@pierskarsenbarg/sdm 1.32.0 → 1.33.0
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/account.d.ts +4 -4
- package/account.js +4 -4
- package/accountAttachment.d.ts +1 -1
- package/accountAttachment.js +1 -1
- package/accountGroup.d.ts +4 -4
- package/accountGroup.js +4 -4
- package/approvalWorkflow.d.ts +10 -6
- package/approvalWorkflow.js +10 -6
- package/approvalWorkflow.js.map +1 -1
- package/getAccount.d.ts +8 -8
- package/getAccount.js +8 -8
- package/getAccountGroup.d.ts +4 -4
- package/getAccountGroup.js +4 -4
- package/getApprovalWorkflow.d.ts +4 -4
- package/getApprovalWorkflow.js +4 -4
- package/getGroupRole.d.ts +4 -4
- package/getGroupRole.js +4 -4
- package/getNode.d.ts +4 -4
- package/getNode.js +4 -4
- package/getResource.d.ts +4 -4
- package/getResource.js +4 -4
- package/getRole.d.ts +2 -0
- package/getRole.js +2 -0
- package/getRole.js.map +1 -1
- package/getWorkflow.d.ts +6 -0
- package/getWorkflow.js +6 -0
- package/getWorkflow.js.map +1 -1
- package/getWorkflowRole.d.ts +6 -2
- package/getWorkflowRole.js +6 -2
- package/getWorkflowRole.js.map +1 -1
- package/group.d.ts +8 -5
- package/group.js +8 -5
- package/group.js.map +1 -1
- package/groupRole.d.ts +4 -4
- package/groupRole.js +4 -4
- package/identityAlias.d.ts +13 -0
- package/identityAlias.js +13 -0
- package/identityAlias.js.map +1 -1
- package/identitySet.d.ts +1 -1
- package/identitySet.js +1 -1
- package/node.d.ts +4 -4
- package/node.js +4 -4
- package/package.json +1 -1
- package/policy.d.ts +3 -4
- package/policy.js +3 -4
- package/policy.js.map +1 -1
- package/proxyClusterKey.d.ts +1 -1
- package/proxyClusterKey.js +1 -1
- package/remoteIdentity.d.ts +13 -0
- package/remoteIdentity.js +13 -0
- package/remoteIdentity.js.map +1 -1
- package/role.d.ts +57 -45
- package/role.js +57 -45
- package/role.js.map +1 -1
- package/secretStore.d.ts +60 -0
- package/secretStore.js +10 -0
- package/secretStore.js.map +1 -1
- package/types/input.d.ts +148 -0
- package/types/output.d.ts +321 -0
- package/workflow.d.ts +10 -4
- package/workflow.js +10 -4
- package/workflow.js.map +1 -1
- package/workflowRole.d.ts +4 -4
- package/workflowRole.js +4 -4
package/role.js
CHANGED
|
@@ -15,63 +15,75 @@ const utilities = require("./utilities");
|
|
|
15
15
|
* import * as pulumi from "@pulumi/pulumi";
|
|
16
16
|
* import * as sdm from "@pierskarsenbarg/sdm";
|
|
17
17
|
*
|
|
18
|
-
* const engineers = new sdm.Role("engineers", {
|
|
19
|
-
*
|
|
20
|
-
* }});
|
|
21
|
-
* const example_role = new sdm.Role("example-role", {accessRules: JSON.stringify([
|
|
22
|
-
* {
|
|
23
|
-
* tags: {
|
|
24
|
-
* env: "staging",
|
|
25
|
-
* },
|
|
26
|
-
* },
|
|
27
|
-
* {
|
|
28
|
-
* type: "postgres",
|
|
29
|
-
* tags: {
|
|
30
|
-
* region: "us-west",
|
|
31
|
-
* env: "dev",
|
|
32
|
-
* },
|
|
33
|
-
* },
|
|
34
|
-
* {
|
|
35
|
-
* ids: ["rs-093e6f3061eb4dad"],
|
|
36
|
-
* },
|
|
37
|
-
* ])});
|
|
38
|
-
* const k8s_admin = new sdm.Role("k8s-admin", {accessRules: JSON.stringify([{
|
|
18
|
+
* const engineers = new sdm.Role("engineers", {
|
|
19
|
+
* name: "engineers",
|
|
39
20
|
* tags: {
|
|
40
|
-
*
|
|
21
|
+
* foo: "bar",
|
|
41
22
|
* },
|
|
42
|
-
*
|
|
43
|
-
*
|
|
44
|
-
*
|
|
23
|
+
* });
|
|
24
|
+
* const example_role = new sdm.Role("example-role", {
|
|
25
|
+
* name: "example-role",
|
|
26
|
+
* accessRules: JSON.stringify([
|
|
27
|
+
* {
|
|
28
|
+
* tags: {
|
|
29
|
+
* env: "staging",
|
|
30
|
+
* },
|
|
45
31
|
* },
|
|
46
|
-
*
|
|
47
|
-
*
|
|
48
|
-
*
|
|
49
|
-
*
|
|
50
|
-
*
|
|
32
|
+
* {
|
|
33
|
+
* type: "postgres",
|
|
34
|
+
* tags: {
|
|
35
|
+
* region: "us-west",
|
|
36
|
+
* env: "dev",
|
|
37
|
+
* },
|
|
38
|
+
* },
|
|
39
|
+
* {
|
|
40
|
+
* ids: ["rs-093e6f3061eb4dad"],
|
|
41
|
+
* },
|
|
42
|
+
* ]),
|
|
43
|
+
* });
|
|
44
|
+
* const k8s_admin = new sdm.Role("k8s-admin", {
|
|
45
|
+
* name: "k8s-admin",
|
|
46
|
+
* accessRules: JSON.stringify([{
|
|
51
47
|
* tags: {
|
|
52
|
-
* env: "
|
|
48
|
+
* env: "production",
|
|
53
49
|
* },
|
|
54
50
|
* privileges: {
|
|
55
51
|
* k8s: {
|
|
56
|
-
* groups: [
|
|
57
|
-
* "developers",
|
|
58
|
-
* "viewers",
|
|
59
|
-
* ],
|
|
52
|
+
* groups: ["system:masters"],
|
|
60
53
|
* },
|
|
61
54
|
* },
|
|
62
|
-
* },
|
|
63
|
-
*
|
|
64
|
-
*
|
|
65
|
-
*
|
|
66
|
-
*
|
|
55
|
+
* }]),
|
|
56
|
+
* });
|
|
57
|
+
* const k8s_developers = new sdm.Role("k8s-developers", {
|
|
58
|
+
* name: "k8s-developers",
|
|
59
|
+
* accessRules: JSON.stringify([
|
|
60
|
+
* {
|
|
61
|
+
* type: "amazon_eks",
|
|
62
|
+
* tags: {
|
|
63
|
+
* env: "dev",
|
|
64
|
+
* },
|
|
65
|
+
* privileges: {
|
|
66
|
+
* k8s: {
|
|
67
|
+
* groups: [
|
|
68
|
+
* "developers",
|
|
69
|
+
* "viewers",
|
|
70
|
+
* ],
|
|
71
|
+
* },
|
|
72
|
+
* },
|
|
67
73
|
* },
|
|
68
|
-
*
|
|
69
|
-
*
|
|
70
|
-
*
|
|
74
|
+
* {
|
|
75
|
+
* type: "kubernetes",
|
|
76
|
+
* tags: {
|
|
77
|
+
* region: "us-west",
|
|
78
|
+
* },
|
|
79
|
+
* privileges: {
|
|
80
|
+
* k8s: {
|
|
81
|
+
* groups: ["edit"],
|
|
82
|
+
* },
|
|
71
83
|
* },
|
|
72
84
|
* },
|
|
73
|
-
*
|
|
74
|
-
*
|
|
85
|
+
* ]),
|
|
86
|
+
* });
|
|
75
87
|
* ```
|
|
76
88
|
* This resource can be imported using the import command.
|
|
77
89
|
*
|
package/role.js.map
CHANGED
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"role.js","sourceRoot":"","sources":["../role.ts"],"names":[],"mappings":";AAAA,sEAAsE;AACtE,iFAAiF;;;AAEjF,yCAAyC;AACzC,yCAAyC;AAEzC
|
|
1
|
+
{"version":3,"file":"role.js","sourceRoot":"","sources":["../role.ts"],"names":[],"mappings":";AAAA,sEAAsE;AACtE,iFAAiF;;;AAEjF,yCAAyC;AACzC,yCAAyC;AAEzC;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GAyFG;AACH,MAAa,IAAK,SAAQ,MAAM,CAAC,cAAc;IAC3C;;;;;;;;OAQG;IACI,MAAM,CAAC,GAAG,CAAC,IAAY,EAAE,EAA2B,EAAE,KAAiB,EAAE,IAAmC;QAC/G,OAAO,IAAI,IAAI,CAAC,IAAI,EAAO,KAAK,EAAE,EAAE,GAAG,IAAI,EAAE,EAAE,EAAE,EAAE,EAAE,CAAC,CAAC;IAC3D,CAAC;IAKD;;;OAGG;IACI,MAAM,CAAC,UAAU,CAAC,GAAQ;QAC7B,IAAI,GAAG,KAAK,SAAS,IAAI,GAAG,KAAK,IAAI,EAAE;YACnC,OAAO,KAAK,CAAC;SAChB;QACD,OAAO,GAAG,CAAC,cAAc,CAAC,KAAK,IAAI,CAAC,YAAY,CAAC;IACrD,CAAC;IA2BD,YAAY,IAAY,EAAE,WAAkC,EAAE,IAAmC;QAC7F,IAAI,cAAc,GAAkB,EAAE,CAAC;QACvC,IAAI,GAAG,IAAI,IAAI,EAAE,CAAC;QAClB,IAAI,IAAI,CAAC,EAAE,EAAE;YACT,MAAM,KAAK,GAAG,WAAoC,CAAC;YACnD,cAAc,CAAC,aAAa,CAAC,GAAG,KAAK,EAAE,WAAW,CAAC;YACnD,cAAc,CAAC,WAAW,CAAC,GAAG,KAAK,EAAE,SAAS,CAAC;YAC/C,cAAc,CAAC,MAAM,CAAC,GAAG,KAAK,EAAE,IAAI,CAAC;YACrC,cAAc,CAAC,MAAM,CAAC,GAAG,KAAK,EAAE,IAAI,CAAC;SACxC;aAAM;YACH,MAAM,IAAI,GAAG,WAAmC,CAAC;YACjD,cAAc,CAAC,aAAa,CAAC,GAAG,IAAI,EAAE,WAAW,CAAC;YAClD,cAAc,CAAC,MAAM,CAAC,GAAG,IAAI,EAAE,IAAI,CAAC;YACpC,cAAc,CAAC,MAAM,CAAC,GAAG,IAAI,EAAE,IAAI,CAAC;YACpC,cAAc,CAAC,WAAW,CAAC,GAAG,SAAS,CAAC,OAAO,CAAC;SACnD;QACD,IAAI,GAAG,MAAM,CAAC,YAAY,CAAC,SAAS,CAAC,oBAAoB,EAAE,EAAE,IAAI,CAAC,CAAC;QACnE,KAAK,CAAC,IAAI,CAAC,YAAY,EAAE,IAAI,EAAE,cAAc,EAAE,IAAI,CAAC,CAAC;IACzD,CAAC;;AAvEL,oBAwEC;AA1DG,gBAAgB;AACO,iBAAY,GAAG,qBAAqB,CAAC"}
|
package/secretStore.d.ts
CHANGED
|
@@ -45,11 +45,31 @@ export declare class SecretStore extends pulumi.CustomResource {
|
|
|
45
45
|
readonly gcpStore: pulumi.Output<outputs.SecretStoreGcpStore | undefined>;
|
|
46
46
|
readonly keyfactorSshStore: pulumi.Output<outputs.SecretStoreKeyfactorSshStore | undefined>;
|
|
47
47
|
readonly keyfactorX509Store: pulumi.Output<outputs.SecretStoreKeyfactorX509Store | undefined>;
|
|
48
|
+
/**
|
|
49
|
+
* StrongVaultStore is currently unstable, and its API may change, or it may be removed, without a major version bump.
|
|
50
|
+
*/
|
|
51
|
+
readonly strongVault: pulumi.Output<outputs.SecretStoreStrongVault | undefined>;
|
|
48
52
|
readonly vaultApprole: pulumi.Output<outputs.SecretStoreVaultApprole | undefined>;
|
|
49
53
|
readonly vaultApproleCertSsh: pulumi.Output<outputs.SecretStoreVaultApproleCertSsh | undefined>;
|
|
50
54
|
readonly vaultApproleCertX509: pulumi.Output<outputs.SecretStoreVaultApproleCertX509 | undefined>;
|
|
51
55
|
readonly vaultAwsEc2: pulumi.Output<outputs.SecretStoreVaultAwsEc2 | undefined>;
|
|
56
|
+
/**
|
|
57
|
+
* VaultAWSEC2CertSSHStore is currently unstable, and its API may change, or it may be removed, without a major version bump.
|
|
58
|
+
*/
|
|
59
|
+
readonly vaultAwsEc2CertSsh: pulumi.Output<outputs.SecretStoreVaultAwsEc2CertSsh | undefined>;
|
|
60
|
+
/**
|
|
61
|
+
* VaultAWSEC2CertX509Store is currently unstable, and its API may change, or it may be removed, without a major version bump.
|
|
62
|
+
*/
|
|
63
|
+
readonly vaultAwsEc2CertX509: pulumi.Output<outputs.SecretStoreVaultAwsEc2CertX509 | undefined>;
|
|
52
64
|
readonly vaultAwsIam: pulumi.Output<outputs.SecretStoreVaultAwsIam | undefined>;
|
|
65
|
+
/**
|
|
66
|
+
* VaultAWSIAMCertSSHStore is currently unstable, and its API may change, or it may be removed, without a major version bump.
|
|
67
|
+
*/
|
|
68
|
+
readonly vaultAwsIamCertSsh: pulumi.Output<outputs.SecretStoreVaultAwsIamCertSsh | undefined>;
|
|
69
|
+
/**
|
|
70
|
+
* VaultAWSIAMCertX509Store is currently unstable, and its API may change, or it may be removed, without a major version bump.
|
|
71
|
+
*/
|
|
72
|
+
readonly vaultAwsIamCertX509: pulumi.Output<outputs.SecretStoreVaultAwsIamCertX509 | undefined>;
|
|
53
73
|
readonly vaultTls: pulumi.Output<outputs.SecretStoreVaultTls | undefined>;
|
|
54
74
|
readonly vaultTlsCertSsh: pulumi.Output<outputs.SecretStoreVaultTlsCertSsh | undefined>;
|
|
55
75
|
readonly vaultTlsCertX509: pulumi.Output<outputs.SecretStoreVaultTlsCertX509 | undefined>;
|
|
@@ -84,11 +104,31 @@ export interface SecretStoreState {
|
|
|
84
104
|
gcpStore?: pulumi.Input<inputs.SecretStoreGcpStore>;
|
|
85
105
|
keyfactorSshStore?: pulumi.Input<inputs.SecretStoreKeyfactorSshStore>;
|
|
86
106
|
keyfactorX509Store?: pulumi.Input<inputs.SecretStoreKeyfactorX509Store>;
|
|
107
|
+
/**
|
|
108
|
+
* StrongVaultStore is currently unstable, and its API may change, or it may be removed, without a major version bump.
|
|
109
|
+
*/
|
|
110
|
+
strongVault?: pulumi.Input<inputs.SecretStoreStrongVault>;
|
|
87
111
|
vaultApprole?: pulumi.Input<inputs.SecretStoreVaultApprole>;
|
|
88
112
|
vaultApproleCertSsh?: pulumi.Input<inputs.SecretStoreVaultApproleCertSsh>;
|
|
89
113
|
vaultApproleCertX509?: pulumi.Input<inputs.SecretStoreVaultApproleCertX509>;
|
|
90
114
|
vaultAwsEc2?: pulumi.Input<inputs.SecretStoreVaultAwsEc2>;
|
|
115
|
+
/**
|
|
116
|
+
* VaultAWSEC2CertSSHStore is currently unstable, and its API may change, or it may be removed, without a major version bump.
|
|
117
|
+
*/
|
|
118
|
+
vaultAwsEc2CertSsh?: pulumi.Input<inputs.SecretStoreVaultAwsEc2CertSsh>;
|
|
119
|
+
/**
|
|
120
|
+
* VaultAWSEC2CertX509Store is currently unstable, and its API may change, or it may be removed, without a major version bump.
|
|
121
|
+
*/
|
|
122
|
+
vaultAwsEc2CertX509?: pulumi.Input<inputs.SecretStoreVaultAwsEc2CertX509>;
|
|
91
123
|
vaultAwsIam?: pulumi.Input<inputs.SecretStoreVaultAwsIam>;
|
|
124
|
+
/**
|
|
125
|
+
* VaultAWSIAMCertSSHStore is currently unstable, and its API may change, or it may be removed, without a major version bump.
|
|
126
|
+
*/
|
|
127
|
+
vaultAwsIamCertSsh?: pulumi.Input<inputs.SecretStoreVaultAwsIamCertSsh>;
|
|
128
|
+
/**
|
|
129
|
+
* VaultAWSIAMCertX509Store is currently unstable, and its API may change, or it may be removed, without a major version bump.
|
|
130
|
+
*/
|
|
131
|
+
vaultAwsIamCertX509?: pulumi.Input<inputs.SecretStoreVaultAwsIamCertX509>;
|
|
92
132
|
vaultTls?: pulumi.Input<inputs.SecretStoreVaultTls>;
|
|
93
133
|
vaultTlsCertSsh?: pulumi.Input<inputs.SecretStoreVaultTlsCertSsh>;
|
|
94
134
|
vaultTlsCertX509?: pulumi.Input<inputs.SecretStoreVaultTlsCertX509>;
|
|
@@ -115,11 +155,31 @@ export interface SecretStoreArgs {
|
|
|
115
155
|
gcpStore?: pulumi.Input<inputs.SecretStoreGcpStore>;
|
|
116
156
|
keyfactorSshStore?: pulumi.Input<inputs.SecretStoreKeyfactorSshStore>;
|
|
117
157
|
keyfactorX509Store?: pulumi.Input<inputs.SecretStoreKeyfactorX509Store>;
|
|
158
|
+
/**
|
|
159
|
+
* StrongVaultStore is currently unstable, and its API may change, or it may be removed, without a major version bump.
|
|
160
|
+
*/
|
|
161
|
+
strongVault?: pulumi.Input<inputs.SecretStoreStrongVault>;
|
|
118
162
|
vaultApprole?: pulumi.Input<inputs.SecretStoreVaultApprole>;
|
|
119
163
|
vaultApproleCertSsh?: pulumi.Input<inputs.SecretStoreVaultApproleCertSsh>;
|
|
120
164
|
vaultApproleCertX509?: pulumi.Input<inputs.SecretStoreVaultApproleCertX509>;
|
|
121
165
|
vaultAwsEc2?: pulumi.Input<inputs.SecretStoreVaultAwsEc2>;
|
|
166
|
+
/**
|
|
167
|
+
* VaultAWSEC2CertSSHStore is currently unstable, and its API may change, or it may be removed, without a major version bump.
|
|
168
|
+
*/
|
|
169
|
+
vaultAwsEc2CertSsh?: pulumi.Input<inputs.SecretStoreVaultAwsEc2CertSsh>;
|
|
170
|
+
/**
|
|
171
|
+
* VaultAWSEC2CertX509Store is currently unstable, and its API may change, or it may be removed, without a major version bump.
|
|
172
|
+
*/
|
|
173
|
+
vaultAwsEc2CertX509?: pulumi.Input<inputs.SecretStoreVaultAwsEc2CertX509>;
|
|
122
174
|
vaultAwsIam?: pulumi.Input<inputs.SecretStoreVaultAwsIam>;
|
|
175
|
+
/**
|
|
176
|
+
* VaultAWSIAMCertSSHStore is currently unstable, and its API may change, or it may be removed, without a major version bump.
|
|
177
|
+
*/
|
|
178
|
+
vaultAwsIamCertSsh?: pulumi.Input<inputs.SecretStoreVaultAwsIamCertSsh>;
|
|
179
|
+
/**
|
|
180
|
+
* VaultAWSIAMCertX509Store is currently unstable, and its API may change, or it may be removed, without a major version bump.
|
|
181
|
+
*/
|
|
182
|
+
vaultAwsIamCertX509?: pulumi.Input<inputs.SecretStoreVaultAwsIamCertX509>;
|
|
123
183
|
vaultTls?: pulumi.Input<inputs.SecretStoreVaultTls>;
|
|
124
184
|
vaultTlsCertSsh?: pulumi.Input<inputs.SecretStoreVaultTlsCertSsh>;
|
|
125
185
|
vaultTlsCertX509?: pulumi.Input<inputs.SecretStoreVaultTlsCertX509>;
|
package/secretStore.js
CHANGED
|
@@ -58,11 +58,16 @@ class SecretStore extends pulumi.CustomResource {
|
|
|
58
58
|
resourceInputs["gcpStore"] = state?.gcpStore;
|
|
59
59
|
resourceInputs["keyfactorSshStore"] = state?.keyfactorSshStore;
|
|
60
60
|
resourceInputs["keyfactorX509Store"] = state?.keyfactorX509Store;
|
|
61
|
+
resourceInputs["strongVault"] = state?.strongVault;
|
|
61
62
|
resourceInputs["vaultApprole"] = state?.vaultApprole;
|
|
62
63
|
resourceInputs["vaultApproleCertSsh"] = state?.vaultApproleCertSsh;
|
|
63
64
|
resourceInputs["vaultApproleCertX509"] = state?.vaultApproleCertX509;
|
|
64
65
|
resourceInputs["vaultAwsEc2"] = state?.vaultAwsEc2;
|
|
66
|
+
resourceInputs["vaultAwsEc2CertSsh"] = state?.vaultAwsEc2CertSsh;
|
|
67
|
+
resourceInputs["vaultAwsEc2CertX509"] = state?.vaultAwsEc2CertX509;
|
|
65
68
|
resourceInputs["vaultAwsIam"] = state?.vaultAwsIam;
|
|
69
|
+
resourceInputs["vaultAwsIamCertSsh"] = state?.vaultAwsIamCertSsh;
|
|
70
|
+
resourceInputs["vaultAwsIamCertX509"] = state?.vaultAwsIamCertX509;
|
|
66
71
|
resourceInputs["vaultTls"] = state?.vaultTls;
|
|
67
72
|
resourceInputs["vaultTlsCertSsh"] = state?.vaultTlsCertSsh;
|
|
68
73
|
resourceInputs["vaultTlsCertX509"] = state?.vaultTlsCertX509;
|
|
@@ -84,11 +89,16 @@ class SecretStore extends pulumi.CustomResource {
|
|
|
84
89
|
resourceInputs["gcpStore"] = args?.gcpStore;
|
|
85
90
|
resourceInputs["keyfactorSshStore"] = args?.keyfactorSshStore;
|
|
86
91
|
resourceInputs["keyfactorX509Store"] = args?.keyfactorX509Store;
|
|
92
|
+
resourceInputs["strongVault"] = args?.strongVault;
|
|
87
93
|
resourceInputs["vaultApprole"] = args?.vaultApprole;
|
|
88
94
|
resourceInputs["vaultApproleCertSsh"] = args?.vaultApproleCertSsh;
|
|
89
95
|
resourceInputs["vaultApproleCertX509"] = args?.vaultApproleCertX509;
|
|
90
96
|
resourceInputs["vaultAwsEc2"] = args?.vaultAwsEc2;
|
|
97
|
+
resourceInputs["vaultAwsEc2CertSsh"] = args?.vaultAwsEc2CertSsh;
|
|
98
|
+
resourceInputs["vaultAwsEc2CertX509"] = args?.vaultAwsEc2CertX509;
|
|
91
99
|
resourceInputs["vaultAwsIam"] = args?.vaultAwsIam;
|
|
100
|
+
resourceInputs["vaultAwsIamCertSsh"] = args?.vaultAwsIamCertSsh;
|
|
101
|
+
resourceInputs["vaultAwsIamCertX509"] = args?.vaultAwsIamCertX509;
|
|
92
102
|
resourceInputs["vaultTls"] = args?.vaultTls;
|
|
93
103
|
resourceInputs["vaultTlsCertSsh"] = args?.vaultTlsCertSsh;
|
|
94
104
|
resourceInputs["vaultTlsCertX509"] = args?.vaultTlsCertX509;
|
package/secretStore.js.map
CHANGED
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"secretStore.js","sourceRoot":"","sources":["../secretStore.ts"],"names":[],"mappings":";AAAA,sEAAsE;AACtE,iFAAiF;;;AAEjF,yCAAyC;AAGzC,yCAAyC;AAEzC;;;;;;;;;;;;GAYG;AACH,MAAa,WAAY,SAAQ,MAAM,CAAC,cAAc;IAClD;;;;;;;;OAQG;IACI,MAAM,CAAC,GAAG,CAAC,IAAY,EAAE,EAA2B,EAAE,KAAwB,EAAE,IAAmC;QACtH,OAAO,IAAI,WAAW,CAAC,IAAI,EAAO,KAAK,EAAE,EAAE,GAAG,IAAI,EAAE,EAAE,EAAE,EAAE,EAAE,CAAC,CAAC;IAClE,CAAC;IAKD;;;OAGG;IACI,MAAM,CAAC,UAAU,CAAC,GAAQ;QAC7B,IAAI,GAAG,KAAK,SAAS,IAAI,GAAG,KAAK,IAAI,EAAE;YACnC,OAAO,KAAK,CAAC;SAChB;QACD,OAAO,GAAG,CAAC,cAAc,CAAC,KAAK,WAAW,CAAC,YAAY,CAAC;IAC5D,CAAC;
|
|
1
|
+
{"version":3,"file":"secretStore.js","sourceRoot":"","sources":["../secretStore.ts"],"names":[],"mappings":";AAAA,sEAAsE;AACtE,iFAAiF;;;AAEjF,yCAAyC;AAGzC,yCAAyC;AAEzC;;;;;;;;;;;;GAYG;AACH,MAAa,WAAY,SAAQ,MAAM,CAAC,cAAc;IAClD;;;;;;;;OAQG;IACI,MAAM,CAAC,GAAG,CAAC,IAAY,EAAE,EAA2B,EAAE,KAAwB,EAAE,IAAmC;QACtH,OAAO,IAAI,WAAW,CAAC,IAAI,EAAO,KAAK,EAAE,EAAE,GAAG,IAAI,EAAE,EAAE,EAAE,EAAE,EAAE,CAAC,CAAC;IAClE,CAAC;IAKD;;;OAGG;IACI,MAAM,CAAC,UAAU,CAAC,GAAQ;QAC7B,IAAI,GAAG,KAAK,SAAS,IAAI,GAAG,KAAK,IAAI,EAAE;YACnC,OAAO,KAAK,CAAC;SAChB;QACD,OAAO,GAAG,CAAC,cAAc,CAAC,KAAK,WAAW,CAAC,YAAY,CAAC;IAC5D,CAAC;IAyDD,YAAY,IAAY,EAAE,WAAgD,EAAE,IAAmC;QAC3G,IAAI,cAAc,GAAkB,EAAE,CAAC;QACvC,IAAI,GAAG,IAAI,IAAI,EAAE,CAAC;QAClB,IAAI,IAAI,CAAC,EAAE,EAAE;YACT,MAAM,KAAK,GAAG,WAA2C,CAAC;YAC1D,cAAc,CAAC,sBAAsB,CAAC,GAAG,KAAK,EAAE,oBAAoB,CAAC;YACrE,cAAc,CAAC,KAAK,CAAC,GAAG,KAAK,EAAE,GAAG,CAAC;YACnC,cAAc,CAAC,aAAa,CAAC,GAAG,KAAK,EAAE,WAAW,CAAC;YACnD,cAAc,CAAC,YAAY,CAAC,GAAG,KAAK,EAAE,UAAU,CAAC;YACjD,cAAc,CAAC,gBAAgB,CAAC,GAAG,KAAK,EAAE,cAAc,CAAC;YACzD,cAAc,CAAC,aAAa,CAAC,GAAG,KAAK,EAAE,WAAW,CAAC;YACnD,cAAc,CAAC,yBAAyB,CAAC,GAAG,KAAK,EAAE,uBAAuB,CAAC;YAC3E,cAAc,CAAC,cAAc,CAAC,GAAG,KAAK,EAAE,YAAY,CAAC;YACrD,cAAc,CAAC,kBAAkB,CAAC,GAAG,KAAK,EAAE,gBAAgB,CAAC;YAC7D,cAAc,CAAC,UAAU,CAAC,GAAG,KAAK,EAAE,QAAQ,CAAC;YAC7C,cAAc,CAAC,mBAAmB,CAAC,GAAG,KAAK,EAAE,iBAAiB,CAAC;YAC/D,cAAc,CAAC,oBAAoB,CAAC,GAAG,KAAK,EAAE,kBAAkB,CAAC;YACjE,cAAc,CAAC,aAAa,CAAC,GAAG,KAAK,EAAE,WAAW,CAAC;YACnD,cAAc,CAAC,cAAc,CAAC,GAAG,KAAK,EAAE,YAAY,CAAC;YACrD,cAAc,CAAC,qBAAqB,CAAC,GAAG,KAAK,EAAE,mBAAmB,CAAC;YACnE,cAAc,CAAC,sBAAsB,CAAC,GAAG,KAAK,EAAE,oBAAoB,CAAC;YACrE,cAAc,CAAC,aAAa,CAAC,GAAG,KAAK,EAAE,WAAW,CAAC;YACnD,cAAc,CAAC,oBAAoB,CAAC,GAAG,KAAK,EAAE,kBAAkB,CAAC;YACjE,cAAc,CAAC,qBAAqB,CAAC,GAAG,KAAK,EAAE,mBAAmB,CAAC;YACnE,cAAc,CAAC,aAAa,CAAC,GAAG,KAAK,EAAE,WAAW,CAAC;YACnD,cAAc,CAAC,oBAAoB,CAAC,GAAG,KAAK,EAAE,kBAAkB,CAAC;YACjE,cAAc,CAAC,qBAAqB,CAAC,GAAG,KAAK,EAAE,mBAAmB,CAAC;YACnE,cAAc,CAAC,UAAU,CAAC,GAAG,KAAK,EAAE,QAAQ,CAAC;YAC7C,cAAc,CAAC,iBAAiB,CAAC,GAAG,KAAK,EAAE,eAAe,CAAC;YAC3D,cAAc,CAAC,kBAAkB,CAAC,GAAG,KAAK,EAAE,gBAAgB,CAAC;YAC7D,cAAc,CAAC,YAAY,CAAC,GAAG,KAAK,EAAE,UAAU,CAAC;YACjD,cAAc,CAAC,mBAAmB,CAAC,GAAG,KAAK,EAAE,iBAAiB,CAAC;YAC/D,cAAc,CAAC,oBAAoB,CAAC,GAAG,KAAK,EAAE,kBAAkB,CAAC;SACpE;aAAM;YACH,MAAM,IAAI,GAAG,WAA0C,CAAC;YACxD,cAAc,CAAC,sBAAsB,CAAC,GAAG,IAAI,EAAE,oBAAoB,CAAC;YACpE,cAAc,CAAC,KAAK,CAAC,GAAG,IAAI,EAAE,GAAG,CAAC;YAClC,cAAc,CAAC,aAAa,CAAC,GAAG,IAAI,EAAE,WAAW,CAAC;YAClD,cAAc,CAAC,YAAY,CAAC,GAAG,IAAI,EAAE,UAAU,CAAC;YAChD,cAAc,CAAC,gBAAgB,CAAC,GAAG,IAAI,EAAE,cAAc,CAAC;YACxD,cAAc,CAAC,aAAa,CAAC,GAAG,IAAI,EAAE,WAAW,CAAC;YAClD,cAAc,CAAC,yBAAyB,CAAC,GAAG,IAAI,EAAE,uBAAuB,CAAC;YAC1E,cAAc,CAAC,cAAc,CAAC,GAAG,IAAI,EAAE,YAAY,CAAC;YACpD,cAAc,CAAC,kBAAkB,CAAC,GAAG,IAAI,EAAE,gBAAgB,CAAC;YAC5D,cAAc,CAAC,UAAU,CAAC,GAAG,IAAI,EAAE,QAAQ,CAAC;YAC5C,cAAc,CAAC,mBAAmB,CAAC,GAAG,IAAI,EAAE,iBAAiB,CAAC;YAC9D,cAAc,CAAC,oBAAoB,CAAC,GAAG,IAAI,EAAE,kBAAkB,CAAC;YAChE,cAAc,CAAC,aAAa,CAAC,GAAG,IAAI,EAAE,WAAW,CAAC;YAClD,cAAc,CAAC,cAAc,CAAC,GAAG,IAAI,EAAE,YAAY,CAAC;YACpD,cAAc,CAAC,qBAAqB,CAAC,GAAG,IAAI,EAAE,mBAAmB,CAAC;YAClE,cAAc,CAAC,sBAAsB,CAAC,GAAG,IAAI,EAAE,oBAAoB,CAAC;YACpE,cAAc,CAAC,aAAa,CAAC,GAAG,IAAI,EAAE,WAAW,CAAC;YAClD,cAAc,CAAC,oBAAoB,CAAC,GAAG,IAAI,EAAE,kBAAkB,CAAC;YAChE,cAAc,CAAC,qBAAqB,CAAC,GAAG,IAAI,EAAE,mBAAmB,CAAC;YAClE,cAAc,CAAC,aAAa,CAAC,GAAG,IAAI,EAAE,WAAW,CAAC;YAClD,cAAc,CAAC,oBAAoB,CAAC,GAAG,IAAI,EAAE,kBAAkB,CAAC;YAChE,cAAc,CAAC,qBAAqB,CAAC,GAAG,IAAI,EAAE,mBAAmB,CAAC;YAClE,cAAc,CAAC,UAAU,CAAC,GAAG,IAAI,EAAE,QAAQ,CAAC;YAC5C,cAAc,CAAC,iBAAiB,CAAC,GAAG,IAAI,EAAE,eAAe,CAAC;YAC1D,cAAc,CAAC,kBAAkB,CAAC,GAAG,IAAI,EAAE,gBAAgB,CAAC;YAC5D,cAAc,CAAC,YAAY,CAAC,GAAG,IAAI,EAAE,UAAU,CAAC;YAChD,cAAc,CAAC,mBAAmB,CAAC,GAAG,IAAI,EAAE,iBAAiB,CAAC;YAC9D,cAAc,CAAC,oBAAoB,CAAC,GAAG,IAAI,EAAE,kBAAkB,CAAC;SACnE;QACD,IAAI,GAAG,MAAM,CAAC,YAAY,CAAC,SAAS,CAAC,oBAAoB,EAAE,EAAE,IAAI,CAAC,CAAC;QACnE,KAAK,CAAC,WAAW,CAAC,YAAY,EAAE,IAAI,EAAE,cAAc,EAAE,IAAI,CAAC,CAAC;IAChE,CAAC;;AArJL,kCAsJC;AAxIG,gBAAgB;AACO,wBAAY,GAAG,mCAAmC,CAAC"}
|
package/types/input.d.ts
CHANGED
|
@@ -7101,6 +7101,14 @@ export interface SecretStoreAws {
|
|
|
7101
7101
|
* The AWS region to target e.g. us-east-1
|
|
7102
7102
|
*/
|
|
7103
7103
|
region: pulumi.Input<string>;
|
|
7104
|
+
/**
|
|
7105
|
+
* The role to assume after logging in.
|
|
7106
|
+
*/
|
|
7107
|
+
roleArn?: pulumi.Input<string>;
|
|
7108
|
+
/**
|
|
7109
|
+
* The external ID to associate with assume role requests. Does nothing if a role ARN is not provided.
|
|
7110
|
+
*/
|
|
7111
|
+
roleExternalId?: pulumi.Input<string>;
|
|
7104
7112
|
/**
|
|
7105
7113
|
* Tags is a map of key, value pairs.
|
|
7106
7114
|
*/
|
|
@@ -7370,6 +7378,18 @@ export interface SecretStoreKeyfactorX509Store {
|
|
|
7370
7378
|
[key: string]: pulumi.Input<string>;
|
|
7371
7379
|
}>;
|
|
7372
7380
|
}
|
|
7381
|
+
export interface SecretStoreStrongVault {
|
|
7382
|
+
/**
|
|
7383
|
+
* Unique human-readable name of the SecretStore.
|
|
7384
|
+
*/
|
|
7385
|
+
name: pulumi.Input<string>;
|
|
7386
|
+
/**
|
|
7387
|
+
* Tags is a map of key, value pairs.
|
|
7388
|
+
*/
|
|
7389
|
+
tags?: pulumi.Input<{
|
|
7390
|
+
[key: string]: pulumi.Input<string>;
|
|
7391
|
+
}>;
|
|
7392
|
+
}
|
|
7373
7393
|
export interface SecretStoreVaultApprole {
|
|
7374
7394
|
/**
|
|
7375
7395
|
* Unique human-readable name of the SecretStore.
|
|
@@ -7474,6 +7494,70 @@ export interface SecretStoreVaultAwsEc2 {
|
|
|
7474
7494
|
[key: string]: pulumi.Input<string>;
|
|
7475
7495
|
}>;
|
|
7476
7496
|
}
|
|
7497
|
+
export interface SecretStoreVaultAwsEc2CertSsh {
|
|
7498
|
+
/**
|
|
7499
|
+
* The lifetime of certificates issued by this CA represented in minutes.
|
|
7500
|
+
*/
|
|
7501
|
+
issuedCertTtlMinutes: pulumi.Input<number>;
|
|
7502
|
+
/**
|
|
7503
|
+
* Unique human-readable name of the SecretStore.
|
|
7504
|
+
*/
|
|
7505
|
+
name: pulumi.Input<string>;
|
|
7506
|
+
/**
|
|
7507
|
+
* The namespace to make requests within
|
|
7508
|
+
*/
|
|
7509
|
+
namespace?: pulumi.Input<string>;
|
|
7510
|
+
/**
|
|
7511
|
+
* The URL of the Vault to target
|
|
7512
|
+
*/
|
|
7513
|
+
serverAddress: pulumi.Input<string>;
|
|
7514
|
+
/**
|
|
7515
|
+
* The signing role to be used for signing certificates
|
|
7516
|
+
*/
|
|
7517
|
+
signingRole: pulumi.Input<string>;
|
|
7518
|
+
/**
|
|
7519
|
+
* The mount point of the SSH engine configured with the desired CA
|
|
7520
|
+
*/
|
|
7521
|
+
sshMountPoint: pulumi.Input<string>;
|
|
7522
|
+
/**
|
|
7523
|
+
* Tags is a map of key, value pairs.
|
|
7524
|
+
*/
|
|
7525
|
+
tags?: pulumi.Input<{
|
|
7526
|
+
[key: string]: pulumi.Input<string>;
|
|
7527
|
+
}>;
|
|
7528
|
+
}
|
|
7529
|
+
export interface SecretStoreVaultAwsEc2CertX509 {
|
|
7530
|
+
/**
|
|
7531
|
+
* The lifetime of certificates issued by this CA represented in minutes.
|
|
7532
|
+
*/
|
|
7533
|
+
issuedCertTtlMinutes: pulumi.Input<number>;
|
|
7534
|
+
/**
|
|
7535
|
+
* Unique human-readable name of the SecretStore.
|
|
7536
|
+
*/
|
|
7537
|
+
name: pulumi.Input<string>;
|
|
7538
|
+
/**
|
|
7539
|
+
* The namespace to make requests within
|
|
7540
|
+
*/
|
|
7541
|
+
namespace?: pulumi.Input<string>;
|
|
7542
|
+
/**
|
|
7543
|
+
* The mount point of the PKI engine configured with the desired CA
|
|
7544
|
+
*/
|
|
7545
|
+
pkiMountPoint: pulumi.Input<string>;
|
|
7546
|
+
/**
|
|
7547
|
+
* The URL of the Vault to target
|
|
7548
|
+
*/
|
|
7549
|
+
serverAddress: pulumi.Input<string>;
|
|
7550
|
+
/**
|
|
7551
|
+
* The signing role to be used for signing certificates
|
|
7552
|
+
*/
|
|
7553
|
+
signingRole: pulumi.Input<string>;
|
|
7554
|
+
/**
|
|
7555
|
+
* Tags is a map of key, value pairs.
|
|
7556
|
+
*/
|
|
7557
|
+
tags?: pulumi.Input<{
|
|
7558
|
+
[key: string]: pulumi.Input<string>;
|
|
7559
|
+
}>;
|
|
7560
|
+
}
|
|
7477
7561
|
export interface SecretStoreVaultAwsIam {
|
|
7478
7562
|
/**
|
|
7479
7563
|
* Unique human-readable name of the SecretStore.
|
|
@@ -7494,6 +7578,70 @@ export interface SecretStoreVaultAwsIam {
|
|
|
7494
7578
|
[key: string]: pulumi.Input<string>;
|
|
7495
7579
|
}>;
|
|
7496
7580
|
}
|
|
7581
|
+
export interface SecretStoreVaultAwsIamCertSsh {
|
|
7582
|
+
/**
|
|
7583
|
+
* The lifetime of certificates issued by this CA represented in minutes.
|
|
7584
|
+
*/
|
|
7585
|
+
issuedCertTtlMinutes: pulumi.Input<number>;
|
|
7586
|
+
/**
|
|
7587
|
+
* Unique human-readable name of the SecretStore.
|
|
7588
|
+
*/
|
|
7589
|
+
name: pulumi.Input<string>;
|
|
7590
|
+
/**
|
|
7591
|
+
* The namespace to make requests within
|
|
7592
|
+
*/
|
|
7593
|
+
namespace?: pulumi.Input<string>;
|
|
7594
|
+
/**
|
|
7595
|
+
* The URL of the Vault to target
|
|
7596
|
+
*/
|
|
7597
|
+
serverAddress: pulumi.Input<string>;
|
|
7598
|
+
/**
|
|
7599
|
+
* The signing role to be used for signing certificates
|
|
7600
|
+
*/
|
|
7601
|
+
signingRole: pulumi.Input<string>;
|
|
7602
|
+
/**
|
|
7603
|
+
* The mount point of the SSH engine configured with the desired CA
|
|
7604
|
+
*/
|
|
7605
|
+
sshMountPoint: pulumi.Input<string>;
|
|
7606
|
+
/**
|
|
7607
|
+
* Tags is a map of key, value pairs.
|
|
7608
|
+
*/
|
|
7609
|
+
tags?: pulumi.Input<{
|
|
7610
|
+
[key: string]: pulumi.Input<string>;
|
|
7611
|
+
}>;
|
|
7612
|
+
}
|
|
7613
|
+
export interface SecretStoreVaultAwsIamCertX509 {
|
|
7614
|
+
/**
|
|
7615
|
+
* The lifetime of certificates issued by this CA represented in minutes.
|
|
7616
|
+
*/
|
|
7617
|
+
issuedCertTtlMinutes: pulumi.Input<number>;
|
|
7618
|
+
/**
|
|
7619
|
+
* Unique human-readable name of the SecretStore.
|
|
7620
|
+
*/
|
|
7621
|
+
name: pulumi.Input<string>;
|
|
7622
|
+
/**
|
|
7623
|
+
* The namespace to make requests within
|
|
7624
|
+
*/
|
|
7625
|
+
namespace?: pulumi.Input<string>;
|
|
7626
|
+
/**
|
|
7627
|
+
* The mount point of the PKI engine configured with the desired CA
|
|
7628
|
+
*/
|
|
7629
|
+
pkiMountPoint: pulumi.Input<string>;
|
|
7630
|
+
/**
|
|
7631
|
+
* The URL of the Vault to target
|
|
7632
|
+
*/
|
|
7633
|
+
serverAddress: pulumi.Input<string>;
|
|
7634
|
+
/**
|
|
7635
|
+
* The signing role to be used for signing certificates
|
|
7636
|
+
*/
|
|
7637
|
+
signingRole: pulumi.Input<string>;
|
|
7638
|
+
/**
|
|
7639
|
+
* Tags is a map of key, value pairs.
|
|
7640
|
+
*/
|
|
7641
|
+
tags?: pulumi.Input<{
|
|
7642
|
+
[key: string]: pulumi.Input<string>;
|
|
7643
|
+
}>;
|
|
7644
|
+
}
|
|
7497
7645
|
export interface SecretStoreVaultTls {
|
|
7498
7646
|
/**
|
|
7499
7647
|
* A path to a CA file accessible by a Node
|