pulumi-vault 6.6.0a1741836364__py3-none-any.whl → 6.7.0__py3-none-any.whl
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- pulumi_vault/__init__.py +1 -0
- pulumi_vault/_inputs.py +583 -562
- pulumi_vault/ad/__init__.py +1 -0
- pulumi_vault/ad/get_access_credentials.py +20 -19
- pulumi_vault/ad/secret_backend.py +477 -476
- pulumi_vault/ad/secret_library.py +99 -98
- pulumi_vault/ad/secret_role.py +85 -84
- pulumi_vault/alicloud/__init__.py +1 -0
- pulumi_vault/alicloud/auth_backend_role.py +183 -182
- pulumi_vault/approle/__init__.py +1 -0
- pulumi_vault/approle/auth_backend_login.py +106 -105
- pulumi_vault/approle/auth_backend_role.py +239 -238
- pulumi_vault/approle/auth_backend_role_secret_id.py +162 -161
- pulumi_vault/approle/get_auth_backend_role_id.py +18 -17
- pulumi_vault/audit.py +85 -84
- pulumi_vault/audit_request_header.py +43 -42
- pulumi_vault/auth_backend.py +106 -105
- pulumi_vault/aws/__init__.py +1 -0
- pulumi_vault/aws/auth_backend_cert.py +71 -70
- pulumi_vault/aws/auth_backend_client.py +253 -252
- pulumi_vault/aws/auth_backend_config_identity.py +85 -84
- pulumi_vault/aws/auth_backend_identity_whitelist.py +57 -56
- pulumi_vault/aws/auth_backend_login.py +209 -208
- pulumi_vault/aws/auth_backend_role.py +400 -399
- pulumi_vault/aws/auth_backend_role_tag.py +127 -126
- pulumi_vault/aws/auth_backend_roletag_blacklist.py +57 -56
- pulumi_vault/aws/auth_backend_sts_role.py +71 -70
- pulumi_vault/aws/get_access_credentials.py +44 -43
- pulumi_vault/aws/get_static_access_credentials.py +13 -12
- pulumi_vault/aws/secret_backend.py +337 -336
- pulumi_vault/aws/secret_backend_role.py +211 -210
- pulumi_vault/aws/secret_backend_static_role.py +113 -112
- pulumi_vault/azure/__init__.py +1 -0
- pulumi_vault/azure/_inputs.py +21 -20
- pulumi_vault/azure/auth_backend_config.py +183 -182
- pulumi_vault/azure/auth_backend_role.py +253 -252
- pulumi_vault/azure/backend.py +239 -238
- pulumi_vault/azure/backend_role.py +188 -140
- pulumi_vault/azure/get_access_credentials.py +58 -57
- pulumi_vault/azure/outputs.py +11 -10
- pulumi_vault/cert_auth_backend_role.py +365 -364
- pulumi_vault/config/__init__.py +1 -0
- pulumi_vault/config/__init__.pyi +1 -0
- pulumi_vault/config/_inputs.py +11 -10
- pulumi_vault/config/outputs.py +287 -286
- pulumi_vault/config/ui_custom_message.py +113 -112
- pulumi_vault/config/vars.py +1 -0
- pulumi_vault/consul/__init__.py +1 -0
- pulumi_vault/consul/secret_backend.py +197 -196
- pulumi_vault/consul/secret_backend_role.py +183 -182
- pulumi_vault/database/__init__.py +1 -0
- pulumi_vault/database/_inputs.py +2525 -2524
- pulumi_vault/database/outputs.py +1529 -1528
- pulumi_vault/database/secret_backend_connection.py +169 -168
- pulumi_vault/database/secret_backend_role.py +169 -168
- pulumi_vault/database/secret_backend_static_role.py +179 -178
- pulumi_vault/database/secrets_mount.py +267 -266
- pulumi_vault/egp_policy.py +71 -70
- pulumi_vault/gcp/__init__.py +1 -0
- pulumi_vault/gcp/_inputs.py +82 -81
- pulumi_vault/gcp/auth_backend.py +260 -259
- pulumi_vault/gcp/auth_backend_role.py +281 -280
- pulumi_vault/gcp/get_auth_backend_role.py +70 -69
- pulumi_vault/gcp/outputs.py +50 -49
- pulumi_vault/gcp/secret_backend.py +232 -231
- pulumi_vault/gcp/secret_impersonated_account.py +92 -91
- pulumi_vault/gcp/secret_roleset.py +92 -91
- pulumi_vault/gcp/secret_static_account.py +92 -91
- pulumi_vault/generic/__init__.py +1 -0
- pulumi_vault/generic/endpoint.py +113 -112
- pulumi_vault/generic/get_secret.py +28 -27
- pulumi_vault/generic/secret.py +78 -77
- pulumi_vault/get_auth_backend.py +19 -18
- pulumi_vault/get_auth_backends.py +14 -13
- pulumi_vault/get_namespace.py +15 -14
- pulumi_vault/get_namespaces.py +68 -18
- pulumi_vault/get_nomad_access_token.py +19 -18
- pulumi_vault/get_policy_document.py +6 -5
- pulumi_vault/get_raft_autopilot_state.py +18 -17
- pulumi_vault/github/__init__.py +1 -0
- pulumi_vault/github/_inputs.py +42 -41
- pulumi_vault/github/auth_backend.py +232 -231
- pulumi_vault/github/outputs.py +26 -25
- pulumi_vault/github/team.py +57 -56
- pulumi_vault/github/user.py +57 -56
- pulumi_vault/identity/__init__.py +1 -0
- pulumi_vault/identity/entity.py +85 -84
- pulumi_vault/identity/entity_alias.py +71 -70
- pulumi_vault/identity/entity_policies.py +64 -63
- pulumi_vault/identity/get_entity.py +43 -42
- pulumi_vault/identity/get_group.py +50 -49
- pulumi_vault/identity/get_oidc_client_creds.py +14 -13
- pulumi_vault/identity/get_oidc_openid_config.py +24 -23
- pulumi_vault/identity/get_oidc_public_keys.py +13 -12
- pulumi_vault/identity/group.py +141 -140
- pulumi_vault/identity/group_alias.py +57 -56
- pulumi_vault/identity/group_member_entity_ids.py +57 -56
- pulumi_vault/identity/group_member_group_ids.py +57 -56
- pulumi_vault/identity/group_policies.py +64 -63
- pulumi_vault/identity/mfa_duo.py +148 -147
- pulumi_vault/identity/mfa_login_enforcement.py +120 -119
- pulumi_vault/identity/mfa_okta.py +134 -133
- pulumi_vault/identity/mfa_pingid.py +127 -126
- pulumi_vault/identity/mfa_totp.py +176 -175
- pulumi_vault/identity/oidc.py +29 -28
- pulumi_vault/identity/oidc_assignment.py +57 -56
- pulumi_vault/identity/oidc_client.py +127 -126
- pulumi_vault/identity/oidc_key.py +85 -84
- pulumi_vault/identity/oidc_key_allowed_client_id.py +43 -42
- pulumi_vault/identity/oidc_provider.py +92 -91
- pulumi_vault/identity/oidc_role.py +85 -84
- pulumi_vault/identity/oidc_scope.py +57 -56
- pulumi_vault/identity/outputs.py +32 -31
- pulumi_vault/jwt/__init__.py +1 -0
- pulumi_vault/jwt/_inputs.py +42 -41
- pulumi_vault/jwt/auth_backend.py +288 -287
- pulumi_vault/jwt/auth_backend_role.py +407 -406
- pulumi_vault/jwt/outputs.py +26 -25
- pulumi_vault/kmip/__init__.py +1 -0
- pulumi_vault/kmip/secret_backend.py +183 -182
- pulumi_vault/kmip/secret_role.py +295 -294
- pulumi_vault/kmip/secret_scope.py +57 -56
- pulumi_vault/kubernetes/__init__.py +1 -0
- pulumi_vault/kubernetes/auth_backend_config.py +141 -140
- pulumi_vault/kubernetes/auth_backend_role.py +225 -224
- pulumi_vault/kubernetes/get_auth_backend_config.py +47 -46
- pulumi_vault/kubernetes/get_auth_backend_role.py +70 -69
- pulumi_vault/kubernetes/get_service_account_token.py +38 -37
- pulumi_vault/kubernetes/secret_backend.py +316 -315
- pulumi_vault/kubernetes/secret_backend_role.py +197 -196
- pulumi_vault/kv/__init__.py +1 -0
- pulumi_vault/kv/_inputs.py +21 -20
- pulumi_vault/kv/get_secret.py +17 -16
- pulumi_vault/kv/get_secret_subkeys_v2.py +30 -29
- pulumi_vault/kv/get_secret_v2.py +29 -28
- pulumi_vault/kv/get_secrets_list.py +13 -12
- pulumi_vault/kv/get_secrets_list_v2.py +19 -18
- pulumi_vault/kv/outputs.py +13 -12
- pulumi_vault/kv/secret.py +50 -49
- pulumi_vault/kv/secret_backend_v2.py +71 -70
- pulumi_vault/kv/secret_v2.py +134 -133
- pulumi_vault/ldap/__init__.py +1 -0
- pulumi_vault/ldap/auth_backend.py +588 -587
- pulumi_vault/ldap/auth_backend_group.py +57 -56
- pulumi_vault/ldap/auth_backend_user.py +71 -70
- pulumi_vault/ldap/get_dynamic_credentials.py +17 -16
- pulumi_vault/ldap/get_static_credentials.py +18 -17
- pulumi_vault/ldap/secret_backend.py +554 -553
- pulumi_vault/ldap/secret_backend_dynamic_role.py +127 -126
- pulumi_vault/ldap/secret_backend_library_set.py +99 -98
- pulumi_vault/ldap/secret_backend_static_role.py +99 -98
- pulumi_vault/managed/__init__.py +1 -0
- pulumi_vault/managed/_inputs.py +229 -228
- pulumi_vault/managed/keys.py +15 -14
- pulumi_vault/managed/outputs.py +139 -138
- pulumi_vault/mfa_duo.py +113 -112
- pulumi_vault/mfa_okta.py +113 -112
- pulumi_vault/mfa_pingid.py +120 -119
- pulumi_vault/mfa_totp.py +127 -126
- pulumi_vault/mongodbatlas/__init__.py +1 -0
- pulumi_vault/mongodbatlas/secret_backend.py +64 -63
- pulumi_vault/mongodbatlas/secret_role.py +155 -154
- pulumi_vault/mount.py +274 -273
- pulumi_vault/namespace.py +64 -63
- pulumi_vault/nomad_secret_backend.py +211 -210
- pulumi_vault/nomad_secret_role.py +85 -84
- pulumi_vault/okta/__init__.py +1 -0
- pulumi_vault/okta/_inputs.py +26 -25
- pulumi_vault/okta/auth_backend.py +274 -273
- pulumi_vault/okta/auth_backend_group.py +57 -56
- pulumi_vault/okta/auth_backend_user.py +71 -70
- pulumi_vault/okta/outputs.py +16 -15
- pulumi_vault/outputs.py +73 -60
- pulumi_vault/password_policy.py +43 -42
- pulumi_vault/pkisecret/__init__.py +1 -0
- pulumi_vault/pkisecret/_inputs.py +31 -30
- pulumi_vault/pkisecret/backend_acme_eab.py +92 -91
- pulumi_vault/pkisecret/backend_config_acme.py +141 -140
- pulumi_vault/pkisecret/backend_config_auto_tidy.py +323 -322
- pulumi_vault/pkisecret/backend_config_cluster.py +57 -56
- pulumi_vault/pkisecret/backend_config_cmpv2.py +106 -105
- pulumi_vault/pkisecret/backend_config_est.py +120 -119
- pulumi_vault/pkisecret/get_backend_cert_metadata.py +22 -21
- pulumi_vault/pkisecret/get_backend_config_cmpv2.py +22 -21
- pulumi_vault/pkisecret/get_backend_config_est.py +19 -18
- pulumi_vault/pkisecret/get_backend_issuer.py +45 -44
- pulumi_vault/pkisecret/get_backend_issuers.py +15 -14
- pulumi_vault/pkisecret/get_backend_key.py +20 -19
- pulumi_vault/pkisecret/get_backend_keys.py +15 -14
- pulumi_vault/pkisecret/outputs.py +28 -27
- pulumi_vault/pkisecret/secret_backend_cert.py +337 -336
- pulumi_vault/pkisecret/secret_backend_config_ca.py +43 -42
- pulumi_vault/pkisecret/secret_backend_config_issuers.py +57 -56
- pulumi_vault/pkisecret/secret_backend_config_urls.py +85 -84
- pulumi_vault/pkisecret/secret_backend_crl_config.py +197 -196
- pulumi_vault/pkisecret/secret_backend_intermediate_cert_request.py +421 -420
- pulumi_vault/pkisecret/secret_backend_intermediate_set_signed.py +57 -56
- pulumi_vault/pkisecret/secret_backend_issuer.py +232 -231
- pulumi_vault/pkisecret/secret_backend_key.py +120 -119
- pulumi_vault/pkisecret/secret_backend_role.py +715 -714
- pulumi_vault/pkisecret/secret_backend_root_cert.py +554 -553
- pulumi_vault/pkisecret/secret_backend_root_sign_intermediate.py +526 -525
- pulumi_vault/pkisecret/secret_backend_sign.py +281 -280
- pulumi_vault/plugin.py +127 -126
- pulumi_vault/plugin_pinned_version.py +43 -42
- pulumi_vault/policy.py +43 -42
- pulumi_vault/provider.py +120 -119
- pulumi_vault/pulumi-plugin.json +1 -1
- pulumi_vault/quota_lease_count.py +85 -84
- pulumi_vault/quota_rate_limit.py +113 -112
- pulumi_vault/rabbitmq/__init__.py +1 -0
- pulumi_vault/rabbitmq/_inputs.py +41 -40
- pulumi_vault/rabbitmq/outputs.py +25 -24
- pulumi_vault/rabbitmq/secret_backend.py +169 -168
- pulumi_vault/rabbitmq/secret_backend_role.py +57 -56
- pulumi_vault/raft_autopilot.py +113 -112
- pulumi_vault/raft_snapshot_agent_config.py +393 -392
- pulumi_vault/rgp_policy.py +57 -56
- pulumi_vault/saml/__init__.py +1 -0
- pulumi_vault/saml/auth_backend.py +155 -154
- pulumi_vault/saml/auth_backend_role.py +239 -238
- pulumi_vault/secrets/__init__.py +1 -0
- pulumi_vault/secrets/_inputs.py +16 -15
- pulumi_vault/secrets/outputs.py +10 -9
- pulumi_vault/secrets/sync_association.py +71 -70
- pulumi_vault/secrets/sync_aws_destination.py +148 -147
- pulumi_vault/secrets/sync_azure_destination.py +148 -147
- pulumi_vault/secrets/sync_config.py +43 -42
- pulumi_vault/secrets/sync_gcp_destination.py +106 -105
- pulumi_vault/secrets/sync_gh_destination.py +134 -133
- pulumi_vault/secrets/sync_github_apps.py +64 -63
- pulumi_vault/secrets/sync_vercel_destination.py +120 -119
- pulumi_vault/ssh/__init__.py +1 -0
- pulumi_vault/ssh/_inputs.py +11 -10
- pulumi_vault/ssh/get_secret_backend_sign.py +52 -51
- pulumi_vault/ssh/outputs.py +7 -6
- pulumi_vault/ssh/secret_backend_ca.py +99 -98
- pulumi_vault/ssh/secret_backend_role.py +365 -364
- pulumi_vault/terraformcloud/__init__.py +1 -0
- pulumi_vault/terraformcloud/secret_backend.py +111 -110
- pulumi_vault/terraformcloud/secret_creds.py +74 -73
- pulumi_vault/terraformcloud/secret_role.py +93 -92
- pulumi_vault/token.py +246 -245
- pulumi_vault/tokenauth/__init__.py +1 -0
- pulumi_vault/tokenauth/auth_backend_role.py +267 -266
- pulumi_vault/transform/__init__.py +1 -0
- pulumi_vault/transform/alphabet.py +57 -56
- pulumi_vault/transform/get_decode.py +47 -46
- pulumi_vault/transform/get_encode.py +47 -46
- pulumi_vault/transform/role.py +57 -56
- pulumi_vault/transform/template.py +113 -112
- pulumi_vault/transform/transformation.py +141 -140
- pulumi_vault/transit/__init__.py +1 -0
- pulumi_vault/transit/get_decrypt.py +18 -17
- pulumi_vault/transit/get_encrypt.py +21 -20
- pulumi_vault/transit/get_sign.py +54 -53
- pulumi_vault/transit/get_verify.py +60 -59
- pulumi_vault/transit/secret_backend_key.py +274 -273
- pulumi_vault/transit/secret_cache_config.py +43 -42
- {pulumi_vault-6.6.0a1741836364.dist-info → pulumi_vault-6.7.0.dist-info}/METADATA +2 -2
- pulumi_vault-6.7.0.dist-info/RECORD +265 -0
- {pulumi_vault-6.6.0a1741836364.dist-info → pulumi_vault-6.7.0.dist-info}/WHEEL +1 -1
- pulumi_vault-6.6.0a1741836364.dist-info/RECORD +0 -265
- {pulumi_vault-6.6.0a1741836364.dist-info → pulumi_vault-6.7.0.dist-info}/top_level.txt +0 -0
@@ -2,6 +2,7 @@
|
|
2
2
|
# *** WARNING: this file was generated by the Pulumi Terraform Bridge (tfgen) Tool. ***
|
3
3
|
# *** Do not edit by hand unless you're certain you know what you are doing! ***
|
4
4
|
|
5
|
+
import builtins
|
5
6
|
import copy
|
6
7
|
import warnings
|
7
8
|
import sys
|
@@ -19,45 +20,45 @@ __all__ = ['AuthBackendLoginArgs', 'AuthBackendLogin']
|
|
19
20
|
@pulumi.input_type
|
20
21
|
class AuthBackendLoginArgs:
|
21
22
|
def __init__(__self__, *,
|
22
|
-
backend: Optional[pulumi.Input[str]] = None,
|
23
|
-
iam_http_request_method: Optional[pulumi.Input[str]] = None,
|
24
|
-
iam_request_body: Optional[pulumi.Input[str]] = None,
|
25
|
-
iam_request_headers: Optional[pulumi.Input[str]] = None,
|
26
|
-
iam_request_url: Optional[pulumi.Input[str]] = None,
|
27
|
-
identity: Optional[pulumi.Input[str]] = None,
|
28
|
-
namespace: Optional[pulumi.Input[str]] = None,
|
29
|
-
nonce: Optional[pulumi.Input[str]] = None,
|
30
|
-
pkcs7: Optional[pulumi.Input[str]] = None,
|
31
|
-
role: Optional[pulumi.Input[str]] = None,
|
32
|
-
signature: Optional[pulumi.Input[str]] = None):
|
23
|
+
backend: Optional[pulumi.Input[builtins.str]] = None,
|
24
|
+
iam_http_request_method: Optional[pulumi.Input[builtins.str]] = None,
|
25
|
+
iam_request_body: Optional[pulumi.Input[builtins.str]] = None,
|
26
|
+
iam_request_headers: Optional[pulumi.Input[builtins.str]] = None,
|
27
|
+
iam_request_url: Optional[pulumi.Input[builtins.str]] = None,
|
28
|
+
identity: Optional[pulumi.Input[builtins.str]] = None,
|
29
|
+
namespace: Optional[pulumi.Input[builtins.str]] = None,
|
30
|
+
nonce: Optional[pulumi.Input[builtins.str]] = None,
|
31
|
+
pkcs7: Optional[pulumi.Input[builtins.str]] = None,
|
32
|
+
role: Optional[pulumi.Input[builtins.str]] = None,
|
33
|
+
signature: Optional[pulumi.Input[builtins.str]] = None):
|
33
34
|
"""
|
34
35
|
The set of arguments for constructing a AuthBackendLogin resource.
|
35
|
-
:param pulumi.Input[str] backend: The unique name of the AWS auth backend. Defaults to
|
36
|
+
:param pulumi.Input[builtins.str] backend: The unique name of the AWS auth backend. Defaults to
|
36
37
|
'aws'.
|
37
|
-
:param pulumi.Input[str] iam_http_request_method: The HTTP method used in the signed IAM
|
38
|
+
:param pulumi.Input[builtins.str] iam_http_request_method: The HTTP method used in the signed IAM
|
38
39
|
request.
|
39
|
-
:param pulumi.Input[str] iam_request_body: The base64-encoded body of the signed
|
40
|
+
:param pulumi.Input[builtins.str] iam_request_body: The base64-encoded body of the signed
|
40
41
|
request.
|
41
|
-
:param pulumi.Input[str] iam_request_headers: The base64-encoded, JSON serialized
|
42
|
+
:param pulumi.Input[builtins.str] iam_request_headers: The base64-encoded, JSON serialized
|
42
43
|
representation of the GetCallerIdentity HTTP request headers.
|
43
|
-
:param pulumi.Input[str] iam_request_url: The base64-encoded HTTP URL used in the signed
|
44
|
+
:param pulumi.Input[builtins.str] iam_request_url: The base64-encoded HTTP URL used in the signed
|
44
45
|
request.
|
45
|
-
:param pulumi.Input[str] identity: The base64-encoded EC2 instance identity document to
|
46
|
+
:param pulumi.Input[builtins.str] identity: The base64-encoded EC2 instance identity document to
|
46
47
|
authenticate with. Can be retrieved from the EC2 metadata server.
|
47
|
-
:param pulumi.Input[str] namespace: The namespace to provision the resource in.
|
48
|
+
:param pulumi.Input[builtins.str] namespace: The namespace to provision the resource in.
|
48
49
|
The value should not contain leading or trailing forward slashes.
|
49
50
|
The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault/index.html#namespace).
|
50
51
|
*Available only for Vault Enterprise*.
|
51
|
-
:param pulumi.Input[str] nonce: The unique nonce to be used for login requests. Can be
|
52
|
+
:param pulumi.Input[builtins.str] nonce: The unique nonce to be used for login requests. Can be
|
52
53
|
set to a user-specified value, or will contain the server-generated value
|
53
54
|
once a token is issued. EC2 instances can only acquire a single token until
|
54
55
|
the whitelist is tidied again unless they keep track of this nonce.
|
55
|
-
:param pulumi.Input[str] pkcs7: The PKCS#7 signature of the identity document to
|
56
|
+
:param pulumi.Input[builtins.str] pkcs7: The PKCS#7 signature of the identity document to
|
56
57
|
authenticate with, with all newline characters removed. Can be retrieved from
|
57
58
|
the EC2 metadata server.
|
58
|
-
:param pulumi.Input[str] role: The name of the AWS auth backend role to create tokens
|
59
|
+
:param pulumi.Input[builtins.str] role: The name of the AWS auth backend role to create tokens
|
59
60
|
against.
|
60
|
-
:param pulumi.Input[str] signature: The base64-encoded SHA256 RSA signature of the
|
61
|
+
:param pulumi.Input[builtins.str] signature: The base64-encoded SHA256 RSA signature of the
|
61
62
|
instance identity document to authenticate with, with all newline characters
|
62
63
|
removed. Can be retrieved from the EC2 metadata server.
|
63
64
|
"""
|
@@ -86,7 +87,7 @@ class AuthBackendLoginArgs:
|
|
86
87
|
|
87
88
|
@property
|
88
89
|
@pulumi.getter
|
89
|
-
def backend(self) -> Optional[pulumi.Input[str]]:
|
90
|
+
def backend(self) -> Optional[pulumi.Input[builtins.str]]:
|
90
91
|
"""
|
91
92
|
The unique name of the AWS auth backend. Defaults to
|
92
93
|
'aws'.
|
@@ -94,12 +95,12 @@ class AuthBackendLoginArgs:
|
|
94
95
|
return pulumi.get(self, "backend")
|
95
96
|
|
96
97
|
@backend.setter
|
97
|
-
def backend(self, value: Optional[pulumi.Input[str]]):
|
98
|
+
def backend(self, value: Optional[pulumi.Input[builtins.str]]):
|
98
99
|
pulumi.set(self, "backend", value)
|
99
100
|
|
100
101
|
@property
|
101
102
|
@pulumi.getter(name="iamHttpRequestMethod")
|
102
|
-
def iam_http_request_method(self) -> Optional[pulumi.Input[str]]:
|
103
|
+
def iam_http_request_method(self) -> Optional[pulumi.Input[builtins.str]]:
|
103
104
|
"""
|
104
105
|
The HTTP method used in the signed IAM
|
105
106
|
request.
|
@@ -107,12 +108,12 @@ class AuthBackendLoginArgs:
|
|
107
108
|
return pulumi.get(self, "iam_http_request_method")
|
108
109
|
|
109
110
|
@iam_http_request_method.setter
|
110
|
-
def iam_http_request_method(self, value: Optional[pulumi.Input[str]]):
|
111
|
+
def iam_http_request_method(self, value: Optional[pulumi.Input[builtins.str]]):
|
111
112
|
pulumi.set(self, "iam_http_request_method", value)
|
112
113
|
|
113
114
|
@property
|
114
115
|
@pulumi.getter(name="iamRequestBody")
|
115
|
-
def iam_request_body(self) -> Optional[pulumi.Input[str]]:
|
116
|
+
def iam_request_body(self) -> Optional[pulumi.Input[builtins.str]]:
|
116
117
|
"""
|
117
118
|
The base64-encoded body of the signed
|
118
119
|
request.
|
@@ -120,12 +121,12 @@ class AuthBackendLoginArgs:
|
|
120
121
|
return pulumi.get(self, "iam_request_body")
|
121
122
|
|
122
123
|
@iam_request_body.setter
|
123
|
-
def iam_request_body(self, value: Optional[pulumi.Input[str]]):
|
124
|
+
def iam_request_body(self, value: Optional[pulumi.Input[builtins.str]]):
|
124
125
|
pulumi.set(self, "iam_request_body", value)
|
125
126
|
|
126
127
|
@property
|
127
128
|
@pulumi.getter(name="iamRequestHeaders")
|
128
|
-
def iam_request_headers(self) -> Optional[pulumi.Input[str]]:
|
129
|
+
def iam_request_headers(self) -> Optional[pulumi.Input[builtins.str]]:
|
129
130
|
"""
|
130
131
|
The base64-encoded, JSON serialized
|
131
132
|
representation of the GetCallerIdentity HTTP request headers.
|
@@ -133,12 +134,12 @@ class AuthBackendLoginArgs:
|
|
133
134
|
return pulumi.get(self, "iam_request_headers")
|
134
135
|
|
135
136
|
@iam_request_headers.setter
|
136
|
-
def iam_request_headers(self, value: Optional[pulumi.Input[str]]):
|
137
|
+
def iam_request_headers(self, value: Optional[pulumi.Input[builtins.str]]):
|
137
138
|
pulumi.set(self, "iam_request_headers", value)
|
138
139
|
|
139
140
|
@property
|
140
141
|
@pulumi.getter(name="iamRequestUrl")
|
141
|
-
def iam_request_url(self) -> Optional[pulumi.Input[str]]:
|
142
|
+
def iam_request_url(self) -> Optional[pulumi.Input[builtins.str]]:
|
142
143
|
"""
|
143
144
|
The base64-encoded HTTP URL used in the signed
|
144
145
|
request.
|
@@ -146,12 +147,12 @@ class AuthBackendLoginArgs:
|
|
146
147
|
return pulumi.get(self, "iam_request_url")
|
147
148
|
|
148
149
|
@iam_request_url.setter
|
149
|
-
def iam_request_url(self, value: Optional[pulumi.Input[str]]):
|
150
|
+
def iam_request_url(self, value: Optional[pulumi.Input[builtins.str]]):
|
150
151
|
pulumi.set(self, "iam_request_url", value)
|
151
152
|
|
152
153
|
@property
|
153
154
|
@pulumi.getter
|
154
|
-
def identity(self) -> Optional[pulumi.Input[str]]:
|
155
|
+
def identity(self) -> Optional[pulumi.Input[builtins.str]]:
|
155
156
|
"""
|
156
157
|
The base64-encoded EC2 instance identity document to
|
157
158
|
authenticate with. Can be retrieved from the EC2 metadata server.
|
@@ -159,12 +160,12 @@ class AuthBackendLoginArgs:
|
|
159
160
|
return pulumi.get(self, "identity")
|
160
161
|
|
161
162
|
@identity.setter
|
162
|
-
def identity(self, value: Optional[pulumi.Input[str]]):
|
163
|
+
def identity(self, value: Optional[pulumi.Input[builtins.str]]):
|
163
164
|
pulumi.set(self, "identity", value)
|
164
165
|
|
165
166
|
@property
|
166
167
|
@pulumi.getter
|
167
|
-
def namespace(self) -> Optional[pulumi.Input[str]]:
|
168
|
+
def namespace(self) -> Optional[pulumi.Input[builtins.str]]:
|
168
169
|
"""
|
169
170
|
The namespace to provision the resource in.
|
170
171
|
The value should not contain leading or trailing forward slashes.
|
@@ -174,12 +175,12 @@ class AuthBackendLoginArgs:
|
|
174
175
|
return pulumi.get(self, "namespace")
|
175
176
|
|
176
177
|
@namespace.setter
|
177
|
-
def namespace(self, value: Optional[pulumi.Input[str]]):
|
178
|
+
def namespace(self, value: Optional[pulumi.Input[builtins.str]]):
|
178
179
|
pulumi.set(self, "namespace", value)
|
179
180
|
|
180
181
|
@property
|
181
182
|
@pulumi.getter
|
182
|
-
def nonce(self) -> Optional[pulumi.Input[str]]:
|
183
|
+
def nonce(self) -> Optional[pulumi.Input[builtins.str]]:
|
183
184
|
"""
|
184
185
|
The unique nonce to be used for login requests. Can be
|
185
186
|
set to a user-specified value, or will contain the server-generated value
|
@@ -189,12 +190,12 @@ class AuthBackendLoginArgs:
|
|
189
190
|
return pulumi.get(self, "nonce")
|
190
191
|
|
191
192
|
@nonce.setter
|
192
|
-
def nonce(self, value: Optional[pulumi.Input[str]]):
|
193
|
+
def nonce(self, value: Optional[pulumi.Input[builtins.str]]):
|
193
194
|
pulumi.set(self, "nonce", value)
|
194
195
|
|
195
196
|
@property
|
196
197
|
@pulumi.getter
|
197
|
-
def pkcs7(self) -> Optional[pulumi.Input[str]]:
|
198
|
+
def pkcs7(self) -> Optional[pulumi.Input[builtins.str]]:
|
198
199
|
"""
|
199
200
|
The PKCS#7 signature of the identity document to
|
200
201
|
authenticate with, with all newline characters removed. Can be retrieved from
|
@@ -203,12 +204,12 @@ class AuthBackendLoginArgs:
|
|
203
204
|
return pulumi.get(self, "pkcs7")
|
204
205
|
|
205
206
|
@pkcs7.setter
|
206
|
-
def pkcs7(self, value: Optional[pulumi.Input[str]]):
|
207
|
+
def pkcs7(self, value: Optional[pulumi.Input[builtins.str]]):
|
207
208
|
pulumi.set(self, "pkcs7", value)
|
208
209
|
|
209
210
|
@property
|
210
211
|
@pulumi.getter
|
211
|
-
def role(self) -> Optional[pulumi.Input[str]]:
|
212
|
+
def role(self) -> Optional[pulumi.Input[builtins.str]]:
|
212
213
|
"""
|
213
214
|
The name of the AWS auth backend role to create tokens
|
214
215
|
against.
|
@@ -216,12 +217,12 @@ class AuthBackendLoginArgs:
|
|
216
217
|
return pulumi.get(self, "role")
|
217
218
|
|
218
219
|
@role.setter
|
219
|
-
def role(self, value: Optional[pulumi.Input[str]]):
|
220
|
+
def role(self, value: Optional[pulumi.Input[builtins.str]]):
|
220
221
|
pulumi.set(self, "role", value)
|
221
222
|
|
222
223
|
@property
|
223
224
|
@pulumi.getter
|
224
|
-
def signature(self) -> Optional[pulumi.Input[str]]:
|
225
|
+
def signature(self) -> Optional[pulumi.Input[builtins.str]]:
|
225
226
|
"""
|
226
227
|
The base64-encoded SHA256 RSA signature of the
|
227
228
|
instance identity document to authenticate with, with all newline characters
|
@@ -230,69 +231,69 @@ class AuthBackendLoginArgs:
|
|
230
231
|
return pulumi.get(self, "signature")
|
231
232
|
|
232
233
|
@signature.setter
|
233
|
-
def signature(self, value: Optional[pulumi.Input[str]]):
|
234
|
+
def signature(self, value: Optional[pulumi.Input[builtins.str]]):
|
234
235
|
pulumi.set(self, "signature", value)
|
235
236
|
|
236
237
|
|
237
238
|
@pulumi.input_type
|
238
239
|
class _AuthBackendLoginState:
|
239
240
|
def __init__(__self__, *,
|
240
|
-
accessor: Optional[pulumi.Input[str]] = None,
|
241
|
-
auth_type: Optional[pulumi.Input[str]] = None,
|
242
|
-
backend: Optional[pulumi.Input[str]] = None,
|
243
|
-
client_token: Optional[pulumi.Input[str]] = None,
|
244
|
-
iam_http_request_method: Optional[pulumi.Input[str]] = None,
|
245
|
-
iam_request_body: Optional[pulumi.Input[str]] = None,
|
246
|
-
iam_request_headers: Optional[pulumi.Input[str]] = None,
|
247
|
-
iam_request_url: Optional[pulumi.Input[str]] = None,
|
248
|
-
identity: Optional[pulumi.Input[str]] = None,
|
249
|
-
lease_duration: Optional[pulumi.Input[int]] = None,
|
250
|
-
lease_start_time: Optional[pulumi.Input[str]] = None,
|
251
|
-
metadata: Optional[pulumi.Input[Mapping[str, pulumi.Input[str]]]] = None,
|
252
|
-
namespace: Optional[pulumi.Input[str]] = None,
|
253
|
-
nonce: Optional[pulumi.Input[str]] = None,
|
254
|
-
pkcs7: Optional[pulumi.Input[str]] = None,
|
255
|
-
policies: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
|
256
|
-
renewable: Optional[pulumi.Input[bool]] = None,
|
257
|
-
role: Optional[pulumi.Input[str]] = None,
|
258
|
-
signature: Optional[pulumi.Input[str]] = None):
|
241
|
+
accessor: Optional[pulumi.Input[builtins.str]] = None,
|
242
|
+
auth_type: Optional[pulumi.Input[builtins.str]] = None,
|
243
|
+
backend: Optional[pulumi.Input[builtins.str]] = None,
|
244
|
+
client_token: Optional[pulumi.Input[builtins.str]] = None,
|
245
|
+
iam_http_request_method: Optional[pulumi.Input[builtins.str]] = None,
|
246
|
+
iam_request_body: Optional[pulumi.Input[builtins.str]] = None,
|
247
|
+
iam_request_headers: Optional[pulumi.Input[builtins.str]] = None,
|
248
|
+
iam_request_url: Optional[pulumi.Input[builtins.str]] = None,
|
249
|
+
identity: Optional[pulumi.Input[builtins.str]] = None,
|
250
|
+
lease_duration: Optional[pulumi.Input[builtins.int]] = None,
|
251
|
+
lease_start_time: Optional[pulumi.Input[builtins.str]] = None,
|
252
|
+
metadata: Optional[pulumi.Input[Mapping[str, pulumi.Input[builtins.str]]]] = None,
|
253
|
+
namespace: Optional[pulumi.Input[builtins.str]] = None,
|
254
|
+
nonce: Optional[pulumi.Input[builtins.str]] = None,
|
255
|
+
pkcs7: Optional[pulumi.Input[builtins.str]] = None,
|
256
|
+
policies: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
|
257
|
+
renewable: Optional[pulumi.Input[builtins.bool]] = None,
|
258
|
+
role: Optional[pulumi.Input[builtins.str]] = None,
|
259
|
+
signature: Optional[pulumi.Input[builtins.str]] = None):
|
259
260
|
"""
|
260
261
|
Input properties used for looking up and filtering AuthBackendLogin resources.
|
261
|
-
:param pulumi.Input[str] accessor: The token's accessor.
|
262
|
-
:param pulumi.Input[str] auth_type: The authentication type used to generate this token.
|
263
|
-
:param pulumi.Input[str] backend: The unique name of the AWS auth backend. Defaults to
|
262
|
+
:param pulumi.Input[builtins.str] accessor: The token's accessor.
|
263
|
+
:param pulumi.Input[builtins.str] auth_type: The authentication type used to generate this token.
|
264
|
+
:param pulumi.Input[builtins.str] backend: The unique name of the AWS auth backend. Defaults to
|
264
265
|
'aws'.
|
265
|
-
:param pulumi.Input[str] client_token: The token returned by Vault.
|
266
|
-
:param pulumi.Input[str] iam_http_request_method: The HTTP method used in the signed IAM
|
266
|
+
:param pulumi.Input[builtins.str] client_token: The token returned by Vault.
|
267
|
+
:param pulumi.Input[builtins.str] iam_http_request_method: The HTTP method used in the signed IAM
|
267
268
|
request.
|
268
|
-
:param pulumi.Input[str] iam_request_body: The base64-encoded body of the signed
|
269
|
+
:param pulumi.Input[builtins.str] iam_request_body: The base64-encoded body of the signed
|
269
270
|
request.
|
270
|
-
:param pulumi.Input[str] iam_request_headers: The base64-encoded, JSON serialized
|
271
|
+
:param pulumi.Input[builtins.str] iam_request_headers: The base64-encoded, JSON serialized
|
271
272
|
representation of the GetCallerIdentity HTTP request headers.
|
272
|
-
:param pulumi.Input[str] iam_request_url: The base64-encoded HTTP URL used in the signed
|
273
|
+
:param pulumi.Input[builtins.str] iam_request_url: The base64-encoded HTTP URL used in the signed
|
273
274
|
request.
|
274
|
-
:param pulumi.Input[str] identity: The base64-encoded EC2 instance identity document to
|
275
|
+
:param pulumi.Input[builtins.str] identity: The base64-encoded EC2 instance identity document to
|
275
276
|
authenticate with. Can be retrieved from the EC2 metadata server.
|
276
|
-
:param pulumi.Input[int] lease_duration: The duration in seconds the token will be valid, relative
|
277
|
+
:param pulumi.Input[builtins.int] lease_duration: The duration in seconds the token will be valid, relative
|
277
278
|
to the time in `lease_start_time`.
|
278
|
-
:param pulumi.Input[Mapping[str, pulumi.Input[str]]] metadata: A map of information returned by the Vault server about the
|
279
|
+
:param pulumi.Input[Mapping[str, pulumi.Input[builtins.str]]] metadata: A map of information returned by the Vault server about the
|
279
280
|
authentication used to generate this token.
|
280
|
-
:param pulumi.Input[str] namespace: The namespace to provision the resource in.
|
281
|
+
:param pulumi.Input[builtins.str] namespace: The namespace to provision the resource in.
|
281
282
|
The value should not contain leading or trailing forward slashes.
|
282
283
|
The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault/index.html#namespace).
|
283
284
|
*Available only for Vault Enterprise*.
|
284
|
-
:param pulumi.Input[str] nonce: The unique nonce to be used for login requests. Can be
|
285
|
+
:param pulumi.Input[builtins.str] nonce: The unique nonce to be used for login requests. Can be
|
285
286
|
set to a user-specified value, or will contain the server-generated value
|
286
287
|
once a token is issued. EC2 instances can only acquire a single token until
|
287
288
|
the whitelist is tidied again unless they keep track of this nonce.
|
288
|
-
:param pulumi.Input[str] pkcs7: The PKCS#7 signature of the identity document to
|
289
|
+
:param pulumi.Input[builtins.str] pkcs7: The PKCS#7 signature of the identity document to
|
289
290
|
authenticate with, with all newline characters removed. Can be retrieved from
|
290
291
|
the EC2 metadata server.
|
291
|
-
:param pulumi.Input[Sequence[pulumi.Input[str]]] policies: The Vault policies assigned to this token.
|
292
|
-
:param pulumi.Input[bool] renewable: Set to true if the token can be extended through renewal.
|
293
|
-
:param pulumi.Input[str] role: The name of the AWS auth backend role to create tokens
|
292
|
+
:param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] policies: The Vault policies assigned to this token.
|
293
|
+
:param pulumi.Input[builtins.bool] renewable: Set to true if the token can be extended through renewal.
|
294
|
+
:param pulumi.Input[builtins.str] role: The name of the AWS auth backend role to create tokens
|
294
295
|
against.
|
295
|
-
:param pulumi.Input[str] signature: The base64-encoded SHA256 RSA signature of the
|
296
|
+
:param pulumi.Input[builtins.str] signature: The base64-encoded SHA256 RSA signature of the
|
296
297
|
instance identity document to authenticate with, with all newline characters
|
297
298
|
removed. Can be retrieved from the EC2 metadata server.
|
298
299
|
"""
|
@@ -337,31 +338,31 @@ class _AuthBackendLoginState:
|
|
337
338
|
|
338
339
|
@property
|
339
340
|
@pulumi.getter
|
340
|
-
def accessor(self) -> Optional[pulumi.Input[str]]:
|
341
|
+
def accessor(self) -> Optional[pulumi.Input[builtins.str]]:
|
341
342
|
"""
|
342
343
|
The token's accessor.
|
343
344
|
"""
|
344
345
|
return pulumi.get(self, "accessor")
|
345
346
|
|
346
347
|
@accessor.setter
|
347
|
-
def accessor(self, value: Optional[pulumi.Input[str]]):
|
348
|
+
def accessor(self, value: Optional[pulumi.Input[builtins.str]]):
|
348
349
|
pulumi.set(self, "accessor", value)
|
349
350
|
|
350
351
|
@property
|
351
352
|
@pulumi.getter(name="authType")
|
352
|
-
def auth_type(self) -> Optional[pulumi.Input[str]]:
|
353
|
+
def auth_type(self) -> Optional[pulumi.Input[builtins.str]]:
|
353
354
|
"""
|
354
355
|
The authentication type used to generate this token.
|
355
356
|
"""
|
356
357
|
return pulumi.get(self, "auth_type")
|
357
358
|
|
358
359
|
@auth_type.setter
|
359
|
-
def auth_type(self, value: Optional[pulumi.Input[str]]):
|
360
|
+
def auth_type(self, value: Optional[pulumi.Input[builtins.str]]):
|
360
361
|
pulumi.set(self, "auth_type", value)
|
361
362
|
|
362
363
|
@property
|
363
364
|
@pulumi.getter
|
364
|
-
def backend(self) -> Optional[pulumi.Input[str]]:
|
365
|
+
def backend(self) -> Optional[pulumi.Input[builtins.str]]:
|
365
366
|
"""
|
366
367
|
The unique name of the AWS auth backend. Defaults to
|
367
368
|
'aws'.
|
@@ -369,24 +370,24 @@ class _AuthBackendLoginState:
|
|
369
370
|
return pulumi.get(self, "backend")
|
370
371
|
|
371
372
|
@backend.setter
|
372
|
-
def backend(self, value: Optional[pulumi.Input[str]]):
|
373
|
+
def backend(self, value: Optional[pulumi.Input[builtins.str]]):
|
373
374
|
pulumi.set(self, "backend", value)
|
374
375
|
|
375
376
|
@property
|
376
377
|
@pulumi.getter(name="clientToken")
|
377
|
-
def client_token(self) -> Optional[pulumi.Input[str]]:
|
378
|
+
def client_token(self) -> Optional[pulumi.Input[builtins.str]]:
|
378
379
|
"""
|
379
380
|
The token returned by Vault.
|
380
381
|
"""
|
381
382
|
return pulumi.get(self, "client_token")
|
382
383
|
|
383
384
|
@client_token.setter
|
384
|
-
def client_token(self, value: Optional[pulumi.Input[str]]):
|
385
|
+
def client_token(self, value: Optional[pulumi.Input[builtins.str]]):
|
385
386
|
pulumi.set(self, "client_token", value)
|
386
387
|
|
387
388
|
@property
|
388
389
|
@pulumi.getter(name="iamHttpRequestMethod")
|
389
|
-
def iam_http_request_method(self) -> Optional[pulumi.Input[str]]:
|
390
|
+
def iam_http_request_method(self) -> Optional[pulumi.Input[builtins.str]]:
|
390
391
|
"""
|
391
392
|
The HTTP method used in the signed IAM
|
392
393
|
request.
|
@@ -394,12 +395,12 @@ class _AuthBackendLoginState:
|
|
394
395
|
return pulumi.get(self, "iam_http_request_method")
|
395
396
|
|
396
397
|
@iam_http_request_method.setter
|
397
|
-
def iam_http_request_method(self, value: Optional[pulumi.Input[str]]):
|
398
|
+
def iam_http_request_method(self, value: Optional[pulumi.Input[builtins.str]]):
|
398
399
|
pulumi.set(self, "iam_http_request_method", value)
|
399
400
|
|
400
401
|
@property
|
401
402
|
@pulumi.getter(name="iamRequestBody")
|
402
|
-
def iam_request_body(self) -> Optional[pulumi.Input[str]]:
|
403
|
+
def iam_request_body(self) -> Optional[pulumi.Input[builtins.str]]:
|
403
404
|
"""
|
404
405
|
The base64-encoded body of the signed
|
405
406
|
request.
|
@@ -407,12 +408,12 @@ class _AuthBackendLoginState:
|
|
407
408
|
return pulumi.get(self, "iam_request_body")
|
408
409
|
|
409
410
|
@iam_request_body.setter
|
410
|
-
def iam_request_body(self, value: Optional[pulumi.Input[str]]):
|
411
|
+
def iam_request_body(self, value: Optional[pulumi.Input[builtins.str]]):
|
411
412
|
pulumi.set(self, "iam_request_body", value)
|
412
413
|
|
413
414
|
@property
|
414
415
|
@pulumi.getter(name="iamRequestHeaders")
|
415
|
-
def iam_request_headers(self) -> Optional[pulumi.Input[str]]:
|
416
|
+
def iam_request_headers(self) -> Optional[pulumi.Input[builtins.str]]:
|
416
417
|
"""
|
417
418
|
The base64-encoded, JSON serialized
|
418
419
|
representation of the GetCallerIdentity HTTP request headers.
|
@@ -420,12 +421,12 @@ class _AuthBackendLoginState:
|
|
420
421
|
return pulumi.get(self, "iam_request_headers")
|
421
422
|
|
422
423
|
@iam_request_headers.setter
|
423
|
-
def iam_request_headers(self, value: Optional[pulumi.Input[str]]):
|
424
|
+
def iam_request_headers(self, value: Optional[pulumi.Input[builtins.str]]):
|
424
425
|
pulumi.set(self, "iam_request_headers", value)
|
425
426
|
|
426
427
|
@property
|
427
428
|
@pulumi.getter(name="iamRequestUrl")
|
428
|
-
def iam_request_url(self) -> Optional[pulumi.Input[str]]:
|
429
|
+
def iam_request_url(self) -> Optional[pulumi.Input[builtins.str]]:
|
429
430
|
"""
|
430
431
|
The base64-encoded HTTP URL used in the signed
|
431
432
|
request.
|
@@ -433,12 +434,12 @@ class _AuthBackendLoginState:
|
|
433
434
|
return pulumi.get(self, "iam_request_url")
|
434
435
|
|
435
436
|
@iam_request_url.setter
|
436
|
-
def iam_request_url(self, value: Optional[pulumi.Input[str]]):
|
437
|
+
def iam_request_url(self, value: Optional[pulumi.Input[builtins.str]]):
|
437
438
|
pulumi.set(self, "iam_request_url", value)
|
438
439
|
|
439
440
|
@property
|
440
441
|
@pulumi.getter
|
441
|
-
def identity(self) -> Optional[pulumi.Input[str]]:
|
442
|
+
def identity(self) -> Optional[pulumi.Input[builtins.str]]:
|
442
443
|
"""
|
443
444
|
The base64-encoded EC2 instance identity document to
|
444
445
|
authenticate with. Can be retrieved from the EC2 metadata server.
|
@@ -446,12 +447,12 @@ class _AuthBackendLoginState:
|
|
446
447
|
return pulumi.get(self, "identity")
|
447
448
|
|
448
449
|
@identity.setter
|
449
|
-
def identity(self, value: Optional[pulumi.Input[str]]):
|
450
|
+
def identity(self, value: Optional[pulumi.Input[builtins.str]]):
|
450
451
|
pulumi.set(self, "identity", value)
|
451
452
|
|
452
453
|
@property
|
453
454
|
@pulumi.getter(name="leaseDuration")
|
454
|
-
def lease_duration(self) -> Optional[pulumi.Input[int]]:
|
455
|
+
def lease_duration(self) -> Optional[pulumi.Input[builtins.int]]:
|
455
456
|
"""
|
456
457
|
The duration in seconds the token will be valid, relative
|
457
458
|
to the time in `lease_start_time`.
|
@@ -459,21 +460,21 @@ class _AuthBackendLoginState:
|
|
459
460
|
return pulumi.get(self, "lease_duration")
|
460
461
|
|
461
462
|
@lease_duration.setter
|
462
|
-
def lease_duration(self, value: Optional[pulumi.Input[int]]):
|
463
|
+
def lease_duration(self, value: Optional[pulumi.Input[builtins.int]]):
|
463
464
|
pulumi.set(self, "lease_duration", value)
|
464
465
|
|
465
466
|
@property
|
466
467
|
@pulumi.getter(name="leaseStartTime")
|
467
|
-
def lease_start_time(self) -> Optional[pulumi.Input[str]]:
|
468
|
+
def lease_start_time(self) -> Optional[pulumi.Input[builtins.str]]:
|
468
469
|
return pulumi.get(self, "lease_start_time")
|
469
470
|
|
470
471
|
@lease_start_time.setter
|
471
|
-
def lease_start_time(self, value: Optional[pulumi.Input[str]]):
|
472
|
+
def lease_start_time(self, value: Optional[pulumi.Input[builtins.str]]):
|
472
473
|
pulumi.set(self, "lease_start_time", value)
|
473
474
|
|
474
475
|
@property
|
475
476
|
@pulumi.getter
|
476
|
-
def metadata(self) -> Optional[pulumi.Input[Mapping[str, pulumi.Input[str]]]]:
|
477
|
+
def metadata(self) -> Optional[pulumi.Input[Mapping[str, pulumi.Input[builtins.str]]]]:
|
477
478
|
"""
|
478
479
|
A map of information returned by the Vault server about the
|
479
480
|
authentication used to generate this token.
|
@@ -481,12 +482,12 @@ class _AuthBackendLoginState:
|
|
481
482
|
return pulumi.get(self, "metadata")
|
482
483
|
|
483
484
|
@metadata.setter
|
484
|
-
def metadata(self, value: Optional[pulumi.Input[Mapping[str, pulumi.Input[str]]]]):
|
485
|
+
def metadata(self, value: Optional[pulumi.Input[Mapping[str, pulumi.Input[builtins.str]]]]):
|
485
486
|
pulumi.set(self, "metadata", value)
|
486
487
|
|
487
488
|
@property
|
488
489
|
@pulumi.getter
|
489
|
-
def namespace(self) -> Optional[pulumi.Input[str]]:
|
490
|
+
def namespace(self) -> Optional[pulumi.Input[builtins.str]]:
|
490
491
|
"""
|
491
492
|
The namespace to provision the resource in.
|
492
493
|
The value should not contain leading or trailing forward slashes.
|
@@ -496,12 +497,12 @@ class _AuthBackendLoginState:
|
|
496
497
|
return pulumi.get(self, "namespace")
|
497
498
|
|
498
499
|
@namespace.setter
|
499
|
-
def namespace(self, value: Optional[pulumi.Input[str]]):
|
500
|
+
def namespace(self, value: Optional[pulumi.Input[builtins.str]]):
|
500
501
|
pulumi.set(self, "namespace", value)
|
501
502
|
|
502
503
|
@property
|
503
504
|
@pulumi.getter
|
504
|
-
def nonce(self) -> Optional[pulumi.Input[str]]:
|
505
|
+
def nonce(self) -> Optional[pulumi.Input[builtins.str]]:
|
505
506
|
"""
|
506
507
|
The unique nonce to be used for login requests. Can be
|
507
508
|
set to a user-specified value, or will contain the server-generated value
|
@@ -511,12 +512,12 @@ class _AuthBackendLoginState:
|
|
511
512
|
return pulumi.get(self, "nonce")
|
512
513
|
|
513
514
|
@nonce.setter
|
514
|
-
def nonce(self, value: Optional[pulumi.Input[str]]):
|
515
|
+
def nonce(self, value: Optional[pulumi.Input[builtins.str]]):
|
515
516
|
pulumi.set(self, "nonce", value)
|
516
517
|
|
517
518
|
@property
|
518
519
|
@pulumi.getter
|
519
|
-
def pkcs7(self) -> Optional[pulumi.Input[str]]:
|
520
|
+
def pkcs7(self) -> Optional[pulumi.Input[builtins.str]]:
|
520
521
|
"""
|
521
522
|
The PKCS#7 signature of the identity document to
|
522
523
|
authenticate with, with all newline characters removed. Can be retrieved from
|
@@ -525,36 +526,36 @@ class _AuthBackendLoginState:
|
|
525
526
|
return pulumi.get(self, "pkcs7")
|
526
527
|
|
527
528
|
@pkcs7.setter
|
528
|
-
def pkcs7(self, value: Optional[pulumi.Input[str]]):
|
529
|
+
def pkcs7(self, value: Optional[pulumi.Input[builtins.str]]):
|
529
530
|
pulumi.set(self, "pkcs7", value)
|
530
531
|
|
531
532
|
@property
|
532
533
|
@pulumi.getter
|
533
|
-
def policies(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]:
|
534
|
+
def policies(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]:
|
534
535
|
"""
|
535
536
|
The Vault policies assigned to this token.
|
536
537
|
"""
|
537
538
|
return pulumi.get(self, "policies")
|
538
539
|
|
539
540
|
@policies.setter
|
540
|
-
def policies(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]):
|
541
|
+
def policies(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]):
|
541
542
|
pulumi.set(self, "policies", value)
|
542
543
|
|
543
544
|
@property
|
544
545
|
@pulumi.getter
|
545
|
-
def renewable(self) -> Optional[pulumi.Input[bool]]:
|
546
|
+
def renewable(self) -> Optional[pulumi.Input[builtins.bool]]:
|
546
547
|
"""
|
547
548
|
Set to true if the token can be extended through renewal.
|
548
549
|
"""
|
549
550
|
return pulumi.get(self, "renewable")
|
550
551
|
|
551
552
|
@renewable.setter
|
552
|
-
def renewable(self, value: Optional[pulumi.Input[bool]]):
|
553
|
+
def renewable(self, value: Optional[pulumi.Input[builtins.bool]]):
|
553
554
|
pulumi.set(self, "renewable", value)
|
554
555
|
|
555
556
|
@property
|
556
557
|
@pulumi.getter
|
557
|
-
def role(self) -> Optional[pulumi.Input[str]]:
|
558
|
+
def role(self) -> Optional[pulumi.Input[builtins.str]]:
|
558
559
|
"""
|
559
560
|
The name of the AWS auth backend role to create tokens
|
560
561
|
against.
|
@@ -562,12 +563,12 @@ class _AuthBackendLoginState:
|
|
562
563
|
return pulumi.get(self, "role")
|
563
564
|
|
564
565
|
@role.setter
|
565
|
-
def role(self, value: Optional[pulumi.Input[str]]):
|
566
|
+
def role(self, value: Optional[pulumi.Input[builtins.str]]):
|
566
567
|
pulumi.set(self, "role", value)
|
567
568
|
|
568
569
|
@property
|
569
570
|
@pulumi.getter
|
570
|
-
def signature(self) -> Optional[pulumi.Input[str]]:
|
571
|
+
def signature(self) -> Optional[pulumi.Input[builtins.str]]:
|
571
572
|
"""
|
572
573
|
The base64-encoded SHA256 RSA signature of the
|
573
574
|
instance identity document to authenticate with, with all newline characters
|
@@ -576,7 +577,7 @@ class _AuthBackendLoginState:
|
|
576
577
|
return pulumi.get(self, "signature")
|
577
578
|
|
578
579
|
@signature.setter
|
579
|
-
def signature(self, value: Optional[pulumi.Input[str]]):
|
580
|
+
def signature(self, value: Optional[pulumi.Input[builtins.str]]):
|
580
581
|
pulumi.set(self, "signature", value)
|
581
582
|
|
582
583
|
|
@@ -585,17 +586,17 @@ class AuthBackendLogin(pulumi.CustomResource):
|
|
585
586
|
def __init__(__self__,
|
586
587
|
resource_name: str,
|
587
588
|
opts: Optional[pulumi.ResourceOptions] = None,
|
588
|
-
backend: Optional[pulumi.Input[str]] = None,
|
589
|
-
iam_http_request_method: Optional[pulumi.Input[str]] = None,
|
590
|
-
iam_request_body: Optional[pulumi.Input[str]] = None,
|
591
|
-
iam_request_headers: Optional[pulumi.Input[str]] = None,
|
592
|
-
iam_request_url: Optional[pulumi.Input[str]] = None,
|
593
|
-
identity: Optional[pulumi.Input[str]] = None,
|
594
|
-
namespace: Optional[pulumi.Input[str]] = None,
|
595
|
-
nonce: Optional[pulumi.Input[str]] = None,
|
596
|
-
pkcs7: Optional[pulumi.Input[str]] = None,
|
597
|
-
role: Optional[pulumi.Input[str]] = None,
|
598
|
-
signature: Optional[pulumi.Input[str]] = None,
|
589
|
+
backend: Optional[pulumi.Input[builtins.str]] = None,
|
590
|
+
iam_http_request_method: Optional[pulumi.Input[builtins.str]] = None,
|
591
|
+
iam_request_body: Optional[pulumi.Input[builtins.str]] = None,
|
592
|
+
iam_request_headers: Optional[pulumi.Input[builtins.str]] = None,
|
593
|
+
iam_request_url: Optional[pulumi.Input[builtins.str]] = None,
|
594
|
+
identity: Optional[pulumi.Input[builtins.str]] = None,
|
595
|
+
namespace: Optional[pulumi.Input[builtins.str]] = None,
|
596
|
+
nonce: Optional[pulumi.Input[builtins.str]] = None,
|
597
|
+
pkcs7: Optional[pulumi.Input[builtins.str]] = None,
|
598
|
+
role: Optional[pulumi.Input[builtins.str]] = None,
|
599
|
+
signature: Optional[pulumi.Input[builtins.str]] = None,
|
599
600
|
__props__=None):
|
600
601
|
"""
|
601
602
|
Logs into a Vault server using an AWS auth backend. Login can be
|
@@ -605,32 +606,32 @@ class AuthBackendLogin(pulumi.CustomResource):
|
|
605
606
|
|
606
607
|
:param str resource_name: The name of the resource.
|
607
608
|
:param pulumi.ResourceOptions opts: Options for the resource.
|
608
|
-
:param pulumi.Input[str] backend: The unique name of the AWS auth backend. Defaults to
|
609
|
+
:param pulumi.Input[builtins.str] backend: The unique name of the AWS auth backend. Defaults to
|
609
610
|
'aws'.
|
610
|
-
:param pulumi.Input[str] iam_http_request_method: The HTTP method used in the signed IAM
|
611
|
+
:param pulumi.Input[builtins.str] iam_http_request_method: The HTTP method used in the signed IAM
|
611
612
|
request.
|
612
|
-
:param pulumi.Input[str] iam_request_body: The base64-encoded body of the signed
|
613
|
+
:param pulumi.Input[builtins.str] iam_request_body: The base64-encoded body of the signed
|
613
614
|
request.
|
614
|
-
:param pulumi.Input[str] iam_request_headers: The base64-encoded, JSON serialized
|
615
|
+
:param pulumi.Input[builtins.str] iam_request_headers: The base64-encoded, JSON serialized
|
615
616
|
representation of the GetCallerIdentity HTTP request headers.
|
616
|
-
:param pulumi.Input[str] iam_request_url: The base64-encoded HTTP URL used in the signed
|
617
|
+
:param pulumi.Input[builtins.str] iam_request_url: The base64-encoded HTTP URL used in the signed
|
617
618
|
request.
|
618
|
-
:param pulumi.Input[str] identity: The base64-encoded EC2 instance identity document to
|
619
|
+
:param pulumi.Input[builtins.str] identity: The base64-encoded EC2 instance identity document to
|
619
620
|
authenticate with. Can be retrieved from the EC2 metadata server.
|
620
|
-
:param pulumi.Input[str] namespace: The namespace to provision the resource in.
|
621
|
+
:param pulumi.Input[builtins.str] namespace: The namespace to provision the resource in.
|
621
622
|
The value should not contain leading or trailing forward slashes.
|
622
623
|
The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault/index.html#namespace).
|
623
624
|
*Available only for Vault Enterprise*.
|
624
|
-
:param pulumi.Input[str] nonce: The unique nonce to be used for login requests. Can be
|
625
|
+
:param pulumi.Input[builtins.str] nonce: The unique nonce to be used for login requests. Can be
|
625
626
|
set to a user-specified value, or will contain the server-generated value
|
626
627
|
once a token is issued. EC2 instances can only acquire a single token until
|
627
628
|
the whitelist is tidied again unless they keep track of this nonce.
|
628
|
-
:param pulumi.Input[str] pkcs7: The PKCS#7 signature of the identity document to
|
629
|
+
:param pulumi.Input[builtins.str] pkcs7: The PKCS#7 signature of the identity document to
|
629
630
|
authenticate with, with all newline characters removed. Can be retrieved from
|
630
631
|
the EC2 metadata server.
|
631
|
-
:param pulumi.Input[str] role: The name of the AWS auth backend role to create tokens
|
632
|
+
:param pulumi.Input[builtins.str] role: The name of the AWS auth backend role to create tokens
|
632
633
|
against.
|
633
|
-
:param pulumi.Input[str] signature: The base64-encoded SHA256 RSA signature of the
|
634
|
+
:param pulumi.Input[builtins.str] signature: The base64-encoded SHA256 RSA signature of the
|
634
635
|
instance identity document to authenticate with, with all newline characters
|
635
636
|
removed. Can be retrieved from the EC2 metadata server.
|
636
637
|
"""
|
@@ -661,17 +662,17 @@ class AuthBackendLogin(pulumi.CustomResource):
|
|
661
662
|
def _internal_init(__self__,
|
662
663
|
resource_name: str,
|
663
664
|
opts: Optional[pulumi.ResourceOptions] = None,
|
664
|
-
backend: Optional[pulumi.Input[str]] = None,
|
665
|
-
iam_http_request_method: Optional[pulumi.Input[str]] = None,
|
666
|
-
iam_request_body: Optional[pulumi.Input[str]] = None,
|
667
|
-
iam_request_headers: Optional[pulumi.Input[str]] = None,
|
668
|
-
iam_request_url: Optional[pulumi.Input[str]] = None,
|
669
|
-
identity: Optional[pulumi.Input[str]] = None,
|
670
|
-
namespace: Optional[pulumi.Input[str]] = None,
|
671
|
-
nonce: Optional[pulumi.Input[str]] = None,
|
672
|
-
pkcs7: Optional[pulumi.Input[str]] = None,
|
673
|
-
role: Optional[pulumi.Input[str]] = None,
|
674
|
-
signature: Optional[pulumi.Input[str]] = None,
|
665
|
+
backend: Optional[pulumi.Input[builtins.str]] = None,
|
666
|
+
iam_http_request_method: Optional[pulumi.Input[builtins.str]] = None,
|
667
|
+
iam_request_body: Optional[pulumi.Input[builtins.str]] = None,
|
668
|
+
iam_request_headers: Optional[pulumi.Input[builtins.str]] = None,
|
669
|
+
iam_request_url: Optional[pulumi.Input[builtins.str]] = None,
|
670
|
+
identity: Optional[pulumi.Input[builtins.str]] = None,
|
671
|
+
namespace: Optional[pulumi.Input[builtins.str]] = None,
|
672
|
+
nonce: Optional[pulumi.Input[builtins.str]] = None,
|
673
|
+
pkcs7: Optional[pulumi.Input[builtins.str]] = None,
|
674
|
+
role: Optional[pulumi.Input[builtins.str]] = None,
|
675
|
+
signature: Optional[pulumi.Input[builtins.str]] = None,
|
675
676
|
__props__=None):
|
676
677
|
opts = pulumi.ResourceOptions.merge(_utilities.get_resource_opts_defaults(), opts)
|
677
678
|
if not isinstance(opts, pulumi.ResourceOptions):
|
@@ -712,25 +713,25 @@ class AuthBackendLogin(pulumi.CustomResource):
|
|
712
713
|
def get(resource_name: str,
|
713
714
|
id: pulumi.Input[str],
|
714
715
|
opts: Optional[pulumi.ResourceOptions] = None,
|
715
|
-
accessor: Optional[pulumi.Input[str]] = None,
|
716
|
-
auth_type: Optional[pulumi.Input[str]] = None,
|
717
|
-
backend: Optional[pulumi.Input[str]] = None,
|
718
|
-
client_token: Optional[pulumi.Input[str]] = None,
|
719
|
-
iam_http_request_method: Optional[pulumi.Input[str]] = None,
|
720
|
-
iam_request_body: Optional[pulumi.Input[str]] = None,
|
721
|
-
iam_request_headers: Optional[pulumi.Input[str]] = None,
|
722
|
-
iam_request_url: Optional[pulumi.Input[str]] = None,
|
723
|
-
identity: Optional[pulumi.Input[str]] = None,
|
724
|
-
lease_duration: Optional[pulumi.Input[int]] = None,
|
725
|
-
lease_start_time: Optional[pulumi.Input[str]] = None,
|
726
|
-
metadata: Optional[pulumi.Input[Mapping[str, pulumi.Input[str]]]] = None,
|
727
|
-
namespace: Optional[pulumi.Input[str]] = None,
|
728
|
-
nonce: Optional[pulumi.Input[str]] = None,
|
729
|
-
pkcs7: Optional[pulumi.Input[str]] = None,
|
730
|
-
policies: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
|
731
|
-
renewable: Optional[pulumi.Input[bool]] = None,
|
732
|
-
role: Optional[pulumi.Input[str]] = None,
|
733
|
-
signature: Optional[pulumi.Input[str]] = None) -> 'AuthBackendLogin':
|
716
|
+
accessor: Optional[pulumi.Input[builtins.str]] = None,
|
717
|
+
auth_type: Optional[pulumi.Input[builtins.str]] = None,
|
718
|
+
backend: Optional[pulumi.Input[builtins.str]] = None,
|
719
|
+
client_token: Optional[pulumi.Input[builtins.str]] = None,
|
720
|
+
iam_http_request_method: Optional[pulumi.Input[builtins.str]] = None,
|
721
|
+
iam_request_body: Optional[pulumi.Input[builtins.str]] = None,
|
722
|
+
iam_request_headers: Optional[pulumi.Input[builtins.str]] = None,
|
723
|
+
iam_request_url: Optional[pulumi.Input[builtins.str]] = None,
|
724
|
+
identity: Optional[pulumi.Input[builtins.str]] = None,
|
725
|
+
lease_duration: Optional[pulumi.Input[builtins.int]] = None,
|
726
|
+
lease_start_time: Optional[pulumi.Input[builtins.str]] = None,
|
727
|
+
metadata: Optional[pulumi.Input[Mapping[str, pulumi.Input[builtins.str]]]] = None,
|
728
|
+
namespace: Optional[pulumi.Input[builtins.str]] = None,
|
729
|
+
nonce: Optional[pulumi.Input[builtins.str]] = None,
|
730
|
+
pkcs7: Optional[pulumi.Input[builtins.str]] = None,
|
731
|
+
policies: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
|
732
|
+
renewable: Optional[pulumi.Input[builtins.bool]] = None,
|
733
|
+
role: Optional[pulumi.Input[builtins.str]] = None,
|
734
|
+
signature: Optional[pulumi.Input[builtins.str]] = None) -> 'AuthBackendLogin':
|
734
735
|
"""
|
735
736
|
Get an existing AuthBackendLogin resource's state with the given name, id, and optional extra
|
736
737
|
properties used to qualify the lookup.
|
@@ -738,41 +739,41 @@ class AuthBackendLogin(pulumi.CustomResource):
|
|
738
739
|
:param str resource_name: The unique name of the resulting resource.
|
739
740
|
:param pulumi.Input[str] id: The unique provider ID of the resource to lookup.
|
740
741
|
:param pulumi.ResourceOptions opts: Options for the resource.
|
741
|
-
:param pulumi.Input[str] accessor: The token's accessor.
|
742
|
-
:param pulumi.Input[str] auth_type: The authentication type used to generate this token.
|
743
|
-
:param pulumi.Input[str] backend: The unique name of the AWS auth backend. Defaults to
|
742
|
+
:param pulumi.Input[builtins.str] accessor: The token's accessor.
|
743
|
+
:param pulumi.Input[builtins.str] auth_type: The authentication type used to generate this token.
|
744
|
+
:param pulumi.Input[builtins.str] backend: The unique name of the AWS auth backend. Defaults to
|
744
745
|
'aws'.
|
745
|
-
:param pulumi.Input[str] client_token: The token returned by Vault.
|
746
|
-
:param pulumi.Input[str] iam_http_request_method: The HTTP method used in the signed IAM
|
746
|
+
:param pulumi.Input[builtins.str] client_token: The token returned by Vault.
|
747
|
+
:param pulumi.Input[builtins.str] iam_http_request_method: The HTTP method used in the signed IAM
|
747
748
|
request.
|
748
|
-
:param pulumi.Input[str] iam_request_body: The base64-encoded body of the signed
|
749
|
+
:param pulumi.Input[builtins.str] iam_request_body: The base64-encoded body of the signed
|
749
750
|
request.
|
750
|
-
:param pulumi.Input[str] iam_request_headers: The base64-encoded, JSON serialized
|
751
|
+
:param pulumi.Input[builtins.str] iam_request_headers: The base64-encoded, JSON serialized
|
751
752
|
representation of the GetCallerIdentity HTTP request headers.
|
752
|
-
:param pulumi.Input[str] iam_request_url: The base64-encoded HTTP URL used in the signed
|
753
|
+
:param pulumi.Input[builtins.str] iam_request_url: The base64-encoded HTTP URL used in the signed
|
753
754
|
request.
|
754
|
-
:param pulumi.Input[str] identity: The base64-encoded EC2 instance identity document to
|
755
|
+
:param pulumi.Input[builtins.str] identity: The base64-encoded EC2 instance identity document to
|
755
756
|
authenticate with. Can be retrieved from the EC2 metadata server.
|
756
|
-
:param pulumi.Input[int] lease_duration: The duration in seconds the token will be valid, relative
|
757
|
+
:param pulumi.Input[builtins.int] lease_duration: The duration in seconds the token will be valid, relative
|
757
758
|
to the time in `lease_start_time`.
|
758
|
-
:param pulumi.Input[Mapping[str, pulumi.Input[str]]] metadata: A map of information returned by the Vault server about the
|
759
|
+
:param pulumi.Input[Mapping[str, pulumi.Input[builtins.str]]] metadata: A map of information returned by the Vault server about the
|
759
760
|
authentication used to generate this token.
|
760
|
-
:param pulumi.Input[str] namespace: The namespace to provision the resource in.
|
761
|
+
:param pulumi.Input[builtins.str] namespace: The namespace to provision the resource in.
|
761
762
|
The value should not contain leading or trailing forward slashes.
|
762
763
|
The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault/index.html#namespace).
|
763
764
|
*Available only for Vault Enterprise*.
|
764
|
-
:param pulumi.Input[str] nonce: The unique nonce to be used for login requests. Can be
|
765
|
+
:param pulumi.Input[builtins.str] nonce: The unique nonce to be used for login requests. Can be
|
765
766
|
set to a user-specified value, or will contain the server-generated value
|
766
767
|
once a token is issued. EC2 instances can only acquire a single token until
|
767
768
|
the whitelist is tidied again unless they keep track of this nonce.
|
768
|
-
:param pulumi.Input[str] pkcs7: The PKCS#7 signature of the identity document to
|
769
|
+
:param pulumi.Input[builtins.str] pkcs7: The PKCS#7 signature of the identity document to
|
769
770
|
authenticate with, with all newline characters removed. Can be retrieved from
|
770
771
|
the EC2 metadata server.
|
771
|
-
:param pulumi.Input[Sequence[pulumi.Input[str]]] policies: The Vault policies assigned to this token.
|
772
|
-
:param pulumi.Input[bool] renewable: Set to true if the token can be extended through renewal.
|
773
|
-
:param pulumi.Input[str] role: The name of the AWS auth backend role to create tokens
|
772
|
+
:param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] policies: The Vault policies assigned to this token.
|
773
|
+
:param pulumi.Input[builtins.bool] renewable: Set to true if the token can be extended through renewal.
|
774
|
+
:param pulumi.Input[builtins.str] role: The name of the AWS auth backend role to create tokens
|
774
775
|
against.
|
775
|
-
:param pulumi.Input[str] signature: The base64-encoded SHA256 RSA signature of the
|
776
|
+
:param pulumi.Input[builtins.str] signature: The base64-encoded SHA256 RSA signature of the
|
776
777
|
instance identity document to authenticate with, with all newline characters
|
777
778
|
removed. Can be retrieved from the EC2 metadata server.
|
778
779
|
"""
|
@@ -803,7 +804,7 @@ class AuthBackendLogin(pulumi.CustomResource):
|
|
803
804
|
|
804
805
|
@property
|
805
806
|
@pulumi.getter
|
806
|
-
def accessor(self) -> pulumi.Output[str]:
|
807
|
+
def accessor(self) -> pulumi.Output[builtins.str]:
|
807
808
|
"""
|
808
809
|
The token's accessor.
|
809
810
|
"""
|
@@ -811,7 +812,7 @@ class AuthBackendLogin(pulumi.CustomResource):
|
|
811
812
|
|
812
813
|
@property
|
813
814
|
@pulumi.getter(name="authType")
|
814
|
-
def auth_type(self) -> pulumi.Output[str]:
|
815
|
+
def auth_type(self) -> pulumi.Output[builtins.str]:
|
815
816
|
"""
|
816
817
|
The authentication type used to generate this token.
|
817
818
|
"""
|
@@ -819,7 +820,7 @@ class AuthBackendLogin(pulumi.CustomResource):
|
|
819
820
|
|
820
821
|
@property
|
821
822
|
@pulumi.getter
|
822
|
-
def backend(self) -> pulumi.Output[Optional[str]]:
|
823
|
+
def backend(self) -> pulumi.Output[Optional[builtins.str]]:
|
823
824
|
"""
|
824
825
|
The unique name of the AWS auth backend. Defaults to
|
825
826
|
'aws'.
|
@@ -828,7 +829,7 @@ class AuthBackendLogin(pulumi.CustomResource):
|
|
828
829
|
|
829
830
|
@property
|
830
831
|
@pulumi.getter(name="clientToken")
|
831
|
-
def client_token(self) -> pulumi.Output[str]:
|
832
|
+
def client_token(self) -> pulumi.Output[builtins.str]:
|
832
833
|
"""
|
833
834
|
The token returned by Vault.
|
834
835
|
"""
|
@@ -836,7 +837,7 @@ class AuthBackendLogin(pulumi.CustomResource):
|
|
836
837
|
|
837
838
|
@property
|
838
839
|
@pulumi.getter(name="iamHttpRequestMethod")
|
839
|
-
def iam_http_request_method(self) -> pulumi.Output[Optional[str]]:
|
840
|
+
def iam_http_request_method(self) -> pulumi.Output[Optional[builtins.str]]:
|
840
841
|
"""
|
841
842
|
The HTTP method used in the signed IAM
|
842
843
|
request.
|
@@ -845,7 +846,7 @@ class AuthBackendLogin(pulumi.CustomResource):
|
|
845
846
|
|
846
847
|
@property
|
847
848
|
@pulumi.getter(name="iamRequestBody")
|
848
|
-
def iam_request_body(self) -> pulumi.Output[Optional[str]]:
|
849
|
+
def iam_request_body(self) -> pulumi.Output[Optional[builtins.str]]:
|
849
850
|
"""
|
850
851
|
The base64-encoded body of the signed
|
851
852
|
request.
|
@@ -854,7 +855,7 @@ class AuthBackendLogin(pulumi.CustomResource):
|
|
854
855
|
|
855
856
|
@property
|
856
857
|
@pulumi.getter(name="iamRequestHeaders")
|
857
|
-
def iam_request_headers(self) -> pulumi.Output[Optional[str]]:
|
858
|
+
def iam_request_headers(self) -> pulumi.Output[Optional[builtins.str]]:
|
858
859
|
"""
|
859
860
|
The base64-encoded, JSON serialized
|
860
861
|
representation of the GetCallerIdentity HTTP request headers.
|
@@ -863,7 +864,7 @@ class AuthBackendLogin(pulumi.CustomResource):
|
|
863
864
|
|
864
865
|
@property
|
865
866
|
@pulumi.getter(name="iamRequestUrl")
|
866
|
-
def iam_request_url(self) -> pulumi.Output[Optional[str]]:
|
867
|
+
def iam_request_url(self) -> pulumi.Output[Optional[builtins.str]]:
|
867
868
|
"""
|
868
869
|
The base64-encoded HTTP URL used in the signed
|
869
870
|
request.
|
@@ -872,7 +873,7 @@ class AuthBackendLogin(pulumi.CustomResource):
|
|
872
873
|
|
873
874
|
@property
|
874
875
|
@pulumi.getter
|
875
|
-
def identity(self) -> pulumi.Output[Optional[str]]:
|
876
|
+
def identity(self) -> pulumi.Output[Optional[builtins.str]]:
|
876
877
|
"""
|
877
878
|
The base64-encoded EC2 instance identity document to
|
878
879
|
authenticate with. Can be retrieved from the EC2 metadata server.
|
@@ -881,7 +882,7 @@ class AuthBackendLogin(pulumi.CustomResource):
|
|
881
882
|
|
882
883
|
@property
|
883
884
|
@pulumi.getter(name="leaseDuration")
|
884
|
-
def lease_duration(self) -> pulumi.Output[int]:
|
885
|
+
def lease_duration(self) -> pulumi.Output[builtins.int]:
|
885
886
|
"""
|
886
887
|
The duration in seconds the token will be valid, relative
|
887
888
|
to the time in `lease_start_time`.
|
@@ -890,12 +891,12 @@ class AuthBackendLogin(pulumi.CustomResource):
|
|
890
891
|
|
891
892
|
@property
|
892
893
|
@pulumi.getter(name="leaseStartTime")
|
893
|
-
def lease_start_time(self) -> pulumi.Output[str]:
|
894
|
+
def lease_start_time(self) -> pulumi.Output[builtins.str]:
|
894
895
|
return pulumi.get(self, "lease_start_time")
|
895
896
|
|
896
897
|
@property
|
897
898
|
@pulumi.getter
|
898
|
-
def metadata(self) -> pulumi.Output[Mapping[str, str]]:
|
899
|
+
def metadata(self) -> pulumi.Output[Mapping[str, builtins.str]]:
|
899
900
|
"""
|
900
901
|
A map of information returned by the Vault server about the
|
901
902
|
authentication used to generate this token.
|
@@ -904,7 +905,7 @@ class AuthBackendLogin(pulumi.CustomResource):
|
|
904
905
|
|
905
906
|
@property
|
906
907
|
@pulumi.getter
|
907
|
-
def namespace(self) -> pulumi.Output[Optional[str]]:
|
908
|
+
def namespace(self) -> pulumi.Output[Optional[builtins.str]]:
|
908
909
|
"""
|
909
910
|
The namespace to provision the resource in.
|
910
911
|
The value should not contain leading or trailing forward slashes.
|
@@ -915,7 +916,7 @@ class AuthBackendLogin(pulumi.CustomResource):
|
|
915
916
|
|
916
917
|
@property
|
917
918
|
@pulumi.getter
|
918
|
-
def nonce(self) -> pulumi.Output[str]:
|
919
|
+
def nonce(self) -> pulumi.Output[builtins.str]:
|
919
920
|
"""
|
920
921
|
The unique nonce to be used for login requests. Can be
|
921
922
|
set to a user-specified value, or will contain the server-generated value
|
@@ -926,7 +927,7 @@ class AuthBackendLogin(pulumi.CustomResource):
|
|
926
927
|
|
927
928
|
@property
|
928
929
|
@pulumi.getter
|
929
|
-
def pkcs7(self) -> pulumi.Output[Optional[str]]:
|
930
|
+
def pkcs7(self) -> pulumi.Output[Optional[builtins.str]]:
|
930
931
|
"""
|
931
932
|
The PKCS#7 signature of the identity document to
|
932
933
|
authenticate with, with all newline characters removed. Can be retrieved from
|
@@ -936,7 +937,7 @@ class AuthBackendLogin(pulumi.CustomResource):
|
|
936
937
|
|
937
938
|
@property
|
938
939
|
@pulumi.getter
|
939
|
-
def policies(self) -> pulumi.Output[Sequence[str]]:
|
940
|
+
def policies(self) -> pulumi.Output[Sequence[builtins.str]]:
|
940
941
|
"""
|
941
942
|
The Vault policies assigned to this token.
|
942
943
|
"""
|
@@ -944,7 +945,7 @@ class AuthBackendLogin(pulumi.CustomResource):
|
|
944
945
|
|
945
946
|
@property
|
946
947
|
@pulumi.getter
|
947
|
-
def renewable(self) -> pulumi.Output[bool]:
|
948
|
+
def renewable(self) -> pulumi.Output[builtins.bool]:
|
948
949
|
"""
|
949
950
|
Set to true if the token can be extended through renewal.
|
950
951
|
"""
|
@@ -952,7 +953,7 @@ class AuthBackendLogin(pulumi.CustomResource):
|
|
952
953
|
|
953
954
|
@property
|
954
955
|
@pulumi.getter
|
955
|
-
def role(self) -> pulumi.Output[str]:
|
956
|
+
def role(self) -> pulumi.Output[builtins.str]:
|
956
957
|
"""
|
957
958
|
The name of the AWS auth backend role to create tokens
|
958
959
|
against.
|
@@ -961,7 +962,7 @@ class AuthBackendLogin(pulumi.CustomResource):
|
|
961
962
|
|
962
963
|
@property
|
963
964
|
@pulumi.getter
|
964
|
-
def signature(self) -> pulumi.Output[Optional[str]]:
|
965
|
+
def signature(self) -> pulumi.Output[Optional[builtins.str]]:
|
965
966
|
"""
|
966
967
|
The base64-encoded SHA256 RSA signature of the
|
967
968
|
instance identity document to authenticate with, with all newline characters
|