pulumi-vault 6.2.0__py3-none-any.whl → 6.2.0a1712470779__py3-none-any.whl

pulumi_vault/database/outputs.py

@@ -87,16 +87,20 @@ class SecretBackendConnectionCassandra(dict):
                  tls: Optional[bool] = None,
                  username: Optional[str] = None):
         """
-        :param int connect_timeout: The number of seconds to use as a connection timeout.
-        :param Sequence[str] hosts: Cassandra hosts to connect to.
-        :param bool insecure_tls: Whether to skip verification of the server certificate when using TLS.
-        :param str password: The password to use when authenticating with Cassandra.
-        :param str pem_bundle: Concatenated PEM blocks containing a certificate and private key; a certificate, private key, and issuing CA certificate; or just a CA certificate.
-        :param str pem_json: Specifies JSON containing a certificate and private key; a certificate, private key, and issuing CA certificate; or just a CA certificate.
-        :param int port: The transport port to use to connect to Cassandra.
+        :param int connect_timeout: The number of seconds to use as a connection
+               timeout.
+        :param Sequence[str] hosts: The hosts to connect to.
+        :param bool insecure_tls: Whether to skip verification of the server
+               certificate when using TLS.
+        :param str password: The password to authenticate with.
+        :param str pem_bundle: Concatenated PEM blocks configuring the certificate
+               chain.
+        :param str pem_json: A JSON structure configuring the certificate chain.
+        :param int port: The default port to connect to if no port is specified as
+               part of the host.
         :param int protocol_version: The CQL protocol version to use.
         :param bool tls: Whether to use TLS when connecting to Cassandra.
-        :param str username: The username to use when authenticating with Cassandra.
+        :param str username: The username to authenticate with.
         """
         if connect_timeout is not None:
             pulumi.set(__self__, "connect_timeout", connect_timeout)
@@ -123,7 +127,8 @@ class SecretBackendConnectionCassandra(dict):
     @pulumi.getter(name="connectTimeout")
     def connect_timeout(self) -> Optional[int]:
         """
-        The number of seconds to use as a connection timeout.
+        The number of seconds to use as a connection
+        timeout.
         """
         return pulumi.get(self, "connect_timeout")
 
@@ -131,7 +136,7 @@ class SecretBackendConnectionCassandra(dict):
     @pulumi.getter
     def hosts(self) -> Optional[Sequence[str]]:
         """
-        Cassandra hosts to connect to.
+        The hosts to connect to.
         """
         return pulumi.get(self, "hosts")
 
@@ -139,7 +144,8 @@ class SecretBackendConnectionCassandra(dict):
     @pulumi.getter(name="insecureTls")
     def insecure_tls(self) -> Optional[bool]:
         """
-        Whether to skip verification of the server certificate when using TLS.
+        Whether to skip verification of the server
+        certificate when using TLS.
         """
         return pulumi.get(self, "insecure_tls")
 
@@ -147,7 +153,7 @@ class SecretBackendConnectionCassandra(dict):
     @pulumi.getter
     def password(self) -> Optional[str]:
         """
-        The password to use when authenticating with Cassandra.
+        The password to authenticate with.
         """
         return pulumi.get(self, "password")
 
@@ -155,7 +161,8 @@ class SecretBackendConnectionCassandra(dict):
     @pulumi.getter(name="pemBundle")
     def pem_bundle(self) -> Optional[str]:
         """
-        Concatenated PEM blocks containing a certificate and private key; a certificate, private key, and issuing CA certificate; or just a CA certificate.
+        Concatenated PEM blocks configuring the certificate
+        chain.
         """
         return pulumi.get(self, "pem_bundle")
 
@@ -163,7 +170,7 @@ class SecretBackendConnectionCassandra(dict):
     @pulumi.getter(name="pemJson")
     def pem_json(self) -> Optional[str]:
         """
-        Specifies JSON containing a certificate and private key; a certificate, private key, and issuing CA certificate; or just a CA certificate.
+        A JSON structure configuring the certificate chain.
         """
         return pulumi.get(self, "pem_json")
 
@@ -171,7 +178,8 @@ class SecretBackendConnectionCassandra(dict):
     @pulumi.getter
     def port(self) -> Optional[int]:
         """
-        The transport port to use to connect to Cassandra.
+        The default port to connect to if no port is specified as
+        part of the host.
         """
         return pulumi.get(self, "port")
 
@@ -195,7 +203,7 @@ class SecretBackendConnectionCassandra(dict):
     @pulumi.getter
     def username(self) -> Optional[str]:
         """
-        The username to use when authenticating with Cassandra.
+        The username to authenticate with.
         """
         return pulumi.get(self, "username")
 
@@ -235,13 +243,14 @@ class SecretBackendConnectionCouchbase(dict):
                  tls: Optional[bool] = None,
                  username_template: Optional[str] = None):
         """
-        :param Sequence[str] hosts: A set of Couchbase URIs to connect to. Must use `couchbases://` scheme if `tls` is `true`.
-        :param str password: Specifies the password corresponding to the given username.
-        :param str username: Specifies the username for Vault to use.
+        :param Sequence[str] hosts: The hosts to connect to.
+        :param str password: The password to authenticate with.
+        :param str username: The username to authenticate with.
         :param str base64_pem: Required if `tls` is `true`. Specifies the certificate authority of the Couchbase server, as a PEM certificate that has been base64 encoded.
         :param str bucket_name: Required for Couchbase versions prior to 6.5.0. This is only used to verify vault's connection to the server.
-        :param bool insecure_tls: Specifies whether to skip verification of the server certificate when using TLS.
-        :param bool tls: Specifies whether to use TLS when connecting to Couchbase.
+        :param bool insecure_tls: Whether to skip verification of the server
+               certificate when using TLS.
+        :param bool tls: Whether to use TLS when connecting to Cassandra.
         :param str username_template: Template describing how dynamic usernames are generated.
         """
         pulumi.set(__self__, "hosts", hosts)
@@ -262,7 +271,7 @@ class SecretBackendConnectionCouchbase(dict):
     @pulumi.getter
     def hosts(self) -> Sequence[str]:
         """
-        A set of Couchbase URIs to connect to. Must use `couchbases://` scheme if `tls` is `true`.
+        The hosts to connect to.
         """
         return pulumi.get(self, "hosts")
 
@@ -270,7 +279,7 @@ class SecretBackendConnectionCouchbase(dict):
     @pulumi.getter
     def password(self) -> str:
         """
-        Specifies the password corresponding to the given username.
+        The password to authenticate with.
         """
         return pulumi.get(self, "password")
 
@@ -278,7 +287,7 @@ class SecretBackendConnectionCouchbase(dict):
     @pulumi.getter
     def username(self) -> str:
         """
-        Specifies the username for Vault to use.
+        The username to authenticate with.
         """
         return pulumi.get(self, "username")
 
@@ -302,7 +311,8 @@ class SecretBackendConnectionCouchbase(dict):
     @pulumi.getter(name="insecureTls")
     def insecure_tls(self) -> Optional[bool]:
         """
-        Specifies whether to skip verification of the server certificate when using TLS.
+        Whether to skip verification of the server
+        certificate when using TLS.
         """
         return pulumi.get(self, "insecure_tls")
 
@@ -310,7 +320,7 @@ class SecretBackendConnectionCouchbase(dict):
     @pulumi.getter
     def tls(self) -> Optional[bool]:
         """
-        Specifies whether to use TLS when connecting to Couchbase.
+        Whether to use TLS when connecting to Cassandra.
         """
         return pulumi.get(self, "tls")
 
@@ -364,15 +374,16 @@ class SecretBackendConnectionElasticsearch(dict):
                  tls_server_name: Optional[str] = None,
                  username_template: Optional[str] = None):
         """
-        :param str password: The password to be used in the connection URL
-        :param str url: The URL for Elasticsearch's API
-        :param str username: The username to be used in the connection URL
-        :param str ca_cert: The path to a PEM-encoded CA cert file to use to verify the Elasticsearch server's identity
-        :param str ca_path: The path to a directory of PEM-encoded CA cert files to use to verify the Elasticsearch server's identity
-        :param str client_cert: The path to the certificate for the Elasticsearch client to present for communication
-        :param str client_key: The path to the key for the Elasticsearch client to use for communication
-        :param bool insecure: Whether to disable certificate verification
-        :param str tls_server_name: This, if set, is used to set the SNI host when connecting via TLS
+        :param str password: The password to authenticate with.
+        :param str url: The URL for Elasticsearch's API. https requires certificate
+               by trusted CA if used.
+        :param str username: The username to authenticate with.
+        :param str ca_cert: The path to a PEM-encoded CA cert file to use to verify the Elasticsearch server's identity.
+        :param str ca_path: The path to a directory of PEM-encoded CA cert files to use to verify the Elasticsearch server's identity.
+        :param str client_cert: The path to the certificate for the Elasticsearch client to present for communication.
+        :param str client_key: The path to the key for the Elasticsearch client to use for communication.
+        :param bool insecure: Whether to disable certificate verification.
+        :param str tls_server_name: This, if set, is used to set the SNI host when connecting via TLS.
         :param str username_template: Template describing how dynamic usernames are generated.
         """
         pulumi.set(__self__, "password", password)
@@ -397,7 +408,7 @@ class SecretBackendConnectionElasticsearch(dict):
     @pulumi.getter
     def password(self) -> str:
         """
-        The password to be used in the connection URL
+        The password to authenticate with.
         """
         return pulumi.get(self, "password")
 
@@ -405,7 +416,8 @@ class SecretBackendConnectionElasticsearch(dict):
     @pulumi.getter
     def url(self) -> str:
         """
-        The URL for Elasticsearch's API
+        The URL for Elasticsearch's API. https requires certificate
+        by trusted CA if used.
         """
         return pulumi.get(self, "url")
 
@@ -413,7 +425,7 @@ class SecretBackendConnectionElasticsearch(dict):
     @pulumi.getter
     def username(self) -> str:
         """
-        The username to be used in the connection URL
+        The username to authenticate with.
         """
         return pulumi.get(self, "username")
 
@@ -421,7 +433,7 @@ class SecretBackendConnectionElasticsearch(dict):
     @pulumi.getter(name="caCert")
     def ca_cert(self) -> Optional[str]:
         """
-        The path to a PEM-encoded CA cert file to use to verify the Elasticsearch server's identity
+        The path to a PEM-encoded CA cert file to use to verify the Elasticsearch server's identity.
         """
         return pulumi.get(self, "ca_cert")
 
@@ -429,7 +441,7 @@ class SecretBackendConnectionElasticsearch(dict):
     @pulumi.getter(name="caPath")
     def ca_path(self) -> Optional[str]:
         """
-        The path to a directory of PEM-encoded CA cert files to use to verify the Elasticsearch server's identity
+        The path to a directory of PEM-encoded CA cert files to use to verify the Elasticsearch server's identity.
         """
         return pulumi.get(self, "ca_path")
 
@@ -437,7 +449,7 @@ class SecretBackendConnectionElasticsearch(dict):
     @pulumi.getter(name="clientCert")
     def client_cert(self) -> Optional[str]:
         """
-        The path to the certificate for the Elasticsearch client to present for communication
+        The path to the certificate for the Elasticsearch client to present for communication.
         """
         return pulumi.get(self, "client_cert")
 
@@ -445,7 +457,7 @@ class SecretBackendConnectionElasticsearch(dict):
     @pulumi.getter(name="clientKey")
     def client_key(self) -> Optional[str]:
         """
-        The path to the key for the Elasticsearch client to use for communication
+        The path to the key for the Elasticsearch client to use for communication.
         """
         return pulumi.get(self, "client_key")
 
@@ -453,7 +465,7 @@ class SecretBackendConnectionElasticsearch(dict):
     @pulumi.getter
     def insecure(self) -> Optional[bool]:
         """
-        Whether to disable certificate verification
+        Whether to disable certificate verification.
         """
         return pulumi.get(self, "insecure")
 
@@ -461,7 +473,7 @@ class SecretBackendConnectionElasticsearch(dict):
     @pulumi.getter(name="tlsServerName")
     def tls_server_name(self) -> Optional[str]:
         """
-        This, if set, is used to set the SNI host when connecting via TLS
+        This, if set, is used to set the SNI host when connecting via TLS.
         """
         return pulumi.get(self, "tls_server_name")
 
@@ -510,13 +522,19 @@ class SecretBackendConnectionHana(dict):
                  password: Optional[str] = None,
                  username: Optional[str] = None):
         """
-        :param str connection_url: Connection string to use to connect to the database.
-        :param bool disable_escaping: Disable special character escaping in username and password
-        :param int max_connection_lifetime: Maximum number of seconds a connection may be reused.
-        :param int max_idle_connections: Maximum number of idle connections to the database.
-        :param int max_open_connections: Maximum number of open connections to the database.
-        :param str password: The root credential password used in the connection URL
-        :param str username: The root credential username used in the connection URL
+        :param str connection_url: A URL containing connection information. See
+               the [Vault
+               docs](https://www.vaultproject.io/api-docs/secret/databases/mongodb.html#sample-payload)
+               for an example.
+        :param bool disable_escaping: Disable special character escaping in username and password.
+        :param int max_connection_lifetime: The maximum number of seconds to keep
+               a connection alive for.
+        :param int max_idle_connections: The maximum number of idle connections to
+               maintain.
+        :param int max_open_connections: The maximum number of open connections to
+               use.
+        :param str password: The password to authenticate with.
+        :param str username: The username to authenticate with.
         """
         if connection_url is not None:
             pulumi.set(__self__, "connection_url", connection_url)
@@ -537,7 +555,10 @@ class SecretBackendConnectionHana(dict):
     @pulumi.getter(name="connectionUrl")
     def connection_url(self) -> Optional[str]:
         """
-        Connection string to use to connect to the database.
+        A URL containing connection information. See
+        the [Vault
+        docs](https://www.vaultproject.io/api-docs/secret/databases/mongodb.html#sample-payload)
+        for an example.
         """
         return pulumi.get(self, "connection_url")
 
@@ -545,7 +566,7 @@ class SecretBackendConnectionHana(dict):
     @pulumi.getter(name="disableEscaping")
     def disable_escaping(self) -> Optional[bool]:
         """
-        Disable special character escaping in username and password
+        Disable special character escaping in username and password.
         """
         return pulumi.get(self, "disable_escaping")
 
@@ -553,7 +574,8 @@ class SecretBackendConnectionHana(dict):
     @pulumi.getter(name="maxConnectionLifetime")
     def max_connection_lifetime(self) -> Optional[int]:
         """
-        Maximum number of seconds a connection may be reused.
+        The maximum number of seconds to keep
+        a connection alive for.
         """
         return pulumi.get(self, "max_connection_lifetime")
 
@@ -561,7 +583,8 @@ class SecretBackendConnectionHana(dict):
     @pulumi.getter(name="maxIdleConnections")
     def max_idle_connections(self) -> Optional[int]:
         """
-        Maximum number of idle connections to the database.
+        The maximum number of idle connections to
+        maintain.
         """
         return pulumi.get(self, "max_idle_connections")
 
@@ -569,7 +592,8 @@ class SecretBackendConnectionHana(dict):
     @pulumi.getter(name="maxOpenConnections")
     def max_open_connections(self) -> Optional[int]:
         """
-        Maximum number of open connections to the database.
+        The maximum number of open connections to
+        use.
         """
         return pulumi.get(self, "max_open_connections")
 
@@ -577,7 +601,7 @@ class SecretBackendConnectionHana(dict):
     @pulumi.getter
     def password(self) -> Optional[str]:
         """
-        The root credential password used in the connection URL
+        The password to authenticate with.
         """
         return pulumi.get(self, "password")
 
@@ -585,7 +609,7 @@ class SecretBackendConnectionHana(dict):
     @pulumi.getter
     def username(self) -> Optional[str]:
         """
-        The root credential username used in the connection URL
+        The username to authenticate with.
         """
         return pulumi.get(self, "username")
 
@@ -629,15 +653,19 @@ class SecretBackendConnectionInfluxdb(dict):
                  tls: Optional[bool] = None,
                  username_template: Optional[str] = None):
         """
-        :param str host: Influxdb host to connect to.
-        :param str password: Specifies the password corresponding to the given username.
-        :param str username: Specifies the username to use for superuser access.
-        :param int connect_timeout: The number of seconds to use as a connection timeout.
-        :param bool insecure_tls: Whether to skip verification of the server certificate when using TLS.
-        :param str pem_bundle: Concatenated PEM blocks containing a certificate and private key; a certificate, private key, and issuing CA certificate; or just a CA certificate.
-        :param str pem_json: Specifies JSON containing a certificate and private key; a certificate, private key, and issuing CA certificate; or just a CA certificate.
-        :param int port: The transport port to use to connect to Influxdb.
-        :param bool tls: Whether to use TLS when connecting to Influxdb.
+        :param str host: The host to connect to.
+        :param str password: The password to authenticate with.
+        :param str username: The username to authenticate with.
+        :param int connect_timeout: The number of seconds to use as a connection
+               timeout.
+        :param bool insecure_tls: Whether to skip verification of the server
+               certificate when using TLS.
+        :param str pem_bundle: Concatenated PEM blocks configuring the certificate
+               chain.
+        :param str pem_json: A JSON structure configuring the certificate chain.
+        :param int port: The default port to connect to if no port is specified as
+               part of the host.
+        :param bool tls: Whether to use TLS when connecting to Cassandra.
         :param str username_template: Template describing how dynamic usernames are generated.
         """
         pulumi.set(__self__, "host", host)
@@ -662,7 +690,7 @@ class SecretBackendConnectionInfluxdb(dict):
     @pulumi.getter
     def host(self) -> str:
         """
-        Influxdb host to connect to.
+        The host to connect to.
         """
         return pulumi.get(self, "host")
 
@@ -670,7 +698,7 @@ class SecretBackendConnectionInfluxdb(dict):
     @pulumi.getter
     def password(self) -> str:
         """
-        Specifies the password corresponding to the given username.
+        The password to authenticate with.
         """
         return pulumi.get(self, "password")
 
@@ -678,7 +706,7 @@ class SecretBackendConnectionInfluxdb(dict):
     @pulumi.getter
     def username(self) -> str:
         """
-        Specifies the username to use for superuser access.
+        The username to authenticate with.
         """
         return pulumi.get(self, "username")
 
@@ -686,7 +714,8 @@ class SecretBackendConnectionInfluxdb(dict):
     @pulumi.getter(name="connectTimeout")
     def connect_timeout(self) -> Optional[int]:
         """
-        The number of seconds to use as a connection timeout.
+        The number of seconds to use as a connection
+        timeout.
         """
         return pulumi.get(self, "connect_timeout")
 
@@ -694,7 +723,8 @@ class SecretBackendConnectionInfluxdb(dict):
     @pulumi.getter(name="insecureTls")
     def insecure_tls(self) -> Optional[bool]:
         """
-        Whether to skip verification of the server certificate when using TLS.
+        Whether to skip verification of the server
+        certificate when using TLS.
         """
         return pulumi.get(self, "insecure_tls")
 
@@ -702,7 +732,8 @@ class SecretBackendConnectionInfluxdb(dict):
     @pulumi.getter(name="pemBundle")
     def pem_bundle(self) -> Optional[str]:
         """
-        Concatenated PEM blocks containing a certificate and private key; a certificate, private key, and issuing CA certificate; or just a CA certificate.
+        Concatenated PEM blocks configuring the certificate
+        chain.
         """
         return pulumi.get(self, "pem_bundle")
 
@@ -710,7 +741,7 @@ class SecretBackendConnectionInfluxdb(dict):
     @pulumi.getter(name="pemJson")
     def pem_json(self) -> Optional[str]:
         """
-        Specifies JSON containing a certificate and private key; a certificate, private key, and issuing CA certificate; or just a CA certificate.
+        A JSON structure configuring the certificate chain.
         """
         return pulumi.get(self, "pem_json")
 
@@ -718,7 +749,8 @@ class SecretBackendConnectionInfluxdb(dict):
     @pulumi.getter
     def port(self) -> Optional[int]:
         """
-        The transport port to use to connect to Influxdb.
+        The default port to connect to if no port is specified as
+        part of the host.
         """
         return pulumi.get(self, "port")
 
@@ -726,7 +758,7 @@ class SecretBackendConnectionInfluxdb(dict):
     @pulumi.getter
     def tls(self) -> Optional[bool]:
         """
-        Whether to use TLS when connecting to Influxdb.
+        Whether to use TLS when connecting to Cassandra.
         """
         return pulumi.get(self, "tls")
 
@@ -775,13 +807,19 @@ class SecretBackendConnectionMongodb(dict):
                  username: Optional[str] = None,
                  username_template: Optional[str] = None):
         """
-        :param str connection_url: Connection string to use to connect to the database.
-        :param int max_connection_lifetime: Maximum number of seconds a connection may be reused.
-        :param int max_idle_connections: Maximum number of idle connections to the database.
-        :param int max_open_connections: Maximum number of open connections to the database.
-        :param str password: The root credential password used in the connection URL
-        :param str username: The root credential username used in the connection URL
-        :param str username_template: Username generation template.
+        :param str connection_url: A URL containing connection information. See
+               the [Vault
+               docs](https://www.vaultproject.io/api-docs/secret/databases/mongodb.html#sample-payload)
+               for an example.
+        :param int max_connection_lifetime: The maximum number of seconds to keep
+               a connection alive for.
+        :param int max_idle_connections: The maximum number of idle connections to
+               maintain.
+        :param int max_open_connections: The maximum number of open connections to
+               use.
+        :param str password: The password to authenticate with.
+        :param str username: The username to authenticate with.
+        :param str username_template: Template describing how dynamic usernames are generated.
         """
         if connection_url is not None:
             pulumi.set(__self__, "connection_url", connection_url)
@@ -802,7 +840,10 @@ class SecretBackendConnectionMongodb(dict):
     @pulumi.getter(name="connectionUrl")
     def connection_url(self) -> Optional[str]:
         """
-        Connection string to use to connect to the database.
+        A URL containing connection information. See
+        the [Vault
+        docs](https://www.vaultproject.io/api-docs/secret/databases/mongodb.html#sample-payload)
+        for an example.
         """
         return pulumi.get(self, "connection_url")
 
@@ -810,7 +851,8 @@ class SecretBackendConnectionMongodb(dict):
     @pulumi.getter(name="maxConnectionLifetime")
     def max_connection_lifetime(self) -> Optional[int]:
         """
-        Maximum number of seconds a connection may be reused.
+        The maximum number of seconds to keep
+        a connection alive for.
         """
         return pulumi.get(self, "max_connection_lifetime")
 
@@ -818,7 +860,8 @@ class SecretBackendConnectionMongodb(dict):
     @pulumi.getter(name="maxIdleConnections")
     def max_idle_connections(self) -> Optional[int]:
         """
-        Maximum number of idle connections to the database.
+        The maximum number of idle connections to
+        maintain.
         """
         return pulumi.get(self, "max_idle_connections")
 
@@ -826,7 +869,8 @@ class SecretBackendConnectionMongodb(dict):
     @pulumi.getter(name="maxOpenConnections")
     def max_open_connections(self) -> Optional[int]:
         """
-        Maximum number of open connections to the database.
+        The maximum number of open connections to
+        use.
         """
         return pulumi.get(self, "max_open_connections")
 
@@ -834,7 +878,7 @@ class SecretBackendConnectionMongodb(dict):
     @pulumi.getter
     def password(self) -> Optional[str]:
         """
-        The root credential password used in the connection URL
+        The password to authenticate with.
         """
         return pulumi.get(self, "password")
 
@@ -842,7 +886,7 @@ class SecretBackendConnectionMongodb(dict):
     @pulumi.getter
     def username(self) -> Optional[str]:
         """
-        The root credential username used in the connection URL
+        The username to authenticate with.
         """
         return pulumi.get(self, "username")
 
@@ -850,7 +894,7 @@ class SecretBackendConnectionMongodb(dict):
     @pulumi.getter(name="usernameTemplate")
     def username_template(self) -> Optional[str]:
         """
-        Username generation template.
+        Template describing how dynamic usernames are generated.
         """
         return pulumi.get(self, "username_template")
 
@@ -958,15 +1002,24 @@ class SecretBackendConnectionMssql(dict):
                  username: Optional[str] = None,
                  username_template: Optional[str] = None):
         """
-        :param str connection_url: Connection string to use to connect to the database.
-        :param bool contained_db: Set to true when the target is a Contained Database, e.g. AzureSQL.
-        :param bool disable_escaping: Disable special character escaping in username and password
-        :param int max_connection_lifetime: Maximum number of seconds a connection may be reused.
-        :param int max_idle_connections: Maximum number of idle connections to the database.
-        :param int max_open_connections: Maximum number of open connections to the database.
-        :param str password: The root credential password used in the connection URL
-        :param str username: The root credential username used in the connection URL
-        :param str username_template: Username generation template.
+        :param str connection_url: A URL containing connection information. See
+               the [Vault
+               docs](https://www.vaultproject.io/api-docs/secret/databases/mongodb.html#sample-payload)
+               for an example.
+        :param bool contained_db: For Vault v1.9+. Set to true when the target is a
+               Contained Database, e.g. AzureSQL.
+               See the [Vault
+               docs](https://www.vaultproject.io/api/secret/databases/mssql#contained_db)
+        :param bool disable_escaping: Disable special character escaping in username and password.
+        :param int max_connection_lifetime: The maximum number of seconds to keep
+               a connection alive for.
+        :param int max_idle_connections: The maximum number of idle connections to
+               maintain.
+        :param int max_open_connections: The maximum number of open connections to
+               use.
+        :param str password: The password to authenticate with.
+        :param str username: The username to authenticate with.
+        :param str username_template: Template describing how dynamic usernames are generated.
         """
         if connection_url is not None:
             pulumi.set(__self__, "connection_url", connection_url)
@@ -991,7 +1044,10 @@ class SecretBackendConnectionMssql(dict):
     @pulumi.getter(name="connectionUrl")
     def connection_url(self) -> Optional[str]:
         """
-        Connection string to use to connect to the database.
+        A URL containing connection information. See
+        the [Vault
+        docs](https://www.vaultproject.io/api-docs/secret/databases/mongodb.html#sample-payload)
+        for an example.
         """
         return pulumi.get(self, "connection_url")
 
@@ -999,7 +1055,10 @@ class SecretBackendConnectionMssql(dict):
     @pulumi.getter(name="containedDb")
     def contained_db(self) -> Optional[bool]:
         """
-        Set to true when the target is a Contained Database, e.g. AzureSQL.
+        For Vault v1.9+. Set to true when the target is a
+        Contained Database, e.g. AzureSQL.
+        See the [Vault
+        docs](https://www.vaultproject.io/api/secret/databases/mssql#contained_db)
         """
         return pulumi.get(self, "contained_db")
 
@@ -1007,7 +1066,7 @@ class SecretBackendConnectionMssql(dict):
     @pulumi.getter(name="disableEscaping")
     def disable_escaping(self) -> Optional[bool]:
         """
-        Disable special character escaping in username and password
+        Disable special character escaping in username and password.
         """
         return pulumi.get(self, "disable_escaping")
 
@@ -1015,7 +1074,8 @@ class SecretBackendConnectionMssql(dict):
     @pulumi.getter(name="maxConnectionLifetime")
     def max_connection_lifetime(self) -> Optional[int]:
         """
-        Maximum number of seconds a connection may be reused.
+        The maximum number of seconds to keep
+        a connection alive for.
         """
         return pulumi.get(self, "max_connection_lifetime")
 
@@ -1023,7 +1083,8 @@ class SecretBackendConnectionMssql(dict):
     @pulumi.getter(name="maxIdleConnections")
     def max_idle_connections(self) -> Optional[int]:
         """
-        Maximum number of idle connections to the database.
+        The maximum number of idle connections to
+        maintain.
         """
         return pulumi.get(self, "max_idle_connections")
 
@@ -1031,7 +1092,8 @@ class SecretBackendConnectionMssql(dict):
     @pulumi.getter(name="maxOpenConnections")
     def max_open_connections(self) -> Optional[int]:
         """
-        Maximum number of open connections to the database.
+        The maximum number of open connections to
+        use.
         """
         return pulumi.get(self, "max_open_connections")
 
@@ -1039,7 +1101,7 @@ class SecretBackendConnectionMssql(dict):
     @pulumi.getter
     def password(self) -> Optional[str]:
         """
-        The root credential password used in the connection URL
+        The password to authenticate with.
         """
         return pulumi.get(self, "password")
 
@@ -1047,7 +1109,7 @@ class SecretBackendConnectionMssql(dict):
     @pulumi.getter
     def username(self) -> Optional[str]:
         """
-        The root credential username used in the connection URL
+        The username to authenticate with.
         """
         return pulumi.get(self, "username")
 
@@ -1055,7 +1117,7 @@ class SecretBackendConnectionMssql(dict):
     @pulumi.getter(name="usernameTemplate")
     def username_template(self) -> Optional[str]:
         """
-        Username generation template.
+        Template describing how dynamic usernames are generated.
         """
         return pulumi.get(self, "username_template")
 
@@ -1108,17 +1170,23 @@ class SecretBackendConnectionMysql(dict):
                  username: Optional[str] = None,
                  username_template: Optional[str] = None):
         """
-        :param str auth_type: Specify alternative authorization type. (Only 'gcp_iam' is valid currently)
-        :param str connection_url: Connection string to use to connect to the database.
-        :param int max_connection_lifetime: Maximum number of seconds a connection may be reused.
-        :param int max_idle_connections: Maximum number of idle connections to the database.
-        :param int max_open_connections: Maximum number of open connections to the database.
-        :param str password: The root credential password used in the connection URL
-        :param str service_account_json: A JSON encoded credential for use with IAM authorization
+        :param str auth_type: Enable IAM authentication to a Google Cloud instance when set to `gcp_iam`
+        :param str connection_url: A URL containing connection information. See
+               the [Vault
+               docs](https://www.vaultproject.io/api-docs/secret/databases/mongodb.html#sample-payload)
+               for an example.
+        :param int max_connection_lifetime: The maximum number of seconds to keep
+               a connection alive for.
+        :param int max_idle_connections: The maximum number of idle connections to
+               maintain.
+        :param int max_open_connections: The maximum number of open connections to
+               use.
+        :param str password: The password to authenticate with.
+        :param str service_account_json: JSON encoding of an IAM access key. Requires `auth_type` to be `gcp_iam`.
         :param str tls_ca: x509 CA file for validating the certificate presented by the MySQL server. Must be PEM encoded.
         :param str tls_certificate_key: x509 certificate for connecting to the database. This must be a PEM encoded version of the private key and the certificate combined.
-        :param str username: The root credential username used in the connection URL
-        :param str username_template: Username generation template.
+        :param str username: The username to authenticate with.
+        :param str username_template: Template describing how dynamic usernames are generated.
         """
         if auth_type is not None:
             pulumi.set(__self__, "auth_type", auth_type)
@@ -1147,7 +1215,7 @@ class SecretBackendConnectionMysql(dict):
     @pulumi.getter(name="authType")
     def auth_type(self) -> Optional[str]:
         """
-        Specify alternative authorization type. (Only 'gcp_iam' is valid currently)
+        Enable IAM authentication to a Google Cloud instance when set to `gcp_iam`
         """
         return pulumi.get(self, "auth_type")
 
@@ -1155,7 +1223,10 @@ class SecretBackendConnectionMysql(dict):
     @pulumi.getter(name="connectionUrl")
     def connection_url(self) -> Optional[str]:
         """
-        Connection string to use to connect to the database.
+        A URL containing connection information. See
+        the [Vault
+        docs](https://www.vaultproject.io/api-docs/secret/databases/mongodb.html#sample-payload)
+        for an example.
         """
         return pulumi.get(self, "connection_url")
 
@@ -1163,7 +1234,8 @@ class SecretBackendConnectionMysql(dict):
     @pulumi.getter(name="maxConnectionLifetime")
     def max_connection_lifetime(self) -> Optional[int]:
         """
-        Maximum number of seconds a connection may be reused.
+        The maximum number of seconds to keep
+        a connection alive for.
         """
         return pulumi.get(self, "max_connection_lifetime")
 
@@ -1171,7 +1243,8 @@ class SecretBackendConnectionMysql(dict):
     @pulumi.getter(name="maxIdleConnections")
     def max_idle_connections(self) -> Optional[int]:
         """
-        Maximum number of idle connections to the database.
+        The maximum number of idle connections to
+        maintain.
         """
         return pulumi.get(self, "max_idle_connections")
 
@@ -1179,7 +1252,8 @@ class SecretBackendConnectionMysql(dict):
     @pulumi.getter(name="maxOpenConnections")
     def max_open_connections(self) -> Optional[int]:
         """
-        Maximum number of open connections to the database.
+        The maximum number of open connections to
+        use.
         """
         return pulumi.get(self, "max_open_connections")
 
@@ -1187,7 +1261,7 @@ class SecretBackendConnectionMysql(dict):
     @pulumi.getter
     def password(self) -> Optional[str]:
         """
-        The root credential password used in the connection URL
+        The password to authenticate with.
         """
         return pulumi.get(self, "password")
 
@@ -1195,7 +1269,7 @@ class SecretBackendConnectionMysql(dict):
     @pulumi.getter(name="serviceAccountJson")
     def service_account_json(self) -> Optional[str]:
         """
-        A JSON encoded credential for use with IAM authorization
+        JSON encoding of an IAM access key. Requires `auth_type` to be `gcp_iam`.
         """
         return pulumi.get(self, "service_account_json")
 
@@ -1219,7 +1293,7 @@ class SecretBackendConnectionMysql(dict):
     @pulumi.getter
     def username(self) -> Optional[str]:
         """
-        The root credential username used in the connection URL
+        The username to authenticate with.
         """
         return pulumi.get(self, "username")
 
@@ -1227,7 +1301,7 @@ class SecretBackendConnectionMysql(dict):
     @pulumi.getter(name="usernameTemplate")
     def username_template(self) -> Optional[str]:
         """
-        Username generation template.
+        Template describing how dynamic usernames are generated.
         """
         return pulumi.get(self, "username_template")
 
@@ -1280,17 +1354,23 @@ class SecretBackendConnectionMysqlAurora(dict):
                  username: Optional[str] = None,
                  username_template: Optional[str] = None):
         """
-        :param str auth_type: Specify alternative authorization type. (Only 'gcp_iam' is valid currently)
-        :param str connection_url: Connection string to use to connect to the database.
-        :param int max_connection_lifetime: Maximum number of seconds a connection may be reused.
-        :param int max_idle_connections: Maximum number of idle connections to the database.
-        :param int max_open_connections: Maximum number of open connections to the database.
-        :param str password: The root credential password used in the connection URL
-        :param str service_account_json: A JSON encoded credential for use with IAM authorization
+        :param str auth_type: Enable IAM authentication to a Google Cloud instance when set to `gcp_iam`
+        :param str connection_url: A URL containing connection information. See
+               the [Vault
+               docs](https://www.vaultproject.io/api-docs/secret/databases/mongodb.html#sample-payload)
+               for an example.
+        :param int max_connection_lifetime: The maximum number of seconds to keep
+               a connection alive for.
+        :param int max_idle_connections: The maximum number of idle connections to
+               maintain.
+        :param int max_open_connections: The maximum number of open connections to
+               use.
+        :param str password: The password to authenticate with.
+        :param str service_account_json: JSON encoding of an IAM access key. Requires `auth_type` to be `gcp_iam`.
         :param str tls_ca: x509 CA file for validating the certificate presented by the MySQL server. Must be PEM encoded.
         :param str tls_certificate_key: x509 certificate for connecting to the database. This must be a PEM encoded version of the private key and the certificate combined.
-        :param str username: The root credential username used in the connection URL
-        :param str username_template: Username generation template.
+        :param str username: The username to authenticate with.
+        :param str username_template: Template describing how dynamic usernames are generated.
         """
         if auth_type is not None:
             pulumi.set(__self__, "auth_type", auth_type)
@@ -1319,7 +1399,7 @@ class SecretBackendConnectionMysqlAurora(dict):
     @pulumi.getter(name="authType")
     def auth_type(self) -> Optional[str]:
         """
-        Specify alternative authorization type. (Only 'gcp_iam' is valid currently)
+        Enable IAM authentication to a Google Cloud instance when set to `gcp_iam`
         """
         return pulumi.get(self, "auth_type")
 
@@ -1327,7 +1407,10 @@ class SecretBackendConnectionMysqlAurora(dict):
     @pulumi.getter(name="connectionUrl")
     def connection_url(self) -> Optional[str]:
         """
-        Connection string to use to connect to the database.
+        A URL containing connection information. See
+        the [Vault
+        docs](https://www.vaultproject.io/api-docs/secret/databases/mongodb.html#sample-payload)
+        for an example.
         """
         return pulumi.get(self, "connection_url")
 
@@ -1335,7 +1418,8 @@ class SecretBackendConnectionMysqlAurora(dict):
     @pulumi.getter(name="maxConnectionLifetime")
     def max_connection_lifetime(self) -> Optional[int]:
         """
-        Maximum number of seconds a connection may be reused.
+        The maximum number of seconds to keep
+        a connection alive for.
         """
         return pulumi.get(self, "max_connection_lifetime")
 
@@ -1343,7 +1427,8 @@ class SecretBackendConnectionMysqlAurora(dict):
     @pulumi.getter(name="maxIdleConnections")
     def max_idle_connections(self) -> Optional[int]:
         """
-        Maximum number of idle connections to the database.
+        The maximum number of idle connections to
+        maintain.
         """
         return pulumi.get(self, "max_idle_connections")
 
@@ -1351,7 +1436,8 @@ class SecretBackendConnectionMysqlAurora(dict):
     @pulumi.getter(name="maxOpenConnections")
     def max_open_connections(self) -> Optional[int]:
         """
-        Maximum number of open connections to the database.
+        The maximum number of open connections to
+        use.
         """
         return pulumi.get(self, "max_open_connections")
 
@@ -1359,7 +1445,7 @@ class SecretBackendConnectionMysqlAurora(dict):
     @pulumi.getter
     def password(self) -> Optional[str]:
         """
-        The root credential password used in the connection URL
+        The password to authenticate with.
         """
         return pulumi.get(self, "password")
 
@@ -1367,7 +1453,7 @@ class SecretBackendConnectionMysqlAurora(dict):
     @pulumi.getter(name="serviceAccountJson")
     def service_account_json(self) -> Optional[str]:
         """
-        A JSON encoded credential for use with IAM authorization
+        JSON encoding of an IAM access key. Requires `auth_type` to be `gcp_iam`.
         """
         return pulumi.get(self, "service_account_json")
 
@@ -1391,7 +1477,7 @@ class SecretBackendConnectionMysqlAurora(dict):
     @pulumi.getter
     def username(self) -> Optional[str]:
         """
-        The root credential username used in the connection URL
+        The username to authenticate with.
         """
         return pulumi.get(self, "username")
 
@@ -1399,7 +1485,7 @@ class SecretBackendConnectionMysqlAurora(dict):
     @pulumi.getter(name="usernameTemplate")
     def username_template(self) -> Optional[str]:
         """
-        Username generation template.
+        Template describing how dynamic usernames are generated.
         """
         return pulumi.get(self, "username_template")
 
@@ -1452,17 +1538,23 @@ class SecretBackendConnectionMysqlLegacy(dict):
                  username: Optional[str] = None,
                  username_template: Optional[str] = None):
         """
-        :param str auth_type: Specify alternative authorization type. (Only 'gcp_iam' is valid currently)
-        :param str connection_url: Connection string to use to connect to the database.
-        :param int max_connection_lifetime: Maximum number of seconds a connection may be reused.
-        :param int max_idle_connections: Maximum number of idle connections to the database.
-        :param int max_open_connections: Maximum number of open connections to the database.
-        :param str password: The root credential password used in the connection URL
-        :param str service_account_json: A JSON encoded credential for use with IAM authorization
+        :param str auth_type: Enable IAM authentication to a Google Cloud instance when set to `gcp_iam`
+        :param str connection_url: A URL containing connection information. See
+               the [Vault
+               docs](https://www.vaultproject.io/api-docs/secret/databases/mongodb.html#sample-payload)
+               for an example.
+        :param int max_connection_lifetime: The maximum number of seconds to keep
+               a connection alive for.
+        :param int max_idle_connections: The maximum number of idle connections to
+               maintain.
+        :param int max_open_connections: The maximum number of open connections to
+               use.
+        :param str password: The password to authenticate with.
+        :param str service_account_json: JSON encoding of an IAM access key. Requires `auth_type` to be `gcp_iam`.
         :param str tls_ca: x509 CA file for validating the certificate presented by the MySQL server. Must be PEM encoded.
         :param str tls_certificate_key: x509 certificate for connecting to the database. This must be a PEM encoded version of the private key and the certificate combined.
-        :param str username: The root credential username used in the connection URL
-        :param str username_template: Username generation template.
+        :param str username: The username to authenticate with.
+        :param str username_template: Template describing how dynamic usernames are generated.
         """
         if auth_type is not None:
             pulumi.set(__self__, "auth_type", auth_type)
@@ -1491,7 +1583,7 @@ class SecretBackendConnectionMysqlLegacy(dict):
     @pulumi.getter(name="authType")
     def auth_type(self) -> Optional[str]:
         """
-        Specify alternative authorization type. (Only 'gcp_iam' is valid currently)
+        Enable IAM authentication to a Google Cloud instance when set to `gcp_iam`
         """
         return pulumi.get(self, "auth_type")
 
@@ -1499,7 +1591,10 @@ class SecretBackendConnectionMysqlLegacy(dict):
     @pulumi.getter(name="connectionUrl")
     def connection_url(self) -> Optional[str]:
         """
-        Connection string to use to connect to the database.
+        A URL containing connection information. See
+        the [Vault
+        docs](https://www.vaultproject.io/api-docs/secret/databases/mongodb.html#sample-payload)
+        for an example.
         """
         return pulumi.get(self, "connection_url")
 
@@ -1507,7 +1602,8 @@ class SecretBackendConnectionMysqlLegacy(dict):
     @pulumi.getter(name="maxConnectionLifetime")
     def max_connection_lifetime(self) -> Optional[int]:
         """
-        Maximum number of seconds a connection may be reused.
+        The maximum number of seconds to keep
+        a connection alive for.
         """
         return pulumi.get(self, "max_connection_lifetime")
 
@@ -1515,7 +1611,8 @@ class SecretBackendConnectionMysqlLegacy(dict):
     @pulumi.getter(name="maxIdleConnections")
     def max_idle_connections(self) -> Optional[int]:
         """
-        Maximum number of idle connections to the database.
+        The maximum number of idle connections to
+        maintain.
         """
         return pulumi.get(self, "max_idle_connections")
 
@@ -1523,7 +1620,8 @@ class SecretBackendConnectionMysqlLegacy(dict):
     @pulumi.getter(name="maxOpenConnections")
     def max_open_connections(self) -> Optional[int]:
         """
-        Maximum number of open connections to the database.
+        The maximum number of open connections to
+        use.
         """
         return pulumi.get(self, "max_open_connections")
 
@@ -1531,7 +1629,7 @@ class SecretBackendConnectionMysqlLegacy(dict):
     @pulumi.getter
     def password(self) -> Optional[str]:
         """
-        The root credential password used in the connection URL
+        The password to authenticate with.
         """
         return pulumi.get(self, "password")
 
@@ -1539,7 +1637,7 @@ class SecretBackendConnectionMysqlLegacy(dict):
     @pulumi.getter(name="serviceAccountJson")
     def service_account_json(self) -> Optional[str]:
         """
-        A JSON encoded credential for use with IAM authorization
+        JSON encoding of an IAM access key. Requires `auth_type` to be `gcp_iam`.
         """
         return pulumi.get(self, "service_account_json")
 
@@ -1563,7 +1661,7 @@ class SecretBackendConnectionMysqlLegacy(dict):
     @pulumi.getter
     def username(self) -> Optional[str]:
         """
-        The root credential username used in the connection URL
+        The username to authenticate with.
         """
         return pulumi.get(self, "username")
 
@@ -1571,7 +1669,7 @@ class SecretBackendConnectionMysqlLegacy(dict):
     @pulumi.getter(name="usernameTemplate")
     def username_template(self) -> Optional[str]:
         """
-        Username generation template.
+        Template describing how dynamic usernames are generated.
         """
         return pulumi.get(self, "username_template")
 
@@ -1624,17 +1722,23 @@ class SecretBackendConnectionMysqlRds(dict):
                  username: Optional[str] = None,
                  username_template: Optional[str] = None):
         """
-        :param str auth_type: Specify alternative authorization type. (Only 'gcp_iam' is valid currently)
-        :param str connection_url: Connection string to use to connect to the database.
-        :param int max_connection_lifetime: Maximum number of seconds a connection may be reused.
-        :param int max_idle_connections: Maximum number of idle connections to the database.
-        :param int max_open_connections: Maximum number of open connections to the database.
-        :param str password: The root credential password used in the connection URL
-        :param str service_account_json: A JSON encoded credential for use with IAM authorization
+        :param str auth_type: Enable IAM authentication to a Google Cloud instance when set to `gcp_iam`
+        :param str connection_url: A URL containing connection information. See
+               the [Vault
+               docs](https://www.vaultproject.io/api-docs/secret/databases/mongodb.html#sample-payload)
+               for an example.
+        :param int max_connection_lifetime: The maximum number of seconds to keep
+               a connection alive for.
+        :param int max_idle_connections: The maximum number of idle connections to
+               maintain.
+        :param int max_open_connections: The maximum number of open connections to
+               use.
+        :param str password: The password to authenticate with.
+        :param str service_account_json: JSON encoding of an IAM access key. Requires `auth_type` to be `gcp_iam`.
         :param str tls_ca: x509 CA file for validating the certificate presented by the MySQL server. Must be PEM encoded.
         :param str tls_certificate_key: x509 certificate for connecting to the database. This must be a PEM encoded version of the private key and the certificate combined.
-        :param str username: The root credential username used in the connection URL
-        :param str username_template: Username generation template.
+        :param str username: The username to authenticate with.
+        :param str username_template: Template describing how dynamic usernames are generated.
         """
         if auth_type is not None:
             pulumi.set(__self__, "auth_type", auth_type)
@@ -1663,7 +1767,7 @@ class SecretBackendConnectionMysqlRds(dict):
     @pulumi.getter(name="authType")
     def auth_type(self) -> Optional[str]:
         """
-        Specify alternative authorization type. (Only 'gcp_iam' is valid currently)
+        Enable IAM authentication to a Google Cloud instance when set to `gcp_iam`
         """
         return pulumi.get(self, "auth_type")
 
@@ -1671,7 +1775,10 @@ class SecretBackendConnectionMysqlRds(dict):
     @pulumi.getter(name="connectionUrl")
     def connection_url(self) -> Optional[str]:
         """
-        Connection string to use to connect to the database.
+        A URL containing connection information. See
+        the [Vault
+        docs](https://www.vaultproject.io/api-docs/secret/databases/mongodb.html#sample-payload)
+        for an example.
         """
         return pulumi.get(self, "connection_url")
 
@@ -1679,7 +1786,8 @@ class SecretBackendConnectionMysqlRds(dict):
     @pulumi.getter(name="maxConnectionLifetime")
     def max_connection_lifetime(self) -> Optional[int]:
         """
-        Maximum number of seconds a connection may be reused.
+        The maximum number of seconds to keep
+        a connection alive for.
         """
         return pulumi.get(self, "max_connection_lifetime")
 
@@ -1687,7 +1795,8 @@ class SecretBackendConnectionMysqlRds(dict):
     @pulumi.getter(name="maxIdleConnections")
     def max_idle_connections(self) -> Optional[int]:
         """
-        Maximum number of idle connections to the database.
+        The maximum number of idle connections to
+        maintain.
         """
         return pulumi.get(self, "max_idle_connections")
 
@@ -1695,7 +1804,8 @@ class SecretBackendConnectionMysqlRds(dict):
     @pulumi.getter(name="maxOpenConnections")
     def max_open_connections(self) -> Optional[int]:
         """
-        Maximum number of open connections to the database.
+        The maximum number of open connections to
+        use.
         """
         return pulumi.get(self, "max_open_connections")
 
@@ -1703,7 +1813,7 @@ class SecretBackendConnectionMysqlRds(dict):
     @pulumi.getter
     def password(self) -> Optional[str]:
         """
-        The root credential password used in the connection URL
+        The password to authenticate with.
         """
         return pulumi.get(self, "password")
 
@@ -1711,7 +1821,7 @@ class SecretBackendConnectionMysqlRds(dict):
     @pulumi.getter(name="serviceAccountJson")
     def service_account_json(self) -> Optional[str]:
         """
-        A JSON encoded credential for use with IAM authorization
+        JSON encoding of an IAM access key. Requires `auth_type` to be `gcp_iam`.
         """
         return pulumi.get(self, "service_account_json")
 
@@ -1735,7 +1845,7 @@ class SecretBackendConnectionMysqlRds(dict):
     @pulumi.getter
     def username(self) -> Optional[str]:
         """
-        The root credential username used in the connection URL
+        The username to authenticate with.
         """
         return pulumi.get(self, "username")
 
@@ -1743,7 +1853,7 @@ class SecretBackendConnectionMysqlRds(dict):
     @pulumi.getter(name="usernameTemplate")
     def username_template(self) -> Optional[str]:
         """
-        Username generation template.
+        Template describing how dynamic usernames are generated.
         """
         return pulumi.get(self, "username_template")
 
@@ -1790,15 +1900,21 @@ class SecretBackendConnectionOracle(dict):
                  username: Optional[str] = None,
                  username_template: Optional[str] = None):
         """
-        :param str connection_url: Connection string to use to connect to the database.
-        :param bool disconnect_sessions: Set to true to disconnect any open sessions prior to running the revocation statements.
-        :param int max_connection_lifetime: Maximum number of seconds a connection may be reused.
-        :param int max_idle_connections: Maximum number of idle connections to the database.
-        :param int max_open_connections: Maximum number of open connections to the database.
-        :param str password: The root credential password used in the connection URL
-        :param bool split_statements: Set to true in order to split statements after semi-colons.
-        :param str username: The root credential username used in the connection URL
-        :param str username_template: Username generation template.
+        :param str connection_url: A URL containing connection information. See
+               the [Vault
+               docs](https://www.vaultproject.io/api-docs/secret/databases/mongodb.html#sample-payload)
+               for an example.
+        :param bool disconnect_sessions: Enable the built-in session disconnect mechanism.
+        :param int max_connection_lifetime: The maximum number of seconds to keep
+               a connection alive for.
+        :param int max_idle_connections: The maximum number of idle connections to
+               maintain.
+        :param int max_open_connections: The maximum number of open connections to
+               use.
+        :param str password: The password to authenticate with.
+        :param bool split_statements: Enable spliting statements after semi-colons.
+        :param str username: The username to authenticate with.
+        :param str username_template: Template describing how dynamic usernames are generated.
         """
         if connection_url is not None:
             pulumi.set(__self__, "connection_url", connection_url)
@@ -1823,7 +1939,10 @@ class SecretBackendConnectionOracle(dict):
     @pulumi.getter(name="connectionUrl")
     def connection_url(self) -> Optional[str]:
         """
-        Connection string to use to connect to the database.
+        A URL containing connection information. See
+        the [Vault
+        docs](https://www.vaultproject.io/api-docs/secret/databases/mongodb.html#sample-payload)
+        for an example.
         """
         return pulumi.get(self, "connection_url")
 
@@ -1831,7 +1950,7 @@ class SecretBackendConnectionOracle(dict):
     @pulumi.getter(name="disconnectSessions")
     def disconnect_sessions(self) -> Optional[bool]:
         """
-        Set to true to disconnect any open sessions prior to running the revocation statements.
+        Enable the built-in session disconnect mechanism.
         """
         return pulumi.get(self, "disconnect_sessions")
 
@@ -1839,7 +1958,8 @@ class SecretBackendConnectionOracle(dict):
     @pulumi.getter(name="maxConnectionLifetime")
     def max_connection_lifetime(self) -> Optional[int]:
         """
-        Maximum number of seconds a connection may be reused.
+        The maximum number of seconds to keep
+        a connection alive for.
         """
         return pulumi.get(self, "max_connection_lifetime")
 
@@ -1847,7 +1967,8 @@ class SecretBackendConnectionOracle(dict):
     @pulumi.getter(name="maxIdleConnections")
     def max_idle_connections(self) -> Optional[int]:
         """
-        Maximum number of idle connections to the database.
+        The maximum number of idle connections to
+        maintain.
         """
         return pulumi.get(self, "max_idle_connections")
 
@@ -1855,7 +1976,8 @@ class SecretBackendConnectionOracle(dict):
     @pulumi.getter(name="maxOpenConnections")
     def max_open_connections(self) -> Optional[int]:
         """
-        Maximum number of open connections to the database.
+        The maximum number of open connections to
+        use.
         """
         return pulumi.get(self, "max_open_connections")
 
@@ -1863,7 +1985,7 @@ class SecretBackendConnectionOracle(dict):
     @pulumi.getter
     def password(self) -> Optional[str]:
         """
-        The root credential password used in the connection URL
+        The password to authenticate with.
         """
         return pulumi.get(self, "password")
 
@@ -1871,7 +1993,7 @@ class SecretBackendConnectionOracle(dict):
     @pulumi.getter(name="splitStatements")
     def split_statements(self) -> Optional[bool]:
         """
-        Set to true in order to split statements after semi-colons.
+        Enable spliting statements after semi-colons.
         """
         return pulumi.get(self, "split_statements")
 
@@ -1879,7 +2001,7 @@ class SecretBackendConnectionOracle(dict):
     @pulumi.getter
     def username(self) -> Optional[str]:
         """
-        The root credential username used in the connection URL
+        The username to authenticate with.
         """
         return pulumi.get(self, "username")
 
@@ -1887,7 +2009,7 @@ class SecretBackendConnectionOracle(dict):
     @pulumi.getter(name="usernameTemplate")
     def username_template(self) -> Optional[str]:
         """
-        Username generation template.
+        Template describing how dynamic usernames are generated.
         """
         return pulumi.get(self, "username_template")
 
@@ -1937,16 +2059,22 @@ class SecretBackendConnectionPostgresql(dict):
                  username: Optional[str] = None,
                  username_template: Optional[str] = None):
         """
-        :param str auth_type: Specify alternative authorization type. (Only 'gcp_iam' is valid currently)
-        :param str connection_url: Connection string to use to connect to the database.
-        :param bool disable_escaping: Disable special character escaping in username and password
-        :param int max_connection_lifetime: Maximum number of seconds a connection may be reused.
-        :param int max_idle_connections: Maximum number of idle connections to the database.
-        :param int max_open_connections: Maximum number of open connections to the database.
-        :param str password: The root credential password used in the connection URL
-        :param str service_account_json: A JSON encoded credential for use with IAM authorization
-        :param str username: The root credential username used in the connection URL
-        :param str username_template: Username generation template.
+        :param str auth_type: Enable IAM authentication to a Google Cloud instance when set to `gcp_iam`
+        :param str connection_url: A URL containing connection information. See
+               the [Vault
+               docs](https://www.vaultproject.io/api-docs/secret/databases/mongodb.html#sample-payload)
+               for an example.
+        :param bool disable_escaping: Disable special character escaping in username and password.
+        :param int max_connection_lifetime: The maximum number of seconds to keep
+               a connection alive for.
+        :param int max_idle_connections: The maximum number of idle connections to
+               maintain.
+        :param int max_open_connections: The maximum number of open connections to
+               use.
+        :param str password: The password to authenticate with.
+        :param str service_account_json: JSON encoding of an IAM access key. Requires `auth_type` to be `gcp_iam`.
+        :param str username: The username to authenticate with.
+        :param str username_template: Template describing how dynamic usernames are generated.
         """
         if auth_type is not None:
             pulumi.set(__self__, "auth_type", auth_type)
@@ -1973,7 +2101,7 @@ class SecretBackendConnectionPostgresql(dict):
     @pulumi.getter(name="authType")
     def auth_type(self) -> Optional[str]:
         """
-        Specify alternative authorization type. (Only 'gcp_iam' is valid currently)
+        Enable IAM authentication to a Google Cloud instance when set to `gcp_iam`
         """
         return pulumi.get(self, "auth_type")
 
@@ -1981,7 +2109,10 @@ class SecretBackendConnectionPostgresql(dict):
     @pulumi.getter(name="connectionUrl")
     def connection_url(self) -> Optional[str]:
         """
-        Connection string to use to connect to the database.
+        A URL containing connection information. See
+        the [Vault
+        docs](https://www.vaultproject.io/api-docs/secret/databases/mongodb.html#sample-payload)
+        for an example.
         """
         return pulumi.get(self, "connection_url")
 
@@ -1989,7 +2120,7 @@ class SecretBackendConnectionPostgresql(dict):
     @pulumi.getter(name="disableEscaping")
     def disable_escaping(self) -> Optional[bool]:
         """
-        Disable special character escaping in username and password
+        Disable special character escaping in username and password.
         """
         return pulumi.get(self, "disable_escaping")
 
@@ -1997,7 +2128,8 @@ class SecretBackendConnectionPostgresql(dict):
     @pulumi.getter(name="maxConnectionLifetime")
     def max_connection_lifetime(self) -> Optional[int]:
         """
-        Maximum number of seconds a connection may be reused.
+        The maximum number of seconds to keep
+        a connection alive for.
         """
         return pulumi.get(self, "max_connection_lifetime")
 
@@ -2005,7 +2137,8 @@ class SecretBackendConnectionPostgresql(dict):
     @pulumi.getter(name="maxIdleConnections")
     def max_idle_connections(self) -> Optional[int]:
         """
-        Maximum number of idle connections to the database.
+        The maximum number of idle connections to
+        maintain.
         """
         return pulumi.get(self, "max_idle_connections")
 
@@ -2013,7 +2146,8 @@ class SecretBackendConnectionPostgresql(dict):
     @pulumi.getter(name="maxOpenConnections")
     def max_open_connections(self) -> Optional[int]:
         """
-        Maximum number of open connections to the database.
+        The maximum number of open connections to
+        use.
         """
         return pulumi.get(self, "max_open_connections")
 
@@ -2021,7 +2155,7 @@ class SecretBackendConnectionPostgresql(dict):
     @pulumi.getter
     def password(self) -> Optional[str]:
         """
-        The root credential password used in the connection URL
+        The password to authenticate with.
         """
         return pulumi.get(self, "password")
 
@@ -2029,7 +2163,7 @@ class SecretBackendConnectionPostgresql(dict):
     @pulumi.getter(name="serviceAccountJson")
     def service_account_json(self) -> Optional[str]:
         """
-        A JSON encoded credential for use with IAM authorization
+        JSON encoding of an IAM access key. Requires `auth_type` to be `gcp_iam`.
         """
         return pulumi.get(self, "service_account_json")
 
@@ -2037,7 +2171,7 @@ class SecretBackendConnectionPostgresql(dict):
     @pulumi.getter
     def username(self) -> Optional[str]:
         """
-        The root credential username used in the connection URL
+        The username to authenticate with.
         """
         return pulumi.get(self, "username")
 
@@ -2045,7 +2179,7 @@ class SecretBackendConnectionPostgresql(dict):
     @pulumi.getter(name="usernameTemplate")
     def username_template(self) -> Optional[str]:
         """
-        Username generation template.
+        Template describing how dynamic usernames are generated.
         """
         return pulumi.get(self, "username_template")
 
@@ -2080,13 +2214,15 @@ class SecretBackendConnectionRedis(dict):
                  port: Optional[int] = None,
                  tls: Optional[bool] = None):
         """
-        :param str host: Specifies the host to connect to
-        :param str password: Specifies the password corresponding to the given username.
-        :param str username: Specifies the username for Vault to use.
-        :param str ca_cert: The contents of a PEM-encoded CA cert file to use to verify the Redis server's identity.
-        :param bool insecure_tls: Specifies whether to skip verification of the server certificate when using TLS.
-        :param int port: The transport port to use to connect to Redis.
-        :param bool tls: Specifies whether to use TLS when connecting to Redis.
+        :param str host: The host to connect to.
+        :param str password: The password to authenticate with.
+        :param str username: The username to authenticate with.
+        :param str ca_cert: The path to a PEM-encoded CA cert file to use to verify the Elasticsearch server's identity.
+        :param bool insecure_tls: Whether to skip verification of the server
+               certificate when using TLS.
+        :param int port: The default port to connect to if no port is specified as
+               part of the host.
+        :param bool tls: Whether to use TLS when connecting to Cassandra.
         """
         pulumi.set(__self__, "host", host)
         pulumi.set(__self__, "password", password)
@@ -2104,7 +2240,7 @@ class SecretBackendConnectionRedis(dict):
     @pulumi.getter
     def host(self) -> str:
         """
-        Specifies the host to connect to
+        The host to connect to.
         """
         return pulumi.get(self, "host")
 
@@ -2112,7 +2248,7 @@ class SecretBackendConnectionRedis(dict):
     @pulumi.getter
     def password(self) -> str:
         """
-        Specifies the password corresponding to the given username.
+        The password to authenticate with.
         """
         return pulumi.get(self, "password")
 
@@ -2120,7 +2256,7 @@ class SecretBackendConnectionRedis(dict):
     @pulumi.getter
     def username(self) -> str:
         """
-        Specifies the username for Vault to use.
+        The username to authenticate with.
         """
         return pulumi.get(self, "username")
 
@@ -2128,7 +2264,7 @@ class SecretBackendConnectionRedis(dict):
     @pulumi.getter(name="caCert")
     def ca_cert(self) -> Optional[str]:
         """
-        The contents of a PEM-encoded CA cert file to use to verify the Redis server's identity.
+        The path to a PEM-encoded CA cert file to use to verify the Elasticsearch server's identity.
         """
         return pulumi.get(self, "ca_cert")
 
@@ -2136,7 +2272,8 @@ class SecretBackendConnectionRedis(dict):
     @pulumi.getter(name="insecureTls")
     def insecure_tls(self) -> Optional[bool]:
         """
-        Specifies whether to skip verification of the server certificate when using TLS.
+        Whether to skip verification of the server
+        certificate when using TLS.
         """
         return pulumi.get(self, "insecure_tls")
 
@@ -2144,7 +2281,8 @@ class SecretBackendConnectionRedis(dict):
     @pulumi.getter
     def port(self) -> Optional[int]:
         """
-        The transport port to use to connect to Redis.
+        The default port to connect to if no port is specified as
+        part of the host.
         """
         return pulumi.get(self, "port")
 
@@ -2152,7 +2290,7 @@ class SecretBackendConnectionRedis(dict):
     @pulumi.getter
     def tls(self) -> Optional[bool]:
         """
-        Specifies whether to use TLS when connecting to Redis.
+        Whether to use TLS when connecting to Cassandra.
         """
         return pulumi.get(self, "tls")
 
@@ -2165,10 +2303,11 @@ class SecretBackendConnectionRedisElasticache(dict):
                  region: Optional[str] = None,
                  username: Optional[str] = None):
         """
-        :param str url: The configuration endpoint for the ElastiCache cluster to connect to.
-        :param str password: The AWS secret key id to use to talk to ElastiCache. If omitted the credentials chain provider is used instead.
-        :param str region: The AWS region where the ElastiCache cluster is hosted. If omitted the plugin tries to infer the region from the environment.
-        :param str username: The AWS access key id to use to talk to ElastiCache. If omitted the credentials chain provider is used instead.
+        :param str url: The URL for Elasticsearch's API. https requires certificate
+               by trusted CA if used.
+        :param str password: The password to authenticate with.
+        :param str region: The region where the ElastiCache cluster is hosted. If omitted Vault tries to infer from the environment instead.
+        :param str username: The username to authenticate with.
         """
         pulumi.set(__self__, "url", url)
         if password is not None:
@@ -2182,7 +2321,8 @@ class SecretBackendConnectionRedisElasticache(dict):
     @pulumi.getter
     def url(self) -> str:
         """
-        The configuration endpoint for the ElastiCache cluster to connect to.
+        The URL for Elasticsearch's API. https requires certificate
+        by trusted CA if used.
         """
         return pulumi.get(self, "url")
 
@@ -2190,7 +2330,7 @@ class SecretBackendConnectionRedisElasticache(dict):
     @pulumi.getter
     def password(self) -> Optional[str]:
         """
-        The AWS secret key id to use to talk to ElastiCache. If omitted the credentials chain provider is used instead.
+        The password to authenticate with.
         """
         return pulumi.get(self, "password")
 
@@ -2198,7 +2338,7 @@ class SecretBackendConnectionRedisElasticache(dict):
     @pulumi.getter
     def region(self) -> Optional[str]:
         """
-        The AWS region where the ElastiCache cluster is hosted. If omitted the plugin tries to infer the region from the environment.
+        The region where the ElastiCache cluster is hosted. If omitted Vault tries to infer from the environment instead.
         """
         return pulumi.get(self, "region")
 
@@ -2206,7 +2346,7 @@ class SecretBackendConnectionRedisElasticache(dict):
     @pulumi.getter
     def username(self) -> Optional[str]:
         """
-        The AWS access key id to use to talk to ElastiCache. If omitted the credentials chain provider is used instead.
+        The username to authenticate with.
         """
         return pulumi.get(self, "username")
 
@@ -2250,14 +2390,20 @@ class SecretBackendConnectionRedshift(dict):
                  username: Optional[str] = None,
                  username_template: Optional[str] = None):
         """
-        :param str connection_url: Connection string to use to connect to the database.
-        :param bool disable_escaping: Disable special character escaping in username and password
-        :param int max_connection_lifetime: Maximum number of seconds a connection may be reused.
-        :param int max_idle_connections: Maximum number of idle connections to the database.
-        :param int max_open_connections: Maximum number of open connections to the database.
-        :param str password: The root credential password used in the connection URL
-        :param str username: The root credential username used in the connection URL
-        :param str username_template: Username generation template.
+        :param str connection_url: A URL containing connection information. See
+               the [Vault
+               docs](https://www.vaultproject.io/api-docs/secret/databases/mongodb.html#sample-payload)
+               for an example.
+        :param bool disable_escaping: Disable special character escaping in username and password.
+        :param int max_connection_lifetime: The maximum number of seconds to keep
+               a connection alive for.
+        :param int max_idle_connections: The maximum number of idle connections to
+               maintain.
+        :param int max_open_connections: The maximum number of open connections to
+               use.
+        :param str password: The password to authenticate with.
+        :param str username: The username to authenticate with.
+        :param str username_template: Template describing how dynamic usernames are generated.
         """
         if connection_url is not None:
             pulumi.set(__self__, "connection_url", connection_url)
@@ -2280,7 +2426,10 @@ class SecretBackendConnectionRedshift(dict):
     @pulumi.getter(name="connectionUrl")
     def connection_url(self) -> Optional[str]:
         """
-        Connection string to use to connect to the database.
+        A URL containing connection information. See
+        the [Vault
+        docs](https://www.vaultproject.io/api-docs/secret/databases/mongodb.html#sample-payload)
+        for an example.
         """
         return pulumi.get(self, "connection_url")
 
@@ -2288,7 +2437,7 @@ class SecretBackendConnectionRedshift(dict):
     @pulumi.getter(name="disableEscaping")
     def disable_escaping(self) -> Optional[bool]:
         """
-        Disable special character escaping in username and password
+        Disable special character escaping in username and password.
         """
         return pulumi.get(self, "disable_escaping")
 
@@ -2296,7 +2445,8 @@ class SecretBackendConnectionRedshift(dict):
     @pulumi.getter(name="maxConnectionLifetime")
     def max_connection_lifetime(self) -> Optional[int]:
         """
-        Maximum number of seconds a connection may be reused.
+        The maximum number of seconds to keep
+        a connection alive for.
         """
         return pulumi.get(self, "max_connection_lifetime")
 
@@ -2304,7 +2454,8 @@ class SecretBackendConnectionRedshift(dict):
     @pulumi.getter(name="maxIdleConnections")
     def max_idle_connections(self) -> Optional[int]:
         """
-        Maximum number of idle connections to the database.
+        The maximum number of idle connections to
+        maintain.
         """
         return pulumi.get(self, "max_idle_connections")
 
@@ -2312,7 +2463,8 @@ class SecretBackendConnectionRedshift(dict):
     @pulumi.getter(name="maxOpenConnections")
     def max_open_connections(self) -> Optional[int]:
         """
-        Maximum number of open connections to the database.
+        The maximum number of open connections to
+        use.
         """
         return pulumi.get(self, "max_open_connections")
 
@@ -2320,7 +2472,7 @@ class SecretBackendConnectionRedshift(dict):
     @pulumi.getter
     def password(self) -> Optional[str]:
         """
-        The root credential password used in the connection URL
+        The password to authenticate with.
         """
         return pulumi.get(self, "password")
 
@@ -2328,7 +2480,7 @@ class SecretBackendConnectionRedshift(dict):
     @pulumi.getter
     def username(self) -> Optional[str]:
         """
-        The root credential username used in the connection URL
+        The username to authenticate with.
         """
         return pulumi.get(self, "username")
 
@@ -2336,7 +2488,7 @@ class SecretBackendConnectionRedshift(dict):
     @pulumi.getter(name="usernameTemplate")
     def username_template(self) -> Optional[str]:
         """
-        Username generation template.
+        Template describing how dynamic usernames are generated.
         """
         return pulumi.get(self, "username_template")
 
@@ -2377,13 +2529,19 @@ class SecretBackendConnectionSnowflake(dict):
                  username: Optional[str] = None,
                  username_template: Optional[str] = None):
         """
-        :param str connection_url: Connection string to use to connect to the database.
-        :param int max_connection_lifetime: Maximum number of seconds a connection may be reused.
-        :param int max_idle_connections: Maximum number of idle connections to the database.
-        :param int max_open_connections: Maximum number of open connections to the database.
-        :param str password: The root credential password used in the connection URL
-        :param str username: The root credential username used in the connection URL
-        :param str username_template: Username generation template.
+        :param str connection_url: A URL containing connection information. See
+               the [Vault
+               docs](https://www.vaultproject.io/api-docs/secret/databases/mongodb.html#sample-payload)
+               for an example.
+        :param int max_connection_lifetime: The maximum number of seconds to keep
+               a connection alive for.
+        :param int max_idle_connections: The maximum number of idle connections to
+               maintain.
+        :param int max_open_connections: The maximum number of open connections to
+               use.
+        :param str password: The password to authenticate with.
+        :param str username: The username to authenticate with.
+        :param str username_template: Template describing how dynamic usernames are generated.
         """
         if connection_url is not None:
             pulumi.set(__self__, "connection_url", connection_url)
@@ -2404,7 +2562,10 @@ class SecretBackendConnectionSnowflake(dict):
     @pulumi.getter(name="connectionUrl")
     def connection_url(self) -> Optional[str]:
         """
-        Connection string to use to connect to the database.
+        A URL containing connection information. See
+        the [Vault
+        docs](https://www.vaultproject.io/api-docs/secret/databases/mongodb.html#sample-payload)
+        for an example.
         """
         return pulumi.get(self, "connection_url")
 
@@ -2412,7 +2573,8 @@ class SecretBackendConnectionSnowflake(dict):
     @pulumi.getter(name="maxConnectionLifetime")
     def max_connection_lifetime(self) -> Optional[int]:
         """
-        Maximum number of seconds a connection may be reused.
+        The maximum number of seconds to keep
+        a connection alive for.
         """
         return pulumi.get(self, "max_connection_lifetime")
 
@@ -2420,7 +2582,8 @@ class SecretBackendConnectionSnowflake(dict):
     @pulumi.getter(name="maxIdleConnections")
     def max_idle_connections(self) -> Optional[int]:
         """
-        Maximum number of idle connections to the database.
+        The maximum number of idle connections to
+        maintain.
         """
         return pulumi.get(self, "max_idle_connections")
 
@@ -2428,7 +2591,8 @@ class SecretBackendConnectionSnowflake(dict):
     @pulumi.getter(name="maxOpenConnections")
     def max_open_connections(self) -> Optional[int]:
         """
-        Maximum number of open connections to the database.
+        The maximum number of open connections to
+        use.
         """
         return pulumi.get(self, "max_open_connections")
 
@@ -2436,7 +2600,7 @@ class SecretBackendConnectionSnowflake(dict):
     @pulumi.getter
     def password(self) -> Optional[str]:
         """
-        The root credential password used in the connection URL
+        The password to authenticate with.
         """
         return pulumi.get(self, "password")
 
@@ -2444,7 +2608,7 @@ class SecretBackendConnectionSnowflake(dict):
     @pulumi.getter
     def username(self) -> Optional[str]:
         """
-        The root credential username used in the connection URL
+        The username to authenticate with.
         """
         return pulumi.get(self, "username")
 
@@ -2452,7 +2616,7 @@ class SecretBackendConnectionSnowflake(dict):
     @pulumi.getter(name="usernameTemplate")
     def username_template(self) -> Optional[str]:
         """
-        Username generation template.
+        Template describing how dynamic usernames are generated.
         """
         return pulumi.get(self, "username_template")
 
@@ -2513,21 +2677,25 @@ class SecretsMountCassandra(dict):
         :param str name: Name of the database connection.
         :param Sequence[str] allowed_roles: A list of roles that are allowed to use this
                connection.
-        :param int connect_timeout: The number of seconds to use as a connection timeout.
+        :param int connect_timeout: The number of seconds to use as a connection
+               timeout.
         :param Mapping[str, Any] data: A map of sensitive data to pass to the endpoint. Useful for templated connection strings.
                
                Supported list of database secrets engines that can be configured:
-        :param Sequence[str] hosts: Cassandra hosts to connect to.
-        :param bool insecure_tls: Whether to skip verification of the server certificate when using TLS.
-        :param str password: The password to use when authenticating with Cassandra.
-        :param str pem_bundle: Concatenated PEM blocks containing a certificate and private key; a certificate, private key, and issuing CA certificate; or just a CA certificate.
-        :param str pem_json: Specifies JSON containing a certificate and private key; a certificate, private key, and issuing CA certificate; or just a CA certificate.
+        :param Sequence[str] hosts: The hosts to connect to.
+        :param bool insecure_tls: Whether to skip verification of the server
+               certificate when using TLS.
+        :param str password: The root credential password used in the connection URL.
+        :param str pem_bundle: Concatenated PEM blocks configuring the certificate
+               chain.
+        :param str pem_json: A JSON structure configuring the certificate chain.
         :param str plugin_name: Specifies the name of the plugin to use.
-        :param int port: The transport port to use to connect to Cassandra.
+        :param int port: The default port to connect to if no port is specified as
+               part of the host.
         :param int protocol_version: The CQL protocol version to use.
         :param Sequence[str] root_rotation_statements: A list of database statements to be executed to rotate the root user's credentials.
         :param bool tls: Whether to use TLS when connecting to Cassandra.
-        :param str username: The username to use when authenticating with Cassandra.
+        :param str username: The root credential username used in the connection URL.
         :param bool verify_connection: Whether the connection should be verified on
                initial configuration or not.
         """
@@ -2584,7 +2752,8 @@ class SecretsMountCassandra(dict):
     @pulumi.getter(name="connectTimeout")
     def connect_timeout(self) -> Optional[int]:
         """
-        The number of seconds to use as a connection timeout.
+        The number of seconds to use as a connection
+        timeout.
         """
         return pulumi.get(self, "connect_timeout")
 
@@ -2602,7 +2771,7 @@ class SecretsMountCassandra(dict):
     @pulumi.getter
     def hosts(self) -> Optional[Sequence[str]]:
         """
-        Cassandra hosts to connect to.
+        The hosts to connect to.
         """
         return pulumi.get(self, "hosts")
 
@@ -2610,7 +2779,8 @@ class SecretsMountCassandra(dict):
     @pulumi.getter(name="insecureTls")
     def insecure_tls(self) -> Optional[bool]:
         """
-        Whether to skip verification of the server certificate when using TLS.
+        Whether to skip verification of the server
+        certificate when using TLS.
         """
         return pulumi.get(self, "insecure_tls")
 
@@ -2618,7 +2788,7 @@ class SecretsMountCassandra(dict):
     @pulumi.getter
     def password(self) -> Optional[str]:
         """
-        The password to use when authenticating with Cassandra.
+        The root credential password used in the connection URL.
         """
         return pulumi.get(self, "password")
 
@@ -2626,7 +2796,8 @@ class SecretsMountCassandra(dict):
     @pulumi.getter(name="pemBundle")
     def pem_bundle(self) -> Optional[str]:
         """
-        Concatenated PEM blocks containing a certificate and private key; a certificate, private key, and issuing CA certificate; or just a CA certificate.
+        Concatenated PEM blocks configuring the certificate
+        chain.
         """
         return pulumi.get(self, "pem_bundle")
 
@@ -2634,7 +2805,7 @@ class SecretsMountCassandra(dict):
     @pulumi.getter(name="pemJson")
     def pem_json(self) -> Optional[str]:
         """
-        Specifies JSON containing a certificate and private key; a certificate, private key, and issuing CA certificate; or just a CA certificate.
+        A JSON structure configuring the certificate chain.
         """
         return pulumi.get(self, "pem_json")
 
@@ -2650,7 +2821,8 @@ class SecretsMountCassandra(dict):
     @pulumi.getter
     def port(self) -> Optional[int]:
         """
-        The transport port to use to connect to Cassandra.
+        The default port to connect to if no port is specified as
+        part of the host.
         """
         return pulumi.get(self, "port")
 
@@ -2682,7 +2854,7 @@ class SecretsMountCassandra(dict):
     @pulumi.getter
     def username(self) -> Optional[str]:
         """
-        The username to use when authenticating with Cassandra.
+        The root credential username used in the connection URL.
         """
         return pulumi.get(self, "username")
 
@@ -2745,10 +2917,10 @@ class SecretsMountCouchbase(dict):
                  username_template: Optional[str] = None,
                  verify_connection: Optional[bool] = None):
         """
-        :param Sequence[str] hosts: A set of Couchbase URIs to connect to. Must use `couchbases://` scheme if `tls` is `true`.
+        :param Sequence[str] hosts: The hosts to connect to.
         :param str name: Name of the database connection.
-        :param str password: Specifies the password corresponding to the given username.
-        :param str username: Specifies the username for Vault to use.
+        :param str password: The root credential password used in the connection URL.
+        :param str username: The root credential username used in the connection URL.
         :param Sequence[str] allowed_roles: A list of roles that are allowed to use this
                connection.
         :param str base64_pem: Required if `tls` is `true`. Specifies the certificate authority of the Couchbase server, as a PEM certificate that has been base64 encoded.
@@ -2756,11 +2928,12 @@ class SecretsMountCouchbase(dict):
         :param Mapping[str, Any] data: A map of sensitive data to pass to the endpoint. Useful for templated connection strings.
                
                Supported list of database secrets engines that can be configured:
-        :param bool insecure_tls: Specifies whether to skip verification of the server certificate when using TLS.
+        :param bool insecure_tls: Whether to skip verification of the server
+               certificate when using TLS.
         :param str plugin_name: Specifies the name of the plugin to use.
         :param Sequence[str] root_rotation_statements: A list of database statements to be executed to rotate the root user's credentials.
-        :param bool tls: Specifies whether to use TLS when connecting to Couchbase.
-        :param str username_template: Template describing how dynamic usernames are generated.
+        :param bool tls: Whether to use TLS when connecting to Cassandra.
+        :param str username_template: [Template](https://www.vaultproject.io/docs/concepts/username-templating) describing how dynamic usernames are generated.
         :param bool verify_connection: Whether the connection should be verified on
                initial configuration or not.
         """
@@ -2793,7 +2966,7 @@ class SecretsMountCouchbase(dict):
     @pulumi.getter
     def hosts(self) -> Sequence[str]:
         """
-        A set of Couchbase URIs to connect to. Must use `couchbases://` scheme if `tls` is `true`.
+        The hosts to connect to.
         """
         return pulumi.get(self, "hosts")
 
@@ -2809,7 +2982,7 @@ class SecretsMountCouchbase(dict):
     @pulumi.getter
     def password(self) -> str:
         """
-        Specifies the password corresponding to the given username.
+        The root credential password used in the connection URL.
         """
         return pulumi.get(self, "password")
 
@@ -2817,7 +2990,7 @@ class SecretsMountCouchbase(dict):
     @pulumi.getter
     def username(self) -> str:
         """
-        Specifies the username for Vault to use.
+        The root credential username used in the connection URL.
         """
         return pulumi.get(self, "username")
 
@@ -2860,7 +3033,8 @@ class SecretsMountCouchbase(dict):
     @pulumi.getter(name="insecureTls")
     def insecure_tls(self) -> Optional[bool]:
         """
-        Specifies whether to skip verification of the server certificate when using TLS.
+        Whether to skip verification of the server
+        certificate when using TLS.
         """
         return pulumi.get(self, "insecure_tls")
 
@@ -2884,7 +3058,7 @@ class SecretsMountCouchbase(dict):
     @pulumi.getter
     def tls(self) -> Optional[bool]:
         """
-        Specifies whether to use TLS when connecting to Couchbase.
+        Whether to use TLS when connecting to Cassandra.
         """
         return pulumi.get(self, "tls")
 
@@ -2892,7 +3066,7 @@ class SecretsMountCouchbase(dict):
     @pulumi.getter(name="usernameTemplate")
     def username_template(self) -> Optional[str]:
         """
-        Template describing how dynamic usernames are generated.
+        [Template](https://www.vaultproject.io/docs/concepts/username-templating) describing how dynamic usernames are generated.
         """
         return pulumi.get(self, "username_template")
 
@@ -2962,23 +3136,24 @@ class SecretsMountElasticsearch(dict):
                  verify_connection: Optional[bool] = None):
         """
         :param str name: Name of the database connection.
-        :param str password: The password to be used in the connection URL
-        :param str url: The URL for Elasticsearch's API
-        :param str username: The username to be used in the connection URL
+        :param str password: The root credential password used in the connection URL.
+        :param str url: The URL for Elasticsearch's API. https requires certificate
+               by trusted CA if used.
+        :param str username: The root credential username used in the connection URL.
         :param Sequence[str] allowed_roles: A list of roles that are allowed to use this
                connection.
-        :param str ca_cert: The path to a PEM-encoded CA cert file to use to verify the Elasticsearch server's identity
-        :param str ca_path: The path to a directory of PEM-encoded CA cert files to use to verify the Elasticsearch server's identity
-        :param str client_cert: The path to the certificate for the Elasticsearch client to present for communication
-        :param str client_key: The path to the key for the Elasticsearch client to use for communication
+        :param str ca_cert: The path to a PEM-encoded CA cert file to use to verify the Elasticsearch server's identity.
+        :param str ca_path: The path to a directory of PEM-encoded CA cert files to use to verify the Elasticsearch server's identity.
+        :param str client_cert: The path to the certificate for the Elasticsearch client to present for communication.
+        :param str client_key: The path to the key for the Elasticsearch client to use for communication.
         :param Mapping[str, Any] data: A map of sensitive data to pass to the endpoint. Useful for templated connection strings.
                
                Supported list of database secrets engines that can be configured:
-        :param bool insecure: Whether to disable certificate verification
+        :param bool insecure: Whether to disable certificate verification.
         :param str plugin_name: Specifies the name of the plugin to use.
         :param Sequence[str] root_rotation_statements: A list of database statements to be executed to rotate the root user's credentials.
-        :param str tls_server_name: This, if set, is used to set the SNI host when connecting via TLS
-        :param str username_template: Template describing how dynamic usernames are generated.
+        :param str tls_server_name: This, if set, is used to set the SNI host when connecting via TLS.
+        :param str username_template: [Template](https://www.vaultproject.io/docs/concepts/username-templating) describing how dynamic usernames are generated.
         :param bool verify_connection: Whether the connection should be verified on
                initial configuration or not.
         """
@@ -3023,7 +3198,7 @@ class SecretsMountElasticsearch(dict):
     @pulumi.getter
     def password(self) -> str:
         """
-        The password to be used in the connection URL
+        The root credential password used in the connection URL.
         """
         return pulumi.get(self, "password")
 
@@ -3031,7 +3206,8 @@ class SecretsMountElasticsearch(dict):
     @pulumi.getter
     def url(self) -> str:
         """
-        The URL for Elasticsearch's API
+        The URL for Elasticsearch's API. https requires certificate
+        by trusted CA if used.
         """
         return pulumi.get(self, "url")
 
@@ -3039,7 +3215,7 @@ class SecretsMountElasticsearch(dict):
     @pulumi.getter
     def username(self) -> str:
         """
-        The username to be used in the connection URL
+        The root credential username used in the connection URL.
         """
         return pulumi.get(self, "username")
 
@@ -3056,7 +3232,7 @@ class SecretsMountElasticsearch(dict):
     @pulumi.getter(name="caCert")
     def ca_cert(self) -> Optional[str]:
         """
-        The path to a PEM-encoded CA cert file to use to verify the Elasticsearch server's identity
+        The path to a PEM-encoded CA cert file to use to verify the Elasticsearch server's identity.
         """
         return pulumi.get(self, "ca_cert")
 
@@ -3064,7 +3240,7 @@ class SecretsMountElasticsearch(dict):
     @pulumi.getter(name="caPath")
     def ca_path(self) -> Optional[str]:
         """
-        The path to a directory of PEM-encoded CA cert files to use to verify the Elasticsearch server's identity
+        The path to a directory of PEM-encoded CA cert files to use to verify the Elasticsearch server's identity.
         """
         return pulumi.get(self, "ca_path")
 
@@ -3072,7 +3248,7 @@ class SecretsMountElasticsearch(dict):
     @pulumi.getter(name="clientCert")
     def client_cert(self) -> Optional[str]:
         """
-        The path to the certificate for the Elasticsearch client to present for communication
+        The path to the certificate for the Elasticsearch client to present for communication.
         """
         return pulumi.get(self, "client_cert")
 
@@ -3080,7 +3256,7 @@ class SecretsMountElasticsearch(dict):
     @pulumi.getter(name="clientKey")
     def client_key(self) -> Optional[str]:
         """
-        The path to the key for the Elasticsearch client to use for communication
+        The path to the key for the Elasticsearch client to use for communication.
         """
         return pulumi.get(self, "client_key")
 
@@ -3098,7 +3274,7 @@ class SecretsMountElasticsearch(dict):
     @pulumi.getter
     def insecure(self) -> Optional[bool]:
         """
-        Whether to disable certificate verification
+        Whether to disable certificate verification.
         """
         return pulumi.get(self, "insecure")
 
@@ -3122,7 +3298,7 @@ class SecretsMountElasticsearch(dict):
     @pulumi.getter(name="tlsServerName")
     def tls_server_name(self) -> Optional[str]:
         """
-        This, if set, is used to set the SNI host when connecting via TLS
+        This, if set, is used to set the SNI host when connecting via TLS.
         """
         return pulumi.get(self, "tls_server_name")
 
@@ -3130,7 +3306,7 @@ class SecretsMountElasticsearch(dict):
     @pulumi.getter(name="usernameTemplate")
     def username_template(self) -> Optional[str]:
         """
-        Template describing how dynamic usernames are generated.
+        [Template](https://www.vaultproject.io/docs/concepts/username-templating) describing how dynamic usernames are generated.
         """
         return pulumi.get(self, "username_template")
 
@@ -3197,18 +3373,21 @@ class SecretsMountHana(dict):
         :param str name: Name of the database connection.
         :param Sequence[str] allowed_roles: A list of roles that are allowed to use this
                connection.
-        :param str connection_url: Connection string to use to connect to the database.
+        :param str connection_url: Specifies the Redshift DSN. 
+               See [Vault docs](https://www.vaultproject.io/api-docs/secret/databases/redshift#sample-payload)
         :param Mapping[str, Any] data: A map of sensitive data to pass to the endpoint. Useful for templated connection strings.
                
                Supported list of database secrets engines that can be configured:
-        :param bool disable_escaping: Disable special character escaping in username and password
-        :param int max_connection_lifetime: Maximum number of seconds a connection may be reused.
-        :param int max_idle_connections: Maximum number of idle connections to the database.
-        :param int max_open_connections: Maximum number of open connections to the database.
-        :param str password: The root credential password used in the connection URL
+        :param bool disable_escaping: Disable special character escaping in username and password.
+        :param int max_connection_lifetime: The maximum amount of time a connection may be reused.
+        :param int max_idle_connections: The maximum number of idle connections to
+               the database.
+        :param int max_open_connections: The maximum number of open connections to
+               the database.
+        :param str password: The root credential password used in the connection URL.
         :param str plugin_name: Specifies the name of the plugin to use.
         :param Sequence[str] root_rotation_statements: A list of database statements to be executed to rotate the root user's credentials.
-        :param str username: The root credential username used in the connection URL
+        :param str username: The root credential username used in the connection URL.
         :param bool verify_connection: Whether the connection should be verified on
                initial configuration or not.
         """
@@ -3259,7 +3438,8 @@ class SecretsMountHana(dict):
     @pulumi.getter(name="connectionUrl")
     def connection_url(self) -> Optional[str]:
         """
-        Connection string to use to connect to the database.
+        Specifies the Redshift DSN. 
+        See [Vault docs](https://www.vaultproject.io/api-docs/secret/databases/redshift#sample-payload)
         """
         return pulumi.get(self, "connection_url")
 
@@ -3277,7 +3457,7 @@ class SecretsMountHana(dict):
     @pulumi.getter(name="disableEscaping")
     def disable_escaping(self) -> Optional[bool]:
         """
-        Disable special character escaping in username and password
+        Disable special character escaping in username and password.
         """
         return pulumi.get(self, "disable_escaping")
 
@@ -3285,7 +3465,7 @@ class SecretsMountHana(dict):
     @pulumi.getter(name="maxConnectionLifetime")
     def max_connection_lifetime(self) -> Optional[int]:
         """
-        Maximum number of seconds a connection may be reused.
+        The maximum amount of time a connection may be reused.
         """
         return pulumi.get(self, "max_connection_lifetime")
 
@@ -3293,7 +3473,8 @@ class SecretsMountHana(dict):
     @pulumi.getter(name="maxIdleConnections")
     def max_idle_connections(self) -> Optional[int]:
         """
-        Maximum number of idle connections to the database.
+        The maximum number of idle connections to
+        the database.
         """
         return pulumi.get(self, "max_idle_connections")
 
@@ -3301,7 +3482,8 @@ class SecretsMountHana(dict):
     @pulumi.getter(name="maxOpenConnections")
     def max_open_connections(self) -> Optional[int]:
         """
-        Maximum number of open connections to the database.
+        The maximum number of open connections to
+        the database.
         """
         return pulumi.get(self, "max_open_connections")
 
@@ -3309,7 +3491,7 @@ class SecretsMountHana(dict):
     @pulumi.getter
     def password(self) -> Optional[str]:
         """
-        The root credential password used in the connection URL
+        The root credential password used in the connection URL.
         """
         return pulumi.get(self, "password")
 
@@ -3333,7 +3515,7 @@ class SecretsMountHana(dict):
     @pulumi.getter
     def username(self) -> Optional[str]:
         """
-        The root credential username used in the connection URL
+        The root credential username used in the connection URL.
         """
         return pulumi.get(self, "username")
 
@@ -3400,24 +3582,28 @@ class SecretsMountInfluxdb(dict):
                  username_template: Optional[str] = None,
                  verify_connection: Optional[bool] = None):
         """
-        :param str host: Influxdb host to connect to.
+        :param str host: The host to connect to.
         :param str name: Name of the database connection.
-        :param str password: Specifies the password corresponding to the given username.
-        :param str username: Specifies the username to use for superuser access.
+        :param str password: The root credential password used in the connection URL.
+        :param str username: The root credential username used in the connection URL.
         :param Sequence[str] allowed_roles: A list of roles that are allowed to use this
                connection.
-        :param int connect_timeout: The number of seconds to use as a connection timeout.
+        :param int connect_timeout: The number of seconds to use as a connection
+               timeout.
         :param Mapping[str, Any] data: A map of sensitive data to pass to the endpoint. Useful for templated connection strings.
                
                Supported list of database secrets engines that can be configured:
-        :param bool insecure_tls: Whether to skip verification of the server certificate when using TLS.
-        :param str pem_bundle: Concatenated PEM blocks containing a certificate and private key; a certificate, private key, and issuing CA certificate; or just a CA certificate.
-        :param str pem_json: Specifies JSON containing a certificate and private key; a certificate, private key, and issuing CA certificate; or just a CA certificate.
+        :param bool insecure_tls: Whether to skip verification of the server
+               certificate when using TLS.
+        :param str pem_bundle: Concatenated PEM blocks configuring the certificate
+               chain.
+        :param str pem_json: A JSON structure configuring the certificate chain.
         :param str plugin_name: Specifies the name of the plugin to use.
-        :param int port: The transport port to use to connect to Influxdb.
+        :param int port: The default port to connect to if no port is specified as
+               part of the host.
         :param Sequence[str] root_rotation_statements: A list of database statements to be executed to rotate the root user's credentials.
-        :param bool tls: Whether to use TLS when connecting to Influxdb.
-        :param str username_template: Template describing how dynamic usernames are generated.
+        :param bool tls: Whether to use TLS when connecting to Cassandra.
+        :param str username_template: [Template](https://www.vaultproject.io/docs/concepts/username-templating) describing how dynamic usernames are generated.
         :param bool verify_connection: Whether the connection should be verified on
                initial configuration or not.
         """
@@ -3454,7 +3640,7 @@ class SecretsMountInfluxdb(dict):
     @pulumi.getter
     def host(self) -> str:
         """
-        Influxdb host to connect to.
+        The host to connect to.
         """
         return pulumi.get(self, "host")
 
@@ -3470,7 +3656,7 @@ class SecretsMountInfluxdb(dict):
     @pulumi.getter
     def password(self) -> str:
         """
-        Specifies the password corresponding to the given username.
+        The root credential password used in the connection URL.
         """
         return pulumi.get(self, "password")
 
@@ -3478,7 +3664,7 @@ class SecretsMountInfluxdb(dict):
     @pulumi.getter
     def username(self) -> str:
         """
-        Specifies the username to use for superuser access.
+        The root credential username used in the connection URL.
         """
         return pulumi.get(self, "username")
 
@@ -3495,7 +3681,8 @@ class SecretsMountInfluxdb(dict):
     @pulumi.getter(name="connectTimeout")
     def connect_timeout(self) -> Optional[int]:
         """
-        The number of seconds to use as a connection timeout.
+        The number of seconds to use as a connection
+        timeout.
         """
         return pulumi.get(self, "connect_timeout")
 
@@ -3513,7 +3700,8 @@ class SecretsMountInfluxdb(dict):
     @pulumi.getter(name="insecureTls")
     def insecure_tls(self) -> Optional[bool]:
         """
-        Whether to skip verification of the server certificate when using TLS.
+        Whether to skip verification of the server
+        certificate when using TLS.
         """
         return pulumi.get(self, "insecure_tls")
 
@@ -3521,7 +3709,8 @@ class SecretsMountInfluxdb(dict):
     @pulumi.getter(name="pemBundle")
     def pem_bundle(self) -> Optional[str]:
         """
-        Concatenated PEM blocks containing a certificate and private key; a certificate, private key, and issuing CA certificate; or just a CA certificate.
+        Concatenated PEM blocks configuring the certificate
+        chain.
         """
         return pulumi.get(self, "pem_bundle")
 
@@ -3529,7 +3718,7 @@ class SecretsMountInfluxdb(dict):
     @pulumi.getter(name="pemJson")
     def pem_json(self) -> Optional[str]:
         """
-        Specifies JSON containing a certificate and private key; a certificate, private key, and issuing CA certificate; or just a CA certificate.
+        A JSON structure configuring the certificate chain.
         """
         return pulumi.get(self, "pem_json")
 
@@ -3545,7 +3734,8 @@ class SecretsMountInfluxdb(dict):
     @pulumi.getter
     def port(self) -> Optional[int]:
         """
-        The transport port to use to connect to Influxdb.
+        The default port to connect to if no port is specified as
+        part of the host.
         """
         return pulumi.get(self, "port")
 
@@ -3561,7 +3751,7 @@ class SecretsMountInfluxdb(dict):
     @pulumi.getter
     def tls(self) -> Optional[bool]:
         """
-        Whether to use TLS when connecting to Influxdb.
+        Whether to use TLS when connecting to Cassandra.
         """
         return pulumi.get(self, "tls")
 
@@ -3569,7 +3759,7 @@ class SecretsMountInfluxdb(dict):
     @pulumi.getter(name="usernameTemplate")
     def username_template(self) -> Optional[str]:
         """
-        Template describing how dynamic usernames are generated.
+        [Template](https://www.vaultproject.io/docs/concepts/username-templating) describing how dynamic usernames are generated.
         """
         return pulumi.get(self, "username_template")
 
@@ -3636,18 +3826,21 @@ class SecretsMountMongodb(dict):
         :param str name: Name of the database connection.
         :param Sequence[str] allowed_roles: A list of roles that are allowed to use this
                connection.
-        :param str connection_url: Connection string to use to connect to the database.
+        :param str connection_url: Specifies the Redshift DSN. 
+               See [Vault docs](https://www.vaultproject.io/api-docs/secret/databases/redshift#sample-payload)
         :param Mapping[str, Any] data: A map of sensitive data to pass to the endpoint. Useful for templated connection strings.
                
                Supported list of database secrets engines that can be configured:
-        :param int max_connection_lifetime: Maximum number of seconds a connection may be reused.
-        :param int max_idle_connections: Maximum number of idle connections to the database.
-        :param int max_open_connections: Maximum number of open connections to the database.
-        :param str password: The root credential password used in the connection URL
+        :param int max_connection_lifetime: The maximum amount of time a connection may be reused.
+        :param int max_idle_connections: The maximum number of idle connections to
+               the database.
+        :param int max_open_connections: The maximum number of open connections to
+               the database.
+        :param str password: The root credential password used in the connection URL.
         :param str plugin_name: Specifies the name of the plugin to use.
         :param Sequence[str] root_rotation_statements: A list of database statements to be executed to rotate the root user's credentials.
-        :param str username: The root credential username used in the connection URL
-        :param str username_template: Username generation template.
+        :param str username: The root credential username used in the connection URL.
+        :param str username_template: [Template](https://www.vaultproject.io/docs/concepts/username-templating) describing how dynamic usernames are generated.
         :param bool verify_connection: Whether the connection should be verified on
                initial configuration or not.
         """
@@ -3698,7 +3891,8 @@ class SecretsMountMongodb(dict):
     @pulumi.getter(name="connectionUrl")
     def connection_url(self) -> Optional[str]:
         """
-        Connection string to use to connect to the database.
+        Specifies the Redshift DSN. 
+        See [Vault docs](https://www.vaultproject.io/api-docs/secret/databases/redshift#sample-payload)
         """
         return pulumi.get(self, "connection_url")
 
@@ -3716,7 +3910,7 @@ class SecretsMountMongodb(dict):
     @pulumi.getter(name="maxConnectionLifetime")
     def max_connection_lifetime(self) -> Optional[int]:
         """
-        Maximum number of seconds a connection may be reused.
+        The maximum amount of time a connection may be reused.
         """
         return pulumi.get(self, "max_connection_lifetime")
 
@@ -3724,7 +3918,8 @@ class SecretsMountMongodb(dict):
     @pulumi.getter(name="maxIdleConnections")
     def max_idle_connections(self) -> Optional[int]:
         """
-        Maximum number of idle connections to the database.
+        The maximum number of idle connections to
+        the database.
         """
         return pulumi.get(self, "max_idle_connections")
 
@@ -3732,7 +3927,8 @@ class SecretsMountMongodb(dict):
     @pulumi.getter(name="maxOpenConnections")
     def max_open_connections(self) -> Optional[int]:
         """
-        Maximum number of open connections to the database.
+        The maximum number of open connections to
+        the database.
         """
         return pulumi.get(self, "max_open_connections")
 
@@ -3740,7 +3936,7 @@ class SecretsMountMongodb(dict):
     @pulumi.getter
     def password(self) -> Optional[str]:
         """
-        The root credential password used in the connection URL
+        The root credential password used in the connection URL.
         """
         return pulumi.get(self, "password")
 
@@ -3764,7 +3960,7 @@ class SecretsMountMongodb(dict):
     @pulumi.getter
     def username(self) -> Optional[str]:
         """
-        The root credential username used in the connection URL
+        The root credential username used in the connection URL.
         """
         return pulumi.get(self, "username")
 
@@ -3772,7 +3968,7 @@ class SecretsMountMongodb(dict):
     @pulumi.getter(name="usernameTemplate")
     def username_template(self) -> Optional[str]:
         """
-        Username generation template.
+        [Template](https://www.vaultproject.io/docs/concepts/username-templating) describing how dynamic usernames are generated.
         """
         return pulumi.get(self, "username_template")
 
@@ -3993,20 +4189,25 @@ class SecretsMountMssql(dict):
         :param str name: Name of the database connection.
         :param Sequence[str] allowed_roles: A list of roles that are allowed to use this
                connection.
-        :param str connection_url: Connection string to use to connect to the database.
-        :param bool contained_db: Set to true when the target is a Contained Database, e.g. AzureSQL.
+        :param str connection_url: Specifies the Redshift DSN. 
+               See [Vault docs](https://www.vaultproject.io/api-docs/secret/databases/redshift#sample-payload)
+        :param bool contained_db: For Vault v1.9+. Set to true when the target is a
+               Contained Database, e.g. AzureSQL.
+               See [Vault docs](https://www.vaultproject.io/api/secret/databases/mssql#contained_db)
         :param Mapping[str, Any] data: A map of sensitive data to pass to the endpoint. Useful for templated connection strings.
                
                Supported list of database secrets engines that can be configured:
-        :param bool disable_escaping: Disable special character escaping in username and password
-        :param int max_connection_lifetime: Maximum number of seconds a connection may be reused.
-        :param int max_idle_connections: Maximum number of idle connections to the database.
-        :param int max_open_connections: Maximum number of open connections to the database.
-        :param str password: The root credential password used in the connection URL
+        :param bool disable_escaping: Disable special character escaping in username and password.
+        :param int max_connection_lifetime: The maximum amount of time a connection may be reused.
+        :param int max_idle_connections: The maximum number of idle connections to
+               the database.
+        :param int max_open_connections: The maximum number of open connections to
+               the database.
+        :param str password: The root credential password used in the connection URL.
         :param str plugin_name: Specifies the name of the plugin to use.
         :param Sequence[str] root_rotation_statements: A list of database statements to be executed to rotate the root user's credentials.
-        :param str username: The root credential username used in the connection URL
-        :param str username_template: Username generation template.
+        :param str username: The root credential username used in the connection URL.
+        :param str username_template: [Template](https://www.vaultproject.io/docs/concepts/username-templating) describing how dynamic usernames are generated.
         :param bool verify_connection: Whether the connection should be verified on
                initial configuration or not.
         """
@@ -4061,7 +4262,8 @@ class SecretsMountMssql(dict):
     @pulumi.getter(name="connectionUrl")
     def connection_url(self) -> Optional[str]:
         """
-        Connection string to use to connect to the database.
+        Specifies the Redshift DSN. 
+        See [Vault docs](https://www.vaultproject.io/api-docs/secret/databases/redshift#sample-payload)
         """
         return pulumi.get(self, "connection_url")
 
@@ -4069,7 +4271,9 @@ class SecretsMountMssql(dict):
     @pulumi.getter(name="containedDb")
     def contained_db(self) -> Optional[bool]:
         """
-        Set to true when the target is a Contained Database, e.g. AzureSQL.
+        For Vault v1.9+. Set to true when the target is a
+        Contained Database, e.g. AzureSQL.
+        See [Vault docs](https://www.vaultproject.io/api/secret/databases/mssql#contained_db)
         """
         return pulumi.get(self, "contained_db")
 
@@ -4087,7 +4291,7 @@ class SecretsMountMssql(dict):
     @pulumi.getter(name="disableEscaping")
     def disable_escaping(self) -> Optional[bool]:
         """
-        Disable special character escaping in username and password
+        Disable special character escaping in username and password.
         """
         return pulumi.get(self, "disable_escaping")
 
@@ -4095,7 +4299,7 @@ class SecretsMountMssql(dict):
     @pulumi.getter(name="maxConnectionLifetime")
     def max_connection_lifetime(self) -> Optional[int]:
         """
-        Maximum number of seconds a connection may be reused.
+        The maximum amount of time a connection may be reused.
         """
         return pulumi.get(self, "max_connection_lifetime")
 
@@ -4103,7 +4307,8 @@ class SecretsMountMssql(dict):
     @pulumi.getter(name="maxIdleConnections")
     def max_idle_connections(self) -> Optional[int]:
         """
-        Maximum number of idle connections to the database.
+        The maximum number of idle connections to
+        the database.
         """
         return pulumi.get(self, "max_idle_connections")
 
@@ -4111,7 +4316,8 @@ class SecretsMountMssql(dict):
     @pulumi.getter(name="maxOpenConnections")
     def max_open_connections(self) -> Optional[int]:
         """
-        Maximum number of open connections to the database.
+        The maximum number of open connections to
+        the database.
         """
         return pulumi.get(self, "max_open_connections")
 
@@ -4119,7 +4325,7 @@ class SecretsMountMssql(dict):
     @pulumi.getter
     def password(self) -> Optional[str]:
         """
-        The root credential password used in the connection URL
+        The root credential password used in the connection URL.
         """
         return pulumi.get(self, "password")
 
@@ -4143,7 +4349,7 @@ class SecretsMountMssql(dict):
     @pulumi.getter
     def username(self) -> Optional[str]:
         """
-        The root credential username used in the connection URL
+        The root credential username used in the connection URL.
         """
         return pulumi.get(self, "username")
 
@@ -4151,7 +4357,7 @@ class SecretsMountMssql(dict):
     @pulumi.getter(name="usernameTemplate")
     def username_template(self) -> Optional[str]:
         """
-        Username generation template.
+        [Template](https://www.vaultproject.io/docs/concepts/username-templating) describing how dynamic usernames are generated.
         """
         return pulumi.get(self, "username_template")
 
@@ -4231,21 +4437,24 @@ class SecretsMountMysql(dict):
         :param Sequence[str] allowed_roles: A list of roles that are allowed to use this
                connection.
         :param str auth_type: Specify alternative authorization type. (Only 'gcp_iam' is valid currently)
-        :param str connection_url: Connection string to use to connect to the database.
+        :param str connection_url: Specifies the Redshift DSN. 
+               See [Vault docs](https://www.vaultproject.io/api-docs/secret/databases/redshift#sample-payload)
         :param Mapping[str, Any] data: A map of sensitive data to pass to the endpoint. Useful for templated connection strings.
                
                Supported list of database secrets engines that can be configured:
-        :param int max_connection_lifetime: Maximum number of seconds a connection may be reused.
-        :param int max_idle_connections: Maximum number of idle connections to the database.
-        :param int max_open_connections: Maximum number of open connections to the database.
-        :param str password: The root credential password used in the connection URL
+        :param int max_connection_lifetime: The maximum amount of time a connection may be reused.
+        :param int max_idle_connections: The maximum number of idle connections to
+               the database.
+        :param int max_open_connections: The maximum number of open connections to
+               the database.
+        :param str password: The root credential password used in the connection URL.
         :param str plugin_name: Specifies the name of the plugin to use.
         :param Sequence[str] root_rotation_statements: A list of database statements to be executed to rotate the root user's credentials.
         :param str service_account_json: A JSON encoded credential for use with IAM authorization
         :param str tls_ca: x509 CA file for validating the certificate presented by the MySQL server. Must be PEM encoded.
         :param str tls_certificate_key: x509 certificate for connecting to the database. This must be a PEM encoded version of the private key and the certificate combined.
-        :param str username: The root credential username used in the connection URL
-        :param str username_template: Username generation template.
+        :param str username: The root credential username used in the connection URL.
+        :param str username_template: [Template](https://www.vaultproject.io/docs/concepts/username-templating) describing how dynamic usernames are generated.
         :param bool verify_connection: Whether the connection should be verified on
                initial configuration or not.
         """
@@ -4312,7 +4521,8 @@ class SecretsMountMysql(dict):
     @pulumi.getter(name="connectionUrl")
     def connection_url(self) -> Optional[str]:
         """
-        Connection string to use to connect to the database.
+        Specifies the Redshift DSN. 
+        See [Vault docs](https://www.vaultproject.io/api-docs/secret/databases/redshift#sample-payload)
         """
         return pulumi.get(self, "connection_url")
 
@@ -4330,7 +4540,7 @@ class SecretsMountMysql(dict):
     @pulumi.getter(name="maxConnectionLifetime")
     def max_connection_lifetime(self) -> Optional[int]:
         """
-        Maximum number of seconds a connection may be reused.
+        The maximum amount of time a connection may be reused.
         """
         return pulumi.get(self, "max_connection_lifetime")
 
@@ -4338,7 +4548,8 @@ class SecretsMountMysql(dict):
     @pulumi.getter(name="maxIdleConnections")
     def max_idle_connections(self) -> Optional[int]:
         """
-        Maximum number of idle connections to the database.
+        The maximum number of idle connections to
+        the database.
         """
         return pulumi.get(self, "max_idle_connections")
 
@@ -4346,7 +4557,8 @@ class SecretsMountMysql(dict):
     @pulumi.getter(name="maxOpenConnections")
     def max_open_connections(self) -> Optional[int]:
         """
-        Maximum number of open connections to the database.
+        The maximum number of open connections to
+        the database.
         """
         return pulumi.get(self, "max_open_connections")
 
@@ -4354,7 +4566,7 @@ class SecretsMountMysql(dict):
     @pulumi.getter
     def password(self) -> Optional[str]:
         """
-        The root credential password used in the connection URL
+        The root credential password used in the connection URL.
         """
         return pulumi.get(self, "password")
 
@@ -4402,7 +4614,7 @@ class SecretsMountMysql(dict):
     @pulumi.getter
     def username(self) -> Optional[str]:
         """
-        The root credential username used in the connection URL
+        The root credential username used in the connection URL.
         """
         return pulumi.get(self, "username")
 
@@ -4410,7 +4622,7 @@ class SecretsMountMysql(dict):
     @pulumi.getter(name="usernameTemplate")
     def username_template(self) -> Optional[str]:
         """
-        Username generation template.
+        [Template](https://www.vaultproject.io/docs/concepts/username-templating) describing how dynamic usernames are generated.
         """
         return pulumi.get(self, "username_template")
 
@@ -4490,21 +4702,24 @@ class SecretsMountMysqlAurora(dict):
         :param Sequence[str] allowed_roles: A list of roles that are allowed to use this
                connection.
         :param str auth_type: Specify alternative authorization type. (Only 'gcp_iam' is valid currently)
-        :param str connection_url: Connection string to use to connect to the database.
+        :param str connection_url: Specifies the Redshift DSN. 
+               See [Vault docs](https://www.vaultproject.io/api-docs/secret/databases/redshift#sample-payload)
         :param Mapping[str, Any] data: A map of sensitive data to pass to the endpoint. Useful for templated connection strings.
                
                Supported list of database secrets engines that can be configured:
-        :param int max_connection_lifetime: Maximum number of seconds a connection may be reused.
-        :param int max_idle_connections: Maximum number of idle connections to the database.
-        :param int max_open_connections: Maximum number of open connections to the database.
-        :param str password: The root credential password used in the connection URL
+        :param int max_connection_lifetime: The maximum amount of time a connection may be reused.
+        :param int max_idle_connections: The maximum number of idle connections to
+               the database.
+        :param int max_open_connections: The maximum number of open connections to
+               the database.
+        :param str password: The root credential password used in the connection URL.
         :param str plugin_name: Specifies the name of the plugin to use.
         :param Sequence[str] root_rotation_statements: A list of database statements to be executed to rotate the root user's credentials.
         :param str service_account_json: A JSON encoded credential for use with IAM authorization
         :param str tls_ca: x509 CA file for validating the certificate presented by the MySQL server. Must be PEM encoded.
         :param str tls_certificate_key: x509 certificate for connecting to the database. This must be a PEM encoded version of the private key and the certificate combined.
-        :param str username: The root credential username used in the connection URL
-        :param str username_template: Username generation template.
+        :param str username: The root credential username used in the connection URL.
+        :param str username_template: [Template](https://www.vaultproject.io/docs/concepts/username-templating) describing how dynamic usernames are generated.
         :param bool verify_connection: Whether the connection should be verified on
                initial configuration or not.
         """
@@ -4571,7 +4786,8 @@ class SecretsMountMysqlAurora(dict):
     @pulumi.getter(name="connectionUrl")
     def connection_url(self) -> Optional[str]:
         """
-        Connection string to use to connect to the database.
+        Specifies the Redshift DSN. 
+        See [Vault docs](https://www.vaultproject.io/api-docs/secret/databases/redshift#sample-payload)
         """
         return pulumi.get(self, "connection_url")
 
@@ -4589,7 +4805,7 @@ class SecretsMountMysqlAurora(dict):
     @pulumi.getter(name="maxConnectionLifetime")
     def max_connection_lifetime(self) -> Optional[int]:
         """
-        Maximum number of seconds a connection may be reused.
+        The maximum amount of time a connection may be reused.
         """
         return pulumi.get(self, "max_connection_lifetime")
 
@@ -4597,7 +4813,8 @@ class SecretsMountMysqlAurora(dict):
     @pulumi.getter(name="maxIdleConnections")
     def max_idle_connections(self) -> Optional[int]:
         """
-        Maximum number of idle connections to the database.
+        The maximum number of idle connections to
+        the database.
         """
         return pulumi.get(self, "max_idle_connections")
 
@@ -4605,7 +4822,8 @@ class SecretsMountMysqlAurora(dict):
     @pulumi.getter(name="maxOpenConnections")
     def max_open_connections(self) -> Optional[int]:
         """
-        Maximum number of open connections to the database.
+        The maximum number of open connections to
+        the database.
         """
         return pulumi.get(self, "max_open_connections")
 
@@ -4613,7 +4831,7 @@ class SecretsMountMysqlAurora(dict):
     @pulumi.getter
     def password(self) -> Optional[str]:
         """
-        The root credential password used in the connection URL
+        The root credential password used in the connection URL.
         """
         return pulumi.get(self, "password")
 
@@ -4661,7 +4879,7 @@ class SecretsMountMysqlAurora(dict):
     @pulumi.getter
     def username(self) -> Optional[str]:
         """
-        The root credential username used in the connection URL
+        The root credential username used in the connection URL.
         """
         return pulumi.get(self, "username")
 
@@ -4669,7 +4887,7 @@ class SecretsMountMysqlAurora(dict):
     @pulumi.getter(name="usernameTemplate")
     def username_template(self) -> Optional[str]:
         """
-        Username generation template.
+        [Template](https://www.vaultproject.io/docs/concepts/username-templating) describing how dynamic usernames are generated.
         """
         return pulumi.get(self, "username_template")
 
@@ -4749,21 +4967,24 @@ class SecretsMountMysqlLegacy(dict):
         :param Sequence[str] allowed_roles: A list of roles that are allowed to use this
                connection.
         :param str auth_type: Specify alternative authorization type. (Only 'gcp_iam' is valid currently)
-        :param str connection_url: Connection string to use to connect to the database.
+        :param str connection_url: Specifies the Redshift DSN. 
+               See [Vault docs](https://www.vaultproject.io/api-docs/secret/databases/redshift#sample-payload)
         :param Mapping[str, Any] data: A map of sensitive data to pass to the endpoint. Useful for templated connection strings.
                
                Supported list of database secrets engines that can be configured:
-        :param int max_connection_lifetime: Maximum number of seconds a connection may be reused.
-        :param int max_idle_connections: Maximum number of idle connections to the database.
-        :param int max_open_connections: Maximum number of open connections to the database.
-        :param str password: The root credential password used in the connection URL
+        :param int max_connection_lifetime: The maximum amount of time a connection may be reused.
+        :param int max_idle_connections: The maximum number of idle connections to
+               the database.
+        :param int max_open_connections: The maximum number of open connections to
+               the database.
+        :param str password: The root credential password used in the connection URL.
         :param str plugin_name: Specifies the name of the plugin to use.
         :param Sequence[str] root_rotation_statements: A list of database statements to be executed to rotate the root user's credentials.
         :param str service_account_json: A JSON encoded credential for use with IAM authorization
         :param str tls_ca: x509 CA file for validating the certificate presented by the MySQL server. Must be PEM encoded.
         :param str tls_certificate_key: x509 certificate for connecting to the database. This must be a PEM encoded version of the private key and the certificate combined.
-        :param str username: The root credential username used in the connection URL
-        :param str username_template: Username generation template.
+        :param str username: The root credential username used in the connection URL.
+        :param str username_template: [Template](https://www.vaultproject.io/docs/concepts/username-templating) describing how dynamic usernames are generated.
         :param bool verify_connection: Whether the connection should be verified on
                initial configuration or not.
         """
@@ -4830,7 +5051,8 @@ class SecretsMountMysqlLegacy(dict):
     @pulumi.getter(name="connectionUrl")
     def connection_url(self) -> Optional[str]:
         """
-        Connection string to use to connect to the database.
+        Specifies the Redshift DSN. 
+        See [Vault docs](https://www.vaultproject.io/api-docs/secret/databases/redshift#sample-payload)
         """
         return pulumi.get(self, "connection_url")
 
@@ -4848,7 +5070,7 @@ class SecretsMountMysqlLegacy(dict):
     @pulumi.getter(name="maxConnectionLifetime")
     def max_connection_lifetime(self) -> Optional[int]:
         """
-        Maximum number of seconds a connection may be reused.
+        The maximum amount of time a connection may be reused.
         """
         return pulumi.get(self, "max_connection_lifetime")
 
@@ -4856,7 +5078,8 @@ class SecretsMountMysqlLegacy(dict):
     @pulumi.getter(name="maxIdleConnections")
     def max_idle_connections(self) -> Optional[int]:
         """
-        Maximum number of idle connections to the database.
+        The maximum number of idle connections to
+        the database.
         """
         return pulumi.get(self, "max_idle_connections")
 
@@ -4864,7 +5087,8 @@ class SecretsMountMysqlLegacy(dict):
     @pulumi.getter(name="maxOpenConnections")
     def max_open_connections(self) -> Optional[int]:
         """
-        Maximum number of open connections to the database.
+        The maximum number of open connections to
+        the database.
         """
         return pulumi.get(self, "max_open_connections")
 
@@ -4872,7 +5096,7 @@ class SecretsMountMysqlLegacy(dict):
     @pulumi.getter
     def password(self) -> Optional[str]:
         """
-        The root credential password used in the connection URL
+        The root credential password used in the connection URL.
         """
         return pulumi.get(self, "password")
 
@@ -4920,7 +5144,7 @@ class SecretsMountMysqlLegacy(dict):
     @pulumi.getter
     def username(self) -> Optional[str]:
         """
-        The root credential username used in the connection URL
+        The root credential username used in the connection URL.
         """
         return pulumi.get(self, "username")
 
@@ -4928,7 +5152,7 @@ class SecretsMountMysqlLegacy(dict):
     @pulumi.getter(name="usernameTemplate")
     def username_template(self) -> Optional[str]:
         """
-        Username generation template.
+        [Template](https://www.vaultproject.io/docs/concepts/username-templating) describing how dynamic usernames are generated.
         """
         return pulumi.get(self, "username_template")
 
@@ -5008,21 +5232,24 @@ class SecretsMountMysqlRd(dict):
         :param Sequence[str] allowed_roles: A list of roles that are allowed to use this
                connection.
         :param str auth_type: Specify alternative authorization type. (Only 'gcp_iam' is valid currently)
-        :param str connection_url: Connection string to use to connect to the database.
+        :param str connection_url: Specifies the Redshift DSN. 
+               See [Vault docs](https://www.vaultproject.io/api-docs/secret/databases/redshift#sample-payload)
         :param Mapping[str, Any] data: A map of sensitive data to pass to the endpoint. Useful for templated connection strings.
                
                Supported list of database secrets engines that can be configured:
-        :param int max_connection_lifetime: Maximum number of seconds a connection may be reused.
-        :param int max_idle_connections: Maximum number of idle connections to the database.
-        :param int max_open_connections: Maximum number of open connections to the database.
-        :param str password: The root credential password used in the connection URL
+        :param int max_connection_lifetime: The maximum amount of time a connection may be reused.
+        :param int max_idle_connections: The maximum number of idle connections to
+               the database.
+        :param int max_open_connections: The maximum number of open connections to
+               the database.
+        :param str password: The root credential password used in the connection URL.
         :param str plugin_name: Specifies the name of the plugin to use.
         :param Sequence[str] root_rotation_statements: A list of database statements to be executed to rotate the root user's credentials.
         :param str service_account_json: A JSON encoded credential for use with IAM authorization
         :param str tls_ca: x509 CA file for validating the certificate presented by the MySQL server. Must be PEM encoded.
         :param str tls_certificate_key: x509 certificate for connecting to the database. This must be a PEM encoded version of the private key and the certificate combined.
-        :param str username: The root credential username used in the connection URL
-        :param str username_template: Username generation template.
+        :param str username: The root credential username used in the connection URL.
+        :param str username_template: [Template](https://www.vaultproject.io/docs/concepts/username-templating) describing how dynamic usernames are generated.
         :param bool verify_connection: Whether the connection should be verified on
                initial configuration or not.
         """
@@ -5089,7 +5316,8 @@ class SecretsMountMysqlRd(dict):
     @pulumi.getter(name="connectionUrl")
     def connection_url(self) -> Optional[str]:
         """
-        Connection string to use to connect to the database.
+        Specifies the Redshift DSN. 
+        See [Vault docs](https://www.vaultproject.io/api-docs/secret/databases/redshift#sample-payload)
         """
         return pulumi.get(self, "connection_url")
 
@@ -5107,7 +5335,7 @@ class SecretsMountMysqlRd(dict):
     @pulumi.getter(name="maxConnectionLifetime")
     def max_connection_lifetime(self) -> Optional[int]:
         """
-        Maximum number of seconds a connection may be reused.
+        The maximum amount of time a connection may be reused.
         """
         return pulumi.get(self, "max_connection_lifetime")
 
@@ -5115,7 +5343,8 @@ class SecretsMountMysqlRd(dict):
     @pulumi.getter(name="maxIdleConnections")
     def max_idle_connections(self) -> Optional[int]:
         """
-        Maximum number of idle connections to the database.
+        The maximum number of idle connections to
+        the database.
         """
         return pulumi.get(self, "max_idle_connections")
 
@@ -5123,7 +5352,8 @@ class SecretsMountMysqlRd(dict):
     @pulumi.getter(name="maxOpenConnections")
     def max_open_connections(self) -> Optional[int]:
         """
-        Maximum number of open connections to the database.
+        The maximum number of open connections to
+        the database.
         """
         return pulumi.get(self, "max_open_connections")
 
@@ -5131,7 +5361,7 @@ class SecretsMountMysqlRd(dict):
     @pulumi.getter
     def password(self) -> Optional[str]:
         """
-        The root credential password used in the connection URL
+        The root credential password used in the connection URL.
         """
         return pulumi.get(self, "password")
 
@@ -5179,7 +5409,7 @@ class SecretsMountMysqlRd(dict):
     @pulumi.getter
     def username(self) -> Optional[str]:
         """
-        The root credential username used in the connection URL
+        The root credential username used in the connection URL.
         """
         return pulumi.get(self, "username")
 
@@ -5187,7 +5417,7 @@ class SecretsMountMysqlRd(dict):
     @pulumi.getter(name="usernameTemplate")
     def username_template(self) -> Optional[str]:
         """
-        Username generation template.
+        [Template](https://www.vaultproject.io/docs/concepts/username-templating) describing how dynamic usernames are generated.
         """
         return pulumi.get(self, "username_template")
 
@@ -5260,20 +5490,23 @@ class SecretsMountOracle(dict):
         :param str name: Name of the database connection.
         :param Sequence[str] allowed_roles: A list of roles that are allowed to use this
                connection.
-        :param str connection_url: Connection string to use to connect to the database.
+        :param str connection_url: Specifies the Redshift DSN. 
+               See [Vault docs](https://www.vaultproject.io/api-docs/secret/databases/redshift#sample-payload)
         :param Mapping[str, Any] data: A map of sensitive data to pass to the endpoint. Useful for templated connection strings.
                
                Supported list of database secrets engines that can be configured:
         :param bool disconnect_sessions: Set to true to disconnect any open sessions prior to running the revocation statements.
-        :param int max_connection_lifetime: Maximum number of seconds a connection may be reused.
-        :param int max_idle_connections: Maximum number of idle connections to the database.
-        :param int max_open_connections: Maximum number of open connections to the database.
-        :param str password: The root credential password used in the connection URL
+        :param int max_connection_lifetime: The maximum amount of time a connection may be reused.
+        :param int max_idle_connections: The maximum number of idle connections to
+               the database.
+        :param int max_open_connections: The maximum number of open connections to
+               the database.
+        :param str password: The root credential password used in the connection URL.
         :param str plugin_name: Specifies the name of the plugin to use.
         :param Sequence[str] root_rotation_statements: A list of database statements to be executed to rotate the root user's credentials.
         :param bool split_statements: Set to true in order to split statements after semi-colons.
-        :param str username: The root credential username used in the connection URL
-        :param str username_template: Username generation template.
+        :param str username: The root credential username used in the connection URL.
+        :param str username_template: [Template](https://www.vaultproject.io/docs/concepts/username-templating) describing how dynamic usernames are generated.
         :param bool verify_connection: Whether the connection should be verified on
                initial configuration or not.
         """
@@ -5328,7 +5561,8 @@ class SecretsMountOracle(dict):
     @pulumi.getter(name="connectionUrl")
     def connection_url(self) -> Optional[str]:
         """
-        Connection string to use to connect to the database.
+        Specifies the Redshift DSN. 
+        See [Vault docs](https://www.vaultproject.io/api-docs/secret/databases/redshift#sample-payload)
         """
         return pulumi.get(self, "connection_url")
 
@@ -5354,7 +5588,7 @@ class SecretsMountOracle(dict):
     @pulumi.getter(name="maxConnectionLifetime")
     def max_connection_lifetime(self) -> Optional[int]:
         """
-        Maximum number of seconds a connection may be reused.
+        The maximum amount of time a connection may be reused.
         """
         return pulumi.get(self, "max_connection_lifetime")
 
@@ -5362,7 +5596,8 @@ class SecretsMountOracle(dict):
     @pulumi.getter(name="maxIdleConnections")
     def max_idle_connections(self) -> Optional[int]:
         """
-        Maximum number of idle connections to the database.
+        The maximum number of idle connections to
+        the database.
         """
         return pulumi.get(self, "max_idle_connections")
 
@@ -5370,7 +5605,8 @@ class SecretsMountOracle(dict):
     @pulumi.getter(name="maxOpenConnections")
     def max_open_connections(self) -> Optional[int]:
         """
-        Maximum number of open connections to the database.
+        The maximum number of open connections to
+        the database.
         """
         return pulumi.get(self, "max_open_connections")
 
@@ -5378,7 +5614,7 @@ class SecretsMountOracle(dict):
     @pulumi.getter
     def password(self) -> Optional[str]:
         """
-        The root credential password used in the connection URL
+        The root credential password used in the connection URL.
         """
         return pulumi.get(self, "password")
 
@@ -5410,7 +5646,7 @@ class SecretsMountOracle(dict):
     @pulumi.getter
     def username(self) -> Optional[str]:
         """
-        The root credential username used in the connection URL
+        The root credential username used in the connection URL.
         """
         return pulumi.get(self, "username")
 
@@ -5418,7 +5654,7 @@ class SecretsMountOracle(dict):
     @pulumi.getter(name="usernameTemplate")
     def username_template(self) -> Optional[str]:
         """
-        Username generation template.
+        [Template](https://www.vaultproject.io/docs/concepts/username-templating) describing how dynamic usernames are generated.
         """
         return pulumi.get(self, "username_template")
 
@@ -5495,20 +5731,23 @@ class SecretsMountPostgresql(dict):
         :param Sequence[str] allowed_roles: A list of roles that are allowed to use this
                connection.
         :param str auth_type: Specify alternative authorization type. (Only 'gcp_iam' is valid currently)
-        :param str connection_url: Connection string to use to connect to the database.
+        :param str connection_url: Specifies the Redshift DSN. 
+               See [Vault docs](https://www.vaultproject.io/api-docs/secret/databases/redshift#sample-payload)
         :param Mapping[str, Any] data: A map of sensitive data to pass to the endpoint. Useful for templated connection strings.
                
                Supported list of database secrets engines that can be configured:
-        :param bool disable_escaping: Disable special character escaping in username and password
-        :param int max_connection_lifetime: Maximum number of seconds a connection may be reused.
-        :param int max_idle_connections: Maximum number of idle connections to the database.
-        :param int max_open_connections: Maximum number of open connections to the database.
-        :param str password: The root credential password used in the connection URL
+        :param bool disable_escaping: Disable special character escaping in username and password.
+        :param int max_connection_lifetime: The maximum amount of time a connection may be reused.
+        :param int max_idle_connections: The maximum number of idle connections to
+               the database.
+        :param int max_open_connections: The maximum number of open connections to
+               the database.
+        :param str password: The root credential password used in the connection URL.
         :param str plugin_name: Specifies the name of the plugin to use.
         :param Sequence[str] root_rotation_statements: A list of database statements to be executed to rotate the root user's credentials.
         :param str service_account_json: A JSON encoded credential for use with IAM authorization
-        :param str username: The root credential username used in the connection URL
-        :param str username_template: Username generation template.
+        :param str username: The root credential username used in the connection URL.
+        :param str username_template: [Template](https://www.vaultproject.io/docs/concepts/username-templating) describing how dynamic usernames are generated.
         :param bool verify_connection: Whether the connection should be verified on
                initial configuration or not.
         """
@@ -5573,7 +5812,8 @@ class SecretsMountPostgresql(dict):
     @pulumi.getter(name="connectionUrl")
     def connection_url(self) -> Optional[str]:
         """
-        Connection string to use to connect to the database.
+        Specifies the Redshift DSN. 
+        See [Vault docs](https://www.vaultproject.io/api-docs/secret/databases/redshift#sample-payload)
         """
         return pulumi.get(self, "connection_url")
 
@@ -5591,7 +5831,7 @@ class SecretsMountPostgresql(dict):
     @pulumi.getter(name="disableEscaping")
     def disable_escaping(self) -> Optional[bool]:
         """
-        Disable special character escaping in username and password
+        Disable special character escaping in username and password.
         """
         return pulumi.get(self, "disable_escaping")
 
@@ -5599,7 +5839,7 @@ class SecretsMountPostgresql(dict):
     @pulumi.getter(name="maxConnectionLifetime")
     def max_connection_lifetime(self) -> Optional[int]:
         """
-        Maximum number of seconds a connection may be reused.
+        The maximum amount of time a connection may be reused.
         """
         return pulumi.get(self, "max_connection_lifetime")
 
@@ -5607,7 +5847,8 @@ class SecretsMountPostgresql(dict):
     @pulumi.getter(name="maxIdleConnections")
     def max_idle_connections(self) -> Optional[int]:
         """
-        Maximum number of idle connections to the database.
+        The maximum number of idle connections to
+        the database.
         """
         return pulumi.get(self, "max_idle_connections")
 
@@ -5615,7 +5856,8 @@ class SecretsMountPostgresql(dict):
     @pulumi.getter(name="maxOpenConnections")
     def max_open_connections(self) -> Optional[int]:
         """
-        Maximum number of open connections to the database.
+        The maximum number of open connections to
+        the database.
         """
         return pulumi.get(self, "max_open_connections")
 
@@ -5623,7 +5865,7 @@ class SecretsMountPostgresql(dict):
     @pulumi.getter
     def password(self) -> Optional[str]:
         """
-        The root credential password used in the connection URL
+        The root credential password used in the connection URL.
         """
         return pulumi.get(self, "password")
 
@@ -5655,7 +5897,7 @@ class SecretsMountPostgresql(dict):
     @pulumi.getter
     def username(self) -> Optional[str]:
         """
-        The root credential username used in the connection URL
+        The root credential username used in the connection URL.
         """
         return pulumi.get(self, "username")
 
@@ -5663,7 +5905,7 @@ class SecretsMountPostgresql(dict):
     @pulumi.getter(name="usernameTemplate")
     def username_template(self) -> Optional[str]:
         """
-        Username generation template.
+        [Template](https://www.vaultproject.io/docs/concepts/username-templating) describing how dynamic usernames are generated.
         """
         return pulumi.get(self, "username_template")
 
@@ -5721,21 +5963,23 @@ class SecretsMountRedi(dict):
                  tls: Optional[bool] = None,
                  verify_connection: Optional[bool] = None):
         """
-        :param str host: Specifies the host to connect to
+        :param str host: The host to connect to.
         :param str name: Name of the database connection.
-        :param str password: Specifies the password corresponding to the given username.
-        :param str username: Specifies the username for Vault to use.
+        :param str password: The root credential password used in the connection URL.
+        :param str username: The root credential username used in the connection URL.
         :param Sequence[str] allowed_roles: A list of roles that are allowed to use this
                connection.
-        :param str ca_cert: The contents of a PEM-encoded CA cert file to use to verify the Redis server's identity.
+        :param str ca_cert: The path to a PEM-encoded CA cert file to use to verify the Elasticsearch server's identity.
         :param Mapping[str, Any] data: A map of sensitive data to pass to the endpoint. Useful for templated connection strings.
                
                Supported list of database secrets engines that can be configured:
-        :param bool insecure_tls: Specifies whether to skip verification of the server certificate when using TLS.
+        :param bool insecure_tls: Whether to skip verification of the server
+               certificate when using TLS.
         :param str plugin_name: Specifies the name of the plugin to use.
-        :param int port: The transport port to use to connect to Redis.
+        :param int port: The default port to connect to if no port is specified as
+               part of the host.
         :param Sequence[str] root_rotation_statements: A list of database statements to be executed to rotate the root user's credentials.
-        :param bool tls: Specifies whether to use TLS when connecting to Redis.
+        :param bool tls: Whether to use TLS when connecting to Cassandra.
         :param bool verify_connection: Whether the connection should be verified on
                initial configuration or not.
         """
@@ -5766,7 +6010,7 @@ class SecretsMountRedi(dict):
     @pulumi.getter
     def host(self) -> str:
         """
-        Specifies the host to connect to
+        The host to connect to.
         """
         return pulumi.get(self, "host")
 
@@ -5782,7 +6026,7 @@ class SecretsMountRedi(dict):
     @pulumi.getter
     def password(self) -> str:
         """
-        Specifies the password corresponding to the given username.
+        The root credential password used in the connection URL.
         """
         return pulumi.get(self, "password")
 
@@ -5790,7 +6034,7 @@ class SecretsMountRedi(dict):
     @pulumi.getter
     def username(self) -> str:
         """
-        Specifies the username for Vault to use.
+        The root credential username used in the connection URL.
         """
         return pulumi.get(self, "username")
 
@@ -5807,7 +6051,7 @@ class SecretsMountRedi(dict):
     @pulumi.getter(name="caCert")
     def ca_cert(self) -> Optional[str]:
         """
-        The contents of a PEM-encoded CA cert file to use to verify the Redis server's identity.
+        The path to a PEM-encoded CA cert file to use to verify the Elasticsearch server's identity.
         """
         return pulumi.get(self, "ca_cert")
 
@@ -5825,7 +6069,8 @@ class SecretsMountRedi(dict):
     @pulumi.getter(name="insecureTls")
     def insecure_tls(self) -> Optional[bool]:
         """
-        Specifies whether to skip verification of the server certificate when using TLS.
+        Whether to skip verification of the server
+        certificate when using TLS.
         """
         return pulumi.get(self, "insecure_tls")
 
@@ -5841,7 +6086,8 @@ class SecretsMountRedi(dict):
     @pulumi.getter
     def port(self) -> Optional[int]:
         """
-        The transport port to use to connect to Redis.
+        The default port to connect to if no port is specified as
+        part of the host.
         """
         return pulumi.get(self, "port")
 
@@ -5857,7 +6103,7 @@ class SecretsMountRedi(dict):
     @pulumi.getter
     def tls(self) -> Optional[bool]:
         """
-        Specifies whether to use TLS when connecting to Redis.
+        Whether to use TLS when connecting to Cassandra.
         """
         return pulumi.get(self, "tls")
 
@@ -5909,17 +6155,19 @@ class SecretsMountRedisElasticach(dict):
                  verify_connection: Optional[bool] = None):
         """
         :param str name: Name of the database connection.
-        :param str url: The configuration endpoint for the ElastiCache cluster to connect to.
+        :param str url: The URL for Elasticsearch's API. https requires certificate
+               by trusted CA if used.
         :param Sequence[str] allowed_roles: A list of roles that are allowed to use this
                connection.
         :param Mapping[str, Any] data: A map of sensitive data to pass to the endpoint. Useful for templated connection strings.
                
                Supported list of database secrets engines that can be configured:
-        :param str password: The AWS secret key id to use to talk to ElastiCache. If omitted the credentials chain provider is used instead.
+        :param str password: The root credential password used in the connection URL.
         :param str plugin_name: Specifies the name of the plugin to use.
-        :param str region: The AWS region where the ElastiCache cluster is hosted. If omitted the plugin tries to infer the region from the environment.
+        :param str region: The AWS region where the ElastiCache cluster is hosted.
+               If omitted the plugin tries to infer the region from the environment.
         :param Sequence[str] root_rotation_statements: A list of database statements to be executed to rotate the root user's credentials.
-        :param str username: The AWS access key id to use to talk to ElastiCache. If omitted the credentials chain provider is used instead.
+        :param str username: The root credential username used in the connection URL.
         :param bool verify_connection: Whether the connection should be verified on
                initial configuration or not.
         """
@@ -5954,7 +6202,8 @@ class SecretsMountRedisElasticach(dict):
     @pulumi.getter
     def url(self) -> str:
         """
-        The configuration endpoint for the ElastiCache cluster to connect to.
+        The URL for Elasticsearch's API. https requires certificate
+        by trusted CA if used.
         """
         return pulumi.get(self, "url")
 
@@ -5981,7 +6230,7 @@ class SecretsMountRedisElasticach(dict):
     @pulumi.getter
     def password(self) -> Optional[str]:
         """
-        The AWS secret key id to use to talk to ElastiCache. If omitted the credentials chain provider is used instead.
+        The root credential password used in the connection URL.
         """
         return pulumi.get(self, "password")
 
@@ -5997,7 +6246,8 @@ class SecretsMountRedisElasticach(dict):
     @pulumi.getter
     def region(self) -> Optional[str]:
         """
-        The AWS region where the ElastiCache cluster is hosted. If omitted the plugin tries to infer the region from the environment.
+        The AWS region where the ElastiCache cluster is hosted.
+        If omitted the plugin tries to infer the region from the environment.
         """
         return pulumi.get(self, "region")
 
@@ -6013,7 +6263,7 @@ class SecretsMountRedisElasticach(dict):
     @pulumi.getter
     def username(self) -> Optional[str]:
         """
-        The AWS access key id to use to talk to ElastiCache. If omitted the credentials chain provider is used instead.
+        The root credential username used in the connection URL.
         """
         return pulumi.get(self, "username")
 
@@ -6083,19 +6333,22 @@ class SecretsMountRedshift(dict):
         :param str name: Name of the database connection.
         :param Sequence[str] allowed_roles: A list of roles that are allowed to use this
                connection.
-        :param str connection_url: Connection string to use to connect to the database.
+        :param str connection_url: Specifies the Redshift DSN. 
+               See [Vault docs](https://www.vaultproject.io/api-docs/secret/databases/redshift#sample-payload)
         :param Mapping[str, Any] data: A map of sensitive data to pass to the endpoint. Useful for templated connection strings.
                
                Supported list of database secrets engines that can be configured:
-        :param bool disable_escaping: Disable special character escaping in username and password
-        :param int max_connection_lifetime: Maximum number of seconds a connection may be reused.
-        :param int max_idle_connections: Maximum number of idle connections to the database.
-        :param int max_open_connections: Maximum number of open connections to the database.
-        :param str password: The root credential password used in the connection URL
+        :param bool disable_escaping: Disable special character escaping in username and password.
+        :param int max_connection_lifetime: The maximum amount of time a connection may be reused.
+        :param int max_idle_connections: The maximum number of idle connections to
+               the database.
+        :param int max_open_connections: The maximum number of open connections to
+               the database.
+        :param str password: The root credential password used in the connection URL.
         :param str plugin_name: Specifies the name of the plugin to use.
         :param Sequence[str] root_rotation_statements: A list of database statements to be executed to rotate the root user's credentials.
-        :param str username: The root credential username used in the connection URL
-        :param str username_template: Username generation template.
+        :param str username: The root credential username used in the connection URL.
+        :param str username_template: [Template](https://www.vaultproject.io/docs/concepts/username-templating) describing how dynamic usernames are generated.
         :param bool verify_connection: Whether the connection should be verified on
                initial configuration or not.
         """
@@ -6148,7 +6401,8 @@ class SecretsMountRedshift(dict):
     @pulumi.getter(name="connectionUrl")
     def connection_url(self) -> Optional[str]:
         """
-        Connection string to use to connect to the database.
+        Specifies the Redshift DSN. 
+        See [Vault docs](https://www.vaultproject.io/api-docs/secret/databases/redshift#sample-payload)
         """
         return pulumi.get(self, "connection_url")
 
@@ -6166,7 +6420,7 @@ class SecretsMountRedshift(dict):
     @pulumi.getter(name="disableEscaping")
     def disable_escaping(self) -> Optional[bool]:
         """
-        Disable special character escaping in username and password
+        Disable special character escaping in username and password.
         """
         return pulumi.get(self, "disable_escaping")
 
@@ -6174,7 +6428,7 @@ class SecretsMountRedshift(dict):
     @pulumi.getter(name="maxConnectionLifetime")
     def max_connection_lifetime(self) -> Optional[int]:
         """
-        Maximum number of seconds a connection may be reused.
+        The maximum amount of time a connection may be reused.
         """
         return pulumi.get(self, "max_connection_lifetime")
 
@@ -6182,7 +6436,8 @@ class SecretsMountRedshift(dict):
     @pulumi.getter(name="maxIdleConnections")
     def max_idle_connections(self) -> Optional[int]:
         """
-        Maximum number of idle connections to the database.
+        The maximum number of idle connections to
+        the database.
         """
         return pulumi.get(self, "max_idle_connections")
 
@@ -6190,7 +6445,8 @@ class SecretsMountRedshift(dict):
     @pulumi.getter(name="maxOpenConnections")
     def max_open_connections(self) -> Optional[int]:
         """
-        Maximum number of open connections to the database.
+        The maximum number of open connections to
+        the database.
         """
         return pulumi.get(self, "max_open_connections")
 
@@ -6198,7 +6454,7 @@ class SecretsMountRedshift(dict):
     @pulumi.getter
     def password(self) -> Optional[str]:
         """
-        The root credential password used in the connection URL
+        The root credential password used in the connection URL.
         """
         return pulumi.get(self, "password")
 
@@ -6222,7 +6478,7 @@ class SecretsMountRedshift(dict):
     @pulumi.getter
     def username(self) -> Optional[str]:
         """
-        The root credential username used in the connection URL
+        The root credential username used in the connection URL.
         """
         return pulumi.get(self, "username")
 
@@ -6230,7 +6486,7 @@ class SecretsMountRedshift(dict):
     @pulumi.getter(name="usernameTemplate")
     def username_template(self) -> Optional[str]:
         """
-        Username generation template.
+        [Template](https://www.vaultproject.io/docs/concepts/username-templating) describing how dynamic usernames are generated.
         """
         return pulumi.get(self, "username_template")
 
@@ -6297,18 +6553,21 @@ class SecretsMountSnowflake(dict):
         :param str name: Name of the database connection.
         :param Sequence[str] allowed_roles: A list of roles that are allowed to use this
                connection.
-        :param str connection_url: Connection string to use to connect to the database.
+        :param str connection_url: Specifies the Redshift DSN. 
+               See [Vault docs](https://www.vaultproject.io/api-docs/secret/databases/redshift#sample-payload)
         :param Mapping[str, Any] data: A map of sensitive data to pass to the endpoint. Useful for templated connection strings.
                
                Supported list of database secrets engines that can be configured:
-        :param int max_connection_lifetime: Maximum number of seconds a connection may be reused.
-        :param int max_idle_connections: Maximum number of idle connections to the database.
-        :param int max_open_connections: Maximum number of open connections to the database.
-        :param str password: The root credential password used in the connection URL
+        :param int max_connection_lifetime: The maximum amount of time a connection may be reused.
+        :param int max_idle_connections: The maximum number of idle connections to
+               the database.
+        :param int max_open_connections: The maximum number of open connections to
+               the database.
+        :param str password: The root credential password used in the connection URL.
         :param str plugin_name: Specifies the name of the plugin to use.
         :param Sequence[str] root_rotation_statements: A list of database statements to be executed to rotate the root user's credentials.
-        :param str username: The root credential username used in the connection URL
-        :param str username_template: Username generation template.
+        :param str username: The root credential username used in the connection URL.
+        :param str username_template: [Template](https://www.vaultproject.io/docs/concepts/username-templating) describing how dynamic usernames are generated.
         :param bool verify_connection: Whether the connection should be verified on
                initial configuration or not.
         """
@@ -6359,7 +6618,8 @@ class SecretsMountSnowflake(dict):
     @pulumi.getter(name="connectionUrl")
     def connection_url(self) -> Optional[str]:
         """
-        Connection string to use to connect to the database.
+        Specifies the Redshift DSN. 
+        See [Vault docs](https://www.vaultproject.io/api-docs/secret/databases/redshift#sample-payload)
         """
         return pulumi.get(self, "connection_url")
 
@@ -6377,7 +6637,7 @@ class SecretsMountSnowflake(dict):
     @pulumi.getter(name="maxConnectionLifetime")
     def max_connection_lifetime(self) -> Optional[int]:
         """
-        Maximum number of seconds a connection may be reused.
+        The maximum amount of time a connection may be reused.
         """
         return pulumi.get(self, "max_connection_lifetime")
 
@@ -6385,7 +6645,8 @@ class SecretsMountSnowflake(dict):
     @pulumi.getter(name="maxIdleConnections")
     def max_idle_connections(self) -> Optional[int]:
         """
-        Maximum number of idle connections to the database.
+        The maximum number of idle connections to
+        the database.
         """
         return pulumi.get(self, "max_idle_connections")
 
@@ -6393,7 +6654,8 @@ class SecretsMountSnowflake(dict):
     @pulumi.getter(name="maxOpenConnections")
     def max_open_connections(self) -> Optional[int]:
         """
-        Maximum number of open connections to the database.
+        The maximum number of open connections to
+        the database.
         """
         return pulumi.get(self, "max_open_connections")
 
@@ -6401,7 +6663,7 @@ class SecretsMountSnowflake(dict):
     @pulumi.getter
     def password(self) -> Optional[str]:
         """
-        The root credential password used in the connection URL
+        The root credential password used in the connection URL.
         """
         return pulumi.get(self, "password")
 
@@ -6425,7 +6687,7 @@ class SecretsMountSnowflake(dict):
     @pulumi.getter
     def username(self) -> Optional[str]:
         """
-        The root credential username used in the connection URL
+        The root credential username used in the connection URL.
         """
         return pulumi.get(self, "username")
 
@@ -6433,7 +6695,7 @@ class SecretsMountSnowflake(dict):
     @pulumi.getter(name="usernameTemplate")
     def username_template(self) -> Optional[str]:
         """
-        Username generation template.
+        [Template](https://www.vaultproject.io/docs/concepts/username-templating) describing how dynamic usernames are generated.
         """
         return pulumi.get(self, "username_template")