Viewing docs for Databricks v1.92.0
published on Tuesday, May 12, 2026 by Pulumi
published on Tuesday, May 12, 2026 by Pulumi
Viewing docs for Databricks v1.92.0
published on Tuesday, May 12, 2026 by Pulumi
published on Tuesday, May 12, 2026 by Pulumi
Network policies control which network destinations can be accessed from the Databricks environment.
Each Databricks account includes a default policy named default-policy. This policy is:
- Associated with any workspace lacking an explicit network policy assignment
- Automatically associated with each newly created workspace
- Reserved and cannot be deleted, but can be updated to customize the default network access rules for your account
The default-policy provides a baseline security configuration that ensures all workspaces have network access controls in place.
Note This resource can only be used with an account-level provider!
Example Usage
import * as pulumi from "@pulumi/pulumi";
import * as databricks from "@pulumi/databricks";
const exampleNetworkPolicy = new databricks.AccountNetworkPolicy("example_network_policy", {
networkPolicyId: "example-network-policy",
egress: {
networkAccess: {
restrictionMode: "RESTRICTED_ACCESS",
allowedInternetDestinations: [{
destination: "example.com",
internetDestinationType: "DNS_NAME",
}],
allowedStorageDestinations: [{
bucketName: "example-aws-cloud-storage",
region: "us-west-1",
storageDestinationType: "AWS_S3",
}],
policyEnforcement: {
enforcementMode: "ENFORCED",
},
},
},
});
import pulumi
import pulumi_databricks as databricks
example_network_policy = databricks.AccountNetworkPolicy("example_network_policy",
network_policy_id="example-network-policy",
egress={
"network_access": {
"restriction_mode": "RESTRICTED_ACCESS",
"allowed_internet_destinations": [{
"destination": "example.com",
"internet_destination_type": "DNS_NAME",
}],
"allowed_storage_destinations": [{
"bucket_name": "example-aws-cloud-storage",
"region": "us-west-1",
"storage_destination_type": "AWS_S3",
}],
"policy_enforcement": {
"enforcement_mode": "ENFORCED",
},
},
})
package main
import (
"github.com/pulumi/pulumi-databricks/sdk/go/databricks"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
_, err := databricks.NewAccountNetworkPolicy(ctx, "example_network_policy", &databricks.AccountNetworkPolicyArgs{
NetworkPolicyId: pulumi.String("example-network-policy"),
Egress: &databricks.AccountNetworkPolicyEgressArgs{
NetworkAccess: &databricks.AccountNetworkPolicyEgressNetworkAccessArgs{
RestrictionMode: pulumi.String("RESTRICTED_ACCESS"),
AllowedInternetDestinations: databricks.AccountNetworkPolicyEgressNetworkAccessAllowedInternetDestinationArray{
&databricks.AccountNetworkPolicyEgressNetworkAccessAllowedInternetDestinationArgs{
Destination: pulumi.String("example.com"),
InternetDestinationType: pulumi.String("DNS_NAME"),
},
},
AllowedStorageDestinations: databricks.AccountNetworkPolicyEgressNetworkAccessAllowedStorageDestinationArray{
&databricks.AccountNetworkPolicyEgressNetworkAccessAllowedStorageDestinationArgs{
BucketName: pulumi.String("example-aws-cloud-storage"),
Region: pulumi.String("us-west-1"),
StorageDestinationType: pulumi.String("AWS_S3"),
},
},
PolicyEnforcement: &databricks.AccountNetworkPolicyEgressNetworkAccessPolicyEnforcementArgs{
EnforcementMode: pulumi.String("ENFORCED"),
},
},
},
})
if err != nil {
return err
}
return nil
})
}
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using Databricks = Pulumi.Databricks;
return await Deployment.RunAsync(() =>
{
var exampleNetworkPolicy = new Databricks.AccountNetworkPolicy("example_network_policy", new()
{
NetworkPolicyId = "example-network-policy",
Egress = new Databricks.Inputs.AccountNetworkPolicyEgressArgs
{
NetworkAccess = new Databricks.Inputs.AccountNetworkPolicyEgressNetworkAccessArgs
{
RestrictionMode = "RESTRICTED_ACCESS",
AllowedInternetDestinations = new[]
{
new Databricks.Inputs.AccountNetworkPolicyEgressNetworkAccessAllowedInternetDestinationArgs
{
Destination = "example.com",
InternetDestinationType = "DNS_NAME",
},
},
AllowedStorageDestinations = new[]
{
new Databricks.Inputs.AccountNetworkPolicyEgressNetworkAccessAllowedStorageDestinationArgs
{
BucketName = "example-aws-cloud-storage",
Region = "us-west-1",
StorageDestinationType = "AWS_S3",
},
},
PolicyEnforcement = new Databricks.Inputs.AccountNetworkPolicyEgressNetworkAccessPolicyEnforcementArgs
{
EnforcementMode = "ENFORCED",
},
},
},
});
});
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.databricks.AccountNetworkPolicy;
import com.pulumi.databricks.AccountNetworkPolicyArgs;
import com.pulumi.databricks.inputs.AccountNetworkPolicyEgressArgs;
import com.pulumi.databricks.inputs.AccountNetworkPolicyEgressNetworkAccessArgs;
import com.pulumi.databricks.inputs.AccountNetworkPolicyEgressNetworkAccessPolicyEnforcementArgs;
import java.util.ArrayList;
import java.util.Arrays;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
var exampleNetworkPolicy = new AccountNetworkPolicy("exampleNetworkPolicy", AccountNetworkPolicyArgs.builder()
.networkPolicyId("example-network-policy")
.egress(AccountNetworkPolicyEgressArgs.builder()
.networkAccess(AccountNetworkPolicyEgressNetworkAccessArgs.builder()
.restrictionMode("RESTRICTED_ACCESS")
.allowedInternetDestinations(AccountNetworkPolicyEgressNetworkAccessAllowedInternetDestinationArgs.builder()
.destination("example.com")
.internetDestinationType("DNS_NAME")
.build())
.allowedStorageDestinations(AccountNetworkPolicyEgressNetworkAccessAllowedStorageDestinationArgs.builder()
.bucketName("example-aws-cloud-storage")
.region("us-west-1")
.storageDestinationType("AWS_S3")
.build())
.policyEnforcement(AccountNetworkPolicyEgressNetworkAccessPolicyEnforcementArgs.builder()
.enforcementMode("ENFORCED")
.build())
.build())
.build())
.build());
}
}
resources:
exampleNetworkPolicy:
type: databricks:AccountNetworkPolicy
name: example_network_policy
properties:
networkPolicyId: example-network-policy
egress:
networkAccess:
restrictionMode: RESTRICTED_ACCESS
allowedInternetDestinations:
- destination: example.com
internetDestinationType: DNS_NAME
allowedStorageDestinations:
- bucketName: example-aws-cloud-storage
region: us-west-1
storageDestinationType: AWS_S3
policyEnforcement:
enforcementMode: ENFORCED
Example coming soon!
Create AccountNetworkPolicy Resource
Resources are created with functions called constructors. To learn more about declaring and configuring resources, see Resources.
Constructor syntax
new AccountNetworkPolicy(name: string, args?: AccountNetworkPolicyArgs, opts?: CustomResourceOptions);@overload
def AccountNetworkPolicy(resource_name: str,
args: Optional[AccountNetworkPolicyArgs] = None,
opts: Optional[ResourceOptions] = None)
@overload
def AccountNetworkPolicy(resource_name: str,
opts: Optional[ResourceOptions] = None,
account_id: Optional[str] = None,
egress: Optional[AccountNetworkPolicyEgressArgs] = None,
ingress: Optional[AccountNetworkPolicyIngressArgs] = None,
ingress_dry_run: Optional[AccountNetworkPolicyIngressDryRunArgs] = None,
network_policy_id: Optional[str] = None)func NewAccountNetworkPolicy(ctx *Context, name string, args *AccountNetworkPolicyArgs, opts ...ResourceOption) (*AccountNetworkPolicy, error)public AccountNetworkPolicy(string name, AccountNetworkPolicyArgs? args = null, CustomResourceOptions? opts = null)
public AccountNetworkPolicy(String name, AccountNetworkPolicyArgs args)
public AccountNetworkPolicy(String name, AccountNetworkPolicyArgs args, CustomResourceOptions options)
type: databricks:AccountNetworkPolicy
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.
resource "databricks_accountnetworkpolicy" "name" {
# resource properties
}Parameters
- name string
- The unique name of the resource.
- args AccountNetworkPolicyArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- resource_name str
- The unique name of the resource.
- args AccountNetworkPolicyArgs
- The arguments to resource properties.
- opts ResourceOptions
- Bag of options to control resource's behavior.
- ctx Context
- Context object for the current deployment.
- name string
- The unique name of the resource.
- args AccountNetworkPolicyArgs
- The arguments to resource properties.
- opts ResourceOption
- Bag of options to control resource's behavior.
- name string
- The unique name of the resource.
- args AccountNetworkPolicyArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- name String
- The unique name of the resource.
- args AccountNetworkPolicyArgs
- The arguments to resource properties.
- options CustomResourceOptions
- Bag of options to control resource's behavior.
Constructor example
The following reference example uses placeholder values for all input properties.
var accountNetworkPolicyResource = new Databricks.AccountNetworkPolicy("accountNetworkPolicyResource", new()
{
AccountId = "string",
Egress = new Databricks.Inputs.AccountNetworkPolicyEgressArgs
{
NetworkAccess = new Databricks.Inputs.AccountNetworkPolicyEgressNetworkAccessArgs
{
RestrictionMode = "string",
AllowedInternetDestinations = new[]
{
new Databricks.Inputs.AccountNetworkPolicyEgressNetworkAccessAllowedInternetDestinationArgs
{
Destination = "string",
InternetDestinationType = "string",
},
},
AllowedStorageDestinations = new[]
{
new Databricks.Inputs.AccountNetworkPolicyEgressNetworkAccessAllowedStorageDestinationArgs
{
AzureStorageAccount = "string",
AzureStorageService = "string",
BucketName = "string",
Region = "string",
StorageDestinationType = "string",
},
},
BlockedInternetDestinations = new[]
{
new Databricks.Inputs.AccountNetworkPolicyEgressNetworkAccessBlockedInternetDestinationArgs
{
Destination = "string",
InternetDestinationType = "string",
},
},
PolicyEnforcement = new Databricks.Inputs.AccountNetworkPolicyEgressNetworkAccessPolicyEnforcementArgs
{
DryRunModeProductFilters = new[]
{
"string",
},
EnforcementMode = "string",
},
},
},
Ingress = new Databricks.Inputs.AccountNetworkPolicyIngressArgs
{
PrivateAccess = new Databricks.Inputs.AccountNetworkPolicyIngressPrivateAccessArgs
{
RestrictionMode = "string",
AllowRules = new[]
{
new Databricks.Inputs.AccountNetworkPolicyIngressPrivateAccessAllowRuleArgs
{
Authentication = new Databricks.Inputs.AccountNetworkPolicyIngressPrivateAccessAllowRuleAuthenticationArgs
{
Identities = new[]
{
new Databricks.Inputs.AccountNetworkPolicyIngressPrivateAccessAllowRuleAuthenticationIdentityArgs
{
PrincipalId = "string",
PrincipalType = "string",
},
},
IdentityType = "string",
},
Destination = new Databricks.Inputs.AccountNetworkPolicyIngressPrivateAccessAllowRuleDestinationArgs
{
AccountApi = new Databricks.Inputs.AccountNetworkPolicyIngressPrivateAccessAllowRuleDestinationAccountApiArgs
{
ScopeQualifier = "string",
Scopes = new[]
{
"string",
},
},
AccountDatabricksOne = new Databricks.Inputs.AccountNetworkPolicyIngressPrivateAccessAllowRuleDestinationAccountDatabricksOneArgs
{
AllDestinations = false,
},
AccountUi = new Databricks.Inputs.AccountNetworkPolicyIngressPrivateAccessAllowRuleDestinationAccountUiArgs
{
AllDestinations = false,
},
AllDestinations = false,
AppsRuntime = new Databricks.Inputs.AccountNetworkPolicyIngressPrivateAccessAllowRuleDestinationAppsRuntimeArgs
{
AllDestinations = false,
},
LakebaseRuntime = new Databricks.Inputs.AccountNetworkPolicyIngressPrivateAccessAllowRuleDestinationLakebaseRuntimeArgs
{
AllDestinations = false,
},
WorkspaceApi = new Databricks.Inputs.AccountNetworkPolicyIngressPrivateAccessAllowRuleDestinationWorkspaceApiArgs
{
ScopeQualifier = "string",
Scopes = new[]
{
"string",
},
},
WorkspaceUi = new Databricks.Inputs.AccountNetworkPolicyIngressPrivateAccessAllowRuleDestinationWorkspaceUiArgs
{
AllDestinations = false,
},
},
Label = "string",
Origin = new Databricks.Inputs.AccountNetworkPolicyIngressPrivateAccessAllowRuleOriginArgs
{
AllPrivateAccess = false,
AllRegisteredEndpoints = false,
AzureWorkspacePrivateLink = false,
Endpoints = new Databricks.Inputs.AccountNetworkPolicyIngressPrivateAccessAllowRuleOriginEndpointsArgs
{
EndpointIds = new[]
{
"string",
},
},
},
},
},
DenyRules = new[]
{
new Databricks.Inputs.AccountNetworkPolicyIngressPrivateAccessDenyRuleArgs
{
Authentication = new Databricks.Inputs.AccountNetworkPolicyIngressPrivateAccessDenyRuleAuthenticationArgs
{
Identities = new[]
{
new Databricks.Inputs.AccountNetworkPolicyIngressPrivateAccessDenyRuleAuthenticationIdentityArgs
{
PrincipalId = "string",
PrincipalType = "string",
},
},
IdentityType = "string",
},
Destination = new Databricks.Inputs.AccountNetworkPolicyIngressPrivateAccessDenyRuleDestinationArgs
{
AccountApi = new Databricks.Inputs.AccountNetworkPolicyIngressPrivateAccessDenyRuleDestinationAccountApiArgs
{
ScopeQualifier = "string",
Scopes = new[]
{
"string",
},
},
AccountDatabricksOne = new Databricks.Inputs.AccountNetworkPolicyIngressPrivateAccessDenyRuleDestinationAccountDatabricksOneArgs
{
AllDestinations = false,
},
AccountUi = new Databricks.Inputs.AccountNetworkPolicyIngressPrivateAccessDenyRuleDestinationAccountUiArgs
{
AllDestinations = false,
},
AllDestinations = false,
AppsRuntime = new Databricks.Inputs.AccountNetworkPolicyIngressPrivateAccessDenyRuleDestinationAppsRuntimeArgs
{
AllDestinations = false,
},
LakebaseRuntime = new Databricks.Inputs.AccountNetworkPolicyIngressPrivateAccessDenyRuleDestinationLakebaseRuntimeArgs
{
AllDestinations = false,
},
WorkspaceApi = new Databricks.Inputs.AccountNetworkPolicyIngressPrivateAccessDenyRuleDestinationWorkspaceApiArgs
{
ScopeQualifier = "string",
Scopes = new[]
{
"string",
},
},
WorkspaceUi = new Databricks.Inputs.AccountNetworkPolicyIngressPrivateAccessDenyRuleDestinationWorkspaceUiArgs
{
AllDestinations = false,
},
},
Label = "string",
Origin = new Databricks.Inputs.AccountNetworkPolicyIngressPrivateAccessDenyRuleOriginArgs
{
AllPrivateAccess = false,
AllRegisteredEndpoints = false,
AzureWorkspacePrivateLink = false,
Endpoints = new Databricks.Inputs.AccountNetworkPolicyIngressPrivateAccessDenyRuleOriginEndpointsArgs
{
EndpointIds = new[]
{
"string",
},
},
},
},
},
},
PublicAccess = new Databricks.Inputs.AccountNetworkPolicyIngressPublicAccessArgs
{
RestrictionMode = "string",
AllowRules = new[]
{
new Databricks.Inputs.AccountNetworkPolicyIngressPublicAccessAllowRuleArgs
{
Authentication = new Databricks.Inputs.AccountNetworkPolicyIngressPublicAccessAllowRuleAuthenticationArgs
{
Identities = new[]
{
new Databricks.Inputs.AccountNetworkPolicyIngressPublicAccessAllowRuleAuthenticationIdentityArgs
{
PrincipalId = "string",
PrincipalType = "string",
},
},
IdentityType = "string",
},
Destination = new Databricks.Inputs.AccountNetworkPolicyIngressPublicAccessAllowRuleDestinationArgs
{
AccountApi = new Databricks.Inputs.AccountNetworkPolicyIngressPublicAccessAllowRuleDestinationAccountApiArgs
{
ScopeQualifier = "string",
Scopes = new[]
{
"string",
},
},
AccountDatabricksOne = new Databricks.Inputs.AccountNetworkPolicyIngressPublicAccessAllowRuleDestinationAccountDatabricksOneArgs
{
AllDestinations = false,
},
AccountUi = new Databricks.Inputs.AccountNetworkPolicyIngressPublicAccessAllowRuleDestinationAccountUiArgs
{
AllDestinations = false,
},
AllDestinations = false,
AppsRuntime = new Databricks.Inputs.AccountNetworkPolicyIngressPublicAccessAllowRuleDestinationAppsRuntimeArgs
{
AllDestinations = false,
},
LakebaseRuntime = new Databricks.Inputs.AccountNetworkPolicyIngressPublicAccessAllowRuleDestinationLakebaseRuntimeArgs
{
AllDestinations = false,
},
WorkspaceApi = new Databricks.Inputs.AccountNetworkPolicyIngressPublicAccessAllowRuleDestinationWorkspaceApiArgs
{
ScopeQualifier = "string",
Scopes = new[]
{
"string",
},
},
WorkspaceUi = new Databricks.Inputs.AccountNetworkPolicyIngressPublicAccessAllowRuleDestinationWorkspaceUiArgs
{
AllDestinations = false,
},
},
Label = "string",
Origin = new Databricks.Inputs.AccountNetworkPolicyIngressPublicAccessAllowRuleOriginArgs
{
AllIpRanges = false,
ExcludedIpRanges = new Databricks.Inputs.AccountNetworkPolicyIngressPublicAccessAllowRuleOriginExcludedIpRangesArgs
{
IpRanges = new[]
{
"string",
},
},
IncludedIpRanges = new Databricks.Inputs.AccountNetworkPolicyIngressPublicAccessAllowRuleOriginIncludedIpRangesArgs
{
IpRanges = new[]
{
"string",
},
},
},
},
},
DenyRules = new[]
{
new Databricks.Inputs.AccountNetworkPolicyIngressPublicAccessDenyRuleArgs
{
Authentication = new Databricks.Inputs.AccountNetworkPolicyIngressPublicAccessDenyRuleAuthenticationArgs
{
Identities = new[]
{
new Databricks.Inputs.AccountNetworkPolicyIngressPublicAccessDenyRuleAuthenticationIdentityArgs
{
PrincipalId = "string",
PrincipalType = "string",
},
},
IdentityType = "string",
},
Destination = new Databricks.Inputs.AccountNetworkPolicyIngressPublicAccessDenyRuleDestinationArgs
{
AccountApi = new Databricks.Inputs.AccountNetworkPolicyIngressPublicAccessDenyRuleDestinationAccountApiArgs
{
ScopeQualifier = "string",
Scopes = new[]
{
"string",
},
},
AccountDatabricksOne = new Databricks.Inputs.AccountNetworkPolicyIngressPublicAccessDenyRuleDestinationAccountDatabricksOneArgs
{
AllDestinations = false,
},
AccountUi = new Databricks.Inputs.AccountNetworkPolicyIngressPublicAccessDenyRuleDestinationAccountUiArgs
{
AllDestinations = false,
},
AllDestinations = false,
AppsRuntime = new Databricks.Inputs.AccountNetworkPolicyIngressPublicAccessDenyRuleDestinationAppsRuntimeArgs
{
AllDestinations = false,
},
LakebaseRuntime = new Databricks.Inputs.AccountNetworkPolicyIngressPublicAccessDenyRuleDestinationLakebaseRuntimeArgs
{
AllDestinations = false,
},
WorkspaceApi = new Databricks.Inputs.AccountNetworkPolicyIngressPublicAccessDenyRuleDestinationWorkspaceApiArgs
{
ScopeQualifier = "string",
Scopes = new[]
{
"string",
},
},
WorkspaceUi = new Databricks.Inputs.AccountNetworkPolicyIngressPublicAccessDenyRuleDestinationWorkspaceUiArgs
{
AllDestinations = false,
},
},
Label = "string",
Origin = new Databricks.Inputs.AccountNetworkPolicyIngressPublicAccessDenyRuleOriginArgs
{
AllIpRanges = false,
ExcludedIpRanges = new Databricks.Inputs.AccountNetworkPolicyIngressPublicAccessDenyRuleOriginExcludedIpRangesArgs
{
IpRanges = new[]
{
"string",
},
},
IncludedIpRanges = new Databricks.Inputs.AccountNetworkPolicyIngressPublicAccessDenyRuleOriginIncludedIpRangesArgs
{
IpRanges = new[]
{
"string",
},
},
},
},
},
},
},
IngressDryRun = new Databricks.Inputs.AccountNetworkPolicyIngressDryRunArgs
{
PrivateAccess = new Databricks.Inputs.AccountNetworkPolicyIngressDryRunPrivateAccessArgs
{
RestrictionMode = "string",
AllowRules = new[]
{
new Databricks.Inputs.AccountNetworkPolicyIngressDryRunPrivateAccessAllowRuleArgs
{
Authentication = new Databricks.Inputs.AccountNetworkPolicyIngressDryRunPrivateAccessAllowRuleAuthenticationArgs
{
Identities = new[]
{
new Databricks.Inputs.AccountNetworkPolicyIngressDryRunPrivateAccessAllowRuleAuthenticationIdentityArgs
{
PrincipalId = "string",
PrincipalType = "string",
},
},
IdentityType = "string",
},
Destination = new Databricks.Inputs.AccountNetworkPolicyIngressDryRunPrivateAccessAllowRuleDestinationArgs
{
AccountApi = new Databricks.Inputs.AccountNetworkPolicyIngressDryRunPrivateAccessAllowRuleDestinationAccountApiArgs
{
ScopeQualifier = "string",
Scopes = new[]
{
"string",
},
},
AccountDatabricksOne = new Databricks.Inputs.AccountNetworkPolicyIngressDryRunPrivateAccessAllowRuleDestinationAccountDatabricksOneArgs
{
AllDestinations = false,
},
AccountUi = new Databricks.Inputs.AccountNetworkPolicyIngressDryRunPrivateAccessAllowRuleDestinationAccountUiArgs
{
AllDestinations = false,
},
AllDestinations = false,
AppsRuntime = new Databricks.Inputs.AccountNetworkPolicyIngressDryRunPrivateAccessAllowRuleDestinationAppsRuntimeArgs
{
AllDestinations = false,
},
LakebaseRuntime = new Databricks.Inputs.AccountNetworkPolicyIngressDryRunPrivateAccessAllowRuleDestinationLakebaseRuntimeArgs
{
AllDestinations = false,
},
WorkspaceApi = new Databricks.Inputs.AccountNetworkPolicyIngressDryRunPrivateAccessAllowRuleDestinationWorkspaceApiArgs
{
ScopeQualifier = "string",
Scopes = new[]
{
"string",
},
},
WorkspaceUi = new Databricks.Inputs.AccountNetworkPolicyIngressDryRunPrivateAccessAllowRuleDestinationWorkspaceUiArgs
{
AllDestinations = false,
},
},
Label = "string",
Origin = new Databricks.Inputs.AccountNetworkPolicyIngressDryRunPrivateAccessAllowRuleOriginArgs
{
AllPrivateAccess = false,
AllRegisteredEndpoints = false,
AzureWorkspacePrivateLink = false,
Endpoints = new Databricks.Inputs.AccountNetworkPolicyIngressDryRunPrivateAccessAllowRuleOriginEndpointsArgs
{
EndpointIds = new[]
{
"string",
},
},
},
},
},
DenyRules = new[]
{
new Databricks.Inputs.AccountNetworkPolicyIngressDryRunPrivateAccessDenyRuleArgs
{
Authentication = new Databricks.Inputs.AccountNetworkPolicyIngressDryRunPrivateAccessDenyRuleAuthenticationArgs
{
Identities = new[]
{
new Databricks.Inputs.AccountNetworkPolicyIngressDryRunPrivateAccessDenyRuleAuthenticationIdentityArgs
{
PrincipalId = "string",
PrincipalType = "string",
},
},
IdentityType = "string",
},
Destination = new Databricks.Inputs.AccountNetworkPolicyIngressDryRunPrivateAccessDenyRuleDestinationArgs
{
AccountApi = new Databricks.Inputs.AccountNetworkPolicyIngressDryRunPrivateAccessDenyRuleDestinationAccountApiArgs
{
ScopeQualifier = "string",
Scopes = new[]
{
"string",
},
},
AccountDatabricksOne = new Databricks.Inputs.AccountNetworkPolicyIngressDryRunPrivateAccessDenyRuleDestinationAccountDatabricksOneArgs
{
AllDestinations = false,
},
AccountUi = new Databricks.Inputs.AccountNetworkPolicyIngressDryRunPrivateAccessDenyRuleDestinationAccountUiArgs
{
AllDestinations = false,
},
AllDestinations = false,
AppsRuntime = new Databricks.Inputs.AccountNetworkPolicyIngressDryRunPrivateAccessDenyRuleDestinationAppsRuntimeArgs
{
AllDestinations = false,
},
LakebaseRuntime = new Databricks.Inputs.AccountNetworkPolicyIngressDryRunPrivateAccessDenyRuleDestinationLakebaseRuntimeArgs
{
AllDestinations = false,
},
WorkspaceApi = new Databricks.Inputs.AccountNetworkPolicyIngressDryRunPrivateAccessDenyRuleDestinationWorkspaceApiArgs
{
ScopeQualifier = "string",
Scopes = new[]
{
"string",
},
},
WorkspaceUi = new Databricks.Inputs.AccountNetworkPolicyIngressDryRunPrivateAccessDenyRuleDestinationWorkspaceUiArgs
{
AllDestinations = false,
},
},
Label = "string",
Origin = new Databricks.Inputs.AccountNetworkPolicyIngressDryRunPrivateAccessDenyRuleOriginArgs
{
AllPrivateAccess = false,
AllRegisteredEndpoints = false,
AzureWorkspacePrivateLink = false,
Endpoints = new Databricks.Inputs.AccountNetworkPolicyIngressDryRunPrivateAccessDenyRuleOriginEndpointsArgs
{
EndpointIds = new[]
{
"string",
},
},
},
},
},
},
PublicAccess = new Databricks.Inputs.AccountNetworkPolicyIngressDryRunPublicAccessArgs
{
RestrictionMode = "string",
AllowRules = new[]
{
new Databricks.Inputs.AccountNetworkPolicyIngressDryRunPublicAccessAllowRuleArgs
{
Authentication = new Databricks.Inputs.AccountNetworkPolicyIngressDryRunPublicAccessAllowRuleAuthenticationArgs
{
Identities = new[]
{
new Databricks.Inputs.AccountNetworkPolicyIngressDryRunPublicAccessAllowRuleAuthenticationIdentityArgs
{
PrincipalId = "string",
PrincipalType = "string",
},
},
IdentityType = "string",
},
Destination = new Databricks.Inputs.AccountNetworkPolicyIngressDryRunPublicAccessAllowRuleDestinationArgs
{
AccountApi = new Databricks.Inputs.AccountNetworkPolicyIngressDryRunPublicAccessAllowRuleDestinationAccountApiArgs
{
ScopeQualifier = "string",
Scopes = new[]
{
"string",
},
},
AccountDatabricksOne = new Databricks.Inputs.AccountNetworkPolicyIngressDryRunPublicAccessAllowRuleDestinationAccountDatabricksOneArgs
{
AllDestinations = false,
},
AccountUi = new Databricks.Inputs.AccountNetworkPolicyIngressDryRunPublicAccessAllowRuleDestinationAccountUiArgs
{
AllDestinations = false,
},
AllDestinations = false,
AppsRuntime = new Databricks.Inputs.AccountNetworkPolicyIngressDryRunPublicAccessAllowRuleDestinationAppsRuntimeArgs
{
AllDestinations = false,
},
LakebaseRuntime = new Databricks.Inputs.AccountNetworkPolicyIngressDryRunPublicAccessAllowRuleDestinationLakebaseRuntimeArgs
{
AllDestinations = false,
},
WorkspaceApi = new Databricks.Inputs.AccountNetworkPolicyIngressDryRunPublicAccessAllowRuleDestinationWorkspaceApiArgs
{
ScopeQualifier = "string",
Scopes = new[]
{
"string",
},
},
WorkspaceUi = new Databricks.Inputs.AccountNetworkPolicyIngressDryRunPublicAccessAllowRuleDestinationWorkspaceUiArgs
{
AllDestinations = false,
},
},
Label = "string",
Origin = new Databricks.Inputs.AccountNetworkPolicyIngressDryRunPublicAccessAllowRuleOriginArgs
{
AllIpRanges = false,
ExcludedIpRanges = new Databricks.Inputs.AccountNetworkPolicyIngressDryRunPublicAccessAllowRuleOriginExcludedIpRangesArgs
{
IpRanges = new[]
{
"string",
},
},
IncludedIpRanges = new Databricks.Inputs.AccountNetworkPolicyIngressDryRunPublicAccessAllowRuleOriginIncludedIpRangesArgs
{
IpRanges = new[]
{
"string",
},
},
},
},
},
DenyRules = new[]
{
new Databricks.Inputs.AccountNetworkPolicyIngressDryRunPublicAccessDenyRuleArgs
{
Authentication = new Databricks.Inputs.AccountNetworkPolicyIngressDryRunPublicAccessDenyRuleAuthenticationArgs
{
Identities = new[]
{
new Databricks.Inputs.AccountNetworkPolicyIngressDryRunPublicAccessDenyRuleAuthenticationIdentityArgs
{
PrincipalId = "string",
PrincipalType = "string",
},
},
IdentityType = "string",
},
Destination = new Databricks.Inputs.AccountNetworkPolicyIngressDryRunPublicAccessDenyRuleDestinationArgs
{
AccountApi = new Databricks.Inputs.AccountNetworkPolicyIngressDryRunPublicAccessDenyRuleDestinationAccountApiArgs
{
ScopeQualifier = "string",
Scopes = new[]
{
"string",
},
},
AccountDatabricksOne = new Databricks.Inputs.AccountNetworkPolicyIngressDryRunPublicAccessDenyRuleDestinationAccountDatabricksOneArgs
{
AllDestinations = false,
},
AccountUi = new Databricks.Inputs.AccountNetworkPolicyIngressDryRunPublicAccessDenyRuleDestinationAccountUiArgs
{
AllDestinations = false,
},
AllDestinations = false,
AppsRuntime = new Databricks.Inputs.AccountNetworkPolicyIngressDryRunPublicAccessDenyRuleDestinationAppsRuntimeArgs
{
AllDestinations = false,
},
LakebaseRuntime = new Databricks.Inputs.AccountNetworkPolicyIngressDryRunPublicAccessDenyRuleDestinationLakebaseRuntimeArgs
{
AllDestinations = false,
},
WorkspaceApi = new Databricks.Inputs.AccountNetworkPolicyIngressDryRunPublicAccessDenyRuleDestinationWorkspaceApiArgs
{
ScopeQualifier = "string",
Scopes = new[]
{
"string",
},
},
WorkspaceUi = new Databricks.Inputs.AccountNetworkPolicyIngressDryRunPublicAccessDenyRuleDestinationWorkspaceUiArgs
{
AllDestinations = false,
},
},
Label = "string",
Origin = new Databricks.Inputs.AccountNetworkPolicyIngressDryRunPublicAccessDenyRuleOriginArgs
{
AllIpRanges = false,
ExcludedIpRanges = new Databricks.Inputs.AccountNetworkPolicyIngressDryRunPublicAccessDenyRuleOriginExcludedIpRangesArgs
{
IpRanges = new[]
{
"string",
},
},
IncludedIpRanges = new Databricks.Inputs.AccountNetworkPolicyIngressDryRunPublicAccessDenyRuleOriginIncludedIpRangesArgs
{
IpRanges = new[]
{
"string",
},
},
},
},
},
},
},
NetworkPolicyId = "string",
});
example, err := databricks.NewAccountNetworkPolicy(ctx, "accountNetworkPolicyResource", &databricks.AccountNetworkPolicyArgs{
AccountId: pulumi.String("string"),
Egress: &databricks.AccountNetworkPolicyEgressArgs{
NetworkAccess: &databricks.AccountNetworkPolicyEgressNetworkAccessArgs{
RestrictionMode: pulumi.String("string"),
AllowedInternetDestinations: databricks.AccountNetworkPolicyEgressNetworkAccessAllowedInternetDestinationArray{
&databricks.AccountNetworkPolicyEgressNetworkAccessAllowedInternetDestinationArgs{
Destination: pulumi.String("string"),
InternetDestinationType: pulumi.String("string"),
},
},
AllowedStorageDestinations: databricks.AccountNetworkPolicyEgressNetworkAccessAllowedStorageDestinationArray{
&databricks.AccountNetworkPolicyEgressNetworkAccessAllowedStorageDestinationArgs{
AzureStorageAccount: pulumi.String("string"),
AzureStorageService: pulumi.String("string"),
BucketName: pulumi.String("string"),
Region: pulumi.String("string"),
StorageDestinationType: pulumi.String("string"),
},
},
BlockedInternetDestinations: databricks.AccountNetworkPolicyEgressNetworkAccessBlockedInternetDestinationArray{
&databricks.AccountNetworkPolicyEgressNetworkAccessBlockedInternetDestinationArgs{
Destination: pulumi.String("string"),
InternetDestinationType: pulumi.String("string"),
},
},
PolicyEnforcement: &databricks.AccountNetworkPolicyEgressNetworkAccessPolicyEnforcementArgs{
DryRunModeProductFilters: pulumi.StringArray{
pulumi.String("string"),
},
EnforcementMode: pulumi.String("string"),
},
},
},
Ingress: &databricks.AccountNetworkPolicyIngressArgs{
PrivateAccess: &databricks.AccountNetworkPolicyIngressPrivateAccessArgs{
RestrictionMode: pulumi.String("string"),
AllowRules: databricks.AccountNetworkPolicyIngressPrivateAccessAllowRuleArray{
&databricks.AccountNetworkPolicyIngressPrivateAccessAllowRuleArgs{
Authentication: &databricks.AccountNetworkPolicyIngressPrivateAccessAllowRuleAuthenticationArgs{
Identities: databricks.AccountNetworkPolicyIngressPrivateAccessAllowRuleAuthenticationIdentityArray{
&databricks.AccountNetworkPolicyIngressPrivateAccessAllowRuleAuthenticationIdentityArgs{
PrincipalId: pulumi.String("string"),
PrincipalType: pulumi.String("string"),
},
},
IdentityType: pulumi.String("string"),
},
Destination: &databricks.AccountNetworkPolicyIngressPrivateAccessAllowRuleDestinationArgs{
AccountApi: &databricks.AccountNetworkPolicyIngressPrivateAccessAllowRuleDestinationAccountApiArgs{
ScopeQualifier: pulumi.String("string"),
Scopes: pulumi.StringArray{
pulumi.String("string"),
},
},
AccountDatabricksOne: &databricks.AccountNetworkPolicyIngressPrivateAccessAllowRuleDestinationAccountDatabricksOneArgs{
AllDestinations: pulumi.Bool(false),
},
AccountUi: &databricks.AccountNetworkPolicyIngressPrivateAccessAllowRuleDestinationAccountUiArgs{
AllDestinations: pulumi.Bool(false),
},
AllDestinations: pulumi.Bool(false),
AppsRuntime: &databricks.AccountNetworkPolicyIngressPrivateAccessAllowRuleDestinationAppsRuntimeArgs{
AllDestinations: pulumi.Bool(false),
},
LakebaseRuntime: &databricks.AccountNetworkPolicyIngressPrivateAccessAllowRuleDestinationLakebaseRuntimeArgs{
AllDestinations: pulumi.Bool(false),
},
WorkspaceApi: &databricks.AccountNetworkPolicyIngressPrivateAccessAllowRuleDestinationWorkspaceApiArgs{
ScopeQualifier: pulumi.String("string"),
Scopes: pulumi.StringArray{
pulumi.String("string"),
},
},
WorkspaceUi: &databricks.AccountNetworkPolicyIngressPrivateAccessAllowRuleDestinationWorkspaceUiArgs{
AllDestinations: pulumi.Bool(false),
},
},
Label: pulumi.String("string"),
Origin: &databricks.AccountNetworkPolicyIngressPrivateAccessAllowRuleOriginArgs{
AllPrivateAccess: pulumi.Bool(false),
AllRegisteredEndpoints: pulumi.Bool(false),
AzureWorkspacePrivateLink: pulumi.Bool(false),
Endpoints: &databricks.AccountNetworkPolicyIngressPrivateAccessAllowRuleOriginEndpointsArgs{
EndpointIds: pulumi.StringArray{
pulumi.String("string"),
},
},
},
},
},
DenyRules: databricks.AccountNetworkPolicyIngressPrivateAccessDenyRuleArray{
&databricks.AccountNetworkPolicyIngressPrivateAccessDenyRuleArgs{
Authentication: &databricks.AccountNetworkPolicyIngressPrivateAccessDenyRuleAuthenticationArgs{
Identities: databricks.AccountNetworkPolicyIngressPrivateAccessDenyRuleAuthenticationIdentityArray{
&databricks.AccountNetworkPolicyIngressPrivateAccessDenyRuleAuthenticationIdentityArgs{
PrincipalId: pulumi.String("string"),
PrincipalType: pulumi.String("string"),
},
},
IdentityType: pulumi.String("string"),
},
Destination: &databricks.AccountNetworkPolicyIngressPrivateAccessDenyRuleDestinationArgs{
AccountApi: &databricks.AccountNetworkPolicyIngressPrivateAccessDenyRuleDestinationAccountApiArgs{
ScopeQualifier: pulumi.String("string"),
Scopes: pulumi.StringArray{
pulumi.String("string"),
},
},
AccountDatabricksOne: &databricks.AccountNetworkPolicyIngressPrivateAccessDenyRuleDestinationAccountDatabricksOneArgs{
AllDestinations: pulumi.Bool(false),
},
AccountUi: &databricks.AccountNetworkPolicyIngressPrivateAccessDenyRuleDestinationAccountUiArgs{
AllDestinations: pulumi.Bool(false),
},
AllDestinations: pulumi.Bool(false),
AppsRuntime: &databricks.AccountNetworkPolicyIngressPrivateAccessDenyRuleDestinationAppsRuntimeArgs{
AllDestinations: pulumi.Bool(false),
},
LakebaseRuntime: &databricks.AccountNetworkPolicyIngressPrivateAccessDenyRuleDestinationLakebaseRuntimeArgs{
AllDestinations: pulumi.Bool(false),
},
WorkspaceApi: &databricks.AccountNetworkPolicyIngressPrivateAccessDenyRuleDestinationWorkspaceApiArgs{
ScopeQualifier: pulumi.String("string"),
Scopes: pulumi.StringArray{
pulumi.String("string"),
},
},
WorkspaceUi: &databricks.AccountNetworkPolicyIngressPrivateAccessDenyRuleDestinationWorkspaceUiArgs{
AllDestinations: pulumi.Bool(false),
},
},
Label: pulumi.String("string"),
Origin: &databricks.AccountNetworkPolicyIngressPrivateAccessDenyRuleOriginArgs{
AllPrivateAccess: pulumi.Bool(false),
AllRegisteredEndpoints: pulumi.Bool(false),
AzureWorkspacePrivateLink: pulumi.Bool(false),
Endpoints: &databricks.AccountNetworkPolicyIngressPrivateAccessDenyRuleOriginEndpointsArgs{
EndpointIds: pulumi.StringArray{
pulumi.String("string"),
},
},
},
},
},
},
PublicAccess: &databricks.AccountNetworkPolicyIngressPublicAccessArgs{
RestrictionMode: pulumi.String("string"),
AllowRules: databricks.AccountNetworkPolicyIngressPublicAccessAllowRuleArray{
&databricks.AccountNetworkPolicyIngressPublicAccessAllowRuleArgs{
Authentication: &databricks.AccountNetworkPolicyIngressPublicAccessAllowRuleAuthenticationArgs{
Identities: databricks.AccountNetworkPolicyIngressPublicAccessAllowRuleAuthenticationIdentityArray{
&databricks.AccountNetworkPolicyIngressPublicAccessAllowRuleAuthenticationIdentityArgs{
PrincipalId: pulumi.String("string"),
PrincipalType: pulumi.String("string"),
},
},
IdentityType: pulumi.String("string"),
},
Destination: &databricks.AccountNetworkPolicyIngressPublicAccessAllowRuleDestinationArgs{
AccountApi: &databricks.AccountNetworkPolicyIngressPublicAccessAllowRuleDestinationAccountApiArgs{
ScopeQualifier: pulumi.String("string"),
Scopes: pulumi.StringArray{
pulumi.String("string"),
},
},
AccountDatabricksOne: &databricks.AccountNetworkPolicyIngressPublicAccessAllowRuleDestinationAccountDatabricksOneArgs{
AllDestinations: pulumi.Bool(false),
},
AccountUi: &databricks.AccountNetworkPolicyIngressPublicAccessAllowRuleDestinationAccountUiArgs{
AllDestinations: pulumi.Bool(false),
},
AllDestinations: pulumi.Bool(false),
AppsRuntime: &databricks.AccountNetworkPolicyIngressPublicAccessAllowRuleDestinationAppsRuntimeArgs{
AllDestinations: pulumi.Bool(false),
},
LakebaseRuntime: &databricks.AccountNetworkPolicyIngressPublicAccessAllowRuleDestinationLakebaseRuntimeArgs{
AllDestinations: pulumi.Bool(false),
},
WorkspaceApi: &databricks.AccountNetworkPolicyIngressPublicAccessAllowRuleDestinationWorkspaceApiArgs{
ScopeQualifier: pulumi.String("string"),
Scopes: pulumi.StringArray{
pulumi.String("string"),
},
},
WorkspaceUi: &databricks.AccountNetworkPolicyIngressPublicAccessAllowRuleDestinationWorkspaceUiArgs{
AllDestinations: pulumi.Bool(false),
},
},
Label: pulumi.String("string"),
Origin: &databricks.AccountNetworkPolicyIngressPublicAccessAllowRuleOriginArgs{
AllIpRanges: pulumi.Bool(false),
ExcludedIpRanges: &databricks.AccountNetworkPolicyIngressPublicAccessAllowRuleOriginExcludedIpRangesArgs{
IpRanges: pulumi.StringArray{
pulumi.String("string"),
},
},
IncludedIpRanges: &databricks.AccountNetworkPolicyIngressPublicAccessAllowRuleOriginIncludedIpRangesArgs{
IpRanges: pulumi.StringArray{
pulumi.String("string"),
},
},
},
},
},
DenyRules: databricks.AccountNetworkPolicyIngressPublicAccessDenyRuleArray{
&databricks.AccountNetworkPolicyIngressPublicAccessDenyRuleArgs{
Authentication: &databricks.AccountNetworkPolicyIngressPublicAccessDenyRuleAuthenticationArgs{
Identities: databricks.AccountNetworkPolicyIngressPublicAccessDenyRuleAuthenticationIdentityArray{
&databricks.AccountNetworkPolicyIngressPublicAccessDenyRuleAuthenticationIdentityArgs{
PrincipalId: pulumi.String("string"),
PrincipalType: pulumi.String("string"),
},
},
IdentityType: pulumi.String("string"),
},
Destination: &databricks.AccountNetworkPolicyIngressPublicAccessDenyRuleDestinationArgs{
AccountApi: &databricks.AccountNetworkPolicyIngressPublicAccessDenyRuleDestinationAccountApiArgs{
ScopeQualifier: pulumi.String("string"),
Scopes: pulumi.StringArray{
pulumi.String("string"),
},
},
AccountDatabricksOne: &databricks.AccountNetworkPolicyIngressPublicAccessDenyRuleDestinationAccountDatabricksOneArgs{
AllDestinations: pulumi.Bool(false),
},
AccountUi: &databricks.AccountNetworkPolicyIngressPublicAccessDenyRuleDestinationAccountUiArgs{
AllDestinations: pulumi.Bool(false),
},
AllDestinations: pulumi.Bool(false),
AppsRuntime: &databricks.AccountNetworkPolicyIngressPublicAccessDenyRuleDestinationAppsRuntimeArgs{
AllDestinations: pulumi.Bool(false),
},
LakebaseRuntime: &databricks.AccountNetworkPolicyIngressPublicAccessDenyRuleDestinationLakebaseRuntimeArgs{
AllDestinations: pulumi.Bool(false),
},
WorkspaceApi: &databricks.AccountNetworkPolicyIngressPublicAccessDenyRuleDestinationWorkspaceApiArgs{
ScopeQualifier: pulumi.String("string"),
Scopes: pulumi.StringArray{
pulumi.String("string"),
},
},
WorkspaceUi: &databricks.AccountNetworkPolicyIngressPublicAccessDenyRuleDestinationWorkspaceUiArgs{
AllDestinations: pulumi.Bool(false),
},
},
Label: pulumi.String("string"),
Origin: &databricks.AccountNetworkPolicyIngressPublicAccessDenyRuleOriginArgs{
AllIpRanges: pulumi.Bool(false),
ExcludedIpRanges: &databricks.AccountNetworkPolicyIngressPublicAccessDenyRuleOriginExcludedIpRangesArgs{
IpRanges: pulumi.StringArray{
pulumi.String("string"),
},
},
IncludedIpRanges: &databricks.AccountNetworkPolicyIngressPublicAccessDenyRuleOriginIncludedIpRangesArgs{
IpRanges: pulumi.StringArray{
pulumi.String("string"),
},
},
},
},
},
},
},
IngressDryRun: &databricks.AccountNetworkPolicyIngressDryRunArgs{
PrivateAccess: &databricks.AccountNetworkPolicyIngressDryRunPrivateAccessArgs{
RestrictionMode: pulumi.String("string"),
AllowRules: databricks.AccountNetworkPolicyIngressDryRunPrivateAccessAllowRuleArray{
&databricks.AccountNetworkPolicyIngressDryRunPrivateAccessAllowRuleArgs{
Authentication: &databricks.AccountNetworkPolicyIngressDryRunPrivateAccessAllowRuleAuthenticationArgs{
Identities: databricks.AccountNetworkPolicyIngressDryRunPrivateAccessAllowRuleAuthenticationIdentityArray{
&databricks.AccountNetworkPolicyIngressDryRunPrivateAccessAllowRuleAuthenticationIdentityArgs{
PrincipalId: pulumi.String("string"),
PrincipalType: pulumi.String("string"),
},
},
IdentityType: pulumi.String("string"),
},
Destination: &databricks.AccountNetworkPolicyIngressDryRunPrivateAccessAllowRuleDestinationArgs{
AccountApi: &databricks.AccountNetworkPolicyIngressDryRunPrivateAccessAllowRuleDestinationAccountApiArgs{
ScopeQualifier: pulumi.String("string"),
Scopes: pulumi.StringArray{
pulumi.String("string"),
},
},
AccountDatabricksOne: &databricks.AccountNetworkPolicyIngressDryRunPrivateAccessAllowRuleDestinationAccountDatabricksOneArgs{
AllDestinations: pulumi.Bool(false),
},
AccountUi: &databricks.AccountNetworkPolicyIngressDryRunPrivateAccessAllowRuleDestinationAccountUiArgs{
AllDestinations: pulumi.Bool(false),
},
AllDestinations: pulumi.Bool(false),
AppsRuntime: &databricks.AccountNetworkPolicyIngressDryRunPrivateAccessAllowRuleDestinationAppsRuntimeArgs{
AllDestinations: pulumi.Bool(false),
},
LakebaseRuntime: &databricks.AccountNetworkPolicyIngressDryRunPrivateAccessAllowRuleDestinationLakebaseRuntimeArgs{
AllDestinations: pulumi.Bool(false),
},
WorkspaceApi: &databricks.AccountNetworkPolicyIngressDryRunPrivateAccessAllowRuleDestinationWorkspaceApiArgs{
ScopeQualifier: pulumi.String("string"),
Scopes: pulumi.StringArray{
pulumi.String("string"),
},
},
WorkspaceUi: &databricks.AccountNetworkPolicyIngressDryRunPrivateAccessAllowRuleDestinationWorkspaceUiArgs{
AllDestinations: pulumi.Bool(false),
},
},
Label: pulumi.String("string"),
Origin: &databricks.AccountNetworkPolicyIngressDryRunPrivateAccessAllowRuleOriginArgs{
AllPrivateAccess: pulumi.Bool(false),
AllRegisteredEndpoints: pulumi.Bool(false),
AzureWorkspacePrivateLink: pulumi.Bool(false),
Endpoints: &databricks.AccountNetworkPolicyIngressDryRunPrivateAccessAllowRuleOriginEndpointsArgs{
EndpointIds: pulumi.StringArray{
pulumi.String("string"),
},
},
},
},
},
DenyRules: databricks.AccountNetworkPolicyIngressDryRunPrivateAccessDenyRuleArray{
&databricks.AccountNetworkPolicyIngressDryRunPrivateAccessDenyRuleArgs{
Authentication: &databricks.AccountNetworkPolicyIngressDryRunPrivateAccessDenyRuleAuthenticationArgs{
Identities: databricks.AccountNetworkPolicyIngressDryRunPrivateAccessDenyRuleAuthenticationIdentityArray{
&databricks.AccountNetworkPolicyIngressDryRunPrivateAccessDenyRuleAuthenticationIdentityArgs{
PrincipalId: pulumi.String("string"),
PrincipalType: pulumi.String("string"),
},
},
IdentityType: pulumi.String("string"),
},
Destination: &databricks.AccountNetworkPolicyIngressDryRunPrivateAccessDenyRuleDestinationArgs{
AccountApi: &databricks.AccountNetworkPolicyIngressDryRunPrivateAccessDenyRuleDestinationAccountApiArgs{
ScopeQualifier: pulumi.String("string"),
Scopes: pulumi.StringArray{
pulumi.String("string"),
},
},
AccountDatabricksOne: &databricks.AccountNetworkPolicyIngressDryRunPrivateAccessDenyRuleDestinationAccountDatabricksOneArgs{
AllDestinations: pulumi.Bool(false),
},
AccountUi: &databricks.AccountNetworkPolicyIngressDryRunPrivateAccessDenyRuleDestinationAccountUiArgs{
AllDestinations: pulumi.Bool(false),
},
AllDestinations: pulumi.Bool(false),
AppsRuntime: &databricks.AccountNetworkPolicyIngressDryRunPrivateAccessDenyRuleDestinationAppsRuntimeArgs{
AllDestinations: pulumi.Bool(false),
},
LakebaseRuntime: &databricks.AccountNetworkPolicyIngressDryRunPrivateAccessDenyRuleDestinationLakebaseRuntimeArgs{
AllDestinations: pulumi.Bool(false),
},
WorkspaceApi: &databricks.AccountNetworkPolicyIngressDryRunPrivateAccessDenyRuleDestinationWorkspaceApiArgs{
ScopeQualifier: pulumi.String("string"),
Scopes: pulumi.StringArray{
pulumi.String("string"),
},
},
WorkspaceUi: &databricks.AccountNetworkPolicyIngressDryRunPrivateAccessDenyRuleDestinationWorkspaceUiArgs{
AllDestinations: pulumi.Bool(false),
},
},
Label: pulumi.String("string"),
Origin: &databricks.AccountNetworkPolicyIngressDryRunPrivateAccessDenyRuleOriginArgs{
AllPrivateAccess: pulumi.Bool(false),
AllRegisteredEndpoints: pulumi.Bool(false),
AzureWorkspacePrivateLink: pulumi.Bool(false),
Endpoints: &databricks.AccountNetworkPolicyIngressDryRunPrivateAccessDenyRuleOriginEndpointsArgs{
EndpointIds: pulumi.StringArray{
pulumi.String("string"),
},
},
},
},
},
},
PublicAccess: &databricks.AccountNetworkPolicyIngressDryRunPublicAccessArgs{
RestrictionMode: pulumi.String("string"),
AllowRules: databricks.AccountNetworkPolicyIngressDryRunPublicAccessAllowRuleArray{
&databricks.AccountNetworkPolicyIngressDryRunPublicAccessAllowRuleArgs{
Authentication: &databricks.AccountNetworkPolicyIngressDryRunPublicAccessAllowRuleAuthenticationArgs{
Identities: databricks.AccountNetworkPolicyIngressDryRunPublicAccessAllowRuleAuthenticationIdentityArray{
&databricks.AccountNetworkPolicyIngressDryRunPublicAccessAllowRuleAuthenticationIdentityArgs{
PrincipalId: pulumi.String("string"),
PrincipalType: pulumi.String("string"),
},
},
IdentityType: pulumi.String("string"),
},
Destination: &databricks.AccountNetworkPolicyIngressDryRunPublicAccessAllowRuleDestinationArgs{
AccountApi: &databricks.AccountNetworkPolicyIngressDryRunPublicAccessAllowRuleDestinationAccountApiArgs{
ScopeQualifier: pulumi.String("string"),
Scopes: pulumi.StringArray{
pulumi.String("string"),
},
},
AccountDatabricksOne: &databricks.AccountNetworkPolicyIngressDryRunPublicAccessAllowRuleDestinationAccountDatabricksOneArgs{
AllDestinations: pulumi.Bool(false),
},
AccountUi: &databricks.AccountNetworkPolicyIngressDryRunPublicAccessAllowRuleDestinationAccountUiArgs{
AllDestinations: pulumi.Bool(false),
},
AllDestinations: pulumi.Bool(false),
AppsRuntime: &databricks.AccountNetworkPolicyIngressDryRunPublicAccessAllowRuleDestinationAppsRuntimeArgs{
AllDestinations: pulumi.Bool(false),
},
LakebaseRuntime: &databricks.AccountNetworkPolicyIngressDryRunPublicAccessAllowRuleDestinationLakebaseRuntimeArgs{
AllDestinations: pulumi.Bool(false),
},
WorkspaceApi: &databricks.AccountNetworkPolicyIngressDryRunPublicAccessAllowRuleDestinationWorkspaceApiArgs{
ScopeQualifier: pulumi.String("string"),
Scopes: pulumi.StringArray{
pulumi.String("string"),
},
},
WorkspaceUi: &databricks.AccountNetworkPolicyIngressDryRunPublicAccessAllowRuleDestinationWorkspaceUiArgs{
AllDestinations: pulumi.Bool(false),
},
},
Label: pulumi.String("string"),
Origin: &databricks.AccountNetworkPolicyIngressDryRunPublicAccessAllowRuleOriginArgs{
AllIpRanges: pulumi.Bool(false),
ExcludedIpRanges: &databricks.AccountNetworkPolicyIngressDryRunPublicAccessAllowRuleOriginExcludedIpRangesArgs{
IpRanges: pulumi.StringArray{
pulumi.String("string"),
},
},
IncludedIpRanges: &databricks.AccountNetworkPolicyIngressDryRunPublicAccessAllowRuleOriginIncludedIpRangesArgs{
IpRanges: pulumi.StringArray{
pulumi.String("string"),
},
},
},
},
},
DenyRules: databricks.AccountNetworkPolicyIngressDryRunPublicAccessDenyRuleArray{
&databricks.AccountNetworkPolicyIngressDryRunPublicAccessDenyRuleArgs{
Authentication: &databricks.AccountNetworkPolicyIngressDryRunPublicAccessDenyRuleAuthenticationArgs{
Identities: databricks.AccountNetworkPolicyIngressDryRunPublicAccessDenyRuleAuthenticationIdentityArray{
&databricks.AccountNetworkPolicyIngressDryRunPublicAccessDenyRuleAuthenticationIdentityArgs{
PrincipalId: pulumi.String("string"),
PrincipalType: pulumi.String("string"),
},
},
IdentityType: pulumi.String("string"),
},
Destination: &databricks.AccountNetworkPolicyIngressDryRunPublicAccessDenyRuleDestinationArgs{
AccountApi: &databricks.AccountNetworkPolicyIngressDryRunPublicAccessDenyRuleDestinationAccountApiArgs{
ScopeQualifier: pulumi.String("string"),
Scopes: pulumi.StringArray{
pulumi.String("string"),
},
},
AccountDatabricksOne: &databricks.AccountNetworkPolicyIngressDryRunPublicAccessDenyRuleDestinationAccountDatabricksOneArgs{
AllDestinations: pulumi.Bool(false),
},
AccountUi: &databricks.AccountNetworkPolicyIngressDryRunPublicAccessDenyRuleDestinationAccountUiArgs{
AllDestinations: pulumi.Bool(false),
},
AllDestinations: pulumi.Bool(false),
AppsRuntime: &databricks.AccountNetworkPolicyIngressDryRunPublicAccessDenyRuleDestinationAppsRuntimeArgs{
AllDestinations: pulumi.Bool(false),
},
LakebaseRuntime: &databricks.AccountNetworkPolicyIngressDryRunPublicAccessDenyRuleDestinationLakebaseRuntimeArgs{
AllDestinations: pulumi.Bool(false),
},
WorkspaceApi: &databricks.AccountNetworkPolicyIngressDryRunPublicAccessDenyRuleDestinationWorkspaceApiArgs{
ScopeQualifier: pulumi.String("string"),
Scopes: pulumi.StringArray{
pulumi.String("string"),
},
},
WorkspaceUi: &databricks.AccountNetworkPolicyIngressDryRunPublicAccessDenyRuleDestinationWorkspaceUiArgs{
AllDestinations: pulumi.Bool(false),
},
},
Label: pulumi.String("string"),
Origin: &databricks.AccountNetworkPolicyIngressDryRunPublicAccessDenyRuleOriginArgs{
AllIpRanges: pulumi.Bool(false),
ExcludedIpRanges: &databricks.AccountNetworkPolicyIngressDryRunPublicAccessDenyRuleOriginExcludedIpRangesArgs{
IpRanges: pulumi.StringArray{
pulumi.String("string"),
},
},
IncludedIpRanges: &databricks.AccountNetworkPolicyIngressDryRunPublicAccessDenyRuleOriginIncludedIpRangesArgs{
IpRanges: pulumi.StringArray{
pulumi.String("string"),
},
},
},
},
},
},
},
NetworkPolicyId: pulumi.String("string"),
})
resource "databricks_accountnetworkpolicy" "accountNetworkPolicyResource" {
account_id = "string"
egress = {
network_access = {
restriction_mode = "string"
allowed_internet_destinations = [{
"destination" = "string"
"internetDestinationType" = "string"
}]
allowed_storage_destinations = [{
"azureStorageAccount" = "string"
"azureStorageService" = "string"
"bucketName" = "string"
"region" = "string"
"storageDestinationType" = "string"
}]
blocked_internet_destinations = [{
"destination" = "string"
"internetDestinationType" = "string"
}]
policy_enforcement = {
dry_run_mode_product_filters = ["string"]
enforcement_mode = "string"
}
}
}
ingress = {
private_access = {
restriction_mode = "string"
allow_rules = [{
"authentication" = {
"identities" = [{
"principalId" = "string"
"principalType" = "string"
}]
"identityType" = "string"
}
"destination" = {
"accountApi" = {
"scopeQualifier" = "string"
"scopes" = ["string"]
}
"accountDatabricksOne" = {
"allDestinations" = false
}
"accountUi" = {
"allDestinations" = false
}
"allDestinations" = false
"appsRuntime" = {
"allDestinations" = false
}
"lakebaseRuntime" = {
"allDestinations" = false
}
"workspaceApi" = {
"scopeQualifier" = "string"
"scopes" = ["string"]
}
"workspaceUi" = {
"allDestinations" = false
}
}
"label" = "string"
"origin" = {
"allPrivateAccess" = false
"allRegisteredEndpoints" = false
"azureWorkspacePrivateLink" = false
"endpoints" = {
"endpointIds" = ["string"]
}
}
}]
deny_rules = [{
"authentication" = {
"identities" = [{
"principalId" = "string"
"principalType" = "string"
}]
"identityType" = "string"
}
"destination" = {
"accountApi" = {
"scopeQualifier" = "string"
"scopes" = ["string"]
}
"accountDatabricksOne" = {
"allDestinations" = false
}
"accountUi" = {
"allDestinations" = false
}
"allDestinations" = false
"appsRuntime" = {
"allDestinations" = false
}
"lakebaseRuntime" = {
"allDestinations" = false
}
"workspaceApi" = {
"scopeQualifier" = "string"
"scopes" = ["string"]
}
"workspaceUi" = {
"allDestinations" = false
}
}
"label" = "string"
"origin" = {
"allPrivateAccess" = false
"allRegisteredEndpoints" = false
"azureWorkspacePrivateLink" = false
"endpoints" = {
"endpointIds" = ["string"]
}
}
}]
}
public_access = {
restriction_mode = "string"
allow_rules = [{
"authentication" = {
"identities" = [{
"principalId" = "string"
"principalType" = "string"
}]
"identityType" = "string"
}
"destination" = {
"accountApi" = {
"scopeQualifier" = "string"
"scopes" = ["string"]
}
"accountDatabricksOne" = {
"allDestinations" = false
}
"accountUi" = {
"allDestinations" = false
}
"allDestinations" = false
"appsRuntime" = {
"allDestinations" = false
}
"lakebaseRuntime" = {
"allDestinations" = false
}
"workspaceApi" = {
"scopeQualifier" = "string"
"scopes" = ["string"]
}
"workspaceUi" = {
"allDestinations" = false
}
}
"label" = "string"
"origin" = {
"allIpRanges" = false
"excludedIpRanges" = {
"ipRanges" = ["string"]
}
"includedIpRanges" = {
"ipRanges" = ["string"]
}
}
}]
deny_rules = [{
"authentication" = {
"identities" = [{
"principalId" = "string"
"principalType" = "string"
}]
"identityType" = "string"
}
"destination" = {
"accountApi" = {
"scopeQualifier" = "string"
"scopes" = ["string"]
}
"accountDatabricksOne" = {
"allDestinations" = false
}
"accountUi" = {
"allDestinations" = false
}
"allDestinations" = false
"appsRuntime" = {
"allDestinations" = false
}
"lakebaseRuntime" = {
"allDestinations" = false
}
"workspaceApi" = {
"scopeQualifier" = "string"
"scopes" = ["string"]
}
"workspaceUi" = {
"allDestinations" = false
}
}
"label" = "string"
"origin" = {
"allIpRanges" = false
"excludedIpRanges" = {
"ipRanges" = ["string"]
}
"includedIpRanges" = {
"ipRanges" = ["string"]
}
}
}]
}
}
ingress_dry_run = {
private_access = {
restriction_mode = "string"
allow_rules = [{
"authentication" = {
"identities" = [{
"principalId" = "string"
"principalType" = "string"
}]
"identityType" = "string"
}
"destination" = {
"accountApi" = {
"scopeQualifier" = "string"
"scopes" = ["string"]
}
"accountDatabricksOne" = {
"allDestinations" = false
}
"accountUi" = {
"allDestinations" = false
}
"allDestinations" = false
"appsRuntime" = {
"allDestinations" = false
}
"lakebaseRuntime" = {
"allDestinations" = false
}
"workspaceApi" = {
"scopeQualifier" = "string"
"scopes" = ["string"]
}
"workspaceUi" = {
"allDestinations" = false
}
}
"label" = "string"
"origin" = {
"allPrivateAccess" = false
"allRegisteredEndpoints" = false
"azureWorkspacePrivateLink" = false
"endpoints" = {
"endpointIds" = ["string"]
}
}
}]
deny_rules = [{
"authentication" = {
"identities" = [{
"principalId" = "string"
"principalType" = "string"
}]
"identityType" = "string"
}
"destination" = {
"accountApi" = {
"scopeQualifier" = "string"
"scopes" = ["string"]
}
"accountDatabricksOne" = {
"allDestinations" = false
}
"accountUi" = {
"allDestinations" = false
}
"allDestinations" = false
"appsRuntime" = {
"allDestinations" = false
}
"lakebaseRuntime" = {
"allDestinations" = false
}
"workspaceApi" = {
"scopeQualifier" = "string"
"scopes" = ["string"]
}
"workspaceUi" = {
"allDestinations" = false
}
}
"label" = "string"
"origin" = {
"allPrivateAccess" = false
"allRegisteredEndpoints" = false
"azureWorkspacePrivateLink" = false
"endpoints" = {
"endpointIds" = ["string"]
}
}
}]
}
public_access = {
restriction_mode = "string"
allow_rules = [{
"authentication" = {
"identities" = [{
"principalId" = "string"
"principalType" = "string"
}]
"identityType" = "string"
}
"destination" = {
"accountApi" = {
"scopeQualifier" = "string"
"scopes" = ["string"]
}
"accountDatabricksOne" = {
"allDestinations" = false
}
"accountUi" = {
"allDestinations" = false
}
"allDestinations" = false
"appsRuntime" = {
"allDestinations" = false
}
"lakebaseRuntime" = {
"allDestinations" = false
}
"workspaceApi" = {
"scopeQualifier" = "string"
"scopes" = ["string"]
}
"workspaceUi" = {
"allDestinations" = false
}
}
"label" = "string"
"origin" = {
"allIpRanges" = false
"excludedIpRanges" = {
"ipRanges" = ["string"]
}
"includedIpRanges" = {
"ipRanges" = ["string"]
}
}
}]
deny_rules = [{
"authentication" = {
"identities" = [{
"principalId" = "string"
"principalType" = "string"
}]
"identityType" = "string"
}
"destination" = {
"accountApi" = {
"scopeQualifier" = "string"
"scopes" = ["string"]
}
"accountDatabricksOne" = {
"allDestinations" = false
}
"accountUi" = {
"allDestinations" = false
}
"allDestinations" = false
"appsRuntime" = {
"allDestinations" = false
}
"lakebaseRuntime" = {
"allDestinations" = false
}
"workspaceApi" = {
"scopeQualifier" = "string"
"scopes" = ["string"]
}
"workspaceUi" = {
"allDestinations" = false
}
}
"label" = "string"
"origin" = {
"allIpRanges" = false
"excludedIpRanges" = {
"ipRanges" = ["string"]
}
"includedIpRanges" = {
"ipRanges" = ["string"]
}
}
}]
}
}
network_policy_id = "string"
}
var accountNetworkPolicyResource = new AccountNetworkPolicy("accountNetworkPolicyResource", AccountNetworkPolicyArgs.builder()
.accountId("string")
.egress(AccountNetworkPolicyEgressArgs.builder()
.networkAccess(AccountNetworkPolicyEgressNetworkAccessArgs.builder()
.restrictionMode("string")
.allowedInternetDestinations(AccountNetworkPolicyEgressNetworkAccessAllowedInternetDestinationArgs.builder()
.destination("string")
.internetDestinationType("string")
.build())
.allowedStorageDestinations(AccountNetworkPolicyEgressNetworkAccessAllowedStorageDestinationArgs.builder()
.azureStorageAccount("string")
.azureStorageService("string")
.bucketName("string")
.region("string")
.storageDestinationType("string")
.build())
.blockedInternetDestinations(AccountNetworkPolicyEgressNetworkAccessBlockedInternetDestinationArgs.builder()
.destination("string")
.internetDestinationType("string")
.build())
.policyEnforcement(AccountNetworkPolicyEgressNetworkAccessPolicyEnforcementArgs.builder()
.dryRunModeProductFilters("string")
.enforcementMode("string")
.build())
.build())
.build())
.ingress(AccountNetworkPolicyIngressArgs.builder()
.privateAccess(AccountNetworkPolicyIngressPrivateAccessArgs.builder()
.restrictionMode("string")
.allowRules(AccountNetworkPolicyIngressPrivateAccessAllowRuleArgs.builder()
.authentication(AccountNetworkPolicyIngressPrivateAccessAllowRuleAuthenticationArgs.builder()
.identities(AccountNetworkPolicyIngressPrivateAccessAllowRuleAuthenticationIdentityArgs.builder()
.principalId("string")
.principalType("string")
.build())
.identityType("string")
.build())
.destination(AccountNetworkPolicyIngressPrivateAccessAllowRuleDestinationArgs.builder()
.accountApi(AccountNetworkPolicyIngressPrivateAccessAllowRuleDestinationAccountApiArgs.builder()
.scopeQualifier("string")
.scopes("string")
.build())
.accountDatabricksOne(AccountNetworkPolicyIngressPrivateAccessAllowRuleDestinationAccountDatabricksOneArgs.builder()
.allDestinations(false)
.build())
.accountUi(AccountNetworkPolicyIngressPrivateAccessAllowRuleDestinationAccountUiArgs.builder()
.allDestinations(false)
.build())
.allDestinations(false)
.appsRuntime(AccountNetworkPolicyIngressPrivateAccessAllowRuleDestinationAppsRuntimeArgs.builder()
.allDestinations(false)
.build())
.lakebaseRuntime(AccountNetworkPolicyIngressPrivateAccessAllowRuleDestinationLakebaseRuntimeArgs.builder()
.allDestinations(false)
.build())
.workspaceApi(AccountNetworkPolicyIngressPrivateAccessAllowRuleDestinationWorkspaceApiArgs.builder()
.scopeQualifier("string")
.scopes("string")
.build())
.workspaceUi(AccountNetworkPolicyIngressPrivateAccessAllowRuleDestinationWorkspaceUiArgs.builder()
.allDestinations(false)
.build())
.build())
.label("string")
.origin(AccountNetworkPolicyIngressPrivateAccessAllowRuleOriginArgs.builder()
.allPrivateAccess(false)
.allRegisteredEndpoints(false)
.azureWorkspacePrivateLink(false)
.endpoints(AccountNetworkPolicyIngressPrivateAccessAllowRuleOriginEndpointsArgs.builder()
.endpointIds("string")
.build())
.build())
.build())
.denyRules(AccountNetworkPolicyIngressPrivateAccessDenyRuleArgs.builder()
.authentication(AccountNetworkPolicyIngressPrivateAccessDenyRuleAuthenticationArgs.builder()
.identities(AccountNetworkPolicyIngressPrivateAccessDenyRuleAuthenticationIdentityArgs.builder()
.principalId("string")
.principalType("string")
.build())
.identityType("string")
.build())
.destination(AccountNetworkPolicyIngressPrivateAccessDenyRuleDestinationArgs.builder()
.accountApi(AccountNetworkPolicyIngressPrivateAccessDenyRuleDestinationAccountApiArgs.builder()
.scopeQualifier("string")
.scopes("string")
.build())
.accountDatabricksOne(AccountNetworkPolicyIngressPrivateAccessDenyRuleDestinationAccountDatabricksOneArgs.builder()
.allDestinations(false)
.build())
.accountUi(AccountNetworkPolicyIngressPrivateAccessDenyRuleDestinationAccountUiArgs.builder()
.allDestinations(false)
.build())
.allDestinations(false)
.appsRuntime(AccountNetworkPolicyIngressPrivateAccessDenyRuleDestinationAppsRuntimeArgs.builder()
.allDestinations(false)
.build())
.lakebaseRuntime(AccountNetworkPolicyIngressPrivateAccessDenyRuleDestinationLakebaseRuntimeArgs.builder()
.allDestinations(false)
.build())
.workspaceApi(AccountNetworkPolicyIngressPrivateAccessDenyRuleDestinationWorkspaceApiArgs.builder()
.scopeQualifier("string")
.scopes("string")
.build())
.workspaceUi(AccountNetworkPolicyIngressPrivateAccessDenyRuleDestinationWorkspaceUiArgs.builder()
.allDestinations(false)
.build())
.build())
.label("string")
.origin(AccountNetworkPolicyIngressPrivateAccessDenyRuleOriginArgs.builder()
.allPrivateAccess(false)
.allRegisteredEndpoints(false)
.azureWorkspacePrivateLink(false)
.endpoints(AccountNetworkPolicyIngressPrivateAccessDenyRuleOriginEndpointsArgs.builder()
.endpointIds("string")
.build())
.build())
.build())
.build())
.publicAccess(AccountNetworkPolicyIngressPublicAccessArgs.builder()
.restrictionMode("string")
.allowRules(AccountNetworkPolicyIngressPublicAccessAllowRuleArgs.builder()
.authentication(AccountNetworkPolicyIngressPublicAccessAllowRuleAuthenticationArgs.builder()
.identities(AccountNetworkPolicyIngressPublicAccessAllowRuleAuthenticationIdentityArgs.builder()
.principalId("string")
.principalType("string")
.build())
.identityType("string")
.build())
.destination(AccountNetworkPolicyIngressPublicAccessAllowRuleDestinationArgs.builder()
.accountApi(AccountNetworkPolicyIngressPublicAccessAllowRuleDestinationAccountApiArgs.builder()
.scopeQualifier("string")
.scopes("string")
.build())
.accountDatabricksOne(AccountNetworkPolicyIngressPublicAccessAllowRuleDestinationAccountDatabricksOneArgs.builder()
.allDestinations(false)
.build())
.accountUi(AccountNetworkPolicyIngressPublicAccessAllowRuleDestinationAccountUiArgs.builder()
.allDestinations(false)
.build())
.allDestinations(false)
.appsRuntime(AccountNetworkPolicyIngressPublicAccessAllowRuleDestinationAppsRuntimeArgs.builder()
.allDestinations(false)
.build())
.lakebaseRuntime(AccountNetworkPolicyIngressPublicAccessAllowRuleDestinationLakebaseRuntimeArgs.builder()
.allDestinations(false)
.build())
.workspaceApi(AccountNetworkPolicyIngressPublicAccessAllowRuleDestinationWorkspaceApiArgs.builder()
.scopeQualifier("string")
.scopes("string")
.build())
.workspaceUi(AccountNetworkPolicyIngressPublicAccessAllowRuleDestinationWorkspaceUiArgs.builder()
.allDestinations(false)
.build())
.build())
.label("string")
.origin(AccountNetworkPolicyIngressPublicAccessAllowRuleOriginArgs.builder()
.allIpRanges(false)
.excludedIpRanges(AccountNetworkPolicyIngressPublicAccessAllowRuleOriginExcludedIpRangesArgs.builder()
.ipRanges("string")
.build())
.includedIpRanges(AccountNetworkPolicyIngressPublicAccessAllowRuleOriginIncludedIpRangesArgs.builder()
.ipRanges("string")
.build())
.build())
.build())
.denyRules(AccountNetworkPolicyIngressPublicAccessDenyRuleArgs.builder()
.authentication(AccountNetworkPolicyIngressPublicAccessDenyRuleAuthenticationArgs.builder()
.identities(AccountNetworkPolicyIngressPublicAccessDenyRuleAuthenticationIdentityArgs.builder()
.principalId("string")
.principalType("string")
.build())
.identityType("string")
.build())
.destination(AccountNetworkPolicyIngressPublicAccessDenyRuleDestinationArgs.builder()
.accountApi(AccountNetworkPolicyIngressPublicAccessDenyRuleDestinationAccountApiArgs.builder()
.scopeQualifier("string")
.scopes("string")
.build())
.accountDatabricksOne(AccountNetworkPolicyIngressPublicAccessDenyRuleDestinationAccountDatabricksOneArgs.builder()
.allDestinations(false)
.build())
.accountUi(AccountNetworkPolicyIngressPublicAccessDenyRuleDestinationAccountUiArgs.builder()
.allDestinations(false)
.build())
.allDestinations(false)
.appsRuntime(AccountNetworkPolicyIngressPublicAccessDenyRuleDestinationAppsRuntimeArgs.builder()
.allDestinations(false)
.build())
.lakebaseRuntime(AccountNetworkPolicyIngressPublicAccessDenyRuleDestinationLakebaseRuntimeArgs.builder()
.allDestinations(false)
.build())
.workspaceApi(AccountNetworkPolicyIngressPublicAccessDenyRuleDestinationWorkspaceApiArgs.builder()
.scopeQualifier("string")
.scopes("string")
.build())
.workspaceUi(AccountNetworkPolicyIngressPublicAccessDenyRuleDestinationWorkspaceUiArgs.builder()
.allDestinations(false)
.build())
.build())
.label("string")
.origin(AccountNetworkPolicyIngressPublicAccessDenyRuleOriginArgs.builder()
.allIpRanges(false)
.excludedIpRanges(AccountNetworkPolicyIngressPublicAccessDenyRuleOriginExcludedIpRangesArgs.builder()
.ipRanges("string")
.build())
.includedIpRanges(AccountNetworkPolicyIngressPublicAccessDenyRuleOriginIncludedIpRangesArgs.builder()
.ipRanges("string")
.build())
.build())
.build())
.build())
.build())
.ingressDryRun(AccountNetworkPolicyIngressDryRunArgs.builder()
.privateAccess(AccountNetworkPolicyIngressDryRunPrivateAccessArgs.builder()
.restrictionMode("string")
.allowRules(AccountNetworkPolicyIngressDryRunPrivateAccessAllowRuleArgs.builder()
.authentication(AccountNetworkPolicyIngressDryRunPrivateAccessAllowRuleAuthenticationArgs.builder()
.identities(AccountNetworkPolicyIngressDryRunPrivateAccessAllowRuleAuthenticationIdentityArgs.builder()
.principalId("string")
.principalType("string")
.build())
.identityType("string")
.build())
.destination(AccountNetworkPolicyIngressDryRunPrivateAccessAllowRuleDestinationArgs.builder()
.accountApi(AccountNetworkPolicyIngressDryRunPrivateAccessAllowRuleDestinationAccountApiArgs.builder()
.scopeQualifier("string")
.scopes("string")
.build())
.accountDatabricksOne(AccountNetworkPolicyIngressDryRunPrivateAccessAllowRuleDestinationAccountDatabricksOneArgs.builder()
.allDestinations(false)
.build())
.accountUi(AccountNetworkPolicyIngressDryRunPrivateAccessAllowRuleDestinationAccountUiArgs.builder()
.allDestinations(false)
.build())
.allDestinations(false)
.appsRuntime(AccountNetworkPolicyIngressDryRunPrivateAccessAllowRuleDestinationAppsRuntimeArgs.builder()
.allDestinations(false)
.build())
.lakebaseRuntime(AccountNetworkPolicyIngressDryRunPrivateAccessAllowRuleDestinationLakebaseRuntimeArgs.builder()
.allDestinations(false)
.build())
.workspaceApi(AccountNetworkPolicyIngressDryRunPrivateAccessAllowRuleDestinationWorkspaceApiArgs.builder()
.scopeQualifier("string")
.scopes("string")
.build())
.workspaceUi(AccountNetworkPolicyIngressDryRunPrivateAccessAllowRuleDestinationWorkspaceUiArgs.builder()
.allDestinations(false)
.build())
.build())
.label("string")
.origin(AccountNetworkPolicyIngressDryRunPrivateAccessAllowRuleOriginArgs.builder()
.allPrivateAccess(false)
.allRegisteredEndpoints(false)
.azureWorkspacePrivateLink(false)
.endpoints(AccountNetworkPolicyIngressDryRunPrivateAccessAllowRuleOriginEndpointsArgs.builder()
.endpointIds("string")
.build())
.build())
.build())
.denyRules(AccountNetworkPolicyIngressDryRunPrivateAccessDenyRuleArgs.builder()
.authentication(AccountNetworkPolicyIngressDryRunPrivateAccessDenyRuleAuthenticationArgs.builder()
.identities(AccountNetworkPolicyIngressDryRunPrivateAccessDenyRuleAuthenticationIdentityArgs.builder()
.principalId("string")
.principalType("string")
.build())
.identityType("string")
.build())
.destination(AccountNetworkPolicyIngressDryRunPrivateAccessDenyRuleDestinationArgs.builder()
.accountApi(AccountNetworkPolicyIngressDryRunPrivateAccessDenyRuleDestinationAccountApiArgs.builder()
.scopeQualifier("string")
.scopes("string")
.build())
.accountDatabricksOne(AccountNetworkPolicyIngressDryRunPrivateAccessDenyRuleDestinationAccountDatabricksOneArgs.builder()
.allDestinations(false)
.build())
.accountUi(AccountNetworkPolicyIngressDryRunPrivateAccessDenyRuleDestinationAccountUiArgs.builder()
.allDestinations(false)
.build())
.allDestinations(false)
.appsRuntime(AccountNetworkPolicyIngressDryRunPrivateAccessDenyRuleDestinationAppsRuntimeArgs.builder()
.allDestinations(false)
.build())
.lakebaseRuntime(AccountNetworkPolicyIngressDryRunPrivateAccessDenyRuleDestinationLakebaseRuntimeArgs.builder()
.allDestinations(false)
.build())
.workspaceApi(AccountNetworkPolicyIngressDryRunPrivateAccessDenyRuleDestinationWorkspaceApiArgs.builder()
.scopeQualifier("string")
.scopes("string")
.build())
.workspaceUi(AccountNetworkPolicyIngressDryRunPrivateAccessDenyRuleDestinationWorkspaceUiArgs.builder()
.allDestinations(false)
.build())
.build())
.label("string")
.origin(AccountNetworkPolicyIngressDryRunPrivateAccessDenyRuleOriginArgs.builder()
.allPrivateAccess(false)
.allRegisteredEndpoints(false)
.azureWorkspacePrivateLink(false)
.endpoints(AccountNetworkPolicyIngressDryRunPrivateAccessDenyRuleOriginEndpointsArgs.builder()
.endpointIds("string")
.build())
.build())
.build())
.build())
.publicAccess(AccountNetworkPolicyIngressDryRunPublicAccessArgs.builder()
.restrictionMode("string")
.allowRules(AccountNetworkPolicyIngressDryRunPublicAccessAllowRuleArgs.builder()
.authentication(AccountNetworkPolicyIngressDryRunPublicAccessAllowRuleAuthenticationArgs.builder()
.identities(AccountNetworkPolicyIngressDryRunPublicAccessAllowRuleAuthenticationIdentityArgs.builder()
.principalId("string")
.principalType("string")
.build())
.identityType("string")
.build())
.destination(AccountNetworkPolicyIngressDryRunPublicAccessAllowRuleDestinationArgs.builder()
.accountApi(AccountNetworkPolicyIngressDryRunPublicAccessAllowRuleDestinationAccountApiArgs.builder()
.scopeQualifier("string")
.scopes("string")
.build())
.accountDatabricksOne(AccountNetworkPolicyIngressDryRunPublicAccessAllowRuleDestinationAccountDatabricksOneArgs.builder()
.allDestinations(false)
.build())
.accountUi(AccountNetworkPolicyIngressDryRunPublicAccessAllowRuleDestinationAccountUiArgs.builder()
.allDestinations(false)
.build())
.allDestinations(false)
.appsRuntime(AccountNetworkPolicyIngressDryRunPublicAccessAllowRuleDestinationAppsRuntimeArgs.builder()
.allDestinations(false)
.build())
.lakebaseRuntime(AccountNetworkPolicyIngressDryRunPublicAccessAllowRuleDestinationLakebaseRuntimeArgs.builder()
.allDestinations(false)
.build())
.workspaceApi(AccountNetworkPolicyIngressDryRunPublicAccessAllowRuleDestinationWorkspaceApiArgs.builder()
.scopeQualifier("string")
.scopes("string")
.build())
.workspaceUi(AccountNetworkPolicyIngressDryRunPublicAccessAllowRuleDestinationWorkspaceUiArgs.builder()
.allDestinations(false)
.build())
.build())
.label("string")
.origin(AccountNetworkPolicyIngressDryRunPublicAccessAllowRuleOriginArgs.builder()
.allIpRanges(false)
.excludedIpRanges(AccountNetworkPolicyIngressDryRunPublicAccessAllowRuleOriginExcludedIpRangesArgs.builder()
.ipRanges("string")
.build())
.includedIpRanges(AccountNetworkPolicyIngressDryRunPublicAccessAllowRuleOriginIncludedIpRangesArgs.builder()
.ipRanges("string")
.build())
.build())
.build())
.denyRules(AccountNetworkPolicyIngressDryRunPublicAccessDenyRuleArgs.builder()
.authentication(AccountNetworkPolicyIngressDryRunPublicAccessDenyRuleAuthenticationArgs.builder()
.identities(AccountNetworkPolicyIngressDryRunPublicAccessDenyRuleAuthenticationIdentityArgs.builder()
.principalId("string")
.principalType("string")
.build())
.identityType("string")
.build())
.destination(AccountNetworkPolicyIngressDryRunPublicAccessDenyRuleDestinationArgs.builder()
.accountApi(AccountNetworkPolicyIngressDryRunPublicAccessDenyRuleDestinationAccountApiArgs.builder()
.scopeQualifier("string")
.scopes("string")
.build())
.accountDatabricksOne(AccountNetworkPolicyIngressDryRunPublicAccessDenyRuleDestinationAccountDatabricksOneArgs.builder()
.allDestinations(false)
.build())
.accountUi(AccountNetworkPolicyIngressDryRunPublicAccessDenyRuleDestinationAccountUiArgs.builder()
.allDestinations(false)
.build())
.allDestinations(false)
.appsRuntime(AccountNetworkPolicyIngressDryRunPublicAccessDenyRuleDestinationAppsRuntimeArgs.builder()
.allDestinations(false)
.build())
.lakebaseRuntime(AccountNetworkPolicyIngressDryRunPublicAccessDenyRuleDestinationLakebaseRuntimeArgs.builder()
.allDestinations(false)
.build())
.workspaceApi(AccountNetworkPolicyIngressDryRunPublicAccessDenyRuleDestinationWorkspaceApiArgs.builder()
.scopeQualifier("string")
.scopes("string")
.build())
.workspaceUi(AccountNetworkPolicyIngressDryRunPublicAccessDenyRuleDestinationWorkspaceUiArgs.builder()
.allDestinations(false)
.build())
.build())
.label("string")
.origin(AccountNetworkPolicyIngressDryRunPublicAccessDenyRuleOriginArgs.builder()
.allIpRanges(false)
.excludedIpRanges(AccountNetworkPolicyIngressDryRunPublicAccessDenyRuleOriginExcludedIpRangesArgs.builder()
.ipRanges("string")
.build())
.includedIpRanges(AccountNetworkPolicyIngressDryRunPublicAccessDenyRuleOriginIncludedIpRangesArgs.builder()
.ipRanges("string")
.build())
.build())
.build())
.build())
.build())
.networkPolicyId("string")
.build());
account_network_policy_resource = databricks.AccountNetworkPolicy("accountNetworkPolicyResource",
account_id="string",
egress={
"network_access": {
"restriction_mode": "string",
"allowed_internet_destinations": [{
"destination": "string",
"internet_destination_type": "string",
}],
"allowed_storage_destinations": [{
"azure_storage_account": "string",
"azure_storage_service": "string",
"bucket_name": "string",
"region": "string",
"storage_destination_type": "string",
}],
"blocked_internet_destinations": [{
"destination": "string",
"internet_destination_type": "string",
}],
"policy_enforcement": {
"dry_run_mode_product_filters": ["string"],
"enforcement_mode": "string",
},
},
},
ingress={
"private_access": {
"restriction_mode": "string",
"allow_rules": [{
"authentication": {
"identities": [{
"principal_id": "string",
"principal_type": "string",
}],
"identity_type": "string",
},
"destination": {
"account_api": {
"scope_qualifier": "string",
"scopes": ["string"],
},
"account_databricks_one": {
"all_destinations": False,
},
"account_ui": {
"all_destinations": False,
},
"all_destinations": False,
"apps_runtime": {
"all_destinations": False,
},
"lakebase_runtime": {
"all_destinations": False,
},
"workspace_api": {
"scope_qualifier": "string",
"scopes": ["string"],
},
"workspace_ui": {
"all_destinations": False,
},
},
"label": "string",
"origin": {
"all_private_access": False,
"all_registered_endpoints": False,
"azure_workspace_private_link": False,
"endpoints": {
"endpoint_ids": ["string"],
},
},
}],
"deny_rules": [{
"authentication": {
"identities": [{
"principal_id": "string",
"principal_type": "string",
}],
"identity_type": "string",
},
"destination": {
"account_api": {
"scope_qualifier": "string",
"scopes": ["string"],
},
"account_databricks_one": {
"all_destinations": False,
},
"account_ui": {
"all_destinations": False,
},
"all_destinations": False,
"apps_runtime": {
"all_destinations": False,
},
"lakebase_runtime": {
"all_destinations": False,
},
"workspace_api": {
"scope_qualifier": "string",
"scopes": ["string"],
},
"workspace_ui": {
"all_destinations": False,
},
},
"label": "string",
"origin": {
"all_private_access": False,
"all_registered_endpoints": False,
"azure_workspace_private_link": False,
"endpoints": {
"endpoint_ids": ["string"],
},
},
}],
},
"public_access": {
"restriction_mode": "string",
"allow_rules": [{
"authentication": {
"identities": [{
"principal_id": "string",
"principal_type": "string",
}],
"identity_type": "string",
},
"destination": {
"account_api": {
"scope_qualifier": "string",
"scopes": ["string"],
},
"account_databricks_one": {
"all_destinations": False,
},
"account_ui": {
"all_destinations": False,
},
"all_destinations": False,
"apps_runtime": {
"all_destinations": False,
},
"lakebase_runtime": {
"all_destinations": False,
},
"workspace_api": {
"scope_qualifier": "string",
"scopes": ["string"],
},
"workspace_ui": {
"all_destinations": False,
},
},
"label": "string",
"origin": {
"all_ip_ranges": False,
"excluded_ip_ranges": {
"ip_ranges": ["string"],
},
"included_ip_ranges": {
"ip_ranges": ["string"],
},
},
}],
"deny_rules": [{
"authentication": {
"identities": [{
"principal_id": "string",
"principal_type": "string",
}],
"identity_type": "string",
},
"destination": {
"account_api": {
"scope_qualifier": "string",
"scopes": ["string"],
},
"account_databricks_one": {
"all_destinations": False,
},
"account_ui": {
"all_destinations": False,
},
"all_destinations": False,
"apps_runtime": {
"all_destinations": False,
},
"lakebase_runtime": {
"all_destinations": False,
},
"workspace_api": {
"scope_qualifier": "string",
"scopes": ["string"],
},
"workspace_ui": {
"all_destinations": False,
},
},
"label": "string",
"origin": {
"all_ip_ranges": False,
"excluded_ip_ranges": {
"ip_ranges": ["string"],
},
"included_ip_ranges": {
"ip_ranges": ["string"],
},
},
}],
},
},
ingress_dry_run={
"private_access": {
"restriction_mode": "string",
"allow_rules": [{
"authentication": {
"identities": [{
"principal_id": "string",
"principal_type": "string",
}],
"identity_type": "string",
},
"destination": {
"account_api": {
"scope_qualifier": "string",
"scopes": ["string"],
},
"account_databricks_one": {
"all_destinations": False,
},
"account_ui": {
"all_destinations": False,
},
"all_destinations": False,
"apps_runtime": {
"all_destinations": False,
},
"lakebase_runtime": {
"all_destinations": False,
},
"workspace_api": {
"scope_qualifier": "string",
"scopes": ["string"],
},
"workspace_ui": {
"all_destinations": False,
},
},
"label": "string",
"origin": {
"all_private_access": False,
"all_registered_endpoints": False,
"azure_workspace_private_link": False,
"endpoints": {
"endpoint_ids": ["string"],
},
},
}],
"deny_rules": [{
"authentication": {
"identities": [{
"principal_id": "string",
"principal_type": "string",
}],
"identity_type": "string",
},
"destination": {
"account_api": {
"scope_qualifier": "string",
"scopes": ["string"],
},
"account_databricks_one": {
"all_destinations": False,
},
"account_ui": {
"all_destinations": False,
},
"all_destinations": False,
"apps_runtime": {
"all_destinations": False,
},
"lakebase_runtime": {
"all_destinations": False,
},
"workspace_api": {
"scope_qualifier": "string",
"scopes": ["string"],
},
"workspace_ui": {
"all_destinations": False,
},
},
"label": "string",
"origin": {
"all_private_access": False,
"all_registered_endpoints": False,
"azure_workspace_private_link": False,
"endpoints": {
"endpoint_ids": ["string"],
},
},
}],
},
"public_access": {
"restriction_mode": "string",
"allow_rules": [{
"authentication": {
"identities": [{
"principal_id": "string",
"principal_type": "string",
}],
"identity_type": "string",
},
"destination": {
"account_api": {
"scope_qualifier": "string",
"scopes": ["string"],
},
"account_databricks_one": {
"all_destinations": False,
},
"account_ui": {
"all_destinations": False,
},
"all_destinations": False,
"apps_runtime": {
"all_destinations": False,
},
"lakebase_runtime": {
"all_destinations": False,
},
"workspace_api": {
"scope_qualifier": "string",
"scopes": ["string"],
},
"workspace_ui": {
"all_destinations": False,
},
},
"label": "string",
"origin": {
"all_ip_ranges": False,
"excluded_ip_ranges": {
"ip_ranges": ["string"],
},
"included_ip_ranges": {
"ip_ranges": ["string"],
},
},
}],
"deny_rules": [{
"authentication": {
"identities": [{
"principal_id": "string",
"principal_type": "string",
}],
"identity_type": "string",
},
"destination": {
"account_api": {
"scope_qualifier": "string",
"scopes": ["string"],
},
"account_databricks_one": {
"all_destinations": False,
},
"account_ui": {
"all_destinations": False,
},
"all_destinations": False,
"apps_runtime": {
"all_destinations": False,
},
"lakebase_runtime": {
"all_destinations": False,
},
"workspace_api": {
"scope_qualifier": "string",
"scopes": ["string"],
},
"workspace_ui": {
"all_destinations": False,
},
},
"label": "string",
"origin": {
"all_ip_ranges": False,
"excluded_ip_ranges": {
"ip_ranges": ["string"],
},
"included_ip_ranges": {
"ip_ranges": ["string"],
},
},
}],
},
},
network_policy_id="string")
const accountNetworkPolicyResource = new databricks.AccountNetworkPolicy("accountNetworkPolicyResource", {
accountId: "string",
egress: {
networkAccess: {
restrictionMode: "string",
allowedInternetDestinations: [{
destination: "string",
internetDestinationType: "string",
}],
allowedStorageDestinations: [{
azureStorageAccount: "string",
azureStorageService: "string",
bucketName: "string",
region: "string",
storageDestinationType: "string",
}],
blockedInternetDestinations: [{
destination: "string",
internetDestinationType: "string",
}],
policyEnforcement: {
dryRunModeProductFilters: ["string"],
enforcementMode: "string",
},
},
},
ingress: {
privateAccess: {
restrictionMode: "string",
allowRules: [{
authentication: {
identities: [{
principalId: "string",
principalType: "string",
}],
identityType: "string",
},
destination: {
accountApi: {
scopeQualifier: "string",
scopes: ["string"],
},
accountDatabricksOne: {
allDestinations: false,
},
accountUi: {
allDestinations: false,
},
allDestinations: false,
appsRuntime: {
allDestinations: false,
},
lakebaseRuntime: {
allDestinations: false,
},
workspaceApi: {
scopeQualifier: "string",
scopes: ["string"],
},
workspaceUi: {
allDestinations: false,
},
},
label: "string",
origin: {
allPrivateAccess: false,
allRegisteredEndpoints: false,
azureWorkspacePrivateLink: false,
endpoints: {
endpointIds: ["string"],
},
},
}],
denyRules: [{
authentication: {
identities: [{
principalId: "string",
principalType: "string",
}],
identityType: "string",
},
destination: {
accountApi: {
scopeQualifier: "string",
scopes: ["string"],
},
accountDatabricksOne: {
allDestinations: false,
},
accountUi: {
allDestinations: false,
},
allDestinations: false,
appsRuntime: {
allDestinations: false,
},
lakebaseRuntime: {
allDestinations: false,
},
workspaceApi: {
scopeQualifier: "string",
scopes: ["string"],
},
workspaceUi: {
allDestinations: false,
},
},
label: "string",
origin: {
allPrivateAccess: false,
allRegisteredEndpoints: false,
azureWorkspacePrivateLink: false,
endpoints: {
endpointIds: ["string"],
},
},
}],
},
publicAccess: {
restrictionMode: "string",
allowRules: [{
authentication: {
identities: [{
principalId: "string",
principalType: "string",
}],
identityType: "string",
},
destination: {
accountApi: {
scopeQualifier: "string",
scopes: ["string"],
},
accountDatabricksOne: {
allDestinations: false,
},
accountUi: {
allDestinations: false,
},
allDestinations: false,
appsRuntime: {
allDestinations: false,
},
lakebaseRuntime: {
allDestinations: false,
},
workspaceApi: {
scopeQualifier: "string",
scopes: ["string"],
},
workspaceUi: {
allDestinations: false,
},
},
label: "string",
origin: {
allIpRanges: false,
excludedIpRanges: {
ipRanges: ["string"],
},
includedIpRanges: {
ipRanges: ["string"],
},
},
}],
denyRules: [{
authentication: {
identities: [{
principalId: "string",
principalType: "string",
}],
identityType: "string",
},
destination: {
accountApi: {
scopeQualifier: "string",
scopes: ["string"],
},
accountDatabricksOne: {
allDestinations: false,
},
accountUi: {
allDestinations: false,
},
allDestinations: false,
appsRuntime: {
allDestinations: false,
},
lakebaseRuntime: {
allDestinations: false,
},
workspaceApi: {
scopeQualifier: "string",
scopes: ["string"],
},
workspaceUi: {
allDestinations: false,
},
},
label: "string",
origin: {
allIpRanges: false,
excludedIpRanges: {
ipRanges: ["string"],
},
includedIpRanges: {
ipRanges: ["string"],
},
},
}],
},
},
ingressDryRun: {
privateAccess: {
restrictionMode: "string",
allowRules: [{
authentication: {
identities: [{
principalId: "string",
principalType: "string",
}],
identityType: "string",
},
destination: {
accountApi: {
scopeQualifier: "string",
scopes: ["string"],
},
accountDatabricksOne: {
allDestinations: false,
},
accountUi: {
allDestinations: false,
},
allDestinations: false,
appsRuntime: {
allDestinations: false,
},
lakebaseRuntime: {
allDestinations: false,
},
workspaceApi: {
scopeQualifier: "string",
scopes: ["string"],
},
workspaceUi: {
allDestinations: false,
},
},
label: "string",
origin: {
allPrivateAccess: false,
allRegisteredEndpoints: false,
azureWorkspacePrivateLink: false,
endpoints: {
endpointIds: ["string"],
},
},
}],
denyRules: [{
authentication: {
identities: [{
principalId: "string",
principalType: "string",
}],
identityType: "string",
},
destination: {
accountApi: {
scopeQualifier: "string",
scopes: ["string"],
},
accountDatabricksOne: {
allDestinations: false,
},
accountUi: {
allDestinations: false,
},
allDestinations: false,
appsRuntime: {
allDestinations: false,
},
lakebaseRuntime: {
allDestinations: false,
},
workspaceApi: {
scopeQualifier: "string",
scopes: ["string"],
},
workspaceUi: {
allDestinations: false,
},
},
label: "string",
origin: {
allPrivateAccess: false,
allRegisteredEndpoints: false,
azureWorkspacePrivateLink: false,
endpoints: {
endpointIds: ["string"],
},
},
}],
},
publicAccess: {
restrictionMode: "string",
allowRules: [{
authentication: {
identities: [{
principalId: "string",
principalType: "string",
}],
identityType: "string",
},
destination: {
accountApi: {
scopeQualifier: "string",
scopes: ["string"],
},
accountDatabricksOne: {
allDestinations: false,
},
accountUi: {
allDestinations: false,
},
allDestinations: false,
appsRuntime: {
allDestinations: false,
},
lakebaseRuntime: {
allDestinations: false,
},
workspaceApi: {
scopeQualifier: "string",
scopes: ["string"],
},
workspaceUi: {
allDestinations: false,
},
},
label: "string",
origin: {
allIpRanges: false,
excludedIpRanges: {
ipRanges: ["string"],
},
includedIpRanges: {
ipRanges: ["string"],
},
},
}],
denyRules: [{
authentication: {
identities: [{
principalId: "string",
principalType: "string",
}],
identityType: "string",
},
destination: {
accountApi: {
scopeQualifier: "string",
scopes: ["string"],
},
accountDatabricksOne: {
allDestinations: false,
},
accountUi: {
allDestinations: false,
},
allDestinations: false,
appsRuntime: {
allDestinations: false,
},
lakebaseRuntime: {
allDestinations: false,
},
workspaceApi: {
scopeQualifier: "string",
scopes: ["string"],
},
workspaceUi: {
allDestinations: false,
},
},
label: "string",
origin: {
allIpRanges: false,
excludedIpRanges: {
ipRanges: ["string"],
},
includedIpRanges: {
ipRanges: ["string"],
},
},
}],
},
},
networkPolicyId: "string",
});
type: databricks:AccountNetworkPolicy
properties:
accountId: string
egress:
networkAccess:
allowedInternetDestinations:
- destination: string
internetDestinationType: string
allowedStorageDestinations:
- azureStorageAccount: string
azureStorageService: string
bucketName: string
region: string
storageDestinationType: string
blockedInternetDestinations:
- destination: string
internetDestinationType: string
policyEnforcement:
dryRunModeProductFilters:
- string
enforcementMode: string
restrictionMode: string
ingress:
privateAccess:
allowRules:
- authentication:
identities:
- principalId: string
principalType: string
identityType: string
destination:
accountApi:
scopeQualifier: string
scopes:
- string
accountDatabricksOne:
allDestinations: false
accountUi:
allDestinations: false
allDestinations: false
appsRuntime:
allDestinations: false
lakebaseRuntime:
allDestinations: false
workspaceApi:
scopeQualifier: string
scopes:
- string
workspaceUi:
allDestinations: false
label: string
origin:
allPrivateAccess: false
allRegisteredEndpoints: false
azureWorkspacePrivateLink: false
endpoints:
endpointIds:
- string
denyRules:
- authentication:
identities:
- principalId: string
principalType: string
identityType: string
destination:
accountApi:
scopeQualifier: string
scopes:
- string
accountDatabricksOne:
allDestinations: false
accountUi:
allDestinations: false
allDestinations: false
appsRuntime:
allDestinations: false
lakebaseRuntime:
allDestinations: false
workspaceApi:
scopeQualifier: string
scopes:
- string
workspaceUi:
allDestinations: false
label: string
origin:
allPrivateAccess: false
allRegisteredEndpoints: false
azureWorkspacePrivateLink: false
endpoints:
endpointIds:
- string
restrictionMode: string
publicAccess:
allowRules:
- authentication:
identities:
- principalId: string
principalType: string
identityType: string
destination:
accountApi:
scopeQualifier: string
scopes:
- string
accountDatabricksOne:
allDestinations: false
accountUi:
allDestinations: false
allDestinations: false
appsRuntime:
allDestinations: false
lakebaseRuntime:
allDestinations: false
workspaceApi:
scopeQualifier: string
scopes:
- string
workspaceUi:
allDestinations: false
label: string
origin:
allIpRanges: false
excludedIpRanges:
ipRanges:
- string
includedIpRanges:
ipRanges:
- string
denyRules:
- authentication:
identities:
- principalId: string
principalType: string
identityType: string
destination:
accountApi:
scopeQualifier: string
scopes:
- string
accountDatabricksOne:
allDestinations: false
accountUi:
allDestinations: false
allDestinations: false
appsRuntime:
allDestinations: false
lakebaseRuntime:
allDestinations: false
workspaceApi:
scopeQualifier: string
scopes:
- string
workspaceUi:
allDestinations: false
label: string
origin:
allIpRanges: false
excludedIpRanges:
ipRanges:
- string
includedIpRanges:
ipRanges:
- string
restrictionMode: string
ingressDryRun:
privateAccess:
allowRules:
- authentication:
identities:
- principalId: string
principalType: string
identityType: string
destination:
accountApi:
scopeQualifier: string
scopes:
- string
accountDatabricksOne:
allDestinations: false
accountUi:
allDestinations: false
allDestinations: false
appsRuntime:
allDestinations: false
lakebaseRuntime:
allDestinations: false
workspaceApi:
scopeQualifier: string
scopes:
- string
workspaceUi:
allDestinations: false
label: string
origin:
allPrivateAccess: false
allRegisteredEndpoints: false
azureWorkspacePrivateLink: false
endpoints:
endpointIds:
- string
denyRules:
- authentication:
identities:
- principalId: string
principalType: string
identityType: string
destination:
accountApi:
scopeQualifier: string
scopes:
- string
accountDatabricksOne:
allDestinations: false
accountUi:
allDestinations: false
allDestinations: false
appsRuntime:
allDestinations: false
lakebaseRuntime:
allDestinations: false
workspaceApi:
scopeQualifier: string
scopes:
- string
workspaceUi:
allDestinations: false
label: string
origin:
allPrivateAccess: false
allRegisteredEndpoints: false
azureWorkspacePrivateLink: false
endpoints:
endpointIds:
- string
restrictionMode: string
publicAccess:
allowRules:
- authentication:
identities:
- principalId: string
principalType: string
identityType: string
destination:
accountApi:
scopeQualifier: string
scopes:
- string
accountDatabricksOne:
allDestinations: false
accountUi:
allDestinations: false
allDestinations: false
appsRuntime:
allDestinations: false
lakebaseRuntime:
allDestinations: false
workspaceApi:
scopeQualifier: string
scopes:
- string
workspaceUi:
allDestinations: false
label: string
origin:
allIpRanges: false
excludedIpRanges:
ipRanges:
- string
includedIpRanges:
ipRanges:
- string
denyRules:
- authentication:
identities:
- principalId: string
principalType: string
identityType: string
destination:
accountApi:
scopeQualifier: string
scopes:
- string
accountDatabricksOne:
allDestinations: false
accountUi:
allDestinations: false
allDestinations: false
appsRuntime:
allDestinations: false
lakebaseRuntime:
allDestinations: false
workspaceApi:
scopeQualifier: string
scopes:
- string
workspaceUi:
allDestinations: false
label: string
origin:
allIpRanges: false
excludedIpRanges:
ipRanges:
- string
includedIpRanges:
ipRanges:
- string
restrictionMode: string
networkPolicyId: string
AccountNetworkPolicy Resource Properties
To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.
Inputs
In Python, inputs that are objects can be passed either as argument classes or as dictionary literals.
The AccountNetworkPolicy resource accepts the following input properties:
- Account
Id string - (string) - The associated account ID for this Network Policy object
- Egress
Account
Network Policy Egress - The network policies applying for egress traffic
- Ingress
Account
Network Policy Ingress - The network policies applying for ingress traffic
- Ingress
Dry AccountRun Network Policy Ingress Dry Run - The ingress policy for dry run mode. Dry run will always run even if the request is allowed by the ingress policy. When this field is set, the policy will be evaluated and emit logs only without blocking requests
- Network
Policy stringId - The unique identifier for the network policy
- Account
Id string - (string) - The associated account ID for this Network Policy object
- Egress
Account
Network Policy Egress Args - The network policies applying for egress traffic
- Ingress
Account
Network Policy Ingress Args - The network policies applying for ingress traffic
- Ingress
Dry AccountRun Network Policy Ingress Dry Run Args - The ingress policy for dry run mode. Dry run will always run even if the request is allowed by the ingress policy. When this field is set, the policy will be evaluated and emit logs only without blocking requests
- Network
Policy stringId - The unique identifier for the network policy
- account_
id string - (string) - The associated account ID for this Network Policy object
- egress object
- The network policies applying for egress traffic
- ingress object
- The network policies applying for ingress traffic
- ingress_
dry_ objectrun - The ingress policy for dry run mode. Dry run will always run even if the request is allowed by the ingress policy. When this field is set, the policy will be evaluated and emit logs only without blocking requests
- network_
policy_ stringid - The unique identifier for the network policy
- account
Id String - (string) - The associated account ID for this Network Policy object
- egress
Account
Network Policy Egress - The network policies applying for egress traffic
- ingress
Account
Network Policy Ingress - The network policies applying for ingress traffic
- ingress
Dry AccountRun Network Policy Ingress Dry Run - The ingress policy for dry run mode. Dry run will always run even if the request is allowed by the ingress policy. When this field is set, the policy will be evaluated and emit logs only without blocking requests
- network
Policy StringId - The unique identifier for the network policy
- account
Id string - (string) - The associated account ID for this Network Policy object
- egress
Account
Network Policy Egress - The network policies applying for egress traffic
- ingress
Account
Network Policy Ingress - The network policies applying for ingress traffic
- ingress
Dry AccountRun Network Policy Ingress Dry Run - The ingress policy for dry run mode. Dry run will always run even if the request is allowed by the ingress policy. When this field is set, the policy will be evaluated and emit logs only without blocking requests
- network
Policy stringId - The unique identifier for the network policy
- account_
id str - (string) - The associated account ID for this Network Policy object
- egress
Account
Network Policy Egress Args - The network policies applying for egress traffic
- ingress
Account
Network Policy Ingress Args - The network policies applying for ingress traffic
- ingress_
dry_ Accountrun Network Policy Ingress Dry Run Args - The ingress policy for dry run mode. Dry run will always run even if the request is allowed by the ingress policy. When this field is set, the policy will be evaluated and emit logs only without blocking requests
- network_
policy_ strid - The unique identifier for the network policy
- account
Id String - (string) - The associated account ID for this Network Policy object
- egress Property Map
- The network policies applying for egress traffic
- ingress Property Map
- The network policies applying for ingress traffic
- ingress
Dry Property MapRun - The ingress policy for dry run mode. Dry run will always run even if the request is allowed by the ingress policy. When this field is set, the policy will be evaluated and emit logs only without blocking requests
- network
Policy StringId - The unique identifier for the network policy
Outputs
All input properties are implicitly available as output properties. Additionally, the AccountNetworkPolicy resource produces the following output properties:
- Id string
- The provider-assigned unique ID for this managed resource.
- Id string
- The provider-assigned unique ID for this managed resource.
- id string
- The provider-assigned unique ID for this managed resource.
- id String
- The provider-assigned unique ID for this managed resource.
- id string
- The provider-assigned unique ID for this managed resource.
- id str
- The provider-assigned unique ID for this managed resource.
- id String
- The provider-assigned unique ID for this managed resource.
Look up Existing AccountNetworkPolicy Resource
Get an existing AccountNetworkPolicy resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.
public static get(name: string, id: Input<ID>, state?: AccountNetworkPolicyState, opts?: CustomResourceOptions): AccountNetworkPolicy@staticmethod
def get(resource_name: str,
id: str,
opts: Optional[ResourceOptions] = None,
account_id: Optional[str] = None,
egress: Optional[AccountNetworkPolicyEgressArgs] = None,
ingress: Optional[AccountNetworkPolicyIngressArgs] = None,
ingress_dry_run: Optional[AccountNetworkPolicyIngressDryRunArgs] = None,
network_policy_id: Optional[str] = None) -> AccountNetworkPolicyfunc GetAccountNetworkPolicy(ctx *Context, name string, id IDInput, state *AccountNetworkPolicyState, opts ...ResourceOption) (*AccountNetworkPolicy, error)public static AccountNetworkPolicy Get(string name, Input<string> id, AccountNetworkPolicyState? state, CustomResourceOptions? opts = null)public static AccountNetworkPolicy get(String name, Output<String> id, AccountNetworkPolicyState state, CustomResourceOptions options)resources: _: type: databricks:AccountNetworkPolicy get: id: ${id}import {
to = databricks_accountnetworkpolicy.example
id = "${id}"
}
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- resource_name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- Account
Id string - (string) - The associated account ID for this Network Policy object
- Egress
Account
Network Policy Egress - The network policies applying for egress traffic
- Ingress
Account
Network Policy Ingress - The network policies applying for ingress traffic
- Ingress
Dry AccountRun Network Policy Ingress Dry Run - The ingress policy for dry run mode. Dry run will always run even if the request is allowed by the ingress policy. When this field is set, the policy will be evaluated and emit logs only without blocking requests
- Network
Policy stringId - The unique identifier for the network policy
- Account
Id string - (string) - The associated account ID for this Network Policy object
- Egress
Account
Network Policy Egress Args - The network policies applying for egress traffic
- Ingress
Account
Network Policy Ingress Args - The network policies applying for ingress traffic
- Ingress
Dry AccountRun Network Policy Ingress Dry Run Args - The ingress policy for dry run mode. Dry run will always run even if the request is allowed by the ingress policy. When this field is set, the policy will be evaluated and emit logs only without blocking requests
- Network
Policy stringId - The unique identifier for the network policy
- account_
id string - (string) - The associated account ID for this Network Policy object
- egress object
- The network policies applying for egress traffic
- ingress object
- The network policies applying for ingress traffic
- ingress_
dry_ objectrun - The ingress policy for dry run mode. Dry run will always run even if the request is allowed by the ingress policy. When this field is set, the policy will be evaluated and emit logs only without blocking requests
- network_
policy_ stringid - The unique identifier for the network policy
- account
Id String - (string) - The associated account ID for this Network Policy object
- egress
Account
Network Policy Egress - The network policies applying for egress traffic
- ingress
Account
Network Policy Ingress - The network policies applying for ingress traffic
- ingress
Dry AccountRun Network Policy Ingress Dry Run - The ingress policy for dry run mode. Dry run will always run even if the request is allowed by the ingress policy. When this field is set, the policy will be evaluated and emit logs only without blocking requests
- network
Policy StringId - The unique identifier for the network policy
- account
Id string - (string) - The associated account ID for this Network Policy object
- egress
Account
Network Policy Egress - The network policies applying for egress traffic
- ingress
Account
Network Policy Ingress - The network policies applying for ingress traffic
- ingress
Dry AccountRun Network Policy Ingress Dry Run - The ingress policy for dry run mode. Dry run will always run even if the request is allowed by the ingress policy. When this field is set, the policy will be evaluated and emit logs only without blocking requests
- network
Policy stringId - The unique identifier for the network policy
- account_
id str - (string) - The associated account ID for this Network Policy object
- egress
Account
Network Policy Egress Args - The network policies applying for egress traffic
- ingress
Account
Network Policy Ingress Args - The network policies applying for ingress traffic
- ingress_
dry_ Accountrun Network Policy Ingress Dry Run Args - The ingress policy for dry run mode. Dry run will always run even if the request is allowed by the ingress policy. When this field is set, the policy will be evaluated and emit logs only without blocking requests
- network_
policy_ strid - The unique identifier for the network policy
- account
Id String - (string) - The associated account ID for this Network Policy object
- egress Property Map
- The network policies applying for egress traffic
- ingress Property Map
- The network policies applying for ingress traffic
- ingress
Dry Property MapRun - The ingress policy for dry run mode. Dry run will always run even if the request is allowed by the ingress policy. When this field is set, the policy will be evaluated and emit logs only without blocking requests
- network
Policy StringId - The unique identifier for the network policy
Supporting Types
AccountNetworkPolicyEgress, AccountNetworkPolicyEgressArgs
- Network
Access AccountNetwork Policy Egress Network Access - The access policy enforced for egress traffic to the internet
- Network
Access AccountNetwork Policy Egress Network Access - The access policy enforced for egress traffic to the internet
- network_
access object - The access policy enforced for egress traffic to the internet
- network
Access AccountNetwork Policy Egress Network Access - The access policy enforced for egress traffic to the internet
- network
Access AccountNetwork Policy Egress Network Access - The access policy enforced for egress traffic to the internet
- network_
access AccountNetwork Policy Egress Network Access - The access policy enforced for egress traffic to the internet
- network
Access Property Map - The access policy enforced for egress traffic to the internet
AccountNetworkPolicyEgressNetworkAccess, AccountNetworkPolicyEgressNetworkAccessArgs
- Restriction
Mode string - Allowed
Internet List<AccountDestinations Network Policy Egress Network Access Allowed Internet Destination> - List of internet destinations that serverless workloads are allowed to access when in RESTRICTED_ACCESS mode
- Allowed
Storage List<AccountDestinations Network Policy Egress Network Access Allowed Storage Destination> - List of storage destinations that serverless workloads are allowed to access when in RESTRICTED_ACCESS mode
- Blocked
Internet List<AccountDestinations Network Policy Egress Network Access Blocked Internet Destination> - List of internet destinations that serverless workloads are blocked from accessing. These destinations are enforced when restriction mode is RESTRICTED_ACCESS or DRY_RUN. Currently supports DNS_NAME type only; IP_RANGE support is planned
- Policy
Enforcement AccountNetwork Policy Egress Network Access Policy Enforcement - Optional. When policyEnforcement is not provided, we default to ENFORCE_MODE_ALL_SERVICES
- Restriction
Mode string - Allowed
Internet []AccountDestinations Network Policy Egress Network Access Allowed Internet Destination - List of internet destinations that serverless workloads are allowed to access when in RESTRICTED_ACCESS mode
- Allowed
Storage []AccountDestinations Network Policy Egress Network Access Allowed Storage Destination - List of storage destinations that serverless workloads are allowed to access when in RESTRICTED_ACCESS mode
- Blocked
Internet []AccountDestinations Network Policy Egress Network Access Blocked Internet Destination - List of internet destinations that serverless workloads are blocked from accessing. These destinations are enforced when restriction mode is RESTRICTED_ACCESS or DRY_RUN. Currently supports DNS_NAME type only; IP_RANGE support is planned
- Policy
Enforcement AccountNetwork Policy Egress Network Access Policy Enforcement - Optional. When policyEnforcement is not provided, we default to ENFORCE_MODE_ALL_SERVICES
- restriction_
mode string - allowed_
internet_ list(object)destinations - List of internet destinations that serverless workloads are allowed to access when in RESTRICTED_ACCESS mode
- allowed_
storage_ list(object)destinations - List of storage destinations that serverless workloads are allowed to access when in RESTRICTED_ACCESS mode
- blocked_
internet_ list(object)destinations - List of internet destinations that serverless workloads are blocked from accessing. These destinations are enforced when restriction mode is RESTRICTED_ACCESS or DRY_RUN. Currently supports DNS_NAME type only; IP_RANGE support is planned
- policy_
enforcement object - Optional. When policyEnforcement is not provided, we default to ENFORCE_MODE_ALL_SERVICES
- restriction
Mode String - allowed
Internet List<AccountDestinations Network Policy Egress Network Access Allowed Internet Destination> - List of internet destinations that serverless workloads are allowed to access when in RESTRICTED_ACCESS mode
- allowed
Storage List<AccountDestinations Network Policy Egress Network Access Allowed Storage Destination> - List of storage destinations that serverless workloads are allowed to access when in RESTRICTED_ACCESS mode
- blocked
Internet List<AccountDestinations Network Policy Egress Network Access Blocked Internet Destination> - List of internet destinations that serverless workloads are blocked from accessing. These destinations are enforced when restriction mode is RESTRICTED_ACCESS or DRY_RUN. Currently supports DNS_NAME type only; IP_RANGE support is planned
- policy
Enforcement AccountNetwork Policy Egress Network Access Policy Enforcement - Optional. When policyEnforcement is not provided, we default to ENFORCE_MODE_ALL_SERVICES
- restriction
Mode string - allowed
Internet AccountDestinations Network Policy Egress Network Access Allowed Internet Destination[] - List of internet destinations that serverless workloads are allowed to access when in RESTRICTED_ACCESS mode
- allowed
Storage AccountDestinations Network Policy Egress Network Access Allowed Storage Destination[] - List of storage destinations that serverless workloads are allowed to access when in RESTRICTED_ACCESS mode
- blocked
Internet AccountDestinations Network Policy Egress Network Access Blocked Internet Destination[] - List of internet destinations that serverless workloads are blocked from accessing. These destinations are enforced when restriction mode is RESTRICTED_ACCESS or DRY_RUN. Currently supports DNS_NAME type only; IP_RANGE support is planned
- policy
Enforcement AccountNetwork Policy Egress Network Access Policy Enforcement - Optional. When policyEnforcement is not provided, we default to ENFORCE_MODE_ALL_SERVICES
- restriction_
mode str - allowed_
internet_ Sequence[Accountdestinations Network Policy Egress Network Access Allowed Internet Destination] - List of internet destinations that serverless workloads are allowed to access when in RESTRICTED_ACCESS mode
- allowed_
storage_ Sequence[Accountdestinations Network Policy Egress Network Access Allowed Storage Destination] - List of storage destinations that serverless workloads are allowed to access when in RESTRICTED_ACCESS mode
- blocked_
internet_ Sequence[Accountdestinations Network Policy Egress Network Access Blocked Internet Destination] - List of internet destinations that serverless workloads are blocked from accessing. These destinations are enforced when restriction mode is RESTRICTED_ACCESS or DRY_RUN. Currently supports DNS_NAME type only; IP_RANGE support is planned
- policy_
enforcement AccountNetwork Policy Egress Network Access Policy Enforcement - Optional. When policyEnforcement is not provided, we default to ENFORCE_MODE_ALL_SERVICES
- restriction
Mode String - allowed
Internet List<Property Map>Destinations - List of internet destinations that serverless workloads are allowed to access when in RESTRICTED_ACCESS mode
- allowed
Storage List<Property Map>Destinations - List of storage destinations that serverless workloads are allowed to access when in RESTRICTED_ACCESS mode
- blocked
Internet List<Property Map>Destinations - List of internet destinations that serverless workloads are blocked from accessing. These destinations are enforced when restriction mode is RESTRICTED_ACCESS or DRY_RUN. Currently supports DNS_NAME type only; IP_RANGE support is planned
- policy
Enforcement Property Map - Optional. When policyEnforcement is not provided, we default to ENFORCE_MODE_ALL_SERVICES
AccountNetworkPolicyEgressNetworkAccessAllowedInternetDestination, AccountNetworkPolicyEgressNetworkAccessAllowedInternetDestinationArgs
- Destination string
- Internet
Destination stringType - The type of internet destination. Currently only DNS_NAME is supported. Possible values are:
DNS_NAME
- Destination string
- Internet
Destination stringType - The type of internet destination. Currently only DNS_NAME is supported. Possible values are:
DNS_NAME
- destination string
- internet_
destination_ stringtype - The type of internet destination. Currently only DNS_NAME is supported. Possible values are:
DNS_NAME
- destination String
- internet
Destination StringType - The type of internet destination. Currently only DNS_NAME is supported. Possible values are:
DNS_NAME
- destination string
- internet
Destination stringType - The type of internet destination. Currently only DNS_NAME is supported. Possible values are:
DNS_NAME
- destination str
- internet_
destination_ strtype - The type of internet destination. Currently only DNS_NAME is supported. Possible values are:
DNS_NAME
- destination String
- internet
Destination StringType - The type of internet destination. Currently only DNS_NAME is supported. Possible values are:
DNS_NAME
AccountNetworkPolicyEgressNetworkAccessAllowedStorageDestination, AccountNetworkPolicyEgressNetworkAccessAllowedStorageDestinationArgs
- Azure
Storage stringAccount - The Azure storage account name
- Azure
Storage stringService - The Azure storage service type (blob, dfs, etc.)
- Bucket
Name string - Region string
- Storage
Destination stringType - The type of storage destination. Possible values are:
AWS_S3,AZURE_STORAGE,GOOGLE_CLOUD_STORAGE
- Azure
Storage stringAccount - The Azure storage account name
- Azure
Storage stringService - The Azure storage service type (blob, dfs, etc.)
- Bucket
Name string - Region string
- Storage
Destination stringType - The type of storage destination. Possible values are:
AWS_S3,AZURE_STORAGE,GOOGLE_CLOUD_STORAGE
- azure_
storage_ stringaccount - The Azure storage account name
- azure_
storage_ stringservice - The Azure storage service type (blob, dfs, etc.)
- bucket_
name string - region string
- storage_
destination_ stringtype - The type of storage destination. Possible values are:
AWS_S3,AZURE_STORAGE,GOOGLE_CLOUD_STORAGE
- azure
Storage StringAccount - The Azure storage account name
- azure
Storage StringService - The Azure storage service type (blob, dfs, etc.)
- bucket
Name String - region String
- storage
Destination StringType - The type of storage destination. Possible values are:
AWS_S3,AZURE_STORAGE,GOOGLE_CLOUD_STORAGE
- azure
Storage stringAccount - The Azure storage account name
- azure
Storage stringService - The Azure storage service type (blob, dfs, etc.)
- bucket
Name string - region string
- storage
Destination stringType - The type of storage destination. Possible values are:
AWS_S3,AZURE_STORAGE,GOOGLE_CLOUD_STORAGE
- azure_
storage_ straccount - The Azure storage account name
- azure_
storage_ strservice - The Azure storage service type (blob, dfs, etc.)
- bucket_
name str - region str
- storage_
destination_ strtype - The type of storage destination. Possible values are:
AWS_S3,AZURE_STORAGE,GOOGLE_CLOUD_STORAGE
- azure
Storage StringAccount - The Azure storage account name
- azure
Storage StringService - The Azure storage service type (blob, dfs, etc.)
- bucket
Name String - region String
- storage
Destination StringType - The type of storage destination. Possible values are:
AWS_S3,AZURE_STORAGE,GOOGLE_CLOUD_STORAGE
AccountNetworkPolicyEgressNetworkAccessBlockedInternetDestination, AccountNetworkPolicyEgressNetworkAccessBlockedInternetDestinationArgs
- Destination string
- Internet
Destination stringType - The type of internet destination. Currently only DNS_NAME is supported. Possible values are:
DNS_NAME
- Destination string
- Internet
Destination stringType - The type of internet destination. Currently only DNS_NAME is supported. Possible values are:
DNS_NAME
- destination string
- internet_
destination_ stringtype - The type of internet destination. Currently only DNS_NAME is supported. Possible values are:
DNS_NAME
- destination String
- internet
Destination StringType - The type of internet destination. Currently only DNS_NAME is supported. Possible values are:
DNS_NAME
- destination string
- internet
Destination stringType - The type of internet destination. Currently only DNS_NAME is supported. Possible values are:
DNS_NAME
- destination str
- internet_
destination_ strtype - The type of internet destination. Currently only DNS_NAME is supported. Possible values are:
DNS_NAME
- destination String
- internet
Destination StringType - The type of internet destination. Currently only DNS_NAME is supported. Possible values are:
DNS_NAME
AccountNetworkPolicyEgressNetworkAccessPolicyEnforcement, AccountNetworkPolicyEgressNetworkAccessPolicyEnforcementArgs
- Dry
Run List<string>Mode Product Filters - When empty, it means dry run for all products. When non-empty, it means dry run for specific products and for the other products, they will run in enforced mode
- Enforcement
Mode string - The mode of policy enforcement. ENFORCED blocks traffic that violates policy,
while DRY_RUN only logs violations without blocking. When not specified,
defaults to ENFORCED. Possible values are:
DRY_RUN,ENFORCED
- Dry
Run []stringMode Product Filters - When empty, it means dry run for all products. When non-empty, it means dry run for specific products and for the other products, they will run in enforced mode
- Enforcement
Mode string - The mode of policy enforcement. ENFORCED blocks traffic that violates policy,
while DRY_RUN only logs violations without blocking. When not specified,
defaults to ENFORCED. Possible values are:
DRY_RUN,ENFORCED
- dry_
run_ list(string)mode_ product_ filters - When empty, it means dry run for all products. When non-empty, it means dry run for specific products and for the other products, they will run in enforced mode
- enforcement_
mode string - The mode of policy enforcement. ENFORCED blocks traffic that violates policy,
while DRY_RUN only logs violations without blocking. When not specified,
defaults to ENFORCED. Possible values are:
DRY_RUN,ENFORCED
- dry
Run List<String>Mode Product Filters - When empty, it means dry run for all products. When non-empty, it means dry run for specific products and for the other products, they will run in enforced mode
- enforcement
Mode String - The mode of policy enforcement. ENFORCED blocks traffic that violates policy,
while DRY_RUN only logs violations without blocking. When not specified,
defaults to ENFORCED. Possible values are:
DRY_RUN,ENFORCED
- dry
Run string[]Mode Product Filters - When empty, it means dry run for all products. When non-empty, it means dry run for specific products and for the other products, they will run in enforced mode
- enforcement
Mode string - The mode of policy enforcement. ENFORCED blocks traffic that violates policy,
while DRY_RUN only logs violations without blocking. When not specified,
defaults to ENFORCED. Possible values are:
DRY_RUN,ENFORCED
- dry_
run_ Sequence[str]mode_ product_ filters - When empty, it means dry run for all products. When non-empty, it means dry run for specific products and for the other products, they will run in enforced mode
- enforcement_
mode str - The mode of policy enforcement. ENFORCED blocks traffic that violates policy,
while DRY_RUN only logs violations without blocking. When not specified,
defaults to ENFORCED. Possible values are:
DRY_RUN,ENFORCED
- dry
Run List<String>Mode Product Filters - When empty, it means dry run for all products. When non-empty, it means dry run for specific products and for the other products, they will run in enforced mode
- enforcement
Mode String - The mode of policy enforcement. ENFORCED blocks traffic that violates policy,
while DRY_RUN only logs violations without blocking. When not specified,
defaults to ENFORCED. Possible values are:
DRY_RUN,ENFORCED
AccountNetworkPolicyIngress, AccountNetworkPolicyIngressArgs
- Private
Access AccountNetwork Policy Ingress Private Access - The network policy restrictions for private access to the workspace. Configures how registered private endpoints are allowed or denied access
- Public
Access AccountNetwork Policy Ingress Public Access - The network policy restrictions for public access to the workspace. Configures how public internet traffic is allowed or denied access
- Private
Access AccountNetwork Policy Ingress Private Access - The network policy restrictions for private access to the workspace. Configures how registered private endpoints are allowed or denied access
- Public
Access AccountNetwork Policy Ingress Public Access - The network policy restrictions for public access to the workspace. Configures how public internet traffic is allowed or denied access
- private_
access object - The network policy restrictions for private access to the workspace. Configures how registered private endpoints are allowed or denied access
- public_
access object - The network policy restrictions for public access to the workspace. Configures how public internet traffic is allowed or denied access
- private
Access AccountNetwork Policy Ingress Private Access - The network policy restrictions for private access to the workspace. Configures how registered private endpoints are allowed or denied access
- public
Access AccountNetwork Policy Ingress Public Access - The network policy restrictions for public access to the workspace. Configures how public internet traffic is allowed or denied access
- private
Access AccountNetwork Policy Ingress Private Access - The network policy restrictions for private access to the workspace. Configures how registered private endpoints are allowed or denied access
- public
Access AccountNetwork Policy Ingress Public Access - The network policy restrictions for public access to the workspace. Configures how public internet traffic is allowed or denied access
- private_
access AccountNetwork Policy Ingress Private Access - The network policy restrictions for private access to the workspace. Configures how registered private endpoints are allowed or denied access
- public_
access AccountNetwork Policy Ingress Public Access - The network policy restrictions for public access to the workspace. Configures how public internet traffic is allowed or denied access
- private
Access Property Map - The network policy restrictions for private access to the workspace. Configures how registered private endpoints are allowed or denied access
- public
Access Property Map - The network policy restrictions for public access to the workspace. Configures how public internet traffic is allowed or denied access
AccountNetworkPolicyIngressDryRun, AccountNetworkPolicyIngressDryRunArgs
- Private
Access AccountNetwork Policy Ingress Dry Run Private Access - The network policy restrictions for private access to the workspace. Configures how registered private endpoints are allowed or denied access
- Public
Access AccountNetwork Policy Ingress Dry Run Public Access - The network policy restrictions for public access to the workspace. Configures how public internet traffic is allowed or denied access
- Private
Access AccountNetwork Policy Ingress Dry Run Private Access - The network policy restrictions for private access to the workspace. Configures how registered private endpoints are allowed or denied access
- Public
Access AccountNetwork Policy Ingress Dry Run Public Access - The network policy restrictions for public access to the workspace. Configures how public internet traffic is allowed or denied access
- private_
access object - The network policy restrictions for private access to the workspace. Configures how registered private endpoints are allowed or denied access
- public_
access object - The network policy restrictions for public access to the workspace. Configures how public internet traffic is allowed or denied access
- private
Access AccountNetwork Policy Ingress Dry Run Private Access - The network policy restrictions for private access to the workspace. Configures how registered private endpoints are allowed or denied access
- public
Access AccountNetwork Policy Ingress Dry Run Public Access - The network policy restrictions for public access to the workspace. Configures how public internet traffic is allowed or denied access
- private
Access AccountNetwork Policy Ingress Dry Run Private Access - The network policy restrictions for private access to the workspace. Configures how registered private endpoints are allowed or denied access
- public
Access AccountNetwork Policy Ingress Dry Run Public Access - The network policy restrictions for public access to the workspace. Configures how public internet traffic is allowed or denied access
- private_
access AccountNetwork Policy Ingress Dry Run Private Access - The network policy restrictions for private access to the workspace. Configures how registered private endpoints are allowed or denied access
- public_
access AccountNetwork Policy Ingress Dry Run Public Access - The network policy restrictions for public access to the workspace. Configures how public internet traffic is allowed or denied access
- private
Access Property Map - The network policy restrictions for private access to the workspace. Configures how registered private endpoints are allowed or denied access
- public
Access Property Map - The network policy restrictions for public access to the workspace. Configures how public internet traffic is allowed or denied access
AccountNetworkPolicyIngressDryRunPrivateAccess, AccountNetworkPolicyIngressDryRunPrivateAccessArgs
AccountNetworkPolicyIngressDryRunPrivateAccessAllowRule, AccountNetworkPolicyIngressDryRunPrivateAccessAllowRuleArgs
AccountNetworkPolicyIngressDryRunPrivateAccessAllowRuleAuthentication, AccountNetworkPolicyIngressDryRunPrivateAccessAllowRuleAuthenticationArgs
- Identities
List<Account
Network Policy Ingress Dry Run Private Access Allow Rule Authentication Identity> - Valid only when IdentityType is IDENTITY_TYPE_SELECTED_IDENTITIES
- Identity
Type string - Possible values are:
IDENTITY_TYPE_ALL_SERVICE_PRINCIPALS,IDENTITY_TYPE_ALL_USERS,IDENTITY_TYPE_SELECTED_IDENTITIES
- Identities
[]Account
Network Policy Ingress Dry Run Private Access Allow Rule Authentication Identity - Valid only when IdentityType is IDENTITY_TYPE_SELECTED_IDENTITIES
- Identity
Type string - Possible values are:
IDENTITY_TYPE_ALL_SERVICE_PRINCIPALS,IDENTITY_TYPE_ALL_USERS,IDENTITY_TYPE_SELECTED_IDENTITIES
- identities list(object)
- Valid only when IdentityType is IDENTITY_TYPE_SELECTED_IDENTITIES
- identity_
type string - Possible values are:
IDENTITY_TYPE_ALL_SERVICE_PRINCIPALS,IDENTITY_TYPE_ALL_USERS,IDENTITY_TYPE_SELECTED_IDENTITIES
- identities
List<Account
Network Policy Ingress Dry Run Private Access Allow Rule Authentication Identity> - Valid only when IdentityType is IDENTITY_TYPE_SELECTED_IDENTITIES
- identity
Type String - Possible values are:
IDENTITY_TYPE_ALL_SERVICE_PRINCIPALS,IDENTITY_TYPE_ALL_USERS,IDENTITY_TYPE_SELECTED_IDENTITIES
- identities
Account
Network Policy Ingress Dry Run Private Access Allow Rule Authentication Identity[] - Valid only when IdentityType is IDENTITY_TYPE_SELECTED_IDENTITIES
- identity
Type string - Possible values are:
IDENTITY_TYPE_ALL_SERVICE_PRINCIPALS,IDENTITY_TYPE_ALL_USERS,IDENTITY_TYPE_SELECTED_IDENTITIES
- identities
Sequence[Account
Network Policy Ingress Dry Run Private Access Allow Rule Authentication Identity] - Valid only when IdentityType is IDENTITY_TYPE_SELECTED_IDENTITIES
- identity_
type str - Possible values are:
IDENTITY_TYPE_ALL_SERVICE_PRINCIPALS,IDENTITY_TYPE_ALL_USERS,IDENTITY_TYPE_SELECTED_IDENTITIES
- identities List<Property Map>
- Valid only when IdentityType is IDENTITY_TYPE_SELECTED_IDENTITIES
- identity
Type String - Possible values are:
IDENTITY_TYPE_ALL_SERVICE_PRINCIPALS,IDENTITY_TYPE_ALL_USERS,IDENTITY_TYPE_SELECTED_IDENTITIES
AccountNetworkPolicyIngressDryRunPrivateAccessAllowRuleAuthenticationIdentity, AccountNetworkPolicyIngressDryRunPrivateAccessAllowRuleAuthenticationIdentityArgs
- Principal
Id string - Principal
Type string - Possible values are:
PRINCIPAL_TYPE_SERVICE_PRINCIPAL,PRINCIPAL_TYPE_USER
- Principal
Id string - Principal
Type string - Possible values are:
PRINCIPAL_TYPE_SERVICE_PRINCIPAL,PRINCIPAL_TYPE_USER
- principal_
id string - principal_
type string - Possible values are:
PRINCIPAL_TYPE_SERVICE_PRINCIPAL,PRINCIPAL_TYPE_USER
- principal
Id String - principal
Type String - Possible values are:
PRINCIPAL_TYPE_SERVICE_PRINCIPAL,PRINCIPAL_TYPE_USER
- principal
Id string - principal
Type string - Possible values are:
PRINCIPAL_TYPE_SERVICE_PRINCIPAL,PRINCIPAL_TYPE_USER
- principal_
id str - principal_
type str - Possible values are:
PRINCIPAL_TYPE_SERVICE_PRINCIPAL,PRINCIPAL_TYPE_USER
- principal
Id String - principal
Type String - Possible values are:
PRINCIPAL_TYPE_SERVICE_PRINCIPAL,PRINCIPAL_TYPE_USER
AccountNetworkPolicyIngressDryRunPrivateAccessAllowRuleDestination, AccountNetworkPolicyIngressDryRunPrivateAccessAllowRuleDestinationArgs
- Account
Api AccountNetwork Policy Ingress Dry Run Private Access Allow Rule Destination Account Api - Account
Databricks AccountOne Network Policy Ingress Dry Run Private Access Allow Rule Destination Account Databricks One - Account
Ui AccountNetwork Policy Ingress Dry Run Private Access Allow Rule Destination Account Ui - All
Destinations bool - Apps
Runtime AccountNetwork Policy Ingress Dry Run Private Access Allow Rule Destination Apps Runtime - Lakebase
Runtime AccountNetwork Policy Ingress Dry Run Private Access Allow Rule Destination Lakebase Runtime - Workspace
Api AccountNetwork Policy Ingress Dry Run Private Access Allow Rule Destination Workspace Api - Workspace
Ui AccountNetwork Policy Ingress Dry Run Private Access Allow Rule Destination Workspace Ui
- Account
Api AccountNetwork Policy Ingress Dry Run Private Access Allow Rule Destination Account Api - Account
Databricks AccountOne Network Policy Ingress Dry Run Private Access Allow Rule Destination Account Databricks One - Account
Ui AccountNetwork Policy Ingress Dry Run Private Access Allow Rule Destination Account Ui - All
Destinations bool - Apps
Runtime AccountNetwork Policy Ingress Dry Run Private Access Allow Rule Destination Apps Runtime - Lakebase
Runtime AccountNetwork Policy Ingress Dry Run Private Access Allow Rule Destination Lakebase Runtime - Workspace
Api AccountNetwork Policy Ingress Dry Run Private Access Allow Rule Destination Workspace Api - Workspace
Ui AccountNetwork Policy Ingress Dry Run Private Access Allow Rule Destination Workspace Ui
- account
Api AccountNetwork Policy Ingress Dry Run Private Access Allow Rule Destination Account Api - account
Databricks AccountOne Network Policy Ingress Dry Run Private Access Allow Rule Destination Account Databricks One - account
Ui AccountNetwork Policy Ingress Dry Run Private Access Allow Rule Destination Account Ui - all
Destinations Boolean - apps
Runtime AccountNetwork Policy Ingress Dry Run Private Access Allow Rule Destination Apps Runtime - lakebase
Runtime AccountNetwork Policy Ingress Dry Run Private Access Allow Rule Destination Lakebase Runtime - workspace
Api AccountNetwork Policy Ingress Dry Run Private Access Allow Rule Destination Workspace Api - workspace
Ui AccountNetwork Policy Ingress Dry Run Private Access Allow Rule Destination Workspace Ui
- account
Api AccountNetwork Policy Ingress Dry Run Private Access Allow Rule Destination Account Api - account
Databricks AccountOne Network Policy Ingress Dry Run Private Access Allow Rule Destination Account Databricks One - account
Ui AccountNetwork Policy Ingress Dry Run Private Access Allow Rule Destination Account Ui - all
Destinations boolean - apps
Runtime AccountNetwork Policy Ingress Dry Run Private Access Allow Rule Destination Apps Runtime - lakebase
Runtime AccountNetwork Policy Ingress Dry Run Private Access Allow Rule Destination Lakebase Runtime - workspace
Api AccountNetwork Policy Ingress Dry Run Private Access Allow Rule Destination Workspace Api - workspace
Ui AccountNetwork Policy Ingress Dry Run Private Access Allow Rule Destination Workspace Ui
- account_
api AccountNetwork Policy Ingress Dry Run Private Access Allow Rule Destination Account Api - account_
databricks_ Accountone Network Policy Ingress Dry Run Private Access Allow Rule Destination Account Databricks One - account_
ui AccountNetwork Policy Ingress Dry Run Private Access Allow Rule Destination Account Ui - all_
destinations bool - apps_
runtime AccountNetwork Policy Ingress Dry Run Private Access Allow Rule Destination Apps Runtime - lakebase_
runtime AccountNetwork Policy Ingress Dry Run Private Access Allow Rule Destination Lakebase Runtime - workspace_
api AccountNetwork Policy Ingress Dry Run Private Access Allow Rule Destination Workspace Api - workspace_
ui AccountNetwork Policy Ingress Dry Run Private Access Allow Rule Destination Workspace Ui
AccountNetworkPolicyIngressDryRunPrivateAccessAllowRuleDestinationAccountApi, AccountNetworkPolicyIngressDryRunPrivateAccessAllowRuleDestinationAccountApiArgs
- Scope
Qualifier string - Scopes List<string>
- Scope
Qualifier string - Scopes []string
- scope_
qualifier string - scopes list(string)
- scope
Qualifier String - scopes List<String>
- scope
Qualifier string - scopes string[]
- scope_
qualifier str - scopes Sequence[str]
- scope
Qualifier String - scopes List<String>
AccountNetworkPolicyIngressDryRunPrivateAccessAllowRuleDestinationAccountDatabricksOne, AccountNetworkPolicyIngressDryRunPrivateAccessAllowRuleDestinationAccountDatabricksOneArgs
- All
Destinations bool
- All
Destinations bool
- all_
destinations bool
- all
Destinations Boolean
- all
Destinations boolean
- all_
destinations bool
- all
Destinations Boolean
AccountNetworkPolicyIngressDryRunPrivateAccessAllowRuleDestinationAccountUi, AccountNetworkPolicyIngressDryRunPrivateAccessAllowRuleDestinationAccountUiArgs
- All
Destinations bool
- All
Destinations bool
- all_
destinations bool
- all
Destinations Boolean
- all
Destinations boolean
- all_
destinations bool
- all
Destinations Boolean
AccountNetworkPolicyIngressDryRunPrivateAccessAllowRuleDestinationAppsRuntime, AccountNetworkPolicyIngressDryRunPrivateAccessAllowRuleDestinationAppsRuntimeArgs
- All
Destinations bool
- All
Destinations bool
- all_
destinations bool
- all
Destinations Boolean
- all
Destinations boolean
- all_
destinations bool
- all
Destinations Boolean
AccountNetworkPolicyIngressDryRunPrivateAccessAllowRuleDestinationLakebaseRuntime, AccountNetworkPolicyIngressDryRunPrivateAccessAllowRuleDestinationLakebaseRuntimeArgs
- All
Destinations bool
- All
Destinations bool
- all_
destinations bool
- all
Destinations Boolean
- all
Destinations boolean
- all_
destinations bool
- all
Destinations Boolean
AccountNetworkPolicyIngressDryRunPrivateAccessAllowRuleDestinationWorkspaceApi, AccountNetworkPolicyIngressDryRunPrivateAccessAllowRuleDestinationWorkspaceApiArgs
- Scope
Qualifier string - Scopes List<string>
- Scope
Qualifier string - Scopes []string
- scope_
qualifier string - scopes list(string)
- scope
Qualifier String - scopes List<String>
- scope
Qualifier string - scopes string[]
- scope_
qualifier str - scopes Sequence[str]
- scope
Qualifier String - scopes List<String>
AccountNetworkPolicyIngressDryRunPrivateAccessAllowRuleDestinationWorkspaceUi, AccountNetworkPolicyIngressDryRunPrivateAccessAllowRuleDestinationWorkspaceUiArgs
- All
Destinations bool
- All
Destinations bool
- all_
destinations bool
- all
Destinations Boolean
- all
Destinations boolean
- all_
destinations bool
- all
Destinations Boolean
AccountNetworkPolicyIngressDryRunPrivateAccessAllowRuleOrigin, AccountNetworkPolicyIngressDryRunPrivateAccessAllowRuleOriginArgs
- all
Private BooleanAccess - all
Registered BooleanEndpoints - azure
Workspace BooleanPrivate Link - endpoints Property Map
AccountNetworkPolicyIngressDryRunPrivateAccessAllowRuleOriginEndpoints, AccountNetworkPolicyIngressDryRunPrivateAccessAllowRuleOriginEndpointsArgs
- Endpoint
Ids List<string>
- Endpoint
Ids []string
- endpoint_
ids list(string)
- endpoint
Ids List<String>
- endpoint
Ids string[]
- endpoint_
ids Sequence[str]
- endpoint
Ids List<String>
AccountNetworkPolicyIngressDryRunPrivateAccessDenyRule, AccountNetworkPolicyIngressDryRunPrivateAccessDenyRuleArgs
AccountNetworkPolicyIngressDryRunPrivateAccessDenyRuleAuthentication, AccountNetworkPolicyIngressDryRunPrivateAccessDenyRuleAuthenticationArgs
- Identities
List<Account
Network Policy Ingress Dry Run Private Access Deny Rule Authentication Identity> - Valid only when IdentityType is IDENTITY_TYPE_SELECTED_IDENTITIES
- Identity
Type string - Possible values are:
IDENTITY_TYPE_ALL_SERVICE_PRINCIPALS,IDENTITY_TYPE_ALL_USERS,IDENTITY_TYPE_SELECTED_IDENTITIES
- Identities
[]Account
Network Policy Ingress Dry Run Private Access Deny Rule Authentication Identity - Valid only when IdentityType is IDENTITY_TYPE_SELECTED_IDENTITIES
- Identity
Type string - Possible values are:
IDENTITY_TYPE_ALL_SERVICE_PRINCIPALS,IDENTITY_TYPE_ALL_USERS,IDENTITY_TYPE_SELECTED_IDENTITIES
- identities list(object)
- Valid only when IdentityType is IDENTITY_TYPE_SELECTED_IDENTITIES
- identity_
type string - Possible values are:
IDENTITY_TYPE_ALL_SERVICE_PRINCIPALS,IDENTITY_TYPE_ALL_USERS,IDENTITY_TYPE_SELECTED_IDENTITIES
- identities
List<Account
Network Policy Ingress Dry Run Private Access Deny Rule Authentication Identity> - Valid only when IdentityType is IDENTITY_TYPE_SELECTED_IDENTITIES
- identity
Type String - Possible values are:
IDENTITY_TYPE_ALL_SERVICE_PRINCIPALS,IDENTITY_TYPE_ALL_USERS,IDENTITY_TYPE_SELECTED_IDENTITIES
- identities
Account
Network Policy Ingress Dry Run Private Access Deny Rule Authentication Identity[] - Valid only when IdentityType is IDENTITY_TYPE_SELECTED_IDENTITIES
- identity
Type string - Possible values are:
IDENTITY_TYPE_ALL_SERVICE_PRINCIPALS,IDENTITY_TYPE_ALL_USERS,IDENTITY_TYPE_SELECTED_IDENTITIES
- identities
Sequence[Account
Network Policy Ingress Dry Run Private Access Deny Rule Authentication Identity] - Valid only when IdentityType is IDENTITY_TYPE_SELECTED_IDENTITIES
- identity_
type str - Possible values are:
IDENTITY_TYPE_ALL_SERVICE_PRINCIPALS,IDENTITY_TYPE_ALL_USERS,IDENTITY_TYPE_SELECTED_IDENTITIES
- identities List<Property Map>
- Valid only when IdentityType is IDENTITY_TYPE_SELECTED_IDENTITIES
- identity
Type String - Possible values are:
IDENTITY_TYPE_ALL_SERVICE_PRINCIPALS,IDENTITY_TYPE_ALL_USERS,IDENTITY_TYPE_SELECTED_IDENTITIES
AccountNetworkPolicyIngressDryRunPrivateAccessDenyRuleAuthenticationIdentity, AccountNetworkPolicyIngressDryRunPrivateAccessDenyRuleAuthenticationIdentityArgs
- Principal
Id string - Principal
Type string - Possible values are:
PRINCIPAL_TYPE_SERVICE_PRINCIPAL,PRINCIPAL_TYPE_USER
- Principal
Id string - Principal
Type string - Possible values are:
PRINCIPAL_TYPE_SERVICE_PRINCIPAL,PRINCIPAL_TYPE_USER
- principal_
id string - principal_
type string - Possible values are:
PRINCIPAL_TYPE_SERVICE_PRINCIPAL,PRINCIPAL_TYPE_USER
- principal
Id String - principal
Type String - Possible values are:
PRINCIPAL_TYPE_SERVICE_PRINCIPAL,PRINCIPAL_TYPE_USER
- principal
Id string - principal
Type string - Possible values are:
PRINCIPAL_TYPE_SERVICE_PRINCIPAL,PRINCIPAL_TYPE_USER
- principal_
id str - principal_
type str - Possible values are:
PRINCIPAL_TYPE_SERVICE_PRINCIPAL,PRINCIPAL_TYPE_USER
- principal
Id String - principal
Type String - Possible values are:
PRINCIPAL_TYPE_SERVICE_PRINCIPAL,PRINCIPAL_TYPE_USER
AccountNetworkPolicyIngressDryRunPrivateAccessDenyRuleDestination, AccountNetworkPolicyIngressDryRunPrivateAccessDenyRuleDestinationArgs
- Account
Api AccountNetwork Policy Ingress Dry Run Private Access Deny Rule Destination Account Api - Account
Databricks AccountOne Network Policy Ingress Dry Run Private Access Deny Rule Destination Account Databricks One - Account
Ui AccountNetwork Policy Ingress Dry Run Private Access Deny Rule Destination Account Ui - All
Destinations bool - Apps
Runtime AccountNetwork Policy Ingress Dry Run Private Access Deny Rule Destination Apps Runtime - Lakebase
Runtime AccountNetwork Policy Ingress Dry Run Private Access Deny Rule Destination Lakebase Runtime - Workspace
Api AccountNetwork Policy Ingress Dry Run Private Access Deny Rule Destination Workspace Api - Workspace
Ui AccountNetwork Policy Ingress Dry Run Private Access Deny Rule Destination Workspace Ui
- Account
Api AccountNetwork Policy Ingress Dry Run Private Access Deny Rule Destination Account Api - Account
Databricks AccountOne Network Policy Ingress Dry Run Private Access Deny Rule Destination Account Databricks One - Account
Ui AccountNetwork Policy Ingress Dry Run Private Access Deny Rule Destination Account Ui - All
Destinations bool - Apps
Runtime AccountNetwork Policy Ingress Dry Run Private Access Deny Rule Destination Apps Runtime - Lakebase
Runtime AccountNetwork Policy Ingress Dry Run Private Access Deny Rule Destination Lakebase Runtime - Workspace
Api AccountNetwork Policy Ingress Dry Run Private Access Deny Rule Destination Workspace Api - Workspace
Ui AccountNetwork Policy Ingress Dry Run Private Access Deny Rule Destination Workspace Ui
- account
Api AccountNetwork Policy Ingress Dry Run Private Access Deny Rule Destination Account Api - account
Databricks AccountOne Network Policy Ingress Dry Run Private Access Deny Rule Destination Account Databricks One - account
Ui AccountNetwork Policy Ingress Dry Run Private Access Deny Rule Destination Account Ui - all
Destinations Boolean - apps
Runtime AccountNetwork Policy Ingress Dry Run Private Access Deny Rule Destination Apps Runtime - lakebase
Runtime AccountNetwork Policy Ingress Dry Run Private Access Deny Rule Destination Lakebase Runtime - workspace
Api AccountNetwork Policy Ingress Dry Run Private Access Deny Rule Destination Workspace Api - workspace
Ui AccountNetwork Policy Ingress Dry Run Private Access Deny Rule Destination Workspace Ui
- account
Api AccountNetwork Policy Ingress Dry Run Private Access Deny Rule Destination Account Api - account
Databricks AccountOne Network Policy Ingress Dry Run Private Access Deny Rule Destination Account Databricks One - account
Ui AccountNetwork Policy Ingress Dry Run Private Access Deny Rule Destination Account Ui - all
Destinations boolean - apps
Runtime AccountNetwork Policy Ingress Dry Run Private Access Deny Rule Destination Apps Runtime - lakebase
Runtime AccountNetwork Policy Ingress Dry Run Private Access Deny Rule Destination Lakebase Runtime - workspace
Api AccountNetwork Policy Ingress Dry Run Private Access Deny Rule Destination Workspace Api - workspace
Ui AccountNetwork Policy Ingress Dry Run Private Access Deny Rule Destination Workspace Ui
- account_
api AccountNetwork Policy Ingress Dry Run Private Access Deny Rule Destination Account Api - account_
databricks_ Accountone Network Policy Ingress Dry Run Private Access Deny Rule Destination Account Databricks One - account_
ui AccountNetwork Policy Ingress Dry Run Private Access Deny Rule Destination Account Ui - all_
destinations bool - apps_
runtime AccountNetwork Policy Ingress Dry Run Private Access Deny Rule Destination Apps Runtime - lakebase_
runtime AccountNetwork Policy Ingress Dry Run Private Access Deny Rule Destination Lakebase Runtime - workspace_
api AccountNetwork Policy Ingress Dry Run Private Access Deny Rule Destination Workspace Api - workspace_
ui AccountNetwork Policy Ingress Dry Run Private Access Deny Rule Destination Workspace Ui
AccountNetworkPolicyIngressDryRunPrivateAccessDenyRuleDestinationAccountApi, AccountNetworkPolicyIngressDryRunPrivateAccessDenyRuleDestinationAccountApiArgs
- Scope
Qualifier string - Scopes List<string>
- Scope
Qualifier string - Scopes []string
- scope_
qualifier string - scopes list(string)
- scope
Qualifier String - scopes List<String>
- scope
Qualifier string - scopes string[]
- scope_
qualifier str - scopes Sequence[str]
- scope
Qualifier String - scopes List<String>
AccountNetworkPolicyIngressDryRunPrivateAccessDenyRuleDestinationAccountDatabricksOne, AccountNetworkPolicyIngressDryRunPrivateAccessDenyRuleDestinationAccountDatabricksOneArgs
- All
Destinations bool
- All
Destinations bool
- all_
destinations bool
- all
Destinations Boolean
- all
Destinations boolean
- all_
destinations bool
- all
Destinations Boolean
AccountNetworkPolicyIngressDryRunPrivateAccessDenyRuleDestinationAccountUi, AccountNetworkPolicyIngressDryRunPrivateAccessDenyRuleDestinationAccountUiArgs
- All
Destinations bool
- All
Destinations bool
- all_
destinations bool
- all
Destinations Boolean
- all
Destinations boolean
- all_
destinations bool
- all
Destinations Boolean
AccountNetworkPolicyIngressDryRunPrivateAccessDenyRuleDestinationAppsRuntime, AccountNetworkPolicyIngressDryRunPrivateAccessDenyRuleDestinationAppsRuntimeArgs
- All
Destinations bool
- All
Destinations bool
- all_
destinations bool
- all
Destinations Boolean
- all
Destinations boolean
- all_
destinations bool
- all
Destinations Boolean
AccountNetworkPolicyIngressDryRunPrivateAccessDenyRuleDestinationLakebaseRuntime, AccountNetworkPolicyIngressDryRunPrivateAccessDenyRuleDestinationLakebaseRuntimeArgs
- All
Destinations bool
- All
Destinations bool
- all_
destinations bool
- all
Destinations Boolean
- all
Destinations boolean
- all_
destinations bool
- all
Destinations Boolean
AccountNetworkPolicyIngressDryRunPrivateAccessDenyRuleDestinationWorkspaceApi, AccountNetworkPolicyIngressDryRunPrivateAccessDenyRuleDestinationWorkspaceApiArgs
- Scope
Qualifier string - Scopes List<string>
- Scope
Qualifier string - Scopes []string
- scope_
qualifier string - scopes list(string)
- scope
Qualifier String - scopes List<String>
- scope
Qualifier string - scopes string[]
- scope_
qualifier str - scopes Sequence[str]
- scope
Qualifier String - scopes List<String>
AccountNetworkPolicyIngressDryRunPrivateAccessDenyRuleDestinationWorkspaceUi, AccountNetworkPolicyIngressDryRunPrivateAccessDenyRuleDestinationWorkspaceUiArgs
- All
Destinations bool
- All
Destinations bool
- all_
destinations bool
- all
Destinations Boolean
- all
Destinations boolean
- all_
destinations bool
- all
Destinations Boolean
AccountNetworkPolicyIngressDryRunPrivateAccessDenyRuleOrigin, AccountNetworkPolicyIngressDryRunPrivateAccessDenyRuleOriginArgs
- all
Private BooleanAccess - all
Registered BooleanEndpoints - azure
Workspace BooleanPrivate Link - endpoints Property Map
AccountNetworkPolicyIngressDryRunPrivateAccessDenyRuleOriginEndpoints, AccountNetworkPolicyIngressDryRunPrivateAccessDenyRuleOriginEndpointsArgs
- Endpoint
Ids List<string>
- Endpoint
Ids []string
- endpoint_
ids list(string)
- endpoint
Ids List<String>
- endpoint
Ids string[]
- endpoint_
ids Sequence[str]
- endpoint
Ids List<String>
AccountNetworkPolicyIngressDryRunPublicAccess, AccountNetworkPolicyIngressDryRunPublicAccessArgs
AccountNetworkPolicyIngressDryRunPublicAccessAllowRule, AccountNetworkPolicyIngressDryRunPublicAccessAllowRuleArgs
AccountNetworkPolicyIngressDryRunPublicAccessAllowRuleAuthentication, AccountNetworkPolicyIngressDryRunPublicAccessAllowRuleAuthenticationArgs
- Identities
List<Account
Network Policy Ingress Dry Run Public Access Allow Rule Authentication Identity> - Valid only when IdentityType is IDENTITY_TYPE_SELECTED_IDENTITIES
- Identity
Type string - Possible values are:
IDENTITY_TYPE_ALL_SERVICE_PRINCIPALS,IDENTITY_TYPE_ALL_USERS,IDENTITY_TYPE_SELECTED_IDENTITIES
- Identities
[]Account
Network Policy Ingress Dry Run Public Access Allow Rule Authentication Identity - Valid only when IdentityType is IDENTITY_TYPE_SELECTED_IDENTITIES
- Identity
Type string - Possible values are:
IDENTITY_TYPE_ALL_SERVICE_PRINCIPALS,IDENTITY_TYPE_ALL_USERS,IDENTITY_TYPE_SELECTED_IDENTITIES
- identities list(object)
- Valid only when IdentityType is IDENTITY_TYPE_SELECTED_IDENTITIES
- identity_
type string - Possible values are:
IDENTITY_TYPE_ALL_SERVICE_PRINCIPALS,IDENTITY_TYPE_ALL_USERS,IDENTITY_TYPE_SELECTED_IDENTITIES
- identities
List<Account
Network Policy Ingress Dry Run Public Access Allow Rule Authentication Identity> - Valid only when IdentityType is IDENTITY_TYPE_SELECTED_IDENTITIES
- identity
Type String - Possible values are:
IDENTITY_TYPE_ALL_SERVICE_PRINCIPALS,IDENTITY_TYPE_ALL_USERS,IDENTITY_TYPE_SELECTED_IDENTITIES
- identities
Account
Network Policy Ingress Dry Run Public Access Allow Rule Authentication Identity[] - Valid only when IdentityType is IDENTITY_TYPE_SELECTED_IDENTITIES
- identity
Type string - Possible values are:
IDENTITY_TYPE_ALL_SERVICE_PRINCIPALS,IDENTITY_TYPE_ALL_USERS,IDENTITY_TYPE_SELECTED_IDENTITIES
- identities
Sequence[Account
Network Policy Ingress Dry Run Public Access Allow Rule Authentication Identity] - Valid only when IdentityType is IDENTITY_TYPE_SELECTED_IDENTITIES
- identity_
type str - Possible values are:
IDENTITY_TYPE_ALL_SERVICE_PRINCIPALS,IDENTITY_TYPE_ALL_USERS,IDENTITY_TYPE_SELECTED_IDENTITIES
- identities List<Property Map>
- Valid only when IdentityType is IDENTITY_TYPE_SELECTED_IDENTITIES
- identity
Type String - Possible values are:
IDENTITY_TYPE_ALL_SERVICE_PRINCIPALS,IDENTITY_TYPE_ALL_USERS,IDENTITY_TYPE_SELECTED_IDENTITIES
AccountNetworkPolicyIngressDryRunPublicAccessAllowRuleAuthenticationIdentity, AccountNetworkPolicyIngressDryRunPublicAccessAllowRuleAuthenticationIdentityArgs
- Principal
Id string - Principal
Type string - Possible values are:
PRINCIPAL_TYPE_SERVICE_PRINCIPAL,PRINCIPAL_TYPE_USER
- Principal
Id string - Principal
Type string - Possible values are:
PRINCIPAL_TYPE_SERVICE_PRINCIPAL,PRINCIPAL_TYPE_USER
- principal_
id string - principal_
type string - Possible values are:
PRINCIPAL_TYPE_SERVICE_PRINCIPAL,PRINCIPAL_TYPE_USER
- principal
Id String - principal
Type String - Possible values are:
PRINCIPAL_TYPE_SERVICE_PRINCIPAL,PRINCIPAL_TYPE_USER
- principal
Id string - principal
Type string - Possible values are:
PRINCIPAL_TYPE_SERVICE_PRINCIPAL,PRINCIPAL_TYPE_USER
- principal_
id str - principal_
type str - Possible values are:
PRINCIPAL_TYPE_SERVICE_PRINCIPAL,PRINCIPAL_TYPE_USER
- principal
Id String - principal
Type String - Possible values are:
PRINCIPAL_TYPE_SERVICE_PRINCIPAL,PRINCIPAL_TYPE_USER
AccountNetworkPolicyIngressDryRunPublicAccessAllowRuleDestination, AccountNetworkPolicyIngressDryRunPublicAccessAllowRuleDestinationArgs
- Account
Api AccountNetwork Policy Ingress Dry Run Public Access Allow Rule Destination Account Api - Account
Databricks AccountOne Network Policy Ingress Dry Run Public Access Allow Rule Destination Account Databricks One - Account
Ui AccountNetwork Policy Ingress Dry Run Public Access Allow Rule Destination Account Ui - All
Destinations bool - Apps
Runtime AccountNetwork Policy Ingress Dry Run Public Access Allow Rule Destination Apps Runtime - Lakebase
Runtime AccountNetwork Policy Ingress Dry Run Public Access Allow Rule Destination Lakebase Runtime - Workspace
Api AccountNetwork Policy Ingress Dry Run Public Access Allow Rule Destination Workspace Api - Workspace
Ui AccountNetwork Policy Ingress Dry Run Public Access Allow Rule Destination Workspace Ui
- Account
Api AccountNetwork Policy Ingress Dry Run Public Access Allow Rule Destination Account Api - Account
Databricks AccountOne Network Policy Ingress Dry Run Public Access Allow Rule Destination Account Databricks One - Account
Ui AccountNetwork Policy Ingress Dry Run Public Access Allow Rule Destination Account Ui - All
Destinations bool - Apps
Runtime AccountNetwork Policy Ingress Dry Run Public Access Allow Rule Destination Apps Runtime - Lakebase
Runtime AccountNetwork Policy Ingress Dry Run Public Access Allow Rule Destination Lakebase Runtime - Workspace
Api AccountNetwork Policy Ingress Dry Run Public Access Allow Rule Destination Workspace Api - Workspace
Ui AccountNetwork Policy Ingress Dry Run Public Access Allow Rule Destination Workspace Ui
- account
Api AccountNetwork Policy Ingress Dry Run Public Access Allow Rule Destination Account Api - account
Databricks AccountOne Network Policy Ingress Dry Run Public Access Allow Rule Destination Account Databricks One - account
Ui AccountNetwork Policy Ingress Dry Run Public Access Allow Rule Destination Account Ui - all
Destinations Boolean - apps
Runtime AccountNetwork Policy Ingress Dry Run Public Access Allow Rule Destination Apps Runtime - lakebase
Runtime AccountNetwork Policy Ingress Dry Run Public Access Allow Rule Destination Lakebase Runtime - workspace
Api AccountNetwork Policy Ingress Dry Run Public Access Allow Rule Destination Workspace Api - workspace
Ui AccountNetwork Policy Ingress Dry Run Public Access Allow Rule Destination Workspace Ui
- account
Api AccountNetwork Policy Ingress Dry Run Public Access Allow Rule Destination Account Api - account
Databricks AccountOne Network Policy Ingress Dry Run Public Access Allow Rule Destination Account Databricks One - account
Ui AccountNetwork Policy Ingress Dry Run Public Access Allow Rule Destination Account Ui - all
Destinations boolean - apps
Runtime AccountNetwork Policy Ingress Dry Run Public Access Allow Rule Destination Apps Runtime - lakebase
Runtime AccountNetwork Policy Ingress Dry Run Public Access Allow Rule Destination Lakebase Runtime - workspace
Api AccountNetwork Policy Ingress Dry Run Public Access Allow Rule Destination Workspace Api - workspace
Ui AccountNetwork Policy Ingress Dry Run Public Access Allow Rule Destination Workspace Ui
- account_
api AccountNetwork Policy Ingress Dry Run Public Access Allow Rule Destination Account Api - account_
databricks_ Accountone Network Policy Ingress Dry Run Public Access Allow Rule Destination Account Databricks One - account_
ui AccountNetwork Policy Ingress Dry Run Public Access Allow Rule Destination Account Ui - all_
destinations bool - apps_
runtime AccountNetwork Policy Ingress Dry Run Public Access Allow Rule Destination Apps Runtime - lakebase_
runtime AccountNetwork Policy Ingress Dry Run Public Access Allow Rule Destination Lakebase Runtime - workspace_
api AccountNetwork Policy Ingress Dry Run Public Access Allow Rule Destination Workspace Api - workspace_
ui AccountNetwork Policy Ingress Dry Run Public Access Allow Rule Destination Workspace Ui
AccountNetworkPolicyIngressDryRunPublicAccessAllowRuleDestinationAccountApi, AccountNetworkPolicyIngressDryRunPublicAccessAllowRuleDestinationAccountApiArgs
- Scope
Qualifier string - Scopes List<string>
- Scope
Qualifier string - Scopes []string
- scope_
qualifier string - scopes list(string)
- scope
Qualifier String - scopes List<String>
- scope
Qualifier string - scopes string[]
- scope_
qualifier str - scopes Sequence[str]
- scope
Qualifier String - scopes List<String>
AccountNetworkPolicyIngressDryRunPublicAccessAllowRuleDestinationAccountDatabricksOne, AccountNetworkPolicyIngressDryRunPublicAccessAllowRuleDestinationAccountDatabricksOneArgs
- All
Destinations bool
- All
Destinations bool
- all_
destinations bool
- all
Destinations Boolean
- all
Destinations boolean
- all_
destinations bool
- all
Destinations Boolean
AccountNetworkPolicyIngressDryRunPublicAccessAllowRuleDestinationAccountUi, AccountNetworkPolicyIngressDryRunPublicAccessAllowRuleDestinationAccountUiArgs
- All
Destinations bool
- All
Destinations bool
- all_
destinations bool
- all
Destinations Boolean
- all
Destinations boolean
- all_
destinations bool
- all
Destinations Boolean
AccountNetworkPolicyIngressDryRunPublicAccessAllowRuleDestinationAppsRuntime, AccountNetworkPolicyIngressDryRunPublicAccessAllowRuleDestinationAppsRuntimeArgs
- All
Destinations bool
- All
Destinations bool
- all_
destinations bool
- all
Destinations Boolean
- all
Destinations boolean
- all_
destinations bool
- all
Destinations Boolean
AccountNetworkPolicyIngressDryRunPublicAccessAllowRuleDestinationLakebaseRuntime, AccountNetworkPolicyIngressDryRunPublicAccessAllowRuleDestinationLakebaseRuntimeArgs
- All
Destinations bool
- All
Destinations bool
- all_
destinations bool
- all
Destinations Boolean
- all
Destinations boolean
- all_
destinations bool
- all
Destinations Boolean
AccountNetworkPolicyIngressDryRunPublicAccessAllowRuleDestinationWorkspaceApi, AccountNetworkPolicyIngressDryRunPublicAccessAllowRuleDestinationWorkspaceApiArgs
- Scope
Qualifier string - Scopes List<string>
- Scope
Qualifier string - Scopes []string
- scope_
qualifier string - scopes list(string)
- scope
Qualifier String - scopes List<String>
- scope
Qualifier string - scopes string[]
- scope_
qualifier str - scopes Sequence[str]
- scope
Qualifier String - scopes List<String>
AccountNetworkPolicyIngressDryRunPublicAccessAllowRuleDestinationWorkspaceUi, AccountNetworkPolicyIngressDryRunPublicAccessAllowRuleDestinationWorkspaceUiArgs
- All
Destinations bool
- All
Destinations bool
- all_
destinations bool
- all
Destinations Boolean
- all
Destinations boolean
- all_
destinations bool
- all
Destinations Boolean
AccountNetworkPolicyIngressDryRunPublicAccessAllowRuleOrigin, AccountNetworkPolicyIngressDryRunPublicAccessAllowRuleOriginArgs
- All
Ip boolRanges - Matches all IPv4 and IPv6 ranges (both public and private)
- Excluded
Ip AccountRanges Network Policy Ingress Dry Run Public Access Allow Rule Origin Excluded Ip Ranges - Excluded means: all public IP ranges except this one
- Included
Ip AccountRanges Network Policy Ingress Dry Run Public Access Allow Rule Origin Included Ip Ranges - Will not allow IP ranges with private IPs
- All
Ip boolRanges - Matches all IPv4 and IPv6 ranges (both public and private)
- Excluded
Ip AccountRanges Network Policy Ingress Dry Run Public Access Allow Rule Origin Excluded Ip Ranges - Excluded means: all public IP ranges except this one
- Included
Ip AccountRanges Network Policy Ingress Dry Run Public Access Allow Rule Origin Included Ip Ranges - Will not allow IP ranges with private IPs
- all_
ip_ boolranges - Matches all IPv4 and IPv6 ranges (both public and private)
- excluded_
ip_ objectranges - Excluded means: all public IP ranges except this one
- included_
ip_ objectranges - Will not allow IP ranges with private IPs
- all
Ip BooleanRanges - Matches all IPv4 and IPv6 ranges (both public and private)
- excluded
Ip AccountRanges Network Policy Ingress Dry Run Public Access Allow Rule Origin Excluded Ip Ranges - Excluded means: all public IP ranges except this one
- included
Ip AccountRanges Network Policy Ingress Dry Run Public Access Allow Rule Origin Included Ip Ranges - Will not allow IP ranges with private IPs
- all
Ip booleanRanges - Matches all IPv4 and IPv6 ranges (both public and private)
- excluded
Ip AccountRanges Network Policy Ingress Dry Run Public Access Allow Rule Origin Excluded Ip Ranges - Excluded means: all public IP ranges except this one
- included
Ip AccountRanges Network Policy Ingress Dry Run Public Access Allow Rule Origin Included Ip Ranges - Will not allow IP ranges with private IPs
- all_
ip_ boolranges - Matches all IPv4 and IPv6 ranges (both public and private)
- excluded_
ip_ Accountranges Network Policy Ingress Dry Run Public Access Allow Rule Origin Excluded Ip Ranges - Excluded means: all public IP ranges except this one
- included_
ip_ Accountranges Network Policy Ingress Dry Run Public Access Allow Rule Origin Included Ip Ranges - Will not allow IP ranges with private IPs
- all
Ip BooleanRanges - Matches all IPv4 and IPv6 ranges (both public and private)
- excluded
Ip Property MapRanges - Excluded means: all public IP ranges except this one
- included
Ip Property MapRanges - Will not allow IP ranges with private IPs
AccountNetworkPolicyIngressDryRunPublicAccessAllowRuleOriginExcludedIpRanges, AccountNetworkPolicyIngressDryRunPublicAccessAllowRuleOriginExcludedIpRangesArgs
- Ip
Ranges List<string> - We only support IPv4 and IPv4 CIDR notation for now
- Ip
Ranges []string - We only support IPv4 and IPv4 CIDR notation for now
- ip_
ranges list(string) - We only support IPv4 and IPv4 CIDR notation for now
- ip
Ranges List<String> - We only support IPv4 and IPv4 CIDR notation for now
- ip
Ranges string[] - We only support IPv4 and IPv4 CIDR notation for now
- ip_
ranges Sequence[str] - We only support IPv4 and IPv4 CIDR notation for now
- ip
Ranges List<String> - We only support IPv4 and IPv4 CIDR notation for now
AccountNetworkPolicyIngressDryRunPublicAccessAllowRuleOriginIncludedIpRanges, AccountNetworkPolicyIngressDryRunPublicAccessAllowRuleOriginIncludedIpRangesArgs
- Ip
Ranges List<string> - We only support IPv4 and IPv4 CIDR notation for now
- Ip
Ranges []string - We only support IPv4 and IPv4 CIDR notation for now
- ip_
ranges list(string) - We only support IPv4 and IPv4 CIDR notation for now
- ip
Ranges List<String> - We only support IPv4 and IPv4 CIDR notation for now
- ip
Ranges string[] - We only support IPv4 and IPv4 CIDR notation for now
- ip_
ranges Sequence[str] - We only support IPv4 and IPv4 CIDR notation for now
- ip
Ranges List<String> - We only support IPv4 and IPv4 CIDR notation for now
AccountNetworkPolicyIngressDryRunPublicAccessDenyRule, AccountNetworkPolicyIngressDryRunPublicAccessDenyRuleArgs
AccountNetworkPolicyIngressDryRunPublicAccessDenyRuleAuthentication, AccountNetworkPolicyIngressDryRunPublicAccessDenyRuleAuthenticationArgs
- Identities
List<Account
Network Policy Ingress Dry Run Public Access Deny Rule Authentication Identity> - Valid only when IdentityType is IDENTITY_TYPE_SELECTED_IDENTITIES
- Identity
Type string - Possible values are:
IDENTITY_TYPE_ALL_SERVICE_PRINCIPALS,IDENTITY_TYPE_ALL_USERS,IDENTITY_TYPE_SELECTED_IDENTITIES
- Identities
[]Account
Network Policy Ingress Dry Run Public Access Deny Rule Authentication Identity - Valid only when IdentityType is IDENTITY_TYPE_SELECTED_IDENTITIES
- Identity
Type string - Possible values are:
IDENTITY_TYPE_ALL_SERVICE_PRINCIPALS,IDENTITY_TYPE_ALL_USERS,IDENTITY_TYPE_SELECTED_IDENTITIES
- identities list(object)
- Valid only when IdentityType is IDENTITY_TYPE_SELECTED_IDENTITIES
- identity_
type string - Possible values are:
IDENTITY_TYPE_ALL_SERVICE_PRINCIPALS,IDENTITY_TYPE_ALL_USERS,IDENTITY_TYPE_SELECTED_IDENTITIES
- identities
List<Account
Network Policy Ingress Dry Run Public Access Deny Rule Authentication Identity> - Valid only when IdentityType is IDENTITY_TYPE_SELECTED_IDENTITIES
- identity
Type String - Possible values are:
IDENTITY_TYPE_ALL_SERVICE_PRINCIPALS,IDENTITY_TYPE_ALL_USERS,IDENTITY_TYPE_SELECTED_IDENTITIES
- identities
Account
Network Policy Ingress Dry Run Public Access Deny Rule Authentication Identity[] - Valid only when IdentityType is IDENTITY_TYPE_SELECTED_IDENTITIES
- identity
Type string - Possible values are:
IDENTITY_TYPE_ALL_SERVICE_PRINCIPALS,IDENTITY_TYPE_ALL_USERS,IDENTITY_TYPE_SELECTED_IDENTITIES
- identities
Sequence[Account
Network Policy Ingress Dry Run Public Access Deny Rule Authentication Identity] - Valid only when IdentityType is IDENTITY_TYPE_SELECTED_IDENTITIES
- identity_
type str - Possible values are:
IDENTITY_TYPE_ALL_SERVICE_PRINCIPALS,IDENTITY_TYPE_ALL_USERS,IDENTITY_TYPE_SELECTED_IDENTITIES
- identities List<Property Map>
- Valid only when IdentityType is IDENTITY_TYPE_SELECTED_IDENTITIES
- identity
Type String - Possible values are:
IDENTITY_TYPE_ALL_SERVICE_PRINCIPALS,IDENTITY_TYPE_ALL_USERS,IDENTITY_TYPE_SELECTED_IDENTITIES
AccountNetworkPolicyIngressDryRunPublicAccessDenyRuleAuthenticationIdentity, AccountNetworkPolicyIngressDryRunPublicAccessDenyRuleAuthenticationIdentityArgs
- Principal
Id string - Principal
Type string - Possible values are:
PRINCIPAL_TYPE_SERVICE_PRINCIPAL,PRINCIPAL_TYPE_USER
- Principal
Id string - Principal
Type string - Possible values are:
PRINCIPAL_TYPE_SERVICE_PRINCIPAL,PRINCIPAL_TYPE_USER
- principal_
id string - principal_
type string - Possible values are:
PRINCIPAL_TYPE_SERVICE_PRINCIPAL,PRINCIPAL_TYPE_USER
- principal
Id String - principal
Type String - Possible values are:
PRINCIPAL_TYPE_SERVICE_PRINCIPAL,PRINCIPAL_TYPE_USER
- principal
Id string - principal
Type string - Possible values are:
PRINCIPAL_TYPE_SERVICE_PRINCIPAL,PRINCIPAL_TYPE_USER
- principal_
id str - principal_
type str - Possible values are:
PRINCIPAL_TYPE_SERVICE_PRINCIPAL,PRINCIPAL_TYPE_USER
- principal
Id String - principal
Type String - Possible values are:
PRINCIPAL_TYPE_SERVICE_PRINCIPAL,PRINCIPAL_TYPE_USER
AccountNetworkPolicyIngressDryRunPublicAccessDenyRuleDestination, AccountNetworkPolicyIngressDryRunPublicAccessDenyRuleDestinationArgs
- Account
Api AccountNetwork Policy Ingress Dry Run Public Access Deny Rule Destination Account Api - Account
Databricks AccountOne Network Policy Ingress Dry Run Public Access Deny Rule Destination Account Databricks One - Account
Ui AccountNetwork Policy Ingress Dry Run Public Access Deny Rule Destination Account Ui - All
Destinations bool - Apps
Runtime AccountNetwork Policy Ingress Dry Run Public Access Deny Rule Destination Apps Runtime - Lakebase
Runtime AccountNetwork Policy Ingress Dry Run Public Access Deny Rule Destination Lakebase Runtime - Workspace
Api AccountNetwork Policy Ingress Dry Run Public Access Deny Rule Destination Workspace Api - Workspace
Ui AccountNetwork Policy Ingress Dry Run Public Access Deny Rule Destination Workspace Ui
- Account
Api AccountNetwork Policy Ingress Dry Run Public Access Deny Rule Destination Account Api - Account
Databricks AccountOne Network Policy Ingress Dry Run Public Access Deny Rule Destination Account Databricks One - Account
Ui AccountNetwork Policy Ingress Dry Run Public Access Deny Rule Destination Account Ui - All
Destinations bool - Apps
Runtime AccountNetwork Policy Ingress Dry Run Public Access Deny Rule Destination Apps Runtime - Lakebase
Runtime AccountNetwork Policy Ingress Dry Run Public Access Deny Rule Destination Lakebase Runtime - Workspace
Api AccountNetwork Policy Ingress Dry Run Public Access Deny Rule Destination Workspace Api - Workspace
Ui AccountNetwork Policy Ingress Dry Run Public Access Deny Rule Destination Workspace Ui
- account
Api AccountNetwork Policy Ingress Dry Run Public Access Deny Rule Destination Account Api - account
Databricks AccountOne Network Policy Ingress Dry Run Public Access Deny Rule Destination Account Databricks One - account
Ui AccountNetwork Policy Ingress Dry Run Public Access Deny Rule Destination Account Ui - all
Destinations Boolean - apps
Runtime AccountNetwork Policy Ingress Dry Run Public Access Deny Rule Destination Apps Runtime - lakebase
Runtime AccountNetwork Policy Ingress Dry Run Public Access Deny Rule Destination Lakebase Runtime - workspace
Api AccountNetwork Policy Ingress Dry Run Public Access Deny Rule Destination Workspace Api - workspace
Ui AccountNetwork Policy Ingress Dry Run Public Access Deny Rule Destination Workspace Ui
- account
Api AccountNetwork Policy Ingress Dry Run Public Access Deny Rule Destination Account Api - account
Databricks AccountOne Network Policy Ingress Dry Run Public Access Deny Rule Destination Account Databricks One - account
Ui AccountNetwork Policy Ingress Dry Run Public Access Deny Rule Destination Account Ui - all
Destinations boolean - apps
Runtime AccountNetwork Policy Ingress Dry Run Public Access Deny Rule Destination Apps Runtime - lakebase
Runtime AccountNetwork Policy Ingress Dry Run Public Access Deny Rule Destination Lakebase Runtime - workspace
Api AccountNetwork Policy Ingress Dry Run Public Access Deny Rule Destination Workspace Api - workspace
Ui AccountNetwork Policy Ingress Dry Run Public Access Deny Rule Destination Workspace Ui
- account_
api AccountNetwork Policy Ingress Dry Run Public Access Deny Rule Destination Account Api - account_
databricks_ Accountone Network Policy Ingress Dry Run Public Access Deny Rule Destination Account Databricks One - account_
ui AccountNetwork Policy Ingress Dry Run Public Access Deny Rule Destination Account Ui - all_
destinations bool - apps_
runtime AccountNetwork Policy Ingress Dry Run Public Access Deny Rule Destination Apps Runtime - lakebase_
runtime AccountNetwork Policy Ingress Dry Run Public Access Deny Rule Destination Lakebase Runtime - workspace_
api AccountNetwork Policy Ingress Dry Run Public Access Deny Rule Destination Workspace Api - workspace_
ui AccountNetwork Policy Ingress Dry Run Public Access Deny Rule Destination Workspace Ui
AccountNetworkPolicyIngressDryRunPublicAccessDenyRuleDestinationAccountApi, AccountNetworkPolicyIngressDryRunPublicAccessDenyRuleDestinationAccountApiArgs
- Scope
Qualifier string - Scopes List<string>
- Scope
Qualifier string - Scopes []string
- scope_
qualifier string - scopes list(string)
- scope
Qualifier String - scopes List<String>
- scope
Qualifier string - scopes string[]
- scope_
qualifier str - scopes Sequence[str]
- scope
Qualifier String - scopes List<String>
AccountNetworkPolicyIngressDryRunPublicAccessDenyRuleDestinationAccountDatabricksOne, AccountNetworkPolicyIngressDryRunPublicAccessDenyRuleDestinationAccountDatabricksOneArgs
- All
Destinations bool
- All
Destinations bool
- all_
destinations bool
- all
Destinations Boolean
- all
Destinations boolean
- all_
destinations bool
- all
Destinations Boolean
AccountNetworkPolicyIngressDryRunPublicAccessDenyRuleDestinationAccountUi, AccountNetworkPolicyIngressDryRunPublicAccessDenyRuleDestinationAccountUiArgs
- All
Destinations bool
- All
Destinations bool
- all_
destinations bool
- all
Destinations Boolean
- all
Destinations boolean
- all_
destinations bool
- all
Destinations Boolean
AccountNetworkPolicyIngressDryRunPublicAccessDenyRuleDestinationAppsRuntime, AccountNetworkPolicyIngressDryRunPublicAccessDenyRuleDestinationAppsRuntimeArgs
- All
Destinations bool
- All
Destinations bool
- all_
destinations bool
- all
Destinations Boolean
- all
Destinations boolean
- all_
destinations bool
- all
Destinations Boolean
AccountNetworkPolicyIngressDryRunPublicAccessDenyRuleDestinationLakebaseRuntime, AccountNetworkPolicyIngressDryRunPublicAccessDenyRuleDestinationLakebaseRuntimeArgs
- All
Destinations bool
- All
Destinations bool
- all_
destinations bool
- all
Destinations Boolean
- all
Destinations boolean
- all_
destinations bool
- all
Destinations Boolean
AccountNetworkPolicyIngressDryRunPublicAccessDenyRuleDestinationWorkspaceApi, AccountNetworkPolicyIngressDryRunPublicAccessDenyRuleDestinationWorkspaceApiArgs
- Scope
Qualifier string - Scopes List<string>
- Scope
Qualifier string - Scopes []string
- scope_
qualifier string - scopes list(string)
- scope
Qualifier String - scopes List<String>
- scope
Qualifier string - scopes string[]
- scope_
qualifier str - scopes Sequence[str]
- scope
Qualifier String - scopes List<String>
AccountNetworkPolicyIngressDryRunPublicAccessDenyRuleDestinationWorkspaceUi, AccountNetworkPolicyIngressDryRunPublicAccessDenyRuleDestinationWorkspaceUiArgs
- All
Destinations bool
- All
Destinations bool
- all_
destinations bool
- all
Destinations Boolean
- all
Destinations boolean
- all_
destinations bool
- all
Destinations Boolean
AccountNetworkPolicyIngressDryRunPublicAccessDenyRuleOrigin, AccountNetworkPolicyIngressDryRunPublicAccessDenyRuleOriginArgs
- All
Ip boolRanges - Matches all IPv4 and IPv6 ranges (both public and private)
- Excluded
Ip AccountRanges Network Policy Ingress Dry Run Public Access Deny Rule Origin Excluded Ip Ranges - Excluded means: all public IP ranges except this one
- Included
Ip AccountRanges Network Policy Ingress Dry Run Public Access Deny Rule Origin Included Ip Ranges - Will not allow IP ranges with private IPs
- All
Ip boolRanges - Matches all IPv4 and IPv6 ranges (both public and private)
- Excluded
Ip AccountRanges Network Policy Ingress Dry Run Public Access Deny Rule Origin Excluded Ip Ranges - Excluded means: all public IP ranges except this one
- Included
Ip AccountRanges Network Policy Ingress Dry Run Public Access Deny Rule Origin Included Ip Ranges - Will not allow IP ranges with private IPs
- all_
ip_ boolranges - Matches all IPv4 and IPv6 ranges (both public and private)
- excluded_
ip_ objectranges - Excluded means: all public IP ranges except this one
- included_
ip_ objectranges - Will not allow IP ranges with private IPs
- all
Ip BooleanRanges - Matches all IPv4 and IPv6 ranges (both public and private)
- excluded
Ip AccountRanges Network Policy Ingress Dry Run Public Access Deny Rule Origin Excluded Ip Ranges - Excluded means: all public IP ranges except this one
- included
Ip AccountRanges Network Policy Ingress Dry Run Public Access Deny Rule Origin Included Ip Ranges - Will not allow IP ranges with private IPs
- all
Ip booleanRanges - Matches all IPv4 and IPv6 ranges (both public and private)
- excluded
Ip AccountRanges Network Policy Ingress Dry Run Public Access Deny Rule Origin Excluded Ip Ranges - Excluded means: all public IP ranges except this one
- included
Ip AccountRanges Network Policy Ingress Dry Run Public Access Deny Rule Origin Included Ip Ranges - Will not allow IP ranges with private IPs
- all_
ip_ boolranges - Matches all IPv4 and IPv6 ranges (both public and private)
- excluded_
ip_ Accountranges Network Policy Ingress Dry Run Public Access Deny Rule Origin Excluded Ip Ranges - Excluded means: all public IP ranges except this one
- included_
ip_ Accountranges Network Policy Ingress Dry Run Public Access Deny Rule Origin Included Ip Ranges - Will not allow IP ranges with private IPs
- all
Ip BooleanRanges - Matches all IPv4 and IPv6 ranges (both public and private)
- excluded
Ip Property MapRanges - Excluded means: all public IP ranges except this one
- included
Ip Property MapRanges - Will not allow IP ranges with private IPs
AccountNetworkPolicyIngressDryRunPublicAccessDenyRuleOriginExcludedIpRanges, AccountNetworkPolicyIngressDryRunPublicAccessDenyRuleOriginExcludedIpRangesArgs
- Ip
Ranges List<string> - We only support IPv4 and IPv4 CIDR notation for now
- Ip
Ranges []string - We only support IPv4 and IPv4 CIDR notation for now
- ip_
ranges list(string) - We only support IPv4 and IPv4 CIDR notation for now
- ip
Ranges List<String> - We only support IPv4 and IPv4 CIDR notation for now
- ip
Ranges string[] - We only support IPv4 and IPv4 CIDR notation for now
- ip_
ranges Sequence[str] - We only support IPv4 and IPv4 CIDR notation for now
- ip
Ranges List<String> - We only support IPv4 and IPv4 CIDR notation for now
AccountNetworkPolicyIngressDryRunPublicAccessDenyRuleOriginIncludedIpRanges, AccountNetworkPolicyIngressDryRunPublicAccessDenyRuleOriginIncludedIpRangesArgs
- Ip
Ranges List<string> - We only support IPv4 and IPv4 CIDR notation for now
- Ip
Ranges []string - We only support IPv4 and IPv4 CIDR notation for now
- ip_
ranges list(string) - We only support IPv4 and IPv4 CIDR notation for now
- ip
Ranges List<String> - We only support IPv4 and IPv4 CIDR notation for now
- ip
Ranges string[] - We only support IPv4 and IPv4 CIDR notation for now
- ip_
ranges Sequence[str] - We only support IPv4 and IPv4 CIDR notation for now
- ip
Ranges List<String> - We only support IPv4 and IPv4 CIDR notation for now
AccountNetworkPolicyIngressPrivateAccess, AccountNetworkPolicyIngressPrivateAccessArgs
AccountNetworkPolicyIngressPrivateAccessAllowRule, AccountNetworkPolicyIngressPrivateAccessAllowRuleArgs
AccountNetworkPolicyIngressPrivateAccessAllowRuleAuthentication, AccountNetworkPolicyIngressPrivateAccessAllowRuleAuthenticationArgs
- Identities
List<Account
Network Policy Ingress Private Access Allow Rule Authentication Identity> - Valid only when IdentityType is IDENTITY_TYPE_SELECTED_IDENTITIES
- Identity
Type string - Possible values are:
IDENTITY_TYPE_ALL_SERVICE_PRINCIPALS,IDENTITY_TYPE_ALL_USERS,IDENTITY_TYPE_SELECTED_IDENTITIES
- Identities
[]Account
Network Policy Ingress Private Access Allow Rule Authentication Identity - Valid only when IdentityType is IDENTITY_TYPE_SELECTED_IDENTITIES
- Identity
Type string - Possible values are:
IDENTITY_TYPE_ALL_SERVICE_PRINCIPALS,IDENTITY_TYPE_ALL_USERS,IDENTITY_TYPE_SELECTED_IDENTITIES
- identities list(object)
- Valid only when IdentityType is IDENTITY_TYPE_SELECTED_IDENTITIES
- identity_
type string - Possible values are:
IDENTITY_TYPE_ALL_SERVICE_PRINCIPALS,IDENTITY_TYPE_ALL_USERS,IDENTITY_TYPE_SELECTED_IDENTITIES
- identities
List<Account
Network Policy Ingress Private Access Allow Rule Authentication Identity> - Valid only when IdentityType is IDENTITY_TYPE_SELECTED_IDENTITIES
- identity
Type String - Possible values are:
IDENTITY_TYPE_ALL_SERVICE_PRINCIPALS,IDENTITY_TYPE_ALL_USERS,IDENTITY_TYPE_SELECTED_IDENTITIES
- identities
Account
Network Policy Ingress Private Access Allow Rule Authentication Identity[] - Valid only when IdentityType is IDENTITY_TYPE_SELECTED_IDENTITIES
- identity
Type string - Possible values are:
IDENTITY_TYPE_ALL_SERVICE_PRINCIPALS,IDENTITY_TYPE_ALL_USERS,IDENTITY_TYPE_SELECTED_IDENTITIES
- identities
Sequence[Account
Network Policy Ingress Private Access Allow Rule Authentication Identity] - Valid only when IdentityType is IDENTITY_TYPE_SELECTED_IDENTITIES
- identity_
type str - Possible values are:
IDENTITY_TYPE_ALL_SERVICE_PRINCIPALS,IDENTITY_TYPE_ALL_USERS,IDENTITY_TYPE_SELECTED_IDENTITIES
- identities List<Property Map>
- Valid only when IdentityType is IDENTITY_TYPE_SELECTED_IDENTITIES
- identity
Type String - Possible values are:
IDENTITY_TYPE_ALL_SERVICE_PRINCIPALS,IDENTITY_TYPE_ALL_USERS,IDENTITY_TYPE_SELECTED_IDENTITIES
AccountNetworkPolicyIngressPrivateAccessAllowRuleAuthenticationIdentity, AccountNetworkPolicyIngressPrivateAccessAllowRuleAuthenticationIdentityArgs
- Principal
Id string - Principal
Type string - Possible values are:
PRINCIPAL_TYPE_SERVICE_PRINCIPAL,PRINCIPAL_TYPE_USER
- Principal
Id string - Principal
Type string - Possible values are:
PRINCIPAL_TYPE_SERVICE_PRINCIPAL,PRINCIPAL_TYPE_USER
- principal_
id string - principal_
type string - Possible values are:
PRINCIPAL_TYPE_SERVICE_PRINCIPAL,PRINCIPAL_TYPE_USER
- principal
Id String - principal
Type String - Possible values are:
PRINCIPAL_TYPE_SERVICE_PRINCIPAL,PRINCIPAL_TYPE_USER
- principal
Id string - principal
Type string - Possible values are:
PRINCIPAL_TYPE_SERVICE_PRINCIPAL,PRINCIPAL_TYPE_USER
- principal_
id str - principal_
type str - Possible values are:
PRINCIPAL_TYPE_SERVICE_PRINCIPAL,PRINCIPAL_TYPE_USER
- principal
Id String - principal
Type String - Possible values are:
PRINCIPAL_TYPE_SERVICE_PRINCIPAL,PRINCIPAL_TYPE_USER
AccountNetworkPolicyIngressPrivateAccessAllowRuleDestination, AccountNetworkPolicyIngressPrivateAccessAllowRuleDestinationArgs
- Account
Api AccountNetwork Policy Ingress Private Access Allow Rule Destination Account Api - Account
Databricks AccountOne Network Policy Ingress Private Access Allow Rule Destination Account Databricks One - Account
Ui AccountNetwork Policy Ingress Private Access Allow Rule Destination Account Ui - All
Destinations bool - Apps
Runtime AccountNetwork Policy Ingress Private Access Allow Rule Destination Apps Runtime - Lakebase
Runtime AccountNetwork Policy Ingress Private Access Allow Rule Destination Lakebase Runtime - Workspace
Api AccountNetwork Policy Ingress Private Access Allow Rule Destination Workspace Api - Workspace
Ui AccountNetwork Policy Ingress Private Access Allow Rule Destination Workspace Ui
- Account
Api AccountNetwork Policy Ingress Private Access Allow Rule Destination Account Api - Account
Databricks AccountOne Network Policy Ingress Private Access Allow Rule Destination Account Databricks One - Account
Ui AccountNetwork Policy Ingress Private Access Allow Rule Destination Account Ui - All
Destinations bool - Apps
Runtime AccountNetwork Policy Ingress Private Access Allow Rule Destination Apps Runtime - Lakebase
Runtime AccountNetwork Policy Ingress Private Access Allow Rule Destination Lakebase Runtime - Workspace
Api AccountNetwork Policy Ingress Private Access Allow Rule Destination Workspace Api - Workspace
Ui AccountNetwork Policy Ingress Private Access Allow Rule Destination Workspace Ui
- account
Api AccountNetwork Policy Ingress Private Access Allow Rule Destination Account Api - account
Databricks AccountOne Network Policy Ingress Private Access Allow Rule Destination Account Databricks One - account
Ui AccountNetwork Policy Ingress Private Access Allow Rule Destination Account Ui - all
Destinations Boolean - apps
Runtime AccountNetwork Policy Ingress Private Access Allow Rule Destination Apps Runtime - lakebase
Runtime AccountNetwork Policy Ingress Private Access Allow Rule Destination Lakebase Runtime - workspace
Api AccountNetwork Policy Ingress Private Access Allow Rule Destination Workspace Api - workspace
Ui AccountNetwork Policy Ingress Private Access Allow Rule Destination Workspace Ui
- account
Api AccountNetwork Policy Ingress Private Access Allow Rule Destination Account Api - account
Databricks AccountOne Network Policy Ingress Private Access Allow Rule Destination Account Databricks One - account
Ui AccountNetwork Policy Ingress Private Access Allow Rule Destination Account Ui - all
Destinations boolean - apps
Runtime AccountNetwork Policy Ingress Private Access Allow Rule Destination Apps Runtime - lakebase
Runtime AccountNetwork Policy Ingress Private Access Allow Rule Destination Lakebase Runtime - workspace
Api AccountNetwork Policy Ingress Private Access Allow Rule Destination Workspace Api - workspace
Ui AccountNetwork Policy Ingress Private Access Allow Rule Destination Workspace Ui
- account_
api AccountNetwork Policy Ingress Private Access Allow Rule Destination Account Api - account_
databricks_ Accountone Network Policy Ingress Private Access Allow Rule Destination Account Databricks One - account_
ui AccountNetwork Policy Ingress Private Access Allow Rule Destination Account Ui - all_
destinations bool - apps_
runtime AccountNetwork Policy Ingress Private Access Allow Rule Destination Apps Runtime - lakebase_
runtime AccountNetwork Policy Ingress Private Access Allow Rule Destination Lakebase Runtime - workspace_
api AccountNetwork Policy Ingress Private Access Allow Rule Destination Workspace Api - workspace_
ui AccountNetwork Policy Ingress Private Access Allow Rule Destination Workspace Ui
AccountNetworkPolicyIngressPrivateAccessAllowRuleDestinationAccountApi, AccountNetworkPolicyIngressPrivateAccessAllowRuleDestinationAccountApiArgs
- Scope
Qualifier string - Scopes List<string>
- Scope
Qualifier string - Scopes []string
- scope_
qualifier string - scopes list(string)
- scope
Qualifier String - scopes List<String>
- scope
Qualifier string - scopes string[]
- scope_
qualifier str - scopes Sequence[str]
- scope
Qualifier String - scopes List<String>
AccountNetworkPolicyIngressPrivateAccessAllowRuleDestinationAccountDatabricksOne, AccountNetworkPolicyIngressPrivateAccessAllowRuleDestinationAccountDatabricksOneArgs
- All
Destinations bool
- All
Destinations bool
- all_
destinations bool
- all
Destinations Boolean
- all
Destinations boolean
- all_
destinations bool
- all
Destinations Boolean
AccountNetworkPolicyIngressPrivateAccessAllowRuleDestinationAccountUi, AccountNetworkPolicyIngressPrivateAccessAllowRuleDestinationAccountUiArgs
- All
Destinations bool
- All
Destinations bool
- all_
destinations bool
- all
Destinations Boolean
- all
Destinations boolean
- all_
destinations bool
- all
Destinations Boolean
AccountNetworkPolicyIngressPrivateAccessAllowRuleDestinationAppsRuntime, AccountNetworkPolicyIngressPrivateAccessAllowRuleDestinationAppsRuntimeArgs
- All
Destinations bool
- All
Destinations bool
- all_
destinations bool
- all
Destinations Boolean
- all
Destinations boolean
- all_
destinations bool
- all
Destinations Boolean
AccountNetworkPolicyIngressPrivateAccessAllowRuleDestinationLakebaseRuntime, AccountNetworkPolicyIngressPrivateAccessAllowRuleDestinationLakebaseRuntimeArgs
- All
Destinations bool
- All
Destinations bool
- all_
destinations bool
- all
Destinations Boolean
- all
Destinations boolean
- all_
destinations bool
- all
Destinations Boolean
AccountNetworkPolicyIngressPrivateAccessAllowRuleDestinationWorkspaceApi, AccountNetworkPolicyIngressPrivateAccessAllowRuleDestinationWorkspaceApiArgs
- Scope
Qualifier string - Scopes List<string>
- Scope
Qualifier string - Scopes []string
- scope_
qualifier string - scopes list(string)
- scope
Qualifier String - scopes List<String>
- scope
Qualifier string - scopes string[]
- scope_
qualifier str - scopes Sequence[str]
- scope
Qualifier String - scopes List<String>
AccountNetworkPolicyIngressPrivateAccessAllowRuleDestinationWorkspaceUi, AccountNetworkPolicyIngressPrivateAccessAllowRuleDestinationWorkspaceUiArgs
- All
Destinations bool
- All
Destinations bool
- all_
destinations bool
- all
Destinations Boolean
- all
Destinations boolean
- all_
destinations bool
- all
Destinations Boolean
AccountNetworkPolicyIngressPrivateAccessAllowRuleOrigin, AccountNetworkPolicyIngressPrivateAccessAllowRuleOriginArgs
- all
Private BooleanAccess - all
Registered BooleanEndpoints - azure
Workspace BooleanPrivate Link - endpoints Property Map
AccountNetworkPolicyIngressPrivateAccessAllowRuleOriginEndpoints, AccountNetworkPolicyIngressPrivateAccessAllowRuleOriginEndpointsArgs
- Endpoint
Ids List<string>
- Endpoint
Ids []string
- endpoint_
ids list(string)
- endpoint
Ids List<String>
- endpoint
Ids string[]
- endpoint_
ids Sequence[str]
- endpoint
Ids List<String>
AccountNetworkPolicyIngressPrivateAccessDenyRule, AccountNetworkPolicyIngressPrivateAccessDenyRuleArgs
AccountNetworkPolicyIngressPrivateAccessDenyRuleAuthentication, AccountNetworkPolicyIngressPrivateAccessDenyRuleAuthenticationArgs
- Identities
List<Account
Network Policy Ingress Private Access Deny Rule Authentication Identity> - Valid only when IdentityType is IDENTITY_TYPE_SELECTED_IDENTITIES
- Identity
Type string - Possible values are:
IDENTITY_TYPE_ALL_SERVICE_PRINCIPALS,IDENTITY_TYPE_ALL_USERS,IDENTITY_TYPE_SELECTED_IDENTITIES
- Identities
[]Account
Network Policy Ingress Private Access Deny Rule Authentication Identity - Valid only when IdentityType is IDENTITY_TYPE_SELECTED_IDENTITIES
- Identity
Type string - Possible values are:
IDENTITY_TYPE_ALL_SERVICE_PRINCIPALS,IDENTITY_TYPE_ALL_USERS,IDENTITY_TYPE_SELECTED_IDENTITIES
- identities list(object)
- Valid only when IdentityType is IDENTITY_TYPE_SELECTED_IDENTITIES
- identity_
type string - Possible values are:
IDENTITY_TYPE_ALL_SERVICE_PRINCIPALS,IDENTITY_TYPE_ALL_USERS,IDENTITY_TYPE_SELECTED_IDENTITIES
- identities
List<Account
Network Policy Ingress Private Access Deny Rule Authentication Identity> - Valid only when IdentityType is IDENTITY_TYPE_SELECTED_IDENTITIES
- identity
Type String - Possible values are:
IDENTITY_TYPE_ALL_SERVICE_PRINCIPALS,IDENTITY_TYPE_ALL_USERS,IDENTITY_TYPE_SELECTED_IDENTITIES
- identities
Account
Network Policy Ingress Private Access Deny Rule Authentication Identity[] - Valid only when IdentityType is IDENTITY_TYPE_SELECTED_IDENTITIES
- identity
Type string - Possible values are:
IDENTITY_TYPE_ALL_SERVICE_PRINCIPALS,IDENTITY_TYPE_ALL_USERS,IDENTITY_TYPE_SELECTED_IDENTITIES
- identities
Sequence[Account
Network Policy Ingress Private Access Deny Rule Authentication Identity] - Valid only when IdentityType is IDENTITY_TYPE_SELECTED_IDENTITIES
- identity_
type str - Possible values are:
IDENTITY_TYPE_ALL_SERVICE_PRINCIPALS,IDENTITY_TYPE_ALL_USERS,IDENTITY_TYPE_SELECTED_IDENTITIES
- identities List<Property Map>
- Valid only when IdentityType is IDENTITY_TYPE_SELECTED_IDENTITIES
- identity
Type String - Possible values are:
IDENTITY_TYPE_ALL_SERVICE_PRINCIPALS,IDENTITY_TYPE_ALL_USERS,IDENTITY_TYPE_SELECTED_IDENTITIES
AccountNetworkPolicyIngressPrivateAccessDenyRuleAuthenticationIdentity, AccountNetworkPolicyIngressPrivateAccessDenyRuleAuthenticationIdentityArgs
- Principal
Id string - Principal
Type string - Possible values are:
PRINCIPAL_TYPE_SERVICE_PRINCIPAL,PRINCIPAL_TYPE_USER
- Principal
Id string - Principal
Type string - Possible values are:
PRINCIPAL_TYPE_SERVICE_PRINCIPAL,PRINCIPAL_TYPE_USER
- principal_
id string - principal_
type string - Possible values are:
PRINCIPAL_TYPE_SERVICE_PRINCIPAL,PRINCIPAL_TYPE_USER
- principal
Id String - principal
Type String - Possible values are:
PRINCIPAL_TYPE_SERVICE_PRINCIPAL,PRINCIPAL_TYPE_USER
- principal
Id string - principal
Type string - Possible values are:
PRINCIPAL_TYPE_SERVICE_PRINCIPAL,PRINCIPAL_TYPE_USER
- principal_
id str - principal_
type str - Possible values are:
PRINCIPAL_TYPE_SERVICE_PRINCIPAL,PRINCIPAL_TYPE_USER
- principal
Id String - principal
Type String - Possible values are:
PRINCIPAL_TYPE_SERVICE_PRINCIPAL,PRINCIPAL_TYPE_USER
AccountNetworkPolicyIngressPrivateAccessDenyRuleDestination, AccountNetworkPolicyIngressPrivateAccessDenyRuleDestinationArgs
- Account
Api AccountNetwork Policy Ingress Private Access Deny Rule Destination Account Api - Account
Databricks AccountOne Network Policy Ingress Private Access Deny Rule Destination Account Databricks One - Account
Ui AccountNetwork Policy Ingress Private Access Deny Rule Destination Account Ui - All
Destinations bool - Apps
Runtime AccountNetwork Policy Ingress Private Access Deny Rule Destination Apps Runtime - Lakebase
Runtime AccountNetwork Policy Ingress Private Access Deny Rule Destination Lakebase Runtime - Workspace
Api AccountNetwork Policy Ingress Private Access Deny Rule Destination Workspace Api - Workspace
Ui AccountNetwork Policy Ingress Private Access Deny Rule Destination Workspace Ui
- Account
Api AccountNetwork Policy Ingress Private Access Deny Rule Destination Account Api - Account
Databricks AccountOne Network Policy Ingress Private Access Deny Rule Destination Account Databricks One - Account
Ui AccountNetwork Policy Ingress Private Access Deny Rule Destination Account Ui - All
Destinations bool - Apps
Runtime AccountNetwork Policy Ingress Private Access Deny Rule Destination Apps Runtime - Lakebase
Runtime AccountNetwork Policy Ingress Private Access Deny Rule Destination Lakebase Runtime - Workspace
Api AccountNetwork Policy Ingress Private Access Deny Rule Destination Workspace Api - Workspace
Ui AccountNetwork Policy Ingress Private Access Deny Rule Destination Workspace Ui
- account
Api AccountNetwork Policy Ingress Private Access Deny Rule Destination Account Api - account
Databricks AccountOne Network Policy Ingress Private Access Deny Rule Destination Account Databricks One - account
Ui AccountNetwork Policy Ingress Private Access Deny Rule Destination Account Ui - all
Destinations Boolean - apps
Runtime AccountNetwork Policy Ingress Private Access Deny Rule Destination Apps Runtime - lakebase
Runtime AccountNetwork Policy Ingress Private Access Deny Rule Destination Lakebase Runtime - workspace
Api AccountNetwork Policy Ingress Private Access Deny Rule Destination Workspace Api - workspace
Ui AccountNetwork Policy Ingress Private Access Deny Rule Destination Workspace Ui
- account
Api AccountNetwork Policy Ingress Private Access Deny Rule Destination Account Api - account
Databricks AccountOne Network Policy Ingress Private Access Deny Rule Destination Account Databricks One - account
Ui AccountNetwork Policy Ingress Private Access Deny Rule Destination Account Ui - all
Destinations boolean - apps
Runtime AccountNetwork Policy Ingress Private Access Deny Rule Destination Apps Runtime - lakebase
Runtime AccountNetwork Policy Ingress Private Access Deny Rule Destination Lakebase Runtime - workspace
Api AccountNetwork Policy Ingress Private Access Deny Rule Destination Workspace Api - workspace
Ui AccountNetwork Policy Ingress Private Access Deny Rule Destination Workspace Ui
- account_
api AccountNetwork Policy Ingress Private Access Deny Rule Destination Account Api - account_
databricks_ Accountone Network Policy Ingress Private Access Deny Rule Destination Account Databricks One - account_
ui AccountNetwork Policy Ingress Private Access Deny Rule Destination Account Ui - all_
destinations bool - apps_
runtime AccountNetwork Policy Ingress Private Access Deny Rule Destination Apps Runtime - lakebase_
runtime AccountNetwork Policy Ingress Private Access Deny Rule Destination Lakebase Runtime - workspace_
api AccountNetwork Policy Ingress Private Access Deny Rule Destination Workspace Api - workspace_
ui AccountNetwork Policy Ingress Private Access Deny Rule Destination Workspace Ui
AccountNetworkPolicyIngressPrivateAccessDenyRuleDestinationAccountApi, AccountNetworkPolicyIngressPrivateAccessDenyRuleDestinationAccountApiArgs
- Scope
Qualifier string - Scopes List<string>
- Scope
Qualifier string - Scopes []string
- scope_
qualifier string - scopes list(string)
- scope
Qualifier String - scopes List<String>
- scope
Qualifier string - scopes string[]
- scope_
qualifier str - scopes Sequence[str]
- scope
Qualifier String - scopes List<String>
AccountNetworkPolicyIngressPrivateAccessDenyRuleDestinationAccountDatabricksOne, AccountNetworkPolicyIngressPrivateAccessDenyRuleDestinationAccountDatabricksOneArgs
- All
Destinations bool
- All
Destinations bool
- all_
destinations bool
- all
Destinations Boolean
- all
Destinations boolean
- all_
destinations bool
- all
Destinations Boolean
AccountNetworkPolicyIngressPrivateAccessDenyRuleDestinationAccountUi, AccountNetworkPolicyIngressPrivateAccessDenyRuleDestinationAccountUiArgs
- All
Destinations bool
- All
Destinations bool
- all_
destinations bool
- all
Destinations Boolean
- all
Destinations boolean
- all_
destinations bool
- all
Destinations Boolean
AccountNetworkPolicyIngressPrivateAccessDenyRuleDestinationAppsRuntime, AccountNetworkPolicyIngressPrivateAccessDenyRuleDestinationAppsRuntimeArgs
- All
Destinations bool
- All
Destinations bool
- all_
destinations bool
- all
Destinations Boolean
- all
Destinations boolean
- all_
destinations bool
- all
Destinations Boolean
AccountNetworkPolicyIngressPrivateAccessDenyRuleDestinationLakebaseRuntime, AccountNetworkPolicyIngressPrivateAccessDenyRuleDestinationLakebaseRuntimeArgs
- All
Destinations bool
- All
Destinations bool
- all_
destinations bool
- all
Destinations Boolean
- all
Destinations boolean
- all_
destinations bool
- all
Destinations Boolean
AccountNetworkPolicyIngressPrivateAccessDenyRuleDestinationWorkspaceApi, AccountNetworkPolicyIngressPrivateAccessDenyRuleDestinationWorkspaceApiArgs
- Scope
Qualifier string - Scopes List<string>
- Scope
Qualifier string - Scopes []string
- scope_
qualifier string - scopes list(string)
- scope
Qualifier String - scopes List<String>
- scope
Qualifier string - scopes string[]
- scope_
qualifier str - scopes Sequence[str]
- scope
Qualifier String - scopes List<String>
AccountNetworkPolicyIngressPrivateAccessDenyRuleDestinationWorkspaceUi, AccountNetworkPolicyIngressPrivateAccessDenyRuleDestinationWorkspaceUiArgs
- All
Destinations bool
- All
Destinations bool
- all_
destinations bool
- all
Destinations Boolean
- all
Destinations boolean
- all_
destinations bool
- all
Destinations Boolean
AccountNetworkPolicyIngressPrivateAccessDenyRuleOrigin, AccountNetworkPolicyIngressPrivateAccessDenyRuleOriginArgs
- all
Private BooleanAccess - all
Registered BooleanEndpoints - azure
Workspace BooleanPrivate Link - endpoints Property Map
AccountNetworkPolicyIngressPrivateAccessDenyRuleOriginEndpoints, AccountNetworkPolicyIngressPrivateAccessDenyRuleOriginEndpointsArgs
- Endpoint
Ids List<string>
- Endpoint
Ids []string
- endpoint_
ids list(string)
- endpoint
Ids List<String>
- endpoint
Ids string[]
- endpoint_
ids Sequence[str]
- endpoint
Ids List<String>
AccountNetworkPolicyIngressPublicAccess, AccountNetworkPolicyIngressPublicAccessArgs
AccountNetworkPolicyIngressPublicAccessAllowRule, AccountNetworkPolicyIngressPublicAccessAllowRuleArgs
AccountNetworkPolicyIngressPublicAccessAllowRuleAuthentication, AccountNetworkPolicyIngressPublicAccessAllowRuleAuthenticationArgs
- Identities
List<Account
Network Policy Ingress Public Access Allow Rule Authentication Identity> - Valid only when IdentityType is IDENTITY_TYPE_SELECTED_IDENTITIES
- Identity
Type string - Possible values are:
IDENTITY_TYPE_ALL_SERVICE_PRINCIPALS,IDENTITY_TYPE_ALL_USERS,IDENTITY_TYPE_SELECTED_IDENTITIES
- Identities
[]Account
Network Policy Ingress Public Access Allow Rule Authentication Identity - Valid only when IdentityType is IDENTITY_TYPE_SELECTED_IDENTITIES
- Identity
Type string - Possible values are:
IDENTITY_TYPE_ALL_SERVICE_PRINCIPALS,IDENTITY_TYPE_ALL_USERS,IDENTITY_TYPE_SELECTED_IDENTITIES
- identities list(object)
- Valid only when IdentityType is IDENTITY_TYPE_SELECTED_IDENTITIES
- identity_
type string - Possible values are:
IDENTITY_TYPE_ALL_SERVICE_PRINCIPALS,IDENTITY_TYPE_ALL_USERS,IDENTITY_TYPE_SELECTED_IDENTITIES
- identities
List<Account
Network Policy Ingress Public Access Allow Rule Authentication Identity> - Valid only when IdentityType is IDENTITY_TYPE_SELECTED_IDENTITIES
- identity
Type String - Possible values are:
IDENTITY_TYPE_ALL_SERVICE_PRINCIPALS,IDENTITY_TYPE_ALL_USERS,IDENTITY_TYPE_SELECTED_IDENTITIES
- identities
Account
Network Policy Ingress Public Access Allow Rule Authentication Identity[] - Valid only when IdentityType is IDENTITY_TYPE_SELECTED_IDENTITIES
- identity
Type string - Possible values are:
IDENTITY_TYPE_ALL_SERVICE_PRINCIPALS,IDENTITY_TYPE_ALL_USERS,IDENTITY_TYPE_SELECTED_IDENTITIES
- identities
Sequence[Account
Network Policy Ingress Public Access Allow Rule Authentication Identity] - Valid only when IdentityType is IDENTITY_TYPE_SELECTED_IDENTITIES
- identity_
type str - Possible values are:
IDENTITY_TYPE_ALL_SERVICE_PRINCIPALS,IDENTITY_TYPE_ALL_USERS,IDENTITY_TYPE_SELECTED_IDENTITIES
- identities List<Property Map>
- Valid only when IdentityType is IDENTITY_TYPE_SELECTED_IDENTITIES
- identity
Type String - Possible values are:
IDENTITY_TYPE_ALL_SERVICE_PRINCIPALS,IDENTITY_TYPE_ALL_USERS,IDENTITY_TYPE_SELECTED_IDENTITIES
AccountNetworkPolicyIngressPublicAccessAllowRuleAuthenticationIdentity, AccountNetworkPolicyIngressPublicAccessAllowRuleAuthenticationIdentityArgs
- Principal
Id string - Principal
Type string - Possible values are:
PRINCIPAL_TYPE_SERVICE_PRINCIPAL,PRINCIPAL_TYPE_USER
- Principal
Id string - Principal
Type string - Possible values are:
PRINCIPAL_TYPE_SERVICE_PRINCIPAL,PRINCIPAL_TYPE_USER
- principal_
id string - principal_
type string - Possible values are:
PRINCIPAL_TYPE_SERVICE_PRINCIPAL,PRINCIPAL_TYPE_USER
- principal
Id String - principal
Type String - Possible values are:
PRINCIPAL_TYPE_SERVICE_PRINCIPAL,PRINCIPAL_TYPE_USER
- principal
Id string - principal
Type string - Possible values are:
PRINCIPAL_TYPE_SERVICE_PRINCIPAL,PRINCIPAL_TYPE_USER
- principal_
id str - principal_
type str - Possible values are:
PRINCIPAL_TYPE_SERVICE_PRINCIPAL,PRINCIPAL_TYPE_USER
- principal
Id String - principal
Type String - Possible values are:
PRINCIPAL_TYPE_SERVICE_PRINCIPAL,PRINCIPAL_TYPE_USER
AccountNetworkPolicyIngressPublicAccessAllowRuleDestination, AccountNetworkPolicyIngressPublicAccessAllowRuleDestinationArgs
- Account
Api AccountNetwork Policy Ingress Public Access Allow Rule Destination Account Api - Account
Databricks AccountOne Network Policy Ingress Public Access Allow Rule Destination Account Databricks One - Account
Ui AccountNetwork Policy Ingress Public Access Allow Rule Destination Account Ui - All
Destinations bool - Apps
Runtime AccountNetwork Policy Ingress Public Access Allow Rule Destination Apps Runtime - Lakebase
Runtime AccountNetwork Policy Ingress Public Access Allow Rule Destination Lakebase Runtime - Workspace
Api AccountNetwork Policy Ingress Public Access Allow Rule Destination Workspace Api - Workspace
Ui AccountNetwork Policy Ingress Public Access Allow Rule Destination Workspace Ui
- Account
Api AccountNetwork Policy Ingress Public Access Allow Rule Destination Account Api - Account
Databricks AccountOne Network Policy Ingress Public Access Allow Rule Destination Account Databricks One - Account
Ui AccountNetwork Policy Ingress Public Access Allow Rule Destination Account Ui - All
Destinations bool - Apps
Runtime AccountNetwork Policy Ingress Public Access Allow Rule Destination Apps Runtime - Lakebase
Runtime AccountNetwork Policy Ingress Public Access Allow Rule Destination Lakebase Runtime - Workspace
Api AccountNetwork Policy Ingress Public Access Allow Rule Destination Workspace Api - Workspace
Ui AccountNetwork Policy Ingress Public Access Allow Rule Destination Workspace Ui
- account
Api AccountNetwork Policy Ingress Public Access Allow Rule Destination Account Api - account
Databricks AccountOne Network Policy Ingress Public Access Allow Rule Destination Account Databricks One - account
Ui AccountNetwork Policy Ingress Public Access Allow Rule Destination Account Ui - all
Destinations Boolean - apps
Runtime AccountNetwork Policy Ingress Public Access Allow Rule Destination Apps Runtime - lakebase
Runtime AccountNetwork Policy Ingress Public Access Allow Rule Destination Lakebase Runtime - workspace
Api AccountNetwork Policy Ingress Public Access Allow Rule Destination Workspace Api - workspace
Ui AccountNetwork Policy Ingress Public Access Allow Rule Destination Workspace Ui
- account
Api AccountNetwork Policy Ingress Public Access Allow Rule Destination Account Api - account
Databricks AccountOne Network Policy Ingress Public Access Allow Rule Destination Account Databricks One - account
Ui AccountNetwork Policy Ingress Public Access Allow Rule Destination Account Ui - all
Destinations boolean - apps
Runtime AccountNetwork Policy Ingress Public Access Allow Rule Destination Apps Runtime - lakebase
Runtime AccountNetwork Policy Ingress Public Access Allow Rule Destination Lakebase Runtime - workspace
Api AccountNetwork Policy Ingress Public Access Allow Rule Destination Workspace Api - workspace
Ui AccountNetwork Policy Ingress Public Access Allow Rule Destination Workspace Ui
- account_
api AccountNetwork Policy Ingress Public Access Allow Rule Destination Account Api - account_
databricks_ Accountone Network Policy Ingress Public Access Allow Rule Destination Account Databricks One - account_
ui AccountNetwork Policy Ingress Public Access Allow Rule Destination Account Ui - all_
destinations bool - apps_
runtime AccountNetwork Policy Ingress Public Access Allow Rule Destination Apps Runtime - lakebase_
runtime AccountNetwork Policy Ingress Public Access Allow Rule Destination Lakebase Runtime - workspace_
api AccountNetwork Policy Ingress Public Access Allow Rule Destination Workspace Api - workspace_
ui AccountNetwork Policy Ingress Public Access Allow Rule Destination Workspace Ui
AccountNetworkPolicyIngressPublicAccessAllowRuleDestinationAccountApi, AccountNetworkPolicyIngressPublicAccessAllowRuleDestinationAccountApiArgs
- Scope
Qualifier string - Scopes List<string>
- Scope
Qualifier string - Scopes []string
- scope_
qualifier string - scopes list(string)
- scope
Qualifier String - scopes List<String>
- scope
Qualifier string - scopes string[]
- scope_
qualifier str - scopes Sequence[str]
- scope
Qualifier String - scopes List<String>
AccountNetworkPolicyIngressPublicAccessAllowRuleDestinationAccountDatabricksOne, AccountNetworkPolicyIngressPublicAccessAllowRuleDestinationAccountDatabricksOneArgs
- All
Destinations bool
- All
Destinations bool
- all_
destinations bool
- all
Destinations Boolean
- all
Destinations boolean
- all_
destinations bool
- all
Destinations Boolean
AccountNetworkPolicyIngressPublicAccessAllowRuleDestinationAccountUi, AccountNetworkPolicyIngressPublicAccessAllowRuleDestinationAccountUiArgs
- All
Destinations bool
- All
Destinations bool
- all_
destinations bool
- all
Destinations Boolean
- all
Destinations boolean
- all_
destinations bool
- all
Destinations Boolean
AccountNetworkPolicyIngressPublicAccessAllowRuleDestinationAppsRuntime, AccountNetworkPolicyIngressPublicAccessAllowRuleDestinationAppsRuntimeArgs
- All
Destinations bool
- All
Destinations bool
- all_
destinations bool
- all
Destinations Boolean
- all
Destinations boolean
- all_
destinations bool
- all
Destinations Boolean
AccountNetworkPolicyIngressPublicAccessAllowRuleDestinationLakebaseRuntime, AccountNetworkPolicyIngressPublicAccessAllowRuleDestinationLakebaseRuntimeArgs
- All
Destinations bool
- All
Destinations bool
- all_
destinations bool
- all
Destinations Boolean
- all
Destinations boolean
- all_
destinations bool
- all
Destinations Boolean
AccountNetworkPolicyIngressPublicAccessAllowRuleDestinationWorkspaceApi, AccountNetworkPolicyIngressPublicAccessAllowRuleDestinationWorkspaceApiArgs
- Scope
Qualifier string - Scopes List<string>
- Scope
Qualifier string - Scopes []string
- scope_
qualifier string - scopes list(string)
- scope
Qualifier String - scopes List<String>
- scope
Qualifier string - scopes string[]
- scope_
qualifier str - scopes Sequence[str]
- scope
Qualifier String - scopes List<String>
AccountNetworkPolicyIngressPublicAccessAllowRuleDestinationWorkspaceUi, AccountNetworkPolicyIngressPublicAccessAllowRuleDestinationWorkspaceUiArgs
- All
Destinations bool
- All
Destinations bool
- all_
destinations bool
- all
Destinations Boolean
- all
Destinations boolean
- all_
destinations bool
- all
Destinations Boolean
AccountNetworkPolicyIngressPublicAccessAllowRuleOrigin, AccountNetworkPolicyIngressPublicAccessAllowRuleOriginArgs
- All
Ip boolRanges - Matches all IPv4 and IPv6 ranges (both public and private)
- Excluded
Ip AccountRanges Network Policy Ingress Public Access Allow Rule Origin Excluded Ip Ranges - Excluded means: all public IP ranges except this one
- Included
Ip AccountRanges Network Policy Ingress Public Access Allow Rule Origin Included Ip Ranges - Will not allow IP ranges with private IPs
- All
Ip boolRanges - Matches all IPv4 and IPv6 ranges (both public and private)
- Excluded
Ip AccountRanges Network Policy Ingress Public Access Allow Rule Origin Excluded Ip Ranges - Excluded means: all public IP ranges except this one
- Included
Ip AccountRanges Network Policy Ingress Public Access Allow Rule Origin Included Ip Ranges - Will not allow IP ranges with private IPs
- all_
ip_ boolranges - Matches all IPv4 and IPv6 ranges (both public and private)
- excluded_
ip_ objectranges - Excluded means: all public IP ranges except this one
- included_
ip_ objectranges - Will not allow IP ranges with private IPs
- all
Ip BooleanRanges - Matches all IPv4 and IPv6 ranges (both public and private)
- excluded
Ip AccountRanges Network Policy Ingress Public Access Allow Rule Origin Excluded Ip Ranges - Excluded means: all public IP ranges except this one
- included
Ip AccountRanges Network Policy Ingress Public Access Allow Rule Origin Included Ip Ranges - Will not allow IP ranges with private IPs
- all
Ip booleanRanges - Matches all IPv4 and IPv6 ranges (both public and private)
- excluded
Ip AccountRanges Network Policy Ingress Public Access Allow Rule Origin Excluded Ip Ranges - Excluded means: all public IP ranges except this one
- included
Ip AccountRanges Network Policy Ingress Public Access Allow Rule Origin Included Ip Ranges - Will not allow IP ranges with private IPs
- all_
ip_ boolranges - Matches all IPv4 and IPv6 ranges (both public and private)
- excluded_
ip_ Accountranges Network Policy Ingress Public Access Allow Rule Origin Excluded Ip Ranges - Excluded means: all public IP ranges except this one
- included_
ip_ Accountranges Network Policy Ingress Public Access Allow Rule Origin Included Ip Ranges - Will not allow IP ranges with private IPs
- all
Ip BooleanRanges - Matches all IPv4 and IPv6 ranges (both public and private)
- excluded
Ip Property MapRanges - Excluded means: all public IP ranges except this one
- included
Ip Property MapRanges - Will not allow IP ranges with private IPs
AccountNetworkPolicyIngressPublicAccessAllowRuleOriginExcludedIpRanges, AccountNetworkPolicyIngressPublicAccessAllowRuleOriginExcludedIpRangesArgs
- Ip
Ranges List<string> - We only support IPv4 and IPv4 CIDR notation for now
- Ip
Ranges []string - We only support IPv4 and IPv4 CIDR notation for now
- ip_
ranges list(string) - We only support IPv4 and IPv4 CIDR notation for now
- ip
Ranges List<String> - We only support IPv4 and IPv4 CIDR notation for now
- ip
Ranges string[] - We only support IPv4 and IPv4 CIDR notation for now
- ip_
ranges Sequence[str] - We only support IPv4 and IPv4 CIDR notation for now
- ip
Ranges List<String> - We only support IPv4 and IPv4 CIDR notation for now
AccountNetworkPolicyIngressPublicAccessAllowRuleOriginIncludedIpRanges, AccountNetworkPolicyIngressPublicAccessAllowRuleOriginIncludedIpRangesArgs
- Ip
Ranges List<string> - We only support IPv4 and IPv4 CIDR notation for now
- Ip
Ranges []string - We only support IPv4 and IPv4 CIDR notation for now
- ip_
ranges list(string) - We only support IPv4 and IPv4 CIDR notation for now
- ip
Ranges List<String> - We only support IPv4 and IPv4 CIDR notation for now
- ip
Ranges string[] - We only support IPv4 and IPv4 CIDR notation for now
- ip_
ranges Sequence[str] - We only support IPv4 and IPv4 CIDR notation for now
- ip
Ranges List<String> - We only support IPv4 and IPv4 CIDR notation for now
AccountNetworkPolicyIngressPublicAccessDenyRule, AccountNetworkPolicyIngressPublicAccessDenyRuleArgs
AccountNetworkPolicyIngressPublicAccessDenyRuleAuthentication, AccountNetworkPolicyIngressPublicAccessDenyRuleAuthenticationArgs
- Identities
List<Account
Network Policy Ingress Public Access Deny Rule Authentication Identity> - Valid only when IdentityType is IDENTITY_TYPE_SELECTED_IDENTITIES
- Identity
Type string - Possible values are:
IDENTITY_TYPE_ALL_SERVICE_PRINCIPALS,IDENTITY_TYPE_ALL_USERS,IDENTITY_TYPE_SELECTED_IDENTITIES
- Identities
[]Account
Network Policy Ingress Public Access Deny Rule Authentication Identity - Valid only when IdentityType is IDENTITY_TYPE_SELECTED_IDENTITIES
- Identity
Type string - Possible values are:
IDENTITY_TYPE_ALL_SERVICE_PRINCIPALS,IDENTITY_TYPE_ALL_USERS,IDENTITY_TYPE_SELECTED_IDENTITIES
- identities list(object)
- Valid only when IdentityType is IDENTITY_TYPE_SELECTED_IDENTITIES
- identity_
type string - Possible values are:
IDENTITY_TYPE_ALL_SERVICE_PRINCIPALS,IDENTITY_TYPE_ALL_USERS,IDENTITY_TYPE_SELECTED_IDENTITIES
- identities
List<Account
Network Policy Ingress Public Access Deny Rule Authentication Identity> - Valid only when IdentityType is IDENTITY_TYPE_SELECTED_IDENTITIES
- identity
Type String - Possible values are:
IDENTITY_TYPE_ALL_SERVICE_PRINCIPALS,IDENTITY_TYPE_ALL_USERS,IDENTITY_TYPE_SELECTED_IDENTITIES
- identities
Account
Network Policy Ingress Public Access Deny Rule Authentication Identity[] - Valid only when IdentityType is IDENTITY_TYPE_SELECTED_IDENTITIES
- identity
Type string - Possible values are:
IDENTITY_TYPE_ALL_SERVICE_PRINCIPALS,IDENTITY_TYPE_ALL_USERS,IDENTITY_TYPE_SELECTED_IDENTITIES
- identities
Sequence[Account
Network Policy Ingress Public Access Deny Rule Authentication Identity] - Valid only when IdentityType is IDENTITY_TYPE_SELECTED_IDENTITIES
- identity_
type str - Possible values are:
IDENTITY_TYPE_ALL_SERVICE_PRINCIPALS,IDENTITY_TYPE_ALL_USERS,IDENTITY_TYPE_SELECTED_IDENTITIES
- identities List<Property Map>
- Valid only when IdentityType is IDENTITY_TYPE_SELECTED_IDENTITIES
- identity
Type String - Possible values are:
IDENTITY_TYPE_ALL_SERVICE_PRINCIPALS,IDENTITY_TYPE_ALL_USERS,IDENTITY_TYPE_SELECTED_IDENTITIES
AccountNetworkPolicyIngressPublicAccessDenyRuleAuthenticationIdentity, AccountNetworkPolicyIngressPublicAccessDenyRuleAuthenticationIdentityArgs
- Principal
Id string - Principal
Type string - Possible values are:
PRINCIPAL_TYPE_SERVICE_PRINCIPAL,PRINCIPAL_TYPE_USER
- Principal
Id string - Principal
Type string - Possible values are:
PRINCIPAL_TYPE_SERVICE_PRINCIPAL,PRINCIPAL_TYPE_USER
- principal_
id string - principal_
type string - Possible values are:
PRINCIPAL_TYPE_SERVICE_PRINCIPAL,PRINCIPAL_TYPE_USER
- principal
Id String - principal
Type String - Possible values are:
PRINCIPAL_TYPE_SERVICE_PRINCIPAL,PRINCIPAL_TYPE_USER
- principal
Id string - principal
Type string - Possible values are:
PRINCIPAL_TYPE_SERVICE_PRINCIPAL,PRINCIPAL_TYPE_USER
- principal_
id str - principal_
type str - Possible values are:
PRINCIPAL_TYPE_SERVICE_PRINCIPAL,PRINCIPAL_TYPE_USER
- principal
Id String - principal
Type String - Possible values are:
PRINCIPAL_TYPE_SERVICE_PRINCIPAL,PRINCIPAL_TYPE_USER
AccountNetworkPolicyIngressPublicAccessDenyRuleDestination, AccountNetworkPolicyIngressPublicAccessDenyRuleDestinationArgs
- Account
Api AccountNetwork Policy Ingress Public Access Deny Rule Destination Account Api - Account
Databricks AccountOne Network Policy Ingress Public Access Deny Rule Destination Account Databricks One - Account
Ui AccountNetwork Policy Ingress Public Access Deny Rule Destination Account Ui - All
Destinations bool - Apps
Runtime AccountNetwork Policy Ingress Public Access Deny Rule Destination Apps Runtime - Lakebase
Runtime AccountNetwork Policy Ingress Public Access Deny Rule Destination Lakebase Runtime - Workspace
Api AccountNetwork Policy Ingress Public Access Deny Rule Destination Workspace Api - Workspace
Ui AccountNetwork Policy Ingress Public Access Deny Rule Destination Workspace Ui
- Account
Api AccountNetwork Policy Ingress Public Access Deny Rule Destination Account Api - Account
Databricks AccountOne Network Policy Ingress Public Access Deny Rule Destination Account Databricks One - Account
Ui AccountNetwork Policy Ingress Public Access Deny Rule Destination Account Ui - All
Destinations bool - Apps
Runtime AccountNetwork Policy Ingress Public Access Deny Rule Destination Apps Runtime - Lakebase
Runtime AccountNetwork Policy Ingress Public Access Deny Rule Destination Lakebase Runtime - Workspace
Api AccountNetwork Policy Ingress Public Access Deny Rule Destination Workspace Api - Workspace
Ui AccountNetwork Policy Ingress Public Access Deny Rule Destination Workspace Ui
- account
Api AccountNetwork Policy Ingress Public Access Deny Rule Destination Account Api - account
Databricks AccountOne Network Policy Ingress Public Access Deny Rule Destination Account Databricks One - account
Ui AccountNetwork Policy Ingress Public Access Deny Rule Destination Account Ui - all
Destinations Boolean - apps
Runtime AccountNetwork Policy Ingress Public Access Deny Rule Destination Apps Runtime - lakebase
Runtime AccountNetwork Policy Ingress Public Access Deny Rule Destination Lakebase Runtime - workspace
Api AccountNetwork Policy Ingress Public Access Deny Rule Destination Workspace Api - workspace
Ui AccountNetwork Policy Ingress Public Access Deny Rule Destination Workspace Ui
- account
Api AccountNetwork Policy Ingress Public Access Deny Rule Destination Account Api - account
Databricks AccountOne Network Policy Ingress Public Access Deny Rule Destination Account Databricks One - account
Ui AccountNetwork Policy Ingress Public Access Deny Rule Destination Account Ui - all
Destinations boolean - apps
Runtime AccountNetwork Policy Ingress Public Access Deny Rule Destination Apps Runtime - lakebase
Runtime AccountNetwork Policy Ingress Public Access Deny Rule Destination Lakebase Runtime - workspace
Api AccountNetwork Policy Ingress Public Access Deny Rule Destination Workspace Api - workspace
Ui AccountNetwork Policy Ingress Public Access Deny Rule Destination Workspace Ui
- account_
api AccountNetwork Policy Ingress Public Access Deny Rule Destination Account Api - account_
databricks_ Accountone Network Policy Ingress Public Access Deny Rule Destination Account Databricks One - account_
ui AccountNetwork Policy Ingress Public Access Deny Rule Destination Account Ui - all_
destinations bool - apps_
runtime AccountNetwork Policy Ingress Public Access Deny Rule Destination Apps Runtime - lakebase_
runtime AccountNetwork Policy Ingress Public Access Deny Rule Destination Lakebase Runtime - workspace_
api AccountNetwork Policy Ingress Public Access Deny Rule Destination Workspace Api - workspace_
ui AccountNetwork Policy Ingress Public Access Deny Rule Destination Workspace Ui
AccountNetworkPolicyIngressPublicAccessDenyRuleDestinationAccountApi, AccountNetworkPolicyIngressPublicAccessDenyRuleDestinationAccountApiArgs
- Scope
Qualifier string - Scopes List<string>
- Scope
Qualifier string - Scopes []string
- scope_
qualifier string - scopes list(string)
- scope
Qualifier String - scopes List<String>
- scope
Qualifier string - scopes string[]
- scope_
qualifier str - scopes Sequence[str]
- scope
Qualifier String - scopes List<String>
AccountNetworkPolicyIngressPublicAccessDenyRuleDestinationAccountDatabricksOne, AccountNetworkPolicyIngressPublicAccessDenyRuleDestinationAccountDatabricksOneArgs
- All
Destinations bool
- All
Destinations bool
- all_
destinations bool
- all
Destinations Boolean
- all
Destinations boolean
- all_
destinations bool
- all
Destinations Boolean
AccountNetworkPolicyIngressPublicAccessDenyRuleDestinationAccountUi, AccountNetworkPolicyIngressPublicAccessDenyRuleDestinationAccountUiArgs
- All
Destinations bool
- All
Destinations bool
- all_
destinations bool
- all
Destinations Boolean
- all
Destinations boolean
- all_
destinations bool
- all
Destinations Boolean
AccountNetworkPolicyIngressPublicAccessDenyRuleDestinationAppsRuntime, AccountNetworkPolicyIngressPublicAccessDenyRuleDestinationAppsRuntimeArgs
- All
Destinations bool
- All
Destinations bool
- all_
destinations bool
- all
Destinations Boolean
- all
Destinations boolean
- all_
destinations bool
- all
Destinations Boolean
AccountNetworkPolicyIngressPublicAccessDenyRuleDestinationLakebaseRuntime, AccountNetworkPolicyIngressPublicAccessDenyRuleDestinationLakebaseRuntimeArgs
- All
Destinations bool
- All
Destinations bool
- all_
destinations bool
- all
Destinations Boolean
- all
Destinations boolean
- all_
destinations bool
- all
Destinations Boolean
AccountNetworkPolicyIngressPublicAccessDenyRuleDestinationWorkspaceApi, AccountNetworkPolicyIngressPublicAccessDenyRuleDestinationWorkspaceApiArgs
- Scope
Qualifier string - Scopes List<string>
- Scope
Qualifier string - Scopes []string
- scope_
qualifier string - scopes list(string)
- scope
Qualifier String - scopes List<String>
- scope
Qualifier string - scopes string[]
- scope_
qualifier str - scopes Sequence[str]
- scope
Qualifier String - scopes List<String>
AccountNetworkPolicyIngressPublicAccessDenyRuleDestinationWorkspaceUi, AccountNetworkPolicyIngressPublicAccessDenyRuleDestinationWorkspaceUiArgs
- All
Destinations bool
- All
Destinations bool
- all_
destinations bool
- all
Destinations Boolean
- all
Destinations boolean
- all_
destinations bool
- all
Destinations Boolean
AccountNetworkPolicyIngressPublicAccessDenyRuleOrigin, AccountNetworkPolicyIngressPublicAccessDenyRuleOriginArgs
- All
Ip boolRanges - Matches all IPv4 and IPv6 ranges (both public and private)
- Excluded
Ip AccountRanges Network Policy Ingress Public Access Deny Rule Origin Excluded Ip Ranges - Excluded means: all public IP ranges except this one
- Included
Ip AccountRanges Network Policy Ingress Public Access Deny Rule Origin Included Ip Ranges - Will not allow IP ranges with private IPs
- All
Ip boolRanges - Matches all IPv4 and IPv6 ranges (both public and private)
- Excluded
Ip AccountRanges Network Policy Ingress Public Access Deny Rule Origin Excluded Ip Ranges - Excluded means: all public IP ranges except this one
- Included
Ip AccountRanges Network Policy Ingress Public Access Deny Rule Origin Included Ip Ranges - Will not allow IP ranges with private IPs
- all_
ip_ boolranges - Matches all IPv4 and IPv6 ranges (both public and private)
- excluded_
ip_ objectranges - Excluded means: all public IP ranges except this one
- included_
ip_ objectranges - Will not allow IP ranges with private IPs
- all
Ip BooleanRanges - Matches all IPv4 and IPv6 ranges (both public and private)
- excluded
Ip AccountRanges Network Policy Ingress Public Access Deny Rule Origin Excluded Ip Ranges - Excluded means: all public IP ranges except this one
- included
Ip AccountRanges Network Policy Ingress Public Access Deny Rule Origin Included Ip Ranges - Will not allow IP ranges with private IPs
- all
Ip booleanRanges - Matches all IPv4 and IPv6 ranges (both public and private)
- excluded
Ip AccountRanges Network Policy Ingress Public Access Deny Rule Origin Excluded Ip Ranges - Excluded means: all public IP ranges except this one
- included
Ip AccountRanges Network Policy Ingress Public Access Deny Rule Origin Included Ip Ranges - Will not allow IP ranges with private IPs
- all_
ip_ boolranges - Matches all IPv4 and IPv6 ranges (both public and private)
- excluded_
ip_ Accountranges Network Policy Ingress Public Access Deny Rule Origin Excluded Ip Ranges - Excluded means: all public IP ranges except this one
- included_
ip_ Accountranges Network Policy Ingress Public Access Deny Rule Origin Included Ip Ranges - Will not allow IP ranges with private IPs
- all
Ip BooleanRanges - Matches all IPv4 and IPv6 ranges (both public and private)
- excluded
Ip Property MapRanges - Excluded means: all public IP ranges except this one
- included
Ip Property MapRanges - Will not allow IP ranges with private IPs
AccountNetworkPolicyIngressPublicAccessDenyRuleOriginExcludedIpRanges, AccountNetworkPolicyIngressPublicAccessDenyRuleOriginExcludedIpRangesArgs
- Ip
Ranges List<string> - We only support IPv4 and IPv4 CIDR notation for now
- Ip
Ranges []string - We only support IPv4 and IPv4 CIDR notation for now
- ip_
ranges list(string) - We only support IPv4 and IPv4 CIDR notation for now
- ip
Ranges List<String> - We only support IPv4 and IPv4 CIDR notation for now
- ip
Ranges string[] - We only support IPv4 and IPv4 CIDR notation for now
- ip_
ranges Sequence[str] - We only support IPv4 and IPv4 CIDR notation for now
- ip
Ranges List<String> - We only support IPv4 and IPv4 CIDR notation for now
AccountNetworkPolicyIngressPublicAccessDenyRuleOriginIncludedIpRanges, AccountNetworkPolicyIngressPublicAccessDenyRuleOriginIncludedIpRangesArgs
- Ip
Ranges List<string> - We only support IPv4 and IPv4 CIDR notation for now
- Ip
Ranges []string - We only support IPv4 and IPv4 CIDR notation for now
- ip_
ranges list(string) - We only support IPv4 and IPv4 CIDR notation for now
- ip
Ranges List<String> - We only support IPv4 and IPv4 CIDR notation for now
- ip
Ranges string[] - We only support IPv4 and IPv4 CIDR notation for now
- ip_
ranges Sequence[str] - We only support IPv4 and IPv4 CIDR notation for now
- ip
Ranges List<String> - We only support IPv4 and IPv4 CIDR notation for now
Package Details
- Repository
- databricks pulumi/pulumi-databricks
- License
- Apache-2.0
- Notes
- This Pulumi package is based on the
databricksTerraform Provider.
Viewing docs for Databricks v1.92.0
published on Tuesday, May 12, 2026 by Pulumi
published on Tuesday, May 12, 2026 by Pulumi
