pulumi-google-native-kotlin/com.pulumi.googlenative.identitytoolkit.v2.kotlin.inputs

Package-level declarations

Types

Link copied to clipboard
data class GetDefaultSupportedIdpConfigPlainArgs(val defaultSupportedIdpConfigId: String, val project: String? = null, val tenantId: String) : ConvertibleToJava<GetDefaultSupportedIdpConfigPlainArgs>
Link copied to clipboard
data class GetInboundSamlConfigPlainArgs(val inboundSamlConfigId: String, val project: String? = null, val tenantId: String) : ConvertibleToJava<GetInboundSamlConfigPlainArgs>
Link copied to clipboard
Link copied to clipboard
data class GetOauthIdpConfigPlainArgs(val oauthIdpConfigId: String, val project: String? = null, val tenantId: String) : ConvertibleToJava<GetOauthIdpConfigPlainArgs>
Link copied to clipboard
Link copied to clipboard
data class GetTenantIamPolicyPlainArgs(val project: String? = null, val tenantId: String) : ConvertibleToJava<GetTenantIamPolicyPlainArgs>
Link copied to clipboard
Link copied to clipboard
data class GetTenantPlainArgs(val project: String? = null, val tenantId: String) : ConvertibleToJava<GetTenantPlainArgs>
Link copied to clipboard
data class GoogleCloudIdentitytoolkitAdminV2AllowByDefaultArgs(val disallowedRegions: Output<List<String>>? = null) : ConvertibleToJava<GoogleCloudIdentitytoolkitAdminV2AllowByDefaultArgs>

Defines a policy of allowing every region by default and adding disallowed regions to a disallow list.

data class GoogleCloudIdentitytoolkitAdminV2AllowlistOnlyArgs(val allowedRegions: Output<List<String>>? = null) : ConvertibleToJava<GoogleCloudIdentitytoolkitAdminV2AllowlistOnlyArgs>

Defines a policy of only allowing regions by explicitly adding them to an allowlist.

data class GoogleCloudIdentitytoolkitAdminV2AppleSignInConfigArgs(val bundleIds: Output<List<String>>? = null, val codeFlowConfig: Output<GoogleCloudIdentitytoolkitAdminV2CodeFlowConfigArgs>? = null) : ConvertibleToJava<GoogleCloudIdentitytoolkitAdminV2AppleSignInConfigArgs>

Additional config for SignInWithApple.

data class GoogleCloudIdentitytoolkitAdminV2ClientPermissionConfigArgs(val permissions: Output<GoogleCloudIdentitytoolkitAdminV2ClientPermissionsArgs>? = null) : ConvertibleToJava<GoogleCloudIdentitytoolkitAdminV2ClientPermissionConfigArgs>

Options related to how clients making requests on behalf of a tenant should be configured.

data class GoogleCloudIdentitytoolkitAdminV2ClientPermissionsArgs(val disabledUserDeletion: Output<Boolean>? = null, val disabledUserSignup: Output<Boolean>? = null) : ConvertibleToJava<GoogleCloudIdentitytoolkitAdminV2ClientPermissionsArgs>

Configuration related to restricting a user's ability to affect their account.

data class GoogleCloudIdentitytoolkitAdminV2CodeFlowConfigArgs(val keyId: Output<String>? = null, val privateKey: Output<String>? = null, val teamId: Output<String>? = null) : ConvertibleToJava<GoogleCloudIdentitytoolkitAdminV2CodeFlowConfigArgs>

Additional config for Apple for code flow.

data class GoogleCloudIdentitytoolkitAdminV2CustomStrengthOptionsArgs(val containsLowercaseCharacter: Output<Boolean>? = null, val containsNonAlphanumericCharacter: Output<Boolean>? = null, val containsNumericCharacter: Output<Boolean>? = null, val containsUppercaseCharacter: Output<Boolean>? = null, val maxPasswordLength: Output<Int>? = null, val minPasswordLength: Output<Int>? = null) : ConvertibleToJava<GoogleCloudIdentitytoolkitAdminV2CustomStrengthOptionsArgs>

Custom strength options to enforce on user passwords.

data class GoogleCloudIdentitytoolkitAdminV2EmailPrivacyConfigArgs(val enableImprovedEmailPrivacy: Output<Boolean>? = null) : ConvertibleToJava<GoogleCloudIdentitytoolkitAdminV2EmailPrivacyConfigArgs>

Configuration for settings related to email privacy and public visibility. Settings in this config protect against email enumeration, but may make some trade-offs in user-friendliness.

data class GoogleCloudIdentitytoolkitAdminV2IdpCertificateArgs(val x509Certificate: Output<String>? = null) : ConvertibleToJava<GoogleCloudIdentitytoolkitAdminV2IdpCertificateArgs>

The IDP's certificate data to verify the signature in the SAMLResponse issued by the IDP.

data class GoogleCloudIdentitytoolkitAdminV2IdpConfigArgs(val idpCertificates: Output<List<GoogleCloudIdentitytoolkitAdminV2IdpCertificateArgs>>? = null, val idpEntityId: Output<String>? = null, val signRequest: Output<Boolean>? = null, val ssoUrl: Output<String>? = null) : ConvertibleToJava<GoogleCloudIdentitytoolkitAdminV2IdpConfigArgs>

The SAML IdP (Identity Provider) configuration when the project acts as the relying party.

data class GoogleCloudIdentitytoolkitAdminV2InheritanceArgs(val emailSendingConfig: Output<Boolean>? = null) : ConvertibleToJava<GoogleCloudIdentitytoolkitAdminV2InheritanceArgs>

Settings that the tenants will inherit from project level.

data class GoogleCloudIdentitytoolkitAdminV2MonitoringConfigArgs(val requestLogging: Output<GoogleCloudIdentitytoolkitAdminV2RequestLoggingArgs>? = null) : ConvertibleToJava<GoogleCloudIdentitytoolkitAdminV2MonitoringConfigArgs>

Configuration related to monitoring project activity.

data class GoogleCloudIdentitytoolkitAdminV2MultiFactorAuthConfigArgs(val enabledProviders: Output<List<GoogleCloudIdentitytoolkitAdminV2MultiFactorAuthConfigEnabledProvidersItem>>? = null, val providerConfigs: Output<List<GoogleCloudIdentitytoolkitAdminV2ProviderConfigArgs>>? = null, val state: Output<GoogleCloudIdentitytoolkitAdminV2MultiFactorAuthConfigState>? = null) : ConvertibleToJava<GoogleCloudIdentitytoolkitAdminV2MultiFactorAuthConfigArgs>

Options related to MultiFactor Authentication for the project.

data class GoogleCloudIdentitytoolkitAdminV2OAuthResponseTypeArgs(val code: Output<Boolean>? = null, val idToken: Output<Boolean>? = null, val token: Output<Boolean>? = null) : ConvertibleToJava<GoogleCloudIdentitytoolkitAdminV2OAuthResponseTypeArgs>

The response type to request for in the OAuth authorization flow. You can set either id_token or code to true, but not both. Setting both types to be simultaneously true ({code: true, id_token: true}) is not yet supported. See https://openid.net/specs/openid-connect-core-1_0.html#Authentication for a mapping of response type to OAuth 2.0 flow.

data class GoogleCloudIdentitytoolkitAdminV2PasswordPolicyConfigArgs(val forceUpgradeOnSignin: Output<Boolean>? = null, val passwordPolicyEnforcementState: Output<GoogleCloudIdentitytoolkitAdminV2PasswordPolicyConfigPasswordPolicyEnforcementState>? = null, val passwordPolicyVersions: Output<List<GoogleCloudIdentitytoolkitAdminV2PasswordPolicyVersionArgs>>? = null) : ConvertibleToJava<GoogleCloudIdentitytoolkitAdminV2PasswordPolicyConfigArgs>

The configuration for the password policy on the project.

data class GoogleCloudIdentitytoolkitAdminV2PasswordPolicyVersionArgs(val customStrengthOptions: Output<GoogleCloudIdentitytoolkitAdminV2CustomStrengthOptionsArgs>? = null) : ConvertibleToJava<GoogleCloudIdentitytoolkitAdminV2PasswordPolicyVersionArgs>

The strength attributes for the password policy on the project.

data class GoogleCloudIdentitytoolkitAdminV2ProviderConfigArgs(val state: Output<GoogleCloudIdentitytoolkitAdminV2ProviderConfigState>? = null, val totpProviderConfig: Output<GoogleCloudIdentitytoolkitAdminV2TotpMfaProviderConfigArgs>? = null) : ConvertibleToJava<GoogleCloudIdentitytoolkitAdminV2ProviderConfigArgs>

ProviderConfig describes the supported MFA providers along with their configurations.

data class GoogleCloudIdentitytoolkitAdminV2RecaptchaConfigArgs(val emailPasswordEnforcementState: Output<GoogleCloudIdentitytoolkitAdminV2RecaptchaConfigEmailPasswordEnforcementState>? = null, val managedRules: Output<List<GoogleCloudIdentitytoolkitAdminV2RecaptchaManagedRuleArgs>>? = null, val useAccountDefender: Output<Boolean>? = null) : ConvertibleToJava<GoogleCloudIdentitytoolkitAdminV2RecaptchaConfigArgs>

The reCAPTCHA Enterprise integration config.

data class GoogleCloudIdentitytoolkitAdminV2RecaptchaManagedRuleArgs(val action: Output<GoogleCloudIdentitytoolkitAdminV2RecaptchaManagedRuleAction>? = null, val endScore: Output<Double>? = null) : ConvertibleToJava<GoogleCloudIdentitytoolkitAdminV2RecaptchaManagedRuleArgs>

The config for a reCAPTCHA managed rule. Models a single interval start_score, end_score. The start_score is implicit. It is either the closest smaller end_score (if one is available) or 0. Intervals in aggregate span 0, 1 without overlapping.

data class GoogleCloudIdentitytoolkitAdminV2RequestLoggingArgs(val enabled: Output<Boolean>? = null) : ConvertibleToJava<GoogleCloudIdentitytoolkitAdminV2RequestLoggingArgs>

Configuration for logging requests made to this project to Stackdriver Logging

data class GoogleCloudIdentitytoolkitAdminV2SmsRegionConfigArgs(val allowByDefault: Output<GoogleCloudIdentitytoolkitAdminV2AllowByDefaultArgs>? = null, val allowlistOnly: Output<GoogleCloudIdentitytoolkitAdminV2AllowlistOnlyArgs>? = null) : ConvertibleToJava<GoogleCloudIdentitytoolkitAdminV2SmsRegionConfigArgs>

Configures the regions where users are allowed to send verification SMS for the project or tenant. This is based on the calling code of the destination phone number.

data class GoogleCloudIdentitytoolkitAdminV2SpConfigArgs(val callbackUri: Output<String>? = null, val spEntityId: Output<String>? = null) : ConvertibleToJava<GoogleCloudIdentitytoolkitAdminV2SpConfigArgs>

The SAML SP (Service Provider) configuration when the project acts as the relying party to receive and accept an authentication assertion issued by a SAML identity provider.

data class GoogleCloudIdentitytoolkitAdminV2TotpMfaProviderConfigArgs(val adjacentIntervals: Output<Int>? = null) : ConvertibleToJava<GoogleCloudIdentitytoolkitAdminV2TotpMfaProviderConfigArgs>

TotpMFAProviderConfig represents the TOTP based MFA provider.

Link copied to clipboard
data class GoogleIamV1AuditConfigArgs(val auditLogConfigs: Output<List<GoogleIamV1AuditLogConfigArgs>>? = null, val service: Output<String>? = null) : ConvertibleToJava<GoogleIamV1AuditConfigArgs>

Specifies the audit configuration for a service. The configuration determines which permission types are logged, and what identities, if any, are exempted from logging. An AuditConfig must have one or more AuditLogConfigs. If there are AuditConfigs for both allServices and a specific service, the union of the two AuditConfigs is used for that service: the log_types specified in each AuditConfig are enabled, and the exempted_members in each AuditLogConfig are exempted. Example Policy with multiple AuditConfigs: { "audit_configs": [ { "service": "allServices", "audit_log_configs": [ { "log_type": "DATA_READ", "exempted_members": "user:jose@example.com" }, { "log_type": "DATA_WRITE" }, { "log_type": "ADMIN_READ" } ] }, { "service": "sampleservice.googleapis.com", "audit_log_configs": [ { "log_type": "DATA_READ" }, { "log_type": "DATA_WRITE", "exempted_members": "user:aliya@example.com" } ] } ] } For sampleservice, this policy enables DATA_READ, DATA_WRITE and ADMIN_READ logging. It also exempts jose@example.com from DATA_READ logging, and aliya@example.com from DATA_WRITE logging.

Link copied to clipboard
Link copied to clipboard
data class GoogleIamV1AuditLogConfigArgs(val exemptedMembers: Output<List<String>>? = null, val logType: Output<GoogleIamV1AuditLogConfigLogType>? = null) : ConvertibleToJava<GoogleIamV1AuditLogConfigArgs>

Provides the configuration for logging a type of permissions. Example: { "audit_log_configs": [ { "log_type": "DATA_READ", "exempted_members": "user:jose@example.com" }, { "log_type": "DATA_WRITE" } ] } This enables 'DATA_READ' and 'DATA_WRITE' logging, while exempting jose@example.com from DATA_READ logging.

Link copied to clipboard
Link copied to clipboard
data class GoogleIamV1BindingArgs(val condition: Output<GoogleTypeExprArgs>? = null, val members: Output<List<String>>? = null, val role: Output<String>? = null) : ConvertibleToJava<GoogleIamV1BindingArgs>

Associates members, or principals, with a role.

Link copied to clipboard
Link copied to clipboard
data class GoogleTypeExprArgs(val description: Output<String>? = null, val expression: Output<String>? = null, val location: Output<String>? = null, val title: Output<String>? = null) : ConvertibleToJava<GoogleTypeExprArgs>

Represents a textual expression in the Common Expression Language (CEL) syntax. CEL is a C-like expression language. The syntax and semantics of CEL are documented at https://github.com/google/cel-spec. Example (Comparison): title: "Summary size limit" description: "Determines if a summary is less than 100 chars" expression: "document.summary.size() < 100" Example (Equality): title: "Requestor is owner" description: "Determines if requestor is the document owner" expression: "document.owner == request.auth.claims.email" Example (Logic): title: "Public documents" description: "Determine whether the document should be publicly visible" expression: "document.type != 'private' && document.type != 'internal'" Example (Data Manipulation): title: "Notification string" description: "Create a notification string with a timestamp." expression: "'New message received at ' + string(document.create_time)" The exact variables and functions that may be referenced within an expression are determined by the service that evaluates it. See the service documentation for additional information.

Link copied to clipboard