1. Packages
  2. Hsdp Provider
  3. API Docs
  4. getIamIntrospect
hsdp 0.65.3 published on Tuesday, Apr 15, 2025 by philips-software

hsdp.getIamIntrospect

Explore with Pulumi AI

Introspects the ORG admin account in use by the provider

This data source only works if the provider is configured with OAuth2 client credentials (oauth2_client_id and oauth2_password)

Example Usage

import * as pulumi from "@pulumi/pulumi";
import * as hsdp from "@pulumi/hsdp";

const admin = hsdp.getIamIntrospect({});
Copy
import pulumi
import pulumi_hsdp as hsdp

admin = hsdp.get_iam_introspect()
Copy
package main

import (
	"github.com/pulumi/pulumi-terraform-provider/sdks/go/hsdp/hsdp"
	"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)

func main() {
	pulumi.Run(func(ctx *pulumi.Context) error {
		_, err := hsdp.GetIamIntrospect(ctx, &hsdp.GetIamIntrospectArgs{}, nil)
		if err != nil {
			return err
		}
		return nil
	})
}
Copy
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using Hsdp = Pulumi.Hsdp;

return await Deployment.RunAsync(() => 
{
    var admin = Hsdp.GetIamIntrospect.Invoke();

});
Copy
package generated_program;

import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.hsdp.HsdpFunctions;
import com.pulumi.hsdp.inputs.GetIamIntrospectArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;

public class App {
    public static void main(String[] args) {
        Pulumi.run(App::stack);
    }

    public static void stack(Context ctx) {
        final var admin = HsdpFunctions.getIamIntrospect();

    }
}
Copy
variables:
  admin:
    fn::invoke:
      function: hsdp:getIamIntrospect
      arguments: {}
Copy
import * as pulumi from "@pulumi/pulumi";

export const adminsOrg = data.hsdp_iam_introspect.admin.managing_organization;
Copy
import pulumi

pulumi.export("adminsOrg", data["hsdp_iam_introspect"]["admin"]["managing_organization"])
Copy
package main

import (
	"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)

func main() {
	pulumi.Run(func(ctx *pulumi.Context) error {
		ctx.Export("adminsOrg", data.Hsdp_iam_introspect.Admin.Managing_organization)
		return nil
	})
}
Copy
using System.Collections.Generic;
using System.Linq;
using Pulumi;

return await Deployment.RunAsync(() => 
{
    return new Dictionary<string, object?>
    {
        ["adminsOrg"] = data.Hsdp_iam_introspect.Admin.Managing_organization,
    };
});
Copy
package generated_program;

import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;

public class App {
    public static void main(String[] args) {
        Pulumi.run(App::stack);
    }

    public static void stack(Context ctx) {
        ctx.export("adminsOrg", data.hsdp_iam_introspect().admin().managing_organization());
    }
}
Copy
outputs:
  adminsOrg: ${data.hsdp_iam_introspect.admin.managing_organization}
Copy

Using getIamIntrospect

Two invocation forms are available. The direct form accepts plain arguments and either blocks until the result value is available, or returns a Promise-wrapped result. The output form accepts Input-wrapped arguments and returns an Output-wrapped result.

function getIamIntrospect(args: GetIamIntrospectArgs, opts?: InvokeOptions): Promise<GetIamIntrospectResult>
function getIamIntrospectOutput(args: GetIamIntrospectOutputArgs, opts?: InvokeOptions): Output<GetIamIntrospectResult>
Copy
def get_iam_introspect(id: Optional[str] = None,
                       organization_context: Optional[str] = None,
                       principal: Optional[GetIamIntrospectPrincipal] = None,
                       token: Optional[str] = None,
                       opts: Optional[InvokeOptions] = None) -> GetIamIntrospectResult
def get_iam_introspect_output(id: Optional[pulumi.Input[str]] = None,
                       organization_context: Optional[pulumi.Input[str]] = None,
                       principal: Optional[pulumi.Input[GetIamIntrospectPrincipalArgs]] = None,
                       token: Optional[pulumi.Input[str]] = None,
                       opts: Optional[InvokeOptions] = None) -> Output[GetIamIntrospectResult]
Copy
func GetIamIntrospect(ctx *Context, args *GetIamIntrospectArgs, opts ...InvokeOption) (*GetIamIntrospectResult, error)
func GetIamIntrospectOutput(ctx *Context, args *GetIamIntrospectOutputArgs, opts ...InvokeOption) GetIamIntrospectResultOutput
Copy

> Note: This function is named GetIamIntrospect in the Go SDK.

public static class GetIamIntrospect 
{
    public static Task<GetIamIntrospectResult> InvokeAsync(GetIamIntrospectArgs args, InvokeOptions? opts = null)
    public static Output<GetIamIntrospectResult> Invoke(GetIamIntrospectInvokeArgs args, InvokeOptions? opts = null)
}
Copy
public static CompletableFuture<GetIamIntrospectResult> getIamIntrospect(GetIamIntrospectArgs args, InvokeOptions options)
public static Output<GetIamIntrospectResult> getIamIntrospect(GetIamIntrospectArgs args, InvokeOptions options)
Copy
fn::invoke:
  function: hsdp:index/getIamIntrospect:getIamIntrospect
  arguments:
    # arguments dictionary
Copy

The following arguments are supported:

Id string
OrganizationContext string
Does a contextual introspect the IAM Organization associated with the GUID. The effective_permissions attribute will contain the list of permissions.
Principal GetIamIntrospectPrincipal
Token string
the token to introspect. Uses default token otherwise
Id string
OrganizationContext string
Does a contextual introspect the IAM Organization associated with the GUID. The effective_permissions attribute will contain the list of permissions.
Principal GetIamIntrospectPrincipal
Token string
the token to introspect. Uses default token otherwise
id String
organizationContext String
Does a contextual introspect the IAM Organization associated with the GUID. The effective_permissions attribute will contain the list of permissions.
principal GetIamIntrospectPrincipal
token String
the token to introspect. Uses default token otherwise
id string
organizationContext string
Does a contextual introspect the IAM Organization associated with the GUID. The effective_permissions attribute will contain the list of permissions.
principal GetIamIntrospectPrincipal
token string
the token to introspect. Uses default token otherwise
id str
organization_context str
Does a contextual introspect the IAM Organization associated with the GUID. The effective_permissions attribute will contain the list of permissions.
principal GetIamIntrospectPrincipal
token str
the token to introspect. Uses default token otherwise
id String
organizationContext String
Does a contextual introspect the IAM Organization associated with the GUID. The effective_permissions attribute will contain the list of permissions.
principal Property Map
token String
the token to introspect. Uses default token otherwise

getIamIntrospect Result

The following output properties are available:

EffectivePermissions List<string>
When an organization_context GUID is provided this contains the list of effective permissions
Id string
IdentityType string
The identity type, example: Service
Introspect string
Issuer string
String representing the issuer of this token, as defined in JWT
ManagingOrganization string
The managing organization of the Org admin user
Scopes List<string>
The list of scopes associated with the token
Subject string
The subject of the token, as defined in JWT RFC7519. Usually a machine-readable identifier of the resource owner who authorized this token.
TokenType string
The type of token
Username string
The username (email) of the Org admin user
OrganizationContext string
Principal GetIamIntrospectPrincipal
Token string
The current session token
EffectivePermissions []string
When an organization_context GUID is provided this contains the list of effective permissions
Id string
IdentityType string
The identity type, example: Service
Introspect string
Issuer string
String representing the issuer of this token, as defined in JWT
ManagingOrganization string
The managing organization of the Org admin user
Scopes []string
The list of scopes associated with the token
Subject string
The subject of the token, as defined in JWT RFC7519. Usually a machine-readable identifier of the resource owner who authorized this token.
TokenType string
The type of token
Username string
The username (email) of the Org admin user
OrganizationContext string
Principal GetIamIntrospectPrincipal
Token string
The current session token
effectivePermissions List<String>
When an organization_context GUID is provided this contains the list of effective permissions
id String
identityType String
The identity type, example: Service
introspect String
issuer String
String representing the issuer of this token, as defined in JWT
managingOrganization String
The managing organization of the Org admin user
scopes List<String>
The list of scopes associated with the token
subject String
The subject of the token, as defined in JWT RFC7519. Usually a machine-readable identifier of the resource owner who authorized this token.
tokenType String
The type of token
username String
The username (email) of the Org admin user
organizationContext String
principal GetIamIntrospectPrincipal
token String
The current session token
effectivePermissions string[]
When an organization_context GUID is provided this contains the list of effective permissions
id string
identityType string
The identity type, example: Service
introspect string
issuer string
String representing the issuer of this token, as defined in JWT
managingOrganization string
The managing organization of the Org admin user
scopes string[]
The list of scopes associated with the token
subject string
The subject of the token, as defined in JWT RFC7519. Usually a machine-readable identifier of the resource owner who authorized this token.
tokenType string
The type of token
username string
The username (email) of the Org admin user
organizationContext string
principal GetIamIntrospectPrincipal
token string
The current session token
effective_permissions Sequence[str]
When an organization_context GUID is provided this contains the list of effective permissions
id str
identity_type str
The identity type, example: Service
introspect str
issuer str
String representing the issuer of this token, as defined in JWT
managing_organization str
The managing organization of the Org admin user
scopes Sequence[str]
The list of scopes associated with the token
subject str
The subject of the token, as defined in JWT RFC7519. Usually a machine-readable identifier of the resource owner who authorized this token.
token_type str
The type of token
username str
The username (email) of the Org admin user
organization_context str
principal GetIamIntrospectPrincipal
token str
The current session token
effectivePermissions List<String>
When an organization_context GUID is provided this contains the list of effective permissions
id String
identityType String
The identity type, example: Service
introspect String
issuer String
String representing the issuer of this token, as defined in JWT
managingOrganization String
The managing organization of the Org admin user
scopes List<String>
The list of scopes associated with the token
subject String
The subject of the token, as defined in JWT RFC7519. Usually a machine-readable identifier of the resource owner who authorized this token.
tokenType String
The type of token
username String
The username (email) of the Org admin user
organizationContext String
principal Property Map
token String
The current session token

Supporting Types

GetIamIntrospectPrincipal

Endpoint string
The endpoint URL to use if applicable. When not set, the provider config is used
Environment string
Environment to use. When not set, the provider config is used
Oauth2ClientId string
The OAuth2 client ID to use for token exchange
Oauth2Password string
The OAuth2 client password to use for token exchange
Password string
The password of the user or device
Region string
Region to use. When not set, the provider config is used
ServiceId string
The IAM service ID
ServicePrivateKey string
The IAM service private key to use
UaaPassword string
UaaUsername string
Username string
The username (email) of the Org admin user
Endpoint string
The endpoint URL to use if applicable. When not set, the provider config is used
Environment string
Environment to use. When not set, the provider config is used
Oauth2ClientId string
The OAuth2 client ID to use for token exchange
Oauth2Password string
The OAuth2 client password to use for token exchange
Password string
The password of the user or device
Region string
Region to use. When not set, the provider config is used
ServiceId string
The IAM service ID
ServicePrivateKey string
The IAM service private key to use
UaaPassword string
UaaUsername string
Username string
The username (email) of the Org admin user
endpoint String
The endpoint URL to use if applicable. When not set, the provider config is used
environment String
Environment to use. When not set, the provider config is used
oauth2ClientId String
The OAuth2 client ID to use for token exchange
oauth2Password String
The OAuth2 client password to use for token exchange
password String
The password of the user or device
region String
Region to use. When not set, the provider config is used
serviceId String
The IAM service ID
servicePrivateKey String
The IAM service private key to use
uaaPassword String
uaaUsername String
username String
The username (email) of the Org admin user
endpoint string
The endpoint URL to use if applicable. When not set, the provider config is used
environment string
Environment to use. When not set, the provider config is used
oauth2ClientId string
The OAuth2 client ID to use for token exchange
oauth2Password string
The OAuth2 client password to use for token exchange
password string
The password of the user or device
region string
Region to use. When not set, the provider config is used
serviceId string
The IAM service ID
servicePrivateKey string
The IAM service private key to use
uaaPassword string
uaaUsername string
username string
The username (email) of the Org admin user
endpoint str
The endpoint URL to use if applicable. When not set, the provider config is used
environment str
Environment to use. When not set, the provider config is used
oauth2_client_id str
The OAuth2 client ID to use for token exchange
oauth2_password str
The OAuth2 client password to use for token exchange
password str
The password of the user or device
region str
Region to use. When not set, the provider config is used
service_id str
The IAM service ID
service_private_key str
The IAM service private key to use
uaa_password str
uaa_username str
username str
The username (email) of the Org admin user
endpoint String
The endpoint URL to use if applicable. When not set, the provider config is used
environment String
Environment to use. When not set, the provider config is used
oauth2ClientId String
The OAuth2 client ID to use for token exchange
oauth2Password String
The OAuth2 client password to use for token exchange
password String
The password of the user or device
region String
Region to use. When not set, the provider config is used
serviceId String
The IAM service ID
servicePrivateKey String
The IAM service private key to use
uaaPassword String
uaaUsername String
username String
The username (email) of the Org admin user

Package Details

Repository
hsdp philips-software/terraform-provider-hsdp
License
Notes
This Pulumi package is based on the hsdp Terraform Provider.