pulumi-vault 6.2.0__py3-none-any.whl → 6.2.0a1712470779__py3-none-any.whl

pulumi_vault/aws/secret_backend_role.py

@@ -18,7 +18,6 @@ class SecretBackendRoleArgs:
                  credential_type: pulumi.Input[str],
                  default_sts_ttl: Optional[pulumi.Input[int]] = None,
                  iam_groups: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
-                 iam_tags: Optional[pulumi.Input[Mapping[str, pulumi.Input[str]]]] = None,
                  max_sts_ttl: Optional[pulumi.Input[int]] = None,
                  name: Optional[pulumi.Input[str]] = None,
                  namespace: Optional[pulumi.Input[str]] = None,
@@ -45,8 +44,6 @@ class SecretBackendRoleArgs:
                corresponding AWS call (sts:AssumeRole or sts:GetFederation) will be the
                policies from each group in `iam_groups` combined with the `policy_document`
                and `policy_arns` parameters.
-        :param pulumi.Input[Mapping[str, pulumi.Input[str]]] iam_tags: A map of strings representing key/value pairs
-               to be used as tags for any IAM user that is created by this role.
         :param pulumi.Input[int] max_sts_ttl: The max allowed TTL in seconds for STS credentials
                (credentials TTL are capped to `max_sts_ttl`). Valid only when `credential_type` is
                one of `assumed_role` or `federation_token`.
@@ -84,8 +81,6 @@ class SecretBackendRoleArgs:
             pulumi.set(__self__, "default_sts_ttl", default_sts_ttl)
         if iam_groups is not None:
             pulumi.set(__self__, "iam_groups", iam_groups)
-        if iam_tags is not None:
-            pulumi.set(__self__, "iam_tags", iam_tags)
         if max_sts_ttl is not None:
             pulumi.set(__self__, "max_sts_ttl", max_sts_ttl)
         if name is not None:
@@ -163,19 +158,6 @@ class SecretBackendRoleArgs:
     def iam_groups(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]):
         pulumi.set(self, "iam_groups", value)
 
-    @property
-    @pulumi.getter(name="iamTags")
-    def iam_tags(self) -> Optional[pulumi.Input[Mapping[str, pulumi.Input[str]]]]:
-        """
-        A map of strings representing key/value pairs
-        to be used as tags for any IAM user that is created by this role.
-        """
-        return pulumi.get(self, "iam_tags")
-
-    @iam_tags.setter
-    def iam_tags(self, value: Optional[pulumi.Input[Mapping[str, pulumi.Input[str]]]]):
-        pulumi.set(self, "iam_tags", value)
-
     @property
     @pulumi.getter(name="maxStsTtl")
     def max_sts_ttl(self) -> Optional[pulumi.Input[int]]:
@@ -302,7 +284,6 @@ class _SecretBackendRoleState:
                  credential_type: Optional[pulumi.Input[str]] = None,
                  default_sts_ttl: Optional[pulumi.Input[int]] = None,
                  iam_groups: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
-                 iam_tags: Optional[pulumi.Input[Mapping[str, pulumi.Input[str]]]] = None,
                  max_sts_ttl: Optional[pulumi.Input[int]] = None,
                  name: Optional[pulumi.Input[str]] = None,
                  namespace: Optional[pulumi.Input[str]] = None,
@@ -329,8 +310,6 @@ class _SecretBackendRoleState:
                corresponding AWS call (sts:AssumeRole or sts:GetFederation) will be the
                policies from each group in `iam_groups` combined with the `policy_document`
                and `policy_arns` parameters.
-        :param pulumi.Input[Mapping[str, pulumi.Input[str]]] iam_tags: A map of strings representing key/value pairs
-               to be used as tags for any IAM user that is created by this role.
         :param pulumi.Input[int] max_sts_ttl: The max allowed TTL in seconds for STS credentials
                (credentials TTL are capped to `max_sts_ttl`). Valid only when `credential_type` is
                one of `assumed_role` or `federation_token`.
@@ -370,8 +349,6 @@ class _SecretBackendRoleState:
             pulumi.set(__self__, "default_sts_ttl", default_sts_ttl)
         if iam_groups is not None:
             pulumi.set(__self__, "iam_groups", iam_groups)
-        if iam_tags is not None:
-            pulumi.set(__self__, "iam_tags", iam_tags)
         if max_sts_ttl is not None:
             pulumi.set(__self__, "max_sts_ttl", max_sts_ttl)
         if name is not None:
@@ -449,19 +426,6 @@ class _SecretBackendRoleState:
     def iam_groups(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]):
         pulumi.set(self, "iam_groups", value)
 
-    @property
-    @pulumi.getter(name="iamTags")
-    def iam_tags(self) -> Optional[pulumi.Input[Mapping[str, pulumi.Input[str]]]]:
-        """
-        A map of strings representing key/value pairs
-        to be used as tags for any IAM user that is created by this role.
-        """
-        return pulumi.get(self, "iam_tags")
-
-    @iam_tags.setter
-    def iam_tags(self, value: Optional[pulumi.Input[Mapping[str, pulumi.Input[str]]]]):
-        pulumi.set(self, "iam_tags", value)
-
     @property
     @pulumi.getter(name="maxStsTtl")
     def max_sts_ttl(self) -> Optional[pulumi.Input[int]]:
@@ -590,7 +554,6 @@ class SecretBackendRole(pulumi.CustomResource):
                  credential_type: Optional[pulumi.Input[str]] = None,
                  default_sts_ttl: Optional[pulumi.Input[int]] = None,
                  iam_groups: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
-                 iam_tags: Optional[pulumi.Input[Mapping[str, pulumi.Input[str]]]] = None,
                  max_sts_ttl: Optional[pulumi.Input[int]] = None,
                  name: Optional[pulumi.Input[str]] = None,
                  namespace: Optional[pulumi.Input[str]] = None,
@@ -603,6 +566,7 @@ class SecretBackendRole(pulumi.CustomResource):
         """
         ## Example Usage
 
+        <!--Start PulumiCodeChooser -->
         ```python
         import pulumi
         import pulumi_vault as vault
@@ -612,7 +576,6 @@ class SecretBackendRole(pulumi.CustomResource):
             secret_key="AWS secret key")
         role = vault.aws.SecretBackendRole("role",
             backend=aws.path,
-            name="deploy",
             credential_type="iam_user",
             policy_document=\"\"\"{
           "Version": "2012-10-17",
@@ -626,6 +589,7 @@ class SecretBackendRole(pulumi.CustomResource):
         }
         \"\"\")
         ```
+        <!--End PulumiCodeChooser -->
 
         ## Import
 
@@ -653,8 +617,6 @@ class SecretBackendRole(pulumi.CustomResource):
                corresponding AWS call (sts:AssumeRole or sts:GetFederation) will be the
                policies from each group in `iam_groups` combined with the `policy_document`
                and `policy_arns` parameters.
-        :param pulumi.Input[Mapping[str, pulumi.Input[str]]] iam_tags: A map of strings representing key/value pairs
-               to be used as tags for any IAM user that is created by this role.
         :param pulumi.Input[int] max_sts_ttl: The max allowed TTL in seconds for STS credentials
                (credentials TTL are capped to `max_sts_ttl`). Valid only when `credential_type` is
                one of `assumed_role` or `federation_token`.
@@ -695,6 +657,7 @@ class SecretBackendRole(pulumi.CustomResource):
         """
         ## Example Usage
 
+        <!--Start PulumiCodeChooser -->
         ```python
         import pulumi
         import pulumi_vault as vault
@@ -704,7 +667,6 @@ class SecretBackendRole(pulumi.CustomResource):
             secret_key="AWS secret key")
         role = vault.aws.SecretBackendRole("role",
             backend=aws.path,
-            name="deploy",
             credential_type="iam_user",
             policy_document=\"\"\"{
           "Version": "2012-10-17",
@@ -718,6 +680,7 @@ class SecretBackendRole(pulumi.CustomResource):
         }
         \"\"\")
         ```
+        <!--End PulumiCodeChooser -->
 
         ## Import
 
@@ -746,7 +709,6 @@ class SecretBackendRole(pulumi.CustomResource):
                  credential_type: Optional[pulumi.Input[str]] = None,
                  default_sts_ttl: Optional[pulumi.Input[int]] = None,
                  iam_groups: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
-                 iam_tags: Optional[pulumi.Input[Mapping[str, pulumi.Input[str]]]] = None,
                  max_sts_ttl: Optional[pulumi.Input[int]] = None,
                  name: Optional[pulumi.Input[str]] = None,
                  namespace: Optional[pulumi.Input[str]] = None,
@@ -772,7 +734,6 @@ class SecretBackendRole(pulumi.CustomResource):
             __props__.__dict__["credential_type"] = credential_type
             __props__.__dict__["default_sts_ttl"] = default_sts_ttl
             __props__.__dict__["iam_groups"] = iam_groups
-            __props__.__dict__["iam_tags"] = iam_tags
             __props__.__dict__["max_sts_ttl"] = max_sts_ttl
             __props__.__dict__["name"] = name
             __props__.__dict__["namespace"] = namespace
@@ -795,7 +756,6 @@ class SecretBackendRole(pulumi.CustomResource):
             credential_type: Optional[pulumi.Input[str]] = None,
             default_sts_ttl: Optional[pulumi.Input[int]] = None,
             iam_groups: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
-            iam_tags: Optional[pulumi.Input[Mapping[str, pulumi.Input[str]]]] = None,
             max_sts_ttl: Optional[pulumi.Input[int]] = None,
             name: Optional[pulumi.Input[str]] = None,
             namespace: Optional[pulumi.Input[str]] = None,
@@ -827,8 +787,6 @@ class SecretBackendRole(pulumi.CustomResource):
                corresponding AWS call (sts:AssumeRole or sts:GetFederation) will be the
                policies from each group in `iam_groups` combined with the `policy_document`
                and `policy_arns` parameters.
-        :param pulumi.Input[Mapping[str, pulumi.Input[str]]] iam_tags: A map of strings representing key/value pairs
-               to be used as tags for any IAM user that is created by this role.
         :param pulumi.Input[int] max_sts_ttl: The max allowed TTL in seconds for STS credentials
                (credentials TTL are capped to `max_sts_ttl`). Valid only when `credential_type` is
                one of `assumed_role` or `federation_token`.
@@ -868,7 +826,6 @@ class SecretBackendRole(pulumi.CustomResource):
         __props__.__dict__["credential_type"] = credential_type
         __props__.__dict__["default_sts_ttl"] = default_sts_ttl
         __props__.__dict__["iam_groups"] = iam_groups
-        __props__.__dict__["iam_tags"] = iam_tags
         __props__.__dict__["max_sts_ttl"] = max_sts_ttl
         __props__.__dict__["name"] = name
         __props__.__dict__["namespace"] = namespace
@@ -923,15 +880,6 @@ class SecretBackendRole(pulumi.CustomResource):
         """
         return pulumi.get(self, "iam_groups")
 
-    @property
-    @pulumi.getter(name="iamTags")
-    def iam_tags(self) -> pulumi.Output[Optional[Mapping[str, str]]]:
-        """
-        A map of strings representing key/value pairs
-        to be used as tags for any IAM user that is created by this role.
-        """
-        return pulumi.get(self, "iam_tags")
-
     @property
     @pulumi.getter(name="maxStsTtl")
     def max_sts_ttl(self) -> pulumi.Output[int]:

pulumi_vault/aws/secret_backend_static_role.py

@@ -219,6 +219,7 @@ class SecretBackendStaticRole(pulumi.CustomResource):
         """
         ## Example Usage
 
+        <!--Start PulumiCodeChooser -->
         ```python
         import pulumi
         import pulumi_vault as vault
@@ -228,10 +229,10 @@ class SecretBackendStaticRole(pulumi.CustomResource):
             description="Obtain AWS credentials.")
         role = vault.aws.SecretBackendStaticRole("role",
             backend=aws.path,
-            name="test",
             username="my-test-user",
             rotation_period=3600)
         ```
+        <!--End PulumiCodeChooser -->
 
         ## Import
 
@@ -264,6 +265,7 @@ class SecretBackendStaticRole(pulumi.CustomResource):
         """
         ## Example Usage
 
+        <!--Start PulumiCodeChooser -->
         ```python
         import pulumi
         import pulumi_vault as vault
@@ -273,10 +275,10 @@ class SecretBackendStaticRole(pulumi.CustomResource):
             description="Obtain AWS credentials.")
         role = vault.aws.SecretBackendStaticRole("role",
             backend=aws.path,
-            name="test",
             username="my-test-user",
             rotation_period=3600)
         ```
+        <!--End PulumiCodeChooser -->
 
         ## Import
 

pulumi_vault/azure/auth_backend_config.py

@@ -20,8 +20,6 @@ class AuthBackendConfigArgs:
                  client_id: Optional[pulumi.Input[str]] = None,
                  client_secret: Optional[pulumi.Input[str]] = None,
                  environment: Optional[pulumi.Input[str]] = None,
-                 identity_token_audience: Optional[pulumi.Input[str]] = None,
-                 identity_token_ttl: Optional[pulumi.Input[int]] = None,
                  namespace: Optional[pulumi.Input[str]] = None):
         """
         The set of arguments for constructing a AuthBackendConfig resource.
@@ -38,9 +36,6 @@ class AuthBackendConfigArgs:
         :param pulumi.Input[str] environment: The Azure cloud environment. Valid values:
                AzurePublicCloud, AzureUSGovernmentCloud, AzureChinaCloud,
                AzureGermanCloud.  Defaults to `AzurePublicCloud`.
-        :param pulumi.Input[str] identity_token_audience: The audience claim value for plugin identity tokens. Requires Vault 1.17+.
-               *Available only for Vault Enterprise*
-        :param pulumi.Input[int] identity_token_ttl: The TTL of generated identity tokens in seconds.
         :param pulumi.Input[str] namespace: The namespace to provision the resource in.
                The value should not contain leading or trailing forward slashes.
                The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault/index.html#namespace).
@@ -56,10 +51,6 @@ class AuthBackendConfigArgs:
             pulumi.set(__self__, "client_secret", client_secret)
         if environment is not None:
             pulumi.set(__self__, "environment", environment)
-        if identity_token_audience is not None:
-            pulumi.set(__self__, "identity_token_audience", identity_token_audience)
-        if identity_token_ttl is not None:
-            pulumi.set(__self__, "identity_token_ttl", identity_token_ttl)
         if namespace is not None:
             pulumi.set(__self__, "namespace", namespace)
 
@@ -142,31 +133,6 @@ class AuthBackendConfigArgs:
     def environment(self, value: Optional[pulumi.Input[str]]):
         pulumi.set(self, "environment", value)
 
-    @property
-    @pulumi.getter(name="identityTokenAudience")
-    def identity_token_audience(self) -> Optional[pulumi.Input[str]]:
-        """
-        The audience claim value for plugin identity tokens. Requires Vault 1.17+.
-        *Available only for Vault Enterprise*
-        """
-        return pulumi.get(self, "identity_token_audience")
-
-    @identity_token_audience.setter
-    def identity_token_audience(self, value: Optional[pulumi.Input[str]]):
-        pulumi.set(self, "identity_token_audience", value)
-
-    @property
-    @pulumi.getter(name="identityTokenTtl")
-    def identity_token_ttl(self) -> Optional[pulumi.Input[int]]:
-        """
-        The TTL of generated identity tokens in seconds.
-        """
-        return pulumi.get(self, "identity_token_ttl")
-
-    @identity_token_ttl.setter
-    def identity_token_ttl(self, value: Optional[pulumi.Input[int]]):
-        pulumi.set(self, "identity_token_ttl", value)
-
     @property
     @pulumi.getter
     def namespace(self) -> Optional[pulumi.Input[str]]:
@@ -190,8 +156,6 @@ class _AuthBackendConfigState:
                  client_id: Optional[pulumi.Input[str]] = None,
                  client_secret: Optional[pulumi.Input[str]] = None,
                  environment: Optional[pulumi.Input[str]] = None,
-                 identity_token_audience: Optional[pulumi.Input[str]] = None,
-                 identity_token_ttl: Optional[pulumi.Input[int]] = None,
                  namespace: Optional[pulumi.Input[str]] = None,
                  resource: Optional[pulumi.Input[str]] = None,
                  tenant_id: Optional[pulumi.Input[str]] = None):
@@ -206,9 +170,6 @@ class _AuthBackendConfigState:
         :param pulumi.Input[str] environment: The Azure cloud environment. Valid values:
                AzurePublicCloud, AzureUSGovernmentCloud, AzureChinaCloud,
                AzureGermanCloud.  Defaults to `AzurePublicCloud`.
-        :param pulumi.Input[str] identity_token_audience: The audience claim value for plugin identity tokens. Requires Vault 1.17+.
-               *Available only for Vault Enterprise*
-        :param pulumi.Input[int] identity_token_ttl: The TTL of generated identity tokens in seconds.
         :param pulumi.Input[str] namespace: The namespace to provision the resource in.
                The value should not contain leading or trailing forward slashes.
                The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault/index.html#namespace).
@@ -226,10 +187,6 @@ class _AuthBackendConfigState:
             pulumi.set(__self__, "client_secret", client_secret)
         if environment is not None:
             pulumi.set(__self__, "environment", environment)
-        if identity_token_audience is not None:
-            pulumi.set(__self__, "identity_token_audience", identity_token_audience)
-        if identity_token_ttl is not None:
-            pulumi.set(__self__, "identity_token_ttl", identity_token_ttl)
         if namespace is not None:
             pulumi.set(__self__, "namespace", namespace)
         if resource is not None:
@@ -290,31 +247,6 @@ class _AuthBackendConfigState:
     def environment(self, value: Optional[pulumi.Input[str]]):
         pulumi.set(self, "environment", value)
 
-    @property
-    @pulumi.getter(name="identityTokenAudience")
-    def identity_token_audience(self) -> Optional[pulumi.Input[str]]:
-        """
-        The audience claim value for plugin identity tokens. Requires Vault 1.17+.
-        *Available only for Vault Enterprise*
-        """
-        return pulumi.get(self, "identity_token_audience")
-
-    @identity_token_audience.setter
-    def identity_token_audience(self, value: Optional[pulumi.Input[str]]):
-        pulumi.set(self, "identity_token_audience", value)
-
-    @property
-    @pulumi.getter(name="identityTokenTtl")
-    def identity_token_ttl(self) -> Optional[pulumi.Input[int]]:
-        """
-        The TTL of generated identity tokens in seconds.
-        """
-        return pulumi.get(self, "identity_token_ttl")
-
-    @identity_token_ttl.setter
-    def identity_token_ttl(self, value: Optional[pulumi.Input[int]]):
-        pulumi.set(self, "identity_token_ttl", value)
-
     @property
     @pulumi.getter
     def namespace(self) -> Optional[pulumi.Input[str]]:
@@ -366,8 +298,6 @@ class AuthBackendConfig(pulumi.CustomResource):
                  client_id: Optional[pulumi.Input[str]] = None,
                  client_secret: Optional[pulumi.Input[str]] = None,
                  environment: Optional[pulumi.Input[str]] = None,
-                 identity_token_audience: Optional[pulumi.Input[str]] = None,
-                 identity_token_ttl: Optional[pulumi.Input[int]] = None,
                  namespace: Optional[pulumi.Input[str]] = None,
                  resource: Optional[pulumi.Input[str]] = None,
                  tenant_id: Optional[pulumi.Input[str]] = None,
@@ -375,34 +305,20 @@ class AuthBackendConfig(pulumi.CustomResource):
         """
         ## Example Usage
 
-        You can setup the Azure auth engine with Workload Identity Federation (WIF) for a secret-less configuration:
-        ```python
-        import pulumi
-        import pulumi_vault as vault
-
-        example = vault.AuthBackend("example",
-            type="azure",
-            identity_token_key="example-key")
-        example_auth_backend_config = vault.azure.AuthBackendConfig("example",
-            backend=example.path,
-            tenant_id="11111111-2222-3333-4444-555555555555",
-            client_id="11111111-2222-3333-4444-555555555555",
-            identity_token_audience="<TOKEN_AUDIENCE>",
-            identity_token_ttl="<TOKEN_TTL>")
-        ```
-
+        <!--Start PulumiCodeChooser -->
         ```python
         import pulumi
         import pulumi_vault as vault
 
-        example = vault.AuthBackend("example", type="azure")
-        example_auth_backend_config = vault.azure.AuthBackendConfig("example",
-            backend=example.path,
+        example_auth_backend = vault.AuthBackend("exampleAuthBackend", type="azure")
+        example_auth_backend_config = vault.azure.AuthBackendConfig("exampleAuthBackendConfig",
+            backend=example_auth_backend.path,
             tenant_id="11111111-2222-3333-4444-555555555555",
             client_id="11111111-2222-3333-4444-555555555555",
             client_secret="01234567890123456789",
             resource="https://vault.hashicorp.com")
         ```
+        <!--End PulumiCodeChooser -->
 
         ## Import
 
@@ -423,9 +339,6 @@ class AuthBackendConfig(pulumi.CustomResource):
         :param pulumi.Input[str] environment: The Azure cloud environment. Valid values:
                AzurePublicCloud, AzureUSGovernmentCloud, AzureChinaCloud,
                AzureGermanCloud.  Defaults to `AzurePublicCloud`.
-        :param pulumi.Input[str] identity_token_audience: The audience claim value for plugin identity tokens. Requires Vault 1.17+.
-               *Available only for Vault Enterprise*
-        :param pulumi.Input[int] identity_token_ttl: The TTL of generated identity tokens in seconds.
         :param pulumi.Input[str] namespace: The namespace to provision the resource in.
                The value should not contain leading or trailing forward slashes.
                The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault/index.html#namespace).
@@ -444,34 +357,20 @@ class AuthBackendConfig(pulumi.CustomResource):
         """
         ## Example Usage
 
-        You can setup the Azure auth engine with Workload Identity Federation (WIF) for a secret-less configuration:
-        ```python
-        import pulumi
-        import pulumi_vault as vault
-
-        example = vault.AuthBackend("example",
-            type="azure",
-            identity_token_key="example-key")
-        example_auth_backend_config = vault.azure.AuthBackendConfig("example",
-            backend=example.path,
-            tenant_id="11111111-2222-3333-4444-555555555555",
-            client_id="11111111-2222-3333-4444-555555555555",
-            identity_token_audience="<TOKEN_AUDIENCE>",
-            identity_token_ttl="<TOKEN_TTL>")
-        ```
-
+        <!--Start PulumiCodeChooser -->
         ```python
         import pulumi
         import pulumi_vault as vault
 
-        example = vault.AuthBackend("example", type="azure")
-        example_auth_backend_config = vault.azure.AuthBackendConfig("example",
-            backend=example.path,
+        example_auth_backend = vault.AuthBackend("exampleAuthBackend", type="azure")
+        example_auth_backend_config = vault.azure.AuthBackendConfig("exampleAuthBackendConfig",
+            backend=example_auth_backend.path,
             tenant_id="11111111-2222-3333-4444-555555555555",
             client_id="11111111-2222-3333-4444-555555555555",
             client_secret="01234567890123456789",
             resource="https://vault.hashicorp.com")
         ```
+        <!--End PulumiCodeChooser -->
 
         ## Import
 
@@ -500,8 +399,6 @@ class AuthBackendConfig(pulumi.CustomResource):
                  client_id: Optional[pulumi.Input[str]] = None,
                  client_secret: Optional[pulumi.Input[str]] = None,
                  environment: Optional[pulumi.Input[str]] = None,
-                 identity_token_audience: Optional[pulumi.Input[str]] = None,
-                 identity_token_ttl: Optional[pulumi.Input[int]] = None,
                  namespace: Optional[pulumi.Input[str]] = None,
                  resource: Optional[pulumi.Input[str]] = None,
                  tenant_id: Optional[pulumi.Input[str]] = None,
@@ -518,8 +415,6 @@ class AuthBackendConfig(pulumi.CustomResource):
             __props__.__dict__["client_id"] = None if client_id is None else pulumi.Output.secret(client_id)
             __props__.__dict__["client_secret"] = None if client_secret is None else pulumi.Output.secret(client_secret)
             __props__.__dict__["environment"] = environment
-            __props__.__dict__["identity_token_audience"] = identity_token_audience
-            __props__.__dict__["identity_token_ttl"] = identity_token_ttl
             __props__.__dict__["namespace"] = namespace
             if resource is None and not opts.urn:
                 raise TypeError("Missing required property 'resource'")
@@ -543,8 +438,6 @@ class AuthBackendConfig(pulumi.CustomResource):
             client_id: Optional[pulumi.Input[str]] = None,
             client_secret: Optional[pulumi.Input[str]] = None,
             environment: Optional[pulumi.Input[str]] = None,
-            identity_token_audience: Optional[pulumi.Input[str]] = None,
-            identity_token_ttl: Optional[pulumi.Input[int]] = None,
             namespace: Optional[pulumi.Input[str]] = None,
             resource: Optional[pulumi.Input[str]] = None,
             tenant_id: Optional[pulumi.Input[str]] = None) -> 'AuthBackendConfig':
@@ -564,9 +457,6 @@ class AuthBackendConfig(pulumi.CustomResource):
         :param pulumi.Input[str] environment: The Azure cloud environment. Valid values:
                AzurePublicCloud, AzureUSGovernmentCloud, AzureChinaCloud,
                AzureGermanCloud.  Defaults to `AzurePublicCloud`.
-        :param pulumi.Input[str] identity_token_audience: The audience claim value for plugin identity tokens. Requires Vault 1.17+.
-               *Available only for Vault Enterprise*
-        :param pulumi.Input[int] identity_token_ttl: The TTL of generated identity tokens in seconds.
         :param pulumi.Input[str] namespace: The namespace to provision the resource in.
                The value should not contain leading or trailing forward slashes.
                The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault/index.html#namespace).
@@ -584,8 +474,6 @@ class AuthBackendConfig(pulumi.CustomResource):
         __props__.__dict__["client_id"] = client_id
         __props__.__dict__["client_secret"] = client_secret
         __props__.__dict__["environment"] = environment
-        __props__.__dict__["identity_token_audience"] = identity_token_audience
-        __props__.__dict__["identity_token_ttl"] = identity_token_ttl
         __props__.__dict__["namespace"] = namespace
         __props__.__dict__["resource"] = resource
         __props__.__dict__["tenant_id"] = tenant_id
@@ -628,23 +516,6 @@ class AuthBackendConfig(pulumi.CustomResource):
         """
         return pulumi.get(self, "environment")
 
-    @property
-    @pulumi.getter(name="identityTokenAudience")
-    def identity_token_audience(self) -> pulumi.Output[Optional[str]]:
-        """
-        The audience claim value for plugin identity tokens. Requires Vault 1.17+.
-        *Available only for Vault Enterprise*
-        """
-        return pulumi.get(self, "identity_token_audience")
-
-    @property
-    @pulumi.getter(name="identityTokenTtl")
-    def identity_token_ttl(self) -> pulumi.Output[int]:
-        """
-        The TTL of generated identity tokens in seconds.
-        """
-        return pulumi.get(self, "identity_token_ttl")
-
     @property
     @pulumi.getter
     def namespace(self) -> pulumi.Output[Optional[str]]: