pulumi-gcp-kotlin/com.pulumi.gcp.accesscontextmanager.kotlin.inputs/ServicePerimeterStatusEgressPolicyEgressToArgs

ServicePerimeterStatusEgressPolicyEgressToArgs

data class ServicePerimeterStatusEgressPolicyEgressToArgs(val externalResources: Output<List<String>>? = null, val operations: Output<List<ServicePerimeterStatusEgressPolicyEgressToOperationArgs>>? = null, val resources: Output<List<String>>? = null, val roles: Output<List<String>>? = null) : ConvertibleToJava<ServicePerimeterStatusEgressPolicyEgressToArgs>

Constructors

constructor(externalResources: Output<List<String>>? = null, operations: Output<List<ServicePerimeterStatusEgressPolicyEgressToOperationArgs>>? = null, resources: Output<List<String>>? = null, roles: Output<List<String>>? = null)

Properties

externalResources

val externalResources: Output<List<String>>? = null

A list of external resources that are allowed to be accessed. A request matches if it contains an external resource in this list (Example: s3://bucket/path). Currently '*' is not allowed.

operations

val operations: Output<List<ServicePerimeterStatusEgressPolicyEgressToOperationArgs>>? = null

A list of ApiOperations that this egress rule applies to. A request matches if it contains an operation/service in this list. Structure is documented below.

resources

val resources: Output<List<String>>? = null

A list of resources, currently only projects in the form projects/<projectnumber>, that match this to stanza. A request matches if it contains a resource in this list. If * is specified for resources, then this EgressTo rule will authorize access to all resources outside the perimeter.

roles

val roles: Output<List<String>>? = null

A list of IAM roles that represent the set of operations that the sources specified in the corresponding EgressFrom are allowed to perform.

Functions

toJava

open override fun toJava(): ServicePerimeterStatusEgressPolicyEgressToArgs