pulumi-vault 5.21.0a1709368526__py3-none-any.whl → 6.5.0a1736836139__py3-none-any.whl

pulumi_vault/identity/mfa_login_enforcement.py

@@ -4,9 +4,14 @@
 
 import copy
 import warnings
+import sys
 import pulumi
 import pulumi.runtime
 from typing import Any, Mapping, Optional, Sequence, Union, overload
+if sys.version_info >= (3, 11):
+    from typing import NotRequired, TypedDict, TypeAlias
+else:
+    from typing_extensions import NotRequired, TypedDict, TypeAlias
 from .. import _utilities
 
 __all__ = ['MfaLoginEnforcementArgs', 'MfaLoginEnforcement']
@@ -320,12 +325,14 @@ class MfaLoginEnforcement(pulumi.CustomResource):
         import pulumi
         import pulumi_vault as vault
 
-        example_mfa_duo = vault.identity.MfaDuo("exampleMfaDuo",
+        example = vault.identity.MfaDuo("example",
             secret_key="secret-key",
             integration_key="int-key",
             api_hostname="foo.baz",
             push_info="push-info")
-        example_mfa_login_enforcement = vault.identity.MfaLoginEnforcement("exampleMfaLoginEnforcement", mfa_method_ids=[example_mfa_duo.method_id])
+        example_mfa_login_enforcement = vault.identity.MfaLoginEnforcement("example",
+            name="default",
+            mfa_method_ids=[example.method_id])
         ```
 
         ## Import
@@ -333,7 +340,7 @@ class MfaLoginEnforcement(pulumi.CustomResource):
         Resource can be imported using its `name` field, e.g.
 
         ```sh
-         $ pulumi import vault:identity/mfaLoginEnforcement:MfaLoginEnforcement example default
+        $ pulumi import vault:identity/mfaLoginEnforcement:MfaLoginEnforcement example default
         ```
 
         :param str resource_name: The name of the resource.
@@ -361,12 +368,14 @@ class MfaLoginEnforcement(pulumi.CustomResource):
         import pulumi
         import pulumi_vault as vault
 
-        example_mfa_duo = vault.identity.MfaDuo("exampleMfaDuo",
+        example = vault.identity.MfaDuo("example",
             secret_key="secret-key",
             integration_key="int-key",
             api_hostname="foo.baz",
             push_info="push-info")
-        example_mfa_login_enforcement = vault.identity.MfaLoginEnforcement("exampleMfaLoginEnforcement", mfa_method_ids=[example_mfa_duo.method_id])
+        example_mfa_login_enforcement = vault.identity.MfaLoginEnforcement("example",
+            name="default",
+            mfa_method_ids=[example.method_id])
         ```
 
         ## Import
@@ -374,7 +383,7 @@ class MfaLoginEnforcement(pulumi.CustomResource):
         Resource can be imported using its `name` field, e.g.
 
         ```sh
-         $ pulumi import vault:identity/mfaLoginEnforcement:MfaLoginEnforcement example default
+        $ pulumi import vault:identity/mfaLoginEnforcement:MfaLoginEnforcement example default
         ```
 
         :param str resource_name: The name of the resource.

pulumi_vault/identity/mfa_okta.py

@@ -4,9 +4,14 @@
 
 import copy
 import warnings
+import sys
 import pulumi
 import pulumi.runtime
 from typing import Any, Mapping, Optional, Sequence, Union, overload
+if sys.version_info >= (3, 11):
+    from typing import NotRequired, TypedDict, TypeAlias
+else:
+    from typing_extensions import NotRequired, TypedDict, TypeAlias
 from .. import _utilities
 
 __all__ = ['MfaOktaArgs', 'MfaOkta']
@@ -351,9 +356,9 @@ class MfaOkta(pulumi.CustomResource):
         import pulumi_vault as vault
 
         example = vault.identity.MfaOkta("example",
+            org_name="org1",
             api_token="token1",
-            base_url="qux.baz.com",
-            org_name="org1")
+            base_url="qux.baz.com")
         ```
 
         ## Import
@@ -361,7 +366,7 @@ class MfaOkta(pulumi.CustomResource):
         Resource can be imported using its `uuid` field, e.g.
 
         ```sh
-         $ pulumi import vault:identity/mfaOkta:MfaOkta example 0d89c36a-4ff5-4d70-8749-bb6a5598aeec
+        $ pulumi import vault:identity/mfaOkta:MfaOkta example 0d89c36a-4ff5-4d70-8749-bb6a5598aeec
         ```
 
         :param str resource_name: The name of the resource.
@@ -389,9 +394,9 @@ class MfaOkta(pulumi.CustomResource):
         import pulumi_vault as vault
 
         example = vault.identity.MfaOkta("example",
+            org_name="org1",
             api_token="token1",
-            base_url="qux.baz.com",
-            org_name="org1")
+            base_url="qux.baz.com")
         ```
 
         ## Import
@@ -399,7 +404,7 @@ class MfaOkta(pulumi.CustomResource):
         Resource can be imported using its `uuid` field, e.g.
 
         ```sh
-         $ pulumi import vault:identity/mfaOkta:MfaOkta example 0d89c36a-4ff5-4d70-8749-bb6a5598aeec
+        $ pulumi import vault:identity/mfaOkta:MfaOkta example 0d89c36a-4ff5-4d70-8749-bb6a5598aeec
         ```
 
         :param str resource_name: The name of the resource.

pulumi_vault/identity/mfa_pingid.py

@@ -4,9 +4,14 @@
 
 import copy
 import warnings
+import sys
 import pulumi
 import pulumi.runtime
 from typing import Any, Mapping, Optional, Sequence, Union, overload
+if sys.version_info >= (3, 11):
+    from typing import NotRequired, TypedDict, TypeAlias
+else:
+    from typing_extensions import NotRequired, TypedDict, TypeAlias
 from .. import _utilities
 
 __all__ = ['MfaPingidArgs', 'MfaPingid']
@@ -340,7 +345,7 @@ class MfaPingid(pulumi.CustomResource):
         Resource can be imported using its `uuid` field, e.g.
 
         ```sh
-         $ pulumi import vault:identity/mfaPingid:MfaPingid example 0d89c36a-4ff5-4d70-8749-bb6a5598aeec
+        $ pulumi import vault:identity/mfaPingid:MfaPingid example 0d89c36a-4ff5-4d70-8749-bb6a5598aeec
         ```
 
         :param str resource_name: The name of the resource.
@@ -372,7 +377,7 @@ class MfaPingid(pulumi.CustomResource):
         Resource can be imported using its `uuid` field, e.g.
 
         ```sh
-         $ pulumi import vault:identity/mfaPingid:MfaPingid example 0d89c36a-4ff5-4d70-8749-bb6a5598aeec
+        $ pulumi import vault:identity/mfaPingid:MfaPingid example 0d89c36a-4ff5-4d70-8749-bb6a5598aeec
         ```
 
         :param str resource_name: The name of the resource.

pulumi_vault/identity/mfa_totp.py

@@ -4,9 +4,14 @@
 
 import copy
 import warnings
+import sys
 import pulumi
 import pulumi.runtime
 from typing import Any, Mapping, Optional, Sequence, Union, overload
+if sys.version_info >= (3, 11):
+    from typing import NotRequired, TypedDict, TypeAlias
+else:
+    from typing_extensions import NotRequired, TypedDict, TypeAlias
 from .. import _utilities
 
 __all__ = ['MfaTotpArgs', 'MfaTotp']
@@ -458,7 +463,7 @@ class MfaTotp(pulumi.CustomResource):
         Resource can be imported using its `uuid` field, e.g.
 
         ```sh
-         $ pulumi import vault:identity/mfaTotp:MfaTotp example 0d89c36a-4ff5-4d70-8749-bb6a5598aeec
+        $ pulumi import vault:identity/mfaTotp:MfaTotp example 0d89c36a-4ff5-4d70-8749-bb6a5598aeec
         ```
 
         :param str resource_name: The name of the resource.
@@ -496,7 +501,7 @@ class MfaTotp(pulumi.CustomResource):
         Resource can be imported using its `uuid` field, e.g.
 
         ```sh
-         $ pulumi import vault:identity/mfaTotp:MfaTotp example 0d89c36a-4ff5-4d70-8749-bb6a5598aeec
+        $ pulumi import vault:identity/mfaTotp:MfaTotp example 0d89c36a-4ff5-4d70-8749-bb6a5598aeec
         ```
 
         :param str resource_name: The name of the resource.

pulumi_vault/identity/oidc.py

@@ -4,9 +4,14 @@
 
 import copy
 import warnings
+import sys
 import pulumi
 import pulumi.runtime
 from typing import Any, Mapping, Optional, Sequence, Union, overload
+if sys.version_info >= (3, 11):
+    from typing import NotRequired, TypedDict, TypeAlias
+else:
+    from typing_extensions import NotRequired, TypedDict, TypeAlias
 from .. import _utilities
 
 __all__ = ['OidcArgs', 'Oidc']
@@ -24,7 +29,7 @@ class OidcArgs:
                components.
         :param pulumi.Input[str] namespace: The namespace to provision the resource in.
                The value should not contain leading or trailing forward slashes.
-               The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault#namespace).
+               The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault/index.html#namespace).
                *Available only for Vault Enterprise*.
         """
         if issuer is not None:
@@ -53,7 +58,7 @@ class OidcArgs:
         """
         The namespace to provision the resource in.
         The value should not contain leading or trailing forward slashes.
-        The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault#namespace).
+        The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault/index.html#namespace).
         *Available only for Vault Enterprise*.
         """
         return pulumi.get(self, "namespace")
@@ -76,7 +81,7 @@ class _OidcState:
                components.
         :param pulumi.Input[str] namespace: The namespace to provision the resource in.
                The value should not contain leading or trailing forward slashes.
-               The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault#namespace).
+               The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault/index.html#namespace).
                *Available only for Vault Enterprise*.
         """
         if issuer is not None:
@@ -105,7 +110,7 @@ class _OidcState:
         """
         The namespace to provision the resource in.
         The value should not contain leading or trailing forward slashes.
-        The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault#namespace).
+        The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault/index.html#namespace).
         *Available only for Vault Enterprise*.
         """
         return pulumi.get(self, "namespace")
@@ -148,7 +153,7 @@ class Oidc(pulumi.CustomResource):
                components.
         :param pulumi.Input[str] namespace: The namespace to provision the resource in.
                The value should not contain leading or trailing forward slashes.
-               The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault#namespace).
+               The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault/index.html#namespace).
                *Available only for Vault Enterprise*.
         """
         ...
@@ -227,7 +232,7 @@ class Oidc(pulumi.CustomResource):
                components.
         :param pulumi.Input[str] namespace: The namespace to provision the resource in.
                The value should not contain leading or trailing forward slashes.
-               The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault#namespace).
+               The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault/index.html#namespace).
                *Available only for Vault Enterprise*.
         """
         opts = pulumi.ResourceOptions.merge(opts, pulumi.ResourceOptions(id=id))
@@ -255,7 +260,7 @@ class Oidc(pulumi.CustomResource):
         """
         The namespace to provision the resource in.
         The value should not contain leading or trailing forward slashes.
-        The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault#namespace).
+        The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault/index.html#namespace).
         *Available only for Vault Enterprise*.
         """
         return pulumi.get(self, "namespace")

pulumi_vault/identity/oidc_assignment.py

@@ -4,9 +4,14 @@
 
 import copy
 import warnings
+import sys
 import pulumi
 import pulumi.runtime
 from typing import Any, Mapping, Optional, Sequence, Union, overload
+if sys.version_info >= (3, 11):
+    from typing import NotRequired, TypedDict, TypeAlias
+else:
+    from typing_extensions import NotRequired, TypedDict, TypeAlias
 from .. import _utilities
 
 __all__ = ['OidcAssignmentArgs', 'OidcAssignment']
@@ -25,7 +30,7 @@ class OidcAssignmentArgs:
         :param pulumi.Input[str] name: The name of the assignment.
         :param pulumi.Input[str] namespace: The namespace to provision the resource in.
                The value should not contain leading or trailing forward slashes.
-               The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault#namespace).
+               The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault/index.html#namespace).
                *Available only for Vault Enterprise*.
         """
         if entity_ids is not None:
@@ -79,7 +84,7 @@ class OidcAssignmentArgs:
         """
         The namespace to provision the resource in.
         The value should not contain leading or trailing forward slashes.
-        The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault#namespace).
+        The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault/index.html#namespace).
         *Available only for Vault Enterprise*.
         """
         return pulumi.get(self, "namespace")
@@ -103,7 +108,7 @@ class _OidcAssignmentState:
         :param pulumi.Input[str] name: The name of the assignment.
         :param pulumi.Input[str] namespace: The namespace to provision the resource in.
                The value should not contain leading or trailing forward slashes.
-               The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault#namespace).
+               The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault/index.html#namespace).
                *Available only for Vault Enterprise*.
         """
         if entity_ids is not None:
@@ -157,7 +162,7 @@ class _OidcAssignmentState:
         """
         The namespace to provision the resource in.
         The value should not contain leading or trailing forward slashes.
-        The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault#namespace).
+        The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault/index.html#namespace).
         *Available only for Vault Enterprise*.
         """
         return pulumi.get(self, "namespace")
@@ -188,13 +193,17 @@ class OidcAssignment(pulumi.CustomResource):
         import pulumi_vault as vault
 
         internal = vault.identity.Group("internal",
+            name="internal",
             type="internal",
             policies=[
                 "dev",
                 "test",
             ])
-        test = vault.identity.Entity("test", policies=["test"])
+        test = vault.identity.Entity("test",
+            name="test",
+            policies=["test"])
         default = vault.identity.OidcAssignment("default",
+            name="assignment",
             entity_ids=[test.id],
             group_ids=[internal.id])
         ```
@@ -204,7 +213,7 @@ class OidcAssignment(pulumi.CustomResource):
         OIDC Assignments can be imported using the `name`, e.g.
 
         ```sh
-         $ pulumi import vault:identity/oidcAssignment:OidcAssignment default assignment
+        $ pulumi import vault:identity/oidcAssignment:OidcAssignment default assignment
         ```
 
         :param str resource_name: The name of the resource.
@@ -214,7 +223,7 @@ class OidcAssignment(pulumi.CustomResource):
         :param pulumi.Input[str] name: The name of the assignment.
         :param pulumi.Input[str] namespace: The namespace to provision the resource in.
                The value should not contain leading or trailing forward slashes.
-               The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault#namespace).
+               The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault/index.html#namespace).
                *Available only for Vault Enterprise*.
         """
         ...
@@ -234,13 +243,17 @@ class OidcAssignment(pulumi.CustomResource):
         import pulumi_vault as vault
 
         internal = vault.identity.Group("internal",
+            name="internal",
             type="internal",
             policies=[
                 "dev",
                 "test",
             ])
-        test = vault.identity.Entity("test", policies=["test"])
+        test = vault.identity.Entity("test",
+            name="test",
+            policies=["test"])
         default = vault.identity.OidcAssignment("default",
+            name="assignment",
             entity_ids=[test.id],
             group_ids=[internal.id])
         ```
@@ -250,7 +263,7 @@ class OidcAssignment(pulumi.CustomResource):
         OIDC Assignments can be imported using the `name`, e.g.
 
         ```sh
-         $ pulumi import vault:identity/oidcAssignment:OidcAssignment default assignment
+        $ pulumi import vault:identity/oidcAssignment:OidcAssignment default assignment
         ```
 
         :param str resource_name: The name of the resource.
@@ -311,7 +324,7 @@ class OidcAssignment(pulumi.CustomResource):
         :param pulumi.Input[str] name: The name of the assignment.
         :param pulumi.Input[str] namespace: The namespace to provision the resource in.
                The value should not contain leading or trailing forward slashes.
-               The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault#namespace).
+               The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault/index.html#namespace).
                *Available only for Vault Enterprise*.
         """
         opts = pulumi.ResourceOptions.merge(opts, pulumi.ResourceOptions(id=id))
@@ -354,7 +367,7 @@ class OidcAssignment(pulumi.CustomResource):
         """
         The namespace to provision the resource in.
         The value should not contain leading or trailing forward slashes.
-        The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault#namespace).
+        The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault/index.html#namespace).
         *Available only for Vault Enterprise*.
         """
         return pulumi.get(self, "namespace")

pulumi_vault/identity/oidc_client.py

@@ -4,9 +4,14 @@
 
 import copy
 import warnings
+import sys
 import pulumi
 import pulumi.runtime
 from typing import Any, Mapping, Optional, Sequence, Union, overload
+if sys.version_info >= (3, 11):
+    from typing import NotRequired, TypedDict, TypeAlias
+else:
+    from typing_extensions import NotRequired, TypedDict, TypeAlias
 from .. import _utilities
 
 __all__ = ['OidcClientArgs', 'OidcClient']
@@ -36,7 +41,7 @@ class OidcClientArgs:
         :param pulumi.Input[str] name: The name of the client.
         :param pulumi.Input[str] namespace: The namespace to provision the resource in.
                The value should not contain leading or trailing forward slashes.
-               The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault#namespace).
+               The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault/index.html#namespace).
                *Available only for Vault Enterprise*.
         :param pulumi.Input[Sequence[pulumi.Input[str]]] redirect_uris: Redirection URI values used by the client. 
                One of these values must exactly match the `redirect_uri` parameter value
@@ -141,7 +146,7 @@ class OidcClientArgs:
         """
         The namespace to provision the resource in.
         The value should not contain leading or trailing forward slashes.
-        The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault#namespace).
+        The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault/index.html#namespace).
         *Available only for Vault Enterprise*.
         """
         return pulumi.get(self, "namespace")
@@ -182,8 +187,9 @@ class _OidcClientState:
         Input properties used for looking up and filtering OidcClient resources.
         :param pulumi.Input[int] access_token_ttl: The time-to-live for access tokens obtained by the client.
         :param pulumi.Input[Sequence[pulumi.Input[str]]] assignments: A list of assignment resources associated with the client.
-        :param pulumi.Input[str] client_id: The Client ID from Vault.
-        :param pulumi.Input[str] client_secret: The Client Secret from Vault.
+        :param pulumi.Input[str] client_id: The Client ID returned by Vault.
+        :param pulumi.Input[str] client_secret: The Client Secret Key returned by Vault.
+               For public OpenID Clients `client_secret` is set to an empty string `""`
         :param pulumi.Input[str] client_type: The client type based on its ability to maintain confidentiality of credentials.
                The following client types are supported: `confidential`, `public`. Defaults to `confidential`.
         :param pulumi.Input[int] id_token_ttl: The time-to-live for ID tokens obtained by the client. 
@@ -194,7 +200,7 @@ class _OidcClientState:
         :param pulumi.Input[str] name: The name of the client.
         :param pulumi.Input[str] namespace: The namespace to provision the resource in.
                The value should not contain leading or trailing forward slashes.
-               The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault#namespace).
+               The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault/index.html#namespace).
                *Available only for Vault Enterprise*.
         :param pulumi.Input[Sequence[pulumi.Input[str]]] redirect_uris: Redirection URI values used by the client. 
                One of these values must exactly match the `redirect_uri` parameter value
@@ -249,7 +255,7 @@ class _OidcClientState:
     @pulumi.getter(name="clientId")
     def client_id(self) -> Optional[pulumi.Input[str]]:
         """
-        The Client ID from Vault.
+        The Client ID returned by Vault.
         """
         return pulumi.get(self, "client_id")
 
@@ -261,7 +267,8 @@ class _OidcClientState:
     @pulumi.getter(name="clientSecret")
     def client_secret(self) -> Optional[pulumi.Input[str]]:
         """
-        The Client Secret from Vault.
+        The Client Secret Key returned by Vault.
+        For public OpenID Clients `client_secret` is set to an empty string `""`
         """
         return pulumi.get(self, "client_secret")
 
@@ -327,7 +334,7 @@ class _OidcClientState:
         """
         The namespace to provision the resource in.
         The value should not contain leading or trailing forward slashes.
-        The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault#namespace).
+        The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault/index.html#namespace).
         *Available only for Vault Enterprise*.
         """
         return pulumi.get(self, "namespace")
@@ -375,16 +382,18 @@ class OidcClient(pulumi.CustomResource):
         import pulumi
         import pulumi_vault as vault
 
-        test_oidc_assignment = vault.identity.OidcAssignment("testOidcAssignment",
+        test = vault.identity.OidcAssignment("test",
+            name="my-assignment",
             entity_ids=["ascbascas-2231a-sdfaa"],
             group_ids=["sajkdsad-32414-sfsada"])
-        test_oidc_client = vault.identity.OidcClient("testOidcClient",
+        test_oidc_client = vault.identity.OidcClient("test",
+            name="my-app",
             redirect_uris=[
                 "http://127.0.0.1:9200/v1/auth-methods/oidc:authenticate:callback",
                 "http://127.0.0.1:8251/callback",
                 "http://127.0.0.1:8080/callback",
             ],
-            assignments=[test_oidc_assignment.name],
+            assignments=[test.name],
             id_token_ttl=2400,
             access_token_ttl=7200)
         ```
@@ -394,7 +403,7 @@ class OidcClient(pulumi.CustomResource):
         OIDC Clients can be imported using the `name`, e.g.
 
         ```sh
-         $ pulumi import vault:identity/oidcClient:OidcClient test my-app
+        $ pulumi import vault:identity/oidcClient:OidcClient test my-app
         ```
 
         :param str resource_name: The name of the resource.
@@ -411,7 +420,7 @@ class OidcClient(pulumi.CustomResource):
         :param pulumi.Input[str] name: The name of the client.
         :param pulumi.Input[str] namespace: The namespace to provision the resource in.
                The value should not contain leading or trailing forward slashes.
-               The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault#namespace).
+               The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault/index.html#namespace).
                *Available only for Vault Enterprise*.
         :param pulumi.Input[Sequence[pulumi.Input[str]]] redirect_uris: Redirection URI values used by the client. 
                One of these values must exactly match the `redirect_uri` parameter value
@@ -433,16 +442,18 @@ class OidcClient(pulumi.CustomResource):
         import pulumi
         import pulumi_vault as vault
 
-        test_oidc_assignment = vault.identity.OidcAssignment("testOidcAssignment",
+        test = vault.identity.OidcAssignment("test",
+            name="my-assignment",
             entity_ids=["ascbascas-2231a-sdfaa"],
             group_ids=["sajkdsad-32414-sfsada"])
-        test_oidc_client = vault.identity.OidcClient("testOidcClient",
+        test_oidc_client = vault.identity.OidcClient("test",
+            name="my-app",
             redirect_uris=[
                 "http://127.0.0.1:9200/v1/auth-methods/oidc:authenticate:callback",
                 "http://127.0.0.1:8251/callback",
                 "http://127.0.0.1:8080/callback",
             ],
-            assignments=[test_oidc_assignment.name],
+            assignments=[test.name],
             id_token_ttl=2400,
             access_token_ttl=7200)
         ```
@@ -452,7 +463,7 @@ class OidcClient(pulumi.CustomResource):
         OIDC Clients can be imported using the `name`, e.g.
 
         ```sh
-         $ pulumi import vault:identity/oidcClient:OidcClient test my-app
+        $ pulumi import vault:identity/oidcClient:OidcClient test my-app
         ```
 
         :param str resource_name: The name of the resource.
@@ -528,8 +539,9 @@ class OidcClient(pulumi.CustomResource):
         :param pulumi.ResourceOptions opts: Options for the resource.
         :param pulumi.Input[int] access_token_ttl: The time-to-live for access tokens obtained by the client.
         :param pulumi.Input[Sequence[pulumi.Input[str]]] assignments: A list of assignment resources associated with the client.
-        :param pulumi.Input[str] client_id: The Client ID from Vault.
-        :param pulumi.Input[str] client_secret: The Client Secret from Vault.
+        :param pulumi.Input[str] client_id: The Client ID returned by Vault.
+        :param pulumi.Input[str] client_secret: The Client Secret Key returned by Vault.
+               For public OpenID Clients `client_secret` is set to an empty string `""`
         :param pulumi.Input[str] client_type: The client type based on its ability to maintain confidentiality of credentials.
                The following client types are supported: `confidential`, `public`. Defaults to `confidential`.
         :param pulumi.Input[int] id_token_ttl: The time-to-live for ID tokens obtained by the client. 
@@ -540,7 +552,7 @@ class OidcClient(pulumi.CustomResource):
         :param pulumi.Input[str] name: The name of the client.
         :param pulumi.Input[str] namespace: The namespace to provision the resource in.
                The value should not contain leading or trailing forward slashes.
-               The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault#namespace).
+               The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault/index.html#namespace).
                *Available only for Vault Enterprise*.
         :param pulumi.Input[Sequence[pulumi.Input[str]]] redirect_uris: Redirection URI values used by the client. 
                One of these values must exactly match the `redirect_uri` parameter value
@@ -582,7 +594,7 @@ class OidcClient(pulumi.CustomResource):
     @pulumi.getter(name="clientId")
     def client_id(self) -> pulumi.Output[str]:
         """
-        The Client ID from Vault.
+        The Client ID returned by Vault.
         """
         return pulumi.get(self, "client_id")
 
@@ -590,7 +602,8 @@ class OidcClient(pulumi.CustomResource):
     @pulumi.getter(name="clientSecret")
     def client_secret(self) -> pulumi.Output[str]:
         """
-        The Client Secret from Vault.
+        The Client Secret Key returned by Vault.
+        For public OpenID Clients `client_secret` is set to an empty string `""`
         """
         return pulumi.get(self, "client_secret")
 
@@ -636,7 +649,7 @@ class OidcClient(pulumi.CustomResource):
         """
         The namespace to provision the resource in.
         The value should not contain leading or trailing forward slashes.
-        The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault#namespace).
+        The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault/index.html#namespace).
         *Available only for Vault Enterprise*.
         """
         return pulumi.get(self, "namespace")