PyPI - pulumi-vault - Versions diffs - 6.4.0__py3-none-any.whl → 6.4.0a1723454543__py3-none-any.whl - Mend

pulumi-vault 6.4.0py3-none-any.whl → 6.4.0a1723454543py3-none-any.whl

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (226) hide show

pulumi_vault/_inputs.py +0 -560
pulumi_vault/_utilities.py +1 -1
pulumi_vault/ad/get_access_credentials.py +4 -19
pulumi_vault/ad/secret_backend.py +0 -5
pulumi_vault/ad/secret_library.py +0 -5
pulumi_vault/ad/secret_role.py +0 -5
pulumi_vault/alicloud/auth_backend_role.py +0 -5
pulumi_vault/approle/auth_backend_login.py +0 -5
pulumi_vault/approle/auth_backend_role.py +0 -5
pulumi_vault/approle/auth_backend_role_secret_id.py +0 -99
pulumi_vault/approle/get_auth_backend_role_id.py +4 -17
pulumi_vault/audit.py +0 -5
pulumi_vault/audit_request_header.py +0 -5
pulumi_vault/auth_backend.py +0 -5
pulumi_vault/aws/auth_backend_cert.py +0 -5
pulumi_vault/aws/auth_backend_client.py +0 -5
pulumi_vault/aws/auth_backend_config_identity.py +0 -5
pulumi_vault/aws/auth_backend_identity_whitelist.py +0 -5
pulumi_vault/aws/auth_backend_login.py +7 -12
pulumi_vault/aws/auth_backend_role.py +0 -5
pulumi_vault/aws/auth_backend_role_tag.py +0 -5
pulumi_vault/aws/auth_backend_roletag_blacklist.py +0 -5
pulumi_vault/aws/auth_backend_sts_role.py +0 -5
pulumi_vault/aws/get_access_credentials.py +4 -31
pulumi_vault/aws/get_static_access_credentials.py +4 -18
pulumi_vault/aws/secret_backend.py +0 -5
pulumi_vault/aws/secret_backend_role.py +0 -5
pulumi_vault/aws/secret_backend_static_role.py +0 -5
pulumi_vault/azure/_inputs.py +0 -24
pulumi_vault/azure/auth_backend_config.py +0 -5
pulumi_vault/azure/auth_backend_role.py +0 -5
pulumi_vault/azure/backend.py +0 -5
pulumi_vault/azure/backend_role.py +0 -5
pulumi_vault/azure/get_access_credentials.py +4 -36
pulumi_vault/azure/outputs.py +0 -5
pulumi_vault/cert_auth_backend_role.py +0 -5
pulumi_vault/config/__init__.pyi +0 -5
pulumi_vault/config/_inputs.py +0 -21
pulumi_vault/config/outputs.py +0 -5
pulumi_vault/config/ui_custom_message.py +14 -19
pulumi_vault/config/vars.py +0 -5
pulumi_vault/consul/secret_backend.py +0 -5
pulumi_vault/consul/secret_backend_role.py +0 -5
pulumi_vault/database/_inputs.py +105 -2256
pulumi_vault/database/outputs.py +54 -199
pulumi_vault/database/secret_backend_connection.py +14 -19
pulumi_vault/database/secret_backend_role.py +14 -19
pulumi_vault/database/secret_backend_static_role.py +1 -69
pulumi_vault/database/secrets_mount.py +14 -19
pulumi_vault/egp_policy.py +0 -5
pulumi_vault/gcp/_inputs.py +0 -111
pulumi_vault/gcp/auth_backend.py +0 -5
pulumi_vault/gcp/auth_backend_role.py +0 -5
pulumi_vault/gcp/get_auth_backend_role.py +4 -42
pulumi_vault/gcp/outputs.py +0 -5
pulumi_vault/gcp/secret_backend.py +0 -5
pulumi_vault/gcp/secret_impersonated_account.py +3 -62
pulumi_vault/gcp/secret_roleset.py +0 -5
pulumi_vault/gcp/secret_static_account.py +0 -5
pulumi_vault/generic/endpoint.py +0 -5
pulumi_vault/generic/get_secret.py +5 -25
pulumi_vault/generic/secret.py +7 -12
pulumi_vault/get_auth_backend.py +4 -21
pulumi_vault/get_auth_backends.py +4 -16
pulumi_vault/get_namespace.py +5 -18
pulumi_vault/get_namespaces.py +4 -13
pulumi_vault/get_nomad_access_token.py +8 -28
pulumi_vault/get_policy_document.py +4 -15
pulumi_vault/get_raft_autopilot_state.py +7 -26
pulumi_vault/github/_inputs.py +0 -55
pulumi_vault/github/auth_backend.py +0 -5
pulumi_vault/github/outputs.py +0 -5
pulumi_vault/github/team.py +0 -5
pulumi_vault/github/user.py +0 -5
pulumi_vault/identity/entity.py +0 -5
pulumi_vault/identity/entity_alias.py +0 -5
pulumi_vault/identity/entity_policies.py +0 -5
pulumi_vault/identity/get_entity.py +5 -35
pulumi_vault/identity/get_group.py +6 -42
pulumi_vault/identity/get_oidc_client_creds.py +4 -16
pulumi_vault/identity/get_oidc_openid_config.py +4 -26
pulumi_vault/identity/get_oidc_public_keys.py +5 -16
pulumi_vault/identity/group.py +0 -5
pulumi_vault/identity/group_alias.py +0 -5
pulumi_vault/identity/group_member_entity_ids.py +0 -5
pulumi_vault/identity/group_member_group_ids.py +0 -5
pulumi_vault/identity/group_policies.py +0 -5
pulumi_vault/identity/mfa_duo.py +0 -5
pulumi_vault/identity/mfa_login_enforcement.py +0 -5
pulumi_vault/identity/mfa_okta.py +0 -5
pulumi_vault/identity/mfa_pingid.py +0 -5
pulumi_vault/identity/mfa_totp.py +0 -5
pulumi_vault/identity/oidc.py +0 -5
pulumi_vault/identity/oidc_assignment.py +0 -5
pulumi_vault/identity/oidc_client.py +0 -5
pulumi_vault/identity/oidc_key.py +0 -5
pulumi_vault/identity/oidc_key_allowed_client_id.py +0 -5
pulumi_vault/identity/oidc_provider.py +0 -5
pulumi_vault/identity/oidc_role.py +0 -5
pulumi_vault/identity/oidc_scope.py +0 -5
pulumi_vault/identity/outputs.py +3 -8
pulumi_vault/jwt/_inputs.py +0 -55
pulumi_vault/jwt/auth_backend.py +0 -5
pulumi_vault/jwt/auth_backend_role.py +28 -33
pulumi_vault/jwt/outputs.py +0 -5
pulumi_vault/kmip/secret_backend.py +0 -5
pulumi_vault/kmip/secret_role.py +0 -5
pulumi_vault/kmip/secret_scope.py +0 -5
pulumi_vault/kubernetes/auth_backend_config.py +3 -55
pulumi_vault/kubernetes/auth_backend_role.py +0 -5
pulumi_vault/kubernetes/get_auth_backend_config.py +7 -59
pulumi_vault/kubernetes/get_auth_backend_role.py +4 -39
pulumi_vault/kubernetes/get_service_account_token.py +4 -28
pulumi_vault/kubernetes/secret_backend.py +14 -19
pulumi_vault/kubernetes/secret_backend_role.py +0 -5
pulumi_vault/kv/_inputs.py +4 -36
pulumi_vault/kv/get_secret.py +5 -20
pulumi_vault/kv/get_secret_subkeys_v2.py +5 -24
pulumi_vault/kv/get_secret_v2.py +8 -27
pulumi_vault/kv/get_secrets_list.py +4 -15
pulumi_vault/kv/get_secrets_list_v2.py +4 -18
pulumi_vault/kv/outputs.py +3 -8
pulumi_vault/kv/secret.py +7 -12
pulumi_vault/kv/secret_backend_v2.py +0 -5
pulumi_vault/kv/secret_v2.py +28 -33
pulumi_vault/ldap/auth_backend.py +0 -52
pulumi_vault/ldap/auth_backend_group.py +0 -5
pulumi_vault/ldap/auth_backend_user.py +0 -5
pulumi_vault/ldap/get_dynamic_credentials.py +4 -22
pulumi_vault/ldap/get_static_credentials.py +4 -23
pulumi_vault/ldap/secret_backend.py +14 -19
pulumi_vault/ldap/secret_backend_dynamic_role.py +0 -5
pulumi_vault/ldap/secret_backend_library_set.py +0 -5
pulumi_vault/ldap/secret_backend_static_role.py +0 -5
pulumi_vault/managed/_inputs.py +0 -205
pulumi_vault/managed/keys.py +0 -5
pulumi_vault/managed/outputs.py +0 -5
pulumi_vault/mfa_duo.py +0 -5
pulumi_vault/mfa_okta.py +0 -5
pulumi_vault/mfa_pingid.py +0 -5
pulumi_vault/mfa_totp.py +0 -5
pulumi_vault/mongodbatlas/secret_backend.py +0 -5
pulumi_vault/mongodbatlas/secret_role.py +0 -5
pulumi_vault/mount.py +16 -21
pulumi_vault/namespace.py +14 -19
pulumi_vault/nomad_secret_backend.py +0 -5
pulumi_vault/nomad_secret_role.py +0 -5
pulumi_vault/okta/_inputs.py +0 -39
pulumi_vault/okta/auth_backend.py +0 -5
pulumi_vault/okta/auth_backend_group.py +0 -5
pulumi_vault/okta/auth_backend_user.py +0 -5
pulumi_vault/okta/outputs.py +0 -5
pulumi_vault/outputs.py +0 -5
pulumi_vault/password_policy.py +0 -5
pulumi_vault/pkisecret/_inputs.py +8 -49
pulumi_vault/pkisecret/backend_config_cluster.py +0 -5
pulumi_vault/pkisecret/backend_config_est.py +14 -19
pulumi_vault/pkisecret/get_backend_config_est.py +5 -23
pulumi_vault/pkisecret/get_backend_issuer.py +4 -24
pulumi_vault/pkisecret/get_backend_issuers.py +5 -18
pulumi_vault/pkisecret/get_backend_key.py +4 -19
pulumi_vault/pkisecret/get_backend_keys.py +5 -18
pulumi_vault/pkisecret/outputs.py +12 -17
pulumi_vault/pkisecret/secret_backend_cert.py +0 -5
pulumi_vault/pkisecret/secret_backend_config_ca.py +0 -5
pulumi_vault/pkisecret/secret_backend_config_issuers.py +0 -5
pulumi_vault/pkisecret/secret_backend_config_urls.py +0 -5
pulumi_vault/pkisecret/secret_backend_crl_config.py +0 -5
pulumi_vault/pkisecret/secret_backend_intermediate_cert_request.py +0 -5
pulumi_vault/pkisecret/secret_backend_intermediate_set_signed.py +0 -5
pulumi_vault/pkisecret/secret_backend_issuer.py +0 -5
pulumi_vault/pkisecret/secret_backend_key.py +0 -5
pulumi_vault/pkisecret/secret_backend_role.py +0 -5
pulumi_vault/pkisecret/secret_backend_root_cert.py +0 -5
pulumi_vault/pkisecret/secret_backend_root_sign_intermediate.py +0 -5
pulumi_vault/pkisecret/secret_backend_sign.py +0 -5
pulumi_vault/plugin.py +0 -5
pulumi_vault/plugin_pinned_version.py +0 -5
pulumi_vault/policy.py +0 -5
pulumi_vault/provider.py +0 -5
pulumi_vault/pulumi-plugin.json +1 -1
pulumi_vault/quota_lease_count.py +0 -5
pulumi_vault/quota_rate_limit.py +0 -5
pulumi_vault/rabbitmq/_inputs.py +0 -61
pulumi_vault/rabbitmq/outputs.py +0 -5
pulumi_vault/rabbitmq/secret_backend.py +0 -5
pulumi_vault/rabbitmq/secret_backend_role.py +0 -5
pulumi_vault/raft_autopilot.py +0 -5
pulumi_vault/raft_snapshot_agent_config.py +0 -5
pulumi_vault/rgp_policy.py +0 -5
pulumi_vault/saml/auth_backend.py +0 -5
pulumi_vault/saml/auth_backend_role.py +14 -19
pulumi_vault/secrets/_inputs.py +0 -30
pulumi_vault/secrets/outputs.py +0 -5
pulumi_vault/secrets/sync_association.py +0 -5
pulumi_vault/secrets/sync_aws_destination.py +14 -19
pulumi_vault/secrets/sync_azure_destination.py +14 -19
pulumi_vault/secrets/sync_config.py +0 -5
pulumi_vault/secrets/sync_gcp_destination.py +14 -19
pulumi_vault/secrets/sync_gh_destination.py +0 -5
pulumi_vault/secrets/sync_github_apps.py +0 -5
pulumi_vault/secrets/sync_vercel_destination.py +0 -5
pulumi_vault/ssh/_inputs.py +0 -22
pulumi_vault/ssh/outputs.py +0 -5
pulumi_vault/ssh/secret_backend_ca.py +0 -5
pulumi_vault/ssh/secret_backend_role.py +28 -67
pulumi_vault/terraformcloud/secret_backend.py +0 -5
pulumi_vault/terraformcloud/secret_creds.py +0 -5
pulumi_vault/terraformcloud/secret_role.py +0 -5
pulumi_vault/token.py +0 -5
pulumi_vault/tokenauth/auth_backend_role.py +14 -5
pulumi_vault/transform/alphabet.py +0 -5
pulumi_vault/transform/get_decode.py +14 -38
pulumi_vault/transform/get_encode.py +14 -38
pulumi_vault/transform/role.py +0 -5
pulumi_vault/transform/template.py +14 -19
pulumi_vault/transform/transformation.py +0 -5
pulumi_vault/transit/get_decrypt.py +4 -21
pulumi_vault/transit/get_encrypt.py +4 -23
pulumi_vault/transit/secret_backend_key.py +7 -12
pulumi_vault/transit/secret_cache_config.py +0 -5
{pulumi_vault-6.4.0.dist-info → pulumi_vault-6.4.0a1723454543.dist-info}/METADATA +2 -3
pulumi_vault-6.4.0a1723454543.dist-info/RECORD +256 -0
{pulumi_vault-6.4.0.dist-info → pulumi_vault-6.4.0a1723454543.dist-info}/WHEEL +1 -1
pulumi_vault-6.4.0.dist-info/RECORD +0 -256
{pulumi_vault-6.4.0.dist-info → pulumi_vault-6.4.0a1723454543.dist-info}/top_level.txt +0 -0

pulumi_vault/secrets/sync_github_apps.py CHANGED Viewed

@@ -4,14 +4,9 @@
 import copy
 import warnings
-import sys
 import pulumi
 import pulumi.runtime
 from typing import Any, Mapping, Optional, Sequence, Union, overload
-if sys.version_info >= (3, 11):
-    from typing import NotRequired, TypedDict, TypeAlias
-else:
-    from typing_extensions import NotRequired, TypedDict, TypeAlias
 from .. import _utilities
 __all__ = ['SyncGithubAppsArgs', 'SyncGithubApps']

pulumi_vault/secrets/sync_vercel_destination.py CHANGED Viewed

@@ -4,14 +4,9 @@
 import copy
 import warnings
-import sys
 import pulumi
 import pulumi.runtime
 from typing import Any, Mapping, Optional, Sequence, Union, overload
-if sys.version_info >= (3, 11):
-    from typing import NotRequired, TypedDict, TypeAlias
-else:
-    from typing_extensions import NotRequired, TypedDict, TypeAlias
 from .. import _utilities
 __all__ = ['SyncVercelDestinationArgs', 'SyncVercelDestination']

pulumi_vault/ssh/_inputs.py CHANGED Viewed

@@ -4,37 +4,15 @@
 import copy
 import warnings
-import sys
 import pulumi
 import pulumi.runtime
 from typing import Any, Mapping, Optional, Sequence, Union, overload
-if sys.version_info >= (3, 11):
-    from typing import NotRequired, TypedDict, TypeAlias
-else:
-    from typing_extensions import NotRequired, TypedDict, TypeAlias
 from .. import _utilities
 __all__ = [
     'SecretBackendRoleAllowedUserKeyConfigArgs',
-    'SecretBackendRoleAllowedUserKeyConfigArgsDict',
 ]
-MYPY = False
-if not MYPY:
-    class SecretBackendRoleAllowedUserKeyConfigArgsDict(TypedDict):
-        lengths: pulumi.Input[Sequence[pulumi.Input[int]]]
-        """
-        List of allowed key lengths, vault-1.10 and above
-        """
-        type: pulumi.Input[str]
-        """
-        Key type, choices:
-        rsa, ecdsa, ec, dsa, ed25519, ssh-rsa, ssh-dss, ssh-ed25519, ecdsa-sha2-nistp256, ecdsa-sha2-nistp384, ecdsa-sha2-nistp521
-        """
-elif False:
-    SecretBackendRoleAllowedUserKeyConfigArgsDict: TypeAlias = Mapping[str, Any]
 @pulumi.input_type
 class SecretBackendRoleAllowedUserKeyConfigArgs:
     def __init__(__self__, *,

pulumi_vault/ssh/outputs.py CHANGED Viewed

@@ -4,14 +4,9 @@
 import copy
 import warnings
-import sys
 import pulumi
 import pulumi.runtime
 from typing import Any, Mapping, Optional, Sequence, Union, overload
-if sys.version_info >= (3, 11):
-    from typing import NotRequired, TypedDict, TypeAlias
-else:
-    from typing_extensions import NotRequired, TypedDict, TypeAlias
 from .. import _utilities
 __all__ = [

pulumi_vault/ssh/secret_backend_ca.py CHANGED Viewed

@@ -4,14 +4,9 @@
 import copy
 import warnings
-import sys
 import pulumi
 import pulumi.runtime
 from typing import Any, Mapping, Optional, Sequence, Union, overload
-if sys.version_info >= (3, 11):
-    from typing import NotRequired, TypedDict, TypeAlias
-else:
-    from typing_extensions import NotRequired, TypedDict, TypeAlias
 from .. import _utilities
 __all__ = ['SecretBackendCaArgs', 'SecretBackendCa']

pulumi_vault/ssh/secret_backend_role.py CHANGED Viewed

@@ -4,14 +4,9 @@
 import copy
 import warnings
-import sys
 import pulumi
 import pulumi.runtime
 from typing import Any, Mapping, Optional, Sequence, Union, overload
-if sys.version_info >= (3, 11):
-    from typing import NotRequired, TypedDict, TypeAlias
-else:
-    from typing_extensions import NotRequired, TypedDict, TypeAlias
 from .. import _utilities
 from . import outputs
 from ._inputs import *
@@ -25,7 +20,6 @@ class SecretBackendRoleArgs:
                  key_type: pulumi.Input[str],
                  algorithm_signer: Optional[pulumi.Input[str]] = None,
                  allow_bare_domains: Optional[pulumi.Input[bool]] = None,
-                 allow_empty_principals: Optional[pulumi.Input[bool]] = None,
                  allow_host_certificates: Optional[pulumi.Input[bool]] = None,
                  allow_subdomains: Optional[pulumi.Input[bool]] = None,
                  allow_user_certificates: Optional[pulumi.Input[bool]] = None,
@@ -38,8 +32,8 @@ class SecretBackendRoleArgs:
                  allowed_users: Optional[pulumi.Input[str]] = None,
                  allowed_users_template: Optional[pulumi.Input[bool]] = None,
                  cidr_list: Optional[pulumi.Input[str]] = None,
-                 default_critical_options: Optional[pulumi.Input[Mapping[str, pulumi.Input[str]]]] = None,
-                 default_extensions: Optional[pulumi.Input[Mapping[str, pulumi.Input[str]]]] = None,
+                 default_critical_options: Optional[pulumi.Input[Mapping[str, Any]]] = None,
+                 default_extensions: Optional[pulumi.Input[Mapping[str, Any]]] = None,
                  default_user: Optional[pulumi.Input[str]] = None,
                  default_user_template: Optional[pulumi.Input[bool]] = None,
                  key_id_format: Optional[pulumi.Input[str]] = None,
@@ -69,8 +63,8 @@ class SecretBackendRoleArgs:
         :param pulumi.Input[str] allowed_users: Specifies a comma-separated list of usernames that are to be allowed, only if certain usernames are to be allowed.
         :param pulumi.Input[bool] allowed_users_template: Specifies if `allowed_users` can be declared using identity template policies. Non-templated users are also permitted.
         :param pulumi.Input[str] cidr_list: The comma-separated string of CIDR blocks for which this role is applicable.
-        :param pulumi.Input[Mapping[str, pulumi.Input[str]]] default_critical_options: Specifies a map of critical options that certificates have when signed.
-        :param pulumi.Input[Mapping[str, pulumi.Input[str]]] default_extensions: Specifies a map of extensions that certificates have when signed.
+        :param pulumi.Input[Mapping[str, Any]] default_critical_options: Specifies a map of critical options that certificates have when signed.
+        :param pulumi.Input[Mapping[str, Any]] default_extensions: Specifies a map of extensions that certificates have when signed.
         :param pulumi.Input[str] default_user: Specifies the default username for which a credential will be generated.
         :param pulumi.Input[bool] default_user_template: If set, `default_users` can be specified using identity template values. A non-templated user is also permitted.
         :param pulumi.Input[str] key_id_format: Specifies a custom format for the key id of a signed certificate.
@@ -89,8 +83,6 @@ class SecretBackendRoleArgs:
             pulumi.set(__self__, "algorithm_signer", algorithm_signer)
         if allow_bare_domains is not None:
             pulumi.set(__self__, "allow_bare_domains", allow_bare_domains)
-        if allow_empty_principals is not None:
-            pulumi.set(__self__, "allow_empty_principals", allow_empty_principals)
         if allow_host_certificates is not None:
             pulumi.set(__self__, "allow_host_certificates", allow_host_certificates)
         if allow_subdomains is not None:
@@ -184,15 +176,6 @@ class SecretBackendRoleArgs:
     def allow_bare_domains(self, value: Optional[pulumi.Input[bool]]):
         pulumi.set(self, "allow_bare_domains", value)
-    @property
-    @pulumi.getter(name="allowEmptyPrincipals")
-    def allow_empty_principals(self) -> Optional[pulumi.Input[bool]]:
-        return pulumi.get(self, "allow_empty_principals")
-    @allow_empty_principals.setter
-    def allow_empty_principals(self, value: Optional[pulumi.Input[bool]]):
-        pulumi.set(self, "allow_empty_principals", value)
     @property
     @pulumi.getter(name="allowHostCertificates")
     def allow_host_certificates(self) -> Optional[pulumi.Input[bool]]:
@@ -342,26 +325,26 @@ class SecretBackendRoleArgs:
     @property
     @pulumi.getter(name="defaultCriticalOptions")
-    def default_critical_options(self) -> Optional[pulumi.Input[Mapping[str, pulumi.Input[str]]]]:
+    def default_critical_options(self) -> Optional[pulumi.Input[Mapping[str, Any]]]:
         """
         Specifies a map of critical options that certificates have when signed.
         """
         return pulumi.get(self, "default_critical_options")
     @default_critical_options.setter
-    def default_critical_options(self, value: Optional[pulumi.Input[Mapping[str, pulumi.Input[str]]]]):
+    def default_critical_options(self, value: Optional[pulumi.Input[Mapping[str, Any]]]):
         pulumi.set(self, "default_critical_options", value)
     @property
     @pulumi.getter(name="defaultExtensions")
-    def default_extensions(self) -> Optional[pulumi.Input[Mapping[str, pulumi.Input[str]]]]:
+    def default_extensions(self) -> Optional[pulumi.Input[Mapping[str, Any]]]:
         """
         Specifies a map of extensions that certificates have when signed.
         """
         return pulumi.get(self, "default_extensions")
     @default_extensions.setter
-    def default_extensions(self, value: Optional[pulumi.Input[Mapping[str, pulumi.Input[str]]]]):
+    def default_extensions(self, value: Optional[pulumi.Input[Mapping[str, Any]]]):
         pulumi.set(self, "default_extensions", value)
     @property
@@ -469,7 +452,6 @@ class _SecretBackendRoleState:
     def __init__(__self__, *,
                  algorithm_signer: Optional[pulumi.Input[str]] = None,
                  allow_bare_domains: Optional[pulumi.Input[bool]] = None,
-                 allow_empty_principals: Optional[pulumi.Input[bool]] = None,
                  allow_host_certificates: Optional[pulumi.Input[bool]] = None,
                  allow_subdomains: Optional[pulumi.Input[bool]] = None,
                  allow_user_certificates: Optional[pulumi.Input[bool]] = None,
@@ -483,8 +465,8 @@ class _SecretBackendRoleState:
                  allowed_users_template: Optional[pulumi.Input[bool]] = None,
                  backend: Optional[pulumi.Input[str]] = None,
                  cidr_list: Optional[pulumi.Input[str]] = None,
-                 default_critical_options: Optional[pulumi.Input[Mapping[str, pulumi.Input[str]]]] = None,
-                 default_extensions: Optional[pulumi.Input[Mapping[str, pulumi.Input[str]]]] = None,
+                 default_critical_options: Optional[pulumi.Input[Mapping[str, Any]]] = None,
+                 default_extensions: Optional[pulumi.Input[Mapping[str, Any]]] = None,
                  default_user: Optional[pulumi.Input[str]] = None,
                  default_user_template: Optional[pulumi.Input[bool]] = None,
                  key_id_format: Optional[pulumi.Input[str]] = None,
@@ -514,8 +496,8 @@ class _SecretBackendRoleState:
         :param pulumi.Input[bool] allowed_users_template: Specifies if `allowed_users` can be declared using identity template policies. Non-templated users are also permitted.
         :param pulumi.Input[str] backend: The path where the SSH secret backend is mounted.
         :param pulumi.Input[str] cidr_list: The comma-separated string of CIDR blocks for which this role is applicable.
-        :param pulumi.Input[Mapping[str, pulumi.Input[str]]] default_critical_options: Specifies a map of critical options that certificates have when signed.
-        :param pulumi.Input[Mapping[str, pulumi.Input[str]]] default_extensions: Specifies a map of extensions that certificates have when signed.
+        :param pulumi.Input[Mapping[str, Any]] default_critical_options: Specifies a map of critical options that certificates have when signed.
+        :param pulumi.Input[Mapping[str, Any]] default_extensions: Specifies a map of extensions that certificates have when signed.
         :param pulumi.Input[str] default_user: Specifies the default username for which a credential will be generated.
         :param pulumi.Input[bool] default_user_template: If set, `default_users` can be specified using identity template values. A non-templated user is also permitted.
         :param pulumi.Input[str] key_id_format: Specifies a custom format for the key id of a signed certificate.
@@ -533,8 +515,6 @@ class _SecretBackendRoleState:
             pulumi.set(__self__, "algorithm_signer", algorithm_signer)
         if allow_bare_domains is not None:
             pulumi.set(__self__, "allow_bare_domains", allow_bare_domains)
-        if allow_empty_principals is not None:
-            pulumi.set(__self__, "allow_empty_principals", allow_empty_principals)
         if allow_host_certificates is not None:
             pulumi.set(__self__, "allow_host_certificates", allow_host_certificates)
         if allow_subdomains is not None:
@@ -608,15 +588,6 @@ class _SecretBackendRoleState:
     def allow_bare_domains(self, value: Optional[pulumi.Input[bool]]):
         pulumi.set(self, "allow_bare_domains", value)
-    @property
-    @pulumi.getter(name="allowEmptyPrincipals")
-    def allow_empty_principals(self) -> Optional[pulumi.Input[bool]]:
-        return pulumi.get(self, "allow_empty_principals")
-    @allow_empty_principals.setter
-    def allow_empty_principals(self, value: Optional[pulumi.Input[bool]]):
-        pulumi.set(self, "allow_empty_principals", value)
     @property
     @pulumi.getter(name="allowHostCertificates")
     def allow_host_certificates(self) -> Optional[pulumi.Input[bool]]:
@@ -778,26 +749,26 @@ class _SecretBackendRoleState:
     @property
     @pulumi.getter(name="defaultCriticalOptions")
-    def default_critical_options(self) -> Optional[pulumi.Input[Mapping[str, pulumi.Input[str]]]]:
+    def default_critical_options(self) -> Optional[pulumi.Input[Mapping[str, Any]]]:
         """
         Specifies a map of critical options that certificates have when signed.
         """
         return pulumi.get(self, "default_critical_options")
     @default_critical_options.setter
-    def default_critical_options(self, value: Optional[pulumi.Input[Mapping[str, pulumi.Input[str]]]]):
+    def default_critical_options(self, value: Optional[pulumi.Input[Mapping[str, Any]]]):
         pulumi.set(self, "default_critical_options", value)
     @property
     @pulumi.getter(name="defaultExtensions")
-    def default_extensions(self) -> Optional[pulumi.Input[Mapping[str, pulumi.Input[str]]]]:
+    def default_extensions(self) -> Optional[pulumi.Input[Mapping[str, Any]]]:
         """
         Specifies a map of extensions that certificates have when signed.
         """
         return pulumi.get(self, "default_extensions")
     @default_extensions.setter
-    def default_extensions(self, value: Optional[pulumi.Input[Mapping[str, pulumi.Input[str]]]]):
+    def default_extensions(self, value: Optional[pulumi.Input[Mapping[str, Any]]]):
         pulumi.set(self, "default_extensions", value)
     @property
@@ -919,7 +890,6 @@ class SecretBackendRole(pulumi.CustomResource):
                  opts: Optional[pulumi.ResourceOptions] = None,
                  algorithm_signer: Optional[pulumi.Input[str]] = None,
                  allow_bare_domains: Optional[pulumi.Input[bool]] = None,
-                 allow_empty_principals: Optional[pulumi.Input[bool]] = None,
                  allow_host_certificates: Optional[pulumi.Input[bool]] = None,
                  allow_subdomains: Optional[pulumi.Input[bool]] = None,
                  allow_user_certificates: Optional[pulumi.Input[bool]] = None,
@@ -933,8 +903,8 @@ class SecretBackendRole(pulumi.CustomResource):
                  allowed_users_template: Optional[pulumi.Input[bool]] = None,
                  backend: Optional[pulumi.Input[str]] = None,
                  cidr_list: Optional[pulumi.Input[str]] = None,
-                 default_critical_options: Optional[pulumi.Input[Mapping[str, pulumi.Input[str]]]] = None,
-                 default_extensions: Optional[pulumi.Input[Mapping[str, pulumi.Input[str]]]] = None,
+                 default_critical_options: Optional[pulumi.Input[Mapping[str, Any]]] = None,
+                 default_extensions: Optional[pulumi.Input[Mapping[str, Any]]] = None,
                  default_user: Optional[pulumi.Input[str]] = None,
                  default_user_template: Optional[pulumi.Input[bool]] = None,
                  key_id_format: Optional[pulumi.Input[str]] = None,
@@ -998,8 +968,8 @@ class SecretBackendRole(pulumi.CustomResource):
         :param pulumi.Input[bool] allowed_users_template: Specifies if `allowed_users` can be declared using identity template policies. Non-templated users are also permitted.
         :param pulumi.Input[str] backend: The path where the SSH secret backend is mounted.
         :param pulumi.Input[str] cidr_list: The comma-separated string of CIDR blocks for which this role is applicable.
-        :param pulumi.Input[Mapping[str, pulumi.Input[str]]] default_critical_options: Specifies a map of critical options that certificates have when signed.
-        :param pulumi.Input[Mapping[str, pulumi.Input[str]]] default_extensions: Specifies a map of extensions that certificates have when signed.
+        :param pulumi.Input[Mapping[str, Any]] default_critical_options: Specifies a map of critical options that certificates have when signed.
+        :param pulumi.Input[Mapping[str, Any]] default_extensions: Specifies a map of extensions that certificates have when signed.
         :param pulumi.Input[str] default_user: Specifies the default username for which a credential will be generated.
         :param pulumi.Input[bool] default_user_template: If set, `default_users` can be specified using identity template values. A non-templated user is also permitted.
         :param pulumi.Input[str] key_id_format: Specifies a custom format for the key id of a signed certificate.
@@ -1069,7 +1039,6 @@ class SecretBackendRole(pulumi.CustomResource):
                  opts: Optional[pulumi.ResourceOptions] = None,
                  algorithm_signer: Optional[pulumi.Input[str]] = None,
                  allow_bare_domains: Optional[pulumi.Input[bool]] = None,
-                 allow_empty_principals: Optional[pulumi.Input[bool]] = None,
                  allow_host_certificates: Optional[pulumi.Input[bool]] = None,
                  allow_subdomains: Optional[pulumi.Input[bool]] = None,
                  allow_user_certificates: Optional[pulumi.Input[bool]] = None,
@@ -1083,8 +1052,8 @@ class SecretBackendRole(pulumi.CustomResource):
                  allowed_users_template: Optional[pulumi.Input[bool]] = None,
                  backend: Optional[pulumi.Input[str]] = None,
                  cidr_list: Optional[pulumi.Input[str]] = None,
-                 default_critical_options: Optional[pulumi.Input[Mapping[str, pulumi.Input[str]]]] = None,
-                 default_extensions: Optional[pulumi.Input[Mapping[str, pulumi.Input[str]]]] = None,
+                 default_critical_options: Optional[pulumi.Input[Mapping[str, Any]]] = None,
+                 default_extensions: Optional[pulumi.Input[Mapping[str, Any]]] = None,
                  default_user: Optional[pulumi.Input[str]] = None,
                  default_user_template: Optional[pulumi.Input[bool]] = None,
                  key_id_format: Optional[pulumi.Input[str]] = None,
@@ -1105,7 +1074,6 @@ class SecretBackendRole(pulumi.CustomResource):
             __props__.__dict__["algorithm_signer"] = algorithm_signer
             __props__.__dict__["allow_bare_domains"] = allow_bare_domains
-            __props__.__dict__["allow_empty_principals"] = allow_empty_principals
             __props__.__dict__["allow_host_certificates"] = allow_host_certificates
             __props__.__dict__["allow_subdomains"] = allow_subdomains
             __props__.__dict__["allow_user_certificates"] = allow_user_certificates
@@ -1146,7 +1114,6 @@ class SecretBackendRole(pulumi.CustomResource):
             opts: Optional[pulumi.ResourceOptions] = None,
             algorithm_signer: Optional[pulumi.Input[str]] = None,
             allow_bare_domains: Optional[pulumi.Input[bool]] = None,
-            allow_empty_principals: Optional[pulumi.Input[bool]] = None,
             allow_host_certificates: Optional[pulumi.Input[bool]] = None,
             allow_subdomains: Optional[pulumi.Input[bool]] = None,
             allow_user_certificates: Optional[pulumi.Input[bool]] = None,
@@ -1160,8 +1127,8 @@ class SecretBackendRole(pulumi.CustomResource):
             allowed_users_template: Optional[pulumi.Input[bool]] = None,
             backend: Optional[pulumi.Input[str]] = None,
             cidr_list: Optional[pulumi.Input[str]] = None,
-            default_critical_options: Optional[pulumi.Input[Mapping[str, pulumi.Input[str]]]] = None,
-            default_extensions: Optional[pulumi.Input[Mapping[str, pulumi.Input[str]]]] = None,
+            default_critical_options: Optional[pulumi.Input[Mapping[str, Any]]] = None,
+            default_extensions: Optional[pulumi.Input[Mapping[str, Any]]] = None,
             default_user: Optional[pulumi.Input[str]] = None,
             default_user_template: Optional[pulumi.Input[bool]] = None,
             key_id_format: Optional[pulumi.Input[str]] = None,
@@ -1196,8 +1163,8 @@ class SecretBackendRole(pulumi.CustomResource):
         :param pulumi.Input[bool] allowed_users_template: Specifies if `allowed_users` can be declared using identity template policies. Non-templated users are also permitted.
         :param pulumi.Input[str] backend: The path where the SSH secret backend is mounted.
         :param pulumi.Input[str] cidr_list: The comma-separated string of CIDR blocks for which this role is applicable.
-        :param pulumi.Input[Mapping[str, pulumi.Input[str]]] default_critical_options: Specifies a map of critical options that certificates have when signed.
-        :param pulumi.Input[Mapping[str, pulumi.Input[str]]] default_extensions: Specifies a map of extensions that certificates have when signed.
+        :param pulumi.Input[Mapping[str, Any]] default_critical_options: Specifies a map of critical options that certificates have when signed.
+        :param pulumi.Input[Mapping[str, Any]] default_extensions: Specifies a map of extensions that certificates have when signed.
         :param pulumi.Input[str] default_user: Specifies the default username for which a credential will be generated.
         :param pulumi.Input[bool] default_user_template: If set, `default_users` can be specified using identity template values. A non-templated user is also permitted.
         :param pulumi.Input[str] key_id_format: Specifies a custom format for the key id of a signed certificate.
@@ -1217,7 +1184,6 @@ class SecretBackendRole(pulumi.CustomResource):
         __props__.__dict__["algorithm_signer"] = algorithm_signer
         __props__.__dict__["allow_bare_domains"] = allow_bare_domains
-        __props__.__dict__["allow_empty_principals"] = allow_empty_principals
         __props__.__dict__["allow_host_certificates"] = allow_host_certificates
         __props__.__dict__["allow_subdomains"] = allow_subdomains
         __props__.__dict__["allow_user_certificates"] = allow_user_certificates
@@ -1260,11 +1226,6 @@ class SecretBackendRole(pulumi.CustomResource):
         """
         return pulumi.get(self, "allow_bare_domains")
-    @property
-    @pulumi.getter(name="allowEmptyPrincipals")
-    def allow_empty_principals(self) -> pulumi.Output[Optional[bool]]:
-        return pulumi.get(self, "allow_empty_principals")
     @property
     @pulumi.getter(name="allowHostCertificates")
     def allow_host_certificates(self) -> pulumi.Output[Optional[bool]]:
@@ -1374,7 +1335,7 @@ class SecretBackendRole(pulumi.CustomResource):
     @property
     @pulumi.getter(name="defaultCriticalOptions")
-    def default_critical_options(self) -> pulumi.Output[Optional[Mapping[str, str]]]:
+    def default_critical_options(self) -> pulumi.Output[Optional[Mapping[str, Any]]]:
         """
         Specifies a map of critical options that certificates have when signed.
         """
@@ -1382,7 +1343,7 @@ class SecretBackendRole(pulumi.CustomResource):
     @property
     @pulumi.getter(name="defaultExtensions")
-    def default_extensions(self) -> pulumi.Output[Optional[Mapping[str, str]]]:
+    def default_extensions(self) -> pulumi.Output[Optional[Mapping[str, Any]]]:
         """
         Specifies a map of extensions that certificates have when signed.
         """

pulumi_vault/terraformcloud/secret_backend.py CHANGED Viewed

@@ -4,14 +4,9 @@
 import copy
 import warnings
-import sys
 import pulumi
 import pulumi.runtime
 from typing import Any, Mapping, Optional, Sequence, Union, overload
-if sys.version_info >= (3, 11):
-    from typing import NotRequired, TypedDict, TypeAlias
-else:
-    from typing_extensions import NotRequired, TypedDict, TypeAlias
 from .. import _utilities
 __all__ = ['SecretBackendArgs', 'SecretBackend']

pulumi_vault/terraformcloud/secret_creds.py CHANGED Viewed

@@ -4,14 +4,9 @@
 import copy
 import warnings
-import sys
 import pulumi
 import pulumi.runtime
 from typing import Any, Mapping, Optional, Sequence, Union, overload
-if sys.version_info >= (3, 11):
-    from typing import NotRequired, TypedDict, TypeAlias
-else:
-    from typing_extensions import NotRequired, TypedDict, TypeAlias
 from .. import _utilities
 __all__ = ['SecretCredsArgs', 'SecretCreds']

pulumi_vault/terraformcloud/secret_role.py CHANGED Viewed

@@ -4,14 +4,9 @@
 import copy
 import warnings
-import sys
 import pulumi
 import pulumi.runtime
 from typing import Any, Mapping, Optional, Sequence, Union, overload
-if sys.version_info >= (3, 11):
-    from typing import NotRequired, TypedDict, TypeAlias
-else:
-    from typing_extensions import NotRequired, TypedDict, TypeAlias
 from .. import _utilities
 __all__ = ['SecretRoleArgs', 'SecretRole']

pulumi_vault/token.py CHANGED Viewed

@@ -4,14 +4,9 @@
 import copy
 import warnings
-import sys
 import pulumi
 import pulumi.runtime
 from typing import Any, Mapping, Optional, Sequence, Union, overload
-if sys.version_info >= (3, 11):
-    from typing import NotRequired, TypedDict, TypeAlias
-else:
-    from typing_extensions import NotRequired, TypedDict, TypeAlias
 from . import _utilities
 __all__ = ['TokenArgs', 'Token']

pulumi_vault/tokenauth/auth_backend_role.py CHANGED Viewed

@@ -4,14 +4,9 @@
 import copy
 import warnings
-import sys
 import pulumi
 import pulumi.runtime
 from typing import Any, Mapping, Optional, Sequence, Union, overload
-if sys.version_info >= (3, 11):
-    from typing import NotRequired, TypedDict, TypeAlias
-else:
-    from typing_extensions import NotRequired, TypedDict, TypeAlias
 from .. import _utilities
 __all__ = ['AuthBackendRoleArgs', 'AuthBackendRole']
@@ -52,6 +47,8 @@ class AuthBackendRoleArgs:
                *Available only for Vault Enterprise*.
         :param pulumi.Input[bool] orphan: If true, tokens created against this policy will be orphan tokens.
         :param pulumi.Input[str] path_suffix: Tokens created against this role will have the given suffix as part of their path in addition to the role name.
+               > Due to a bug the resource. This *will* cause all existing tokens issued by this role to be revoked.
         :param pulumi.Input[bool] renewable: Whether to disable the ability of the token to be renewed past its initial TTL.
         :param pulumi.Input[Sequence[pulumi.Input[str]]] token_bound_cidrs: Specifies the blocks of IP addresses which are allowed to use the generated token
         :param pulumi.Input[int] token_explicit_max_ttl: Generated Token's Explicit Maximum TTL in seconds
@@ -205,6 +202,8 @@ class AuthBackendRoleArgs:
     def path_suffix(self) -> Optional[pulumi.Input[str]]:
         """
         Tokens created against this role will have the given suffix as part of their path in addition to the role name.
+        > Due to a bug the resource. This *will* cause all existing tokens issued by this role to be revoked.
         """
         return pulumi.get(self, "path_suffix")
@@ -368,6 +367,8 @@ class _AuthBackendRoleState:
                *Available only for Vault Enterprise*.
         :param pulumi.Input[bool] orphan: If true, tokens created against this policy will be orphan tokens.
         :param pulumi.Input[str] path_suffix: Tokens created against this role will have the given suffix as part of their path in addition to the role name.
+               > Due to a bug the resource. This *will* cause all existing tokens issued by this role to be revoked.
         :param pulumi.Input[bool] renewable: Whether to disable the ability of the token to be renewed past its initial TTL.
         :param pulumi.Input[str] role_name: The name of the role.
         :param pulumi.Input[Sequence[pulumi.Input[str]]] token_bound_cidrs: Specifies the blocks of IP addresses which are allowed to use the generated token
@@ -511,6 +512,8 @@ class _AuthBackendRoleState:
     def path_suffix(self) -> Optional[pulumi.Input[str]]:
         """
         Tokens created against this role will have the given suffix as part of their path in addition to the role name.
+        > Due to a bug the resource. This *will* cause all existing tokens issued by this role to be revoked.
         """
         return pulumi.get(self, "path_suffix")
@@ -723,6 +726,8 @@ class AuthBackendRole(pulumi.CustomResource):
                *Available only for Vault Enterprise*.
         :param pulumi.Input[bool] orphan: If true, tokens created against this policy will be orphan tokens.
         :param pulumi.Input[str] path_suffix: Tokens created against this role will have the given suffix as part of their path in addition to the role name.
+               > Due to a bug the resource. This *will* cause all existing tokens issued by this role to be revoked.
         :param pulumi.Input[bool] renewable: Whether to disable the ability of the token to be renewed past its initial TTL.
         :param pulumi.Input[str] role_name: The name of the role.
         :param pulumi.Input[Sequence[pulumi.Input[str]]] token_bound_cidrs: Specifies the blocks of IP addresses which are allowed to use the generated token
@@ -886,6 +891,8 @@ class AuthBackendRole(pulumi.CustomResource):
                *Available only for Vault Enterprise*.
         :param pulumi.Input[bool] orphan: If true, tokens created against this policy will be orphan tokens.
         :param pulumi.Input[str] path_suffix: Tokens created against this role will have the given suffix as part of their path in addition to the role name.
+               > Due to a bug the resource. This *will* cause all existing tokens issued by this role to be revoked.
         :param pulumi.Input[bool] renewable: Whether to disable the ability of the token to be renewed past its initial TTL.
         :param pulumi.Input[str] role_name: The name of the role.
         :param pulumi.Input[Sequence[pulumi.Input[str]]] token_bound_cidrs: Specifies the blocks of IP addresses which are allowed to use the generated token
@@ -987,6 +994,8 @@ class AuthBackendRole(pulumi.CustomResource):
     def path_suffix(self) -> pulumi.Output[Optional[str]]:
         """
         Tokens created against this role will have the given suffix as part of their path in addition to the role name.
+        > Due to a bug the resource. This *will* cause all existing tokens issued by this role to be revoked.
         """
         return pulumi.get(self, "path_suffix")

pulumi_vault/transform/alphabet.py CHANGED Viewed

@@ -4,14 +4,9 @@
 import copy
 import warnings
-import sys
 import pulumi
 import pulumi.runtime
 from typing import Any, Mapping, Optional, Sequence, Union, overload
-if sys.version_info >= (3, 11):
-    from typing import NotRequired, TypedDict, TypeAlias
-else:
-    from typing_extensions import NotRequired, TypedDict, TypeAlias
 from .. import _utilities
 __all__ = ['AlphabetArgs', 'Alphabet']

pulumi-vault 6.4.0__py3-none-any.whl → 6.4.0a1723454543__py3-none-any.whl

pulumi-vault 6.4.0py3-none-any.whl → 6.4.0a1723454543py3-none-any.whl