pulumi-vault 5.21.0a1710160723__py3-none-any.whl → 6.5.0a1736850018__py3-none-any.whl

pulumi_vault/raft_snapshot_agent_config.py

@@ -4,9 +4,14 @@
 
 import copy
 import warnings
+import sys
 import pulumi
 import pulumi.runtime
 from typing import Any, Mapping, Optional, Sequence, Union, overload
+if sys.version_info >= (3, 11):
+    from typing import NotRequired, TypedDict, TypeAlias
+else:
+    from typing_extensions import NotRequired, TypedDict, TypeAlias
 from . import _utilities
 
 __all__ = ['RaftSnapshotAgentConfigArgs', 'RaftSnapshotAgentConfig']
@@ -53,60 +58,33 @@ class RaftSnapshotAgentConfigArgs:
                or "google-gcs". The remaining parameters described below are all specific to
                the selected `storage_type` and prefixed accordingly.
         :param pulumi.Input[str] aws_access_key_id: AWS access key ID.
-        :param pulumi.Input[str] aws_s3_bucket: `<required>` - S3 bucket to write snapshots to.
-        :param pulumi.Input[bool] aws_s3_disable_tls: Disable TLS for the S3 endpoint. This
-               should only be used for testing purposes, typically in conjunction with
-               `aws_s3_endpoint`.
+        :param pulumi.Input[str] aws_s3_bucket: S3 bucket to write snapshots to.
+        :param pulumi.Input[bool] aws_s3_disable_tls: Disable TLS for the S3 endpoint. This should only be used for testing purposes.
         :param pulumi.Input[bool] aws_s3_enable_kms: Use KMS to encrypt bucket contents.
-        :param pulumi.Input[str] aws_s3_endpoint: AWS endpoint. This is typically only set when
-               using a non-AWS S3 implementation like Minio.
-        :param pulumi.Input[bool] aws_s3_force_path_style: Use the endpoint/bucket URL style
-               instead of bucket.endpoint. May be needed when setting `aws_s3_endpoint`.
-        :param pulumi.Input[str] aws_s3_kms_key: Use named KMS key, when `aws_s3_enable_kms = true`
-        :param pulumi.Input[str] aws_s3_region: `<required>` - AWS region bucket is in.
+        :param pulumi.Input[str] aws_s3_endpoint: AWS endpoint. This is typically only set when using a non-AWS S3 implementation like Minio.
+        :param pulumi.Input[bool] aws_s3_force_path_style: Use the endpoint/bucket URL style instead of bucket.endpoint.
+        :param pulumi.Input[str] aws_s3_kms_key: Use named KMS key, when aws_s3_enable_kms=true
+        :param pulumi.Input[str] aws_s3_region: AWS region bucket is in.
         :param pulumi.Input[bool] aws_s3_server_side_encryption: Use AES256 to encrypt bucket contents.
         :param pulumi.Input[str] aws_secret_access_key: AWS secret access key.
         :param pulumi.Input[str] aws_session_token: AWS session token.
         :param pulumi.Input[str] azure_account_key: Azure account key.
         :param pulumi.Input[str] azure_account_name: Azure account name.
         :param pulumi.Input[str] azure_blob_environment: Azure blob environment.
-        :param pulumi.Input[str] azure_container_name: `<required>` - Azure container name to write
-               snapshots to.
-        :param pulumi.Input[str] azure_endpoint: Azure blob storage endpoint. This is typically
-               only set when using a non-Azure implementation like Azurite.
+        :param pulumi.Input[str] azure_container_name: Azure container name to write snapshots to.
+        :param pulumi.Input[str] azure_endpoint: Azure blob storage endpoint. This is typically only set when using a non-Azure implementation like Azurite.
         :param pulumi.Input[str] file_prefix: Within the directory or bucket
                prefix given by `path_prefix`, the file or object name of snapshot files
                will start with this string.
-        :param pulumi.Input[bool] google_disable_tls: Disable TLS for the GCS endpoint. This
-               should only be used for testing purposes, typically in conjunction with
-               `google_endpoint`.
-        :param pulumi.Input[str] google_endpoint: GCS endpoint. This is typically only set when
-               using a non-Google GCS implementation like fake-gcs-server.
-        :param pulumi.Input[str] google_gcs_bucket: `<required>` - GCS bucket to write snapshots to.
-        :param pulumi.Input[str] google_service_account_key: Google service account key in JSON format. 
-               The raw value looks like this:
-               
-               ```json
-               {
-               "type": "service_account",
-               "project_id": "project-id",
-               "private_key_id": "key-id",
-               "private_key": "-----BEGIN RSA PRIVATE KEY-----\\nMIIEpQ ... /WZs=\\n-----END RSA PRIVATE KEY-----\\n",
-               "client_email": "service-account-email",
-               "client_id": "client-id",
-               "auth_uri": "https://accounts.google.com/o/oauth2/auth",
-               "token_uri": "https://accounts.google.com/o/oauth2/token",
-               "auth_provider_x509_cert_url": "https://www.googleapis.com/oauth2/v1/certs",
-               "client_x509_cert_url": "https://www.googleapis.com/robot/v1/metadata/x509/service-account-email"
-               }
-               ```
-        :param pulumi.Input[int] local_max_space: For `storage_type = local`, the maximum
-               space, in bytes, to use for snapshots. Snapshot attempts will fail if there is not enough
-               space left in this allowance.
+        :param pulumi.Input[bool] google_disable_tls: Disable TLS for the GCS endpoint.
+        :param pulumi.Input[str] google_endpoint: GCS endpoint. This is typically only set when using a non-Google GCS implementation like fake-gcs-server.
+        :param pulumi.Input[str] google_gcs_bucket: GCS bucket to write snapshots to.
+        :param pulumi.Input[str] google_service_account_key: Google service account key in JSON format.
+        :param pulumi.Input[int] local_max_space: The maximum space, in bytes, to use for snapshots.
         :param pulumi.Input[str] name: `<required>` – Name of the configuration to modify.
         :param pulumi.Input[str] namespace: The namespace to provision the resource in.
                The value should not contain leading or trailing forward slashes.
-               The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault#namespace).
+               The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault/index.html#namespace).
                *Available only for Vault Enterprise*.
         :param pulumi.Input[int] retain: How many snapshots are to be kept; when writing a
                snapshot, if there are more snapshots already stored than this number, the
@@ -223,7 +201,7 @@ class RaftSnapshotAgentConfigArgs:
     @pulumi.getter(name="awsS3Bucket")
     def aws_s3_bucket(self) -> Optional[pulumi.Input[str]]:
         """
-        `<required>` - S3 bucket to write snapshots to.
+        S3 bucket to write snapshots to.
         """
         return pulumi.get(self, "aws_s3_bucket")
 
@@ -235,9 +213,7 @@ class RaftSnapshotAgentConfigArgs:
     @pulumi.getter(name="awsS3DisableTls")
     def aws_s3_disable_tls(self) -> Optional[pulumi.Input[bool]]:
         """
-        Disable TLS for the S3 endpoint. This
-        should only be used for testing purposes, typically in conjunction with
-        `aws_s3_endpoint`.
+        Disable TLS for the S3 endpoint. This should only be used for testing purposes.
         """
         return pulumi.get(self, "aws_s3_disable_tls")
 
@@ -261,8 +237,7 @@ class RaftSnapshotAgentConfigArgs:
     @pulumi.getter(name="awsS3Endpoint")
     def aws_s3_endpoint(self) -> Optional[pulumi.Input[str]]:
         """
-        AWS endpoint. This is typically only set when
-        using a non-AWS S3 implementation like Minio.
+        AWS endpoint. This is typically only set when using a non-AWS S3 implementation like Minio.
         """
         return pulumi.get(self, "aws_s3_endpoint")
 
@@ -274,8 +249,7 @@ class RaftSnapshotAgentConfigArgs:
     @pulumi.getter(name="awsS3ForcePathStyle")
     def aws_s3_force_path_style(self) -> Optional[pulumi.Input[bool]]:
         """
-        Use the endpoint/bucket URL style
-        instead of bucket.endpoint. May be needed when setting `aws_s3_endpoint`.
+        Use the endpoint/bucket URL style instead of bucket.endpoint.
         """
         return pulumi.get(self, "aws_s3_force_path_style")
 
@@ -287,7 +261,7 @@ class RaftSnapshotAgentConfigArgs:
     @pulumi.getter(name="awsS3KmsKey")
     def aws_s3_kms_key(self) -> Optional[pulumi.Input[str]]:
         """
-        Use named KMS key, when `aws_s3_enable_kms = true`
+        Use named KMS key, when aws_s3_enable_kms=true
         """
         return pulumi.get(self, "aws_s3_kms_key")
 
@@ -299,7 +273,7 @@ class RaftSnapshotAgentConfigArgs:
     @pulumi.getter(name="awsS3Region")
     def aws_s3_region(self) -> Optional[pulumi.Input[str]]:
         """
-        `<required>` - AWS region bucket is in.
+        AWS region bucket is in.
         """
         return pulumi.get(self, "aws_s3_region")
 
@@ -383,8 +357,7 @@ class RaftSnapshotAgentConfigArgs:
     @pulumi.getter(name="azureContainerName")
     def azure_container_name(self) -> Optional[pulumi.Input[str]]:
         """
-        `<required>` - Azure container name to write
-        snapshots to.
+        Azure container name to write snapshots to.
         """
         return pulumi.get(self, "azure_container_name")
 
@@ -396,8 +369,7 @@ class RaftSnapshotAgentConfigArgs:
     @pulumi.getter(name="azureEndpoint")
     def azure_endpoint(self) -> Optional[pulumi.Input[str]]:
         """
-        Azure blob storage endpoint. This is typically
-        only set when using a non-Azure implementation like Azurite.
+        Azure blob storage endpoint. This is typically only set when using a non-Azure implementation like Azurite.
         """
         return pulumi.get(self, "azure_endpoint")
 
@@ -423,9 +395,7 @@ class RaftSnapshotAgentConfigArgs:
     @pulumi.getter(name="googleDisableTls")
     def google_disable_tls(self) -> Optional[pulumi.Input[bool]]:
         """
-        Disable TLS for the GCS endpoint. This
-        should only be used for testing purposes, typically in conjunction with
-        `google_endpoint`.
+        Disable TLS for the GCS endpoint.
         """
         return pulumi.get(self, "google_disable_tls")
 
@@ -437,8 +407,7 @@ class RaftSnapshotAgentConfigArgs:
     @pulumi.getter(name="googleEndpoint")
     def google_endpoint(self) -> Optional[pulumi.Input[str]]:
         """
-        GCS endpoint. This is typically only set when
-        using a non-Google GCS implementation like fake-gcs-server.
+        GCS endpoint. This is typically only set when using a non-Google GCS implementation like fake-gcs-server.
         """
         return pulumi.get(self, "google_endpoint")
 
@@ -450,7 +419,7 @@ class RaftSnapshotAgentConfigArgs:
     @pulumi.getter(name="googleGcsBucket")
     def google_gcs_bucket(self) -> Optional[pulumi.Input[str]]:
         """
-        `<required>` - GCS bucket to write snapshots to.
+        GCS bucket to write snapshots to.
         """
         return pulumi.get(self, "google_gcs_bucket")
 
@@ -462,23 +431,7 @@ class RaftSnapshotAgentConfigArgs:
     @pulumi.getter(name="googleServiceAccountKey")
     def google_service_account_key(self) -> Optional[pulumi.Input[str]]:
         """
-        Google service account key in JSON format. 
-        The raw value looks like this:
-
-        ```json
-        {
-        "type": "service_account",
-        "project_id": "project-id",
-        "private_key_id": "key-id",
-        "private_key": "-----BEGIN RSA PRIVATE KEY-----\\nMIIEpQ ... /WZs=\\n-----END RSA PRIVATE KEY-----\\n",
-        "client_email": "service-account-email",
-        "client_id": "client-id",
-        "auth_uri": "https://accounts.google.com/o/oauth2/auth",
-        "token_uri": "https://accounts.google.com/o/oauth2/token",
-        "auth_provider_x509_cert_url": "https://www.googleapis.com/oauth2/v1/certs",
-        "client_x509_cert_url": "https://www.googleapis.com/robot/v1/metadata/x509/service-account-email"
-        }
-        ```
+        Google service account key in JSON format.
         """
         return pulumi.get(self, "google_service_account_key")
 
@@ -490,9 +443,7 @@ class RaftSnapshotAgentConfigArgs:
     @pulumi.getter(name="localMaxSpace")
     def local_max_space(self) -> Optional[pulumi.Input[int]]:
         """
-        For `storage_type = local`, the maximum
-        space, in bytes, to use for snapshots. Snapshot attempts will fail if there is not enough
-        space left in this allowance.
+        The maximum space, in bytes, to use for snapshots.
         """
         return pulumi.get(self, "local_max_space")
 
@@ -518,7 +469,7 @@ class RaftSnapshotAgentConfigArgs:
         """
         The namespace to provision the resource in.
         The value should not contain leading or trailing forward slashes.
-        The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault#namespace).
+        The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault/index.html#namespace).
         *Available only for Vault Enterprise*.
         """
         return pulumi.get(self, "namespace")
@@ -576,61 +527,34 @@ class _RaftSnapshotAgentConfigState:
         """
         Input properties used for looking up and filtering RaftSnapshotAgentConfig resources.
         :param pulumi.Input[str] aws_access_key_id: AWS access key ID.
-        :param pulumi.Input[str] aws_s3_bucket: `<required>` - S3 bucket to write snapshots to.
-        :param pulumi.Input[bool] aws_s3_disable_tls: Disable TLS for the S3 endpoint. This
-               should only be used for testing purposes, typically in conjunction with
-               `aws_s3_endpoint`.
+        :param pulumi.Input[str] aws_s3_bucket: S3 bucket to write snapshots to.
+        :param pulumi.Input[bool] aws_s3_disable_tls: Disable TLS for the S3 endpoint. This should only be used for testing purposes.
         :param pulumi.Input[bool] aws_s3_enable_kms: Use KMS to encrypt bucket contents.
-        :param pulumi.Input[str] aws_s3_endpoint: AWS endpoint. This is typically only set when
-               using a non-AWS S3 implementation like Minio.
-        :param pulumi.Input[bool] aws_s3_force_path_style: Use the endpoint/bucket URL style
-               instead of bucket.endpoint. May be needed when setting `aws_s3_endpoint`.
-        :param pulumi.Input[str] aws_s3_kms_key: Use named KMS key, when `aws_s3_enable_kms = true`
-        :param pulumi.Input[str] aws_s3_region: `<required>` - AWS region bucket is in.
+        :param pulumi.Input[str] aws_s3_endpoint: AWS endpoint. This is typically only set when using a non-AWS S3 implementation like Minio.
+        :param pulumi.Input[bool] aws_s3_force_path_style: Use the endpoint/bucket URL style instead of bucket.endpoint.
+        :param pulumi.Input[str] aws_s3_kms_key: Use named KMS key, when aws_s3_enable_kms=true
+        :param pulumi.Input[str] aws_s3_region: AWS region bucket is in.
         :param pulumi.Input[bool] aws_s3_server_side_encryption: Use AES256 to encrypt bucket contents.
         :param pulumi.Input[str] aws_secret_access_key: AWS secret access key.
         :param pulumi.Input[str] aws_session_token: AWS session token.
         :param pulumi.Input[str] azure_account_key: Azure account key.
         :param pulumi.Input[str] azure_account_name: Azure account name.
         :param pulumi.Input[str] azure_blob_environment: Azure blob environment.
-        :param pulumi.Input[str] azure_container_name: `<required>` - Azure container name to write
-               snapshots to.
-        :param pulumi.Input[str] azure_endpoint: Azure blob storage endpoint. This is typically
-               only set when using a non-Azure implementation like Azurite.
+        :param pulumi.Input[str] azure_container_name: Azure container name to write snapshots to.
+        :param pulumi.Input[str] azure_endpoint: Azure blob storage endpoint. This is typically only set when using a non-Azure implementation like Azurite.
         :param pulumi.Input[str] file_prefix: Within the directory or bucket
                prefix given by `path_prefix`, the file or object name of snapshot files
                will start with this string.
-        :param pulumi.Input[bool] google_disable_tls: Disable TLS for the GCS endpoint. This
-               should only be used for testing purposes, typically in conjunction with
-               `google_endpoint`.
-        :param pulumi.Input[str] google_endpoint: GCS endpoint. This is typically only set when
-               using a non-Google GCS implementation like fake-gcs-server.
-        :param pulumi.Input[str] google_gcs_bucket: `<required>` - GCS bucket to write snapshots to.
-        :param pulumi.Input[str] google_service_account_key: Google service account key in JSON format. 
-               The raw value looks like this:
-               
-               ```json
-               {
-               "type": "service_account",
-               "project_id": "project-id",
-               "private_key_id": "key-id",
-               "private_key": "-----BEGIN RSA PRIVATE KEY-----\\nMIIEpQ ... /WZs=\\n-----END RSA PRIVATE KEY-----\\n",
-               "client_email": "service-account-email",
-               "client_id": "client-id",
-               "auth_uri": "https://accounts.google.com/o/oauth2/auth",
-               "token_uri": "https://accounts.google.com/o/oauth2/token",
-               "auth_provider_x509_cert_url": "https://www.googleapis.com/oauth2/v1/certs",
-               "client_x509_cert_url": "https://www.googleapis.com/robot/v1/metadata/x509/service-account-email"
-               }
-               ```
+        :param pulumi.Input[bool] google_disable_tls: Disable TLS for the GCS endpoint.
+        :param pulumi.Input[str] google_endpoint: GCS endpoint. This is typically only set when using a non-Google GCS implementation like fake-gcs-server.
+        :param pulumi.Input[str] google_gcs_bucket: GCS bucket to write snapshots to.
+        :param pulumi.Input[str] google_service_account_key: Google service account key in JSON format.
         :param pulumi.Input[int] interval_seconds: `<required>` - Time (in seconds) between snapshots.
-        :param pulumi.Input[int] local_max_space: For `storage_type = local`, the maximum
-               space, in bytes, to use for snapshots. Snapshot attempts will fail if there is not enough
-               space left in this allowance.
+        :param pulumi.Input[int] local_max_space: The maximum space, in bytes, to use for snapshots.
         :param pulumi.Input[str] name: `<required>` – Name of the configuration to modify.
         :param pulumi.Input[str] namespace: The namespace to provision the resource in.
                The value should not contain leading or trailing forward slashes.
-               The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault#namespace).
+               The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault/index.html#namespace).
                *Available only for Vault Enterprise*.
         :param pulumi.Input[str] path_prefix: `<required>` - For `storage_type = "local"`, the directory to
                write the snapshots in. For cloud storage types, the bucket prefix to use.
@@ -716,7 +640,7 @@ class _RaftSnapshotAgentConfigState:
     @pulumi.getter(name="awsS3Bucket")
     def aws_s3_bucket(self) -> Optional[pulumi.Input[str]]:
         """
-        `<required>` - S3 bucket to write snapshots to.
+        S3 bucket to write snapshots to.
         """
         return pulumi.get(self, "aws_s3_bucket")
 
@@ -728,9 +652,7 @@ class _RaftSnapshotAgentConfigState:
     @pulumi.getter(name="awsS3DisableTls")
     def aws_s3_disable_tls(self) -> Optional[pulumi.Input[bool]]:
         """
-        Disable TLS for the S3 endpoint. This
-        should only be used for testing purposes, typically in conjunction with
-        `aws_s3_endpoint`.
+        Disable TLS for the S3 endpoint. This should only be used for testing purposes.
         """
         return pulumi.get(self, "aws_s3_disable_tls")
 
@@ -754,8 +676,7 @@ class _RaftSnapshotAgentConfigState:
     @pulumi.getter(name="awsS3Endpoint")
     def aws_s3_endpoint(self) -> Optional[pulumi.Input[str]]:
         """
-        AWS endpoint. This is typically only set when
-        using a non-AWS S3 implementation like Minio.
+        AWS endpoint. This is typically only set when using a non-AWS S3 implementation like Minio.
         """
         return pulumi.get(self, "aws_s3_endpoint")
 
@@ -767,8 +688,7 @@ class _RaftSnapshotAgentConfigState:
     @pulumi.getter(name="awsS3ForcePathStyle")
     def aws_s3_force_path_style(self) -> Optional[pulumi.Input[bool]]:
         """
-        Use the endpoint/bucket URL style
-        instead of bucket.endpoint. May be needed when setting `aws_s3_endpoint`.
+        Use the endpoint/bucket URL style instead of bucket.endpoint.
         """
         return pulumi.get(self, "aws_s3_force_path_style")
 
@@ -780,7 +700,7 @@ class _RaftSnapshotAgentConfigState:
     @pulumi.getter(name="awsS3KmsKey")
     def aws_s3_kms_key(self) -> Optional[pulumi.Input[str]]:
         """
-        Use named KMS key, when `aws_s3_enable_kms = true`
+        Use named KMS key, when aws_s3_enable_kms=true
         """
         return pulumi.get(self, "aws_s3_kms_key")
 
@@ -792,7 +712,7 @@ class _RaftSnapshotAgentConfigState:
     @pulumi.getter(name="awsS3Region")
     def aws_s3_region(self) -> Optional[pulumi.Input[str]]:
         """
-        `<required>` - AWS region bucket is in.
+        AWS region bucket is in.
         """
         return pulumi.get(self, "aws_s3_region")
 
@@ -876,8 +796,7 @@ class _RaftSnapshotAgentConfigState:
     @pulumi.getter(name="azureContainerName")
     def azure_container_name(self) -> Optional[pulumi.Input[str]]:
         """
-        `<required>` - Azure container name to write
-        snapshots to.
+        Azure container name to write snapshots to.
         """
         return pulumi.get(self, "azure_container_name")
 
@@ -889,8 +808,7 @@ class _RaftSnapshotAgentConfigState:
     @pulumi.getter(name="azureEndpoint")
     def azure_endpoint(self) -> Optional[pulumi.Input[str]]:
         """
-        Azure blob storage endpoint. This is typically
-        only set when using a non-Azure implementation like Azurite.
+        Azure blob storage endpoint. This is typically only set when using a non-Azure implementation like Azurite.
         """
         return pulumi.get(self, "azure_endpoint")
 
@@ -916,9 +834,7 @@ class _RaftSnapshotAgentConfigState:
     @pulumi.getter(name="googleDisableTls")
     def google_disable_tls(self) -> Optional[pulumi.Input[bool]]:
         """
-        Disable TLS for the GCS endpoint. This
-        should only be used for testing purposes, typically in conjunction with
-        `google_endpoint`.
+        Disable TLS for the GCS endpoint.
         """
         return pulumi.get(self, "google_disable_tls")
 
@@ -930,8 +846,7 @@ class _RaftSnapshotAgentConfigState:
     @pulumi.getter(name="googleEndpoint")
     def google_endpoint(self) -> Optional[pulumi.Input[str]]:
         """
-        GCS endpoint. This is typically only set when
-        using a non-Google GCS implementation like fake-gcs-server.
+        GCS endpoint. This is typically only set when using a non-Google GCS implementation like fake-gcs-server.
         """
         return pulumi.get(self, "google_endpoint")
 
@@ -943,7 +858,7 @@ class _RaftSnapshotAgentConfigState:
     @pulumi.getter(name="googleGcsBucket")
     def google_gcs_bucket(self) -> Optional[pulumi.Input[str]]:
         """
-        `<required>` - GCS bucket to write snapshots to.
+        GCS bucket to write snapshots to.
         """
         return pulumi.get(self, "google_gcs_bucket")
 
@@ -955,23 +870,7 @@ class _RaftSnapshotAgentConfigState:
     @pulumi.getter(name="googleServiceAccountKey")
     def google_service_account_key(self) -> Optional[pulumi.Input[str]]:
         """
-        Google service account key in JSON format. 
-        The raw value looks like this:
-
-        ```json
-        {
-        "type": "service_account",
-        "project_id": "project-id",
-        "private_key_id": "key-id",
-        "private_key": "-----BEGIN RSA PRIVATE KEY-----\\nMIIEpQ ... /WZs=\\n-----END RSA PRIVATE KEY-----\\n",
-        "client_email": "service-account-email",
-        "client_id": "client-id",
-        "auth_uri": "https://accounts.google.com/o/oauth2/auth",
-        "token_uri": "https://accounts.google.com/o/oauth2/token",
-        "auth_provider_x509_cert_url": "https://www.googleapis.com/oauth2/v1/certs",
-        "client_x509_cert_url": "https://www.googleapis.com/robot/v1/metadata/x509/service-account-email"
-        }
-        ```
+        Google service account key in JSON format.
         """
         return pulumi.get(self, "google_service_account_key")
 
@@ -995,9 +894,7 @@ class _RaftSnapshotAgentConfigState:
     @pulumi.getter(name="localMaxSpace")
     def local_max_space(self) -> Optional[pulumi.Input[int]]:
         """
-        For `storage_type = local`, the maximum
-        space, in bytes, to use for snapshots. Snapshot attempts will fail if there is not enough
-        space left in this allowance.
+        The maximum space, in bytes, to use for snapshots.
         """
         return pulumi.get(self, "local_max_space")
 
@@ -1023,7 +920,7 @@ class _RaftSnapshotAgentConfigState:
         """
         The namespace to provision the resource in.
         The value should not contain leading or trailing forward slashes.
-        The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault#namespace).
+        The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault/index.html#namespace).
         *Available only for Vault Enterprise*.
         """
         return pulumi.get(self, "namespace")
@@ -1114,22 +1011,20 @@ class RaftSnapshotAgentConfig(pulumi.CustomResource):
         ## Example Usage
 
         ### Local Storage
-        <!--Start PulumiCodeChooser -->
         ```python
         import pulumi
         import pulumi_vault as vault
 
-        local_backups = vault.RaftSnapshotAgentConfig("localBackups",
+        local_backups = vault.RaftSnapshotAgentConfig("local_backups",
+            name="local",
             interval_seconds=86400,
-            local_max_space=10000000,
-            path_prefix="/opt/vault/snapshots/",
             retain=7,
-            storage_type="local")
+            path_prefix="/opt/vault/snapshots/",
+            storage_type="local",
+            local_max_space=10000000)
         ```
-        <!--End PulumiCodeChooser -->
 
         ### AWS S3
-        <!--Start PulumiCodeChooser -->
         ```python
         import pulumi
         import pulumi_aws as aws
@@ -1139,7 +1034,8 @@ class RaftSnapshotAgentConfig(pulumi.CustomResource):
         aws_access_key_id = config.require_object("awsAccessKeyId")
         aws_secret_access_key = config.require_object("awsSecretAccessKey")
         current = aws.get_region()
-        s3_backups = vault.RaftSnapshotAgentConfig("s3Backups",
+        s3_backups = vault.RaftSnapshotAgentConfig("s3_backups",
+            name="s3",
             interval_seconds=86400,
             retain=7,
             path_prefix="/path/in/bucket",
@@ -1150,11 +1046,9 @@ class RaftSnapshotAgentConfig(pulumi.CustomResource):
             aws_secret_access_key=aws_secret_access_key,
             aws_s3_enable_kms=True)
         ```
-        <!--End PulumiCodeChooser -->
 
         ### Azure BLOB
 
-        <!--Start PulumiCodeChooser -->
         ```python
         import pulumi
         import pulumi_vault as vault
@@ -1162,7 +1056,8 @@ class RaftSnapshotAgentConfig(pulumi.CustomResource):
         config = pulumi.Config()
         azure_account_name = config.require_object("azureAccountName")
         azure_account_key = config.require_object("azureAccountKey")
-        azure_backups = vault.RaftSnapshotAgentConfig("azureBackups",
+        azure_backups = vault.RaftSnapshotAgentConfig("azure_backups",
+            name="azure_backup",
             interval_seconds=86400,
             retain=7,
             path_prefix="/",
@@ -1171,7 +1066,6 @@ class RaftSnapshotAgentConfig(pulumi.CustomResource):
             azure_account_name=azure_account_name,
             azure_account_key=azure_account_key)
         ```
-        <!--End PulumiCodeChooser -->
 
         ## Import
 
@@ -1184,61 +1078,34 @@ class RaftSnapshotAgentConfig(pulumi.CustomResource):
         :param str resource_name: The name of the resource.
         :param pulumi.ResourceOptions opts: Options for the resource.
         :param pulumi.Input[str] aws_access_key_id: AWS access key ID.
-        :param pulumi.Input[str] aws_s3_bucket: `<required>` - S3 bucket to write snapshots to.
-        :param pulumi.Input[bool] aws_s3_disable_tls: Disable TLS for the S3 endpoint. This
-               should only be used for testing purposes, typically in conjunction with
-               `aws_s3_endpoint`.
+        :param pulumi.Input[str] aws_s3_bucket: S3 bucket to write snapshots to.
+        :param pulumi.Input[bool] aws_s3_disable_tls: Disable TLS for the S3 endpoint. This should only be used for testing purposes.
         :param pulumi.Input[bool] aws_s3_enable_kms: Use KMS to encrypt bucket contents.
-        :param pulumi.Input[str] aws_s3_endpoint: AWS endpoint. This is typically only set when
-               using a non-AWS S3 implementation like Minio.
-        :param pulumi.Input[bool] aws_s3_force_path_style: Use the endpoint/bucket URL style
-               instead of bucket.endpoint. May be needed when setting `aws_s3_endpoint`.
-        :param pulumi.Input[str] aws_s3_kms_key: Use named KMS key, when `aws_s3_enable_kms = true`
-        :param pulumi.Input[str] aws_s3_region: `<required>` - AWS region bucket is in.
+        :param pulumi.Input[str] aws_s3_endpoint: AWS endpoint. This is typically only set when using a non-AWS S3 implementation like Minio.
+        :param pulumi.Input[bool] aws_s3_force_path_style: Use the endpoint/bucket URL style instead of bucket.endpoint.
+        :param pulumi.Input[str] aws_s3_kms_key: Use named KMS key, when aws_s3_enable_kms=true
+        :param pulumi.Input[str] aws_s3_region: AWS region bucket is in.
         :param pulumi.Input[bool] aws_s3_server_side_encryption: Use AES256 to encrypt bucket contents.
         :param pulumi.Input[str] aws_secret_access_key: AWS secret access key.
         :param pulumi.Input[str] aws_session_token: AWS session token.
         :param pulumi.Input[str] azure_account_key: Azure account key.
         :param pulumi.Input[str] azure_account_name: Azure account name.
         :param pulumi.Input[str] azure_blob_environment: Azure blob environment.
-        :param pulumi.Input[str] azure_container_name: `<required>` - Azure container name to write
-               snapshots to.
-        :param pulumi.Input[str] azure_endpoint: Azure blob storage endpoint. This is typically
-               only set when using a non-Azure implementation like Azurite.
+        :param pulumi.Input[str] azure_container_name: Azure container name to write snapshots to.
+        :param pulumi.Input[str] azure_endpoint: Azure blob storage endpoint. This is typically only set when using a non-Azure implementation like Azurite.
         :param pulumi.Input[str] file_prefix: Within the directory or bucket
                prefix given by `path_prefix`, the file or object name of snapshot files
                will start with this string.
-        :param pulumi.Input[bool] google_disable_tls: Disable TLS for the GCS endpoint. This
-               should only be used for testing purposes, typically in conjunction with
-               `google_endpoint`.
-        :param pulumi.Input[str] google_endpoint: GCS endpoint. This is typically only set when
-               using a non-Google GCS implementation like fake-gcs-server.
-        :param pulumi.Input[str] google_gcs_bucket: `<required>` - GCS bucket to write snapshots to.
-        :param pulumi.Input[str] google_service_account_key: Google service account key in JSON format. 
-               The raw value looks like this:
-               
-               ```json
-               {
-               "type": "service_account",
-               "project_id": "project-id",
-               "private_key_id": "key-id",
-               "private_key": "-----BEGIN RSA PRIVATE KEY-----\\nMIIEpQ ... /WZs=\\n-----END RSA PRIVATE KEY-----\\n",
-               "client_email": "service-account-email",
-               "client_id": "client-id",
-               "auth_uri": "https://accounts.google.com/o/oauth2/auth",
-               "token_uri": "https://accounts.google.com/o/oauth2/token",
-               "auth_provider_x509_cert_url": "https://www.googleapis.com/oauth2/v1/certs",
-               "client_x509_cert_url": "https://www.googleapis.com/robot/v1/metadata/x509/service-account-email"
-               }
-               ```
+        :param pulumi.Input[bool] google_disable_tls: Disable TLS for the GCS endpoint.
+        :param pulumi.Input[str] google_endpoint: GCS endpoint. This is typically only set when using a non-Google GCS implementation like fake-gcs-server.
+        :param pulumi.Input[str] google_gcs_bucket: GCS bucket to write snapshots to.
+        :param pulumi.Input[str] google_service_account_key: Google service account key in JSON format.
         :param pulumi.Input[int] interval_seconds: `<required>` - Time (in seconds) between snapshots.
-        :param pulumi.Input[int] local_max_space: For `storage_type = local`, the maximum
-               space, in bytes, to use for snapshots. Snapshot attempts will fail if there is not enough
-               space left in this allowance.
+        :param pulumi.Input[int] local_max_space: The maximum space, in bytes, to use for snapshots.
         :param pulumi.Input[str] name: `<required>` – Name of the configuration to modify.
         :param pulumi.Input[str] namespace: The namespace to provision the resource in.
                The value should not contain leading or trailing forward slashes.
-               The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault#namespace).
+               The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault/index.html#namespace).
                *Available only for Vault Enterprise*.
         :param pulumi.Input[str] path_prefix: `<required>` - For `storage_type = "local"`, the directory to
                write the snapshots in. For cloud storage types, the bucket prefix to use.
@@ -1261,22 +1128,20 @@ class RaftSnapshotAgentConfig(pulumi.CustomResource):
         ## Example Usage
 
         ### Local Storage
-        <!--Start PulumiCodeChooser -->
         ```python
         import pulumi
         import pulumi_vault as vault
 
-        local_backups = vault.RaftSnapshotAgentConfig("localBackups",
+        local_backups = vault.RaftSnapshotAgentConfig("local_backups",
+            name="local",
             interval_seconds=86400,
-            local_max_space=10000000,
-            path_prefix="/opt/vault/snapshots/",
             retain=7,
-            storage_type="local")
+            path_prefix="/opt/vault/snapshots/",
+            storage_type="local",
+            local_max_space=10000000)
         ```
-        <!--End PulumiCodeChooser -->
 
         ### AWS S3
-        <!--Start PulumiCodeChooser -->
         ```python
         import pulumi
         import pulumi_aws as aws
@@ -1286,7 +1151,8 @@ class RaftSnapshotAgentConfig(pulumi.CustomResource):
         aws_access_key_id = config.require_object("awsAccessKeyId")
         aws_secret_access_key = config.require_object("awsSecretAccessKey")
         current = aws.get_region()
-        s3_backups = vault.RaftSnapshotAgentConfig("s3Backups",
+        s3_backups = vault.RaftSnapshotAgentConfig("s3_backups",
+            name="s3",
             interval_seconds=86400,
             retain=7,
             path_prefix="/path/in/bucket",
@@ -1297,11 +1163,9 @@ class RaftSnapshotAgentConfig(pulumi.CustomResource):
             aws_secret_access_key=aws_secret_access_key,
             aws_s3_enable_kms=True)
         ```
-        <!--End PulumiCodeChooser -->
 
         ### Azure BLOB
 
-        <!--Start PulumiCodeChooser -->
         ```python
         import pulumi
         import pulumi_vault as vault
@@ -1309,7 +1173,8 @@ class RaftSnapshotAgentConfig(pulumi.CustomResource):
         config = pulumi.Config()
         azure_account_name = config.require_object("azureAccountName")
         azure_account_key = config.require_object("azureAccountKey")
-        azure_backups = vault.RaftSnapshotAgentConfig("azureBackups",
+        azure_backups = vault.RaftSnapshotAgentConfig("azure_backups",
+            name="azure_backup",
             interval_seconds=86400,
             retain=7,
             path_prefix="/",
@@ -1318,7 +1183,6 @@ class RaftSnapshotAgentConfig(pulumi.CustomResource):
             azure_account_name=azure_account_name,
             azure_account_key=azure_account_key)
         ```
-        <!--End PulumiCodeChooser -->
 
         ## Import
 
@@ -1460,61 +1324,34 @@ class RaftSnapshotAgentConfig(pulumi.CustomResource):
         :param pulumi.Input[str] id: The unique provider ID of the resource to lookup.
         :param pulumi.ResourceOptions opts: Options for the resource.
         :param pulumi.Input[str] aws_access_key_id: AWS access key ID.
-        :param pulumi.Input[str] aws_s3_bucket: `<required>` - S3 bucket to write snapshots to.
-        :param pulumi.Input[bool] aws_s3_disable_tls: Disable TLS for the S3 endpoint. This
-               should only be used for testing purposes, typically in conjunction with
-               `aws_s3_endpoint`.
+        :param pulumi.Input[str] aws_s3_bucket: S3 bucket to write snapshots to.
+        :param pulumi.Input[bool] aws_s3_disable_tls: Disable TLS for the S3 endpoint. This should only be used for testing purposes.
         :param pulumi.Input[bool] aws_s3_enable_kms: Use KMS to encrypt bucket contents.
-        :param pulumi.Input[str] aws_s3_endpoint: AWS endpoint. This is typically only set when
-               using a non-AWS S3 implementation like Minio.
-        :param pulumi.Input[bool] aws_s3_force_path_style: Use the endpoint/bucket URL style
-               instead of bucket.endpoint. May be needed when setting `aws_s3_endpoint`.
-        :param pulumi.Input[str] aws_s3_kms_key: Use named KMS key, when `aws_s3_enable_kms = true`
-        :param pulumi.Input[str] aws_s3_region: `<required>` - AWS region bucket is in.
+        :param pulumi.Input[str] aws_s3_endpoint: AWS endpoint. This is typically only set when using a non-AWS S3 implementation like Minio.
+        :param pulumi.Input[bool] aws_s3_force_path_style: Use the endpoint/bucket URL style instead of bucket.endpoint.
+        :param pulumi.Input[str] aws_s3_kms_key: Use named KMS key, when aws_s3_enable_kms=true
+        :param pulumi.Input[str] aws_s3_region: AWS region bucket is in.
         :param pulumi.Input[bool] aws_s3_server_side_encryption: Use AES256 to encrypt bucket contents.
         :param pulumi.Input[str] aws_secret_access_key: AWS secret access key.
         :param pulumi.Input[str] aws_session_token: AWS session token.
         :param pulumi.Input[str] azure_account_key: Azure account key.
         :param pulumi.Input[str] azure_account_name: Azure account name.
         :param pulumi.Input[str] azure_blob_environment: Azure blob environment.
-        :param pulumi.Input[str] azure_container_name: `<required>` - Azure container name to write
-               snapshots to.
-        :param pulumi.Input[str] azure_endpoint: Azure blob storage endpoint. This is typically
-               only set when using a non-Azure implementation like Azurite.
+        :param pulumi.Input[str] azure_container_name: Azure container name to write snapshots to.
+        :param pulumi.Input[str] azure_endpoint: Azure blob storage endpoint. This is typically only set when using a non-Azure implementation like Azurite.
         :param pulumi.Input[str] file_prefix: Within the directory or bucket
                prefix given by `path_prefix`, the file or object name of snapshot files
                will start with this string.
-        :param pulumi.Input[bool] google_disable_tls: Disable TLS for the GCS endpoint. This
-               should only be used for testing purposes, typically in conjunction with
-               `google_endpoint`.
-        :param pulumi.Input[str] google_endpoint: GCS endpoint. This is typically only set when
-               using a non-Google GCS implementation like fake-gcs-server.
-        :param pulumi.Input[str] google_gcs_bucket: `<required>` - GCS bucket to write snapshots to.
-        :param pulumi.Input[str] google_service_account_key: Google service account key in JSON format. 
-               The raw value looks like this:
-               
-               ```json
-               {
-               "type": "service_account",
-               "project_id": "project-id",
-               "private_key_id": "key-id",
-               "private_key": "-----BEGIN RSA PRIVATE KEY-----\\nMIIEpQ ... /WZs=\\n-----END RSA PRIVATE KEY-----\\n",
-               "client_email": "service-account-email",
-               "client_id": "client-id",
-               "auth_uri": "https://accounts.google.com/o/oauth2/auth",
-               "token_uri": "https://accounts.google.com/o/oauth2/token",
-               "auth_provider_x509_cert_url": "https://www.googleapis.com/oauth2/v1/certs",
-               "client_x509_cert_url": "https://www.googleapis.com/robot/v1/metadata/x509/service-account-email"
-               }
-               ```
+        :param pulumi.Input[bool] google_disable_tls: Disable TLS for the GCS endpoint.
+        :param pulumi.Input[str] google_endpoint: GCS endpoint. This is typically only set when using a non-Google GCS implementation like fake-gcs-server.
+        :param pulumi.Input[str] google_gcs_bucket: GCS bucket to write snapshots to.
+        :param pulumi.Input[str] google_service_account_key: Google service account key in JSON format.
         :param pulumi.Input[int] interval_seconds: `<required>` - Time (in seconds) between snapshots.
-        :param pulumi.Input[int] local_max_space: For `storage_type = local`, the maximum
-               space, in bytes, to use for snapshots. Snapshot attempts will fail if there is not enough
-               space left in this allowance.
+        :param pulumi.Input[int] local_max_space: The maximum space, in bytes, to use for snapshots.
         :param pulumi.Input[str] name: `<required>` – Name of the configuration to modify.
         :param pulumi.Input[str] namespace: The namespace to provision the resource in.
                The value should not contain leading or trailing forward slashes.
-               The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault#namespace).
+               The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault/index.html#namespace).
                *Available only for Vault Enterprise*.
         :param pulumi.Input[str] path_prefix: `<required>` - For `storage_type = "local"`, the directory to
                write the snapshots in. For cloud storage types, the bucket prefix to use.
@@ -1573,7 +1410,7 @@ class RaftSnapshotAgentConfig(pulumi.CustomResource):
     @pulumi.getter(name="awsS3Bucket")
     def aws_s3_bucket(self) -> pulumi.Output[Optional[str]]:
         """
-        `<required>` - S3 bucket to write snapshots to.
+        S3 bucket to write snapshots to.
         """
         return pulumi.get(self, "aws_s3_bucket")
 
@@ -1581,9 +1418,7 @@ class RaftSnapshotAgentConfig(pulumi.CustomResource):
     @pulumi.getter(name="awsS3DisableTls")
     def aws_s3_disable_tls(self) -> pulumi.Output[Optional[bool]]:
         """
-        Disable TLS for the S3 endpoint. This
-        should only be used for testing purposes, typically in conjunction with
-        `aws_s3_endpoint`.
+        Disable TLS for the S3 endpoint. This should only be used for testing purposes.
         """
         return pulumi.get(self, "aws_s3_disable_tls")
 
@@ -1599,8 +1434,7 @@ class RaftSnapshotAgentConfig(pulumi.CustomResource):
     @pulumi.getter(name="awsS3Endpoint")
     def aws_s3_endpoint(self) -> pulumi.Output[Optional[str]]:
         """
-        AWS endpoint. This is typically only set when
-        using a non-AWS S3 implementation like Minio.
+        AWS endpoint. This is typically only set when using a non-AWS S3 implementation like Minio.
         """
         return pulumi.get(self, "aws_s3_endpoint")
 
@@ -1608,8 +1442,7 @@ class RaftSnapshotAgentConfig(pulumi.CustomResource):
     @pulumi.getter(name="awsS3ForcePathStyle")
     def aws_s3_force_path_style(self) -> pulumi.Output[Optional[bool]]:
         """
-        Use the endpoint/bucket URL style
-        instead of bucket.endpoint. May be needed when setting `aws_s3_endpoint`.
+        Use the endpoint/bucket URL style instead of bucket.endpoint.
         """
         return pulumi.get(self, "aws_s3_force_path_style")
 
@@ -1617,7 +1450,7 @@ class RaftSnapshotAgentConfig(pulumi.CustomResource):
     @pulumi.getter(name="awsS3KmsKey")
     def aws_s3_kms_key(self) -> pulumi.Output[Optional[str]]:
         """
-        Use named KMS key, when `aws_s3_enable_kms = true`
+        Use named KMS key, when aws_s3_enable_kms=true
         """
         return pulumi.get(self, "aws_s3_kms_key")
 
@@ -1625,7 +1458,7 @@ class RaftSnapshotAgentConfig(pulumi.CustomResource):
     @pulumi.getter(name="awsS3Region")
     def aws_s3_region(self) -> pulumi.Output[Optional[str]]:
         """
-        `<required>` - AWS region bucket is in.
+        AWS region bucket is in.
         """
         return pulumi.get(self, "aws_s3_region")
 
@@ -1681,8 +1514,7 @@ class RaftSnapshotAgentConfig(pulumi.CustomResource):
     @pulumi.getter(name="azureContainerName")
     def azure_container_name(self) -> pulumi.Output[Optional[str]]:
         """
-        `<required>` - Azure container name to write
-        snapshots to.
+        Azure container name to write snapshots to.
         """
         return pulumi.get(self, "azure_container_name")
 
@@ -1690,8 +1522,7 @@ class RaftSnapshotAgentConfig(pulumi.CustomResource):
     @pulumi.getter(name="azureEndpoint")
     def azure_endpoint(self) -> pulumi.Output[Optional[str]]:
         """
-        Azure blob storage endpoint. This is typically
-        only set when using a non-Azure implementation like Azurite.
+        Azure blob storage endpoint. This is typically only set when using a non-Azure implementation like Azurite.
         """
         return pulumi.get(self, "azure_endpoint")
 
@@ -1709,9 +1540,7 @@ class RaftSnapshotAgentConfig(pulumi.CustomResource):
     @pulumi.getter(name="googleDisableTls")
     def google_disable_tls(self) -> pulumi.Output[Optional[bool]]:
         """
-        Disable TLS for the GCS endpoint. This
-        should only be used for testing purposes, typically in conjunction with
-        `google_endpoint`.
+        Disable TLS for the GCS endpoint.
         """
         return pulumi.get(self, "google_disable_tls")
 
@@ -1719,8 +1548,7 @@ class RaftSnapshotAgentConfig(pulumi.CustomResource):
     @pulumi.getter(name="googleEndpoint")
     def google_endpoint(self) -> pulumi.Output[Optional[str]]:
         """
-        GCS endpoint. This is typically only set when
-        using a non-Google GCS implementation like fake-gcs-server.
+        GCS endpoint. This is typically only set when using a non-Google GCS implementation like fake-gcs-server.
         """
         return pulumi.get(self, "google_endpoint")
 
@@ -1728,7 +1556,7 @@ class RaftSnapshotAgentConfig(pulumi.CustomResource):
     @pulumi.getter(name="googleGcsBucket")
     def google_gcs_bucket(self) -> pulumi.Output[Optional[str]]:
         """
-        `<required>` - GCS bucket to write snapshots to.
+        GCS bucket to write snapshots to.
         """
         return pulumi.get(self, "google_gcs_bucket")
 
@@ -1736,23 +1564,7 @@ class RaftSnapshotAgentConfig(pulumi.CustomResource):
     @pulumi.getter(name="googleServiceAccountKey")
     def google_service_account_key(self) -> pulumi.Output[Optional[str]]:
         """
-        Google service account key in JSON format. 
-        The raw value looks like this:
-
-        ```json
-        {
-        "type": "service_account",
-        "project_id": "project-id",
-        "private_key_id": "key-id",
-        "private_key": "-----BEGIN RSA PRIVATE KEY-----\\nMIIEpQ ... /WZs=\\n-----END RSA PRIVATE KEY-----\\n",
-        "client_email": "service-account-email",
-        "client_id": "client-id",
-        "auth_uri": "https://accounts.google.com/o/oauth2/auth",
-        "token_uri": "https://accounts.google.com/o/oauth2/token",
-        "auth_provider_x509_cert_url": "https://www.googleapis.com/oauth2/v1/certs",
-        "client_x509_cert_url": "https://www.googleapis.com/robot/v1/metadata/x509/service-account-email"
-        }
-        ```
+        Google service account key in JSON format.
         """
         return pulumi.get(self, "google_service_account_key")
 
@@ -1768,9 +1580,7 @@ class RaftSnapshotAgentConfig(pulumi.CustomResource):
     @pulumi.getter(name="localMaxSpace")
     def local_max_space(self) -> pulumi.Output[Optional[int]]:
         """
-        For `storage_type = local`, the maximum
-        space, in bytes, to use for snapshots. Snapshot attempts will fail if there is not enough
-        space left in this allowance.
+        The maximum space, in bytes, to use for snapshots.
         """
         return pulumi.get(self, "local_max_space")
 
@@ -1788,7 +1598,7 @@ class RaftSnapshotAgentConfig(pulumi.CustomResource):
         """
         The namespace to provision the resource in.
         The value should not contain leading or trailing forward slashes.
-        The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault#namespace).
+        The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault/index.html#namespace).
         *Available only for Vault Enterprise*.
         """
         return pulumi.get(self, "namespace")