pulumi-gcp-kotlin/com.pulumi.gcp.networksecurity.kotlin/AuthzPolicyArgs

AuthzPolicyArgs

data class AuthzPolicyArgs(val action: Output<String>? = null, val customProvider: Output<AuthzPolicyCustomProviderArgs>? = null, val description: Output<String>? = null, val httpRules: Output<List<AuthzPolicyHttpRuleArgs>>? = null, val labels: Output<Map<String, String>>? = null, val location: Output<String>? = null, val name: Output<String>? = null, val project: Output<String>? = null, val target: Output<AuthzPolicyTargetArgs>? = null) : ConvertibleToJava<AuthzPolicyArgs>

AuthzPolicy is a resource that allows to forward traffic to a callout backend designed to scan the traffic for security purposes. To get more information about AuthzPolicy, see:

Example Usage

Import

AuthzPolicy can be imported using any of these accepted formats:

  • projects/{{project}}/locations/{{location}}/authzPolicies/{{name}}

  • {{project}}/{{location}}/{{name}}

  • {{location}}/{{name}}

  • {{name}} When using the pulumi import command, AuthzPolicy can be imported using one of the formats above. For example:

$ pulumi import gcp:networksecurity/authzPolicy:AuthzPolicy default projects/{{project}}/locations/{{location}}/authzPolicies/{{name}}
Content copied to clipboard
$ pulumi import gcp:networksecurity/authzPolicy:AuthzPolicy default {{project}}/{{location}}/{{name}}
Content copied to clipboard
$ pulumi import gcp:networksecurity/authzPolicy:AuthzPolicy default {{location}}/{{name}}
Content copied to clipboard
$ pulumi import gcp:networksecurity/authzPolicy:AuthzPolicy default {{name}}
Content copied to clipboard

Constructors

Link copied to clipboard
constructor(action: Output<String>? = null, customProvider: Output<AuthzPolicyCustomProviderArgs>? = null, description: Output<String>? = null, httpRules: Output<List<AuthzPolicyHttpRuleArgs>>? = null, labels: Output<Map<String, String>>? = null, location: Output<String>? = null, name: Output<String>? = null, project: Output<String>? = null, target: Output<AuthzPolicyTargetArgs>? = null)

Properties

Link copied to clipboard
val action: Output<String>? = null

When the action is CUSTOM, customProvider must be specified. When the action is ALLOW, only requests matching the policy will be allowed. When the action is DENY, only requests matching the policy will be denied. When a request arrives, the policies are evaluated in the following order:

Link copied to clipboard
val customProvider: Output<AuthzPolicyCustomProviderArgs>? = null

Required if the action is CUSTOM. Allows delegating authorization decisions to Cloud IAP or to Service Extensions. One of cloudIap or authzExtension must be specified.

Link copied to clipboard
val description: Output<String>? = null

A human-readable description of the resource.

Link copied to clipboard
val httpRules: Output<List<AuthzPolicyHttpRuleArgs>>? = null

A list of authorization HTTP rules to match against the incoming request.A policy match occurs when at least one HTTP rule matches the request or when no HTTP rules are specified in the policy. At least one HTTP Rule is required for Allow or Deny Action. Limited to 5 rules.

Link copied to clipboard
val labels: Output<Map<String, String>>? = null

Set of labels associated with the AuthzExtension resource. Note: This field is non-authoritative, and will only manage the labels present in your configuration. Please refer to the field 'effective_labels' for all of the labels present on the resource.

Link copied to clipboard
val location: Output<String>? = null

The location of the resource.

Link copied to clipboard
val name: Output<String>? = null

Identifier. Name of the AuthzPolicy resource.

Link copied to clipboard
val project: Output<String>? = null
Link copied to clipboard
val target: Output<AuthzPolicyTargetArgs>? = null

Specifies the set of resources to which this policy should be applied to. Structure is documented below.

Functions

Link copied to clipboard
open override fun toJava(): AuthzPolicyArgs