Class PolicyState.Builder
- java.lang.Object
-
- com.pulumi.gcp.binaryauthorization.inputs.PolicyState.Builder
-
- Enclosing class:
- PolicyState
public static final class PolicyState.Builder extends java.lang.Object
-
-
Constructor Summary
Constructors Constructor Description Builder()Builder(PolicyState defaults)
-
Method Summary
-
-
-
Constructor Detail
-
Builder
public Builder()
-
Builder
public Builder(PolicyState defaults)
-
-
Method Detail
-
admissionWhitelistPatterns
public PolicyState.Builder admissionWhitelistPatterns(@Nullable com.pulumi.core.Output<java.util.List<PolicyAdmissionWhitelistPatternArgs>> admissionWhitelistPatterns)
- Parameters:
admissionWhitelistPatterns- A whitelist of image patterns to exclude from admission rules. If an image's name matches a whitelist pattern, the image's admission requests will always be permitted regardless of your admission rules. Structure is documented below.- Returns:
- builder
-
admissionWhitelistPatterns
public PolicyState.Builder admissionWhitelistPatterns(java.util.List<PolicyAdmissionWhitelistPatternArgs> admissionWhitelistPatterns)
- Parameters:
admissionWhitelistPatterns- A whitelist of image patterns to exclude from admission rules. If an image's name matches a whitelist pattern, the image's admission requests will always be permitted regardless of your admission rules. Structure is documented below.- Returns:
- builder
-
admissionWhitelistPatterns
public PolicyState.Builder admissionWhitelistPatterns(PolicyAdmissionWhitelistPatternArgs... admissionWhitelistPatterns)
- Parameters:
admissionWhitelistPatterns- A whitelist of image patterns to exclude from admission rules. If an image's name matches a whitelist pattern, the image's admission requests will always be permitted regardless of your admission rules. Structure is documented below.- Returns:
- builder
-
clusterAdmissionRules
public PolicyState.Builder clusterAdmissionRules(@Nullable com.pulumi.core.Output<java.util.List<PolicyClusterAdmissionRuleArgs>> clusterAdmissionRules)
- Parameters:
clusterAdmissionRules- Per-cluster admission rules. An admission rule specifies either that all container images used in a pod creation request must be attested to by one or more attestors, that all pod creations will be allowed, or that all pod creations will be denied. There can be at most one admission rule per cluster spec. Identifier format: `{{location}}.{{clusterId}}`. A location is either a compute zone (e.g. `us-central1-a`) or a region (e.g. `us-central1`). Structure is documented below.- Returns:
- builder
-
clusterAdmissionRules
public PolicyState.Builder clusterAdmissionRules(java.util.List<PolicyClusterAdmissionRuleArgs> clusterAdmissionRules)
- Parameters:
clusterAdmissionRules- Per-cluster admission rules. An admission rule specifies either that all container images used in a pod creation request must be attested to by one or more attestors, that all pod creations will be allowed, or that all pod creations will be denied. There can be at most one admission rule per cluster spec. Identifier format: `{{location}}.{{clusterId}}`. A location is either a compute zone (e.g. `us-central1-a`) or a region (e.g. `us-central1`). Structure is documented below.- Returns:
- builder
-
clusterAdmissionRules
public PolicyState.Builder clusterAdmissionRules(PolicyClusterAdmissionRuleArgs... clusterAdmissionRules)
- Parameters:
clusterAdmissionRules- Per-cluster admission rules. An admission rule specifies either that all container images used in a pod creation request must be attested to by one or more attestors, that all pod creations will be allowed, or that all pod creations will be denied. There can be at most one admission rule per cluster spec. Identifier format: `{{location}}.{{clusterId}}`. A location is either a compute zone (e.g. `us-central1-a`) or a region (e.g. `us-central1`). Structure is documented below.- Returns:
- builder
-
defaultAdmissionRule
public PolicyState.Builder defaultAdmissionRule(@Nullable com.pulumi.core.Output<PolicyDefaultAdmissionRuleArgs> defaultAdmissionRule)
- Parameters:
defaultAdmissionRule- Default admission rule for a cluster without a per-cluster admission rule. Structure is documented below.- Returns:
- builder
-
defaultAdmissionRule
public PolicyState.Builder defaultAdmissionRule(PolicyDefaultAdmissionRuleArgs defaultAdmissionRule)
- Parameters:
defaultAdmissionRule- Default admission rule for a cluster without a per-cluster admission rule. Structure is documented below.- Returns:
- builder
-
description
public PolicyState.Builder description(@Nullable com.pulumi.core.Output<java.lang.String> description)
- Parameters:
description- A descriptive comment.- Returns:
- builder
-
description
public PolicyState.Builder description(java.lang.String description)
- Parameters:
description- A descriptive comment.- Returns:
- builder
-
globalPolicyEvaluationMode
public PolicyState.Builder globalPolicyEvaluationMode(@Nullable com.pulumi.core.Output<java.lang.String> globalPolicyEvaluationMode)
- Parameters:
globalPolicyEvaluationMode- Controls the evaluation of a Google-maintained global admission policy for common system-level images. Images not covered by the global policy will be subject to the project admission policy. Possible values are: `ENABLE`, `DISABLE`.- Returns:
- builder
-
globalPolicyEvaluationMode
public PolicyState.Builder globalPolicyEvaluationMode(java.lang.String globalPolicyEvaluationMode)
- Parameters:
globalPolicyEvaluationMode- Controls the evaluation of a Google-maintained global admission policy for common system-level images. Images not covered by the global policy will be subject to the project admission policy. Possible values are: `ENABLE`, `DISABLE`.- Returns:
- builder
-
project
public PolicyState.Builder project(@Nullable com.pulumi.core.Output<java.lang.String> project)
- Parameters:
project- The ID of the project in which the resource belongs. If it is not provided, the provider project is used.- Returns:
- builder
-
project
public PolicyState.Builder project(java.lang.String project)
- Parameters:
project- The ID of the project in which the resource belongs. If it is not provided, the provider project is used.- Returns:
- builder
-
build
public PolicyState build()
-
-