pulumi-vault 6.5.0__py3-none-any.whl → 6.5.0a1732603022__py3-none-any.whl

pulumi_vault/__init__.py

@@ -1013,22 +1013,6 @@ _utilities.register(
    "vault:okta/authBackendUser:AuthBackendUser": "AuthBackendUser"
   }
  },
- {
-  "pkg": "vault",
-  "mod": "pkiSecret/backendAcmeEab",
-  "fqn": "pulumi_vault.pkisecret",
-  "classes": {
-   "vault:pkiSecret/backendAcmeEab:BackendAcmeEab": "BackendAcmeEab"
-  }
- },
- {
-  "pkg": "vault",
-  "mod": "pkiSecret/backendConfigAcme",
-  "fqn": "pulumi_vault.pkisecret",
-  "classes": {
-   "vault:pkiSecret/backendConfigAcme:BackendConfigAcme": "BackendConfigAcme"
-  }
- },
  {
   "pkg": "vault",
   "mod": "pkiSecret/backendConfigCluster",
@@ -1037,14 +1021,6 @@ _utilities.register(
    "vault:pkiSecret/backendConfigCluster:BackendConfigCluster": "BackendConfigCluster"
   }
  },
- {
-  "pkg": "vault",
-  "mod": "pkiSecret/backendConfigCmpv2",
-  "fqn": "pulumi_vault.pkisecret",
-  "classes": {
-   "vault:pkiSecret/backendConfigCmpv2:BackendConfigCmpv2": "BackendConfigCmpv2"
-  }
- },
  {
   "pkg": "vault",
   "mod": "pkiSecret/backendConfigEst",

pulumi_vault/ad/get_access_credentials.py

@@ -147,7 +147,7 @@ def get_access_credentials(backend: Optional[str] = None,
 def get_access_credentials_output(backend: Optional[pulumi.Input[str]] = None,
                                   namespace: Optional[pulumi.Input[Optional[str]]] = None,
                                   role: Optional[pulumi.Input[str]] = None,
-                                  opts: Optional[Union[pulumi.InvokeOptions, pulumi.InvokeOutputOptions]] = None) -> pulumi.Output[GetAccessCredentialsResult]:
+                                  opts: Optional[pulumi.InvokeOptions] = None) -> pulumi.Output[GetAccessCredentialsResult]:
     """
     ## Example Usage
 
@@ -165,7 +165,7 @@ def get_access_credentials_output(backend: Optional[pulumi.Input[str]] = None,
     __args__['backend'] = backend
     __args__['namespace'] = namespace
     __args__['role'] = role
-    opts = pulumi.InvokeOutputOptions.merge(_utilities.get_invoke_opts_defaults(), opts)
+    opts = pulumi.InvokeOptions.merge(_utilities.get_invoke_opts_defaults(), opts)
     __ret__ = pulumi.runtime.invoke_output('vault:ad/getAccessCredentials:getAccessCredentials', __args__, opts=opts, typ=GetAccessCredentialsResult)
     return __ret__.apply(lambda __response__: GetAccessCredentialsResult(
         backend=pulumi.get(__response__, 'backend'),

pulumi_vault/approle/get_auth_backend_role_id.py

@@ -131,7 +131,7 @@ def get_auth_backend_role_id(backend: Optional[str] = None,
 def get_auth_backend_role_id_output(backend: Optional[pulumi.Input[Optional[str]]] = None,
                                     namespace: Optional[pulumi.Input[Optional[str]]] = None,
                                     role_name: Optional[pulumi.Input[str]] = None,
-                                    opts: Optional[Union[pulumi.InvokeOptions, pulumi.InvokeOutputOptions]] = None) -> pulumi.Output[GetAuthBackendRoleIdResult]:
+                                    opts: Optional[pulumi.InvokeOptions] = None) -> pulumi.Output[GetAuthBackendRoleIdResult]:
     """
     Reads the Role ID of an AppRole from a Vault server.
 
@@ -159,7 +159,7 @@ def get_auth_backend_role_id_output(backend: Optional[pulumi.Input[Optional[str]
     __args__['backend'] = backend
     __args__['namespace'] = namespace
     __args__['roleName'] = role_name
-    opts = pulumi.InvokeOutputOptions.merge(_utilities.get_invoke_opts_defaults(), opts)
+    opts = pulumi.InvokeOptions.merge(_utilities.get_invoke_opts_defaults(), opts)
     __ret__ = pulumi.runtime.invoke_output('vault:appRole/getAuthBackendRoleId:getAuthBackendRoleId', __args__, opts=opts, typ=GetAuthBackendRoleIdResult)
     return __ret__.apply(lambda __response__: GetAuthBackendRoleIdResult(
         backend=pulumi.get(__response__, 'backend'),

pulumi_vault/aws/auth_backend_sts_role.py

@@ -22,7 +22,6 @@ class AuthBackendStsRoleArgs:
                  account_id: pulumi.Input[str],
                  sts_role: pulumi.Input[str],
                  backend: Optional[pulumi.Input[str]] = None,
-                 external_id: Optional[pulumi.Input[str]] = None,
                  namespace: Optional[pulumi.Input[str]] = None):
         """
         The set of arguments for constructing a AuthBackendStsRole resource.
@@ -31,7 +30,6 @@ class AuthBackendStsRoleArgs:
                by EC2 instances in the account specified by `account_id`.
         :param pulumi.Input[str] backend: The path the AWS auth backend being configured was
                mounted at.  Defaults to `aws`.
-        :param pulumi.Input[str] external_id: External ID expected by the STS role. The associated STS role must be configured to require the external ID. Requires Vault 1.17+.
         :param pulumi.Input[str] namespace: The namespace to provision the resource in.
                The value should not contain leading or trailing forward slashes.
                The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault/index.html#namespace).
@@ -41,8 +39,6 @@ class AuthBackendStsRoleArgs:
         pulumi.set(__self__, "sts_role", sts_role)
         if backend is not None:
             pulumi.set(__self__, "backend", backend)
-        if external_id is not None:
-            pulumi.set(__self__, "external_id", external_id)
         if namespace is not None:
             pulumi.set(__self__, "namespace", namespace)
 
@@ -84,18 +80,6 @@ class AuthBackendStsRoleArgs:
     def backend(self, value: Optional[pulumi.Input[str]]):
         pulumi.set(self, "backend", value)
 
-    @property
-    @pulumi.getter(name="externalId")
-    def external_id(self) -> Optional[pulumi.Input[str]]:
-        """
-        External ID expected by the STS role. The associated STS role must be configured to require the external ID. Requires Vault 1.17+.
-        """
-        return pulumi.get(self, "external_id")
-
-    @external_id.setter
-    def external_id(self, value: Optional[pulumi.Input[str]]):
-        pulumi.set(self, "external_id", value)
-
     @property
     @pulumi.getter
     def namespace(self) -> Optional[pulumi.Input[str]]:
@@ -117,7 +101,6 @@ class _AuthBackendStsRoleState:
     def __init__(__self__, *,
                  account_id: Optional[pulumi.Input[str]] = None,
                  backend: Optional[pulumi.Input[str]] = None,
-                 external_id: Optional[pulumi.Input[str]] = None,
                  namespace: Optional[pulumi.Input[str]] = None,
                  sts_role: Optional[pulumi.Input[str]] = None):
         """
@@ -125,7 +108,6 @@ class _AuthBackendStsRoleState:
         :param pulumi.Input[str] account_id: The AWS account ID to configure the STS role for.
         :param pulumi.Input[str] backend: The path the AWS auth backend being configured was
                mounted at.  Defaults to `aws`.
-        :param pulumi.Input[str] external_id: External ID expected by the STS role. The associated STS role must be configured to require the external ID. Requires Vault 1.17+.
         :param pulumi.Input[str] namespace: The namespace to provision the resource in.
                The value should not contain leading or trailing forward slashes.
                The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault/index.html#namespace).
@@ -137,8 +119,6 @@ class _AuthBackendStsRoleState:
             pulumi.set(__self__, "account_id", account_id)
         if backend is not None:
             pulumi.set(__self__, "backend", backend)
-        if external_id is not None:
-            pulumi.set(__self__, "external_id", external_id)
         if namespace is not None:
             pulumi.set(__self__, "namespace", namespace)
         if sts_role is not None:
@@ -169,18 +149,6 @@ class _AuthBackendStsRoleState:
     def backend(self, value: Optional[pulumi.Input[str]]):
         pulumi.set(self, "backend", value)
 
-    @property
-    @pulumi.getter(name="externalId")
-    def external_id(self) -> Optional[pulumi.Input[str]]:
-        """
-        External ID expected by the STS role. The associated STS role must be configured to require the external ID. Requires Vault 1.17+.
-        """
-        return pulumi.get(self, "external_id")
-
-    @external_id.setter
-    def external_id(self, value: Optional[pulumi.Input[str]]):
-        pulumi.set(self, "external_id", value)
-
     @property
     @pulumi.getter
     def namespace(self) -> Optional[pulumi.Input[str]]:
@@ -217,7 +185,6 @@ class AuthBackendStsRole(pulumi.CustomResource):
                  opts: Optional[pulumi.ResourceOptions] = None,
                  account_id: Optional[pulumi.Input[str]] = None,
                  backend: Optional[pulumi.Input[str]] = None,
-                 external_id: Optional[pulumi.Input[str]] = None,
                  namespace: Optional[pulumi.Input[str]] = None,
                  sts_role: Optional[pulumi.Input[str]] = None,
                  __props__=None):
@@ -248,7 +215,6 @@ class AuthBackendStsRole(pulumi.CustomResource):
         :param pulumi.Input[str] account_id: The AWS account ID to configure the STS role for.
         :param pulumi.Input[str] backend: The path the AWS auth backend being configured was
                mounted at.  Defaults to `aws`.
-        :param pulumi.Input[str] external_id: External ID expected by the STS role. The associated STS role must be configured to require the external ID. Requires Vault 1.17+.
         :param pulumi.Input[str] namespace: The namespace to provision the resource in.
                The value should not contain leading or trailing forward slashes.
                The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault/index.html#namespace).
@@ -301,7 +267,6 @@ class AuthBackendStsRole(pulumi.CustomResource):
                  opts: Optional[pulumi.ResourceOptions] = None,
                  account_id: Optional[pulumi.Input[str]] = None,
                  backend: Optional[pulumi.Input[str]] = None,
-                 external_id: Optional[pulumi.Input[str]] = None,
                  namespace: Optional[pulumi.Input[str]] = None,
                  sts_role: Optional[pulumi.Input[str]] = None,
                  __props__=None):
@@ -317,7 +282,6 @@ class AuthBackendStsRole(pulumi.CustomResource):
                 raise TypeError("Missing required property 'account_id'")
             __props__.__dict__["account_id"] = account_id
             __props__.__dict__["backend"] = backend
-            __props__.__dict__["external_id"] = external_id
             __props__.__dict__["namespace"] = namespace
             if sts_role is None and not opts.urn:
                 raise TypeError("Missing required property 'sts_role'")
@@ -334,7 +298,6 @@ class AuthBackendStsRole(pulumi.CustomResource):
             opts: Optional[pulumi.ResourceOptions] = None,
             account_id: Optional[pulumi.Input[str]] = None,
             backend: Optional[pulumi.Input[str]] = None,
-            external_id: Optional[pulumi.Input[str]] = None,
             namespace: Optional[pulumi.Input[str]] = None,
             sts_role: Optional[pulumi.Input[str]] = None) -> 'AuthBackendStsRole':
         """
@@ -347,7 +310,6 @@ class AuthBackendStsRole(pulumi.CustomResource):
         :param pulumi.Input[str] account_id: The AWS account ID to configure the STS role for.
         :param pulumi.Input[str] backend: The path the AWS auth backend being configured was
                mounted at.  Defaults to `aws`.
-        :param pulumi.Input[str] external_id: External ID expected by the STS role. The associated STS role must be configured to require the external ID. Requires Vault 1.17+.
         :param pulumi.Input[str] namespace: The namespace to provision the resource in.
                The value should not contain leading or trailing forward slashes.
                The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault/index.html#namespace).
@@ -361,7 +323,6 @@ class AuthBackendStsRole(pulumi.CustomResource):
 
         __props__.__dict__["account_id"] = account_id
         __props__.__dict__["backend"] = backend
-        __props__.__dict__["external_id"] = external_id
         __props__.__dict__["namespace"] = namespace
         __props__.__dict__["sts_role"] = sts_role
         return AuthBackendStsRole(resource_name, opts=opts, __props__=__props__)
@@ -383,14 +344,6 @@ class AuthBackendStsRole(pulumi.CustomResource):
         """
         return pulumi.get(self, "backend")
 
-    @property
-    @pulumi.getter(name="externalId")
-    def external_id(self) -> pulumi.Output[Optional[str]]:
-        """
-        External ID expected by the STS role. The associated STS role must be configured to require the external ID. Requires Vault 1.17+.
-        """
-        return pulumi.get(self, "external_id")
-
     @property
     @pulumi.getter
     def namespace(self) -> pulumi.Output[Optional[str]]:

pulumi_vault/aws/get_access_credentials.py

@@ -258,7 +258,7 @@ def get_access_credentials_output(backend: Optional[pulumi.Input[str]] = None,
                                   role_arn: Optional[pulumi.Input[Optional[str]]] = None,
                                   ttl: Optional[pulumi.Input[Optional[str]]] = None,
                                   type: Optional[pulumi.Input[Optional[str]]] = None,
-                                  opts: Optional[Union[pulumi.InvokeOptions, pulumi.InvokeOutputOptions]] = None) -> pulumi.Output[GetAccessCredentialsResult]:
+                                  opts: Optional[pulumi.InvokeOptions] = None) -> pulumi.Output[GetAccessCredentialsResult]:
     """
     ## Example Usage
 
@@ -291,7 +291,7 @@ def get_access_credentials_output(backend: Optional[pulumi.Input[str]] = None,
     __args__['roleArn'] = role_arn
     __args__['ttl'] = ttl
     __args__['type'] = type
-    opts = pulumi.InvokeOutputOptions.merge(_utilities.get_invoke_opts_defaults(), opts)
+    opts = pulumi.InvokeOptions.merge(_utilities.get_invoke_opts_defaults(), opts)
     __ret__ = pulumi.runtime.invoke_output('vault:aws/getAccessCredentials:getAccessCredentials', __args__, opts=opts, typ=GetAccessCredentialsResult)
     return __ret__.apply(lambda __response__: GetAccessCredentialsResult(
         access_key=pulumi.get(__response__, 'access_key'),

pulumi_vault/aws/get_static_access_credentials.py

@@ -118,7 +118,7 @@ def get_static_access_credentials(backend: Optional[str] = None,
 def get_static_access_credentials_output(backend: Optional[pulumi.Input[str]] = None,
                                          name: Optional[pulumi.Input[str]] = None,
                                          namespace: Optional[pulumi.Input[Optional[str]]] = None,
-                                         opts: Optional[Union[pulumi.InvokeOptions, pulumi.InvokeOutputOptions]] = None) -> pulumi.Output[GetStaticAccessCredentialsResult]:
+                                         opts: Optional[pulumi.InvokeOptions] = None) -> pulumi.Output[GetStaticAccessCredentialsResult]:
     """
     Use this data source to access information about an existing resource.
     """
@@ -126,7 +126,7 @@ def get_static_access_credentials_output(backend: Optional[pulumi.Input[str]] =
     __args__['backend'] = backend
     __args__['name'] = name
     __args__['namespace'] = namespace
-    opts = pulumi.InvokeOutputOptions.merge(_utilities.get_invoke_opts_defaults(), opts)
+    opts = pulumi.InvokeOptions.merge(_utilities.get_invoke_opts_defaults(), opts)
     __ret__ = pulumi.runtime.invoke_output('vault:aws/getStaticAccessCredentials:getStaticAccessCredentials', __args__, opts=opts, typ=GetStaticAccessCredentialsResult)
     return __ret__.apply(lambda __response__: GetStaticAccessCredentialsResult(
         access_key=pulumi.get(__response__, 'access_key'),

pulumi_vault/aws/secret_backend.py

@@ -35,9 +35,6 @@ class SecretBackendArgs:
                  role_arn: Optional[pulumi.Input[str]] = None,
                  secret_key: Optional[pulumi.Input[str]] = None,
                  sts_endpoint: Optional[pulumi.Input[str]] = None,
-                 sts_fallback_endpoints: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
-                 sts_fallback_regions: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
-                 sts_region: Optional[pulumi.Input[str]] = None,
                  username_template: Optional[pulumi.Input[str]] = None):
         """
         The set of arguments for constructing a SecretBackend resource.
@@ -74,9 +71,6 @@ class SecretBackendArgs:
                ```
         :param pulumi.Input[str] secret_key: The AWS Secret Access Key to use when generating new credentials.
         :param pulumi.Input[str] sts_endpoint: Specifies a custom HTTP STS endpoint to use.
-        :param pulumi.Input[Sequence[pulumi.Input[str]]] sts_fallback_endpoints: Ordered list of `sts_endpoint`s to try if the defined one fails. Requires Vault 1.19+
-        :param pulumi.Input[Sequence[pulumi.Input[str]]] sts_fallback_regions: Ordered list of `sts_region`s matching the fallback endpoints. Should correspond in order with those endpoints. Requires Vault 1.19+
-        :param pulumi.Input[str] sts_region: Specifies the region of the STS endpoint. Should be included if `sts_endpoint` is supplied. Requires Vault 1.19+
         :param pulumi.Input[str] username_template: Template describing how dynamic usernames are generated. The username template is used to generate both IAM usernames (capped at 64 characters) and STS usernames (capped at 32 characters). If no template is provided the field defaults to the template:
         """
         if access_key is not None:
@@ -111,12 +105,6 @@ class SecretBackendArgs:
             pulumi.set(__self__, "secret_key", secret_key)
         if sts_endpoint is not None:
             pulumi.set(__self__, "sts_endpoint", sts_endpoint)
-        if sts_fallback_endpoints is not None:
-            pulumi.set(__self__, "sts_fallback_endpoints", sts_fallback_endpoints)
-        if sts_fallback_regions is not None:
-            pulumi.set(__self__, "sts_fallback_regions", sts_fallback_regions)
-        if sts_region is not None:
-            pulumi.set(__self__, "sts_region", sts_region)
         if username_template is not None:
             pulumi.set(__self__, "username_template", username_template)
 
@@ -329,42 +317,6 @@ class SecretBackendArgs:
     def sts_endpoint(self, value: Optional[pulumi.Input[str]]):
         pulumi.set(self, "sts_endpoint", value)
 
-    @property
-    @pulumi.getter(name="stsFallbackEndpoints")
-    def sts_fallback_endpoints(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]:
-        """
-        Ordered list of `sts_endpoint`s to try if the defined one fails. Requires Vault 1.19+
-        """
-        return pulumi.get(self, "sts_fallback_endpoints")
-
-    @sts_fallback_endpoints.setter
-    def sts_fallback_endpoints(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]):
-        pulumi.set(self, "sts_fallback_endpoints", value)
-
-    @property
-    @pulumi.getter(name="stsFallbackRegions")
-    def sts_fallback_regions(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]:
-        """
-        Ordered list of `sts_region`s matching the fallback endpoints. Should correspond in order with those endpoints. Requires Vault 1.19+
-        """
-        return pulumi.get(self, "sts_fallback_regions")
-
-    @sts_fallback_regions.setter
-    def sts_fallback_regions(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]):
-        pulumi.set(self, "sts_fallback_regions", value)
-
-    @property
-    @pulumi.getter(name="stsRegion")
-    def sts_region(self) -> Optional[pulumi.Input[str]]:
-        """
-        Specifies the region of the STS endpoint. Should be included if `sts_endpoint` is supplied. Requires Vault 1.19+
-        """
-        return pulumi.get(self, "sts_region")
-
-    @sts_region.setter
-    def sts_region(self, value: Optional[pulumi.Input[str]]):
-        pulumi.set(self, "sts_region", value)
-
     @property
     @pulumi.getter(name="usernameTemplate")
     def username_template(self) -> Optional[pulumi.Input[str]]:
@@ -397,9 +349,6 @@ class _SecretBackendState:
                  role_arn: Optional[pulumi.Input[str]] = None,
                  secret_key: Optional[pulumi.Input[str]] = None,
                  sts_endpoint: Optional[pulumi.Input[str]] = None,
-                 sts_fallback_endpoints: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
-                 sts_fallback_regions: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
-                 sts_region: Optional[pulumi.Input[str]] = None,
                  username_template: Optional[pulumi.Input[str]] = None):
         """
         Input properties used for looking up and filtering SecretBackend resources.
@@ -436,9 +385,6 @@ class _SecretBackendState:
                ```
         :param pulumi.Input[str] secret_key: The AWS Secret Access Key to use when generating new credentials.
         :param pulumi.Input[str] sts_endpoint: Specifies a custom HTTP STS endpoint to use.
-        :param pulumi.Input[Sequence[pulumi.Input[str]]] sts_fallback_endpoints: Ordered list of `sts_endpoint`s to try if the defined one fails. Requires Vault 1.19+
-        :param pulumi.Input[Sequence[pulumi.Input[str]]] sts_fallback_regions: Ordered list of `sts_region`s matching the fallback endpoints. Should correspond in order with those endpoints. Requires Vault 1.19+
-        :param pulumi.Input[str] sts_region: Specifies the region of the STS endpoint. Should be included if `sts_endpoint` is supplied. Requires Vault 1.19+
         :param pulumi.Input[str] username_template: Template describing how dynamic usernames are generated. The username template is used to generate both IAM usernames (capped at 64 characters) and STS usernames (capped at 32 characters). If no template is provided the field defaults to the template:
         """
         if access_key is not None:
@@ -473,12 +419,6 @@ class _SecretBackendState:
             pulumi.set(__self__, "secret_key", secret_key)
         if sts_endpoint is not None:
             pulumi.set(__self__, "sts_endpoint", sts_endpoint)
-        if sts_fallback_endpoints is not None:
-            pulumi.set(__self__, "sts_fallback_endpoints", sts_fallback_endpoints)
-        if sts_fallback_regions is not None:
-            pulumi.set(__self__, "sts_fallback_regions", sts_fallback_regions)
-        if sts_region is not None:
-            pulumi.set(__self__, "sts_region", sts_region)
         if username_template is not None:
             pulumi.set(__self__, "username_template", username_template)
 
@@ -691,42 +631,6 @@ class _SecretBackendState:
     def sts_endpoint(self, value: Optional[pulumi.Input[str]]):
         pulumi.set(self, "sts_endpoint", value)
 
-    @property
-    @pulumi.getter(name="stsFallbackEndpoints")
-    def sts_fallback_endpoints(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]:
-        """
-        Ordered list of `sts_endpoint`s to try if the defined one fails. Requires Vault 1.19+
-        """
-        return pulumi.get(self, "sts_fallback_endpoints")
-
-    @sts_fallback_endpoints.setter
-    def sts_fallback_endpoints(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]):
-        pulumi.set(self, "sts_fallback_endpoints", value)
-
-    @property
-    @pulumi.getter(name="stsFallbackRegions")
-    def sts_fallback_regions(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]:
-        """
-        Ordered list of `sts_region`s matching the fallback endpoints. Should correspond in order with those endpoints. Requires Vault 1.19+
-        """
-        return pulumi.get(self, "sts_fallback_regions")
-
-    @sts_fallback_regions.setter
-    def sts_fallback_regions(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]):
-        pulumi.set(self, "sts_fallback_regions", value)
-
-    @property
-    @pulumi.getter(name="stsRegion")
-    def sts_region(self) -> Optional[pulumi.Input[str]]:
-        """
-        Specifies the region of the STS endpoint. Should be included if `sts_endpoint` is supplied. Requires Vault 1.19+
-        """
-        return pulumi.get(self, "sts_region")
-
-    @sts_region.setter
-    def sts_region(self, value: Optional[pulumi.Input[str]]):
-        pulumi.set(self, "sts_region", value)
-
     @property
     @pulumi.getter(name="usernameTemplate")
     def username_template(self) -> Optional[pulumi.Input[str]]:
@@ -761,9 +665,6 @@ class SecretBackend(pulumi.CustomResource):
                  role_arn: Optional[pulumi.Input[str]] = None,
                  secret_key: Optional[pulumi.Input[str]] = None,
                  sts_endpoint: Optional[pulumi.Input[str]] = None,
-                 sts_fallback_endpoints: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
-                 sts_fallback_regions: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
-                 sts_region: Optional[pulumi.Input[str]] = None,
                  username_template: Optional[pulumi.Input[str]] = None,
                  __props__=None):
         """
@@ -810,9 +711,6 @@ class SecretBackend(pulumi.CustomResource):
                ```
         :param pulumi.Input[str] secret_key: The AWS Secret Access Key to use when generating new credentials.
         :param pulumi.Input[str] sts_endpoint: Specifies a custom HTTP STS endpoint to use.
-        :param pulumi.Input[Sequence[pulumi.Input[str]]] sts_fallback_endpoints: Ordered list of `sts_endpoint`s to try if the defined one fails. Requires Vault 1.19+
-        :param pulumi.Input[Sequence[pulumi.Input[str]]] sts_fallback_regions: Ordered list of `sts_region`s matching the fallback endpoints. Should correspond in order with those endpoints. Requires Vault 1.19+
-        :param pulumi.Input[str] sts_region: Specifies the region of the STS endpoint. Should be included if `sts_endpoint` is supplied. Requires Vault 1.19+
         :param pulumi.Input[str] username_template: Template describing how dynamic usernames are generated. The username template is used to generate both IAM usernames (capped at 64 characters) and STS usernames (capped at 32 characters). If no template is provided the field defaults to the template:
         """
         ...
@@ -861,9 +759,6 @@ class SecretBackend(pulumi.CustomResource):
                  role_arn: Optional[pulumi.Input[str]] = None,
                  secret_key: Optional[pulumi.Input[str]] = None,
                  sts_endpoint: Optional[pulumi.Input[str]] = None,
-                 sts_fallback_endpoints: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
-                 sts_fallback_regions: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
-                 sts_region: Optional[pulumi.Input[str]] = None,
                  username_template: Optional[pulumi.Input[str]] = None,
                  __props__=None):
         opts = pulumi.ResourceOptions.merge(_utilities.get_resource_opts_defaults(), opts)
@@ -890,9 +785,6 @@ class SecretBackend(pulumi.CustomResource):
             __props__.__dict__["role_arn"] = role_arn
             __props__.__dict__["secret_key"] = None if secret_key is None else pulumi.Output.secret(secret_key)
             __props__.__dict__["sts_endpoint"] = sts_endpoint
-            __props__.__dict__["sts_fallback_endpoints"] = sts_fallback_endpoints
-            __props__.__dict__["sts_fallback_regions"] = sts_fallback_regions
-            __props__.__dict__["sts_region"] = sts_region
             __props__.__dict__["username_template"] = username_template
         secret_opts = pulumi.ResourceOptions(additional_secret_outputs=["accessKey", "secretKey"])
         opts = pulumi.ResourceOptions.merge(opts, secret_opts)
@@ -922,9 +814,6 @@ class SecretBackend(pulumi.CustomResource):
             role_arn: Optional[pulumi.Input[str]] = None,
             secret_key: Optional[pulumi.Input[str]] = None,
             sts_endpoint: Optional[pulumi.Input[str]] = None,
-            sts_fallback_endpoints: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
-            sts_fallback_regions: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
-            sts_region: Optional[pulumi.Input[str]] = None,
             username_template: Optional[pulumi.Input[str]] = None) -> 'SecretBackend':
         """
         Get an existing SecretBackend resource's state with the given name, id, and optional extra
@@ -966,9 +855,6 @@ class SecretBackend(pulumi.CustomResource):
                ```
         :param pulumi.Input[str] secret_key: The AWS Secret Access Key to use when generating new credentials.
         :param pulumi.Input[str] sts_endpoint: Specifies a custom HTTP STS endpoint to use.
-        :param pulumi.Input[Sequence[pulumi.Input[str]]] sts_fallback_endpoints: Ordered list of `sts_endpoint`s to try if the defined one fails. Requires Vault 1.19+
-        :param pulumi.Input[Sequence[pulumi.Input[str]]] sts_fallback_regions: Ordered list of `sts_region`s matching the fallback endpoints. Should correspond in order with those endpoints. Requires Vault 1.19+
-        :param pulumi.Input[str] sts_region: Specifies the region of the STS endpoint. Should be included if `sts_endpoint` is supplied. Requires Vault 1.19+
         :param pulumi.Input[str] username_template: Template describing how dynamic usernames are generated. The username template is used to generate both IAM usernames (capped at 64 characters) and STS usernames (capped at 32 characters). If no template is provided the field defaults to the template:
         """
         opts = pulumi.ResourceOptions.merge(opts, pulumi.ResourceOptions(id=id))
@@ -991,9 +877,6 @@ class SecretBackend(pulumi.CustomResource):
         __props__.__dict__["role_arn"] = role_arn
         __props__.__dict__["secret_key"] = secret_key
         __props__.__dict__["sts_endpoint"] = sts_endpoint
-        __props__.__dict__["sts_fallback_endpoints"] = sts_fallback_endpoints
-        __props__.__dict__["sts_fallback_regions"] = sts_fallback_regions
-        __props__.__dict__["sts_region"] = sts_region
         __props__.__dict__["username_template"] = username_template
         return SecretBackend(resource_name, opts=opts, __props__=__props__)
 
@@ -1142,30 +1025,6 @@ class SecretBackend(pulumi.CustomResource):
         """
         return pulumi.get(self, "sts_endpoint")
 
-    @property
-    @pulumi.getter(name="stsFallbackEndpoints")
-    def sts_fallback_endpoints(self) -> pulumi.Output[Optional[Sequence[str]]]:
-        """
-        Ordered list of `sts_endpoint`s to try if the defined one fails. Requires Vault 1.19+
-        """
-        return pulumi.get(self, "sts_fallback_endpoints")
-
-    @property
-    @pulumi.getter(name="stsFallbackRegions")
-    def sts_fallback_regions(self) -> pulumi.Output[Optional[Sequence[str]]]:
-        """
-        Ordered list of `sts_region`s matching the fallback endpoints. Should correspond in order with those endpoints. Requires Vault 1.19+
-        """
-        return pulumi.get(self, "sts_fallback_regions")
-
-    @property
-    @pulumi.getter(name="stsRegion")
-    def sts_region(self) -> pulumi.Output[Optional[str]]:
-        """
-        Specifies the region of the STS endpoint. Should be included if `sts_endpoint` is supplied. Requires Vault 1.19+
-        """
-        return pulumi.get(self, "sts_region")
-
     @property
     @pulumi.getter(name="usernameTemplate")
     def username_template(self) -> pulumi.Output[str]:

pulumi_vault/azure/get_access_credentials.py

@@ -313,7 +313,7 @@ def get_access_credentials_output(backend: Optional[pulumi.Input[str]] = None,
                                   subscription_id: Optional[pulumi.Input[Optional[str]]] = None,
                                   tenant_id: Optional[pulumi.Input[Optional[str]]] = None,
                                   validate_creds: Optional[pulumi.Input[Optional[bool]]] = None,
-                                  opts: Optional[Union[pulumi.InvokeOptions, pulumi.InvokeOutputOptions]] = None) -> pulumi.Output[GetAccessCredentialsResult]:
+                                  opts: Optional[pulumi.InvokeOptions] = None) -> pulumi.Output[GetAccessCredentialsResult]:
     """
     ## Example Usage
 
@@ -378,7 +378,7 @@ def get_access_credentials_output(backend: Optional[pulumi.Input[str]] = None,
     __args__['subscriptionId'] = subscription_id
     __args__['tenantId'] = tenant_id
     __args__['validateCreds'] = validate_creds
-    opts = pulumi.InvokeOutputOptions.merge(_utilities.get_invoke_opts_defaults(), opts)
+    opts = pulumi.InvokeOptions.merge(_utilities.get_invoke_opts_defaults(), opts)
     __ret__ = pulumi.runtime.invoke_output('vault:azure/getAccessCredentials:getAccessCredentials', __args__, opts=opts, typ=GetAccessCredentialsResult)
     return __ret__.apply(lambda __response__: GetAccessCredentialsResult(
         backend=pulumi.get(__response__, 'backend'),

pulumi_vault/database/_inputs.py

@@ -2625,10 +2625,6 @@ if not MYPY:
         """
         The root credential password used in the connection URL
         """
-        password_authentication: NotRequired[pulumi.Input[str]]
-        """
-        When set to `scram-sha-256`, passwords will be hashed by Vault before being sent to PostgreSQL.
-        """
         private_key: NotRequired[pulumi.Input[str]]
         """
         The secret key used for the x509 client certificate. Must be PEM encoded.
@@ -2670,7 +2666,6 @@ class SecretBackendConnectionPostgresqlArgs:
                  max_idle_connections: Optional[pulumi.Input[int]] = None,
                  max_open_connections: Optional[pulumi.Input[int]] = None,
                  password: Optional[pulumi.Input[str]] = None,
-                 password_authentication: Optional[pulumi.Input[str]] = None,
                  private_key: Optional[pulumi.Input[str]] = None,
                  self_managed: Optional[pulumi.Input[bool]] = None,
                  service_account_json: Optional[pulumi.Input[str]] = None,
@@ -2686,7 +2681,6 @@ class SecretBackendConnectionPostgresqlArgs:
         :param pulumi.Input[int] max_idle_connections: Maximum number of idle connections to the database.
         :param pulumi.Input[int] max_open_connections: Maximum number of open connections to the database.
         :param pulumi.Input[str] password: The root credential password used in the connection URL
-        :param pulumi.Input[str] password_authentication: When set to `scram-sha-256`, passwords will be hashed by Vault before being sent to PostgreSQL.
         :param pulumi.Input[str] private_key: The secret key used for the x509 client certificate. Must be PEM encoded.
         :param pulumi.Input[bool] self_managed: If set, allows onboarding static roles with a rootless connection configuration.
         :param pulumi.Input[str] service_account_json: A JSON encoded credential for use with IAM authorization
@@ -2709,8 +2703,6 @@ class SecretBackendConnectionPostgresqlArgs:
             pulumi.set(__self__, "max_open_connections", max_open_connections)
         if password is not None:
             pulumi.set(__self__, "password", password)
-        if password_authentication is not None:
-            pulumi.set(__self__, "password_authentication", password_authentication)
         if private_key is not None:
             pulumi.set(__self__, "private_key", private_key)
         if self_managed is not None:
@@ -2810,18 +2802,6 @@ class SecretBackendConnectionPostgresqlArgs:
     def password(self, value: Optional[pulumi.Input[str]]):
         pulumi.set(self, "password", value)
 
-    @property
-    @pulumi.getter(name="passwordAuthentication")
-    def password_authentication(self) -> Optional[pulumi.Input[str]]:
-        """
-        When set to `scram-sha-256`, passwords will be hashed by Vault before being sent to PostgreSQL.
-        """
-        return pulumi.get(self, "password_authentication")
-
-    @password_authentication.setter
-    def password_authentication(self, value: Optional[pulumi.Input[str]]):
-        pulumi.set(self, "password_authentication", value)
-
     @property
     @pulumi.getter(name="privateKey")
     def private_key(self) -> Optional[pulumi.Input[str]]:
@@ -7723,10 +7703,6 @@ if not MYPY:
         """
         The root credential password used in the connection URL
         """
-        password_authentication: NotRequired[pulumi.Input[str]]
-        """
-        When set to `scram-sha-256`, passwords will be hashed by Vault before being sent to PostgreSQL.
-        """
         plugin_name: NotRequired[pulumi.Input[str]]
         """
         Specifies the name of the plugin to use.
@@ -7784,7 +7760,6 @@ class SecretsMountPostgresqlArgs:
                  max_idle_connections: Optional[pulumi.Input[int]] = None,
                  max_open_connections: Optional[pulumi.Input[int]] = None,
                  password: Optional[pulumi.Input[str]] = None,
-                 password_authentication: Optional[pulumi.Input[str]] = None,
                  plugin_name: Optional[pulumi.Input[str]] = None,
                  private_key: Optional[pulumi.Input[str]] = None,
                  root_rotation_statements: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
@@ -7809,7 +7784,6 @@ class SecretsMountPostgresqlArgs:
         :param pulumi.Input[int] max_idle_connections: Maximum number of idle connections to the database.
         :param pulumi.Input[int] max_open_connections: Maximum number of open connections to the database.
         :param pulumi.Input[str] password: The root credential password used in the connection URL
-        :param pulumi.Input[str] password_authentication: When set to `scram-sha-256`, passwords will be hashed by Vault before being sent to PostgreSQL.
         :param pulumi.Input[str] plugin_name: Specifies the name of the plugin to use.
         :param pulumi.Input[str] private_key: The secret key used for the x509 client certificate. Must be PEM encoded.
         :param pulumi.Input[Sequence[pulumi.Input[str]]] root_rotation_statements: A list of database statements to be executed to rotate the root user's credentials.
@@ -7841,8 +7815,6 @@ class SecretsMountPostgresqlArgs:
             pulumi.set(__self__, "max_open_connections", max_open_connections)
         if password is not None:
             pulumi.set(__self__, "password", password)
-        if password_authentication is not None:
-            pulumi.set(__self__, "password_authentication", password_authentication)
         if plugin_name is not None:
             pulumi.set(__self__, "plugin_name", plugin_name)
         if private_key is not None:
@@ -7987,18 +7959,6 @@ class SecretsMountPostgresqlArgs:
     def password(self, value: Optional[pulumi.Input[str]]):
         pulumi.set(self, "password", value)
 
-    @property
-    @pulumi.getter(name="passwordAuthentication")
-    def password_authentication(self) -> Optional[pulumi.Input[str]]:
-        """
-        When set to `scram-sha-256`, passwords will be hashed by Vault before being sent to PostgreSQL.
-        """
-        return pulumi.get(self, "password_authentication")
-
-    @password_authentication.setter
-    def password_authentication(self, value: Optional[pulumi.Input[str]]):
-        pulumi.set(self, "password_authentication", value)
-
     @property
     @pulumi.getter(name="pluginName")
     def plugin_name(self) -> Optional[pulumi.Input[str]]: