Chain
data class ChainArgs(val chainConfigs: Output<List<ChainChainConfigArgs>>? = null, val chainName: Output<String>? = null, val description: Output<String>? = null, val instanceId: Output<String>? = null, val repoName: Output<String>? = null, val repoNamespaceName: Output<String>? = null) : ConvertibleToJava<ChainArgs>
Provides a CR Chain resource. For information about CR Chain and how to use it, see What is Chain.
NOTE: Available since v1.161.0.
Example Usage
Basic Usage
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.alicloud.cr.RegistryEnterpriseInstance;
import com.pulumi.alicloud.cr.RegistryEnterpriseInstanceArgs;
import com.pulumi.alicloud.cs.RegistryEnterpriseNamespace;
import com.pulumi.alicloud.cs.RegistryEnterpriseNamespaceArgs;
import com.pulumi.alicloud.cs.RegistryEnterpriseRepo;
import com.pulumi.alicloud.cs.RegistryEnterpriseRepoArgs;
import com.pulumi.alicloud.cr.Chain;
import com.pulumi.alicloud.cr.ChainArgs;
import com.pulumi.alicloud.cr.inputs.ChainChainConfigArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
final var config = ctx.config();
final var name = config.get("name").orElse("tf-example");
var defaultRegistryEnterpriseInstance = new RegistryEnterpriseInstance("defaultRegistryEnterpriseInstance", RegistryEnterpriseInstanceArgs.builder()
.paymentType("Subscription")
.period(1)
.renewPeriod(0)
.renewalStatus("ManualRenewal")
.instanceType("Advanced")
.instanceName(name)
.build());
var defaultRegistryEnterpriseNamespace = new RegistryEnterpriseNamespace("defaultRegistryEnterpriseNamespace", RegistryEnterpriseNamespaceArgs.builder()
.instanceId(defaultRegistryEnterpriseInstance.id())
.autoCreate(false)
.defaultVisibility("PUBLIC")
.build());
var defaultRegistryEnterpriseRepo = new RegistryEnterpriseRepo("defaultRegistryEnterpriseRepo", RegistryEnterpriseRepoArgs.builder()
.instanceId(defaultRegistryEnterpriseInstance.id())
.namespace(defaultRegistryEnterpriseNamespace.name())
.summary("this is summary of my new repo")
.repoType("PUBLIC")
.detail("this is a public repo")
.build());
var defaultChain = new Chain("defaultChain", ChainArgs.builder()
.chainName(name)
.description(name)
.instanceId(defaultRegistryEnterpriseNamespace.instanceId())
.repoName(defaultRegistryEnterpriseRepo.name())
.repoNamespaceName(defaultRegistryEnterpriseNamespace.name())
.chainConfigs(ChainChainConfigArgs.builder()
.routers(
ChainChainConfigRouterArgs.builder()
.froms(ChainChainConfigRouterFromArgs.builder()
.nodeName("DOCKER_IMAGE_BUILD")
.build())
.tos(ChainChainConfigRouterToArgs.builder()
.nodeName("DOCKER_IMAGE_PUSH")
.build())
.build(),
ChainChainConfigRouterArgs.builder()
.froms(ChainChainConfigRouterFromArgs.builder()
.nodeName("DOCKER_IMAGE_PUSH")
.build())
.tos(ChainChainConfigRouterToArgs.builder()
.nodeName("VULNERABILITY_SCANNING")
.build())
.build(),
ChainChainConfigRouterArgs.builder()
.froms(ChainChainConfigRouterFromArgs.builder()
.nodeName("VULNERABILITY_SCANNING")
.build())
.tos(ChainChainConfigRouterToArgs.builder()
.nodeName("ACTIVATE_REPLICATION")
.build())
.build(),
ChainChainConfigRouterArgs.builder()
.froms(ChainChainConfigRouterFromArgs.builder()
.nodeName("ACTIVATE_REPLICATION")
.build())
.tos(ChainChainConfigRouterToArgs.builder()
.nodeName("TRIGGER")
.build())
.build(),
ChainChainConfigRouterArgs.builder()
.froms(ChainChainConfigRouterFromArgs.builder()
.nodeName("VULNERABILITY_SCANNING")
.build())
.tos(ChainChainConfigRouterToArgs.builder()
.nodeName("SNAPSHOT")
.build())
.build(),
ChainChainConfigRouterArgs.builder()
.froms(ChainChainConfigRouterFromArgs.builder()
.nodeName("SNAPSHOT")
.build())
.tos(ChainChainConfigRouterToArgs.builder()
.nodeName("TRIGGER_SNAPSHOT")
.build())
.build())
.nodes(
ChainChainConfigNodeArgs.builder()
.enable(true)
.nodeName("DOCKER_IMAGE_BUILD")
.nodeConfigs(ChainChainConfigNodeNodeConfigArgs.builder()
.denyPolicies()
.build())
.build(),
ChainChainConfigNodeArgs.builder()
.enable(true)
.nodeName("DOCKER_IMAGE_PUSH")
.nodeConfigs(ChainChainConfigNodeNodeConfigArgs.builder()
.denyPolicies()
.build())
.build(),
ChainChainConfigNodeArgs.builder()
.enable(true)
.nodeName("VULNERABILITY_SCANNING")
.nodeConfigs(ChainChainConfigNodeNodeConfigArgs.builder()
.denyPolicies(ChainChainConfigNodeNodeConfigDenyPolicyArgs.builder()
.issueLevel("MEDIUM")
.issueCount(1)
.action("BLOCK_DELETE_TAG")
.logic("AND")
.build())
.build())
.build(),
ChainChainConfigNodeArgs.builder()
.enable(true)
.nodeName("ACTIVATE_REPLICATION")
.nodeConfigs(ChainChainConfigNodeNodeConfigArgs.builder()
.denyPolicies()
.build())
.build(),
ChainChainConfigNodeArgs.builder()
.enable(true)
.nodeName("TRIGGER")
.nodeConfigs(ChainChainConfigNodeNodeConfigArgs.builder()
.denyPolicies()
.build())
.build(),
ChainChainConfigNodeArgs.builder()
.enable(false)
.nodeName("SNAPSHOT")
.nodeConfigs(ChainChainConfigNodeNodeConfigArgs.builder()
.denyPolicies()
.build())
.build(),
ChainChainConfigNodeArgs.builder()
.enable(false)
.nodeName("TRIGGER_SNAPSHOT")
.nodeConfigs(ChainChainConfigNodeNodeConfigArgs.builder()
.denyPolicies()
.build())
.build())
.build())
.build());
}
}Content copied to clipboard
Import
CR Chain can be imported using the id, e.g.
$ pulumi import alicloud:cr/chain:Chain example <instance_id>:<chain_id>Content copied to clipboard