pulumi-vault 5.21.0a1709368526__py3-none-any.whl → 6.5.0a1736836139__py3-none-any.whl

pulumi_vault/egp_policy.py

@@ -4,9 +4,14 @@
 
 import copy
 import warnings
+import sys
 import pulumi
 import pulumi.runtime
 from typing import Any, Mapping, Optional, Sequence, Union, overload
+if sys.version_info >= (3, 11):
+    from typing import NotRequired, TypedDict, TypeAlias
+else:
+    from typing_extensions import NotRequired, TypedDict, TypeAlias
 from . import _utilities
 
 __all__ = ['EgpPolicyArgs', 'EgpPolicy']
@@ -27,7 +32,7 @@ class EgpPolicyArgs:
         :param pulumi.Input[str] name: The name of the policy
         :param pulumi.Input[str] namespace: The namespace to provision the resource in.
                The value should not contain leading or trailing forward slashes.
-               The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault#namespace).
+               The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault/index.html#namespace).
                *Available only for Vault Enterprise*.
         """
         pulumi.set(__self__, "enforcement_level", enforcement_level)
@@ -92,7 +97,7 @@ class EgpPolicyArgs:
         """
         The namespace to provision the resource in.
         The value should not contain leading or trailing forward slashes.
-        The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault#namespace).
+        The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault/index.html#namespace).
         *Available only for Vault Enterprise*.
         """
         return pulumi.get(self, "namespace")
@@ -116,7 +121,7 @@ class _EgpPolicyState:
         :param pulumi.Input[str] name: The name of the policy
         :param pulumi.Input[str] namespace: The namespace to provision the resource in.
                The value should not contain leading or trailing forward slashes.
-               The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault#namespace).
+               The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault/index.html#namespace).
                *Available only for Vault Enterprise*.
         :param pulumi.Input[Sequence[pulumi.Input[str]]] paths: List of paths to which the policy will be applied to
         :param pulumi.Input[str] policy: String containing a Sentinel policy
@@ -162,7 +167,7 @@ class _EgpPolicyState:
         """
         The namespace to provision the resource in.
         The value should not contain leading or trailing forward slashes.
-        The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault#namespace).
+        The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault/index.html#namespace).
         *Available only for Vault Enterprise*.
         """
         return pulumi.get(self, "namespace")
@@ -219,12 +224,12 @@ class EgpPolicy(pulumi.CustomResource):
         import pulumi_vault as vault
 
         allow_all = vault.EgpPolicy("allow-all",
-            enforcement_level="soft-mandatory",
+            name="allow-all",
             paths=["*"],
+            enforcement_level="soft-mandatory",
             policy=\"\"\"main = rule {
           true
         }
-
         \"\"\")
         ```
 
@@ -234,7 +239,7 @@ class EgpPolicy(pulumi.CustomResource):
         :param pulumi.Input[str] name: The name of the policy
         :param pulumi.Input[str] namespace: The namespace to provision the resource in.
                The value should not contain leading or trailing forward slashes.
-               The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault#namespace).
+               The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault/index.html#namespace).
                *Available only for Vault Enterprise*.
         :param pulumi.Input[Sequence[pulumi.Input[str]]] paths: List of paths to which the policy will be applied to
         :param pulumi.Input[str] policy: String containing a Sentinel policy
@@ -257,12 +262,12 @@ class EgpPolicy(pulumi.CustomResource):
         import pulumi_vault as vault
 
         allow_all = vault.EgpPolicy("allow-all",
-            enforcement_level="soft-mandatory",
+            name="allow-all",
             paths=["*"],
+            enforcement_level="soft-mandatory",
             policy=\"\"\"main = rule {
           true
         }
-
         \"\"\")
         ```
 
@@ -332,7 +337,7 @@ class EgpPolicy(pulumi.CustomResource):
         :param pulumi.Input[str] name: The name of the policy
         :param pulumi.Input[str] namespace: The namespace to provision the resource in.
                The value should not contain leading or trailing forward slashes.
-               The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault#namespace).
+               The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault/index.html#namespace).
                *Available only for Vault Enterprise*.
         :param pulumi.Input[Sequence[pulumi.Input[str]]] paths: List of paths to which the policy will be applied to
         :param pulumi.Input[str] policy: String containing a Sentinel policy
@@ -370,7 +375,7 @@ class EgpPolicy(pulumi.CustomResource):
         """
         The namespace to provision the resource in.
         The value should not contain leading or trailing forward slashes.
-        The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault#namespace).
+        The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault/index.html#namespace).
         *Available only for Vault Enterprise*.
         """
         return pulumi.get(self, "namespace")

pulumi_vault/gcp/_inputs.py

@@ -4,18 +4,53 @@
 
 import copy
 import warnings
+import sys
 import pulumi
 import pulumi.runtime
 from typing import Any, Mapping, Optional, Sequence, Union, overload
+if sys.version_info >= (3, 11):
+    from typing import NotRequired, TypedDict, TypeAlias
+else:
+    from typing_extensions import NotRequired, TypedDict, TypeAlias
 from .. import _utilities
 
 __all__ = [
     'AuthBackendCustomEndpointArgs',
+    'AuthBackendCustomEndpointArgsDict',
     'AuthBackendTuneArgs',
+    'AuthBackendTuneArgsDict',
     'SecretRolesetBindingArgs',
+    'SecretRolesetBindingArgsDict',
     'SecretStaticAccountBindingArgs',
+    'SecretStaticAccountBindingArgsDict',
 ]
 
+MYPY = False
+
+if not MYPY:
+    class AuthBackendCustomEndpointArgsDict(TypedDict):
+        api: NotRequired[pulumi.Input[str]]
+        """
+        Replaces the service endpoint used in API requests to `https://www.googleapis.com`.
+        """
+        compute: NotRequired[pulumi.Input[str]]
+        """
+        Replaces the service endpoint used in API requests to `https://compute.googleapis.com`.
+
+        The endpoint value provided for a given key has the form of `scheme://host:port`.
+        The `scheme://` and `:port` portions of the endpoint value are optional.
+        """
+        crm: NotRequired[pulumi.Input[str]]
+        """
+        Replaces the service endpoint used in API requests to `https://cloudresourcemanager.googleapis.com`.
+        """
+        iam: NotRequired[pulumi.Input[str]]
+        """
+        Replaces the service endpoint used in API requests to `https://iam.googleapis.com`.
+        """
+elif False:
+    AuthBackendCustomEndpointArgsDict: TypeAlias = Mapping[str, Any]
+
 @pulumi.input_type
 class AuthBackendCustomEndpointArgs:
     def __init__(__self__, *,
@@ -93,6 +128,56 @@ class AuthBackendCustomEndpointArgs:
         pulumi.set(self, "iam", value)
 
 
+if not MYPY:
+    class AuthBackendTuneArgsDict(TypedDict):
+        allowed_response_headers: NotRequired[pulumi.Input[Sequence[pulumi.Input[str]]]]
+        """
+        List of headers to whitelist and allowing
+        a plugin to include them in the response.
+        """
+        audit_non_hmac_request_keys: NotRequired[pulumi.Input[Sequence[pulumi.Input[str]]]]
+        """
+        Specifies the list of keys that will
+        not be HMAC'd by audit devices in the request data object.
+        """
+        audit_non_hmac_response_keys: NotRequired[pulumi.Input[Sequence[pulumi.Input[str]]]]
+        """
+        Specifies the list of keys that will
+        not be HMAC'd by audit devices in the response data object.
+        """
+        default_lease_ttl: NotRequired[pulumi.Input[str]]
+        """
+        Specifies the default time-to-live.
+        If set, this overrides the global default.
+        Must be a valid [duration string](https://golang.org/pkg/time/#ParseDuration)
+        """
+        listing_visibility: NotRequired[pulumi.Input[str]]
+        """
+        Specifies whether to show this mount in
+        the UI-specific listing endpoint. Valid values are "unauth" or "hidden".
+        """
+        max_lease_ttl: NotRequired[pulumi.Input[str]]
+        """
+        Specifies the maximum time-to-live.
+        If set, this overrides the global default.
+        Must be a valid [duration string](https://golang.org/pkg/time/#ParseDuration)
+        """
+        passthrough_request_headers: NotRequired[pulumi.Input[Sequence[pulumi.Input[str]]]]
+        """
+        List of headers to whitelist and
+        pass from the request to the backend.
+        """
+        token_type: NotRequired[pulumi.Input[str]]
+        """
+        Specifies the type of tokens that should be returned by
+        the mount. Valid values are "default-service", "default-batch", "service", "batch".
+
+
+        For more details on the usage of each argument consult the [Vault GCP API documentation](https://www.vaultproject.io/api-docs/auth/gcp#configure).
+        """
+elif False:
+    AuthBackendTuneArgsDict: TypeAlias = Mapping[str, Any]
+
 @pulumi.input_type
 class AuthBackendTuneArgs:
     def __init__(__self__, *,
@@ -254,6 +339,19 @@ class AuthBackendTuneArgs:
         pulumi.set(self, "token_type", value)
 
 
+if not MYPY:
+    class SecretRolesetBindingArgsDict(TypedDict):
+        resource: pulumi.Input[str]
+        """
+        Resource or resource path for which IAM policy information will be bound. The resource path may be specified in a few different [formats](https://www.vaultproject.io/docs/secrets/gcp/index.html#roleset-bindings).
+        """
+        roles: pulumi.Input[Sequence[pulumi.Input[str]]]
+        """
+        List of [GCP IAM roles](https://cloud.google.com/iam/docs/understanding-roles) for the resource.
+        """
+elif False:
+    SecretRolesetBindingArgsDict: TypeAlias = Mapping[str, Any]
+
 @pulumi.input_type
 class SecretRolesetBindingArgs:
     def __init__(__self__, *,
@@ -291,6 +389,19 @@ class SecretRolesetBindingArgs:
         pulumi.set(self, "roles", value)
 
 
+if not MYPY:
+    class SecretStaticAccountBindingArgsDict(TypedDict):
+        resource: pulumi.Input[str]
+        """
+        Resource or resource path for which IAM policy information will be bound. The resource path may be specified in a few different [formats](https://www.vaultproject.io/docs/secrets/gcp/index.html#bindings).
+        """
+        roles: pulumi.Input[Sequence[pulumi.Input[str]]]
+        """
+        List of [GCP IAM roles](https://cloud.google.com/iam/docs/understanding-roles) for the resource.
+        """
+elif False:
+    SecretStaticAccountBindingArgsDict: TypeAlias = Mapping[str, Any]
+
 @pulumi.input_type
 class SecretStaticAccountBindingArgs:
     def __init__(__self__, *,