pulumi-vault 5.21.0a1709368526__py3-none-any.whl → 6.5.0a1736836139__py3-none-any.whl

pulumi_vault/raft_snapshot_agent_config.py

@@ -4,9 +4,14 @@
 
 import copy
 import warnings
+import sys
 import pulumi
 import pulumi.runtime
 from typing import Any, Mapping, Optional, Sequence, Union, overload
+if sys.version_info >= (3, 11):
+    from typing import NotRequired, TypedDict, TypeAlias
+else:
+    from typing_extensions import NotRequired, TypedDict, TypeAlias
 from . import _utilities
 
 __all__ = ['RaftSnapshotAgentConfigArgs', 'RaftSnapshotAgentConfig']
@@ -53,49 +58,33 @@ class RaftSnapshotAgentConfigArgs:
                or "google-gcs". The remaining parameters described below are all specific to
                the selected `storage_type` and prefixed accordingly.
         :param pulumi.Input[str] aws_access_key_id: AWS access key ID.
-        :param pulumi.Input[str] aws_s3_bucket: `<required>` - S3 bucket to write snapshots to.
-        :param pulumi.Input[bool] aws_s3_disable_tls: Disable TLS for the S3 endpoint. This
-               should only be used for testing purposes, typically in conjunction with
-               `aws_s3_endpoint`.
+        :param pulumi.Input[str] aws_s3_bucket: S3 bucket to write snapshots to.
+        :param pulumi.Input[bool] aws_s3_disable_tls: Disable TLS for the S3 endpoint. This should only be used for testing purposes.
         :param pulumi.Input[bool] aws_s3_enable_kms: Use KMS to encrypt bucket contents.
-        :param pulumi.Input[str] aws_s3_endpoint: AWS endpoint. This is typically only set when
-               using a non-AWS S3 implementation like Minio.
-        :param pulumi.Input[bool] aws_s3_force_path_style: Use the endpoint/bucket URL style
-               instead of bucket.endpoint. May be needed when setting `aws_s3_endpoint`.
-        :param pulumi.Input[str] aws_s3_kms_key: Use named KMS key, when `aws_s3_enable_kms = true`
-        :param pulumi.Input[str] aws_s3_region: `<required>` - AWS region bucket is in.
+        :param pulumi.Input[str] aws_s3_endpoint: AWS endpoint. This is typically only set when using a non-AWS S3 implementation like Minio.
+        :param pulumi.Input[bool] aws_s3_force_path_style: Use the endpoint/bucket URL style instead of bucket.endpoint.
+        :param pulumi.Input[str] aws_s3_kms_key: Use named KMS key, when aws_s3_enable_kms=true
+        :param pulumi.Input[str] aws_s3_region: AWS region bucket is in.
         :param pulumi.Input[bool] aws_s3_server_side_encryption: Use AES256 to encrypt bucket contents.
         :param pulumi.Input[str] aws_secret_access_key: AWS secret access key.
         :param pulumi.Input[str] aws_session_token: AWS session token.
         :param pulumi.Input[str] azure_account_key: Azure account key.
         :param pulumi.Input[str] azure_account_name: Azure account name.
         :param pulumi.Input[str] azure_blob_environment: Azure blob environment.
-        :param pulumi.Input[str] azure_container_name: `<required>` - Azure container name to write
-               snapshots to.
-        :param pulumi.Input[str] azure_endpoint: Azure blob storage endpoint. This is typically
-               only set when using a non-Azure implementation like Azurite.
+        :param pulumi.Input[str] azure_container_name: Azure container name to write snapshots to.
+        :param pulumi.Input[str] azure_endpoint: Azure blob storage endpoint. This is typically only set when using a non-Azure implementation like Azurite.
         :param pulumi.Input[str] file_prefix: Within the directory or bucket
                prefix given by `path_prefix`, the file or object name of snapshot files
                will start with this string.
-        :param pulumi.Input[bool] google_disable_tls: Disable TLS for the GCS endpoint. This
-               should only be used for testing purposes, typically in conjunction with
-               `google_endpoint`.
-        :param pulumi.Input[str] google_endpoint: GCS endpoint. This is typically only set when
-               using a non-Google GCS implementation like fake-gcs-server.
-        :param pulumi.Input[str] google_gcs_bucket: `<required>` - GCS bucket to write snapshots to.
-        :param pulumi.Input[str] google_service_account_key: Google service account key in JSON format. 
-               The raw value looks like this:
-               
-               ```python
-               import pulumi
-               ```
-        :param pulumi.Input[int] local_max_space: For `storage_type = local`, the maximum
-               space, in bytes, to use for snapshots. Snapshot attempts will fail if there is not enough
-               space left in this allowance.
+        :param pulumi.Input[bool] google_disable_tls: Disable TLS for the GCS endpoint.
+        :param pulumi.Input[str] google_endpoint: GCS endpoint. This is typically only set when using a non-Google GCS implementation like fake-gcs-server.
+        :param pulumi.Input[str] google_gcs_bucket: GCS bucket to write snapshots to.
+        :param pulumi.Input[str] google_service_account_key: Google service account key in JSON format.
+        :param pulumi.Input[int] local_max_space: The maximum space, in bytes, to use for snapshots.
         :param pulumi.Input[str] name: `<required>` – Name of the configuration to modify.
         :param pulumi.Input[str] namespace: The namespace to provision the resource in.
                The value should not contain leading or trailing forward slashes.
-               The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault#namespace).
+               The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault/index.html#namespace).
                *Available only for Vault Enterprise*.
         :param pulumi.Input[int] retain: How many snapshots are to be kept; when writing a
                snapshot, if there are more snapshots already stored than this number, the
@@ -212,7 +201,7 @@ class RaftSnapshotAgentConfigArgs:
     @pulumi.getter(name="awsS3Bucket")
     def aws_s3_bucket(self) -> Optional[pulumi.Input[str]]:
         """
-        `<required>` - S3 bucket to write snapshots to.
+        S3 bucket to write snapshots to.
         """
         return pulumi.get(self, "aws_s3_bucket")
 
@@ -224,9 +213,7 @@ class RaftSnapshotAgentConfigArgs:
     @pulumi.getter(name="awsS3DisableTls")
     def aws_s3_disable_tls(self) -> Optional[pulumi.Input[bool]]:
         """
-        Disable TLS for the S3 endpoint. This
-        should only be used for testing purposes, typically in conjunction with
-        `aws_s3_endpoint`.
+        Disable TLS for the S3 endpoint. This should only be used for testing purposes.
         """
         return pulumi.get(self, "aws_s3_disable_tls")
 
@@ -250,8 +237,7 @@ class RaftSnapshotAgentConfigArgs:
     @pulumi.getter(name="awsS3Endpoint")
     def aws_s3_endpoint(self) -> Optional[pulumi.Input[str]]:
         """
-        AWS endpoint. This is typically only set when
-        using a non-AWS S3 implementation like Minio.
+        AWS endpoint. This is typically only set when using a non-AWS S3 implementation like Minio.
         """
         return pulumi.get(self, "aws_s3_endpoint")
 
@@ -263,8 +249,7 @@ class RaftSnapshotAgentConfigArgs:
     @pulumi.getter(name="awsS3ForcePathStyle")
     def aws_s3_force_path_style(self) -> Optional[pulumi.Input[bool]]:
         """
-        Use the endpoint/bucket URL style
-        instead of bucket.endpoint. May be needed when setting `aws_s3_endpoint`.
+        Use the endpoint/bucket URL style instead of bucket.endpoint.
         """
         return pulumi.get(self, "aws_s3_force_path_style")
 
@@ -276,7 +261,7 @@ class RaftSnapshotAgentConfigArgs:
     @pulumi.getter(name="awsS3KmsKey")
     def aws_s3_kms_key(self) -> Optional[pulumi.Input[str]]:
         """
-        Use named KMS key, when `aws_s3_enable_kms = true`
+        Use named KMS key, when aws_s3_enable_kms=true
         """
         return pulumi.get(self, "aws_s3_kms_key")
 
@@ -288,7 +273,7 @@ class RaftSnapshotAgentConfigArgs:
     @pulumi.getter(name="awsS3Region")
     def aws_s3_region(self) -> Optional[pulumi.Input[str]]:
         """
-        `<required>` - AWS region bucket is in.
+        AWS region bucket is in.
         """
         return pulumi.get(self, "aws_s3_region")
 
@@ -372,8 +357,7 @@ class RaftSnapshotAgentConfigArgs:
     @pulumi.getter(name="azureContainerName")
     def azure_container_name(self) -> Optional[pulumi.Input[str]]:
         """
-        `<required>` - Azure container name to write
-        snapshots to.
+        Azure container name to write snapshots to.
         """
         return pulumi.get(self, "azure_container_name")
 
@@ -385,8 +369,7 @@ class RaftSnapshotAgentConfigArgs:
     @pulumi.getter(name="azureEndpoint")
     def azure_endpoint(self) -> Optional[pulumi.Input[str]]:
         """
-        Azure blob storage endpoint. This is typically
-        only set when using a non-Azure implementation like Azurite.
+        Azure blob storage endpoint. This is typically only set when using a non-Azure implementation like Azurite.
         """
         return pulumi.get(self, "azure_endpoint")
 
@@ -412,9 +395,7 @@ class RaftSnapshotAgentConfigArgs:
     @pulumi.getter(name="googleDisableTls")
     def google_disable_tls(self) -> Optional[pulumi.Input[bool]]:
         """
-        Disable TLS for the GCS endpoint. This
-        should only be used for testing purposes, typically in conjunction with
-        `google_endpoint`.
+        Disable TLS for the GCS endpoint.
         """
         return pulumi.get(self, "google_disable_tls")
 
@@ -426,8 +407,7 @@ class RaftSnapshotAgentConfigArgs:
     @pulumi.getter(name="googleEndpoint")
     def google_endpoint(self) -> Optional[pulumi.Input[str]]:
         """
-        GCS endpoint. This is typically only set when
-        using a non-Google GCS implementation like fake-gcs-server.
+        GCS endpoint. This is typically only set when using a non-Google GCS implementation like fake-gcs-server.
         """
         return pulumi.get(self, "google_endpoint")
 
@@ -439,7 +419,7 @@ class RaftSnapshotAgentConfigArgs:
     @pulumi.getter(name="googleGcsBucket")
     def google_gcs_bucket(self) -> Optional[pulumi.Input[str]]:
         """
-        `<required>` - GCS bucket to write snapshots to.
+        GCS bucket to write snapshots to.
         """
         return pulumi.get(self, "google_gcs_bucket")
 
@@ -451,12 +431,7 @@ class RaftSnapshotAgentConfigArgs:
     @pulumi.getter(name="googleServiceAccountKey")
     def google_service_account_key(self) -> Optional[pulumi.Input[str]]:
         """
-        Google service account key in JSON format. 
-        The raw value looks like this:
-
-        ```python
-        import pulumi
-        ```
+        Google service account key in JSON format.
         """
         return pulumi.get(self, "google_service_account_key")
 
@@ -468,9 +443,7 @@ class RaftSnapshotAgentConfigArgs:
     @pulumi.getter(name="localMaxSpace")
     def local_max_space(self) -> Optional[pulumi.Input[int]]:
         """
-        For `storage_type = local`, the maximum
-        space, in bytes, to use for snapshots. Snapshot attempts will fail if there is not enough
-        space left in this allowance.
+        The maximum space, in bytes, to use for snapshots.
         """
         return pulumi.get(self, "local_max_space")
 
@@ -496,7 +469,7 @@ class RaftSnapshotAgentConfigArgs:
         """
         The namespace to provision the resource in.
         The value should not contain leading or trailing forward slashes.
-        The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault#namespace).
+        The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault/index.html#namespace).
         *Available only for Vault Enterprise*.
         """
         return pulumi.get(self, "namespace")
@@ -554,50 +527,34 @@ class _RaftSnapshotAgentConfigState:
         """
         Input properties used for looking up and filtering RaftSnapshotAgentConfig resources.
         :param pulumi.Input[str] aws_access_key_id: AWS access key ID.
-        :param pulumi.Input[str] aws_s3_bucket: `<required>` - S3 bucket to write snapshots to.
-        :param pulumi.Input[bool] aws_s3_disable_tls: Disable TLS for the S3 endpoint. This
-               should only be used for testing purposes, typically in conjunction with
-               `aws_s3_endpoint`.
+        :param pulumi.Input[str] aws_s3_bucket: S3 bucket to write snapshots to.
+        :param pulumi.Input[bool] aws_s3_disable_tls: Disable TLS for the S3 endpoint. This should only be used for testing purposes.
         :param pulumi.Input[bool] aws_s3_enable_kms: Use KMS to encrypt bucket contents.
-        :param pulumi.Input[str] aws_s3_endpoint: AWS endpoint. This is typically only set when
-               using a non-AWS S3 implementation like Minio.
-        :param pulumi.Input[bool] aws_s3_force_path_style: Use the endpoint/bucket URL style
-               instead of bucket.endpoint. May be needed when setting `aws_s3_endpoint`.
-        :param pulumi.Input[str] aws_s3_kms_key: Use named KMS key, when `aws_s3_enable_kms = true`
-        :param pulumi.Input[str] aws_s3_region: `<required>` - AWS region bucket is in.
+        :param pulumi.Input[str] aws_s3_endpoint: AWS endpoint. This is typically only set when using a non-AWS S3 implementation like Minio.
+        :param pulumi.Input[bool] aws_s3_force_path_style: Use the endpoint/bucket URL style instead of bucket.endpoint.
+        :param pulumi.Input[str] aws_s3_kms_key: Use named KMS key, when aws_s3_enable_kms=true
+        :param pulumi.Input[str] aws_s3_region: AWS region bucket is in.
         :param pulumi.Input[bool] aws_s3_server_side_encryption: Use AES256 to encrypt bucket contents.
         :param pulumi.Input[str] aws_secret_access_key: AWS secret access key.
         :param pulumi.Input[str] aws_session_token: AWS session token.
         :param pulumi.Input[str] azure_account_key: Azure account key.
         :param pulumi.Input[str] azure_account_name: Azure account name.
         :param pulumi.Input[str] azure_blob_environment: Azure blob environment.
-        :param pulumi.Input[str] azure_container_name: `<required>` - Azure container name to write
-               snapshots to.
-        :param pulumi.Input[str] azure_endpoint: Azure blob storage endpoint. This is typically
-               only set when using a non-Azure implementation like Azurite.
+        :param pulumi.Input[str] azure_container_name: Azure container name to write snapshots to.
+        :param pulumi.Input[str] azure_endpoint: Azure blob storage endpoint. This is typically only set when using a non-Azure implementation like Azurite.
         :param pulumi.Input[str] file_prefix: Within the directory or bucket
                prefix given by `path_prefix`, the file or object name of snapshot files
                will start with this string.
-        :param pulumi.Input[bool] google_disable_tls: Disable TLS for the GCS endpoint. This
-               should only be used for testing purposes, typically in conjunction with
-               `google_endpoint`.
-        :param pulumi.Input[str] google_endpoint: GCS endpoint. This is typically only set when
-               using a non-Google GCS implementation like fake-gcs-server.
-        :param pulumi.Input[str] google_gcs_bucket: `<required>` - GCS bucket to write snapshots to.
-        :param pulumi.Input[str] google_service_account_key: Google service account key in JSON format. 
-               The raw value looks like this:
-               
-               ```python
-               import pulumi
-               ```
+        :param pulumi.Input[bool] google_disable_tls: Disable TLS for the GCS endpoint.
+        :param pulumi.Input[str] google_endpoint: GCS endpoint. This is typically only set when using a non-Google GCS implementation like fake-gcs-server.
+        :param pulumi.Input[str] google_gcs_bucket: GCS bucket to write snapshots to.
+        :param pulumi.Input[str] google_service_account_key: Google service account key in JSON format.
         :param pulumi.Input[int] interval_seconds: `<required>` - Time (in seconds) between snapshots.
-        :param pulumi.Input[int] local_max_space: For `storage_type = local`, the maximum
-               space, in bytes, to use for snapshots. Snapshot attempts will fail if there is not enough
-               space left in this allowance.
+        :param pulumi.Input[int] local_max_space: The maximum space, in bytes, to use for snapshots.
         :param pulumi.Input[str] name: `<required>` – Name of the configuration to modify.
         :param pulumi.Input[str] namespace: The namespace to provision the resource in.
                The value should not contain leading or trailing forward slashes.
-               The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault#namespace).
+               The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault/index.html#namespace).
                *Available only for Vault Enterprise*.
         :param pulumi.Input[str] path_prefix: `<required>` - For `storage_type = "local"`, the directory to
                write the snapshots in. For cloud storage types, the bucket prefix to use.
@@ -683,7 +640,7 @@ class _RaftSnapshotAgentConfigState:
     @pulumi.getter(name="awsS3Bucket")
     def aws_s3_bucket(self) -> Optional[pulumi.Input[str]]:
         """
-        `<required>` - S3 bucket to write snapshots to.
+        S3 bucket to write snapshots to.
         """
         return pulumi.get(self, "aws_s3_bucket")
 
@@ -695,9 +652,7 @@ class _RaftSnapshotAgentConfigState:
     @pulumi.getter(name="awsS3DisableTls")
     def aws_s3_disable_tls(self) -> Optional[pulumi.Input[bool]]:
         """
-        Disable TLS for the S3 endpoint. This
-        should only be used for testing purposes, typically in conjunction with
-        `aws_s3_endpoint`.
+        Disable TLS for the S3 endpoint. This should only be used for testing purposes.
         """
         return pulumi.get(self, "aws_s3_disable_tls")
 
@@ -721,8 +676,7 @@ class _RaftSnapshotAgentConfigState:
     @pulumi.getter(name="awsS3Endpoint")
     def aws_s3_endpoint(self) -> Optional[pulumi.Input[str]]:
         """
-        AWS endpoint. This is typically only set when
-        using a non-AWS S3 implementation like Minio.
+        AWS endpoint. This is typically only set when using a non-AWS S3 implementation like Minio.
         """
         return pulumi.get(self, "aws_s3_endpoint")
 
@@ -734,8 +688,7 @@ class _RaftSnapshotAgentConfigState:
     @pulumi.getter(name="awsS3ForcePathStyle")
     def aws_s3_force_path_style(self) -> Optional[pulumi.Input[bool]]:
         """
-        Use the endpoint/bucket URL style
-        instead of bucket.endpoint. May be needed when setting `aws_s3_endpoint`.
+        Use the endpoint/bucket URL style instead of bucket.endpoint.
         """
         return pulumi.get(self, "aws_s3_force_path_style")
 
@@ -747,7 +700,7 @@ class _RaftSnapshotAgentConfigState:
     @pulumi.getter(name="awsS3KmsKey")
     def aws_s3_kms_key(self) -> Optional[pulumi.Input[str]]:
         """
-        Use named KMS key, when `aws_s3_enable_kms = true`
+        Use named KMS key, when aws_s3_enable_kms=true
         """
         return pulumi.get(self, "aws_s3_kms_key")
 
@@ -759,7 +712,7 @@ class _RaftSnapshotAgentConfigState:
     @pulumi.getter(name="awsS3Region")
     def aws_s3_region(self) -> Optional[pulumi.Input[str]]:
         """
-        `<required>` - AWS region bucket is in.
+        AWS region bucket is in.
         """
         return pulumi.get(self, "aws_s3_region")
 
@@ -843,8 +796,7 @@ class _RaftSnapshotAgentConfigState:
     @pulumi.getter(name="azureContainerName")
     def azure_container_name(self) -> Optional[pulumi.Input[str]]:
         """
-        `<required>` - Azure container name to write
-        snapshots to.
+        Azure container name to write snapshots to.
         """
         return pulumi.get(self, "azure_container_name")
 
@@ -856,8 +808,7 @@ class _RaftSnapshotAgentConfigState:
     @pulumi.getter(name="azureEndpoint")
     def azure_endpoint(self) -> Optional[pulumi.Input[str]]:
         """
-        Azure blob storage endpoint. This is typically
-        only set when using a non-Azure implementation like Azurite.
+        Azure blob storage endpoint. This is typically only set when using a non-Azure implementation like Azurite.
         """
         return pulumi.get(self, "azure_endpoint")
 
@@ -883,9 +834,7 @@ class _RaftSnapshotAgentConfigState:
     @pulumi.getter(name="googleDisableTls")
     def google_disable_tls(self) -> Optional[pulumi.Input[bool]]:
         """
-        Disable TLS for the GCS endpoint. This
-        should only be used for testing purposes, typically in conjunction with
-        `google_endpoint`.
+        Disable TLS for the GCS endpoint.
         """
         return pulumi.get(self, "google_disable_tls")
 
@@ -897,8 +846,7 @@ class _RaftSnapshotAgentConfigState:
     @pulumi.getter(name="googleEndpoint")
     def google_endpoint(self) -> Optional[pulumi.Input[str]]:
         """
-        GCS endpoint. This is typically only set when
-        using a non-Google GCS implementation like fake-gcs-server.
+        GCS endpoint. This is typically only set when using a non-Google GCS implementation like fake-gcs-server.
         """
         return pulumi.get(self, "google_endpoint")
 
@@ -910,7 +858,7 @@ class _RaftSnapshotAgentConfigState:
     @pulumi.getter(name="googleGcsBucket")
     def google_gcs_bucket(self) -> Optional[pulumi.Input[str]]:
         """
-        `<required>` - GCS bucket to write snapshots to.
+        GCS bucket to write snapshots to.
         """
         return pulumi.get(self, "google_gcs_bucket")
 
@@ -922,12 +870,7 @@ class _RaftSnapshotAgentConfigState:
     @pulumi.getter(name="googleServiceAccountKey")
     def google_service_account_key(self) -> Optional[pulumi.Input[str]]:
         """
-        Google service account key in JSON format. 
-        The raw value looks like this:
-
-        ```python
-        import pulumi
-        ```
+        Google service account key in JSON format.
         """
         return pulumi.get(self, "google_service_account_key")
 
@@ -951,9 +894,7 @@ class _RaftSnapshotAgentConfigState:
     @pulumi.getter(name="localMaxSpace")
     def local_max_space(self) -> Optional[pulumi.Input[int]]:
         """
-        For `storage_type = local`, the maximum
-        space, in bytes, to use for snapshots. Snapshot attempts will fail if there is not enough
-        space left in this allowance.
+        The maximum space, in bytes, to use for snapshots.
         """
         return pulumi.get(self, "local_max_space")
 
@@ -979,7 +920,7 @@ class _RaftSnapshotAgentConfigState:
         """
         The namespace to provision the resource in.
         The value should not contain leading or trailing forward slashes.
-        The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault#namespace).
+        The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault/index.html#namespace).
         *Available only for Vault Enterprise*.
         """
         return pulumi.get(self, "namespace")
@@ -1068,18 +1009,21 @@ class RaftSnapshotAgentConfig(pulumi.CustomResource):
                  __props__=None):
         """
         ## Example Usage
+
         ### Local Storage
         ```python
         import pulumi
         import pulumi_vault as vault
 
-        local_backups = vault.RaftSnapshotAgentConfig("localBackups",
+        local_backups = vault.RaftSnapshotAgentConfig("local_backups",
+            name="local",
             interval_seconds=86400,
-            local_max_space=10000000,
-            path_prefix="/opt/vault/snapshots/",
             retain=7,
-            storage_type="local")
+            path_prefix="/opt/vault/snapshots/",
+            storage_type="local",
+            local_max_space=10000000)
         ```
+
         ### AWS S3
         ```python
         import pulumi
@@ -1090,7 +1034,8 @@ class RaftSnapshotAgentConfig(pulumi.CustomResource):
         aws_access_key_id = config.require_object("awsAccessKeyId")
         aws_secret_access_key = config.require_object("awsSecretAccessKey")
         current = aws.get_region()
-        s3_backups = vault.RaftSnapshotAgentConfig("s3Backups",
+        s3_backups = vault.RaftSnapshotAgentConfig("s3_backups",
+            name="s3",
             interval_seconds=86400,
             retain=7,
             path_prefix="/path/in/bucket",
@@ -1101,6 +1046,7 @@ class RaftSnapshotAgentConfig(pulumi.CustomResource):
             aws_secret_access_key=aws_secret_access_key,
             aws_s3_enable_kms=True)
         ```
+
         ### Azure BLOB
 
         ```python
@@ -1110,7 +1056,8 @@ class RaftSnapshotAgentConfig(pulumi.CustomResource):
         config = pulumi.Config()
         azure_account_name = config.require_object("azureAccountName")
         azure_account_key = config.require_object("azureAccountKey")
-        azure_backups = vault.RaftSnapshotAgentConfig("azureBackups",
+        azure_backups = vault.RaftSnapshotAgentConfig("azure_backups",
+            name="azure_backup",
             interval_seconds=86400,
             retain=7,
             path_prefix="/",
@@ -1125,56 +1072,40 @@ class RaftSnapshotAgentConfig(pulumi.CustomResource):
         Raft Snapshot Agent Configurations can be imported using the `name`, e.g.
 
         ```sh
-         $ pulumi import vault:index/raftSnapshotAgentConfig:RaftSnapshotAgentConfig local local
+        $ pulumi import vault:index/raftSnapshotAgentConfig:RaftSnapshotAgentConfig local local
         ```
 
         :param str resource_name: The name of the resource.
         :param pulumi.ResourceOptions opts: Options for the resource.
         :param pulumi.Input[str] aws_access_key_id: AWS access key ID.
-        :param pulumi.Input[str] aws_s3_bucket: `<required>` - S3 bucket to write snapshots to.
-        :param pulumi.Input[bool] aws_s3_disable_tls: Disable TLS for the S3 endpoint. This
-               should only be used for testing purposes, typically in conjunction with
-               `aws_s3_endpoint`.
+        :param pulumi.Input[str] aws_s3_bucket: S3 bucket to write snapshots to.
+        :param pulumi.Input[bool] aws_s3_disable_tls: Disable TLS for the S3 endpoint. This should only be used for testing purposes.
         :param pulumi.Input[bool] aws_s3_enable_kms: Use KMS to encrypt bucket contents.
-        :param pulumi.Input[str] aws_s3_endpoint: AWS endpoint. This is typically only set when
-               using a non-AWS S3 implementation like Minio.
-        :param pulumi.Input[bool] aws_s3_force_path_style: Use the endpoint/bucket URL style
-               instead of bucket.endpoint. May be needed when setting `aws_s3_endpoint`.
-        :param pulumi.Input[str] aws_s3_kms_key: Use named KMS key, when `aws_s3_enable_kms = true`
-        :param pulumi.Input[str] aws_s3_region: `<required>` - AWS region bucket is in.
+        :param pulumi.Input[str] aws_s3_endpoint: AWS endpoint. This is typically only set when using a non-AWS S3 implementation like Minio.
+        :param pulumi.Input[bool] aws_s3_force_path_style: Use the endpoint/bucket URL style instead of bucket.endpoint.
+        :param pulumi.Input[str] aws_s3_kms_key: Use named KMS key, when aws_s3_enable_kms=true
+        :param pulumi.Input[str] aws_s3_region: AWS region bucket is in.
         :param pulumi.Input[bool] aws_s3_server_side_encryption: Use AES256 to encrypt bucket contents.
         :param pulumi.Input[str] aws_secret_access_key: AWS secret access key.
         :param pulumi.Input[str] aws_session_token: AWS session token.
         :param pulumi.Input[str] azure_account_key: Azure account key.
         :param pulumi.Input[str] azure_account_name: Azure account name.
         :param pulumi.Input[str] azure_blob_environment: Azure blob environment.
-        :param pulumi.Input[str] azure_container_name: `<required>` - Azure container name to write
-               snapshots to.
-        :param pulumi.Input[str] azure_endpoint: Azure blob storage endpoint. This is typically
-               only set when using a non-Azure implementation like Azurite.
+        :param pulumi.Input[str] azure_container_name: Azure container name to write snapshots to.
+        :param pulumi.Input[str] azure_endpoint: Azure blob storage endpoint. This is typically only set when using a non-Azure implementation like Azurite.
         :param pulumi.Input[str] file_prefix: Within the directory or bucket
                prefix given by `path_prefix`, the file or object name of snapshot files
                will start with this string.
-        :param pulumi.Input[bool] google_disable_tls: Disable TLS for the GCS endpoint. This
-               should only be used for testing purposes, typically in conjunction with
-               `google_endpoint`.
-        :param pulumi.Input[str] google_endpoint: GCS endpoint. This is typically only set when
-               using a non-Google GCS implementation like fake-gcs-server.
-        :param pulumi.Input[str] google_gcs_bucket: `<required>` - GCS bucket to write snapshots to.
-        :param pulumi.Input[str] google_service_account_key: Google service account key in JSON format. 
-               The raw value looks like this:
-               
-               ```python
-               import pulumi
-               ```
+        :param pulumi.Input[bool] google_disable_tls: Disable TLS for the GCS endpoint.
+        :param pulumi.Input[str] google_endpoint: GCS endpoint. This is typically only set when using a non-Google GCS implementation like fake-gcs-server.
+        :param pulumi.Input[str] google_gcs_bucket: GCS bucket to write snapshots to.
+        :param pulumi.Input[str] google_service_account_key: Google service account key in JSON format.
         :param pulumi.Input[int] interval_seconds: `<required>` - Time (in seconds) between snapshots.
-        :param pulumi.Input[int] local_max_space: For `storage_type = local`, the maximum
-               space, in bytes, to use for snapshots. Snapshot attempts will fail if there is not enough
-               space left in this allowance.
+        :param pulumi.Input[int] local_max_space: The maximum space, in bytes, to use for snapshots.
         :param pulumi.Input[str] name: `<required>` – Name of the configuration to modify.
         :param pulumi.Input[str] namespace: The namespace to provision the resource in.
                The value should not contain leading or trailing forward slashes.
-               The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault#namespace).
+               The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault/index.html#namespace).
                *Available only for Vault Enterprise*.
         :param pulumi.Input[str] path_prefix: `<required>` - For `storage_type = "local"`, the directory to
                write the snapshots in. For cloud storage types, the bucket prefix to use.
@@ -1195,18 +1126,21 @@ class RaftSnapshotAgentConfig(pulumi.CustomResource):
                  opts: Optional[pulumi.ResourceOptions] = None):
         """
         ## Example Usage
+
         ### Local Storage
         ```python
         import pulumi
         import pulumi_vault as vault
 
-        local_backups = vault.RaftSnapshotAgentConfig("localBackups",
+        local_backups = vault.RaftSnapshotAgentConfig("local_backups",
+            name="local",
             interval_seconds=86400,
-            local_max_space=10000000,
-            path_prefix="/opt/vault/snapshots/",
             retain=7,
-            storage_type="local")
+            path_prefix="/opt/vault/snapshots/",
+            storage_type="local",
+            local_max_space=10000000)
         ```
+
         ### AWS S3
         ```python
         import pulumi
@@ -1217,7 +1151,8 @@ class RaftSnapshotAgentConfig(pulumi.CustomResource):
         aws_access_key_id = config.require_object("awsAccessKeyId")
         aws_secret_access_key = config.require_object("awsSecretAccessKey")
         current = aws.get_region()
-        s3_backups = vault.RaftSnapshotAgentConfig("s3Backups",
+        s3_backups = vault.RaftSnapshotAgentConfig("s3_backups",
+            name="s3",
             interval_seconds=86400,
             retain=7,
             path_prefix="/path/in/bucket",
@@ -1228,6 +1163,7 @@ class RaftSnapshotAgentConfig(pulumi.CustomResource):
             aws_secret_access_key=aws_secret_access_key,
             aws_s3_enable_kms=True)
         ```
+
         ### Azure BLOB
 
         ```python
@@ -1237,7 +1173,8 @@ class RaftSnapshotAgentConfig(pulumi.CustomResource):
         config = pulumi.Config()
         azure_account_name = config.require_object("azureAccountName")
         azure_account_key = config.require_object("azureAccountKey")
-        azure_backups = vault.RaftSnapshotAgentConfig("azureBackups",
+        azure_backups = vault.RaftSnapshotAgentConfig("azure_backups",
+            name="azure_backup",
             interval_seconds=86400,
             retain=7,
             path_prefix="/",
@@ -1252,7 +1189,7 @@ class RaftSnapshotAgentConfig(pulumi.CustomResource):
         Raft Snapshot Agent Configurations can be imported using the `name`, e.g.
 
         ```sh
-         $ pulumi import vault:index/raftSnapshotAgentConfig:RaftSnapshotAgentConfig local local
+        $ pulumi import vault:index/raftSnapshotAgentConfig:RaftSnapshotAgentConfig local local
         ```
 
         :param str resource_name: The name of the resource.
@@ -1387,50 +1324,34 @@ class RaftSnapshotAgentConfig(pulumi.CustomResource):
         :param pulumi.Input[str] id: The unique provider ID of the resource to lookup.
         :param pulumi.ResourceOptions opts: Options for the resource.
         :param pulumi.Input[str] aws_access_key_id: AWS access key ID.
-        :param pulumi.Input[str] aws_s3_bucket: `<required>` - S3 bucket to write snapshots to.
-        :param pulumi.Input[bool] aws_s3_disable_tls: Disable TLS for the S3 endpoint. This
-               should only be used for testing purposes, typically in conjunction with
-               `aws_s3_endpoint`.
+        :param pulumi.Input[str] aws_s3_bucket: S3 bucket to write snapshots to.
+        :param pulumi.Input[bool] aws_s3_disable_tls: Disable TLS for the S3 endpoint. This should only be used for testing purposes.
         :param pulumi.Input[bool] aws_s3_enable_kms: Use KMS to encrypt bucket contents.
-        :param pulumi.Input[str] aws_s3_endpoint: AWS endpoint. This is typically only set when
-               using a non-AWS S3 implementation like Minio.
-        :param pulumi.Input[bool] aws_s3_force_path_style: Use the endpoint/bucket URL style
-               instead of bucket.endpoint. May be needed when setting `aws_s3_endpoint`.
-        :param pulumi.Input[str] aws_s3_kms_key: Use named KMS key, when `aws_s3_enable_kms = true`
-        :param pulumi.Input[str] aws_s3_region: `<required>` - AWS region bucket is in.
+        :param pulumi.Input[str] aws_s3_endpoint: AWS endpoint. This is typically only set when using a non-AWS S3 implementation like Minio.
+        :param pulumi.Input[bool] aws_s3_force_path_style: Use the endpoint/bucket URL style instead of bucket.endpoint.
+        :param pulumi.Input[str] aws_s3_kms_key: Use named KMS key, when aws_s3_enable_kms=true
+        :param pulumi.Input[str] aws_s3_region: AWS region bucket is in.
         :param pulumi.Input[bool] aws_s3_server_side_encryption: Use AES256 to encrypt bucket contents.
         :param pulumi.Input[str] aws_secret_access_key: AWS secret access key.
         :param pulumi.Input[str] aws_session_token: AWS session token.
         :param pulumi.Input[str] azure_account_key: Azure account key.
         :param pulumi.Input[str] azure_account_name: Azure account name.
         :param pulumi.Input[str] azure_blob_environment: Azure blob environment.
-        :param pulumi.Input[str] azure_container_name: `<required>` - Azure container name to write
-               snapshots to.
-        :param pulumi.Input[str] azure_endpoint: Azure blob storage endpoint. This is typically
-               only set when using a non-Azure implementation like Azurite.
+        :param pulumi.Input[str] azure_container_name: Azure container name to write snapshots to.
+        :param pulumi.Input[str] azure_endpoint: Azure blob storage endpoint. This is typically only set when using a non-Azure implementation like Azurite.
         :param pulumi.Input[str] file_prefix: Within the directory or bucket
                prefix given by `path_prefix`, the file or object name of snapshot files
                will start with this string.
-        :param pulumi.Input[bool] google_disable_tls: Disable TLS for the GCS endpoint. This
-               should only be used for testing purposes, typically in conjunction with
-               `google_endpoint`.
-        :param pulumi.Input[str] google_endpoint: GCS endpoint. This is typically only set when
-               using a non-Google GCS implementation like fake-gcs-server.
-        :param pulumi.Input[str] google_gcs_bucket: `<required>` - GCS bucket to write snapshots to.
-        :param pulumi.Input[str] google_service_account_key: Google service account key in JSON format. 
-               The raw value looks like this:
-               
-               ```python
-               import pulumi
-               ```
+        :param pulumi.Input[bool] google_disable_tls: Disable TLS for the GCS endpoint.
+        :param pulumi.Input[str] google_endpoint: GCS endpoint. This is typically only set when using a non-Google GCS implementation like fake-gcs-server.
+        :param pulumi.Input[str] google_gcs_bucket: GCS bucket to write snapshots to.
+        :param pulumi.Input[str] google_service_account_key: Google service account key in JSON format.
         :param pulumi.Input[int] interval_seconds: `<required>` - Time (in seconds) between snapshots.
-        :param pulumi.Input[int] local_max_space: For `storage_type = local`, the maximum
-               space, in bytes, to use for snapshots. Snapshot attempts will fail if there is not enough
-               space left in this allowance.
+        :param pulumi.Input[int] local_max_space: The maximum space, in bytes, to use for snapshots.
         :param pulumi.Input[str] name: `<required>` – Name of the configuration to modify.
         :param pulumi.Input[str] namespace: The namespace to provision the resource in.
                The value should not contain leading or trailing forward slashes.
-               The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault#namespace).
+               The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault/index.html#namespace).
                *Available only for Vault Enterprise*.
         :param pulumi.Input[str] path_prefix: `<required>` - For `storage_type = "local"`, the directory to
                write the snapshots in. For cloud storage types, the bucket prefix to use.
@@ -1489,7 +1410,7 @@ class RaftSnapshotAgentConfig(pulumi.CustomResource):
     @pulumi.getter(name="awsS3Bucket")
     def aws_s3_bucket(self) -> pulumi.Output[Optional[str]]:
         """
-        `<required>` - S3 bucket to write snapshots to.
+        S3 bucket to write snapshots to.
         """
         return pulumi.get(self, "aws_s3_bucket")
 
@@ -1497,9 +1418,7 @@ class RaftSnapshotAgentConfig(pulumi.CustomResource):
     @pulumi.getter(name="awsS3DisableTls")
     def aws_s3_disable_tls(self) -> pulumi.Output[Optional[bool]]:
         """
-        Disable TLS for the S3 endpoint. This
-        should only be used for testing purposes, typically in conjunction with
-        `aws_s3_endpoint`.
+        Disable TLS for the S3 endpoint. This should only be used for testing purposes.
         """
         return pulumi.get(self, "aws_s3_disable_tls")
 
@@ -1515,8 +1434,7 @@ class RaftSnapshotAgentConfig(pulumi.CustomResource):
     @pulumi.getter(name="awsS3Endpoint")
     def aws_s3_endpoint(self) -> pulumi.Output[Optional[str]]:
         """
-        AWS endpoint. This is typically only set when
-        using a non-AWS S3 implementation like Minio.
+        AWS endpoint. This is typically only set when using a non-AWS S3 implementation like Minio.
         """
         return pulumi.get(self, "aws_s3_endpoint")
 
@@ -1524,8 +1442,7 @@ class RaftSnapshotAgentConfig(pulumi.CustomResource):
     @pulumi.getter(name="awsS3ForcePathStyle")
     def aws_s3_force_path_style(self) -> pulumi.Output[Optional[bool]]:
         """
-        Use the endpoint/bucket URL style
-        instead of bucket.endpoint. May be needed when setting `aws_s3_endpoint`.
+        Use the endpoint/bucket URL style instead of bucket.endpoint.
         """
         return pulumi.get(self, "aws_s3_force_path_style")
 
@@ -1533,7 +1450,7 @@ class RaftSnapshotAgentConfig(pulumi.CustomResource):
     @pulumi.getter(name="awsS3KmsKey")
     def aws_s3_kms_key(self) -> pulumi.Output[Optional[str]]:
         """
-        Use named KMS key, when `aws_s3_enable_kms = true`
+        Use named KMS key, when aws_s3_enable_kms=true
         """
         return pulumi.get(self, "aws_s3_kms_key")
 
@@ -1541,7 +1458,7 @@ class RaftSnapshotAgentConfig(pulumi.CustomResource):
     @pulumi.getter(name="awsS3Region")
     def aws_s3_region(self) -> pulumi.Output[Optional[str]]:
         """
-        `<required>` - AWS region bucket is in.
+        AWS region bucket is in.
         """
         return pulumi.get(self, "aws_s3_region")
 
@@ -1597,8 +1514,7 @@ class RaftSnapshotAgentConfig(pulumi.CustomResource):
     @pulumi.getter(name="azureContainerName")
     def azure_container_name(self) -> pulumi.Output[Optional[str]]:
         """
-        `<required>` - Azure container name to write
-        snapshots to.
+        Azure container name to write snapshots to.
         """
         return pulumi.get(self, "azure_container_name")
 
@@ -1606,8 +1522,7 @@ class RaftSnapshotAgentConfig(pulumi.CustomResource):
     @pulumi.getter(name="azureEndpoint")
     def azure_endpoint(self) -> pulumi.Output[Optional[str]]:
         """
-        Azure blob storage endpoint. This is typically
-        only set when using a non-Azure implementation like Azurite.
+        Azure blob storage endpoint. This is typically only set when using a non-Azure implementation like Azurite.
         """
         return pulumi.get(self, "azure_endpoint")
 
@@ -1625,9 +1540,7 @@ class RaftSnapshotAgentConfig(pulumi.CustomResource):
     @pulumi.getter(name="googleDisableTls")
     def google_disable_tls(self) -> pulumi.Output[Optional[bool]]:
         """
-        Disable TLS for the GCS endpoint. This
-        should only be used for testing purposes, typically in conjunction with
-        `google_endpoint`.
+        Disable TLS for the GCS endpoint.
         """
         return pulumi.get(self, "google_disable_tls")
 
@@ -1635,8 +1548,7 @@ class RaftSnapshotAgentConfig(pulumi.CustomResource):
     @pulumi.getter(name="googleEndpoint")
     def google_endpoint(self) -> pulumi.Output[Optional[str]]:
         """
-        GCS endpoint. This is typically only set when
-        using a non-Google GCS implementation like fake-gcs-server.
+        GCS endpoint. This is typically only set when using a non-Google GCS implementation like fake-gcs-server.
         """
         return pulumi.get(self, "google_endpoint")
 
@@ -1644,7 +1556,7 @@ class RaftSnapshotAgentConfig(pulumi.CustomResource):
     @pulumi.getter(name="googleGcsBucket")
     def google_gcs_bucket(self) -> pulumi.Output[Optional[str]]:
         """
-        `<required>` - GCS bucket to write snapshots to.
+        GCS bucket to write snapshots to.
         """
         return pulumi.get(self, "google_gcs_bucket")
 
@@ -1652,12 +1564,7 @@ class RaftSnapshotAgentConfig(pulumi.CustomResource):
     @pulumi.getter(name="googleServiceAccountKey")
     def google_service_account_key(self) -> pulumi.Output[Optional[str]]:
         """
-        Google service account key in JSON format. 
-        The raw value looks like this:
-
-        ```python
-        import pulumi
-        ```
+        Google service account key in JSON format.
         """
         return pulumi.get(self, "google_service_account_key")
 
@@ -1673,9 +1580,7 @@ class RaftSnapshotAgentConfig(pulumi.CustomResource):
     @pulumi.getter(name="localMaxSpace")
     def local_max_space(self) -> pulumi.Output[Optional[int]]:
         """
-        For `storage_type = local`, the maximum
-        space, in bytes, to use for snapshots. Snapshot attempts will fail if there is not enough
-        space left in this allowance.
+        The maximum space, in bytes, to use for snapshots.
         """
         return pulumi.get(self, "local_max_space")
 
@@ -1693,7 +1598,7 @@ class RaftSnapshotAgentConfig(pulumi.CustomResource):
         """
         The namespace to provision the resource in.
         The value should not contain leading or trailing forward slashes.
-        The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault#namespace).
+        The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault/index.html#namespace).
         *Available only for Vault Enterprise*.
         """
         return pulumi.get(self, "namespace")