pulumi-vault 6.7.0a1743490126__py3-none-any.whl → 6.7.0a1744183682__py3-none-any.whl

pulumi_vault/gcp/get_auth_backend_role.py

@@ -2,6 +2,7 @@
 # *** WARNING: this file was generated by the Pulumi Terraform Bridge (tfgen) Tool. ***
 # *** Do not edit by hand unless you're certain you know what you are doing! ***
 
+import builtins
 import copy
 import warnings
 import sys
@@ -93,12 +94,12 @@ class GetAuthBackendRoleResult:
 
     @property
     @pulumi.getter
-    def backend(self) -> Optional[str]:
+    def backend(self) -> Optional[builtins.str]:
         return pulumi.get(self, "backend")
 
     @property
     @pulumi.getter(name="boundInstanceGroups")
-    def bound_instance_groups(self) -> Sequence[str]:
+    def bound_instance_groups(self) -> Sequence[builtins.str]:
         """
         GCP regions bound to the role. Returned when `type` is `gce`.
         """
@@ -106,7 +107,7 @@ class GetAuthBackendRoleResult:
 
     @property
     @pulumi.getter(name="boundLabels")
-    def bound_labels(self) -> Sequence[str]:
+    def bound_labels(self) -> Sequence[builtins.str]:
         """
         GCP labels bound to the role. Returned when `type` is `gce`.
         """
@@ -114,7 +115,7 @@ class GetAuthBackendRoleResult:
 
     @property
     @pulumi.getter(name="boundProjects")
-    def bound_projects(self) -> Sequence[str]:
+    def bound_projects(self) -> Sequence[builtins.str]:
         """
         GCP projects bound to the role.
         """
@@ -122,7 +123,7 @@ class GetAuthBackendRoleResult:
 
     @property
     @pulumi.getter(name="boundRegions")
-    def bound_regions(self) -> Sequence[str]:
+    def bound_regions(self) -> Sequence[builtins.str]:
         """
         GCP regions bound to the role. Returned when `type` is `gce`.
         """
@@ -130,7 +131,7 @@ class GetAuthBackendRoleResult:
 
     @property
     @pulumi.getter(name="boundServiceAccounts")
-    def bound_service_accounts(self) -> Sequence[str]:
+    def bound_service_accounts(self) -> Sequence[builtins.str]:
         """
         GCP service accounts bound to the role. Returned when `type` is `iam`.
         """
@@ -138,7 +139,7 @@ class GetAuthBackendRoleResult:
 
     @property
     @pulumi.getter(name="boundZones")
-    def bound_zones(self) -> Sequence[str]:
+    def bound_zones(self) -> Sequence[builtins.str]:
         """
         GCP zones bound to the role. Returned when `type` is `gce`.
         """
@@ -146,7 +147,7 @@ class GetAuthBackendRoleResult:
 
     @property
     @pulumi.getter
-    def id(self) -> str:
+    def id(self) -> builtins.str:
         """
         The provider-assigned unique ID for this managed resource.
         """
@@ -154,12 +155,12 @@ class GetAuthBackendRoleResult:
 
     @property
     @pulumi.getter
-    def namespace(self) -> Optional[str]:
+    def namespace(self) -> Optional[builtins.str]:
         return pulumi.get(self, "namespace")
 
     @property
     @pulumi.getter(name="roleId")
-    def role_id(self) -> str:
+    def role_id(self) -> builtins.str:
         """
         The RoleID of the GCP role.
         """
@@ -167,12 +168,12 @@ class GetAuthBackendRoleResult:
 
     @property
     @pulumi.getter(name="roleName")
-    def role_name(self) -> str:
+    def role_name(self) -> builtins.str:
         return pulumi.get(self, "role_name")
 
     @property
     @pulumi.getter(name="tokenBoundCidrs")
-    def token_bound_cidrs(self) -> Optional[Sequence[str]]:
+    def token_bound_cidrs(self) -> Optional[Sequence[builtins.str]]:
         """
         List of CIDR blocks; if set, specifies blocks of IP
         addresses which can authenticate successfully, and ties the resulting token to these blocks
@@ -182,7 +183,7 @@ class GetAuthBackendRoleResult:
 
     @property
     @pulumi.getter(name="tokenExplicitMaxTtl")
-    def token_explicit_max_ttl(self) -> Optional[int]:
+    def token_explicit_max_ttl(self) -> Optional[builtins.int]:
         """
         If set, will encode an
         [explicit max TTL](https://www.vaultproject.io/docs/concepts/tokens.html#token-time-to-live-periodic-tokens-and-explicit-max-ttls)
@@ -193,7 +194,7 @@ class GetAuthBackendRoleResult:
 
     @property
     @pulumi.getter(name="tokenMaxTtl")
-    def token_max_ttl(self) -> Optional[int]:
+    def token_max_ttl(self) -> Optional[builtins.int]:
         """
         The maximum lifetime for generated tokens in number of seconds.
         Its current value will be referenced at renewal time.
@@ -202,7 +203,7 @@ class GetAuthBackendRoleResult:
 
     @property
     @pulumi.getter(name="tokenNoDefaultPolicy")
-    def token_no_default_policy(self) -> Optional[bool]:
+    def token_no_default_policy(self) -> Optional[builtins.bool]:
         """
         If set, the default policy will not be set on
         generated tokens; otherwise it will be added to the policies set in token_policies.
@@ -211,7 +212,7 @@ class GetAuthBackendRoleResult:
 
     @property
     @pulumi.getter(name="tokenNumUses")
-    def token_num_uses(self) -> Optional[int]:
+    def token_num_uses(self) -> Optional[builtins.int]:
         """
         The
         [period](https://www.vaultproject.io/docs/concepts/tokens.html#token-time-to-live-periodic-tokens-and-explicit-max-ttls),
@@ -221,7 +222,7 @@ class GetAuthBackendRoleResult:
 
     @property
     @pulumi.getter(name="tokenPeriod")
-    def token_period(self) -> Optional[int]:
+    def token_period(self) -> Optional[builtins.int]:
         """
         (Optional) If set, indicates that the
         token generated using this role should never expire. The token should be renewed within the
@@ -232,7 +233,7 @@ class GetAuthBackendRoleResult:
 
     @property
     @pulumi.getter(name="tokenPolicies")
-    def token_policies(self) -> Optional[Sequence[str]]:
+    def token_policies(self) -> Optional[Sequence[builtins.str]]:
         """
         List of policies to encode onto generated tokens. Depending
         on the auth method, this list may be supplemented by user/group/other values.
@@ -241,7 +242,7 @@ class GetAuthBackendRoleResult:
 
     @property
     @pulumi.getter(name="tokenTtl")
-    def token_ttl(self) -> Optional[int]:
+    def token_ttl(self) -> Optional[builtins.int]:
         """
         The incremental lifetime for generated tokens in number of seconds.
         Its current value will be referenced at renewal time.
@@ -250,7 +251,7 @@ class GetAuthBackendRoleResult:
 
     @property
     @pulumi.getter(name="tokenType")
-    def token_type(self) -> Optional[str]:
+    def token_type(self) -> Optional[builtins.str]:
         """
         The type of token that should be generated. Can be `service`,
         `batch`, or `default` to use the mount's tuned default (which unless changed will be
@@ -262,7 +263,7 @@ class GetAuthBackendRoleResult:
 
     @property
     @pulumi.getter
-    def type(self) -> str:
+    def type(self) -> builtins.str:
         """
         Type of GCP role. Expected values are `iam` or `gce`.
         """
@@ -298,18 +299,18 @@ class AwaitableGetAuthBackendRoleResult(GetAuthBackendRoleResult):
             type=self.type)
 
 
-def get_auth_backend_role(backend: Optional[str] = None,
-                          namespace: Optional[str] = None,
-                          role_name: Optional[str] = None,
-                          token_bound_cidrs: Optional[Sequence[str]] = None,
-                          token_explicit_max_ttl: Optional[int] = None,
-                          token_max_ttl: Optional[int] = None,
-                          token_no_default_policy: Optional[bool] = None,
-                          token_num_uses: Optional[int] = None,
-                          token_period: Optional[int] = None,
-                          token_policies: Optional[Sequence[str]] = None,
-                          token_ttl: Optional[int] = None,
-                          token_type: Optional[str] = None,
+def get_auth_backend_role(backend: Optional[builtins.str] = None,
+                          namespace: Optional[builtins.str] = None,
+                          role_name: Optional[builtins.str] = None,
+                          token_bound_cidrs: Optional[Sequence[builtins.str]] = None,
+                          token_explicit_max_ttl: Optional[builtins.int] = None,
+                          token_max_ttl: Optional[builtins.int] = None,
+                          token_no_default_policy: Optional[builtins.bool] = None,
+                          token_num_uses: Optional[builtins.int] = None,
+                          token_period: Optional[builtins.int] = None,
+                          token_policies: Optional[Sequence[builtins.str]] = None,
+                          token_ttl: Optional[builtins.int] = None,
+                          token_type: Optional[builtins.str] = None,
                           opts: Optional[pulumi.InvokeOptions] = None) -> AwaitableGetAuthBackendRoleResult:
     """
     Reads a GCP auth role from a Vault server.
@@ -326,35 +327,35 @@ def get_auth_backend_role(backend: Optional[str] = None,
     ```
 
 
-    :param str backend: The unique name for the GCP backend from which to fetch the role. Defaults to "gcp".
-    :param str namespace: The namespace of the target resource.
+    :param builtins.str backend: The unique name for the GCP backend from which to fetch the role. Defaults to "gcp".
+    :param builtins.str namespace: The namespace of the target resource.
            The value should not contain leading or trailing forward slashes.
            The `namespace` is always relative to the provider's configured namespace.
            *Available only for Vault Enterprise*.
-    :param str role_name: The name of the role to retrieve the Role ID for.
-    :param Sequence[str] token_bound_cidrs: List of CIDR blocks; if set, specifies blocks of IP
+    :param builtins.str role_name: The name of the role to retrieve the Role ID for.
+    :param Sequence[builtins.str] token_bound_cidrs: List of CIDR blocks; if set, specifies blocks of IP
            addresses which can authenticate successfully, and ties the resulting token to these blocks
            as well.
-    :param int token_explicit_max_ttl: If set, will encode an
+    :param builtins.int token_explicit_max_ttl: If set, will encode an
            [explicit max TTL](https://www.vaultproject.io/docs/concepts/tokens.html#token-time-to-live-periodic-tokens-and-explicit-max-ttls)
            onto the token in number of seconds. This is a hard cap even if `token_ttl` and
            `token_max_ttl` would otherwise allow a renewal.
-    :param int token_max_ttl: The maximum lifetime for generated tokens in number of seconds.
+    :param builtins.int token_max_ttl: The maximum lifetime for generated tokens in number of seconds.
            Its current value will be referenced at renewal time.
-    :param bool token_no_default_policy: If set, the default policy will not be set on
+    :param builtins.bool token_no_default_policy: If set, the default policy will not be set on
            generated tokens; otherwise it will be added to the policies set in token_policies.
-    :param int token_num_uses: The
+    :param builtins.int token_num_uses: The
            [period](https://www.vaultproject.io/docs/concepts/tokens.html#token-time-to-live-periodic-tokens-and-explicit-max-ttls),
            if any, in number of seconds to set on the token.
-    :param int token_period: (Optional) If set, indicates that the
+    :param builtins.int token_period: (Optional) If set, indicates that the
            token generated using this role should never expire. The token should be renewed within the
            duration specified by this value. At each renewal, the token's TTL will be set to the
            value of this field. Specified in seconds.
-    :param Sequence[str] token_policies: List of policies to encode onto generated tokens. Depending
+    :param Sequence[builtins.str] token_policies: List of policies to encode onto generated tokens. Depending
            on the auth method, this list may be supplemented by user/group/other values.
-    :param int token_ttl: The incremental lifetime for generated tokens in number of seconds.
+    :param builtins.int token_ttl: The incremental lifetime for generated tokens in number of seconds.
            Its current value will be referenced at renewal time.
-    :param str token_type: The type of token that should be generated. Can be `service`,
+    :param builtins.str token_type: The type of token that should be generated. Can be `service`,
            `batch`, or `default` to use the mount's tuned default (which unless changed will be
            `service` tokens). For token store roles, there are two additional possibilities:
            `default-service` and `default-batch` which specify the type to return unless the client
@@ -398,18 +399,18 @@ def get_auth_backend_role(backend: Optional[str] = None,
         token_ttl=pulumi.get(__ret__, 'token_ttl'),
         token_type=pulumi.get(__ret__, 'token_type'),
         type=pulumi.get(__ret__, 'type'))
-def get_auth_backend_role_output(backend: Optional[pulumi.Input[Optional[str]]] = None,
-                                 namespace: Optional[pulumi.Input[Optional[str]]] = None,
-                                 role_name: Optional[pulumi.Input[str]] = None,
-                                 token_bound_cidrs: Optional[pulumi.Input[Optional[Sequence[str]]]] = None,
-                                 token_explicit_max_ttl: Optional[pulumi.Input[Optional[int]]] = None,
-                                 token_max_ttl: Optional[pulumi.Input[Optional[int]]] = None,
-                                 token_no_default_policy: Optional[pulumi.Input[Optional[bool]]] = None,
-                                 token_num_uses: Optional[pulumi.Input[Optional[int]]] = None,
-                                 token_period: Optional[pulumi.Input[Optional[int]]] = None,
-                                 token_policies: Optional[pulumi.Input[Optional[Sequence[str]]]] = None,
-                                 token_ttl: Optional[pulumi.Input[Optional[int]]] = None,
-                                 token_type: Optional[pulumi.Input[Optional[str]]] = None,
+def get_auth_backend_role_output(backend: Optional[pulumi.Input[Optional[builtins.str]]] = None,
+                                 namespace: Optional[pulumi.Input[Optional[builtins.str]]] = None,
+                                 role_name: Optional[pulumi.Input[builtins.str]] = None,
+                                 token_bound_cidrs: Optional[pulumi.Input[Optional[Sequence[builtins.str]]]] = None,
+                                 token_explicit_max_ttl: Optional[pulumi.Input[Optional[builtins.int]]] = None,
+                                 token_max_ttl: Optional[pulumi.Input[Optional[builtins.int]]] = None,
+                                 token_no_default_policy: Optional[pulumi.Input[Optional[builtins.bool]]] = None,
+                                 token_num_uses: Optional[pulumi.Input[Optional[builtins.int]]] = None,
+                                 token_period: Optional[pulumi.Input[Optional[builtins.int]]] = None,
+                                 token_policies: Optional[pulumi.Input[Optional[Sequence[builtins.str]]]] = None,
+                                 token_ttl: Optional[pulumi.Input[Optional[builtins.int]]] = None,
+                                 token_type: Optional[pulumi.Input[Optional[builtins.str]]] = None,
                                  opts: Optional[Union[pulumi.InvokeOptions, pulumi.InvokeOutputOptions]] = None) -> pulumi.Output[GetAuthBackendRoleResult]:
     """
     Reads a GCP auth role from a Vault server.
@@ -426,35 +427,35 @@ def get_auth_backend_role_output(backend: Optional[pulumi.Input[Optional[str]]]
     ```
 
 
-    :param str backend: The unique name for the GCP backend from which to fetch the role. Defaults to "gcp".
-    :param str namespace: The namespace of the target resource.
+    :param builtins.str backend: The unique name for the GCP backend from which to fetch the role. Defaults to "gcp".
+    :param builtins.str namespace: The namespace of the target resource.
            The value should not contain leading or trailing forward slashes.
            The `namespace` is always relative to the provider's configured namespace.
            *Available only for Vault Enterprise*.
-    :param str role_name: The name of the role to retrieve the Role ID for.
-    :param Sequence[str] token_bound_cidrs: List of CIDR blocks; if set, specifies blocks of IP
+    :param builtins.str role_name: The name of the role to retrieve the Role ID for.
+    :param Sequence[builtins.str] token_bound_cidrs: List of CIDR blocks; if set, specifies blocks of IP
            addresses which can authenticate successfully, and ties the resulting token to these blocks
            as well.
-    :param int token_explicit_max_ttl: If set, will encode an
+    :param builtins.int token_explicit_max_ttl: If set, will encode an
            [explicit max TTL](https://www.vaultproject.io/docs/concepts/tokens.html#token-time-to-live-periodic-tokens-and-explicit-max-ttls)
            onto the token in number of seconds. This is a hard cap even if `token_ttl` and
            `token_max_ttl` would otherwise allow a renewal.
-    :param int token_max_ttl: The maximum lifetime for generated tokens in number of seconds.
+    :param builtins.int token_max_ttl: The maximum lifetime for generated tokens in number of seconds.
            Its current value will be referenced at renewal time.
-    :param bool token_no_default_policy: If set, the default policy will not be set on
+    :param builtins.bool token_no_default_policy: If set, the default policy will not be set on
            generated tokens; otherwise it will be added to the policies set in token_policies.
-    :param int token_num_uses: The
+    :param builtins.int token_num_uses: The
            [period](https://www.vaultproject.io/docs/concepts/tokens.html#token-time-to-live-periodic-tokens-and-explicit-max-ttls),
            if any, in number of seconds to set on the token.
-    :param int token_period: (Optional) If set, indicates that the
+    :param builtins.int token_period: (Optional) If set, indicates that the
            token generated using this role should never expire. The token should be renewed within the
            duration specified by this value. At each renewal, the token's TTL will be set to the
            value of this field. Specified in seconds.
-    :param Sequence[str] token_policies: List of policies to encode onto generated tokens. Depending
+    :param Sequence[builtins.str] token_policies: List of policies to encode onto generated tokens. Depending
            on the auth method, this list may be supplemented by user/group/other values.
-    :param int token_ttl: The incremental lifetime for generated tokens in number of seconds.
+    :param builtins.int token_ttl: The incremental lifetime for generated tokens in number of seconds.
            Its current value will be referenced at renewal time.
-    :param str token_type: The type of token that should be generated. Can be `service`,
+    :param builtins.str token_type: The type of token that should be generated. Can be `service`,
            `batch`, or `default` to use the mount's tuned default (which unless changed will be
            `service` tokens). For token store roles, there are two additional possibilities:
            `default-service` and `default-batch` which specify the type to return unless the client

pulumi_vault/gcp/outputs.py

@@ -2,6 +2,7 @@
 # *** WARNING: this file was generated by the Pulumi Terraform Bridge (tfgen) Tool. ***
 # *** Do not edit by hand unless you're certain you know what you are doing! ***
 
+import builtins
 import copy
 import warnings
 import sys
@@ -24,18 +25,18 @@ __all__ = [
 @pulumi.output_type
 class AuthBackendCustomEndpoint(dict):
     def __init__(__self__, *,
-                 api: Optional[str] = None,
-                 compute: Optional[str] = None,
-                 crm: Optional[str] = None,
-                 iam: Optional[str] = None):
+                 api: Optional[builtins.str] = None,
+                 compute: Optional[builtins.str] = None,
+                 crm: Optional[builtins.str] = None,
+                 iam: Optional[builtins.str] = None):
         """
-        :param str api: Replaces the service endpoint used in API requests to `https://www.googleapis.com`.
-        :param str compute: Replaces the service endpoint used in API requests to `https://compute.googleapis.com`.
+        :param builtins.str api: Replaces the service endpoint used in API requests to `https://www.googleapis.com`.
+        :param builtins.str compute: Replaces the service endpoint used in API requests to `https://compute.googleapis.com`.
                
                The endpoint value provided for a given key has the form of `scheme://host:port`.
                The `scheme://` and `:port` portions of the endpoint value are optional.
-        :param str crm: Replaces the service endpoint used in API requests to `https://cloudresourcemanager.googleapis.com`.
-        :param str iam: Replaces the service endpoint used in API requests to `https://iam.googleapis.com`.
+        :param builtins.str crm: Replaces the service endpoint used in API requests to `https://cloudresourcemanager.googleapis.com`.
+        :param builtins.str iam: Replaces the service endpoint used in API requests to `https://iam.googleapis.com`.
         """
         if api is not None:
             pulumi.set(__self__, "api", api)
@@ -48,7 +49,7 @@ class AuthBackendCustomEndpoint(dict):
 
     @property
     @pulumi.getter
-    def api(self) -> Optional[str]:
+    def api(self) -> Optional[builtins.str]:
         """
         Replaces the service endpoint used in API requests to `https://www.googleapis.com`.
         """
@@ -56,7 +57,7 @@ class AuthBackendCustomEndpoint(dict):
 
     @property
     @pulumi.getter
-    def compute(self) -> Optional[str]:
+    def compute(self) -> Optional[builtins.str]:
         """
         Replaces the service endpoint used in API requests to `https://compute.googleapis.com`.
 
@@ -67,7 +68,7 @@ class AuthBackendCustomEndpoint(dict):
 
     @property
     @pulumi.getter
-    def crm(self) -> Optional[str]:
+    def crm(self) -> Optional[builtins.str]:
         """
         Replaces the service endpoint used in API requests to `https://cloudresourcemanager.googleapis.com`.
         """
@@ -75,7 +76,7 @@ class AuthBackendCustomEndpoint(dict):
 
     @property
     @pulumi.getter
-    def iam(self) -> Optional[str]:
+    def iam(self) -> Optional[builtins.str]:
         """
         Replaces the service endpoint used in API requests to `https://iam.googleapis.com`.
         """
@@ -116,32 +117,32 @@ class AuthBackendTune(dict):
         return super().get(key, default)
 
     def __init__(__self__, *,
-                 allowed_response_headers: Optional[Sequence[str]] = None,
-                 audit_non_hmac_request_keys: Optional[Sequence[str]] = None,
-                 audit_non_hmac_response_keys: Optional[Sequence[str]] = None,
-                 default_lease_ttl: Optional[str] = None,
-                 listing_visibility: Optional[str] = None,
-                 max_lease_ttl: Optional[str] = None,
-                 passthrough_request_headers: Optional[Sequence[str]] = None,
-                 token_type: Optional[str] = None):
-        """
-        :param Sequence[str] allowed_response_headers: List of headers to whitelist and allowing
+                 allowed_response_headers: Optional[Sequence[builtins.str]] = None,
+                 audit_non_hmac_request_keys: Optional[Sequence[builtins.str]] = None,
+                 audit_non_hmac_response_keys: Optional[Sequence[builtins.str]] = None,
+                 default_lease_ttl: Optional[builtins.str] = None,
+                 listing_visibility: Optional[builtins.str] = None,
+                 max_lease_ttl: Optional[builtins.str] = None,
+                 passthrough_request_headers: Optional[Sequence[builtins.str]] = None,
+                 token_type: Optional[builtins.str] = None):
+        """
+        :param Sequence[builtins.str] allowed_response_headers: List of headers to whitelist and allowing
                a plugin to include them in the response.
-        :param Sequence[str] audit_non_hmac_request_keys: Specifies the list of keys that will
+        :param Sequence[builtins.str] audit_non_hmac_request_keys: Specifies the list of keys that will
                not be HMAC'd by audit devices in the request data object.
-        :param Sequence[str] audit_non_hmac_response_keys: Specifies the list of keys that will
+        :param Sequence[builtins.str] audit_non_hmac_response_keys: Specifies the list of keys that will
                not be HMAC'd by audit devices in the response data object.
-        :param str default_lease_ttl: Specifies the default time-to-live.
+        :param builtins.str default_lease_ttl: Specifies the default time-to-live.
                If set, this overrides the global default.
                Must be a valid [duration string](https://golang.org/pkg/time/#ParseDuration)
-        :param str listing_visibility: Specifies whether to show this mount in
+        :param builtins.str listing_visibility: Specifies whether to show this mount in
                the UI-specific listing endpoint. Valid values are "unauth" or "hidden".
-        :param str max_lease_ttl: Specifies the maximum time-to-live.
+        :param builtins.str max_lease_ttl: Specifies the maximum time-to-live.
                If set, this overrides the global default.
                Must be a valid [duration string](https://golang.org/pkg/time/#ParseDuration)
-        :param Sequence[str] passthrough_request_headers: List of headers to whitelist and
+        :param Sequence[builtins.str] passthrough_request_headers: List of headers to whitelist and
                pass from the request to the backend.
-        :param str token_type: Specifies the type of tokens that should be returned by
+        :param builtins.str token_type: Specifies the type of tokens that should be returned by
                the mount. Valid values are "default-service", "default-batch", "service", "batch".
                
                
@@ -166,7 +167,7 @@ class AuthBackendTune(dict):
 
     @property
     @pulumi.getter(name="allowedResponseHeaders")
-    def allowed_response_headers(self) -> Optional[Sequence[str]]:
+    def allowed_response_headers(self) -> Optional[Sequence[builtins.str]]:
         """
         List of headers to whitelist and allowing
         a plugin to include them in the response.
@@ -175,7 +176,7 @@ class AuthBackendTune(dict):
 
     @property
     @pulumi.getter(name="auditNonHmacRequestKeys")
-    def audit_non_hmac_request_keys(self) -> Optional[Sequence[str]]:
+    def audit_non_hmac_request_keys(self) -> Optional[Sequence[builtins.str]]:
         """
         Specifies the list of keys that will
         not be HMAC'd by audit devices in the request data object.
@@ -184,7 +185,7 @@ class AuthBackendTune(dict):
 
     @property
     @pulumi.getter(name="auditNonHmacResponseKeys")
-    def audit_non_hmac_response_keys(self) -> Optional[Sequence[str]]:
+    def audit_non_hmac_response_keys(self) -> Optional[Sequence[builtins.str]]:
         """
         Specifies the list of keys that will
         not be HMAC'd by audit devices in the response data object.
@@ -193,7 +194,7 @@ class AuthBackendTune(dict):
 
     @property
     @pulumi.getter(name="defaultLeaseTtl")
-    def default_lease_ttl(self) -> Optional[str]:
+    def default_lease_ttl(self) -> Optional[builtins.str]:
         """
         Specifies the default time-to-live.
         If set, this overrides the global default.
@@ -203,7 +204,7 @@ class AuthBackendTune(dict):
 
     @property
     @pulumi.getter(name="listingVisibility")
-    def listing_visibility(self) -> Optional[str]:
+    def listing_visibility(self) -> Optional[builtins.str]:
         """
         Specifies whether to show this mount in
         the UI-specific listing endpoint. Valid values are "unauth" or "hidden".
@@ -212,7 +213,7 @@ class AuthBackendTune(dict):
 
     @property
     @pulumi.getter(name="maxLeaseTtl")
-    def max_lease_ttl(self) -> Optional[str]:
+    def max_lease_ttl(self) -> Optional[builtins.str]:
         """
         Specifies the maximum time-to-live.
         If set, this overrides the global default.
@@ -222,7 +223,7 @@ class AuthBackendTune(dict):
 
     @property
     @pulumi.getter(name="passthroughRequestHeaders")
-    def passthrough_request_headers(self) -> Optional[Sequence[str]]:
+    def passthrough_request_headers(self) -> Optional[Sequence[builtins.str]]:
         """
         List of headers to whitelist and
         pass from the request to the backend.
@@ -231,7 +232,7 @@ class AuthBackendTune(dict):
 
     @property
     @pulumi.getter(name="tokenType")
-    def token_type(self) -> Optional[str]:
+    def token_type(self) -> Optional[builtins.str]:
         """
         Specifies the type of tokens that should be returned by
         the mount. Valid values are "default-service", "default-batch", "service", "batch".
@@ -245,18 +246,18 @@ class AuthBackendTune(dict):
 @pulumi.output_type
 class SecretRolesetBinding(dict):
     def __init__(__self__, *,
-                 resource: str,
-                 roles: Sequence[str]):
+                 resource: builtins.str,
+                 roles: Sequence[builtins.str]):
         """
-        :param str resource: Resource or resource path for which IAM policy information will be bound. The resource path may be specified in a few different [formats](https://www.vaultproject.io/docs/secrets/gcp/index.html#roleset-bindings).
-        :param Sequence[str] roles: List of [GCP IAM roles](https://cloud.google.com/iam/docs/understanding-roles) for the resource.
+        :param builtins.str resource: Resource or resource path for which IAM policy information will be bound. The resource path may be specified in a few different [formats](https://www.vaultproject.io/docs/secrets/gcp/index.html#roleset-bindings).
+        :param Sequence[builtins.str] roles: List of [GCP IAM roles](https://cloud.google.com/iam/docs/understanding-roles) for the resource.
         """
         pulumi.set(__self__, "resource", resource)
         pulumi.set(__self__, "roles", roles)
 
     @property
     @pulumi.getter
-    def resource(self) -> str:
+    def resource(self) -> builtins.str:
         """
         Resource or resource path for which IAM policy information will be bound. The resource path may be specified in a few different [formats](https://www.vaultproject.io/docs/secrets/gcp/index.html#roleset-bindings).
         """
@@ -264,7 +265,7 @@ class SecretRolesetBinding(dict):
 
     @property
     @pulumi.getter
-    def roles(self) -> Sequence[str]:
+    def roles(self) -> Sequence[builtins.str]:
         """
         List of [GCP IAM roles](https://cloud.google.com/iam/docs/understanding-roles) for the resource.
         """
@@ -274,18 +275,18 @@ class SecretRolesetBinding(dict):
 @pulumi.output_type
 class SecretStaticAccountBinding(dict):
     def __init__(__self__, *,
-                 resource: str,
-                 roles: Sequence[str]):
+                 resource: builtins.str,
+                 roles: Sequence[builtins.str]):
         """
-        :param str resource: Resource or resource path for which IAM policy information will be bound. The resource path may be specified in a few different [formats](https://www.vaultproject.io/docs/secrets/gcp/index.html#bindings).
-        :param Sequence[str] roles: List of [GCP IAM roles](https://cloud.google.com/iam/docs/understanding-roles) for the resource.
+        :param builtins.str resource: Resource or resource path for which IAM policy information will be bound. The resource path may be specified in a few different [formats](https://www.vaultproject.io/docs/secrets/gcp/index.html#bindings).
+        :param Sequence[builtins.str] roles: List of [GCP IAM roles](https://cloud.google.com/iam/docs/understanding-roles) for the resource.
         """
         pulumi.set(__self__, "resource", resource)
         pulumi.set(__self__, "roles", roles)
 
     @property
     @pulumi.getter
-    def resource(self) -> str:
+    def resource(self) -> builtins.str:
         """
         Resource or resource path for which IAM policy information will be bound. The resource path may be specified in a few different [formats](https://www.vaultproject.io/docs/secrets/gcp/index.html#bindings).
         """
@@ -293,7 +294,7 @@ class SecretStaticAccountBinding(dict):
 
     @property
     @pulumi.getter
-    def roles(self) -> Sequence[str]:
+    def roles(self) -> Sequence[builtins.str]:
         """
         List of [GCP IAM roles](https://cloud.google.com/iam/docs/understanding-roles) for the resource.
         """