pulumi-gcp-kotlin/com.pulumi.gcp.networksecurity.kotlin.inputs/AuthorizationPolicyRuleDestinationArgs

AuthorizationPolicyRuleDestinationArgs

data class AuthorizationPolicyRuleDestinationArgs(val hosts: Output<List<String>>, val httpHeaderMatch: Output<AuthorizationPolicyRuleDestinationHttpHeaderMatchArgs>? = null, val methods: Output<List<String>>, val ports: Output<List<Int>>) : ConvertibleToJava<AuthorizationPolicyRuleDestinationArgs>

Constructors

fun AuthorizationPolicyRuleDestinationArgs(hosts: Output<List<String>>, httpHeaderMatch: Output<AuthorizationPolicyRuleDestinationHttpHeaderMatchArgs>? = null, methods: Output<List<String>>, ports: Output<List<Int>>)

Functions

toJava

open override fun toJava(): AuthorizationPolicyRuleDestinationArgs

Properties

hosts

val hosts: Output<List<String>>

List of host names to match. Matched against the ":authority" header in http requests. At least one host should match. Each host can be an exact match, or a prefix match (example "mydomain.") or a suffix match (example ".myorg.com") or a presence (any) match "*".

httpHeaderMatch

val httpHeaderMatch: Output<AuthorizationPolicyRuleDestinationHttpHeaderMatchArgs>? = null

Match against key:value pair in http header. Provides a flexible match based on HTTP headers, for potentially advanced use cases. At least one header should match. Avoid using header matches to make authorization decisions unless there is a strong guarantee that requests arrive through a trusted client or proxy. Structure is documented below.

methods

val methods: Output<List<String>>

A list of HTTP methods to match. At least one method should match. Should not be set for gRPC services.

ports

val ports: Output<List<Int>>

List of destination ports to match. At least one port should match.