import * as pulumi from "@pulumi/pulumi"; export declare class ZeroTrustAccessServiceToken extends pulumi.CustomResource { /** * Get an existing ZeroTrustAccessServiceToken resource's state with the given name, ID, and optional extra * properties used to qualify the lookup. * * @param name The _unique_ name of the resulting resource. * @param id The _unique_ provider ID of the resource to lookup. * @param state Any extra arguments used during the lookup. * @param opts Optional settings to control the behavior of the CustomResource. */ static get(name: string, id: pulumi.Input, state?: ZeroTrustAccessServiceTokenState, opts?: pulumi.CustomResourceOptions): ZeroTrustAccessServiceToken; /** * Returns true if the given object is an instance of ZeroTrustAccessServiceToken. This is designed to work even * when multiple copies of the Pulumi SDK have been loaded into the same process. */ static isInstance(obj: any): obj is ZeroTrustAccessServiceToken; /** * The Account ID to use for this endpoint. Mutually exclusive with the Zone ID. */ readonly accountId: pulumi.Output; /** * The Client ID for the service token. Access will check for this value in the `CF-Access-Client-ID` request header. */ readonly clientId: pulumi.Output; /** * The Client Secret for the service token. Access will check for this value in the `CF-Access-Client-Secret` request header. */ readonly clientSecret: pulumi.Output; /** * A version number identifying the current `client_secret` associated with the service token. Incrementing it triggers a rotation; the previous secret will still be accepted until the time indicated by `previous_client_secret_expires_at`. */ readonly clientSecretVersion: pulumi.Output; /** * The duration for how long the service token will be valid. Must be in the format `300ms` or `2h45m`. Valid time units are: ns, us (or µs), ms, s, m, h. The default is 1 year in hours (8760h). */ readonly duration: pulumi.Output; readonly expiresAt: pulumi.Output; /** * The name of the service token. */ readonly name: pulumi.Output; /** * The expiration of the previous `client_secret`. This can be modified at any point after a rotation. For example, you may extend it further into the future if you need more time to update services with the new secret; or move it into the past to immediately invalidate the previous token in case of compromise. */ readonly previousClientSecretExpiresAt: pulumi.Output; /** * The Zone ID to use for this endpoint. Mutually exclusive with the Account ID. */ readonly zoneId: pulumi.Output; /** * Create a ZeroTrustAccessServiceToken resource with the given unique name, arguments, and options. * * @param name The _unique_ name of the resource. * @param args The arguments to use to populate this resource's properties. * @param opts A bag of options that control this resource's behavior. */ constructor(name: string, args?: ZeroTrustAccessServiceTokenArgs, opts?: pulumi.CustomResourceOptions); } /** * Input properties used for looking up and filtering ZeroTrustAccessServiceToken resources. */ export interface ZeroTrustAccessServiceTokenState { /** * The Account ID to use for this endpoint. Mutually exclusive with the Zone ID. */ accountId?: pulumi.Input; /** * The Client ID for the service token. Access will check for this value in the `CF-Access-Client-ID` request header. */ clientId?: pulumi.Input; /** * The Client Secret for the service token. Access will check for this value in the `CF-Access-Client-Secret` request header. */ clientSecret?: pulumi.Input; /** * A version number identifying the current `client_secret` associated with the service token. Incrementing it triggers a rotation; the previous secret will still be accepted until the time indicated by `previous_client_secret_expires_at`. */ clientSecretVersion?: pulumi.Input; /** * The duration for how long the service token will be valid. Must be in the format `300ms` or `2h45m`. Valid time units are: ns, us (or µs), ms, s, m, h. The default is 1 year in hours (8760h). */ duration?: pulumi.Input; expiresAt?: pulumi.Input; /** * The name of the service token. */ name?: pulumi.Input; /** * The expiration of the previous `client_secret`. This can be modified at any point after a rotation. For example, you may extend it further into the future if you need more time to update services with the new secret; or move it into the past to immediately invalidate the previous token in case of compromise. */ previousClientSecretExpiresAt?: pulumi.Input; /** * The Zone ID to use for this endpoint. Mutually exclusive with the Account ID. */ zoneId?: pulumi.Input; } /** * The set of arguments for constructing a ZeroTrustAccessServiceToken resource. */ export interface ZeroTrustAccessServiceTokenArgs { /** * The Account ID to use for this endpoint. Mutually exclusive with the Zone ID. */ accountId?: pulumi.Input; /** * A version number identifying the current `client_secret` associated with the service token. Incrementing it triggers a rotation; the previous secret will still be accepted until the time indicated by `previous_client_secret_expires_at`. */ clientSecretVersion?: pulumi.Input; /** * The duration for how long the service token will be valid. Must be in the format `300ms` or `2h45m`. Valid time units are: ns, us (or µs), ms, s, m, h. The default is 1 year in hours (8760h). */ duration?: pulumi.Input; /** * The name of the service token. */ name?: pulumi.Input; /** * The expiration of the previous `client_secret`. This can be modified at any point after a rotation. For example, you may extend it further into the future if you need more time to update services with the new secret; or move it into the past to immediately invalidate the previous token in case of compromise. */ previousClientSecretExpiresAt?: pulumi.Input; /** * The Zone ID to use for this endpoint. Mutually exclusive with the Account ID. */ zoneId?: pulumi.Input; } //# sourceMappingURL=zeroTrustAccessServiceToken.d.ts.map