sdk/go/okta/policyPasswordDefault.go

// Code generated by the Pulumi Terraform Bridge (tfgen) Tool DO NOT EDIT.
// *** WARNING: Do not edit by hand unless you're certain you know what you are doing! ***

package okta

import (
	"context"
	"reflect"

	"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)

// Configures default password policy.
//
// This resource allows you to configure default password policy.
//
// ## Example Usage
//
// ```go
// package main
//
// import (
//
//	"github.com/pulumi/pulumi-okta/sdk/v3/go/okta"
//	"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
//
// )
//
//	func main() {
//		pulumi.Run(func(ctx *pulumi.Context) error {
//			_, err := okta.NewPolicyPasswordDefault(ctx, "default", nil)
//			if err != nil {
//				return err
//			}
//			return nil
//		})
//	}
//
// ```
//
// ## Import
//
// Default Password Policy can be imported without providing Okta ID.
//
// ```sh
//
//	$ pulumi import okta:index/policyPasswordDefault:PolicyPasswordDefault example .
//
// ```
type PolicyPasswordDefault struct {
	pulumi.CustomResourceState

	// Enable or disable voice call password recovery: ACTIVE or INACTIVE.
	CallRecovery pulumi.StringPtrOutput `pulumi:"callRecovery"`
	// Default authentication provider.
	DefaultAuthProvider pulumi.StringOutput `pulumi:"defaultAuthProvider"`
	// ID of the default Okta group.
	DefaultIncludedGroupId pulumi.StringOutput `pulumi:"defaultIncludedGroupId"`
	// Default policy description.
	Description pulumi.StringOutput `pulumi:"description"`
	// Enable or disable email password recovery: ACTIVE or INACTIVE.
	EmailRecovery pulumi.StringPtrOutput `pulumi:"emailRecovery"`
	// Default policy name.
	Name pulumi.StringOutput `pulumi:"name"`
	// Number of minutes before a locked account is unlocked: 0 = no limit.
	PasswordAutoUnlockMinutes pulumi.IntPtrOutput `pulumi:"passwordAutoUnlockMinutes"`
	// Check Passwords Against Common Password Dictionary.
	PasswordDictionaryLookup pulumi.BoolPtrOutput `pulumi:"passwordDictionaryLookup"`
	// User firstName attribute must be excluded from the password.
	PasswordExcludeFirstName pulumi.BoolPtrOutput `pulumi:"passwordExcludeFirstName"`
	// User lastName attribute must be excluded from the password.
	PasswordExcludeLastName pulumi.BoolPtrOutput `pulumi:"passwordExcludeLastName"`
	// If the username must be excluded from the password.
	PasswordExcludeUsername pulumi.BoolPtrOutput `pulumi:"passwordExcludeUsername"`
	// Length in days a user will be warned before password expiry: 0 = no warning.
	PasswordExpireWarnDays pulumi.IntPtrOutput `pulumi:"passwordExpireWarnDays"`
	// Number of distinct passwords that must be created before they can be reused: 0 =
	// none.
	PasswordHistoryCount pulumi.IntPtrOutput `pulumi:"passwordHistoryCount"`
	// Notification channels to use to notify a user when their account
	// has been locked.
	PasswordLockoutNotificationChannels pulumi.StringArrayOutput `pulumi:"passwordLockoutNotificationChannels"`
	// Length in days a password is valid before expiry: 0 = no limit.,
	PasswordMaxAgeDays pulumi.IntPtrOutput `pulumi:"passwordMaxAgeDays"`
	// Number of unsuccessful login attempts allowed before lockout: 0 = no
	// limit.
	PasswordMaxLockoutAttempts pulumi.IntPtrOutput `pulumi:"passwordMaxLockoutAttempts"`
	// Minimum time interval in minutes between password changes: 0 = no limit.
	PasswordMinAgeMinutes pulumi.IntPtrOutput `pulumi:"passwordMinAgeMinutes"`
	// Minimum password length. Default is 8.
	PasswordMinLength pulumi.IntPtrOutput `pulumi:"passwordMinLength"`
	// Minimum number of lower case characters in a password.
	PasswordMinLowercase pulumi.IntPtrOutput `pulumi:"passwordMinLowercase"`
	// Minimum number of numbers in a password.
	PasswordMinNumber pulumi.IntPtrOutput `pulumi:"passwordMinNumber"`
	// Minimum number of symbols in a password.
	PasswordMinSymbol pulumi.IntPtrOutput `pulumi:"passwordMinSymbol"`
	// Minimum number of upper case characters in a password.
	PasswordMinUppercase pulumi.IntPtrOutput `pulumi:"passwordMinUppercase"`
	// If a user should be informed when their account is locked.
	PasswordShowLockoutFailures pulumi.BoolPtrOutput `pulumi:"passwordShowLockoutFailures"`
	// Default policy priority.
	Priority pulumi.IntOutput `pulumi:"priority"`
	// Min length of the password recovery question answer.
	QuestionMinLength pulumi.IntPtrOutput `pulumi:"questionMinLength"`
	// Enable or disable security question password recovery: ACTIVE or INACTIVE.
	QuestionRecovery pulumi.StringPtrOutput `pulumi:"questionRecovery"`
	// Lifetime in minutes of the recovery email token.
	RecoveryEmailToken pulumi.IntPtrOutput `pulumi:"recoveryEmailToken"`
	// When an Active Directory user is locked out of Okta, the Okta unlock operation should also
	// attempt to unlock the user's Windows account.
	SkipUnlock pulumi.BoolPtrOutput `pulumi:"skipUnlock"`
	// Enable or disable SMS password recovery: ACTIVE or INACTIVE.
	SmsRecovery pulumi.StringPtrOutput `pulumi:"smsRecovery"`
	// Default policy status.
	Status pulumi.StringOutput `pulumi:"status"`
}

// NewPolicyPasswordDefault registers a new resource with the given unique name, arguments, and options.
func NewPolicyPasswordDefault(ctx *pulumi.Context,
	name string, args *PolicyPasswordDefaultArgs, opts ...pulumi.ResourceOption) (*PolicyPasswordDefault, error) {
	if args == nil {
		args = &PolicyPasswordDefaultArgs{}
	}

	var resource PolicyPasswordDefault
	err := ctx.RegisterResource("okta:index/policyPasswordDefault:PolicyPasswordDefault", name, args, &resource, opts...)
	if err != nil {
		return nil, err
	}
	return &resource, nil
}

// GetPolicyPasswordDefault gets an existing PolicyPasswordDefault resource's state with the given name, ID, and optional
// state properties that are used to uniquely qualify the lookup (nil if not required).
func GetPolicyPasswordDefault(ctx *pulumi.Context,
	name string, id pulumi.IDInput, state *PolicyPasswordDefaultState, opts ...pulumi.ResourceOption) (*PolicyPasswordDefault, error) {
	var resource PolicyPasswordDefault
	err := ctx.ReadResource("okta:index/policyPasswordDefault:PolicyPasswordDefault", name, id, state, &resource, opts...)
	if err != nil {
		return nil, err
	}
	return &resource, nil
}

// Input properties used for looking up and filtering PolicyPasswordDefault resources.
type policyPasswordDefaultState struct {
	// Enable or disable voice call password recovery: ACTIVE or INACTIVE.
	CallRecovery *string `pulumi:"callRecovery"`
	// Default authentication provider.
	DefaultAuthProvider *string `pulumi:"defaultAuthProvider"`
	// ID of the default Okta group.
	DefaultIncludedGroupId *string `pulumi:"defaultIncludedGroupId"`
	// Default policy description.
	Description *string `pulumi:"description"`
	// Enable or disable email password recovery: ACTIVE or INACTIVE.
	EmailRecovery *string `pulumi:"emailRecovery"`
	// Default policy name.
	Name *string `pulumi:"name"`
	// Number of minutes before a locked account is unlocked: 0 = no limit.
	PasswordAutoUnlockMinutes *int `pulumi:"passwordAutoUnlockMinutes"`
	// Check Passwords Against Common Password Dictionary.
	PasswordDictionaryLookup *bool `pulumi:"passwordDictionaryLookup"`
	// User firstName attribute must be excluded from the password.
	PasswordExcludeFirstName *bool `pulumi:"passwordExcludeFirstName"`
	// User lastName attribute must be excluded from the password.
	PasswordExcludeLastName *bool `pulumi:"passwordExcludeLastName"`
	// If the username must be excluded from the password.
	PasswordExcludeUsername *bool `pulumi:"passwordExcludeUsername"`
	// Length in days a user will be warned before password expiry: 0 = no warning.
	PasswordExpireWarnDays *int `pulumi:"passwordExpireWarnDays"`
	// Number of distinct passwords that must be created before they can be reused: 0 =
	// none.
	PasswordHistoryCount *int `pulumi:"passwordHistoryCount"`
	// Notification channels to use to notify a user when their account
	// has been locked.
	PasswordLockoutNotificationChannels []string `pulumi:"passwordLockoutNotificationChannels"`
	// Length in days a password is valid before expiry: 0 = no limit.,
	PasswordMaxAgeDays *int `pulumi:"passwordMaxAgeDays"`
	// Number of unsuccessful login attempts allowed before lockout: 0 = no
	// limit.
	PasswordMaxLockoutAttempts *int `pulumi:"passwordMaxLockoutAttempts"`
	// Minimum time interval in minutes between password changes: 0 = no limit.
	PasswordMinAgeMinutes *int `pulumi:"passwordMinAgeMinutes"`
	// Minimum password length. Default is 8.
	PasswordMinLength *int `pulumi:"passwordMinLength"`
	// Minimum number of lower case characters in a password.
	PasswordMinLowercase *int `pulumi:"passwordMinLowercase"`
	// Minimum number of numbers in a password.
	PasswordMinNumber *int `pulumi:"passwordMinNumber"`
	// Minimum number of symbols in a password.
	PasswordMinSymbol *int `pulumi:"passwordMinSymbol"`
	// Minimum number of upper case characters in a password.
	PasswordMinUppercase *int `pulumi:"passwordMinUppercase"`
	// If a user should be informed when their account is locked.
	PasswordShowLockoutFailures *bool `pulumi:"passwordShowLockoutFailures"`
	// Default policy priority.
	Priority *int `pulumi:"priority"`
	// Min length of the password recovery question answer.
	QuestionMinLength *int `pulumi:"questionMinLength"`
	// Enable or disable security question password recovery: ACTIVE or INACTIVE.
	QuestionRecovery *string `pulumi:"questionRecovery"`
	// Lifetime in minutes of the recovery email token.
	RecoveryEmailToken *int `pulumi:"recoveryEmailToken"`
	// When an Active Directory user is locked out of Okta, the Okta unlock operation should also
	// attempt to unlock the user's Windows account.
	SkipUnlock *bool `pulumi:"skipUnlock"`
	// Enable or disable SMS password recovery: ACTIVE or INACTIVE.
	SmsRecovery *string `pulumi:"smsRecovery"`
	// Default policy status.
	Status *string `pulumi:"status"`
}

type PolicyPasswordDefaultState struct {
	// Enable or disable voice call password recovery: ACTIVE or INACTIVE.
	CallRecovery pulumi.StringPtrInput
	// Default authentication provider.
	DefaultAuthProvider pulumi.StringPtrInput
	// ID of the default Okta group.
	DefaultIncludedGroupId pulumi.StringPtrInput
	// Default policy description.
	Description pulumi.StringPtrInput
	// Enable or disable email password recovery: ACTIVE or INACTIVE.
	EmailRecovery pulumi.StringPtrInput
	// Default policy name.
	Name pulumi.StringPtrInput
	// Number of minutes before a locked account is unlocked: 0 = no limit.
	PasswordAutoUnlockMinutes pulumi.IntPtrInput
	// Check Passwords Against Common Password Dictionary.
	PasswordDictionaryLookup pulumi.BoolPtrInput
	// User firstName attribute must be excluded from the password.
	PasswordExcludeFirstName pulumi.BoolPtrInput
	// User lastName attribute must be excluded from the password.
	PasswordExcludeLastName pulumi.BoolPtrInput
	// If the username must be excluded from the password.
	PasswordExcludeUsername pulumi.BoolPtrInput
	// Length in days a user will be warned before password expiry: 0 = no warning.
	PasswordExpireWarnDays pulumi.IntPtrInput
	// Number of distinct passwords that must be created before they can be reused: 0 =
	// none.
	PasswordHistoryCount pulumi.IntPtrInput
	// Notification channels to use to notify a user when their account
	// has been locked.
	PasswordLockoutNotificationChannels pulumi.StringArrayInput
	// Length in days a password is valid before expiry: 0 = no limit.,
	PasswordMaxAgeDays pulumi.IntPtrInput
	// Number of unsuccessful login attempts allowed before lockout: 0 = no
	// limit.
	PasswordMaxLockoutAttempts pulumi.IntPtrInput
	// Minimum time interval in minutes between password changes: 0 = no limit.
	PasswordMinAgeMinutes pulumi.IntPtrInput
	// Minimum password length. Default is 8.
	PasswordMinLength pulumi.IntPtrInput
	// Minimum number of lower case characters in a password.
	PasswordMinLowercase pulumi.IntPtrInput
	// Minimum number of numbers in a password.
	PasswordMinNumber pulumi.IntPtrInput
	// Minimum number of symbols in a password.
	PasswordMinSymbol pulumi.IntPtrInput
	// Minimum number of upper case characters in a password.
	PasswordMinUppercase pulumi.IntPtrInput
	// If a user should be informed when their account is locked.
	PasswordShowLockoutFailures pulumi.BoolPtrInput
	// Default policy priority.
	Priority pulumi.IntPtrInput
	// Min length of the password recovery question answer.
	QuestionMinLength pulumi.IntPtrInput
	// Enable or disable security question password recovery: ACTIVE or INACTIVE.
	QuestionRecovery pulumi.StringPtrInput
	// Lifetime in minutes of the recovery email token.
	RecoveryEmailToken pulumi.IntPtrInput
	// When an Active Directory user is locked out of Okta, the Okta unlock operation should also
	// attempt to unlock the user's Windows account.
	SkipUnlock pulumi.BoolPtrInput
	// Enable or disable SMS password recovery: ACTIVE or INACTIVE.
	SmsRecovery pulumi.StringPtrInput
	// Default policy status.
	Status pulumi.StringPtrInput
}

func (PolicyPasswordDefaultState) ElementType() reflect.Type {
	return reflect.TypeOf((*policyPasswordDefaultState)(nil)).Elem()
}

type policyPasswordDefaultArgs struct {
	// Enable or disable voice call password recovery: ACTIVE or INACTIVE.
	CallRecovery *string `pulumi:"callRecovery"`
	// Enable or disable email password recovery: ACTIVE or INACTIVE.
	EmailRecovery *string `pulumi:"emailRecovery"`
	// Number of minutes before a locked account is unlocked: 0 = no limit.
	PasswordAutoUnlockMinutes *int `pulumi:"passwordAutoUnlockMinutes"`
	// Check Passwords Against Common Password Dictionary.
	PasswordDictionaryLookup *bool `pulumi:"passwordDictionaryLookup"`
	// User firstName attribute must be excluded from the password.
	PasswordExcludeFirstName *bool `pulumi:"passwordExcludeFirstName"`
	// User lastName attribute must be excluded from the password.
	PasswordExcludeLastName *bool `pulumi:"passwordExcludeLastName"`
	// If the username must be excluded from the password.
	PasswordExcludeUsername *bool `pulumi:"passwordExcludeUsername"`
	// Length in days a user will be warned before password expiry: 0 = no warning.
	PasswordExpireWarnDays *int `pulumi:"passwordExpireWarnDays"`
	// Number of distinct passwords that must be created before they can be reused: 0 =
	// none.
	PasswordHistoryCount *int `pulumi:"passwordHistoryCount"`
	// Notification channels to use to notify a user when their account
	// has been locked.
	PasswordLockoutNotificationChannels []string `pulumi:"passwordLockoutNotificationChannels"`
	// Length in days a password is valid before expiry: 0 = no limit.,
	PasswordMaxAgeDays *int `pulumi:"passwordMaxAgeDays"`
	// Number of unsuccessful login attempts allowed before lockout: 0 = no
	// limit.
	PasswordMaxLockoutAttempts *int `pulumi:"passwordMaxLockoutAttempts"`
	// Minimum time interval in minutes between password changes: 0 = no limit.
	PasswordMinAgeMinutes *int `pulumi:"passwordMinAgeMinutes"`
	// Minimum password length. Default is 8.
	PasswordMinLength *int `pulumi:"passwordMinLength"`
	// Minimum number of lower case characters in a password.
	PasswordMinLowercase *int `pulumi:"passwordMinLowercase"`
	// Minimum number of numbers in a password.
	PasswordMinNumber *int `pulumi:"passwordMinNumber"`
	// Minimum number of symbols in a password.
	PasswordMinSymbol *int `pulumi:"passwordMinSymbol"`
	// Minimum number of upper case characters in a password.
	PasswordMinUppercase *int `pulumi:"passwordMinUppercase"`
	// If a user should be informed when their account is locked.
	PasswordShowLockoutFailures *bool `pulumi:"passwordShowLockoutFailures"`
	// Min length of the password recovery question answer.
	QuestionMinLength *int `pulumi:"questionMinLength"`
	// Enable or disable security question password recovery: ACTIVE or INACTIVE.
	QuestionRecovery *string `pulumi:"questionRecovery"`
	// Lifetime in minutes of the recovery email token.
	RecoveryEmailToken *int `pulumi:"recoveryEmailToken"`
	// When an Active Directory user is locked out of Okta, the Okta unlock operation should also
	// attempt to unlock the user's Windows account.
	SkipUnlock *bool `pulumi:"skipUnlock"`
	// Enable or disable SMS password recovery: ACTIVE or INACTIVE.
	SmsRecovery *string `pulumi:"smsRecovery"`
}

// The set of arguments for constructing a PolicyPasswordDefault resource.
type PolicyPasswordDefaultArgs struct {
	// Enable or disable voice call password recovery: ACTIVE or INACTIVE.
	CallRecovery pulumi.StringPtrInput
	// Enable or disable email password recovery: ACTIVE or INACTIVE.
	EmailRecovery pulumi.StringPtrInput
	// Number of minutes before a locked account is unlocked: 0 = no limit.
	PasswordAutoUnlockMinutes pulumi.IntPtrInput
	// Check Passwords Against Common Password Dictionary.
	PasswordDictionaryLookup pulumi.BoolPtrInput
	// User firstName attribute must be excluded from the password.
	PasswordExcludeFirstName pulumi.BoolPtrInput
	// User lastName attribute must be excluded from the password.
	PasswordExcludeLastName pulumi.BoolPtrInput
	// If the username must be excluded from the password.
	PasswordExcludeUsername pulumi.BoolPtrInput
	// Length in days a user will be warned before password expiry: 0 = no warning.
	PasswordExpireWarnDays pulumi.IntPtrInput
	// Number of distinct passwords that must be created before they can be reused: 0 =
	// none.
	PasswordHistoryCount pulumi.IntPtrInput
	// Notification channels to use to notify a user when their account
	// has been locked.
	PasswordLockoutNotificationChannels pulumi.StringArrayInput
	// Length in days a password is valid before expiry: 0 = no limit.,
	PasswordMaxAgeDays pulumi.IntPtrInput
	// Number of unsuccessful login attempts allowed before lockout: 0 = no
	// limit.
	PasswordMaxLockoutAttempts pulumi.IntPtrInput
	// Minimum time interval in minutes between password changes: 0 = no limit.
	PasswordMinAgeMinutes pulumi.IntPtrInput
	// Minimum password length. Default is 8.
	PasswordMinLength pulumi.IntPtrInput
	// Minimum number of lower case characters in a password.
	PasswordMinLowercase pulumi.IntPtrInput
	// Minimum number of numbers in a password.
	PasswordMinNumber pulumi.IntPtrInput
	// Minimum number of symbols in a password.
	PasswordMinSymbol pulumi.IntPtrInput
	// Minimum number of upper case characters in a password.
	PasswordMinUppercase pulumi.IntPtrInput
	// If a user should be informed when their account is locked.
	PasswordShowLockoutFailures pulumi.BoolPtrInput
	// Min length of the password recovery question answer.
	QuestionMinLength pulumi.IntPtrInput
	// Enable or disable security question password recovery: ACTIVE or INACTIVE.
	QuestionRecovery pulumi.StringPtrInput
	// Lifetime in minutes of the recovery email token.
	RecoveryEmailToken pulumi.IntPtrInput
	// When an Active Directory user is locked out of Okta, the Okta unlock operation should also
	// attempt to unlock the user's Windows account.
	SkipUnlock pulumi.BoolPtrInput
	// Enable or disable SMS password recovery: ACTIVE or INACTIVE.
	SmsRecovery pulumi.StringPtrInput
}

func (PolicyPasswordDefaultArgs) ElementType() reflect.Type {
	return reflect.TypeOf((*policyPasswordDefaultArgs)(nil)).Elem()
}

type PolicyPasswordDefaultInput interface {
	pulumi.Input

	ToPolicyPasswordDefaultOutput() PolicyPasswordDefaultOutput
	ToPolicyPasswordDefaultOutputWithContext(ctx context.Context) PolicyPasswordDefaultOutput
}

func (*PolicyPasswordDefault) ElementType() reflect.Type {
	return reflect.TypeOf((**PolicyPasswordDefault)(nil)).Elem()
}

func (i *PolicyPasswordDefault) ToPolicyPasswordDefaultOutput() PolicyPasswordDefaultOutput {
	return i.ToPolicyPasswordDefaultOutputWithContext(context.Background())
}

func (i *PolicyPasswordDefault) ToPolicyPasswordDefaultOutputWithContext(ctx context.Context) PolicyPasswordDefaultOutput {
	return pulumi.ToOutputWithContext(ctx, i).(PolicyPasswordDefaultOutput)
}

// PolicyPasswordDefaultArrayInput is an input type that accepts PolicyPasswordDefaultArray and PolicyPasswordDefaultArrayOutput values.
// You can construct a concrete instance of `PolicyPasswordDefaultArrayInput` via:
//
//	PolicyPasswordDefaultArray{ PolicyPasswordDefaultArgs{...} }
type PolicyPasswordDefaultArrayInput interface {
	pulumi.Input

	ToPolicyPasswordDefaultArrayOutput() PolicyPasswordDefaultArrayOutput
	ToPolicyPasswordDefaultArrayOutputWithContext(context.Context) PolicyPasswordDefaultArrayOutput
}

type PolicyPasswordDefaultArray []PolicyPasswordDefaultInput

func (PolicyPasswordDefaultArray) ElementType() reflect.Type {
	return reflect.TypeOf((*[]*PolicyPasswordDefault)(nil)).Elem()
}

func (i PolicyPasswordDefaultArray) ToPolicyPasswordDefaultArrayOutput() PolicyPasswordDefaultArrayOutput {
	return i.ToPolicyPasswordDefaultArrayOutputWithContext(context.Background())
}

func (i PolicyPasswordDefaultArray) ToPolicyPasswordDefaultArrayOutputWithContext(ctx context.Context) PolicyPasswordDefaultArrayOutput {
	return pulumi.ToOutputWithContext(ctx, i).(PolicyPasswordDefaultArrayOutput)
}

// PolicyPasswordDefaultMapInput is an input type that accepts PolicyPasswordDefaultMap and PolicyPasswordDefaultMapOutput values.
// You can construct a concrete instance of `PolicyPasswordDefaultMapInput` via:
//
//	PolicyPasswordDefaultMap{ "key": PolicyPasswordDefaultArgs{...} }
type PolicyPasswordDefaultMapInput interface {
	pulumi.Input

	ToPolicyPasswordDefaultMapOutput() PolicyPasswordDefaultMapOutput
	ToPolicyPasswordDefaultMapOutputWithContext(context.Context) PolicyPasswordDefaultMapOutput
}

type PolicyPasswordDefaultMap map[string]PolicyPasswordDefaultInput

func (PolicyPasswordDefaultMap) ElementType() reflect.Type {
	return reflect.TypeOf((*map[string]*PolicyPasswordDefault)(nil)).Elem()
}

func (i PolicyPasswordDefaultMap) ToPolicyPasswordDefaultMapOutput() PolicyPasswordDefaultMapOutput {
	return i.ToPolicyPasswordDefaultMapOutputWithContext(context.Background())
}

func (i PolicyPasswordDefaultMap) ToPolicyPasswordDefaultMapOutputWithContext(ctx context.Context) PolicyPasswordDefaultMapOutput {
	return pulumi.ToOutputWithContext(ctx, i).(PolicyPasswordDefaultMapOutput)
}

type PolicyPasswordDefaultOutput struct{ *pulumi.OutputState }

func (PolicyPasswordDefaultOutput) ElementType() reflect.Type {
	return reflect.TypeOf((**PolicyPasswordDefault)(nil)).Elem()
}

func (o PolicyPasswordDefaultOutput) ToPolicyPasswordDefaultOutput() PolicyPasswordDefaultOutput {
	return o
}

func (o PolicyPasswordDefaultOutput) ToPolicyPasswordDefaultOutputWithContext(ctx context.Context) PolicyPasswordDefaultOutput {
	return o
}

// Enable or disable voice call password recovery: ACTIVE or INACTIVE.
func (o PolicyPasswordDefaultOutput) CallRecovery() pulumi.StringPtrOutput {
	return o.ApplyT(func(v *PolicyPasswordDefault) pulumi.StringPtrOutput { return v.CallRecovery }).(pulumi.StringPtrOutput)
}

// Default authentication provider.
func (o PolicyPasswordDefaultOutput) DefaultAuthProvider() pulumi.StringOutput {
	return o.ApplyT(func(v *PolicyPasswordDefault) pulumi.StringOutput { return v.DefaultAuthProvider }).(pulumi.StringOutput)
}

// ID of the default Okta group.
func (o PolicyPasswordDefaultOutput) DefaultIncludedGroupId() pulumi.StringOutput {
	return o.ApplyT(func(v *PolicyPasswordDefault) pulumi.StringOutput { return v.DefaultIncludedGroupId }).(pulumi.StringOutput)
}

// Default policy description.
func (o PolicyPasswordDefaultOutput) Description() pulumi.StringOutput {
	return o.ApplyT(func(v *PolicyPasswordDefault) pulumi.StringOutput { return v.Description }).(pulumi.StringOutput)
}

// Enable or disable email password recovery: ACTIVE or INACTIVE.
func (o PolicyPasswordDefaultOutput) EmailRecovery() pulumi.StringPtrOutput {
	return o.ApplyT(func(v *PolicyPasswordDefault) pulumi.StringPtrOutput { return v.EmailRecovery }).(pulumi.StringPtrOutput)
}

// Default policy name.
func (o PolicyPasswordDefaultOutput) Name() pulumi.StringOutput {
	return o.ApplyT(func(v *PolicyPasswordDefault) pulumi.StringOutput { return v.Name }).(pulumi.StringOutput)
}

// Number of minutes before a locked account is unlocked: 0 = no limit.
func (o PolicyPasswordDefaultOutput) PasswordAutoUnlockMinutes() pulumi.IntPtrOutput {
	return o.ApplyT(func(v *PolicyPasswordDefault) pulumi.IntPtrOutput { return v.PasswordAutoUnlockMinutes }).(pulumi.IntPtrOutput)
}

// Check Passwords Against Common Password Dictionary.
func (o PolicyPasswordDefaultOutput) PasswordDictionaryLookup() pulumi.BoolPtrOutput {
	return o.ApplyT(func(v *PolicyPasswordDefault) pulumi.BoolPtrOutput { return v.PasswordDictionaryLookup }).(pulumi.BoolPtrOutput)
}

// User firstName attribute must be excluded from the password.
func (o PolicyPasswordDefaultOutput) PasswordExcludeFirstName() pulumi.BoolPtrOutput {
	return o.ApplyT(func(v *PolicyPasswordDefault) pulumi.BoolPtrOutput { return v.PasswordExcludeFirstName }).(pulumi.BoolPtrOutput)
}

// User lastName attribute must be excluded from the password.
func (o PolicyPasswordDefaultOutput) PasswordExcludeLastName() pulumi.BoolPtrOutput {
	return o.ApplyT(func(v *PolicyPasswordDefault) pulumi.BoolPtrOutput { return v.PasswordExcludeLastName }).(pulumi.BoolPtrOutput)
}

// If the username must be excluded from the password.
func (o PolicyPasswordDefaultOutput) PasswordExcludeUsername() pulumi.BoolPtrOutput {
	return o.ApplyT(func(v *PolicyPasswordDefault) pulumi.BoolPtrOutput { return v.PasswordExcludeUsername }).(pulumi.BoolPtrOutput)
}

// Length in days a user will be warned before password expiry: 0 = no warning.
func (o PolicyPasswordDefaultOutput) PasswordExpireWarnDays() pulumi.IntPtrOutput {
	return o.ApplyT(func(v *PolicyPasswordDefault) pulumi.IntPtrOutput { return v.PasswordExpireWarnDays }).(pulumi.IntPtrOutput)
}

// Number of distinct passwords that must be created before they can be reused: 0 =
// none.
func (o PolicyPasswordDefaultOutput) PasswordHistoryCount() pulumi.IntPtrOutput {
	return o.ApplyT(func(v *PolicyPasswordDefault) pulumi.IntPtrOutput { return v.PasswordHistoryCount }).(pulumi.IntPtrOutput)
}

// Notification channels to use to notify a user when their account
// has been locked.
func (o PolicyPasswordDefaultOutput) PasswordLockoutNotificationChannels() pulumi.StringArrayOutput {
	return o.ApplyT(func(v *PolicyPasswordDefault) pulumi.StringArrayOutput { return v.PasswordLockoutNotificationChannels }).(pulumi.StringArrayOutput)
}

// Length in days a password is valid before expiry: 0 = no limit.,
func (o PolicyPasswordDefaultOutput) PasswordMaxAgeDays() pulumi.IntPtrOutput {
	return o.ApplyT(func(v *PolicyPasswordDefault) pulumi.IntPtrOutput { return v.PasswordMaxAgeDays }).(pulumi.IntPtrOutput)
}

// Number of unsuccessful login attempts allowed before lockout: 0 = no
// limit.
func (o PolicyPasswordDefaultOutput) PasswordMaxLockoutAttempts() pulumi.IntPtrOutput {
	return o.ApplyT(func(v *PolicyPasswordDefault) pulumi.IntPtrOutput { return v.PasswordMaxLockoutAttempts }).(pulumi.IntPtrOutput)
}

// Minimum time interval in minutes between password changes: 0 = no limit.
func (o PolicyPasswordDefaultOutput) PasswordMinAgeMinutes() pulumi.IntPtrOutput {
	return o.ApplyT(func(v *PolicyPasswordDefault) pulumi.IntPtrOutput { return v.PasswordMinAgeMinutes }).(pulumi.IntPtrOutput)
}

// Minimum password length. Default is 8.
func (o PolicyPasswordDefaultOutput) PasswordMinLength() pulumi.IntPtrOutput {
	return o.ApplyT(func(v *PolicyPasswordDefault) pulumi.IntPtrOutput { return v.PasswordMinLength }).(pulumi.IntPtrOutput)
}

// Minimum number of lower case characters in a password.
func (o PolicyPasswordDefaultOutput) PasswordMinLowercase() pulumi.IntPtrOutput {
	return o.ApplyT(func(v *PolicyPasswordDefault) pulumi.IntPtrOutput { return v.PasswordMinLowercase }).(pulumi.IntPtrOutput)
}

// Minimum number of numbers in a password.
func (o PolicyPasswordDefaultOutput) PasswordMinNumber() pulumi.IntPtrOutput {
	return o.ApplyT(func(v *PolicyPasswordDefault) pulumi.IntPtrOutput { return v.PasswordMinNumber }).(pulumi.IntPtrOutput)
}

// Minimum number of symbols in a password.
func (o PolicyPasswordDefaultOutput) PasswordMinSymbol() pulumi.IntPtrOutput {
	return o.ApplyT(func(v *PolicyPasswordDefault) pulumi.IntPtrOutput { return v.PasswordMinSymbol }).(pulumi.IntPtrOutput)
}

// Minimum number of upper case characters in a password.
func (o PolicyPasswordDefaultOutput) PasswordMinUppercase() pulumi.IntPtrOutput {
	return o.ApplyT(func(v *PolicyPasswordDefault) pulumi.IntPtrOutput { return v.PasswordMinUppercase }).(pulumi.IntPtrOutput)
}

// If a user should be informed when their account is locked.
func (o PolicyPasswordDefaultOutput) PasswordShowLockoutFailures() pulumi.BoolPtrOutput {
	return o.ApplyT(func(v *PolicyPasswordDefault) pulumi.BoolPtrOutput { return v.PasswordShowLockoutFailures }).(pulumi.BoolPtrOutput)
}

// Default policy priority.
func (o PolicyPasswordDefaultOutput) Priority() pulumi.IntOutput {
	return o.ApplyT(func(v *PolicyPasswordDefault) pulumi.IntOutput { return v.Priority }).(pulumi.IntOutput)
}

// Min length of the password recovery question answer.
func (o PolicyPasswordDefaultOutput) QuestionMinLength() pulumi.IntPtrOutput {
	return o.ApplyT(func(v *PolicyPasswordDefault) pulumi.IntPtrOutput { return v.QuestionMinLength }).(pulumi.IntPtrOutput)
}

// Enable or disable security question password recovery: ACTIVE or INACTIVE.
func (o PolicyPasswordDefaultOutput) QuestionRecovery() pulumi.StringPtrOutput {
	return o.ApplyT(func(v *PolicyPasswordDefault) pulumi.StringPtrOutput { return v.QuestionRecovery }).(pulumi.StringPtrOutput)
}

// Lifetime in minutes of the recovery email token.
func (o PolicyPasswordDefaultOutput) RecoveryEmailToken() pulumi.IntPtrOutput {
	return o.ApplyT(func(v *PolicyPasswordDefault) pulumi.IntPtrOutput { return v.RecoveryEmailToken }).(pulumi.IntPtrOutput)
}

// When an Active Directory user is locked out of Okta, the Okta unlock operation should also
// attempt to unlock the user's Windows account.
func (o PolicyPasswordDefaultOutput) SkipUnlock() pulumi.BoolPtrOutput {
	return o.ApplyT(func(v *PolicyPasswordDefault) pulumi.BoolPtrOutput { return v.SkipUnlock }).(pulumi.BoolPtrOutput)
}

// Enable or disable SMS password recovery: ACTIVE or INACTIVE.
func (o PolicyPasswordDefaultOutput) SmsRecovery() pulumi.StringPtrOutput {
	return o.ApplyT(func(v *PolicyPasswordDefault) pulumi.StringPtrOutput { return v.SmsRecovery }).(pulumi.StringPtrOutput)
}

// Default policy status.
func (o PolicyPasswordDefaultOutput) Status() pulumi.StringOutput {
	return o.ApplyT(func(v *PolicyPasswordDefault) pulumi.StringOutput { return v.Status }).(pulumi.StringOutput)
}

type PolicyPasswordDefaultArrayOutput struct{ *pulumi.OutputState }

func (PolicyPasswordDefaultArrayOutput) ElementType() reflect.Type {
	return reflect.TypeOf((*[]*PolicyPasswordDefault)(nil)).Elem()
}

func (o PolicyPasswordDefaultArrayOutput) ToPolicyPasswordDefaultArrayOutput() PolicyPasswordDefaultArrayOutput {
	return o
}

func (o PolicyPasswordDefaultArrayOutput) ToPolicyPasswordDefaultArrayOutputWithContext(ctx context.Context) PolicyPasswordDefaultArrayOutput {
	return o
}

func (o PolicyPasswordDefaultArrayOutput) Index(i pulumi.IntInput) PolicyPasswordDefaultOutput {
	return pulumi.All(o, i).ApplyT(func(vs []interface{}) *PolicyPasswordDefault {
		return vs[0].([]*PolicyPasswordDefault)[vs[1].(int)]
	}).(PolicyPasswordDefaultOutput)
}

type PolicyPasswordDefaultMapOutput struct{ *pulumi.OutputState }

func (PolicyPasswordDefaultMapOutput) ElementType() reflect.Type {
	return reflect.TypeOf((*map[string]*PolicyPasswordDefault)(nil)).Elem()
}

func (o PolicyPasswordDefaultMapOutput) ToPolicyPasswordDefaultMapOutput() PolicyPasswordDefaultMapOutput {
	return o
}

func (o PolicyPasswordDefaultMapOutput) ToPolicyPasswordDefaultMapOutputWithContext(ctx context.Context) PolicyPasswordDefaultMapOutput {
	return o
}

func (o PolicyPasswordDefaultMapOutput) MapIndex(k pulumi.StringInput) PolicyPasswordDefaultOutput {
	return pulumi.All(o, k).ApplyT(func(vs []interface{}) *PolicyPasswordDefault {
		return vs[0].(map[string]*PolicyPasswordDefault)[vs[1].(string)]
	}).(PolicyPasswordDefaultOutput)
}

func init() {
	pulumi.RegisterInputType(reflect.TypeOf((*PolicyPasswordDefaultInput)(nil)).Elem(), &PolicyPasswordDefault{})
	pulumi.RegisterInputType(reflect.TypeOf((*PolicyPasswordDefaultArrayInput)(nil)).Elem(), PolicyPasswordDefaultArray{})
	pulumi.RegisterInputType(reflect.TypeOf((*PolicyPasswordDefaultMapInput)(nil)).Elem(), PolicyPasswordDefaultMap{})
	pulumi.RegisterOutputType(PolicyPasswordDefaultOutput{})
	pulumi.RegisterOutputType(PolicyPasswordDefaultArrayOutput{})
	pulumi.RegisterOutputType(PolicyPasswordDefaultMapOutput{})
}