pulumi-vault 6.4.0__py3-none-any.whl → 6.4.0a1723454543__py3-none-any.whl

pulumi_vault/database/outputs.py

@@ -4,14 +4,9 @@
 
 import copy
 import warnings
-import sys
 import pulumi
 import pulumi.runtime
 from typing import Any, Mapping, Optional, Sequence, Union, overload
-if sys.version_info >= (3, 11):
-    from typing import NotRequired, TypedDict, TypeAlias
-else:
-    from typing_extensions import NotRequired, TypedDict, TypeAlias
 from .. import _utilities
 
 __all__ = [
@@ -68,8 +63,6 @@ class SecretBackendConnectionCassandra(dict):
             suggest = "pem_json"
         elif key == "protocolVersion":
             suggest = "protocol_version"
-        elif key == "skipVerification":
-            suggest = "skip_verification"
 
         if suggest:
             pulumi.log.warn(f"Key '{key}' not found in SecretBackendConnectionCassandra. Access the value via the '{suggest}' property getter instead.")
@@ -91,7 +84,6 @@ class SecretBackendConnectionCassandra(dict):
                  pem_json: Optional[str] = None,
                  port: Optional[int] = None,
                  protocol_version: Optional[int] = None,
-                 skip_verification: Optional[bool] = None,
                  tls: Optional[bool] = None,
                  username: Optional[str] = None):
         """
@@ -103,7 +95,6 @@ class SecretBackendConnectionCassandra(dict):
         :param str pem_json: Specifies JSON containing a certificate and private key; a certificate, private key, and issuing CA certificate; or just a CA certificate.
         :param int port: The transport port to use to connect to Cassandra.
         :param int protocol_version: The CQL protocol version to use.
-        :param bool skip_verification: Skip permissions checks when a connection to Cassandra is first created. These checks ensure that Vault is able to create roles, but can be resource intensive in clusters with many roles.
         :param bool tls: Whether to use TLS when connecting to Cassandra.
         :param str username: The username to use when authenticating with Cassandra.
         """
@@ -123,8 +114,6 @@ class SecretBackendConnectionCassandra(dict):
             pulumi.set(__self__, "port", port)
         if protocol_version is not None:
             pulumi.set(__self__, "protocol_version", protocol_version)
-        if skip_verification is not None:
-            pulumi.set(__self__, "skip_verification", skip_verification)
         if tls is not None:
             pulumi.set(__self__, "tls", tls)
         if username is not None:
@@ -194,14 +183,6 @@ class SecretBackendConnectionCassandra(dict):
         """
         return pulumi.get(self, "protocol_version")
 
-    @property
-    @pulumi.getter(name="skipVerification")
-    def skip_verification(self) -> Optional[bool]:
-        """
-        Skip permissions checks when a connection to Cassandra is first created. These checks ensure that Vault is able to create roles, but can be resource intensive in clusters with many roles.
-        """
-        return pulumi.get(self, "skip_verification")
-
     @property
     @pulumi.getter
     def tls(self) -> Optional[bool]:
@@ -1928,16 +1909,8 @@ class SecretBackendConnectionPostgresql(dict):
             suggest = "max_idle_connections"
         elif key == "maxOpenConnections":
             suggest = "max_open_connections"
-        elif key == "privateKey":
-            suggest = "private_key"
-        elif key == "selfManaged":
-            suggest = "self_managed"
         elif key == "serviceAccountJson":
             suggest = "service_account_json"
-        elif key == "tlsCa":
-            suggest = "tls_ca"
-        elif key == "tlsCertificate":
-            suggest = "tls_certificate"
         elif key == "usernameTemplate":
             suggest = "username_template"
 
@@ -1960,11 +1933,7 @@ class SecretBackendConnectionPostgresql(dict):
                  max_idle_connections: Optional[int] = None,
                  max_open_connections: Optional[int] = None,
                  password: Optional[str] = None,
-                 private_key: Optional[str] = None,
-                 self_managed: Optional[bool] = None,
                  service_account_json: Optional[str] = None,
-                 tls_ca: Optional[str] = None,
-                 tls_certificate: Optional[str] = None,
                  username: Optional[str] = None,
                  username_template: Optional[str] = None):
         """
@@ -1975,11 +1944,7 @@ class SecretBackendConnectionPostgresql(dict):
         :param int max_idle_connections: Maximum number of idle connections to the database.
         :param int max_open_connections: Maximum number of open connections to the database.
         :param str password: The root credential password used in the connection URL
-        :param str private_key: The secret key used for the x509 client certificate. Must be PEM encoded.
-        :param bool self_managed: If set, allows onboarding static roles with a rootless connection configuration.
         :param str service_account_json: A JSON encoded credential for use with IAM authorization
-        :param str tls_ca: The x509 CA file for validating the certificate presented by the PostgreSQL server. Must be PEM encoded.
-        :param str tls_certificate: The x509 client certificate for connecting to the database. Must be PEM encoded.
         :param str username: The root credential username used in the connection URL
         :param str username_template: Username generation template.
         """
@@ -1997,16 +1962,8 @@ class SecretBackendConnectionPostgresql(dict):
             pulumi.set(__self__, "max_open_connections", max_open_connections)
         if password is not None:
             pulumi.set(__self__, "password", password)
-        if private_key is not None:
-            pulumi.set(__self__, "private_key", private_key)
-        if self_managed is not None:
-            pulumi.set(__self__, "self_managed", self_managed)
         if service_account_json is not None:
             pulumi.set(__self__, "service_account_json", service_account_json)
-        if tls_ca is not None:
-            pulumi.set(__self__, "tls_ca", tls_ca)
-        if tls_certificate is not None:
-            pulumi.set(__self__, "tls_certificate", tls_certificate)
         if username is not None:
             pulumi.set(__self__, "username", username)
         if username_template is not None:
@@ -2068,22 +2025,6 @@ class SecretBackendConnectionPostgresql(dict):
         """
         return pulumi.get(self, "password")
 
-    @property
-    @pulumi.getter(name="privateKey")
-    def private_key(self) -> Optional[str]:
-        """
-        The secret key used for the x509 client certificate. Must be PEM encoded.
-        """
-        return pulumi.get(self, "private_key")
-
-    @property
-    @pulumi.getter(name="selfManaged")
-    def self_managed(self) -> Optional[bool]:
-        """
-        If set, allows onboarding static roles with a rootless connection configuration.
-        """
-        return pulumi.get(self, "self_managed")
-
     @property
     @pulumi.getter(name="serviceAccountJson")
     def service_account_json(self) -> Optional[str]:
@@ -2092,22 +2033,6 @@ class SecretBackendConnectionPostgresql(dict):
         """
         return pulumi.get(self, "service_account_json")
 
-    @property
-    @pulumi.getter(name="tlsCa")
-    def tls_ca(self) -> Optional[str]:
-        """
-        The x509 CA file for validating the certificate presented by the PostgreSQL server. Must be PEM encoded.
-        """
-        return pulumi.get(self, "tls_ca")
-
-    @property
-    @pulumi.getter(name="tlsCertificate")
-    def tls_certificate(self) -> Optional[str]:
-        """
-        The x509 client certificate for connecting to the database. Must be PEM encoded.
-        """
-        return pulumi.get(self, "tls_certificate")
-
     @property
     @pulumi.getter
     def username(self) -> Optional[str]:
@@ -2553,8 +2478,6 @@ class SecretsMountCassandra(dict):
             suggest = "protocol_version"
         elif key == "rootRotationStatements":
             suggest = "root_rotation_statements"
-        elif key == "skipVerification":
-            suggest = "skip_verification"
         elif key == "verifyConnection":
             suggest = "verify_connection"
 
@@ -2573,7 +2496,7 @@ class SecretsMountCassandra(dict):
                  name: str,
                  allowed_roles: Optional[Sequence[str]] = None,
                  connect_timeout: Optional[int] = None,
-                 data: Optional[Mapping[str, str]] = None,
+                 data: Optional[Mapping[str, Any]] = None,
                  hosts: Optional[Sequence[str]] = None,
                  insecure_tls: Optional[bool] = None,
                  password: Optional[str] = None,
@@ -2583,7 +2506,6 @@ class SecretsMountCassandra(dict):
                  port: Optional[int] = None,
                  protocol_version: Optional[int] = None,
                  root_rotation_statements: Optional[Sequence[str]] = None,
-                 skip_verification: Optional[bool] = None,
                  tls: Optional[bool] = None,
                  username: Optional[str] = None,
                  verify_connection: Optional[bool] = None):
@@ -2592,7 +2514,7 @@ class SecretsMountCassandra(dict):
         :param Sequence[str] allowed_roles: A list of roles that are allowed to use this
                connection.
         :param int connect_timeout: The number of seconds to use as a connection timeout.
-        :param Mapping[str, str] data: A map of sensitive data to pass to the endpoint. Useful for templated connection strings.
+        :param Mapping[str, Any] data: A map of sensitive data to pass to the endpoint. Useful for templated connection strings.
                
                Supported list of database secrets engines that can be configured:
         :param Sequence[str] hosts: Cassandra hosts to connect to.
@@ -2604,7 +2526,6 @@ class SecretsMountCassandra(dict):
         :param int port: The transport port to use to connect to Cassandra.
         :param int protocol_version: The CQL protocol version to use.
         :param Sequence[str] root_rotation_statements: A list of database statements to be executed to rotate the root user's credentials.
-        :param bool skip_verification: Skip permissions checks when a connection to Cassandra is first created. These checks ensure that Vault is able to create roles, but can be resource intensive in clusters with many roles.
         :param bool tls: Whether to use TLS when connecting to Cassandra.
         :param str username: The username to use when authenticating with Cassandra.
         :param bool verify_connection: Whether the connection should be verified on
@@ -2635,8 +2556,6 @@ class SecretsMountCassandra(dict):
             pulumi.set(__self__, "protocol_version", protocol_version)
         if root_rotation_statements is not None:
             pulumi.set(__self__, "root_rotation_statements", root_rotation_statements)
-        if skip_verification is not None:
-            pulumi.set(__self__, "skip_verification", skip_verification)
         if tls is not None:
             pulumi.set(__self__, "tls", tls)
         if username is not None:
@@ -2671,7 +2590,7 @@ class SecretsMountCassandra(dict):
 
     @property
     @pulumi.getter
-    def data(self) -> Optional[Mapping[str, str]]:
+    def data(self) -> Optional[Mapping[str, Any]]:
         """
         A map of sensitive data to pass to the endpoint. Useful for templated connection strings.
 
@@ -2751,14 +2670,6 @@ class SecretsMountCassandra(dict):
         """
         return pulumi.get(self, "root_rotation_statements")
 
-    @property
-    @pulumi.getter(name="skipVerification")
-    def skip_verification(self) -> Optional[bool]:
-        """
-        Skip permissions checks when a connection to Cassandra is first created. These checks ensure that Vault is able to create roles, but can be resource intensive in clusters with many roles.
-        """
-        return pulumi.get(self, "skip_verification")
-
     @property
     @pulumi.getter
     def tls(self) -> Optional[bool]:
@@ -2826,7 +2737,7 @@ class SecretsMountCouchbase(dict):
                  allowed_roles: Optional[Sequence[str]] = None,
                  base64_pem: Optional[str] = None,
                  bucket_name: Optional[str] = None,
-                 data: Optional[Mapping[str, str]] = None,
+                 data: Optional[Mapping[str, Any]] = None,
                  insecure_tls: Optional[bool] = None,
                  plugin_name: Optional[str] = None,
                  root_rotation_statements: Optional[Sequence[str]] = None,
@@ -2842,7 +2753,7 @@ class SecretsMountCouchbase(dict):
                connection.
         :param str base64_pem: Required if `tls` is `true`. Specifies the certificate authority of the Couchbase server, as a PEM certificate that has been base64 encoded.
         :param str bucket_name: Required for Couchbase versions prior to 6.5.0. This is only used to verify vault's connection to the server.
-        :param Mapping[str, str] data: A map of sensitive data to pass to the endpoint. Useful for templated connection strings.
+        :param Mapping[str, Any] data: A map of sensitive data to pass to the endpoint. Useful for templated connection strings.
                
                Supported list of database secrets engines that can be configured:
         :param bool insecure_tls: Specifies whether to skip verification of the server certificate when using TLS.
@@ -2937,7 +2848,7 @@ class SecretsMountCouchbase(dict):
 
     @property
     @pulumi.getter
-    def data(self) -> Optional[Mapping[str, str]]:
+    def data(self) -> Optional[Mapping[str, Any]]:
         """
         A map of sensitive data to pass to the endpoint. Useful for templated connection strings.
 
@@ -3042,7 +2953,7 @@ class SecretsMountElasticsearch(dict):
                  ca_path: Optional[str] = None,
                  client_cert: Optional[str] = None,
                  client_key: Optional[str] = None,
-                 data: Optional[Mapping[str, str]] = None,
+                 data: Optional[Mapping[str, Any]] = None,
                  insecure: Optional[bool] = None,
                  plugin_name: Optional[str] = None,
                  root_rotation_statements: Optional[Sequence[str]] = None,
@@ -3060,7 +2971,7 @@ class SecretsMountElasticsearch(dict):
         :param str ca_path: The path to a directory of PEM-encoded CA cert files to use to verify the Elasticsearch server's identity
         :param str client_cert: The path to the certificate for the Elasticsearch client to present for communication
         :param str client_key: The path to the key for the Elasticsearch client to use for communication
-        :param Mapping[str, str] data: A map of sensitive data to pass to the endpoint. Useful for templated connection strings.
+        :param Mapping[str, Any] data: A map of sensitive data to pass to the endpoint. Useful for templated connection strings.
                
                Supported list of database secrets engines that can be configured:
         :param bool insecure: Whether to disable certificate verification
@@ -3175,7 +3086,7 @@ class SecretsMountElasticsearch(dict):
 
     @property
     @pulumi.getter
-    def data(self) -> Optional[Mapping[str, str]]:
+    def data(self) -> Optional[Mapping[str, Any]]:
         """
         A map of sensitive data to pass to the endpoint. Useful for templated connection strings.
 
@@ -3272,7 +3183,7 @@ class SecretsMountHana(dict):
                  name: str,
                  allowed_roles: Optional[Sequence[str]] = None,
                  connection_url: Optional[str] = None,
-                 data: Optional[Mapping[str, str]] = None,
+                 data: Optional[Mapping[str, Any]] = None,
                  disable_escaping: Optional[bool] = None,
                  max_connection_lifetime: Optional[int] = None,
                  max_idle_connections: Optional[int] = None,
@@ -3287,7 +3198,7 @@ class SecretsMountHana(dict):
         :param Sequence[str] allowed_roles: A list of roles that are allowed to use this
                connection.
         :param str connection_url: Connection string to use to connect to the database.
-        :param Mapping[str, str] data: A map of sensitive data to pass to the endpoint. Useful for templated connection strings.
+        :param Mapping[str, Any] data: A map of sensitive data to pass to the endpoint. Useful for templated connection strings.
                
                Supported list of database secrets engines that can be configured:
         :param bool disable_escaping: Disable special character escaping in username and password
@@ -3354,7 +3265,7 @@ class SecretsMountHana(dict):
 
     @property
     @pulumi.getter
-    def data(self) -> Optional[Mapping[str, str]]:
+    def data(self) -> Optional[Mapping[str, Any]]:
         """
         A map of sensitive data to pass to the endpoint. Useful for templated connection strings.
 
@@ -3478,7 +3389,7 @@ class SecretsMountInfluxdb(dict):
                  username: str,
                  allowed_roles: Optional[Sequence[str]] = None,
                  connect_timeout: Optional[int] = None,
-                 data: Optional[Mapping[str, str]] = None,
+                 data: Optional[Mapping[str, Any]] = None,
                  insecure_tls: Optional[bool] = None,
                  pem_bundle: Optional[str] = None,
                  pem_json: Optional[str] = None,
@@ -3496,7 +3407,7 @@ class SecretsMountInfluxdb(dict):
         :param Sequence[str] allowed_roles: A list of roles that are allowed to use this
                connection.
         :param int connect_timeout: The number of seconds to use as a connection timeout.
-        :param Mapping[str, str] data: A map of sensitive data to pass to the endpoint. Useful for templated connection strings.
+        :param Mapping[str, Any] data: A map of sensitive data to pass to the endpoint. Useful for templated connection strings.
                
                Supported list of database secrets engines that can be configured:
         :param bool insecure_tls: Whether to skip verification of the server certificate when using TLS.
@@ -3590,7 +3501,7 @@ class SecretsMountInfluxdb(dict):
 
     @property
     @pulumi.getter
-    def data(self) -> Optional[Mapping[str, str]]:
+    def data(self) -> Optional[Mapping[str, Any]]:
         """
         A map of sensitive data to pass to the endpoint. Useful for templated connection strings.
 
@@ -3711,7 +3622,7 @@ class SecretsMountMongodb(dict):
                  name: str,
                  allowed_roles: Optional[Sequence[str]] = None,
                  connection_url: Optional[str] = None,
-                 data: Optional[Mapping[str, str]] = None,
+                 data: Optional[Mapping[str, Any]] = None,
                  max_connection_lifetime: Optional[int] = None,
                  max_idle_connections: Optional[int] = None,
                  max_open_connections: Optional[int] = None,
@@ -3726,7 +3637,7 @@ class SecretsMountMongodb(dict):
         :param Sequence[str] allowed_roles: A list of roles that are allowed to use this
                connection.
         :param str connection_url: Connection string to use to connect to the database.
-        :param Mapping[str, str] data: A map of sensitive data to pass to the endpoint. Useful for templated connection strings.
+        :param Mapping[str, Any] data: A map of sensitive data to pass to the endpoint. Useful for templated connection strings.
                
                Supported list of database secrets engines that can be configured:
         :param int max_connection_lifetime: Maximum number of seconds a connection may be reused.
@@ -3793,7 +3704,7 @@ class SecretsMountMongodb(dict):
 
     @property
     @pulumi.getter
-    def data(self) -> Optional[Mapping[str, str]]:
+    def data(self) -> Optional[Mapping[str, Any]]:
         """
         A map of sensitive data to pass to the endpoint. Useful for templated connection strings.
 
@@ -3912,7 +3823,7 @@ class SecretsMountMongodbatla(dict):
                  project_id: str,
                  public_key: str,
                  allowed_roles: Optional[Sequence[str]] = None,
-                 data: Optional[Mapping[str, str]] = None,
+                 data: Optional[Mapping[str, Any]] = None,
                  plugin_name: Optional[str] = None,
                  root_rotation_statements: Optional[Sequence[str]] = None,
                  verify_connection: Optional[bool] = None):
@@ -3923,7 +3834,7 @@ class SecretsMountMongodbatla(dict):
         :param str public_key: The Public Programmatic API Key used to authenticate with the MongoDB Atlas API.
         :param Sequence[str] allowed_roles: A list of roles that are allowed to use this
                connection.
-        :param Mapping[str, str] data: A map of sensitive data to pass to the endpoint. Useful for templated connection strings.
+        :param Mapping[str, Any] data: A map of sensitive data to pass to the endpoint. Useful for templated connection strings.
                
                Supported list of database secrets engines that can be configured:
         :param str plugin_name: Specifies the name of the plugin to use.
@@ -3989,7 +3900,7 @@ class SecretsMountMongodbatla(dict):
 
     @property
     @pulumi.getter
-    def data(self) -> Optional[Mapping[str, str]]:
+    def data(self) -> Optional[Mapping[str, Any]]:
         """
         A map of sensitive data to pass to the endpoint. Useful for templated connection strings.
 
@@ -4067,7 +3978,7 @@ class SecretsMountMssql(dict):
                  allowed_roles: Optional[Sequence[str]] = None,
                  connection_url: Optional[str] = None,
                  contained_db: Optional[bool] = None,
-                 data: Optional[Mapping[str, str]] = None,
+                 data: Optional[Mapping[str, Any]] = None,
                  disable_escaping: Optional[bool] = None,
                  max_connection_lifetime: Optional[int] = None,
                  max_idle_connections: Optional[int] = None,
@@ -4084,7 +3995,7 @@ class SecretsMountMssql(dict):
                connection.
         :param str connection_url: Connection string to use to connect to the database.
         :param bool contained_db: Set to true when the target is a Contained Database, e.g. AzureSQL.
-        :param Mapping[str, str] data: A map of sensitive data to pass to the endpoint. Useful for templated connection strings.
+        :param Mapping[str, Any] data: A map of sensitive data to pass to the endpoint. Useful for templated connection strings.
                
                Supported list of database secrets engines that can be configured:
         :param bool disable_escaping: Disable special character escaping in username and password
@@ -4164,7 +4075,7 @@ class SecretsMountMssql(dict):
 
     @property
     @pulumi.getter
-    def data(self) -> Optional[Mapping[str, str]]:
+    def data(self) -> Optional[Mapping[str, Any]]:
         """
         A map of sensitive data to pass to the endpoint. Useful for templated connection strings.
 
@@ -4302,7 +4213,7 @@ class SecretsMountMysql(dict):
                  allowed_roles: Optional[Sequence[str]] = None,
                  auth_type: Optional[str] = None,
                  connection_url: Optional[str] = None,
-                 data: Optional[Mapping[str, str]] = None,
+                 data: Optional[Mapping[str, Any]] = None,
                  max_connection_lifetime: Optional[int] = None,
                  max_idle_connections: Optional[int] = None,
                  max_open_connections: Optional[int] = None,
@@ -4321,7 +4232,7 @@ class SecretsMountMysql(dict):
                connection.
         :param str auth_type: Specify alternative authorization type. (Only 'gcp_iam' is valid currently)
         :param str connection_url: Connection string to use to connect to the database.
-        :param Mapping[str, str] data: A map of sensitive data to pass to the endpoint. Useful for templated connection strings.
+        :param Mapping[str, Any] data: A map of sensitive data to pass to the endpoint. Useful for templated connection strings.
                
                Supported list of database secrets engines that can be configured:
         :param int max_connection_lifetime: Maximum number of seconds a connection may be reused.
@@ -4407,7 +4318,7 @@ class SecretsMountMysql(dict):
 
     @property
     @pulumi.getter
-    def data(self) -> Optional[Mapping[str, str]]:
+    def data(self) -> Optional[Mapping[str, Any]]:
         """
         A map of sensitive data to pass to the endpoint. Useful for templated connection strings.
 
@@ -4561,7 +4472,7 @@ class SecretsMountMysqlAurora(dict):
                  allowed_roles: Optional[Sequence[str]] = None,
                  auth_type: Optional[str] = None,
                  connection_url: Optional[str] = None,
-                 data: Optional[Mapping[str, str]] = None,
+                 data: Optional[Mapping[str, Any]] = None,
                  max_connection_lifetime: Optional[int] = None,
                  max_idle_connections: Optional[int] = None,
                  max_open_connections: Optional[int] = None,
@@ -4580,7 +4491,7 @@ class SecretsMountMysqlAurora(dict):
                connection.
         :param str auth_type: Specify alternative authorization type. (Only 'gcp_iam' is valid currently)
         :param str connection_url: Connection string to use to connect to the database.
-        :param Mapping[str, str] data: A map of sensitive data to pass to the endpoint. Useful for templated connection strings.
+        :param Mapping[str, Any] data: A map of sensitive data to pass to the endpoint. Useful for templated connection strings.
                
                Supported list of database secrets engines that can be configured:
         :param int max_connection_lifetime: Maximum number of seconds a connection may be reused.
@@ -4666,7 +4577,7 @@ class SecretsMountMysqlAurora(dict):
 
     @property
     @pulumi.getter
-    def data(self) -> Optional[Mapping[str, str]]:
+    def data(self) -> Optional[Mapping[str, Any]]:
         """
         A map of sensitive data to pass to the endpoint. Useful for templated connection strings.
 
@@ -4820,7 +4731,7 @@ class SecretsMountMysqlLegacy(dict):
                  allowed_roles: Optional[Sequence[str]] = None,
                  auth_type: Optional[str] = None,
                  connection_url: Optional[str] = None,
-                 data: Optional[Mapping[str, str]] = None,
+                 data: Optional[Mapping[str, Any]] = None,
                  max_connection_lifetime: Optional[int] = None,
                  max_idle_connections: Optional[int] = None,
                  max_open_connections: Optional[int] = None,
@@ -4839,7 +4750,7 @@ class SecretsMountMysqlLegacy(dict):
                connection.
         :param str auth_type: Specify alternative authorization type. (Only 'gcp_iam' is valid currently)
         :param str connection_url: Connection string to use to connect to the database.
-        :param Mapping[str, str] data: A map of sensitive data to pass to the endpoint. Useful for templated connection strings.
+        :param Mapping[str, Any] data: A map of sensitive data to pass to the endpoint. Useful for templated connection strings.
                
                Supported list of database secrets engines that can be configured:
         :param int max_connection_lifetime: Maximum number of seconds a connection may be reused.
@@ -4925,7 +4836,7 @@ class SecretsMountMysqlLegacy(dict):
 
     @property
     @pulumi.getter
-    def data(self) -> Optional[Mapping[str, str]]:
+    def data(self) -> Optional[Mapping[str, Any]]:
         """
         A map of sensitive data to pass to the endpoint. Useful for templated connection strings.
 
@@ -5079,7 +4990,7 @@ class SecretsMountMysqlRd(dict):
                  allowed_roles: Optional[Sequence[str]] = None,
                  auth_type: Optional[str] = None,
                  connection_url: Optional[str] = None,
-                 data: Optional[Mapping[str, str]] = None,
+                 data: Optional[Mapping[str, Any]] = None,
                  max_connection_lifetime: Optional[int] = None,
                  max_idle_connections: Optional[int] = None,
                  max_open_connections: Optional[int] = None,
@@ -5098,7 +5009,7 @@ class SecretsMountMysqlRd(dict):
                connection.
         :param str auth_type: Specify alternative authorization type. (Only 'gcp_iam' is valid currently)
         :param str connection_url: Connection string to use to connect to the database.
-        :param Mapping[str, str] data: A map of sensitive data to pass to the endpoint. Useful for templated connection strings.
+        :param Mapping[str, Any] data: A map of sensitive data to pass to the endpoint. Useful for templated connection strings.
                
                Supported list of database secrets engines that can be configured:
         :param int max_connection_lifetime: Maximum number of seconds a connection may be reused.
@@ -5184,7 +5095,7 @@ class SecretsMountMysqlRd(dict):
 
     @property
     @pulumi.getter
-    def data(self) -> Optional[Mapping[str, str]]:
+    def data(self) -> Optional[Mapping[str, Any]]:
         """
         A map of sensitive data to pass to the endpoint. Useful for templated connection strings.
 
@@ -5333,7 +5244,7 @@ class SecretsMountOracle(dict):
                  name: str,
                  allowed_roles: Optional[Sequence[str]] = None,
                  connection_url: Optional[str] = None,
-                 data: Optional[Mapping[str, str]] = None,
+                 data: Optional[Mapping[str, Any]] = None,
                  disconnect_sessions: Optional[bool] = None,
                  max_connection_lifetime: Optional[int] = None,
                  max_idle_connections: Optional[int] = None,
@@ -5350,7 +5261,7 @@ class SecretsMountOracle(dict):
         :param Sequence[str] allowed_roles: A list of roles that are allowed to use this
                connection.
         :param str connection_url: Connection string to use to connect to the database.
-        :param Mapping[str, str] data: A map of sensitive data to pass to the endpoint. Useful for templated connection strings.
+        :param Mapping[str, Any] data: A map of sensitive data to pass to the endpoint. Useful for templated connection strings.
                
                Supported list of database secrets engines that can be configured:
         :param bool disconnect_sessions: Set to true to disconnect any open sessions prior to running the revocation statements.
@@ -5423,7 +5334,7 @@ class SecretsMountOracle(dict):
 
     @property
     @pulumi.getter
-    def data(self) -> Optional[Mapping[str, str]]:
+    def data(self) -> Optional[Mapping[str, Any]]:
         """
         A map of sensitive data to pass to the endpoint. Useful for templated connection strings.
 
@@ -5542,18 +5453,10 @@ class SecretsMountPostgresql(dict):
             suggest = "max_open_connections"
         elif key == "pluginName":
             suggest = "plugin_name"
-        elif key == "privateKey":
-            suggest = "private_key"
         elif key == "rootRotationStatements":
             suggest = "root_rotation_statements"
-        elif key == "selfManaged":
-            suggest = "self_managed"
         elif key == "serviceAccountJson":
             suggest = "service_account_json"
-        elif key == "tlsCa":
-            suggest = "tls_ca"
-        elif key == "tlsCertificate":
-            suggest = "tls_certificate"
         elif key == "usernameTemplate":
             suggest = "username_template"
         elif key == "verifyConnection":
@@ -5575,19 +5478,15 @@ class SecretsMountPostgresql(dict):
                  allowed_roles: Optional[Sequence[str]] = None,
                  auth_type: Optional[str] = None,
                  connection_url: Optional[str] = None,
-                 data: Optional[Mapping[str, str]] = None,
+                 data: Optional[Mapping[str, Any]] = None,
                  disable_escaping: Optional[bool] = None,
                  max_connection_lifetime: Optional[int] = None,
                  max_idle_connections: Optional[int] = None,
                  max_open_connections: Optional[int] = None,
                  password: Optional[str] = None,
                  plugin_name: Optional[str] = None,
-                 private_key: Optional[str] = None,
                  root_rotation_statements: Optional[Sequence[str]] = None,
-                 self_managed: Optional[bool] = None,
                  service_account_json: Optional[str] = None,
-                 tls_ca: Optional[str] = None,
-                 tls_certificate: Optional[str] = None,
                  username: Optional[str] = None,
                  username_template: Optional[str] = None,
                  verify_connection: Optional[bool] = None):
@@ -5597,7 +5496,7 @@ class SecretsMountPostgresql(dict):
                connection.
         :param str auth_type: Specify alternative authorization type. (Only 'gcp_iam' is valid currently)
         :param str connection_url: Connection string to use to connect to the database.
-        :param Mapping[str, str] data: A map of sensitive data to pass to the endpoint. Useful for templated connection strings.
+        :param Mapping[str, Any] data: A map of sensitive data to pass to the endpoint. Useful for templated connection strings.
                
                Supported list of database secrets engines that can be configured:
         :param bool disable_escaping: Disable special character escaping in username and password
@@ -5606,12 +5505,8 @@ class SecretsMountPostgresql(dict):
         :param int max_open_connections: Maximum number of open connections to the database.
         :param str password: The root credential password used in the connection URL
         :param str plugin_name: Specifies the name of the plugin to use.
-        :param str private_key: The secret key used for the x509 client certificate. Must be PEM encoded.
         :param Sequence[str] root_rotation_statements: A list of database statements to be executed to rotate the root user's credentials.
-        :param bool self_managed: If set, allows onboarding static roles with a rootless connection configuration.
         :param str service_account_json: A JSON encoded credential for use with IAM authorization
-        :param str tls_ca: The x509 CA file for validating the certificate presented by the PostgreSQL server. Must be PEM encoded.
-        :param str tls_certificate: The x509 client certificate for connecting to the database. Must be PEM encoded.
         :param str username: The root credential username used in the connection URL
         :param str username_template: Username generation template.
         :param bool verify_connection: Whether the connection should be verified on
@@ -5638,18 +5533,10 @@ class SecretsMountPostgresql(dict):
             pulumi.set(__self__, "password", password)
         if plugin_name is not None:
             pulumi.set(__self__, "plugin_name", plugin_name)
-        if private_key is not None:
-            pulumi.set(__self__, "private_key", private_key)
         if root_rotation_statements is not None:
             pulumi.set(__self__, "root_rotation_statements", root_rotation_statements)
-        if self_managed is not None:
-            pulumi.set(__self__, "self_managed", self_managed)
         if service_account_json is not None:
             pulumi.set(__self__, "service_account_json", service_account_json)
-        if tls_ca is not None:
-            pulumi.set(__self__, "tls_ca", tls_ca)
-        if tls_certificate is not None:
-            pulumi.set(__self__, "tls_certificate", tls_certificate)
         if username is not None:
             pulumi.set(__self__, "username", username)
         if username_template is not None:
@@ -5692,7 +5579,7 @@ class SecretsMountPostgresql(dict):
 
     @property
     @pulumi.getter
-    def data(self) -> Optional[Mapping[str, str]]:
+    def data(self) -> Optional[Mapping[str, Any]]:
         """
         A map of sensitive data to pass to the endpoint. Useful for templated connection strings.
 
@@ -5748,14 +5635,6 @@ class SecretsMountPostgresql(dict):
         """
         return pulumi.get(self, "plugin_name")
 
-    @property
-    @pulumi.getter(name="privateKey")
-    def private_key(self) -> Optional[str]:
-        """
-        The secret key used for the x509 client certificate. Must be PEM encoded.
-        """
-        return pulumi.get(self, "private_key")
-
     @property
     @pulumi.getter(name="rootRotationStatements")
     def root_rotation_statements(self) -> Optional[Sequence[str]]:
@@ -5764,14 +5643,6 @@ class SecretsMountPostgresql(dict):
         """
         return pulumi.get(self, "root_rotation_statements")
 
-    @property
-    @pulumi.getter(name="selfManaged")
-    def self_managed(self) -> Optional[bool]:
-        """
-        If set, allows onboarding static roles with a rootless connection configuration.
-        """
-        return pulumi.get(self, "self_managed")
-
     @property
     @pulumi.getter(name="serviceAccountJson")
     def service_account_json(self) -> Optional[str]:
@@ -5780,22 +5651,6 @@ class SecretsMountPostgresql(dict):
         """
         return pulumi.get(self, "service_account_json")
 
-    @property
-    @pulumi.getter(name="tlsCa")
-    def tls_ca(self) -> Optional[str]:
-        """
-        The x509 CA file for validating the certificate presented by the PostgreSQL server. Must be PEM encoded.
-        """
-        return pulumi.get(self, "tls_ca")
-
-    @property
-    @pulumi.getter(name="tlsCertificate")
-    def tls_certificate(self) -> Optional[str]:
-        """
-        The x509 client certificate for connecting to the database. Must be PEM encoded.
-        """
-        return pulumi.get(self, "tls_certificate")
-
     @property
     @pulumi.getter
     def username(self) -> Optional[str]:
@@ -5858,7 +5713,7 @@ class SecretsMountRedi(dict):
                  username: str,
                  allowed_roles: Optional[Sequence[str]] = None,
                  ca_cert: Optional[str] = None,
-                 data: Optional[Mapping[str, str]] = None,
+                 data: Optional[Mapping[str, Any]] = None,
                  insecure_tls: Optional[bool] = None,
                  plugin_name: Optional[str] = None,
                  port: Optional[int] = None,
@@ -5873,7 +5728,7 @@ class SecretsMountRedi(dict):
         :param Sequence[str] allowed_roles: A list of roles that are allowed to use this
                connection.
         :param str ca_cert: The contents of a PEM-encoded CA cert file to use to verify the Redis server's identity.
-        :param Mapping[str, str] data: A map of sensitive data to pass to the endpoint. Useful for templated connection strings.
+        :param Mapping[str, Any] data: A map of sensitive data to pass to the endpoint. Useful for templated connection strings.
                
                Supported list of database secrets engines that can be configured:
         :param bool insecure_tls: Specifies whether to skip verification of the server certificate when using TLS.
@@ -5958,7 +5813,7 @@ class SecretsMountRedi(dict):
 
     @property
     @pulumi.getter
-    def data(self) -> Optional[Mapping[str, str]]:
+    def data(self) -> Optional[Mapping[str, Any]]:
         """
         A map of sensitive data to pass to the endpoint. Useful for templated connection strings.
 
@@ -6045,7 +5900,7 @@ class SecretsMountRedisElasticach(dict):
                  name: str,
                  url: str,
                  allowed_roles: Optional[Sequence[str]] = None,
-                 data: Optional[Mapping[str, str]] = None,
+                 data: Optional[Mapping[str, Any]] = None,
                  password: Optional[str] = None,
                  plugin_name: Optional[str] = None,
                  region: Optional[str] = None,
@@ -6057,7 +5912,7 @@ class SecretsMountRedisElasticach(dict):
         :param str url: The configuration endpoint for the ElastiCache cluster to connect to.
         :param Sequence[str] allowed_roles: A list of roles that are allowed to use this
                connection.
-        :param Mapping[str, str] data: A map of sensitive data to pass to the endpoint. Useful for templated connection strings.
+        :param Mapping[str, Any] data: A map of sensitive data to pass to the endpoint. Useful for templated connection strings.
                
                Supported list of database secrets engines that can be configured:
         :param str password: The AWS secret key id to use to talk to ElastiCache. If omitted the credentials chain provider is used instead.
@@ -6114,7 +5969,7 @@ class SecretsMountRedisElasticach(dict):
 
     @property
     @pulumi.getter
-    def data(self) -> Optional[Mapping[str, str]]:
+    def data(self) -> Optional[Mapping[str, Any]]:
         """
         A map of sensitive data to pass to the endpoint. Useful for templated connection strings.
 
@@ -6213,7 +6068,7 @@ class SecretsMountRedshift(dict):
                  name: str,
                  allowed_roles: Optional[Sequence[str]] = None,
                  connection_url: Optional[str] = None,
-                 data: Optional[Mapping[str, str]] = None,
+                 data: Optional[Mapping[str, Any]] = None,
                  disable_escaping: Optional[bool] = None,
                  max_connection_lifetime: Optional[int] = None,
                  max_idle_connections: Optional[int] = None,
@@ -6229,7 +6084,7 @@ class SecretsMountRedshift(dict):
         :param Sequence[str] allowed_roles: A list of roles that are allowed to use this
                connection.
         :param str connection_url: Connection string to use to connect to the database.
-        :param Mapping[str, str] data: A map of sensitive data to pass to the endpoint. Useful for templated connection strings.
+        :param Mapping[str, Any] data: A map of sensitive data to pass to the endpoint. Useful for templated connection strings.
                
                Supported list of database secrets engines that can be configured:
         :param bool disable_escaping: Disable special character escaping in username and password
@@ -6299,7 +6154,7 @@ class SecretsMountRedshift(dict):
 
     @property
     @pulumi.getter
-    def data(self) -> Optional[Mapping[str, str]]:
+    def data(self) -> Optional[Mapping[str, Any]]:
         """
         A map of sensitive data to pass to the endpoint. Useful for templated connection strings.
 
@@ -6428,7 +6283,7 @@ class SecretsMountSnowflake(dict):
                  name: str,
                  allowed_roles: Optional[Sequence[str]] = None,
                  connection_url: Optional[str] = None,
-                 data: Optional[Mapping[str, str]] = None,
+                 data: Optional[Mapping[str, Any]] = None,
                  max_connection_lifetime: Optional[int] = None,
                  max_idle_connections: Optional[int] = None,
                  max_open_connections: Optional[int] = None,
@@ -6443,7 +6298,7 @@ class SecretsMountSnowflake(dict):
         :param Sequence[str] allowed_roles: A list of roles that are allowed to use this
                connection.
         :param str connection_url: Connection string to use to connect to the database.
-        :param Mapping[str, str] data: A map of sensitive data to pass to the endpoint. Useful for templated connection strings.
+        :param Mapping[str, Any] data: A map of sensitive data to pass to the endpoint. Useful for templated connection strings.
                
                Supported list of database secrets engines that can be configured:
         :param int max_connection_lifetime: Maximum number of seconds a connection may be reused.
@@ -6510,7 +6365,7 @@ class SecretsMountSnowflake(dict):
 
     @property
     @pulumi.getter
-    def data(self) -> Optional[Mapping[str, str]]:
+    def data(self) -> Optional[Mapping[str, Any]]:
         """
         A map of sensitive data to pass to the endpoint. Useful for templated connection strings.