@pulumi/vault 6.1.0 → 6.1.1

package/types/input.d.ts

@@ -113,43 +113,19 @@ export interface GetPolicyDocumentRuleArgs {
     requiredParameters?: pulumi.Input<pulumi.Input<string>[]>;
 }
 export interface GetPolicyDocumentRuleAllowedParameter {
-    /**
-     * name of permitted or denied parameter.
-     */
     key: string;
-    /**
-     * list of values what are permitted or denied by policy rule.
-     */
     values: string[];
 }
 export interface GetPolicyDocumentRuleAllowedParameterArgs {
-    /**
-     * name of permitted or denied parameter.
-     */
     key: pulumi.Input<string>;
-    /**
-     * list of values what are permitted or denied by policy rule.
-     */
     values: pulumi.Input<pulumi.Input<string>[]>;
 }
 export interface GetPolicyDocumentRuleDeniedParameter {
-    /**
-     * name of permitted or denied parameter.
-     */
     key: string;
-    /**
-     * list of values what are permitted or denied by policy rule.
-     */
     values: string[];
 }
 export interface GetPolicyDocumentRuleDeniedParameterArgs {
-    /**
-     * name of permitted or denied parameter.
-     */
     key: pulumi.Input<string>;
-    /**
-     * list of values what are permitted or denied by policy rule.
-     */
     values: pulumi.Input<pulumi.Input<string>[]>;
 }
 export interface ProviderAuthLogin {
@@ -563,35 +539,31 @@ export declare namespace config {
 export declare namespace database {
     interface SecretBackendConnectionCassandra {
         /**
-         * The number of seconds to use as a connection
-         * timeout.
+         * The number of seconds to use as a connection timeout.
          */
         connectTimeout?: pulumi.Input<number>;
         /**
-         * The hosts to connect to.
+         * Cassandra hosts to connect to.
          */
         hosts?: pulumi.Input<pulumi.Input<string>[]>;
         /**
-         * Whether to skip verification of the server
-         * certificate when using TLS.
+         * Whether to skip verification of the server certificate when using TLS.
          */
         insecureTls?: pulumi.Input<boolean>;
         /**
-         * The password to authenticate with.
+         * The password to use when authenticating with Cassandra.
          */
         password?: pulumi.Input<string>;
         /**
-         * Concatenated PEM blocks configuring the certificate
-         * chain.
+         * Concatenated PEM blocks containing a certificate and private key; a certificate, private key, and issuing CA certificate; or just a CA certificate.
          */
         pemBundle?: pulumi.Input<string>;
         /**
-         * A JSON structure configuring the certificate chain.
+         * Specifies JSON containing a certificate and private key; a certificate, private key, and issuing CA certificate; or just a CA certificate.
          */
         pemJson?: pulumi.Input<string>;
         /**
-         * The default port to connect to if no port is specified as
-         * part of the host.
+         * The transport port to use to connect to Cassandra.
          */
         port?: pulumi.Input<number>;
         /**
@@ -603,7 +575,7 @@ export declare namespace database {
          */
         tls?: pulumi.Input<boolean>;
         /**
-         * The username to authenticate with.
+         * The username to use when authenticating with Cassandra.
          */
         username?: pulumi.Input<string>;
     }
@@ -617,24 +589,23 @@ export declare namespace database {
          */
         bucketName?: pulumi.Input<string>;
         /**
-         * The hosts to connect to.
+         * A set of Couchbase URIs to connect to. Must use `couchbases://` scheme if `tls` is `true`.
          */
         hosts: pulumi.Input<pulumi.Input<string>[]>;
         /**
-         * Whether to skip verification of the server
-         * certificate when using TLS.
+         * Specifies whether to skip verification of the server certificate when using TLS.
          */
         insecureTls?: pulumi.Input<boolean>;
         /**
-         * The password to authenticate with.
+         * Specifies the password corresponding to the given username.
          */
         password: pulumi.Input<string>;
         /**
-         * Whether to use TLS when connecting to Cassandra.
+         * Specifies whether to use TLS when connecting to Couchbase.
          */
         tls?: pulumi.Input<boolean>;
         /**
-         * The username to authenticate with.
+         * Specifies the username for Vault to use.
          */
         username: pulumi.Input<string>;
         /**
@@ -644,40 +615,39 @@ export declare namespace database {
     }
     interface SecretBackendConnectionElasticsearch {
         /**
-         * The path to a PEM-encoded CA cert file to use to verify the Elasticsearch server's identity.
+         * The path to a PEM-encoded CA cert file to use to verify the Elasticsearch server's identity
          */
         caCert?: pulumi.Input<string>;
         /**
-         * The path to a directory of PEM-encoded CA cert files to use to verify the Elasticsearch server's identity.
+         * The path to a directory of PEM-encoded CA cert files to use to verify the Elasticsearch server's identity
          */
         caPath?: pulumi.Input<string>;
         /**
-         * The path to the certificate for the Elasticsearch client to present for communication.
+         * The path to the certificate for the Elasticsearch client to present for communication
          */
         clientCert?: pulumi.Input<string>;
         /**
-         * The path to the key for the Elasticsearch client to use for communication.
+         * The path to the key for the Elasticsearch client to use for communication
          */
         clientKey?: pulumi.Input<string>;
         /**
-         * Whether to disable certificate verification.
+         * Whether to disable certificate verification
          */
         insecure?: pulumi.Input<boolean>;
         /**
-         * The password to authenticate with.
+         * The password to be used in the connection URL
          */
         password: pulumi.Input<string>;
         /**
-         * This, if set, is used to set the SNI host when connecting via TLS.
+         * This, if set, is used to set the SNI host when connecting via TLS
          */
         tlsServerName?: pulumi.Input<string>;
         /**
-         * The URL for Elasticsearch's API. https requires certificate
-         * by trusted CA if used.
+         * The URL for Elasticsearch's API
          */
         url: pulumi.Input<string>;
         /**
-         * The username to authenticate with.
+         * The username to be used in the connection URL
          */
         username: pulumi.Input<string>;
         /**
@@ -687,79 +657,69 @@ export declare namespace database {
     }
     interface SecretBackendConnectionHana {
         /**
-         * A URL containing connection information. See
-         * the [Vault
-         * docs](https://www.vaultproject.io/api-docs/secret/databases/mongodb.html#sample-payload)
-         * for an example.
+         * Connection string to use to connect to the database.
          */
         connectionUrl?: pulumi.Input<string>;
         /**
-         * Disable special character escaping in username and password.
+         * Disable special character escaping in username and password
          */
         disableEscaping?: pulumi.Input<boolean>;
         /**
-         * The maximum number of seconds to keep
-         * a connection alive for.
+         * Maximum number of seconds a connection may be reused.
          */
         maxConnectionLifetime?: pulumi.Input<number>;
         /**
-         * The maximum number of idle connections to
-         * maintain.
+         * Maximum number of idle connections to the database.
          */
         maxIdleConnections?: pulumi.Input<number>;
         /**
-         * The maximum number of open connections to
-         * use.
+         * Maximum number of open connections to the database.
          */
         maxOpenConnections?: pulumi.Input<number>;
         /**
-         * The password to authenticate with.
+         * The root credential password used in the connection URL
          */
         password?: pulumi.Input<string>;
         /**
-         * The username to authenticate with.
+         * The root credential username used in the connection URL
          */
         username?: pulumi.Input<string>;
     }
     interface SecretBackendConnectionInfluxdb {
         /**
-         * The number of seconds to use as a connection
-         * timeout.
+         * The number of seconds to use as a connection timeout.
          */
         connectTimeout?: pulumi.Input<number>;
         /**
-         * The host to connect to.
+         * Influxdb host to connect to.
          */
         host: pulumi.Input<string>;
         /**
-         * Whether to skip verification of the server
-         * certificate when using TLS.
+         * Whether to skip verification of the server certificate when using TLS.
          */
         insecureTls?: pulumi.Input<boolean>;
         /**
-         * The password to authenticate with.
+         * Specifies the password corresponding to the given username.
          */
         password: pulumi.Input<string>;
         /**
-         * Concatenated PEM blocks configuring the certificate
-         * chain.
+         * Concatenated PEM blocks containing a certificate and private key; a certificate, private key, and issuing CA certificate; or just a CA certificate.
          */
         pemBundle?: pulumi.Input<string>;
         /**
-         * A JSON structure configuring the certificate chain.
+         * Specifies JSON containing a certificate and private key; a certificate, private key, and issuing CA certificate; or just a CA certificate.
          */
         pemJson?: pulumi.Input<string>;
         /**
-         * The default port to connect to if no port is specified as
-         * part of the host.
+         * The transport port to use to connect to Influxdb.
          */
         port?: pulumi.Input<number>;
         /**
-         * Whether to use TLS when connecting to Cassandra.
+         * Whether to use TLS when connecting to Influxdb.
          */
         tls?: pulumi.Input<boolean>;
         /**
-         * The username to authenticate with.
+         * Specifies the username to use for superuser access.
          */
         username: pulumi.Input<string>;
         /**
@@ -769,37 +729,31 @@ export declare namespace database {
     }
     interface SecretBackendConnectionMongodb {
         /**
-         * A URL containing connection information. See
-         * the [Vault
-         * docs](https://www.vaultproject.io/api-docs/secret/databases/mongodb.html#sample-payload)
-         * for an example.
+         * Connection string to use to connect to the database.
          */
         connectionUrl?: pulumi.Input<string>;
         /**
-         * The maximum number of seconds to keep
-         * a connection alive for.
+         * Maximum number of seconds a connection may be reused.
          */
         maxConnectionLifetime?: pulumi.Input<number>;
         /**
-         * The maximum number of idle connections to
-         * maintain.
+         * Maximum number of idle connections to the database.
          */
         maxIdleConnections?: pulumi.Input<number>;
         /**
-         * The maximum number of open connections to
-         * use.
+         * Maximum number of open connections to the database.
          */
         maxOpenConnections?: pulumi.Input<number>;
         /**
-         * The password to authenticate with.
+         * The root credential password used in the connection URL
          */
         password?: pulumi.Input<string>;
         /**
-         * The username to authenticate with.
+         * The root credential username used in the connection URL
          */
         username?: pulumi.Input<string>;
         /**
-         * Template describing how dynamic usernames are generated.
+         * Username generation template.
          */
         usernameTemplate?: pulumi.Input<string>;
     }
@@ -819,84 +773,69 @@ export declare namespace database {
     }
     interface SecretBackendConnectionMssql {
         /**
-         * A URL containing connection information. See
-         * the [Vault
-         * docs](https://www.vaultproject.io/api-docs/secret/databases/mongodb.html#sample-payload)
-         * for an example.
+         * Connection string to use to connect to the database.
          */
         connectionUrl?: pulumi.Input<string>;
         /**
-         * For Vault v1.9+. Set to true when the target is a
-         * Contained Database, e.g. AzureSQL.
-         * See the [Vault
-         * docs](https://www.vaultproject.io/api/secret/databases/mssql#contained_db)
+         * Set to true when the target is a Contained Database, e.g. AzureSQL.
          */
         containedDb?: pulumi.Input<boolean>;
         /**
-         * Disable special character escaping in username and password.
+         * Disable special character escaping in username and password
          */
         disableEscaping?: pulumi.Input<boolean>;
         /**
-         * The maximum number of seconds to keep
-         * a connection alive for.
+         * Maximum number of seconds a connection may be reused.
          */
         maxConnectionLifetime?: pulumi.Input<number>;
         /**
-         * The maximum number of idle connections to
-         * maintain.
+         * Maximum number of idle connections to the database.
          */
         maxIdleConnections?: pulumi.Input<number>;
         /**
-         * The maximum number of open connections to
-         * use.
+         * Maximum number of open connections to the database.
          */
         maxOpenConnections?: pulumi.Input<number>;
         /**
-         * The password to authenticate with.
+         * The root credential password used in the connection URL
          */
         password?: pulumi.Input<string>;
         /**
-         * The username to authenticate with.
+         * The root credential username used in the connection URL
          */
         username?: pulumi.Input<string>;
         /**
-         * Template describing how dynamic usernames are generated.
+         * Username generation template.
          */
         usernameTemplate?: pulumi.Input<string>;
     }
     interface SecretBackendConnectionMysql {
         /**
-         * Enable IAM authentication to a Google Cloud instance when set to `gcpIam`
+         * Specify alternative authorization type. (Only 'gcp_iam' is valid currently)
          */
         authType?: pulumi.Input<string>;
         /**
-         * A URL containing connection information. See
-         * the [Vault
-         * docs](https://www.vaultproject.io/api-docs/secret/databases/mongodb.html#sample-payload)
-         * for an example.
+         * Connection string to use to connect to the database.
          */
         connectionUrl?: pulumi.Input<string>;
         /**
-         * The maximum number of seconds to keep
-         * a connection alive for.
+         * Maximum number of seconds a connection may be reused.
          */
         maxConnectionLifetime?: pulumi.Input<number>;
         /**
-         * The maximum number of idle connections to
-         * maintain.
+         * Maximum number of idle connections to the database.
          */
         maxIdleConnections?: pulumi.Input<number>;
         /**
-         * The maximum number of open connections to
-         * use.
+         * Maximum number of open connections to the database.
          */
         maxOpenConnections?: pulumi.Input<number>;
         /**
-         * The password to authenticate with.
+         * The root credential password used in the connection URL
          */
         password?: pulumi.Input<string>;
         /**
-         * JSON encoding of an IAM access key. Requires `authType` to be `gcpIam`.
+         * A JSON encoded credential for use with IAM authorization
          */
         serviceAccountJson?: pulumi.Input<string>;
         /**
@@ -908,47 +847,41 @@ export declare namespace database {
          */
         tlsCertificateKey?: pulumi.Input<string>;
         /**
-         * The username to authenticate with.
+         * The root credential username used in the connection URL
          */
         username?: pulumi.Input<string>;
         /**
-         * Template describing how dynamic usernames are generated.
+         * Username generation template.
          */
         usernameTemplate?: pulumi.Input<string>;
     }
     interface SecretBackendConnectionMysqlAurora {
         /**
-         * Enable IAM authentication to a Google Cloud instance when set to `gcpIam`
+         * Specify alternative authorization type. (Only 'gcp_iam' is valid currently)
          */
         authType?: pulumi.Input<string>;
         /**
-         * A URL containing connection information. See
-         * the [Vault
-         * docs](https://www.vaultproject.io/api-docs/secret/databases/mongodb.html#sample-payload)
-         * for an example.
+         * Connection string to use to connect to the database.
          */
         connectionUrl?: pulumi.Input<string>;
         /**
-         * The maximum number of seconds to keep
-         * a connection alive for.
+         * Maximum number of seconds a connection may be reused.
          */
         maxConnectionLifetime?: pulumi.Input<number>;
         /**
-         * The maximum number of idle connections to
-         * maintain.
+         * Maximum number of idle connections to the database.
          */
         maxIdleConnections?: pulumi.Input<number>;
         /**
-         * The maximum number of open connections to
-         * use.
+         * Maximum number of open connections to the database.
          */
         maxOpenConnections?: pulumi.Input<number>;
         /**
-         * The password to authenticate with.
+         * The root credential password used in the connection URL
          */
         password?: pulumi.Input<string>;
         /**
-         * JSON encoding of an IAM access key. Requires `authType` to be `gcpIam`.
+         * A JSON encoded credential for use with IAM authorization
          */
         serviceAccountJson?: pulumi.Input<string>;
         /**
@@ -960,47 +893,41 @@ export declare namespace database {
          */
         tlsCertificateKey?: pulumi.Input<string>;
         /**
-         * The username to authenticate with.
+         * The root credential username used in the connection URL
          */
         username?: pulumi.Input<string>;
         /**
-         * Template describing how dynamic usernames are generated.
+         * Username generation template.
          */
         usernameTemplate?: pulumi.Input<string>;
     }
     interface SecretBackendConnectionMysqlLegacy {
         /**
-         * Enable IAM authentication to a Google Cloud instance when set to `gcpIam`
+         * Specify alternative authorization type. (Only 'gcp_iam' is valid currently)
          */
         authType?: pulumi.Input<string>;
         /**
-         * A URL containing connection information. See
-         * the [Vault
-         * docs](https://www.vaultproject.io/api-docs/secret/databases/mongodb.html#sample-payload)
-         * for an example.
+         * Connection string to use to connect to the database.
          */
         connectionUrl?: pulumi.Input<string>;
         /**
-         * The maximum number of seconds to keep
-         * a connection alive for.
+         * Maximum number of seconds a connection may be reused.
          */
         maxConnectionLifetime?: pulumi.Input<number>;
         /**
-         * The maximum number of idle connections to
-         * maintain.
+         * Maximum number of idle connections to the database.
          */
         maxIdleConnections?: pulumi.Input<number>;
         /**
-         * The maximum number of open connections to
-         * use.
+         * Maximum number of open connections to the database.
          */
         maxOpenConnections?: pulumi.Input<number>;
         /**
-         * The password to authenticate with.
+         * The root credential password used in the connection URL
          */
         password?: pulumi.Input<string>;
         /**
-         * JSON encoding of an IAM access key. Requires `authType` to be `gcpIam`.
+         * A JSON encoded credential for use with IAM authorization
          */
         serviceAccountJson?: pulumi.Input<string>;
         /**
@@ -1012,47 +939,41 @@ export declare namespace database {
          */
         tlsCertificateKey?: pulumi.Input<string>;
         /**
-         * The username to authenticate with.
+         * The root credential username used in the connection URL
          */
         username?: pulumi.Input<string>;
         /**
-         * Template describing how dynamic usernames are generated.
+         * Username generation template.
          */
         usernameTemplate?: pulumi.Input<string>;
     }
     interface SecretBackendConnectionMysqlRds {
         /**
-         * Enable IAM authentication to a Google Cloud instance when set to `gcpIam`
+         * Specify alternative authorization type. (Only 'gcp_iam' is valid currently)
          */
         authType?: pulumi.Input<string>;
         /**
-         * A URL containing connection information. See
-         * the [Vault
-         * docs](https://www.vaultproject.io/api-docs/secret/databases/mongodb.html#sample-payload)
-         * for an example.
+         * Connection string to use to connect to the database.
          */
         connectionUrl?: pulumi.Input<string>;
         /**
-         * The maximum number of seconds to keep
-         * a connection alive for.
+         * Maximum number of seconds a connection may be reused.
          */
         maxConnectionLifetime?: pulumi.Input<number>;
         /**
-         * The maximum number of idle connections to
-         * maintain.
+         * Maximum number of idle connections to the database.
          */
         maxIdleConnections?: pulumi.Input<number>;
         /**
-         * The maximum number of open connections to
-         * use.
+         * Maximum number of open connections to the database.
          */
         maxOpenConnections?: pulumi.Input<number>;
         /**
-         * The password to authenticate with.
+         * The root credential password used in the connection URL
          */
         password?: pulumi.Input<string>;
         /**
-         * JSON encoding of an IAM access key. Requires `authType` to be `gcpIam`.
+         * A JSON encoded credential for use with IAM authorization
          */
         serviceAccountJson?: pulumi.Input<string>;
         /**
@@ -1064,230 +985,203 @@ export declare namespace database {
          */
         tlsCertificateKey?: pulumi.Input<string>;
         /**
-         * The username to authenticate with.
+         * The root credential username used in the connection URL
          */
         username?: pulumi.Input<string>;
         /**
-         * Template describing how dynamic usernames are generated.
+         * Username generation template.
          */
         usernameTemplate?: pulumi.Input<string>;
     }
     interface SecretBackendConnectionOracle {
         /**
-         * A URL containing connection information. See
-         * the [Vault
-         * docs](https://www.vaultproject.io/api-docs/secret/databases/mongodb.html#sample-payload)
-         * for an example.
+         * Connection string to use to connect to the database.
          */
         connectionUrl?: pulumi.Input<string>;
         /**
-         * Enable the built-in session disconnect mechanism.
+         * Set to true to disconnect any open sessions prior to running the revocation statements.
          */
         disconnectSessions?: pulumi.Input<boolean>;
         /**
-         * The maximum number of seconds to keep
-         * a connection alive for.
+         * Maximum number of seconds a connection may be reused.
          */
         maxConnectionLifetime?: pulumi.Input<number>;
         /**
-         * The maximum number of idle connections to
-         * maintain.
+         * Maximum number of idle connections to the database.
          */
         maxIdleConnections?: pulumi.Input<number>;
         /**
-         * The maximum number of open connections to
-         * use.
+         * Maximum number of open connections to the database.
          */
         maxOpenConnections?: pulumi.Input<number>;
         /**
-         * The password to authenticate with.
+         * The root credential password used in the connection URL
          */
         password?: pulumi.Input<string>;
         /**
-         * Enable spliting statements after semi-colons.
+         * Set to true in order to split statements after semi-colons.
          */
         splitStatements?: pulumi.Input<boolean>;
         /**
-         * The username to authenticate with.
+         * The root credential username used in the connection URL
          */
         username?: pulumi.Input<string>;
         /**
-         * Template describing how dynamic usernames are generated.
+         * Username generation template.
          */
         usernameTemplate?: pulumi.Input<string>;
     }
     interface SecretBackendConnectionPostgresql {
         /**
-         * Enable IAM authentication to a Google Cloud instance when set to `gcpIam`
+         * Specify alternative authorization type. (Only 'gcp_iam' is valid currently)
          */
         authType?: pulumi.Input<string>;
         /**
-         * A URL containing connection information. See
-         * the [Vault
-         * docs](https://www.vaultproject.io/api-docs/secret/databases/mongodb.html#sample-payload)
-         * for an example.
+         * Connection string to use to connect to the database.
          */
         connectionUrl?: pulumi.Input<string>;
         /**
-         * Disable special character escaping in username and password.
+         * Disable special character escaping in username and password
          */
         disableEscaping?: pulumi.Input<boolean>;
         /**
-         * The maximum number of seconds to keep
-         * a connection alive for.
+         * Maximum number of seconds a connection may be reused.
          */
         maxConnectionLifetime?: pulumi.Input<number>;
         /**
-         * The maximum number of idle connections to
-         * maintain.
+         * Maximum number of idle connections to the database.
          */
         maxIdleConnections?: pulumi.Input<number>;
         /**
-         * The maximum number of open connections to
-         * use.
+         * Maximum number of open connections to the database.
          */
         maxOpenConnections?: pulumi.Input<number>;
         /**
-         * The password to authenticate with.
+         * The root credential password used in the connection URL
          */
         password?: pulumi.Input<string>;
         /**
-         * JSON encoding of an IAM access key. Requires `authType` to be `gcpIam`.
+         * A JSON encoded credential for use with IAM authorization
          */
         serviceAccountJson?: pulumi.Input<string>;
         /**
-         * The username to authenticate with.
+         * The root credential username used in the connection URL
          */
         username?: pulumi.Input<string>;
         /**
-         * Template describing how dynamic usernames are generated.
+         * Username generation template.
          */
         usernameTemplate?: pulumi.Input<string>;
     }
     interface SecretBackendConnectionRedis {
         /**
-         * The path to a PEM-encoded CA cert file to use to verify the Elasticsearch server's identity.
+         * The contents of a PEM-encoded CA cert file to use to verify the Redis server's identity.
          */
         caCert?: pulumi.Input<string>;
         /**
-         * The host to connect to.
+         * Specifies the host to connect to
          */
         host: pulumi.Input<string>;
         /**
-         * Whether to skip verification of the server
-         * certificate when using TLS.
+         * Specifies whether to skip verification of the server certificate when using TLS.
          */
         insecureTls?: pulumi.Input<boolean>;
         /**
-         * The password to authenticate with.
+         * Specifies the password corresponding to the given username.
          */
         password: pulumi.Input<string>;
         /**
-         * The default port to connect to if no port is specified as
-         * part of the host.
+         * The transport port to use to connect to Redis.
          */
         port?: pulumi.Input<number>;
         /**
-         * Whether to use TLS when connecting to Cassandra.
+         * Specifies whether to use TLS when connecting to Redis.
          */
         tls?: pulumi.Input<boolean>;
         /**
-         * The username to authenticate with.
+         * Specifies the username for Vault to use.
          */
         username: pulumi.Input<string>;
     }
     interface SecretBackendConnectionRedisElasticache {
         /**
-         * The password to authenticate with.
+         * The AWS secret key id to use to talk to ElastiCache. If omitted the credentials chain provider is used instead.
          */
         password?: pulumi.Input<string>;
         /**
-         * The region where the ElastiCache cluster is hosted. If omitted Vault tries to infer from the environment instead.
+         * The AWS region where the ElastiCache cluster is hosted. If omitted the plugin tries to infer the region from the environment.
          */
         region?: pulumi.Input<string>;
         /**
-         * The URL for Elasticsearch's API. https requires certificate
-         * by trusted CA if used.
+         * The configuration endpoint for the ElastiCache cluster to connect to.
          */
         url: pulumi.Input<string>;
         /**
-         * The username to authenticate with.
+         * The AWS access key id to use to talk to ElastiCache. If omitted the credentials chain provider is used instead.
          */
         username?: pulumi.Input<string>;
     }
     interface SecretBackendConnectionRedshift {
         /**
-         * A URL containing connection information. See
-         * the [Vault
-         * docs](https://www.vaultproject.io/api-docs/secret/databases/mongodb.html#sample-payload)
-         * for an example.
+         * Connection string to use to connect to the database.
          */
         connectionUrl?: pulumi.Input<string>;
         /**
-         * Disable special character escaping in username and password.
+         * Disable special character escaping in username and password
          */
         disableEscaping?: pulumi.Input<boolean>;
         /**
-         * The maximum number of seconds to keep
-         * a connection alive for.
+         * Maximum number of seconds a connection may be reused.
          */
         maxConnectionLifetime?: pulumi.Input<number>;
         /**
-         * The maximum number of idle connections to
-         * maintain.
+         * Maximum number of idle connections to the database.
          */
         maxIdleConnections?: pulumi.Input<number>;
         /**
-         * The maximum number of open connections to
-         * use.
+         * Maximum number of open connections to the database.
          */
         maxOpenConnections?: pulumi.Input<number>;
         /**
-         * The password to authenticate with.
+         * The root credential password used in the connection URL
          */
         password?: pulumi.Input<string>;
         /**
-         * The username to authenticate with.
+         * The root credential username used in the connection URL
          */
         username?: pulumi.Input<string>;
         /**
-         * Template describing how dynamic usernames are generated.
+         * Username generation template.
          */
         usernameTemplate?: pulumi.Input<string>;
     }
     interface SecretBackendConnectionSnowflake {
         /**
-         * A URL containing connection information. See
-         * the [Vault
-         * docs](https://www.vaultproject.io/api-docs/secret/databases/mongodb.html#sample-payload)
-         * for an example.
+         * Connection string to use to connect to the database.
          */
         connectionUrl?: pulumi.Input<string>;
         /**
-         * The maximum number of seconds to keep
-         * a connection alive for.
+         * Maximum number of seconds a connection may be reused.
          */
         maxConnectionLifetime?: pulumi.Input<number>;
         /**
-         * The maximum number of idle connections to
-         * maintain.
+         * Maximum number of idle connections to the database.
          */
         maxIdleConnections?: pulumi.Input<number>;
         /**
-         * The maximum number of open connections to
-         * use.
+         * Maximum number of open connections to the database.
          */
         maxOpenConnections?: pulumi.Input<number>;
         /**
-         * The password to authenticate with.
+         * The root credential password used in the connection URL
          */
         password?: pulumi.Input<string>;
         /**
-         * The username to authenticate with.
+         * The root credential username used in the connection URL
          */
         username?: pulumi.Input<string>;
         /**
-         * Template describing how dynamic usernames are generated.
+         * Username generation template.
          */
         usernameTemplate?: pulumi.Input<string>;
     }
@@ -1298,8 +1192,7 @@ export declare namespace database {
          */
         allowedRoles?: pulumi.Input<pulumi.Input<string>[]>;
         /**
-         * The number of seconds to use as a connection
-         * timeout.
+         * The number of seconds to use as a connection timeout.
          */
         connectTimeout?: pulumi.Input<number>;
         /**
@@ -1311,12 +1204,11 @@ export declare namespace database {
             [key: string]: any;
         }>;
         /**
-         * The hosts to connect to.
+         * Cassandra hosts to connect to.
          */
         hosts?: pulumi.Input<pulumi.Input<string>[]>;
         /**
-         * Whether to skip verification of the server
-         * certificate when using TLS.
+         * Whether to skip verification of the server certificate when using TLS.
          */
         insecureTls?: pulumi.Input<boolean>;
         /**
@@ -1324,16 +1216,15 @@ export declare namespace database {
          */
         name: pulumi.Input<string>;
         /**
-         * The root credential password used in the connection URL.
+         * The password to use when authenticating with Cassandra.
          */
         password?: pulumi.Input<string>;
         /**
-         * Concatenated PEM blocks configuring the certificate
-         * chain.
+         * Concatenated PEM blocks containing a certificate and private key; a certificate, private key, and issuing CA certificate; or just a CA certificate.
          */
         pemBundle?: pulumi.Input<string>;
         /**
-         * A JSON structure configuring the certificate chain.
+         * Specifies JSON containing a certificate and private key; a certificate, private key, and issuing CA certificate; or just a CA certificate.
          */
         pemJson?: pulumi.Input<string>;
         /**
@@ -1341,8 +1232,7 @@ export declare namespace database {
          */
         pluginName?: pulumi.Input<string>;
         /**
-         * The default port to connect to if no port is specified as
-         * part of the host.
+         * The transport port to use to connect to Cassandra.
          */
         port?: pulumi.Input<number>;
         /**
@@ -1358,7 +1248,7 @@ export declare namespace database {
          */
         tls?: pulumi.Input<boolean>;
         /**
-         * The root credential username used in the connection URL.
+         * The username to use when authenticating with Cassandra.
          */
         username?: pulumi.Input<string>;
         /**
@@ -1390,12 +1280,11 @@ export declare namespace database {
             [key: string]: any;
         }>;
         /**
-         * The hosts to connect to.
+         * A set of Couchbase URIs to connect to. Must use `couchbases://` scheme if `tls` is `true`.
          */
         hosts: pulumi.Input<pulumi.Input<string>[]>;
         /**
-         * Whether to skip verification of the server
-         * certificate when using TLS.
+         * Specifies whether to skip verification of the server certificate when using TLS.
          */
         insecureTls?: pulumi.Input<boolean>;
         /**
@@ -1403,7 +1292,7 @@ export declare namespace database {
          */
         name: pulumi.Input<string>;
         /**
-         * The root credential password used in the connection URL.
+         * Specifies the password corresponding to the given username.
          */
         password: pulumi.Input<string>;
         /**
@@ -1415,15 +1304,15 @@ export declare namespace database {
          */
         rootRotationStatements?: pulumi.Input<pulumi.Input<string>[]>;
         /**
-         * Whether to use TLS when connecting to Cassandra.
+         * Specifies whether to use TLS when connecting to Couchbase.
          */
         tls?: pulumi.Input<boolean>;
         /**
-         * The root credential username used in the connection URL.
+         * Specifies the username for Vault to use.
          */
         username: pulumi.Input<string>;
         /**
-         * [Template](https://www.vaultproject.io/docs/concepts/username-templating) describing how dynamic usernames are generated.
+         * Template describing how dynamic usernames are generated.
          */
         usernameTemplate?: pulumi.Input<string>;
         /**
@@ -1439,19 +1328,19 @@ export declare namespace database {
          */
         allowedRoles?: pulumi.Input<pulumi.Input<string>[]>;
         /**
-         * The path to a PEM-encoded CA cert file to use to verify the Elasticsearch server's identity.
+         * The path to a PEM-encoded CA cert file to use to verify the Elasticsearch server's identity
          */
         caCert?: pulumi.Input<string>;
         /**
-         * The path to a directory of PEM-encoded CA cert files to use to verify the Elasticsearch server's identity.
+         * The path to a directory of PEM-encoded CA cert files to use to verify the Elasticsearch server's identity
          */
         caPath?: pulumi.Input<string>;
         /**
-         * The path to the certificate for the Elasticsearch client to present for communication.
+         * The path to the certificate for the Elasticsearch client to present for communication
          */
         clientCert?: pulumi.Input<string>;
         /**
-         * The path to the key for the Elasticsearch client to use for communication.
+         * The path to the key for the Elasticsearch client to use for communication
          */
         clientKey?: pulumi.Input<string>;
         /**
@@ -1463,7 +1352,7 @@ export declare namespace database {
             [key: string]: any;
         }>;
         /**
-         * Whether to disable certificate verification.
+         * Whether to disable certificate verification
          */
         insecure?: pulumi.Input<boolean>;
         /**
@@ -1471,7 +1360,7 @@ export declare namespace database {
          */
         name: pulumi.Input<string>;
         /**
-         * The root credential password used in the connection URL.
+         * The password to be used in the connection URL
          */
         password: pulumi.Input<string>;
         /**
@@ -1483,20 +1372,19 @@ export declare namespace database {
          */
         rootRotationStatements?: pulumi.Input<pulumi.Input<string>[]>;
         /**
-         * This, if set, is used to set the SNI host when connecting via TLS.
+         * This, if set, is used to set the SNI host when connecting via TLS
          */
         tlsServerName?: pulumi.Input<string>;
         /**
-         * The URL for Elasticsearch's API. https requires certificate
-         * by trusted CA if used.
+         * The URL for Elasticsearch's API
          */
         url: pulumi.Input<string>;
         /**
-         * The root credential username used in the connection URL.
+         * The username to be used in the connection URL
          */
         username: pulumi.Input<string>;
         /**
-         * [Template](https://www.vaultproject.io/docs/concepts/username-templating) describing how dynamic usernames are generated.
+         * Template describing how dynamic usernames are generated.
          */
         usernameTemplate?: pulumi.Input<string>;
         /**
@@ -1512,8 +1400,7 @@ export declare namespace database {
          */
         allowedRoles?: pulumi.Input<pulumi.Input<string>[]>;
         /**
-         * Specifies the Redshift DSN.
-         * See [Vault docs](https://www.vaultproject.io/api-docs/secret/databases/redshift#sample-payload)
+         * Connection string to use to connect to the database.
          */
         connectionUrl?: pulumi.Input<string>;
         /**
@@ -1525,21 +1412,19 @@ export declare namespace database {
             [key: string]: any;
         }>;
         /**
-         * Disable special character escaping in username and password.
+         * Disable special character escaping in username and password
          */
         disableEscaping?: pulumi.Input<boolean>;
         /**
-         * The maximum amount of time a connection may be reused.
+         * Maximum number of seconds a connection may be reused.
          */
         maxConnectionLifetime?: pulumi.Input<number>;
         /**
-         * The maximum number of idle connections to
-         * the database.
+         * Maximum number of idle connections to the database.
          */
         maxIdleConnections?: pulumi.Input<number>;
         /**
-         * The maximum number of open connections to
-         * the database.
+         * Maximum number of open connections to the database.
          */
         maxOpenConnections?: pulumi.Input<number>;
         /**
@@ -1547,7 +1432,7 @@ export declare namespace database {
          */
         name: pulumi.Input<string>;
         /**
-         * The root credential password used in the connection URL.
+         * The root credential password used in the connection URL
          */
         password?: pulumi.Input<string>;
         /**
@@ -1559,7 +1444,7 @@ export declare namespace database {
          */
         rootRotationStatements?: pulumi.Input<pulumi.Input<string>[]>;
         /**
-         * The root credential username used in the connection URL.
+         * The root credential username used in the connection URL
          */
         username?: pulumi.Input<string>;
         /**
@@ -1575,8 +1460,7 @@ export declare namespace database {
          */
         allowedRoles?: pulumi.Input<pulumi.Input<string>[]>;
         /**
-         * The number of seconds to use as a connection
-         * timeout.
+         * The number of seconds to use as a connection timeout.
          */
         connectTimeout?: pulumi.Input<number>;
         /**
@@ -1588,12 +1472,11 @@ export declare namespace database {
             [key: string]: any;
         }>;
         /**
-         * The host to connect to.
+         * Influxdb host to connect to.
          */
         host: pulumi.Input<string>;
         /**
-         * Whether to skip verification of the server
-         * certificate when using TLS.
+         * Whether to skip verification of the server certificate when using TLS.
          */
         insecureTls?: pulumi.Input<boolean>;
         /**
@@ -1601,16 +1484,15 @@ export declare namespace database {
          */
         name: pulumi.Input<string>;
         /**
-         * The root credential password used in the connection URL.
+         * Specifies the password corresponding to the given username.
          */
         password: pulumi.Input<string>;
         /**
-         * Concatenated PEM blocks configuring the certificate
-         * chain.
+         * Concatenated PEM blocks containing a certificate and private key; a certificate, private key, and issuing CA certificate; or just a CA certificate.
          */
         pemBundle?: pulumi.Input<string>;
         /**
-         * A JSON structure configuring the certificate chain.
+         * Specifies JSON containing a certificate and private key; a certificate, private key, and issuing CA certificate; or just a CA certificate.
          */
         pemJson?: pulumi.Input<string>;
         /**
@@ -1618,8 +1500,7 @@ export declare namespace database {
          */
         pluginName?: pulumi.Input<string>;
         /**
-         * The default port to connect to if no port is specified as
-         * part of the host.
+         * The transport port to use to connect to Influxdb.
          */
         port?: pulumi.Input<number>;
         /**
@@ -1627,15 +1508,15 @@ export declare namespace database {
          */
         rootRotationStatements?: pulumi.Input<pulumi.Input<string>[]>;
         /**
-         * Whether to use TLS when connecting to Cassandra.
+         * Whether to use TLS when connecting to Influxdb.
          */
         tls?: pulumi.Input<boolean>;
         /**
-         * The root credential username used in the connection URL.
+         * Specifies the username to use for superuser access.
          */
         username: pulumi.Input<string>;
         /**
-         * [Template](https://www.vaultproject.io/docs/concepts/username-templating) describing how dynamic usernames are generated.
+         * Template describing how dynamic usernames are generated.
          */
         usernameTemplate?: pulumi.Input<string>;
         /**
@@ -1651,8 +1532,7 @@ export declare namespace database {
          */
         allowedRoles?: pulumi.Input<pulumi.Input<string>[]>;
         /**
-         * Specifies the Redshift DSN.
-         * See [Vault docs](https://www.vaultproject.io/api-docs/secret/databases/redshift#sample-payload)
+         * Connection string to use to connect to the database.
          */
         connectionUrl?: pulumi.Input<string>;
         /**
@@ -1664,17 +1544,15 @@ export declare namespace database {
             [key: string]: any;
         }>;
         /**
-         * The maximum amount of time a connection may be reused.
+         * Maximum number of seconds a connection may be reused.
          */
         maxConnectionLifetime?: pulumi.Input<number>;
         /**
-         * The maximum number of idle connections to
-         * the database.
+         * Maximum number of idle connections to the database.
          */
         maxIdleConnections?: pulumi.Input<number>;
         /**
-         * The maximum number of open connections to
-         * the database.
+         * Maximum number of open connections to the database.
          */
         maxOpenConnections?: pulumi.Input<number>;
         /**
@@ -1682,7 +1560,7 @@ export declare namespace database {
          */
         name: pulumi.Input<string>;
         /**
-         * The root credential password used in the connection URL.
+         * The root credential password used in the connection URL
          */
         password?: pulumi.Input<string>;
         /**
@@ -1694,11 +1572,11 @@ export declare namespace database {
          */
         rootRotationStatements?: pulumi.Input<pulumi.Input<string>[]>;
         /**
-         * The root credential username used in the connection URL.
+         * The root credential username used in the connection URL
          */
         username?: pulumi.Input<string>;
         /**
-         * [Template](https://www.vaultproject.io/docs/concepts/username-templating) describing how dynamic usernames are generated.
+         * Username generation template.
          */
         usernameTemplate?: pulumi.Input<string>;
         /**
@@ -1758,14 +1636,11 @@ export declare namespace database {
          */
         allowedRoles?: pulumi.Input<pulumi.Input<string>[]>;
         /**
-         * Specifies the Redshift DSN.
-         * See [Vault docs](https://www.vaultproject.io/api-docs/secret/databases/redshift#sample-payload)
+         * Connection string to use to connect to the database.
          */
         connectionUrl?: pulumi.Input<string>;
         /**
-         * For Vault v1.9+. Set to true when the target is a
-         * Contained Database, e.g. AzureSQL.
-         * See [Vault docs](https://www.vaultproject.io/api/secret/databases/mssql#contained_db)
+         * Set to true when the target is a Contained Database, e.g. AzureSQL.
          */
         containedDb?: pulumi.Input<boolean>;
         /**
@@ -1777,21 +1652,19 @@ export declare namespace database {
             [key: string]: any;
         }>;
         /**
-         * Disable special character escaping in username and password.
+         * Disable special character escaping in username and password
          */
         disableEscaping?: pulumi.Input<boolean>;
         /**
-         * The maximum amount of time a connection may be reused.
+         * Maximum number of seconds a connection may be reused.
          */
         maxConnectionLifetime?: pulumi.Input<number>;
         /**
-         * The maximum number of idle connections to
-         * the database.
+         * Maximum number of idle connections to the database.
          */
         maxIdleConnections?: pulumi.Input<number>;
         /**
-         * The maximum number of open connections to
-         * the database.
+         * Maximum number of open connections to the database.
          */
         maxOpenConnections?: pulumi.Input<number>;
         /**
@@ -1799,7 +1672,7 @@ export declare namespace database {
          */
         name: pulumi.Input<string>;
         /**
-         * The root credential password used in the connection URL.
+         * The root credential password used in the connection URL
          */
         password?: pulumi.Input<string>;
         /**
@@ -1811,11 +1684,11 @@ export declare namespace database {
          */
         rootRotationStatements?: pulumi.Input<pulumi.Input<string>[]>;
         /**
-         * The root credential username used in the connection URL.
+         * The root credential username used in the connection URL
          */
         username?: pulumi.Input<string>;
         /**
-         * [Template](https://www.vaultproject.io/docs/concepts/username-templating) describing how dynamic usernames are generated.
+         * Username generation template.
          */
         usernameTemplate?: pulumi.Input<string>;
         /**
@@ -1835,8 +1708,7 @@ export declare namespace database {
          */
         authType?: pulumi.Input<string>;
         /**
-         * Specifies the Redshift DSN.
-         * See [Vault docs](https://www.vaultproject.io/api-docs/secret/databases/redshift#sample-payload)
+         * Connection string to use to connect to the database.
          */
         connectionUrl?: pulumi.Input<string>;
         /**
@@ -1848,17 +1720,15 @@ export declare namespace database {
             [key: string]: any;
         }>;
         /**
-         * The maximum amount of time a connection may be reused.
+         * Maximum number of seconds a connection may be reused.
          */
         maxConnectionLifetime?: pulumi.Input<number>;
         /**
-         * The maximum number of idle connections to
-         * the database.
+         * Maximum number of idle connections to the database.
          */
         maxIdleConnections?: pulumi.Input<number>;
         /**
-         * The maximum number of open connections to
-         * the database.
+         * Maximum number of open connections to the database.
          */
         maxOpenConnections?: pulumi.Input<number>;
         /**
@@ -1866,7 +1736,7 @@ export declare namespace database {
          */
         name: pulumi.Input<string>;
         /**
-         * The root credential password used in the connection URL.
+         * The root credential password used in the connection URL
          */
         password?: pulumi.Input<string>;
         /**
@@ -1890,11 +1760,11 @@ export declare namespace database {
          */
         tlsCertificateKey?: pulumi.Input<string>;
         /**
-         * The root credential username used in the connection URL.
+         * The root credential username used in the connection URL
          */
         username?: pulumi.Input<string>;
         /**
-         * [Template](https://www.vaultproject.io/docs/concepts/username-templating) describing how dynamic usernames are generated.
+         * Username generation template.
          */
         usernameTemplate?: pulumi.Input<string>;
         /**
@@ -1914,8 +1784,7 @@ export declare namespace database {
          */
         authType?: pulumi.Input<string>;
         /**
-         * Specifies the Redshift DSN.
-         * See [Vault docs](https://www.vaultproject.io/api-docs/secret/databases/redshift#sample-payload)
+         * Connection string to use to connect to the database.
          */
         connectionUrl?: pulumi.Input<string>;
         /**
@@ -1927,17 +1796,15 @@ export declare namespace database {
             [key: string]: any;
         }>;
         /**
-         * The maximum amount of time a connection may be reused.
+         * Maximum number of seconds a connection may be reused.
          */
         maxConnectionLifetime?: pulumi.Input<number>;
         /**
-         * The maximum number of idle connections to
-         * the database.
+         * Maximum number of idle connections to the database.
          */
         maxIdleConnections?: pulumi.Input<number>;
         /**
-         * The maximum number of open connections to
-         * the database.
+         * Maximum number of open connections to the database.
          */
         maxOpenConnections?: pulumi.Input<number>;
         /**
@@ -1945,7 +1812,7 @@ export declare namespace database {
          */
         name: pulumi.Input<string>;
         /**
-         * The root credential password used in the connection URL.
+         * The root credential password used in the connection URL
          */
         password?: pulumi.Input<string>;
         /**
@@ -1969,11 +1836,11 @@ export declare namespace database {
          */
         tlsCertificateKey?: pulumi.Input<string>;
         /**
-         * The root credential username used in the connection URL.
+         * The root credential username used in the connection URL
          */
         username?: pulumi.Input<string>;
         /**
-         * [Template](https://www.vaultproject.io/docs/concepts/username-templating) describing how dynamic usernames are generated.
+         * Username generation template.
          */
         usernameTemplate?: pulumi.Input<string>;
         /**
@@ -1993,8 +1860,7 @@ export declare namespace database {
          */
         authType?: pulumi.Input<string>;
         /**
-         * Specifies the Redshift DSN.
-         * See [Vault docs](https://www.vaultproject.io/api-docs/secret/databases/redshift#sample-payload)
+         * Connection string to use to connect to the database.
          */
         connectionUrl?: pulumi.Input<string>;
         /**
@@ -2006,17 +1872,15 @@ export declare namespace database {
             [key: string]: any;
         }>;
         /**
-         * The maximum amount of time a connection may be reused.
+         * Maximum number of seconds a connection may be reused.
          */
         maxConnectionLifetime?: pulumi.Input<number>;
         /**
-         * The maximum number of idle connections to
-         * the database.
+         * Maximum number of idle connections to the database.
          */
         maxIdleConnections?: pulumi.Input<number>;
         /**
-         * The maximum number of open connections to
-         * the database.
+         * Maximum number of open connections to the database.
          */
         maxOpenConnections?: pulumi.Input<number>;
         /**
@@ -2024,7 +1888,7 @@ export declare namespace database {
          */
         name: pulumi.Input<string>;
         /**
-         * The root credential password used in the connection URL.
+         * The root credential password used in the connection URL
          */
         password?: pulumi.Input<string>;
         /**
@@ -2048,11 +1912,11 @@ export declare namespace database {
          */
         tlsCertificateKey?: pulumi.Input<string>;
         /**
-         * The root credential username used in the connection URL.
+         * The root credential username used in the connection URL
          */
         username?: pulumi.Input<string>;
         /**
-         * [Template](https://www.vaultproject.io/docs/concepts/username-templating) describing how dynamic usernames are generated.
+         * Username generation template.
          */
         usernameTemplate?: pulumi.Input<string>;
         /**
@@ -2072,8 +1936,7 @@ export declare namespace database {
          */
         authType?: pulumi.Input<string>;
         /**
-         * Specifies the Redshift DSN.
-         * See [Vault docs](https://www.vaultproject.io/api-docs/secret/databases/redshift#sample-payload)
+         * Connection string to use to connect to the database.
          */
         connectionUrl?: pulumi.Input<string>;
         /**
@@ -2085,17 +1948,15 @@ export declare namespace database {
             [key: string]: any;
         }>;
         /**
-         * The maximum amount of time a connection may be reused.
+         * Maximum number of seconds a connection may be reused.
          */
         maxConnectionLifetime?: pulumi.Input<number>;
         /**
-         * The maximum number of idle connections to
-         * the database.
+         * Maximum number of idle connections to the database.
          */
         maxIdleConnections?: pulumi.Input<number>;
         /**
-         * The maximum number of open connections to
-         * the database.
+         * Maximum number of open connections to the database.
          */
         maxOpenConnections?: pulumi.Input<number>;
         /**
@@ -2103,7 +1964,7 @@ export declare namespace database {
          */
         name: pulumi.Input<string>;
         /**
-         * The root credential password used in the connection URL.
+         * The root credential password used in the connection URL
          */
         password?: pulumi.Input<string>;
         /**
@@ -2127,11 +1988,11 @@ export declare namespace database {
          */
         tlsCertificateKey?: pulumi.Input<string>;
         /**
-         * The root credential username used in the connection URL.
+         * The root credential username used in the connection URL
          */
         username?: pulumi.Input<string>;
         /**
-         * [Template](https://www.vaultproject.io/docs/concepts/username-templating) describing how dynamic usernames are generated.
+         * Username generation template.
          */
         usernameTemplate?: pulumi.Input<string>;
         /**
@@ -2147,8 +2008,7 @@ export declare namespace database {
          */
         allowedRoles?: pulumi.Input<pulumi.Input<string>[]>;
         /**
-         * Specifies the Redshift DSN.
-         * See [Vault docs](https://www.vaultproject.io/api-docs/secret/databases/redshift#sample-payload)
+         * Connection string to use to connect to the database.
          */
         connectionUrl?: pulumi.Input<string>;
         /**
@@ -2164,17 +2024,15 @@ export declare namespace database {
          */
         disconnectSessions?: pulumi.Input<boolean>;
         /**
-         * The maximum amount of time a connection may be reused.
+         * Maximum number of seconds a connection may be reused.
          */
         maxConnectionLifetime?: pulumi.Input<number>;
         /**
-         * The maximum number of idle connections to
-         * the database.
+         * Maximum number of idle connections to the database.
          */
         maxIdleConnections?: pulumi.Input<number>;
         /**
-         * The maximum number of open connections to
-         * the database.
+         * Maximum number of open connections to the database.
          */
         maxOpenConnections?: pulumi.Input<number>;
         /**
@@ -2182,7 +2040,7 @@ export declare namespace database {
          */
         name: pulumi.Input<string>;
         /**
-         * The root credential password used in the connection URL.
+         * The root credential password used in the connection URL
          */
         password?: pulumi.Input<string>;
         /**
@@ -2198,11 +2056,11 @@ export declare namespace database {
          */
         splitStatements?: pulumi.Input<boolean>;
         /**
-         * The root credential username used in the connection URL.
+         * The root credential username used in the connection URL
          */
         username?: pulumi.Input<string>;
         /**
-         * [Template](https://www.vaultproject.io/docs/concepts/username-templating) describing how dynamic usernames are generated.
+         * Username generation template.
          */
         usernameTemplate?: pulumi.Input<string>;
         /**
@@ -2222,8 +2080,7 @@ export declare namespace database {
          */
         authType?: pulumi.Input<string>;
         /**
-         * Specifies the Redshift DSN.
-         * See [Vault docs](https://www.vaultproject.io/api-docs/secret/databases/redshift#sample-payload)
+         * Connection string to use to connect to the database.
          */
         connectionUrl?: pulumi.Input<string>;
         /**
@@ -2235,21 +2092,19 @@ export declare namespace database {
             [key: string]: any;
         }>;
         /**
-         * Disable special character escaping in username and password.
+         * Disable special character escaping in username and password
          */
         disableEscaping?: pulumi.Input<boolean>;
         /**
-         * The maximum amount of time a connection may be reused.
+         * Maximum number of seconds a connection may be reused.
          */
         maxConnectionLifetime?: pulumi.Input<number>;
         /**
-         * The maximum number of idle connections to
-         * the database.
+         * Maximum number of idle connections to the database.
          */
         maxIdleConnections?: pulumi.Input<number>;
         /**
-         * The maximum number of open connections to
-         * the database.
+         * Maximum number of open connections to the database.
          */
         maxOpenConnections?: pulumi.Input<number>;
         /**
@@ -2257,7 +2112,7 @@ export declare namespace database {
          */
         name: pulumi.Input<string>;
         /**
-         * The root credential password used in the connection URL.
+         * The root credential password used in the connection URL
          */
         password?: pulumi.Input<string>;
         /**
@@ -2273,11 +2128,11 @@ export declare namespace database {
          */
         serviceAccountJson?: pulumi.Input<string>;
         /**
-         * The root credential username used in the connection URL.
+         * The root credential username used in the connection URL
          */
         username?: pulumi.Input<string>;
         /**
-         * [Template](https://www.vaultproject.io/docs/concepts/username-templating) describing how dynamic usernames are generated.
+         * Username generation template.
          */
         usernameTemplate?: pulumi.Input<string>;
         /**
@@ -2293,7 +2148,7 @@ export declare namespace database {
          */
         allowedRoles?: pulumi.Input<pulumi.Input<string>[]>;
         /**
-         * The path to a PEM-encoded CA cert file to use to verify the Elasticsearch server's identity.
+         * The contents of a PEM-encoded CA cert file to use to verify the Redis server's identity.
          */
         caCert?: pulumi.Input<string>;
         /**
@@ -2305,12 +2160,11 @@ export declare namespace database {
             [key: string]: any;
         }>;
         /**
-         * The host to connect to.
+         * Specifies the host to connect to
          */
         host: pulumi.Input<string>;
         /**
-         * Whether to skip verification of the server
-         * certificate when using TLS.
+         * Specifies whether to skip verification of the server certificate when using TLS.
          */
         insecureTls?: pulumi.Input<boolean>;
         /**
@@ -2318,7 +2172,7 @@ export declare namespace database {
          */
         name: pulumi.Input<string>;
         /**
-         * The root credential password used in the connection URL.
+         * Specifies the password corresponding to the given username.
          */
         password: pulumi.Input<string>;
         /**
@@ -2326,8 +2180,7 @@ export declare namespace database {
          */
         pluginName?: pulumi.Input<string>;
         /**
-         * The default port to connect to if no port is specified as
-         * part of the host.
+         * The transport port to use to connect to Redis.
          */
         port?: pulumi.Input<number>;
         /**
@@ -2335,11 +2188,11 @@ export declare namespace database {
          */
         rootRotationStatements?: pulumi.Input<pulumi.Input<string>[]>;
         /**
-         * Whether to use TLS when connecting to Cassandra.
+         * Specifies whether to use TLS when connecting to Redis.
          */
         tls?: pulumi.Input<boolean>;
         /**
-         * The root credential username used in the connection URL.
+         * Specifies the username for Vault to use.
          */
         username: pulumi.Input<string>;
         /**
@@ -2367,7 +2220,7 @@ export declare namespace database {
          */
         name: pulumi.Input<string>;
         /**
-         * The root credential password used in the connection URL.
+         * The AWS secret key id to use to talk to ElastiCache. If omitted the credentials chain provider is used instead.
          */
         password?: pulumi.Input<string>;
         /**
@@ -2375,8 +2228,7 @@ export declare namespace database {
          */
         pluginName?: pulumi.Input<string>;
         /**
-         * The AWS region where the ElastiCache cluster is hosted.
-         * If omitted the plugin tries to infer the region from the environment.
+         * The AWS region where the ElastiCache cluster is hosted. If omitted the plugin tries to infer the region from the environment.
          */
         region?: pulumi.Input<string>;
         /**
@@ -2384,12 +2236,11 @@ export declare namespace database {
          */
         rootRotationStatements?: pulumi.Input<pulumi.Input<string>[]>;
         /**
-         * The URL for Elasticsearch's API. https requires certificate
-         * by trusted CA if used.
+         * The configuration endpoint for the ElastiCache cluster to connect to.
          */
         url: pulumi.Input<string>;
         /**
-         * The root credential username used in the connection URL.
+         * The AWS access key id to use to talk to ElastiCache. If omitted the credentials chain provider is used instead.
          */
         username?: pulumi.Input<string>;
         /**
@@ -2405,8 +2256,7 @@ export declare namespace database {
          */
         allowedRoles?: pulumi.Input<pulumi.Input<string>[]>;
         /**
-         * Specifies the Redshift DSN.
-         * See [Vault docs](https://www.vaultproject.io/api-docs/secret/databases/redshift#sample-payload)
+         * Connection string to use to connect to the database.
          */
         connectionUrl?: pulumi.Input<string>;
         /**
@@ -2418,21 +2268,19 @@ export declare namespace database {
             [key: string]: any;
         }>;
         /**
-         * Disable special character escaping in username and password.
+         * Disable special character escaping in username and password
          */
         disableEscaping?: pulumi.Input<boolean>;
         /**
-         * The maximum amount of time a connection may be reused.
+         * Maximum number of seconds a connection may be reused.
          */
         maxConnectionLifetime?: pulumi.Input<number>;
         /**
-         * The maximum number of idle connections to
-         * the database.
+         * Maximum number of idle connections to the database.
          */
         maxIdleConnections?: pulumi.Input<number>;
         /**
-         * The maximum number of open connections to
-         * the database.
+         * Maximum number of open connections to the database.
          */
         maxOpenConnections?: pulumi.Input<number>;
         /**
@@ -2440,7 +2288,7 @@ export declare namespace database {
          */
         name: pulumi.Input<string>;
         /**
-         * The root credential password used in the connection URL.
+         * The root credential password used in the connection URL
          */
         password?: pulumi.Input<string>;
         /**
@@ -2452,11 +2300,11 @@ export declare namespace database {
          */
         rootRotationStatements?: pulumi.Input<pulumi.Input<string>[]>;
         /**
-         * The root credential username used in the connection URL.
+         * The root credential username used in the connection URL
          */
         username?: pulumi.Input<string>;
         /**
-         * [Template](https://www.vaultproject.io/docs/concepts/username-templating) describing how dynamic usernames are generated.
+         * Username generation template.
          */
         usernameTemplate?: pulumi.Input<string>;
         /**
@@ -2472,8 +2320,7 @@ export declare namespace database {
          */
         allowedRoles?: pulumi.Input<pulumi.Input<string>[]>;
         /**
-         * Specifies the Redshift DSN.
-         * See [Vault docs](https://www.vaultproject.io/api-docs/secret/databases/redshift#sample-payload)
+         * Connection string to use to connect to the database.
          */
         connectionUrl?: pulumi.Input<string>;
         /**
@@ -2485,17 +2332,15 @@ export declare namespace database {
             [key: string]: any;
         }>;
         /**
-         * The maximum amount of time a connection may be reused.
+         * Maximum number of seconds a connection may be reused.
          */
         maxConnectionLifetime?: pulumi.Input<number>;
         /**
-         * The maximum number of idle connections to
-         * the database.
+         * Maximum number of idle connections to the database.
          */
         maxIdleConnections?: pulumi.Input<number>;
         /**
-         * The maximum number of open connections to
-         * the database.
+         * Maximum number of open connections to the database.
          */
         maxOpenConnections?: pulumi.Input<number>;
         /**
@@ -2503,7 +2348,7 @@ export declare namespace database {
          */
         name: pulumi.Input<string>;
         /**
-         * The root credential password used in the connection URL.
+         * The root credential password used in the connection URL
          */
         password?: pulumi.Input<string>;
         /**
@@ -2515,11 +2360,11 @@ export declare namespace database {
          */
         rootRotationStatements?: pulumi.Input<pulumi.Input<string>[]>;
         /**
-         * The root credential username used in the connection URL.
+         * The root credential username used in the connection URL
          */
         username?: pulumi.Input<string>;
         /**
-         * [Template](https://www.vaultproject.io/docs/concepts/username-templating) describing how dynamic usernames are generated.
+         * Username generation template.
          */
         usernameTemplate?: pulumi.Input<string>;
         /**
@@ -2741,62 +2586,55 @@ export declare namespace kv {
 export declare namespace managed {
     interface KeysAw {
         /**
-         * The AWS access key to use.
+         * The AWS access key to use
          */
         accessKey: pulumi.Input<string>;
         /**
-         * If no existing key can be found in
-         * the referenced backend, instructs Vault to generate a key within the backend.
+         * If no existing key can be found in the referenced backend, instructs Vault to generate a key within the backend
          */
         allowGenerateKey?: pulumi.Input<boolean>;
         /**
-         * Controls the ability for Vault to replace through
-         * generation or importing a key into the configured backend even
-         * if a key is present, if set to `false` those operations are forbidden
-         * if a key exists.
+         * Controls the ability for Vault to replace through generation or importing a key into the configured backend even if a key is present, if set to false those operations are forbidden if a key exists.
          */
         allowReplaceKey?: pulumi.Input<boolean>;
         /**
-         * Controls the ability for Vault to import a key to the
-         * configured backend, if `false`, those operations will be forbidden.
+         * Controls the ability for Vault to import a key to the configured backend, if 'false', those operations will be forbidden
          */
         allowStoreKey?: pulumi.Input<boolean>;
         /**
-         * If `true`, allows usage from any mount point within the
-         * namespace.
+         * Allow usage from any mount point within the namespace if 'true'
          */
         anyMount?: pulumi.Input<boolean>;
         /**
-         * The curve to use for an ECDSA key. Used when `keyType`
-         * is `ECDSA`. Required if `allowGenerateKey` is `true`.
+         * The curve to use for an ECDSA key. Used when keyType is 'ECDSA'. Required if 'allow_generate_key' is true
          */
         curve?: pulumi.Input<string>;
         /**
-         * Used to specify a custom AWS endpoint.
+         * Used to specify a custom AWS endpoint
          */
         endpoint?: pulumi.Input<string>;
         /**
-         * The size in bits for an RSA key.
+         * The size in bits for an RSA key. This field is required when 'key_type' is 'RSA'
          */
         keyBits: pulumi.Input<string>;
         /**
-         * The type of key to use.
+         * The type of key to use
          */
         keyType: pulumi.Input<string>;
         /**
-         * An identifier for the key.
+         * An identifier for the key
          */
         kmsKey: pulumi.Input<string>;
         /**
-         * A unique lowercase name that serves as identifying the key.
+         * A unique lowercase name that serves as identifying the key
          */
         name: pulumi.Input<string>;
         /**
-         * The AWS region where the keys are stored (or will be stored).
+         * The AWS region where the keys are stored (or will be stored)
          */
         region?: pulumi.Input<string>;
         /**
-         * The AWS access key to use.
+         * The AWS secret key to use
          */
         secretKey: pulumi.Input<string>;
         /**
@@ -2806,61 +2644,55 @@ export declare namespace managed {
     }
     interface KeysAzure {
         /**
-         * If no existing key can be found in
-         * the referenced backend, instructs Vault to generate a key within the backend.
+         * If no existing key can be found in the referenced backend, instructs Vault to generate a key within the backend
          */
         allowGenerateKey?: pulumi.Input<boolean>;
         /**
-         * Controls the ability for Vault to replace through
-         * generation or importing a key into the configured backend even
-         * if a key is present, if set to `false` those operations are forbidden
-         * if a key exists.
+         * Controls the ability for Vault to replace through generation or importing a key into the configured backend even if a key is present, if set to false those operations are forbidden if a key exists.
          */
         allowReplaceKey?: pulumi.Input<boolean>;
         /**
-         * Controls the ability for Vault to import a key to the
-         * configured backend, if `false`, those operations will be forbidden.
+         * Controls the ability for Vault to import a key to the configured backend, if 'false', those operations will be forbidden
          */
         allowStoreKey?: pulumi.Input<boolean>;
         /**
-         * If `true`, allows usage from any mount point within the
-         * namespace.
+         * Allow usage from any mount point within the namespace if 'true'
          */
         anyMount?: pulumi.Input<boolean>;
         /**
-         * The client id for credentials to query the Azure APIs.
+         * The client id for credentials to query the Azure APIs
          */
         clientId: pulumi.Input<string>;
         /**
-         * The client secret for credentials to query the Azure APIs.
+         * The client secret for credentials to query the Azure APIs
          */
         clientSecret: pulumi.Input<string>;
         /**
-         * The Azure Cloud environment API endpoints to use.
+         * The Azure Cloud environment API endpoints to use
          */
         environment?: pulumi.Input<string>;
         /**
-         * The size in bits for an RSA key.
+         * The size in bits for an RSA key. This field is required when 'key_type' is 'RSA' or when 'allow_generate_key' is true
          */
         keyBits?: pulumi.Input<string>;
         /**
-         * The Key Vault key to use for encryption and decryption.
+         * The Key Vault key to use for encryption and decryption
          */
         keyName: pulumi.Input<string>;
         /**
-         * The type of key to use.
+         * The type of key to use
          */
         keyType: pulumi.Input<string>;
         /**
-         * A unique lowercase name that serves as identifying the key.
+         * A unique lowercase name that serves as identifying the key
          */
         name: pulumi.Input<string>;
         /**
-         * The Azure Key Vault resource's DNS Suffix to connect to.
+         * The Azure Key Vault resource's DNS Suffix to connect to
          */
         resource?: pulumi.Input<string>;
         /**
-         * The tenant id for the Azure Active Directory organization.
+         * The tenant id for the Azure Active Directory organization
          */
         tenantId: pulumi.Input<string>;
         /**
@@ -2868,80 +2700,69 @@ export declare namespace managed {
          */
         uuid?: pulumi.Input<string>;
         /**
-         * The Key Vault vault to use for encryption and decryption.
+         * The Key Vault vault to use the encryption keys for encryption and decryption
          */
         vaultName: pulumi.Input<string>;
     }
     interface KeysPkc {
         /**
-         * If no existing key can be found in
-         * the referenced backend, instructs Vault to generate a key within the backend.
+         * If no existing key can be found in the referenced backend, instructs Vault to generate a key within the backend
          */
         allowGenerateKey?: pulumi.Input<boolean>;
         /**
-         * Controls the ability for Vault to replace through
-         * generation or importing a key into the configured backend even
-         * if a key is present, if set to `false` those operations are forbidden
-         * if a key exists.
+         * Controls the ability for Vault to replace through generation or importing a key into the configured backend even if a key is present, if set to false those operations are forbidden if a key exists.
          */
         allowReplaceKey?: pulumi.Input<boolean>;
         /**
-         * Controls the ability for Vault to import a key to the
-         * configured backend, if `false`, those operations will be forbidden.
+         * Controls the ability for Vault to import a key to the configured backend, if 'false', those operations will be forbidden
          */
         allowStoreKey?: pulumi.Input<boolean>;
         /**
-         * If `true`, allows usage from any mount point within the
-         * namespace.
+         * Allow usage from any mount point within the namespace if 'true'
          */
         anyMount?: pulumi.Input<boolean>;
         /**
-         * The curve to use for an ECDSA key. Used when `keyType`
-         * is `ECDSA`. Required if `allowGenerateKey` is `true`.
+         * Supplies the curve value when using the 'CKM_ECDSA' mechanism. Required if 'allow_generate_key' is true
          */
         curve?: pulumi.Input<string>;
         /**
-         * Force all operations to open up a read-write session to
-         * the HSM.
+         * Force all operations to open up a read-write session to the HSM
          */
         forceRwSession?: pulumi.Input<string>;
         /**
-         * The size in bits for an RSA key.
+         * Supplies the size in bits of the key when using 'CKM_RSA_PKCS_PSS', 'CKM_RSA_PKCS_OAEP' or 'CKM_RSA_PKCS' as a value for 'mechanism'. Required if 'allow_generate_key' is true
          */
         keyBits?: pulumi.Input<string>;
         /**
-         * The id of a PKCS#11 key to use.
+         * The id of a PKCS#11 key to use
          */
         keyId: pulumi.Input<string>;
         /**
-         * The label of the key to use.
+         * The label of the key to use
          */
         keyLabel: pulumi.Input<string>;
         /**
-         * The name of the kmsLibrary stanza to use from Vault's config
-         * to lookup the local library path.
+         * The name of the kmsLibrary stanza to use from Vault's config to lookup the local library path
          */
         library: pulumi.Input<string>;
         /**
-         * The encryption/decryption mechanism to use, specified as a
-         * hexadecimal (prefixed by 0x) string.
+         * The encryption/decryption mechanism to use, specified as a hexadecimal (prefixed by 0x) string.
          */
         mechanism: pulumi.Input<string>;
         /**
-         * A unique lowercase name that serves as identifying the key.
+         * A unique lowercase name that serves as identifying the key
          */
         name: pulumi.Input<string>;
         /**
-         * The PIN for login.
+         * The PIN for login
          */
         pin: pulumi.Input<string>;
         /**
-         * The slot number to use, specified as a string in a decimal format
-         * (e.g. `2305843009213693953`).
+         * The slot number to use, specified as a string in a decimal format (e.g. '2305843009213693953')
          */
         slot?: pulumi.Input<string>;
         /**
-         * The slot token label to use.
+         * The slot token label to use
          */
         tokenLabel?: pulumi.Input<string>;
         /**
@@ -2953,21 +2774,21 @@ export declare namespace managed {
 export declare namespace okta {
     interface AuthBackendGroup {
         /**
-         * Name of the group within the Okta
+         * Name of the Okta group
          */
         groupName: pulumi.Input<string>;
         /**
-         * Vault policies to associate with this group
+         * Policies to associate with this group
          */
         policies: pulumi.Input<pulumi.Input<string>[]>;
     }
     interface AuthBackendUser {
         /**
-         * List of Okta groups to associate with this user
+         * Groups within the Okta auth backend to associate with this user
          */
         groups?: pulumi.Input<pulumi.Input<string>[]>;
         /**
-         * Vault policies to associate with this group
+         * Policies to associate with this user
          */
         policies?: pulumi.Input<pulumi.Input<string>[]>;
         /**
@@ -3062,25 +2883,12 @@ export declare namespace secrets {
 export declare namespace ssh {
     interface SecretBackendRoleAllowedUserKeyConfig {
         /**
-         * A list of allowed key lengths as integers.
-         * For key types that do not support setting the length a value of `[0]` should be used.
-         * Setting multiple lengths is only supported on Vault 1.10+. For prior releases `length`
-         * must be set to a single element list.
-         *
-         * Example configuration blocks that might be included in the `vault.ssh.SecretBackendRole`
-         *
-         * <!--Start PulumiCodeChooser -->
-         * ```typescript
-         * import * as pulumi from "@pulumi/pulumi";
-         * ```
-         * <!--End PulumiCodeChooser -->
+         * List of allowed key lengths, vault-1.10 and above
          */
         lengths: pulumi.Input<pulumi.Input<number>[]>;
         /**
-         * The SSH public key type.
-         * *Supported key types are:*
-         * `rsa`, `ecdsa`, `ec`, `dsa`, `ed25519`, `ssh-rsa`, `ssh-dss`, `ssh-ed25519`,
-         * `ecdsa-sha2-nistp256`, `ecdsa-sha2-nistp384`, `ecdsa-sha2-nistp521`
+         * Key type, choices:
+         * rsa, ecdsa, ec, dsa, ed25519, ssh-rsa, ssh-dss, ssh-ed25519, ecdsa-sha2-nistp256, ecdsa-sha2-nistp384, ecdsa-sha2-nistp521
          */
         type: pulumi.Input<string>;
     }