@sapslaj/pulumi-infisical 0.16.19 → 0.16.21
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/dist/accessApprovalPolicy.d.ts +12 -12
- package/dist/accessApprovalPolicy.d.ts.map +1 -1
- package/dist/appConnection1password.d.ts +9 -9
- package/dist/appConnection1password.d.ts.map +1 -1
- package/dist/appConnectionAws.d.ts +9 -9
- package/dist/appConnectionAws.d.ts.map +1 -1
- package/dist/appConnectionAzureAppConfiguration.d.ts +9 -9
- package/dist/appConnectionAzureAppConfiguration.d.ts.map +1 -1
- package/dist/appConnectionAzureClientSecrets.d.ts +9 -9
- package/dist/appConnectionAzureClientSecrets.d.ts.map +1 -1
- package/dist/appConnectionAzureDevops.d.ts +9 -9
- package/dist/appConnectionAzureDevops.d.ts.map +1 -1
- package/dist/appConnectionAzureKeyVault.d.ts +9 -9
- package/dist/appConnectionAzureKeyVault.d.ts.map +1 -1
- package/dist/appConnectionBitbucket.d.ts +9 -9
- package/dist/appConnectionBitbucket.d.ts.map +1 -1
- package/dist/appConnectionCloudflare.d.ts +9 -9
- package/dist/appConnectionCloudflare.d.ts.map +1 -1
- package/dist/appConnectionDatabricks.d.ts +9 -9
- package/dist/appConnectionDatabricks.d.ts.map +1 -1
- package/dist/appConnectionFlyio.d.ts +9 -9
- package/dist/appConnectionFlyio.d.ts.map +1 -1
- package/dist/appConnectionGcp.d.ts +9 -9
- package/dist/appConnectionGcp.d.ts.map +1 -1
- package/dist/appConnectionGithub.d.ts +9 -9
- package/dist/appConnectionGithub.d.ts.map +1 -1
- package/dist/appConnectionGitlab.d.ts +9 -9
- package/dist/appConnectionGitlab.d.ts.map +1 -1
- package/dist/appConnectionHashicorpVault.d.ts +109 -0
- package/dist/appConnectionHashicorpVault.d.ts.map +1 -0
- package/dist/appConnectionHashicorpVault.js +88 -0
- package/dist/appConnectionHashicorpVault.js.map +1 -0
- package/dist/appConnectionLdap.d.ts +9 -9
- package/dist/appConnectionLdap.d.ts.map +1 -1
- package/dist/appConnectionMssql.d.ts +9 -9
- package/dist/appConnectionMssql.d.ts.map +1 -1
- package/dist/appConnectionMysql.d.ts +9 -9
- package/dist/appConnectionMysql.d.ts.map +1 -1
- package/dist/appConnectionOracledb.d.ts +9 -9
- package/dist/appConnectionOracledb.d.ts.map +1 -1
- package/dist/appConnectionPostgres.d.ts +9 -9
- package/dist/appConnectionPostgres.d.ts.map +1 -1
- package/dist/appConnectionRender.d.ts +9 -9
- package/dist/appConnectionRender.d.ts.map +1 -1
- package/dist/appConnectionSupabase.d.ts +9 -9
- package/dist/appConnectionSupabase.d.ts.map +1 -1
- package/dist/certManagerCaCertificate.d.ts +10 -10
- package/dist/certManagerCaCertificate.d.ts.map +1 -1
- package/dist/certManagerCertificate.d.ts +40 -40
- package/dist/certManagerCertificate.d.ts.map +1 -1
- package/dist/certManagerCertificatePolicy.d.ts +17 -17
- package/dist/certManagerCertificatePolicy.d.ts.map +1 -1
- package/dist/certManagerCertificateProfile.d.ts +17 -17
- package/dist/certManagerCertificateProfile.d.ts.map +1 -1
- package/dist/certManagerExternalCaAcme.d.ts +15 -15
- package/dist/certManagerExternalCaAcme.d.ts.map +1 -1
- package/dist/certManagerExternalCaAdcs.d.ts +6 -6
- package/dist/certManagerExternalCaAdcs.d.ts.map +1 -1
- package/dist/certManagerInternalCa.d.ts +20 -20
- package/dist/certManagerInternalCa.d.ts.map +1 -1
- package/dist/dynamicSecretAwsIam.d.ts +13 -13
- package/dist/dynamicSecretAwsIam.d.ts.map +1 -1
- package/dist/dynamicSecretKubernetes.d.ts +13 -13
- package/dist/dynamicSecretKubernetes.d.ts.map +1 -1
- package/dist/dynamicSecretMongoAtlas.d.ts +13 -13
- package/dist/dynamicSecretMongoAtlas.d.ts.map +1 -1
- package/dist/dynamicSecretMongoDb.d.ts +13 -13
- package/dist/dynamicSecretMongoDb.d.ts.map +1 -1
- package/dist/dynamicSecretSqlDatabase.d.ts +13 -13
- package/dist/dynamicSecretSqlDatabase.d.ts.map +1 -1
- package/dist/externalKmsAws.d.ts +6 -6
- package/dist/externalKmsAws.d.ts.map +1 -1
- package/dist/getSecretMetadata.d.ts +1 -1
- package/dist/getSecretMetadata.d.ts.map +1 -1
- package/dist/getSecrets.d.ts +1 -1
- package/dist/getSecrets.d.ts.map +1 -1
- package/dist/group.d.ts +4 -4
- package/dist/group.d.ts.map +1 -1
- package/dist/groupMachineIdentity.d.ts +2 -2
- package/dist/groupMachineIdentity.d.ts.map +1 -1
- package/dist/identity.d.ts +9 -9
- package/dist/identity.d.ts.map +1 -1
- package/dist/identityAwsAuth.d.ts +15 -15
- package/dist/identityAwsAuth.d.ts.map +1 -1
- package/dist/identityAzureAuth.d.ts +14 -14
- package/dist/identityAzureAuth.d.ts.map +1 -1
- package/dist/identityGcpAuth.d.ts +17 -17
- package/dist/identityGcpAuth.d.ts.map +1 -1
- package/dist/identityJwtAuth.d.ts +24 -24
- package/dist/identityJwtAuth.d.ts.map +1 -1
- package/dist/identityKubernetesAuth.d.ts +25 -25
- package/dist/identityKubernetesAuth.d.ts.map +1 -1
- package/dist/identityOidcAuth.d.ts +21 -21
- package/dist/identityOidcAuth.d.ts.map +1 -1
- package/dist/identityTokenAuth.d.ts +9 -9
- package/dist/identityTokenAuth.d.ts.map +1 -1
- package/dist/identityTokenAuthToken.d.ts +9 -9
- package/dist/identityTokenAuthToken.d.ts.map +1 -1
- package/dist/identityUniversalAuth.d.ts +11 -11
- package/dist/identityUniversalAuth.d.ts.map +1 -1
- package/dist/identityUniversalAuthClientSecret.d.ts +12 -12
- package/dist/identityUniversalAuthClientSecret.d.ts.map +1 -1
- package/dist/index.d.ts +3 -0
- package/dist/index.d.ts.map +1 -1
- package/dist/index.js +8 -3
- package/dist/index.js.map +1 -1
- package/dist/integrationAwsParameterStore.d.ts +15 -15
- package/dist/integrationAwsParameterStore.d.ts.map +1 -1
- package/dist/integrationAwsSecretsManager.d.ts +18 -18
- package/dist/integrationAwsSecretsManager.d.ts.map +1 -1
- package/dist/integrationCircleci.d.ts +8 -8
- package/dist/integrationCircleci.d.ts.map +1 -1
- package/dist/integrationDatabricks.d.ts +8 -8
- package/dist/integrationDatabricks.d.ts.map +1 -1
- package/dist/integrationGcpSecretManager.d.ts +9 -9
- package/dist/integrationGcpSecretManager.d.ts.map +1 -1
- package/dist/kmsKey.d.ts +15 -15
- package/dist/kmsKey.d.ts.map +1 -1
- package/dist/orgRole.d.ts +6 -6
- package/dist/orgRole.d.ts.map +1 -1
- package/dist/project.d.ts +18 -18
- package/dist/project.d.ts.map +1 -1
- package/dist/projectEnvironment.d.ts +6 -6
- package/dist/projectEnvironment.d.ts.map +1 -1
- package/dist/projectGroup.d.ts +7 -7
- package/dist/projectGroup.d.ts.map +1 -1
- package/dist/projectIdentity.d.ts +5 -5
- package/dist/projectIdentity.d.ts.map +1 -1
- package/dist/projectIdentityProvisioning.d.ts +8 -8
- package/dist/projectIdentityProvisioning.d.ts.map +1 -1
- package/dist/projectIdentitySpecificPrivilege.d.ts +18 -18
- package/dist/projectIdentitySpecificPrivilege.d.ts.map +1 -1
- package/dist/projectRole.d.ts +13 -13
- package/dist/projectRole.d.ts.map +1 -1
- package/dist/projectTemplate.d.ts +9 -9
- package/dist/projectTemplate.d.ts.map +1 -1
- package/dist/projectUser.d.ts +5 -5
- package/dist/projectUser.d.ts.map +1 -1
- package/dist/provider.d.ts +5 -5
- package/dist/provider.d.ts.map +1 -1
- package/dist/secret.d.ts +19 -19
- package/dist/secret.d.ts.map +1 -1
- package/dist/secretApprovalPolicy.d.ts +14 -14
- package/dist/secretApprovalPolicy.d.ts.map +1 -1
- package/dist/secretFolder.d.ts +9 -9
- package/dist/secretFolder.d.ts.map +1 -1
- package/dist/secretImport.d.ts +6 -6
- package/dist/secretImport.d.ts.map +1 -1
- package/dist/secretRotationAwsIamUserSecret.d.ts +18 -18
- package/dist/secretRotationAwsIamUserSecret.d.ts.map +1 -1
- package/dist/secretRotationAzureClientSecret.d.ts +18 -18
- package/dist/secretRotationAzureClientSecret.d.ts.map +1 -1
- package/dist/secretRotationLdapPassword.d.ts +18 -18
- package/dist/secretRotationLdapPassword.d.ts.map +1 -1
- package/dist/secretRotationMssqlCredentials.d.ts +18 -18
- package/dist/secretRotationMssqlCredentials.d.ts.map +1 -1
- package/dist/secretRotationMysqlCredentials.d.ts +18 -18
- package/dist/secretRotationMysqlCredentials.d.ts.map +1 -1
- package/dist/secretRotationOracledbCredentials.d.ts +18 -18
- package/dist/secretRotationOracledbCredentials.d.ts.map +1 -1
- package/dist/secretRotationPostgresCredentials.d.ts +18 -18
- package/dist/secretRotationPostgresCredentials.d.ts.map +1 -1
- package/dist/secretSync1password.d.ts +12 -12
- package/dist/secretSync1password.d.ts.map +1 -1
- package/dist/secretSyncAwsParameterStore.d.ts +12 -12
- package/dist/secretSyncAwsParameterStore.d.ts.map +1 -1
- package/dist/secretSyncAwsSecretsManager.d.ts +12 -12
- package/dist/secretSyncAwsSecretsManager.d.ts.map +1 -1
- package/dist/secretSyncAzureAppConfiguration.d.ts +12 -12
- package/dist/secretSyncAzureAppConfiguration.d.ts.map +1 -1
- package/dist/secretSyncAzureDevops.d.ts +12 -12
- package/dist/secretSyncAzureDevops.d.ts.map +1 -1
- package/dist/secretSyncAzureKeyVault.d.ts +12 -12
- package/dist/secretSyncAzureKeyVault.d.ts.map +1 -1
- package/dist/secretSyncBitbucket.d.ts +12 -12
- package/dist/secretSyncBitbucket.d.ts.map +1 -1
- package/dist/secretSyncCloudflarePages.d.ts +12 -12
- package/dist/secretSyncCloudflarePages.d.ts.map +1 -1
- package/dist/secretSyncCloudflareWorkers.d.ts +12 -12
- package/dist/secretSyncCloudflareWorkers.d.ts.map +1 -1
- package/dist/secretSyncDatabricks.d.ts +12 -12
- package/dist/secretSyncDatabricks.d.ts.map +1 -1
- package/dist/secretSyncFlyio.d.ts +12 -12
- package/dist/secretSyncFlyio.d.ts.map +1 -1
- package/dist/secretSyncGcpSecretManager.d.ts +12 -12
- package/dist/secretSyncGcpSecretManager.d.ts.map +1 -1
- package/dist/secretSyncGithub.d.ts +12 -12
- package/dist/secretSyncGithub.d.ts.map +1 -1
- package/dist/secretSyncGitlab.d.ts +12 -12
- package/dist/secretSyncGitlab.d.ts.map +1 -1
- package/dist/secretSyncRender.d.ts +12 -12
- package/dist/secretSyncRender.d.ts.map +1 -1
- package/dist/secretSyncSupabase.d.ts +12 -12
- package/dist/secretSyncSupabase.d.ts.map +1 -1
- package/dist/secretTag.d.ts +5 -5
- package/dist/secretTag.d.ts.map +1 -1
- package/dist/types/input.d.ts +248 -226
- package/dist/types/input.d.ts.map +1 -1
- package/dist/types/output.d.ts +22 -0
- package/dist/types/output.d.ts.map +1 -1
- package/dist/utilities.js +2 -2
- package/package.json +3 -3
package/dist/types/input.d.ts
CHANGED
|
@@ -4,7 +4,7 @@ export interface AccessApprovalPolicyApprover {
|
|
|
4
4
|
/**
|
|
5
5
|
* The ID of the approver
|
|
6
6
|
*/
|
|
7
|
-
id?: pulumi.Input<string>;
|
|
7
|
+
id?: pulumi.Input<string | undefined>;
|
|
8
8
|
/**
|
|
9
9
|
* The type of approver. Either group or user
|
|
10
10
|
*/
|
|
@@ -12,7 +12,7 @@ export interface AccessApprovalPolicyApprover {
|
|
|
12
12
|
/**
|
|
13
13
|
* The username of the approver. By default, this is the email
|
|
14
14
|
*/
|
|
15
|
-
username?: pulumi.Input<string>;
|
|
15
|
+
username?: pulumi.Input<string | undefined>;
|
|
16
16
|
}
|
|
17
17
|
export interface AppConnection1passwordCredentials {
|
|
18
18
|
/**
|
|
@@ -28,15 +28,15 @@ export interface AppConnectionAwsCredentials {
|
|
|
28
28
|
/**
|
|
29
29
|
* The AWS Access Key ID used to authenticate requests to AWS services. Required for access-key access method. For more details, refer to the documentation here infisical.com/docs/integrations/app-connections/aws#access-key
|
|
30
30
|
*/
|
|
31
|
-
accessKeyId?: pulumi.Input<string>;
|
|
31
|
+
accessKeyId?: pulumi.Input<string | undefined>;
|
|
32
32
|
/**
|
|
33
33
|
* The Amazon Resource Name (ARN) of the IAM role to assume for performing operations. Infisical will assume this role using AWS Security Token Service (STS). Required for assume-role access method. For more details, refer to the documentation here infisical.com/docs/integrations/app-connections/aws#assume-role-recommended
|
|
34
34
|
*/
|
|
35
|
-
roleArn?: pulumi.Input<string>;
|
|
35
|
+
roleArn?: pulumi.Input<string | undefined>;
|
|
36
36
|
/**
|
|
37
37
|
* The AWS Secret Access Key associated with the Access Key ID to authenticate requests to AWS services. Required for access-key access method. For more details, refer to the documentation here infisical.com/docs/integrations/app-connections/aws#access-key
|
|
38
38
|
*/
|
|
39
|
-
secretAccessKey?: pulumi.Input<string>;
|
|
39
|
+
secretAccessKey?: pulumi.Input<string | undefined>;
|
|
40
40
|
}
|
|
41
41
|
export interface AppConnectionAzureAppConfigurationCredentials {
|
|
42
42
|
/**
|
|
@@ -70,15 +70,15 @@ export interface AppConnectionAzureDevopsCredentials {
|
|
|
70
70
|
/**
|
|
71
71
|
* The Azure DevOps access token. Required for access-token method. For more details, refer to the documentation here infisical.com/docs/integrations/app-connections/azure-devops
|
|
72
72
|
*/
|
|
73
|
-
accessToken?: pulumi.Input<string>;
|
|
73
|
+
accessToken?: pulumi.Input<string | undefined>;
|
|
74
74
|
/**
|
|
75
75
|
* The Azure application (client) ID. Required for client-secret method. For more details, refer to the documentation here infisical.com/docs/integrations/app-connections/azure-client-secrets
|
|
76
76
|
*/
|
|
77
|
-
clientId?: pulumi.Input<string>;
|
|
77
|
+
clientId?: pulumi.Input<string | undefined>;
|
|
78
78
|
/**
|
|
79
79
|
* The Azure client secret. Required for client-secret method. For more details, refer to the documentation here infisical.com/docs/integrations/app-connections/azure-client-secrets
|
|
80
80
|
*/
|
|
81
|
-
clientSecret?: pulumi.Input<string>;
|
|
81
|
+
clientSecret?: pulumi.Input<string | undefined>;
|
|
82
82
|
/**
|
|
83
83
|
* The name of the Azure DevOps organization. For more details, refer to the documentation here infisical.com/docs/integrations/app-connections/azure-devops
|
|
84
84
|
*/
|
|
@@ -86,7 +86,7 @@ export interface AppConnectionAzureDevopsCredentials {
|
|
|
86
86
|
/**
|
|
87
87
|
* The Azure Active Directory (AAD) tenant ID. Required for client-secret method. For more details, refer to the documentation here infisical.com/docs/integrations/app-connections/azure-client-secrets
|
|
88
88
|
*/
|
|
89
|
-
tenantId?: pulumi.Input<string>;
|
|
89
|
+
tenantId?: pulumi.Input<string | undefined>;
|
|
90
90
|
}
|
|
91
91
|
export interface AppConnectionAzureKeyVaultCredentials {
|
|
92
92
|
/**
|
|
@@ -146,17 +146,17 @@ export interface AppConnectionGcpCredentials {
|
|
|
146
146
|
/**
|
|
147
147
|
* The service account email to connect with GCP. The service account ID (the part of the email before '@') must be suffixed with the first two sections of your organization ID e.g. service-account-df92581a-0fe9@my-project.iam.gserviceaccount.com. For more details, refer to the documentation here https://infisical.com/docs/integrations/app-connections/gcp#configure-service-account-for-infisical
|
|
148
148
|
*/
|
|
149
|
-
serviceAccountEmail?: pulumi.Input<string>;
|
|
149
|
+
serviceAccountEmail?: pulumi.Input<string | undefined>;
|
|
150
150
|
}
|
|
151
151
|
export interface AppConnectionGithubCredentials {
|
|
152
152
|
/**
|
|
153
153
|
* The hostname of your GitHub Enterprise instance. Required when<span pulumi-lang-nodejs=" instanceType " pulumi-lang-dotnet=" InstanceType " pulumi-lang-go=" instanceType " pulumi-lang-python=" instance_type " pulumi-lang-yaml=" instanceType " pulumi-lang-java=" instanceType "> instance_type </span>is 'server'.
|
|
154
154
|
*/
|
|
155
|
-
host?: pulumi.Input<string>;
|
|
155
|
+
host?: pulumi.Input<string | undefined>;
|
|
156
156
|
/**
|
|
157
157
|
* The type of GitHub instance. Use 'cloud' for GitHub.com (default) or 'server' for GitHub Enterprise. When 'server', host is required.
|
|
158
158
|
*/
|
|
159
|
-
instanceType?: pulumi.Input<string>;
|
|
159
|
+
instanceType?: pulumi.Input<string | undefined>;
|
|
160
160
|
/**
|
|
161
161
|
* The Personal Access Token used to access GitHub.
|
|
162
162
|
*/
|
|
@@ -174,7 +174,29 @@ export interface AppConnectionGitlabCredentials {
|
|
|
174
174
|
/**
|
|
175
175
|
* The GitLab instance URL to connect with. (default: https://gitlab.com)
|
|
176
176
|
*/
|
|
177
|
-
instanceUrl?: pulumi.Input<string>;
|
|
177
|
+
instanceUrl?: pulumi.Input<string | undefined>;
|
|
178
|
+
}
|
|
179
|
+
export interface AppConnectionHashicorpVaultCredentials {
|
|
180
|
+
/**
|
|
181
|
+
* The Vault access token. Required for the `access-token` method.
|
|
182
|
+
*/
|
|
183
|
+
accessToken?: pulumi.Input<string | undefined>;
|
|
184
|
+
/**
|
|
185
|
+
* The URL of the HashiCorp Vault instance, e.g. `https://vault.example.com`. Required for all methods.
|
|
186
|
+
*/
|
|
187
|
+
instanceUrl?: pulumi.Input<string | undefined>;
|
|
188
|
+
/**
|
|
189
|
+
* Optional Vault namespace. Only applicable to HCP Vault Dedicated and Enterprise deployments.
|
|
190
|
+
*/
|
|
191
|
+
namespace?: pulumi.Input<string | undefined>;
|
|
192
|
+
/**
|
|
193
|
+
* The AppRole role ID. Required for the `app-role` method.
|
|
194
|
+
*/
|
|
195
|
+
roleId?: pulumi.Input<string | undefined>;
|
|
196
|
+
/**
|
|
197
|
+
* The AppRole secret ID. Required for the `app-role` method.
|
|
198
|
+
*/
|
|
199
|
+
secretId?: pulumi.Input<string | undefined>;
|
|
178
200
|
}
|
|
179
201
|
export interface AppConnectionLdapCredentials {
|
|
180
202
|
/**
|
|
@@ -192,11 +214,11 @@ export interface AppConnectionLdapCredentials {
|
|
|
192
214
|
/**
|
|
193
215
|
* The SSL certificate (PEM format) to use for secure connection when using ldaps:// with a self-signed certificate.
|
|
194
216
|
*/
|
|
195
|
-
sslCertificate?: pulumi.Input<string>;
|
|
217
|
+
sslCertificate?: pulumi.Input<string | undefined>;
|
|
196
218
|
/**
|
|
197
219
|
* Whether or not to reject unauthorized SSL certificates (true/false) when using ldaps://. Set to false only in test environments.
|
|
198
220
|
*/
|
|
199
|
-
sslRejectUnauthorized?: pulumi.Input<boolean>;
|
|
221
|
+
sslRejectUnauthorized?: pulumi.Input<boolean | undefined>;
|
|
200
222
|
/**
|
|
201
223
|
* The LDAP server URL (e.g., 'ldap://example.com:389' or 'ldaps://example.com:636').
|
|
202
224
|
*/
|
|
@@ -218,19 +240,19 @@ export interface AppConnectionMssqlCredentials {
|
|
|
218
240
|
/**
|
|
219
241
|
* The port number of the database.
|
|
220
242
|
*/
|
|
221
|
-
port?: pulumi.Input<number>;
|
|
243
|
+
port?: pulumi.Input<number | undefined>;
|
|
222
244
|
/**
|
|
223
245
|
* The SSL certificate to use for connection.
|
|
224
246
|
*/
|
|
225
|
-
sslCertificate?: pulumi.Input<string>;
|
|
247
|
+
sslCertificate?: pulumi.Input<string | undefined>;
|
|
226
248
|
/**
|
|
227
249
|
* Whether or not to use SSL when connecting to the database.
|
|
228
250
|
*/
|
|
229
|
-
sslEnabled?: pulumi.Input<boolean>;
|
|
251
|
+
sslEnabled?: pulumi.Input<boolean | undefined>;
|
|
230
252
|
/**
|
|
231
253
|
* Whether or not to reject unauthorized SSL certificates.
|
|
232
254
|
*/
|
|
233
|
-
sslRejectUnauthorized?: pulumi.Input<boolean>;
|
|
255
|
+
sslRejectUnauthorized?: pulumi.Input<boolean | undefined>;
|
|
234
256
|
/**
|
|
235
257
|
* The username to connect to the database with.
|
|
236
258
|
*/
|
|
@@ -252,19 +274,19 @@ export interface AppConnectionMysqlCredentials {
|
|
|
252
274
|
/**
|
|
253
275
|
* The port number of the database.
|
|
254
276
|
*/
|
|
255
|
-
port?: pulumi.Input<number>;
|
|
277
|
+
port?: pulumi.Input<number | undefined>;
|
|
256
278
|
/**
|
|
257
279
|
* The SSL certificate to use for connection.
|
|
258
280
|
*/
|
|
259
|
-
sslCertificate?: pulumi.Input<string>;
|
|
281
|
+
sslCertificate?: pulumi.Input<string | undefined>;
|
|
260
282
|
/**
|
|
261
283
|
* Whether or not to use SSL when connecting to the database.
|
|
262
284
|
*/
|
|
263
|
-
sslEnabled?: pulumi.Input<boolean>;
|
|
285
|
+
sslEnabled?: pulumi.Input<boolean | undefined>;
|
|
264
286
|
/**
|
|
265
287
|
* Whether or not to reject unauthorized SSL certificates.
|
|
266
288
|
*/
|
|
267
|
-
sslRejectUnauthorized?: pulumi.Input<boolean>;
|
|
289
|
+
sslRejectUnauthorized?: pulumi.Input<boolean | undefined>;
|
|
268
290
|
/**
|
|
269
291
|
* The username to connect to the database with.
|
|
270
292
|
*/
|
|
@@ -286,19 +308,19 @@ export interface AppConnectionOracledbCredentials {
|
|
|
286
308
|
/**
|
|
287
309
|
* The port number of the database.
|
|
288
310
|
*/
|
|
289
|
-
port?: pulumi.Input<number>;
|
|
311
|
+
port?: pulumi.Input<number | undefined>;
|
|
290
312
|
/**
|
|
291
313
|
* The SSL certificate to use for connection.
|
|
292
314
|
*/
|
|
293
|
-
sslCertificate?: pulumi.Input<string>;
|
|
315
|
+
sslCertificate?: pulumi.Input<string | undefined>;
|
|
294
316
|
/**
|
|
295
317
|
* Whether or not to use SSL when connecting to the database.
|
|
296
318
|
*/
|
|
297
|
-
sslEnabled?: pulumi.Input<boolean>;
|
|
319
|
+
sslEnabled?: pulumi.Input<boolean | undefined>;
|
|
298
320
|
/**
|
|
299
321
|
* Whether or not to reject unauthorized SSL certificates.
|
|
300
322
|
*/
|
|
301
|
-
sslRejectUnauthorized?: pulumi.Input<boolean>;
|
|
323
|
+
sslRejectUnauthorized?: pulumi.Input<boolean | undefined>;
|
|
302
324
|
/**
|
|
303
325
|
* The username to connect to the database with.
|
|
304
326
|
*/
|
|
@@ -320,19 +342,19 @@ export interface AppConnectionPostgresCredentials {
|
|
|
320
342
|
/**
|
|
321
343
|
* The port number of the database.
|
|
322
344
|
*/
|
|
323
|
-
port?: pulumi.Input<number>;
|
|
345
|
+
port?: pulumi.Input<number | undefined>;
|
|
324
346
|
/**
|
|
325
347
|
* The SSL certificate to use for connection.
|
|
326
348
|
*/
|
|
327
|
-
sslCertificate?: pulumi.Input<string>;
|
|
349
|
+
sslCertificate?: pulumi.Input<string | undefined>;
|
|
328
350
|
/**
|
|
329
351
|
* Whether or not to use SSL when connecting to the database.
|
|
330
352
|
*/
|
|
331
|
-
sslEnabled?: pulumi.Input<boolean>;
|
|
353
|
+
sslEnabled?: pulumi.Input<boolean | undefined>;
|
|
332
354
|
/**
|
|
333
355
|
* Whether or not to reject unauthorized SSL certificates.
|
|
334
356
|
*/
|
|
335
|
-
sslRejectUnauthorized?: pulumi.Input<boolean>;
|
|
357
|
+
sslRejectUnauthorized?: pulumi.Input<boolean | undefined>;
|
|
336
358
|
/**
|
|
337
359
|
* The username to connect to the database with.
|
|
338
360
|
*/
|
|
@@ -352,7 +374,7 @@ export interface AppConnectionSupabaseCredentials {
|
|
|
352
374
|
/**
|
|
353
375
|
* The Supabase instance URL (e.g., https://your-domain.com).
|
|
354
376
|
*/
|
|
355
|
-
instanceUrl?: pulumi.Input<string>;
|
|
377
|
+
instanceUrl?: pulumi.Input<string | undefined>;
|
|
356
378
|
}
|
|
357
379
|
export interface CertManagerCertificatePolicyAlgorithms {
|
|
358
380
|
/**
|
|
@@ -368,43 +390,43 @@ export interface CertManagerCertificatePolicyExtendedKeyUsages {
|
|
|
368
390
|
/**
|
|
369
391
|
* List of allowed extended key usages. Possible values: client_auth, server_auth, code_signing, email_protection, ocsp_signing, time_stamping
|
|
370
392
|
*/
|
|
371
|
-
alloweds?: pulumi.Input<pulumi.Input<string>[]>;
|
|
393
|
+
alloweds?: pulumi.Input<pulumi.Input<string>[] | undefined>;
|
|
372
394
|
/**
|
|
373
395
|
* List of denied extended key usages. Possible values: client_auth, server_auth, code_signing, email_protection, ocsp_signing, time_stamping
|
|
374
396
|
*/
|
|
375
|
-
denieds?: pulumi.Input<pulumi.Input<string>[]>;
|
|
397
|
+
denieds?: pulumi.Input<pulumi.Input<string>[] | undefined>;
|
|
376
398
|
/**
|
|
377
399
|
* List of required extended key usages. Possible values: client_auth, server_auth, code_signing, email_protection, ocsp_signing, time_stamping
|
|
378
400
|
*/
|
|
379
|
-
requireds?: pulumi.Input<pulumi.Input<string>[]>;
|
|
401
|
+
requireds?: pulumi.Input<pulumi.Input<string>[] | undefined>;
|
|
380
402
|
}
|
|
381
403
|
export interface CertManagerCertificatePolicyKeyUsages {
|
|
382
404
|
/**
|
|
383
405
|
* List of allowed key usages. Possible values: digital_signature, key_encipherment, non_repudiation, data_encipherment, key_agreement, key_cert_sign, crl_sign, encipher_only, decipher_only
|
|
384
406
|
*/
|
|
385
|
-
alloweds?: pulumi.Input<pulumi.Input<string>[]>;
|
|
407
|
+
alloweds?: pulumi.Input<pulumi.Input<string>[] | undefined>;
|
|
386
408
|
/**
|
|
387
409
|
* List of denied key usages. Possible values: digital_signature, key_encipherment, non_repudiation, data_encipherment, key_agreement, key_cert_sign, crl_sign, encipher_only, decipher_only
|
|
388
410
|
*/
|
|
389
|
-
denieds?: pulumi.Input<pulumi.Input<string>[]>;
|
|
411
|
+
denieds?: pulumi.Input<pulumi.Input<string>[] | undefined>;
|
|
390
412
|
/**
|
|
391
413
|
* List of required key usages. Possible values: digital_signature, key_encipherment, non_repudiation, data_encipherment, key_agreement, key_cert_sign, crl_sign, encipher_only, decipher_only
|
|
392
414
|
*/
|
|
393
|
-
requireds?: pulumi.Input<pulumi.Input<string>[]>;
|
|
415
|
+
requireds?: pulumi.Input<pulumi.Input<string>[] | undefined>;
|
|
394
416
|
}
|
|
395
417
|
export interface CertManagerCertificatePolicySan {
|
|
396
418
|
/**
|
|
397
419
|
* List of allowed values for this SAN type
|
|
398
420
|
*/
|
|
399
|
-
alloweds?: pulumi.Input<pulumi.Input<string>[]>;
|
|
421
|
+
alloweds?: pulumi.Input<pulumi.Input<string>[] | undefined>;
|
|
400
422
|
/**
|
|
401
423
|
* List of denied values for this SAN type
|
|
402
424
|
*/
|
|
403
|
-
denieds?: pulumi.Input<pulumi.Input<string>[]>;
|
|
425
|
+
denieds?: pulumi.Input<pulumi.Input<string>[] | undefined>;
|
|
404
426
|
/**
|
|
405
427
|
* List of required values for this SAN type
|
|
406
428
|
*/
|
|
407
|
-
requireds?: pulumi.Input<pulumi.Input<string>[]>;
|
|
429
|
+
requireds?: pulumi.Input<pulumi.Input<string>[] | undefined>;
|
|
408
430
|
/**
|
|
409
431
|
* The SAN type. Possible values: dns_name, ip_address, email, uri
|
|
410
432
|
*/
|
|
@@ -414,15 +436,15 @@ export interface CertManagerCertificatePolicySubject {
|
|
|
414
436
|
/**
|
|
415
437
|
* List of allowed values for this subject attribute
|
|
416
438
|
*/
|
|
417
|
-
alloweds?: pulumi.Input<pulumi.Input<string>[]>;
|
|
439
|
+
alloweds?: pulumi.Input<pulumi.Input<string>[] | undefined>;
|
|
418
440
|
/**
|
|
419
441
|
* List of denied values for this subject attribute
|
|
420
442
|
*/
|
|
421
|
-
denieds?: pulumi.Input<pulumi.Input<string>[]>;
|
|
443
|
+
denieds?: pulumi.Input<pulumi.Input<string>[] | undefined>;
|
|
422
444
|
/**
|
|
423
445
|
* List of required values for this subject attribute
|
|
424
446
|
*/
|
|
425
|
-
requireds?: pulumi.Input<pulumi.Input<string>[]>;
|
|
447
|
+
requireds?: pulumi.Input<pulumi.Input<string>[] | undefined>;
|
|
426
448
|
/**
|
|
427
449
|
* The subject attribute type. Possible values: common_name, organization, country
|
|
428
450
|
*/
|
|
@@ -432,51 +454,51 @@ export interface CertManagerCertificatePolicyValidity {
|
|
|
432
454
|
/**
|
|
433
455
|
* Maximum validity period (e.g., '90d', '2y', '6m')
|
|
434
456
|
*/
|
|
435
|
-
max?: pulumi.Input<string>;
|
|
457
|
+
max?: pulumi.Input<string | undefined>;
|
|
436
458
|
}
|
|
437
459
|
export interface CertManagerCertificateProfileApiConfig {
|
|
438
460
|
/**
|
|
439
461
|
* Whether to automatically renew certificates
|
|
440
462
|
*/
|
|
441
|
-
autoRenew?: pulumi.Input<boolean>;
|
|
463
|
+
autoRenew?: pulumi.Input<boolean | undefined>;
|
|
442
464
|
/**
|
|
443
465
|
* Number of days before expiration to renew certificates (1-30)
|
|
444
466
|
*/
|
|
445
|
-
renewBeforeDays?: pulumi.Input<number>;
|
|
467
|
+
renewBeforeDays?: pulumi.Input<number | undefined>;
|
|
446
468
|
}
|
|
447
469
|
export interface CertManagerCertificateProfileEstConfig {
|
|
448
470
|
/**
|
|
449
471
|
* The CA certificate chain for EST enrollment
|
|
450
472
|
*/
|
|
451
|
-
caChain?: pulumi.Input<string>;
|
|
473
|
+
caChain?: pulumi.Input<string | undefined>;
|
|
452
474
|
/**
|
|
453
475
|
* Whether to disable bootstrap CA validation
|
|
454
476
|
*/
|
|
455
|
-
disableBootstrapCaValidation?: pulumi.Input<boolean>;
|
|
477
|
+
disableBootstrapCaValidation?: pulumi.Input<boolean | undefined>;
|
|
456
478
|
/**
|
|
457
479
|
* The passphrase for EST enrollment
|
|
458
480
|
*/
|
|
459
|
-
passphrase?: pulumi.Input<string>;
|
|
481
|
+
passphrase?: pulumi.Input<string | undefined>;
|
|
460
482
|
}
|
|
461
483
|
export interface CertManagerCertificateProfileExternalConfigs {
|
|
462
484
|
/**
|
|
463
485
|
* Certificate template name for Azure AD CS
|
|
464
486
|
*/
|
|
465
|
-
template?: pulumi.Input<string>;
|
|
487
|
+
template?: pulumi.Input<string | undefined>;
|
|
466
488
|
}
|
|
467
489
|
export interface DynamicSecretAwsIamConfiguration {
|
|
468
490
|
/**
|
|
469
491
|
* Configuration for the 'access_key' authentication method.
|
|
470
492
|
*/
|
|
471
|
-
accessKeyConfig?: pulumi.Input<inputs.DynamicSecretAwsIamConfigurationAccessKeyConfig>;
|
|
493
|
+
accessKeyConfig?: pulumi.Input<inputs.DynamicSecretAwsIamConfigurationAccessKeyConfig | undefined>;
|
|
472
494
|
/**
|
|
473
495
|
* Configuration for the 'assume_role' authentication method.
|
|
474
496
|
*/
|
|
475
|
-
assumeRoleConfig?: pulumi.Input<inputs.DynamicSecretAwsIamConfigurationAssumeRoleConfig>;
|
|
497
|
+
assumeRoleConfig?: pulumi.Input<inputs.DynamicSecretAwsIamConfigurationAssumeRoleConfig | undefined>;
|
|
476
498
|
/**
|
|
477
499
|
* IAM AWS Path to scope created IAM User resource access.
|
|
478
500
|
*/
|
|
479
|
-
awsPath?: pulumi.Input<string>;
|
|
501
|
+
awsPath?: pulumi.Input<string | undefined>;
|
|
480
502
|
/**
|
|
481
503
|
* The authentication method to use. Must be 'access_key' or 'assume_role'.
|
|
482
504
|
*/
|
|
@@ -484,15 +506,15 @@ export interface DynamicSecretAwsIamConfiguration {
|
|
|
484
506
|
/**
|
|
485
507
|
* The IAM Policy ARN of the AWS Permissions Boundary to attach to IAM users created in the role.
|
|
486
508
|
*/
|
|
487
|
-
permissionBoundaryPolicyArn?: pulumi.Input<string>;
|
|
509
|
+
permissionBoundaryPolicyArn?: pulumi.Input<string | undefined>;
|
|
488
510
|
/**
|
|
489
511
|
* The AWS IAM managed policies that should be attached to the created users. Multiple values can be provided by separating them with commas
|
|
490
512
|
*/
|
|
491
|
-
policyArns?: pulumi.Input<string>;
|
|
513
|
+
policyArns?: pulumi.Input<string | undefined>;
|
|
492
514
|
/**
|
|
493
515
|
* The AWS IAM inline policy that should be attached to the created users. Multiple values can be provided by separating them with commas
|
|
494
516
|
*/
|
|
495
|
-
policyDocument?: pulumi.Input<string>;
|
|
517
|
+
policyDocument?: pulumi.Input<string | undefined>;
|
|
496
518
|
/**
|
|
497
519
|
* The AWS data center region.
|
|
498
520
|
*/
|
|
@@ -500,7 +522,7 @@ export interface DynamicSecretAwsIamConfiguration {
|
|
|
500
522
|
/**
|
|
501
523
|
* The AWS IAM groups that should be assigned to the created users. Multiple values can be provided by separating them with commas
|
|
502
524
|
*/
|
|
503
|
-
userGroups?: pulumi.Input<string>;
|
|
525
|
+
userGroups?: pulumi.Input<string | undefined>;
|
|
504
526
|
}
|
|
505
527
|
export interface DynamicSecretAwsIamConfigurationAccessKeyConfig {
|
|
506
528
|
/**
|
|
@@ -532,11 +554,11 @@ export interface DynamicSecretKubernetesConfiguration {
|
|
|
532
554
|
/**
|
|
533
555
|
* Configuration for the 'api' authentication method.
|
|
534
556
|
*/
|
|
535
|
-
apiConfig?: pulumi.Input<inputs.DynamicSecretKubernetesConfigurationApiConfig>;
|
|
557
|
+
apiConfig?: pulumi.Input<inputs.DynamicSecretKubernetesConfigurationApiConfig | undefined>;
|
|
536
558
|
/**
|
|
537
559
|
* Optional list of audiences to include in the generated token.
|
|
538
560
|
*/
|
|
539
|
-
audiences?: pulumi.Input<pulumi.Input<string>[]>;
|
|
561
|
+
audiences?: pulumi.Input<pulumi.Input<string>[] | undefined>;
|
|
540
562
|
/**
|
|
541
563
|
* Choose between Token ('api') or 'gateway' authentication. If using Gateway, the Gateway must be deployed in your Kubernetes cluster.
|
|
542
564
|
*/
|
|
@@ -548,21 +570,21 @@ export interface DynamicSecretKubernetesConfiguration {
|
|
|
548
570
|
/**
|
|
549
571
|
* Configuration for the 'dynamic' credential type.
|
|
550
572
|
*/
|
|
551
|
-
dynamicConfig?: pulumi.Input<inputs.DynamicSecretKubernetesConfigurationDynamicConfig>;
|
|
573
|
+
dynamicConfig?: pulumi.Input<inputs.DynamicSecretKubernetesConfigurationDynamicConfig | undefined>;
|
|
552
574
|
/**
|
|
553
575
|
* Select a gateway for private cluster access. If not specified, the Internet Gateway will be used.
|
|
554
576
|
*/
|
|
555
|
-
gatewayId?: pulumi.Input<string>;
|
|
577
|
+
gatewayId?: pulumi.Input<string | undefined>;
|
|
556
578
|
/**
|
|
557
579
|
* Configuration for the 'static' credential type.
|
|
558
580
|
*/
|
|
559
|
-
staticConfig?: pulumi.Input<inputs.DynamicSecretKubernetesConfigurationStaticConfig>;
|
|
581
|
+
staticConfig?: pulumi.Input<inputs.DynamicSecretKubernetesConfigurationStaticConfig | undefined>;
|
|
560
582
|
}
|
|
561
583
|
export interface DynamicSecretKubernetesConfigurationApiConfig {
|
|
562
584
|
/**
|
|
563
585
|
* Custom CA certificate for the Kubernetes API server. Leave blank to use the system/public CA.
|
|
564
586
|
*/
|
|
565
|
-
ca?: pulumi.Input<string>;
|
|
587
|
+
ca?: pulumi.Input<string | undefined>;
|
|
566
588
|
/**
|
|
567
589
|
* Service account token with permissions to create service accounts and manage RBAC.
|
|
568
590
|
*/
|
|
@@ -574,7 +596,7 @@ export interface DynamicSecretKubernetesConfigurationApiConfig {
|
|
|
574
596
|
/**
|
|
575
597
|
* Whether to enable SSL verification for the Kubernetes API server connection.
|
|
576
598
|
*/
|
|
577
|
-
enableSsl?: pulumi.Input<boolean>;
|
|
599
|
+
enableSsl?: pulumi.Input<boolean | undefined>;
|
|
578
600
|
}
|
|
579
601
|
export interface DynamicSecretKubernetesConfigurationDynamicConfig {
|
|
580
602
|
/**
|
|
@@ -624,13 +646,13 @@ export interface DynamicSecretMongoAtlasConfiguration {
|
|
|
624
646
|
*/
|
|
625
647
|
groupId: pulumi.Input<string>;
|
|
626
648
|
roles: pulumi.Input<pulumi.Input<inputs.DynamicSecretMongoAtlasConfigurationRole>[]>;
|
|
627
|
-
scopes?: pulumi.Input<pulumi.Input<inputs.DynamicSecretMongoAtlasConfigurationScope>[]>;
|
|
649
|
+
scopes?: pulumi.Input<pulumi.Input<inputs.DynamicSecretMongoAtlasConfigurationScope>[] | undefined>;
|
|
628
650
|
}
|
|
629
651
|
export interface DynamicSecretMongoAtlasConfigurationRole {
|
|
630
652
|
/**
|
|
631
653
|
* Collection on which this role applies.
|
|
632
654
|
*/
|
|
633
|
-
collectionName?: pulumi.Input<string>;
|
|
655
|
+
collectionName?: pulumi.Input<string | undefined>;
|
|
634
656
|
/**
|
|
635
657
|
* Database to which the user is granted access privileges.
|
|
636
658
|
*/
|
|
@@ -664,7 +686,7 @@ export interface DynamicSecretMongoDbConfiguration {
|
|
|
664
686
|
/**
|
|
665
687
|
* The CA certificate to use to connect to the database.
|
|
666
688
|
*/
|
|
667
|
-
ca?: pulumi.Input<string>;
|
|
689
|
+
ca?: pulumi.Input<string | undefined>;
|
|
668
690
|
/**
|
|
669
691
|
* The name of the database to use.
|
|
670
692
|
*/
|
|
@@ -680,7 +702,7 @@ export interface DynamicSecretMongoDbConfiguration {
|
|
|
680
702
|
/**
|
|
681
703
|
* The port of the database server.
|
|
682
704
|
*/
|
|
683
|
-
port?: pulumi.Input<number>;
|
|
705
|
+
port?: pulumi.Input<number | undefined>;
|
|
684
706
|
/**
|
|
685
707
|
* A list of role names to assign to the user. The role names can either be built-in or custom.
|
|
686
708
|
*/
|
|
@@ -704,7 +726,7 @@ export interface DynamicSecretSqlDatabaseConfiguration {
|
|
|
704
726
|
/**
|
|
705
727
|
* The CA certificate to use to connect to the database.
|
|
706
728
|
*/
|
|
707
|
-
ca?: pulumi.Input<string>;
|
|
729
|
+
ca?: pulumi.Input<string | undefined>;
|
|
708
730
|
/**
|
|
709
731
|
* The database client to use. Currently supported values are postgres, mysql2, oracledb, mssql, sap-ase, and vertica.
|
|
710
732
|
*/
|
|
@@ -720,7 +742,7 @@ export interface DynamicSecretSqlDatabaseConfiguration {
|
|
|
720
742
|
/**
|
|
721
743
|
* The Gateway ID to use to connect to the database.
|
|
722
744
|
*/
|
|
723
|
-
gatewayId?: pulumi.Input<string>;
|
|
745
|
+
gatewayId?: pulumi.Input<string | undefined>;
|
|
724
746
|
/**
|
|
725
747
|
* The host of the database server.
|
|
726
748
|
*/
|
|
@@ -732,7 +754,7 @@ export interface DynamicSecretSqlDatabaseConfiguration {
|
|
|
732
754
|
/**
|
|
733
755
|
* The password requirements to use to create the dynamic secret lease.
|
|
734
756
|
*/
|
|
735
|
-
passwordRequirements?: pulumi.Input<inputs.DynamicSecretSqlDatabaseConfigurationPasswordRequirements>;
|
|
757
|
+
passwordRequirements?: pulumi.Input<inputs.DynamicSecretSqlDatabaseConfigurationPasswordRequirements | undefined>;
|
|
736
758
|
/**
|
|
737
759
|
* The port of the database server.
|
|
738
760
|
*/
|
|
@@ -740,7 +762,7 @@ export interface DynamicSecretSqlDatabaseConfiguration {
|
|
|
740
762
|
/**
|
|
741
763
|
* The renew statement to use to renew the dynamic secret lease.
|
|
742
764
|
*/
|
|
743
|
-
renewStatement?: pulumi.Input<string>;
|
|
765
|
+
renewStatement?: pulumi.Input<string | undefined>;
|
|
744
766
|
/**
|
|
745
767
|
* The revocation statement to use to revoke the dynamic secret lease.
|
|
746
768
|
*/
|
|
@@ -754,7 +776,7 @@ export interface DynamicSecretSqlDatabaseConfigurationPasswordRequirements {
|
|
|
754
776
|
/**
|
|
755
777
|
* The symbols allowed in the password.
|
|
756
778
|
*/
|
|
757
|
-
allowedSymbols?: pulumi.Input<string>;
|
|
779
|
+
allowedSymbols?: pulumi.Input<string | undefined>;
|
|
758
780
|
/**
|
|
759
781
|
* The length of the password to use to create the dynamic secret lease.
|
|
760
782
|
*/
|
|
@@ -814,34 +836,34 @@ export interface ExternalKmsAwsConfigurationCredential {
|
|
|
814
836
|
/**
|
|
815
837
|
* The AWS Access Key ID used to authenticate requests to AWS services. Required for access-key type. For more details, refer to the documentation here https://infisical.com/docs/documentation/platform/kms-configuration/aws-kms#param-access-key-id
|
|
816
838
|
*/
|
|
817
|
-
accessKeyId?: pulumi.Input<string>;
|
|
839
|
+
accessKeyId?: pulumi.Input<string | undefined>;
|
|
818
840
|
/**
|
|
819
841
|
* The Amazon Resource Name (ARN) of the IAM role to assume for performing operations. Infisical will assume this role using AWS Security Token Service (STS). Required for assume-role type. For more details, refer to the documentation here https://infisical.com/docs/documentation/platform/kms-configuration/aws-kms#param-iam-role-arn-for-role-assumption
|
|
820
842
|
*/
|
|
821
|
-
roleArn?: pulumi.Input<string>;
|
|
843
|
+
roleArn?: pulumi.Input<string | undefined>;
|
|
822
844
|
/**
|
|
823
845
|
* The external ID of the role to assume for performing operations. Required for assume-role type. For more details, refer to the documentation here https://infisical.com/docs/documentation/platform/kms-configuration/aws-kms#param-assume-role-external-id
|
|
824
846
|
*/
|
|
825
|
-
roleExternalId?: pulumi.Input<string>;
|
|
847
|
+
roleExternalId?: pulumi.Input<string | undefined>;
|
|
826
848
|
/**
|
|
827
849
|
* The AWS Secret Access Key associated with the Access Key ID to authenticate requests to AWS services. Required for access-key type. For more details, refer to the documentation here https://infisical.com/docs/documentation/platform/kms-configuration/aws-kms#param-secret-access-key
|
|
828
850
|
*/
|
|
829
|
-
secretAccessKey?: pulumi.Input<string>;
|
|
851
|
+
secretAccessKey?: pulumi.Input<string | undefined>;
|
|
830
852
|
}
|
|
831
853
|
export interface IdentityAwsAuthAccessTokenTrustedIp {
|
|
832
|
-
ipAddress?: pulumi.Input<string>;
|
|
854
|
+
ipAddress?: pulumi.Input<string | undefined>;
|
|
833
855
|
}
|
|
834
856
|
export interface IdentityAzureAuthAccessTokenTrustedIp {
|
|
835
|
-
ipAddress?: pulumi.Input<string>;
|
|
857
|
+
ipAddress?: pulumi.Input<string | undefined>;
|
|
836
858
|
}
|
|
837
859
|
export interface IdentityGcpAuthAccessTokenTrustedIp {
|
|
838
|
-
ipAddress?: pulumi.Input<string>;
|
|
860
|
+
ipAddress?: pulumi.Input<string | undefined>;
|
|
839
861
|
}
|
|
840
862
|
export interface IdentityJwtAuthAccessTokenTrustedIp {
|
|
841
|
-
ipAddress?: pulumi.Input<string>;
|
|
863
|
+
ipAddress?: pulumi.Input<string | undefined>;
|
|
842
864
|
}
|
|
843
865
|
export interface IdentityKubernetesAuthAccessTokenTrustedIp {
|
|
844
|
-
ipAddress?: pulumi.Input<string>;
|
|
866
|
+
ipAddress?: pulumi.Input<string | undefined>;
|
|
845
867
|
}
|
|
846
868
|
export interface IdentityMetadata {
|
|
847
869
|
/**
|
|
@@ -854,70 +876,70 @@ export interface IdentityMetadata {
|
|
|
854
876
|
value: pulumi.Input<string>;
|
|
855
877
|
}
|
|
856
878
|
export interface IdentityOidcAuthAccessTokenTrustedIp {
|
|
857
|
-
ipAddress?: pulumi.Input<string>;
|
|
879
|
+
ipAddress?: pulumi.Input<string | undefined>;
|
|
858
880
|
}
|
|
859
881
|
export interface IdentityTokenAuthAccessTokenTrustedIp {
|
|
860
|
-
ipAddress?: pulumi.Input<string>;
|
|
882
|
+
ipAddress?: pulumi.Input<string | undefined>;
|
|
861
883
|
}
|
|
862
884
|
export interface IdentityUniversalAuthAccessTokenTrustedIp {
|
|
863
|
-
ipAddress?: pulumi.Input<string>;
|
|
885
|
+
ipAddress?: pulumi.Input<string | undefined>;
|
|
864
886
|
}
|
|
865
887
|
export interface IdentityUniversalAuthClientSecretTrustedIp {
|
|
866
|
-
ipAddress?: pulumi.Input<string>;
|
|
888
|
+
ipAddress?: pulumi.Input<string | undefined>;
|
|
867
889
|
}
|
|
868
890
|
export interface IntegrationAwsParameterStoreOptions {
|
|
869
891
|
/**
|
|
870
892
|
* Tags to attach to the AWS parameter store secrets.
|
|
871
893
|
*/
|
|
872
|
-
awsTags?: pulumi.Input<pulumi.Input<inputs.IntegrationAwsParameterStoreOptionsAwsTag>[]>;
|
|
894
|
+
awsTags?: pulumi.Input<pulumi.Input<inputs.IntegrationAwsParameterStoreOptionsAwsTag>[] | undefined>;
|
|
873
895
|
/**
|
|
874
896
|
* Whether to disable deletion of existing secrets in AWS Parameter Store.
|
|
875
897
|
*/
|
|
876
|
-
shouldDisableDelete?: pulumi.Input<boolean>;
|
|
898
|
+
shouldDisableDelete?: pulumi.Input<boolean | undefined>;
|
|
877
899
|
}
|
|
878
900
|
export interface IntegrationAwsParameterStoreOptionsAwsTag {
|
|
879
901
|
/**
|
|
880
902
|
* The key of the tag.
|
|
881
903
|
*/
|
|
882
|
-
key?: pulumi.Input<string>;
|
|
904
|
+
key?: pulumi.Input<string | undefined>;
|
|
883
905
|
/**
|
|
884
906
|
* The value of the tag.
|
|
885
907
|
*/
|
|
886
|
-
value?: pulumi.Input<string>;
|
|
908
|
+
value?: pulumi.Input<string | undefined>;
|
|
887
909
|
}
|
|
888
910
|
export interface IntegrationAwsSecretsManagerOptions {
|
|
889
911
|
/**
|
|
890
912
|
* Tags to attach to the AWS Secrets Manager secrets.
|
|
891
913
|
*/
|
|
892
|
-
awsTags?: pulumi.Input<pulumi.Input<inputs.IntegrationAwsSecretsManagerOptionsAwsTag>[]>;
|
|
914
|
+
awsTags?: pulumi.Input<pulumi.Input<inputs.IntegrationAwsSecretsManagerOptionsAwsTag>[] | undefined>;
|
|
893
915
|
/**
|
|
894
916
|
* The sync mode for AWS tags. The supported options are `secret-metadata` and <span pulumi-lang-nodejs="`custom`" pulumi-lang-dotnet="`Custom`" pulumi-lang-go="`custom`" pulumi-lang-python="`custom`" pulumi-lang-yaml="`custom`" pulumi-lang-java="`custom`">`custom`</span>. If `secret-metadata` is selected, the metadata of the Infisical secrets are used as tags in AWS (only supported for one-to-one integrations). If <span pulumi-lang-nodejs="`custom`" pulumi-lang-dotnet="`Custom`" pulumi-lang-go="`custom`" pulumi-lang-python="`custom`" pulumi-lang-yaml="`custom`" pulumi-lang-java="`custom`">`custom`</span> is selected, then the key/value pairs in the <span pulumi-lang-nodejs="`awsTags`" pulumi-lang-dotnet="`AwsTags`" pulumi-lang-go="`awsTags`" pulumi-lang-python="`aws_tags`" pulumi-lang-yaml="`awsTags`" pulumi-lang-java="`awsTags`">`aws_tags`</span> field is used.
|
|
895
917
|
*/
|
|
896
|
-
metadataSyncMode?: pulumi.Input<string>;
|
|
918
|
+
metadataSyncMode?: pulumi.Input<string | undefined>;
|
|
897
919
|
/**
|
|
898
920
|
* The prefix to add to the secret name in AWS Secrets Manager.
|
|
899
921
|
*/
|
|
900
|
-
secretPrefix?: pulumi.Input<string>;
|
|
922
|
+
secretPrefix?: pulumi.Input<string | undefined>;
|
|
901
923
|
}
|
|
902
924
|
export interface IntegrationAwsSecretsManagerOptionsAwsTag {
|
|
903
925
|
/**
|
|
904
926
|
* The key of the tag.
|
|
905
927
|
*/
|
|
906
|
-
key?: pulumi.Input<string>;
|
|
928
|
+
key?: pulumi.Input<string | undefined>;
|
|
907
929
|
/**
|
|
908
930
|
* The value of the tag.
|
|
909
931
|
*/
|
|
910
|
-
value?: pulumi.Input<string>;
|
|
932
|
+
value?: pulumi.Input<string | undefined>;
|
|
911
933
|
}
|
|
912
934
|
export interface IntegrationGcpSecretManagerOptions {
|
|
913
935
|
/**
|
|
914
936
|
* The prefix to add to the secret name in GCP Secret Manager.
|
|
915
937
|
*/
|
|
916
|
-
secretPrefix?: pulumi.Input<string>;
|
|
938
|
+
secretPrefix?: pulumi.Input<string | undefined>;
|
|
917
939
|
/**
|
|
918
940
|
* The suffix to add to the secret name in GCP Secret Manager.
|
|
919
941
|
*/
|
|
920
|
-
secretSuffix?: pulumi.Input<string>;
|
|
942
|
+
secretSuffix?: pulumi.Input<string | undefined>;
|
|
921
943
|
}
|
|
922
944
|
export interface OrgRolePermission {
|
|
923
945
|
/**
|
|
@@ -927,11 +949,11 @@ export interface OrgRolePermission {
|
|
|
927
949
|
/**
|
|
928
950
|
* When specified, only matching conditions will be allowed to access given resource. Refer to the documentation in https://infisical.com/docs/internals/permissions#conditions for the complete list of supported properties and operators.
|
|
929
951
|
*/
|
|
930
|
-
conditions?: pulumi.Input<string>;
|
|
952
|
+
conditions?: pulumi.Input<string | undefined>;
|
|
931
953
|
/**
|
|
932
954
|
* Whether rule forbids. Set this to true if permission forbids.
|
|
933
955
|
*/
|
|
934
|
-
inverted?: pulumi.Input<boolean>;
|
|
956
|
+
inverted?: pulumi.Input<boolean | undefined>;
|
|
935
957
|
/**
|
|
936
958
|
* Describe the entity the permission pertains to.
|
|
937
959
|
*/
|
|
@@ -941,7 +963,7 @@ export interface ProjectGroupRole {
|
|
|
941
963
|
/**
|
|
942
964
|
* Flag to indicate the assigned role is temporary or not. When<span pulumi-lang-nodejs=" isTemporary " pulumi-lang-dotnet=" IsTemporary " pulumi-lang-go=" isTemporary " pulumi-lang-python=" is_temporary " pulumi-lang-yaml=" isTemporary " pulumi-lang-java=" isTemporary "> is_temporary </span>is true fields temporary_mode,<span pulumi-lang-nodejs=" temporaryRange " pulumi-lang-dotnet=" TemporaryRange " pulumi-lang-go=" temporaryRange " pulumi-lang-python=" temporary_range " pulumi-lang-yaml=" temporaryRange " pulumi-lang-java=" temporaryRange "> temporary_range </span>and<span pulumi-lang-nodejs=" temporaryAccessStartTime " pulumi-lang-dotnet=" TemporaryAccessStartTime " pulumi-lang-go=" temporaryAccessStartTime " pulumi-lang-python=" temporary_access_start_time " pulumi-lang-yaml=" temporaryAccessStartTime " pulumi-lang-java=" temporaryAccessStartTime "> temporary_access_start_time </span>is required.
|
|
943
965
|
*/
|
|
944
|
-
isTemporary?: pulumi.Input<boolean>;
|
|
966
|
+
isTemporary?: pulumi.Input<boolean | undefined>;
|
|
945
967
|
/**
|
|
946
968
|
* The slug of the role
|
|
947
969
|
*/
|
|
@@ -949,25 +971,25 @@ export interface ProjectGroupRole {
|
|
|
949
971
|
/**
|
|
950
972
|
* ISO time for which temporary access should begin. This is in the format YYYY-MM-DDTHH:MM:SSZ e.g. 2024-09-19T12:43:13Z
|
|
951
973
|
*/
|
|
952
|
-
temporaryAccessStartTime?: pulumi.Input<string>;
|
|
974
|
+
temporaryAccessStartTime?: pulumi.Input<string | undefined>;
|
|
953
975
|
/**
|
|
954
976
|
* TTL for the temporary time. Eg: 1m, 1h, 1d. Default: 1h
|
|
955
977
|
*/
|
|
956
|
-
temporaryRange?: pulumi.Input<string>;
|
|
978
|
+
temporaryRange?: pulumi.Input<string | undefined>;
|
|
957
979
|
}
|
|
958
980
|
export interface ProjectIdentityIdentity {
|
|
959
981
|
/**
|
|
960
982
|
* The auth methods for the identity
|
|
961
983
|
*/
|
|
962
|
-
authMethods?: pulumi.Input<pulumi.Input<string>[]>;
|
|
984
|
+
authMethods?: pulumi.Input<pulumi.Input<string>[] | undefined>;
|
|
963
985
|
/**
|
|
964
986
|
* The ID of the identity
|
|
965
987
|
*/
|
|
966
|
-
id?: pulumi.Input<string>;
|
|
988
|
+
id?: pulumi.Input<string | undefined>;
|
|
967
989
|
/**
|
|
968
990
|
* The name of the identity
|
|
969
991
|
*/
|
|
970
|
-
name?: pulumi.Input<string>;
|
|
992
|
+
name?: pulumi.Input<string | undefined>;
|
|
971
993
|
}
|
|
972
994
|
export interface ProjectIdentityProvisioningMetadata {
|
|
973
995
|
/**
|
|
@@ -983,15 +1005,15 @@ export interface ProjectIdentityRole {
|
|
|
983
1005
|
/**
|
|
984
1006
|
* The id of the custom role slug
|
|
985
1007
|
*/
|
|
986
|
-
customRoleId?: pulumi.Input<string>;
|
|
1008
|
+
customRoleId?: pulumi.Input<string | undefined>;
|
|
987
1009
|
/**
|
|
988
1010
|
* The ID of the project identity role.
|
|
989
1011
|
*/
|
|
990
|
-
id?: pulumi.Input<string>;
|
|
1012
|
+
id?: pulumi.Input<string | undefined>;
|
|
991
1013
|
/**
|
|
992
1014
|
* Flag to indicate the assigned role is temporary or not. When<span pulumi-lang-nodejs=" isTemporary " pulumi-lang-dotnet=" IsTemporary " pulumi-lang-go=" isTemporary " pulumi-lang-python=" is_temporary " pulumi-lang-yaml=" isTemporary " pulumi-lang-java=" isTemporary "> is_temporary </span>is true fields temporary_mode,<span pulumi-lang-nodejs=" temporaryRange " pulumi-lang-dotnet=" TemporaryRange " pulumi-lang-go=" temporaryRange " pulumi-lang-python=" temporary_range " pulumi-lang-yaml=" temporaryRange " pulumi-lang-java=" temporaryRange "> temporary_range </span>and<span pulumi-lang-nodejs=" temporaryAccessStartTime " pulumi-lang-dotnet=" TemporaryAccessStartTime " pulumi-lang-go=" temporaryAccessStartTime " pulumi-lang-python=" temporary_access_start_time " pulumi-lang-yaml=" temporaryAccessStartTime " pulumi-lang-java=" temporaryAccessStartTime "> temporary_access_start_time </span>is required.
|
|
993
1015
|
*/
|
|
994
|
-
isTemporary?: pulumi.Input<boolean>;
|
|
1016
|
+
isTemporary?: pulumi.Input<boolean | undefined>;
|
|
995
1017
|
/**
|
|
996
1018
|
* The slug of the role
|
|
997
1019
|
*/
|
|
@@ -999,19 +1021,19 @@ export interface ProjectIdentityRole {
|
|
|
999
1021
|
/**
|
|
1000
1022
|
* ISO time for which temporary access will end. Computed based on<span pulumi-lang-nodejs=" temporaryRange " pulumi-lang-dotnet=" TemporaryRange " pulumi-lang-go=" temporaryRange " pulumi-lang-python=" temporary_range " pulumi-lang-yaml=" temporaryRange " pulumi-lang-java=" temporaryRange "> temporary_range </span>and temporary_access_start_time
|
|
1001
1023
|
*/
|
|
1002
|
-
temporaryAccessEndTime?: pulumi.Input<string>;
|
|
1024
|
+
temporaryAccessEndTime?: pulumi.Input<string | undefined>;
|
|
1003
1025
|
/**
|
|
1004
1026
|
* ISO time for which temporary access should begin. The current time is used by default.
|
|
1005
1027
|
*/
|
|
1006
|
-
temporaryAccessStartTime?: pulumi.Input<string>;
|
|
1028
|
+
temporaryAccessStartTime?: pulumi.Input<string | undefined>;
|
|
1007
1029
|
/**
|
|
1008
1030
|
* Type of temporary access given. Types: relative. Default: relative
|
|
1009
1031
|
*/
|
|
1010
|
-
temporaryMode?: pulumi.Input<string>;
|
|
1032
|
+
temporaryMode?: pulumi.Input<string | undefined>;
|
|
1011
1033
|
/**
|
|
1012
1034
|
* TTL for the temporary time. Eg: 1m, 1h, 1d. Default: 1h
|
|
1013
1035
|
*/
|
|
1014
|
-
temporaryRange?: pulumi.Input<string>;
|
|
1036
|
+
temporaryRange?: pulumi.Input<string | undefined>;
|
|
1015
1037
|
}
|
|
1016
1038
|
export interface ProjectIdentitySpecificPrivilegePermission {
|
|
1017
1039
|
/**
|
|
@@ -1035,7 +1057,7 @@ export interface ProjectIdentitySpecificPrivilegePermissionConditions {
|
|
|
1035
1057
|
/**
|
|
1036
1058
|
* The secret path this permission should be scoped to
|
|
1037
1059
|
*/
|
|
1038
|
-
secretPath?: pulumi.Input<string>;
|
|
1060
|
+
secretPath?: pulumi.Input<string | undefined>;
|
|
1039
1061
|
}
|
|
1040
1062
|
export interface ProjectIdentitySpecificPrivilegePermissionsV2 {
|
|
1041
1063
|
/**
|
|
@@ -1045,11 +1067,11 @@ export interface ProjectIdentitySpecificPrivilegePermissionsV2 {
|
|
|
1045
1067
|
/**
|
|
1046
1068
|
* When specified, only matching conditions will be allowed to access given resource. Refer to the documentation in https://infisical.com/docs/internals/permissions#conditions for the complete list of supported properties and operators.
|
|
1047
1069
|
*/
|
|
1048
|
-
conditions?: pulumi.Input<string>;
|
|
1070
|
+
conditions?: pulumi.Input<string | undefined>;
|
|
1049
1071
|
/**
|
|
1050
1072
|
* Whether rule forbids. Set this to true if permission forbids.
|
|
1051
1073
|
*/
|
|
1052
|
-
inverted?: pulumi.Input<boolean>;
|
|
1074
|
+
inverted?: pulumi.Input<boolean | undefined>;
|
|
1053
1075
|
/**
|
|
1054
1076
|
* Describe the entity the permission pertains to.
|
|
1055
1077
|
*/
|
|
@@ -1063,7 +1085,7 @@ export interface ProjectRolePermission {
|
|
|
1063
1085
|
/**
|
|
1064
1086
|
* The conditions to scope permissions
|
|
1065
1087
|
*/
|
|
1066
|
-
conditions?: pulumi.Input<inputs.ProjectRolePermissionConditions>;
|
|
1088
|
+
conditions?: pulumi.Input<inputs.ProjectRolePermissionConditions | undefined>;
|
|
1067
1089
|
/**
|
|
1068
1090
|
* Describe what action an entity can take. Enum: role,member,groups,settings,integrations,webhooks,service-tokens,environments,tags,audit-logs,ip-allowlist,workspace,secrets,secret-rollback,secret-approval,secret-rotation,identity,certificate-authorities,certificates,certificate-policies,kms,pki-alerts,pki-collections
|
|
1069
1091
|
*/
|
|
@@ -1073,11 +1095,11 @@ export interface ProjectRolePermissionConditions {
|
|
|
1073
1095
|
/**
|
|
1074
1096
|
* The environment slug this permission should allow.
|
|
1075
1097
|
*/
|
|
1076
|
-
environment?: pulumi.Input<string>;
|
|
1098
|
+
environment?: pulumi.Input<string | undefined>;
|
|
1077
1099
|
/**
|
|
1078
1100
|
* The secret path this permission should be scoped to
|
|
1079
1101
|
*/
|
|
1080
|
-
secretPath?: pulumi.Input<string>;
|
|
1102
|
+
secretPath?: pulumi.Input<string | undefined>;
|
|
1081
1103
|
}
|
|
1082
1104
|
export interface ProjectRolePermissionsV2 {
|
|
1083
1105
|
/**
|
|
@@ -1087,11 +1109,11 @@ export interface ProjectRolePermissionsV2 {
|
|
|
1087
1109
|
/**
|
|
1088
1110
|
* When specified, only matching conditions will be allowed to access given resource. Refer to the documentation in https://infisical.com/docs/internals/permissions#conditions for the complete list of supported properties and operators.
|
|
1089
1111
|
*/
|
|
1090
|
-
conditions?: pulumi.Input<string>;
|
|
1112
|
+
conditions?: pulumi.Input<string | undefined>;
|
|
1091
1113
|
/**
|
|
1092
1114
|
* Whether rule forbids. Set this to true if permission forbids.
|
|
1093
1115
|
*/
|
|
1094
|
-
inverted?: pulumi.Input<boolean>;
|
|
1116
|
+
inverted?: pulumi.Input<boolean | undefined>;
|
|
1095
1117
|
/**
|
|
1096
1118
|
* Describe the entity the permission pertains to.
|
|
1097
1119
|
*/
|
|
@@ -1119,7 +1141,7 @@ export interface ProjectTemplateRole {
|
|
|
1119
1141
|
/**
|
|
1120
1142
|
* The permissions assigned to the role. Refer to the documentation here https://infisical.com/docs/api-reference/endpoints/project-templates/create#body-roles-permissions for its usage.
|
|
1121
1143
|
*/
|
|
1122
|
-
permissions?: pulumi.Input<pulumi.Input<inputs.ProjectTemplateRolePermission>[]>;
|
|
1144
|
+
permissions?: pulumi.Input<pulumi.Input<inputs.ProjectTemplateRolePermission>[] | undefined>;
|
|
1123
1145
|
/**
|
|
1124
1146
|
* The slug of the role
|
|
1125
1147
|
*/
|
|
@@ -1133,11 +1155,11 @@ export interface ProjectTemplateRolePermission {
|
|
|
1133
1155
|
/**
|
|
1134
1156
|
* When specified, only matching conditions will be allowed to access given resource. Refer to the documentation in https://infisical.com/docs/internals/permissions#conditions for the complete list of supported properties and operators.
|
|
1135
1157
|
*/
|
|
1136
|
-
conditions?: pulumi.Input<string>;
|
|
1158
|
+
conditions?: pulumi.Input<string | undefined>;
|
|
1137
1159
|
/**
|
|
1138
1160
|
* Whether rule forbids. Set this to true if permission forbids.
|
|
1139
1161
|
*/
|
|
1140
|
-
inverted?: pulumi.Input<boolean>;
|
|
1162
|
+
inverted?: pulumi.Input<boolean | undefined>;
|
|
1141
1163
|
/**
|
|
1142
1164
|
* Describe the entity the permission pertains to.
|
|
1143
1165
|
*/
|
|
@@ -1147,15 +1169,15 @@ export interface ProjectUserRole {
|
|
|
1147
1169
|
/**
|
|
1148
1170
|
* The id of the custom role slug
|
|
1149
1171
|
*/
|
|
1150
|
-
customRoleId?: pulumi.Input<string>;
|
|
1172
|
+
customRoleId?: pulumi.Input<string | undefined>;
|
|
1151
1173
|
/**
|
|
1152
1174
|
* The ID of the project user role.
|
|
1153
1175
|
*/
|
|
1154
|
-
id?: pulumi.Input<string>;
|
|
1176
|
+
id?: pulumi.Input<string | undefined>;
|
|
1155
1177
|
/**
|
|
1156
1178
|
* Flag to indicate the assigned role is temporary or not. When<span pulumi-lang-nodejs=" isTemporary " pulumi-lang-dotnet=" IsTemporary " pulumi-lang-go=" isTemporary " pulumi-lang-python=" is_temporary " pulumi-lang-yaml=" isTemporary " pulumi-lang-java=" isTemporary "> is_temporary </span>is true fields temporary_mode,<span pulumi-lang-nodejs=" temporaryRange " pulumi-lang-dotnet=" TemporaryRange " pulumi-lang-go=" temporaryRange " pulumi-lang-python=" temporary_range " pulumi-lang-yaml=" temporaryRange " pulumi-lang-java=" temporaryRange "> temporary_range </span>and<span pulumi-lang-nodejs=" temporaryAccessStartTime " pulumi-lang-dotnet=" TemporaryAccessStartTime " pulumi-lang-go=" temporaryAccessStartTime " pulumi-lang-python=" temporary_access_start_time " pulumi-lang-yaml=" temporaryAccessStartTime " pulumi-lang-java=" temporaryAccessStartTime "> temporary_access_start_time </span>is required.
|
|
1157
1179
|
*/
|
|
1158
|
-
isTemporary?: pulumi.Input<boolean>;
|
|
1180
|
+
isTemporary?: pulumi.Input<boolean | undefined>;
|
|
1159
1181
|
/**
|
|
1160
1182
|
* The slug of the role
|
|
1161
1183
|
*/
|
|
@@ -1163,109 +1185,109 @@ export interface ProjectUserRole {
|
|
|
1163
1185
|
/**
|
|
1164
1186
|
* ISO time for which temporary access will end. Computed based on<span pulumi-lang-nodejs=" temporaryRange " pulumi-lang-dotnet=" TemporaryRange " pulumi-lang-go=" temporaryRange " pulumi-lang-python=" temporary_range " pulumi-lang-yaml=" temporaryRange " pulumi-lang-java=" temporaryRange "> temporary_range </span>and temporary_access_start_time
|
|
1165
1187
|
*/
|
|
1166
|
-
temporaryAccessEndTime?: pulumi.Input<string>;
|
|
1188
|
+
temporaryAccessEndTime?: pulumi.Input<string | undefined>;
|
|
1167
1189
|
/**
|
|
1168
1190
|
* ISO time for which temporary access should begin. The current time is used by default.
|
|
1169
1191
|
*/
|
|
1170
|
-
temporaryAccessStartTime?: pulumi.Input<string>;
|
|
1192
|
+
temporaryAccessStartTime?: pulumi.Input<string | undefined>;
|
|
1171
1193
|
/**
|
|
1172
1194
|
* Type of temporary access given. Types: relative. Default: relative
|
|
1173
1195
|
*/
|
|
1174
|
-
temporaryMode?: pulumi.Input<string>;
|
|
1196
|
+
temporaryMode?: pulumi.Input<string | undefined>;
|
|
1175
1197
|
/**
|
|
1176
1198
|
* TTL for the temporary time. Eg: 1m, 1h, 1d. Default: 1h
|
|
1177
1199
|
*/
|
|
1178
|
-
temporaryRange?: pulumi.Input<string>;
|
|
1200
|
+
temporaryRange?: pulumi.Input<string | undefined>;
|
|
1179
1201
|
}
|
|
1180
1202
|
export interface ProjectUserUser {
|
|
1181
1203
|
/**
|
|
1182
1204
|
* The email of the user
|
|
1183
1205
|
*/
|
|
1184
|
-
email?: pulumi.Input<string>;
|
|
1206
|
+
email?: pulumi.Input<string | undefined>;
|
|
1185
1207
|
/**
|
|
1186
1208
|
* The first name of the user
|
|
1187
1209
|
*/
|
|
1188
|
-
firstName?: pulumi.Input<string>;
|
|
1210
|
+
firstName?: pulumi.Input<string | undefined>;
|
|
1189
1211
|
/**
|
|
1190
1212
|
* The id of the user
|
|
1191
1213
|
*/
|
|
1192
|
-
id?: pulumi.Input<string>;
|
|
1214
|
+
id?: pulumi.Input<string | undefined>;
|
|
1193
1215
|
/**
|
|
1194
1216
|
* The last name of the user
|
|
1195
1217
|
*/
|
|
1196
|
-
lastName?: pulumi.Input<string>;
|
|
1218
|
+
lastName?: pulumi.Input<string | undefined>;
|
|
1197
1219
|
}
|
|
1198
1220
|
export interface ProviderAuth {
|
|
1199
1221
|
/**
|
|
1200
1222
|
* The configuration values for AWS IAM Auth
|
|
1201
1223
|
*/
|
|
1202
|
-
awsIam?: pulumi.Input<inputs.ProviderAuthAwsIam>;
|
|
1224
|
+
awsIam?: pulumi.Input<inputs.ProviderAuthAwsIam | undefined>;
|
|
1203
1225
|
/**
|
|
1204
1226
|
* The configuration values for Kubernetes Auth
|
|
1205
1227
|
*/
|
|
1206
|
-
kubernetes?: pulumi.Input<inputs.ProviderAuthKubernetes>;
|
|
1228
|
+
kubernetes?: pulumi.Input<inputs.ProviderAuthKubernetes | undefined>;
|
|
1207
1229
|
/**
|
|
1208
1230
|
* The configuration values for OIDC Auth
|
|
1209
1231
|
*/
|
|
1210
|
-
oidc?: pulumi.Input<inputs.ProviderAuthOidc>;
|
|
1232
|
+
oidc?: pulumi.Input<inputs.ProviderAuthOidc | undefined>;
|
|
1211
1233
|
/**
|
|
1212
1234
|
* When set, this will scope the login session to the specified organization the machine identity has access to. If left empty, the session defaults to the organization where the machine identity was created in.
|
|
1213
1235
|
*/
|
|
1214
|
-
organizationSlug?: pulumi.Input<string>;
|
|
1236
|
+
organizationSlug?: pulumi.Input<string | undefined>;
|
|
1215
1237
|
/**
|
|
1216
1238
|
* The authentication token for Machine Identity Token Auth. This attribute can also be set using the `INFISICAL_TOKEN` environment variable
|
|
1217
1239
|
*/
|
|
1218
|
-
token?: pulumi.Input<string>;
|
|
1240
|
+
token?: pulumi.Input<string | undefined>;
|
|
1219
1241
|
/**
|
|
1220
1242
|
* The configuration values for Universal Auth
|
|
1221
1243
|
*/
|
|
1222
|
-
universal?: pulumi.Input<inputs.ProviderAuthUniversal>;
|
|
1244
|
+
universal?: pulumi.Input<inputs.ProviderAuthUniversal | undefined>;
|
|
1223
1245
|
}
|
|
1224
1246
|
export interface ProviderAuthAwsIam {
|
|
1225
1247
|
/**
|
|
1226
1248
|
* Machine identity ID. This attribute can also be set using the `INFISICAL_MACHINE_IDENTITY_ID` environment variable
|
|
1227
1249
|
*/
|
|
1228
|
-
identityId?: pulumi.Input<string>;
|
|
1250
|
+
identityId?: pulumi.Input<string | undefined>;
|
|
1229
1251
|
}
|
|
1230
1252
|
export interface ProviderAuthKubernetes {
|
|
1231
1253
|
/**
|
|
1232
1254
|
* Machine identity ID. This attribute can also be set using the `INFISICAL_MACHINE_IDENTITY_ID` environment variable
|
|
1233
1255
|
*/
|
|
1234
|
-
identityId?: pulumi.Input<string>;
|
|
1256
|
+
identityId?: pulumi.Input<string | undefined>;
|
|
1235
1257
|
/**
|
|
1236
1258
|
* The service account token. This attribute can also be set using the `INFISICAL_KUBERNETES_SERVICE_ACCOUNT_TOKEN` environment variable
|
|
1237
1259
|
*/
|
|
1238
|
-
serviceAccountToken?: pulumi.Input<string>;
|
|
1260
|
+
serviceAccountToken?: pulumi.Input<string | undefined>;
|
|
1239
1261
|
/**
|
|
1240
1262
|
* The path to the service account token. This attribute can also be set using the `INFISICAL_KUBERNETES_SERVICE_ACCOUNT_TOKEN_PATH` environment variable. Default is `/var/run/secrets/kubernetes.io/serviceaccount/token`.
|
|
1241
1263
|
*/
|
|
1242
|
-
serviceAccountTokenPath?: pulumi.Input<string>;
|
|
1264
|
+
serviceAccountTokenPath?: pulumi.Input<string | undefined>;
|
|
1243
1265
|
}
|
|
1244
1266
|
export interface ProviderAuthOidc {
|
|
1245
1267
|
/**
|
|
1246
1268
|
* Machine identity ID. This attribute can also be set using the `INFISICAL_MACHINE_IDENTITY_ID` environment variable
|
|
1247
1269
|
*/
|
|
1248
|
-
identityId?: pulumi.Input<string>;
|
|
1270
|
+
identityId?: pulumi.Input<string | undefined>;
|
|
1249
1271
|
/**
|
|
1250
1272
|
* The environment variable name for the OIDC JWT token. This attribute can also be set using the `INFISICAL_OIDC_AUTH_TOKEN_KEY_NAME` environment variable. Default is `INFISICAL_AUTH_JWT`.
|
|
1251
1273
|
*/
|
|
1252
|
-
tokenEnvironmentVariableName?: pulumi.Input<string>;
|
|
1274
|
+
tokenEnvironmentVariableName?: pulumi.Input<string | undefined>;
|
|
1253
1275
|
}
|
|
1254
1276
|
export interface ProviderAuthUniversal {
|
|
1255
1277
|
/**
|
|
1256
1278
|
* Machine identity client ID. This attribute can also be set using the `INFISICAL_UNIVERSAL_AUTH_CLIENT_ID` environment variable
|
|
1257
1279
|
*/
|
|
1258
|
-
clientId?: pulumi.Input<string>;
|
|
1280
|
+
clientId?: pulumi.Input<string | undefined>;
|
|
1259
1281
|
/**
|
|
1260
1282
|
* Machine identity client secret. This attribute can also be set using the `INFISICAL_UNIVERSAL_AUTH_CLIENT_SECRET` environment variable
|
|
1261
1283
|
*/
|
|
1262
|
-
clientSecret?: pulumi.Input<string>;
|
|
1284
|
+
clientSecret?: pulumi.Input<string | undefined>;
|
|
1263
1285
|
}
|
|
1264
1286
|
export interface SecretApprovalPolicyApprover {
|
|
1265
1287
|
/**
|
|
1266
1288
|
* The ID of the approver
|
|
1267
1289
|
*/
|
|
1268
|
-
id?: pulumi.Input<string>;
|
|
1290
|
+
id?: pulumi.Input<string | undefined>;
|
|
1269
1291
|
/**
|
|
1270
1292
|
* The type of approver. Either group or user
|
|
1271
1293
|
*/
|
|
@@ -1273,7 +1295,7 @@ export interface SecretApprovalPolicyApprover {
|
|
|
1273
1295
|
/**
|
|
1274
1296
|
* The username of the approver. By default, this is the email
|
|
1275
1297
|
*/
|
|
1276
|
-
username?: pulumi.Input<string>;
|
|
1298
|
+
username?: pulumi.Input<string | undefined>;
|
|
1277
1299
|
}
|
|
1278
1300
|
export interface SecretRotationAwsIamUserSecretParameters {
|
|
1279
1301
|
/**
|
|
@@ -1289,11 +1311,11 @@ export interface SecretRotationAwsIamUserSecretRotateAtUtc {
|
|
|
1289
1311
|
/**
|
|
1290
1312
|
* The hour at which the rotation should occur (UTC).
|
|
1291
1313
|
*/
|
|
1292
|
-
hours?: pulumi.Input<number>;
|
|
1314
|
+
hours?: pulumi.Input<number | undefined>;
|
|
1293
1315
|
/**
|
|
1294
1316
|
* The minute at which the rotation should occur (UTC).
|
|
1295
1317
|
*/
|
|
1296
|
-
minutes?: pulumi.Input<number>;
|
|
1318
|
+
minutes?: pulumi.Input<number | undefined>;
|
|
1297
1319
|
}
|
|
1298
1320
|
export interface SecretRotationAwsIamUserSecretSecretsMapping {
|
|
1299
1321
|
/**
|
|
@@ -1321,11 +1343,11 @@ export interface SecretRotationAzureClientSecretRotateAtUtc {
|
|
|
1321
1343
|
/**
|
|
1322
1344
|
* The hour at which the rotation should occur (UTC).
|
|
1323
1345
|
*/
|
|
1324
|
-
hours?: pulumi.Input<number>;
|
|
1346
|
+
hours?: pulumi.Input<number | undefined>;
|
|
1325
1347
|
/**
|
|
1326
1348
|
* The minute at which the rotation should occur (UTC).
|
|
1327
1349
|
*/
|
|
1328
|
-
minutes?: pulumi.Input<number>;
|
|
1350
|
+
minutes?: pulumi.Input<number | undefined>;
|
|
1329
1351
|
}
|
|
1330
1352
|
export interface SecretRotationAzureClientSecretSecretsMapping {
|
|
1331
1353
|
/**
|
|
@@ -1351,13 +1373,13 @@ export interface SecretRotationLdapPasswordParameters {
|
|
|
1351
1373
|
/**
|
|
1352
1374
|
* The method to use for rotating the password. Supported options: connection-principal and target-principal (default: connection-principal)
|
|
1353
1375
|
*/
|
|
1354
|
-
rotationMethod?: pulumi.Input<string>;
|
|
1376
|
+
rotationMethod?: pulumi.Input<string | undefined>;
|
|
1355
1377
|
}
|
|
1356
1378
|
export interface SecretRotationLdapPasswordParametersPasswordRequirements {
|
|
1357
1379
|
/**
|
|
1358
1380
|
* String of allowed symbols for password generation.
|
|
1359
1381
|
*/
|
|
1360
|
-
allowedSymbols?: pulumi.Input<string>;
|
|
1382
|
+
allowedSymbols?: pulumi.Input<string | undefined>;
|
|
1361
1383
|
/**
|
|
1362
1384
|
* The length of the generated password.
|
|
1363
1385
|
*/
|
|
@@ -1389,11 +1411,11 @@ export interface SecretRotationLdapPasswordRotateAtUtc {
|
|
|
1389
1411
|
/**
|
|
1390
1412
|
* The hour at which the rotation should occur (UTC).
|
|
1391
1413
|
*/
|
|
1392
|
-
hours?: pulumi.Input<number>;
|
|
1414
|
+
hours?: pulumi.Input<number | undefined>;
|
|
1393
1415
|
/**
|
|
1394
1416
|
* The minute at which the rotation should occur (UTC).
|
|
1395
1417
|
*/
|
|
1396
|
-
minutes?: pulumi.Input<number>;
|
|
1418
|
+
minutes?: pulumi.Input<number | undefined>;
|
|
1397
1419
|
}
|
|
1398
1420
|
export interface SecretRotationLdapPasswordSecretsMapping {
|
|
1399
1421
|
/**
|
|
@@ -1409,7 +1431,7 @@ export interface SecretRotationLdapPasswordTemporaryParameters {
|
|
|
1409
1431
|
/**
|
|
1410
1432
|
* The password of the provided principal if 'parameters.rotation_method' is set to 'target-principal'.
|
|
1411
1433
|
*/
|
|
1412
|
-
password?: pulumi.Input<string>;
|
|
1434
|
+
password?: pulumi.Input<string | undefined>;
|
|
1413
1435
|
}
|
|
1414
1436
|
export interface SecretRotationMssqlCredentialsParameters {
|
|
1415
1437
|
/**
|
|
@@ -1425,11 +1447,11 @@ export interface SecretRotationMssqlCredentialsRotateAtUtc {
|
|
|
1425
1447
|
/**
|
|
1426
1448
|
* The hour at which the rotation should occur (UTC).
|
|
1427
1449
|
*/
|
|
1428
|
-
hours?: pulumi.Input<number>;
|
|
1450
|
+
hours?: pulumi.Input<number | undefined>;
|
|
1429
1451
|
/**
|
|
1430
1452
|
* The minute at which the rotation should occur (UTC).
|
|
1431
1453
|
*/
|
|
1432
|
-
minutes?: pulumi.Input<number>;
|
|
1454
|
+
minutes?: pulumi.Input<number | undefined>;
|
|
1433
1455
|
}
|
|
1434
1456
|
export interface SecretRotationMssqlCredentialsSecretsMapping {
|
|
1435
1457
|
/**
|
|
@@ -1457,11 +1479,11 @@ export interface SecretRotationMysqlCredentialsRotateAtUtc {
|
|
|
1457
1479
|
/**
|
|
1458
1480
|
* The hour at which the rotation should occur (UTC).
|
|
1459
1481
|
*/
|
|
1460
|
-
hours?: pulumi.Input<number>;
|
|
1482
|
+
hours?: pulumi.Input<number | undefined>;
|
|
1461
1483
|
/**
|
|
1462
1484
|
* The minute at which the rotation should occur (UTC).
|
|
1463
1485
|
*/
|
|
1464
|
-
minutes?: pulumi.Input<number>;
|
|
1486
|
+
minutes?: pulumi.Input<number | undefined>;
|
|
1465
1487
|
}
|
|
1466
1488
|
export interface SecretRotationMysqlCredentialsSecretsMapping {
|
|
1467
1489
|
/**
|
|
@@ -1489,11 +1511,11 @@ export interface SecretRotationOracledbCredentialsRotateAtUtc {
|
|
|
1489
1511
|
/**
|
|
1490
1512
|
* The hour at which the rotation should occur (UTC).
|
|
1491
1513
|
*/
|
|
1492
|
-
hours?: pulumi.Input<number>;
|
|
1514
|
+
hours?: pulumi.Input<number | undefined>;
|
|
1493
1515
|
/**
|
|
1494
1516
|
* The minute at which the rotation should occur (UTC).
|
|
1495
1517
|
*/
|
|
1496
|
-
minutes?: pulumi.Input<number>;
|
|
1518
|
+
minutes?: pulumi.Input<number | undefined>;
|
|
1497
1519
|
}
|
|
1498
1520
|
export interface SecretRotationOracledbCredentialsSecretsMapping {
|
|
1499
1521
|
/**
|
|
@@ -1521,11 +1543,11 @@ export interface SecretRotationPostgresCredentialsRotateAtUtc {
|
|
|
1521
1543
|
/**
|
|
1522
1544
|
* The hour at which the rotation should occur (UTC).
|
|
1523
1545
|
*/
|
|
1524
|
-
hours?: pulumi.Input<number>;
|
|
1546
|
+
hours?: pulumi.Input<number | undefined>;
|
|
1525
1547
|
/**
|
|
1526
1548
|
* The minute at which the rotation should occur (UTC).
|
|
1527
1549
|
*/
|
|
1528
|
-
minutes?: pulumi.Input<number>;
|
|
1550
|
+
minutes?: pulumi.Input<number | undefined>;
|
|
1529
1551
|
}
|
|
1530
1552
|
export interface SecretRotationPostgresCredentialsSecretsMapping {
|
|
1531
1553
|
/**
|
|
@@ -1543,7 +1565,7 @@ export interface SecretSecretReminder {
|
|
|
1543
1565
|
/**
|
|
1544
1566
|
* Note for the secret rotation reminder
|
|
1545
1567
|
*/
|
|
1546
|
-
note?: pulumi.Input<string>;
|
|
1568
|
+
note?: pulumi.Input<string | undefined>;
|
|
1547
1569
|
/**
|
|
1548
1570
|
* Frequency of secret rotation reminder in days
|
|
1549
1571
|
*/
|
|
@@ -1553,7 +1575,7 @@ export interface SecretSync1passwordDestinationConfig {
|
|
|
1553
1575
|
/**
|
|
1554
1576
|
* The label of the 1Password item field which will hold your secret value. For example, if you were to sync Infisical secret 'foo: bar', the 1Password item equivalent would have an item title of 'foo', and a field on that item 'value: bar'. The field label 'value' is what gets changed by this option
|
|
1555
1577
|
*/
|
|
1556
|
-
valueLabel?: pulumi.Input<string>;
|
|
1578
|
+
valueLabel?: pulumi.Input<string | undefined>;
|
|
1557
1579
|
/**
|
|
1558
1580
|
* The ID of the 1Password vault to sync secrets to
|
|
1559
1581
|
*/
|
|
@@ -1563,7 +1585,7 @@ export interface SecretSync1passwordSyncOptions {
|
|
|
1563
1585
|
/**
|
|
1564
1586
|
* When set to true, Infisical will not remove secrets from 1Password. Enable this option if you intend to manage some secrets manually outside of Infisical.
|
|
1565
1587
|
*/
|
|
1566
|
-
disableSecretDeletion?: pulumi.Input<boolean>;
|
|
1588
|
+
disableSecretDeletion?: pulumi.Input<boolean | undefined>;
|
|
1567
1589
|
/**
|
|
1568
1590
|
* Specify how Infisical should resolve the initial sync to the destination. Supported options: overwrite-destination, import-prioritize-source, import-prioritize-destination
|
|
1569
1591
|
*/
|
|
@@ -1571,7 +1593,7 @@ export interface SecretSync1passwordSyncOptions {
|
|
|
1571
1593
|
/**
|
|
1572
1594
|
* The format to use for structuring secret keys in the 1Password destination.
|
|
1573
1595
|
*/
|
|
1574
|
-
keySchema?: pulumi.Input<string>;
|
|
1596
|
+
keySchema?: pulumi.Input<string | undefined>;
|
|
1575
1597
|
}
|
|
1576
1598
|
export interface SecretSyncAwsParameterStoreDestinationConfig {
|
|
1577
1599
|
/**
|
|
@@ -1587,11 +1609,11 @@ export interface SecretSyncAwsParameterStoreSyncOptions {
|
|
|
1587
1609
|
/**
|
|
1588
1610
|
* The AWS KMS key ID to use for encryption
|
|
1589
1611
|
*/
|
|
1590
|
-
awsKmsKeyId?: pulumi.Input<string>;
|
|
1612
|
+
awsKmsKeyId?: pulumi.Input<string | undefined>;
|
|
1591
1613
|
/**
|
|
1592
1614
|
* When set to true, Infisical will not remove secrets from AWS Parameter Store. Enable this option if you intend to manage some secrets manually outside of Infisical.
|
|
1593
1615
|
*/
|
|
1594
|
-
disableSecretDeletion?: pulumi.Input<boolean>;
|
|
1616
|
+
disableSecretDeletion?: pulumi.Input<boolean | undefined>;
|
|
1595
1617
|
/**
|
|
1596
1618
|
* Specify how Infisical should resolve the initial sync to the destination. Supported options: overwrite-destination, import-prioritize-source, import-prioritize-destination
|
|
1597
1619
|
*/
|
|
@@ -1599,15 +1621,15 @@ export interface SecretSyncAwsParameterStoreSyncOptions {
|
|
|
1599
1621
|
/**
|
|
1600
1622
|
* The format to use for structuring secret keys in the AWS Parameter Store destination.
|
|
1601
1623
|
*/
|
|
1602
|
-
keySchema?: pulumi.Input<string>;
|
|
1624
|
+
keySchema?: pulumi.Input<string | undefined>;
|
|
1603
1625
|
/**
|
|
1604
1626
|
* Whether to sync the secret metadata as tags
|
|
1605
1627
|
*/
|
|
1606
|
-
syncSecretMetadataAsTags?: pulumi.Input<boolean>;
|
|
1628
|
+
syncSecretMetadataAsTags?: pulumi.Input<boolean | undefined>;
|
|
1607
1629
|
/**
|
|
1608
1630
|
* The tags to sync to the secret
|
|
1609
1631
|
*/
|
|
1610
|
-
tags?: pulumi.Input<pulumi.Input<inputs.SecretSyncAwsParameterStoreSyncOptionsTag>[]>;
|
|
1632
|
+
tags?: pulumi.Input<pulumi.Input<inputs.SecretSyncAwsParameterStoreSyncOptionsTag>[] | undefined>;
|
|
1611
1633
|
}
|
|
1612
1634
|
export interface SecretSyncAwsParameterStoreSyncOptionsTag {
|
|
1613
1635
|
/**
|
|
@@ -1627,21 +1649,21 @@ export interface SecretSyncAwsSecretsManagerDestinationConfig {
|
|
|
1627
1649
|
/**
|
|
1628
1650
|
* The name of the AWS secret to map to. This only applies when<span pulumi-lang-nodejs=" mappingBehavior " pulumi-lang-dotnet=" MappingBehavior " pulumi-lang-go=" mappingBehavior " pulumi-lang-python=" mapping_behavior " pulumi-lang-yaml=" mappingBehavior " pulumi-lang-java=" mappingBehavior "> mapping_behavior </span>is set to 'many-to-one'.
|
|
1629
1651
|
*/
|
|
1630
|
-
awsSecretsManagerSecretName?: pulumi.Input<string>;
|
|
1652
|
+
awsSecretsManagerSecretName?: pulumi.Input<string | undefined>;
|
|
1631
1653
|
/**
|
|
1632
1654
|
* The behavior of the mapping. Can be 'many-to-one' or 'one-to-one'. Many to One: All Infisical secrets will be mapped to a single AWS secret. One to One: Each Infisical secret will be mapped to its own AWS secret.
|
|
1633
1655
|
*/
|
|
1634
|
-
mappingBehavior?: pulumi.Input<string>;
|
|
1656
|
+
mappingBehavior?: pulumi.Input<string | undefined>;
|
|
1635
1657
|
}
|
|
1636
1658
|
export interface SecretSyncAwsSecretsManagerSyncOptions {
|
|
1637
1659
|
/**
|
|
1638
1660
|
* The AWS KMS key ID to use for encryption
|
|
1639
1661
|
*/
|
|
1640
|
-
awsKmsKeyId?: pulumi.Input<string>;
|
|
1662
|
+
awsKmsKeyId?: pulumi.Input<string | undefined>;
|
|
1641
1663
|
/**
|
|
1642
1664
|
* When set to true, Infisical will not remove secrets from AWS Secrets Manager. Enable this option if you intend to manage some secrets manually outside of Infisical.
|
|
1643
1665
|
*/
|
|
1644
|
-
disableSecretDeletion?: pulumi.Input<boolean>;
|
|
1666
|
+
disableSecretDeletion?: pulumi.Input<boolean | undefined>;
|
|
1645
1667
|
/**
|
|
1646
1668
|
* Specify how Infisical should resolve the initial sync to the destination. Supported options: overwrite-destination, import-prioritize-source, import-prioritize-destination
|
|
1647
1669
|
*/
|
|
@@ -1649,15 +1671,15 @@ export interface SecretSyncAwsSecretsManagerSyncOptions {
|
|
|
1649
1671
|
/**
|
|
1650
1672
|
* The format to use for structuring secret keys in the AWS Secrets Manager destination.
|
|
1651
1673
|
*/
|
|
1652
|
-
keySchema?: pulumi.Input<string>;
|
|
1674
|
+
keySchema?: pulumi.Input<string | undefined>;
|
|
1653
1675
|
/**
|
|
1654
1676
|
* Whether to sync the secret metadata as tags. This is only supported for the 'one-to-one' mapping behavior.
|
|
1655
1677
|
*/
|
|
1656
|
-
syncSecretMetadataAsTags?: pulumi.Input<boolean>;
|
|
1678
|
+
syncSecretMetadataAsTags?: pulumi.Input<boolean | undefined>;
|
|
1657
1679
|
/**
|
|
1658
1680
|
* The tags to sync to the secret
|
|
1659
1681
|
*/
|
|
1660
|
-
tags?: pulumi.Input<pulumi.Input<inputs.SecretSyncAwsSecretsManagerSyncOptionsTag>[]>;
|
|
1682
|
+
tags?: pulumi.Input<pulumi.Input<inputs.SecretSyncAwsSecretsManagerSyncOptionsTag>[] | undefined>;
|
|
1661
1683
|
}
|
|
1662
1684
|
export interface SecretSyncAwsSecretsManagerSyncOptionsTag {
|
|
1663
1685
|
/**
|
|
@@ -1677,13 +1699,13 @@ export interface SecretSyncAzureAppConfigurationDestinationConfig {
|
|
|
1677
1699
|
/**
|
|
1678
1700
|
* The label to attach to secrets created in Azure App Configuration
|
|
1679
1701
|
*/
|
|
1680
|
-
label?: pulumi.Input<string>;
|
|
1702
|
+
label?: pulumi.Input<string | undefined>;
|
|
1681
1703
|
}
|
|
1682
1704
|
export interface SecretSyncAzureAppConfigurationSyncOptions {
|
|
1683
1705
|
/**
|
|
1684
1706
|
* When set to true, Infisical will not remove secrets from Azure App Configuration. Enable this option if you intend to manage some secrets manually outside of Infisical.
|
|
1685
1707
|
*/
|
|
1686
|
-
disableSecretDeletion?: pulumi.Input<boolean>;
|
|
1708
|
+
disableSecretDeletion?: pulumi.Input<boolean | undefined>;
|
|
1687
1709
|
/**
|
|
1688
1710
|
* Specify how Infisical should resolve the initial sync to the destination. Supported options: overwrite-destination, import-prioritize-source, import-prioritize-destination
|
|
1689
1711
|
*/
|
|
@@ -1691,7 +1713,7 @@ export interface SecretSyncAzureAppConfigurationSyncOptions {
|
|
|
1691
1713
|
/**
|
|
1692
1714
|
* The format to use for structuring secret keys in the Azure App Configuration destination.
|
|
1693
1715
|
*/
|
|
1694
|
-
keySchema?: pulumi.Input<string>;
|
|
1716
|
+
keySchema?: pulumi.Input<string | undefined>;
|
|
1695
1717
|
}
|
|
1696
1718
|
export interface SecretSyncAzureDevopsDestinationConfig {
|
|
1697
1719
|
/**
|
|
@@ -1703,11 +1725,11 @@ export interface SecretSyncAzureDevopsSyncOptions {
|
|
|
1703
1725
|
/**
|
|
1704
1726
|
* When set to true, Infisical will not remove secrets from Azure DevOps. Enable this option if you intend to manage some secrets manually outside of Infisical.
|
|
1705
1727
|
*/
|
|
1706
|
-
disableSecretDeletion?: pulumi.Input<boolean>;
|
|
1728
|
+
disableSecretDeletion?: pulumi.Input<boolean | undefined>;
|
|
1707
1729
|
/**
|
|
1708
1730
|
* The format to use for structuring secret keys in the Azure DevOps destination.
|
|
1709
1731
|
*/
|
|
1710
|
-
keySchema?: pulumi.Input<string>;
|
|
1732
|
+
keySchema?: pulumi.Input<string | undefined>;
|
|
1711
1733
|
}
|
|
1712
1734
|
export interface SecretSyncAzureKeyVaultDestinationConfig {
|
|
1713
1735
|
/**
|
|
@@ -1719,7 +1741,7 @@ export interface SecretSyncAzureKeyVaultSyncOptions {
|
|
|
1719
1741
|
/**
|
|
1720
1742
|
* When set to true, Infisical will not remove secrets from Azure Key Vault. Enable this option if you intend to manage some secrets manually outside of Infisical.
|
|
1721
1743
|
*/
|
|
1722
|
-
disableSecretDeletion?: pulumi.Input<boolean>;
|
|
1744
|
+
disableSecretDeletion?: pulumi.Input<boolean | undefined>;
|
|
1723
1745
|
/**
|
|
1724
1746
|
* Specify how Infisical should resolve the initial sync to the destination. Supported options: overwrite-destination, import-prioritize-source, import-prioritize-destination
|
|
1725
1747
|
*/
|
|
@@ -1727,13 +1749,13 @@ export interface SecretSyncAzureKeyVaultSyncOptions {
|
|
|
1727
1749
|
/**
|
|
1728
1750
|
* The format to use for structuring secret keys in the Azure Key Vault destination.
|
|
1729
1751
|
*/
|
|
1730
|
-
keySchema?: pulumi.Input<string>;
|
|
1752
|
+
keySchema?: pulumi.Input<string | undefined>;
|
|
1731
1753
|
}
|
|
1732
1754
|
export interface SecretSyncBitbucketDestinationConfig {
|
|
1733
1755
|
/**
|
|
1734
1756
|
* The Bitbucket deployment environment ID (optional).
|
|
1735
1757
|
*/
|
|
1736
|
-
environmentId?: pulumi.Input<string>;
|
|
1758
|
+
environmentId?: pulumi.Input<string | undefined>;
|
|
1737
1759
|
/**
|
|
1738
1760
|
* The Bitbucket repository slug to sync secrets to.
|
|
1739
1761
|
*/
|
|
@@ -1747,7 +1769,7 @@ export interface SecretSyncBitbucketSyncOptions {
|
|
|
1747
1769
|
/**
|
|
1748
1770
|
* When set to true, Infisical will not remove secrets from Bitbucket. Enable this option if you intend to manage some secrets manually outside of Infisical.
|
|
1749
1771
|
*/
|
|
1750
|
-
disableSecretDeletion?: pulumi.Input<boolean>;
|
|
1772
|
+
disableSecretDeletion?: pulumi.Input<boolean | undefined>;
|
|
1751
1773
|
/**
|
|
1752
1774
|
* Specify how Infisical should resolve the initial sync to the destination. Supported options: overwrite-destination
|
|
1753
1775
|
*/
|
|
@@ -1755,7 +1777,7 @@ export interface SecretSyncBitbucketSyncOptions {
|
|
|
1755
1777
|
/**
|
|
1756
1778
|
* The format to use for structuring secret keys in the Bitbucket destination.
|
|
1757
1779
|
*/
|
|
1758
|
-
keySchema?: pulumi.Input<string>;
|
|
1780
|
+
keySchema?: pulumi.Input<string | undefined>;
|
|
1759
1781
|
}
|
|
1760
1782
|
export interface SecretSyncCloudflarePagesDestinationConfig {
|
|
1761
1783
|
/**
|
|
@@ -1771,7 +1793,7 @@ export interface SecretSyncCloudflarePagesSyncOptions {
|
|
|
1771
1793
|
/**
|
|
1772
1794
|
* When set to true, Infisical will not remove secrets from Cloudflare Pages. Enable this option if you intend to manage some secrets manually outside of Infisical.
|
|
1773
1795
|
*/
|
|
1774
|
-
disableSecretDeletion?: pulumi.Input<boolean>;
|
|
1796
|
+
disableSecretDeletion?: pulumi.Input<boolean | undefined>;
|
|
1775
1797
|
/**
|
|
1776
1798
|
* Specify how Infisical should resolve the initial sync to the destination. Supported options: overwrite-destination, import-prioritize-source, import-prioritize-destination
|
|
1777
1799
|
*/
|
|
@@ -1779,7 +1801,7 @@ export interface SecretSyncCloudflarePagesSyncOptions {
|
|
|
1779
1801
|
/**
|
|
1780
1802
|
* The format to use for structuring secret keys in the Cloudflare Pages destination.
|
|
1781
1803
|
*/
|
|
1782
|
-
keySchema?: pulumi.Input<string>;
|
|
1804
|
+
keySchema?: pulumi.Input<string | undefined>;
|
|
1783
1805
|
}
|
|
1784
1806
|
export interface SecretSyncCloudflareWorkersDestinationConfig {
|
|
1785
1807
|
/**
|
|
@@ -1791,7 +1813,7 @@ export interface SecretSyncCloudflareWorkersSyncOptions {
|
|
|
1791
1813
|
/**
|
|
1792
1814
|
* When set to true, Infisical will not remove secrets from Cloudflare Workers. Enable this option if you intend to manage some secrets manually outside of Infisical.
|
|
1793
1815
|
*/
|
|
1794
|
-
disableSecretDeletion?: pulumi.Input<boolean>;
|
|
1816
|
+
disableSecretDeletion?: pulumi.Input<boolean | undefined>;
|
|
1795
1817
|
/**
|
|
1796
1818
|
* Specify how Infisical should resolve the initial sync to the destination. Supported options: overwrite-destination, import-prioritize-source, import-prioritize-destination
|
|
1797
1819
|
*/
|
|
@@ -1799,7 +1821,7 @@ export interface SecretSyncCloudflareWorkersSyncOptions {
|
|
|
1799
1821
|
/**
|
|
1800
1822
|
* The format to use for structuring secret keys in the Cloudflare Workers destination.
|
|
1801
1823
|
*/
|
|
1802
|
-
keySchema?: pulumi.Input<string>;
|
|
1824
|
+
keySchema?: pulumi.Input<string | undefined>;
|
|
1803
1825
|
}
|
|
1804
1826
|
export interface SecretSyncDatabricksDestinationConfig {
|
|
1805
1827
|
/**
|
|
@@ -1811,7 +1833,7 @@ export interface SecretSyncDatabricksSyncOptions {
|
|
|
1811
1833
|
/**
|
|
1812
1834
|
* When set to true, Infisical will not remove secrets from Databricks. Enable this option if you intend to manage some secrets manually outside of Infisical.
|
|
1813
1835
|
*/
|
|
1814
|
-
disableSecretDeletion?: pulumi.Input<boolean>;
|
|
1836
|
+
disableSecretDeletion?: pulumi.Input<boolean | undefined>;
|
|
1815
1837
|
/**
|
|
1816
1838
|
* Specify how Infisical should resolve the initial sync to the destination. Supported options: overwrite-destination
|
|
1817
1839
|
*/
|
|
@@ -1819,7 +1841,7 @@ export interface SecretSyncDatabricksSyncOptions {
|
|
|
1819
1841
|
/**
|
|
1820
1842
|
* The format to use for structuring secret keys in the Databricks destination.
|
|
1821
1843
|
*/
|
|
1822
|
-
keySchema?: pulumi.Input<string>;
|
|
1844
|
+
keySchema?: pulumi.Input<string | undefined>;
|
|
1823
1845
|
}
|
|
1824
1846
|
export interface SecretSyncFlyioDestinationConfig {
|
|
1825
1847
|
/**
|
|
@@ -1831,7 +1853,7 @@ export interface SecretSyncFlyioSyncOptions {
|
|
|
1831
1853
|
/**
|
|
1832
1854
|
* When set to true, Infisical will not remove secrets from Fly.io. Enable this option if you intend to manage some secrets manually outside of Infisical.
|
|
1833
1855
|
*/
|
|
1834
|
-
disableSecretDeletion?: pulumi.Input<boolean>;
|
|
1856
|
+
disableSecretDeletion?: pulumi.Input<boolean | undefined>;
|
|
1835
1857
|
/**
|
|
1836
1858
|
* Specify how Infisical should resolve the initial sync to the destination. Supported options: overwrite-destination
|
|
1837
1859
|
*/
|
|
@@ -1839,7 +1861,7 @@ export interface SecretSyncFlyioSyncOptions {
|
|
|
1839
1861
|
/**
|
|
1840
1862
|
* The format to use for structuring secret keys in the Fly.io destination.
|
|
1841
1863
|
*/
|
|
1842
|
-
keySchema?: pulumi.Input<string>;
|
|
1864
|
+
keySchema?: pulumi.Input<string | undefined>;
|
|
1843
1865
|
}
|
|
1844
1866
|
export interface SecretSyncGcpSecretManagerDestinationConfig {
|
|
1845
1867
|
/**
|
|
@@ -1849,13 +1871,13 @@ export interface SecretSyncGcpSecretManagerDestinationConfig {
|
|
|
1849
1871
|
/**
|
|
1850
1872
|
* The scope of the sync with GCP Secret Manager. Supported options: global
|
|
1851
1873
|
*/
|
|
1852
|
-
scope?: pulumi.Input<string>;
|
|
1874
|
+
scope?: pulumi.Input<string | undefined>;
|
|
1853
1875
|
}
|
|
1854
1876
|
export interface SecretSyncGcpSecretManagerSyncOptions {
|
|
1855
1877
|
/**
|
|
1856
1878
|
* When set to true, Infisical will not remove secrets from GCP Secret Manager. Enable this option if you intend to manage some secrets manually outside of Infisical.
|
|
1857
1879
|
*/
|
|
1858
|
-
disableSecretDeletion?: pulumi.Input<boolean>;
|
|
1880
|
+
disableSecretDeletion?: pulumi.Input<boolean | undefined>;
|
|
1859
1881
|
/**
|
|
1860
1882
|
* Specify how Infisical should resolve the initial sync to the destination. Supported options: overwrite-destination, import-prioritize-source, import-prioritize-destination
|
|
1861
1883
|
*/
|
|
@@ -1863,21 +1885,21 @@ export interface SecretSyncGcpSecretManagerSyncOptions {
|
|
|
1863
1885
|
/**
|
|
1864
1886
|
* The format to use for structuring secret keys in the GCP Secret Manager destination.
|
|
1865
1887
|
*/
|
|
1866
|
-
keySchema?: pulumi.Input<string>;
|
|
1888
|
+
keySchema?: pulumi.Input<string | undefined>;
|
|
1867
1889
|
}
|
|
1868
1890
|
export interface SecretSyncGithubDestinationConfig {
|
|
1869
1891
|
/**
|
|
1870
1892
|
* The environment to sync the secrets to, required if scope is `repository-environment`
|
|
1871
1893
|
*/
|
|
1872
|
-
repositoryEnvironment?: pulumi.Input<string>;
|
|
1894
|
+
repositoryEnvironment?: pulumi.Input<string | undefined>;
|
|
1873
1895
|
/**
|
|
1874
1896
|
* The repository to sync the secrets to, required if scope is <span pulumi-lang-nodejs="`repository`" pulumi-lang-dotnet="`Repository`" pulumi-lang-go="`repository`" pulumi-lang-python="`repository`" pulumi-lang-yaml="`repository`" pulumi-lang-java="`repository`">`repository`</span> or `repository-environment`. This is only the name of the repository, without the repository owner included. As an example if you have a repository called Infisical/go-sdk, you would only need to provide `go-sdk` here.
|
|
1875
1897
|
*/
|
|
1876
|
-
repositoryName?: pulumi.Input<string>;
|
|
1898
|
+
repositoryName?: pulumi.Input<string | undefined>;
|
|
1877
1899
|
/**
|
|
1878
1900
|
* The owner of the Github repository, required if scope is <span pulumi-lang-nodejs="`repository`" pulumi-lang-dotnet="`Repository`" pulumi-lang-go="`repository`" pulumi-lang-python="`repository`" pulumi-lang-yaml="`repository`" pulumi-lang-java="`repository`">`repository`</span>, `repository-environment`, or <span pulumi-lang-nodejs="`organization`" pulumi-lang-dotnet="`Organization`" pulumi-lang-go="`organization`" pulumi-lang-python="`organization`" pulumi-lang-yaml="`organization`" pulumi-lang-java="`organization`">`organization`</span>. This is the organization name, or the username for personal repositories. As an example if you have a repository called Infisical/go-sdk, you would only need to provide `Infisical` here.
|
|
1879
1901
|
*/
|
|
1880
|
-
repositoryOwner?: pulumi.Input<string>;
|
|
1902
|
+
repositoryOwner?: pulumi.Input<string | undefined>;
|
|
1881
1903
|
/**
|
|
1882
1904
|
* The scope to sync the secrets to, repository|organization
|
|
1883
1905
|
*/
|
|
@@ -1885,17 +1907,17 @@ export interface SecretSyncGithubDestinationConfig {
|
|
|
1885
1907
|
/**
|
|
1886
1908
|
* The repository ids to sync the secrets to, required if scope is <span pulumi-lang-nodejs="`organization`" pulumi-lang-dotnet="`Organization`" pulumi-lang-go="`organization`" pulumi-lang-python="`organization`" pulumi-lang-yaml="`organization`" pulumi-lang-java="`organization`">`organization`</span> and the visibility field is set to <span pulumi-lang-nodejs="`selected`" pulumi-lang-dotnet="`Selected`" pulumi-lang-go="`selected`" pulumi-lang-python="`selected`" pulumi-lang-yaml="`selected`" pulumi-lang-java="`selected`">`selected`</span>
|
|
1887
1909
|
*/
|
|
1888
|
-
selectedRepositoryIds?: pulumi.Input<pulumi.Input<number>[]>;
|
|
1910
|
+
selectedRepositoryIds?: pulumi.Input<pulumi.Input<number>[] | undefined>;
|
|
1889
1911
|
/**
|
|
1890
1912
|
* The visibility of the Github repository, required if scope is <span pulumi-lang-nodejs="`organization`" pulumi-lang-dotnet="`Organization`" pulumi-lang-go="`organization`" pulumi-lang-python="`organization`" pulumi-lang-yaml="`organization`" pulumi-lang-java="`organization`">`organization`</span>. Accepted values are: <span pulumi-lang-nodejs="`all`" pulumi-lang-dotnet="`All`" pulumi-lang-go="`all`" pulumi-lang-python="`all`" pulumi-lang-yaml="`all`" pulumi-lang-java="`all`">`all`</span>|<span pulumi-lang-nodejs="`private`" pulumi-lang-dotnet="`Private`" pulumi-lang-go="`private`" pulumi-lang-python="`private`" pulumi-lang-yaml="`private`" pulumi-lang-java="`private`">`private`</span>|<span pulumi-lang-nodejs="`selected`" pulumi-lang-dotnet="`Selected`" pulumi-lang-go="`selected`" pulumi-lang-python="`selected`" pulumi-lang-yaml="`selected`" pulumi-lang-java="`selected`">`selected`</span>
|
|
1891
1913
|
*/
|
|
1892
|
-
visibility?: pulumi.Input<string>;
|
|
1914
|
+
visibility?: pulumi.Input<string | undefined>;
|
|
1893
1915
|
}
|
|
1894
1916
|
export interface SecretSyncGithubSyncOptions {
|
|
1895
1917
|
/**
|
|
1896
1918
|
* When set to true, Infisical will not remove secrets from Github. Enable this option if you intend to manage some secrets manually outside of Infisical.
|
|
1897
1919
|
*/
|
|
1898
|
-
disableSecretDeletion?: pulumi.Input<boolean>;
|
|
1920
|
+
disableSecretDeletion?: pulumi.Input<boolean | undefined>;
|
|
1899
1921
|
/**
|
|
1900
1922
|
* Specify how Infisical should resolve the initial sync to the destination. Supported options: overwrite-destination
|
|
1901
1923
|
*/
|
|
@@ -1903,25 +1925,25 @@ export interface SecretSyncGithubSyncOptions {
|
|
|
1903
1925
|
/**
|
|
1904
1926
|
* The format to use for structuring secret keys in the Github destination.
|
|
1905
1927
|
*/
|
|
1906
|
-
keySchema?: pulumi.Input<string>;
|
|
1928
|
+
keySchema?: pulumi.Input<string | undefined>;
|
|
1907
1929
|
}
|
|
1908
1930
|
export interface SecretSyncGitlabDestinationConfig {
|
|
1909
1931
|
/**
|
|
1910
1932
|
* The GitLab Group ID to sync secrets to. Required when scope is 'group'.
|
|
1911
1933
|
*/
|
|
1912
|
-
groupId?: pulumi.Input<string>;
|
|
1934
|
+
groupId?: pulumi.Input<string | undefined>;
|
|
1913
1935
|
/**
|
|
1914
1936
|
* The GitLab Group Name to sync secrets to. Optional when scope is 'group'.
|
|
1915
1937
|
*/
|
|
1916
|
-
groupName?: pulumi.Input<string>;
|
|
1938
|
+
groupName?: pulumi.Input<string | undefined>;
|
|
1917
1939
|
/**
|
|
1918
1940
|
* The GitLab Project ID to sync secrets to. Required when scope is 'project'.
|
|
1919
1941
|
*/
|
|
1920
|
-
projectId?: pulumi.Input<string>;
|
|
1942
|
+
projectId?: pulumi.Input<string | undefined>;
|
|
1921
1943
|
/**
|
|
1922
1944
|
* The GitLab Project Name to sync secrets to. Optional when scope is 'project'.
|
|
1923
1945
|
*/
|
|
1924
|
-
projectName?: pulumi.Input<string>;
|
|
1946
|
+
projectName?: pulumi.Input<string | undefined>;
|
|
1925
1947
|
/**
|
|
1926
1948
|
* The GitLab scope that secrets should be synced to. Supported options: 'project', 'group'
|
|
1927
1949
|
*/
|
|
@@ -1929,15 +1951,15 @@ export interface SecretSyncGitlabDestinationConfig {
|
|
|
1929
1951
|
/**
|
|
1930
1952
|
* Whether variables should be hidden
|
|
1931
1953
|
*/
|
|
1932
|
-
shouldHideSecrets?: pulumi.Input<boolean>;
|
|
1954
|
+
shouldHideSecrets?: pulumi.Input<boolean | undefined>;
|
|
1933
1955
|
/**
|
|
1934
1956
|
* Whether variables should be masked in logs
|
|
1935
1957
|
*/
|
|
1936
|
-
shouldMaskSecrets?: pulumi.Input<boolean>;
|
|
1958
|
+
shouldMaskSecrets?: pulumi.Input<boolean | undefined>;
|
|
1937
1959
|
/**
|
|
1938
1960
|
* Whether variables should be protected
|
|
1939
1961
|
*/
|
|
1940
|
-
shouldProtectSecrets?: pulumi.Input<boolean>;
|
|
1962
|
+
shouldProtectSecrets?: pulumi.Input<boolean | undefined>;
|
|
1941
1963
|
/**
|
|
1942
1964
|
* The GitLab environment scope that secrets should be synced to. (default: *)
|
|
1943
1965
|
*/
|
|
@@ -1947,7 +1969,7 @@ export interface SecretSyncGitlabSyncOptions {
|
|
|
1947
1969
|
/**
|
|
1948
1970
|
* When set to true, Infisical will not remove secrets from GitLab. Enable this option if you intend to manage some secrets manually outside of Infisical.
|
|
1949
1971
|
*/
|
|
1950
|
-
disableSecretDeletion?: pulumi.Input<boolean>;
|
|
1972
|
+
disableSecretDeletion?: pulumi.Input<boolean | undefined>;
|
|
1951
1973
|
/**
|
|
1952
1974
|
* Specify how Infisical should resolve the initial sync to the destination. Supported options: overwrite-destination
|
|
1953
1975
|
*/
|
|
@@ -1955,7 +1977,7 @@ export interface SecretSyncGitlabSyncOptions {
|
|
|
1955
1977
|
/**
|
|
1956
1978
|
* The format to use for structuring secret keys in the GitLab destination.
|
|
1957
1979
|
*/
|
|
1958
|
-
keySchema?: pulumi.Input<string>;
|
|
1980
|
+
keySchema?: pulumi.Input<string | undefined>;
|
|
1959
1981
|
}
|
|
1960
1982
|
export interface SecretSyncRenderDestinationConfig {
|
|
1961
1983
|
/**
|
|
@@ -1975,7 +1997,7 @@ export interface SecretSyncRenderSyncOptions {
|
|
|
1975
1997
|
/**
|
|
1976
1998
|
* When set to true, Infisical will not remove secrets from Render. Enable this option if you intend to manage some secrets manually outside of Infisical.
|
|
1977
1999
|
*/
|
|
1978
|
-
disableSecretDeletion?: pulumi.Input<boolean>;
|
|
2000
|
+
disableSecretDeletion?: pulumi.Input<boolean | undefined>;
|
|
1979
2001
|
/**
|
|
1980
2002
|
* Specify how Infisical should resolve the initial sync to the destination. Supported options: overwrite-destination
|
|
1981
2003
|
*/
|
|
@@ -1983,7 +2005,7 @@ export interface SecretSyncRenderSyncOptions {
|
|
|
1983
2005
|
/**
|
|
1984
2006
|
* The format to use for structuring secret keys in the Render destination.
|
|
1985
2007
|
*/
|
|
1986
|
-
keySchema?: pulumi.Input<string>;
|
|
2008
|
+
keySchema?: pulumi.Input<string | undefined>;
|
|
1987
2009
|
}
|
|
1988
2010
|
export interface SecretSyncSupabaseDestinationConfig {
|
|
1989
2011
|
/**
|
|
@@ -1993,13 +2015,13 @@ export interface SecretSyncSupabaseDestinationConfig {
|
|
|
1993
2015
|
/**
|
|
1994
2016
|
* The Supabase project name (optional).
|
|
1995
2017
|
*/
|
|
1996
|
-
projectName?: pulumi.Input<string>;
|
|
2018
|
+
projectName?: pulumi.Input<string | undefined>;
|
|
1997
2019
|
}
|
|
1998
2020
|
export interface SecretSyncSupabaseSyncOptions {
|
|
1999
2021
|
/**
|
|
2000
2022
|
* When set to true, Infisical will not remove secrets from Supabase. Enable this option if you intend to manage some secrets manually outside of Infisical.
|
|
2001
2023
|
*/
|
|
2002
|
-
disableSecretDeletion?: pulumi.Input<boolean>;
|
|
2024
|
+
disableSecretDeletion?: pulumi.Input<boolean | undefined>;
|
|
2003
2025
|
/**
|
|
2004
2026
|
* Specify how Infisical should resolve the initial sync to the destination. Supported options: overwrite-destination
|
|
2005
2027
|
*/
|
|
@@ -2007,7 +2029,7 @@ export interface SecretSyncSupabaseSyncOptions {
|
|
|
2007
2029
|
/**
|
|
2008
2030
|
* The format to use for structuring secret keys in the Supabase destination.
|
|
2009
2031
|
*/
|
|
2010
|
-
keySchema?: pulumi.Input<string>;
|
|
2032
|
+
keySchema?: pulumi.Input<string | undefined>;
|
|
2011
2033
|
}
|
|
2012
2034
|
export declare namespace config {
|
|
2013
2035
|
}
|