import * as pulumi from "@pulumi/pulumi"; /** * The zia_dlp_web_rules resource manages DLP (Data Loss Prevention) web rules in the Zscaler Internet Access (ZIA) cloud service. DLP web rules define how sensitive data is handled in web traffic, allowing organizations to control and monitor the transfer of confidential information. * * For more information, see the [ZIA Data Loss Prevention documentation](https://help.zscaler.com/zia/data-loss-prevention). * * ## Example Usage * ### Basic DLP Web Rule * * ```typescript * import * as zia from "@bdzscaler/pulumi-zia"; * * const example = new zia.DlpWebRule("example", { * name: "Example DLP Web Rule", * description: "Block sensitive data uploads", * order: 1, * state: "ENABLED", * action: "BLOCK", * protocols: ["FTP_RULE", "HTTPS_RULE", "HTTP_RULE"], * fileTypes: ["ALL_OUTBOUND"], * zccNotificationsEnabled: true, * }); * ``` * * ## Import * * An existing DLP Web Rule can be imported using its resource ID, e.g. * * ```sh * $ pulumi import zia:index:DlpWebRule example 12345 * ``` */ export declare class DlpWebRule extends pulumi.CustomResource { /** * Get an existing DlpWebRule resource's state with the given name, ID, and optional extra * properties used to qualify the lookup. * * @param name The _unique_ name of the resulting resource. * @param id The _unique_ provider ID of the resource to lookup. * @param opts Optional settings to control the behavior of the CustomResource. */ static get(name: string, id: pulumi.Input, opts?: pulumi.CustomResourceOptions): DlpWebRule; /** * Returns true if the given object is an instance of DlpWebRule. This is designed to work even * when multiple copies of the Pulumi SDK have been loaded into the same process. */ static isInstance(obj: any): obj is DlpWebRule; /** * Action taken when the rule is matched. Valid values: `ALLOW`, `BLOCK`, `ICAP_RESPONSE`. */ readonly action: pulumi.Output; /** * List of cloud application names for which the rule is applied. */ readonly cloudApplications: pulumi.Output; /** * IDs of departments for which the rule must be applied. */ readonly departments: pulumi.Output; /** * Additional information about the DLP web rule. */ readonly description: pulumi.Output; /** * If true, DLP scanning is enabled for file downloads. */ readonly dlpDownloadScanEnabled: pulumi.Output; /** * The email address of an external auditor to whom DLP email notifications are sent. */ readonly externalAuditorEmail: pulumi.Output; /** * List of file types to which the DLP policy rule must be applied. */ readonly fileTypes: pulumi.Output; /** * IDs of groups for which the rule must be applied. */ readonly groups: pulumi.Output; /** * IDs of labels associated with the DLP web rule. */ readonly labels: pulumi.Output; /** * IDs of location groups for which the rule must be applied. */ readonly locationGroups: pulumi.Output; /** * IDs of locations for which the rule must be applied. */ readonly locations: pulumi.Output; /** * If true, the rule matches but does not enforce the action. */ readonly matchOnly: pulumi.Output; /** * Minimum file size (in KB) used for evaluating the DLP policy rule. */ readonly minSize: pulumi.Output; /** * The name of the DLP web rule. Must be unique. */ readonly name: pulumi.Output; /** * If true, Optical Character Recognition (OCR) is enabled for the DLP rule. */ readonly ocrEnabled: pulumi.Output; /** * The order of execution of the rule with respect to other DLP web rules. */ readonly order: pulumi.Output; /** * Protocols to which the rule applies. Valid values: `FTP_RULE`, `HTTPS_RULE`, `HTTP_RULE`. */ readonly protocols: pulumi.Output; /** * Admin rank of the DLP web rule. Valid values: 0-7. Default: 7. */ readonly rank: pulumi.Output; /** * The system-generated ID of the DLP web rule. */ readonly ruleId: pulumi.Output; /** * IDs of source IP address groups for which the rule must be applied. */ readonly sourceIpGroups: pulumi.Output; /** * Rule state. Valid values: `ENABLED`, `DISABLED`. */ readonly state: pulumi.Output; /** * IDs of time intervals during which the rule must be enforced. */ readonly timeWindows: pulumi.Output; /** * IDs of users for which the rule must be applied. */ readonly users: pulumi.Output; /** * If true, the DLP rule is applied without inspecting content. */ readonly withoutContentInspection: pulumi.Output; /** * If true, Zscaler Client Connector notifications are enabled for this rule. */ readonly zccNotificationsEnabled: pulumi.Output; /** * Create a DlpWebRule resource with the given unique name, arguments, and options. * * @param name The _unique_ name of the resource. * @param args The arguments to use to populate this resource's properties. * @param opts A bag of options that control this resource's behavior. */ constructor(name: string, args: DlpWebRuleArgs, opts?: pulumi.CustomResourceOptions); } /** * The set of arguments for constructing a DlpWebRule resource. */ export interface DlpWebRuleArgs { /** * Action taken when the rule is matched. Valid values: `ALLOW`, `BLOCK`, `ICAP_RESPONSE`. */ action?: pulumi.Input; /** * List of cloud application names for which the rule is applied. */ cloudApplications?: pulumi.Input[] | undefined>; /** * IDs of departments for which the rule must be applied. */ departments?: pulumi.Input[] | undefined>; /** * Additional information about the DLP web rule. */ description?: pulumi.Input; /** * If true, DLP scanning is enabled for file downloads. */ dlpDownloadScanEnabled?: pulumi.Input; /** * The email address of an external auditor to whom DLP email notifications are sent. */ externalAuditorEmail?: pulumi.Input; /** * List of file types to which the DLP policy rule must be applied. */ fileTypes?: pulumi.Input[] | undefined>; /** * IDs of groups for which the rule must be applied. */ groups?: pulumi.Input[] | undefined>; /** * IDs of labels associated with the DLP web rule. */ labels?: pulumi.Input[] | undefined>; /** * IDs of location groups for which the rule must be applied. */ locationGroups?: pulumi.Input[] | undefined>; /** * IDs of locations for which the rule must be applied. */ locations?: pulumi.Input[] | undefined>; /** * If true, the rule matches but does not enforce the action. */ matchOnly?: pulumi.Input; /** * Minimum file size (in KB) used for evaluating the DLP policy rule. */ minSize?: pulumi.Input; /** * The name of the DLP web rule. Must be unique. */ name: pulumi.Input; /** * If true, Optical Character Recognition (OCR) is enabled for the DLP rule. */ ocrEnabled?: pulumi.Input; /** * The order of execution of the rule with respect to other DLP web rules. */ order: pulumi.Input; /** * Protocols to which the rule applies. Valid values: `FTP_RULE`, `HTTPS_RULE`, `HTTP_RULE`. */ protocols?: pulumi.Input[] | undefined>; /** * Admin rank of the DLP web rule. Valid values: 0-7. Default: 7. */ rank?: pulumi.Input; /** * IDs of source IP address groups for which the rule must be applied. */ sourceIpGroups?: pulumi.Input[] | undefined>; /** * Rule state. Valid values: `ENABLED`, `DISABLED`. */ state?: pulumi.Input; /** * IDs of time intervals during which the rule must be enforced. */ timeWindows?: pulumi.Input[] | undefined>; /** * IDs of users for which the rule must be applied. */ users?: pulumi.Input[] | undefined>; /** * If true, the DLP rule is applied without inspecting content. */ withoutContentInspection?: pulumi.Input; /** * If true, Zscaler Client Connector notifications are enabled for this rule. */ zccNotificationsEnabled?: pulumi.Input; } //# sourceMappingURL=dlpWebRule.d.ts.map