PyPI - pulumi-tls - Versions diffs - 5.2.0a1743575896__py3-none-any.whl → 5.2.0a1744183475__py3-none-any.whl - Mend

pulumi-tls 5.2.0a1743575896py3-none-any.whl → 5.2.0a1744183475py3-none-any.whl

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (20) hide show

pulumi_tls/__init__.py +1 -0
pulumi_tls/_inputs.py +113 -112
pulumi_tls/cert_request.py +71 -70
pulumi_tls/config/__init__.py +1 -0
pulumi_tls/config/__init__.pyi +1 -0
pulumi_tls/config/outputs.py +13 -12
pulumi_tls/config/vars.py +1 -0
pulumi_tls/get_certificate.py +17 -16
pulumi_tls/get_public_key.py +17 -16
pulumi_tls/locally_signed_cert.py +144 -143
pulumi_tls/outputs.py +91 -90
pulumi_tls/private_key.py +92 -91
pulumi_tls/provider.py +1 -0
pulumi_tls/pulumi-plugin.json +1 -1
pulumi_tls/self_signed_cert.py +175 -174
{pulumi_tls-5.2.0a1743575896.dist-info → pulumi_tls-5.2.0a1744183475.dist-info}/METADATA +1 -1
pulumi_tls-5.2.0a1744183475.dist-info/RECORD +21 -0
pulumi_tls-5.2.0a1743575896.dist-info/RECORD +0 -21
{pulumi_tls-5.2.0a1743575896.dist-info → pulumi_tls-5.2.0a1744183475.dist-info}/WHEEL +0 -0
{pulumi_tls-5.2.0a1743575896.dist-info → pulumi_tls-5.2.0a1744183475.dist-info}/top_level.txt +0 -0

pulumi_tls/self_signed_cert.py CHANGED Viewed

@@ -2,6 +2,7 @@
 # *** WARNING: this file was generated by the Pulumi Terraform Bridge (tfgen) Tool. ***
 # *** Do not edit by hand unless you're certain you know what you are doing! ***
+import builtins
 import copy
 import warnings
 import sys
@@ -21,29 +22,29 @@ __all__ = ['SelfSignedCertArgs', 'SelfSignedCert']
 @pulumi.input_type
 class SelfSignedCertArgs:
     def __init__(__self__, *,
-                 allowed_uses: pulumi.Input[Sequence[pulumi.Input[str]]],
-                 private_key_pem: pulumi.Input[str],
-                 validity_period_hours: pulumi.Input[int],
-                 dns_names: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
-                 early_renewal_hours: Optional[pulumi.Input[int]] = None,
-                 ip_addresses: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
-                 is_ca_certificate: Optional[pulumi.Input[bool]] = None,
-                 set_authority_key_id: Optional[pulumi.Input[bool]] = None,
-                 set_subject_key_id: Optional[pulumi.Input[bool]] = None,
+                 allowed_uses: pulumi.Input[Sequence[pulumi.Input[builtins.str]]],
+                 private_key_pem: pulumi.Input[builtins.str],
+                 validity_period_hours: pulumi.Input[builtins.int],
+                 dns_names: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
+                 early_renewal_hours: Optional[pulumi.Input[builtins.int]] = None,
+                 ip_addresses: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
+                 is_ca_certificate: Optional[pulumi.Input[builtins.bool]] = None,
+                 set_authority_key_id: Optional[pulumi.Input[builtins.bool]] = None,
+                 set_subject_key_id: Optional[pulumi.Input[builtins.bool]] = None,
                  subject: Optional[pulumi.Input['SelfSignedCertSubjectArgs']] = None,
-                 uris: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None):
+                 uris: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None):
         """
         The set of arguments for constructing a SelfSignedCert resource.
-        :param pulumi.Input[Sequence[pulumi.Input[str]]] allowed_uses: List of key usages allowed for the issued certificate. Values are defined in [RFC 5280](https://datatracker.ietf.org/doc/html/rfc5280) and combine flags defined by both [Key Usages](https://datatracker.ietf.org/doc/html/rfc5280#section-4.2.1.3) and [Extended Key Usages](https://datatracker.ietf.org/doc/html/rfc5280#section-4.2.1.12). Accepted values: `any_extended`, `cert_signing`, `client_auth`, `code_signing`, `content_commitment`, `crl_signing`, `data_encipherment`, `decipher_only`, `digital_signature`, `email_protection`, `encipher_only`, `ipsec_end_system`, `ipsec_tunnel`, `ipsec_user`, `key_agreement`, `key_encipherment`, `microsoft_commercial_code_signing`, `microsoft_kernel_code_signing`, `microsoft_server_gated_crypto`, `netscape_server_gated_crypto`, `ocsp_signing`, `server_auth`, `timestamping`.
-        :param pulumi.Input[str] private_key_pem: Private key in [PEM (RFC 1421)](https://datatracker.ietf.org/doc/html/rfc1421) format, that the certificate will belong to. This can be read from a separate file using the `file` interpolation function.
-        :param pulumi.Input[int] validity_period_hours: Number of hours, after initial issuing, that the certificate will remain valid for.
-        :param pulumi.Input[Sequence[pulumi.Input[str]]] dns_names: List of DNS names for which a certificate is being requested (i.e. certificate subjects).
-        :param pulumi.Input[Sequence[pulumi.Input[str]]] ip_addresses: List of IP addresses for which a certificate is being requested (i.e. certificate subjects).
-        :param pulumi.Input[bool] is_ca_certificate: Is the generated certificate representing a Certificate Authority (CA) (default: `false`).
-        :param pulumi.Input[bool] set_authority_key_id: Should the generated certificate include an [authority key identifier](https://datatracker.ietf.org/doc/html/rfc5280#section-4.2.1.1): for self-signed certificates this is the same value as the [subject key identifier](https://datatracker.ietf.org/doc/html/rfc5280#section-4.2.1.2) (default: `false`).
-        :param pulumi.Input[bool] set_subject_key_id: Should the generated certificate include a [subject key identifier](https://datatracker.ietf.org/doc/html/rfc5280#section-4.2.1.2) (default: `false`).
+        :param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] allowed_uses: List of key usages allowed for the issued certificate. Values are defined in [RFC 5280](https://datatracker.ietf.org/doc/html/rfc5280) and combine flags defined by both [Key Usages](https://datatracker.ietf.org/doc/html/rfc5280#section-4.2.1.3) and [Extended Key Usages](https://datatracker.ietf.org/doc/html/rfc5280#section-4.2.1.12). Accepted values: `any_extended`, `cert_signing`, `client_auth`, `code_signing`, `content_commitment`, `crl_signing`, `data_encipherment`, `decipher_only`, `digital_signature`, `email_protection`, `encipher_only`, `ipsec_end_system`, `ipsec_tunnel`, `ipsec_user`, `key_agreement`, `key_encipherment`, `microsoft_commercial_code_signing`, `microsoft_kernel_code_signing`, `microsoft_server_gated_crypto`, `netscape_server_gated_crypto`, `ocsp_signing`, `server_auth`, `timestamping`.
+        :param pulumi.Input[builtins.str] private_key_pem: Private key in [PEM (RFC 1421)](https://datatracker.ietf.org/doc/html/rfc1421) format, that the certificate will belong to.
+        :param pulumi.Input[builtins.int] validity_period_hours: Number of hours, after initial issuing, that the certificate will remain valid for.
+        :param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] dns_names: List of DNS names for which a certificate is being requested (i.e. certificate subjects).
+        :param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] ip_addresses: List of IP addresses for which a certificate is being requested (i.e. certificate subjects).
+        :param pulumi.Input[builtins.bool] is_ca_certificate: Is the generated certificate representing a Certificate Authority (CA) (default: `false`).
+        :param pulumi.Input[builtins.bool] set_authority_key_id: Should the generated certificate include an [authority key identifier](https://datatracker.ietf.org/doc/html/rfc5280#section-4.2.1.1): for self-signed certificates this is the same value as the [subject key identifier](https://datatracker.ietf.org/doc/html/rfc5280#section-4.2.1.2) (default: `false`).
+        :param pulumi.Input[builtins.bool] set_subject_key_id: Should the generated certificate include a [subject key identifier](https://datatracker.ietf.org/doc/html/rfc5280#section-4.2.1.2) (default: `false`).
         :param pulumi.Input['SelfSignedCertSubjectArgs'] subject: The subject for which a certificate is being requested. The acceptable arguments are all optional and their naming is based upon [Issuer Distinguished Names (RFC5280)](https://tools.ietf.org/html/rfc5280#section-4.1.2.4) section.
-        :param pulumi.Input[Sequence[pulumi.Input[str]]] uris: List of URIs for which a certificate is being requested (i.e. certificate subjects).
+        :param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] uris: List of URIs for which a certificate is being requested (i.e. certificate subjects).
         """
         pulumi.set(__self__, "allowed_uses", allowed_uses)
         pulumi.set(__self__, "private_key_pem", private_key_pem)
@@ -67,107 +68,107 @@ class SelfSignedCertArgs:
     @property
     @pulumi.getter(name="allowedUses")
-    def allowed_uses(self) -> pulumi.Input[Sequence[pulumi.Input[str]]]:
+    def allowed_uses(self) -> pulumi.Input[Sequence[pulumi.Input[builtins.str]]]:
         """
         List of key usages allowed for the issued certificate. Values are defined in [RFC 5280](https://datatracker.ietf.org/doc/html/rfc5280) and combine flags defined by both [Key Usages](https://datatracker.ietf.org/doc/html/rfc5280#section-4.2.1.3) and [Extended Key Usages](https://datatracker.ietf.org/doc/html/rfc5280#section-4.2.1.12). Accepted values: `any_extended`, `cert_signing`, `client_auth`, `code_signing`, `content_commitment`, `crl_signing`, `data_encipherment`, `decipher_only`, `digital_signature`, `email_protection`, `encipher_only`, `ipsec_end_system`, `ipsec_tunnel`, `ipsec_user`, `key_agreement`, `key_encipherment`, `microsoft_commercial_code_signing`, `microsoft_kernel_code_signing`, `microsoft_server_gated_crypto`, `netscape_server_gated_crypto`, `ocsp_signing`, `server_auth`, `timestamping`.
         """
         return pulumi.get(self, "allowed_uses")
     @allowed_uses.setter
-    def allowed_uses(self, value: pulumi.Input[Sequence[pulumi.Input[str]]]):
+    def allowed_uses(self, value: pulumi.Input[Sequence[pulumi.Input[builtins.str]]]):
         pulumi.set(self, "allowed_uses", value)
     @property
     @pulumi.getter(name="privateKeyPem")
-    def private_key_pem(self) -> pulumi.Input[str]:
+    def private_key_pem(self) -> pulumi.Input[builtins.str]:
         """
-        Private key in [PEM (RFC 1421)](https://datatracker.ietf.org/doc/html/rfc1421) format, that the certificate will belong to. This can be read from a separate file using the `file` interpolation function.
+        Private key in [PEM (RFC 1421)](https://datatracker.ietf.org/doc/html/rfc1421) format, that the certificate will belong to.
         """
         return pulumi.get(self, "private_key_pem")
     @private_key_pem.setter
-    def private_key_pem(self, value: pulumi.Input[str]):
+    def private_key_pem(self, value: pulumi.Input[builtins.str]):
         pulumi.set(self, "private_key_pem", value)
     @property
     @pulumi.getter(name="validityPeriodHours")
-    def validity_period_hours(self) -> pulumi.Input[int]:
+    def validity_period_hours(self) -> pulumi.Input[builtins.int]:
         """
         Number of hours, after initial issuing, that the certificate will remain valid for.
         """
         return pulumi.get(self, "validity_period_hours")
     @validity_period_hours.setter
-    def validity_period_hours(self, value: pulumi.Input[int]):
+    def validity_period_hours(self, value: pulumi.Input[builtins.int]):
         pulumi.set(self, "validity_period_hours", value)
     @property
     @pulumi.getter(name="dnsNames")
-    def dns_names(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]:
+    def dns_names(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]:
         """
         List of DNS names for which a certificate is being requested (i.e. certificate subjects).
         """
         return pulumi.get(self, "dns_names")
     @dns_names.setter
-    def dns_names(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]):
+    def dns_names(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]):
         pulumi.set(self, "dns_names", value)
     @property
     @pulumi.getter(name="earlyRenewalHours")
-    def early_renewal_hours(self) -> Optional[pulumi.Input[int]]:
+    def early_renewal_hours(self) -> Optional[pulumi.Input[builtins.int]]:
         return pulumi.get(self, "early_renewal_hours")
     @early_renewal_hours.setter
-    def early_renewal_hours(self, value: Optional[pulumi.Input[int]]):
+    def early_renewal_hours(self, value: Optional[pulumi.Input[builtins.int]]):
         pulumi.set(self, "early_renewal_hours", value)
     @property
     @pulumi.getter(name="ipAddresses")
-    def ip_addresses(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]:
+    def ip_addresses(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]:
         """
         List of IP addresses for which a certificate is being requested (i.e. certificate subjects).
         """
         return pulumi.get(self, "ip_addresses")
     @ip_addresses.setter
-    def ip_addresses(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]):
+    def ip_addresses(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]):
         pulumi.set(self, "ip_addresses", value)
     @property
     @pulumi.getter(name="isCaCertificate")
-    def is_ca_certificate(self) -> Optional[pulumi.Input[bool]]:
+    def is_ca_certificate(self) -> Optional[pulumi.Input[builtins.bool]]:
         """
         Is the generated certificate representing a Certificate Authority (CA) (default: `false`).
         """
         return pulumi.get(self, "is_ca_certificate")
     @is_ca_certificate.setter
-    def is_ca_certificate(self, value: Optional[pulumi.Input[bool]]):
+    def is_ca_certificate(self, value: Optional[pulumi.Input[builtins.bool]]):
         pulumi.set(self, "is_ca_certificate", value)
     @property
     @pulumi.getter(name="setAuthorityKeyId")
-    def set_authority_key_id(self) -> Optional[pulumi.Input[bool]]:
+    def set_authority_key_id(self) -> Optional[pulumi.Input[builtins.bool]]:
         """
         Should the generated certificate include an [authority key identifier](https://datatracker.ietf.org/doc/html/rfc5280#section-4.2.1.1): for self-signed certificates this is the same value as the [subject key identifier](https://datatracker.ietf.org/doc/html/rfc5280#section-4.2.1.2) (default: `false`).
         """
         return pulumi.get(self, "set_authority_key_id")
     @set_authority_key_id.setter
-    def set_authority_key_id(self, value: Optional[pulumi.Input[bool]]):
+    def set_authority_key_id(self, value: Optional[pulumi.Input[builtins.bool]]):
         pulumi.set(self, "set_authority_key_id", value)
     @property
     @pulumi.getter(name="setSubjectKeyId")
-    def set_subject_key_id(self) -> Optional[pulumi.Input[bool]]:
+    def set_subject_key_id(self) -> Optional[pulumi.Input[builtins.bool]]:
         """
         Should the generated certificate include a [subject key identifier](https://datatracker.ietf.org/doc/html/rfc5280#section-4.2.1.2) (default: `false`).
         """
         return pulumi.get(self, "set_subject_key_id")
     @set_subject_key_id.setter
-    def set_subject_key_id(self, value: Optional[pulumi.Input[bool]]):
+    def set_subject_key_id(self, value: Optional[pulumi.Input[builtins.bool]]):
         pulumi.set(self, "set_subject_key_id", value)
     @property
@@ -184,53 +185,53 @@ class SelfSignedCertArgs:
     @property
     @pulumi.getter
-    def uris(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]:
+    def uris(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]:
         """
         List of URIs for which a certificate is being requested (i.e. certificate subjects).
         """
         return pulumi.get(self, "uris")
     @uris.setter
-    def uris(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]):
+    def uris(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]):
         pulumi.set(self, "uris", value)
 @pulumi.input_type
 class _SelfSignedCertState:
     def __init__(__self__, *,
-                 allowed_uses: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
-                 cert_pem: Optional[pulumi.Input[str]] = None,
-                 dns_names: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
-                 early_renewal_hours: Optional[pulumi.Input[int]] = None,
-                 ip_addresses: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
-                 is_ca_certificate: Optional[pulumi.Input[bool]] = None,
-                 key_algorithm: Optional[pulumi.Input[str]] = None,
-                 private_key_pem: Optional[pulumi.Input[str]] = None,
-                 ready_for_renewal: Optional[pulumi.Input[bool]] = None,
-                 set_authority_key_id: Optional[pulumi.Input[bool]] = None,
-                 set_subject_key_id: Optional[pulumi.Input[bool]] = None,
+                 allowed_uses: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
+                 cert_pem: Optional[pulumi.Input[builtins.str]] = None,
+                 dns_names: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
+                 early_renewal_hours: Optional[pulumi.Input[builtins.int]] = None,
+                 ip_addresses: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
+                 is_ca_certificate: Optional[pulumi.Input[builtins.bool]] = None,
+                 key_algorithm: Optional[pulumi.Input[builtins.str]] = None,
+                 private_key_pem: Optional[pulumi.Input[builtins.str]] = None,
+                 ready_for_renewal: Optional[pulumi.Input[builtins.bool]] = None,
+                 set_authority_key_id: Optional[pulumi.Input[builtins.bool]] = None,
+                 set_subject_key_id: Optional[pulumi.Input[builtins.bool]] = None,
                  subject: Optional[pulumi.Input['SelfSignedCertSubjectArgs']] = None,
-                 uris: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
-                 validity_end_time: Optional[pulumi.Input[str]] = None,
-                 validity_period_hours: Optional[pulumi.Input[int]] = None,
-                 validity_start_time: Optional[pulumi.Input[str]] = None):
+                 uris: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
+                 validity_end_time: Optional[pulumi.Input[builtins.str]] = None,
+                 validity_period_hours: Optional[pulumi.Input[builtins.int]] = None,
+                 validity_start_time: Optional[pulumi.Input[builtins.str]] = None):
         """
         Input properties used for looking up and filtering SelfSignedCert resources.
-        :param pulumi.Input[Sequence[pulumi.Input[str]]] allowed_uses: List of key usages allowed for the issued certificate. Values are defined in [RFC 5280](https://datatracker.ietf.org/doc/html/rfc5280) and combine flags defined by both [Key Usages](https://datatracker.ietf.org/doc/html/rfc5280#section-4.2.1.3) and [Extended Key Usages](https://datatracker.ietf.org/doc/html/rfc5280#section-4.2.1.12). Accepted values: `any_extended`, `cert_signing`, `client_auth`, `code_signing`, `content_commitment`, `crl_signing`, `data_encipherment`, `decipher_only`, `digital_signature`, `email_protection`, `encipher_only`, `ipsec_end_system`, `ipsec_tunnel`, `ipsec_user`, `key_agreement`, `key_encipherment`, `microsoft_commercial_code_signing`, `microsoft_kernel_code_signing`, `microsoft_server_gated_crypto`, `netscape_server_gated_crypto`, `ocsp_signing`, `server_auth`, `timestamping`.
-        :param pulumi.Input[str] cert_pem: Certificate data in [PEM (RFC 1421)](https://datatracker.ietf.org/doc/html/rfc1421) format. **NOTE**: the [underlying](https://pkg.go.dev/encoding/pem#Encode) [libraries](https://pkg.go.dev/golang.org/x/crypto/ssh#MarshalAuthorizedKey) that generate this value append a `\\n` at the end of the PEM. In case this disrupts your use case, we recommend using `trimspace()`.
-        :param pulumi.Input[Sequence[pulumi.Input[str]]] dns_names: List of DNS names for which a certificate is being requested (i.e. certificate subjects).
-        :param pulumi.Input[Sequence[pulumi.Input[str]]] ip_addresses: List of IP addresses for which a certificate is being requested (i.e. certificate subjects).
-        :param pulumi.Input[bool] is_ca_certificate: Is the generated certificate representing a Certificate Authority (CA) (default: `false`).
-        :param pulumi.Input[str] key_algorithm: Name of the algorithm used when generating the private key provided in `private_key_pem`.
-        :param pulumi.Input[str] private_key_pem: Private key in [PEM (RFC 1421)](https://datatracker.ietf.org/doc/html/rfc1421) format, that the certificate will belong to. This can be read from a separate file using the `file` interpolation function.
-        :param pulumi.Input[bool] ready_for_renewal: Is the certificate either expired (i.e. beyond the `validity_period_hours`) or ready for an early renewal (i.e. within the `early_renewal_hours`)?
-        :param pulumi.Input[bool] set_authority_key_id: Should the generated certificate include an [authority key identifier](https://datatracker.ietf.org/doc/html/rfc5280#section-4.2.1.1): for self-signed certificates this is the same value as the [subject key identifier](https://datatracker.ietf.org/doc/html/rfc5280#section-4.2.1.2) (default: `false`).
-        :param pulumi.Input[bool] set_subject_key_id: Should the generated certificate include a [subject key identifier](https://datatracker.ietf.org/doc/html/rfc5280#section-4.2.1.2) (default: `false`).
+        :param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] allowed_uses: List of key usages allowed for the issued certificate. Values are defined in [RFC 5280](https://datatracker.ietf.org/doc/html/rfc5280) and combine flags defined by both [Key Usages](https://datatracker.ietf.org/doc/html/rfc5280#section-4.2.1.3) and [Extended Key Usages](https://datatracker.ietf.org/doc/html/rfc5280#section-4.2.1.12). Accepted values: `any_extended`, `cert_signing`, `client_auth`, `code_signing`, `content_commitment`, `crl_signing`, `data_encipherment`, `decipher_only`, `digital_signature`, `email_protection`, `encipher_only`, `ipsec_end_system`, `ipsec_tunnel`, `ipsec_user`, `key_agreement`, `key_encipherment`, `microsoft_commercial_code_signing`, `microsoft_kernel_code_signing`, `microsoft_server_gated_crypto`, `netscape_server_gated_crypto`, `ocsp_signing`, `server_auth`, `timestamping`.
+        :param pulumi.Input[builtins.str] cert_pem: Certificate data in [PEM (RFC 1421)](https://datatracker.ietf.org/doc/html/rfc1421) format. **NOTE**: the [underlying](https://pkg.go.dev/encoding/pem#Encode) [libraries](https://pkg.go.dev/golang.org/x/crypto/ssh#MarshalAuthorizedKey) that generate this value append a `\\n` at the end of the PEM. In case this disrupts your use case, we recommend using `trimspace()`.
+        :param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] dns_names: List of DNS names for which a certificate is being requested (i.e. certificate subjects).
+        :param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] ip_addresses: List of IP addresses for which a certificate is being requested (i.e. certificate subjects).
+        :param pulumi.Input[builtins.bool] is_ca_certificate: Is the generated certificate representing a Certificate Authority (CA) (default: `false`).
+        :param pulumi.Input[builtins.str] key_algorithm: Name of the algorithm used when generating the private key provided in `private_key_pem`.
+        :param pulumi.Input[builtins.str] private_key_pem: Private key in [PEM (RFC 1421)](https://datatracker.ietf.org/doc/html/rfc1421) format, that the certificate will belong to.
+        :param pulumi.Input[builtins.bool] ready_for_renewal: Is the certificate either expired (i.e. beyond the `validity_period_hours`) or ready for an early renewal (i.e. within the `early_renewal_hours`)?
+        :param pulumi.Input[builtins.bool] set_authority_key_id: Should the generated certificate include an [authority key identifier](https://datatracker.ietf.org/doc/html/rfc5280#section-4.2.1.1): for self-signed certificates this is the same value as the [subject key identifier](https://datatracker.ietf.org/doc/html/rfc5280#section-4.2.1.2) (default: `false`).
+        :param pulumi.Input[builtins.bool] set_subject_key_id: Should the generated certificate include a [subject key identifier](https://datatracker.ietf.org/doc/html/rfc5280#section-4.2.1.2) (default: `false`).
         :param pulumi.Input['SelfSignedCertSubjectArgs'] subject: The subject for which a certificate is being requested. The acceptable arguments are all optional and their naming is based upon [Issuer Distinguished Names (RFC5280)](https://tools.ietf.org/html/rfc5280#section-4.1.2.4) section.
-        :param pulumi.Input[Sequence[pulumi.Input[str]]] uris: List of URIs for which a certificate is being requested (i.e. certificate subjects).
-        :param pulumi.Input[str] validity_end_time: The time until which the certificate is invalid, expressed as an [RFC3339](https://tools.ietf.org/html/rfc3339) timestamp.
-        :param pulumi.Input[int] validity_period_hours: Number of hours, after initial issuing, that the certificate will remain valid for.
-        :param pulumi.Input[str] validity_start_time: The time after which the certificate is valid, expressed as an [RFC3339](https://tools.ietf.org/html/rfc3339) timestamp.
+        :param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] uris: List of URIs for which a certificate is being requested (i.e. certificate subjects).
+        :param pulumi.Input[builtins.str] validity_end_time: The time until which the certificate is invalid, expressed as an [RFC3339](https://tools.ietf.org/html/rfc3339) timestamp.
+        :param pulumi.Input[builtins.int] validity_period_hours: Number of hours, after initial issuing, that the certificate will remain valid for.
+        :param pulumi.Input[builtins.str] validity_start_time: The time after which the certificate is valid, expressed as an [RFC3339](https://tools.ietf.org/html/rfc3339) timestamp.
         """
         if allowed_uses is not None:
             pulumi.set(__self__, "allowed_uses", allowed_uses)
@@ -267,131 +268,131 @@ class _SelfSignedCertState:
     @property
     @pulumi.getter(name="allowedUses")
-    def allowed_uses(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]:
+    def allowed_uses(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]:
         """
         List of key usages allowed for the issued certificate. Values are defined in [RFC 5280](https://datatracker.ietf.org/doc/html/rfc5280) and combine flags defined by both [Key Usages](https://datatracker.ietf.org/doc/html/rfc5280#section-4.2.1.3) and [Extended Key Usages](https://datatracker.ietf.org/doc/html/rfc5280#section-4.2.1.12). Accepted values: `any_extended`, `cert_signing`, `client_auth`, `code_signing`, `content_commitment`, `crl_signing`, `data_encipherment`, `decipher_only`, `digital_signature`, `email_protection`, `encipher_only`, `ipsec_end_system`, `ipsec_tunnel`, `ipsec_user`, `key_agreement`, `key_encipherment`, `microsoft_commercial_code_signing`, `microsoft_kernel_code_signing`, `microsoft_server_gated_crypto`, `netscape_server_gated_crypto`, `ocsp_signing`, `server_auth`, `timestamping`.
         """
         return pulumi.get(self, "allowed_uses")
     @allowed_uses.setter
-    def allowed_uses(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]):
+    def allowed_uses(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]):
         pulumi.set(self, "allowed_uses", value)
     @property
     @pulumi.getter(name="certPem")
-    def cert_pem(self) -> Optional[pulumi.Input[str]]:
+    def cert_pem(self) -> Optional[pulumi.Input[builtins.str]]:
         """
         Certificate data in [PEM (RFC 1421)](https://datatracker.ietf.org/doc/html/rfc1421) format. **NOTE**: the [underlying](https://pkg.go.dev/encoding/pem#Encode) [libraries](https://pkg.go.dev/golang.org/x/crypto/ssh#MarshalAuthorizedKey) that generate this value append a `\\n` at the end of the PEM. In case this disrupts your use case, we recommend using `trimspace()`.
         """
         return pulumi.get(self, "cert_pem")
     @cert_pem.setter
-    def cert_pem(self, value: Optional[pulumi.Input[str]]):
+    def cert_pem(self, value: Optional[pulumi.Input[builtins.str]]):
         pulumi.set(self, "cert_pem", value)
     @property
     @pulumi.getter(name="dnsNames")
-    def dns_names(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]:
+    def dns_names(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]:
         """
         List of DNS names for which a certificate is being requested (i.e. certificate subjects).
         """
         return pulumi.get(self, "dns_names")
     @dns_names.setter
-    def dns_names(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]):
+    def dns_names(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]):
         pulumi.set(self, "dns_names", value)
     @property
     @pulumi.getter(name="earlyRenewalHours")
-    def early_renewal_hours(self) -> Optional[pulumi.Input[int]]:
+    def early_renewal_hours(self) -> Optional[pulumi.Input[builtins.int]]:
         return pulumi.get(self, "early_renewal_hours")
     @early_renewal_hours.setter
-    def early_renewal_hours(self, value: Optional[pulumi.Input[int]]):
+    def early_renewal_hours(self, value: Optional[pulumi.Input[builtins.int]]):
         pulumi.set(self, "early_renewal_hours", value)
     @property
     @pulumi.getter(name="ipAddresses")
-    def ip_addresses(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]:
+    def ip_addresses(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]:
         """
         List of IP addresses for which a certificate is being requested (i.e. certificate subjects).
         """
         return pulumi.get(self, "ip_addresses")
     @ip_addresses.setter
-    def ip_addresses(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]):
+    def ip_addresses(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]):
         pulumi.set(self, "ip_addresses", value)
     @property
     @pulumi.getter(name="isCaCertificate")
-    def is_ca_certificate(self) -> Optional[pulumi.Input[bool]]:
+    def is_ca_certificate(self) -> Optional[pulumi.Input[builtins.bool]]:
         """
         Is the generated certificate representing a Certificate Authority (CA) (default: `false`).
         """
         return pulumi.get(self, "is_ca_certificate")
     @is_ca_certificate.setter
-    def is_ca_certificate(self, value: Optional[pulumi.Input[bool]]):
+    def is_ca_certificate(self, value: Optional[pulumi.Input[builtins.bool]]):
         pulumi.set(self, "is_ca_certificate", value)
     @property
     @pulumi.getter(name="keyAlgorithm")
-    def key_algorithm(self) -> Optional[pulumi.Input[str]]:
+    def key_algorithm(self) -> Optional[pulumi.Input[builtins.str]]:
         """
         Name of the algorithm used when generating the private key provided in `private_key_pem`.
         """
         return pulumi.get(self, "key_algorithm")
     @key_algorithm.setter
-    def key_algorithm(self, value: Optional[pulumi.Input[str]]):
+    def key_algorithm(self, value: Optional[pulumi.Input[builtins.str]]):
         pulumi.set(self, "key_algorithm", value)
     @property
     @pulumi.getter(name="privateKeyPem")
-    def private_key_pem(self) -> Optional[pulumi.Input[str]]:
+    def private_key_pem(self) -> Optional[pulumi.Input[builtins.str]]:
         """
-        Private key in [PEM (RFC 1421)](https://datatracker.ietf.org/doc/html/rfc1421) format, that the certificate will belong to. This can be read from a separate file using the `file` interpolation function.
+        Private key in [PEM (RFC 1421)](https://datatracker.ietf.org/doc/html/rfc1421) format, that the certificate will belong to.
         """
         return pulumi.get(self, "private_key_pem")
     @private_key_pem.setter
-    def private_key_pem(self, value: Optional[pulumi.Input[str]]):
+    def private_key_pem(self, value: Optional[pulumi.Input[builtins.str]]):
         pulumi.set(self, "private_key_pem", value)
     @property
     @pulumi.getter(name="readyForRenewal")
-    def ready_for_renewal(self) -> Optional[pulumi.Input[bool]]:
+    def ready_for_renewal(self) -> Optional[pulumi.Input[builtins.bool]]:
         """
         Is the certificate either expired (i.e. beyond the `validity_period_hours`) or ready for an early renewal (i.e. within the `early_renewal_hours`)?
         """
         return pulumi.get(self, "ready_for_renewal")
     @ready_for_renewal.setter
-    def ready_for_renewal(self, value: Optional[pulumi.Input[bool]]):
+    def ready_for_renewal(self, value: Optional[pulumi.Input[builtins.bool]]):
         pulumi.set(self, "ready_for_renewal", value)
     @property
     @pulumi.getter(name="setAuthorityKeyId")
-    def set_authority_key_id(self) -> Optional[pulumi.Input[bool]]:
+    def set_authority_key_id(self) -> Optional[pulumi.Input[builtins.bool]]:
         """
         Should the generated certificate include an [authority key identifier](https://datatracker.ietf.org/doc/html/rfc5280#section-4.2.1.1): for self-signed certificates this is the same value as the [subject key identifier](https://datatracker.ietf.org/doc/html/rfc5280#section-4.2.1.2) (default: `false`).
         """
         return pulumi.get(self, "set_authority_key_id")
     @set_authority_key_id.setter
-    def set_authority_key_id(self, value: Optional[pulumi.Input[bool]]):
+    def set_authority_key_id(self, value: Optional[pulumi.Input[builtins.bool]]):
         pulumi.set(self, "set_authority_key_id", value)
     @property
     @pulumi.getter(name="setSubjectKeyId")
-    def set_subject_key_id(self) -> Optional[pulumi.Input[bool]]:
+    def set_subject_key_id(self) -> Optional[pulumi.Input[builtins.bool]]:
         """
         Should the generated certificate include a [subject key identifier](https://datatracker.ietf.org/doc/html/rfc5280#section-4.2.1.2) (default: `false`).
         """
         return pulumi.get(self, "set_subject_key_id")
     @set_subject_key_id.setter
-    def set_subject_key_id(self, value: Optional[pulumi.Input[bool]]):
+    def set_subject_key_id(self, value: Optional[pulumi.Input[builtins.bool]]):
         pulumi.set(self, "set_subject_key_id", value)
     @property
@@ -408,50 +409,50 @@ class _SelfSignedCertState:
     @property
     @pulumi.getter
-    def uris(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]:
+    def uris(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]:
         """
         List of URIs for which a certificate is being requested (i.e. certificate subjects).
         """
         return pulumi.get(self, "uris")
     @uris.setter
-    def uris(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]):
+    def uris(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]):
         pulumi.set(self, "uris", value)
     @property
     @pulumi.getter(name="validityEndTime")
-    def validity_end_time(self) -> Optional[pulumi.Input[str]]:
+    def validity_end_time(self) -> Optional[pulumi.Input[builtins.str]]:
         """
         The time until which the certificate is invalid, expressed as an [RFC3339](https://tools.ietf.org/html/rfc3339) timestamp.
         """
         return pulumi.get(self, "validity_end_time")
     @validity_end_time.setter
-    def validity_end_time(self, value: Optional[pulumi.Input[str]]):
+    def validity_end_time(self, value: Optional[pulumi.Input[builtins.str]]):
         pulumi.set(self, "validity_end_time", value)
     @property
     @pulumi.getter(name="validityPeriodHours")
-    def validity_period_hours(self) -> Optional[pulumi.Input[int]]:
+    def validity_period_hours(self) -> Optional[pulumi.Input[builtins.int]]:
         """
         Number of hours, after initial issuing, that the certificate will remain valid for.
         """
         return pulumi.get(self, "validity_period_hours")
     @validity_period_hours.setter
-    def validity_period_hours(self, value: Optional[pulumi.Input[int]]):
+    def validity_period_hours(self, value: Optional[pulumi.Input[builtins.int]]):
         pulumi.set(self, "validity_period_hours", value)
     @property
     @pulumi.getter(name="validityStartTime")
-    def validity_start_time(self) -> Optional[pulumi.Input[str]]:
+    def validity_start_time(self) -> Optional[pulumi.Input[builtins.str]]:
         """
         The time after which the certificate is valid, expressed as an [RFC3339](https://tools.ietf.org/html/rfc3339) timestamp.
         """
         return pulumi.get(self, "validity_start_time")
     @validity_start_time.setter
-    def validity_start_time(self, value: Optional[pulumi.Input[str]]):
+    def validity_start_time(self, value: Optional[pulumi.Input[builtins.str]]):
         pulumi.set(self, "validity_start_time", value)
@@ -460,32 +461,32 @@ class SelfSignedCert(pulumi.CustomResource):
     def __init__(__self__,
                  resource_name: str,
                  opts: Optional[pulumi.ResourceOptions] = None,
-                 allowed_uses: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
-                 dns_names: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
-                 early_renewal_hours: Optional[pulumi.Input[int]] = None,
-                 ip_addresses: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
-                 is_ca_certificate: Optional[pulumi.Input[bool]] = None,
-                 private_key_pem: Optional[pulumi.Input[str]] = None,
-                 set_authority_key_id: Optional[pulumi.Input[bool]] = None,
-                 set_subject_key_id: Optional[pulumi.Input[bool]] = None,
+                 allowed_uses: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
+                 dns_names: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
+                 early_renewal_hours: Optional[pulumi.Input[builtins.int]] = None,
+                 ip_addresses: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
+                 is_ca_certificate: Optional[pulumi.Input[builtins.bool]] = None,
+                 private_key_pem: Optional[pulumi.Input[builtins.str]] = None,
+                 set_authority_key_id: Optional[pulumi.Input[builtins.bool]] = None,
+                 set_subject_key_id: Optional[pulumi.Input[builtins.bool]] = None,
                  subject: Optional[pulumi.Input[Union['SelfSignedCertSubjectArgs', 'SelfSignedCertSubjectArgsDict']]] = None,
-                 uris: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
-                 validity_period_hours: Optional[pulumi.Input[int]] = None,
+                 uris: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
+                 validity_period_hours: Optional[pulumi.Input[builtins.int]] = None,
                  __props__=None):
         """
         Create a SelfSignedCert resource with the given unique name, props, and options.
         :param str resource_name: The name of the resource.
         :param pulumi.ResourceOptions opts: Options for the resource.
-        :param pulumi.Input[Sequence[pulumi.Input[str]]] allowed_uses: List of key usages allowed for the issued certificate. Values are defined in [RFC 5280](https://datatracker.ietf.org/doc/html/rfc5280) and combine flags defined by both [Key Usages](https://datatracker.ietf.org/doc/html/rfc5280#section-4.2.1.3) and [Extended Key Usages](https://datatracker.ietf.org/doc/html/rfc5280#section-4.2.1.12). Accepted values: `any_extended`, `cert_signing`, `client_auth`, `code_signing`, `content_commitment`, `crl_signing`, `data_encipherment`, `decipher_only`, `digital_signature`, `email_protection`, `encipher_only`, `ipsec_end_system`, `ipsec_tunnel`, `ipsec_user`, `key_agreement`, `key_encipherment`, `microsoft_commercial_code_signing`, `microsoft_kernel_code_signing`, `microsoft_server_gated_crypto`, `netscape_server_gated_crypto`, `ocsp_signing`, `server_auth`, `timestamping`.
-        :param pulumi.Input[Sequence[pulumi.Input[str]]] dns_names: List of DNS names for which a certificate is being requested (i.e. certificate subjects).
-        :param pulumi.Input[Sequence[pulumi.Input[str]]] ip_addresses: List of IP addresses for which a certificate is being requested (i.e. certificate subjects).
-        :param pulumi.Input[bool] is_ca_certificate: Is the generated certificate representing a Certificate Authority (CA) (default: `false`).
-        :param pulumi.Input[str] private_key_pem: Private key in [PEM (RFC 1421)](https://datatracker.ietf.org/doc/html/rfc1421) format, that the certificate will belong to. This can be read from a separate file using the `file` interpolation function.
-        :param pulumi.Input[bool] set_authority_key_id: Should the generated certificate include an [authority key identifier](https://datatracker.ietf.org/doc/html/rfc5280#section-4.2.1.1): for self-signed certificates this is the same value as the [subject key identifier](https://datatracker.ietf.org/doc/html/rfc5280#section-4.2.1.2) (default: `false`).
-        :param pulumi.Input[bool] set_subject_key_id: Should the generated certificate include a [subject key identifier](https://datatracker.ietf.org/doc/html/rfc5280#section-4.2.1.2) (default: `false`).
+        :param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] allowed_uses: List of key usages allowed for the issued certificate. Values are defined in [RFC 5280](https://datatracker.ietf.org/doc/html/rfc5280) and combine flags defined by both [Key Usages](https://datatracker.ietf.org/doc/html/rfc5280#section-4.2.1.3) and [Extended Key Usages](https://datatracker.ietf.org/doc/html/rfc5280#section-4.2.1.12). Accepted values: `any_extended`, `cert_signing`, `client_auth`, `code_signing`, `content_commitment`, `crl_signing`, `data_encipherment`, `decipher_only`, `digital_signature`, `email_protection`, `encipher_only`, `ipsec_end_system`, `ipsec_tunnel`, `ipsec_user`, `key_agreement`, `key_encipherment`, `microsoft_commercial_code_signing`, `microsoft_kernel_code_signing`, `microsoft_server_gated_crypto`, `netscape_server_gated_crypto`, `ocsp_signing`, `server_auth`, `timestamping`.
+        :param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] dns_names: List of DNS names for which a certificate is being requested (i.e. certificate subjects).
+        :param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] ip_addresses: List of IP addresses for which a certificate is being requested (i.e. certificate subjects).
+        :param pulumi.Input[builtins.bool] is_ca_certificate: Is the generated certificate representing a Certificate Authority (CA) (default: `false`).
+        :param pulumi.Input[builtins.str] private_key_pem: Private key in [PEM (RFC 1421)](https://datatracker.ietf.org/doc/html/rfc1421) format, that the certificate will belong to.
+        :param pulumi.Input[builtins.bool] set_authority_key_id: Should the generated certificate include an [authority key identifier](https://datatracker.ietf.org/doc/html/rfc5280#section-4.2.1.1): for self-signed certificates this is the same value as the [subject key identifier](https://datatracker.ietf.org/doc/html/rfc5280#section-4.2.1.2) (default: `false`).
+        :param pulumi.Input[builtins.bool] set_subject_key_id: Should the generated certificate include a [subject key identifier](https://datatracker.ietf.org/doc/html/rfc5280#section-4.2.1.2) (default: `false`).
         :param pulumi.Input[Union['SelfSignedCertSubjectArgs', 'SelfSignedCertSubjectArgsDict']] subject: The subject for which a certificate is being requested. The acceptable arguments are all optional and their naming is based upon [Issuer Distinguished Names (RFC5280)](https://tools.ietf.org/html/rfc5280#section-4.1.2.4) section.
-        :param pulumi.Input[Sequence[pulumi.Input[str]]] uris: List of URIs for which a certificate is being requested (i.e. certificate subjects).
-        :param pulumi.Input[int] validity_period_hours: Number of hours, after initial issuing, that the certificate will remain valid for.
+        :param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] uris: List of URIs for which a certificate is being requested (i.e. certificate subjects).
+        :param pulumi.Input[builtins.int] validity_period_hours: Number of hours, after initial issuing, that the certificate will remain valid for.
         """
         ...
     @overload
@@ -510,17 +511,17 @@ class SelfSignedCert(pulumi.CustomResource):
     def _internal_init(__self__,
                  resource_name: str,
                  opts: Optional[pulumi.ResourceOptions] = None,
-                 allowed_uses: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
-                 dns_names: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
-                 early_renewal_hours: Optional[pulumi.Input[int]] = None,
-                 ip_addresses: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
-                 is_ca_certificate: Optional[pulumi.Input[bool]] = None,
-                 private_key_pem: Optional[pulumi.Input[str]] = None,
-                 set_authority_key_id: Optional[pulumi.Input[bool]] = None,
-                 set_subject_key_id: Optional[pulumi.Input[bool]] = None,
+                 allowed_uses: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
+                 dns_names: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
+                 early_renewal_hours: Optional[pulumi.Input[builtins.int]] = None,
+                 ip_addresses: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
+                 is_ca_certificate: Optional[pulumi.Input[builtins.bool]] = None,
+                 private_key_pem: Optional[pulumi.Input[builtins.str]] = None,
+                 set_authority_key_id: Optional[pulumi.Input[builtins.bool]] = None,
+                 set_subject_key_id: Optional[pulumi.Input[builtins.bool]] = None,
                  subject: Optional[pulumi.Input[Union['SelfSignedCertSubjectArgs', 'SelfSignedCertSubjectArgsDict']]] = None,
-                 uris: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
-                 validity_period_hours: Optional[pulumi.Input[int]] = None,
+                 uris: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
+                 validity_period_hours: Optional[pulumi.Input[builtins.int]] = None,
                  __props__=None):
         opts = pulumi.ResourceOptions.merge(_utilities.get_resource_opts_defaults(), opts)
         if not isinstance(opts, pulumi.ResourceOptions):
@@ -564,22 +565,22 @@ class SelfSignedCert(pulumi.CustomResource):
     def get(resource_name: str,
             id: pulumi.Input[str],
             opts: Optional[pulumi.ResourceOptions] = None,
-            allowed_uses: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
-            cert_pem: Optional[pulumi.Input[str]] = None,
-            dns_names: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
-            early_renewal_hours: Optional[pulumi.Input[int]] = None,
-            ip_addresses: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
-            is_ca_certificate: Optional[pulumi.Input[bool]] = None,
-            key_algorithm: Optional[pulumi.Input[str]] = None,
-            private_key_pem: Optional[pulumi.Input[str]] = None,
-            ready_for_renewal: Optional[pulumi.Input[bool]] = None,
-            set_authority_key_id: Optional[pulumi.Input[bool]] = None,
-            set_subject_key_id: Optional[pulumi.Input[bool]] = None,
+            allowed_uses: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
+            cert_pem: Optional[pulumi.Input[builtins.str]] = None,
+            dns_names: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
+            early_renewal_hours: Optional[pulumi.Input[builtins.int]] = None,
+            ip_addresses: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
+            is_ca_certificate: Optional[pulumi.Input[builtins.bool]] = None,
+            key_algorithm: Optional[pulumi.Input[builtins.str]] = None,
+            private_key_pem: Optional[pulumi.Input[builtins.str]] = None,
+            ready_for_renewal: Optional[pulumi.Input[builtins.bool]] = None,
+            set_authority_key_id: Optional[pulumi.Input[builtins.bool]] = None,
+            set_subject_key_id: Optional[pulumi.Input[builtins.bool]] = None,
             subject: Optional[pulumi.Input[Union['SelfSignedCertSubjectArgs', 'SelfSignedCertSubjectArgsDict']]] = None,
-            uris: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
-            validity_end_time: Optional[pulumi.Input[str]] = None,
-            validity_period_hours: Optional[pulumi.Input[int]] = None,
-            validity_start_time: Optional[pulumi.Input[str]] = None) -> 'SelfSignedCert':
+            uris: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
+            validity_end_time: Optional[pulumi.Input[builtins.str]] = None,
+            validity_period_hours: Optional[pulumi.Input[builtins.int]] = None,
+            validity_start_time: Optional[pulumi.Input[builtins.str]] = None) -> 'SelfSignedCert':
         """
         Get an existing SelfSignedCert resource's state with the given name, id, and optional extra
         properties used to qualify the lookup.
@@ -587,21 +588,21 @@ class SelfSignedCert(pulumi.CustomResource):
         :param str resource_name: The unique name of the resulting resource.
         :param pulumi.Input[str] id: The unique provider ID of the resource to lookup.
         :param pulumi.ResourceOptions opts: Options for the resource.
-        :param pulumi.Input[Sequence[pulumi.Input[str]]] allowed_uses: List of key usages allowed for the issued certificate. Values are defined in [RFC 5280](https://datatracker.ietf.org/doc/html/rfc5280) and combine flags defined by both [Key Usages](https://datatracker.ietf.org/doc/html/rfc5280#section-4.2.1.3) and [Extended Key Usages](https://datatracker.ietf.org/doc/html/rfc5280#section-4.2.1.12). Accepted values: `any_extended`, `cert_signing`, `client_auth`, `code_signing`, `content_commitment`, `crl_signing`, `data_encipherment`, `decipher_only`, `digital_signature`, `email_protection`, `encipher_only`, `ipsec_end_system`, `ipsec_tunnel`, `ipsec_user`, `key_agreement`, `key_encipherment`, `microsoft_commercial_code_signing`, `microsoft_kernel_code_signing`, `microsoft_server_gated_crypto`, `netscape_server_gated_crypto`, `ocsp_signing`, `server_auth`, `timestamping`.
-        :param pulumi.Input[str] cert_pem: Certificate data in [PEM (RFC 1421)](https://datatracker.ietf.org/doc/html/rfc1421) format. **NOTE**: the [underlying](https://pkg.go.dev/encoding/pem#Encode) [libraries](https://pkg.go.dev/golang.org/x/crypto/ssh#MarshalAuthorizedKey) that generate this value append a `\\n` at the end of the PEM. In case this disrupts your use case, we recommend using `trimspace()`.
-        :param pulumi.Input[Sequence[pulumi.Input[str]]] dns_names: List of DNS names for which a certificate is being requested (i.e. certificate subjects).
-        :param pulumi.Input[Sequence[pulumi.Input[str]]] ip_addresses: List of IP addresses for which a certificate is being requested (i.e. certificate subjects).
-        :param pulumi.Input[bool] is_ca_certificate: Is the generated certificate representing a Certificate Authority (CA) (default: `false`).
-        :param pulumi.Input[str] key_algorithm: Name of the algorithm used when generating the private key provided in `private_key_pem`.
-        :param pulumi.Input[str] private_key_pem: Private key in [PEM (RFC 1421)](https://datatracker.ietf.org/doc/html/rfc1421) format, that the certificate will belong to. This can be read from a separate file using the `file` interpolation function.
-        :param pulumi.Input[bool] ready_for_renewal: Is the certificate either expired (i.e. beyond the `validity_period_hours`) or ready for an early renewal (i.e. within the `early_renewal_hours`)?
-        :param pulumi.Input[bool] set_authority_key_id: Should the generated certificate include an [authority key identifier](https://datatracker.ietf.org/doc/html/rfc5280#section-4.2.1.1): for self-signed certificates this is the same value as the [subject key identifier](https://datatracker.ietf.org/doc/html/rfc5280#section-4.2.1.2) (default: `false`).
-        :param pulumi.Input[bool] set_subject_key_id: Should the generated certificate include a [subject key identifier](https://datatracker.ietf.org/doc/html/rfc5280#section-4.2.1.2) (default: `false`).
+        :param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] allowed_uses: List of key usages allowed for the issued certificate. Values are defined in [RFC 5280](https://datatracker.ietf.org/doc/html/rfc5280) and combine flags defined by both [Key Usages](https://datatracker.ietf.org/doc/html/rfc5280#section-4.2.1.3) and [Extended Key Usages](https://datatracker.ietf.org/doc/html/rfc5280#section-4.2.1.12). Accepted values: `any_extended`, `cert_signing`, `client_auth`, `code_signing`, `content_commitment`, `crl_signing`, `data_encipherment`, `decipher_only`, `digital_signature`, `email_protection`, `encipher_only`, `ipsec_end_system`, `ipsec_tunnel`, `ipsec_user`, `key_agreement`, `key_encipherment`, `microsoft_commercial_code_signing`, `microsoft_kernel_code_signing`, `microsoft_server_gated_crypto`, `netscape_server_gated_crypto`, `ocsp_signing`, `server_auth`, `timestamping`.
+        :param pulumi.Input[builtins.str] cert_pem: Certificate data in [PEM (RFC 1421)](https://datatracker.ietf.org/doc/html/rfc1421) format. **NOTE**: the [underlying](https://pkg.go.dev/encoding/pem#Encode) [libraries](https://pkg.go.dev/golang.org/x/crypto/ssh#MarshalAuthorizedKey) that generate this value append a `\\n` at the end of the PEM. In case this disrupts your use case, we recommend using `trimspace()`.
+        :param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] dns_names: List of DNS names for which a certificate is being requested (i.e. certificate subjects).
+        :param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] ip_addresses: List of IP addresses for which a certificate is being requested (i.e. certificate subjects).
+        :param pulumi.Input[builtins.bool] is_ca_certificate: Is the generated certificate representing a Certificate Authority (CA) (default: `false`).
+        :param pulumi.Input[builtins.str] key_algorithm: Name of the algorithm used when generating the private key provided in `private_key_pem`.
+        :param pulumi.Input[builtins.str] private_key_pem: Private key in [PEM (RFC 1421)](https://datatracker.ietf.org/doc/html/rfc1421) format, that the certificate will belong to.
+        :param pulumi.Input[builtins.bool] ready_for_renewal: Is the certificate either expired (i.e. beyond the `validity_period_hours`) or ready for an early renewal (i.e. within the `early_renewal_hours`)?
+        :param pulumi.Input[builtins.bool] set_authority_key_id: Should the generated certificate include an [authority key identifier](https://datatracker.ietf.org/doc/html/rfc5280#section-4.2.1.1): for self-signed certificates this is the same value as the [subject key identifier](https://datatracker.ietf.org/doc/html/rfc5280#section-4.2.1.2) (default: `false`).
+        :param pulumi.Input[builtins.bool] set_subject_key_id: Should the generated certificate include a [subject key identifier](https://datatracker.ietf.org/doc/html/rfc5280#section-4.2.1.2) (default: `false`).
         :param pulumi.Input[Union['SelfSignedCertSubjectArgs', 'SelfSignedCertSubjectArgsDict']] subject: The subject for which a certificate is being requested. The acceptable arguments are all optional and their naming is based upon [Issuer Distinguished Names (RFC5280)](https://tools.ietf.org/html/rfc5280#section-4.1.2.4) section.
-        :param pulumi.Input[Sequence[pulumi.Input[str]]] uris: List of URIs for which a certificate is being requested (i.e. certificate subjects).
-        :param pulumi.Input[str] validity_end_time: The time until which the certificate is invalid, expressed as an [RFC3339](https://tools.ietf.org/html/rfc3339) timestamp.
-        :param pulumi.Input[int] validity_period_hours: Number of hours, after initial issuing, that the certificate will remain valid for.
-        :param pulumi.Input[str] validity_start_time: The time after which the certificate is valid, expressed as an [RFC3339](https://tools.ietf.org/html/rfc3339) timestamp.
+        :param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] uris: List of URIs for which a certificate is being requested (i.e. certificate subjects).
+        :param pulumi.Input[builtins.str] validity_end_time: The time until which the certificate is invalid, expressed as an [RFC3339](https://tools.ietf.org/html/rfc3339) timestamp.
+        :param pulumi.Input[builtins.int] validity_period_hours: Number of hours, after initial issuing, that the certificate will remain valid for.
+        :param pulumi.Input[builtins.str] validity_start_time: The time after which the certificate is valid, expressed as an [RFC3339](https://tools.ietf.org/html/rfc3339) timestamp.
         """
         opts = pulumi.ResourceOptions.merge(opts, pulumi.ResourceOptions(id=id))
@@ -627,7 +628,7 @@ class SelfSignedCert(pulumi.CustomResource):
     @property
     @pulumi.getter(name="allowedUses")
-    def allowed_uses(self) -> pulumi.Output[Sequence[str]]:
+    def allowed_uses(self) -> pulumi.Output[Sequence[builtins.str]]:
         """
         List of key usages allowed for the issued certificate. Values are defined in [RFC 5280](https://datatracker.ietf.org/doc/html/rfc5280) and combine flags defined by both [Key Usages](https://datatracker.ietf.org/doc/html/rfc5280#section-4.2.1.3) and [Extended Key Usages](https://datatracker.ietf.org/doc/html/rfc5280#section-4.2.1.12). Accepted values: `any_extended`, `cert_signing`, `client_auth`, `code_signing`, `content_commitment`, `crl_signing`, `data_encipherment`, `decipher_only`, `digital_signature`, `email_protection`, `encipher_only`, `ipsec_end_system`, `ipsec_tunnel`, `ipsec_user`, `key_agreement`, `key_encipherment`, `microsoft_commercial_code_signing`, `microsoft_kernel_code_signing`, `microsoft_server_gated_crypto`, `netscape_server_gated_crypto`, `ocsp_signing`, `server_auth`, `timestamping`.
         """
@@ -635,7 +636,7 @@ class SelfSignedCert(pulumi.CustomResource):
     @property
     @pulumi.getter(name="certPem")
-    def cert_pem(self) -> pulumi.Output[str]:
+    def cert_pem(self) -> pulumi.Output[builtins.str]:
         """
         Certificate data in [PEM (RFC 1421)](https://datatracker.ietf.org/doc/html/rfc1421) format. **NOTE**: the [underlying](https://pkg.go.dev/encoding/pem#Encode) [libraries](https://pkg.go.dev/golang.org/x/crypto/ssh#MarshalAuthorizedKey) that generate this value append a `\\n` at the end of the PEM. In case this disrupts your use case, we recommend using `trimspace()`.
         """
@@ -643,7 +644,7 @@ class SelfSignedCert(pulumi.CustomResource):
     @property
     @pulumi.getter(name="dnsNames")
-    def dns_names(self) -> pulumi.Output[Optional[Sequence[str]]]:
+    def dns_names(self) -> pulumi.Output[Optional[Sequence[builtins.str]]]:
         """
         List of DNS names for which a certificate is being requested (i.e. certificate subjects).
         """
@@ -651,12 +652,12 @@ class SelfSignedCert(pulumi.CustomResource):
     @property
     @pulumi.getter(name="earlyRenewalHours")
-    def early_renewal_hours(self) -> pulumi.Output[int]:
+    def early_renewal_hours(self) -> pulumi.Output[builtins.int]:
         return pulumi.get(self, "early_renewal_hours")
     @property
     @pulumi.getter(name="ipAddresses")
-    def ip_addresses(self) -> pulumi.Output[Optional[Sequence[str]]]:
+    def ip_addresses(self) -> pulumi.Output[Optional[Sequence[builtins.str]]]:
         """
         List of IP addresses for which a certificate is being requested (i.e. certificate subjects).
         """
@@ -664,7 +665,7 @@ class SelfSignedCert(pulumi.CustomResource):
     @property
     @pulumi.getter(name="isCaCertificate")
-    def is_ca_certificate(self) -> pulumi.Output[bool]:
+    def is_ca_certificate(self) -> pulumi.Output[builtins.bool]:
         """
         Is the generated certificate representing a Certificate Authority (CA) (default: `false`).
         """
@@ -672,7 +673,7 @@ class SelfSignedCert(pulumi.CustomResource):
     @property
     @pulumi.getter(name="keyAlgorithm")
-    def key_algorithm(self) -> pulumi.Output[str]:
+    def key_algorithm(self) -> pulumi.Output[builtins.str]:
         """
         Name of the algorithm used when generating the private key provided in `private_key_pem`.
         """
@@ -680,15 +681,15 @@ class SelfSignedCert(pulumi.CustomResource):
     @property
     @pulumi.getter(name="privateKeyPem")
-    def private_key_pem(self) -> pulumi.Output[str]:
+    def private_key_pem(self) -> pulumi.Output[builtins.str]:
         """
-        Private key in [PEM (RFC 1421)](https://datatracker.ietf.org/doc/html/rfc1421) format, that the certificate will belong to. This can be read from a separate file using the `file` interpolation function.
+        Private key in [PEM (RFC 1421)](https://datatracker.ietf.org/doc/html/rfc1421) format, that the certificate will belong to.
         """
         return pulumi.get(self, "private_key_pem")
     @property
     @pulumi.getter(name="readyForRenewal")
-    def ready_for_renewal(self) -> pulumi.Output[bool]:
+    def ready_for_renewal(self) -> pulumi.Output[builtins.bool]:
         """
         Is the certificate either expired (i.e. beyond the `validity_period_hours`) or ready for an early renewal (i.e. within the `early_renewal_hours`)?
         """
@@ -696,7 +697,7 @@ class SelfSignedCert(pulumi.CustomResource):
     @property
     @pulumi.getter(name="setAuthorityKeyId")
-    def set_authority_key_id(self) -> pulumi.Output[bool]:
+    def set_authority_key_id(self) -> pulumi.Output[builtins.bool]:
         """
         Should the generated certificate include an [authority key identifier](https://datatracker.ietf.org/doc/html/rfc5280#section-4.2.1.1): for self-signed certificates this is the same value as the [subject key identifier](https://datatracker.ietf.org/doc/html/rfc5280#section-4.2.1.2) (default: `false`).
         """
@@ -704,7 +705,7 @@ class SelfSignedCert(pulumi.CustomResource):
     @property
     @pulumi.getter(name="setSubjectKeyId")
-    def set_subject_key_id(self) -> pulumi.Output[bool]:
+    def set_subject_key_id(self) -> pulumi.Output[builtins.bool]:
         """
         Should the generated certificate include a [subject key identifier](https://datatracker.ietf.org/doc/html/rfc5280#section-4.2.1.2) (default: `false`).
         """
@@ -720,7 +721,7 @@ class SelfSignedCert(pulumi.CustomResource):
     @property
     @pulumi.getter
-    def uris(self) -> pulumi.Output[Optional[Sequence[str]]]:
+    def uris(self) -> pulumi.Output[Optional[Sequence[builtins.str]]]:
         """
         List of URIs for which a certificate is being requested (i.e. certificate subjects).
         """
@@ -728,7 +729,7 @@ class SelfSignedCert(pulumi.CustomResource):
     @property
     @pulumi.getter(name="validityEndTime")
-    def validity_end_time(self) -> pulumi.Output[str]:
+    def validity_end_time(self) -> pulumi.Output[builtins.str]:
         """
         The time until which the certificate is invalid, expressed as an [RFC3339](https://tools.ietf.org/html/rfc3339) timestamp.
         """
@@ -736,7 +737,7 @@ class SelfSignedCert(pulumi.CustomResource):
     @property
     @pulumi.getter(name="validityPeriodHours")
-    def validity_period_hours(self) -> pulumi.Output[int]:
+    def validity_period_hours(self) -> pulumi.Output[builtins.int]:
         """
         Number of hours, after initial issuing, that the certificate will remain valid for.
         """
@@ -744,7 +745,7 @@ class SelfSignedCert(pulumi.CustomResource):
     @property
     @pulumi.getter(name="validityStartTime")
-    def validity_start_time(self) -> pulumi.Output[str]:
+    def validity_start_time(self) -> pulumi.Output[builtins.str]:
         """
         The time after which the certificate is valid, expressed as an [RFC3339](https://tools.ietf.org/html/rfc3339) timestamp.
         """

pulumi-tls 5.2.0a1743575896__py3-none-any.whl → 5.2.0a1744183475__py3-none-any.whl

pulumi-tls 5.2.0a1743575896py3-none-any.whl → 5.2.0a1744183475py3-none-any.whl