pulumi-vault 5.21.0a1710160723__py3-none-any.whl → 6.5.0__py3-none-any.whl

pulumi_vault/pkisecret/secret_backend_role.py

@@ -4,9 +4,14 @@
 
 import copy
 import warnings
+import sys
 import pulumi
 import pulumi.runtime
 from typing import Any, Mapping, Optional, Sequence, Union, overload
+if sys.version_info >= (3, 11):
+    from typing import NotRequired, TypedDict, TypeAlias
+else:
+    from typing_extensions import NotRequired, TypedDict, TypeAlias
 from .. import _utilities
 from . import outputs
 from ._inputs import *
@@ -33,6 +38,7 @@ class SecretBackendRoleArgs:
                  allowed_user_ids: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
                  basic_constraints_valid_for_non_ca: Optional[pulumi.Input[bool]] = None,
                  client_flag: Optional[pulumi.Input[bool]] = None,
+                 cn_validations: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
                  code_signing_flag: Optional[pulumi.Input[bool]] = None,
                  countries: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
                  email_protection_flag: Optional[pulumi.Input[bool]] = None,
@@ -81,6 +87,7 @@ class SecretBackendRoleArgs:
         :param pulumi.Input[Sequence[pulumi.Input[str]]] allowed_user_ids: Defines allowed User IDs
         :param pulumi.Input[bool] basic_constraints_valid_for_non_ca: Flag to mark basic constraints valid when issuing non-CA certificates
         :param pulumi.Input[bool] client_flag: Flag to specify certificates for client use
+        :param pulumi.Input[Sequence[pulumi.Input[str]]] cn_validations: Validations to run on the Common Name field of the certificate, choices: `email`, `hostname`, `disabled`
         :param pulumi.Input[bool] code_signing_flag: Flag to specify certificates for code signing use
         :param pulumi.Input[Sequence[pulumi.Input[str]]] countries: The country of generated certificates
         :param pulumi.Input[bool] email_protection_flag: Flag to specify certificates for email protection use
@@ -103,7 +110,7 @@ class SecretBackendRoleArgs:
         :param pulumi.Input[str] name: The name to identify this role within the backend. Must be unique within the backend.
         :param pulumi.Input[str] namespace: The namespace to provision the resource in.
                The value should not contain leading or trailing forward slashes.
-               The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault#namespace).
+               The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault/index.html#namespace).
                *Available only for Vault Enterprise*.
         :param pulumi.Input[bool] no_store: Flag to not store certificates in the storage backend
         :param pulumi.Input[str] not_before_duration: Specifies the duration by which to backdate the NotBefore property.
@@ -153,6 +160,8 @@ class SecretBackendRoleArgs:
             pulumi.set(__self__, "basic_constraints_valid_for_non_ca", basic_constraints_valid_for_non_ca)
         if client_flag is not None:
             pulumi.set(__self__, "client_flag", client_flag)
+        if cn_validations is not None:
+            pulumi.set(__self__, "cn_validations", cn_validations)
         if code_signing_flag is not None:
             pulumi.set(__self__, "code_signing_flag", code_signing_flag)
         if countries is not None:
@@ -416,6 +425,18 @@ class SecretBackendRoleArgs:
     def client_flag(self, value: Optional[pulumi.Input[bool]]):
         pulumi.set(self, "client_flag", value)
 
+    @property
+    @pulumi.getter(name="cnValidations")
+    def cn_validations(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]:
+        """
+        Validations to run on the Common Name field of the certificate, choices: `email`, `hostname`, `disabled`
+        """
+        return pulumi.get(self, "cn_validations")
+
+    @cn_validations.setter
+    def cn_validations(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]):
+        pulumi.set(self, "cn_validations", value)
+
     @property
     @pulumi.getter(name="codeSigningFlag")
     def code_signing_flag(self) -> Optional[pulumi.Input[bool]]:
@@ -596,7 +617,7 @@ class SecretBackendRoleArgs:
         """
         The namespace to provision the resource in.
         The value should not contain leading or trailing forward slashes.
-        The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault#namespace).
+        The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault/index.html#namespace).
         *Available only for Vault Enterprise*.
         """
         return pulumi.get(self, "namespace")
@@ -794,6 +815,7 @@ class _SecretBackendRoleState:
                  backend: Optional[pulumi.Input[str]] = None,
                  basic_constraints_valid_for_non_ca: Optional[pulumi.Input[bool]] = None,
                  client_flag: Optional[pulumi.Input[bool]] = None,
+                 cn_validations: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
                  code_signing_flag: Optional[pulumi.Input[bool]] = None,
                  countries: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
                  email_protection_flag: Optional[pulumi.Input[bool]] = None,
@@ -842,6 +864,7 @@ class _SecretBackendRoleState:
         :param pulumi.Input[str] backend: The path the PKI secret backend is mounted at, with no leading or trailing `/`s.
         :param pulumi.Input[bool] basic_constraints_valid_for_non_ca: Flag to mark basic constraints valid when issuing non-CA certificates
         :param pulumi.Input[bool] client_flag: Flag to specify certificates for client use
+        :param pulumi.Input[Sequence[pulumi.Input[str]]] cn_validations: Validations to run on the Common Name field of the certificate, choices: `email`, `hostname`, `disabled`
         :param pulumi.Input[bool] code_signing_flag: Flag to specify certificates for code signing use
         :param pulumi.Input[Sequence[pulumi.Input[str]]] countries: The country of generated certificates
         :param pulumi.Input[bool] email_protection_flag: Flag to specify certificates for email protection use
@@ -864,7 +887,7 @@ class _SecretBackendRoleState:
         :param pulumi.Input[str] name: The name to identify this role within the backend. Must be unique within the backend.
         :param pulumi.Input[str] namespace: The namespace to provision the resource in.
                The value should not contain leading or trailing forward slashes.
-               The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault#namespace).
+               The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault/index.html#namespace).
                *Available only for Vault Enterprise*.
         :param pulumi.Input[bool] no_store: Flag to not store certificates in the storage backend
         :param pulumi.Input[str] not_before_duration: Specifies the duration by which to backdate the NotBefore property.
@@ -915,6 +938,8 @@ class _SecretBackendRoleState:
             pulumi.set(__self__, "basic_constraints_valid_for_non_ca", basic_constraints_valid_for_non_ca)
         if client_flag is not None:
             pulumi.set(__self__, "client_flag", client_flag)
+        if cn_validations is not None:
+            pulumi.set(__self__, "cn_validations", cn_validations)
         if code_signing_flag is not None:
             pulumi.set(__self__, "code_signing_flag", code_signing_flag)
         if countries is not None:
@@ -1178,6 +1203,18 @@ class _SecretBackendRoleState:
     def client_flag(self, value: Optional[pulumi.Input[bool]]):
         pulumi.set(self, "client_flag", value)
 
+    @property
+    @pulumi.getter(name="cnValidations")
+    def cn_validations(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]:
+        """
+        Validations to run on the Common Name field of the certificate, choices: `email`, `hostname`, `disabled`
+        """
+        return pulumi.get(self, "cn_validations")
+
+    @cn_validations.setter
+    def cn_validations(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]):
+        pulumi.set(self, "cn_validations", value)
+
     @property
     @pulumi.getter(name="codeSigningFlag")
     def code_signing_flag(self) -> Optional[pulumi.Input[bool]]:
@@ -1358,7 +1395,7 @@ class _SecretBackendRoleState:
         """
         The namespace to provision the resource in.
         The value should not contain leading or trailing forward slashes.
-        The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault#namespace).
+        The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault/index.html#namespace).
         *Available only for Vault Enterprise*.
         """
         return pulumi.get(self, "namespace")
@@ -1558,6 +1595,7 @@ class SecretBackendRole(pulumi.CustomResource):
                  backend: Optional[pulumi.Input[str]] = None,
                  basic_constraints_valid_for_non_ca: Optional[pulumi.Input[bool]] = None,
                  client_flag: Optional[pulumi.Input[bool]] = None,
+                 cn_validations: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
                  code_signing_flag: Optional[pulumi.Input[bool]] = None,
                  countries: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
                  email_protection_flag: Optional[pulumi.Input[bool]] = None,
@@ -1577,7 +1615,7 @@ class SecretBackendRole(pulumi.CustomResource):
                  not_before_duration: Optional[pulumi.Input[str]] = None,
                  organization_unit: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
                  organizations: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
-                 policy_identifier: Optional[pulumi.Input[Sequence[pulumi.Input[pulumi.InputType['SecretBackendRolePolicyIdentifierArgs']]]]] = None,
+                 policy_identifier: Optional[pulumi.Input[Sequence[pulumi.Input[Union['SecretBackendRolePolicyIdentifierArgs', 'SecretBackendRolePolicyIdentifierArgsDict']]]]] = None,
                  policy_identifiers: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
                  postal_codes: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
                  provinces: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
@@ -1593,7 +1631,6 @@ class SecretBackendRole(pulumi.CustomResource):
 
         ## Example Usage
 
-        <!--Start PulumiCodeChooser -->
         ```python
         import pulumi
         import pulumi_vault as vault
@@ -1605,6 +1642,7 @@ class SecretBackendRole(pulumi.CustomResource):
             max_lease_ttl_seconds=86400)
         role = vault.pki_secret.SecretBackendRole("role",
             backend=pki.path,
+            name="my_role",
             ttl="3600",
             allow_ip_sans=True,
             key_type="rsa",
@@ -1615,7 +1653,6 @@ class SecretBackendRole(pulumi.CustomResource):
             ],
             allow_subdomains=True)
         ```
-        <!--End PulumiCodeChooser -->
 
         ## Import
 
@@ -1644,6 +1681,7 @@ class SecretBackendRole(pulumi.CustomResource):
         :param pulumi.Input[str] backend: The path the PKI secret backend is mounted at, with no leading or trailing `/`s.
         :param pulumi.Input[bool] basic_constraints_valid_for_non_ca: Flag to mark basic constraints valid when issuing non-CA certificates
         :param pulumi.Input[bool] client_flag: Flag to specify certificates for client use
+        :param pulumi.Input[Sequence[pulumi.Input[str]]] cn_validations: Validations to run on the Common Name field of the certificate, choices: `email`, `hostname`, `disabled`
         :param pulumi.Input[bool] code_signing_flag: Flag to specify certificates for code signing use
         :param pulumi.Input[Sequence[pulumi.Input[str]]] countries: The country of generated certificates
         :param pulumi.Input[bool] email_protection_flag: Flag to specify certificates for email protection use
@@ -1666,13 +1704,13 @@ class SecretBackendRole(pulumi.CustomResource):
         :param pulumi.Input[str] name: The name to identify this role within the backend. Must be unique within the backend.
         :param pulumi.Input[str] namespace: The namespace to provision the resource in.
                The value should not contain leading or trailing forward slashes.
-               The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault#namespace).
+               The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault/index.html#namespace).
                *Available only for Vault Enterprise*.
         :param pulumi.Input[bool] no_store: Flag to not store certificates in the storage backend
         :param pulumi.Input[str] not_before_duration: Specifies the duration by which to backdate the NotBefore property.
         :param pulumi.Input[Sequence[pulumi.Input[str]]] organization_unit: The organization unit of generated certificates
         :param pulumi.Input[Sequence[pulumi.Input[str]]] organizations: The organization of generated certificates
-        :param pulumi.Input[Sequence[pulumi.Input[pulumi.InputType['SecretBackendRolePolicyIdentifierArgs']]]] policy_identifier: (Vault 1.11+ only) A block for specifying policy identifers. The `policy_identifier` block can be repeated, and supports the following arguments:
+        :param pulumi.Input[Sequence[pulumi.Input[Union['SecretBackendRolePolicyIdentifierArgs', 'SecretBackendRolePolicyIdentifierArgsDict']]]] policy_identifier: (Vault 1.11+ only) A block for specifying policy identifers. The `policy_identifier` block can be repeated, and supports the following arguments:
         :param pulumi.Input[Sequence[pulumi.Input[str]]] policy_identifiers: Specify the list of allowed policies OIDs. Use with Vault 1.10 or before. For Vault 1.11+, use `policy_identifier` blocks instead
         :param pulumi.Input[Sequence[pulumi.Input[str]]] postal_codes: The postal code of generated certificates
         :param pulumi.Input[Sequence[pulumi.Input[str]]] provinces: The province of generated certificates
@@ -1694,7 +1732,6 @@ class SecretBackendRole(pulumi.CustomResource):
 
         ## Example Usage
 
-        <!--Start PulumiCodeChooser -->
         ```python
         import pulumi
         import pulumi_vault as vault
@@ -1706,6 +1743,7 @@ class SecretBackendRole(pulumi.CustomResource):
             max_lease_ttl_seconds=86400)
         role = vault.pki_secret.SecretBackendRole("role",
             backend=pki.path,
+            name="my_role",
             ttl="3600",
             allow_ip_sans=True,
             key_type="rsa",
@@ -1716,7 +1754,6 @@ class SecretBackendRole(pulumi.CustomResource):
             ],
             allow_subdomains=True)
         ```
-        <!--End PulumiCodeChooser -->
 
         ## Import
 
@@ -1758,6 +1795,7 @@ class SecretBackendRole(pulumi.CustomResource):
                  backend: Optional[pulumi.Input[str]] = None,
                  basic_constraints_valid_for_non_ca: Optional[pulumi.Input[bool]] = None,
                  client_flag: Optional[pulumi.Input[bool]] = None,
+                 cn_validations: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
                  code_signing_flag: Optional[pulumi.Input[bool]] = None,
                  countries: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
                  email_protection_flag: Optional[pulumi.Input[bool]] = None,
@@ -1777,7 +1815,7 @@ class SecretBackendRole(pulumi.CustomResource):
                  not_before_duration: Optional[pulumi.Input[str]] = None,
                  organization_unit: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
                  organizations: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
-                 policy_identifier: Optional[pulumi.Input[Sequence[pulumi.Input[pulumi.InputType['SecretBackendRolePolicyIdentifierArgs']]]]] = None,
+                 policy_identifier: Optional[pulumi.Input[Sequence[pulumi.Input[Union['SecretBackendRolePolicyIdentifierArgs', 'SecretBackendRolePolicyIdentifierArgsDict']]]]] = None,
                  policy_identifiers: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
                  postal_codes: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
                  provinces: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
@@ -1815,6 +1853,7 @@ class SecretBackendRole(pulumi.CustomResource):
             __props__.__dict__["backend"] = backend
             __props__.__dict__["basic_constraints_valid_for_non_ca"] = basic_constraints_valid_for_non_ca
             __props__.__dict__["client_flag"] = client_flag
+            __props__.__dict__["cn_validations"] = cn_validations
             __props__.__dict__["code_signing_flag"] = code_signing_flag
             __props__.__dict__["countries"] = countries
             __props__.__dict__["email_protection_flag"] = email_protection_flag
@@ -1871,6 +1910,7 @@ class SecretBackendRole(pulumi.CustomResource):
             backend: Optional[pulumi.Input[str]] = None,
             basic_constraints_valid_for_non_ca: Optional[pulumi.Input[bool]] = None,
             client_flag: Optional[pulumi.Input[bool]] = None,
+            cn_validations: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
             code_signing_flag: Optional[pulumi.Input[bool]] = None,
             countries: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
             email_protection_flag: Optional[pulumi.Input[bool]] = None,
@@ -1890,7 +1930,7 @@ class SecretBackendRole(pulumi.CustomResource):
             not_before_duration: Optional[pulumi.Input[str]] = None,
             organization_unit: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
             organizations: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
-            policy_identifier: Optional[pulumi.Input[Sequence[pulumi.Input[pulumi.InputType['SecretBackendRolePolicyIdentifierArgs']]]]] = None,
+            policy_identifier: Optional[pulumi.Input[Sequence[pulumi.Input[Union['SecretBackendRolePolicyIdentifierArgs', 'SecretBackendRolePolicyIdentifierArgsDict']]]]] = None,
             policy_identifiers: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
             postal_codes: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
             provinces: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
@@ -1924,6 +1964,7 @@ class SecretBackendRole(pulumi.CustomResource):
         :param pulumi.Input[str] backend: The path the PKI secret backend is mounted at, with no leading or trailing `/`s.
         :param pulumi.Input[bool] basic_constraints_valid_for_non_ca: Flag to mark basic constraints valid when issuing non-CA certificates
         :param pulumi.Input[bool] client_flag: Flag to specify certificates for client use
+        :param pulumi.Input[Sequence[pulumi.Input[str]]] cn_validations: Validations to run on the Common Name field of the certificate, choices: `email`, `hostname`, `disabled`
         :param pulumi.Input[bool] code_signing_flag: Flag to specify certificates for code signing use
         :param pulumi.Input[Sequence[pulumi.Input[str]]] countries: The country of generated certificates
         :param pulumi.Input[bool] email_protection_flag: Flag to specify certificates for email protection use
@@ -1946,13 +1987,13 @@ class SecretBackendRole(pulumi.CustomResource):
         :param pulumi.Input[str] name: The name to identify this role within the backend. Must be unique within the backend.
         :param pulumi.Input[str] namespace: The namespace to provision the resource in.
                The value should not contain leading or trailing forward slashes.
-               The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault#namespace).
+               The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault/index.html#namespace).
                *Available only for Vault Enterprise*.
         :param pulumi.Input[bool] no_store: Flag to not store certificates in the storage backend
         :param pulumi.Input[str] not_before_duration: Specifies the duration by which to backdate the NotBefore property.
         :param pulumi.Input[Sequence[pulumi.Input[str]]] organization_unit: The organization unit of generated certificates
         :param pulumi.Input[Sequence[pulumi.Input[str]]] organizations: The organization of generated certificates
-        :param pulumi.Input[Sequence[pulumi.Input[pulumi.InputType['SecretBackendRolePolicyIdentifierArgs']]]] policy_identifier: (Vault 1.11+ only) A block for specifying policy identifers. The `policy_identifier` block can be repeated, and supports the following arguments:
+        :param pulumi.Input[Sequence[pulumi.Input[Union['SecretBackendRolePolicyIdentifierArgs', 'SecretBackendRolePolicyIdentifierArgsDict']]]] policy_identifier: (Vault 1.11+ only) A block for specifying policy identifers. The `policy_identifier` block can be repeated, and supports the following arguments:
         :param pulumi.Input[Sequence[pulumi.Input[str]]] policy_identifiers: Specify the list of allowed policies OIDs. Use with Vault 1.10 or before. For Vault 1.11+, use `policy_identifier` blocks instead
         :param pulumi.Input[Sequence[pulumi.Input[str]]] postal_codes: The postal code of generated certificates
         :param pulumi.Input[Sequence[pulumi.Input[str]]] provinces: The province of generated certificates
@@ -1984,6 +2025,7 @@ class SecretBackendRole(pulumi.CustomResource):
         __props__.__dict__["backend"] = backend
         __props__.__dict__["basic_constraints_valid_for_non_ca"] = basic_constraints_valid_for_non_ca
         __props__.__dict__["client_flag"] = client_flag
+        __props__.__dict__["cn_validations"] = cn_validations
         __props__.__dict__["code_signing_flag"] = code_signing_flag
         __props__.__dict__["countries"] = countries
         __props__.__dict__["email_protection_flag"] = email_protection_flag
@@ -2151,6 +2193,14 @@ class SecretBackendRole(pulumi.CustomResource):
         """
         return pulumi.get(self, "client_flag")
 
+    @property
+    @pulumi.getter(name="cnValidations")
+    def cn_validations(self) -> pulumi.Output[Sequence[str]]:
+        """
+        Validations to run on the Common Name field of the certificate, choices: `email`, `hostname`, `disabled`
+        """
+        return pulumi.get(self, "cn_validations")
+
     @property
     @pulumi.getter(name="codeSigningFlag")
     def code_signing_flag(self) -> pulumi.Output[Optional[bool]]:
@@ -2275,7 +2325,7 @@ class SecretBackendRole(pulumi.CustomResource):
         """
         The namespace to provision the resource in.
         The value should not contain leading or trailing forward slashes.
-        The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault#namespace).
+        The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault/index.html#namespace).
         *Available only for Vault Enterprise*.
         """
         return pulumi.get(self, "namespace")

pulumi_vault/pkisecret/secret_backend_root_cert.py

@@ -4,9 +4,14 @@
 
 import copy
 import warnings
+import sys
 import pulumi
 import pulumi.runtime
 from typing import Any, Mapping, Optional, Sequence, Union, overload
+if sys.version_info >= (3, 11):
+    from typing import NotRequired, TypedDict, TypeAlias
+else:
+    from typing_extensions import NotRequired, TypedDict, TypeAlias
 from .. import _utilities
 
 __all__ = ['SecretBackendRootCertArgs', 'SecretBackendRootCert']
@@ -69,7 +74,7 @@ class SecretBackendRootCertArgs:
         :param pulumi.Input[int] max_path_length: The maximum path length to encode in the generated certificate
         :param pulumi.Input[str] namespace: The namespace to provision the resource in.
                The value should not contain leading or trailing forward slashes.
-               The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault#namespace).
+               The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault/index.html#namespace).
                *Available only for Vault Enterprise*.
         :param pulumi.Input[str] organization: The organization
         :param pulumi.Input[Sequence[pulumi.Input[str]]] other_sans: List of other SANs
@@ -352,7 +357,7 @@ class SecretBackendRootCertArgs:
         """
         The namespace to provision the resource in.
         The value should not contain leading or trailing forward slashes.
-        The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault#namespace).
+        The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault/index.html#namespace).
         *Available only for Vault Enterprise*.
         """
         return pulumi.get(self, "namespace")
@@ -513,7 +518,6 @@ class _SecretBackendRootCertState:
                  postal_code: Optional[pulumi.Input[str]] = None,
                  private_key_format: Optional[pulumi.Input[str]] = None,
                  province: Optional[pulumi.Input[str]] = None,
-                 serial: Optional[pulumi.Input[str]] = None,
                  serial_number: Optional[pulumi.Input[str]] = None,
                  street_address: Optional[pulumi.Input[str]] = None,
                  ttl: Optional[pulumi.Input[str]] = None,
@@ -548,7 +552,7 @@ class _SecretBackendRootCertState:
         :param pulumi.Input[int] max_path_length: The maximum path length to encode in the generated certificate
         :param pulumi.Input[str] namespace: The namespace to provision the resource in.
                The value should not contain leading or trailing forward slashes.
-               The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault#namespace).
+               The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault/index.html#namespace).
                *Available only for Vault Enterprise*.
         :param pulumi.Input[str] organization: The organization
         :param pulumi.Input[Sequence[pulumi.Input[str]]] other_sans: List of other SANs
@@ -557,7 +561,6 @@ class _SecretBackendRootCertState:
         :param pulumi.Input[str] postal_code: The postal code
         :param pulumi.Input[str] private_key_format: The private key format
         :param pulumi.Input[str] province: The province
-        :param pulumi.Input[str] serial: Deprecated, use `serial_number` instead.
         :param pulumi.Input[str] serial_number: The certificate's serial number, hex formatted.
         :param pulumi.Input[str] street_address: The street address
         :param pulumi.Input[str] ttl: Time to live
@@ -621,11 +624,6 @@ class _SecretBackendRootCertState:
             pulumi.set(__self__, "private_key_format", private_key_format)
         if province is not None:
             pulumi.set(__self__, "province", province)
-        if serial is not None:
-            warnings.warn("""Use serial_number instead""", DeprecationWarning)
-            pulumi.log.warn("""serial is deprecated: Use serial_number instead""")
-        if serial is not None:
-            pulumi.set(__self__, "serial", serial)
         if serial_number is not None:
             pulumi.set(__self__, "serial_number", serial_number)
         if street_address is not None:
@@ -888,7 +886,7 @@ class _SecretBackendRootCertState:
         """
         The namespace to provision the resource in.
         The value should not contain leading or trailing forward slashes.
-        The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault#namespace).
+        The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault/index.html#namespace).
         *Available only for Vault Enterprise*.
         """
         return pulumi.get(self, "namespace")
@@ -981,21 +979,6 @@ class _SecretBackendRootCertState:
     def province(self, value: Optional[pulumi.Input[str]]):
         pulumi.set(self, "province", value)
 
-    @property
-    @pulumi.getter
-    def serial(self) -> Optional[pulumi.Input[str]]:
-        """
-        Deprecated, use `serial_number` instead.
-        """
-        warnings.warn("""Use serial_number instead""", DeprecationWarning)
-        pulumi.log.warn("""serial is deprecated: Use serial_number instead""")
-
-        return pulumi.get(self, "serial")
-
-    @serial.setter
-    def serial(self, value: Optional[pulumi.Input[str]]):
-        pulumi.set(self, "serial", value)
-
     @property
     @pulumi.getter(name="serialNumber")
     def serial_number(self) -> Optional[pulumi.Input[str]]:
@@ -1095,13 +1078,12 @@ class SecretBackendRootCert(pulumi.CustomResource):
         """
         ## Example Usage
 
-        <!--Start PulumiCodeChooser -->
         ```python
         import pulumi
         import pulumi_vault as vault
 
         test = vault.pki_secret.SecretBackendRootCert("test",
-            backend=vault_mount["pki"]["path"],
+            backend=pki["path"],
             type="internal",
             common_name="Root CA",
             ttl="315360000",
@@ -1112,9 +1094,8 @@ class SecretBackendRootCert(pulumi.CustomResource):
             exclude_cn_from_sans=True,
             ou="My OU",
             organization="My organization",
-            opts=pulumi.ResourceOptions(depends_on=[vault_mount["pki"]]))
+            opts = pulumi.ResourceOptions(depends_on=[pki]))
         ```
-        <!--End PulumiCodeChooser -->
 
         :param str resource_name: The name of the resource.
         :param pulumi.ResourceOptions opts: Options for the resource.
@@ -1141,7 +1122,7 @@ class SecretBackendRootCert(pulumi.CustomResource):
         :param pulumi.Input[int] max_path_length: The maximum path length to encode in the generated certificate
         :param pulumi.Input[str] namespace: The namespace to provision the resource in.
                The value should not contain leading or trailing forward slashes.
-               The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault#namespace).
+               The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault/index.html#namespace).
                *Available only for Vault Enterprise*.
         :param pulumi.Input[str] organization: The organization
         :param pulumi.Input[Sequence[pulumi.Input[str]]] other_sans: List of other SANs
@@ -1165,13 +1146,12 @@ class SecretBackendRootCert(pulumi.CustomResource):
         """
         ## Example Usage
 
-        <!--Start PulumiCodeChooser -->
         ```python
         import pulumi
         import pulumi_vault as vault
 
         test = vault.pki_secret.SecretBackendRootCert("test",
-            backend=vault_mount["pki"]["path"],
+            backend=pki["path"],
             type="internal",
             common_name="Root CA",
             ttl="315360000",
@@ -1182,9 +1162,8 @@ class SecretBackendRootCert(pulumi.CustomResource):
             exclude_cn_from_sans=True,
             ou="My OU",
             organization="My organization",
-            opts=pulumi.ResourceOptions(depends_on=[vault_mount["pki"]]))
+            opts = pulumi.ResourceOptions(depends_on=[pki]))
         ```
-        <!--End PulumiCodeChooser -->
 
         :param str resource_name: The name of the resource.
         :param SecretBackendRootCertArgs args: The arguments to use to populate this resource's properties.
@@ -1276,7 +1255,6 @@ class SecretBackendRootCert(pulumi.CustomResource):
             __props__.__dict__["issuer_id"] = None
             __props__.__dict__["issuing_ca"] = None
             __props__.__dict__["key_id"] = None
-            __props__.__dict__["serial"] = None
             __props__.__dict__["serial_number"] = None
         super(SecretBackendRootCert, __self__).__init__(
             'vault:pkiSecret/secretBackendRootCert:SecretBackendRootCert',
@@ -1316,7 +1294,6 @@ class SecretBackendRootCert(pulumi.CustomResource):
             postal_code: Optional[pulumi.Input[str]] = None,
             private_key_format: Optional[pulumi.Input[str]] = None,
             province: Optional[pulumi.Input[str]] = None,
-            serial: Optional[pulumi.Input[str]] = None,
             serial_number: Optional[pulumi.Input[str]] = None,
             street_address: Optional[pulumi.Input[str]] = None,
             ttl: Optional[pulumi.Input[str]] = None,
@@ -1356,7 +1333,7 @@ class SecretBackendRootCert(pulumi.CustomResource):
         :param pulumi.Input[int] max_path_length: The maximum path length to encode in the generated certificate
         :param pulumi.Input[str] namespace: The namespace to provision the resource in.
                The value should not contain leading or trailing forward slashes.
-               The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault#namespace).
+               The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault/index.html#namespace).
                *Available only for Vault Enterprise*.
         :param pulumi.Input[str] organization: The organization
         :param pulumi.Input[Sequence[pulumi.Input[str]]] other_sans: List of other SANs
@@ -1365,7 +1342,6 @@ class SecretBackendRootCert(pulumi.CustomResource):
         :param pulumi.Input[str] postal_code: The postal code
         :param pulumi.Input[str] private_key_format: The private key format
         :param pulumi.Input[str] province: The province
-        :param pulumi.Input[str] serial: Deprecated, use `serial_number` instead.
         :param pulumi.Input[str] serial_number: The certificate's serial number, hex formatted.
         :param pulumi.Input[str] street_address: The street address
         :param pulumi.Input[str] ttl: Time to live
@@ -1405,7 +1381,6 @@ class SecretBackendRootCert(pulumi.CustomResource):
         __props__.__dict__["postal_code"] = postal_code
         __props__.__dict__["private_key_format"] = private_key_format
         __props__.__dict__["province"] = province
-        __props__.__dict__["serial"] = serial
         __props__.__dict__["serial_number"] = serial_number
         __props__.__dict__["street_address"] = street_address
         __props__.__dict__["ttl"] = ttl
@@ -1584,7 +1559,7 @@ class SecretBackendRootCert(pulumi.CustomResource):
         """
         The namespace to provision the resource in.
         The value should not contain leading or trailing forward slashes.
-        The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault#namespace).
+        The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault/index.html#namespace).
         *Available only for Vault Enterprise*.
         """
         return pulumi.get(self, "namespace")
@@ -1645,17 +1620,6 @@ class SecretBackendRootCert(pulumi.CustomResource):
         """
         return pulumi.get(self, "province")
 
-    @property
-    @pulumi.getter
-    def serial(self) -> pulumi.Output[str]:
-        """
-        Deprecated, use `serial_number` instead.
-        """
-        warnings.warn("""Use serial_number instead""", DeprecationWarning)
-        pulumi.log.warn("""serial is deprecated: Use serial_number instead""")
-
-        return pulumi.get(self, "serial")
-
     @property
     @pulumi.getter(name="serialNumber")
     def serial_number(self) -> pulumi.Output[str]: