Viewing docs for athenz 1.0.50
published on Monday, Apr 13, 2026 by athenz
published on Monday, Apr 13, 2026 by athenz
Viewing docs for athenz 1.0.50
published on Monday, Apr 13, 2026 by athenz
published on Monday, Apr 13, 2026 by athenz
Example Usage
IMPORTANT NOTE: please do NOT use json syntax but only hcl syntax
Create GroupMeta Resource
Resources are created with functions called constructors. To learn more about declaring and configuring resources, see Resources.
Constructor syntax
new GroupMeta(name: string, args: GroupMetaArgs, opts?: CustomResourceOptions);@overload
def GroupMeta(resource_name: str,
args: GroupMetaArgs,
opts: Optional[ResourceOptions] = None)
@overload
def GroupMeta(resource_name: str,
opts: Optional[ResourceOptions] = None,
domain: Optional[str] = None,
resource_state: Optional[float] = None,
review_enabled: Optional[bool] = None,
audit_ref: Optional[str] = None,
audit_enabled: Optional[bool] = None,
max_members: Optional[float] = None,
name: Optional[str] = None,
notify_details: Optional[str] = None,
notify_roles: Optional[str] = None,
delete_protection: Optional[bool] = None,
principal_domain_filter: Optional[str] = None,
group_meta_id: Optional[str] = None,
self_renew: Optional[bool] = None,
self_renew_mins: Optional[float] = None,
self_serve: Optional[bool] = None,
service_expiry_days: Optional[float] = None,
tags: Optional[Mapping[str, str]] = None,
user_authority_expiration: Optional[str] = None,
user_authority_filter: Optional[str] = None,
user_expiry_days: Optional[float] = None)func NewGroupMeta(ctx *Context, name string, args GroupMetaArgs, opts ...ResourceOption) (*GroupMeta, error)public GroupMeta(string name, GroupMetaArgs args, CustomResourceOptions? opts = null)
public GroupMeta(String name, GroupMetaArgs args)
public GroupMeta(String name, GroupMetaArgs args, CustomResourceOptions options)
type: athenz:GroupMeta
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.
resource "athenz_groupmeta" "name" {
# resource properties
}Parameters
- name string
- The unique name of the resource.
- args GroupMetaArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- resource_name str
- The unique name of the resource.
- args GroupMetaArgs
- The arguments to resource properties.
- opts ResourceOptions
- Bag of options to control resource's behavior.
- ctx Context
- Context object for the current deployment.
- name string
- The unique name of the resource.
- args GroupMetaArgs
- The arguments to resource properties.
- opts ResourceOption
- Bag of options to control resource's behavior.
- name string
- The unique name of the resource.
- args GroupMetaArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- name String
- The unique name of the resource.
- args GroupMetaArgs
- The arguments to resource properties.
- options CustomResourceOptions
- Bag of options to control resource's behavior.
Constructor example
The following reference example uses placeholder values for all input properties.
var groupMetaResource = new Athenz.GroupMeta("groupMetaResource", new()
{
Domain = "string",
ResourceState = 0,
ReviewEnabled = false,
AuditRef = "string",
AuditEnabled = false,
MaxMembers = 0,
Name = "string",
NotifyDetails = "string",
NotifyRoles = "string",
DeleteProtection = false,
PrincipalDomainFilter = "string",
GroupMetaId = "string",
SelfRenew = false,
SelfRenewMins = 0,
SelfServe = false,
ServiceExpiryDays = 0,
Tags =
{
{ "string", "string" },
},
UserAuthorityExpiration = "string",
UserAuthorityFilter = "string",
UserExpiryDays = 0,
});
example, err := athenz.NewGroupMeta(ctx, "groupMetaResource", &athenz.GroupMetaArgs{
Domain: pulumi.String("string"),
ResourceState: pulumi.Float64(0),
ReviewEnabled: pulumi.Bool(false),
AuditRef: pulumi.String("string"),
AuditEnabled: pulumi.Bool(false),
MaxMembers: pulumi.Float64(0),
Name: pulumi.String("string"),
NotifyDetails: pulumi.String("string"),
NotifyRoles: pulumi.String("string"),
DeleteProtection: pulumi.Bool(false),
PrincipalDomainFilter: pulumi.String("string"),
GroupMetaId: pulumi.String("string"),
SelfRenew: pulumi.Bool(false),
SelfRenewMins: pulumi.Float64(0),
SelfServe: pulumi.Bool(false),
ServiceExpiryDays: pulumi.Float64(0),
Tags: pulumi.StringMap{
"string": pulumi.String("string"),
},
UserAuthorityExpiration: pulumi.String("string"),
UserAuthorityFilter: pulumi.String("string"),
UserExpiryDays: pulumi.Float64(0),
})
resource "athenz_groupmeta" "groupMetaResource" {
domain = "string"
resource_state = 0
review_enabled = false
audit_ref = "string"
audit_enabled = false
max_members = 0
name = "string"
notify_details = "string"
notify_roles = "string"
delete_protection = false
principal_domain_filter = "string"
group_meta_id = "string"
self_renew = false
self_renew_mins = 0
self_serve = false
service_expiry_days = 0
tags = {
"string" = "string"
}
user_authority_expiration = "string"
user_authority_filter = "string"
user_expiry_days = 0
}
var groupMetaResource = new GroupMeta("groupMetaResource", GroupMetaArgs.builder()
.domain("string")
.resourceState(0.0)
.reviewEnabled(false)
.auditRef("string")
.auditEnabled(false)
.maxMembers(0.0)
.name("string")
.notifyDetails("string")
.notifyRoles("string")
.deleteProtection(false)
.principalDomainFilter("string")
.groupMetaId("string")
.selfRenew(false)
.selfRenewMins(0.0)
.selfServe(false)
.serviceExpiryDays(0.0)
.tags(Map.of("string", "string"))
.userAuthorityExpiration("string")
.userAuthorityFilter("string")
.userExpiryDays(0.0)
.build());
group_meta_resource = athenz.GroupMeta("groupMetaResource",
domain="string",
resource_state=float(0),
review_enabled=False,
audit_ref="string",
audit_enabled=False,
max_members=float(0),
name="string",
notify_details="string",
notify_roles="string",
delete_protection=False,
principal_domain_filter="string",
group_meta_id="string",
self_renew=False,
self_renew_mins=float(0),
self_serve=False,
service_expiry_days=float(0),
tags={
"string": "string",
},
user_authority_expiration="string",
user_authority_filter="string",
user_expiry_days=float(0))
const groupMetaResource = new athenz.GroupMeta("groupMetaResource", {
domain: "string",
resourceState: 0,
reviewEnabled: false,
auditRef: "string",
auditEnabled: false,
maxMembers: 0,
name: "string",
notifyDetails: "string",
notifyRoles: "string",
deleteProtection: false,
principalDomainFilter: "string",
groupMetaId: "string",
selfRenew: false,
selfRenewMins: 0,
selfServe: false,
serviceExpiryDays: 0,
tags: {
string: "string",
},
userAuthorityExpiration: "string",
userAuthorityFilter: "string",
userExpiryDays: 0,
});
type: athenz:GroupMeta
properties:
auditEnabled: false
auditRef: string
deleteProtection: false
domain: string
groupMetaId: string
maxMembers: 0
name: string
notifyDetails: string
notifyRoles: string
principalDomainFilter: string
resourceState: 0
reviewEnabled: false
selfRenew: false
selfRenewMins: 0
selfServe: false
serviceExpiryDays: 0
tags:
string: string
userAuthorityExpiration: string
userAuthorityFilter: string
userExpiryDays: 0
GroupMeta Resource Properties
To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.
Inputs
In Python, inputs that are objects can be passed either as argument classes or as dictionary literals.
The GroupMeta resource accepts the following input properties:
- Domain string
- name of the domain
- Audit
Enabled bool - audit enabled flag for the group
- Audit
Ref string - string containing audit specification or ticket number.
- Delete
Protection bool - If true, ask for delete confirmation in audit and review enabled groups
- Group
Meta stringId - The ID of this resource.
- Max
Members double - maximum number of members allowed in the group
- Name string
- Name of the group
- Notify
Details string - Set of instructions included in notifications for review and audit enabled groups
- Notify
Roles string - comma seperated list of roles whose members should be notified for member review/approval
- Principal
Domain stringFilter - comma seperated list of domains to enforce principal membership
- Resource
State double - Bitmask of resource state flags controlling group behavior when creating or destroying the resource. 0x01: create the group if not already present, 0x02: always delete the group when destroying the resource. Default value is -1 indicating to inherit the value defined at the provider configuration level.
- Review
Enabled bool - Flag indicates whether group updates require another review and approval
- Self
Renew bool - Flag indicates whether to allow expired members to renew their membership
- Self
Renew doubleMins - Number of minutes members can renew their membership if self review option is enabled
- Self
Serve bool - Flag indicates whether group allows self-service. Users can add themselves in the group, but it has to be approved by domain admins to be effective.
- Service
Expiry doubleDays - all services in the group will have specified max expiry days
- Dictionary<string, string>
- map of group tags
- string
- expiration enforced by a user authority configured attribute
- string
- membership filtered based on user authority configured attributes
- User
Expiry doubleDays - all user members in the group will have specified max expiry days
- Domain string
- name of the domain
- Audit
Enabled bool - audit enabled flag for the group
- Audit
Ref string - string containing audit specification or ticket number.
- Delete
Protection bool - If true, ask for delete confirmation in audit and review enabled groups
- Group
Meta stringId - The ID of this resource.
- Max
Members float64 - maximum number of members allowed in the group
- Name string
- Name of the group
- Notify
Details string - Set of instructions included in notifications for review and audit enabled groups
- Notify
Roles string - comma seperated list of roles whose members should be notified for member review/approval
- Principal
Domain stringFilter - comma seperated list of domains to enforce principal membership
- Resource
State float64 - Bitmask of resource state flags controlling group behavior when creating or destroying the resource. 0x01: create the group if not already present, 0x02: always delete the group when destroying the resource. Default value is -1 indicating to inherit the value defined at the provider configuration level.
- Review
Enabled bool - Flag indicates whether group updates require another review and approval
- Self
Renew bool - Flag indicates whether to allow expired members to renew their membership
- Self
Renew float64Mins - Number of minutes members can renew their membership if self review option is enabled
- Self
Serve bool - Flag indicates whether group allows self-service. Users can add themselves in the group, but it has to be approved by domain admins to be effective.
- Service
Expiry float64Days - all services in the group will have specified max expiry days
- map[string]string
- map of group tags
- string
- expiration enforced by a user authority configured attribute
- string
- membership filtered based on user authority configured attributes
- User
Expiry float64Days - all user members in the group will have specified max expiry days
- domain string
- name of the domain
- audit_
enabled bool - audit enabled flag for the group
- audit_
ref string - string containing audit specification or ticket number.
- delete_
protection bool - If true, ask for delete confirmation in audit and review enabled groups
- group_
meta_ stringid - The ID of this resource.
- max_
members number - maximum number of members allowed in the group
- name string
- Name of the group
- notify_
details string - Set of instructions included in notifications for review and audit enabled groups
- notify_
roles string - comma seperated list of roles whose members should be notified for member review/approval
- principal_
domain_ stringfilter - comma seperated list of domains to enforce principal membership
- resource_
state number - Bitmask of resource state flags controlling group behavior when creating or destroying the resource. 0x01: create the group if not already present, 0x02: always delete the group when destroying the resource. Default value is -1 indicating to inherit the value defined at the provider configuration level.
- review_
enabled bool - Flag indicates whether group updates require another review and approval
- self_
renew bool - Flag indicates whether to allow expired members to renew their membership
- self_
renew_ numbermins - Number of minutes members can renew their membership if self review option is enabled
- self_
serve bool - Flag indicates whether group allows self-service. Users can add themselves in the group, but it has to be approved by domain admins to be effective.
- service_
expiry_ numberdays - all services in the group will have specified max expiry days
- map(string)
- map of group tags
- string
- expiration enforced by a user authority configured attribute
- string
- membership filtered based on user authority configured attributes
- user_
expiry_ numberdays - all user members in the group will have specified max expiry days
- domain String
- name of the domain
- audit
Enabled Boolean - audit enabled flag for the group
- audit
Ref String - string containing audit specification or ticket number.
- delete
Protection Boolean - If true, ask for delete confirmation in audit and review enabled groups
- group
Meta StringId - The ID of this resource.
- max
Members Double - maximum number of members allowed in the group
- name String
- Name of the group
- notify
Details String - Set of instructions included in notifications for review and audit enabled groups
- notify
Roles String - comma seperated list of roles whose members should be notified for member review/approval
- principal
Domain StringFilter - comma seperated list of domains to enforce principal membership
- resource
State Double - Bitmask of resource state flags controlling group behavior when creating or destroying the resource. 0x01: create the group if not already present, 0x02: always delete the group when destroying the resource. Default value is -1 indicating to inherit the value defined at the provider configuration level.
- review
Enabled Boolean - Flag indicates whether group updates require another review and approval
- self
Renew Boolean - Flag indicates whether to allow expired members to renew their membership
- self
Renew DoubleMins - Number of minutes members can renew their membership if self review option is enabled
- self
Serve Boolean - Flag indicates whether group allows self-service. Users can add themselves in the group, but it has to be approved by domain admins to be effective.
- service
Expiry DoubleDays - all services in the group will have specified max expiry days
- Map<String,String>
- map of group tags
- String
- expiration enforced by a user authority configured attribute
- String
- membership filtered based on user authority configured attributes
- user
Expiry DoubleDays - all user members in the group will have specified max expiry days
- domain string
- name of the domain
- audit
Enabled boolean - audit enabled flag for the group
- audit
Ref string - string containing audit specification or ticket number.
- delete
Protection boolean - If true, ask for delete confirmation in audit and review enabled groups
- group
Meta stringId - The ID of this resource.
- max
Members number - maximum number of members allowed in the group
- name string
- Name of the group
- notify
Details string - Set of instructions included in notifications for review and audit enabled groups
- notify
Roles string - comma seperated list of roles whose members should be notified for member review/approval
- principal
Domain stringFilter - comma seperated list of domains to enforce principal membership
- resource
State number - Bitmask of resource state flags controlling group behavior when creating or destroying the resource. 0x01: create the group if not already present, 0x02: always delete the group when destroying the resource. Default value is -1 indicating to inherit the value defined at the provider configuration level.
- review
Enabled boolean - Flag indicates whether group updates require another review and approval
- self
Renew boolean - Flag indicates whether to allow expired members to renew their membership
- self
Renew numberMins - Number of minutes members can renew their membership if self review option is enabled
- self
Serve boolean - Flag indicates whether group allows self-service. Users can add themselves in the group, but it has to be approved by domain admins to be effective.
- service
Expiry numberDays - all services in the group will have specified max expiry days
- {[key: string]: string}
- map of group tags
- string
- expiration enforced by a user authority configured attribute
- string
- membership filtered based on user authority configured attributes
- user
Expiry numberDays - all user members in the group will have specified max expiry days
- domain str
- name of the domain
- audit_
enabled bool - audit enabled flag for the group
- audit_
ref str - string containing audit specification or ticket number.
- delete_
protection bool - If true, ask for delete confirmation in audit and review enabled groups
- group_
meta_ strid - The ID of this resource.
- max_
members float - maximum number of members allowed in the group
- name str
- Name of the group
- notify_
details str - Set of instructions included in notifications for review and audit enabled groups
- notify_
roles str - comma seperated list of roles whose members should be notified for member review/approval
- principal_
domain_ strfilter - comma seperated list of domains to enforce principal membership
- resource_
state float - Bitmask of resource state flags controlling group behavior when creating or destroying the resource. 0x01: create the group if not already present, 0x02: always delete the group when destroying the resource. Default value is -1 indicating to inherit the value defined at the provider configuration level.
- review_
enabled bool - Flag indicates whether group updates require another review and approval
- self_
renew bool - Flag indicates whether to allow expired members to renew their membership
- self_
renew_ floatmins - Number of minutes members can renew their membership if self review option is enabled
- self_
serve bool - Flag indicates whether group allows self-service. Users can add themselves in the group, but it has to be approved by domain admins to be effective.
- service_
expiry_ floatdays - all services in the group will have specified max expiry days
- Mapping[str, str]
- map of group tags
- str
- expiration enforced by a user authority configured attribute
- str
- membership filtered based on user authority configured attributes
- user_
expiry_ floatdays - all user members in the group will have specified max expiry days
- domain String
- name of the domain
- audit
Enabled Boolean - audit enabled flag for the group
- audit
Ref String - string containing audit specification or ticket number.
- delete
Protection Boolean - If true, ask for delete confirmation in audit and review enabled groups
- group
Meta StringId - The ID of this resource.
- max
Members Number - maximum number of members allowed in the group
- name String
- Name of the group
- notify
Details String - Set of instructions included in notifications for review and audit enabled groups
- notify
Roles String - comma seperated list of roles whose members should be notified for member review/approval
- principal
Domain StringFilter - comma seperated list of domains to enforce principal membership
- resource
State Number - Bitmask of resource state flags controlling group behavior when creating or destroying the resource. 0x01: create the group if not already present, 0x02: always delete the group when destroying the resource. Default value is -1 indicating to inherit the value defined at the provider configuration level.
- review
Enabled Boolean - Flag indicates whether group updates require another review and approval
- self
Renew Boolean - Flag indicates whether to allow expired members to renew their membership
- self
Renew NumberMins - Number of minutes members can renew their membership if self review option is enabled
- self
Serve Boolean - Flag indicates whether group allows self-service. Users can add themselves in the group, but it has to be approved by domain admins to be effective.
- service
Expiry NumberDays - all services in the group will have specified max expiry days
- Map<String>
- map of group tags
- String
- expiration enforced by a user authority configured attribute
- String
- membership filtered based on user authority configured attributes
- user
Expiry NumberDays - all user members in the group will have specified max expiry days
Outputs
All input properties are implicitly available as output properties. Additionally, the GroupMeta resource produces the following output properties:
- Id string
- The provider-assigned unique ID for this managed resource.
- Id string
- The provider-assigned unique ID for this managed resource.
- id string
- The provider-assigned unique ID for this managed resource.
- id String
- The provider-assigned unique ID for this managed resource.
- id string
- The provider-assigned unique ID for this managed resource.
- id str
- The provider-assigned unique ID for this managed resource.
- id String
- The provider-assigned unique ID for this managed resource.
Look up Existing GroupMeta Resource
Get an existing GroupMeta resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.
public static get(name: string, id: Input<ID>, state?: GroupMetaState, opts?: CustomResourceOptions): GroupMeta@staticmethod
def get(resource_name: str,
id: str,
opts: Optional[ResourceOptions] = None,
audit_enabled: Optional[bool] = None,
audit_ref: Optional[str] = None,
delete_protection: Optional[bool] = None,
domain: Optional[str] = None,
group_meta_id: Optional[str] = None,
max_members: Optional[float] = None,
name: Optional[str] = None,
notify_details: Optional[str] = None,
notify_roles: Optional[str] = None,
principal_domain_filter: Optional[str] = None,
resource_state: Optional[float] = None,
review_enabled: Optional[bool] = None,
self_renew: Optional[bool] = None,
self_renew_mins: Optional[float] = None,
self_serve: Optional[bool] = None,
service_expiry_days: Optional[float] = None,
tags: Optional[Mapping[str, str]] = None,
user_authority_expiration: Optional[str] = None,
user_authority_filter: Optional[str] = None,
user_expiry_days: Optional[float] = None) -> GroupMetafunc GetGroupMeta(ctx *Context, name string, id IDInput, state *GroupMetaState, opts ...ResourceOption) (*GroupMeta, error)public static GroupMeta Get(string name, Input<string> id, GroupMetaState? state, CustomResourceOptions? opts = null)public static GroupMeta get(String name, Output<String> id, GroupMetaState state, CustomResourceOptions options)resources: _: type: athenz:GroupMeta get: id: ${id}import {
to = athenz_groupmeta.example
id = "${id}"
}
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- resource_name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- Audit
Enabled bool - audit enabled flag for the group
- Audit
Ref string - string containing audit specification or ticket number.
- Delete
Protection bool - If true, ask for delete confirmation in audit and review enabled groups
- Domain string
- name of the domain
- Group
Meta stringId - The ID of this resource.
- Max
Members double - maximum number of members allowed in the group
- Name string
- Name of the group
- Notify
Details string - Set of instructions included in notifications for review and audit enabled groups
- Notify
Roles string - comma seperated list of roles whose members should be notified for member review/approval
- Principal
Domain stringFilter - comma seperated list of domains to enforce principal membership
- Resource
State double - Bitmask of resource state flags controlling group behavior when creating or destroying the resource. 0x01: create the group if not already present, 0x02: always delete the group when destroying the resource. Default value is -1 indicating to inherit the value defined at the provider configuration level.
- Review
Enabled bool - Flag indicates whether group updates require another review and approval
- Self
Renew bool - Flag indicates whether to allow expired members to renew their membership
- Self
Renew doubleMins - Number of minutes members can renew their membership if self review option is enabled
- Self
Serve bool - Flag indicates whether group allows self-service. Users can add themselves in the group, but it has to be approved by domain admins to be effective.
- Service
Expiry doubleDays - all services in the group will have specified max expiry days
- Dictionary<string, string>
- map of group tags
- string
- expiration enforced by a user authority configured attribute
- string
- membership filtered based on user authority configured attributes
- User
Expiry doubleDays - all user members in the group will have specified max expiry days
- Audit
Enabled bool - audit enabled flag for the group
- Audit
Ref string - string containing audit specification or ticket number.
- Delete
Protection bool - If true, ask for delete confirmation in audit and review enabled groups
- Domain string
- name of the domain
- Group
Meta stringId - The ID of this resource.
- Max
Members float64 - maximum number of members allowed in the group
- Name string
- Name of the group
- Notify
Details string - Set of instructions included in notifications for review and audit enabled groups
- Notify
Roles string - comma seperated list of roles whose members should be notified for member review/approval
- Principal
Domain stringFilter - comma seperated list of domains to enforce principal membership
- Resource
State float64 - Bitmask of resource state flags controlling group behavior when creating or destroying the resource. 0x01: create the group if not already present, 0x02: always delete the group when destroying the resource. Default value is -1 indicating to inherit the value defined at the provider configuration level.
- Review
Enabled bool - Flag indicates whether group updates require another review and approval
- Self
Renew bool - Flag indicates whether to allow expired members to renew their membership
- Self
Renew float64Mins - Number of minutes members can renew their membership if self review option is enabled
- Self
Serve bool - Flag indicates whether group allows self-service. Users can add themselves in the group, but it has to be approved by domain admins to be effective.
- Service
Expiry float64Days - all services in the group will have specified max expiry days
- map[string]string
- map of group tags
- string
- expiration enforced by a user authority configured attribute
- string
- membership filtered based on user authority configured attributes
- User
Expiry float64Days - all user members in the group will have specified max expiry days
- audit_
enabled bool - audit enabled flag for the group
- audit_
ref string - string containing audit specification or ticket number.
- delete_
protection bool - If true, ask for delete confirmation in audit and review enabled groups
- domain string
- name of the domain
- group_
meta_ stringid - The ID of this resource.
- max_
members number - maximum number of members allowed in the group
- name string
- Name of the group
- notify_
details string - Set of instructions included in notifications for review and audit enabled groups
- notify_
roles string - comma seperated list of roles whose members should be notified for member review/approval
- principal_
domain_ stringfilter - comma seperated list of domains to enforce principal membership
- resource_
state number - Bitmask of resource state flags controlling group behavior when creating or destroying the resource. 0x01: create the group if not already present, 0x02: always delete the group when destroying the resource. Default value is -1 indicating to inherit the value defined at the provider configuration level.
- review_
enabled bool - Flag indicates whether group updates require another review and approval
- self_
renew bool - Flag indicates whether to allow expired members to renew their membership
- self_
renew_ numbermins - Number of minutes members can renew their membership if self review option is enabled
- self_
serve bool - Flag indicates whether group allows self-service. Users can add themselves in the group, but it has to be approved by domain admins to be effective.
- service_
expiry_ numberdays - all services in the group will have specified max expiry days
- map(string)
- map of group tags
- string
- expiration enforced by a user authority configured attribute
- string
- membership filtered based on user authority configured attributes
- user_
expiry_ numberdays - all user members in the group will have specified max expiry days
- audit
Enabled Boolean - audit enabled flag for the group
- audit
Ref String - string containing audit specification or ticket number.
- delete
Protection Boolean - If true, ask for delete confirmation in audit and review enabled groups
- domain String
- name of the domain
- group
Meta StringId - The ID of this resource.
- max
Members Double - maximum number of members allowed in the group
- name String
- Name of the group
- notify
Details String - Set of instructions included in notifications for review and audit enabled groups
- notify
Roles String - comma seperated list of roles whose members should be notified for member review/approval
- principal
Domain StringFilter - comma seperated list of domains to enforce principal membership
- resource
State Double - Bitmask of resource state flags controlling group behavior when creating or destroying the resource. 0x01: create the group if not already present, 0x02: always delete the group when destroying the resource. Default value is -1 indicating to inherit the value defined at the provider configuration level.
- review
Enabled Boolean - Flag indicates whether group updates require another review and approval
- self
Renew Boolean - Flag indicates whether to allow expired members to renew their membership
- self
Renew DoubleMins - Number of minutes members can renew their membership if self review option is enabled
- self
Serve Boolean - Flag indicates whether group allows self-service. Users can add themselves in the group, but it has to be approved by domain admins to be effective.
- service
Expiry DoubleDays - all services in the group will have specified max expiry days
- Map<String,String>
- map of group tags
- String
- expiration enforced by a user authority configured attribute
- String
- membership filtered based on user authority configured attributes
- user
Expiry DoubleDays - all user members in the group will have specified max expiry days
- audit
Enabled boolean - audit enabled flag for the group
- audit
Ref string - string containing audit specification or ticket number.
- delete
Protection boolean - If true, ask for delete confirmation in audit and review enabled groups
- domain string
- name of the domain
- group
Meta stringId - The ID of this resource.
- max
Members number - maximum number of members allowed in the group
- name string
- Name of the group
- notify
Details string - Set of instructions included in notifications for review and audit enabled groups
- notify
Roles string - comma seperated list of roles whose members should be notified for member review/approval
- principal
Domain stringFilter - comma seperated list of domains to enforce principal membership
- resource
State number - Bitmask of resource state flags controlling group behavior when creating or destroying the resource. 0x01: create the group if not already present, 0x02: always delete the group when destroying the resource. Default value is -1 indicating to inherit the value defined at the provider configuration level.
- review
Enabled boolean - Flag indicates whether group updates require another review and approval
- self
Renew boolean - Flag indicates whether to allow expired members to renew their membership
- self
Renew numberMins - Number of minutes members can renew their membership if self review option is enabled
- self
Serve boolean - Flag indicates whether group allows self-service. Users can add themselves in the group, but it has to be approved by domain admins to be effective.
- service
Expiry numberDays - all services in the group will have specified max expiry days
- {[key: string]: string}
- map of group tags
- string
- expiration enforced by a user authority configured attribute
- string
- membership filtered based on user authority configured attributes
- user
Expiry numberDays - all user members in the group will have specified max expiry days
- audit_
enabled bool - audit enabled flag for the group
- audit_
ref str - string containing audit specification or ticket number.
- delete_
protection bool - If true, ask for delete confirmation in audit and review enabled groups
- domain str
- name of the domain
- group_
meta_ strid - The ID of this resource.
- max_
members float - maximum number of members allowed in the group
- name str
- Name of the group
- notify_
details str - Set of instructions included in notifications for review and audit enabled groups
- notify_
roles str - comma seperated list of roles whose members should be notified for member review/approval
- principal_
domain_ strfilter - comma seperated list of domains to enforce principal membership
- resource_
state float - Bitmask of resource state flags controlling group behavior when creating or destroying the resource. 0x01: create the group if not already present, 0x02: always delete the group when destroying the resource. Default value is -1 indicating to inherit the value defined at the provider configuration level.
- review_
enabled bool - Flag indicates whether group updates require another review and approval
- self_
renew bool - Flag indicates whether to allow expired members to renew their membership
- self_
renew_ floatmins - Number of minutes members can renew their membership if self review option is enabled
- self_
serve bool - Flag indicates whether group allows self-service. Users can add themselves in the group, but it has to be approved by domain admins to be effective.
- service_
expiry_ floatdays - all services in the group will have specified max expiry days
- Mapping[str, str]
- map of group tags
- str
- expiration enforced by a user authority configured attribute
- str
- membership filtered based on user authority configured attributes
- user_
expiry_ floatdays - all user members in the group will have specified max expiry days
- audit
Enabled Boolean - audit enabled flag for the group
- audit
Ref String - string containing audit specification or ticket number.
- delete
Protection Boolean - If true, ask for delete confirmation in audit and review enabled groups
- domain String
- name of the domain
- group
Meta StringId - The ID of this resource.
- max
Members Number - maximum number of members allowed in the group
- name String
- Name of the group
- notify
Details String - Set of instructions included in notifications for review and audit enabled groups
- notify
Roles String - comma seperated list of roles whose members should be notified for member review/approval
- principal
Domain StringFilter - comma seperated list of domains to enforce principal membership
- resource
State Number - Bitmask of resource state flags controlling group behavior when creating or destroying the resource. 0x01: create the group if not already present, 0x02: always delete the group when destroying the resource. Default value is -1 indicating to inherit the value defined at the provider configuration level.
- review
Enabled Boolean - Flag indicates whether group updates require another review and approval
- self
Renew Boolean - Flag indicates whether to allow expired members to renew their membership
- self
Renew NumberMins - Number of minutes members can renew their membership if self review option is enabled
- self
Serve Boolean - Flag indicates whether group allows self-service. Users can add themselves in the group, but it has to be approved by domain admins to be effective.
- service
Expiry NumberDays - all services in the group will have specified max expiry days
- Map<String>
- map of group tags
- String
- expiration enforced by a user authority configured attribute
- String
- membership filtered based on user authority configured attributes
- user
Expiry NumberDays - all user members in the group will have specified max expiry days
Package Details
- Repository
- athenz athenz/terraform-provider-athenz
- License
- Notes
- This Pulumi package is based on the
athenzTerraform Provider.
Viewing docs for athenz 1.0.50
published on Monday, Apr 13, 2026 by athenz
published on Monday, Apr 13, 2026 by athenz
