pulumi-vault 6.6.0a1741415971__py3-none-any.whl → 6.7.0__py3-none-any.whl

pulumi_vault/pkisecret/get_backend_issuer.py

@@ -2,6 +2,7 @@
 # *** WARNING: this file was generated by the Pulumi Terraform Bridge (tfgen) Tool. ***
 # *** Do not edit by hand unless you're certain you know what you are doing! ***
 
+import builtins
 import copy
 import warnings
 import sys
@@ -26,7 +27,7 @@ class GetBackendIssuerResult:
     """
     A collection of values returned by getBackendIssuer.
     """
-    def __init__(__self__, backend=None, ca_chains=None, certificate=None, id=None, issuer_id=None, issuer_name=None, issuer_ref=None, key_id=None, leaf_not_after_behavior=None, manual_chains=None, namespace=None, usage=None):
+    def __init__(__self__, backend=None, ca_chains=None, certificate=None, disable_critical_extension_checks=None, disable_name_checks=None, disable_name_constraint_checks=None, disable_path_length_checks=None, id=None, issuer_id=None, issuer_name=None, issuer_ref=None, key_id=None, leaf_not_after_behavior=None, manual_chains=None, namespace=None, usage=None):
         if backend and not isinstance(backend, str):
             raise TypeError("Expected argument 'backend' to be a str")
         pulumi.set(__self__, "backend", backend)
@@ -36,6 +37,18 @@ class GetBackendIssuerResult:
         if certificate and not isinstance(certificate, str):
             raise TypeError("Expected argument 'certificate' to be a str")
         pulumi.set(__self__, "certificate", certificate)
+        if disable_critical_extension_checks and not isinstance(disable_critical_extension_checks, bool):
+            raise TypeError("Expected argument 'disable_critical_extension_checks' to be a bool")
+        pulumi.set(__self__, "disable_critical_extension_checks", disable_critical_extension_checks)
+        if disable_name_checks and not isinstance(disable_name_checks, bool):
+            raise TypeError("Expected argument 'disable_name_checks' to be a bool")
+        pulumi.set(__self__, "disable_name_checks", disable_name_checks)
+        if disable_name_constraint_checks and not isinstance(disable_name_constraint_checks, bool):
+            raise TypeError("Expected argument 'disable_name_constraint_checks' to be a bool")
+        pulumi.set(__self__, "disable_name_constraint_checks", disable_name_constraint_checks)
+        if disable_path_length_checks and not isinstance(disable_path_length_checks, bool):
+            raise TypeError("Expected argument 'disable_path_length_checks' to be a bool")
+        pulumi.set(__self__, "disable_path_length_checks", disable_path_length_checks)
         if id and not isinstance(id, str):
             raise TypeError("Expected argument 'id' to be a str")
         pulumi.set(__self__, "id", id)
@@ -66,12 +79,12 @@ class GetBackendIssuerResult:
 
     @property
     @pulumi.getter
-    def backend(self) -> str:
+    def backend(self) -> builtins.str:
         return pulumi.get(self, "backend")
 
     @property
     @pulumi.getter(name="caChains")
-    def ca_chains(self) -> Sequence[str]:
+    def ca_chains(self) -> Sequence[builtins.str]:
         """
         The CA chain as a list of format specific certificates.
         """
@@ -79,15 +92,58 @@ class GetBackendIssuerResult:
 
     @property
     @pulumi.getter
-    def certificate(self) -> str:
+    def certificate(self) -> builtins.str:
         """
         Certificate associated with this issuer.
         """
         return pulumi.get(self, "certificate")
 
+    @property
+    @pulumi.getter(name="disableCriticalExtensionChecks")
+    def disable_critical_extension_checks(self) -> Optional[builtins.bool]:
+        """
+        This determines whether this
+        issuer is able to issue certificates where the chain of trust (including the
+        issued certificate) contain critical extensions not processed by Vault.
+        """
+        return pulumi.get(self, "disable_critical_extension_checks")
+
+    @property
+    @pulumi.getter(name="disableNameChecks")
+    def disable_name_checks(self) -> Optional[builtins.bool]:
+        """
+        This determines whether this issuer is able
+        to issue certificates where the chain of trust (including the final issued
+        certificate) contains a link in which the subject of the issuing certificate
+        does not match the named issuer of the certificate it signed.
+        """
+        return pulumi.get(self, "disable_name_checks")
+
+    @property
+    @pulumi.getter(name="disableNameConstraintChecks")
+    def disable_name_constraint_checks(self) -> Optional[builtins.bool]:
+        """
+        This determines whether this
+        issuer is able to issue certificates where the chain of trust (including the
+        final issued certificate) violates the name constraints critical extension of
+        one of the issuer certificates in the chain.
+        """
+        return pulumi.get(self, "disable_name_constraint_checks")
+
+    @property
+    @pulumi.getter(name="disablePathLengthChecks")
+    def disable_path_length_checks(self) -> Optional[builtins.bool]:
+        """
+        This determines whether this issuer
+        is able to issue certificates where the chain of trust (including the final
+        issued certificate) is longer than allowed by a certificate authority in that
+        chain.
+        """
+        return pulumi.get(self, "disable_path_length_checks")
+
     @property
     @pulumi.getter
-    def id(self) -> str:
+    def id(self) -> builtins.str:
         """
         The provider-assigned unique ID for this managed resource.
         """
@@ -95,7 +151,7 @@ class GetBackendIssuerResult:
 
     @property
     @pulumi.getter(name="issuerId")
-    def issuer_id(self) -> str:
+    def issuer_id(self) -> builtins.str:
         """
         ID of the issuer.
         """
@@ -103,7 +159,7 @@ class GetBackendIssuerResult:
 
     @property
     @pulumi.getter(name="issuerName")
-    def issuer_name(self) -> str:
+    def issuer_name(self) -> builtins.str:
         """
         Name of the issuer.
         """
@@ -111,12 +167,12 @@ class GetBackendIssuerResult:
 
     @property
     @pulumi.getter(name="issuerRef")
-    def issuer_ref(self) -> str:
+    def issuer_ref(self) -> builtins.str:
         return pulumi.get(self, "issuer_ref")
 
     @property
     @pulumi.getter(name="keyId")
-    def key_id(self) -> str:
+    def key_id(self) -> builtins.str:
         """
         ID of the key used by the issuer.
         """
@@ -124,7 +180,7 @@ class GetBackendIssuerResult:
 
     @property
     @pulumi.getter(name="leafNotAfterBehavior")
-    def leaf_not_after_behavior(self) -> str:
+    def leaf_not_after_behavior(self) -> builtins.str:
         """
         Behavior of a leaf's NotAfter field during issuance.
         """
@@ -132,7 +188,7 @@ class GetBackendIssuerResult:
 
     @property
     @pulumi.getter(name="manualChains")
-    def manual_chains(self) -> Sequence[str]:
+    def manual_chains(self) -> Sequence[builtins.str]:
         """
         Chain of issuer references to build this issuer's computed 
         CAChain field from, when non-empty.
@@ -141,12 +197,12 @@ class GetBackendIssuerResult:
 
     @property
     @pulumi.getter
-    def namespace(self) -> Optional[str]:
+    def namespace(self) -> Optional[builtins.str]:
         return pulumi.get(self, "namespace")
 
     @property
     @pulumi.getter
-    def usage(self) -> str:
+    def usage(self) -> builtins.str:
         """
         Allowed usages for this issuer.
         """
@@ -162,6 +218,10 @@ class AwaitableGetBackendIssuerResult(GetBackendIssuerResult):
             backend=self.backend,
             ca_chains=self.ca_chains,
             certificate=self.certificate,
+            disable_critical_extension_checks=self.disable_critical_extension_checks,
+            disable_name_checks=self.disable_name_checks,
+            disable_name_constraint_checks=self.disable_name_constraint_checks,
+            disable_path_length_checks=self.disable_path_length_checks,
             id=self.id,
             issuer_id=self.issuer_id,
             issuer_name=self.issuer_name,
@@ -173,9 +233,13 @@ class AwaitableGetBackendIssuerResult(GetBackendIssuerResult):
             usage=self.usage)
 
 
-def get_backend_issuer(backend: Optional[str] = None,
-                       issuer_ref: Optional[str] = None,
-                       namespace: Optional[str] = None,
+def get_backend_issuer(backend: Optional[builtins.str] = None,
+                       disable_critical_extension_checks: Optional[builtins.bool] = None,
+                       disable_name_checks: Optional[builtins.bool] = None,
+                       disable_name_constraint_checks: Optional[builtins.bool] = None,
+                       disable_path_length_checks: Optional[builtins.bool] = None,
+                       issuer_ref: Optional[builtins.str] = None,
+                       namespace: Optional[builtins.str] = None,
                        opts: Optional[pulumi.InvokeOptions] = None) -> AwaitableGetBackendIssuerResult:
     """
     ## Example Usage
@@ -199,16 +263,35 @@ def get_backend_issuer(backend: Optional[str] = None,
     ```
 
 
-    :param str backend: The path to the PKI secret backend to
+    :param builtins.str backend: The path to the PKI secret backend to
            read the issuer from, with no leading or trailing `/`s.
-    :param str issuer_ref: Reference to an existing issuer.
-    :param str namespace: The namespace of the target resource.
+    :param builtins.bool disable_critical_extension_checks: This determines whether this
+           issuer is able to issue certificates where the chain of trust (including the
+           issued certificate) contain critical extensions not processed by Vault.
+    :param builtins.bool disable_name_checks: This determines whether this issuer is able
+           to issue certificates where the chain of trust (including the final issued
+           certificate) contains a link in which the subject of the issuing certificate
+           does not match the named issuer of the certificate it signed.
+    :param builtins.bool disable_name_constraint_checks: This determines whether this
+           issuer is able to issue certificates where the chain of trust (including the
+           final issued certificate) violates the name constraints critical extension of
+           one of the issuer certificates in the chain.
+    :param builtins.bool disable_path_length_checks: This determines whether this issuer
+           is able to issue certificates where the chain of trust (including the final
+           issued certificate) is longer than allowed by a certificate authority in that
+           chain.
+    :param builtins.str issuer_ref: Reference to an existing issuer.
+    :param builtins.str namespace: The namespace of the target resource.
            The value should not contain leading or trailing forward slashes.
            The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault/index.html#namespace).
            *Available only for Vault Enterprise*.
     """
     __args__ = dict()
     __args__['backend'] = backend
+    __args__['disableCriticalExtensionChecks'] = disable_critical_extension_checks
+    __args__['disableNameChecks'] = disable_name_checks
+    __args__['disableNameConstraintChecks'] = disable_name_constraint_checks
+    __args__['disablePathLengthChecks'] = disable_path_length_checks
     __args__['issuerRef'] = issuer_ref
     __args__['namespace'] = namespace
     opts = pulumi.InvokeOptions.merge(_utilities.get_invoke_opts_defaults(), opts)
@@ -218,6 +301,10 @@ def get_backend_issuer(backend: Optional[str] = None,
         backend=pulumi.get(__ret__, 'backend'),
         ca_chains=pulumi.get(__ret__, 'ca_chains'),
         certificate=pulumi.get(__ret__, 'certificate'),
+        disable_critical_extension_checks=pulumi.get(__ret__, 'disable_critical_extension_checks'),
+        disable_name_checks=pulumi.get(__ret__, 'disable_name_checks'),
+        disable_name_constraint_checks=pulumi.get(__ret__, 'disable_name_constraint_checks'),
+        disable_path_length_checks=pulumi.get(__ret__, 'disable_path_length_checks'),
         id=pulumi.get(__ret__, 'id'),
         issuer_id=pulumi.get(__ret__, 'issuer_id'),
         issuer_name=pulumi.get(__ret__, 'issuer_name'),
@@ -227,9 +314,13 @@ def get_backend_issuer(backend: Optional[str] = None,
         manual_chains=pulumi.get(__ret__, 'manual_chains'),
         namespace=pulumi.get(__ret__, 'namespace'),
         usage=pulumi.get(__ret__, 'usage'))
-def get_backend_issuer_output(backend: Optional[pulumi.Input[str]] = None,
-                              issuer_ref: Optional[pulumi.Input[str]] = None,
-                              namespace: Optional[pulumi.Input[Optional[str]]] = None,
+def get_backend_issuer_output(backend: Optional[pulumi.Input[builtins.str]] = None,
+                              disable_critical_extension_checks: Optional[pulumi.Input[Optional[builtins.bool]]] = None,
+                              disable_name_checks: Optional[pulumi.Input[Optional[builtins.bool]]] = None,
+                              disable_name_constraint_checks: Optional[pulumi.Input[Optional[builtins.bool]]] = None,
+                              disable_path_length_checks: Optional[pulumi.Input[Optional[builtins.bool]]] = None,
+                              issuer_ref: Optional[pulumi.Input[builtins.str]] = None,
+                              namespace: Optional[pulumi.Input[Optional[builtins.str]]] = None,
                               opts: Optional[Union[pulumi.InvokeOptions, pulumi.InvokeOutputOptions]] = None) -> pulumi.Output[GetBackendIssuerResult]:
     """
     ## Example Usage
@@ -253,16 +344,35 @@ def get_backend_issuer_output(backend: Optional[pulumi.Input[str]] = None,
     ```
 
 
-    :param str backend: The path to the PKI secret backend to
+    :param builtins.str backend: The path to the PKI secret backend to
            read the issuer from, with no leading or trailing `/`s.
-    :param str issuer_ref: Reference to an existing issuer.
-    :param str namespace: The namespace of the target resource.
+    :param builtins.bool disable_critical_extension_checks: This determines whether this
+           issuer is able to issue certificates where the chain of trust (including the
+           issued certificate) contain critical extensions not processed by Vault.
+    :param builtins.bool disable_name_checks: This determines whether this issuer is able
+           to issue certificates where the chain of trust (including the final issued
+           certificate) contains a link in which the subject of the issuing certificate
+           does not match the named issuer of the certificate it signed.
+    :param builtins.bool disable_name_constraint_checks: This determines whether this
+           issuer is able to issue certificates where the chain of trust (including the
+           final issued certificate) violates the name constraints critical extension of
+           one of the issuer certificates in the chain.
+    :param builtins.bool disable_path_length_checks: This determines whether this issuer
+           is able to issue certificates where the chain of trust (including the final
+           issued certificate) is longer than allowed by a certificate authority in that
+           chain.
+    :param builtins.str issuer_ref: Reference to an existing issuer.
+    :param builtins.str namespace: The namespace of the target resource.
            The value should not contain leading or trailing forward slashes.
            The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault/index.html#namespace).
            *Available only for Vault Enterprise*.
     """
     __args__ = dict()
     __args__['backend'] = backend
+    __args__['disableCriticalExtensionChecks'] = disable_critical_extension_checks
+    __args__['disableNameChecks'] = disable_name_checks
+    __args__['disableNameConstraintChecks'] = disable_name_constraint_checks
+    __args__['disablePathLengthChecks'] = disable_path_length_checks
     __args__['issuerRef'] = issuer_ref
     __args__['namespace'] = namespace
     opts = pulumi.InvokeOutputOptions.merge(_utilities.get_invoke_opts_defaults(), opts)
@@ -271,6 +381,10 @@ def get_backend_issuer_output(backend: Optional[pulumi.Input[str]] = None,
         backend=pulumi.get(__response__, 'backend'),
         ca_chains=pulumi.get(__response__, 'ca_chains'),
         certificate=pulumi.get(__response__, 'certificate'),
+        disable_critical_extension_checks=pulumi.get(__response__, 'disable_critical_extension_checks'),
+        disable_name_checks=pulumi.get(__response__, 'disable_name_checks'),
+        disable_name_constraint_checks=pulumi.get(__response__, 'disable_name_constraint_checks'),
+        disable_path_length_checks=pulumi.get(__response__, 'disable_path_length_checks'),
         id=pulumi.get(__response__, 'id'),
         issuer_id=pulumi.get(__response__, 'issuer_id'),
         issuer_name=pulumi.get(__response__, 'issuer_name'),

pulumi_vault/pkisecret/get_backend_issuers.py

@@ -2,6 +2,7 @@
 # *** WARNING: this file was generated by the Pulumi Terraform Bridge (tfgen) Tool. ***
 # *** Do not edit by hand unless you're certain you know what you are doing! ***
 
+import builtins
 import copy
 import warnings
 import sys
@@ -48,12 +49,12 @@ class GetBackendIssuersResult:
 
     @property
     @pulumi.getter
-    def backend(self) -> str:
+    def backend(self) -> builtins.str:
         return pulumi.get(self, "backend")
 
     @property
     @pulumi.getter
-    def id(self) -> str:
+    def id(self) -> builtins.str:
         """
         The provider-assigned unique ID for this managed resource.
         """
@@ -61,7 +62,7 @@ class GetBackendIssuersResult:
 
     @property
     @pulumi.getter(name="keyInfo")
-    def key_info(self) -> Mapping[str, str]:
+    def key_info(self) -> Mapping[str, builtins.str]:
         """
         Map of issuer strings read from Vault.
         """
@@ -69,7 +70,7 @@ class GetBackendIssuersResult:
 
     @property
     @pulumi.getter(name="keyInfoJson")
-    def key_info_json(self) -> str:
+    def key_info_json(self) -> builtins.str:
         """
         JSON-encoded issuer data read from Vault.
         """
@@ -77,7 +78,7 @@ class GetBackendIssuersResult:
 
     @property
     @pulumi.getter
-    def keys(self) -> Sequence[str]:
+    def keys(self) -> Sequence[builtins.str]:
         """
         Keys used by issuers under the backend path.
         """
@@ -85,7 +86,7 @@ class GetBackendIssuersResult:
 
     @property
     @pulumi.getter
-    def namespace(self) -> Optional[str]:
+    def namespace(self) -> Optional[builtins.str]:
         return pulumi.get(self, "namespace")
 
 
@@ -103,8 +104,8 @@ class AwaitableGetBackendIssuersResult(GetBackendIssuersResult):
             namespace=self.namespace)
 
 
-def get_backend_issuers(backend: Optional[str] = None,
-                        namespace: Optional[str] = None,
+def get_backend_issuers(backend: Optional[builtins.str] = None,
+                        namespace: Optional[builtins.str] = None,
                         opts: Optional[pulumi.InvokeOptions] = None) -> AwaitableGetBackendIssuersResult:
     """
     ## Example Usage
@@ -127,9 +128,9 @@ def get_backend_issuers(backend: Optional[str] = None,
     ```
 
 
-    :param str backend: The path to the PKI secret backend to
+    :param builtins.str backend: The path to the PKI secret backend to
            read the issuers from, with no leading or trailing `/`s.
-    :param str namespace: The namespace of the target resource.
+    :param builtins.str namespace: The namespace of the target resource.
            The value should not contain leading or trailing forward slashes.
            The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault/index.html#namespace).
            *Available only for Vault Enterprise*.
@@ -147,8 +148,8 @@ def get_backend_issuers(backend: Optional[str] = None,
         key_info_json=pulumi.get(__ret__, 'key_info_json'),
         keys=pulumi.get(__ret__, 'keys'),
         namespace=pulumi.get(__ret__, 'namespace'))
-def get_backend_issuers_output(backend: Optional[pulumi.Input[str]] = None,
-                               namespace: Optional[pulumi.Input[Optional[str]]] = None,
+def get_backend_issuers_output(backend: Optional[pulumi.Input[builtins.str]] = None,
+                               namespace: Optional[pulumi.Input[Optional[builtins.str]]] = None,
                                opts: Optional[Union[pulumi.InvokeOptions, pulumi.InvokeOutputOptions]] = None) -> pulumi.Output[GetBackendIssuersResult]:
     """
     ## Example Usage
@@ -171,9 +172,9 @@ def get_backend_issuers_output(backend: Optional[pulumi.Input[str]] = None,
     ```
 
 
-    :param str backend: The path to the PKI secret backend to
+    :param builtins.str backend: The path to the PKI secret backend to
            read the issuers from, with no leading or trailing `/`s.
-    :param str namespace: The namespace of the target resource.
+    :param builtins.str namespace: The namespace of the target resource.
            The value should not contain leading or trailing forward slashes.
            The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault/index.html#namespace).
            *Available only for Vault Enterprise*.

pulumi_vault/pkisecret/get_backend_key.py

@@ -2,6 +2,7 @@
 # *** WARNING: this file was generated by the Pulumi Terraform Bridge (tfgen) Tool. ***
 # *** Do not edit by hand unless you're certain you know what you are doing! ***
 
+import builtins
 import copy
 import warnings
 import sys
@@ -51,12 +52,12 @@ class GetBackendKeyResult:
 
     @property
     @pulumi.getter
-    def backend(self) -> str:
+    def backend(self) -> builtins.str:
         return pulumi.get(self, "backend")
 
     @property
     @pulumi.getter
-    def id(self) -> str:
+    def id(self) -> builtins.str:
         """
         The provider-assigned unique ID for this managed resource.
         """
@@ -64,7 +65,7 @@ class GetBackendKeyResult:
 
     @property
     @pulumi.getter(name="keyId")
-    def key_id(self) -> str:
+    def key_id(self) -> builtins.str:
         """
         ID of the key.
         """
@@ -72,7 +73,7 @@ class GetBackendKeyResult:
 
     @property
     @pulumi.getter(name="keyName")
-    def key_name(self) -> str:
+    def key_name(self) -> builtins.str:
         """
         Name of the key.
         """
@@ -80,12 +81,12 @@ class GetBackendKeyResult:
 
     @property
     @pulumi.getter(name="keyRef")
-    def key_ref(self) -> str:
+    def key_ref(self) -> builtins.str:
         return pulumi.get(self, "key_ref")
 
     @property
     @pulumi.getter(name="keyType")
-    def key_type(self) -> str:
+    def key_type(self) -> builtins.str:
         """
         Type of the key.
         """
@@ -93,7 +94,7 @@ class GetBackendKeyResult:
 
     @property
     @pulumi.getter
-    def namespace(self) -> Optional[str]:
+    def namespace(self) -> Optional[builtins.str]:
         return pulumi.get(self, "namespace")
 
 
@@ -112,9 +113,9 @@ class AwaitableGetBackendKeyResult(GetBackendKeyResult):
             namespace=self.namespace)
 
 
-def get_backend_key(backend: Optional[str] = None,
-                    key_ref: Optional[str] = None,
-                    namespace: Optional[str] = None,
+def get_backend_key(backend: Optional[builtins.str] = None,
+                    key_ref: Optional[builtins.str] = None,
+                    namespace: Optional[builtins.str] = None,
                     opts: Optional[pulumi.InvokeOptions] = None) -> AwaitableGetBackendKeyResult:
     """
     ## Example Usage
@@ -138,10 +139,10 @@ def get_backend_key(backend: Optional[str] = None,
     ```
 
 
-    :param str backend: The path to the PKI secret backend to
+    :param builtins.str backend: The path to the PKI secret backend to
            read the key from, with no leading or trailing `/`s.
-    :param str key_ref: Reference to an existing key.
-    :param str namespace: The namespace of the target resource.
+    :param builtins.str key_ref: Reference to an existing key.
+    :param builtins.str namespace: The namespace of the target resource.
            The value should not contain leading or trailing forward slashes.
            The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault/index.html#namespace).
            *Available only for Vault Enterprise*.
@@ -161,9 +162,9 @@ def get_backend_key(backend: Optional[str] = None,
         key_ref=pulumi.get(__ret__, 'key_ref'),
         key_type=pulumi.get(__ret__, 'key_type'),
         namespace=pulumi.get(__ret__, 'namespace'))
-def get_backend_key_output(backend: Optional[pulumi.Input[str]] = None,
-                           key_ref: Optional[pulumi.Input[str]] = None,
-                           namespace: Optional[pulumi.Input[Optional[str]]] = None,
+def get_backend_key_output(backend: Optional[pulumi.Input[builtins.str]] = None,
+                           key_ref: Optional[pulumi.Input[builtins.str]] = None,
+                           namespace: Optional[pulumi.Input[Optional[builtins.str]]] = None,
                            opts: Optional[Union[pulumi.InvokeOptions, pulumi.InvokeOutputOptions]] = None) -> pulumi.Output[GetBackendKeyResult]:
     """
     ## Example Usage
@@ -187,10 +188,10 @@ def get_backend_key_output(backend: Optional[pulumi.Input[str]] = None,
     ```
 
 
-    :param str backend: The path to the PKI secret backend to
+    :param builtins.str backend: The path to the PKI secret backend to
            read the key from, with no leading or trailing `/`s.
-    :param str key_ref: Reference to an existing key.
-    :param str namespace: The namespace of the target resource.
+    :param builtins.str key_ref: Reference to an existing key.
+    :param builtins.str namespace: The namespace of the target resource.
            The value should not contain leading or trailing forward slashes.
            The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault/index.html#namespace).
            *Available only for Vault Enterprise*.

pulumi_vault/pkisecret/get_backend_keys.py

@@ -2,6 +2,7 @@
 # *** WARNING: this file was generated by the Pulumi Terraform Bridge (tfgen) Tool. ***
 # *** Do not edit by hand unless you're certain you know what you are doing! ***
 
+import builtins
 import copy
 import warnings
 import sys
@@ -48,12 +49,12 @@ class GetBackendKeysResult:
 
     @property
     @pulumi.getter
-    def backend(self) -> str:
+    def backend(self) -> builtins.str:
         return pulumi.get(self, "backend")
 
     @property
     @pulumi.getter
-    def id(self) -> str:
+    def id(self) -> builtins.str:
         """
         The provider-assigned unique ID for this managed resource.
         """
@@ -61,7 +62,7 @@ class GetBackendKeysResult:
 
     @property
     @pulumi.getter(name="keyInfo")
-    def key_info(self) -> Mapping[str, str]:
+    def key_info(self) -> Mapping[str, builtins.str]:
         """
         Map of key strings read from Vault.
         """
@@ -69,7 +70,7 @@ class GetBackendKeysResult:
 
     @property
     @pulumi.getter(name="keyInfoJson")
-    def key_info_json(self) -> str:
+    def key_info_json(self) -> builtins.str:
         """
         JSON-encoded key data read from Vault.
         """
@@ -77,7 +78,7 @@ class GetBackendKeysResult:
 
     @property
     @pulumi.getter
-    def keys(self) -> Sequence[str]:
+    def keys(self) -> Sequence[builtins.str]:
         """
         Keys used under the backend path.
         """
@@ -85,7 +86,7 @@ class GetBackendKeysResult:
 
     @property
     @pulumi.getter
-    def namespace(self) -> Optional[str]:
+    def namespace(self) -> Optional[builtins.str]:
         return pulumi.get(self, "namespace")
 
 
@@ -103,8 +104,8 @@ class AwaitableGetBackendKeysResult(GetBackendKeysResult):
             namespace=self.namespace)
 
 
-def get_backend_keys(backend: Optional[str] = None,
-                     namespace: Optional[str] = None,
+def get_backend_keys(backend: Optional[builtins.str] = None,
+                     namespace: Optional[builtins.str] = None,
                      opts: Optional[pulumi.InvokeOptions] = None) -> AwaitableGetBackendKeysResult:
     """
     ## Example Usage
@@ -127,9 +128,9 @@ def get_backend_keys(backend: Optional[str] = None,
     ```
 
 
-    :param str backend: The path to the PKI secret backend to
+    :param builtins.str backend: The path to the PKI secret backend to
            read the keys from, with no leading or trailing `/`s.
-    :param str namespace: The namespace of the target resource.
+    :param builtins.str namespace: The namespace of the target resource.
            The value should not contain leading or trailing forward slashes.
            The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault/index.html#namespace).
            *Available only for Vault Enterprise*.
@@ -147,8 +148,8 @@ def get_backend_keys(backend: Optional[str] = None,
         key_info_json=pulumi.get(__ret__, 'key_info_json'),
         keys=pulumi.get(__ret__, 'keys'),
         namespace=pulumi.get(__ret__, 'namespace'))
-def get_backend_keys_output(backend: Optional[pulumi.Input[str]] = None,
-                            namespace: Optional[pulumi.Input[Optional[str]]] = None,
+def get_backend_keys_output(backend: Optional[pulumi.Input[builtins.str]] = None,
+                            namespace: Optional[pulumi.Input[Optional[builtins.str]]] = None,
                             opts: Optional[Union[pulumi.InvokeOptions, pulumi.InvokeOutputOptions]] = None) -> pulumi.Output[GetBackendKeysResult]:
     """
     ## Example Usage
@@ -171,9 +172,9 @@ def get_backend_keys_output(backend: Optional[pulumi.Input[str]] = None,
     ```
 
 
-    :param str backend: The path to the PKI secret backend to
+    :param builtins.str backend: The path to the PKI secret backend to
            read the keys from, with no leading or trailing `/`s.
-    :param str namespace: The namespace of the target resource.
+    :param builtins.str namespace: The namespace of the target resource.
            The value should not contain leading or trailing forward slashes.
            The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault/index.html#namespace).
            *Available only for Vault Enterprise*.