Aiven v6.44.0, Oct 10 25

Aiven v6.44.0 published on Friday, Oct 10, 2025 by Pulumi

aiven.OrganizationApplicationUserToken

Aiven v6.44.0 published on Friday, Oct 10, 2025 by Pulumi

Example Usage

import * as pulumi from "@pulumi/pulumi";
import * as aiven from "@pulumi/aiven";

const tfUser = new aiven.OrganizationApplicationUser("tf_user", {
    organizationId: main.id,
    name: "app-terraform",
});
const example = new aiven.OrganizationApplicationUserToken("example", {
    organizationId: main.id,
    userId: tfUser.userId,
    description: "Token for TF access to Aiven.",
});

import pulumi
import pulumi_aiven as aiven

tf_user = aiven.OrganizationApplicationUser("tf_user",
    organization_id=main["id"],
    name="app-terraform")
example = aiven.OrganizationApplicationUserToken("example",
    organization_id=main["id"],
    user_id=tf_user.user_id,
    description="Token for TF access to Aiven.")

package main

import (
	"github.com/pulumi/pulumi-aiven/sdk/v6/go/aiven"
	"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)

func main() {
	pulumi.Run(func(ctx *pulumi.Context) error {
		tfUser, err := aiven.NewOrganizationApplicationUser(ctx, "tf_user", &aiven.OrganizationApplicationUserArgs{
			OrganizationId: pulumi.Any(main.Id),
			Name:           pulumi.String("app-terraform"),
		})
		if err != nil {
			return err
		}
		_, err = aiven.NewOrganizationApplicationUserToken(ctx, "example", &aiven.OrganizationApplicationUserTokenArgs{
			OrganizationId: pulumi.Any(main.Id),
			UserId:         tfUser.UserId,
			Description:    pulumi.String("Token for TF access to Aiven."),
		})
		if err != nil {
			return err
		}
		return nil
	})
}

using System.Collections.Generic;
using System.Linq;
using Pulumi;
using Aiven = Pulumi.Aiven;

return await Deployment.RunAsync(() => 
{
    var tfUser = new Aiven.OrganizationApplicationUser("tf_user", new()
    {
        OrganizationId = main.Id,
        Name = "app-terraform",
    });

    var example = new Aiven.OrganizationApplicationUserToken("example", new()
    {
        OrganizationId = main.Id,
        UserId = tfUser.UserId,
        Description = "Token for TF access to Aiven.",
    });

});

package generated_program;

import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.aiven.OrganizationApplicationUser;
import com.pulumi.aiven.OrganizationApplicationUserArgs;
import com.pulumi.aiven.OrganizationApplicationUserToken;
import com.pulumi.aiven.OrganizationApplicationUserTokenArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;

public class App {
    public static void main(String[] args) {
        Pulumi.run(App::stack);
    }

    public static void stack(Context ctx) {
        var tfUser = new OrganizationApplicationUser("tfUser", OrganizationApplicationUserArgs.builder()
            .organizationId(main.id())
            .name("app-terraform")
            .build());

        var example = new OrganizationApplicationUserToken("example", OrganizationApplicationUserTokenArgs.builder()
            .organizationId(main.id())
            .userId(tfUser.userId())
            .description("Token for TF access to Aiven.")
            .build());

    }
}

resources:
  tfUser:
    type: aiven:OrganizationApplicationUser
    name: tf_user
    properties:
      organizationId: ${main.id}
      name: app-terraform
  example:
    type: aiven:OrganizationApplicationUserToken
    properties:
      organizationId: ${main.id}
      userId: ${tfUser.userId}
      description: Token for TF access to Aiven.

Create OrganizationApplicationUserToken Resource

Resources are created with functions called constructors. To learn more about declaring and configuring resources, see Resources.

Constructor syntax

new OrganizationApplicationUserToken(name: string, args: OrganizationApplicationUserTokenArgs, opts?: CustomResourceOptions);

@overload
def OrganizationApplicationUserToken(resource_name: str,
                                     args: OrganizationApplicationUserTokenArgs,
                                     opts: Optional[ResourceOptions] = None)

@overload
def OrganizationApplicationUserToken(resource_name: str,
                                     opts: Optional[ResourceOptions] = None,
                                     organization_id: Optional[str] = None,
                                     user_id: Optional[str] = None,
                                     description: Optional[str] = None,
                                     extend_when_used: Optional[bool] = None,
                                     ip_allowlists: Optional[Sequence[str]] = None,
                                     max_age_seconds: Optional[int] = None,
                                     scopes: Optional[Sequence[str]] = None,
                                     timeouts: Optional[OrganizationApplicationUserTokenTimeoutsArgs] = None)

func NewOrganizationApplicationUserToken(ctx *Context, name string, args OrganizationApplicationUserTokenArgs, opts ...ResourceOption) (*OrganizationApplicationUserToken, error)

public OrganizationApplicationUserToken(string name, OrganizationApplicationUserTokenArgs args, CustomResourceOptions? opts = null)

public OrganizationApplicationUserToken(String name, OrganizationApplicationUserTokenArgs args)
public OrganizationApplicationUserToken(String name, OrganizationApplicationUserTokenArgs args, CustomResourceOptions options)

type: aiven:OrganizationApplicationUserToken
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.

Parameters

name string: The unique name of the resource.
args OrganizationApplicationUserTokenArgs: The arguments to resource properties.
opts CustomResourceOptions: Bag of options to control resource's behavior.

resource_name str: The unique name of the resource.
args OrganizationApplicationUserTokenArgs: The arguments to resource properties.
opts ResourceOptions: Bag of options to control resource's behavior.

ctx Context: Context object for the current deployment.
name string: The unique name of the resource.
args OrganizationApplicationUserTokenArgs: The arguments to resource properties.
opts ResourceOption: Bag of options to control resource's behavior.

name string: The unique name of the resource.
args OrganizationApplicationUserTokenArgs: The arguments to resource properties.
opts CustomResourceOptions: Bag of options to control resource's behavior.

name String: The unique name of the resource.
args OrganizationApplicationUserTokenArgs: The arguments to resource properties.
options CustomResourceOptions: Bag of options to control resource's behavior.

Constructor example

The following reference example uses placeholder values for all input properties.

var organizationApplicationUserTokenResource = new Aiven.OrganizationApplicationUserToken("organizationApplicationUserTokenResource", new()
{
    OrganizationId = "string",
    UserId = "string",
    Description = "string",
    ExtendWhenUsed = false,
    IpAllowlists = new[]
    {
        "string",
    },
    MaxAgeSeconds = 0,
    Scopes = new[]
    {
        "string",
    },
    Timeouts = new Aiven.Inputs.OrganizationApplicationUserTokenTimeoutsArgs
    {
        Create = "string",
        Delete = "string",
        Read = "string",
        Update = "string",
    },
});

example, err := aiven.NewOrganizationApplicationUserToken(ctx, "organizationApplicationUserTokenResource", &aiven.OrganizationApplicationUserTokenArgs{
	OrganizationId: pulumi.String("string"),
	UserId:         pulumi.String("string"),
	Description:    pulumi.String("string"),
	ExtendWhenUsed: pulumi.Bool(false),
	IpAllowlists: pulumi.StringArray{
		pulumi.String("string"),
	},
	MaxAgeSeconds: pulumi.Int(0),
	Scopes: pulumi.StringArray{
		pulumi.String("string"),
	},
	Timeouts: &aiven.OrganizationApplicationUserTokenTimeoutsArgs{
		Create: pulumi.String("string"),
		Delete: pulumi.String("string"),
		Read:   pulumi.String("string"),
		Update: pulumi.String("string"),
	},
})

var organizationApplicationUserTokenResource = new OrganizationApplicationUserToken("organizationApplicationUserTokenResource", OrganizationApplicationUserTokenArgs.builder()
    .organizationId("string")
    .userId("string")
    .description("string")
    .extendWhenUsed(false)
    .ipAllowlists("string")
    .maxAgeSeconds(0)
    .scopes("string")
    .timeouts(OrganizationApplicationUserTokenTimeoutsArgs.builder()
        .create("string")
        .delete("string")
        .read("string")
        .update("string")
        .build())
    .build());

organization_application_user_token_resource = aiven.OrganizationApplicationUserToken("organizationApplicationUserTokenResource",
    organization_id="string",
    user_id="string",
    description="string",
    extend_when_used=False,
    ip_allowlists=["string"],
    max_age_seconds=0,
    scopes=["string"],
    timeouts={
        "create": "string",
        "delete": "string",
        "read": "string",
        "update": "string",
    })

const organizationApplicationUserTokenResource = new aiven.OrganizationApplicationUserToken("organizationApplicationUserTokenResource", {
    organizationId: "string",
    userId: "string",
    description: "string",
    extendWhenUsed: false,
    ipAllowlists: ["string"],
    maxAgeSeconds: 0,
    scopes: ["string"],
    timeouts: {
        create: "string",
        "delete": "string",
        read: "string",
        update: "string",
    },
});

type: aiven:OrganizationApplicationUserToken
properties:
    description: string
    extendWhenUsed: false
    ipAllowlists:
        - string
    maxAgeSeconds: 0
    organizationId: string
    scopes:
        - string
    timeouts:
        create: string
        delete: string
        read: string
        update: string
    userId: string

OrganizationApplicationUserToken Resource Properties

To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.

Inputs

In Python, inputs that are objects can be passed either as argument classes or as dictionary literals.

The OrganizationApplicationUserToken resource accepts the following input properties:

OrganizationId string: ID of an organization. Changing this property forces recreation of the resource.
UserId string: User ID. Changing this property forces recreation of the resource.
Description string: Description. Maximum length: 1000. Changing this property forces recreation of the resource.
ExtendWhenUsed bool: Extend token expiration time when token is used. Only applicable if maxageseconds is specified. The default value is false. Changing this property forces recreation of the resource.
IpAllowlists List<string>: List of allowed IP ranges. Changing this property forces recreation of the resource.
MaxAgeSeconds int: Time the token remains valid since creation (or since last use if extendwhenused is true). Changing this property forces recreation of the resource.
Scopes List<string>: Scopes this token is restricted to if specified. Changing this property forces recreation of the resource.
Timeouts OrganizationApplicationUserTokenTimeouts

OrganizationId string: ID of an organization. Changing this property forces recreation of the resource.
UserId string: User ID. Changing this property forces recreation of the resource.
Description string: Description. Maximum length: 1000. Changing this property forces recreation of the resource.
ExtendWhenUsed bool: Extend token expiration time when token is used. Only applicable if maxageseconds is specified. The default value is false. Changing this property forces recreation of the resource.
IpAllowlists []string: List of allowed IP ranges. Changing this property forces recreation of the resource.
MaxAgeSeconds int: Time the token remains valid since creation (or since last use if extendwhenused is true). Changing this property forces recreation of the resource.
Scopes []string: Scopes this token is restricted to if specified. Changing this property forces recreation of the resource.
Timeouts OrganizationApplicationUserTokenTimeoutsArgs

organizationId String: ID of an organization. Changing this property forces recreation of the resource.
userId String: User ID. Changing this property forces recreation of the resource.
description String: Description. Maximum length: 1000. Changing this property forces recreation of the resource.
extendWhenUsed Boolean: Extend token expiration time when token is used. Only applicable if maxageseconds is specified. The default value is false. Changing this property forces recreation of the resource.
ipAllowlists List<String>: List of allowed IP ranges. Changing this property forces recreation of the resource.
maxAgeSeconds Integer: Time the token remains valid since creation (or since last use if extendwhenused is true). Changing this property forces recreation of the resource.
scopes List<String>: Scopes this token is restricted to if specified. Changing this property forces recreation of the resource.
timeouts OrganizationApplicationUserTokenTimeouts

organizationId string: ID of an organization. Changing this property forces recreation of the resource.
userId string: User ID. Changing this property forces recreation of the resource.
description string: Description. Maximum length: 1000. Changing this property forces recreation of the resource.
extendWhenUsed boolean: Extend token expiration time when token is used. Only applicable if maxageseconds is specified. The default value is false. Changing this property forces recreation of the resource.
ipAllowlists string[]: List of allowed IP ranges. Changing this property forces recreation of the resource.
maxAgeSeconds number: Time the token remains valid since creation (or since last use if extendwhenused is true). Changing this property forces recreation of the resource.
scopes string[]: Scopes this token is restricted to if specified. Changing this property forces recreation of the resource.
timeouts OrganizationApplicationUserTokenTimeouts

organization_id str: ID of an organization. Changing this property forces recreation of the resource.
user_id str: User ID. Changing this property forces recreation of the resource.
description str: Description. Maximum length: 1000. Changing this property forces recreation of the resource.
extend_when_used bool: Extend token expiration time when token is used. Only applicable if maxageseconds is specified. The default value is false. Changing this property forces recreation of the resource.
ip_allowlists Sequence[str]: List of allowed IP ranges. Changing this property forces recreation of the resource.
max_age_seconds int: Time the token remains valid since creation (or since last use if extendwhenused is true). Changing this property forces recreation of the resource.
scopes Sequence[str]: Scopes this token is restricted to if specified. Changing this property forces recreation of the resource.
timeouts OrganizationApplicationUserTokenTimeoutsArgs

organizationId String: ID of an organization. Changing this property forces recreation of the resource.
userId String: User ID. Changing this property forces recreation of the resource.
description String: Description. Maximum length: 1000. Changing this property forces recreation of the resource.
extendWhenUsed Boolean: Extend token expiration time when token is used. Only applicable if maxageseconds is specified. The default value is false. Changing this property forces recreation of the resource.
ipAllowlists List<String>: List of allowed IP ranges. Changing this property forces recreation of the resource.
maxAgeSeconds Number: Time the token remains valid since creation (or since last use if extendwhenused is true). Changing this property forces recreation of the resource.
scopes List<String>: Scopes this token is restricted to if specified. Changing this property forces recreation of the resource.
timeouts Property Map

Outputs

All input properties are implicitly available as output properties. Additionally, the OrganizationApplicationUserToken resource produces the following output properties:

CreateTime string: Create Time.
CreatedManually bool: True for tokens explicitly created via the access_tokens API, false for tokens created via login.
CurrentlyActive bool: true if API request was made with this access token.
ExpiryTime string: Timestamp when the access token will expire unless extended, if ever.
FullToken string: Full Token.
Id string: The provider-assigned unique ID for this managed resource.
LastIp string: IP address the access token was last used from in case it has ever been used.
LastUsedTime string: Timestamp when the access token was last used, if ever.
LastUserAgent string: User agent string of the client that last used the token in case it has ever been used.
LastUserAgentHumanReadable string: Human readable user agent string of the client that last used the token in case user agent is known.
TokenPrefix string: First characters of the actual token value. Full value is only exposed after creation. This value is used when updating or revoking tokens. Note that the value may contain /, + and = characters and must be URL encoded when used (/ => %2F, + => %2B, = => %3D).

CreateTime string: Create Time.
CreatedManually bool: True for tokens explicitly created via the access_tokens API, false for tokens created via login.
CurrentlyActive bool: true if API request was made with this access token.
ExpiryTime string: Timestamp when the access token will expire unless extended, if ever.
FullToken string: Full Token.
Id string: The provider-assigned unique ID for this managed resource.
LastIp string: IP address the access token was last used from in case it has ever been used.
LastUsedTime string: Timestamp when the access token was last used, if ever.
LastUserAgent string: User agent string of the client that last used the token in case it has ever been used.
LastUserAgentHumanReadable string: Human readable user agent string of the client that last used the token in case user agent is known.
TokenPrefix string: First characters of the actual token value. Full value is only exposed after creation. This value is used when updating or revoking tokens. Note that the value may contain /, + and = characters and must be URL encoded when used (/ => %2F, + => %2B, = => %3D).

createTime String: Create Time.
createdManually Boolean: True for tokens explicitly created via the access_tokens API, false for tokens created via login.
currentlyActive Boolean: true if API request was made with this access token.
expiryTime String: Timestamp when the access token will expire unless extended, if ever.
fullToken String: Full Token.
id String: The provider-assigned unique ID for this managed resource.
lastIp String: IP address the access token was last used from in case it has ever been used.
lastUsedTime String: Timestamp when the access token was last used, if ever.
lastUserAgent String: User agent string of the client that last used the token in case it has ever been used.
lastUserAgentHumanReadable String: Human readable user agent string of the client that last used the token in case user agent is known.
tokenPrefix String: First characters of the actual token value. Full value is only exposed after creation. This value is used when updating or revoking tokens. Note that the value may contain /, + and = characters and must be URL encoded when used (/ => %2F, + => %2B, = => %3D).

createTime string: Create Time.
createdManually boolean: True for tokens explicitly created via the access_tokens API, false for tokens created via login.
currentlyActive boolean: true if API request was made with this access token.
expiryTime string: Timestamp when the access token will expire unless extended, if ever.
fullToken string: Full Token.
id string: The provider-assigned unique ID for this managed resource.
lastIp string: IP address the access token was last used from in case it has ever been used.
lastUsedTime string: Timestamp when the access token was last used, if ever.
lastUserAgent string: User agent string of the client that last used the token in case it has ever been used.
lastUserAgentHumanReadable string: Human readable user agent string of the client that last used the token in case user agent is known.
tokenPrefix string: First characters of the actual token value. Full value is only exposed after creation. This value is used when updating or revoking tokens. Note that the value may contain /, + and = characters and must be URL encoded when used (/ => %2F, + => %2B, = => %3D).

create_time str: Create Time.
created_manually bool: True for tokens explicitly created via the access_tokens API, false for tokens created via login.
currently_active bool: true if API request was made with this access token.
expiry_time str: Timestamp when the access token will expire unless extended, if ever.
full_token str: Full Token.
id str: The provider-assigned unique ID for this managed resource.
last_ip str: IP address the access token was last used from in case it has ever been used.
last_used_time str: Timestamp when the access token was last used, if ever.
last_user_agent str: User agent string of the client that last used the token in case it has ever been used.
last_user_agent_human_readable str: Human readable user agent string of the client that last used the token in case user agent is known.
token_prefix str: First characters of the actual token value. Full value is only exposed after creation. This value is used when updating or revoking tokens. Note that the value may contain /, + and = characters and must be URL encoded when used (/ => %2F, + => %2B, = => %3D).

createTime String: Create Time.
createdManually Boolean: True for tokens explicitly created via the access_tokens API, false for tokens created via login.
currentlyActive Boolean: true if API request was made with this access token.
expiryTime String: Timestamp when the access token will expire unless extended, if ever.
fullToken String: Full Token.
id String: The provider-assigned unique ID for this managed resource.
lastIp String: IP address the access token was last used from in case it has ever been used.
lastUsedTime String: Timestamp when the access token was last used, if ever.
lastUserAgent String: User agent string of the client that last used the token in case it has ever been used.
lastUserAgentHumanReadable String: Human readable user agent string of the client that last used the token in case user agent is known.
tokenPrefix String: First characters of the actual token value. Full value is only exposed after creation. This value is used when updating or revoking tokens. Note that the value may contain /, + and = characters and must be URL encoded when used (/ => %2F, + => %2B, = => %3D).

Look up Existing OrganizationApplicationUserToken Resource

Get an existing OrganizationApplicationUserToken resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.

public static get(name: string, id: Input<ID>, state?: OrganizationApplicationUserTokenState, opts?: CustomResourceOptions): OrganizationApplicationUserToken

@staticmethod
def get(resource_name: str,
        id: str,
        opts: Optional[ResourceOptions] = None,
        create_time: Optional[str] = None,
        created_manually: Optional[bool] = None,
        currently_active: Optional[bool] = None,
        description: Optional[str] = None,
        expiry_time: Optional[str] = None,
        extend_when_used: Optional[bool] = None,
        full_token: Optional[str] = None,
        ip_allowlists: Optional[Sequence[str]] = None,
        last_ip: Optional[str] = None,
        last_used_time: Optional[str] = None,
        last_user_agent: Optional[str] = None,
        last_user_agent_human_readable: Optional[str] = None,
        max_age_seconds: Optional[int] = None,
        organization_id: Optional[str] = None,
        scopes: Optional[Sequence[str]] = None,
        timeouts: Optional[OrganizationApplicationUserTokenTimeoutsArgs] = None,
        token_prefix: Optional[str] = None,
        user_id: Optional[str] = None) -> OrganizationApplicationUserToken

func GetOrganizationApplicationUserToken(ctx *Context, name string, id IDInput, state *OrganizationApplicationUserTokenState, opts ...ResourceOption) (*OrganizationApplicationUserToken, error)

public static OrganizationApplicationUserToken Get(string name, Input<string> id, OrganizationApplicationUserTokenState? state, CustomResourceOptions? opts = null)

public static OrganizationApplicationUserToken get(String name, Output<String> id, OrganizationApplicationUserTokenState state, CustomResourceOptions options)

resources:  _:    type: aiven:OrganizationApplicationUserToken    get:      id: ${id}

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

resource_name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

The following state arguments are supported:

CreateTime string: Create Time.
CreatedManually bool: True for tokens explicitly created via the access_tokens API, false for tokens created via login.
CurrentlyActive bool: true if API request was made with this access token.
Description string: Description. Maximum length: 1000. Changing this property forces recreation of the resource.
ExpiryTime string: Timestamp when the access token will expire unless extended, if ever.
ExtendWhenUsed bool: Extend token expiration time when token is used. Only applicable if maxageseconds is specified. The default value is false. Changing this property forces recreation of the resource.
FullToken string: Full Token.
IpAllowlists List<string>: List of allowed IP ranges. Changing this property forces recreation of the resource.
LastIp string: IP address the access token was last used from in case it has ever been used.
LastUsedTime string: Timestamp when the access token was last used, if ever.
LastUserAgent string: User agent string of the client that last used the token in case it has ever been used.
LastUserAgentHumanReadable string: Human readable user agent string of the client that last used the token in case user agent is known.
MaxAgeSeconds int: Time the token remains valid since creation (or since last use if extendwhenused is true). Changing this property forces recreation of the resource.
OrganizationId string: ID of an organization. Changing this property forces recreation of the resource.
Scopes List<string>: Scopes this token is restricted to if specified. Changing this property forces recreation of the resource.
Timeouts OrganizationApplicationUserTokenTimeouts
TokenPrefix string: First characters of the actual token value. Full value is only exposed after creation. This value is used when updating or revoking tokens. Note that the value may contain /, + and = characters and must be URL encoded when used (/ => %2F, + => %2B, = => %3D).
UserId string: User ID. Changing this property forces recreation of the resource.

CreateTime string: Create Time.
CreatedManually bool: True for tokens explicitly created via the access_tokens API, false for tokens created via login.
CurrentlyActive bool: true if API request was made with this access token.
Description string: Description. Maximum length: 1000. Changing this property forces recreation of the resource.
ExpiryTime string: Timestamp when the access token will expire unless extended, if ever.
ExtendWhenUsed bool: Extend token expiration time when token is used. Only applicable if maxageseconds is specified. The default value is false. Changing this property forces recreation of the resource.
FullToken string: Full Token.
IpAllowlists []string: List of allowed IP ranges. Changing this property forces recreation of the resource.
LastIp string: IP address the access token was last used from in case it has ever been used.
LastUsedTime string: Timestamp when the access token was last used, if ever.
LastUserAgent string: User agent string of the client that last used the token in case it has ever been used.
LastUserAgentHumanReadable string: Human readable user agent string of the client that last used the token in case user agent is known.
MaxAgeSeconds int: Time the token remains valid since creation (or since last use if extendwhenused is true). Changing this property forces recreation of the resource.
OrganizationId string: ID of an organization. Changing this property forces recreation of the resource.
Scopes []string: Scopes this token is restricted to if specified. Changing this property forces recreation of the resource.
Timeouts OrganizationApplicationUserTokenTimeoutsArgs
TokenPrefix string: First characters of the actual token value. Full value is only exposed after creation. This value is used when updating or revoking tokens. Note that the value may contain /, + and = characters and must be URL encoded when used (/ => %2F, + => %2B, = => %3D).
UserId string: User ID. Changing this property forces recreation of the resource.

createTime String: Create Time.
createdManually Boolean: True for tokens explicitly created via the access_tokens API, false for tokens created via login.
currentlyActive Boolean: true if API request was made with this access token.
description String: Description. Maximum length: 1000. Changing this property forces recreation of the resource.
expiryTime String: Timestamp when the access token will expire unless extended, if ever.
extendWhenUsed Boolean: Extend token expiration time when token is used. Only applicable if maxageseconds is specified. The default value is false. Changing this property forces recreation of the resource.
fullToken String: Full Token.
ipAllowlists List<String>: List of allowed IP ranges. Changing this property forces recreation of the resource.
lastIp String: IP address the access token was last used from in case it has ever been used.
lastUsedTime String: Timestamp when the access token was last used, if ever.
lastUserAgent String: User agent string of the client that last used the token in case it has ever been used.
lastUserAgentHumanReadable String: Human readable user agent string of the client that last used the token in case user agent is known.
maxAgeSeconds Integer: Time the token remains valid since creation (or since last use if extendwhenused is true). Changing this property forces recreation of the resource.
organizationId String: ID of an organization. Changing this property forces recreation of the resource.
scopes List<String>: Scopes this token is restricted to if specified. Changing this property forces recreation of the resource.
timeouts OrganizationApplicationUserTokenTimeouts
tokenPrefix String: First characters of the actual token value. Full value is only exposed after creation. This value is used when updating or revoking tokens. Note that the value may contain /, + and = characters and must be URL encoded when used (/ => %2F, + => %2B, = => %3D).
userId String: User ID. Changing this property forces recreation of the resource.

createTime string: Create Time.
createdManually boolean: True for tokens explicitly created via the access_tokens API, false for tokens created via login.
currentlyActive boolean: true if API request was made with this access token.
description string: Description. Maximum length: 1000. Changing this property forces recreation of the resource.
expiryTime string: Timestamp when the access token will expire unless extended, if ever.
extendWhenUsed boolean: Extend token expiration time when token is used. Only applicable if maxageseconds is specified. The default value is false. Changing this property forces recreation of the resource.
fullToken string: Full Token.
ipAllowlists string[]: List of allowed IP ranges. Changing this property forces recreation of the resource.
lastIp string: IP address the access token was last used from in case it has ever been used.
lastUsedTime string: Timestamp when the access token was last used, if ever.
lastUserAgent string: User agent string of the client that last used the token in case it has ever been used.
lastUserAgentHumanReadable string: Human readable user agent string of the client that last used the token in case user agent is known.
maxAgeSeconds number: Time the token remains valid since creation (or since last use if extendwhenused is true). Changing this property forces recreation of the resource.
organizationId string: ID of an organization. Changing this property forces recreation of the resource.
scopes string[]: Scopes this token is restricted to if specified. Changing this property forces recreation of the resource.
timeouts OrganizationApplicationUserTokenTimeouts
tokenPrefix string: First characters of the actual token value. Full value is only exposed after creation. This value is used when updating or revoking tokens. Note that the value may contain /, + and = characters and must be URL encoded when used (/ => %2F, + => %2B, = => %3D).
userId string: User ID. Changing this property forces recreation of the resource.

create_time str: Create Time.
created_manually bool: True for tokens explicitly created via the access_tokens API, false for tokens created via login.
currently_active bool: true if API request was made with this access token.
description str: Description. Maximum length: 1000. Changing this property forces recreation of the resource.
expiry_time str: Timestamp when the access token will expire unless extended, if ever.
extend_when_used bool: Extend token expiration time when token is used. Only applicable if maxageseconds is specified. The default value is false. Changing this property forces recreation of the resource.
full_token str: Full Token.
ip_allowlists Sequence[str]: List of allowed IP ranges. Changing this property forces recreation of the resource.
last_ip str: IP address the access token was last used from in case it has ever been used.
last_used_time str: Timestamp when the access token was last used, if ever.
last_user_agent str: User agent string of the client that last used the token in case it has ever been used.
last_user_agent_human_readable str: Human readable user agent string of the client that last used the token in case user agent is known.
max_age_seconds int: Time the token remains valid since creation (or since last use if extendwhenused is true). Changing this property forces recreation of the resource.
organization_id str: ID of an organization. Changing this property forces recreation of the resource.
scopes Sequence[str]: Scopes this token is restricted to if specified. Changing this property forces recreation of the resource.
timeouts OrganizationApplicationUserTokenTimeoutsArgs
token_prefix str: First characters of the actual token value. Full value is only exposed after creation. This value is used when updating or revoking tokens. Note that the value may contain /, + and = characters and must be URL encoded when used (/ => %2F, + => %2B, = => %3D).
user_id str: User ID. Changing this property forces recreation of the resource.

createTime String: Create Time.
createdManually Boolean: True for tokens explicitly created via the access_tokens API, false for tokens created via login.
currentlyActive Boolean: true if API request was made with this access token.
description String: Description. Maximum length: 1000. Changing this property forces recreation of the resource.
expiryTime String: Timestamp when the access token will expire unless extended, if ever.
extendWhenUsed Boolean: Extend token expiration time when token is used. Only applicable if maxageseconds is specified. The default value is false. Changing this property forces recreation of the resource.
fullToken String: Full Token.
ipAllowlists List<String>: List of allowed IP ranges. Changing this property forces recreation of the resource.
lastIp String: IP address the access token was last used from in case it has ever been used.
lastUsedTime String: Timestamp when the access token was last used, if ever.
lastUserAgent String: User agent string of the client that last used the token in case it has ever been used.
lastUserAgentHumanReadable String: Human readable user agent string of the client that last used the token in case user agent is known.
maxAgeSeconds Number: Time the token remains valid since creation (or since last use if extendwhenused is true). Changing this property forces recreation of the resource.
organizationId String: ID of an organization. Changing this property forces recreation of the resource.
scopes List<String>: Scopes this token is restricted to if specified. Changing this property forces recreation of the resource.
timeouts Property Map
tokenPrefix String: First characters of the actual token value. Full value is only exposed after creation. This value is used when updating or revoking tokens. Note that the value may contain /, + and = characters and must be URL encoded when used (/ => %2F, + => %2B, = => %3D).
userId String: User ID. Changing this property forces recreation of the resource.

Supporting Types

OrganizationApplicationUserTokenTimeouts, OrganizationApplicationUserTokenTimeoutsArgs

Create string: A string that can be parsed as a duration consisting of numbers and unit suffixes, such as "30s" or "2h45m". Valid time units are "s" (seconds), "m" (minutes), "h" (hours).
Delete string: A string that can be parsed as a duration consisting of numbers and unit suffixes, such as "30s" or "2h45m". Valid time units are "s" (seconds), "m" (minutes), "h" (hours). Setting a timeout for a Delete operation is only applicable if changes are saved into state before the destroy operation occurs.
Read string: A string that can be parsed as a duration consisting of numbers and unit suffixes, such as "30s" or "2h45m". Valid time units are "s" (seconds), "m" (minutes), "h" (hours). Read operations occur during any refresh or planning operation when refresh is enabled.
Update string: A string that can be parsed as a duration consisting of numbers and unit suffixes, such as "30s" or "2h45m". Valid time units are "s" (seconds), "m" (minutes), "h" (hours).

Create string: A string that can be parsed as a duration consisting of numbers and unit suffixes, such as "30s" or "2h45m". Valid time units are "s" (seconds), "m" (minutes), "h" (hours).
Delete string: A string that can be parsed as a duration consisting of numbers and unit suffixes, such as "30s" or "2h45m". Valid time units are "s" (seconds), "m" (minutes), "h" (hours). Setting a timeout for a Delete operation is only applicable if changes are saved into state before the destroy operation occurs.
Read string: A string that can be parsed as a duration consisting of numbers and unit suffixes, such as "30s" or "2h45m". Valid time units are "s" (seconds), "m" (minutes), "h" (hours). Read operations occur during any refresh or planning operation when refresh is enabled.
Update string: A string that can be parsed as a duration consisting of numbers and unit suffixes, such as "30s" or "2h45m". Valid time units are "s" (seconds), "m" (minutes), "h" (hours).

create String: A string that can be parsed as a duration consisting of numbers and unit suffixes, such as "30s" or "2h45m". Valid time units are "s" (seconds), "m" (minutes), "h" (hours).
delete String: A string that can be parsed as a duration consisting of numbers and unit suffixes, such as "30s" or "2h45m". Valid time units are "s" (seconds), "m" (minutes), "h" (hours). Setting a timeout for a Delete operation is only applicable if changes are saved into state before the destroy operation occurs.
read String: A string that can be parsed as a duration consisting of numbers and unit suffixes, such as "30s" or "2h45m". Valid time units are "s" (seconds), "m" (minutes), "h" (hours). Read operations occur during any refresh or planning operation when refresh is enabled.
update String: A string that can be parsed as a duration consisting of numbers and unit suffixes, such as "30s" or "2h45m". Valid time units are "s" (seconds), "m" (minutes), "h" (hours).

create string: A string that can be parsed as a duration consisting of numbers and unit suffixes, such as "30s" or "2h45m". Valid time units are "s" (seconds), "m" (minutes), "h" (hours).
delete string: A string that can be parsed as a duration consisting of numbers and unit suffixes, such as "30s" or "2h45m". Valid time units are "s" (seconds), "m" (minutes), "h" (hours). Setting a timeout for a Delete operation is only applicable if changes are saved into state before the destroy operation occurs.
read string: A string that can be parsed as a duration consisting of numbers and unit suffixes, such as "30s" or "2h45m". Valid time units are "s" (seconds), "m" (minutes), "h" (hours). Read operations occur during any refresh or planning operation when refresh is enabled.
update string: A string that can be parsed as a duration consisting of numbers and unit suffixes, such as "30s" or "2h45m". Valid time units are "s" (seconds), "m" (minutes), "h" (hours).

create str: A string that can be parsed as a duration consisting of numbers and unit suffixes, such as "30s" or "2h45m". Valid time units are "s" (seconds), "m" (minutes), "h" (hours).
delete str: A string that can be parsed as a duration consisting of numbers and unit suffixes, such as "30s" or "2h45m". Valid time units are "s" (seconds), "m" (minutes), "h" (hours). Setting a timeout for a Delete operation is only applicable if changes are saved into state before the destroy operation occurs.
read str: A string that can be parsed as a duration consisting of numbers and unit suffixes, such as "30s" or "2h45m". Valid time units are "s" (seconds), "m" (minutes), "h" (hours). Read operations occur during any refresh or planning operation when refresh is enabled.
update str: A string that can be parsed as a duration consisting of numbers and unit suffixes, such as "30s" or "2h45m". Valid time units are "s" (seconds), "m" (minutes), "h" (hours).

create String: A string that can be parsed as a duration consisting of numbers and unit suffixes, such as "30s" or "2h45m". Valid time units are "s" (seconds), "m" (minutes), "h" (hours).
delete String: A string that can be parsed as a duration consisting of numbers and unit suffixes, such as "30s" or "2h45m". Valid time units are "s" (seconds), "m" (minutes), "h" (hours). Setting a timeout for a Delete operation is only applicable if changes are saved into state before the destroy operation occurs.
read String: A string that can be parsed as a duration consisting of numbers and unit suffixes, such as "30s" or "2h45m". Valid time units are "s" (seconds), "m" (minutes), "h" (hours). Read operations occur during any refresh or planning operation when refresh is enabled.
update String: A string that can be parsed as a duration consisting of numbers and unit suffixes, such as "30s" or "2h45m". Valid time units are "s" (seconds), "m" (minutes), "h" (hours).

Import

$ pulumi import aiven:index/organizationApplicationUserToken:OrganizationApplicationUserToken example ORGANIZATION_ID/USER_ID/TOKEN_PREFIX

To learn more about importing existing cloud resources, see Importing resources.

Package Details

Repository: Aiven pulumi/pulumi-aiven
License: Apache-2.0
Notes: This Pulumi package is based on the aiven Terraform Provider.

Aiven v6.44.0 published on Friday, Oct 10, 2025 by Pulumi

pulumi/pulumi-aiven

aiven.OrganizationApplicationUserToken

On this page

On this page

Example Usage

Create OrganizationApplicationUserToken Resource

Constructor syntax

Parameters

Constructor example

OrganizationApplicationUserToken Resource Properties

Inputs

Outputs

Look up Existing OrganizationApplicationUserToken Resource

Supporting Types

OrganizationApplicationUserTokenTimeouts, OrganizationApplicationUserTokenTimeoutsArgs

Import

Package Details

On this page

On this page