pulumi-tls 5.0.0a0__tar.gz → 5.0.2__tar.gz

{pulumi_tls-5.0.0a0 → pulumi_tls-5.0.2}/PKG-INFO

@@ -1,13 +1,16 @@
 Metadata-Version: 2.1
 Name: pulumi_tls
-Version: 5.0.0a0
+Version: 5.0.2
 Summary: A Pulumi package to create TLS resources in Pulumi programs.
-Home-page: https://pulumi.io
 License: Apache-2.0
+Project-URL: Homepage, https://pulumi.io
 Project-URL: Repository, https://github.com/pulumi/pulumi-tls
-Keywords: pulumi tls
-Platform: UNKNOWN
+Keywords: pulumi,tls
+Requires-Python: >=3.8
 Description-Content-Type: text/markdown
+Requires-Dist: parver>=0.2.1
+Requires-Dist: pulumi<4.0.0,>=3.0.0
+Requires-Dist: semver>=2.8.1
 
 [![Actions Status](https://github.com/pulumi/pulumi-tls/workflows/master/badge.svg)](https://github.com/pulumi/pulumi-tls/actions)
 [![Slack](http://www.pulumi.com/images/docs/badges/slack.svg)](https://slack.pulumi.com)
@@ -63,5 +66,3 @@ and interact closely with TLS resources.
 
 
 For further information, please visit [the TLS provider docs](https://www.pulumi.com/docs/intro/cloud-providers/tls) or for detailed reference documentation, please visit [the API docs](https://www.pulumi.com/docs/reference/pkg/tls).
-
-

{pulumi_tls-5.0.0a0 → pulumi_tls-5.0.2}/pulumi_tls/_inputs.py

@@ -173,6 +173,12 @@ class ProviderProxyArgs:
                  password: Optional[pulumi.Input[str]] = None,
                  url: Optional[pulumi.Input[str]] = None,
                  username: Optional[pulumi.Input[str]] = None):
+        """
+        :param pulumi.Input[bool] from_env: When `true` the provider will discover the proxy configuration from environment variables. This is based upon [`http.ProxyFromEnvironment`](https://pkg.go.dev/net/http#ProxyFromEnvironment) and it supports the same environment variables (default: `true`).
+        :param pulumi.Input[str] password: Password used for Basic authentication against the Proxy.
+        :param pulumi.Input[str] url: URL used to connect to the Proxy. Accepted schemes are: `http`, `https`, `socks5`.
+        :param pulumi.Input[str] username: Username (or Token) used for Basic authentication against the Proxy.
+        """
         if from_env is not None:
             pulumi.set(__self__, "from_env", from_env)
         if password is not None:
@@ -185,6 +191,9 @@ class ProviderProxyArgs:
     @property
     @pulumi.getter(name="fromEnv")
     def from_env(self) -> Optional[pulumi.Input[bool]]:
+        """
+        When `true` the provider will discover the proxy configuration from environment variables. This is based upon [`http.ProxyFromEnvironment`](https://pkg.go.dev/net/http#ProxyFromEnvironment) and it supports the same environment variables (default: `true`).
+        """
         return pulumi.get(self, "from_env")
 
     @from_env.setter
@@ -194,6 +203,9 @@ class ProviderProxyArgs:
     @property
     @pulumi.getter
     def password(self) -> Optional[pulumi.Input[str]]:
+        """
+        Password used for Basic authentication against the Proxy.
+        """
         return pulumi.get(self, "password")
 
     @password.setter
@@ -203,6 +215,9 @@ class ProviderProxyArgs:
     @property
     @pulumi.getter
     def url(self) -> Optional[pulumi.Input[str]]:
+        """
+        URL used to connect to the Proxy. Accepted schemes are: `http`, `https`, `socks5`.
+        """
         return pulumi.get(self, "url")
 
     @url.setter
@@ -212,6 +227,9 @@ class ProviderProxyArgs:
     @property
     @pulumi.getter
     def username(self) -> Optional[pulumi.Input[str]]:
+        """
+        Username (or Token) used for Basic authentication against the Proxy.
+        """
         return pulumi.get(self, "username")
 
     @username.setter

{pulumi_tls-5.0.0a0 → pulumi_tls-5.0.2}/pulumi_tls/_utilities.py

@@ -3,16 +3,18 @@
 # *** Do not edit by hand unless you're certain you know what you are doing! ***
 
 
+import asyncio
+import importlib.metadata
 import importlib.util
 import inspect
 import json
 import os
-import pkg_resources
 import sys
 import typing
 
 import pulumi
 import pulumi.runtime
+from pulumi.runtime.sync_await import _sync_await
 
 from semver import VersionInfo as SemverVersion
 from parver import Version as PEP440Version
@@ -70,7 +72,7 @@ def _get_semver_version():
     # to receive a valid semver string when receiving requests from the language host, so it's our
     # responsibility as the library to convert our own PEP440 version into a valid semver string.
 
-    pep440_version_string = pkg_resources.require(root_package)[0].version
+    pep440_version_string = importlib.metadata.version(root_package)
     pep440_version = PEP440Version.parse(pep440_version_string)
     (major, minor, patch) = pep440_version.release
     prerelease = None
@@ -246,5 +248,44 @@ def lift_output_func(func: typing.Any) -> typing.Callable[[_F], _F]:
 
     return (lambda _: lifted_func)
 
+
+def call_plain(
+    tok: str,
+    props: pulumi.Inputs,
+    res: typing.Optional[pulumi.Resource] = None,
+    typ: typing.Optional[type] = None,
+) -> typing.Any:
+    """
+    Wraps pulumi.runtime.plain to force the output and return it plainly.
+    """
+
+    output = pulumi.runtime.call(tok, props, res, typ)
+
+    # Ingoring deps silently. They are typically non-empty, r.f() calls include r as a dependency.
+    result, known, secret, _ = _sync_await(asyncio.ensure_future(_await_output(output)))
+
+    problem = None
+    if not known:
+        problem = ' an unknown value'
+    elif secret:
+        problem = ' a secret value'
+
+    if problem:
+        raise AssertionError(
+            f"Plain resource method '{tok}' incorrectly returned {problem}. "
+            + "This is an error in the provider, please report this to the provider developer."
+        )
+
+    return result
+
+
+async def _await_output(o: pulumi.Output[typing.Any]) -> typing.Tuple[object, bool, bool, set]:
+    return (
+        await o._future,
+        await o._is_known,
+        await o._is_secret,
+        await o._resources,
+    )
+
 def get_plugin_download_url():
 	return None

{pulumi_tls-5.0.0a0 → pulumi_tls-5.0.2}/pulumi_tls/cert_request.py

@@ -23,9 +23,7 @@ class CertRequestArgs:
                  uris: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None):
         """
         The set of arguments for constructing a CertRequest resource.
-        :param pulumi.Input[str] private_key_pem: Private key in [PEM (RFC 1421)](https://datatracker.ietf.org/doc/html/rfc1421) format, that the certificate will belong
-               to. This can be read from a separate file using the [`file`](https://www.terraform.io/language/functions/file)
-               interpolation function. Only an irreversible secure hash of the private key will be stored in the Terraform state.
+        :param pulumi.Input[str] private_key_pem: Private key in PEM (RFC 1421) interpolation function.
         :param pulumi.Input[Sequence[pulumi.Input[str]]] dns_names: List of DNS names for which a certificate is being requested (i.e. certificate subjects).
         :param pulumi.Input[Sequence[pulumi.Input[str]]] ip_addresses: List of IP addresses for which a certificate is being requested (i.e. certificate subjects).
         :param pulumi.Input['CertRequestSubjectArgs'] subject: The subject for which a certificate is being requested. The acceptable arguments are all optional and their naming is based upon [Issuer Distinguished Names (RFC5280)](https://tools.ietf.org/html/rfc5280#section-4.1.2.4) section.
@@ -45,9 +43,7 @@ class CertRequestArgs:
     @pulumi.getter(name="privateKeyPem")
     def private_key_pem(self) -> pulumi.Input[str]:
         """
-        Private key in [PEM (RFC 1421)](https://datatracker.ietf.org/doc/html/rfc1421) format, that the certificate will belong
-        to. This can be read from a separate file using the [`file`](https://www.terraform.io/language/functions/file)
-        interpolation function. Only an irreversible secure hash of the private key will be stored in the Terraform state.
+        Private key in PEM (RFC 1421) interpolation function.
         """
         return pulumi.get(self, "private_key_pem")
 
@@ -116,17 +112,11 @@ class _CertRequestState:
                  uris: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None):
         """
         Input properties used for looking up and filtering CertRequest resources.
-        :param pulumi.Input[str] cert_request_pem: The certificate request data in [PEM (RFC 1421)](https://datatracker.ietf.org/doc/html/rfc1421) format. **NOTE**: the
-               [underlying](https://pkg.go.dev/encoding/pem#Encode)
-               [libraries](https://pkg.go.dev/golang.org/x/crypto/ssh#MarshalAuthorizedKey) that generate this value append a `\\n` at
-               the end of the PEM. In case this disrupts your use case, we recommend using
-               [`trimspace()`](https://www.terraform.io/language/functions/trimspace).
+        :param pulumi.Input[str] cert_request_pem: The certificate request data in PEM (RFC 1421).
         :param pulumi.Input[Sequence[pulumi.Input[str]]] dns_names: List of DNS names for which a certificate is being requested (i.e. certificate subjects).
         :param pulumi.Input[Sequence[pulumi.Input[str]]] ip_addresses: List of IP addresses for which a certificate is being requested (i.e. certificate subjects).
         :param pulumi.Input[str] key_algorithm: Name of the algorithm used when generating the private key provided in `private_key_pem`.
-        :param pulumi.Input[str] private_key_pem: Private key in [PEM (RFC 1421)](https://datatracker.ietf.org/doc/html/rfc1421) format, that the certificate will belong
-               to. This can be read from a separate file using the [`file`](https://www.terraform.io/language/functions/file)
-               interpolation function. Only an irreversible secure hash of the private key will be stored in the Terraform state.
+        :param pulumi.Input[str] private_key_pem: Private key in PEM (RFC 1421) interpolation function.
         :param pulumi.Input['CertRequestSubjectArgs'] subject: The subject for which a certificate is being requested. The acceptable arguments are all optional and their naming is based upon [Issuer Distinguished Names (RFC5280)](https://tools.ietf.org/html/rfc5280#section-4.1.2.4) section.
         :param pulumi.Input[Sequence[pulumi.Input[str]]] uris: List of URIs for which a certificate is being requested (i.e. certificate subjects).
         """
@@ -149,11 +139,7 @@ class _CertRequestState:
     @pulumi.getter(name="certRequestPem")
     def cert_request_pem(self) -> Optional[pulumi.Input[str]]:
         """
-        The certificate request data in [PEM (RFC 1421)](https://datatracker.ietf.org/doc/html/rfc1421) format. **NOTE**: the
-        [underlying](https://pkg.go.dev/encoding/pem#Encode)
-        [libraries](https://pkg.go.dev/golang.org/x/crypto/ssh#MarshalAuthorizedKey) that generate this value append a `\\n` at
-        the end of the PEM. In case this disrupts your use case, we recommend using
-        [`trimspace()`](https://www.terraform.io/language/functions/trimspace).
+        The certificate request data in PEM (RFC 1421).
         """
         return pulumi.get(self, "cert_request_pem")
 
@@ -201,9 +187,7 @@ class _CertRequestState:
     @pulumi.getter(name="privateKeyPem")
     def private_key_pem(self) -> Optional[pulumi.Input[str]]:
         """
-        Private key in [PEM (RFC 1421)](https://datatracker.ietf.org/doc/html/rfc1421) format, that the certificate will belong
-        to. This can be read from a separate file using the [`file`](https://www.terraform.io/language/functions/file)
-        interpolation function. Only an irreversible secure hash of the private key will be stored in the Terraform state.
+        Private key in PEM (RFC 1421) interpolation function.
         """
         return pulumi.get(self, "private_key_pem")
 
@@ -250,6 +234,7 @@ class CertRequest(pulumi.CustomResource):
         """
         ## Example Usage
 
+        <!--Start PulumiCodeChooser -->
         ```python
         import pulumi
         import pulumi_tls as tls
@@ -261,14 +246,13 @@ class CertRequest(pulumi.CustomResource):
                 organization="ACME Examples, Inc",
             ))
         ```
+        <!--End PulumiCodeChooser -->
 
         :param str resource_name: The name of the resource.
         :param pulumi.ResourceOptions opts: Options for the resource.
         :param pulumi.Input[Sequence[pulumi.Input[str]]] dns_names: List of DNS names for which a certificate is being requested (i.e. certificate subjects).
         :param pulumi.Input[Sequence[pulumi.Input[str]]] ip_addresses: List of IP addresses for which a certificate is being requested (i.e. certificate subjects).
-        :param pulumi.Input[str] private_key_pem: Private key in [PEM (RFC 1421)](https://datatracker.ietf.org/doc/html/rfc1421) format, that the certificate will belong
-               to. This can be read from a separate file using the [`file`](https://www.terraform.io/language/functions/file)
-               interpolation function. Only an irreversible secure hash of the private key will be stored in the Terraform state.
+        :param pulumi.Input[str] private_key_pem: Private key in PEM (RFC 1421) interpolation function.
         :param pulumi.Input[pulumi.InputType['CertRequestSubjectArgs']] subject: The subject for which a certificate is being requested. The acceptable arguments are all optional and their naming is based upon [Issuer Distinguished Names (RFC5280)](https://tools.ietf.org/html/rfc5280#section-4.1.2.4) section.
         :param pulumi.Input[Sequence[pulumi.Input[str]]] uris: List of URIs for which a certificate is being requested (i.e. certificate subjects).
         """
@@ -281,6 +265,7 @@ class CertRequest(pulumi.CustomResource):
         """
         ## Example Usage
 
+        <!--Start PulumiCodeChooser -->
         ```python
         import pulumi
         import pulumi_tls as tls
@@ -292,6 +277,7 @@ class CertRequest(pulumi.CustomResource):
                 organization="ACME Examples, Inc",
             ))
         ```
+        <!--End PulumiCodeChooser -->
 
         :param str resource_name: The name of the resource.
         :param CertRequestArgs args: The arguments to use to populate this resource's properties.
@@ -357,17 +343,11 @@ class CertRequest(pulumi.CustomResource):
         :param str resource_name: The unique name of the resulting resource.
         :param pulumi.Input[str] id: The unique provider ID of the resource to lookup.
         :param pulumi.ResourceOptions opts: Options for the resource.
-        :param pulumi.Input[str] cert_request_pem: The certificate request data in [PEM (RFC 1421)](https://datatracker.ietf.org/doc/html/rfc1421) format. **NOTE**: the
-               [underlying](https://pkg.go.dev/encoding/pem#Encode)
-               [libraries](https://pkg.go.dev/golang.org/x/crypto/ssh#MarshalAuthorizedKey) that generate this value append a `\\n` at
-               the end of the PEM. In case this disrupts your use case, we recommend using
-               [`trimspace()`](https://www.terraform.io/language/functions/trimspace).
+        :param pulumi.Input[str] cert_request_pem: The certificate request data in PEM (RFC 1421).
         :param pulumi.Input[Sequence[pulumi.Input[str]]] dns_names: List of DNS names for which a certificate is being requested (i.e. certificate subjects).
         :param pulumi.Input[Sequence[pulumi.Input[str]]] ip_addresses: List of IP addresses for which a certificate is being requested (i.e. certificate subjects).
         :param pulumi.Input[str] key_algorithm: Name of the algorithm used when generating the private key provided in `private_key_pem`.
-        :param pulumi.Input[str] private_key_pem: Private key in [PEM (RFC 1421)](https://datatracker.ietf.org/doc/html/rfc1421) format, that the certificate will belong
-               to. This can be read from a separate file using the [`file`](https://www.terraform.io/language/functions/file)
-               interpolation function. Only an irreversible secure hash of the private key will be stored in the Terraform state.
+        :param pulumi.Input[str] private_key_pem: Private key in PEM (RFC 1421) interpolation function.
         :param pulumi.Input[pulumi.InputType['CertRequestSubjectArgs']] subject: The subject for which a certificate is being requested. The acceptable arguments are all optional and their naming is based upon [Issuer Distinguished Names (RFC5280)](https://tools.ietf.org/html/rfc5280#section-4.1.2.4) section.
         :param pulumi.Input[Sequence[pulumi.Input[str]]] uris: List of URIs for which a certificate is being requested (i.e. certificate subjects).
         """
@@ -388,11 +368,7 @@ class CertRequest(pulumi.CustomResource):
     @pulumi.getter(name="certRequestPem")
     def cert_request_pem(self) -> pulumi.Output[str]:
         """
-        The certificate request data in [PEM (RFC 1421)](https://datatracker.ietf.org/doc/html/rfc1421) format. **NOTE**: the
-        [underlying](https://pkg.go.dev/encoding/pem#Encode)
-        [libraries](https://pkg.go.dev/golang.org/x/crypto/ssh#MarshalAuthorizedKey) that generate this value append a `\\n` at
-        the end of the PEM. In case this disrupts your use case, we recommend using
-        [`trimspace()`](https://www.terraform.io/language/functions/trimspace).
+        The certificate request data in PEM (RFC 1421).
         """
         return pulumi.get(self, "cert_request_pem")
 
@@ -424,9 +400,7 @@ class CertRequest(pulumi.CustomResource):
     @pulumi.getter(name="privateKeyPem")
     def private_key_pem(self) -> pulumi.Output[str]:
         """
-        Private key in [PEM (RFC 1421)](https://datatracker.ietf.org/doc/html/rfc1421) format, that the certificate will belong
-        to. This can be read from a separate file using the [`file`](https://www.terraform.io/language/functions/file)
-        interpolation function. Only an irreversible secure hash of the private key will be stored in the Terraform state.
+        Private key in PEM (RFC 1421) interpolation function.
         """
         return pulumi.get(self, "private_key_pem")
 

pulumi_tls-5.0.2/pulumi_tls/config/__init__.pyi

@@ -0,0 +1,17 @@
+# coding=utf-8
+# *** WARNING: this file was generated by the Pulumi Terraform Bridge (tfgen) Tool. ***
+# *** Do not edit by hand unless you're certain you know what you are doing! ***
+
+import copy
+import warnings
+import pulumi
+import pulumi.runtime
+from typing import Any, Mapping, Optional, Sequence, Union, overload
+from .. import _utilities
+from . import outputs
+
+proxy: Optional[str]
+"""
+Proxy used by resources and data sources that connect to external endpoints.
+"""
+

{pulumi_tls-5.0.0a0 → pulumi_tls-5.0.2}/pulumi_tls/config/outputs.py

@@ -20,6 +20,12 @@ class Proxy(dict):
                  password: Optional[str] = None,
                  url: Optional[str] = None,
                  username: Optional[str] = None):
+        """
+        :param bool from_env: When `true` the provider will discover the proxy configuration from environment variables. This is based upon [`http.ProxyFromEnvironment`](https://pkg.go.dev/net/http#ProxyFromEnvironment) and it supports the same environment variables (default: `true`).
+        :param str password: Password used for Basic authentication against the Proxy.
+        :param str url: URL used to connect to the Proxy. Accepted schemes are: `http`, `https`, `socks5`.
+        :param str username: Username (or Token) used for Basic authentication against the Proxy.
+        """
         if from_env is not None:
             pulumi.set(__self__, "from_env", from_env)
         if password is not None:
@@ -32,21 +38,33 @@ class Proxy(dict):
     @property
     @pulumi.getter(name="fromEnv")
     def from_env(self) -> Optional[bool]:
+        """
+        When `true` the provider will discover the proxy configuration from environment variables. This is based upon [`http.ProxyFromEnvironment`](https://pkg.go.dev/net/http#ProxyFromEnvironment) and it supports the same environment variables (default: `true`).
+        """
         return pulumi.get(self, "from_env")
 
     @property
     @pulumi.getter
     def password(self) -> Optional[str]:
+        """
+        Password used for Basic authentication against the Proxy.
+        """
         return pulumi.get(self, "password")
 
     @property
     @pulumi.getter
     def url(self) -> Optional[str]:
+        """
+        URL used to connect to the Proxy. Accepted schemes are: `http`, `https`, `socks5`.
+        """
         return pulumi.get(self, "url")
 
     @property
     @pulumi.getter
     def username(self) -> Optional[str]:
+        """
+        Username (or Token) used for Basic authentication against the Proxy.
+        """
         return pulumi.get(self, "username")
 
 

{pulumi_tls-5.0.0a0 → pulumi_tls-5.0.2}/pulumi_tls/get_certificate.py

@@ -112,11 +112,11 @@ def get_certificate(content: Optional[str] = None,
     __ret__ = pulumi.runtime.invoke('tls:index/getCertificate:getCertificate', __args__, opts=opts, typ=GetCertificateResult).value
 
     return AwaitableGetCertificateResult(
-        certificates=__ret__.certificates,
-        content=__ret__.content,
-        id=__ret__.id,
-        url=__ret__.url,
-        verify_chain=__ret__.verify_chain)
+        certificates=pulumi.get(__ret__, 'certificates'),
+        content=pulumi.get(__ret__, 'content'),
+        id=pulumi.get(__ret__, 'id'),
+        url=pulumi.get(__ret__, 'url'),
+        verify_chain=pulumi.get(__ret__, 'verify_chain'))
 
 
 @_utilities.lift_output_func(get_certificate)

{pulumi_tls-5.0.0a0 → pulumi_tls-5.0.2}/pulumi_tls/get_public_key.py

@@ -98,11 +98,17 @@ class GetPublicKeyResult:
     @property
     @pulumi.getter(name="publicKeyOpenssh")
     def public_key_openssh(self) -> str:
+        """
+        The public key, in  OpenSSH PEM (RFC 4716).
+        """
         return pulumi.get(self, "public_key_openssh")
 
     @property
     @pulumi.getter(name="publicKeyPem")
     def public_key_pem(self) -> str:
+        """
+        The public key, in PEM (RFC 1421).
+        """
         return pulumi.get(self, "public_key_pem")
 
 
@@ -132,6 +138,7 @@ def get_public_key(private_key_openssh: Optional[str] = None,
 
     ## Example Usage
 
+    <!--Start PulumiCodeChooser -->
     ```python
     import pulumi
     import pulumi_tls as tls
@@ -140,6 +147,7 @@ def get_public_key(private_key_openssh: Optional[str] = None,
     private_key_pem_example = tls.get_public_key_output(private_key_pem=ed25519_example.private_key_pem)
     private_key_openssh_example = tls.get_public_key(private_key_openssh=(lambda path: open(path).read())("~/.ssh/id_rsa_rfc4716"))
     ```
+    <!--End PulumiCodeChooser -->
 
 
     :param str private_key_openssh: The private key (in  [OpenSSH PEM (RFC 4716)](https://datatracker.ietf.org/doc/html/rfc4716) format) to extract the public key from. This is *mutually exclusive* with `private_key_pem`. Currently-supported algorithms for keys are: `RSA`, `ECDSA`, `ED25519`.
@@ -152,14 +160,14 @@ def get_public_key(private_key_openssh: Optional[str] = None,
     __ret__ = pulumi.runtime.invoke('tls:index/getPublicKey:getPublicKey', __args__, opts=opts, typ=GetPublicKeyResult).value
 
     return AwaitableGetPublicKeyResult(
-        algorithm=__ret__.algorithm,
-        id=__ret__.id,
-        private_key_openssh=__ret__.private_key_openssh,
-        private_key_pem=__ret__.private_key_pem,
-        public_key_fingerprint_md5=__ret__.public_key_fingerprint_md5,
-        public_key_fingerprint_sha256=__ret__.public_key_fingerprint_sha256,
-        public_key_openssh=__ret__.public_key_openssh,
-        public_key_pem=__ret__.public_key_pem)
+        algorithm=pulumi.get(__ret__, 'algorithm'),
+        id=pulumi.get(__ret__, 'id'),
+        private_key_openssh=pulumi.get(__ret__, 'private_key_openssh'),
+        private_key_pem=pulumi.get(__ret__, 'private_key_pem'),
+        public_key_fingerprint_md5=pulumi.get(__ret__, 'public_key_fingerprint_md5'),
+        public_key_fingerprint_sha256=pulumi.get(__ret__, 'public_key_fingerprint_sha256'),
+        public_key_openssh=pulumi.get(__ret__, 'public_key_openssh'),
+        public_key_pem=pulumi.get(__ret__, 'public_key_pem'))
 
 
 @_utilities.lift_output_func(get_public_key)
@@ -173,6 +181,7 @@ def get_public_key_output(private_key_openssh: Optional[pulumi.Input[Optional[st
 
     ## Example Usage
 
+    <!--Start PulumiCodeChooser -->
     ```python
     import pulumi
     import pulumi_tls as tls
@@ -181,6 +190,7 @@ def get_public_key_output(private_key_openssh: Optional[pulumi.Input[Optional[st
     private_key_pem_example = tls.get_public_key_output(private_key_pem=ed25519_example.private_key_pem)
     private_key_openssh_example = tls.get_public_key(private_key_openssh=(lambda path: open(path).read())("~/.ssh/id_rsa_rfc4716"))
     ```
+    <!--End PulumiCodeChooser -->
 
 
     :param str private_key_openssh: The private key (in  [OpenSSH PEM (RFC 4716)](https://datatracker.ietf.org/doc/html/rfc4716) format) to extract the public key from. This is *mutually exclusive* with `private_key_pem`. Currently-supported algorithms for keys are: `RSA`, `ECDSA`, `ED25519`.

{pulumi_tls-5.0.0a0 → pulumi_tls-5.0.2}/pulumi_tls/locally_signed_cert.py

@@ -172,11 +172,7 @@ class _LocallySignedCertState:
         :param pulumi.Input[str] ca_cert_pem: Certificate data of the Certificate Authority (CA) in [PEM (RFC 1421)](https://datatracker.ietf.org/doc/html/rfc1421) format.
         :param pulumi.Input[str] ca_key_algorithm: Name of the algorithm used when generating the private key provided in `ca_private_key_pem`.
         :param pulumi.Input[str] ca_private_key_pem: Private key of the Certificate Authority (CA) used to sign the certificate, in [PEM (RFC 1421)](https://datatracker.ietf.org/doc/html/rfc1421) format.
-        :param pulumi.Input[str] cert_pem: Certificate data in [PEM (RFC 1421)](https://datatracker.ietf.org/doc/html/rfc1421) format. **NOTE**: the
-               [underlying](https://pkg.go.dev/encoding/pem#Encode)
-               [libraries](https://pkg.go.dev/golang.org/x/crypto/ssh#MarshalAuthorizedKey) that generate this value append a `\\n` at
-               the end of the PEM. In case this disrupts your use case, we recommend using
-               [`trimspace()`](https://www.terraform.io/language/functions/trimspace).
+        :param pulumi.Input[str] cert_pem: Certificate data in PEM (RFC 1421).
         :param pulumi.Input[str] cert_request_pem: Certificate request data in [PEM (RFC 1421)](https://datatracker.ietf.org/doc/html/rfc1421) format.
         :param pulumi.Input[int] early_renewal_hours: The resource will consider the certificate to have expired the given number of hours before its actual expiry time. This
                can be useful to deploy an updated certificate in advance of the expiration of the current certificate. However, the old
@@ -269,11 +265,7 @@ class _LocallySignedCertState:
     @pulumi.getter(name="certPem")
     def cert_pem(self) -> Optional[pulumi.Input[str]]:
         """
-        Certificate data in [PEM (RFC 1421)](https://datatracker.ietf.org/doc/html/rfc1421) format. **NOTE**: the
-        [underlying](https://pkg.go.dev/encoding/pem#Encode)
-        [libraries](https://pkg.go.dev/golang.org/x/crypto/ssh#MarshalAuthorizedKey) that generate this value append a `\\n` at
-        the end of the PEM. In case this disrupts your use case, we recommend using
-        [`trimspace()`](https://www.terraform.io/language/functions/trimspace).
+        Certificate data in PEM (RFC 1421).
         """
         return pulumi.get(self, "cert_pem")
 
@@ -512,11 +504,7 @@ class LocallySignedCert(pulumi.CustomResource):
         :param pulumi.Input[str] ca_cert_pem: Certificate data of the Certificate Authority (CA) in [PEM (RFC 1421)](https://datatracker.ietf.org/doc/html/rfc1421) format.
         :param pulumi.Input[str] ca_key_algorithm: Name of the algorithm used when generating the private key provided in `ca_private_key_pem`.
         :param pulumi.Input[str] ca_private_key_pem: Private key of the Certificate Authority (CA) used to sign the certificate, in [PEM (RFC 1421)](https://datatracker.ietf.org/doc/html/rfc1421) format.
-        :param pulumi.Input[str] cert_pem: Certificate data in [PEM (RFC 1421)](https://datatracker.ietf.org/doc/html/rfc1421) format. **NOTE**: the
-               [underlying](https://pkg.go.dev/encoding/pem#Encode)
-               [libraries](https://pkg.go.dev/golang.org/x/crypto/ssh#MarshalAuthorizedKey) that generate this value append a `\\n` at
-               the end of the PEM. In case this disrupts your use case, we recommend using
-               [`trimspace()`](https://www.terraform.io/language/functions/trimspace).
+        :param pulumi.Input[str] cert_pem: Certificate data in PEM (RFC 1421).
         :param pulumi.Input[str] cert_request_pem: Certificate request data in [PEM (RFC 1421)](https://datatracker.ietf.org/doc/html/rfc1421) format.
         :param pulumi.Input[int] early_renewal_hours: The resource will consider the certificate to have expired the given number of hours before its actual expiry time. This
                can be useful to deploy an updated certificate in advance of the expiration of the current certificate. However, the old
@@ -585,11 +573,7 @@ class LocallySignedCert(pulumi.CustomResource):
     @pulumi.getter(name="certPem")
     def cert_pem(self) -> pulumi.Output[str]:
         """
-        Certificate data in [PEM (RFC 1421)](https://datatracker.ietf.org/doc/html/rfc1421) format. **NOTE**: the
-        [underlying](https://pkg.go.dev/encoding/pem#Encode)
-        [libraries](https://pkg.go.dev/golang.org/x/crypto/ssh#MarshalAuthorizedKey) that generate this value append a `\\n` at
-        the end of the PEM. In case this disrupts your use case, we recommend using
-        [`trimspace()`](https://www.terraform.io/language/functions/trimspace).
+        Certificate data in PEM (RFC 1421).
         """
         return pulumi.get(self, "cert_pem")
 

{pulumi_tls-5.0.0a0 → pulumi_tls-5.0.2}/pulumi_tls/outputs.py

@@ -310,6 +310,7 @@ class GetCertificateCertificateResult(dict):
                  subject: str,
                  version: int):
         """
+        :param str cert_pem: Certificate data in PEM (RFC 1421).
         :param bool is_ca: `true` if the certificate is of a CA (Certificate Authority).
         :param str issuer: Who verified and signed the certificate, roughly following [RFC2253](https://tools.ietf.org/html/rfc2253).
         :param str not_after: The time until which the certificate is invalid, as an [RFC3339](https://tools.ietf.org/html/rfc3339) timestamp.
@@ -337,6 +338,9 @@ class GetCertificateCertificateResult(dict):
     @property
     @pulumi.getter(name="certPem")
     def cert_pem(self) -> str:
+        """
+        Certificate data in PEM (RFC 1421).
+        """
         return pulumi.get(self, "cert_pem")
 
     @property

{pulumi_tls-5.0.0a0 → pulumi_tls-5.0.2}/pulumi_tls/private_key.py

@@ -88,18 +88,8 @@ class _PrivateKeyState:
         :param pulumi.Input[str] private_key_pem_pkcs8: Private key data in [PKCS#8 PEM (RFC 5208)](https://datatracker.ietf.org/doc/html/rfc5208) format.
         :param pulumi.Input[str] public_key_fingerprint_md5: The fingerprint of the public key data in OpenSSH MD5 hash format, e.g. `aa:bb:cc:...`. Only available if the selected private key format is compatible, similarly to `public_key_openssh` and the ECDSA P224 limitations.
         :param pulumi.Input[str] public_key_fingerprint_sha256: The fingerprint of the public key data in OpenSSH SHA256 hash format, e.g. `SHA256:...`. Only available if the selected private key format is compatible, similarly to `public_key_openssh` and the ECDSA P224 limitations.
-        :param pulumi.Input[str] public_key_openssh: The public key data in ["Authorized
-               Keys"](https://www.ssh.com/academy/ssh/authorized_keys/openssh#format-of-the-authorized-keys-file) format. This is not
-               populated for `ECDSA` with curve `P224`, as it is [not supported](../../docs#limitations). **NOTE**: the
-               [underlying](https://pkg.go.dev/encoding/pem#Encode)
-               [libraries](https://pkg.go.dev/golang.org/x/crypto/ssh#MarshalAuthorizedKey) that generate this value append a `\\n` at
-               the end of the PEM. In case this disrupts your use case, we recommend using
-               [`trimspace()`](https://www.terraform.io/language/functions/trimspace).
-        :param pulumi.Input[str] public_key_pem: Public key data in [PEM (RFC 1421)](https://datatracker.ietf.org/doc/html/rfc1421) format. **NOTE**: the
-               [underlying](https://pkg.go.dev/encoding/pem#Encode)
-               [libraries](https://pkg.go.dev/golang.org/x/crypto/ssh#MarshalAuthorizedKey) that generate this value append a `\\n` at
-               the end of the PEM. In case this disrupts your use case, we recommend using
-               [`trimspace()`](https://www.terraform.io/language/functions/trimspace).
+        :param pulumi.Input[str] public_key_openssh: The public key data in "Authorized Keys".
+        :param pulumi.Input[str] public_key_pem: Public key data in PEM (RFC 1421).
         :param pulumi.Input[int] rsa_bits: When `algorithm` is `RSA`, the size of the generated RSA key, in bits (default: `2048`).
         """
         if algorithm is not None:
@@ -211,13 +201,7 @@ class _PrivateKeyState:
     @pulumi.getter(name="publicKeyOpenssh")
     def public_key_openssh(self) -> Optional[pulumi.Input[str]]:
         """
-        The public key data in ["Authorized
-        Keys"](https://www.ssh.com/academy/ssh/authorized_keys/openssh#format-of-the-authorized-keys-file) format. This is not
-        populated for `ECDSA` with curve `P224`, as it is [not supported](../../docs#limitations). **NOTE**: the
-        [underlying](https://pkg.go.dev/encoding/pem#Encode)
-        [libraries](https://pkg.go.dev/golang.org/x/crypto/ssh#MarshalAuthorizedKey) that generate this value append a `\\n` at
-        the end of the PEM. In case this disrupts your use case, we recommend using
-        [`trimspace()`](https://www.terraform.io/language/functions/trimspace).
+        The public key data in "Authorized Keys".
         """
         return pulumi.get(self, "public_key_openssh")
 
@@ -229,11 +213,7 @@ class _PrivateKeyState:
     @pulumi.getter(name="publicKeyPem")
     def public_key_pem(self) -> Optional[pulumi.Input[str]]:
         """
-        Public key data in [PEM (RFC 1421)](https://datatracker.ietf.org/doc/html/rfc1421) format. **NOTE**: the
-        [underlying](https://pkg.go.dev/encoding/pem#Encode)
-        [libraries](https://pkg.go.dev/golang.org/x/crypto/ssh#MarshalAuthorizedKey) that generate this value append a `\\n` at
-        the end of the PEM. In case this disrupts your use case, we recommend using
-        [`trimspace()`](https://www.terraform.io/language/functions/trimspace).
+        Public key data in PEM (RFC 1421).
         """
         return pulumi.get(self, "public_key_pem")
 
@@ -354,18 +334,8 @@ class PrivateKey(pulumi.CustomResource):
         :param pulumi.Input[str] private_key_pem_pkcs8: Private key data in [PKCS#8 PEM (RFC 5208)](https://datatracker.ietf.org/doc/html/rfc5208) format.
         :param pulumi.Input[str] public_key_fingerprint_md5: The fingerprint of the public key data in OpenSSH MD5 hash format, e.g. `aa:bb:cc:...`. Only available if the selected private key format is compatible, similarly to `public_key_openssh` and the ECDSA P224 limitations.
         :param pulumi.Input[str] public_key_fingerprint_sha256: The fingerprint of the public key data in OpenSSH SHA256 hash format, e.g. `SHA256:...`. Only available if the selected private key format is compatible, similarly to `public_key_openssh` and the ECDSA P224 limitations.
-        :param pulumi.Input[str] public_key_openssh: The public key data in ["Authorized
-               Keys"](https://www.ssh.com/academy/ssh/authorized_keys/openssh#format-of-the-authorized-keys-file) format. This is not
-               populated for `ECDSA` with curve `P224`, as it is [not supported](../../docs#limitations). **NOTE**: the
-               [underlying](https://pkg.go.dev/encoding/pem#Encode)
-               [libraries](https://pkg.go.dev/golang.org/x/crypto/ssh#MarshalAuthorizedKey) that generate this value append a `\\n` at
-               the end of the PEM. In case this disrupts your use case, we recommend using
-               [`trimspace()`](https://www.terraform.io/language/functions/trimspace).
-        :param pulumi.Input[str] public_key_pem: Public key data in [PEM (RFC 1421)](https://datatracker.ietf.org/doc/html/rfc1421) format. **NOTE**: the
-               [underlying](https://pkg.go.dev/encoding/pem#Encode)
-               [libraries](https://pkg.go.dev/golang.org/x/crypto/ssh#MarshalAuthorizedKey) that generate this value append a `\\n` at
-               the end of the PEM. In case this disrupts your use case, we recommend using
-               [`trimspace()`](https://www.terraform.io/language/functions/trimspace).
+        :param pulumi.Input[str] public_key_openssh: The public key data in "Authorized Keys".
+        :param pulumi.Input[str] public_key_pem: Public key data in PEM (RFC 1421).
         :param pulumi.Input[int] rsa_bits: When `algorithm` is `RSA`, the size of the generated RSA key, in bits (default: `2048`).
         """
         opts = pulumi.ResourceOptions.merge(opts, pulumi.ResourceOptions(id=id))
@@ -444,13 +414,7 @@ class PrivateKey(pulumi.CustomResource):
     @pulumi.getter(name="publicKeyOpenssh")
     def public_key_openssh(self) -> pulumi.Output[str]:
         """
-        The public key data in ["Authorized
-        Keys"](https://www.ssh.com/academy/ssh/authorized_keys/openssh#format-of-the-authorized-keys-file) format. This is not
-        populated for `ECDSA` with curve `P224`, as it is [not supported](../../docs#limitations). **NOTE**: the
-        [underlying](https://pkg.go.dev/encoding/pem#Encode)
-        [libraries](https://pkg.go.dev/golang.org/x/crypto/ssh#MarshalAuthorizedKey) that generate this value append a `\\n` at
-        the end of the PEM. In case this disrupts your use case, we recommend using
-        [`trimspace()`](https://www.terraform.io/language/functions/trimspace).
+        The public key data in "Authorized Keys".
         """
         return pulumi.get(self, "public_key_openssh")
 
@@ -458,11 +422,7 @@ class PrivateKey(pulumi.CustomResource):
     @pulumi.getter(name="publicKeyPem")
     def public_key_pem(self) -> pulumi.Output[str]:
         """
-        Public key data in [PEM (RFC 1421)](https://datatracker.ietf.org/doc/html/rfc1421) format. **NOTE**: the
-        [underlying](https://pkg.go.dev/encoding/pem#Encode)
-        [libraries](https://pkg.go.dev/golang.org/x/crypto/ssh#MarshalAuthorizedKey) that generate this value append a `\\n` at
-        the end of the PEM. In case this disrupts your use case, we recommend using
-        [`trimspace()`](https://www.terraform.io/language/functions/trimspace).
+        Public key data in PEM (RFC 1421).
         """
         return pulumi.get(self, "public_key_pem")
 

{pulumi_tls-5.0.0a0 → pulumi_tls-5.0.2}/pulumi_tls/self_signed_cert.py

@@ -30,9 +30,7 @@ class SelfSignedCertArgs:
         """
         The set of arguments for constructing a SelfSignedCert resource.
         :param pulumi.Input[Sequence[pulumi.Input[str]]] allowed_uses: List of key usages allowed for the issued certificate. Values are defined in [RFC 5280](https://datatracker.ietf.org/doc/html/rfc5280) and combine flags defined by both [Key Usages](https://datatracker.ietf.org/doc/html/rfc5280#section-4.2.1.3) and [Extended Key Usages](https://datatracker.ietf.org/doc/html/rfc5280#section-4.2.1.12). Accepted values: `any_extended`, `cert_signing`, `client_auth`, `code_signing`, `content_commitment`, `crl_signing`, `data_encipherment`, `decipher_only`, `digital_signature`, `email_protection`, `encipher_only`, `ipsec_end_system`, `ipsec_tunnel`, `ipsec_user`, `key_agreement`, `key_encipherment`, `microsoft_commercial_code_signing`, `microsoft_kernel_code_signing`, `microsoft_server_gated_crypto`, `netscape_server_gated_crypto`, `ocsp_signing`, `server_auth`, `timestamping`.
-        :param pulumi.Input[str] private_key_pem: Private key in [PEM (RFC 1421)](https://datatracker.ietf.org/doc/html/rfc1421) format, that the certificate will belong
-               to. This can be read from a separate file using the [`file`](https://www.terraform.io/language/functions/file)
-               interpolation function. Only an irreversible secure hash of the private key will be stored in the Terraform state.
+        :param pulumi.Input[str] private_key_pem: Private key in PEM (RFC 1421) interpolation function.
         :param pulumi.Input[int] validity_period_hours: Number of hours, after initial issuing, that the certificate will remain valid for.
         :param pulumi.Input[Sequence[pulumi.Input[str]]] dns_names: List of DNS names for which a certificate is being requested (i.e. certificate subjects).
         :param pulumi.Input[int] early_renewal_hours: The resource will consider the certificate to have expired the given number of hours before its actual expiry time. This
@@ -83,9 +81,7 @@ class SelfSignedCertArgs:
     @pulumi.getter(name="privateKeyPem")
     def private_key_pem(self) -> pulumi.Input[str]:
         """
-        Private key in [PEM (RFC 1421)](https://datatracker.ietf.org/doc/html/rfc1421) format, that the certificate will belong
-        to. This can be read from a separate file using the [`file`](https://www.terraform.io/language/functions/file)
-        interpolation function. Only an irreversible secure hash of the private key will be stored in the Terraform state.
+        Private key in PEM (RFC 1421) interpolation function.
         """
         return pulumi.get(self, "private_key_pem")
 
@@ -228,11 +224,7 @@ class _SelfSignedCertState:
         """
         Input properties used for looking up and filtering SelfSignedCert resources.
         :param pulumi.Input[Sequence[pulumi.Input[str]]] allowed_uses: List of key usages allowed for the issued certificate. Values are defined in [RFC 5280](https://datatracker.ietf.org/doc/html/rfc5280) and combine flags defined by both [Key Usages](https://datatracker.ietf.org/doc/html/rfc5280#section-4.2.1.3) and [Extended Key Usages](https://datatracker.ietf.org/doc/html/rfc5280#section-4.2.1.12). Accepted values: `any_extended`, `cert_signing`, `client_auth`, `code_signing`, `content_commitment`, `crl_signing`, `data_encipherment`, `decipher_only`, `digital_signature`, `email_protection`, `encipher_only`, `ipsec_end_system`, `ipsec_tunnel`, `ipsec_user`, `key_agreement`, `key_encipherment`, `microsoft_commercial_code_signing`, `microsoft_kernel_code_signing`, `microsoft_server_gated_crypto`, `netscape_server_gated_crypto`, `ocsp_signing`, `server_auth`, `timestamping`.
-        :param pulumi.Input[str] cert_pem: Certificate data in [PEM (RFC 1421)](https://datatracker.ietf.org/doc/html/rfc1421) format. **NOTE**: the
-               [underlying](https://pkg.go.dev/encoding/pem#Encode)
-               [libraries](https://pkg.go.dev/golang.org/x/crypto/ssh#MarshalAuthorizedKey) that generate this value append a `\\n` at
-               the end of the PEM. In case this disrupts your use case, we recommend using
-               [`trimspace()`](https://www.terraform.io/language/functions/trimspace).
+        :param pulumi.Input[str] cert_pem: Certificate data in PEM (RFC 1421).
         :param pulumi.Input[Sequence[pulumi.Input[str]]] dns_names: List of DNS names for which a certificate is being requested (i.e. certificate subjects).
         :param pulumi.Input[int] early_renewal_hours: The resource will consider the certificate to have expired the given number of hours before its actual expiry time. This
                can be useful to deploy an updated certificate in advance of the expiration of the current certificate. However, the old
@@ -242,9 +234,7 @@ class _SelfSignedCertState:
         :param pulumi.Input[Sequence[pulumi.Input[str]]] ip_addresses: List of IP addresses for which a certificate is being requested (i.e. certificate subjects).
         :param pulumi.Input[bool] is_ca_certificate: Is the generated certificate representing a Certificate Authority (CA) (default: `false`).
         :param pulumi.Input[str] key_algorithm: Name of the algorithm used when generating the private key provided in `private_key_pem`.
-        :param pulumi.Input[str] private_key_pem: Private key in [PEM (RFC 1421)](https://datatracker.ietf.org/doc/html/rfc1421) format, that the certificate will belong
-               to. This can be read from a separate file using the [`file`](https://www.terraform.io/language/functions/file)
-               interpolation function. Only an irreversible secure hash of the private key will be stored in the Terraform state.
+        :param pulumi.Input[str] private_key_pem: Private key in PEM (RFC 1421) interpolation function.
         :param pulumi.Input[bool] ready_for_renewal: Is the certificate either expired (i.e. beyond the `validity_period_hours`) or ready for an early renewal (i.e. within the `early_renewal_hours`)?
         :param pulumi.Input[bool] set_authority_key_id: Should the generated certificate include an [authority key identifier](https://datatracker.ietf.org/doc/html/rfc5280#section-4.2.1.1): for self-signed certificates this is the same value as the [subject key identifier](https://datatracker.ietf.org/doc/html/rfc5280#section-4.2.1.2) (default: `false`).
         :param pulumi.Input[bool] set_subject_key_id: Should the generated certificate include a [subject key identifier](https://datatracker.ietf.org/doc/html/rfc5280#section-4.2.1.2) (default: `false`).
@@ -303,11 +293,7 @@ class _SelfSignedCertState:
     @pulumi.getter(name="certPem")
     def cert_pem(self) -> Optional[pulumi.Input[str]]:
         """
-        Certificate data in [PEM (RFC 1421)](https://datatracker.ietf.org/doc/html/rfc1421) format. **NOTE**: the
-        [underlying](https://pkg.go.dev/encoding/pem#Encode)
-        [libraries](https://pkg.go.dev/golang.org/x/crypto/ssh#MarshalAuthorizedKey) that generate this value append a `\\n` at
-        the end of the PEM. In case this disrupts your use case, we recommend using
-        [`trimspace()`](https://www.terraform.io/language/functions/trimspace).
+        Certificate data in PEM (RFC 1421).
         """
         return pulumi.get(self, "cert_pem")
 
@@ -383,9 +369,7 @@ class _SelfSignedCertState:
     @pulumi.getter(name="privateKeyPem")
     def private_key_pem(self) -> Optional[pulumi.Input[str]]:
         """
-        Private key in [PEM (RFC 1421)](https://datatracker.ietf.org/doc/html/rfc1421) format, that the certificate will belong
-        to. This can be read from a separate file using the [`file`](https://www.terraform.io/language/functions/file)
-        interpolation function. Only an irreversible secure hash of the private key will be stored in the Terraform state.
+        Private key in PEM (RFC 1421) interpolation function.
         """
         return pulumi.get(self, "private_key_pem")
 
@@ -520,9 +504,7 @@ class SelfSignedCert(pulumi.CustomResource):
                early renewal period. (default: `0`)
         :param pulumi.Input[Sequence[pulumi.Input[str]]] ip_addresses: List of IP addresses for which a certificate is being requested (i.e. certificate subjects).
         :param pulumi.Input[bool] is_ca_certificate: Is the generated certificate representing a Certificate Authority (CA) (default: `false`).
-        :param pulumi.Input[str] private_key_pem: Private key in [PEM (RFC 1421)](https://datatracker.ietf.org/doc/html/rfc1421) format, that the certificate will belong
-               to. This can be read from a separate file using the [`file`](https://www.terraform.io/language/functions/file)
-               interpolation function. Only an irreversible secure hash of the private key will be stored in the Terraform state.
+        :param pulumi.Input[str] private_key_pem: Private key in PEM (RFC 1421) interpolation function.
         :param pulumi.Input[bool] set_authority_key_id: Should the generated certificate include an [authority key identifier](https://datatracker.ietf.org/doc/html/rfc5280#section-4.2.1.1): for self-signed certificates this is the same value as the [subject key identifier](https://datatracker.ietf.org/doc/html/rfc5280#section-4.2.1.2) (default: `false`).
         :param pulumi.Input[bool] set_subject_key_id: Should the generated certificate include a [subject key identifier](https://datatracker.ietf.org/doc/html/rfc5280#section-4.2.1.2) (default: `false`).
         :param pulumi.Input[pulumi.InputType['SelfSignedCertSubjectArgs']] subject: The subject for which a certificate is being requested. The acceptable arguments are all optional and their naming is based upon [Issuer Distinguished Names (RFC5280)](https://tools.ietf.org/html/rfc5280#section-4.1.2.4) section.
@@ -630,11 +612,7 @@ class SelfSignedCert(pulumi.CustomResource):
         :param pulumi.Input[str] id: The unique provider ID of the resource to lookup.
         :param pulumi.ResourceOptions opts: Options for the resource.
         :param pulumi.Input[Sequence[pulumi.Input[str]]] allowed_uses: List of key usages allowed for the issued certificate. Values are defined in [RFC 5280](https://datatracker.ietf.org/doc/html/rfc5280) and combine flags defined by both [Key Usages](https://datatracker.ietf.org/doc/html/rfc5280#section-4.2.1.3) and [Extended Key Usages](https://datatracker.ietf.org/doc/html/rfc5280#section-4.2.1.12). Accepted values: `any_extended`, `cert_signing`, `client_auth`, `code_signing`, `content_commitment`, `crl_signing`, `data_encipherment`, `decipher_only`, `digital_signature`, `email_protection`, `encipher_only`, `ipsec_end_system`, `ipsec_tunnel`, `ipsec_user`, `key_agreement`, `key_encipherment`, `microsoft_commercial_code_signing`, `microsoft_kernel_code_signing`, `microsoft_server_gated_crypto`, `netscape_server_gated_crypto`, `ocsp_signing`, `server_auth`, `timestamping`.
-        :param pulumi.Input[str] cert_pem: Certificate data in [PEM (RFC 1421)](https://datatracker.ietf.org/doc/html/rfc1421) format. **NOTE**: the
-               [underlying](https://pkg.go.dev/encoding/pem#Encode)
-               [libraries](https://pkg.go.dev/golang.org/x/crypto/ssh#MarshalAuthorizedKey) that generate this value append a `\\n` at
-               the end of the PEM. In case this disrupts your use case, we recommend using
-               [`trimspace()`](https://www.terraform.io/language/functions/trimspace).
+        :param pulumi.Input[str] cert_pem: Certificate data in PEM (RFC 1421).
         :param pulumi.Input[Sequence[pulumi.Input[str]]] dns_names: List of DNS names for which a certificate is being requested (i.e. certificate subjects).
         :param pulumi.Input[int] early_renewal_hours: The resource will consider the certificate to have expired the given number of hours before its actual expiry time. This
                can be useful to deploy an updated certificate in advance of the expiration of the current certificate. However, the old
@@ -644,9 +622,7 @@ class SelfSignedCert(pulumi.CustomResource):
         :param pulumi.Input[Sequence[pulumi.Input[str]]] ip_addresses: List of IP addresses for which a certificate is being requested (i.e. certificate subjects).
         :param pulumi.Input[bool] is_ca_certificate: Is the generated certificate representing a Certificate Authority (CA) (default: `false`).
         :param pulumi.Input[str] key_algorithm: Name of the algorithm used when generating the private key provided in `private_key_pem`.
-        :param pulumi.Input[str] private_key_pem: Private key in [PEM (RFC 1421)](https://datatracker.ietf.org/doc/html/rfc1421) format, that the certificate will belong
-               to. This can be read from a separate file using the [`file`](https://www.terraform.io/language/functions/file)
-               interpolation function. Only an irreversible secure hash of the private key will be stored in the Terraform state.
+        :param pulumi.Input[str] private_key_pem: Private key in PEM (RFC 1421) interpolation function.
         :param pulumi.Input[bool] ready_for_renewal: Is the certificate either expired (i.e. beyond the `validity_period_hours`) or ready for an early renewal (i.e. within the `early_renewal_hours`)?
         :param pulumi.Input[bool] set_authority_key_id: Should the generated certificate include an [authority key identifier](https://datatracker.ietf.org/doc/html/rfc5280#section-4.2.1.1): for self-signed certificates this is the same value as the [subject key identifier](https://datatracker.ietf.org/doc/html/rfc5280#section-4.2.1.2) (default: `false`).
         :param pulumi.Input[bool] set_subject_key_id: Should the generated certificate include a [subject key identifier](https://datatracker.ietf.org/doc/html/rfc5280#section-4.2.1.2) (default: `false`).
@@ -690,11 +666,7 @@ class SelfSignedCert(pulumi.CustomResource):
     @pulumi.getter(name="certPem")
     def cert_pem(self) -> pulumi.Output[str]:
         """
-        Certificate data in [PEM (RFC 1421)](https://datatracker.ietf.org/doc/html/rfc1421) format. **NOTE**: the
-        [underlying](https://pkg.go.dev/encoding/pem#Encode)
-        [libraries](https://pkg.go.dev/golang.org/x/crypto/ssh#MarshalAuthorizedKey) that generate this value append a `\\n` at
-        the end of the PEM. In case this disrupts your use case, we recommend using
-        [`trimspace()`](https://www.terraform.io/language/functions/trimspace).
+        Certificate data in PEM (RFC 1421).
         """
         return pulumi.get(self, "cert_pem")
 
@@ -746,9 +718,7 @@ class SelfSignedCert(pulumi.CustomResource):
     @pulumi.getter(name="privateKeyPem")
     def private_key_pem(self) -> pulumi.Output[str]:
         """
-        Private key in [PEM (RFC 1421)](https://datatracker.ietf.org/doc/html/rfc1421) format, that the certificate will belong
-        to. This can be read from a separate file using the [`file`](https://www.terraform.io/language/functions/file)
-        interpolation function. Only an irreversible secure hash of the private key will be stored in the Terraform state.
+        Private key in PEM (RFC 1421) interpolation function.
         """
         return pulumi.get(self, "private_key_pem")
 

{pulumi_tls-5.0.0a0 → pulumi_tls-5.0.2}/pulumi_tls.egg-info/PKG-INFO

@@ -1,13 +1,16 @@
 Metadata-Version: 2.1
-Name: pulumi-tls
-Version: 5.0.0a0
+Name: pulumi_tls
+Version: 5.0.2
 Summary: A Pulumi package to create TLS resources in Pulumi programs.
-Home-page: https://pulumi.io
 License: Apache-2.0
+Project-URL: Homepage, https://pulumi.io
 Project-URL: Repository, https://github.com/pulumi/pulumi-tls
-Keywords: pulumi tls
-Platform: UNKNOWN
+Keywords: pulumi,tls
+Requires-Python: >=3.8
 Description-Content-Type: text/markdown
+Requires-Dist: parver>=0.2.1
+Requires-Dist: pulumi<4.0.0,>=3.0.0
+Requires-Dist: semver>=2.8.1
 
 [![Actions Status](https://github.com/pulumi/pulumi-tls/workflows/master/badge.svg)](https://github.com/pulumi/pulumi-tls/actions)
 [![Slack](http://www.pulumi.com/images/docs/badges/slack.svg)](https://slack.pulumi.com)
@@ -63,5 +66,3 @@ and interact closely with TLS resources.
 
 
 For further information, please visit [the TLS provider docs](https://www.pulumi.com/docs/intro/cloud-providers/tls) or for detailed reference documentation, please visit [the API docs](https://www.pulumi.com/docs/reference/pkg/tls).
-
-

{pulumi_tls-5.0.0a0 → pulumi_tls-5.0.2}/pulumi_tls.egg-info/SOURCES.txt

@@ -1,5 +1,5 @@
 README.md
-setup.py
+pyproject.toml
 pulumi_tls/__init__.py
 pulumi_tls/_inputs.py
 pulumi_tls/_utilities.py
@@ -16,9 +16,9 @@ pulumi_tls/self_signed_cert.py
 pulumi_tls.egg-info/PKG-INFO
 pulumi_tls.egg-info/SOURCES.txt
 pulumi_tls.egg-info/dependency_links.txt
-pulumi_tls.egg-info/not-zip-safe
 pulumi_tls.egg-info/requires.txt
 pulumi_tls.egg-info/top_level.txt
 pulumi_tls/config/__init__.py
+pulumi_tls/config/__init__.pyi
 pulumi_tls/config/outputs.py
 pulumi_tls/config/vars.py

pulumi_tls-5.0.2/pyproject.toml

@@ -0,0 +1,22 @@
+[project]
+  name = "pulumi_tls"
+  description = "A Pulumi package to create TLS resources in Pulumi programs."
+  dependencies = ["parver>=0.2.1", "pulumi>=3.0.0,<4.0.0", "semver>=2.8.1"]
+  keywords = ["pulumi", "tls"]
+  readme = "README.md"
+  requires-python = ">=3.8"
+  version = "5.0.2"
+  [project.license]
+    text = "Apache-2.0"
+  [project.urls]
+    Homepage = "https://pulumi.io"
+    Repository = "https://github.com/pulumi/pulumi-tls"
+
+[build-system]
+  requires = ["setuptools>=61.0"]
+  build-backend = "setuptools.build_meta"
+
+[tool]
+  [tool.setuptools]
+    [tool.setuptools.package-data]
+      pulumi_tls = ["py.typed", "pulumi-plugin.json"]

pulumi_tls-5.0.0a0/pulumi_tls.egg-info/not-zip-safe

@@ -1 +0,0 @@
-

pulumi_tls-5.0.0a0/setup.py

@@ -1,66 +0,0 @@
-# coding=utf-8
-# *** WARNING: this file was generated by the Pulumi Terraform Bridge (tfgen) Tool. ***
-# *** Do not edit by hand unless you're certain you know what you are doing! ***
-
-import errno
-from setuptools import setup, find_packages
-from setuptools.command.install import install
-from subprocess import check_call
-
-
-VERSION = "5.0.0a0"
-PLUGIN_VERSION = "5.0.0-alpha.0+7c9d3d42"
-
-class InstallPluginCommand(install):
-    def run(self):
-        install.run(self)
-        try:
-            check_call(['pulumi', 'plugin', 'install', 'resource', 'tls', PLUGIN_VERSION])
-        except OSError as error:
-            if error.errno == errno.ENOENT:
-                print(f"""
-                There was an error installing the tls resource provider plugin.
-                It looks like `pulumi` is not installed on your system.
-                Please visit https://pulumi.com/ to install the Pulumi CLI.
-                You may try manually installing the plugin by running
-                `pulumi plugin install resource tls {PLUGIN_VERSION}`
-                """)
-            else:
-                raise
-
-
-def readme():
-    try:
-        with open('README.md', encoding='utf-8') as f:
-            return f.read()
-    except FileNotFoundError:
-        return "tls Pulumi Package - Development Version"
-
-
-setup(name='pulumi_tls',
-      version=VERSION,
-      description="A Pulumi package to create TLS resources in Pulumi programs.",
-      long_description=readme(),
-      long_description_content_type='text/markdown',
-      cmdclass={
-          'install': InstallPluginCommand,
-      },
-      keywords='pulumi tls',
-      url='https://pulumi.io',
-      project_urls={
-          'Repository': 'https://github.com/pulumi/pulumi-tls'
-      },
-      license='Apache-2.0',
-      packages=find_packages(),
-      package_data={
-          'pulumi_tls': [
-              'py.typed',
-              'pulumi-plugin.json',
-          ]
-      },
-      install_requires=[
-          'parver>=0.2.1',
-          'pulumi>=3.0.0,<4.0.0',
-          'semver>=2.8.1'
-      ],
-      zip_safe=False)