Docs Home
Rancher 2 v9.2.0 published on Tuesday, Jul 8, 2025 by Pulumi
rancher2.PodSecurityAdmissionConfigurationTemplate
Explore with Pulumi AI
Provides a rancher v2 pod security admission configration template resource. This can be used to create pod security admission configration templates and retrieve their information.
For more information, please refer to Rancher Documentation
Example Usage
import * as pulumi from "@pulumi/pulumi";
import * as rancher2 from "@pulumi/rancher2";
// Create a Pod Security Admission Configuration Template resource
const foo = new rancher2.PodSecurityAdmissionConfigurationTemplate("foo", {
name: "custom-psact",
description: "This is my custom Pod Security Admission Configuration Template",
defaults: {
audit: "restricted",
auditVersion: "latest",
enforce: "restricted",
enforceVersion: "latest",
warn: "restricted",
warnVersion: "latest",
},
exemptions: {
usernames: ["testuser"],
runtimeClasses: ["testclass"],
namespaces: [
"ingress-nginx",
"kube-system",
],
},
});
import pulumi
import pulumi_rancher2 as rancher2
# Create a Pod Security Admission Configuration Template resource
foo = rancher2.PodSecurityAdmissionConfigurationTemplate("foo",
name="custom-psact",
description="This is my custom Pod Security Admission Configuration Template",
defaults={
"audit": "restricted",
"audit_version": "latest",
"enforce": "restricted",
"enforce_version": "latest",
"warn": "restricted",
"warn_version": "latest",
},
exemptions={
"usernames": ["testuser"],
"runtime_classes": ["testclass"],
"namespaces": [
"ingress-nginx",
"kube-system",
],
})
package main
import (
"github.com/pulumi/pulumi-rancher2/sdk/v9/go/rancher2"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
// Create a Pod Security Admission Configuration Template resource
_, err := rancher2.NewPodSecurityAdmissionConfigurationTemplate(ctx, "foo", &rancher2.PodSecurityAdmissionConfigurationTemplateArgs{
Name: pulumi.String("custom-psact"),
Description: pulumi.String("This is my custom Pod Security Admission Configuration Template"),
Defaults: &rancher2.PodSecurityAdmissionConfigurationTemplateDefaultsArgs{
Audit: pulumi.String("restricted"),
AuditVersion: pulumi.String("latest"),
Enforce: pulumi.String("restricted"),
EnforceVersion: pulumi.String("latest"),
Warn: pulumi.String("restricted"),
WarnVersion: pulumi.String("latest"),
},
Exemptions: &rancher2.PodSecurityAdmissionConfigurationTemplateExemptionsArgs{
Usernames: pulumi.StringArray{
pulumi.String("testuser"),
},
RuntimeClasses: pulumi.StringArray{
pulumi.String("testclass"),
},
Namespaces: pulumi.StringArray{
pulumi.String("ingress-nginx"),
pulumi.String("kube-system"),
},
},
})
if err != nil {
return err
}
return nil
})
}
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using Rancher2 = Pulumi.Rancher2;
return await Deployment.RunAsync(() =>
{
// Create a Pod Security Admission Configuration Template resource
var foo = new Rancher2.PodSecurityAdmissionConfigurationTemplate("foo", new()
{
Name = "custom-psact",
Description = "This is my custom Pod Security Admission Configuration Template",
Defaults = new Rancher2.Inputs.PodSecurityAdmissionConfigurationTemplateDefaultsArgs
{
Audit = "restricted",
AuditVersion = "latest",
Enforce = "restricted",
EnforceVersion = "latest",
Warn = "restricted",
WarnVersion = "latest",
},
Exemptions = new Rancher2.Inputs.PodSecurityAdmissionConfigurationTemplateExemptionsArgs
{
Usernames = new[]
{
"testuser",
},
RuntimeClasses = new[]
{
"testclass",
},
Namespaces = new[]
{
"ingress-nginx",
"kube-system",
},
},
});
});
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.rancher2.PodSecurityAdmissionConfigurationTemplate;
import com.pulumi.rancher2.PodSecurityAdmissionConfigurationTemplateArgs;
import com.pulumi.rancher2.inputs.PodSecurityAdmissionConfigurationTemplateDefaultsArgs;
import com.pulumi.rancher2.inputs.PodSecurityAdmissionConfigurationTemplateExemptionsArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
// Create a Pod Security Admission Configuration Template resource
var foo = new PodSecurityAdmissionConfigurationTemplate("foo", PodSecurityAdmissionConfigurationTemplateArgs.builder()
.name("custom-psact")
.description("This is my custom Pod Security Admission Configuration Template")
.defaults(PodSecurityAdmissionConfigurationTemplateDefaultsArgs.builder()
.audit("restricted")
.auditVersion("latest")
.enforce("restricted")
.enforceVersion("latest")
.warn("restricted")
.warnVersion("latest")
.build())
.exemptions(PodSecurityAdmissionConfigurationTemplateExemptionsArgs.builder()
.usernames("testuser")
.runtimeClasses("testclass")
.namespaces(
"ingress-nginx",
"kube-system")
.build())
.build());
}
}
resources:
# Create a Pod Security Admission Configuration Template resource
foo:
type: rancher2:PodSecurityAdmissionConfigurationTemplate
properties:
name: custom-psact
description: This is my custom Pod Security Admission Configuration Template
defaults:
audit: restricted
auditVersion: latest
enforce: restricted
enforceVersion: latest
warn: restricted
warnVersion: latest
exemptions:
usernames:
- testuser
runtimeClasses:
- testclass
namespaces:
- ingress-nginx
- kube-system
Create PodSecurityAdmissionConfigurationTemplate Resource
Resources are created with functions called constructors. To learn more about declaring and configuring resources, see Resources.
Constructor syntax
new PodSecurityAdmissionConfigurationTemplate(name: string, args: PodSecurityAdmissionConfigurationTemplateArgs, opts?: CustomResourceOptions);@overload
def PodSecurityAdmissionConfigurationTemplate(resource_name: str,
args: PodSecurityAdmissionConfigurationTemplateArgs,
opts: Optional[ResourceOptions] = None)
@overload
def PodSecurityAdmissionConfigurationTemplate(resource_name: str,
opts: Optional[ResourceOptions] = None,
defaults: Optional[PodSecurityAdmissionConfigurationTemplateDefaultsArgs] = None,
annotations: Optional[Mapping[str, str]] = None,
description: Optional[str] = None,
exemptions: Optional[PodSecurityAdmissionConfigurationTemplateExemptionsArgs] = None,
labels: Optional[Mapping[str, str]] = None,
name: Optional[str] = None)func NewPodSecurityAdmissionConfigurationTemplate(ctx *Context, name string, args PodSecurityAdmissionConfigurationTemplateArgs, opts ...ResourceOption) (*PodSecurityAdmissionConfigurationTemplate, error)public PodSecurityAdmissionConfigurationTemplate(string name, PodSecurityAdmissionConfigurationTemplateArgs args, CustomResourceOptions? opts = null)
public PodSecurityAdmissionConfigurationTemplate(String name, PodSecurityAdmissionConfigurationTemplateArgs args)
public PodSecurityAdmissionConfigurationTemplate(String name, PodSecurityAdmissionConfigurationTemplateArgs args, CustomResourceOptions options)
type: rancher2:PodSecurityAdmissionConfigurationTemplate
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.
Parameters
- name string
- The unique name of the resource.
- args PodSecurityAdmissionConfigurationTemplateArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- resource_name str
- The unique name of the resource.
- args PodSecurityAdmissionConfigurationTemplateArgs
- The arguments to resource properties.
- opts ResourceOptions
- Bag of options to control resource's behavior.
- ctx Context
- Context object for the current deployment.
- name string
- The unique name of the resource.
- args PodSecurityAdmissionConfigurationTemplateArgs
- The arguments to resource properties.
- opts ResourceOption
- Bag of options to control resource's behavior.
- name string
- The unique name of the resource.
- args PodSecurityAdmissionConfigurationTemplateArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- name String
- The unique name of the resource.
- args PodSecurityAdmissionConfigurationTemplateArgs
- The arguments to resource properties.
- options CustomResourceOptions
- Bag of options to control resource's behavior.
Constructor example
The following reference example uses placeholder values for all input properties.
var podSecurityAdmissionConfigurationTemplateResource = new Rancher2.PodSecurityAdmissionConfigurationTemplate("podSecurityAdmissionConfigurationTemplateResource", new()
{
Defaults = new Rancher2.Inputs.PodSecurityAdmissionConfigurationTemplateDefaultsArgs
{
Audit = "string",
AuditVersion = "string",
Enforce = "string",
EnforceVersion = "string",
Warn = "string",
WarnVersion = "string",
},
Annotations =
{
{ "string", "string" },
},
Description = "string",
Exemptions = new Rancher2.Inputs.PodSecurityAdmissionConfigurationTemplateExemptionsArgs
{
Namespaces = new[]
{
"string",
},
RuntimeClasses = new[]
{
"string",
},
Usernames = new[]
{
"string",
},
},
Labels =
{
{ "string", "string" },
},
Name = "string",
});
example, err := rancher2.NewPodSecurityAdmissionConfigurationTemplate(ctx, "podSecurityAdmissionConfigurationTemplateResource", &rancher2.PodSecurityAdmissionConfigurationTemplateArgs{
Defaults: &rancher2.PodSecurityAdmissionConfigurationTemplateDefaultsArgs{
Audit: pulumi.String("string"),
AuditVersion: pulumi.String("string"),
Enforce: pulumi.String("string"),
EnforceVersion: pulumi.String("string"),
Warn: pulumi.String("string"),
WarnVersion: pulumi.String("string"),
},
Annotations: pulumi.StringMap{
"string": pulumi.String("string"),
},
Description: pulumi.String("string"),
Exemptions: &rancher2.PodSecurityAdmissionConfigurationTemplateExemptionsArgs{
Namespaces: pulumi.StringArray{
pulumi.String("string"),
},
RuntimeClasses: pulumi.StringArray{
pulumi.String("string"),
},
Usernames: pulumi.StringArray{
pulumi.String("string"),
},
},
Labels: pulumi.StringMap{
"string": pulumi.String("string"),
},
Name: pulumi.String("string"),
})
var podSecurityAdmissionConfigurationTemplateResource = new PodSecurityAdmissionConfigurationTemplate("podSecurityAdmissionConfigurationTemplateResource", PodSecurityAdmissionConfigurationTemplateArgs.builder()
.defaults(PodSecurityAdmissionConfigurationTemplateDefaultsArgs.builder()
.audit("string")
.auditVersion("string")
.enforce("string")
.enforceVersion("string")
.warn("string")
.warnVersion("string")
.build())
.annotations(Map.of("string", "string"))
.description("string")
.exemptions(PodSecurityAdmissionConfigurationTemplateExemptionsArgs.builder()
.namespaces("string")
.runtimeClasses("string")
.usernames("string")
.build())
.labels(Map.of("string", "string"))
.name("string")
.build());
pod_security_admission_configuration_template_resource = rancher2.PodSecurityAdmissionConfigurationTemplate("podSecurityAdmissionConfigurationTemplateResource",
defaults={
"audit": "string",
"audit_version": "string",
"enforce": "string",
"enforce_version": "string",
"warn": "string",
"warn_version": "string",
},
annotations={
"string": "string",
},
description="string",
exemptions={
"namespaces": ["string"],
"runtime_classes": ["string"],
"usernames": ["string"],
},
labels={
"string": "string",
},
name="string")
const podSecurityAdmissionConfigurationTemplateResource = new rancher2.PodSecurityAdmissionConfigurationTemplate("podSecurityAdmissionConfigurationTemplateResource", {
defaults: {
audit: "string",
auditVersion: "string",
enforce: "string",
enforceVersion: "string",
warn: "string",
warnVersion: "string",
},
annotations: {
string: "string",
},
description: "string",
exemptions: {
namespaces: ["string"],
runtimeClasses: ["string"],
usernames: ["string"],
},
labels: {
string: "string",
},
name: "string",
});
type: rancher2:PodSecurityAdmissionConfigurationTemplate
properties:
annotations:
string: string
defaults:
audit: string
auditVersion: string
enforce: string
enforceVersion: string
warn: string
warnVersion: string
description: string
exemptions:
namespaces:
- string
runtimeClasses:
- string
usernames:
- string
labels:
string: string
name: string
PodSecurityAdmissionConfigurationTemplate Resource Properties
To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.
Inputs
In Python, inputs that are objects can be passed either as argument classes or as dictionary literals.
The PodSecurityAdmissionConfigurationTemplate resource accepts the following input properties:
- Defaults
Pod
Security Admission Configuration Template Defaults - The default level labels and version labels to be applied when labels for a mode is not set (list maxitems:1)
- Annotations Dictionary<string, string>
- Annotations of the resource (map)
- Description string
- The description of the pod security admission configuration template (string)
- Exemptions
Pod
Security Admission Configuration Template Exemptions - The authenticated usernames, runtime class names, and namespaces to exempt (list maxitems:1)
- Labels Dictionary<string, string>
- Labels of the resource (map)
- Name string
- The name of the pod security admission configuration template (string)
- Defaults
Pod
Security Admission Configuration Template Defaults Args - The default level labels and version labels to be applied when labels for a mode is not set (list maxitems:1)
- Annotations map[string]string
- Annotations of the resource (map)
- Description string
- The description of the pod security admission configuration template (string)
- Exemptions
Pod
Security Admission Configuration Template Exemptions Args - The authenticated usernames, runtime class names, and namespaces to exempt (list maxitems:1)
- Labels map[string]string
- Labels of the resource (map)
- Name string
- The name of the pod security admission configuration template (string)
- defaults
Pod
Security Admission Configuration Template Defaults - The default level labels and version labels to be applied when labels for a mode is not set (list maxitems:1)
- annotations Map<String,String>
- Annotations of the resource (map)
- description String
- The description of the pod security admission configuration template (string)
- exemptions
Pod
Security Admission Configuration Template Exemptions - The authenticated usernames, runtime class names, and namespaces to exempt (list maxitems:1)
- labels Map<String,String>
- Labels of the resource (map)
- name String
- The name of the pod security admission configuration template (string)
- defaults
Pod
Security Admission Configuration Template Defaults - The default level labels and version labels to be applied when labels for a mode is not set (list maxitems:1)
- annotations {[key: string]: string}
- Annotations of the resource (map)
- description string
- The description of the pod security admission configuration template (string)
- exemptions
Pod
Security Admission Configuration Template Exemptions - The authenticated usernames, runtime class names, and namespaces to exempt (list maxitems:1)
- labels {[key: string]: string}
- Labels of the resource (map)
- name string
- The name of the pod security admission configuration template (string)
- defaults
Pod
Security Admission Configuration Template Defaults Args - The default level labels and version labels to be applied when labels for a mode is not set (list maxitems:1)
- annotations Mapping[str, str]
- Annotations of the resource (map)
- description str
- The description of the pod security admission configuration template (string)
- exemptions
Pod
Security Admission Configuration Template Exemptions Args - The authenticated usernames, runtime class names, and namespaces to exempt (list maxitems:1)
- labels Mapping[str, str]
- Labels of the resource (map)
- name str
- The name of the pod security admission configuration template (string)
- defaults Property Map
- The default level labels and version labels to be applied when labels for a mode is not set (list maxitems:1)
- annotations Map<String>
- Annotations of the resource (map)
- description String
- The description of the pod security admission configuration template (string)
- exemptions Property Map
- The authenticated usernames, runtime class names, and namespaces to exempt (list maxitems:1)
- labels Map<String>
- Labels of the resource (map)
- name String
- The name of the pod security admission configuration template (string)
Outputs
All input properties are implicitly available as output properties. Additionally, the PodSecurityAdmissionConfigurationTemplate resource produces the following output properties:
- Id string
- The provider-assigned unique ID for this managed resource.
- Id string
- The provider-assigned unique ID for this managed resource.
- id String
- The provider-assigned unique ID for this managed resource.
- id string
- The provider-assigned unique ID for this managed resource.
- id str
- The provider-assigned unique ID for this managed resource.
- id String
- The provider-assigned unique ID for this managed resource.
Look up Existing PodSecurityAdmissionConfigurationTemplate Resource
Get an existing PodSecurityAdmissionConfigurationTemplate resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.
public static get(name: string, id: Input<ID>, state?: PodSecurityAdmissionConfigurationTemplateState, opts?: CustomResourceOptions): PodSecurityAdmissionConfigurationTemplate@staticmethod
def get(resource_name: str,
id: str,
opts: Optional[ResourceOptions] = None,
annotations: Optional[Mapping[str, str]] = None,
defaults: Optional[PodSecurityAdmissionConfigurationTemplateDefaultsArgs] = None,
description: Optional[str] = None,
exemptions: Optional[PodSecurityAdmissionConfigurationTemplateExemptionsArgs] = None,
labels: Optional[Mapping[str, str]] = None,
name: Optional[str] = None) -> PodSecurityAdmissionConfigurationTemplatefunc GetPodSecurityAdmissionConfigurationTemplate(ctx *Context, name string, id IDInput, state *PodSecurityAdmissionConfigurationTemplateState, opts ...ResourceOption) (*PodSecurityAdmissionConfigurationTemplate, error)public static PodSecurityAdmissionConfigurationTemplate Get(string name, Input<string> id, PodSecurityAdmissionConfigurationTemplateState? state, CustomResourceOptions? opts = null)public static PodSecurityAdmissionConfigurationTemplate get(String name, Output<String> id, PodSecurityAdmissionConfigurationTemplateState state, CustomResourceOptions options)resources: _: type: rancher2:PodSecurityAdmissionConfigurationTemplate get: id: ${id}- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- resource_name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- Annotations Dictionary<string, string>
- Annotations of the resource (map)
- Defaults
Pod
Security Admission Configuration Template Defaults - The default level labels and version labels to be applied when labels for a mode is not set (list maxitems:1)
- Description string
- The description of the pod security admission configuration template (string)
- Exemptions
Pod
Security Admission Configuration Template Exemptions - The authenticated usernames, runtime class names, and namespaces to exempt (list maxitems:1)
- Labels Dictionary<string, string>
- Labels of the resource (map)
- Name string
- The name of the pod security admission configuration template (string)
- Annotations map[string]string
- Annotations of the resource (map)
- Defaults
Pod
Security Admission Configuration Template Defaults Args - The default level labels and version labels to be applied when labels for a mode is not set (list maxitems:1)
- Description string
- The description of the pod security admission configuration template (string)
- Exemptions
Pod
Security Admission Configuration Template Exemptions Args - The authenticated usernames, runtime class names, and namespaces to exempt (list maxitems:1)
- Labels map[string]string
- Labels of the resource (map)
- Name string
- The name of the pod security admission configuration template (string)
- annotations Map<String,String>
- Annotations of the resource (map)
- defaults
Pod
Security Admission Configuration Template Defaults - The default level labels and version labels to be applied when labels for a mode is not set (list maxitems:1)
- description String
- The description of the pod security admission configuration template (string)
- exemptions
Pod
Security Admission Configuration Template Exemptions - The authenticated usernames, runtime class names, and namespaces to exempt (list maxitems:1)
- labels Map<String,String>
- Labels of the resource (map)
- name String
- The name of the pod security admission configuration template (string)
- annotations {[key: string]: string}
- Annotations of the resource (map)
- defaults
Pod
Security Admission Configuration Template Defaults - The default level labels and version labels to be applied when labels for a mode is not set (list maxitems:1)
- description string
- The description of the pod security admission configuration template (string)
- exemptions
Pod
Security Admission Configuration Template Exemptions - The authenticated usernames, runtime class names, and namespaces to exempt (list maxitems:1)
- labels {[key: string]: string}
- Labels of the resource (map)
- name string
- The name of the pod security admission configuration template (string)
- annotations Mapping[str, str]
- Annotations of the resource (map)
- defaults
Pod
Security Admission Configuration Template Defaults Args - The default level labels and version labels to be applied when labels for a mode is not set (list maxitems:1)
- description str
- The description of the pod security admission configuration template (string)
- exemptions
Pod
Security Admission Configuration Template Exemptions Args - The authenticated usernames, runtime class names, and namespaces to exempt (list maxitems:1)
- labels Mapping[str, str]
- Labels of the resource (map)
- name str
- The name of the pod security admission configuration template (string)
- annotations Map<String>
- Annotations of the resource (map)
- defaults Property Map
- The default level labels and version labels to be applied when labels for a mode is not set (list maxitems:1)
- description String
- The description of the pod security admission configuration template (string)
- exemptions Property Map
- The authenticated usernames, runtime class names, and namespaces to exempt (list maxitems:1)
- labels Map<String>
- Labels of the resource (map)
- name String
- The name of the pod security admission configuration template (string)
Supporting Types
PodSecurityAdmissionConfigurationTemplateDefaults, PodSecurityAdmissionConfigurationTemplateDefaultsArgs
- Audit string
- Pod Security Admission Configuration audit. This audits a pod in violation of privileged, baseline, or restricted policy (default: privileged)
- Audit
Version string - Pod Security Admission Configuration audit version (default: latest)
- Enforce string
- Pod Security Admission Configuration enforce. This rejects a pod in violation of privileged, baseline, or restricted policy (default: privileged)
- Enforce
Version string - Pod Security Admission Configuration enforce version (default: latest)
- Warn string
- Pod Security Admission Configuration warn. This warns the user about a pod in violation of privileged, baseline, or restricted policy (default: privileged)
- Warn
Version string - Pod Security Admission Configuration warn version (default: latest)
- Audit string
- Pod Security Admission Configuration audit. This audits a pod in violation of privileged, baseline, or restricted policy (default: privileged)
- Audit
Version string - Pod Security Admission Configuration audit version (default: latest)
- Enforce string
- Pod Security Admission Configuration enforce. This rejects a pod in violation of privileged, baseline, or restricted policy (default: privileged)
- Enforce
Version string - Pod Security Admission Configuration enforce version (default: latest)
- Warn string
- Pod Security Admission Configuration warn. This warns the user about a pod in violation of privileged, baseline, or restricted policy (default: privileged)
- Warn
Version string - Pod Security Admission Configuration warn version (default: latest)
- audit String
- Pod Security Admission Configuration audit. This audits a pod in violation of privileged, baseline, or restricted policy (default: privileged)
- audit
Version String - Pod Security Admission Configuration audit version (default: latest)
- enforce String
- Pod Security Admission Configuration enforce. This rejects a pod in violation of privileged, baseline, or restricted policy (default: privileged)
- enforce
Version String - Pod Security Admission Configuration enforce version (default: latest)
- warn String
- Pod Security Admission Configuration warn. This warns the user about a pod in violation of privileged, baseline, or restricted policy (default: privileged)
- warn
Version String - Pod Security Admission Configuration warn version (default: latest)
- audit string
- Pod Security Admission Configuration audit. This audits a pod in violation of privileged, baseline, or restricted policy (default: privileged)
- audit
Version string - Pod Security Admission Configuration audit version (default: latest)
- enforce string
- Pod Security Admission Configuration enforce. This rejects a pod in violation of privileged, baseline, or restricted policy (default: privileged)
- enforce
Version string - Pod Security Admission Configuration enforce version (default: latest)
- warn string
- Pod Security Admission Configuration warn. This warns the user about a pod in violation of privileged, baseline, or restricted policy (default: privileged)
- warn
Version string - Pod Security Admission Configuration warn version (default: latest)
- audit str
- Pod Security Admission Configuration audit. This audits a pod in violation of privileged, baseline, or restricted policy (default: privileged)
- audit_
version str - Pod Security Admission Configuration audit version (default: latest)
- enforce str
- Pod Security Admission Configuration enforce. This rejects a pod in violation of privileged, baseline, or restricted policy (default: privileged)
- enforce_
version str - Pod Security Admission Configuration enforce version (default: latest)
- warn str
- Pod Security Admission Configuration warn. This warns the user about a pod in violation of privileged, baseline, or restricted policy (default: privileged)
- warn_
version str - Pod Security Admission Configuration warn version (default: latest)
- audit String
- Pod Security Admission Configuration audit. This audits a pod in violation of privileged, baseline, or restricted policy (default: privileged)
- audit
Version String - Pod Security Admission Configuration audit version (default: latest)
- enforce String
- Pod Security Admission Configuration enforce. This rejects a pod in violation of privileged, baseline, or restricted policy (default: privileged)
- enforce
Version String - Pod Security Admission Configuration enforce version (default: latest)
- warn String
- Pod Security Admission Configuration warn. This warns the user about a pod in violation of privileged, baseline, or restricted policy (default: privileged)
- warn
Version String - Pod Security Admission Configuration warn version (default: latest)
PodSecurityAdmissionConfigurationTemplateExemptions, PodSecurityAdmissionConfigurationTemplateExemptionsArgs
- Namespaces List<string>
- Pod Security Admission Configuration namespace exemptions
- Runtime
Classes List<string> - Pod Security Admission Configuration runtime class exemptions
- Usernames List<string>
- Pod Security Admission Configuration username exemptions
- Namespaces []string
- Pod Security Admission Configuration namespace exemptions
- Runtime
Classes []string - Pod Security Admission Configuration runtime class exemptions
- Usernames []string
- Pod Security Admission Configuration username exemptions
- namespaces List<String>
- Pod Security Admission Configuration namespace exemptions
- runtime
Classes List<String> - Pod Security Admission Configuration runtime class exemptions
- usernames List<String>
- Pod Security Admission Configuration username exemptions
- namespaces string[]
- Pod Security Admission Configuration namespace exemptions
- runtime
Classes string[] - Pod Security Admission Configuration runtime class exemptions
- usernames string[]
- Pod Security Admission Configuration username exemptions
- namespaces Sequence[str]
- Pod Security Admission Configuration namespace exemptions
- runtime_
classes Sequence[str] - Pod Security Admission Configuration runtime class exemptions
- usernames Sequence[str]
- Pod Security Admission Configuration username exemptions
- namespaces List<String>
- Pod Security Admission Configuration namespace exemptions
- runtime
Classes List<String> - Pod Security Admission Configuration runtime class exemptions
- usernames List<String>
- Pod Security Admission Configuration username exemptions
Import
Pod Security Admission Configration Templates can be imported using its ID:
$ pulumi import rancher2:index/podSecurityAdmissionConfigurationTemplate:PodSecurityAdmissionConfigurationTemplate foo <resource_id>
To learn more about importing existing cloud resources, see Importing resources.
Package Details
- Repository
- Rancher2 pulumi/pulumi-rancher2
- License
- Apache-2.0
- Notes
- This Pulumi package is based on the
rancher2Terraform Provider.