@sapslaj/pulumi-infisical 0.15.36
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/README.md +8 -0
- package/dist/accessApprovalPolicy.d.ts +137 -0
- package/dist/accessApprovalPolicy.d.ts.map +1 -0
- package/dist/accessApprovalPolicy.js +98 -0
- package/dist/accessApprovalPolicy.js.map +1 -0
- package/dist/appConnection1password.d.ts +97 -0
- package/dist/appConnection1password.d.ts.map +1 -0
- package/dist/appConnection1password.js +86 -0
- package/dist/appConnection1password.js.map +1 -0
- package/dist/appConnectionAws.d.ts +97 -0
- package/dist/appConnectionAws.d.ts.map +1 -0
- package/dist/appConnectionAws.js +86 -0
- package/dist/appConnectionAws.js.map +1 -0
- package/dist/appConnectionAzureClientSecrets.d.ts +97 -0
- package/dist/appConnectionAzureClientSecrets.d.ts.map +1 -0
- package/dist/appConnectionAzureClientSecrets.js +86 -0
- package/dist/appConnectionAzureClientSecrets.js.map +1 -0
- package/dist/appConnectionBitbucket.d.ts +97 -0
- package/dist/appConnectionBitbucket.d.ts.map +1 -0
- package/dist/appConnectionBitbucket.js +86 -0
- package/dist/appConnectionBitbucket.js.map +1 -0
- package/dist/appConnectionCloudflare.d.ts +97 -0
- package/dist/appConnectionCloudflare.d.ts.map +1 -0
- package/dist/appConnectionCloudflare.js +86 -0
- package/dist/appConnectionCloudflare.js.map +1 -0
- package/dist/appConnectionDatabricks.d.ts +97 -0
- package/dist/appConnectionDatabricks.d.ts.map +1 -0
- package/dist/appConnectionDatabricks.js +86 -0
- package/dist/appConnectionDatabricks.js.map +1 -0
- package/dist/appConnectionFlyio.d.ts +97 -0
- package/dist/appConnectionFlyio.d.ts.map +1 -0
- package/dist/appConnectionFlyio.js +86 -0
- package/dist/appConnectionFlyio.js.map +1 -0
- package/dist/appConnectionGcp.d.ts +97 -0
- package/dist/appConnectionGcp.d.ts.map +1 -0
- package/dist/appConnectionGcp.js +86 -0
- package/dist/appConnectionGcp.js.map +1 -0
- package/dist/appConnectionGitlab.d.ts +97 -0
- package/dist/appConnectionGitlab.d.ts.map +1 -0
- package/dist/appConnectionGitlab.js +86 -0
- package/dist/appConnectionGitlab.js.map +1 -0
- package/dist/appConnectionLdap.d.ts +97 -0
- package/dist/appConnectionLdap.d.ts.map +1 -0
- package/dist/appConnectionLdap.js +86 -0
- package/dist/appConnectionLdap.js.map +1 -0
- package/dist/appConnectionMssql.d.ts +97 -0
- package/dist/appConnectionMssql.d.ts.map +1 -0
- package/dist/appConnectionMssql.js +86 -0
- package/dist/appConnectionMssql.js.map +1 -0
- package/dist/appConnectionMysql.d.ts +97 -0
- package/dist/appConnectionMysql.d.ts.map +1 -0
- package/dist/appConnectionMysql.js +86 -0
- package/dist/appConnectionMysql.js.map +1 -0
- package/dist/appConnectionOracledb.d.ts +97 -0
- package/dist/appConnectionOracledb.d.ts.map +1 -0
- package/dist/appConnectionOracledb.js +86 -0
- package/dist/appConnectionOracledb.js.map +1 -0
- package/dist/appConnectionPostgres.d.ts +97 -0
- package/dist/appConnectionPostgres.d.ts.map +1 -0
- package/dist/appConnectionPostgres.js +86 -0
- package/dist/appConnectionPostgres.js.map +1 -0
- package/dist/appConnectionRender.d.ts +97 -0
- package/dist/appConnectionRender.d.ts.map +1 -0
- package/dist/appConnectionRender.js +86 -0
- package/dist/appConnectionRender.js.map +1 -0
- package/dist/appConnectionSupabase.d.ts +97 -0
- package/dist/appConnectionSupabase.d.ts.map +1 -0
- package/dist/appConnectionSupabase.js +86 -0
- package/dist/appConnectionSupabase.js.map +1 -0
- package/dist/config/index.d.ts +2 -0
- package/dist/config/index.d.ts.map +1 -0
- package/dist/config/index.js +21 -0
- package/dist/config/index.js.map +1 -0
- package/dist/config/vars.d.ts +22 -0
- package/dist/config/vars.d.ts.map +1 -0
- package/dist/config/vars.js +60 -0
- package/dist/config/vars.js.map +1 -0
- package/dist/dynamicSecretAwsIam.d.ts +149 -0
- package/dist/dynamicSecretAwsIam.d.ts.map +1 -0
- package/dist/dynamicSecretAwsIam.js +103 -0
- package/dist/dynamicSecretAwsIam.js.map +1 -0
- package/dist/dynamicSecretKubernetes.d.ts +149 -0
- package/dist/dynamicSecretKubernetes.d.ts.map +1 -0
- package/dist/dynamicSecretKubernetes.js +103 -0
- package/dist/dynamicSecretKubernetes.js.map +1 -0
- package/dist/dynamicSecretMongoAtlas.d.ts +149 -0
- package/dist/dynamicSecretMongoAtlas.d.ts.map +1 -0
- package/dist/dynamicSecretMongoAtlas.js +103 -0
- package/dist/dynamicSecretMongoAtlas.js.map +1 -0
- package/dist/dynamicSecretMongoDb.d.ts +149 -0
- package/dist/dynamicSecretMongoDb.d.ts.map +1 -0
- package/dist/dynamicSecretMongoDb.js +103 -0
- package/dist/dynamicSecretMongoDb.js.map +1 -0
- package/dist/dynamicSecretSqlDatabase.d.ts +149 -0
- package/dist/dynamicSecretSqlDatabase.d.ts.map +1 -0
- package/dist/dynamicSecretSqlDatabase.js +103 -0
- package/dist/dynamicSecretSqlDatabase.js.map +1 -0
- package/dist/getGroups.d.ts +15 -0
- package/dist/getGroups.d.ts.map +1 -0
- package/dist/getGroups.js +41 -0
- package/dist/getGroups.js.map +1 -0
- package/dist/getIdentityDetails.d.ts +15 -0
- package/dist/getIdentityDetails.d.ts.map +1 -0
- package/dist/getIdentityDetails.js +41 -0
- package/dist/getIdentityDetails.js.map +1 -0
- package/dist/getProjects.d.ts +34 -0
- package/dist/getProjects.d.ts.map +1 -0
- package/dist/getProjects.js +45 -0
- package/dist/getProjects.js.map +1 -0
- package/dist/getSecretFolders.d.ts +34 -0
- package/dist/getSecretFolders.d.ts.map +1 -0
- package/dist/getSecretFolders.js +49 -0
- package/dist/getSecretFolders.js.map +1 -0
- package/dist/getSecretTag.d.ts +28 -0
- package/dist/getSecretTag.d.ts.map +1 -0
- package/dist/getSecretTag.js +47 -0
- package/dist/getSecretTag.js.map +1 -0
- package/dist/getSecrets.d.ts +36 -0
- package/dist/getSecrets.d.ts.map +1 -0
- package/dist/getSecrets.js +49 -0
- package/dist/getSecrets.js.map +1 -0
- package/dist/group.d.ts +75 -0
- package/dist/group.d.ts.map +1 -0
- package/dist/group.js +82 -0
- package/dist/group.js.map +1 -0
- package/dist/identity.d.ts +109 -0
- package/dist/identity.d.ts.map +1 -0
- package/dist/identity.js +88 -0
- package/dist/identity.js.map +1 -0
- package/dist/identityAwsAuth.d.ts +137 -0
- package/dist/identityAwsAuth.d.ts.map +1 -0
- package/dist/identityAwsAuth.js +89 -0
- package/dist/identityAwsAuth.js.map +1 -0
- package/dist/identityAzureAuth.d.ts +137 -0
- package/dist/identityAzureAuth.d.ts.map +1 -0
- package/dist/identityAzureAuth.js +92 -0
- package/dist/identityAzureAuth.js.map +1 -0
- package/dist/identityGcpAuth.d.ts +149 -0
- package/dist/identityGcpAuth.d.ts.map +1 -0
- package/dist/identityGcpAuth.js +91 -0
- package/dist/identityGcpAuth.js.map +1 -0
- package/dist/identityKubernetesAuth.d.ts +173 -0
- package/dist/identityKubernetesAuth.d.ts.map +1 -0
- package/dist/identityKubernetesAuth.js +101 -0
- package/dist/identityKubernetesAuth.js.map +1 -0
- package/dist/identityOidcAuth.d.ts +197 -0
- package/dist/identityOidcAuth.d.ts.map +1 -0
- package/dist/identityOidcAuth.js +103 -0
- package/dist/identityOidcAuth.js.map +1 -0
- package/dist/identityUniversalAuth.d.ts +113 -0
- package/dist/identityUniversalAuth.d.ts.map +1 -0
- package/dist/identityUniversalAuth.js +85 -0
- package/dist/identityUniversalAuth.js.map +1 -0
- package/dist/identityUniversalAuthClientSecret.d.ts +127 -0
- package/dist/identityUniversalAuthClientSecret.d.ts.map +1 -0
- package/dist/identityUniversalAuthClientSecret.js +93 -0
- package/dist/identityUniversalAuthClientSecret.js.map +1 -0
- package/dist/index.d.ts +239 -0
- package/dist/index.d.ts.map +1 -0
- package/dist/index.js +438 -0
- package/dist/index.js.map +1 -0
- package/dist/integrationAwsParameterStore.d.ts +165 -0
- package/dist/integrationAwsParameterStore.d.ts.map +1 -0
- package/dist/integrationAwsParameterStore.js +109 -0
- package/dist/integrationAwsParameterStore.js.map +1 -0
- package/dist/integrationAwsSecretsManager.d.ts +177 -0
- package/dist/integrationAwsSecretsManager.d.ts.map +1 -0
- package/dist/integrationAwsSecretsManager.js +108 -0
- package/dist/integrationAwsSecretsManager.js.map +1 -0
- package/dist/integrationCircleci.d.ts +127 -0
- package/dist/integrationCircleci.d.ts.map +1 -0
- package/dist/integrationCircleci.js +106 -0
- package/dist/integrationCircleci.js.map +1 -0
- package/dist/integrationDatabricks.d.ts +127 -0
- package/dist/integrationDatabricks.d.ts.map +1 -0
- package/dist/integrationDatabricks.js +106 -0
- package/dist/integrationDatabricks.js.map +1 -0
- package/dist/integrationGcpSecretManager.d.ts +129 -0
- package/dist/integrationGcpSecretManager.d.ts.map +1 -0
- package/dist/integrationGcpSecretManager.js +103 -0
- package/dist/integrationGcpSecretManager.js.map +1 -0
- package/dist/project.d.ts +137 -0
- package/dist/project.d.ts.map +1 -0
- package/dist/project.js +91 -0
- package/dist/project.js.map +1 -0
- package/dist/projectEnvironment.d.ts +87 -0
- package/dist/projectEnvironment.d.ts.map +1 -0
- package/dist/projectEnvironment.js +84 -0
- package/dist/projectEnvironment.js.map +1 -0
- package/dist/projectGroup.d.ts +97 -0
- package/dist/projectGroup.d.ts.map +1 -0
- package/dist/projectGroup.js +86 -0
- package/dist/projectGroup.js.map +1 -0
- package/dist/projectIdentity.d.ts +93 -0
- package/dist/projectIdentity.d.ts.map +1 -0
- package/dist/projectIdentity.js +89 -0
- package/dist/projectIdentity.js.map +1 -0
- package/dist/projectIdentitySpecificPrivilege.d.ts +161 -0
- package/dist/projectIdentitySpecificPrivilege.d.ts.map +1 -0
- package/dist/projectIdentitySpecificPrivilege.js +96 -0
- package/dist/projectIdentitySpecificPrivilege.js.map +1 -0
- package/dist/projectRole.d.ts +113 -0
- package/dist/projectRole.d.ts.map +1 -0
- package/dist/projectRole.js +88 -0
- package/dist/projectRole.js.map +1 -0
- package/dist/projectTemplate.d.ts +101 -0
- package/dist/projectTemplate.d.ts.map +1 -0
- package/dist/projectTemplate.js +83 -0
- package/dist/projectTemplate.js.map +1 -0
- package/dist/projectUser.d.ts +93 -0
- package/dist/projectUser.d.ts.map +1 -0
- package/dist/projectUser.js +89 -0
- package/dist/projectUser.js.map +1 -0
- package/dist/provider.d.ts +83 -0
- package/dist/provider.d.ts.map +1 -0
- package/dist/provider.js +83 -0
- package/dist/provider.js.map +1 -0
- package/dist/secret.d.ts +118 -0
- package/dist/secret.d.ts.map +1 -0
- package/dist/secret.js +97 -0
- package/dist/secret.js.map +1 -0
- package/dist/secretApprovalPolicy.d.ts +149 -0
- package/dist/secretApprovalPolicy.d.ts.map +1 -0
- package/dist/secretApprovalPolicy.js +100 -0
- package/dist/secretApprovalPolicy.js.map +1 -0
- package/dist/secretFolder.d.ts +103 -0
- package/dist/secretFolder.d.ts.map +1 -0
- package/dist/secretFolder.js +91 -0
- package/dist/secretFolder.js.map +1 -0
- package/dist/secretImport.d.ts +111 -0
- package/dist/secretImport.d.ts.map +1 -0
- package/dist/secretImport.js +100 -0
- package/dist/secretImport.js.map +1 -0
- package/dist/secretRotationAwsIamUserSecret.d.ts +185 -0
- package/dist/secretRotationAwsIamUserSecret.d.ts.map +1 -0
- package/dist/secretRotationAwsIamUserSecret.js +112 -0
- package/dist/secretRotationAwsIamUserSecret.js.map +1 -0
- package/dist/secretRotationAzureClientSecret.d.ts +185 -0
- package/dist/secretRotationAzureClientSecret.d.ts.map +1 -0
- package/dist/secretRotationAzureClientSecret.js +112 -0
- package/dist/secretRotationAzureClientSecret.js.map +1 -0
- package/dist/secretRotationLdapPassword.d.ts +185 -0
- package/dist/secretRotationLdapPassword.d.ts.map +1 -0
- package/dist/secretRotationLdapPassword.js +112 -0
- package/dist/secretRotationLdapPassword.js.map +1 -0
- package/dist/secretRotationMssqlCredentials.d.ts +185 -0
- package/dist/secretRotationMssqlCredentials.d.ts.map +1 -0
- package/dist/secretRotationMssqlCredentials.js +112 -0
- package/dist/secretRotationMssqlCredentials.js.map +1 -0
- package/dist/secretRotationMysqlCredentials.d.ts +185 -0
- package/dist/secretRotationMysqlCredentials.d.ts.map +1 -0
- package/dist/secretRotationMysqlCredentials.js +112 -0
- package/dist/secretRotationMysqlCredentials.js.map +1 -0
- package/dist/secretRotationOracledbCredentials.d.ts +185 -0
- package/dist/secretRotationOracledbCredentials.d.ts.map +1 -0
- package/dist/secretRotationOracledbCredentials.js +112 -0
- package/dist/secretRotationOracledbCredentials.js.map +1 -0
- package/dist/secretRotationPostgresCredentials.d.ts +185 -0
- package/dist/secretRotationPostgresCredentials.d.ts.map +1 -0
- package/dist/secretRotationPostgresCredentials.js +112 -0
- package/dist/secretRotationPostgresCredentials.js.map +1 -0
- package/dist/secretSync1password.d.ts +149 -0
- package/dist/secretSync1password.d.ts.map +1 -0
- package/dist/secretSync1password.js +106 -0
- package/dist/secretSync1password.js.map +1 -0
- package/dist/secretSyncAwsParameterStore.d.ts +149 -0
- package/dist/secretSyncAwsParameterStore.d.ts.map +1 -0
- package/dist/secretSyncAwsParameterStore.js +106 -0
- package/dist/secretSyncAwsParameterStore.js.map +1 -0
- package/dist/secretSyncAwsSecretsManager.d.ts +149 -0
- package/dist/secretSyncAwsSecretsManager.d.ts.map +1 -0
- package/dist/secretSyncAwsSecretsManager.js +106 -0
- package/dist/secretSyncAwsSecretsManager.js.map +1 -0
- package/dist/secretSyncAzureAppConfiguration.d.ts +149 -0
- package/dist/secretSyncAzureAppConfiguration.d.ts.map +1 -0
- package/dist/secretSyncAzureAppConfiguration.js +106 -0
- package/dist/secretSyncAzureAppConfiguration.js.map +1 -0
- package/dist/secretSyncAzureDevops.d.ts +149 -0
- package/dist/secretSyncAzureDevops.d.ts.map +1 -0
- package/dist/secretSyncAzureDevops.js +106 -0
- package/dist/secretSyncAzureDevops.js.map +1 -0
- package/dist/secretSyncAzureKeyVault.d.ts +149 -0
- package/dist/secretSyncAzureKeyVault.d.ts.map +1 -0
- package/dist/secretSyncAzureKeyVault.js +106 -0
- package/dist/secretSyncAzureKeyVault.js.map +1 -0
- package/dist/secretSyncBitbucket.d.ts +149 -0
- package/dist/secretSyncBitbucket.d.ts.map +1 -0
- package/dist/secretSyncBitbucket.js +106 -0
- package/dist/secretSyncBitbucket.js.map +1 -0
- package/dist/secretSyncCloudflarePages.d.ts +149 -0
- package/dist/secretSyncCloudflarePages.d.ts.map +1 -0
- package/dist/secretSyncCloudflarePages.js +106 -0
- package/dist/secretSyncCloudflarePages.js.map +1 -0
- package/dist/secretSyncCloudflareWorkers.d.ts +149 -0
- package/dist/secretSyncCloudflareWorkers.d.ts.map +1 -0
- package/dist/secretSyncCloudflareWorkers.js +106 -0
- package/dist/secretSyncCloudflareWorkers.js.map +1 -0
- package/dist/secretSyncDatabricks.d.ts +149 -0
- package/dist/secretSyncDatabricks.d.ts.map +1 -0
- package/dist/secretSyncDatabricks.js +106 -0
- package/dist/secretSyncDatabricks.js.map +1 -0
- package/dist/secretSyncFlyio.d.ts +149 -0
- package/dist/secretSyncFlyio.d.ts.map +1 -0
- package/dist/secretSyncFlyio.js +106 -0
- package/dist/secretSyncFlyio.js.map +1 -0
- package/dist/secretSyncGcpSecretManager.d.ts +149 -0
- package/dist/secretSyncGcpSecretManager.d.ts.map +1 -0
- package/dist/secretSyncGcpSecretManager.js +106 -0
- package/dist/secretSyncGcpSecretManager.js.map +1 -0
- package/dist/secretSyncGithub.d.ts +149 -0
- package/dist/secretSyncGithub.d.ts.map +1 -0
- package/dist/secretSyncGithub.js +106 -0
- package/dist/secretSyncGithub.js.map +1 -0
- package/dist/secretSyncGitlab.d.ts +149 -0
- package/dist/secretSyncGitlab.d.ts.map +1 -0
- package/dist/secretSyncGitlab.js +106 -0
- package/dist/secretSyncGitlab.js.map +1 -0
- package/dist/secretSyncRender.d.ts +149 -0
- package/dist/secretSyncRender.d.ts.map +1 -0
- package/dist/secretSyncRender.js +106 -0
- package/dist/secretSyncRender.js.map +1 -0
- package/dist/secretSyncSupabase.d.ts +149 -0
- package/dist/secretSyncSupabase.d.ts.map +1 -0
- package/dist/secretSyncSupabase.js +106 -0
- package/dist/secretSyncSupabase.js.map +1 -0
- package/dist/secretTag.d.ts +87 -0
- package/dist/secretTag.d.ts.map +1 -0
- package/dist/secretTag.js +87 -0
- package/dist/secretTag.js.map +1 -0
- package/dist/types/index.d.ts +4 -0
- package/dist/types/index.d.ts.map +1 -0
- package/dist/types/index.js +34 -0
- package/dist/types/index.js.map +1 -0
- package/dist/types/input.d.ts +1766 -0
- package/dist/types/input.d.ts.map +1 -0
- package/dist/types/input.js +5 -0
- package/dist/types/input.js.map +1 -0
- package/dist/types/output.d.ts +1839 -0
- package/dist/types/output.d.ts.map +1 -0
- package/dist/types/output.js +5 -0
- package/dist/types/output.js.map +1 -0
- package/dist/utilities.d.ts +15 -0
- package/dist/utilities.d.ts.map +1 -0
- package/dist/utilities.js +152 -0
- package/dist/utilities.js.map +1 -0
- package/package.json +27 -0
|
@@ -0,0 +1,92 @@
|
|
|
1
|
+
"use strict";
|
|
2
|
+
// *** WARNING: this file was generated by pulumi-language-nodejs. ***
|
|
3
|
+
// *** Do not edit by hand unless you're certain you know what you are doing! ***
|
|
4
|
+
var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
|
|
5
|
+
if (k2 === undefined) k2 = k;
|
|
6
|
+
var desc = Object.getOwnPropertyDescriptor(m, k);
|
|
7
|
+
if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
|
|
8
|
+
desc = { enumerable: true, get: function() { return m[k]; } };
|
|
9
|
+
}
|
|
10
|
+
Object.defineProperty(o, k2, desc);
|
|
11
|
+
}) : (function(o, m, k, k2) {
|
|
12
|
+
if (k2 === undefined) k2 = k;
|
|
13
|
+
o[k2] = m[k];
|
|
14
|
+
}));
|
|
15
|
+
var __setModuleDefault = (this && this.__setModuleDefault) || (Object.create ? (function(o, v) {
|
|
16
|
+
Object.defineProperty(o, "default", { enumerable: true, value: v });
|
|
17
|
+
}) : function(o, v) {
|
|
18
|
+
o["default"] = v;
|
|
19
|
+
});
|
|
20
|
+
var __importStar = (this && this.__importStar) || function (mod) {
|
|
21
|
+
if (mod && mod.__esModule) return mod;
|
|
22
|
+
var result = {};
|
|
23
|
+
if (mod != null) for (var k in mod) if (k !== "default" && Object.prototype.hasOwnProperty.call(mod, k)) __createBinding(result, mod, k);
|
|
24
|
+
__setModuleDefault(result, mod);
|
|
25
|
+
return result;
|
|
26
|
+
};
|
|
27
|
+
Object.defineProperty(exports, "__esModule", { value: true });
|
|
28
|
+
exports.IdentityAzureAuth = void 0;
|
|
29
|
+
const pulumi = __importStar(require("@pulumi/pulumi"));
|
|
30
|
+
const utilities = __importStar(require("./utilities"));
|
|
31
|
+
class IdentityAzureAuth extends pulumi.CustomResource {
|
|
32
|
+
/**
|
|
33
|
+
* Get an existing IdentityAzureAuth resource's state with the given name, ID, and optional extra
|
|
34
|
+
* properties used to qualify the lookup.
|
|
35
|
+
*
|
|
36
|
+
* @param name The _unique_ name of the resulting resource.
|
|
37
|
+
* @param id The _unique_ provider ID of the resource to lookup.
|
|
38
|
+
* @param state Any extra arguments used during the lookup.
|
|
39
|
+
* @param opts Optional settings to control the behavior of the CustomResource.
|
|
40
|
+
*/
|
|
41
|
+
static get(name, id, state, opts) {
|
|
42
|
+
return new IdentityAzureAuth(name, state, { ...opts, id: id });
|
|
43
|
+
}
|
|
44
|
+
/**
|
|
45
|
+
* Returns true if the given object is an instance of IdentityAzureAuth. This is designed to work even
|
|
46
|
+
* when multiple copies of the Pulumi SDK have been loaded into the same process.
|
|
47
|
+
*/
|
|
48
|
+
static isInstance(obj) {
|
|
49
|
+
if (obj === undefined || obj === null) {
|
|
50
|
+
return false;
|
|
51
|
+
}
|
|
52
|
+
return obj['__pulumiType'] === IdentityAzureAuth.__pulumiType;
|
|
53
|
+
}
|
|
54
|
+
constructor(name, argsOrState, opts) {
|
|
55
|
+
let resourceInputs = {};
|
|
56
|
+
opts = opts || {};
|
|
57
|
+
if (opts.id) {
|
|
58
|
+
const state = argsOrState;
|
|
59
|
+
resourceInputs["accessTokenMaxTtl"] = state?.accessTokenMaxTtl;
|
|
60
|
+
resourceInputs["accessTokenNumUsesLimit"] = state?.accessTokenNumUsesLimit;
|
|
61
|
+
resourceInputs["accessTokenTrustedIps"] = state?.accessTokenTrustedIps;
|
|
62
|
+
resourceInputs["accessTokenTtl"] = state?.accessTokenTtl;
|
|
63
|
+
resourceInputs["allowedServicePrincipalIds"] = state?.allowedServicePrincipalIds;
|
|
64
|
+
resourceInputs["identityId"] = state?.identityId;
|
|
65
|
+
resourceInputs["resourceUrl"] = state?.resourceUrl;
|
|
66
|
+
resourceInputs["tenantId"] = state?.tenantId;
|
|
67
|
+
}
|
|
68
|
+
else {
|
|
69
|
+
const args = argsOrState;
|
|
70
|
+
if (args?.identityId === undefined && !opts.urn) {
|
|
71
|
+
throw new Error("Missing required property 'identityId'");
|
|
72
|
+
}
|
|
73
|
+
if (args?.tenantId === undefined && !opts.urn) {
|
|
74
|
+
throw new Error("Missing required property 'tenantId'");
|
|
75
|
+
}
|
|
76
|
+
resourceInputs["accessTokenMaxTtl"] = args?.accessTokenMaxTtl;
|
|
77
|
+
resourceInputs["accessTokenNumUsesLimit"] = args?.accessTokenNumUsesLimit;
|
|
78
|
+
resourceInputs["accessTokenTrustedIps"] = args?.accessTokenTrustedIps;
|
|
79
|
+
resourceInputs["accessTokenTtl"] = args?.accessTokenTtl;
|
|
80
|
+
resourceInputs["allowedServicePrincipalIds"] = args?.allowedServicePrincipalIds;
|
|
81
|
+
resourceInputs["identityId"] = args?.identityId;
|
|
82
|
+
resourceInputs["resourceUrl"] = args?.resourceUrl;
|
|
83
|
+
resourceInputs["tenantId"] = args?.tenantId;
|
|
84
|
+
}
|
|
85
|
+
opts = pulumi.mergeOptions(utilities.resourceOptsDefaults(), opts);
|
|
86
|
+
super(IdentityAzureAuth.__pulumiType, name, resourceInputs, opts, false /*dependency*/, utilities.getPackage());
|
|
87
|
+
}
|
|
88
|
+
}
|
|
89
|
+
exports.IdentityAzureAuth = IdentityAzureAuth;
|
|
90
|
+
/** @internal */
|
|
91
|
+
IdentityAzureAuth.__pulumiType = 'infisical:index/identityAzureAuth:IdentityAzureAuth';
|
|
92
|
+
//# sourceMappingURL=identityAzureAuth.js.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"identityAzureAuth.js","sourceRoot":"","sources":["../src/identityAzureAuth.ts"],"names":[],"mappings":";AAAA,sEAAsE;AACtE,iFAAiF;;;;;;;;;;;;;;;;;;;;;;;;;;AAEjF,uDAAyC;AAGzC,uDAAyC;AAEzC,MAAa,iBAAkB,SAAQ,MAAM,CAAC,cAAc;IACxD;;;;;;;;OAQG;IACI,MAAM,CAAC,GAAG,CAAC,IAAY,EAAE,EAA2B,EAAE,KAA8B,EAAE,IAAmC;QAC5H,OAAO,IAAI,iBAAiB,CAAC,IAAI,EAAO,KAAK,EAAE,EAAE,GAAG,IAAI,EAAE,EAAE,EAAE,EAAE,EAAE,CAAC,CAAC;IACxE,CAAC;IAKD;;;OAGG;IACI,MAAM,CAAC,UAAU,CAAC,GAAQ;QAC7B,IAAI,GAAG,KAAK,SAAS,IAAI,GAAG,KAAK,IAAI,EAAE;YACnC,OAAO,KAAK,CAAC;SAChB;QACD,OAAO,GAAG,CAAC,cAAc,CAAC,KAAK,iBAAiB,CAAC,YAAY,CAAC;IAClE,CAAC;IA2CD,YAAY,IAAY,EAAE,WAA4D,EAAE,IAAmC;QACvH,IAAI,cAAc,GAAkB,EAAE,CAAC;QACvC,IAAI,GAAG,IAAI,IAAI,EAAE,CAAC;QAClB,IAAI,IAAI,CAAC,EAAE,EAAE;YACT,MAAM,KAAK,GAAG,WAAiD,CAAC;YAChE,cAAc,CAAC,mBAAmB,CAAC,GAAG,KAAK,EAAE,iBAAiB,CAAC;YAC/D,cAAc,CAAC,yBAAyB,CAAC,GAAG,KAAK,EAAE,uBAAuB,CAAC;YAC3E,cAAc,CAAC,uBAAuB,CAAC,GAAG,KAAK,EAAE,qBAAqB,CAAC;YACvE,cAAc,CAAC,gBAAgB,CAAC,GAAG,KAAK,EAAE,cAAc,CAAC;YACzD,cAAc,CAAC,4BAA4B,CAAC,GAAG,KAAK,EAAE,0BAA0B,CAAC;YACjF,cAAc,CAAC,YAAY,CAAC,GAAG,KAAK,EAAE,UAAU,CAAC;YACjD,cAAc,CAAC,aAAa,CAAC,GAAG,KAAK,EAAE,WAAW,CAAC;YACnD,cAAc,CAAC,UAAU,CAAC,GAAG,KAAK,EAAE,QAAQ,CAAC;SAChD;aAAM;YACH,MAAM,IAAI,GAAG,WAAgD,CAAC;YAC9D,IAAI,IAAI,EAAE,UAAU,KAAK,SAAS,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE;gBAC7C,MAAM,IAAI,KAAK,CAAC,wCAAwC,CAAC,CAAC;aAC7D;YACD,IAAI,IAAI,EAAE,QAAQ,KAAK,SAAS,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE;gBAC3C,MAAM,IAAI,KAAK,CAAC,sCAAsC,CAAC,CAAC;aAC3D;YACD,cAAc,CAAC,mBAAmB,CAAC,GAAG,IAAI,EAAE,iBAAiB,CAAC;YAC9D,cAAc,CAAC,yBAAyB,CAAC,GAAG,IAAI,EAAE,uBAAuB,CAAC;YAC1E,cAAc,CAAC,uBAAuB,CAAC,GAAG,IAAI,EAAE,qBAAqB,CAAC;YACtE,cAAc,CAAC,gBAAgB,CAAC,GAAG,IAAI,EAAE,cAAc,CAAC;YACxD,cAAc,CAAC,4BAA4B,CAAC,GAAG,IAAI,EAAE,0BAA0B,CAAC;YAChF,cAAc,CAAC,YAAY,CAAC,GAAG,IAAI,EAAE,UAAU,CAAC;YAChD,cAAc,CAAC,aAAa,CAAC,GAAG,IAAI,EAAE,WAAW,CAAC;YAClD,cAAc,CAAC,UAAU,CAAC,GAAG,IAAI,EAAE,QAAQ,CAAC;SAC/C;QACD,IAAI,GAAG,MAAM,CAAC,YAAY,CAAC,SAAS,CAAC,oBAAoB,EAAE,EAAE,IAAI,CAAC,CAAC;QACnE,KAAK,CAAC,iBAAiB,CAAC,YAAY,EAAE,IAAI,EAAE,cAAc,EAAE,IAAI,EAAE,KAAK,CAAC,cAAc,EAAE,SAAS,CAAC,UAAU,EAAE,CAAC,CAAC;IACpH,CAAC;;AArGL,8CAsGC;AAxFG,gBAAgB;AACO,8BAAY,GAAG,qDAAqD,CAAC"}
|
|
@@ -0,0 +1,149 @@
|
|
|
1
|
+
import * as pulumi from "@pulumi/pulumi";
|
|
2
|
+
import * as inputs from "./types/input";
|
|
3
|
+
import * as outputs from "./types/output";
|
|
4
|
+
export declare class IdentityGcpAuth extends pulumi.CustomResource {
|
|
5
|
+
/**
|
|
6
|
+
* Get an existing IdentityGcpAuth resource's state with the given name, ID, and optional extra
|
|
7
|
+
* properties used to qualify the lookup.
|
|
8
|
+
*
|
|
9
|
+
* @param name The _unique_ name of the resulting resource.
|
|
10
|
+
* @param id The _unique_ provider ID of the resource to lookup.
|
|
11
|
+
* @param state Any extra arguments used during the lookup.
|
|
12
|
+
* @param opts Optional settings to control the behavior of the CustomResource.
|
|
13
|
+
*/
|
|
14
|
+
static get(name: string, id: pulumi.Input<pulumi.ID>, state?: IdentityGcpAuthState, opts?: pulumi.CustomResourceOptions): IdentityGcpAuth;
|
|
15
|
+
/** @internal */
|
|
16
|
+
static readonly __pulumiType = "infisical:index/identityGcpAuth:IdentityGcpAuth";
|
|
17
|
+
/**
|
|
18
|
+
* Returns true if the given object is an instance of IdentityGcpAuth. This is designed to work even
|
|
19
|
+
* when multiple copies of the Pulumi SDK have been loaded into the same process.
|
|
20
|
+
*/
|
|
21
|
+
static isInstance(obj: any): obj is IdentityGcpAuth;
|
|
22
|
+
/**
|
|
23
|
+
* The maximum lifetime for an access token in seconds. This value will be referenced at renewal time. Default: 2592000
|
|
24
|
+
*/
|
|
25
|
+
readonly accessTokenMaxTtl: pulumi.Output<number>;
|
|
26
|
+
/**
|
|
27
|
+
* The maximum number of times that an access token can be used; a value of 0 implies infinite number of uses. Default:0
|
|
28
|
+
*/
|
|
29
|
+
readonly accessTokenNumUsesLimit: pulumi.Output<number>;
|
|
30
|
+
/**
|
|
31
|
+
* A list of IPs or CIDR ranges that access tokens can be used from. You can use 0.0.0.0/0, to allow usage from any network address..
|
|
32
|
+
*/
|
|
33
|
+
readonly accessTokenTrustedIps: pulumi.Output<outputs.IdentityGcpAuthAccessTokenTrustedIp[]>;
|
|
34
|
+
/**
|
|
35
|
+
* The lifetime for an access token in seconds. This value will be referenced at renewal time. Default: 2592000
|
|
36
|
+
*/
|
|
37
|
+
readonly accessTokenTtl: pulumi.Output<number>;
|
|
38
|
+
/**
|
|
39
|
+
* List of trusted GCP projects that the GCE instance must belong to authenticate with Infisical. Note that this validation property will only work for GCE instances
|
|
40
|
+
*/
|
|
41
|
+
readonly allowedProjects: pulumi.Output<string[]>;
|
|
42
|
+
/**
|
|
43
|
+
* List of trusted service account emails corresponding to the GCE resource(s) allowed to authenticate with Infisical; this could be something like `test@project.iam.gserviceaccount.com`, `12345-compute@developer.gserviceaccount.com`, etc.
|
|
44
|
+
*/
|
|
45
|
+
readonly allowedServiceAccountEmails: pulumi.Output<string[]>;
|
|
46
|
+
/**
|
|
47
|
+
* List of trusted zones that the GCE instances must belong to authenticate with Infisical; this should be the fully-qualified zone name in the format `<region>-<zone>`like `us-central1-a`, `us-west1-b`, etc. Note that this validation property will only work for GCE instances.
|
|
48
|
+
*/
|
|
49
|
+
readonly allowedZones: pulumi.Output<string[]>;
|
|
50
|
+
/**
|
|
51
|
+
* The ID of the identity to attach the configuration onto.
|
|
52
|
+
*/
|
|
53
|
+
readonly identityId: pulumi.Output<string>;
|
|
54
|
+
/**
|
|
55
|
+
* The Type of GCP Auth Method to use: Options are gce, iam. Default:gce
|
|
56
|
+
*/
|
|
57
|
+
readonly type: pulumi.Output<string>;
|
|
58
|
+
/**
|
|
59
|
+
* Create a IdentityGcpAuth resource with the given unique name, arguments, and options.
|
|
60
|
+
*
|
|
61
|
+
* @param name The _unique_ name of the resource.
|
|
62
|
+
* @param args The arguments to use to populate this resource's properties.
|
|
63
|
+
* @param opts A bag of options that control this resource's behavior.
|
|
64
|
+
*/
|
|
65
|
+
constructor(name: string, args: IdentityGcpAuthArgs, opts?: pulumi.CustomResourceOptions);
|
|
66
|
+
}
|
|
67
|
+
/**
|
|
68
|
+
* Input properties used for looking up and filtering IdentityGcpAuth resources.
|
|
69
|
+
*/
|
|
70
|
+
export interface IdentityGcpAuthState {
|
|
71
|
+
/**
|
|
72
|
+
* The maximum lifetime for an access token in seconds. This value will be referenced at renewal time. Default: 2592000
|
|
73
|
+
*/
|
|
74
|
+
accessTokenMaxTtl?: pulumi.Input<number>;
|
|
75
|
+
/**
|
|
76
|
+
* The maximum number of times that an access token can be used; a value of 0 implies infinite number of uses. Default:0
|
|
77
|
+
*/
|
|
78
|
+
accessTokenNumUsesLimit?: pulumi.Input<number>;
|
|
79
|
+
/**
|
|
80
|
+
* A list of IPs or CIDR ranges that access tokens can be used from. You can use 0.0.0.0/0, to allow usage from any network address..
|
|
81
|
+
*/
|
|
82
|
+
accessTokenTrustedIps?: pulumi.Input<pulumi.Input<inputs.IdentityGcpAuthAccessTokenTrustedIp>[]>;
|
|
83
|
+
/**
|
|
84
|
+
* The lifetime for an access token in seconds. This value will be referenced at renewal time. Default: 2592000
|
|
85
|
+
*/
|
|
86
|
+
accessTokenTtl?: pulumi.Input<number>;
|
|
87
|
+
/**
|
|
88
|
+
* List of trusted GCP projects that the GCE instance must belong to authenticate with Infisical. Note that this validation property will only work for GCE instances
|
|
89
|
+
*/
|
|
90
|
+
allowedProjects?: pulumi.Input<pulumi.Input<string>[]>;
|
|
91
|
+
/**
|
|
92
|
+
* List of trusted service account emails corresponding to the GCE resource(s) allowed to authenticate with Infisical; this could be something like `test@project.iam.gserviceaccount.com`, `12345-compute@developer.gserviceaccount.com`, etc.
|
|
93
|
+
*/
|
|
94
|
+
allowedServiceAccountEmails?: pulumi.Input<pulumi.Input<string>[]>;
|
|
95
|
+
/**
|
|
96
|
+
* List of trusted zones that the GCE instances must belong to authenticate with Infisical; this should be the fully-qualified zone name in the format `<region>-<zone>`like `us-central1-a`, `us-west1-b`, etc. Note that this validation property will only work for GCE instances.
|
|
97
|
+
*/
|
|
98
|
+
allowedZones?: pulumi.Input<pulumi.Input<string>[]>;
|
|
99
|
+
/**
|
|
100
|
+
* The ID of the identity to attach the configuration onto.
|
|
101
|
+
*/
|
|
102
|
+
identityId?: pulumi.Input<string>;
|
|
103
|
+
/**
|
|
104
|
+
* The Type of GCP Auth Method to use: Options are gce, iam. Default:gce
|
|
105
|
+
*/
|
|
106
|
+
type?: pulumi.Input<string>;
|
|
107
|
+
}
|
|
108
|
+
/**
|
|
109
|
+
* The set of arguments for constructing a IdentityGcpAuth resource.
|
|
110
|
+
*/
|
|
111
|
+
export interface IdentityGcpAuthArgs {
|
|
112
|
+
/**
|
|
113
|
+
* The maximum lifetime for an access token in seconds. This value will be referenced at renewal time. Default: 2592000
|
|
114
|
+
*/
|
|
115
|
+
accessTokenMaxTtl?: pulumi.Input<number>;
|
|
116
|
+
/**
|
|
117
|
+
* The maximum number of times that an access token can be used; a value of 0 implies infinite number of uses. Default:0
|
|
118
|
+
*/
|
|
119
|
+
accessTokenNumUsesLimit?: pulumi.Input<number>;
|
|
120
|
+
/**
|
|
121
|
+
* A list of IPs or CIDR ranges that access tokens can be used from. You can use 0.0.0.0/0, to allow usage from any network address..
|
|
122
|
+
*/
|
|
123
|
+
accessTokenTrustedIps?: pulumi.Input<pulumi.Input<inputs.IdentityGcpAuthAccessTokenTrustedIp>[]>;
|
|
124
|
+
/**
|
|
125
|
+
* The lifetime for an access token in seconds. This value will be referenced at renewal time. Default: 2592000
|
|
126
|
+
*/
|
|
127
|
+
accessTokenTtl?: pulumi.Input<number>;
|
|
128
|
+
/**
|
|
129
|
+
* List of trusted GCP projects that the GCE instance must belong to authenticate with Infisical. Note that this validation property will only work for GCE instances
|
|
130
|
+
*/
|
|
131
|
+
allowedProjects?: pulumi.Input<pulumi.Input<string>[]>;
|
|
132
|
+
/**
|
|
133
|
+
* List of trusted service account emails corresponding to the GCE resource(s) allowed to authenticate with Infisical; this could be something like `test@project.iam.gserviceaccount.com`, `12345-compute@developer.gserviceaccount.com`, etc.
|
|
134
|
+
*/
|
|
135
|
+
allowedServiceAccountEmails?: pulumi.Input<pulumi.Input<string>[]>;
|
|
136
|
+
/**
|
|
137
|
+
* List of trusted zones that the GCE instances must belong to authenticate with Infisical; this should be the fully-qualified zone name in the format `<region>-<zone>`like `us-central1-a`, `us-west1-b`, etc. Note that this validation property will only work for GCE instances.
|
|
138
|
+
*/
|
|
139
|
+
allowedZones?: pulumi.Input<pulumi.Input<string>[]>;
|
|
140
|
+
/**
|
|
141
|
+
* The ID of the identity to attach the configuration onto.
|
|
142
|
+
*/
|
|
143
|
+
identityId: pulumi.Input<string>;
|
|
144
|
+
/**
|
|
145
|
+
* The Type of GCP Auth Method to use: Options are gce, iam. Default:gce
|
|
146
|
+
*/
|
|
147
|
+
type?: pulumi.Input<string>;
|
|
148
|
+
}
|
|
149
|
+
//# sourceMappingURL=identityGcpAuth.d.ts.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"identityGcpAuth.d.ts","sourceRoot":"","sources":["../src/identityGcpAuth.ts"],"names":[],"mappings":"AAGA,OAAO,KAAK,MAAM,MAAM,gBAAgB,CAAC;AACzC,OAAO,KAAK,MAAM,MAAM,eAAe,CAAC;AACxC,OAAO,KAAK,OAAO,MAAM,gBAAgB,CAAC;AAG1C,qBAAa,eAAgB,SAAQ,MAAM,CAAC,cAAc;IACtD;;;;;;;;OAQG;WACW,GAAG,CAAC,IAAI,EAAE,MAAM,EAAE,EAAE,EAAE,MAAM,CAAC,KAAK,CAAC,MAAM,CAAC,EAAE,CAAC,EAAE,KAAK,CAAC,EAAE,oBAAoB,EAAE,IAAI,CAAC,EAAE,MAAM,CAAC,qBAAqB,GAAG,eAAe;IAIhJ,gBAAgB;IAChB,gBAAuB,YAAY,qDAAqD;IAExF;;;OAGG;WACW,UAAU,CAAC,GAAG,EAAE,GAAG,GAAG,GAAG,IAAI,eAAe;IAO1D;;OAEG;IACH,SAAwB,iBAAiB,EAAE,MAAM,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC;IACjE;;OAEG;IACH,SAAwB,uBAAuB,EAAE,MAAM,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC;IACvE;;OAEG;IACH,SAAwB,qBAAqB,EAAE,MAAM,CAAC,MAAM,CAAC,OAAO,CAAC,mCAAmC,EAAE,CAAC,CAAC;IAC5G;;OAEG;IACH,SAAwB,cAAc,EAAE,MAAM,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC;IAC9D;;OAEG;IACH,SAAwB,eAAe,EAAE,MAAM,CAAC,MAAM,CAAC,MAAM,EAAE,CAAC,CAAC;IACjE;;OAEG;IACH,SAAwB,2BAA2B,EAAE,MAAM,CAAC,MAAM,CAAC,MAAM,EAAE,CAAC,CAAC;IAC7E;;OAEG;IACH,SAAwB,YAAY,EAAE,MAAM,CAAC,MAAM,CAAC,MAAM,EAAE,CAAC,CAAC;IAC9D;;OAEG;IACH,SAAwB,UAAU,EAAE,MAAM,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC;IAC1D;;OAEG;IACH,SAAwB,IAAI,EAAE,MAAM,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC;IAEpD;;;;;;OAMG;gBACS,IAAI,EAAE,MAAM,EAAE,IAAI,EAAE,mBAAmB,EAAE,IAAI,CAAC,EAAE,MAAM,CAAC,qBAAqB;CAiC3F;AAED;;GAEG;AACH,MAAM,WAAW,oBAAoB;IACjC;;OAEG;IACH,iBAAiB,CAAC,EAAE,MAAM,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC;IACzC;;OAEG;IACH,uBAAuB,CAAC,EAAE,MAAM,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC;IAC/C;;OAEG;IACH,qBAAqB,CAAC,EAAE,MAAM,CAAC,KAAK,CAAC,MAAM,CAAC,KAAK,CAAC,MAAM,CAAC,mCAAmC,CAAC,EAAE,CAAC,CAAC;IACjG;;OAEG;IACH,cAAc,CAAC,EAAE,MAAM,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC;IACtC;;OAEG;IACH,eAAe,CAAC,EAAE,MAAM,CAAC,KAAK,CAAC,MAAM,CAAC,KAAK,CAAC,MAAM,CAAC,EAAE,CAAC,CAAC;IACvD;;OAEG;IACH,2BAA2B,CAAC,EAAE,MAAM,CAAC,KAAK,CAAC,MAAM,CAAC,KAAK,CAAC,MAAM,CAAC,EAAE,CAAC,CAAC;IACnE;;OAEG;IACH,YAAY,CAAC,EAAE,MAAM,CAAC,KAAK,CAAC,MAAM,CAAC,KAAK,CAAC,MAAM,CAAC,EAAE,CAAC,CAAC;IACpD;;OAEG;IACH,UAAU,CAAC,EAAE,MAAM,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC;IAClC;;OAEG;IACH,IAAI,CAAC,EAAE,MAAM,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC;CAC/B;AAED;;GAEG;AACH,MAAM,WAAW,mBAAmB;IAChC;;OAEG;IACH,iBAAiB,CAAC,EAAE,MAAM,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC;IACzC;;OAEG;IACH,uBAAuB,CAAC,EAAE,MAAM,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC;IAC/C;;OAEG;IACH,qBAAqB,CAAC,EAAE,MAAM,CAAC,KAAK,CAAC,MAAM,CAAC,KAAK,CAAC,MAAM,CAAC,mCAAmC,CAAC,EAAE,CAAC,CAAC;IACjG;;OAEG;IACH,cAAc,CAAC,EAAE,MAAM,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC;IACtC;;OAEG;IACH,eAAe,CAAC,EAAE,MAAM,CAAC,KAAK,CAAC,MAAM,CAAC,KAAK,CAAC,MAAM,CAAC,EAAE,CAAC,CAAC;IACvD;;OAEG;IACH,2BAA2B,CAAC,EAAE,MAAM,CAAC,KAAK,CAAC,MAAM,CAAC,KAAK,CAAC,MAAM,CAAC,EAAE,CAAC,CAAC;IACnE;;OAEG;IACH,YAAY,CAAC,EAAE,MAAM,CAAC,KAAK,CAAC,MAAM,CAAC,KAAK,CAAC,MAAM,CAAC,EAAE,CAAC,CAAC;IACpD;;OAEG;IACH,UAAU,EAAE,MAAM,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC;IACjC;;OAEG;IACH,IAAI,CAAC,EAAE,MAAM,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC;CAC/B"}
|
|
@@ -0,0 +1,91 @@
|
|
|
1
|
+
"use strict";
|
|
2
|
+
// *** WARNING: this file was generated by pulumi-language-nodejs. ***
|
|
3
|
+
// *** Do not edit by hand unless you're certain you know what you are doing! ***
|
|
4
|
+
var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
|
|
5
|
+
if (k2 === undefined) k2 = k;
|
|
6
|
+
var desc = Object.getOwnPropertyDescriptor(m, k);
|
|
7
|
+
if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
|
|
8
|
+
desc = { enumerable: true, get: function() { return m[k]; } };
|
|
9
|
+
}
|
|
10
|
+
Object.defineProperty(o, k2, desc);
|
|
11
|
+
}) : (function(o, m, k, k2) {
|
|
12
|
+
if (k2 === undefined) k2 = k;
|
|
13
|
+
o[k2] = m[k];
|
|
14
|
+
}));
|
|
15
|
+
var __setModuleDefault = (this && this.__setModuleDefault) || (Object.create ? (function(o, v) {
|
|
16
|
+
Object.defineProperty(o, "default", { enumerable: true, value: v });
|
|
17
|
+
}) : function(o, v) {
|
|
18
|
+
o["default"] = v;
|
|
19
|
+
});
|
|
20
|
+
var __importStar = (this && this.__importStar) || function (mod) {
|
|
21
|
+
if (mod && mod.__esModule) return mod;
|
|
22
|
+
var result = {};
|
|
23
|
+
if (mod != null) for (var k in mod) if (k !== "default" && Object.prototype.hasOwnProperty.call(mod, k)) __createBinding(result, mod, k);
|
|
24
|
+
__setModuleDefault(result, mod);
|
|
25
|
+
return result;
|
|
26
|
+
};
|
|
27
|
+
Object.defineProperty(exports, "__esModule", { value: true });
|
|
28
|
+
exports.IdentityGcpAuth = void 0;
|
|
29
|
+
const pulumi = __importStar(require("@pulumi/pulumi"));
|
|
30
|
+
const utilities = __importStar(require("./utilities"));
|
|
31
|
+
class IdentityGcpAuth extends pulumi.CustomResource {
|
|
32
|
+
/**
|
|
33
|
+
* Get an existing IdentityGcpAuth resource's state with the given name, ID, and optional extra
|
|
34
|
+
* properties used to qualify the lookup.
|
|
35
|
+
*
|
|
36
|
+
* @param name The _unique_ name of the resulting resource.
|
|
37
|
+
* @param id The _unique_ provider ID of the resource to lookup.
|
|
38
|
+
* @param state Any extra arguments used during the lookup.
|
|
39
|
+
* @param opts Optional settings to control the behavior of the CustomResource.
|
|
40
|
+
*/
|
|
41
|
+
static get(name, id, state, opts) {
|
|
42
|
+
return new IdentityGcpAuth(name, state, { ...opts, id: id });
|
|
43
|
+
}
|
|
44
|
+
/**
|
|
45
|
+
* Returns true if the given object is an instance of IdentityGcpAuth. This is designed to work even
|
|
46
|
+
* when multiple copies of the Pulumi SDK have been loaded into the same process.
|
|
47
|
+
*/
|
|
48
|
+
static isInstance(obj) {
|
|
49
|
+
if (obj === undefined || obj === null) {
|
|
50
|
+
return false;
|
|
51
|
+
}
|
|
52
|
+
return obj['__pulumiType'] === IdentityGcpAuth.__pulumiType;
|
|
53
|
+
}
|
|
54
|
+
constructor(name, argsOrState, opts) {
|
|
55
|
+
let resourceInputs = {};
|
|
56
|
+
opts = opts || {};
|
|
57
|
+
if (opts.id) {
|
|
58
|
+
const state = argsOrState;
|
|
59
|
+
resourceInputs["accessTokenMaxTtl"] = state?.accessTokenMaxTtl;
|
|
60
|
+
resourceInputs["accessTokenNumUsesLimit"] = state?.accessTokenNumUsesLimit;
|
|
61
|
+
resourceInputs["accessTokenTrustedIps"] = state?.accessTokenTrustedIps;
|
|
62
|
+
resourceInputs["accessTokenTtl"] = state?.accessTokenTtl;
|
|
63
|
+
resourceInputs["allowedProjects"] = state?.allowedProjects;
|
|
64
|
+
resourceInputs["allowedServiceAccountEmails"] = state?.allowedServiceAccountEmails;
|
|
65
|
+
resourceInputs["allowedZones"] = state?.allowedZones;
|
|
66
|
+
resourceInputs["identityId"] = state?.identityId;
|
|
67
|
+
resourceInputs["type"] = state?.type;
|
|
68
|
+
}
|
|
69
|
+
else {
|
|
70
|
+
const args = argsOrState;
|
|
71
|
+
if (args?.identityId === undefined && !opts.urn) {
|
|
72
|
+
throw new Error("Missing required property 'identityId'");
|
|
73
|
+
}
|
|
74
|
+
resourceInputs["accessTokenMaxTtl"] = args?.accessTokenMaxTtl;
|
|
75
|
+
resourceInputs["accessTokenNumUsesLimit"] = args?.accessTokenNumUsesLimit;
|
|
76
|
+
resourceInputs["accessTokenTrustedIps"] = args?.accessTokenTrustedIps;
|
|
77
|
+
resourceInputs["accessTokenTtl"] = args?.accessTokenTtl;
|
|
78
|
+
resourceInputs["allowedProjects"] = args?.allowedProjects;
|
|
79
|
+
resourceInputs["allowedServiceAccountEmails"] = args?.allowedServiceAccountEmails;
|
|
80
|
+
resourceInputs["allowedZones"] = args?.allowedZones;
|
|
81
|
+
resourceInputs["identityId"] = args?.identityId;
|
|
82
|
+
resourceInputs["type"] = args?.type;
|
|
83
|
+
}
|
|
84
|
+
opts = pulumi.mergeOptions(utilities.resourceOptsDefaults(), opts);
|
|
85
|
+
super(IdentityGcpAuth.__pulumiType, name, resourceInputs, opts, false /*dependency*/, utilities.getPackage());
|
|
86
|
+
}
|
|
87
|
+
}
|
|
88
|
+
exports.IdentityGcpAuth = IdentityGcpAuth;
|
|
89
|
+
/** @internal */
|
|
90
|
+
IdentityGcpAuth.__pulumiType = 'infisical:index/identityGcpAuth:IdentityGcpAuth';
|
|
91
|
+
//# sourceMappingURL=identityGcpAuth.js.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"identityGcpAuth.js","sourceRoot":"","sources":["../src/identityGcpAuth.ts"],"names":[],"mappings":";AAAA,sEAAsE;AACtE,iFAAiF;;;;;;;;;;;;;;;;;;;;;;;;;;AAEjF,uDAAyC;AAGzC,uDAAyC;AAEzC,MAAa,eAAgB,SAAQ,MAAM,CAAC,cAAc;IACtD;;;;;;;;OAQG;IACI,MAAM,CAAC,GAAG,CAAC,IAAY,EAAE,EAA2B,EAAE,KAA4B,EAAE,IAAmC;QAC1H,OAAO,IAAI,eAAe,CAAC,IAAI,EAAO,KAAK,EAAE,EAAE,GAAG,IAAI,EAAE,EAAE,EAAE,EAAE,EAAE,CAAC,CAAC;IACtE,CAAC;IAKD;;;OAGG;IACI,MAAM,CAAC,UAAU,CAAC,GAAQ;QAC7B,IAAI,GAAG,KAAK,SAAS,IAAI,GAAG,KAAK,IAAI,EAAE;YACnC,OAAO,KAAK,CAAC;SAChB;QACD,OAAO,GAAG,CAAC,cAAc,CAAC,KAAK,eAAe,CAAC,YAAY,CAAC;IAChE,CAAC;IA+CD,YAAY,IAAY,EAAE,WAAwD,EAAE,IAAmC;QACnH,IAAI,cAAc,GAAkB,EAAE,CAAC;QACvC,IAAI,GAAG,IAAI,IAAI,EAAE,CAAC;QAClB,IAAI,IAAI,CAAC,EAAE,EAAE;YACT,MAAM,KAAK,GAAG,WAA+C,CAAC;YAC9D,cAAc,CAAC,mBAAmB,CAAC,GAAG,KAAK,EAAE,iBAAiB,CAAC;YAC/D,cAAc,CAAC,yBAAyB,CAAC,GAAG,KAAK,EAAE,uBAAuB,CAAC;YAC3E,cAAc,CAAC,uBAAuB,CAAC,GAAG,KAAK,EAAE,qBAAqB,CAAC;YACvE,cAAc,CAAC,gBAAgB,CAAC,GAAG,KAAK,EAAE,cAAc,CAAC;YACzD,cAAc,CAAC,iBAAiB,CAAC,GAAG,KAAK,EAAE,eAAe,CAAC;YAC3D,cAAc,CAAC,6BAA6B,CAAC,GAAG,KAAK,EAAE,2BAA2B,CAAC;YACnF,cAAc,CAAC,cAAc,CAAC,GAAG,KAAK,EAAE,YAAY,CAAC;YACrD,cAAc,CAAC,YAAY,CAAC,GAAG,KAAK,EAAE,UAAU,CAAC;YACjD,cAAc,CAAC,MAAM,CAAC,GAAG,KAAK,EAAE,IAAI,CAAC;SACxC;aAAM;YACH,MAAM,IAAI,GAAG,WAA8C,CAAC;YAC5D,IAAI,IAAI,EAAE,UAAU,KAAK,SAAS,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE;gBAC7C,MAAM,IAAI,KAAK,CAAC,wCAAwC,CAAC,CAAC;aAC7D;YACD,cAAc,CAAC,mBAAmB,CAAC,GAAG,IAAI,EAAE,iBAAiB,CAAC;YAC9D,cAAc,CAAC,yBAAyB,CAAC,GAAG,IAAI,EAAE,uBAAuB,CAAC;YAC1E,cAAc,CAAC,uBAAuB,CAAC,GAAG,IAAI,EAAE,qBAAqB,CAAC;YACtE,cAAc,CAAC,gBAAgB,CAAC,GAAG,IAAI,EAAE,cAAc,CAAC;YACxD,cAAc,CAAC,iBAAiB,CAAC,GAAG,IAAI,EAAE,eAAe,CAAC;YAC1D,cAAc,CAAC,6BAA6B,CAAC,GAAG,IAAI,EAAE,2BAA2B,CAAC;YAClF,cAAc,CAAC,cAAc,CAAC,GAAG,IAAI,EAAE,YAAY,CAAC;YACpD,cAAc,CAAC,YAAY,CAAC,GAAG,IAAI,EAAE,UAAU,CAAC;YAChD,cAAc,CAAC,MAAM,CAAC,GAAG,IAAI,EAAE,IAAI,CAAC;SACvC;QACD,IAAI,GAAG,MAAM,CAAC,YAAY,CAAC,SAAS,CAAC,oBAAoB,EAAE,EAAE,IAAI,CAAC,CAAC;QACnE,KAAK,CAAC,eAAe,CAAC,YAAY,EAAE,IAAI,EAAE,cAAc,EAAE,IAAI,EAAE,KAAK,CAAC,cAAc,EAAE,SAAS,CAAC,UAAU,EAAE,CAAC,CAAC;IAClH,CAAC;;AAxGL,0CAyGC;AA3FG,gBAAgB;AACO,4BAAY,GAAG,iDAAiD,CAAC"}
|
|
@@ -0,0 +1,173 @@
|
|
|
1
|
+
import * as pulumi from "@pulumi/pulumi";
|
|
2
|
+
import * as inputs from "./types/input";
|
|
3
|
+
import * as outputs from "./types/output";
|
|
4
|
+
export declare class IdentityKubernetesAuth extends pulumi.CustomResource {
|
|
5
|
+
/**
|
|
6
|
+
* Get an existing IdentityKubernetesAuth resource's state with the given name, ID, and optional extra
|
|
7
|
+
* properties used to qualify the lookup.
|
|
8
|
+
*
|
|
9
|
+
* @param name The _unique_ name of the resulting resource.
|
|
10
|
+
* @param id The _unique_ provider ID of the resource to lookup.
|
|
11
|
+
* @param state Any extra arguments used during the lookup.
|
|
12
|
+
* @param opts Optional settings to control the behavior of the CustomResource.
|
|
13
|
+
*/
|
|
14
|
+
static get(name: string, id: pulumi.Input<pulumi.ID>, state?: IdentityKubernetesAuthState, opts?: pulumi.CustomResourceOptions): IdentityKubernetesAuth;
|
|
15
|
+
/** @internal */
|
|
16
|
+
static readonly __pulumiType = "infisical:index/identityKubernetesAuth:IdentityKubernetesAuth";
|
|
17
|
+
/**
|
|
18
|
+
* Returns true if the given object is an instance of IdentityKubernetesAuth. This is designed to work even
|
|
19
|
+
* when multiple copies of the Pulumi SDK have been loaded into the same process.
|
|
20
|
+
*/
|
|
21
|
+
static isInstance(obj: any): obj is IdentityKubernetesAuth;
|
|
22
|
+
/**
|
|
23
|
+
* The maximum lifetime for an access token in seconds. This value will be referenced at renewal time. Default: 2592000
|
|
24
|
+
*/
|
|
25
|
+
readonly accessTokenMaxTtl: pulumi.Output<number>;
|
|
26
|
+
/**
|
|
27
|
+
* The maximum number of times that an access token can be used; a value of 0 implies infinite number of uses. Default:0
|
|
28
|
+
*/
|
|
29
|
+
readonly accessTokenNumUsesLimit: pulumi.Output<number>;
|
|
30
|
+
/**
|
|
31
|
+
* A list of IPs or CIDR ranges that access tokens can be used from. You can use 0.0.0.0/0, to allow usage from any network address..
|
|
32
|
+
*/
|
|
33
|
+
readonly accessTokenTrustedIps: pulumi.Output<outputs.IdentityKubernetesAuthAccessTokenTrustedIp[]>;
|
|
34
|
+
/**
|
|
35
|
+
* The lifetime for an access token in seconds. This value will be referenced at renewal time. Default: 2592000
|
|
36
|
+
*/
|
|
37
|
+
readonly accessTokenTtl: pulumi.Output<number>;
|
|
38
|
+
/**
|
|
39
|
+
* An optional audience claim that the service account JWT token must have to authenticate with Infisical.
|
|
40
|
+
*/
|
|
41
|
+
readonly allowedAudience: pulumi.Output<string>;
|
|
42
|
+
/**
|
|
43
|
+
* List of trusted namespaces that service accounts must belong to authenticate with Infisical.
|
|
44
|
+
*/
|
|
45
|
+
readonly allowedNamespaces: pulumi.Output<string[]>;
|
|
46
|
+
/**
|
|
47
|
+
* List of trusted service account names that are allowed to authenticate with Infisical.
|
|
48
|
+
*/
|
|
49
|
+
readonly allowedServiceAccountNames: pulumi.Output<string[]>;
|
|
50
|
+
/**
|
|
51
|
+
* The ID of the identity to attach the configuration onto.
|
|
52
|
+
*/
|
|
53
|
+
readonly identityId: pulumi.Output<string>;
|
|
54
|
+
/**
|
|
55
|
+
* The PEM-encoded CA cert for the Kubernetes API server. This is used by the TLS client for secure communication with the Kubernetes API server.
|
|
56
|
+
*/
|
|
57
|
+
readonly kubernetesCaCertificate: pulumi.Output<string>;
|
|
58
|
+
/**
|
|
59
|
+
* The host string, host:port pair, or URL to the base of the Kubernetes API server. This can usually be obtained by running `kubectl cluster-info`.
|
|
60
|
+
*/
|
|
61
|
+
readonly kubernetesHost: pulumi.Output<string>;
|
|
62
|
+
/**
|
|
63
|
+
* A long-lived service account JWT token for Infisical to access the [TokenReview API](https://kubernetes.io/docs/reference/kubernetes-api/authentication-resources/token-review-v1/) to validate other service account JWT tokens submitted by applications/pods. This is the JWT token obtained from step 1.5.
|
|
64
|
+
*/
|
|
65
|
+
readonly tokenReviewerJwt: pulumi.Output<string>;
|
|
66
|
+
/**
|
|
67
|
+
* Create a IdentityKubernetesAuth resource with the given unique name, arguments, and options.
|
|
68
|
+
*
|
|
69
|
+
* @param name The _unique_ name of the resource.
|
|
70
|
+
* @param args The arguments to use to populate this resource's properties.
|
|
71
|
+
* @param opts A bag of options that control this resource's behavior.
|
|
72
|
+
*/
|
|
73
|
+
constructor(name: string, args: IdentityKubernetesAuthArgs, opts?: pulumi.CustomResourceOptions);
|
|
74
|
+
}
|
|
75
|
+
/**
|
|
76
|
+
* Input properties used for looking up and filtering IdentityKubernetesAuth resources.
|
|
77
|
+
*/
|
|
78
|
+
export interface IdentityKubernetesAuthState {
|
|
79
|
+
/**
|
|
80
|
+
* The maximum lifetime for an access token in seconds. This value will be referenced at renewal time. Default: 2592000
|
|
81
|
+
*/
|
|
82
|
+
accessTokenMaxTtl?: pulumi.Input<number>;
|
|
83
|
+
/**
|
|
84
|
+
* The maximum number of times that an access token can be used; a value of 0 implies infinite number of uses. Default:0
|
|
85
|
+
*/
|
|
86
|
+
accessTokenNumUsesLimit?: pulumi.Input<number>;
|
|
87
|
+
/**
|
|
88
|
+
* A list of IPs or CIDR ranges that access tokens can be used from. You can use 0.0.0.0/0, to allow usage from any network address..
|
|
89
|
+
*/
|
|
90
|
+
accessTokenTrustedIps?: pulumi.Input<pulumi.Input<inputs.IdentityKubernetesAuthAccessTokenTrustedIp>[]>;
|
|
91
|
+
/**
|
|
92
|
+
* The lifetime for an access token in seconds. This value will be referenced at renewal time. Default: 2592000
|
|
93
|
+
*/
|
|
94
|
+
accessTokenTtl?: pulumi.Input<number>;
|
|
95
|
+
/**
|
|
96
|
+
* An optional audience claim that the service account JWT token must have to authenticate with Infisical.
|
|
97
|
+
*/
|
|
98
|
+
allowedAudience?: pulumi.Input<string>;
|
|
99
|
+
/**
|
|
100
|
+
* List of trusted namespaces that service accounts must belong to authenticate with Infisical.
|
|
101
|
+
*/
|
|
102
|
+
allowedNamespaces?: pulumi.Input<pulumi.Input<string>[]>;
|
|
103
|
+
/**
|
|
104
|
+
* List of trusted service account names that are allowed to authenticate with Infisical.
|
|
105
|
+
*/
|
|
106
|
+
allowedServiceAccountNames?: pulumi.Input<pulumi.Input<string>[]>;
|
|
107
|
+
/**
|
|
108
|
+
* The ID of the identity to attach the configuration onto.
|
|
109
|
+
*/
|
|
110
|
+
identityId?: pulumi.Input<string>;
|
|
111
|
+
/**
|
|
112
|
+
* The PEM-encoded CA cert for the Kubernetes API server. This is used by the TLS client for secure communication with the Kubernetes API server.
|
|
113
|
+
*/
|
|
114
|
+
kubernetesCaCertificate?: pulumi.Input<string>;
|
|
115
|
+
/**
|
|
116
|
+
* The host string, host:port pair, or URL to the base of the Kubernetes API server. This can usually be obtained by running `kubectl cluster-info`.
|
|
117
|
+
*/
|
|
118
|
+
kubernetesHost?: pulumi.Input<string>;
|
|
119
|
+
/**
|
|
120
|
+
* A long-lived service account JWT token for Infisical to access the [TokenReview API](https://kubernetes.io/docs/reference/kubernetes-api/authentication-resources/token-review-v1/) to validate other service account JWT tokens submitted by applications/pods. This is the JWT token obtained from step 1.5.
|
|
121
|
+
*/
|
|
122
|
+
tokenReviewerJwt?: pulumi.Input<string>;
|
|
123
|
+
}
|
|
124
|
+
/**
|
|
125
|
+
* The set of arguments for constructing a IdentityKubernetesAuth resource.
|
|
126
|
+
*/
|
|
127
|
+
export interface IdentityKubernetesAuthArgs {
|
|
128
|
+
/**
|
|
129
|
+
* The maximum lifetime for an access token in seconds. This value will be referenced at renewal time. Default: 2592000
|
|
130
|
+
*/
|
|
131
|
+
accessTokenMaxTtl?: pulumi.Input<number>;
|
|
132
|
+
/**
|
|
133
|
+
* The maximum number of times that an access token can be used; a value of 0 implies infinite number of uses. Default:0
|
|
134
|
+
*/
|
|
135
|
+
accessTokenNumUsesLimit?: pulumi.Input<number>;
|
|
136
|
+
/**
|
|
137
|
+
* A list of IPs or CIDR ranges that access tokens can be used from. You can use 0.0.0.0/0, to allow usage from any network address..
|
|
138
|
+
*/
|
|
139
|
+
accessTokenTrustedIps?: pulumi.Input<pulumi.Input<inputs.IdentityKubernetesAuthAccessTokenTrustedIp>[]>;
|
|
140
|
+
/**
|
|
141
|
+
* The lifetime for an access token in seconds. This value will be referenced at renewal time. Default: 2592000
|
|
142
|
+
*/
|
|
143
|
+
accessTokenTtl?: pulumi.Input<number>;
|
|
144
|
+
/**
|
|
145
|
+
* An optional audience claim that the service account JWT token must have to authenticate with Infisical.
|
|
146
|
+
*/
|
|
147
|
+
allowedAudience?: pulumi.Input<string>;
|
|
148
|
+
/**
|
|
149
|
+
* List of trusted namespaces that service accounts must belong to authenticate with Infisical.
|
|
150
|
+
*/
|
|
151
|
+
allowedNamespaces?: pulumi.Input<pulumi.Input<string>[]>;
|
|
152
|
+
/**
|
|
153
|
+
* List of trusted service account names that are allowed to authenticate with Infisical.
|
|
154
|
+
*/
|
|
155
|
+
allowedServiceAccountNames?: pulumi.Input<pulumi.Input<string>[]>;
|
|
156
|
+
/**
|
|
157
|
+
* The ID of the identity to attach the configuration onto.
|
|
158
|
+
*/
|
|
159
|
+
identityId: pulumi.Input<string>;
|
|
160
|
+
/**
|
|
161
|
+
* The PEM-encoded CA cert for the Kubernetes API server. This is used by the TLS client for secure communication with the Kubernetes API server.
|
|
162
|
+
*/
|
|
163
|
+
kubernetesCaCertificate?: pulumi.Input<string>;
|
|
164
|
+
/**
|
|
165
|
+
* The host string, host:port pair, or URL to the base of the Kubernetes API server. This can usually be obtained by running `kubectl cluster-info`.
|
|
166
|
+
*/
|
|
167
|
+
kubernetesHost: pulumi.Input<string>;
|
|
168
|
+
/**
|
|
169
|
+
* A long-lived service account JWT token for Infisical to access the [TokenReview API](https://kubernetes.io/docs/reference/kubernetes-api/authentication-resources/token-review-v1/) to validate other service account JWT tokens submitted by applications/pods. This is the JWT token obtained from step 1.5.
|
|
170
|
+
*/
|
|
171
|
+
tokenReviewerJwt: pulumi.Input<string>;
|
|
172
|
+
}
|
|
173
|
+
//# sourceMappingURL=identityKubernetesAuth.d.ts.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"identityKubernetesAuth.d.ts","sourceRoot":"","sources":["../src/identityKubernetesAuth.ts"],"names":[],"mappings":"AAGA,OAAO,KAAK,MAAM,MAAM,gBAAgB,CAAC;AACzC,OAAO,KAAK,MAAM,MAAM,eAAe,CAAC;AACxC,OAAO,KAAK,OAAO,MAAM,gBAAgB,CAAC;AAG1C,qBAAa,sBAAuB,SAAQ,MAAM,CAAC,cAAc;IAC7D;;;;;;;;OAQG;WACW,GAAG,CAAC,IAAI,EAAE,MAAM,EAAE,EAAE,EAAE,MAAM,CAAC,KAAK,CAAC,MAAM,CAAC,EAAE,CAAC,EAAE,KAAK,CAAC,EAAE,2BAA2B,EAAE,IAAI,CAAC,EAAE,MAAM,CAAC,qBAAqB,GAAG,sBAAsB;IAI9J,gBAAgB;IAChB,gBAAuB,YAAY,mEAAmE;IAEtG;;;OAGG;WACW,UAAU,CAAC,GAAG,EAAE,GAAG,GAAG,GAAG,IAAI,sBAAsB;IAOjE;;OAEG;IACH,SAAwB,iBAAiB,EAAE,MAAM,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC;IACjE;;OAEG;IACH,SAAwB,uBAAuB,EAAE,MAAM,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC;IACvE;;OAEG;IACH,SAAwB,qBAAqB,EAAE,MAAM,CAAC,MAAM,CAAC,OAAO,CAAC,0CAA0C,EAAE,CAAC,CAAC;IACnH;;OAEG;IACH,SAAwB,cAAc,EAAE,MAAM,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC;IAC9D;;OAEG;IACH,SAAwB,eAAe,EAAE,MAAM,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC;IAC/D;;OAEG;IACH,SAAwB,iBAAiB,EAAE,MAAM,CAAC,MAAM,CAAC,MAAM,EAAE,CAAC,CAAC;IACnE;;OAEG;IACH,SAAwB,0BAA0B,EAAE,MAAM,CAAC,MAAM,CAAC,MAAM,EAAE,CAAC,CAAC;IAC5E;;OAEG;IACH,SAAwB,UAAU,EAAE,MAAM,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC;IAC1D;;OAEG;IACH,SAAwB,uBAAuB,EAAE,MAAM,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC;IACvE;;OAEG;IACH,SAAwB,cAAc,EAAE,MAAM,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC;IAC9D;;OAEG;IACH,SAAwB,gBAAgB,EAAE,MAAM,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC;IAEhE;;;;;;OAMG;gBACS,IAAI,EAAE,MAAM,EAAE,IAAI,EAAE,0BAA0B,EAAE,IAAI,CAAC,EAAE,MAAM,CAAC,qBAAqB;CA2ClG;AAED;;GAEG;AACH,MAAM,WAAW,2BAA2B;IACxC;;OAEG;IACH,iBAAiB,CAAC,EAAE,MAAM,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC;IACzC;;OAEG;IACH,uBAAuB,CAAC,EAAE,MAAM,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC;IAC/C;;OAEG;IACH,qBAAqB,CAAC,EAAE,MAAM,CAAC,KAAK,CAAC,MAAM,CAAC,KAAK,CAAC,MAAM,CAAC,0CAA0C,CAAC,EAAE,CAAC,CAAC;IACxG;;OAEG;IACH,cAAc,CAAC,EAAE,MAAM,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC;IACtC;;OAEG;IACH,eAAe,CAAC,EAAE,MAAM,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC;IACvC;;OAEG;IACH,iBAAiB,CAAC,EAAE,MAAM,CAAC,KAAK,CAAC,MAAM,CAAC,KAAK,CAAC,MAAM,CAAC,EAAE,CAAC,CAAC;IACzD;;OAEG;IACH,0BAA0B,CAAC,EAAE,MAAM,CAAC,KAAK,CAAC,MAAM,CAAC,KAAK,CAAC,MAAM,CAAC,EAAE,CAAC,CAAC;IAClE;;OAEG;IACH,UAAU,CAAC,EAAE,MAAM,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC;IAClC;;OAEG;IACH,uBAAuB,CAAC,EAAE,MAAM,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC;IAC/C;;OAEG;IACH,cAAc,CAAC,EAAE,MAAM,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC;IACtC;;OAEG;IACH,gBAAgB,CAAC,EAAE,MAAM,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC;CAC3C;AAED;;GAEG;AACH,MAAM,WAAW,0BAA0B;IACvC;;OAEG;IACH,iBAAiB,CAAC,EAAE,MAAM,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC;IACzC;;OAEG;IACH,uBAAuB,CAAC,EAAE,MAAM,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC;IAC/C;;OAEG;IACH,qBAAqB,CAAC,EAAE,MAAM,CAAC,KAAK,CAAC,MAAM,CAAC,KAAK,CAAC,MAAM,CAAC,0CAA0C,CAAC,EAAE,CAAC,CAAC;IACxG;;OAEG;IACH,cAAc,CAAC,EAAE,MAAM,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC;IACtC;;OAEG;IACH,eAAe,CAAC,EAAE,MAAM,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC;IACvC;;OAEG;IACH,iBAAiB,CAAC,EAAE,MAAM,CAAC,KAAK,CAAC,MAAM,CAAC,KAAK,CAAC,MAAM,CAAC,EAAE,CAAC,CAAC;IACzD;;OAEG;IACH,0BAA0B,CAAC,EAAE,MAAM,CAAC,KAAK,CAAC,MAAM,CAAC,KAAK,CAAC,MAAM,CAAC,EAAE,CAAC,CAAC;IAClE;;OAEG;IACH,UAAU,EAAE,MAAM,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC;IACjC;;OAEG;IACH,uBAAuB,CAAC,EAAE,MAAM,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC;IAC/C;;OAEG;IACH,cAAc,EAAE,MAAM,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC;IACrC;;OAEG;IACH,gBAAgB,EAAE,MAAM,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC;CAC1C"}
|
|
@@ -0,0 +1,101 @@
|
|
|
1
|
+
"use strict";
|
|
2
|
+
// *** WARNING: this file was generated by pulumi-language-nodejs. ***
|
|
3
|
+
// *** Do not edit by hand unless you're certain you know what you are doing! ***
|
|
4
|
+
var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
|
|
5
|
+
if (k2 === undefined) k2 = k;
|
|
6
|
+
var desc = Object.getOwnPropertyDescriptor(m, k);
|
|
7
|
+
if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
|
|
8
|
+
desc = { enumerable: true, get: function() { return m[k]; } };
|
|
9
|
+
}
|
|
10
|
+
Object.defineProperty(o, k2, desc);
|
|
11
|
+
}) : (function(o, m, k, k2) {
|
|
12
|
+
if (k2 === undefined) k2 = k;
|
|
13
|
+
o[k2] = m[k];
|
|
14
|
+
}));
|
|
15
|
+
var __setModuleDefault = (this && this.__setModuleDefault) || (Object.create ? (function(o, v) {
|
|
16
|
+
Object.defineProperty(o, "default", { enumerable: true, value: v });
|
|
17
|
+
}) : function(o, v) {
|
|
18
|
+
o["default"] = v;
|
|
19
|
+
});
|
|
20
|
+
var __importStar = (this && this.__importStar) || function (mod) {
|
|
21
|
+
if (mod && mod.__esModule) return mod;
|
|
22
|
+
var result = {};
|
|
23
|
+
if (mod != null) for (var k in mod) if (k !== "default" && Object.prototype.hasOwnProperty.call(mod, k)) __createBinding(result, mod, k);
|
|
24
|
+
__setModuleDefault(result, mod);
|
|
25
|
+
return result;
|
|
26
|
+
};
|
|
27
|
+
Object.defineProperty(exports, "__esModule", { value: true });
|
|
28
|
+
exports.IdentityKubernetesAuth = void 0;
|
|
29
|
+
const pulumi = __importStar(require("@pulumi/pulumi"));
|
|
30
|
+
const utilities = __importStar(require("./utilities"));
|
|
31
|
+
class IdentityKubernetesAuth extends pulumi.CustomResource {
|
|
32
|
+
/**
|
|
33
|
+
* Get an existing IdentityKubernetesAuth resource's state with the given name, ID, and optional extra
|
|
34
|
+
* properties used to qualify the lookup.
|
|
35
|
+
*
|
|
36
|
+
* @param name The _unique_ name of the resulting resource.
|
|
37
|
+
* @param id The _unique_ provider ID of the resource to lookup.
|
|
38
|
+
* @param state Any extra arguments used during the lookup.
|
|
39
|
+
* @param opts Optional settings to control the behavior of the CustomResource.
|
|
40
|
+
*/
|
|
41
|
+
static get(name, id, state, opts) {
|
|
42
|
+
return new IdentityKubernetesAuth(name, state, { ...opts, id: id });
|
|
43
|
+
}
|
|
44
|
+
/**
|
|
45
|
+
* Returns true if the given object is an instance of IdentityKubernetesAuth. This is designed to work even
|
|
46
|
+
* when multiple copies of the Pulumi SDK have been loaded into the same process.
|
|
47
|
+
*/
|
|
48
|
+
static isInstance(obj) {
|
|
49
|
+
if (obj === undefined || obj === null) {
|
|
50
|
+
return false;
|
|
51
|
+
}
|
|
52
|
+
return obj['__pulumiType'] === IdentityKubernetesAuth.__pulumiType;
|
|
53
|
+
}
|
|
54
|
+
constructor(name, argsOrState, opts) {
|
|
55
|
+
let resourceInputs = {};
|
|
56
|
+
opts = opts || {};
|
|
57
|
+
if (opts.id) {
|
|
58
|
+
const state = argsOrState;
|
|
59
|
+
resourceInputs["accessTokenMaxTtl"] = state?.accessTokenMaxTtl;
|
|
60
|
+
resourceInputs["accessTokenNumUsesLimit"] = state?.accessTokenNumUsesLimit;
|
|
61
|
+
resourceInputs["accessTokenTrustedIps"] = state?.accessTokenTrustedIps;
|
|
62
|
+
resourceInputs["accessTokenTtl"] = state?.accessTokenTtl;
|
|
63
|
+
resourceInputs["allowedAudience"] = state?.allowedAudience;
|
|
64
|
+
resourceInputs["allowedNamespaces"] = state?.allowedNamespaces;
|
|
65
|
+
resourceInputs["allowedServiceAccountNames"] = state?.allowedServiceAccountNames;
|
|
66
|
+
resourceInputs["identityId"] = state?.identityId;
|
|
67
|
+
resourceInputs["kubernetesCaCertificate"] = state?.kubernetesCaCertificate;
|
|
68
|
+
resourceInputs["kubernetesHost"] = state?.kubernetesHost;
|
|
69
|
+
resourceInputs["tokenReviewerJwt"] = state?.tokenReviewerJwt;
|
|
70
|
+
}
|
|
71
|
+
else {
|
|
72
|
+
const args = argsOrState;
|
|
73
|
+
if (args?.identityId === undefined && !opts.urn) {
|
|
74
|
+
throw new Error("Missing required property 'identityId'");
|
|
75
|
+
}
|
|
76
|
+
if (args?.kubernetesHost === undefined && !opts.urn) {
|
|
77
|
+
throw new Error("Missing required property 'kubernetesHost'");
|
|
78
|
+
}
|
|
79
|
+
if (args?.tokenReviewerJwt === undefined && !opts.urn) {
|
|
80
|
+
throw new Error("Missing required property 'tokenReviewerJwt'");
|
|
81
|
+
}
|
|
82
|
+
resourceInputs["accessTokenMaxTtl"] = args?.accessTokenMaxTtl;
|
|
83
|
+
resourceInputs["accessTokenNumUsesLimit"] = args?.accessTokenNumUsesLimit;
|
|
84
|
+
resourceInputs["accessTokenTrustedIps"] = args?.accessTokenTrustedIps;
|
|
85
|
+
resourceInputs["accessTokenTtl"] = args?.accessTokenTtl;
|
|
86
|
+
resourceInputs["allowedAudience"] = args?.allowedAudience;
|
|
87
|
+
resourceInputs["allowedNamespaces"] = args?.allowedNamespaces;
|
|
88
|
+
resourceInputs["allowedServiceAccountNames"] = args?.allowedServiceAccountNames;
|
|
89
|
+
resourceInputs["identityId"] = args?.identityId;
|
|
90
|
+
resourceInputs["kubernetesCaCertificate"] = args?.kubernetesCaCertificate;
|
|
91
|
+
resourceInputs["kubernetesHost"] = args?.kubernetesHost;
|
|
92
|
+
resourceInputs["tokenReviewerJwt"] = args?.tokenReviewerJwt;
|
|
93
|
+
}
|
|
94
|
+
opts = pulumi.mergeOptions(utilities.resourceOptsDefaults(), opts);
|
|
95
|
+
super(IdentityKubernetesAuth.__pulumiType, name, resourceInputs, opts, false /*dependency*/, utilities.getPackage());
|
|
96
|
+
}
|
|
97
|
+
}
|
|
98
|
+
exports.IdentityKubernetesAuth = IdentityKubernetesAuth;
|
|
99
|
+
/** @internal */
|
|
100
|
+
IdentityKubernetesAuth.__pulumiType = 'infisical:index/identityKubernetesAuth:IdentityKubernetesAuth';
|
|
101
|
+
//# sourceMappingURL=identityKubernetesAuth.js.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"identityKubernetesAuth.js","sourceRoot":"","sources":["../src/identityKubernetesAuth.ts"],"names":[],"mappings":";AAAA,sEAAsE;AACtE,iFAAiF;;;;;;;;;;;;;;;;;;;;;;;;;;AAEjF,uDAAyC;AAGzC,uDAAyC;AAEzC,MAAa,sBAAuB,SAAQ,MAAM,CAAC,cAAc;IAC7D;;;;;;;;OAQG;IACI,MAAM,CAAC,GAAG,CAAC,IAAY,EAAE,EAA2B,EAAE,KAAmC,EAAE,IAAmC;QACjI,OAAO,IAAI,sBAAsB,CAAC,IAAI,EAAO,KAAK,EAAE,EAAE,GAAG,IAAI,EAAE,EAAE,EAAE,EAAE,EAAE,CAAC,CAAC;IAC7E,CAAC;IAKD;;;OAGG;IACI,MAAM,CAAC,UAAU,CAAC,GAAQ;QAC7B,IAAI,GAAG,KAAK,SAAS,IAAI,GAAG,KAAK,IAAI,EAAE;YACnC,OAAO,KAAK,CAAC;SAChB;QACD,OAAO,GAAG,CAAC,cAAc,CAAC,KAAK,sBAAsB,CAAC,YAAY,CAAC;IACvE,CAAC;IAuDD,YAAY,IAAY,EAAE,WAAsE,EAAE,IAAmC;QACjI,IAAI,cAAc,GAAkB,EAAE,CAAC;QACvC,IAAI,GAAG,IAAI,IAAI,EAAE,CAAC;QAClB,IAAI,IAAI,CAAC,EAAE,EAAE;YACT,MAAM,KAAK,GAAG,WAAsD,CAAC;YACrE,cAAc,CAAC,mBAAmB,CAAC,GAAG,KAAK,EAAE,iBAAiB,CAAC;YAC/D,cAAc,CAAC,yBAAyB,CAAC,GAAG,KAAK,EAAE,uBAAuB,CAAC;YAC3E,cAAc,CAAC,uBAAuB,CAAC,GAAG,KAAK,EAAE,qBAAqB,CAAC;YACvE,cAAc,CAAC,gBAAgB,CAAC,GAAG,KAAK,EAAE,cAAc,CAAC;YACzD,cAAc,CAAC,iBAAiB,CAAC,GAAG,KAAK,EAAE,eAAe,CAAC;YAC3D,cAAc,CAAC,mBAAmB,CAAC,GAAG,KAAK,EAAE,iBAAiB,CAAC;YAC/D,cAAc,CAAC,4BAA4B,CAAC,GAAG,KAAK,EAAE,0BAA0B,CAAC;YACjF,cAAc,CAAC,YAAY,CAAC,GAAG,KAAK,EAAE,UAAU,CAAC;YACjD,cAAc,CAAC,yBAAyB,CAAC,GAAG,KAAK,EAAE,uBAAuB,CAAC;YAC3E,cAAc,CAAC,gBAAgB,CAAC,GAAG,KAAK,EAAE,cAAc,CAAC;YACzD,cAAc,CAAC,kBAAkB,CAAC,GAAG,KAAK,EAAE,gBAAgB,CAAC;SAChE;aAAM;YACH,MAAM,IAAI,GAAG,WAAqD,CAAC;YACnE,IAAI,IAAI,EAAE,UAAU,KAAK,SAAS,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE;gBAC7C,MAAM,IAAI,KAAK,CAAC,wCAAwC,CAAC,CAAC;aAC7D;YACD,IAAI,IAAI,EAAE,cAAc,KAAK,SAAS,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE;gBACjD,MAAM,IAAI,KAAK,CAAC,4CAA4C,CAAC,CAAC;aACjE;YACD,IAAI,IAAI,EAAE,gBAAgB,KAAK,SAAS,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE;gBACnD,MAAM,IAAI,KAAK,CAAC,8CAA8C,CAAC,CAAC;aACnE;YACD,cAAc,CAAC,mBAAmB,CAAC,GAAG,IAAI,EAAE,iBAAiB,CAAC;YAC9D,cAAc,CAAC,yBAAyB,CAAC,GAAG,IAAI,EAAE,uBAAuB,CAAC;YAC1E,cAAc,CAAC,uBAAuB,CAAC,GAAG,IAAI,EAAE,qBAAqB,CAAC;YACtE,cAAc,CAAC,gBAAgB,CAAC,GAAG,IAAI,EAAE,cAAc,CAAC;YACxD,cAAc,CAAC,iBAAiB,CAAC,GAAG,IAAI,EAAE,eAAe,CAAC;YAC1D,cAAc,CAAC,mBAAmB,CAAC,GAAG,IAAI,EAAE,iBAAiB,CAAC;YAC9D,cAAc,CAAC,4BAA4B,CAAC,GAAG,IAAI,EAAE,0BAA0B,CAAC;YAChF,cAAc,CAAC,YAAY,CAAC,GAAG,IAAI,EAAE,UAAU,CAAC;YAChD,cAAc,CAAC,yBAAyB,CAAC,GAAG,IAAI,EAAE,uBAAuB,CAAC;YAC1E,cAAc,CAAC,gBAAgB,CAAC,GAAG,IAAI,EAAE,cAAc,CAAC;YACxD,cAAc,CAAC,kBAAkB,CAAC,GAAG,IAAI,EAAE,gBAAgB,CAAC;SAC/D;QACD,IAAI,GAAG,MAAM,CAAC,YAAY,CAAC,SAAS,CAAC,oBAAoB,EAAE,EAAE,IAAI,CAAC,CAAC;QACnE,KAAK,CAAC,sBAAsB,CAAC,YAAY,EAAE,IAAI,EAAE,cAAc,EAAE,IAAI,EAAE,KAAK,CAAC,cAAc,EAAE,SAAS,CAAC,UAAU,EAAE,CAAC,CAAC;IACzH,CAAC;;AA1HL,wDA2HC;AA7GG,gBAAgB;AACO,mCAAY,GAAG,+DAA+D,CAAC"}
|