Cloudflare v5.49.1, Feb 18 25

Cloudflare v5.49.1 published on Tuesday, Feb 18, 2025 by Pulumi

cloudflare.ZeroTrustAccessOrganization

Explore with Pulumi AI

Cloudflare v5.49.1 published on Tuesday, Feb 18, 2025 by Pulumi

Create ZeroTrustAccessOrganization Resource

Resources are created with functions called constructors. To learn more about declaring and configuring resources, see Resources.

Constructor syntax

new ZeroTrustAccessOrganization(name: string, args: ZeroTrustAccessOrganizationArgs, opts?: CustomResourceOptions);

@overload
def ZeroTrustAccessOrganization(resource_name: str,
                                args: ZeroTrustAccessOrganizationArgs,
                                opts: Optional[ResourceOptions] = None)

@overload
def ZeroTrustAccessOrganization(resource_name: str,
                                opts: Optional[ResourceOptions] = None,
                                auth_domain: Optional[str] = None,
                                name: Optional[str] = None,
                                login_designs: Optional[Sequence[ZeroTrustAccessOrganizationLoginDesignArgs]] = None,
                                auto_redirect_to_identity: Optional[bool] = None,
                                custom_pages: Optional[Sequence[ZeroTrustAccessOrganizationCustomPageArgs]] = None,
                                is_ui_read_only: Optional[bool] = None,
                                account_id: Optional[str] = None,
                                allow_authenticate_via_warp: Optional[bool] = None,
                                session_duration: Optional[str] = None,
                                ui_read_only_toggle_reason: Optional[str] = None,
                                user_seat_expiration_inactive_time: Optional[str] = None,
                                warp_auth_session_duration: Optional[str] = None,
                                zone_id: Optional[str] = None)

func NewZeroTrustAccessOrganization(ctx *Context, name string, args ZeroTrustAccessOrganizationArgs, opts ...ResourceOption) (*ZeroTrustAccessOrganization, error)

public ZeroTrustAccessOrganization(string name, ZeroTrustAccessOrganizationArgs args, CustomResourceOptions? opts = null)

public ZeroTrustAccessOrganization(String name, ZeroTrustAccessOrganizationArgs args)
public ZeroTrustAccessOrganization(String name, ZeroTrustAccessOrganizationArgs args, CustomResourceOptions options)

type: cloudflare:ZeroTrustAccessOrganization
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.

Parameters

name string: The unique name of the resource.
args ZeroTrustAccessOrganizationArgs: The arguments to resource properties.
opts CustomResourceOptions: Bag of options to control resource's behavior.

resource_name str: The unique name of the resource.
args ZeroTrustAccessOrganizationArgs: The arguments to resource properties.
opts ResourceOptions: Bag of options to control resource's behavior.

ctx Context: Context object for the current deployment.
name string: The unique name of the resource.
args ZeroTrustAccessOrganizationArgs: The arguments to resource properties.
opts ResourceOption: Bag of options to control resource's behavior.

name string: The unique name of the resource.
args ZeroTrustAccessOrganizationArgs: The arguments to resource properties.
opts CustomResourceOptions: Bag of options to control resource's behavior.

name String: The unique name of the resource.
args ZeroTrustAccessOrganizationArgs: The arguments to resource properties.
options CustomResourceOptions: Bag of options to control resource's behavior.

Constructor example

The following reference example uses placeholder values for all input properties.

var zeroTrustAccessOrganizationResource = new Cloudflare.ZeroTrustAccessOrganization("zeroTrustAccessOrganizationResource", new()
{
    AuthDomain = "string",
    Name = "string",
    LoginDesigns = new[]
    {
        new Cloudflare.Inputs.ZeroTrustAccessOrganizationLoginDesignArgs
        {
            BackgroundColor = "string",
            FooterText = "string",
            HeaderText = "string",
            LogoPath = "string",
            TextColor = "string",
        },
    },
    AutoRedirectToIdentity = false,
    CustomPages = new[]
    {
        new Cloudflare.Inputs.ZeroTrustAccessOrganizationCustomPageArgs
        {
            Forbidden = "string",
            IdentityDenied = "string",
        },
    },
    IsUiReadOnly = false,
    AccountId = "string",
    AllowAuthenticateViaWarp = false,
    SessionDuration = "string",
    UiReadOnlyToggleReason = "string",
    UserSeatExpirationInactiveTime = "string",
    WarpAuthSessionDuration = "string",
    ZoneId = "string",
});

example, err := cloudflare.NewZeroTrustAccessOrganization(ctx, "zeroTrustAccessOrganizationResource", &cloudflare.ZeroTrustAccessOrganizationArgs{
	AuthDomain: pulumi.String("string"),
	Name:       pulumi.String("string"),
	LoginDesigns: cloudflare.ZeroTrustAccessOrganizationLoginDesignArray{
		&cloudflare.ZeroTrustAccessOrganizationLoginDesignArgs{
			BackgroundColor: pulumi.String("string"),
			FooterText:      pulumi.String("string"),
			HeaderText:      pulumi.String("string"),
			LogoPath:        pulumi.String("string"),
			TextColor:       pulumi.String("string"),
		},
	},
	AutoRedirectToIdentity: pulumi.Bool(false),
	CustomPages: cloudflare.ZeroTrustAccessOrganizationCustomPageArray{
		&cloudflare.ZeroTrustAccessOrganizationCustomPageArgs{
			Forbidden:      pulumi.String("string"),
			IdentityDenied: pulumi.String("string"),
		},
	},
	IsUiReadOnly:                   pulumi.Bool(false),
	AccountId:                      pulumi.String("string"),
	AllowAuthenticateViaWarp:       pulumi.Bool(false),
	SessionDuration:                pulumi.String("string"),
	UiReadOnlyToggleReason:         pulumi.String("string"),
	UserSeatExpirationInactiveTime: pulumi.String("string"),
	WarpAuthSessionDuration:        pulumi.String("string"),
	ZoneId:                         pulumi.String("string"),
})

var zeroTrustAccessOrganizationResource = new ZeroTrustAccessOrganization("zeroTrustAccessOrganizationResource", ZeroTrustAccessOrganizationArgs.builder()
    .authDomain("string")
    .name("string")
    .loginDesigns(ZeroTrustAccessOrganizationLoginDesignArgs.builder()
        .backgroundColor("string")
        .footerText("string")
        .headerText("string")
        .logoPath("string")
        .textColor("string")
        .build())
    .autoRedirectToIdentity(false)
    .customPages(ZeroTrustAccessOrganizationCustomPageArgs.builder()
        .forbidden("string")
        .identityDenied("string")
        .build())
    .isUiReadOnly(false)
    .accountId("string")
    .allowAuthenticateViaWarp(false)
    .sessionDuration("string")
    .uiReadOnlyToggleReason("string")
    .userSeatExpirationInactiveTime("string")
    .warpAuthSessionDuration("string")
    .zoneId("string")
    .build());

zero_trust_access_organization_resource = cloudflare.ZeroTrustAccessOrganization("zeroTrustAccessOrganizationResource",
    auth_domain="string",
    name="string",
    login_designs=[{
        "background_color": "string",
        "footer_text": "string",
        "header_text": "string",
        "logo_path": "string",
        "text_color": "string",
    }],
    auto_redirect_to_identity=False,
    custom_pages=[{
        "forbidden": "string",
        "identity_denied": "string",
    }],
    is_ui_read_only=False,
    account_id="string",
    allow_authenticate_via_warp=False,
    session_duration="string",
    ui_read_only_toggle_reason="string",
    user_seat_expiration_inactive_time="string",
    warp_auth_session_duration="string",
    zone_id="string")

const zeroTrustAccessOrganizationResource = new cloudflare.ZeroTrustAccessOrganization("zeroTrustAccessOrganizationResource", {
    authDomain: "string",
    name: "string",
    loginDesigns: [{
        backgroundColor: "string",
        footerText: "string",
        headerText: "string",
        logoPath: "string",
        textColor: "string",
    }],
    autoRedirectToIdentity: false,
    customPages: [{
        forbidden: "string",
        identityDenied: "string",
    }],
    isUiReadOnly: false,
    accountId: "string",
    allowAuthenticateViaWarp: false,
    sessionDuration: "string",
    uiReadOnlyToggleReason: "string",
    userSeatExpirationInactiveTime: "string",
    warpAuthSessionDuration: "string",
    zoneId: "string",
});

type: cloudflare:ZeroTrustAccessOrganization
properties:
    accountId: string
    allowAuthenticateViaWarp: false
    authDomain: string
    autoRedirectToIdentity: false
    customPages:
        - forbidden: string
          identityDenied: string
    isUiReadOnly: false
    loginDesigns:
        - backgroundColor: string
          footerText: string
          headerText: string
          logoPath: string
          textColor: string
    name: string
    sessionDuration: string
    uiReadOnlyToggleReason: string
    userSeatExpirationInactiveTime: string
    warpAuthSessionDuration: string
    zoneId: string

ZeroTrustAccessOrganization Resource Properties

To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.

Inputs

In Python, inputs that are objects can be passed either as argument classes or as dictionary literals.

The ZeroTrustAccessOrganization resource accepts the following input properties:

AuthDomain string: The unique subdomain assigned to your Zero Trust organization.
Name string: The name of your Zero Trust organization.
AccountId string: The account identifier to target for the resource. Conflicts with zone_id.
AllowAuthenticateViaWarp bool: When set to true, users can authenticate via WARP for any application in your organization. Application settings will take precedence over this value.
AutoRedirectToIdentity bool: When set to true, users skip the identity provider selection step during login.
CustomPages List<ZeroTrustAccessOrganizationCustomPage>: Custom pages for your Zero Trust organization.
IsUiReadOnly bool: When set to true, this will disable all editing of Access resources via the Zero Trust Dashboard.
LoginDesigns List<ZeroTrustAccessOrganizationLoginDesign>
SessionDuration string: How often a user will be forced to re-authorise. Must be in the format 48h or 2h45m.
UiReadOnlyToggleReason string: A description of the reason why the UI read only field is being toggled.
UserSeatExpirationInactiveTime string: The amount of time a user seat is inactive before it expires. When the user seat exceeds the set time of inactivity, the user is removed as an active seat and no longer counts against your Teams seat count. Must be in the format 300ms or 2h45m.
WarpAuthSessionDuration string: The amount of time that tokens issued for applications will be valid. Must be in the format 30m or 2h45m. Valid time units are: m, h.
ZoneId string: The zone identifier to target for the resource. Conflicts with account_id.

AuthDomain string: The unique subdomain assigned to your Zero Trust organization.
Name string: The name of your Zero Trust organization.
AccountId string: The account identifier to target for the resource. Conflicts with zone_id.
AllowAuthenticateViaWarp bool: When set to true, users can authenticate via WARP for any application in your organization. Application settings will take precedence over this value.
AutoRedirectToIdentity bool: When set to true, users skip the identity provider selection step during login.
CustomPages []ZeroTrustAccessOrganizationCustomPageArgs: Custom pages for your Zero Trust organization.
IsUiReadOnly bool: When set to true, this will disable all editing of Access resources via the Zero Trust Dashboard.
LoginDesigns []ZeroTrustAccessOrganizationLoginDesignArgs
SessionDuration string: How often a user will be forced to re-authorise. Must be in the format 48h or 2h45m.
UiReadOnlyToggleReason string: A description of the reason why the UI read only field is being toggled.
UserSeatExpirationInactiveTime string: The amount of time a user seat is inactive before it expires. When the user seat exceeds the set time of inactivity, the user is removed as an active seat and no longer counts against your Teams seat count. Must be in the format 300ms or 2h45m.
WarpAuthSessionDuration string: The amount of time that tokens issued for applications will be valid. Must be in the format 30m or 2h45m. Valid time units are: m, h.
ZoneId string: The zone identifier to target for the resource. Conflicts with account_id.

authDomain String: The unique subdomain assigned to your Zero Trust organization.
name String: The name of your Zero Trust organization.
accountId String: The account identifier to target for the resource. Conflicts with zone_id.
allowAuthenticateViaWarp Boolean: When set to true, users can authenticate via WARP for any application in your organization. Application settings will take precedence over this value.
autoRedirectToIdentity Boolean: When set to true, users skip the identity provider selection step during login.
customPages List<ZeroTrustAccessOrganizationCustomPage>: Custom pages for your Zero Trust organization.
isUiReadOnly Boolean: When set to true, this will disable all editing of Access resources via the Zero Trust Dashboard.
loginDesigns List<ZeroTrustAccessOrganizationLoginDesign>
sessionDuration String: How often a user will be forced to re-authorise. Must be in the format 48h or 2h45m.
uiReadOnlyToggleReason String: A description of the reason why the UI read only field is being toggled.
userSeatExpirationInactiveTime String: The amount of time a user seat is inactive before it expires. When the user seat exceeds the set time of inactivity, the user is removed as an active seat and no longer counts against your Teams seat count. Must be in the format 300ms or 2h45m.
warpAuthSessionDuration String: The amount of time that tokens issued for applications will be valid. Must be in the format 30m or 2h45m. Valid time units are: m, h.
zoneId String: The zone identifier to target for the resource. Conflicts with account_id.

authDomain string: The unique subdomain assigned to your Zero Trust organization.
name string: The name of your Zero Trust organization.
accountId string: The account identifier to target for the resource. Conflicts with zone_id.
allowAuthenticateViaWarp boolean: When set to true, users can authenticate via WARP for any application in your organization. Application settings will take precedence over this value.
autoRedirectToIdentity boolean: When set to true, users skip the identity provider selection step during login.
customPages ZeroTrustAccessOrganizationCustomPage[]: Custom pages for your Zero Trust organization.
isUiReadOnly boolean: When set to true, this will disable all editing of Access resources via the Zero Trust Dashboard.
loginDesigns ZeroTrustAccessOrganizationLoginDesign[]
sessionDuration string: How often a user will be forced to re-authorise. Must be in the format 48h or 2h45m.
uiReadOnlyToggleReason string: A description of the reason why the UI read only field is being toggled.
userSeatExpirationInactiveTime string: The amount of time a user seat is inactive before it expires. When the user seat exceeds the set time of inactivity, the user is removed as an active seat and no longer counts against your Teams seat count. Must be in the format 300ms or 2h45m.
warpAuthSessionDuration string: The amount of time that tokens issued for applications will be valid. Must be in the format 30m or 2h45m. Valid time units are: m, h.
zoneId string: The zone identifier to target for the resource. Conflicts with account_id.

auth_domain str: The unique subdomain assigned to your Zero Trust organization.
name str: The name of your Zero Trust organization.
account_id str: The account identifier to target for the resource. Conflicts with zone_id.
allow_authenticate_via_warp bool: When set to true, users can authenticate via WARP for any application in your organization. Application settings will take precedence over this value.
auto_redirect_to_identity bool: When set to true, users skip the identity provider selection step during login.
custom_pages Sequence[ZeroTrustAccessOrganizationCustomPageArgs]: Custom pages for your Zero Trust organization.
is_ui_read_only bool: When set to true, this will disable all editing of Access resources via the Zero Trust Dashboard.
login_designs Sequence[ZeroTrustAccessOrganizationLoginDesignArgs]
session_duration str: How often a user will be forced to re-authorise. Must be in the format 48h or 2h45m.
ui_read_only_toggle_reason str: A description of the reason why the UI read only field is being toggled.
user_seat_expiration_inactive_time str: The amount of time a user seat is inactive before it expires. When the user seat exceeds the set time of inactivity, the user is removed as an active seat and no longer counts against your Teams seat count. Must be in the format 300ms or 2h45m.
warp_auth_session_duration str: The amount of time that tokens issued for applications will be valid. Must be in the format 30m or 2h45m. Valid time units are: m, h.
zone_id str: The zone identifier to target for the resource. Conflicts with account_id.

authDomain String: The unique subdomain assigned to your Zero Trust organization.
name String: The name of your Zero Trust organization.
accountId String: The account identifier to target for the resource. Conflicts with zone_id.
allowAuthenticateViaWarp Boolean: When set to true, users can authenticate via WARP for any application in your organization. Application settings will take precedence over this value.
autoRedirectToIdentity Boolean: When set to true, users skip the identity provider selection step during login.
customPages List<Property Map>: Custom pages for your Zero Trust organization.
isUiReadOnly Boolean: When set to true, this will disable all editing of Access resources via the Zero Trust Dashboard.
loginDesigns List<Property Map>
sessionDuration String: How often a user will be forced to re-authorise. Must be in the format 48h or 2h45m.
uiReadOnlyToggleReason String: A description of the reason why the UI read only field is being toggled.
userSeatExpirationInactiveTime String: The amount of time a user seat is inactive before it expires. When the user seat exceeds the set time of inactivity, the user is removed as an active seat and no longer counts against your Teams seat count. Must be in the format 300ms or 2h45m.
warpAuthSessionDuration String: The amount of time that tokens issued for applications will be valid. Must be in the format 30m or 2h45m. Valid time units are: m, h.
zoneId String: The zone identifier to target for the resource. Conflicts with account_id.

Outputs

All input properties are implicitly available as output properties. Additionally, the ZeroTrustAccessOrganization resource produces the following output properties:

Id string: The provider-assigned unique ID for this managed resource.

Id string: The provider-assigned unique ID for this managed resource.

id String: The provider-assigned unique ID for this managed resource.

id string: The provider-assigned unique ID for this managed resource.

id str: The provider-assigned unique ID for this managed resource.

id String: The provider-assigned unique ID for this managed resource.

Look up Existing ZeroTrustAccessOrganization Resource

Get an existing ZeroTrustAccessOrganization resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.

public static get(name: string, id: Input<ID>, state?: ZeroTrustAccessOrganizationState, opts?: CustomResourceOptions): ZeroTrustAccessOrganization

@staticmethod
def get(resource_name: str,
        id: str,
        opts: Optional[ResourceOptions] = None,
        account_id: Optional[str] = None,
        allow_authenticate_via_warp: Optional[bool] = None,
        auth_domain: Optional[str] = None,
        auto_redirect_to_identity: Optional[bool] = None,
        custom_pages: Optional[Sequence[ZeroTrustAccessOrganizationCustomPageArgs]] = None,
        is_ui_read_only: Optional[bool] = None,
        login_designs: Optional[Sequence[ZeroTrustAccessOrganizationLoginDesignArgs]] = None,
        name: Optional[str] = None,
        session_duration: Optional[str] = None,
        ui_read_only_toggle_reason: Optional[str] = None,
        user_seat_expiration_inactive_time: Optional[str] = None,
        warp_auth_session_duration: Optional[str] = None,
        zone_id: Optional[str] = None) -> ZeroTrustAccessOrganization

func GetZeroTrustAccessOrganization(ctx *Context, name string, id IDInput, state *ZeroTrustAccessOrganizationState, opts ...ResourceOption) (*ZeroTrustAccessOrganization, error)

public static ZeroTrustAccessOrganization Get(string name, Input<string> id, ZeroTrustAccessOrganizationState? state, CustomResourceOptions? opts = null)

public static ZeroTrustAccessOrganization get(String name, Output<String> id, ZeroTrustAccessOrganizationState state, CustomResourceOptions options)

resources:  _:    type: cloudflare:ZeroTrustAccessOrganization    get:      id: ${id}

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

resource_name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

The following state arguments are supported:

AccountId string: The account identifier to target for the resource. Conflicts with zone_id.
AllowAuthenticateViaWarp bool: When set to true, users can authenticate via WARP for any application in your organization. Application settings will take precedence over this value.
AuthDomain string: The unique subdomain assigned to your Zero Trust organization.
AutoRedirectToIdentity bool: When set to true, users skip the identity provider selection step during login.
CustomPages List<ZeroTrustAccessOrganizationCustomPage>: Custom pages for your Zero Trust organization.
IsUiReadOnly bool: When set to true, this will disable all editing of Access resources via the Zero Trust Dashboard.
LoginDesigns List<ZeroTrustAccessOrganizationLoginDesign>
Name string: The name of your Zero Trust organization.
SessionDuration string: How often a user will be forced to re-authorise. Must be in the format 48h or 2h45m.
UiReadOnlyToggleReason string: A description of the reason why the UI read only field is being toggled.
UserSeatExpirationInactiveTime string: The amount of time a user seat is inactive before it expires. When the user seat exceeds the set time of inactivity, the user is removed as an active seat and no longer counts against your Teams seat count. Must be in the format 300ms or 2h45m.
WarpAuthSessionDuration string: The amount of time that tokens issued for applications will be valid. Must be in the format 30m or 2h45m. Valid time units are: m, h.
ZoneId string: The zone identifier to target for the resource. Conflicts with account_id.

AccountId string: The account identifier to target for the resource. Conflicts with zone_id.
AllowAuthenticateViaWarp bool: When set to true, users can authenticate via WARP for any application in your organization. Application settings will take precedence over this value.
AuthDomain string: The unique subdomain assigned to your Zero Trust organization.
AutoRedirectToIdentity bool: When set to true, users skip the identity provider selection step during login.
CustomPages []ZeroTrustAccessOrganizationCustomPageArgs: Custom pages for your Zero Trust organization.
IsUiReadOnly bool: When set to true, this will disable all editing of Access resources via the Zero Trust Dashboard.
LoginDesigns []ZeroTrustAccessOrganizationLoginDesignArgs
Name string: The name of your Zero Trust organization.
SessionDuration string: How often a user will be forced to re-authorise. Must be in the format 48h or 2h45m.
UiReadOnlyToggleReason string: A description of the reason why the UI read only field is being toggled.
UserSeatExpirationInactiveTime string: The amount of time a user seat is inactive before it expires. When the user seat exceeds the set time of inactivity, the user is removed as an active seat and no longer counts against your Teams seat count. Must be in the format 300ms or 2h45m.
WarpAuthSessionDuration string: The amount of time that tokens issued for applications will be valid. Must be in the format 30m or 2h45m. Valid time units are: m, h.
ZoneId string: The zone identifier to target for the resource. Conflicts with account_id.

accountId String: The account identifier to target for the resource. Conflicts with zone_id.
allowAuthenticateViaWarp Boolean: When set to true, users can authenticate via WARP for any application in your organization. Application settings will take precedence over this value.
authDomain String: The unique subdomain assigned to your Zero Trust organization.
autoRedirectToIdentity Boolean: When set to true, users skip the identity provider selection step during login.
customPages List<ZeroTrustAccessOrganizationCustomPage>: Custom pages for your Zero Trust organization.
isUiReadOnly Boolean: When set to true, this will disable all editing of Access resources via the Zero Trust Dashboard.
loginDesigns List<ZeroTrustAccessOrganizationLoginDesign>
name String: The name of your Zero Trust organization.
sessionDuration String: How often a user will be forced to re-authorise. Must be in the format 48h or 2h45m.
uiReadOnlyToggleReason String: A description of the reason why the UI read only field is being toggled.
userSeatExpirationInactiveTime String: The amount of time a user seat is inactive before it expires. When the user seat exceeds the set time of inactivity, the user is removed as an active seat and no longer counts against your Teams seat count. Must be in the format 300ms or 2h45m.
warpAuthSessionDuration String: The amount of time that tokens issued for applications will be valid. Must be in the format 30m or 2h45m. Valid time units are: m, h.
zoneId String: The zone identifier to target for the resource. Conflicts with account_id.

accountId string: The account identifier to target for the resource. Conflicts with zone_id.
allowAuthenticateViaWarp boolean: When set to true, users can authenticate via WARP for any application in your organization. Application settings will take precedence over this value.
authDomain string: The unique subdomain assigned to your Zero Trust organization.
autoRedirectToIdentity boolean: When set to true, users skip the identity provider selection step during login.
customPages ZeroTrustAccessOrganizationCustomPage[]: Custom pages for your Zero Trust organization.
isUiReadOnly boolean: When set to true, this will disable all editing of Access resources via the Zero Trust Dashboard.
loginDesigns ZeroTrustAccessOrganizationLoginDesign[]
name string: The name of your Zero Trust organization.
sessionDuration string: How often a user will be forced to re-authorise. Must be in the format 48h or 2h45m.
uiReadOnlyToggleReason string: A description of the reason why the UI read only field is being toggled.
userSeatExpirationInactiveTime string: The amount of time a user seat is inactive before it expires. When the user seat exceeds the set time of inactivity, the user is removed as an active seat and no longer counts against your Teams seat count. Must be in the format 300ms or 2h45m.
warpAuthSessionDuration string: The amount of time that tokens issued for applications will be valid. Must be in the format 30m or 2h45m. Valid time units are: m, h.
zoneId string: The zone identifier to target for the resource. Conflicts with account_id.

account_id str: The account identifier to target for the resource. Conflicts with zone_id.
allow_authenticate_via_warp bool: When set to true, users can authenticate via WARP for any application in your organization. Application settings will take precedence over this value.
auth_domain str: The unique subdomain assigned to your Zero Trust organization.
auto_redirect_to_identity bool: When set to true, users skip the identity provider selection step during login.
custom_pages Sequence[ZeroTrustAccessOrganizationCustomPageArgs]: Custom pages for your Zero Trust organization.
is_ui_read_only bool: When set to true, this will disable all editing of Access resources via the Zero Trust Dashboard.
login_designs Sequence[ZeroTrustAccessOrganizationLoginDesignArgs]
name str: The name of your Zero Trust organization.
session_duration str: How often a user will be forced to re-authorise. Must be in the format 48h or 2h45m.
ui_read_only_toggle_reason str: A description of the reason why the UI read only field is being toggled.
user_seat_expiration_inactive_time str: The amount of time a user seat is inactive before it expires. When the user seat exceeds the set time of inactivity, the user is removed as an active seat and no longer counts against your Teams seat count. Must be in the format 300ms or 2h45m.
warp_auth_session_duration str: The amount of time that tokens issued for applications will be valid. Must be in the format 30m or 2h45m. Valid time units are: m, h.
zone_id str: The zone identifier to target for the resource. Conflicts with account_id.

accountId String: The account identifier to target for the resource. Conflicts with zone_id.
allowAuthenticateViaWarp Boolean: When set to true, users can authenticate via WARP for any application in your organization. Application settings will take precedence over this value.
authDomain String: The unique subdomain assigned to your Zero Trust organization.
autoRedirectToIdentity Boolean: When set to true, users skip the identity provider selection step during login.
customPages List<Property Map>: Custom pages for your Zero Trust organization.
isUiReadOnly Boolean: When set to true, this will disable all editing of Access resources via the Zero Trust Dashboard.
loginDesigns List<Property Map>
name String: The name of your Zero Trust organization.
sessionDuration String: How often a user will be forced to re-authorise. Must be in the format 48h or 2h45m.
uiReadOnlyToggleReason String: A description of the reason why the UI read only field is being toggled.
userSeatExpirationInactiveTime String: The amount of time a user seat is inactive before it expires. When the user seat exceeds the set time of inactivity, the user is removed as an active seat and no longer counts against your Teams seat count. Must be in the format 300ms or 2h45m.
warpAuthSessionDuration String: The amount of time that tokens issued for applications will be valid. Must be in the format 30m or 2h45m. Valid time units are: m, h.
zoneId String: The zone identifier to target for the resource. Conflicts with account_id.

Supporting Types

ZeroTrustAccessOrganizationCustomPage, ZeroTrustAccessOrganizationCustomPageArgs

Forbidden string: The id of the forbidden page.
IdentityDenied string: The id of the identity denied page.

Forbidden string: The id of the forbidden page.
IdentityDenied string: The id of the identity denied page.

forbidden String: The id of the forbidden page.
identityDenied String: The id of the identity denied page.

forbidden string: The id of the forbidden page.
identityDenied string: The id of the identity denied page.

forbidden str: The id of the forbidden page.
identity_denied str: The id of the identity denied page.

forbidden String: The id of the forbidden page.
identityDenied String: The id of the identity denied page.

ZeroTrustAccessOrganizationLoginDesign, ZeroTrustAccessOrganizationLoginDesignArgs

BackgroundColor string: The background color on the login page.
FooterText string: The text at the bottom of the login page.
HeaderText string: The text at the top of the login page.
LogoPath string: The URL of the logo on the login page.
TextColor string: The text color on the login page.

BackgroundColor string: The background color on the login page.
FooterText string: The text at the bottom of the login page.
HeaderText string: The text at the top of the login page.
LogoPath string: The URL of the logo on the login page.
TextColor string: The text color on the login page.

backgroundColor String: The background color on the login page.
footerText String: The text at the bottom of the login page.
headerText String: The text at the top of the login page.
logoPath String: The URL of the logo on the login page.
textColor String: The text color on the login page.

backgroundColor string: The background color on the login page.
footerText string: The text at the bottom of the login page.
headerText string: The text at the top of the login page.
logoPath string: The URL of the logo on the login page.
textColor string: The text color on the login page.

background_color str: The background color on the login page.
footer_text str: The text at the bottom of the login page.
header_text str: The text at the top of the login page.
logo_path str: The URL of the logo on the login page.
text_color str: The text color on the login page.

backgroundColor String: The background color on the login page.
footerText String: The text at the bottom of the login page.
headerText String: The text at the top of the login page.
logoPath String: The URL of the logo on the login page.
textColor String: The text color on the login page.

Package Details

Repository: Cloudflare pulumi/pulumi-cloudflare
License: Apache-2.0
Notes: This Pulumi package is based on the cloudflare Terraform Provider.

Cloudflare v5.49.1 published on Tuesday, Feb 18, 2025 by Pulumi

pulumi/pulumi-cloudflare

cloudflare.ZeroTrustAccessOrganization

On this page

On this page

Create ZeroTrustAccessOrganization Resource

Constructor syntax

Parameters

Constructor example

ZeroTrustAccessOrganization Resource Properties

Inputs

Outputs

Look up Existing ZeroTrustAccessOrganization Resource

Supporting Types

ZeroTrustAccessOrganizationCustomPage, ZeroTrustAccessOrganizationCustomPageArgs

ZeroTrustAccessOrganizationLoginDesign, ZeroTrustAccessOrganizationLoginDesignArgs

Package Details

On this page

On this page