github.com/pulumi/pulumi-aws/sdk/v6@v6.32.0/go/aws/ssoadmin/permissionsBoundaryAttachment.go

// Code generated by the Pulumi Terraform Bridge (tfgen) Tool DO NOT EDIT.
// *** WARNING: Do not edit by hand unless you're certain you know what you are doing! ***

package ssoadmin

import (
	"context"
	"reflect"

	"errors"
	"github.com/pulumi/pulumi-aws/sdk/v6/go/aws/internal"
	"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)

// Attaches a permissions boundary policy to a Single Sign-On (SSO) Permission Set resource.
//
// > **NOTE:** A permission set can have at most one permissions boundary attached; using more than one `ssoadmin.PermissionsBoundaryAttachment` references the same permission set will show a permanent difference.
//
// ## Example Usage
//
// ### Attaching an AWS-managed policy
//
// <!--Start PulumiCodeChooser -->
// ```go
// package main
//
// import (
//
//	"github.com/pulumi/pulumi-aws/sdk/v6/go/aws/ssoadmin"
//	"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
//
// )
//
//	func main() {
//		pulumi.Run(func(ctx *pulumi.Context) error {
//			_, err := ssoadmin.NewPermissionsBoundaryAttachment(ctx, "example", &ssoadmin.PermissionsBoundaryAttachmentArgs{
//				InstanceArn:      pulumi.Any(exampleAwsSsoadminPermissionSet.InstanceArn),
//				PermissionSetArn: pulumi.Any(exampleAwsSsoadminPermissionSet.Arn),
//				PermissionsBoundary: &ssoadmin.PermissionsBoundaryAttachmentPermissionsBoundaryArgs{
//					ManagedPolicyArn: pulumi.String("arn:aws:iam::aws:policy/ReadOnlyAccess"),
//				},
//			})
//			if err != nil {
//				return err
//			}
//			return nil
//		})
//	}
//
// ```
// <!--End PulumiCodeChooser -->
//
// ## Import
//
// Using `pulumi import`, import SSO Admin Permissions Boundary Attachments using the `permission_set_arn` and `instance_arn`, separated by a comma (`,`). For example:
//
// ```sh
// $ pulumi import aws:ssoadmin/permissionsBoundaryAttachment:PermissionsBoundaryAttachment example arn:aws:sso:::permissionSet/ssoins-2938j0x8920sbj72/ps-80383020jr9302rk,arn:aws:sso:::instance/ssoins-2938j0x8920sbj72
// ```
type PermissionsBoundaryAttachment struct {
	pulumi.CustomResourceState

	// The Amazon Resource Name (ARN) of the SSO Instance under which the operation will be executed.
	InstanceArn pulumi.StringOutput `pulumi:"instanceArn"`
	// The Amazon Resource Name (ARN) of the Permission Set.
	PermissionSetArn pulumi.StringOutput `pulumi:"permissionSetArn"`
	// The permissions boundary policy. See below.
	PermissionsBoundary PermissionsBoundaryAttachmentPermissionsBoundaryOutput `pulumi:"permissionsBoundary"`
}

// NewPermissionsBoundaryAttachment registers a new resource with the given unique name, arguments, and options.
func NewPermissionsBoundaryAttachment(ctx *pulumi.Context,
	name string, args *PermissionsBoundaryAttachmentArgs, opts ...pulumi.ResourceOption) (*PermissionsBoundaryAttachment, error) {
	if args == nil {
		return nil, errors.New("missing one or more required arguments")
	}

	if args.InstanceArn == nil {
		return nil, errors.New("invalid value for required argument 'InstanceArn'")
	}
	if args.PermissionSetArn == nil {
		return nil, errors.New("invalid value for required argument 'PermissionSetArn'")
	}
	if args.PermissionsBoundary == nil {
		return nil, errors.New("invalid value for required argument 'PermissionsBoundary'")
	}
	opts = internal.PkgResourceDefaultOpts(opts)
	var resource PermissionsBoundaryAttachment
	err := ctx.RegisterResource("aws:ssoadmin/permissionsBoundaryAttachment:PermissionsBoundaryAttachment", name, args, &resource, opts...)
	if err != nil {
		return nil, err
	}
	return &resource, nil
}

// GetPermissionsBoundaryAttachment gets an existing PermissionsBoundaryAttachment resource's state with the given name, ID, and optional
// state properties that are used to uniquely qualify the lookup (nil if not required).
func GetPermissionsBoundaryAttachment(ctx *pulumi.Context,
	name string, id pulumi.IDInput, state *PermissionsBoundaryAttachmentState, opts ...pulumi.ResourceOption) (*PermissionsBoundaryAttachment, error) {
	var resource PermissionsBoundaryAttachment
	err := ctx.ReadResource("aws:ssoadmin/permissionsBoundaryAttachment:PermissionsBoundaryAttachment", name, id, state, &resource, opts...)
	if err != nil {
		return nil, err
	}
	return &resource, nil
}

// Input properties used for looking up and filtering PermissionsBoundaryAttachment resources.
type permissionsBoundaryAttachmentState struct {
	// The Amazon Resource Name (ARN) of the SSO Instance under which the operation will be executed.
	InstanceArn *string `pulumi:"instanceArn"`
	// The Amazon Resource Name (ARN) of the Permission Set.
	PermissionSetArn *string `pulumi:"permissionSetArn"`
	// The permissions boundary policy. See below.
	PermissionsBoundary *PermissionsBoundaryAttachmentPermissionsBoundary `pulumi:"permissionsBoundary"`
}

type PermissionsBoundaryAttachmentState struct {
	// The Amazon Resource Name (ARN) of the SSO Instance under which the operation will be executed.
	InstanceArn pulumi.StringPtrInput
	// The Amazon Resource Name (ARN) of the Permission Set.
	PermissionSetArn pulumi.StringPtrInput
	// The permissions boundary policy. See below.
	PermissionsBoundary PermissionsBoundaryAttachmentPermissionsBoundaryPtrInput
}

func (PermissionsBoundaryAttachmentState) ElementType() reflect.Type {
	return reflect.TypeOf((*permissionsBoundaryAttachmentState)(nil)).Elem()
}

type permissionsBoundaryAttachmentArgs struct {
	// The Amazon Resource Name (ARN) of the SSO Instance under which the operation will be executed.
	InstanceArn string `pulumi:"instanceArn"`
	// The Amazon Resource Name (ARN) of the Permission Set.
	PermissionSetArn string `pulumi:"permissionSetArn"`
	// The permissions boundary policy. See below.
	PermissionsBoundary PermissionsBoundaryAttachmentPermissionsBoundary `pulumi:"permissionsBoundary"`
}

// The set of arguments for constructing a PermissionsBoundaryAttachment resource.
type PermissionsBoundaryAttachmentArgs struct {
	// The Amazon Resource Name (ARN) of the SSO Instance under which the operation will be executed.
	InstanceArn pulumi.StringInput
	// The Amazon Resource Name (ARN) of the Permission Set.
	PermissionSetArn pulumi.StringInput
	// The permissions boundary policy. See below.
	PermissionsBoundary PermissionsBoundaryAttachmentPermissionsBoundaryInput
}

func (PermissionsBoundaryAttachmentArgs) ElementType() reflect.Type {
	return reflect.TypeOf((*permissionsBoundaryAttachmentArgs)(nil)).Elem()
}

type PermissionsBoundaryAttachmentInput interface {
	pulumi.Input

	ToPermissionsBoundaryAttachmentOutput() PermissionsBoundaryAttachmentOutput
	ToPermissionsBoundaryAttachmentOutputWithContext(ctx context.Context) PermissionsBoundaryAttachmentOutput
}

func (*PermissionsBoundaryAttachment) ElementType() reflect.Type {
	return reflect.TypeOf((**PermissionsBoundaryAttachment)(nil)).Elem()
}

func (i *PermissionsBoundaryAttachment) ToPermissionsBoundaryAttachmentOutput() PermissionsBoundaryAttachmentOutput {
	return i.ToPermissionsBoundaryAttachmentOutputWithContext(context.Background())
}

func (i *PermissionsBoundaryAttachment) ToPermissionsBoundaryAttachmentOutputWithContext(ctx context.Context) PermissionsBoundaryAttachmentOutput {
	return pulumi.ToOutputWithContext(ctx, i).(PermissionsBoundaryAttachmentOutput)
}

// PermissionsBoundaryAttachmentArrayInput is an input type that accepts PermissionsBoundaryAttachmentArray and PermissionsBoundaryAttachmentArrayOutput values.
// You can construct a concrete instance of `PermissionsBoundaryAttachmentArrayInput` via:
//
//	PermissionsBoundaryAttachmentArray{ PermissionsBoundaryAttachmentArgs{...} }
type PermissionsBoundaryAttachmentArrayInput interface {
	pulumi.Input

	ToPermissionsBoundaryAttachmentArrayOutput() PermissionsBoundaryAttachmentArrayOutput
	ToPermissionsBoundaryAttachmentArrayOutputWithContext(context.Context) PermissionsBoundaryAttachmentArrayOutput
}

type PermissionsBoundaryAttachmentArray []PermissionsBoundaryAttachmentInput

func (PermissionsBoundaryAttachmentArray) ElementType() reflect.Type {
	return reflect.TypeOf((*[]*PermissionsBoundaryAttachment)(nil)).Elem()
}

func (i PermissionsBoundaryAttachmentArray) ToPermissionsBoundaryAttachmentArrayOutput() PermissionsBoundaryAttachmentArrayOutput {
	return i.ToPermissionsBoundaryAttachmentArrayOutputWithContext(context.Background())
}

func (i PermissionsBoundaryAttachmentArray) ToPermissionsBoundaryAttachmentArrayOutputWithContext(ctx context.Context) PermissionsBoundaryAttachmentArrayOutput {
	return pulumi.ToOutputWithContext(ctx, i).(PermissionsBoundaryAttachmentArrayOutput)
}

// PermissionsBoundaryAttachmentMapInput is an input type that accepts PermissionsBoundaryAttachmentMap and PermissionsBoundaryAttachmentMapOutput values.
// You can construct a concrete instance of `PermissionsBoundaryAttachmentMapInput` via:
//
//	PermissionsBoundaryAttachmentMap{ "key": PermissionsBoundaryAttachmentArgs{...} }
type PermissionsBoundaryAttachmentMapInput interface {
	pulumi.Input

	ToPermissionsBoundaryAttachmentMapOutput() PermissionsBoundaryAttachmentMapOutput
	ToPermissionsBoundaryAttachmentMapOutputWithContext(context.Context) PermissionsBoundaryAttachmentMapOutput
}

type PermissionsBoundaryAttachmentMap map[string]PermissionsBoundaryAttachmentInput

func (PermissionsBoundaryAttachmentMap) ElementType() reflect.Type {
	return reflect.TypeOf((*map[string]*PermissionsBoundaryAttachment)(nil)).Elem()
}

func (i PermissionsBoundaryAttachmentMap) ToPermissionsBoundaryAttachmentMapOutput() PermissionsBoundaryAttachmentMapOutput {
	return i.ToPermissionsBoundaryAttachmentMapOutputWithContext(context.Background())
}

func (i PermissionsBoundaryAttachmentMap) ToPermissionsBoundaryAttachmentMapOutputWithContext(ctx context.Context) PermissionsBoundaryAttachmentMapOutput {
	return pulumi.ToOutputWithContext(ctx, i).(PermissionsBoundaryAttachmentMapOutput)
}

type PermissionsBoundaryAttachmentOutput struct{ *pulumi.OutputState }

func (PermissionsBoundaryAttachmentOutput) ElementType() reflect.Type {
	return reflect.TypeOf((**PermissionsBoundaryAttachment)(nil)).Elem()
}

func (o PermissionsBoundaryAttachmentOutput) ToPermissionsBoundaryAttachmentOutput() PermissionsBoundaryAttachmentOutput {
	return o
}

func (o PermissionsBoundaryAttachmentOutput) ToPermissionsBoundaryAttachmentOutputWithContext(ctx context.Context) PermissionsBoundaryAttachmentOutput {
	return o
}

// The Amazon Resource Name (ARN) of the SSO Instance under which the operation will be executed.
func (o PermissionsBoundaryAttachmentOutput) InstanceArn() pulumi.StringOutput {
	return o.ApplyT(func(v *PermissionsBoundaryAttachment) pulumi.StringOutput { return v.InstanceArn }).(pulumi.StringOutput)
}

// The Amazon Resource Name (ARN) of the Permission Set.
func (o PermissionsBoundaryAttachmentOutput) PermissionSetArn() pulumi.StringOutput {
	return o.ApplyT(func(v *PermissionsBoundaryAttachment) pulumi.StringOutput { return v.PermissionSetArn }).(pulumi.StringOutput)
}

// The permissions boundary policy. See below.
func (o PermissionsBoundaryAttachmentOutput) PermissionsBoundary() PermissionsBoundaryAttachmentPermissionsBoundaryOutput {
	return o.ApplyT(func(v *PermissionsBoundaryAttachment) PermissionsBoundaryAttachmentPermissionsBoundaryOutput {
		return v.PermissionsBoundary
	}).(PermissionsBoundaryAttachmentPermissionsBoundaryOutput)
}

type PermissionsBoundaryAttachmentArrayOutput struct{ *pulumi.OutputState }

func (PermissionsBoundaryAttachmentArrayOutput) ElementType() reflect.Type {
	return reflect.TypeOf((*[]*PermissionsBoundaryAttachment)(nil)).Elem()
}

func (o PermissionsBoundaryAttachmentArrayOutput) ToPermissionsBoundaryAttachmentArrayOutput() PermissionsBoundaryAttachmentArrayOutput {
	return o
}

func (o PermissionsBoundaryAttachmentArrayOutput) ToPermissionsBoundaryAttachmentArrayOutputWithContext(ctx context.Context) PermissionsBoundaryAttachmentArrayOutput {
	return o
}

func (o PermissionsBoundaryAttachmentArrayOutput) Index(i pulumi.IntInput) PermissionsBoundaryAttachmentOutput {
	return pulumi.All(o, i).ApplyT(func(vs []interface{}) *PermissionsBoundaryAttachment {
		return vs[0].([]*PermissionsBoundaryAttachment)[vs[1].(int)]
	}).(PermissionsBoundaryAttachmentOutput)
}

type PermissionsBoundaryAttachmentMapOutput struct{ *pulumi.OutputState }

func (PermissionsBoundaryAttachmentMapOutput) ElementType() reflect.Type {
	return reflect.TypeOf((*map[string]*PermissionsBoundaryAttachment)(nil)).Elem()
}

func (o PermissionsBoundaryAttachmentMapOutput) ToPermissionsBoundaryAttachmentMapOutput() PermissionsBoundaryAttachmentMapOutput {
	return o
}

func (o PermissionsBoundaryAttachmentMapOutput) ToPermissionsBoundaryAttachmentMapOutputWithContext(ctx context.Context) PermissionsBoundaryAttachmentMapOutput {
	return o
}

func (o PermissionsBoundaryAttachmentMapOutput) MapIndex(k pulumi.StringInput) PermissionsBoundaryAttachmentOutput {
	return pulumi.All(o, k).ApplyT(func(vs []interface{}) *PermissionsBoundaryAttachment {
		return vs[0].(map[string]*PermissionsBoundaryAttachment)[vs[1].(string)]
	}).(PermissionsBoundaryAttachmentOutput)
}

func init() {
	pulumi.RegisterInputType(reflect.TypeOf((*PermissionsBoundaryAttachmentInput)(nil)).Elem(), &PermissionsBoundaryAttachment{})
	pulumi.RegisterInputType(reflect.TypeOf((*PermissionsBoundaryAttachmentArrayInput)(nil)).Elem(), PermissionsBoundaryAttachmentArray{})
	pulumi.RegisterInputType(reflect.TypeOf((*PermissionsBoundaryAttachmentMapInput)(nil)).Elem(), PermissionsBoundaryAttachmentMap{})
	pulumi.RegisterOutputType(PermissionsBoundaryAttachmentOutput{})
	pulumi.RegisterOutputType(PermissionsBoundaryAttachmentArrayOutput{})
	pulumi.RegisterOutputType(PermissionsBoundaryAttachmentMapOutput{})
}