pulumi-harness 0.8.0a1753336707__py3-none-any.whl → 0.8.0a1753423013__py3-none-any.whl
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Potentially problematic release.
This version of pulumi-harness might be problematic. Click here for more details.
- pulumi_harness/__init__.py +1 -1
- pulumi_harness/_inputs.py +971 -972
- pulumi_harness/add_user_to_group.py +35 -36
- pulumi_harness/application.py +87 -88
- pulumi_harness/application_git_sync.py +86 -87
- pulumi_harness/autostopping/__init__.py +1 -1
- pulumi_harness/autostopping/_inputs.py +585 -586
- pulumi_harness/autostopping/aws_alb.py +172 -173
- pulumi_harness/autostopping/aws_proxy.py +209 -210
- pulumi_harness/autostopping/azure_gateway.py +227 -228
- pulumi_harness/autostopping/azure_proxy.py +243 -244
- pulumi_harness/autostopping/gcp_proxy.py +213 -214
- pulumi_harness/autostopping/get_aws_alb.py +61 -62
- pulumi_harness/autostopping/get_aws_proxy.py +74 -75
- pulumi_harness/autostopping/get_azure_gateway.py +81 -82
- pulumi_harness/autostopping/get_azure_proxy.py +86 -87
- pulumi_harness/autostopping/get_gcp_proxy.py +76 -77
- pulumi_harness/autostopping/get_rule_ecs.py +32 -33
- pulumi_harness/autostopping/get_rule_rds.py +26 -27
- pulumi_harness/autostopping/get_rule_vm.py +39 -40
- pulumi_harness/autostopping/get_schedule.py +22 -23
- pulumi_harness/autostopping/outputs.py +407 -408
- pulumi_harness/autostopping/rule_ecs.py +104 -105
- pulumi_harness/autostopping/rule_rds.py +87 -88
- pulumi_harness/autostopping/rule_vm.py +124 -125
- pulumi_harness/autostopping/schedule.py +115 -116
- pulumi_harness/chaos_infrastructure.py +154 -155
- pulumi_harness/cloudprovider/__init__.py +1 -1
- pulumi_harness/cloudprovider/_inputs.py +179 -180
- pulumi_harness/cloudprovider/aws.py +126 -127
- pulumi_harness/cloudprovider/azure.py +86 -87
- pulumi_harness/cloudprovider/datacenter.py +21 -22
- pulumi_harness/cloudprovider/gcp.py +72 -73
- pulumi_harness/cloudprovider/get_delegate_ids.py +23 -24
- pulumi_harness/cloudprovider/kubernetes.py +41 -42
- pulumi_harness/cloudprovider/outputs.py +121 -122
- pulumi_harness/cloudprovider/spot.py +52 -53
- pulumi_harness/cloudprovider/tanzu.py +103 -104
- pulumi_harness/cluster/__init__.py +1 -1
- pulumi_harness/cluster/_inputs.py +179 -180
- pulumi_harness/cluster/get_orchestrator.py +21 -22
- pulumi_harness/cluster/get_orchestrator_config.py +12 -13
- pulumi_harness/cluster/orchestrator.py +52 -53
- pulumi_harness/cluster/orchestrator_config.py +27 -28
- pulumi_harness/cluster/outputs.py +123 -124
- pulumi_harness/config/__init__.py +1 -1
- pulumi_harness/config/__init__.pyi +1 -2
- pulumi_harness/config/vars.py +5 -6
- pulumi_harness/delegate_approval.py +44 -45
- pulumi_harness/encrypted_text.py +106 -107
- pulumi_harness/environment.py +72 -73
- pulumi_harness/get_application.py +37 -38
- pulumi_harness/get_chaos_infrastructure.py +27 -28
- pulumi_harness/get_current_account.py +11 -12
- pulumi_harness/get_delegate.py +45 -46
- pulumi_harness/get_encrypted_text.py +16 -17
- pulumi_harness/get_environment.py +26 -27
- pulumi_harness/get_git_connector.py +34 -35
- pulumi_harness/get_secret_manager.py +20 -21
- pulumi_harness/get_service.py +27 -28
- pulumi_harness/get_ssh_credential.py +14 -15
- pulumi_harness/get_sso_provider.py +15 -16
- pulumi_harness/get_trigger.py +26 -27
- pulumi_harness/get_user.py +25 -26
- pulumi_harness/get_user_group.py +13 -14
- pulumi_harness/get_yaml_config.py +19 -20
- pulumi_harness/git_connector.py +178 -179
- pulumi_harness/governance/__init__.py +1 -1
- pulumi_harness/governance/get_rule.py +17 -18
- pulumi_harness/governance/get_rule_enforcement.py +31 -32
- pulumi_harness/governance/get_rule_set.py +17 -18
- pulumi_harness/governance/rule.py +78 -79
- pulumi_harness/governance/rule_enforcement.py +197 -198
- pulumi_harness/governance/rule_set.py +78 -79
- pulumi_harness/infrastructure_definition.py +176 -177
- pulumi_harness/outputs.py +694 -695
- pulumi_harness/platform/__init__.py +1 -1
- pulumi_harness/platform/_inputs.py +30055 -30056
- pulumi_harness/platform/app_dynamics_connector.py +160 -161
- pulumi_harness/platform/artifactory_connector.py +140 -141
- pulumi_harness/platform/aws_cc_connector.py +174 -175
- pulumi_harness/platform/aws_connector.py +161 -162
- pulumi_harness/platform/aws_kms_connector.py +191 -192
- pulumi_harness/platform/aws_secret_manager_connector.py +242 -243
- pulumi_harness/platform/azure_cloud_cost_connector.py +157 -158
- pulumi_harness/platform/azure_cloud_provider_connector.py +174 -175
- pulumi_harness/platform/azure_key_vault_connector.py +239 -240
- pulumi_harness/platform/bitbucket_connector.py +177 -178
- pulumi_harness/platform/central_notification_channel.py +109 -110
- pulumi_harness/platform/central_notification_rule.py +112 -113
- pulumi_harness/platform/connector_azure_artifacts.py +140 -141
- pulumi_harness/platform/connector_azure_repo.py +194 -195
- pulumi_harness/platform/connector_custom_secret_manager.py +259 -260
- pulumi_harness/platform/connector_customhealthsource.py +194 -195
- pulumi_harness/platform/connector_gcp_kms.py +211 -212
- pulumi_harness/platform/connector_jdbc.py +140 -141
- pulumi_harness/platform/connector_pdc.py +123 -124
- pulumi_harness/platform/connector_rancher.py +157 -158
- pulumi_harness/platform/dashboard_folders.py +27 -28
- pulumi_harness/platform/dashboards.py +206 -207
- pulumi_harness/platform/datadog_connector.py +171 -172
- pulumi_harness/platform/db_instance.py +188 -189
- pulumi_harness/platform/db_schema.py +143 -144
- pulumi_harness/platform/delegatetoken.py +154 -155
- pulumi_harness/platform/docker_connector.py +174 -175
- pulumi_harness/platform/dynatrace_connector.py +154 -155
- pulumi_harness/platform/elasticsearch_connector.py +146 -147
- pulumi_harness/platform/environment.py +174 -175
- pulumi_harness/platform/environment_clusters_mapping.py +81 -82
- pulumi_harness/platform/environment_group.py +103 -104
- pulumi_harness/platform/environment_service_overrides.py +103 -104
- pulumi_harness/platform/feature_flag.py +197 -198
- pulumi_harness/platform/feature_flag_api_key.py +146 -147
- pulumi_harness/platform/feature_flag_target.py +120 -121
- pulumi_harness/platform/feature_flag_target_group.py +140 -141
- pulumi_harness/platform/file_store_file.py +210 -211
- pulumi_harness/platform/file_store_folder.py +142 -143
- pulumi_harness/platform/filters.py +106 -107
- pulumi_harness/platform/gcp_cloud_cost_connector.py +157 -158
- pulumi_harness/platform/gcp_connector.py +146 -147
- pulumi_harness/platform/gcp_secret_manager_connector.py +191 -192
- pulumi_harness/platform/get_api_key.py +55 -56
- pulumi_harness/platform/get_app_dynamics_connector.py +39 -40
- pulumi_harness/platform/get_artifactory_connector.py +36 -37
- pulumi_harness/platform/get_aws_cc_connector.py +40 -41
- pulumi_harness/platform/get_aws_connector.py +41 -42
- pulumi_harness/platform/get_aws_kms_connector.py +42 -43
- pulumi_harness/platform/get_aws_secret_manager_connector.py +56 -57
- pulumi_harness/platform/get_azure_cloud_cost_connector.py +38 -39
- pulumi_harness/platform/get_azure_cloud_provider_connector.py +38 -39
- pulumi_harness/platform/get_azure_key_vault_connector.py +47 -48
- pulumi_harness/platform/get_bitbucket_connector.py +41 -42
- pulumi_harness/platform/get_ccm_filters.py +32 -33
- pulumi_harness/platform/get_central_notification_channel.py +58 -59
- pulumi_harness/platform/get_central_notification_rule.py +41 -42
- pulumi_harness/platform/get_connector_azure_repo.py +35 -36
- pulumi_harness/platform/get_connector_custom_secret_manager.py +50 -51
- pulumi_harness/platform/get_connector_customhealthsource.py +43 -44
- pulumi_harness/platform/get_connector_gcp_kms.py +45 -46
- pulumi_harness/platform/get_connector_jdbc.py +36 -37
- pulumi_harness/platform/get_connector_pdc.py +34 -35
- pulumi_harness/platform/get_connector_rancher.py +34 -35
- pulumi_harness/platform/get_current_account.py +11 -12
- pulumi_harness/platform/get_current_user.py +29 -30
- pulumi_harness/platform/get_dashboard_folders.py +23 -24
- pulumi_harness/platform/get_dashboards.py +39 -40
- pulumi_harness/platform/get_datadog_connector.py +43 -44
- pulumi_harness/platform/get_db_instance.py +47 -48
- pulumi_harness/platform/get_db_schema.py +39 -40
- pulumi_harness/platform/get_delegatetoken.py +41 -42
- pulumi_harness/platform/get_docker_connector.py +38 -39
- pulumi_harness/platform/get_dynatrace_connector.py +37 -38
- pulumi_harness/platform/get_elasticsearch_connector.py +37 -38
- pulumi_harness/platform/get_environment.py +38 -39
- pulumi_harness/platform/get_environment_clusters_mapping.py +30 -31
- pulumi_harness/platform/get_environment_group.py +29 -30
- pulumi_harness/platform/get_environment_list.py +12 -13
- pulumi_harness/platform/get_environment_service_overrides.py +35 -36
- pulumi_harness/platform/get_file_store_file.py +47 -48
- pulumi_harness/platform/get_file_store_folder.py +39 -40
- pulumi_harness/platform/get_filters.py +32 -33
- pulumi_harness/platform/get_gcp_cloud_cost_connector.py +38 -39
- pulumi_harness/platform/get_gcp_connector.py +34 -35
- pulumi_harness/platform/get_gcp_secret_manager_connector.py +42 -43
- pulumi_harness/platform/get_git_connector.py +40 -41
- pulumi_harness/platform/get_github_connector.py +43 -44
- pulumi_harness/platform/get_gitlab_connector.py +43 -44
- pulumi_harness/platform/get_gitops_agent.py +50 -51
- pulumi_harness/platform/get_gitops_agent_deploy_yaml.py +55 -56
- pulumi_harness/platform/get_gitops_agent_operator_yaml.py +48 -49
- pulumi_harness/platform/get_gitops_app_project.py +33 -34
- pulumi_harness/platform/get_gitops_app_project_mapping.py +35 -36
- pulumi_harness/platform/get_gitops_applications.py +60 -61
- pulumi_harness/platform/get_gitops_cluster.py +34 -35
- pulumi_harness/platform/get_gitops_filters.py +33 -34
- pulumi_harness/platform/get_gitops_gnupg.py +34 -35
- pulumi_harness/platform/get_gitops_repo_cert.py +27 -28
- pulumi_harness/platform/get_gitops_repo_cred.py +34 -35
- pulumi_harness/platform/get_gitops_repository.py +36 -37
- pulumi_harness/platform/get_gitx_webhook.py +39 -40
- pulumi_harness/platform/get_har_registry.py +40 -41
- pulumi_harness/platform/get_helm_connector.py +36 -37
- pulumi_harness/platform/get_iacm_default_pipeline.py +29 -30
- pulumi_harness/platform/get_infra_module.py +79 -80
- pulumi_harness/platform/get_infra_variable_set.py +35 -36
- pulumi_harness/platform/get_infrastructure.py +44 -45
- pulumi_harness/platform/get_input_set.py +40 -41
- pulumi_harness/platform/get_jenkins_connector.py +36 -37
- pulumi_harness/platform/get_jira_connector.py +42 -43
- pulumi_harness/platform/get_kubernetes_cloud_cost_connector.py +35 -36
- pulumi_harness/platform/get_kubernetes_connector.py +38 -39
- pulumi_harness/platform/get_manual_freeze.py +43 -44
- pulumi_harness/platform/get_monitored_service.py +21 -22
- pulumi_harness/platform/get_nexus_connector.py +38 -39
- pulumi_harness/platform/get_notification_rule.py +21 -22
- pulumi_harness/platform/get_oci_helm_connector.py +36 -37
- pulumi_harness/platform/get_organization.py +19 -20
- pulumi_harness/platform/get_overrides.py +28 -29
- pulumi_harness/platform/get_pagerduty_connector.py +35 -36
- pulumi_harness/platform/get_permissions.py +16 -17
- pulumi_harness/platform/get_pipeline.py +38 -39
- pulumi_harness/platform/get_pipeline_filters.py +32 -33
- pulumi_harness/platform/get_pipeline_list.py +40 -41
- pulumi_harness/platform/get_policy.py +37 -38
- pulumi_harness/platform/get_policy_set.py +50 -51
- pulumi_harness/platform/get_project.py +29 -30
- pulumi_harness/platform/get_project_list.py +34 -35
- pulumi_harness/platform/get_prometheus_connector.py +40 -41
- pulumi_harness/platform/get_provider.py +7 -8
- pulumi_harness/platform/get_repo.py +64 -65
- pulumi_harness/platform/get_repo_rule_branch.py +50 -51
- pulumi_harness/platform/get_repo_webhook.py +69 -70
- pulumi_harness/platform/get_resource_group.py +39 -40
- pulumi_harness/platform/get_role_assignments.py +30 -31
- pulumi_harness/platform/get_roles.py +43 -44
- pulumi_harness/platform/get_secret_file.py +35 -36
- pulumi_harness/platform/get_secret_sshkey.py +35 -36
- pulumi_harness/platform/get_secret_text.py +38 -39
- pulumi_harness/platform/get_service.py +34 -35
- pulumi_harness/platform/get_service_account.py +35 -36
- pulumi_harness/platform/get_service_list.py +20 -21
- pulumi_harness/platform/get_service_now_connector.py +42 -43
- pulumi_harness/platform/get_service_overrides_v2.py +28 -29
- pulumi_harness/platform/get_slo.py +21 -22
- pulumi_harness/platform/get_splunk_connector.py +41 -42
- pulumi_harness/platform/get_spot_connector.py +32 -33
- pulumi_harness/platform/get_sumologic_connector.py +39 -40
- pulumi_harness/platform/get_tas_connector.py +36 -37
- pulumi_harness/platform/get_template.py +68 -69
- pulumi_harness/platform/get_template_filters.py +32 -33
- pulumi_harness/platform/get_terraform_cloud_connector.py +36 -37
- pulumi_harness/platform/get_token.py +97 -98
- pulumi_harness/platform/get_triggers.py +45 -46
- pulumi_harness/platform/get_user.py +31 -32
- pulumi_harness/platform/get_usergroup.py +48 -49
- pulumi_harness/platform/get_variables.py +28 -29
- pulumi_harness/platform/get_vault_connector.py +93 -94
- pulumi_harness/platform/get_workspace.py +77 -78
- pulumi_harness/platform/get_workspace_output_value.py +22 -23
- pulumi_harness/platform/git_connector.py +191 -192
- pulumi_harness/platform/git_ops_agent.py +175 -176
- pulumi_harness/platform/git_ops_applications.py +293 -294
- pulumi_harness/platform/git_ops_cluster.py +106 -107
- pulumi_harness/platform/git_ops_gnupg.py +81 -82
- pulumi_harness/platform/git_ops_repo_cert.py +72 -73
- pulumi_harness/platform/git_ops_repo_cred.py +106 -107
- pulumi_harness/platform/git_ops_repository.py +183 -184
- pulumi_harness/platform/github_connector.py +211 -212
- pulumi_harness/platform/gitlab_connector.py +194 -195
- pulumi_harness/platform/gitops_app_project.py +106 -107
- pulumi_harness/platform/gitops_app_project_mapping.py +95 -96
- pulumi_harness/platform/gitops_applicationset.py +81 -82
- pulumi_harness/platform/gitops_filters.py +120 -121
- pulumi_harness/platform/gitx_webhook.py +171 -172
- pulumi_harness/platform/har_registry.py +141 -142
- pulumi_harness/platform/helm_connector.py +157 -158
- pulumi_harness/platform/iacm_default_pipeline.py +86 -87
- pulumi_harness/platform/infra_module.py +222 -223
- pulumi_harness/platform/infra_variable_set.py +115 -116
- pulumi_harness/platform/infrastructure.py +191 -192
- pulumi_harness/platform/input_set.py +163 -164
- pulumi_harness/platform/jenkins_connector.py +140 -141
- pulumi_harness/platform/jira_connector.py +191 -192
- pulumi_harness/platform/kubernetes_cloud_cost_connector.py +137 -138
- pulumi_harness/platform/kubernetes_connector.py +152 -153
- pulumi_harness/platform/manual_freeze.py +144 -145
- pulumi_harness/platform/monitored_service.py +55 -56
- pulumi_harness/platform/newrelic_connector.py +171 -172
- pulumi_harness/platform/nexus_connector.py +157 -158
- pulumi_harness/platform/notification_rule.py +55 -56
- pulumi_harness/platform/oci_helm_connector.py +157 -158
- pulumi_harness/platform/organization.py +69 -70
- pulumi_harness/platform/outputs.py +22376 -22377
- pulumi_harness/platform/overrides.py +191 -192
- pulumi_harness/platform/pagerduty_connector.py +137 -138
- pulumi_harness/platform/pipeline.py +180 -181
- pulumi_harness/platform/pipeline_filters.py +106 -107
- pulumi_harness/platform/policy.py +290 -291
- pulumi_harness/platform/policy_set.py +157 -158
- pulumi_harness/platform/project.py +112 -113
- pulumi_harness/platform/prometheus_connector.py +174 -175
- pulumi_harness/platform/provider.py +73 -74
- pulumi_harness/platform/repo.py +194 -195
- pulumi_harness/platform/repo_rule_branch.py +148 -149
- pulumi_harness/platform/repo_webhook.py +198 -199
- pulumi_harness/platform/resource_group.py +160 -161
- pulumi_harness/platform/role_assignments.py +123 -124
- pulumi_harness/platform/roles.py +137 -138
- pulumi_harness/platform/secret_file.py +137 -138
- pulumi_harness/platform/secret_sshkey.py +126 -127
- pulumi_harness/platform/secret_text.py +157 -158
- pulumi_harness/platform/service.py +191 -192
- pulumi_harness/platform/service_account.py +137 -138
- pulumi_harness/platform/service_now_connector.py +191 -192
- pulumi_harness/platform/service_overrides_v2.py +191 -192
- pulumi_harness/platform/slo.py +55 -56
- pulumi_harness/platform/splunk_connector.py +188 -189
- pulumi_harness/platform/spot_connector.py +106 -107
- pulumi_harness/platform/sumologic_connector.py +171 -172
- pulumi_harness/platform/tas_connector.py +140 -141
- pulumi_harness/platform/template.py +214 -215
- pulumi_harness/platform/template_filters.py +106 -107
- pulumi_harness/platform/terraform_cloud_connector.py +153 -154
- pulumi_harness/platform/token.py +299 -300
- pulumi_harness/platform/triggers.py +171 -172
- pulumi_harness/platform/user.py +117 -118
- pulumi_harness/platform/usergroup.py +259 -260
- pulumi_harness/platform/variables.py +106 -107
- pulumi_harness/platform/vault_connector.py +630 -631
- pulumi_harness/platform/workspace.py +311 -312
- pulumi_harness/platform_api_key.py +171 -172
- pulumi_harness/platform_ccm_filters.py +106 -107
- pulumi_harness/provider.py +42 -43
- pulumi_harness/pulumi-plugin.json +1 -1
- pulumi_harness/service/__init__.py +1 -1
- pulumi_harness/service/_inputs.py +163 -164
- pulumi_harness/service/ami.py +55 -56
- pulumi_harness/service/codedeploy.py +55 -56
- pulumi_harness/service/ecs.py +55 -56
- pulumi_harness/service/helm.py +55 -56
- pulumi_harness/service/kubernetes.py +72 -73
- pulumi_harness/service/lambda_.py +55 -56
- pulumi_harness/service/outputs.py +109 -110
- pulumi_harness/service/ssh.py +72 -73
- pulumi_harness/service/tanzu.py +55 -56
- pulumi_harness/service/winrm.py +72 -73
- pulumi_harness/ssh_credential.py +27 -28
- pulumi_harness/user.py +97 -98
- pulumi_harness/user_group.py +65 -66
- pulumi_harness/user_group_permissions.py +38 -39
- pulumi_harness/yaml_config.py +61 -62
- {pulumi_harness-0.8.0a1753336707.dist-info → pulumi_harness-0.8.0a1753423013.dist-info}/METADATA +1 -1
- pulumi_harness-0.8.0a1753423013.dist-info/RECORD +337 -0
- pulumi_harness-0.8.0a1753336707.dist-info/RECORD +0 -337
- {pulumi_harness-0.8.0a1753336707.dist-info → pulumi_harness-0.8.0a1753423013.dist-info}/WHEEL +0 -0
- {pulumi_harness-0.8.0a1753336707.dist-info → pulumi_harness-0.8.0a1753423013.dist-info}/top_level.txt +0 -0
|
@@ -2,8 +2,7 @@
|
|
|
2
2
|
# *** WARNING: this file was generated by pulumi-language-python. ***
|
|
3
3
|
# *** Do not edit by hand unless you're certain you know what you are doing! ***
|
|
4
4
|
|
|
5
|
-
import builtins
|
|
6
|
-
import copy
|
|
5
|
+
import builtins as _builtins
|
|
7
6
|
import warnings
|
|
8
7
|
import sys
|
|
9
8
|
import pulumi
|
|
@@ -20,82 +19,82 @@ __all__ = ['VaultConnectorArgs', 'VaultConnector']
|
|
|
20
19
|
@pulumi.input_type
|
|
21
20
|
class VaultConnectorArgs:
|
|
22
21
|
def __init__(__self__, *,
|
|
23
|
-
identifier: pulumi.Input[
|
|
24
|
-
renewal_interval_minutes: pulumi.Input[
|
|
25
|
-
vault_url: pulumi.Input[
|
|
26
|
-
access_type: Optional[pulumi.Input[
|
|
27
|
-
app_role_id: Optional[pulumi.Input[
|
|
28
|
-
auth_token: Optional[pulumi.Input[
|
|
29
|
-
aws_region: Optional[pulumi.Input[
|
|
30
|
-
base_path: Optional[pulumi.Input[
|
|
31
|
-
default: Optional[pulumi.Input[
|
|
32
|
-
delegate_selectors: Optional[pulumi.Input[Sequence[pulumi.Input[
|
|
33
|
-
description: Optional[pulumi.Input[
|
|
34
|
-
execute_on_delegate: Optional[pulumi.Input[
|
|
35
|
-
is_default: Optional[pulumi.Input[
|
|
36
|
-
is_read_only: Optional[pulumi.Input[
|
|
37
|
-
k8s_auth_endpoint: Optional[pulumi.Input[
|
|
38
|
-
name: Optional[pulumi.Input[
|
|
39
|
-
namespace: Optional[pulumi.Input[
|
|
40
|
-
org_id: Optional[pulumi.Input[
|
|
41
|
-
project_id: Optional[pulumi.Input[
|
|
42
|
-
read_only: Optional[pulumi.Input[
|
|
43
|
-
renew_app_role_token: Optional[pulumi.Input[
|
|
44
|
-
secret_engine_manually_configured: Optional[pulumi.Input[
|
|
45
|
-
secret_engine_name: Optional[pulumi.Input[
|
|
46
|
-
secret_engine_version: Optional[pulumi.Input[
|
|
47
|
-
secret_id: Optional[pulumi.Input[
|
|
48
|
-
service_account_token_path: Optional[pulumi.Input[
|
|
49
|
-
sink_path: Optional[pulumi.Input[
|
|
50
|
-
tags: Optional[pulumi.Input[Sequence[pulumi.Input[
|
|
51
|
-
use_aws_iam: Optional[pulumi.Input[
|
|
52
|
-
use_jwt_auth: Optional[pulumi.Input[
|
|
53
|
-
use_k8s_auth: Optional[pulumi.Input[
|
|
54
|
-
use_vault_agent: Optional[pulumi.Input[
|
|
55
|
-
vault_aws_iam_role: Optional[pulumi.Input[
|
|
56
|
-
vault_jwt_auth_path: Optional[pulumi.Input[
|
|
57
|
-
vault_jwt_auth_role: Optional[pulumi.Input[
|
|
58
|
-
vault_k8s_auth_role: Optional[pulumi.Input[
|
|
59
|
-
xvault_aws_iam_server_id: Optional[pulumi.Input[
|
|
22
|
+
identifier: pulumi.Input[_builtins.str],
|
|
23
|
+
renewal_interval_minutes: pulumi.Input[_builtins.int],
|
|
24
|
+
vault_url: pulumi.Input[_builtins.str],
|
|
25
|
+
access_type: Optional[pulumi.Input[_builtins.str]] = None,
|
|
26
|
+
app_role_id: Optional[pulumi.Input[_builtins.str]] = None,
|
|
27
|
+
auth_token: Optional[pulumi.Input[_builtins.str]] = None,
|
|
28
|
+
aws_region: Optional[pulumi.Input[_builtins.str]] = None,
|
|
29
|
+
base_path: Optional[pulumi.Input[_builtins.str]] = None,
|
|
30
|
+
default: Optional[pulumi.Input[_builtins.bool]] = None,
|
|
31
|
+
delegate_selectors: Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]] = None,
|
|
32
|
+
description: Optional[pulumi.Input[_builtins.str]] = None,
|
|
33
|
+
execute_on_delegate: Optional[pulumi.Input[_builtins.bool]] = None,
|
|
34
|
+
is_default: Optional[pulumi.Input[_builtins.bool]] = None,
|
|
35
|
+
is_read_only: Optional[pulumi.Input[_builtins.bool]] = None,
|
|
36
|
+
k8s_auth_endpoint: Optional[pulumi.Input[_builtins.str]] = None,
|
|
37
|
+
name: Optional[pulumi.Input[_builtins.str]] = None,
|
|
38
|
+
namespace: Optional[pulumi.Input[_builtins.str]] = None,
|
|
39
|
+
org_id: Optional[pulumi.Input[_builtins.str]] = None,
|
|
40
|
+
project_id: Optional[pulumi.Input[_builtins.str]] = None,
|
|
41
|
+
read_only: Optional[pulumi.Input[_builtins.bool]] = None,
|
|
42
|
+
renew_app_role_token: Optional[pulumi.Input[_builtins.bool]] = None,
|
|
43
|
+
secret_engine_manually_configured: Optional[pulumi.Input[_builtins.bool]] = None,
|
|
44
|
+
secret_engine_name: Optional[pulumi.Input[_builtins.str]] = None,
|
|
45
|
+
secret_engine_version: Optional[pulumi.Input[_builtins.int]] = None,
|
|
46
|
+
secret_id: Optional[pulumi.Input[_builtins.str]] = None,
|
|
47
|
+
service_account_token_path: Optional[pulumi.Input[_builtins.str]] = None,
|
|
48
|
+
sink_path: Optional[pulumi.Input[_builtins.str]] = None,
|
|
49
|
+
tags: Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]] = None,
|
|
50
|
+
use_aws_iam: Optional[pulumi.Input[_builtins.bool]] = None,
|
|
51
|
+
use_jwt_auth: Optional[pulumi.Input[_builtins.bool]] = None,
|
|
52
|
+
use_k8s_auth: Optional[pulumi.Input[_builtins.bool]] = None,
|
|
53
|
+
use_vault_agent: Optional[pulumi.Input[_builtins.bool]] = None,
|
|
54
|
+
vault_aws_iam_role: Optional[pulumi.Input[_builtins.str]] = None,
|
|
55
|
+
vault_jwt_auth_path: Optional[pulumi.Input[_builtins.str]] = None,
|
|
56
|
+
vault_jwt_auth_role: Optional[pulumi.Input[_builtins.str]] = None,
|
|
57
|
+
vault_k8s_auth_role: Optional[pulumi.Input[_builtins.str]] = None,
|
|
58
|
+
xvault_aws_iam_server_id: Optional[pulumi.Input[_builtins.str]] = None):
|
|
60
59
|
"""
|
|
61
60
|
The set of arguments for constructing a VaultConnector resource.
|
|
62
|
-
:param pulumi.Input[
|
|
63
|
-
:param pulumi.Input[
|
|
64
|
-
:param pulumi.Input[
|
|
65
|
-
:param pulumi.Input[
|
|
66
|
-
:param pulumi.Input[
|
|
67
|
-
:param pulumi.Input[
|
|
68
|
-
:param pulumi.Input[
|
|
69
|
-
:param pulumi.Input[
|
|
70
|
-
:param pulumi.Input[
|
|
71
|
-
:param pulumi.Input[Sequence[pulumi.Input[
|
|
72
|
-
:param pulumi.Input[
|
|
73
|
-
:param pulumi.Input[
|
|
74
|
-
:param pulumi.Input[
|
|
75
|
-
:param pulumi.Input[
|
|
76
|
-
:param pulumi.Input[
|
|
77
|
-
:param pulumi.Input[
|
|
78
|
-
:param pulumi.Input[
|
|
79
|
-
:param pulumi.Input[
|
|
80
|
-
:param pulumi.Input[
|
|
81
|
-
:param pulumi.Input[
|
|
82
|
-
:param pulumi.Input[
|
|
83
|
-
:param pulumi.Input[
|
|
84
|
-
:param pulumi.Input[
|
|
85
|
-
:param pulumi.Input[
|
|
86
|
-
:param pulumi.Input[
|
|
87
|
-
:param pulumi.Input[
|
|
88
|
-
:param pulumi.Input[
|
|
89
|
-
:param pulumi.Input[Sequence[pulumi.Input[
|
|
90
|
-
:param pulumi.Input[
|
|
91
|
-
:param pulumi.Input[
|
|
92
|
-
:param pulumi.Input[
|
|
93
|
-
:param pulumi.Input[
|
|
94
|
-
:param pulumi.Input[
|
|
95
|
-
:param pulumi.Input[
|
|
96
|
-
:param pulumi.Input[
|
|
97
|
-
:param pulumi.Input[
|
|
98
|
-
:param pulumi.Input[
|
|
61
|
+
:param pulumi.Input[_builtins.str] identifier: Unique identifier of the resource.
|
|
62
|
+
:param pulumi.Input[_builtins.int] renewal_interval_minutes: The time interval for the token renewal.
|
|
63
|
+
:param pulumi.Input[_builtins.str] vault_url: URL of the HashiCorp Vault.
|
|
64
|
+
:param pulumi.Input[_builtins.str] access_type: Access type.
|
|
65
|
+
:param pulumi.Input[_builtins.str] app_role_id: ID of App Role.
|
|
66
|
+
:param pulumi.Input[_builtins.str] auth_token: Authentication token for Vault.
|
|
67
|
+
:param pulumi.Input[_builtins.str] aws_region: AWS region where the AWS IAM authentication will happen.
|
|
68
|
+
:param pulumi.Input[_builtins.str] base_path: Location of the Vault directory where the secret will be stored.
|
|
69
|
+
:param pulumi.Input[_builtins.bool] default: Is default or not.
|
|
70
|
+
:param pulumi.Input[Sequence[pulumi.Input[_builtins.str]]] delegate_selectors: List of Delegate Selectors that belong to the same Delegate and are used to connect to the Secret Manager.
|
|
71
|
+
:param pulumi.Input[_builtins.str] description: Description of the resource.
|
|
72
|
+
:param pulumi.Input[_builtins.bool] execute_on_delegate: Execute on delegate or not.
|
|
73
|
+
:param pulumi.Input[_builtins.bool] is_default: Is default or not.
|
|
74
|
+
:param pulumi.Input[_builtins.bool] is_read_only: Read only or not.
|
|
75
|
+
:param pulumi.Input[_builtins.str] k8s_auth_endpoint: The path where Kubernetes Auth is enabled in Vault.
|
|
76
|
+
:param pulumi.Input[_builtins.str] name: Name of the resource.
|
|
77
|
+
:param pulumi.Input[_builtins.str] namespace: Vault namespace where the Secret will be created.
|
|
78
|
+
:param pulumi.Input[_builtins.str] org_id: Unique identifier of the organization.
|
|
79
|
+
:param pulumi.Input[_builtins.str] project_id: Unique identifier of the project.
|
|
80
|
+
:param pulumi.Input[_builtins.bool] read_only: Read only.
|
|
81
|
+
:param pulumi.Input[_builtins.bool] renew_app_role_token: Boolean value to indicate if AppRole token renewal is enabled or not.
|
|
82
|
+
:param pulumi.Input[_builtins.bool] secret_engine_manually_configured: Manually entered Secret Engine.
|
|
83
|
+
:param pulumi.Input[_builtins.str] secret_engine_name: Name of the Secret Engine.
|
|
84
|
+
:param pulumi.Input[_builtins.int] secret_engine_version: Version of Secret Engine.
|
|
85
|
+
:param pulumi.Input[_builtins.str] secret_id: ID of the Secret.
|
|
86
|
+
:param pulumi.Input[_builtins.str] service_account_token_path: The Service Account token path in the K8s pod where the token is mounted.
|
|
87
|
+
:param pulumi.Input[_builtins.str] sink_path: The location from which the authentication token should be read.
|
|
88
|
+
:param pulumi.Input[Sequence[pulumi.Input[_builtins.str]]] tags: Tags to associate with the resource.
|
|
89
|
+
:param pulumi.Input[_builtins.bool] use_aws_iam: Boolean value to indicate if AWS IAM is used for authentication.
|
|
90
|
+
:param pulumi.Input[_builtins.bool] use_jwt_auth: Boolean value to indicate if JWT is used for authentication.
|
|
91
|
+
:param pulumi.Input[_builtins.bool] use_k8s_auth: Boolean value to indicate if K8s Auth is used for authentication.
|
|
92
|
+
:param pulumi.Input[_builtins.bool] use_vault_agent: Boolean value to indicate if Vault Agent is used for authentication.
|
|
93
|
+
:param pulumi.Input[_builtins.str] vault_aws_iam_role: The Vault role defined to bind to aws iam account/role being accessed.
|
|
94
|
+
:param pulumi.Input[_builtins.str] vault_jwt_auth_path: Custom path at with JWT auth in enabled for Vault.
|
|
95
|
+
:param pulumi.Input[_builtins.str] vault_jwt_auth_role: The Vault role defined with JWT auth type for accessing Vault as per policies binded.
|
|
96
|
+
:param pulumi.Input[_builtins.str] vault_k8s_auth_role: The role where K8s Auth will happen.
|
|
97
|
+
:param pulumi.Input[_builtins.str] xvault_aws_iam_server_id: The AWS IAM Header Server ID that has been configured for this AWS IAM instance.
|
|
99
98
|
"""
|
|
100
99
|
pulumi.set(__self__, "identifier", identifier)
|
|
101
100
|
pulumi.set(__self__, "renewal_interval_minutes", renewal_interval_minutes)
|
|
@@ -169,530 +168,530 @@ class VaultConnectorArgs:
|
|
|
169
168
|
if xvault_aws_iam_server_id is not None:
|
|
170
169
|
pulumi.set(__self__, "xvault_aws_iam_server_id", xvault_aws_iam_server_id)
|
|
171
170
|
|
|
172
|
-
@property
|
|
171
|
+
@_builtins.property
|
|
173
172
|
@pulumi.getter
|
|
174
|
-
def identifier(self) -> pulumi.Input[
|
|
173
|
+
def identifier(self) -> pulumi.Input[_builtins.str]:
|
|
175
174
|
"""
|
|
176
175
|
Unique identifier of the resource.
|
|
177
176
|
"""
|
|
178
177
|
return pulumi.get(self, "identifier")
|
|
179
178
|
|
|
180
179
|
@identifier.setter
|
|
181
|
-
def identifier(self, value: pulumi.Input[
|
|
180
|
+
def identifier(self, value: pulumi.Input[_builtins.str]):
|
|
182
181
|
pulumi.set(self, "identifier", value)
|
|
183
182
|
|
|
184
|
-
@property
|
|
183
|
+
@_builtins.property
|
|
185
184
|
@pulumi.getter(name="renewalIntervalMinutes")
|
|
186
|
-
def renewal_interval_minutes(self) -> pulumi.Input[
|
|
185
|
+
def renewal_interval_minutes(self) -> pulumi.Input[_builtins.int]:
|
|
187
186
|
"""
|
|
188
187
|
The time interval for the token renewal.
|
|
189
188
|
"""
|
|
190
189
|
return pulumi.get(self, "renewal_interval_minutes")
|
|
191
190
|
|
|
192
191
|
@renewal_interval_minutes.setter
|
|
193
|
-
def renewal_interval_minutes(self, value: pulumi.Input[
|
|
192
|
+
def renewal_interval_minutes(self, value: pulumi.Input[_builtins.int]):
|
|
194
193
|
pulumi.set(self, "renewal_interval_minutes", value)
|
|
195
194
|
|
|
196
|
-
@property
|
|
195
|
+
@_builtins.property
|
|
197
196
|
@pulumi.getter(name="vaultUrl")
|
|
198
|
-
def vault_url(self) -> pulumi.Input[
|
|
197
|
+
def vault_url(self) -> pulumi.Input[_builtins.str]:
|
|
199
198
|
"""
|
|
200
199
|
URL of the HashiCorp Vault.
|
|
201
200
|
"""
|
|
202
201
|
return pulumi.get(self, "vault_url")
|
|
203
202
|
|
|
204
203
|
@vault_url.setter
|
|
205
|
-
def vault_url(self, value: pulumi.Input[
|
|
204
|
+
def vault_url(self, value: pulumi.Input[_builtins.str]):
|
|
206
205
|
pulumi.set(self, "vault_url", value)
|
|
207
206
|
|
|
208
|
-
@property
|
|
207
|
+
@_builtins.property
|
|
209
208
|
@pulumi.getter(name="accessType")
|
|
210
|
-
def access_type(self) -> Optional[pulumi.Input[
|
|
209
|
+
def access_type(self) -> Optional[pulumi.Input[_builtins.str]]:
|
|
211
210
|
"""
|
|
212
211
|
Access type.
|
|
213
212
|
"""
|
|
214
213
|
return pulumi.get(self, "access_type")
|
|
215
214
|
|
|
216
215
|
@access_type.setter
|
|
217
|
-
def access_type(self, value: Optional[pulumi.Input[
|
|
216
|
+
def access_type(self, value: Optional[pulumi.Input[_builtins.str]]):
|
|
218
217
|
pulumi.set(self, "access_type", value)
|
|
219
218
|
|
|
220
|
-
@property
|
|
219
|
+
@_builtins.property
|
|
221
220
|
@pulumi.getter(name="appRoleId")
|
|
222
|
-
def app_role_id(self) -> Optional[pulumi.Input[
|
|
221
|
+
def app_role_id(self) -> Optional[pulumi.Input[_builtins.str]]:
|
|
223
222
|
"""
|
|
224
223
|
ID of App Role.
|
|
225
224
|
"""
|
|
226
225
|
return pulumi.get(self, "app_role_id")
|
|
227
226
|
|
|
228
227
|
@app_role_id.setter
|
|
229
|
-
def app_role_id(self, value: Optional[pulumi.Input[
|
|
228
|
+
def app_role_id(self, value: Optional[pulumi.Input[_builtins.str]]):
|
|
230
229
|
pulumi.set(self, "app_role_id", value)
|
|
231
230
|
|
|
232
|
-
@property
|
|
231
|
+
@_builtins.property
|
|
233
232
|
@pulumi.getter(name="authToken")
|
|
234
|
-
def auth_token(self) -> Optional[pulumi.Input[
|
|
233
|
+
def auth_token(self) -> Optional[pulumi.Input[_builtins.str]]:
|
|
235
234
|
"""
|
|
236
235
|
Authentication token for Vault.
|
|
237
236
|
"""
|
|
238
237
|
return pulumi.get(self, "auth_token")
|
|
239
238
|
|
|
240
239
|
@auth_token.setter
|
|
241
|
-
def auth_token(self, value: Optional[pulumi.Input[
|
|
240
|
+
def auth_token(self, value: Optional[pulumi.Input[_builtins.str]]):
|
|
242
241
|
pulumi.set(self, "auth_token", value)
|
|
243
242
|
|
|
244
|
-
@property
|
|
243
|
+
@_builtins.property
|
|
245
244
|
@pulumi.getter(name="awsRegion")
|
|
246
|
-
def aws_region(self) -> Optional[pulumi.Input[
|
|
245
|
+
def aws_region(self) -> Optional[pulumi.Input[_builtins.str]]:
|
|
247
246
|
"""
|
|
248
247
|
AWS region where the AWS IAM authentication will happen.
|
|
249
248
|
"""
|
|
250
249
|
return pulumi.get(self, "aws_region")
|
|
251
250
|
|
|
252
251
|
@aws_region.setter
|
|
253
|
-
def aws_region(self, value: Optional[pulumi.Input[
|
|
252
|
+
def aws_region(self, value: Optional[pulumi.Input[_builtins.str]]):
|
|
254
253
|
pulumi.set(self, "aws_region", value)
|
|
255
254
|
|
|
256
|
-
@property
|
|
255
|
+
@_builtins.property
|
|
257
256
|
@pulumi.getter(name="basePath")
|
|
258
|
-
def base_path(self) -> Optional[pulumi.Input[
|
|
257
|
+
def base_path(self) -> Optional[pulumi.Input[_builtins.str]]:
|
|
259
258
|
"""
|
|
260
259
|
Location of the Vault directory where the secret will be stored.
|
|
261
260
|
"""
|
|
262
261
|
return pulumi.get(self, "base_path")
|
|
263
262
|
|
|
264
263
|
@base_path.setter
|
|
265
|
-
def base_path(self, value: Optional[pulumi.Input[
|
|
264
|
+
def base_path(self, value: Optional[pulumi.Input[_builtins.str]]):
|
|
266
265
|
pulumi.set(self, "base_path", value)
|
|
267
266
|
|
|
268
|
-
@property
|
|
267
|
+
@_builtins.property
|
|
269
268
|
@pulumi.getter
|
|
270
|
-
def default(self) -> Optional[pulumi.Input[
|
|
269
|
+
def default(self) -> Optional[pulumi.Input[_builtins.bool]]:
|
|
271
270
|
"""
|
|
272
271
|
Is default or not.
|
|
273
272
|
"""
|
|
274
273
|
return pulumi.get(self, "default")
|
|
275
274
|
|
|
276
275
|
@default.setter
|
|
277
|
-
def default(self, value: Optional[pulumi.Input[
|
|
276
|
+
def default(self, value: Optional[pulumi.Input[_builtins.bool]]):
|
|
278
277
|
pulumi.set(self, "default", value)
|
|
279
278
|
|
|
280
|
-
@property
|
|
279
|
+
@_builtins.property
|
|
281
280
|
@pulumi.getter(name="delegateSelectors")
|
|
282
|
-
def delegate_selectors(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[
|
|
281
|
+
def delegate_selectors(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]]:
|
|
283
282
|
"""
|
|
284
283
|
List of Delegate Selectors that belong to the same Delegate and are used to connect to the Secret Manager.
|
|
285
284
|
"""
|
|
286
285
|
return pulumi.get(self, "delegate_selectors")
|
|
287
286
|
|
|
288
287
|
@delegate_selectors.setter
|
|
289
|
-
def delegate_selectors(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[
|
|
288
|
+
def delegate_selectors(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]]):
|
|
290
289
|
pulumi.set(self, "delegate_selectors", value)
|
|
291
290
|
|
|
292
|
-
@property
|
|
291
|
+
@_builtins.property
|
|
293
292
|
@pulumi.getter
|
|
294
|
-
def description(self) -> Optional[pulumi.Input[
|
|
293
|
+
def description(self) -> Optional[pulumi.Input[_builtins.str]]:
|
|
295
294
|
"""
|
|
296
295
|
Description of the resource.
|
|
297
296
|
"""
|
|
298
297
|
return pulumi.get(self, "description")
|
|
299
298
|
|
|
300
299
|
@description.setter
|
|
301
|
-
def description(self, value: Optional[pulumi.Input[
|
|
300
|
+
def description(self, value: Optional[pulumi.Input[_builtins.str]]):
|
|
302
301
|
pulumi.set(self, "description", value)
|
|
303
302
|
|
|
304
|
-
@property
|
|
303
|
+
@_builtins.property
|
|
305
304
|
@pulumi.getter(name="executeOnDelegate")
|
|
306
|
-
def execute_on_delegate(self) -> Optional[pulumi.Input[
|
|
305
|
+
def execute_on_delegate(self) -> Optional[pulumi.Input[_builtins.bool]]:
|
|
307
306
|
"""
|
|
308
307
|
Execute on delegate or not.
|
|
309
308
|
"""
|
|
310
309
|
return pulumi.get(self, "execute_on_delegate")
|
|
311
310
|
|
|
312
311
|
@execute_on_delegate.setter
|
|
313
|
-
def execute_on_delegate(self, value: Optional[pulumi.Input[
|
|
312
|
+
def execute_on_delegate(self, value: Optional[pulumi.Input[_builtins.bool]]):
|
|
314
313
|
pulumi.set(self, "execute_on_delegate", value)
|
|
315
314
|
|
|
316
|
-
@property
|
|
315
|
+
@_builtins.property
|
|
317
316
|
@pulumi.getter(name="isDefault")
|
|
318
|
-
def is_default(self) -> Optional[pulumi.Input[
|
|
317
|
+
def is_default(self) -> Optional[pulumi.Input[_builtins.bool]]:
|
|
319
318
|
"""
|
|
320
319
|
Is default or not.
|
|
321
320
|
"""
|
|
322
321
|
return pulumi.get(self, "is_default")
|
|
323
322
|
|
|
324
323
|
@is_default.setter
|
|
325
|
-
def is_default(self, value: Optional[pulumi.Input[
|
|
324
|
+
def is_default(self, value: Optional[pulumi.Input[_builtins.bool]]):
|
|
326
325
|
pulumi.set(self, "is_default", value)
|
|
327
326
|
|
|
328
|
-
@property
|
|
327
|
+
@_builtins.property
|
|
329
328
|
@pulumi.getter(name="isReadOnly")
|
|
330
|
-
def is_read_only(self) -> Optional[pulumi.Input[
|
|
329
|
+
def is_read_only(self) -> Optional[pulumi.Input[_builtins.bool]]:
|
|
331
330
|
"""
|
|
332
331
|
Read only or not.
|
|
333
332
|
"""
|
|
334
333
|
return pulumi.get(self, "is_read_only")
|
|
335
334
|
|
|
336
335
|
@is_read_only.setter
|
|
337
|
-
def is_read_only(self, value: Optional[pulumi.Input[
|
|
336
|
+
def is_read_only(self, value: Optional[pulumi.Input[_builtins.bool]]):
|
|
338
337
|
pulumi.set(self, "is_read_only", value)
|
|
339
338
|
|
|
340
|
-
@property
|
|
339
|
+
@_builtins.property
|
|
341
340
|
@pulumi.getter(name="k8sAuthEndpoint")
|
|
342
|
-
def k8s_auth_endpoint(self) -> Optional[pulumi.Input[
|
|
341
|
+
def k8s_auth_endpoint(self) -> Optional[pulumi.Input[_builtins.str]]:
|
|
343
342
|
"""
|
|
344
343
|
The path where Kubernetes Auth is enabled in Vault.
|
|
345
344
|
"""
|
|
346
345
|
return pulumi.get(self, "k8s_auth_endpoint")
|
|
347
346
|
|
|
348
347
|
@k8s_auth_endpoint.setter
|
|
349
|
-
def k8s_auth_endpoint(self, value: Optional[pulumi.Input[
|
|
348
|
+
def k8s_auth_endpoint(self, value: Optional[pulumi.Input[_builtins.str]]):
|
|
350
349
|
pulumi.set(self, "k8s_auth_endpoint", value)
|
|
351
350
|
|
|
352
|
-
@property
|
|
351
|
+
@_builtins.property
|
|
353
352
|
@pulumi.getter
|
|
354
|
-
def name(self) -> Optional[pulumi.Input[
|
|
353
|
+
def name(self) -> Optional[pulumi.Input[_builtins.str]]:
|
|
355
354
|
"""
|
|
356
355
|
Name of the resource.
|
|
357
356
|
"""
|
|
358
357
|
return pulumi.get(self, "name")
|
|
359
358
|
|
|
360
359
|
@name.setter
|
|
361
|
-
def name(self, value: Optional[pulumi.Input[
|
|
360
|
+
def name(self, value: Optional[pulumi.Input[_builtins.str]]):
|
|
362
361
|
pulumi.set(self, "name", value)
|
|
363
362
|
|
|
364
|
-
@property
|
|
363
|
+
@_builtins.property
|
|
365
364
|
@pulumi.getter
|
|
366
|
-
def namespace(self) -> Optional[pulumi.Input[
|
|
365
|
+
def namespace(self) -> Optional[pulumi.Input[_builtins.str]]:
|
|
367
366
|
"""
|
|
368
367
|
Vault namespace where the Secret will be created.
|
|
369
368
|
"""
|
|
370
369
|
return pulumi.get(self, "namespace")
|
|
371
370
|
|
|
372
371
|
@namespace.setter
|
|
373
|
-
def namespace(self, value: Optional[pulumi.Input[
|
|
372
|
+
def namespace(self, value: Optional[pulumi.Input[_builtins.str]]):
|
|
374
373
|
pulumi.set(self, "namespace", value)
|
|
375
374
|
|
|
376
|
-
@property
|
|
375
|
+
@_builtins.property
|
|
377
376
|
@pulumi.getter(name="orgId")
|
|
378
|
-
def org_id(self) -> Optional[pulumi.Input[
|
|
377
|
+
def org_id(self) -> Optional[pulumi.Input[_builtins.str]]:
|
|
379
378
|
"""
|
|
380
379
|
Unique identifier of the organization.
|
|
381
380
|
"""
|
|
382
381
|
return pulumi.get(self, "org_id")
|
|
383
382
|
|
|
384
383
|
@org_id.setter
|
|
385
|
-
def org_id(self, value: Optional[pulumi.Input[
|
|
384
|
+
def org_id(self, value: Optional[pulumi.Input[_builtins.str]]):
|
|
386
385
|
pulumi.set(self, "org_id", value)
|
|
387
386
|
|
|
388
|
-
@property
|
|
387
|
+
@_builtins.property
|
|
389
388
|
@pulumi.getter(name="projectId")
|
|
390
|
-
def project_id(self) -> Optional[pulumi.Input[
|
|
389
|
+
def project_id(self) -> Optional[pulumi.Input[_builtins.str]]:
|
|
391
390
|
"""
|
|
392
391
|
Unique identifier of the project.
|
|
393
392
|
"""
|
|
394
393
|
return pulumi.get(self, "project_id")
|
|
395
394
|
|
|
396
395
|
@project_id.setter
|
|
397
|
-
def project_id(self, value: Optional[pulumi.Input[
|
|
396
|
+
def project_id(self, value: Optional[pulumi.Input[_builtins.str]]):
|
|
398
397
|
pulumi.set(self, "project_id", value)
|
|
399
398
|
|
|
400
|
-
@property
|
|
399
|
+
@_builtins.property
|
|
401
400
|
@pulumi.getter(name="readOnly")
|
|
402
|
-
def read_only(self) -> Optional[pulumi.Input[
|
|
401
|
+
def read_only(self) -> Optional[pulumi.Input[_builtins.bool]]:
|
|
403
402
|
"""
|
|
404
403
|
Read only.
|
|
405
404
|
"""
|
|
406
405
|
return pulumi.get(self, "read_only")
|
|
407
406
|
|
|
408
407
|
@read_only.setter
|
|
409
|
-
def read_only(self, value: Optional[pulumi.Input[
|
|
408
|
+
def read_only(self, value: Optional[pulumi.Input[_builtins.bool]]):
|
|
410
409
|
pulumi.set(self, "read_only", value)
|
|
411
410
|
|
|
412
|
-
@property
|
|
411
|
+
@_builtins.property
|
|
413
412
|
@pulumi.getter(name="renewAppRoleToken")
|
|
414
|
-
def renew_app_role_token(self) -> Optional[pulumi.Input[
|
|
413
|
+
def renew_app_role_token(self) -> Optional[pulumi.Input[_builtins.bool]]:
|
|
415
414
|
"""
|
|
416
415
|
Boolean value to indicate if AppRole token renewal is enabled or not.
|
|
417
416
|
"""
|
|
418
417
|
return pulumi.get(self, "renew_app_role_token")
|
|
419
418
|
|
|
420
419
|
@renew_app_role_token.setter
|
|
421
|
-
def renew_app_role_token(self, value: Optional[pulumi.Input[
|
|
420
|
+
def renew_app_role_token(self, value: Optional[pulumi.Input[_builtins.bool]]):
|
|
422
421
|
pulumi.set(self, "renew_app_role_token", value)
|
|
423
422
|
|
|
424
|
-
@property
|
|
423
|
+
@_builtins.property
|
|
425
424
|
@pulumi.getter(name="secretEngineManuallyConfigured")
|
|
426
|
-
def secret_engine_manually_configured(self) -> Optional[pulumi.Input[
|
|
425
|
+
def secret_engine_manually_configured(self) -> Optional[pulumi.Input[_builtins.bool]]:
|
|
427
426
|
"""
|
|
428
427
|
Manually entered Secret Engine.
|
|
429
428
|
"""
|
|
430
429
|
return pulumi.get(self, "secret_engine_manually_configured")
|
|
431
430
|
|
|
432
431
|
@secret_engine_manually_configured.setter
|
|
433
|
-
def secret_engine_manually_configured(self, value: Optional[pulumi.Input[
|
|
432
|
+
def secret_engine_manually_configured(self, value: Optional[pulumi.Input[_builtins.bool]]):
|
|
434
433
|
pulumi.set(self, "secret_engine_manually_configured", value)
|
|
435
434
|
|
|
436
|
-
@property
|
|
435
|
+
@_builtins.property
|
|
437
436
|
@pulumi.getter(name="secretEngineName")
|
|
438
|
-
def secret_engine_name(self) -> Optional[pulumi.Input[
|
|
437
|
+
def secret_engine_name(self) -> Optional[pulumi.Input[_builtins.str]]:
|
|
439
438
|
"""
|
|
440
439
|
Name of the Secret Engine.
|
|
441
440
|
"""
|
|
442
441
|
return pulumi.get(self, "secret_engine_name")
|
|
443
442
|
|
|
444
443
|
@secret_engine_name.setter
|
|
445
|
-
def secret_engine_name(self, value: Optional[pulumi.Input[
|
|
444
|
+
def secret_engine_name(self, value: Optional[pulumi.Input[_builtins.str]]):
|
|
446
445
|
pulumi.set(self, "secret_engine_name", value)
|
|
447
446
|
|
|
448
|
-
@property
|
|
447
|
+
@_builtins.property
|
|
449
448
|
@pulumi.getter(name="secretEngineVersion")
|
|
450
|
-
def secret_engine_version(self) -> Optional[pulumi.Input[
|
|
449
|
+
def secret_engine_version(self) -> Optional[pulumi.Input[_builtins.int]]:
|
|
451
450
|
"""
|
|
452
451
|
Version of Secret Engine.
|
|
453
452
|
"""
|
|
454
453
|
return pulumi.get(self, "secret_engine_version")
|
|
455
454
|
|
|
456
455
|
@secret_engine_version.setter
|
|
457
|
-
def secret_engine_version(self, value: Optional[pulumi.Input[
|
|
456
|
+
def secret_engine_version(self, value: Optional[pulumi.Input[_builtins.int]]):
|
|
458
457
|
pulumi.set(self, "secret_engine_version", value)
|
|
459
458
|
|
|
460
|
-
@property
|
|
459
|
+
@_builtins.property
|
|
461
460
|
@pulumi.getter(name="secretId")
|
|
462
|
-
def secret_id(self) -> Optional[pulumi.Input[
|
|
461
|
+
def secret_id(self) -> Optional[pulumi.Input[_builtins.str]]:
|
|
463
462
|
"""
|
|
464
463
|
ID of the Secret.
|
|
465
464
|
"""
|
|
466
465
|
return pulumi.get(self, "secret_id")
|
|
467
466
|
|
|
468
467
|
@secret_id.setter
|
|
469
|
-
def secret_id(self, value: Optional[pulumi.Input[
|
|
468
|
+
def secret_id(self, value: Optional[pulumi.Input[_builtins.str]]):
|
|
470
469
|
pulumi.set(self, "secret_id", value)
|
|
471
470
|
|
|
472
|
-
@property
|
|
471
|
+
@_builtins.property
|
|
473
472
|
@pulumi.getter(name="serviceAccountTokenPath")
|
|
474
|
-
def service_account_token_path(self) -> Optional[pulumi.Input[
|
|
473
|
+
def service_account_token_path(self) -> Optional[pulumi.Input[_builtins.str]]:
|
|
475
474
|
"""
|
|
476
475
|
The Service Account token path in the K8s pod where the token is mounted.
|
|
477
476
|
"""
|
|
478
477
|
return pulumi.get(self, "service_account_token_path")
|
|
479
478
|
|
|
480
479
|
@service_account_token_path.setter
|
|
481
|
-
def service_account_token_path(self, value: Optional[pulumi.Input[
|
|
480
|
+
def service_account_token_path(self, value: Optional[pulumi.Input[_builtins.str]]):
|
|
482
481
|
pulumi.set(self, "service_account_token_path", value)
|
|
483
482
|
|
|
484
|
-
@property
|
|
483
|
+
@_builtins.property
|
|
485
484
|
@pulumi.getter(name="sinkPath")
|
|
486
|
-
def sink_path(self) -> Optional[pulumi.Input[
|
|
485
|
+
def sink_path(self) -> Optional[pulumi.Input[_builtins.str]]:
|
|
487
486
|
"""
|
|
488
487
|
The location from which the authentication token should be read.
|
|
489
488
|
"""
|
|
490
489
|
return pulumi.get(self, "sink_path")
|
|
491
490
|
|
|
492
491
|
@sink_path.setter
|
|
493
|
-
def sink_path(self, value: Optional[pulumi.Input[
|
|
492
|
+
def sink_path(self, value: Optional[pulumi.Input[_builtins.str]]):
|
|
494
493
|
pulumi.set(self, "sink_path", value)
|
|
495
494
|
|
|
496
|
-
@property
|
|
495
|
+
@_builtins.property
|
|
497
496
|
@pulumi.getter
|
|
498
|
-
def tags(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[
|
|
497
|
+
def tags(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]]:
|
|
499
498
|
"""
|
|
500
499
|
Tags to associate with the resource.
|
|
501
500
|
"""
|
|
502
501
|
return pulumi.get(self, "tags")
|
|
503
502
|
|
|
504
503
|
@tags.setter
|
|
505
|
-
def tags(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[
|
|
504
|
+
def tags(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]]):
|
|
506
505
|
pulumi.set(self, "tags", value)
|
|
507
506
|
|
|
508
|
-
@property
|
|
507
|
+
@_builtins.property
|
|
509
508
|
@pulumi.getter(name="useAwsIam")
|
|
510
|
-
def use_aws_iam(self) -> Optional[pulumi.Input[
|
|
509
|
+
def use_aws_iam(self) -> Optional[pulumi.Input[_builtins.bool]]:
|
|
511
510
|
"""
|
|
512
511
|
Boolean value to indicate if AWS IAM is used for authentication.
|
|
513
512
|
"""
|
|
514
513
|
return pulumi.get(self, "use_aws_iam")
|
|
515
514
|
|
|
516
515
|
@use_aws_iam.setter
|
|
517
|
-
def use_aws_iam(self, value: Optional[pulumi.Input[
|
|
516
|
+
def use_aws_iam(self, value: Optional[pulumi.Input[_builtins.bool]]):
|
|
518
517
|
pulumi.set(self, "use_aws_iam", value)
|
|
519
518
|
|
|
520
|
-
@property
|
|
519
|
+
@_builtins.property
|
|
521
520
|
@pulumi.getter(name="useJwtAuth")
|
|
522
|
-
def use_jwt_auth(self) -> Optional[pulumi.Input[
|
|
521
|
+
def use_jwt_auth(self) -> Optional[pulumi.Input[_builtins.bool]]:
|
|
523
522
|
"""
|
|
524
523
|
Boolean value to indicate if JWT is used for authentication.
|
|
525
524
|
"""
|
|
526
525
|
return pulumi.get(self, "use_jwt_auth")
|
|
527
526
|
|
|
528
527
|
@use_jwt_auth.setter
|
|
529
|
-
def use_jwt_auth(self, value: Optional[pulumi.Input[
|
|
528
|
+
def use_jwt_auth(self, value: Optional[pulumi.Input[_builtins.bool]]):
|
|
530
529
|
pulumi.set(self, "use_jwt_auth", value)
|
|
531
530
|
|
|
532
|
-
@property
|
|
531
|
+
@_builtins.property
|
|
533
532
|
@pulumi.getter(name="useK8sAuth")
|
|
534
|
-
def use_k8s_auth(self) -> Optional[pulumi.Input[
|
|
533
|
+
def use_k8s_auth(self) -> Optional[pulumi.Input[_builtins.bool]]:
|
|
535
534
|
"""
|
|
536
535
|
Boolean value to indicate if K8s Auth is used for authentication.
|
|
537
536
|
"""
|
|
538
537
|
return pulumi.get(self, "use_k8s_auth")
|
|
539
538
|
|
|
540
539
|
@use_k8s_auth.setter
|
|
541
|
-
def use_k8s_auth(self, value: Optional[pulumi.Input[
|
|
540
|
+
def use_k8s_auth(self, value: Optional[pulumi.Input[_builtins.bool]]):
|
|
542
541
|
pulumi.set(self, "use_k8s_auth", value)
|
|
543
542
|
|
|
544
|
-
@property
|
|
543
|
+
@_builtins.property
|
|
545
544
|
@pulumi.getter(name="useVaultAgent")
|
|
546
|
-
def use_vault_agent(self) -> Optional[pulumi.Input[
|
|
545
|
+
def use_vault_agent(self) -> Optional[pulumi.Input[_builtins.bool]]:
|
|
547
546
|
"""
|
|
548
547
|
Boolean value to indicate if Vault Agent is used for authentication.
|
|
549
548
|
"""
|
|
550
549
|
return pulumi.get(self, "use_vault_agent")
|
|
551
550
|
|
|
552
551
|
@use_vault_agent.setter
|
|
553
|
-
def use_vault_agent(self, value: Optional[pulumi.Input[
|
|
552
|
+
def use_vault_agent(self, value: Optional[pulumi.Input[_builtins.bool]]):
|
|
554
553
|
pulumi.set(self, "use_vault_agent", value)
|
|
555
554
|
|
|
556
|
-
@property
|
|
555
|
+
@_builtins.property
|
|
557
556
|
@pulumi.getter(name="vaultAwsIamRole")
|
|
558
|
-
def vault_aws_iam_role(self) -> Optional[pulumi.Input[
|
|
557
|
+
def vault_aws_iam_role(self) -> Optional[pulumi.Input[_builtins.str]]:
|
|
559
558
|
"""
|
|
560
559
|
The Vault role defined to bind to aws iam account/role being accessed.
|
|
561
560
|
"""
|
|
562
561
|
return pulumi.get(self, "vault_aws_iam_role")
|
|
563
562
|
|
|
564
563
|
@vault_aws_iam_role.setter
|
|
565
|
-
def vault_aws_iam_role(self, value: Optional[pulumi.Input[
|
|
564
|
+
def vault_aws_iam_role(self, value: Optional[pulumi.Input[_builtins.str]]):
|
|
566
565
|
pulumi.set(self, "vault_aws_iam_role", value)
|
|
567
566
|
|
|
568
|
-
@property
|
|
567
|
+
@_builtins.property
|
|
569
568
|
@pulumi.getter(name="vaultJwtAuthPath")
|
|
570
|
-
def vault_jwt_auth_path(self) -> Optional[pulumi.Input[
|
|
569
|
+
def vault_jwt_auth_path(self) -> Optional[pulumi.Input[_builtins.str]]:
|
|
571
570
|
"""
|
|
572
571
|
Custom path at with JWT auth in enabled for Vault.
|
|
573
572
|
"""
|
|
574
573
|
return pulumi.get(self, "vault_jwt_auth_path")
|
|
575
574
|
|
|
576
575
|
@vault_jwt_auth_path.setter
|
|
577
|
-
def vault_jwt_auth_path(self, value: Optional[pulumi.Input[
|
|
576
|
+
def vault_jwt_auth_path(self, value: Optional[pulumi.Input[_builtins.str]]):
|
|
578
577
|
pulumi.set(self, "vault_jwt_auth_path", value)
|
|
579
578
|
|
|
580
|
-
@property
|
|
579
|
+
@_builtins.property
|
|
581
580
|
@pulumi.getter(name="vaultJwtAuthRole")
|
|
582
|
-
def vault_jwt_auth_role(self) -> Optional[pulumi.Input[
|
|
581
|
+
def vault_jwt_auth_role(self) -> Optional[pulumi.Input[_builtins.str]]:
|
|
583
582
|
"""
|
|
584
583
|
The Vault role defined with JWT auth type for accessing Vault as per policies binded.
|
|
585
584
|
"""
|
|
586
585
|
return pulumi.get(self, "vault_jwt_auth_role")
|
|
587
586
|
|
|
588
587
|
@vault_jwt_auth_role.setter
|
|
589
|
-
def vault_jwt_auth_role(self, value: Optional[pulumi.Input[
|
|
588
|
+
def vault_jwt_auth_role(self, value: Optional[pulumi.Input[_builtins.str]]):
|
|
590
589
|
pulumi.set(self, "vault_jwt_auth_role", value)
|
|
591
590
|
|
|
592
|
-
@property
|
|
591
|
+
@_builtins.property
|
|
593
592
|
@pulumi.getter(name="vaultK8sAuthRole")
|
|
594
|
-
def vault_k8s_auth_role(self) -> Optional[pulumi.Input[
|
|
593
|
+
def vault_k8s_auth_role(self) -> Optional[pulumi.Input[_builtins.str]]:
|
|
595
594
|
"""
|
|
596
595
|
The role where K8s Auth will happen.
|
|
597
596
|
"""
|
|
598
597
|
return pulumi.get(self, "vault_k8s_auth_role")
|
|
599
598
|
|
|
600
599
|
@vault_k8s_auth_role.setter
|
|
601
|
-
def vault_k8s_auth_role(self, value: Optional[pulumi.Input[
|
|
600
|
+
def vault_k8s_auth_role(self, value: Optional[pulumi.Input[_builtins.str]]):
|
|
602
601
|
pulumi.set(self, "vault_k8s_auth_role", value)
|
|
603
602
|
|
|
604
|
-
@property
|
|
603
|
+
@_builtins.property
|
|
605
604
|
@pulumi.getter(name="xvaultAwsIamServerId")
|
|
606
|
-
def xvault_aws_iam_server_id(self) -> Optional[pulumi.Input[
|
|
605
|
+
def xvault_aws_iam_server_id(self) -> Optional[pulumi.Input[_builtins.str]]:
|
|
607
606
|
"""
|
|
608
607
|
The AWS IAM Header Server ID that has been configured for this AWS IAM instance.
|
|
609
608
|
"""
|
|
610
609
|
return pulumi.get(self, "xvault_aws_iam_server_id")
|
|
611
610
|
|
|
612
611
|
@xvault_aws_iam_server_id.setter
|
|
613
|
-
def xvault_aws_iam_server_id(self, value: Optional[pulumi.Input[
|
|
612
|
+
def xvault_aws_iam_server_id(self, value: Optional[pulumi.Input[_builtins.str]]):
|
|
614
613
|
pulumi.set(self, "xvault_aws_iam_server_id", value)
|
|
615
614
|
|
|
616
615
|
|
|
617
616
|
@pulumi.input_type
|
|
618
617
|
class _VaultConnectorState:
|
|
619
618
|
def __init__(__self__, *,
|
|
620
|
-
access_type: Optional[pulumi.Input[
|
|
621
|
-
app_role_id: Optional[pulumi.Input[
|
|
622
|
-
auth_token: Optional[pulumi.Input[
|
|
623
|
-
aws_region: Optional[pulumi.Input[
|
|
624
|
-
base_path: Optional[pulumi.Input[
|
|
625
|
-
default: Optional[pulumi.Input[
|
|
626
|
-
delegate_selectors: Optional[pulumi.Input[Sequence[pulumi.Input[
|
|
627
|
-
description: Optional[pulumi.Input[
|
|
628
|
-
execute_on_delegate: Optional[pulumi.Input[
|
|
629
|
-
identifier: Optional[pulumi.Input[
|
|
630
|
-
is_default: Optional[pulumi.Input[
|
|
631
|
-
is_read_only: Optional[pulumi.Input[
|
|
632
|
-
k8s_auth_endpoint: Optional[pulumi.Input[
|
|
633
|
-
name: Optional[pulumi.Input[
|
|
634
|
-
namespace: Optional[pulumi.Input[
|
|
635
|
-
org_id: Optional[pulumi.Input[
|
|
636
|
-
project_id: Optional[pulumi.Input[
|
|
637
|
-
read_only: Optional[pulumi.Input[
|
|
638
|
-
renew_app_role_token: Optional[pulumi.Input[
|
|
639
|
-
renewal_interval_minutes: Optional[pulumi.Input[
|
|
640
|
-
secret_engine_manually_configured: Optional[pulumi.Input[
|
|
641
|
-
secret_engine_name: Optional[pulumi.Input[
|
|
642
|
-
secret_engine_version: Optional[pulumi.Input[
|
|
643
|
-
secret_id: Optional[pulumi.Input[
|
|
644
|
-
service_account_token_path: Optional[pulumi.Input[
|
|
645
|
-
sink_path: Optional[pulumi.Input[
|
|
646
|
-
tags: Optional[pulumi.Input[Sequence[pulumi.Input[
|
|
647
|
-
use_aws_iam: Optional[pulumi.Input[
|
|
648
|
-
use_jwt_auth: Optional[pulumi.Input[
|
|
649
|
-
use_k8s_auth: Optional[pulumi.Input[
|
|
650
|
-
use_vault_agent: Optional[pulumi.Input[
|
|
651
|
-
vault_aws_iam_role: Optional[pulumi.Input[
|
|
652
|
-
vault_jwt_auth_path: Optional[pulumi.Input[
|
|
653
|
-
vault_jwt_auth_role: Optional[pulumi.Input[
|
|
654
|
-
vault_k8s_auth_role: Optional[pulumi.Input[
|
|
655
|
-
vault_url: Optional[pulumi.Input[
|
|
656
|
-
xvault_aws_iam_server_id: Optional[pulumi.Input[
|
|
619
|
+
access_type: Optional[pulumi.Input[_builtins.str]] = None,
|
|
620
|
+
app_role_id: Optional[pulumi.Input[_builtins.str]] = None,
|
|
621
|
+
auth_token: Optional[pulumi.Input[_builtins.str]] = None,
|
|
622
|
+
aws_region: Optional[pulumi.Input[_builtins.str]] = None,
|
|
623
|
+
base_path: Optional[pulumi.Input[_builtins.str]] = None,
|
|
624
|
+
default: Optional[pulumi.Input[_builtins.bool]] = None,
|
|
625
|
+
delegate_selectors: Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]] = None,
|
|
626
|
+
description: Optional[pulumi.Input[_builtins.str]] = None,
|
|
627
|
+
execute_on_delegate: Optional[pulumi.Input[_builtins.bool]] = None,
|
|
628
|
+
identifier: Optional[pulumi.Input[_builtins.str]] = None,
|
|
629
|
+
is_default: Optional[pulumi.Input[_builtins.bool]] = None,
|
|
630
|
+
is_read_only: Optional[pulumi.Input[_builtins.bool]] = None,
|
|
631
|
+
k8s_auth_endpoint: Optional[pulumi.Input[_builtins.str]] = None,
|
|
632
|
+
name: Optional[pulumi.Input[_builtins.str]] = None,
|
|
633
|
+
namespace: Optional[pulumi.Input[_builtins.str]] = None,
|
|
634
|
+
org_id: Optional[pulumi.Input[_builtins.str]] = None,
|
|
635
|
+
project_id: Optional[pulumi.Input[_builtins.str]] = None,
|
|
636
|
+
read_only: Optional[pulumi.Input[_builtins.bool]] = None,
|
|
637
|
+
renew_app_role_token: Optional[pulumi.Input[_builtins.bool]] = None,
|
|
638
|
+
renewal_interval_minutes: Optional[pulumi.Input[_builtins.int]] = None,
|
|
639
|
+
secret_engine_manually_configured: Optional[pulumi.Input[_builtins.bool]] = None,
|
|
640
|
+
secret_engine_name: Optional[pulumi.Input[_builtins.str]] = None,
|
|
641
|
+
secret_engine_version: Optional[pulumi.Input[_builtins.int]] = None,
|
|
642
|
+
secret_id: Optional[pulumi.Input[_builtins.str]] = None,
|
|
643
|
+
service_account_token_path: Optional[pulumi.Input[_builtins.str]] = None,
|
|
644
|
+
sink_path: Optional[pulumi.Input[_builtins.str]] = None,
|
|
645
|
+
tags: Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]] = None,
|
|
646
|
+
use_aws_iam: Optional[pulumi.Input[_builtins.bool]] = None,
|
|
647
|
+
use_jwt_auth: Optional[pulumi.Input[_builtins.bool]] = None,
|
|
648
|
+
use_k8s_auth: Optional[pulumi.Input[_builtins.bool]] = None,
|
|
649
|
+
use_vault_agent: Optional[pulumi.Input[_builtins.bool]] = None,
|
|
650
|
+
vault_aws_iam_role: Optional[pulumi.Input[_builtins.str]] = None,
|
|
651
|
+
vault_jwt_auth_path: Optional[pulumi.Input[_builtins.str]] = None,
|
|
652
|
+
vault_jwt_auth_role: Optional[pulumi.Input[_builtins.str]] = None,
|
|
653
|
+
vault_k8s_auth_role: Optional[pulumi.Input[_builtins.str]] = None,
|
|
654
|
+
vault_url: Optional[pulumi.Input[_builtins.str]] = None,
|
|
655
|
+
xvault_aws_iam_server_id: Optional[pulumi.Input[_builtins.str]] = None):
|
|
657
656
|
"""
|
|
658
657
|
Input properties used for looking up and filtering VaultConnector resources.
|
|
659
|
-
:param pulumi.Input[
|
|
660
|
-
:param pulumi.Input[
|
|
661
|
-
:param pulumi.Input[
|
|
662
|
-
:param pulumi.Input[
|
|
663
|
-
:param pulumi.Input[
|
|
664
|
-
:param pulumi.Input[
|
|
665
|
-
:param pulumi.Input[Sequence[pulumi.Input[
|
|
666
|
-
:param pulumi.Input[
|
|
667
|
-
:param pulumi.Input[
|
|
668
|
-
:param pulumi.Input[
|
|
669
|
-
:param pulumi.Input[
|
|
670
|
-
:param pulumi.Input[
|
|
671
|
-
:param pulumi.Input[
|
|
672
|
-
:param pulumi.Input[
|
|
673
|
-
:param pulumi.Input[
|
|
674
|
-
:param pulumi.Input[
|
|
675
|
-
:param pulumi.Input[
|
|
676
|
-
:param pulumi.Input[
|
|
677
|
-
:param pulumi.Input[
|
|
678
|
-
:param pulumi.Input[
|
|
679
|
-
:param pulumi.Input[
|
|
680
|
-
:param pulumi.Input[
|
|
681
|
-
:param pulumi.Input[
|
|
682
|
-
:param pulumi.Input[
|
|
683
|
-
:param pulumi.Input[
|
|
684
|
-
:param pulumi.Input[
|
|
685
|
-
:param pulumi.Input[Sequence[pulumi.Input[
|
|
686
|
-
:param pulumi.Input[
|
|
687
|
-
:param pulumi.Input[
|
|
688
|
-
:param pulumi.Input[
|
|
689
|
-
:param pulumi.Input[
|
|
690
|
-
:param pulumi.Input[
|
|
691
|
-
:param pulumi.Input[
|
|
692
|
-
:param pulumi.Input[
|
|
693
|
-
:param pulumi.Input[
|
|
694
|
-
:param pulumi.Input[
|
|
695
|
-
:param pulumi.Input[
|
|
658
|
+
:param pulumi.Input[_builtins.str] access_type: Access type.
|
|
659
|
+
:param pulumi.Input[_builtins.str] app_role_id: ID of App Role.
|
|
660
|
+
:param pulumi.Input[_builtins.str] auth_token: Authentication token for Vault.
|
|
661
|
+
:param pulumi.Input[_builtins.str] aws_region: AWS region where the AWS IAM authentication will happen.
|
|
662
|
+
:param pulumi.Input[_builtins.str] base_path: Location of the Vault directory where the secret will be stored.
|
|
663
|
+
:param pulumi.Input[_builtins.bool] default: Is default or not.
|
|
664
|
+
:param pulumi.Input[Sequence[pulumi.Input[_builtins.str]]] delegate_selectors: List of Delegate Selectors that belong to the same Delegate and are used to connect to the Secret Manager.
|
|
665
|
+
:param pulumi.Input[_builtins.str] description: Description of the resource.
|
|
666
|
+
:param pulumi.Input[_builtins.bool] execute_on_delegate: Execute on delegate or not.
|
|
667
|
+
:param pulumi.Input[_builtins.str] identifier: Unique identifier of the resource.
|
|
668
|
+
:param pulumi.Input[_builtins.bool] is_default: Is default or not.
|
|
669
|
+
:param pulumi.Input[_builtins.bool] is_read_only: Read only or not.
|
|
670
|
+
:param pulumi.Input[_builtins.str] k8s_auth_endpoint: The path where Kubernetes Auth is enabled in Vault.
|
|
671
|
+
:param pulumi.Input[_builtins.str] name: Name of the resource.
|
|
672
|
+
:param pulumi.Input[_builtins.str] namespace: Vault namespace where the Secret will be created.
|
|
673
|
+
:param pulumi.Input[_builtins.str] org_id: Unique identifier of the organization.
|
|
674
|
+
:param pulumi.Input[_builtins.str] project_id: Unique identifier of the project.
|
|
675
|
+
:param pulumi.Input[_builtins.bool] read_only: Read only.
|
|
676
|
+
:param pulumi.Input[_builtins.bool] renew_app_role_token: Boolean value to indicate if AppRole token renewal is enabled or not.
|
|
677
|
+
:param pulumi.Input[_builtins.int] renewal_interval_minutes: The time interval for the token renewal.
|
|
678
|
+
:param pulumi.Input[_builtins.bool] secret_engine_manually_configured: Manually entered Secret Engine.
|
|
679
|
+
:param pulumi.Input[_builtins.str] secret_engine_name: Name of the Secret Engine.
|
|
680
|
+
:param pulumi.Input[_builtins.int] secret_engine_version: Version of Secret Engine.
|
|
681
|
+
:param pulumi.Input[_builtins.str] secret_id: ID of the Secret.
|
|
682
|
+
:param pulumi.Input[_builtins.str] service_account_token_path: The Service Account token path in the K8s pod where the token is mounted.
|
|
683
|
+
:param pulumi.Input[_builtins.str] sink_path: The location from which the authentication token should be read.
|
|
684
|
+
:param pulumi.Input[Sequence[pulumi.Input[_builtins.str]]] tags: Tags to associate with the resource.
|
|
685
|
+
:param pulumi.Input[_builtins.bool] use_aws_iam: Boolean value to indicate if AWS IAM is used for authentication.
|
|
686
|
+
:param pulumi.Input[_builtins.bool] use_jwt_auth: Boolean value to indicate if JWT is used for authentication.
|
|
687
|
+
:param pulumi.Input[_builtins.bool] use_k8s_auth: Boolean value to indicate if K8s Auth is used for authentication.
|
|
688
|
+
:param pulumi.Input[_builtins.bool] use_vault_agent: Boolean value to indicate if Vault Agent is used for authentication.
|
|
689
|
+
:param pulumi.Input[_builtins.str] vault_aws_iam_role: The Vault role defined to bind to aws iam account/role being accessed.
|
|
690
|
+
:param pulumi.Input[_builtins.str] vault_jwt_auth_path: Custom path at with JWT auth in enabled for Vault.
|
|
691
|
+
:param pulumi.Input[_builtins.str] vault_jwt_auth_role: The Vault role defined with JWT auth type for accessing Vault as per policies binded.
|
|
692
|
+
:param pulumi.Input[_builtins.str] vault_k8s_auth_role: The role where K8s Auth will happen.
|
|
693
|
+
:param pulumi.Input[_builtins.str] vault_url: URL of the HashiCorp Vault.
|
|
694
|
+
:param pulumi.Input[_builtins.str] xvault_aws_iam_server_id: The AWS IAM Header Server ID that has been configured for this AWS IAM instance.
|
|
696
695
|
"""
|
|
697
696
|
if access_type is not None:
|
|
698
697
|
pulumi.set(__self__, "access_type", access_type)
|
|
@@ -769,448 +768,448 @@ class _VaultConnectorState:
|
|
|
769
768
|
if xvault_aws_iam_server_id is not None:
|
|
770
769
|
pulumi.set(__self__, "xvault_aws_iam_server_id", xvault_aws_iam_server_id)
|
|
771
770
|
|
|
772
|
-
@property
|
|
771
|
+
@_builtins.property
|
|
773
772
|
@pulumi.getter(name="accessType")
|
|
774
|
-
def access_type(self) -> Optional[pulumi.Input[
|
|
773
|
+
def access_type(self) -> Optional[pulumi.Input[_builtins.str]]:
|
|
775
774
|
"""
|
|
776
775
|
Access type.
|
|
777
776
|
"""
|
|
778
777
|
return pulumi.get(self, "access_type")
|
|
779
778
|
|
|
780
779
|
@access_type.setter
|
|
781
|
-
def access_type(self, value: Optional[pulumi.Input[
|
|
780
|
+
def access_type(self, value: Optional[pulumi.Input[_builtins.str]]):
|
|
782
781
|
pulumi.set(self, "access_type", value)
|
|
783
782
|
|
|
784
|
-
@property
|
|
783
|
+
@_builtins.property
|
|
785
784
|
@pulumi.getter(name="appRoleId")
|
|
786
|
-
def app_role_id(self) -> Optional[pulumi.Input[
|
|
785
|
+
def app_role_id(self) -> Optional[pulumi.Input[_builtins.str]]:
|
|
787
786
|
"""
|
|
788
787
|
ID of App Role.
|
|
789
788
|
"""
|
|
790
789
|
return pulumi.get(self, "app_role_id")
|
|
791
790
|
|
|
792
791
|
@app_role_id.setter
|
|
793
|
-
def app_role_id(self, value: Optional[pulumi.Input[
|
|
792
|
+
def app_role_id(self, value: Optional[pulumi.Input[_builtins.str]]):
|
|
794
793
|
pulumi.set(self, "app_role_id", value)
|
|
795
794
|
|
|
796
|
-
@property
|
|
795
|
+
@_builtins.property
|
|
797
796
|
@pulumi.getter(name="authToken")
|
|
798
|
-
def auth_token(self) -> Optional[pulumi.Input[
|
|
797
|
+
def auth_token(self) -> Optional[pulumi.Input[_builtins.str]]:
|
|
799
798
|
"""
|
|
800
799
|
Authentication token for Vault.
|
|
801
800
|
"""
|
|
802
801
|
return pulumi.get(self, "auth_token")
|
|
803
802
|
|
|
804
803
|
@auth_token.setter
|
|
805
|
-
def auth_token(self, value: Optional[pulumi.Input[
|
|
804
|
+
def auth_token(self, value: Optional[pulumi.Input[_builtins.str]]):
|
|
806
805
|
pulumi.set(self, "auth_token", value)
|
|
807
806
|
|
|
808
|
-
@property
|
|
807
|
+
@_builtins.property
|
|
809
808
|
@pulumi.getter(name="awsRegion")
|
|
810
|
-
def aws_region(self) -> Optional[pulumi.Input[
|
|
809
|
+
def aws_region(self) -> Optional[pulumi.Input[_builtins.str]]:
|
|
811
810
|
"""
|
|
812
811
|
AWS region where the AWS IAM authentication will happen.
|
|
813
812
|
"""
|
|
814
813
|
return pulumi.get(self, "aws_region")
|
|
815
814
|
|
|
816
815
|
@aws_region.setter
|
|
817
|
-
def aws_region(self, value: Optional[pulumi.Input[
|
|
816
|
+
def aws_region(self, value: Optional[pulumi.Input[_builtins.str]]):
|
|
818
817
|
pulumi.set(self, "aws_region", value)
|
|
819
818
|
|
|
820
|
-
@property
|
|
819
|
+
@_builtins.property
|
|
821
820
|
@pulumi.getter(name="basePath")
|
|
822
|
-
def base_path(self) -> Optional[pulumi.Input[
|
|
821
|
+
def base_path(self) -> Optional[pulumi.Input[_builtins.str]]:
|
|
823
822
|
"""
|
|
824
823
|
Location of the Vault directory where the secret will be stored.
|
|
825
824
|
"""
|
|
826
825
|
return pulumi.get(self, "base_path")
|
|
827
826
|
|
|
828
827
|
@base_path.setter
|
|
829
|
-
def base_path(self, value: Optional[pulumi.Input[
|
|
828
|
+
def base_path(self, value: Optional[pulumi.Input[_builtins.str]]):
|
|
830
829
|
pulumi.set(self, "base_path", value)
|
|
831
830
|
|
|
832
|
-
@property
|
|
831
|
+
@_builtins.property
|
|
833
832
|
@pulumi.getter
|
|
834
|
-
def default(self) -> Optional[pulumi.Input[
|
|
833
|
+
def default(self) -> Optional[pulumi.Input[_builtins.bool]]:
|
|
835
834
|
"""
|
|
836
835
|
Is default or not.
|
|
837
836
|
"""
|
|
838
837
|
return pulumi.get(self, "default")
|
|
839
838
|
|
|
840
839
|
@default.setter
|
|
841
|
-
def default(self, value: Optional[pulumi.Input[
|
|
840
|
+
def default(self, value: Optional[pulumi.Input[_builtins.bool]]):
|
|
842
841
|
pulumi.set(self, "default", value)
|
|
843
842
|
|
|
844
|
-
@property
|
|
843
|
+
@_builtins.property
|
|
845
844
|
@pulumi.getter(name="delegateSelectors")
|
|
846
|
-
def delegate_selectors(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[
|
|
845
|
+
def delegate_selectors(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]]:
|
|
847
846
|
"""
|
|
848
847
|
List of Delegate Selectors that belong to the same Delegate and are used to connect to the Secret Manager.
|
|
849
848
|
"""
|
|
850
849
|
return pulumi.get(self, "delegate_selectors")
|
|
851
850
|
|
|
852
851
|
@delegate_selectors.setter
|
|
853
|
-
def delegate_selectors(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[
|
|
852
|
+
def delegate_selectors(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]]):
|
|
854
853
|
pulumi.set(self, "delegate_selectors", value)
|
|
855
854
|
|
|
856
|
-
@property
|
|
855
|
+
@_builtins.property
|
|
857
856
|
@pulumi.getter
|
|
858
|
-
def description(self) -> Optional[pulumi.Input[
|
|
857
|
+
def description(self) -> Optional[pulumi.Input[_builtins.str]]:
|
|
859
858
|
"""
|
|
860
859
|
Description of the resource.
|
|
861
860
|
"""
|
|
862
861
|
return pulumi.get(self, "description")
|
|
863
862
|
|
|
864
863
|
@description.setter
|
|
865
|
-
def description(self, value: Optional[pulumi.Input[
|
|
864
|
+
def description(self, value: Optional[pulumi.Input[_builtins.str]]):
|
|
866
865
|
pulumi.set(self, "description", value)
|
|
867
866
|
|
|
868
|
-
@property
|
|
867
|
+
@_builtins.property
|
|
869
868
|
@pulumi.getter(name="executeOnDelegate")
|
|
870
|
-
def execute_on_delegate(self) -> Optional[pulumi.Input[
|
|
869
|
+
def execute_on_delegate(self) -> Optional[pulumi.Input[_builtins.bool]]:
|
|
871
870
|
"""
|
|
872
871
|
Execute on delegate or not.
|
|
873
872
|
"""
|
|
874
873
|
return pulumi.get(self, "execute_on_delegate")
|
|
875
874
|
|
|
876
875
|
@execute_on_delegate.setter
|
|
877
|
-
def execute_on_delegate(self, value: Optional[pulumi.Input[
|
|
876
|
+
def execute_on_delegate(self, value: Optional[pulumi.Input[_builtins.bool]]):
|
|
878
877
|
pulumi.set(self, "execute_on_delegate", value)
|
|
879
878
|
|
|
880
|
-
@property
|
|
879
|
+
@_builtins.property
|
|
881
880
|
@pulumi.getter
|
|
882
|
-
def identifier(self) -> Optional[pulumi.Input[
|
|
881
|
+
def identifier(self) -> Optional[pulumi.Input[_builtins.str]]:
|
|
883
882
|
"""
|
|
884
883
|
Unique identifier of the resource.
|
|
885
884
|
"""
|
|
886
885
|
return pulumi.get(self, "identifier")
|
|
887
886
|
|
|
888
887
|
@identifier.setter
|
|
889
|
-
def identifier(self, value: Optional[pulumi.Input[
|
|
888
|
+
def identifier(self, value: Optional[pulumi.Input[_builtins.str]]):
|
|
890
889
|
pulumi.set(self, "identifier", value)
|
|
891
890
|
|
|
892
|
-
@property
|
|
891
|
+
@_builtins.property
|
|
893
892
|
@pulumi.getter(name="isDefault")
|
|
894
|
-
def is_default(self) -> Optional[pulumi.Input[
|
|
893
|
+
def is_default(self) -> Optional[pulumi.Input[_builtins.bool]]:
|
|
895
894
|
"""
|
|
896
895
|
Is default or not.
|
|
897
896
|
"""
|
|
898
897
|
return pulumi.get(self, "is_default")
|
|
899
898
|
|
|
900
899
|
@is_default.setter
|
|
901
|
-
def is_default(self, value: Optional[pulumi.Input[
|
|
900
|
+
def is_default(self, value: Optional[pulumi.Input[_builtins.bool]]):
|
|
902
901
|
pulumi.set(self, "is_default", value)
|
|
903
902
|
|
|
904
|
-
@property
|
|
903
|
+
@_builtins.property
|
|
905
904
|
@pulumi.getter(name="isReadOnly")
|
|
906
|
-
def is_read_only(self) -> Optional[pulumi.Input[
|
|
905
|
+
def is_read_only(self) -> Optional[pulumi.Input[_builtins.bool]]:
|
|
907
906
|
"""
|
|
908
907
|
Read only or not.
|
|
909
908
|
"""
|
|
910
909
|
return pulumi.get(self, "is_read_only")
|
|
911
910
|
|
|
912
911
|
@is_read_only.setter
|
|
913
|
-
def is_read_only(self, value: Optional[pulumi.Input[
|
|
912
|
+
def is_read_only(self, value: Optional[pulumi.Input[_builtins.bool]]):
|
|
914
913
|
pulumi.set(self, "is_read_only", value)
|
|
915
914
|
|
|
916
|
-
@property
|
|
915
|
+
@_builtins.property
|
|
917
916
|
@pulumi.getter(name="k8sAuthEndpoint")
|
|
918
|
-
def k8s_auth_endpoint(self) -> Optional[pulumi.Input[
|
|
917
|
+
def k8s_auth_endpoint(self) -> Optional[pulumi.Input[_builtins.str]]:
|
|
919
918
|
"""
|
|
920
919
|
The path where Kubernetes Auth is enabled in Vault.
|
|
921
920
|
"""
|
|
922
921
|
return pulumi.get(self, "k8s_auth_endpoint")
|
|
923
922
|
|
|
924
923
|
@k8s_auth_endpoint.setter
|
|
925
|
-
def k8s_auth_endpoint(self, value: Optional[pulumi.Input[
|
|
924
|
+
def k8s_auth_endpoint(self, value: Optional[pulumi.Input[_builtins.str]]):
|
|
926
925
|
pulumi.set(self, "k8s_auth_endpoint", value)
|
|
927
926
|
|
|
928
|
-
@property
|
|
927
|
+
@_builtins.property
|
|
929
928
|
@pulumi.getter
|
|
930
|
-
def name(self) -> Optional[pulumi.Input[
|
|
929
|
+
def name(self) -> Optional[pulumi.Input[_builtins.str]]:
|
|
931
930
|
"""
|
|
932
931
|
Name of the resource.
|
|
933
932
|
"""
|
|
934
933
|
return pulumi.get(self, "name")
|
|
935
934
|
|
|
936
935
|
@name.setter
|
|
937
|
-
def name(self, value: Optional[pulumi.Input[
|
|
936
|
+
def name(self, value: Optional[pulumi.Input[_builtins.str]]):
|
|
938
937
|
pulumi.set(self, "name", value)
|
|
939
938
|
|
|
940
|
-
@property
|
|
939
|
+
@_builtins.property
|
|
941
940
|
@pulumi.getter
|
|
942
|
-
def namespace(self) -> Optional[pulumi.Input[
|
|
941
|
+
def namespace(self) -> Optional[pulumi.Input[_builtins.str]]:
|
|
943
942
|
"""
|
|
944
943
|
Vault namespace where the Secret will be created.
|
|
945
944
|
"""
|
|
946
945
|
return pulumi.get(self, "namespace")
|
|
947
946
|
|
|
948
947
|
@namespace.setter
|
|
949
|
-
def namespace(self, value: Optional[pulumi.Input[
|
|
948
|
+
def namespace(self, value: Optional[pulumi.Input[_builtins.str]]):
|
|
950
949
|
pulumi.set(self, "namespace", value)
|
|
951
950
|
|
|
952
|
-
@property
|
|
951
|
+
@_builtins.property
|
|
953
952
|
@pulumi.getter(name="orgId")
|
|
954
|
-
def org_id(self) -> Optional[pulumi.Input[
|
|
953
|
+
def org_id(self) -> Optional[pulumi.Input[_builtins.str]]:
|
|
955
954
|
"""
|
|
956
955
|
Unique identifier of the organization.
|
|
957
956
|
"""
|
|
958
957
|
return pulumi.get(self, "org_id")
|
|
959
958
|
|
|
960
959
|
@org_id.setter
|
|
961
|
-
def org_id(self, value: Optional[pulumi.Input[
|
|
960
|
+
def org_id(self, value: Optional[pulumi.Input[_builtins.str]]):
|
|
962
961
|
pulumi.set(self, "org_id", value)
|
|
963
962
|
|
|
964
|
-
@property
|
|
963
|
+
@_builtins.property
|
|
965
964
|
@pulumi.getter(name="projectId")
|
|
966
|
-
def project_id(self) -> Optional[pulumi.Input[
|
|
965
|
+
def project_id(self) -> Optional[pulumi.Input[_builtins.str]]:
|
|
967
966
|
"""
|
|
968
967
|
Unique identifier of the project.
|
|
969
968
|
"""
|
|
970
969
|
return pulumi.get(self, "project_id")
|
|
971
970
|
|
|
972
971
|
@project_id.setter
|
|
973
|
-
def project_id(self, value: Optional[pulumi.Input[
|
|
972
|
+
def project_id(self, value: Optional[pulumi.Input[_builtins.str]]):
|
|
974
973
|
pulumi.set(self, "project_id", value)
|
|
975
974
|
|
|
976
|
-
@property
|
|
975
|
+
@_builtins.property
|
|
977
976
|
@pulumi.getter(name="readOnly")
|
|
978
|
-
def read_only(self) -> Optional[pulumi.Input[
|
|
977
|
+
def read_only(self) -> Optional[pulumi.Input[_builtins.bool]]:
|
|
979
978
|
"""
|
|
980
979
|
Read only.
|
|
981
980
|
"""
|
|
982
981
|
return pulumi.get(self, "read_only")
|
|
983
982
|
|
|
984
983
|
@read_only.setter
|
|
985
|
-
def read_only(self, value: Optional[pulumi.Input[
|
|
984
|
+
def read_only(self, value: Optional[pulumi.Input[_builtins.bool]]):
|
|
986
985
|
pulumi.set(self, "read_only", value)
|
|
987
986
|
|
|
988
|
-
@property
|
|
987
|
+
@_builtins.property
|
|
989
988
|
@pulumi.getter(name="renewAppRoleToken")
|
|
990
|
-
def renew_app_role_token(self) -> Optional[pulumi.Input[
|
|
989
|
+
def renew_app_role_token(self) -> Optional[pulumi.Input[_builtins.bool]]:
|
|
991
990
|
"""
|
|
992
991
|
Boolean value to indicate if AppRole token renewal is enabled or not.
|
|
993
992
|
"""
|
|
994
993
|
return pulumi.get(self, "renew_app_role_token")
|
|
995
994
|
|
|
996
995
|
@renew_app_role_token.setter
|
|
997
|
-
def renew_app_role_token(self, value: Optional[pulumi.Input[
|
|
996
|
+
def renew_app_role_token(self, value: Optional[pulumi.Input[_builtins.bool]]):
|
|
998
997
|
pulumi.set(self, "renew_app_role_token", value)
|
|
999
998
|
|
|
1000
|
-
@property
|
|
999
|
+
@_builtins.property
|
|
1001
1000
|
@pulumi.getter(name="renewalIntervalMinutes")
|
|
1002
|
-
def renewal_interval_minutes(self) -> Optional[pulumi.Input[
|
|
1001
|
+
def renewal_interval_minutes(self) -> Optional[pulumi.Input[_builtins.int]]:
|
|
1003
1002
|
"""
|
|
1004
1003
|
The time interval for the token renewal.
|
|
1005
1004
|
"""
|
|
1006
1005
|
return pulumi.get(self, "renewal_interval_minutes")
|
|
1007
1006
|
|
|
1008
1007
|
@renewal_interval_minutes.setter
|
|
1009
|
-
def renewal_interval_minutes(self, value: Optional[pulumi.Input[
|
|
1008
|
+
def renewal_interval_minutes(self, value: Optional[pulumi.Input[_builtins.int]]):
|
|
1010
1009
|
pulumi.set(self, "renewal_interval_minutes", value)
|
|
1011
1010
|
|
|
1012
|
-
@property
|
|
1011
|
+
@_builtins.property
|
|
1013
1012
|
@pulumi.getter(name="secretEngineManuallyConfigured")
|
|
1014
|
-
def secret_engine_manually_configured(self) -> Optional[pulumi.Input[
|
|
1013
|
+
def secret_engine_manually_configured(self) -> Optional[pulumi.Input[_builtins.bool]]:
|
|
1015
1014
|
"""
|
|
1016
1015
|
Manually entered Secret Engine.
|
|
1017
1016
|
"""
|
|
1018
1017
|
return pulumi.get(self, "secret_engine_manually_configured")
|
|
1019
1018
|
|
|
1020
1019
|
@secret_engine_manually_configured.setter
|
|
1021
|
-
def secret_engine_manually_configured(self, value: Optional[pulumi.Input[
|
|
1020
|
+
def secret_engine_manually_configured(self, value: Optional[pulumi.Input[_builtins.bool]]):
|
|
1022
1021
|
pulumi.set(self, "secret_engine_manually_configured", value)
|
|
1023
1022
|
|
|
1024
|
-
@property
|
|
1023
|
+
@_builtins.property
|
|
1025
1024
|
@pulumi.getter(name="secretEngineName")
|
|
1026
|
-
def secret_engine_name(self) -> Optional[pulumi.Input[
|
|
1025
|
+
def secret_engine_name(self) -> Optional[pulumi.Input[_builtins.str]]:
|
|
1027
1026
|
"""
|
|
1028
1027
|
Name of the Secret Engine.
|
|
1029
1028
|
"""
|
|
1030
1029
|
return pulumi.get(self, "secret_engine_name")
|
|
1031
1030
|
|
|
1032
1031
|
@secret_engine_name.setter
|
|
1033
|
-
def secret_engine_name(self, value: Optional[pulumi.Input[
|
|
1032
|
+
def secret_engine_name(self, value: Optional[pulumi.Input[_builtins.str]]):
|
|
1034
1033
|
pulumi.set(self, "secret_engine_name", value)
|
|
1035
1034
|
|
|
1036
|
-
@property
|
|
1035
|
+
@_builtins.property
|
|
1037
1036
|
@pulumi.getter(name="secretEngineVersion")
|
|
1038
|
-
def secret_engine_version(self) -> Optional[pulumi.Input[
|
|
1037
|
+
def secret_engine_version(self) -> Optional[pulumi.Input[_builtins.int]]:
|
|
1039
1038
|
"""
|
|
1040
1039
|
Version of Secret Engine.
|
|
1041
1040
|
"""
|
|
1042
1041
|
return pulumi.get(self, "secret_engine_version")
|
|
1043
1042
|
|
|
1044
1043
|
@secret_engine_version.setter
|
|
1045
|
-
def secret_engine_version(self, value: Optional[pulumi.Input[
|
|
1044
|
+
def secret_engine_version(self, value: Optional[pulumi.Input[_builtins.int]]):
|
|
1046
1045
|
pulumi.set(self, "secret_engine_version", value)
|
|
1047
1046
|
|
|
1048
|
-
@property
|
|
1047
|
+
@_builtins.property
|
|
1049
1048
|
@pulumi.getter(name="secretId")
|
|
1050
|
-
def secret_id(self) -> Optional[pulumi.Input[
|
|
1049
|
+
def secret_id(self) -> Optional[pulumi.Input[_builtins.str]]:
|
|
1051
1050
|
"""
|
|
1052
1051
|
ID of the Secret.
|
|
1053
1052
|
"""
|
|
1054
1053
|
return pulumi.get(self, "secret_id")
|
|
1055
1054
|
|
|
1056
1055
|
@secret_id.setter
|
|
1057
|
-
def secret_id(self, value: Optional[pulumi.Input[
|
|
1056
|
+
def secret_id(self, value: Optional[pulumi.Input[_builtins.str]]):
|
|
1058
1057
|
pulumi.set(self, "secret_id", value)
|
|
1059
1058
|
|
|
1060
|
-
@property
|
|
1059
|
+
@_builtins.property
|
|
1061
1060
|
@pulumi.getter(name="serviceAccountTokenPath")
|
|
1062
|
-
def service_account_token_path(self) -> Optional[pulumi.Input[
|
|
1061
|
+
def service_account_token_path(self) -> Optional[pulumi.Input[_builtins.str]]:
|
|
1063
1062
|
"""
|
|
1064
1063
|
The Service Account token path in the K8s pod where the token is mounted.
|
|
1065
1064
|
"""
|
|
1066
1065
|
return pulumi.get(self, "service_account_token_path")
|
|
1067
1066
|
|
|
1068
1067
|
@service_account_token_path.setter
|
|
1069
|
-
def service_account_token_path(self, value: Optional[pulumi.Input[
|
|
1068
|
+
def service_account_token_path(self, value: Optional[pulumi.Input[_builtins.str]]):
|
|
1070
1069
|
pulumi.set(self, "service_account_token_path", value)
|
|
1071
1070
|
|
|
1072
|
-
@property
|
|
1071
|
+
@_builtins.property
|
|
1073
1072
|
@pulumi.getter(name="sinkPath")
|
|
1074
|
-
def sink_path(self) -> Optional[pulumi.Input[
|
|
1073
|
+
def sink_path(self) -> Optional[pulumi.Input[_builtins.str]]:
|
|
1075
1074
|
"""
|
|
1076
1075
|
The location from which the authentication token should be read.
|
|
1077
1076
|
"""
|
|
1078
1077
|
return pulumi.get(self, "sink_path")
|
|
1079
1078
|
|
|
1080
1079
|
@sink_path.setter
|
|
1081
|
-
def sink_path(self, value: Optional[pulumi.Input[
|
|
1080
|
+
def sink_path(self, value: Optional[pulumi.Input[_builtins.str]]):
|
|
1082
1081
|
pulumi.set(self, "sink_path", value)
|
|
1083
1082
|
|
|
1084
|
-
@property
|
|
1083
|
+
@_builtins.property
|
|
1085
1084
|
@pulumi.getter
|
|
1086
|
-
def tags(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[
|
|
1085
|
+
def tags(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]]:
|
|
1087
1086
|
"""
|
|
1088
1087
|
Tags to associate with the resource.
|
|
1089
1088
|
"""
|
|
1090
1089
|
return pulumi.get(self, "tags")
|
|
1091
1090
|
|
|
1092
1091
|
@tags.setter
|
|
1093
|
-
def tags(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[
|
|
1092
|
+
def tags(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]]):
|
|
1094
1093
|
pulumi.set(self, "tags", value)
|
|
1095
1094
|
|
|
1096
|
-
@property
|
|
1095
|
+
@_builtins.property
|
|
1097
1096
|
@pulumi.getter(name="useAwsIam")
|
|
1098
|
-
def use_aws_iam(self) -> Optional[pulumi.Input[
|
|
1097
|
+
def use_aws_iam(self) -> Optional[pulumi.Input[_builtins.bool]]:
|
|
1099
1098
|
"""
|
|
1100
1099
|
Boolean value to indicate if AWS IAM is used for authentication.
|
|
1101
1100
|
"""
|
|
1102
1101
|
return pulumi.get(self, "use_aws_iam")
|
|
1103
1102
|
|
|
1104
1103
|
@use_aws_iam.setter
|
|
1105
|
-
def use_aws_iam(self, value: Optional[pulumi.Input[
|
|
1104
|
+
def use_aws_iam(self, value: Optional[pulumi.Input[_builtins.bool]]):
|
|
1106
1105
|
pulumi.set(self, "use_aws_iam", value)
|
|
1107
1106
|
|
|
1108
|
-
@property
|
|
1107
|
+
@_builtins.property
|
|
1109
1108
|
@pulumi.getter(name="useJwtAuth")
|
|
1110
|
-
def use_jwt_auth(self) -> Optional[pulumi.Input[
|
|
1109
|
+
def use_jwt_auth(self) -> Optional[pulumi.Input[_builtins.bool]]:
|
|
1111
1110
|
"""
|
|
1112
1111
|
Boolean value to indicate if JWT is used for authentication.
|
|
1113
1112
|
"""
|
|
1114
1113
|
return pulumi.get(self, "use_jwt_auth")
|
|
1115
1114
|
|
|
1116
1115
|
@use_jwt_auth.setter
|
|
1117
|
-
def use_jwt_auth(self, value: Optional[pulumi.Input[
|
|
1116
|
+
def use_jwt_auth(self, value: Optional[pulumi.Input[_builtins.bool]]):
|
|
1118
1117
|
pulumi.set(self, "use_jwt_auth", value)
|
|
1119
1118
|
|
|
1120
|
-
@property
|
|
1119
|
+
@_builtins.property
|
|
1121
1120
|
@pulumi.getter(name="useK8sAuth")
|
|
1122
|
-
def use_k8s_auth(self) -> Optional[pulumi.Input[
|
|
1121
|
+
def use_k8s_auth(self) -> Optional[pulumi.Input[_builtins.bool]]:
|
|
1123
1122
|
"""
|
|
1124
1123
|
Boolean value to indicate if K8s Auth is used for authentication.
|
|
1125
1124
|
"""
|
|
1126
1125
|
return pulumi.get(self, "use_k8s_auth")
|
|
1127
1126
|
|
|
1128
1127
|
@use_k8s_auth.setter
|
|
1129
|
-
def use_k8s_auth(self, value: Optional[pulumi.Input[
|
|
1128
|
+
def use_k8s_auth(self, value: Optional[pulumi.Input[_builtins.bool]]):
|
|
1130
1129
|
pulumi.set(self, "use_k8s_auth", value)
|
|
1131
1130
|
|
|
1132
|
-
@property
|
|
1131
|
+
@_builtins.property
|
|
1133
1132
|
@pulumi.getter(name="useVaultAgent")
|
|
1134
|
-
def use_vault_agent(self) -> Optional[pulumi.Input[
|
|
1133
|
+
def use_vault_agent(self) -> Optional[pulumi.Input[_builtins.bool]]:
|
|
1135
1134
|
"""
|
|
1136
1135
|
Boolean value to indicate if Vault Agent is used for authentication.
|
|
1137
1136
|
"""
|
|
1138
1137
|
return pulumi.get(self, "use_vault_agent")
|
|
1139
1138
|
|
|
1140
1139
|
@use_vault_agent.setter
|
|
1141
|
-
def use_vault_agent(self, value: Optional[pulumi.Input[
|
|
1140
|
+
def use_vault_agent(self, value: Optional[pulumi.Input[_builtins.bool]]):
|
|
1142
1141
|
pulumi.set(self, "use_vault_agent", value)
|
|
1143
1142
|
|
|
1144
|
-
@property
|
|
1143
|
+
@_builtins.property
|
|
1145
1144
|
@pulumi.getter(name="vaultAwsIamRole")
|
|
1146
|
-
def vault_aws_iam_role(self) -> Optional[pulumi.Input[
|
|
1145
|
+
def vault_aws_iam_role(self) -> Optional[pulumi.Input[_builtins.str]]:
|
|
1147
1146
|
"""
|
|
1148
1147
|
The Vault role defined to bind to aws iam account/role being accessed.
|
|
1149
1148
|
"""
|
|
1150
1149
|
return pulumi.get(self, "vault_aws_iam_role")
|
|
1151
1150
|
|
|
1152
1151
|
@vault_aws_iam_role.setter
|
|
1153
|
-
def vault_aws_iam_role(self, value: Optional[pulumi.Input[
|
|
1152
|
+
def vault_aws_iam_role(self, value: Optional[pulumi.Input[_builtins.str]]):
|
|
1154
1153
|
pulumi.set(self, "vault_aws_iam_role", value)
|
|
1155
1154
|
|
|
1156
|
-
@property
|
|
1155
|
+
@_builtins.property
|
|
1157
1156
|
@pulumi.getter(name="vaultJwtAuthPath")
|
|
1158
|
-
def vault_jwt_auth_path(self) -> Optional[pulumi.Input[
|
|
1157
|
+
def vault_jwt_auth_path(self) -> Optional[pulumi.Input[_builtins.str]]:
|
|
1159
1158
|
"""
|
|
1160
1159
|
Custom path at with JWT auth in enabled for Vault.
|
|
1161
1160
|
"""
|
|
1162
1161
|
return pulumi.get(self, "vault_jwt_auth_path")
|
|
1163
1162
|
|
|
1164
1163
|
@vault_jwt_auth_path.setter
|
|
1165
|
-
def vault_jwt_auth_path(self, value: Optional[pulumi.Input[
|
|
1164
|
+
def vault_jwt_auth_path(self, value: Optional[pulumi.Input[_builtins.str]]):
|
|
1166
1165
|
pulumi.set(self, "vault_jwt_auth_path", value)
|
|
1167
1166
|
|
|
1168
|
-
@property
|
|
1167
|
+
@_builtins.property
|
|
1169
1168
|
@pulumi.getter(name="vaultJwtAuthRole")
|
|
1170
|
-
def vault_jwt_auth_role(self) -> Optional[pulumi.Input[
|
|
1169
|
+
def vault_jwt_auth_role(self) -> Optional[pulumi.Input[_builtins.str]]:
|
|
1171
1170
|
"""
|
|
1172
1171
|
The Vault role defined with JWT auth type for accessing Vault as per policies binded.
|
|
1173
1172
|
"""
|
|
1174
1173
|
return pulumi.get(self, "vault_jwt_auth_role")
|
|
1175
1174
|
|
|
1176
1175
|
@vault_jwt_auth_role.setter
|
|
1177
|
-
def vault_jwt_auth_role(self, value: Optional[pulumi.Input[
|
|
1176
|
+
def vault_jwt_auth_role(self, value: Optional[pulumi.Input[_builtins.str]]):
|
|
1178
1177
|
pulumi.set(self, "vault_jwt_auth_role", value)
|
|
1179
1178
|
|
|
1180
|
-
@property
|
|
1179
|
+
@_builtins.property
|
|
1181
1180
|
@pulumi.getter(name="vaultK8sAuthRole")
|
|
1182
|
-
def vault_k8s_auth_role(self) -> Optional[pulumi.Input[
|
|
1181
|
+
def vault_k8s_auth_role(self) -> Optional[pulumi.Input[_builtins.str]]:
|
|
1183
1182
|
"""
|
|
1184
1183
|
The role where K8s Auth will happen.
|
|
1185
1184
|
"""
|
|
1186
1185
|
return pulumi.get(self, "vault_k8s_auth_role")
|
|
1187
1186
|
|
|
1188
1187
|
@vault_k8s_auth_role.setter
|
|
1189
|
-
def vault_k8s_auth_role(self, value: Optional[pulumi.Input[
|
|
1188
|
+
def vault_k8s_auth_role(self, value: Optional[pulumi.Input[_builtins.str]]):
|
|
1190
1189
|
pulumi.set(self, "vault_k8s_auth_role", value)
|
|
1191
1190
|
|
|
1192
|
-
@property
|
|
1191
|
+
@_builtins.property
|
|
1193
1192
|
@pulumi.getter(name="vaultUrl")
|
|
1194
|
-
def vault_url(self) -> Optional[pulumi.Input[
|
|
1193
|
+
def vault_url(self) -> Optional[pulumi.Input[_builtins.str]]:
|
|
1195
1194
|
"""
|
|
1196
1195
|
URL of the HashiCorp Vault.
|
|
1197
1196
|
"""
|
|
1198
1197
|
return pulumi.get(self, "vault_url")
|
|
1199
1198
|
|
|
1200
1199
|
@vault_url.setter
|
|
1201
|
-
def vault_url(self, value: Optional[pulumi.Input[
|
|
1200
|
+
def vault_url(self, value: Optional[pulumi.Input[_builtins.str]]):
|
|
1202
1201
|
pulumi.set(self, "vault_url", value)
|
|
1203
1202
|
|
|
1204
|
-
@property
|
|
1203
|
+
@_builtins.property
|
|
1205
1204
|
@pulumi.getter(name="xvaultAwsIamServerId")
|
|
1206
|
-
def xvault_aws_iam_server_id(self) -> Optional[pulumi.Input[
|
|
1205
|
+
def xvault_aws_iam_server_id(self) -> Optional[pulumi.Input[_builtins.str]]:
|
|
1207
1206
|
"""
|
|
1208
1207
|
The AWS IAM Header Server ID that has been configured for this AWS IAM instance.
|
|
1209
1208
|
"""
|
|
1210
1209
|
return pulumi.get(self, "xvault_aws_iam_server_id")
|
|
1211
1210
|
|
|
1212
1211
|
@xvault_aws_iam_server_id.setter
|
|
1213
|
-
def xvault_aws_iam_server_id(self, value: Optional[pulumi.Input[
|
|
1212
|
+
def xvault_aws_iam_server_id(self, value: Optional[pulumi.Input[_builtins.str]]):
|
|
1214
1213
|
pulumi.set(self, "xvault_aws_iam_server_id", value)
|
|
1215
1214
|
|
|
1216
1215
|
|
|
@@ -1220,43 +1219,43 @@ class VaultConnector(pulumi.CustomResource):
|
|
|
1220
1219
|
def __init__(__self__,
|
|
1221
1220
|
resource_name: str,
|
|
1222
1221
|
opts: Optional[pulumi.ResourceOptions] = None,
|
|
1223
|
-
access_type: Optional[pulumi.Input[
|
|
1224
|
-
app_role_id: Optional[pulumi.Input[
|
|
1225
|
-
auth_token: Optional[pulumi.Input[
|
|
1226
|
-
aws_region: Optional[pulumi.Input[
|
|
1227
|
-
base_path: Optional[pulumi.Input[
|
|
1228
|
-
default: Optional[pulumi.Input[
|
|
1229
|
-
delegate_selectors: Optional[pulumi.Input[Sequence[pulumi.Input[
|
|
1230
|
-
description: Optional[pulumi.Input[
|
|
1231
|
-
execute_on_delegate: Optional[pulumi.Input[
|
|
1232
|
-
identifier: Optional[pulumi.Input[
|
|
1233
|
-
is_default: Optional[pulumi.Input[
|
|
1234
|
-
is_read_only: Optional[pulumi.Input[
|
|
1235
|
-
k8s_auth_endpoint: Optional[pulumi.Input[
|
|
1236
|
-
name: Optional[pulumi.Input[
|
|
1237
|
-
namespace: Optional[pulumi.Input[
|
|
1238
|
-
org_id: Optional[pulumi.Input[
|
|
1239
|
-
project_id: Optional[pulumi.Input[
|
|
1240
|
-
read_only: Optional[pulumi.Input[
|
|
1241
|
-
renew_app_role_token: Optional[pulumi.Input[
|
|
1242
|
-
renewal_interval_minutes: Optional[pulumi.Input[
|
|
1243
|
-
secret_engine_manually_configured: Optional[pulumi.Input[
|
|
1244
|
-
secret_engine_name: Optional[pulumi.Input[
|
|
1245
|
-
secret_engine_version: Optional[pulumi.Input[
|
|
1246
|
-
secret_id: Optional[pulumi.Input[
|
|
1247
|
-
service_account_token_path: Optional[pulumi.Input[
|
|
1248
|
-
sink_path: Optional[pulumi.Input[
|
|
1249
|
-
tags: Optional[pulumi.Input[Sequence[pulumi.Input[
|
|
1250
|
-
use_aws_iam: Optional[pulumi.Input[
|
|
1251
|
-
use_jwt_auth: Optional[pulumi.Input[
|
|
1252
|
-
use_k8s_auth: Optional[pulumi.Input[
|
|
1253
|
-
use_vault_agent: Optional[pulumi.Input[
|
|
1254
|
-
vault_aws_iam_role: Optional[pulumi.Input[
|
|
1255
|
-
vault_jwt_auth_path: Optional[pulumi.Input[
|
|
1256
|
-
vault_jwt_auth_role: Optional[pulumi.Input[
|
|
1257
|
-
vault_k8s_auth_role: Optional[pulumi.Input[
|
|
1258
|
-
vault_url: Optional[pulumi.Input[
|
|
1259
|
-
xvault_aws_iam_server_id: Optional[pulumi.Input[
|
|
1222
|
+
access_type: Optional[pulumi.Input[_builtins.str]] = None,
|
|
1223
|
+
app_role_id: Optional[pulumi.Input[_builtins.str]] = None,
|
|
1224
|
+
auth_token: Optional[pulumi.Input[_builtins.str]] = None,
|
|
1225
|
+
aws_region: Optional[pulumi.Input[_builtins.str]] = None,
|
|
1226
|
+
base_path: Optional[pulumi.Input[_builtins.str]] = None,
|
|
1227
|
+
default: Optional[pulumi.Input[_builtins.bool]] = None,
|
|
1228
|
+
delegate_selectors: Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]] = None,
|
|
1229
|
+
description: Optional[pulumi.Input[_builtins.str]] = None,
|
|
1230
|
+
execute_on_delegate: Optional[pulumi.Input[_builtins.bool]] = None,
|
|
1231
|
+
identifier: Optional[pulumi.Input[_builtins.str]] = None,
|
|
1232
|
+
is_default: Optional[pulumi.Input[_builtins.bool]] = None,
|
|
1233
|
+
is_read_only: Optional[pulumi.Input[_builtins.bool]] = None,
|
|
1234
|
+
k8s_auth_endpoint: Optional[pulumi.Input[_builtins.str]] = None,
|
|
1235
|
+
name: Optional[pulumi.Input[_builtins.str]] = None,
|
|
1236
|
+
namespace: Optional[pulumi.Input[_builtins.str]] = None,
|
|
1237
|
+
org_id: Optional[pulumi.Input[_builtins.str]] = None,
|
|
1238
|
+
project_id: Optional[pulumi.Input[_builtins.str]] = None,
|
|
1239
|
+
read_only: Optional[pulumi.Input[_builtins.bool]] = None,
|
|
1240
|
+
renew_app_role_token: Optional[pulumi.Input[_builtins.bool]] = None,
|
|
1241
|
+
renewal_interval_minutes: Optional[pulumi.Input[_builtins.int]] = None,
|
|
1242
|
+
secret_engine_manually_configured: Optional[pulumi.Input[_builtins.bool]] = None,
|
|
1243
|
+
secret_engine_name: Optional[pulumi.Input[_builtins.str]] = None,
|
|
1244
|
+
secret_engine_version: Optional[pulumi.Input[_builtins.int]] = None,
|
|
1245
|
+
secret_id: Optional[pulumi.Input[_builtins.str]] = None,
|
|
1246
|
+
service_account_token_path: Optional[pulumi.Input[_builtins.str]] = None,
|
|
1247
|
+
sink_path: Optional[pulumi.Input[_builtins.str]] = None,
|
|
1248
|
+
tags: Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]] = None,
|
|
1249
|
+
use_aws_iam: Optional[pulumi.Input[_builtins.bool]] = None,
|
|
1250
|
+
use_jwt_auth: Optional[pulumi.Input[_builtins.bool]] = None,
|
|
1251
|
+
use_k8s_auth: Optional[pulumi.Input[_builtins.bool]] = None,
|
|
1252
|
+
use_vault_agent: Optional[pulumi.Input[_builtins.bool]] = None,
|
|
1253
|
+
vault_aws_iam_role: Optional[pulumi.Input[_builtins.str]] = None,
|
|
1254
|
+
vault_jwt_auth_path: Optional[pulumi.Input[_builtins.str]] = None,
|
|
1255
|
+
vault_jwt_auth_role: Optional[pulumi.Input[_builtins.str]] = None,
|
|
1256
|
+
vault_k8s_auth_role: Optional[pulumi.Input[_builtins.str]] = None,
|
|
1257
|
+
vault_url: Optional[pulumi.Input[_builtins.str]] = None,
|
|
1258
|
+
xvault_aws_iam_server_id: Optional[pulumi.Input[_builtins.str]] = None,
|
|
1260
1259
|
__props__=None):
|
|
1261
1260
|
"""
|
|
1262
1261
|
## Example Usage
|
|
@@ -1422,43 +1421,43 @@ class VaultConnector(pulumi.CustomResource):
|
|
|
1422
1421
|
|
|
1423
1422
|
:param str resource_name: The name of the resource.
|
|
1424
1423
|
:param pulumi.ResourceOptions opts: Options for the resource.
|
|
1425
|
-
:param pulumi.Input[
|
|
1426
|
-
:param pulumi.Input[
|
|
1427
|
-
:param pulumi.Input[
|
|
1428
|
-
:param pulumi.Input[
|
|
1429
|
-
:param pulumi.Input[
|
|
1430
|
-
:param pulumi.Input[
|
|
1431
|
-
:param pulumi.Input[Sequence[pulumi.Input[
|
|
1432
|
-
:param pulumi.Input[
|
|
1433
|
-
:param pulumi.Input[
|
|
1434
|
-
:param pulumi.Input[
|
|
1435
|
-
:param pulumi.Input[
|
|
1436
|
-
:param pulumi.Input[
|
|
1437
|
-
:param pulumi.Input[
|
|
1438
|
-
:param pulumi.Input[
|
|
1439
|
-
:param pulumi.Input[
|
|
1440
|
-
:param pulumi.Input[
|
|
1441
|
-
:param pulumi.Input[
|
|
1442
|
-
:param pulumi.Input[
|
|
1443
|
-
:param pulumi.Input[
|
|
1444
|
-
:param pulumi.Input[
|
|
1445
|
-
:param pulumi.Input[
|
|
1446
|
-
:param pulumi.Input[
|
|
1447
|
-
:param pulumi.Input[
|
|
1448
|
-
:param pulumi.Input[
|
|
1449
|
-
:param pulumi.Input[
|
|
1450
|
-
:param pulumi.Input[
|
|
1451
|
-
:param pulumi.Input[Sequence[pulumi.Input[
|
|
1452
|
-
:param pulumi.Input[
|
|
1453
|
-
:param pulumi.Input[
|
|
1454
|
-
:param pulumi.Input[
|
|
1455
|
-
:param pulumi.Input[
|
|
1456
|
-
:param pulumi.Input[
|
|
1457
|
-
:param pulumi.Input[
|
|
1458
|
-
:param pulumi.Input[
|
|
1459
|
-
:param pulumi.Input[
|
|
1460
|
-
:param pulumi.Input[
|
|
1461
|
-
:param pulumi.Input[
|
|
1424
|
+
:param pulumi.Input[_builtins.str] access_type: Access type.
|
|
1425
|
+
:param pulumi.Input[_builtins.str] app_role_id: ID of App Role.
|
|
1426
|
+
:param pulumi.Input[_builtins.str] auth_token: Authentication token for Vault.
|
|
1427
|
+
:param pulumi.Input[_builtins.str] aws_region: AWS region where the AWS IAM authentication will happen.
|
|
1428
|
+
:param pulumi.Input[_builtins.str] base_path: Location of the Vault directory where the secret will be stored.
|
|
1429
|
+
:param pulumi.Input[_builtins.bool] default: Is default or not.
|
|
1430
|
+
:param pulumi.Input[Sequence[pulumi.Input[_builtins.str]]] delegate_selectors: List of Delegate Selectors that belong to the same Delegate and are used to connect to the Secret Manager.
|
|
1431
|
+
:param pulumi.Input[_builtins.str] description: Description of the resource.
|
|
1432
|
+
:param pulumi.Input[_builtins.bool] execute_on_delegate: Execute on delegate or not.
|
|
1433
|
+
:param pulumi.Input[_builtins.str] identifier: Unique identifier of the resource.
|
|
1434
|
+
:param pulumi.Input[_builtins.bool] is_default: Is default or not.
|
|
1435
|
+
:param pulumi.Input[_builtins.bool] is_read_only: Read only or not.
|
|
1436
|
+
:param pulumi.Input[_builtins.str] k8s_auth_endpoint: The path where Kubernetes Auth is enabled in Vault.
|
|
1437
|
+
:param pulumi.Input[_builtins.str] name: Name of the resource.
|
|
1438
|
+
:param pulumi.Input[_builtins.str] namespace: Vault namespace where the Secret will be created.
|
|
1439
|
+
:param pulumi.Input[_builtins.str] org_id: Unique identifier of the organization.
|
|
1440
|
+
:param pulumi.Input[_builtins.str] project_id: Unique identifier of the project.
|
|
1441
|
+
:param pulumi.Input[_builtins.bool] read_only: Read only.
|
|
1442
|
+
:param pulumi.Input[_builtins.bool] renew_app_role_token: Boolean value to indicate if AppRole token renewal is enabled or not.
|
|
1443
|
+
:param pulumi.Input[_builtins.int] renewal_interval_minutes: The time interval for the token renewal.
|
|
1444
|
+
:param pulumi.Input[_builtins.bool] secret_engine_manually_configured: Manually entered Secret Engine.
|
|
1445
|
+
:param pulumi.Input[_builtins.str] secret_engine_name: Name of the Secret Engine.
|
|
1446
|
+
:param pulumi.Input[_builtins.int] secret_engine_version: Version of Secret Engine.
|
|
1447
|
+
:param pulumi.Input[_builtins.str] secret_id: ID of the Secret.
|
|
1448
|
+
:param pulumi.Input[_builtins.str] service_account_token_path: The Service Account token path in the K8s pod where the token is mounted.
|
|
1449
|
+
:param pulumi.Input[_builtins.str] sink_path: The location from which the authentication token should be read.
|
|
1450
|
+
:param pulumi.Input[Sequence[pulumi.Input[_builtins.str]]] tags: Tags to associate with the resource.
|
|
1451
|
+
:param pulumi.Input[_builtins.bool] use_aws_iam: Boolean value to indicate if AWS IAM is used for authentication.
|
|
1452
|
+
:param pulumi.Input[_builtins.bool] use_jwt_auth: Boolean value to indicate if JWT is used for authentication.
|
|
1453
|
+
:param pulumi.Input[_builtins.bool] use_k8s_auth: Boolean value to indicate if K8s Auth is used for authentication.
|
|
1454
|
+
:param pulumi.Input[_builtins.bool] use_vault_agent: Boolean value to indicate if Vault Agent is used for authentication.
|
|
1455
|
+
:param pulumi.Input[_builtins.str] vault_aws_iam_role: The Vault role defined to bind to aws iam account/role being accessed.
|
|
1456
|
+
:param pulumi.Input[_builtins.str] vault_jwt_auth_path: Custom path at with JWT auth in enabled for Vault.
|
|
1457
|
+
:param pulumi.Input[_builtins.str] vault_jwt_auth_role: The Vault role defined with JWT auth type for accessing Vault as per policies binded.
|
|
1458
|
+
:param pulumi.Input[_builtins.str] vault_k8s_auth_role: The role where K8s Auth will happen.
|
|
1459
|
+
:param pulumi.Input[_builtins.str] vault_url: URL of the HashiCorp Vault.
|
|
1460
|
+
:param pulumi.Input[_builtins.str] xvault_aws_iam_server_id: The AWS IAM Header Server ID that has been configured for this AWS IAM instance.
|
|
1462
1461
|
"""
|
|
1463
1462
|
...
|
|
1464
1463
|
@overload
|
|
@@ -1643,43 +1642,43 @@ class VaultConnector(pulumi.CustomResource):
|
|
|
1643
1642
|
def _internal_init(__self__,
|
|
1644
1643
|
resource_name: str,
|
|
1645
1644
|
opts: Optional[pulumi.ResourceOptions] = None,
|
|
1646
|
-
access_type: Optional[pulumi.Input[
|
|
1647
|
-
app_role_id: Optional[pulumi.Input[
|
|
1648
|
-
auth_token: Optional[pulumi.Input[
|
|
1649
|
-
aws_region: Optional[pulumi.Input[
|
|
1650
|
-
base_path: Optional[pulumi.Input[
|
|
1651
|
-
default: Optional[pulumi.Input[
|
|
1652
|
-
delegate_selectors: Optional[pulumi.Input[Sequence[pulumi.Input[
|
|
1653
|
-
description: Optional[pulumi.Input[
|
|
1654
|
-
execute_on_delegate: Optional[pulumi.Input[
|
|
1655
|
-
identifier: Optional[pulumi.Input[
|
|
1656
|
-
is_default: Optional[pulumi.Input[
|
|
1657
|
-
is_read_only: Optional[pulumi.Input[
|
|
1658
|
-
k8s_auth_endpoint: Optional[pulumi.Input[
|
|
1659
|
-
name: Optional[pulumi.Input[
|
|
1660
|
-
namespace: Optional[pulumi.Input[
|
|
1661
|
-
org_id: Optional[pulumi.Input[
|
|
1662
|
-
project_id: Optional[pulumi.Input[
|
|
1663
|
-
read_only: Optional[pulumi.Input[
|
|
1664
|
-
renew_app_role_token: Optional[pulumi.Input[
|
|
1665
|
-
renewal_interval_minutes: Optional[pulumi.Input[
|
|
1666
|
-
secret_engine_manually_configured: Optional[pulumi.Input[
|
|
1667
|
-
secret_engine_name: Optional[pulumi.Input[
|
|
1668
|
-
secret_engine_version: Optional[pulumi.Input[
|
|
1669
|
-
secret_id: Optional[pulumi.Input[
|
|
1670
|
-
service_account_token_path: Optional[pulumi.Input[
|
|
1671
|
-
sink_path: Optional[pulumi.Input[
|
|
1672
|
-
tags: Optional[pulumi.Input[Sequence[pulumi.Input[
|
|
1673
|
-
use_aws_iam: Optional[pulumi.Input[
|
|
1674
|
-
use_jwt_auth: Optional[pulumi.Input[
|
|
1675
|
-
use_k8s_auth: Optional[pulumi.Input[
|
|
1676
|
-
use_vault_agent: Optional[pulumi.Input[
|
|
1677
|
-
vault_aws_iam_role: Optional[pulumi.Input[
|
|
1678
|
-
vault_jwt_auth_path: Optional[pulumi.Input[
|
|
1679
|
-
vault_jwt_auth_role: Optional[pulumi.Input[
|
|
1680
|
-
vault_k8s_auth_role: Optional[pulumi.Input[
|
|
1681
|
-
vault_url: Optional[pulumi.Input[
|
|
1682
|
-
xvault_aws_iam_server_id: Optional[pulumi.Input[
|
|
1645
|
+
access_type: Optional[pulumi.Input[_builtins.str]] = None,
|
|
1646
|
+
app_role_id: Optional[pulumi.Input[_builtins.str]] = None,
|
|
1647
|
+
auth_token: Optional[pulumi.Input[_builtins.str]] = None,
|
|
1648
|
+
aws_region: Optional[pulumi.Input[_builtins.str]] = None,
|
|
1649
|
+
base_path: Optional[pulumi.Input[_builtins.str]] = None,
|
|
1650
|
+
default: Optional[pulumi.Input[_builtins.bool]] = None,
|
|
1651
|
+
delegate_selectors: Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]] = None,
|
|
1652
|
+
description: Optional[pulumi.Input[_builtins.str]] = None,
|
|
1653
|
+
execute_on_delegate: Optional[pulumi.Input[_builtins.bool]] = None,
|
|
1654
|
+
identifier: Optional[pulumi.Input[_builtins.str]] = None,
|
|
1655
|
+
is_default: Optional[pulumi.Input[_builtins.bool]] = None,
|
|
1656
|
+
is_read_only: Optional[pulumi.Input[_builtins.bool]] = None,
|
|
1657
|
+
k8s_auth_endpoint: Optional[pulumi.Input[_builtins.str]] = None,
|
|
1658
|
+
name: Optional[pulumi.Input[_builtins.str]] = None,
|
|
1659
|
+
namespace: Optional[pulumi.Input[_builtins.str]] = None,
|
|
1660
|
+
org_id: Optional[pulumi.Input[_builtins.str]] = None,
|
|
1661
|
+
project_id: Optional[pulumi.Input[_builtins.str]] = None,
|
|
1662
|
+
read_only: Optional[pulumi.Input[_builtins.bool]] = None,
|
|
1663
|
+
renew_app_role_token: Optional[pulumi.Input[_builtins.bool]] = None,
|
|
1664
|
+
renewal_interval_minutes: Optional[pulumi.Input[_builtins.int]] = None,
|
|
1665
|
+
secret_engine_manually_configured: Optional[pulumi.Input[_builtins.bool]] = None,
|
|
1666
|
+
secret_engine_name: Optional[pulumi.Input[_builtins.str]] = None,
|
|
1667
|
+
secret_engine_version: Optional[pulumi.Input[_builtins.int]] = None,
|
|
1668
|
+
secret_id: Optional[pulumi.Input[_builtins.str]] = None,
|
|
1669
|
+
service_account_token_path: Optional[pulumi.Input[_builtins.str]] = None,
|
|
1670
|
+
sink_path: Optional[pulumi.Input[_builtins.str]] = None,
|
|
1671
|
+
tags: Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]] = None,
|
|
1672
|
+
use_aws_iam: Optional[pulumi.Input[_builtins.bool]] = None,
|
|
1673
|
+
use_jwt_auth: Optional[pulumi.Input[_builtins.bool]] = None,
|
|
1674
|
+
use_k8s_auth: Optional[pulumi.Input[_builtins.bool]] = None,
|
|
1675
|
+
use_vault_agent: Optional[pulumi.Input[_builtins.bool]] = None,
|
|
1676
|
+
vault_aws_iam_role: Optional[pulumi.Input[_builtins.str]] = None,
|
|
1677
|
+
vault_jwt_auth_path: Optional[pulumi.Input[_builtins.str]] = None,
|
|
1678
|
+
vault_jwt_auth_role: Optional[pulumi.Input[_builtins.str]] = None,
|
|
1679
|
+
vault_k8s_auth_role: Optional[pulumi.Input[_builtins.str]] = None,
|
|
1680
|
+
vault_url: Optional[pulumi.Input[_builtins.str]] = None,
|
|
1681
|
+
xvault_aws_iam_server_id: Optional[pulumi.Input[_builtins.str]] = None,
|
|
1683
1682
|
__props__=None):
|
|
1684
1683
|
opts = pulumi.ResourceOptions.merge(_utilities.get_resource_opts_defaults(), opts)
|
|
1685
1684
|
if not isinstance(opts, pulumi.ResourceOptions):
|
|
@@ -1742,43 +1741,43 @@ class VaultConnector(pulumi.CustomResource):
|
|
|
1742
1741
|
def get(resource_name: str,
|
|
1743
1742
|
id: pulumi.Input[str],
|
|
1744
1743
|
opts: Optional[pulumi.ResourceOptions] = None,
|
|
1745
|
-
access_type: Optional[pulumi.Input[
|
|
1746
|
-
app_role_id: Optional[pulumi.Input[
|
|
1747
|
-
auth_token: Optional[pulumi.Input[
|
|
1748
|
-
aws_region: Optional[pulumi.Input[
|
|
1749
|
-
base_path: Optional[pulumi.Input[
|
|
1750
|
-
default: Optional[pulumi.Input[
|
|
1751
|
-
delegate_selectors: Optional[pulumi.Input[Sequence[pulumi.Input[
|
|
1752
|
-
description: Optional[pulumi.Input[
|
|
1753
|
-
execute_on_delegate: Optional[pulumi.Input[
|
|
1754
|
-
identifier: Optional[pulumi.Input[
|
|
1755
|
-
is_default: Optional[pulumi.Input[
|
|
1756
|
-
is_read_only: Optional[pulumi.Input[
|
|
1757
|
-
k8s_auth_endpoint: Optional[pulumi.Input[
|
|
1758
|
-
name: Optional[pulumi.Input[
|
|
1759
|
-
namespace: Optional[pulumi.Input[
|
|
1760
|
-
org_id: Optional[pulumi.Input[
|
|
1761
|
-
project_id: Optional[pulumi.Input[
|
|
1762
|
-
read_only: Optional[pulumi.Input[
|
|
1763
|
-
renew_app_role_token: Optional[pulumi.Input[
|
|
1764
|
-
renewal_interval_minutes: Optional[pulumi.Input[
|
|
1765
|
-
secret_engine_manually_configured: Optional[pulumi.Input[
|
|
1766
|
-
secret_engine_name: Optional[pulumi.Input[
|
|
1767
|
-
secret_engine_version: Optional[pulumi.Input[
|
|
1768
|
-
secret_id: Optional[pulumi.Input[
|
|
1769
|
-
service_account_token_path: Optional[pulumi.Input[
|
|
1770
|
-
sink_path: Optional[pulumi.Input[
|
|
1771
|
-
tags: Optional[pulumi.Input[Sequence[pulumi.Input[
|
|
1772
|
-
use_aws_iam: Optional[pulumi.Input[
|
|
1773
|
-
use_jwt_auth: Optional[pulumi.Input[
|
|
1774
|
-
use_k8s_auth: Optional[pulumi.Input[
|
|
1775
|
-
use_vault_agent: Optional[pulumi.Input[
|
|
1776
|
-
vault_aws_iam_role: Optional[pulumi.Input[
|
|
1777
|
-
vault_jwt_auth_path: Optional[pulumi.Input[
|
|
1778
|
-
vault_jwt_auth_role: Optional[pulumi.Input[
|
|
1779
|
-
vault_k8s_auth_role: Optional[pulumi.Input[
|
|
1780
|
-
vault_url: Optional[pulumi.Input[
|
|
1781
|
-
xvault_aws_iam_server_id: Optional[pulumi.Input[
|
|
1744
|
+
access_type: Optional[pulumi.Input[_builtins.str]] = None,
|
|
1745
|
+
app_role_id: Optional[pulumi.Input[_builtins.str]] = None,
|
|
1746
|
+
auth_token: Optional[pulumi.Input[_builtins.str]] = None,
|
|
1747
|
+
aws_region: Optional[pulumi.Input[_builtins.str]] = None,
|
|
1748
|
+
base_path: Optional[pulumi.Input[_builtins.str]] = None,
|
|
1749
|
+
default: Optional[pulumi.Input[_builtins.bool]] = None,
|
|
1750
|
+
delegate_selectors: Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]] = None,
|
|
1751
|
+
description: Optional[pulumi.Input[_builtins.str]] = None,
|
|
1752
|
+
execute_on_delegate: Optional[pulumi.Input[_builtins.bool]] = None,
|
|
1753
|
+
identifier: Optional[pulumi.Input[_builtins.str]] = None,
|
|
1754
|
+
is_default: Optional[pulumi.Input[_builtins.bool]] = None,
|
|
1755
|
+
is_read_only: Optional[pulumi.Input[_builtins.bool]] = None,
|
|
1756
|
+
k8s_auth_endpoint: Optional[pulumi.Input[_builtins.str]] = None,
|
|
1757
|
+
name: Optional[pulumi.Input[_builtins.str]] = None,
|
|
1758
|
+
namespace: Optional[pulumi.Input[_builtins.str]] = None,
|
|
1759
|
+
org_id: Optional[pulumi.Input[_builtins.str]] = None,
|
|
1760
|
+
project_id: Optional[pulumi.Input[_builtins.str]] = None,
|
|
1761
|
+
read_only: Optional[pulumi.Input[_builtins.bool]] = None,
|
|
1762
|
+
renew_app_role_token: Optional[pulumi.Input[_builtins.bool]] = None,
|
|
1763
|
+
renewal_interval_minutes: Optional[pulumi.Input[_builtins.int]] = None,
|
|
1764
|
+
secret_engine_manually_configured: Optional[pulumi.Input[_builtins.bool]] = None,
|
|
1765
|
+
secret_engine_name: Optional[pulumi.Input[_builtins.str]] = None,
|
|
1766
|
+
secret_engine_version: Optional[pulumi.Input[_builtins.int]] = None,
|
|
1767
|
+
secret_id: Optional[pulumi.Input[_builtins.str]] = None,
|
|
1768
|
+
service_account_token_path: Optional[pulumi.Input[_builtins.str]] = None,
|
|
1769
|
+
sink_path: Optional[pulumi.Input[_builtins.str]] = None,
|
|
1770
|
+
tags: Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]] = None,
|
|
1771
|
+
use_aws_iam: Optional[pulumi.Input[_builtins.bool]] = None,
|
|
1772
|
+
use_jwt_auth: Optional[pulumi.Input[_builtins.bool]] = None,
|
|
1773
|
+
use_k8s_auth: Optional[pulumi.Input[_builtins.bool]] = None,
|
|
1774
|
+
use_vault_agent: Optional[pulumi.Input[_builtins.bool]] = None,
|
|
1775
|
+
vault_aws_iam_role: Optional[pulumi.Input[_builtins.str]] = None,
|
|
1776
|
+
vault_jwt_auth_path: Optional[pulumi.Input[_builtins.str]] = None,
|
|
1777
|
+
vault_jwt_auth_role: Optional[pulumi.Input[_builtins.str]] = None,
|
|
1778
|
+
vault_k8s_auth_role: Optional[pulumi.Input[_builtins.str]] = None,
|
|
1779
|
+
vault_url: Optional[pulumi.Input[_builtins.str]] = None,
|
|
1780
|
+
xvault_aws_iam_server_id: Optional[pulumi.Input[_builtins.str]] = None) -> 'VaultConnector':
|
|
1782
1781
|
"""
|
|
1783
1782
|
Get an existing VaultConnector resource's state with the given name, id, and optional extra
|
|
1784
1783
|
properties used to qualify the lookup.
|
|
@@ -1786,43 +1785,43 @@ class VaultConnector(pulumi.CustomResource):
|
|
|
1786
1785
|
:param str resource_name: The unique name of the resulting resource.
|
|
1787
1786
|
:param pulumi.Input[str] id: The unique provider ID of the resource to lookup.
|
|
1788
1787
|
:param pulumi.ResourceOptions opts: Options for the resource.
|
|
1789
|
-
:param pulumi.Input[
|
|
1790
|
-
:param pulumi.Input[
|
|
1791
|
-
:param pulumi.Input[
|
|
1792
|
-
:param pulumi.Input[
|
|
1793
|
-
:param pulumi.Input[
|
|
1794
|
-
:param pulumi.Input[
|
|
1795
|
-
:param pulumi.Input[Sequence[pulumi.Input[
|
|
1796
|
-
:param pulumi.Input[
|
|
1797
|
-
:param pulumi.Input[
|
|
1798
|
-
:param pulumi.Input[
|
|
1799
|
-
:param pulumi.Input[
|
|
1800
|
-
:param pulumi.Input[
|
|
1801
|
-
:param pulumi.Input[
|
|
1802
|
-
:param pulumi.Input[
|
|
1803
|
-
:param pulumi.Input[
|
|
1804
|
-
:param pulumi.Input[
|
|
1805
|
-
:param pulumi.Input[
|
|
1806
|
-
:param pulumi.Input[
|
|
1807
|
-
:param pulumi.Input[
|
|
1808
|
-
:param pulumi.Input[
|
|
1809
|
-
:param pulumi.Input[
|
|
1810
|
-
:param pulumi.Input[
|
|
1811
|
-
:param pulumi.Input[
|
|
1812
|
-
:param pulumi.Input[
|
|
1813
|
-
:param pulumi.Input[
|
|
1814
|
-
:param pulumi.Input[
|
|
1815
|
-
:param pulumi.Input[Sequence[pulumi.Input[
|
|
1816
|
-
:param pulumi.Input[
|
|
1817
|
-
:param pulumi.Input[
|
|
1818
|
-
:param pulumi.Input[
|
|
1819
|
-
:param pulumi.Input[
|
|
1820
|
-
:param pulumi.Input[
|
|
1821
|
-
:param pulumi.Input[
|
|
1822
|
-
:param pulumi.Input[
|
|
1823
|
-
:param pulumi.Input[
|
|
1824
|
-
:param pulumi.Input[
|
|
1825
|
-
:param pulumi.Input[
|
|
1788
|
+
:param pulumi.Input[_builtins.str] access_type: Access type.
|
|
1789
|
+
:param pulumi.Input[_builtins.str] app_role_id: ID of App Role.
|
|
1790
|
+
:param pulumi.Input[_builtins.str] auth_token: Authentication token for Vault.
|
|
1791
|
+
:param pulumi.Input[_builtins.str] aws_region: AWS region where the AWS IAM authentication will happen.
|
|
1792
|
+
:param pulumi.Input[_builtins.str] base_path: Location of the Vault directory where the secret will be stored.
|
|
1793
|
+
:param pulumi.Input[_builtins.bool] default: Is default or not.
|
|
1794
|
+
:param pulumi.Input[Sequence[pulumi.Input[_builtins.str]]] delegate_selectors: List of Delegate Selectors that belong to the same Delegate and are used to connect to the Secret Manager.
|
|
1795
|
+
:param pulumi.Input[_builtins.str] description: Description of the resource.
|
|
1796
|
+
:param pulumi.Input[_builtins.bool] execute_on_delegate: Execute on delegate or not.
|
|
1797
|
+
:param pulumi.Input[_builtins.str] identifier: Unique identifier of the resource.
|
|
1798
|
+
:param pulumi.Input[_builtins.bool] is_default: Is default or not.
|
|
1799
|
+
:param pulumi.Input[_builtins.bool] is_read_only: Read only or not.
|
|
1800
|
+
:param pulumi.Input[_builtins.str] k8s_auth_endpoint: The path where Kubernetes Auth is enabled in Vault.
|
|
1801
|
+
:param pulumi.Input[_builtins.str] name: Name of the resource.
|
|
1802
|
+
:param pulumi.Input[_builtins.str] namespace: Vault namespace where the Secret will be created.
|
|
1803
|
+
:param pulumi.Input[_builtins.str] org_id: Unique identifier of the organization.
|
|
1804
|
+
:param pulumi.Input[_builtins.str] project_id: Unique identifier of the project.
|
|
1805
|
+
:param pulumi.Input[_builtins.bool] read_only: Read only.
|
|
1806
|
+
:param pulumi.Input[_builtins.bool] renew_app_role_token: Boolean value to indicate if AppRole token renewal is enabled or not.
|
|
1807
|
+
:param pulumi.Input[_builtins.int] renewal_interval_minutes: The time interval for the token renewal.
|
|
1808
|
+
:param pulumi.Input[_builtins.bool] secret_engine_manually_configured: Manually entered Secret Engine.
|
|
1809
|
+
:param pulumi.Input[_builtins.str] secret_engine_name: Name of the Secret Engine.
|
|
1810
|
+
:param pulumi.Input[_builtins.int] secret_engine_version: Version of Secret Engine.
|
|
1811
|
+
:param pulumi.Input[_builtins.str] secret_id: ID of the Secret.
|
|
1812
|
+
:param pulumi.Input[_builtins.str] service_account_token_path: The Service Account token path in the K8s pod where the token is mounted.
|
|
1813
|
+
:param pulumi.Input[_builtins.str] sink_path: The location from which the authentication token should be read.
|
|
1814
|
+
:param pulumi.Input[Sequence[pulumi.Input[_builtins.str]]] tags: Tags to associate with the resource.
|
|
1815
|
+
:param pulumi.Input[_builtins.bool] use_aws_iam: Boolean value to indicate if AWS IAM is used for authentication.
|
|
1816
|
+
:param pulumi.Input[_builtins.bool] use_jwt_auth: Boolean value to indicate if JWT is used for authentication.
|
|
1817
|
+
:param pulumi.Input[_builtins.bool] use_k8s_auth: Boolean value to indicate if K8s Auth is used for authentication.
|
|
1818
|
+
:param pulumi.Input[_builtins.bool] use_vault_agent: Boolean value to indicate if Vault Agent is used for authentication.
|
|
1819
|
+
:param pulumi.Input[_builtins.str] vault_aws_iam_role: The Vault role defined to bind to aws iam account/role being accessed.
|
|
1820
|
+
:param pulumi.Input[_builtins.str] vault_jwt_auth_path: Custom path at with JWT auth in enabled for Vault.
|
|
1821
|
+
:param pulumi.Input[_builtins.str] vault_jwt_auth_role: The Vault role defined with JWT auth type for accessing Vault as per policies binded.
|
|
1822
|
+
:param pulumi.Input[_builtins.str] vault_k8s_auth_role: The role where K8s Auth will happen.
|
|
1823
|
+
:param pulumi.Input[_builtins.str] vault_url: URL of the HashiCorp Vault.
|
|
1824
|
+
:param pulumi.Input[_builtins.str] xvault_aws_iam_server_id: The AWS IAM Header Server ID that has been configured for this AWS IAM instance.
|
|
1826
1825
|
"""
|
|
1827
1826
|
opts = pulumi.ResourceOptions.merge(opts, pulumi.ResourceOptions(id=id))
|
|
1828
1827
|
|
|
@@ -1867,297 +1866,297 @@ class VaultConnector(pulumi.CustomResource):
|
|
|
1867
1866
|
__props__.__dict__["xvault_aws_iam_server_id"] = xvault_aws_iam_server_id
|
|
1868
1867
|
return VaultConnector(resource_name, opts=opts, __props__=__props__)
|
|
1869
1868
|
|
|
1870
|
-
@property
|
|
1869
|
+
@_builtins.property
|
|
1871
1870
|
@pulumi.getter(name="accessType")
|
|
1872
|
-
def access_type(self) -> pulumi.Output[Optional[
|
|
1871
|
+
def access_type(self) -> pulumi.Output[Optional[_builtins.str]]:
|
|
1873
1872
|
"""
|
|
1874
1873
|
Access type.
|
|
1875
1874
|
"""
|
|
1876
1875
|
return pulumi.get(self, "access_type")
|
|
1877
1876
|
|
|
1878
|
-
@property
|
|
1877
|
+
@_builtins.property
|
|
1879
1878
|
@pulumi.getter(name="appRoleId")
|
|
1880
|
-
def app_role_id(self) -> pulumi.Output[Optional[
|
|
1879
|
+
def app_role_id(self) -> pulumi.Output[Optional[_builtins.str]]:
|
|
1881
1880
|
"""
|
|
1882
1881
|
ID of App Role.
|
|
1883
1882
|
"""
|
|
1884
1883
|
return pulumi.get(self, "app_role_id")
|
|
1885
1884
|
|
|
1886
|
-
@property
|
|
1885
|
+
@_builtins.property
|
|
1887
1886
|
@pulumi.getter(name="authToken")
|
|
1888
|
-
def auth_token(self) -> pulumi.Output[
|
|
1887
|
+
def auth_token(self) -> pulumi.Output[_builtins.str]:
|
|
1889
1888
|
"""
|
|
1890
1889
|
Authentication token for Vault.
|
|
1891
1890
|
"""
|
|
1892
1891
|
return pulumi.get(self, "auth_token")
|
|
1893
1892
|
|
|
1894
|
-
@property
|
|
1893
|
+
@_builtins.property
|
|
1895
1894
|
@pulumi.getter(name="awsRegion")
|
|
1896
|
-
def aws_region(self) -> pulumi.Output[Optional[
|
|
1895
|
+
def aws_region(self) -> pulumi.Output[Optional[_builtins.str]]:
|
|
1897
1896
|
"""
|
|
1898
1897
|
AWS region where the AWS IAM authentication will happen.
|
|
1899
1898
|
"""
|
|
1900
1899
|
return pulumi.get(self, "aws_region")
|
|
1901
1900
|
|
|
1902
|
-
@property
|
|
1901
|
+
@_builtins.property
|
|
1903
1902
|
@pulumi.getter(name="basePath")
|
|
1904
|
-
def base_path(self) -> pulumi.Output[Optional[
|
|
1903
|
+
def base_path(self) -> pulumi.Output[Optional[_builtins.str]]:
|
|
1905
1904
|
"""
|
|
1906
1905
|
Location of the Vault directory where the secret will be stored.
|
|
1907
1906
|
"""
|
|
1908
1907
|
return pulumi.get(self, "base_path")
|
|
1909
1908
|
|
|
1910
|
-
@property
|
|
1909
|
+
@_builtins.property
|
|
1911
1910
|
@pulumi.getter
|
|
1912
|
-
def default(self) -> pulumi.Output[Optional[
|
|
1911
|
+
def default(self) -> pulumi.Output[Optional[_builtins.bool]]:
|
|
1913
1912
|
"""
|
|
1914
1913
|
Is default or not.
|
|
1915
1914
|
"""
|
|
1916
1915
|
return pulumi.get(self, "default")
|
|
1917
1916
|
|
|
1918
|
-
@property
|
|
1917
|
+
@_builtins.property
|
|
1919
1918
|
@pulumi.getter(name="delegateSelectors")
|
|
1920
|
-
def delegate_selectors(self) -> pulumi.Output[Optional[Sequence[
|
|
1919
|
+
def delegate_selectors(self) -> pulumi.Output[Optional[Sequence[_builtins.str]]]:
|
|
1921
1920
|
"""
|
|
1922
1921
|
List of Delegate Selectors that belong to the same Delegate and are used to connect to the Secret Manager.
|
|
1923
1922
|
"""
|
|
1924
1923
|
return pulumi.get(self, "delegate_selectors")
|
|
1925
1924
|
|
|
1926
|
-
@property
|
|
1925
|
+
@_builtins.property
|
|
1927
1926
|
@pulumi.getter
|
|
1928
|
-
def description(self) -> pulumi.Output[Optional[
|
|
1927
|
+
def description(self) -> pulumi.Output[Optional[_builtins.str]]:
|
|
1929
1928
|
"""
|
|
1930
1929
|
Description of the resource.
|
|
1931
1930
|
"""
|
|
1932
1931
|
return pulumi.get(self, "description")
|
|
1933
1932
|
|
|
1934
|
-
@property
|
|
1933
|
+
@_builtins.property
|
|
1935
1934
|
@pulumi.getter(name="executeOnDelegate")
|
|
1936
|
-
def execute_on_delegate(self) -> pulumi.Output[Optional[
|
|
1935
|
+
def execute_on_delegate(self) -> pulumi.Output[Optional[_builtins.bool]]:
|
|
1937
1936
|
"""
|
|
1938
1937
|
Execute on delegate or not.
|
|
1939
1938
|
"""
|
|
1940
1939
|
return pulumi.get(self, "execute_on_delegate")
|
|
1941
1940
|
|
|
1942
|
-
@property
|
|
1941
|
+
@_builtins.property
|
|
1943
1942
|
@pulumi.getter
|
|
1944
|
-
def identifier(self) -> pulumi.Output[
|
|
1943
|
+
def identifier(self) -> pulumi.Output[_builtins.str]:
|
|
1945
1944
|
"""
|
|
1946
1945
|
Unique identifier of the resource.
|
|
1947
1946
|
"""
|
|
1948
1947
|
return pulumi.get(self, "identifier")
|
|
1949
1948
|
|
|
1950
|
-
@property
|
|
1949
|
+
@_builtins.property
|
|
1951
1950
|
@pulumi.getter(name="isDefault")
|
|
1952
|
-
def is_default(self) -> pulumi.Output[Optional[
|
|
1951
|
+
def is_default(self) -> pulumi.Output[Optional[_builtins.bool]]:
|
|
1953
1952
|
"""
|
|
1954
1953
|
Is default or not.
|
|
1955
1954
|
"""
|
|
1956
1955
|
return pulumi.get(self, "is_default")
|
|
1957
1956
|
|
|
1958
|
-
@property
|
|
1957
|
+
@_builtins.property
|
|
1959
1958
|
@pulumi.getter(name="isReadOnly")
|
|
1960
|
-
def is_read_only(self) -> pulumi.Output[Optional[
|
|
1959
|
+
def is_read_only(self) -> pulumi.Output[Optional[_builtins.bool]]:
|
|
1961
1960
|
"""
|
|
1962
1961
|
Read only or not.
|
|
1963
1962
|
"""
|
|
1964
1963
|
return pulumi.get(self, "is_read_only")
|
|
1965
1964
|
|
|
1966
|
-
@property
|
|
1965
|
+
@_builtins.property
|
|
1967
1966
|
@pulumi.getter(name="k8sAuthEndpoint")
|
|
1968
|
-
def k8s_auth_endpoint(self) -> pulumi.Output[Optional[
|
|
1967
|
+
def k8s_auth_endpoint(self) -> pulumi.Output[Optional[_builtins.str]]:
|
|
1969
1968
|
"""
|
|
1970
1969
|
The path where Kubernetes Auth is enabled in Vault.
|
|
1971
1970
|
"""
|
|
1972
1971
|
return pulumi.get(self, "k8s_auth_endpoint")
|
|
1973
1972
|
|
|
1974
|
-
@property
|
|
1973
|
+
@_builtins.property
|
|
1975
1974
|
@pulumi.getter
|
|
1976
|
-
def name(self) -> pulumi.Output[
|
|
1975
|
+
def name(self) -> pulumi.Output[_builtins.str]:
|
|
1977
1976
|
"""
|
|
1978
1977
|
Name of the resource.
|
|
1979
1978
|
"""
|
|
1980
1979
|
return pulumi.get(self, "name")
|
|
1981
1980
|
|
|
1982
|
-
@property
|
|
1981
|
+
@_builtins.property
|
|
1983
1982
|
@pulumi.getter
|
|
1984
|
-
def namespace(self) -> pulumi.Output[Optional[
|
|
1983
|
+
def namespace(self) -> pulumi.Output[Optional[_builtins.str]]:
|
|
1985
1984
|
"""
|
|
1986
1985
|
Vault namespace where the Secret will be created.
|
|
1987
1986
|
"""
|
|
1988
1987
|
return pulumi.get(self, "namespace")
|
|
1989
1988
|
|
|
1990
|
-
@property
|
|
1989
|
+
@_builtins.property
|
|
1991
1990
|
@pulumi.getter(name="orgId")
|
|
1992
|
-
def org_id(self) -> pulumi.Output[Optional[
|
|
1991
|
+
def org_id(self) -> pulumi.Output[Optional[_builtins.str]]:
|
|
1993
1992
|
"""
|
|
1994
1993
|
Unique identifier of the organization.
|
|
1995
1994
|
"""
|
|
1996
1995
|
return pulumi.get(self, "org_id")
|
|
1997
1996
|
|
|
1998
|
-
@property
|
|
1997
|
+
@_builtins.property
|
|
1999
1998
|
@pulumi.getter(name="projectId")
|
|
2000
|
-
def project_id(self) -> pulumi.Output[Optional[
|
|
1999
|
+
def project_id(self) -> pulumi.Output[Optional[_builtins.str]]:
|
|
2001
2000
|
"""
|
|
2002
2001
|
Unique identifier of the project.
|
|
2003
2002
|
"""
|
|
2004
2003
|
return pulumi.get(self, "project_id")
|
|
2005
2004
|
|
|
2006
|
-
@property
|
|
2005
|
+
@_builtins.property
|
|
2007
2006
|
@pulumi.getter(name="readOnly")
|
|
2008
|
-
def read_only(self) -> pulumi.Output[Optional[
|
|
2007
|
+
def read_only(self) -> pulumi.Output[Optional[_builtins.bool]]:
|
|
2009
2008
|
"""
|
|
2010
2009
|
Read only.
|
|
2011
2010
|
"""
|
|
2012
2011
|
return pulumi.get(self, "read_only")
|
|
2013
2012
|
|
|
2014
|
-
@property
|
|
2013
|
+
@_builtins.property
|
|
2015
2014
|
@pulumi.getter(name="renewAppRoleToken")
|
|
2016
|
-
def renew_app_role_token(self) -> pulumi.Output[
|
|
2015
|
+
def renew_app_role_token(self) -> pulumi.Output[_builtins.bool]:
|
|
2017
2016
|
"""
|
|
2018
2017
|
Boolean value to indicate if AppRole token renewal is enabled or not.
|
|
2019
2018
|
"""
|
|
2020
2019
|
return pulumi.get(self, "renew_app_role_token")
|
|
2021
2020
|
|
|
2022
|
-
@property
|
|
2021
|
+
@_builtins.property
|
|
2023
2022
|
@pulumi.getter(name="renewalIntervalMinutes")
|
|
2024
|
-
def renewal_interval_minutes(self) -> pulumi.Output[
|
|
2023
|
+
def renewal_interval_minutes(self) -> pulumi.Output[_builtins.int]:
|
|
2025
2024
|
"""
|
|
2026
2025
|
The time interval for the token renewal.
|
|
2027
2026
|
"""
|
|
2028
2027
|
return pulumi.get(self, "renewal_interval_minutes")
|
|
2029
2028
|
|
|
2030
|
-
@property
|
|
2029
|
+
@_builtins.property
|
|
2031
2030
|
@pulumi.getter(name="secretEngineManuallyConfigured")
|
|
2032
|
-
def secret_engine_manually_configured(self) -> pulumi.Output[Optional[
|
|
2031
|
+
def secret_engine_manually_configured(self) -> pulumi.Output[Optional[_builtins.bool]]:
|
|
2033
2032
|
"""
|
|
2034
2033
|
Manually entered Secret Engine.
|
|
2035
2034
|
"""
|
|
2036
2035
|
return pulumi.get(self, "secret_engine_manually_configured")
|
|
2037
2036
|
|
|
2038
|
-
@property
|
|
2037
|
+
@_builtins.property
|
|
2039
2038
|
@pulumi.getter(name="secretEngineName")
|
|
2040
|
-
def secret_engine_name(self) -> pulumi.Output[Optional[
|
|
2039
|
+
def secret_engine_name(self) -> pulumi.Output[Optional[_builtins.str]]:
|
|
2041
2040
|
"""
|
|
2042
2041
|
Name of the Secret Engine.
|
|
2043
2042
|
"""
|
|
2044
2043
|
return pulumi.get(self, "secret_engine_name")
|
|
2045
2044
|
|
|
2046
|
-
@property
|
|
2045
|
+
@_builtins.property
|
|
2047
2046
|
@pulumi.getter(name="secretEngineVersion")
|
|
2048
|
-
def secret_engine_version(self) -> pulumi.Output[Optional[
|
|
2047
|
+
def secret_engine_version(self) -> pulumi.Output[Optional[_builtins.int]]:
|
|
2049
2048
|
"""
|
|
2050
2049
|
Version of Secret Engine.
|
|
2051
2050
|
"""
|
|
2052
2051
|
return pulumi.get(self, "secret_engine_version")
|
|
2053
2052
|
|
|
2054
|
-
@property
|
|
2053
|
+
@_builtins.property
|
|
2055
2054
|
@pulumi.getter(name="secretId")
|
|
2056
|
-
def secret_id(self) -> pulumi.Output[Optional[
|
|
2055
|
+
def secret_id(self) -> pulumi.Output[Optional[_builtins.str]]:
|
|
2057
2056
|
"""
|
|
2058
2057
|
ID of the Secret.
|
|
2059
2058
|
"""
|
|
2060
2059
|
return pulumi.get(self, "secret_id")
|
|
2061
2060
|
|
|
2062
|
-
@property
|
|
2061
|
+
@_builtins.property
|
|
2063
2062
|
@pulumi.getter(name="serviceAccountTokenPath")
|
|
2064
|
-
def service_account_token_path(self) -> pulumi.Output[Optional[
|
|
2063
|
+
def service_account_token_path(self) -> pulumi.Output[Optional[_builtins.str]]:
|
|
2065
2064
|
"""
|
|
2066
2065
|
The Service Account token path in the K8s pod where the token is mounted.
|
|
2067
2066
|
"""
|
|
2068
2067
|
return pulumi.get(self, "service_account_token_path")
|
|
2069
2068
|
|
|
2070
|
-
@property
|
|
2069
|
+
@_builtins.property
|
|
2071
2070
|
@pulumi.getter(name="sinkPath")
|
|
2072
|
-
def sink_path(self) -> pulumi.Output[Optional[
|
|
2071
|
+
def sink_path(self) -> pulumi.Output[Optional[_builtins.str]]:
|
|
2073
2072
|
"""
|
|
2074
2073
|
The location from which the authentication token should be read.
|
|
2075
2074
|
"""
|
|
2076
2075
|
return pulumi.get(self, "sink_path")
|
|
2077
2076
|
|
|
2078
|
-
@property
|
|
2077
|
+
@_builtins.property
|
|
2079
2078
|
@pulumi.getter
|
|
2080
|
-
def tags(self) -> pulumi.Output[Optional[Sequence[
|
|
2079
|
+
def tags(self) -> pulumi.Output[Optional[Sequence[_builtins.str]]]:
|
|
2081
2080
|
"""
|
|
2082
2081
|
Tags to associate with the resource.
|
|
2083
2082
|
"""
|
|
2084
2083
|
return pulumi.get(self, "tags")
|
|
2085
2084
|
|
|
2086
|
-
@property
|
|
2085
|
+
@_builtins.property
|
|
2087
2086
|
@pulumi.getter(name="useAwsIam")
|
|
2088
|
-
def use_aws_iam(self) -> pulumi.Output[Optional[
|
|
2087
|
+
def use_aws_iam(self) -> pulumi.Output[Optional[_builtins.bool]]:
|
|
2089
2088
|
"""
|
|
2090
2089
|
Boolean value to indicate if AWS IAM is used for authentication.
|
|
2091
2090
|
"""
|
|
2092
2091
|
return pulumi.get(self, "use_aws_iam")
|
|
2093
2092
|
|
|
2094
|
-
@property
|
|
2093
|
+
@_builtins.property
|
|
2095
2094
|
@pulumi.getter(name="useJwtAuth")
|
|
2096
|
-
def use_jwt_auth(self) -> pulumi.Output[Optional[
|
|
2095
|
+
def use_jwt_auth(self) -> pulumi.Output[Optional[_builtins.bool]]:
|
|
2097
2096
|
"""
|
|
2098
2097
|
Boolean value to indicate if JWT is used for authentication.
|
|
2099
2098
|
"""
|
|
2100
2099
|
return pulumi.get(self, "use_jwt_auth")
|
|
2101
2100
|
|
|
2102
|
-
@property
|
|
2101
|
+
@_builtins.property
|
|
2103
2102
|
@pulumi.getter(name="useK8sAuth")
|
|
2104
|
-
def use_k8s_auth(self) -> pulumi.Output[Optional[
|
|
2103
|
+
def use_k8s_auth(self) -> pulumi.Output[Optional[_builtins.bool]]:
|
|
2105
2104
|
"""
|
|
2106
2105
|
Boolean value to indicate if K8s Auth is used for authentication.
|
|
2107
2106
|
"""
|
|
2108
2107
|
return pulumi.get(self, "use_k8s_auth")
|
|
2109
2108
|
|
|
2110
|
-
@property
|
|
2109
|
+
@_builtins.property
|
|
2111
2110
|
@pulumi.getter(name="useVaultAgent")
|
|
2112
|
-
def use_vault_agent(self) -> pulumi.Output[Optional[
|
|
2111
|
+
def use_vault_agent(self) -> pulumi.Output[Optional[_builtins.bool]]:
|
|
2113
2112
|
"""
|
|
2114
2113
|
Boolean value to indicate if Vault Agent is used for authentication.
|
|
2115
2114
|
"""
|
|
2116
2115
|
return pulumi.get(self, "use_vault_agent")
|
|
2117
2116
|
|
|
2118
|
-
@property
|
|
2117
|
+
@_builtins.property
|
|
2119
2118
|
@pulumi.getter(name="vaultAwsIamRole")
|
|
2120
|
-
def vault_aws_iam_role(self) -> pulumi.Output[Optional[
|
|
2119
|
+
def vault_aws_iam_role(self) -> pulumi.Output[Optional[_builtins.str]]:
|
|
2121
2120
|
"""
|
|
2122
2121
|
The Vault role defined to bind to aws iam account/role being accessed.
|
|
2123
2122
|
"""
|
|
2124
2123
|
return pulumi.get(self, "vault_aws_iam_role")
|
|
2125
2124
|
|
|
2126
|
-
@property
|
|
2125
|
+
@_builtins.property
|
|
2127
2126
|
@pulumi.getter(name="vaultJwtAuthPath")
|
|
2128
|
-
def vault_jwt_auth_path(self) -> pulumi.Output[Optional[
|
|
2127
|
+
def vault_jwt_auth_path(self) -> pulumi.Output[Optional[_builtins.str]]:
|
|
2129
2128
|
"""
|
|
2130
2129
|
Custom path at with JWT auth in enabled for Vault.
|
|
2131
2130
|
"""
|
|
2132
2131
|
return pulumi.get(self, "vault_jwt_auth_path")
|
|
2133
2132
|
|
|
2134
|
-
@property
|
|
2133
|
+
@_builtins.property
|
|
2135
2134
|
@pulumi.getter(name="vaultJwtAuthRole")
|
|
2136
|
-
def vault_jwt_auth_role(self) -> pulumi.Output[Optional[
|
|
2135
|
+
def vault_jwt_auth_role(self) -> pulumi.Output[Optional[_builtins.str]]:
|
|
2137
2136
|
"""
|
|
2138
2137
|
The Vault role defined with JWT auth type for accessing Vault as per policies binded.
|
|
2139
2138
|
"""
|
|
2140
2139
|
return pulumi.get(self, "vault_jwt_auth_role")
|
|
2141
2140
|
|
|
2142
|
-
@property
|
|
2141
|
+
@_builtins.property
|
|
2143
2142
|
@pulumi.getter(name="vaultK8sAuthRole")
|
|
2144
|
-
def vault_k8s_auth_role(self) -> pulumi.Output[Optional[
|
|
2143
|
+
def vault_k8s_auth_role(self) -> pulumi.Output[Optional[_builtins.str]]:
|
|
2145
2144
|
"""
|
|
2146
2145
|
The role where K8s Auth will happen.
|
|
2147
2146
|
"""
|
|
2148
2147
|
return pulumi.get(self, "vault_k8s_auth_role")
|
|
2149
2148
|
|
|
2150
|
-
@property
|
|
2149
|
+
@_builtins.property
|
|
2151
2150
|
@pulumi.getter(name="vaultUrl")
|
|
2152
|
-
def vault_url(self) -> pulumi.Output[
|
|
2151
|
+
def vault_url(self) -> pulumi.Output[_builtins.str]:
|
|
2153
2152
|
"""
|
|
2154
2153
|
URL of the HashiCorp Vault.
|
|
2155
2154
|
"""
|
|
2156
2155
|
return pulumi.get(self, "vault_url")
|
|
2157
2156
|
|
|
2158
|
-
@property
|
|
2157
|
+
@_builtins.property
|
|
2159
2158
|
@pulumi.getter(name="xvaultAwsIamServerId")
|
|
2160
|
-
def xvault_aws_iam_server_id(self) -> pulumi.Output[Optional[
|
|
2159
|
+
def xvault_aws_iam_server_id(self) -> pulumi.Output[Optional[_builtins.str]]:
|
|
2161
2160
|
"""
|
|
2162
2161
|
The AWS IAM Header Server ID that has been configured for this AWS IAM instance.
|
|
2163
2162
|
"""
|