pulumi-vault 6.7.0a1743576047__py3-none-any.whl → 6.7.0a1744183682__py3-none-any.whl
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- pulumi_vault/__init__.py +1 -0
- pulumi_vault/_inputs.py +554 -553
- pulumi_vault/ad/__init__.py +1 -0
- pulumi_vault/ad/get_access_credentials.py +20 -19
- pulumi_vault/ad/secret_backend.py +477 -476
- pulumi_vault/ad/secret_library.py +99 -98
- pulumi_vault/ad/secret_role.py +85 -84
- pulumi_vault/alicloud/__init__.py +1 -0
- pulumi_vault/alicloud/auth_backend_role.py +183 -182
- pulumi_vault/approle/__init__.py +1 -0
- pulumi_vault/approle/auth_backend_login.py +106 -105
- pulumi_vault/approle/auth_backend_role.py +239 -238
- pulumi_vault/approle/auth_backend_role_secret_id.py +162 -161
- pulumi_vault/approle/get_auth_backend_role_id.py +18 -17
- pulumi_vault/audit.py +85 -84
- pulumi_vault/audit_request_header.py +43 -42
- pulumi_vault/auth_backend.py +106 -105
- pulumi_vault/aws/__init__.py +1 -0
- pulumi_vault/aws/auth_backend_cert.py +71 -70
- pulumi_vault/aws/auth_backend_client.py +253 -252
- pulumi_vault/aws/auth_backend_config_identity.py +85 -84
- pulumi_vault/aws/auth_backend_identity_whitelist.py +57 -56
- pulumi_vault/aws/auth_backend_login.py +209 -208
- pulumi_vault/aws/auth_backend_role.py +400 -399
- pulumi_vault/aws/auth_backend_role_tag.py +127 -126
- pulumi_vault/aws/auth_backend_roletag_blacklist.py +57 -56
- pulumi_vault/aws/auth_backend_sts_role.py +71 -70
- pulumi_vault/aws/get_access_credentials.py +44 -43
- pulumi_vault/aws/get_static_access_credentials.py +13 -12
- pulumi_vault/aws/secret_backend.py +337 -336
- pulumi_vault/aws/secret_backend_role.py +211 -210
- pulumi_vault/aws/secret_backend_static_role.py +113 -112
- pulumi_vault/azure/__init__.py +1 -0
- pulumi_vault/azure/_inputs.py +21 -20
- pulumi_vault/azure/auth_backend_config.py +183 -182
- pulumi_vault/azure/auth_backend_role.py +253 -252
- pulumi_vault/azure/backend.py +239 -238
- pulumi_vault/azure/backend_role.py +141 -140
- pulumi_vault/azure/get_access_credentials.py +58 -57
- pulumi_vault/azure/outputs.py +11 -10
- pulumi_vault/cert_auth_backend_role.py +365 -364
- pulumi_vault/config/__init__.py +1 -0
- pulumi_vault/config/__init__.pyi +1 -0
- pulumi_vault/config/_inputs.py +11 -10
- pulumi_vault/config/outputs.py +287 -286
- pulumi_vault/config/ui_custom_message.py +113 -112
- pulumi_vault/config/vars.py +1 -0
- pulumi_vault/consul/__init__.py +1 -0
- pulumi_vault/consul/secret_backend.py +197 -196
- pulumi_vault/consul/secret_backend_role.py +183 -182
- pulumi_vault/database/__init__.py +1 -0
- pulumi_vault/database/_inputs.py +2525 -2524
- pulumi_vault/database/outputs.py +1529 -1528
- pulumi_vault/database/secret_backend_connection.py +169 -168
- pulumi_vault/database/secret_backend_role.py +169 -168
- pulumi_vault/database/secret_backend_static_role.py +179 -178
- pulumi_vault/database/secrets_mount.py +267 -266
- pulumi_vault/egp_policy.py +71 -70
- pulumi_vault/gcp/__init__.py +1 -0
- pulumi_vault/gcp/_inputs.py +82 -81
- pulumi_vault/gcp/auth_backend.py +260 -259
- pulumi_vault/gcp/auth_backend_role.py +281 -280
- pulumi_vault/gcp/get_auth_backend_role.py +70 -69
- pulumi_vault/gcp/outputs.py +50 -49
- pulumi_vault/gcp/secret_backend.py +232 -231
- pulumi_vault/gcp/secret_impersonated_account.py +92 -91
- pulumi_vault/gcp/secret_roleset.py +92 -91
- pulumi_vault/gcp/secret_static_account.py +92 -91
- pulumi_vault/generic/__init__.py +1 -0
- pulumi_vault/generic/endpoint.py +113 -112
- pulumi_vault/generic/get_secret.py +28 -27
- pulumi_vault/generic/secret.py +78 -77
- pulumi_vault/get_auth_backend.py +19 -18
- pulumi_vault/get_auth_backends.py +14 -13
- pulumi_vault/get_namespace.py +15 -14
- pulumi_vault/get_namespaces.py +8 -7
- pulumi_vault/get_nomad_access_token.py +19 -18
- pulumi_vault/get_policy_document.py +6 -5
- pulumi_vault/get_raft_autopilot_state.py +18 -17
- pulumi_vault/github/__init__.py +1 -0
- pulumi_vault/github/_inputs.py +42 -41
- pulumi_vault/github/auth_backend.py +232 -231
- pulumi_vault/github/outputs.py +26 -25
- pulumi_vault/github/team.py +57 -56
- pulumi_vault/github/user.py +57 -56
- pulumi_vault/identity/__init__.py +1 -0
- pulumi_vault/identity/entity.py +85 -84
- pulumi_vault/identity/entity_alias.py +71 -70
- pulumi_vault/identity/entity_policies.py +64 -63
- pulumi_vault/identity/get_entity.py +43 -42
- pulumi_vault/identity/get_group.py +50 -49
- pulumi_vault/identity/get_oidc_client_creds.py +14 -13
- pulumi_vault/identity/get_oidc_openid_config.py +24 -23
- pulumi_vault/identity/get_oidc_public_keys.py +13 -12
- pulumi_vault/identity/group.py +141 -140
- pulumi_vault/identity/group_alias.py +57 -56
- pulumi_vault/identity/group_member_entity_ids.py +57 -56
- pulumi_vault/identity/group_member_group_ids.py +57 -56
- pulumi_vault/identity/group_policies.py +64 -63
- pulumi_vault/identity/mfa_duo.py +148 -147
- pulumi_vault/identity/mfa_login_enforcement.py +120 -119
- pulumi_vault/identity/mfa_okta.py +134 -133
- pulumi_vault/identity/mfa_pingid.py +127 -126
- pulumi_vault/identity/mfa_totp.py +176 -175
- pulumi_vault/identity/oidc.py +29 -28
- pulumi_vault/identity/oidc_assignment.py +57 -56
- pulumi_vault/identity/oidc_client.py +127 -126
- pulumi_vault/identity/oidc_key.py +85 -84
- pulumi_vault/identity/oidc_key_allowed_client_id.py +43 -42
- pulumi_vault/identity/oidc_provider.py +92 -91
- pulumi_vault/identity/oidc_role.py +85 -84
- pulumi_vault/identity/oidc_scope.py +57 -56
- pulumi_vault/identity/outputs.py +32 -31
- pulumi_vault/jwt/__init__.py +1 -0
- pulumi_vault/jwt/_inputs.py +42 -41
- pulumi_vault/jwt/auth_backend.py +288 -287
- pulumi_vault/jwt/auth_backend_role.py +407 -406
- pulumi_vault/jwt/outputs.py +26 -25
- pulumi_vault/kmip/__init__.py +1 -0
- pulumi_vault/kmip/secret_backend.py +183 -182
- pulumi_vault/kmip/secret_role.py +295 -294
- pulumi_vault/kmip/secret_scope.py +57 -56
- pulumi_vault/kubernetes/__init__.py +1 -0
- pulumi_vault/kubernetes/auth_backend_config.py +141 -140
- pulumi_vault/kubernetes/auth_backend_role.py +225 -224
- pulumi_vault/kubernetes/get_auth_backend_config.py +47 -46
- pulumi_vault/kubernetes/get_auth_backend_role.py +70 -69
- pulumi_vault/kubernetes/get_service_account_token.py +38 -37
- pulumi_vault/kubernetes/secret_backend.py +316 -315
- pulumi_vault/kubernetes/secret_backend_role.py +197 -196
- pulumi_vault/kv/__init__.py +1 -0
- pulumi_vault/kv/_inputs.py +21 -20
- pulumi_vault/kv/get_secret.py +17 -16
- pulumi_vault/kv/get_secret_subkeys_v2.py +30 -29
- pulumi_vault/kv/get_secret_v2.py +29 -28
- pulumi_vault/kv/get_secrets_list.py +13 -12
- pulumi_vault/kv/get_secrets_list_v2.py +19 -18
- pulumi_vault/kv/outputs.py +13 -12
- pulumi_vault/kv/secret.py +50 -49
- pulumi_vault/kv/secret_backend_v2.py +71 -70
- pulumi_vault/kv/secret_v2.py +134 -133
- pulumi_vault/ldap/__init__.py +1 -0
- pulumi_vault/ldap/auth_backend.py +588 -587
- pulumi_vault/ldap/auth_backend_group.py +57 -56
- pulumi_vault/ldap/auth_backend_user.py +71 -70
- pulumi_vault/ldap/get_dynamic_credentials.py +17 -16
- pulumi_vault/ldap/get_static_credentials.py +18 -17
- pulumi_vault/ldap/secret_backend.py +554 -553
- pulumi_vault/ldap/secret_backend_dynamic_role.py +127 -126
- pulumi_vault/ldap/secret_backend_library_set.py +99 -98
- pulumi_vault/ldap/secret_backend_static_role.py +99 -98
- pulumi_vault/managed/__init__.py +1 -0
- pulumi_vault/managed/_inputs.py +229 -228
- pulumi_vault/managed/keys.py +15 -14
- pulumi_vault/managed/outputs.py +139 -138
- pulumi_vault/mfa_duo.py +113 -112
- pulumi_vault/mfa_okta.py +113 -112
- pulumi_vault/mfa_pingid.py +120 -119
- pulumi_vault/mfa_totp.py +127 -126
- pulumi_vault/mongodbatlas/__init__.py +1 -0
- pulumi_vault/mongodbatlas/secret_backend.py +64 -63
- pulumi_vault/mongodbatlas/secret_role.py +155 -154
- pulumi_vault/mount.py +274 -273
- pulumi_vault/namespace.py +64 -63
- pulumi_vault/nomad_secret_backend.py +211 -210
- pulumi_vault/nomad_secret_role.py +85 -84
- pulumi_vault/okta/__init__.py +1 -0
- pulumi_vault/okta/_inputs.py +26 -25
- pulumi_vault/okta/auth_backend.py +274 -273
- pulumi_vault/okta/auth_backend_group.py +57 -56
- pulumi_vault/okta/auth_backend_user.py +71 -70
- pulumi_vault/okta/outputs.py +16 -15
- pulumi_vault/outputs.py +56 -55
- pulumi_vault/password_policy.py +43 -42
- pulumi_vault/pkisecret/__init__.py +1 -0
- pulumi_vault/pkisecret/_inputs.py +31 -30
- pulumi_vault/pkisecret/backend_acme_eab.py +92 -91
- pulumi_vault/pkisecret/backend_config_acme.py +141 -140
- pulumi_vault/pkisecret/backend_config_auto_tidy.py +323 -322
- pulumi_vault/pkisecret/backend_config_cluster.py +57 -56
- pulumi_vault/pkisecret/backend_config_cmpv2.py +106 -105
- pulumi_vault/pkisecret/backend_config_est.py +120 -119
- pulumi_vault/pkisecret/get_backend_cert_metadata.py +22 -21
- pulumi_vault/pkisecret/get_backend_config_cmpv2.py +22 -21
- pulumi_vault/pkisecret/get_backend_config_est.py +19 -18
- pulumi_vault/pkisecret/get_backend_issuer.py +45 -44
- pulumi_vault/pkisecret/get_backend_issuers.py +15 -14
- pulumi_vault/pkisecret/get_backend_key.py +20 -19
- pulumi_vault/pkisecret/get_backend_keys.py +15 -14
- pulumi_vault/pkisecret/outputs.py +28 -27
- pulumi_vault/pkisecret/secret_backend_cert.py +337 -336
- pulumi_vault/pkisecret/secret_backend_config_ca.py +43 -42
- pulumi_vault/pkisecret/secret_backend_config_issuers.py +57 -56
- pulumi_vault/pkisecret/secret_backend_config_urls.py +85 -84
- pulumi_vault/pkisecret/secret_backend_crl_config.py +197 -196
- pulumi_vault/pkisecret/secret_backend_intermediate_cert_request.py +421 -420
- pulumi_vault/pkisecret/secret_backend_intermediate_set_signed.py +57 -56
- pulumi_vault/pkisecret/secret_backend_issuer.py +232 -231
- pulumi_vault/pkisecret/secret_backend_key.py +120 -119
- pulumi_vault/pkisecret/secret_backend_role.py +715 -714
- pulumi_vault/pkisecret/secret_backend_root_cert.py +554 -553
- pulumi_vault/pkisecret/secret_backend_root_sign_intermediate.py +526 -525
- pulumi_vault/pkisecret/secret_backend_sign.py +281 -280
- pulumi_vault/plugin.py +127 -126
- pulumi_vault/plugin_pinned_version.py +43 -42
- pulumi_vault/policy.py +43 -42
- pulumi_vault/provider.py +120 -119
- pulumi_vault/pulumi-plugin.json +1 -1
- pulumi_vault/quota_lease_count.py +85 -84
- pulumi_vault/quota_rate_limit.py +113 -112
- pulumi_vault/rabbitmq/__init__.py +1 -0
- pulumi_vault/rabbitmq/_inputs.py +41 -40
- pulumi_vault/rabbitmq/outputs.py +25 -24
- pulumi_vault/rabbitmq/secret_backend.py +169 -168
- pulumi_vault/rabbitmq/secret_backend_role.py +57 -56
- pulumi_vault/raft_autopilot.py +113 -112
- pulumi_vault/raft_snapshot_agent_config.py +393 -392
- pulumi_vault/rgp_policy.py +57 -56
- pulumi_vault/saml/__init__.py +1 -0
- pulumi_vault/saml/auth_backend.py +155 -154
- pulumi_vault/saml/auth_backend_role.py +239 -238
- pulumi_vault/secrets/__init__.py +1 -0
- pulumi_vault/secrets/_inputs.py +16 -15
- pulumi_vault/secrets/outputs.py +10 -9
- pulumi_vault/secrets/sync_association.py +71 -70
- pulumi_vault/secrets/sync_aws_destination.py +148 -147
- pulumi_vault/secrets/sync_azure_destination.py +148 -147
- pulumi_vault/secrets/sync_config.py +43 -42
- pulumi_vault/secrets/sync_gcp_destination.py +106 -105
- pulumi_vault/secrets/sync_gh_destination.py +134 -133
- pulumi_vault/secrets/sync_github_apps.py +64 -63
- pulumi_vault/secrets/sync_vercel_destination.py +120 -119
- pulumi_vault/ssh/__init__.py +1 -0
- pulumi_vault/ssh/_inputs.py +11 -10
- pulumi_vault/ssh/get_secret_backend_sign.py +52 -51
- pulumi_vault/ssh/outputs.py +7 -6
- pulumi_vault/ssh/secret_backend_ca.py +99 -98
- pulumi_vault/ssh/secret_backend_role.py +365 -364
- pulumi_vault/terraformcloud/__init__.py +1 -0
- pulumi_vault/terraformcloud/secret_backend.py +111 -110
- pulumi_vault/terraformcloud/secret_creds.py +74 -73
- pulumi_vault/terraformcloud/secret_role.py +93 -92
- pulumi_vault/token.py +246 -245
- pulumi_vault/tokenauth/__init__.py +1 -0
- pulumi_vault/tokenauth/auth_backend_role.py +267 -266
- pulumi_vault/transform/__init__.py +1 -0
- pulumi_vault/transform/alphabet.py +57 -56
- pulumi_vault/transform/get_decode.py +47 -46
- pulumi_vault/transform/get_encode.py +47 -46
- pulumi_vault/transform/role.py +57 -56
- pulumi_vault/transform/template.py +113 -112
- pulumi_vault/transform/transformation.py +141 -140
- pulumi_vault/transit/__init__.py +1 -0
- pulumi_vault/transit/get_decrypt.py +18 -17
- pulumi_vault/transit/get_encrypt.py +21 -20
- pulumi_vault/transit/get_sign.py +54 -53
- pulumi_vault/transit/get_verify.py +60 -59
- pulumi_vault/transit/secret_backend_key.py +274 -273
- pulumi_vault/transit/secret_cache_config.py +43 -42
- {pulumi_vault-6.7.0a1743576047.dist-info → pulumi_vault-6.7.0a1744183682.dist-info}/METADATA +1 -1
- pulumi_vault-6.7.0a1744183682.dist-info/RECORD +265 -0
- pulumi_vault-6.7.0a1743576047.dist-info/RECORD +0 -265
- {pulumi_vault-6.7.0a1743576047.dist-info → pulumi_vault-6.7.0a1744183682.dist-info}/WHEEL +0 -0
- {pulumi_vault-6.7.0a1743576047.dist-info → pulumi_vault-6.7.0a1744183682.dist-info}/top_level.txt +0 -0
@@ -2,6 +2,7 @@
|
|
2
2
|
# *** WARNING: this file was generated by the Pulumi Terraform Bridge (tfgen) Tool. ***
|
3
3
|
# *** Do not edit by hand unless you're certain you know what you are doing! ***
|
4
4
|
|
5
|
+
import builtins
|
5
6
|
import copy
|
6
7
|
import warnings
|
7
8
|
import sys
|
@@ -19,91 +20,91 @@ __all__ = ['SecretBackendRootCertArgs', 'SecretBackendRootCert']
|
|
19
20
|
@pulumi.input_type
|
20
21
|
class SecretBackendRootCertArgs:
|
21
22
|
def __init__(__self__, *,
|
22
|
-
backend: pulumi.Input[str],
|
23
|
-
common_name: pulumi.Input[str],
|
24
|
-
type: pulumi.Input[str],
|
25
|
-
alt_names: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
|
26
|
-
country: Optional[pulumi.Input[str]] = None,
|
27
|
-
exclude_cn_from_sans: Optional[pulumi.Input[bool]] = None,
|
28
|
-
excluded_dns_domains: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
|
29
|
-
excluded_email_addresses: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
|
30
|
-
excluded_ip_ranges: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
|
31
|
-
excluded_uri_domains: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
|
32
|
-
format: Optional[pulumi.Input[str]] = None,
|
33
|
-
ip_sans: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
|
34
|
-
issuer_name: Optional[pulumi.Input[str]] = None,
|
35
|
-
key_bits: Optional[pulumi.Input[int]] = None,
|
36
|
-
key_name: Optional[pulumi.Input[str]] = None,
|
37
|
-
key_ref: Optional[pulumi.Input[str]] = None,
|
38
|
-
key_type: Optional[pulumi.Input[str]] = None,
|
39
|
-
locality: Optional[pulumi.Input[str]] = None,
|
40
|
-
managed_key_id: Optional[pulumi.Input[str]] = None,
|
41
|
-
managed_key_name: Optional[pulumi.Input[str]] = None,
|
42
|
-
max_path_length: Optional[pulumi.Input[int]] = None,
|
43
|
-
namespace: Optional[pulumi.Input[str]] = None,
|
44
|
-
not_after: Optional[pulumi.Input[str]] = None,
|
45
|
-
organization: Optional[pulumi.Input[str]] = None,
|
46
|
-
other_sans: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
|
47
|
-
ou: Optional[pulumi.Input[str]] = None,
|
48
|
-
permitted_dns_domains: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
|
49
|
-
permitted_email_addresses: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
|
50
|
-
permitted_ip_ranges: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
|
51
|
-
permitted_uri_domains: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
|
52
|
-
postal_code: Optional[pulumi.Input[str]] = None,
|
53
|
-
private_key_format: Optional[pulumi.Input[str]] = None,
|
54
|
-
province: Optional[pulumi.Input[str]] = None,
|
55
|
-
signature_bits: Optional[pulumi.Input[int]] = None,
|
56
|
-
street_address: Optional[pulumi.Input[str]] = None,
|
57
|
-
ttl: Optional[pulumi.Input[str]] = None,
|
58
|
-
uri_sans: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None):
|
23
|
+
backend: pulumi.Input[builtins.str],
|
24
|
+
common_name: pulumi.Input[builtins.str],
|
25
|
+
type: pulumi.Input[builtins.str],
|
26
|
+
alt_names: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
|
27
|
+
country: Optional[pulumi.Input[builtins.str]] = None,
|
28
|
+
exclude_cn_from_sans: Optional[pulumi.Input[builtins.bool]] = None,
|
29
|
+
excluded_dns_domains: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
|
30
|
+
excluded_email_addresses: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
|
31
|
+
excluded_ip_ranges: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
|
32
|
+
excluded_uri_domains: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
|
33
|
+
format: Optional[pulumi.Input[builtins.str]] = None,
|
34
|
+
ip_sans: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
|
35
|
+
issuer_name: Optional[pulumi.Input[builtins.str]] = None,
|
36
|
+
key_bits: Optional[pulumi.Input[builtins.int]] = None,
|
37
|
+
key_name: Optional[pulumi.Input[builtins.str]] = None,
|
38
|
+
key_ref: Optional[pulumi.Input[builtins.str]] = None,
|
39
|
+
key_type: Optional[pulumi.Input[builtins.str]] = None,
|
40
|
+
locality: Optional[pulumi.Input[builtins.str]] = None,
|
41
|
+
managed_key_id: Optional[pulumi.Input[builtins.str]] = None,
|
42
|
+
managed_key_name: Optional[pulumi.Input[builtins.str]] = None,
|
43
|
+
max_path_length: Optional[pulumi.Input[builtins.int]] = None,
|
44
|
+
namespace: Optional[pulumi.Input[builtins.str]] = None,
|
45
|
+
not_after: Optional[pulumi.Input[builtins.str]] = None,
|
46
|
+
organization: Optional[pulumi.Input[builtins.str]] = None,
|
47
|
+
other_sans: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
|
48
|
+
ou: Optional[pulumi.Input[builtins.str]] = None,
|
49
|
+
permitted_dns_domains: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
|
50
|
+
permitted_email_addresses: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
|
51
|
+
permitted_ip_ranges: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
|
52
|
+
permitted_uri_domains: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
|
53
|
+
postal_code: Optional[pulumi.Input[builtins.str]] = None,
|
54
|
+
private_key_format: Optional[pulumi.Input[builtins.str]] = None,
|
55
|
+
province: Optional[pulumi.Input[builtins.str]] = None,
|
56
|
+
signature_bits: Optional[pulumi.Input[builtins.int]] = None,
|
57
|
+
street_address: Optional[pulumi.Input[builtins.str]] = None,
|
58
|
+
ttl: Optional[pulumi.Input[builtins.str]] = None,
|
59
|
+
uri_sans: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None):
|
59
60
|
"""
|
60
61
|
The set of arguments for constructing a SecretBackendRootCert resource.
|
61
|
-
:param pulumi.Input[str] backend: The PKI secret backend the resource belongs to.
|
62
|
-
:param pulumi.Input[str] common_name: CN of intermediate to create
|
63
|
-
:param pulumi.Input[str] type: Type of intermediate to create. Must be either \\"exported\\", \\"internal\\"
|
62
|
+
:param pulumi.Input[builtins.str] backend: The PKI secret backend the resource belongs to.
|
63
|
+
:param pulumi.Input[builtins.str] common_name: CN of intermediate to create
|
64
|
+
:param pulumi.Input[builtins.str] type: Type of intermediate to create. Must be either \\"exported\\", \\"internal\\"
|
64
65
|
or \\"kms\\"
|
65
|
-
:param pulumi.Input[Sequence[pulumi.Input[str]]] alt_names: List of alternative names
|
66
|
-
:param pulumi.Input[str] country: The country
|
67
|
-
:param pulumi.Input[bool] exclude_cn_from_sans: Flag to exclude CN from SANs
|
68
|
-
:param pulumi.Input[Sequence[pulumi.Input[str]]] excluded_dns_domains: List of domains for which certificates are not allowed to be issued. Requires Vault version 1.19+.
|
69
|
-
:param pulumi.Input[Sequence[pulumi.Input[str]]] excluded_email_addresses: List of email addresses for which certificates are not allowed to be issued. Requires Vault version 1.19+.
|
70
|
-
:param pulumi.Input[Sequence[pulumi.Input[str]]] excluded_ip_ranges: List of IP ranges for which certificates are not allowed to be issued. Requires Vault version 1.19+.
|
71
|
-
:param pulumi.Input[Sequence[pulumi.Input[str]]] excluded_uri_domains: List of URI domains for which certificates are not allowed to be issued. Requires Vault version 1.19+.
|
72
|
-
:param pulumi.Input[str] format: The format of data
|
73
|
-
:param pulumi.Input[Sequence[pulumi.Input[str]]] ip_sans: List of alternative IPs
|
74
|
-
:param pulumi.Input[str] issuer_name: Provides a name to the specified issuer. The name must be unique
|
66
|
+
:param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] alt_names: List of alternative names
|
67
|
+
:param pulumi.Input[builtins.str] country: The country
|
68
|
+
:param pulumi.Input[builtins.bool] exclude_cn_from_sans: Flag to exclude CN from SANs
|
69
|
+
:param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] excluded_dns_domains: List of domains for which certificates are not allowed to be issued. Requires Vault version 1.19+.
|
70
|
+
:param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] excluded_email_addresses: List of email addresses for which certificates are not allowed to be issued. Requires Vault version 1.19+.
|
71
|
+
:param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] excluded_ip_ranges: List of IP ranges for which certificates are not allowed to be issued. Requires Vault version 1.19+.
|
72
|
+
:param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] excluded_uri_domains: List of URI domains for which certificates are not allowed to be issued. Requires Vault version 1.19+.
|
73
|
+
:param pulumi.Input[builtins.str] format: The format of data
|
74
|
+
:param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] ip_sans: List of alternative IPs
|
75
|
+
:param pulumi.Input[builtins.str] issuer_name: Provides a name to the specified issuer. The name must be unique
|
75
76
|
across all issuers and not be the reserved value `default`
|
76
|
-
:param pulumi.Input[int] key_bits: The number of bits to use
|
77
|
-
:param pulumi.Input[str] key_name: When a new key is created with this request, optionally specifies
|
77
|
+
:param pulumi.Input[builtins.int] key_bits: The number of bits to use
|
78
|
+
:param pulumi.Input[builtins.str] key_name: When a new key is created with this request, optionally specifies
|
78
79
|
the name for this. The global ref `default` may not be used as a name.
|
79
|
-
:param pulumi.Input[str] key_ref: Specifies the key (either default, by name, or by identifier) to use
|
80
|
+
:param pulumi.Input[builtins.str] key_ref: Specifies the key (either default, by name, or by identifier) to use
|
80
81
|
for generating this request. Only suitable for `type=existing` requests.
|
81
|
-
:param pulumi.Input[str] key_type: The desired key type
|
82
|
-
:param pulumi.Input[str] locality: The locality
|
83
|
-
:param pulumi.Input[str] managed_key_id: The ID of the previously configured managed key. This field is
|
82
|
+
:param pulumi.Input[builtins.str] key_type: The desired key type
|
83
|
+
:param pulumi.Input[builtins.str] locality: The locality
|
84
|
+
:param pulumi.Input[builtins.str] managed_key_id: The ID of the previously configured managed key. This field is
|
84
85
|
required if `type` is `kms` and it conflicts with `managed_key_name`
|
85
|
-
:param pulumi.Input[str] managed_key_name: The name of the previously configured managed key. This field is
|
86
|
+
:param pulumi.Input[builtins.str] managed_key_name: The name of the previously configured managed key. This field is
|
86
87
|
required if `type` is `kms` and it conflicts with `managed_key_id`
|
87
|
-
:param pulumi.Input[int] max_path_length: The maximum path length to encode in the generated certificate
|
88
|
-
:param pulumi.Input[str] namespace: The namespace to provision the resource in.
|
88
|
+
:param pulumi.Input[builtins.int] max_path_length: The maximum path length to encode in the generated certificate
|
89
|
+
:param pulumi.Input[builtins.str] namespace: The namespace to provision the resource in.
|
89
90
|
The value should not contain leading or trailing forward slashes.
|
90
91
|
The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault/index.html#namespace).
|
91
92
|
*Available only for Vault Enterprise*.
|
92
|
-
:param pulumi.Input[str] not_after: Set the Not After field of the certificate with specified date value. The value format should be given in UTC format YYYY-MM-ddTHH:MM:SSZ. Supports the Y10K end date for IEEE 802.1AR-2018 standard devices, 9999-12-31T23:59:59Z.
|
93
|
-
:param pulumi.Input[str] organization: The organization
|
94
|
-
:param pulumi.Input[Sequence[pulumi.Input[str]]] other_sans: List of other SANs
|
95
|
-
:param pulumi.Input[str] ou: The organization unit
|
96
|
-
:param pulumi.Input[Sequence[pulumi.Input[str]]] permitted_dns_domains: List of domains for which certificates are allowed to be issued
|
97
|
-
:param pulumi.Input[Sequence[pulumi.Input[str]]] permitted_email_addresses: List of email addresses for which certificates are allowed to be issued. Requires Vault version 1.19+.
|
98
|
-
:param pulumi.Input[Sequence[pulumi.Input[str]]] permitted_ip_ranges: List of IP ranges for which certificates are allowed to be issued. Requires Vault version 1.19+.
|
99
|
-
:param pulumi.Input[Sequence[pulumi.Input[str]]] permitted_uri_domains: List of URI domains for which certificates are allowed to be issued. Requires Vault version 1.19+.
|
100
|
-
:param pulumi.Input[str] postal_code: The postal code
|
101
|
-
:param pulumi.Input[str] private_key_format: The private key format
|
102
|
-
:param pulumi.Input[str] province: The province
|
103
|
-
:param pulumi.Input[int] signature_bits: The number of bits to use in the signature algorithm
|
104
|
-
:param pulumi.Input[str] street_address: The street address
|
105
|
-
:param pulumi.Input[str] ttl: Time to live
|
106
|
-
:param pulumi.Input[Sequence[pulumi.Input[str]]] uri_sans: List of alternative URIs
|
93
|
+
:param pulumi.Input[builtins.str] not_after: Set the Not After field of the certificate with specified date value. The value format should be given in UTC format YYYY-MM-ddTHH:MM:SSZ. Supports the Y10K end date for IEEE 802.1AR-2018 standard devices, 9999-12-31T23:59:59Z.
|
94
|
+
:param pulumi.Input[builtins.str] organization: The organization
|
95
|
+
:param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] other_sans: List of other SANs
|
96
|
+
:param pulumi.Input[builtins.str] ou: The organization unit
|
97
|
+
:param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] permitted_dns_domains: List of domains for which certificates are allowed to be issued
|
98
|
+
:param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] permitted_email_addresses: List of email addresses for which certificates are allowed to be issued. Requires Vault version 1.19+.
|
99
|
+
:param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] permitted_ip_ranges: List of IP ranges for which certificates are allowed to be issued. Requires Vault version 1.19+.
|
100
|
+
:param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] permitted_uri_domains: List of URI domains for which certificates are allowed to be issued. Requires Vault version 1.19+.
|
101
|
+
:param pulumi.Input[builtins.str] postal_code: The postal code
|
102
|
+
:param pulumi.Input[builtins.str] private_key_format: The private key format
|
103
|
+
:param pulumi.Input[builtins.str] province: The province
|
104
|
+
:param pulumi.Input[builtins.int] signature_bits: The number of bits to use in the signature algorithm
|
105
|
+
:param pulumi.Input[builtins.str] street_address: The street address
|
106
|
+
:param pulumi.Input[builtins.str] ttl: Time to live
|
107
|
+
:param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] uri_sans: List of alternative URIs
|
107
108
|
"""
|
108
109
|
pulumi.set(__self__, "backend", backend)
|
109
110
|
pulumi.set(__self__, "common_name", common_name)
|
@@ -179,31 +180,31 @@ class SecretBackendRootCertArgs:
|
|
179
180
|
|
180
181
|
@property
|
181
182
|
@pulumi.getter
|
182
|
-
def backend(self) -> pulumi.Input[str]:
|
183
|
+
def backend(self) -> pulumi.Input[builtins.str]:
|
183
184
|
"""
|
184
185
|
The PKI secret backend the resource belongs to.
|
185
186
|
"""
|
186
187
|
return pulumi.get(self, "backend")
|
187
188
|
|
188
189
|
@backend.setter
|
189
|
-
def backend(self, value: pulumi.Input[str]):
|
190
|
+
def backend(self, value: pulumi.Input[builtins.str]):
|
190
191
|
pulumi.set(self, "backend", value)
|
191
192
|
|
192
193
|
@property
|
193
194
|
@pulumi.getter(name="commonName")
|
194
|
-
def common_name(self) -> pulumi.Input[str]:
|
195
|
+
def common_name(self) -> pulumi.Input[builtins.str]:
|
195
196
|
"""
|
196
197
|
CN of intermediate to create
|
197
198
|
"""
|
198
199
|
return pulumi.get(self, "common_name")
|
199
200
|
|
200
201
|
@common_name.setter
|
201
|
-
def common_name(self, value: pulumi.Input[str]):
|
202
|
+
def common_name(self, value: pulumi.Input[builtins.str]):
|
202
203
|
pulumi.set(self, "common_name", value)
|
203
204
|
|
204
205
|
@property
|
205
206
|
@pulumi.getter
|
206
|
-
def type(self) -> pulumi.Input[str]:
|
207
|
+
def type(self) -> pulumi.Input[builtins.str]:
|
207
208
|
"""
|
208
209
|
Type of intermediate to create. Must be either \\"exported\\", \\"internal\\"
|
209
210
|
or \\"kms\\"
|
@@ -211,120 +212,120 @@ class SecretBackendRootCertArgs:
|
|
211
212
|
return pulumi.get(self, "type")
|
212
213
|
|
213
214
|
@type.setter
|
214
|
-
def type(self, value: pulumi.Input[str]):
|
215
|
+
def type(self, value: pulumi.Input[builtins.str]):
|
215
216
|
pulumi.set(self, "type", value)
|
216
217
|
|
217
218
|
@property
|
218
219
|
@pulumi.getter(name="altNames")
|
219
|
-
def alt_names(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]:
|
220
|
+
def alt_names(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]:
|
220
221
|
"""
|
221
222
|
List of alternative names
|
222
223
|
"""
|
223
224
|
return pulumi.get(self, "alt_names")
|
224
225
|
|
225
226
|
@alt_names.setter
|
226
|
-
def alt_names(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]):
|
227
|
+
def alt_names(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]):
|
227
228
|
pulumi.set(self, "alt_names", value)
|
228
229
|
|
229
230
|
@property
|
230
231
|
@pulumi.getter
|
231
|
-
def country(self) -> Optional[pulumi.Input[str]]:
|
232
|
+
def country(self) -> Optional[pulumi.Input[builtins.str]]:
|
232
233
|
"""
|
233
234
|
The country
|
234
235
|
"""
|
235
236
|
return pulumi.get(self, "country")
|
236
237
|
|
237
238
|
@country.setter
|
238
|
-
def country(self, value: Optional[pulumi.Input[str]]):
|
239
|
+
def country(self, value: Optional[pulumi.Input[builtins.str]]):
|
239
240
|
pulumi.set(self, "country", value)
|
240
241
|
|
241
242
|
@property
|
242
243
|
@pulumi.getter(name="excludeCnFromSans")
|
243
|
-
def exclude_cn_from_sans(self) -> Optional[pulumi.Input[bool]]:
|
244
|
+
def exclude_cn_from_sans(self) -> Optional[pulumi.Input[builtins.bool]]:
|
244
245
|
"""
|
245
246
|
Flag to exclude CN from SANs
|
246
247
|
"""
|
247
248
|
return pulumi.get(self, "exclude_cn_from_sans")
|
248
249
|
|
249
250
|
@exclude_cn_from_sans.setter
|
250
|
-
def exclude_cn_from_sans(self, value: Optional[pulumi.Input[bool]]):
|
251
|
+
def exclude_cn_from_sans(self, value: Optional[pulumi.Input[builtins.bool]]):
|
251
252
|
pulumi.set(self, "exclude_cn_from_sans", value)
|
252
253
|
|
253
254
|
@property
|
254
255
|
@pulumi.getter(name="excludedDnsDomains")
|
255
|
-
def excluded_dns_domains(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]:
|
256
|
+
def excluded_dns_domains(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]:
|
256
257
|
"""
|
257
258
|
List of domains for which certificates are not allowed to be issued. Requires Vault version 1.19+.
|
258
259
|
"""
|
259
260
|
return pulumi.get(self, "excluded_dns_domains")
|
260
261
|
|
261
262
|
@excluded_dns_domains.setter
|
262
|
-
def excluded_dns_domains(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]):
|
263
|
+
def excluded_dns_domains(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]):
|
263
264
|
pulumi.set(self, "excluded_dns_domains", value)
|
264
265
|
|
265
266
|
@property
|
266
267
|
@pulumi.getter(name="excludedEmailAddresses")
|
267
|
-
def excluded_email_addresses(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]:
|
268
|
+
def excluded_email_addresses(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]:
|
268
269
|
"""
|
269
270
|
List of email addresses for which certificates are not allowed to be issued. Requires Vault version 1.19+.
|
270
271
|
"""
|
271
272
|
return pulumi.get(self, "excluded_email_addresses")
|
272
273
|
|
273
274
|
@excluded_email_addresses.setter
|
274
|
-
def excluded_email_addresses(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]):
|
275
|
+
def excluded_email_addresses(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]):
|
275
276
|
pulumi.set(self, "excluded_email_addresses", value)
|
276
277
|
|
277
278
|
@property
|
278
279
|
@pulumi.getter(name="excludedIpRanges")
|
279
|
-
def excluded_ip_ranges(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]:
|
280
|
+
def excluded_ip_ranges(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]:
|
280
281
|
"""
|
281
282
|
List of IP ranges for which certificates are not allowed to be issued. Requires Vault version 1.19+.
|
282
283
|
"""
|
283
284
|
return pulumi.get(self, "excluded_ip_ranges")
|
284
285
|
|
285
286
|
@excluded_ip_ranges.setter
|
286
|
-
def excluded_ip_ranges(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]):
|
287
|
+
def excluded_ip_ranges(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]):
|
287
288
|
pulumi.set(self, "excluded_ip_ranges", value)
|
288
289
|
|
289
290
|
@property
|
290
291
|
@pulumi.getter(name="excludedUriDomains")
|
291
|
-
def excluded_uri_domains(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]:
|
292
|
+
def excluded_uri_domains(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]:
|
292
293
|
"""
|
293
294
|
List of URI domains for which certificates are not allowed to be issued. Requires Vault version 1.19+.
|
294
295
|
"""
|
295
296
|
return pulumi.get(self, "excluded_uri_domains")
|
296
297
|
|
297
298
|
@excluded_uri_domains.setter
|
298
|
-
def excluded_uri_domains(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]):
|
299
|
+
def excluded_uri_domains(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]):
|
299
300
|
pulumi.set(self, "excluded_uri_domains", value)
|
300
301
|
|
301
302
|
@property
|
302
303
|
@pulumi.getter
|
303
|
-
def format(self) -> Optional[pulumi.Input[str]]:
|
304
|
+
def format(self) -> Optional[pulumi.Input[builtins.str]]:
|
304
305
|
"""
|
305
306
|
The format of data
|
306
307
|
"""
|
307
308
|
return pulumi.get(self, "format")
|
308
309
|
|
309
310
|
@format.setter
|
310
|
-
def format(self, value: Optional[pulumi.Input[str]]):
|
311
|
+
def format(self, value: Optional[pulumi.Input[builtins.str]]):
|
311
312
|
pulumi.set(self, "format", value)
|
312
313
|
|
313
314
|
@property
|
314
315
|
@pulumi.getter(name="ipSans")
|
315
|
-
def ip_sans(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]:
|
316
|
+
def ip_sans(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]:
|
316
317
|
"""
|
317
318
|
List of alternative IPs
|
318
319
|
"""
|
319
320
|
return pulumi.get(self, "ip_sans")
|
320
321
|
|
321
322
|
@ip_sans.setter
|
322
|
-
def ip_sans(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]):
|
323
|
+
def ip_sans(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]):
|
323
324
|
pulumi.set(self, "ip_sans", value)
|
324
325
|
|
325
326
|
@property
|
326
327
|
@pulumi.getter(name="issuerName")
|
327
|
-
def issuer_name(self) -> Optional[pulumi.Input[str]]:
|
328
|
+
def issuer_name(self) -> Optional[pulumi.Input[builtins.str]]:
|
328
329
|
"""
|
329
330
|
Provides a name to the specified issuer. The name must be unique
|
330
331
|
across all issuers and not be the reserved value `default`
|
@@ -332,24 +333,24 @@ class SecretBackendRootCertArgs:
|
|
332
333
|
return pulumi.get(self, "issuer_name")
|
333
334
|
|
334
335
|
@issuer_name.setter
|
335
|
-
def issuer_name(self, value: Optional[pulumi.Input[str]]):
|
336
|
+
def issuer_name(self, value: Optional[pulumi.Input[builtins.str]]):
|
336
337
|
pulumi.set(self, "issuer_name", value)
|
337
338
|
|
338
339
|
@property
|
339
340
|
@pulumi.getter(name="keyBits")
|
340
|
-
def key_bits(self) -> Optional[pulumi.Input[int]]:
|
341
|
+
def key_bits(self) -> Optional[pulumi.Input[builtins.int]]:
|
341
342
|
"""
|
342
343
|
The number of bits to use
|
343
344
|
"""
|
344
345
|
return pulumi.get(self, "key_bits")
|
345
346
|
|
346
347
|
@key_bits.setter
|
347
|
-
def key_bits(self, value: Optional[pulumi.Input[int]]):
|
348
|
+
def key_bits(self, value: Optional[pulumi.Input[builtins.int]]):
|
348
349
|
pulumi.set(self, "key_bits", value)
|
349
350
|
|
350
351
|
@property
|
351
352
|
@pulumi.getter(name="keyName")
|
352
|
-
def key_name(self) -> Optional[pulumi.Input[str]]:
|
353
|
+
def key_name(self) -> Optional[pulumi.Input[builtins.str]]:
|
353
354
|
"""
|
354
355
|
When a new key is created with this request, optionally specifies
|
355
356
|
the name for this. The global ref `default` may not be used as a name.
|
@@ -357,12 +358,12 @@ class SecretBackendRootCertArgs:
|
|
357
358
|
return pulumi.get(self, "key_name")
|
358
359
|
|
359
360
|
@key_name.setter
|
360
|
-
def key_name(self, value: Optional[pulumi.Input[str]]):
|
361
|
+
def key_name(self, value: Optional[pulumi.Input[builtins.str]]):
|
361
362
|
pulumi.set(self, "key_name", value)
|
362
363
|
|
363
364
|
@property
|
364
365
|
@pulumi.getter(name="keyRef")
|
365
|
-
def key_ref(self) -> Optional[pulumi.Input[str]]:
|
366
|
+
def key_ref(self) -> Optional[pulumi.Input[builtins.str]]:
|
366
367
|
"""
|
367
368
|
Specifies the key (either default, by name, or by identifier) to use
|
368
369
|
for generating this request. Only suitable for `type=existing` requests.
|
@@ -370,36 +371,36 @@ class SecretBackendRootCertArgs:
|
|
370
371
|
return pulumi.get(self, "key_ref")
|
371
372
|
|
372
373
|
@key_ref.setter
|
373
|
-
def key_ref(self, value: Optional[pulumi.Input[str]]):
|
374
|
+
def key_ref(self, value: Optional[pulumi.Input[builtins.str]]):
|
374
375
|
pulumi.set(self, "key_ref", value)
|
375
376
|
|
376
377
|
@property
|
377
378
|
@pulumi.getter(name="keyType")
|
378
|
-
def key_type(self) -> Optional[pulumi.Input[str]]:
|
379
|
+
def key_type(self) -> Optional[pulumi.Input[builtins.str]]:
|
379
380
|
"""
|
380
381
|
The desired key type
|
381
382
|
"""
|
382
383
|
return pulumi.get(self, "key_type")
|
383
384
|
|
384
385
|
@key_type.setter
|
385
|
-
def key_type(self, value: Optional[pulumi.Input[str]]):
|
386
|
+
def key_type(self, value: Optional[pulumi.Input[builtins.str]]):
|
386
387
|
pulumi.set(self, "key_type", value)
|
387
388
|
|
388
389
|
@property
|
389
390
|
@pulumi.getter
|
390
|
-
def locality(self) -> Optional[pulumi.Input[str]]:
|
391
|
+
def locality(self) -> Optional[pulumi.Input[builtins.str]]:
|
391
392
|
"""
|
392
393
|
The locality
|
393
394
|
"""
|
394
395
|
return pulumi.get(self, "locality")
|
395
396
|
|
396
397
|
@locality.setter
|
397
|
-
def locality(self, value: Optional[pulumi.Input[str]]):
|
398
|
+
def locality(self, value: Optional[pulumi.Input[builtins.str]]):
|
398
399
|
pulumi.set(self, "locality", value)
|
399
400
|
|
400
401
|
@property
|
401
402
|
@pulumi.getter(name="managedKeyId")
|
402
|
-
def managed_key_id(self) -> Optional[pulumi.Input[str]]:
|
403
|
+
def managed_key_id(self) -> Optional[pulumi.Input[builtins.str]]:
|
403
404
|
"""
|
404
405
|
The ID of the previously configured managed key. This field is
|
405
406
|
required if `type` is `kms` and it conflicts with `managed_key_name`
|
@@ -407,12 +408,12 @@ class SecretBackendRootCertArgs:
|
|
407
408
|
return pulumi.get(self, "managed_key_id")
|
408
409
|
|
409
410
|
@managed_key_id.setter
|
410
|
-
def managed_key_id(self, value: Optional[pulumi.Input[str]]):
|
411
|
+
def managed_key_id(self, value: Optional[pulumi.Input[builtins.str]]):
|
411
412
|
pulumi.set(self, "managed_key_id", value)
|
412
413
|
|
413
414
|
@property
|
414
415
|
@pulumi.getter(name="managedKeyName")
|
415
|
-
def managed_key_name(self) -> Optional[pulumi.Input[str]]:
|
416
|
+
def managed_key_name(self) -> Optional[pulumi.Input[builtins.str]]:
|
416
417
|
"""
|
417
418
|
The name of the previously configured managed key. This field is
|
418
419
|
required if `type` is `kms` and it conflicts with `managed_key_id`
|
@@ -420,24 +421,24 @@ class SecretBackendRootCertArgs:
|
|
420
421
|
return pulumi.get(self, "managed_key_name")
|
421
422
|
|
422
423
|
@managed_key_name.setter
|
423
|
-
def managed_key_name(self, value: Optional[pulumi.Input[str]]):
|
424
|
+
def managed_key_name(self, value: Optional[pulumi.Input[builtins.str]]):
|
424
425
|
pulumi.set(self, "managed_key_name", value)
|
425
426
|
|
426
427
|
@property
|
427
428
|
@pulumi.getter(name="maxPathLength")
|
428
|
-
def max_path_length(self) -> Optional[pulumi.Input[int]]:
|
429
|
+
def max_path_length(self) -> Optional[pulumi.Input[builtins.int]]:
|
429
430
|
"""
|
430
431
|
The maximum path length to encode in the generated certificate
|
431
432
|
"""
|
432
433
|
return pulumi.get(self, "max_path_length")
|
433
434
|
|
434
435
|
@max_path_length.setter
|
435
|
-
def max_path_length(self, value: Optional[pulumi.Input[int]]):
|
436
|
+
def max_path_length(self, value: Optional[pulumi.Input[builtins.int]]):
|
436
437
|
pulumi.set(self, "max_path_length", value)
|
437
438
|
|
438
439
|
@property
|
439
440
|
@pulumi.getter
|
440
|
-
def namespace(self) -> Optional[pulumi.Input[str]]:
|
441
|
+
def namespace(self) -> Optional[pulumi.Input[builtins.str]]:
|
441
442
|
"""
|
442
443
|
The namespace to provision the resource in.
|
443
444
|
The value should not contain leading or trailing forward slashes.
|
@@ -447,288 +448,288 @@ class SecretBackendRootCertArgs:
|
|
447
448
|
return pulumi.get(self, "namespace")
|
448
449
|
|
449
450
|
@namespace.setter
|
450
|
-
def namespace(self, value: Optional[pulumi.Input[str]]):
|
451
|
+
def namespace(self, value: Optional[pulumi.Input[builtins.str]]):
|
451
452
|
pulumi.set(self, "namespace", value)
|
452
453
|
|
453
454
|
@property
|
454
455
|
@pulumi.getter(name="notAfter")
|
455
|
-
def not_after(self) -> Optional[pulumi.Input[str]]:
|
456
|
+
def not_after(self) -> Optional[pulumi.Input[builtins.str]]:
|
456
457
|
"""
|
457
458
|
Set the Not After field of the certificate with specified date value. The value format should be given in UTC format YYYY-MM-ddTHH:MM:SSZ. Supports the Y10K end date for IEEE 802.1AR-2018 standard devices, 9999-12-31T23:59:59Z.
|
458
459
|
"""
|
459
460
|
return pulumi.get(self, "not_after")
|
460
461
|
|
461
462
|
@not_after.setter
|
462
|
-
def not_after(self, value: Optional[pulumi.Input[str]]):
|
463
|
+
def not_after(self, value: Optional[pulumi.Input[builtins.str]]):
|
463
464
|
pulumi.set(self, "not_after", value)
|
464
465
|
|
465
466
|
@property
|
466
467
|
@pulumi.getter
|
467
|
-
def organization(self) -> Optional[pulumi.Input[str]]:
|
468
|
+
def organization(self) -> Optional[pulumi.Input[builtins.str]]:
|
468
469
|
"""
|
469
470
|
The organization
|
470
471
|
"""
|
471
472
|
return pulumi.get(self, "organization")
|
472
473
|
|
473
474
|
@organization.setter
|
474
|
-
def organization(self, value: Optional[pulumi.Input[str]]):
|
475
|
+
def organization(self, value: Optional[pulumi.Input[builtins.str]]):
|
475
476
|
pulumi.set(self, "organization", value)
|
476
477
|
|
477
478
|
@property
|
478
479
|
@pulumi.getter(name="otherSans")
|
479
|
-
def other_sans(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]:
|
480
|
+
def other_sans(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]:
|
480
481
|
"""
|
481
482
|
List of other SANs
|
482
483
|
"""
|
483
484
|
return pulumi.get(self, "other_sans")
|
484
485
|
|
485
486
|
@other_sans.setter
|
486
|
-
def other_sans(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]):
|
487
|
+
def other_sans(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]):
|
487
488
|
pulumi.set(self, "other_sans", value)
|
488
489
|
|
489
490
|
@property
|
490
491
|
@pulumi.getter
|
491
|
-
def ou(self) -> Optional[pulumi.Input[str]]:
|
492
|
+
def ou(self) -> Optional[pulumi.Input[builtins.str]]:
|
492
493
|
"""
|
493
494
|
The organization unit
|
494
495
|
"""
|
495
496
|
return pulumi.get(self, "ou")
|
496
497
|
|
497
498
|
@ou.setter
|
498
|
-
def ou(self, value: Optional[pulumi.Input[str]]):
|
499
|
+
def ou(self, value: Optional[pulumi.Input[builtins.str]]):
|
499
500
|
pulumi.set(self, "ou", value)
|
500
501
|
|
501
502
|
@property
|
502
503
|
@pulumi.getter(name="permittedDnsDomains")
|
503
|
-
def permitted_dns_domains(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]:
|
504
|
+
def permitted_dns_domains(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]:
|
504
505
|
"""
|
505
506
|
List of domains for which certificates are allowed to be issued
|
506
507
|
"""
|
507
508
|
return pulumi.get(self, "permitted_dns_domains")
|
508
509
|
|
509
510
|
@permitted_dns_domains.setter
|
510
|
-
def permitted_dns_domains(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]):
|
511
|
+
def permitted_dns_domains(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]):
|
511
512
|
pulumi.set(self, "permitted_dns_domains", value)
|
512
513
|
|
513
514
|
@property
|
514
515
|
@pulumi.getter(name="permittedEmailAddresses")
|
515
|
-
def permitted_email_addresses(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]:
|
516
|
+
def permitted_email_addresses(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]:
|
516
517
|
"""
|
517
518
|
List of email addresses for which certificates are allowed to be issued. Requires Vault version 1.19+.
|
518
519
|
"""
|
519
520
|
return pulumi.get(self, "permitted_email_addresses")
|
520
521
|
|
521
522
|
@permitted_email_addresses.setter
|
522
|
-
def permitted_email_addresses(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]):
|
523
|
+
def permitted_email_addresses(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]):
|
523
524
|
pulumi.set(self, "permitted_email_addresses", value)
|
524
525
|
|
525
526
|
@property
|
526
527
|
@pulumi.getter(name="permittedIpRanges")
|
527
|
-
def permitted_ip_ranges(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]:
|
528
|
+
def permitted_ip_ranges(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]:
|
528
529
|
"""
|
529
530
|
List of IP ranges for which certificates are allowed to be issued. Requires Vault version 1.19+.
|
530
531
|
"""
|
531
532
|
return pulumi.get(self, "permitted_ip_ranges")
|
532
533
|
|
533
534
|
@permitted_ip_ranges.setter
|
534
|
-
def permitted_ip_ranges(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]):
|
535
|
+
def permitted_ip_ranges(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]):
|
535
536
|
pulumi.set(self, "permitted_ip_ranges", value)
|
536
537
|
|
537
538
|
@property
|
538
539
|
@pulumi.getter(name="permittedUriDomains")
|
539
|
-
def permitted_uri_domains(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]:
|
540
|
+
def permitted_uri_domains(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]:
|
540
541
|
"""
|
541
542
|
List of URI domains for which certificates are allowed to be issued. Requires Vault version 1.19+.
|
542
543
|
"""
|
543
544
|
return pulumi.get(self, "permitted_uri_domains")
|
544
545
|
|
545
546
|
@permitted_uri_domains.setter
|
546
|
-
def permitted_uri_domains(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]):
|
547
|
+
def permitted_uri_domains(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]):
|
547
548
|
pulumi.set(self, "permitted_uri_domains", value)
|
548
549
|
|
549
550
|
@property
|
550
551
|
@pulumi.getter(name="postalCode")
|
551
|
-
def postal_code(self) -> Optional[pulumi.Input[str]]:
|
552
|
+
def postal_code(self) -> Optional[pulumi.Input[builtins.str]]:
|
552
553
|
"""
|
553
554
|
The postal code
|
554
555
|
"""
|
555
556
|
return pulumi.get(self, "postal_code")
|
556
557
|
|
557
558
|
@postal_code.setter
|
558
|
-
def postal_code(self, value: Optional[pulumi.Input[str]]):
|
559
|
+
def postal_code(self, value: Optional[pulumi.Input[builtins.str]]):
|
559
560
|
pulumi.set(self, "postal_code", value)
|
560
561
|
|
561
562
|
@property
|
562
563
|
@pulumi.getter(name="privateKeyFormat")
|
563
|
-
def private_key_format(self) -> Optional[pulumi.Input[str]]:
|
564
|
+
def private_key_format(self) -> Optional[pulumi.Input[builtins.str]]:
|
564
565
|
"""
|
565
566
|
The private key format
|
566
567
|
"""
|
567
568
|
return pulumi.get(self, "private_key_format")
|
568
569
|
|
569
570
|
@private_key_format.setter
|
570
|
-
def private_key_format(self, value: Optional[pulumi.Input[str]]):
|
571
|
+
def private_key_format(self, value: Optional[pulumi.Input[builtins.str]]):
|
571
572
|
pulumi.set(self, "private_key_format", value)
|
572
573
|
|
573
574
|
@property
|
574
575
|
@pulumi.getter
|
575
|
-
def province(self) -> Optional[pulumi.Input[str]]:
|
576
|
+
def province(self) -> Optional[pulumi.Input[builtins.str]]:
|
576
577
|
"""
|
577
578
|
The province
|
578
579
|
"""
|
579
580
|
return pulumi.get(self, "province")
|
580
581
|
|
581
582
|
@province.setter
|
582
|
-
def province(self, value: Optional[pulumi.Input[str]]):
|
583
|
+
def province(self, value: Optional[pulumi.Input[builtins.str]]):
|
583
584
|
pulumi.set(self, "province", value)
|
584
585
|
|
585
586
|
@property
|
586
587
|
@pulumi.getter(name="signatureBits")
|
587
|
-
def signature_bits(self) -> Optional[pulumi.Input[int]]:
|
588
|
+
def signature_bits(self) -> Optional[pulumi.Input[builtins.int]]:
|
588
589
|
"""
|
589
590
|
The number of bits to use in the signature algorithm
|
590
591
|
"""
|
591
592
|
return pulumi.get(self, "signature_bits")
|
592
593
|
|
593
594
|
@signature_bits.setter
|
594
|
-
def signature_bits(self, value: Optional[pulumi.Input[int]]):
|
595
|
+
def signature_bits(self, value: Optional[pulumi.Input[builtins.int]]):
|
595
596
|
pulumi.set(self, "signature_bits", value)
|
596
597
|
|
597
598
|
@property
|
598
599
|
@pulumi.getter(name="streetAddress")
|
599
|
-
def street_address(self) -> Optional[pulumi.Input[str]]:
|
600
|
+
def street_address(self) -> Optional[pulumi.Input[builtins.str]]:
|
600
601
|
"""
|
601
602
|
The street address
|
602
603
|
"""
|
603
604
|
return pulumi.get(self, "street_address")
|
604
605
|
|
605
606
|
@street_address.setter
|
606
|
-
def street_address(self, value: Optional[pulumi.Input[str]]):
|
607
|
+
def street_address(self, value: Optional[pulumi.Input[builtins.str]]):
|
607
608
|
pulumi.set(self, "street_address", value)
|
608
609
|
|
609
610
|
@property
|
610
611
|
@pulumi.getter
|
611
|
-
def ttl(self) -> Optional[pulumi.Input[str]]:
|
612
|
+
def ttl(self) -> Optional[pulumi.Input[builtins.str]]:
|
612
613
|
"""
|
613
614
|
Time to live
|
614
615
|
"""
|
615
616
|
return pulumi.get(self, "ttl")
|
616
617
|
|
617
618
|
@ttl.setter
|
618
|
-
def ttl(self, value: Optional[pulumi.Input[str]]):
|
619
|
+
def ttl(self, value: Optional[pulumi.Input[builtins.str]]):
|
619
620
|
pulumi.set(self, "ttl", value)
|
620
621
|
|
621
622
|
@property
|
622
623
|
@pulumi.getter(name="uriSans")
|
623
|
-
def uri_sans(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]:
|
624
|
+
def uri_sans(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]:
|
624
625
|
"""
|
625
626
|
List of alternative URIs
|
626
627
|
"""
|
627
628
|
return pulumi.get(self, "uri_sans")
|
628
629
|
|
629
630
|
@uri_sans.setter
|
630
|
-
def uri_sans(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]):
|
631
|
+
def uri_sans(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]):
|
631
632
|
pulumi.set(self, "uri_sans", value)
|
632
633
|
|
633
634
|
|
634
635
|
@pulumi.input_type
|
635
636
|
class _SecretBackendRootCertState:
|
636
637
|
def __init__(__self__, *,
|
637
|
-
alt_names: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
|
638
|
-
backend: Optional[pulumi.Input[str]] = None,
|
639
|
-
certificate: Optional[pulumi.Input[str]] = None,
|
640
|
-
common_name: Optional[pulumi.Input[str]] = None,
|
641
|
-
country: Optional[pulumi.Input[str]] = None,
|
642
|
-
exclude_cn_from_sans: Optional[pulumi.Input[bool]] = None,
|
643
|
-
excluded_dns_domains: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
|
644
|
-
excluded_email_addresses: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
|
645
|
-
excluded_ip_ranges: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
|
646
|
-
excluded_uri_domains: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
|
647
|
-
format: Optional[pulumi.Input[str]] = None,
|
648
|
-
ip_sans: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
|
649
|
-
issuer_id: Optional[pulumi.Input[str]] = None,
|
650
|
-
issuer_name: Optional[pulumi.Input[str]] = None,
|
651
|
-
issuing_ca: Optional[pulumi.Input[str]] = None,
|
652
|
-
key_bits: Optional[pulumi.Input[int]] = None,
|
653
|
-
key_id: Optional[pulumi.Input[str]] = None,
|
654
|
-
key_name: Optional[pulumi.Input[str]] = None,
|
655
|
-
key_ref: Optional[pulumi.Input[str]] = None,
|
656
|
-
key_type: Optional[pulumi.Input[str]] = None,
|
657
|
-
locality: Optional[pulumi.Input[str]] = None,
|
658
|
-
managed_key_id: Optional[pulumi.Input[str]] = None,
|
659
|
-
managed_key_name: Optional[pulumi.Input[str]] = None,
|
660
|
-
max_path_length: Optional[pulumi.Input[int]] = None,
|
661
|
-
namespace: Optional[pulumi.Input[str]] = None,
|
662
|
-
not_after: Optional[pulumi.Input[str]] = None,
|
663
|
-
organization: Optional[pulumi.Input[str]] = None,
|
664
|
-
other_sans: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
|
665
|
-
ou: Optional[pulumi.Input[str]] = None,
|
666
|
-
permitted_dns_domains: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
|
667
|
-
permitted_email_addresses: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
|
668
|
-
permitted_ip_ranges: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
|
669
|
-
permitted_uri_domains: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
|
670
|
-
postal_code: Optional[pulumi.Input[str]] = None,
|
671
|
-
private_key_format: Optional[pulumi.Input[str]] = None,
|
672
|
-
province: Optional[pulumi.Input[str]] = None,
|
673
|
-
serial_number: Optional[pulumi.Input[str]] = None,
|
674
|
-
signature_bits: Optional[pulumi.Input[int]] = None,
|
675
|
-
street_address: Optional[pulumi.Input[str]] = None,
|
676
|
-
ttl: Optional[pulumi.Input[str]] = None,
|
677
|
-
type: Optional[pulumi.Input[str]] = None,
|
678
|
-
uri_sans: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None):
|
638
|
+
alt_names: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
|
639
|
+
backend: Optional[pulumi.Input[builtins.str]] = None,
|
640
|
+
certificate: Optional[pulumi.Input[builtins.str]] = None,
|
641
|
+
common_name: Optional[pulumi.Input[builtins.str]] = None,
|
642
|
+
country: Optional[pulumi.Input[builtins.str]] = None,
|
643
|
+
exclude_cn_from_sans: Optional[pulumi.Input[builtins.bool]] = None,
|
644
|
+
excluded_dns_domains: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
|
645
|
+
excluded_email_addresses: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
|
646
|
+
excluded_ip_ranges: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
|
647
|
+
excluded_uri_domains: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
|
648
|
+
format: Optional[pulumi.Input[builtins.str]] = None,
|
649
|
+
ip_sans: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
|
650
|
+
issuer_id: Optional[pulumi.Input[builtins.str]] = None,
|
651
|
+
issuer_name: Optional[pulumi.Input[builtins.str]] = None,
|
652
|
+
issuing_ca: Optional[pulumi.Input[builtins.str]] = None,
|
653
|
+
key_bits: Optional[pulumi.Input[builtins.int]] = None,
|
654
|
+
key_id: Optional[pulumi.Input[builtins.str]] = None,
|
655
|
+
key_name: Optional[pulumi.Input[builtins.str]] = None,
|
656
|
+
key_ref: Optional[pulumi.Input[builtins.str]] = None,
|
657
|
+
key_type: Optional[pulumi.Input[builtins.str]] = None,
|
658
|
+
locality: Optional[pulumi.Input[builtins.str]] = None,
|
659
|
+
managed_key_id: Optional[pulumi.Input[builtins.str]] = None,
|
660
|
+
managed_key_name: Optional[pulumi.Input[builtins.str]] = None,
|
661
|
+
max_path_length: Optional[pulumi.Input[builtins.int]] = None,
|
662
|
+
namespace: Optional[pulumi.Input[builtins.str]] = None,
|
663
|
+
not_after: Optional[pulumi.Input[builtins.str]] = None,
|
664
|
+
organization: Optional[pulumi.Input[builtins.str]] = None,
|
665
|
+
other_sans: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
|
666
|
+
ou: Optional[pulumi.Input[builtins.str]] = None,
|
667
|
+
permitted_dns_domains: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
|
668
|
+
permitted_email_addresses: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
|
669
|
+
permitted_ip_ranges: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
|
670
|
+
permitted_uri_domains: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
|
671
|
+
postal_code: Optional[pulumi.Input[builtins.str]] = None,
|
672
|
+
private_key_format: Optional[pulumi.Input[builtins.str]] = None,
|
673
|
+
province: Optional[pulumi.Input[builtins.str]] = None,
|
674
|
+
serial_number: Optional[pulumi.Input[builtins.str]] = None,
|
675
|
+
signature_bits: Optional[pulumi.Input[builtins.int]] = None,
|
676
|
+
street_address: Optional[pulumi.Input[builtins.str]] = None,
|
677
|
+
ttl: Optional[pulumi.Input[builtins.str]] = None,
|
678
|
+
type: Optional[pulumi.Input[builtins.str]] = None,
|
679
|
+
uri_sans: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None):
|
679
680
|
"""
|
680
681
|
Input properties used for looking up and filtering SecretBackendRootCert resources.
|
681
|
-
:param pulumi.Input[Sequence[pulumi.Input[str]]] alt_names: List of alternative names
|
682
|
-
:param pulumi.Input[str] backend: The PKI secret backend the resource belongs to.
|
683
|
-
:param pulumi.Input[str] certificate: The certificate.
|
684
|
-
:param pulumi.Input[str] common_name: CN of intermediate to create
|
685
|
-
:param pulumi.Input[str] country: The country
|
686
|
-
:param pulumi.Input[bool] exclude_cn_from_sans: Flag to exclude CN from SANs
|
687
|
-
:param pulumi.Input[Sequence[pulumi.Input[str]]] excluded_dns_domains: List of domains for which certificates are not allowed to be issued. Requires Vault version 1.19+.
|
688
|
-
:param pulumi.Input[Sequence[pulumi.Input[str]]] excluded_email_addresses: List of email addresses for which certificates are not allowed to be issued. Requires Vault version 1.19+.
|
689
|
-
:param pulumi.Input[Sequence[pulumi.Input[str]]] excluded_ip_ranges: List of IP ranges for which certificates are not allowed to be issued. Requires Vault version 1.19+.
|
690
|
-
:param pulumi.Input[Sequence[pulumi.Input[str]]] excluded_uri_domains: List of URI domains for which certificates are not allowed to be issued. Requires Vault version 1.19+.
|
691
|
-
:param pulumi.Input[str] format: The format of data
|
692
|
-
:param pulumi.Input[Sequence[pulumi.Input[str]]] ip_sans: List of alternative IPs
|
693
|
-
:param pulumi.Input[str] issuer_id: The ID of the generated issuer.
|
694
|
-
:param pulumi.Input[str] issuer_name: Provides a name to the specified issuer. The name must be unique
|
682
|
+
:param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] alt_names: List of alternative names
|
683
|
+
:param pulumi.Input[builtins.str] backend: The PKI secret backend the resource belongs to.
|
684
|
+
:param pulumi.Input[builtins.str] certificate: The certificate.
|
685
|
+
:param pulumi.Input[builtins.str] common_name: CN of intermediate to create
|
686
|
+
:param pulumi.Input[builtins.str] country: The country
|
687
|
+
:param pulumi.Input[builtins.bool] exclude_cn_from_sans: Flag to exclude CN from SANs
|
688
|
+
:param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] excluded_dns_domains: List of domains for which certificates are not allowed to be issued. Requires Vault version 1.19+.
|
689
|
+
:param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] excluded_email_addresses: List of email addresses for which certificates are not allowed to be issued. Requires Vault version 1.19+.
|
690
|
+
:param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] excluded_ip_ranges: List of IP ranges for which certificates are not allowed to be issued. Requires Vault version 1.19+.
|
691
|
+
:param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] excluded_uri_domains: List of URI domains for which certificates are not allowed to be issued. Requires Vault version 1.19+.
|
692
|
+
:param pulumi.Input[builtins.str] format: The format of data
|
693
|
+
:param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] ip_sans: List of alternative IPs
|
694
|
+
:param pulumi.Input[builtins.str] issuer_id: The ID of the generated issuer.
|
695
|
+
:param pulumi.Input[builtins.str] issuer_name: Provides a name to the specified issuer. The name must be unique
|
695
696
|
across all issuers and not be the reserved value `default`
|
696
|
-
:param pulumi.Input[str] issuing_ca: The issuing CA certificate.
|
697
|
-
:param pulumi.Input[int] key_bits: The number of bits to use
|
698
|
-
:param pulumi.Input[str] key_id: The ID of the generated key.
|
699
|
-
:param pulumi.Input[str] key_name: When a new key is created with this request, optionally specifies
|
697
|
+
:param pulumi.Input[builtins.str] issuing_ca: The issuing CA certificate.
|
698
|
+
:param pulumi.Input[builtins.int] key_bits: The number of bits to use
|
699
|
+
:param pulumi.Input[builtins.str] key_id: The ID of the generated key.
|
700
|
+
:param pulumi.Input[builtins.str] key_name: When a new key is created with this request, optionally specifies
|
700
701
|
the name for this. The global ref `default` may not be used as a name.
|
701
|
-
:param pulumi.Input[str] key_ref: Specifies the key (either default, by name, or by identifier) to use
|
702
|
+
:param pulumi.Input[builtins.str] key_ref: Specifies the key (either default, by name, or by identifier) to use
|
702
703
|
for generating this request. Only suitable for `type=existing` requests.
|
703
|
-
:param pulumi.Input[str] key_type: The desired key type
|
704
|
-
:param pulumi.Input[str] locality: The locality
|
705
|
-
:param pulumi.Input[str] managed_key_id: The ID of the previously configured managed key. This field is
|
704
|
+
:param pulumi.Input[builtins.str] key_type: The desired key type
|
705
|
+
:param pulumi.Input[builtins.str] locality: The locality
|
706
|
+
:param pulumi.Input[builtins.str] managed_key_id: The ID of the previously configured managed key. This field is
|
706
707
|
required if `type` is `kms` and it conflicts with `managed_key_name`
|
707
|
-
:param pulumi.Input[str] managed_key_name: The name of the previously configured managed key. This field is
|
708
|
+
:param pulumi.Input[builtins.str] managed_key_name: The name of the previously configured managed key. This field is
|
708
709
|
required if `type` is `kms` and it conflicts with `managed_key_id`
|
709
|
-
:param pulumi.Input[int] max_path_length: The maximum path length to encode in the generated certificate
|
710
|
-
:param pulumi.Input[str] namespace: The namespace to provision the resource in.
|
710
|
+
:param pulumi.Input[builtins.int] max_path_length: The maximum path length to encode in the generated certificate
|
711
|
+
:param pulumi.Input[builtins.str] namespace: The namespace to provision the resource in.
|
711
712
|
The value should not contain leading or trailing forward slashes.
|
712
713
|
The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault/index.html#namespace).
|
713
714
|
*Available only for Vault Enterprise*.
|
714
|
-
:param pulumi.Input[str] not_after: Set the Not After field of the certificate with specified date value. The value format should be given in UTC format YYYY-MM-ddTHH:MM:SSZ. Supports the Y10K end date for IEEE 802.1AR-2018 standard devices, 9999-12-31T23:59:59Z.
|
715
|
-
:param pulumi.Input[str] organization: The organization
|
716
|
-
:param pulumi.Input[Sequence[pulumi.Input[str]]] other_sans: List of other SANs
|
717
|
-
:param pulumi.Input[str] ou: The organization unit
|
718
|
-
:param pulumi.Input[Sequence[pulumi.Input[str]]] permitted_dns_domains: List of domains for which certificates are allowed to be issued
|
719
|
-
:param pulumi.Input[Sequence[pulumi.Input[str]]] permitted_email_addresses: List of email addresses for which certificates are allowed to be issued. Requires Vault version 1.19+.
|
720
|
-
:param pulumi.Input[Sequence[pulumi.Input[str]]] permitted_ip_ranges: List of IP ranges for which certificates are allowed to be issued. Requires Vault version 1.19+.
|
721
|
-
:param pulumi.Input[Sequence[pulumi.Input[str]]] permitted_uri_domains: List of URI domains for which certificates are allowed to be issued. Requires Vault version 1.19+.
|
722
|
-
:param pulumi.Input[str] postal_code: The postal code
|
723
|
-
:param pulumi.Input[str] private_key_format: The private key format
|
724
|
-
:param pulumi.Input[str] province: The province
|
725
|
-
:param pulumi.Input[str] serial_number: The certificate's serial number, hex formatted.
|
726
|
-
:param pulumi.Input[int] signature_bits: The number of bits to use in the signature algorithm
|
727
|
-
:param pulumi.Input[str] street_address: The street address
|
728
|
-
:param pulumi.Input[str] ttl: Time to live
|
729
|
-
:param pulumi.Input[str] type: Type of intermediate to create. Must be either \\"exported\\", \\"internal\\"
|
715
|
+
:param pulumi.Input[builtins.str] not_after: Set the Not After field of the certificate with specified date value. The value format should be given in UTC format YYYY-MM-ddTHH:MM:SSZ. Supports the Y10K end date for IEEE 802.1AR-2018 standard devices, 9999-12-31T23:59:59Z.
|
716
|
+
:param pulumi.Input[builtins.str] organization: The organization
|
717
|
+
:param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] other_sans: List of other SANs
|
718
|
+
:param pulumi.Input[builtins.str] ou: The organization unit
|
719
|
+
:param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] permitted_dns_domains: List of domains for which certificates are allowed to be issued
|
720
|
+
:param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] permitted_email_addresses: List of email addresses for which certificates are allowed to be issued. Requires Vault version 1.19+.
|
721
|
+
:param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] permitted_ip_ranges: List of IP ranges for which certificates are allowed to be issued. Requires Vault version 1.19+.
|
722
|
+
:param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] permitted_uri_domains: List of URI domains for which certificates are allowed to be issued. Requires Vault version 1.19+.
|
723
|
+
:param pulumi.Input[builtins.str] postal_code: The postal code
|
724
|
+
:param pulumi.Input[builtins.str] private_key_format: The private key format
|
725
|
+
:param pulumi.Input[builtins.str] province: The province
|
726
|
+
:param pulumi.Input[builtins.str] serial_number: The certificate's serial number, hex formatted.
|
727
|
+
:param pulumi.Input[builtins.int] signature_bits: The number of bits to use in the signature algorithm
|
728
|
+
:param pulumi.Input[builtins.str] street_address: The street address
|
729
|
+
:param pulumi.Input[builtins.str] ttl: Time to live
|
730
|
+
:param pulumi.Input[builtins.str] type: Type of intermediate to create. Must be either \\"exported\\", \\"internal\\"
|
730
731
|
or \\"kms\\"
|
731
|
-
:param pulumi.Input[Sequence[pulumi.Input[str]]] uri_sans: List of alternative URIs
|
732
|
+
:param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] uri_sans: List of alternative URIs
|
732
733
|
"""
|
733
734
|
if alt_names is not None:
|
734
735
|
pulumi.set(__self__, "alt_names", alt_names)
|
@@ -817,163 +818,163 @@ class _SecretBackendRootCertState:
|
|
817
818
|
|
818
819
|
@property
|
819
820
|
@pulumi.getter(name="altNames")
|
820
|
-
def alt_names(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]:
|
821
|
+
def alt_names(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]:
|
821
822
|
"""
|
822
823
|
List of alternative names
|
823
824
|
"""
|
824
825
|
return pulumi.get(self, "alt_names")
|
825
826
|
|
826
827
|
@alt_names.setter
|
827
|
-
def alt_names(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]):
|
828
|
+
def alt_names(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]):
|
828
829
|
pulumi.set(self, "alt_names", value)
|
829
830
|
|
830
831
|
@property
|
831
832
|
@pulumi.getter
|
832
|
-
def backend(self) -> Optional[pulumi.Input[str]]:
|
833
|
+
def backend(self) -> Optional[pulumi.Input[builtins.str]]:
|
833
834
|
"""
|
834
835
|
The PKI secret backend the resource belongs to.
|
835
836
|
"""
|
836
837
|
return pulumi.get(self, "backend")
|
837
838
|
|
838
839
|
@backend.setter
|
839
|
-
def backend(self, value: Optional[pulumi.Input[str]]):
|
840
|
+
def backend(self, value: Optional[pulumi.Input[builtins.str]]):
|
840
841
|
pulumi.set(self, "backend", value)
|
841
842
|
|
842
843
|
@property
|
843
844
|
@pulumi.getter
|
844
|
-
def certificate(self) -> Optional[pulumi.Input[str]]:
|
845
|
+
def certificate(self) -> Optional[pulumi.Input[builtins.str]]:
|
845
846
|
"""
|
846
847
|
The certificate.
|
847
848
|
"""
|
848
849
|
return pulumi.get(self, "certificate")
|
849
850
|
|
850
851
|
@certificate.setter
|
851
|
-
def certificate(self, value: Optional[pulumi.Input[str]]):
|
852
|
+
def certificate(self, value: Optional[pulumi.Input[builtins.str]]):
|
852
853
|
pulumi.set(self, "certificate", value)
|
853
854
|
|
854
855
|
@property
|
855
856
|
@pulumi.getter(name="commonName")
|
856
|
-
def common_name(self) -> Optional[pulumi.Input[str]]:
|
857
|
+
def common_name(self) -> Optional[pulumi.Input[builtins.str]]:
|
857
858
|
"""
|
858
859
|
CN of intermediate to create
|
859
860
|
"""
|
860
861
|
return pulumi.get(self, "common_name")
|
861
862
|
|
862
863
|
@common_name.setter
|
863
|
-
def common_name(self, value: Optional[pulumi.Input[str]]):
|
864
|
+
def common_name(self, value: Optional[pulumi.Input[builtins.str]]):
|
864
865
|
pulumi.set(self, "common_name", value)
|
865
866
|
|
866
867
|
@property
|
867
868
|
@pulumi.getter
|
868
|
-
def country(self) -> Optional[pulumi.Input[str]]:
|
869
|
+
def country(self) -> Optional[pulumi.Input[builtins.str]]:
|
869
870
|
"""
|
870
871
|
The country
|
871
872
|
"""
|
872
873
|
return pulumi.get(self, "country")
|
873
874
|
|
874
875
|
@country.setter
|
875
|
-
def country(self, value: Optional[pulumi.Input[str]]):
|
876
|
+
def country(self, value: Optional[pulumi.Input[builtins.str]]):
|
876
877
|
pulumi.set(self, "country", value)
|
877
878
|
|
878
879
|
@property
|
879
880
|
@pulumi.getter(name="excludeCnFromSans")
|
880
|
-
def exclude_cn_from_sans(self) -> Optional[pulumi.Input[bool]]:
|
881
|
+
def exclude_cn_from_sans(self) -> Optional[pulumi.Input[builtins.bool]]:
|
881
882
|
"""
|
882
883
|
Flag to exclude CN from SANs
|
883
884
|
"""
|
884
885
|
return pulumi.get(self, "exclude_cn_from_sans")
|
885
886
|
|
886
887
|
@exclude_cn_from_sans.setter
|
887
|
-
def exclude_cn_from_sans(self, value: Optional[pulumi.Input[bool]]):
|
888
|
+
def exclude_cn_from_sans(self, value: Optional[pulumi.Input[builtins.bool]]):
|
888
889
|
pulumi.set(self, "exclude_cn_from_sans", value)
|
889
890
|
|
890
891
|
@property
|
891
892
|
@pulumi.getter(name="excludedDnsDomains")
|
892
|
-
def excluded_dns_domains(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]:
|
893
|
+
def excluded_dns_domains(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]:
|
893
894
|
"""
|
894
895
|
List of domains for which certificates are not allowed to be issued. Requires Vault version 1.19+.
|
895
896
|
"""
|
896
897
|
return pulumi.get(self, "excluded_dns_domains")
|
897
898
|
|
898
899
|
@excluded_dns_domains.setter
|
899
|
-
def excluded_dns_domains(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]):
|
900
|
+
def excluded_dns_domains(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]):
|
900
901
|
pulumi.set(self, "excluded_dns_domains", value)
|
901
902
|
|
902
903
|
@property
|
903
904
|
@pulumi.getter(name="excludedEmailAddresses")
|
904
|
-
def excluded_email_addresses(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]:
|
905
|
+
def excluded_email_addresses(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]:
|
905
906
|
"""
|
906
907
|
List of email addresses for which certificates are not allowed to be issued. Requires Vault version 1.19+.
|
907
908
|
"""
|
908
909
|
return pulumi.get(self, "excluded_email_addresses")
|
909
910
|
|
910
911
|
@excluded_email_addresses.setter
|
911
|
-
def excluded_email_addresses(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]):
|
912
|
+
def excluded_email_addresses(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]):
|
912
913
|
pulumi.set(self, "excluded_email_addresses", value)
|
913
914
|
|
914
915
|
@property
|
915
916
|
@pulumi.getter(name="excludedIpRanges")
|
916
|
-
def excluded_ip_ranges(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]:
|
917
|
+
def excluded_ip_ranges(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]:
|
917
918
|
"""
|
918
919
|
List of IP ranges for which certificates are not allowed to be issued. Requires Vault version 1.19+.
|
919
920
|
"""
|
920
921
|
return pulumi.get(self, "excluded_ip_ranges")
|
921
922
|
|
922
923
|
@excluded_ip_ranges.setter
|
923
|
-
def excluded_ip_ranges(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]):
|
924
|
+
def excluded_ip_ranges(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]):
|
924
925
|
pulumi.set(self, "excluded_ip_ranges", value)
|
925
926
|
|
926
927
|
@property
|
927
928
|
@pulumi.getter(name="excludedUriDomains")
|
928
|
-
def excluded_uri_domains(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]:
|
929
|
+
def excluded_uri_domains(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]:
|
929
930
|
"""
|
930
931
|
List of URI domains for which certificates are not allowed to be issued. Requires Vault version 1.19+.
|
931
932
|
"""
|
932
933
|
return pulumi.get(self, "excluded_uri_domains")
|
933
934
|
|
934
935
|
@excluded_uri_domains.setter
|
935
|
-
def excluded_uri_domains(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]):
|
936
|
+
def excluded_uri_domains(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]):
|
936
937
|
pulumi.set(self, "excluded_uri_domains", value)
|
937
938
|
|
938
939
|
@property
|
939
940
|
@pulumi.getter
|
940
|
-
def format(self) -> Optional[pulumi.Input[str]]:
|
941
|
+
def format(self) -> Optional[pulumi.Input[builtins.str]]:
|
941
942
|
"""
|
942
943
|
The format of data
|
943
944
|
"""
|
944
945
|
return pulumi.get(self, "format")
|
945
946
|
|
946
947
|
@format.setter
|
947
|
-
def format(self, value: Optional[pulumi.Input[str]]):
|
948
|
+
def format(self, value: Optional[pulumi.Input[builtins.str]]):
|
948
949
|
pulumi.set(self, "format", value)
|
949
950
|
|
950
951
|
@property
|
951
952
|
@pulumi.getter(name="ipSans")
|
952
|
-
def ip_sans(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]:
|
953
|
+
def ip_sans(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]:
|
953
954
|
"""
|
954
955
|
List of alternative IPs
|
955
956
|
"""
|
956
957
|
return pulumi.get(self, "ip_sans")
|
957
958
|
|
958
959
|
@ip_sans.setter
|
959
|
-
def ip_sans(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]):
|
960
|
+
def ip_sans(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]):
|
960
961
|
pulumi.set(self, "ip_sans", value)
|
961
962
|
|
962
963
|
@property
|
963
964
|
@pulumi.getter(name="issuerId")
|
964
|
-
def issuer_id(self) -> Optional[pulumi.Input[str]]:
|
965
|
+
def issuer_id(self) -> Optional[pulumi.Input[builtins.str]]:
|
965
966
|
"""
|
966
967
|
The ID of the generated issuer.
|
967
968
|
"""
|
968
969
|
return pulumi.get(self, "issuer_id")
|
969
970
|
|
970
971
|
@issuer_id.setter
|
971
|
-
def issuer_id(self, value: Optional[pulumi.Input[str]]):
|
972
|
+
def issuer_id(self, value: Optional[pulumi.Input[builtins.str]]):
|
972
973
|
pulumi.set(self, "issuer_id", value)
|
973
974
|
|
974
975
|
@property
|
975
976
|
@pulumi.getter(name="issuerName")
|
976
|
-
def issuer_name(self) -> Optional[pulumi.Input[str]]:
|
977
|
+
def issuer_name(self) -> Optional[pulumi.Input[builtins.str]]:
|
977
978
|
"""
|
978
979
|
Provides a name to the specified issuer. The name must be unique
|
979
980
|
across all issuers and not be the reserved value `default`
|
@@ -981,48 +982,48 @@ class _SecretBackendRootCertState:
|
|
981
982
|
return pulumi.get(self, "issuer_name")
|
982
983
|
|
983
984
|
@issuer_name.setter
|
984
|
-
def issuer_name(self, value: Optional[pulumi.Input[str]]):
|
985
|
+
def issuer_name(self, value: Optional[pulumi.Input[builtins.str]]):
|
985
986
|
pulumi.set(self, "issuer_name", value)
|
986
987
|
|
987
988
|
@property
|
988
989
|
@pulumi.getter(name="issuingCa")
|
989
|
-
def issuing_ca(self) -> Optional[pulumi.Input[str]]:
|
990
|
+
def issuing_ca(self) -> Optional[pulumi.Input[builtins.str]]:
|
990
991
|
"""
|
991
992
|
The issuing CA certificate.
|
992
993
|
"""
|
993
994
|
return pulumi.get(self, "issuing_ca")
|
994
995
|
|
995
996
|
@issuing_ca.setter
|
996
|
-
def issuing_ca(self, value: Optional[pulumi.Input[str]]):
|
997
|
+
def issuing_ca(self, value: Optional[pulumi.Input[builtins.str]]):
|
997
998
|
pulumi.set(self, "issuing_ca", value)
|
998
999
|
|
999
1000
|
@property
|
1000
1001
|
@pulumi.getter(name="keyBits")
|
1001
|
-
def key_bits(self) -> Optional[pulumi.Input[int]]:
|
1002
|
+
def key_bits(self) -> Optional[pulumi.Input[builtins.int]]:
|
1002
1003
|
"""
|
1003
1004
|
The number of bits to use
|
1004
1005
|
"""
|
1005
1006
|
return pulumi.get(self, "key_bits")
|
1006
1007
|
|
1007
1008
|
@key_bits.setter
|
1008
|
-
def key_bits(self, value: Optional[pulumi.Input[int]]):
|
1009
|
+
def key_bits(self, value: Optional[pulumi.Input[builtins.int]]):
|
1009
1010
|
pulumi.set(self, "key_bits", value)
|
1010
1011
|
|
1011
1012
|
@property
|
1012
1013
|
@pulumi.getter(name="keyId")
|
1013
|
-
def key_id(self) -> Optional[pulumi.Input[str]]:
|
1014
|
+
def key_id(self) -> Optional[pulumi.Input[builtins.str]]:
|
1014
1015
|
"""
|
1015
1016
|
The ID of the generated key.
|
1016
1017
|
"""
|
1017
1018
|
return pulumi.get(self, "key_id")
|
1018
1019
|
|
1019
1020
|
@key_id.setter
|
1020
|
-
def key_id(self, value: Optional[pulumi.Input[str]]):
|
1021
|
+
def key_id(self, value: Optional[pulumi.Input[builtins.str]]):
|
1021
1022
|
pulumi.set(self, "key_id", value)
|
1022
1023
|
|
1023
1024
|
@property
|
1024
1025
|
@pulumi.getter(name="keyName")
|
1025
|
-
def key_name(self) -> Optional[pulumi.Input[str]]:
|
1026
|
+
def key_name(self) -> Optional[pulumi.Input[builtins.str]]:
|
1026
1027
|
"""
|
1027
1028
|
When a new key is created with this request, optionally specifies
|
1028
1029
|
the name for this. The global ref `default` may not be used as a name.
|
@@ -1030,12 +1031,12 @@ class _SecretBackendRootCertState:
|
|
1030
1031
|
return pulumi.get(self, "key_name")
|
1031
1032
|
|
1032
1033
|
@key_name.setter
|
1033
|
-
def key_name(self, value: Optional[pulumi.Input[str]]):
|
1034
|
+
def key_name(self, value: Optional[pulumi.Input[builtins.str]]):
|
1034
1035
|
pulumi.set(self, "key_name", value)
|
1035
1036
|
|
1036
1037
|
@property
|
1037
1038
|
@pulumi.getter(name="keyRef")
|
1038
|
-
def key_ref(self) -> Optional[pulumi.Input[str]]:
|
1039
|
+
def key_ref(self) -> Optional[pulumi.Input[builtins.str]]:
|
1039
1040
|
"""
|
1040
1041
|
Specifies the key (either default, by name, or by identifier) to use
|
1041
1042
|
for generating this request. Only suitable for `type=existing` requests.
|
@@ -1043,36 +1044,36 @@ class _SecretBackendRootCertState:
|
|
1043
1044
|
return pulumi.get(self, "key_ref")
|
1044
1045
|
|
1045
1046
|
@key_ref.setter
|
1046
|
-
def key_ref(self, value: Optional[pulumi.Input[str]]):
|
1047
|
+
def key_ref(self, value: Optional[pulumi.Input[builtins.str]]):
|
1047
1048
|
pulumi.set(self, "key_ref", value)
|
1048
1049
|
|
1049
1050
|
@property
|
1050
1051
|
@pulumi.getter(name="keyType")
|
1051
|
-
def key_type(self) -> Optional[pulumi.Input[str]]:
|
1052
|
+
def key_type(self) -> Optional[pulumi.Input[builtins.str]]:
|
1052
1053
|
"""
|
1053
1054
|
The desired key type
|
1054
1055
|
"""
|
1055
1056
|
return pulumi.get(self, "key_type")
|
1056
1057
|
|
1057
1058
|
@key_type.setter
|
1058
|
-
def key_type(self, value: Optional[pulumi.Input[str]]):
|
1059
|
+
def key_type(self, value: Optional[pulumi.Input[builtins.str]]):
|
1059
1060
|
pulumi.set(self, "key_type", value)
|
1060
1061
|
|
1061
1062
|
@property
|
1062
1063
|
@pulumi.getter
|
1063
|
-
def locality(self) -> Optional[pulumi.Input[str]]:
|
1064
|
+
def locality(self) -> Optional[pulumi.Input[builtins.str]]:
|
1064
1065
|
"""
|
1065
1066
|
The locality
|
1066
1067
|
"""
|
1067
1068
|
return pulumi.get(self, "locality")
|
1068
1069
|
|
1069
1070
|
@locality.setter
|
1070
|
-
def locality(self, value: Optional[pulumi.Input[str]]):
|
1071
|
+
def locality(self, value: Optional[pulumi.Input[builtins.str]]):
|
1071
1072
|
pulumi.set(self, "locality", value)
|
1072
1073
|
|
1073
1074
|
@property
|
1074
1075
|
@pulumi.getter(name="managedKeyId")
|
1075
|
-
def managed_key_id(self) -> Optional[pulumi.Input[str]]:
|
1076
|
+
def managed_key_id(self) -> Optional[pulumi.Input[builtins.str]]:
|
1076
1077
|
"""
|
1077
1078
|
The ID of the previously configured managed key. This field is
|
1078
1079
|
required if `type` is `kms` and it conflicts with `managed_key_name`
|
@@ -1080,12 +1081,12 @@ class _SecretBackendRootCertState:
|
|
1080
1081
|
return pulumi.get(self, "managed_key_id")
|
1081
1082
|
|
1082
1083
|
@managed_key_id.setter
|
1083
|
-
def managed_key_id(self, value: Optional[pulumi.Input[str]]):
|
1084
|
+
def managed_key_id(self, value: Optional[pulumi.Input[builtins.str]]):
|
1084
1085
|
pulumi.set(self, "managed_key_id", value)
|
1085
1086
|
|
1086
1087
|
@property
|
1087
1088
|
@pulumi.getter(name="managedKeyName")
|
1088
|
-
def managed_key_name(self) -> Optional[pulumi.Input[str]]:
|
1089
|
+
def managed_key_name(self) -> Optional[pulumi.Input[builtins.str]]:
|
1089
1090
|
"""
|
1090
1091
|
The name of the previously configured managed key. This field is
|
1091
1092
|
required if `type` is `kms` and it conflicts with `managed_key_id`
|
@@ -1093,24 +1094,24 @@ class _SecretBackendRootCertState:
|
|
1093
1094
|
return pulumi.get(self, "managed_key_name")
|
1094
1095
|
|
1095
1096
|
@managed_key_name.setter
|
1096
|
-
def managed_key_name(self, value: Optional[pulumi.Input[str]]):
|
1097
|
+
def managed_key_name(self, value: Optional[pulumi.Input[builtins.str]]):
|
1097
1098
|
pulumi.set(self, "managed_key_name", value)
|
1098
1099
|
|
1099
1100
|
@property
|
1100
1101
|
@pulumi.getter(name="maxPathLength")
|
1101
|
-
def max_path_length(self) -> Optional[pulumi.Input[int]]:
|
1102
|
+
def max_path_length(self) -> Optional[pulumi.Input[builtins.int]]:
|
1102
1103
|
"""
|
1103
1104
|
The maximum path length to encode in the generated certificate
|
1104
1105
|
"""
|
1105
1106
|
return pulumi.get(self, "max_path_length")
|
1106
1107
|
|
1107
1108
|
@max_path_length.setter
|
1108
|
-
def max_path_length(self, value: Optional[pulumi.Input[int]]):
|
1109
|
+
def max_path_length(self, value: Optional[pulumi.Input[builtins.int]]):
|
1109
1110
|
pulumi.set(self, "max_path_length", value)
|
1110
1111
|
|
1111
1112
|
@property
|
1112
1113
|
@pulumi.getter
|
1113
|
-
def namespace(self) -> Optional[pulumi.Input[str]]:
|
1114
|
+
def namespace(self) -> Optional[pulumi.Input[builtins.str]]:
|
1114
1115
|
"""
|
1115
1116
|
The namespace to provision the resource in.
|
1116
1117
|
The value should not contain leading or trailing forward slashes.
|
@@ -1120,192 +1121,192 @@ class _SecretBackendRootCertState:
|
|
1120
1121
|
return pulumi.get(self, "namespace")
|
1121
1122
|
|
1122
1123
|
@namespace.setter
|
1123
|
-
def namespace(self, value: Optional[pulumi.Input[str]]):
|
1124
|
+
def namespace(self, value: Optional[pulumi.Input[builtins.str]]):
|
1124
1125
|
pulumi.set(self, "namespace", value)
|
1125
1126
|
|
1126
1127
|
@property
|
1127
1128
|
@pulumi.getter(name="notAfter")
|
1128
|
-
def not_after(self) -> Optional[pulumi.Input[str]]:
|
1129
|
+
def not_after(self) -> Optional[pulumi.Input[builtins.str]]:
|
1129
1130
|
"""
|
1130
1131
|
Set the Not After field of the certificate with specified date value. The value format should be given in UTC format YYYY-MM-ddTHH:MM:SSZ. Supports the Y10K end date for IEEE 802.1AR-2018 standard devices, 9999-12-31T23:59:59Z.
|
1131
1132
|
"""
|
1132
1133
|
return pulumi.get(self, "not_after")
|
1133
1134
|
|
1134
1135
|
@not_after.setter
|
1135
|
-
def not_after(self, value: Optional[pulumi.Input[str]]):
|
1136
|
+
def not_after(self, value: Optional[pulumi.Input[builtins.str]]):
|
1136
1137
|
pulumi.set(self, "not_after", value)
|
1137
1138
|
|
1138
1139
|
@property
|
1139
1140
|
@pulumi.getter
|
1140
|
-
def organization(self) -> Optional[pulumi.Input[str]]:
|
1141
|
+
def organization(self) -> Optional[pulumi.Input[builtins.str]]:
|
1141
1142
|
"""
|
1142
1143
|
The organization
|
1143
1144
|
"""
|
1144
1145
|
return pulumi.get(self, "organization")
|
1145
1146
|
|
1146
1147
|
@organization.setter
|
1147
|
-
def organization(self, value: Optional[pulumi.Input[str]]):
|
1148
|
+
def organization(self, value: Optional[pulumi.Input[builtins.str]]):
|
1148
1149
|
pulumi.set(self, "organization", value)
|
1149
1150
|
|
1150
1151
|
@property
|
1151
1152
|
@pulumi.getter(name="otherSans")
|
1152
|
-
def other_sans(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]:
|
1153
|
+
def other_sans(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]:
|
1153
1154
|
"""
|
1154
1155
|
List of other SANs
|
1155
1156
|
"""
|
1156
1157
|
return pulumi.get(self, "other_sans")
|
1157
1158
|
|
1158
1159
|
@other_sans.setter
|
1159
|
-
def other_sans(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]):
|
1160
|
+
def other_sans(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]):
|
1160
1161
|
pulumi.set(self, "other_sans", value)
|
1161
1162
|
|
1162
1163
|
@property
|
1163
1164
|
@pulumi.getter
|
1164
|
-
def ou(self) -> Optional[pulumi.Input[str]]:
|
1165
|
+
def ou(self) -> Optional[pulumi.Input[builtins.str]]:
|
1165
1166
|
"""
|
1166
1167
|
The organization unit
|
1167
1168
|
"""
|
1168
1169
|
return pulumi.get(self, "ou")
|
1169
1170
|
|
1170
1171
|
@ou.setter
|
1171
|
-
def ou(self, value: Optional[pulumi.Input[str]]):
|
1172
|
+
def ou(self, value: Optional[pulumi.Input[builtins.str]]):
|
1172
1173
|
pulumi.set(self, "ou", value)
|
1173
1174
|
|
1174
1175
|
@property
|
1175
1176
|
@pulumi.getter(name="permittedDnsDomains")
|
1176
|
-
def permitted_dns_domains(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]:
|
1177
|
+
def permitted_dns_domains(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]:
|
1177
1178
|
"""
|
1178
1179
|
List of domains for which certificates are allowed to be issued
|
1179
1180
|
"""
|
1180
1181
|
return pulumi.get(self, "permitted_dns_domains")
|
1181
1182
|
|
1182
1183
|
@permitted_dns_domains.setter
|
1183
|
-
def permitted_dns_domains(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]):
|
1184
|
+
def permitted_dns_domains(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]):
|
1184
1185
|
pulumi.set(self, "permitted_dns_domains", value)
|
1185
1186
|
|
1186
1187
|
@property
|
1187
1188
|
@pulumi.getter(name="permittedEmailAddresses")
|
1188
|
-
def permitted_email_addresses(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]:
|
1189
|
+
def permitted_email_addresses(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]:
|
1189
1190
|
"""
|
1190
1191
|
List of email addresses for which certificates are allowed to be issued. Requires Vault version 1.19+.
|
1191
1192
|
"""
|
1192
1193
|
return pulumi.get(self, "permitted_email_addresses")
|
1193
1194
|
|
1194
1195
|
@permitted_email_addresses.setter
|
1195
|
-
def permitted_email_addresses(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]):
|
1196
|
+
def permitted_email_addresses(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]):
|
1196
1197
|
pulumi.set(self, "permitted_email_addresses", value)
|
1197
1198
|
|
1198
1199
|
@property
|
1199
1200
|
@pulumi.getter(name="permittedIpRanges")
|
1200
|
-
def permitted_ip_ranges(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]:
|
1201
|
+
def permitted_ip_ranges(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]:
|
1201
1202
|
"""
|
1202
1203
|
List of IP ranges for which certificates are allowed to be issued. Requires Vault version 1.19+.
|
1203
1204
|
"""
|
1204
1205
|
return pulumi.get(self, "permitted_ip_ranges")
|
1205
1206
|
|
1206
1207
|
@permitted_ip_ranges.setter
|
1207
|
-
def permitted_ip_ranges(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]):
|
1208
|
+
def permitted_ip_ranges(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]):
|
1208
1209
|
pulumi.set(self, "permitted_ip_ranges", value)
|
1209
1210
|
|
1210
1211
|
@property
|
1211
1212
|
@pulumi.getter(name="permittedUriDomains")
|
1212
|
-
def permitted_uri_domains(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]:
|
1213
|
+
def permitted_uri_domains(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]:
|
1213
1214
|
"""
|
1214
1215
|
List of URI domains for which certificates are allowed to be issued. Requires Vault version 1.19+.
|
1215
1216
|
"""
|
1216
1217
|
return pulumi.get(self, "permitted_uri_domains")
|
1217
1218
|
|
1218
1219
|
@permitted_uri_domains.setter
|
1219
|
-
def permitted_uri_domains(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]):
|
1220
|
+
def permitted_uri_domains(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]):
|
1220
1221
|
pulumi.set(self, "permitted_uri_domains", value)
|
1221
1222
|
|
1222
1223
|
@property
|
1223
1224
|
@pulumi.getter(name="postalCode")
|
1224
|
-
def postal_code(self) -> Optional[pulumi.Input[str]]:
|
1225
|
+
def postal_code(self) -> Optional[pulumi.Input[builtins.str]]:
|
1225
1226
|
"""
|
1226
1227
|
The postal code
|
1227
1228
|
"""
|
1228
1229
|
return pulumi.get(self, "postal_code")
|
1229
1230
|
|
1230
1231
|
@postal_code.setter
|
1231
|
-
def postal_code(self, value: Optional[pulumi.Input[str]]):
|
1232
|
+
def postal_code(self, value: Optional[pulumi.Input[builtins.str]]):
|
1232
1233
|
pulumi.set(self, "postal_code", value)
|
1233
1234
|
|
1234
1235
|
@property
|
1235
1236
|
@pulumi.getter(name="privateKeyFormat")
|
1236
|
-
def private_key_format(self) -> Optional[pulumi.Input[str]]:
|
1237
|
+
def private_key_format(self) -> Optional[pulumi.Input[builtins.str]]:
|
1237
1238
|
"""
|
1238
1239
|
The private key format
|
1239
1240
|
"""
|
1240
1241
|
return pulumi.get(self, "private_key_format")
|
1241
1242
|
|
1242
1243
|
@private_key_format.setter
|
1243
|
-
def private_key_format(self, value: Optional[pulumi.Input[str]]):
|
1244
|
+
def private_key_format(self, value: Optional[pulumi.Input[builtins.str]]):
|
1244
1245
|
pulumi.set(self, "private_key_format", value)
|
1245
1246
|
|
1246
1247
|
@property
|
1247
1248
|
@pulumi.getter
|
1248
|
-
def province(self) -> Optional[pulumi.Input[str]]:
|
1249
|
+
def province(self) -> Optional[pulumi.Input[builtins.str]]:
|
1249
1250
|
"""
|
1250
1251
|
The province
|
1251
1252
|
"""
|
1252
1253
|
return pulumi.get(self, "province")
|
1253
1254
|
|
1254
1255
|
@province.setter
|
1255
|
-
def province(self, value: Optional[pulumi.Input[str]]):
|
1256
|
+
def province(self, value: Optional[pulumi.Input[builtins.str]]):
|
1256
1257
|
pulumi.set(self, "province", value)
|
1257
1258
|
|
1258
1259
|
@property
|
1259
1260
|
@pulumi.getter(name="serialNumber")
|
1260
|
-
def serial_number(self) -> Optional[pulumi.Input[str]]:
|
1261
|
+
def serial_number(self) -> Optional[pulumi.Input[builtins.str]]:
|
1261
1262
|
"""
|
1262
1263
|
The certificate's serial number, hex formatted.
|
1263
1264
|
"""
|
1264
1265
|
return pulumi.get(self, "serial_number")
|
1265
1266
|
|
1266
1267
|
@serial_number.setter
|
1267
|
-
def serial_number(self, value: Optional[pulumi.Input[str]]):
|
1268
|
+
def serial_number(self, value: Optional[pulumi.Input[builtins.str]]):
|
1268
1269
|
pulumi.set(self, "serial_number", value)
|
1269
1270
|
|
1270
1271
|
@property
|
1271
1272
|
@pulumi.getter(name="signatureBits")
|
1272
|
-
def signature_bits(self) -> Optional[pulumi.Input[int]]:
|
1273
|
+
def signature_bits(self) -> Optional[pulumi.Input[builtins.int]]:
|
1273
1274
|
"""
|
1274
1275
|
The number of bits to use in the signature algorithm
|
1275
1276
|
"""
|
1276
1277
|
return pulumi.get(self, "signature_bits")
|
1277
1278
|
|
1278
1279
|
@signature_bits.setter
|
1279
|
-
def signature_bits(self, value: Optional[pulumi.Input[int]]):
|
1280
|
+
def signature_bits(self, value: Optional[pulumi.Input[builtins.int]]):
|
1280
1281
|
pulumi.set(self, "signature_bits", value)
|
1281
1282
|
|
1282
1283
|
@property
|
1283
1284
|
@pulumi.getter(name="streetAddress")
|
1284
|
-
def street_address(self) -> Optional[pulumi.Input[str]]:
|
1285
|
+
def street_address(self) -> Optional[pulumi.Input[builtins.str]]:
|
1285
1286
|
"""
|
1286
1287
|
The street address
|
1287
1288
|
"""
|
1288
1289
|
return pulumi.get(self, "street_address")
|
1289
1290
|
|
1290
1291
|
@street_address.setter
|
1291
|
-
def street_address(self, value: Optional[pulumi.Input[str]]):
|
1292
|
+
def street_address(self, value: Optional[pulumi.Input[builtins.str]]):
|
1292
1293
|
pulumi.set(self, "street_address", value)
|
1293
1294
|
|
1294
1295
|
@property
|
1295
1296
|
@pulumi.getter
|
1296
|
-
def ttl(self) -> Optional[pulumi.Input[str]]:
|
1297
|
+
def ttl(self) -> Optional[pulumi.Input[builtins.str]]:
|
1297
1298
|
"""
|
1298
1299
|
Time to live
|
1299
1300
|
"""
|
1300
1301
|
return pulumi.get(self, "ttl")
|
1301
1302
|
|
1302
1303
|
@ttl.setter
|
1303
|
-
def ttl(self, value: Optional[pulumi.Input[str]]):
|
1304
|
+
def ttl(self, value: Optional[pulumi.Input[builtins.str]]):
|
1304
1305
|
pulumi.set(self, "ttl", value)
|
1305
1306
|
|
1306
1307
|
@property
|
1307
1308
|
@pulumi.getter
|
1308
|
-
def type(self) -> Optional[pulumi.Input[str]]:
|
1309
|
+
def type(self) -> Optional[pulumi.Input[builtins.str]]:
|
1309
1310
|
"""
|
1310
1311
|
Type of intermediate to create. Must be either \\"exported\\", \\"internal\\"
|
1311
1312
|
or \\"kms\\"
|
@@ -1313,19 +1314,19 @@ class _SecretBackendRootCertState:
|
|
1313
1314
|
return pulumi.get(self, "type")
|
1314
1315
|
|
1315
1316
|
@type.setter
|
1316
|
-
def type(self, value: Optional[pulumi.Input[str]]):
|
1317
|
+
def type(self, value: Optional[pulumi.Input[builtins.str]]):
|
1317
1318
|
pulumi.set(self, "type", value)
|
1318
1319
|
|
1319
1320
|
@property
|
1320
1321
|
@pulumi.getter(name="uriSans")
|
1321
|
-
def uri_sans(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]:
|
1322
|
+
def uri_sans(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]:
|
1322
1323
|
"""
|
1323
1324
|
List of alternative URIs
|
1324
1325
|
"""
|
1325
1326
|
return pulumi.get(self, "uri_sans")
|
1326
1327
|
|
1327
1328
|
@uri_sans.setter
|
1328
|
-
def uri_sans(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]):
|
1329
|
+
def uri_sans(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]):
|
1329
1330
|
pulumi.set(self, "uri_sans", value)
|
1330
1331
|
|
1331
1332
|
|
@@ -1334,43 +1335,43 @@ class SecretBackendRootCert(pulumi.CustomResource):
|
|
1334
1335
|
def __init__(__self__,
|
1335
1336
|
resource_name: str,
|
1336
1337
|
opts: Optional[pulumi.ResourceOptions] = None,
|
1337
|
-
alt_names: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
|
1338
|
-
backend: Optional[pulumi.Input[str]] = None,
|
1339
|
-
common_name: Optional[pulumi.Input[str]] = None,
|
1340
|
-
country: Optional[pulumi.Input[str]] = None,
|
1341
|
-
exclude_cn_from_sans: Optional[pulumi.Input[bool]] = None,
|
1342
|
-
excluded_dns_domains: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
|
1343
|
-
excluded_email_addresses: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
|
1344
|
-
excluded_ip_ranges: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
|
1345
|
-
excluded_uri_domains: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
|
1346
|
-
format: Optional[pulumi.Input[str]] = None,
|
1347
|
-
ip_sans: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
|
1348
|
-
issuer_name: Optional[pulumi.Input[str]] = None,
|
1349
|
-
key_bits: Optional[pulumi.Input[int]] = None,
|
1350
|
-
key_name: Optional[pulumi.Input[str]] = None,
|
1351
|
-
key_ref: Optional[pulumi.Input[str]] = None,
|
1352
|
-
key_type: Optional[pulumi.Input[str]] = None,
|
1353
|
-
locality: Optional[pulumi.Input[str]] = None,
|
1354
|
-
managed_key_id: Optional[pulumi.Input[str]] = None,
|
1355
|
-
managed_key_name: Optional[pulumi.Input[str]] = None,
|
1356
|
-
max_path_length: Optional[pulumi.Input[int]] = None,
|
1357
|
-
namespace: Optional[pulumi.Input[str]] = None,
|
1358
|
-
not_after: Optional[pulumi.Input[str]] = None,
|
1359
|
-
organization: Optional[pulumi.Input[str]] = None,
|
1360
|
-
other_sans: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
|
1361
|
-
ou: Optional[pulumi.Input[str]] = None,
|
1362
|
-
permitted_dns_domains: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
|
1363
|
-
permitted_email_addresses: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
|
1364
|
-
permitted_ip_ranges: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
|
1365
|
-
permitted_uri_domains: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
|
1366
|
-
postal_code: Optional[pulumi.Input[str]] = None,
|
1367
|
-
private_key_format: Optional[pulumi.Input[str]] = None,
|
1368
|
-
province: Optional[pulumi.Input[str]] = None,
|
1369
|
-
signature_bits: Optional[pulumi.Input[int]] = None,
|
1370
|
-
street_address: Optional[pulumi.Input[str]] = None,
|
1371
|
-
ttl: Optional[pulumi.Input[str]] = None,
|
1372
|
-
type: Optional[pulumi.Input[str]] = None,
|
1373
|
-
uri_sans: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
|
1338
|
+
alt_names: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
|
1339
|
+
backend: Optional[pulumi.Input[builtins.str]] = None,
|
1340
|
+
common_name: Optional[pulumi.Input[builtins.str]] = None,
|
1341
|
+
country: Optional[pulumi.Input[builtins.str]] = None,
|
1342
|
+
exclude_cn_from_sans: Optional[pulumi.Input[builtins.bool]] = None,
|
1343
|
+
excluded_dns_domains: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
|
1344
|
+
excluded_email_addresses: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
|
1345
|
+
excluded_ip_ranges: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
|
1346
|
+
excluded_uri_domains: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
|
1347
|
+
format: Optional[pulumi.Input[builtins.str]] = None,
|
1348
|
+
ip_sans: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
|
1349
|
+
issuer_name: Optional[pulumi.Input[builtins.str]] = None,
|
1350
|
+
key_bits: Optional[pulumi.Input[builtins.int]] = None,
|
1351
|
+
key_name: Optional[pulumi.Input[builtins.str]] = None,
|
1352
|
+
key_ref: Optional[pulumi.Input[builtins.str]] = None,
|
1353
|
+
key_type: Optional[pulumi.Input[builtins.str]] = None,
|
1354
|
+
locality: Optional[pulumi.Input[builtins.str]] = None,
|
1355
|
+
managed_key_id: Optional[pulumi.Input[builtins.str]] = None,
|
1356
|
+
managed_key_name: Optional[pulumi.Input[builtins.str]] = None,
|
1357
|
+
max_path_length: Optional[pulumi.Input[builtins.int]] = None,
|
1358
|
+
namespace: Optional[pulumi.Input[builtins.str]] = None,
|
1359
|
+
not_after: Optional[pulumi.Input[builtins.str]] = None,
|
1360
|
+
organization: Optional[pulumi.Input[builtins.str]] = None,
|
1361
|
+
other_sans: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
|
1362
|
+
ou: Optional[pulumi.Input[builtins.str]] = None,
|
1363
|
+
permitted_dns_domains: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
|
1364
|
+
permitted_email_addresses: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
|
1365
|
+
permitted_ip_ranges: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
|
1366
|
+
permitted_uri_domains: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
|
1367
|
+
postal_code: Optional[pulumi.Input[builtins.str]] = None,
|
1368
|
+
private_key_format: Optional[pulumi.Input[builtins.str]] = None,
|
1369
|
+
province: Optional[pulumi.Input[builtins.str]] = None,
|
1370
|
+
signature_bits: Optional[pulumi.Input[builtins.int]] = None,
|
1371
|
+
street_address: Optional[pulumi.Input[builtins.str]] = None,
|
1372
|
+
ttl: Optional[pulumi.Input[builtins.str]] = None,
|
1373
|
+
type: Optional[pulumi.Input[builtins.str]] = None,
|
1374
|
+
uri_sans: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
|
1374
1375
|
__props__=None):
|
1375
1376
|
"""
|
1376
1377
|
## Example Usage
|
@@ -1396,52 +1397,52 @@ class SecretBackendRootCert(pulumi.CustomResource):
|
|
1396
1397
|
|
1397
1398
|
:param str resource_name: The name of the resource.
|
1398
1399
|
:param pulumi.ResourceOptions opts: Options for the resource.
|
1399
|
-
:param pulumi.Input[Sequence[pulumi.Input[str]]] alt_names: List of alternative names
|
1400
|
-
:param pulumi.Input[str] backend: The PKI secret backend the resource belongs to.
|
1401
|
-
:param pulumi.Input[str] common_name: CN of intermediate to create
|
1402
|
-
:param pulumi.Input[str] country: The country
|
1403
|
-
:param pulumi.Input[bool] exclude_cn_from_sans: Flag to exclude CN from SANs
|
1404
|
-
:param pulumi.Input[Sequence[pulumi.Input[str]]] excluded_dns_domains: List of domains for which certificates are not allowed to be issued. Requires Vault version 1.19+.
|
1405
|
-
:param pulumi.Input[Sequence[pulumi.Input[str]]] excluded_email_addresses: List of email addresses for which certificates are not allowed to be issued. Requires Vault version 1.19+.
|
1406
|
-
:param pulumi.Input[Sequence[pulumi.Input[str]]] excluded_ip_ranges: List of IP ranges for which certificates are not allowed to be issued. Requires Vault version 1.19+.
|
1407
|
-
:param pulumi.Input[Sequence[pulumi.Input[str]]] excluded_uri_domains: List of URI domains for which certificates are not allowed to be issued. Requires Vault version 1.19+.
|
1408
|
-
:param pulumi.Input[str] format: The format of data
|
1409
|
-
:param pulumi.Input[Sequence[pulumi.Input[str]]] ip_sans: List of alternative IPs
|
1410
|
-
:param pulumi.Input[str] issuer_name: Provides a name to the specified issuer. The name must be unique
|
1400
|
+
:param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] alt_names: List of alternative names
|
1401
|
+
:param pulumi.Input[builtins.str] backend: The PKI secret backend the resource belongs to.
|
1402
|
+
:param pulumi.Input[builtins.str] common_name: CN of intermediate to create
|
1403
|
+
:param pulumi.Input[builtins.str] country: The country
|
1404
|
+
:param pulumi.Input[builtins.bool] exclude_cn_from_sans: Flag to exclude CN from SANs
|
1405
|
+
:param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] excluded_dns_domains: List of domains for which certificates are not allowed to be issued. Requires Vault version 1.19+.
|
1406
|
+
:param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] excluded_email_addresses: List of email addresses for which certificates are not allowed to be issued. Requires Vault version 1.19+.
|
1407
|
+
:param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] excluded_ip_ranges: List of IP ranges for which certificates are not allowed to be issued. Requires Vault version 1.19+.
|
1408
|
+
:param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] excluded_uri_domains: List of URI domains for which certificates are not allowed to be issued. Requires Vault version 1.19+.
|
1409
|
+
:param pulumi.Input[builtins.str] format: The format of data
|
1410
|
+
:param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] ip_sans: List of alternative IPs
|
1411
|
+
:param pulumi.Input[builtins.str] issuer_name: Provides a name to the specified issuer. The name must be unique
|
1411
1412
|
across all issuers and not be the reserved value `default`
|
1412
|
-
:param pulumi.Input[int] key_bits: The number of bits to use
|
1413
|
-
:param pulumi.Input[str] key_name: When a new key is created with this request, optionally specifies
|
1413
|
+
:param pulumi.Input[builtins.int] key_bits: The number of bits to use
|
1414
|
+
:param pulumi.Input[builtins.str] key_name: When a new key is created with this request, optionally specifies
|
1414
1415
|
the name for this. The global ref `default` may not be used as a name.
|
1415
|
-
:param pulumi.Input[str] key_ref: Specifies the key (either default, by name, or by identifier) to use
|
1416
|
+
:param pulumi.Input[builtins.str] key_ref: Specifies the key (either default, by name, or by identifier) to use
|
1416
1417
|
for generating this request. Only suitable for `type=existing` requests.
|
1417
|
-
:param pulumi.Input[str] key_type: The desired key type
|
1418
|
-
:param pulumi.Input[str] locality: The locality
|
1419
|
-
:param pulumi.Input[str] managed_key_id: The ID of the previously configured managed key. This field is
|
1418
|
+
:param pulumi.Input[builtins.str] key_type: The desired key type
|
1419
|
+
:param pulumi.Input[builtins.str] locality: The locality
|
1420
|
+
:param pulumi.Input[builtins.str] managed_key_id: The ID of the previously configured managed key. This field is
|
1420
1421
|
required if `type` is `kms` and it conflicts with `managed_key_name`
|
1421
|
-
:param pulumi.Input[str] managed_key_name: The name of the previously configured managed key. This field is
|
1422
|
+
:param pulumi.Input[builtins.str] managed_key_name: The name of the previously configured managed key. This field is
|
1422
1423
|
required if `type` is `kms` and it conflicts with `managed_key_id`
|
1423
|
-
:param pulumi.Input[int] max_path_length: The maximum path length to encode in the generated certificate
|
1424
|
-
:param pulumi.Input[str] namespace: The namespace to provision the resource in.
|
1424
|
+
:param pulumi.Input[builtins.int] max_path_length: The maximum path length to encode in the generated certificate
|
1425
|
+
:param pulumi.Input[builtins.str] namespace: The namespace to provision the resource in.
|
1425
1426
|
The value should not contain leading or trailing forward slashes.
|
1426
1427
|
The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault/index.html#namespace).
|
1427
1428
|
*Available only for Vault Enterprise*.
|
1428
|
-
:param pulumi.Input[str] not_after: Set the Not After field of the certificate with specified date value. The value format should be given in UTC format YYYY-MM-ddTHH:MM:SSZ. Supports the Y10K end date for IEEE 802.1AR-2018 standard devices, 9999-12-31T23:59:59Z.
|
1429
|
-
:param pulumi.Input[str] organization: The organization
|
1430
|
-
:param pulumi.Input[Sequence[pulumi.Input[str]]] other_sans: List of other SANs
|
1431
|
-
:param pulumi.Input[str] ou: The organization unit
|
1432
|
-
:param pulumi.Input[Sequence[pulumi.Input[str]]] permitted_dns_domains: List of domains for which certificates are allowed to be issued
|
1433
|
-
:param pulumi.Input[Sequence[pulumi.Input[str]]] permitted_email_addresses: List of email addresses for which certificates are allowed to be issued. Requires Vault version 1.19+.
|
1434
|
-
:param pulumi.Input[Sequence[pulumi.Input[str]]] permitted_ip_ranges: List of IP ranges for which certificates are allowed to be issued. Requires Vault version 1.19+.
|
1435
|
-
:param pulumi.Input[Sequence[pulumi.Input[str]]] permitted_uri_domains: List of URI domains for which certificates are allowed to be issued. Requires Vault version 1.19+.
|
1436
|
-
:param pulumi.Input[str] postal_code: The postal code
|
1437
|
-
:param pulumi.Input[str] private_key_format: The private key format
|
1438
|
-
:param pulumi.Input[str] province: The province
|
1439
|
-
:param pulumi.Input[int] signature_bits: The number of bits to use in the signature algorithm
|
1440
|
-
:param pulumi.Input[str] street_address: The street address
|
1441
|
-
:param pulumi.Input[str] ttl: Time to live
|
1442
|
-
:param pulumi.Input[str] type: Type of intermediate to create. Must be either \\"exported\\", \\"internal\\"
|
1429
|
+
:param pulumi.Input[builtins.str] not_after: Set the Not After field of the certificate with specified date value. The value format should be given in UTC format YYYY-MM-ddTHH:MM:SSZ. Supports the Y10K end date for IEEE 802.1AR-2018 standard devices, 9999-12-31T23:59:59Z.
|
1430
|
+
:param pulumi.Input[builtins.str] organization: The organization
|
1431
|
+
:param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] other_sans: List of other SANs
|
1432
|
+
:param pulumi.Input[builtins.str] ou: The organization unit
|
1433
|
+
:param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] permitted_dns_domains: List of domains for which certificates are allowed to be issued
|
1434
|
+
:param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] permitted_email_addresses: List of email addresses for which certificates are allowed to be issued. Requires Vault version 1.19+.
|
1435
|
+
:param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] permitted_ip_ranges: List of IP ranges for which certificates are allowed to be issued. Requires Vault version 1.19+.
|
1436
|
+
:param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] permitted_uri_domains: List of URI domains for which certificates are allowed to be issued. Requires Vault version 1.19+.
|
1437
|
+
:param pulumi.Input[builtins.str] postal_code: The postal code
|
1438
|
+
:param pulumi.Input[builtins.str] private_key_format: The private key format
|
1439
|
+
:param pulumi.Input[builtins.str] province: The province
|
1440
|
+
:param pulumi.Input[builtins.int] signature_bits: The number of bits to use in the signature algorithm
|
1441
|
+
:param pulumi.Input[builtins.str] street_address: The street address
|
1442
|
+
:param pulumi.Input[builtins.str] ttl: Time to live
|
1443
|
+
:param pulumi.Input[builtins.str] type: Type of intermediate to create. Must be either \\"exported\\", \\"internal\\"
|
1443
1444
|
or \\"kms\\"
|
1444
|
-
:param pulumi.Input[Sequence[pulumi.Input[str]]] uri_sans: List of alternative URIs
|
1445
|
+
:param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] uri_sans: List of alternative URIs
|
1445
1446
|
"""
|
1446
1447
|
...
|
1447
1448
|
@overload
|
@@ -1486,43 +1487,43 @@ class SecretBackendRootCert(pulumi.CustomResource):
|
|
1486
1487
|
def _internal_init(__self__,
|
1487
1488
|
resource_name: str,
|
1488
1489
|
opts: Optional[pulumi.ResourceOptions] = None,
|
1489
|
-
alt_names: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
|
1490
|
-
backend: Optional[pulumi.Input[str]] = None,
|
1491
|
-
common_name: Optional[pulumi.Input[str]] = None,
|
1492
|
-
country: Optional[pulumi.Input[str]] = None,
|
1493
|
-
exclude_cn_from_sans: Optional[pulumi.Input[bool]] = None,
|
1494
|
-
excluded_dns_domains: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
|
1495
|
-
excluded_email_addresses: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
|
1496
|
-
excluded_ip_ranges: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
|
1497
|
-
excluded_uri_domains: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
|
1498
|
-
format: Optional[pulumi.Input[str]] = None,
|
1499
|
-
ip_sans: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
|
1500
|
-
issuer_name: Optional[pulumi.Input[str]] = None,
|
1501
|
-
key_bits: Optional[pulumi.Input[int]] = None,
|
1502
|
-
key_name: Optional[pulumi.Input[str]] = None,
|
1503
|
-
key_ref: Optional[pulumi.Input[str]] = None,
|
1504
|
-
key_type: Optional[pulumi.Input[str]] = None,
|
1505
|
-
locality: Optional[pulumi.Input[str]] = None,
|
1506
|
-
managed_key_id: Optional[pulumi.Input[str]] = None,
|
1507
|
-
managed_key_name: Optional[pulumi.Input[str]] = None,
|
1508
|
-
max_path_length: Optional[pulumi.Input[int]] = None,
|
1509
|
-
namespace: Optional[pulumi.Input[str]] = None,
|
1510
|
-
not_after: Optional[pulumi.Input[str]] = None,
|
1511
|
-
organization: Optional[pulumi.Input[str]] = None,
|
1512
|
-
other_sans: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
|
1513
|
-
ou: Optional[pulumi.Input[str]] = None,
|
1514
|
-
permitted_dns_domains: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
|
1515
|
-
permitted_email_addresses: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
|
1516
|
-
permitted_ip_ranges: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
|
1517
|
-
permitted_uri_domains: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
|
1518
|
-
postal_code: Optional[pulumi.Input[str]] = None,
|
1519
|
-
private_key_format: Optional[pulumi.Input[str]] = None,
|
1520
|
-
province: Optional[pulumi.Input[str]] = None,
|
1521
|
-
signature_bits: Optional[pulumi.Input[int]] = None,
|
1522
|
-
street_address: Optional[pulumi.Input[str]] = None,
|
1523
|
-
ttl: Optional[pulumi.Input[str]] = None,
|
1524
|
-
type: Optional[pulumi.Input[str]] = None,
|
1525
|
-
uri_sans: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
|
1490
|
+
alt_names: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
|
1491
|
+
backend: Optional[pulumi.Input[builtins.str]] = None,
|
1492
|
+
common_name: Optional[pulumi.Input[builtins.str]] = None,
|
1493
|
+
country: Optional[pulumi.Input[builtins.str]] = None,
|
1494
|
+
exclude_cn_from_sans: Optional[pulumi.Input[builtins.bool]] = None,
|
1495
|
+
excluded_dns_domains: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
|
1496
|
+
excluded_email_addresses: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
|
1497
|
+
excluded_ip_ranges: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
|
1498
|
+
excluded_uri_domains: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
|
1499
|
+
format: Optional[pulumi.Input[builtins.str]] = None,
|
1500
|
+
ip_sans: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
|
1501
|
+
issuer_name: Optional[pulumi.Input[builtins.str]] = None,
|
1502
|
+
key_bits: Optional[pulumi.Input[builtins.int]] = None,
|
1503
|
+
key_name: Optional[pulumi.Input[builtins.str]] = None,
|
1504
|
+
key_ref: Optional[pulumi.Input[builtins.str]] = None,
|
1505
|
+
key_type: Optional[pulumi.Input[builtins.str]] = None,
|
1506
|
+
locality: Optional[pulumi.Input[builtins.str]] = None,
|
1507
|
+
managed_key_id: Optional[pulumi.Input[builtins.str]] = None,
|
1508
|
+
managed_key_name: Optional[pulumi.Input[builtins.str]] = None,
|
1509
|
+
max_path_length: Optional[pulumi.Input[builtins.int]] = None,
|
1510
|
+
namespace: Optional[pulumi.Input[builtins.str]] = None,
|
1511
|
+
not_after: Optional[pulumi.Input[builtins.str]] = None,
|
1512
|
+
organization: Optional[pulumi.Input[builtins.str]] = None,
|
1513
|
+
other_sans: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
|
1514
|
+
ou: Optional[pulumi.Input[builtins.str]] = None,
|
1515
|
+
permitted_dns_domains: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
|
1516
|
+
permitted_email_addresses: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
|
1517
|
+
permitted_ip_ranges: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
|
1518
|
+
permitted_uri_domains: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
|
1519
|
+
postal_code: Optional[pulumi.Input[builtins.str]] = None,
|
1520
|
+
private_key_format: Optional[pulumi.Input[builtins.str]] = None,
|
1521
|
+
province: Optional[pulumi.Input[builtins.str]] = None,
|
1522
|
+
signature_bits: Optional[pulumi.Input[builtins.int]] = None,
|
1523
|
+
street_address: Optional[pulumi.Input[builtins.str]] = None,
|
1524
|
+
ttl: Optional[pulumi.Input[builtins.str]] = None,
|
1525
|
+
type: Optional[pulumi.Input[builtins.str]] = None,
|
1526
|
+
uri_sans: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
|
1526
1527
|
__props__=None):
|
1527
1528
|
opts = pulumi.ResourceOptions.merge(_utilities.get_resource_opts_defaults(), opts)
|
1528
1529
|
if not isinstance(opts, pulumi.ResourceOptions):
|
@@ -1590,48 +1591,48 @@ class SecretBackendRootCert(pulumi.CustomResource):
|
|
1590
1591
|
def get(resource_name: str,
|
1591
1592
|
id: pulumi.Input[str],
|
1592
1593
|
opts: Optional[pulumi.ResourceOptions] = None,
|
1593
|
-
alt_names: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
|
1594
|
-
backend: Optional[pulumi.Input[str]] = None,
|
1595
|
-
certificate: Optional[pulumi.Input[str]] = None,
|
1596
|
-
common_name: Optional[pulumi.Input[str]] = None,
|
1597
|
-
country: Optional[pulumi.Input[str]] = None,
|
1598
|
-
exclude_cn_from_sans: Optional[pulumi.Input[bool]] = None,
|
1599
|
-
excluded_dns_domains: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
|
1600
|
-
excluded_email_addresses: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
|
1601
|
-
excluded_ip_ranges: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
|
1602
|
-
excluded_uri_domains: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
|
1603
|
-
format: Optional[pulumi.Input[str]] = None,
|
1604
|
-
ip_sans: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
|
1605
|
-
issuer_id: Optional[pulumi.Input[str]] = None,
|
1606
|
-
issuer_name: Optional[pulumi.Input[str]] = None,
|
1607
|
-
issuing_ca: Optional[pulumi.Input[str]] = None,
|
1608
|
-
key_bits: Optional[pulumi.Input[int]] = None,
|
1609
|
-
key_id: Optional[pulumi.Input[str]] = None,
|
1610
|
-
key_name: Optional[pulumi.Input[str]] = None,
|
1611
|
-
key_ref: Optional[pulumi.Input[str]] = None,
|
1612
|
-
key_type: Optional[pulumi.Input[str]] = None,
|
1613
|
-
locality: Optional[pulumi.Input[str]] = None,
|
1614
|
-
managed_key_id: Optional[pulumi.Input[str]] = None,
|
1615
|
-
managed_key_name: Optional[pulumi.Input[str]] = None,
|
1616
|
-
max_path_length: Optional[pulumi.Input[int]] = None,
|
1617
|
-
namespace: Optional[pulumi.Input[str]] = None,
|
1618
|
-
not_after: Optional[pulumi.Input[str]] = None,
|
1619
|
-
organization: Optional[pulumi.Input[str]] = None,
|
1620
|
-
other_sans: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
|
1621
|
-
ou: Optional[pulumi.Input[str]] = None,
|
1622
|
-
permitted_dns_domains: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
|
1623
|
-
permitted_email_addresses: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
|
1624
|
-
permitted_ip_ranges: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
|
1625
|
-
permitted_uri_domains: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
|
1626
|
-
postal_code: Optional[pulumi.Input[str]] = None,
|
1627
|
-
private_key_format: Optional[pulumi.Input[str]] = None,
|
1628
|
-
province: Optional[pulumi.Input[str]] = None,
|
1629
|
-
serial_number: Optional[pulumi.Input[str]] = None,
|
1630
|
-
signature_bits: Optional[pulumi.Input[int]] = None,
|
1631
|
-
street_address: Optional[pulumi.Input[str]] = None,
|
1632
|
-
ttl: Optional[pulumi.Input[str]] = None,
|
1633
|
-
type: Optional[pulumi.Input[str]] = None,
|
1634
|
-
uri_sans: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None) -> 'SecretBackendRootCert':
|
1594
|
+
alt_names: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
|
1595
|
+
backend: Optional[pulumi.Input[builtins.str]] = None,
|
1596
|
+
certificate: Optional[pulumi.Input[builtins.str]] = None,
|
1597
|
+
common_name: Optional[pulumi.Input[builtins.str]] = None,
|
1598
|
+
country: Optional[pulumi.Input[builtins.str]] = None,
|
1599
|
+
exclude_cn_from_sans: Optional[pulumi.Input[builtins.bool]] = None,
|
1600
|
+
excluded_dns_domains: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
|
1601
|
+
excluded_email_addresses: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
|
1602
|
+
excluded_ip_ranges: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
|
1603
|
+
excluded_uri_domains: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
|
1604
|
+
format: Optional[pulumi.Input[builtins.str]] = None,
|
1605
|
+
ip_sans: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
|
1606
|
+
issuer_id: Optional[pulumi.Input[builtins.str]] = None,
|
1607
|
+
issuer_name: Optional[pulumi.Input[builtins.str]] = None,
|
1608
|
+
issuing_ca: Optional[pulumi.Input[builtins.str]] = None,
|
1609
|
+
key_bits: Optional[pulumi.Input[builtins.int]] = None,
|
1610
|
+
key_id: Optional[pulumi.Input[builtins.str]] = None,
|
1611
|
+
key_name: Optional[pulumi.Input[builtins.str]] = None,
|
1612
|
+
key_ref: Optional[pulumi.Input[builtins.str]] = None,
|
1613
|
+
key_type: Optional[pulumi.Input[builtins.str]] = None,
|
1614
|
+
locality: Optional[pulumi.Input[builtins.str]] = None,
|
1615
|
+
managed_key_id: Optional[pulumi.Input[builtins.str]] = None,
|
1616
|
+
managed_key_name: Optional[pulumi.Input[builtins.str]] = None,
|
1617
|
+
max_path_length: Optional[pulumi.Input[builtins.int]] = None,
|
1618
|
+
namespace: Optional[pulumi.Input[builtins.str]] = None,
|
1619
|
+
not_after: Optional[pulumi.Input[builtins.str]] = None,
|
1620
|
+
organization: Optional[pulumi.Input[builtins.str]] = None,
|
1621
|
+
other_sans: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
|
1622
|
+
ou: Optional[pulumi.Input[builtins.str]] = None,
|
1623
|
+
permitted_dns_domains: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
|
1624
|
+
permitted_email_addresses: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
|
1625
|
+
permitted_ip_ranges: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
|
1626
|
+
permitted_uri_domains: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
|
1627
|
+
postal_code: Optional[pulumi.Input[builtins.str]] = None,
|
1628
|
+
private_key_format: Optional[pulumi.Input[builtins.str]] = None,
|
1629
|
+
province: Optional[pulumi.Input[builtins.str]] = None,
|
1630
|
+
serial_number: Optional[pulumi.Input[builtins.str]] = None,
|
1631
|
+
signature_bits: Optional[pulumi.Input[builtins.int]] = None,
|
1632
|
+
street_address: Optional[pulumi.Input[builtins.str]] = None,
|
1633
|
+
ttl: Optional[pulumi.Input[builtins.str]] = None,
|
1634
|
+
type: Optional[pulumi.Input[builtins.str]] = None,
|
1635
|
+
uri_sans: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None) -> 'SecretBackendRootCert':
|
1635
1636
|
"""
|
1636
1637
|
Get an existing SecretBackendRootCert resource's state with the given name, id, and optional extra
|
1637
1638
|
properties used to qualify the lookup.
|
@@ -1639,57 +1640,57 @@ class SecretBackendRootCert(pulumi.CustomResource):
|
|
1639
1640
|
:param str resource_name: The unique name of the resulting resource.
|
1640
1641
|
:param pulumi.Input[str] id: The unique provider ID of the resource to lookup.
|
1641
1642
|
:param pulumi.ResourceOptions opts: Options for the resource.
|
1642
|
-
:param pulumi.Input[Sequence[pulumi.Input[str]]] alt_names: List of alternative names
|
1643
|
-
:param pulumi.Input[str] backend: The PKI secret backend the resource belongs to.
|
1644
|
-
:param pulumi.Input[str] certificate: The certificate.
|
1645
|
-
:param pulumi.Input[str] common_name: CN of intermediate to create
|
1646
|
-
:param pulumi.Input[str] country: The country
|
1647
|
-
:param pulumi.Input[bool] exclude_cn_from_sans: Flag to exclude CN from SANs
|
1648
|
-
:param pulumi.Input[Sequence[pulumi.Input[str]]] excluded_dns_domains: List of domains for which certificates are not allowed to be issued. Requires Vault version 1.19+.
|
1649
|
-
:param pulumi.Input[Sequence[pulumi.Input[str]]] excluded_email_addresses: List of email addresses for which certificates are not allowed to be issued. Requires Vault version 1.19+.
|
1650
|
-
:param pulumi.Input[Sequence[pulumi.Input[str]]] excluded_ip_ranges: List of IP ranges for which certificates are not allowed to be issued. Requires Vault version 1.19+.
|
1651
|
-
:param pulumi.Input[Sequence[pulumi.Input[str]]] excluded_uri_domains: List of URI domains for which certificates are not allowed to be issued. Requires Vault version 1.19+.
|
1652
|
-
:param pulumi.Input[str] format: The format of data
|
1653
|
-
:param pulumi.Input[Sequence[pulumi.Input[str]]] ip_sans: List of alternative IPs
|
1654
|
-
:param pulumi.Input[str] issuer_id: The ID of the generated issuer.
|
1655
|
-
:param pulumi.Input[str] issuer_name: Provides a name to the specified issuer. The name must be unique
|
1643
|
+
:param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] alt_names: List of alternative names
|
1644
|
+
:param pulumi.Input[builtins.str] backend: The PKI secret backend the resource belongs to.
|
1645
|
+
:param pulumi.Input[builtins.str] certificate: The certificate.
|
1646
|
+
:param pulumi.Input[builtins.str] common_name: CN of intermediate to create
|
1647
|
+
:param pulumi.Input[builtins.str] country: The country
|
1648
|
+
:param pulumi.Input[builtins.bool] exclude_cn_from_sans: Flag to exclude CN from SANs
|
1649
|
+
:param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] excluded_dns_domains: List of domains for which certificates are not allowed to be issued. Requires Vault version 1.19+.
|
1650
|
+
:param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] excluded_email_addresses: List of email addresses for which certificates are not allowed to be issued. Requires Vault version 1.19+.
|
1651
|
+
:param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] excluded_ip_ranges: List of IP ranges for which certificates are not allowed to be issued. Requires Vault version 1.19+.
|
1652
|
+
:param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] excluded_uri_domains: List of URI domains for which certificates are not allowed to be issued. Requires Vault version 1.19+.
|
1653
|
+
:param pulumi.Input[builtins.str] format: The format of data
|
1654
|
+
:param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] ip_sans: List of alternative IPs
|
1655
|
+
:param pulumi.Input[builtins.str] issuer_id: The ID of the generated issuer.
|
1656
|
+
:param pulumi.Input[builtins.str] issuer_name: Provides a name to the specified issuer. The name must be unique
|
1656
1657
|
across all issuers and not be the reserved value `default`
|
1657
|
-
:param pulumi.Input[str] issuing_ca: The issuing CA certificate.
|
1658
|
-
:param pulumi.Input[int] key_bits: The number of bits to use
|
1659
|
-
:param pulumi.Input[str] key_id: The ID of the generated key.
|
1660
|
-
:param pulumi.Input[str] key_name: When a new key is created with this request, optionally specifies
|
1658
|
+
:param pulumi.Input[builtins.str] issuing_ca: The issuing CA certificate.
|
1659
|
+
:param pulumi.Input[builtins.int] key_bits: The number of bits to use
|
1660
|
+
:param pulumi.Input[builtins.str] key_id: The ID of the generated key.
|
1661
|
+
:param pulumi.Input[builtins.str] key_name: When a new key is created with this request, optionally specifies
|
1661
1662
|
the name for this. The global ref `default` may not be used as a name.
|
1662
|
-
:param pulumi.Input[str] key_ref: Specifies the key (either default, by name, or by identifier) to use
|
1663
|
+
:param pulumi.Input[builtins.str] key_ref: Specifies the key (either default, by name, or by identifier) to use
|
1663
1664
|
for generating this request. Only suitable for `type=existing` requests.
|
1664
|
-
:param pulumi.Input[str] key_type: The desired key type
|
1665
|
-
:param pulumi.Input[str] locality: The locality
|
1666
|
-
:param pulumi.Input[str] managed_key_id: The ID of the previously configured managed key. This field is
|
1665
|
+
:param pulumi.Input[builtins.str] key_type: The desired key type
|
1666
|
+
:param pulumi.Input[builtins.str] locality: The locality
|
1667
|
+
:param pulumi.Input[builtins.str] managed_key_id: The ID of the previously configured managed key. This field is
|
1667
1668
|
required if `type` is `kms` and it conflicts with `managed_key_name`
|
1668
|
-
:param pulumi.Input[str] managed_key_name: The name of the previously configured managed key. This field is
|
1669
|
+
:param pulumi.Input[builtins.str] managed_key_name: The name of the previously configured managed key. This field is
|
1669
1670
|
required if `type` is `kms` and it conflicts with `managed_key_id`
|
1670
|
-
:param pulumi.Input[int] max_path_length: The maximum path length to encode in the generated certificate
|
1671
|
-
:param pulumi.Input[str] namespace: The namespace to provision the resource in.
|
1671
|
+
:param pulumi.Input[builtins.int] max_path_length: The maximum path length to encode in the generated certificate
|
1672
|
+
:param pulumi.Input[builtins.str] namespace: The namespace to provision the resource in.
|
1672
1673
|
The value should not contain leading or trailing forward slashes.
|
1673
1674
|
The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault/index.html#namespace).
|
1674
1675
|
*Available only for Vault Enterprise*.
|
1675
|
-
:param pulumi.Input[str] not_after: Set the Not After field of the certificate with specified date value. The value format should be given in UTC format YYYY-MM-ddTHH:MM:SSZ. Supports the Y10K end date for IEEE 802.1AR-2018 standard devices, 9999-12-31T23:59:59Z.
|
1676
|
-
:param pulumi.Input[str] organization: The organization
|
1677
|
-
:param pulumi.Input[Sequence[pulumi.Input[str]]] other_sans: List of other SANs
|
1678
|
-
:param pulumi.Input[str] ou: The organization unit
|
1679
|
-
:param pulumi.Input[Sequence[pulumi.Input[str]]] permitted_dns_domains: List of domains for which certificates are allowed to be issued
|
1680
|
-
:param pulumi.Input[Sequence[pulumi.Input[str]]] permitted_email_addresses: List of email addresses for which certificates are allowed to be issued. Requires Vault version 1.19+.
|
1681
|
-
:param pulumi.Input[Sequence[pulumi.Input[str]]] permitted_ip_ranges: List of IP ranges for which certificates are allowed to be issued. Requires Vault version 1.19+.
|
1682
|
-
:param pulumi.Input[Sequence[pulumi.Input[str]]] permitted_uri_domains: List of URI domains for which certificates are allowed to be issued. Requires Vault version 1.19+.
|
1683
|
-
:param pulumi.Input[str] postal_code: The postal code
|
1684
|
-
:param pulumi.Input[str] private_key_format: The private key format
|
1685
|
-
:param pulumi.Input[str] province: The province
|
1686
|
-
:param pulumi.Input[str] serial_number: The certificate's serial number, hex formatted.
|
1687
|
-
:param pulumi.Input[int] signature_bits: The number of bits to use in the signature algorithm
|
1688
|
-
:param pulumi.Input[str] street_address: The street address
|
1689
|
-
:param pulumi.Input[str] ttl: Time to live
|
1690
|
-
:param pulumi.Input[str] type: Type of intermediate to create. Must be either \\"exported\\", \\"internal\\"
|
1676
|
+
:param pulumi.Input[builtins.str] not_after: Set the Not After field of the certificate with specified date value. The value format should be given in UTC format YYYY-MM-ddTHH:MM:SSZ. Supports the Y10K end date for IEEE 802.1AR-2018 standard devices, 9999-12-31T23:59:59Z.
|
1677
|
+
:param pulumi.Input[builtins.str] organization: The organization
|
1678
|
+
:param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] other_sans: List of other SANs
|
1679
|
+
:param pulumi.Input[builtins.str] ou: The organization unit
|
1680
|
+
:param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] permitted_dns_domains: List of domains for which certificates are allowed to be issued
|
1681
|
+
:param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] permitted_email_addresses: List of email addresses for which certificates are allowed to be issued. Requires Vault version 1.19+.
|
1682
|
+
:param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] permitted_ip_ranges: List of IP ranges for which certificates are allowed to be issued. Requires Vault version 1.19+.
|
1683
|
+
:param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] permitted_uri_domains: List of URI domains for which certificates are allowed to be issued. Requires Vault version 1.19+.
|
1684
|
+
:param pulumi.Input[builtins.str] postal_code: The postal code
|
1685
|
+
:param pulumi.Input[builtins.str] private_key_format: The private key format
|
1686
|
+
:param pulumi.Input[builtins.str] province: The province
|
1687
|
+
:param pulumi.Input[builtins.str] serial_number: The certificate's serial number, hex formatted.
|
1688
|
+
:param pulumi.Input[builtins.int] signature_bits: The number of bits to use in the signature algorithm
|
1689
|
+
:param pulumi.Input[builtins.str] street_address: The street address
|
1690
|
+
:param pulumi.Input[builtins.str] ttl: Time to live
|
1691
|
+
:param pulumi.Input[builtins.str] type: Type of intermediate to create. Must be either \\"exported\\", \\"internal\\"
|
1691
1692
|
or \\"kms\\"
|
1692
|
-
:param pulumi.Input[Sequence[pulumi.Input[str]]] uri_sans: List of alternative URIs
|
1693
|
+
:param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] uri_sans: List of alternative URIs
|
1693
1694
|
"""
|
1694
1695
|
opts = pulumi.ResourceOptions.merge(opts, pulumi.ResourceOptions(id=id))
|
1695
1696
|
|
@@ -1741,7 +1742,7 @@ class SecretBackendRootCert(pulumi.CustomResource):
|
|
1741
1742
|
|
1742
1743
|
@property
|
1743
1744
|
@pulumi.getter(name="altNames")
|
1744
|
-
def alt_names(self) -> pulumi.Output[Optional[Sequence[str]]]:
|
1745
|
+
def alt_names(self) -> pulumi.Output[Optional[Sequence[builtins.str]]]:
|
1745
1746
|
"""
|
1746
1747
|
List of alternative names
|
1747
1748
|
"""
|
@@ -1749,7 +1750,7 @@ class SecretBackendRootCert(pulumi.CustomResource):
|
|
1749
1750
|
|
1750
1751
|
@property
|
1751
1752
|
@pulumi.getter
|
1752
|
-
def backend(self) -> pulumi.Output[str]:
|
1753
|
+
def backend(self) -> pulumi.Output[builtins.str]:
|
1753
1754
|
"""
|
1754
1755
|
The PKI secret backend the resource belongs to.
|
1755
1756
|
"""
|
@@ -1757,7 +1758,7 @@ class SecretBackendRootCert(pulumi.CustomResource):
|
|
1757
1758
|
|
1758
1759
|
@property
|
1759
1760
|
@pulumi.getter
|
1760
|
-
def certificate(self) -> pulumi.Output[str]:
|
1761
|
+
def certificate(self) -> pulumi.Output[builtins.str]:
|
1761
1762
|
"""
|
1762
1763
|
The certificate.
|
1763
1764
|
"""
|
@@ -1765,7 +1766,7 @@ class SecretBackendRootCert(pulumi.CustomResource):
|
|
1765
1766
|
|
1766
1767
|
@property
|
1767
1768
|
@pulumi.getter(name="commonName")
|
1768
|
-
def common_name(self) -> pulumi.Output[str]:
|
1769
|
+
def common_name(self) -> pulumi.Output[builtins.str]:
|
1769
1770
|
"""
|
1770
1771
|
CN of intermediate to create
|
1771
1772
|
"""
|
@@ -1773,7 +1774,7 @@ class SecretBackendRootCert(pulumi.CustomResource):
|
|
1773
1774
|
|
1774
1775
|
@property
|
1775
1776
|
@pulumi.getter
|
1776
|
-
def country(self) -> pulumi.Output[Optional[str]]:
|
1777
|
+
def country(self) -> pulumi.Output[Optional[builtins.str]]:
|
1777
1778
|
"""
|
1778
1779
|
The country
|
1779
1780
|
"""
|
@@ -1781,7 +1782,7 @@ class SecretBackendRootCert(pulumi.CustomResource):
|
|
1781
1782
|
|
1782
1783
|
@property
|
1783
1784
|
@pulumi.getter(name="excludeCnFromSans")
|
1784
|
-
def exclude_cn_from_sans(self) -> pulumi.Output[Optional[bool]]:
|
1785
|
+
def exclude_cn_from_sans(self) -> pulumi.Output[Optional[builtins.bool]]:
|
1785
1786
|
"""
|
1786
1787
|
Flag to exclude CN from SANs
|
1787
1788
|
"""
|
@@ -1789,7 +1790,7 @@ class SecretBackendRootCert(pulumi.CustomResource):
|
|
1789
1790
|
|
1790
1791
|
@property
|
1791
1792
|
@pulumi.getter(name="excludedDnsDomains")
|
1792
|
-
def excluded_dns_domains(self) -> pulumi.Output[Optional[Sequence[str]]]:
|
1793
|
+
def excluded_dns_domains(self) -> pulumi.Output[Optional[Sequence[builtins.str]]]:
|
1793
1794
|
"""
|
1794
1795
|
List of domains for which certificates are not allowed to be issued. Requires Vault version 1.19+.
|
1795
1796
|
"""
|
@@ -1797,7 +1798,7 @@ class SecretBackendRootCert(pulumi.CustomResource):
|
|
1797
1798
|
|
1798
1799
|
@property
|
1799
1800
|
@pulumi.getter(name="excludedEmailAddresses")
|
1800
|
-
def excluded_email_addresses(self) -> pulumi.Output[Optional[Sequence[str]]]:
|
1801
|
+
def excluded_email_addresses(self) -> pulumi.Output[Optional[Sequence[builtins.str]]]:
|
1801
1802
|
"""
|
1802
1803
|
List of email addresses for which certificates are not allowed to be issued. Requires Vault version 1.19+.
|
1803
1804
|
"""
|
@@ -1805,7 +1806,7 @@ class SecretBackendRootCert(pulumi.CustomResource):
|
|
1805
1806
|
|
1806
1807
|
@property
|
1807
1808
|
@pulumi.getter(name="excludedIpRanges")
|
1808
|
-
def excluded_ip_ranges(self) -> pulumi.Output[Optional[Sequence[str]]]:
|
1809
|
+
def excluded_ip_ranges(self) -> pulumi.Output[Optional[Sequence[builtins.str]]]:
|
1809
1810
|
"""
|
1810
1811
|
List of IP ranges for which certificates are not allowed to be issued. Requires Vault version 1.19+.
|
1811
1812
|
"""
|
@@ -1813,7 +1814,7 @@ class SecretBackendRootCert(pulumi.CustomResource):
|
|
1813
1814
|
|
1814
1815
|
@property
|
1815
1816
|
@pulumi.getter(name="excludedUriDomains")
|
1816
|
-
def excluded_uri_domains(self) -> pulumi.Output[Optional[Sequence[str]]]:
|
1817
|
+
def excluded_uri_domains(self) -> pulumi.Output[Optional[Sequence[builtins.str]]]:
|
1817
1818
|
"""
|
1818
1819
|
List of URI domains for which certificates are not allowed to be issued. Requires Vault version 1.19+.
|
1819
1820
|
"""
|
@@ -1821,7 +1822,7 @@ class SecretBackendRootCert(pulumi.CustomResource):
|
|
1821
1822
|
|
1822
1823
|
@property
|
1823
1824
|
@pulumi.getter
|
1824
|
-
def format(self) -> pulumi.Output[Optional[str]]:
|
1825
|
+
def format(self) -> pulumi.Output[Optional[builtins.str]]:
|
1825
1826
|
"""
|
1826
1827
|
The format of data
|
1827
1828
|
"""
|
@@ -1829,7 +1830,7 @@ class SecretBackendRootCert(pulumi.CustomResource):
|
|
1829
1830
|
|
1830
1831
|
@property
|
1831
1832
|
@pulumi.getter(name="ipSans")
|
1832
|
-
def ip_sans(self) -> pulumi.Output[Optional[Sequence[str]]]:
|
1833
|
+
def ip_sans(self) -> pulumi.Output[Optional[Sequence[builtins.str]]]:
|
1833
1834
|
"""
|
1834
1835
|
List of alternative IPs
|
1835
1836
|
"""
|
@@ -1837,7 +1838,7 @@ class SecretBackendRootCert(pulumi.CustomResource):
|
|
1837
1838
|
|
1838
1839
|
@property
|
1839
1840
|
@pulumi.getter(name="issuerId")
|
1840
|
-
def issuer_id(self) -> pulumi.Output[str]:
|
1841
|
+
def issuer_id(self) -> pulumi.Output[builtins.str]:
|
1841
1842
|
"""
|
1842
1843
|
The ID of the generated issuer.
|
1843
1844
|
"""
|
@@ -1845,7 +1846,7 @@ class SecretBackendRootCert(pulumi.CustomResource):
|
|
1845
1846
|
|
1846
1847
|
@property
|
1847
1848
|
@pulumi.getter(name="issuerName")
|
1848
|
-
def issuer_name(self) -> pulumi.Output[str]:
|
1849
|
+
def issuer_name(self) -> pulumi.Output[builtins.str]:
|
1849
1850
|
"""
|
1850
1851
|
Provides a name to the specified issuer. The name must be unique
|
1851
1852
|
across all issuers and not be the reserved value `default`
|
@@ -1854,7 +1855,7 @@ class SecretBackendRootCert(pulumi.CustomResource):
|
|
1854
1855
|
|
1855
1856
|
@property
|
1856
1857
|
@pulumi.getter(name="issuingCa")
|
1857
|
-
def issuing_ca(self) -> pulumi.Output[str]:
|
1858
|
+
def issuing_ca(self) -> pulumi.Output[builtins.str]:
|
1858
1859
|
"""
|
1859
1860
|
The issuing CA certificate.
|
1860
1861
|
"""
|
@@ -1862,7 +1863,7 @@ class SecretBackendRootCert(pulumi.CustomResource):
|
|
1862
1863
|
|
1863
1864
|
@property
|
1864
1865
|
@pulumi.getter(name="keyBits")
|
1865
|
-
def key_bits(self) -> pulumi.Output[Optional[int]]:
|
1866
|
+
def key_bits(self) -> pulumi.Output[Optional[builtins.int]]:
|
1866
1867
|
"""
|
1867
1868
|
The number of bits to use
|
1868
1869
|
"""
|
@@ -1870,7 +1871,7 @@ class SecretBackendRootCert(pulumi.CustomResource):
|
|
1870
1871
|
|
1871
1872
|
@property
|
1872
1873
|
@pulumi.getter(name="keyId")
|
1873
|
-
def key_id(self) -> pulumi.Output[str]:
|
1874
|
+
def key_id(self) -> pulumi.Output[builtins.str]:
|
1874
1875
|
"""
|
1875
1876
|
The ID of the generated key.
|
1876
1877
|
"""
|
@@ -1878,7 +1879,7 @@ class SecretBackendRootCert(pulumi.CustomResource):
|
|
1878
1879
|
|
1879
1880
|
@property
|
1880
1881
|
@pulumi.getter(name="keyName")
|
1881
|
-
def key_name(self) -> pulumi.Output[str]:
|
1882
|
+
def key_name(self) -> pulumi.Output[builtins.str]:
|
1882
1883
|
"""
|
1883
1884
|
When a new key is created with this request, optionally specifies
|
1884
1885
|
the name for this. The global ref `default` may not be used as a name.
|
@@ -1887,7 +1888,7 @@ class SecretBackendRootCert(pulumi.CustomResource):
|
|
1887
1888
|
|
1888
1889
|
@property
|
1889
1890
|
@pulumi.getter(name="keyRef")
|
1890
|
-
def key_ref(self) -> pulumi.Output[str]:
|
1891
|
+
def key_ref(self) -> pulumi.Output[builtins.str]:
|
1891
1892
|
"""
|
1892
1893
|
Specifies the key (either default, by name, or by identifier) to use
|
1893
1894
|
for generating this request. Only suitable for `type=existing` requests.
|
@@ -1896,7 +1897,7 @@ class SecretBackendRootCert(pulumi.CustomResource):
|
|
1896
1897
|
|
1897
1898
|
@property
|
1898
1899
|
@pulumi.getter(name="keyType")
|
1899
|
-
def key_type(self) -> pulumi.Output[Optional[str]]:
|
1900
|
+
def key_type(self) -> pulumi.Output[Optional[builtins.str]]:
|
1900
1901
|
"""
|
1901
1902
|
The desired key type
|
1902
1903
|
"""
|
@@ -1904,7 +1905,7 @@ class SecretBackendRootCert(pulumi.CustomResource):
|
|
1904
1905
|
|
1905
1906
|
@property
|
1906
1907
|
@pulumi.getter
|
1907
|
-
def locality(self) -> pulumi.Output[Optional[str]]:
|
1908
|
+
def locality(self) -> pulumi.Output[Optional[builtins.str]]:
|
1908
1909
|
"""
|
1909
1910
|
The locality
|
1910
1911
|
"""
|
@@ -1912,7 +1913,7 @@ class SecretBackendRootCert(pulumi.CustomResource):
|
|
1912
1913
|
|
1913
1914
|
@property
|
1914
1915
|
@pulumi.getter(name="managedKeyId")
|
1915
|
-
def managed_key_id(self) -> pulumi.Output[str]:
|
1916
|
+
def managed_key_id(self) -> pulumi.Output[builtins.str]:
|
1916
1917
|
"""
|
1917
1918
|
The ID of the previously configured managed key. This field is
|
1918
1919
|
required if `type` is `kms` and it conflicts with `managed_key_name`
|
@@ -1921,7 +1922,7 @@ class SecretBackendRootCert(pulumi.CustomResource):
|
|
1921
1922
|
|
1922
1923
|
@property
|
1923
1924
|
@pulumi.getter(name="managedKeyName")
|
1924
|
-
def managed_key_name(self) -> pulumi.Output[str]:
|
1925
|
+
def managed_key_name(self) -> pulumi.Output[builtins.str]:
|
1925
1926
|
"""
|
1926
1927
|
The name of the previously configured managed key. This field is
|
1927
1928
|
required if `type` is `kms` and it conflicts with `managed_key_id`
|
@@ -1930,7 +1931,7 @@ class SecretBackendRootCert(pulumi.CustomResource):
|
|
1930
1931
|
|
1931
1932
|
@property
|
1932
1933
|
@pulumi.getter(name="maxPathLength")
|
1933
|
-
def max_path_length(self) -> pulumi.Output[Optional[int]]:
|
1934
|
+
def max_path_length(self) -> pulumi.Output[Optional[builtins.int]]:
|
1934
1935
|
"""
|
1935
1936
|
The maximum path length to encode in the generated certificate
|
1936
1937
|
"""
|
@@ -1938,7 +1939,7 @@ class SecretBackendRootCert(pulumi.CustomResource):
|
|
1938
1939
|
|
1939
1940
|
@property
|
1940
1941
|
@pulumi.getter
|
1941
|
-
def namespace(self) -> pulumi.Output[Optional[str]]:
|
1942
|
+
def namespace(self) -> pulumi.Output[Optional[builtins.str]]:
|
1942
1943
|
"""
|
1943
1944
|
The namespace to provision the resource in.
|
1944
1945
|
The value should not contain leading or trailing forward slashes.
|
@@ -1949,7 +1950,7 @@ class SecretBackendRootCert(pulumi.CustomResource):
|
|
1949
1950
|
|
1950
1951
|
@property
|
1951
1952
|
@pulumi.getter(name="notAfter")
|
1952
|
-
def not_after(self) -> pulumi.Output[Optional[str]]:
|
1953
|
+
def not_after(self) -> pulumi.Output[Optional[builtins.str]]:
|
1953
1954
|
"""
|
1954
1955
|
Set the Not After field of the certificate with specified date value. The value format should be given in UTC format YYYY-MM-ddTHH:MM:SSZ. Supports the Y10K end date for IEEE 802.1AR-2018 standard devices, 9999-12-31T23:59:59Z.
|
1955
1956
|
"""
|
@@ -1957,7 +1958,7 @@ class SecretBackendRootCert(pulumi.CustomResource):
|
|
1957
1958
|
|
1958
1959
|
@property
|
1959
1960
|
@pulumi.getter
|
1960
|
-
def organization(self) -> pulumi.Output[Optional[str]]:
|
1961
|
+
def organization(self) -> pulumi.Output[Optional[builtins.str]]:
|
1961
1962
|
"""
|
1962
1963
|
The organization
|
1963
1964
|
"""
|
@@ -1965,7 +1966,7 @@ class SecretBackendRootCert(pulumi.CustomResource):
|
|
1965
1966
|
|
1966
1967
|
@property
|
1967
1968
|
@pulumi.getter(name="otherSans")
|
1968
|
-
def other_sans(self) -> pulumi.Output[Optional[Sequence[str]]]:
|
1969
|
+
def other_sans(self) -> pulumi.Output[Optional[Sequence[builtins.str]]]:
|
1969
1970
|
"""
|
1970
1971
|
List of other SANs
|
1971
1972
|
"""
|
@@ -1973,7 +1974,7 @@ class SecretBackendRootCert(pulumi.CustomResource):
|
|
1973
1974
|
|
1974
1975
|
@property
|
1975
1976
|
@pulumi.getter
|
1976
|
-
def ou(self) -> pulumi.Output[Optional[str]]:
|
1977
|
+
def ou(self) -> pulumi.Output[Optional[builtins.str]]:
|
1977
1978
|
"""
|
1978
1979
|
The organization unit
|
1979
1980
|
"""
|
@@ -1981,7 +1982,7 @@ class SecretBackendRootCert(pulumi.CustomResource):
|
|
1981
1982
|
|
1982
1983
|
@property
|
1983
1984
|
@pulumi.getter(name="permittedDnsDomains")
|
1984
|
-
def permitted_dns_domains(self) -> pulumi.Output[Optional[Sequence[str]]]:
|
1985
|
+
def permitted_dns_domains(self) -> pulumi.Output[Optional[Sequence[builtins.str]]]:
|
1985
1986
|
"""
|
1986
1987
|
List of domains for which certificates are allowed to be issued
|
1987
1988
|
"""
|
@@ -1989,7 +1990,7 @@ class SecretBackendRootCert(pulumi.CustomResource):
|
|
1989
1990
|
|
1990
1991
|
@property
|
1991
1992
|
@pulumi.getter(name="permittedEmailAddresses")
|
1992
|
-
def permitted_email_addresses(self) -> pulumi.Output[Optional[Sequence[str]]]:
|
1993
|
+
def permitted_email_addresses(self) -> pulumi.Output[Optional[Sequence[builtins.str]]]:
|
1993
1994
|
"""
|
1994
1995
|
List of email addresses for which certificates are allowed to be issued. Requires Vault version 1.19+.
|
1995
1996
|
"""
|
@@ -1997,7 +1998,7 @@ class SecretBackendRootCert(pulumi.CustomResource):
|
|
1997
1998
|
|
1998
1999
|
@property
|
1999
2000
|
@pulumi.getter(name="permittedIpRanges")
|
2000
|
-
def permitted_ip_ranges(self) -> pulumi.Output[Optional[Sequence[str]]]:
|
2001
|
+
def permitted_ip_ranges(self) -> pulumi.Output[Optional[Sequence[builtins.str]]]:
|
2001
2002
|
"""
|
2002
2003
|
List of IP ranges for which certificates are allowed to be issued. Requires Vault version 1.19+.
|
2003
2004
|
"""
|
@@ -2005,7 +2006,7 @@ class SecretBackendRootCert(pulumi.CustomResource):
|
|
2005
2006
|
|
2006
2007
|
@property
|
2007
2008
|
@pulumi.getter(name="permittedUriDomains")
|
2008
|
-
def permitted_uri_domains(self) -> pulumi.Output[Optional[Sequence[str]]]:
|
2009
|
+
def permitted_uri_domains(self) -> pulumi.Output[Optional[Sequence[builtins.str]]]:
|
2009
2010
|
"""
|
2010
2011
|
List of URI domains for which certificates are allowed to be issued. Requires Vault version 1.19+.
|
2011
2012
|
"""
|
@@ -2013,7 +2014,7 @@ class SecretBackendRootCert(pulumi.CustomResource):
|
|
2013
2014
|
|
2014
2015
|
@property
|
2015
2016
|
@pulumi.getter(name="postalCode")
|
2016
|
-
def postal_code(self) -> pulumi.Output[Optional[str]]:
|
2017
|
+
def postal_code(self) -> pulumi.Output[Optional[builtins.str]]:
|
2017
2018
|
"""
|
2018
2019
|
The postal code
|
2019
2020
|
"""
|
@@ -2021,7 +2022,7 @@ class SecretBackendRootCert(pulumi.CustomResource):
|
|
2021
2022
|
|
2022
2023
|
@property
|
2023
2024
|
@pulumi.getter(name="privateKeyFormat")
|
2024
|
-
def private_key_format(self) -> pulumi.Output[Optional[str]]:
|
2025
|
+
def private_key_format(self) -> pulumi.Output[Optional[builtins.str]]:
|
2025
2026
|
"""
|
2026
2027
|
The private key format
|
2027
2028
|
"""
|
@@ -2029,7 +2030,7 @@ class SecretBackendRootCert(pulumi.CustomResource):
|
|
2029
2030
|
|
2030
2031
|
@property
|
2031
2032
|
@pulumi.getter
|
2032
|
-
def province(self) -> pulumi.Output[Optional[str]]:
|
2033
|
+
def province(self) -> pulumi.Output[Optional[builtins.str]]:
|
2033
2034
|
"""
|
2034
2035
|
The province
|
2035
2036
|
"""
|
@@ -2037,7 +2038,7 @@ class SecretBackendRootCert(pulumi.CustomResource):
|
|
2037
2038
|
|
2038
2039
|
@property
|
2039
2040
|
@pulumi.getter(name="serialNumber")
|
2040
|
-
def serial_number(self) -> pulumi.Output[str]:
|
2041
|
+
def serial_number(self) -> pulumi.Output[builtins.str]:
|
2041
2042
|
"""
|
2042
2043
|
The certificate's serial number, hex formatted.
|
2043
2044
|
"""
|
@@ -2045,7 +2046,7 @@ class SecretBackendRootCert(pulumi.CustomResource):
|
|
2045
2046
|
|
2046
2047
|
@property
|
2047
2048
|
@pulumi.getter(name="signatureBits")
|
2048
|
-
def signature_bits(self) -> pulumi.Output[int]:
|
2049
|
+
def signature_bits(self) -> pulumi.Output[builtins.int]:
|
2049
2050
|
"""
|
2050
2051
|
The number of bits to use in the signature algorithm
|
2051
2052
|
"""
|
@@ -2053,7 +2054,7 @@ class SecretBackendRootCert(pulumi.CustomResource):
|
|
2053
2054
|
|
2054
2055
|
@property
|
2055
2056
|
@pulumi.getter(name="streetAddress")
|
2056
|
-
def street_address(self) -> pulumi.Output[Optional[str]]:
|
2057
|
+
def street_address(self) -> pulumi.Output[Optional[builtins.str]]:
|
2057
2058
|
"""
|
2058
2059
|
The street address
|
2059
2060
|
"""
|
@@ -2061,7 +2062,7 @@ class SecretBackendRootCert(pulumi.CustomResource):
|
|
2061
2062
|
|
2062
2063
|
@property
|
2063
2064
|
@pulumi.getter
|
2064
|
-
def ttl(self) -> pulumi.Output[Optional[str]]:
|
2065
|
+
def ttl(self) -> pulumi.Output[Optional[builtins.str]]:
|
2065
2066
|
"""
|
2066
2067
|
Time to live
|
2067
2068
|
"""
|
@@ -2069,7 +2070,7 @@ class SecretBackendRootCert(pulumi.CustomResource):
|
|
2069
2070
|
|
2070
2071
|
@property
|
2071
2072
|
@pulumi.getter
|
2072
|
-
def type(self) -> pulumi.Output[str]:
|
2073
|
+
def type(self) -> pulumi.Output[builtins.str]:
|
2073
2074
|
"""
|
2074
2075
|
Type of intermediate to create. Must be either \\"exported\\", \\"internal\\"
|
2075
2076
|
or \\"kms\\"
|
@@ -2078,7 +2079,7 @@ class SecretBackendRootCert(pulumi.CustomResource):
|
|
2078
2079
|
|
2079
2080
|
@property
|
2080
2081
|
@pulumi.getter(name="uriSans")
|
2081
|
-
def uri_sans(self) -> pulumi.Output[Optional[Sequence[str]]]:
|
2082
|
+
def uri_sans(self) -> pulumi.Output[Optional[Sequence[builtins.str]]]:
|
2082
2083
|
"""
|
2083
2084
|
List of alternative URIs
|
2084
2085
|
"""
|