Docs
PackagesGoogle Cloud Classic v7.29.0 published on Wednesday, Jun 26, 2024 by Pulumi
gcp.gkehub.MembershipRbacRoleBinding
Explore with Pulumi AI
Example Usage
Gkehub Membership Rbac Role Binding Basic
import * as pulumi from "@pulumi/pulumi";
import * as gcp from "@pulumi/gcp";
const primary = new gcp.container.Cluster("primary", {
name: "basic-cluster",
location: "us-central1-a",
initialNodeCount: 1,
deletionProtection: true,
network: "default",
subnetwork: "default",
});
const membership = new gcp.gkehub.Membership("membership", {
membershipId: "tf-test-membership_8493",
endpoint: {
gkeCluster: {
resourceLink: pulumi.interpolate`//container.googleapis.com/${primary.id}`,
},
},
}, {
dependsOn: [primary],
});
const project = gcp.organizations.getProject({});
const membershipRbacRoleBinding = new gcp.gkehub.MembershipRbacRoleBinding("membership_rbac_role_binding", {
membershipRbacRoleBindingId: "tf-test-membership-rbac-role-binding_9106",
membershipId: membership.membershipId,
user: project.then(project => `service-${project.number}@gcp-sa-anthossupport.iam.gserviceaccount.com`),
role: {
predefinedRole: "ANTHOS_SUPPORT",
},
location: "global",
}, {
dependsOn: [membership],
});
import pulumi
import pulumi_gcp as gcp
primary = gcp.container.Cluster("primary",
name="basic-cluster",
location="us-central1-a",
initial_node_count=1,
deletion_protection=True,
network="default",
subnetwork="default")
membership = gcp.gkehub.Membership("membership",
membership_id="tf-test-membership_8493",
endpoint=gcp.gkehub.MembershipEndpointArgs(
gke_cluster=gcp.gkehub.MembershipEndpointGkeClusterArgs(
resource_link=primary.id.apply(lambda id: f"//container.googleapis.com/{id}"),
),
),
opts = pulumi.ResourceOptions(depends_on=[primary]))
project = gcp.organizations.get_project()
membership_rbac_role_binding = gcp.gkehub.MembershipRbacRoleBinding("membership_rbac_role_binding",
membership_rbac_role_binding_id="tf-test-membership-rbac-role-binding_9106",
membership_id=membership.membership_id,
user=f"service-{project.number}@gcp-sa-anthossupport.iam.gserviceaccount.com",
role=gcp.gkehub.MembershipRbacRoleBindingRoleArgs(
predefined_role="ANTHOS_SUPPORT",
),
location="global",
opts = pulumi.ResourceOptions(depends_on=[membership]))
package main
import (
"fmt"
"github.com/pulumi/pulumi-gcp/sdk/v7/go/gcp/container"
"github.com/pulumi/pulumi-gcp/sdk/v7/go/gcp/gkehub"
"github.com/pulumi/pulumi-gcp/sdk/v7/go/gcp/organizations"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
primary, err := container.NewCluster(ctx, "primary", &container.ClusterArgs{
Name: pulumi.String("basic-cluster"),
Location: pulumi.String("us-central1-a"),
InitialNodeCount: pulumi.Int(1),
DeletionProtection: pulumi.Bool(true),
Network: pulumi.String("default"),
Subnetwork: pulumi.String("default"),
})
if err != nil {
return err
}
membership, err := gkehub.NewMembership(ctx, "membership", &gkehub.MembershipArgs{
MembershipId: pulumi.String("tf-test-membership_8493"),
Endpoint: &gkehub.MembershipEndpointArgs{
GkeCluster: &gkehub.MembershipEndpointGkeClusterArgs{
ResourceLink: primary.ID().ApplyT(func(id string) (string, error) {
return fmt.Sprintf("//container.googleapis.com/%v", id), nil
}).(pulumi.StringOutput),
},
},
}, pulumi.DependsOn([]pulumi.Resource{
primary,
}))
if err != nil {
return err
}
project, err := organizations.LookupProject(ctx, nil, nil)
if err != nil {
return err
}
_, err = gkehub.NewMembershipRbacRoleBinding(ctx, "membership_rbac_role_binding", &gkehub.MembershipRbacRoleBindingArgs{
MembershipRbacRoleBindingId: pulumi.String("tf-test-membership-rbac-role-binding_9106"),
MembershipId: membership.MembershipId,
User: pulumi.String(fmt.Sprintf("service-%v@gcp-sa-anthossupport.iam.gserviceaccount.com", project.Number)),
Role: &gkehub.MembershipRbacRoleBindingRoleArgs{
PredefinedRole: pulumi.String("ANTHOS_SUPPORT"),
},
Location: pulumi.String("global"),
}, pulumi.DependsOn([]pulumi.Resource{
membership,
}))
if err != nil {
return err
}
return nil
})
}
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using Gcp = Pulumi.Gcp;
return await Deployment.RunAsync(() =>
{
var primary = new Gcp.Container.Cluster("primary", new()
{
Name = "basic-cluster",
Location = "us-central1-a",
InitialNodeCount = 1,
DeletionProtection = true,
Network = "default",
Subnetwork = "default",
});
var membership = new Gcp.GkeHub.Membership("membership", new()
{
MembershipId = "tf-test-membership_8493",
Endpoint = new Gcp.GkeHub.Inputs.MembershipEndpointArgs
{
GkeCluster = new Gcp.GkeHub.Inputs.MembershipEndpointGkeClusterArgs
{
ResourceLink = primary.Id.Apply(id => $"//container.googleapis.com/{id}"),
},
},
}, new CustomResourceOptions
{
DependsOn =
{
primary,
},
});
var project = Gcp.Organizations.GetProject.Invoke();
var membershipRbacRoleBinding = new Gcp.GkeHub.MembershipRbacRoleBinding("membership_rbac_role_binding", new()
{
MembershipRbacRoleBindingId = "tf-test-membership-rbac-role-binding_9106",
MembershipId = membership.MembershipId,
User = $"service-{project.Apply(getProjectResult => getProjectResult.Number)}@gcp-sa-anthossupport.iam.gserviceaccount.com",
Role = new Gcp.GkeHub.Inputs.MembershipRbacRoleBindingRoleArgs
{
PredefinedRole = "ANTHOS_SUPPORT",
},
Location = "global",
}, new CustomResourceOptions
{
DependsOn =
{
membership,
},
});
});
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.gcp.container.Cluster;
import com.pulumi.gcp.container.ClusterArgs;
import com.pulumi.gcp.gkehub.Membership;
import com.pulumi.gcp.gkehub.MembershipArgs;
import com.pulumi.gcp.gkehub.inputs.MembershipEndpointArgs;
import com.pulumi.gcp.gkehub.inputs.MembershipEndpointGkeClusterArgs;
import com.pulumi.gcp.organizations.OrganizationsFunctions;
import com.pulumi.gcp.organizations.inputs.GetProjectArgs;
import com.pulumi.gcp.gkehub.MembershipRbacRoleBinding;
import com.pulumi.gcp.gkehub.MembershipRbacRoleBindingArgs;
import com.pulumi.gcp.gkehub.inputs.MembershipRbacRoleBindingRoleArgs;
import com.pulumi.resources.CustomResourceOptions;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
var primary = new Cluster("primary", ClusterArgs.builder()
.name("basic-cluster")
.location("us-central1-a")
.initialNodeCount(1)
.deletionProtection("true")
.network("default")
.subnetwork("default")
.build());
var membership = new Membership("membership", MembershipArgs.builder()
.membershipId("tf-test-membership_8493")
.endpoint(MembershipEndpointArgs.builder()
.gkeCluster(MembershipEndpointGkeClusterArgs.builder()
.resourceLink(primary.id().applyValue(id -> String.format("//container.googleapis.com/%s", id)))
.build())
.build())
.build(), CustomResourceOptions.builder()
.dependsOn(primary)
.build());
final var project = OrganizationsFunctions.getProject();
var membershipRbacRoleBinding = new MembershipRbacRoleBinding("membershipRbacRoleBinding", MembershipRbacRoleBindingArgs.builder()
.membershipRbacRoleBindingId("tf-test-membership-rbac-role-binding_9106")
.membershipId(membership.membershipId())
.user(String.format("service-%s@gcp-sa-anthossupport.iam.gserviceaccount.com", project.applyValue(getProjectResult -> getProjectResult.number())))
.role(MembershipRbacRoleBindingRoleArgs.builder()
.predefinedRole("ANTHOS_SUPPORT")
.build())
.location("global")
.build(), CustomResourceOptions.builder()
.dependsOn(membership)
.build());
}
}
resources:
primary:
type: gcp:container:Cluster
properties:
name: basic-cluster
location: us-central1-a
initialNodeCount: 1
deletionProtection: 'true'
network: default
subnetwork: default
membership:
type: gcp:gkehub:Membership
properties:
membershipId: tf-test-membership_8493
endpoint:
gkeCluster:
resourceLink: //container.googleapis.com/${primary.id}
options:
dependson:
- ${primary}
membershipRbacRoleBinding:
type: gcp:gkehub:MembershipRbacRoleBinding
name: membership_rbac_role_binding
properties:
membershipRbacRoleBindingId: tf-test-membership-rbac-role-binding_9106
membershipId: ${membership.membershipId}
user: service-${project.number}@gcp-sa-anthossupport.iam.gserviceaccount.com
role:
predefinedRole: ANTHOS_SUPPORT
location: global
options:
dependson:
- ${membership}
variables:
project:
fn::invoke:
Function: gcp:organizations:getProject
Arguments: {}
Create MembershipRbacRoleBinding Resource
Resources are created with functions called constructors. To learn more about declaring and configuring resources, see Resources.
Constructor syntax
new MembershipRbacRoleBinding(name: string, args: MembershipRbacRoleBindingArgs, opts?: CustomResourceOptions);@overload
def MembershipRbacRoleBinding(resource_name: str,
args: MembershipRbacRoleBindingArgs,
opts: Optional[ResourceOptions] = None)
@overload
def MembershipRbacRoleBinding(resource_name: str,
opts: Optional[ResourceOptions] = None,
location: Optional[str] = None,
membership_id: Optional[str] = None,
membership_rbac_role_binding_id: Optional[str] = None,
role: Optional[MembershipRbacRoleBindingRoleArgs] = None,
user: Optional[str] = None,
project: Optional[str] = None)func NewMembershipRbacRoleBinding(ctx *Context, name string, args MembershipRbacRoleBindingArgs, opts ...ResourceOption) (*MembershipRbacRoleBinding, error)public MembershipRbacRoleBinding(string name, MembershipRbacRoleBindingArgs args, CustomResourceOptions? opts = null)
public MembershipRbacRoleBinding(String name, MembershipRbacRoleBindingArgs args)
public MembershipRbacRoleBinding(String name, MembershipRbacRoleBindingArgs args, CustomResourceOptions options)
type: gcp:gkehub:MembershipRbacRoleBinding
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.
Parameters
- name string
- The unique name of the resource.
- args MembershipRbacRoleBindingArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- resource_name str
- The unique name of the resource.
- args MembershipRbacRoleBindingArgs
- The arguments to resource properties.
- opts ResourceOptions
- Bag of options to control resource's behavior.
- ctx Context
- Context object for the current deployment.
- name string
- The unique name of the resource.
- args MembershipRbacRoleBindingArgs
- The arguments to resource properties.
- opts ResourceOption
- Bag of options to control resource's behavior.
- name string
- The unique name of the resource.
- args MembershipRbacRoleBindingArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- name String
- The unique name of the resource.
- args MembershipRbacRoleBindingArgs
- The arguments to resource properties.
- options CustomResourceOptions
- Bag of options to control resource's behavior.
Constructor example
The following reference example uses placeholder values for all input properties.
var membershipRbacRoleBindingResource = new Gcp.GkeHub.MembershipRbacRoleBinding("membershipRbacRoleBindingResource", new()
{
Location = "string",
MembershipId = "string",
MembershipRbacRoleBindingId = "string",
Role = new Gcp.GkeHub.Inputs.MembershipRbacRoleBindingRoleArgs
{
PredefinedRole = "string",
},
User = "string",
Project = "string",
});
example, err := gkehub.NewMembershipRbacRoleBinding(ctx, "membershipRbacRoleBindingResource", &gkehub.MembershipRbacRoleBindingArgs{
Location: pulumi.String("string"),
MembershipId: pulumi.String("string"),
MembershipRbacRoleBindingId: pulumi.String("string"),
Role: &gkehub.MembershipRbacRoleBindingRoleArgs{
PredefinedRole: pulumi.String("string"),
},
User: pulumi.String("string"),
Project: pulumi.String("string"),
})
var membershipRbacRoleBindingResource = new MembershipRbacRoleBinding("membershipRbacRoleBindingResource", MembershipRbacRoleBindingArgs.builder()
.location("string")
.membershipId("string")
.membershipRbacRoleBindingId("string")
.role(MembershipRbacRoleBindingRoleArgs.builder()
.predefinedRole("string")
.build())
.user("string")
.project("string")
.build());
membership_rbac_role_binding_resource = gcp.gkehub.MembershipRbacRoleBinding("membershipRbacRoleBindingResource",
location="string",
membership_id="string",
membership_rbac_role_binding_id="string",
role=gcp.gkehub.MembershipRbacRoleBindingRoleArgs(
predefined_role="string",
),
user="string",
project="string")
const membershipRbacRoleBindingResource = new gcp.gkehub.MembershipRbacRoleBinding("membershipRbacRoleBindingResource", {
location: "string",
membershipId: "string",
membershipRbacRoleBindingId: "string",
role: {
predefinedRole: "string",
},
user: "string",
project: "string",
});
type: gcp:gkehub:MembershipRbacRoleBinding
properties:
location: string
membershipId: string
membershipRbacRoleBindingId: string
project: string
role:
predefinedRole: string
user: string
MembershipRbacRoleBinding Resource Properties
To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.
Inputs
The MembershipRbacRoleBinding resource accepts the following input properties:
- Location string
- Location of the Membership
- Membership
Id string - Id of the membership
- Membership
Rbac stringRole Binding Id - The client-provided identifier of the RBAC Role Binding.
- Role
Membership
Rbac Role Binding Role - Role to bind to the principal. Structure is documented below.
- User string
- Principal that is be authorized in the cluster (at least of one the oneof is required). Updating one will unset the other automatically. user is the name of the user as seen by the kubernetes cluster, example "alice" or "alice@domain.tld"
- Project string
- Location string
- Location of the Membership
- Membership
Id string - Id of the membership
- Membership
Rbac stringRole Binding Id - The client-provided identifier of the RBAC Role Binding.
- Role
Membership
Rbac Role Binding Role Args - Role to bind to the principal. Structure is documented below.
- User string
- Principal that is be authorized in the cluster (at least of one the oneof is required). Updating one will unset the other automatically. user is the name of the user as seen by the kubernetes cluster, example "alice" or "alice@domain.tld"
- Project string
- location String
- Location of the Membership
- membership
Id String - Id of the membership
- membership
Rbac StringRole Binding Id - The client-provided identifier of the RBAC Role Binding.
- role
Membership
Rbac Role Binding Role - Role to bind to the principal. Structure is documented below.
- user String
- Principal that is be authorized in the cluster (at least of one the oneof is required). Updating one will unset the other automatically. user is the name of the user as seen by the kubernetes cluster, example "alice" or "alice@domain.tld"
- project String
- location string
- Location of the Membership
- membership
Id string - Id of the membership
- membership
Rbac stringRole Binding Id - The client-provided identifier of the RBAC Role Binding.
- role
Membership
Rbac Role Binding Role - Role to bind to the principal. Structure is documented below.
- user string
- Principal that is be authorized in the cluster (at least of one the oneof is required). Updating one will unset the other automatically. user is the name of the user as seen by the kubernetes cluster, example "alice" or "alice@domain.tld"
- project string
- location str
- Location of the Membership
- membership_
id str - Id of the membership
- membership_
rbac_ strrole_ binding_ id - The client-provided identifier of the RBAC Role Binding.
- role
Membership
Rbac Role Binding Role Args - Role to bind to the principal. Structure is documented below.
- user str
- Principal that is be authorized in the cluster (at least of one the oneof is required). Updating one will unset the other automatically. user is the name of the user as seen by the kubernetes cluster, example "alice" or "alice@domain.tld"
- project str
- location String
- Location of the Membership
- membership
Id String - Id of the membership
- membership
Rbac StringRole Binding Id - The client-provided identifier of the RBAC Role Binding.
- role Property Map
- Role to bind to the principal. Structure is documented below.
- user String
- Principal that is be authorized in the cluster (at least of one the oneof is required). Updating one will unset the other automatically. user is the name of the user as seen by the kubernetes cluster, example "alice" or "alice@domain.tld"
- project String
Outputs
All input properties are implicitly available as output properties. Additionally, the MembershipRbacRoleBinding resource produces the following output properties:
- Create
Time string - Time the RBAC Role Binding was created in UTC.
- Delete
Time string - Time the RBAC Role Binding was deleted in UTC.
- Id string
- The provider-assigned unique ID for this managed resource.
- Name string
- The resource name for the RBAC Role Binding
- States
List<Membership
Rbac Role Binding State> - State of the RBAC Role Binding resource. Structure is documented below.
- Uid string
- Google-generated UUID for this resource.
- Update
Time string - Time the RBAC Role Binding was updated in UTC.
- Create
Time string - Time the RBAC Role Binding was created in UTC.
- Delete
Time string - Time the RBAC Role Binding was deleted in UTC.
- Id string
- The provider-assigned unique ID for this managed resource.
- Name string
- The resource name for the RBAC Role Binding
- States
[]Membership
Rbac Role Binding State Type - State of the RBAC Role Binding resource. Structure is documented below.
- Uid string
- Google-generated UUID for this resource.
- Update
Time string - Time the RBAC Role Binding was updated in UTC.
- create
Time String - Time the RBAC Role Binding was created in UTC.
- delete
Time String - Time the RBAC Role Binding was deleted in UTC.
- id String
- The provider-assigned unique ID for this managed resource.
- name String
- The resource name for the RBAC Role Binding
- states
List<Membership
Rbac Role Binding State> - State of the RBAC Role Binding resource. Structure is documented below.
- uid String
- Google-generated UUID for this resource.
- update
Time String - Time the RBAC Role Binding was updated in UTC.
- create
Time string - Time the RBAC Role Binding was created in UTC.
- delete
Time string - Time the RBAC Role Binding was deleted in UTC.
- id string
- The provider-assigned unique ID for this managed resource.
- name string
- The resource name for the RBAC Role Binding
- states
Membership
Rbac Role Binding State[] - State of the RBAC Role Binding resource. Structure is documented below.
- uid string
- Google-generated UUID for this resource.
- update
Time string - Time the RBAC Role Binding was updated in UTC.
- create_
time str - Time the RBAC Role Binding was created in UTC.
- delete_
time str - Time the RBAC Role Binding was deleted in UTC.
- id str
- The provider-assigned unique ID for this managed resource.
- name str
- The resource name for the RBAC Role Binding
- states
Sequence[Membership
Rbac Role Binding State] - State of the RBAC Role Binding resource. Structure is documented below.
- uid str
- Google-generated UUID for this resource.
- update_
time str - Time the RBAC Role Binding was updated in UTC.
- create
Time String - Time the RBAC Role Binding was created in UTC.
- delete
Time String - Time the RBAC Role Binding was deleted in UTC.
- id String
- The provider-assigned unique ID for this managed resource.
- name String
- The resource name for the RBAC Role Binding
- states List<Property Map>
- State of the RBAC Role Binding resource. Structure is documented below.
- uid String
- Google-generated UUID for this resource.
- update
Time String - Time the RBAC Role Binding was updated in UTC.
Look up Existing MembershipRbacRoleBinding Resource
Get an existing MembershipRbacRoleBinding resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.
public static get(name: string, id: Input<ID>, state?: MembershipRbacRoleBindingState, opts?: CustomResourceOptions): MembershipRbacRoleBinding@staticmethod
def get(resource_name: str,
id: str,
opts: Optional[ResourceOptions] = None,
create_time: Optional[str] = None,
delete_time: Optional[str] = None,
location: Optional[str] = None,
membership_id: Optional[str] = None,
membership_rbac_role_binding_id: Optional[str] = None,
name: Optional[str] = None,
project: Optional[str] = None,
role: Optional[MembershipRbacRoleBindingRoleArgs] = None,
states: Optional[Sequence[MembershipRbacRoleBindingStateArgs]] = None,
uid: Optional[str] = None,
update_time: Optional[str] = None,
user: Optional[str] = None) -> MembershipRbacRoleBindingfunc GetMembershipRbacRoleBinding(ctx *Context, name string, id IDInput, state *MembershipRbacRoleBindingState, opts ...ResourceOption) (*MembershipRbacRoleBinding, error)public static MembershipRbacRoleBinding Get(string name, Input<string> id, MembershipRbacRoleBindingState? state, CustomResourceOptions? opts = null)public static MembershipRbacRoleBinding get(String name, Output<String> id, MembershipRbacRoleBindingState state, CustomResourceOptions options)Resource lookup is not supported in YAML- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- resource_name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- Create
Time string - Time the RBAC Role Binding was created in UTC.
- Delete
Time string - Time the RBAC Role Binding was deleted in UTC.
- Location string
- Location of the Membership
- Membership
Id string - Id of the membership
- Membership
Rbac stringRole Binding Id - The client-provided identifier of the RBAC Role Binding.
- Name string
- The resource name for the RBAC Role Binding
- Project string
- Role
Membership
Rbac Role Binding Role - Role to bind to the principal. Structure is documented below.
- States
List<Membership
Rbac Role Binding State> - State of the RBAC Role Binding resource. Structure is documented below.
- Uid string
- Google-generated UUID for this resource.
- Update
Time string - Time the RBAC Role Binding was updated in UTC.
- User string
- Principal that is be authorized in the cluster (at least of one the oneof is required). Updating one will unset the other automatically. user is the name of the user as seen by the kubernetes cluster, example "alice" or "alice@domain.tld"
- Create
Time string - Time the RBAC Role Binding was created in UTC.
- Delete
Time string - Time the RBAC Role Binding was deleted in UTC.
- Location string
- Location of the Membership
- Membership
Id string - Id of the membership
- Membership
Rbac stringRole Binding Id - The client-provided identifier of the RBAC Role Binding.
- Name string
- The resource name for the RBAC Role Binding
- Project string
- Role
Membership
Rbac Role Binding Role Args - Role to bind to the principal. Structure is documented below.
- States
[]Membership
Rbac Role Binding State Type Args - State of the RBAC Role Binding resource. Structure is documented below.
- Uid string
- Google-generated UUID for this resource.
- Update
Time string - Time the RBAC Role Binding was updated in UTC.
- User string
- Principal that is be authorized in the cluster (at least of one the oneof is required). Updating one will unset the other automatically. user is the name of the user as seen by the kubernetes cluster, example "alice" or "alice@domain.tld"
- create
Time String - Time the RBAC Role Binding was created in UTC.
- delete
Time String - Time the RBAC Role Binding was deleted in UTC.
- location String
- Location of the Membership
- membership
Id String - Id of the membership
- membership
Rbac StringRole Binding Id - The client-provided identifier of the RBAC Role Binding.
- name String
- The resource name for the RBAC Role Binding
- project String
- role
Membership
Rbac Role Binding Role - Role to bind to the principal. Structure is documented below.
- states
List<Membership
Rbac Role Binding State> - State of the RBAC Role Binding resource. Structure is documented below.
- uid String
- Google-generated UUID for this resource.
- update
Time String - Time the RBAC Role Binding was updated in UTC.
- user String
- Principal that is be authorized in the cluster (at least of one the oneof is required). Updating one will unset the other automatically. user is the name of the user as seen by the kubernetes cluster, example "alice" or "alice@domain.tld"
- create
Time string - Time the RBAC Role Binding was created in UTC.
- delete
Time string - Time the RBAC Role Binding was deleted in UTC.
- location string
- Location of the Membership
- membership
Id string - Id of the membership
- membership
Rbac stringRole Binding Id - The client-provided identifier of the RBAC Role Binding.
- name string
- The resource name for the RBAC Role Binding
- project string
- role
Membership
Rbac Role Binding Role - Role to bind to the principal. Structure is documented below.
- states
Membership
Rbac Role Binding State[] - State of the RBAC Role Binding resource. Structure is documented below.
- uid string
- Google-generated UUID for this resource.
- update
Time string - Time the RBAC Role Binding was updated in UTC.
- user string
- Principal that is be authorized in the cluster (at least of one the oneof is required). Updating one will unset the other automatically. user is the name of the user as seen by the kubernetes cluster, example "alice" or "alice@domain.tld"
- create_
time str - Time the RBAC Role Binding was created in UTC.
- delete_
time str - Time the RBAC Role Binding was deleted in UTC.
- location str
- Location of the Membership
- membership_
id str - Id of the membership
- membership_
rbac_ strrole_ binding_ id - The client-provided identifier of the RBAC Role Binding.
- name str
- The resource name for the RBAC Role Binding
- project str
- role
Membership
Rbac Role Binding Role Args - Role to bind to the principal. Structure is documented below.
- states
Sequence[Membership
Rbac Role Binding State Args] - State of the RBAC Role Binding resource. Structure is documented below.
- uid str
- Google-generated UUID for this resource.
- update_
time str - Time the RBAC Role Binding was updated in UTC.
- user str
- Principal that is be authorized in the cluster (at least of one the oneof is required). Updating one will unset the other automatically. user is the name of the user as seen by the kubernetes cluster, example "alice" or "alice@domain.tld"
- create
Time String - Time the RBAC Role Binding was created in UTC.
- delete
Time String - Time the RBAC Role Binding was deleted in UTC.
- location String
- Location of the Membership
- membership
Id String - Id of the membership
- membership
Rbac StringRole Binding Id - The client-provided identifier of the RBAC Role Binding.
- name String
- The resource name for the RBAC Role Binding
- project String
- role Property Map
- Role to bind to the principal. Structure is documented below.
- states List<Property Map>
- State of the RBAC Role Binding resource. Structure is documented below.
- uid String
- Google-generated UUID for this resource.
- update
Time String - Time the RBAC Role Binding was updated in UTC.
- user String
- Principal that is be authorized in the cluster (at least of one the oneof is required). Updating one will unset the other automatically. user is the name of the user as seen by the kubernetes cluster, example "alice" or "alice@domain.tld"
Supporting Types
MembershipRbacRoleBindingRole, MembershipRbacRoleBindingRoleArgs
- Predefined
Role string - PredefinedRole is an ENUM representation of the default Kubernetes Roles
Possible values are:
UNKNOWN,ADMIN,EDIT,VIEW,ANTHOS_SUPPORT.
- Predefined
Role string - PredefinedRole is an ENUM representation of the default Kubernetes Roles
Possible values are:
UNKNOWN,ADMIN,EDIT,VIEW,ANTHOS_SUPPORT.
- predefined
Role String - PredefinedRole is an ENUM representation of the default Kubernetes Roles
Possible values are:
UNKNOWN,ADMIN,EDIT,VIEW,ANTHOS_SUPPORT.
- predefined
Role string - PredefinedRole is an ENUM representation of the default Kubernetes Roles
Possible values are:
UNKNOWN,ADMIN,EDIT,VIEW,ANTHOS_SUPPORT.
- predefined_
role str - PredefinedRole is an ENUM representation of the default Kubernetes Roles
Possible values are:
UNKNOWN,ADMIN,EDIT,VIEW,ANTHOS_SUPPORT.
- predefined
Role String - PredefinedRole is an ENUM representation of the default Kubernetes Roles
Possible values are:
UNKNOWN,ADMIN,EDIT,VIEW,ANTHOS_SUPPORT.
MembershipRbacRoleBindingState, MembershipRbacRoleBindingStateArgs
- Code string
- (Output) Code describes the state of a RBAC Role Binding resource.
- Code string
- (Output) Code describes the state of a RBAC Role Binding resource.
- code String
- (Output) Code describes the state of a RBAC Role Binding resource.
- code string
- (Output) Code describes the state of a RBAC Role Binding resource.
- code str
- (Output) Code describes the state of a RBAC Role Binding resource.
- code String
- (Output) Code describes the state of a RBAC Role Binding resource.
Import
MembershipRBACRoleBinding can be imported using any of these accepted formats:
projects/{{project}}/locations/{{location}}/memberships/{{membership_id}}/rbacrolebindings/{{membership_rbac_role_binding_id}}{{project}}/{{location}}/{{membership_id}}/{{membership_rbac_role_binding_id}}{{location}}/{{membership_id}}/{{membership_rbac_role_binding_id}}
When using the pulumi import command, MembershipRBACRoleBinding can be imported using one of the formats above. For example:
$ pulumi import gcp:gkehub/membershipRbacRoleBinding:MembershipRbacRoleBinding default projects/{{project}}/locations/{{location}}/memberships/{{membership_id}}/rbacrolebindings/{{membership_rbac_role_binding_id}}
$ pulumi import gcp:gkehub/membershipRbacRoleBinding:MembershipRbacRoleBinding default {{project}}/{{location}}/{{membership_id}}/{{membership_rbac_role_binding_id}}
$ pulumi import gcp:gkehub/membershipRbacRoleBinding:MembershipRbacRoleBinding default {{location}}/{{membership_id}}/{{membership_rbac_role_binding_id}}
To learn more about importing existing cloud resources, see Importing resources.
Package Details
- Repository
- Google Cloud (GCP) Classic pulumi/pulumi-gcp
- License
- Apache-2.0
- Notes
- This Pulumi package is based on the
google-betaTerraform Provider.