pulumi-vault 6.7.0a1743576047__py3-none-any.whl → 6.7.0a1744267302__py3-none-any.whl
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- pulumi_vault/__init__.py +1 -0
- pulumi_vault/_inputs.py +554 -553
- pulumi_vault/ad/__init__.py +1 -0
- pulumi_vault/ad/get_access_credentials.py +20 -19
- pulumi_vault/ad/secret_backend.py +477 -476
- pulumi_vault/ad/secret_library.py +99 -98
- pulumi_vault/ad/secret_role.py +85 -84
- pulumi_vault/alicloud/__init__.py +1 -0
- pulumi_vault/alicloud/auth_backend_role.py +183 -182
- pulumi_vault/approle/__init__.py +1 -0
- pulumi_vault/approle/auth_backend_login.py +106 -105
- pulumi_vault/approle/auth_backend_role.py +239 -238
- pulumi_vault/approle/auth_backend_role_secret_id.py +162 -161
- pulumi_vault/approle/get_auth_backend_role_id.py +18 -17
- pulumi_vault/audit.py +85 -84
- pulumi_vault/audit_request_header.py +43 -42
- pulumi_vault/auth_backend.py +106 -105
- pulumi_vault/aws/__init__.py +1 -0
- pulumi_vault/aws/auth_backend_cert.py +71 -70
- pulumi_vault/aws/auth_backend_client.py +253 -252
- pulumi_vault/aws/auth_backend_config_identity.py +85 -84
- pulumi_vault/aws/auth_backend_identity_whitelist.py +57 -56
- pulumi_vault/aws/auth_backend_login.py +209 -208
- pulumi_vault/aws/auth_backend_role.py +400 -399
- pulumi_vault/aws/auth_backend_role_tag.py +127 -126
- pulumi_vault/aws/auth_backend_roletag_blacklist.py +57 -56
- pulumi_vault/aws/auth_backend_sts_role.py +71 -70
- pulumi_vault/aws/get_access_credentials.py +44 -43
- pulumi_vault/aws/get_static_access_credentials.py +13 -12
- pulumi_vault/aws/secret_backend.py +337 -336
- pulumi_vault/aws/secret_backend_role.py +211 -210
- pulumi_vault/aws/secret_backend_static_role.py +113 -112
- pulumi_vault/azure/__init__.py +1 -0
- pulumi_vault/azure/_inputs.py +21 -20
- pulumi_vault/azure/auth_backend_config.py +183 -182
- pulumi_vault/azure/auth_backend_role.py +253 -252
- pulumi_vault/azure/backend.py +239 -238
- pulumi_vault/azure/backend_role.py +141 -140
- pulumi_vault/azure/get_access_credentials.py +58 -57
- pulumi_vault/azure/outputs.py +11 -10
- pulumi_vault/cert_auth_backend_role.py +365 -364
- pulumi_vault/config/__init__.py +1 -0
- pulumi_vault/config/__init__.pyi +1 -0
- pulumi_vault/config/_inputs.py +11 -10
- pulumi_vault/config/outputs.py +287 -286
- pulumi_vault/config/ui_custom_message.py +113 -112
- pulumi_vault/config/vars.py +1 -0
- pulumi_vault/consul/__init__.py +1 -0
- pulumi_vault/consul/secret_backend.py +197 -196
- pulumi_vault/consul/secret_backend_role.py +183 -182
- pulumi_vault/database/__init__.py +1 -0
- pulumi_vault/database/_inputs.py +2525 -2524
- pulumi_vault/database/outputs.py +1529 -1528
- pulumi_vault/database/secret_backend_connection.py +169 -168
- pulumi_vault/database/secret_backend_role.py +169 -168
- pulumi_vault/database/secret_backend_static_role.py +179 -178
- pulumi_vault/database/secrets_mount.py +267 -266
- pulumi_vault/egp_policy.py +71 -70
- pulumi_vault/gcp/__init__.py +1 -0
- pulumi_vault/gcp/_inputs.py +82 -81
- pulumi_vault/gcp/auth_backend.py +260 -259
- pulumi_vault/gcp/auth_backend_role.py +281 -280
- pulumi_vault/gcp/get_auth_backend_role.py +70 -69
- pulumi_vault/gcp/outputs.py +50 -49
- pulumi_vault/gcp/secret_backend.py +232 -231
- pulumi_vault/gcp/secret_impersonated_account.py +92 -91
- pulumi_vault/gcp/secret_roleset.py +92 -91
- pulumi_vault/gcp/secret_static_account.py +92 -91
- pulumi_vault/generic/__init__.py +1 -0
- pulumi_vault/generic/endpoint.py +113 -112
- pulumi_vault/generic/get_secret.py +28 -27
- pulumi_vault/generic/secret.py +78 -77
- pulumi_vault/get_auth_backend.py +19 -18
- pulumi_vault/get_auth_backends.py +14 -13
- pulumi_vault/get_namespace.py +15 -14
- pulumi_vault/get_namespaces.py +8 -7
- pulumi_vault/get_nomad_access_token.py +19 -18
- pulumi_vault/get_policy_document.py +6 -5
- pulumi_vault/get_raft_autopilot_state.py +18 -17
- pulumi_vault/github/__init__.py +1 -0
- pulumi_vault/github/_inputs.py +42 -41
- pulumi_vault/github/auth_backend.py +232 -231
- pulumi_vault/github/outputs.py +26 -25
- pulumi_vault/github/team.py +57 -56
- pulumi_vault/github/user.py +57 -56
- pulumi_vault/identity/__init__.py +1 -0
- pulumi_vault/identity/entity.py +85 -84
- pulumi_vault/identity/entity_alias.py +71 -70
- pulumi_vault/identity/entity_policies.py +64 -63
- pulumi_vault/identity/get_entity.py +43 -42
- pulumi_vault/identity/get_group.py +50 -49
- pulumi_vault/identity/get_oidc_client_creds.py +14 -13
- pulumi_vault/identity/get_oidc_openid_config.py +24 -23
- pulumi_vault/identity/get_oidc_public_keys.py +13 -12
- pulumi_vault/identity/group.py +141 -140
- pulumi_vault/identity/group_alias.py +57 -56
- pulumi_vault/identity/group_member_entity_ids.py +57 -56
- pulumi_vault/identity/group_member_group_ids.py +57 -56
- pulumi_vault/identity/group_policies.py +64 -63
- pulumi_vault/identity/mfa_duo.py +148 -147
- pulumi_vault/identity/mfa_login_enforcement.py +120 -119
- pulumi_vault/identity/mfa_okta.py +134 -133
- pulumi_vault/identity/mfa_pingid.py +127 -126
- pulumi_vault/identity/mfa_totp.py +176 -175
- pulumi_vault/identity/oidc.py +29 -28
- pulumi_vault/identity/oidc_assignment.py +57 -56
- pulumi_vault/identity/oidc_client.py +127 -126
- pulumi_vault/identity/oidc_key.py +85 -84
- pulumi_vault/identity/oidc_key_allowed_client_id.py +43 -42
- pulumi_vault/identity/oidc_provider.py +92 -91
- pulumi_vault/identity/oidc_role.py +85 -84
- pulumi_vault/identity/oidc_scope.py +57 -56
- pulumi_vault/identity/outputs.py +32 -31
- pulumi_vault/jwt/__init__.py +1 -0
- pulumi_vault/jwt/_inputs.py +42 -41
- pulumi_vault/jwt/auth_backend.py +288 -287
- pulumi_vault/jwt/auth_backend_role.py +407 -406
- pulumi_vault/jwt/outputs.py +26 -25
- pulumi_vault/kmip/__init__.py +1 -0
- pulumi_vault/kmip/secret_backend.py +183 -182
- pulumi_vault/kmip/secret_role.py +295 -294
- pulumi_vault/kmip/secret_scope.py +57 -56
- pulumi_vault/kubernetes/__init__.py +1 -0
- pulumi_vault/kubernetes/auth_backend_config.py +141 -140
- pulumi_vault/kubernetes/auth_backend_role.py +225 -224
- pulumi_vault/kubernetes/get_auth_backend_config.py +47 -46
- pulumi_vault/kubernetes/get_auth_backend_role.py +70 -69
- pulumi_vault/kubernetes/get_service_account_token.py +38 -37
- pulumi_vault/kubernetes/secret_backend.py +316 -315
- pulumi_vault/kubernetes/secret_backend_role.py +197 -196
- pulumi_vault/kv/__init__.py +1 -0
- pulumi_vault/kv/_inputs.py +21 -20
- pulumi_vault/kv/get_secret.py +17 -16
- pulumi_vault/kv/get_secret_subkeys_v2.py +30 -29
- pulumi_vault/kv/get_secret_v2.py +29 -28
- pulumi_vault/kv/get_secrets_list.py +13 -12
- pulumi_vault/kv/get_secrets_list_v2.py +19 -18
- pulumi_vault/kv/outputs.py +13 -12
- pulumi_vault/kv/secret.py +50 -49
- pulumi_vault/kv/secret_backend_v2.py +71 -70
- pulumi_vault/kv/secret_v2.py +134 -133
- pulumi_vault/ldap/__init__.py +1 -0
- pulumi_vault/ldap/auth_backend.py +588 -587
- pulumi_vault/ldap/auth_backend_group.py +57 -56
- pulumi_vault/ldap/auth_backend_user.py +71 -70
- pulumi_vault/ldap/get_dynamic_credentials.py +17 -16
- pulumi_vault/ldap/get_static_credentials.py +18 -17
- pulumi_vault/ldap/secret_backend.py +554 -553
- pulumi_vault/ldap/secret_backend_dynamic_role.py +127 -126
- pulumi_vault/ldap/secret_backend_library_set.py +99 -98
- pulumi_vault/ldap/secret_backend_static_role.py +99 -98
- pulumi_vault/managed/__init__.py +1 -0
- pulumi_vault/managed/_inputs.py +229 -228
- pulumi_vault/managed/keys.py +15 -14
- pulumi_vault/managed/outputs.py +139 -138
- pulumi_vault/mfa_duo.py +113 -112
- pulumi_vault/mfa_okta.py +113 -112
- pulumi_vault/mfa_pingid.py +120 -119
- pulumi_vault/mfa_totp.py +127 -126
- pulumi_vault/mongodbatlas/__init__.py +1 -0
- pulumi_vault/mongodbatlas/secret_backend.py +64 -63
- pulumi_vault/mongodbatlas/secret_role.py +155 -154
- pulumi_vault/mount.py +274 -273
- pulumi_vault/namespace.py +64 -63
- pulumi_vault/nomad_secret_backend.py +211 -210
- pulumi_vault/nomad_secret_role.py +85 -84
- pulumi_vault/okta/__init__.py +1 -0
- pulumi_vault/okta/_inputs.py +26 -25
- pulumi_vault/okta/auth_backend.py +274 -273
- pulumi_vault/okta/auth_backend_group.py +57 -56
- pulumi_vault/okta/auth_backend_user.py +71 -70
- pulumi_vault/okta/outputs.py +16 -15
- pulumi_vault/outputs.py +56 -55
- pulumi_vault/password_policy.py +43 -42
- pulumi_vault/pkisecret/__init__.py +1 -0
- pulumi_vault/pkisecret/_inputs.py +31 -30
- pulumi_vault/pkisecret/backend_acme_eab.py +92 -91
- pulumi_vault/pkisecret/backend_config_acme.py +141 -140
- pulumi_vault/pkisecret/backend_config_auto_tidy.py +323 -322
- pulumi_vault/pkisecret/backend_config_cluster.py +57 -56
- pulumi_vault/pkisecret/backend_config_cmpv2.py +106 -105
- pulumi_vault/pkisecret/backend_config_est.py +120 -119
- pulumi_vault/pkisecret/get_backend_cert_metadata.py +22 -21
- pulumi_vault/pkisecret/get_backend_config_cmpv2.py +22 -21
- pulumi_vault/pkisecret/get_backend_config_est.py +19 -18
- pulumi_vault/pkisecret/get_backend_issuer.py +45 -44
- pulumi_vault/pkisecret/get_backend_issuers.py +15 -14
- pulumi_vault/pkisecret/get_backend_key.py +20 -19
- pulumi_vault/pkisecret/get_backend_keys.py +15 -14
- pulumi_vault/pkisecret/outputs.py +28 -27
- pulumi_vault/pkisecret/secret_backend_cert.py +337 -336
- pulumi_vault/pkisecret/secret_backend_config_ca.py +43 -42
- pulumi_vault/pkisecret/secret_backend_config_issuers.py +57 -56
- pulumi_vault/pkisecret/secret_backend_config_urls.py +85 -84
- pulumi_vault/pkisecret/secret_backend_crl_config.py +197 -196
- pulumi_vault/pkisecret/secret_backend_intermediate_cert_request.py +421 -420
- pulumi_vault/pkisecret/secret_backend_intermediate_set_signed.py +57 -56
- pulumi_vault/pkisecret/secret_backend_issuer.py +232 -231
- pulumi_vault/pkisecret/secret_backend_key.py +120 -119
- pulumi_vault/pkisecret/secret_backend_role.py +715 -714
- pulumi_vault/pkisecret/secret_backend_root_cert.py +554 -553
- pulumi_vault/pkisecret/secret_backend_root_sign_intermediate.py +526 -525
- pulumi_vault/pkisecret/secret_backend_sign.py +281 -280
- pulumi_vault/plugin.py +127 -126
- pulumi_vault/plugin_pinned_version.py +43 -42
- pulumi_vault/policy.py +43 -42
- pulumi_vault/provider.py +120 -119
- pulumi_vault/pulumi-plugin.json +1 -1
- pulumi_vault/quota_lease_count.py +85 -84
- pulumi_vault/quota_rate_limit.py +113 -112
- pulumi_vault/rabbitmq/__init__.py +1 -0
- pulumi_vault/rabbitmq/_inputs.py +41 -40
- pulumi_vault/rabbitmq/outputs.py +25 -24
- pulumi_vault/rabbitmq/secret_backend.py +169 -168
- pulumi_vault/rabbitmq/secret_backend_role.py +57 -56
- pulumi_vault/raft_autopilot.py +113 -112
- pulumi_vault/raft_snapshot_agent_config.py +393 -392
- pulumi_vault/rgp_policy.py +57 -56
- pulumi_vault/saml/__init__.py +1 -0
- pulumi_vault/saml/auth_backend.py +155 -154
- pulumi_vault/saml/auth_backend_role.py +239 -238
- pulumi_vault/secrets/__init__.py +1 -0
- pulumi_vault/secrets/_inputs.py +16 -15
- pulumi_vault/secrets/outputs.py +10 -9
- pulumi_vault/secrets/sync_association.py +71 -70
- pulumi_vault/secrets/sync_aws_destination.py +148 -147
- pulumi_vault/secrets/sync_azure_destination.py +148 -147
- pulumi_vault/secrets/sync_config.py +43 -42
- pulumi_vault/secrets/sync_gcp_destination.py +106 -105
- pulumi_vault/secrets/sync_gh_destination.py +134 -133
- pulumi_vault/secrets/sync_github_apps.py +64 -63
- pulumi_vault/secrets/sync_vercel_destination.py +120 -119
- pulumi_vault/ssh/__init__.py +1 -0
- pulumi_vault/ssh/_inputs.py +11 -10
- pulumi_vault/ssh/get_secret_backend_sign.py +52 -51
- pulumi_vault/ssh/outputs.py +7 -6
- pulumi_vault/ssh/secret_backend_ca.py +99 -98
- pulumi_vault/ssh/secret_backend_role.py +365 -364
- pulumi_vault/terraformcloud/__init__.py +1 -0
- pulumi_vault/terraformcloud/secret_backend.py +111 -110
- pulumi_vault/terraformcloud/secret_creds.py +74 -73
- pulumi_vault/terraformcloud/secret_role.py +93 -92
- pulumi_vault/token.py +246 -245
- pulumi_vault/tokenauth/__init__.py +1 -0
- pulumi_vault/tokenauth/auth_backend_role.py +267 -266
- pulumi_vault/transform/__init__.py +1 -0
- pulumi_vault/transform/alphabet.py +57 -56
- pulumi_vault/transform/get_decode.py +47 -46
- pulumi_vault/transform/get_encode.py +47 -46
- pulumi_vault/transform/role.py +57 -56
- pulumi_vault/transform/template.py +113 -112
- pulumi_vault/transform/transformation.py +141 -140
- pulumi_vault/transit/__init__.py +1 -0
- pulumi_vault/transit/get_decrypt.py +18 -17
- pulumi_vault/transit/get_encrypt.py +21 -20
- pulumi_vault/transit/get_sign.py +54 -53
- pulumi_vault/transit/get_verify.py +60 -59
- pulumi_vault/transit/secret_backend_key.py +274 -273
- pulumi_vault/transit/secret_cache_config.py +43 -42
- {pulumi_vault-6.7.0a1743576047.dist-info → pulumi_vault-6.7.0a1744267302.dist-info}/METADATA +1 -1
- pulumi_vault-6.7.0a1744267302.dist-info/RECORD +265 -0
- pulumi_vault-6.7.0a1743576047.dist-info/RECORD +0 -265
- {pulumi_vault-6.7.0a1743576047.dist-info → pulumi_vault-6.7.0a1744267302.dist-info}/WHEEL +0 -0
- {pulumi_vault-6.7.0a1743576047.dist-info → pulumi_vault-6.7.0a1744267302.dist-info}/top_level.txt +0 -0
@@ -2,6 +2,7 @@
|
|
2
2
|
# *** WARNING: this file was generated by the Pulumi Terraform Bridge (tfgen) Tool. ***
|
3
3
|
# *** Do not edit by hand unless you're certain you know what you are doing! ***
|
4
4
|
|
5
|
+
import builtins
|
5
6
|
import copy
|
6
7
|
import warnings
|
7
8
|
import sys
|
@@ -19,48 +20,48 @@ __all__ = ['SecretBackendSignArgs', 'SecretBackendSign']
|
|
19
20
|
@pulumi.input_type
|
20
21
|
class SecretBackendSignArgs:
|
21
22
|
def __init__(__self__, *,
|
22
|
-
backend: pulumi.Input[str],
|
23
|
-
common_name: pulumi.Input[str],
|
24
|
-
csr: pulumi.Input[str],
|
25
|
-
alt_names: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
|
26
|
-
auto_renew: Optional[pulumi.Input[bool]] = None,
|
27
|
-
cert_metadata: Optional[pulumi.Input[str]] = None,
|
28
|
-
exclude_cn_from_sans: Optional[pulumi.Input[bool]] = None,
|
29
|
-
format: Optional[pulumi.Input[str]] = None,
|
30
|
-
ip_sans: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
|
31
|
-
issuer_ref: Optional[pulumi.Input[str]] = None,
|
32
|
-
min_seconds_remaining: Optional[pulumi.Input[int]] = None,
|
33
|
-
name: Optional[pulumi.Input[str]] = None,
|
34
|
-
namespace: Optional[pulumi.Input[str]] = None,
|
35
|
-
not_after: Optional[pulumi.Input[str]] = None,
|
36
|
-
other_sans: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
|
37
|
-
ttl: Optional[pulumi.Input[str]] = None,
|
38
|
-
uri_sans: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None):
|
23
|
+
backend: pulumi.Input[builtins.str],
|
24
|
+
common_name: pulumi.Input[builtins.str],
|
25
|
+
csr: pulumi.Input[builtins.str],
|
26
|
+
alt_names: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
|
27
|
+
auto_renew: Optional[pulumi.Input[builtins.bool]] = None,
|
28
|
+
cert_metadata: Optional[pulumi.Input[builtins.str]] = None,
|
29
|
+
exclude_cn_from_sans: Optional[pulumi.Input[builtins.bool]] = None,
|
30
|
+
format: Optional[pulumi.Input[builtins.str]] = None,
|
31
|
+
ip_sans: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
|
32
|
+
issuer_ref: Optional[pulumi.Input[builtins.str]] = None,
|
33
|
+
min_seconds_remaining: Optional[pulumi.Input[builtins.int]] = None,
|
34
|
+
name: Optional[pulumi.Input[builtins.str]] = None,
|
35
|
+
namespace: Optional[pulumi.Input[builtins.str]] = None,
|
36
|
+
not_after: Optional[pulumi.Input[builtins.str]] = None,
|
37
|
+
other_sans: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
|
38
|
+
ttl: Optional[pulumi.Input[builtins.str]] = None,
|
39
|
+
uri_sans: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None):
|
39
40
|
"""
|
40
41
|
The set of arguments for constructing a SecretBackendSign resource.
|
41
|
-
:param pulumi.Input[str] backend: The PKI secret backend the resource belongs to.
|
42
|
-
:param pulumi.Input[str] common_name: CN of certificate to create
|
43
|
-
:param pulumi.Input[str] csr: The CSR
|
44
|
-
:param pulumi.Input[Sequence[pulumi.Input[str]]] alt_names: List of alternative names
|
45
|
-
:param pulumi.Input[bool] auto_renew: If set to `true`, certs will be renewed if the expiration is within `min_seconds_remaining`. Default `false`
|
46
|
-
:param pulumi.Input[str] cert_metadata: A base 64 encoded value or an empty string to associate with the certificate's serial number. The role's no_store_metadata must be set to false, otherwise an error is returned when specified.
|
47
|
-
:param pulumi.Input[bool] exclude_cn_from_sans: Flag to exclude CN from SANs
|
48
|
-
:param pulumi.Input[str] format: The format of data
|
49
|
-
:param pulumi.Input[Sequence[pulumi.Input[str]]] ip_sans: List of alternative IPs
|
50
|
-
:param pulumi.Input[str] issuer_ref: Specifies the default issuer of this request. Can
|
42
|
+
:param pulumi.Input[builtins.str] backend: The PKI secret backend the resource belongs to.
|
43
|
+
:param pulumi.Input[builtins.str] common_name: CN of certificate to create
|
44
|
+
:param pulumi.Input[builtins.str] csr: The CSR
|
45
|
+
:param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] alt_names: List of alternative names
|
46
|
+
:param pulumi.Input[builtins.bool] auto_renew: If set to `true`, certs will be renewed if the expiration is within `min_seconds_remaining`. Default `false`
|
47
|
+
:param pulumi.Input[builtins.str] cert_metadata: A base 64 encoded value or an empty string to associate with the certificate's serial number. The role's no_store_metadata must be set to false, otherwise an error is returned when specified.
|
48
|
+
:param pulumi.Input[builtins.bool] exclude_cn_from_sans: Flag to exclude CN from SANs
|
49
|
+
:param pulumi.Input[builtins.str] format: The format of data
|
50
|
+
:param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] ip_sans: List of alternative IPs
|
51
|
+
:param pulumi.Input[builtins.str] issuer_ref: Specifies the default issuer of this request. Can
|
51
52
|
be the value `default`, a name, or an issuer ID. Use ACLs to prevent access to
|
52
53
|
the `/pki/issuer/:issuer_ref/{issue,sign}/:name` paths to prevent users
|
53
54
|
overriding the role's `issuer_ref` value.
|
54
|
-
:param pulumi.Input[int] min_seconds_remaining: Generate a new certificate when the expiration is within this number of seconds, default is 604800 (7 days)
|
55
|
-
:param pulumi.Input[str] name: Name of the role to create the certificate against
|
56
|
-
:param pulumi.Input[str] namespace: The namespace to provision the resource in.
|
55
|
+
:param pulumi.Input[builtins.int] min_seconds_remaining: Generate a new certificate when the expiration is within this number of seconds, default is 604800 (7 days)
|
56
|
+
:param pulumi.Input[builtins.str] name: Name of the role to create the certificate against
|
57
|
+
:param pulumi.Input[builtins.str] namespace: The namespace to provision the resource in.
|
57
58
|
The value should not contain leading or trailing forward slashes.
|
58
59
|
The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault/index.html#namespace).
|
59
60
|
*Available only for Vault Enterprise*.
|
60
|
-
:param pulumi.Input[str] not_after: Set the Not After field of the certificate with specified date value. The value format should be given in UTC format YYYY-MM-ddTHH:MM:SSZ. Supports the Y10K end date for IEEE 802.1AR-2018 standard devices, 9999-12-31T23:59:59Z.
|
61
|
-
:param pulumi.Input[Sequence[pulumi.Input[str]]] other_sans: List of other SANs
|
62
|
-
:param pulumi.Input[str] ttl: Time to live
|
63
|
-
:param pulumi.Input[Sequence[pulumi.Input[str]]] uri_sans: List of alternative URIs
|
61
|
+
:param pulumi.Input[builtins.str] not_after: Set the Not After field of the certificate with specified date value. The value format should be given in UTC format YYYY-MM-ddTHH:MM:SSZ. Supports the Y10K end date for IEEE 802.1AR-2018 standard devices, 9999-12-31T23:59:59Z.
|
62
|
+
:param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] other_sans: List of other SANs
|
63
|
+
:param pulumi.Input[builtins.str] ttl: Time to live
|
64
|
+
:param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] uri_sans: List of alternative URIs
|
64
65
|
"""
|
65
66
|
pulumi.set(__self__, "backend", backend)
|
66
67
|
pulumi.set(__self__, "common_name", common_name)
|
@@ -96,115 +97,115 @@ class SecretBackendSignArgs:
|
|
96
97
|
|
97
98
|
@property
|
98
99
|
@pulumi.getter
|
99
|
-
def backend(self) -> pulumi.Input[str]:
|
100
|
+
def backend(self) -> pulumi.Input[builtins.str]:
|
100
101
|
"""
|
101
102
|
The PKI secret backend the resource belongs to.
|
102
103
|
"""
|
103
104
|
return pulumi.get(self, "backend")
|
104
105
|
|
105
106
|
@backend.setter
|
106
|
-
def backend(self, value: pulumi.Input[str]):
|
107
|
+
def backend(self, value: pulumi.Input[builtins.str]):
|
107
108
|
pulumi.set(self, "backend", value)
|
108
109
|
|
109
110
|
@property
|
110
111
|
@pulumi.getter(name="commonName")
|
111
|
-
def common_name(self) -> pulumi.Input[str]:
|
112
|
+
def common_name(self) -> pulumi.Input[builtins.str]:
|
112
113
|
"""
|
113
114
|
CN of certificate to create
|
114
115
|
"""
|
115
116
|
return pulumi.get(self, "common_name")
|
116
117
|
|
117
118
|
@common_name.setter
|
118
|
-
def common_name(self, value: pulumi.Input[str]):
|
119
|
+
def common_name(self, value: pulumi.Input[builtins.str]):
|
119
120
|
pulumi.set(self, "common_name", value)
|
120
121
|
|
121
122
|
@property
|
122
123
|
@pulumi.getter
|
123
|
-
def csr(self) -> pulumi.Input[str]:
|
124
|
+
def csr(self) -> pulumi.Input[builtins.str]:
|
124
125
|
"""
|
125
126
|
The CSR
|
126
127
|
"""
|
127
128
|
return pulumi.get(self, "csr")
|
128
129
|
|
129
130
|
@csr.setter
|
130
|
-
def csr(self, value: pulumi.Input[str]):
|
131
|
+
def csr(self, value: pulumi.Input[builtins.str]):
|
131
132
|
pulumi.set(self, "csr", value)
|
132
133
|
|
133
134
|
@property
|
134
135
|
@pulumi.getter(name="altNames")
|
135
|
-
def alt_names(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]:
|
136
|
+
def alt_names(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]:
|
136
137
|
"""
|
137
138
|
List of alternative names
|
138
139
|
"""
|
139
140
|
return pulumi.get(self, "alt_names")
|
140
141
|
|
141
142
|
@alt_names.setter
|
142
|
-
def alt_names(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]):
|
143
|
+
def alt_names(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]):
|
143
144
|
pulumi.set(self, "alt_names", value)
|
144
145
|
|
145
146
|
@property
|
146
147
|
@pulumi.getter(name="autoRenew")
|
147
|
-
def auto_renew(self) -> Optional[pulumi.Input[bool]]:
|
148
|
+
def auto_renew(self) -> Optional[pulumi.Input[builtins.bool]]:
|
148
149
|
"""
|
149
150
|
If set to `true`, certs will be renewed if the expiration is within `min_seconds_remaining`. Default `false`
|
150
151
|
"""
|
151
152
|
return pulumi.get(self, "auto_renew")
|
152
153
|
|
153
154
|
@auto_renew.setter
|
154
|
-
def auto_renew(self, value: Optional[pulumi.Input[bool]]):
|
155
|
+
def auto_renew(self, value: Optional[pulumi.Input[builtins.bool]]):
|
155
156
|
pulumi.set(self, "auto_renew", value)
|
156
157
|
|
157
158
|
@property
|
158
159
|
@pulumi.getter(name="certMetadata")
|
159
|
-
def cert_metadata(self) -> Optional[pulumi.Input[str]]:
|
160
|
+
def cert_metadata(self) -> Optional[pulumi.Input[builtins.str]]:
|
160
161
|
"""
|
161
162
|
A base 64 encoded value or an empty string to associate with the certificate's serial number. The role's no_store_metadata must be set to false, otherwise an error is returned when specified.
|
162
163
|
"""
|
163
164
|
return pulumi.get(self, "cert_metadata")
|
164
165
|
|
165
166
|
@cert_metadata.setter
|
166
|
-
def cert_metadata(self, value: Optional[pulumi.Input[str]]):
|
167
|
+
def cert_metadata(self, value: Optional[pulumi.Input[builtins.str]]):
|
167
168
|
pulumi.set(self, "cert_metadata", value)
|
168
169
|
|
169
170
|
@property
|
170
171
|
@pulumi.getter(name="excludeCnFromSans")
|
171
|
-
def exclude_cn_from_sans(self) -> Optional[pulumi.Input[bool]]:
|
172
|
+
def exclude_cn_from_sans(self) -> Optional[pulumi.Input[builtins.bool]]:
|
172
173
|
"""
|
173
174
|
Flag to exclude CN from SANs
|
174
175
|
"""
|
175
176
|
return pulumi.get(self, "exclude_cn_from_sans")
|
176
177
|
|
177
178
|
@exclude_cn_from_sans.setter
|
178
|
-
def exclude_cn_from_sans(self, value: Optional[pulumi.Input[bool]]):
|
179
|
+
def exclude_cn_from_sans(self, value: Optional[pulumi.Input[builtins.bool]]):
|
179
180
|
pulumi.set(self, "exclude_cn_from_sans", value)
|
180
181
|
|
181
182
|
@property
|
182
183
|
@pulumi.getter
|
183
|
-
def format(self) -> Optional[pulumi.Input[str]]:
|
184
|
+
def format(self) -> Optional[pulumi.Input[builtins.str]]:
|
184
185
|
"""
|
185
186
|
The format of data
|
186
187
|
"""
|
187
188
|
return pulumi.get(self, "format")
|
188
189
|
|
189
190
|
@format.setter
|
190
|
-
def format(self, value: Optional[pulumi.Input[str]]):
|
191
|
+
def format(self, value: Optional[pulumi.Input[builtins.str]]):
|
191
192
|
pulumi.set(self, "format", value)
|
192
193
|
|
193
194
|
@property
|
194
195
|
@pulumi.getter(name="ipSans")
|
195
|
-
def ip_sans(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]:
|
196
|
+
def ip_sans(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]:
|
196
197
|
"""
|
197
198
|
List of alternative IPs
|
198
199
|
"""
|
199
200
|
return pulumi.get(self, "ip_sans")
|
200
201
|
|
201
202
|
@ip_sans.setter
|
202
|
-
def ip_sans(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]):
|
203
|
+
def ip_sans(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]):
|
203
204
|
pulumi.set(self, "ip_sans", value)
|
204
205
|
|
205
206
|
@property
|
206
207
|
@pulumi.getter(name="issuerRef")
|
207
|
-
def issuer_ref(self) -> Optional[pulumi.Input[str]]:
|
208
|
+
def issuer_ref(self) -> Optional[pulumi.Input[builtins.str]]:
|
208
209
|
"""
|
209
210
|
Specifies the default issuer of this request. Can
|
210
211
|
be the value `default`, a name, or an issuer ID. Use ACLs to prevent access to
|
@@ -214,36 +215,36 @@ class SecretBackendSignArgs:
|
|
214
215
|
return pulumi.get(self, "issuer_ref")
|
215
216
|
|
216
217
|
@issuer_ref.setter
|
217
|
-
def issuer_ref(self, value: Optional[pulumi.Input[str]]):
|
218
|
+
def issuer_ref(self, value: Optional[pulumi.Input[builtins.str]]):
|
218
219
|
pulumi.set(self, "issuer_ref", value)
|
219
220
|
|
220
221
|
@property
|
221
222
|
@pulumi.getter(name="minSecondsRemaining")
|
222
|
-
def min_seconds_remaining(self) -> Optional[pulumi.Input[int]]:
|
223
|
+
def min_seconds_remaining(self) -> Optional[pulumi.Input[builtins.int]]:
|
223
224
|
"""
|
224
225
|
Generate a new certificate when the expiration is within this number of seconds, default is 604800 (7 days)
|
225
226
|
"""
|
226
227
|
return pulumi.get(self, "min_seconds_remaining")
|
227
228
|
|
228
229
|
@min_seconds_remaining.setter
|
229
|
-
def min_seconds_remaining(self, value: Optional[pulumi.Input[int]]):
|
230
|
+
def min_seconds_remaining(self, value: Optional[pulumi.Input[builtins.int]]):
|
230
231
|
pulumi.set(self, "min_seconds_remaining", value)
|
231
232
|
|
232
233
|
@property
|
233
234
|
@pulumi.getter
|
234
|
-
def name(self) -> Optional[pulumi.Input[str]]:
|
235
|
+
def name(self) -> Optional[pulumi.Input[builtins.str]]:
|
235
236
|
"""
|
236
237
|
Name of the role to create the certificate against
|
237
238
|
"""
|
238
239
|
return pulumi.get(self, "name")
|
239
240
|
|
240
241
|
@name.setter
|
241
|
-
def name(self, value: Optional[pulumi.Input[str]]):
|
242
|
+
def name(self, value: Optional[pulumi.Input[builtins.str]]):
|
242
243
|
pulumi.set(self, "name", value)
|
243
244
|
|
244
245
|
@property
|
245
246
|
@pulumi.getter
|
246
|
-
def namespace(self) -> Optional[pulumi.Input[str]]:
|
247
|
+
def namespace(self) -> Optional[pulumi.Input[builtins.str]]:
|
247
248
|
"""
|
248
249
|
The namespace to provision the resource in.
|
249
250
|
The value should not contain leading or trailing forward slashes.
|
@@ -253,115 +254,115 @@ class SecretBackendSignArgs:
|
|
253
254
|
return pulumi.get(self, "namespace")
|
254
255
|
|
255
256
|
@namespace.setter
|
256
|
-
def namespace(self, value: Optional[pulumi.Input[str]]):
|
257
|
+
def namespace(self, value: Optional[pulumi.Input[builtins.str]]):
|
257
258
|
pulumi.set(self, "namespace", value)
|
258
259
|
|
259
260
|
@property
|
260
261
|
@pulumi.getter(name="notAfter")
|
261
|
-
def not_after(self) -> Optional[pulumi.Input[str]]:
|
262
|
+
def not_after(self) -> Optional[pulumi.Input[builtins.str]]:
|
262
263
|
"""
|
263
264
|
Set the Not After field of the certificate with specified date value. The value format should be given in UTC format YYYY-MM-ddTHH:MM:SSZ. Supports the Y10K end date for IEEE 802.1AR-2018 standard devices, 9999-12-31T23:59:59Z.
|
264
265
|
"""
|
265
266
|
return pulumi.get(self, "not_after")
|
266
267
|
|
267
268
|
@not_after.setter
|
268
|
-
def not_after(self, value: Optional[pulumi.Input[str]]):
|
269
|
+
def not_after(self, value: Optional[pulumi.Input[builtins.str]]):
|
269
270
|
pulumi.set(self, "not_after", value)
|
270
271
|
|
271
272
|
@property
|
272
273
|
@pulumi.getter(name="otherSans")
|
273
|
-
def other_sans(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]:
|
274
|
+
def other_sans(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]:
|
274
275
|
"""
|
275
276
|
List of other SANs
|
276
277
|
"""
|
277
278
|
return pulumi.get(self, "other_sans")
|
278
279
|
|
279
280
|
@other_sans.setter
|
280
|
-
def other_sans(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]):
|
281
|
+
def other_sans(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]):
|
281
282
|
pulumi.set(self, "other_sans", value)
|
282
283
|
|
283
284
|
@property
|
284
285
|
@pulumi.getter
|
285
|
-
def ttl(self) -> Optional[pulumi.Input[str]]:
|
286
|
+
def ttl(self) -> Optional[pulumi.Input[builtins.str]]:
|
286
287
|
"""
|
287
288
|
Time to live
|
288
289
|
"""
|
289
290
|
return pulumi.get(self, "ttl")
|
290
291
|
|
291
292
|
@ttl.setter
|
292
|
-
def ttl(self, value: Optional[pulumi.Input[str]]):
|
293
|
+
def ttl(self, value: Optional[pulumi.Input[builtins.str]]):
|
293
294
|
pulumi.set(self, "ttl", value)
|
294
295
|
|
295
296
|
@property
|
296
297
|
@pulumi.getter(name="uriSans")
|
297
|
-
def uri_sans(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]:
|
298
|
+
def uri_sans(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]:
|
298
299
|
"""
|
299
300
|
List of alternative URIs
|
300
301
|
"""
|
301
302
|
return pulumi.get(self, "uri_sans")
|
302
303
|
|
303
304
|
@uri_sans.setter
|
304
|
-
def uri_sans(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]):
|
305
|
+
def uri_sans(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]):
|
305
306
|
pulumi.set(self, "uri_sans", value)
|
306
307
|
|
307
308
|
|
308
309
|
@pulumi.input_type
|
309
310
|
class _SecretBackendSignState:
|
310
311
|
def __init__(__self__, *,
|
311
|
-
alt_names: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
|
312
|
-
auto_renew: Optional[pulumi.Input[bool]] = None,
|
313
|
-
backend: Optional[pulumi.Input[str]] = None,
|
314
|
-
ca_chains: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
|
315
|
-
cert_metadata: Optional[pulumi.Input[str]] = None,
|
316
|
-
certificate: Optional[pulumi.Input[str]] = None,
|
317
|
-
common_name: Optional[pulumi.Input[str]] = None,
|
318
|
-
csr: Optional[pulumi.Input[str]] = None,
|
319
|
-
exclude_cn_from_sans: Optional[pulumi.Input[bool]] = None,
|
320
|
-
expiration: Optional[pulumi.Input[int]] = None,
|
321
|
-
format: Optional[pulumi.Input[str]] = None,
|
322
|
-
ip_sans: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
|
323
|
-
issuer_ref: Optional[pulumi.Input[str]] = None,
|
324
|
-
issuing_ca: Optional[pulumi.Input[str]] = None,
|
325
|
-
min_seconds_remaining: Optional[pulumi.Input[int]] = None,
|
326
|
-
name: Optional[pulumi.Input[str]] = None,
|
327
|
-
namespace: Optional[pulumi.Input[str]] = None,
|
328
|
-
not_after: Optional[pulumi.Input[str]] = None,
|
329
|
-
other_sans: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
|
330
|
-
renew_pending: Optional[pulumi.Input[bool]] = None,
|
331
|
-
serial_number: Optional[pulumi.Input[str]] = None,
|
332
|
-
ttl: Optional[pulumi.Input[str]] = None,
|
333
|
-
uri_sans: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None):
|
312
|
+
alt_names: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
|
313
|
+
auto_renew: Optional[pulumi.Input[builtins.bool]] = None,
|
314
|
+
backend: Optional[pulumi.Input[builtins.str]] = None,
|
315
|
+
ca_chains: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
|
316
|
+
cert_metadata: Optional[pulumi.Input[builtins.str]] = None,
|
317
|
+
certificate: Optional[pulumi.Input[builtins.str]] = None,
|
318
|
+
common_name: Optional[pulumi.Input[builtins.str]] = None,
|
319
|
+
csr: Optional[pulumi.Input[builtins.str]] = None,
|
320
|
+
exclude_cn_from_sans: Optional[pulumi.Input[builtins.bool]] = None,
|
321
|
+
expiration: Optional[pulumi.Input[builtins.int]] = None,
|
322
|
+
format: Optional[pulumi.Input[builtins.str]] = None,
|
323
|
+
ip_sans: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
|
324
|
+
issuer_ref: Optional[pulumi.Input[builtins.str]] = None,
|
325
|
+
issuing_ca: Optional[pulumi.Input[builtins.str]] = None,
|
326
|
+
min_seconds_remaining: Optional[pulumi.Input[builtins.int]] = None,
|
327
|
+
name: Optional[pulumi.Input[builtins.str]] = None,
|
328
|
+
namespace: Optional[pulumi.Input[builtins.str]] = None,
|
329
|
+
not_after: Optional[pulumi.Input[builtins.str]] = None,
|
330
|
+
other_sans: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
|
331
|
+
renew_pending: Optional[pulumi.Input[builtins.bool]] = None,
|
332
|
+
serial_number: Optional[pulumi.Input[builtins.str]] = None,
|
333
|
+
ttl: Optional[pulumi.Input[builtins.str]] = None,
|
334
|
+
uri_sans: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None):
|
334
335
|
"""
|
335
336
|
Input properties used for looking up and filtering SecretBackendSign resources.
|
336
|
-
:param pulumi.Input[Sequence[pulumi.Input[str]]] alt_names: List of alternative names
|
337
|
-
:param pulumi.Input[bool] auto_renew: If set to `true`, certs will be renewed if the expiration is within `min_seconds_remaining`. Default `false`
|
338
|
-
:param pulumi.Input[str] backend: The PKI secret backend the resource belongs to.
|
339
|
-
:param pulumi.Input[Sequence[pulumi.Input[str]]] ca_chains: The CA chain
|
340
|
-
:param pulumi.Input[str] cert_metadata: A base 64 encoded value or an empty string to associate with the certificate's serial number. The role's no_store_metadata must be set to false, otherwise an error is returned when specified.
|
341
|
-
:param pulumi.Input[str] certificate: The certificate
|
342
|
-
:param pulumi.Input[str] common_name: CN of certificate to create
|
343
|
-
:param pulumi.Input[str] csr: The CSR
|
344
|
-
:param pulumi.Input[bool] exclude_cn_from_sans: Flag to exclude CN from SANs
|
345
|
-
:param pulumi.Input[int] expiration: The expiration date of the certificate in unix epoch format
|
346
|
-
:param pulumi.Input[str] format: The format of data
|
347
|
-
:param pulumi.Input[Sequence[pulumi.Input[str]]] ip_sans: List of alternative IPs
|
348
|
-
:param pulumi.Input[str] issuer_ref: Specifies the default issuer of this request. Can
|
337
|
+
:param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] alt_names: List of alternative names
|
338
|
+
:param pulumi.Input[builtins.bool] auto_renew: If set to `true`, certs will be renewed if the expiration is within `min_seconds_remaining`. Default `false`
|
339
|
+
:param pulumi.Input[builtins.str] backend: The PKI secret backend the resource belongs to.
|
340
|
+
:param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] ca_chains: The CA chain
|
341
|
+
:param pulumi.Input[builtins.str] cert_metadata: A base 64 encoded value or an empty string to associate with the certificate's serial number. The role's no_store_metadata must be set to false, otherwise an error is returned when specified.
|
342
|
+
:param pulumi.Input[builtins.str] certificate: The certificate
|
343
|
+
:param pulumi.Input[builtins.str] common_name: CN of certificate to create
|
344
|
+
:param pulumi.Input[builtins.str] csr: The CSR
|
345
|
+
:param pulumi.Input[builtins.bool] exclude_cn_from_sans: Flag to exclude CN from SANs
|
346
|
+
:param pulumi.Input[builtins.int] expiration: The expiration date of the certificate in unix epoch format
|
347
|
+
:param pulumi.Input[builtins.str] format: The format of data
|
348
|
+
:param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] ip_sans: List of alternative IPs
|
349
|
+
:param pulumi.Input[builtins.str] issuer_ref: Specifies the default issuer of this request. Can
|
349
350
|
be the value `default`, a name, or an issuer ID. Use ACLs to prevent access to
|
350
351
|
the `/pki/issuer/:issuer_ref/{issue,sign}/:name` paths to prevent users
|
351
352
|
overriding the role's `issuer_ref` value.
|
352
|
-
:param pulumi.Input[str] issuing_ca: The issuing CA
|
353
|
-
:param pulumi.Input[int] min_seconds_remaining: Generate a new certificate when the expiration is within this number of seconds, default is 604800 (7 days)
|
354
|
-
:param pulumi.Input[str] name: Name of the role to create the certificate against
|
355
|
-
:param pulumi.Input[str] namespace: The namespace to provision the resource in.
|
353
|
+
:param pulumi.Input[builtins.str] issuing_ca: The issuing CA
|
354
|
+
:param pulumi.Input[builtins.int] min_seconds_remaining: Generate a new certificate when the expiration is within this number of seconds, default is 604800 (7 days)
|
355
|
+
:param pulumi.Input[builtins.str] name: Name of the role to create the certificate against
|
356
|
+
:param pulumi.Input[builtins.str] namespace: The namespace to provision the resource in.
|
356
357
|
The value should not contain leading or trailing forward slashes.
|
357
358
|
The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault/index.html#namespace).
|
358
359
|
*Available only for Vault Enterprise*.
|
359
|
-
:param pulumi.Input[str] not_after: Set the Not After field of the certificate with specified date value. The value format should be given in UTC format YYYY-MM-ddTHH:MM:SSZ. Supports the Y10K end date for IEEE 802.1AR-2018 standard devices, 9999-12-31T23:59:59Z.
|
360
|
-
:param pulumi.Input[Sequence[pulumi.Input[str]]] other_sans: List of other SANs
|
361
|
-
:param pulumi.Input[bool] renew_pending: `true` if the current time (during refresh) is after the start of the early renewal window declared by `min_seconds_remaining`, and `false` otherwise; if `auto_renew` is set to `true` then the provider will plan to replace the certificate once renewal is pending.
|
362
|
-
:param pulumi.Input[str] serial_number: The certificate's serial number, hex formatted.
|
363
|
-
:param pulumi.Input[str] ttl: Time to live
|
364
|
-
:param pulumi.Input[Sequence[pulumi.Input[str]]] uri_sans: List of alternative URIs
|
360
|
+
:param pulumi.Input[builtins.str] not_after: Set the Not After field of the certificate with specified date value. The value format should be given in UTC format YYYY-MM-ddTHH:MM:SSZ. Supports the Y10K end date for IEEE 802.1AR-2018 standard devices, 9999-12-31T23:59:59Z.
|
361
|
+
:param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] other_sans: List of other SANs
|
362
|
+
:param pulumi.Input[builtins.bool] renew_pending: `true` if the current time (during refresh) is after the start of the early renewal window declared by `min_seconds_remaining`, and `false` otherwise; if `auto_renew` is set to `true` then the provider will plan to replace the certificate once renewal is pending.
|
363
|
+
:param pulumi.Input[builtins.str] serial_number: The certificate's serial number, hex formatted.
|
364
|
+
:param pulumi.Input[builtins.str] ttl: Time to live
|
365
|
+
:param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] uri_sans: List of alternative URIs
|
365
366
|
"""
|
366
367
|
if alt_names is not None:
|
367
368
|
pulumi.set(__self__, "alt_names", alt_names)
|
@@ -412,151 +413,151 @@ class _SecretBackendSignState:
|
|
412
413
|
|
413
414
|
@property
|
414
415
|
@pulumi.getter(name="altNames")
|
415
|
-
def alt_names(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]:
|
416
|
+
def alt_names(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]:
|
416
417
|
"""
|
417
418
|
List of alternative names
|
418
419
|
"""
|
419
420
|
return pulumi.get(self, "alt_names")
|
420
421
|
|
421
422
|
@alt_names.setter
|
422
|
-
def alt_names(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]):
|
423
|
+
def alt_names(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]):
|
423
424
|
pulumi.set(self, "alt_names", value)
|
424
425
|
|
425
426
|
@property
|
426
427
|
@pulumi.getter(name="autoRenew")
|
427
|
-
def auto_renew(self) -> Optional[pulumi.Input[bool]]:
|
428
|
+
def auto_renew(self) -> Optional[pulumi.Input[builtins.bool]]:
|
428
429
|
"""
|
429
430
|
If set to `true`, certs will be renewed if the expiration is within `min_seconds_remaining`. Default `false`
|
430
431
|
"""
|
431
432
|
return pulumi.get(self, "auto_renew")
|
432
433
|
|
433
434
|
@auto_renew.setter
|
434
|
-
def auto_renew(self, value: Optional[pulumi.Input[bool]]):
|
435
|
+
def auto_renew(self, value: Optional[pulumi.Input[builtins.bool]]):
|
435
436
|
pulumi.set(self, "auto_renew", value)
|
436
437
|
|
437
438
|
@property
|
438
439
|
@pulumi.getter
|
439
|
-
def backend(self) -> Optional[pulumi.Input[str]]:
|
440
|
+
def backend(self) -> Optional[pulumi.Input[builtins.str]]:
|
440
441
|
"""
|
441
442
|
The PKI secret backend the resource belongs to.
|
442
443
|
"""
|
443
444
|
return pulumi.get(self, "backend")
|
444
445
|
|
445
446
|
@backend.setter
|
446
|
-
def backend(self, value: Optional[pulumi.Input[str]]):
|
447
|
+
def backend(self, value: Optional[pulumi.Input[builtins.str]]):
|
447
448
|
pulumi.set(self, "backend", value)
|
448
449
|
|
449
450
|
@property
|
450
451
|
@pulumi.getter(name="caChains")
|
451
|
-
def ca_chains(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]:
|
452
|
+
def ca_chains(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]:
|
452
453
|
"""
|
453
454
|
The CA chain
|
454
455
|
"""
|
455
456
|
return pulumi.get(self, "ca_chains")
|
456
457
|
|
457
458
|
@ca_chains.setter
|
458
|
-
def ca_chains(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]):
|
459
|
+
def ca_chains(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]):
|
459
460
|
pulumi.set(self, "ca_chains", value)
|
460
461
|
|
461
462
|
@property
|
462
463
|
@pulumi.getter(name="certMetadata")
|
463
|
-
def cert_metadata(self) -> Optional[pulumi.Input[str]]:
|
464
|
+
def cert_metadata(self) -> Optional[pulumi.Input[builtins.str]]:
|
464
465
|
"""
|
465
466
|
A base 64 encoded value or an empty string to associate with the certificate's serial number. The role's no_store_metadata must be set to false, otherwise an error is returned when specified.
|
466
467
|
"""
|
467
468
|
return pulumi.get(self, "cert_metadata")
|
468
469
|
|
469
470
|
@cert_metadata.setter
|
470
|
-
def cert_metadata(self, value: Optional[pulumi.Input[str]]):
|
471
|
+
def cert_metadata(self, value: Optional[pulumi.Input[builtins.str]]):
|
471
472
|
pulumi.set(self, "cert_metadata", value)
|
472
473
|
|
473
474
|
@property
|
474
475
|
@pulumi.getter
|
475
|
-
def certificate(self) -> Optional[pulumi.Input[str]]:
|
476
|
+
def certificate(self) -> Optional[pulumi.Input[builtins.str]]:
|
476
477
|
"""
|
477
478
|
The certificate
|
478
479
|
"""
|
479
480
|
return pulumi.get(self, "certificate")
|
480
481
|
|
481
482
|
@certificate.setter
|
482
|
-
def certificate(self, value: Optional[pulumi.Input[str]]):
|
483
|
+
def certificate(self, value: Optional[pulumi.Input[builtins.str]]):
|
483
484
|
pulumi.set(self, "certificate", value)
|
484
485
|
|
485
486
|
@property
|
486
487
|
@pulumi.getter(name="commonName")
|
487
|
-
def common_name(self) -> Optional[pulumi.Input[str]]:
|
488
|
+
def common_name(self) -> Optional[pulumi.Input[builtins.str]]:
|
488
489
|
"""
|
489
490
|
CN of certificate to create
|
490
491
|
"""
|
491
492
|
return pulumi.get(self, "common_name")
|
492
493
|
|
493
494
|
@common_name.setter
|
494
|
-
def common_name(self, value: Optional[pulumi.Input[str]]):
|
495
|
+
def common_name(self, value: Optional[pulumi.Input[builtins.str]]):
|
495
496
|
pulumi.set(self, "common_name", value)
|
496
497
|
|
497
498
|
@property
|
498
499
|
@pulumi.getter
|
499
|
-
def csr(self) -> Optional[pulumi.Input[str]]:
|
500
|
+
def csr(self) -> Optional[pulumi.Input[builtins.str]]:
|
500
501
|
"""
|
501
502
|
The CSR
|
502
503
|
"""
|
503
504
|
return pulumi.get(self, "csr")
|
504
505
|
|
505
506
|
@csr.setter
|
506
|
-
def csr(self, value: Optional[pulumi.Input[str]]):
|
507
|
+
def csr(self, value: Optional[pulumi.Input[builtins.str]]):
|
507
508
|
pulumi.set(self, "csr", value)
|
508
509
|
|
509
510
|
@property
|
510
511
|
@pulumi.getter(name="excludeCnFromSans")
|
511
|
-
def exclude_cn_from_sans(self) -> Optional[pulumi.Input[bool]]:
|
512
|
+
def exclude_cn_from_sans(self) -> Optional[pulumi.Input[builtins.bool]]:
|
512
513
|
"""
|
513
514
|
Flag to exclude CN from SANs
|
514
515
|
"""
|
515
516
|
return pulumi.get(self, "exclude_cn_from_sans")
|
516
517
|
|
517
518
|
@exclude_cn_from_sans.setter
|
518
|
-
def exclude_cn_from_sans(self, value: Optional[pulumi.Input[bool]]):
|
519
|
+
def exclude_cn_from_sans(self, value: Optional[pulumi.Input[builtins.bool]]):
|
519
520
|
pulumi.set(self, "exclude_cn_from_sans", value)
|
520
521
|
|
521
522
|
@property
|
522
523
|
@pulumi.getter
|
523
|
-
def expiration(self) -> Optional[pulumi.Input[int]]:
|
524
|
+
def expiration(self) -> Optional[pulumi.Input[builtins.int]]:
|
524
525
|
"""
|
525
526
|
The expiration date of the certificate in unix epoch format
|
526
527
|
"""
|
527
528
|
return pulumi.get(self, "expiration")
|
528
529
|
|
529
530
|
@expiration.setter
|
530
|
-
def expiration(self, value: Optional[pulumi.Input[int]]):
|
531
|
+
def expiration(self, value: Optional[pulumi.Input[builtins.int]]):
|
531
532
|
pulumi.set(self, "expiration", value)
|
532
533
|
|
533
534
|
@property
|
534
535
|
@pulumi.getter
|
535
|
-
def format(self) -> Optional[pulumi.Input[str]]:
|
536
|
+
def format(self) -> Optional[pulumi.Input[builtins.str]]:
|
536
537
|
"""
|
537
538
|
The format of data
|
538
539
|
"""
|
539
540
|
return pulumi.get(self, "format")
|
540
541
|
|
541
542
|
@format.setter
|
542
|
-
def format(self, value: Optional[pulumi.Input[str]]):
|
543
|
+
def format(self, value: Optional[pulumi.Input[builtins.str]]):
|
543
544
|
pulumi.set(self, "format", value)
|
544
545
|
|
545
546
|
@property
|
546
547
|
@pulumi.getter(name="ipSans")
|
547
|
-
def ip_sans(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]:
|
548
|
+
def ip_sans(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]:
|
548
549
|
"""
|
549
550
|
List of alternative IPs
|
550
551
|
"""
|
551
552
|
return pulumi.get(self, "ip_sans")
|
552
553
|
|
553
554
|
@ip_sans.setter
|
554
|
-
def ip_sans(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]):
|
555
|
+
def ip_sans(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]):
|
555
556
|
pulumi.set(self, "ip_sans", value)
|
556
557
|
|
557
558
|
@property
|
558
559
|
@pulumi.getter(name="issuerRef")
|
559
|
-
def issuer_ref(self) -> Optional[pulumi.Input[str]]:
|
560
|
+
def issuer_ref(self) -> Optional[pulumi.Input[builtins.str]]:
|
560
561
|
"""
|
561
562
|
Specifies the default issuer of this request. Can
|
562
563
|
be the value `default`, a name, or an issuer ID. Use ACLs to prevent access to
|
@@ -566,48 +567,48 @@ class _SecretBackendSignState:
|
|
566
567
|
return pulumi.get(self, "issuer_ref")
|
567
568
|
|
568
569
|
@issuer_ref.setter
|
569
|
-
def issuer_ref(self, value: Optional[pulumi.Input[str]]):
|
570
|
+
def issuer_ref(self, value: Optional[pulumi.Input[builtins.str]]):
|
570
571
|
pulumi.set(self, "issuer_ref", value)
|
571
572
|
|
572
573
|
@property
|
573
574
|
@pulumi.getter(name="issuingCa")
|
574
|
-
def issuing_ca(self) -> Optional[pulumi.Input[str]]:
|
575
|
+
def issuing_ca(self) -> Optional[pulumi.Input[builtins.str]]:
|
575
576
|
"""
|
576
577
|
The issuing CA
|
577
578
|
"""
|
578
579
|
return pulumi.get(self, "issuing_ca")
|
579
580
|
|
580
581
|
@issuing_ca.setter
|
581
|
-
def issuing_ca(self, value: Optional[pulumi.Input[str]]):
|
582
|
+
def issuing_ca(self, value: Optional[pulumi.Input[builtins.str]]):
|
582
583
|
pulumi.set(self, "issuing_ca", value)
|
583
584
|
|
584
585
|
@property
|
585
586
|
@pulumi.getter(name="minSecondsRemaining")
|
586
|
-
def min_seconds_remaining(self) -> Optional[pulumi.Input[int]]:
|
587
|
+
def min_seconds_remaining(self) -> Optional[pulumi.Input[builtins.int]]:
|
587
588
|
"""
|
588
589
|
Generate a new certificate when the expiration is within this number of seconds, default is 604800 (7 days)
|
589
590
|
"""
|
590
591
|
return pulumi.get(self, "min_seconds_remaining")
|
591
592
|
|
592
593
|
@min_seconds_remaining.setter
|
593
|
-
def min_seconds_remaining(self, value: Optional[pulumi.Input[int]]):
|
594
|
+
def min_seconds_remaining(self, value: Optional[pulumi.Input[builtins.int]]):
|
594
595
|
pulumi.set(self, "min_seconds_remaining", value)
|
595
596
|
|
596
597
|
@property
|
597
598
|
@pulumi.getter
|
598
|
-
def name(self) -> Optional[pulumi.Input[str]]:
|
599
|
+
def name(self) -> Optional[pulumi.Input[builtins.str]]:
|
599
600
|
"""
|
600
601
|
Name of the role to create the certificate against
|
601
602
|
"""
|
602
603
|
return pulumi.get(self, "name")
|
603
604
|
|
604
605
|
@name.setter
|
605
|
-
def name(self, value: Optional[pulumi.Input[str]]):
|
606
|
+
def name(self, value: Optional[pulumi.Input[builtins.str]]):
|
606
607
|
pulumi.set(self, "name", value)
|
607
608
|
|
608
609
|
@property
|
609
610
|
@pulumi.getter
|
610
|
-
def namespace(self) -> Optional[pulumi.Input[str]]:
|
611
|
+
def namespace(self) -> Optional[pulumi.Input[builtins.str]]:
|
611
612
|
"""
|
612
613
|
The namespace to provision the resource in.
|
613
614
|
The value should not contain leading or trailing forward slashes.
|
@@ -617,79 +618,79 @@ class _SecretBackendSignState:
|
|
617
618
|
return pulumi.get(self, "namespace")
|
618
619
|
|
619
620
|
@namespace.setter
|
620
|
-
def namespace(self, value: Optional[pulumi.Input[str]]):
|
621
|
+
def namespace(self, value: Optional[pulumi.Input[builtins.str]]):
|
621
622
|
pulumi.set(self, "namespace", value)
|
622
623
|
|
623
624
|
@property
|
624
625
|
@pulumi.getter(name="notAfter")
|
625
|
-
def not_after(self) -> Optional[pulumi.Input[str]]:
|
626
|
+
def not_after(self) -> Optional[pulumi.Input[builtins.str]]:
|
626
627
|
"""
|
627
628
|
Set the Not After field of the certificate with specified date value. The value format should be given in UTC format YYYY-MM-ddTHH:MM:SSZ. Supports the Y10K end date for IEEE 802.1AR-2018 standard devices, 9999-12-31T23:59:59Z.
|
628
629
|
"""
|
629
630
|
return pulumi.get(self, "not_after")
|
630
631
|
|
631
632
|
@not_after.setter
|
632
|
-
def not_after(self, value: Optional[pulumi.Input[str]]):
|
633
|
+
def not_after(self, value: Optional[pulumi.Input[builtins.str]]):
|
633
634
|
pulumi.set(self, "not_after", value)
|
634
635
|
|
635
636
|
@property
|
636
637
|
@pulumi.getter(name="otherSans")
|
637
|
-
def other_sans(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]:
|
638
|
+
def other_sans(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]:
|
638
639
|
"""
|
639
640
|
List of other SANs
|
640
641
|
"""
|
641
642
|
return pulumi.get(self, "other_sans")
|
642
643
|
|
643
644
|
@other_sans.setter
|
644
|
-
def other_sans(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]):
|
645
|
+
def other_sans(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]):
|
645
646
|
pulumi.set(self, "other_sans", value)
|
646
647
|
|
647
648
|
@property
|
648
649
|
@pulumi.getter(name="renewPending")
|
649
|
-
def renew_pending(self) -> Optional[pulumi.Input[bool]]:
|
650
|
+
def renew_pending(self) -> Optional[pulumi.Input[builtins.bool]]:
|
650
651
|
"""
|
651
652
|
`true` if the current time (during refresh) is after the start of the early renewal window declared by `min_seconds_remaining`, and `false` otherwise; if `auto_renew` is set to `true` then the provider will plan to replace the certificate once renewal is pending.
|
652
653
|
"""
|
653
654
|
return pulumi.get(self, "renew_pending")
|
654
655
|
|
655
656
|
@renew_pending.setter
|
656
|
-
def renew_pending(self, value: Optional[pulumi.Input[bool]]):
|
657
|
+
def renew_pending(self, value: Optional[pulumi.Input[builtins.bool]]):
|
657
658
|
pulumi.set(self, "renew_pending", value)
|
658
659
|
|
659
660
|
@property
|
660
661
|
@pulumi.getter(name="serialNumber")
|
661
|
-
def serial_number(self) -> Optional[pulumi.Input[str]]:
|
662
|
+
def serial_number(self) -> Optional[pulumi.Input[builtins.str]]:
|
662
663
|
"""
|
663
664
|
The certificate's serial number, hex formatted.
|
664
665
|
"""
|
665
666
|
return pulumi.get(self, "serial_number")
|
666
667
|
|
667
668
|
@serial_number.setter
|
668
|
-
def serial_number(self, value: Optional[pulumi.Input[str]]):
|
669
|
+
def serial_number(self, value: Optional[pulumi.Input[builtins.str]]):
|
669
670
|
pulumi.set(self, "serial_number", value)
|
670
671
|
|
671
672
|
@property
|
672
673
|
@pulumi.getter
|
673
|
-
def ttl(self) -> Optional[pulumi.Input[str]]:
|
674
|
+
def ttl(self) -> Optional[pulumi.Input[builtins.str]]:
|
674
675
|
"""
|
675
676
|
Time to live
|
676
677
|
"""
|
677
678
|
return pulumi.get(self, "ttl")
|
678
679
|
|
679
680
|
@ttl.setter
|
680
|
-
def ttl(self, value: Optional[pulumi.Input[str]]):
|
681
|
+
def ttl(self, value: Optional[pulumi.Input[builtins.str]]):
|
681
682
|
pulumi.set(self, "ttl", value)
|
682
683
|
|
683
684
|
@property
|
684
685
|
@pulumi.getter(name="uriSans")
|
685
|
-
def uri_sans(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]:
|
686
|
+
def uri_sans(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]:
|
686
687
|
"""
|
687
688
|
List of alternative URIs
|
688
689
|
"""
|
689
690
|
return pulumi.get(self, "uri_sans")
|
690
691
|
|
691
692
|
@uri_sans.setter
|
692
|
-
def uri_sans(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]):
|
693
|
+
def uri_sans(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]):
|
693
694
|
pulumi.set(self, "uri_sans", value)
|
694
695
|
|
695
696
|
|
@@ -698,23 +699,23 @@ class SecretBackendSign(pulumi.CustomResource):
|
|
698
699
|
def __init__(__self__,
|
699
700
|
resource_name: str,
|
700
701
|
opts: Optional[pulumi.ResourceOptions] = None,
|
701
|
-
alt_names: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
|
702
|
-
auto_renew: Optional[pulumi.Input[bool]] = None,
|
703
|
-
backend: Optional[pulumi.Input[str]] = None,
|
704
|
-
cert_metadata: Optional[pulumi.Input[str]] = None,
|
705
|
-
common_name: Optional[pulumi.Input[str]] = None,
|
706
|
-
csr: Optional[pulumi.Input[str]] = None,
|
707
|
-
exclude_cn_from_sans: Optional[pulumi.Input[bool]] = None,
|
708
|
-
format: Optional[pulumi.Input[str]] = None,
|
709
|
-
ip_sans: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
|
710
|
-
issuer_ref: Optional[pulumi.Input[str]] = None,
|
711
|
-
min_seconds_remaining: Optional[pulumi.Input[int]] = None,
|
712
|
-
name: Optional[pulumi.Input[str]] = None,
|
713
|
-
namespace: Optional[pulumi.Input[str]] = None,
|
714
|
-
not_after: Optional[pulumi.Input[str]] = None,
|
715
|
-
other_sans: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
|
716
|
-
ttl: Optional[pulumi.Input[str]] = None,
|
717
|
-
uri_sans: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
|
702
|
+
alt_names: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
|
703
|
+
auto_renew: Optional[pulumi.Input[builtins.bool]] = None,
|
704
|
+
backend: Optional[pulumi.Input[builtins.str]] = None,
|
705
|
+
cert_metadata: Optional[pulumi.Input[builtins.str]] = None,
|
706
|
+
common_name: Optional[pulumi.Input[builtins.str]] = None,
|
707
|
+
csr: Optional[pulumi.Input[builtins.str]] = None,
|
708
|
+
exclude_cn_from_sans: Optional[pulumi.Input[builtins.bool]] = None,
|
709
|
+
format: Optional[pulumi.Input[builtins.str]] = None,
|
710
|
+
ip_sans: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
|
711
|
+
issuer_ref: Optional[pulumi.Input[builtins.str]] = None,
|
712
|
+
min_seconds_remaining: Optional[pulumi.Input[builtins.int]] = None,
|
713
|
+
name: Optional[pulumi.Input[builtins.str]] = None,
|
714
|
+
namespace: Optional[pulumi.Input[builtins.str]] = None,
|
715
|
+
not_after: Optional[pulumi.Input[builtins.str]] = None,
|
716
|
+
other_sans: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
|
717
|
+
ttl: Optional[pulumi.Input[builtins.str]] = None,
|
718
|
+
uri_sans: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
|
718
719
|
__props__=None):
|
719
720
|
"""
|
720
721
|
## Example Usage
|
@@ -760,29 +761,29 @@ class SecretBackendSign(pulumi.CustomResource):
|
|
760
761
|
|
761
762
|
:param str resource_name: The name of the resource.
|
762
763
|
:param pulumi.ResourceOptions opts: Options for the resource.
|
763
|
-
:param pulumi.Input[Sequence[pulumi.Input[str]]] alt_names: List of alternative names
|
764
|
-
:param pulumi.Input[bool] auto_renew: If set to `true`, certs will be renewed if the expiration is within `min_seconds_remaining`. Default `false`
|
765
|
-
:param pulumi.Input[str] backend: The PKI secret backend the resource belongs to.
|
766
|
-
:param pulumi.Input[str] cert_metadata: A base 64 encoded value or an empty string to associate with the certificate's serial number. The role's no_store_metadata must be set to false, otherwise an error is returned when specified.
|
767
|
-
:param pulumi.Input[str] common_name: CN of certificate to create
|
768
|
-
:param pulumi.Input[str] csr: The CSR
|
769
|
-
:param pulumi.Input[bool] exclude_cn_from_sans: Flag to exclude CN from SANs
|
770
|
-
:param pulumi.Input[str] format: The format of data
|
771
|
-
:param pulumi.Input[Sequence[pulumi.Input[str]]] ip_sans: List of alternative IPs
|
772
|
-
:param pulumi.Input[str] issuer_ref: Specifies the default issuer of this request. Can
|
764
|
+
:param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] alt_names: List of alternative names
|
765
|
+
:param pulumi.Input[builtins.bool] auto_renew: If set to `true`, certs will be renewed if the expiration is within `min_seconds_remaining`. Default `false`
|
766
|
+
:param pulumi.Input[builtins.str] backend: The PKI secret backend the resource belongs to.
|
767
|
+
:param pulumi.Input[builtins.str] cert_metadata: A base 64 encoded value or an empty string to associate with the certificate's serial number. The role's no_store_metadata must be set to false, otherwise an error is returned when specified.
|
768
|
+
:param pulumi.Input[builtins.str] common_name: CN of certificate to create
|
769
|
+
:param pulumi.Input[builtins.str] csr: The CSR
|
770
|
+
:param pulumi.Input[builtins.bool] exclude_cn_from_sans: Flag to exclude CN from SANs
|
771
|
+
:param pulumi.Input[builtins.str] format: The format of data
|
772
|
+
:param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] ip_sans: List of alternative IPs
|
773
|
+
:param pulumi.Input[builtins.str] issuer_ref: Specifies the default issuer of this request. Can
|
773
774
|
be the value `default`, a name, or an issuer ID. Use ACLs to prevent access to
|
774
775
|
the `/pki/issuer/:issuer_ref/{issue,sign}/:name` paths to prevent users
|
775
776
|
overriding the role's `issuer_ref` value.
|
776
|
-
:param pulumi.Input[int] min_seconds_remaining: Generate a new certificate when the expiration is within this number of seconds, default is 604800 (7 days)
|
777
|
-
:param pulumi.Input[str] name: Name of the role to create the certificate against
|
778
|
-
:param pulumi.Input[str] namespace: The namespace to provision the resource in.
|
777
|
+
:param pulumi.Input[builtins.int] min_seconds_remaining: Generate a new certificate when the expiration is within this number of seconds, default is 604800 (7 days)
|
778
|
+
:param pulumi.Input[builtins.str] name: Name of the role to create the certificate against
|
779
|
+
:param pulumi.Input[builtins.str] namespace: The namespace to provision the resource in.
|
779
780
|
The value should not contain leading or trailing forward slashes.
|
780
781
|
The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault/index.html#namespace).
|
781
782
|
*Available only for Vault Enterprise*.
|
782
|
-
:param pulumi.Input[str] not_after: Set the Not After field of the certificate with specified date value. The value format should be given in UTC format YYYY-MM-ddTHH:MM:SSZ. Supports the Y10K end date for IEEE 802.1AR-2018 standard devices, 9999-12-31T23:59:59Z.
|
783
|
-
:param pulumi.Input[Sequence[pulumi.Input[str]]] other_sans: List of other SANs
|
784
|
-
:param pulumi.Input[str] ttl: Time to live
|
785
|
-
:param pulumi.Input[Sequence[pulumi.Input[str]]] uri_sans: List of alternative URIs
|
783
|
+
:param pulumi.Input[builtins.str] not_after: Set the Not After field of the certificate with specified date value. The value format should be given in UTC format YYYY-MM-ddTHH:MM:SSZ. Supports the Y10K end date for IEEE 802.1AR-2018 standard devices, 9999-12-31T23:59:59Z.
|
784
|
+
:param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] other_sans: List of other SANs
|
785
|
+
:param pulumi.Input[builtins.str] ttl: Time to live
|
786
|
+
:param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] uri_sans: List of alternative URIs
|
786
787
|
"""
|
787
788
|
...
|
788
789
|
@overload
|
@@ -847,23 +848,23 @@ class SecretBackendSign(pulumi.CustomResource):
|
|
847
848
|
def _internal_init(__self__,
|
848
849
|
resource_name: str,
|
849
850
|
opts: Optional[pulumi.ResourceOptions] = None,
|
850
|
-
alt_names: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
|
851
|
-
auto_renew: Optional[pulumi.Input[bool]] = None,
|
852
|
-
backend: Optional[pulumi.Input[str]] = None,
|
853
|
-
cert_metadata: Optional[pulumi.Input[str]] = None,
|
854
|
-
common_name: Optional[pulumi.Input[str]] = None,
|
855
|
-
csr: Optional[pulumi.Input[str]] = None,
|
856
|
-
exclude_cn_from_sans: Optional[pulumi.Input[bool]] = None,
|
857
|
-
format: Optional[pulumi.Input[str]] = None,
|
858
|
-
ip_sans: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
|
859
|
-
issuer_ref: Optional[pulumi.Input[str]] = None,
|
860
|
-
min_seconds_remaining: Optional[pulumi.Input[int]] = None,
|
861
|
-
name: Optional[pulumi.Input[str]] = None,
|
862
|
-
namespace: Optional[pulumi.Input[str]] = None,
|
863
|
-
not_after: Optional[pulumi.Input[str]] = None,
|
864
|
-
other_sans: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
|
865
|
-
ttl: Optional[pulumi.Input[str]] = None,
|
866
|
-
uri_sans: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
|
851
|
+
alt_names: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
|
852
|
+
auto_renew: Optional[pulumi.Input[builtins.bool]] = None,
|
853
|
+
backend: Optional[pulumi.Input[builtins.str]] = None,
|
854
|
+
cert_metadata: Optional[pulumi.Input[builtins.str]] = None,
|
855
|
+
common_name: Optional[pulumi.Input[builtins.str]] = None,
|
856
|
+
csr: Optional[pulumi.Input[builtins.str]] = None,
|
857
|
+
exclude_cn_from_sans: Optional[pulumi.Input[builtins.bool]] = None,
|
858
|
+
format: Optional[pulumi.Input[builtins.str]] = None,
|
859
|
+
ip_sans: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
|
860
|
+
issuer_ref: Optional[pulumi.Input[builtins.str]] = None,
|
861
|
+
min_seconds_remaining: Optional[pulumi.Input[builtins.int]] = None,
|
862
|
+
name: Optional[pulumi.Input[builtins.str]] = None,
|
863
|
+
namespace: Optional[pulumi.Input[builtins.str]] = None,
|
864
|
+
not_after: Optional[pulumi.Input[builtins.str]] = None,
|
865
|
+
other_sans: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
|
866
|
+
ttl: Optional[pulumi.Input[builtins.str]] = None,
|
867
|
+
uri_sans: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
|
867
868
|
__props__=None):
|
868
869
|
opts = pulumi.ResourceOptions.merge(_utilities.get_resource_opts_defaults(), opts)
|
869
870
|
if not isinstance(opts, pulumi.ResourceOptions):
|
@@ -912,29 +913,29 @@ class SecretBackendSign(pulumi.CustomResource):
|
|
912
913
|
def get(resource_name: str,
|
913
914
|
id: pulumi.Input[str],
|
914
915
|
opts: Optional[pulumi.ResourceOptions] = None,
|
915
|
-
alt_names: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
|
916
|
-
auto_renew: Optional[pulumi.Input[bool]] = None,
|
917
|
-
backend: Optional[pulumi.Input[str]] = None,
|
918
|
-
ca_chains: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
|
919
|
-
cert_metadata: Optional[pulumi.Input[str]] = None,
|
920
|
-
certificate: Optional[pulumi.Input[str]] = None,
|
921
|
-
common_name: Optional[pulumi.Input[str]] = None,
|
922
|
-
csr: Optional[pulumi.Input[str]] = None,
|
923
|
-
exclude_cn_from_sans: Optional[pulumi.Input[bool]] = None,
|
924
|
-
expiration: Optional[pulumi.Input[int]] = None,
|
925
|
-
format: Optional[pulumi.Input[str]] = None,
|
926
|
-
ip_sans: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
|
927
|
-
issuer_ref: Optional[pulumi.Input[str]] = None,
|
928
|
-
issuing_ca: Optional[pulumi.Input[str]] = None,
|
929
|
-
min_seconds_remaining: Optional[pulumi.Input[int]] = None,
|
930
|
-
name: Optional[pulumi.Input[str]] = None,
|
931
|
-
namespace: Optional[pulumi.Input[str]] = None,
|
932
|
-
not_after: Optional[pulumi.Input[str]] = None,
|
933
|
-
other_sans: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
|
934
|
-
renew_pending: Optional[pulumi.Input[bool]] = None,
|
935
|
-
serial_number: Optional[pulumi.Input[str]] = None,
|
936
|
-
ttl: Optional[pulumi.Input[str]] = None,
|
937
|
-
uri_sans: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None) -> 'SecretBackendSign':
|
916
|
+
alt_names: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
|
917
|
+
auto_renew: Optional[pulumi.Input[builtins.bool]] = None,
|
918
|
+
backend: Optional[pulumi.Input[builtins.str]] = None,
|
919
|
+
ca_chains: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
|
920
|
+
cert_metadata: Optional[pulumi.Input[builtins.str]] = None,
|
921
|
+
certificate: Optional[pulumi.Input[builtins.str]] = None,
|
922
|
+
common_name: Optional[pulumi.Input[builtins.str]] = None,
|
923
|
+
csr: Optional[pulumi.Input[builtins.str]] = None,
|
924
|
+
exclude_cn_from_sans: Optional[pulumi.Input[builtins.bool]] = None,
|
925
|
+
expiration: Optional[pulumi.Input[builtins.int]] = None,
|
926
|
+
format: Optional[pulumi.Input[builtins.str]] = None,
|
927
|
+
ip_sans: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
|
928
|
+
issuer_ref: Optional[pulumi.Input[builtins.str]] = None,
|
929
|
+
issuing_ca: Optional[pulumi.Input[builtins.str]] = None,
|
930
|
+
min_seconds_remaining: Optional[pulumi.Input[builtins.int]] = None,
|
931
|
+
name: Optional[pulumi.Input[builtins.str]] = None,
|
932
|
+
namespace: Optional[pulumi.Input[builtins.str]] = None,
|
933
|
+
not_after: Optional[pulumi.Input[builtins.str]] = None,
|
934
|
+
other_sans: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
|
935
|
+
renew_pending: Optional[pulumi.Input[builtins.bool]] = None,
|
936
|
+
serial_number: Optional[pulumi.Input[builtins.str]] = None,
|
937
|
+
ttl: Optional[pulumi.Input[builtins.str]] = None,
|
938
|
+
uri_sans: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None) -> 'SecretBackendSign':
|
938
939
|
"""
|
939
940
|
Get an existing SecretBackendSign resource's state with the given name, id, and optional extra
|
940
941
|
properties used to qualify the lookup.
|
@@ -942,35 +943,35 @@ class SecretBackendSign(pulumi.CustomResource):
|
|
942
943
|
:param str resource_name: The unique name of the resulting resource.
|
943
944
|
:param pulumi.Input[str] id: The unique provider ID of the resource to lookup.
|
944
945
|
:param pulumi.ResourceOptions opts: Options for the resource.
|
945
|
-
:param pulumi.Input[Sequence[pulumi.Input[str]]] alt_names: List of alternative names
|
946
|
-
:param pulumi.Input[bool] auto_renew: If set to `true`, certs will be renewed if the expiration is within `min_seconds_remaining`. Default `false`
|
947
|
-
:param pulumi.Input[str] backend: The PKI secret backend the resource belongs to.
|
948
|
-
:param pulumi.Input[Sequence[pulumi.Input[str]]] ca_chains: The CA chain
|
949
|
-
:param pulumi.Input[str] cert_metadata: A base 64 encoded value or an empty string to associate with the certificate's serial number. The role's no_store_metadata must be set to false, otherwise an error is returned when specified.
|
950
|
-
:param pulumi.Input[str] certificate: The certificate
|
951
|
-
:param pulumi.Input[str] common_name: CN of certificate to create
|
952
|
-
:param pulumi.Input[str] csr: The CSR
|
953
|
-
:param pulumi.Input[bool] exclude_cn_from_sans: Flag to exclude CN from SANs
|
954
|
-
:param pulumi.Input[int] expiration: The expiration date of the certificate in unix epoch format
|
955
|
-
:param pulumi.Input[str] format: The format of data
|
956
|
-
:param pulumi.Input[Sequence[pulumi.Input[str]]] ip_sans: List of alternative IPs
|
957
|
-
:param pulumi.Input[str] issuer_ref: Specifies the default issuer of this request. Can
|
946
|
+
:param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] alt_names: List of alternative names
|
947
|
+
:param pulumi.Input[builtins.bool] auto_renew: If set to `true`, certs will be renewed if the expiration is within `min_seconds_remaining`. Default `false`
|
948
|
+
:param pulumi.Input[builtins.str] backend: The PKI secret backend the resource belongs to.
|
949
|
+
:param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] ca_chains: The CA chain
|
950
|
+
:param pulumi.Input[builtins.str] cert_metadata: A base 64 encoded value or an empty string to associate with the certificate's serial number. The role's no_store_metadata must be set to false, otherwise an error is returned when specified.
|
951
|
+
:param pulumi.Input[builtins.str] certificate: The certificate
|
952
|
+
:param pulumi.Input[builtins.str] common_name: CN of certificate to create
|
953
|
+
:param pulumi.Input[builtins.str] csr: The CSR
|
954
|
+
:param pulumi.Input[builtins.bool] exclude_cn_from_sans: Flag to exclude CN from SANs
|
955
|
+
:param pulumi.Input[builtins.int] expiration: The expiration date of the certificate in unix epoch format
|
956
|
+
:param pulumi.Input[builtins.str] format: The format of data
|
957
|
+
:param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] ip_sans: List of alternative IPs
|
958
|
+
:param pulumi.Input[builtins.str] issuer_ref: Specifies the default issuer of this request. Can
|
958
959
|
be the value `default`, a name, or an issuer ID. Use ACLs to prevent access to
|
959
960
|
the `/pki/issuer/:issuer_ref/{issue,sign}/:name` paths to prevent users
|
960
961
|
overriding the role's `issuer_ref` value.
|
961
|
-
:param pulumi.Input[str] issuing_ca: The issuing CA
|
962
|
-
:param pulumi.Input[int] min_seconds_remaining: Generate a new certificate when the expiration is within this number of seconds, default is 604800 (7 days)
|
963
|
-
:param pulumi.Input[str] name: Name of the role to create the certificate against
|
964
|
-
:param pulumi.Input[str] namespace: The namespace to provision the resource in.
|
962
|
+
:param pulumi.Input[builtins.str] issuing_ca: The issuing CA
|
963
|
+
:param pulumi.Input[builtins.int] min_seconds_remaining: Generate a new certificate when the expiration is within this number of seconds, default is 604800 (7 days)
|
964
|
+
:param pulumi.Input[builtins.str] name: Name of the role to create the certificate against
|
965
|
+
:param pulumi.Input[builtins.str] namespace: The namespace to provision the resource in.
|
965
966
|
The value should not contain leading or trailing forward slashes.
|
966
967
|
The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault/index.html#namespace).
|
967
968
|
*Available only for Vault Enterprise*.
|
968
|
-
:param pulumi.Input[str] not_after: Set the Not After field of the certificate with specified date value. The value format should be given in UTC format YYYY-MM-ddTHH:MM:SSZ. Supports the Y10K end date for IEEE 802.1AR-2018 standard devices, 9999-12-31T23:59:59Z.
|
969
|
-
:param pulumi.Input[Sequence[pulumi.Input[str]]] other_sans: List of other SANs
|
970
|
-
:param pulumi.Input[bool] renew_pending: `true` if the current time (during refresh) is after the start of the early renewal window declared by `min_seconds_remaining`, and `false` otherwise; if `auto_renew` is set to `true` then the provider will plan to replace the certificate once renewal is pending.
|
971
|
-
:param pulumi.Input[str] serial_number: The certificate's serial number, hex formatted.
|
972
|
-
:param pulumi.Input[str] ttl: Time to live
|
973
|
-
:param pulumi.Input[Sequence[pulumi.Input[str]]] uri_sans: List of alternative URIs
|
969
|
+
:param pulumi.Input[builtins.str] not_after: Set the Not After field of the certificate with specified date value. The value format should be given in UTC format YYYY-MM-ddTHH:MM:SSZ. Supports the Y10K end date for IEEE 802.1AR-2018 standard devices, 9999-12-31T23:59:59Z.
|
970
|
+
:param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] other_sans: List of other SANs
|
971
|
+
:param pulumi.Input[builtins.bool] renew_pending: `true` if the current time (during refresh) is after the start of the early renewal window declared by `min_seconds_remaining`, and `false` otherwise; if `auto_renew` is set to `true` then the provider will plan to replace the certificate once renewal is pending.
|
972
|
+
:param pulumi.Input[builtins.str] serial_number: The certificate's serial number, hex formatted.
|
973
|
+
:param pulumi.Input[builtins.str] ttl: Time to live
|
974
|
+
:param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] uri_sans: List of alternative URIs
|
974
975
|
"""
|
975
976
|
opts = pulumi.ResourceOptions.merge(opts, pulumi.ResourceOptions(id=id))
|
976
977
|
|
@@ -1003,7 +1004,7 @@ class SecretBackendSign(pulumi.CustomResource):
|
|
1003
1004
|
|
1004
1005
|
@property
|
1005
1006
|
@pulumi.getter(name="altNames")
|
1006
|
-
def alt_names(self) -> pulumi.Output[Optional[Sequence[str]]]:
|
1007
|
+
def alt_names(self) -> pulumi.Output[Optional[Sequence[builtins.str]]]:
|
1007
1008
|
"""
|
1008
1009
|
List of alternative names
|
1009
1010
|
"""
|
@@ -1011,7 +1012,7 @@ class SecretBackendSign(pulumi.CustomResource):
|
|
1011
1012
|
|
1012
1013
|
@property
|
1013
1014
|
@pulumi.getter(name="autoRenew")
|
1014
|
-
def auto_renew(self) -> pulumi.Output[Optional[bool]]:
|
1015
|
+
def auto_renew(self) -> pulumi.Output[Optional[builtins.bool]]:
|
1015
1016
|
"""
|
1016
1017
|
If set to `true`, certs will be renewed if the expiration is within `min_seconds_remaining`. Default `false`
|
1017
1018
|
"""
|
@@ -1019,7 +1020,7 @@ class SecretBackendSign(pulumi.CustomResource):
|
|
1019
1020
|
|
1020
1021
|
@property
|
1021
1022
|
@pulumi.getter
|
1022
|
-
def backend(self) -> pulumi.Output[str]:
|
1023
|
+
def backend(self) -> pulumi.Output[builtins.str]:
|
1023
1024
|
"""
|
1024
1025
|
The PKI secret backend the resource belongs to.
|
1025
1026
|
"""
|
@@ -1027,7 +1028,7 @@ class SecretBackendSign(pulumi.CustomResource):
|
|
1027
1028
|
|
1028
1029
|
@property
|
1029
1030
|
@pulumi.getter(name="caChains")
|
1030
|
-
def ca_chains(self) -> pulumi.Output[Sequence[str]]:
|
1031
|
+
def ca_chains(self) -> pulumi.Output[Sequence[builtins.str]]:
|
1031
1032
|
"""
|
1032
1033
|
The CA chain
|
1033
1034
|
"""
|
@@ -1035,7 +1036,7 @@ class SecretBackendSign(pulumi.CustomResource):
|
|
1035
1036
|
|
1036
1037
|
@property
|
1037
1038
|
@pulumi.getter(name="certMetadata")
|
1038
|
-
def cert_metadata(self) -> pulumi.Output[Optional[str]]:
|
1039
|
+
def cert_metadata(self) -> pulumi.Output[Optional[builtins.str]]:
|
1039
1040
|
"""
|
1040
1041
|
A base 64 encoded value or an empty string to associate with the certificate's serial number. The role's no_store_metadata must be set to false, otherwise an error is returned when specified.
|
1041
1042
|
"""
|
@@ -1043,7 +1044,7 @@ class SecretBackendSign(pulumi.CustomResource):
|
|
1043
1044
|
|
1044
1045
|
@property
|
1045
1046
|
@pulumi.getter
|
1046
|
-
def certificate(self) -> pulumi.Output[str]:
|
1047
|
+
def certificate(self) -> pulumi.Output[builtins.str]:
|
1047
1048
|
"""
|
1048
1049
|
The certificate
|
1049
1050
|
"""
|
@@ -1051,7 +1052,7 @@ class SecretBackendSign(pulumi.CustomResource):
|
|
1051
1052
|
|
1052
1053
|
@property
|
1053
1054
|
@pulumi.getter(name="commonName")
|
1054
|
-
def common_name(self) -> pulumi.Output[str]:
|
1055
|
+
def common_name(self) -> pulumi.Output[builtins.str]:
|
1055
1056
|
"""
|
1056
1057
|
CN of certificate to create
|
1057
1058
|
"""
|
@@ -1059,7 +1060,7 @@ class SecretBackendSign(pulumi.CustomResource):
|
|
1059
1060
|
|
1060
1061
|
@property
|
1061
1062
|
@pulumi.getter
|
1062
|
-
def csr(self) -> pulumi.Output[str]:
|
1063
|
+
def csr(self) -> pulumi.Output[builtins.str]:
|
1063
1064
|
"""
|
1064
1065
|
The CSR
|
1065
1066
|
"""
|
@@ -1067,7 +1068,7 @@ class SecretBackendSign(pulumi.CustomResource):
|
|
1067
1068
|
|
1068
1069
|
@property
|
1069
1070
|
@pulumi.getter(name="excludeCnFromSans")
|
1070
|
-
def exclude_cn_from_sans(self) -> pulumi.Output[Optional[bool]]:
|
1071
|
+
def exclude_cn_from_sans(self) -> pulumi.Output[Optional[builtins.bool]]:
|
1071
1072
|
"""
|
1072
1073
|
Flag to exclude CN from SANs
|
1073
1074
|
"""
|
@@ -1075,7 +1076,7 @@ class SecretBackendSign(pulumi.CustomResource):
|
|
1075
1076
|
|
1076
1077
|
@property
|
1077
1078
|
@pulumi.getter
|
1078
|
-
def expiration(self) -> pulumi.Output[int]:
|
1079
|
+
def expiration(self) -> pulumi.Output[builtins.int]:
|
1079
1080
|
"""
|
1080
1081
|
The expiration date of the certificate in unix epoch format
|
1081
1082
|
"""
|
@@ -1083,7 +1084,7 @@ class SecretBackendSign(pulumi.CustomResource):
|
|
1083
1084
|
|
1084
1085
|
@property
|
1085
1086
|
@pulumi.getter
|
1086
|
-
def format(self) -> pulumi.Output[Optional[str]]:
|
1087
|
+
def format(self) -> pulumi.Output[Optional[builtins.str]]:
|
1087
1088
|
"""
|
1088
1089
|
The format of data
|
1089
1090
|
"""
|
@@ -1091,7 +1092,7 @@ class SecretBackendSign(pulumi.CustomResource):
|
|
1091
1092
|
|
1092
1093
|
@property
|
1093
1094
|
@pulumi.getter(name="ipSans")
|
1094
|
-
def ip_sans(self) -> pulumi.Output[Optional[Sequence[str]]]:
|
1095
|
+
def ip_sans(self) -> pulumi.Output[Optional[Sequence[builtins.str]]]:
|
1095
1096
|
"""
|
1096
1097
|
List of alternative IPs
|
1097
1098
|
"""
|
@@ -1099,7 +1100,7 @@ class SecretBackendSign(pulumi.CustomResource):
|
|
1099
1100
|
|
1100
1101
|
@property
|
1101
1102
|
@pulumi.getter(name="issuerRef")
|
1102
|
-
def issuer_ref(self) -> pulumi.Output[Optional[str]]:
|
1103
|
+
def issuer_ref(self) -> pulumi.Output[Optional[builtins.str]]:
|
1103
1104
|
"""
|
1104
1105
|
Specifies the default issuer of this request. Can
|
1105
1106
|
be the value `default`, a name, or an issuer ID. Use ACLs to prevent access to
|
@@ -1110,7 +1111,7 @@ class SecretBackendSign(pulumi.CustomResource):
|
|
1110
1111
|
|
1111
1112
|
@property
|
1112
1113
|
@pulumi.getter(name="issuingCa")
|
1113
|
-
def issuing_ca(self) -> pulumi.Output[str]:
|
1114
|
+
def issuing_ca(self) -> pulumi.Output[builtins.str]:
|
1114
1115
|
"""
|
1115
1116
|
The issuing CA
|
1116
1117
|
"""
|
@@ -1118,7 +1119,7 @@ class SecretBackendSign(pulumi.CustomResource):
|
|
1118
1119
|
|
1119
1120
|
@property
|
1120
1121
|
@pulumi.getter(name="minSecondsRemaining")
|
1121
|
-
def min_seconds_remaining(self) -> pulumi.Output[Optional[int]]:
|
1122
|
+
def min_seconds_remaining(self) -> pulumi.Output[Optional[builtins.int]]:
|
1122
1123
|
"""
|
1123
1124
|
Generate a new certificate when the expiration is within this number of seconds, default is 604800 (7 days)
|
1124
1125
|
"""
|
@@ -1126,7 +1127,7 @@ class SecretBackendSign(pulumi.CustomResource):
|
|
1126
1127
|
|
1127
1128
|
@property
|
1128
1129
|
@pulumi.getter
|
1129
|
-
def name(self) -> pulumi.Output[str]:
|
1130
|
+
def name(self) -> pulumi.Output[builtins.str]:
|
1130
1131
|
"""
|
1131
1132
|
Name of the role to create the certificate against
|
1132
1133
|
"""
|
@@ -1134,7 +1135,7 @@ class SecretBackendSign(pulumi.CustomResource):
|
|
1134
1135
|
|
1135
1136
|
@property
|
1136
1137
|
@pulumi.getter
|
1137
|
-
def namespace(self) -> pulumi.Output[Optional[str]]:
|
1138
|
+
def namespace(self) -> pulumi.Output[Optional[builtins.str]]:
|
1138
1139
|
"""
|
1139
1140
|
The namespace to provision the resource in.
|
1140
1141
|
The value should not contain leading or trailing forward slashes.
|
@@ -1145,7 +1146,7 @@ class SecretBackendSign(pulumi.CustomResource):
|
|
1145
1146
|
|
1146
1147
|
@property
|
1147
1148
|
@pulumi.getter(name="notAfter")
|
1148
|
-
def not_after(self) -> pulumi.Output[Optional[str]]:
|
1149
|
+
def not_after(self) -> pulumi.Output[Optional[builtins.str]]:
|
1149
1150
|
"""
|
1150
1151
|
Set the Not After field of the certificate with specified date value. The value format should be given in UTC format YYYY-MM-ddTHH:MM:SSZ. Supports the Y10K end date for IEEE 802.1AR-2018 standard devices, 9999-12-31T23:59:59Z.
|
1151
1152
|
"""
|
@@ -1153,7 +1154,7 @@ class SecretBackendSign(pulumi.CustomResource):
|
|
1153
1154
|
|
1154
1155
|
@property
|
1155
1156
|
@pulumi.getter(name="otherSans")
|
1156
|
-
def other_sans(self) -> pulumi.Output[Optional[Sequence[str]]]:
|
1157
|
+
def other_sans(self) -> pulumi.Output[Optional[Sequence[builtins.str]]]:
|
1157
1158
|
"""
|
1158
1159
|
List of other SANs
|
1159
1160
|
"""
|
@@ -1161,7 +1162,7 @@ class SecretBackendSign(pulumi.CustomResource):
|
|
1161
1162
|
|
1162
1163
|
@property
|
1163
1164
|
@pulumi.getter(name="renewPending")
|
1164
|
-
def renew_pending(self) -> pulumi.Output[bool]:
|
1165
|
+
def renew_pending(self) -> pulumi.Output[builtins.bool]:
|
1165
1166
|
"""
|
1166
1167
|
`true` if the current time (during refresh) is after the start of the early renewal window declared by `min_seconds_remaining`, and `false` otherwise; if `auto_renew` is set to `true` then the provider will plan to replace the certificate once renewal is pending.
|
1167
1168
|
"""
|
@@ -1169,7 +1170,7 @@ class SecretBackendSign(pulumi.CustomResource):
|
|
1169
1170
|
|
1170
1171
|
@property
|
1171
1172
|
@pulumi.getter(name="serialNumber")
|
1172
|
-
def serial_number(self) -> pulumi.Output[str]:
|
1173
|
+
def serial_number(self) -> pulumi.Output[builtins.str]:
|
1173
1174
|
"""
|
1174
1175
|
The certificate's serial number, hex formatted.
|
1175
1176
|
"""
|
@@ -1177,7 +1178,7 @@ class SecretBackendSign(pulumi.CustomResource):
|
|
1177
1178
|
|
1178
1179
|
@property
|
1179
1180
|
@pulumi.getter
|
1180
|
-
def ttl(self) -> pulumi.Output[Optional[str]]:
|
1181
|
+
def ttl(self) -> pulumi.Output[Optional[builtins.str]]:
|
1181
1182
|
"""
|
1182
1183
|
Time to live
|
1183
1184
|
"""
|
@@ -1185,7 +1186,7 @@ class SecretBackendSign(pulumi.CustomResource):
|
|
1185
1186
|
|
1186
1187
|
@property
|
1187
1188
|
@pulumi.getter(name="uriSans")
|
1188
|
-
def uri_sans(self) -> pulumi.Output[Optional[Sequence[str]]]:
|
1189
|
+
def uri_sans(self) -> pulumi.Output[Optional[Sequence[builtins.str]]]:
|
1189
1190
|
"""
|
1190
1191
|
List of alternative URIs
|
1191
1192
|
"""
|