pulumi-vault 6.6.0a1741415971__py3-none-any.whl → 6.7.0__py3-none-any.whl
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- pulumi_vault/__init__.py +9 -0
- pulumi_vault/_inputs.py +583 -562
- pulumi_vault/ad/__init__.py +1 -0
- pulumi_vault/ad/get_access_credentials.py +20 -19
- pulumi_vault/ad/secret_backend.py +477 -476
- pulumi_vault/ad/secret_library.py +99 -98
- pulumi_vault/ad/secret_role.py +85 -84
- pulumi_vault/alicloud/__init__.py +1 -0
- pulumi_vault/alicloud/auth_backend_role.py +183 -182
- pulumi_vault/approle/__init__.py +1 -0
- pulumi_vault/approle/auth_backend_login.py +106 -105
- pulumi_vault/approle/auth_backend_role.py +239 -238
- pulumi_vault/approle/auth_backend_role_secret_id.py +162 -161
- pulumi_vault/approle/get_auth_backend_role_id.py +18 -17
- pulumi_vault/audit.py +85 -84
- pulumi_vault/audit_request_header.py +43 -42
- pulumi_vault/auth_backend.py +106 -105
- pulumi_vault/aws/__init__.py +1 -0
- pulumi_vault/aws/auth_backend_cert.py +71 -70
- pulumi_vault/aws/auth_backend_client.py +425 -200
- pulumi_vault/aws/auth_backend_config_identity.py +85 -84
- pulumi_vault/aws/auth_backend_identity_whitelist.py +57 -56
- pulumi_vault/aws/auth_backend_login.py +209 -208
- pulumi_vault/aws/auth_backend_role.py +400 -399
- pulumi_vault/aws/auth_backend_role_tag.py +127 -126
- pulumi_vault/aws/auth_backend_roletag_blacklist.py +57 -56
- pulumi_vault/aws/auth_backend_sts_role.py +71 -70
- pulumi_vault/aws/get_access_credentials.py +44 -43
- pulumi_vault/aws/get_static_access_credentials.py +13 -12
- pulumi_vault/aws/secret_backend.py +523 -306
- pulumi_vault/aws/secret_backend_role.py +211 -210
- pulumi_vault/aws/secret_backend_static_role.py +288 -70
- pulumi_vault/azure/__init__.py +1 -0
- pulumi_vault/azure/_inputs.py +21 -20
- pulumi_vault/azure/auth_backend_config.py +383 -130
- pulumi_vault/azure/auth_backend_role.py +253 -252
- pulumi_vault/azure/backend.py +432 -186
- pulumi_vault/azure/backend_role.py +188 -140
- pulumi_vault/azure/get_access_credentials.py +58 -57
- pulumi_vault/azure/outputs.py +11 -10
- pulumi_vault/cert_auth_backend_role.py +365 -364
- pulumi_vault/config/__init__.py +1 -0
- pulumi_vault/config/__init__.pyi +1 -0
- pulumi_vault/config/_inputs.py +11 -10
- pulumi_vault/config/outputs.py +287 -286
- pulumi_vault/config/ui_custom_message.py +113 -112
- pulumi_vault/config/vars.py +1 -0
- pulumi_vault/consul/__init__.py +1 -0
- pulumi_vault/consul/secret_backend.py +197 -196
- pulumi_vault/consul/secret_backend_role.py +183 -182
- pulumi_vault/database/__init__.py +1 -0
- pulumi_vault/database/_inputs.py +3857 -2200
- pulumi_vault/database/outputs.py +2483 -1330
- pulumi_vault/database/secret_backend_connection.py +333 -112
- pulumi_vault/database/secret_backend_role.py +169 -168
- pulumi_vault/database/secret_backend_static_role.py +283 -140
- pulumi_vault/database/secrets_mount.py +275 -266
- pulumi_vault/egp_policy.py +71 -70
- pulumi_vault/gcp/__init__.py +1 -0
- pulumi_vault/gcp/_inputs.py +82 -81
- pulumi_vault/gcp/auth_backend.py +426 -205
- pulumi_vault/gcp/auth_backend_role.py +281 -280
- pulumi_vault/gcp/get_auth_backend_role.py +70 -69
- pulumi_vault/gcp/outputs.py +50 -49
- pulumi_vault/gcp/secret_backend.py +420 -179
- pulumi_vault/gcp/secret_impersonated_account.py +92 -91
- pulumi_vault/gcp/secret_roleset.py +92 -91
- pulumi_vault/gcp/secret_static_account.py +92 -91
- pulumi_vault/generic/__init__.py +1 -0
- pulumi_vault/generic/endpoint.py +113 -112
- pulumi_vault/generic/get_secret.py +28 -27
- pulumi_vault/generic/secret.py +78 -77
- pulumi_vault/get_auth_backend.py +19 -18
- pulumi_vault/get_auth_backends.py +14 -13
- pulumi_vault/get_namespace.py +15 -14
- pulumi_vault/get_namespaces.py +68 -18
- pulumi_vault/get_nomad_access_token.py +19 -18
- pulumi_vault/get_policy_document.py +6 -5
- pulumi_vault/get_raft_autopilot_state.py +18 -17
- pulumi_vault/github/__init__.py +1 -0
- pulumi_vault/github/_inputs.py +42 -41
- pulumi_vault/github/auth_backend.py +232 -231
- pulumi_vault/github/outputs.py +26 -25
- pulumi_vault/github/team.py +57 -56
- pulumi_vault/github/user.py +57 -56
- pulumi_vault/identity/__init__.py +1 -0
- pulumi_vault/identity/entity.py +85 -84
- pulumi_vault/identity/entity_alias.py +71 -70
- pulumi_vault/identity/entity_policies.py +64 -63
- pulumi_vault/identity/get_entity.py +43 -42
- pulumi_vault/identity/get_group.py +50 -49
- pulumi_vault/identity/get_oidc_client_creds.py +14 -13
- pulumi_vault/identity/get_oidc_openid_config.py +24 -23
- pulumi_vault/identity/get_oidc_public_keys.py +13 -12
- pulumi_vault/identity/group.py +141 -140
- pulumi_vault/identity/group_alias.py +57 -56
- pulumi_vault/identity/group_member_entity_ids.py +57 -56
- pulumi_vault/identity/group_member_group_ids.py +57 -56
- pulumi_vault/identity/group_policies.py +64 -63
- pulumi_vault/identity/mfa_duo.py +148 -147
- pulumi_vault/identity/mfa_login_enforcement.py +120 -119
- pulumi_vault/identity/mfa_okta.py +134 -133
- pulumi_vault/identity/mfa_pingid.py +127 -126
- pulumi_vault/identity/mfa_totp.py +176 -175
- pulumi_vault/identity/oidc.py +29 -28
- pulumi_vault/identity/oidc_assignment.py +57 -56
- pulumi_vault/identity/oidc_client.py +127 -126
- pulumi_vault/identity/oidc_key.py +85 -84
- pulumi_vault/identity/oidc_key_allowed_client_id.py +43 -42
- pulumi_vault/identity/oidc_provider.py +92 -91
- pulumi_vault/identity/oidc_role.py +85 -84
- pulumi_vault/identity/oidc_scope.py +57 -56
- pulumi_vault/identity/outputs.py +32 -31
- pulumi_vault/jwt/__init__.py +1 -0
- pulumi_vault/jwt/_inputs.py +42 -41
- pulumi_vault/jwt/auth_backend.py +288 -287
- pulumi_vault/jwt/auth_backend_role.py +407 -406
- pulumi_vault/jwt/outputs.py +26 -25
- pulumi_vault/kmip/__init__.py +1 -0
- pulumi_vault/kmip/secret_backend.py +183 -182
- pulumi_vault/kmip/secret_role.py +295 -294
- pulumi_vault/kmip/secret_scope.py +57 -56
- pulumi_vault/kubernetes/__init__.py +1 -0
- pulumi_vault/kubernetes/auth_backend_config.py +141 -140
- pulumi_vault/kubernetes/auth_backend_role.py +225 -224
- pulumi_vault/kubernetes/get_auth_backend_config.py +47 -46
- pulumi_vault/kubernetes/get_auth_backend_role.py +70 -69
- pulumi_vault/kubernetes/get_service_account_token.py +38 -37
- pulumi_vault/kubernetes/secret_backend.py +316 -315
- pulumi_vault/kubernetes/secret_backend_role.py +197 -196
- pulumi_vault/kv/__init__.py +1 -0
- pulumi_vault/kv/_inputs.py +21 -20
- pulumi_vault/kv/get_secret.py +17 -16
- pulumi_vault/kv/get_secret_subkeys_v2.py +30 -29
- pulumi_vault/kv/get_secret_v2.py +29 -28
- pulumi_vault/kv/get_secrets_list.py +13 -12
- pulumi_vault/kv/get_secrets_list_v2.py +19 -18
- pulumi_vault/kv/outputs.py +13 -12
- pulumi_vault/kv/secret.py +50 -49
- pulumi_vault/kv/secret_backend_v2.py +71 -70
- pulumi_vault/kv/secret_v2.py +134 -133
- pulumi_vault/ldap/__init__.py +1 -0
- pulumi_vault/ldap/auth_backend.py +754 -533
- pulumi_vault/ldap/auth_backend_group.py +57 -56
- pulumi_vault/ldap/auth_backend_user.py +71 -70
- pulumi_vault/ldap/get_dynamic_credentials.py +17 -16
- pulumi_vault/ldap/get_static_credentials.py +18 -17
- pulumi_vault/ldap/secret_backend.py +720 -499
- pulumi_vault/ldap/secret_backend_dynamic_role.py +127 -126
- pulumi_vault/ldap/secret_backend_library_set.py +99 -98
- pulumi_vault/ldap/secret_backend_static_role.py +99 -98
- pulumi_vault/managed/__init__.py +1 -0
- pulumi_vault/managed/_inputs.py +229 -228
- pulumi_vault/managed/keys.py +15 -14
- pulumi_vault/managed/outputs.py +139 -138
- pulumi_vault/mfa_duo.py +113 -112
- pulumi_vault/mfa_okta.py +113 -112
- pulumi_vault/mfa_pingid.py +120 -119
- pulumi_vault/mfa_totp.py +127 -126
- pulumi_vault/mongodbatlas/__init__.py +1 -0
- pulumi_vault/mongodbatlas/secret_backend.py +64 -63
- pulumi_vault/mongodbatlas/secret_role.py +155 -154
- pulumi_vault/mount.py +274 -273
- pulumi_vault/namespace.py +64 -63
- pulumi_vault/nomad_secret_backend.py +211 -210
- pulumi_vault/nomad_secret_role.py +85 -84
- pulumi_vault/okta/__init__.py +1 -0
- pulumi_vault/okta/_inputs.py +26 -25
- pulumi_vault/okta/auth_backend.py +274 -273
- pulumi_vault/okta/auth_backend_group.py +57 -56
- pulumi_vault/okta/auth_backend_user.py +71 -70
- pulumi_vault/okta/outputs.py +16 -15
- pulumi_vault/outputs.py +73 -60
- pulumi_vault/password_policy.py +43 -42
- pulumi_vault/pkisecret/__init__.py +3 -0
- pulumi_vault/pkisecret/_inputs.py +31 -36
- pulumi_vault/pkisecret/backend_acme_eab.py +92 -91
- pulumi_vault/pkisecret/backend_config_acme.py +174 -126
- pulumi_vault/pkisecret/backend_config_auto_tidy.py +1377 -0
- pulumi_vault/pkisecret/backend_config_cluster.py +57 -56
- pulumi_vault/pkisecret/backend_config_cmpv2.py +152 -104
- pulumi_vault/pkisecret/backend_config_est.py +120 -119
- pulumi_vault/pkisecret/get_backend_cert_metadata.py +278 -0
- pulumi_vault/pkisecret/get_backend_config_cmpv2.py +35 -17
- pulumi_vault/pkisecret/get_backend_config_est.py +19 -18
- pulumi_vault/pkisecret/get_backend_issuer.py +139 -25
- pulumi_vault/pkisecret/get_backend_issuers.py +15 -14
- pulumi_vault/pkisecret/get_backend_key.py +20 -19
- pulumi_vault/pkisecret/get_backend_keys.py +15 -14
- pulumi_vault/pkisecret/outputs.py +28 -31
- pulumi_vault/pkisecret/secret_backend_cert.py +439 -297
- pulumi_vault/pkisecret/secret_backend_config_ca.py +43 -42
- pulumi_vault/pkisecret/secret_backend_config_issuers.py +57 -56
- pulumi_vault/pkisecret/secret_backend_config_urls.py +85 -84
- pulumi_vault/pkisecret/secret_backend_crl_config.py +237 -182
- pulumi_vault/pkisecret/secret_backend_intermediate_cert_request.py +520 -378
- pulumi_vault/pkisecret/secret_backend_intermediate_set_signed.py +57 -56
- pulumi_vault/pkisecret/secret_backend_issuer.py +441 -175
- pulumi_vault/pkisecret/secret_backend_key.py +120 -119
- pulumi_vault/pkisecret/secret_backend_role.py +894 -644
- pulumi_vault/pkisecret/secret_backend_root_cert.py +851 -427
- pulumi_vault/pkisecret/secret_backend_root_sign_intermediate.py +936 -357
- pulumi_vault/pkisecret/secret_backend_sign.py +347 -252
- pulumi_vault/plugin.py +127 -126
- pulumi_vault/plugin_pinned_version.py +43 -42
- pulumi_vault/policy.py +43 -42
- pulumi_vault/provider.py +120 -119
- pulumi_vault/pulumi-plugin.json +1 -1
- pulumi_vault/quota_lease_count.py +85 -84
- pulumi_vault/quota_rate_limit.py +113 -112
- pulumi_vault/rabbitmq/__init__.py +1 -0
- pulumi_vault/rabbitmq/_inputs.py +41 -40
- pulumi_vault/rabbitmq/outputs.py +25 -24
- pulumi_vault/rabbitmq/secret_backend.py +169 -168
- pulumi_vault/rabbitmq/secret_backend_role.py +57 -56
- pulumi_vault/raft_autopilot.py +113 -112
- pulumi_vault/raft_snapshot_agent_config.py +393 -392
- pulumi_vault/rgp_policy.py +57 -56
- pulumi_vault/saml/__init__.py +1 -0
- pulumi_vault/saml/auth_backend.py +155 -154
- pulumi_vault/saml/auth_backend_role.py +239 -238
- pulumi_vault/secrets/__init__.py +1 -0
- pulumi_vault/secrets/_inputs.py +16 -15
- pulumi_vault/secrets/outputs.py +10 -9
- pulumi_vault/secrets/sync_association.py +71 -70
- pulumi_vault/secrets/sync_aws_destination.py +148 -147
- pulumi_vault/secrets/sync_azure_destination.py +148 -147
- pulumi_vault/secrets/sync_config.py +43 -42
- pulumi_vault/secrets/sync_gcp_destination.py +106 -105
- pulumi_vault/secrets/sync_gh_destination.py +134 -133
- pulumi_vault/secrets/sync_github_apps.py +64 -63
- pulumi_vault/secrets/sync_vercel_destination.py +120 -119
- pulumi_vault/ssh/__init__.py +2 -0
- pulumi_vault/ssh/_inputs.py +11 -10
- pulumi_vault/ssh/get_secret_backend_sign.py +295 -0
- pulumi_vault/ssh/outputs.py +7 -6
- pulumi_vault/ssh/secret_backend_ca.py +99 -98
- pulumi_vault/ssh/secret_backend_role.py +365 -364
- pulumi_vault/terraformcloud/__init__.py +1 -0
- pulumi_vault/terraformcloud/secret_backend.py +111 -110
- pulumi_vault/terraformcloud/secret_creds.py +74 -73
- pulumi_vault/terraformcloud/secret_role.py +96 -95
- pulumi_vault/token.py +246 -245
- pulumi_vault/tokenauth/__init__.py +1 -0
- pulumi_vault/tokenauth/auth_backend_role.py +267 -266
- pulumi_vault/transform/__init__.py +1 -0
- pulumi_vault/transform/alphabet.py +57 -56
- pulumi_vault/transform/get_decode.py +47 -46
- pulumi_vault/transform/get_encode.py +47 -46
- pulumi_vault/transform/role.py +57 -56
- pulumi_vault/transform/template.py +113 -112
- pulumi_vault/transform/transformation.py +141 -140
- pulumi_vault/transit/__init__.py +3 -0
- pulumi_vault/transit/get_decrypt.py +18 -17
- pulumi_vault/transit/get_encrypt.py +21 -20
- pulumi_vault/transit/get_sign.py +325 -0
- pulumi_vault/transit/get_verify.py +355 -0
- pulumi_vault/transit/secret_backend_key.py +394 -231
- pulumi_vault/transit/secret_cache_config.py +43 -42
- {pulumi_vault-6.6.0a1741415971.dist-info → pulumi_vault-6.7.0.dist-info}/METADATA +2 -2
- pulumi_vault-6.7.0.dist-info/RECORD +265 -0
- {pulumi_vault-6.6.0a1741415971.dist-info → pulumi_vault-6.7.0.dist-info}/WHEEL +1 -1
- pulumi_vault-6.6.0a1741415971.dist-info/RECORD +0 -260
- {pulumi_vault-6.6.0a1741415971.dist-info → pulumi_vault-6.7.0.dist-info}/top_level.txt +0 -0
@@ -2,6 +2,7 @@
|
|
2
2
|
# *** WARNING: this file was generated by the Pulumi Terraform Bridge (tfgen) Tool. ***
|
3
3
|
# *** Do not edit by hand unless you're certain you know what you are doing! ***
|
4
4
|
|
5
|
+
import builtins
|
5
6
|
import copy
|
6
7
|
import warnings
|
7
8
|
import sys
|
@@ -19,38 +20,38 @@ __all__ = ['SyncAzureDestinationArgs', 'SyncAzureDestination']
|
|
19
20
|
@pulumi.input_type
|
20
21
|
class SyncAzureDestinationArgs:
|
21
22
|
def __init__(__self__, *,
|
22
|
-
client_id: Optional[pulumi.Input[str]] = None,
|
23
|
-
client_secret: Optional[pulumi.Input[str]] = None,
|
24
|
-
cloud: Optional[pulumi.Input[str]] = None,
|
25
|
-
custom_tags: Optional[pulumi.Input[Mapping[str, pulumi.Input[str]]]] = None,
|
26
|
-
granularity: Optional[pulumi.Input[str]] = None,
|
27
|
-
key_vault_uri: Optional[pulumi.Input[str]] = None,
|
28
|
-
name: Optional[pulumi.Input[str]] = None,
|
29
|
-
namespace: Optional[pulumi.Input[str]] = None,
|
30
|
-
secret_name_template: Optional[pulumi.Input[str]] = None,
|
31
|
-
tenant_id: Optional[pulumi.Input[str]] = None):
|
23
|
+
client_id: Optional[pulumi.Input[builtins.str]] = None,
|
24
|
+
client_secret: Optional[pulumi.Input[builtins.str]] = None,
|
25
|
+
cloud: Optional[pulumi.Input[builtins.str]] = None,
|
26
|
+
custom_tags: Optional[pulumi.Input[Mapping[str, pulumi.Input[builtins.str]]]] = None,
|
27
|
+
granularity: Optional[pulumi.Input[builtins.str]] = None,
|
28
|
+
key_vault_uri: Optional[pulumi.Input[builtins.str]] = None,
|
29
|
+
name: Optional[pulumi.Input[builtins.str]] = None,
|
30
|
+
namespace: Optional[pulumi.Input[builtins.str]] = None,
|
31
|
+
secret_name_template: Optional[pulumi.Input[builtins.str]] = None,
|
32
|
+
tenant_id: Optional[pulumi.Input[builtins.str]] = None):
|
32
33
|
"""
|
33
34
|
The set of arguments for constructing a SyncAzureDestination resource.
|
34
|
-
:param pulumi.Input[str] client_id: Client ID of an Azure app registration.
|
35
|
+
:param pulumi.Input[builtins.str] client_id: Client ID of an Azure app registration.
|
35
36
|
Can be omitted and directly provided to Vault using the `AZURE_CLIENT_ID` environment
|
36
37
|
variable.
|
37
|
-
:param pulumi.Input[str] client_secret: Client Secret of an Azure app registration.
|
38
|
+
:param pulumi.Input[builtins.str] client_secret: Client Secret of an Azure app registration.
|
38
39
|
Can be omitted and directly provided to Vault using the `AZURE_CLIENT_SECRET` environment
|
39
40
|
variable.
|
40
|
-
:param pulumi.Input[str] cloud: Specifies a cloud for the client. The default is Azure Public Cloud.
|
41
|
-
:param pulumi.Input[Mapping[str, pulumi.Input[str]]] custom_tags: Custom tags to set on the secret managed at the destination.
|
42
|
-
:param pulumi.Input[str] granularity: Determines what level of information is synced as a distinct resource
|
41
|
+
:param pulumi.Input[builtins.str] cloud: Specifies a cloud for the client. The default is Azure Public Cloud.
|
42
|
+
:param pulumi.Input[Mapping[str, pulumi.Input[builtins.str]]] custom_tags: Custom tags to set on the secret managed at the destination.
|
43
|
+
:param pulumi.Input[builtins.str] granularity: Determines what level of information is synced as a distinct resource
|
43
44
|
at the destination. Supports `secret-path` and `secret-key`.
|
44
|
-
:param pulumi.Input[str] key_vault_uri: URI of an existing Azure Key Vault instance.
|
45
|
+
:param pulumi.Input[builtins.str] key_vault_uri: URI of an existing Azure Key Vault instance.
|
45
46
|
Can be omitted and directly provided to Vault using the `KEY_VAULT_URI` environment
|
46
47
|
variable.
|
47
|
-
:param pulumi.Input[str] name: Unique name of the Azure destination.
|
48
|
-
:param pulumi.Input[str] namespace: The namespace to provision the resource in.
|
48
|
+
:param pulumi.Input[builtins.str] name: Unique name of the Azure destination.
|
49
|
+
:param pulumi.Input[builtins.str] namespace: The namespace to provision the resource in.
|
49
50
|
The value should not contain leading or trailing forward slashes.
|
50
51
|
The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault/index.html#namespace).
|
51
|
-
:param pulumi.Input[str] secret_name_template: Template describing how to generate external secret names.
|
52
|
+
:param pulumi.Input[builtins.str] secret_name_template: Template describing how to generate external secret names.
|
52
53
|
Supports a subset of the Go Template syntax.
|
53
|
-
:param pulumi.Input[str] tenant_id: ID of the target Azure tenant.
|
54
|
+
:param pulumi.Input[builtins.str] tenant_id: ID of the target Azure tenant.
|
54
55
|
Can be omitted and directly provided to Vault using the `AZURE_TENANT_ID` environment
|
55
56
|
variable.
|
56
57
|
"""
|
@@ -77,7 +78,7 @@ class SyncAzureDestinationArgs:
|
|
77
78
|
|
78
79
|
@property
|
79
80
|
@pulumi.getter(name="clientId")
|
80
|
-
def client_id(self) -> Optional[pulumi.Input[str]]:
|
81
|
+
def client_id(self) -> Optional[pulumi.Input[builtins.str]]:
|
81
82
|
"""
|
82
83
|
Client ID of an Azure app registration.
|
83
84
|
Can be omitted and directly provided to Vault using the `AZURE_CLIENT_ID` environment
|
@@ -86,12 +87,12 @@ class SyncAzureDestinationArgs:
|
|
86
87
|
return pulumi.get(self, "client_id")
|
87
88
|
|
88
89
|
@client_id.setter
|
89
|
-
def client_id(self, value: Optional[pulumi.Input[str]]):
|
90
|
+
def client_id(self, value: Optional[pulumi.Input[builtins.str]]):
|
90
91
|
pulumi.set(self, "client_id", value)
|
91
92
|
|
92
93
|
@property
|
93
94
|
@pulumi.getter(name="clientSecret")
|
94
|
-
def client_secret(self) -> Optional[pulumi.Input[str]]:
|
95
|
+
def client_secret(self) -> Optional[pulumi.Input[builtins.str]]:
|
95
96
|
"""
|
96
97
|
Client Secret of an Azure app registration.
|
97
98
|
Can be omitted and directly provided to Vault using the `AZURE_CLIENT_SECRET` environment
|
@@ -100,36 +101,36 @@ class SyncAzureDestinationArgs:
|
|
100
101
|
return pulumi.get(self, "client_secret")
|
101
102
|
|
102
103
|
@client_secret.setter
|
103
|
-
def client_secret(self, value: Optional[pulumi.Input[str]]):
|
104
|
+
def client_secret(self, value: Optional[pulumi.Input[builtins.str]]):
|
104
105
|
pulumi.set(self, "client_secret", value)
|
105
106
|
|
106
107
|
@property
|
107
108
|
@pulumi.getter
|
108
|
-
def cloud(self) -> Optional[pulumi.Input[str]]:
|
109
|
+
def cloud(self) -> Optional[pulumi.Input[builtins.str]]:
|
109
110
|
"""
|
110
111
|
Specifies a cloud for the client. The default is Azure Public Cloud.
|
111
112
|
"""
|
112
113
|
return pulumi.get(self, "cloud")
|
113
114
|
|
114
115
|
@cloud.setter
|
115
|
-
def cloud(self, value: Optional[pulumi.Input[str]]):
|
116
|
+
def cloud(self, value: Optional[pulumi.Input[builtins.str]]):
|
116
117
|
pulumi.set(self, "cloud", value)
|
117
118
|
|
118
119
|
@property
|
119
120
|
@pulumi.getter(name="customTags")
|
120
|
-
def custom_tags(self) -> Optional[pulumi.Input[Mapping[str, pulumi.Input[str]]]]:
|
121
|
+
def custom_tags(self) -> Optional[pulumi.Input[Mapping[str, pulumi.Input[builtins.str]]]]:
|
121
122
|
"""
|
122
123
|
Custom tags to set on the secret managed at the destination.
|
123
124
|
"""
|
124
125
|
return pulumi.get(self, "custom_tags")
|
125
126
|
|
126
127
|
@custom_tags.setter
|
127
|
-
def custom_tags(self, value: Optional[pulumi.Input[Mapping[str, pulumi.Input[str]]]]):
|
128
|
+
def custom_tags(self, value: Optional[pulumi.Input[Mapping[str, pulumi.Input[builtins.str]]]]):
|
128
129
|
pulumi.set(self, "custom_tags", value)
|
129
130
|
|
130
131
|
@property
|
131
132
|
@pulumi.getter
|
132
|
-
def granularity(self) -> Optional[pulumi.Input[str]]:
|
133
|
+
def granularity(self) -> Optional[pulumi.Input[builtins.str]]:
|
133
134
|
"""
|
134
135
|
Determines what level of information is synced as a distinct resource
|
135
136
|
at the destination. Supports `secret-path` and `secret-key`.
|
@@ -137,12 +138,12 @@ class SyncAzureDestinationArgs:
|
|
137
138
|
return pulumi.get(self, "granularity")
|
138
139
|
|
139
140
|
@granularity.setter
|
140
|
-
def granularity(self, value: Optional[pulumi.Input[str]]):
|
141
|
+
def granularity(self, value: Optional[pulumi.Input[builtins.str]]):
|
141
142
|
pulumi.set(self, "granularity", value)
|
142
143
|
|
143
144
|
@property
|
144
145
|
@pulumi.getter(name="keyVaultUri")
|
145
|
-
def key_vault_uri(self) -> Optional[pulumi.Input[str]]:
|
146
|
+
def key_vault_uri(self) -> Optional[pulumi.Input[builtins.str]]:
|
146
147
|
"""
|
147
148
|
URI of an existing Azure Key Vault instance.
|
148
149
|
Can be omitted and directly provided to Vault using the `KEY_VAULT_URI` environment
|
@@ -151,24 +152,24 @@ class SyncAzureDestinationArgs:
|
|
151
152
|
return pulumi.get(self, "key_vault_uri")
|
152
153
|
|
153
154
|
@key_vault_uri.setter
|
154
|
-
def key_vault_uri(self, value: Optional[pulumi.Input[str]]):
|
155
|
+
def key_vault_uri(self, value: Optional[pulumi.Input[builtins.str]]):
|
155
156
|
pulumi.set(self, "key_vault_uri", value)
|
156
157
|
|
157
158
|
@property
|
158
159
|
@pulumi.getter
|
159
|
-
def name(self) -> Optional[pulumi.Input[str]]:
|
160
|
+
def name(self) -> Optional[pulumi.Input[builtins.str]]:
|
160
161
|
"""
|
161
162
|
Unique name of the Azure destination.
|
162
163
|
"""
|
163
164
|
return pulumi.get(self, "name")
|
164
165
|
|
165
166
|
@name.setter
|
166
|
-
def name(self, value: Optional[pulumi.Input[str]]):
|
167
|
+
def name(self, value: Optional[pulumi.Input[builtins.str]]):
|
167
168
|
pulumi.set(self, "name", value)
|
168
169
|
|
169
170
|
@property
|
170
171
|
@pulumi.getter
|
171
|
-
def namespace(self) -> Optional[pulumi.Input[str]]:
|
172
|
+
def namespace(self) -> Optional[pulumi.Input[builtins.str]]:
|
172
173
|
"""
|
173
174
|
The namespace to provision the resource in.
|
174
175
|
The value should not contain leading or trailing forward slashes.
|
@@ -177,12 +178,12 @@ class SyncAzureDestinationArgs:
|
|
177
178
|
return pulumi.get(self, "namespace")
|
178
179
|
|
179
180
|
@namespace.setter
|
180
|
-
def namespace(self, value: Optional[pulumi.Input[str]]):
|
181
|
+
def namespace(self, value: Optional[pulumi.Input[builtins.str]]):
|
181
182
|
pulumi.set(self, "namespace", value)
|
182
183
|
|
183
184
|
@property
|
184
185
|
@pulumi.getter(name="secretNameTemplate")
|
185
|
-
def secret_name_template(self) -> Optional[pulumi.Input[str]]:
|
186
|
+
def secret_name_template(self) -> Optional[pulumi.Input[builtins.str]]:
|
186
187
|
"""
|
187
188
|
Template describing how to generate external secret names.
|
188
189
|
Supports a subset of the Go Template syntax.
|
@@ -190,12 +191,12 @@ class SyncAzureDestinationArgs:
|
|
190
191
|
return pulumi.get(self, "secret_name_template")
|
191
192
|
|
192
193
|
@secret_name_template.setter
|
193
|
-
def secret_name_template(self, value: Optional[pulumi.Input[str]]):
|
194
|
+
def secret_name_template(self, value: Optional[pulumi.Input[builtins.str]]):
|
194
195
|
pulumi.set(self, "secret_name_template", value)
|
195
196
|
|
196
197
|
@property
|
197
198
|
@pulumi.getter(name="tenantId")
|
198
|
-
def tenant_id(self) -> Optional[pulumi.Input[str]]:
|
199
|
+
def tenant_id(self) -> Optional[pulumi.Input[builtins.str]]:
|
199
200
|
"""
|
200
201
|
ID of the target Azure tenant.
|
201
202
|
Can be omitted and directly provided to Vault using the `AZURE_TENANT_ID` environment
|
@@ -204,49 +205,49 @@ class SyncAzureDestinationArgs:
|
|
204
205
|
return pulumi.get(self, "tenant_id")
|
205
206
|
|
206
207
|
@tenant_id.setter
|
207
|
-
def tenant_id(self, value: Optional[pulumi.Input[str]]):
|
208
|
+
def tenant_id(self, value: Optional[pulumi.Input[builtins.str]]):
|
208
209
|
pulumi.set(self, "tenant_id", value)
|
209
210
|
|
210
211
|
|
211
212
|
@pulumi.input_type
|
212
213
|
class _SyncAzureDestinationState:
|
213
214
|
def __init__(__self__, *,
|
214
|
-
client_id: Optional[pulumi.Input[str]] = None,
|
215
|
-
client_secret: Optional[pulumi.Input[str]] = None,
|
216
|
-
cloud: Optional[pulumi.Input[str]] = None,
|
217
|
-
custom_tags: Optional[pulumi.Input[Mapping[str, pulumi.Input[str]]]] = None,
|
218
|
-
granularity: Optional[pulumi.Input[str]] = None,
|
219
|
-
key_vault_uri: Optional[pulumi.Input[str]] = None,
|
220
|
-
name: Optional[pulumi.Input[str]] = None,
|
221
|
-
namespace: Optional[pulumi.Input[str]] = None,
|
222
|
-
secret_name_template: Optional[pulumi.Input[str]] = None,
|
223
|
-
tenant_id: Optional[pulumi.Input[str]] = None,
|
224
|
-
type: Optional[pulumi.Input[str]] = None):
|
215
|
+
client_id: Optional[pulumi.Input[builtins.str]] = None,
|
216
|
+
client_secret: Optional[pulumi.Input[builtins.str]] = None,
|
217
|
+
cloud: Optional[pulumi.Input[builtins.str]] = None,
|
218
|
+
custom_tags: Optional[pulumi.Input[Mapping[str, pulumi.Input[builtins.str]]]] = None,
|
219
|
+
granularity: Optional[pulumi.Input[builtins.str]] = None,
|
220
|
+
key_vault_uri: Optional[pulumi.Input[builtins.str]] = None,
|
221
|
+
name: Optional[pulumi.Input[builtins.str]] = None,
|
222
|
+
namespace: Optional[pulumi.Input[builtins.str]] = None,
|
223
|
+
secret_name_template: Optional[pulumi.Input[builtins.str]] = None,
|
224
|
+
tenant_id: Optional[pulumi.Input[builtins.str]] = None,
|
225
|
+
type: Optional[pulumi.Input[builtins.str]] = None):
|
225
226
|
"""
|
226
227
|
Input properties used for looking up and filtering SyncAzureDestination resources.
|
227
|
-
:param pulumi.Input[str] client_id: Client ID of an Azure app registration.
|
228
|
+
:param pulumi.Input[builtins.str] client_id: Client ID of an Azure app registration.
|
228
229
|
Can be omitted and directly provided to Vault using the `AZURE_CLIENT_ID` environment
|
229
230
|
variable.
|
230
|
-
:param pulumi.Input[str] client_secret: Client Secret of an Azure app registration.
|
231
|
+
:param pulumi.Input[builtins.str] client_secret: Client Secret of an Azure app registration.
|
231
232
|
Can be omitted and directly provided to Vault using the `AZURE_CLIENT_SECRET` environment
|
232
233
|
variable.
|
233
|
-
:param pulumi.Input[str] cloud: Specifies a cloud for the client. The default is Azure Public Cloud.
|
234
|
-
:param pulumi.Input[Mapping[str, pulumi.Input[str]]] custom_tags: Custom tags to set on the secret managed at the destination.
|
235
|
-
:param pulumi.Input[str] granularity: Determines what level of information is synced as a distinct resource
|
234
|
+
:param pulumi.Input[builtins.str] cloud: Specifies a cloud for the client. The default is Azure Public Cloud.
|
235
|
+
:param pulumi.Input[Mapping[str, pulumi.Input[builtins.str]]] custom_tags: Custom tags to set on the secret managed at the destination.
|
236
|
+
:param pulumi.Input[builtins.str] granularity: Determines what level of information is synced as a distinct resource
|
236
237
|
at the destination. Supports `secret-path` and `secret-key`.
|
237
|
-
:param pulumi.Input[str] key_vault_uri: URI of an existing Azure Key Vault instance.
|
238
|
+
:param pulumi.Input[builtins.str] key_vault_uri: URI of an existing Azure Key Vault instance.
|
238
239
|
Can be omitted and directly provided to Vault using the `KEY_VAULT_URI` environment
|
239
240
|
variable.
|
240
|
-
:param pulumi.Input[str] name: Unique name of the Azure destination.
|
241
|
-
:param pulumi.Input[str] namespace: The namespace to provision the resource in.
|
241
|
+
:param pulumi.Input[builtins.str] name: Unique name of the Azure destination.
|
242
|
+
:param pulumi.Input[builtins.str] namespace: The namespace to provision the resource in.
|
242
243
|
The value should not contain leading or trailing forward slashes.
|
243
244
|
The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault/index.html#namespace).
|
244
|
-
:param pulumi.Input[str] secret_name_template: Template describing how to generate external secret names.
|
245
|
+
:param pulumi.Input[builtins.str] secret_name_template: Template describing how to generate external secret names.
|
245
246
|
Supports a subset of the Go Template syntax.
|
246
|
-
:param pulumi.Input[str] tenant_id: ID of the target Azure tenant.
|
247
|
+
:param pulumi.Input[builtins.str] tenant_id: ID of the target Azure tenant.
|
247
248
|
Can be omitted and directly provided to Vault using the `AZURE_TENANT_ID` environment
|
248
249
|
variable.
|
249
|
-
:param pulumi.Input[str] type: The type of the secrets destination (`azure-kv`).
|
250
|
+
:param pulumi.Input[builtins.str] type: The type of the secrets destination (`azure-kv`).
|
250
251
|
"""
|
251
252
|
if client_id is not None:
|
252
253
|
pulumi.set(__self__, "client_id", client_id)
|
@@ -273,7 +274,7 @@ class _SyncAzureDestinationState:
|
|
273
274
|
|
274
275
|
@property
|
275
276
|
@pulumi.getter(name="clientId")
|
276
|
-
def client_id(self) -> Optional[pulumi.Input[str]]:
|
277
|
+
def client_id(self) -> Optional[pulumi.Input[builtins.str]]:
|
277
278
|
"""
|
278
279
|
Client ID of an Azure app registration.
|
279
280
|
Can be omitted and directly provided to Vault using the `AZURE_CLIENT_ID` environment
|
@@ -282,12 +283,12 @@ class _SyncAzureDestinationState:
|
|
282
283
|
return pulumi.get(self, "client_id")
|
283
284
|
|
284
285
|
@client_id.setter
|
285
|
-
def client_id(self, value: Optional[pulumi.Input[str]]):
|
286
|
+
def client_id(self, value: Optional[pulumi.Input[builtins.str]]):
|
286
287
|
pulumi.set(self, "client_id", value)
|
287
288
|
|
288
289
|
@property
|
289
290
|
@pulumi.getter(name="clientSecret")
|
290
|
-
def client_secret(self) -> Optional[pulumi.Input[str]]:
|
291
|
+
def client_secret(self) -> Optional[pulumi.Input[builtins.str]]:
|
291
292
|
"""
|
292
293
|
Client Secret of an Azure app registration.
|
293
294
|
Can be omitted and directly provided to Vault using the `AZURE_CLIENT_SECRET` environment
|
@@ -296,36 +297,36 @@ class _SyncAzureDestinationState:
|
|
296
297
|
return pulumi.get(self, "client_secret")
|
297
298
|
|
298
299
|
@client_secret.setter
|
299
|
-
def client_secret(self, value: Optional[pulumi.Input[str]]):
|
300
|
+
def client_secret(self, value: Optional[pulumi.Input[builtins.str]]):
|
300
301
|
pulumi.set(self, "client_secret", value)
|
301
302
|
|
302
303
|
@property
|
303
304
|
@pulumi.getter
|
304
|
-
def cloud(self) -> Optional[pulumi.Input[str]]:
|
305
|
+
def cloud(self) -> Optional[pulumi.Input[builtins.str]]:
|
305
306
|
"""
|
306
307
|
Specifies a cloud for the client. The default is Azure Public Cloud.
|
307
308
|
"""
|
308
309
|
return pulumi.get(self, "cloud")
|
309
310
|
|
310
311
|
@cloud.setter
|
311
|
-
def cloud(self, value: Optional[pulumi.Input[str]]):
|
312
|
+
def cloud(self, value: Optional[pulumi.Input[builtins.str]]):
|
312
313
|
pulumi.set(self, "cloud", value)
|
313
314
|
|
314
315
|
@property
|
315
316
|
@pulumi.getter(name="customTags")
|
316
|
-
def custom_tags(self) -> Optional[pulumi.Input[Mapping[str, pulumi.Input[str]]]]:
|
317
|
+
def custom_tags(self) -> Optional[pulumi.Input[Mapping[str, pulumi.Input[builtins.str]]]]:
|
317
318
|
"""
|
318
319
|
Custom tags to set on the secret managed at the destination.
|
319
320
|
"""
|
320
321
|
return pulumi.get(self, "custom_tags")
|
321
322
|
|
322
323
|
@custom_tags.setter
|
323
|
-
def custom_tags(self, value: Optional[pulumi.Input[Mapping[str, pulumi.Input[str]]]]):
|
324
|
+
def custom_tags(self, value: Optional[pulumi.Input[Mapping[str, pulumi.Input[builtins.str]]]]):
|
324
325
|
pulumi.set(self, "custom_tags", value)
|
325
326
|
|
326
327
|
@property
|
327
328
|
@pulumi.getter
|
328
|
-
def granularity(self) -> Optional[pulumi.Input[str]]:
|
329
|
+
def granularity(self) -> Optional[pulumi.Input[builtins.str]]:
|
329
330
|
"""
|
330
331
|
Determines what level of information is synced as a distinct resource
|
331
332
|
at the destination. Supports `secret-path` and `secret-key`.
|
@@ -333,12 +334,12 @@ class _SyncAzureDestinationState:
|
|
333
334
|
return pulumi.get(self, "granularity")
|
334
335
|
|
335
336
|
@granularity.setter
|
336
|
-
def granularity(self, value: Optional[pulumi.Input[str]]):
|
337
|
+
def granularity(self, value: Optional[pulumi.Input[builtins.str]]):
|
337
338
|
pulumi.set(self, "granularity", value)
|
338
339
|
|
339
340
|
@property
|
340
341
|
@pulumi.getter(name="keyVaultUri")
|
341
|
-
def key_vault_uri(self) -> Optional[pulumi.Input[str]]:
|
342
|
+
def key_vault_uri(self) -> Optional[pulumi.Input[builtins.str]]:
|
342
343
|
"""
|
343
344
|
URI of an existing Azure Key Vault instance.
|
344
345
|
Can be omitted and directly provided to Vault using the `KEY_VAULT_URI` environment
|
@@ -347,24 +348,24 @@ class _SyncAzureDestinationState:
|
|
347
348
|
return pulumi.get(self, "key_vault_uri")
|
348
349
|
|
349
350
|
@key_vault_uri.setter
|
350
|
-
def key_vault_uri(self, value: Optional[pulumi.Input[str]]):
|
351
|
+
def key_vault_uri(self, value: Optional[pulumi.Input[builtins.str]]):
|
351
352
|
pulumi.set(self, "key_vault_uri", value)
|
352
353
|
|
353
354
|
@property
|
354
355
|
@pulumi.getter
|
355
|
-
def name(self) -> Optional[pulumi.Input[str]]:
|
356
|
+
def name(self) -> Optional[pulumi.Input[builtins.str]]:
|
356
357
|
"""
|
357
358
|
Unique name of the Azure destination.
|
358
359
|
"""
|
359
360
|
return pulumi.get(self, "name")
|
360
361
|
|
361
362
|
@name.setter
|
362
|
-
def name(self, value: Optional[pulumi.Input[str]]):
|
363
|
+
def name(self, value: Optional[pulumi.Input[builtins.str]]):
|
363
364
|
pulumi.set(self, "name", value)
|
364
365
|
|
365
366
|
@property
|
366
367
|
@pulumi.getter
|
367
|
-
def namespace(self) -> Optional[pulumi.Input[str]]:
|
368
|
+
def namespace(self) -> Optional[pulumi.Input[builtins.str]]:
|
368
369
|
"""
|
369
370
|
The namespace to provision the resource in.
|
370
371
|
The value should not contain leading or trailing forward slashes.
|
@@ -373,12 +374,12 @@ class _SyncAzureDestinationState:
|
|
373
374
|
return pulumi.get(self, "namespace")
|
374
375
|
|
375
376
|
@namespace.setter
|
376
|
-
def namespace(self, value: Optional[pulumi.Input[str]]):
|
377
|
+
def namespace(self, value: Optional[pulumi.Input[builtins.str]]):
|
377
378
|
pulumi.set(self, "namespace", value)
|
378
379
|
|
379
380
|
@property
|
380
381
|
@pulumi.getter(name="secretNameTemplate")
|
381
|
-
def secret_name_template(self) -> Optional[pulumi.Input[str]]:
|
382
|
+
def secret_name_template(self) -> Optional[pulumi.Input[builtins.str]]:
|
382
383
|
"""
|
383
384
|
Template describing how to generate external secret names.
|
384
385
|
Supports a subset of the Go Template syntax.
|
@@ -386,12 +387,12 @@ class _SyncAzureDestinationState:
|
|
386
387
|
return pulumi.get(self, "secret_name_template")
|
387
388
|
|
388
389
|
@secret_name_template.setter
|
389
|
-
def secret_name_template(self, value: Optional[pulumi.Input[str]]):
|
390
|
+
def secret_name_template(self, value: Optional[pulumi.Input[builtins.str]]):
|
390
391
|
pulumi.set(self, "secret_name_template", value)
|
391
392
|
|
392
393
|
@property
|
393
394
|
@pulumi.getter(name="tenantId")
|
394
|
-
def tenant_id(self) -> Optional[pulumi.Input[str]]:
|
395
|
+
def tenant_id(self) -> Optional[pulumi.Input[builtins.str]]:
|
395
396
|
"""
|
396
397
|
ID of the target Azure tenant.
|
397
398
|
Can be omitted and directly provided to Vault using the `AZURE_TENANT_ID` environment
|
@@ -400,19 +401,19 @@ class _SyncAzureDestinationState:
|
|
400
401
|
return pulumi.get(self, "tenant_id")
|
401
402
|
|
402
403
|
@tenant_id.setter
|
403
|
-
def tenant_id(self, value: Optional[pulumi.Input[str]]):
|
404
|
+
def tenant_id(self, value: Optional[pulumi.Input[builtins.str]]):
|
404
405
|
pulumi.set(self, "tenant_id", value)
|
405
406
|
|
406
407
|
@property
|
407
408
|
@pulumi.getter
|
408
|
-
def type(self) -> Optional[pulumi.Input[str]]:
|
409
|
+
def type(self) -> Optional[pulumi.Input[builtins.str]]:
|
409
410
|
"""
|
410
411
|
The type of the secrets destination (`azure-kv`).
|
411
412
|
"""
|
412
413
|
return pulumi.get(self, "type")
|
413
414
|
|
414
415
|
@type.setter
|
415
|
-
def type(self, value: Optional[pulumi.Input[str]]):
|
416
|
+
def type(self, value: Optional[pulumi.Input[builtins.str]]):
|
416
417
|
pulumi.set(self, "type", value)
|
417
418
|
|
418
419
|
|
@@ -421,16 +422,16 @@ class SyncAzureDestination(pulumi.CustomResource):
|
|
421
422
|
def __init__(__self__,
|
422
423
|
resource_name: str,
|
423
424
|
opts: Optional[pulumi.ResourceOptions] = None,
|
424
|
-
client_id: Optional[pulumi.Input[str]] = None,
|
425
|
-
client_secret: Optional[pulumi.Input[str]] = None,
|
426
|
-
cloud: Optional[pulumi.Input[str]] = None,
|
427
|
-
custom_tags: Optional[pulumi.Input[Mapping[str, pulumi.Input[str]]]] = None,
|
428
|
-
granularity: Optional[pulumi.Input[str]] = None,
|
429
|
-
key_vault_uri: Optional[pulumi.Input[str]] = None,
|
430
|
-
name: Optional[pulumi.Input[str]] = None,
|
431
|
-
namespace: Optional[pulumi.Input[str]] = None,
|
432
|
-
secret_name_template: Optional[pulumi.Input[str]] = None,
|
433
|
-
tenant_id: Optional[pulumi.Input[str]] = None,
|
425
|
+
client_id: Optional[pulumi.Input[builtins.str]] = None,
|
426
|
+
client_secret: Optional[pulumi.Input[builtins.str]] = None,
|
427
|
+
cloud: Optional[pulumi.Input[builtins.str]] = None,
|
428
|
+
custom_tags: Optional[pulumi.Input[Mapping[str, pulumi.Input[builtins.str]]]] = None,
|
429
|
+
granularity: Optional[pulumi.Input[builtins.str]] = None,
|
430
|
+
key_vault_uri: Optional[pulumi.Input[builtins.str]] = None,
|
431
|
+
name: Optional[pulumi.Input[builtins.str]] = None,
|
432
|
+
namespace: Optional[pulumi.Input[builtins.str]] = None,
|
433
|
+
secret_name_template: Optional[pulumi.Input[builtins.str]] = None,
|
434
|
+
tenant_id: Optional[pulumi.Input[builtins.str]] = None,
|
434
435
|
__props__=None):
|
435
436
|
"""
|
436
437
|
## Example Usage
|
@@ -461,26 +462,26 @@ class SyncAzureDestination(pulumi.CustomResource):
|
|
461
462
|
|
462
463
|
:param str resource_name: The name of the resource.
|
463
464
|
:param pulumi.ResourceOptions opts: Options for the resource.
|
464
|
-
:param pulumi.Input[str] client_id: Client ID of an Azure app registration.
|
465
|
+
:param pulumi.Input[builtins.str] client_id: Client ID of an Azure app registration.
|
465
466
|
Can be omitted and directly provided to Vault using the `AZURE_CLIENT_ID` environment
|
466
467
|
variable.
|
467
|
-
:param pulumi.Input[str] client_secret: Client Secret of an Azure app registration.
|
468
|
+
:param pulumi.Input[builtins.str] client_secret: Client Secret of an Azure app registration.
|
468
469
|
Can be omitted and directly provided to Vault using the `AZURE_CLIENT_SECRET` environment
|
469
470
|
variable.
|
470
|
-
:param pulumi.Input[str] cloud: Specifies a cloud for the client. The default is Azure Public Cloud.
|
471
|
-
:param pulumi.Input[Mapping[str, pulumi.Input[str]]] custom_tags: Custom tags to set on the secret managed at the destination.
|
472
|
-
:param pulumi.Input[str] granularity: Determines what level of information is synced as a distinct resource
|
471
|
+
:param pulumi.Input[builtins.str] cloud: Specifies a cloud for the client. The default is Azure Public Cloud.
|
472
|
+
:param pulumi.Input[Mapping[str, pulumi.Input[builtins.str]]] custom_tags: Custom tags to set on the secret managed at the destination.
|
473
|
+
:param pulumi.Input[builtins.str] granularity: Determines what level of information is synced as a distinct resource
|
473
474
|
at the destination. Supports `secret-path` and `secret-key`.
|
474
|
-
:param pulumi.Input[str] key_vault_uri: URI of an existing Azure Key Vault instance.
|
475
|
+
:param pulumi.Input[builtins.str] key_vault_uri: URI of an existing Azure Key Vault instance.
|
475
476
|
Can be omitted and directly provided to Vault using the `KEY_VAULT_URI` environment
|
476
477
|
variable.
|
477
|
-
:param pulumi.Input[str] name: Unique name of the Azure destination.
|
478
|
-
:param pulumi.Input[str] namespace: The namespace to provision the resource in.
|
478
|
+
:param pulumi.Input[builtins.str] name: Unique name of the Azure destination.
|
479
|
+
:param pulumi.Input[builtins.str] namespace: The namespace to provision the resource in.
|
479
480
|
The value should not contain leading or trailing forward slashes.
|
480
481
|
The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault/index.html#namespace).
|
481
|
-
:param pulumi.Input[str] secret_name_template: Template describing how to generate external secret names.
|
482
|
+
:param pulumi.Input[builtins.str] secret_name_template: Template describing how to generate external secret names.
|
482
483
|
Supports a subset of the Go Template syntax.
|
483
|
-
:param pulumi.Input[str] tenant_id: ID of the target Azure tenant.
|
484
|
+
:param pulumi.Input[builtins.str] tenant_id: ID of the target Azure tenant.
|
484
485
|
Can be omitted and directly provided to Vault using the `AZURE_TENANT_ID` environment
|
485
486
|
variable.
|
486
487
|
"""
|
@@ -532,16 +533,16 @@ class SyncAzureDestination(pulumi.CustomResource):
|
|
532
533
|
def _internal_init(__self__,
|
533
534
|
resource_name: str,
|
534
535
|
opts: Optional[pulumi.ResourceOptions] = None,
|
535
|
-
client_id: Optional[pulumi.Input[str]] = None,
|
536
|
-
client_secret: Optional[pulumi.Input[str]] = None,
|
537
|
-
cloud: Optional[pulumi.Input[str]] = None,
|
538
|
-
custom_tags: Optional[pulumi.Input[Mapping[str, pulumi.Input[str]]]] = None,
|
539
|
-
granularity: Optional[pulumi.Input[str]] = None,
|
540
|
-
key_vault_uri: Optional[pulumi.Input[str]] = None,
|
541
|
-
name: Optional[pulumi.Input[str]] = None,
|
542
|
-
namespace: Optional[pulumi.Input[str]] = None,
|
543
|
-
secret_name_template: Optional[pulumi.Input[str]] = None,
|
544
|
-
tenant_id: Optional[pulumi.Input[str]] = None,
|
536
|
+
client_id: Optional[pulumi.Input[builtins.str]] = None,
|
537
|
+
client_secret: Optional[pulumi.Input[builtins.str]] = None,
|
538
|
+
cloud: Optional[pulumi.Input[builtins.str]] = None,
|
539
|
+
custom_tags: Optional[pulumi.Input[Mapping[str, pulumi.Input[builtins.str]]]] = None,
|
540
|
+
granularity: Optional[pulumi.Input[builtins.str]] = None,
|
541
|
+
key_vault_uri: Optional[pulumi.Input[builtins.str]] = None,
|
542
|
+
name: Optional[pulumi.Input[builtins.str]] = None,
|
543
|
+
namespace: Optional[pulumi.Input[builtins.str]] = None,
|
544
|
+
secret_name_template: Optional[pulumi.Input[builtins.str]] = None,
|
545
|
+
tenant_id: Optional[pulumi.Input[builtins.str]] = None,
|
545
546
|
__props__=None):
|
546
547
|
opts = pulumi.ResourceOptions.merge(_utilities.get_resource_opts_defaults(), opts)
|
547
548
|
if not isinstance(opts, pulumi.ResourceOptions):
|
@@ -574,17 +575,17 @@ class SyncAzureDestination(pulumi.CustomResource):
|
|
574
575
|
def get(resource_name: str,
|
575
576
|
id: pulumi.Input[str],
|
576
577
|
opts: Optional[pulumi.ResourceOptions] = None,
|
577
|
-
client_id: Optional[pulumi.Input[str]] = None,
|
578
|
-
client_secret: Optional[pulumi.Input[str]] = None,
|
579
|
-
cloud: Optional[pulumi.Input[str]] = None,
|
580
|
-
custom_tags: Optional[pulumi.Input[Mapping[str, pulumi.Input[str]]]] = None,
|
581
|
-
granularity: Optional[pulumi.Input[str]] = None,
|
582
|
-
key_vault_uri: Optional[pulumi.Input[str]] = None,
|
583
|
-
name: Optional[pulumi.Input[str]] = None,
|
584
|
-
namespace: Optional[pulumi.Input[str]] = None,
|
585
|
-
secret_name_template: Optional[pulumi.Input[str]] = None,
|
586
|
-
tenant_id: Optional[pulumi.Input[str]] = None,
|
587
|
-
type: Optional[pulumi.Input[str]] = None) -> 'SyncAzureDestination':
|
578
|
+
client_id: Optional[pulumi.Input[builtins.str]] = None,
|
579
|
+
client_secret: Optional[pulumi.Input[builtins.str]] = None,
|
580
|
+
cloud: Optional[pulumi.Input[builtins.str]] = None,
|
581
|
+
custom_tags: Optional[pulumi.Input[Mapping[str, pulumi.Input[builtins.str]]]] = None,
|
582
|
+
granularity: Optional[pulumi.Input[builtins.str]] = None,
|
583
|
+
key_vault_uri: Optional[pulumi.Input[builtins.str]] = None,
|
584
|
+
name: Optional[pulumi.Input[builtins.str]] = None,
|
585
|
+
namespace: Optional[pulumi.Input[builtins.str]] = None,
|
586
|
+
secret_name_template: Optional[pulumi.Input[builtins.str]] = None,
|
587
|
+
tenant_id: Optional[pulumi.Input[builtins.str]] = None,
|
588
|
+
type: Optional[pulumi.Input[builtins.str]] = None) -> 'SyncAzureDestination':
|
588
589
|
"""
|
589
590
|
Get an existing SyncAzureDestination resource's state with the given name, id, and optional extra
|
590
591
|
properties used to qualify the lookup.
|
@@ -592,29 +593,29 @@ class SyncAzureDestination(pulumi.CustomResource):
|
|
592
593
|
:param str resource_name: The unique name of the resulting resource.
|
593
594
|
:param pulumi.Input[str] id: The unique provider ID of the resource to lookup.
|
594
595
|
:param pulumi.ResourceOptions opts: Options for the resource.
|
595
|
-
:param pulumi.Input[str] client_id: Client ID of an Azure app registration.
|
596
|
+
:param pulumi.Input[builtins.str] client_id: Client ID of an Azure app registration.
|
596
597
|
Can be omitted and directly provided to Vault using the `AZURE_CLIENT_ID` environment
|
597
598
|
variable.
|
598
|
-
:param pulumi.Input[str] client_secret: Client Secret of an Azure app registration.
|
599
|
+
:param pulumi.Input[builtins.str] client_secret: Client Secret of an Azure app registration.
|
599
600
|
Can be omitted and directly provided to Vault using the `AZURE_CLIENT_SECRET` environment
|
600
601
|
variable.
|
601
|
-
:param pulumi.Input[str] cloud: Specifies a cloud for the client. The default is Azure Public Cloud.
|
602
|
-
:param pulumi.Input[Mapping[str, pulumi.Input[str]]] custom_tags: Custom tags to set on the secret managed at the destination.
|
603
|
-
:param pulumi.Input[str] granularity: Determines what level of information is synced as a distinct resource
|
602
|
+
:param pulumi.Input[builtins.str] cloud: Specifies a cloud for the client. The default is Azure Public Cloud.
|
603
|
+
:param pulumi.Input[Mapping[str, pulumi.Input[builtins.str]]] custom_tags: Custom tags to set on the secret managed at the destination.
|
604
|
+
:param pulumi.Input[builtins.str] granularity: Determines what level of information is synced as a distinct resource
|
604
605
|
at the destination. Supports `secret-path` and `secret-key`.
|
605
|
-
:param pulumi.Input[str] key_vault_uri: URI of an existing Azure Key Vault instance.
|
606
|
+
:param pulumi.Input[builtins.str] key_vault_uri: URI of an existing Azure Key Vault instance.
|
606
607
|
Can be omitted and directly provided to Vault using the `KEY_VAULT_URI` environment
|
607
608
|
variable.
|
608
|
-
:param pulumi.Input[str] name: Unique name of the Azure destination.
|
609
|
-
:param pulumi.Input[str] namespace: The namespace to provision the resource in.
|
609
|
+
:param pulumi.Input[builtins.str] name: Unique name of the Azure destination.
|
610
|
+
:param pulumi.Input[builtins.str] namespace: The namespace to provision the resource in.
|
610
611
|
The value should not contain leading or trailing forward slashes.
|
611
612
|
The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault/index.html#namespace).
|
612
|
-
:param pulumi.Input[str] secret_name_template: Template describing how to generate external secret names.
|
613
|
+
:param pulumi.Input[builtins.str] secret_name_template: Template describing how to generate external secret names.
|
613
614
|
Supports a subset of the Go Template syntax.
|
614
|
-
:param pulumi.Input[str] tenant_id: ID of the target Azure tenant.
|
615
|
+
:param pulumi.Input[builtins.str] tenant_id: ID of the target Azure tenant.
|
615
616
|
Can be omitted and directly provided to Vault using the `AZURE_TENANT_ID` environment
|
616
617
|
variable.
|
617
|
-
:param pulumi.Input[str] type: The type of the secrets destination (`azure-kv`).
|
618
|
+
:param pulumi.Input[builtins.str] type: The type of the secrets destination (`azure-kv`).
|
618
619
|
"""
|
619
620
|
opts = pulumi.ResourceOptions.merge(opts, pulumi.ResourceOptions(id=id))
|
620
621
|
|
@@ -635,7 +636,7 @@ class SyncAzureDestination(pulumi.CustomResource):
|
|
635
636
|
|
636
637
|
@property
|
637
638
|
@pulumi.getter(name="clientId")
|
638
|
-
def client_id(self) -> pulumi.Output[Optional[str]]:
|
639
|
+
def client_id(self) -> pulumi.Output[Optional[builtins.str]]:
|
639
640
|
"""
|
640
641
|
Client ID of an Azure app registration.
|
641
642
|
Can be omitted and directly provided to Vault using the `AZURE_CLIENT_ID` environment
|
@@ -645,7 +646,7 @@ class SyncAzureDestination(pulumi.CustomResource):
|
|
645
646
|
|
646
647
|
@property
|
647
648
|
@pulumi.getter(name="clientSecret")
|
648
|
-
def client_secret(self) -> pulumi.Output[Optional[str]]:
|
649
|
+
def client_secret(self) -> pulumi.Output[Optional[builtins.str]]:
|
649
650
|
"""
|
650
651
|
Client Secret of an Azure app registration.
|
651
652
|
Can be omitted and directly provided to Vault using the `AZURE_CLIENT_SECRET` environment
|
@@ -655,7 +656,7 @@ class SyncAzureDestination(pulumi.CustomResource):
|
|
655
656
|
|
656
657
|
@property
|
657
658
|
@pulumi.getter
|
658
|
-
def cloud(self) -> pulumi.Output[Optional[str]]:
|
659
|
+
def cloud(self) -> pulumi.Output[Optional[builtins.str]]:
|
659
660
|
"""
|
660
661
|
Specifies a cloud for the client. The default is Azure Public Cloud.
|
661
662
|
"""
|
@@ -663,7 +664,7 @@ class SyncAzureDestination(pulumi.CustomResource):
|
|
663
664
|
|
664
665
|
@property
|
665
666
|
@pulumi.getter(name="customTags")
|
666
|
-
def custom_tags(self) -> pulumi.Output[Optional[Mapping[str, str]]]:
|
667
|
+
def custom_tags(self) -> pulumi.Output[Optional[Mapping[str, builtins.str]]]:
|
667
668
|
"""
|
668
669
|
Custom tags to set on the secret managed at the destination.
|
669
670
|
"""
|
@@ -671,7 +672,7 @@ class SyncAzureDestination(pulumi.CustomResource):
|
|
671
672
|
|
672
673
|
@property
|
673
674
|
@pulumi.getter
|
674
|
-
def granularity(self) -> pulumi.Output[Optional[str]]:
|
675
|
+
def granularity(self) -> pulumi.Output[Optional[builtins.str]]:
|
675
676
|
"""
|
676
677
|
Determines what level of information is synced as a distinct resource
|
677
678
|
at the destination. Supports `secret-path` and `secret-key`.
|
@@ -680,7 +681,7 @@ class SyncAzureDestination(pulumi.CustomResource):
|
|
680
681
|
|
681
682
|
@property
|
682
683
|
@pulumi.getter(name="keyVaultUri")
|
683
|
-
def key_vault_uri(self) -> pulumi.Output[Optional[str]]:
|
684
|
+
def key_vault_uri(self) -> pulumi.Output[Optional[builtins.str]]:
|
684
685
|
"""
|
685
686
|
URI of an existing Azure Key Vault instance.
|
686
687
|
Can be omitted and directly provided to Vault using the `KEY_VAULT_URI` environment
|
@@ -690,7 +691,7 @@ class SyncAzureDestination(pulumi.CustomResource):
|
|
690
691
|
|
691
692
|
@property
|
692
693
|
@pulumi.getter
|
693
|
-
def name(self) -> pulumi.Output[str]:
|
694
|
+
def name(self) -> pulumi.Output[builtins.str]:
|
694
695
|
"""
|
695
696
|
Unique name of the Azure destination.
|
696
697
|
"""
|
@@ -698,7 +699,7 @@ class SyncAzureDestination(pulumi.CustomResource):
|
|
698
699
|
|
699
700
|
@property
|
700
701
|
@pulumi.getter
|
701
|
-
def namespace(self) -> pulumi.Output[Optional[str]]:
|
702
|
+
def namespace(self) -> pulumi.Output[Optional[builtins.str]]:
|
702
703
|
"""
|
703
704
|
The namespace to provision the resource in.
|
704
705
|
The value should not contain leading or trailing forward slashes.
|
@@ -708,7 +709,7 @@ class SyncAzureDestination(pulumi.CustomResource):
|
|
708
709
|
|
709
710
|
@property
|
710
711
|
@pulumi.getter(name="secretNameTemplate")
|
711
|
-
def secret_name_template(self) -> pulumi.Output[str]:
|
712
|
+
def secret_name_template(self) -> pulumi.Output[builtins.str]:
|
712
713
|
"""
|
713
714
|
Template describing how to generate external secret names.
|
714
715
|
Supports a subset of the Go Template syntax.
|
@@ -717,7 +718,7 @@ class SyncAzureDestination(pulumi.CustomResource):
|
|
717
718
|
|
718
719
|
@property
|
719
720
|
@pulumi.getter(name="tenantId")
|
720
|
-
def tenant_id(self) -> pulumi.Output[Optional[str]]:
|
721
|
+
def tenant_id(self) -> pulumi.Output[Optional[builtins.str]]:
|
721
722
|
"""
|
722
723
|
ID of the target Azure tenant.
|
723
724
|
Can be omitted and directly provided to Vault using the `AZURE_TENANT_ID` environment
|
@@ -727,7 +728,7 @@ class SyncAzureDestination(pulumi.CustomResource):
|
|
727
728
|
|
728
729
|
@property
|
729
730
|
@pulumi.getter
|
730
|
-
def type(self) -> pulumi.Output[str]:
|
731
|
+
def type(self) -> pulumi.Output[builtins.str]:
|
731
732
|
"""
|
732
733
|
The type of the secrets destination (`azure-kv`).
|
733
734
|
"""
|