dZddlmZddlmZddlmZddlmZddlmZddl m Z ddl m Z dd l m Z dd lmZdd lmZdd lmZdd lmZddlmZddlmZddlmZddlmZGdde j8Zy)zCCommand to create a new workforce pool under a parent organization.)absolute_import)division)unicode_literals)util)waiter) arg_parsers)base) exceptions)concepts)iam_util)identity_pool_waiter)flags) yaml_data)concept_parsers)log) resourcesc,eZdZdZedZdZdZy)CreateaCreate a new workforce pool under an organization. Creates a workforce pool under an organization given a valid organization ID. ## EXAMPLES The following command creates a workforce pool with ID `my-workforce-pool` in the organization ``12345'': $ {command} my-workforce-pool --organization=12345 The following command creates a workforce pool with ID `my-workforce-pool` with explicit values for all required and optional parameters: $ {command} my-workforce-pool --organization=12345 --location=global --display-name="My Workforce Pool" --description="My workforce pool description." --session-duration="7200s" --disabled ctjjd}tjj dt jj|jdddj|tj|d|jdd |jd d |jd dd|jdd |jddtjdt idgd|jdddt"j$j|y)Nziam.workforce_poolworkforce_poolT) is_positionalzThe workforce pool to create.)requiredcreatez--display-namezMA display name for the workforce pool. Cannot exceed 32 characters in length.)helpz --descriptionzMA description for the workforce pool. Cannot exceed 256 characters in length.z --disabled store_truez.Whether or not the workforce pool is disabled.)actionrz--session-durationa"How long the Google Cloud access tokens, console sign-in sessions, and gcloud sign-in sessions from this workforce pool are valid. Must be greater than 15 minutes (900s) and less than 12 hours (43200s). If not configured, minted credentials will have a default duration of one hour (3600s).z--allowed-servicesappenddomain)spec required_keyszServices allowed for web sign-in with the workforce pool. The flag accepts multiple values with the key as `domain` and value as the domain of the service allowed for web sign-in. If not set, by default all the services are allowed.)rtyperz--disable-programmatic-signinz6Disable programmatic sign-in for workforce pool users.)rResourceYAMLDataFromPathr ConceptParser ForResourcer ResourceSpecFromYamlGetData AddToParserrAddParentFlags add_argumentrArgDictstrr ASYNC_FLAG)parserworkforce_pool_datas )lib/surface/iam/workforce_pools/create.pyArgsz Create.Args8sd#44==!!--&&  ' ' ) '  ( .k& *  &  &  =   N    C   5  ' E  OO'c tj\}}|jstjddt j |jdd}|jjj}|j||j|j|j|j|j||}|j j#|j%t'j(||j*|}t,j.j1dj3|j*|j4r:t,j.j1dj3|j6|St8j:j=|j6d }t?j@|j |jB} tEjF| |d j3|j6d } t,j.j1d j3|j*| S)Nz--organizationz4Should specify the organization for workforce pools.zworkforce pool)parent displayName descriptiondisabledsessionDurationaccessRestrictions)locationworkforcePoolId workforcePoolzCreate request issued for: [{}]z Check operation [{}] for status.z'iam.locations.workforcePools.operations) collectionz'Waiting for operations [{}] to completei) max_wait_mszCreated workforce pool [{}].)$rGetClientAndMessages organizationgcloud_exceptionsRequiredArgumentExceptionr GetParentNameCONCEPTSrParse WorkforcePool display_namer7r8session_durationCreateAccessRestrictionslocations_workforcePoolsr'IamLocationsWorkforcePoolsCreateRequestr ParseLocationworkforcePoolsIdrstatusPrintformatasync_namerREGISTRYParseRelativeNamer IdentityPoolOperationPoller#locations_workforcePools_operationsrWaitFor) selfargsclientmessages parent_nameworkforce_pool_refnew_workforce_poollro_ref lro_resourcepollerresults r1Runz Create.Runws002FH     7 7  @ (( 4!1K55;;=!//%%$$--88xH 0--4488((..??, 9 GJJ)00  / /   {{ jj9@@NO n%%77 !J8L" = =''22F^^188F F JJ&--  / /  Mr3c|jds|jdrV|j}|jdr|j|_|jdr|j|_|Sy)Nallowed_servicesdisable_programmatic_signin) IsSpecifiedAccessRestrictionsrfallowedServicesrgdisableProgrammaticSignin)rYrZr\access_restrictionss r1rJzCreate.CreateAccessRestrictionss{ *+t/?/?%0%779  , -.2.C.C+  7 8  , , 5! r3N)__name__ __module__ __qualname____doc__ staticmethodr2rdrJr3r1rr$s'&<(<(|=~ r3rN)rp __future__rrrgooglecloudsdk.api_lib.iamrgooglecloudsdk.api_lib.utilrgooglecloudsdk.callioperr r rB googlecloudsdk.calliope.conceptsr googlecloudsdk.command_lib.iamr r .googlecloudsdk.command_lib.iam.workforce_poolsr$googlecloudsdk.command_lib.util.apisr(googlecloudsdk.command_lib.util.conceptsrgooglecloudsdk.corerr CreateCommandrrrr3r1r~sOJ&'+./(C53?@:D#)^T  ^r3