import * as pulumi from "@pulumi/pulumi";
import * as inputs from "./types/input";
import * as outputs from "./types/output";
/**
 * ## Example Usage
 *
 * resource "cloudflare.AccountToken" "exampleAccountToken" {
 *   accountId = "b67e14daa5f8dceeb91fe5449ba496eb"
 *   name       = "workers read-only token"
 *
 *   policies = [{
 *     effect = "allow"
 *     permissionGroups = [{
 *       id = "1a71c399035b4950a1bd1466bbe4f420"
 *       }, {
 *       id = "8b47d2786a534c08a1f94ee8f9f599ef"
 *     }]
 *     resources = jsonencode({
 *       "com.cloudflare.api.account.b67e14daa5f8dceeb91fe5449ba496eb" = "*"
 *     })
 *   }]
 *
 *   condition = {
 *     requestIp = {
 *       in     = ["123.123.123.0/24", "2606:4700::/32"]
 *       notIn = ["123.123.123.0/28", "2606:4700:4700::/48"]
 *     }
 *   }
 *
 *   expiresOn = "2027-10-01T00:00:00Z"
 *   notBefore = "2025-10-01T00:00:00Z"
 * }
 *
 * ## Import
 *
 * ```sh
 * $ pulumi import cloudflare:index/accountToken:AccountToken example '<account_id>/<token_id>'
 * ```
 */
export declare class AccountToken extends pulumi.CustomResource {
    /**
     * Get an existing AccountToken resource's state with the given name, ID, and optional extra
     * properties used to qualify the lookup.
     *
     * @param name The _unique_ name of the resulting resource.
     * @param id The _unique_ provider ID of the resource to lookup.
     * @param state Any extra arguments used during the lookup.
     * @param opts Optional settings to control the behavior of the CustomResource.
     */
    static get(name: string, id: pulumi.Input<pulumi.ID>, state?: AccountTokenState, opts?: pulumi.CustomResourceOptions): AccountToken;
    /**
     * Returns true if the given object is an instance of AccountToken.  This is designed to work even
     * when multiple copies of the Pulumi SDK have been loaded into the same process.
     */
    static isInstance(obj: any): obj is AccountToken;
    /**
     * Account identifier tag.
     */
    readonly accountId: pulumi.Output<string>;
    readonly condition: pulumi.Output<outputs.AccountTokenCondition | undefined>;
    /**
     * The expiration time on or after which the JWT MUST NOT be accepted for processing.
     */
    readonly expiresOn: pulumi.Output<string | undefined>;
    /**
     * The time on which the token was created.
     */
    readonly issuedOn: pulumi.Output<string>;
    /**
     * Last time the token was used.
     */
    readonly lastUsedOn: pulumi.Output<string>;
    /**
     * Last time the token was modified.
     */
    readonly modifiedOn: pulumi.Output<string>;
    /**
     * Token name.
     */
    readonly name: pulumi.Output<string>;
    /**
     * The time before which the token MUST NOT be accepted for processing.
     */
    readonly notBefore: pulumi.Output<string | undefined>;
    /**
     * Set of access policies assigned to the token.
     */
    readonly policies: pulumi.Output<outputs.AccountTokenPolicy[]>;
    /**
     * Status of the token.
     * Available values: "active", "disabled", "expired".
     */
    readonly status: pulumi.Output<string>;
    /**
     * The token value.
     */
    readonly value: pulumi.Output<string>;
    /**
     * Create a AccountToken resource with the given unique name, arguments, and options.
     *
     * @param name The _unique_ name of the resource.
     * @param args The arguments to use to populate this resource's properties.
     * @param opts A bag of options that control this resource's behavior.
     */
    constructor(name: string, args: AccountTokenArgs, opts?: pulumi.CustomResourceOptions);
}
/**
 * Input properties used for looking up and filtering AccountToken resources.
 */
export interface AccountTokenState {
    /**
     * Account identifier tag.
     */
    accountId?: pulumi.Input<string>;
    condition?: pulumi.Input<inputs.AccountTokenCondition>;
    /**
     * The expiration time on or after which the JWT MUST NOT be accepted for processing.
     */
    expiresOn?: pulumi.Input<string>;
    /**
     * The time on which the token was created.
     */
    issuedOn?: pulumi.Input<string>;
    /**
     * Last time the token was used.
     */
    lastUsedOn?: pulumi.Input<string>;
    /**
     * Last time the token was modified.
     */
    modifiedOn?: pulumi.Input<string>;
    /**
     * Token name.
     */
    name?: pulumi.Input<string>;
    /**
     * The time before which the token MUST NOT be accepted for processing.
     */
    notBefore?: pulumi.Input<string>;
    /**
     * Set of access policies assigned to the token.
     */
    policies?: pulumi.Input<pulumi.Input<inputs.AccountTokenPolicy>[]>;
    /**
     * Status of the token.
     * Available values: "active", "disabled", "expired".
     */
    status?: pulumi.Input<string>;
    /**
     * The token value.
     */
    value?: pulumi.Input<string>;
}
/**
 * The set of arguments for constructing a AccountToken resource.
 */
export interface AccountTokenArgs {
    /**
     * Account identifier tag.
     */
    accountId: pulumi.Input<string>;
    condition?: pulumi.Input<inputs.AccountTokenCondition>;
    /**
     * The expiration time on or after which the JWT MUST NOT be accepted for processing.
     */
    expiresOn?: pulumi.Input<string>;
    /**
     * Token name.
     */
    name: pulumi.Input<string>;
    /**
     * The time before which the token MUST NOT be accepted for processing.
     */
    notBefore?: pulumi.Input<string>;
    /**
     * Set of access policies assigned to the token.
     */
    policies: pulumi.Input<pulumi.Input<inputs.AccountTokenPolicy>[]>;
    /**
     * Status of the token.
     * Available values: "active", "disabled", "expired".
     */
    status?: pulumi.Input<string>;
}