pulumi-vault 6.7.0a1743576047__py3-none-any.whl → 6.7.0a1744267302__py3-none-any.whl
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- pulumi_vault/__init__.py +1 -0
- pulumi_vault/_inputs.py +554 -553
- pulumi_vault/ad/__init__.py +1 -0
- pulumi_vault/ad/get_access_credentials.py +20 -19
- pulumi_vault/ad/secret_backend.py +477 -476
- pulumi_vault/ad/secret_library.py +99 -98
- pulumi_vault/ad/secret_role.py +85 -84
- pulumi_vault/alicloud/__init__.py +1 -0
- pulumi_vault/alicloud/auth_backend_role.py +183 -182
- pulumi_vault/approle/__init__.py +1 -0
- pulumi_vault/approle/auth_backend_login.py +106 -105
- pulumi_vault/approle/auth_backend_role.py +239 -238
- pulumi_vault/approle/auth_backend_role_secret_id.py +162 -161
- pulumi_vault/approle/get_auth_backend_role_id.py +18 -17
- pulumi_vault/audit.py +85 -84
- pulumi_vault/audit_request_header.py +43 -42
- pulumi_vault/auth_backend.py +106 -105
- pulumi_vault/aws/__init__.py +1 -0
- pulumi_vault/aws/auth_backend_cert.py +71 -70
- pulumi_vault/aws/auth_backend_client.py +253 -252
- pulumi_vault/aws/auth_backend_config_identity.py +85 -84
- pulumi_vault/aws/auth_backend_identity_whitelist.py +57 -56
- pulumi_vault/aws/auth_backend_login.py +209 -208
- pulumi_vault/aws/auth_backend_role.py +400 -399
- pulumi_vault/aws/auth_backend_role_tag.py +127 -126
- pulumi_vault/aws/auth_backend_roletag_blacklist.py +57 -56
- pulumi_vault/aws/auth_backend_sts_role.py +71 -70
- pulumi_vault/aws/get_access_credentials.py +44 -43
- pulumi_vault/aws/get_static_access_credentials.py +13 -12
- pulumi_vault/aws/secret_backend.py +337 -336
- pulumi_vault/aws/secret_backend_role.py +211 -210
- pulumi_vault/aws/secret_backend_static_role.py +113 -112
- pulumi_vault/azure/__init__.py +1 -0
- pulumi_vault/azure/_inputs.py +21 -20
- pulumi_vault/azure/auth_backend_config.py +183 -182
- pulumi_vault/azure/auth_backend_role.py +253 -252
- pulumi_vault/azure/backend.py +239 -238
- pulumi_vault/azure/backend_role.py +141 -140
- pulumi_vault/azure/get_access_credentials.py +58 -57
- pulumi_vault/azure/outputs.py +11 -10
- pulumi_vault/cert_auth_backend_role.py +365 -364
- pulumi_vault/config/__init__.py +1 -0
- pulumi_vault/config/__init__.pyi +1 -0
- pulumi_vault/config/_inputs.py +11 -10
- pulumi_vault/config/outputs.py +287 -286
- pulumi_vault/config/ui_custom_message.py +113 -112
- pulumi_vault/config/vars.py +1 -0
- pulumi_vault/consul/__init__.py +1 -0
- pulumi_vault/consul/secret_backend.py +197 -196
- pulumi_vault/consul/secret_backend_role.py +183 -182
- pulumi_vault/database/__init__.py +1 -0
- pulumi_vault/database/_inputs.py +2525 -2524
- pulumi_vault/database/outputs.py +1529 -1528
- pulumi_vault/database/secret_backend_connection.py +169 -168
- pulumi_vault/database/secret_backend_role.py +169 -168
- pulumi_vault/database/secret_backend_static_role.py +179 -178
- pulumi_vault/database/secrets_mount.py +267 -266
- pulumi_vault/egp_policy.py +71 -70
- pulumi_vault/gcp/__init__.py +1 -0
- pulumi_vault/gcp/_inputs.py +82 -81
- pulumi_vault/gcp/auth_backend.py +260 -259
- pulumi_vault/gcp/auth_backend_role.py +281 -280
- pulumi_vault/gcp/get_auth_backend_role.py +70 -69
- pulumi_vault/gcp/outputs.py +50 -49
- pulumi_vault/gcp/secret_backend.py +232 -231
- pulumi_vault/gcp/secret_impersonated_account.py +92 -91
- pulumi_vault/gcp/secret_roleset.py +92 -91
- pulumi_vault/gcp/secret_static_account.py +92 -91
- pulumi_vault/generic/__init__.py +1 -0
- pulumi_vault/generic/endpoint.py +113 -112
- pulumi_vault/generic/get_secret.py +28 -27
- pulumi_vault/generic/secret.py +78 -77
- pulumi_vault/get_auth_backend.py +19 -18
- pulumi_vault/get_auth_backends.py +14 -13
- pulumi_vault/get_namespace.py +15 -14
- pulumi_vault/get_namespaces.py +8 -7
- pulumi_vault/get_nomad_access_token.py +19 -18
- pulumi_vault/get_policy_document.py +6 -5
- pulumi_vault/get_raft_autopilot_state.py +18 -17
- pulumi_vault/github/__init__.py +1 -0
- pulumi_vault/github/_inputs.py +42 -41
- pulumi_vault/github/auth_backend.py +232 -231
- pulumi_vault/github/outputs.py +26 -25
- pulumi_vault/github/team.py +57 -56
- pulumi_vault/github/user.py +57 -56
- pulumi_vault/identity/__init__.py +1 -0
- pulumi_vault/identity/entity.py +85 -84
- pulumi_vault/identity/entity_alias.py +71 -70
- pulumi_vault/identity/entity_policies.py +64 -63
- pulumi_vault/identity/get_entity.py +43 -42
- pulumi_vault/identity/get_group.py +50 -49
- pulumi_vault/identity/get_oidc_client_creds.py +14 -13
- pulumi_vault/identity/get_oidc_openid_config.py +24 -23
- pulumi_vault/identity/get_oidc_public_keys.py +13 -12
- pulumi_vault/identity/group.py +141 -140
- pulumi_vault/identity/group_alias.py +57 -56
- pulumi_vault/identity/group_member_entity_ids.py +57 -56
- pulumi_vault/identity/group_member_group_ids.py +57 -56
- pulumi_vault/identity/group_policies.py +64 -63
- pulumi_vault/identity/mfa_duo.py +148 -147
- pulumi_vault/identity/mfa_login_enforcement.py +120 -119
- pulumi_vault/identity/mfa_okta.py +134 -133
- pulumi_vault/identity/mfa_pingid.py +127 -126
- pulumi_vault/identity/mfa_totp.py +176 -175
- pulumi_vault/identity/oidc.py +29 -28
- pulumi_vault/identity/oidc_assignment.py +57 -56
- pulumi_vault/identity/oidc_client.py +127 -126
- pulumi_vault/identity/oidc_key.py +85 -84
- pulumi_vault/identity/oidc_key_allowed_client_id.py +43 -42
- pulumi_vault/identity/oidc_provider.py +92 -91
- pulumi_vault/identity/oidc_role.py +85 -84
- pulumi_vault/identity/oidc_scope.py +57 -56
- pulumi_vault/identity/outputs.py +32 -31
- pulumi_vault/jwt/__init__.py +1 -0
- pulumi_vault/jwt/_inputs.py +42 -41
- pulumi_vault/jwt/auth_backend.py +288 -287
- pulumi_vault/jwt/auth_backend_role.py +407 -406
- pulumi_vault/jwt/outputs.py +26 -25
- pulumi_vault/kmip/__init__.py +1 -0
- pulumi_vault/kmip/secret_backend.py +183 -182
- pulumi_vault/kmip/secret_role.py +295 -294
- pulumi_vault/kmip/secret_scope.py +57 -56
- pulumi_vault/kubernetes/__init__.py +1 -0
- pulumi_vault/kubernetes/auth_backend_config.py +141 -140
- pulumi_vault/kubernetes/auth_backend_role.py +225 -224
- pulumi_vault/kubernetes/get_auth_backend_config.py +47 -46
- pulumi_vault/kubernetes/get_auth_backend_role.py +70 -69
- pulumi_vault/kubernetes/get_service_account_token.py +38 -37
- pulumi_vault/kubernetes/secret_backend.py +316 -315
- pulumi_vault/kubernetes/secret_backend_role.py +197 -196
- pulumi_vault/kv/__init__.py +1 -0
- pulumi_vault/kv/_inputs.py +21 -20
- pulumi_vault/kv/get_secret.py +17 -16
- pulumi_vault/kv/get_secret_subkeys_v2.py +30 -29
- pulumi_vault/kv/get_secret_v2.py +29 -28
- pulumi_vault/kv/get_secrets_list.py +13 -12
- pulumi_vault/kv/get_secrets_list_v2.py +19 -18
- pulumi_vault/kv/outputs.py +13 -12
- pulumi_vault/kv/secret.py +50 -49
- pulumi_vault/kv/secret_backend_v2.py +71 -70
- pulumi_vault/kv/secret_v2.py +134 -133
- pulumi_vault/ldap/__init__.py +1 -0
- pulumi_vault/ldap/auth_backend.py +588 -587
- pulumi_vault/ldap/auth_backend_group.py +57 -56
- pulumi_vault/ldap/auth_backend_user.py +71 -70
- pulumi_vault/ldap/get_dynamic_credentials.py +17 -16
- pulumi_vault/ldap/get_static_credentials.py +18 -17
- pulumi_vault/ldap/secret_backend.py +554 -553
- pulumi_vault/ldap/secret_backend_dynamic_role.py +127 -126
- pulumi_vault/ldap/secret_backend_library_set.py +99 -98
- pulumi_vault/ldap/secret_backend_static_role.py +99 -98
- pulumi_vault/managed/__init__.py +1 -0
- pulumi_vault/managed/_inputs.py +229 -228
- pulumi_vault/managed/keys.py +15 -14
- pulumi_vault/managed/outputs.py +139 -138
- pulumi_vault/mfa_duo.py +113 -112
- pulumi_vault/mfa_okta.py +113 -112
- pulumi_vault/mfa_pingid.py +120 -119
- pulumi_vault/mfa_totp.py +127 -126
- pulumi_vault/mongodbatlas/__init__.py +1 -0
- pulumi_vault/mongodbatlas/secret_backend.py +64 -63
- pulumi_vault/mongodbatlas/secret_role.py +155 -154
- pulumi_vault/mount.py +274 -273
- pulumi_vault/namespace.py +64 -63
- pulumi_vault/nomad_secret_backend.py +211 -210
- pulumi_vault/nomad_secret_role.py +85 -84
- pulumi_vault/okta/__init__.py +1 -0
- pulumi_vault/okta/_inputs.py +26 -25
- pulumi_vault/okta/auth_backend.py +274 -273
- pulumi_vault/okta/auth_backend_group.py +57 -56
- pulumi_vault/okta/auth_backend_user.py +71 -70
- pulumi_vault/okta/outputs.py +16 -15
- pulumi_vault/outputs.py +56 -55
- pulumi_vault/password_policy.py +43 -42
- pulumi_vault/pkisecret/__init__.py +1 -0
- pulumi_vault/pkisecret/_inputs.py +31 -30
- pulumi_vault/pkisecret/backend_acme_eab.py +92 -91
- pulumi_vault/pkisecret/backend_config_acme.py +141 -140
- pulumi_vault/pkisecret/backend_config_auto_tidy.py +323 -322
- pulumi_vault/pkisecret/backend_config_cluster.py +57 -56
- pulumi_vault/pkisecret/backend_config_cmpv2.py +106 -105
- pulumi_vault/pkisecret/backend_config_est.py +120 -119
- pulumi_vault/pkisecret/get_backend_cert_metadata.py +22 -21
- pulumi_vault/pkisecret/get_backend_config_cmpv2.py +22 -21
- pulumi_vault/pkisecret/get_backend_config_est.py +19 -18
- pulumi_vault/pkisecret/get_backend_issuer.py +45 -44
- pulumi_vault/pkisecret/get_backend_issuers.py +15 -14
- pulumi_vault/pkisecret/get_backend_key.py +20 -19
- pulumi_vault/pkisecret/get_backend_keys.py +15 -14
- pulumi_vault/pkisecret/outputs.py +28 -27
- pulumi_vault/pkisecret/secret_backend_cert.py +337 -336
- pulumi_vault/pkisecret/secret_backend_config_ca.py +43 -42
- pulumi_vault/pkisecret/secret_backend_config_issuers.py +57 -56
- pulumi_vault/pkisecret/secret_backend_config_urls.py +85 -84
- pulumi_vault/pkisecret/secret_backend_crl_config.py +197 -196
- pulumi_vault/pkisecret/secret_backend_intermediate_cert_request.py +421 -420
- pulumi_vault/pkisecret/secret_backend_intermediate_set_signed.py +57 -56
- pulumi_vault/pkisecret/secret_backend_issuer.py +232 -231
- pulumi_vault/pkisecret/secret_backend_key.py +120 -119
- pulumi_vault/pkisecret/secret_backend_role.py +715 -714
- pulumi_vault/pkisecret/secret_backend_root_cert.py +554 -553
- pulumi_vault/pkisecret/secret_backend_root_sign_intermediate.py +526 -525
- pulumi_vault/pkisecret/secret_backend_sign.py +281 -280
- pulumi_vault/plugin.py +127 -126
- pulumi_vault/plugin_pinned_version.py +43 -42
- pulumi_vault/policy.py +43 -42
- pulumi_vault/provider.py +120 -119
- pulumi_vault/pulumi-plugin.json +1 -1
- pulumi_vault/quota_lease_count.py +85 -84
- pulumi_vault/quota_rate_limit.py +113 -112
- pulumi_vault/rabbitmq/__init__.py +1 -0
- pulumi_vault/rabbitmq/_inputs.py +41 -40
- pulumi_vault/rabbitmq/outputs.py +25 -24
- pulumi_vault/rabbitmq/secret_backend.py +169 -168
- pulumi_vault/rabbitmq/secret_backend_role.py +57 -56
- pulumi_vault/raft_autopilot.py +113 -112
- pulumi_vault/raft_snapshot_agent_config.py +393 -392
- pulumi_vault/rgp_policy.py +57 -56
- pulumi_vault/saml/__init__.py +1 -0
- pulumi_vault/saml/auth_backend.py +155 -154
- pulumi_vault/saml/auth_backend_role.py +239 -238
- pulumi_vault/secrets/__init__.py +1 -0
- pulumi_vault/secrets/_inputs.py +16 -15
- pulumi_vault/secrets/outputs.py +10 -9
- pulumi_vault/secrets/sync_association.py +71 -70
- pulumi_vault/secrets/sync_aws_destination.py +148 -147
- pulumi_vault/secrets/sync_azure_destination.py +148 -147
- pulumi_vault/secrets/sync_config.py +43 -42
- pulumi_vault/secrets/sync_gcp_destination.py +106 -105
- pulumi_vault/secrets/sync_gh_destination.py +134 -133
- pulumi_vault/secrets/sync_github_apps.py +64 -63
- pulumi_vault/secrets/sync_vercel_destination.py +120 -119
- pulumi_vault/ssh/__init__.py +1 -0
- pulumi_vault/ssh/_inputs.py +11 -10
- pulumi_vault/ssh/get_secret_backend_sign.py +52 -51
- pulumi_vault/ssh/outputs.py +7 -6
- pulumi_vault/ssh/secret_backend_ca.py +99 -98
- pulumi_vault/ssh/secret_backend_role.py +365 -364
- pulumi_vault/terraformcloud/__init__.py +1 -0
- pulumi_vault/terraformcloud/secret_backend.py +111 -110
- pulumi_vault/terraformcloud/secret_creds.py +74 -73
- pulumi_vault/terraformcloud/secret_role.py +93 -92
- pulumi_vault/token.py +246 -245
- pulumi_vault/tokenauth/__init__.py +1 -0
- pulumi_vault/tokenauth/auth_backend_role.py +267 -266
- pulumi_vault/transform/__init__.py +1 -0
- pulumi_vault/transform/alphabet.py +57 -56
- pulumi_vault/transform/get_decode.py +47 -46
- pulumi_vault/transform/get_encode.py +47 -46
- pulumi_vault/transform/role.py +57 -56
- pulumi_vault/transform/template.py +113 -112
- pulumi_vault/transform/transformation.py +141 -140
- pulumi_vault/transit/__init__.py +1 -0
- pulumi_vault/transit/get_decrypt.py +18 -17
- pulumi_vault/transit/get_encrypt.py +21 -20
- pulumi_vault/transit/get_sign.py +54 -53
- pulumi_vault/transit/get_verify.py +60 -59
- pulumi_vault/transit/secret_backend_key.py +274 -273
- pulumi_vault/transit/secret_cache_config.py +43 -42
- {pulumi_vault-6.7.0a1743576047.dist-info → pulumi_vault-6.7.0a1744267302.dist-info}/METADATA +1 -1
- pulumi_vault-6.7.0a1744267302.dist-info/RECORD +265 -0
- pulumi_vault-6.7.0a1743576047.dist-info/RECORD +0 -265
- {pulumi_vault-6.7.0a1743576047.dist-info → pulumi_vault-6.7.0a1744267302.dist-info}/WHEEL +0 -0
- {pulumi_vault-6.7.0a1743576047.dist-info → pulumi_vault-6.7.0a1744267302.dist-info}/top_level.txt +0 -0
@@ -2,6 +2,7 @@
|
|
2
2
|
# *** WARNING: this file was generated by the Pulumi Terraform Bridge (tfgen) Tool. ***
|
3
3
|
# *** Do not edit by hand unless you're certain you know what you are doing! ***
|
4
4
|
|
5
|
+
import builtins
|
5
6
|
import copy
|
6
7
|
import warnings
|
7
8
|
import sys
|
@@ -19,48 +20,48 @@ __all__ = ['AuthBackendRoleArgs', 'AuthBackendRole']
|
|
19
20
|
@pulumi.input_type
|
20
21
|
class AuthBackendRoleArgs:
|
21
22
|
def __init__(__self__, *,
|
22
|
-
path: pulumi.Input[str],
|
23
|
-
bound_attributes: Optional[pulumi.Input[Mapping[str, pulumi.Input[str]]]] = None,
|
24
|
-
bound_attributes_type: Optional[pulumi.Input[str]] = None,
|
25
|
-
bound_subjects: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
|
26
|
-
bound_subjects_type: Optional[pulumi.Input[str]] = None,
|
27
|
-
groups_attribute: Optional[pulumi.Input[str]] = None,
|
28
|
-
name: Optional[pulumi.Input[str]] = None,
|
29
|
-
namespace: Optional[pulumi.Input[str]] = None,
|
30
|
-
token_bound_cidrs: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
|
31
|
-
token_explicit_max_ttl: Optional[pulumi.Input[int]] = None,
|
32
|
-
token_max_ttl: Optional[pulumi.Input[int]] = None,
|
33
|
-
token_no_default_policy: Optional[pulumi.Input[bool]] = None,
|
34
|
-
token_num_uses: Optional[pulumi.Input[int]] = None,
|
35
|
-
token_period: Optional[pulumi.Input[int]] = None,
|
36
|
-
token_policies: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
|
37
|
-
token_ttl: Optional[pulumi.Input[int]] = None,
|
38
|
-
token_type: Optional[pulumi.Input[str]] = None):
|
23
|
+
path: pulumi.Input[builtins.str],
|
24
|
+
bound_attributes: Optional[pulumi.Input[Mapping[str, pulumi.Input[builtins.str]]]] = None,
|
25
|
+
bound_attributes_type: Optional[pulumi.Input[builtins.str]] = None,
|
26
|
+
bound_subjects: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
|
27
|
+
bound_subjects_type: Optional[pulumi.Input[builtins.str]] = None,
|
28
|
+
groups_attribute: Optional[pulumi.Input[builtins.str]] = None,
|
29
|
+
name: Optional[pulumi.Input[builtins.str]] = None,
|
30
|
+
namespace: Optional[pulumi.Input[builtins.str]] = None,
|
31
|
+
token_bound_cidrs: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
|
32
|
+
token_explicit_max_ttl: Optional[pulumi.Input[builtins.int]] = None,
|
33
|
+
token_max_ttl: Optional[pulumi.Input[builtins.int]] = None,
|
34
|
+
token_no_default_policy: Optional[pulumi.Input[builtins.bool]] = None,
|
35
|
+
token_num_uses: Optional[pulumi.Input[builtins.int]] = None,
|
36
|
+
token_period: Optional[pulumi.Input[builtins.int]] = None,
|
37
|
+
token_policies: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
|
38
|
+
token_ttl: Optional[pulumi.Input[builtins.int]] = None,
|
39
|
+
token_type: Optional[pulumi.Input[builtins.str]] = None):
|
39
40
|
"""
|
40
41
|
The set of arguments for constructing a AuthBackendRole resource.
|
41
|
-
:param pulumi.Input[str] path: Path where the auth backend is mounted.
|
42
|
-
:param pulumi.Input[Mapping[str, pulumi.Input[str]]] bound_attributes: Mapping of attribute names to values that are expected to
|
42
|
+
:param pulumi.Input[builtins.str] path: Path where the auth backend is mounted.
|
43
|
+
:param pulumi.Input[Mapping[str, pulumi.Input[builtins.str]]] bound_attributes: Mapping of attribute names to values that are expected to
|
43
44
|
exist in the SAML assertion.
|
44
|
-
:param pulumi.Input[str] bound_attributes_type: The type of matching assertion to perform on
|
45
|
+
:param pulumi.Input[builtins.str] bound_attributes_type: The type of matching assertion to perform on
|
45
46
|
`bound_attributes_type`.
|
46
|
-
:param pulumi.Input[Sequence[pulumi.Input[str]]] bound_subjects: List of subjects being asserted for SAML authentication.
|
47
|
-
:param pulumi.Input[str] bound_subjects_type: The type of matching assertion to perform on `bound_subjects`.
|
48
|
-
:param pulumi.Input[str] groups_attribute: The attribute to use to identify the set of groups to which the
|
47
|
+
:param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] bound_subjects: List of subjects being asserted for SAML authentication.
|
48
|
+
:param pulumi.Input[builtins.str] bound_subjects_type: The type of matching assertion to perform on `bound_subjects`.
|
49
|
+
:param pulumi.Input[builtins.str] groups_attribute: The attribute to use to identify the set of groups to which the
|
49
50
|
user belongs.
|
50
|
-
:param pulumi.Input[str] name: Unique name of the role.
|
51
|
-
:param pulumi.Input[str] namespace: The namespace to provision the resource in.
|
51
|
+
:param pulumi.Input[builtins.str] name: Unique name of the role.
|
52
|
+
:param pulumi.Input[builtins.str] namespace: The namespace to provision the resource in.
|
52
53
|
The value should not contain leading or trailing forward slashes.
|
53
54
|
The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault/index.html#namespace).
|
54
55
|
*Available only for Vault Enterprise*.
|
55
|
-
:param pulumi.Input[Sequence[pulumi.Input[str]]] token_bound_cidrs: Specifies the blocks of IP addresses which are allowed to use the generated token
|
56
|
-
:param pulumi.Input[int] token_explicit_max_ttl: Generated Token's Explicit Maximum TTL in seconds
|
57
|
-
:param pulumi.Input[int] token_max_ttl: The maximum lifetime of the generated token
|
58
|
-
:param pulumi.Input[bool] token_no_default_policy: If true, the 'default' policy will not automatically be added to generated tokens
|
59
|
-
:param pulumi.Input[int] token_num_uses: The maximum number of times a token may be used, a value of zero means unlimited
|
60
|
-
:param pulumi.Input[int] token_period: Generated Token's Period
|
61
|
-
:param pulumi.Input[Sequence[pulumi.Input[str]]] token_policies: Generated Token's Policies
|
62
|
-
:param pulumi.Input[int] token_ttl: The initial ttl of the token to generate in seconds
|
63
|
-
:param pulumi.Input[str] token_type: The type of token to generate, service or batch
|
56
|
+
:param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] token_bound_cidrs: Specifies the blocks of IP addresses which are allowed to use the generated token
|
57
|
+
:param pulumi.Input[builtins.int] token_explicit_max_ttl: Generated Token's Explicit Maximum TTL in seconds
|
58
|
+
:param pulumi.Input[builtins.int] token_max_ttl: The maximum lifetime of the generated token
|
59
|
+
:param pulumi.Input[builtins.bool] token_no_default_policy: If true, the 'default' policy will not automatically be added to generated tokens
|
60
|
+
:param pulumi.Input[builtins.int] token_num_uses: The maximum number of times a token may be used, a value of zero means unlimited
|
61
|
+
:param pulumi.Input[builtins.int] token_period: Generated Token's Period
|
62
|
+
:param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] token_policies: Generated Token's Policies
|
63
|
+
:param pulumi.Input[builtins.int] token_ttl: The initial ttl of the token to generate in seconds
|
64
|
+
:param pulumi.Input[builtins.str] token_type: The type of token to generate, service or batch
|
64
65
|
"""
|
65
66
|
pulumi.set(__self__, "path", path)
|
66
67
|
if bound_attributes is not None:
|
@@ -98,19 +99,19 @@ class AuthBackendRoleArgs:
|
|
98
99
|
|
99
100
|
@property
|
100
101
|
@pulumi.getter
|
101
|
-
def path(self) -> pulumi.Input[str]:
|
102
|
+
def path(self) -> pulumi.Input[builtins.str]:
|
102
103
|
"""
|
103
104
|
Path where the auth backend is mounted.
|
104
105
|
"""
|
105
106
|
return pulumi.get(self, "path")
|
106
107
|
|
107
108
|
@path.setter
|
108
|
-
def path(self, value: pulumi.Input[str]):
|
109
|
+
def path(self, value: pulumi.Input[builtins.str]):
|
109
110
|
pulumi.set(self, "path", value)
|
110
111
|
|
111
112
|
@property
|
112
113
|
@pulumi.getter(name="boundAttributes")
|
113
|
-
def bound_attributes(self) -> Optional[pulumi.Input[Mapping[str, pulumi.Input[str]]]]:
|
114
|
+
def bound_attributes(self) -> Optional[pulumi.Input[Mapping[str, pulumi.Input[builtins.str]]]]:
|
114
115
|
"""
|
115
116
|
Mapping of attribute names to values that are expected to
|
116
117
|
exist in the SAML assertion.
|
@@ -118,12 +119,12 @@ class AuthBackendRoleArgs:
|
|
118
119
|
return pulumi.get(self, "bound_attributes")
|
119
120
|
|
120
121
|
@bound_attributes.setter
|
121
|
-
def bound_attributes(self, value: Optional[pulumi.Input[Mapping[str, pulumi.Input[str]]]]):
|
122
|
+
def bound_attributes(self, value: Optional[pulumi.Input[Mapping[str, pulumi.Input[builtins.str]]]]):
|
122
123
|
pulumi.set(self, "bound_attributes", value)
|
123
124
|
|
124
125
|
@property
|
125
126
|
@pulumi.getter(name="boundAttributesType")
|
126
|
-
def bound_attributes_type(self) -> Optional[pulumi.Input[str]]:
|
127
|
+
def bound_attributes_type(self) -> Optional[pulumi.Input[builtins.str]]:
|
127
128
|
"""
|
128
129
|
The type of matching assertion to perform on
|
129
130
|
`bound_attributes_type`.
|
@@ -131,36 +132,36 @@ class AuthBackendRoleArgs:
|
|
131
132
|
return pulumi.get(self, "bound_attributes_type")
|
132
133
|
|
133
134
|
@bound_attributes_type.setter
|
134
|
-
def bound_attributes_type(self, value: Optional[pulumi.Input[str]]):
|
135
|
+
def bound_attributes_type(self, value: Optional[pulumi.Input[builtins.str]]):
|
135
136
|
pulumi.set(self, "bound_attributes_type", value)
|
136
137
|
|
137
138
|
@property
|
138
139
|
@pulumi.getter(name="boundSubjects")
|
139
|
-
def bound_subjects(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]:
|
140
|
+
def bound_subjects(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]:
|
140
141
|
"""
|
141
142
|
List of subjects being asserted for SAML authentication.
|
142
143
|
"""
|
143
144
|
return pulumi.get(self, "bound_subjects")
|
144
145
|
|
145
146
|
@bound_subjects.setter
|
146
|
-
def bound_subjects(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]):
|
147
|
+
def bound_subjects(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]):
|
147
148
|
pulumi.set(self, "bound_subjects", value)
|
148
149
|
|
149
150
|
@property
|
150
151
|
@pulumi.getter(name="boundSubjectsType")
|
151
|
-
def bound_subjects_type(self) -> Optional[pulumi.Input[str]]:
|
152
|
+
def bound_subjects_type(self) -> Optional[pulumi.Input[builtins.str]]:
|
152
153
|
"""
|
153
154
|
The type of matching assertion to perform on `bound_subjects`.
|
154
155
|
"""
|
155
156
|
return pulumi.get(self, "bound_subjects_type")
|
156
157
|
|
157
158
|
@bound_subjects_type.setter
|
158
|
-
def bound_subjects_type(self, value: Optional[pulumi.Input[str]]):
|
159
|
+
def bound_subjects_type(self, value: Optional[pulumi.Input[builtins.str]]):
|
159
160
|
pulumi.set(self, "bound_subjects_type", value)
|
160
161
|
|
161
162
|
@property
|
162
163
|
@pulumi.getter(name="groupsAttribute")
|
163
|
-
def groups_attribute(self) -> Optional[pulumi.Input[str]]:
|
164
|
+
def groups_attribute(self) -> Optional[pulumi.Input[builtins.str]]:
|
164
165
|
"""
|
165
166
|
The attribute to use to identify the set of groups to which the
|
166
167
|
user belongs.
|
@@ -168,24 +169,24 @@ class AuthBackendRoleArgs:
|
|
168
169
|
return pulumi.get(self, "groups_attribute")
|
169
170
|
|
170
171
|
@groups_attribute.setter
|
171
|
-
def groups_attribute(self, value: Optional[pulumi.Input[str]]):
|
172
|
+
def groups_attribute(self, value: Optional[pulumi.Input[builtins.str]]):
|
172
173
|
pulumi.set(self, "groups_attribute", value)
|
173
174
|
|
174
175
|
@property
|
175
176
|
@pulumi.getter
|
176
|
-
def name(self) -> Optional[pulumi.Input[str]]:
|
177
|
+
def name(self) -> Optional[pulumi.Input[builtins.str]]:
|
177
178
|
"""
|
178
179
|
Unique name of the role.
|
179
180
|
"""
|
180
181
|
return pulumi.get(self, "name")
|
181
182
|
|
182
183
|
@name.setter
|
183
|
-
def name(self, value: Optional[pulumi.Input[str]]):
|
184
|
+
def name(self, value: Optional[pulumi.Input[builtins.str]]):
|
184
185
|
pulumi.set(self, "name", value)
|
185
186
|
|
186
187
|
@property
|
187
188
|
@pulumi.getter
|
188
|
-
def namespace(self) -> Optional[pulumi.Input[str]]:
|
189
|
+
def namespace(self) -> Optional[pulumi.Input[builtins.str]]:
|
189
190
|
"""
|
190
191
|
The namespace to provision the resource in.
|
191
192
|
The value should not contain leading or trailing forward slashes.
|
@@ -195,163 +196,163 @@ class AuthBackendRoleArgs:
|
|
195
196
|
return pulumi.get(self, "namespace")
|
196
197
|
|
197
198
|
@namespace.setter
|
198
|
-
def namespace(self, value: Optional[pulumi.Input[str]]):
|
199
|
+
def namespace(self, value: Optional[pulumi.Input[builtins.str]]):
|
199
200
|
pulumi.set(self, "namespace", value)
|
200
201
|
|
201
202
|
@property
|
202
203
|
@pulumi.getter(name="tokenBoundCidrs")
|
203
|
-
def token_bound_cidrs(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]:
|
204
|
+
def token_bound_cidrs(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]:
|
204
205
|
"""
|
205
206
|
Specifies the blocks of IP addresses which are allowed to use the generated token
|
206
207
|
"""
|
207
208
|
return pulumi.get(self, "token_bound_cidrs")
|
208
209
|
|
209
210
|
@token_bound_cidrs.setter
|
210
|
-
def token_bound_cidrs(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]):
|
211
|
+
def token_bound_cidrs(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]):
|
211
212
|
pulumi.set(self, "token_bound_cidrs", value)
|
212
213
|
|
213
214
|
@property
|
214
215
|
@pulumi.getter(name="tokenExplicitMaxTtl")
|
215
|
-
def token_explicit_max_ttl(self) -> Optional[pulumi.Input[int]]:
|
216
|
+
def token_explicit_max_ttl(self) -> Optional[pulumi.Input[builtins.int]]:
|
216
217
|
"""
|
217
218
|
Generated Token's Explicit Maximum TTL in seconds
|
218
219
|
"""
|
219
220
|
return pulumi.get(self, "token_explicit_max_ttl")
|
220
221
|
|
221
222
|
@token_explicit_max_ttl.setter
|
222
|
-
def token_explicit_max_ttl(self, value: Optional[pulumi.Input[int]]):
|
223
|
+
def token_explicit_max_ttl(self, value: Optional[pulumi.Input[builtins.int]]):
|
223
224
|
pulumi.set(self, "token_explicit_max_ttl", value)
|
224
225
|
|
225
226
|
@property
|
226
227
|
@pulumi.getter(name="tokenMaxTtl")
|
227
|
-
def token_max_ttl(self) -> Optional[pulumi.Input[int]]:
|
228
|
+
def token_max_ttl(self) -> Optional[pulumi.Input[builtins.int]]:
|
228
229
|
"""
|
229
230
|
The maximum lifetime of the generated token
|
230
231
|
"""
|
231
232
|
return pulumi.get(self, "token_max_ttl")
|
232
233
|
|
233
234
|
@token_max_ttl.setter
|
234
|
-
def token_max_ttl(self, value: Optional[pulumi.Input[int]]):
|
235
|
+
def token_max_ttl(self, value: Optional[pulumi.Input[builtins.int]]):
|
235
236
|
pulumi.set(self, "token_max_ttl", value)
|
236
237
|
|
237
238
|
@property
|
238
239
|
@pulumi.getter(name="tokenNoDefaultPolicy")
|
239
|
-
def token_no_default_policy(self) -> Optional[pulumi.Input[bool]]:
|
240
|
+
def token_no_default_policy(self) -> Optional[pulumi.Input[builtins.bool]]:
|
240
241
|
"""
|
241
242
|
If true, the 'default' policy will not automatically be added to generated tokens
|
242
243
|
"""
|
243
244
|
return pulumi.get(self, "token_no_default_policy")
|
244
245
|
|
245
246
|
@token_no_default_policy.setter
|
246
|
-
def token_no_default_policy(self, value: Optional[pulumi.Input[bool]]):
|
247
|
+
def token_no_default_policy(self, value: Optional[pulumi.Input[builtins.bool]]):
|
247
248
|
pulumi.set(self, "token_no_default_policy", value)
|
248
249
|
|
249
250
|
@property
|
250
251
|
@pulumi.getter(name="tokenNumUses")
|
251
|
-
def token_num_uses(self) -> Optional[pulumi.Input[int]]:
|
252
|
+
def token_num_uses(self) -> Optional[pulumi.Input[builtins.int]]:
|
252
253
|
"""
|
253
254
|
The maximum number of times a token may be used, a value of zero means unlimited
|
254
255
|
"""
|
255
256
|
return pulumi.get(self, "token_num_uses")
|
256
257
|
|
257
258
|
@token_num_uses.setter
|
258
|
-
def token_num_uses(self, value: Optional[pulumi.Input[int]]):
|
259
|
+
def token_num_uses(self, value: Optional[pulumi.Input[builtins.int]]):
|
259
260
|
pulumi.set(self, "token_num_uses", value)
|
260
261
|
|
261
262
|
@property
|
262
263
|
@pulumi.getter(name="tokenPeriod")
|
263
|
-
def token_period(self) -> Optional[pulumi.Input[int]]:
|
264
|
+
def token_period(self) -> Optional[pulumi.Input[builtins.int]]:
|
264
265
|
"""
|
265
266
|
Generated Token's Period
|
266
267
|
"""
|
267
268
|
return pulumi.get(self, "token_period")
|
268
269
|
|
269
270
|
@token_period.setter
|
270
|
-
def token_period(self, value: Optional[pulumi.Input[int]]):
|
271
|
+
def token_period(self, value: Optional[pulumi.Input[builtins.int]]):
|
271
272
|
pulumi.set(self, "token_period", value)
|
272
273
|
|
273
274
|
@property
|
274
275
|
@pulumi.getter(name="tokenPolicies")
|
275
|
-
def token_policies(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]:
|
276
|
+
def token_policies(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]:
|
276
277
|
"""
|
277
278
|
Generated Token's Policies
|
278
279
|
"""
|
279
280
|
return pulumi.get(self, "token_policies")
|
280
281
|
|
281
282
|
@token_policies.setter
|
282
|
-
def token_policies(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]):
|
283
|
+
def token_policies(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]):
|
283
284
|
pulumi.set(self, "token_policies", value)
|
284
285
|
|
285
286
|
@property
|
286
287
|
@pulumi.getter(name="tokenTtl")
|
287
|
-
def token_ttl(self) -> Optional[pulumi.Input[int]]:
|
288
|
+
def token_ttl(self) -> Optional[pulumi.Input[builtins.int]]:
|
288
289
|
"""
|
289
290
|
The initial ttl of the token to generate in seconds
|
290
291
|
"""
|
291
292
|
return pulumi.get(self, "token_ttl")
|
292
293
|
|
293
294
|
@token_ttl.setter
|
294
|
-
def token_ttl(self, value: Optional[pulumi.Input[int]]):
|
295
|
+
def token_ttl(self, value: Optional[pulumi.Input[builtins.int]]):
|
295
296
|
pulumi.set(self, "token_ttl", value)
|
296
297
|
|
297
298
|
@property
|
298
299
|
@pulumi.getter(name="tokenType")
|
299
|
-
def token_type(self) -> Optional[pulumi.Input[str]]:
|
300
|
+
def token_type(self) -> Optional[pulumi.Input[builtins.str]]:
|
300
301
|
"""
|
301
302
|
The type of token to generate, service or batch
|
302
303
|
"""
|
303
304
|
return pulumi.get(self, "token_type")
|
304
305
|
|
305
306
|
@token_type.setter
|
306
|
-
def token_type(self, value: Optional[pulumi.Input[str]]):
|
307
|
+
def token_type(self, value: Optional[pulumi.Input[builtins.str]]):
|
307
308
|
pulumi.set(self, "token_type", value)
|
308
309
|
|
309
310
|
|
310
311
|
@pulumi.input_type
|
311
312
|
class _AuthBackendRoleState:
|
312
313
|
def __init__(__self__, *,
|
313
|
-
bound_attributes: Optional[pulumi.Input[Mapping[str, pulumi.Input[str]]]] = None,
|
314
|
-
bound_attributes_type: Optional[pulumi.Input[str]] = None,
|
315
|
-
bound_subjects: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
|
316
|
-
bound_subjects_type: Optional[pulumi.Input[str]] = None,
|
317
|
-
groups_attribute: Optional[pulumi.Input[str]] = None,
|
318
|
-
name: Optional[pulumi.Input[str]] = None,
|
319
|
-
namespace: Optional[pulumi.Input[str]] = None,
|
320
|
-
path: Optional[pulumi.Input[str]] = None,
|
321
|
-
token_bound_cidrs: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
|
322
|
-
token_explicit_max_ttl: Optional[pulumi.Input[int]] = None,
|
323
|
-
token_max_ttl: Optional[pulumi.Input[int]] = None,
|
324
|
-
token_no_default_policy: Optional[pulumi.Input[bool]] = None,
|
325
|
-
token_num_uses: Optional[pulumi.Input[int]] = None,
|
326
|
-
token_period: Optional[pulumi.Input[int]] = None,
|
327
|
-
token_policies: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
|
328
|
-
token_ttl: Optional[pulumi.Input[int]] = None,
|
329
|
-
token_type: Optional[pulumi.Input[str]] = None):
|
314
|
+
bound_attributes: Optional[pulumi.Input[Mapping[str, pulumi.Input[builtins.str]]]] = None,
|
315
|
+
bound_attributes_type: Optional[pulumi.Input[builtins.str]] = None,
|
316
|
+
bound_subjects: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
|
317
|
+
bound_subjects_type: Optional[pulumi.Input[builtins.str]] = None,
|
318
|
+
groups_attribute: Optional[pulumi.Input[builtins.str]] = None,
|
319
|
+
name: Optional[pulumi.Input[builtins.str]] = None,
|
320
|
+
namespace: Optional[pulumi.Input[builtins.str]] = None,
|
321
|
+
path: Optional[pulumi.Input[builtins.str]] = None,
|
322
|
+
token_bound_cidrs: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
|
323
|
+
token_explicit_max_ttl: Optional[pulumi.Input[builtins.int]] = None,
|
324
|
+
token_max_ttl: Optional[pulumi.Input[builtins.int]] = None,
|
325
|
+
token_no_default_policy: Optional[pulumi.Input[builtins.bool]] = None,
|
326
|
+
token_num_uses: Optional[pulumi.Input[builtins.int]] = None,
|
327
|
+
token_period: Optional[pulumi.Input[builtins.int]] = None,
|
328
|
+
token_policies: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
|
329
|
+
token_ttl: Optional[pulumi.Input[builtins.int]] = None,
|
330
|
+
token_type: Optional[pulumi.Input[builtins.str]] = None):
|
330
331
|
"""
|
331
332
|
Input properties used for looking up and filtering AuthBackendRole resources.
|
332
|
-
:param pulumi.Input[Mapping[str, pulumi.Input[str]]] bound_attributes: Mapping of attribute names to values that are expected to
|
333
|
+
:param pulumi.Input[Mapping[str, pulumi.Input[builtins.str]]] bound_attributes: Mapping of attribute names to values that are expected to
|
333
334
|
exist in the SAML assertion.
|
334
|
-
:param pulumi.Input[str] bound_attributes_type: The type of matching assertion to perform on
|
335
|
+
:param pulumi.Input[builtins.str] bound_attributes_type: The type of matching assertion to perform on
|
335
336
|
`bound_attributes_type`.
|
336
|
-
:param pulumi.Input[Sequence[pulumi.Input[str]]] bound_subjects: List of subjects being asserted for SAML authentication.
|
337
|
-
:param pulumi.Input[str] bound_subjects_type: The type of matching assertion to perform on `bound_subjects`.
|
338
|
-
:param pulumi.Input[str] groups_attribute: The attribute to use to identify the set of groups to which the
|
337
|
+
:param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] bound_subjects: List of subjects being asserted for SAML authentication.
|
338
|
+
:param pulumi.Input[builtins.str] bound_subjects_type: The type of matching assertion to perform on `bound_subjects`.
|
339
|
+
:param pulumi.Input[builtins.str] groups_attribute: The attribute to use to identify the set of groups to which the
|
339
340
|
user belongs.
|
340
|
-
:param pulumi.Input[str] name: Unique name of the role.
|
341
|
-
:param pulumi.Input[str] namespace: The namespace to provision the resource in.
|
341
|
+
:param pulumi.Input[builtins.str] name: Unique name of the role.
|
342
|
+
:param pulumi.Input[builtins.str] namespace: The namespace to provision the resource in.
|
342
343
|
The value should not contain leading or trailing forward slashes.
|
343
344
|
The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault/index.html#namespace).
|
344
345
|
*Available only for Vault Enterprise*.
|
345
|
-
:param pulumi.Input[str] path: Path where the auth backend is mounted.
|
346
|
-
:param pulumi.Input[Sequence[pulumi.Input[str]]] token_bound_cidrs: Specifies the blocks of IP addresses which are allowed to use the generated token
|
347
|
-
:param pulumi.Input[int] token_explicit_max_ttl: Generated Token's Explicit Maximum TTL in seconds
|
348
|
-
:param pulumi.Input[int] token_max_ttl: The maximum lifetime of the generated token
|
349
|
-
:param pulumi.Input[bool] token_no_default_policy: If true, the 'default' policy will not automatically be added to generated tokens
|
350
|
-
:param pulumi.Input[int] token_num_uses: The maximum number of times a token may be used, a value of zero means unlimited
|
351
|
-
:param pulumi.Input[int] token_period: Generated Token's Period
|
352
|
-
:param pulumi.Input[Sequence[pulumi.Input[str]]] token_policies: Generated Token's Policies
|
353
|
-
:param pulumi.Input[int] token_ttl: The initial ttl of the token to generate in seconds
|
354
|
-
:param pulumi.Input[str] token_type: The type of token to generate, service or batch
|
346
|
+
:param pulumi.Input[builtins.str] path: Path where the auth backend is mounted.
|
347
|
+
:param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] token_bound_cidrs: Specifies the blocks of IP addresses which are allowed to use the generated token
|
348
|
+
:param pulumi.Input[builtins.int] token_explicit_max_ttl: Generated Token's Explicit Maximum TTL in seconds
|
349
|
+
:param pulumi.Input[builtins.int] token_max_ttl: The maximum lifetime of the generated token
|
350
|
+
:param pulumi.Input[builtins.bool] token_no_default_policy: If true, the 'default' policy will not automatically be added to generated tokens
|
351
|
+
:param pulumi.Input[builtins.int] token_num_uses: The maximum number of times a token may be used, a value of zero means unlimited
|
352
|
+
:param pulumi.Input[builtins.int] token_period: Generated Token's Period
|
353
|
+
:param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] token_policies: Generated Token's Policies
|
354
|
+
:param pulumi.Input[builtins.int] token_ttl: The initial ttl of the token to generate in seconds
|
355
|
+
:param pulumi.Input[builtins.str] token_type: The type of token to generate, service or batch
|
355
356
|
"""
|
356
357
|
if bound_attributes is not None:
|
357
358
|
pulumi.set(__self__, "bound_attributes", bound_attributes)
|
@@ -390,7 +391,7 @@ class _AuthBackendRoleState:
|
|
390
391
|
|
391
392
|
@property
|
392
393
|
@pulumi.getter(name="boundAttributes")
|
393
|
-
def bound_attributes(self) -> Optional[pulumi.Input[Mapping[str, pulumi.Input[str]]]]:
|
394
|
+
def bound_attributes(self) -> Optional[pulumi.Input[Mapping[str, pulumi.Input[builtins.str]]]]:
|
394
395
|
"""
|
395
396
|
Mapping of attribute names to values that are expected to
|
396
397
|
exist in the SAML assertion.
|
@@ -398,12 +399,12 @@ class _AuthBackendRoleState:
|
|
398
399
|
return pulumi.get(self, "bound_attributes")
|
399
400
|
|
400
401
|
@bound_attributes.setter
|
401
|
-
def bound_attributes(self, value: Optional[pulumi.Input[Mapping[str, pulumi.Input[str]]]]):
|
402
|
+
def bound_attributes(self, value: Optional[pulumi.Input[Mapping[str, pulumi.Input[builtins.str]]]]):
|
402
403
|
pulumi.set(self, "bound_attributes", value)
|
403
404
|
|
404
405
|
@property
|
405
406
|
@pulumi.getter(name="boundAttributesType")
|
406
|
-
def bound_attributes_type(self) -> Optional[pulumi.Input[str]]:
|
407
|
+
def bound_attributes_type(self) -> Optional[pulumi.Input[builtins.str]]:
|
407
408
|
"""
|
408
409
|
The type of matching assertion to perform on
|
409
410
|
`bound_attributes_type`.
|
@@ -411,36 +412,36 @@ class _AuthBackendRoleState:
|
|
411
412
|
return pulumi.get(self, "bound_attributes_type")
|
412
413
|
|
413
414
|
@bound_attributes_type.setter
|
414
|
-
def bound_attributes_type(self, value: Optional[pulumi.Input[str]]):
|
415
|
+
def bound_attributes_type(self, value: Optional[pulumi.Input[builtins.str]]):
|
415
416
|
pulumi.set(self, "bound_attributes_type", value)
|
416
417
|
|
417
418
|
@property
|
418
419
|
@pulumi.getter(name="boundSubjects")
|
419
|
-
def bound_subjects(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]:
|
420
|
+
def bound_subjects(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]:
|
420
421
|
"""
|
421
422
|
List of subjects being asserted for SAML authentication.
|
422
423
|
"""
|
423
424
|
return pulumi.get(self, "bound_subjects")
|
424
425
|
|
425
426
|
@bound_subjects.setter
|
426
|
-
def bound_subjects(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]):
|
427
|
+
def bound_subjects(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]):
|
427
428
|
pulumi.set(self, "bound_subjects", value)
|
428
429
|
|
429
430
|
@property
|
430
431
|
@pulumi.getter(name="boundSubjectsType")
|
431
|
-
def bound_subjects_type(self) -> Optional[pulumi.Input[str]]:
|
432
|
+
def bound_subjects_type(self) -> Optional[pulumi.Input[builtins.str]]:
|
432
433
|
"""
|
433
434
|
The type of matching assertion to perform on `bound_subjects`.
|
434
435
|
"""
|
435
436
|
return pulumi.get(self, "bound_subjects_type")
|
436
437
|
|
437
438
|
@bound_subjects_type.setter
|
438
|
-
def bound_subjects_type(self, value: Optional[pulumi.Input[str]]):
|
439
|
+
def bound_subjects_type(self, value: Optional[pulumi.Input[builtins.str]]):
|
439
440
|
pulumi.set(self, "bound_subjects_type", value)
|
440
441
|
|
441
442
|
@property
|
442
443
|
@pulumi.getter(name="groupsAttribute")
|
443
|
-
def groups_attribute(self) -> Optional[pulumi.Input[str]]:
|
444
|
+
def groups_attribute(self) -> Optional[pulumi.Input[builtins.str]]:
|
444
445
|
"""
|
445
446
|
The attribute to use to identify the set of groups to which the
|
446
447
|
user belongs.
|
@@ -448,24 +449,24 @@ class _AuthBackendRoleState:
|
|
448
449
|
return pulumi.get(self, "groups_attribute")
|
449
450
|
|
450
451
|
@groups_attribute.setter
|
451
|
-
def groups_attribute(self, value: Optional[pulumi.Input[str]]):
|
452
|
+
def groups_attribute(self, value: Optional[pulumi.Input[builtins.str]]):
|
452
453
|
pulumi.set(self, "groups_attribute", value)
|
453
454
|
|
454
455
|
@property
|
455
456
|
@pulumi.getter
|
456
|
-
def name(self) -> Optional[pulumi.Input[str]]:
|
457
|
+
def name(self) -> Optional[pulumi.Input[builtins.str]]:
|
457
458
|
"""
|
458
459
|
Unique name of the role.
|
459
460
|
"""
|
460
461
|
return pulumi.get(self, "name")
|
461
462
|
|
462
463
|
@name.setter
|
463
|
-
def name(self, value: Optional[pulumi.Input[str]]):
|
464
|
+
def name(self, value: Optional[pulumi.Input[builtins.str]]):
|
464
465
|
pulumi.set(self, "name", value)
|
465
466
|
|
466
467
|
@property
|
467
468
|
@pulumi.getter
|
468
|
-
def namespace(self) -> Optional[pulumi.Input[str]]:
|
469
|
+
def namespace(self) -> Optional[pulumi.Input[builtins.str]]:
|
469
470
|
"""
|
470
471
|
The namespace to provision the resource in.
|
471
472
|
The value should not contain leading or trailing forward slashes.
|
@@ -475,127 +476,127 @@ class _AuthBackendRoleState:
|
|
475
476
|
return pulumi.get(self, "namespace")
|
476
477
|
|
477
478
|
@namespace.setter
|
478
|
-
def namespace(self, value: Optional[pulumi.Input[str]]):
|
479
|
+
def namespace(self, value: Optional[pulumi.Input[builtins.str]]):
|
479
480
|
pulumi.set(self, "namespace", value)
|
480
481
|
|
481
482
|
@property
|
482
483
|
@pulumi.getter
|
483
|
-
def path(self) -> Optional[pulumi.Input[str]]:
|
484
|
+
def path(self) -> Optional[pulumi.Input[builtins.str]]:
|
484
485
|
"""
|
485
486
|
Path where the auth backend is mounted.
|
486
487
|
"""
|
487
488
|
return pulumi.get(self, "path")
|
488
489
|
|
489
490
|
@path.setter
|
490
|
-
def path(self, value: Optional[pulumi.Input[str]]):
|
491
|
+
def path(self, value: Optional[pulumi.Input[builtins.str]]):
|
491
492
|
pulumi.set(self, "path", value)
|
492
493
|
|
493
494
|
@property
|
494
495
|
@pulumi.getter(name="tokenBoundCidrs")
|
495
|
-
def token_bound_cidrs(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]:
|
496
|
+
def token_bound_cidrs(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]:
|
496
497
|
"""
|
497
498
|
Specifies the blocks of IP addresses which are allowed to use the generated token
|
498
499
|
"""
|
499
500
|
return pulumi.get(self, "token_bound_cidrs")
|
500
501
|
|
501
502
|
@token_bound_cidrs.setter
|
502
|
-
def token_bound_cidrs(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]):
|
503
|
+
def token_bound_cidrs(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]):
|
503
504
|
pulumi.set(self, "token_bound_cidrs", value)
|
504
505
|
|
505
506
|
@property
|
506
507
|
@pulumi.getter(name="tokenExplicitMaxTtl")
|
507
|
-
def token_explicit_max_ttl(self) -> Optional[pulumi.Input[int]]:
|
508
|
+
def token_explicit_max_ttl(self) -> Optional[pulumi.Input[builtins.int]]:
|
508
509
|
"""
|
509
510
|
Generated Token's Explicit Maximum TTL in seconds
|
510
511
|
"""
|
511
512
|
return pulumi.get(self, "token_explicit_max_ttl")
|
512
513
|
|
513
514
|
@token_explicit_max_ttl.setter
|
514
|
-
def token_explicit_max_ttl(self, value: Optional[pulumi.Input[int]]):
|
515
|
+
def token_explicit_max_ttl(self, value: Optional[pulumi.Input[builtins.int]]):
|
515
516
|
pulumi.set(self, "token_explicit_max_ttl", value)
|
516
517
|
|
517
518
|
@property
|
518
519
|
@pulumi.getter(name="tokenMaxTtl")
|
519
|
-
def token_max_ttl(self) -> Optional[pulumi.Input[int]]:
|
520
|
+
def token_max_ttl(self) -> Optional[pulumi.Input[builtins.int]]:
|
520
521
|
"""
|
521
522
|
The maximum lifetime of the generated token
|
522
523
|
"""
|
523
524
|
return pulumi.get(self, "token_max_ttl")
|
524
525
|
|
525
526
|
@token_max_ttl.setter
|
526
|
-
def token_max_ttl(self, value: Optional[pulumi.Input[int]]):
|
527
|
+
def token_max_ttl(self, value: Optional[pulumi.Input[builtins.int]]):
|
527
528
|
pulumi.set(self, "token_max_ttl", value)
|
528
529
|
|
529
530
|
@property
|
530
531
|
@pulumi.getter(name="tokenNoDefaultPolicy")
|
531
|
-
def token_no_default_policy(self) -> Optional[pulumi.Input[bool]]:
|
532
|
+
def token_no_default_policy(self) -> Optional[pulumi.Input[builtins.bool]]:
|
532
533
|
"""
|
533
534
|
If true, the 'default' policy will not automatically be added to generated tokens
|
534
535
|
"""
|
535
536
|
return pulumi.get(self, "token_no_default_policy")
|
536
537
|
|
537
538
|
@token_no_default_policy.setter
|
538
|
-
def token_no_default_policy(self, value: Optional[pulumi.Input[bool]]):
|
539
|
+
def token_no_default_policy(self, value: Optional[pulumi.Input[builtins.bool]]):
|
539
540
|
pulumi.set(self, "token_no_default_policy", value)
|
540
541
|
|
541
542
|
@property
|
542
543
|
@pulumi.getter(name="tokenNumUses")
|
543
|
-
def token_num_uses(self) -> Optional[pulumi.Input[int]]:
|
544
|
+
def token_num_uses(self) -> Optional[pulumi.Input[builtins.int]]:
|
544
545
|
"""
|
545
546
|
The maximum number of times a token may be used, a value of zero means unlimited
|
546
547
|
"""
|
547
548
|
return pulumi.get(self, "token_num_uses")
|
548
549
|
|
549
550
|
@token_num_uses.setter
|
550
|
-
def token_num_uses(self, value: Optional[pulumi.Input[int]]):
|
551
|
+
def token_num_uses(self, value: Optional[pulumi.Input[builtins.int]]):
|
551
552
|
pulumi.set(self, "token_num_uses", value)
|
552
553
|
|
553
554
|
@property
|
554
555
|
@pulumi.getter(name="tokenPeriod")
|
555
|
-
def token_period(self) -> Optional[pulumi.Input[int]]:
|
556
|
+
def token_period(self) -> Optional[pulumi.Input[builtins.int]]:
|
556
557
|
"""
|
557
558
|
Generated Token's Period
|
558
559
|
"""
|
559
560
|
return pulumi.get(self, "token_period")
|
560
561
|
|
561
562
|
@token_period.setter
|
562
|
-
def token_period(self, value: Optional[pulumi.Input[int]]):
|
563
|
+
def token_period(self, value: Optional[pulumi.Input[builtins.int]]):
|
563
564
|
pulumi.set(self, "token_period", value)
|
564
565
|
|
565
566
|
@property
|
566
567
|
@pulumi.getter(name="tokenPolicies")
|
567
|
-
def token_policies(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]:
|
568
|
+
def token_policies(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]:
|
568
569
|
"""
|
569
570
|
Generated Token's Policies
|
570
571
|
"""
|
571
572
|
return pulumi.get(self, "token_policies")
|
572
573
|
|
573
574
|
@token_policies.setter
|
574
|
-
def token_policies(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]):
|
575
|
+
def token_policies(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]):
|
575
576
|
pulumi.set(self, "token_policies", value)
|
576
577
|
|
577
578
|
@property
|
578
579
|
@pulumi.getter(name="tokenTtl")
|
579
|
-
def token_ttl(self) -> Optional[pulumi.Input[int]]:
|
580
|
+
def token_ttl(self) -> Optional[pulumi.Input[builtins.int]]:
|
580
581
|
"""
|
581
582
|
The initial ttl of the token to generate in seconds
|
582
583
|
"""
|
583
584
|
return pulumi.get(self, "token_ttl")
|
584
585
|
|
585
586
|
@token_ttl.setter
|
586
|
-
def token_ttl(self, value: Optional[pulumi.Input[int]]):
|
587
|
+
def token_ttl(self, value: Optional[pulumi.Input[builtins.int]]):
|
587
588
|
pulumi.set(self, "token_ttl", value)
|
588
589
|
|
589
590
|
@property
|
590
591
|
@pulumi.getter(name="tokenType")
|
591
|
-
def token_type(self) -> Optional[pulumi.Input[str]]:
|
592
|
+
def token_type(self) -> Optional[pulumi.Input[builtins.str]]:
|
592
593
|
"""
|
593
594
|
The type of token to generate, service or batch
|
594
595
|
"""
|
595
596
|
return pulumi.get(self, "token_type")
|
596
597
|
|
597
598
|
@token_type.setter
|
598
|
-
def token_type(self, value: Optional[pulumi.Input[str]]):
|
599
|
+
def token_type(self, value: Optional[pulumi.Input[builtins.str]]):
|
599
600
|
pulumi.set(self, "token_type", value)
|
600
601
|
|
601
602
|
|
@@ -604,23 +605,23 @@ class AuthBackendRole(pulumi.CustomResource):
|
|
604
605
|
def __init__(__self__,
|
605
606
|
resource_name: str,
|
606
607
|
opts: Optional[pulumi.ResourceOptions] = None,
|
607
|
-
bound_attributes: Optional[pulumi.Input[Mapping[str, pulumi.Input[str]]]] = None,
|
608
|
-
bound_attributes_type: Optional[pulumi.Input[str]] = None,
|
609
|
-
bound_subjects: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
|
610
|
-
bound_subjects_type: Optional[pulumi.Input[str]] = None,
|
611
|
-
groups_attribute: Optional[pulumi.Input[str]] = None,
|
612
|
-
name: Optional[pulumi.Input[str]] = None,
|
613
|
-
namespace: Optional[pulumi.Input[str]] = None,
|
614
|
-
path: Optional[pulumi.Input[str]] = None,
|
615
|
-
token_bound_cidrs: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
|
616
|
-
token_explicit_max_ttl: Optional[pulumi.Input[int]] = None,
|
617
|
-
token_max_ttl: Optional[pulumi.Input[int]] = None,
|
618
|
-
token_no_default_policy: Optional[pulumi.Input[bool]] = None,
|
619
|
-
token_num_uses: Optional[pulumi.Input[int]] = None,
|
620
|
-
token_period: Optional[pulumi.Input[int]] = None,
|
621
|
-
token_policies: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
|
622
|
-
token_ttl: Optional[pulumi.Input[int]] = None,
|
623
|
-
token_type: Optional[pulumi.Input[str]] = None,
|
608
|
+
bound_attributes: Optional[pulumi.Input[Mapping[str, pulumi.Input[builtins.str]]]] = None,
|
609
|
+
bound_attributes_type: Optional[pulumi.Input[builtins.str]] = None,
|
610
|
+
bound_subjects: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
|
611
|
+
bound_subjects_type: Optional[pulumi.Input[builtins.str]] = None,
|
612
|
+
groups_attribute: Optional[pulumi.Input[builtins.str]] = None,
|
613
|
+
name: Optional[pulumi.Input[builtins.str]] = None,
|
614
|
+
namespace: Optional[pulumi.Input[builtins.str]] = None,
|
615
|
+
path: Optional[pulumi.Input[builtins.str]] = None,
|
616
|
+
token_bound_cidrs: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
|
617
|
+
token_explicit_max_ttl: Optional[pulumi.Input[builtins.int]] = None,
|
618
|
+
token_max_ttl: Optional[pulumi.Input[builtins.int]] = None,
|
619
|
+
token_no_default_policy: Optional[pulumi.Input[builtins.bool]] = None,
|
620
|
+
token_num_uses: Optional[pulumi.Input[builtins.int]] = None,
|
621
|
+
token_period: Optional[pulumi.Input[builtins.int]] = None,
|
622
|
+
token_policies: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
|
623
|
+
token_ttl: Optional[pulumi.Input[builtins.int]] = None,
|
624
|
+
token_type: Optional[pulumi.Input[builtins.str]] = None,
|
624
625
|
__props__=None):
|
625
626
|
"""
|
626
627
|
Manages an SAML auth backend role in a Vault server. See the [Vault
|
@@ -661,29 +662,29 @@ class AuthBackendRole(pulumi.CustomResource):
|
|
661
662
|
|
662
663
|
:param str resource_name: The name of the resource.
|
663
664
|
:param pulumi.ResourceOptions opts: Options for the resource.
|
664
|
-
:param pulumi.Input[Mapping[str, pulumi.Input[str]]] bound_attributes: Mapping of attribute names to values that are expected to
|
665
|
+
:param pulumi.Input[Mapping[str, pulumi.Input[builtins.str]]] bound_attributes: Mapping of attribute names to values that are expected to
|
665
666
|
exist in the SAML assertion.
|
666
|
-
:param pulumi.Input[str] bound_attributes_type: The type of matching assertion to perform on
|
667
|
+
:param pulumi.Input[builtins.str] bound_attributes_type: The type of matching assertion to perform on
|
667
668
|
`bound_attributes_type`.
|
668
|
-
:param pulumi.Input[Sequence[pulumi.Input[str]]] bound_subjects: List of subjects being asserted for SAML authentication.
|
669
|
-
:param pulumi.Input[str] bound_subjects_type: The type of matching assertion to perform on `bound_subjects`.
|
670
|
-
:param pulumi.Input[str] groups_attribute: The attribute to use to identify the set of groups to which the
|
669
|
+
:param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] bound_subjects: List of subjects being asserted for SAML authentication.
|
670
|
+
:param pulumi.Input[builtins.str] bound_subjects_type: The type of matching assertion to perform on `bound_subjects`.
|
671
|
+
:param pulumi.Input[builtins.str] groups_attribute: The attribute to use to identify the set of groups to which the
|
671
672
|
user belongs.
|
672
|
-
:param pulumi.Input[str] name: Unique name of the role.
|
673
|
-
:param pulumi.Input[str] namespace: The namespace to provision the resource in.
|
673
|
+
:param pulumi.Input[builtins.str] name: Unique name of the role.
|
674
|
+
:param pulumi.Input[builtins.str] namespace: The namespace to provision the resource in.
|
674
675
|
The value should not contain leading or trailing forward slashes.
|
675
676
|
The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault/index.html#namespace).
|
676
677
|
*Available only for Vault Enterprise*.
|
677
|
-
:param pulumi.Input[str] path: Path where the auth backend is mounted.
|
678
|
-
:param pulumi.Input[Sequence[pulumi.Input[str]]] token_bound_cidrs: Specifies the blocks of IP addresses which are allowed to use the generated token
|
679
|
-
:param pulumi.Input[int] token_explicit_max_ttl: Generated Token's Explicit Maximum TTL in seconds
|
680
|
-
:param pulumi.Input[int] token_max_ttl: The maximum lifetime of the generated token
|
681
|
-
:param pulumi.Input[bool] token_no_default_policy: If true, the 'default' policy will not automatically be added to generated tokens
|
682
|
-
:param pulumi.Input[int] token_num_uses: The maximum number of times a token may be used, a value of zero means unlimited
|
683
|
-
:param pulumi.Input[int] token_period: Generated Token's Period
|
684
|
-
:param pulumi.Input[Sequence[pulumi.Input[str]]] token_policies: Generated Token's Policies
|
685
|
-
:param pulumi.Input[int] token_ttl: The initial ttl of the token to generate in seconds
|
686
|
-
:param pulumi.Input[str] token_type: The type of token to generate, service or batch
|
678
|
+
:param pulumi.Input[builtins.str] path: Path where the auth backend is mounted.
|
679
|
+
:param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] token_bound_cidrs: Specifies the blocks of IP addresses which are allowed to use the generated token
|
680
|
+
:param pulumi.Input[builtins.int] token_explicit_max_ttl: Generated Token's Explicit Maximum TTL in seconds
|
681
|
+
:param pulumi.Input[builtins.int] token_max_ttl: The maximum lifetime of the generated token
|
682
|
+
:param pulumi.Input[builtins.bool] token_no_default_policy: If true, the 'default' policy will not automatically be added to generated tokens
|
683
|
+
:param pulumi.Input[builtins.int] token_num_uses: The maximum number of times a token may be used, a value of zero means unlimited
|
684
|
+
:param pulumi.Input[builtins.int] token_period: Generated Token's Period
|
685
|
+
:param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] token_policies: Generated Token's Policies
|
686
|
+
:param pulumi.Input[builtins.int] token_ttl: The initial ttl of the token to generate in seconds
|
687
|
+
:param pulumi.Input[builtins.str] token_type: The type of token to generate, service or batch
|
687
688
|
"""
|
688
689
|
...
|
689
690
|
@overload
|
@@ -743,23 +744,23 @@ class AuthBackendRole(pulumi.CustomResource):
|
|
743
744
|
def _internal_init(__self__,
|
744
745
|
resource_name: str,
|
745
746
|
opts: Optional[pulumi.ResourceOptions] = None,
|
746
|
-
bound_attributes: Optional[pulumi.Input[Mapping[str, pulumi.Input[str]]]] = None,
|
747
|
-
bound_attributes_type: Optional[pulumi.Input[str]] = None,
|
748
|
-
bound_subjects: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
|
749
|
-
bound_subjects_type: Optional[pulumi.Input[str]] = None,
|
750
|
-
groups_attribute: Optional[pulumi.Input[str]] = None,
|
751
|
-
name: Optional[pulumi.Input[str]] = None,
|
752
|
-
namespace: Optional[pulumi.Input[str]] = None,
|
753
|
-
path: Optional[pulumi.Input[str]] = None,
|
754
|
-
token_bound_cidrs: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
|
755
|
-
token_explicit_max_ttl: Optional[pulumi.Input[int]] = None,
|
756
|
-
token_max_ttl: Optional[pulumi.Input[int]] = None,
|
757
|
-
token_no_default_policy: Optional[pulumi.Input[bool]] = None,
|
758
|
-
token_num_uses: Optional[pulumi.Input[int]] = None,
|
759
|
-
token_period: Optional[pulumi.Input[int]] = None,
|
760
|
-
token_policies: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
|
761
|
-
token_ttl: Optional[pulumi.Input[int]] = None,
|
762
|
-
token_type: Optional[pulumi.Input[str]] = None,
|
747
|
+
bound_attributes: Optional[pulumi.Input[Mapping[str, pulumi.Input[builtins.str]]]] = None,
|
748
|
+
bound_attributes_type: Optional[pulumi.Input[builtins.str]] = None,
|
749
|
+
bound_subjects: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
|
750
|
+
bound_subjects_type: Optional[pulumi.Input[builtins.str]] = None,
|
751
|
+
groups_attribute: Optional[pulumi.Input[builtins.str]] = None,
|
752
|
+
name: Optional[pulumi.Input[builtins.str]] = None,
|
753
|
+
namespace: Optional[pulumi.Input[builtins.str]] = None,
|
754
|
+
path: Optional[pulumi.Input[builtins.str]] = None,
|
755
|
+
token_bound_cidrs: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
|
756
|
+
token_explicit_max_ttl: Optional[pulumi.Input[builtins.int]] = None,
|
757
|
+
token_max_ttl: Optional[pulumi.Input[builtins.int]] = None,
|
758
|
+
token_no_default_policy: Optional[pulumi.Input[builtins.bool]] = None,
|
759
|
+
token_num_uses: Optional[pulumi.Input[builtins.int]] = None,
|
760
|
+
token_period: Optional[pulumi.Input[builtins.int]] = None,
|
761
|
+
token_policies: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
|
762
|
+
token_ttl: Optional[pulumi.Input[builtins.int]] = None,
|
763
|
+
token_type: Optional[pulumi.Input[builtins.str]] = None,
|
763
764
|
__props__=None):
|
764
765
|
opts = pulumi.ResourceOptions.merge(_utilities.get_resource_opts_defaults(), opts)
|
765
766
|
if not isinstance(opts, pulumi.ResourceOptions):
|
@@ -798,23 +799,23 @@ class AuthBackendRole(pulumi.CustomResource):
|
|
798
799
|
def get(resource_name: str,
|
799
800
|
id: pulumi.Input[str],
|
800
801
|
opts: Optional[pulumi.ResourceOptions] = None,
|
801
|
-
bound_attributes: Optional[pulumi.Input[Mapping[str, pulumi.Input[str]]]] = None,
|
802
|
-
bound_attributes_type: Optional[pulumi.Input[str]] = None,
|
803
|
-
bound_subjects: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
|
804
|
-
bound_subjects_type: Optional[pulumi.Input[str]] = None,
|
805
|
-
groups_attribute: Optional[pulumi.Input[str]] = None,
|
806
|
-
name: Optional[pulumi.Input[str]] = None,
|
807
|
-
namespace: Optional[pulumi.Input[str]] = None,
|
808
|
-
path: Optional[pulumi.Input[str]] = None,
|
809
|
-
token_bound_cidrs: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
|
810
|
-
token_explicit_max_ttl: Optional[pulumi.Input[int]] = None,
|
811
|
-
token_max_ttl: Optional[pulumi.Input[int]] = None,
|
812
|
-
token_no_default_policy: Optional[pulumi.Input[bool]] = None,
|
813
|
-
token_num_uses: Optional[pulumi.Input[int]] = None,
|
814
|
-
token_period: Optional[pulumi.Input[int]] = None,
|
815
|
-
token_policies: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
|
816
|
-
token_ttl: Optional[pulumi.Input[int]] = None,
|
817
|
-
token_type: Optional[pulumi.Input[str]] = None) -> 'AuthBackendRole':
|
802
|
+
bound_attributes: Optional[pulumi.Input[Mapping[str, pulumi.Input[builtins.str]]]] = None,
|
803
|
+
bound_attributes_type: Optional[pulumi.Input[builtins.str]] = None,
|
804
|
+
bound_subjects: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
|
805
|
+
bound_subjects_type: Optional[pulumi.Input[builtins.str]] = None,
|
806
|
+
groups_attribute: Optional[pulumi.Input[builtins.str]] = None,
|
807
|
+
name: Optional[pulumi.Input[builtins.str]] = None,
|
808
|
+
namespace: Optional[pulumi.Input[builtins.str]] = None,
|
809
|
+
path: Optional[pulumi.Input[builtins.str]] = None,
|
810
|
+
token_bound_cidrs: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
|
811
|
+
token_explicit_max_ttl: Optional[pulumi.Input[builtins.int]] = None,
|
812
|
+
token_max_ttl: Optional[pulumi.Input[builtins.int]] = None,
|
813
|
+
token_no_default_policy: Optional[pulumi.Input[builtins.bool]] = None,
|
814
|
+
token_num_uses: Optional[pulumi.Input[builtins.int]] = None,
|
815
|
+
token_period: Optional[pulumi.Input[builtins.int]] = None,
|
816
|
+
token_policies: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
|
817
|
+
token_ttl: Optional[pulumi.Input[builtins.int]] = None,
|
818
|
+
token_type: Optional[pulumi.Input[builtins.str]] = None) -> 'AuthBackendRole':
|
818
819
|
"""
|
819
820
|
Get an existing AuthBackendRole resource's state with the given name, id, and optional extra
|
820
821
|
properties used to qualify the lookup.
|
@@ -822,29 +823,29 @@ class AuthBackendRole(pulumi.CustomResource):
|
|
822
823
|
:param str resource_name: The unique name of the resulting resource.
|
823
824
|
:param pulumi.Input[str] id: The unique provider ID of the resource to lookup.
|
824
825
|
:param pulumi.ResourceOptions opts: Options for the resource.
|
825
|
-
:param pulumi.Input[Mapping[str, pulumi.Input[str]]] bound_attributes: Mapping of attribute names to values that are expected to
|
826
|
+
:param pulumi.Input[Mapping[str, pulumi.Input[builtins.str]]] bound_attributes: Mapping of attribute names to values that are expected to
|
826
827
|
exist in the SAML assertion.
|
827
|
-
:param pulumi.Input[str] bound_attributes_type: The type of matching assertion to perform on
|
828
|
+
:param pulumi.Input[builtins.str] bound_attributes_type: The type of matching assertion to perform on
|
828
829
|
`bound_attributes_type`.
|
829
|
-
:param pulumi.Input[Sequence[pulumi.Input[str]]] bound_subjects: List of subjects being asserted for SAML authentication.
|
830
|
-
:param pulumi.Input[str] bound_subjects_type: The type of matching assertion to perform on `bound_subjects`.
|
831
|
-
:param pulumi.Input[str] groups_attribute: The attribute to use to identify the set of groups to which the
|
830
|
+
:param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] bound_subjects: List of subjects being asserted for SAML authentication.
|
831
|
+
:param pulumi.Input[builtins.str] bound_subjects_type: The type of matching assertion to perform on `bound_subjects`.
|
832
|
+
:param pulumi.Input[builtins.str] groups_attribute: The attribute to use to identify the set of groups to which the
|
832
833
|
user belongs.
|
833
|
-
:param pulumi.Input[str] name: Unique name of the role.
|
834
|
-
:param pulumi.Input[str] namespace: The namespace to provision the resource in.
|
834
|
+
:param pulumi.Input[builtins.str] name: Unique name of the role.
|
835
|
+
:param pulumi.Input[builtins.str] namespace: The namespace to provision the resource in.
|
835
836
|
The value should not contain leading or trailing forward slashes.
|
836
837
|
The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault/index.html#namespace).
|
837
838
|
*Available only for Vault Enterprise*.
|
838
|
-
:param pulumi.Input[str] path: Path where the auth backend is mounted.
|
839
|
-
:param pulumi.Input[Sequence[pulumi.Input[str]]] token_bound_cidrs: Specifies the blocks of IP addresses which are allowed to use the generated token
|
840
|
-
:param pulumi.Input[int] token_explicit_max_ttl: Generated Token's Explicit Maximum TTL in seconds
|
841
|
-
:param pulumi.Input[int] token_max_ttl: The maximum lifetime of the generated token
|
842
|
-
:param pulumi.Input[bool] token_no_default_policy: If true, the 'default' policy will not automatically be added to generated tokens
|
843
|
-
:param pulumi.Input[int] token_num_uses: The maximum number of times a token may be used, a value of zero means unlimited
|
844
|
-
:param pulumi.Input[int] token_period: Generated Token's Period
|
845
|
-
:param pulumi.Input[Sequence[pulumi.Input[str]]] token_policies: Generated Token's Policies
|
846
|
-
:param pulumi.Input[int] token_ttl: The initial ttl of the token to generate in seconds
|
847
|
-
:param pulumi.Input[str] token_type: The type of token to generate, service or batch
|
839
|
+
:param pulumi.Input[builtins.str] path: Path where the auth backend is mounted.
|
840
|
+
:param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] token_bound_cidrs: Specifies the blocks of IP addresses which are allowed to use the generated token
|
841
|
+
:param pulumi.Input[builtins.int] token_explicit_max_ttl: Generated Token's Explicit Maximum TTL in seconds
|
842
|
+
:param pulumi.Input[builtins.int] token_max_ttl: The maximum lifetime of the generated token
|
843
|
+
:param pulumi.Input[builtins.bool] token_no_default_policy: If true, the 'default' policy will not automatically be added to generated tokens
|
844
|
+
:param pulumi.Input[builtins.int] token_num_uses: The maximum number of times a token may be used, a value of zero means unlimited
|
845
|
+
:param pulumi.Input[builtins.int] token_period: Generated Token's Period
|
846
|
+
:param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] token_policies: Generated Token's Policies
|
847
|
+
:param pulumi.Input[builtins.int] token_ttl: The initial ttl of the token to generate in seconds
|
848
|
+
:param pulumi.Input[builtins.str] token_type: The type of token to generate, service or batch
|
848
849
|
"""
|
849
850
|
opts = pulumi.ResourceOptions.merge(opts, pulumi.ResourceOptions(id=id))
|
850
851
|
|
@@ -871,7 +872,7 @@ class AuthBackendRole(pulumi.CustomResource):
|
|
871
872
|
|
872
873
|
@property
|
873
874
|
@pulumi.getter(name="boundAttributes")
|
874
|
-
def bound_attributes(self) -> pulumi.Output[Optional[Mapping[str, str]]]:
|
875
|
+
def bound_attributes(self) -> pulumi.Output[Optional[Mapping[str, builtins.str]]]:
|
875
876
|
"""
|
876
877
|
Mapping of attribute names to values that are expected to
|
877
878
|
exist in the SAML assertion.
|
@@ -880,7 +881,7 @@ class AuthBackendRole(pulumi.CustomResource):
|
|
880
881
|
|
881
882
|
@property
|
882
883
|
@pulumi.getter(name="boundAttributesType")
|
883
|
-
def bound_attributes_type(self) -> pulumi.Output[str]:
|
884
|
+
def bound_attributes_type(self) -> pulumi.Output[builtins.str]:
|
884
885
|
"""
|
885
886
|
The type of matching assertion to perform on
|
886
887
|
`bound_attributes_type`.
|
@@ -889,7 +890,7 @@ class AuthBackendRole(pulumi.CustomResource):
|
|
889
890
|
|
890
891
|
@property
|
891
892
|
@pulumi.getter(name="boundSubjects")
|
892
|
-
def bound_subjects(self) -> pulumi.Output[Optional[Sequence[str]]]:
|
893
|
+
def bound_subjects(self) -> pulumi.Output[Optional[Sequence[builtins.str]]]:
|
893
894
|
"""
|
894
895
|
List of subjects being asserted for SAML authentication.
|
895
896
|
"""
|
@@ -897,7 +898,7 @@ class AuthBackendRole(pulumi.CustomResource):
|
|
897
898
|
|
898
899
|
@property
|
899
900
|
@pulumi.getter(name="boundSubjectsType")
|
900
|
-
def bound_subjects_type(self) -> pulumi.Output[str]:
|
901
|
+
def bound_subjects_type(self) -> pulumi.Output[builtins.str]:
|
901
902
|
"""
|
902
903
|
The type of matching assertion to perform on `bound_subjects`.
|
903
904
|
"""
|
@@ -905,7 +906,7 @@ class AuthBackendRole(pulumi.CustomResource):
|
|
905
906
|
|
906
907
|
@property
|
907
908
|
@pulumi.getter(name="groupsAttribute")
|
908
|
-
def groups_attribute(self) -> pulumi.Output[Optional[str]]:
|
909
|
+
def groups_attribute(self) -> pulumi.Output[Optional[builtins.str]]:
|
909
910
|
"""
|
910
911
|
The attribute to use to identify the set of groups to which the
|
911
912
|
user belongs.
|
@@ -914,7 +915,7 @@ class AuthBackendRole(pulumi.CustomResource):
|
|
914
915
|
|
915
916
|
@property
|
916
917
|
@pulumi.getter
|
917
|
-
def name(self) -> pulumi.Output[str]:
|
918
|
+
def name(self) -> pulumi.Output[builtins.str]:
|
918
919
|
"""
|
919
920
|
Unique name of the role.
|
920
921
|
"""
|
@@ -922,7 +923,7 @@ class AuthBackendRole(pulumi.CustomResource):
|
|
922
923
|
|
923
924
|
@property
|
924
925
|
@pulumi.getter
|
925
|
-
def namespace(self) -> pulumi.Output[Optional[str]]:
|
926
|
+
def namespace(self) -> pulumi.Output[Optional[builtins.str]]:
|
926
927
|
"""
|
927
928
|
The namespace to provision the resource in.
|
928
929
|
The value should not contain leading or trailing forward slashes.
|
@@ -933,7 +934,7 @@ class AuthBackendRole(pulumi.CustomResource):
|
|
933
934
|
|
934
935
|
@property
|
935
936
|
@pulumi.getter
|
936
|
-
def path(self) -> pulumi.Output[str]:
|
937
|
+
def path(self) -> pulumi.Output[builtins.str]:
|
937
938
|
"""
|
938
939
|
Path where the auth backend is mounted.
|
939
940
|
"""
|
@@ -941,7 +942,7 @@ class AuthBackendRole(pulumi.CustomResource):
|
|
941
942
|
|
942
943
|
@property
|
943
944
|
@pulumi.getter(name="tokenBoundCidrs")
|
944
|
-
def token_bound_cidrs(self) -> pulumi.Output[Optional[Sequence[str]]]:
|
945
|
+
def token_bound_cidrs(self) -> pulumi.Output[Optional[Sequence[builtins.str]]]:
|
945
946
|
"""
|
946
947
|
Specifies the blocks of IP addresses which are allowed to use the generated token
|
947
948
|
"""
|
@@ -949,7 +950,7 @@ class AuthBackendRole(pulumi.CustomResource):
|
|
949
950
|
|
950
951
|
@property
|
951
952
|
@pulumi.getter(name="tokenExplicitMaxTtl")
|
952
|
-
def token_explicit_max_ttl(self) -> pulumi.Output[Optional[int]]:
|
953
|
+
def token_explicit_max_ttl(self) -> pulumi.Output[Optional[builtins.int]]:
|
953
954
|
"""
|
954
955
|
Generated Token's Explicit Maximum TTL in seconds
|
955
956
|
"""
|
@@ -957,7 +958,7 @@ class AuthBackendRole(pulumi.CustomResource):
|
|
957
958
|
|
958
959
|
@property
|
959
960
|
@pulumi.getter(name="tokenMaxTtl")
|
960
|
-
def token_max_ttl(self) -> pulumi.Output[Optional[int]]:
|
961
|
+
def token_max_ttl(self) -> pulumi.Output[Optional[builtins.int]]:
|
961
962
|
"""
|
962
963
|
The maximum lifetime of the generated token
|
963
964
|
"""
|
@@ -965,7 +966,7 @@ class AuthBackendRole(pulumi.CustomResource):
|
|
965
966
|
|
966
967
|
@property
|
967
968
|
@pulumi.getter(name="tokenNoDefaultPolicy")
|
968
|
-
def token_no_default_policy(self) -> pulumi.Output[Optional[bool]]:
|
969
|
+
def token_no_default_policy(self) -> pulumi.Output[Optional[builtins.bool]]:
|
969
970
|
"""
|
970
971
|
If true, the 'default' policy will not automatically be added to generated tokens
|
971
972
|
"""
|
@@ -973,7 +974,7 @@ class AuthBackendRole(pulumi.CustomResource):
|
|
973
974
|
|
974
975
|
@property
|
975
976
|
@pulumi.getter(name="tokenNumUses")
|
976
|
-
def token_num_uses(self) -> pulumi.Output[Optional[int]]:
|
977
|
+
def token_num_uses(self) -> pulumi.Output[Optional[builtins.int]]:
|
977
978
|
"""
|
978
979
|
The maximum number of times a token may be used, a value of zero means unlimited
|
979
980
|
"""
|
@@ -981,7 +982,7 @@ class AuthBackendRole(pulumi.CustomResource):
|
|
981
982
|
|
982
983
|
@property
|
983
984
|
@pulumi.getter(name="tokenPeriod")
|
984
|
-
def token_period(self) -> pulumi.Output[Optional[int]]:
|
985
|
+
def token_period(self) -> pulumi.Output[Optional[builtins.int]]:
|
985
986
|
"""
|
986
987
|
Generated Token's Period
|
987
988
|
"""
|
@@ -989,7 +990,7 @@ class AuthBackendRole(pulumi.CustomResource):
|
|
989
990
|
|
990
991
|
@property
|
991
992
|
@pulumi.getter(name="tokenPolicies")
|
992
|
-
def token_policies(self) -> pulumi.Output[Optional[Sequence[str]]]:
|
993
|
+
def token_policies(self) -> pulumi.Output[Optional[Sequence[builtins.str]]]:
|
993
994
|
"""
|
994
995
|
Generated Token's Policies
|
995
996
|
"""
|
@@ -997,7 +998,7 @@ class AuthBackendRole(pulumi.CustomResource):
|
|
997
998
|
|
998
999
|
@property
|
999
1000
|
@pulumi.getter(name="tokenTtl")
|
1000
|
-
def token_ttl(self) -> pulumi.Output[Optional[int]]:
|
1001
|
+
def token_ttl(self) -> pulumi.Output[Optional[builtins.int]]:
|
1001
1002
|
"""
|
1002
1003
|
The initial ttl of the token to generate in seconds
|
1003
1004
|
"""
|
@@ -1005,7 +1006,7 @@ class AuthBackendRole(pulumi.CustomResource):
|
|
1005
1006
|
|
1006
1007
|
@property
|
1007
1008
|
@pulumi.getter(name="tokenType")
|
1008
|
-
def token_type(self) -> pulumi.Output[Optional[str]]:
|
1009
|
+
def token_type(self) -> pulumi.Output[Optional[builtins.str]]:
|
1009
1010
|
"""
|
1010
1011
|
The type of token to generate, service or batch
|
1011
1012
|
"""
|