pulumi-alicloud-kotlin/com.pulumi.alicloud.actiontrail.kotlin/Trail

Trail

class Trail : KotlinCustomResource

Provides a ActionTrail Trail resource. For information about alicloud actiontrail trail and how to use it, see What is Resource Alicloud ActionTrail Trail.

NOTE: Available since v1.95.0. NOTE: You can create a trail to deliver events to Log Service, Object Storage Service (OSS), or both. Before you call this operation to create a trail, make sure that the following requirements are met.

Deliver events to Log Service: A project is created in Log Service.
Deliver events to OSS: A bucket is created in OSS.

Example Usage

package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.alicloud.AlicloudFunctions;
import com.pulumi.alicloud.inputs.GetRegionsArgs;
import com.pulumi.alicloud.log.Project;
import com.pulumi.alicloud.log.ProjectArgs;
import com.pulumi.alicloud.ram.RamFunctions;
import com.pulumi.alicloud.ram.inputs.GetRolesArgs;
import com.pulumi.alicloud.actiontrail.Trail;
import com.pulumi.alicloud.actiontrail.TrailArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
    public static void main(String[] args) {
        Pulumi.run(App::stack);
    }
    public static void stack(Context ctx) {
        final var config = ctx.config();
        final var name = config.get("name").orElse("tf-example");
        final var exampleRegions = AlicloudFunctions.getRegions(GetRegionsArgs.builder()
            .current(true)
            .build());
        final var exampleAccount = AlicloudFunctions.getAccount();
        var exampleProject = new Project("exampleProject", ProjectArgs.builder()
            .description("tf actiontrail example")
            .build());
        final var exampleRoles = RamFunctions.getRoles(GetRolesArgs.builder()
            .nameRegex("AliyunServiceRoleForActionTrail")
            .build());
        var exampleTrail = new Trail("exampleTrail", TrailArgs.builder()
            .trailName(name)
            .slsWriteRoleArn(exampleRoles.applyValue(getRolesResult -> getRolesResult.roles()[0].arn()))
            .slsProjectArn(exampleProject.name().applyValue(name -> String.format("acs:log:%s:%s:project/%s", exampleRegions.applyValue(getRegionsResult -> getRegionsResult.regions()[0].id()),exampleAccount.applyValue(getAccountResult -> getAccountResult.id()),name)))
            .build());
    }
}

Import

Action trail can be imported using the id or trail_name, e.g.

$ pulumi import alicloud:actiontrail/trail:Trail default abc12345678

Properties

eventRw

val eventRw: Output<String>?

Indicates whether the event is a read or a write event. Valid values: Read, Write, and All. Default to Write.

val id: Output<String>

isOrganizationTrail

val isOrganizationTrail: Output<Boolean>?

Specifies whether to create a multi-account trail. Valid values:true: Create a multi-account trail.false: Create a single-account trail. It is the default value.

mnsTopicArn

val ~~mnsTopicArn~~: Output<String>?

Field mns_topic_arn has been deprecated from version 1.118.0.

name

val ~~name~~: Output<String>

Field name has been deprecated from version 1.95.0. Use trail_name instead.

ossBucketName

val ossBucketName: Output<String>?

The OSS bucket to which the trail delivers logs. Ensure that this is an existing OSS bucket.

ossKeyPrefix

val ossKeyPrefix: Output<String>?

The prefix of the specified OSS bucket name. This parameter can be left empty.

ossWriteRoleArn

val ossWriteRoleArn: Output<String>?

The unique ARN of the Oss role.

pulumiChildResources

val pulumiChildResources: Set<KotlinResource>

pulumiResourceName

val pulumiResourceName: String

pulumiResourceType

val pulumiResourceType: String

roleName

val ~~roleName~~: Output<String>

Field name has been deprecated from version 1.118.0.

slsProjectArn

val slsProjectArn: Output<String>?

The unique ARN of the Log Service project. Ensure that sls_project_arn is valid .

slsWriteRoleArn

val slsWriteRoleArn: Output<String>

The unique ARN of the Log Service role.

status

val status: Output<String>?

The status of ActionTrail Trail. After creation, tracking is turned on by default, and you can set the status value to Disable to turn off tracking. Valid values: Enable, Disable. Default to Enable.

trailName

val trailName: Output<String>

The name of the trail to be created, which must be unique for an account.

trailRegion

val trailRegion: Output<String>

The regions to which the trail is applied. Default to All.

urn

val urn: Output<String>