sysdig 1.56.0, Apr 30 25

sysdig 1.56.0 published on Wednesday, Apr 30, 2025 by sysdiglabs

sysdig.getSecureTrustedCloudIdentity

Explore with Pulumi AI

sysdig 1.56.0 published on Wednesday, Apr 30, 2025 by sysdiglabs

Example Usage

import * as pulumi from "@pulumi/pulumi";
import * as sysdig from "@pulumi/sysdig";

const trustedIdentity = sysdig.getSecureTrustedCloudIdentity({
    cloudProvider: "aws",
});

import pulumi
import pulumi_sysdig as sysdig

trusted_identity = sysdig.get_secure_trusted_cloud_identity(cloud_provider="aws")

package main

import (
	"github.com/pulumi/pulumi-terraform-provider/sdks/go/sysdig/sysdig"
	"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)

func main() {
	pulumi.Run(func(ctx *pulumi.Context) error {
		_, err := sysdig.GetSecureTrustedCloudIdentity(ctx, &sysdig.GetSecureTrustedCloudIdentityArgs{
			CloudProvider: "aws",
		}, nil)
		if err != nil {
			return err
		}
		return nil
	})
}

using System.Collections.Generic;
using System.Linq;
using Pulumi;
using Sysdig = Pulumi.Sysdig;

return await Deployment.RunAsync(() => 
{
    var trustedIdentity = Sysdig.GetSecureTrustedCloudIdentity.Invoke(new()
    {
        CloudProvider = "aws",
    });

});

package generated_program;

import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.sysdig.SysdigFunctions;
import com.pulumi.sysdig.inputs.GetSecureTrustedCloudIdentityArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;

public class App {
    public static void main(String[] args) {
        Pulumi.run(App::stack);
    }

    public static void stack(Context ctx) {
        final var trustedIdentity = SysdigFunctions.getSecureTrustedCloudIdentity(GetSecureTrustedCloudIdentityArgs.builder()
            .cloudProvider("aws")
            .build());

    }
}

variables:
  trustedIdentity:
    fn::invoke:
      function: sysdig:getSecureTrustedCloudIdentity
      arguments:
        cloudProvider: aws

Using getSecureTrustedCloudIdentity

Two invocation forms are available. The direct form accepts plain arguments and either blocks until the result value is available, or returns a Promise-wrapped result. The output form accepts Input-wrapped arguments and returns an Output-wrapped result.

function getSecureTrustedCloudIdentity(args: GetSecureTrustedCloudIdentityArgs, opts?: InvokeOptions): Promise<GetSecureTrustedCloudIdentityResult>
function getSecureTrustedCloudIdentityOutput(args: GetSecureTrustedCloudIdentityOutputArgs, opts?: InvokeOptions): Output<GetSecureTrustedCloudIdentityResult>

def get_secure_trusted_cloud_identity(cloud_provider: Optional[str] = None,
                                      id: Optional[str] = None,
                                      timeouts: Optional[GetSecureTrustedCloudIdentityTimeouts] = None,
                                      opts: Optional[InvokeOptions] = None) -> GetSecureTrustedCloudIdentityResult
def get_secure_trusted_cloud_identity_output(cloud_provider: Optional[pulumi.Input[str]] = None,
                                      id: Optional[pulumi.Input[str]] = None,
                                      timeouts: Optional[pulumi.Input[GetSecureTrustedCloudIdentityTimeoutsArgs]] = None,
                                      opts: Optional[InvokeOptions] = None) -> Output[GetSecureTrustedCloudIdentityResult]

func GetSecureTrustedCloudIdentity(ctx *Context, args *GetSecureTrustedCloudIdentityArgs, opts ...InvokeOption) (*GetSecureTrustedCloudIdentityResult, error)
func GetSecureTrustedCloudIdentityOutput(ctx *Context, args *GetSecureTrustedCloudIdentityOutputArgs, opts ...InvokeOption) GetSecureTrustedCloudIdentityResultOutput

> Note: This function is named GetSecureTrustedCloudIdentity in the Go SDK.

public static class GetSecureTrustedCloudIdentity 
{
    public static Task<GetSecureTrustedCloudIdentityResult> InvokeAsync(GetSecureTrustedCloudIdentityArgs args, InvokeOptions? opts = null)
    public static Output<GetSecureTrustedCloudIdentityResult> Invoke(GetSecureTrustedCloudIdentityInvokeArgs args, InvokeOptions? opts = null)
}

public static CompletableFuture<GetSecureTrustedCloudIdentityResult> getSecureTrustedCloudIdentity(GetSecureTrustedCloudIdentityArgs args, InvokeOptions options)
public static Output<GetSecureTrustedCloudIdentityResult> getSecureTrustedCloudIdentity(GetSecureTrustedCloudIdentityArgs args, InvokeOptions options)

fn::invoke:
  function: sysdig:index/getSecureTrustedCloudIdentity:getSecureTrustedCloudIdentity
  arguments:
    # arguments dictionary

The following arguments are supported:

CloudProvider string: The cloud provider in which the trusted identity will be used. Currently supported providers are aws, gcp and azure
Id string
Timeouts GetSecureTrustedCloudIdentityTimeouts

CloudProvider string: The cloud provider in which the trusted identity will be used. Currently supported providers are aws, gcp and azure
Id string
Timeouts GetSecureTrustedCloudIdentityTimeouts

cloudProvider String: The cloud provider in which the trusted identity will be used. Currently supported providers are aws, gcp and azure
id String
timeouts GetSecureTrustedCloudIdentityTimeouts

cloudProvider string: The cloud provider in which the trusted identity will be used. Currently supported providers are aws, gcp and azure
id string
timeouts GetSecureTrustedCloudIdentityTimeouts

cloud_provider str: The cloud provider in which the trusted identity will be used. Currently supported providers are aws, gcp and azure
id str
timeouts GetSecureTrustedCloudIdentityTimeouts

cloudProvider String: The cloud provider in which the trusted identity will be used. Currently supported providers are aws, gcp and azure
id String
timeouts Property Map

getSecureTrustedCloudIdentity Result

The following output properties are available:

AwsAccountId string: If identity is an AWS ARN, this attribute contains the AWS Account ID to which the ARN belongs, otherwise it contains the empty string. cloud_provider must be equal to aws or gcp.
AwsGovAccountId string: If gov_identity is an AWS GOV IAM Role ARN, this attribute contains the AWS GOV Account ID to which the ARN belongs, otherwise it contains the empty string. Currently supported on aws.
AwsGovRoleName string: If gov_identity is a AWS GOV IAM Role ARN, this attribute contains the name of the GOV role, otherwise it contains the empty string. Currently supported on aws.
AwsRoleName string: If identity is a AWS IAM Role ARN, this attribute contains the name of the role, otherwise it contains the empty string. cloud_provider must be equal to aws or gcp.
AzureServicePrincipalId string: If identity contains credentials for an Azure Service Principal, this attribute contains the service principal's ID. cloud_provider must be equal to azure.
AzureTenantId string: If identity contains credentials for an Azure Service Principal, this attribute contains the service principal's Tenant ID. cloud_provider must be equal to azure.
CloudProvider string
GovIdentity string: Sysdig's identity for regulatory workloads (User/Role/etc) that should be used to create a trust relationship allowing Sysdig access to your regulated cloud account. Currently supported on aws.
Id string
Identity string: Sysdig's identity (User/Role/etc) that should be used to create a trust relationship allowing Sysdig access to your cloud account.
Timeouts GetSecureTrustedCloudIdentityTimeouts

AwsAccountId string: If identity is an AWS ARN, this attribute contains the AWS Account ID to which the ARN belongs, otherwise it contains the empty string. cloud_provider must be equal to aws or gcp.
AwsGovAccountId string: If gov_identity is an AWS GOV IAM Role ARN, this attribute contains the AWS GOV Account ID to which the ARN belongs, otherwise it contains the empty string. Currently supported on aws.
AwsGovRoleName string: If gov_identity is a AWS GOV IAM Role ARN, this attribute contains the name of the GOV role, otherwise it contains the empty string. Currently supported on aws.
AwsRoleName string: If identity is a AWS IAM Role ARN, this attribute contains the name of the role, otherwise it contains the empty string. cloud_provider must be equal to aws or gcp.
AzureServicePrincipalId string: If identity contains credentials for an Azure Service Principal, this attribute contains the service principal's ID. cloud_provider must be equal to azure.
AzureTenantId string: If identity contains credentials for an Azure Service Principal, this attribute contains the service principal's Tenant ID. cloud_provider must be equal to azure.
CloudProvider string
GovIdentity string: Sysdig's identity for regulatory workloads (User/Role/etc) that should be used to create a trust relationship allowing Sysdig access to your regulated cloud account. Currently supported on aws.
Id string
Identity string: Sysdig's identity (User/Role/etc) that should be used to create a trust relationship allowing Sysdig access to your cloud account.
Timeouts GetSecureTrustedCloudIdentityTimeouts

awsAccountId String: If identity is an AWS ARN, this attribute contains the AWS Account ID to which the ARN belongs, otherwise it contains the empty string. cloud_provider must be equal to aws or gcp.
awsGovAccountId String: If gov_identity is an AWS GOV IAM Role ARN, this attribute contains the AWS GOV Account ID to which the ARN belongs, otherwise it contains the empty string. Currently supported on aws.
awsGovRoleName String: If gov_identity is a AWS GOV IAM Role ARN, this attribute contains the name of the GOV role, otherwise it contains the empty string. Currently supported on aws.
awsRoleName String: If identity is a AWS IAM Role ARN, this attribute contains the name of the role, otherwise it contains the empty string. cloud_provider must be equal to aws or gcp.
azureServicePrincipalId String: If identity contains credentials for an Azure Service Principal, this attribute contains the service principal's ID. cloud_provider must be equal to azure.
azureTenantId String: If identity contains credentials for an Azure Service Principal, this attribute contains the service principal's Tenant ID. cloud_provider must be equal to azure.
cloudProvider String
govIdentity String: Sysdig's identity for regulatory workloads (User/Role/etc) that should be used to create a trust relationship allowing Sysdig access to your regulated cloud account. Currently supported on aws.
id String
identity String: Sysdig's identity (User/Role/etc) that should be used to create a trust relationship allowing Sysdig access to your cloud account.
timeouts GetSecureTrustedCloudIdentityTimeouts

awsAccountId string: If identity is an AWS ARN, this attribute contains the AWS Account ID to which the ARN belongs, otherwise it contains the empty string. cloud_provider must be equal to aws or gcp.
awsGovAccountId string: If gov_identity is an AWS GOV IAM Role ARN, this attribute contains the AWS GOV Account ID to which the ARN belongs, otherwise it contains the empty string. Currently supported on aws.
awsGovRoleName string: If gov_identity is a AWS GOV IAM Role ARN, this attribute contains the name of the GOV role, otherwise it contains the empty string. Currently supported on aws.
awsRoleName string: If identity is a AWS IAM Role ARN, this attribute contains the name of the role, otherwise it contains the empty string. cloud_provider must be equal to aws or gcp.
azureServicePrincipalId string: If identity contains credentials for an Azure Service Principal, this attribute contains the service principal's ID. cloud_provider must be equal to azure.
azureTenantId string: If identity contains credentials for an Azure Service Principal, this attribute contains the service principal's Tenant ID. cloud_provider must be equal to azure.
cloudProvider string
govIdentity string: Sysdig's identity for regulatory workloads (User/Role/etc) that should be used to create a trust relationship allowing Sysdig access to your regulated cloud account. Currently supported on aws.
id string
identity string: Sysdig's identity (User/Role/etc) that should be used to create a trust relationship allowing Sysdig access to your cloud account.
timeouts GetSecureTrustedCloudIdentityTimeouts

aws_account_id str: If identity is an AWS ARN, this attribute contains the AWS Account ID to which the ARN belongs, otherwise it contains the empty string. cloud_provider must be equal to aws or gcp.
aws_gov_account_id str: If gov_identity is an AWS GOV IAM Role ARN, this attribute contains the AWS GOV Account ID to which the ARN belongs, otherwise it contains the empty string. Currently supported on aws.
aws_gov_role_name str: If gov_identity is a AWS GOV IAM Role ARN, this attribute contains the name of the GOV role, otherwise it contains the empty string. Currently supported on aws.
aws_role_name str: If identity is a AWS IAM Role ARN, this attribute contains the name of the role, otherwise it contains the empty string. cloud_provider must be equal to aws or gcp.
azure_service_principal_id str: If identity contains credentials for an Azure Service Principal, this attribute contains the service principal's ID. cloud_provider must be equal to azure.
azure_tenant_id str: If identity contains credentials for an Azure Service Principal, this attribute contains the service principal's Tenant ID. cloud_provider must be equal to azure.
cloud_provider str
gov_identity str: Sysdig's identity for regulatory workloads (User/Role/etc) that should be used to create a trust relationship allowing Sysdig access to your regulated cloud account. Currently supported on aws.
id str
identity str: Sysdig's identity (User/Role/etc) that should be used to create a trust relationship allowing Sysdig access to your cloud account.
timeouts GetSecureTrustedCloudIdentityTimeouts

awsAccountId String: If identity is an AWS ARN, this attribute contains the AWS Account ID to which the ARN belongs, otherwise it contains the empty string. cloud_provider must be equal to aws or gcp.
awsGovAccountId String: If gov_identity is an AWS GOV IAM Role ARN, this attribute contains the AWS GOV Account ID to which the ARN belongs, otherwise it contains the empty string. Currently supported on aws.
awsGovRoleName String: If gov_identity is a AWS GOV IAM Role ARN, this attribute contains the name of the GOV role, otherwise it contains the empty string. Currently supported on aws.
awsRoleName String: If identity is a AWS IAM Role ARN, this attribute contains the name of the role, otherwise it contains the empty string. cloud_provider must be equal to aws or gcp.
azureServicePrincipalId String: If identity contains credentials for an Azure Service Principal, this attribute contains the service principal's ID. cloud_provider must be equal to azure.
azureTenantId String: If identity contains credentials for an Azure Service Principal, this attribute contains the service principal's Tenant ID. cloud_provider must be equal to azure.
cloudProvider String
govIdentity String: Sysdig's identity for regulatory workloads (User/Role/etc) that should be used to create a trust relationship allowing Sysdig access to your regulated cloud account. Currently supported on aws.
id String
identity String: Sysdig's identity (User/Role/etc) that should be used to create a trust relationship allowing Sysdig access to your cloud account.
timeouts Property Map

Supporting Types

GetSecureTrustedCloudIdentityTimeouts

Read string

Read string

read String

read string

read str

read String

Package Details

Repository: sysdig sysdiglabs/terraform-provider-sysdig
License
Notes: This Pulumi package is based on the sysdig Terraform Provider.

sysdig 1.56.0 published on Wednesday, Apr 30, 2025 by sysdiglabs

sysdiglabs/terraform-provider-sysdig

sysdig.getSecureTrustedCloudIdentity

On this page

On this page

Example Usage

Using getSecureTrustedCloudIdentity

getSecureTrustedCloudIdentity Result

Supporting Types

GetSecureTrustedCloudIdentityTimeouts

Package Details

On this page

On this page