@pulumi/vault 5.6.0 → 5.7.1

package/identity/mfaDuo.d.ts

@@ -0,0 +1,200 @@
+import * as pulumi from "@pulumi/pulumi";
+/**
+ * Resource for configuring the duo MFA method.
+ *
+ * ## Example Usage
+ *
+ * ```typescript
+ * import * as pulumi from "@pulumi/pulumi";
+ * import * as vault from "@pulumi/vault";
+ *
+ * const example = new vault.identity.MfaDuo("example", {
+ *     apiHostname: "api-xxxxxxxx.duosecurity.com",
+ *     integrationKey: "secret-int-key",
+ *     secretKey: "secret-key",
+ * });
+ * ```
+ *
+ * ## Import
+ *
+ * Resource can be imported using its `uuid` field, e.g.
+ *
+ * ```sh
+ *  $ pulumi import vault:identity/mfaDuo:MfaDuo example 0d89c36a-4ff5-4d70-8749-bb6a5598aeec
+ * ```
+ */
+export declare class MfaDuo extends pulumi.CustomResource {
+    /**
+     * Get an existing MfaDuo resource's state with the given name, ID, and optional extra
+     * properties used to qualify the lookup.
+     *
+     * @param name The _unique_ name of the resulting resource.
+     * @param id The _unique_ provider ID of the resource to lookup.
+     * @param state Any extra arguments used during the lookup.
+     * @param opts Optional settings to control the behavior of the CustomResource.
+     */
+    static get(name: string, id: pulumi.Input<pulumi.ID>, state?: MfaDuoState, opts?: pulumi.CustomResourceOptions): MfaDuo;
+    /**
+     * Returns true if the given object is an instance of MfaDuo.  This is designed to work even
+     * when multiple copies of the Pulumi SDK have been loaded into the same process.
+     */
+    static isInstance(obj: any): obj is MfaDuo;
+    /**
+     * API hostname for Duo
+     */
+    readonly apiHostname: pulumi.Output<string>;
+    /**
+     * Integration key for Duo
+     */
+    readonly integrationKey: pulumi.Output<string>;
+    /**
+     * Method ID.
+     */
+    readonly methodId: pulumi.Output<string>;
+    /**
+     * Mount accessor.
+     */
+    readonly mountAccessor: pulumi.Output<string>;
+    /**
+     * Method name.
+     */
+    readonly name: pulumi.Output<string>;
+    /**
+     * Target namespace. (requires Enterprise)
+     */
+    readonly namespace: pulumi.Output<string | undefined>;
+    /**
+     * Method's namespace ID.
+     */
+    readonly namespaceId: pulumi.Output<string>;
+    /**
+     * Method's namespace path.
+     */
+    readonly namespacePath: pulumi.Output<string>;
+    /**
+     * Push information for Duo.
+     */
+    readonly pushInfo: pulumi.Output<string | undefined>;
+    /**
+     * Secret key for Duo
+     */
+    readonly secretKey: pulumi.Output<string>;
+    /**
+     * MFA type.
+     */
+    readonly type: pulumi.Output<string>;
+    /**
+     * Require passcode upon MFA validation.
+     */
+    readonly usePasscode: pulumi.Output<boolean | undefined>;
+    /**
+     * A template string for mapping Identity names to MFA methods.
+     */
+    readonly usernameFormat: pulumi.Output<string | undefined>;
+    /**
+     * Resource UUID.
+     */
+    readonly uuid: pulumi.Output<string>;
+    /**
+     * Create a MfaDuo resource with the given unique name, arguments, and options.
+     *
+     * @param name The _unique_ name of the resource.
+     * @param args The arguments to use to populate this resource's properties.
+     * @param opts A bag of options that control this resource's behavior.
+     */
+    constructor(name: string, args: MfaDuoArgs, opts?: pulumi.CustomResourceOptions);
+}
+/**
+ * Input properties used for looking up and filtering MfaDuo resources.
+ */
+export interface MfaDuoState {
+    /**
+     * API hostname for Duo
+     */
+    apiHostname?: pulumi.Input<string>;
+    /**
+     * Integration key for Duo
+     */
+    integrationKey?: pulumi.Input<string>;
+    /**
+     * Method ID.
+     */
+    methodId?: pulumi.Input<string>;
+    /**
+     * Mount accessor.
+     */
+    mountAccessor?: pulumi.Input<string>;
+    /**
+     * Method name.
+     */
+    name?: pulumi.Input<string>;
+    /**
+     * Target namespace. (requires Enterprise)
+     */
+    namespace?: pulumi.Input<string>;
+    /**
+     * Method's namespace ID.
+     */
+    namespaceId?: pulumi.Input<string>;
+    /**
+     * Method's namespace path.
+     */
+    namespacePath?: pulumi.Input<string>;
+    /**
+     * Push information for Duo.
+     */
+    pushInfo?: pulumi.Input<string>;
+    /**
+     * Secret key for Duo
+     */
+    secretKey?: pulumi.Input<string>;
+    /**
+     * MFA type.
+     */
+    type?: pulumi.Input<string>;
+    /**
+     * Require passcode upon MFA validation.
+     */
+    usePasscode?: pulumi.Input<boolean>;
+    /**
+     * A template string for mapping Identity names to MFA methods.
+     */
+    usernameFormat?: pulumi.Input<string>;
+    /**
+     * Resource UUID.
+     */
+    uuid?: pulumi.Input<string>;
+}
+/**
+ * The set of arguments for constructing a MfaDuo resource.
+ */
+export interface MfaDuoArgs {
+    /**
+     * API hostname for Duo
+     */
+    apiHostname: pulumi.Input<string>;
+    /**
+     * Integration key for Duo
+     */
+    integrationKey: pulumi.Input<string>;
+    /**
+     * Target namespace. (requires Enterprise)
+     */
+    namespace?: pulumi.Input<string>;
+    /**
+     * Push information for Duo.
+     */
+    pushInfo?: pulumi.Input<string>;
+    /**
+     * Secret key for Duo
+     */
+    secretKey: pulumi.Input<string>;
+    /**
+     * Require passcode upon MFA validation.
+     */
+    usePasscode?: pulumi.Input<boolean>;
+    /**
+     * A template string for mapping Identity names to MFA methods.
+     */
+    usernameFormat?: pulumi.Input<string>;
+}

package/identity/mfaDuo.js

@@ -0,0 +1,110 @@
+"use strict";
+// *** WARNING: this file was generated by the Pulumi Terraform Bridge (tfgen) Tool. ***
+// *** Do not edit by hand unless you're certain you know what you are doing! ***
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.MfaDuo = void 0;
+const pulumi = require("@pulumi/pulumi");
+const utilities = require("../utilities");
+/**
+ * Resource for configuring the duo MFA method.
+ *
+ * ## Example Usage
+ *
+ * ```typescript
+ * import * as pulumi from "@pulumi/pulumi";
+ * import * as vault from "@pulumi/vault";
+ *
+ * const example = new vault.identity.MfaDuo("example", {
+ *     apiHostname: "api-xxxxxxxx.duosecurity.com",
+ *     integrationKey: "secret-int-key",
+ *     secretKey: "secret-key",
+ * });
+ * ```
+ *
+ * ## Import
+ *
+ * Resource can be imported using its `uuid` field, e.g.
+ *
+ * ```sh
+ *  $ pulumi import vault:identity/mfaDuo:MfaDuo example 0d89c36a-4ff5-4d70-8749-bb6a5598aeec
+ * ```
+ */
+class MfaDuo extends pulumi.CustomResource {
+    constructor(name, argsOrState, opts) {
+        let resourceInputs = {};
+        opts = opts || {};
+        if (opts.id) {
+            const state = argsOrState;
+            resourceInputs["apiHostname"] = state ? state.apiHostname : undefined;
+            resourceInputs["integrationKey"] = state ? state.integrationKey : undefined;
+            resourceInputs["methodId"] = state ? state.methodId : undefined;
+            resourceInputs["mountAccessor"] = state ? state.mountAccessor : undefined;
+            resourceInputs["name"] = state ? state.name : undefined;
+            resourceInputs["namespace"] = state ? state.namespace : undefined;
+            resourceInputs["namespaceId"] = state ? state.namespaceId : undefined;
+            resourceInputs["namespacePath"] = state ? state.namespacePath : undefined;
+            resourceInputs["pushInfo"] = state ? state.pushInfo : undefined;
+            resourceInputs["secretKey"] = state ? state.secretKey : undefined;
+            resourceInputs["type"] = state ? state.type : undefined;
+            resourceInputs["usePasscode"] = state ? state.usePasscode : undefined;
+            resourceInputs["usernameFormat"] = state ? state.usernameFormat : undefined;
+            resourceInputs["uuid"] = state ? state.uuid : undefined;
+        }
+        else {
+            const args = argsOrState;
+            if ((!args || args.apiHostname === undefined) && !opts.urn) {
+                throw new Error("Missing required property 'apiHostname'");
+            }
+            if ((!args || args.integrationKey === undefined) && !opts.urn) {
+                throw new Error("Missing required property 'integrationKey'");
+            }
+            if ((!args || args.secretKey === undefined) && !opts.urn) {
+                throw new Error("Missing required property 'secretKey'");
+            }
+            resourceInputs["apiHostname"] = args ? args.apiHostname : undefined;
+            resourceInputs["integrationKey"] = (args === null || args === void 0 ? void 0 : args.integrationKey) ? pulumi.secret(args.integrationKey) : undefined;
+            resourceInputs["namespace"] = args ? args.namespace : undefined;
+            resourceInputs["pushInfo"] = args ? args.pushInfo : undefined;
+            resourceInputs["secretKey"] = (args === null || args === void 0 ? void 0 : args.secretKey) ? pulumi.secret(args.secretKey) : undefined;
+            resourceInputs["usePasscode"] = args ? args.usePasscode : undefined;
+            resourceInputs["usernameFormat"] = args ? args.usernameFormat : undefined;
+            resourceInputs["methodId"] = undefined /*out*/;
+            resourceInputs["mountAccessor"] = undefined /*out*/;
+            resourceInputs["name"] = undefined /*out*/;
+            resourceInputs["namespaceId"] = undefined /*out*/;
+            resourceInputs["namespacePath"] = undefined /*out*/;
+            resourceInputs["type"] = undefined /*out*/;
+            resourceInputs["uuid"] = undefined /*out*/;
+        }
+        opts = pulumi.mergeOptions(utilities.resourceOptsDefaults(), opts);
+        const secretOpts = { additionalSecretOutputs: ["integrationKey", "secretKey"] };
+        opts = pulumi.mergeOptions(opts, secretOpts);
+        super(MfaDuo.__pulumiType, name, resourceInputs, opts);
+    }
+    /**
+     * Get an existing MfaDuo resource's state with the given name, ID, and optional extra
+     * properties used to qualify the lookup.
+     *
+     * @param name The _unique_ name of the resulting resource.
+     * @param id The _unique_ provider ID of the resource to lookup.
+     * @param state Any extra arguments used during the lookup.
+     * @param opts Optional settings to control the behavior of the CustomResource.
+     */
+    static get(name, id, state, opts) {
+        return new MfaDuo(name, state, Object.assign(Object.assign({}, opts), { id: id }));
+    }
+    /**
+     * Returns true if the given object is an instance of MfaDuo.  This is designed to work even
+     * when multiple copies of the Pulumi SDK have been loaded into the same process.
+     */
+    static isInstance(obj) {
+        if (obj === undefined || obj === null) {
+            return false;
+        }
+        return obj['__pulumiType'] === MfaDuo.__pulumiType;
+    }
+}
+exports.MfaDuo = MfaDuo;
+/** @internal */
+MfaDuo.__pulumiType = 'vault:identity/mfaDuo:MfaDuo';
+//# sourceMappingURL=mfaDuo.js.map

package/identity/mfaDuo.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"mfaDuo.js","sourceRoot":"","sources":["../../identity/mfaDuo.ts"],"names":[],"mappings":";AAAA,wFAAwF;AACxF,iFAAiF;;;AAEjF,yCAAyC;AACzC,0CAA0C;AAE1C;;;;;;;;;;;;;;;;;;;;;;;GAuBG;AACH,MAAa,MAAO,SAAQ,MAAM,CAAC,cAAc;IA6F7C,YAAY,IAAY,EAAE,WAAsC,EAAE,IAAmC;QACjG,IAAI,cAAc,GAAkB,EAAE,CAAC;QACvC,IAAI,GAAG,IAAI,IAAI,EAAE,CAAC;QAClB,IAAI,IAAI,CAAC,EAAE,EAAE;YACT,MAAM,KAAK,GAAG,WAAsC,CAAC;YACrD,cAAc,CAAC,aAAa,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,WAAW,CAAC,CAAC,CAAC,SAAS,CAAC;YACtE,cAAc,CAAC,gBAAgB,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,cAAc,CAAC,CAAC,CAAC,SAAS,CAAC;YAC5E,cAAc,CAAC,UAAU,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,QAAQ,CAAC,CAAC,CAAC,SAAS,CAAC;YAChE,cAAc,CAAC,eAAe,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,aAAa,CAAC,CAAC,CAAC,SAAS,CAAC;YAC1E,cAAc,CAAC,MAAM,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC,CAAC,SAAS,CAAC;YACxD,cAAc,CAAC,WAAW,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,SAAS,CAAC,CAAC,CAAC,SAAS,CAAC;YAClE,cAAc,CAAC,aAAa,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,WAAW,CAAC,CAAC,CAAC,SAAS,CAAC;YACtE,cAAc,CAAC,eAAe,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,aAAa,CAAC,CAAC,CAAC,SAAS,CAAC;YAC1E,cAAc,CAAC,UAAU,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,QAAQ,CAAC,CAAC,CAAC,SAAS,CAAC;YAChE,cAAc,CAAC,WAAW,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,SAAS,CAAC,CAAC,CAAC,SAAS,CAAC;YAClE,cAAc,CAAC,MAAM,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC,CAAC,SAAS,CAAC;YACxD,cAAc,CAAC,aAAa,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,WAAW,CAAC,CAAC,CAAC,SAAS,CAAC;YACtE,cAAc,CAAC,gBAAgB,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,cAAc,CAAC,CAAC,CAAC,SAAS,CAAC;YAC5E,cAAc,CAAC,MAAM,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC,CAAC,SAAS,CAAC;SAC3D;aAAM;YACH,MAAM,IAAI,GAAG,WAAqC,CAAC;YACnD,IAAI,CAAC,CAAC,IAAI,IAAI,IAAI,CAAC,WAAW,KAAK,SAAS,CAAC,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE;gBACxD,MAAM,IAAI,KAAK,CAAC,yCAAyC,CAAC,CAAC;aAC9D;YACD,IAAI,CAAC,CAAC,IAAI,IAAI,IAAI,CAAC,cAAc,KAAK,SAAS,CAAC,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE;gBAC3D,MAAM,IAAI,KAAK,CAAC,4CAA4C,CAAC,CAAC;aACjE;YACD,IAAI,CAAC,CAAC,IAAI,IAAI,IAAI,CAAC,SAAS,KAAK,SAAS,CAAC,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE;gBACtD,MAAM,IAAI,KAAK,CAAC,uCAAuC,CAAC,CAAC;aAC5D;YACD,cAAc,CAAC,aAAa,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,WAAW,CAAC,CAAC,CAAC,SAAS,CAAC;YACpE,cAAc,CAAC,gBAAgB,CAAC,GAAG,CAAA,IAAI,aAAJ,IAAI,uBAAJ,IAAI,CAAE,cAAc,EAAC,CAAC,CAAC,MAAM,CAAC,MAAM,CAAC,IAAI,CAAC,cAAc,CAAC,CAAC,CAAC,CAAC,SAAS,CAAC;YACzG,cAAc,CAAC,WAAW,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,SAAS,CAAC,CAAC,CAAC,SAAS,CAAC;YAChE,cAAc,CAAC,UAAU,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC,CAAC,SAAS,CAAC;YAC9D,cAAc,CAAC,WAAW,CAAC,GAAG,CAAA,IAAI,aAAJ,IAAI,uBAAJ,IAAI,CAAE,SAAS,EAAC,CAAC,CAAC,MAAM,CAAC,MAAM,CAAC,IAAI,CAAC,SAAS,CAAC,CAAC,CAAC,CAAC,SAAS,CAAC;YAC1F,cAAc,CAAC,aAAa,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,WAAW,CAAC,CAAC,CAAC,SAAS,CAAC;YACpE,cAAc,CAAC,gBAAgB,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,cAAc,CAAC,CAAC,CAAC,SAAS,CAAC;YAC1E,cAAc,CAAC,UAAU,CAAC,GAAG,SAAS,CAAC,OAAO,CAAC;YAC/C,cAAc,CAAC,eAAe,CAAC,GAAG,SAAS,CAAC,OAAO,CAAC;YACpD,cAAc,CAAC,MAAM,CAAC,GAAG,SAAS,CAAC,OAAO,CAAC;YAC3C,cAAc,CAAC,aAAa,CAAC,GAAG,SAAS,CAAC,OAAO,CAAC;YAClD,cAAc,CAAC,eAAe,CAAC,GAAG,SAAS,CAAC,OAAO,CAAC;YACpD,cAAc,CAAC,MAAM,CAAC,GAAG,SAAS,CAAC,OAAO,CAAC;YAC3C,cAAc,CAAC,MAAM,CAAC,GAAG,SAAS,CAAC,OAAO,CAAC;SAC9C;QACD,IAAI,GAAG,MAAM,CAAC,YAAY,CAAC,SAAS,CAAC,oBAAoB,EAAE,EAAE,IAAI,CAAC,CAAC;QACnE,MAAM,UAAU,GAAG,EAAE,uBAAuB,EAAE,CAAC,gBAAgB,EAAE,WAAW,CAAC,EAAE,CAAC;QAChF,IAAI,GAAG,MAAM,CAAC,YAAY,CAAC,IAAI,EAAE,UAAU,CAAC,CAAC;QAC7C,KAAK,CAAC,MAAM,CAAC,YAAY,EAAE,IAAI,EAAE,cAAc,EAAE,IAAI,CAAC,CAAC;IAC3D,CAAC;IA7ID;;;;;;;;OAQG;IACI,MAAM,CAAC,GAAG,CAAC,IAAY,EAAE,EAA2B,EAAE,KAAmB,EAAE,IAAmC;QACjH,OAAO,IAAI,MAAM,CAAC,IAAI,EAAO,KAAK,kCAAO,IAAI,KAAE,EAAE,EAAE,EAAE,IAAG,CAAC;IAC7D,CAAC;IAKD;;;OAGG;IACI,MAAM,CAAC,UAAU,CAAC,GAAQ;QAC7B,IAAI,GAAG,KAAK,SAAS,IAAI,GAAG,KAAK,IAAI,EAAE;YACnC,OAAO,KAAK,CAAC;SAChB;QACD,OAAO,GAAG,CAAC,cAAc,CAAC,KAAK,MAAM,CAAC,YAAY,CAAC;IACvD,CAAC;;AA1BL,wBA+IC;AAjIG,gBAAgB;AACO,mBAAY,GAAG,8BAA8B,CAAC"}

package/identity/mfaLoginEnforcement.d.ts

@@ -0,0 +1,170 @@
+import * as pulumi from "@pulumi/pulumi";
+/**
+ * Resource for configuring MFA login-enforcement
+ *
+ * ## Example Usage
+ *
+ * ```typescript
+ * import * as pulumi from "@pulumi/pulumi";
+ * import * as vault from "@pulumi/vault";
+ *
+ * const exampleMfaDuo = new vault.identity.MfaDuo("exampleMfaDuo", {
+ *     secretKey: "secret-key",
+ *     integrationKey: "int-key",
+ *     apiHostname: "foo.baz",
+ *     pushInfo: "push-info",
+ * });
+ * const exampleMfaLoginEnforcement = new vault.identity.MfaLoginEnforcement("exampleMfaLoginEnforcement", {mfaMethodIds: [exampleMfaDuo.methodId]});
+ * ```
+ *
+ * ## Import
+ *
+ * Resource can be imported using its `name` field, e.g.
+ *
+ * ```sh
+ *  $ pulumi import vault:identity/mfaLoginEnforcement:MfaLoginEnforcement example default
+ * ```
+ */
+export declare class MfaLoginEnforcement extends pulumi.CustomResource {
+    /**
+     * Get an existing MfaLoginEnforcement resource's state with the given name, ID, and optional extra
+     * properties used to qualify the lookup.
+     *
+     * @param name The _unique_ name of the resulting resource.
+     * @param id The _unique_ provider ID of the resource to lookup.
+     * @param state Any extra arguments used during the lookup.
+     * @param opts Optional settings to control the behavior of the CustomResource.
+     */
+    static get(name: string, id: pulumi.Input<pulumi.ID>, state?: MfaLoginEnforcementState, opts?: pulumi.CustomResourceOptions): MfaLoginEnforcement;
+    /**
+     * Returns true if the given object is an instance of MfaLoginEnforcement.  This is designed to work even
+     * when multiple copies of the Pulumi SDK have been loaded into the same process.
+     */
+    static isInstance(obj: any): obj is MfaLoginEnforcement;
+    /**
+     * Set of auth method accessor IDs.
+     */
+    readonly authMethodAccessors: pulumi.Output<string[] | undefined>;
+    /**
+     * Set of auth method types.
+     */
+    readonly authMethodTypes: pulumi.Output<string[] | undefined>;
+    /**
+     * Set of identity entity IDs.
+     */
+    readonly identityEntityIds: pulumi.Output<string[] | undefined>;
+    /**
+     * Set of identity group IDs.
+     */
+    readonly identityGroupIds: pulumi.Output<string[] | undefined>;
+    /**
+     * Set of MFA method UUIDs.
+     */
+    readonly mfaMethodIds: pulumi.Output<string[]>;
+    /**
+     * Login enforcement name.
+     */
+    readonly name: pulumi.Output<string>;
+    /**
+     * Target namespace. (requires Enterprise)
+     */
+    readonly namespace: pulumi.Output<string | undefined>;
+    /**
+     * Method's namespace ID.
+     */
+    readonly namespaceId: pulumi.Output<string>;
+    /**
+     * Method's namespace path.
+     */
+    readonly namespacePath: pulumi.Output<string>;
+    /**
+     * Resource UUID.
+     */
+    readonly uuid: pulumi.Output<string>;
+    /**
+     * Create a MfaLoginEnforcement resource with the given unique name, arguments, and options.
+     *
+     * @param name The _unique_ name of the resource.
+     * @param args The arguments to use to populate this resource's properties.
+     * @param opts A bag of options that control this resource's behavior.
+     */
+    constructor(name: string, args: MfaLoginEnforcementArgs, opts?: pulumi.CustomResourceOptions);
+}
+/**
+ * Input properties used for looking up and filtering MfaLoginEnforcement resources.
+ */
+export interface MfaLoginEnforcementState {
+    /**
+     * Set of auth method accessor IDs.
+     */
+    authMethodAccessors?: pulumi.Input<pulumi.Input<string>[]>;
+    /**
+     * Set of auth method types.
+     */
+    authMethodTypes?: pulumi.Input<pulumi.Input<string>[]>;
+    /**
+     * Set of identity entity IDs.
+     */
+    identityEntityIds?: pulumi.Input<pulumi.Input<string>[]>;
+    /**
+     * Set of identity group IDs.
+     */
+    identityGroupIds?: pulumi.Input<pulumi.Input<string>[]>;
+    /**
+     * Set of MFA method UUIDs.
+     */
+    mfaMethodIds?: pulumi.Input<pulumi.Input<string>[]>;
+    /**
+     * Login enforcement name.
+     */
+    name?: pulumi.Input<string>;
+    /**
+     * Target namespace. (requires Enterprise)
+     */
+    namespace?: pulumi.Input<string>;
+    /**
+     * Method's namespace ID.
+     */
+    namespaceId?: pulumi.Input<string>;
+    /**
+     * Method's namespace path.
+     */
+    namespacePath?: pulumi.Input<string>;
+    /**
+     * Resource UUID.
+     */
+    uuid?: pulumi.Input<string>;
+}
+/**
+ * The set of arguments for constructing a MfaLoginEnforcement resource.
+ */
+export interface MfaLoginEnforcementArgs {
+    /**
+     * Set of auth method accessor IDs.
+     */
+    authMethodAccessors?: pulumi.Input<pulumi.Input<string>[]>;
+    /**
+     * Set of auth method types.
+     */
+    authMethodTypes?: pulumi.Input<pulumi.Input<string>[]>;
+    /**
+     * Set of identity entity IDs.
+     */
+    identityEntityIds?: pulumi.Input<pulumi.Input<string>[]>;
+    /**
+     * Set of identity group IDs.
+     */
+    identityGroupIds?: pulumi.Input<pulumi.Input<string>[]>;
+    /**
+     * Set of MFA method UUIDs.
+     */
+    mfaMethodIds: pulumi.Input<pulumi.Input<string>[]>;
+    /**
+     * Login enforcement name.
+     */
+    name?: pulumi.Input<string>;
+    /**
+     * Target namespace. (requires Enterprise)
+     */
+    namespace?: pulumi.Input<string>;
+}

package/identity/mfaLoginEnforcement.js

@@ -0,0 +1,96 @@
+"use strict";
+// *** WARNING: this file was generated by the Pulumi Terraform Bridge (tfgen) Tool. ***
+// *** Do not edit by hand unless you're certain you know what you are doing! ***
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.MfaLoginEnforcement = void 0;
+const pulumi = require("@pulumi/pulumi");
+const utilities = require("../utilities");
+/**
+ * Resource for configuring MFA login-enforcement
+ *
+ * ## Example Usage
+ *
+ * ```typescript
+ * import * as pulumi from "@pulumi/pulumi";
+ * import * as vault from "@pulumi/vault";
+ *
+ * const exampleMfaDuo = new vault.identity.MfaDuo("exampleMfaDuo", {
+ *     secretKey: "secret-key",
+ *     integrationKey: "int-key",
+ *     apiHostname: "foo.baz",
+ *     pushInfo: "push-info",
+ * });
+ * const exampleMfaLoginEnforcement = new vault.identity.MfaLoginEnforcement("exampleMfaLoginEnforcement", {mfaMethodIds: [exampleMfaDuo.methodId]});
+ * ```
+ *
+ * ## Import
+ *
+ * Resource can be imported using its `name` field, e.g.
+ *
+ * ```sh
+ *  $ pulumi import vault:identity/mfaLoginEnforcement:MfaLoginEnforcement example default
+ * ```
+ */
+class MfaLoginEnforcement extends pulumi.CustomResource {
+    constructor(name, argsOrState, opts) {
+        let resourceInputs = {};
+        opts = opts || {};
+        if (opts.id) {
+            const state = argsOrState;
+            resourceInputs["authMethodAccessors"] = state ? state.authMethodAccessors : undefined;
+            resourceInputs["authMethodTypes"] = state ? state.authMethodTypes : undefined;
+            resourceInputs["identityEntityIds"] = state ? state.identityEntityIds : undefined;
+            resourceInputs["identityGroupIds"] = state ? state.identityGroupIds : undefined;
+            resourceInputs["mfaMethodIds"] = state ? state.mfaMethodIds : undefined;
+            resourceInputs["name"] = state ? state.name : undefined;
+            resourceInputs["namespace"] = state ? state.namespace : undefined;
+            resourceInputs["namespaceId"] = state ? state.namespaceId : undefined;
+            resourceInputs["namespacePath"] = state ? state.namespacePath : undefined;
+            resourceInputs["uuid"] = state ? state.uuid : undefined;
+        }
+        else {
+            const args = argsOrState;
+            if ((!args || args.mfaMethodIds === undefined) && !opts.urn) {
+                throw new Error("Missing required property 'mfaMethodIds'");
+            }
+            resourceInputs["authMethodAccessors"] = args ? args.authMethodAccessors : undefined;
+            resourceInputs["authMethodTypes"] = args ? args.authMethodTypes : undefined;
+            resourceInputs["identityEntityIds"] = args ? args.identityEntityIds : undefined;
+            resourceInputs["identityGroupIds"] = args ? args.identityGroupIds : undefined;
+            resourceInputs["mfaMethodIds"] = args ? args.mfaMethodIds : undefined;
+            resourceInputs["name"] = args ? args.name : undefined;
+            resourceInputs["namespace"] = args ? args.namespace : undefined;
+            resourceInputs["namespaceId"] = undefined /*out*/;
+            resourceInputs["namespacePath"] = undefined /*out*/;
+            resourceInputs["uuid"] = undefined /*out*/;
+        }
+        opts = pulumi.mergeOptions(utilities.resourceOptsDefaults(), opts);
+        super(MfaLoginEnforcement.__pulumiType, name, resourceInputs, opts);
+    }
+    /**
+     * Get an existing MfaLoginEnforcement resource's state with the given name, ID, and optional extra
+     * properties used to qualify the lookup.
+     *
+     * @param name The _unique_ name of the resulting resource.
+     * @param id The _unique_ provider ID of the resource to lookup.
+     * @param state Any extra arguments used during the lookup.
+     * @param opts Optional settings to control the behavior of the CustomResource.
+     */
+    static get(name, id, state, opts) {
+        return new MfaLoginEnforcement(name, state, Object.assign(Object.assign({}, opts), { id: id }));
+    }
+    /**
+     * Returns true if the given object is an instance of MfaLoginEnforcement.  This is designed to work even
+     * when multiple copies of the Pulumi SDK have been loaded into the same process.
+     */
+    static isInstance(obj) {
+        if (obj === undefined || obj === null) {
+            return false;
+        }
+        return obj['__pulumiType'] === MfaLoginEnforcement.__pulumiType;
+    }
+}
+exports.MfaLoginEnforcement = MfaLoginEnforcement;
+/** @internal */
+MfaLoginEnforcement.__pulumiType = 'vault:identity/mfaLoginEnforcement:MfaLoginEnforcement';
+//# sourceMappingURL=mfaLoginEnforcement.js.map

package/identity/mfaLoginEnforcement.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"mfaLoginEnforcement.js","sourceRoot":"","sources":["../../identity/mfaLoginEnforcement.ts"],"names":[],"mappings":";AAAA,wFAAwF;AACxF,iFAAiF;;;AAEjF,yCAAyC;AACzC,0CAA0C;AAE1C;;;;;;;;;;;;;;;;;;;;;;;;;GAyBG;AACH,MAAa,mBAAoB,SAAQ,MAAM,CAAC,cAAc;IA6E1D,YAAY,IAAY,EAAE,WAAgE,EAAE,IAAmC;QAC3H,IAAI,cAAc,GAAkB,EAAE,CAAC;QACvC,IAAI,GAAG,IAAI,IAAI,EAAE,CAAC;QAClB,IAAI,IAAI,CAAC,EAAE,EAAE;YACT,MAAM,KAAK,GAAG,WAAmD,CAAC;YAClE,cAAc,CAAC,qBAAqB,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,mBAAmB,CAAC,CAAC,CAAC,SAAS,CAAC;YACtF,cAAc,CAAC,iBAAiB,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,eAAe,CAAC,CAAC,CAAC,SAAS,CAAC;YAC9E,cAAc,CAAC,mBAAmB,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,iBAAiB,CAAC,CAAC,CAAC,SAAS,CAAC;YAClF,cAAc,CAAC,kBAAkB,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,gBAAgB,CAAC,CAAC,CAAC,SAAS,CAAC;YAChF,cAAc,CAAC,cAAc,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,YAAY,CAAC,CAAC,CAAC,SAAS,CAAC;YACxE,cAAc,CAAC,MAAM,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC,CAAC,SAAS,CAAC;YACxD,cAAc,CAAC,WAAW,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,SAAS,CAAC,CAAC,CAAC,SAAS,CAAC;YAClE,cAAc,CAAC,aAAa,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,WAAW,CAAC,CAAC,CAAC,SAAS,CAAC;YACtE,cAAc,CAAC,eAAe,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,aAAa,CAAC,CAAC,CAAC,SAAS,CAAC;YAC1E,cAAc,CAAC,MAAM,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC,CAAC,SAAS,CAAC;SAC3D;aAAM;YACH,MAAM,IAAI,GAAG,WAAkD,CAAC;YAChE,IAAI,CAAC,CAAC,IAAI,IAAI,IAAI,CAAC,YAAY,KAAK,SAAS,CAAC,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE;gBACzD,MAAM,IAAI,KAAK,CAAC,0CAA0C,CAAC,CAAC;aAC/D;YACD,cAAc,CAAC,qBAAqB,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,mBAAmB,CAAC,CAAC,CAAC,SAAS,CAAC;YACpF,cAAc,CAAC,iBAAiB,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,eAAe,CAAC,CAAC,CAAC,SAAS,CAAC;YAC5E,cAAc,CAAC,mBAAmB,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,iBAAiB,CAAC,CAAC,CAAC,SAAS,CAAC;YAChF,cAAc,CAAC,kBAAkB,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,gBAAgB,CAAC,CAAC,CAAC,SAAS,CAAC;YAC9E,cAAc,CAAC,cAAc,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,YAAY,CAAC,CAAC,CAAC,SAAS,CAAC;YACtE,cAAc,CAAC,MAAM,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC,CAAC,SAAS,CAAC;YACtD,cAAc,CAAC,WAAW,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,SAAS,CAAC,CAAC,CAAC,SAAS,CAAC;YAChE,cAAc,CAAC,aAAa,CAAC,GAAG,SAAS,CAAC,OAAO,CAAC;YAClD,cAAc,CAAC,eAAe,CAAC,GAAG,SAAS,CAAC,OAAO,CAAC;YACpD,cAAc,CAAC,MAAM,CAAC,GAAG,SAAS,CAAC,OAAO,CAAC;SAC9C;QACD,IAAI,GAAG,MAAM,CAAC,YAAY,CAAC,SAAS,CAAC,oBAAoB,EAAE,EAAE,IAAI,CAAC,CAAC;QACnE,KAAK,CAAC,mBAAmB,CAAC,YAAY,EAAE,IAAI,EAAE,cAAc,EAAE,IAAI,CAAC,CAAC;IACxE,CAAC;IA7GD;;;;;;;;OAQG;IACI,MAAM,CAAC,GAAG,CAAC,IAAY,EAAE,EAA2B,EAAE,KAAgC,EAAE,IAAmC;QAC9H,OAAO,IAAI,mBAAmB,CAAC,IAAI,EAAO,KAAK,kCAAO,IAAI,KAAE,EAAE,EAAE,EAAE,IAAG,CAAC;IAC1E,CAAC;IAKD;;;OAGG;IACI,MAAM,CAAC,UAAU,CAAC,GAAQ;QAC7B,IAAI,GAAG,KAAK,SAAS,IAAI,GAAG,KAAK,IAAI,EAAE;YACnC,OAAO,KAAK,CAAC;SAChB;QACD,OAAO,GAAG,CAAC,cAAc,CAAC,KAAK,mBAAmB,CAAC,YAAY,CAAC;IACpE,CAAC;;AA1BL,kDA+GC;AAjGG,gBAAgB;AACO,gCAAY,GAAG,wDAAwD,CAAC"}