Must be one ofOWNER
,MANAGER
,MEMBER
. - restriction
Evaluations RestrictionEvaluations - Evaluations of restrictions applied to parent group on this membership.
- expiry_
detail ExpiryDetail - The expiry details of the
MembershipRole
. Expiry details are only supported forMEMBER
MembershipRoles
. May be set ifname
isMEMBER
. Must not be set ifname
is any other value. - name str
- The name of the
MembershipRole
. Must be one ofOWNER
,MANAGER
,MEMBER
. - restriction_
evaluations RestrictionEvaluations - Evaluations of restrictions applied to parent group on this membership.
- expiry
Detail Property Map - The expiry details of the
MembershipRole
. Expiry details are only supported forMEMBER
MembershipRoles
. May be set ifname
isMEMBER
. Must not be set ifname
is any other value. - name String
- The name of the
MembershipRole
. Must be one ofOWNER
,MANAGER
,MEMBER
. - restriction
Evaluations Property Map - Evaluations of restrictions applied to parent group on this membership.
MembershipRoleResponse, MembershipRoleResponseArgs
- Expiry
Detail Pulumi.Google Native. Cloud Identity. V1. Inputs. Expiry Detail Response - The expiry details of the
MembershipRole
. Expiry details are only supported forMEMBER
MembershipRoles
. May be set ifname
isMEMBER
. Must not be set ifname
is any other value. - Name string
- The name of the
MembershipRole
. Must be one ofOWNER
,MANAGER
,MEMBER
. - Restriction
Evaluations Pulumi.Google Native. Cloud Identity. V1. Inputs. Restriction Evaluations Response - Evaluations of restrictions applied to parent group on this membership.
- Expiry
Detail ExpiryDetail Response - The expiry details of the
MembershipRole
. Expiry details are only supported forMEMBER
MembershipRoles
. May be set ifname
isMEMBER
. Must not be set ifname
is any other value. - Name string
- The name of the
MembershipRole
. Must be one ofOWNER
,MANAGER
,MEMBER
. - Restriction
Evaluations RestrictionEvaluations Response - Evaluations of restrictions applied to parent group on this membership.
- expiry
Detail ExpiryDetail Response - The expiry details of the
MembershipRole
. Expiry details are only supported forMEMBER
MembershipRoles
. May be set ifname
isMEMBER
. Must not be set ifname
is any other value. - name String
- The name of the
MembershipRole
. Must be one ofOWNER
,MANAGER
,MEMBER
. - restriction
Evaluations RestrictionEvaluations Response - Evaluations of restrictions applied to parent group on this membership.
- expiry
Detail ExpiryDetail Response - The expiry details of the
MembershipRole
. Expiry details are only supported forMEMBER
MembershipRoles
. May be set ifname
isMEMBER
. Must not be set ifname
is any other value. - name string
- The name of the
MembershipRole
. Must be one ofOWNER
,MANAGER
,MEMBER
. - restriction
Evaluations RestrictionEvaluations Response - Evaluations of restrictions applied to parent group on this membership.
- expiry_
detail ExpiryDetail Response - The expiry details of the
MembershipRole
. Expiry details are only supported forMEMBER
MembershipRoles
. May be set ifname
isMEMBER
. Must not be set ifname
is any other value. - name str
- The name of the
MembershipRole
. Must be one ofOWNER
,MANAGER
,MEMBER
. - restriction_
evaluations RestrictionEvaluations Response - Evaluations of restrictions applied to parent group on this membership.
- expiry
Detail Property Map - The expiry details of the
MembershipRole
. Expiry details are only supported forMEMBER
MembershipRoles
. May be set ifname
isMEMBER
. Must not be set ifname
is any other value. - name String
- The name of the
MembershipRole
. Must be one ofOWNER
,MANAGER
,MEMBER
. - restriction
Evaluations Property Map - Evaluations of restrictions applied to parent group on this membership.
MembershipRoleRestrictionEvaluationResponse, MembershipRoleRestrictionEvaluationResponseArgs
- State string
- The current state of the restriction
- State string
- The current state of the restriction
- state String
- The current state of the restriction
- state string
- The current state of the restriction
- state str
- The current state of the restriction
- state String
- The current state of the restriction
RestrictionEvaluations, RestrictionEvaluationsArgs
- Member
Restriction Pulumi.Evaluation Google Native. Cloud Identity. V1. Inputs. Membership Role Restriction Evaluation - Evaluation of the member restriction applied to this membership. Empty if the user lacks permission to view the restriction evaluation.
- Member
Restriction MembershipEvaluation Role Restriction Evaluation - Evaluation of the member restriction applied to this membership. Empty if the user lacks permission to view the restriction evaluation.
- member
Restriction MembershipEvaluation Role Restriction Evaluation - Evaluation of the member restriction applied to this membership. Empty if the user lacks permission to view the restriction evaluation.
- member
Restriction MembershipEvaluation Role Restriction Evaluation - Evaluation of the member restriction applied to this membership. Empty if the user lacks permission to view the restriction evaluation.
- member_
restriction_ Membershipevaluation Role Restriction Evaluation - Evaluation of the member restriction applied to this membership. Empty if the user lacks permission to view the restriction evaluation.
- member
Restriction Property MapEvaluation - Evaluation of the member restriction applied to this membership. Empty if the user lacks permission to view the restriction evaluation.
RestrictionEvaluationsResponse, RestrictionEvaluationsResponseArgs
- Member
Restriction Pulumi.Evaluation Google Native. Cloud Identity. V1. Inputs. Membership Role Restriction Evaluation Response - Evaluation of the member restriction applied to this membership. Empty if the user lacks permission to view the restriction evaluation.
- Member
Restriction MembershipEvaluation Role Restriction Evaluation Response - Evaluation of the member restriction applied to this membership. Empty if the user lacks permission to view the restriction evaluation.
- member
Restriction MembershipEvaluation Role Restriction Evaluation Response - Evaluation of the member restriction applied to this membership. Empty if the user lacks permission to view the restriction evaluation.
- member
Restriction MembershipEvaluation Role Restriction Evaluation Response - Evaluation of the member restriction applied to this membership. Empty if the user lacks permission to view the restriction evaluation.
- member_
restriction_ Membershipevaluation Role Restriction Evaluation Response - Evaluation of the member restriction applied to this membership. Empty if the user lacks permission to view the restriction evaluation.
- member
Restriction Property MapEvaluation - Evaluation of the member restriction applied to this membership. Empty if the user lacks permission to view the restriction evaluation.
Package Details
- Repository
- Google Cloud Native pulumi/pulumi-google-native
- License
- Apache-2.0
Google Cloud Native is in preview. Google Cloud Classic is fully supported.