pulumi-vault 6.4.0__py3-none-any.whl → 6.4.0a1723454543__py3-none-any.whl

pulumi_vault/saml/auth_backend_role.py

@@ -4,14 +4,9 @@
 
 import copy
 import warnings
-import sys
 import pulumi
 import pulumi.runtime
 from typing import Any, Mapping, Optional, Sequence, Union, overload
-if sys.version_info >= (3, 11):
-    from typing import NotRequired, TypedDict, TypeAlias
-else:
-    from typing_extensions import NotRequired, TypedDict, TypeAlias
 from .. import _utilities
 
 __all__ = ['AuthBackendRoleArgs', 'AuthBackendRole']
@@ -20,7 +15,7 @@ __all__ = ['AuthBackendRoleArgs', 'AuthBackendRole']
 class AuthBackendRoleArgs:
     def __init__(__self__, *,
                  path: pulumi.Input[str],
-                 bound_attributes: Optional[pulumi.Input[Mapping[str, pulumi.Input[str]]]] = None,
+                 bound_attributes: Optional[pulumi.Input[Mapping[str, Any]]] = None,
                  bound_attributes_type: Optional[pulumi.Input[str]] = None,
                  bound_subjects: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
                  bound_subjects_type: Optional[pulumi.Input[str]] = None,
@@ -39,7 +34,7 @@ class AuthBackendRoleArgs:
         """
         The set of arguments for constructing a AuthBackendRole resource.
         :param pulumi.Input[str] path: Path where the auth backend is mounted.
-        :param pulumi.Input[Mapping[str, pulumi.Input[str]]] bound_attributes: Mapping of attribute names to values that are expected to
+        :param pulumi.Input[Mapping[str, Any]] bound_attributes: Mapping of attribute names to values that are expected to
                exist in the SAML assertion.
         :param pulumi.Input[str] bound_attributes_type: The type of matching assertion to perform on
                `bound_attributes_type`.
@@ -110,7 +105,7 @@ class AuthBackendRoleArgs:
 
     @property
     @pulumi.getter(name="boundAttributes")
-    def bound_attributes(self) -> Optional[pulumi.Input[Mapping[str, pulumi.Input[str]]]]:
+    def bound_attributes(self) -> Optional[pulumi.Input[Mapping[str, Any]]]:
         """
         Mapping of attribute names to values that are expected to
         exist in the SAML assertion.
@@ -118,7 +113,7 @@ class AuthBackendRoleArgs:
         return pulumi.get(self, "bound_attributes")
 
     @bound_attributes.setter
-    def bound_attributes(self, value: Optional[pulumi.Input[Mapping[str, pulumi.Input[str]]]]):
+    def bound_attributes(self, value: Optional[pulumi.Input[Mapping[str, Any]]]):
         pulumi.set(self, "bound_attributes", value)
 
     @property
@@ -310,7 +305,7 @@ class AuthBackendRoleArgs:
 @pulumi.input_type
 class _AuthBackendRoleState:
     def __init__(__self__, *,
-                 bound_attributes: Optional[pulumi.Input[Mapping[str, pulumi.Input[str]]]] = None,
+                 bound_attributes: Optional[pulumi.Input[Mapping[str, Any]]] = None,
                  bound_attributes_type: Optional[pulumi.Input[str]] = None,
                  bound_subjects: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
                  bound_subjects_type: Optional[pulumi.Input[str]] = None,
@@ -329,7 +324,7 @@ class _AuthBackendRoleState:
                  token_type: Optional[pulumi.Input[str]] = None):
         """
         Input properties used for looking up and filtering AuthBackendRole resources.
-        :param pulumi.Input[Mapping[str, pulumi.Input[str]]] bound_attributes: Mapping of attribute names to values that are expected to
+        :param pulumi.Input[Mapping[str, Any]] bound_attributes: Mapping of attribute names to values that are expected to
                exist in the SAML assertion.
         :param pulumi.Input[str] bound_attributes_type: The type of matching assertion to perform on
                `bound_attributes_type`.
@@ -390,7 +385,7 @@ class _AuthBackendRoleState:
 
     @property
     @pulumi.getter(name="boundAttributes")
-    def bound_attributes(self) -> Optional[pulumi.Input[Mapping[str, pulumi.Input[str]]]]:
+    def bound_attributes(self) -> Optional[pulumi.Input[Mapping[str, Any]]]:
         """
         Mapping of attribute names to values that are expected to
         exist in the SAML assertion.
@@ -398,7 +393,7 @@ class _AuthBackendRoleState:
         return pulumi.get(self, "bound_attributes")
 
     @bound_attributes.setter
-    def bound_attributes(self, value: Optional[pulumi.Input[Mapping[str, pulumi.Input[str]]]]):
+    def bound_attributes(self, value: Optional[pulumi.Input[Mapping[str, Any]]]):
         pulumi.set(self, "bound_attributes", value)
 
     @property
@@ -604,7 +599,7 @@ class AuthBackendRole(pulumi.CustomResource):
     def __init__(__self__,
                  resource_name: str,
                  opts: Optional[pulumi.ResourceOptions] = None,
-                 bound_attributes: Optional[pulumi.Input[Mapping[str, pulumi.Input[str]]]] = None,
+                 bound_attributes: Optional[pulumi.Input[Mapping[str, Any]]] = None,
                  bound_attributes_type: Optional[pulumi.Input[str]] = None,
                  bound_subjects: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
                  bound_subjects_type: Optional[pulumi.Input[str]] = None,
@@ -661,7 +656,7 @@ class AuthBackendRole(pulumi.CustomResource):
 
         :param str resource_name: The name of the resource.
         :param pulumi.ResourceOptions opts: Options for the resource.
-        :param pulumi.Input[Mapping[str, pulumi.Input[str]]] bound_attributes: Mapping of attribute names to values that are expected to
+        :param pulumi.Input[Mapping[str, Any]] bound_attributes: Mapping of attribute names to values that are expected to
                exist in the SAML assertion.
         :param pulumi.Input[str] bound_attributes_type: The type of matching assertion to perform on
                `bound_attributes_type`.
@@ -743,7 +738,7 @@ class AuthBackendRole(pulumi.CustomResource):
     def _internal_init(__self__,
                  resource_name: str,
                  opts: Optional[pulumi.ResourceOptions] = None,
-                 bound_attributes: Optional[pulumi.Input[Mapping[str, pulumi.Input[str]]]] = None,
+                 bound_attributes: Optional[pulumi.Input[Mapping[str, Any]]] = None,
                  bound_attributes_type: Optional[pulumi.Input[str]] = None,
                  bound_subjects: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
                  bound_subjects_type: Optional[pulumi.Input[str]] = None,
@@ -798,7 +793,7 @@ class AuthBackendRole(pulumi.CustomResource):
     def get(resource_name: str,
             id: pulumi.Input[str],
             opts: Optional[pulumi.ResourceOptions] = None,
-            bound_attributes: Optional[pulumi.Input[Mapping[str, pulumi.Input[str]]]] = None,
+            bound_attributes: Optional[pulumi.Input[Mapping[str, Any]]] = None,
             bound_attributes_type: Optional[pulumi.Input[str]] = None,
             bound_subjects: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
             bound_subjects_type: Optional[pulumi.Input[str]] = None,
@@ -822,7 +817,7 @@ class AuthBackendRole(pulumi.CustomResource):
         :param str resource_name: The unique name of the resulting resource.
         :param pulumi.Input[str] id: The unique provider ID of the resource to lookup.
         :param pulumi.ResourceOptions opts: Options for the resource.
-        :param pulumi.Input[Mapping[str, pulumi.Input[str]]] bound_attributes: Mapping of attribute names to values that are expected to
+        :param pulumi.Input[Mapping[str, Any]] bound_attributes: Mapping of attribute names to values that are expected to
                exist in the SAML assertion.
         :param pulumi.Input[str] bound_attributes_type: The type of matching assertion to perform on
                `bound_attributes_type`.
@@ -871,7 +866,7 @@ class AuthBackendRole(pulumi.CustomResource):
 
     @property
     @pulumi.getter(name="boundAttributes")
-    def bound_attributes(self) -> pulumi.Output[Optional[Mapping[str, str]]]:
+    def bound_attributes(self) -> pulumi.Output[Optional[Mapping[str, Any]]]:
         """
         Mapping of attribute names to values that are expected to
         exist in the SAML assertion.

pulumi_vault/secrets/_inputs.py

@@ -4,45 +4,15 @@
 
 import copy
 import warnings
-import sys
 import pulumi
 import pulumi.runtime
 from typing import Any, Mapping, Optional, Sequence, Union, overload
-if sys.version_info >= (3, 11):
-    from typing import NotRequired, TypedDict, TypeAlias
-else:
-    from typing_extensions import NotRequired, TypedDict, TypeAlias
 from .. import _utilities
 
 __all__ = [
     'SyncAssociationMetadataArgs',
-    'SyncAssociationMetadataArgsDict',
 ]
 
-MYPY = False
-
-if not MYPY:
-    class SyncAssociationMetadataArgsDict(TypedDict):
-        sub_key: NotRequired[pulumi.Input[str]]
-        """
-        Subkey of the associated secret.
-        """
-        sync_status: NotRequired[pulumi.Input[str]]
-        """
-        A map of sync statuses for each subkey of the associated secret
-        (for ex. `{kv_624bea/aws-token/dev: "SYNCED", kv_624bea/aws-token/prod: "SYNCED"}`).
-        """
-        updated_at: NotRequired[pulumi.Input[str]]
-        """
-        A map of duration strings specifying when each subkey of the associated
-        secret was last updated.
-        (for ex.
-        `{kv_624bea/aws-token/dev: "2024-03-21T12:42:02.558533-07:00",
-        kv_624bea/aws-token/prod: "2024-03-21T12:42:02.558533-07:00"}`).
-        """
-elif False:
-    SyncAssociationMetadataArgsDict: TypeAlias = Mapping[str, Any]
-
 @pulumi.input_type
 class SyncAssociationMetadataArgs:
     def __init__(__self__, *,

pulumi_vault/secrets/outputs.py

@@ -4,14 +4,9 @@
 
 import copy
 import warnings
-import sys
 import pulumi
 import pulumi.runtime
 from typing import Any, Mapping, Optional, Sequence, Union, overload
-if sys.version_info >= (3, 11):
-    from typing import NotRequired, TypedDict, TypeAlias
-else:
-    from typing_extensions import NotRequired, TypedDict, TypeAlias
 from .. import _utilities
 
 __all__ = [

pulumi_vault/secrets/sync_association.py

@@ -4,14 +4,9 @@
 
 import copy
 import warnings
-import sys
 import pulumi
 import pulumi.runtime
 from typing import Any, Mapping, Optional, Sequence, Union, overload
-if sys.version_info >= (3, 11):
-    from typing import NotRequired, TypedDict, TypeAlias
-else:
-    from typing_extensions import NotRequired, TypedDict, TypeAlias
 from .. import _utilities
 from . import outputs
 from ._inputs import *

pulumi_vault/secrets/sync_aws_destination.py

@@ -4,14 +4,9 @@
 
 import copy
 import warnings
-import sys
 import pulumi
 import pulumi.runtime
 from typing import Any, Mapping, Optional, Sequence, Union, overload
-if sys.version_info >= (3, 11):
-    from typing import NotRequired, TypedDict, TypeAlias
-else:
-    from typing_extensions import NotRequired, TypedDict, TypeAlias
 from .. import _utilities
 
 __all__ = ['SyncAwsDestinationArgs', 'SyncAwsDestination']
@@ -20,7 +15,7 @@ __all__ = ['SyncAwsDestinationArgs', 'SyncAwsDestination']
 class SyncAwsDestinationArgs:
     def __init__(__self__, *,
                  access_key_id: Optional[pulumi.Input[str]] = None,
-                 custom_tags: Optional[pulumi.Input[Mapping[str, pulumi.Input[str]]]] = None,
+                 custom_tags: Optional[pulumi.Input[Mapping[str, Any]]] = None,
                  external_id: Optional[pulumi.Input[str]] = None,
                  granularity: Optional[pulumi.Input[str]] = None,
                  name: Optional[pulumi.Input[str]] = None,
@@ -34,7 +29,7 @@ class SyncAwsDestinationArgs:
         :param pulumi.Input[str] access_key_id: Access key id to authenticate against the AWS secrets manager.
                Can be omitted and directly provided to Vault using the `AWS_ACCESS_KEY_ID` environment
                variable.
-        :param pulumi.Input[Mapping[str, pulumi.Input[str]]] custom_tags: Custom tags to set on the secret managed at the destination.
+        :param pulumi.Input[Mapping[str, Any]] custom_tags: Custom tags to set on the secret managed at the destination.
         :param pulumi.Input[str] external_id: Optional extra protection that must match the trust policy granting access to the
                AWS IAM role ARN. We recommend using a different random UUID per destination. The value is generated by users.
                The field is mutable with no special condition, but users must be careful that the new value fits with the trust
@@ -97,14 +92,14 @@ class SyncAwsDestinationArgs:
 
     @property
     @pulumi.getter(name="customTags")
-    def custom_tags(self) -> Optional[pulumi.Input[Mapping[str, pulumi.Input[str]]]]:
+    def custom_tags(self) -> Optional[pulumi.Input[Mapping[str, Any]]]:
         """
         Custom tags to set on the secret managed at the destination.
         """
         return pulumi.get(self, "custom_tags")
 
     @custom_tags.setter
-    def custom_tags(self, value: Optional[pulumi.Input[Mapping[str, pulumi.Input[str]]]]):
+    def custom_tags(self, value: Optional[pulumi.Input[Mapping[str, Any]]]):
         pulumi.set(self, "custom_tags", value)
 
     @property
@@ -224,7 +219,7 @@ class SyncAwsDestinationArgs:
 class _SyncAwsDestinationState:
     def __init__(__self__, *,
                  access_key_id: Optional[pulumi.Input[str]] = None,
-                 custom_tags: Optional[pulumi.Input[Mapping[str, pulumi.Input[str]]]] = None,
+                 custom_tags: Optional[pulumi.Input[Mapping[str, Any]]] = None,
                  external_id: Optional[pulumi.Input[str]] = None,
                  granularity: Optional[pulumi.Input[str]] = None,
                  name: Optional[pulumi.Input[str]] = None,
@@ -239,7 +234,7 @@ class _SyncAwsDestinationState:
         :param pulumi.Input[str] access_key_id: Access key id to authenticate against the AWS secrets manager.
                Can be omitted and directly provided to Vault using the `AWS_ACCESS_KEY_ID` environment
                variable.
-        :param pulumi.Input[Mapping[str, pulumi.Input[str]]] custom_tags: Custom tags to set on the secret managed at the destination.
+        :param pulumi.Input[Mapping[str, Any]] custom_tags: Custom tags to set on the secret managed at the destination.
         :param pulumi.Input[str] external_id: Optional extra protection that must match the trust policy granting access to the
                AWS IAM role ARN. We recommend using a different random UUID per destination. The value is generated by users.
                The field is mutable with no special condition, but users must be careful that the new value fits with the trust
@@ -305,14 +300,14 @@ class _SyncAwsDestinationState:
 
     @property
     @pulumi.getter(name="customTags")
-    def custom_tags(self) -> Optional[pulumi.Input[Mapping[str, pulumi.Input[str]]]]:
+    def custom_tags(self) -> Optional[pulumi.Input[Mapping[str, Any]]]:
         """
         Custom tags to set on the secret managed at the destination.
         """
         return pulumi.get(self, "custom_tags")
 
     @custom_tags.setter
-    def custom_tags(self, value: Optional[pulumi.Input[Mapping[str, pulumi.Input[str]]]]):
+    def custom_tags(self, value: Optional[pulumi.Input[Mapping[str, Any]]]):
         pulumi.set(self, "custom_tags", value)
 
     @property
@@ -446,7 +441,7 @@ class SyncAwsDestination(pulumi.CustomResource):
                  resource_name: str,
                  opts: Optional[pulumi.ResourceOptions] = None,
                  access_key_id: Optional[pulumi.Input[str]] = None,
-                 custom_tags: Optional[pulumi.Input[Mapping[str, pulumi.Input[str]]]] = None,
+                 custom_tags: Optional[pulumi.Input[Mapping[str, Any]]] = None,
                  external_id: Optional[pulumi.Input[str]] = None,
                  granularity: Optional[pulumi.Input[str]] = None,
                  name: Optional[pulumi.Input[str]] = None,
@@ -489,7 +484,7 @@ class SyncAwsDestination(pulumi.CustomResource):
         :param pulumi.Input[str] access_key_id: Access key id to authenticate against the AWS secrets manager.
                Can be omitted and directly provided to Vault using the `AWS_ACCESS_KEY_ID` environment
                variable.
-        :param pulumi.Input[Mapping[str, pulumi.Input[str]]] custom_tags: Custom tags to set on the secret managed at the destination.
+        :param pulumi.Input[Mapping[str, Any]] custom_tags: Custom tags to set on the secret managed at the destination.
         :param pulumi.Input[str] external_id: Optional extra protection that must match the trust policy granting access to the
                AWS IAM role ARN. We recommend using a different random UUID per destination. The value is generated by users.
                The field is mutable with no special condition, but users must be careful that the new value fits with the trust
@@ -565,7 +560,7 @@ class SyncAwsDestination(pulumi.CustomResource):
                  resource_name: str,
                  opts: Optional[pulumi.ResourceOptions] = None,
                  access_key_id: Optional[pulumi.Input[str]] = None,
-                 custom_tags: Optional[pulumi.Input[Mapping[str, pulumi.Input[str]]]] = None,
+                 custom_tags: Optional[pulumi.Input[Mapping[str, Any]]] = None,
                  external_id: Optional[pulumi.Input[str]] = None,
                  granularity: Optional[pulumi.Input[str]] = None,
                  name: Optional[pulumi.Input[str]] = None,
@@ -607,7 +602,7 @@ class SyncAwsDestination(pulumi.CustomResource):
             id: pulumi.Input[str],
             opts: Optional[pulumi.ResourceOptions] = None,
             access_key_id: Optional[pulumi.Input[str]] = None,
-            custom_tags: Optional[pulumi.Input[Mapping[str, pulumi.Input[str]]]] = None,
+            custom_tags: Optional[pulumi.Input[Mapping[str, Any]]] = None,
             external_id: Optional[pulumi.Input[str]] = None,
             granularity: Optional[pulumi.Input[str]] = None,
             name: Optional[pulumi.Input[str]] = None,
@@ -627,7 +622,7 @@ class SyncAwsDestination(pulumi.CustomResource):
         :param pulumi.Input[str] access_key_id: Access key id to authenticate against the AWS secrets manager.
                Can be omitted and directly provided to Vault using the `AWS_ACCESS_KEY_ID` environment
                variable.
-        :param pulumi.Input[Mapping[str, pulumi.Input[str]]] custom_tags: Custom tags to set on the secret managed at the destination.
+        :param pulumi.Input[Mapping[str, Any]] custom_tags: Custom tags to set on the secret managed at the destination.
         :param pulumi.Input[str] external_id: Optional extra protection that must match the trust policy granting access to the
                AWS IAM role ARN. We recommend using a different random UUID per destination. The value is generated by users.
                The field is mutable with no special condition, but users must be careful that the new value fits with the trust
@@ -683,7 +678,7 @@ class SyncAwsDestination(pulumi.CustomResource):
 
     @property
     @pulumi.getter(name="customTags")
-    def custom_tags(self) -> pulumi.Output[Optional[Mapping[str, str]]]:
+    def custom_tags(self) -> pulumi.Output[Optional[Mapping[str, Any]]]:
         """
         Custom tags to set on the secret managed at the destination.
         """

pulumi_vault/secrets/sync_azure_destination.py

@@ -4,14 +4,9 @@
 
 import copy
 import warnings
-import sys
 import pulumi
 import pulumi.runtime
 from typing import Any, Mapping, Optional, Sequence, Union, overload
-if sys.version_info >= (3, 11):
-    from typing import NotRequired, TypedDict, TypeAlias
-else:
-    from typing_extensions import NotRequired, TypedDict, TypeAlias
 from .. import _utilities
 
 __all__ = ['SyncAzureDestinationArgs', 'SyncAzureDestination']
@@ -22,7 +17,7 @@ class SyncAzureDestinationArgs:
                  client_id: Optional[pulumi.Input[str]] = None,
                  client_secret: Optional[pulumi.Input[str]] = None,
                  cloud: Optional[pulumi.Input[str]] = None,
-                 custom_tags: Optional[pulumi.Input[Mapping[str, pulumi.Input[str]]]] = None,
+                 custom_tags: Optional[pulumi.Input[Mapping[str, Any]]] = None,
                  granularity: Optional[pulumi.Input[str]] = None,
                  key_vault_uri: Optional[pulumi.Input[str]] = None,
                  name: Optional[pulumi.Input[str]] = None,
@@ -38,7 +33,7 @@ class SyncAzureDestinationArgs:
                Can be omitted and directly provided to Vault using the `AZURE_CLIENT_SECRET` environment
                variable.
         :param pulumi.Input[str] cloud: Specifies a cloud for the client. The default is Azure Public Cloud.
-        :param pulumi.Input[Mapping[str, pulumi.Input[str]]] custom_tags: Custom tags to set on the secret managed at the destination.
+        :param pulumi.Input[Mapping[str, Any]] custom_tags: Custom tags to set on the secret managed at the destination.
         :param pulumi.Input[str] granularity: Determines what level of information is synced as a distinct resource
                at the destination. Supports `secret-path` and `secret-key`.
         :param pulumi.Input[str] key_vault_uri: URI of an existing Azure Key Vault instance.
@@ -117,14 +112,14 @@ class SyncAzureDestinationArgs:
 
     @property
     @pulumi.getter(name="customTags")
-    def custom_tags(self) -> Optional[pulumi.Input[Mapping[str, pulumi.Input[str]]]]:
+    def custom_tags(self) -> Optional[pulumi.Input[Mapping[str, Any]]]:
         """
         Custom tags to set on the secret managed at the destination.
         """
         return pulumi.get(self, "custom_tags")
 
     @custom_tags.setter
-    def custom_tags(self, value: Optional[pulumi.Input[Mapping[str, pulumi.Input[str]]]]):
+    def custom_tags(self, value: Optional[pulumi.Input[Mapping[str, Any]]]):
         pulumi.set(self, "custom_tags", value)
 
     @property
@@ -214,7 +209,7 @@ class _SyncAzureDestinationState:
                  client_id: Optional[pulumi.Input[str]] = None,
                  client_secret: Optional[pulumi.Input[str]] = None,
                  cloud: Optional[pulumi.Input[str]] = None,
-                 custom_tags: Optional[pulumi.Input[Mapping[str, pulumi.Input[str]]]] = None,
+                 custom_tags: Optional[pulumi.Input[Mapping[str, Any]]] = None,
                  granularity: Optional[pulumi.Input[str]] = None,
                  key_vault_uri: Optional[pulumi.Input[str]] = None,
                  name: Optional[pulumi.Input[str]] = None,
@@ -231,7 +226,7 @@ class _SyncAzureDestinationState:
                Can be omitted and directly provided to Vault using the `AZURE_CLIENT_SECRET` environment
                variable.
         :param pulumi.Input[str] cloud: Specifies a cloud for the client. The default is Azure Public Cloud.
-        :param pulumi.Input[Mapping[str, pulumi.Input[str]]] custom_tags: Custom tags to set on the secret managed at the destination.
+        :param pulumi.Input[Mapping[str, Any]] custom_tags: Custom tags to set on the secret managed at the destination.
         :param pulumi.Input[str] granularity: Determines what level of information is synced as a distinct resource
                at the destination. Supports `secret-path` and `secret-key`.
         :param pulumi.Input[str] key_vault_uri: URI of an existing Azure Key Vault instance.
@@ -313,14 +308,14 @@ class _SyncAzureDestinationState:
 
     @property
     @pulumi.getter(name="customTags")
-    def custom_tags(self) -> Optional[pulumi.Input[Mapping[str, pulumi.Input[str]]]]:
+    def custom_tags(self) -> Optional[pulumi.Input[Mapping[str, Any]]]:
         """
         Custom tags to set on the secret managed at the destination.
         """
         return pulumi.get(self, "custom_tags")
 
     @custom_tags.setter
-    def custom_tags(self, value: Optional[pulumi.Input[Mapping[str, pulumi.Input[str]]]]):
+    def custom_tags(self, value: Optional[pulumi.Input[Mapping[str, Any]]]):
         pulumi.set(self, "custom_tags", value)
 
     @property
@@ -424,7 +419,7 @@ class SyncAzureDestination(pulumi.CustomResource):
                  client_id: Optional[pulumi.Input[str]] = None,
                  client_secret: Optional[pulumi.Input[str]] = None,
                  cloud: Optional[pulumi.Input[str]] = None,
-                 custom_tags: Optional[pulumi.Input[Mapping[str, pulumi.Input[str]]]] = None,
+                 custom_tags: Optional[pulumi.Input[Mapping[str, Any]]] = None,
                  granularity: Optional[pulumi.Input[str]] = None,
                  key_vault_uri: Optional[pulumi.Input[str]] = None,
                  name: Optional[pulumi.Input[str]] = None,
@@ -468,7 +463,7 @@ class SyncAzureDestination(pulumi.CustomResource):
                Can be omitted and directly provided to Vault using the `AZURE_CLIENT_SECRET` environment
                variable.
         :param pulumi.Input[str] cloud: Specifies a cloud for the client. The default is Azure Public Cloud.
-        :param pulumi.Input[Mapping[str, pulumi.Input[str]]] custom_tags: Custom tags to set on the secret managed at the destination.
+        :param pulumi.Input[Mapping[str, Any]] custom_tags: Custom tags to set on the secret managed at the destination.
         :param pulumi.Input[str] granularity: Determines what level of information is synced as a distinct resource
                at the destination. Supports `secret-path` and `secret-key`.
         :param pulumi.Input[str] key_vault_uri: URI of an existing Azure Key Vault instance.
@@ -535,7 +530,7 @@ class SyncAzureDestination(pulumi.CustomResource):
                  client_id: Optional[pulumi.Input[str]] = None,
                  client_secret: Optional[pulumi.Input[str]] = None,
                  cloud: Optional[pulumi.Input[str]] = None,
-                 custom_tags: Optional[pulumi.Input[Mapping[str, pulumi.Input[str]]]] = None,
+                 custom_tags: Optional[pulumi.Input[Mapping[str, Any]]] = None,
                  granularity: Optional[pulumi.Input[str]] = None,
                  key_vault_uri: Optional[pulumi.Input[str]] = None,
                  name: Optional[pulumi.Input[str]] = None,
@@ -577,7 +572,7 @@ class SyncAzureDestination(pulumi.CustomResource):
             client_id: Optional[pulumi.Input[str]] = None,
             client_secret: Optional[pulumi.Input[str]] = None,
             cloud: Optional[pulumi.Input[str]] = None,
-            custom_tags: Optional[pulumi.Input[Mapping[str, pulumi.Input[str]]]] = None,
+            custom_tags: Optional[pulumi.Input[Mapping[str, Any]]] = None,
             granularity: Optional[pulumi.Input[str]] = None,
             key_vault_uri: Optional[pulumi.Input[str]] = None,
             name: Optional[pulumi.Input[str]] = None,
@@ -599,7 +594,7 @@ class SyncAzureDestination(pulumi.CustomResource):
                Can be omitted and directly provided to Vault using the `AZURE_CLIENT_SECRET` environment
                variable.
         :param pulumi.Input[str] cloud: Specifies a cloud for the client. The default is Azure Public Cloud.
-        :param pulumi.Input[Mapping[str, pulumi.Input[str]]] custom_tags: Custom tags to set on the secret managed at the destination.
+        :param pulumi.Input[Mapping[str, Any]] custom_tags: Custom tags to set on the secret managed at the destination.
         :param pulumi.Input[str] granularity: Determines what level of information is synced as a distinct resource
                at the destination. Supports `secret-path` and `secret-key`.
         :param pulumi.Input[str] key_vault_uri: URI of an existing Azure Key Vault instance.
@@ -663,7 +658,7 @@ class SyncAzureDestination(pulumi.CustomResource):
 
     @property
     @pulumi.getter(name="customTags")
-    def custom_tags(self) -> pulumi.Output[Optional[Mapping[str, str]]]:
+    def custom_tags(self) -> pulumi.Output[Optional[Mapping[str, Any]]]:
         """
         Custom tags to set on the secret managed at the destination.
         """

pulumi_vault/secrets/sync_config.py

@@ -4,14 +4,9 @@
 
 import copy
 import warnings
-import sys
 import pulumi
 import pulumi.runtime
 from typing import Any, Mapping, Optional, Sequence, Union, overload
-if sys.version_info >= (3, 11):
-    from typing import NotRequired, TypedDict, TypeAlias
-else:
-    from typing_extensions import NotRequired, TypedDict, TypeAlias
 from .. import _utilities
 
 __all__ = ['SyncConfigArgs', 'SyncConfig']

pulumi_vault/secrets/sync_gcp_destination.py

@@ -4,14 +4,9 @@
 
 import copy
 import warnings
-import sys
 import pulumi
 import pulumi.runtime
 from typing import Any, Mapping, Optional, Sequence, Union, overload
-if sys.version_info >= (3, 11):
-    from typing import NotRequired, TypedDict, TypeAlias
-else:
-    from typing_extensions import NotRequired, TypedDict, TypeAlias
 from .. import _utilities
 
 __all__ = ['SyncGcpDestinationArgs', 'SyncGcpDestination']
@@ -20,7 +15,7 @@ __all__ = ['SyncGcpDestinationArgs', 'SyncGcpDestination']
 class SyncGcpDestinationArgs:
     def __init__(__self__, *,
                  credentials: Optional[pulumi.Input[str]] = None,
-                 custom_tags: Optional[pulumi.Input[Mapping[str, pulumi.Input[str]]]] = None,
+                 custom_tags: Optional[pulumi.Input[Mapping[str, Any]]] = None,
                  granularity: Optional[pulumi.Input[str]] = None,
                  name: Optional[pulumi.Input[str]] = None,
                  namespace: Optional[pulumi.Input[str]] = None,
@@ -31,7 +26,7 @@ class SyncGcpDestinationArgs:
         :param pulumi.Input[str] credentials: JSON-encoded credentials to use to connect to GCP.
                Can be omitted and directly provided to Vault using the `GOOGLE_APPLICATION_CREDENTIALS` environment
                variable.
-        :param pulumi.Input[Mapping[str, pulumi.Input[str]]] custom_tags: Custom tags to set on the secret managed at the destination.
+        :param pulumi.Input[Mapping[str, Any]] custom_tags: Custom tags to set on the secret managed at the destination.
         :param pulumi.Input[str] granularity: Determines what level of information is synced as a distinct resource
                at the destination. Supports `secret-path` and `secret-key`.
         :param pulumi.Input[str] name: Unique name of the GCP destination.
@@ -76,14 +71,14 @@ class SyncGcpDestinationArgs:
 
     @property
     @pulumi.getter(name="customTags")
-    def custom_tags(self) -> Optional[pulumi.Input[Mapping[str, pulumi.Input[str]]]]:
+    def custom_tags(self) -> Optional[pulumi.Input[Mapping[str, Any]]]:
         """
         Custom tags to set on the secret managed at the destination.
         """
         return pulumi.get(self, "custom_tags")
 
     @custom_tags.setter
-    def custom_tags(self, value: Optional[pulumi.Input[Mapping[str, pulumi.Input[str]]]]):
+    def custom_tags(self, value: Optional[pulumi.Input[Mapping[str, Any]]]):
         pulumi.set(self, "custom_tags", value)
 
     @property
@@ -158,7 +153,7 @@ class SyncGcpDestinationArgs:
 class _SyncGcpDestinationState:
     def __init__(__self__, *,
                  credentials: Optional[pulumi.Input[str]] = None,
-                 custom_tags: Optional[pulumi.Input[Mapping[str, pulumi.Input[str]]]] = None,
+                 custom_tags: Optional[pulumi.Input[Mapping[str, Any]]] = None,
                  granularity: Optional[pulumi.Input[str]] = None,
                  name: Optional[pulumi.Input[str]] = None,
                  namespace: Optional[pulumi.Input[str]] = None,
@@ -170,7 +165,7 @@ class _SyncGcpDestinationState:
         :param pulumi.Input[str] credentials: JSON-encoded credentials to use to connect to GCP.
                Can be omitted and directly provided to Vault using the `GOOGLE_APPLICATION_CREDENTIALS` environment
                variable.
-        :param pulumi.Input[Mapping[str, pulumi.Input[str]]] custom_tags: Custom tags to set on the secret managed at the destination.
+        :param pulumi.Input[Mapping[str, Any]] custom_tags: Custom tags to set on the secret managed at the destination.
         :param pulumi.Input[str] granularity: Determines what level of information is synced as a distinct resource
                at the destination. Supports `secret-path` and `secret-key`.
         :param pulumi.Input[str] name: Unique name of the GCP destination.
@@ -218,14 +213,14 @@ class _SyncGcpDestinationState:
 
     @property
     @pulumi.getter(name="customTags")
-    def custom_tags(self) -> Optional[pulumi.Input[Mapping[str, pulumi.Input[str]]]]:
+    def custom_tags(self) -> Optional[pulumi.Input[Mapping[str, Any]]]:
         """
         Custom tags to set on the secret managed at the destination.
         """
         return pulumi.get(self, "custom_tags")
 
     @custom_tags.setter
-    def custom_tags(self, value: Optional[pulumi.Input[Mapping[str, pulumi.Input[str]]]]):
+    def custom_tags(self, value: Optional[pulumi.Input[Mapping[str, Any]]]):
         pulumi.set(self, "custom_tags", value)
 
     @property
@@ -314,7 +309,7 @@ class SyncGcpDestination(pulumi.CustomResource):
                  resource_name: str,
                  opts: Optional[pulumi.ResourceOptions] = None,
                  credentials: Optional[pulumi.Input[str]] = None,
-                 custom_tags: Optional[pulumi.Input[Mapping[str, pulumi.Input[str]]]] = None,
+                 custom_tags: Optional[pulumi.Input[Mapping[str, Any]]] = None,
                  granularity: Optional[pulumi.Input[str]] = None,
                  name: Optional[pulumi.Input[str]] = None,
                  namespace: Optional[pulumi.Input[str]] = None,
@@ -352,7 +347,7 @@ class SyncGcpDestination(pulumi.CustomResource):
         :param pulumi.Input[str] credentials: JSON-encoded credentials to use to connect to GCP.
                Can be omitted and directly provided to Vault using the `GOOGLE_APPLICATION_CREDENTIALS` environment
                variable.
-        :param pulumi.Input[Mapping[str, pulumi.Input[str]]] custom_tags: Custom tags to set on the secret managed at the destination.
+        :param pulumi.Input[Mapping[str, Any]] custom_tags: Custom tags to set on the secret managed at the destination.
         :param pulumi.Input[str] granularity: Determines what level of information is synced as a distinct resource
                at the destination. Supports `secret-path` and `secret-key`.
         :param pulumi.Input[str] name: Unique name of the GCP destination.
@@ -414,7 +409,7 @@ class SyncGcpDestination(pulumi.CustomResource):
                  resource_name: str,
                  opts: Optional[pulumi.ResourceOptions] = None,
                  credentials: Optional[pulumi.Input[str]] = None,
-                 custom_tags: Optional[pulumi.Input[Mapping[str, pulumi.Input[str]]]] = None,
+                 custom_tags: Optional[pulumi.Input[Mapping[str, Any]]] = None,
                  granularity: Optional[pulumi.Input[str]] = None,
                  name: Optional[pulumi.Input[str]] = None,
                  namespace: Optional[pulumi.Input[str]] = None,
@@ -450,7 +445,7 @@ class SyncGcpDestination(pulumi.CustomResource):
             id: pulumi.Input[str],
             opts: Optional[pulumi.ResourceOptions] = None,
             credentials: Optional[pulumi.Input[str]] = None,
-            custom_tags: Optional[pulumi.Input[Mapping[str, pulumi.Input[str]]]] = None,
+            custom_tags: Optional[pulumi.Input[Mapping[str, Any]]] = None,
             granularity: Optional[pulumi.Input[str]] = None,
             name: Optional[pulumi.Input[str]] = None,
             namespace: Optional[pulumi.Input[str]] = None,
@@ -467,7 +462,7 @@ class SyncGcpDestination(pulumi.CustomResource):
         :param pulumi.Input[str] credentials: JSON-encoded credentials to use to connect to GCP.
                Can be omitted and directly provided to Vault using the `GOOGLE_APPLICATION_CREDENTIALS` environment
                variable.
-        :param pulumi.Input[Mapping[str, pulumi.Input[str]]] custom_tags: Custom tags to set on the secret managed at the destination.
+        :param pulumi.Input[Mapping[str, Any]] custom_tags: Custom tags to set on the secret managed at the destination.
         :param pulumi.Input[str] granularity: Determines what level of information is synced as a distinct resource
                at the destination. Supports `secret-path` and `secret-key`.
         :param pulumi.Input[str] name: Unique name of the GCP destination.
@@ -508,7 +503,7 @@ class SyncGcpDestination(pulumi.CustomResource):
 
     @property
     @pulumi.getter(name="customTags")
-    def custom_tags(self) -> pulumi.Output[Optional[Mapping[str, str]]]:
+    def custom_tags(self) -> pulumi.Output[Optional[Mapping[str, Any]]]:
         """
         Custom tags to set on the secret managed at the destination.
         """

pulumi_vault/secrets/sync_gh_destination.py

@@ -4,14 +4,9 @@
 
 import copy
 import warnings
-import sys
 import pulumi
 import pulumi.runtime
 from typing import Any, Mapping, Optional, Sequence, Union, overload
-if sys.version_info >= (3, 11):
-    from typing import NotRequired, TypedDict, TypeAlias
-else:
-    from typing_extensions import NotRequired, TypedDict, TypeAlias
 from .. import _utilities
 
 __all__ = ['SyncGhDestinationArgs', 'SyncGhDestination']