pulumi-vault 6.7.0a1743576047__py3-none-any.whl → 6.7.0a1744267302__py3-none-any.whl
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- pulumi_vault/__init__.py +1 -0
- pulumi_vault/_inputs.py +554 -553
- pulumi_vault/ad/__init__.py +1 -0
- pulumi_vault/ad/get_access_credentials.py +20 -19
- pulumi_vault/ad/secret_backend.py +477 -476
- pulumi_vault/ad/secret_library.py +99 -98
- pulumi_vault/ad/secret_role.py +85 -84
- pulumi_vault/alicloud/__init__.py +1 -0
- pulumi_vault/alicloud/auth_backend_role.py +183 -182
- pulumi_vault/approle/__init__.py +1 -0
- pulumi_vault/approle/auth_backend_login.py +106 -105
- pulumi_vault/approle/auth_backend_role.py +239 -238
- pulumi_vault/approle/auth_backend_role_secret_id.py +162 -161
- pulumi_vault/approle/get_auth_backend_role_id.py +18 -17
- pulumi_vault/audit.py +85 -84
- pulumi_vault/audit_request_header.py +43 -42
- pulumi_vault/auth_backend.py +106 -105
- pulumi_vault/aws/__init__.py +1 -0
- pulumi_vault/aws/auth_backend_cert.py +71 -70
- pulumi_vault/aws/auth_backend_client.py +253 -252
- pulumi_vault/aws/auth_backend_config_identity.py +85 -84
- pulumi_vault/aws/auth_backend_identity_whitelist.py +57 -56
- pulumi_vault/aws/auth_backend_login.py +209 -208
- pulumi_vault/aws/auth_backend_role.py +400 -399
- pulumi_vault/aws/auth_backend_role_tag.py +127 -126
- pulumi_vault/aws/auth_backend_roletag_blacklist.py +57 -56
- pulumi_vault/aws/auth_backend_sts_role.py +71 -70
- pulumi_vault/aws/get_access_credentials.py +44 -43
- pulumi_vault/aws/get_static_access_credentials.py +13 -12
- pulumi_vault/aws/secret_backend.py +337 -336
- pulumi_vault/aws/secret_backend_role.py +211 -210
- pulumi_vault/aws/secret_backend_static_role.py +113 -112
- pulumi_vault/azure/__init__.py +1 -0
- pulumi_vault/azure/_inputs.py +21 -20
- pulumi_vault/azure/auth_backend_config.py +183 -182
- pulumi_vault/azure/auth_backend_role.py +253 -252
- pulumi_vault/azure/backend.py +239 -238
- pulumi_vault/azure/backend_role.py +141 -140
- pulumi_vault/azure/get_access_credentials.py +58 -57
- pulumi_vault/azure/outputs.py +11 -10
- pulumi_vault/cert_auth_backend_role.py +365 -364
- pulumi_vault/config/__init__.py +1 -0
- pulumi_vault/config/__init__.pyi +1 -0
- pulumi_vault/config/_inputs.py +11 -10
- pulumi_vault/config/outputs.py +287 -286
- pulumi_vault/config/ui_custom_message.py +113 -112
- pulumi_vault/config/vars.py +1 -0
- pulumi_vault/consul/__init__.py +1 -0
- pulumi_vault/consul/secret_backend.py +197 -196
- pulumi_vault/consul/secret_backend_role.py +183 -182
- pulumi_vault/database/__init__.py +1 -0
- pulumi_vault/database/_inputs.py +2525 -2524
- pulumi_vault/database/outputs.py +1529 -1528
- pulumi_vault/database/secret_backend_connection.py +169 -168
- pulumi_vault/database/secret_backend_role.py +169 -168
- pulumi_vault/database/secret_backend_static_role.py +179 -178
- pulumi_vault/database/secrets_mount.py +267 -266
- pulumi_vault/egp_policy.py +71 -70
- pulumi_vault/gcp/__init__.py +1 -0
- pulumi_vault/gcp/_inputs.py +82 -81
- pulumi_vault/gcp/auth_backend.py +260 -259
- pulumi_vault/gcp/auth_backend_role.py +281 -280
- pulumi_vault/gcp/get_auth_backend_role.py +70 -69
- pulumi_vault/gcp/outputs.py +50 -49
- pulumi_vault/gcp/secret_backend.py +232 -231
- pulumi_vault/gcp/secret_impersonated_account.py +92 -91
- pulumi_vault/gcp/secret_roleset.py +92 -91
- pulumi_vault/gcp/secret_static_account.py +92 -91
- pulumi_vault/generic/__init__.py +1 -0
- pulumi_vault/generic/endpoint.py +113 -112
- pulumi_vault/generic/get_secret.py +28 -27
- pulumi_vault/generic/secret.py +78 -77
- pulumi_vault/get_auth_backend.py +19 -18
- pulumi_vault/get_auth_backends.py +14 -13
- pulumi_vault/get_namespace.py +15 -14
- pulumi_vault/get_namespaces.py +8 -7
- pulumi_vault/get_nomad_access_token.py +19 -18
- pulumi_vault/get_policy_document.py +6 -5
- pulumi_vault/get_raft_autopilot_state.py +18 -17
- pulumi_vault/github/__init__.py +1 -0
- pulumi_vault/github/_inputs.py +42 -41
- pulumi_vault/github/auth_backend.py +232 -231
- pulumi_vault/github/outputs.py +26 -25
- pulumi_vault/github/team.py +57 -56
- pulumi_vault/github/user.py +57 -56
- pulumi_vault/identity/__init__.py +1 -0
- pulumi_vault/identity/entity.py +85 -84
- pulumi_vault/identity/entity_alias.py +71 -70
- pulumi_vault/identity/entity_policies.py +64 -63
- pulumi_vault/identity/get_entity.py +43 -42
- pulumi_vault/identity/get_group.py +50 -49
- pulumi_vault/identity/get_oidc_client_creds.py +14 -13
- pulumi_vault/identity/get_oidc_openid_config.py +24 -23
- pulumi_vault/identity/get_oidc_public_keys.py +13 -12
- pulumi_vault/identity/group.py +141 -140
- pulumi_vault/identity/group_alias.py +57 -56
- pulumi_vault/identity/group_member_entity_ids.py +57 -56
- pulumi_vault/identity/group_member_group_ids.py +57 -56
- pulumi_vault/identity/group_policies.py +64 -63
- pulumi_vault/identity/mfa_duo.py +148 -147
- pulumi_vault/identity/mfa_login_enforcement.py +120 -119
- pulumi_vault/identity/mfa_okta.py +134 -133
- pulumi_vault/identity/mfa_pingid.py +127 -126
- pulumi_vault/identity/mfa_totp.py +176 -175
- pulumi_vault/identity/oidc.py +29 -28
- pulumi_vault/identity/oidc_assignment.py +57 -56
- pulumi_vault/identity/oidc_client.py +127 -126
- pulumi_vault/identity/oidc_key.py +85 -84
- pulumi_vault/identity/oidc_key_allowed_client_id.py +43 -42
- pulumi_vault/identity/oidc_provider.py +92 -91
- pulumi_vault/identity/oidc_role.py +85 -84
- pulumi_vault/identity/oidc_scope.py +57 -56
- pulumi_vault/identity/outputs.py +32 -31
- pulumi_vault/jwt/__init__.py +1 -0
- pulumi_vault/jwt/_inputs.py +42 -41
- pulumi_vault/jwt/auth_backend.py +288 -287
- pulumi_vault/jwt/auth_backend_role.py +407 -406
- pulumi_vault/jwt/outputs.py +26 -25
- pulumi_vault/kmip/__init__.py +1 -0
- pulumi_vault/kmip/secret_backend.py +183 -182
- pulumi_vault/kmip/secret_role.py +295 -294
- pulumi_vault/kmip/secret_scope.py +57 -56
- pulumi_vault/kubernetes/__init__.py +1 -0
- pulumi_vault/kubernetes/auth_backend_config.py +141 -140
- pulumi_vault/kubernetes/auth_backend_role.py +225 -224
- pulumi_vault/kubernetes/get_auth_backend_config.py +47 -46
- pulumi_vault/kubernetes/get_auth_backend_role.py +70 -69
- pulumi_vault/kubernetes/get_service_account_token.py +38 -37
- pulumi_vault/kubernetes/secret_backend.py +316 -315
- pulumi_vault/kubernetes/secret_backend_role.py +197 -196
- pulumi_vault/kv/__init__.py +1 -0
- pulumi_vault/kv/_inputs.py +21 -20
- pulumi_vault/kv/get_secret.py +17 -16
- pulumi_vault/kv/get_secret_subkeys_v2.py +30 -29
- pulumi_vault/kv/get_secret_v2.py +29 -28
- pulumi_vault/kv/get_secrets_list.py +13 -12
- pulumi_vault/kv/get_secrets_list_v2.py +19 -18
- pulumi_vault/kv/outputs.py +13 -12
- pulumi_vault/kv/secret.py +50 -49
- pulumi_vault/kv/secret_backend_v2.py +71 -70
- pulumi_vault/kv/secret_v2.py +134 -133
- pulumi_vault/ldap/__init__.py +1 -0
- pulumi_vault/ldap/auth_backend.py +588 -587
- pulumi_vault/ldap/auth_backend_group.py +57 -56
- pulumi_vault/ldap/auth_backend_user.py +71 -70
- pulumi_vault/ldap/get_dynamic_credentials.py +17 -16
- pulumi_vault/ldap/get_static_credentials.py +18 -17
- pulumi_vault/ldap/secret_backend.py +554 -553
- pulumi_vault/ldap/secret_backend_dynamic_role.py +127 -126
- pulumi_vault/ldap/secret_backend_library_set.py +99 -98
- pulumi_vault/ldap/secret_backend_static_role.py +99 -98
- pulumi_vault/managed/__init__.py +1 -0
- pulumi_vault/managed/_inputs.py +229 -228
- pulumi_vault/managed/keys.py +15 -14
- pulumi_vault/managed/outputs.py +139 -138
- pulumi_vault/mfa_duo.py +113 -112
- pulumi_vault/mfa_okta.py +113 -112
- pulumi_vault/mfa_pingid.py +120 -119
- pulumi_vault/mfa_totp.py +127 -126
- pulumi_vault/mongodbatlas/__init__.py +1 -0
- pulumi_vault/mongodbatlas/secret_backend.py +64 -63
- pulumi_vault/mongodbatlas/secret_role.py +155 -154
- pulumi_vault/mount.py +274 -273
- pulumi_vault/namespace.py +64 -63
- pulumi_vault/nomad_secret_backend.py +211 -210
- pulumi_vault/nomad_secret_role.py +85 -84
- pulumi_vault/okta/__init__.py +1 -0
- pulumi_vault/okta/_inputs.py +26 -25
- pulumi_vault/okta/auth_backend.py +274 -273
- pulumi_vault/okta/auth_backend_group.py +57 -56
- pulumi_vault/okta/auth_backend_user.py +71 -70
- pulumi_vault/okta/outputs.py +16 -15
- pulumi_vault/outputs.py +56 -55
- pulumi_vault/password_policy.py +43 -42
- pulumi_vault/pkisecret/__init__.py +1 -0
- pulumi_vault/pkisecret/_inputs.py +31 -30
- pulumi_vault/pkisecret/backend_acme_eab.py +92 -91
- pulumi_vault/pkisecret/backend_config_acme.py +141 -140
- pulumi_vault/pkisecret/backend_config_auto_tidy.py +323 -322
- pulumi_vault/pkisecret/backend_config_cluster.py +57 -56
- pulumi_vault/pkisecret/backend_config_cmpv2.py +106 -105
- pulumi_vault/pkisecret/backend_config_est.py +120 -119
- pulumi_vault/pkisecret/get_backend_cert_metadata.py +22 -21
- pulumi_vault/pkisecret/get_backend_config_cmpv2.py +22 -21
- pulumi_vault/pkisecret/get_backend_config_est.py +19 -18
- pulumi_vault/pkisecret/get_backend_issuer.py +45 -44
- pulumi_vault/pkisecret/get_backend_issuers.py +15 -14
- pulumi_vault/pkisecret/get_backend_key.py +20 -19
- pulumi_vault/pkisecret/get_backend_keys.py +15 -14
- pulumi_vault/pkisecret/outputs.py +28 -27
- pulumi_vault/pkisecret/secret_backend_cert.py +337 -336
- pulumi_vault/pkisecret/secret_backend_config_ca.py +43 -42
- pulumi_vault/pkisecret/secret_backend_config_issuers.py +57 -56
- pulumi_vault/pkisecret/secret_backend_config_urls.py +85 -84
- pulumi_vault/pkisecret/secret_backend_crl_config.py +197 -196
- pulumi_vault/pkisecret/secret_backend_intermediate_cert_request.py +421 -420
- pulumi_vault/pkisecret/secret_backend_intermediate_set_signed.py +57 -56
- pulumi_vault/pkisecret/secret_backend_issuer.py +232 -231
- pulumi_vault/pkisecret/secret_backend_key.py +120 -119
- pulumi_vault/pkisecret/secret_backend_role.py +715 -714
- pulumi_vault/pkisecret/secret_backend_root_cert.py +554 -553
- pulumi_vault/pkisecret/secret_backend_root_sign_intermediate.py +526 -525
- pulumi_vault/pkisecret/secret_backend_sign.py +281 -280
- pulumi_vault/plugin.py +127 -126
- pulumi_vault/plugin_pinned_version.py +43 -42
- pulumi_vault/policy.py +43 -42
- pulumi_vault/provider.py +120 -119
- pulumi_vault/pulumi-plugin.json +1 -1
- pulumi_vault/quota_lease_count.py +85 -84
- pulumi_vault/quota_rate_limit.py +113 -112
- pulumi_vault/rabbitmq/__init__.py +1 -0
- pulumi_vault/rabbitmq/_inputs.py +41 -40
- pulumi_vault/rabbitmq/outputs.py +25 -24
- pulumi_vault/rabbitmq/secret_backend.py +169 -168
- pulumi_vault/rabbitmq/secret_backend_role.py +57 -56
- pulumi_vault/raft_autopilot.py +113 -112
- pulumi_vault/raft_snapshot_agent_config.py +393 -392
- pulumi_vault/rgp_policy.py +57 -56
- pulumi_vault/saml/__init__.py +1 -0
- pulumi_vault/saml/auth_backend.py +155 -154
- pulumi_vault/saml/auth_backend_role.py +239 -238
- pulumi_vault/secrets/__init__.py +1 -0
- pulumi_vault/secrets/_inputs.py +16 -15
- pulumi_vault/secrets/outputs.py +10 -9
- pulumi_vault/secrets/sync_association.py +71 -70
- pulumi_vault/secrets/sync_aws_destination.py +148 -147
- pulumi_vault/secrets/sync_azure_destination.py +148 -147
- pulumi_vault/secrets/sync_config.py +43 -42
- pulumi_vault/secrets/sync_gcp_destination.py +106 -105
- pulumi_vault/secrets/sync_gh_destination.py +134 -133
- pulumi_vault/secrets/sync_github_apps.py +64 -63
- pulumi_vault/secrets/sync_vercel_destination.py +120 -119
- pulumi_vault/ssh/__init__.py +1 -0
- pulumi_vault/ssh/_inputs.py +11 -10
- pulumi_vault/ssh/get_secret_backend_sign.py +52 -51
- pulumi_vault/ssh/outputs.py +7 -6
- pulumi_vault/ssh/secret_backend_ca.py +99 -98
- pulumi_vault/ssh/secret_backend_role.py +365 -364
- pulumi_vault/terraformcloud/__init__.py +1 -0
- pulumi_vault/terraformcloud/secret_backend.py +111 -110
- pulumi_vault/terraformcloud/secret_creds.py +74 -73
- pulumi_vault/terraformcloud/secret_role.py +93 -92
- pulumi_vault/token.py +246 -245
- pulumi_vault/tokenauth/__init__.py +1 -0
- pulumi_vault/tokenauth/auth_backend_role.py +267 -266
- pulumi_vault/transform/__init__.py +1 -0
- pulumi_vault/transform/alphabet.py +57 -56
- pulumi_vault/transform/get_decode.py +47 -46
- pulumi_vault/transform/get_encode.py +47 -46
- pulumi_vault/transform/role.py +57 -56
- pulumi_vault/transform/template.py +113 -112
- pulumi_vault/transform/transformation.py +141 -140
- pulumi_vault/transit/__init__.py +1 -0
- pulumi_vault/transit/get_decrypt.py +18 -17
- pulumi_vault/transit/get_encrypt.py +21 -20
- pulumi_vault/transit/get_sign.py +54 -53
- pulumi_vault/transit/get_verify.py +60 -59
- pulumi_vault/transit/secret_backend_key.py +274 -273
- pulumi_vault/transit/secret_cache_config.py +43 -42
- {pulumi_vault-6.7.0a1743576047.dist-info → pulumi_vault-6.7.0a1744267302.dist-info}/METADATA +1 -1
- pulumi_vault-6.7.0a1744267302.dist-info/RECORD +265 -0
- pulumi_vault-6.7.0a1743576047.dist-info/RECORD +0 -265
- {pulumi_vault-6.7.0a1743576047.dist-info → pulumi_vault-6.7.0a1744267302.dist-info}/WHEEL +0 -0
- {pulumi_vault-6.7.0a1743576047.dist-info → pulumi_vault-6.7.0a1744267302.dist-info}/top_level.txt +0 -0
@@ -2,6 +2,7 @@
|
|
2
2
|
# *** WARNING: this file was generated by the Pulumi Terraform Bridge (tfgen) Tool. ***
|
3
3
|
# *** Do not edit by hand unless you're certain you know what you are doing! ***
|
4
4
|
|
5
|
+
import builtins
|
5
6
|
import copy
|
6
7
|
import warnings
|
7
8
|
import sys
|
@@ -19,31 +20,31 @@ __all__ = ['OidcClientArgs', 'OidcClient']
|
|
19
20
|
@pulumi.input_type
|
20
21
|
class OidcClientArgs:
|
21
22
|
def __init__(__self__, *,
|
22
|
-
access_token_ttl: Optional[pulumi.Input[int]] = None,
|
23
|
-
assignments: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
|
24
|
-
client_type: Optional[pulumi.Input[str]] = None,
|
25
|
-
id_token_ttl: Optional[pulumi.Input[int]] = None,
|
26
|
-
key: Optional[pulumi.Input[str]] = None,
|
27
|
-
name: Optional[pulumi.Input[str]] = None,
|
28
|
-
namespace: Optional[pulumi.Input[str]] = None,
|
29
|
-
redirect_uris: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None):
|
23
|
+
access_token_ttl: Optional[pulumi.Input[builtins.int]] = None,
|
24
|
+
assignments: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
|
25
|
+
client_type: Optional[pulumi.Input[builtins.str]] = None,
|
26
|
+
id_token_ttl: Optional[pulumi.Input[builtins.int]] = None,
|
27
|
+
key: Optional[pulumi.Input[builtins.str]] = None,
|
28
|
+
name: Optional[pulumi.Input[builtins.str]] = None,
|
29
|
+
namespace: Optional[pulumi.Input[builtins.str]] = None,
|
30
|
+
redirect_uris: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None):
|
30
31
|
"""
|
31
32
|
The set of arguments for constructing a OidcClient resource.
|
32
|
-
:param pulumi.Input[int] access_token_ttl: The time-to-live for access tokens obtained by the client.
|
33
|
-
:param pulumi.Input[Sequence[pulumi.Input[str]]] assignments: A list of assignment resources associated with the client.
|
34
|
-
:param pulumi.Input[str] client_type: The client type based on its ability to maintain confidentiality of credentials.
|
33
|
+
:param pulumi.Input[builtins.int] access_token_ttl: The time-to-live for access tokens obtained by the client.
|
34
|
+
:param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] assignments: A list of assignment resources associated with the client.
|
35
|
+
:param pulumi.Input[builtins.str] client_type: The client type based on its ability to maintain confidentiality of credentials.
|
35
36
|
The following client types are supported: `confidential`, `public`. Defaults to `confidential`.
|
36
|
-
:param pulumi.Input[int] id_token_ttl: The time-to-live for ID tokens obtained by the client.
|
37
|
+
:param pulumi.Input[builtins.int] id_token_ttl: The time-to-live for ID tokens obtained by the client.
|
37
38
|
The value should be less than the `verification_ttl` on the key.
|
38
|
-
:param pulumi.Input[str] key: A reference to a named key resource in Vault.
|
39
|
+
:param pulumi.Input[builtins.str] key: A reference to a named key resource in Vault.
|
39
40
|
This cannot be modified after creation. If not provided, the `default`
|
40
41
|
key is used.
|
41
|
-
:param pulumi.Input[str] name: The name of the client.
|
42
|
-
:param pulumi.Input[str] namespace: The namespace to provision the resource in.
|
42
|
+
:param pulumi.Input[builtins.str] name: The name of the client.
|
43
|
+
:param pulumi.Input[builtins.str] namespace: The namespace to provision the resource in.
|
43
44
|
The value should not contain leading or trailing forward slashes.
|
44
45
|
The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault/index.html#namespace).
|
45
46
|
*Available only for Vault Enterprise*.
|
46
|
-
:param pulumi.Input[Sequence[pulumi.Input[str]]] redirect_uris: Redirection URI values used by the client.
|
47
|
+
:param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] redirect_uris: Redirection URI values used by the client.
|
47
48
|
One of these values must exactly match the `redirect_uri` parameter value
|
48
49
|
used in each authentication request.
|
49
50
|
"""
|
@@ -66,31 +67,31 @@ class OidcClientArgs:
|
|
66
67
|
|
67
68
|
@property
|
68
69
|
@pulumi.getter(name="accessTokenTtl")
|
69
|
-
def access_token_ttl(self) -> Optional[pulumi.Input[int]]:
|
70
|
+
def access_token_ttl(self) -> Optional[pulumi.Input[builtins.int]]:
|
70
71
|
"""
|
71
72
|
The time-to-live for access tokens obtained by the client.
|
72
73
|
"""
|
73
74
|
return pulumi.get(self, "access_token_ttl")
|
74
75
|
|
75
76
|
@access_token_ttl.setter
|
76
|
-
def access_token_ttl(self, value: Optional[pulumi.Input[int]]):
|
77
|
+
def access_token_ttl(self, value: Optional[pulumi.Input[builtins.int]]):
|
77
78
|
pulumi.set(self, "access_token_ttl", value)
|
78
79
|
|
79
80
|
@property
|
80
81
|
@pulumi.getter
|
81
|
-
def assignments(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]:
|
82
|
+
def assignments(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]:
|
82
83
|
"""
|
83
84
|
A list of assignment resources associated with the client.
|
84
85
|
"""
|
85
86
|
return pulumi.get(self, "assignments")
|
86
87
|
|
87
88
|
@assignments.setter
|
88
|
-
def assignments(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]):
|
89
|
+
def assignments(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]):
|
89
90
|
pulumi.set(self, "assignments", value)
|
90
91
|
|
91
92
|
@property
|
92
93
|
@pulumi.getter(name="clientType")
|
93
|
-
def client_type(self) -> Optional[pulumi.Input[str]]:
|
94
|
+
def client_type(self) -> Optional[pulumi.Input[builtins.str]]:
|
94
95
|
"""
|
95
96
|
The client type based on its ability to maintain confidentiality of credentials.
|
96
97
|
The following client types are supported: `confidential`, `public`. Defaults to `confidential`.
|
@@ -98,12 +99,12 @@ class OidcClientArgs:
|
|
98
99
|
return pulumi.get(self, "client_type")
|
99
100
|
|
100
101
|
@client_type.setter
|
101
|
-
def client_type(self, value: Optional[pulumi.Input[str]]):
|
102
|
+
def client_type(self, value: Optional[pulumi.Input[builtins.str]]):
|
102
103
|
pulumi.set(self, "client_type", value)
|
103
104
|
|
104
105
|
@property
|
105
106
|
@pulumi.getter(name="idTokenTtl")
|
106
|
-
def id_token_ttl(self) -> Optional[pulumi.Input[int]]:
|
107
|
+
def id_token_ttl(self) -> Optional[pulumi.Input[builtins.int]]:
|
107
108
|
"""
|
108
109
|
The time-to-live for ID tokens obtained by the client.
|
109
110
|
The value should be less than the `verification_ttl` on the key.
|
@@ -111,12 +112,12 @@ class OidcClientArgs:
|
|
111
112
|
return pulumi.get(self, "id_token_ttl")
|
112
113
|
|
113
114
|
@id_token_ttl.setter
|
114
|
-
def id_token_ttl(self, value: Optional[pulumi.Input[int]]):
|
115
|
+
def id_token_ttl(self, value: Optional[pulumi.Input[builtins.int]]):
|
115
116
|
pulumi.set(self, "id_token_ttl", value)
|
116
117
|
|
117
118
|
@property
|
118
119
|
@pulumi.getter
|
119
|
-
def key(self) -> Optional[pulumi.Input[str]]:
|
120
|
+
def key(self) -> Optional[pulumi.Input[builtins.str]]:
|
120
121
|
"""
|
121
122
|
A reference to a named key resource in Vault.
|
122
123
|
This cannot be modified after creation. If not provided, the `default`
|
@@ -125,24 +126,24 @@ class OidcClientArgs:
|
|
125
126
|
return pulumi.get(self, "key")
|
126
127
|
|
127
128
|
@key.setter
|
128
|
-
def key(self, value: Optional[pulumi.Input[str]]):
|
129
|
+
def key(self, value: Optional[pulumi.Input[builtins.str]]):
|
129
130
|
pulumi.set(self, "key", value)
|
130
131
|
|
131
132
|
@property
|
132
133
|
@pulumi.getter
|
133
|
-
def name(self) -> Optional[pulumi.Input[str]]:
|
134
|
+
def name(self) -> Optional[pulumi.Input[builtins.str]]:
|
134
135
|
"""
|
135
136
|
The name of the client.
|
136
137
|
"""
|
137
138
|
return pulumi.get(self, "name")
|
138
139
|
|
139
140
|
@name.setter
|
140
|
-
def name(self, value: Optional[pulumi.Input[str]]):
|
141
|
+
def name(self, value: Optional[pulumi.Input[builtins.str]]):
|
141
142
|
pulumi.set(self, "name", value)
|
142
143
|
|
143
144
|
@property
|
144
145
|
@pulumi.getter
|
145
|
-
def namespace(self) -> Optional[pulumi.Input[str]]:
|
146
|
+
def namespace(self) -> Optional[pulumi.Input[builtins.str]]:
|
146
147
|
"""
|
147
148
|
The namespace to provision the resource in.
|
148
149
|
The value should not contain leading or trailing forward slashes.
|
@@ -152,12 +153,12 @@ class OidcClientArgs:
|
|
152
153
|
return pulumi.get(self, "namespace")
|
153
154
|
|
154
155
|
@namespace.setter
|
155
|
-
def namespace(self, value: Optional[pulumi.Input[str]]):
|
156
|
+
def namespace(self, value: Optional[pulumi.Input[builtins.str]]):
|
156
157
|
pulumi.set(self, "namespace", value)
|
157
158
|
|
158
159
|
@property
|
159
160
|
@pulumi.getter(name="redirectUris")
|
160
|
-
def redirect_uris(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]:
|
161
|
+
def redirect_uris(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]:
|
161
162
|
"""
|
162
163
|
Redirection URI values used by the client.
|
163
164
|
One of these values must exactly match the `redirect_uri` parameter value
|
@@ -166,43 +167,43 @@ class OidcClientArgs:
|
|
166
167
|
return pulumi.get(self, "redirect_uris")
|
167
168
|
|
168
169
|
@redirect_uris.setter
|
169
|
-
def redirect_uris(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]):
|
170
|
+
def redirect_uris(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]):
|
170
171
|
pulumi.set(self, "redirect_uris", value)
|
171
172
|
|
172
173
|
|
173
174
|
@pulumi.input_type
|
174
175
|
class _OidcClientState:
|
175
176
|
def __init__(__self__, *,
|
176
|
-
access_token_ttl: Optional[pulumi.Input[int]] = None,
|
177
|
-
assignments: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
|
178
|
-
client_id: Optional[pulumi.Input[str]] = None,
|
179
|
-
client_secret: Optional[pulumi.Input[str]] = None,
|
180
|
-
client_type: Optional[pulumi.Input[str]] = None,
|
181
|
-
id_token_ttl: Optional[pulumi.Input[int]] = None,
|
182
|
-
key: Optional[pulumi.Input[str]] = None,
|
183
|
-
name: Optional[pulumi.Input[str]] = None,
|
184
|
-
namespace: Optional[pulumi.Input[str]] = None,
|
185
|
-
redirect_uris: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None):
|
177
|
+
access_token_ttl: Optional[pulumi.Input[builtins.int]] = None,
|
178
|
+
assignments: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
|
179
|
+
client_id: Optional[pulumi.Input[builtins.str]] = None,
|
180
|
+
client_secret: Optional[pulumi.Input[builtins.str]] = None,
|
181
|
+
client_type: Optional[pulumi.Input[builtins.str]] = None,
|
182
|
+
id_token_ttl: Optional[pulumi.Input[builtins.int]] = None,
|
183
|
+
key: Optional[pulumi.Input[builtins.str]] = None,
|
184
|
+
name: Optional[pulumi.Input[builtins.str]] = None,
|
185
|
+
namespace: Optional[pulumi.Input[builtins.str]] = None,
|
186
|
+
redirect_uris: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None):
|
186
187
|
"""
|
187
188
|
Input properties used for looking up and filtering OidcClient resources.
|
188
|
-
:param pulumi.Input[int] access_token_ttl: The time-to-live for access tokens obtained by the client.
|
189
|
-
:param pulumi.Input[Sequence[pulumi.Input[str]]] assignments: A list of assignment resources associated with the client.
|
190
|
-
:param pulumi.Input[str] client_id: The Client ID returned by Vault.
|
191
|
-
:param pulumi.Input[str] client_secret: The Client Secret Key returned by Vault.
|
189
|
+
:param pulumi.Input[builtins.int] access_token_ttl: The time-to-live for access tokens obtained by the client.
|
190
|
+
:param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] assignments: A list of assignment resources associated with the client.
|
191
|
+
:param pulumi.Input[builtins.str] client_id: The Client ID returned by Vault.
|
192
|
+
:param pulumi.Input[builtins.str] client_secret: The Client Secret Key returned by Vault.
|
192
193
|
For public OpenID Clients `client_secret` is set to an empty string `""`
|
193
|
-
:param pulumi.Input[str] client_type: The client type based on its ability to maintain confidentiality of credentials.
|
194
|
+
:param pulumi.Input[builtins.str] client_type: The client type based on its ability to maintain confidentiality of credentials.
|
194
195
|
The following client types are supported: `confidential`, `public`. Defaults to `confidential`.
|
195
|
-
:param pulumi.Input[int] id_token_ttl: The time-to-live for ID tokens obtained by the client.
|
196
|
+
:param pulumi.Input[builtins.int] id_token_ttl: The time-to-live for ID tokens obtained by the client.
|
196
197
|
The value should be less than the `verification_ttl` on the key.
|
197
|
-
:param pulumi.Input[str] key: A reference to a named key resource in Vault.
|
198
|
+
:param pulumi.Input[builtins.str] key: A reference to a named key resource in Vault.
|
198
199
|
This cannot be modified after creation. If not provided, the `default`
|
199
200
|
key is used.
|
200
|
-
:param pulumi.Input[str] name: The name of the client.
|
201
|
-
:param pulumi.Input[str] namespace: The namespace to provision the resource in.
|
201
|
+
:param pulumi.Input[builtins.str] name: The name of the client.
|
202
|
+
:param pulumi.Input[builtins.str] namespace: The namespace to provision the resource in.
|
202
203
|
The value should not contain leading or trailing forward slashes.
|
203
204
|
The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault/index.html#namespace).
|
204
205
|
*Available only for Vault Enterprise*.
|
205
|
-
:param pulumi.Input[Sequence[pulumi.Input[str]]] redirect_uris: Redirection URI values used by the client.
|
206
|
+
:param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] redirect_uris: Redirection URI values used by the client.
|
206
207
|
One of these values must exactly match the `redirect_uri` parameter value
|
207
208
|
used in each authentication request.
|
208
209
|
"""
|
@@ -229,43 +230,43 @@ class _OidcClientState:
|
|
229
230
|
|
230
231
|
@property
|
231
232
|
@pulumi.getter(name="accessTokenTtl")
|
232
|
-
def access_token_ttl(self) -> Optional[pulumi.Input[int]]:
|
233
|
+
def access_token_ttl(self) -> Optional[pulumi.Input[builtins.int]]:
|
233
234
|
"""
|
234
235
|
The time-to-live for access tokens obtained by the client.
|
235
236
|
"""
|
236
237
|
return pulumi.get(self, "access_token_ttl")
|
237
238
|
|
238
239
|
@access_token_ttl.setter
|
239
|
-
def access_token_ttl(self, value: Optional[pulumi.Input[int]]):
|
240
|
+
def access_token_ttl(self, value: Optional[pulumi.Input[builtins.int]]):
|
240
241
|
pulumi.set(self, "access_token_ttl", value)
|
241
242
|
|
242
243
|
@property
|
243
244
|
@pulumi.getter
|
244
|
-
def assignments(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]:
|
245
|
+
def assignments(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]:
|
245
246
|
"""
|
246
247
|
A list of assignment resources associated with the client.
|
247
248
|
"""
|
248
249
|
return pulumi.get(self, "assignments")
|
249
250
|
|
250
251
|
@assignments.setter
|
251
|
-
def assignments(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]):
|
252
|
+
def assignments(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]):
|
252
253
|
pulumi.set(self, "assignments", value)
|
253
254
|
|
254
255
|
@property
|
255
256
|
@pulumi.getter(name="clientId")
|
256
|
-
def client_id(self) -> Optional[pulumi.Input[str]]:
|
257
|
+
def client_id(self) -> Optional[pulumi.Input[builtins.str]]:
|
257
258
|
"""
|
258
259
|
The Client ID returned by Vault.
|
259
260
|
"""
|
260
261
|
return pulumi.get(self, "client_id")
|
261
262
|
|
262
263
|
@client_id.setter
|
263
|
-
def client_id(self, value: Optional[pulumi.Input[str]]):
|
264
|
+
def client_id(self, value: Optional[pulumi.Input[builtins.str]]):
|
264
265
|
pulumi.set(self, "client_id", value)
|
265
266
|
|
266
267
|
@property
|
267
268
|
@pulumi.getter(name="clientSecret")
|
268
|
-
def client_secret(self) -> Optional[pulumi.Input[str]]:
|
269
|
+
def client_secret(self) -> Optional[pulumi.Input[builtins.str]]:
|
269
270
|
"""
|
270
271
|
The Client Secret Key returned by Vault.
|
271
272
|
For public OpenID Clients `client_secret` is set to an empty string `""`
|
@@ -273,12 +274,12 @@ class _OidcClientState:
|
|
273
274
|
return pulumi.get(self, "client_secret")
|
274
275
|
|
275
276
|
@client_secret.setter
|
276
|
-
def client_secret(self, value: Optional[pulumi.Input[str]]):
|
277
|
+
def client_secret(self, value: Optional[pulumi.Input[builtins.str]]):
|
277
278
|
pulumi.set(self, "client_secret", value)
|
278
279
|
|
279
280
|
@property
|
280
281
|
@pulumi.getter(name="clientType")
|
281
|
-
def client_type(self) -> Optional[pulumi.Input[str]]:
|
282
|
+
def client_type(self) -> Optional[pulumi.Input[builtins.str]]:
|
282
283
|
"""
|
283
284
|
The client type based on its ability to maintain confidentiality of credentials.
|
284
285
|
The following client types are supported: `confidential`, `public`. Defaults to `confidential`.
|
@@ -286,12 +287,12 @@ class _OidcClientState:
|
|
286
287
|
return pulumi.get(self, "client_type")
|
287
288
|
|
288
289
|
@client_type.setter
|
289
|
-
def client_type(self, value: Optional[pulumi.Input[str]]):
|
290
|
+
def client_type(self, value: Optional[pulumi.Input[builtins.str]]):
|
290
291
|
pulumi.set(self, "client_type", value)
|
291
292
|
|
292
293
|
@property
|
293
294
|
@pulumi.getter(name="idTokenTtl")
|
294
|
-
def id_token_ttl(self) -> Optional[pulumi.Input[int]]:
|
295
|
+
def id_token_ttl(self) -> Optional[pulumi.Input[builtins.int]]:
|
295
296
|
"""
|
296
297
|
The time-to-live for ID tokens obtained by the client.
|
297
298
|
The value should be less than the `verification_ttl` on the key.
|
@@ -299,12 +300,12 @@ class _OidcClientState:
|
|
299
300
|
return pulumi.get(self, "id_token_ttl")
|
300
301
|
|
301
302
|
@id_token_ttl.setter
|
302
|
-
def id_token_ttl(self, value: Optional[pulumi.Input[int]]):
|
303
|
+
def id_token_ttl(self, value: Optional[pulumi.Input[builtins.int]]):
|
303
304
|
pulumi.set(self, "id_token_ttl", value)
|
304
305
|
|
305
306
|
@property
|
306
307
|
@pulumi.getter
|
307
|
-
def key(self) -> Optional[pulumi.Input[str]]:
|
308
|
+
def key(self) -> Optional[pulumi.Input[builtins.str]]:
|
308
309
|
"""
|
309
310
|
A reference to a named key resource in Vault.
|
310
311
|
This cannot be modified after creation. If not provided, the `default`
|
@@ -313,24 +314,24 @@ class _OidcClientState:
|
|
313
314
|
return pulumi.get(self, "key")
|
314
315
|
|
315
316
|
@key.setter
|
316
|
-
def key(self, value: Optional[pulumi.Input[str]]):
|
317
|
+
def key(self, value: Optional[pulumi.Input[builtins.str]]):
|
317
318
|
pulumi.set(self, "key", value)
|
318
319
|
|
319
320
|
@property
|
320
321
|
@pulumi.getter
|
321
|
-
def name(self) -> Optional[pulumi.Input[str]]:
|
322
|
+
def name(self) -> Optional[pulumi.Input[builtins.str]]:
|
322
323
|
"""
|
323
324
|
The name of the client.
|
324
325
|
"""
|
325
326
|
return pulumi.get(self, "name")
|
326
327
|
|
327
328
|
@name.setter
|
328
|
-
def name(self, value: Optional[pulumi.Input[str]]):
|
329
|
+
def name(self, value: Optional[pulumi.Input[builtins.str]]):
|
329
330
|
pulumi.set(self, "name", value)
|
330
331
|
|
331
332
|
@property
|
332
333
|
@pulumi.getter
|
333
|
-
def namespace(self) -> Optional[pulumi.Input[str]]:
|
334
|
+
def namespace(self) -> Optional[pulumi.Input[builtins.str]]:
|
334
335
|
"""
|
335
336
|
The namespace to provision the resource in.
|
336
337
|
The value should not contain leading or trailing forward slashes.
|
@@ -340,12 +341,12 @@ class _OidcClientState:
|
|
340
341
|
return pulumi.get(self, "namespace")
|
341
342
|
|
342
343
|
@namespace.setter
|
343
|
-
def namespace(self, value: Optional[pulumi.Input[str]]):
|
344
|
+
def namespace(self, value: Optional[pulumi.Input[builtins.str]]):
|
344
345
|
pulumi.set(self, "namespace", value)
|
345
346
|
|
346
347
|
@property
|
347
348
|
@pulumi.getter(name="redirectUris")
|
348
|
-
def redirect_uris(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]:
|
349
|
+
def redirect_uris(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]:
|
349
350
|
"""
|
350
351
|
Redirection URI values used by the client.
|
351
352
|
One of these values must exactly match the `redirect_uri` parameter value
|
@@ -354,7 +355,7 @@ class _OidcClientState:
|
|
354
355
|
return pulumi.get(self, "redirect_uris")
|
355
356
|
|
356
357
|
@redirect_uris.setter
|
357
|
-
def redirect_uris(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]):
|
358
|
+
def redirect_uris(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]):
|
358
359
|
pulumi.set(self, "redirect_uris", value)
|
359
360
|
|
360
361
|
|
@@ -363,14 +364,14 @@ class OidcClient(pulumi.CustomResource):
|
|
363
364
|
def __init__(__self__,
|
364
365
|
resource_name: str,
|
365
366
|
opts: Optional[pulumi.ResourceOptions] = None,
|
366
|
-
access_token_ttl: Optional[pulumi.Input[int]] = None,
|
367
|
-
assignments: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
|
368
|
-
client_type: Optional[pulumi.Input[str]] = None,
|
369
|
-
id_token_ttl: Optional[pulumi.Input[int]] = None,
|
370
|
-
key: Optional[pulumi.Input[str]] = None,
|
371
|
-
name: Optional[pulumi.Input[str]] = None,
|
372
|
-
namespace: Optional[pulumi.Input[str]] = None,
|
373
|
-
redirect_uris: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
|
367
|
+
access_token_ttl: Optional[pulumi.Input[builtins.int]] = None,
|
368
|
+
assignments: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
|
369
|
+
client_type: Optional[pulumi.Input[builtins.str]] = None,
|
370
|
+
id_token_ttl: Optional[pulumi.Input[builtins.int]] = None,
|
371
|
+
key: Optional[pulumi.Input[builtins.str]] = None,
|
372
|
+
name: Optional[pulumi.Input[builtins.str]] = None,
|
373
|
+
namespace: Optional[pulumi.Input[builtins.str]] = None,
|
374
|
+
redirect_uris: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
|
374
375
|
__props__=None):
|
375
376
|
"""
|
376
377
|
Manages OIDC Clients in a Vault server. See the [Vault documentation](https://www.vaultproject.io/api-docs/secret/identity/oidc-provider#create-or-update-an-assignment)
|
@@ -408,21 +409,21 @@ class OidcClient(pulumi.CustomResource):
|
|
408
409
|
|
409
410
|
:param str resource_name: The name of the resource.
|
410
411
|
:param pulumi.ResourceOptions opts: Options for the resource.
|
411
|
-
:param pulumi.Input[int] access_token_ttl: The time-to-live for access tokens obtained by the client.
|
412
|
-
:param pulumi.Input[Sequence[pulumi.Input[str]]] assignments: A list of assignment resources associated with the client.
|
413
|
-
:param pulumi.Input[str] client_type: The client type based on its ability to maintain confidentiality of credentials.
|
412
|
+
:param pulumi.Input[builtins.int] access_token_ttl: The time-to-live for access tokens obtained by the client.
|
413
|
+
:param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] assignments: A list of assignment resources associated with the client.
|
414
|
+
:param pulumi.Input[builtins.str] client_type: The client type based on its ability to maintain confidentiality of credentials.
|
414
415
|
The following client types are supported: `confidential`, `public`. Defaults to `confidential`.
|
415
|
-
:param pulumi.Input[int] id_token_ttl: The time-to-live for ID tokens obtained by the client.
|
416
|
+
:param pulumi.Input[builtins.int] id_token_ttl: The time-to-live for ID tokens obtained by the client.
|
416
417
|
The value should be less than the `verification_ttl` on the key.
|
417
|
-
:param pulumi.Input[str] key: A reference to a named key resource in Vault.
|
418
|
+
:param pulumi.Input[builtins.str] key: A reference to a named key resource in Vault.
|
418
419
|
This cannot be modified after creation. If not provided, the `default`
|
419
420
|
key is used.
|
420
|
-
:param pulumi.Input[str] name: The name of the client.
|
421
|
-
:param pulumi.Input[str] namespace: The namespace to provision the resource in.
|
421
|
+
:param pulumi.Input[builtins.str] name: The name of the client.
|
422
|
+
:param pulumi.Input[builtins.str] namespace: The namespace to provision the resource in.
|
422
423
|
The value should not contain leading or trailing forward slashes.
|
423
424
|
The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault/index.html#namespace).
|
424
425
|
*Available only for Vault Enterprise*.
|
425
|
-
:param pulumi.Input[Sequence[pulumi.Input[str]]] redirect_uris: Redirection URI values used by the client.
|
426
|
+
:param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] redirect_uris: Redirection URI values used by the client.
|
426
427
|
One of these values must exactly match the `redirect_uri` parameter value
|
427
428
|
used in each authentication request.
|
428
429
|
"""
|
@@ -481,14 +482,14 @@ class OidcClient(pulumi.CustomResource):
|
|
481
482
|
def _internal_init(__self__,
|
482
483
|
resource_name: str,
|
483
484
|
opts: Optional[pulumi.ResourceOptions] = None,
|
484
|
-
access_token_ttl: Optional[pulumi.Input[int]] = None,
|
485
|
-
assignments: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
|
486
|
-
client_type: Optional[pulumi.Input[str]] = None,
|
487
|
-
id_token_ttl: Optional[pulumi.Input[int]] = None,
|
488
|
-
key: Optional[pulumi.Input[str]] = None,
|
489
|
-
name: Optional[pulumi.Input[str]] = None,
|
490
|
-
namespace: Optional[pulumi.Input[str]] = None,
|
491
|
-
redirect_uris: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
|
485
|
+
access_token_ttl: Optional[pulumi.Input[builtins.int]] = None,
|
486
|
+
assignments: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
|
487
|
+
client_type: Optional[pulumi.Input[builtins.str]] = None,
|
488
|
+
id_token_ttl: Optional[pulumi.Input[builtins.int]] = None,
|
489
|
+
key: Optional[pulumi.Input[builtins.str]] = None,
|
490
|
+
name: Optional[pulumi.Input[builtins.str]] = None,
|
491
|
+
namespace: Optional[pulumi.Input[builtins.str]] = None,
|
492
|
+
redirect_uris: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
|
492
493
|
__props__=None):
|
493
494
|
opts = pulumi.ResourceOptions.merge(_utilities.get_resource_opts_defaults(), opts)
|
494
495
|
if not isinstance(opts, pulumi.ResourceOptions):
|
@@ -520,16 +521,16 @@ class OidcClient(pulumi.CustomResource):
|
|
520
521
|
def get(resource_name: str,
|
521
522
|
id: pulumi.Input[str],
|
522
523
|
opts: Optional[pulumi.ResourceOptions] = None,
|
523
|
-
access_token_ttl: Optional[pulumi.Input[int]] = None,
|
524
|
-
assignments: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
|
525
|
-
client_id: Optional[pulumi.Input[str]] = None,
|
526
|
-
client_secret: Optional[pulumi.Input[str]] = None,
|
527
|
-
client_type: Optional[pulumi.Input[str]] = None,
|
528
|
-
id_token_ttl: Optional[pulumi.Input[int]] = None,
|
529
|
-
key: Optional[pulumi.Input[str]] = None,
|
530
|
-
name: Optional[pulumi.Input[str]] = None,
|
531
|
-
namespace: Optional[pulumi.Input[str]] = None,
|
532
|
-
redirect_uris: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None) -> 'OidcClient':
|
524
|
+
access_token_ttl: Optional[pulumi.Input[builtins.int]] = None,
|
525
|
+
assignments: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
|
526
|
+
client_id: Optional[pulumi.Input[builtins.str]] = None,
|
527
|
+
client_secret: Optional[pulumi.Input[builtins.str]] = None,
|
528
|
+
client_type: Optional[pulumi.Input[builtins.str]] = None,
|
529
|
+
id_token_ttl: Optional[pulumi.Input[builtins.int]] = None,
|
530
|
+
key: Optional[pulumi.Input[builtins.str]] = None,
|
531
|
+
name: Optional[pulumi.Input[builtins.str]] = None,
|
532
|
+
namespace: Optional[pulumi.Input[builtins.str]] = None,
|
533
|
+
redirect_uris: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None) -> 'OidcClient':
|
533
534
|
"""
|
534
535
|
Get an existing OidcClient resource's state with the given name, id, and optional extra
|
535
536
|
properties used to qualify the lookup.
|
@@ -537,24 +538,24 @@ class OidcClient(pulumi.CustomResource):
|
|
537
538
|
:param str resource_name: The unique name of the resulting resource.
|
538
539
|
:param pulumi.Input[str] id: The unique provider ID of the resource to lookup.
|
539
540
|
:param pulumi.ResourceOptions opts: Options for the resource.
|
540
|
-
:param pulumi.Input[int] access_token_ttl: The time-to-live for access tokens obtained by the client.
|
541
|
-
:param pulumi.Input[Sequence[pulumi.Input[str]]] assignments: A list of assignment resources associated with the client.
|
542
|
-
:param pulumi.Input[str] client_id: The Client ID returned by Vault.
|
543
|
-
:param pulumi.Input[str] client_secret: The Client Secret Key returned by Vault.
|
541
|
+
:param pulumi.Input[builtins.int] access_token_ttl: The time-to-live for access tokens obtained by the client.
|
542
|
+
:param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] assignments: A list of assignment resources associated with the client.
|
543
|
+
:param pulumi.Input[builtins.str] client_id: The Client ID returned by Vault.
|
544
|
+
:param pulumi.Input[builtins.str] client_secret: The Client Secret Key returned by Vault.
|
544
545
|
For public OpenID Clients `client_secret` is set to an empty string `""`
|
545
|
-
:param pulumi.Input[str] client_type: The client type based on its ability to maintain confidentiality of credentials.
|
546
|
+
:param pulumi.Input[builtins.str] client_type: The client type based on its ability to maintain confidentiality of credentials.
|
546
547
|
The following client types are supported: `confidential`, `public`. Defaults to `confidential`.
|
547
|
-
:param pulumi.Input[int] id_token_ttl: The time-to-live for ID tokens obtained by the client.
|
548
|
+
:param pulumi.Input[builtins.int] id_token_ttl: The time-to-live for ID tokens obtained by the client.
|
548
549
|
The value should be less than the `verification_ttl` on the key.
|
549
|
-
:param pulumi.Input[str] key: A reference to a named key resource in Vault.
|
550
|
+
:param pulumi.Input[builtins.str] key: A reference to a named key resource in Vault.
|
550
551
|
This cannot be modified after creation. If not provided, the `default`
|
551
552
|
key is used.
|
552
|
-
:param pulumi.Input[str] name: The name of the client.
|
553
|
-
:param pulumi.Input[str] namespace: The namespace to provision the resource in.
|
553
|
+
:param pulumi.Input[builtins.str] name: The name of the client.
|
554
|
+
:param pulumi.Input[builtins.str] namespace: The namespace to provision the resource in.
|
554
555
|
The value should not contain leading or trailing forward slashes.
|
555
556
|
The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault/index.html#namespace).
|
556
557
|
*Available only for Vault Enterprise*.
|
557
|
-
:param pulumi.Input[Sequence[pulumi.Input[str]]] redirect_uris: Redirection URI values used by the client.
|
558
|
+
:param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] redirect_uris: Redirection URI values used by the client.
|
558
559
|
One of these values must exactly match the `redirect_uri` parameter value
|
559
560
|
used in each authentication request.
|
560
561
|
"""
|
@@ -576,7 +577,7 @@ class OidcClient(pulumi.CustomResource):
|
|
576
577
|
|
577
578
|
@property
|
578
579
|
@pulumi.getter(name="accessTokenTtl")
|
579
|
-
def access_token_ttl(self) -> pulumi.Output[int]:
|
580
|
+
def access_token_ttl(self) -> pulumi.Output[builtins.int]:
|
580
581
|
"""
|
581
582
|
The time-to-live for access tokens obtained by the client.
|
582
583
|
"""
|
@@ -584,7 +585,7 @@ class OidcClient(pulumi.CustomResource):
|
|
584
585
|
|
585
586
|
@property
|
586
587
|
@pulumi.getter
|
587
|
-
def assignments(self) -> pulumi.Output[Optional[Sequence[str]]]:
|
588
|
+
def assignments(self) -> pulumi.Output[Optional[Sequence[builtins.str]]]:
|
588
589
|
"""
|
589
590
|
A list of assignment resources associated with the client.
|
590
591
|
"""
|
@@ -592,7 +593,7 @@ class OidcClient(pulumi.CustomResource):
|
|
592
593
|
|
593
594
|
@property
|
594
595
|
@pulumi.getter(name="clientId")
|
595
|
-
def client_id(self) -> pulumi.Output[str]:
|
596
|
+
def client_id(self) -> pulumi.Output[builtins.str]:
|
596
597
|
"""
|
597
598
|
The Client ID returned by Vault.
|
598
599
|
"""
|
@@ -600,7 +601,7 @@ class OidcClient(pulumi.CustomResource):
|
|
600
601
|
|
601
602
|
@property
|
602
603
|
@pulumi.getter(name="clientSecret")
|
603
|
-
def client_secret(self) -> pulumi.Output[str]:
|
604
|
+
def client_secret(self) -> pulumi.Output[builtins.str]:
|
604
605
|
"""
|
605
606
|
The Client Secret Key returned by Vault.
|
606
607
|
For public OpenID Clients `client_secret` is set to an empty string `""`
|
@@ -609,7 +610,7 @@ class OidcClient(pulumi.CustomResource):
|
|
609
610
|
|
610
611
|
@property
|
611
612
|
@pulumi.getter(name="clientType")
|
612
|
-
def client_type(self) -> pulumi.Output[str]:
|
613
|
+
def client_type(self) -> pulumi.Output[builtins.str]:
|
613
614
|
"""
|
614
615
|
The client type based on its ability to maintain confidentiality of credentials.
|
615
616
|
The following client types are supported: `confidential`, `public`. Defaults to `confidential`.
|
@@ -618,7 +619,7 @@ class OidcClient(pulumi.CustomResource):
|
|
618
619
|
|
619
620
|
@property
|
620
621
|
@pulumi.getter(name="idTokenTtl")
|
621
|
-
def id_token_ttl(self) -> pulumi.Output[int]:
|
622
|
+
def id_token_ttl(self) -> pulumi.Output[builtins.int]:
|
622
623
|
"""
|
623
624
|
The time-to-live for ID tokens obtained by the client.
|
624
625
|
The value should be less than the `verification_ttl` on the key.
|
@@ -627,7 +628,7 @@ class OidcClient(pulumi.CustomResource):
|
|
627
628
|
|
628
629
|
@property
|
629
630
|
@pulumi.getter
|
630
|
-
def key(self) -> pulumi.Output[str]:
|
631
|
+
def key(self) -> pulumi.Output[builtins.str]:
|
631
632
|
"""
|
632
633
|
A reference to a named key resource in Vault.
|
633
634
|
This cannot be modified after creation. If not provided, the `default`
|
@@ -637,7 +638,7 @@ class OidcClient(pulumi.CustomResource):
|
|
637
638
|
|
638
639
|
@property
|
639
640
|
@pulumi.getter
|
640
|
-
def name(self) -> pulumi.Output[str]:
|
641
|
+
def name(self) -> pulumi.Output[builtins.str]:
|
641
642
|
"""
|
642
643
|
The name of the client.
|
643
644
|
"""
|
@@ -645,7 +646,7 @@ class OidcClient(pulumi.CustomResource):
|
|
645
646
|
|
646
647
|
@property
|
647
648
|
@pulumi.getter
|
648
|
-
def namespace(self) -> pulumi.Output[Optional[str]]:
|
649
|
+
def namespace(self) -> pulumi.Output[Optional[builtins.str]]:
|
649
650
|
"""
|
650
651
|
The namespace to provision the resource in.
|
651
652
|
The value should not contain leading or trailing forward slashes.
|
@@ -656,7 +657,7 @@ class OidcClient(pulumi.CustomResource):
|
|
656
657
|
|
657
658
|
@property
|
658
659
|
@pulumi.getter(name="redirectUris")
|
659
|
-
def redirect_uris(self) -> pulumi.Output[Optional[Sequence[str]]]:
|
660
|
+
def redirect_uris(self) -> pulumi.Output[Optional[Sequence[builtins.str]]]:
|
660
661
|
"""
|
661
662
|
Redirection URI values used by the client.
|
662
663
|
One of these values must exactly match the `redirect_uri` parameter value
|