pulumi-vault 6.3.0a1723109142__py3-none-any.whl → 6.3.1__py3-none-any.whl

pulumi_vault/pkisecret/backend_config_est.py

@@ -4,9 +4,14 @@
 
 import copy
 import warnings
+import sys
 import pulumi
 import pulumi.runtime
 from typing import Any, Mapping, Optional, Sequence, Union, overload
+if sys.version_info >= (3, 11):
+    from typing import NotRequired, TypedDict, TypeAlias
+else:
+    from typing_extensions import NotRequired, TypedDict, TypeAlias
 from .. import _utilities
 from . import outputs
 from ._inputs import *
@@ -23,7 +28,7 @@ class BackendConfigEstArgs:
                  default_path_policy: Optional[pulumi.Input[str]] = None,
                  enable_sentinel_parsing: Optional[pulumi.Input[bool]] = None,
                  enabled: Optional[pulumi.Input[bool]] = None,
-                 label_to_path_policy: Optional[pulumi.Input[Mapping[str, Any]]] = None,
+                 label_to_path_policy: Optional[pulumi.Input[Mapping[str, pulumi.Input[str]]]] = None,
                  namespace: Optional[pulumi.Input[str]] = None):
         """
         The set of arguments for constructing a BackendConfigEst resource.
@@ -37,7 +42,7 @@ class BackendConfigEstArgs:
         :param pulumi.Input[str] default_path_policy: Required to be set if default_mount is enabled. Specifies the behavior for requests using the default EST label. Can be sign-verbatim or a role given by role:<role_name>.
         :param pulumi.Input[bool] enable_sentinel_parsing: If set, parse out fields from the provided CSR making them available for Sentinel policies.
         :param pulumi.Input[bool] enabled: Specifies whether EST is enabled.
-        :param pulumi.Input[Mapping[str, Any]] label_to_path_policy: Configures a pairing of an EST label with the redirected behavior for requests hitting that role. The path policy can be sign-verbatim or a role given by role:<role_name>. Labels must be unique across Vault cluster, and will register .well-known/est/<label> URL paths.
+        :param pulumi.Input[Mapping[str, pulumi.Input[str]]] label_to_path_policy: Configures a pairing of an EST label with the redirected behavior for requests hitting that role. The path policy can be sign-verbatim or a role given by role:<role_name>. Labels must be unique across Vault cluster, and will register .well-known/est/<label> URL paths.
         :param pulumi.Input[str] namespace: The namespace of the target resource.
                The value should not contain leading or trailing forward slashes.
                The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault/index.html#namespace).
@@ -150,14 +155,14 @@ class BackendConfigEstArgs:
 
     @property
     @pulumi.getter(name="labelToPathPolicy")
-    def label_to_path_policy(self) -> Optional[pulumi.Input[Mapping[str, Any]]]:
+    def label_to_path_policy(self) -> Optional[pulumi.Input[Mapping[str, pulumi.Input[str]]]]:
         """
         Configures a pairing of an EST label with the redirected behavior for requests hitting that role. The path policy can be sign-verbatim or a role given by role:<role_name>. Labels must be unique across Vault cluster, and will register .well-known/est/<label> URL paths.
         """
         return pulumi.get(self, "label_to_path_policy")
 
     @label_to_path_policy.setter
-    def label_to_path_policy(self, value: Optional[pulumi.Input[Mapping[str, Any]]]):
+    def label_to_path_policy(self, value: Optional[pulumi.Input[Mapping[str, pulumi.Input[str]]]]):
         pulumi.set(self, "label_to_path_policy", value)
 
     @property
@@ -186,7 +191,7 @@ class _BackendConfigEstState:
                  default_path_policy: Optional[pulumi.Input[str]] = None,
                  enable_sentinel_parsing: Optional[pulumi.Input[bool]] = None,
                  enabled: Optional[pulumi.Input[bool]] = None,
-                 label_to_path_policy: Optional[pulumi.Input[Mapping[str, Any]]] = None,
+                 label_to_path_policy: Optional[pulumi.Input[Mapping[str, pulumi.Input[str]]]] = None,
                  last_updated: Optional[pulumi.Input[str]] = None,
                  namespace: Optional[pulumi.Input[str]] = None):
         """
@@ -201,7 +206,7 @@ class _BackendConfigEstState:
         :param pulumi.Input[str] default_path_policy: Required to be set if default_mount is enabled. Specifies the behavior for requests using the default EST label. Can be sign-verbatim or a role given by role:<role_name>.
         :param pulumi.Input[bool] enable_sentinel_parsing: If set, parse out fields from the provided CSR making them available for Sentinel policies.
         :param pulumi.Input[bool] enabled: Specifies whether EST is enabled.
-        :param pulumi.Input[Mapping[str, Any]] label_to_path_policy: Configures a pairing of an EST label with the redirected behavior for requests hitting that role. The path policy can be sign-verbatim or a role given by role:<role_name>. Labels must be unique across Vault cluster, and will register .well-known/est/<label> URL paths.
+        :param pulumi.Input[Mapping[str, pulumi.Input[str]]] label_to_path_policy: Configures a pairing of an EST label with the redirected behavior for requests hitting that role. The path policy can be sign-verbatim or a role given by role:<role_name>. Labels must be unique across Vault cluster, and will register .well-known/est/<label> URL paths.
         :param pulumi.Input[str] last_updated: A read-only timestamp representing the last time the configuration was updated.
         :param pulumi.Input[str] namespace: The namespace of the target resource.
                The value should not contain leading or trailing forward slashes.
@@ -318,14 +323,14 @@ class _BackendConfigEstState:
 
     @property
     @pulumi.getter(name="labelToPathPolicy")
-    def label_to_path_policy(self) -> Optional[pulumi.Input[Mapping[str, Any]]]:
+    def label_to_path_policy(self) -> Optional[pulumi.Input[Mapping[str, pulumi.Input[str]]]]:
         """
         Configures a pairing of an EST label with the redirected behavior for requests hitting that role. The path policy can be sign-verbatim or a role given by role:<role_name>. Labels must be unique across Vault cluster, and will register .well-known/est/<label> URL paths.
         """
         return pulumi.get(self, "label_to_path_policy")
 
     @label_to_path_policy.setter
-    def label_to_path_policy(self, value: Optional[pulumi.Input[Mapping[str, Any]]]):
+    def label_to_path_policy(self, value: Optional[pulumi.Input[Mapping[str, pulumi.Input[str]]]]):
         pulumi.set(self, "label_to_path_policy", value)
 
     @property
@@ -362,13 +367,13 @@ class BackendConfigEst(pulumi.CustomResource):
                  resource_name: str,
                  opts: Optional[pulumi.ResourceOptions] = None,
                  audit_fields: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
-                 authenticators: Optional[pulumi.Input[pulumi.InputType['BackendConfigEstAuthenticatorsArgs']]] = None,
+                 authenticators: Optional[pulumi.Input[Union['BackendConfigEstAuthenticatorsArgs', 'BackendConfigEstAuthenticatorsArgsDict']]] = None,
                  backend: Optional[pulumi.Input[str]] = None,
                  default_mount: Optional[pulumi.Input[bool]] = None,
                  default_path_policy: Optional[pulumi.Input[str]] = None,
                  enable_sentinel_parsing: Optional[pulumi.Input[bool]] = None,
                  enabled: Optional[pulumi.Input[bool]] = None,
-                 label_to_path_policy: Optional[pulumi.Input[Mapping[str, Any]]] = None,
+                 label_to_path_policy: Optional[pulumi.Input[Mapping[str, pulumi.Input[str]]]] = None,
                  namespace: Optional[pulumi.Input[str]] = None,
                  __props__=None):
         """
@@ -389,14 +394,14 @@ class BackendConfigEst(pulumi.CustomResource):
         :param pulumi.Input[Sequence[pulumi.Input[str]]] audit_fields: Fields parsed from the CSR that appear in the audit and can be used by sentinel policies.
                
                <a id="nestedatt--authenticators"></a>
-        :param pulumi.Input[pulumi.InputType['BackendConfigEstAuthenticatorsArgs']] authenticators: Lists the mount accessors EST should delegate authentication requests towards (see below for nested schema).
+        :param pulumi.Input[Union['BackendConfigEstAuthenticatorsArgs', 'BackendConfigEstAuthenticatorsArgsDict']] authenticators: Lists the mount accessors EST should delegate authentication requests towards (see below for nested schema).
         :param pulumi.Input[str] backend: The path to the PKI secret backend to
                read the EST configuration from, with no leading or trailing `/`s.
         :param pulumi.Input[bool] default_mount: If set, this mount will register the default `.well-known/est` URL path. Only a single mount can enable this across a Vault cluster.
         :param pulumi.Input[str] default_path_policy: Required to be set if default_mount is enabled. Specifies the behavior for requests using the default EST label. Can be sign-verbatim or a role given by role:<role_name>.
         :param pulumi.Input[bool] enable_sentinel_parsing: If set, parse out fields from the provided CSR making them available for Sentinel policies.
         :param pulumi.Input[bool] enabled: Specifies whether EST is enabled.
-        :param pulumi.Input[Mapping[str, Any]] label_to_path_policy: Configures a pairing of an EST label with the redirected behavior for requests hitting that role. The path policy can be sign-verbatim or a role given by role:<role_name>. Labels must be unique across Vault cluster, and will register .well-known/est/<label> URL paths.
+        :param pulumi.Input[Mapping[str, pulumi.Input[str]]] label_to_path_policy: Configures a pairing of an EST label with the redirected behavior for requests hitting that role. The path policy can be sign-verbatim or a role given by role:<role_name>. Labels must be unique across Vault cluster, and will register .well-known/est/<label> URL paths.
         :param pulumi.Input[str] namespace: The namespace of the target resource.
                The value should not contain leading or trailing forward slashes.
                The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault/index.html#namespace).
@@ -437,13 +442,13 @@ class BackendConfigEst(pulumi.CustomResource):
                  resource_name: str,
                  opts: Optional[pulumi.ResourceOptions] = None,
                  audit_fields: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
-                 authenticators: Optional[pulumi.Input[pulumi.InputType['BackendConfigEstAuthenticatorsArgs']]] = None,
+                 authenticators: Optional[pulumi.Input[Union['BackendConfigEstAuthenticatorsArgs', 'BackendConfigEstAuthenticatorsArgsDict']]] = None,
                  backend: Optional[pulumi.Input[str]] = None,
                  default_mount: Optional[pulumi.Input[bool]] = None,
                  default_path_policy: Optional[pulumi.Input[str]] = None,
                  enable_sentinel_parsing: Optional[pulumi.Input[bool]] = None,
                  enabled: Optional[pulumi.Input[bool]] = None,
-                 label_to_path_policy: Optional[pulumi.Input[Mapping[str, Any]]] = None,
+                 label_to_path_policy: Optional[pulumi.Input[Mapping[str, pulumi.Input[str]]]] = None,
                  namespace: Optional[pulumi.Input[str]] = None,
                  __props__=None):
         opts = pulumi.ResourceOptions.merge(_utilities.get_resource_opts_defaults(), opts)
@@ -477,13 +482,13 @@ class BackendConfigEst(pulumi.CustomResource):
             id: pulumi.Input[str],
             opts: Optional[pulumi.ResourceOptions] = None,
             audit_fields: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
-            authenticators: Optional[pulumi.Input[pulumi.InputType['BackendConfigEstAuthenticatorsArgs']]] = None,
+            authenticators: Optional[pulumi.Input[Union['BackendConfigEstAuthenticatorsArgs', 'BackendConfigEstAuthenticatorsArgsDict']]] = None,
             backend: Optional[pulumi.Input[str]] = None,
             default_mount: Optional[pulumi.Input[bool]] = None,
             default_path_policy: Optional[pulumi.Input[str]] = None,
             enable_sentinel_parsing: Optional[pulumi.Input[bool]] = None,
             enabled: Optional[pulumi.Input[bool]] = None,
-            label_to_path_policy: Optional[pulumi.Input[Mapping[str, Any]]] = None,
+            label_to_path_policy: Optional[pulumi.Input[Mapping[str, pulumi.Input[str]]]] = None,
             last_updated: Optional[pulumi.Input[str]] = None,
             namespace: Optional[pulumi.Input[str]] = None) -> 'BackendConfigEst':
         """
@@ -496,14 +501,14 @@ class BackendConfigEst(pulumi.CustomResource):
         :param pulumi.Input[Sequence[pulumi.Input[str]]] audit_fields: Fields parsed from the CSR that appear in the audit and can be used by sentinel policies.
                
                <a id="nestedatt--authenticators"></a>
-        :param pulumi.Input[pulumi.InputType['BackendConfigEstAuthenticatorsArgs']] authenticators: Lists the mount accessors EST should delegate authentication requests towards (see below for nested schema).
+        :param pulumi.Input[Union['BackendConfigEstAuthenticatorsArgs', 'BackendConfigEstAuthenticatorsArgsDict']] authenticators: Lists the mount accessors EST should delegate authentication requests towards (see below for nested schema).
         :param pulumi.Input[str] backend: The path to the PKI secret backend to
                read the EST configuration from, with no leading or trailing `/`s.
         :param pulumi.Input[bool] default_mount: If set, this mount will register the default `.well-known/est` URL path. Only a single mount can enable this across a Vault cluster.
         :param pulumi.Input[str] default_path_policy: Required to be set if default_mount is enabled. Specifies the behavior for requests using the default EST label. Can be sign-verbatim or a role given by role:<role_name>.
         :param pulumi.Input[bool] enable_sentinel_parsing: If set, parse out fields from the provided CSR making them available for Sentinel policies.
         :param pulumi.Input[bool] enabled: Specifies whether EST is enabled.
-        :param pulumi.Input[Mapping[str, Any]] label_to_path_policy: Configures a pairing of an EST label with the redirected behavior for requests hitting that role. The path policy can be sign-verbatim or a role given by role:<role_name>. Labels must be unique across Vault cluster, and will register .well-known/est/<label> URL paths.
+        :param pulumi.Input[Mapping[str, pulumi.Input[str]]] label_to_path_policy: Configures a pairing of an EST label with the redirected behavior for requests hitting that role. The path policy can be sign-verbatim or a role given by role:<role_name>. Labels must be unique across Vault cluster, and will register .well-known/est/<label> URL paths.
         :param pulumi.Input[str] last_updated: A read-only timestamp representing the last time the configuration was updated.
         :param pulumi.Input[str] namespace: The namespace of the target resource.
                The value should not contain leading or trailing forward slashes.
@@ -587,7 +592,7 @@ class BackendConfigEst(pulumi.CustomResource):
 
     @property
     @pulumi.getter(name="labelToPathPolicy")
-    def label_to_path_policy(self) -> pulumi.Output[Optional[Mapping[str, Any]]]:
+    def label_to_path_policy(self) -> pulumi.Output[Optional[Mapping[str, str]]]:
         """
         Configures a pairing of an EST label with the redirected behavior for requests hitting that role. The path policy can be sign-verbatim or a role given by role:<role_name>. Labels must be unique across Vault cluster, and will register .well-known/est/<label> URL paths.
         """

pulumi_vault/pkisecret/get_backend_config_est.py

@@ -4,9 +4,14 @@
 
 import copy
 import warnings
+import sys
 import pulumi
 import pulumi.runtime
 from typing import Any, Mapping, Optional, Sequence, Union, overload
+if sys.version_info >= (3, 11):
+    from typing import NotRequired, TypedDict, TypeAlias
+else:
+    from typing_extensions import NotRequired, TypedDict, TypeAlias
 from .. import _utilities
 from . import outputs
 
@@ -120,7 +125,7 @@ class GetBackendConfigEstResult:
 
     @property
     @pulumi.getter(name="labelToPathPolicy")
-    def label_to_path_policy(self) -> Mapping[str, Any]:
+    def label_to_path_policy(self) -> Mapping[str, str]:
         """
         A pairing of an EST label with the redirected behavior for requests hitting that role. The path policy can be sign-verbatim or a role given by role:<role_name>. Labels must be unique across Vault cluster, and will register .well-known/est/<label> URL paths.
         """
@@ -202,9 +207,6 @@ def get_backend_config_est(backend: Optional[str] = None,
         label_to_path_policy=pulumi.get(__ret__, 'label_to_path_policy'),
         last_updated=pulumi.get(__ret__, 'last_updated'),
         namespace=pulumi.get(__ret__, 'namespace'))
-
-
-@_utilities.lift_output_func(get_backend_config_est)
 def get_backend_config_est_output(backend: Optional[pulumi.Input[str]] = None,
                                   namespace: Optional[pulumi.Input[Optional[str]]] = None,
                                   opts: Optional[pulumi.InvokeOptions] = None) -> pulumi.Output[GetBackendConfigEstResult]:
@@ -230,4 +232,20 @@ def get_backend_config_est_output(backend: Optional[pulumi.Input[str]] = None,
            The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault/index.html#namespace).
            *Available only for Vault Enterprise*.
     """
-    ...
+    __args__ = dict()
+    __args__['backend'] = backend
+    __args__['namespace'] = namespace
+    opts = pulumi.InvokeOptions.merge(_utilities.get_invoke_opts_defaults(), opts)
+    __ret__ = pulumi.runtime.invoke_output('vault:pkiSecret/getBackendConfigEst:getBackendConfigEst', __args__, opts=opts, typ=GetBackendConfigEstResult)
+    return __ret__.apply(lambda __response__: GetBackendConfigEstResult(
+        audit_fields=pulumi.get(__response__, 'audit_fields'),
+        authenticators=pulumi.get(__response__, 'authenticators'),
+        backend=pulumi.get(__response__, 'backend'),
+        default_mount=pulumi.get(__response__, 'default_mount'),
+        default_path_policy=pulumi.get(__response__, 'default_path_policy'),
+        enable_sentinel_parsing=pulumi.get(__response__, 'enable_sentinel_parsing'),
+        enabled=pulumi.get(__response__, 'enabled'),
+        id=pulumi.get(__response__, 'id'),
+        label_to_path_policy=pulumi.get(__response__, 'label_to_path_policy'),
+        last_updated=pulumi.get(__response__, 'last_updated'),
+        namespace=pulumi.get(__response__, 'namespace')))

pulumi_vault/pkisecret/get_backend_issuer.py

@@ -4,9 +4,14 @@
 
 import copy
 import warnings
+import sys
 import pulumi
 import pulumi.runtime
 from typing import Any, Mapping, Optional, Sequence, Union, overload
+if sys.version_info >= (3, 11):
+    from typing import NotRequired, TypedDict, TypeAlias
+else:
+    from typing_extensions import NotRequired, TypedDict, TypeAlias
 from .. import _utilities
 
 __all__ = [
@@ -222,9 +227,6 @@ def get_backend_issuer(backend: Optional[str] = None,
         manual_chains=pulumi.get(__ret__, 'manual_chains'),
         namespace=pulumi.get(__ret__, 'namespace'),
         usage=pulumi.get(__ret__, 'usage'))
-
-
-@_utilities.lift_output_func(get_backend_issuer)
 def get_backend_issuer_output(backend: Optional[pulumi.Input[str]] = None,
                               issuer_ref: Optional[pulumi.Input[str]] = None,
                               namespace: Optional[pulumi.Input[Optional[str]]] = None,
@@ -259,4 +261,22 @@ def get_backend_issuer_output(backend: Optional[pulumi.Input[str]] = None,
            The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault/index.html#namespace).
            *Available only for Vault Enterprise*.
     """
-    ...
+    __args__ = dict()
+    __args__['backend'] = backend
+    __args__['issuerRef'] = issuer_ref
+    __args__['namespace'] = namespace
+    opts = pulumi.InvokeOptions.merge(_utilities.get_invoke_opts_defaults(), opts)
+    __ret__ = pulumi.runtime.invoke_output('vault:pkiSecret/getBackendIssuer:getBackendIssuer', __args__, opts=opts, typ=GetBackendIssuerResult)
+    return __ret__.apply(lambda __response__: GetBackendIssuerResult(
+        backend=pulumi.get(__response__, 'backend'),
+        ca_chains=pulumi.get(__response__, 'ca_chains'),
+        certificate=pulumi.get(__response__, 'certificate'),
+        id=pulumi.get(__response__, 'id'),
+        issuer_id=pulumi.get(__response__, 'issuer_id'),
+        issuer_name=pulumi.get(__response__, 'issuer_name'),
+        issuer_ref=pulumi.get(__response__, 'issuer_ref'),
+        key_id=pulumi.get(__response__, 'key_id'),
+        leaf_not_after_behavior=pulumi.get(__response__, 'leaf_not_after_behavior'),
+        manual_chains=pulumi.get(__response__, 'manual_chains'),
+        namespace=pulumi.get(__response__, 'namespace'),
+        usage=pulumi.get(__response__, 'usage')))

pulumi_vault/pkisecret/get_backend_issuers.py

@@ -4,9 +4,14 @@
 
 import copy
 import warnings
+import sys
 import pulumi
 import pulumi.runtime
 from typing import Any, Mapping, Optional, Sequence, Union, overload
+if sys.version_info >= (3, 11):
+    from typing import NotRequired, TypedDict, TypeAlias
+else:
+    from typing_extensions import NotRequired, TypedDict, TypeAlias
 from .. import _utilities
 
 __all__ = [
@@ -56,7 +61,7 @@ class GetBackendIssuersResult:
 
     @property
     @pulumi.getter(name="keyInfo")
-    def key_info(self) -> Mapping[str, Any]:
+    def key_info(self) -> Mapping[str, str]:
         """
         Map of issuer strings read from Vault.
         """
@@ -142,9 +147,6 @@ def get_backend_issuers(backend: Optional[str] = None,
         key_info_json=pulumi.get(__ret__, 'key_info_json'),
         keys=pulumi.get(__ret__, 'keys'),
         namespace=pulumi.get(__ret__, 'namespace'))
-
-
-@_utilities.lift_output_func(get_backend_issuers)
 def get_backend_issuers_output(backend: Optional[pulumi.Input[str]] = None,
                                namespace: Optional[pulumi.Input[Optional[str]]] = None,
                                opts: Optional[pulumi.InvokeOptions] = None) -> pulumi.Output[GetBackendIssuersResult]:
@@ -176,4 +178,15 @@ def get_backend_issuers_output(backend: Optional[pulumi.Input[str]] = None,
            The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault/index.html#namespace).
            *Available only for Vault Enterprise*.
     """
-    ...
+    __args__ = dict()
+    __args__['backend'] = backend
+    __args__['namespace'] = namespace
+    opts = pulumi.InvokeOptions.merge(_utilities.get_invoke_opts_defaults(), opts)
+    __ret__ = pulumi.runtime.invoke_output('vault:pkiSecret/getBackendIssuers:getBackendIssuers', __args__, opts=opts, typ=GetBackendIssuersResult)
+    return __ret__.apply(lambda __response__: GetBackendIssuersResult(
+        backend=pulumi.get(__response__, 'backend'),
+        id=pulumi.get(__response__, 'id'),
+        key_info=pulumi.get(__response__, 'key_info'),
+        key_info_json=pulumi.get(__response__, 'key_info_json'),
+        keys=pulumi.get(__response__, 'keys'),
+        namespace=pulumi.get(__response__, 'namespace')))

pulumi_vault/pkisecret/get_backend_key.py

@@ -4,9 +4,14 @@
 
 import copy
 import warnings
+import sys
 import pulumi
 import pulumi.runtime
 from typing import Any, Mapping, Optional, Sequence, Union, overload
+if sys.version_info >= (3, 11):
+    from typing import NotRequired, TypedDict, TypeAlias
+else:
+    from typing_extensions import NotRequired, TypedDict, TypeAlias
 from .. import _utilities
 
 __all__ = [
@@ -156,9 +161,6 @@ def get_backend_key(backend: Optional[str] = None,
         key_ref=pulumi.get(__ret__, 'key_ref'),
         key_type=pulumi.get(__ret__, 'key_type'),
         namespace=pulumi.get(__ret__, 'namespace'))
-
-
-@_utilities.lift_output_func(get_backend_key)
 def get_backend_key_output(backend: Optional[pulumi.Input[str]] = None,
                            key_ref: Optional[pulumi.Input[str]] = None,
                            namespace: Optional[pulumi.Input[Optional[str]]] = None,
@@ -193,4 +195,17 @@ def get_backend_key_output(backend: Optional[pulumi.Input[str]] = None,
            The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault/index.html#namespace).
            *Available only for Vault Enterprise*.
     """
-    ...
+    __args__ = dict()
+    __args__['backend'] = backend
+    __args__['keyRef'] = key_ref
+    __args__['namespace'] = namespace
+    opts = pulumi.InvokeOptions.merge(_utilities.get_invoke_opts_defaults(), opts)
+    __ret__ = pulumi.runtime.invoke_output('vault:pkiSecret/getBackendKey:getBackendKey', __args__, opts=opts, typ=GetBackendKeyResult)
+    return __ret__.apply(lambda __response__: GetBackendKeyResult(
+        backend=pulumi.get(__response__, 'backend'),
+        id=pulumi.get(__response__, 'id'),
+        key_id=pulumi.get(__response__, 'key_id'),
+        key_name=pulumi.get(__response__, 'key_name'),
+        key_ref=pulumi.get(__response__, 'key_ref'),
+        key_type=pulumi.get(__response__, 'key_type'),
+        namespace=pulumi.get(__response__, 'namespace')))

pulumi_vault/pkisecret/get_backend_keys.py

@@ -4,9 +4,14 @@
 
 import copy
 import warnings
+import sys
 import pulumi
 import pulumi.runtime
 from typing import Any, Mapping, Optional, Sequence, Union, overload
+if sys.version_info >= (3, 11):
+    from typing import NotRequired, TypedDict, TypeAlias
+else:
+    from typing_extensions import NotRequired, TypedDict, TypeAlias
 from .. import _utilities
 
 __all__ = [
@@ -56,7 +61,7 @@ class GetBackendKeysResult:
 
     @property
     @pulumi.getter(name="keyInfo")
-    def key_info(self) -> Mapping[str, Any]:
+    def key_info(self) -> Mapping[str, str]:
         """
         Map of key strings read from Vault.
         """
@@ -142,9 +147,6 @@ def get_backend_keys(backend: Optional[str] = None,
         key_info_json=pulumi.get(__ret__, 'key_info_json'),
         keys=pulumi.get(__ret__, 'keys'),
         namespace=pulumi.get(__ret__, 'namespace'))
-
-
-@_utilities.lift_output_func(get_backend_keys)
 def get_backend_keys_output(backend: Optional[pulumi.Input[str]] = None,
                             namespace: Optional[pulumi.Input[Optional[str]]] = None,
                             opts: Optional[pulumi.InvokeOptions] = None) -> pulumi.Output[GetBackendKeysResult]:
@@ -176,4 +178,15 @@ def get_backend_keys_output(backend: Optional[pulumi.Input[str]] = None,
            The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault/index.html#namespace).
            *Available only for Vault Enterprise*.
     """
-    ...
+    __args__ = dict()
+    __args__['backend'] = backend
+    __args__['namespace'] = namespace
+    opts = pulumi.InvokeOptions.merge(_utilities.get_invoke_opts_defaults(), opts)
+    __ret__ = pulumi.runtime.invoke_output('vault:pkiSecret/getBackendKeys:getBackendKeys', __args__, opts=opts, typ=GetBackendKeysResult)
+    return __ret__.apply(lambda __response__: GetBackendKeysResult(
+        backend=pulumi.get(__response__, 'backend'),
+        id=pulumi.get(__response__, 'id'),
+        key_info=pulumi.get(__response__, 'key_info'),
+        key_info_json=pulumi.get(__response__, 'key_info_json'),
+        keys=pulumi.get(__response__, 'keys'),
+        namespace=pulumi.get(__response__, 'namespace')))

pulumi_vault/pkisecret/outputs.py

@@ -4,9 +4,14 @@
 
 import copy
 import warnings
+import sys
 import pulumi
 import pulumi.runtime
 from typing import Any, Mapping, Optional, Sequence, Union, overload
+if sys.version_info >= (3, 11):
+    from typing import NotRequired, TypedDict, TypeAlias
+else:
+    from typing_extensions import NotRequired, TypedDict, TypeAlias
 from .. import _utilities
 
 __all__ = [
@@ -18,11 +23,11 @@ __all__ = [
 @pulumi.output_type
 class BackendConfigEstAuthenticators(dict):
     def __init__(__self__, *,
-                 cert: Optional[Mapping[str, Any]] = None,
-                 userpass: Optional[Mapping[str, Any]] = None):
+                 cert: Optional[Mapping[str, str]] = None,
+                 userpass: Optional[Mapping[str, str]] = None):
         """
-        :param Mapping[str, Any] cert: "The accessor (required) and cert_role (optional) properties for cert auth backends".
-        :param Mapping[str, Any] userpass: "The accessor (required) property for user pass auth backends".
+        :param Mapping[str, str] cert: "The accessor (required) and cert_role (optional) properties for cert auth backends".
+        :param Mapping[str, str] userpass: "The accessor (required) property for user pass auth backends".
         """
         if cert is not None:
             pulumi.set(__self__, "cert", cert)
@@ -31,7 +36,7 @@ class BackendConfigEstAuthenticators(dict):
 
     @property
     @pulumi.getter
-    def cert(self) -> Optional[Mapping[str, Any]]:
+    def cert(self) -> Optional[Mapping[str, str]]:
         """
         "The accessor (required) and cert_role (optional) properties for cert auth backends".
         """
@@ -39,7 +44,7 @@ class BackendConfigEstAuthenticators(dict):
 
     @property
     @pulumi.getter
-    def userpass(self) -> Optional[Mapping[str, Any]]:
+    def userpass(self) -> Optional[Mapping[str, str]]:
         """
         "The accessor (required) property for user pass auth backends".
         """
@@ -95,11 +100,11 @@ class SecretBackendRolePolicyIdentifier(dict):
 @pulumi.output_type
 class GetBackendConfigEstAuthenticatorResult(dict):
     def __init__(__self__, *,
-                 cert: Optional[Mapping[str, Any]] = None,
-                 userpass: Optional[Mapping[str, Any]] = None):
+                 cert: Optional[Mapping[str, str]] = None,
+                 userpass: Optional[Mapping[str, str]] = None):
         """
-        :param Mapping[str, Any] cert: "The accessor and cert_role properties for cert auth backends".
-        :param Mapping[str, Any] userpass: "The accessor property for user pass auth backends".
+        :param Mapping[str, str] cert: "The accessor and cert_role properties for cert auth backends".
+        :param Mapping[str, str] userpass: "The accessor property for user pass auth backends".
         """
         if cert is not None:
             pulumi.set(__self__, "cert", cert)
@@ -108,7 +113,7 @@ class GetBackendConfigEstAuthenticatorResult(dict):
 
     @property
     @pulumi.getter
-    def cert(self) -> Optional[Mapping[str, Any]]:
+    def cert(self) -> Optional[Mapping[str, str]]:
         """
         "The accessor and cert_role properties for cert auth backends".
         """
@@ -116,7 +121,7 @@ class GetBackendConfigEstAuthenticatorResult(dict):
 
     @property
     @pulumi.getter
-    def userpass(self) -> Optional[Mapping[str, Any]]:
+    def userpass(self) -> Optional[Mapping[str, str]]:
         """
         "The accessor property for user pass auth backends".
         """

pulumi_vault/pkisecret/secret_backend_cert.py

@@ -4,9 +4,14 @@
 
 import copy
 import warnings
+import sys
 import pulumi
 import pulumi.runtime
 from typing import Any, Mapping, Optional, Sequence, Union, overload
+if sys.version_info >= (3, 11):
+    from typing import NotRequired, TypedDict, TypeAlias
+else:
+    from typing_extensions import NotRequired, TypedDict, TypeAlias
 from .. import _utilities
 
 __all__ = ['SecretBackendCertArgs', 'SecretBackendCert']

pulumi_vault/pkisecret/secret_backend_config_ca.py

@@ -4,9 +4,14 @@
 
 import copy
 import warnings
+import sys
 import pulumi
 import pulumi.runtime
 from typing import Any, Mapping, Optional, Sequence, Union, overload
+if sys.version_info >= (3, 11):
+    from typing import NotRequired, TypedDict, TypeAlias
+else:
+    from typing_extensions import NotRequired, TypedDict, TypeAlias
 from .. import _utilities
 
 __all__ = ['SecretBackendConfigCaArgs', 'SecretBackendConfigCa']

pulumi_vault/pkisecret/secret_backend_config_issuers.py

@@ -4,9 +4,14 @@
 
 import copy
 import warnings
+import sys
 import pulumi
 import pulumi.runtime
 from typing import Any, Mapping, Optional, Sequence, Union, overload
+if sys.version_info >= (3, 11):
+    from typing import NotRequired, TypedDict, TypeAlias
+else:
+    from typing_extensions import NotRequired, TypedDict, TypeAlias
 from .. import _utilities
 
 __all__ = ['SecretBackendConfigIssuersArgs', 'SecretBackendConfigIssuers']

pulumi_vault/pkisecret/secret_backend_config_urls.py

@@ -4,9 +4,14 @@
 
 import copy
 import warnings
+import sys
 import pulumi
 import pulumi.runtime
 from typing import Any, Mapping, Optional, Sequence, Union, overload
+if sys.version_info >= (3, 11):
+    from typing import NotRequired, TypedDict, TypeAlias
+else:
+    from typing_extensions import NotRequired, TypedDict, TypeAlias
 from .. import _utilities
 
 __all__ = ['SecretBackendConfigUrlsArgs', 'SecretBackendConfigUrls']

pulumi_vault/pkisecret/secret_backend_crl_config.py

@@ -4,9 +4,14 @@
 
 import copy
 import warnings
+import sys
 import pulumi
 import pulumi.runtime
 from typing import Any, Mapping, Optional, Sequence, Union, overload
+if sys.version_info >= (3, 11):
+    from typing import NotRequired, TypedDict, TypeAlias
+else:
+    from typing_extensions import NotRequired, TypedDict, TypeAlias
 from .. import _utilities
 
 __all__ = ['SecretBackendCrlConfigArgs', 'SecretBackendCrlConfig']

pulumi_vault/pkisecret/secret_backend_intermediate_cert_request.py

@@ -4,9 +4,14 @@
 
 import copy
 import warnings
+import sys
 import pulumi
 import pulumi.runtime
 from typing import Any, Mapping, Optional, Sequence, Union, overload
+if sys.version_info >= (3, 11):
+    from typing import NotRequired, TypedDict, TypeAlias
+else:
+    from typing_extensions import NotRequired, TypedDict, TypeAlias
 from .. import _utilities
 
 __all__ = ['SecretBackendIntermediateCertRequestArgs', 'SecretBackendIntermediateCertRequest']

pulumi_vault/pkisecret/secret_backend_intermediate_set_signed.py

@@ -4,9 +4,14 @@
 
 import copy
 import warnings
+import sys
 import pulumi
 import pulumi.runtime
 from typing import Any, Mapping, Optional, Sequence, Union, overload
+if sys.version_info >= (3, 11):
+    from typing import NotRequired, TypedDict, TypeAlias
+else:
+    from typing_extensions import NotRequired, TypedDict, TypeAlias
 from .. import _utilities
 
 __all__ = ['SecretBackendIntermediateSetSignedArgs', 'SecretBackendIntermediateSetSigned']

pulumi_vault/pkisecret/secret_backend_issuer.py

@@ -4,9 +4,14 @@
 
 import copy
 import warnings
+import sys
 import pulumi
 import pulumi.runtime
 from typing import Any, Mapping, Optional, Sequence, Union, overload
+if sys.version_info >= (3, 11):
+    from typing import NotRequired, TypedDict, TypeAlias
+else:
+    from typing_extensions import NotRequired, TypedDict, TypeAlias
 from .. import _utilities
 
 __all__ = ['SecretBackendIssuerArgs', 'SecretBackendIssuer']

pulumi_vault/pkisecret/secret_backend_key.py

@@ -4,9 +4,14 @@
 
 import copy
 import warnings
+import sys
 import pulumi
 import pulumi.runtime
 from typing import Any, Mapping, Optional, Sequence, Union, overload
+if sys.version_info >= (3, 11):
+    from typing import NotRequired, TypedDict, TypeAlias
+else:
+    from typing_extensions import NotRequired, TypedDict, TypeAlias
 from .. import _utilities
 
 __all__ = ['SecretBackendKeyArgs', 'SecretBackendKey']