Cloudflare v6.10.1 published on Wednesday, Oct 22, 2025 by Pulumi
cloudflare.getZeroTrustOrganization
Example Usage
import * as pulumi from "@pulumi/pulumi";
import * as cloudflare from "@pulumi/cloudflare";
const exampleZeroTrustOrganization = cloudflare.getZeroTrustOrganization({
accountId: "account_id",
zoneId: "zone_id",
});
import pulumi
import pulumi_cloudflare as cloudflare
example_zero_trust_organization = cloudflare.get_zero_trust_organization(account_id="account_id",
zone_id="zone_id")
package main
import (
"github.com/pulumi/pulumi-cloudflare/sdk/v6/go/cloudflare"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
_, err := cloudflare.LookupZeroTrustOrganization(ctx, &cloudflare.LookupZeroTrustOrganizationArgs{
AccountId: pulumi.StringRef("account_id"),
ZoneId: pulumi.StringRef("zone_id"),
}, nil)
if err != nil {
return err
}
return nil
})
}
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using Cloudflare = Pulumi.Cloudflare;
return await Deployment.RunAsync(() =>
{
var exampleZeroTrustOrganization = Cloudflare.GetZeroTrustOrganization.Invoke(new()
{
AccountId = "account_id",
ZoneId = "zone_id",
});
});
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.cloudflare.CloudflareFunctions;
import com.pulumi.cloudflare.inputs.GetZeroTrustOrganizationArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
final var exampleZeroTrustOrganization = CloudflareFunctions.getZeroTrustOrganization(GetZeroTrustOrganizationArgs.builder()
.accountId("account_id")
.zoneId("zone_id")
.build());
}
}
variables:
exampleZeroTrustOrganization:
fn::invoke:
function: cloudflare:getZeroTrustOrganization
arguments:
accountId: account_id
zoneId: zone_id
Using getZeroTrustOrganization
Two invocation forms are available. The direct form accepts plain arguments and either blocks until the result value is available, or returns a Promise-wrapped result. The output form accepts Input-wrapped arguments and returns an Output-wrapped result.
function getZeroTrustOrganization(args: GetZeroTrustOrganizationArgs, opts?: InvokeOptions): Promise<GetZeroTrustOrganizationResult>
function getZeroTrustOrganizationOutput(args: GetZeroTrustOrganizationOutputArgs, opts?: InvokeOptions): Output<GetZeroTrustOrganizationResult>def get_zero_trust_organization(account_id: Optional[str] = None,
zone_id: Optional[str] = None,
opts: Optional[InvokeOptions] = None) -> GetZeroTrustOrganizationResult
def get_zero_trust_organization_output(account_id: Optional[pulumi.Input[str]] = None,
zone_id: Optional[pulumi.Input[str]] = None,
opts: Optional[InvokeOptions] = None) -> Output[GetZeroTrustOrganizationResult]func LookupZeroTrustOrganization(ctx *Context, args *LookupZeroTrustOrganizationArgs, opts ...InvokeOption) (*LookupZeroTrustOrganizationResult, error)
func LookupZeroTrustOrganizationOutput(ctx *Context, args *LookupZeroTrustOrganizationOutputArgs, opts ...InvokeOption) LookupZeroTrustOrganizationResultOutput> Note: This function is named LookupZeroTrustOrganization in the Go SDK.
public static class GetZeroTrustOrganization
{
public static Task<GetZeroTrustOrganizationResult> InvokeAsync(GetZeroTrustOrganizationArgs args, InvokeOptions? opts = null)
public static Output<GetZeroTrustOrganizationResult> Invoke(GetZeroTrustOrganizationInvokeArgs args, InvokeOptions? opts = null)
}public static CompletableFuture<GetZeroTrustOrganizationResult> getZeroTrustOrganization(GetZeroTrustOrganizationArgs args, InvokeOptions options)
public static Output<GetZeroTrustOrganizationResult> getZeroTrustOrganization(GetZeroTrustOrganizationArgs args, InvokeOptions options)
fn::invoke:
function: cloudflare:index/getZeroTrustOrganization:getZeroTrustOrganization
arguments:
# arguments dictionaryThe following arguments are supported:
- account_
id str - The Account ID to use for this endpoint. Mutually exclusive with the Zone ID.
- zone_
id str - The Zone ID to use for this endpoint. Mutually exclusive with the Account ID.
getZeroTrustOrganization Result
The following output properties are available:
- Allow
Authenticate boolVia Warp - When set to true, users can authenticate via WARP for any application in your organization. Application settings will take precedence over this value.
- Auth
Domain string - The unique subdomain assigned to your Zero Trust organization.
- Auto
Redirect boolTo Identity - When set to
true, users skip the identity provider selection step during login. - Custom
Pages GetZero Trust Organization Custom Pages - Id string
- The provider-assigned unique ID for this managed resource.
- Is
Ui boolRead Only - Login
Design GetZero Trust Organization Login Design - Name string
- The name of your Zero Trust organization.
- Session
Duration string - The amount of time that tokens issued for applications will be valid. Must be in the format
300msor2h45m. Valid time units are: ns, us (or µs), ms, s, m, h. - Ui
Read stringOnly Toggle Reason - A description of the reason why the UI read only field is being toggled.
- User
Seat stringExpiration Inactive Time - The amount of time a user seat is inactive before it expires. When the user seat exceeds the set time of inactivity, the user is removed as an active seat and no longer counts against your Teams seat count. Minimum value for this setting is 1 month (730h). Must be in the format
300msor2h45m. Valid time units are:ns,us(orµs),ms,s,m,h. - Warp
Auth stringSession Duration - The amount of time that tokens issued for applications will be valid. Must be in the format
30mor2h45m. Valid time units are: m, h. - Account
Id string - The Account ID to use for this endpoint. Mutually exclusive with the Zone ID.
- Zone
Id string - The Zone ID to use for this endpoint. Mutually exclusive with the Account ID.
- Allow
Authenticate boolVia Warp - When set to true, users can authenticate via WARP for any application in your organization. Application settings will take precedence over this value.
- Auth
Domain string - The unique subdomain assigned to your Zero Trust organization.
- Auto
Redirect boolTo Identity - When set to
true, users skip the identity provider selection step during login. - Custom
Pages GetZero Trust Organization Custom Pages - Id string
- The provider-assigned unique ID for this managed resource.
- Is
Ui boolRead Only - Login
Design GetZero Trust Organization Login Design - Name string
- The name of your Zero Trust organization.
- Session
Duration string - The amount of time that tokens issued for applications will be valid. Must be in the format
300msor2h45m. Valid time units are: ns, us (or µs), ms, s, m, h. - Ui
Read stringOnly Toggle Reason - A description of the reason why the UI read only field is being toggled.
- User
Seat stringExpiration Inactive Time - The amount of time a user seat is inactive before it expires. When the user seat exceeds the set time of inactivity, the user is removed as an active seat and no longer counts against your Teams seat count. Minimum value for this setting is 1 month (730h). Must be in the format
300msor2h45m. Valid time units are:ns,us(orµs),ms,s,m,h. - Warp
Auth stringSession Duration - The amount of time that tokens issued for applications will be valid. Must be in the format
30mor2h45m. Valid time units are: m, h. - Account
Id string - The Account ID to use for this endpoint. Mutually exclusive with the Zone ID.
- Zone
Id string - The Zone ID to use for this endpoint. Mutually exclusive with the Account ID.
- allow
Authenticate BooleanVia Warp - When set to true, users can authenticate via WARP for any application in your organization. Application settings will take precedence over this value.
- auth
Domain String - The unique subdomain assigned to your Zero Trust organization.
- auto
Redirect BooleanTo Identity - When set to
true, users skip the identity provider selection step during login. - custom
Pages GetZero Trust Organization Custom Pages - id String
- The provider-assigned unique ID for this managed resource.
- is
Ui BooleanRead Only - login
Design GetZero Trust Organization Login Design - name String
- The name of your Zero Trust organization.
- session
Duration String - The amount of time that tokens issued for applications will be valid. Must be in the format
300msor2h45m. Valid time units are: ns, us (or µs), ms, s, m, h. - ui
Read StringOnly Toggle Reason - A description of the reason why the UI read only field is being toggled.
- user
Seat StringExpiration Inactive Time - The amount of time a user seat is inactive before it expires. When the user seat exceeds the set time of inactivity, the user is removed as an active seat and no longer counts against your Teams seat count. Minimum value for this setting is 1 month (730h). Must be in the format
300msor2h45m. Valid time units are:ns,us(orµs),ms,s,m,h. - warp
Auth StringSession Duration - The amount of time that tokens issued for applications will be valid. Must be in the format
30mor2h45m. Valid time units are: m, h. - account
Id String - The Account ID to use for this endpoint. Mutually exclusive with the Zone ID.
- zone
Id String - The Zone ID to use for this endpoint. Mutually exclusive with the Account ID.
- allow
Authenticate booleanVia Warp - When set to true, users can authenticate via WARP for any application in your organization. Application settings will take precedence over this value.
- auth
Domain string - The unique subdomain assigned to your Zero Trust organization.
- auto
Redirect booleanTo Identity - When set to
true, users skip the identity provider selection step during login. - custom
Pages GetZero Trust Organization Custom Pages - id string
- The provider-assigned unique ID for this managed resource.
- is
Ui booleanRead Only - login
Design GetZero Trust Organization Login Design - name string
- The name of your Zero Trust organization.
- session
Duration string - The amount of time that tokens issued for applications will be valid. Must be in the format
300msor2h45m. Valid time units are: ns, us (or µs), ms, s, m, h. - ui
Read stringOnly Toggle Reason - A description of the reason why the UI read only field is being toggled.
- user
Seat stringExpiration Inactive Time - The amount of time a user seat is inactive before it expires. When the user seat exceeds the set time of inactivity, the user is removed as an active seat and no longer counts against your Teams seat count. Minimum value for this setting is 1 month (730h). Must be in the format
300msor2h45m. Valid time units are:ns,us(orµs),ms,s,m,h. - warp
Auth stringSession Duration - The amount of time that tokens issued for applications will be valid. Must be in the format
30mor2h45m. Valid time units are: m, h. - account
Id string - The Account ID to use for this endpoint. Mutually exclusive with the Zone ID.
- zone
Id string - The Zone ID to use for this endpoint. Mutually exclusive with the Account ID.
- allow_
authenticate_ boolvia_ warp - When set to true, users can authenticate via WARP for any application in your organization. Application settings will take precedence over this value.
- auth_
domain str - The unique subdomain assigned to your Zero Trust organization.
- auto_
redirect_ boolto_ identity - When set to
true, users skip the identity provider selection step during login. - custom_
pages GetZero Trust Organization Custom Pages - id str
- The provider-assigned unique ID for this managed resource.
- is_
ui_ boolread_ only - login_
design GetZero Trust Organization Login Design - name str
- The name of your Zero Trust organization.
- session_
duration str - The amount of time that tokens issued for applications will be valid. Must be in the format
300msor2h45m. Valid time units are: ns, us (or µs), ms, s, m, h. - ui_
read_ stronly_ toggle_ reason - A description of the reason why the UI read only field is being toggled.
- user_
seat_ strexpiration_ inactive_ time - The amount of time a user seat is inactive before it expires. When the user seat exceeds the set time of inactivity, the user is removed as an active seat and no longer counts against your Teams seat count. Minimum value for this setting is 1 month (730h). Must be in the format
300msor2h45m. Valid time units are:ns,us(orµs),ms,s,m,h. - warp_
auth_ strsession_ duration - The amount of time that tokens issued for applications will be valid. Must be in the format
30mor2h45m. Valid time units are: m, h. - account_
id str - The Account ID to use for this endpoint. Mutually exclusive with the Zone ID.
- zone_
id str - The Zone ID to use for this endpoint. Mutually exclusive with the Account ID.
- allow
Authenticate BooleanVia Warp - When set to true, users can authenticate via WARP for any application in your organization. Application settings will take precedence over this value.
- auth
Domain String - The unique subdomain assigned to your Zero Trust organization.
- auto
Redirect BooleanTo Identity - When set to
true, users skip the identity provider selection step during login. - custom
Pages Property Map - id String
- The provider-assigned unique ID for this managed resource.
- is
Ui BooleanRead Only - login
Design Property Map - name String
- The name of your Zero Trust organization.
- session
Duration String - The amount of time that tokens issued for applications will be valid. Must be in the format
300msor2h45m. Valid time units are: ns, us (or µs), ms, s, m, h. - ui
Read StringOnly Toggle Reason - A description of the reason why the UI read only field is being toggled.
- user
Seat StringExpiration Inactive Time - The amount of time a user seat is inactive before it expires. When the user seat exceeds the set time of inactivity, the user is removed as an active seat and no longer counts against your Teams seat count. Minimum value for this setting is 1 month (730h). Must be in the format
300msor2h45m. Valid time units are:ns,us(orµs),ms,s,m,h. - warp
Auth StringSession Duration - The amount of time that tokens issued for applications will be valid. Must be in the format
30mor2h45m. Valid time units are: m, h. - account
Id String - The Account ID to use for this endpoint. Mutually exclusive with the Zone ID.
- zone
Id String - The Zone ID to use for this endpoint. Mutually exclusive with the Account ID.
Supporting Types
GetZeroTrustOrganizationCustomPages
- Forbidden string
- The uid of the custom page to use when a user is denied access after failing a non-identity rule.
- Identity
Denied string - The uid of the custom page to use when a user is denied access.
- Forbidden string
- The uid of the custom page to use when a user is denied access after failing a non-identity rule.
- Identity
Denied string - The uid of the custom page to use when a user is denied access.
- forbidden String
- The uid of the custom page to use when a user is denied access after failing a non-identity rule.
- identity
Denied String - The uid of the custom page to use when a user is denied access.
- forbidden string
- The uid of the custom page to use when a user is denied access after failing a non-identity rule.
- identity
Denied string - The uid of the custom page to use when a user is denied access.
- forbidden str
- The uid of the custom page to use when a user is denied access after failing a non-identity rule.
- identity_
denied str - The uid of the custom page to use when a user is denied access.
- forbidden String
- The uid of the custom page to use when a user is denied access after failing a non-identity rule.
- identity
Denied String - The uid of the custom page to use when a user is denied access.
GetZeroTrustOrganizationLoginDesign
- Background
Color string - The background color on your login page.
- string
- The text at the bottom of your login page.
- Header
Text string - The text at the top of your login page.
- Logo
Path string - The URL of the logo on your login page.
- Text
Color string - The text color on your login page.
- Background
Color string - The background color on your login page.
- string
- The text at the bottom of your login page.
- Header
Text string - The text at the top of your login page.
- Logo
Path string - The URL of the logo on your login page.
- Text
Color string - The text color on your login page.
- background
Color String - The background color on your login page.
- String
- The text at the bottom of your login page.
- header
Text String - The text at the top of your login page.
- logo
Path String - The URL of the logo on your login page.
- text
Color String - The text color on your login page.
- background
Color string - The background color on your login page.
- string
- The text at the bottom of your login page.
- header
Text string - The text at the top of your login page.
- logo
Path string - The URL of the logo on your login page.
- text
Color string - The text color on your login page.
- background_
color str - The background color on your login page.
- str
- The text at the bottom of your login page.
- header_
text str - The text at the top of your login page.
- logo_
path str - The URL of the logo on your login page.
- text_
color str - The text color on your login page.
- background
Color String - The background color on your login page.
- String
- The text at the bottom of your login page.
- header
Text String - The text at the top of your login page.
- logo
Path String - The URL of the logo on your login page.
- text
Color String - The text color on your login page.
Package Details
- Repository
- Cloudflare pulumi/pulumi-cloudflare
- License
- Apache-2.0
- Notes
- This Pulumi package is based on the
cloudflareTerraform Provider.
