pulumi-vault 6.7.0a1743576047__py3-none-any.whl → 6.7.0a1744267302__py3-none-any.whl
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- pulumi_vault/__init__.py +1 -0
- pulumi_vault/_inputs.py +554 -553
- pulumi_vault/ad/__init__.py +1 -0
- pulumi_vault/ad/get_access_credentials.py +20 -19
- pulumi_vault/ad/secret_backend.py +477 -476
- pulumi_vault/ad/secret_library.py +99 -98
- pulumi_vault/ad/secret_role.py +85 -84
- pulumi_vault/alicloud/__init__.py +1 -0
- pulumi_vault/alicloud/auth_backend_role.py +183 -182
- pulumi_vault/approle/__init__.py +1 -0
- pulumi_vault/approle/auth_backend_login.py +106 -105
- pulumi_vault/approle/auth_backend_role.py +239 -238
- pulumi_vault/approle/auth_backend_role_secret_id.py +162 -161
- pulumi_vault/approle/get_auth_backend_role_id.py +18 -17
- pulumi_vault/audit.py +85 -84
- pulumi_vault/audit_request_header.py +43 -42
- pulumi_vault/auth_backend.py +106 -105
- pulumi_vault/aws/__init__.py +1 -0
- pulumi_vault/aws/auth_backend_cert.py +71 -70
- pulumi_vault/aws/auth_backend_client.py +253 -252
- pulumi_vault/aws/auth_backend_config_identity.py +85 -84
- pulumi_vault/aws/auth_backend_identity_whitelist.py +57 -56
- pulumi_vault/aws/auth_backend_login.py +209 -208
- pulumi_vault/aws/auth_backend_role.py +400 -399
- pulumi_vault/aws/auth_backend_role_tag.py +127 -126
- pulumi_vault/aws/auth_backend_roletag_blacklist.py +57 -56
- pulumi_vault/aws/auth_backend_sts_role.py +71 -70
- pulumi_vault/aws/get_access_credentials.py +44 -43
- pulumi_vault/aws/get_static_access_credentials.py +13 -12
- pulumi_vault/aws/secret_backend.py +337 -336
- pulumi_vault/aws/secret_backend_role.py +211 -210
- pulumi_vault/aws/secret_backend_static_role.py +113 -112
- pulumi_vault/azure/__init__.py +1 -0
- pulumi_vault/azure/_inputs.py +21 -20
- pulumi_vault/azure/auth_backend_config.py +183 -182
- pulumi_vault/azure/auth_backend_role.py +253 -252
- pulumi_vault/azure/backend.py +239 -238
- pulumi_vault/azure/backend_role.py +141 -140
- pulumi_vault/azure/get_access_credentials.py +58 -57
- pulumi_vault/azure/outputs.py +11 -10
- pulumi_vault/cert_auth_backend_role.py +365 -364
- pulumi_vault/config/__init__.py +1 -0
- pulumi_vault/config/__init__.pyi +1 -0
- pulumi_vault/config/_inputs.py +11 -10
- pulumi_vault/config/outputs.py +287 -286
- pulumi_vault/config/ui_custom_message.py +113 -112
- pulumi_vault/config/vars.py +1 -0
- pulumi_vault/consul/__init__.py +1 -0
- pulumi_vault/consul/secret_backend.py +197 -196
- pulumi_vault/consul/secret_backend_role.py +183 -182
- pulumi_vault/database/__init__.py +1 -0
- pulumi_vault/database/_inputs.py +2525 -2524
- pulumi_vault/database/outputs.py +1529 -1528
- pulumi_vault/database/secret_backend_connection.py +169 -168
- pulumi_vault/database/secret_backend_role.py +169 -168
- pulumi_vault/database/secret_backend_static_role.py +179 -178
- pulumi_vault/database/secrets_mount.py +267 -266
- pulumi_vault/egp_policy.py +71 -70
- pulumi_vault/gcp/__init__.py +1 -0
- pulumi_vault/gcp/_inputs.py +82 -81
- pulumi_vault/gcp/auth_backend.py +260 -259
- pulumi_vault/gcp/auth_backend_role.py +281 -280
- pulumi_vault/gcp/get_auth_backend_role.py +70 -69
- pulumi_vault/gcp/outputs.py +50 -49
- pulumi_vault/gcp/secret_backend.py +232 -231
- pulumi_vault/gcp/secret_impersonated_account.py +92 -91
- pulumi_vault/gcp/secret_roleset.py +92 -91
- pulumi_vault/gcp/secret_static_account.py +92 -91
- pulumi_vault/generic/__init__.py +1 -0
- pulumi_vault/generic/endpoint.py +113 -112
- pulumi_vault/generic/get_secret.py +28 -27
- pulumi_vault/generic/secret.py +78 -77
- pulumi_vault/get_auth_backend.py +19 -18
- pulumi_vault/get_auth_backends.py +14 -13
- pulumi_vault/get_namespace.py +15 -14
- pulumi_vault/get_namespaces.py +8 -7
- pulumi_vault/get_nomad_access_token.py +19 -18
- pulumi_vault/get_policy_document.py +6 -5
- pulumi_vault/get_raft_autopilot_state.py +18 -17
- pulumi_vault/github/__init__.py +1 -0
- pulumi_vault/github/_inputs.py +42 -41
- pulumi_vault/github/auth_backend.py +232 -231
- pulumi_vault/github/outputs.py +26 -25
- pulumi_vault/github/team.py +57 -56
- pulumi_vault/github/user.py +57 -56
- pulumi_vault/identity/__init__.py +1 -0
- pulumi_vault/identity/entity.py +85 -84
- pulumi_vault/identity/entity_alias.py +71 -70
- pulumi_vault/identity/entity_policies.py +64 -63
- pulumi_vault/identity/get_entity.py +43 -42
- pulumi_vault/identity/get_group.py +50 -49
- pulumi_vault/identity/get_oidc_client_creds.py +14 -13
- pulumi_vault/identity/get_oidc_openid_config.py +24 -23
- pulumi_vault/identity/get_oidc_public_keys.py +13 -12
- pulumi_vault/identity/group.py +141 -140
- pulumi_vault/identity/group_alias.py +57 -56
- pulumi_vault/identity/group_member_entity_ids.py +57 -56
- pulumi_vault/identity/group_member_group_ids.py +57 -56
- pulumi_vault/identity/group_policies.py +64 -63
- pulumi_vault/identity/mfa_duo.py +148 -147
- pulumi_vault/identity/mfa_login_enforcement.py +120 -119
- pulumi_vault/identity/mfa_okta.py +134 -133
- pulumi_vault/identity/mfa_pingid.py +127 -126
- pulumi_vault/identity/mfa_totp.py +176 -175
- pulumi_vault/identity/oidc.py +29 -28
- pulumi_vault/identity/oidc_assignment.py +57 -56
- pulumi_vault/identity/oidc_client.py +127 -126
- pulumi_vault/identity/oidc_key.py +85 -84
- pulumi_vault/identity/oidc_key_allowed_client_id.py +43 -42
- pulumi_vault/identity/oidc_provider.py +92 -91
- pulumi_vault/identity/oidc_role.py +85 -84
- pulumi_vault/identity/oidc_scope.py +57 -56
- pulumi_vault/identity/outputs.py +32 -31
- pulumi_vault/jwt/__init__.py +1 -0
- pulumi_vault/jwt/_inputs.py +42 -41
- pulumi_vault/jwt/auth_backend.py +288 -287
- pulumi_vault/jwt/auth_backend_role.py +407 -406
- pulumi_vault/jwt/outputs.py +26 -25
- pulumi_vault/kmip/__init__.py +1 -0
- pulumi_vault/kmip/secret_backend.py +183 -182
- pulumi_vault/kmip/secret_role.py +295 -294
- pulumi_vault/kmip/secret_scope.py +57 -56
- pulumi_vault/kubernetes/__init__.py +1 -0
- pulumi_vault/kubernetes/auth_backend_config.py +141 -140
- pulumi_vault/kubernetes/auth_backend_role.py +225 -224
- pulumi_vault/kubernetes/get_auth_backend_config.py +47 -46
- pulumi_vault/kubernetes/get_auth_backend_role.py +70 -69
- pulumi_vault/kubernetes/get_service_account_token.py +38 -37
- pulumi_vault/kubernetes/secret_backend.py +316 -315
- pulumi_vault/kubernetes/secret_backend_role.py +197 -196
- pulumi_vault/kv/__init__.py +1 -0
- pulumi_vault/kv/_inputs.py +21 -20
- pulumi_vault/kv/get_secret.py +17 -16
- pulumi_vault/kv/get_secret_subkeys_v2.py +30 -29
- pulumi_vault/kv/get_secret_v2.py +29 -28
- pulumi_vault/kv/get_secrets_list.py +13 -12
- pulumi_vault/kv/get_secrets_list_v2.py +19 -18
- pulumi_vault/kv/outputs.py +13 -12
- pulumi_vault/kv/secret.py +50 -49
- pulumi_vault/kv/secret_backend_v2.py +71 -70
- pulumi_vault/kv/secret_v2.py +134 -133
- pulumi_vault/ldap/__init__.py +1 -0
- pulumi_vault/ldap/auth_backend.py +588 -587
- pulumi_vault/ldap/auth_backend_group.py +57 -56
- pulumi_vault/ldap/auth_backend_user.py +71 -70
- pulumi_vault/ldap/get_dynamic_credentials.py +17 -16
- pulumi_vault/ldap/get_static_credentials.py +18 -17
- pulumi_vault/ldap/secret_backend.py +554 -553
- pulumi_vault/ldap/secret_backend_dynamic_role.py +127 -126
- pulumi_vault/ldap/secret_backend_library_set.py +99 -98
- pulumi_vault/ldap/secret_backend_static_role.py +99 -98
- pulumi_vault/managed/__init__.py +1 -0
- pulumi_vault/managed/_inputs.py +229 -228
- pulumi_vault/managed/keys.py +15 -14
- pulumi_vault/managed/outputs.py +139 -138
- pulumi_vault/mfa_duo.py +113 -112
- pulumi_vault/mfa_okta.py +113 -112
- pulumi_vault/mfa_pingid.py +120 -119
- pulumi_vault/mfa_totp.py +127 -126
- pulumi_vault/mongodbatlas/__init__.py +1 -0
- pulumi_vault/mongodbatlas/secret_backend.py +64 -63
- pulumi_vault/mongodbatlas/secret_role.py +155 -154
- pulumi_vault/mount.py +274 -273
- pulumi_vault/namespace.py +64 -63
- pulumi_vault/nomad_secret_backend.py +211 -210
- pulumi_vault/nomad_secret_role.py +85 -84
- pulumi_vault/okta/__init__.py +1 -0
- pulumi_vault/okta/_inputs.py +26 -25
- pulumi_vault/okta/auth_backend.py +274 -273
- pulumi_vault/okta/auth_backend_group.py +57 -56
- pulumi_vault/okta/auth_backend_user.py +71 -70
- pulumi_vault/okta/outputs.py +16 -15
- pulumi_vault/outputs.py +56 -55
- pulumi_vault/password_policy.py +43 -42
- pulumi_vault/pkisecret/__init__.py +1 -0
- pulumi_vault/pkisecret/_inputs.py +31 -30
- pulumi_vault/pkisecret/backend_acme_eab.py +92 -91
- pulumi_vault/pkisecret/backend_config_acme.py +141 -140
- pulumi_vault/pkisecret/backend_config_auto_tidy.py +323 -322
- pulumi_vault/pkisecret/backend_config_cluster.py +57 -56
- pulumi_vault/pkisecret/backend_config_cmpv2.py +106 -105
- pulumi_vault/pkisecret/backend_config_est.py +120 -119
- pulumi_vault/pkisecret/get_backend_cert_metadata.py +22 -21
- pulumi_vault/pkisecret/get_backend_config_cmpv2.py +22 -21
- pulumi_vault/pkisecret/get_backend_config_est.py +19 -18
- pulumi_vault/pkisecret/get_backend_issuer.py +45 -44
- pulumi_vault/pkisecret/get_backend_issuers.py +15 -14
- pulumi_vault/pkisecret/get_backend_key.py +20 -19
- pulumi_vault/pkisecret/get_backend_keys.py +15 -14
- pulumi_vault/pkisecret/outputs.py +28 -27
- pulumi_vault/pkisecret/secret_backend_cert.py +337 -336
- pulumi_vault/pkisecret/secret_backend_config_ca.py +43 -42
- pulumi_vault/pkisecret/secret_backend_config_issuers.py +57 -56
- pulumi_vault/pkisecret/secret_backend_config_urls.py +85 -84
- pulumi_vault/pkisecret/secret_backend_crl_config.py +197 -196
- pulumi_vault/pkisecret/secret_backend_intermediate_cert_request.py +421 -420
- pulumi_vault/pkisecret/secret_backend_intermediate_set_signed.py +57 -56
- pulumi_vault/pkisecret/secret_backend_issuer.py +232 -231
- pulumi_vault/pkisecret/secret_backend_key.py +120 -119
- pulumi_vault/pkisecret/secret_backend_role.py +715 -714
- pulumi_vault/pkisecret/secret_backend_root_cert.py +554 -553
- pulumi_vault/pkisecret/secret_backend_root_sign_intermediate.py +526 -525
- pulumi_vault/pkisecret/secret_backend_sign.py +281 -280
- pulumi_vault/plugin.py +127 -126
- pulumi_vault/plugin_pinned_version.py +43 -42
- pulumi_vault/policy.py +43 -42
- pulumi_vault/provider.py +120 -119
- pulumi_vault/pulumi-plugin.json +1 -1
- pulumi_vault/quota_lease_count.py +85 -84
- pulumi_vault/quota_rate_limit.py +113 -112
- pulumi_vault/rabbitmq/__init__.py +1 -0
- pulumi_vault/rabbitmq/_inputs.py +41 -40
- pulumi_vault/rabbitmq/outputs.py +25 -24
- pulumi_vault/rabbitmq/secret_backend.py +169 -168
- pulumi_vault/rabbitmq/secret_backend_role.py +57 -56
- pulumi_vault/raft_autopilot.py +113 -112
- pulumi_vault/raft_snapshot_agent_config.py +393 -392
- pulumi_vault/rgp_policy.py +57 -56
- pulumi_vault/saml/__init__.py +1 -0
- pulumi_vault/saml/auth_backend.py +155 -154
- pulumi_vault/saml/auth_backend_role.py +239 -238
- pulumi_vault/secrets/__init__.py +1 -0
- pulumi_vault/secrets/_inputs.py +16 -15
- pulumi_vault/secrets/outputs.py +10 -9
- pulumi_vault/secrets/sync_association.py +71 -70
- pulumi_vault/secrets/sync_aws_destination.py +148 -147
- pulumi_vault/secrets/sync_azure_destination.py +148 -147
- pulumi_vault/secrets/sync_config.py +43 -42
- pulumi_vault/secrets/sync_gcp_destination.py +106 -105
- pulumi_vault/secrets/sync_gh_destination.py +134 -133
- pulumi_vault/secrets/sync_github_apps.py +64 -63
- pulumi_vault/secrets/sync_vercel_destination.py +120 -119
- pulumi_vault/ssh/__init__.py +1 -0
- pulumi_vault/ssh/_inputs.py +11 -10
- pulumi_vault/ssh/get_secret_backend_sign.py +52 -51
- pulumi_vault/ssh/outputs.py +7 -6
- pulumi_vault/ssh/secret_backend_ca.py +99 -98
- pulumi_vault/ssh/secret_backend_role.py +365 -364
- pulumi_vault/terraformcloud/__init__.py +1 -0
- pulumi_vault/terraformcloud/secret_backend.py +111 -110
- pulumi_vault/terraformcloud/secret_creds.py +74 -73
- pulumi_vault/terraformcloud/secret_role.py +93 -92
- pulumi_vault/token.py +246 -245
- pulumi_vault/tokenauth/__init__.py +1 -0
- pulumi_vault/tokenauth/auth_backend_role.py +267 -266
- pulumi_vault/transform/__init__.py +1 -0
- pulumi_vault/transform/alphabet.py +57 -56
- pulumi_vault/transform/get_decode.py +47 -46
- pulumi_vault/transform/get_encode.py +47 -46
- pulumi_vault/transform/role.py +57 -56
- pulumi_vault/transform/template.py +113 -112
- pulumi_vault/transform/transformation.py +141 -140
- pulumi_vault/transit/__init__.py +1 -0
- pulumi_vault/transit/get_decrypt.py +18 -17
- pulumi_vault/transit/get_encrypt.py +21 -20
- pulumi_vault/transit/get_sign.py +54 -53
- pulumi_vault/transit/get_verify.py +60 -59
- pulumi_vault/transit/secret_backend_key.py +274 -273
- pulumi_vault/transit/secret_cache_config.py +43 -42
- {pulumi_vault-6.7.0a1743576047.dist-info → pulumi_vault-6.7.0a1744267302.dist-info}/METADATA +1 -1
- pulumi_vault-6.7.0a1744267302.dist-info/RECORD +265 -0
- pulumi_vault-6.7.0a1743576047.dist-info/RECORD +0 -265
- {pulumi_vault-6.7.0a1743576047.dist-info → pulumi_vault-6.7.0a1744267302.dist-info}/WHEEL +0 -0
- {pulumi_vault-6.7.0a1743576047.dist-info → pulumi_vault-6.7.0a1744267302.dist-info}/top_level.txt +0 -0
@@ -2,6 +2,7 @@
|
|
2
2
|
# *** WARNING: this file was generated by the Pulumi Terraform Bridge (tfgen) Tool. ***
|
3
3
|
# *** Do not edit by hand unless you're certain you know what you are doing! ***
|
4
4
|
|
5
|
+
import builtins
|
5
6
|
import copy
|
6
7
|
import warnings
|
7
8
|
import sys
|
@@ -19,52 +20,52 @@ __all__ = ['AuthBackendRoleArgs', 'AuthBackendRole']
|
|
19
20
|
@pulumi.input_type
|
20
21
|
class AuthBackendRoleArgs:
|
21
22
|
def __init__(__self__, *,
|
22
|
-
role_name: pulumi.Input[str],
|
23
|
-
backend: Optional[pulumi.Input[str]] = None,
|
24
|
-
bind_secret_id: Optional[pulumi.Input[bool]] = None,
|
25
|
-
namespace: Optional[pulumi.Input[str]] = None,
|
26
|
-
role_id: Optional[pulumi.Input[str]] = None,
|
27
|
-
secret_id_bound_cidrs: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
|
28
|
-
secret_id_num_uses: Optional[pulumi.Input[int]] = None,
|
29
|
-
secret_id_ttl: Optional[pulumi.Input[int]] = None,
|
30
|
-
token_bound_cidrs: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
|
31
|
-
token_explicit_max_ttl: Optional[pulumi.Input[int]] = None,
|
32
|
-
token_max_ttl: Optional[pulumi.Input[int]] = None,
|
33
|
-
token_no_default_policy: Optional[pulumi.Input[bool]] = None,
|
34
|
-
token_num_uses: Optional[pulumi.Input[int]] = None,
|
35
|
-
token_period: Optional[pulumi.Input[int]] = None,
|
36
|
-
token_policies: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
|
37
|
-
token_ttl: Optional[pulumi.Input[int]] = None,
|
38
|
-
token_type: Optional[pulumi.Input[str]] = None):
|
23
|
+
role_name: pulumi.Input[builtins.str],
|
24
|
+
backend: Optional[pulumi.Input[builtins.str]] = None,
|
25
|
+
bind_secret_id: Optional[pulumi.Input[builtins.bool]] = None,
|
26
|
+
namespace: Optional[pulumi.Input[builtins.str]] = None,
|
27
|
+
role_id: Optional[pulumi.Input[builtins.str]] = None,
|
28
|
+
secret_id_bound_cidrs: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
|
29
|
+
secret_id_num_uses: Optional[pulumi.Input[builtins.int]] = None,
|
30
|
+
secret_id_ttl: Optional[pulumi.Input[builtins.int]] = None,
|
31
|
+
token_bound_cidrs: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
|
32
|
+
token_explicit_max_ttl: Optional[pulumi.Input[builtins.int]] = None,
|
33
|
+
token_max_ttl: Optional[pulumi.Input[builtins.int]] = None,
|
34
|
+
token_no_default_policy: Optional[pulumi.Input[builtins.bool]] = None,
|
35
|
+
token_num_uses: Optional[pulumi.Input[builtins.int]] = None,
|
36
|
+
token_period: Optional[pulumi.Input[builtins.int]] = None,
|
37
|
+
token_policies: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
|
38
|
+
token_ttl: Optional[pulumi.Input[builtins.int]] = None,
|
39
|
+
token_type: Optional[pulumi.Input[builtins.str]] = None):
|
39
40
|
"""
|
40
41
|
The set of arguments for constructing a AuthBackendRole resource.
|
41
|
-
:param pulumi.Input[str] role_name: The name of the role.
|
42
|
-
:param pulumi.Input[str] backend: The unique name of the auth backend to configure.
|
42
|
+
:param pulumi.Input[builtins.str] role_name: The name of the role.
|
43
|
+
:param pulumi.Input[builtins.str] backend: The unique name of the auth backend to configure.
|
43
44
|
Defaults to `approle`.
|
44
|
-
:param pulumi.Input[bool] bind_secret_id: Whether or not to require `secret_id` to be
|
45
|
+
:param pulumi.Input[builtins.bool] bind_secret_id: Whether or not to require `secret_id` to be
|
45
46
|
presented when logging in using this AppRole. Defaults to `true`.
|
46
|
-
:param pulumi.Input[str] namespace: The namespace to provision the resource in.
|
47
|
+
:param pulumi.Input[builtins.str] namespace: The namespace to provision the resource in.
|
47
48
|
The value should not contain leading or trailing forward slashes.
|
48
49
|
The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault/index.html#namespace).
|
49
50
|
*Available only for Vault Enterprise*.
|
50
|
-
:param pulumi.Input[str] role_id: The RoleID of this role. If not specified, one will be
|
51
|
+
:param pulumi.Input[builtins.str] role_id: The RoleID of this role. If not specified, one will be
|
51
52
|
auto-generated.
|
52
|
-
:param pulumi.Input[Sequence[pulumi.Input[str]]] secret_id_bound_cidrs: If set,
|
53
|
+
:param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] secret_id_bound_cidrs: If set,
|
53
54
|
specifies blocks of IP addresses which can perform the login operation.
|
54
|
-
:param pulumi.Input[int] secret_id_num_uses: The number of times any particular SecretID
|
55
|
+
:param pulumi.Input[builtins.int] secret_id_num_uses: The number of times any particular SecretID
|
55
56
|
can be used to fetch a token from this AppRole, after which the SecretID will
|
56
57
|
expire. A value of zero will allow unlimited uses.
|
57
|
-
:param pulumi.Input[int] secret_id_ttl: The number of seconds after which any SecretID
|
58
|
+
:param pulumi.Input[builtins.int] secret_id_ttl: The number of seconds after which any SecretID
|
58
59
|
expires.
|
59
|
-
:param pulumi.Input[Sequence[pulumi.Input[str]]] token_bound_cidrs: Specifies the blocks of IP addresses which are allowed to use the generated token
|
60
|
-
:param pulumi.Input[int] token_explicit_max_ttl: Generated Token's Explicit Maximum TTL in seconds
|
61
|
-
:param pulumi.Input[int] token_max_ttl: The maximum lifetime of the generated token
|
62
|
-
:param pulumi.Input[bool] token_no_default_policy: If true, the 'default' policy will not automatically be added to generated tokens
|
63
|
-
:param pulumi.Input[int] token_num_uses: The maximum number of times a token may be used, a value of zero means unlimited
|
64
|
-
:param pulumi.Input[int] token_period: Generated Token's Period
|
65
|
-
:param pulumi.Input[Sequence[pulumi.Input[str]]] token_policies: Generated Token's Policies
|
66
|
-
:param pulumi.Input[int] token_ttl: The initial ttl of the token to generate in seconds
|
67
|
-
:param pulumi.Input[str] token_type: The type of token to generate, service or batch
|
60
|
+
:param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] token_bound_cidrs: Specifies the blocks of IP addresses which are allowed to use the generated token
|
61
|
+
:param pulumi.Input[builtins.int] token_explicit_max_ttl: Generated Token's Explicit Maximum TTL in seconds
|
62
|
+
:param pulumi.Input[builtins.int] token_max_ttl: The maximum lifetime of the generated token
|
63
|
+
:param pulumi.Input[builtins.bool] token_no_default_policy: If true, the 'default' policy will not automatically be added to generated tokens
|
64
|
+
:param pulumi.Input[builtins.int] token_num_uses: The maximum number of times a token may be used, a value of zero means unlimited
|
65
|
+
:param pulumi.Input[builtins.int] token_period: Generated Token's Period
|
66
|
+
:param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] token_policies: Generated Token's Policies
|
67
|
+
:param pulumi.Input[builtins.int] token_ttl: The initial ttl of the token to generate in seconds
|
68
|
+
:param pulumi.Input[builtins.str] token_type: The type of token to generate, service or batch
|
68
69
|
"""
|
69
70
|
pulumi.set(__self__, "role_name", role_name)
|
70
71
|
if backend is not None:
|
@@ -102,19 +103,19 @@ class AuthBackendRoleArgs:
|
|
102
103
|
|
103
104
|
@property
|
104
105
|
@pulumi.getter(name="roleName")
|
105
|
-
def role_name(self) -> pulumi.Input[str]:
|
106
|
+
def role_name(self) -> pulumi.Input[builtins.str]:
|
106
107
|
"""
|
107
108
|
The name of the role.
|
108
109
|
"""
|
109
110
|
return pulumi.get(self, "role_name")
|
110
111
|
|
111
112
|
@role_name.setter
|
112
|
-
def role_name(self, value: pulumi.Input[str]):
|
113
|
+
def role_name(self, value: pulumi.Input[builtins.str]):
|
113
114
|
pulumi.set(self, "role_name", value)
|
114
115
|
|
115
116
|
@property
|
116
117
|
@pulumi.getter
|
117
|
-
def backend(self) -> Optional[pulumi.Input[str]]:
|
118
|
+
def backend(self) -> Optional[pulumi.Input[builtins.str]]:
|
118
119
|
"""
|
119
120
|
The unique name of the auth backend to configure.
|
120
121
|
Defaults to `approle`.
|
@@ -122,12 +123,12 @@ class AuthBackendRoleArgs:
|
|
122
123
|
return pulumi.get(self, "backend")
|
123
124
|
|
124
125
|
@backend.setter
|
125
|
-
def backend(self, value: Optional[pulumi.Input[str]]):
|
126
|
+
def backend(self, value: Optional[pulumi.Input[builtins.str]]):
|
126
127
|
pulumi.set(self, "backend", value)
|
127
128
|
|
128
129
|
@property
|
129
130
|
@pulumi.getter(name="bindSecretId")
|
130
|
-
def bind_secret_id(self) -> Optional[pulumi.Input[bool]]:
|
131
|
+
def bind_secret_id(self) -> Optional[pulumi.Input[builtins.bool]]:
|
131
132
|
"""
|
132
133
|
Whether or not to require `secret_id` to be
|
133
134
|
presented when logging in using this AppRole. Defaults to `true`.
|
@@ -135,12 +136,12 @@ class AuthBackendRoleArgs:
|
|
135
136
|
return pulumi.get(self, "bind_secret_id")
|
136
137
|
|
137
138
|
@bind_secret_id.setter
|
138
|
-
def bind_secret_id(self, value: Optional[pulumi.Input[bool]]):
|
139
|
+
def bind_secret_id(self, value: Optional[pulumi.Input[builtins.bool]]):
|
139
140
|
pulumi.set(self, "bind_secret_id", value)
|
140
141
|
|
141
142
|
@property
|
142
143
|
@pulumi.getter
|
143
|
-
def namespace(self) -> Optional[pulumi.Input[str]]:
|
144
|
+
def namespace(self) -> Optional[pulumi.Input[builtins.str]]:
|
144
145
|
"""
|
145
146
|
The namespace to provision the resource in.
|
146
147
|
The value should not contain leading or trailing forward slashes.
|
@@ -150,12 +151,12 @@ class AuthBackendRoleArgs:
|
|
150
151
|
return pulumi.get(self, "namespace")
|
151
152
|
|
152
153
|
@namespace.setter
|
153
|
-
def namespace(self, value: Optional[pulumi.Input[str]]):
|
154
|
+
def namespace(self, value: Optional[pulumi.Input[builtins.str]]):
|
154
155
|
pulumi.set(self, "namespace", value)
|
155
156
|
|
156
157
|
@property
|
157
158
|
@pulumi.getter(name="roleId")
|
158
|
-
def role_id(self) -> Optional[pulumi.Input[str]]:
|
159
|
+
def role_id(self) -> Optional[pulumi.Input[builtins.str]]:
|
159
160
|
"""
|
160
161
|
The RoleID of this role. If not specified, one will be
|
161
162
|
auto-generated.
|
@@ -163,12 +164,12 @@ class AuthBackendRoleArgs:
|
|
163
164
|
return pulumi.get(self, "role_id")
|
164
165
|
|
165
166
|
@role_id.setter
|
166
|
-
def role_id(self, value: Optional[pulumi.Input[str]]):
|
167
|
+
def role_id(self, value: Optional[pulumi.Input[builtins.str]]):
|
167
168
|
pulumi.set(self, "role_id", value)
|
168
169
|
|
169
170
|
@property
|
170
171
|
@pulumi.getter(name="secretIdBoundCidrs")
|
171
|
-
def secret_id_bound_cidrs(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]:
|
172
|
+
def secret_id_bound_cidrs(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]:
|
172
173
|
"""
|
173
174
|
If set,
|
174
175
|
specifies blocks of IP addresses which can perform the login operation.
|
@@ -176,12 +177,12 @@ class AuthBackendRoleArgs:
|
|
176
177
|
return pulumi.get(self, "secret_id_bound_cidrs")
|
177
178
|
|
178
179
|
@secret_id_bound_cidrs.setter
|
179
|
-
def secret_id_bound_cidrs(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]):
|
180
|
+
def secret_id_bound_cidrs(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]):
|
180
181
|
pulumi.set(self, "secret_id_bound_cidrs", value)
|
181
182
|
|
182
183
|
@property
|
183
184
|
@pulumi.getter(name="secretIdNumUses")
|
184
|
-
def secret_id_num_uses(self) -> Optional[pulumi.Input[int]]:
|
185
|
+
def secret_id_num_uses(self) -> Optional[pulumi.Input[builtins.int]]:
|
185
186
|
"""
|
186
187
|
The number of times any particular SecretID
|
187
188
|
can be used to fetch a token from this AppRole, after which the SecretID will
|
@@ -190,12 +191,12 @@ class AuthBackendRoleArgs:
|
|
190
191
|
return pulumi.get(self, "secret_id_num_uses")
|
191
192
|
|
192
193
|
@secret_id_num_uses.setter
|
193
|
-
def secret_id_num_uses(self, value: Optional[pulumi.Input[int]]):
|
194
|
+
def secret_id_num_uses(self, value: Optional[pulumi.Input[builtins.int]]):
|
194
195
|
pulumi.set(self, "secret_id_num_uses", value)
|
195
196
|
|
196
197
|
@property
|
197
198
|
@pulumi.getter(name="secretIdTtl")
|
198
|
-
def secret_id_ttl(self) -> Optional[pulumi.Input[int]]:
|
199
|
+
def secret_id_ttl(self) -> Optional[pulumi.Input[builtins.int]]:
|
199
200
|
"""
|
200
201
|
The number of seconds after which any SecretID
|
201
202
|
expires.
|
@@ -203,167 +204,167 @@ class AuthBackendRoleArgs:
|
|
203
204
|
return pulumi.get(self, "secret_id_ttl")
|
204
205
|
|
205
206
|
@secret_id_ttl.setter
|
206
|
-
def secret_id_ttl(self, value: Optional[pulumi.Input[int]]):
|
207
|
+
def secret_id_ttl(self, value: Optional[pulumi.Input[builtins.int]]):
|
207
208
|
pulumi.set(self, "secret_id_ttl", value)
|
208
209
|
|
209
210
|
@property
|
210
211
|
@pulumi.getter(name="tokenBoundCidrs")
|
211
|
-
def token_bound_cidrs(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]:
|
212
|
+
def token_bound_cidrs(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]:
|
212
213
|
"""
|
213
214
|
Specifies the blocks of IP addresses which are allowed to use the generated token
|
214
215
|
"""
|
215
216
|
return pulumi.get(self, "token_bound_cidrs")
|
216
217
|
|
217
218
|
@token_bound_cidrs.setter
|
218
|
-
def token_bound_cidrs(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]):
|
219
|
+
def token_bound_cidrs(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]):
|
219
220
|
pulumi.set(self, "token_bound_cidrs", value)
|
220
221
|
|
221
222
|
@property
|
222
223
|
@pulumi.getter(name="tokenExplicitMaxTtl")
|
223
|
-
def token_explicit_max_ttl(self) -> Optional[pulumi.Input[int]]:
|
224
|
+
def token_explicit_max_ttl(self) -> Optional[pulumi.Input[builtins.int]]:
|
224
225
|
"""
|
225
226
|
Generated Token's Explicit Maximum TTL in seconds
|
226
227
|
"""
|
227
228
|
return pulumi.get(self, "token_explicit_max_ttl")
|
228
229
|
|
229
230
|
@token_explicit_max_ttl.setter
|
230
|
-
def token_explicit_max_ttl(self, value: Optional[pulumi.Input[int]]):
|
231
|
+
def token_explicit_max_ttl(self, value: Optional[pulumi.Input[builtins.int]]):
|
231
232
|
pulumi.set(self, "token_explicit_max_ttl", value)
|
232
233
|
|
233
234
|
@property
|
234
235
|
@pulumi.getter(name="tokenMaxTtl")
|
235
|
-
def token_max_ttl(self) -> Optional[pulumi.Input[int]]:
|
236
|
+
def token_max_ttl(self) -> Optional[pulumi.Input[builtins.int]]:
|
236
237
|
"""
|
237
238
|
The maximum lifetime of the generated token
|
238
239
|
"""
|
239
240
|
return pulumi.get(self, "token_max_ttl")
|
240
241
|
|
241
242
|
@token_max_ttl.setter
|
242
|
-
def token_max_ttl(self, value: Optional[pulumi.Input[int]]):
|
243
|
+
def token_max_ttl(self, value: Optional[pulumi.Input[builtins.int]]):
|
243
244
|
pulumi.set(self, "token_max_ttl", value)
|
244
245
|
|
245
246
|
@property
|
246
247
|
@pulumi.getter(name="tokenNoDefaultPolicy")
|
247
|
-
def token_no_default_policy(self) -> Optional[pulumi.Input[bool]]:
|
248
|
+
def token_no_default_policy(self) -> Optional[pulumi.Input[builtins.bool]]:
|
248
249
|
"""
|
249
250
|
If true, the 'default' policy will not automatically be added to generated tokens
|
250
251
|
"""
|
251
252
|
return pulumi.get(self, "token_no_default_policy")
|
252
253
|
|
253
254
|
@token_no_default_policy.setter
|
254
|
-
def token_no_default_policy(self, value: Optional[pulumi.Input[bool]]):
|
255
|
+
def token_no_default_policy(self, value: Optional[pulumi.Input[builtins.bool]]):
|
255
256
|
pulumi.set(self, "token_no_default_policy", value)
|
256
257
|
|
257
258
|
@property
|
258
259
|
@pulumi.getter(name="tokenNumUses")
|
259
|
-
def token_num_uses(self) -> Optional[pulumi.Input[int]]:
|
260
|
+
def token_num_uses(self) -> Optional[pulumi.Input[builtins.int]]:
|
260
261
|
"""
|
261
262
|
The maximum number of times a token may be used, a value of zero means unlimited
|
262
263
|
"""
|
263
264
|
return pulumi.get(self, "token_num_uses")
|
264
265
|
|
265
266
|
@token_num_uses.setter
|
266
|
-
def token_num_uses(self, value: Optional[pulumi.Input[int]]):
|
267
|
+
def token_num_uses(self, value: Optional[pulumi.Input[builtins.int]]):
|
267
268
|
pulumi.set(self, "token_num_uses", value)
|
268
269
|
|
269
270
|
@property
|
270
271
|
@pulumi.getter(name="tokenPeriod")
|
271
|
-
def token_period(self) -> Optional[pulumi.Input[int]]:
|
272
|
+
def token_period(self) -> Optional[pulumi.Input[builtins.int]]:
|
272
273
|
"""
|
273
274
|
Generated Token's Period
|
274
275
|
"""
|
275
276
|
return pulumi.get(self, "token_period")
|
276
277
|
|
277
278
|
@token_period.setter
|
278
|
-
def token_period(self, value: Optional[pulumi.Input[int]]):
|
279
|
+
def token_period(self, value: Optional[pulumi.Input[builtins.int]]):
|
279
280
|
pulumi.set(self, "token_period", value)
|
280
281
|
|
281
282
|
@property
|
282
283
|
@pulumi.getter(name="tokenPolicies")
|
283
|
-
def token_policies(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]:
|
284
|
+
def token_policies(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]:
|
284
285
|
"""
|
285
286
|
Generated Token's Policies
|
286
287
|
"""
|
287
288
|
return pulumi.get(self, "token_policies")
|
288
289
|
|
289
290
|
@token_policies.setter
|
290
|
-
def token_policies(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]):
|
291
|
+
def token_policies(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]):
|
291
292
|
pulumi.set(self, "token_policies", value)
|
292
293
|
|
293
294
|
@property
|
294
295
|
@pulumi.getter(name="tokenTtl")
|
295
|
-
def token_ttl(self) -> Optional[pulumi.Input[int]]:
|
296
|
+
def token_ttl(self) -> Optional[pulumi.Input[builtins.int]]:
|
296
297
|
"""
|
297
298
|
The initial ttl of the token to generate in seconds
|
298
299
|
"""
|
299
300
|
return pulumi.get(self, "token_ttl")
|
300
301
|
|
301
302
|
@token_ttl.setter
|
302
|
-
def token_ttl(self, value: Optional[pulumi.Input[int]]):
|
303
|
+
def token_ttl(self, value: Optional[pulumi.Input[builtins.int]]):
|
303
304
|
pulumi.set(self, "token_ttl", value)
|
304
305
|
|
305
306
|
@property
|
306
307
|
@pulumi.getter(name="tokenType")
|
307
|
-
def token_type(self) -> Optional[pulumi.Input[str]]:
|
308
|
+
def token_type(self) -> Optional[pulumi.Input[builtins.str]]:
|
308
309
|
"""
|
309
310
|
The type of token to generate, service or batch
|
310
311
|
"""
|
311
312
|
return pulumi.get(self, "token_type")
|
312
313
|
|
313
314
|
@token_type.setter
|
314
|
-
def token_type(self, value: Optional[pulumi.Input[str]]):
|
315
|
+
def token_type(self, value: Optional[pulumi.Input[builtins.str]]):
|
315
316
|
pulumi.set(self, "token_type", value)
|
316
317
|
|
317
318
|
|
318
319
|
@pulumi.input_type
|
319
320
|
class _AuthBackendRoleState:
|
320
321
|
def __init__(__self__, *,
|
321
|
-
backend: Optional[pulumi.Input[str]] = None,
|
322
|
-
bind_secret_id: Optional[pulumi.Input[bool]] = None,
|
323
|
-
namespace: Optional[pulumi.Input[str]] = None,
|
324
|
-
role_id: Optional[pulumi.Input[str]] = None,
|
325
|
-
role_name: Optional[pulumi.Input[str]] = None,
|
326
|
-
secret_id_bound_cidrs: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
|
327
|
-
secret_id_num_uses: Optional[pulumi.Input[int]] = None,
|
328
|
-
secret_id_ttl: Optional[pulumi.Input[int]] = None,
|
329
|
-
token_bound_cidrs: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
|
330
|
-
token_explicit_max_ttl: Optional[pulumi.Input[int]] = None,
|
331
|
-
token_max_ttl: Optional[pulumi.Input[int]] = None,
|
332
|
-
token_no_default_policy: Optional[pulumi.Input[bool]] = None,
|
333
|
-
token_num_uses: Optional[pulumi.Input[int]] = None,
|
334
|
-
token_period: Optional[pulumi.Input[int]] = None,
|
335
|
-
token_policies: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
|
336
|
-
token_ttl: Optional[pulumi.Input[int]] = None,
|
337
|
-
token_type: Optional[pulumi.Input[str]] = None):
|
322
|
+
backend: Optional[pulumi.Input[builtins.str]] = None,
|
323
|
+
bind_secret_id: Optional[pulumi.Input[builtins.bool]] = None,
|
324
|
+
namespace: Optional[pulumi.Input[builtins.str]] = None,
|
325
|
+
role_id: Optional[pulumi.Input[builtins.str]] = None,
|
326
|
+
role_name: Optional[pulumi.Input[builtins.str]] = None,
|
327
|
+
secret_id_bound_cidrs: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
|
328
|
+
secret_id_num_uses: Optional[pulumi.Input[builtins.int]] = None,
|
329
|
+
secret_id_ttl: Optional[pulumi.Input[builtins.int]] = None,
|
330
|
+
token_bound_cidrs: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
|
331
|
+
token_explicit_max_ttl: Optional[pulumi.Input[builtins.int]] = None,
|
332
|
+
token_max_ttl: Optional[pulumi.Input[builtins.int]] = None,
|
333
|
+
token_no_default_policy: Optional[pulumi.Input[builtins.bool]] = None,
|
334
|
+
token_num_uses: Optional[pulumi.Input[builtins.int]] = None,
|
335
|
+
token_period: Optional[pulumi.Input[builtins.int]] = None,
|
336
|
+
token_policies: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
|
337
|
+
token_ttl: Optional[pulumi.Input[builtins.int]] = None,
|
338
|
+
token_type: Optional[pulumi.Input[builtins.str]] = None):
|
338
339
|
"""
|
339
340
|
Input properties used for looking up and filtering AuthBackendRole resources.
|
340
|
-
:param pulumi.Input[str] backend: The unique name of the auth backend to configure.
|
341
|
+
:param pulumi.Input[builtins.str] backend: The unique name of the auth backend to configure.
|
341
342
|
Defaults to `approle`.
|
342
|
-
:param pulumi.Input[bool] bind_secret_id: Whether or not to require `secret_id` to be
|
343
|
+
:param pulumi.Input[builtins.bool] bind_secret_id: Whether or not to require `secret_id` to be
|
343
344
|
presented when logging in using this AppRole. Defaults to `true`.
|
344
|
-
:param pulumi.Input[str] namespace: The namespace to provision the resource in.
|
345
|
+
:param pulumi.Input[builtins.str] namespace: The namespace to provision the resource in.
|
345
346
|
The value should not contain leading or trailing forward slashes.
|
346
347
|
The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault/index.html#namespace).
|
347
348
|
*Available only for Vault Enterprise*.
|
348
|
-
:param pulumi.Input[str] role_id: The RoleID of this role. If not specified, one will be
|
349
|
+
:param pulumi.Input[builtins.str] role_id: The RoleID of this role. If not specified, one will be
|
349
350
|
auto-generated.
|
350
|
-
:param pulumi.Input[str] role_name: The name of the role.
|
351
|
-
:param pulumi.Input[Sequence[pulumi.Input[str]]] secret_id_bound_cidrs: If set,
|
351
|
+
:param pulumi.Input[builtins.str] role_name: The name of the role.
|
352
|
+
:param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] secret_id_bound_cidrs: If set,
|
352
353
|
specifies blocks of IP addresses which can perform the login operation.
|
353
|
-
:param pulumi.Input[int] secret_id_num_uses: The number of times any particular SecretID
|
354
|
+
:param pulumi.Input[builtins.int] secret_id_num_uses: The number of times any particular SecretID
|
354
355
|
can be used to fetch a token from this AppRole, after which the SecretID will
|
355
356
|
expire. A value of zero will allow unlimited uses.
|
356
|
-
:param pulumi.Input[int] secret_id_ttl: The number of seconds after which any SecretID
|
357
|
+
:param pulumi.Input[builtins.int] secret_id_ttl: The number of seconds after which any SecretID
|
357
358
|
expires.
|
358
|
-
:param pulumi.Input[Sequence[pulumi.Input[str]]] token_bound_cidrs: Specifies the blocks of IP addresses which are allowed to use the generated token
|
359
|
-
:param pulumi.Input[int] token_explicit_max_ttl: Generated Token's Explicit Maximum TTL in seconds
|
360
|
-
:param pulumi.Input[int] token_max_ttl: The maximum lifetime of the generated token
|
361
|
-
:param pulumi.Input[bool] token_no_default_policy: If true, the 'default' policy will not automatically be added to generated tokens
|
362
|
-
:param pulumi.Input[int] token_num_uses: The maximum number of times a token may be used, a value of zero means unlimited
|
363
|
-
:param pulumi.Input[int] token_period: Generated Token's Period
|
364
|
-
:param pulumi.Input[Sequence[pulumi.Input[str]]] token_policies: Generated Token's Policies
|
365
|
-
:param pulumi.Input[int] token_ttl: The initial ttl of the token to generate in seconds
|
366
|
-
:param pulumi.Input[str] token_type: The type of token to generate, service or batch
|
359
|
+
:param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] token_bound_cidrs: Specifies the blocks of IP addresses which are allowed to use the generated token
|
360
|
+
:param pulumi.Input[builtins.int] token_explicit_max_ttl: Generated Token's Explicit Maximum TTL in seconds
|
361
|
+
:param pulumi.Input[builtins.int] token_max_ttl: The maximum lifetime of the generated token
|
362
|
+
:param pulumi.Input[builtins.bool] token_no_default_policy: If true, the 'default' policy will not automatically be added to generated tokens
|
363
|
+
:param pulumi.Input[builtins.int] token_num_uses: The maximum number of times a token may be used, a value of zero means unlimited
|
364
|
+
:param pulumi.Input[builtins.int] token_period: Generated Token's Period
|
365
|
+
:param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] token_policies: Generated Token's Policies
|
366
|
+
:param pulumi.Input[builtins.int] token_ttl: The initial ttl of the token to generate in seconds
|
367
|
+
:param pulumi.Input[builtins.str] token_type: The type of token to generate, service or batch
|
367
368
|
"""
|
368
369
|
if backend is not None:
|
369
370
|
pulumi.set(__self__, "backend", backend)
|
@@ -402,7 +403,7 @@ class _AuthBackendRoleState:
|
|
402
403
|
|
403
404
|
@property
|
404
405
|
@pulumi.getter
|
405
|
-
def backend(self) -> Optional[pulumi.Input[str]]:
|
406
|
+
def backend(self) -> Optional[pulumi.Input[builtins.str]]:
|
406
407
|
"""
|
407
408
|
The unique name of the auth backend to configure.
|
408
409
|
Defaults to `approle`.
|
@@ -410,12 +411,12 @@ class _AuthBackendRoleState:
|
|
410
411
|
return pulumi.get(self, "backend")
|
411
412
|
|
412
413
|
@backend.setter
|
413
|
-
def backend(self, value: Optional[pulumi.Input[str]]):
|
414
|
+
def backend(self, value: Optional[pulumi.Input[builtins.str]]):
|
414
415
|
pulumi.set(self, "backend", value)
|
415
416
|
|
416
417
|
@property
|
417
418
|
@pulumi.getter(name="bindSecretId")
|
418
|
-
def bind_secret_id(self) -> Optional[pulumi.Input[bool]]:
|
419
|
+
def bind_secret_id(self) -> Optional[pulumi.Input[builtins.bool]]:
|
419
420
|
"""
|
420
421
|
Whether or not to require `secret_id` to be
|
421
422
|
presented when logging in using this AppRole. Defaults to `true`.
|
@@ -423,12 +424,12 @@ class _AuthBackendRoleState:
|
|
423
424
|
return pulumi.get(self, "bind_secret_id")
|
424
425
|
|
425
426
|
@bind_secret_id.setter
|
426
|
-
def bind_secret_id(self, value: Optional[pulumi.Input[bool]]):
|
427
|
+
def bind_secret_id(self, value: Optional[pulumi.Input[builtins.bool]]):
|
427
428
|
pulumi.set(self, "bind_secret_id", value)
|
428
429
|
|
429
430
|
@property
|
430
431
|
@pulumi.getter
|
431
|
-
def namespace(self) -> Optional[pulumi.Input[str]]:
|
432
|
+
def namespace(self) -> Optional[pulumi.Input[builtins.str]]:
|
432
433
|
"""
|
433
434
|
The namespace to provision the resource in.
|
434
435
|
The value should not contain leading or trailing forward slashes.
|
@@ -438,12 +439,12 @@ class _AuthBackendRoleState:
|
|
438
439
|
return pulumi.get(self, "namespace")
|
439
440
|
|
440
441
|
@namespace.setter
|
441
|
-
def namespace(self, value: Optional[pulumi.Input[str]]):
|
442
|
+
def namespace(self, value: Optional[pulumi.Input[builtins.str]]):
|
442
443
|
pulumi.set(self, "namespace", value)
|
443
444
|
|
444
445
|
@property
|
445
446
|
@pulumi.getter(name="roleId")
|
446
|
-
def role_id(self) -> Optional[pulumi.Input[str]]:
|
447
|
+
def role_id(self) -> Optional[pulumi.Input[builtins.str]]:
|
447
448
|
"""
|
448
449
|
The RoleID of this role. If not specified, one will be
|
449
450
|
auto-generated.
|
@@ -451,24 +452,24 @@ class _AuthBackendRoleState:
|
|
451
452
|
return pulumi.get(self, "role_id")
|
452
453
|
|
453
454
|
@role_id.setter
|
454
|
-
def role_id(self, value: Optional[pulumi.Input[str]]):
|
455
|
+
def role_id(self, value: Optional[pulumi.Input[builtins.str]]):
|
455
456
|
pulumi.set(self, "role_id", value)
|
456
457
|
|
457
458
|
@property
|
458
459
|
@pulumi.getter(name="roleName")
|
459
|
-
def role_name(self) -> Optional[pulumi.Input[str]]:
|
460
|
+
def role_name(self) -> Optional[pulumi.Input[builtins.str]]:
|
460
461
|
"""
|
461
462
|
The name of the role.
|
462
463
|
"""
|
463
464
|
return pulumi.get(self, "role_name")
|
464
465
|
|
465
466
|
@role_name.setter
|
466
|
-
def role_name(self, value: Optional[pulumi.Input[str]]):
|
467
|
+
def role_name(self, value: Optional[pulumi.Input[builtins.str]]):
|
467
468
|
pulumi.set(self, "role_name", value)
|
468
469
|
|
469
470
|
@property
|
470
471
|
@pulumi.getter(name="secretIdBoundCidrs")
|
471
|
-
def secret_id_bound_cidrs(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]:
|
472
|
+
def secret_id_bound_cidrs(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]:
|
472
473
|
"""
|
473
474
|
If set,
|
474
475
|
specifies blocks of IP addresses which can perform the login operation.
|
@@ -476,12 +477,12 @@ class _AuthBackendRoleState:
|
|
476
477
|
return pulumi.get(self, "secret_id_bound_cidrs")
|
477
478
|
|
478
479
|
@secret_id_bound_cidrs.setter
|
479
|
-
def secret_id_bound_cidrs(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]):
|
480
|
+
def secret_id_bound_cidrs(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]):
|
480
481
|
pulumi.set(self, "secret_id_bound_cidrs", value)
|
481
482
|
|
482
483
|
@property
|
483
484
|
@pulumi.getter(name="secretIdNumUses")
|
484
|
-
def secret_id_num_uses(self) -> Optional[pulumi.Input[int]]:
|
485
|
+
def secret_id_num_uses(self) -> Optional[pulumi.Input[builtins.int]]:
|
485
486
|
"""
|
486
487
|
The number of times any particular SecretID
|
487
488
|
can be used to fetch a token from this AppRole, after which the SecretID will
|
@@ -490,12 +491,12 @@ class _AuthBackendRoleState:
|
|
490
491
|
return pulumi.get(self, "secret_id_num_uses")
|
491
492
|
|
492
493
|
@secret_id_num_uses.setter
|
493
|
-
def secret_id_num_uses(self, value: Optional[pulumi.Input[int]]):
|
494
|
+
def secret_id_num_uses(self, value: Optional[pulumi.Input[builtins.int]]):
|
494
495
|
pulumi.set(self, "secret_id_num_uses", value)
|
495
496
|
|
496
497
|
@property
|
497
498
|
@pulumi.getter(name="secretIdTtl")
|
498
|
-
def secret_id_ttl(self) -> Optional[pulumi.Input[int]]:
|
499
|
+
def secret_id_ttl(self) -> Optional[pulumi.Input[builtins.int]]:
|
499
500
|
"""
|
500
501
|
The number of seconds after which any SecretID
|
501
502
|
expires.
|
@@ -503,115 +504,115 @@ class _AuthBackendRoleState:
|
|
503
504
|
return pulumi.get(self, "secret_id_ttl")
|
504
505
|
|
505
506
|
@secret_id_ttl.setter
|
506
|
-
def secret_id_ttl(self, value: Optional[pulumi.Input[int]]):
|
507
|
+
def secret_id_ttl(self, value: Optional[pulumi.Input[builtins.int]]):
|
507
508
|
pulumi.set(self, "secret_id_ttl", value)
|
508
509
|
|
509
510
|
@property
|
510
511
|
@pulumi.getter(name="tokenBoundCidrs")
|
511
|
-
def token_bound_cidrs(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]:
|
512
|
+
def token_bound_cidrs(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]:
|
512
513
|
"""
|
513
514
|
Specifies the blocks of IP addresses which are allowed to use the generated token
|
514
515
|
"""
|
515
516
|
return pulumi.get(self, "token_bound_cidrs")
|
516
517
|
|
517
518
|
@token_bound_cidrs.setter
|
518
|
-
def token_bound_cidrs(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]):
|
519
|
+
def token_bound_cidrs(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]):
|
519
520
|
pulumi.set(self, "token_bound_cidrs", value)
|
520
521
|
|
521
522
|
@property
|
522
523
|
@pulumi.getter(name="tokenExplicitMaxTtl")
|
523
|
-
def token_explicit_max_ttl(self) -> Optional[pulumi.Input[int]]:
|
524
|
+
def token_explicit_max_ttl(self) -> Optional[pulumi.Input[builtins.int]]:
|
524
525
|
"""
|
525
526
|
Generated Token's Explicit Maximum TTL in seconds
|
526
527
|
"""
|
527
528
|
return pulumi.get(self, "token_explicit_max_ttl")
|
528
529
|
|
529
530
|
@token_explicit_max_ttl.setter
|
530
|
-
def token_explicit_max_ttl(self, value: Optional[pulumi.Input[int]]):
|
531
|
+
def token_explicit_max_ttl(self, value: Optional[pulumi.Input[builtins.int]]):
|
531
532
|
pulumi.set(self, "token_explicit_max_ttl", value)
|
532
533
|
|
533
534
|
@property
|
534
535
|
@pulumi.getter(name="tokenMaxTtl")
|
535
|
-
def token_max_ttl(self) -> Optional[pulumi.Input[int]]:
|
536
|
+
def token_max_ttl(self) -> Optional[pulumi.Input[builtins.int]]:
|
536
537
|
"""
|
537
538
|
The maximum lifetime of the generated token
|
538
539
|
"""
|
539
540
|
return pulumi.get(self, "token_max_ttl")
|
540
541
|
|
541
542
|
@token_max_ttl.setter
|
542
|
-
def token_max_ttl(self, value: Optional[pulumi.Input[int]]):
|
543
|
+
def token_max_ttl(self, value: Optional[pulumi.Input[builtins.int]]):
|
543
544
|
pulumi.set(self, "token_max_ttl", value)
|
544
545
|
|
545
546
|
@property
|
546
547
|
@pulumi.getter(name="tokenNoDefaultPolicy")
|
547
|
-
def token_no_default_policy(self) -> Optional[pulumi.Input[bool]]:
|
548
|
+
def token_no_default_policy(self) -> Optional[pulumi.Input[builtins.bool]]:
|
548
549
|
"""
|
549
550
|
If true, the 'default' policy will not automatically be added to generated tokens
|
550
551
|
"""
|
551
552
|
return pulumi.get(self, "token_no_default_policy")
|
552
553
|
|
553
554
|
@token_no_default_policy.setter
|
554
|
-
def token_no_default_policy(self, value: Optional[pulumi.Input[bool]]):
|
555
|
+
def token_no_default_policy(self, value: Optional[pulumi.Input[builtins.bool]]):
|
555
556
|
pulumi.set(self, "token_no_default_policy", value)
|
556
557
|
|
557
558
|
@property
|
558
559
|
@pulumi.getter(name="tokenNumUses")
|
559
|
-
def token_num_uses(self) -> Optional[pulumi.Input[int]]:
|
560
|
+
def token_num_uses(self) -> Optional[pulumi.Input[builtins.int]]:
|
560
561
|
"""
|
561
562
|
The maximum number of times a token may be used, a value of zero means unlimited
|
562
563
|
"""
|
563
564
|
return pulumi.get(self, "token_num_uses")
|
564
565
|
|
565
566
|
@token_num_uses.setter
|
566
|
-
def token_num_uses(self, value: Optional[pulumi.Input[int]]):
|
567
|
+
def token_num_uses(self, value: Optional[pulumi.Input[builtins.int]]):
|
567
568
|
pulumi.set(self, "token_num_uses", value)
|
568
569
|
|
569
570
|
@property
|
570
571
|
@pulumi.getter(name="tokenPeriod")
|
571
|
-
def token_period(self) -> Optional[pulumi.Input[int]]:
|
572
|
+
def token_period(self) -> Optional[pulumi.Input[builtins.int]]:
|
572
573
|
"""
|
573
574
|
Generated Token's Period
|
574
575
|
"""
|
575
576
|
return pulumi.get(self, "token_period")
|
576
577
|
|
577
578
|
@token_period.setter
|
578
|
-
def token_period(self, value: Optional[pulumi.Input[int]]):
|
579
|
+
def token_period(self, value: Optional[pulumi.Input[builtins.int]]):
|
579
580
|
pulumi.set(self, "token_period", value)
|
580
581
|
|
581
582
|
@property
|
582
583
|
@pulumi.getter(name="tokenPolicies")
|
583
|
-
def token_policies(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]:
|
584
|
+
def token_policies(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]:
|
584
585
|
"""
|
585
586
|
Generated Token's Policies
|
586
587
|
"""
|
587
588
|
return pulumi.get(self, "token_policies")
|
588
589
|
|
589
590
|
@token_policies.setter
|
590
|
-
def token_policies(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]):
|
591
|
+
def token_policies(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]):
|
591
592
|
pulumi.set(self, "token_policies", value)
|
592
593
|
|
593
594
|
@property
|
594
595
|
@pulumi.getter(name="tokenTtl")
|
595
|
-
def token_ttl(self) -> Optional[pulumi.Input[int]]:
|
596
|
+
def token_ttl(self) -> Optional[pulumi.Input[builtins.int]]:
|
596
597
|
"""
|
597
598
|
The initial ttl of the token to generate in seconds
|
598
599
|
"""
|
599
600
|
return pulumi.get(self, "token_ttl")
|
600
601
|
|
601
602
|
@token_ttl.setter
|
602
|
-
def token_ttl(self, value: Optional[pulumi.Input[int]]):
|
603
|
+
def token_ttl(self, value: Optional[pulumi.Input[builtins.int]]):
|
603
604
|
pulumi.set(self, "token_ttl", value)
|
604
605
|
|
605
606
|
@property
|
606
607
|
@pulumi.getter(name="tokenType")
|
607
|
-
def token_type(self) -> Optional[pulumi.Input[str]]:
|
608
|
+
def token_type(self) -> Optional[pulumi.Input[builtins.str]]:
|
608
609
|
"""
|
609
610
|
The type of token to generate, service or batch
|
610
611
|
"""
|
611
612
|
return pulumi.get(self, "token_type")
|
612
613
|
|
613
614
|
@token_type.setter
|
614
|
-
def token_type(self, value: Optional[pulumi.Input[str]]):
|
615
|
+
def token_type(self, value: Optional[pulumi.Input[builtins.str]]):
|
615
616
|
pulumi.set(self, "token_type", value)
|
616
617
|
|
617
618
|
|
@@ -620,23 +621,23 @@ class AuthBackendRole(pulumi.CustomResource):
|
|
620
621
|
def __init__(__self__,
|
621
622
|
resource_name: str,
|
622
623
|
opts: Optional[pulumi.ResourceOptions] = None,
|
623
|
-
backend: Optional[pulumi.Input[str]] = None,
|
624
|
-
bind_secret_id: Optional[pulumi.Input[bool]] = None,
|
625
|
-
namespace: Optional[pulumi.Input[str]] = None,
|
626
|
-
role_id: Optional[pulumi.Input[str]] = None,
|
627
|
-
role_name: Optional[pulumi.Input[str]] = None,
|
628
|
-
secret_id_bound_cidrs: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
|
629
|
-
secret_id_num_uses: Optional[pulumi.Input[int]] = None,
|
630
|
-
secret_id_ttl: Optional[pulumi.Input[int]] = None,
|
631
|
-
token_bound_cidrs: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
|
632
|
-
token_explicit_max_ttl: Optional[pulumi.Input[int]] = None,
|
633
|
-
token_max_ttl: Optional[pulumi.Input[int]] = None,
|
634
|
-
token_no_default_policy: Optional[pulumi.Input[bool]] = None,
|
635
|
-
token_num_uses: Optional[pulumi.Input[int]] = None,
|
636
|
-
token_period: Optional[pulumi.Input[int]] = None,
|
637
|
-
token_policies: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
|
638
|
-
token_ttl: Optional[pulumi.Input[int]] = None,
|
639
|
-
token_type: Optional[pulumi.Input[str]] = None,
|
624
|
+
backend: Optional[pulumi.Input[builtins.str]] = None,
|
625
|
+
bind_secret_id: Optional[pulumi.Input[builtins.bool]] = None,
|
626
|
+
namespace: Optional[pulumi.Input[builtins.str]] = None,
|
627
|
+
role_id: Optional[pulumi.Input[builtins.str]] = None,
|
628
|
+
role_name: Optional[pulumi.Input[builtins.str]] = None,
|
629
|
+
secret_id_bound_cidrs: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
|
630
|
+
secret_id_num_uses: Optional[pulumi.Input[builtins.int]] = None,
|
631
|
+
secret_id_ttl: Optional[pulumi.Input[builtins.int]] = None,
|
632
|
+
token_bound_cidrs: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
|
633
|
+
token_explicit_max_ttl: Optional[pulumi.Input[builtins.int]] = None,
|
634
|
+
token_max_ttl: Optional[pulumi.Input[builtins.int]] = None,
|
635
|
+
token_no_default_policy: Optional[pulumi.Input[builtins.bool]] = None,
|
636
|
+
token_num_uses: Optional[pulumi.Input[builtins.int]] = None,
|
637
|
+
token_period: Optional[pulumi.Input[builtins.int]] = None,
|
638
|
+
token_policies: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
|
639
|
+
token_ttl: Optional[pulumi.Input[builtins.int]] = None,
|
640
|
+
token_type: Optional[pulumi.Input[builtins.str]] = None,
|
640
641
|
__props__=None):
|
641
642
|
"""
|
642
643
|
Manages an AppRole auth backend role in a Vault server. See the [Vault
|
@@ -670,33 +671,33 @@ class AuthBackendRole(pulumi.CustomResource):
|
|
670
671
|
|
671
672
|
:param str resource_name: The name of the resource.
|
672
673
|
:param pulumi.ResourceOptions opts: Options for the resource.
|
673
|
-
:param pulumi.Input[str] backend: The unique name of the auth backend to configure.
|
674
|
+
:param pulumi.Input[builtins.str] backend: The unique name of the auth backend to configure.
|
674
675
|
Defaults to `approle`.
|
675
|
-
:param pulumi.Input[bool] bind_secret_id: Whether or not to require `secret_id` to be
|
676
|
+
:param pulumi.Input[builtins.bool] bind_secret_id: Whether or not to require `secret_id` to be
|
676
677
|
presented when logging in using this AppRole. Defaults to `true`.
|
677
|
-
:param pulumi.Input[str] namespace: The namespace to provision the resource in.
|
678
|
+
:param pulumi.Input[builtins.str] namespace: The namespace to provision the resource in.
|
678
679
|
The value should not contain leading or trailing forward slashes.
|
679
680
|
The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault/index.html#namespace).
|
680
681
|
*Available only for Vault Enterprise*.
|
681
|
-
:param pulumi.Input[str] role_id: The RoleID of this role. If not specified, one will be
|
682
|
+
:param pulumi.Input[builtins.str] role_id: The RoleID of this role. If not specified, one will be
|
682
683
|
auto-generated.
|
683
|
-
:param pulumi.Input[str] role_name: The name of the role.
|
684
|
-
:param pulumi.Input[Sequence[pulumi.Input[str]]] secret_id_bound_cidrs: If set,
|
684
|
+
:param pulumi.Input[builtins.str] role_name: The name of the role.
|
685
|
+
:param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] secret_id_bound_cidrs: If set,
|
685
686
|
specifies blocks of IP addresses which can perform the login operation.
|
686
|
-
:param pulumi.Input[int] secret_id_num_uses: The number of times any particular SecretID
|
687
|
+
:param pulumi.Input[builtins.int] secret_id_num_uses: The number of times any particular SecretID
|
687
688
|
can be used to fetch a token from this AppRole, after which the SecretID will
|
688
689
|
expire. A value of zero will allow unlimited uses.
|
689
|
-
:param pulumi.Input[int] secret_id_ttl: The number of seconds after which any SecretID
|
690
|
+
:param pulumi.Input[builtins.int] secret_id_ttl: The number of seconds after which any SecretID
|
690
691
|
expires.
|
691
|
-
:param pulumi.Input[Sequence[pulumi.Input[str]]] token_bound_cidrs: Specifies the blocks of IP addresses which are allowed to use the generated token
|
692
|
-
:param pulumi.Input[int] token_explicit_max_ttl: Generated Token's Explicit Maximum TTL in seconds
|
693
|
-
:param pulumi.Input[int] token_max_ttl: The maximum lifetime of the generated token
|
694
|
-
:param pulumi.Input[bool] token_no_default_policy: If true, the 'default' policy will not automatically be added to generated tokens
|
695
|
-
:param pulumi.Input[int] token_num_uses: The maximum number of times a token may be used, a value of zero means unlimited
|
696
|
-
:param pulumi.Input[int] token_period: Generated Token's Period
|
697
|
-
:param pulumi.Input[Sequence[pulumi.Input[str]]] token_policies: Generated Token's Policies
|
698
|
-
:param pulumi.Input[int] token_ttl: The initial ttl of the token to generate in seconds
|
699
|
-
:param pulumi.Input[str] token_type: The type of token to generate, service or batch
|
692
|
+
:param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] token_bound_cidrs: Specifies the blocks of IP addresses which are allowed to use the generated token
|
693
|
+
:param pulumi.Input[builtins.int] token_explicit_max_ttl: Generated Token's Explicit Maximum TTL in seconds
|
694
|
+
:param pulumi.Input[builtins.int] token_max_ttl: The maximum lifetime of the generated token
|
695
|
+
:param pulumi.Input[builtins.bool] token_no_default_policy: If true, the 'default' policy will not automatically be added to generated tokens
|
696
|
+
:param pulumi.Input[builtins.int] token_num_uses: The maximum number of times a token may be used, a value of zero means unlimited
|
697
|
+
:param pulumi.Input[builtins.int] token_period: Generated Token's Period
|
698
|
+
:param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] token_policies: Generated Token's Policies
|
699
|
+
:param pulumi.Input[builtins.int] token_ttl: The initial ttl of the token to generate in seconds
|
700
|
+
:param pulumi.Input[builtins.str] token_type: The type of token to generate, service or batch
|
700
701
|
"""
|
701
702
|
...
|
702
703
|
@overload
|
@@ -749,23 +750,23 @@ class AuthBackendRole(pulumi.CustomResource):
|
|
749
750
|
def _internal_init(__self__,
|
750
751
|
resource_name: str,
|
751
752
|
opts: Optional[pulumi.ResourceOptions] = None,
|
752
|
-
backend: Optional[pulumi.Input[str]] = None,
|
753
|
-
bind_secret_id: Optional[pulumi.Input[bool]] = None,
|
754
|
-
namespace: Optional[pulumi.Input[str]] = None,
|
755
|
-
role_id: Optional[pulumi.Input[str]] = None,
|
756
|
-
role_name: Optional[pulumi.Input[str]] = None,
|
757
|
-
secret_id_bound_cidrs: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
|
758
|
-
secret_id_num_uses: Optional[pulumi.Input[int]] = None,
|
759
|
-
secret_id_ttl: Optional[pulumi.Input[int]] = None,
|
760
|
-
token_bound_cidrs: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
|
761
|
-
token_explicit_max_ttl: Optional[pulumi.Input[int]] = None,
|
762
|
-
token_max_ttl: Optional[pulumi.Input[int]] = None,
|
763
|
-
token_no_default_policy: Optional[pulumi.Input[bool]] = None,
|
764
|
-
token_num_uses: Optional[pulumi.Input[int]] = None,
|
765
|
-
token_period: Optional[pulumi.Input[int]] = None,
|
766
|
-
token_policies: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
|
767
|
-
token_ttl: Optional[pulumi.Input[int]] = None,
|
768
|
-
token_type: Optional[pulumi.Input[str]] = None,
|
753
|
+
backend: Optional[pulumi.Input[builtins.str]] = None,
|
754
|
+
bind_secret_id: Optional[pulumi.Input[builtins.bool]] = None,
|
755
|
+
namespace: Optional[pulumi.Input[builtins.str]] = None,
|
756
|
+
role_id: Optional[pulumi.Input[builtins.str]] = None,
|
757
|
+
role_name: Optional[pulumi.Input[builtins.str]] = None,
|
758
|
+
secret_id_bound_cidrs: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
|
759
|
+
secret_id_num_uses: Optional[pulumi.Input[builtins.int]] = None,
|
760
|
+
secret_id_ttl: Optional[pulumi.Input[builtins.int]] = None,
|
761
|
+
token_bound_cidrs: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
|
762
|
+
token_explicit_max_ttl: Optional[pulumi.Input[builtins.int]] = None,
|
763
|
+
token_max_ttl: Optional[pulumi.Input[builtins.int]] = None,
|
764
|
+
token_no_default_policy: Optional[pulumi.Input[builtins.bool]] = None,
|
765
|
+
token_num_uses: Optional[pulumi.Input[builtins.int]] = None,
|
766
|
+
token_period: Optional[pulumi.Input[builtins.int]] = None,
|
767
|
+
token_policies: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
|
768
|
+
token_ttl: Optional[pulumi.Input[builtins.int]] = None,
|
769
|
+
token_type: Optional[pulumi.Input[builtins.str]] = None,
|
769
770
|
__props__=None):
|
770
771
|
opts = pulumi.ResourceOptions.merge(_utilities.get_resource_opts_defaults(), opts)
|
771
772
|
if not isinstance(opts, pulumi.ResourceOptions):
|
@@ -804,23 +805,23 @@ class AuthBackendRole(pulumi.CustomResource):
|
|
804
805
|
def get(resource_name: str,
|
805
806
|
id: pulumi.Input[str],
|
806
807
|
opts: Optional[pulumi.ResourceOptions] = None,
|
807
|
-
backend: Optional[pulumi.Input[str]] = None,
|
808
|
-
bind_secret_id: Optional[pulumi.Input[bool]] = None,
|
809
|
-
namespace: Optional[pulumi.Input[str]] = None,
|
810
|
-
role_id: Optional[pulumi.Input[str]] = None,
|
811
|
-
role_name: Optional[pulumi.Input[str]] = None,
|
812
|
-
secret_id_bound_cidrs: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
|
813
|
-
secret_id_num_uses: Optional[pulumi.Input[int]] = None,
|
814
|
-
secret_id_ttl: Optional[pulumi.Input[int]] = None,
|
815
|
-
token_bound_cidrs: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
|
816
|
-
token_explicit_max_ttl: Optional[pulumi.Input[int]] = None,
|
817
|
-
token_max_ttl: Optional[pulumi.Input[int]] = None,
|
818
|
-
token_no_default_policy: Optional[pulumi.Input[bool]] = None,
|
819
|
-
token_num_uses: Optional[pulumi.Input[int]] = None,
|
820
|
-
token_period: Optional[pulumi.Input[int]] = None,
|
821
|
-
token_policies: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
|
822
|
-
token_ttl: Optional[pulumi.Input[int]] = None,
|
823
|
-
token_type: Optional[pulumi.Input[str]] = None) -> 'AuthBackendRole':
|
808
|
+
backend: Optional[pulumi.Input[builtins.str]] = None,
|
809
|
+
bind_secret_id: Optional[pulumi.Input[builtins.bool]] = None,
|
810
|
+
namespace: Optional[pulumi.Input[builtins.str]] = None,
|
811
|
+
role_id: Optional[pulumi.Input[builtins.str]] = None,
|
812
|
+
role_name: Optional[pulumi.Input[builtins.str]] = None,
|
813
|
+
secret_id_bound_cidrs: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
|
814
|
+
secret_id_num_uses: Optional[pulumi.Input[builtins.int]] = None,
|
815
|
+
secret_id_ttl: Optional[pulumi.Input[builtins.int]] = None,
|
816
|
+
token_bound_cidrs: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
|
817
|
+
token_explicit_max_ttl: Optional[pulumi.Input[builtins.int]] = None,
|
818
|
+
token_max_ttl: Optional[pulumi.Input[builtins.int]] = None,
|
819
|
+
token_no_default_policy: Optional[pulumi.Input[builtins.bool]] = None,
|
820
|
+
token_num_uses: Optional[pulumi.Input[builtins.int]] = None,
|
821
|
+
token_period: Optional[pulumi.Input[builtins.int]] = None,
|
822
|
+
token_policies: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
|
823
|
+
token_ttl: Optional[pulumi.Input[builtins.int]] = None,
|
824
|
+
token_type: Optional[pulumi.Input[builtins.str]] = None) -> 'AuthBackendRole':
|
824
825
|
"""
|
825
826
|
Get an existing AuthBackendRole resource's state with the given name, id, and optional extra
|
826
827
|
properties used to qualify the lookup.
|
@@ -828,33 +829,33 @@ class AuthBackendRole(pulumi.CustomResource):
|
|
828
829
|
:param str resource_name: The unique name of the resulting resource.
|
829
830
|
:param pulumi.Input[str] id: The unique provider ID of the resource to lookup.
|
830
831
|
:param pulumi.ResourceOptions opts: Options for the resource.
|
831
|
-
:param pulumi.Input[str] backend: The unique name of the auth backend to configure.
|
832
|
+
:param pulumi.Input[builtins.str] backend: The unique name of the auth backend to configure.
|
832
833
|
Defaults to `approle`.
|
833
|
-
:param pulumi.Input[bool] bind_secret_id: Whether or not to require `secret_id` to be
|
834
|
+
:param pulumi.Input[builtins.bool] bind_secret_id: Whether or not to require `secret_id` to be
|
834
835
|
presented when logging in using this AppRole. Defaults to `true`.
|
835
|
-
:param pulumi.Input[str] namespace: The namespace to provision the resource in.
|
836
|
+
:param pulumi.Input[builtins.str] namespace: The namespace to provision the resource in.
|
836
837
|
The value should not contain leading or trailing forward slashes.
|
837
838
|
The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault/index.html#namespace).
|
838
839
|
*Available only for Vault Enterprise*.
|
839
|
-
:param pulumi.Input[str] role_id: The RoleID of this role. If not specified, one will be
|
840
|
+
:param pulumi.Input[builtins.str] role_id: The RoleID of this role. If not specified, one will be
|
840
841
|
auto-generated.
|
841
|
-
:param pulumi.Input[str] role_name: The name of the role.
|
842
|
-
:param pulumi.Input[Sequence[pulumi.Input[str]]] secret_id_bound_cidrs: If set,
|
842
|
+
:param pulumi.Input[builtins.str] role_name: The name of the role.
|
843
|
+
:param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] secret_id_bound_cidrs: If set,
|
843
844
|
specifies blocks of IP addresses which can perform the login operation.
|
844
|
-
:param pulumi.Input[int] secret_id_num_uses: The number of times any particular SecretID
|
845
|
+
:param pulumi.Input[builtins.int] secret_id_num_uses: The number of times any particular SecretID
|
845
846
|
can be used to fetch a token from this AppRole, after which the SecretID will
|
846
847
|
expire. A value of zero will allow unlimited uses.
|
847
|
-
:param pulumi.Input[int] secret_id_ttl: The number of seconds after which any SecretID
|
848
|
+
:param pulumi.Input[builtins.int] secret_id_ttl: The number of seconds after which any SecretID
|
848
849
|
expires.
|
849
|
-
:param pulumi.Input[Sequence[pulumi.Input[str]]] token_bound_cidrs: Specifies the blocks of IP addresses which are allowed to use the generated token
|
850
|
-
:param pulumi.Input[int] token_explicit_max_ttl: Generated Token's Explicit Maximum TTL in seconds
|
851
|
-
:param pulumi.Input[int] token_max_ttl: The maximum lifetime of the generated token
|
852
|
-
:param pulumi.Input[bool] token_no_default_policy: If true, the 'default' policy will not automatically be added to generated tokens
|
853
|
-
:param pulumi.Input[int] token_num_uses: The maximum number of times a token may be used, a value of zero means unlimited
|
854
|
-
:param pulumi.Input[int] token_period: Generated Token's Period
|
855
|
-
:param pulumi.Input[Sequence[pulumi.Input[str]]] token_policies: Generated Token's Policies
|
856
|
-
:param pulumi.Input[int] token_ttl: The initial ttl of the token to generate in seconds
|
857
|
-
:param pulumi.Input[str] token_type: The type of token to generate, service or batch
|
850
|
+
:param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] token_bound_cidrs: Specifies the blocks of IP addresses which are allowed to use the generated token
|
851
|
+
:param pulumi.Input[builtins.int] token_explicit_max_ttl: Generated Token's Explicit Maximum TTL in seconds
|
852
|
+
:param pulumi.Input[builtins.int] token_max_ttl: The maximum lifetime of the generated token
|
853
|
+
:param pulumi.Input[builtins.bool] token_no_default_policy: If true, the 'default' policy will not automatically be added to generated tokens
|
854
|
+
:param pulumi.Input[builtins.int] token_num_uses: The maximum number of times a token may be used, a value of zero means unlimited
|
855
|
+
:param pulumi.Input[builtins.int] token_period: Generated Token's Period
|
856
|
+
:param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] token_policies: Generated Token's Policies
|
857
|
+
:param pulumi.Input[builtins.int] token_ttl: The initial ttl of the token to generate in seconds
|
858
|
+
:param pulumi.Input[builtins.str] token_type: The type of token to generate, service or batch
|
858
859
|
"""
|
859
860
|
opts = pulumi.ResourceOptions.merge(opts, pulumi.ResourceOptions(id=id))
|
860
861
|
|
@@ -881,7 +882,7 @@ class AuthBackendRole(pulumi.CustomResource):
|
|
881
882
|
|
882
883
|
@property
|
883
884
|
@pulumi.getter
|
884
|
-
def backend(self) -> pulumi.Output[Optional[str]]:
|
885
|
+
def backend(self) -> pulumi.Output[Optional[builtins.str]]:
|
885
886
|
"""
|
886
887
|
The unique name of the auth backend to configure.
|
887
888
|
Defaults to `approle`.
|
@@ -890,7 +891,7 @@ class AuthBackendRole(pulumi.CustomResource):
|
|
890
891
|
|
891
892
|
@property
|
892
893
|
@pulumi.getter(name="bindSecretId")
|
893
|
-
def bind_secret_id(self) -> pulumi.Output[Optional[bool]]:
|
894
|
+
def bind_secret_id(self) -> pulumi.Output[Optional[builtins.bool]]:
|
894
895
|
"""
|
895
896
|
Whether or not to require `secret_id` to be
|
896
897
|
presented when logging in using this AppRole. Defaults to `true`.
|
@@ -899,7 +900,7 @@ class AuthBackendRole(pulumi.CustomResource):
|
|
899
900
|
|
900
901
|
@property
|
901
902
|
@pulumi.getter
|
902
|
-
def namespace(self) -> pulumi.Output[Optional[str]]:
|
903
|
+
def namespace(self) -> pulumi.Output[Optional[builtins.str]]:
|
903
904
|
"""
|
904
905
|
The namespace to provision the resource in.
|
905
906
|
The value should not contain leading or trailing forward slashes.
|
@@ -910,7 +911,7 @@ class AuthBackendRole(pulumi.CustomResource):
|
|
910
911
|
|
911
912
|
@property
|
912
913
|
@pulumi.getter(name="roleId")
|
913
|
-
def role_id(self) -> pulumi.Output[str]:
|
914
|
+
def role_id(self) -> pulumi.Output[builtins.str]:
|
914
915
|
"""
|
915
916
|
The RoleID of this role. If not specified, one will be
|
916
917
|
auto-generated.
|
@@ -919,7 +920,7 @@ class AuthBackendRole(pulumi.CustomResource):
|
|
919
920
|
|
920
921
|
@property
|
921
922
|
@pulumi.getter(name="roleName")
|
922
|
-
def role_name(self) -> pulumi.Output[str]:
|
923
|
+
def role_name(self) -> pulumi.Output[builtins.str]:
|
923
924
|
"""
|
924
925
|
The name of the role.
|
925
926
|
"""
|
@@ -927,7 +928,7 @@ class AuthBackendRole(pulumi.CustomResource):
|
|
927
928
|
|
928
929
|
@property
|
929
930
|
@pulumi.getter(name="secretIdBoundCidrs")
|
930
|
-
def secret_id_bound_cidrs(self) -> pulumi.Output[Optional[Sequence[str]]]:
|
931
|
+
def secret_id_bound_cidrs(self) -> pulumi.Output[Optional[Sequence[builtins.str]]]:
|
931
932
|
"""
|
932
933
|
If set,
|
933
934
|
specifies blocks of IP addresses which can perform the login operation.
|
@@ -936,7 +937,7 @@ class AuthBackendRole(pulumi.CustomResource):
|
|
936
937
|
|
937
938
|
@property
|
938
939
|
@pulumi.getter(name="secretIdNumUses")
|
939
|
-
def secret_id_num_uses(self) -> pulumi.Output[Optional[int]]:
|
940
|
+
def secret_id_num_uses(self) -> pulumi.Output[Optional[builtins.int]]:
|
940
941
|
"""
|
941
942
|
The number of times any particular SecretID
|
942
943
|
can be used to fetch a token from this AppRole, after which the SecretID will
|
@@ -946,7 +947,7 @@ class AuthBackendRole(pulumi.CustomResource):
|
|
946
947
|
|
947
948
|
@property
|
948
949
|
@pulumi.getter(name="secretIdTtl")
|
949
|
-
def secret_id_ttl(self) -> pulumi.Output[Optional[int]]:
|
950
|
+
def secret_id_ttl(self) -> pulumi.Output[Optional[builtins.int]]:
|
950
951
|
"""
|
951
952
|
The number of seconds after which any SecretID
|
952
953
|
expires.
|
@@ -955,7 +956,7 @@ class AuthBackendRole(pulumi.CustomResource):
|
|
955
956
|
|
956
957
|
@property
|
957
958
|
@pulumi.getter(name="tokenBoundCidrs")
|
958
|
-
def token_bound_cidrs(self) -> pulumi.Output[Optional[Sequence[str]]]:
|
959
|
+
def token_bound_cidrs(self) -> pulumi.Output[Optional[Sequence[builtins.str]]]:
|
959
960
|
"""
|
960
961
|
Specifies the blocks of IP addresses which are allowed to use the generated token
|
961
962
|
"""
|
@@ -963,7 +964,7 @@ class AuthBackendRole(pulumi.CustomResource):
|
|
963
964
|
|
964
965
|
@property
|
965
966
|
@pulumi.getter(name="tokenExplicitMaxTtl")
|
966
|
-
def token_explicit_max_ttl(self) -> pulumi.Output[Optional[int]]:
|
967
|
+
def token_explicit_max_ttl(self) -> pulumi.Output[Optional[builtins.int]]:
|
967
968
|
"""
|
968
969
|
Generated Token's Explicit Maximum TTL in seconds
|
969
970
|
"""
|
@@ -971,7 +972,7 @@ class AuthBackendRole(pulumi.CustomResource):
|
|
971
972
|
|
972
973
|
@property
|
973
974
|
@pulumi.getter(name="tokenMaxTtl")
|
974
|
-
def token_max_ttl(self) -> pulumi.Output[Optional[int]]:
|
975
|
+
def token_max_ttl(self) -> pulumi.Output[Optional[builtins.int]]:
|
975
976
|
"""
|
976
977
|
The maximum lifetime of the generated token
|
977
978
|
"""
|
@@ -979,7 +980,7 @@ class AuthBackendRole(pulumi.CustomResource):
|
|
979
980
|
|
980
981
|
@property
|
981
982
|
@pulumi.getter(name="tokenNoDefaultPolicy")
|
982
|
-
def token_no_default_policy(self) -> pulumi.Output[Optional[bool]]:
|
983
|
+
def token_no_default_policy(self) -> pulumi.Output[Optional[builtins.bool]]:
|
983
984
|
"""
|
984
985
|
If true, the 'default' policy will not automatically be added to generated tokens
|
985
986
|
"""
|
@@ -987,7 +988,7 @@ class AuthBackendRole(pulumi.CustomResource):
|
|
987
988
|
|
988
989
|
@property
|
989
990
|
@pulumi.getter(name="tokenNumUses")
|
990
|
-
def token_num_uses(self) -> pulumi.Output[Optional[int]]:
|
991
|
+
def token_num_uses(self) -> pulumi.Output[Optional[builtins.int]]:
|
991
992
|
"""
|
992
993
|
The maximum number of times a token may be used, a value of zero means unlimited
|
993
994
|
"""
|
@@ -995,7 +996,7 @@ class AuthBackendRole(pulumi.CustomResource):
|
|
995
996
|
|
996
997
|
@property
|
997
998
|
@pulumi.getter(name="tokenPeriod")
|
998
|
-
def token_period(self) -> pulumi.Output[Optional[int]]:
|
999
|
+
def token_period(self) -> pulumi.Output[Optional[builtins.int]]:
|
999
1000
|
"""
|
1000
1001
|
Generated Token's Period
|
1001
1002
|
"""
|
@@ -1003,7 +1004,7 @@ class AuthBackendRole(pulumi.CustomResource):
|
|
1003
1004
|
|
1004
1005
|
@property
|
1005
1006
|
@pulumi.getter(name="tokenPolicies")
|
1006
|
-
def token_policies(self) -> pulumi.Output[Optional[Sequence[str]]]:
|
1007
|
+
def token_policies(self) -> pulumi.Output[Optional[Sequence[builtins.str]]]:
|
1007
1008
|
"""
|
1008
1009
|
Generated Token's Policies
|
1009
1010
|
"""
|
@@ -1011,7 +1012,7 @@ class AuthBackendRole(pulumi.CustomResource):
|
|
1011
1012
|
|
1012
1013
|
@property
|
1013
1014
|
@pulumi.getter(name="tokenTtl")
|
1014
|
-
def token_ttl(self) -> pulumi.Output[Optional[int]]:
|
1015
|
+
def token_ttl(self) -> pulumi.Output[Optional[builtins.int]]:
|
1015
1016
|
"""
|
1016
1017
|
The initial ttl of the token to generate in seconds
|
1017
1018
|
"""
|
@@ -1019,7 +1020,7 @@ class AuthBackendRole(pulumi.CustomResource):
|
|
1019
1020
|
|
1020
1021
|
@property
|
1021
1022
|
@pulumi.getter(name="tokenType")
|
1022
|
-
def token_type(self) -> pulumi.Output[Optional[str]]:
|
1023
|
+
def token_type(self) -> pulumi.Output[Optional[builtins.str]]:
|
1023
1024
|
"""
|
1024
1025
|
The type of token to generate, service or batch
|
1025
1026
|
"""
|