@sapslaj/pulumi-infisical 0.15.36
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/README.md +8 -0
- package/dist/accessApprovalPolicy.d.ts +137 -0
- package/dist/accessApprovalPolicy.d.ts.map +1 -0
- package/dist/accessApprovalPolicy.js +98 -0
- package/dist/accessApprovalPolicy.js.map +1 -0
- package/dist/appConnection1password.d.ts +97 -0
- package/dist/appConnection1password.d.ts.map +1 -0
- package/dist/appConnection1password.js +86 -0
- package/dist/appConnection1password.js.map +1 -0
- package/dist/appConnectionAws.d.ts +97 -0
- package/dist/appConnectionAws.d.ts.map +1 -0
- package/dist/appConnectionAws.js +86 -0
- package/dist/appConnectionAws.js.map +1 -0
- package/dist/appConnectionAzureClientSecrets.d.ts +97 -0
- package/dist/appConnectionAzureClientSecrets.d.ts.map +1 -0
- package/dist/appConnectionAzureClientSecrets.js +86 -0
- package/dist/appConnectionAzureClientSecrets.js.map +1 -0
- package/dist/appConnectionBitbucket.d.ts +97 -0
- package/dist/appConnectionBitbucket.d.ts.map +1 -0
- package/dist/appConnectionBitbucket.js +86 -0
- package/dist/appConnectionBitbucket.js.map +1 -0
- package/dist/appConnectionCloudflare.d.ts +97 -0
- package/dist/appConnectionCloudflare.d.ts.map +1 -0
- package/dist/appConnectionCloudflare.js +86 -0
- package/dist/appConnectionCloudflare.js.map +1 -0
- package/dist/appConnectionDatabricks.d.ts +97 -0
- package/dist/appConnectionDatabricks.d.ts.map +1 -0
- package/dist/appConnectionDatabricks.js +86 -0
- package/dist/appConnectionDatabricks.js.map +1 -0
- package/dist/appConnectionFlyio.d.ts +97 -0
- package/dist/appConnectionFlyio.d.ts.map +1 -0
- package/dist/appConnectionFlyio.js +86 -0
- package/dist/appConnectionFlyio.js.map +1 -0
- package/dist/appConnectionGcp.d.ts +97 -0
- package/dist/appConnectionGcp.d.ts.map +1 -0
- package/dist/appConnectionGcp.js +86 -0
- package/dist/appConnectionGcp.js.map +1 -0
- package/dist/appConnectionGitlab.d.ts +97 -0
- package/dist/appConnectionGitlab.d.ts.map +1 -0
- package/dist/appConnectionGitlab.js +86 -0
- package/dist/appConnectionGitlab.js.map +1 -0
- package/dist/appConnectionLdap.d.ts +97 -0
- package/dist/appConnectionLdap.d.ts.map +1 -0
- package/dist/appConnectionLdap.js +86 -0
- package/dist/appConnectionLdap.js.map +1 -0
- package/dist/appConnectionMssql.d.ts +97 -0
- package/dist/appConnectionMssql.d.ts.map +1 -0
- package/dist/appConnectionMssql.js +86 -0
- package/dist/appConnectionMssql.js.map +1 -0
- package/dist/appConnectionMysql.d.ts +97 -0
- package/dist/appConnectionMysql.d.ts.map +1 -0
- package/dist/appConnectionMysql.js +86 -0
- package/dist/appConnectionMysql.js.map +1 -0
- package/dist/appConnectionOracledb.d.ts +97 -0
- package/dist/appConnectionOracledb.d.ts.map +1 -0
- package/dist/appConnectionOracledb.js +86 -0
- package/dist/appConnectionOracledb.js.map +1 -0
- package/dist/appConnectionPostgres.d.ts +97 -0
- package/dist/appConnectionPostgres.d.ts.map +1 -0
- package/dist/appConnectionPostgres.js +86 -0
- package/dist/appConnectionPostgres.js.map +1 -0
- package/dist/appConnectionRender.d.ts +97 -0
- package/dist/appConnectionRender.d.ts.map +1 -0
- package/dist/appConnectionRender.js +86 -0
- package/dist/appConnectionRender.js.map +1 -0
- package/dist/appConnectionSupabase.d.ts +97 -0
- package/dist/appConnectionSupabase.d.ts.map +1 -0
- package/dist/appConnectionSupabase.js +86 -0
- package/dist/appConnectionSupabase.js.map +1 -0
- package/dist/config/index.d.ts +2 -0
- package/dist/config/index.d.ts.map +1 -0
- package/dist/config/index.js +21 -0
- package/dist/config/index.js.map +1 -0
- package/dist/config/vars.d.ts +22 -0
- package/dist/config/vars.d.ts.map +1 -0
- package/dist/config/vars.js +60 -0
- package/dist/config/vars.js.map +1 -0
- package/dist/dynamicSecretAwsIam.d.ts +149 -0
- package/dist/dynamicSecretAwsIam.d.ts.map +1 -0
- package/dist/dynamicSecretAwsIam.js +103 -0
- package/dist/dynamicSecretAwsIam.js.map +1 -0
- package/dist/dynamicSecretKubernetes.d.ts +149 -0
- package/dist/dynamicSecretKubernetes.d.ts.map +1 -0
- package/dist/dynamicSecretKubernetes.js +103 -0
- package/dist/dynamicSecretKubernetes.js.map +1 -0
- package/dist/dynamicSecretMongoAtlas.d.ts +149 -0
- package/dist/dynamicSecretMongoAtlas.d.ts.map +1 -0
- package/dist/dynamicSecretMongoAtlas.js +103 -0
- package/dist/dynamicSecretMongoAtlas.js.map +1 -0
- package/dist/dynamicSecretMongoDb.d.ts +149 -0
- package/dist/dynamicSecretMongoDb.d.ts.map +1 -0
- package/dist/dynamicSecretMongoDb.js +103 -0
- package/dist/dynamicSecretMongoDb.js.map +1 -0
- package/dist/dynamicSecretSqlDatabase.d.ts +149 -0
- package/dist/dynamicSecretSqlDatabase.d.ts.map +1 -0
- package/dist/dynamicSecretSqlDatabase.js +103 -0
- package/dist/dynamicSecretSqlDatabase.js.map +1 -0
- package/dist/getGroups.d.ts +15 -0
- package/dist/getGroups.d.ts.map +1 -0
- package/dist/getGroups.js +41 -0
- package/dist/getGroups.js.map +1 -0
- package/dist/getIdentityDetails.d.ts +15 -0
- package/dist/getIdentityDetails.d.ts.map +1 -0
- package/dist/getIdentityDetails.js +41 -0
- package/dist/getIdentityDetails.js.map +1 -0
- package/dist/getProjects.d.ts +34 -0
- package/dist/getProjects.d.ts.map +1 -0
- package/dist/getProjects.js +45 -0
- package/dist/getProjects.js.map +1 -0
- package/dist/getSecretFolders.d.ts +34 -0
- package/dist/getSecretFolders.d.ts.map +1 -0
- package/dist/getSecretFolders.js +49 -0
- package/dist/getSecretFolders.js.map +1 -0
- package/dist/getSecretTag.d.ts +28 -0
- package/dist/getSecretTag.d.ts.map +1 -0
- package/dist/getSecretTag.js +47 -0
- package/dist/getSecretTag.js.map +1 -0
- package/dist/getSecrets.d.ts +36 -0
- package/dist/getSecrets.d.ts.map +1 -0
- package/dist/getSecrets.js +49 -0
- package/dist/getSecrets.js.map +1 -0
- package/dist/group.d.ts +75 -0
- package/dist/group.d.ts.map +1 -0
- package/dist/group.js +82 -0
- package/dist/group.js.map +1 -0
- package/dist/identity.d.ts +109 -0
- package/dist/identity.d.ts.map +1 -0
- package/dist/identity.js +88 -0
- package/dist/identity.js.map +1 -0
- package/dist/identityAwsAuth.d.ts +137 -0
- package/dist/identityAwsAuth.d.ts.map +1 -0
- package/dist/identityAwsAuth.js +89 -0
- package/dist/identityAwsAuth.js.map +1 -0
- package/dist/identityAzureAuth.d.ts +137 -0
- package/dist/identityAzureAuth.d.ts.map +1 -0
- package/dist/identityAzureAuth.js +92 -0
- package/dist/identityAzureAuth.js.map +1 -0
- package/dist/identityGcpAuth.d.ts +149 -0
- package/dist/identityGcpAuth.d.ts.map +1 -0
- package/dist/identityGcpAuth.js +91 -0
- package/dist/identityGcpAuth.js.map +1 -0
- package/dist/identityKubernetesAuth.d.ts +173 -0
- package/dist/identityKubernetesAuth.d.ts.map +1 -0
- package/dist/identityKubernetesAuth.js +101 -0
- package/dist/identityKubernetesAuth.js.map +1 -0
- package/dist/identityOidcAuth.d.ts +197 -0
- package/dist/identityOidcAuth.d.ts.map +1 -0
- package/dist/identityOidcAuth.js +103 -0
- package/dist/identityOidcAuth.js.map +1 -0
- package/dist/identityUniversalAuth.d.ts +113 -0
- package/dist/identityUniversalAuth.d.ts.map +1 -0
- package/dist/identityUniversalAuth.js +85 -0
- package/dist/identityUniversalAuth.js.map +1 -0
- package/dist/identityUniversalAuthClientSecret.d.ts +127 -0
- package/dist/identityUniversalAuthClientSecret.d.ts.map +1 -0
- package/dist/identityUniversalAuthClientSecret.js +93 -0
- package/dist/identityUniversalAuthClientSecret.js.map +1 -0
- package/dist/index.d.ts +239 -0
- package/dist/index.d.ts.map +1 -0
- package/dist/index.js +438 -0
- package/dist/index.js.map +1 -0
- package/dist/integrationAwsParameterStore.d.ts +165 -0
- package/dist/integrationAwsParameterStore.d.ts.map +1 -0
- package/dist/integrationAwsParameterStore.js +109 -0
- package/dist/integrationAwsParameterStore.js.map +1 -0
- package/dist/integrationAwsSecretsManager.d.ts +177 -0
- package/dist/integrationAwsSecretsManager.d.ts.map +1 -0
- package/dist/integrationAwsSecretsManager.js +108 -0
- package/dist/integrationAwsSecretsManager.js.map +1 -0
- package/dist/integrationCircleci.d.ts +127 -0
- package/dist/integrationCircleci.d.ts.map +1 -0
- package/dist/integrationCircleci.js +106 -0
- package/dist/integrationCircleci.js.map +1 -0
- package/dist/integrationDatabricks.d.ts +127 -0
- package/dist/integrationDatabricks.d.ts.map +1 -0
- package/dist/integrationDatabricks.js +106 -0
- package/dist/integrationDatabricks.js.map +1 -0
- package/dist/integrationGcpSecretManager.d.ts +129 -0
- package/dist/integrationGcpSecretManager.d.ts.map +1 -0
- package/dist/integrationGcpSecretManager.js +103 -0
- package/dist/integrationGcpSecretManager.js.map +1 -0
- package/dist/project.d.ts +137 -0
- package/dist/project.d.ts.map +1 -0
- package/dist/project.js +91 -0
- package/dist/project.js.map +1 -0
- package/dist/projectEnvironment.d.ts +87 -0
- package/dist/projectEnvironment.d.ts.map +1 -0
- package/dist/projectEnvironment.js +84 -0
- package/dist/projectEnvironment.js.map +1 -0
- package/dist/projectGroup.d.ts +97 -0
- package/dist/projectGroup.d.ts.map +1 -0
- package/dist/projectGroup.js +86 -0
- package/dist/projectGroup.js.map +1 -0
- package/dist/projectIdentity.d.ts +93 -0
- package/dist/projectIdentity.d.ts.map +1 -0
- package/dist/projectIdentity.js +89 -0
- package/dist/projectIdentity.js.map +1 -0
- package/dist/projectIdentitySpecificPrivilege.d.ts +161 -0
- package/dist/projectIdentitySpecificPrivilege.d.ts.map +1 -0
- package/dist/projectIdentitySpecificPrivilege.js +96 -0
- package/dist/projectIdentitySpecificPrivilege.js.map +1 -0
- package/dist/projectRole.d.ts +113 -0
- package/dist/projectRole.d.ts.map +1 -0
- package/dist/projectRole.js +88 -0
- package/dist/projectRole.js.map +1 -0
- package/dist/projectTemplate.d.ts +101 -0
- package/dist/projectTemplate.d.ts.map +1 -0
- package/dist/projectTemplate.js +83 -0
- package/dist/projectTemplate.js.map +1 -0
- package/dist/projectUser.d.ts +93 -0
- package/dist/projectUser.d.ts.map +1 -0
- package/dist/projectUser.js +89 -0
- package/dist/projectUser.js.map +1 -0
- package/dist/provider.d.ts +83 -0
- package/dist/provider.d.ts.map +1 -0
- package/dist/provider.js +83 -0
- package/dist/provider.js.map +1 -0
- package/dist/secret.d.ts +118 -0
- package/dist/secret.d.ts.map +1 -0
- package/dist/secret.js +97 -0
- package/dist/secret.js.map +1 -0
- package/dist/secretApprovalPolicy.d.ts +149 -0
- package/dist/secretApprovalPolicy.d.ts.map +1 -0
- package/dist/secretApprovalPolicy.js +100 -0
- package/dist/secretApprovalPolicy.js.map +1 -0
- package/dist/secretFolder.d.ts +103 -0
- package/dist/secretFolder.d.ts.map +1 -0
- package/dist/secretFolder.js +91 -0
- package/dist/secretFolder.js.map +1 -0
- package/dist/secretImport.d.ts +111 -0
- package/dist/secretImport.d.ts.map +1 -0
- package/dist/secretImport.js +100 -0
- package/dist/secretImport.js.map +1 -0
- package/dist/secretRotationAwsIamUserSecret.d.ts +185 -0
- package/dist/secretRotationAwsIamUserSecret.d.ts.map +1 -0
- package/dist/secretRotationAwsIamUserSecret.js +112 -0
- package/dist/secretRotationAwsIamUserSecret.js.map +1 -0
- package/dist/secretRotationAzureClientSecret.d.ts +185 -0
- package/dist/secretRotationAzureClientSecret.d.ts.map +1 -0
- package/dist/secretRotationAzureClientSecret.js +112 -0
- package/dist/secretRotationAzureClientSecret.js.map +1 -0
- package/dist/secretRotationLdapPassword.d.ts +185 -0
- package/dist/secretRotationLdapPassword.d.ts.map +1 -0
- package/dist/secretRotationLdapPassword.js +112 -0
- package/dist/secretRotationLdapPassword.js.map +1 -0
- package/dist/secretRotationMssqlCredentials.d.ts +185 -0
- package/dist/secretRotationMssqlCredentials.d.ts.map +1 -0
- package/dist/secretRotationMssqlCredentials.js +112 -0
- package/dist/secretRotationMssqlCredentials.js.map +1 -0
- package/dist/secretRotationMysqlCredentials.d.ts +185 -0
- package/dist/secretRotationMysqlCredentials.d.ts.map +1 -0
- package/dist/secretRotationMysqlCredentials.js +112 -0
- package/dist/secretRotationMysqlCredentials.js.map +1 -0
- package/dist/secretRotationOracledbCredentials.d.ts +185 -0
- package/dist/secretRotationOracledbCredentials.d.ts.map +1 -0
- package/dist/secretRotationOracledbCredentials.js +112 -0
- package/dist/secretRotationOracledbCredentials.js.map +1 -0
- package/dist/secretRotationPostgresCredentials.d.ts +185 -0
- package/dist/secretRotationPostgresCredentials.d.ts.map +1 -0
- package/dist/secretRotationPostgresCredentials.js +112 -0
- package/dist/secretRotationPostgresCredentials.js.map +1 -0
- package/dist/secretSync1password.d.ts +149 -0
- package/dist/secretSync1password.d.ts.map +1 -0
- package/dist/secretSync1password.js +106 -0
- package/dist/secretSync1password.js.map +1 -0
- package/dist/secretSyncAwsParameterStore.d.ts +149 -0
- package/dist/secretSyncAwsParameterStore.d.ts.map +1 -0
- package/dist/secretSyncAwsParameterStore.js +106 -0
- package/dist/secretSyncAwsParameterStore.js.map +1 -0
- package/dist/secretSyncAwsSecretsManager.d.ts +149 -0
- package/dist/secretSyncAwsSecretsManager.d.ts.map +1 -0
- package/dist/secretSyncAwsSecretsManager.js +106 -0
- package/dist/secretSyncAwsSecretsManager.js.map +1 -0
- package/dist/secretSyncAzureAppConfiguration.d.ts +149 -0
- package/dist/secretSyncAzureAppConfiguration.d.ts.map +1 -0
- package/dist/secretSyncAzureAppConfiguration.js +106 -0
- package/dist/secretSyncAzureAppConfiguration.js.map +1 -0
- package/dist/secretSyncAzureDevops.d.ts +149 -0
- package/dist/secretSyncAzureDevops.d.ts.map +1 -0
- package/dist/secretSyncAzureDevops.js +106 -0
- package/dist/secretSyncAzureDevops.js.map +1 -0
- package/dist/secretSyncAzureKeyVault.d.ts +149 -0
- package/dist/secretSyncAzureKeyVault.d.ts.map +1 -0
- package/dist/secretSyncAzureKeyVault.js +106 -0
- package/dist/secretSyncAzureKeyVault.js.map +1 -0
- package/dist/secretSyncBitbucket.d.ts +149 -0
- package/dist/secretSyncBitbucket.d.ts.map +1 -0
- package/dist/secretSyncBitbucket.js +106 -0
- package/dist/secretSyncBitbucket.js.map +1 -0
- package/dist/secretSyncCloudflarePages.d.ts +149 -0
- package/dist/secretSyncCloudflarePages.d.ts.map +1 -0
- package/dist/secretSyncCloudflarePages.js +106 -0
- package/dist/secretSyncCloudflarePages.js.map +1 -0
- package/dist/secretSyncCloudflareWorkers.d.ts +149 -0
- package/dist/secretSyncCloudflareWorkers.d.ts.map +1 -0
- package/dist/secretSyncCloudflareWorkers.js +106 -0
- package/dist/secretSyncCloudflareWorkers.js.map +1 -0
- package/dist/secretSyncDatabricks.d.ts +149 -0
- package/dist/secretSyncDatabricks.d.ts.map +1 -0
- package/dist/secretSyncDatabricks.js +106 -0
- package/dist/secretSyncDatabricks.js.map +1 -0
- package/dist/secretSyncFlyio.d.ts +149 -0
- package/dist/secretSyncFlyio.d.ts.map +1 -0
- package/dist/secretSyncFlyio.js +106 -0
- package/dist/secretSyncFlyio.js.map +1 -0
- package/dist/secretSyncGcpSecretManager.d.ts +149 -0
- package/dist/secretSyncGcpSecretManager.d.ts.map +1 -0
- package/dist/secretSyncGcpSecretManager.js +106 -0
- package/dist/secretSyncGcpSecretManager.js.map +1 -0
- package/dist/secretSyncGithub.d.ts +149 -0
- package/dist/secretSyncGithub.d.ts.map +1 -0
- package/dist/secretSyncGithub.js +106 -0
- package/dist/secretSyncGithub.js.map +1 -0
- package/dist/secretSyncGitlab.d.ts +149 -0
- package/dist/secretSyncGitlab.d.ts.map +1 -0
- package/dist/secretSyncGitlab.js +106 -0
- package/dist/secretSyncGitlab.js.map +1 -0
- package/dist/secretSyncRender.d.ts +149 -0
- package/dist/secretSyncRender.d.ts.map +1 -0
- package/dist/secretSyncRender.js +106 -0
- package/dist/secretSyncRender.js.map +1 -0
- package/dist/secretSyncSupabase.d.ts +149 -0
- package/dist/secretSyncSupabase.d.ts.map +1 -0
- package/dist/secretSyncSupabase.js +106 -0
- package/dist/secretSyncSupabase.js.map +1 -0
- package/dist/secretTag.d.ts +87 -0
- package/dist/secretTag.d.ts.map +1 -0
- package/dist/secretTag.js +87 -0
- package/dist/secretTag.js.map +1 -0
- package/dist/types/index.d.ts +4 -0
- package/dist/types/index.d.ts.map +1 -0
- package/dist/types/index.js +34 -0
- package/dist/types/index.js.map +1 -0
- package/dist/types/input.d.ts +1766 -0
- package/dist/types/input.d.ts.map +1 -0
- package/dist/types/input.js +5 -0
- package/dist/types/input.js.map +1 -0
- package/dist/types/output.d.ts +1839 -0
- package/dist/types/output.d.ts.map +1 -0
- package/dist/types/output.js +5 -0
- package/dist/types/output.js.map +1 -0
- package/dist/utilities.d.ts +15 -0
- package/dist/utilities.d.ts.map +1 -0
- package/dist/utilities.js +152 -0
- package/dist/utilities.js.map +1 -0
- package/package.json +27 -0
|
@@ -0,0 +1,197 @@
|
|
|
1
|
+
import * as pulumi from "@pulumi/pulumi";
|
|
2
|
+
import * as inputs from "./types/input";
|
|
3
|
+
import * as outputs from "./types/output";
|
|
4
|
+
export declare class IdentityOidcAuth extends pulumi.CustomResource {
|
|
5
|
+
/**
|
|
6
|
+
* Get an existing IdentityOidcAuth resource's state with the given name, ID, and optional extra
|
|
7
|
+
* properties used to qualify the lookup.
|
|
8
|
+
*
|
|
9
|
+
* @param name The _unique_ name of the resulting resource.
|
|
10
|
+
* @param id The _unique_ provider ID of the resource to lookup.
|
|
11
|
+
* @param state Any extra arguments used during the lookup.
|
|
12
|
+
* @param opts Optional settings to control the behavior of the CustomResource.
|
|
13
|
+
*/
|
|
14
|
+
static get(name: string, id: pulumi.Input<pulumi.ID>, state?: IdentityOidcAuthState, opts?: pulumi.CustomResourceOptions): IdentityOidcAuth;
|
|
15
|
+
/** @internal */
|
|
16
|
+
static readonly __pulumiType = "infisical:index/identityOidcAuth:IdentityOidcAuth";
|
|
17
|
+
/**
|
|
18
|
+
* Returns true if the given object is an instance of IdentityOidcAuth. This is designed to work even
|
|
19
|
+
* when multiple copies of the Pulumi SDK have been loaded into the same process.
|
|
20
|
+
*/
|
|
21
|
+
static isInstance(obj: any): obj is IdentityOidcAuth;
|
|
22
|
+
/**
|
|
23
|
+
* The maximum lifetime for an access token in seconds. This value will be referenced at renewal time. Default: 2592000
|
|
24
|
+
*/
|
|
25
|
+
readonly accessTokenMaxTtl: pulumi.Output<number>;
|
|
26
|
+
/**
|
|
27
|
+
* The maximum number of times that an access token can be used; a value of 0 implies infinite number of uses. Default:0
|
|
28
|
+
*/
|
|
29
|
+
readonly accessTokenNumUsesLimit: pulumi.Output<number>;
|
|
30
|
+
/**
|
|
31
|
+
* A list of IPs or CIDR ranges that access tokens can be used from. You can use 0.0.0.0/0, to allow usage from any network address...
|
|
32
|
+
*/
|
|
33
|
+
readonly accessTokenTrustedIps: pulumi.Output<outputs.IdentityOidcAuthAccessTokenTrustedIp[]>;
|
|
34
|
+
/**
|
|
35
|
+
* The lifetime for an access token in seconds. This value will be referenced at renewal time. Default: 2592000
|
|
36
|
+
*/
|
|
37
|
+
readonly accessTokenTtl: pulumi.Output<number>;
|
|
38
|
+
/**
|
|
39
|
+
* The comma-separated list of intended recipients.
|
|
40
|
+
*/
|
|
41
|
+
readonly boundAudiences: pulumi.Output<string[]>;
|
|
42
|
+
/**
|
|
43
|
+
* The attributes that should be present in the JWT for it to be valid. The provided values can be a glob pattern.
|
|
44
|
+
*/
|
|
45
|
+
readonly boundClaims: pulumi.Output<{
|
|
46
|
+
[key: string]: string;
|
|
47
|
+
}>;
|
|
48
|
+
/**
|
|
49
|
+
* The unique identifier of the identity provider issuing the OIDC tokens.
|
|
50
|
+
*/
|
|
51
|
+
readonly boundIssuer: pulumi.Output<string>;
|
|
52
|
+
/**
|
|
53
|
+
* The expected principal that is the subject of the JWT.
|
|
54
|
+
*/
|
|
55
|
+
readonly boundSubject: pulumi.Output<string>;
|
|
56
|
+
/**
|
|
57
|
+
* Map OIDC token claims to metadata fields. Example: {"role": "token.groups"}, this would become identity.metadata.oidc.claims.role
|
|
58
|
+
*/
|
|
59
|
+
readonly claimMetadataMapping: pulumi.Output<{
|
|
60
|
+
[key: string]: string;
|
|
61
|
+
}>;
|
|
62
|
+
/**
|
|
63
|
+
* The ID of the identity to attach the configuration onto.
|
|
64
|
+
*/
|
|
65
|
+
readonly identityId: pulumi.Output<string>;
|
|
66
|
+
/**
|
|
67
|
+
* The PEM-encoded CA cert for establishing secure communication with the Identity Provider endpoints
|
|
68
|
+
*/
|
|
69
|
+
readonly oidcCaCertificate: pulumi.Output<string>;
|
|
70
|
+
/**
|
|
71
|
+
* The URL used to retrieve the OpenID Connect configuration from the identity provider.
|
|
72
|
+
*/
|
|
73
|
+
readonly oidcDiscoveryUrl: pulumi.Output<string>;
|
|
74
|
+
/**
|
|
75
|
+
* Create a IdentityOidcAuth resource with the given unique name, arguments, and options.
|
|
76
|
+
*
|
|
77
|
+
* @param name The _unique_ name of the resource.
|
|
78
|
+
* @param args The arguments to use to populate this resource's properties.
|
|
79
|
+
* @param opts A bag of options that control this resource's behavior.
|
|
80
|
+
*/
|
|
81
|
+
constructor(name: string, args: IdentityOidcAuthArgs, opts?: pulumi.CustomResourceOptions);
|
|
82
|
+
}
|
|
83
|
+
/**
|
|
84
|
+
* Input properties used for looking up and filtering IdentityOidcAuth resources.
|
|
85
|
+
*/
|
|
86
|
+
export interface IdentityOidcAuthState {
|
|
87
|
+
/**
|
|
88
|
+
* The maximum lifetime for an access token in seconds. This value will be referenced at renewal time. Default: 2592000
|
|
89
|
+
*/
|
|
90
|
+
accessTokenMaxTtl?: pulumi.Input<number>;
|
|
91
|
+
/**
|
|
92
|
+
* The maximum number of times that an access token can be used; a value of 0 implies infinite number of uses. Default:0
|
|
93
|
+
*/
|
|
94
|
+
accessTokenNumUsesLimit?: pulumi.Input<number>;
|
|
95
|
+
/**
|
|
96
|
+
* A list of IPs or CIDR ranges that access tokens can be used from. You can use 0.0.0.0/0, to allow usage from any network address...
|
|
97
|
+
*/
|
|
98
|
+
accessTokenTrustedIps?: pulumi.Input<pulumi.Input<inputs.IdentityOidcAuthAccessTokenTrustedIp>[]>;
|
|
99
|
+
/**
|
|
100
|
+
* The lifetime for an access token in seconds. This value will be referenced at renewal time. Default: 2592000
|
|
101
|
+
*/
|
|
102
|
+
accessTokenTtl?: pulumi.Input<number>;
|
|
103
|
+
/**
|
|
104
|
+
* The comma-separated list of intended recipients.
|
|
105
|
+
*/
|
|
106
|
+
boundAudiences?: pulumi.Input<pulumi.Input<string>[]>;
|
|
107
|
+
/**
|
|
108
|
+
* The attributes that should be present in the JWT for it to be valid. The provided values can be a glob pattern.
|
|
109
|
+
*/
|
|
110
|
+
boundClaims?: pulumi.Input<{
|
|
111
|
+
[key: string]: pulumi.Input<string>;
|
|
112
|
+
}>;
|
|
113
|
+
/**
|
|
114
|
+
* The unique identifier of the identity provider issuing the OIDC tokens.
|
|
115
|
+
*/
|
|
116
|
+
boundIssuer?: pulumi.Input<string>;
|
|
117
|
+
/**
|
|
118
|
+
* The expected principal that is the subject of the JWT.
|
|
119
|
+
*/
|
|
120
|
+
boundSubject?: pulumi.Input<string>;
|
|
121
|
+
/**
|
|
122
|
+
* Map OIDC token claims to metadata fields. Example: {"role": "token.groups"}, this would become identity.metadata.oidc.claims.role
|
|
123
|
+
*/
|
|
124
|
+
claimMetadataMapping?: pulumi.Input<{
|
|
125
|
+
[key: string]: pulumi.Input<string>;
|
|
126
|
+
}>;
|
|
127
|
+
/**
|
|
128
|
+
* The ID of the identity to attach the configuration onto.
|
|
129
|
+
*/
|
|
130
|
+
identityId?: pulumi.Input<string>;
|
|
131
|
+
/**
|
|
132
|
+
* The PEM-encoded CA cert for establishing secure communication with the Identity Provider endpoints
|
|
133
|
+
*/
|
|
134
|
+
oidcCaCertificate?: pulumi.Input<string>;
|
|
135
|
+
/**
|
|
136
|
+
* The URL used to retrieve the OpenID Connect configuration from the identity provider.
|
|
137
|
+
*/
|
|
138
|
+
oidcDiscoveryUrl?: pulumi.Input<string>;
|
|
139
|
+
}
|
|
140
|
+
/**
|
|
141
|
+
* The set of arguments for constructing a IdentityOidcAuth resource.
|
|
142
|
+
*/
|
|
143
|
+
export interface IdentityOidcAuthArgs {
|
|
144
|
+
/**
|
|
145
|
+
* The maximum lifetime for an access token in seconds. This value will be referenced at renewal time. Default: 2592000
|
|
146
|
+
*/
|
|
147
|
+
accessTokenMaxTtl?: pulumi.Input<number>;
|
|
148
|
+
/**
|
|
149
|
+
* The maximum number of times that an access token can be used; a value of 0 implies infinite number of uses. Default:0
|
|
150
|
+
*/
|
|
151
|
+
accessTokenNumUsesLimit?: pulumi.Input<number>;
|
|
152
|
+
/**
|
|
153
|
+
* A list of IPs or CIDR ranges that access tokens can be used from. You can use 0.0.0.0/0, to allow usage from any network address...
|
|
154
|
+
*/
|
|
155
|
+
accessTokenTrustedIps?: pulumi.Input<pulumi.Input<inputs.IdentityOidcAuthAccessTokenTrustedIp>[]>;
|
|
156
|
+
/**
|
|
157
|
+
* The lifetime for an access token in seconds. This value will be referenced at renewal time. Default: 2592000
|
|
158
|
+
*/
|
|
159
|
+
accessTokenTtl?: pulumi.Input<number>;
|
|
160
|
+
/**
|
|
161
|
+
* The comma-separated list of intended recipients.
|
|
162
|
+
*/
|
|
163
|
+
boundAudiences?: pulumi.Input<pulumi.Input<string>[]>;
|
|
164
|
+
/**
|
|
165
|
+
* The attributes that should be present in the JWT for it to be valid. The provided values can be a glob pattern.
|
|
166
|
+
*/
|
|
167
|
+
boundClaims?: pulumi.Input<{
|
|
168
|
+
[key: string]: pulumi.Input<string>;
|
|
169
|
+
}>;
|
|
170
|
+
/**
|
|
171
|
+
* The unique identifier of the identity provider issuing the OIDC tokens.
|
|
172
|
+
*/
|
|
173
|
+
boundIssuer: pulumi.Input<string>;
|
|
174
|
+
/**
|
|
175
|
+
* The expected principal that is the subject of the JWT.
|
|
176
|
+
*/
|
|
177
|
+
boundSubject?: pulumi.Input<string>;
|
|
178
|
+
/**
|
|
179
|
+
* Map OIDC token claims to metadata fields. Example: {"role": "token.groups"}, this would become identity.metadata.oidc.claims.role
|
|
180
|
+
*/
|
|
181
|
+
claimMetadataMapping?: pulumi.Input<{
|
|
182
|
+
[key: string]: pulumi.Input<string>;
|
|
183
|
+
}>;
|
|
184
|
+
/**
|
|
185
|
+
* The ID of the identity to attach the configuration onto.
|
|
186
|
+
*/
|
|
187
|
+
identityId: pulumi.Input<string>;
|
|
188
|
+
/**
|
|
189
|
+
* The PEM-encoded CA cert for establishing secure communication with the Identity Provider endpoints
|
|
190
|
+
*/
|
|
191
|
+
oidcCaCertificate?: pulumi.Input<string>;
|
|
192
|
+
/**
|
|
193
|
+
* The URL used to retrieve the OpenID Connect configuration from the identity provider.
|
|
194
|
+
*/
|
|
195
|
+
oidcDiscoveryUrl: pulumi.Input<string>;
|
|
196
|
+
}
|
|
197
|
+
//# sourceMappingURL=identityOidcAuth.d.ts.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"identityOidcAuth.d.ts","sourceRoot":"","sources":["../src/identityOidcAuth.ts"],"names":[],"mappings":"AAGA,OAAO,KAAK,MAAM,MAAM,gBAAgB,CAAC;AACzC,OAAO,KAAK,MAAM,MAAM,eAAe,CAAC;AACxC,OAAO,KAAK,OAAO,MAAM,gBAAgB,CAAC;AAG1C,qBAAa,gBAAiB,SAAQ,MAAM,CAAC,cAAc;IACvD;;;;;;;;OAQG;WACW,GAAG,CAAC,IAAI,EAAE,MAAM,EAAE,EAAE,EAAE,MAAM,CAAC,KAAK,CAAC,MAAM,CAAC,EAAE,CAAC,EAAE,KAAK,CAAC,EAAE,qBAAqB,EAAE,IAAI,CAAC,EAAE,MAAM,CAAC,qBAAqB,GAAG,gBAAgB;IAIlJ,gBAAgB;IAChB,gBAAuB,YAAY,uDAAuD;IAE1F;;;OAGG;WACW,UAAU,CAAC,GAAG,EAAE,GAAG,GAAG,GAAG,IAAI,gBAAgB;IAO3D;;OAEG;IACH,SAAwB,iBAAiB,EAAE,MAAM,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC;IACjE;;OAEG;IACH,SAAwB,uBAAuB,EAAE,MAAM,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC;IACvE;;OAEG;IACH,SAAwB,qBAAqB,EAAE,MAAM,CAAC,MAAM,CAAC,OAAO,CAAC,oCAAoC,EAAE,CAAC,CAAC;IAC7G;;OAEG;IACH,SAAwB,cAAc,EAAE,MAAM,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC;IAC9D;;OAEG;IACH,SAAwB,cAAc,EAAE,MAAM,CAAC,MAAM,CAAC,MAAM,EAAE,CAAC,CAAC;IAChE;;OAEG;IACH,SAAwB,WAAW,EAAE,MAAM,CAAC,MAAM,CAAC;QAAC,CAAC,GAAG,EAAE,MAAM,GAAG,MAAM,CAAA;KAAC,CAAC,CAAC;IAC5E;;OAEG;IACH,SAAwB,WAAW,EAAE,MAAM,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC;IAC3D;;OAEG;IACH,SAAwB,YAAY,EAAE,MAAM,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC;IAC5D;;OAEG;IACH,SAAwB,oBAAoB,EAAE,MAAM,CAAC,MAAM,CAAC;QAAC,CAAC,GAAG,EAAE,MAAM,GAAG,MAAM,CAAA;KAAC,CAAC,CAAC;IACrF;;OAEG;IACH,SAAwB,UAAU,EAAE,MAAM,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC;IAC1D;;OAEG;IACH,SAAwB,iBAAiB,EAAE,MAAM,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC;IACjE;;OAEG;IACH,SAAwB,gBAAgB,EAAE,MAAM,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC;IAEhE;;;;;;OAMG;gBACS,IAAI,EAAE,MAAM,EAAE,IAAI,EAAE,oBAAoB,EAAE,IAAI,CAAC,EAAE,MAAM,CAAC,qBAAqB;CA6C5F;AAED;;GAEG;AACH,MAAM,WAAW,qBAAqB;IAClC;;OAEG;IACH,iBAAiB,CAAC,EAAE,MAAM,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC;IACzC;;OAEG;IACH,uBAAuB,CAAC,EAAE,MAAM,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC;IAC/C;;OAEG;IACH,qBAAqB,CAAC,EAAE,MAAM,CAAC,KAAK,CAAC,MAAM,CAAC,KAAK,CAAC,MAAM,CAAC,oCAAoC,CAAC,EAAE,CAAC,CAAC;IAClG;;OAEG;IACH,cAAc,CAAC,EAAE,MAAM,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC;IACtC;;OAEG;IACH,cAAc,CAAC,EAAE,MAAM,CAAC,KAAK,CAAC,MAAM,CAAC,KAAK,CAAC,MAAM,CAAC,EAAE,CAAC,CAAC;IACtD;;OAEG;IACH,WAAW,CAAC,EAAE,MAAM,CAAC,KAAK,CAAC;QAAC,CAAC,GAAG,EAAE,MAAM,GAAG,MAAM,CAAC,KAAK,CAAC,MAAM,CAAC,CAAA;KAAC,CAAC,CAAC;IAClE;;OAEG;IACH,WAAW,CAAC,EAAE,MAAM,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC;IACnC;;OAEG;IACH,YAAY,CAAC,EAAE,MAAM,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC;IACpC;;OAEG;IACH,oBAAoB,CAAC,EAAE,MAAM,CAAC,KAAK,CAAC;QAAC,CAAC,GAAG,EAAE,MAAM,GAAG,MAAM,CAAC,KAAK,CAAC,MAAM,CAAC,CAAA;KAAC,CAAC,CAAC;IAC3E;;OAEG;IACH,UAAU,CAAC,EAAE,MAAM,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC;IAClC;;OAEG;IACH,iBAAiB,CAAC,EAAE,MAAM,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC;IACzC;;OAEG;IACH,gBAAgB,CAAC,EAAE,MAAM,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC;CAC3C;AAED;;GAEG;AACH,MAAM,WAAW,oBAAoB;IACjC;;OAEG;IACH,iBAAiB,CAAC,EAAE,MAAM,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC;IACzC;;OAEG;IACH,uBAAuB,CAAC,EAAE,MAAM,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC;IAC/C;;OAEG;IACH,qBAAqB,CAAC,EAAE,MAAM,CAAC,KAAK,CAAC,MAAM,CAAC,KAAK,CAAC,MAAM,CAAC,oCAAoC,CAAC,EAAE,CAAC,CAAC;IAClG;;OAEG;IACH,cAAc,CAAC,EAAE,MAAM,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC;IACtC;;OAEG;IACH,cAAc,CAAC,EAAE,MAAM,CAAC,KAAK,CAAC,MAAM,CAAC,KAAK,CAAC,MAAM,CAAC,EAAE,CAAC,CAAC;IACtD;;OAEG;IACH,WAAW,CAAC,EAAE,MAAM,CAAC,KAAK,CAAC;QAAC,CAAC,GAAG,EAAE,MAAM,GAAG,MAAM,CAAC,KAAK,CAAC,MAAM,CAAC,CAAA;KAAC,CAAC,CAAC;IAClE;;OAEG;IACH,WAAW,EAAE,MAAM,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC;IAClC;;OAEG;IACH,YAAY,CAAC,EAAE,MAAM,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC;IACpC;;OAEG;IACH,oBAAoB,CAAC,EAAE,MAAM,CAAC,KAAK,CAAC;QAAC,CAAC,GAAG,EAAE,MAAM,GAAG,MAAM,CAAC,KAAK,CAAC,MAAM,CAAC,CAAA;KAAC,CAAC,CAAC;IAC3E;;OAEG;IACH,UAAU,EAAE,MAAM,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC;IACjC;;OAEG;IACH,iBAAiB,CAAC,EAAE,MAAM,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC;IACzC;;OAEG;IACH,gBAAgB,EAAE,MAAM,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC;CAC1C"}
|
|
@@ -0,0 +1,103 @@
|
|
|
1
|
+
"use strict";
|
|
2
|
+
// *** WARNING: this file was generated by pulumi-language-nodejs. ***
|
|
3
|
+
// *** Do not edit by hand unless you're certain you know what you are doing! ***
|
|
4
|
+
var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
|
|
5
|
+
if (k2 === undefined) k2 = k;
|
|
6
|
+
var desc = Object.getOwnPropertyDescriptor(m, k);
|
|
7
|
+
if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
|
|
8
|
+
desc = { enumerable: true, get: function() { return m[k]; } };
|
|
9
|
+
}
|
|
10
|
+
Object.defineProperty(o, k2, desc);
|
|
11
|
+
}) : (function(o, m, k, k2) {
|
|
12
|
+
if (k2 === undefined) k2 = k;
|
|
13
|
+
o[k2] = m[k];
|
|
14
|
+
}));
|
|
15
|
+
var __setModuleDefault = (this && this.__setModuleDefault) || (Object.create ? (function(o, v) {
|
|
16
|
+
Object.defineProperty(o, "default", { enumerable: true, value: v });
|
|
17
|
+
}) : function(o, v) {
|
|
18
|
+
o["default"] = v;
|
|
19
|
+
});
|
|
20
|
+
var __importStar = (this && this.__importStar) || function (mod) {
|
|
21
|
+
if (mod && mod.__esModule) return mod;
|
|
22
|
+
var result = {};
|
|
23
|
+
if (mod != null) for (var k in mod) if (k !== "default" && Object.prototype.hasOwnProperty.call(mod, k)) __createBinding(result, mod, k);
|
|
24
|
+
__setModuleDefault(result, mod);
|
|
25
|
+
return result;
|
|
26
|
+
};
|
|
27
|
+
Object.defineProperty(exports, "__esModule", { value: true });
|
|
28
|
+
exports.IdentityOidcAuth = void 0;
|
|
29
|
+
const pulumi = __importStar(require("@pulumi/pulumi"));
|
|
30
|
+
const utilities = __importStar(require("./utilities"));
|
|
31
|
+
class IdentityOidcAuth extends pulumi.CustomResource {
|
|
32
|
+
/**
|
|
33
|
+
* Get an existing IdentityOidcAuth resource's state with the given name, ID, and optional extra
|
|
34
|
+
* properties used to qualify the lookup.
|
|
35
|
+
*
|
|
36
|
+
* @param name The _unique_ name of the resulting resource.
|
|
37
|
+
* @param id The _unique_ provider ID of the resource to lookup.
|
|
38
|
+
* @param state Any extra arguments used during the lookup.
|
|
39
|
+
* @param opts Optional settings to control the behavior of the CustomResource.
|
|
40
|
+
*/
|
|
41
|
+
static get(name, id, state, opts) {
|
|
42
|
+
return new IdentityOidcAuth(name, state, { ...opts, id: id });
|
|
43
|
+
}
|
|
44
|
+
/**
|
|
45
|
+
* Returns true if the given object is an instance of IdentityOidcAuth. This is designed to work even
|
|
46
|
+
* when multiple copies of the Pulumi SDK have been loaded into the same process.
|
|
47
|
+
*/
|
|
48
|
+
static isInstance(obj) {
|
|
49
|
+
if (obj === undefined || obj === null) {
|
|
50
|
+
return false;
|
|
51
|
+
}
|
|
52
|
+
return obj['__pulumiType'] === IdentityOidcAuth.__pulumiType;
|
|
53
|
+
}
|
|
54
|
+
constructor(name, argsOrState, opts) {
|
|
55
|
+
let resourceInputs = {};
|
|
56
|
+
opts = opts || {};
|
|
57
|
+
if (opts.id) {
|
|
58
|
+
const state = argsOrState;
|
|
59
|
+
resourceInputs["accessTokenMaxTtl"] = state?.accessTokenMaxTtl;
|
|
60
|
+
resourceInputs["accessTokenNumUsesLimit"] = state?.accessTokenNumUsesLimit;
|
|
61
|
+
resourceInputs["accessTokenTrustedIps"] = state?.accessTokenTrustedIps;
|
|
62
|
+
resourceInputs["accessTokenTtl"] = state?.accessTokenTtl;
|
|
63
|
+
resourceInputs["boundAudiences"] = state?.boundAudiences;
|
|
64
|
+
resourceInputs["boundClaims"] = state?.boundClaims;
|
|
65
|
+
resourceInputs["boundIssuer"] = state?.boundIssuer;
|
|
66
|
+
resourceInputs["boundSubject"] = state?.boundSubject;
|
|
67
|
+
resourceInputs["claimMetadataMapping"] = state?.claimMetadataMapping;
|
|
68
|
+
resourceInputs["identityId"] = state?.identityId;
|
|
69
|
+
resourceInputs["oidcCaCertificate"] = state?.oidcCaCertificate;
|
|
70
|
+
resourceInputs["oidcDiscoveryUrl"] = state?.oidcDiscoveryUrl;
|
|
71
|
+
}
|
|
72
|
+
else {
|
|
73
|
+
const args = argsOrState;
|
|
74
|
+
if (args?.boundIssuer === undefined && !opts.urn) {
|
|
75
|
+
throw new Error("Missing required property 'boundIssuer'");
|
|
76
|
+
}
|
|
77
|
+
if (args?.identityId === undefined && !opts.urn) {
|
|
78
|
+
throw new Error("Missing required property 'identityId'");
|
|
79
|
+
}
|
|
80
|
+
if (args?.oidcDiscoveryUrl === undefined && !opts.urn) {
|
|
81
|
+
throw new Error("Missing required property 'oidcDiscoveryUrl'");
|
|
82
|
+
}
|
|
83
|
+
resourceInputs["accessTokenMaxTtl"] = args?.accessTokenMaxTtl;
|
|
84
|
+
resourceInputs["accessTokenNumUsesLimit"] = args?.accessTokenNumUsesLimit;
|
|
85
|
+
resourceInputs["accessTokenTrustedIps"] = args?.accessTokenTrustedIps;
|
|
86
|
+
resourceInputs["accessTokenTtl"] = args?.accessTokenTtl;
|
|
87
|
+
resourceInputs["boundAudiences"] = args?.boundAudiences;
|
|
88
|
+
resourceInputs["boundClaims"] = args?.boundClaims;
|
|
89
|
+
resourceInputs["boundIssuer"] = args?.boundIssuer;
|
|
90
|
+
resourceInputs["boundSubject"] = args?.boundSubject;
|
|
91
|
+
resourceInputs["claimMetadataMapping"] = args?.claimMetadataMapping;
|
|
92
|
+
resourceInputs["identityId"] = args?.identityId;
|
|
93
|
+
resourceInputs["oidcCaCertificate"] = args?.oidcCaCertificate;
|
|
94
|
+
resourceInputs["oidcDiscoveryUrl"] = args?.oidcDiscoveryUrl;
|
|
95
|
+
}
|
|
96
|
+
opts = pulumi.mergeOptions(utilities.resourceOptsDefaults(), opts);
|
|
97
|
+
super(IdentityOidcAuth.__pulumiType, name, resourceInputs, opts, false /*dependency*/, utilities.getPackage());
|
|
98
|
+
}
|
|
99
|
+
}
|
|
100
|
+
exports.IdentityOidcAuth = IdentityOidcAuth;
|
|
101
|
+
/** @internal */
|
|
102
|
+
IdentityOidcAuth.__pulumiType = 'infisical:index/identityOidcAuth:IdentityOidcAuth';
|
|
103
|
+
//# sourceMappingURL=identityOidcAuth.js.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"identityOidcAuth.js","sourceRoot":"","sources":["../src/identityOidcAuth.ts"],"names":[],"mappings":";AAAA,sEAAsE;AACtE,iFAAiF;;;;;;;;;;;;;;;;;;;;;;;;;;AAEjF,uDAAyC;AAGzC,uDAAyC;AAEzC,MAAa,gBAAiB,SAAQ,MAAM,CAAC,cAAc;IACvD;;;;;;;;OAQG;IACI,MAAM,CAAC,GAAG,CAAC,IAAY,EAAE,EAA2B,EAAE,KAA6B,EAAE,IAAmC;QAC3H,OAAO,IAAI,gBAAgB,CAAC,IAAI,EAAO,KAAK,EAAE,EAAE,GAAG,IAAI,EAAE,EAAE,EAAE,EAAE,EAAE,CAAC,CAAC;IACvE,CAAC;IAKD;;;OAGG;IACI,MAAM,CAAC,UAAU,CAAC,GAAQ;QAC7B,IAAI,GAAG,KAAK,SAAS,IAAI,GAAG,KAAK,IAAI,EAAE;YACnC,OAAO,KAAK,CAAC;SAChB;QACD,OAAO,GAAG,CAAC,cAAc,CAAC,KAAK,gBAAgB,CAAC,YAAY,CAAC;IACjE,CAAC;IA2DD,YAAY,IAAY,EAAE,WAA0D,EAAE,IAAmC;QACrH,IAAI,cAAc,GAAkB,EAAE,CAAC;QACvC,IAAI,GAAG,IAAI,IAAI,EAAE,CAAC;QAClB,IAAI,IAAI,CAAC,EAAE,EAAE;YACT,MAAM,KAAK,GAAG,WAAgD,CAAC;YAC/D,cAAc,CAAC,mBAAmB,CAAC,GAAG,KAAK,EAAE,iBAAiB,CAAC;YAC/D,cAAc,CAAC,yBAAyB,CAAC,GAAG,KAAK,EAAE,uBAAuB,CAAC;YAC3E,cAAc,CAAC,uBAAuB,CAAC,GAAG,KAAK,EAAE,qBAAqB,CAAC;YACvE,cAAc,CAAC,gBAAgB,CAAC,GAAG,KAAK,EAAE,cAAc,CAAC;YACzD,cAAc,CAAC,gBAAgB,CAAC,GAAG,KAAK,EAAE,cAAc,CAAC;YACzD,cAAc,CAAC,aAAa,CAAC,GAAG,KAAK,EAAE,WAAW,CAAC;YACnD,cAAc,CAAC,aAAa,CAAC,GAAG,KAAK,EAAE,WAAW,CAAC;YACnD,cAAc,CAAC,cAAc,CAAC,GAAG,KAAK,EAAE,YAAY,CAAC;YACrD,cAAc,CAAC,sBAAsB,CAAC,GAAG,KAAK,EAAE,oBAAoB,CAAC;YACrE,cAAc,CAAC,YAAY,CAAC,GAAG,KAAK,EAAE,UAAU,CAAC;YACjD,cAAc,CAAC,mBAAmB,CAAC,GAAG,KAAK,EAAE,iBAAiB,CAAC;YAC/D,cAAc,CAAC,kBAAkB,CAAC,GAAG,KAAK,EAAE,gBAAgB,CAAC;SAChE;aAAM;YACH,MAAM,IAAI,GAAG,WAA+C,CAAC;YAC7D,IAAI,IAAI,EAAE,WAAW,KAAK,SAAS,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE;gBAC9C,MAAM,IAAI,KAAK,CAAC,yCAAyC,CAAC,CAAC;aAC9D;YACD,IAAI,IAAI,EAAE,UAAU,KAAK,SAAS,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE;gBAC7C,MAAM,IAAI,KAAK,CAAC,wCAAwC,CAAC,CAAC;aAC7D;YACD,IAAI,IAAI,EAAE,gBAAgB,KAAK,SAAS,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE;gBACnD,MAAM,IAAI,KAAK,CAAC,8CAA8C,CAAC,CAAC;aACnE;YACD,cAAc,CAAC,mBAAmB,CAAC,GAAG,IAAI,EAAE,iBAAiB,CAAC;YAC9D,cAAc,CAAC,yBAAyB,CAAC,GAAG,IAAI,EAAE,uBAAuB,CAAC;YAC1E,cAAc,CAAC,uBAAuB,CAAC,GAAG,IAAI,EAAE,qBAAqB,CAAC;YACtE,cAAc,CAAC,gBAAgB,CAAC,GAAG,IAAI,EAAE,cAAc,CAAC;YACxD,cAAc,CAAC,gBAAgB,CAAC,GAAG,IAAI,EAAE,cAAc,CAAC;YACxD,cAAc,CAAC,aAAa,CAAC,GAAG,IAAI,EAAE,WAAW,CAAC;YAClD,cAAc,CAAC,aAAa,CAAC,GAAG,IAAI,EAAE,WAAW,CAAC;YAClD,cAAc,CAAC,cAAc,CAAC,GAAG,IAAI,EAAE,YAAY,CAAC;YACpD,cAAc,CAAC,sBAAsB,CAAC,GAAG,IAAI,EAAE,oBAAoB,CAAC;YACpE,cAAc,CAAC,YAAY,CAAC,GAAG,IAAI,EAAE,UAAU,CAAC;YAChD,cAAc,CAAC,mBAAmB,CAAC,GAAG,IAAI,EAAE,iBAAiB,CAAC;YAC9D,cAAc,CAAC,kBAAkB,CAAC,GAAG,IAAI,EAAE,gBAAgB,CAAC;SAC/D;QACD,IAAI,GAAG,MAAM,CAAC,YAAY,CAAC,SAAS,CAAC,oBAAoB,EAAE,EAAE,IAAI,CAAC,CAAC;QACnE,KAAK,CAAC,gBAAgB,CAAC,YAAY,EAAE,IAAI,EAAE,cAAc,EAAE,IAAI,EAAE,KAAK,CAAC,cAAc,EAAE,SAAS,CAAC,UAAU,EAAE,CAAC,CAAC;IACnH,CAAC;;AAhIL,4CAiIC;AAnHG,gBAAgB;AACO,6BAAY,GAAG,mDAAmD,CAAC"}
|
|
@@ -0,0 +1,113 @@
|
|
|
1
|
+
import * as pulumi from "@pulumi/pulumi";
|
|
2
|
+
import * as inputs from "./types/input";
|
|
3
|
+
import * as outputs from "./types/output";
|
|
4
|
+
export declare class IdentityUniversalAuth extends pulumi.CustomResource {
|
|
5
|
+
/**
|
|
6
|
+
* Get an existing IdentityUniversalAuth resource's state with the given name, ID, and optional extra
|
|
7
|
+
* properties used to qualify the lookup.
|
|
8
|
+
*
|
|
9
|
+
* @param name The _unique_ name of the resulting resource.
|
|
10
|
+
* @param id The _unique_ provider ID of the resource to lookup.
|
|
11
|
+
* @param state Any extra arguments used during the lookup.
|
|
12
|
+
* @param opts Optional settings to control the behavior of the CustomResource.
|
|
13
|
+
*/
|
|
14
|
+
static get(name: string, id: pulumi.Input<pulumi.ID>, state?: IdentityUniversalAuthState, opts?: pulumi.CustomResourceOptions): IdentityUniversalAuth;
|
|
15
|
+
/** @internal */
|
|
16
|
+
static readonly __pulumiType = "infisical:index/identityUniversalAuth:IdentityUniversalAuth";
|
|
17
|
+
/**
|
|
18
|
+
* Returns true if the given object is an instance of IdentityUniversalAuth. This is designed to work even
|
|
19
|
+
* when multiple copies of the Pulumi SDK have been loaded into the same process.
|
|
20
|
+
*/
|
|
21
|
+
static isInstance(obj: any): obj is IdentityUniversalAuth;
|
|
22
|
+
/**
|
|
23
|
+
* The maximum lifetime for an access token in seconds. This value will be referenced at renewal time. Default: 2592000
|
|
24
|
+
*/
|
|
25
|
+
readonly accessTokenMaxTtl: pulumi.Output<number>;
|
|
26
|
+
/**
|
|
27
|
+
* The maximum number of times that an access token can be used; a value of 0 implies infinite number of uses. Default:0
|
|
28
|
+
*/
|
|
29
|
+
readonly accessTokenNumUsesLimit: pulumi.Output<number>;
|
|
30
|
+
/**
|
|
31
|
+
* A list of IPs or CIDR ranges that access tokens can be used from. You can use 0.0.0.0/0, to allow usage from any network address..
|
|
32
|
+
*/
|
|
33
|
+
readonly accessTokenTrustedIps: pulumi.Output<outputs.IdentityUniversalAuthAccessTokenTrustedIp[]>;
|
|
34
|
+
/**
|
|
35
|
+
* The lifetime for an access token in seconds. This value will be referenced at renewal time. Default: 2592000
|
|
36
|
+
*/
|
|
37
|
+
readonly accessTokenTtl: pulumi.Output<number>;
|
|
38
|
+
/**
|
|
39
|
+
* A list of IPs or CIDR ranges that the Client Secret can be used from together with the Client ID to get back an access token. You can use 0.0.0.0/0, to allow usage from any network address.
|
|
40
|
+
*/
|
|
41
|
+
readonly clientSecretTrustedIps: pulumi.Output<outputs.IdentityUniversalAuthClientSecretTrustedIp[]>;
|
|
42
|
+
/**
|
|
43
|
+
* The ID of the identity to attach the configuration onto.
|
|
44
|
+
*/
|
|
45
|
+
readonly identityId: pulumi.Output<string>;
|
|
46
|
+
/**
|
|
47
|
+
* Create a IdentityUniversalAuth resource with the given unique name, arguments, and options.
|
|
48
|
+
*
|
|
49
|
+
* @param name The _unique_ name of the resource.
|
|
50
|
+
* @param args The arguments to use to populate this resource's properties.
|
|
51
|
+
* @param opts A bag of options that control this resource's behavior.
|
|
52
|
+
*/
|
|
53
|
+
constructor(name: string, args: IdentityUniversalAuthArgs, opts?: pulumi.CustomResourceOptions);
|
|
54
|
+
}
|
|
55
|
+
/**
|
|
56
|
+
* Input properties used for looking up and filtering IdentityUniversalAuth resources.
|
|
57
|
+
*/
|
|
58
|
+
export interface IdentityUniversalAuthState {
|
|
59
|
+
/**
|
|
60
|
+
* The maximum lifetime for an access token in seconds. This value will be referenced at renewal time. Default: 2592000
|
|
61
|
+
*/
|
|
62
|
+
accessTokenMaxTtl?: pulumi.Input<number>;
|
|
63
|
+
/**
|
|
64
|
+
* The maximum number of times that an access token can be used; a value of 0 implies infinite number of uses. Default:0
|
|
65
|
+
*/
|
|
66
|
+
accessTokenNumUsesLimit?: pulumi.Input<number>;
|
|
67
|
+
/**
|
|
68
|
+
* A list of IPs or CIDR ranges that access tokens can be used from. You can use 0.0.0.0/0, to allow usage from any network address..
|
|
69
|
+
*/
|
|
70
|
+
accessTokenTrustedIps?: pulumi.Input<pulumi.Input<inputs.IdentityUniversalAuthAccessTokenTrustedIp>[]>;
|
|
71
|
+
/**
|
|
72
|
+
* The lifetime for an access token in seconds. This value will be referenced at renewal time. Default: 2592000
|
|
73
|
+
*/
|
|
74
|
+
accessTokenTtl?: pulumi.Input<number>;
|
|
75
|
+
/**
|
|
76
|
+
* A list of IPs or CIDR ranges that the Client Secret can be used from together with the Client ID to get back an access token. You can use 0.0.0.0/0, to allow usage from any network address.
|
|
77
|
+
*/
|
|
78
|
+
clientSecretTrustedIps?: pulumi.Input<pulumi.Input<inputs.IdentityUniversalAuthClientSecretTrustedIp>[]>;
|
|
79
|
+
/**
|
|
80
|
+
* The ID of the identity to attach the configuration onto.
|
|
81
|
+
*/
|
|
82
|
+
identityId?: pulumi.Input<string>;
|
|
83
|
+
}
|
|
84
|
+
/**
|
|
85
|
+
* The set of arguments for constructing a IdentityUniversalAuth resource.
|
|
86
|
+
*/
|
|
87
|
+
export interface IdentityUniversalAuthArgs {
|
|
88
|
+
/**
|
|
89
|
+
* The maximum lifetime for an access token in seconds. This value will be referenced at renewal time. Default: 2592000
|
|
90
|
+
*/
|
|
91
|
+
accessTokenMaxTtl?: pulumi.Input<number>;
|
|
92
|
+
/**
|
|
93
|
+
* The maximum number of times that an access token can be used; a value of 0 implies infinite number of uses. Default:0
|
|
94
|
+
*/
|
|
95
|
+
accessTokenNumUsesLimit?: pulumi.Input<number>;
|
|
96
|
+
/**
|
|
97
|
+
* A list of IPs or CIDR ranges that access tokens can be used from. You can use 0.0.0.0/0, to allow usage from any network address..
|
|
98
|
+
*/
|
|
99
|
+
accessTokenTrustedIps?: pulumi.Input<pulumi.Input<inputs.IdentityUniversalAuthAccessTokenTrustedIp>[]>;
|
|
100
|
+
/**
|
|
101
|
+
* The lifetime for an access token in seconds. This value will be referenced at renewal time. Default: 2592000
|
|
102
|
+
*/
|
|
103
|
+
accessTokenTtl?: pulumi.Input<number>;
|
|
104
|
+
/**
|
|
105
|
+
* A list of IPs or CIDR ranges that the Client Secret can be used from together with the Client ID to get back an access token. You can use 0.0.0.0/0, to allow usage from any network address.
|
|
106
|
+
*/
|
|
107
|
+
clientSecretTrustedIps?: pulumi.Input<pulumi.Input<inputs.IdentityUniversalAuthClientSecretTrustedIp>[]>;
|
|
108
|
+
/**
|
|
109
|
+
* The ID of the identity to attach the configuration onto.
|
|
110
|
+
*/
|
|
111
|
+
identityId: pulumi.Input<string>;
|
|
112
|
+
}
|
|
113
|
+
//# sourceMappingURL=identityUniversalAuth.d.ts.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"identityUniversalAuth.d.ts","sourceRoot":"","sources":["../src/identityUniversalAuth.ts"],"names":[],"mappings":"AAGA,OAAO,KAAK,MAAM,MAAM,gBAAgB,CAAC;AACzC,OAAO,KAAK,MAAM,MAAM,eAAe,CAAC;AACxC,OAAO,KAAK,OAAO,MAAM,gBAAgB,CAAC;AAG1C,qBAAa,qBAAsB,SAAQ,MAAM,CAAC,cAAc;IAC5D;;;;;;;;OAQG;WACW,GAAG,CAAC,IAAI,EAAE,MAAM,EAAE,EAAE,EAAE,MAAM,CAAC,KAAK,CAAC,MAAM,CAAC,EAAE,CAAC,EAAE,KAAK,CAAC,EAAE,0BAA0B,EAAE,IAAI,CAAC,EAAE,MAAM,CAAC,qBAAqB,GAAG,qBAAqB;IAI5J,gBAAgB;IAChB,gBAAuB,YAAY,iEAAiE;IAEpG;;;OAGG;WACW,UAAU,CAAC,GAAG,EAAE,GAAG,GAAG,GAAG,IAAI,qBAAqB;IAOhE;;OAEG;IACH,SAAwB,iBAAiB,EAAE,MAAM,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC;IACjE;;OAEG;IACH,SAAwB,uBAAuB,EAAE,MAAM,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC;IACvE;;OAEG;IACH,SAAwB,qBAAqB,EAAE,MAAM,CAAC,MAAM,CAAC,OAAO,CAAC,yCAAyC,EAAE,CAAC,CAAC;IAClH;;OAEG;IACH,SAAwB,cAAc,EAAE,MAAM,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC;IAC9D;;OAEG;IACH,SAAwB,sBAAsB,EAAE,MAAM,CAAC,MAAM,CAAC,OAAO,CAAC,0CAA0C,EAAE,CAAC,CAAC;IACpH;;OAEG;IACH,SAAwB,UAAU,EAAE,MAAM,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC;IAE1D;;;;;;OAMG;gBACS,IAAI,EAAE,MAAM,EAAE,IAAI,EAAE,yBAAyB,EAAE,IAAI,CAAC,EAAE,MAAM,CAAC,qBAAqB;CA2BjG;AAED;;GAEG;AACH,MAAM,WAAW,0BAA0B;IACvC;;OAEG;IACH,iBAAiB,CAAC,EAAE,MAAM,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC;IACzC;;OAEG;IACH,uBAAuB,CAAC,EAAE,MAAM,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC;IAC/C;;OAEG;IACH,qBAAqB,CAAC,EAAE,MAAM,CAAC,KAAK,CAAC,MAAM,CAAC,KAAK,CAAC,MAAM,CAAC,yCAAyC,CAAC,EAAE,CAAC,CAAC;IACvG;;OAEG;IACH,cAAc,CAAC,EAAE,MAAM,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC;IACtC;;OAEG;IACH,sBAAsB,CAAC,EAAE,MAAM,CAAC,KAAK,CAAC,MAAM,CAAC,KAAK,CAAC,MAAM,CAAC,0CAA0C,CAAC,EAAE,CAAC,CAAC;IACzG;;OAEG;IACH,UAAU,CAAC,EAAE,MAAM,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC;CACrC;AAED;;GAEG;AACH,MAAM,WAAW,yBAAyB;IACtC;;OAEG;IACH,iBAAiB,CAAC,EAAE,MAAM,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC;IACzC;;OAEG;IACH,uBAAuB,CAAC,EAAE,MAAM,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC;IAC/C;;OAEG;IACH,qBAAqB,CAAC,EAAE,MAAM,CAAC,KAAK,CAAC,MAAM,CAAC,KAAK,CAAC,MAAM,CAAC,yCAAyC,CAAC,EAAE,CAAC,CAAC;IACvG;;OAEG;IACH,cAAc,CAAC,EAAE,MAAM,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC;IACtC;;OAEG;IACH,sBAAsB,CAAC,EAAE,MAAM,CAAC,KAAK,CAAC,MAAM,CAAC,KAAK,CAAC,MAAM,CAAC,0CAA0C,CAAC,EAAE,CAAC,CAAC;IACzG;;OAEG;IACH,UAAU,EAAE,MAAM,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC;CACpC"}
|
|
@@ -0,0 +1,85 @@
|
|
|
1
|
+
"use strict";
|
|
2
|
+
// *** WARNING: this file was generated by pulumi-language-nodejs. ***
|
|
3
|
+
// *** Do not edit by hand unless you're certain you know what you are doing! ***
|
|
4
|
+
var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
|
|
5
|
+
if (k2 === undefined) k2 = k;
|
|
6
|
+
var desc = Object.getOwnPropertyDescriptor(m, k);
|
|
7
|
+
if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
|
|
8
|
+
desc = { enumerable: true, get: function() { return m[k]; } };
|
|
9
|
+
}
|
|
10
|
+
Object.defineProperty(o, k2, desc);
|
|
11
|
+
}) : (function(o, m, k, k2) {
|
|
12
|
+
if (k2 === undefined) k2 = k;
|
|
13
|
+
o[k2] = m[k];
|
|
14
|
+
}));
|
|
15
|
+
var __setModuleDefault = (this && this.__setModuleDefault) || (Object.create ? (function(o, v) {
|
|
16
|
+
Object.defineProperty(o, "default", { enumerable: true, value: v });
|
|
17
|
+
}) : function(o, v) {
|
|
18
|
+
o["default"] = v;
|
|
19
|
+
});
|
|
20
|
+
var __importStar = (this && this.__importStar) || function (mod) {
|
|
21
|
+
if (mod && mod.__esModule) return mod;
|
|
22
|
+
var result = {};
|
|
23
|
+
if (mod != null) for (var k in mod) if (k !== "default" && Object.prototype.hasOwnProperty.call(mod, k)) __createBinding(result, mod, k);
|
|
24
|
+
__setModuleDefault(result, mod);
|
|
25
|
+
return result;
|
|
26
|
+
};
|
|
27
|
+
Object.defineProperty(exports, "__esModule", { value: true });
|
|
28
|
+
exports.IdentityUniversalAuth = void 0;
|
|
29
|
+
const pulumi = __importStar(require("@pulumi/pulumi"));
|
|
30
|
+
const utilities = __importStar(require("./utilities"));
|
|
31
|
+
class IdentityUniversalAuth extends pulumi.CustomResource {
|
|
32
|
+
/**
|
|
33
|
+
* Get an existing IdentityUniversalAuth resource's state with the given name, ID, and optional extra
|
|
34
|
+
* properties used to qualify the lookup.
|
|
35
|
+
*
|
|
36
|
+
* @param name The _unique_ name of the resulting resource.
|
|
37
|
+
* @param id The _unique_ provider ID of the resource to lookup.
|
|
38
|
+
* @param state Any extra arguments used during the lookup.
|
|
39
|
+
* @param opts Optional settings to control the behavior of the CustomResource.
|
|
40
|
+
*/
|
|
41
|
+
static get(name, id, state, opts) {
|
|
42
|
+
return new IdentityUniversalAuth(name, state, { ...opts, id: id });
|
|
43
|
+
}
|
|
44
|
+
/**
|
|
45
|
+
* Returns true if the given object is an instance of IdentityUniversalAuth. This is designed to work even
|
|
46
|
+
* when multiple copies of the Pulumi SDK have been loaded into the same process.
|
|
47
|
+
*/
|
|
48
|
+
static isInstance(obj) {
|
|
49
|
+
if (obj === undefined || obj === null) {
|
|
50
|
+
return false;
|
|
51
|
+
}
|
|
52
|
+
return obj['__pulumiType'] === IdentityUniversalAuth.__pulumiType;
|
|
53
|
+
}
|
|
54
|
+
constructor(name, argsOrState, opts) {
|
|
55
|
+
let resourceInputs = {};
|
|
56
|
+
opts = opts || {};
|
|
57
|
+
if (opts.id) {
|
|
58
|
+
const state = argsOrState;
|
|
59
|
+
resourceInputs["accessTokenMaxTtl"] = state?.accessTokenMaxTtl;
|
|
60
|
+
resourceInputs["accessTokenNumUsesLimit"] = state?.accessTokenNumUsesLimit;
|
|
61
|
+
resourceInputs["accessTokenTrustedIps"] = state?.accessTokenTrustedIps;
|
|
62
|
+
resourceInputs["accessTokenTtl"] = state?.accessTokenTtl;
|
|
63
|
+
resourceInputs["clientSecretTrustedIps"] = state?.clientSecretTrustedIps;
|
|
64
|
+
resourceInputs["identityId"] = state?.identityId;
|
|
65
|
+
}
|
|
66
|
+
else {
|
|
67
|
+
const args = argsOrState;
|
|
68
|
+
if (args?.identityId === undefined && !opts.urn) {
|
|
69
|
+
throw new Error("Missing required property 'identityId'");
|
|
70
|
+
}
|
|
71
|
+
resourceInputs["accessTokenMaxTtl"] = args?.accessTokenMaxTtl;
|
|
72
|
+
resourceInputs["accessTokenNumUsesLimit"] = args?.accessTokenNumUsesLimit;
|
|
73
|
+
resourceInputs["accessTokenTrustedIps"] = args?.accessTokenTrustedIps;
|
|
74
|
+
resourceInputs["accessTokenTtl"] = args?.accessTokenTtl;
|
|
75
|
+
resourceInputs["clientSecretTrustedIps"] = args?.clientSecretTrustedIps;
|
|
76
|
+
resourceInputs["identityId"] = args?.identityId;
|
|
77
|
+
}
|
|
78
|
+
opts = pulumi.mergeOptions(utilities.resourceOptsDefaults(), opts);
|
|
79
|
+
super(IdentityUniversalAuth.__pulumiType, name, resourceInputs, opts, false /*dependency*/, utilities.getPackage());
|
|
80
|
+
}
|
|
81
|
+
}
|
|
82
|
+
exports.IdentityUniversalAuth = IdentityUniversalAuth;
|
|
83
|
+
/** @internal */
|
|
84
|
+
IdentityUniversalAuth.__pulumiType = 'infisical:index/identityUniversalAuth:IdentityUniversalAuth';
|
|
85
|
+
//# sourceMappingURL=identityUniversalAuth.js.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"identityUniversalAuth.js","sourceRoot":"","sources":["../src/identityUniversalAuth.ts"],"names":[],"mappings":";AAAA,sEAAsE;AACtE,iFAAiF;;;;;;;;;;;;;;;;;;;;;;;;;;AAEjF,uDAAyC;AAGzC,uDAAyC;AAEzC,MAAa,qBAAsB,SAAQ,MAAM,CAAC,cAAc;IAC5D;;;;;;;;OAQG;IACI,MAAM,CAAC,GAAG,CAAC,IAAY,EAAE,EAA2B,EAAE,KAAkC,EAAE,IAAmC;QAChI,OAAO,IAAI,qBAAqB,CAAC,IAAI,EAAO,KAAK,EAAE,EAAE,GAAG,IAAI,EAAE,EAAE,EAAE,EAAE,EAAE,CAAC,CAAC;IAC5E,CAAC;IAKD;;;OAGG;IACI,MAAM,CAAC,UAAU,CAAC,GAAQ;QAC7B,IAAI,GAAG,KAAK,SAAS,IAAI,GAAG,KAAK,IAAI,EAAE;YACnC,OAAO,KAAK,CAAC;SAChB;QACD,OAAO,GAAG,CAAC,cAAc,CAAC,KAAK,qBAAqB,CAAC,YAAY,CAAC;IACtE,CAAC;IAmCD,YAAY,IAAY,EAAE,WAAoE,EAAE,IAAmC;QAC/H,IAAI,cAAc,GAAkB,EAAE,CAAC;QACvC,IAAI,GAAG,IAAI,IAAI,EAAE,CAAC;QAClB,IAAI,IAAI,CAAC,EAAE,EAAE;YACT,MAAM,KAAK,GAAG,WAAqD,CAAC;YACpE,cAAc,CAAC,mBAAmB,CAAC,GAAG,KAAK,EAAE,iBAAiB,CAAC;YAC/D,cAAc,CAAC,yBAAyB,CAAC,GAAG,KAAK,EAAE,uBAAuB,CAAC;YAC3E,cAAc,CAAC,uBAAuB,CAAC,GAAG,KAAK,EAAE,qBAAqB,CAAC;YACvE,cAAc,CAAC,gBAAgB,CAAC,GAAG,KAAK,EAAE,cAAc,CAAC;YACzD,cAAc,CAAC,wBAAwB,CAAC,GAAG,KAAK,EAAE,sBAAsB,CAAC;YACzE,cAAc,CAAC,YAAY,CAAC,GAAG,KAAK,EAAE,UAAU,CAAC;SACpD;aAAM;YACH,MAAM,IAAI,GAAG,WAAoD,CAAC;YAClE,IAAI,IAAI,EAAE,UAAU,KAAK,SAAS,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE;gBAC7C,MAAM,IAAI,KAAK,CAAC,wCAAwC,CAAC,CAAC;aAC7D;YACD,cAAc,CAAC,mBAAmB,CAAC,GAAG,IAAI,EAAE,iBAAiB,CAAC;YAC9D,cAAc,CAAC,yBAAyB,CAAC,GAAG,IAAI,EAAE,uBAAuB,CAAC;YAC1E,cAAc,CAAC,uBAAuB,CAAC,GAAG,IAAI,EAAE,qBAAqB,CAAC;YACtE,cAAc,CAAC,gBAAgB,CAAC,GAAG,IAAI,EAAE,cAAc,CAAC;YACxD,cAAc,CAAC,wBAAwB,CAAC,GAAG,IAAI,EAAE,sBAAsB,CAAC;YACxE,cAAc,CAAC,YAAY,CAAC,GAAG,IAAI,EAAE,UAAU,CAAC;SACnD;QACD,IAAI,GAAG,MAAM,CAAC,YAAY,CAAC,SAAS,CAAC,oBAAoB,EAAE,EAAE,IAAI,CAAC,CAAC;QACnE,KAAK,CAAC,qBAAqB,CAAC,YAAY,EAAE,IAAI,EAAE,cAAc,EAAE,IAAI,EAAE,KAAK,CAAC,cAAc,EAAE,SAAS,CAAC,UAAU,EAAE,CAAC,CAAC;IACxH,CAAC;;AAtFL,sDAuFC;AAzEG,gBAAgB;AACO,kCAAY,GAAG,6DAA6D,CAAC"}
|
|
@@ -0,0 +1,127 @@
|
|
|
1
|
+
import * as pulumi from "@pulumi/pulumi";
|
|
2
|
+
export declare class IdentityUniversalAuthClientSecret extends pulumi.CustomResource {
|
|
3
|
+
/**
|
|
4
|
+
* Get an existing IdentityUniversalAuthClientSecret resource's state with the given name, ID, and optional extra
|
|
5
|
+
* properties used to qualify the lookup.
|
|
6
|
+
*
|
|
7
|
+
* @param name The _unique_ name of the resulting resource.
|
|
8
|
+
* @param id The _unique_ provider ID of the resource to lookup.
|
|
9
|
+
* @param state Any extra arguments used during the lookup.
|
|
10
|
+
* @param opts Optional settings to control the behavior of the CustomResource.
|
|
11
|
+
*/
|
|
12
|
+
static get(name: string, id: pulumi.Input<pulumi.ID>, state?: IdentityUniversalAuthClientSecretState, opts?: pulumi.CustomResourceOptions): IdentityUniversalAuthClientSecret;
|
|
13
|
+
/** @internal */
|
|
14
|
+
static readonly __pulumiType = "infisical:index/identityUniversalAuthClientSecret:IdentityUniversalAuthClientSecret";
|
|
15
|
+
/**
|
|
16
|
+
* Returns true if the given object is an instance of IdentityUniversalAuthClientSecret. This is designed to work even
|
|
17
|
+
* when multiple copies of the Pulumi SDK have been loaded into the same process.
|
|
18
|
+
*/
|
|
19
|
+
static isInstance(obj: any): obj is IdentityUniversalAuthClientSecret;
|
|
20
|
+
/**
|
|
21
|
+
* The client ID of the secret.
|
|
22
|
+
*/
|
|
23
|
+
readonly clientId: pulumi.Output<string>;
|
|
24
|
+
/**
|
|
25
|
+
* The client secret.
|
|
26
|
+
*/
|
|
27
|
+
readonly clientSecret: pulumi.Output<string>;
|
|
28
|
+
/**
|
|
29
|
+
* The UTC timestamp of the created at.
|
|
30
|
+
*/
|
|
31
|
+
readonly createdAt: pulumi.Output<string>;
|
|
32
|
+
/**
|
|
33
|
+
* The description of the client secret.
|
|
34
|
+
*/
|
|
35
|
+
readonly description: pulumi.Output<string | undefined>;
|
|
36
|
+
/**
|
|
37
|
+
* The ID of the identity to create a client secret for
|
|
38
|
+
*/
|
|
39
|
+
readonly identityId: pulumi.Output<string>;
|
|
40
|
+
/**
|
|
41
|
+
* A flag indicating token has been revoked
|
|
42
|
+
*/
|
|
43
|
+
readonly isRevoked: pulumi.Output<boolean>;
|
|
44
|
+
/**
|
|
45
|
+
* The number of times that the client secret is used
|
|
46
|
+
*/
|
|
47
|
+
readonly numberOfUses: pulumi.Output<number>;
|
|
48
|
+
/**
|
|
49
|
+
* The maximum number of times that the client secret can be used; a value of 0 implies infinite number of uses. Default: 0
|
|
50
|
+
*/
|
|
51
|
+
readonly numberOfUsesLimit: pulumi.Output<number>;
|
|
52
|
+
/**
|
|
53
|
+
* The lifetime for the client secret in seconds. Default: 0 - not expiring
|
|
54
|
+
*/
|
|
55
|
+
readonly ttl: pulumi.Output<number>;
|
|
56
|
+
/**
|
|
57
|
+
* Create a IdentityUniversalAuthClientSecret resource with the given unique name, arguments, and options.
|
|
58
|
+
*
|
|
59
|
+
* @param name The _unique_ name of the resource.
|
|
60
|
+
* @param args The arguments to use to populate this resource's properties.
|
|
61
|
+
* @param opts A bag of options that control this resource's behavior.
|
|
62
|
+
*/
|
|
63
|
+
constructor(name: string, args: IdentityUniversalAuthClientSecretArgs, opts?: pulumi.CustomResourceOptions);
|
|
64
|
+
}
|
|
65
|
+
/**
|
|
66
|
+
* Input properties used for looking up and filtering IdentityUniversalAuthClientSecret resources.
|
|
67
|
+
*/
|
|
68
|
+
export interface IdentityUniversalAuthClientSecretState {
|
|
69
|
+
/**
|
|
70
|
+
* The client ID of the secret.
|
|
71
|
+
*/
|
|
72
|
+
clientId?: pulumi.Input<string>;
|
|
73
|
+
/**
|
|
74
|
+
* The client secret.
|
|
75
|
+
*/
|
|
76
|
+
clientSecret?: pulumi.Input<string>;
|
|
77
|
+
/**
|
|
78
|
+
* The UTC timestamp of the created at.
|
|
79
|
+
*/
|
|
80
|
+
createdAt?: pulumi.Input<string>;
|
|
81
|
+
/**
|
|
82
|
+
* The description of the client secret.
|
|
83
|
+
*/
|
|
84
|
+
description?: pulumi.Input<string>;
|
|
85
|
+
/**
|
|
86
|
+
* The ID of the identity to create a client secret for
|
|
87
|
+
*/
|
|
88
|
+
identityId?: pulumi.Input<string>;
|
|
89
|
+
/**
|
|
90
|
+
* A flag indicating token has been revoked
|
|
91
|
+
*/
|
|
92
|
+
isRevoked?: pulumi.Input<boolean>;
|
|
93
|
+
/**
|
|
94
|
+
* The number of times that the client secret is used
|
|
95
|
+
*/
|
|
96
|
+
numberOfUses?: pulumi.Input<number>;
|
|
97
|
+
/**
|
|
98
|
+
* The maximum number of times that the client secret can be used; a value of 0 implies infinite number of uses. Default: 0
|
|
99
|
+
*/
|
|
100
|
+
numberOfUsesLimit?: pulumi.Input<number>;
|
|
101
|
+
/**
|
|
102
|
+
* The lifetime for the client secret in seconds. Default: 0 - not expiring
|
|
103
|
+
*/
|
|
104
|
+
ttl?: pulumi.Input<number>;
|
|
105
|
+
}
|
|
106
|
+
/**
|
|
107
|
+
* The set of arguments for constructing a IdentityUniversalAuthClientSecret resource.
|
|
108
|
+
*/
|
|
109
|
+
export interface IdentityUniversalAuthClientSecretArgs {
|
|
110
|
+
/**
|
|
111
|
+
* The description of the client secret.
|
|
112
|
+
*/
|
|
113
|
+
description?: pulumi.Input<string>;
|
|
114
|
+
/**
|
|
115
|
+
* The ID of the identity to create a client secret for
|
|
116
|
+
*/
|
|
117
|
+
identityId: pulumi.Input<string>;
|
|
118
|
+
/**
|
|
119
|
+
* The maximum number of times that the client secret can be used; a value of 0 implies infinite number of uses. Default: 0
|
|
120
|
+
*/
|
|
121
|
+
numberOfUsesLimit?: pulumi.Input<number>;
|
|
122
|
+
/**
|
|
123
|
+
* The lifetime for the client secret in seconds. Default: 0 - not expiring
|
|
124
|
+
*/
|
|
125
|
+
ttl?: pulumi.Input<number>;
|
|
126
|
+
}
|
|
127
|
+
//# sourceMappingURL=identityUniversalAuthClientSecret.d.ts.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"identityUniversalAuthClientSecret.d.ts","sourceRoot":"","sources":["../src/identityUniversalAuthClientSecret.ts"],"names":[],"mappings":"AAGA,OAAO,KAAK,MAAM,MAAM,gBAAgB,CAAC;AAGzC,qBAAa,iCAAkC,SAAQ,MAAM,CAAC,cAAc;IACxE;;;;;;;;OAQG;WACW,GAAG,CAAC,IAAI,EAAE,MAAM,EAAE,EAAE,EAAE,MAAM,CAAC,KAAK,CAAC,MAAM,CAAC,EAAE,CAAC,EAAE,KAAK,CAAC,EAAE,sCAAsC,EAAE,IAAI,CAAC,EAAE,MAAM,CAAC,qBAAqB,GAAG,iCAAiC;IAIpL,gBAAgB;IAChB,gBAAuB,YAAY,yFAAyF;IAE5H;;;OAGG;WACW,UAAU,CAAC,GAAG,EAAE,GAAG,GAAG,GAAG,IAAI,iCAAiC;IAO5E;;OAEG;IACH,SAAgC,QAAQ,EAAE,MAAM,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC;IAChE;;OAEG;IACH,SAAgC,YAAY,EAAE,MAAM,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC;IACpE;;OAEG;IACH,SAAgC,SAAS,EAAE,MAAM,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC;IACjE;;OAEG;IACH,SAAwB,WAAW,EAAE,MAAM,CAAC,MAAM,CAAC,MAAM,GAAG,SAAS,CAAC,CAAC;IACvE;;OAEG;IACH,SAAwB,UAAU,EAAE,MAAM,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC;IAC1D;;OAEG;IACH,SAAgC,SAAS,EAAE,MAAM,CAAC,MAAM,CAAC,OAAO,CAAC,CAAC;IAClE;;OAEG;IACH,SAAgC,YAAY,EAAE,MAAM,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC;IACpE;;OAEG;IACH,SAAwB,iBAAiB,EAAE,MAAM,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC;IACjE;;OAEG;IACH,SAAwB,GAAG,EAAE,MAAM,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC;IAEnD;;;;;;OAMG;gBACS,IAAI,EAAE,MAAM,EAAE,IAAI,EAAE,qCAAqC,EAAE,IAAI,CAAC,EAAE,MAAM,CAAC,qBAAqB;CAmC7G;AAED;;GAEG;AACH,MAAM,WAAW,sCAAsC;IACnD;;OAEG;IACH,QAAQ,CAAC,EAAE,MAAM,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC;IAChC;;OAEG;IACH,YAAY,CAAC,EAAE,MAAM,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC;IACpC;;OAEG;IACH,SAAS,CAAC,EAAE,MAAM,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC;IACjC;;OAEG;IACH,WAAW,CAAC,EAAE,MAAM,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC;IACnC;;OAEG;IACH,UAAU,CAAC,EAAE,MAAM,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC;IAClC;;OAEG;IACH,SAAS,CAAC,EAAE,MAAM,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC;IAClC;;OAEG;IACH,YAAY,CAAC,EAAE,MAAM,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC;IACpC;;OAEG;IACH,iBAAiB,CAAC,EAAE,MAAM,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC;IACzC;;OAEG;IACH,GAAG,CAAC,EAAE,MAAM,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC;CAC9B;AAED;;GAEG;AACH,MAAM,WAAW,qCAAqC;IAClD;;OAEG;IACH,WAAW,CAAC,EAAE,MAAM,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC;IACnC;;OAEG;IACH,UAAU,EAAE,MAAM,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC;IACjC;;OAEG;IACH,iBAAiB,CAAC,EAAE,MAAM,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC;IACzC;;OAEG;IACH,GAAG,CAAC,EAAE,MAAM,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC;CAC9B"}
|