Docs Home
Cloudflare v6.1.2 published on Monday, Apr 28, 2025 by Pulumi
cloudflare.ZeroTrustAccessGroup
Explore with Pulumi AI
Example Usage
import * as pulumi from "@pulumi/pulumi";
import * as cloudflare from "@pulumi/cloudflare";
const exampleZeroTrustAccessGroup = new cloudflare.ZeroTrustAccessGroup("example_zero_trust_access_group", {
includes: [{
group: {
id: "aa0a4aab-672b-4bdb-bc33-a59f1130a11f",
},
}],
name: "Allow devs",
zoneId: "zone_id",
excludes: [{
group: {
id: "aa0a4aab-672b-4bdb-bc33-a59f1130a11f",
},
}],
isDefault: true,
requires: [{
group: {
id: "aa0a4aab-672b-4bdb-bc33-a59f1130a11f",
},
}],
});
import pulumi
import pulumi_cloudflare as cloudflare
example_zero_trust_access_group = cloudflare.ZeroTrustAccessGroup("example_zero_trust_access_group",
includes=[{
"group": {
"id": "aa0a4aab-672b-4bdb-bc33-a59f1130a11f",
},
}],
name="Allow devs",
zone_id="zone_id",
excludes=[{
"group": {
"id": "aa0a4aab-672b-4bdb-bc33-a59f1130a11f",
},
}],
is_default=True,
requires=[{
"group": {
"id": "aa0a4aab-672b-4bdb-bc33-a59f1130a11f",
},
}])
package main
import (
"github.com/pulumi/pulumi-cloudflare/sdk/v6/go/cloudflare"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
_, err := cloudflare.NewZeroTrustAccessGroup(ctx, "example_zero_trust_access_group", &cloudflare.ZeroTrustAccessGroupArgs{
Includes: cloudflare.ZeroTrustAccessGroupIncludeArray{
&cloudflare.ZeroTrustAccessGroupIncludeArgs{
Group: &cloudflare.ZeroTrustAccessGroupIncludeGroupArgs{
Id: pulumi.String("aa0a4aab-672b-4bdb-bc33-a59f1130a11f"),
},
},
},
Name: pulumi.String("Allow devs"),
ZoneId: pulumi.String("zone_id"),
Excludes: cloudflare.ZeroTrustAccessGroupExcludeArray{
&cloudflare.ZeroTrustAccessGroupExcludeArgs{
Group: &cloudflare.ZeroTrustAccessGroupExcludeGroupArgs{
Id: pulumi.String("aa0a4aab-672b-4bdb-bc33-a59f1130a11f"),
},
},
},
IsDefault: pulumi.Bool(true),
Requires: cloudflare.ZeroTrustAccessGroupRequireArray{
&cloudflare.ZeroTrustAccessGroupRequireArgs{
Group: &cloudflare.ZeroTrustAccessGroupRequireGroupArgs{
Id: pulumi.String("aa0a4aab-672b-4bdb-bc33-a59f1130a11f"),
},
},
},
})
if err != nil {
return err
}
return nil
})
}
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using Cloudflare = Pulumi.Cloudflare;
return await Deployment.RunAsync(() =>
{
var exampleZeroTrustAccessGroup = new Cloudflare.ZeroTrustAccessGroup("example_zero_trust_access_group", new()
{
Includes = new[]
{
new Cloudflare.Inputs.ZeroTrustAccessGroupIncludeArgs
{
Group = new Cloudflare.Inputs.ZeroTrustAccessGroupIncludeGroupArgs
{
Id = "aa0a4aab-672b-4bdb-bc33-a59f1130a11f",
},
},
},
Name = "Allow devs",
ZoneId = "zone_id",
Excludes = new[]
{
new Cloudflare.Inputs.ZeroTrustAccessGroupExcludeArgs
{
Group = new Cloudflare.Inputs.ZeroTrustAccessGroupExcludeGroupArgs
{
Id = "aa0a4aab-672b-4bdb-bc33-a59f1130a11f",
},
},
},
IsDefault = true,
Requires = new[]
{
new Cloudflare.Inputs.ZeroTrustAccessGroupRequireArgs
{
Group = new Cloudflare.Inputs.ZeroTrustAccessGroupRequireGroupArgs
{
Id = "aa0a4aab-672b-4bdb-bc33-a59f1130a11f",
},
},
},
});
});
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.cloudflare.ZeroTrustAccessGroup;
import com.pulumi.cloudflare.ZeroTrustAccessGroupArgs;
import com.pulumi.cloudflare.inputs.ZeroTrustAccessGroupIncludeArgs;
import com.pulumi.cloudflare.inputs.ZeroTrustAccessGroupIncludeGroupArgs;
import com.pulumi.cloudflare.inputs.ZeroTrustAccessGroupExcludeArgs;
import com.pulumi.cloudflare.inputs.ZeroTrustAccessGroupExcludeGroupArgs;
import com.pulumi.cloudflare.inputs.ZeroTrustAccessGroupRequireArgs;
import com.pulumi.cloudflare.inputs.ZeroTrustAccessGroupRequireGroupArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
var exampleZeroTrustAccessGroup = new ZeroTrustAccessGroup("exampleZeroTrustAccessGroup", ZeroTrustAccessGroupArgs.builder()
.includes(ZeroTrustAccessGroupIncludeArgs.builder()
.group(ZeroTrustAccessGroupIncludeGroupArgs.builder()
.id("aa0a4aab-672b-4bdb-bc33-a59f1130a11f")
.build())
.build())
.name("Allow devs")
.zoneId("zone_id")
.excludes(ZeroTrustAccessGroupExcludeArgs.builder()
.group(ZeroTrustAccessGroupExcludeGroupArgs.builder()
.id("aa0a4aab-672b-4bdb-bc33-a59f1130a11f")
.build())
.build())
.isDefault(true)
.requires(ZeroTrustAccessGroupRequireArgs.builder()
.group(ZeroTrustAccessGroupRequireGroupArgs.builder()
.id("aa0a4aab-672b-4bdb-bc33-a59f1130a11f")
.build())
.build())
.build());
}
}
resources:
exampleZeroTrustAccessGroup:
type: cloudflare:ZeroTrustAccessGroup
name: example_zero_trust_access_group
properties:
includes:
- group:
id: aa0a4aab-672b-4bdb-bc33-a59f1130a11f
name: Allow devs
zoneId: zone_id
excludes:
- group:
id: aa0a4aab-672b-4bdb-bc33-a59f1130a11f
isDefault: true
requires:
- group:
id: aa0a4aab-672b-4bdb-bc33-a59f1130a11f
Create ZeroTrustAccessGroup Resource
Resources are created with functions called constructors. To learn more about declaring and configuring resources, see Resources.
Constructor syntax
new ZeroTrustAccessGroup(name: string, args: ZeroTrustAccessGroupArgs, opts?: CustomResourceOptions);@overload
def ZeroTrustAccessGroup(resource_name: str,
args: ZeroTrustAccessGroupArgs,
opts: Optional[ResourceOptions] = None)
@overload
def ZeroTrustAccessGroup(resource_name: str,
opts: Optional[ResourceOptions] = None,
includes: Optional[Sequence[ZeroTrustAccessGroupIncludeArgs]] = None,
name: Optional[str] = None,
account_id: Optional[str] = None,
excludes: Optional[Sequence[ZeroTrustAccessGroupExcludeArgs]] = None,
is_default: Optional[bool] = None,
requires: Optional[Sequence[ZeroTrustAccessGroupRequireArgs]] = None,
zone_id: Optional[str] = None)func NewZeroTrustAccessGroup(ctx *Context, name string, args ZeroTrustAccessGroupArgs, opts ...ResourceOption) (*ZeroTrustAccessGroup, error)public ZeroTrustAccessGroup(string name, ZeroTrustAccessGroupArgs args, CustomResourceOptions? opts = null)
public ZeroTrustAccessGroup(String name, ZeroTrustAccessGroupArgs args)
public ZeroTrustAccessGroup(String name, ZeroTrustAccessGroupArgs args, CustomResourceOptions options)
type: cloudflare:ZeroTrustAccessGroup
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.
Parameters
- name string
- The unique name of the resource.
- args ZeroTrustAccessGroupArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- resource_name str
- The unique name of the resource.
- args ZeroTrustAccessGroupArgs
- The arguments to resource properties.
- opts ResourceOptions
- Bag of options to control resource's behavior.
- ctx Context
- Context object for the current deployment.
- name string
- The unique name of the resource.
- args ZeroTrustAccessGroupArgs
- The arguments to resource properties.
- opts ResourceOption
- Bag of options to control resource's behavior.
- name string
- The unique name of the resource.
- args ZeroTrustAccessGroupArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- name String
- The unique name of the resource.
- args ZeroTrustAccessGroupArgs
- The arguments to resource properties.
- options CustomResourceOptions
- Bag of options to control resource's behavior.
Constructor example
The following reference example uses placeholder values for all input properties.
var zeroTrustAccessGroupResource = new Cloudflare.ZeroTrustAccessGroup("zeroTrustAccessGroupResource", new()
{
Includes = new[]
{
new Cloudflare.Inputs.ZeroTrustAccessGroupIncludeArgs
{
AnyValidServiceToken = null,
AuthContext = new Cloudflare.Inputs.ZeroTrustAccessGroupIncludeAuthContextArgs
{
AcId = "string",
Id = "string",
IdentityProviderId = "string",
},
AuthMethod = new Cloudflare.Inputs.ZeroTrustAccessGroupIncludeAuthMethodArgs
{
AuthMethod = "string",
},
AzureAd = new Cloudflare.Inputs.ZeroTrustAccessGroupIncludeAzureAdArgs
{
Id = "string",
IdentityProviderId = "string",
},
Certificate = null,
CommonName = new Cloudflare.Inputs.ZeroTrustAccessGroupIncludeCommonNameArgs
{
CommonName = "string",
},
DevicePosture = new Cloudflare.Inputs.ZeroTrustAccessGroupIncludeDevicePostureArgs
{
IntegrationUid = "string",
},
Email = new Cloudflare.Inputs.ZeroTrustAccessGroupIncludeEmailArgs
{
Email = "string",
},
EmailDomain = new Cloudflare.Inputs.ZeroTrustAccessGroupIncludeEmailDomainArgs
{
Domain = "string",
},
EmailList = new Cloudflare.Inputs.ZeroTrustAccessGroupIncludeEmailListArgs
{
Id = "string",
},
Everyone = null,
ExternalEvaluation = new Cloudflare.Inputs.ZeroTrustAccessGroupIncludeExternalEvaluationArgs
{
EvaluateUrl = "string",
KeysUrl = "string",
},
Geo = new Cloudflare.Inputs.ZeroTrustAccessGroupIncludeGeoArgs
{
CountryCode = "string",
},
GithubOrganization = new Cloudflare.Inputs.ZeroTrustAccessGroupIncludeGithubOrganizationArgs
{
IdentityProviderId = "string",
Name = "string",
Team = "string",
},
Group = new Cloudflare.Inputs.ZeroTrustAccessGroupIncludeGroupArgs
{
Id = "string",
},
Gsuite = new Cloudflare.Inputs.ZeroTrustAccessGroupIncludeGsuiteArgs
{
Email = "string",
IdentityProviderId = "string",
},
Ip = new Cloudflare.Inputs.ZeroTrustAccessGroupIncludeIpArgs
{
Ip = "string",
},
IpList = new Cloudflare.Inputs.ZeroTrustAccessGroupIncludeIpListArgs
{
Id = "string",
},
LoginMethod = new Cloudflare.Inputs.ZeroTrustAccessGroupIncludeLoginMethodArgs
{
Id = "string",
},
Okta = new Cloudflare.Inputs.ZeroTrustAccessGroupIncludeOktaArgs
{
IdentityProviderId = "string",
Name = "string",
},
Saml = new Cloudflare.Inputs.ZeroTrustAccessGroupIncludeSamlArgs
{
AttributeName = "string",
AttributeValue = "string",
IdentityProviderId = "string",
},
ServiceToken = new Cloudflare.Inputs.ZeroTrustAccessGroupIncludeServiceTokenArgs
{
TokenId = "string",
},
},
},
Name = "string",
AccountId = "string",
Excludes = new[]
{
new Cloudflare.Inputs.ZeroTrustAccessGroupExcludeArgs
{
AnyValidServiceToken = null,
AuthContext = new Cloudflare.Inputs.ZeroTrustAccessGroupExcludeAuthContextArgs
{
AcId = "string",
Id = "string",
IdentityProviderId = "string",
},
AuthMethod = new Cloudflare.Inputs.ZeroTrustAccessGroupExcludeAuthMethodArgs
{
AuthMethod = "string",
},
AzureAd = new Cloudflare.Inputs.ZeroTrustAccessGroupExcludeAzureAdArgs
{
Id = "string",
IdentityProviderId = "string",
},
Certificate = null,
CommonName = new Cloudflare.Inputs.ZeroTrustAccessGroupExcludeCommonNameArgs
{
CommonName = "string",
},
DevicePosture = new Cloudflare.Inputs.ZeroTrustAccessGroupExcludeDevicePostureArgs
{
IntegrationUid = "string",
},
Email = new Cloudflare.Inputs.ZeroTrustAccessGroupExcludeEmailArgs
{
Email = "string",
},
EmailDomain = new Cloudflare.Inputs.ZeroTrustAccessGroupExcludeEmailDomainArgs
{
Domain = "string",
},
EmailList = new Cloudflare.Inputs.ZeroTrustAccessGroupExcludeEmailListArgs
{
Id = "string",
},
Everyone = null,
ExternalEvaluation = new Cloudflare.Inputs.ZeroTrustAccessGroupExcludeExternalEvaluationArgs
{
EvaluateUrl = "string",
KeysUrl = "string",
},
Geo = new Cloudflare.Inputs.ZeroTrustAccessGroupExcludeGeoArgs
{
CountryCode = "string",
},
GithubOrganization = new Cloudflare.Inputs.ZeroTrustAccessGroupExcludeGithubOrganizationArgs
{
IdentityProviderId = "string",
Name = "string",
Team = "string",
},
Group = new Cloudflare.Inputs.ZeroTrustAccessGroupExcludeGroupArgs
{
Id = "string",
},
Gsuite = new Cloudflare.Inputs.ZeroTrustAccessGroupExcludeGsuiteArgs
{
Email = "string",
IdentityProviderId = "string",
},
Ip = new Cloudflare.Inputs.ZeroTrustAccessGroupExcludeIpArgs
{
Ip = "string",
},
IpList = new Cloudflare.Inputs.ZeroTrustAccessGroupExcludeIpListArgs
{
Id = "string",
},
LoginMethod = new Cloudflare.Inputs.ZeroTrustAccessGroupExcludeLoginMethodArgs
{
Id = "string",
},
Okta = new Cloudflare.Inputs.ZeroTrustAccessGroupExcludeOktaArgs
{
IdentityProviderId = "string",
Name = "string",
},
Saml = new Cloudflare.Inputs.ZeroTrustAccessGroupExcludeSamlArgs
{
AttributeName = "string",
AttributeValue = "string",
IdentityProviderId = "string",
},
ServiceToken = new Cloudflare.Inputs.ZeroTrustAccessGroupExcludeServiceTokenArgs
{
TokenId = "string",
},
},
},
IsDefault = false,
Requires = new[]
{
new Cloudflare.Inputs.ZeroTrustAccessGroupRequireArgs
{
AnyValidServiceToken = null,
AuthContext = new Cloudflare.Inputs.ZeroTrustAccessGroupRequireAuthContextArgs
{
AcId = "string",
Id = "string",
IdentityProviderId = "string",
},
AuthMethod = new Cloudflare.Inputs.ZeroTrustAccessGroupRequireAuthMethodArgs
{
AuthMethod = "string",
},
AzureAd = new Cloudflare.Inputs.ZeroTrustAccessGroupRequireAzureAdArgs
{
Id = "string",
IdentityProviderId = "string",
},
Certificate = null,
CommonName = new Cloudflare.Inputs.ZeroTrustAccessGroupRequireCommonNameArgs
{
CommonName = "string",
},
DevicePosture = new Cloudflare.Inputs.ZeroTrustAccessGroupRequireDevicePostureArgs
{
IntegrationUid = "string",
},
Email = new Cloudflare.Inputs.ZeroTrustAccessGroupRequireEmailArgs
{
Email = "string",
},
EmailDomain = new Cloudflare.Inputs.ZeroTrustAccessGroupRequireEmailDomainArgs
{
Domain = "string",
},
EmailList = new Cloudflare.Inputs.ZeroTrustAccessGroupRequireEmailListArgs
{
Id = "string",
},
Everyone = null,
ExternalEvaluation = new Cloudflare.Inputs.ZeroTrustAccessGroupRequireExternalEvaluationArgs
{
EvaluateUrl = "string",
KeysUrl = "string",
},
Geo = new Cloudflare.Inputs.ZeroTrustAccessGroupRequireGeoArgs
{
CountryCode = "string",
},
GithubOrganization = new Cloudflare.Inputs.ZeroTrustAccessGroupRequireGithubOrganizationArgs
{
IdentityProviderId = "string",
Name = "string",
Team = "string",
},
Group = new Cloudflare.Inputs.ZeroTrustAccessGroupRequireGroupArgs
{
Id = "string",
},
Gsuite = new Cloudflare.Inputs.ZeroTrustAccessGroupRequireGsuiteArgs
{
Email = "string",
IdentityProviderId = "string",
},
Ip = new Cloudflare.Inputs.ZeroTrustAccessGroupRequireIpArgs
{
Ip = "string",
},
IpList = new Cloudflare.Inputs.ZeroTrustAccessGroupRequireIpListArgs
{
Id = "string",
},
LoginMethod = new Cloudflare.Inputs.ZeroTrustAccessGroupRequireLoginMethodArgs
{
Id = "string",
},
Okta = new Cloudflare.Inputs.ZeroTrustAccessGroupRequireOktaArgs
{
IdentityProviderId = "string",
Name = "string",
},
Saml = new Cloudflare.Inputs.ZeroTrustAccessGroupRequireSamlArgs
{
AttributeName = "string",
AttributeValue = "string",
IdentityProviderId = "string",
},
ServiceToken = new Cloudflare.Inputs.ZeroTrustAccessGroupRequireServiceTokenArgs
{
TokenId = "string",
},
},
},
ZoneId = "string",
});
example, err := cloudflare.NewZeroTrustAccessGroup(ctx, "zeroTrustAccessGroupResource", &cloudflare.ZeroTrustAccessGroupArgs{
Includes: cloudflare.ZeroTrustAccessGroupIncludeArray{
&cloudflare.ZeroTrustAccessGroupIncludeArgs{
AnyValidServiceToken: &cloudflare.ZeroTrustAccessGroupIncludeAnyValidServiceTokenArgs{},
AuthContext: &cloudflare.ZeroTrustAccessGroupIncludeAuthContextArgs{
AcId: pulumi.String("string"),
Id: pulumi.String("string"),
IdentityProviderId: pulumi.String("string"),
},
AuthMethod: &cloudflare.ZeroTrustAccessGroupIncludeAuthMethodArgs{
AuthMethod: pulumi.String("string"),
},
AzureAd: &cloudflare.ZeroTrustAccessGroupIncludeAzureAdArgs{
Id: pulumi.String("string"),
IdentityProviderId: pulumi.String("string"),
},
Certificate: &cloudflare.ZeroTrustAccessGroupIncludeCertificateArgs{},
CommonName: &cloudflare.ZeroTrustAccessGroupIncludeCommonNameArgs{
CommonName: pulumi.String("string"),
},
DevicePosture: &cloudflare.ZeroTrustAccessGroupIncludeDevicePostureArgs{
IntegrationUid: pulumi.String("string"),
},
Email: &cloudflare.ZeroTrustAccessGroupIncludeEmailArgs{
Email: pulumi.String("string"),
},
EmailDomain: &cloudflare.ZeroTrustAccessGroupIncludeEmailDomainArgs{
Domain: pulumi.String("string"),
},
EmailList: &cloudflare.ZeroTrustAccessGroupIncludeEmailListArgs{
Id: pulumi.String("string"),
},
Everyone: &cloudflare.ZeroTrustAccessGroupIncludeEveryoneArgs{},
ExternalEvaluation: &cloudflare.ZeroTrustAccessGroupIncludeExternalEvaluationArgs{
EvaluateUrl: pulumi.String("string"),
KeysUrl: pulumi.String("string"),
},
Geo: &cloudflare.ZeroTrustAccessGroupIncludeGeoArgs{
CountryCode: pulumi.String("string"),
},
GithubOrganization: &cloudflare.ZeroTrustAccessGroupIncludeGithubOrganizationArgs{
IdentityProviderId: pulumi.String("string"),
Name: pulumi.String("string"),
Team: pulumi.String("string"),
},
Group: &cloudflare.ZeroTrustAccessGroupIncludeGroupArgs{
Id: pulumi.String("string"),
},
Gsuite: &cloudflare.ZeroTrustAccessGroupIncludeGsuiteArgs{
Email: pulumi.String("string"),
IdentityProviderId: pulumi.String("string"),
},
Ip: &cloudflare.ZeroTrustAccessGroupIncludeIpArgs{
Ip: pulumi.String("string"),
},
IpList: &cloudflare.ZeroTrustAccessGroupIncludeIpListArgs{
Id: pulumi.String("string"),
},
LoginMethod: &cloudflare.ZeroTrustAccessGroupIncludeLoginMethodArgs{
Id: pulumi.String("string"),
},
Okta: &cloudflare.ZeroTrustAccessGroupIncludeOktaArgs{
IdentityProviderId: pulumi.String("string"),
Name: pulumi.String("string"),
},
Saml: &cloudflare.ZeroTrustAccessGroupIncludeSamlArgs{
AttributeName: pulumi.String("string"),
AttributeValue: pulumi.String("string"),
IdentityProviderId: pulumi.String("string"),
},
ServiceToken: &cloudflare.ZeroTrustAccessGroupIncludeServiceTokenArgs{
TokenId: pulumi.String("string"),
},
},
},
Name: pulumi.String("string"),
AccountId: pulumi.String("string"),
Excludes: cloudflare.ZeroTrustAccessGroupExcludeArray{
&cloudflare.ZeroTrustAccessGroupExcludeArgs{
AnyValidServiceToken: &cloudflare.ZeroTrustAccessGroupExcludeAnyValidServiceTokenArgs{},
AuthContext: &cloudflare.ZeroTrustAccessGroupExcludeAuthContextArgs{
AcId: pulumi.String("string"),
Id: pulumi.String("string"),
IdentityProviderId: pulumi.String("string"),
},
AuthMethod: &cloudflare.ZeroTrustAccessGroupExcludeAuthMethodArgs{
AuthMethod: pulumi.String("string"),
},
AzureAd: &cloudflare.ZeroTrustAccessGroupExcludeAzureAdArgs{
Id: pulumi.String("string"),
IdentityProviderId: pulumi.String("string"),
},
Certificate: &cloudflare.ZeroTrustAccessGroupExcludeCertificateArgs{},
CommonName: &cloudflare.ZeroTrustAccessGroupExcludeCommonNameArgs{
CommonName: pulumi.String("string"),
},
DevicePosture: &cloudflare.ZeroTrustAccessGroupExcludeDevicePostureArgs{
IntegrationUid: pulumi.String("string"),
},
Email: &cloudflare.ZeroTrustAccessGroupExcludeEmailArgs{
Email: pulumi.String("string"),
},
EmailDomain: &cloudflare.ZeroTrustAccessGroupExcludeEmailDomainArgs{
Domain: pulumi.String("string"),
},
EmailList: &cloudflare.ZeroTrustAccessGroupExcludeEmailListArgs{
Id: pulumi.String("string"),
},
Everyone: &cloudflare.ZeroTrustAccessGroupExcludeEveryoneArgs{},
ExternalEvaluation: &cloudflare.ZeroTrustAccessGroupExcludeExternalEvaluationArgs{
EvaluateUrl: pulumi.String("string"),
KeysUrl: pulumi.String("string"),
},
Geo: &cloudflare.ZeroTrustAccessGroupExcludeGeoArgs{
CountryCode: pulumi.String("string"),
},
GithubOrganization: &cloudflare.ZeroTrustAccessGroupExcludeGithubOrganizationArgs{
IdentityProviderId: pulumi.String("string"),
Name: pulumi.String("string"),
Team: pulumi.String("string"),
},
Group: &cloudflare.ZeroTrustAccessGroupExcludeGroupArgs{
Id: pulumi.String("string"),
},
Gsuite: &cloudflare.ZeroTrustAccessGroupExcludeGsuiteArgs{
Email: pulumi.String("string"),
IdentityProviderId: pulumi.String("string"),
},
Ip: &cloudflare.ZeroTrustAccessGroupExcludeIpArgs{
Ip: pulumi.String("string"),
},
IpList: &cloudflare.ZeroTrustAccessGroupExcludeIpListArgs{
Id: pulumi.String("string"),
},
LoginMethod: &cloudflare.ZeroTrustAccessGroupExcludeLoginMethodArgs{
Id: pulumi.String("string"),
},
Okta: &cloudflare.ZeroTrustAccessGroupExcludeOktaArgs{
IdentityProviderId: pulumi.String("string"),
Name: pulumi.String("string"),
},
Saml: &cloudflare.ZeroTrustAccessGroupExcludeSamlArgs{
AttributeName: pulumi.String("string"),
AttributeValue: pulumi.String("string"),
IdentityProviderId: pulumi.String("string"),
},
ServiceToken: &cloudflare.ZeroTrustAccessGroupExcludeServiceTokenArgs{
TokenId: pulumi.String("string"),
},
},
},
IsDefault: pulumi.Bool(false),
Requires: cloudflare.ZeroTrustAccessGroupRequireArray{
&cloudflare.ZeroTrustAccessGroupRequireArgs{
AnyValidServiceToken: &cloudflare.ZeroTrustAccessGroupRequireAnyValidServiceTokenArgs{},
AuthContext: &cloudflare.ZeroTrustAccessGroupRequireAuthContextArgs{
AcId: pulumi.String("string"),
Id: pulumi.String("string"),
IdentityProviderId: pulumi.String("string"),
},
AuthMethod: &cloudflare.ZeroTrustAccessGroupRequireAuthMethodArgs{
AuthMethod: pulumi.String("string"),
},
AzureAd: &cloudflare.ZeroTrustAccessGroupRequireAzureAdArgs{
Id: pulumi.String("string"),
IdentityProviderId: pulumi.String("string"),
},
Certificate: &cloudflare.ZeroTrustAccessGroupRequireCertificateArgs{},
CommonName: &cloudflare.ZeroTrustAccessGroupRequireCommonNameArgs{
CommonName: pulumi.String("string"),
},
DevicePosture: &cloudflare.ZeroTrustAccessGroupRequireDevicePostureArgs{
IntegrationUid: pulumi.String("string"),
},
Email: &cloudflare.ZeroTrustAccessGroupRequireEmailArgs{
Email: pulumi.String("string"),
},
EmailDomain: &cloudflare.ZeroTrustAccessGroupRequireEmailDomainArgs{
Domain: pulumi.String("string"),
},
EmailList: &cloudflare.ZeroTrustAccessGroupRequireEmailListArgs{
Id: pulumi.String("string"),
},
Everyone: &cloudflare.ZeroTrustAccessGroupRequireEveryoneArgs{},
ExternalEvaluation: &cloudflare.ZeroTrustAccessGroupRequireExternalEvaluationArgs{
EvaluateUrl: pulumi.String("string"),
KeysUrl: pulumi.String("string"),
},
Geo: &cloudflare.ZeroTrustAccessGroupRequireGeoArgs{
CountryCode: pulumi.String("string"),
},
GithubOrganization: &cloudflare.ZeroTrustAccessGroupRequireGithubOrganizationArgs{
IdentityProviderId: pulumi.String("string"),
Name: pulumi.String("string"),
Team: pulumi.String("string"),
},
Group: &cloudflare.ZeroTrustAccessGroupRequireGroupArgs{
Id: pulumi.String("string"),
},
Gsuite: &cloudflare.ZeroTrustAccessGroupRequireGsuiteArgs{
Email: pulumi.String("string"),
IdentityProviderId: pulumi.String("string"),
},
Ip: &cloudflare.ZeroTrustAccessGroupRequireIpArgs{
Ip: pulumi.String("string"),
},
IpList: &cloudflare.ZeroTrustAccessGroupRequireIpListArgs{
Id: pulumi.String("string"),
},
LoginMethod: &cloudflare.ZeroTrustAccessGroupRequireLoginMethodArgs{
Id: pulumi.String("string"),
},
Okta: &cloudflare.ZeroTrustAccessGroupRequireOktaArgs{
IdentityProviderId: pulumi.String("string"),
Name: pulumi.String("string"),
},
Saml: &cloudflare.ZeroTrustAccessGroupRequireSamlArgs{
AttributeName: pulumi.String("string"),
AttributeValue: pulumi.String("string"),
IdentityProviderId: pulumi.String("string"),
},
ServiceToken: &cloudflare.ZeroTrustAccessGroupRequireServiceTokenArgs{
TokenId: pulumi.String("string"),
},
},
},
ZoneId: pulumi.String("string"),
})
var zeroTrustAccessGroupResource = new ZeroTrustAccessGroup("zeroTrustAccessGroupResource", ZeroTrustAccessGroupArgs.builder()
.includes(ZeroTrustAccessGroupIncludeArgs.builder()
.anyValidServiceToken()
.authContext(ZeroTrustAccessGroupIncludeAuthContextArgs.builder()
.acId("string")
.id("string")
.identityProviderId("string")
.build())
.authMethod(ZeroTrustAccessGroupIncludeAuthMethodArgs.builder()
.authMethod("string")
.build())
.azureAd(ZeroTrustAccessGroupIncludeAzureAdArgs.builder()
.id("string")
.identityProviderId("string")
.build())
.certificate()
.commonName(ZeroTrustAccessGroupIncludeCommonNameArgs.builder()
.commonName("string")
.build())
.devicePosture(ZeroTrustAccessGroupIncludeDevicePostureArgs.builder()
.integrationUid("string")
.build())
.email(ZeroTrustAccessGroupIncludeEmailArgs.builder()
.email("string")
.build())
.emailDomain(ZeroTrustAccessGroupIncludeEmailDomainArgs.builder()
.domain("string")
.build())
.emailList(ZeroTrustAccessGroupIncludeEmailListArgs.builder()
.id("string")
.build())
.everyone()
.externalEvaluation(ZeroTrustAccessGroupIncludeExternalEvaluationArgs.builder()
.evaluateUrl("string")
.keysUrl("string")
.build())
.geo(ZeroTrustAccessGroupIncludeGeoArgs.builder()
.countryCode("string")
.build())
.githubOrganization(ZeroTrustAccessGroupIncludeGithubOrganizationArgs.builder()
.identityProviderId("string")
.name("string")
.team("string")
.build())
.group(ZeroTrustAccessGroupIncludeGroupArgs.builder()
.id("string")
.build())
.gsuite(ZeroTrustAccessGroupIncludeGsuiteArgs.builder()
.email("string")
.identityProviderId("string")
.build())
.ip(ZeroTrustAccessGroupIncludeIpArgs.builder()
.ip("string")
.build())
.ipList(ZeroTrustAccessGroupIncludeIpListArgs.builder()
.id("string")
.build())
.loginMethod(ZeroTrustAccessGroupIncludeLoginMethodArgs.builder()
.id("string")
.build())
.okta(ZeroTrustAccessGroupIncludeOktaArgs.builder()
.identityProviderId("string")
.name("string")
.build())
.saml(ZeroTrustAccessGroupIncludeSamlArgs.builder()
.attributeName("string")
.attributeValue("string")
.identityProviderId("string")
.build())
.serviceToken(ZeroTrustAccessGroupIncludeServiceTokenArgs.builder()
.tokenId("string")
.build())
.build())
.name("string")
.accountId("string")
.excludes(ZeroTrustAccessGroupExcludeArgs.builder()
.anyValidServiceToken()
.authContext(ZeroTrustAccessGroupExcludeAuthContextArgs.builder()
.acId("string")
.id("string")
.identityProviderId("string")
.build())
.authMethod(ZeroTrustAccessGroupExcludeAuthMethodArgs.builder()
.authMethod("string")
.build())
.azureAd(ZeroTrustAccessGroupExcludeAzureAdArgs.builder()
.id("string")
.identityProviderId("string")
.build())
.certificate()
.commonName(ZeroTrustAccessGroupExcludeCommonNameArgs.builder()
.commonName("string")
.build())
.devicePosture(ZeroTrustAccessGroupExcludeDevicePostureArgs.builder()
.integrationUid("string")
.build())
.email(ZeroTrustAccessGroupExcludeEmailArgs.builder()
.email("string")
.build())
.emailDomain(ZeroTrustAccessGroupExcludeEmailDomainArgs.builder()
.domain("string")
.build())
.emailList(ZeroTrustAccessGroupExcludeEmailListArgs.builder()
.id("string")
.build())
.everyone()
.externalEvaluation(ZeroTrustAccessGroupExcludeExternalEvaluationArgs.builder()
.evaluateUrl("string")
.keysUrl("string")
.build())
.geo(ZeroTrustAccessGroupExcludeGeoArgs.builder()
.countryCode("string")
.build())
.githubOrganization(ZeroTrustAccessGroupExcludeGithubOrganizationArgs.builder()
.identityProviderId("string")
.name("string")
.team("string")
.build())
.group(ZeroTrustAccessGroupExcludeGroupArgs.builder()
.id("string")
.build())
.gsuite(ZeroTrustAccessGroupExcludeGsuiteArgs.builder()
.email("string")
.identityProviderId("string")
.build())
.ip(ZeroTrustAccessGroupExcludeIpArgs.builder()
.ip("string")
.build())
.ipList(ZeroTrustAccessGroupExcludeIpListArgs.builder()
.id("string")
.build())
.loginMethod(ZeroTrustAccessGroupExcludeLoginMethodArgs.builder()
.id("string")
.build())
.okta(ZeroTrustAccessGroupExcludeOktaArgs.builder()
.identityProviderId("string")
.name("string")
.build())
.saml(ZeroTrustAccessGroupExcludeSamlArgs.builder()
.attributeName("string")
.attributeValue("string")
.identityProviderId("string")
.build())
.serviceToken(ZeroTrustAccessGroupExcludeServiceTokenArgs.builder()
.tokenId("string")
.build())
.build())
.isDefault(false)
.requires(ZeroTrustAccessGroupRequireArgs.builder()
.anyValidServiceToken()
.authContext(ZeroTrustAccessGroupRequireAuthContextArgs.builder()
.acId("string")
.id("string")
.identityProviderId("string")
.build())
.authMethod(ZeroTrustAccessGroupRequireAuthMethodArgs.builder()
.authMethod("string")
.build())
.azureAd(ZeroTrustAccessGroupRequireAzureAdArgs.builder()
.id("string")
.identityProviderId("string")
.build())
.certificate()
.commonName(ZeroTrustAccessGroupRequireCommonNameArgs.builder()
.commonName("string")
.build())
.devicePosture(ZeroTrustAccessGroupRequireDevicePostureArgs.builder()
.integrationUid("string")
.build())
.email(ZeroTrustAccessGroupRequireEmailArgs.builder()
.email("string")
.build())
.emailDomain(ZeroTrustAccessGroupRequireEmailDomainArgs.builder()
.domain("string")
.build())
.emailList(ZeroTrustAccessGroupRequireEmailListArgs.builder()
.id("string")
.build())
.everyone()
.externalEvaluation(ZeroTrustAccessGroupRequireExternalEvaluationArgs.builder()
.evaluateUrl("string")
.keysUrl("string")
.build())
.geo(ZeroTrustAccessGroupRequireGeoArgs.builder()
.countryCode("string")
.build())
.githubOrganization(ZeroTrustAccessGroupRequireGithubOrganizationArgs.builder()
.identityProviderId("string")
.name("string")
.team("string")
.build())
.group(ZeroTrustAccessGroupRequireGroupArgs.builder()
.id("string")
.build())
.gsuite(ZeroTrustAccessGroupRequireGsuiteArgs.builder()
.email("string")
.identityProviderId("string")
.build())
.ip(ZeroTrustAccessGroupRequireIpArgs.builder()
.ip("string")
.build())
.ipList(ZeroTrustAccessGroupRequireIpListArgs.builder()
.id("string")
.build())
.loginMethod(ZeroTrustAccessGroupRequireLoginMethodArgs.builder()
.id("string")
.build())
.okta(ZeroTrustAccessGroupRequireOktaArgs.builder()
.identityProviderId("string")
.name("string")
.build())
.saml(ZeroTrustAccessGroupRequireSamlArgs.builder()
.attributeName("string")
.attributeValue("string")
.identityProviderId("string")
.build())
.serviceToken(ZeroTrustAccessGroupRequireServiceTokenArgs.builder()
.tokenId("string")
.build())
.build())
.zoneId("string")
.build());
zero_trust_access_group_resource = cloudflare.ZeroTrustAccessGroup("zeroTrustAccessGroupResource",
includes=[{
"any_valid_service_token": {},
"auth_context": {
"ac_id": "string",
"id": "string",
"identity_provider_id": "string",
},
"auth_method": {
"auth_method": "string",
},
"azure_ad": {
"id": "string",
"identity_provider_id": "string",
},
"certificate": {},
"common_name": {
"common_name": "string",
},
"device_posture": {
"integration_uid": "string",
},
"email": {
"email": "string",
},
"email_domain": {
"domain": "string",
},
"email_list": {
"id": "string",
},
"everyone": {},
"external_evaluation": {
"evaluate_url": "string",
"keys_url": "string",
},
"geo": {
"country_code": "string",
},
"github_organization": {
"identity_provider_id": "string",
"name": "string",
"team": "string",
},
"group": {
"id": "string",
},
"gsuite": {
"email": "string",
"identity_provider_id": "string",
},
"ip": {
"ip": "string",
},
"ip_list": {
"id": "string",
},
"login_method": {
"id": "string",
},
"okta": {
"identity_provider_id": "string",
"name": "string",
},
"saml": {
"attribute_name": "string",
"attribute_value": "string",
"identity_provider_id": "string",
},
"service_token": {
"token_id": "string",
},
}],
name="string",
account_id="string",
excludes=[{
"any_valid_service_token": {},
"auth_context": {
"ac_id": "string",
"id": "string",
"identity_provider_id": "string",
},
"auth_method": {
"auth_method": "string",
},
"azure_ad": {
"id": "string",
"identity_provider_id": "string",
},
"certificate": {},
"common_name": {
"common_name": "string",
},
"device_posture": {
"integration_uid": "string",
},
"email": {
"email": "string",
},
"email_domain": {
"domain": "string",
},
"email_list": {
"id": "string",
},
"everyone": {},
"external_evaluation": {
"evaluate_url": "string",
"keys_url": "string",
},
"geo": {
"country_code": "string",
},
"github_organization": {
"identity_provider_id": "string",
"name": "string",
"team": "string",
},
"group": {
"id": "string",
},
"gsuite": {
"email": "string",
"identity_provider_id": "string",
},
"ip": {
"ip": "string",
},
"ip_list": {
"id": "string",
},
"login_method": {
"id": "string",
},
"okta": {
"identity_provider_id": "string",
"name": "string",
},
"saml": {
"attribute_name": "string",
"attribute_value": "string",
"identity_provider_id": "string",
},
"service_token": {
"token_id": "string",
},
}],
is_default=False,
requires=[{
"any_valid_service_token": {},
"auth_context": {
"ac_id": "string",
"id": "string",
"identity_provider_id": "string",
},
"auth_method": {
"auth_method": "string",
},
"azure_ad": {
"id": "string",
"identity_provider_id": "string",
},
"certificate": {},
"common_name": {
"common_name": "string",
},
"device_posture": {
"integration_uid": "string",
},
"email": {
"email": "string",
},
"email_domain": {
"domain": "string",
},
"email_list": {
"id": "string",
},
"everyone": {},
"external_evaluation": {
"evaluate_url": "string",
"keys_url": "string",
},
"geo": {
"country_code": "string",
},
"github_organization": {
"identity_provider_id": "string",
"name": "string",
"team": "string",
},
"group": {
"id": "string",
},
"gsuite": {
"email": "string",
"identity_provider_id": "string",
},
"ip": {
"ip": "string",
},
"ip_list": {
"id": "string",
},
"login_method": {
"id": "string",
},
"okta": {
"identity_provider_id": "string",
"name": "string",
},
"saml": {
"attribute_name": "string",
"attribute_value": "string",
"identity_provider_id": "string",
},
"service_token": {
"token_id": "string",
},
}],
zone_id="string")
const zeroTrustAccessGroupResource = new cloudflare.ZeroTrustAccessGroup("zeroTrustAccessGroupResource", {
includes: [{
anyValidServiceToken: {},
authContext: {
acId: "string",
id: "string",
identityProviderId: "string",
},
authMethod: {
authMethod: "string",
},
azureAd: {
id: "string",
identityProviderId: "string",
},
certificate: {},
commonName: {
commonName: "string",
},
devicePosture: {
integrationUid: "string",
},
email: {
email: "string",
},
emailDomain: {
domain: "string",
},
emailList: {
id: "string",
},
everyone: {},
externalEvaluation: {
evaluateUrl: "string",
keysUrl: "string",
},
geo: {
countryCode: "string",
},
githubOrganization: {
identityProviderId: "string",
name: "string",
team: "string",
},
group: {
id: "string",
},
gsuite: {
email: "string",
identityProviderId: "string",
},
ip: {
ip: "string",
},
ipList: {
id: "string",
},
loginMethod: {
id: "string",
},
okta: {
identityProviderId: "string",
name: "string",
},
saml: {
attributeName: "string",
attributeValue: "string",
identityProviderId: "string",
},
serviceToken: {
tokenId: "string",
},
}],
name: "string",
accountId: "string",
excludes: [{
anyValidServiceToken: {},
authContext: {
acId: "string",
id: "string",
identityProviderId: "string",
},
authMethod: {
authMethod: "string",
},
azureAd: {
id: "string",
identityProviderId: "string",
},
certificate: {},
commonName: {
commonName: "string",
},
devicePosture: {
integrationUid: "string",
},
email: {
email: "string",
},
emailDomain: {
domain: "string",
},
emailList: {
id: "string",
},
everyone: {},
externalEvaluation: {
evaluateUrl: "string",
keysUrl: "string",
},
geo: {
countryCode: "string",
},
githubOrganization: {
identityProviderId: "string",
name: "string",
team: "string",
},
group: {
id: "string",
},
gsuite: {
email: "string",
identityProviderId: "string",
},
ip: {
ip: "string",
},
ipList: {
id: "string",
},
loginMethod: {
id: "string",
},
okta: {
identityProviderId: "string",
name: "string",
},
saml: {
attributeName: "string",
attributeValue: "string",
identityProviderId: "string",
},
serviceToken: {
tokenId: "string",
},
}],
isDefault: false,
requires: [{
anyValidServiceToken: {},
authContext: {
acId: "string",
id: "string",
identityProviderId: "string",
},
authMethod: {
authMethod: "string",
},
azureAd: {
id: "string",
identityProviderId: "string",
},
certificate: {},
commonName: {
commonName: "string",
},
devicePosture: {
integrationUid: "string",
},
email: {
email: "string",
},
emailDomain: {
domain: "string",
},
emailList: {
id: "string",
},
everyone: {},
externalEvaluation: {
evaluateUrl: "string",
keysUrl: "string",
},
geo: {
countryCode: "string",
},
githubOrganization: {
identityProviderId: "string",
name: "string",
team: "string",
},
group: {
id: "string",
},
gsuite: {
email: "string",
identityProviderId: "string",
},
ip: {
ip: "string",
},
ipList: {
id: "string",
},
loginMethod: {
id: "string",
},
okta: {
identityProviderId: "string",
name: "string",
},
saml: {
attributeName: "string",
attributeValue: "string",
identityProviderId: "string",
},
serviceToken: {
tokenId: "string",
},
}],
zoneId: "string",
});
type: cloudflare:ZeroTrustAccessGroup
properties:
accountId: string
excludes:
- anyValidServiceToken: {}
authContext:
acId: string
id: string
identityProviderId: string
authMethod:
authMethod: string
azureAd:
id: string
identityProviderId: string
certificate: {}
commonName:
commonName: string
devicePosture:
integrationUid: string
email:
email: string
emailDomain:
domain: string
emailList:
id: string
everyone: {}
externalEvaluation:
evaluateUrl: string
keysUrl: string
geo:
countryCode: string
githubOrganization:
identityProviderId: string
name: string
team: string
group:
id: string
gsuite:
email: string
identityProviderId: string
ip:
ip: string
ipList:
id: string
loginMethod:
id: string
okta:
identityProviderId: string
name: string
saml:
attributeName: string
attributeValue: string
identityProviderId: string
serviceToken:
tokenId: string
includes:
- anyValidServiceToken: {}
authContext:
acId: string
id: string
identityProviderId: string
authMethod:
authMethod: string
azureAd:
id: string
identityProviderId: string
certificate: {}
commonName:
commonName: string
devicePosture:
integrationUid: string
email:
email: string
emailDomain:
domain: string
emailList:
id: string
everyone: {}
externalEvaluation:
evaluateUrl: string
keysUrl: string
geo:
countryCode: string
githubOrganization:
identityProviderId: string
name: string
team: string
group:
id: string
gsuite:
email: string
identityProviderId: string
ip:
ip: string
ipList:
id: string
loginMethod:
id: string
okta:
identityProviderId: string
name: string
saml:
attributeName: string
attributeValue: string
identityProviderId: string
serviceToken:
tokenId: string
isDefault: false
name: string
requires:
- anyValidServiceToken: {}
authContext:
acId: string
id: string
identityProviderId: string
authMethod:
authMethod: string
azureAd:
id: string
identityProviderId: string
certificate: {}
commonName:
commonName: string
devicePosture:
integrationUid: string
email:
email: string
emailDomain:
domain: string
emailList:
id: string
everyone: {}
externalEvaluation:
evaluateUrl: string
keysUrl: string
geo:
countryCode: string
githubOrganization:
identityProviderId: string
name: string
team: string
group:
id: string
gsuite:
email: string
identityProviderId: string
ip:
ip: string
ipList:
id: string
loginMethod:
id: string
okta:
identityProviderId: string
name: string
saml:
attributeName: string
attributeValue: string
identityProviderId: string
serviceToken:
tokenId: string
zoneId: string
ZeroTrustAccessGroup Resource Properties
To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.
Inputs
In Python, inputs that are objects can be passed either as argument classes or as dictionary literals.
The ZeroTrustAccessGroup resource accepts the following input properties:
- Includes
List<Zero
Trust Access Group Include> - Rules evaluated with an OR logical operator. A user needs to meet only one of the Include rules.
- Name string
- The name of the Access group.
- Account
Id string - The Account ID to use for this endpoint. Mutually exclusive with the Zone ID.
- Excludes
List<Zero
Trust Access Group Exclude> - Rules evaluated with a NOT logical operator. To match a policy, a user cannot meet any of the Exclude rules.
- Is
Default bool - Whether this is the default group
- Requires
List<Zero
Trust Access Group Require> - Rules evaluated with an AND logical operator. To match a policy, a user must meet all of the Require rules.
- Zone
Id string - The Zone ID to use for this endpoint. Mutually exclusive with the Account ID.
- Includes
[]Zero
Trust Access Group Include Args - Rules evaluated with an OR logical operator. A user needs to meet only one of the Include rules.
- Name string
- The name of the Access group.
- Account
Id string - The Account ID to use for this endpoint. Mutually exclusive with the Zone ID.
- Excludes
[]Zero
Trust Access Group Exclude Args - Rules evaluated with a NOT logical operator. To match a policy, a user cannot meet any of the Exclude rules.
- Is
Default bool - Whether this is the default group
- Requires
[]Zero
Trust Access Group Require Args - Rules evaluated with an AND logical operator. To match a policy, a user must meet all of the Require rules.
- Zone
Id string - The Zone ID to use for this endpoint. Mutually exclusive with the Account ID.
- includes
List<Zero
Trust Access Group Include> - Rules evaluated with an OR logical operator. A user needs to meet only one of the Include rules.
- name String
- The name of the Access group.
- account
Id String - The Account ID to use for this endpoint. Mutually exclusive with the Zone ID.
- excludes
List<Zero
Trust Access Group Exclude> - Rules evaluated with a NOT logical operator. To match a policy, a user cannot meet any of the Exclude rules.
- is
Default Boolean - Whether this is the default group
- requires
List<Zero
Trust Access Group Require> - Rules evaluated with an AND logical operator. To match a policy, a user must meet all of the Require rules.
- zone
Id String - The Zone ID to use for this endpoint. Mutually exclusive with the Account ID.
- includes
Zero
Trust Access Group Include[] - Rules evaluated with an OR logical operator. A user needs to meet only one of the Include rules.
- name string
- The name of the Access group.
- account
Id string - The Account ID to use for this endpoint. Mutually exclusive with the Zone ID.
- excludes
Zero
Trust Access Group Exclude[] - Rules evaluated with a NOT logical operator. To match a policy, a user cannot meet any of the Exclude rules.
- is
Default boolean - Whether this is the default group
- requires
Zero
Trust Access Group Require[] - Rules evaluated with an AND logical operator. To match a policy, a user must meet all of the Require rules.
- zone
Id string - The Zone ID to use for this endpoint. Mutually exclusive with the Account ID.
- includes
Sequence[Zero
Trust Access Group Include Args] - Rules evaluated with an OR logical operator. A user needs to meet only one of the Include rules.
- name str
- The name of the Access group.
- account_
id str - The Account ID to use for this endpoint. Mutually exclusive with the Zone ID.
- excludes
Sequence[Zero
Trust Access Group Exclude Args] - Rules evaluated with a NOT logical operator. To match a policy, a user cannot meet any of the Exclude rules.
- is_
default bool - Whether this is the default group
- requires
Sequence[Zero
Trust Access Group Require Args] - Rules evaluated with an AND logical operator. To match a policy, a user must meet all of the Require rules.
- zone_
id str - The Zone ID to use for this endpoint. Mutually exclusive with the Account ID.
- includes List<Property Map>
- Rules evaluated with an OR logical operator. A user needs to meet only one of the Include rules.
- name String
- The name of the Access group.
- account
Id String - The Account ID to use for this endpoint. Mutually exclusive with the Zone ID.
- excludes List<Property Map>
- Rules evaluated with a NOT logical operator. To match a policy, a user cannot meet any of the Exclude rules.
- is
Default Boolean - Whether this is the default group
- requires List<Property Map>
- Rules evaluated with an AND logical operator. To match a policy, a user must meet all of the Require rules.
- zone
Id String - The Zone ID to use for this endpoint. Mutually exclusive with the Account ID.
Outputs
All input properties are implicitly available as output properties. Additionally, the ZeroTrustAccessGroup resource produces the following output properties:
- created_
at str - id str
- The provider-assigned unique ID for this managed resource.
- updated_
at str
Look up Existing ZeroTrustAccessGroup Resource
Get an existing ZeroTrustAccessGroup resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.
public static get(name: string, id: Input<ID>, state?: ZeroTrustAccessGroupState, opts?: CustomResourceOptions): ZeroTrustAccessGroup@staticmethod
def get(resource_name: str,
id: str,
opts: Optional[ResourceOptions] = None,
account_id: Optional[str] = None,
created_at: Optional[str] = None,
excludes: Optional[Sequence[ZeroTrustAccessGroupExcludeArgs]] = None,
includes: Optional[Sequence[ZeroTrustAccessGroupIncludeArgs]] = None,
is_default: Optional[bool] = None,
name: Optional[str] = None,
requires: Optional[Sequence[ZeroTrustAccessGroupRequireArgs]] = None,
updated_at: Optional[str] = None,
zone_id: Optional[str] = None) -> ZeroTrustAccessGroupfunc GetZeroTrustAccessGroup(ctx *Context, name string, id IDInput, state *ZeroTrustAccessGroupState, opts ...ResourceOption) (*ZeroTrustAccessGroup, error)public static ZeroTrustAccessGroup Get(string name, Input<string> id, ZeroTrustAccessGroupState? state, CustomResourceOptions? opts = null)public static ZeroTrustAccessGroup get(String name, Output<String> id, ZeroTrustAccessGroupState state, CustomResourceOptions options)resources: _: type: cloudflare:ZeroTrustAccessGroup get: id: ${id}- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- resource_name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- Account
Id string - The Account ID to use for this endpoint. Mutually exclusive with the Zone ID.
- Created
At string - Excludes
List<Zero
Trust Access Group Exclude> - Rules evaluated with a NOT logical operator. To match a policy, a user cannot meet any of the Exclude rules.
- Includes
List<Zero
Trust Access Group Include> - Rules evaluated with an OR logical operator. A user needs to meet only one of the Include rules.
- Is
Default bool - Whether this is the default group
- Name string
- The name of the Access group.
- Requires
List<Zero
Trust Access Group Require> - Rules evaluated with an AND logical operator. To match a policy, a user must meet all of the Require rules.
- Updated
At string - Zone
Id string - The Zone ID to use for this endpoint. Mutually exclusive with the Account ID.
- Account
Id string - The Account ID to use for this endpoint. Mutually exclusive with the Zone ID.
- Created
At string - Excludes
[]Zero
Trust Access Group Exclude Args - Rules evaluated with a NOT logical operator. To match a policy, a user cannot meet any of the Exclude rules.
- Includes
[]Zero
Trust Access Group Include Args - Rules evaluated with an OR logical operator. A user needs to meet only one of the Include rules.
- Is
Default bool - Whether this is the default group
- Name string
- The name of the Access group.
- Requires
[]Zero
Trust Access Group Require Args - Rules evaluated with an AND logical operator. To match a policy, a user must meet all of the Require rules.
- Updated
At string - Zone
Id string - The Zone ID to use for this endpoint. Mutually exclusive with the Account ID.
- account
Id String - The Account ID to use for this endpoint. Mutually exclusive with the Zone ID.
- created
At String - excludes
List<Zero
Trust Access Group Exclude> - Rules evaluated with a NOT logical operator. To match a policy, a user cannot meet any of the Exclude rules.
- includes
List<Zero
Trust Access Group Include> - Rules evaluated with an OR logical operator. A user needs to meet only one of the Include rules.
- is
Default Boolean - Whether this is the default group
- name String
- The name of the Access group.
- requires
List<Zero
Trust Access Group Require> - Rules evaluated with an AND logical operator. To match a policy, a user must meet all of the Require rules.
- updated
At String - zone
Id String - The Zone ID to use for this endpoint. Mutually exclusive with the Account ID.
- account
Id string - The Account ID to use for this endpoint. Mutually exclusive with the Zone ID.
- created
At string - excludes
Zero
Trust Access Group Exclude[] - Rules evaluated with a NOT logical operator. To match a policy, a user cannot meet any of the Exclude rules.
- includes
Zero
Trust Access Group Include[] - Rules evaluated with an OR logical operator. A user needs to meet only one of the Include rules.
- is
Default boolean - Whether this is the default group
- name string
- The name of the Access group.
- requires
Zero
Trust Access Group Require[] - Rules evaluated with an AND logical operator. To match a policy, a user must meet all of the Require rules.
- updated
At string - zone
Id string - The Zone ID to use for this endpoint. Mutually exclusive with the Account ID.
- account_
id str - The Account ID to use for this endpoint. Mutually exclusive with the Zone ID.
- created_
at str - excludes
Sequence[Zero
Trust Access Group Exclude Args] - Rules evaluated with a NOT logical operator. To match a policy, a user cannot meet any of the Exclude rules.
- includes
Sequence[Zero
Trust Access Group Include Args] - Rules evaluated with an OR logical operator. A user needs to meet only one of the Include rules.
- is_
default bool - Whether this is the default group
- name str
- The name of the Access group.
- requires
Sequence[Zero
Trust Access Group Require Args] - Rules evaluated with an AND logical operator. To match a policy, a user must meet all of the Require rules.
- updated_
at str - zone_
id str - The Zone ID to use for this endpoint. Mutually exclusive with the Account ID.
- account
Id String - The Account ID to use for this endpoint. Mutually exclusive with the Zone ID.
- created
At String - excludes List<Property Map>
- Rules evaluated with a NOT logical operator. To match a policy, a user cannot meet any of the Exclude rules.
- includes List<Property Map>
- Rules evaluated with an OR logical operator. A user needs to meet only one of the Include rules.
- is
Default Boolean - Whether this is the default group
- name String
- The name of the Access group.
- requires List<Property Map>
- Rules evaluated with an AND logical operator. To match a policy, a user must meet all of the Require rules.
- updated
At String - zone
Id String - The Zone ID to use for this endpoint. Mutually exclusive with the Account ID.
Supporting Types
ZeroTrustAccessGroupExclude, ZeroTrustAccessGroupExcludeArgs
- Any
Valid ZeroService Token Trust Access Group Exclude Any Valid Service Token - An empty object which matches on all service tokens.
- Auth
Context ZeroTrust Access Group Exclude Auth Context - Auth
Method ZeroTrust Access Group Exclude Auth Method - Azure
Ad ZeroTrust Access Group Exclude Azure Ad - Certificate
Zero
Trust Access Group Exclude Certificate - Common
Name ZeroTrust Access Group Exclude Common Name - Device
Posture ZeroTrust Access Group Exclude Device Posture - Email
Zero
Trust Access Group Exclude Email - Email
Domain ZeroTrust Access Group Exclude Email Domain - Email
List ZeroTrust Access Group Exclude Email List - Everyone
Zero
Trust Access Group Exclude Everyone - An empty object which matches on all users.
- External
Evaluation ZeroTrust Access Group Exclude External Evaluation - Geo
Zero
Trust Access Group Exclude Geo - Github
Organization ZeroTrust Access Group Exclude Github Organization - Group
Zero
Trust Access Group Exclude Group - Gsuite
Zero
Trust Access Group Exclude Gsuite - Ip
Zero
Trust Access Group Exclude Ip - Ip
List ZeroTrust Access Group Exclude Ip List - Login
Method ZeroTrust Access Group Exclude Login Method - Okta
Zero
Trust Access Group Exclude Okta - Saml
Zero
Trust Access Group Exclude Saml - Service
Token ZeroTrust Access Group Exclude Service Token
- Any
Valid ZeroService Token Trust Access Group Exclude Any Valid Service Token - An empty object which matches on all service tokens.
- Auth
Context ZeroTrust Access Group Exclude Auth Context - Auth
Method ZeroTrust Access Group Exclude Auth Method - Azure
Ad ZeroTrust Access Group Exclude Azure Ad - Certificate
Zero
Trust Access Group Exclude Certificate - Common
Name ZeroTrust Access Group Exclude Common Name - Device
Posture ZeroTrust Access Group Exclude Device Posture - Email
Zero
Trust Access Group Exclude Email - Email
Domain ZeroTrust Access Group Exclude Email Domain - Email
List ZeroTrust Access Group Exclude Email List - Everyone
Zero
Trust Access Group Exclude Everyone - An empty object which matches on all users.
- External
Evaluation ZeroTrust Access Group Exclude External Evaluation - Geo
Zero
Trust Access Group Exclude Geo - Github
Organization ZeroTrust Access Group Exclude Github Organization - Group
Zero
Trust Access Group Exclude Group - Gsuite
Zero
Trust Access Group Exclude Gsuite - Ip
Zero
Trust Access Group Exclude Ip - Ip
List ZeroTrust Access Group Exclude Ip List - Login
Method ZeroTrust Access Group Exclude Login Method - Okta
Zero
Trust Access Group Exclude Okta - Saml
Zero
Trust Access Group Exclude Saml - Service
Token ZeroTrust Access Group Exclude Service Token
- any
Valid ZeroService Token Trust Access Group Exclude Any Valid Service Token - An empty object which matches on all service tokens.
- auth
Context ZeroTrust Access Group Exclude Auth Context - auth
Method ZeroTrust Access Group Exclude Auth Method - azure
Ad ZeroTrust Access Group Exclude Azure Ad - certificate
Zero
Trust Access Group Exclude Certificate - common
Name ZeroTrust Access Group Exclude Common Name - device
Posture ZeroTrust Access Group Exclude Device Posture - email
Zero
Trust Access Group Exclude Email - email
Domain ZeroTrust Access Group Exclude Email Domain - email
List ZeroTrust Access Group Exclude Email List - everyone
Zero
Trust Access Group Exclude Everyone - An empty object which matches on all users.
- external
Evaluation ZeroTrust Access Group Exclude External Evaluation - geo
Zero
Trust Access Group Exclude Geo - github
Organization ZeroTrust Access Group Exclude Github Organization - group
Zero
Trust Access Group Exclude Group - gsuite
Zero
Trust Access Group Exclude Gsuite - ip
Zero
Trust Access Group Exclude Ip - ip
List ZeroTrust Access Group Exclude Ip List - login
Method ZeroTrust Access Group Exclude Login Method - okta
Zero
Trust Access Group Exclude Okta - saml
Zero
Trust Access Group Exclude Saml - service
Token ZeroTrust Access Group Exclude Service Token
- any
Valid ZeroService Token Trust Access Group Exclude Any Valid Service Token - An empty object which matches on all service tokens.
- auth
Context ZeroTrust Access Group Exclude Auth Context - auth
Method ZeroTrust Access Group Exclude Auth Method - azure
Ad ZeroTrust Access Group Exclude Azure Ad - certificate
Zero
Trust Access Group Exclude Certificate - common
Name ZeroTrust Access Group Exclude Common Name - device
Posture ZeroTrust Access Group Exclude Device Posture - email
Zero
Trust Access Group Exclude Email - email
Domain ZeroTrust Access Group Exclude Email Domain - email
List ZeroTrust Access Group Exclude Email List - everyone
Zero
Trust Access Group Exclude Everyone - An empty object which matches on all users.
- external
Evaluation ZeroTrust Access Group Exclude External Evaluation - geo
Zero
Trust Access Group Exclude Geo - github
Organization ZeroTrust Access Group Exclude Github Organization - group
Zero
Trust Access Group Exclude Group - gsuite
Zero
Trust Access Group Exclude Gsuite - ip
Zero
Trust Access Group Exclude Ip - ip
List ZeroTrust Access Group Exclude Ip List - login
Method ZeroTrust Access Group Exclude Login Method - okta
Zero
Trust Access Group Exclude Okta - saml
Zero
Trust Access Group Exclude Saml - service
Token ZeroTrust Access Group Exclude Service Token
- any_
valid_ Zeroservice_ token Trust Access Group Exclude Any Valid Service Token - An empty object which matches on all service tokens.
- auth_
context ZeroTrust Access Group Exclude Auth Context - auth_
method ZeroTrust Access Group Exclude Auth Method - azure_
ad ZeroTrust Access Group Exclude Azure Ad - certificate
Zero
Trust Access Group Exclude Certificate - common_
name ZeroTrust Access Group Exclude Common Name - device_
posture ZeroTrust Access Group Exclude Device Posture - email
Zero
Trust Access Group Exclude Email - email_
domain ZeroTrust Access Group Exclude Email Domain - email_
list ZeroTrust Access Group Exclude Email List - everyone
Zero
Trust Access Group Exclude Everyone - An empty object which matches on all users.
- external_
evaluation ZeroTrust Access Group Exclude External Evaluation - geo
Zero
Trust Access Group Exclude Geo - github_
organization ZeroTrust Access Group Exclude Github Organization - group
Zero
Trust Access Group Exclude Group - gsuite
Zero
Trust Access Group Exclude Gsuite - ip
Zero
Trust Access Group Exclude Ip - ip_
list ZeroTrust Access Group Exclude Ip List - login_
method ZeroTrust Access Group Exclude Login Method - okta
Zero
Trust Access Group Exclude Okta - saml
Zero
Trust Access Group Exclude Saml - service_
token ZeroTrust Access Group Exclude Service Token
- any
Valid Property MapService Token - An empty object which matches on all service tokens.
- auth
Context Property Map - auth
Method Property Map - azure
Ad Property Map - certificate Property Map
- common
Name Property Map - device
Posture Property Map - email Property Map
- email
Domain Property Map - email
List Property Map - everyone Property Map
- An empty object which matches on all users.
- external
Evaluation Property Map - geo Property Map
- github
Organization Property Map - group Property Map
- gsuite Property Map
- ip Property Map
- ip
List Property Map - login
Method Property Map - okta Property Map
- saml Property Map
- service
Token Property Map
ZeroTrustAccessGroupExcludeAuthContext, ZeroTrustAccessGroupExcludeAuthContextArgs
- Ac
Id string - The ACID of an Authentication context.
- Id string
- The ID of an Authentication context.
- Identity
Provider stringId - The ID of your Azure identity provider.
- Ac
Id string - The ACID of an Authentication context.
- Id string
- The ID of an Authentication context.
- Identity
Provider stringId - The ID of your Azure identity provider.
- ac
Id String - The ACID of an Authentication context.
- id String
- The ID of an Authentication context.
- identity
Provider StringId - The ID of your Azure identity provider.
- ac
Id string - The ACID of an Authentication context.
- id string
- The ID of an Authentication context.
- identity
Provider stringId - The ID of your Azure identity provider.
- ac_
id str - The ACID of an Authentication context.
- id str
- The ID of an Authentication context.
- identity_
provider_ strid - The ID of your Azure identity provider.
- ac
Id String - The ACID of an Authentication context.
- id String
- The ID of an Authentication context.
- identity
Provider StringId - The ID of your Azure identity provider.
ZeroTrustAccessGroupExcludeAuthMethod, ZeroTrustAccessGroupExcludeAuthMethodArgs
- Auth
Method string - The type of authentication method https://datatracker.ietf.org/doc/html/rfc8176#section-2.
- Auth
Method string - The type of authentication method https://datatracker.ietf.org/doc/html/rfc8176#section-2.
- auth
Method String - The type of authentication method https://datatracker.ietf.org/doc/html/rfc8176#section-2.
- auth
Method string - The type of authentication method https://datatracker.ietf.org/doc/html/rfc8176#section-2.
- auth_
method str - The type of authentication method https://datatracker.ietf.org/doc/html/rfc8176#section-2.
- auth
Method String - The type of authentication method https://datatracker.ietf.org/doc/html/rfc8176#section-2.
ZeroTrustAccessGroupExcludeAzureAd, ZeroTrustAccessGroupExcludeAzureAdArgs
- Id string
- The ID of an Azure group.
- Identity
Provider stringId - The ID of your Azure identity provider.
- Id string
- The ID of an Azure group.
- Identity
Provider stringId - The ID of your Azure identity provider.
- id String
- The ID of an Azure group.
- identity
Provider StringId - The ID of your Azure identity provider.
- id string
- The ID of an Azure group.
- identity
Provider stringId - The ID of your Azure identity provider.
- id str
- The ID of an Azure group.
- identity_
provider_ strid - The ID of your Azure identity provider.
- id String
- The ID of an Azure group.
- identity
Provider StringId - The ID of your Azure identity provider.
ZeroTrustAccessGroupExcludeCommonName, ZeroTrustAccessGroupExcludeCommonNameArgs
- Common
Name string - The common name to match.
- Common
Name string - The common name to match.
- common
Name String - The common name to match.
- common
Name string - The common name to match.
- common_
name str - The common name to match.
- common
Name String - The common name to match.
ZeroTrustAccessGroupExcludeDevicePosture, ZeroTrustAccessGroupExcludeDevicePostureArgs
- Integration
Uid string - The ID of a device posture integration.
- Integration
Uid string - The ID of a device posture integration.
- integration
Uid String - The ID of a device posture integration.
- integration
Uid string - The ID of a device posture integration.
- integration_
uid str - The ID of a device posture integration.
- integration
Uid String - The ID of a device posture integration.
ZeroTrustAccessGroupExcludeEmail, ZeroTrustAccessGroupExcludeEmailArgs
- Email string
- The email of the user.
- Email string
- The email of the user.
- email String
- The email of the user.
- email string
- The email of the user.
- email str
- The email of the user.
- email String
- The email of the user.
ZeroTrustAccessGroupExcludeEmailDomain, ZeroTrustAccessGroupExcludeEmailDomainArgs
- Domain string
- The email domain to match.
- Domain string
- The email domain to match.
- domain String
- The email domain to match.
- domain string
- The email domain to match.
- domain str
- The email domain to match.
- domain String
- The email domain to match.
ZeroTrustAccessGroupExcludeEmailList, ZeroTrustAccessGroupExcludeEmailListArgs
- Id string
- The ID of a previously created email list.
- Id string
- The ID of a previously created email list.
- id String
- The ID of a previously created email list.
- id string
- The ID of a previously created email list.
- id str
- The ID of a previously created email list.
- id String
- The ID of a previously created email list.
ZeroTrustAccessGroupExcludeExternalEvaluation, ZeroTrustAccessGroupExcludeExternalEvaluationArgs
- Evaluate
Url string - The API endpoint containing your business logic.
- Keys
Url string - The API endpoint containing the key that Access uses to verify that the response came from your API.
- Evaluate
Url string - The API endpoint containing your business logic.
- Keys
Url string - The API endpoint containing the key that Access uses to verify that the response came from your API.
- evaluate
Url String - The API endpoint containing your business logic.
- keys
Url String - The API endpoint containing the key that Access uses to verify that the response came from your API.
- evaluate
Url string - The API endpoint containing your business logic.
- keys
Url string - The API endpoint containing the key that Access uses to verify that the response came from your API.
- evaluate_
url str - The API endpoint containing your business logic.
- keys_
url str - The API endpoint containing the key that Access uses to verify that the response came from your API.
- evaluate
Url String - The API endpoint containing your business logic.
- keys
Url String - The API endpoint containing the key that Access uses to verify that the response came from your API.
ZeroTrustAccessGroupExcludeGeo, ZeroTrustAccessGroupExcludeGeoArgs
- Country
Code string - The country code that should be matched.
- Country
Code string - The country code that should be matched.
- country
Code String - The country code that should be matched.
- country
Code string - The country code that should be matched.
- country_
code str - The country code that should be matched.
- country
Code String - The country code that should be matched.
ZeroTrustAccessGroupExcludeGithubOrganization, ZeroTrustAccessGroupExcludeGithubOrganizationArgs
- Identity
Provider stringId - The ID of your Github identity provider.
- Name string
- The name of the organization.
- Team string
- The name of the team
- Identity
Provider stringId - The ID of your Github identity provider.
- Name string
- The name of the organization.
- Team string
- The name of the team
- identity
Provider StringId - The ID of your Github identity provider.
- name String
- The name of the organization.
- team String
- The name of the team
- identity
Provider stringId - The ID of your Github identity provider.
- name string
- The name of the organization.
- team string
- The name of the team
- identity_
provider_ strid - The ID of your Github identity provider.
- name str
- The name of the organization.
- team str
- The name of the team
- identity
Provider StringId - The ID of your Github identity provider.
- name String
- The name of the organization.
- team String
- The name of the team
ZeroTrustAccessGroupExcludeGroup, ZeroTrustAccessGroupExcludeGroupArgs
- Id string
- The ID of a previously created Access group.
- Id string
- The ID of a previously created Access group.
- id String
- The ID of a previously created Access group.
- id string
- The ID of a previously created Access group.
- id str
- The ID of a previously created Access group.
- id String
- The ID of a previously created Access group.
ZeroTrustAccessGroupExcludeGsuite, ZeroTrustAccessGroupExcludeGsuiteArgs
- Email string
- The email of the Google Workspace group.
- Identity
Provider stringId - The ID of your Google Workspace identity provider.
- Email string
- The email of the Google Workspace group.
- Identity
Provider stringId - The ID of your Google Workspace identity provider.
- email String
- The email of the Google Workspace group.
- identity
Provider StringId - The ID of your Google Workspace identity provider.
- email string
- The email of the Google Workspace group.
- identity
Provider stringId - The ID of your Google Workspace identity provider.
- email str
- The email of the Google Workspace group.
- identity_
provider_ strid - The ID of your Google Workspace identity provider.
- email String
- The email of the Google Workspace group.
- identity
Provider StringId - The ID of your Google Workspace identity provider.
ZeroTrustAccessGroupExcludeIp, ZeroTrustAccessGroupExcludeIpArgs
- Ip string
- An IPv4 or IPv6 CIDR block.
- Ip string
- An IPv4 or IPv6 CIDR block.
- ip String
- An IPv4 or IPv6 CIDR block.
- ip string
- An IPv4 or IPv6 CIDR block.
- ip str
- An IPv4 or IPv6 CIDR block.
- ip String
- An IPv4 or IPv6 CIDR block.
ZeroTrustAccessGroupExcludeIpList, ZeroTrustAccessGroupExcludeIpListArgs
- Id string
- The ID of a previously created IP list.
- Id string
- The ID of a previously created IP list.
- id String
- The ID of a previously created IP list.
- id string
- The ID of a previously created IP list.
- id str
- The ID of a previously created IP list.
- id String
- The ID of a previously created IP list.
ZeroTrustAccessGroupExcludeLoginMethod, ZeroTrustAccessGroupExcludeLoginMethodArgs
- Id string
- The ID of an identity provider.
- Id string
- The ID of an identity provider.
- id String
- The ID of an identity provider.
- id string
- The ID of an identity provider.
- id str
- The ID of an identity provider.
- id String
- The ID of an identity provider.
ZeroTrustAccessGroupExcludeOkta, ZeroTrustAccessGroupExcludeOktaArgs
- Identity
Provider stringId - The ID of your Okta identity provider.
- Name string
- The name of the Okta group.
- Identity
Provider stringId - The ID of your Okta identity provider.
- Name string
- The name of the Okta group.
- identity
Provider StringId - The ID of your Okta identity provider.
- name String
- The name of the Okta group.
- identity
Provider stringId - The ID of your Okta identity provider.
- name string
- The name of the Okta group.
- identity_
provider_ strid - The ID of your Okta identity provider.
- name str
- The name of the Okta group.
- identity
Provider StringId - The ID of your Okta identity provider.
- name String
- The name of the Okta group.
ZeroTrustAccessGroupExcludeSaml, ZeroTrustAccessGroupExcludeSamlArgs
- Attribute
Name string - The name of the SAML attribute.
- Attribute
Value string - The SAML attribute value to look for.
- Identity
Provider stringId - The ID of your SAML identity provider.
- Attribute
Name string - The name of the SAML attribute.
- Attribute
Value string - The SAML attribute value to look for.
- Identity
Provider stringId - The ID of your SAML identity provider.
- attribute
Name String - The name of the SAML attribute.
- attribute
Value String - The SAML attribute value to look for.
- identity
Provider StringId - The ID of your SAML identity provider.
- attribute
Name string - The name of the SAML attribute.
- attribute
Value string - The SAML attribute value to look for.
- identity
Provider stringId - The ID of your SAML identity provider.
- attribute_
name str - The name of the SAML attribute.
- attribute_
value str - The SAML attribute value to look for.
- identity_
provider_ strid - The ID of your SAML identity provider.
- attribute
Name String - The name of the SAML attribute.
- attribute
Value String - The SAML attribute value to look for.
- identity
Provider StringId - The ID of your SAML identity provider.
ZeroTrustAccessGroupExcludeServiceToken, ZeroTrustAccessGroupExcludeServiceTokenArgs
- Token
Id string - The ID of a Service Token.
- Token
Id string - The ID of a Service Token.
- token
Id String - The ID of a Service Token.
- token
Id string - The ID of a Service Token.
- token_
id str - The ID of a Service Token.
- token
Id String - The ID of a Service Token.
ZeroTrustAccessGroupInclude, ZeroTrustAccessGroupIncludeArgs
- Any
Valid ZeroService Token Trust Access Group Include Any Valid Service Token - An empty object which matches on all service tokens.
- Auth
Context ZeroTrust Access Group Include Auth Context - Auth
Method ZeroTrust Access Group Include Auth Method - Azure
Ad ZeroTrust Access Group Include Azure Ad - Certificate
Zero
Trust Access Group Include Certificate - Common
Name ZeroTrust Access Group Include Common Name - Device
Posture ZeroTrust Access Group Include Device Posture - Email
Zero
Trust Access Group Include Email - Email
Domain ZeroTrust Access Group Include Email Domain - Email
List ZeroTrust Access Group Include Email List - Everyone
Zero
Trust Access Group Include Everyone - An empty object which matches on all users.
- External
Evaluation ZeroTrust Access Group Include External Evaluation - Geo
Zero
Trust Access Group Include Geo - Github
Organization ZeroTrust Access Group Include Github Organization - Group
Zero
Trust Access Group Include Group - Gsuite
Zero
Trust Access Group Include Gsuite - Ip
Zero
Trust Access Group Include Ip - Ip
List ZeroTrust Access Group Include Ip List - Login
Method ZeroTrust Access Group Include Login Method - Okta
Zero
Trust Access Group Include Okta - Saml
Zero
Trust Access Group Include Saml - Service
Token ZeroTrust Access Group Include Service Token
- Any
Valid ZeroService Token Trust Access Group Include Any Valid Service Token - An empty object which matches on all service tokens.
- Auth
Context ZeroTrust Access Group Include Auth Context - Auth
Method ZeroTrust Access Group Include Auth Method - Azure
Ad ZeroTrust Access Group Include Azure Ad - Certificate
Zero
Trust Access Group Include Certificate - Common
Name ZeroTrust Access Group Include Common Name - Device
Posture ZeroTrust Access Group Include Device Posture - Email
Zero
Trust Access Group Include Email - Email
Domain ZeroTrust Access Group Include Email Domain - Email
List ZeroTrust Access Group Include Email List - Everyone
Zero
Trust Access Group Include Everyone - An empty object which matches on all users.
- External
Evaluation ZeroTrust Access Group Include External Evaluation - Geo
Zero
Trust Access Group Include Geo - Github
Organization ZeroTrust Access Group Include Github Organization - Group
Zero
Trust Access Group Include Group - Gsuite
Zero
Trust Access Group Include Gsuite - Ip
Zero
Trust Access Group Include Ip - Ip
List ZeroTrust Access Group Include Ip List - Login
Method ZeroTrust Access Group Include Login Method - Okta
Zero
Trust Access Group Include Okta - Saml
Zero
Trust Access Group Include Saml - Service
Token ZeroTrust Access Group Include Service Token
- any
Valid ZeroService Token Trust Access Group Include Any Valid Service Token - An empty object which matches on all service tokens.
- auth
Context ZeroTrust Access Group Include Auth Context - auth
Method ZeroTrust Access Group Include Auth Method - azure
Ad ZeroTrust Access Group Include Azure Ad - certificate
Zero
Trust Access Group Include Certificate - common
Name ZeroTrust Access Group Include Common Name - device
Posture ZeroTrust Access Group Include Device Posture - email
Zero
Trust Access Group Include Email - email
Domain ZeroTrust Access Group Include Email Domain - email
List ZeroTrust Access Group Include Email List - everyone
Zero
Trust Access Group Include Everyone - An empty object which matches on all users.
- external
Evaluation ZeroTrust Access Group Include External Evaluation - geo
Zero
Trust Access Group Include Geo - github
Organization ZeroTrust Access Group Include Github Organization - group
Zero
Trust Access Group Include Group - gsuite
Zero
Trust Access Group Include Gsuite - ip
Zero
Trust Access Group Include Ip - ip
List ZeroTrust Access Group Include Ip List - login
Method ZeroTrust Access Group Include Login Method - okta
Zero
Trust Access Group Include Okta - saml
Zero
Trust Access Group Include Saml - service
Token ZeroTrust Access Group Include Service Token
- any
Valid ZeroService Token Trust Access Group Include Any Valid Service Token - An empty object which matches on all service tokens.
- auth
Context ZeroTrust Access Group Include Auth Context - auth
Method ZeroTrust Access Group Include Auth Method - azure
Ad ZeroTrust Access Group Include Azure Ad - certificate
Zero
Trust Access Group Include Certificate - common
Name ZeroTrust Access Group Include Common Name - device
Posture ZeroTrust Access Group Include Device Posture - email
Zero
Trust Access Group Include Email - email
Domain ZeroTrust Access Group Include Email Domain - email
List ZeroTrust Access Group Include Email List - everyone
Zero
Trust Access Group Include Everyone - An empty object which matches on all users.
- external
Evaluation ZeroTrust Access Group Include External Evaluation - geo
Zero
Trust Access Group Include Geo - github
Organization ZeroTrust Access Group Include Github Organization - group
Zero
Trust Access Group Include Group - gsuite
Zero
Trust Access Group Include Gsuite - ip
Zero
Trust Access Group Include Ip - ip
List ZeroTrust Access Group Include Ip List - login
Method ZeroTrust Access Group Include Login Method - okta
Zero
Trust Access Group Include Okta - saml
Zero
Trust Access Group Include Saml - service
Token ZeroTrust Access Group Include Service Token
- any_
valid_ Zeroservice_ token Trust Access Group Include Any Valid Service Token - An empty object which matches on all service tokens.
- auth_
context ZeroTrust Access Group Include Auth Context - auth_
method ZeroTrust Access Group Include Auth Method - azure_
ad ZeroTrust Access Group Include Azure Ad - certificate
Zero
Trust Access Group Include Certificate - common_
name ZeroTrust Access Group Include Common Name - device_
posture ZeroTrust Access Group Include Device Posture - email
Zero
Trust Access Group Include Email - email_
domain ZeroTrust Access Group Include Email Domain - email_
list ZeroTrust Access Group Include Email List - everyone
Zero
Trust Access Group Include Everyone - An empty object which matches on all users.
- external_
evaluation ZeroTrust Access Group Include External Evaluation - geo
Zero
Trust Access Group Include Geo - github_
organization ZeroTrust Access Group Include Github Organization - group
Zero
Trust Access Group Include Group - gsuite
Zero
Trust Access Group Include Gsuite - ip
Zero
Trust Access Group Include Ip - ip_
list ZeroTrust Access Group Include Ip List - login_
method ZeroTrust Access Group Include Login Method - okta
Zero
Trust Access Group Include Okta - saml
Zero
Trust Access Group Include Saml - service_
token ZeroTrust Access Group Include Service Token
- any
Valid Property MapService Token - An empty object which matches on all service tokens.
- auth
Context Property Map - auth
Method Property Map - azure
Ad Property Map - certificate Property Map
- common
Name Property Map - device
Posture Property Map - email Property Map
- email
Domain Property Map - email
List Property Map - everyone Property Map
- An empty object which matches on all users.
- external
Evaluation Property Map - geo Property Map
- github
Organization Property Map - group Property Map
- gsuite Property Map
- ip Property Map
- ip
List Property Map - login
Method Property Map - okta Property Map
- saml Property Map
- service
Token Property Map
ZeroTrustAccessGroupIncludeAuthContext, ZeroTrustAccessGroupIncludeAuthContextArgs
- Ac
Id string - The ACID of an Authentication context.
- Id string
- The ID of an Authentication context.
- Identity
Provider stringId - The ID of your Azure identity provider.
- Ac
Id string - The ACID of an Authentication context.
- Id string
- The ID of an Authentication context.
- Identity
Provider stringId - The ID of your Azure identity provider.
- ac
Id String - The ACID of an Authentication context.
- id String
- The ID of an Authentication context.
- identity
Provider StringId - The ID of your Azure identity provider.
- ac
Id string - The ACID of an Authentication context.
- id string
- The ID of an Authentication context.
- identity
Provider stringId - The ID of your Azure identity provider.
- ac_
id str - The ACID of an Authentication context.
- id str
- The ID of an Authentication context.
- identity_
provider_ strid - The ID of your Azure identity provider.
- ac
Id String - The ACID of an Authentication context.
- id String
- The ID of an Authentication context.
- identity
Provider StringId - The ID of your Azure identity provider.
ZeroTrustAccessGroupIncludeAuthMethod, ZeroTrustAccessGroupIncludeAuthMethodArgs
- Auth
Method string - The type of authentication method https://datatracker.ietf.org/doc/html/rfc8176#section-2.
- Auth
Method string - The type of authentication method https://datatracker.ietf.org/doc/html/rfc8176#section-2.
- auth
Method String - The type of authentication method https://datatracker.ietf.org/doc/html/rfc8176#section-2.
- auth
Method string - The type of authentication method https://datatracker.ietf.org/doc/html/rfc8176#section-2.
- auth_
method str - The type of authentication method https://datatracker.ietf.org/doc/html/rfc8176#section-2.
- auth
Method String - The type of authentication method https://datatracker.ietf.org/doc/html/rfc8176#section-2.
ZeroTrustAccessGroupIncludeAzureAd, ZeroTrustAccessGroupIncludeAzureAdArgs
- Id string
- The ID of an Azure group.
- Identity
Provider stringId - The ID of your Azure identity provider.
- Id string
- The ID of an Azure group.
- Identity
Provider stringId - The ID of your Azure identity provider.
- id String
- The ID of an Azure group.
- identity
Provider StringId - The ID of your Azure identity provider.
- id string
- The ID of an Azure group.
- identity
Provider stringId - The ID of your Azure identity provider.
- id str
- The ID of an Azure group.
- identity_
provider_ strid - The ID of your Azure identity provider.
- id String
- The ID of an Azure group.
- identity
Provider StringId - The ID of your Azure identity provider.
ZeroTrustAccessGroupIncludeCommonName, ZeroTrustAccessGroupIncludeCommonNameArgs
- Common
Name string - The common name to match.
- Common
Name string - The common name to match.
- common
Name String - The common name to match.
- common
Name string - The common name to match.
- common_
name str - The common name to match.
- common
Name String - The common name to match.
ZeroTrustAccessGroupIncludeDevicePosture, ZeroTrustAccessGroupIncludeDevicePostureArgs
- Integration
Uid string - The ID of a device posture integration.
- Integration
Uid string - The ID of a device posture integration.
- integration
Uid String - The ID of a device posture integration.
- integration
Uid string - The ID of a device posture integration.
- integration_
uid str - The ID of a device posture integration.
- integration
Uid String - The ID of a device posture integration.
ZeroTrustAccessGroupIncludeEmail, ZeroTrustAccessGroupIncludeEmailArgs
- Email string
- The email of the user.
- Email string
- The email of the user.
- email String
- The email of the user.
- email string
- The email of the user.
- email str
- The email of the user.
- email String
- The email of the user.
ZeroTrustAccessGroupIncludeEmailDomain, ZeroTrustAccessGroupIncludeEmailDomainArgs
- Domain string
- The email domain to match.
- Domain string
- The email domain to match.
- domain String
- The email domain to match.
- domain string
- The email domain to match.
- domain str
- The email domain to match.
- domain String
- The email domain to match.
ZeroTrustAccessGroupIncludeEmailList, ZeroTrustAccessGroupIncludeEmailListArgs
- Id string
- The ID of a previously created email list.
- Id string
- The ID of a previously created email list.
- id String
- The ID of a previously created email list.
- id string
- The ID of a previously created email list.
- id str
- The ID of a previously created email list.
- id String
- The ID of a previously created email list.
ZeroTrustAccessGroupIncludeExternalEvaluation, ZeroTrustAccessGroupIncludeExternalEvaluationArgs
- Evaluate
Url string - The API endpoint containing your business logic.
- Keys
Url string - The API endpoint containing the key that Access uses to verify that the response came from your API.
- Evaluate
Url string - The API endpoint containing your business logic.
- Keys
Url string - The API endpoint containing the key that Access uses to verify that the response came from your API.
- evaluate
Url String - The API endpoint containing your business logic.
- keys
Url String - The API endpoint containing the key that Access uses to verify that the response came from your API.
- evaluate
Url string - The API endpoint containing your business logic.
- keys
Url string - The API endpoint containing the key that Access uses to verify that the response came from your API.
- evaluate_
url str - The API endpoint containing your business logic.
- keys_
url str - The API endpoint containing the key that Access uses to verify that the response came from your API.
- evaluate
Url String - The API endpoint containing your business logic.
- keys
Url String - The API endpoint containing the key that Access uses to verify that the response came from your API.
ZeroTrustAccessGroupIncludeGeo, ZeroTrustAccessGroupIncludeGeoArgs
- Country
Code string - The country code that should be matched.
- Country
Code string - The country code that should be matched.
- country
Code String - The country code that should be matched.
- country
Code string - The country code that should be matched.
- country_
code str - The country code that should be matched.
- country
Code String - The country code that should be matched.
ZeroTrustAccessGroupIncludeGithubOrganization, ZeroTrustAccessGroupIncludeGithubOrganizationArgs
- Identity
Provider stringId - The ID of your Github identity provider.
- Name string
- The name of the organization.
- Team string
- The name of the team
- Identity
Provider stringId - The ID of your Github identity provider.
- Name string
- The name of the organization.
- Team string
- The name of the team
- identity
Provider StringId - The ID of your Github identity provider.
- name String
- The name of the organization.
- team String
- The name of the team
- identity
Provider stringId - The ID of your Github identity provider.
- name string
- The name of the organization.
- team string
- The name of the team
- identity_
provider_ strid - The ID of your Github identity provider.
- name str
- The name of the organization.
- team str
- The name of the team
- identity
Provider StringId - The ID of your Github identity provider.
- name String
- The name of the organization.
- team String
- The name of the team
ZeroTrustAccessGroupIncludeGroup, ZeroTrustAccessGroupIncludeGroupArgs
- Id string
- The ID of a previously created Access group.
- Id string
- The ID of a previously created Access group.
- id String
- The ID of a previously created Access group.
- id string
- The ID of a previously created Access group.
- id str
- The ID of a previously created Access group.
- id String
- The ID of a previously created Access group.
ZeroTrustAccessGroupIncludeGsuite, ZeroTrustAccessGroupIncludeGsuiteArgs
- Email string
- The email of the Google Workspace group.
- Identity
Provider stringId - The ID of your Google Workspace identity provider.
- Email string
- The email of the Google Workspace group.
- Identity
Provider stringId - The ID of your Google Workspace identity provider.
- email String
- The email of the Google Workspace group.
- identity
Provider StringId - The ID of your Google Workspace identity provider.
- email string
- The email of the Google Workspace group.
- identity
Provider stringId - The ID of your Google Workspace identity provider.
- email str
- The email of the Google Workspace group.
- identity_
provider_ strid - The ID of your Google Workspace identity provider.
- email String
- The email of the Google Workspace group.
- identity
Provider StringId - The ID of your Google Workspace identity provider.
ZeroTrustAccessGroupIncludeIp, ZeroTrustAccessGroupIncludeIpArgs
- Ip string
- An IPv4 or IPv6 CIDR block.
- Ip string
- An IPv4 or IPv6 CIDR block.
- ip String
- An IPv4 or IPv6 CIDR block.
- ip string
- An IPv4 or IPv6 CIDR block.
- ip str
- An IPv4 or IPv6 CIDR block.
- ip String
- An IPv4 or IPv6 CIDR block.
ZeroTrustAccessGroupIncludeIpList, ZeroTrustAccessGroupIncludeIpListArgs
- Id string
- The ID of a previously created IP list.
- Id string
- The ID of a previously created IP list.
- id String
- The ID of a previously created IP list.
- id string
- The ID of a previously created IP list.
- id str
- The ID of a previously created IP list.
- id String
- The ID of a previously created IP list.
ZeroTrustAccessGroupIncludeLoginMethod, ZeroTrustAccessGroupIncludeLoginMethodArgs
- Id string
- The ID of an identity provider.
- Id string
- The ID of an identity provider.
- id String
- The ID of an identity provider.
- id string
- The ID of an identity provider.
- id str
- The ID of an identity provider.
- id String
- The ID of an identity provider.
ZeroTrustAccessGroupIncludeOkta, ZeroTrustAccessGroupIncludeOktaArgs
- Identity
Provider stringId - The ID of your Okta identity provider.
- Name string
- The name of the Okta group.
- Identity
Provider stringId - The ID of your Okta identity provider.
- Name string
- The name of the Okta group.
- identity
Provider StringId - The ID of your Okta identity provider.
- name String
- The name of the Okta group.
- identity
Provider stringId - The ID of your Okta identity provider.
- name string
- The name of the Okta group.
- identity_
provider_ strid - The ID of your Okta identity provider.
- name str
- The name of the Okta group.
- identity
Provider StringId - The ID of your Okta identity provider.
- name String
- The name of the Okta group.
ZeroTrustAccessGroupIncludeSaml, ZeroTrustAccessGroupIncludeSamlArgs
- Attribute
Name string - The name of the SAML attribute.
- Attribute
Value string - The SAML attribute value to look for.
- Identity
Provider stringId - The ID of your SAML identity provider.
- Attribute
Name string - The name of the SAML attribute.
- Attribute
Value string - The SAML attribute value to look for.
- Identity
Provider stringId - The ID of your SAML identity provider.
- attribute
Name String - The name of the SAML attribute.
- attribute
Value String - The SAML attribute value to look for.
- identity
Provider StringId - The ID of your SAML identity provider.
- attribute
Name string - The name of the SAML attribute.
- attribute
Value string - The SAML attribute value to look for.
- identity
Provider stringId - The ID of your SAML identity provider.
- attribute_
name str - The name of the SAML attribute.
- attribute_
value str - The SAML attribute value to look for.
- identity_
provider_ strid - The ID of your SAML identity provider.
- attribute
Name String - The name of the SAML attribute.
- attribute
Value String - The SAML attribute value to look for.
- identity
Provider StringId - The ID of your SAML identity provider.
ZeroTrustAccessGroupIncludeServiceToken, ZeroTrustAccessGroupIncludeServiceTokenArgs
- Token
Id string - The ID of a Service Token.
- Token
Id string - The ID of a Service Token.
- token
Id String - The ID of a Service Token.
- token
Id string - The ID of a Service Token.
- token_
id str - The ID of a Service Token.
- token
Id String - The ID of a Service Token.
ZeroTrustAccessGroupRequire, ZeroTrustAccessGroupRequireArgs
- Any
Valid ZeroService Token Trust Access Group Require Any Valid Service Token - An empty object which matches on all service tokens.
- Auth
Context ZeroTrust Access Group Require Auth Context - Auth
Method ZeroTrust Access Group Require Auth Method - Azure
Ad ZeroTrust Access Group Require Azure Ad - Certificate
Zero
Trust Access Group Require Certificate - Common
Name ZeroTrust Access Group Require Common Name - Device
Posture ZeroTrust Access Group Require Device Posture - Email
Zero
Trust Access Group Require Email - Email
Domain ZeroTrust Access Group Require Email Domain - Email
List ZeroTrust Access Group Require Email List - Everyone
Zero
Trust Access Group Require Everyone - An empty object which matches on all users.
- External
Evaluation ZeroTrust Access Group Require External Evaluation - Geo
Zero
Trust Access Group Require Geo - Github
Organization ZeroTrust Access Group Require Github Organization - Group
Zero
Trust Access Group Require Group - Gsuite
Zero
Trust Access Group Require Gsuite - Ip
Zero
Trust Access Group Require Ip - Ip
List ZeroTrust Access Group Require Ip List - Login
Method ZeroTrust Access Group Require Login Method - Okta
Zero
Trust Access Group Require Okta - Saml
Zero
Trust Access Group Require Saml - Service
Token ZeroTrust Access Group Require Service Token
- Any
Valid ZeroService Token Trust Access Group Require Any Valid Service Token - An empty object which matches on all service tokens.
- Auth
Context ZeroTrust Access Group Require Auth Context - Auth
Method ZeroTrust Access Group Require Auth Method - Azure
Ad ZeroTrust Access Group Require Azure Ad - Certificate
Zero
Trust Access Group Require Certificate - Common
Name ZeroTrust Access Group Require Common Name - Device
Posture ZeroTrust Access Group Require Device Posture - Email
Zero
Trust Access Group Require Email - Email
Domain ZeroTrust Access Group Require Email Domain - Email
List ZeroTrust Access Group Require Email List - Everyone
Zero
Trust Access Group Require Everyone - An empty object which matches on all users.
- External
Evaluation ZeroTrust Access Group Require External Evaluation - Geo
Zero
Trust Access Group Require Geo - Github
Organization ZeroTrust Access Group Require Github Organization - Group
Zero
Trust Access Group Require Group - Gsuite
Zero
Trust Access Group Require Gsuite - Ip
Zero
Trust Access Group Require Ip - Ip
List ZeroTrust Access Group Require Ip List - Login
Method ZeroTrust Access Group Require Login Method - Okta
Zero
Trust Access Group Require Okta - Saml
Zero
Trust Access Group Require Saml - Service
Token ZeroTrust Access Group Require Service Token
- any
Valid ZeroService Token Trust Access Group Require Any Valid Service Token - An empty object which matches on all service tokens.
- auth
Context ZeroTrust Access Group Require Auth Context - auth
Method ZeroTrust Access Group Require Auth Method - azure
Ad ZeroTrust Access Group Require Azure Ad - certificate
Zero
Trust Access Group Require Certificate - common
Name ZeroTrust Access Group Require Common Name - device
Posture ZeroTrust Access Group Require Device Posture - email
Zero
Trust Access Group Require Email - email
Domain ZeroTrust Access Group Require Email Domain - email
List ZeroTrust Access Group Require Email List - everyone
Zero
Trust Access Group Require Everyone - An empty object which matches on all users.
- external
Evaluation ZeroTrust Access Group Require External Evaluation - geo
Zero
Trust Access Group Require Geo - github
Organization ZeroTrust Access Group Require Github Organization - group
Zero
Trust Access Group Require Group - gsuite
Zero
Trust Access Group Require Gsuite - ip
Zero
Trust Access Group Require Ip - ip
List ZeroTrust Access Group Require Ip List - login
Method ZeroTrust Access Group Require Login Method - okta
Zero
Trust Access Group Require Okta - saml
Zero
Trust Access Group Require Saml - service
Token ZeroTrust Access Group Require Service Token
- any
Valid ZeroService Token Trust Access Group Require Any Valid Service Token - An empty object which matches on all service tokens.
- auth
Context ZeroTrust Access Group Require Auth Context - auth
Method ZeroTrust Access Group Require Auth Method - azure
Ad ZeroTrust Access Group Require Azure Ad - certificate
Zero
Trust Access Group Require Certificate - common
Name ZeroTrust Access Group Require Common Name - device
Posture ZeroTrust Access Group Require Device Posture - email
Zero
Trust Access Group Require Email - email
Domain ZeroTrust Access Group Require Email Domain - email
List ZeroTrust Access Group Require Email List - everyone
Zero
Trust Access Group Require Everyone - An empty object which matches on all users.
- external
Evaluation ZeroTrust Access Group Require External Evaluation - geo
Zero
Trust Access Group Require Geo - github
Organization ZeroTrust Access Group Require Github Organization - group
Zero
Trust Access Group Require Group - gsuite
Zero
Trust Access Group Require Gsuite - ip
Zero
Trust Access Group Require Ip - ip
List ZeroTrust Access Group Require Ip List - login
Method ZeroTrust Access Group Require Login Method - okta
Zero
Trust Access Group Require Okta - saml
Zero
Trust Access Group Require Saml - service
Token ZeroTrust Access Group Require Service Token
- any_
valid_ Zeroservice_ token Trust Access Group Require Any Valid Service Token - An empty object which matches on all service tokens.
- auth_
context ZeroTrust Access Group Require Auth Context - auth_
method ZeroTrust Access Group Require Auth Method - azure_
ad ZeroTrust Access Group Require Azure Ad - certificate
Zero
Trust Access Group Require Certificate - common_
name ZeroTrust Access Group Require Common Name - device_
posture ZeroTrust Access Group Require Device Posture - email
Zero
Trust Access Group Require Email - email_
domain ZeroTrust Access Group Require Email Domain - email_
list ZeroTrust Access Group Require Email List - everyone
Zero
Trust Access Group Require Everyone - An empty object which matches on all users.
- external_
evaluation ZeroTrust Access Group Require External Evaluation - geo
Zero
Trust Access Group Require Geo - github_
organization ZeroTrust Access Group Require Github Organization - group
Zero
Trust Access Group Require Group - gsuite
Zero
Trust Access Group Require Gsuite - ip
Zero
Trust Access Group Require Ip - ip_
list ZeroTrust Access Group Require Ip List - login_
method ZeroTrust Access Group Require Login Method - okta
Zero
Trust Access Group Require Okta - saml
Zero
Trust Access Group Require Saml - service_
token ZeroTrust Access Group Require Service Token
- any
Valid Property MapService Token - An empty object which matches on all service tokens.
- auth
Context Property Map - auth
Method Property Map - azure
Ad Property Map - certificate Property Map
- common
Name Property Map - device
Posture Property Map - email Property Map
- email
Domain Property Map - email
List Property Map - everyone Property Map
- An empty object which matches on all users.
- external
Evaluation Property Map - geo Property Map
- github
Organization Property Map - group Property Map
- gsuite Property Map
- ip Property Map
- ip
List Property Map - login
Method Property Map - okta Property Map
- saml Property Map
- service
Token Property Map
ZeroTrustAccessGroupRequireAuthContext, ZeroTrustAccessGroupRequireAuthContextArgs
- Ac
Id string - The ACID of an Authentication context.
- Id string
- The ID of an Authentication context.
- Identity
Provider stringId - The ID of your Azure identity provider.
- Ac
Id string - The ACID of an Authentication context.
- Id string
- The ID of an Authentication context.
- Identity
Provider stringId - The ID of your Azure identity provider.
- ac
Id String - The ACID of an Authentication context.
- id String
- The ID of an Authentication context.
- identity
Provider StringId - The ID of your Azure identity provider.
- ac
Id string - The ACID of an Authentication context.
- id string
- The ID of an Authentication context.
- identity
Provider stringId - The ID of your Azure identity provider.
- ac_
id str - The ACID of an Authentication context.
- id str
- The ID of an Authentication context.
- identity_
provider_ strid - The ID of your Azure identity provider.
- ac
Id String - The ACID of an Authentication context.
- id String
- The ID of an Authentication context.
- identity
Provider StringId - The ID of your Azure identity provider.
ZeroTrustAccessGroupRequireAuthMethod, ZeroTrustAccessGroupRequireAuthMethodArgs
- Auth
Method string - The type of authentication method https://datatracker.ietf.org/doc/html/rfc8176#section-2.
- Auth
Method string - The type of authentication method https://datatracker.ietf.org/doc/html/rfc8176#section-2.
- auth
Method String - The type of authentication method https://datatracker.ietf.org/doc/html/rfc8176#section-2.
- auth
Method string - The type of authentication method https://datatracker.ietf.org/doc/html/rfc8176#section-2.
- auth_
method str - The type of authentication method https://datatracker.ietf.org/doc/html/rfc8176#section-2.
- auth
Method String - The type of authentication method https://datatracker.ietf.org/doc/html/rfc8176#section-2.
ZeroTrustAccessGroupRequireAzureAd, ZeroTrustAccessGroupRequireAzureAdArgs
- Id string
- The ID of an Azure group.
- Identity
Provider stringId - The ID of your Azure identity provider.
- Id string
- The ID of an Azure group.
- Identity
Provider stringId - The ID of your Azure identity provider.
- id String
- The ID of an Azure group.
- identity
Provider StringId - The ID of your Azure identity provider.
- id string
- The ID of an Azure group.
- identity
Provider stringId - The ID of your Azure identity provider.
- id str
- The ID of an Azure group.
- identity_
provider_ strid - The ID of your Azure identity provider.
- id String
- The ID of an Azure group.
- identity
Provider StringId - The ID of your Azure identity provider.
ZeroTrustAccessGroupRequireCommonName, ZeroTrustAccessGroupRequireCommonNameArgs
- Common
Name string - The common name to match.
- Common
Name string - The common name to match.
- common
Name String - The common name to match.
- common
Name string - The common name to match.
- common_
name str - The common name to match.
- common
Name String - The common name to match.
ZeroTrustAccessGroupRequireDevicePosture, ZeroTrustAccessGroupRequireDevicePostureArgs
- Integration
Uid string - The ID of a device posture integration.
- Integration
Uid string - The ID of a device posture integration.
- integration
Uid String - The ID of a device posture integration.
- integration
Uid string - The ID of a device posture integration.
- integration_
uid str - The ID of a device posture integration.
- integration
Uid String - The ID of a device posture integration.
ZeroTrustAccessGroupRequireEmail, ZeroTrustAccessGroupRequireEmailArgs
- Email string
- The email of the user.
- Email string
- The email of the user.
- email String
- The email of the user.
- email string
- The email of the user.
- email str
- The email of the user.
- email String
- The email of the user.
ZeroTrustAccessGroupRequireEmailDomain, ZeroTrustAccessGroupRequireEmailDomainArgs
- Domain string
- The email domain to match.
- Domain string
- The email domain to match.
- domain String
- The email domain to match.
- domain string
- The email domain to match.
- domain str
- The email domain to match.
- domain String
- The email domain to match.
ZeroTrustAccessGroupRequireEmailList, ZeroTrustAccessGroupRequireEmailListArgs
- Id string
- The ID of a previously created email list.
- Id string
- The ID of a previously created email list.
- id String
- The ID of a previously created email list.
- id string
- The ID of a previously created email list.
- id str
- The ID of a previously created email list.
- id String
- The ID of a previously created email list.
ZeroTrustAccessGroupRequireExternalEvaluation, ZeroTrustAccessGroupRequireExternalEvaluationArgs
- Evaluate
Url string - The API endpoint containing your business logic.
- Keys
Url string - The API endpoint containing the key that Access uses to verify that the response came from your API.
- Evaluate
Url string - The API endpoint containing your business logic.
- Keys
Url string - The API endpoint containing the key that Access uses to verify that the response came from your API.
- evaluate
Url String - The API endpoint containing your business logic.
- keys
Url String - The API endpoint containing the key that Access uses to verify that the response came from your API.
- evaluate
Url string - The API endpoint containing your business logic.
- keys
Url string - The API endpoint containing the key that Access uses to verify that the response came from your API.
- evaluate_
url str - The API endpoint containing your business logic.
- keys_
url str - The API endpoint containing the key that Access uses to verify that the response came from your API.
- evaluate
Url String - The API endpoint containing your business logic.
- keys
Url String - The API endpoint containing the key that Access uses to verify that the response came from your API.
ZeroTrustAccessGroupRequireGeo, ZeroTrustAccessGroupRequireGeoArgs
- Country
Code string - The country code that should be matched.
- Country
Code string - The country code that should be matched.
- country
Code String - The country code that should be matched.
- country
Code string - The country code that should be matched.
- country_
code str - The country code that should be matched.
- country
Code String - The country code that should be matched.
ZeroTrustAccessGroupRequireGithubOrganization, ZeroTrustAccessGroupRequireGithubOrganizationArgs
- Identity
Provider stringId - The ID of your Github identity provider.
- Name string
- The name of the organization.
- Team string
- The name of the team
- Identity
Provider stringId - The ID of your Github identity provider.
- Name string
- The name of the organization.
- Team string
- The name of the team
- identity
Provider StringId - The ID of your Github identity provider.
- name String
- The name of the organization.
- team String
- The name of the team
- identity
Provider stringId - The ID of your Github identity provider.
- name string
- The name of the organization.
- team string
- The name of the team
- identity_
provider_ strid - The ID of your Github identity provider.
- name str
- The name of the organization.
- team str
- The name of the team
- identity
Provider StringId - The ID of your Github identity provider.
- name String
- The name of the organization.
- team String
- The name of the team
ZeroTrustAccessGroupRequireGroup, ZeroTrustAccessGroupRequireGroupArgs
- Id string
- The ID of a previously created Access group.
- Id string
- The ID of a previously created Access group.
- id String
- The ID of a previously created Access group.
- id string
- The ID of a previously created Access group.
- id str
- The ID of a previously created Access group.
- id String
- The ID of a previously created Access group.
ZeroTrustAccessGroupRequireGsuite, ZeroTrustAccessGroupRequireGsuiteArgs
- Email string
- The email of the Google Workspace group.
- Identity
Provider stringId - The ID of your Google Workspace identity provider.
- Email string
- The email of the Google Workspace group.
- Identity
Provider stringId - The ID of your Google Workspace identity provider.
- email String
- The email of the Google Workspace group.
- identity
Provider StringId - The ID of your Google Workspace identity provider.
- email string
- The email of the Google Workspace group.
- identity
Provider stringId - The ID of your Google Workspace identity provider.
- email str
- The email of the Google Workspace group.
- identity_
provider_ strid - The ID of your Google Workspace identity provider.
- email String
- The email of the Google Workspace group.
- identity
Provider StringId - The ID of your Google Workspace identity provider.
ZeroTrustAccessGroupRequireIp, ZeroTrustAccessGroupRequireIpArgs
- Ip string
- An IPv4 or IPv6 CIDR block.
- Ip string
- An IPv4 or IPv6 CIDR block.
- ip String
- An IPv4 or IPv6 CIDR block.
- ip string
- An IPv4 or IPv6 CIDR block.
- ip str
- An IPv4 or IPv6 CIDR block.
- ip String
- An IPv4 or IPv6 CIDR block.
ZeroTrustAccessGroupRequireIpList, ZeroTrustAccessGroupRequireIpListArgs
- Id string
- The ID of a previously created IP list.
- Id string
- The ID of a previously created IP list.
- id String
- The ID of a previously created IP list.
- id string
- The ID of a previously created IP list.
- id str
- The ID of a previously created IP list.
- id String
- The ID of a previously created IP list.
ZeroTrustAccessGroupRequireLoginMethod, ZeroTrustAccessGroupRequireLoginMethodArgs
- Id string
- The ID of an identity provider.
- Id string
- The ID of an identity provider.
- id String
- The ID of an identity provider.
- id string
- The ID of an identity provider.
- id str
- The ID of an identity provider.
- id String
- The ID of an identity provider.
ZeroTrustAccessGroupRequireOkta, ZeroTrustAccessGroupRequireOktaArgs
- Identity
Provider stringId - The ID of your Okta identity provider.
- Name string
- The name of the Okta group.
- Identity
Provider stringId - The ID of your Okta identity provider.
- Name string
- The name of the Okta group.
- identity
Provider StringId - The ID of your Okta identity provider.
- name String
- The name of the Okta group.
- identity
Provider stringId - The ID of your Okta identity provider.
- name string
- The name of the Okta group.
- identity_
provider_ strid - The ID of your Okta identity provider.
- name str
- The name of the Okta group.
- identity
Provider StringId - The ID of your Okta identity provider.
- name String
- The name of the Okta group.
ZeroTrustAccessGroupRequireSaml, ZeroTrustAccessGroupRequireSamlArgs
- Attribute
Name string - The name of the SAML attribute.
- Attribute
Value string - The SAML attribute value to look for.
- Identity
Provider stringId - The ID of your SAML identity provider.
- Attribute
Name string - The name of the SAML attribute.
- Attribute
Value string - The SAML attribute value to look for.
- Identity
Provider stringId - The ID of your SAML identity provider.
- attribute
Name String - The name of the SAML attribute.
- attribute
Value String - The SAML attribute value to look for.
- identity
Provider StringId - The ID of your SAML identity provider.
- attribute
Name string - The name of the SAML attribute.
- attribute
Value string - The SAML attribute value to look for.
- identity
Provider stringId - The ID of your SAML identity provider.
- attribute_
name str - The name of the SAML attribute.
- attribute_
value str - The SAML attribute value to look for.
- identity_
provider_ strid - The ID of your SAML identity provider.
- attribute
Name String - The name of the SAML attribute.
- attribute
Value String - The SAML attribute value to look for.
- identity
Provider StringId - The ID of your SAML identity provider.
ZeroTrustAccessGroupRequireServiceToken, ZeroTrustAccessGroupRequireServiceTokenArgs
- Token
Id string - The ID of a Service Token.
- Token
Id string - The ID of a Service Token.
- token
Id String - The ID of a Service Token.
- token
Id string - The ID of a Service Token.
- token_
id str - The ID of a Service Token.
- token
Id String - The ID of a Service Token.
Import
$ pulumi import cloudflare:index/zeroTrustAccessGroup:ZeroTrustAccessGroup example '<{accounts|zones}/{account_id|zone_id}>/<group_id>'
To learn more about importing existing cloud resources, see Importing resources.
Package Details
- Repository
- Cloudflare pulumi/pulumi-cloudflare
- License
- Apache-2.0
- Notes
- This Pulumi package is based on the
cloudflareTerraform Provider.