@pulumi/vault 5.6.0 → 5.7.1

package/identity/mfaOkta.d.ts

@@ -0,0 +1,188 @@
+import * as pulumi from "@pulumi/pulumi";
+/**
+ * Resource for configuring the okta MFA method.
+ *
+ * ## Example Usage
+ *
+ * ```typescript
+ * import * as pulumi from "@pulumi/pulumi";
+ * import * as vault from "@pulumi/vault";
+ *
+ * const example = new vault.identity.MfaOkta("example", {
+ *     apiToken: "token1",
+ *     baseUrl: "qux.baz.com",
+ *     orgName: "org1",
+ * });
+ * ```
+ *
+ * ## Import
+ *
+ * Resource can be imported using its `uuid` field, e.g.
+ *
+ * ```sh
+ *  $ pulumi import vault:identity/mfaOkta:MfaOkta example 0d89c36a-4ff5-4d70-8749-bb6a5598aeec
+ * ```
+ */
+export declare class MfaOkta extends pulumi.CustomResource {
+    /**
+     * Get an existing MfaOkta resource's state with the given name, ID, and optional extra
+     * properties used to qualify the lookup.
+     *
+     * @param name The _unique_ name of the resulting resource.
+     * @param id The _unique_ provider ID of the resource to lookup.
+     * @param state Any extra arguments used during the lookup.
+     * @param opts Optional settings to control the behavior of the CustomResource.
+     */
+    static get(name: string, id: pulumi.Input<pulumi.ID>, state?: MfaOktaState, opts?: pulumi.CustomResourceOptions): MfaOkta;
+    /**
+     * Returns true if the given object is an instance of MfaOkta.  This is designed to work even
+     * when multiple copies of the Pulumi SDK have been loaded into the same process.
+     */
+    static isInstance(obj: any): obj is MfaOkta;
+    /**
+     * Okta API token.
+     */
+    readonly apiToken: pulumi.Output<string>;
+    /**
+     * The base domain to use for API requests.
+     */
+    readonly baseUrl: pulumi.Output<string | undefined>;
+    /**
+     * Method ID.
+     */
+    readonly methodId: pulumi.Output<string>;
+    /**
+     * Mount accessor.
+     */
+    readonly mountAccessor: pulumi.Output<string>;
+    /**
+     * Method name.
+     */
+    readonly name: pulumi.Output<string>;
+    /**
+     * Target namespace. (requires Enterprise)
+     */
+    readonly namespace: pulumi.Output<string | undefined>;
+    /**
+     * Method's namespace ID.
+     */
+    readonly namespaceId: pulumi.Output<string>;
+    /**
+     * Method's namespace path.
+     */
+    readonly namespacePath: pulumi.Output<string>;
+    /**
+     * Name of the organization to be used in the Okta API.
+     */
+    readonly orgName: pulumi.Output<string>;
+    /**
+     * Only match the primary email for the account.
+     */
+    readonly primaryEmail: pulumi.Output<boolean | undefined>;
+    /**
+     * MFA type.
+     */
+    readonly type: pulumi.Output<string>;
+    /**
+     * A template string for mapping Identity names to MFA methods.
+     */
+    readonly usernameFormat: pulumi.Output<string | undefined>;
+    /**
+     * Resource UUID.
+     */
+    readonly uuid: pulumi.Output<string>;
+    /**
+     * Create a MfaOkta resource with the given unique name, arguments, and options.
+     *
+     * @param name The _unique_ name of the resource.
+     * @param args The arguments to use to populate this resource's properties.
+     * @param opts A bag of options that control this resource's behavior.
+     */
+    constructor(name: string, args: MfaOktaArgs, opts?: pulumi.CustomResourceOptions);
+}
+/**
+ * Input properties used for looking up and filtering MfaOkta resources.
+ */
+export interface MfaOktaState {
+    /**
+     * Okta API token.
+     */
+    apiToken?: pulumi.Input<string>;
+    /**
+     * The base domain to use for API requests.
+     */
+    baseUrl?: pulumi.Input<string>;
+    /**
+     * Method ID.
+     */
+    methodId?: pulumi.Input<string>;
+    /**
+     * Mount accessor.
+     */
+    mountAccessor?: pulumi.Input<string>;
+    /**
+     * Method name.
+     */
+    name?: pulumi.Input<string>;
+    /**
+     * Target namespace. (requires Enterprise)
+     */
+    namespace?: pulumi.Input<string>;
+    /**
+     * Method's namespace ID.
+     */
+    namespaceId?: pulumi.Input<string>;
+    /**
+     * Method's namespace path.
+     */
+    namespacePath?: pulumi.Input<string>;
+    /**
+     * Name of the organization to be used in the Okta API.
+     */
+    orgName?: pulumi.Input<string>;
+    /**
+     * Only match the primary email for the account.
+     */
+    primaryEmail?: pulumi.Input<boolean>;
+    /**
+     * MFA type.
+     */
+    type?: pulumi.Input<string>;
+    /**
+     * A template string for mapping Identity names to MFA methods.
+     */
+    usernameFormat?: pulumi.Input<string>;
+    /**
+     * Resource UUID.
+     */
+    uuid?: pulumi.Input<string>;
+}
+/**
+ * The set of arguments for constructing a MfaOkta resource.
+ */
+export interface MfaOktaArgs {
+    /**
+     * Okta API token.
+     */
+    apiToken: pulumi.Input<string>;
+    /**
+     * The base domain to use for API requests.
+     */
+    baseUrl?: pulumi.Input<string>;
+    /**
+     * Target namespace. (requires Enterprise)
+     */
+    namespace?: pulumi.Input<string>;
+    /**
+     * Name of the organization to be used in the Okta API.
+     */
+    orgName: pulumi.Input<string>;
+    /**
+     * Only match the primary email for the account.
+     */
+    primaryEmail?: pulumi.Input<boolean>;
+    /**
+     * A template string for mapping Identity names to MFA methods.
+     */
+    usernameFormat?: pulumi.Input<string>;
+}

package/identity/mfaOkta.js

@@ -0,0 +1,105 @@
+"use strict";
+// *** WARNING: this file was generated by the Pulumi Terraform Bridge (tfgen) Tool. ***
+// *** Do not edit by hand unless you're certain you know what you are doing! ***
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.MfaOkta = void 0;
+const pulumi = require("@pulumi/pulumi");
+const utilities = require("../utilities");
+/**
+ * Resource for configuring the okta MFA method.
+ *
+ * ## Example Usage
+ *
+ * ```typescript
+ * import * as pulumi from "@pulumi/pulumi";
+ * import * as vault from "@pulumi/vault";
+ *
+ * const example = new vault.identity.MfaOkta("example", {
+ *     apiToken: "token1",
+ *     baseUrl: "qux.baz.com",
+ *     orgName: "org1",
+ * });
+ * ```
+ *
+ * ## Import
+ *
+ * Resource can be imported using its `uuid` field, e.g.
+ *
+ * ```sh
+ *  $ pulumi import vault:identity/mfaOkta:MfaOkta example 0d89c36a-4ff5-4d70-8749-bb6a5598aeec
+ * ```
+ */
+class MfaOkta extends pulumi.CustomResource {
+    constructor(name, argsOrState, opts) {
+        let resourceInputs = {};
+        opts = opts || {};
+        if (opts.id) {
+            const state = argsOrState;
+            resourceInputs["apiToken"] = state ? state.apiToken : undefined;
+            resourceInputs["baseUrl"] = state ? state.baseUrl : undefined;
+            resourceInputs["methodId"] = state ? state.methodId : undefined;
+            resourceInputs["mountAccessor"] = state ? state.mountAccessor : undefined;
+            resourceInputs["name"] = state ? state.name : undefined;
+            resourceInputs["namespace"] = state ? state.namespace : undefined;
+            resourceInputs["namespaceId"] = state ? state.namespaceId : undefined;
+            resourceInputs["namespacePath"] = state ? state.namespacePath : undefined;
+            resourceInputs["orgName"] = state ? state.orgName : undefined;
+            resourceInputs["primaryEmail"] = state ? state.primaryEmail : undefined;
+            resourceInputs["type"] = state ? state.type : undefined;
+            resourceInputs["usernameFormat"] = state ? state.usernameFormat : undefined;
+            resourceInputs["uuid"] = state ? state.uuid : undefined;
+        }
+        else {
+            const args = argsOrState;
+            if ((!args || args.apiToken === undefined) && !opts.urn) {
+                throw new Error("Missing required property 'apiToken'");
+            }
+            if ((!args || args.orgName === undefined) && !opts.urn) {
+                throw new Error("Missing required property 'orgName'");
+            }
+            resourceInputs["apiToken"] = (args === null || args === void 0 ? void 0 : args.apiToken) ? pulumi.secret(args.apiToken) : undefined;
+            resourceInputs["baseUrl"] = args ? args.baseUrl : undefined;
+            resourceInputs["namespace"] = args ? args.namespace : undefined;
+            resourceInputs["orgName"] = args ? args.orgName : undefined;
+            resourceInputs["primaryEmail"] = args ? args.primaryEmail : undefined;
+            resourceInputs["usernameFormat"] = args ? args.usernameFormat : undefined;
+            resourceInputs["methodId"] = undefined /*out*/;
+            resourceInputs["mountAccessor"] = undefined /*out*/;
+            resourceInputs["name"] = undefined /*out*/;
+            resourceInputs["namespaceId"] = undefined /*out*/;
+            resourceInputs["namespacePath"] = undefined /*out*/;
+            resourceInputs["type"] = undefined /*out*/;
+            resourceInputs["uuid"] = undefined /*out*/;
+        }
+        opts = pulumi.mergeOptions(utilities.resourceOptsDefaults(), opts);
+        const secretOpts = { additionalSecretOutputs: ["apiToken"] };
+        opts = pulumi.mergeOptions(opts, secretOpts);
+        super(MfaOkta.__pulumiType, name, resourceInputs, opts);
+    }
+    /**
+     * Get an existing MfaOkta resource's state with the given name, ID, and optional extra
+     * properties used to qualify the lookup.
+     *
+     * @param name The _unique_ name of the resulting resource.
+     * @param id The _unique_ provider ID of the resource to lookup.
+     * @param state Any extra arguments used during the lookup.
+     * @param opts Optional settings to control the behavior of the CustomResource.
+     */
+    static get(name, id, state, opts) {
+        return new MfaOkta(name, state, Object.assign(Object.assign({}, opts), { id: id }));
+    }
+    /**
+     * Returns true if the given object is an instance of MfaOkta.  This is designed to work even
+     * when multiple copies of the Pulumi SDK have been loaded into the same process.
+     */
+    static isInstance(obj) {
+        if (obj === undefined || obj === null) {
+            return false;
+        }
+        return obj['__pulumiType'] === MfaOkta.__pulumiType;
+    }
+}
+exports.MfaOkta = MfaOkta;
+/** @internal */
+MfaOkta.__pulumiType = 'vault:identity/mfaOkta:MfaOkta';
+//# sourceMappingURL=mfaOkta.js.map

package/identity/mfaOkta.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"mfaOkta.js","sourceRoot":"","sources":["../../identity/mfaOkta.ts"],"names":[],"mappings":";AAAA,wFAAwF;AACxF,iFAAiF;;;AAEjF,yCAAyC;AACzC,0CAA0C;AAE1C;;;;;;;;;;;;;;;;;;;;;;;GAuBG;AACH,MAAa,OAAQ,SAAQ,MAAM,CAAC,cAAc;IAyF9C,YAAY,IAAY,EAAE,WAAwC,EAAE,IAAmC;QACnG,IAAI,cAAc,GAAkB,EAAE,CAAC;QACvC,IAAI,GAAG,IAAI,IAAI,EAAE,CAAC;QAClB,IAAI,IAAI,CAAC,EAAE,EAAE;YACT,MAAM,KAAK,GAAG,WAAuC,CAAC;YACtD,cAAc,CAAC,UAAU,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,QAAQ,CAAC,CAAC,CAAC,SAAS,CAAC;YAChE,cAAc,CAAC,SAAS,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,SAAS,CAAC;YAC9D,cAAc,CAAC,UAAU,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,QAAQ,CAAC,CAAC,CAAC,SAAS,CAAC;YAChE,cAAc,CAAC,eAAe,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,aAAa,CAAC,CAAC,CAAC,SAAS,CAAC;YAC1E,cAAc,CAAC,MAAM,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC,CAAC,SAAS,CAAC;YACxD,cAAc,CAAC,WAAW,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,SAAS,CAAC,CAAC,CAAC,SAAS,CAAC;YAClE,cAAc,CAAC,aAAa,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,WAAW,CAAC,CAAC,CAAC,SAAS,CAAC;YACtE,cAAc,CAAC,eAAe,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,aAAa,CAAC,CAAC,CAAC,SAAS,CAAC;YAC1E,cAAc,CAAC,SAAS,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,SAAS,CAAC;YAC9D,cAAc,CAAC,cAAc,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,YAAY,CAAC,CAAC,CAAC,SAAS,CAAC;YACxE,cAAc,CAAC,MAAM,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC,CAAC,SAAS,CAAC;YACxD,cAAc,CAAC,gBAAgB,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,cAAc,CAAC,CAAC,CAAC,SAAS,CAAC;YAC5E,cAAc,CAAC,MAAM,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC,CAAC,SAAS,CAAC;SAC3D;aAAM;YACH,MAAM,IAAI,GAAG,WAAsC,CAAC;YACpD,IAAI,CAAC,CAAC,IAAI,IAAI,IAAI,CAAC,QAAQ,KAAK,SAAS,CAAC,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE;gBACrD,MAAM,IAAI,KAAK,CAAC,sCAAsC,CAAC,CAAC;aAC3D;YACD,IAAI,CAAC,CAAC,IAAI,IAAI,IAAI,CAAC,OAAO,KAAK,SAAS,CAAC,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE;gBACpD,MAAM,IAAI,KAAK,CAAC,qCAAqC,CAAC,CAAC;aAC1D;YACD,cAAc,CAAC,UAAU,CAAC,GAAG,CAAA,IAAI,aAAJ,IAAI,uBAAJ,IAAI,CAAE,QAAQ,EAAC,CAAC,CAAC,MAAM,CAAC,MAAM,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC,CAAC,CAAC,SAAS,CAAC;YACvF,cAAc,CAAC,SAAS,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC,CAAC,SAAS,CAAC;YAC5D,cAAc,CAAC,WAAW,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,SAAS,CAAC,CAAC,CAAC,SAAS,CAAC;YAChE,cAAc,CAAC,SAAS,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC,CAAC,SAAS,CAAC;YAC5D,cAAc,CAAC,cAAc,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,YAAY,CAAC,CAAC,CAAC,SAAS,CAAC;YACtE,cAAc,CAAC,gBAAgB,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,cAAc,CAAC,CAAC,CAAC,SAAS,CAAC;YAC1E,cAAc,CAAC,UAAU,CAAC,GAAG,SAAS,CAAC,OAAO,CAAC;YAC/C,cAAc,CAAC,eAAe,CAAC,GAAG,SAAS,CAAC,OAAO,CAAC;YACpD,cAAc,CAAC,MAAM,CAAC,GAAG,SAAS,CAAC,OAAO,CAAC;YAC3C,cAAc,CAAC,aAAa,CAAC,GAAG,SAAS,CAAC,OAAO,CAAC;YAClD,cAAc,CAAC,eAAe,CAAC,GAAG,SAAS,CAAC,OAAO,CAAC;YACpD,cAAc,CAAC,MAAM,CAAC,GAAG,SAAS,CAAC,OAAO,CAAC;YAC3C,cAAc,CAAC,MAAM,CAAC,GAAG,SAAS,CAAC,OAAO,CAAC;SAC9C;QACD,IAAI,GAAG,MAAM,CAAC,YAAY,CAAC,SAAS,CAAC,oBAAoB,EAAE,EAAE,IAAI,CAAC,CAAC;QACnE,MAAM,UAAU,GAAG,EAAE,uBAAuB,EAAE,CAAC,UAAU,CAAC,EAAE,CAAC;QAC7D,IAAI,GAAG,MAAM,CAAC,YAAY,CAAC,IAAI,EAAE,UAAU,CAAC,CAAC;QAC7C,KAAK,CAAC,OAAO,CAAC,YAAY,EAAE,IAAI,EAAE,cAAc,EAAE,IAAI,CAAC,CAAC;IAC5D,CAAC;IApID;;;;;;;;OAQG;IACI,MAAM,CAAC,GAAG,CAAC,IAAY,EAAE,EAA2B,EAAE,KAAoB,EAAE,IAAmC;QAClH,OAAO,IAAI,OAAO,CAAC,IAAI,EAAO,KAAK,kCAAO,IAAI,KAAE,EAAE,EAAE,EAAE,IAAG,CAAC;IAC9D,CAAC;IAKD;;;OAGG;IACI,MAAM,CAAC,UAAU,CAAC,GAAQ;QAC7B,IAAI,GAAG,KAAK,SAAS,IAAI,GAAG,KAAK,IAAI,EAAE;YACnC,OAAO,KAAK,CAAC;SAChB;QACD,OAAO,GAAG,CAAC,cAAc,CAAC,KAAK,OAAO,CAAC,YAAY,CAAC;IACxD,CAAC;;AA1BL,0BAsIC;AAxHG,gBAAgB;AACO,oBAAY,GAAG,gCAAgC,CAAC"}

package/identity/mfaPingid.d.ts

@@ -0,0 +1,190 @@
+import * as pulumi from "@pulumi/pulumi";
+/**
+ * Resource for configuring the pingid MFA method.
+ *
+ * ## Example Usage
+ *
+ * ```typescript
+ * import * as pulumi from "@pulumi/pulumi";
+ * import * as vault from "@pulumi/vault";
+ *
+ * const example = new vault.identity.MfaDuo("example", {
+ *     settingsFileBase64: "CnVzZV9iYXNlNjR[...]HBtCg==",
+ * });
+ * ```
+ *
+ * ## Import
+ *
+ * Resource can be imported using its `uuid` field, e.g.
+ *
+ * ```sh
+ *  $ pulumi import vault:identity/mfaPingid:MfaPingid example 0d89c36a-4ff5-4d70-8749-bb6a5598aeec
+ * ```
+ */
+export declare class MfaPingid extends pulumi.CustomResource {
+    /**
+     * Get an existing MfaPingid resource's state with the given name, ID, and optional extra
+     * properties used to qualify the lookup.
+     *
+     * @param name The _unique_ name of the resulting resource.
+     * @param id The _unique_ provider ID of the resource to lookup.
+     * @param state Any extra arguments used during the lookup.
+     * @param opts Optional settings to control the behavior of the CustomResource.
+     */
+    static get(name: string, id: pulumi.Input<pulumi.ID>, state?: MfaPingidState, opts?: pulumi.CustomResourceOptions): MfaPingid;
+    /**
+     * Returns true if the given object is an instance of MfaPingid.  This is designed to work even
+     * when multiple copies of the Pulumi SDK have been loaded into the same process.
+     */
+    static isInstance(obj: any): obj is MfaPingid;
+    /**
+     * The admin URL, derived from "settingsFileBase64"
+     */
+    readonly adminUrl: pulumi.Output<string>;
+    /**
+     * A unique identifier of the organization, derived from "settingsFileBase64"
+     */
+    readonly authenticatorUrl: pulumi.Output<string>;
+    /**
+     * The IDP URL, derived from "settingsFileBase64"
+     */
+    readonly idpUrl: pulumi.Output<string>;
+    /**
+     * Method ID.
+     */
+    readonly methodId: pulumi.Output<string>;
+    /**
+     * Mount accessor.
+     */
+    readonly mountAccessor: pulumi.Output<string>;
+    /**
+     * Method name.
+     */
+    readonly name: pulumi.Output<string>;
+    /**
+     * Target namespace. (requires Enterprise)
+     */
+    readonly namespace: pulumi.Output<string | undefined>;
+    /**
+     * Method's namespace ID.
+     */
+    readonly namespaceId: pulumi.Output<string>;
+    /**
+     * Method's namespace path.
+     */
+    readonly namespacePath: pulumi.Output<string>;
+    /**
+     * The name of the PingID client organization, derived from "settingsFileBase64"
+     */
+    readonly orgAlias: pulumi.Output<string>;
+    /**
+     * A base64-encoded third-party settings contents as retrieved from PingID's configuration page.
+     */
+    readonly settingsFileBase64: pulumi.Output<string>;
+    /**
+     * MFA type.
+     */
+    readonly type: pulumi.Output<string>;
+    /**
+     * Use signature value, derived from "settingsFileBase64"
+     */
+    readonly useSignature: pulumi.Output<boolean>;
+    /**
+     * A template string for mapping Identity names to MFA methods.
+     */
+    readonly usernameFormat: pulumi.Output<string | undefined>;
+    /**
+     * Resource UUID.
+     */
+    readonly uuid: pulumi.Output<string>;
+    /**
+     * Create a MfaPingid resource with the given unique name, arguments, and options.
+     *
+     * @param name The _unique_ name of the resource.
+     * @param args The arguments to use to populate this resource's properties.
+     * @param opts A bag of options that control this resource's behavior.
+     */
+    constructor(name: string, args: MfaPingidArgs, opts?: pulumi.CustomResourceOptions);
+}
+/**
+ * Input properties used for looking up and filtering MfaPingid resources.
+ */
+export interface MfaPingidState {
+    /**
+     * The admin URL, derived from "settingsFileBase64"
+     */
+    adminUrl?: pulumi.Input<string>;
+    /**
+     * A unique identifier of the organization, derived from "settingsFileBase64"
+     */
+    authenticatorUrl?: pulumi.Input<string>;
+    /**
+     * The IDP URL, derived from "settingsFileBase64"
+     */
+    idpUrl?: pulumi.Input<string>;
+    /**
+     * Method ID.
+     */
+    methodId?: pulumi.Input<string>;
+    /**
+     * Mount accessor.
+     */
+    mountAccessor?: pulumi.Input<string>;
+    /**
+     * Method name.
+     */
+    name?: pulumi.Input<string>;
+    /**
+     * Target namespace. (requires Enterprise)
+     */
+    namespace?: pulumi.Input<string>;
+    /**
+     * Method's namespace ID.
+     */
+    namespaceId?: pulumi.Input<string>;
+    /**
+     * Method's namespace path.
+     */
+    namespacePath?: pulumi.Input<string>;
+    /**
+     * The name of the PingID client organization, derived from "settingsFileBase64"
+     */
+    orgAlias?: pulumi.Input<string>;
+    /**
+     * A base64-encoded third-party settings contents as retrieved from PingID's configuration page.
+     */
+    settingsFileBase64?: pulumi.Input<string>;
+    /**
+     * MFA type.
+     */
+    type?: pulumi.Input<string>;
+    /**
+     * Use signature value, derived from "settingsFileBase64"
+     */
+    useSignature?: pulumi.Input<boolean>;
+    /**
+     * A template string for mapping Identity names to MFA methods.
+     */
+    usernameFormat?: pulumi.Input<string>;
+    /**
+     * Resource UUID.
+     */
+    uuid?: pulumi.Input<string>;
+}
+/**
+ * The set of arguments for constructing a MfaPingid resource.
+ */
+export interface MfaPingidArgs {
+    /**
+     * Target namespace. (requires Enterprise)
+     */
+    namespace?: pulumi.Input<string>;
+    /**
+     * A base64-encoded third-party settings contents as retrieved from PingID's configuration page.
+     */
+    settingsFileBase64: pulumi.Input<string>;
+    /**
+     * A template string for mapping Identity names to MFA methods.
+     */
+    usernameFormat?: pulumi.Input<string>;
+}

package/identity/mfaPingid.js

@@ -0,0 +1,102 @@
+"use strict";
+// *** WARNING: this file was generated by the Pulumi Terraform Bridge (tfgen) Tool. ***
+// *** Do not edit by hand unless you're certain you know what you are doing! ***
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.MfaPingid = void 0;
+const pulumi = require("@pulumi/pulumi");
+const utilities = require("../utilities");
+/**
+ * Resource for configuring the pingid MFA method.
+ *
+ * ## Example Usage
+ *
+ * ```typescript
+ * import * as pulumi from "@pulumi/pulumi";
+ * import * as vault from "@pulumi/vault";
+ *
+ * const example = new vault.identity.MfaDuo("example", {
+ *     settingsFileBase64: "CnVzZV9iYXNlNjR[...]HBtCg==",
+ * });
+ * ```
+ *
+ * ## Import
+ *
+ * Resource can be imported using its `uuid` field, e.g.
+ *
+ * ```sh
+ *  $ pulumi import vault:identity/mfaPingid:MfaPingid example 0d89c36a-4ff5-4d70-8749-bb6a5598aeec
+ * ```
+ */
+class MfaPingid extends pulumi.CustomResource {
+    constructor(name, argsOrState, opts) {
+        let resourceInputs = {};
+        opts = opts || {};
+        if (opts.id) {
+            const state = argsOrState;
+            resourceInputs["adminUrl"] = state ? state.adminUrl : undefined;
+            resourceInputs["authenticatorUrl"] = state ? state.authenticatorUrl : undefined;
+            resourceInputs["idpUrl"] = state ? state.idpUrl : undefined;
+            resourceInputs["methodId"] = state ? state.methodId : undefined;
+            resourceInputs["mountAccessor"] = state ? state.mountAccessor : undefined;
+            resourceInputs["name"] = state ? state.name : undefined;
+            resourceInputs["namespace"] = state ? state.namespace : undefined;
+            resourceInputs["namespaceId"] = state ? state.namespaceId : undefined;
+            resourceInputs["namespacePath"] = state ? state.namespacePath : undefined;
+            resourceInputs["orgAlias"] = state ? state.orgAlias : undefined;
+            resourceInputs["settingsFileBase64"] = state ? state.settingsFileBase64 : undefined;
+            resourceInputs["type"] = state ? state.type : undefined;
+            resourceInputs["useSignature"] = state ? state.useSignature : undefined;
+            resourceInputs["usernameFormat"] = state ? state.usernameFormat : undefined;
+            resourceInputs["uuid"] = state ? state.uuid : undefined;
+        }
+        else {
+            const args = argsOrState;
+            if ((!args || args.settingsFileBase64 === undefined) && !opts.urn) {
+                throw new Error("Missing required property 'settingsFileBase64'");
+            }
+            resourceInputs["namespace"] = args ? args.namespace : undefined;
+            resourceInputs["settingsFileBase64"] = args ? args.settingsFileBase64 : undefined;
+            resourceInputs["usernameFormat"] = args ? args.usernameFormat : undefined;
+            resourceInputs["adminUrl"] = undefined /*out*/;
+            resourceInputs["authenticatorUrl"] = undefined /*out*/;
+            resourceInputs["idpUrl"] = undefined /*out*/;
+            resourceInputs["methodId"] = undefined /*out*/;
+            resourceInputs["mountAccessor"] = undefined /*out*/;
+            resourceInputs["name"] = undefined /*out*/;
+            resourceInputs["namespaceId"] = undefined /*out*/;
+            resourceInputs["namespacePath"] = undefined /*out*/;
+            resourceInputs["orgAlias"] = undefined /*out*/;
+            resourceInputs["type"] = undefined /*out*/;
+            resourceInputs["useSignature"] = undefined /*out*/;
+            resourceInputs["uuid"] = undefined /*out*/;
+        }
+        opts = pulumi.mergeOptions(utilities.resourceOptsDefaults(), opts);
+        super(MfaPingid.__pulumiType, name, resourceInputs, opts);
+    }
+    /**
+     * Get an existing MfaPingid resource's state with the given name, ID, and optional extra
+     * properties used to qualify the lookup.
+     *
+     * @param name The _unique_ name of the resulting resource.
+     * @param id The _unique_ provider ID of the resource to lookup.
+     * @param state Any extra arguments used during the lookup.
+     * @param opts Optional settings to control the behavior of the CustomResource.
+     */
+    static get(name, id, state, opts) {
+        return new MfaPingid(name, state, Object.assign(Object.assign({}, opts), { id: id }));
+    }
+    /**
+     * Returns true if the given object is an instance of MfaPingid.  This is designed to work even
+     * when multiple copies of the Pulumi SDK have been loaded into the same process.
+     */
+    static isInstance(obj) {
+        if (obj === undefined || obj === null) {
+            return false;
+        }
+        return obj['__pulumiType'] === MfaPingid.__pulumiType;
+    }
+}
+exports.MfaPingid = MfaPingid;
+/** @internal */
+MfaPingid.__pulumiType = 'vault:identity/mfaPingid:MfaPingid';
+//# sourceMappingURL=mfaPingid.js.map

package/identity/mfaPingid.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"mfaPingid.js","sourceRoot":"","sources":["../../identity/mfaPingid.ts"],"names":[],"mappings":";AAAA,wFAAwF;AACxF,iFAAiF;;;AAEjF,yCAAyC;AACzC,0CAA0C;AAE1C;;;;;;;;;;;;;;;;;;;;;GAqBG;AACH,MAAa,SAAU,SAAQ,MAAM,CAAC,cAAc;IAiGhD,YAAY,IAAY,EAAE,WAA4C,EAAE,IAAmC;QACvG,IAAI,cAAc,GAAkB,EAAE,CAAC;QACvC,IAAI,GAAG,IAAI,IAAI,EAAE,CAAC;QAClB,IAAI,IAAI,CAAC,EAAE,EAAE;YACT,MAAM,KAAK,GAAG,WAAyC,CAAC;YACxD,cAAc,CAAC,UAAU,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,QAAQ,CAAC,CAAC,CAAC,SAAS,CAAC;YAChE,cAAc,CAAC,kBAAkB,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,gBAAgB,CAAC,CAAC,CAAC,SAAS,CAAC;YAChF,cAAc,CAAC,QAAQ,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC,CAAC,SAAS,CAAC;YAC5D,cAAc,CAAC,UAAU,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,QAAQ,CAAC,CAAC,CAAC,SAAS,CAAC;YAChE,cAAc,CAAC,eAAe,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,aAAa,CAAC,CAAC,CAAC,SAAS,CAAC;YAC1E,cAAc,CAAC,MAAM,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC,CAAC,SAAS,CAAC;YACxD,cAAc,CAAC,WAAW,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,SAAS,CAAC,CAAC,CAAC,SAAS,CAAC;YAClE,cAAc,CAAC,aAAa,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,WAAW,CAAC,CAAC,CAAC,SAAS,CAAC;YACtE,cAAc,CAAC,eAAe,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,aAAa,CAAC,CAAC,CAAC,SAAS,CAAC;YAC1E,cAAc,CAAC,UAAU,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,QAAQ,CAAC,CAAC,CAAC,SAAS,CAAC;YAChE,cAAc,CAAC,oBAAoB,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,kBAAkB,CAAC,CAAC,CAAC,SAAS,CAAC;YACpF,cAAc,CAAC,MAAM,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC,CAAC,SAAS,CAAC;YACxD,cAAc,CAAC,cAAc,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,YAAY,CAAC,CAAC,CAAC,SAAS,CAAC;YACxE,cAAc,CAAC,gBAAgB,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,cAAc,CAAC,CAAC,CAAC,SAAS,CAAC;YAC5E,cAAc,CAAC,MAAM,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC,CAAC,SAAS,CAAC;SAC3D;aAAM;YACH,MAAM,IAAI,GAAG,WAAwC,CAAC;YACtD,IAAI,CAAC,CAAC,IAAI,IAAI,IAAI,CAAC,kBAAkB,KAAK,SAAS,CAAC,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE;gBAC/D,MAAM,IAAI,KAAK,CAAC,gDAAgD,CAAC,CAAC;aACrE;YACD,cAAc,CAAC,WAAW,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,SAAS,CAAC,CAAC,CAAC,SAAS,CAAC;YAChE,cAAc,CAAC,oBAAoB,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,kBAAkB,CAAC,CAAC,CAAC,SAAS,CAAC;YAClF,cAAc,CAAC,gBAAgB,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,cAAc,CAAC,CAAC,CAAC,SAAS,CAAC;YAC1E,cAAc,CAAC,UAAU,CAAC,GAAG,SAAS,CAAC,OAAO,CAAC;YAC/C,cAAc,CAAC,kBAAkB,CAAC,GAAG,SAAS,CAAC,OAAO,CAAC;YACvD,cAAc,CAAC,QAAQ,CAAC,GAAG,SAAS,CAAC,OAAO,CAAC;YAC7C,cAAc,CAAC,UAAU,CAAC,GAAG,SAAS,CAAC,OAAO,CAAC;YAC/C,cAAc,CAAC,eAAe,CAAC,GAAG,SAAS,CAAC,OAAO,CAAC;YACpD,cAAc,CAAC,MAAM,CAAC,GAAG,SAAS,CAAC,OAAO,CAAC;YAC3C,cAAc,CAAC,aAAa,CAAC,GAAG,SAAS,CAAC,OAAO,CAAC;YAClD,cAAc,CAAC,eAAe,CAAC,GAAG,SAAS,CAAC,OAAO,CAAC;YACpD,cAAc,CAAC,UAAU,CAAC,GAAG,SAAS,CAAC,OAAO,CAAC;YAC/C,cAAc,CAAC,MAAM,CAAC,GAAG,SAAS,CAAC,OAAO,CAAC;YAC3C,cAAc,CAAC,cAAc,CAAC,GAAG,SAAS,CAAC,OAAO,CAAC;YACnD,cAAc,CAAC,MAAM,CAAC,GAAG,SAAS,CAAC,OAAO,CAAC;SAC9C;QACD,IAAI,GAAG,MAAM,CAAC,YAAY,CAAC,SAAS,CAAC,oBAAoB,EAAE,EAAE,IAAI,CAAC,CAAC;QACnE,KAAK,CAAC,SAAS,CAAC,YAAY,EAAE,IAAI,EAAE,cAAc,EAAE,IAAI,CAAC,CAAC;IAC9D,CAAC;IA3ID;;;;;;;;OAQG;IACI,MAAM,CAAC,GAAG,CAAC,IAAY,EAAE,EAA2B,EAAE,KAAsB,EAAE,IAAmC;QACpH,OAAO,IAAI,SAAS,CAAC,IAAI,EAAO,KAAK,kCAAO,IAAI,KAAE,EAAE,EAAE,EAAE,IAAG,CAAC;IAChE,CAAC;IAKD;;;OAGG;IACI,MAAM,CAAC,UAAU,CAAC,GAAQ;QAC7B,IAAI,GAAG,KAAK,SAAS,IAAI,GAAG,KAAK,IAAI,EAAE;YACnC,OAAO,KAAK,CAAC;SAChB;QACD,OAAO,GAAG,CAAC,cAAc,CAAC,KAAK,SAAS,CAAC,YAAY,CAAC;IAC1D,CAAC;;AA1BL,8BA6IC;AA/HG,gBAAgB;AACO,sBAAY,GAAG,oCAAoC,CAAC"}