import * as pulumi from "@pulumi/pulumi"; /** * The zia_casb_dlp_rules resource manages CASB (Cloud Access Security Broker) DLP rules in the Zscaler Internet Access (ZIA) cloud service. CASB DLP rules define data loss prevention policies for SaaS applications to protect sensitive data from unauthorized access or sharing. * * ## Example Usage * ### CASB DLP Rule * * ```typescript * import * as zia from "@bdzscaler/pulumi-zia"; * * const example = new zia.CasbDlpRule("example", { * name: "Example CASB DLP Rule", * type: "CASB_DLP", * order: 1, * state: "ENABLED", * action: "BLOCK", * severity: "HIGH", * }); * ``` * * ## Import * * An existing CASB DLP Rule can be imported using its resource ID, e.g. * * ```sh * $ pulumi import zia:index:CasbDlpRule example 12345 * ``` */ export declare class CasbDlpRule extends pulumi.CustomResource { /** * Get an existing CasbDlpRule resource's state with the given name, ID, and optional extra * properties used to qualify the lookup. * * @param name The _unique_ name of the resulting resource. * @param id The _unique_ provider ID of the resource to lookup. * @param opts Optional settings to control the behavior of the CustomResource. */ static get(name: string, id: pulumi.Input, opts?: pulumi.CustomResourceOptions): CasbDlpRule; /** * Returns true if the given object is an instance of CasbDlpRule. This is designed to work even * when multiple copies of the Pulumi SDK have been loaded into the same process. */ static isInstance(obj: any): obj is CasbDlpRule; /** * Action taken when the rule is matched (e.g. `BLOCK`, `ALLOW`, `QUARANTINE`). */ readonly action: pulumi.Output; /** * The bucket owner identifier. */ readonly bucketOwner: pulumi.Output; /** * IDs of buckets. */ readonly buckets: pulumi.Output; /** * IDs of cloud application tenants. */ readonly cloudAppTenants: pulumi.Output; /** * Collaboration scope for the rule. */ readonly collaborationScope: pulumi.Output; /** * List of components for the rule. */ readonly components: pulumi.Output; /** * Content location scope for the rule. */ readonly contentLocation: pulumi.Output; /** * IDs of criteria-based domain profiles. */ readonly criteriaDomainProfiles: pulumi.Output; /** * IDs of departments for which the rule applies. */ readonly departments: pulumi.Output; /** * Additional information about the CASB DLP rule. */ readonly description: pulumi.Output; /** * IDs of DLP engines. */ readonly dlpEngines: pulumi.Output; /** * List of domains for the rule. */ readonly domains: pulumi.Output; /** * IDs of email recipient profiles. */ readonly emailRecipientProfiles: pulumi.Output; /** * IDs of entity groups. */ readonly entityGroups: pulumi.Output; /** * IDs of excluded domain profiles. */ readonly excludedDomainProfiles: pulumi.Output; /** * Email address of the external auditor. */ readonly externalAuditorEmail: pulumi.Output; /** * List of file types the rule applies to. */ readonly fileTypes: pulumi.Output; /** * IDs of groups for which the rule applies. */ readonly groups: pulumi.Output; /** * Whether to include criteria based on domain profiles. */ readonly includeCriteriaDomainProfile: pulumi.Output; /** * Whether to include email recipient profile criteria. */ readonly includeEmailRecipientProfile: pulumi.Output; /** * Whether to include entity groups in the rule criteria. */ readonly includeEntityGroups: pulumi.Output; /** * IDs of included domain profiles. */ readonly includedDomainProfiles: pulumi.Output; /** * IDs of labels associated with the rule. */ readonly labels: pulumi.Output; /** * The name of the CASB DLP rule. Must be unique. */ readonly name: pulumi.Output; /** * IDs of object types. */ readonly objectTypes: pulumi.Output; /** * The order of execution of the rule with respect to other CASB DLP rules. */ readonly order: pulumi.Output; /** * Quarantine location for matched content. */ readonly quarantineLocation: pulumi.Output; /** * Admin rank of the CASB DLP rule. Valid values: 0-7. Default: 7. */ readonly rank: pulumi.Output; /** * Notification recipient. */ readonly recipient: pulumi.Output; /** * The system-generated ID of the CASB DLP rule. */ readonly ruleId: pulumi.Output; /** * Severity level of the rule (e.g. `HIGH`, `MEDIUM`, `LOW`). */ readonly severity: pulumi.Output; /** * Rule state. Valid values: `ENABLED`, `DISABLED`. */ readonly state: pulumi.Output; /** * The rule type (e.g. `CASB_DLP`). */ readonly type: pulumi.Output; /** * IDs of users for which the rule applies. */ readonly users: pulumi.Output; /** * Whether to delete old versions when watermarking. */ readonly watermarkDeleteOldVersion: pulumi.Output; /** * Whether the rule applies without content inspection. */ readonly withoutContentInspection: pulumi.Output; /** * Create a CasbDlpRule resource with the given unique name, arguments, and options. * * @param name The _unique_ name of the resource. * @param args The arguments to use to populate this resource's properties. * @param opts A bag of options that control this resource's behavior. */ constructor(name: string, args: CasbDlpRuleArgs, opts?: pulumi.CustomResourceOptions); } /** * The set of arguments for constructing a CasbDlpRule resource. */ export interface CasbDlpRuleArgs { /** * Action taken when the rule is matched (e.g. `BLOCK`, `ALLOW`, `QUARANTINE`). */ action?: pulumi.Input; /** * The bucket owner identifier. */ bucketOwner?: pulumi.Input; /** * IDs of buckets. */ buckets?: pulumi.Input[] | undefined>; /** * IDs of cloud application tenants. */ cloudAppTenants?: pulumi.Input[] | undefined>; /** * Collaboration scope for the rule. */ collaborationScope?: pulumi.Input[] | undefined>; /** * List of components for the rule. */ components?: pulumi.Input[] | undefined>; /** * Content location scope for the rule. */ contentLocation?: pulumi.Input; /** * IDs of criteria-based domain profiles. */ criteriaDomainProfiles?: pulumi.Input[] | undefined>; /** * IDs of departments for which the rule applies. */ departments?: pulumi.Input[] | undefined>; /** * Additional information about the CASB DLP rule. */ description?: pulumi.Input; /** * IDs of DLP engines. */ dlpEngines?: pulumi.Input[] | undefined>; /** * List of domains for the rule. */ domains?: pulumi.Input[] | undefined>; /** * IDs of email recipient profiles. */ emailRecipientProfiles?: pulumi.Input[] | undefined>; /** * IDs of entity groups. */ entityGroups?: pulumi.Input[] | undefined>; /** * IDs of excluded domain profiles. */ excludedDomainProfiles?: pulumi.Input[] | undefined>; /** * Email address of the external auditor. */ externalAuditorEmail?: pulumi.Input; /** * List of file types the rule applies to. */ fileTypes?: pulumi.Input[] | undefined>; /** * IDs of groups for which the rule applies. */ groups?: pulumi.Input[] | undefined>; /** * Whether to include criteria based on domain profiles. */ includeCriteriaDomainProfile?: pulumi.Input; /** * Whether to include email recipient profile criteria. */ includeEmailRecipientProfile?: pulumi.Input; /** * Whether to include entity groups in the rule criteria. */ includeEntityGroups?: pulumi.Input; /** * IDs of included domain profiles. */ includedDomainProfiles?: pulumi.Input[] | undefined>; /** * IDs of labels associated with the rule. */ labels?: pulumi.Input[] | undefined>; /** * The name of the CASB DLP rule. Must be unique. */ name: pulumi.Input; /** * IDs of object types. */ objectTypes?: pulumi.Input[] | undefined>; /** * The order of execution of the rule with respect to other CASB DLP rules. */ order: pulumi.Input; /** * Quarantine location for matched content. */ quarantineLocation?: pulumi.Input; /** * Admin rank of the CASB DLP rule. Valid values: 0-7. Default: 7. */ rank?: pulumi.Input; /** * Notification recipient. */ recipient?: pulumi.Input; /** * Severity level of the rule (e.g. `HIGH`, `MEDIUM`, `LOW`). */ severity?: pulumi.Input; /** * Rule state. Valid values: `ENABLED`, `DISABLED`. */ state?: pulumi.Input; /** * The rule type (e.g. `CASB_DLP`). */ type: pulumi.Input; /** * IDs of users for which the rule applies. */ users?: pulumi.Input[] | undefined>; /** * Whether to delete old versions when watermarking. */ watermarkDeleteOldVersion?: pulumi.Input; /** * Whether the rule applies without content inspection. */ withoutContentInspection?: pulumi.Input; } //# sourceMappingURL=casbDlpRule.d.ts.map