pulumi-vault 6.5.0a1736850018__py3-none-any.whl → 6.6.0__py3-none-any.whl

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (48) hide show
  1. pulumi_vault/__init__.py +32 -0
  2. pulumi_vault/_utilities.py +8 -4
  3. pulumi_vault/aws/auth_backend_client.py +228 -4
  4. pulumi_vault/aws/auth_backend_sts_role.py +47 -0
  5. pulumi_vault/aws/secret_backend.py +395 -38
  6. pulumi_vault/aws/secret_backend_static_role.py +217 -0
  7. pulumi_vault/azure/auth_backend_config.py +257 -5
  8. pulumi_vault/azure/backend.py +249 -4
  9. pulumi_vault/database/_inputs.py +1740 -44
  10. pulumi_vault/database/outputs.py +1198 -18
  11. pulumi_vault/database/secret_backend_connection.py +220 -0
  12. pulumi_vault/database/secret_backend_static_role.py +143 -1
  13. pulumi_vault/database/secrets_mount.py +8 -0
  14. pulumi_vault/gcp/auth_backend.py +222 -2
  15. pulumi_vault/gcp/secret_backend.py +244 -4
  16. pulumi_vault/ldap/auth_backend.py +222 -2
  17. pulumi_vault/ldap/secret_backend.py +222 -2
  18. pulumi_vault/pkisecret/__init__.py +6 -0
  19. pulumi_vault/pkisecret/_inputs.py +34 -6
  20. pulumi_vault/pkisecret/backend_acme_eab.py +549 -0
  21. pulumi_vault/pkisecret/backend_config_acme.py +689 -0
  22. pulumi_vault/pkisecret/backend_config_auto_tidy.py +1376 -0
  23. pulumi_vault/pkisecret/backend_config_cmpv2.py +572 -0
  24. pulumi_vault/pkisecret/get_backend_cert_metadata.py +277 -0
  25. pulumi_vault/pkisecret/get_backend_config_cmpv2.py +226 -0
  26. pulumi_vault/pkisecret/get_backend_issuer.py +114 -1
  27. pulumi_vault/pkisecret/outputs.py +40 -4
  28. pulumi_vault/pkisecret/secret_backend_cert.py +148 -7
  29. pulumi_vault/pkisecret/secret_backend_crl_config.py +54 -0
  30. pulumi_vault/pkisecret/secret_backend_intermediate_cert_request.py +141 -0
  31. pulumi_vault/pkisecret/secret_backend_issuer.py +265 -0
  32. pulumi_vault/pkisecret/secret_backend_role.py +299 -3
  33. pulumi_vault/pkisecret/secret_backend_root_cert.py +423 -0
  34. pulumi_vault/pkisecret/secret_backend_root_sign_intermediate.py +581 -3
  35. pulumi_vault/pkisecret/secret_backend_sign.py +94 -0
  36. pulumi_vault/pulumi-plugin.json +1 -1
  37. pulumi_vault/ssh/__init__.py +1 -0
  38. pulumi_vault/ssh/get_secret_backend_sign.py +294 -0
  39. pulumi_vault/ssh/secret_backend_role.py +27 -0
  40. pulumi_vault/terraformcloud/secret_role.py +7 -7
  41. pulumi_vault/transit/__init__.py +2 -0
  42. pulumi_vault/transit/get_sign.py +324 -0
  43. pulumi_vault/transit/get_verify.py +354 -0
  44. pulumi_vault/transit/secret_backend_key.py +162 -0
  45. {pulumi_vault-6.5.0a1736850018.dist-info → pulumi_vault-6.6.0.dist-info}/METADATA +1 -1
  46. {pulumi_vault-6.5.0a1736850018.dist-info → pulumi_vault-6.6.0.dist-info}/RECORD +48 -39
  47. {pulumi_vault-6.5.0a1736850018.dist-info → pulumi_vault-6.6.0.dist-info}/WHEEL +1 -1
  48. {pulumi_vault-6.5.0a1736850018.dist-info → pulumi_vault-6.6.0.dist-info}/top_level.txt +0 -0
pulumi_vault/aws/auth_backend_sts_role.py CHANGED
@@ -22,6 +22,7 @@ class AuthBackendStsRoleArgs:
22
22
  account_id: pulumi.Input[str],
23
23
  sts_role: pulumi.Input[str],
24
24
  backend: Optional[pulumi.Input[str]] = None,
25
+ external_id: Optional[pulumi.Input[str]] = None,
25
26
  namespace: Optional[pulumi.Input[str]] = None):
26
27
  """
27
28
  The set of arguments for constructing a AuthBackendStsRole resource.
@@ -30,6 +31,7 @@ class AuthBackendStsRoleArgs:
30
31
  by EC2 instances in the account specified by `account_id`.
31
32
  :param pulumi.Input[str] backend: The path the AWS auth backend being configured was
32
33
  mounted at. Defaults to `aws`.
34
+ :param pulumi.Input[str] external_id: External ID expected by the STS role. The associated STS role must be configured to require the external ID. Requires Vault 1.17+.
33
35
  :param pulumi.Input[str] namespace: The namespace to provision the resource in.
34
36
  The value should not contain leading or trailing forward slashes.
35
37
  The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault/index.html#namespace).
@@ -39,6 +41,8 @@ class AuthBackendStsRoleArgs:
39
41
  pulumi.set(__self__, "sts_role", sts_role)
40
42
  if backend is not None:
41
43
  pulumi.set(__self__, "backend", backend)
44
+ if external_id is not None:
45
+ pulumi.set(__self__, "external_id", external_id)
42
46
  if namespace is not None:
43
47
  pulumi.set(__self__, "namespace", namespace)
44
48
 
@@ -80,6 +84,18 @@ class AuthBackendStsRoleArgs:
80
84
  def backend(self, value: Optional[pulumi.Input[str]]):
81
85
  pulumi.set(self, "backend", value)
82
86
 
87
+ @property
88
+ @pulumi.getter(name="externalId")
89
+ def external_id(self) -> Optional[pulumi.Input[str]]:
90
+ """
91
+ External ID expected by the STS role. The associated STS role must be configured to require the external ID. Requires Vault 1.17+.
92
+ """
93
+ return pulumi.get(self, "external_id")
94
+
95
+ @external_id.setter
96
+ def external_id(self, value: Optional[pulumi.Input[str]]):
97
+ pulumi.set(self, "external_id", value)
98
+
83
99
  @property
84
100
  @pulumi.getter
85
101
  def namespace(self) -> Optional[pulumi.Input[str]]:
@@ -101,6 +117,7 @@ class _AuthBackendStsRoleState:
101
117
  def __init__(__self__, *,
102
118
  account_id: Optional[pulumi.Input[str]] = None,
103
119
  backend: Optional[pulumi.Input[str]] = None,
120
+ external_id: Optional[pulumi.Input[str]] = None,
104
121
  namespace: Optional[pulumi.Input[str]] = None,
105
122
  sts_role: Optional[pulumi.Input[str]] = None):
106
123
  """
@@ -108,6 +125,7 @@ class _AuthBackendStsRoleState:
108
125
  :param pulumi.Input[str] account_id: The AWS account ID to configure the STS role for.
109
126
  :param pulumi.Input[str] backend: The path the AWS auth backend being configured was
110
127
  mounted at. Defaults to `aws`.
128
+ :param pulumi.Input[str] external_id: External ID expected by the STS role. The associated STS role must be configured to require the external ID. Requires Vault 1.17+.
111
129
  :param pulumi.Input[str] namespace: The namespace to provision the resource in.
112
130
  The value should not contain leading or trailing forward slashes.
113
131
  The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault/index.html#namespace).
@@ -119,6 +137,8 @@ class _AuthBackendStsRoleState:
119
137
  pulumi.set(__self__, "account_id", account_id)
120
138
  if backend is not None:
121
139
  pulumi.set(__self__, "backend", backend)
140
+ if external_id is not None:
141
+ pulumi.set(__self__, "external_id", external_id)
122
142
  if namespace is not None:
123
143
  pulumi.set(__self__, "namespace", namespace)
124
144
  if sts_role is not None:
@@ -149,6 +169,18 @@ class _AuthBackendStsRoleState:
149
169
  def backend(self, value: Optional[pulumi.Input[str]]):
150
170
  pulumi.set(self, "backend", value)
151
171
 
172
+ @property
173
+ @pulumi.getter(name="externalId")
174
+ def external_id(self) -> Optional[pulumi.Input[str]]:
175
+ """
176
+ External ID expected by the STS role. The associated STS role must be configured to require the external ID. Requires Vault 1.17+.
177
+ """
178
+ return pulumi.get(self, "external_id")
179
+
180
+ @external_id.setter
181
+ def external_id(self, value: Optional[pulumi.Input[str]]):
182
+ pulumi.set(self, "external_id", value)
183
+
152
184
  @property
153
185
  @pulumi.getter
154
186
  def namespace(self) -> Optional[pulumi.Input[str]]:
@@ -185,6 +217,7 @@ class AuthBackendStsRole(pulumi.CustomResource):
185
217
  opts: Optional[pulumi.ResourceOptions] = None,
186
218
  account_id: Optional[pulumi.Input[str]] = None,
187
219
  backend: Optional[pulumi.Input[str]] = None,
220
+ external_id: Optional[pulumi.Input[str]] = None,
188
221
  namespace: Optional[pulumi.Input[str]] = None,
189
222
  sts_role: Optional[pulumi.Input[str]] = None,
190
223
  __props__=None):
@@ -215,6 +248,7 @@ class AuthBackendStsRole(pulumi.CustomResource):
215
248
  :param pulumi.Input[str] account_id: The AWS account ID to configure the STS role for.
216
249
  :param pulumi.Input[str] backend: The path the AWS auth backend being configured was
217
250
  mounted at. Defaults to `aws`.
251
+ :param pulumi.Input[str] external_id: External ID expected by the STS role. The associated STS role must be configured to require the external ID. Requires Vault 1.17+.
218
252
  :param pulumi.Input[str] namespace: The namespace to provision the resource in.
219
253
  The value should not contain leading or trailing forward slashes.
220
254
  The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault/index.html#namespace).
@@ -267,6 +301,7 @@ class AuthBackendStsRole(pulumi.CustomResource):
267
301
  opts: Optional[pulumi.ResourceOptions] = None,
268
302
  account_id: Optional[pulumi.Input[str]] = None,
269
303
  backend: Optional[pulumi.Input[str]] = None,
304
+ external_id: Optional[pulumi.Input[str]] = None,
270
305
  namespace: Optional[pulumi.Input[str]] = None,
271
306
  sts_role: Optional[pulumi.Input[str]] = None,
272
307
  __props__=None):
@@ -282,6 +317,7 @@ class AuthBackendStsRole(pulumi.CustomResource):
282
317
  raise TypeError("Missing required property 'account_id'")
283
318
  __props__.__dict__["account_id"] = account_id
284
319
  __props__.__dict__["backend"] = backend
320
+ __props__.__dict__["external_id"] = external_id
285
321
  __props__.__dict__["namespace"] = namespace
286
322
  if sts_role is None and not opts.urn:
287
323
  raise TypeError("Missing required property 'sts_role'")
@@ -298,6 +334,7 @@ class AuthBackendStsRole(pulumi.CustomResource):
298
334
  opts: Optional[pulumi.ResourceOptions] = None,
299
335
  account_id: Optional[pulumi.Input[str]] = None,
300
336
  backend: Optional[pulumi.Input[str]] = None,
337
+ external_id: Optional[pulumi.Input[str]] = None,
301
338
  namespace: Optional[pulumi.Input[str]] = None,
302
339
  sts_role: Optional[pulumi.Input[str]] = None) -> 'AuthBackendStsRole':
303
340
  """
@@ -310,6 +347,7 @@ class AuthBackendStsRole(pulumi.CustomResource):
310
347
  :param pulumi.Input[str] account_id: The AWS account ID to configure the STS role for.
311
348
  :param pulumi.Input[str] backend: The path the AWS auth backend being configured was
312
349
  mounted at. Defaults to `aws`.
350
+ :param pulumi.Input[str] external_id: External ID expected by the STS role. The associated STS role must be configured to require the external ID. Requires Vault 1.17+.
313
351
  :param pulumi.Input[str] namespace: The namespace to provision the resource in.
314
352
  The value should not contain leading or trailing forward slashes.
315
353
  The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault/index.html#namespace).
@@ -323,6 +361,7 @@ class AuthBackendStsRole(pulumi.CustomResource):
323
361
 
324
362
  __props__.__dict__["account_id"] = account_id
325
363
  __props__.__dict__["backend"] = backend
364
+ __props__.__dict__["external_id"] = external_id
326
365
  __props__.__dict__["namespace"] = namespace
327
366
  __props__.__dict__["sts_role"] = sts_role
328
367
  return AuthBackendStsRole(resource_name, opts=opts, __props__=__props__)
@@ -344,6 +383,14 @@ class AuthBackendStsRole(pulumi.CustomResource):
344
383
  """
345
384
  return pulumi.get(self, "backend")
346
385
 
386
+ @property
387
+ @pulumi.getter(name="externalId")
388
+ def external_id(self) -> pulumi.Output[Optional[str]]:
389
+ """
390
+ External ID expected by the STS role. The associated STS role must be configured to require the external ID. Requires Vault 1.17+.
391
+ """
392
+ return pulumi.get(self, "external_id")
393
+
347
394
  @property
348
395
  @pulumi.getter
349
396
  def namespace(self) -> pulumi.Output[Optional[str]]: