PyPI - pulumi-vault - Versions diffs - 5.19.0a1705474292__py3-none-any.whl → 5.20.0__py3-none-any.whl - Mend

pulumi-vault 5.19.0a1705474292py3-none-any.whl → 5.20.0py3-none-any.whl

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (48) hide show

pulumi_vault/__init__.py +59 -0
pulumi_vault/_inputs.py +380 -0
pulumi_vault/_utilities.py +2 -2
pulumi_vault/aws/secret_backend.py +188 -0
pulumi_vault/aws/secret_backend_static_role.py +2 -2
pulumi_vault/azure/backend.py +7 -21
pulumi_vault/azure/backend_role.py +111 -0
pulumi_vault/config/__init__.pyi +0 -3
pulumi_vault/config/outputs.py +380 -0
pulumi_vault/config/vars.py +0 -3
pulumi_vault/consul/secret_backend.py +7 -35
pulumi_vault/database/_inputs.py +536 -0
pulumi_vault/database/outputs.py +483 -3
pulumi_vault/gcp/_inputs.py +162 -4
pulumi_vault/gcp/auth_backend.py +64 -3
pulumi_vault/gcp/outputs.py +161 -4
pulumi_vault/get_raft_autopilot_state.py +0 -12
pulumi_vault/identity/group_alias.py +6 -6
pulumi_vault/kubernetes/auth_backend_config.py +7 -7
pulumi_vault/kubernetes/secret_backend_role.py +8 -4
pulumi_vault/kv/_inputs.py +12 -0
pulumi_vault/kv/outputs.py +12 -0
pulumi_vault/ldap/secret_backend_dynamic_role.py +2 -2
pulumi_vault/ldap/secret_backend_static_role.py +2 -2
pulumi_vault/managed/_inputs.py +12 -0
pulumi_vault/managed/keys.py +20 -0
pulumi_vault/managed/outputs.py +12 -0
pulumi_vault/mongodbatlas/secret_role.py +2 -2
pulumi_vault/namespace.py +46 -14
pulumi_vault/pkisecret/secret_backend_config_issuers.py +0 -6
pulumi_vault/pkisecret/secret_backend_issuer.py +0 -10
pulumi_vault/pkisecret/secret_backend_role.py +54 -7
pulumi_vault/rabbitmq/_inputs.py +36 -0
pulumi_vault/rabbitmq/outputs.py +36 -0
pulumi_vault/saml/auth_backend_role.py +7 -14
pulumi_vault/secrets/__init__.py +14 -0
pulumi_vault/secrets/sync_association.py +464 -0
pulumi_vault/secrets/sync_aws_destination.py +564 -0
pulumi_vault/secrets/sync_azure_destination.py +674 -0
pulumi_vault/secrets/sync_config.py +297 -0
pulumi_vault/secrets/sync_gcp_destination.py +438 -0
pulumi_vault/secrets/sync_gh_destination.py +511 -0
pulumi_vault/secrets/sync_vercel_destination.py +541 -0
pulumi_vault/ssh/secret_backend_role.py +7 -14
{pulumi_vault-5.19.0a1705474292.dist-info → pulumi_vault-5.20.0.dist-info}/METADATA +2 -2
{pulumi_vault-5.19.0a1705474292.dist-info → pulumi_vault-5.20.0.dist-info}/RECORD +48 -40
{pulumi_vault-5.19.0a1705474292.dist-info → pulumi_vault-5.20.0.dist-info}/WHEEL +0 -0
{pulumi_vault-5.19.0a1705474292.dist-info → pulumi_vault-5.20.0.dist-info}/top_level.txt +0 -0

pulumi_vault/database/_inputs.py CHANGED Viewed

@@ -1376,14 +1376,19 @@ class SecretBackendConnectionMysqlArgs:
 @pulumi.input_type
 class SecretBackendConnectionMysqlAuroraArgs:
     def __init__(__self__, *,
+                 auth_type: Optional[pulumi.Input[str]] = None,
                  connection_url: Optional[pulumi.Input[str]] = None,
                  max_connection_lifetime: Optional[pulumi.Input[int]] = None,
                  max_idle_connections: Optional[pulumi.Input[int]] = None,
                  max_open_connections: Optional[pulumi.Input[int]] = None,
                  password: Optional[pulumi.Input[str]] = None,
+                 service_account_json: Optional[pulumi.Input[str]] = None,
+                 tls_ca: Optional[pulumi.Input[str]] = None,
+                 tls_certificate_key: Optional[pulumi.Input[str]] = None,
                  username: Optional[pulumi.Input[str]] = None,
                  username_template: Optional[pulumi.Input[str]] = None):
         """
+        :param pulumi.Input[str] auth_type: Enable IAM authentication to a Google Cloud instance when set to `gcp_iam`
         :param pulumi.Input[str] connection_url: A URL containing connection information. See
                the [Vault
                docs](https://www.vaultproject.io/api-docs/secret/databases/mongodb.html#sample-payload)
@@ -1395,9 +1400,14 @@ class SecretBackendConnectionMysqlAuroraArgs:
         :param pulumi.Input[int] max_open_connections: The maximum number of open connections to
                use.
         :param pulumi.Input[str] password: The password to authenticate with.
+        :param pulumi.Input[str] service_account_json: JSON encoding of an IAM access key. Requires `auth_type` to be `gcp_iam`.
+        :param pulumi.Input[str] tls_ca: x509 CA file for validating the certificate presented by the MySQL server. Must be PEM encoded.
+        :param pulumi.Input[str] tls_certificate_key: x509 certificate for connecting to the database. This must be a PEM encoded version of the private key and the certificate combined.
         :param pulumi.Input[str] username: The username to authenticate with.
         :param pulumi.Input[str] username_template: Template describing how dynamic usernames are generated.
         """
+        if auth_type is not None:
+            pulumi.set(__self__, "auth_type", auth_type)
         if connection_url is not None:
             pulumi.set(__self__, "connection_url", connection_url)
         if max_connection_lifetime is not None:
@@ -1408,11 +1418,29 @@ class SecretBackendConnectionMysqlAuroraArgs:
             pulumi.set(__self__, "max_open_connections", max_open_connections)
         if password is not None:
             pulumi.set(__self__, "password", password)
+        if service_account_json is not None:
+            pulumi.set(__self__, "service_account_json", service_account_json)
+        if tls_ca is not None:
+            pulumi.set(__self__, "tls_ca", tls_ca)
+        if tls_certificate_key is not None:
+            pulumi.set(__self__, "tls_certificate_key", tls_certificate_key)
         if username is not None:
             pulumi.set(__self__, "username", username)
         if username_template is not None:
             pulumi.set(__self__, "username_template", username_template)
+    @property
+    @pulumi.getter(name="authType")
+    def auth_type(self) -> Optional[pulumi.Input[str]]:
+        """
+        Enable IAM authentication to a Google Cloud instance when set to `gcp_iam`
+        """
+        return pulumi.get(self, "auth_type")
+    @auth_type.setter
+    def auth_type(self, value: Optional[pulumi.Input[str]]):
+        pulumi.set(self, "auth_type", value)
     @property
     @pulumi.getter(name="connectionUrl")
     def connection_url(self) -> Optional[pulumi.Input[str]]:
@@ -1479,6 +1507,42 @@ class SecretBackendConnectionMysqlAuroraArgs:
     def password(self, value: Optional[pulumi.Input[str]]):
         pulumi.set(self, "password", value)
+    @property
+    @pulumi.getter(name="serviceAccountJson")
+    def service_account_json(self) -> Optional[pulumi.Input[str]]:
+        """
+        JSON encoding of an IAM access key. Requires `auth_type` to be `gcp_iam`.
+        """
+        return pulumi.get(self, "service_account_json")
+    @service_account_json.setter
+    def service_account_json(self, value: Optional[pulumi.Input[str]]):
+        pulumi.set(self, "service_account_json", value)
+    @property
+    @pulumi.getter(name="tlsCa")
+    def tls_ca(self) -> Optional[pulumi.Input[str]]:
+        """
+        x509 CA file for validating the certificate presented by the MySQL server. Must be PEM encoded.
+        """
+        return pulumi.get(self, "tls_ca")
+    @tls_ca.setter
+    def tls_ca(self, value: Optional[pulumi.Input[str]]):
+        pulumi.set(self, "tls_ca", value)
+    @property
+    @pulumi.getter(name="tlsCertificateKey")
+    def tls_certificate_key(self) -> Optional[pulumi.Input[str]]:
+        """
+        x509 certificate for connecting to the database. This must be a PEM encoded version of the private key and the certificate combined.
+        """
+        return pulumi.get(self, "tls_certificate_key")
+    @tls_certificate_key.setter
+    def tls_certificate_key(self, value: Optional[pulumi.Input[str]]):
+        pulumi.set(self, "tls_certificate_key", value)
     @property
     @pulumi.getter
     def username(self) -> Optional[pulumi.Input[str]]:
@@ -1507,14 +1571,19 @@ class SecretBackendConnectionMysqlAuroraArgs:
 @pulumi.input_type
 class SecretBackendConnectionMysqlLegacyArgs:
     def __init__(__self__, *,
+                 auth_type: Optional[pulumi.Input[str]] = None,
                  connection_url: Optional[pulumi.Input[str]] = None,
                  max_connection_lifetime: Optional[pulumi.Input[int]] = None,
                  max_idle_connections: Optional[pulumi.Input[int]] = None,
                  max_open_connections: Optional[pulumi.Input[int]] = None,
                  password: Optional[pulumi.Input[str]] = None,
+                 service_account_json: Optional[pulumi.Input[str]] = None,
+                 tls_ca: Optional[pulumi.Input[str]] = None,
+                 tls_certificate_key: Optional[pulumi.Input[str]] = None,
                  username: Optional[pulumi.Input[str]] = None,
                  username_template: Optional[pulumi.Input[str]] = None):
         """
+        :param pulumi.Input[str] auth_type: Enable IAM authentication to a Google Cloud instance when set to `gcp_iam`
         :param pulumi.Input[str] connection_url: A URL containing connection information. See
                the [Vault
                docs](https://www.vaultproject.io/api-docs/secret/databases/mongodb.html#sample-payload)
@@ -1526,9 +1595,14 @@ class SecretBackendConnectionMysqlLegacyArgs:
         :param pulumi.Input[int] max_open_connections: The maximum number of open connections to
                use.
         :param pulumi.Input[str] password: The password to authenticate with.
+        :param pulumi.Input[str] service_account_json: JSON encoding of an IAM access key. Requires `auth_type` to be `gcp_iam`.
+        :param pulumi.Input[str] tls_ca: x509 CA file for validating the certificate presented by the MySQL server. Must be PEM encoded.
+        :param pulumi.Input[str] tls_certificate_key: x509 certificate for connecting to the database. This must be a PEM encoded version of the private key and the certificate combined.
         :param pulumi.Input[str] username: The username to authenticate with.
         :param pulumi.Input[str] username_template: Template describing how dynamic usernames are generated.
         """
+        if auth_type is not None:
+            pulumi.set(__self__, "auth_type", auth_type)
         if connection_url is not None:
             pulumi.set(__self__, "connection_url", connection_url)
         if max_connection_lifetime is not None:
@@ -1539,11 +1613,29 @@ class SecretBackendConnectionMysqlLegacyArgs:
             pulumi.set(__self__, "max_open_connections", max_open_connections)
         if password is not None:
             pulumi.set(__self__, "password", password)
+        if service_account_json is not None:
+            pulumi.set(__self__, "service_account_json", service_account_json)
+        if tls_ca is not None:
+            pulumi.set(__self__, "tls_ca", tls_ca)
+        if tls_certificate_key is not None:
+            pulumi.set(__self__, "tls_certificate_key", tls_certificate_key)
         if username is not None:
             pulumi.set(__self__, "username", username)
         if username_template is not None:
             pulumi.set(__self__, "username_template", username_template)
+    @property
+    @pulumi.getter(name="authType")
+    def auth_type(self) -> Optional[pulumi.Input[str]]:
+        """
+        Enable IAM authentication to a Google Cloud instance when set to `gcp_iam`
+        """
+        return pulumi.get(self, "auth_type")
+    @auth_type.setter
+    def auth_type(self, value: Optional[pulumi.Input[str]]):
+        pulumi.set(self, "auth_type", value)
     @property
     @pulumi.getter(name="connectionUrl")
     def connection_url(self) -> Optional[pulumi.Input[str]]:
@@ -1610,6 +1702,42 @@ class SecretBackendConnectionMysqlLegacyArgs:
     def password(self, value: Optional[pulumi.Input[str]]):
         pulumi.set(self, "password", value)
+    @property
+    @pulumi.getter(name="serviceAccountJson")
+    def service_account_json(self) -> Optional[pulumi.Input[str]]:
+        """
+        JSON encoding of an IAM access key. Requires `auth_type` to be `gcp_iam`.
+        """
+        return pulumi.get(self, "service_account_json")
+    @service_account_json.setter
+    def service_account_json(self, value: Optional[pulumi.Input[str]]):
+        pulumi.set(self, "service_account_json", value)
+    @property
+    @pulumi.getter(name="tlsCa")
+    def tls_ca(self) -> Optional[pulumi.Input[str]]:
+        """
+        x509 CA file for validating the certificate presented by the MySQL server. Must be PEM encoded.
+        """
+        return pulumi.get(self, "tls_ca")
+    @tls_ca.setter
+    def tls_ca(self, value: Optional[pulumi.Input[str]]):
+        pulumi.set(self, "tls_ca", value)
+    @property
+    @pulumi.getter(name="tlsCertificateKey")
+    def tls_certificate_key(self) -> Optional[pulumi.Input[str]]:
+        """
+        x509 certificate for connecting to the database. This must be a PEM encoded version of the private key and the certificate combined.
+        """
+        return pulumi.get(self, "tls_certificate_key")
+    @tls_certificate_key.setter
+    def tls_certificate_key(self, value: Optional[pulumi.Input[str]]):
+        pulumi.set(self, "tls_certificate_key", value)
     @property
     @pulumi.getter
     def username(self) -> Optional[pulumi.Input[str]]:
@@ -1638,14 +1766,19 @@ class SecretBackendConnectionMysqlLegacyArgs:
 @pulumi.input_type
 class SecretBackendConnectionMysqlRdsArgs:
     def __init__(__self__, *,
+                 auth_type: Optional[pulumi.Input[str]] = None,
                  connection_url: Optional[pulumi.Input[str]] = None,
                  max_connection_lifetime: Optional[pulumi.Input[int]] = None,
                  max_idle_connections: Optional[pulumi.Input[int]] = None,
                  max_open_connections: Optional[pulumi.Input[int]] = None,
                  password: Optional[pulumi.Input[str]] = None,
+                 service_account_json: Optional[pulumi.Input[str]] = None,
+                 tls_ca: Optional[pulumi.Input[str]] = None,
+                 tls_certificate_key: Optional[pulumi.Input[str]] = None,
                  username: Optional[pulumi.Input[str]] = None,
                  username_template: Optional[pulumi.Input[str]] = None):
         """
+        :param pulumi.Input[str] auth_type: Enable IAM authentication to a Google Cloud instance when set to `gcp_iam`
         :param pulumi.Input[str] connection_url: A URL containing connection information. See
                the [Vault
                docs](https://www.vaultproject.io/api-docs/secret/databases/mongodb.html#sample-payload)
@@ -1657,9 +1790,14 @@ class SecretBackendConnectionMysqlRdsArgs:
         :param pulumi.Input[int] max_open_connections: The maximum number of open connections to
                use.
         :param pulumi.Input[str] password: The password to authenticate with.
+        :param pulumi.Input[str] service_account_json: JSON encoding of an IAM access key. Requires `auth_type` to be `gcp_iam`.
+        :param pulumi.Input[str] tls_ca: x509 CA file for validating the certificate presented by the MySQL server. Must be PEM encoded.
+        :param pulumi.Input[str] tls_certificate_key: x509 certificate for connecting to the database. This must be a PEM encoded version of the private key and the certificate combined.
         :param pulumi.Input[str] username: The username to authenticate with.
         :param pulumi.Input[str] username_template: Template describing how dynamic usernames are generated.
         """
+        if auth_type is not None:
+            pulumi.set(__self__, "auth_type", auth_type)
         if connection_url is not None:
             pulumi.set(__self__, "connection_url", connection_url)
         if max_connection_lifetime is not None:
@@ -1670,11 +1808,29 @@ class SecretBackendConnectionMysqlRdsArgs:
             pulumi.set(__self__, "max_open_connections", max_open_connections)
         if password is not None:
             pulumi.set(__self__, "password", password)
+        if service_account_json is not None:
+            pulumi.set(__self__, "service_account_json", service_account_json)
+        if tls_ca is not None:
+            pulumi.set(__self__, "tls_ca", tls_ca)
+        if tls_certificate_key is not None:
+            pulumi.set(__self__, "tls_certificate_key", tls_certificate_key)
         if username is not None:
             pulumi.set(__self__, "username", username)
         if username_template is not None:
             pulumi.set(__self__, "username_template", username_template)
+    @property
+    @pulumi.getter(name="authType")
+    def auth_type(self) -> Optional[pulumi.Input[str]]:
+        """
+        Enable IAM authentication to a Google Cloud instance when set to `gcp_iam`
+        """
+        return pulumi.get(self, "auth_type")
+    @auth_type.setter
+    def auth_type(self, value: Optional[pulumi.Input[str]]):
+        pulumi.set(self, "auth_type", value)
     @property
     @pulumi.getter(name="connectionUrl")
     def connection_url(self) -> Optional[pulumi.Input[str]]:
@@ -1741,6 +1897,42 @@ class SecretBackendConnectionMysqlRdsArgs:
     def password(self, value: Optional[pulumi.Input[str]]):
         pulumi.set(self, "password", value)
+    @property
+    @pulumi.getter(name="serviceAccountJson")
+    def service_account_json(self) -> Optional[pulumi.Input[str]]:
+        """
+        JSON encoding of an IAM access key. Requires `auth_type` to be `gcp_iam`.
+        """
+        return pulumi.get(self, "service_account_json")
+    @service_account_json.setter
+    def service_account_json(self, value: Optional[pulumi.Input[str]]):
+        pulumi.set(self, "service_account_json", value)
+    @property
+    @pulumi.getter(name="tlsCa")
+    def tls_ca(self) -> Optional[pulumi.Input[str]]:
+        """
+        x509 CA file for validating the certificate presented by the MySQL server. Must be PEM encoded.
+        """
+        return pulumi.get(self, "tls_ca")
+    @tls_ca.setter
+    def tls_ca(self, value: Optional[pulumi.Input[str]]):
+        pulumi.set(self, "tls_ca", value)
+    @property
+    @pulumi.getter(name="tlsCertificateKey")
+    def tls_certificate_key(self) -> Optional[pulumi.Input[str]]:
+        """
+        x509 certificate for connecting to the database. This must be a PEM encoded version of the private key and the certificate combined.
+        """
+        return pulumi.get(self, "tls_certificate_key")
+    @tls_certificate_key.setter
+    def tls_certificate_key(self, value: Optional[pulumi.Input[str]]):
+        pulumi.set(self, "tls_certificate_key", value)
     @property
     @pulumi.getter
     def username(self) -> Optional[pulumi.Input[str]]:
@@ -1770,10 +1962,12 @@ class SecretBackendConnectionMysqlRdsArgs:
 class SecretBackendConnectionOracleArgs:
     def __init__(__self__, *,
                  connection_url: Optional[pulumi.Input[str]] = None,
+                 disconnect_sessions: Optional[pulumi.Input[bool]] = None,
                  max_connection_lifetime: Optional[pulumi.Input[int]] = None,
                  max_idle_connections: Optional[pulumi.Input[int]] = None,
                  max_open_connections: Optional[pulumi.Input[int]] = None,
                  password: Optional[pulumi.Input[str]] = None,
+                 split_statements: Optional[pulumi.Input[bool]] = None,
                  username: Optional[pulumi.Input[str]] = None,
                  username_template: Optional[pulumi.Input[str]] = None):
         """
@@ -1781,6 +1975,7 @@ class SecretBackendConnectionOracleArgs:
                the [Vault
                docs](https://www.vaultproject.io/api-docs/secret/databases/mongodb.html#sample-payload)
                for an example.
+        :param pulumi.Input[bool] disconnect_sessions: Enable the built-in session disconnect mechanism.
         :param pulumi.Input[int] max_connection_lifetime: The maximum number of seconds to keep
                a connection alive for.
         :param pulumi.Input[int] max_idle_connections: The maximum number of idle connections to
@@ -1788,11 +1983,14 @@ class SecretBackendConnectionOracleArgs:
         :param pulumi.Input[int] max_open_connections: The maximum number of open connections to
                use.
         :param pulumi.Input[str] password: The password to authenticate with.
+        :param pulumi.Input[bool] split_statements: Enable spliting statements after semi-colons.
         :param pulumi.Input[str] username: The username to authenticate with.
         :param pulumi.Input[str] username_template: Template describing how dynamic usernames are generated.
         """
         if connection_url is not None:
             pulumi.set(__self__, "connection_url", connection_url)
+        if disconnect_sessions is not None:
+            pulumi.set(__self__, "disconnect_sessions", disconnect_sessions)
         if max_connection_lifetime is not None:
             pulumi.set(__self__, "max_connection_lifetime", max_connection_lifetime)
         if max_idle_connections is not None:
@@ -1801,6 +1999,8 @@ class SecretBackendConnectionOracleArgs:
             pulumi.set(__self__, "max_open_connections", max_open_connections)
         if password is not None:
             pulumi.set(__self__, "password", password)
+        if split_statements is not None:
+            pulumi.set(__self__, "split_statements", split_statements)
         if username is not None:
             pulumi.set(__self__, "username", username)
         if username_template is not None:
@@ -1821,6 +2021,18 @@ class SecretBackendConnectionOracleArgs:
     def connection_url(self, value: Optional[pulumi.Input[str]]):
         pulumi.set(self, "connection_url", value)
+    @property
+    @pulumi.getter(name="disconnectSessions")
+    def disconnect_sessions(self) -> Optional[pulumi.Input[bool]]:
+        """
+        Enable the built-in session disconnect mechanism.
+        """
+        return pulumi.get(self, "disconnect_sessions")
+    @disconnect_sessions.setter
+    def disconnect_sessions(self, value: Optional[pulumi.Input[bool]]):
+        pulumi.set(self, "disconnect_sessions", value)
     @property
     @pulumi.getter(name="maxConnectionLifetime")
     def max_connection_lifetime(self) -> Optional[pulumi.Input[int]]:
@@ -1872,6 +2084,18 @@ class SecretBackendConnectionOracleArgs:
     def password(self, value: Optional[pulumi.Input[str]]):
         pulumi.set(self, "password", value)
+    @property
+    @pulumi.getter(name="splitStatements")
+    def split_statements(self) -> Optional[pulumi.Input[bool]]:
+        """
+        Enable spliting statements after semi-colons.
+        """
+        return pulumi.get(self, "split_statements")
+    @split_statements.setter
+    def split_statements(self, value: Optional[pulumi.Input[bool]]):
+        pulumi.set(self, "split_statements", value)
     @property
     @pulumi.getter
     def username(self) -> Optional[pulumi.Input[str]]:
@@ -2566,6 +2790,7 @@ class SecretsMountCassandraArgs:
                  username: Optional[pulumi.Input[str]] = None,
                  verify_connection: Optional[pulumi.Input[bool]] = None):
         """
+        :param pulumi.Input[str] name: Name of the database connection.
         :param pulumi.Input[Sequence[pulumi.Input[str]]] allowed_roles: A list of roles that are allowed to use this
                connection.
         :param pulumi.Input[int] connect_timeout: The number of seconds to use as a connection
@@ -2625,6 +2850,9 @@ class SecretsMountCassandraArgs:
     @property
     @pulumi.getter
     def name(self) -> pulumi.Input[str]:
+        """
+        Name of the database connection.
+        """
         return pulumi.get(self, "name")
     @name.setter
@@ -2839,6 +3067,7 @@ class SecretsMountCouchbaseArgs:
                  verify_connection: Optional[pulumi.Input[bool]] = None):
         """
         :param pulumi.Input[Sequence[pulumi.Input[str]]] hosts: The hosts to connect to.
+        :param pulumi.Input[str] name: Name of the database connection.
         :param pulumi.Input[str] password: The root credential password used in the connection URL.
         :param pulumi.Input[str] username: The root credential username used in the connection URL.
         :param pulumi.Input[Sequence[pulumi.Input[str]]] allowed_roles: A list of roles that are allowed to use this
@@ -2897,6 +3126,9 @@ class SecretsMountCouchbaseArgs:
     @property
     @pulumi.getter
     def name(self) -> pulumi.Input[str]:
+        """
+        Name of the database connection.
+        """
         return pulumi.get(self, "name")
     @name.setter
@@ -3073,6 +3305,7 @@ class SecretsMountElasticsearchArgs:
                  username_template: Optional[pulumi.Input[str]] = None,
                  verify_connection: Optional[pulumi.Input[bool]] = None):
         """
+        :param pulumi.Input[str] name: Name of the database connection.
         :param pulumi.Input[str] password: The root credential password used in the connection URL.
         :param pulumi.Input[str] url: The URL for Elasticsearch's API. https requires certificate
                by trusted CA if used.
@@ -3126,6 +3359,9 @@ class SecretsMountElasticsearchArgs:
     @property
     @pulumi.getter
     def name(self) -> pulumi.Input[str]:
+        """
+        Name of the database connection.
+        """
         return pulumi.get(self, "name")
     @name.setter
@@ -3335,6 +3571,7 @@ class SecretsMountHanaArgs:
                  username: Optional[pulumi.Input[str]] = None,
                  verify_connection: Optional[pulumi.Input[bool]] = None):
         """
+        :param pulumi.Input[str] name: Name of the database connection.
         :param pulumi.Input[Sequence[pulumi.Input[str]]] allowed_roles: A list of roles that are allowed to use this
                connection.
         :param pulumi.Input[str] connection_url: Specifies the Redshift DSN.
@@ -3384,6 +3621,9 @@ class SecretsMountHanaArgs:
     @property
     @pulumi.getter
     def name(self) -> pulumi.Input[str]:
+        """
+        Name of the database connection.
+        """
         return pulumi.get(self, "name")
     @name.setter
@@ -3563,6 +3803,7 @@ class SecretsMountInfluxdbArgs:
                  verify_connection: Optional[pulumi.Input[bool]] = None):
         """
         :param pulumi.Input[str] host: The host to connect to.
+        :param pulumi.Input[str] name: Name of the database connection.
         :param pulumi.Input[str] password: The root credential password used in the connection URL.
         :param pulumi.Input[str] username: The root credential username used in the connection URL.
         :param pulumi.Input[Sequence[pulumi.Input[str]]] allowed_roles: A list of roles that are allowed to use this
@@ -3630,6 +3871,9 @@ class SecretsMountInfluxdbArgs:
     @property
     @pulumi.getter
     def name(self) -> pulumi.Input[str]:
+        """
+        Name of the database connection.
+        """
         return pulumi.get(self, "name")
     @name.setter
@@ -3830,6 +4074,7 @@ class SecretsMountMongodbArgs:
                  username_template: Optional[pulumi.Input[str]] = None,
                  verify_connection: Optional[pulumi.Input[bool]] = None):
         """
+        :param pulumi.Input[str] name: Name of the database connection.
         :param pulumi.Input[Sequence[pulumi.Input[str]]] allowed_roles: A list of roles that are allowed to use this
                connection.
         :param pulumi.Input[str] connection_url: Specifies the Redshift DSN.
@@ -3879,6 +4124,9 @@ class SecretsMountMongodbArgs:
     @property
     @pulumi.getter
     def name(self) -> pulumi.Input[str]:
+        """
+        Name of the database connection.
+        """
         return pulumi.get(self, "name")
     @name.setter
@@ -4050,6 +4298,7 @@ class SecretsMountMongodbatlaArgs:
                  root_rotation_statements: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
                  verify_connection: Optional[pulumi.Input[bool]] = None):
         """
+        :param pulumi.Input[str] name: Name of the database connection.
         :param pulumi.Input[str] private_key: The Private Programmatic API Key used to connect with MongoDB Atlas API.
         :param pulumi.Input[str] project_id: The Project ID the Database User should be created within.
         :param pulumi.Input[str] public_key: The Public Programmatic API Key used to authenticate with the MongoDB Atlas API.
@@ -4081,6 +4330,9 @@ class SecretsMountMongodbatlaArgs:
     @property
     @pulumi.getter
     def name(self) -> pulumi.Input[str]:
+        """
+        Name of the database connection.
+        """
         return pulumi.get(self, "name")
     @name.setter
@@ -4207,6 +4459,7 @@ class SecretsMountMssqlArgs:
                  username_template: Optional[pulumi.Input[str]] = None,
                  verify_connection: Optional[pulumi.Input[bool]] = None):
         """
+        :param pulumi.Input[str] name: Name of the database connection.
         :param pulumi.Input[Sequence[pulumi.Input[str]]] allowed_roles: A list of roles that are allowed to use this
                connection.
         :param pulumi.Input[str] connection_url: Specifies the Redshift DSN.
@@ -4264,6 +4517,9 @@ class SecretsMountMssqlArgs:
     @property
     @pulumi.getter
     def name(self) -> pulumi.Input[str]:
+        """
+        Name of the database connection.
+        """
         return pulumi.get(self, "name")
     @name.setter
@@ -4469,8 +4725,10 @@ class SecretsMountMysqlArgs:
                  username_template: Optional[pulumi.Input[str]] = None,
                  verify_connection: Optional[pulumi.Input[bool]] = None):
         """
+        :param pulumi.Input[str] name: Name of the database connection.
         :param pulumi.Input[Sequence[pulumi.Input[str]]] allowed_roles: A list of roles that are allowed to use this
                connection.
+        :param pulumi.Input[str] auth_type: Specify alternative authorization type. (Only 'gcp_iam' is valid currently)
         :param pulumi.Input[str] connection_url: Specifies the Redshift DSN.
                See [Vault docs](https://www.vaultproject.io/api-docs/secret/databases/redshift#sample-payload)
         :param pulumi.Input[Mapping[str, Any]] data: A map of sensitive data to pass to the endpoint. Useful for templated connection strings.
@@ -4484,6 +4742,7 @@ class SecretsMountMysqlArgs:
         :param pulumi.Input[str] password: The root credential password used in the connection URL.
         :param pulumi.Input[str] plugin_name: Specifies the name of the plugin to use.
         :param pulumi.Input[Sequence[pulumi.Input[str]]] root_rotation_statements: A list of database statements to be executed to rotate the root user's credentials.
+        :param pulumi.Input[str] service_account_json: A JSON encoded credential for use with IAM authorization
         :param pulumi.Input[str] tls_ca: x509 CA file for validating the certificate presented by the MySQL server. Must be PEM encoded.
         :param pulumi.Input[str] tls_certificate_key: x509 certificate for connecting to the database. This must be a PEM encoded version of the private key and the certificate combined.
         :param pulumi.Input[str] username: The root credential username used in the connection URL.
@@ -4528,6 +4787,9 @@ class SecretsMountMysqlArgs:
     @property
     @pulumi.getter
     def name(self) -> pulumi.Input[str]:
+        """
+        Name of the database connection.
+        """
         return pulumi.get(self, "name")
     @name.setter
@@ -4550,6 +4812,9 @@ class SecretsMountMysqlArgs:
     @property
     @pulumi.getter(name="authType")
     def auth_type(self) -> Optional[pulumi.Input[str]]:
+        """
+        Specify alternative authorization type. (Only 'gcp_iam' is valid currently)
+        """
         return pulumi.get(self, "auth_type")
     @auth_type.setter
@@ -4660,6 +4925,9 @@ class SecretsMountMysqlArgs:
     @property
     @pulumi.getter(name="serviceAccountJson")
     def service_account_json(self) -> Optional[pulumi.Input[str]]:
+        """
+        A JSON encoded credential for use with IAM authorization
+        """
         return pulumi.get(self, "service_account_json")
     @service_account_json.setter
@@ -4733,6 +5001,7 @@ class SecretsMountMysqlAuroraArgs:
     def __init__(__self__, *,
                  name: pulumi.Input[str],
                  allowed_roles: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
+                 auth_type: Optional[pulumi.Input[str]] = None,
                  connection_url: Optional[pulumi.Input[str]] = None,
                  data: Optional[pulumi.Input[Mapping[str, Any]]] = None,
                  max_connection_lifetime: Optional[pulumi.Input[int]] = None,
@@ -4741,12 +5010,17 @@ class SecretsMountMysqlAuroraArgs:
                  password: Optional[pulumi.Input[str]] = None,
                  plugin_name: Optional[pulumi.Input[str]] = None,
                  root_rotation_statements: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
+                 service_account_json: Optional[pulumi.Input[str]] = None,
+                 tls_ca: Optional[pulumi.Input[str]] = None,
+                 tls_certificate_key: Optional[pulumi.Input[str]] = None,
                  username: Optional[pulumi.Input[str]] = None,
                  username_template: Optional[pulumi.Input[str]] = None,
                  verify_connection: Optional[pulumi.Input[bool]] = None):
         """
+        :param pulumi.Input[str] name: Name of the database connection.
         :param pulumi.Input[Sequence[pulumi.Input[str]]] allowed_roles: A list of roles that are allowed to use this
                connection.
+        :param pulumi.Input[str] auth_type: Specify alternative authorization type. (Only 'gcp_iam' is valid currently)
         :param pulumi.Input[str] connection_url: Specifies the Redshift DSN.
                See [Vault docs](https://www.vaultproject.io/api-docs/secret/databases/redshift#sample-payload)
         :param pulumi.Input[Mapping[str, Any]] data: A map of sensitive data to pass to the endpoint. Useful for templated connection strings.
@@ -4760,6 +5034,9 @@ class SecretsMountMysqlAuroraArgs:
         :param pulumi.Input[str] password: The root credential password used in the connection URL.
         :param pulumi.Input[str] plugin_name: Specifies the name of the plugin to use.
         :param pulumi.Input[Sequence[pulumi.Input[str]]] root_rotation_statements: A list of database statements to be executed to rotate the root user's credentials.
+        :param pulumi.Input[str] service_account_json: A JSON encoded credential for use with IAM authorization
+        :param pulumi.Input[str] tls_ca: x509 CA file for validating the certificate presented by the MySQL server. Must be PEM encoded.
+        :param pulumi.Input[str] tls_certificate_key: x509 certificate for connecting to the database. This must be a PEM encoded version of the private key and the certificate combined.
         :param pulumi.Input[str] username: The root credential username used in the connection URL.
         :param pulumi.Input[str] username_template: [Template](https://www.vaultproject.io/docs/concepts/username-templating) describing how dynamic usernames are generated.
         :param pulumi.Input[bool] verify_connection: Whether the connection should be verified on
@@ -4768,6 +5045,8 @@ class SecretsMountMysqlAuroraArgs:
         pulumi.set(__self__, "name", name)
         if allowed_roles is not None:
             pulumi.set(__self__, "allowed_roles", allowed_roles)
+        if auth_type is not None:
+            pulumi.set(__self__, "auth_type", auth_type)
         if connection_url is not None:
             pulumi.set(__self__, "connection_url", connection_url)
         if data is not None:
@@ -4784,6 +5063,12 @@ class SecretsMountMysqlAuroraArgs:
             pulumi.set(__self__, "plugin_name", plugin_name)
         if root_rotation_statements is not None:
             pulumi.set(__self__, "root_rotation_statements", root_rotation_statements)
+        if service_account_json is not None:
+            pulumi.set(__self__, "service_account_json", service_account_json)
+        if tls_ca is not None:
+            pulumi.set(__self__, "tls_ca", tls_ca)
+        if tls_certificate_key is not None:
+            pulumi.set(__self__, "tls_certificate_key", tls_certificate_key)
         if username is not None:
             pulumi.set(__self__, "username", username)
         if username_template is not None:
@@ -4794,6 +5079,9 @@ class SecretsMountMysqlAuroraArgs:
     @property
     @pulumi.getter
     def name(self) -> pulumi.Input[str]:
+        """
+        Name of the database connection.
+        """
         return pulumi.get(self, "name")
     @name.setter
@@ -4813,6 +5101,18 @@ class SecretsMountMysqlAuroraArgs:
     def allowed_roles(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]):
         pulumi.set(self, "allowed_roles", value)
+    @property
+    @pulumi.getter(name="authType")
+    def auth_type(self) -> Optional[pulumi.Input[str]]:
+        """
+        Specify alternative authorization type. (Only 'gcp_iam' is valid currently)
+        """
+        return pulumi.get(self, "auth_type")
+    @auth_type.setter
+    def auth_type(self, value: Optional[pulumi.Input[str]]):
+        pulumi.set(self, "auth_type", value)
     @property
     @pulumi.getter(name="connectionUrl")
     def connection_url(self) -> Optional[pulumi.Input[str]]:
@@ -4914,6 +5214,42 @@ class SecretsMountMysqlAuroraArgs:
     def root_rotation_statements(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]):
         pulumi.set(self, "root_rotation_statements", value)
+    @property
+    @pulumi.getter(name="serviceAccountJson")
+    def service_account_json(self) -> Optional[pulumi.Input[str]]:
+        """
+        A JSON encoded credential for use with IAM authorization
+        """
+        return pulumi.get(self, "service_account_json")
+    @service_account_json.setter
+    def service_account_json(self, value: Optional[pulumi.Input[str]]):
+        pulumi.set(self, "service_account_json", value)
+    @property
+    @pulumi.getter(name="tlsCa")
+    def tls_ca(self) -> Optional[pulumi.Input[str]]:
+        """
+        x509 CA file for validating the certificate presented by the MySQL server. Must be PEM encoded.
+        """
+        return pulumi.get(self, "tls_ca")
+    @tls_ca.setter
+    def tls_ca(self, value: Optional[pulumi.Input[str]]):
+        pulumi.set(self, "tls_ca", value)
+    @property
+    @pulumi.getter(name="tlsCertificateKey")
+    def tls_certificate_key(self) -> Optional[pulumi.Input[str]]:
+        """
+        x509 certificate for connecting to the database. This must be a PEM encoded version of the private key and the certificate combined.
+        """
+        return pulumi.get(self, "tls_certificate_key")
+    @tls_certificate_key.setter
+    def tls_certificate_key(self, value: Optional[pulumi.Input[str]]):
+        pulumi.set(self, "tls_certificate_key", value)
     @property
     @pulumi.getter
     def username(self) -> Optional[pulumi.Input[str]]:
@@ -4957,6 +5293,7 @@ class SecretsMountMysqlLegacyArgs:
     def __init__(__self__, *,
                  name: pulumi.Input[str],
                  allowed_roles: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
+                 auth_type: Optional[pulumi.Input[str]] = None,
                  connection_url: Optional[pulumi.Input[str]] = None,
                  data: Optional[pulumi.Input[Mapping[str, Any]]] = None,
                  max_connection_lifetime: Optional[pulumi.Input[int]] = None,
@@ -4965,12 +5302,17 @@ class SecretsMountMysqlLegacyArgs:
                  password: Optional[pulumi.Input[str]] = None,
                  plugin_name: Optional[pulumi.Input[str]] = None,
                  root_rotation_statements: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
+                 service_account_json: Optional[pulumi.Input[str]] = None,
+                 tls_ca: Optional[pulumi.Input[str]] = None,
+                 tls_certificate_key: Optional[pulumi.Input[str]] = None,
                  username: Optional[pulumi.Input[str]] = None,
                  username_template: Optional[pulumi.Input[str]] = None,
                  verify_connection: Optional[pulumi.Input[bool]] = None):
         """
+        :param pulumi.Input[str] name: Name of the database connection.
         :param pulumi.Input[Sequence[pulumi.Input[str]]] allowed_roles: A list of roles that are allowed to use this
                connection.
+        :param pulumi.Input[str] auth_type: Specify alternative authorization type. (Only 'gcp_iam' is valid currently)
         :param pulumi.Input[str] connection_url: Specifies the Redshift DSN.
                See [Vault docs](https://www.vaultproject.io/api-docs/secret/databases/redshift#sample-payload)
         :param pulumi.Input[Mapping[str, Any]] data: A map of sensitive data to pass to the endpoint. Useful for templated connection strings.
@@ -4984,6 +5326,9 @@ class SecretsMountMysqlLegacyArgs:
         :param pulumi.Input[str] password: The root credential password used in the connection URL.
         :param pulumi.Input[str] plugin_name: Specifies the name of the plugin to use.
         :param pulumi.Input[Sequence[pulumi.Input[str]]] root_rotation_statements: A list of database statements to be executed to rotate the root user's credentials.
+        :param pulumi.Input[str] service_account_json: A JSON encoded credential for use with IAM authorization
+        :param pulumi.Input[str] tls_ca: x509 CA file for validating the certificate presented by the MySQL server. Must be PEM encoded.
+        :param pulumi.Input[str] tls_certificate_key: x509 certificate for connecting to the database. This must be a PEM encoded version of the private key and the certificate combined.
         :param pulumi.Input[str] username: The root credential username used in the connection URL.
         :param pulumi.Input[str] username_template: [Template](https://www.vaultproject.io/docs/concepts/username-templating) describing how dynamic usernames are generated.
         :param pulumi.Input[bool] verify_connection: Whether the connection should be verified on
@@ -4992,6 +5337,8 @@ class SecretsMountMysqlLegacyArgs:
         pulumi.set(__self__, "name", name)
         if allowed_roles is not None:
             pulumi.set(__self__, "allowed_roles", allowed_roles)
+        if auth_type is not None:
+            pulumi.set(__self__, "auth_type", auth_type)
         if connection_url is not None:
             pulumi.set(__self__, "connection_url", connection_url)
         if data is not None:
@@ -5008,6 +5355,12 @@ class SecretsMountMysqlLegacyArgs:
             pulumi.set(__self__, "plugin_name", plugin_name)
         if root_rotation_statements is not None:
             pulumi.set(__self__, "root_rotation_statements", root_rotation_statements)
+        if service_account_json is not None:
+            pulumi.set(__self__, "service_account_json", service_account_json)
+        if tls_ca is not None:
+            pulumi.set(__self__, "tls_ca", tls_ca)
+        if tls_certificate_key is not None:
+            pulumi.set(__self__, "tls_certificate_key", tls_certificate_key)
         if username is not None:
             pulumi.set(__self__, "username", username)
         if username_template is not None:
@@ -5018,6 +5371,9 @@ class SecretsMountMysqlLegacyArgs:
     @property
     @pulumi.getter
     def name(self) -> pulumi.Input[str]:
+        """
+        Name of the database connection.
+        """
         return pulumi.get(self, "name")
     @name.setter
@@ -5037,6 +5393,18 @@ class SecretsMountMysqlLegacyArgs:
     def allowed_roles(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]):
         pulumi.set(self, "allowed_roles", value)
+    @property
+    @pulumi.getter(name="authType")
+    def auth_type(self) -> Optional[pulumi.Input[str]]:
+        """
+        Specify alternative authorization type. (Only 'gcp_iam' is valid currently)
+        """
+        return pulumi.get(self, "auth_type")
+    @auth_type.setter
+    def auth_type(self, value: Optional[pulumi.Input[str]]):
+        pulumi.set(self, "auth_type", value)
     @property
     @pulumi.getter(name="connectionUrl")
     def connection_url(self) -> Optional[pulumi.Input[str]]:
@@ -5138,6 +5506,42 @@ class SecretsMountMysqlLegacyArgs:
     def root_rotation_statements(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]):
         pulumi.set(self, "root_rotation_statements", value)
+    @property
+    @pulumi.getter(name="serviceAccountJson")
+    def service_account_json(self) -> Optional[pulumi.Input[str]]:
+        """
+        A JSON encoded credential for use with IAM authorization
+        """
+        return pulumi.get(self, "service_account_json")
+    @service_account_json.setter
+    def service_account_json(self, value: Optional[pulumi.Input[str]]):
+        pulumi.set(self, "service_account_json", value)
+    @property
+    @pulumi.getter(name="tlsCa")
+    def tls_ca(self) -> Optional[pulumi.Input[str]]:
+        """
+        x509 CA file for validating the certificate presented by the MySQL server. Must be PEM encoded.
+        """
+        return pulumi.get(self, "tls_ca")
+    @tls_ca.setter
+    def tls_ca(self, value: Optional[pulumi.Input[str]]):
+        pulumi.set(self, "tls_ca", value)
+    @property
+    @pulumi.getter(name="tlsCertificateKey")
+    def tls_certificate_key(self) -> Optional[pulumi.Input[str]]:
+        """
+        x509 certificate for connecting to the database. This must be a PEM encoded version of the private key and the certificate combined.
+        """
+        return pulumi.get(self, "tls_certificate_key")
+    @tls_certificate_key.setter
+    def tls_certificate_key(self, value: Optional[pulumi.Input[str]]):
+        pulumi.set(self, "tls_certificate_key", value)
     @property
     @pulumi.getter
     def username(self) -> Optional[pulumi.Input[str]]:
@@ -5181,6 +5585,7 @@ class SecretsMountMysqlRdArgs:
     def __init__(__self__, *,
                  name: pulumi.Input[str],
                  allowed_roles: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
+                 auth_type: Optional[pulumi.Input[str]] = None,
                  connection_url: Optional[pulumi.Input[str]] = None,
                  data: Optional[pulumi.Input[Mapping[str, Any]]] = None,
                  max_connection_lifetime: Optional[pulumi.Input[int]] = None,
@@ -5189,12 +5594,17 @@ class SecretsMountMysqlRdArgs:
                  password: Optional[pulumi.Input[str]] = None,
                  plugin_name: Optional[pulumi.Input[str]] = None,
                  root_rotation_statements: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
+                 service_account_json: Optional[pulumi.Input[str]] = None,
+                 tls_ca: Optional[pulumi.Input[str]] = None,
+                 tls_certificate_key: Optional[pulumi.Input[str]] = None,
                  username: Optional[pulumi.Input[str]] = None,
                  username_template: Optional[pulumi.Input[str]] = None,
                  verify_connection: Optional[pulumi.Input[bool]] = None):
         """
+        :param pulumi.Input[str] name: Name of the database connection.
         :param pulumi.Input[Sequence[pulumi.Input[str]]] allowed_roles: A list of roles that are allowed to use this
                connection.
+        :param pulumi.Input[str] auth_type: Specify alternative authorization type. (Only 'gcp_iam' is valid currently)
         :param pulumi.Input[str] connection_url: Specifies the Redshift DSN.
                See [Vault docs](https://www.vaultproject.io/api-docs/secret/databases/redshift#sample-payload)
         :param pulumi.Input[Mapping[str, Any]] data: A map of sensitive data to pass to the endpoint. Useful for templated connection strings.
@@ -5208,6 +5618,9 @@ class SecretsMountMysqlRdArgs:
         :param pulumi.Input[str] password: The root credential password used in the connection URL.
         :param pulumi.Input[str] plugin_name: Specifies the name of the plugin to use.
         :param pulumi.Input[Sequence[pulumi.Input[str]]] root_rotation_statements: A list of database statements to be executed to rotate the root user's credentials.
+        :param pulumi.Input[str] service_account_json: A JSON encoded credential for use with IAM authorization
+        :param pulumi.Input[str] tls_ca: x509 CA file for validating the certificate presented by the MySQL server. Must be PEM encoded.
+        :param pulumi.Input[str] tls_certificate_key: x509 certificate for connecting to the database. This must be a PEM encoded version of the private key and the certificate combined.
         :param pulumi.Input[str] username: The root credential username used in the connection URL.
         :param pulumi.Input[str] username_template: [Template](https://www.vaultproject.io/docs/concepts/username-templating) describing how dynamic usernames are generated.
         :param pulumi.Input[bool] verify_connection: Whether the connection should be verified on
@@ -5216,6 +5629,8 @@ class SecretsMountMysqlRdArgs:
         pulumi.set(__self__, "name", name)
         if allowed_roles is not None:
             pulumi.set(__self__, "allowed_roles", allowed_roles)
+        if auth_type is not None:
+            pulumi.set(__self__, "auth_type", auth_type)
         if connection_url is not None:
             pulumi.set(__self__, "connection_url", connection_url)
         if data is not None:
@@ -5232,6 +5647,12 @@ class SecretsMountMysqlRdArgs:
             pulumi.set(__self__, "plugin_name", plugin_name)
         if root_rotation_statements is not None:
             pulumi.set(__self__, "root_rotation_statements", root_rotation_statements)
+        if service_account_json is not None:
+            pulumi.set(__self__, "service_account_json", service_account_json)
+        if tls_ca is not None:
+            pulumi.set(__self__, "tls_ca", tls_ca)
+        if tls_certificate_key is not None:
+            pulumi.set(__self__, "tls_certificate_key", tls_certificate_key)
         if username is not None:
             pulumi.set(__self__, "username", username)
         if username_template is not None:
@@ -5242,6 +5663,9 @@ class SecretsMountMysqlRdArgs:
     @property
     @pulumi.getter
     def name(self) -> pulumi.Input[str]:
+        """
+        Name of the database connection.
+        """
         return pulumi.get(self, "name")
     @name.setter
@@ -5261,6 +5685,18 @@ class SecretsMountMysqlRdArgs:
     def allowed_roles(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]):
         pulumi.set(self, "allowed_roles", value)
+    @property
+    @pulumi.getter(name="authType")
+    def auth_type(self) -> Optional[pulumi.Input[str]]:
+        """
+        Specify alternative authorization type. (Only 'gcp_iam' is valid currently)
+        """
+        return pulumi.get(self, "auth_type")
+    @auth_type.setter
+    def auth_type(self, value: Optional[pulumi.Input[str]]):
+        pulumi.set(self, "auth_type", value)
     @property
     @pulumi.getter(name="connectionUrl")
     def connection_url(self) -> Optional[pulumi.Input[str]]:
@@ -5362,6 +5798,42 @@ class SecretsMountMysqlRdArgs:
     def root_rotation_statements(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]):
         pulumi.set(self, "root_rotation_statements", value)
+    @property
+    @pulumi.getter(name="serviceAccountJson")
+    def service_account_json(self) -> Optional[pulumi.Input[str]]:
+        """
+        A JSON encoded credential for use with IAM authorization
+        """
+        return pulumi.get(self, "service_account_json")
+    @service_account_json.setter
+    def service_account_json(self, value: Optional[pulumi.Input[str]]):
+        pulumi.set(self, "service_account_json", value)
+    @property
+    @pulumi.getter(name="tlsCa")
+    def tls_ca(self) -> Optional[pulumi.Input[str]]:
+        """
+        x509 CA file for validating the certificate presented by the MySQL server. Must be PEM encoded.
+        """
+        return pulumi.get(self, "tls_ca")
+    @tls_ca.setter
+    def tls_ca(self, value: Optional[pulumi.Input[str]]):
+        pulumi.set(self, "tls_ca", value)
+    @property
+    @pulumi.getter(name="tlsCertificateKey")
+    def tls_certificate_key(self) -> Optional[pulumi.Input[str]]:
+        """
+        x509 certificate for connecting to the database. This must be a PEM encoded version of the private key and the certificate combined.
+        """
+        return pulumi.get(self, "tls_certificate_key")
+    @tls_certificate_key.setter
+    def tls_certificate_key(self, value: Optional[pulumi.Input[str]]):
+        pulumi.set(self, "tls_certificate_key", value)
     @property
     @pulumi.getter
     def username(self) -> Optional[pulumi.Input[str]]:
@@ -5407,16 +5879,19 @@ class SecretsMountOracleArgs:
                  allowed_roles: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
                  connection_url: Optional[pulumi.Input[str]] = None,
                  data: Optional[pulumi.Input[Mapping[str, Any]]] = None,
+                 disconnect_sessions: Optional[pulumi.Input[bool]] = None,
                  max_connection_lifetime: Optional[pulumi.Input[int]] = None,
                  max_idle_connections: Optional[pulumi.Input[int]] = None,
                  max_open_connections: Optional[pulumi.Input[int]] = None,
                  password: Optional[pulumi.Input[str]] = None,
                  plugin_name: Optional[pulumi.Input[str]] = None,
                  root_rotation_statements: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
+                 split_statements: Optional[pulumi.Input[bool]] = None,
                  username: Optional[pulumi.Input[str]] = None,
                  username_template: Optional[pulumi.Input[str]] = None,
                  verify_connection: Optional[pulumi.Input[bool]] = None):
         """
+        :param pulumi.Input[str] name: Name of the database connection.
         :param pulumi.Input[Sequence[pulumi.Input[str]]] allowed_roles: A list of roles that are allowed to use this
                connection.
         :param pulumi.Input[str] connection_url: Specifies the Redshift DSN.
@@ -5424,6 +5899,7 @@ class SecretsMountOracleArgs:
         :param pulumi.Input[Mapping[str, Any]] data: A map of sensitive data to pass to the endpoint. Useful for templated connection strings.
                Supported list of database secrets engines that can be configured:
+        :param pulumi.Input[bool] disconnect_sessions: Set to true to disconnect any open sessions prior to running the revocation statements.
         :param pulumi.Input[int] max_connection_lifetime: The maximum amount of time a connection may be reused.
         :param pulumi.Input[int] max_idle_connections: The maximum number of idle connections to
                the database.
@@ -5432,6 +5908,7 @@ class SecretsMountOracleArgs:
         :param pulumi.Input[str] password: The root credential password used in the connection URL.
         :param pulumi.Input[str] plugin_name: Specifies the name of the plugin to use.
         :param pulumi.Input[Sequence[pulumi.Input[str]]] root_rotation_statements: A list of database statements to be executed to rotate the root user's credentials.
+        :param pulumi.Input[bool] split_statements: Set to true in order to split statements after semi-colons.
         :param pulumi.Input[str] username: The root credential username used in the connection URL.
         :param pulumi.Input[str] username_template: [Template](https://www.vaultproject.io/docs/concepts/username-templating) describing how dynamic usernames are generated.
         :param pulumi.Input[bool] verify_connection: Whether the connection should be verified on
@@ -5444,6 +5921,8 @@ class SecretsMountOracleArgs:
             pulumi.set(__self__, "connection_url", connection_url)
         if data is not None:
             pulumi.set(__self__, "data", data)
+        if disconnect_sessions is not None:
+            pulumi.set(__self__, "disconnect_sessions", disconnect_sessions)
         if max_connection_lifetime is not None:
             pulumi.set(__self__, "max_connection_lifetime", max_connection_lifetime)
         if max_idle_connections is not None:
@@ -5456,6 +5935,8 @@ class SecretsMountOracleArgs:
             pulumi.set(__self__, "plugin_name", plugin_name)
         if root_rotation_statements is not None:
             pulumi.set(__self__, "root_rotation_statements", root_rotation_statements)
+        if split_statements is not None:
+            pulumi.set(__self__, "split_statements", split_statements)
         if username is not None:
             pulumi.set(__self__, "username", username)
         if username_template is not None:
@@ -5466,6 +5947,9 @@ class SecretsMountOracleArgs:
     @property
     @pulumi.getter
     def name(self) -> pulumi.Input[str]:
+        """
+        Name of the database connection.
+        """
         return pulumi.get(self, "name")
     @name.setter
@@ -5512,6 +5996,18 @@ class SecretsMountOracleArgs:
     def data(self, value: Optional[pulumi.Input[Mapping[str, Any]]]):
         pulumi.set(self, "data", value)
+    @property
+    @pulumi.getter(name="disconnectSessions")
+    def disconnect_sessions(self) -> Optional[pulumi.Input[bool]]:
+        """
+        Set to true to disconnect any open sessions prior to running the revocation statements.
+        """
+        return pulumi.get(self, "disconnect_sessions")
+    @disconnect_sessions.setter
+    def disconnect_sessions(self, value: Optional[pulumi.Input[bool]]):
+        pulumi.set(self, "disconnect_sessions", value)
     @property
     @pulumi.getter(name="maxConnectionLifetime")
     def max_connection_lifetime(self) -> Optional[pulumi.Input[int]]:
@@ -5586,6 +6082,18 @@ class SecretsMountOracleArgs:
     def root_rotation_statements(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]):
         pulumi.set(self, "root_rotation_statements", value)
+    @property
+    @pulumi.getter(name="splitStatements")
+    def split_statements(self) -> Optional[pulumi.Input[bool]]:
+        """
+        Set to true in order to split statements after semi-colons.
+        """
+        return pulumi.get(self, "split_statements")
+    @split_statements.setter
+    def split_statements(self, value: Optional[pulumi.Input[bool]]):
+        pulumi.set(self, "split_statements", value)
     @property
     @pulumi.getter
     def username(self) -> Optional[pulumi.Input[str]]:
@@ -5644,8 +6152,10 @@ class SecretsMountPostgresqlArgs:
                  username_template: Optional[pulumi.Input[str]] = None,
                  verify_connection: Optional[pulumi.Input[bool]] = None):
         """
+        :param pulumi.Input[str] name: Name of the database connection.
         :param pulumi.Input[Sequence[pulumi.Input[str]]] allowed_roles: A list of roles that are allowed to use this
                connection.
+        :param pulumi.Input[str] auth_type: Specify alternative authorization type. (Only 'gcp_iam' is valid currently)
         :param pulumi.Input[str] connection_url: Specifies the Redshift DSN.
                See [Vault docs](https://www.vaultproject.io/api-docs/secret/databases/redshift#sample-payload)
         :param pulumi.Input[Mapping[str, Any]] data: A map of sensitive data to pass to the endpoint. Useful for templated connection strings.
@@ -5660,6 +6170,7 @@ class SecretsMountPostgresqlArgs:
         :param pulumi.Input[str] password: The root credential password used in the connection URL.
         :param pulumi.Input[str] plugin_name: Specifies the name of the plugin to use.
         :param pulumi.Input[Sequence[pulumi.Input[str]]] root_rotation_statements: A list of database statements to be executed to rotate the root user's credentials.
+        :param pulumi.Input[str] service_account_json: A JSON encoded credential for use with IAM authorization
         :param pulumi.Input[str] username: The root credential username used in the connection URL.
         :param pulumi.Input[str] username_template: [Template](https://www.vaultproject.io/docs/concepts/username-templating) describing how dynamic usernames are generated.
         :param pulumi.Input[bool] verify_connection: Whether the connection should be verified on
@@ -5700,6 +6211,9 @@ class SecretsMountPostgresqlArgs:
     @property
     @pulumi.getter
     def name(self) -> pulumi.Input[str]:
+        """
+        Name of the database connection.
+        """
         return pulumi.get(self, "name")
     @name.setter
@@ -5722,6 +6236,9 @@ class SecretsMountPostgresqlArgs:
     @property
     @pulumi.getter(name="authType")
     def auth_type(self) -> Optional[pulumi.Input[str]]:
+        """
+        Specify alternative authorization type. (Only 'gcp_iam' is valid currently)
+        """
         return pulumi.get(self, "auth_type")
     @auth_type.setter
@@ -5844,6 +6361,9 @@ class SecretsMountPostgresqlArgs:
     @property
     @pulumi.getter(name="serviceAccountJson")
     def service_account_json(self) -> Optional[pulumi.Input[str]]:
+        """
+        A JSON encoded credential for use with IAM authorization
+        """
         return pulumi.get(self, "service_account_json")
     @service_account_json.setter
@@ -5906,6 +6426,7 @@ class SecretsMountRediArgs:
                  verify_connection: Optional[pulumi.Input[bool]] = None):
         """
         :param pulumi.Input[str] host: The host to connect to.
+        :param pulumi.Input[str] name: Name of the database connection.
         :param pulumi.Input[str] password: The root credential password used in the connection URL.
         :param pulumi.Input[str] username: The root credential username used in the connection URL.
         :param pulumi.Input[Sequence[pulumi.Input[str]]] allowed_roles: A list of roles that are allowed to use this
@@ -5962,6 +6483,9 @@ class SecretsMountRediArgs:
     @property
     @pulumi.getter
     def name(self) -> pulumi.Input[str]:
+        """
+        Name of the database connection.
+        """
         return pulumi.get(self, "name")
     @name.setter
@@ -6121,6 +6645,7 @@ class SecretsMountRedisElasticachArgs:
                  username: Optional[pulumi.Input[str]] = None,
                  verify_connection: Optional[pulumi.Input[bool]] = None):
         """
+        :param pulumi.Input[str] name: Name of the database connection.
         :param pulumi.Input[str] url: The URL for Elasticsearch's API. https requires certificate
                by trusted CA if used.
         :param pulumi.Input[Sequence[pulumi.Input[str]]] allowed_roles: A list of roles that are allowed to use this
@@ -6159,6 +6684,9 @@ class SecretsMountRedisElasticachArgs:
     @property
     @pulumi.getter
     def name(self) -> pulumi.Input[str]:
+        """
+        Name of the database connection.
+        """
         return pulumi.get(self, "name")
     @name.setter
@@ -6298,6 +6826,7 @@ class SecretsMountRedshiftArgs:
                  username_template: Optional[pulumi.Input[str]] = None,
                  verify_connection: Optional[pulumi.Input[bool]] = None):
         """
+        :param pulumi.Input[str] name: Name of the database connection.
         :param pulumi.Input[Sequence[pulumi.Input[str]]] allowed_roles: A list of roles that are allowed to use this
                connection.
         :param pulumi.Input[str] connection_url: Specifies the Redshift DSN.
@@ -6350,6 +6879,9 @@ class SecretsMountRedshiftArgs:
     @property
     @pulumi.getter
     def name(self) -> pulumi.Input[str]:
+        """
+        Name of the database connection.
+        """
         return pulumi.get(self, "name")
     @name.setter
@@ -6537,6 +7069,7 @@ class SecretsMountSnowflakeArgs:
                  username_template: Optional[pulumi.Input[str]] = None,
                  verify_connection: Optional[pulumi.Input[bool]] = None):
         """
+        :param pulumi.Input[str] name: Name of the database connection.
         :param pulumi.Input[Sequence[pulumi.Input[str]]] allowed_roles: A list of roles that are allowed to use this
                connection.
         :param pulumi.Input[str] connection_url: Specifies the Redshift DSN.
@@ -6586,6 +7119,9 @@ class SecretsMountSnowflakeArgs:
     @property
     @pulumi.getter
     def name(self) -> pulumi.Input[str]:
+        """
+        Name of the database connection.
+        """
         return pulumi.get(self, "name")
     @name.setter

pulumi-vault 5.19.0a1705474292__py3-none-any.whl → 5.20.0__py3-none-any.whl

pulumi-vault 5.19.0a1705474292py3-none-any.whl → 5.20.0py3-none-any.whl