@pulumi/vault 5.6.0 → 5.7.0

package/kv/getSecret.js

@@ -0,0 +1,53 @@
+"use strict";
+// *** WARNING: this file was generated by the Pulumi Terraform Bridge (tfgen) Tool. ***
+// *** Do not edit by hand unless you're certain you know what you are doing! ***
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.getSecretOutput = exports.getSecret = void 0;
+const pulumi = require("@pulumi/pulumi");
+const utilities = require("../utilities");
+/**
+ * ## Example Usage
+ *
+ * ```typescript
+ * import * as pulumi from "@pulumi/pulumi";
+ * import * as vault from "@pulumi/vault";
+ *
+ * const kvv1 = new vault.Mount("kvv1", {
+ *     path: "kvv1",
+ *     type: "kv",
+ *     options: {
+ *         version: "1",
+ *     },
+ *     description: "KV Version 1 secret engine mount",
+ * });
+ * const secret = new vault.kv.Secret("secret", {
+ *     path: pulumi.interpolate`${kvv1.path}/secret`,
+ *     dataJson: JSON.stringify({
+ *         zip: "zap",
+ *         foo: "bar",
+ *     }),
+ * });
+ * const secretData = vault.kv.getSecretOutput({
+ *     path: secret.path,
+ * });
+ * ```
+ * ## Required Vault Capabilities
+ *
+ * Use of this resource requires the `read` capability on the given path.
+ */
+function getSecret(args, opts) {
+    if (!opts) {
+        opts = {};
+    }
+    opts = pulumi.mergeOptions(utilities.resourceOptsDefaults(), opts);
+    return pulumi.runtime.invoke("vault:kv/getSecret:getSecret", {
+        "namespace": args.namespace,
+        "path": args.path,
+    }, opts);
+}
+exports.getSecret = getSecret;
+function getSecretOutput(args, opts) {
+    return pulumi.output(args).apply(a => getSecret(a, opts));
+}
+exports.getSecretOutput = getSecretOutput;
+//# sourceMappingURL=getSecret.js.map

package/kv/getSecret.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"getSecret.js","sourceRoot":"","sources":["../../kv/getSecret.ts"],"names":[],"mappings":";AAAA,wFAAwF;AACxF,iFAAiF;;;AAEjF,yCAAyC;AACzC,0CAA0C;AAE1C;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GA6BG;AACH,SAAgB,SAAS,CAAC,IAAmB,EAAE,IAA2B;IACtE,IAAI,CAAC,IAAI,EAAE;QACP,IAAI,GAAG,EAAE,CAAA;KACZ;IAED,IAAI,GAAG,MAAM,CAAC,YAAY,CAAC,SAAS,CAAC,oBAAoB,EAAE,EAAE,IAAI,CAAC,CAAC;IACnE,OAAO,MAAM,CAAC,OAAO,CAAC,MAAM,CAAC,8BAA8B,EAAE;QACzD,WAAW,EAAE,IAAI,CAAC,SAAS;QAC3B,MAAM,EAAE,IAAI,CAAC,IAAI;KACpB,EAAE,IAAI,CAAC,CAAC;AACb,CAAC;AAVD,8BAUC;AAyDD,SAAgB,eAAe,CAAC,IAAyB,EAAE,IAA2B;IAClF,OAAO,MAAM,CAAC,MAAM,CAAC,IAAI,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,EAAE,CAAC,SAAS,CAAC,CAAC,EAAE,IAAI,CAAC,CAAC,CAAA;AAC7D,CAAC;AAFD,0CAEC"}

package/kv/getSecretSubkeysV2.d.ts

@@ -0,0 +1,42 @@
+import * as pulumi from "@pulumi/pulumi";
+export declare function getSecretSubkeysV2(args: GetSecretSubkeysV2Args, opts?: pulumi.InvokeOptions): Promise<GetSecretSubkeysV2Result>;
+/**
+ * A collection of arguments for invoking getSecretSubkeysV2.
+ */
+export interface GetSecretSubkeysV2Args {
+    depth?: number;
+    mount: string;
+    name: string;
+    namespace?: string;
+    version?: number;
+}
+/**
+ * A collection of values returned by getSecretSubkeysV2.
+ */
+export interface GetSecretSubkeysV2Result {
+    readonly data: {
+        [key: string]: any;
+    };
+    readonly dataJson: string;
+    readonly depth?: number;
+    /**
+     * The provider-assigned unique ID for this managed resource.
+     */
+    readonly id: string;
+    readonly mount: string;
+    readonly name: string;
+    readonly namespace?: string;
+    readonly path: string;
+    readonly version?: number;
+}
+export declare function getSecretSubkeysV2Output(args: GetSecretSubkeysV2OutputArgs, opts?: pulumi.InvokeOptions): pulumi.Output<GetSecretSubkeysV2Result>;
+/**
+ * A collection of arguments for invoking getSecretSubkeysV2.
+ */
+export interface GetSecretSubkeysV2OutputArgs {
+    depth?: pulumi.Input<number>;
+    mount: pulumi.Input<string>;
+    name: pulumi.Input<string>;
+    namespace?: pulumi.Input<string>;
+    version?: pulumi.Input<number>;
+}

package/kv/getSecretSubkeysV2.js

@@ -0,0 +1,26 @@
+"use strict";
+// *** WARNING: this file was generated by the Pulumi Terraform Bridge (tfgen) Tool. ***
+// *** Do not edit by hand unless you're certain you know what you are doing! ***
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.getSecretSubkeysV2Output = exports.getSecretSubkeysV2 = void 0;
+const pulumi = require("@pulumi/pulumi");
+const utilities = require("../utilities");
+function getSecretSubkeysV2(args, opts) {
+    if (!opts) {
+        opts = {};
+    }
+    opts = pulumi.mergeOptions(utilities.resourceOptsDefaults(), opts);
+    return pulumi.runtime.invoke("vault:kv/getSecretSubkeysV2:getSecretSubkeysV2", {
+        "depth": args.depth,
+        "mount": args.mount,
+        "name": args.name,
+        "namespace": args.namespace,
+        "version": args.version,
+    }, opts);
+}
+exports.getSecretSubkeysV2 = getSecretSubkeysV2;
+function getSecretSubkeysV2Output(args, opts) {
+    return pulumi.output(args).apply(a => getSecretSubkeysV2(a, opts));
+}
+exports.getSecretSubkeysV2Output = getSecretSubkeysV2Output;
+//# sourceMappingURL=getSecretSubkeysV2.js.map

package/kv/getSecretSubkeysV2.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"getSecretSubkeysV2.js","sourceRoot":"","sources":["../../kv/getSecretSubkeysV2.ts"],"names":[],"mappings":";AAAA,wFAAwF;AACxF,iFAAiF;;;AAEjF,yCAAyC;AACzC,0CAA0C;AAE1C,SAAgB,kBAAkB,CAAC,IAA4B,EAAE,IAA2B;IACxF,IAAI,CAAC,IAAI,EAAE;QACP,IAAI,GAAG,EAAE,CAAA;KACZ;IAED,IAAI,GAAG,MAAM,CAAC,YAAY,CAAC,SAAS,CAAC,oBAAoB,EAAE,EAAE,IAAI,CAAC,CAAC;IACnE,OAAO,MAAM,CAAC,OAAO,CAAC,MAAM,CAAC,gDAAgD,EAAE;QAC3E,OAAO,EAAE,IAAI,CAAC,KAAK;QACnB,OAAO,EAAE,IAAI,CAAC,KAAK;QACnB,MAAM,EAAE,IAAI,CAAC,IAAI;QACjB,WAAW,EAAE,IAAI,CAAC,SAAS;QAC3B,SAAS,EAAE,IAAI,CAAC,OAAO;KAC1B,EAAE,IAAI,CAAC,CAAC;AACb,CAAC;AAbD,gDAaC;AA+BD,SAAgB,wBAAwB,CAAC,IAAkC,EAAE,IAA2B;IACpG,OAAO,MAAM,CAAC,MAAM,CAAC,IAAI,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,EAAE,CAAC,kBAAkB,CAAC,CAAC,EAAE,IAAI,CAAC,CAAC,CAAA;AACtE,CAAC;AAFD,4DAEC"}

package/kv/getSecretV2.d.ts

@@ -0,0 +1,139 @@
+import * as pulumi from "@pulumi/pulumi";
+/**
+ * ## Example Usage
+ *
+ * ```typescript
+ * import * as pulumi from "@pulumi/pulumi";
+ * import * as vault from "@pulumi/vault";
+ *
+ * const kvv2 = new vault.Mount("kvv2", {
+ *     path: "kvv2",
+ *     type: "kv",
+ *     options: {
+ *         version: "2",
+ *     },
+ *     description: "KV Version 2 secret engine mount",
+ * });
+ * const secret = new vault.kv.SecretV2("secret", {
+ *     mount: kvv2.path,
+ *     cas: 1,
+ *     deleteAllVersions: true,
+ *     dataJson: JSON.stringify({
+ *         zip: "zap",
+ *         foo: "bar",
+ *     }),
+ * });
+ * const secretData = kvv2.path.apply(path => vault.kv.getSecretV2Output({
+ *     mount: path,
+ *     name: vault_kv_secret_v2.test.name,
+ * }));
+ * ```
+ * ## Required Vault Capabilities
+ *
+ * Use of this resource requires the `read` capability on the given path.
+ */
+export declare function getSecretV2(args: GetSecretV2Args, opts?: pulumi.InvokeOptions): Promise<GetSecretV2Result>;
+/**
+ * A collection of arguments for invoking getSecretV2.
+ */
+export interface GetSecretV2Args {
+    /**
+     * Path where KV-V2 engine is mounted.
+     */
+    mount: string;
+    /**
+     * Full name of the secret. For a nested secret
+     * the name is the nested path excluding the mount and data
+     * prefix. For example, for a secret at `kvv2/data/foo/bar/baz`
+     * the name is `foo/bar/baz`.
+     */
+    name: string;
+    /**
+     * The namespace of the target resource.
+     * The value should not contain leading or trailing forward slashes.
+     * The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault#namespace).
+     * *Available only for Vault Enterprise*.
+     */
+    namespace?: string;
+    /**
+     * Version of the secret to retrieve.
+     */
+    version?: number;
+}
+/**
+ * A collection of values returned by getSecretV2.
+ */
+export interface GetSecretV2Result {
+    /**
+     * Time at which secret was created.
+     */
+    readonly createdTime: string;
+    /**
+     * Custom metadata for the secret.
+     */
+    readonly customMetadata: {
+        [key: string]: any;
+    };
+    /**
+     * A mapping whose keys are the top-level data keys returned from
+     * Vault and whose values are the corresponding values. This map can only
+     * represent string data, so any non-string values returned from Vault are
+     * serialized as JSON.
+     */
+    readonly data: {
+        [key: string]: any;
+    };
+    /**
+     * JSON-encoded string that that is
+     * read as the secret data at the given path.
+     */
+    readonly dataJson: string;
+    /**
+     * Deletion time for the secret.
+     */
+    readonly deletionTime: string;
+    /**
+     * Indicates whether the secret has been destroyed.
+     */
+    readonly destroyed: boolean;
+    /**
+     * The provider-assigned unique ID for this managed resource.
+     */
+    readonly id: string;
+    readonly mount: string;
+    readonly name: string;
+    readonly namespace?: string;
+    /**
+     * Full path where the KVV2 secret is written.
+     */
+    readonly path: string;
+    readonly version?: number;
+}
+export declare function getSecretV2Output(args: GetSecretV2OutputArgs, opts?: pulumi.InvokeOptions): pulumi.Output<GetSecretV2Result>;
+/**
+ * A collection of arguments for invoking getSecretV2.
+ */
+export interface GetSecretV2OutputArgs {
+    /**
+     * Path where KV-V2 engine is mounted.
+     */
+    mount: pulumi.Input<string>;
+    /**
+     * Full name of the secret. For a nested secret
+     * the name is the nested path excluding the mount and data
+     * prefix. For example, for a secret at `kvv2/data/foo/bar/baz`
+     * the name is `foo/bar/baz`.
+     */
+    name: pulumi.Input<string>;
+    /**
+     * The namespace of the target resource.
+     * The value should not contain leading or trailing forward slashes.
+     * The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault#namespace).
+     * *Available only for Vault Enterprise*.
+     */
+    namespace?: pulumi.Input<string>;
+    /**
+     * Version of the secret to retrieve.
+     */
+    version?: pulumi.Input<number>;
+}

package/kv/getSecretV2.js

@@ -0,0 +1,58 @@
+"use strict";
+// *** WARNING: this file was generated by the Pulumi Terraform Bridge (tfgen) Tool. ***
+// *** Do not edit by hand unless you're certain you know what you are doing! ***
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.getSecretV2Output = exports.getSecretV2 = void 0;
+const pulumi = require("@pulumi/pulumi");
+const utilities = require("../utilities");
+/**
+ * ## Example Usage
+ *
+ * ```typescript
+ * import * as pulumi from "@pulumi/pulumi";
+ * import * as vault from "@pulumi/vault";
+ *
+ * const kvv2 = new vault.Mount("kvv2", {
+ *     path: "kvv2",
+ *     type: "kv",
+ *     options: {
+ *         version: "2",
+ *     },
+ *     description: "KV Version 2 secret engine mount",
+ * });
+ * const secret = new vault.kv.SecretV2("secret", {
+ *     mount: kvv2.path,
+ *     cas: 1,
+ *     deleteAllVersions: true,
+ *     dataJson: JSON.stringify({
+ *         zip: "zap",
+ *         foo: "bar",
+ *     }),
+ * });
+ * const secretData = kvv2.path.apply(path => vault.kv.getSecretV2Output({
+ *     mount: path,
+ *     name: vault_kv_secret_v2.test.name,
+ * }));
+ * ```
+ * ## Required Vault Capabilities
+ *
+ * Use of this resource requires the `read` capability on the given path.
+ */
+function getSecretV2(args, opts) {
+    if (!opts) {
+        opts = {};
+    }
+    opts = pulumi.mergeOptions(utilities.resourceOptsDefaults(), opts);
+    return pulumi.runtime.invoke("vault:kv/getSecretV2:getSecretV2", {
+        "mount": args.mount,
+        "name": args.name,
+        "namespace": args.namespace,
+        "version": args.version,
+    }, opts);
+}
+exports.getSecretV2 = getSecretV2;
+function getSecretV2Output(args, opts) {
+    return pulumi.output(args).apply(a => getSecretV2(a, opts));
+}
+exports.getSecretV2Output = getSecretV2Output;
+//# sourceMappingURL=getSecretV2.js.map

package/kv/getSecretV2.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"getSecretV2.js","sourceRoot":"","sources":["../../kv/getSecretV2.ts"],"names":[],"mappings":";AAAA,wFAAwF;AACxF,iFAAiF;;;AAEjF,yCAAyC;AACzC,0CAA0C;AAE1C;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GAgCG;AACH,SAAgB,WAAW,CAAC,IAAqB,EAAE,IAA2B;IAC1E,IAAI,CAAC,IAAI,EAAE;QACP,IAAI,GAAG,EAAE,CAAA;KACZ;IAED,IAAI,GAAG,MAAM,CAAC,YAAY,CAAC,SAAS,CAAC,oBAAoB,EAAE,EAAE,IAAI,CAAC,CAAC;IACnE,OAAO,MAAM,CAAC,OAAO,CAAC,MAAM,CAAC,kCAAkC,EAAE;QAC7D,OAAO,EAAE,IAAI,CAAC,KAAK;QACnB,MAAM,EAAE,IAAI,CAAC,IAAI;QACjB,WAAW,EAAE,IAAI,CAAC,SAAS;QAC3B,SAAS,EAAE,IAAI,CAAC,OAAO;KAC1B,EAAE,IAAI,CAAC,CAAC;AACb,CAAC;AAZD,kCAYC;AA4ED,SAAgB,iBAAiB,CAAC,IAA2B,EAAE,IAA2B;IACtF,OAAO,MAAM,CAAC,MAAM,CAAC,IAAI,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,EAAE,CAAC,WAAW,CAAC,CAAC,EAAE,IAAI,CAAC,CAAC,CAAA;AAC/D,CAAC;AAFD,8CAEC"}

package/kv/getSecretsList.d.ts

@@ -0,0 +1,85 @@
+import * as pulumi from "@pulumi/pulumi";
+/**
+ * ## Example Usage
+ *
+ * ```typescript
+ * import * as pulumi from "@pulumi/pulumi";
+ * import * as vault from "@pulumi/vault";
+ *
+ * const kvv1 = new vault.Mount("kvv1", {
+ *     path: "kvv1",
+ *     type: "kv",
+ *     options: {
+ *         version: "1",
+ *     },
+ *     description: "KV Version 1 secret engine mount",
+ * });
+ * const awsSecret = new vault.kv.Secret("awsSecret", {
+ *     path: pulumi.interpolate`${kvv1.path}/aws-secret`,
+ *     dataJson: JSON.stringify({
+ *         zip: "zap",
+ *     }),
+ * });
+ * const azureSecret = new vault.kv.Secret("azureSecret", {
+ *     path: pulumi.interpolate`${kvv1.path}/azure-secret`,
+ *     dataJson: JSON.stringify({
+ *         foo: "bar",
+ *     }),
+ * });
+ * const secrets = vault.kv.getSecretsListOutput({
+ *     path: kvv1.path,
+ * });
+ * ```
+ * ## Required Vault Capabilities
+ *
+ * Use of this resource requires the `read` capability on the given path.
+ */
+export declare function getSecretsList(args: GetSecretsListArgs, opts?: pulumi.InvokeOptions): Promise<GetSecretsListResult>;
+/**
+ * A collection of arguments for invoking getSecretsList.
+ */
+export interface GetSecretsListArgs {
+    /**
+     * The namespace of the target resource.
+     * The value should not contain leading or trailing forward slashes.
+     * The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault#namespace).
+     * *Available only for Vault Enterprise*.
+     */
+    namespace?: string;
+    /**
+     * Full KV-V1 path where secrets will be listed.
+     */
+    path: string;
+}
+/**
+ * A collection of values returned by getSecretsList.
+ */
+export interface GetSecretsListResult {
+    /**
+     * The provider-assigned unique ID for this managed resource.
+     */
+    readonly id: string;
+    /**
+     * List of all secret names listed under the given path.
+     */
+    readonly names: string[];
+    readonly namespace?: string;
+    readonly path: string;
+}
+export declare function getSecretsListOutput(args: GetSecretsListOutputArgs, opts?: pulumi.InvokeOptions): pulumi.Output<GetSecretsListResult>;
+/**
+ * A collection of arguments for invoking getSecretsList.
+ */
+export interface GetSecretsListOutputArgs {
+    /**
+     * The namespace of the target resource.
+     * The value should not contain leading or trailing forward slashes.
+     * The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault#namespace).
+     * *Available only for Vault Enterprise*.
+     */
+    namespace?: pulumi.Input<string>;
+    /**
+     * Full KV-V1 path where secrets will be listed.
+     */
+    path: pulumi.Input<string>;
+}

package/kv/getSecretsList.js

@@ -0,0 +1,58 @@
+"use strict";
+// *** WARNING: this file was generated by the Pulumi Terraform Bridge (tfgen) Tool. ***
+// *** Do not edit by hand unless you're certain you know what you are doing! ***
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.getSecretsListOutput = exports.getSecretsList = void 0;
+const pulumi = require("@pulumi/pulumi");
+const utilities = require("../utilities");
+/**
+ * ## Example Usage
+ *
+ * ```typescript
+ * import * as pulumi from "@pulumi/pulumi";
+ * import * as vault from "@pulumi/vault";
+ *
+ * const kvv1 = new vault.Mount("kvv1", {
+ *     path: "kvv1",
+ *     type: "kv",
+ *     options: {
+ *         version: "1",
+ *     },
+ *     description: "KV Version 1 secret engine mount",
+ * });
+ * const awsSecret = new vault.kv.Secret("awsSecret", {
+ *     path: pulumi.interpolate`${kvv1.path}/aws-secret`,
+ *     dataJson: JSON.stringify({
+ *         zip: "zap",
+ *     }),
+ * });
+ * const azureSecret = new vault.kv.Secret("azureSecret", {
+ *     path: pulumi.interpolate`${kvv1.path}/azure-secret`,
+ *     dataJson: JSON.stringify({
+ *         foo: "bar",
+ *     }),
+ * });
+ * const secrets = vault.kv.getSecretsListOutput({
+ *     path: kvv1.path,
+ * });
+ * ```
+ * ## Required Vault Capabilities
+ *
+ * Use of this resource requires the `read` capability on the given path.
+ */
+function getSecretsList(args, opts) {
+    if (!opts) {
+        opts = {};
+    }
+    opts = pulumi.mergeOptions(utilities.resourceOptsDefaults(), opts);
+    return pulumi.runtime.invoke("vault:kv/getSecretsList:getSecretsList", {
+        "namespace": args.namespace,
+        "path": args.path,
+    }, opts);
+}
+exports.getSecretsList = getSecretsList;
+function getSecretsListOutput(args, opts) {
+    return pulumi.output(args).apply(a => getSecretsList(a, opts));
+}
+exports.getSecretsListOutput = getSecretsListOutput;
+//# sourceMappingURL=getSecretsList.js.map

package/kv/getSecretsList.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"getSecretsList.js","sourceRoot":"","sources":["../../kv/getSecretsList.ts"],"names":[],"mappings":";AAAA,wFAAwF;AACxF,iFAAiF;;;AAEjF,yCAAyC;AACzC,0CAA0C;AAE1C;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GAkCG;AACH,SAAgB,cAAc,CAAC,IAAwB,EAAE,IAA2B;IAChF,IAAI,CAAC,IAAI,EAAE;QACP,IAAI,GAAG,EAAE,CAAA;KACZ;IAED,IAAI,GAAG,MAAM,CAAC,YAAY,CAAC,SAAS,CAAC,oBAAoB,EAAE,EAAE,IAAI,CAAC,CAAC;IACnE,OAAO,MAAM,CAAC,OAAO,CAAC,MAAM,CAAC,wCAAwC,EAAE;QACnE,WAAW,EAAE,IAAI,CAAC,SAAS;QAC3B,MAAM,EAAE,IAAI,CAAC,IAAI;KACpB,EAAE,IAAI,CAAC,CAAC;AACb,CAAC;AAVD,wCAUC;AAmCD,SAAgB,oBAAoB,CAAC,IAA8B,EAAE,IAA2B;IAC5F,OAAO,MAAM,CAAC,MAAM,CAAC,IAAI,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,EAAE,CAAC,cAAc,CAAC,CAAC,EAAE,IAAI,CAAC,CAAC,CAAA;AAClE,CAAC;AAFD,oDAEC"}

package/kv/getSecretsListV2.d.ts

@@ -0,0 +1,114 @@
+import * as pulumi from "@pulumi/pulumi";
+/**
+ * ## Example Usage
+ *
+ * ```typescript
+ * import * as pulumi from "@pulumi/pulumi";
+ * import * as vault from "@pulumi/vault";
+ *
+ * const kvv2 = new vault.Mount("kvv2", {
+ *     path: "kvv2",
+ *     type: "kv",
+ *     options: {
+ *         version: "2",
+ *     },
+ *     description: "KV Version 2 secret engine mount",
+ * });
+ * const awsSecret = new vault.kv.SecretV2("awsSecret", {
+ *     mount: kvv2.path,
+ *     dataJson: JSON.stringify({
+ *         zip: "zap",
+ *     }),
+ * });
+ * const azureSecret = new vault.kv.SecretV2("azureSecret", {
+ *     mount: kvv2.path,
+ *     dataJson: JSON.stringify({
+ *         foo: "bar",
+ *     }),
+ * });
+ * const nestedSecret = new vault.kv.SecretV2("nestedSecret", {
+ *     mount: kvv2.path,
+ *     dataJson: JSON.stringify({
+ *         password: "test",
+ *     }),
+ * });
+ * const secrets = vault.kv.getSecretsListV2Output({
+ *     mount: kvv2.path,
+ * });
+ * const nestedSecrets = kvv2.path.apply(path => vault.kv.getSecretsListV2Output({
+ *     mount: path,
+ *     name: vault_kv_secret_v2.test_2.name,
+ * }));
+ * ```
+ * ## Required Vault Capabilities
+ *
+ * Use of this resource requires the `read` capability on the given path.
+ */
+export declare function getSecretsListV2(args: GetSecretsListV2Args, opts?: pulumi.InvokeOptions): Promise<GetSecretsListV2Result>;
+/**
+ * A collection of arguments for invoking getSecretsListV2.
+ */
+export interface GetSecretsListV2Args {
+    /**
+     * Path where KV-V2 engine is mounted.
+     */
+    mount: string;
+    /**
+     * Full name of the secret. For a nested secret
+     * the name is the nested path excluding the mount and data
+     * prefix. For example, for a secret at `kvv2/data/foo/bar/baz`
+     * the name is `foo/bar/baz`.
+     */
+    name?: string;
+    /**
+     * The namespace of the target resource.
+     * The value should not contain leading or trailing forward slashes.
+     * The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault#namespace).
+     * *Available only for Vault Enterprise*.
+     */
+    namespace?: string;
+}
+/**
+ * A collection of values returned by getSecretsListV2.
+ */
+export interface GetSecretsListV2Result {
+    /**
+     * The provider-assigned unique ID for this managed resource.
+     */
+    readonly id: string;
+    readonly mount: string;
+    readonly name?: string;
+    /**
+     * List of all secret names listed under the given path.
+     */
+    readonly names: string[];
+    readonly namespace?: string;
+    /**
+     * Full path where the KV-V2 secrets are listed.
+     */
+    readonly path: string;
+}
+export declare function getSecretsListV2Output(args: GetSecretsListV2OutputArgs, opts?: pulumi.InvokeOptions): pulumi.Output<GetSecretsListV2Result>;
+/**
+ * A collection of arguments for invoking getSecretsListV2.
+ */
+export interface GetSecretsListV2OutputArgs {
+    /**
+     * Path where KV-V2 engine is mounted.
+     */
+    mount: pulumi.Input<string>;
+    /**
+     * Full name of the secret. For a nested secret
+     * the name is the nested path excluding the mount and data
+     * prefix. For example, for a secret at `kvv2/data/foo/bar/baz`
+     * the name is `foo/bar/baz`.
+     */
+    name?: pulumi.Input<string>;
+    /**
+     * The namespace of the target resource.
+     * The value should not contain leading or trailing forward slashes.
+     * The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault#namespace).
+     * *Available only for Vault Enterprise*.
+     */
+    namespace?: pulumi.Input<string>;
+}

package/kv/getSecretsListV2.js

@@ -0,0 +1,69 @@
+"use strict";
+// *** WARNING: this file was generated by the Pulumi Terraform Bridge (tfgen) Tool. ***
+// *** Do not edit by hand unless you're certain you know what you are doing! ***
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.getSecretsListV2Output = exports.getSecretsListV2 = void 0;
+const pulumi = require("@pulumi/pulumi");
+const utilities = require("../utilities");
+/**
+ * ## Example Usage
+ *
+ * ```typescript
+ * import * as pulumi from "@pulumi/pulumi";
+ * import * as vault from "@pulumi/vault";
+ *
+ * const kvv2 = new vault.Mount("kvv2", {
+ *     path: "kvv2",
+ *     type: "kv",
+ *     options: {
+ *         version: "2",
+ *     },
+ *     description: "KV Version 2 secret engine mount",
+ * });
+ * const awsSecret = new vault.kv.SecretV2("awsSecret", {
+ *     mount: kvv2.path,
+ *     dataJson: JSON.stringify({
+ *         zip: "zap",
+ *     }),
+ * });
+ * const azureSecret = new vault.kv.SecretV2("azureSecret", {
+ *     mount: kvv2.path,
+ *     dataJson: JSON.stringify({
+ *         foo: "bar",
+ *     }),
+ * });
+ * const nestedSecret = new vault.kv.SecretV2("nestedSecret", {
+ *     mount: kvv2.path,
+ *     dataJson: JSON.stringify({
+ *         password: "test",
+ *     }),
+ * });
+ * const secrets = vault.kv.getSecretsListV2Output({
+ *     mount: kvv2.path,
+ * });
+ * const nestedSecrets = kvv2.path.apply(path => vault.kv.getSecretsListV2Output({
+ *     mount: path,
+ *     name: vault_kv_secret_v2.test_2.name,
+ * }));
+ * ```
+ * ## Required Vault Capabilities
+ *
+ * Use of this resource requires the `read` capability on the given path.
+ */
+function getSecretsListV2(args, opts) {
+    if (!opts) {
+        opts = {};
+    }
+    opts = pulumi.mergeOptions(utilities.resourceOptsDefaults(), opts);
+    return pulumi.runtime.invoke("vault:kv/getSecretsListV2:getSecretsListV2", {
+        "mount": args.mount,
+        "name": args.name,
+        "namespace": args.namespace,
+    }, opts);
+}
+exports.getSecretsListV2 = getSecretsListV2;
+function getSecretsListV2Output(args, opts) {
+    return pulumi.output(args).apply(a => getSecretsListV2(a, opts));
+}
+exports.getSecretsListV2Output = getSecretsListV2Output;
+//# sourceMappingURL=getSecretsListV2.js.map

package/kv/getSecretsListV2.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"getSecretsListV2.js","sourceRoot":"","sources":["../../kv/getSecretsListV2.ts"],"names":[],"mappings":";AAAA,wFAAwF;AACxF,iFAAiF;;;AAEjF,yCAAyC;AACzC,0CAA0C;AAE1C;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GA4CG;AACH,SAAgB,gBAAgB,CAAC,IAA0B,EAAE,IAA2B;IACpF,IAAI,CAAC,IAAI,EAAE;QACP,IAAI,GAAG,EAAE,CAAA;KACZ;IAED,IAAI,GAAG,MAAM,CAAC,YAAY,CAAC,SAAS,CAAC,oBAAoB,EAAE,EAAE,IAAI,CAAC,CAAC;IACnE,OAAO,MAAM,CAAC,OAAO,CAAC,MAAM,CAAC,4CAA4C,EAAE;QACvE,OAAO,EAAE,IAAI,CAAC,KAAK;QACnB,MAAM,EAAE,IAAI,CAAC,IAAI;QACjB,WAAW,EAAE,IAAI,CAAC,SAAS;KAC9B,EAAE,IAAI,CAAC,CAAC;AACb,CAAC;AAXD,4CAWC;AA+CD,SAAgB,sBAAsB,CAAC,IAAgC,EAAE,IAA2B;IAChG,OAAO,MAAM,CAAC,MAAM,CAAC,IAAI,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,EAAE,CAAC,gBAAgB,CAAC,CAAC,EAAE,IAAI,CAAC,CAAC,CAAA;AACpE,CAAC;AAFD,wDAEC"}