PyPI - pulumi-vault - Versions diffs - 6.6.0a1741415971__py3-none-any.whl → 6.7.0__py3-none-any.whl - Mend

pulumi-vault 6.6.0a1741415971py3-none-any.whl → 6.7.0py3-none-any.whl

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (264) hide show

pulumi_vault/__init__.py +9 -0
pulumi_vault/_inputs.py +583 -562
pulumi_vault/ad/__init__.py +1 -0
pulumi_vault/ad/get_access_credentials.py +20 -19
pulumi_vault/ad/secret_backend.py +477 -476
pulumi_vault/ad/secret_library.py +99 -98
pulumi_vault/ad/secret_role.py +85 -84
pulumi_vault/alicloud/__init__.py +1 -0
pulumi_vault/alicloud/auth_backend_role.py +183 -182
pulumi_vault/approle/__init__.py +1 -0
pulumi_vault/approle/auth_backend_login.py +106 -105
pulumi_vault/approle/auth_backend_role.py +239 -238
pulumi_vault/approle/auth_backend_role_secret_id.py +162 -161
pulumi_vault/approle/get_auth_backend_role_id.py +18 -17
pulumi_vault/audit.py +85 -84
pulumi_vault/audit_request_header.py +43 -42
pulumi_vault/auth_backend.py +106 -105
pulumi_vault/aws/__init__.py +1 -0
pulumi_vault/aws/auth_backend_cert.py +71 -70
pulumi_vault/aws/auth_backend_client.py +425 -200
pulumi_vault/aws/auth_backend_config_identity.py +85 -84
pulumi_vault/aws/auth_backend_identity_whitelist.py +57 -56
pulumi_vault/aws/auth_backend_login.py +209 -208
pulumi_vault/aws/auth_backend_role.py +400 -399
pulumi_vault/aws/auth_backend_role_tag.py +127 -126
pulumi_vault/aws/auth_backend_roletag_blacklist.py +57 -56
pulumi_vault/aws/auth_backend_sts_role.py +71 -70
pulumi_vault/aws/get_access_credentials.py +44 -43
pulumi_vault/aws/get_static_access_credentials.py +13 -12
pulumi_vault/aws/secret_backend.py +523 -306
pulumi_vault/aws/secret_backend_role.py +211 -210
pulumi_vault/aws/secret_backend_static_role.py +288 -70
pulumi_vault/azure/__init__.py +1 -0
pulumi_vault/azure/_inputs.py +21 -20
pulumi_vault/azure/auth_backend_config.py +383 -130
pulumi_vault/azure/auth_backend_role.py +253 -252
pulumi_vault/azure/backend.py +432 -186
pulumi_vault/azure/backend_role.py +188 -140
pulumi_vault/azure/get_access_credentials.py +58 -57
pulumi_vault/azure/outputs.py +11 -10
pulumi_vault/cert_auth_backend_role.py +365 -364
pulumi_vault/config/__init__.py +1 -0
pulumi_vault/config/__init__.pyi +1 -0
pulumi_vault/config/_inputs.py +11 -10
pulumi_vault/config/outputs.py +287 -286
pulumi_vault/config/ui_custom_message.py +113 -112
pulumi_vault/config/vars.py +1 -0
pulumi_vault/consul/__init__.py +1 -0
pulumi_vault/consul/secret_backend.py +197 -196
pulumi_vault/consul/secret_backend_role.py +183 -182
pulumi_vault/database/__init__.py +1 -0
pulumi_vault/database/_inputs.py +3857 -2200
pulumi_vault/database/outputs.py +2483 -1330
pulumi_vault/database/secret_backend_connection.py +333 -112
pulumi_vault/database/secret_backend_role.py +169 -168
pulumi_vault/database/secret_backend_static_role.py +283 -140
pulumi_vault/database/secrets_mount.py +275 -266
pulumi_vault/egp_policy.py +71 -70
pulumi_vault/gcp/__init__.py +1 -0
pulumi_vault/gcp/_inputs.py +82 -81
pulumi_vault/gcp/auth_backend.py +426 -205
pulumi_vault/gcp/auth_backend_role.py +281 -280
pulumi_vault/gcp/get_auth_backend_role.py +70 -69
pulumi_vault/gcp/outputs.py +50 -49
pulumi_vault/gcp/secret_backend.py +420 -179
pulumi_vault/gcp/secret_impersonated_account.py +92 -91
pulumi_vault/gcp/secret_roleset.py +92 -91
pulumi_vault/gcp/secret_static_account.py +92 -91
pulumi_vault/generic/__init__.py +1 -0
pulumi_vault/generic/endpoint.py +113 -112
pulumi_vault/generic/get_secret.py +28 -27
pulumi_vault/generic/secret.py +78 -77
pulumi_vault/get_auth_backend.py +19 -18
pulumi_vault/get_auth_backends.py +14 -13
pulumi_vault/get_namespace.py +15 -14
pulumi_vault/get_namespaces.py +68 -18
pulumi_vault/get_nomad_access_token.py +19 -18
pulumi_vault/get_policy_document.py +6 -5
pulumi_vault/get_raft_autopilot_state.py +18 -17
pulumi_vault/github/__init__.py +1 -0
pulumi_vault/github/_inputs.py +42 -41
pulumi_vault/github/auth_backend.py +232 -231
pulumi_vault/github/outputs.py +26 -25
pulumi_vault/github/team.py +57 -56
pulumi_vault/github/user.py +57 -56
pulumi_vault/identity/__init__.py +1 -0
pulumi_vault/identity/entity.py +85 -84
pulumi_vault/identity/entity_alias.py +71 -70
pulumi_vault/identity/entity_policies.py +64 -63
pulumi_vault/identity/get_entity.py +43 -42
pulumi_vault/identity/get_group.py +50 -49
pulumi_vault/identity/get_oidc_client_creds.py +14 -13
pulumi_vault/identity/get_oidc_openid_config.py +24 -23
pulumi_vault/identity/get_oidc_public_keys.py +13 -12
pulumi_vault/identity/group.py +141 -140
pulumi_vault/identity/group_alias.py +57 -56
pulumi_vault/identity/group_member_entity_ids.py +57 -56
pulumi_vault/identity/group_member_group_ids.py +57 -56
pulumi_vault/identity/group_policies.py +64 -63
pulumi_vault/identity/mfa_duo.py +148 -147
pulumi_vault/identity/mfa_login_enforcement.py +120 -119
pulumi_vault/identity/mfa_okta.py +134 -133
pulumi_vault/identity/mfa_pingid.py +127 -126
pulumi_vault/identity/mfa_totp.py +176 -175
pulumi_vault/identity/oidc.py +29 -28
pulumi_vault/identity/oidc_assignment.py +57 -56
pulumi_vault/identity/oidc_client.py +127 -126
pulumi_vault/identity/oidc_key.py +85 -84
pulumi_vault/identity/oidc_key_allowed_client_id.py +43 -42
pulumi_vault/identity/oidc_provider.py +92 -91
pulumi_vault/identity/oidc_role.py +85 -84
pulumi_vault/identity/oidc_scope.py +57 -56
pulumi_vault/identity/outputs.py +32 -31
pulumi_vault/jwt/__init__.py +1 -0
pulumi_vault/jwt/_inputs.py +42 -41
pulumi_vault/jwt/auth_backend.py +288 -287
pulumi_vault/jwt/auth_backend_role.py +407 -406
pulumi_vault/jwt/outputs.py +26 -25
pulumi_vault/kmip/__init__.py +1 -0
pulumi_vault/kmip/secret_backend.py +183 -182
pulumi_vault/kmip/secret_role.py +295 -294
pulumi_vault/kmip/secret_scope.py +57 -56
pulumi_vault/kubernetes/__init__.py +1 -0
pulumi_vault/kubernetes/auth_backend_config.py +141 -140
pulumi_vault/kubernetes/auth_backend_role.py +225 -224
pulumi_vault/kubernetes/get_auth_backend_config.py +47 -46
pulumi_vault/kubernetes/get_auth_backend_role.py +70 -69
pulumi_vault/kubernetes/get_service_account_token.py +38 -37
pulumi_vault/kubernetes/secret_backend.py +316 -315
pulumi_vault/kubernetes/secret_backend_role.py +197 -196
pulumi_vault/kv/__init__.py +1 -0
pulumi_vault/kv/_inputs.py +21 -20
pulumi_vault/kv/get_secret.py +17 -16
pulumi_vault/kv/get_secret_subkeys_v2.py +30 -29
pulumi_vault/kv/get_secret_v2.py +29 -28
pulumi_vault/kv/get_secrets_list.py +13 -12
pulumi_vault/kv/get_secrets_list_v2.py +19 -18
pulumi_vault/kv/outputs.py +13 -12
pulumi_vault/kv/secret.py +50 -49
pulumi_vault/kv/secret_backend_v2.py +71 -70
pulumi_vault/kv/secret_v2.py +134 -133
pulumi_vault/ldap/__init__.py +1 -0
pulumi_vault/ldap/auth_backend.py +754 -533
pulumi_vault/ldap/auth_backend_group.py +57 -56
pulumi_vault/ldap/auth_backend_user.py +71 -70
pulumi_vault/ldap/get_dynamic_credentials.py +17 -16
pulumi_vault/ldap/get_static_credentials.py +18 -17
pulumi_vault/ldap/secret_backend.py +720 -499
pulumi_vault/ldap/secret_backend_dynamic_role.py +127 -126
pulumi_vault/ldap/secret_backend_library_set.py +99 -98
pulumi_vault/ldap/secret_backend_static_role.py +99 -98
pulumi_vault/managed/__init__.py +1 -0
pulumi_vault/managed/_inputs.py +229 -228
pulumi_vault/managed/keys.py +15 -14
pulumi_vault/managed/outputs.py +139 -138
pulumi_vault/mfa_duo.py +113 -112
pulumi_vault/mfa_okta.py +113 -112
pulumi_vault/mfa_pingid.py +120 -119
pulumi_vault/mfa_totp.py +127 -126
pulumi_vault/mongodbatlas/__init__.py +1 -0
pulumi_vault/mongodbatlas/secret_backend.py +64 -63
pulumi_vault/mongodbatlas/secret_role.py +155 -154
pulumi_vault/mount.py +274 -273
pulumi_vault/namespace.py +64 -63
pulumi_vault/nomad_secret_backend.py +211 -210
pulumi_vault/nomad_secret_role.py +85 -84
pulumi_vault/okta/__init__.py +1 -0
pulumi_vault/okta/_inputs.py +26 -25
pulumi_vault/okta/auth_backend.py +274 -273
pulumi_vault/okta/auth_backend_group.py +57 -56
pulumi_vault/okta/auth_backend_user.py +71 -70
pulumi_vault/okta/outputs.py +16 -15
pulumi_vault/outputs.py +73 -60
pulumi_vault/password_policy.py +43 -42
pulumi_vault/pkisecret/__init__.py +3 -0
pulumi_vault/pkisecret/_inputs.py +31 -36
pulumi_vault/pkisecret/backend_acme_eab.py +92 -91
pulumi_vault/pkisecret/backend_config_acme.py +174 -126
pulumi_vault/pkisecret/backend_config_auto_tidy.py +1377 -0
pulumi_vault/pkisecret/backend_config_cluster.py +57 -56
pulumi_vault/pkisecret/backend_config_cmpv2.py +152 -104
pulumi_vault/pkisecret/backend_config_est.py +120 -119
pulumi_vault/pkisecret/get_backend_cert_metadata.py +278 -0
pulumi_vault/pkisecret/get_backend_config_cmpv2.py +35 -17
pulumi_vault/pkisecret/get_backend_config_est.py +19 -18
pulumi_vault/pkisecret/get_backend_issuer.py +139 -25
pulumi_vault/pkisecret/get_backend_issuers.py +15 -14
pulumi_vault/pkisecret/get_backend_key.py +20 -19
pulumi_vault/pkisecret/get_backend_keys.py +15 -14
pulumi_vault/pkisecret/outputs.py +28 -31
pulumi_vault/pkisecret/secret_backend_cert.py +439 -297
pulumi_vault/pkisecret/secret_backend_config_ca.py +43 -42
pulumi_vault/pkisecret/secret_backend_config_issuers.py +57 -56
pulumi_vault/pkisecret/secret_backend_config_urls.py +85 -84
pulumi_vault/pkisecret/secret_backend_crl_config.py +237 -182
pulumi_vault/pkisecret/secret_backend_intermediate_cert_request.py +520 -378
pulumi_vault/pkisecret/secret_backend_intermediate_set_signed.py +57 -56
pulumi_vault/pkisecret/secret_backend_issuer.py +441 -175
pulumi_vault/pkisecret/secret_backend_key.py +120 -119
pulumi_vault/pkisecret/secret_backend_role.py +894 -644
pulumi_vault/pkisecret/secret_backend_root_cert.py +851 -427
pulumi_vault/pkisecret/secret_backend_root_sign_intermediate.py +936 -357
pulumi_vault/pkisecret/secret_backend_sign.py +347 -252
pulumi_vault/plugin.py +127 -126
pulumi_vault/plugin_pinned_version.py +43 -42
pulumi_vault/policy.py +43 -42
pulumi_vault/provider.py +120 -119
pulumi_vault/pulumi-plugin.json +1 -1
pulumi_vault/quota_lease_count.py +85 -84
pulumi_vault/quota_rate_limit.py +113 -112
pulumi_vault/rabbitmq/__init__.py +1 -0
pulumi_vault/rabbitmq/_inputs.py +41 -40
pulumi_vault/rabbitmq/outputs.py +25 -24
pulumi_vault/rabbitmq/secret_backend.py +169 -168
pulumi_vault/rabbitmq/secret_backend_role.py +57 -56
pulumi_vault/raft_autopilot.py +113 -112
pulumi_vault/raft_snapshot_agent_config.py +393 -392
pulumi_vault/rgp_policy.py +57 -56
pulumi_vault/saml/__init__.py +1 -0
pulumi_vault/saml/auth_backend.py +155 -154
pulumi_vault/saml/auth_backend_role.py +239 -238
pulumi_vault/secrets/__init__.py +1 -0
pulumi_vault/secrets/_inputs.py +16 -15
pulumi_vault/secrets/outputs.py +10 -9
pulumi_vault/secrets/sync_association.py +71 -70
pulumi_vault/secrets/sync_aws_destination.py +148 -147
pulumi_vault/secrets/sync_azure_destination.py +148 -147
pulumi_vault/secrets/sync_config.py +43 -42
pulumi_vault/secrets/sync_gcp_destination.py +106 -105
pulumi_vault/secrets/sync_gh_destination.py +134 -133
pulumi_vault/secrets/sync_github_apps.py +64 -63
pulumi_vault/secrets/sync_vercel_destination.py +120 -119
pulumi_vault/ssh/__init__.py +2 -0
pulumi_vault/ssh/_inputs.py +11 -10
pulumi_vault/ssh/get_secret_backend_sign.py +295 -0
pulumi_vault/ssh/outputs.py +7 -6
pulumi_vault/ssh/secret_backend_ca.py +99 -98
pulumi_vault/ssh/secret_backend_role.py +365 -364
pulumi_vault/terraformcloud/__init__.py +1 -0
pulumi_vault/terraformcloud/secret_backend.py +111 -110
pulumi_vault/terraformcloud/secret_creds.py +74 -73
pulumi_vault/terraformcloud/secret_role.py +96 -95
pulumi_vault/token.py +246 -245
pulumi_vault/tokenauth/__init__.py +1 -0
pulumi_vault/tokenauth/auth_backend_role.py +267 -266
pulumi_vault/transform/__init__.py +1 -0
pulumi_vault/transform/alphabet.py +57 -56
pulumi_vault/transform/get_decode.py +47 -46
pulumi_vault/transform/get_encode.py +47 -46
pulumi_vault/transform/role.py +57 -56
pulumi_vault/transform/template.py +113 -112
pulumi_vault/transform/transformation.py +141 -140
pulumi_vault/transit/__init__.py +3 -0
pulumi_vault/transit/get_decrypt.py +18 -17
pulumi_vault/transit/get_encrypt.py +21 -20
pulumi_vault/transit/get_sign.py +325 -0
pulumi_vault/transit/get_verify.py +355 -0
pulumi_vault/transit/secret_backend_key.py +394 -231
pulumi_vault/transit/secret_cache_config.py +43 -42
{pulumi_vault-6.6.0a1741415971.dist-info → pulumi_vault-6.7.0.dist-info}/METADATA +2 -2
pulumi_vault-6.7.0.dist-info/RECORD +265 -0
{pulumi_vault-6.6.0a1741415971.dist-info → pulumi_vault-6.7.0.dist-info}/WHEEL +1 -1
pulumi_vault-6.6.0a1741415971.dist-info/RECORD +0 -260
{pulumi_vault-6.6.0a1741415971.dist-info → pulumi_vault-6.7.0.dist-info}/top_level.txt +0 -0

pulumi_vault/database/secret_backend_static_role.py CHANGED Viewed

@@ -2,6 +2,7 @@
 # *** WARNING: this file was generated by the Pulumi Terraform Bridge (tfgen) Tool. ***
 # *** Do not edit by hand unless you're certain you know what you are doing! ***
+import builtins
 import copy
 import warnings
 import sys
@@ -19,43 +20,54 @@ __all__ = ['SecretBackendStaticRoleArgs', 'SecretBackendStaticRole']
 @pulumi.input_type
 class SecretBackendStaticRoleArgs:
     def __init__(__self__, *,
-                 backend: pulumi.Input[str],
-                 db_name: pulumi.Input[str],
-                 username: pulumi.Input[str],
-                 name: Optional[pulumi.Input[str]] = None,
-                 namespace: Optional[pulumi.Input[str]] = None,
-                 rotation_period: Optional[pulumi.Input[int]] = None,
-                 rotation_schedule: Optional[pulumi.Input[str]] = None,
-                 rotation_statements: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
-                 rotation_window: Optional[pulumi.Input[int]] = None,
-                 self_managed_password: Optional[pulumi.Input[str]] = None):
+                 backend: pulumi.Input[builtins.str],
+                 db_name: pulumi.Input[builtins.str],
+                 username: pulumi.Input[builtins.str],
+                 credential_config: Optional[pulumi.Input[Mapping[str, pulumi.Input[builtins.str]]]] = None,
+                 credential_type: Optional[pulumi.Input[builtins.str]] = None,
+                 name: Optional[pulumi.Input[builtins.str]] = None,
+                 namespace: Optional[pulumi.Input[builtins.str]] = None,
+                 rotation_period: Optional[pulumi.Input[builtins.int]] = None,
+                 rotation_schedule: Optional[pulumi.Input[builtins.str]] = None,
+                 rotation_statements: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
+                 rotation_window: Optional[pulumi.Input[builtins.int]] = None,
+                 self_managed_password: Optional[pulumi.Input[builtins.str]] = None,
+                 skip_import_rotation: Optional[pulumi.Input[builtins.bool]] = None):
         """
         The set of arguments for constructing a SecretBackendStaticRole resource.
-        :param pulumi.Input[str] backend: The unique name of the Vault mount to configure.
-        :param pulumi.Input[str] db_name: The unique name of the database connection to use for the static role.
-        :param pulumi.Input[str] username: The database username that this static role corresponds to.
-        :param pulumi.Input[str] name: A unique name to give the static role.
-        :param pulumi.Input[str] namespace: The namespace to provision the resource in.
+        :param pulumi.Input[builtins.str] backend: The unique name of the Vault mount to configure.
+        :param pulumi.Input[builtins.str] db_name: The unique name of the database connection to use for the static role.
+        :param pulumi.Input[builtins.str] username: The database username that this static role corresponds to.
+        :param pulumi.Input[builtins.str] credential_type: The credential type for the user, can be one of "password", "rsa_private_key" or "client_certificate".The configuration
+               can be done in `credential_config`.
+        :param pulumi.Input[builtins.str] name: A unique name to give the static role.
+        :param pulumi.Input[builtins.str] namespace: The namespace to provision the resource in.
                The value should not contain leading or trailing forward slashes.
                The `namespace` is always relative to the provider's configured namespace.
                *Available only for Vault Enterprise*.
-        :param pulumi.Input[int] rotation_period: The amount of time Vault should wait before rotating the password, in seconds.
+        :param pulumi.Input[builtins.int] rotation_period: The amount of time Vault should wait before rotating the password, in seconds.
                Mutually exclusive with `rotation_schedule`.
-        :param pulumi.Input[str] rotation_schedule: A cron-style string that will define the schedule on which rotations should occur.
+        :param pulumi.Input[builtins.str] rotation_schedule: A cron-style string that will define the schedule on which rotations should occur.
                Mutually exclusive with `rotation_period`.
                **Warning**: The `rotation_period` and `rotation_schedule` fields are
                mutually exclusive. One of them must be set but not both.
-        :param pulumi.Input[Sequence[pulumi.Input[str]]] rotation_statements: Database statements to execute to rotate the password for the configured database user.
-        :param pulumi.Input[int] rotation_window: The amount of time, in seconds, in which rotations are allowed to occur starting
+        :param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] rotation_statements: Database statements to execute to rotate the password for the configured database user.
+        :param pulumi.Input[builtins.int] rotation_window: The amount of time, in seconds, in which rotations are allowed to occur starting
                from a given `rotation_schedule`.
-        :param pulumi.Input[str] self_managed_password: The password corresponding to the username in the database.
+        :param pulumi.Input[builtins.str] self_managed_password: The password corresponding to the username in the database.
                Required when using the Rootless Password Rotation workflow for static roles. Only enabled for
                select DB engines (Postgres). Requires Vault 1.18+ Enterprise.
+        :param pulumi.Input[builtins.bool] skip_import_rotation: If set to true, Vault will skip the
+               initial secret rotation on import. Requires Vault 1.18+ Enterprise.
         """
         pulumi.set(__self__, "backend", backend)
         pulumi.set(__self__, "db_name", db_name)
         pulumi.set(__self__, "username", username)
+        if credential_config is not None:
+            pulumi.set(__self__, "credential_config", credential_config)
+        if credential_type is not None:
+            pulumi.set(__self__, "credential_type", credential_type)
         if name is not None:
             pulumi.set(__self__, "name", name)
         if namespace is not None:
@@ -70,58 +82,82 @@ class SecretBackendStaticRoleArgs:
             pulumi.set(__self__, "rotation_window", rotation_window)
         if self_managed_password is not None:
             pulumi.set(__self__, "self_managed_password", self_managed_password)
+        if skip_import_rotation is not None:
+            pulumi.set(__self__, "skip_import_rotation", skip_import_rotation)
     @property
     @pulumi.getter
-    def backend(self) -> pulumi.Input[str]:
+    def backend(self) -> pulumi.Input[builtins.str]:
         """
         The unique name of the Vault mount to configure.
         """
         return pulumi.get(self, "backend")
     @backend.setter
-    def backend(self, value: pulumi.Input[str]):
+    def backend(self, value: pulumi.Input[builtins.str]):
         pulumi.set(self, "backend", value)
     @property
     @pulumi.getter(name="dbName")
-    def db_name(self) -> pulumi.Input[str]:
+    def db_name(self) -> pulumi.Input[builtins.str]:
         """
         The unique name of the database connection to use for the static role.
         """
         return pulumi.get(self, "db_name")
     @db_name.setter
-    def db_name(self, value: pulumi.Input[str]):
+    def db_name(self, value: pulumi.Input[builtins.str]):
         pulumi.set(self, "db_name", value)
     @property
     @pulumi.getter
-    def username(self) -> pulumi.Input[str]:
+    def username(self) -> pulumi.Input[builtins.str]:
         """
         The database username that this static role corresponds to.
         """
         return pulumi.get(self, "username")
     @username.setter
-    def username(self, value: pulumi.Input[str]):
+    def username(self, value: pulumi.Input[builtins.str]):
         pulumi.set(self, "username", value)
+    @property
+    @pulumi.getter(name="credentialConfig")
+    def credential_config(self) -> Optional[pulumi.Input[Mapping[str, pulumi.Input[builtins.str]]]]:
+        return pulumi.get(self, "credential_config")
+    @credential_config.setter
+    def credential_config(self, value: Optional[pulumi.Input[Mapping[str, pulumi.Input[builtins.str]]]]):
+        pulumi.set(self, "credential_config", value)
+    @property
+    @pulumi.getter(name="credentialType")
+    def credential_type(self) -> Optional[pulumi.Input[builtins.str]]:
+        """
+        The credential type for the user, can be one of "password", "rsa_private_key" or "client_certificate".The configuration
+        can be done in `credential_config`.
+        """
+        return pulumi.get(self, "credential_type")
+    @credential_type.setter
+    def credential_type(self, value: Optional[pulumi.Input[builtins.str]]):
+        pulumi.set(self, "credential_type", value)
     @property
     @pulumi.getter
-    def name(self) -> Optional[pulumi.Input[str]]:
+    def name(self) -> Optional[pulumi.Input[builtins.str]]:
         """
         A unique name to give the static role.
         """
         return pulumi.get(self, "name")
     @name.setter
-    def name(self, value: Optional[pulumi.Input[str]]):
+    def name(self, value: Optional[pulumi.Input[builtins.str]]):
         pulumi.set(self, "name", value)
     @property
     @pulumi.getter
-    def namespace(self) -> Optional[pulumi.Input[str]]:
+    def namespace(self) -> Optional[pulumi.Input[builtins.str]]:
         """
         The namespace to provision the resource in.
         The value should not contain leading or trailing forward slashes.
@@ -131,12 +167,12 @@ class SecretBackendStaticRoleArgs:
         return pulumi.get(self, "namespace")
     @namespace.setter
-    def namespace(self, value: Optional[pulumi.Input[str]]):
+    def namespace(self, value: Optional[pulumi.Input[builtins.str]]):
         pulumi.set(self, "namespace", value)
     @property
     @pulumi.getter(name="rotationPeriod")
-    def rotation_period(self) -> Optional[pulumi.Input[int]]:
+    def rotation_period(self) -> Optional[pulumi.Input[builtins.int]]:
         """
         The amount of time Vault should wait before rotating the password, in seconds.
         Mutually exclusive with `rotation_schedule`.
@@ -144,12 +180,12 @@ class SecretBackendStaticRoleArgs:
         return pulumi.get(self, "rotation_period")
     @rotation_period.setter
-    def rotation_period(self, value: Optional[pulumi.Input[int]]):
+    def rotation_period(self, value: Optional[pulumi.Input[builtins.int]]):
         pulumi.set(self, "rotation_period", value)
     @property
     @pulumi.getter(name="rotationSchedule")
-    def rotation_schedule(self) -> Optional[pulumi.Input[str]]:
+    def rotation_schedule(self) -> Optional[pulumi.Input[builtins.str]]:
         """
         A cron-style string that will define the schedule on which rotations should occur.
         Mutually exclusive with `rotation_period`.
@@ -160,24 +196,24 @@ class SecretBackendStaticRoleArgs:
         return pulumi.get(self, "rotation_schedule")
     @rotation_schedule.setter
-    def rotation_schedule(self, value: Optional[pulumi.Input[str]]):
+    def rotation_schedule(self, value: Optional[pulumi.Input[builtins.str]]):
         pulumi.set(self, "rotation_schedule", value)
     @property
     @pulumi.getter(name="rotationStatements")
-    def rotation_statements(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]:
+    def rotation_statements(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]:
         """
         Database statements to execute to rotate the password for the configured database user.
         """
         return pulumi.get(self, "rotation_statements")
     @rotation_statements.setter
-    def rotation_statements(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]):
+    def rotation_statements(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]):
         pulumi.set(self, "rotation_statements", value)
     @property
     @pulumi.getter(name="rotationWindow")
-    def rotation_window(self) -> Optional[pulumi.Input[int]]:
+    def rotation_window(self) -> Optional[pulumi.Input[builtins.int]]:
         """
         The amount of time, in seconds, in which rotations are allowed to occur starting
         from a given `rotation_schedule`.
@@ -185,12 +221,12 @@ class SecretBackendStaticRoleArgs:
         return pulumi.get(self, "rotation_window")
     @rotation_window.setter
-    def rotation_window(self, value: Optional[pulumi.Input[int]]):
+    def rotation_window(self, value: Optional[pulumi.Input[builtins.int]]):
         pulumi.set(self, "rotation_window", value)
     @property
     @pulumi.getter(name="selfManagedPassword")
-    def self_managed_password(self) -> Optional[pulumi.Input[str]]:
+    def self_managed_password(self) -> Optional[pulumi.Input[builtins.str]]:
         """
         The password corresponding to the username in the database.
         Required when using the Rootless Password Rotation workflow for static roles. Only enabled for
@@ -199,49 +235,73 @@ class SecretBackendStaticRoleArgs:
         return pulumi.get(self, "self_managed_password")
     @self_managed_password.setter
-    def self_managed_password(self, value: Optional[pulumi.Input[str]]):
+    def self_managed_password(self, value: Optional[pulumi.Input[builtins.str]]):
         pulumi.set(self, "self_managed_password", value)
+    @property
+    @pulumi.getter(name="skipImportRotation")
+    def skip_import_rotation(self) -> Optional[pulumi.Input[builtins.bool]]:
+        """
+        If set to true, Vault will skip the
+        initial secret rotation on import. Requires Vault 1.18+ Enterprise.
+        """
+        return pulumi.get(self, "skip_import_rotation")
+    @skip_import_rotation.setter
+    def skip_import_rotation(self, value: Optional[pulumi.Input[builtins.bool]]):
+        pulumi.set(self, "skip_import_rotation", value)
 @pulumi.input_type
 class _SecretBackendStaticRoleState:
     def __init__(__self__, *,
-                 backend: Optional[pulumi.Input[str]] = None,
-                 db_name: Optional[pulumi.Input[str]] = None,
-                 name: Optional[pulumi.Input[str]] = None,
-                 namespace: Optional[pulumi.Input[str]] = None,
-                 rotation_period: Optional[pulumi.Input[int]] = None,
-                 rotation_schedule: Optional[pulumi.Input[str]] = None,
-                 rotation_statements: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
-                 rotation_window: Optional[pulumi.Input[int]] = None,
-                 self_managed_password: Optional[pulumi.Input[str]] = None,
-                 username: Optional[pulumi.Input[str]] = None):
+                 backend: Optional[pulumi.Input[builtins.str]] = None,
+                 credential_config: Optional[pulumi.Input[Mapping[str, pulumi.Input[builtins.str]]]] = None,
+                 credential_type: Optional[pulumi.Input[builtins.str]] = None,
+                 db_name: Optional[pulumi.Input[builtins.str]] = None,
+                 name: Optional[pulumi.Input[builtins.str]] = None,
+                 namespace: Optional[pulumi.Input[builtins.str]] = None,
+                 rotation_period: Optional[pulumi.Input[builtins.int]] = None,
+                 rotation_schedule: Optional[pulumi.Input[builtins.str]] = None,
+                 rotation_statements: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
+                 rotation_window: Optional[pulumi.Input[builtins.int]] = None,
+                 self_managed_password: Optional[pulumi.Input[builtins.str]] = None,
+                 skip_import_rotation: Optional[pulumi.Input[builtins.bool]] = None,
+                 username: Optional[pulumi.Input[builtins.str]] = None):
         """
         Input properties used for looking up and filtering SecretBackendStaticRole resources.
-        :param pulumi.Input[str] backend: The unique name of the Vault mount to configure.
-        :param pulumi.Input[str] db_name: The unique name of the database connection to use for the static role.
-        :param pulumi.Input[str] name: A unique name to give the static role.
-        :param pulumi.Input[str] namespace: The namespace to provision the resource in.
+        :param pulumi.Input[builtins.str] backend: The unique name of the Vault mount to configure.
+        :param pulumi.Input[builtins.str] credential_type: The credential type for the user, can be one of "password", "rsa_private_key" or "client_certificate".The configuration
+               can be done in `credential_config`.
+        :param pulumi.Input[builtins.str] db_name: The unique name of the database connection to use for the static role.
+        :param pulumi.Input[builtins.str] name: A unique name to give the static role.
+        :param pulumi.Input[builtins.str] namespace: The namespace to provision the resource in.
                The value should not contain leading or trailing forward slashes.
                The `namespace` is always relative to the provider's configured namespace.
                *Available only for Vault Enterprise*.
-        :param pulumi.Input[int] rotation_period: The amount of time Vault should wait before rotating the password, in seconds.
+        :param pulumi.Input[builtins.int] rotation_period: The amount of time Vault should wait before rotating the password, in seconds.
                Mutually exclusive with `rotation_schedule`.
-        :param pulumi.Input[str] rotation_schedule: A cron-style string that will define the schedule on which rotations should occur.
+        :param pulumi.Input[builtins.str] rotation_schedule: A cron-style string that will define the schedule on which rotations should occur.
                Mutually exclusive with `rotation_period`.
                **Warning**: The `rotation_period` and `rotation_schedule` fields are
                mutually exclusive. One of them must be set but not both.
-        :param pulumi.Input[Sequence[pulumi.Input[str]]] rotation_statements: Database statements to execute to rotate the password for the configured database user.
-        :param pulumi.Input[int] rotation_window: The amount of time, in seconds, in which rotations are allowed to occur starting
+        :param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] rotation_statements: Database statements to execute to rotate the password for the configured database user.
+        :param pulumi.Input[builtins.int] rotation_window: The amount of time, in seconds, in which rotations are allowed to occur starting
                from a given `rotation_schedule`.
-        :param pulumi.Input[str] self_managed_password: The password corresponding to the username in the database.
+        :param pulumi.Input[builtins.str] self_managed_password: The password corresponding to the username in the database.
                Required when using the Rootless Password Rotation workflow for static roles. Only enabled for
                select DB engines (Postgres). Requires Vault 1.18+ Enterprise.
-        :param pulumi.Input[str] username: The database username that this static role corresponds to.
+        :param pulumi.Input[builtins.bool] skip_import_rotation: If set to true, Vault will skip the
+               initial secret rotation on import. Requires Vault 1.18+ Enterprise.
+        :param pulumi.Input[builtins.str] username: The database username that this static role corresponds to.
         """
         if backend is not None:
             pulumi.set(__self__, "backend", backend)
+        if credential_config is not None:
+            pulumi.set(__self__, "credential_config", credential_config)
+        if credential_type is not None:
+            pulumi.set(__self__, "credential_type", credential_type)
         if db_name is not None:
             pulumi.set(__self__, "db_name", db_name)
         if name is not None:
@@ -258,48 +318,72 @@ class _SecretBackendStaticRoleState:
             pulumi.set(__self__, "rotation_window", rotation_window)
         if self_managed_password is not None:
             pulumi.set(__self__, "self_managed_password", self_managed_password)
+        if skip_import_rotation is not None:
+            pulumi.set(__self__, "skip_import_rotation", skip_import_rotation)
         if username is not None:
             pulumi.set(__self__, "username", username)
     @property
     @pulumi.getter
-    def backend(self) -> Optional[pulumi.Input[str]]:
+    def backend(self) -> Optional[pulumi.Input[builtins.str]]:
         """
         The unique name of the Vault mount to configure.
         """
         return pulumi.get(self, "backend")
     @backend.setter
-    def backend(self, value: Optional[pulumi.Input[str]]):
+    def backend(self, value: Optional[pulumi.Input[builtins.str]]):
         pulumi.set(self, "backend", value)
+    @property
+    @pulumi.getter(name="credentialConfig")
+    def credential_config(self) -> Optional[pulumi.Input[Mapping[str, pulumi.Input[builtins.str]]]]:
+        return pulumi.get(self, "credential_config")
+    @credential_config.setter
+    def credential_config(self, value: Optional[pulumi.Input[Mapping[str, pulumi.Input[builtins.str]]]]):
+        pulumi.set(self, "credential_config", value)
+    @property
+    @pulumi.getter(name="credentialType")
+    def credential_type(self) -> Optional[pulumi.Input[builtins.str]]:
+        """
+        The credential type for the user, can be one of "password", "rsa_private_key" or "client_certificate".The configuration
+        can be done in `credential_config`.
+        """
+        return pulumi.get(self, "credential_type")
+    @credential_type.setter
+    def credential_type(self, value: Optional[pulumi.Input[builtins.str]]):
+        pulumi.set(self, "credential_type", value)
     @property
     @pulumi.getter(name="dbName")
-    def db_name(self) -> Optional[pulumi.Input[str]]:
+    def db_name(self) -> Optional[pulumi.Input[builtins.str]]:
         """
         The unique name of the database connection to use for the static role.
         """
         return pulumi.get(self, "db_name")
     @db_name.setter
-    def db_name(self, value: Optional[pulumi.Input[str]]):
+    def db_name(self, value: Optional[pulumi.Input[builtins.str]]):
         pulumi.set(self, "db_name", value)
     @property
     @pulumi.getter
-    def name(self) -> Optional[pulumi.Input[str]]:
+    def name(self) -> Optional[pulumi.Input[builtins.str]]:
         """
         A unique name to give the static role.
         """
         return pulumi.get(self, "name")
     @name.setter
-    def name(self, value: Optional[pulumi.Input[str]]):
+    def name(self, value: Optional[pulumi.Input[builtins.str]]):
         pulumi.set(self, "name", value)
     @property
     @pulumi.getter
-    def namespace(self) -> Optional[pulumi.Input[str]]:
+    def namespace(self) -> Optional[pulumi.Input[builtins.str]]:
         """
         The namespace to provision the resource in.
         The value should not contain leading or trailing forward slashes.
@@ -309,12 +393,12 @@ class _SecretBackendStaticRoleState:
         return pulumi.get(self, "namespace")
     @namespace.setter
-    def namespace(self, value: Optional[pulumi.Input[str]]):
+    def namespace(self, value: Optional[pulumi.Input[builtins.str]]):
         pulumi.set(self, "namespace", value)
     @property
     @pulumi.getter(name="rotationPeriod")
-    def rotation_period(self) -> Optional[pulumi.Input[int]]:
+    def rotation_period(self) -> Optional[pulumi.Input[builtins.int]]:
         """
         The amount of time Vault should wait before rotating the password, in seconds.
         Mutually exclusive with `rotation_schedule`.
@@ -322,12 +406,12 @@ class _SecretBackendStaticRoleState:
         return pulumi.get(self, "rotation_period")
     @rotation_period.setter
-    def rotation_period(self, value: Optional[pulumi.Input[int]]):
+    def rotation_period(self, value: Optional[pulumi.Input[builtins.int]]):
         pulumi.set(self, "rotation_period", value)
     @property
     @pulumi.getter(name="rotationSchedule")
-    def rotation_schedule(self) -> Optional[pulumi.Input[str]]:
+    def rotation_schedule(self) -> Optional[pulumi.Input[builtins.str]]:
         """
         A cron-style string that will define the schedule on which rotations should occur.
         Mutually exclusive with `rotation_period`.
@@ -338,24 +422,24 @@ class _SecretBackendStaticRoleState:
         return pulumi.get(self, "rotation_schedule")
     @rotation_schedule.setter
-    def rotation_schedule(self, value: Optional[pulumi.Input[str]]):
+    def rotation_schedule(self, value: Optional[pulumi.Input[builtins.str]]):
         pulumi.set(self, "rotation_schedule", value)
     @property
     @pulumi.getter(name="rotationStatements")
-    def rotation_statements(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]:
+    def rotation_statements(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]:
         """
         Database statements to execute to rotate the password for the configured database user.
         """
         return pulumi.get(self, "rotation_statements")
     @rotation_statements.setter
-    def rotation_statements(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]):
+    def rotation_statements(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]):
         pulumi.set(self, "rotation_statements", value)
     @property
     @pulumi.getter(name="rotationWindow")
-    def rotation_window(self) -> Optional[pulumi.Input[int]]:
+    def rotation_window(self) -> Optional[pulumi.Input[builtins.int]]:
         """
         The amount of time, in seconds, in which rotations are allowed to occur starting
         from a given `rotation_schedule`.
@@ -363,12 +447,12 @@ class _SecretBackendStaticRoleState:
         return pulumi.get(self, "rotation_window")
     @rotation_window.setter
-    def rotation_window(self, value: Optional[pulumi.Input[int]]):
+    def rotation_window(self, value: Optional[pulumi.Input[builtins.int]]):
         pulumi.set(self, "rotation_window", value)
     @property
     @pulumi.getter(name="selfManagedPassword")
-    def self_managed_password(self) -> Optional[pulumi.Input[str]]:
+    def self_managed_password(self) -> Optional[pulumi.Input[builtins.str]]:
         """
         The password corresponding to the username in the database.
         Required when using the Rootless Password Rotation workflow for static roles. Only enabled for
@@ -377,19 +461,32 @@ class _SecretBackendStaticRoleState:
         return pulumi.get(self, "self_managed_password")
     @self_managed_password.setter
-    def self_managed_password(self, value: Optional[pulumi.Input[str]]):
+    def self_managed_password(self, value: Optional[pulumi.Input[builtins.str]]):
         pulumi.set(self, "self_managed_password", value)
+    @property
+    @pulumi.getter(name="skipImportRotation")
+    def skip_import_rotation(self) -> Optional[pulumi.Input[builtins.bool]]:
+        """
+        If set to true, Vault will skip the
+        initial secret rotation on import. Requires Vault 1.18+ Enterprise.
+        """
+        return pulumi.get(self, "skip_import_rotation")
+    @skip_import_rotation.setter
+    def skip_import_rotation(self, value: Optional[pulumi.Input[builtins.bool]]):
+        pulumi.set(self, "skip_import_rotation", value)
     @property
     @pulumi.getter
-    def username(self) -> Optional[pulumi.Input[str]]:
+    def username(self) -> Optional[pulumi.Input[builtins.str]]:
         """
         The database username that this static role corresponds to.
         """
         return pulumi.get(self, "username")
     @username.setter
-    def username(self, value: Optional[pulumi.Input[str]]):
+    def username(self, value: Optional[pulumi.Input[builtins.str]]):
         pulumi.set(self, "username", value)
@@ -398,16 +495,19 @@ class SecretBackendStaticRole(pulumi.CustomResource):
     def __init__(__self__,
                  resource_name: str,
                  opts: Optional[pulumi.ResourceOptions] = None,
-                 backend: Optional[pulumi.Input[str]] = None,
-                 db_name: Optional[pulumi.Input[str]] = None,
-                 name: Optional[pulumi.Input[str]] = None,
-                 namespace: Optional[pulumi.Input[str]] = None,
-                 rotation_period: Optional[pulumi.Input[int]] = None,
-                 rotation_schedule: Optional[pulumi.Input[str]] = None,
-                 rotation_statements: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
-                 rotation_window: Optional[pulumi.Input[int]] = None,
-                 self_managed_password: Optional[pulumi.Input[str]] = None,
-                 username: Optional[pulumi.Input[str]] = None,
+                 backend: Optional[pulumi.Input[builtins.str]] = None,
+                 credential_config: Optional[pulumi.Input[Mapping[str, pulumi.Input[builtins.str]]]] = None,
+                 credential_type: Optional[pulumi.Input[builtins.str]] = None,
+                 db_name: Optional[pulumi.Input[builtins.str]] = None,
+                 name: Optional[pulumi.Input[builtins.str]] = None,
+                 namespace: Optional[pulumi.Input[builtins.str]] = None,
+                 rotation_period: Optional[pulumi.Input[builtins.int]] = None,
+                 rotation_schedule: Optional[pulumi.Input[builtins.str]] = None,
+                 rotation_statements: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
+                 rotation_window: Optional[pulumi.Input[builtins.int]] = None,
+                 self_managed_password: Optional[pulumi.Input[builtins.str]] = None,
+                 skip_import_rotation: Optional[pulumi.Input[builtins.bool]] = None,
+                 username: Optional[pulumi.Input[builtins.str]] = None,
                  __props__=None):
         """
         Creates a Database Secret Backend static role in Vault. Database secret backend
@@ -459,27 +559,31 @@ class SecretBackendStaticRole(pulumi.CustomResource):
         :param str resource_name: The name of the resource.
         :param pulumi.ResourceOptions opts: Options for the resource.
-        :param pulumi.Input[str] backend: The unique name of the Vault mount to configure.
-        :param pulumi.Input[str] db_name: The unique name of the database connection to use for the static role.
-        :param pulumi.Input[str] name: A unique name to give the static role.
-        :param pulumi.Input[str] namespace: The namespace to provision the resource in.
+        :param pulumi.Input[builtins.str] backend: The unique name of the Vault mount to configure.
+        :param pulumi.Input[builtins.str] credential_type: The credential type for the user, can be one of "password", "rsa_private_key" or "client_certificate".The configuration
+               can be done in `credential_config`.
+        :param pulumi.Input[builtins.str] db_name: The unique name of the database connection to use for the static role.
+        :param pulumi.Input[builtins.str] name: A unique name to give the static role.
+        :param pulumi.Input[builtins.str] namespace: The namespace to provision the resource in.
                The value should not contain leading or trailing forward slashes.
                The `namespace` is always relative to the provider's configured namespace.
                *Available only for Vault Enterprise*.
-        :param pulumi.Input[int] rotation_period: The amount of time Vault should wait before rotating the password, in seconds.
+        :param pulumi.Input[builtins.int] rotation_period: The amount of time Vault should wait before rotating the password, in seconds.
                Mutually exclusive with `rotation_schedule`.
-        :param pulumi.Input[str] rotation_schedule: A cron-style string that will define the schedule on which rotations should occur.
+        :param pulumi.Input[builtins.str] rotation_schedule: A cron-style string that will define the schedule on which rotations should occur.
                Mutually exclusive with `rotation_period`.
                **Warning**: The `rotation_period` and `rotation_schedule` fields are
                mutually exclusive. One of them must be set but not both.
-        :param pulumi.Input[Sequence[pulumi.Input[str]]] rotation_statements: Database statements to execute to rotate the password for the configured database user.
-        :param pulumi.Input[int] rotation_window: The amount of time, in seconds, in which rotations are allowed to occur starting
+        :param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] rotation_statements: Database statements to execute to rotate the password for the configured database user.
+        :param pulumi.Input[builtins.int] rotation_window: The amount of time, in seconds, in which rotations are allowed to occur starting
                from a given `rotation_schedule`.
-        :param pulumi.Input[str] self_managed_password: The password corresponding to the username in the database.
+        :param pulumi.Input[builtins.str] self_managed_password: The password corresponding to the username in the database.
                Required when using the Rootless Password Rotation workflow for static roles. Only enabled for
                select DB engines (Postgres). Requires Vault 1.18+ Enterprise.
-        :param pulumi.Input[str] username: The database username that this static role corresponds to.
+        :param pulumi.Input[builtins.bool] skip_import_rotation: If set to true, Vault will skip the
+               initial secret rotation on import. Requires Vault 1.18+ Enterprise.
+        :param pulumi.Input[builtins.str] username: The database username that this static role corresponds to.
         """
         ...
     @overload
@@ -550,16 +654,19 @@ class SecretBackendStaticRole(pulumi.CustomResource):
     def _internal_init(__self__,
                  resource_name: str,
                  opts: Optional[pulumi.ResourceOptions] = None,
-                 backend: Optional[pulumi.Input[str]] = None,
-                 db_name: Optional[pulumi.Input[str]] = None,
-                 name: Optional[pulumi.Input[str]] = None,
-                 namespace: Optional[pulumi.Input[str]] = None,
-                 rotation_period: Optional[pulumi.Input[int]] = None,
-                 rotation_schedule: Optional[pulumi.Input[str]] = None,
-                 rotation_statements: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
-                 rotation_window: Optional[pulumi.Input[int]] = None,
-                 self_managed_password: Optional[pulumi.Input[str]] = None,
-                 username: Optional[pulumi.Input[str]] = None,
+                 backend: Optional[pulumi.Input[builtins.str]] = None,
+                 credential_config: Optional[pulumi.Input[Mapping[str, pulumi.Input[builtins.str]]]] = None,
+                 credential_type: Optional[pulumi.Input[builtins.str]] = None,
+                 db_name: Optional[pulumi.Input[builtins.str]] = None,
+                 name: Optional[pulumi.Input[builtins.str]] = None,
+                 namespace: Optional[pulumi.Input[builtins.str]] = None,
+                 rotation_period: Optional[pulumi.Input[builtins.int]] = None,
+                 rotation_schedule: Optional[pulumi.Input[builtins.str]] = None,
+                 rotation_statements: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
+                 rotation_window: Optional[pulumi.Input[builtins.int]] = None,
+                 self_managed_password: Optional[pulumi.Input[builtins.str]] = None,
+                 skip_import_rotation: Optional[pulumi.Input[builtins.bool]] = None,
+                 username: Optional[pulumi.Input[builtins.str]] = None,
                  __props__=None):
         opts = pulumi.ResourceOptions.merge(_utilities.get_resource_opts_defaults(), opts)
         if not isinstance(opts, pulumi.ResourceOptions):
@@ -572,6 +679,8 @@ class SecretBackendStaticRole(pulumi.CustomResource):
             if backend is None and not opts.urn:
                 raise TypeError("Missing required property 'backend'")
             __props__.__dict__["backend"] = backend
+            __props__.__dict__["credential_config"] = credential_config
+            __props__.__dict__["credential_type"] = credential_type
             if db_name is None and not opts.urn:
                 raise TypeError("Missing required property 'db_name'")
             __props__.__dict__["db_name"] = db_name
@@ -582,6 +691,7 @@ class SecretBackendStaticRole(pulumi.CustomResource):
             __props__.__dict__["rotation_statements"] = rotation_statements
             __props__.__dict__["rotation_window"] = rotation_window
             __props__.__dict__["self_managed_password"] = None if self_managed_password is None else pulumi.Output.secret(self_managed_password)
+            __props__.__dict__["skip_import_rotation"] = skip_import_rotation
             if username is None and not opts.urn:
                 raise TypeError("Missing required property 'username'")
             __props__.__dict__["username"] = username
@@ -597,16 +707,19 @@ class SecretBackendStaticRole(pulumi.CustomResource):
     def get(resource_name: str,
             id: pulumi.Input[str],
             opts: Optional[pulumi.ResourceOptions] = None,
-            backend: Optional[pulumi.Input[str]] = None,
-            db_name: Optional[pulumi.Input[str]] = None,
-            name: Optional[pulumi.Input[str]] = None,
-            namespace: Optional[pulumi.Input[str]] = None,
-            rotation_period: Optional[pulumi.Input[int]] = None,
-            rotation_schedule: Optional[pulumi.Input[str]] = None,
-            rotation_statements: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
-            rotation_window: Optional[pulumi.Input[int]] = None,
-            self_managed_password: Optional[pulumi.Input[str]] = None,
-            username: Optional[pulumi.Input[str]] = None) -> 'SecretBackendStaticRole':
+            backend: Optional[pulumi.Input[builtins.str]] = None,
+            credential_config: Optional[pulumi.Input[Mapping[str, pulumi.Input[builtins.str]]]] = None,
+            credential_type: Optional[pulumi.Input[builtins.str]] = None,
+            db_name: Optional[pulumi.Input[builtins.str]] = None,
+            name: Optional[pulumi.Input[builtins.str]] = None,
+            namespace: Optional[pulumi.Input[builtins.str]] = None,
+            rotation_period: Optional[pulumi.Input[builtins.int]] = None,
+            rotation_schedule: Optional[pulumi.Input[builtins.str]] = None,
+            rotation_statements: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
+            rotation_window: Optional[pulumi.Input[builtins.int]] = None,
+            self_managed_password: Optional[pulumi.Input[builtins.str]] = None,
+            skip_import_rotation: Optional[pulumi.Input[builtins.bool]] = None,
+            username: Optional[pulumi.Input[builtins.str]] = None) -> 'SecretBackendStaticRole':
         """
         Get an existing SecretBackendStaticRole resource's state with the given name, id, and optional extra
         properties used to qualify the lookup.
@@ -614,33 +727,39 @@ class SecretBackendStaticRole(pulumi.CustomResource):
         :param str resource_name: The unique name of the resulting resource.
         :param pulumi.Input[str] id: The unique provider ID of the resource to lookup.
         :param pulumi.ResourceOptions opts: Options for the resource.
-        :param pulumi.Input[str] backend: The unique name of the Vault mount to configure.
-        :param pulumi.Input[str] db_name: The unique name of the database connection to use for the static role.
-        :param pulumi.Input[str] name: A unique name to give the static role.
-        :param pulumi.Input[str] namespace: The namespace to provision the resource in.
+        :param pulumi.Input[builtins.str] backend: The unique name of the Vault mount to configure.
+        :param pulumi.Input[builtins.str] credential_type: The credential type for the user, can be one of "password", "rsa_private_key" or "client_certificate".The configuration
+               can be done in `credential_config`.
+        :param pulumi.Input[builtins.str] db_name: The unique name of the database connection to use for the static role.
+        :param pulumi.Input[builtins.str] name: A unique name to give the static role.
+        :param pulumi.Input[builtins.str] namespace: The namespace to provision the resource in.
                The value should not contain leading or trailing forward slashes.
                The `namespace` is always relative to the provider's configured namespace.
                *Available only for Vault Enterprise*.
-        :param pulumi.Input[int] rotation_period: The amount of time Vault should wait before rotating the password, in seconds.
+        :param pulumi.Input[builtins.int] rotation_period: The amount of time Vault should wait before rotating the password, in seconds.
                Mutually exclusive with `rotation_schedule`.
-        :param pulumi.Input[str] rotation_schedule: A cron-style string that will define the schedule on which rotations should occur.
+        :param pulumi.Input[builtins.str] rotation_schedule: A cron-style string that will define the schedule on which rotations should occur.
                Mutually exclusive with `rotation_period`.
                **Warning**: The `rotation_period` and `rotation_schedule` fields are
                mutually exclusive. One of them must be set but not both.
-        :param pulumi.Input[Sequence[pulumi.Input[str]]] rotation_statements: Database statements to execute to rotate the password for the configured database user.
-        :param pulumi.Input[int] rotation_window: The amount of time, in seconds, in which rotations are allowed to occur starting
+        :param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] rotation_statements: Database statements to execute to rotate the password for the configured database user.
+        :param pulumi.Input[builtins.int] rotation_window: The amount of time, in seconds, in which rotations are allowed to occur starting
                from a given `rotation_schedule`.
-        :param pulumi.Input[str] self_managed_password: The password corresponding to the username in the database.
+        :param pulumi.Input[builtins.str] self_managed_password: The password corresponding to the username in the database.
                Required when using the Rootless Password Rotation workflow for static roles. Only enabled for
                select DB engines (Postgres). Requires Vault 1.18+ Enterprise.
-        :param pulumi.Input[str] username: The database username that this static role corresponds to.
+        :param pulumi.Input[builtins.bool] skip_import_rotation: If set to true, Vault will skip the
+               initial secret rotation on import. Requires Vault 1.18+ Enterprise.
+        :param pulumi.Input[builtins.str] username: The database username that this static role corresponds to.
         """
         opts = pulumi.ResourceOptions.merge(opts, pulumi.ResourceOptions(id=id))
         __props__ = _SecretBackendStaticRoleState.__new__(_SecretBackendStaticRoleState)
         __props__.__dict__["backend"] = backend
+        __props__.__dict__["credential_config"] = credential_config
+        __props__.__dict__["credential_type"] = credential_type
         __props__.__dict__["db_name"] = db_name
         __props__.__dict__["name"] = name
         __props__.__dict__["namespace"] = namespace
@@ -649,20 +768,35 @@ class SecretBackendStaticRole(pulumi.CustomResource):
         __props__.__dict__["rotation_statements"] = rotation_statements
         __props__.__dict__["rotation_window"] = rotation_window
         __props__.__dict__["self_managed_password"] = self_managed_password
+        __props__.__dict__["skip_import_rotation"] = skip_import_rotation
         __props__.__dict__["username"] = username
         return SecretBackendStaticRole(resource_name, opts=opts, __props__=__props__)
     @property
     @pulumi.getter
-    def backend(self) -> pulumi.Output[str]:
+    def backend(self) -> pulumi.Output[builtins.str]:
         """
         The unique name of the Vault mount to configure.
         """
         return pulumi.get(self, "backend")
+    @property
+    @pulumi.getter(name="credentialConfig")
+    def credential_config(self) -> pulumi.Output[Optional[Mapping[str, builtins.str]]]:
+        return pulumi.get(self, "credential_config")
+    @property
+    @pulumi.getter(name="credentialType")
+    def credential_type(self) -> pulumi.Output[builtins.str]:
+        """
+        The credential type for the user, can be one of "password", "rsa_private_key" or "client_certificate".The configuration
+        can be done in `credential_config`.
+        """
+        return pulumi.get(self, "credential_type")
     @property
     @pulumi.getter(name="dbName")
-    def db_name(self) -> pulumi.Output[str]:
+    def db_name(self) -> pulumi.Output[builtins.str]:
         """
         The unique name of the database connection to use for the static role.
         """
@@ -670,7 +804,7 @@ class SecretBackendStaticRole(pulumi.CustomResource):
     @property
     @pulumi.getter
-    def name(self) -> pulumi.Output[str]:
+    def name(self) -> pulumi.Output[builtins.str]:
         """
         A unique name to give the static role.
         """
@@ -678,7 +812,7 @@ class SecretBackendStaticRole(pulumi.CustomResource):
     @property
     @pulumi.getter
-    def namespace(self) -> pulumi.Output[Optional[str]]:
+    def namespace(self) -> pulumi.Output[Optional[builtins.str]]:
         """
         The namespace to provision the resource in.
         The value should not contain leading or trailing forward slashes.
@@ -689,7 +823,7 @@ class SecretBackendStaticRole(pulumi.CustomResource):
     @property
     @pulumi.getter(name="rotationPeriod")
-    def rotation_period(self) -> pulumi.Output[Optional[int]]:
+    def rotation_period(self) -> pulumi.Output[Optional[builtins.int]]:
         """
         The amount of time Vault should wait before rotating the password, in seconds.
         Mutually exclusive with `rotation_schedule`.
@@ -698,7 +832,7 @@ class SecretBackendStaticRole(pulumi.CustomResource):
     @property
     @pulumi.getter(name="rotationSchedule")
-    def rotation_schedule(self) -> pulumi.Output[Optional[str]]:
+    def rotation_schedule(self) -> pulumi.Output[Optional[builtins.str]]:
         """
         A cron-style string that will define the schedule on which rotations should occur.
         Mutually exclusive with `rotation_period`.
@@ -710,7 +844,7 @@ class SecretBackendStaticRole(pulumi.CustomResource):
     @property
     @pulumi.getter(name="rotationStatements")
-    def rotation_statements(self) -> pulumi.Output[Optional[Sequence[str]]]:
+    def rotation_statements(self) -> pulumi.Output[Optional[Sequence[builtins.str]]]:
         """
         Database statements to execute to rotate the password for the configured database user.
         """
@@ -718,7 +852,7 @@ class SecretBackendStaticRole(pulumi.CustomResource):
     @property
     @pulumi.getter(name="rotationWindow")
-    def rotation_window(self) -> pulumi.Output[Optional[int]]:
+    def rotation_window(self) -> pulumi.Output[Optional[builtins.int]]:
         """
         The amount of time, in seconds, in which rotations are allowed to occur starting
         from a given `rotation_schedule`.
@@ -727,7 +861,7 @@ class SecretBackendStaticRole(pulumi.CustomResource):
     @property
     @pulumi.getter(name="selfManagedPassword")
-    def self_managed_password(self) -> pulumi.Output[Optional[str]]:
+    def self_managed_password(self) -> pulumi.Output[Optional[builtins.str]]:
         """
         The password corresponding to the username in the database.
         Required when using the Rootless Password Rotation workflow for static roles. Only enabled for
@@ -735,9 +869,18 @@ class SecretBackendStaticRole(pulumi.CustomResource):
         """
         return pulumi.get(self, "self_managed_password")
+    @property
+    @pulumi.getter(name="skipImportRotation")
+    def skip_import_rotation(self) -> pulumi.Output[Optional[builtins.bool]]:
+        """
+        If set to true, Vault will skip the
+        initial secret rotation on import. Requires Vault 1.18+ Enterprise.
+        """
+        return pulumi.get(self, "skip_import_rotation")
     @property
     @pulumi.getter
-    def username(self) -> pulumi.Output[str]:
+    def username(self) -> pulumi.Output[builtins.str]:
         """
         The database username that this static role corresponds to.
         """

pulumi-vault 6.6.0a1741415971__py3-none-any.whl → 6.7.0__py3-none-any.whl

pulumi-vault 6.6.0a1741415971py3-none-any.whl → 6.7.0py3-none-any.whl