pulumi-gcp-kotlin/com.pulumi.gcp.gkehub.kotlin.inputs/FeatureMembershipPolicycontrollerPolicyControllerHubConfigArgs

FeatureMembershipPolicycontrollerPolicyControllerHubConfigArgs

data class FeatureMembershipPolicycontrollerPolicyControllerHubConfigArgs(val auditIntervalSeconds: Output<Int>? = null, val constraintViolationLimit: Output<Int>? = null, val deploymentConfigs: Output<List<FeatureMembershipPolicycontrollerPolicyControllerHubConfigDeploymentConfigArgs>>? = null, val exemptableNamespaces: Output<List<String>>? = null, val installSpec: Output<String>? = null, val logDeniesEnabled: Output<Boolean>? = null, val monitoring: Output<FeatureMembershipPolicycontrollerPolicyControllerHubConfigMonitoringArgs>? = null, val mutationEnabled: Output<Boolean>? = null, val policyContent: Output<FeatureMembershipPolicycontrollerPolicyControllerHubConfigPolicyContentArgs>? = null, val referentialRulesEnabled: Output<Boolean>? = null) : ConvertibleToJava<FeatureMembershipPolicycontrollerPolicyControllerHubConfigArgs>

Constructors

constructor(auditIntervalSeconds: Output<Int>? = null, constraintViolationLimit: Output<Int>? = null, deploymentConfigs: Output<List<FeatureMembershipPolicycontrollerPolicyControllerHubConfigDeploymentConfigArgs>>? = null, exemptableNamespaces: Output<List<String>>? = null, installSpec: Output<String>? = null, logDeniesEnabled: Output<Boolean>? = null, monitoring: Output<FeatureMembershipPolicycontrollerPolicyControllerHubConfigMonitoringArgs>? = null, mutationEnabled: Output<Boolean>? = null, policyContent: Output<FeatureMembershipPolicycontrollerPolicyControllerHubConfigPolicyContentArgs>? = null, referentialRulesEnabled: Output<Boolean>? = null)

Properties

Link copied to clipboard
val auditIntervalSeconds: Output<Int>? = null

Sets the interval for Policy Controller Audit Scans (in seconds). When set to 0, this disables audit functionality altogether.

Link copied to clipboard
val constraintViolationLimit: Output<Int>? = null

The maximum number of audit violations to be stored in a constraint. If not set, the default of 20 will be used.

Link copied to clipboard
val deploymentConfigs: Output<List<FeatureMembershipPolicycontrollerPolicyControllerHubConfigDeploymentConfigArgs>>? = null

Map of deployment configs to deployments ("admission", "audit", "mutation").

Link copied to clipboard
val exemptableNamespaces: Output<List<String>>? = null

The set of namespaces that are excluded from Policy Controller checks. Namespaces do not need to currently exist on the cluster.

Link copied to clipboard
val installSpec: Output<String>? = null

Configures the mode of the Policy Controller installation. Must be one of INSTALL_SPEC_NOT_INSTALLED, INSTALL_SPEC_ENABLED, INSTALL_SPEC_SUSPENDED or INSTALL_SPEC_DETACHED.

Link copied to clipboard
val logDeniesEnabled: Output<Boolean>? = null

Logs all denies and dry run failures.

Link copied to clipboard
val monitoring: Output<FeatureMembershipPolicycontrollerPolicyControllerHubConfigMonitoringArgs>? = null

Specifies the backends Policy Controller should export metrics to. Structure is documented below.

Link copied to clipboard
val mutationEnabled: Output<Boolean>? = null

Enables mutation in policy controller. If true, mutation CRDs, webhook, and controller deployment will be deployed to the cluster.

Link copied to clipboard
val policyContent: Output<FeatureMembershipPolicycontrollerPolicyControllerHubConfigPolicyContentArgs>? = null

Specifies the desired policy content on the cluster. Structure is documented below.

Link copied to clipboard
val referentialRulesEnabled: Output<Boolean>? = null

Enables the ability to use Constraint Templates that reference to objects other than the object currently being evaluated.

Functions

Link copied to clipboard
open override fun toJava(): FeatureMembershipPolicycontrollerPolicyControllerHubConfigArgs