PyPI - pulumi-vault - Versions diffs - 5.21.0a1709368526__py3-none-any.whl → 6.5.0a1736836139__py3-none-any.whl - Mend

pulumi-vault 5.21.0a1709368526py3-none-any.whl → 6.5.0a1736836139py3-none-any.whl

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (229) hide show

pulumi_vault/__init__.py +52 -0
pulumi_vault/_inputs.py +560 -0
pulumi_vault/_utilities.py +41 -5
pulumi_vault/ad/get_access_credentials.py +26 -9
pulumi_vault/ad/secret_backend.py +16 -142
pulumi_vault/ad/secret_library.py +16 -9
pulumi_vault/ad/secret_role.py +14 -9
pulumi_vault/alicloud/auth_backend_role.py +76 -190
pulumi_vault/approle/auth_backend_login.py +12 -7
pulumi_vault/approle/auth_backend_role.py +77 -191
pulumi_vault/approle/auth_backend_role_secret_id.py +106 -7
pulumi_vault/approle/get_auth_backend_role_id.py +18 -5
pulumi_vault/audit.py +30 -21
pulumi_vault/audit_request_header.py +11 -2
pulumi_vault/auth_backend.py +66 -14
pulumi_vault/aws/auth_backend_cert.py +18 -9
pulumi_vault/aws/auth_backend_client.py +267 -22
pulumi_vault/aws/auth_backend_config_identity.py +14 -9
pulumi_vault/aws/auth_backend_identity_whitelist.py +20 -15
pulumi_vault/aws/auth_backend_login.py +19 -22
pulumi_vault/aws/auth_backend_role.py +77 -191
pulumi_vault/aws/auth_backend_role_tag.py +12 -7
pulumi_vault/aws/auth_backend_roletag_blacklist.py +18 -13
pulumi_vault/aws/auth_backend_sts_role.py +14 -9
pulumi_vault/aws/get_access_credentials.py +38 -9
pulumi_vault/aws/get_static_access_credentials.py +19 -5
pulumi_vault/aws/secret_backend.py +77 -9
pulumi_vault/aws/secret_backend_role.py +185 -9
pulumi_vault/aws/secret_backend_static_role.py +20 -11
pulumi_vault/azure/_inputs.py +24 -0
pulumi_vault/azure/auth_backend_config.py +153 -15
pulumi_vault/azure/auth_backend_role.py +77 -191
pulumi_vault/azure/backend.py +227 -21
pulumi_vault/azure/backend_role.py +42 -37
pulumi_vault/azure/get_access_credentials.py +41 -7
pulumi_vault/azure/outputs.py +5 -0
pulumi_vault/cert_auth_backend_role.py +87 -267
pulumi_vault/config/__init__.pyi +5 -0
pulumi_vault/config/_inputs.py +73 -0
pulumi_vault/config/outputs.py +35 -0
pulumi_vault/config/ui_custom_message.py +529 -0
pulumi_vault/config/vars.py +5 -0
pulumi_vault/consul/secret_backend.py +28 -19
pulumi_vault/consul/secret_backend_role.py +18 -78
pulumi_vault/database/_inputs.py +2770 -881
pulumi_vault/database/outputs.py +721 -838
pulumi_vault/database/secret_backend_connection.py +119 -112
pulumi_vault/database/secret_backend_role.py +31 -22
pulumi_vault/database/secret_backend_static_role.py +87 -13
pulumi_vault/database/secrets_mount.py +427 -136
pulumi_vault/egp_policy.py +16 -11
pulumi_vault/gcp/_inputs.py +111 -0
pulumi_vault/gcp/auth_backend.py +250 -33
pulumi_vault/gcp/auth_backend_role.py +77 -269
pulumi_vault/gcp/get_auth_backend_role.py +43 -5
pulumi_vault/gcp/outputs.py +5 -0
pulumi_vault/gcp/secret_backend.py +287 -12
pulumi_vault/gcp/secret_impersonated_account.py +76 -15
pulumi_vault/gcp/secret_roleset.py +31 -24
pulumi_vault/gcp/secret_static_account.py +39 -32
pulumi_vault/generic/endpoint.py +24 -17
pulumi_vault/generic/get_secret.py +64 -8
pulumi_vault/generic/secret.py +21 -16
pulumi_vault/get_auth_backend.py +24 -7
pulumi_vault/get_auth_backends.py +51 -9
pulumi_vault/get_namespace.py +226 -0
pulumi_vault/get_namespaces.py +153 -0
pulumi_vault/get_nomad_access_token.py +31 -11
pulumi_vault/get_policy_document.py +34 -19
pulumi_vault/get_raft_autopilot_state.py +29 -10
pulumi_vault/github/_inputs.py +55 -0
pulumi_vault/github/auth_backend.py +19 -14
pulumi_vault/github/outputs.py +5 -0
pulumi_vault/github/team.py +16 -11
pulumi_vault/github/user.py +16 -11
pulumi_vault/identity/entity.py +20 -13
pulumi_vault/identity/entity_alias.py +20 -13
pulumi_vault/identity/entity_policies.py +28 -11
pulumi_vault/identity/get_entity.py +42 -10
pulumi_vault/identity/get_group.py +47 -9
pulumi_vault/identity/get_oidc_client_creds.py +21 -7
pulumi_vault/identity/get_oidc_openid_config.py +39 -9
pulumi_vault/identity/get_oidc_public_keys.py +29 -10
pulumi_vault/identity/group.py +58 -39
pulumi_vault/identity/group_alias.py +16 -9
pulumi_vault/identity/group_member_entity_ids.py +28 -66
pulumi_vault/identity/group_member_group_ids.py +40 -19
pulumi_vault/identity/group_policies.py +20 -7
pulumi_vault/identity/mfa_duo.py +11 -6
pulumi_vault/identity/mfa_login_enforcement.py +15 -6
pulumi_vault/identity/mfa_okta.py +11 -6
pulumi_vault/identity/mfa_pingid.py +7 -2
pulumi_vault/identity/mfa_totp.py +7 -2
pulumi_vault/identity/oidc.py +12 -7
pulumi_vault/identity/oidc_assignment.py +24 -11
pulumi_vault/identity/oidc_client.py +36 -23
pulumi_vault/identity/oidc_key.py +30 -17
pulumi_vault/identity/oidc_key_allowed_client_id.py +28 -15
pulumi_vault/identity/oidc_provider.py +36 -21
pulumi_vault/identity/oidc_role.py +42 -21
pulumi_vault/identity/oidc_scope.py +20 -13
pulumi_vault/identity/outputs.py +8 -3
pulumi_vault/jwt/_inputs.py +55 -0
pulumi_vault/jwt/auth_backend.py +45 -40
pulumi_vault/jwt/auth_backend_role.py +133 -254
pulumi_vault/jwt/outputs.py +5 -0
pulumi_vault/kmip/secret_backend.py +24 -19
pulumi_vault/kmip/secret_role.py +14 -9
pulumi_vault/kmip/secret_scope.py +14 -9
pulumi_vault/kubernetes/auth_backend_config.py +57 -5
pulumi_vault/kubernetes/auth_backend_role.py +70 -177
pulumi_vault/kubernetes/get_auth_backend_config.py +60 -8
pulumi_vault/kubernetes/get_auth_backend_role.py +40 -5
pulumi_vault/kubernetes/get_service_account_token.py +39 -11
pulumi_vault/kubernetes/secret_backend.py +316 -27
pulumi_vault/kubernetes/secret_backend_role.py +137 -46
pulumi_vault/kv/_inputs.py +36 -4
pulumi_vault/kv/get_secret.py +25 -8
pulumi_vault/kv/get_secret_subkeys_v2.py +33 -10
pulumi_vault/kv/get_secret_v2.py +85 -9
pulumi_vault/kv/get_secrets_list.py +24 -11
pulumi_vault/kv/get_secrets_list_v2.py +37 -15
pulumi_vault/kv/outputs.py +8 -3
pulumi_vault/kv/secret.py +23 -16
pulumi_vault/kv/secret_backend_v2.py +20 -11
pulumi_vault/kv/secret_v2.py +59 -50
pulumi_vault/ldap/auth_backend.py +127 -166
pulumi_vault/ldap/auth_backend_group.py +14 -9
pulumi_vault/ldap/auth_backend_user.py +14 -9
pulumi_vault/ldap/get_dynamic_credentials.py +23 -5
pulumi_vault/ldap/get_static_credentials.py +24 -5
pulumi_vault/ldap/secret_backend.py +354 -82
pulumi_vault/ldap/secret_backend_dynamic_role.py +18 -11
pulumi_vault/ldap/secret_backend_library_set.py +16 -9
pulumi_vault/ldap/secret_backend_static_role.py +73 -12
pulumi_vault/managed/_inputs.py +289 -132
pulumi_vault/managed/keys.py +29 -57
pulumi_vault/managed/outputs.py +89 -132
pulumi_vault/mfa_duo.py +18 -11
pulumi_vault/mfa_okta.py +18 -11
pulumi_vault/mfa_pingid.py +18 -11
pulumi_vault/mfa_totp.py +24 -17
pulumi_vault/mongodbatlas/secret_backend.py +20 -15
pulumi_vault/mongodbatlas/secret_role.py +47 -38
pulumi_vault/mount.py +391 -51
pulumi_vault/namespace.py +68 -83
pulumi_vault/nomad_secret_backend.py +18 -13
pulumi_vault/nomad_secret_role.py +14 -9
pulumi_vault/okta/_inputs.py +47 -8
pulumi_vault/okta/auth_backend.py +485 -39
pulumi_vault/okta/auth_backend_group.py +14 -9
pulumi_vault/okta/auth_backend_user.py +14 -9
pulumi_vault/okta/outputs.py +13 -8
pulumi_vault/outputs.py +5 -0
pulumi_vault/password_policy.py +20 -13
pulumi_vault/pkisecret/__init__.py +3 -0
pulumi_vault/pkisecret/_inputs.py +81 -0
pulumi_vault/pkisecret/backend_config_cluster.py +369 -0
pulumi_vault/pkisecret/backend_config_est.py +619 -0
pulumi_vault/pkisecret/get_backend_config_est.py +251 -0
pulumi_vault/pkisecret/get_backend_issuer.py +67 -9
pulumi_vault/pkisecret/get_backend_issuers.py +21 -8
pulumi_vault/pkisecret/get_backend_key.py +24 -9
pulumi_vault/pkisecret/get_backend_keys.py +21 -8
pulumi_vault/pkisecret/outputs.py +69 -0
pulumi_vault/pkisecret/secret_backend_cert.py +18 -11
pulumi_vault/pkisecret/secret_backend_config_ca.py +16 -11
pulumi_vault/pkisecret/secret_backend_config_issuers.py +14 -9
pulumi_vault/pkisecret/secret_backend_config_urls.py +67 -11
pulumi_vault/pkisecret/secret_backend_crl_config.py +14 -9
pulumi_vault/pkisecret/secret_backend_intermediate_cert_request.py +16 -11
pulumi_vault/pkisecret/secret_backend_intermediate_set_signed.py +22 -17
pulumi_vault/pkisecret/secret_backend_issuer.py +14 -9
pulumi_vault/pkisecret/secret_backend_key.py +14 -9
pulumi_vault/pkisecret/secret_backend_role.py +21 -14
pulumi_vault/pkisecret/secret_backend_root_cert.py +16 -48
pulumi_vault/pkisecret/secret_backend_root_sign_intermediate.py +18 -56
pulumi_vault/pkisecret/secret_backend_sign.py +18 -54
pulumi_vault/plugin.py +595 -0
pulumi_vault/plugin_pinned_version.py +298 -0
pulumi_vault/policy.py +14 -9
pulumi_vault/provider.py +48 -53
pulumi_vault/pulumi-plugin.json +2 -1
pulumi_vault/quota_lease_count.py +60 -6
pulumi_vault/quota_rate_limit.py +56 -2
pulumi_vault/rabbitmq/_inputs.py +61 -0
pulumi_vault/rabbitmq/outputs.py +5 -0
pulumi_vault/rabbitmq/secret_backend.py +18 -13
pulumi_vault/rabbitmq/secret_backend_role.py +54 -47
pulumi_vault/raft_autopilot.py +14 -9
pulumi_vault/raft_snapshot_agent_config.py +129 -224
pulumi_vault/rgp_policy.py +14 -9
pulumi_vault/saml/auth_backend.py +22 -17
pulumi_vault/saml/auth_backend_role.py +92 -197
pulumi_vault/secrets/__init__.py +3 -0
pulumi_vault/secrets/_inputs.py +110 -0
pulumi_vault/secrets/outputs.py +94 -0
pulumi_vault/secrets/sync_association.py +56 -71
pulumi_vault/secrets/sync_aws_destination.py +242 -27
pulumi_vault/secrets/sync_azure_destination.py +92 -31
pulumi_vault/secrets/sync_config.py +9 -4
pulumi_vault/secrets/sync_gcp_destination.py +158 -25
pulumi_vault/secrets/sync_gh_destination.py +189 -13
pulumi_vault/secrets/sync_github_apps.py +375 -0
pulumi_vault/secrets/sync_vercel_destination.py +74 -13
pulumi_vault/ssh/_inputs.py +28 -28
pulumi_vault/ssh/outputs.py +11 -28
pulumi_vault/ssh/secret_backend_ca.py +108 -9
pulumi_vault/ssh/secret_backend_role.py +85 -118
pulumi_vault/terraformcloud/secret_backend.py +7 -54
pulumi_vault/terraformcloud/secret_creds.py +14 -20
pulumi_vault/terraformcloud/secret_role.py +16 -74
pulumi_vault/token.py +28 -23
pulumi_vault/tokenauth/auth_backend_role.py +78 -199
pulumi_vault/transform/alphabet.py +16 -9
pulumi_vault/transform/get_decode.py +45 -17
pulumi_vault/transform/get_encode.py +45 -17
pulumi_vault/transform/role.py +16 -9
pulumi_vault/transform/template.py +30 -21
pulumi_vault/transform/transformation.py +12 -7
pulumi_vault/transit/get_decrypt.py +26 -21
pulumi_vault/transit/get_encrypt.py +24 -19
pulumi_vault/transit/secret_backend_key.py +27 -93
pulumi_vault/transit/secret_cache_config.py +12 -7
{pulumi_vault-5.21.0a1709368526.dist-info → pulumi_vault-6.5.0a1736836139.dist-info}/METADATA +8 -7
pulumi_vault-6.5.0a1736836139.dist-info/RECORD +256 -0
{pulumi_vault-5.21.0a1709368526.dist-info → pulumi_vault-6.5.0a1736836139.dist-info}/WHEEL +1 -1
pulumi_vault-5.21.0a1709368526.dist-info/RECORD +0 -244
{pulumi_vault-5.21.0a1709368526.dist-info → pulumi_vault-6.5.0a1736836139.dist-info}/top_level.txt +0 -0

pulumi_vault/kv/get_secret_subkeys_v2.py CHANGED Viewed

@@ -4,9 +4,14 @@
 import copy
 import warnings
+import sys
 import pulumi
 import pulumi.runtime
 from typing import Any, Mapping, Optional, Sequence, Union, overload
+if sys.version_info >= (3, 11):
+    from typing import NotRequired, TypedDict, TypeAlias
+else:
+    from typing_extensions import NotRequired, TypedDict, TypeAlias
 from .. import _utilities
 __all__ = [
@@ -52,7 +57,7 @@ class GetSecretSubkeysV2Result:
     @property
     @pulumi.getter
-    def data(self) -> Mapping[str, Any]:
+    def data(self) -> Mapping[str, str]:
         """
         Subkeys for the KV-V2 secret stored as a serialized map of strings.
         """
@@ -146,8 +151,9 @@ def get_secret_subkeys_v2(depth: Optional[int] = None,
             "version": "2",
         },
         description="KV Version 2 secret engine mount")
-    aws_secret = vault.kv.SecretV2("awsSecret",
+    aws_secret = vault.kv.SecretV2("aws_secret",
         mount=kvv2.path,
+        name="aws_secret",
         data_json=json.dumps({
             "zip": "zap",
             "foo": "bar",
@@ -155,6 +161,7 @@ def get_secret_subkeys_v2(depth: Optional[int] = None,
     test = vault.kv.get_secret_subkeys_v2_output(mount=kvv2.path,
         name=aws_secret.name)
     ```
     ## Required Vault Capabilities
     Use of this resource requires the `read` capability on the given path.
@@ -171,7 +178,7 @@ def get_secret_subkeys_v2(depth: Optional[int] = None,
            the name is `foo/bar/baz`.
     :param str namespace: The namespace of the target resource.
            The value should not contain leading or trailing forward slashes.
-           The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault#namespace).
+           The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault/index.html#namespace).
            *Available only for Vault Enterprise*.
     :param int version: Specifies the version to return. If not
            set the latest version is returned.
@@ -195,15 +202,12 @@ def get_secret_subkeys_v2(depth: Optional[int] = None,
         namespace=pulumi.get(__ret__, 'namespace'),
         path=pulumi.get(__ret__, 'path'),
         version=pulumi.get(__ret__, 'version'))
-@_utilities.lift_output_func(get_secret_subkeys_v2)
 def get_secret_subkeys_v2_output(depth: Optional[pulumi.Input[Optional[int]]] = None,
                                  mount: Optional[pulumi.Input[str]] = None,
                                  name: Optional[pulumi.Input[str]] = None,
                                  namespace: Optional[pulumi.Input[Optional[str]]] = None,
                                  version: Optional[pulumi.Input[Optional[int]]] = None,
-                                 opts: Optional[pulumi.InvokeOptions] = None) -> pulumi.Output[GetSecretSubkeysV2Result]:
+                                 opts: Optional[Union[pulumi.InvokeOptions, pulumi.InvokeOutputOptions]] = None) -> pulumi.Output[GetSecretSubkeysV2Result]:
     """
     ## Example Usage
@@ -219,8 +223,9 @@ def get_secret_subkeys_v2_output(depth: Optional[pulumi.Input[Optional[int]]] =
             "version": "2",
         },
         description="KV Version 2 secret engine mount")
-    aws_secret = vault.kv.SecretV2("awsSecret",
+    aws_secret = vault.kv.SecretV2("aws_secret",
         mount=kvv2.path,
+        name="aws_secret",
         data_json=json.dumps({
             "zip": "zap",
             "foo": "bar",
@@ -228,6 +233,7 @@ def get_secret_subkeys_v2_output(depth: Optional[pulumi.Input[Optional[int]]] =
     test = vault.kv.get_secret_subkeys_v2_output(mount=kvv2.path,
         name=aws_secret.name)
     ```
     ## Required Vault Capabilities
     Use of this resource requires the `read` capability on the given path.
@@ -244,9 +250,26 @@ def get_secret_subkeys_v2_output(depth: Optional[pulumi.Input[Optional[int]]] =
            the name is `foo/bar/baz`.
     :param str namespace: The namespace of the target resource.
            The value should not contain leading or trailing forward slashes.
-           The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault#namespace).
+           The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault/index.html#namespace).
            *Available only for Vault Enterprise*.
     :param int version: Specifies the version to return. If not
            set the latest version is returned.
     """
-    ...
+    __args__ = dict()
+    __args__['depth'] = depth
+    __args__['mount'] = mount
+    __args__['name'] = name
+    __args__['namespace'] = namespace
+    __args__['version'] = version
+    opts = pulumi.InvokeOutputOptions.merge(_utilities.get_invoke_opts_defaults(), opts)
+    __ret__ = pulumi.runtime.invoke_output('vault:kv/getSecretSubkeysV2:getSecretSubkeysV2', __args__, opts=opts, typ=GetSecretSubkeysV2Result)
+    return __ret__.apply(lambda __response__: GetSecretSubkeysV2Result(
+        data=pulumi.get(__response__, 'data'),
+        data_json=pulumi.get(__response__, 'data_json'),
+        depth=pulumi.get(__response__, 'depth'),
+        id=pulumi.get(__response__, 'id'),
+        mount=pulumi.get(__response__, 'mount'),
+        name=pulumi.get(__response__, 'name'),
+        namespace=pulumi.get(__response__, 'namespace'),
+        path=pulumi.get(__response__, 'path'),
+        version=pulumi.get(__response__, 'version')))

pulumi_vault/kv/get_secret_v2.py CHANGED Viewed

@@ -4,9 +4,14 @@
 import copy
 import warnings
+import sys
 import pulumi
 import pulumi.runtime
 from typing import Any, Mapping, Optional, Sequence, Union, overload
+if sys.version_info >= (3, 11):
+    from typing import NotRequired, TypedDict, TypeAlias
+else:
+    from typing_extensions import NotRequired, TypedDict, TypeAlias
 from .. import _utilities
 __all__ = [
@@ -69,7 +74,7 @@ class GetSecretV2Result:
     @property
     @pulumi.getter(name="customMetadata")
-    def custom_metadata(self) -> Mapping[str, Any]:
+    def custom_metadata(self) -> Mapping[str, str]:
         """
         Custom metadata for the secret.
         """
@@ -77,7 +82,7 @@ class GetSecretV2Result:
     @property
     @pulumi.getter
-    def data(self) -> Mapping[str, Any]:
+    def data(self) -> Mapping[str, str]:
         """
         A mapping whose keys are the top-level data keys returned from
         Vault and whose values are the corresponding values. This map can only
@@ -145,6 +150,9 @@ class GetSecretV2Result:
     @property
     @pulumi.getter
     def version(self) -> Optional[int]:
+        """
+        Version of the secret.
+        """
         return pulumi.get(self, "version")
@@ -174,6 +182,32 @@ def get_secret_v2(mount: Optional[str] = None,
                   version: Optional[int] = None,
                   opts: Optional[pulumi.InvokeOptions] = None) -> AwaitableGetSecretV2Result:
     """
+    ## Example Usage
+    ```python
+    import pulumi
+    import json
+    import pulumi_vault as vault
+    kvv2 = vault.Mount("kvv2",
+        path="kvv2",
+        type="kv",
+        options={
+            "version": "2",
+        },
+        description="KV Version 2 secret engine mount")
+    example_secret_v2 = vault.kv.SecretV2("example",
+        mount=kvv2.path,
+        name="secret",
+        delete_all_versions=True,
+        data_json=json.dumps({
+            "zip": "zap",
+            "foo": "bar",
+        }))
+    example = vault.kv.get_secret_v2_output(mount=kvv2.path,
+        name=example_secret_v2.name)
+    ```
     ## Required Vault Capabilities
     Use of this resource requires the `read` capability on the given path.
@@ -186,7 +220,7 @@ def get_secret_v2(mount: Optional[str] = None,
            the name is `foo/bar/baz`.
     :param str namespace: The namespace of the target resource.
            The value should not contain leading or trailing forward slashes.
-           The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault#namespace).
+           The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault/index.html#namespace).
            *Available only for Vault Enterprise*.
     :param int version: Version of the secret to retrieve.
     """
@@ -211,15 +245,38 @@ def get_secret_v2(mount: Optional[str] = None,
         namespace=pulumi.get(__ret__, 'namespace'),
         path=pulumi.get(__ret__, 'path'),
         version=pulumi.get(__ret__, 'version'))
-@_utilities.lift_output_func(get_secret_v2)
 def get_secret_v2_output(mount: Optional[pulumi.Input[str]] = None,
                          name: Optional[pulumi.Input[str]] = None,
                          namespace: Optional[pulumi.Input[Optional[str]]] = None,
                          version: Optional[pulumi.Input[Optional[int]]] = None,
-                         opts: Optional[pulumi.InvokeOptions] = None) -> pulumi.Output[GetSecretV2Result]:
+                         opts: Optional[Union[pulumi.InvokeOptions, pulumi.InvokeOutputOptions]] = None) -> pulumi.Output[GetSecretV2Result]:
     """
+    ## Example Usage
+    ```python
+    import pulumi
+    import json
+    import pulumi_vault as vault
+    kvv2 = vault.Mount("kvv2",
+        path="kvv2",
+        type="kv",
+        options={
+            "version": "2",
+        },
+        description="KV Version 2 secret engine mount")
+    example_secret_v2 = vault.kv.SecretV2("example",
+        mount=kvv2.path,
+        name="secret",
+        delete_all_versions=True,
+        data_json=json.dumps({
+            "zip": "zap",
+            "foo": "bar",
+        }))
+    example = vault.kv.get_secret_v2_output(mount=kvv2.path,
+        name=example_secret_v2.name)
+    ```
     ## Required Vault Capabilities
     Use of this resource requires the `read` capability on the given path.
@@ -232,8 +289,27 @@ def get_secret_v2_output(mount: Optional[pulumi.Input[str]] = None,
            the name is `foo/bar/baz`.
     :param str namespace: The namespace of the target resource.
            The value should not contain leading or trailing forward slashes.
-           The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault#namespace).
+           The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault/index.html#namespace).
            *Available only for Vault Enterprise*.
     :param int version: Version of the secret to retrieve.
     """
-    ...
+    __args__ = dict()
+    __args__['mount'] = mount
+    __args__['name'] = name
+    __args__['namespace'] = namespace
+    __args__['version'] = version
+    opts = pulumi.InvokeOutputOptions.merge(_utilities.get_invoke_opts_defaults(), opts)
+    __ret__ = pulumi.runtime.invoke_output('vault:kv/getSecretV2:getSecretV2', __args__, opts=opts, typ=GetSecretV2Result)
+    return __ret__.apply(lambda __response__: GetSecretV2Result(
+        created_time=pulumi.get(__response__, 'created_time'),
+        custom_metadata=pulumi.get(__response__, 'custom_metadata'),
+        data=pulumi.get(__response__, 'data'),
+        data_json=pulumi.get(__response__, 'data_json'),
+        deletion_time=pulumi.get(__response__, 'deletion_time'),
+        destroyed=pulumi.get(__response__, 'destroyed'),
+        id=pulumi.get(__response__, 'id'),
+        mount=pulumi.get(__response__, 'mount'),
+        name=pulumi.get(__response__, 'name'),
+        namespace=pulumi.get(__response__, 'namespace'),
+        path=pulumi.get(__response__, 'path'),
+        version=pulumi.get(__response__, 'version')))

pulumi_vault/kv/get_secrets_list.py CHANGED Viewed

@@ -4,9 +4,14 @@
 import copy
 import warnings
+import sys
 import pulumi
 import pulumi.runtime
 from typing import Any, Mapping, Optional, Sequence, Union, overload
+if sys.version_info >= (3, 11):
+    from typing import NotRequired, TypedDict, TypeAlias
+else:
+    from typing_extensions import NotRequired, TypedDict, TypeAlias
 from .. import _utilities
 __all__ = [
@@ -92,18 +97,19 @@ def get_secrets_list(namespace: Optional[str] = None,
             "version": "1",
         },
         description="KV Version 1 secret engine mount")
-    aws_secret = vault.kv.Secret("awsSecret",
+    aws_secret = vault.kv.Secret("aws_secret",
         path=kvv1.path.apply(lambda path: f"{path}/aws-secret"),
         data_json=json.dumps({
             "zip": "zap",
         }))
-    azure_secret = vault.kv.Secret("azureSecret",
+    azure_secret = vault.kv.Secret("azure_secret",
         path=kvv1.path.apply(lambda path: f"{path}/azure-secret"),
         data_json=json.dumps({
             "foo": "bar",
         }))
     secrets = vault.kv.get_secrets_list_output(path=kvv1.path)
     ```
     ## Required Vault Capabilities
     Use of this resource requires the `read` capability on the given path.
@@ -111,7 +117,7 @@ def get_secrets_list(namespace: Optional[str] = None,
     :param str namespace: The namespace of the target resource.
            The value should not contain leading or trailing forward slashes.
-           The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault#namespace).
+           The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault/index.html#namespace).
            *Available only for Vault Enterprise*.
     :param str path: Full KV-V1 path where secrets will be listed.
     """
@@ -126,12 +132,9 @@ def get_secrets_list(namespace: Optional[str] = None,
         names=pulumi.get(__ret__, 'names'),
         namespace=pulumi.get(__ret__, 'namespace'),
         path=pulumi.get(__ret__, 'path'))
-@_utilities.lift_output_func(get_secrets_list)
 def get_secrets_list_output(namespace: Optional[pulumi.Input[Optional[str]]] = None,
                             path: Optional[pulumi.Input[str]] = None,
-                            opts: Optional[pulumi.InvokeOptions] = None) -> pulumi.Output[GetSecretsListResult]:
+                            opts: Optional[Union[pulumi.InvokeOptions, pulumi.InvokeOutputOptions]] = None) -> pulumi.Output[GetSecretsListResult]:
     """
     ## Example Usage
@@ -147,18 +150,19 @@ def get_secrets_list_output(namespace: Optional[pulumi.Input[Optional[str]]] = N
             "version": "1",
         },
         description="KV Version 1 secret engine mount")
-    aws_secret = vault.kv.Secret("awsSecret",
+    aws_secret = vault.kv.Secret("aws_secret",
         path=kvv1.path.apply(lambda path: f"{path}/aws-secret"),
         data_json=json.dumps({
             "zip": "zap",
         }))
-    azure_secret = vault.kv.Secret("azureSecret",
+    azure_secret = vault.kv.Secret("azure_secret",
         path=kvv1.path.apply(lambda path: f"{path}/azure-secret"),
         data_json=json.dumps({
             "foo": "bar",
         }))
     secrets = vault.kv.get_secrets_list_output(path=kvv1.path)
     ```
     ## Required Vault Capabilities
     Use of this resource requires the `read` capability on the given path.
@@ -166,8 +170,17 @@ def get_secrets_list_output(namespace: Optional[pulumi.Input[Optional[str]]] = N
     :param str namespace: The namespace of the target resource.
            The value should not contain leading or trailing forward slashes.
-           The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault#namespace).
+           The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault/index.html#namespace).
            *Available only for Vault Enterprise*.
     :param str path: Full KV-V1 path where secrets will be listed.
     """
-    ...
+    __args__ = dict()
+    __args__['namespace'] = namespace
+    __args__['path'] = path
+    opts = pulumi.InvokeOutputOptions.merge(_utilities.get_invoke_opts_defaults(), opts)
+    __ret__ = pulumi.runtime.invoke_output('vault:kv/getSecretsList:getSecretsList', __args__, opts=opts, typ=GetSecretsListResult)
+    return __ret__.apply(lambda __response__: GetSecretsListResult(
+        id=pulumi.get(__response__, 'id'),
+        names=pulumi.get(__response__, 'names'),
+        namespace=pulumi.get(__response__, 'namespace'),
+        path=pulumi.get(__response__, 'path')))

pulumi_vault/kv/get_secrets_list_v2.py CHANGED Viewed

@@ -4,9 +4,14 @@
 import copy
 import warnings
+import sys
 import pulumi
 import pulumi.runtime
 from typing import Any, Mapping, Optional, Sequence, Union, overload
+if sys.version_info >= (3, 11):
+    from typing import NotRequired, TypedDict, TypeAlias
+else:
+    from typing_extensions import NotRequired, TypedDict, TypeAlias
 from .. import _utilities
 __all__ = [
@@ -114,25 +119,29 @@ def get_secrets_list_v2(mount: Optional[str] = None,
             "version": "2",
         },
         description="KV Version 2 secret engine mount")
-    aws_secret = vault.kv.SecretV2("awsSecret",
+    aws_secret = vault.kv.SecretV2("aws_secret",
         mount=kvv2.path,
+        name="aws_secret",
         data_json=json.dumps({
             "zip": "zap",
         }))
-    azure_secret = vault.kv.SecretV2("azureSecret",
+    azure_secret = vault.kv.SecretV2("azure_secret",
         mount=kvv2.path,
+        name="azure_secret",
         data_json=json.dumps({
             "foo": "bar",
         }))
-    nested_secret = vault.kv.SecretV2("nestedSecret",
+    nested_secret = vault.kv.SecretV2("nested_secret",
         mount=kvv2.path,
+        name=azure_secret.name.apply(lambda name: f"{name}/dev"),
         data_json=json.dumps({
             "password": "test",
         }))
     secrets = vault.kv.get_secrets_list_v2_output(mount=kvv2.path)
     nested_secrets = kvv2.path.apply(lambda path: vault.kv.get_secrets_list_v2_output(mount=path,
-        name=vault_kv_secret_v2["test_2"]["name"]))
+        name=test2["name"]))
     ```
     ## Required Vault Capabilities
     Use of this resource requires the `read` capability on the given path.
@@ -145,7 +154,7 @@ def get_secrets_list_v2(mount: Optional[str] = None,
            the name is `foo/bar/baz`.
     :param str namespace: The namespace of the target resource.
            The value should not contain leading or trailing forward slashes.
-           The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault#namespace).
+           The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault/index.html#namespace).
            *Available only for Vault Enterprise*.
     """
     __args__ = dict()
@@ -162,13 +171,10 @@ def get_secrets_list_v2(mount: Optional[str] = None,
         names=pulumi.get(__ret__, 'names'),
         namespace=pulumi.get(__ret__, 'namespace'),
         path=pulumi.get(__ret__, 'path'))
-@_utilities.lift_output_func(get_secrets_list_v2)
 def get_secrets_list_v2_output(mount: Optional[pulumi.Input[str]] = None,
                                name: Optional[pulumi.Input[Optional[str]]] = None,
                                namespace: Optional[pulumi.Input[Optional[str]]] = None,
-                               opts: Optional[pulumi.InvokeOptions] = None) -> pulumi.Output[GetSecretsListV2Result]:
+                               opts: Optional[Union[pulumi.InvokeOptions, pulumi.InvokeOutputOptions]] = None) -> pulumi.Output[GetSecretsListV2Result]:
     """
     ## Example Usage
@@ -184,25 +190,29 @@ def get_secrets_list_v2_output(mount: Optional[pulumi.Input[str]] = None,
             "version": "2",
         },
         description="KV Version 2 secret engine mount")
-    aws_secret = vault.kv.SecretV2("awsSecret",
+    aws_secret = vault.kv.SecretV2("aws_secret",
         mount=kvv2.path,
+        name="aws_secret",
         data_json=json.dumps({
             "zip": "zap",
         }))
-    azure_secret = vault.kv.SecretV2("azureSecret",
+    azure_secret = vault.kv.SecretV2("azure_secret",
         mount=kvv2.path,
+        name="azure_secret",
         data_json=json.dumps({
             "foo": "bar",
         }))
-    nested_secret = vault.kv.SecretV2("nestedSecret",
+    nested_secret = vault.kv.SecretV2("nested_secret",
         mount=kvv2.path,
+        name=azure_secret.name.apply(lambda name: f"{name}/dev"),
         data_json=json.dumps({
             "password": "test",
         }))
     secrets = vault.kv.get_secrets_list_v2_output(mount=kvv2.path)
     nested_secrets = kvv2.path.apply(lambda path: vault.kv.get_secrets_list_v2_output(mount=path,
-        name=vault_kv_secret_v2["test_2"]["name"]))
+        name=test2["name"]))
     ```
     ## Required Vault Capabilities
     Use of this resource requires the `read` capability on the given path.
@@ -215,7 +225,19 @@ def get_secrets_list_v2_output(mount: Optional[pulumi.Input[str]] = None,
            the name is `foo/bar/baz`.
     :param str namespace: The namespace of the target resource.
            The value should not contain leading or trailing forward slashes.
-           The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault#namespace).
+           The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault/index.html#namespace).
            *Available only for Vault Enterprise*.
     """
-    ...
+    __args__ = dict()
+    __args__['mount'] = mount
+    __args__['name'] = name
+    __args__['namespace'] = namespace
+    opts = pulumi.InvokeOutputOptions.merge(_utilities.get_invoke_opts_defaults(), opts)
+    __ret__ = pulumi.runtime.invoke_output('vault:kv/getSecretsListV2:getSecretsListV2', __args__, opts=opts, typ=GetSecretsListV2Result)
+    return __ret__.apply(lambda __response__: GetSecretsListV2Result(
+        id=pulumi.get(__response__, 'id'),
+        mount=pulumi.get(__response__, 'mount'),
+        name=pulumi.get(__response__, 'name'),
+        names=pulumi.get(__response__, 'names'),
+        namespace=pulumi.get(__response__, 'namespace'),
+        path=pulumi.get(__response__, 'path')))

pulumi_vault/kv/outputs.py CHANGED Viewed

@@ -4,9 +4,14 @@
 import copy
 import warnings
+import sys
 import pulumi
 import pulumi.runtime
 from typing import Any, Mapping, Optional, Sequence, Union, overload
+if sys.version_info >= (3, 11):
+    from typing import NotRequired, TypedDict, TypeAlias
+else:
+    from typing_extensions import NotRequired, TypedDict, TypeAlias
 from .. import _utilities
 __all__ = [
@@ -38,12 +43,12 @@ class SecretV2CustomMetadata(dict):
     def __init__(__self__, *,
                  cas_required: Optional[bool] = None,
-                 data: Optional[Mapping[str, Any]] = None,
+                 data: Optional[Mapping[str, str]] = None,
                  delete_version_after: Optional[int] = None,
                  max_versions: Optional[int] = None):
         """
         :param bool cas_required: If true, all keys will require the cas parameter to be set on all write requests.
-        :param Mapping[str, Any] data: A mapping whose keys are the top-level data keys returned from
+        :param Mapping[str, str] data: A mapping whose keys are the top-level data keys returned from
                Vault and whose values are the corresponding values. This map can only
                represent string data, so any non-string values returned from Vault are
                serialized as JSON.
@@ -69,7 +74,7 @@ class SecretV2CustomMetadata(dict):
     @property
     @pulumi.getter
-    def data(self) -> Optional[Mapping[str, Any]]:
+    def data(self) -> Optional[Mapping[str, str]]:
         """
         A mapping whose keys are the top-level data keys returned from
         Vault and whose values are the corresponding values. This map can only

pulumi-vault 5.21.0a1709368526__py3-none-any.whl → 6.5.0a1736836139__py3-none-any.whl

pulumi-vault 5.21.0a1709368526py3-none-any.whl → 6.5.0a1736836139py3-none-any.whl