PyPI - pulumi-vault - Versions diffs - 7.1.0__py3-none-any.whl → 7.2.0__py3-none-any.whl - Mend

pulumi-vault 7.1.0py3-none-any.whl → 7.2.0py3-none-any.whl

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (269) hide show

pulumi_vault/__init__.py +19 -1
pulumi_vault/_inputs.py +873 -673
pulumi_vault/ad/__init__.py +1 -1
pulumi_vault/ad/get_access_credentials.py +27 -28
pulumi_vault/ad/secret_backend.py +579 -580
pulumi_vault/ad/secret_library.py +120 -121
pulumi_vault/ad/secret_role.py +104 -105
pulumi_vault/alicloud/__init__.py +1 -1
pulumi_vault/alicloud/auth_backend_role.py +222 -223
pulumi_vault/approle/__init__.py +1 -1
pulumi_vault/approle/auth_backend_login.py +138 -139
pulumi_vault/approle/auth_backend_role.py +292 -293
pulumi_vault/approle/auth_backend_role_secret_id.py +202 -203
pulumi_vault/approle/get_auth_backend_role_id.py +23 -24
pulumi_vault/audit.py +103 -104
pulumi_vault/audit_request_header.py +52 -53
pulumi_vault/auth_backend.py +132 -133
pulumi_vault/aws/__init__.py +1 -1
pulumi_vault/aws/auth_backend_cert.py +86 -87
pulumi_vault/aws/auth_backend_client.py +307 -308
pulumi_vault/aws/auth_backend_config_identity.py +103 -104
pulumi_vault/aws/auth_backend_identity_whitelist.py +69 -70
pulumi_vault/aws/auth_backend_login.py +258 -259
pulumi_vault/aws/auth_backend_role.py +486 -487
pulumi_vault/aws/auth_backend_role_tag.py +155 -156
pulumi_vault/aws/auth_backend_roletag_blacklist.py +69 -70
pulumi_vault/aws/auth_backend_sts_role.py +86 -87
pulumi_vault/aws/get_access_credentials.py +59 -60
pulumi_vault/aws/get_static_access_credentials.py +19 -20
pulumi_vault/aws/secret_backend.py +1016 -439
pulumi_vault/aws/secret_backend_role.py +256 -257
pulumi_vault/aws/secret_backend_static_role.py +137 -138
pulumi_vault/azure/__init__.py +1 -1
pulumi_vault/azure/_inputs.py +26 -27
pulumi_vault/azure/auth_backend_config.py +222 -223
pulumi_vault/azure/auth_backend_role.py +307 -308
pulumi_vault/azure/backend.py +1057 -285
pulumi_vault/azure/backend_role.py +194 -195
pulumi_vault/azure/get_access_credentials.py +75 -76
pulumi_vault/azure/outputs.py +16 -17
pulumi_vault/cert_auth_backend_role.py +443 -444
pulumi_vault/config/__init__.py +1 -1
pulumi_vault/config/__init__.pyi +1 -2
pulumi_vault/config/_inputs.py +13 -14
pulumi_vault/config/outputs.py +380 -381
pulumi_vault/config/ui_custom_message.py +140 -141
pulumi_vault/config/vars.py +31 -32
pulumi_vault/consul/__init__.py +1 -1
pulumi_vault/consul/secret_backend.py +887 -256
pulumi_vault/consul/secret_backend_role.py +222 -223
pulumi_vault/database/__init__.py +1 -1
pulumi_vault/database/_inputs.py +3167 -3168
pulumi_vault/database/outputs.py +2123 -2124
pulumi_vault/database/secret_backend_connection.py +259 -260
pulumi_vault/database/secret_backend_role.py +205 -206
pulumi_vault/database/secret_backend_static_role.py +218 -219
pulumi_vault/database/secrets_mount.py +426 -380
pulumi_vault/egp_policy.py +86 -87
pulumi_vault/gcp/__init__.py +1 -1
pulumi_vault/gcp/_inputs.py +98 -99
pulumi_vault/gcp/auth_backend.py +322 -323
pulumi_vault/gcp/auth_backend_role.py +347 -348
pulumi_vault/gcp/get_auth_backend_role.py +91 -92
pulumi_vault/gcp/outputs.py +66 -67
pulumi_vault/gcp/secret_backend.py +878 -336
pulumi_vault/gcp/secret_impersonated_account.py +112 -113
pulumi_vault/gcp/secret_roleset.py +115 -116
pulumi_vault/gcp/secret_static_account.py +115 -116
pulumi_vault/generic/__init__.py +1 -1
pulumi_vault/generic/endpoint.py +138 -139
pulumi_vault/generic/get_secret.py +39 -40
pulumi_vault/generic/secret.py +95 -96
pulumi_vault/get_auth_backend.py +29 -30
pulumi_vault/get_auth_backends.py +19 -20
pulumi_vault/get_namespace.py +21 -22
pulumi_vault/get_namespaces.py +19 -20
pulumi_vault/get_nomad_access_token.py +25 -26
pulumi_vault/get_policy_document.py +10 -11
pulumi_vault/get_raft_autopilot_state.py +31 -32
pulumi_vault/github/__init__.py +1 -1
pulumi_vault/github/_inputs.py +50 -51
pulumi_vault/github/auth_backend.py +285 -286
pulumi_vault/github/outputs.py +34 -35
pulumi_vault/github/team.py +69 -70
pulumi_vault/github/user.py +69 -70
pulumi_vault/identity/__init__.py +1 -1
pulumi_vault/identity/entity.py +103 -104
pulumi_vault/identity/entity_alias.py +86 -87
pulumi_vault/identity/entity_policies.py +78 -79
pulumi_vault/identity/get_entity.py +62 -63
pulumi_vault/identity/get_group.py +75 -76
pulumi_vault/identity/get_oidc_client_creds.py +19 -20
pulumi_vault/identity/get_oidc_openid_config.py +39 -40
pulumi_vault/identity/get_oidc_public_keys.py +17 -18
pulumi_vault/identity/group.py +171 -172
pulumi_vault/identity/group_alias.py +69 -70
pulumi_vault/identity/group_member_entity_ids.py +69 -70
pulumi_vault/identity/group_member_group_ids.py +69 -70
pulumi_vault/identity/group_policies.py +78 -79
pulumi_vault/identity/mfa_duo.py +183 -184
pulumi_vault/identity/mfa_login_enforcement.py +147 -148
pulumi_vault/identity/mfa_okta.py +166 -167
pulumi_vault/identity/mfa_pingid.py +160 -161
pulumi_vault/identity/mfa_totp.py +217 -218
pulumi_vault/identity/oidc.py +35 -36
pulumi_vault/identity/oidc_assignment.py +69 -70
pulumi_vault/identity/oidc_client.py +155 -156
pulumi_vault/identity/oidc_key.py +103 -104
pulumi_vault/identity/oidc_key_allowed_client_id.py +52 -53
pulumi_vault/identity/oidc_provider.py +112 -113
pulumi_vault/identity/oidc_role.py +103 -104
pulumi_vault/identity/oidc_scope.py +69 -70
pulumi_vault/identity/outputs.py +42 -43
pulumi_vault/jwt/__init__.py +1 -1
pulumi_vault/jwt/_inputs.py +50 -51
pulumi_vault/jwt/auth_backend.py +400 -354
pulumi_vault/jwt/auth_backend_role.py +494 -495
pulumi_vault/jwt/outputs.py +34 -35
pulumi_vault/kmip/__init__.py +1 -1
pulumi_vault/kmip/secret_backend.py +1006 -227
pulumi_vault/kmip/secret_role.py +358 -359
pulumi_vault/kmip/secret_scope.py +69 -70
pulumi_vault/kubernetes/__init__.py +1 -1
pulumi_vault/kubernetes/auth_backend_config.py +171 -172
pulumi_vault/kubernetes/auth_backend_role.py +273 -274
pulumi_vault/kubernetes/get_auth_backend_config.py +57 -58
pulumi_vault/kubernetes/get_auth_backend_role.py +87 -88
pulumi_vault/kubernetes/get_service_account_token.py +51 -52
pulumi_vault/kubernetes/secret_backend.py +431 -385
pulumi_vault/kubernetes/secret_backend_role.py +239 -240
pulumi_vault/kv/__init__.py +1 -1
pulumi_vault/kv/_inputs.py +25 -26
pulumi_vault/kv/get_secret.py +25 -26
pulumi_vault/kv/get_secret_subkeys_v2.py +39 -40
pulumi_vault/kv/get_secret_v2.py +41 -42
pulumi_vault/kv/get_secrets_list.py +17 -18
pulumi_vault/kv/get_secrets_list_v2.py +25 -26
pulumi_vault/kv/outputs.py +17 -18
pulumi_vault/kv/secret.py +61 -62
pulumi_vault/kv/secret_backend_v2.py +86 -87
pulumi_vault/kv/secret_v2.py +184 -185
pulumi_vault/ldap/__init__.py +1 -1
pulumi_vault/ldap/auth_backend.py +716 -717
pulumi_vault/ldap/auth_backend_group.py +69 -70
pulumi_vault/ldap/auth_backend_user.py +86 -87
pulumi_vault/ldap/get_dynamic_credentials.py +27 -28
pulumi_vault/ldap/get_static_credentials.py +29 -30
pulumi_vault/ldap/secret_backend.py +732 -693
pulumi_vault/ldap/secret_backend_dynamic_role.py +154 -155
pulumi_vault/ldap/secret_backend_library_set.py +120 -121
pulumi_vault/ldap/secret_backend_static_role.py +120 -121
pulumi_vault/managed/__init__.py +1 -1
pulumi_vault/managed/_inputs.py +274 -275
pulumi_vault/managed/keys.py +27 -28
pulumi_vault/managed/outputs.py +184 -185
pulumi_vault/mfa_duo.py +137 -138
pulumi_vault/mfa_okta.py +137 -138
pulumi_vault/mfa_pingid.py +149 -150
pulumi_vault/mfa_totp.py +154 -155
pulumi_vault/mongodbatlas/__init__.py +1 -1
pulumi_vault/mongodbatlas/secret_backend.py +78 -79
pulumi_vault/mongodbatlas/secret_role.py +188 -189
pulumi_vault/mount.py +380 -334
pulumi_vault/namespace.py +78 -79
pulumi_vault/nomad_secret_backend.py +909 -271
pulumi_vault/nomad_secret_role.py +103 -104
pulumi_vault/oci_auth_backend.py +683 -0
pulumi_vault/oci_auth_backend_role.py +798 -0
pulumi_vault/okta/__init__.py +1 -1
pulumi_vault/okta/_inputs.py +31 -32
pulumi_vault/okta/auth_backend.py +305 -306
pulumi_vault/okta/auth_backend_group.py +69 -70
pulumi_vault/okta/auth_backend_user.py +86 -87
pulumi_vault/okta/outputs.py +21 -22
pulumi_vault/outputs.py +234 -82
pulumi_vault/pkisecret/__init__.py +1 -1
pulumi_vault/pkisecret/_inputs.py +55 -56
pulumi_vault/pkisecret/backend_acme_eab.py +116 -117
pulumi_vault/pkisecret/backend_config_acme.py +175 -176
pulumi_vault/pkisecret/backend_config_auto_tidy.py +394 -395
pulumi_vault/pkisecret/backend_config_cluster.py +71 -72
pulumi_vault/pkisecret/backend_config_cmpv2.py +132 -133
pulumi_vault/pkisecret/backend_config_est.py +149 -150
pulumi_vault/pkisecret/backend_config_scep.py +205 -159
pulumi_vault/pkisecret/get_backend_cert_metadata.py +37 -38
pulumi_vault/pkisecret/get_backend_config_cmpv2.py +32 -33
pulumi_vault/pkisecret/get_backend_config_est.py +30 -31
pulumi_vault/pkisecret/get_backend_config_scep.py +50 -31
pulumi_vault/pkisecret/get_backend_issuer.py +63 -64
pulumi_vault/pkisecret/get_backend_issuers.py +23 -24
pulumi_vault/pkisecret/get_backend_key.py +29 -30
pulumi_vault/pkisecret/get_backend_keys.py +23 -24
pulumi_vault/pkisecret/outputs.py +61 -62
pulumi_vault/pkisecret/secret_backend_cert.py +415 -416
pulumi_vault/pkisecret/secret_backend_config_ca.py +54 -55
pulumi_vault/pkisecret/secret_backend_config_issuers.py +75 -76
pulumi_vault/pkisecret/secret_backend_config_urls.py +105 -106
pulumi_vault/pkisecret/secret_backend_crl_config.py +241 -242
pulumi_vault/pkisecret/secret_backend_intermediate_cert_request.py +515 -516
pulumi_vault/pkisecret/secret_backend_intermediate_set_signed.py +78 -79
pulumi_vault/pkisecret/secret_backend_issuer.py +286 -287
pulumi_vault/pkisecret/secret_backend_key.py +146 -147
pulumi_vault/pkisecret/secret_backend_role.py +873 -874
pulumi_vault/pkisecret/secret_backend_root_cert.py +677 -678
pulumi_vault/pkisecret/secret_backend_root_sign_intermediate.py +660 -661
pulumi_vault/pkisecret/secret_backend_sign.py +346 -347
pulumi_vault/plugin.py +154 -155
pulumi_vault/plugin_pinned_version.py +52 -53
pulumi_vault/policy.py +52 -53
pulumi_vault/provider.py +160 -161
pulumi_vault/pulumi-plugin.json +1 -1
pulumi_vault/quota_lease_count.py +103 -104
pulumi_vault/quota_rate_limit.py +171 -172
pulumi_vault/rabbitmq/__init__.py +1 -1
pulumi_vault/rabbitmq/_inputs.py +50 -51
pulumi_vault/rabbitmq/outputs.py +34 -35
pulumi_vault/rabbitmq/secret_backend.py +902 -231
pulumi_vault/rabbitmq/secret_backend_role.py +79 -80
pulumi_vault/raft_autopilot.py +137 -138
pulumi_vault/raft_snapshot_agent_config.py +477 -478
pulumi_vault/rgp_policy.py +69 -70
pulumi_vault/saml/__init__.py +1 -1
pulumi_vault/saml/auth_backend.py +188 -189
pulumi_vault/saml/auth_backend_role.py +290 -291
pulumi_vault/scep_auth_backend_role.py +252 -253
pulumi_vault/secrets/__init__.py +1 -1
pulumi_vault/secrets/_inputs.py +19 -20
pulumi_vault/secrets/outputs.py +13 -14
pulumi_vault/secrets/sync_association.py +88 -89
pulumi_vault/secrets/sync_aws_destination.py +180 -181
pulumi_vault/secrets/sync_azure_destination.py +180 -181
pulumi_vault/secrets/sync_config.py +52 -53
pulumi_vault/secrets/sync_gcp_destination.py +129 -130
pulumi_vault/secrets/sync_gh_destination.py +163 -164
pulumi_vault/secrets/sync_github_apps.py +78 -79
pulumi_vault/secrets/sync_vercel_destination.py +146 -147
pulumi_vault/ssh/__init__.py +1 -1
pulumi_vault/ssh/_inputs.py +13 -14
pulumi_vault/ssh/get_secret_backend_sign.py +65 -66
pulumi_vault/ssh/outputs.py +9 -10
pulumi_vault/ssh/secret_backend_ca.py +217 -124
pulumi_vault/ssh/secret_backend_role.py +446 -447
pulumi_vault/terraformcloud/__init__.py +1 -1
pulumi_vault/terraformcloud/secret_backend.py +833 -155
pulumi_vault/terraformcloud/secret_creds.py +93 -94
pulumi_vault/terraformcloud/secret_role.py +117 -118
pulumi_vault/token.py +301 -302
pulumi_vault/tokenauth/__init__.py +1 -1
pulumi_vault/tokenauth/auth_backend_role.py +324 -325
pulumi_vault/transform/__init__.py +1 -1
pulumi_vault/transform/alphabet.py +69 -70
pulumi_vault/transform/get_decode.py +57 -58
pulumi_vault/transform/get_encode.py +57 -58
pulumi_vault/transform/role.py +69 -70
pulumi_vault/transform/template.py +137 -138
pulumi_vault/transform/transformation.py +171 -172
pulumi_vault/transit/__init__.py +1 -1
pulumi_vault/transit/get_cmac.py +47 -48
pulumi_vault/transit/get_decrypt.py +25 -26
pulumi_vault/transit/get_encrypt.py +29 -30
pulumi_vault/transit/get_sign.py +71 -72
pulumi_vault/transit/get_verify.py +83 -84
pulumi_vault/transit/secret_backend_key.py +377 -350
pulumi_vault/transit/secret_cache_config.py +52 -53
{pulumi_vault-7.1.0.dist-info → pulumi_vault-7.2.0.dist-info}/METADATA +1 -1
pulumi_vault-7.2.0.dist-info/RECORD +270 -0
pulumi_vault-7.1.0.dist-info/RECORD +0 -268
{pulumi_vault-7.1.0.dist-info → pulumi_vault-7.2.0.dist-info}/WHEEL +0 -0
{pulumi_vault-7.1.0.dist-info → pulumi_vault-7.2.0.dist-info}/top_level.txt +0 -0

pulumi_vault/pkisecret/backend_config_est.py CHANGED Viewed

@@ -2,8 +2,7 @@
 # *** WARNING: this file was generated by pulumi-language-python. ***
 # *** Do not edit by hand unless you're certain you know what you are doing! ***
-import builtins
-import copy
+import builtins as _builtins
 import warnings
 import sys
 import pulumi
@@ -22,29 +21,29 @@ __all__ = ['BackendConfigEstArgs', 'BackendConfigEst']
 @pulumi.input_type
 class BackendConfigEstArgs:
     def __init__(__self__, *,
-                 backend: pulumi.Input[builtins.str],
-                 audit_fields: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
+                 backend: pulumi.Input[_builtins.str],
+                 audit_fields: Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]] = None,
                  authenticators: Optional[pulumi.Input['BackendConfigEstAuthenticatorsArgs']] = None,
-                 default_mount: Optional[pulumi.Input[builtins.bool]] = None,
-                 default_path_policy: Optional[pulumi.Input[builtins.str]] = None,
-                 enable_sentinel_parsing: Optional[pulumi.Input[builtins.bool]] = None,
-                 enabled: Optional[pulumi.Input[builtins.bool]] = None,
-                 label_to_path_policy: Optional[pulumi.Input[Mapping[str, pulumi.Input[builtins.str]]]] = None,
-                 namespace: Optional[pulumi.Input[builtins.str]] = None):
+                 default_mount: Optional[pulumi.Input[_builtins.bool]] = None,
+                 default_path_policy: Optional[pulumi.Input[_builtins.str]] = None,
+                 enable_sentinel_parsing: Optional[pulumi.Input[_builtins.bool]] = None,
+                 enabled: Optional[pulumi.Input[_builtins.bool]] = None,
+                 label_to_path_policy: Optional[pulumi.Input[Mapping[str, pulumi.Input[_builtins.str]]]] = None,
+                 namespace: Optional[pulumi.Input[_builtins.str]] = None):
         """
         The set of arguments for constructing a BackendConfigEst resource.
-        :param pulumi.Input[builtins.str] backend: The path to the PKI secret backend to
+        :param pulumi.Input[_builtins.str] backend: The path to the PKI secret backend to
                read the EST configuration from, with no leading or trailing `/`s.
-        :param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] audit_fields: Fields parsed from the CSR that appear in the audit and can be used by sentinel policies.
+        :param pulumi.Input[Sequence[pulumi.Input[_builtins.str]]] audit_fields: Fields parsed from the CSR that appear in the audit and can be used by sentinel policies.
                <a id="nestedatt--authenticators"></a>
         :param pulumi.Input['BackendConfigEstAuthenticatorsArgs'] authenticators: Lists the mount accessors EST should delegate authentication requests towards (see below for nested schema).
-        :param pulumi.Input[builtins.bool] default_mount: If set, this mount will register the default `.well-known/est` URL path. Only a single mount can enable this across a Vault cluster.
-        :param pulumi.Input[builtins.str] default_path_policy: Required to be set if default_mount is enabled. Specifies the behavior for requests using the default EST label. Can be sign-verbatim or a role given by role:<role_name>.
-        :param pulumi.Input[builtins.bool] enable_sentinel_parsing: If set, parse out fields from the provided CSR making them available for Sentinel policies.
-        :param pulumi.Input[builtins.bool] enabled: Specifies whether EST is enabled.
-        :param pulumi.Input[Mapping[str, pulumi.Input[builtins.str]]] label_to_path_policy: Configures a pairing of an EST label with the redirected behavior for requests hitting that role. The path policy can be sign-verbatim or a role given by role:<role_name>. Labels must be unique across Vault cluster, and will register .well-known/est/<label> URL paths.
-        :param pulumi.Input[builtins.str] namespace: The namespace of the target resource.
+        :param pulumi.Input[_builtins.bool] default_mount: If set, this mount will register the default `.well-known/est` URL path. Only a single mount can enable this across a Vault cluster.
+        :param pulumi.Input[_builtins.str] default_path_policy: Required to be set if default_mount is enabled. Specifies the behavior for requests using the default EST label. Can be sign-verbatim or a role given by role:<role_name>.
+        :param pulumi.Input[_builtins.bool] enable_sentinel_parsing: If set, parse out fields from the provided CSR making them available for Sentinel policies.
+        :param pulumi.Input[_builtins.bool] enabled: Specifies whether EST is enabled.
+        :param pulumi.Input[Mapping[str, pulumi.Input[_builtins.str]]] label_to_path_policy: Configures a pairing of an EST label with the redirected behavior for requests hitting that role. The path policy can be sign-verbatim or a role given by role:<role_name>. Labels must be unique across Vault cluster, and will register .well-known/est/<label> URL paths.
+        :param pulumi.Input[_builtins.str] namespace: The namespace of the target resource.
                The value should not contain leading or trailing forward slashes.
                The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault/index.html#namespace).
                *Available only for Vault Enterprise*.
@@ -67,9 +66,9 @@ class BackendConfigEstArgs:
         if namespace is not None:
             pulumi.set(__self__, "namespace", namespace)
-    @property
+    @_builtins.property
     @pulumi.getter
-    def backend(self) -> pulumi.Input[builtins.str]:
+    def backend(self) -> pulumi.Input[_builtins.str]:
         """
         The path to the PKI secret backend to
         read the EST configuration from, with no leading or trailing `/`s.
@@ -77,12 +76,12 @@ class BackendConfigEstArgs:
         return pulumi.get(self, "backend")
     @backend.setter
-    def backend(self, value: pulumi.Input[builtins.str]):
+    def backend(self, value: pulumi.Input[_builtins.str]):
         pulumi.set(self, "backend", value)
-    @property
+    @_builtins.property
     @pulumi.getter(name="auditFields")
-    def audit_fields(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]:
+    def audit_fields(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]]:
         """
         Fields parsed from the CSR that appear in the audit and can be used by sentinel policies.
@@ -91,10 +90,10 @@ class BackendConfigEstArgs:
         return pulumi.get(self, "audit_fields")
     @audit_fields.setter
-    def audit_fields(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]):
+    def audit_fields(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]]):
         pulumi.set(self, "audit_fields", value)
-    @property
+    @_builtins.property
     @pulumi.getter
     def authenticators(self) -> Optional[pulumi.Input['BackendConfigEstAuthenticatorsArgs']]:
         """
@@ -106,69 +105,69 @@ class BackendConfigEstArgs:
     def authenticators(self, value: Optional[pulumi.Input['BackendConfigEstAuthenticatorsArgs']]):
         pulumi.set(self, "authenticators", value)
-    @property
+    @_builtins.property
     @pulumi.getter(name="defaultMount")
-    def default_mount(self) -> Optional[pulumi.Input[builtins.bool]]:
+    def default_mount(self) -> Optional[pulumi.Input[_builtins.bool]]:
         """
         If set, this mount will register the default `.well-known/est` URL path. Only a single mount can enable this across a Vault cluster.
         """
         return pulumi.get(self, "default_mount")
     @default_mount.setter
-    def default_mount(self, value: Optional[pulumi.Input[builtins.bool]]):
+    def default_mount(self, value: Optional[pulumi.Input[_builtins.bool]]):
         pulumi.set(self, "default_mount", value)
-    @property
+    @_builtins.property
     @pulumi.getter(name="defaultPathPolicy")
-    def default_path_policy(self) -> Optional[pulumi.Input[builtins.str]]:
+    def default_path_policy(self) -> Optional[pulumi.Input[_builtins.str]]:
         """
         Required to be set if default_mount is enabled. Specifies the behavior for requests using the default EST label. Can be sign-verbatim or a role given by role:<role_name>.
         """
         return pulumi.get(self, "default_path_policy")
     @default_path_policy.setter
-    def default_path_policy(self, value: Optional[pulumi.Input[builtins.str]]):
+    def default_path_policy(self, value: Optional[pulumi.Input[_builtins.str]]):
         pulumi.set(self, "default_path_policy", value)
-    @property
+    @_builtins.property
     @pulumi.getter(name="enableSentinelParsing")
-    def enable_sentinel_parsing(self) -> Optional[pulumi.Input[builtins.bool]]:
+    def enable_sentinel_parsing(self) -> Optional[pulumi.Input[_builtins.bool]]:
         """
         If set, parse out fields from the provided CSR making them available for Sentinel policies.
         """
         return pulumi.get(self, "enable_sentinel_parsing")
     @enable_sentinel_parsing.setter
-    def enable_sentinel_parsing(self, value: Optional[pulumi.Input[builtins.bool]]):
+    def enable_sentinel_parsing(self, value: Optional[pulumi.Input[_builtins.bool]]):
         pulumi.set(self, "enable_sentinel_parsing", value)
-    @property
+    @_builtins.property
     @pulumi.getter
-    def enabled(self) -> Optional[pulumi.Input[builtins.bool]]:
+    def enabled(self) -> Optional[pulumi.Input[_builtins.bool]]:
         """
         Specifies whether EST is enabled.
         """
         return pulumi.get(self, "enabled")
     @enabled.setter
-    def enabled(self, value: Optional[pulumi.Input[builtins.bool]]):
+    def enabled(self, value: Optional[pulumi.Input[_builtins.bool]]):
         pulumi.set(self, "enabled", value)
-    @property
+    @_builtins.property
     @pulumi.getter(name="labelToPathPolicy")
-    def label_to_path_policy(self) -> Optional[pulumi.Input[Mapping[str, pulumi.Input[builtins.str]]]]:
+    def label_to_path_policy(self) -> Optional[pulumi.Input[Mapping[str, pulumi.Input[_builtins.str]]]]:
         """
         Configures a pairing of an EST label with the redirected behavior for requests hitting that role. The path policy can be sign-verbatim or a role given by role:<role_name>. Labels must be unique across Vault cluster, and will register .well-known/est/<label> URL paths.
         """
         return pulumi.get(self, "label_to_path_policy")
     @label_to_path_policy.setter
-    def label_to_path_policy(self, value: Optional[pulumi.Input[Mapping[str, pulumi.Input[builtins.str]]]]):
+    def label_to_path_policy(self, value: Optional[pulumi.Input[Mapping[str, pulumi.Input[_builtins.str]]]]):
         pulumi.set(self, "label_to_path_policy", value)
-    @property
+    @_builtins.property
     @pulumi.getter
-    def namespace(self) -> Optional[pulumi.Input[builtins.str]]:
+    def namespace(self) -> Optional[pulumi.Input[_builtins.str]]:
         """
         The namespace of the target resource.
         The value should not contain leading or trailing forward slashes.
@@ -178,38 +177,38 @@ class BackendConfigEstArgs:
         return pulumi.get(self, "namespace")
     @namespace.setter
-    def namespace(self, value: Optional[pulumi.Input[builtins.str]]):
+    def namespace(self, value: Optional[pulumi.Input[_builtins.str]]):
         pulumi.set(self, "namespace", value)
 @pulumi.input_type
 class _BackendConfigEstState:
     def __init__(__self__, *,
-                 audit_fields: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
+                 audit_fields: Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]] = None,
                  authenticators: Optional[pulumi.Input['BackendConfigEstAuthenticatorsArgs']] = None,
-                 backend: Optional[pulumi.Input[builtins.str]] = None,
-                 default_mount: Optional[pulumi.Input[builtins.bool]] = None,
-                 default_path_policy: Optional[pulumi.Input[builtins.str]] = None,
-                 enable_sentinel_parsing: Optional[pulumi.Input[builtins.bool]] = None,
-                 enabled: Optional[pulumi.Input[builtins.bool]] = None,
-                 label_to_path_policy: Optional[pulumi.Input[Mapping[str, pulumi.Input[builtins.str]]]] = None,
-                 last_updated: Optional[pulumi.Input[builtins.str]] = None,
-                 namespace: Optional[pulumi.Input[builtins.str]] = None):
+                 backend: Optional[pulumi.Input[_builtins.str]] = None,
+                 default_mount: Optional[pulumi.Input[_builtins.bool]] = None,
+                 default_path_policy: Optional[pulumi.Input[_builtins.str]] = None,
+                 enable_sentinel_parsing: Optional[pulumi.Input[_builtins.bool]] = None,
+                 enabled: Optional[pulumi.Input[_builtins.bool]] = None,
+                 label_to_path_policy: Optional[pulumi.Input[Mapping[str, pulumi.Input[_builtins.str]]]] = None,
+                 last_updated: Optional[pulumi.Input[_builtins.str]] = None,
+                 namespace: Optional[pulumi.Input[_builtins.str]] = None):
         """
         Input properties used for looking up and filtering BackendConfigEst resources.
-        :param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] audit_fields: Fields parsed from the CSR that appear in the audit and can be used by sentinel policies.
+        :param pulumi.Input[Sequence[pulumi.Input[_builtins.str]]] audit_fields: Fields parsed from the CSR that appear in the audit and can be used by sentinel policies.
                <a id="nestedatt--authenticators"></a>
         :param pulumi.Input['BackendConfigEstAuthenticatorsArgs'] authenticators: Lists the mount accessors EST should delegate authentication requests towards (see below for nested schema).
-        :param pulumi.Input[builtins.str] backend: The path to the PKI secret backend to
+        :param pulumi.Input[_builtins.str] backend: The path to the PKI secret backend to
                read the EST configuration from, with no leading or trailing `/`s.
-        :param pulumi.Input[builtins.bool] default_mount: If set, this mount will register the default `.well-known/est` URL path. Only a single mount can enable this across a Vault cluster.
-        :param pulumi.Input[builtins.str] default_path_policy: Required to be set if default_mount is enabled. Specifies the behavior for requests using the default EST label. Can be sign-verbatim or a role given by role:<role_name>.
-        :param pulumi.Input[builtins.bool] enable_sentinel_parsing: If set, parse out fields from the provided CSR making them available for Sentinel policies.
-        :param pulumi.Input[builtins.bool] enabled: Specifies whether EST is enabled.
-        :param pulumi.Input[Mapping[str, pulumi.Input[builtins.str]]] label_to_path_policy: Configures a pairing of an EST label with the redirected behavior for requests hitting that role. The path policy can be sign-verbatim or a role given by role:<role_name>. Labels must be unique across Vault cluster, and will register .well-known/est/<label> URL paths.
-        :param pulumi.Input[builtins.str] last_updated: A read-only timestamp representing the last time the configuration was updated.
-        :param pulumi.Input[builtins.str] namespace: The namespace of the target resource.
+        :param pulumi.Input[_builtins.bool] default_mount: If set, this mount will register the default `.well-known/est` URL path. Only a single mount can enable this across a Vault cluster.
+        :param pulumi.Input[_builtins.str] default_path_policy: Required to be set if default_mount is enabled. Specifies the behavior for requests using the default EST label. Can be sign-verbatim or a role given by role:<role_name>.
+        :param pulumi.Input[_builtins.bool] enable_sentinel_parsing: If set, parse out fields from the provided CSR making them available for Sentinel policies.
+        :param pulumi.Input[_builtins.bool] enabled: Specifies whether EST is enabled.
+        :param pulumi.Input[Mapping[str, pulumi.Input[_builtins.str]]] label_to_path_policy: Configures a pairing of an EST label with the redirected behavior for requests hitting that role. The path policy can be sign-verbatim or a role given by role:<role_name>. Labels must be unique across Vault cluster, and will register .well-known/est/<label> URL paths.
+        :param pulumi.Input[_builtins.str] last_updated: A read-only timestamp representing the last time the configuration was updated.
+        :param pulumi.Input[_builtins.str] namespace: The namespace of the target resource.
                The value should not contain leading or trailing forward slashes.
                The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault/index.html#namespace).
                *Available only for Vault Enterprise*.
@@ -235,9 +234,9 @@ class _BackendConfigEstState:
         if namespace is not None:
             pulumi.set(__self__, "namespace", namespace)
-    @property
+    @_builtins.property
     @pulumi.getter(name="auditFields")
-    def audit_fields(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]:
+    def audit_fields(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]]:
         """
         Fields parsed from the CSR that appear in the audit and can be used by sentinel policies.
@@ -246,10 +245,10 @@ class _BackendConfigEstState:
         return pulumi.get(self, "audit_fields")
     @audit_fields.setter
-    def audit_fields(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]):
+    def audit_fields(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]]):
         pulumi.set(self, "audit_fields", value)
-    @property
+    @_builtins.property
     @pulumi.getter
     def authenticators(self) -> Optional[pulumi.Input['BackendConfigEstAuthenticatorsArgs']]:
         """
@@ -261,9 +260,9 @@ class _BackendConfigEstState:
     def authenticators(self, value: Optional[pulumi.Input['BackendConfigEstAuthenticatorsArgs']]):
         pulumi.set(self, "authenticators", value)
-    @property
+    @_builtins.property
     @pulumi.getter
-    def backend(self) -> Optional[pulumi.Input[builtins.str]]:
+    def backend(self) -> Optional[pulumi.Input[_builtins.str]]:
         """
         The path to the PKI secret backend to
         read the EST configuration from, with no leading or trailing `/`s.
@@ -271,84 +270,84 @@ class _BackendConfigEstState:
         return pulumi.get(self, "backend")
     @backend.setter
-    def backend(self, value: Optional[pulumi.Input[builtins.str]]):
+    def backend(self, value: Optional[pulumi.Input[_builtins.str]]):
         pulumi.set(self, "backend", value)
-    @property
+    @_builtins.property
     @pulumi.getter(name="defaultMount")
-    def default_mount(self) -> Optional[pulumi.Input[builtins.bool]]:
+    def default_mount(self) -> Optional[pulumi.Input[_builtins.bool]]:
         """
         If set, this mount will register the default `.well-known/est` URL path. Only a single mount can enable this across a Vault cluster.
         """
         return pulumi.get(self, "default_mount")
     @default_mount.setter
-    def default_mount(self, value: Optional[pulumi.Input[builtins.bool]]):
+    def default_mount(self, value: Optional[pulumi.Input[_builtins.bool]]):
         pulumi.set(self, "default_mount", value)
-    @property
+    @_builtins.property
     @pulumi.getter(name="defaultPathPolicy")
-    def default_path_policy(self) -> Optional[pulumi.Input[builtins.str]]:
+    def default_path_policy(self) -> Optional[pulumi.Input[_builtins.str]]:
         """
         Required to be set if default_mount is enabled. Specifies the behavior for requests using the default EST label. Can be sign-verbatim or a role given by role:<role_name>.
         """
         return pulumi.get(self, "default_path_policy")
     @default_path_policy.setter
-    def default_path_policy(self, value: Optional[pulumi.Input[builtins.str]]):
+    def default_path_policy(self, value: Optional[pulumi.Input[_builtins.str]]):
         pulumi.set(self, "default_path_policy", value)
-    @property
+    @_builtins.property
     @pulumi.getter(name="enableSentinelParsing")
-    def enable_sentinel_parsing(self) -> Optional[pulumi.Input[builtins.bool]]:
+    def enable_sentinel_parsing(self) -> Optional[pulumi.Input[_builtins.bool]]:
         """
         If set, parse out fields from the provided CSR making them available for Sentinel policies.
         """
         return pulumi.get(self, "enable_sentinel_parsing")
     @enable_sentinel_parsing.setter
-    def enable_sentinel_parsing(self, value: Optional[pulumi.Input[builtins.bool]]):
+    def enable_sentinel_parsing(self, value: Optional[pulumi.Input[_builtins.bool]]):
         pulumi.set(self, "enable_sentinel_parsing", value)
-    @property
+    @_builtins.property
     @pulumi.getter
-    def enabled(self) -> Optional[pulumi.Input[builtins.bool]]:
+    def enabled(self) -> Optional[pulumi.Input[_builtins.bool]]:
         """
         Specifies whether EST is enabled.
         """
         return pulumi.get(self, "enabled")
     @enabled.setter
-    def enabled(self, value: Optional[pulumi.Input[builtins.bool]]):
+    def enabled(self, value: Optional[pulumi.Input[_builtins.bool]]):
         pulumi.set(self, "enabled", value)
-    @property
+    @_builtins.property
     @pulumi.getter(name="labelToPathPolicy")
-    def label_to_path_policy(self) -> Optional[pulumi.Input[Mapping[str, pulumi.Input[builtins.str]]]]:
+    def label_to_path_policy(self) -> Optional[pulumi.Input[Mapping[str, pulumi.Input[_builtins.str]]]]:
         """
         Configures a pairing of an EST label with the redirected behavior for requests hitting that role. The path policy can be sign-verbatim or a role given by role:<role_name>. Labels must be unique across Vault cluster, and will register .well-known/est/<label> URL paths.
         """
         return pulumi.get(self, "label_to_path_policy")
     @label_to_path_policy.setter
-    def label_to_path_policy(self, value: Optional[pulumi.Input[Mapping[str, pulumi.Input[builtins.str]]]]):
+    def label_to_path_policy(self, value: Optional[pulumi.Input[Mapping[str, pulumi.Input[_builtins.str]]]]):
         pulumi.set(self, "label_to_path_policy", value)
-    @property
+    @_builtins.property
     @pulumi.getter(name="lastUpdated")
-    def last_updated(self) -> Optional[pulumi.Input[builtins.str]]:
+    def last_updated(self) -> Optional[pulumi.Input[_builtins.str]]:
         """
         A read-only timestamp representing the last time the configuration was updated.
         """
         return pulumi.get(self, "last_updated")
     @last_updated.setter
-    def last_updated(self, value: Optional[pulumi.Input[builtins.str]]):
+    def last_updated(self, value: Optional[pulumi.Input[_builtins.str]]):
         pulumi.set(self, "last_updated", value)
-    @property
+    @_builtins.property
     @pulumi.getter
-    def namespace(self) -> Optional[pulumi.Input[builtins.str]]:
+    def namespace(self) -> Optional[pulumi.Input[_builtins.str]]:
         """
         The namespace of the target resource.
         The value should not contain leading or trailing forward slashes.
@@ -358,7 +357,7 @@ class _BackendConfigEstState:
         return pulumi.get(self, "namespace")
     @namespace.setter
-    def namespace(self, value: Optional[pulumi.Input[builtins.str]]):
+    def namespace(self, value: Optional[pulumi.Input[_builtins.str]]):
         pulumi.set(self, "namespace", value)
@@ -368,15 +367,15 @@ class BackendConfigEst(pulumi.CustomResource):
     def __init__(__self__,
                  resource_name: str,
                  opts: Optional[pulumi.ResourceOptions] = None,
-                 audit_fields: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
+                 audit_fields: Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]] = None,
                  authenticators: Optional[pulumi.Input[Union['BackendConfigEstAuthenticatorsArgs', 'BackendConfigEstAuthenticatorsArgsDict']]] = None,
-                 backend: Optional[pulumi.Input[builtins.str]] = None,
-                 default_mount: Optional[pulumi.Input[builtins.bool]] = None,
-                 default_path_policy: Optional[pulumi.Input[builtins.str]] = None,
-                 enable_sentinel_parsing: Optional[pulumi.Input[builtins.bool]] = None,
-                 enabled: Optional[pulumi.Input[builtins.bool]] = None,
-                 label_to_path_policy: Optional[pulumi.Input[Mapping[str, pulumi.Input[builtins.str]]]] = None,
-                 namespace: Optional[pulumi.Input[builtins.str]] = None,
+                 backend: Optional[pulumi.Input[_builtins.str]] = None,
+                 default_mount: Optional[pulumi.Input[_builtins.bool]] = None,
+                 default_path_policy: Optional[pulumi.Input[_builtins.str]] = None,
+                 enable_sentinel_parsing: Optional[pulumi.Input[_builtins.bool]] = None,
+                 enabled: Optional[pulumi.Input[_builtins.bool]] = None,
+                 label_to_path_policy: Optional[pulumi.Input[Mapping[str, pulumi.Input[_builtins.str]]]] = None,
+                 namespace: Optional[pulumi.Input[_builtins.str]] = None,
                  __props__=None):
         """
         Allows setting the EST configuration on a PKI Secret Backend
@@ -393,18 +392,18 @@ class BackendConfigEst(pulumi.CustomResource):
         :param str resource_name: The name of the resource.
         :param pulumi.ResourceOptions opts: Options for the resource.
-        :param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] audit_fields: Fields parsed from the CSR that appear in the audit and can be used by sentinel policies.
+        :param pulumi.Input[Sequence[pulumi.Input[_builtins.str]]] audit_fields: Fields parsed from the CSR that appear in the audit and can be used by sentinel policies.
                <a id="nestedatt--authenticators"></a>
         :param pulumi.Input[Union['BackendConfigEstAuthenticatorsArgs', 'BackendConfigEstAuthenticatorsArgsDict']] authenticators: Lists the mount accessors EST should delegate authentication requests towards (see below for nested schema).
-        :param pulumi.Input[builtins.str] backend: The path to the PKI secret backend to
+        :param pulumi.Input[_builtins.str] backend: The path to the PKI secret backend to
                read the EST configuration from, with no leading or trailing `/`s.
-        :param pulumi.Input[builtins.bool] default_mount: If set, this mount will register the default `.well-known/est` URL path. Only a single mount can enable this across a Vault cluster.
-        :param pulumi.Input[builtins.str] default_path_policy: Required to be set if default_mount is enabled. Specifies the behavior for requests using the default EST label. Can be sign-verbatim or a role given by role:<role_name>.
-        :param pulumi.Input[builtins.bool] enable_sentinel_parsing: If set, parse out fields from the provided CSR making them available for Sentinel policies.
-        :param pulumi.Input[builtins.bool] enabled: Specifies whether EST is enabled.
-        :param pulumi.Input[Mapping[str, pulumi.Input[builtins.str]]] label_to_path_policy: Configures a pairing of an EST label with the redirected behavior for requests hitting that role. The path policy can be sign-verbatim or a role given by role:<role_name>. Labels must be unique across Vault cluster, and will register .well-known/est/<label> URL paths.
-        :param pulumi.Input[builtins.str] namespace: The namespace of the target resource.
+        :param pulumi.Input[_builtins.bool] default_mount: If set, this mount will register the default `.well-known/est` URL path. Only a single mount can enable this across a Vault cluster.
+        :param pulumi.Input[_builtins.str] default_path_policy: Required to be set if default_mount is enabled. Specifies the behavior for requests using the default EST label. Can be sign-verbatim or a role given by role:<role_name>.
+        :param pulumi.Input[_builtins.bool] enable_sentinel_parsing: If set, parse out fields from the provided CSR making them available for Sentinel policies.
+        :param pulumi.Input[_builtins.bool] enabled: Specifies whether EST is enabled.
+        :param pulumi.Input[Mapping[str, pulumi.Input[_builtins.str]]] label_to_path_policy: Configures a pairing of an EST label with the redirected behavior for requests hitting that role. The path policy can be sign-verbatim or a role given by role:<role_name>. Labels must be unique across Vault cluster, and will register .well-known/est/<label> URL paths.
+        :param pulumi.Input[_builtins.str] namespace: The namespace of the target resource.
                The value should not contain leading or trailing forward slashes.
                The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault/index.html#namespace).
                *Available only for Vault Enterprise*.
@@ -443,15 +442,15 @@ class BackendConfigEst(pulumi.CustomResource):
     def _internal_init(__self__,
                  resource_name: str,
                  opts: Optional[pulumi.ResourceOptions] = None,
-                 audit_fields: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
+                 audit_fields: Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]] = None,
                  authenticators: Optional[pulumi.Input[Union['BackendConfigEstAuthenticatorsArgs', 'BackendConfigEstAuthenticatorsArgsDict']]] = None,
-                 backend: Optional[pulumi.Input[builtins.str]] = None,
-                 default_mount: Optional[pulumi.Input[builtins.bool]] = None,
-                 default_path_policy: Optional[pulumi.Input[builtins.str]] = None,
-                 enable_sentinel_parsing: Optional[pulumi.Input[builtins.bool]] = None,
-                 enabled: Optional[pulumi.Input[builtins.bool]] = None,
-                 label_to_path_policy: Optional[pulumi.Input[Mapping[str, pulumi.Input[builtins.str]]]] = None,
-                 namespace: Optional[pulumi.Input[builtins.str]] = None,
+                 backend: Optional[pulumi.Input[_builtins.str]] = None,
+                 default_mount: Optional[pulumi.Input[_builtins.bool]] = None,
+                 default_path_policy: Optional[pulumi.Input[_builtins.str]] = None,
+                 enable_sentinel_parsing: Optional[pulumi.Input[_builtins.bool]] = None,
+                 enabled: Optional[pulumi.Input[_builtins.bool]] = None,
+                 label_to_path_policy: Optional[pulumi.Input[Mapping[str, pulumi.Input[_builtins.str]]]] = None,
+                 namespace: Optional[pulumi.Input[_builtins.str]] = None,
                  __props__=None):
         opts = pulumi.ResourceOptions.merge(_utilities.get_resource_opts_defaults(), opts)
         if not isinstance(opts, pulumi.ResourceOptions):
@@ -483,16 +482,16 @@ class BackendConfigEst(pulumi.CustomResource):
     def get(resource_name: str,
             id: pulumi.Input[str],
             opts: Optional[pulumi.ResourceOptions] = None,
-            audit_fields: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
+            audit_fields: Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]] = None,
             authenticators: Optional[pulumi.Input[Union['BackendConfigEstAuthenticatorsArgs', 'BackendConfigEstAuthenticatorsArgsDict']]] = None,
-            backend: Optional[pulumi.Input[builtins.str]] = None,
-            default_mount: Optional[pulumi.Input[builtins.bool]] = None,
-            default_path_policy: Optional[pulumi.Input[builtins.str]] = None,
-            enable_sentinel_parsing: Optional[pulumi.Input[builtins.bool]] = None,
-            enabled: Optional[pulumi.Input[builtins.bool]] = None,
-            label_to_path_policy: Optional[pulumi.Input[Mapping[str, pulumi.Input[builtins.str]]]] = None,
-            last_updated: Optional[pulumi.Input[builtins.str]] = None,
-            namespace: Optional[pulumi.Input[builtins.str]] = None) -> 'BackendConfigEst':
+            backend: Optional[pulumi.Input[_builtins.str]] = None,
+            default_mount: Optional[pulumi.Input[_builtins.bool]] = None,
+            default_path_policy: Optional[pulumi.Input[_builtins.str]] = None,
+            enable_sentinel_parsing: Optional[pulumi.Input[_builtins.bool]] = None,
+            enabled: Optional[pulumi.Input[_builtins.bool]] = None,
+            label_to_path_policy: Optional[pulumi.Input[Mapping[str, pulumi.Input[_builtins.str]]]] = None,
+            last_updated: Optional[pulumi.Input[_builtins.str]] = None,
+            namespace: Optional[pulumi.Input[_builtins.str]] = None) -> 'BackendConfigEst':
         """
         Get an existing BackendConfigEst resource's state with the given name, id, and optional extra
         properties used to qualify the lookup.
@@ -500,19 +499,19 @@ class BackendConfigEst(pulumi.CustomResource):
         :param str resource_name: The unique name of the resulting resource.
         :param pulumi.Input[str] id: The unique provider ID of the resource to lookup.
         :param pulumi.ResourceOptions opts: Options for the resource.
-        :param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] audit_fields: Fields parsed from the CSR that appear in the audit and can be used by sentinel policies.
+        :param pulumi.Input[Sequence[pulumi.Input[_builtins.str]]] audit_fields: Fields parsed from the CSR that appear in the audit and can be used by sentinel policies.
                <a id="nestedatt--authenticators"></a>
         :param pulumi.Input[Union['BackendConfigEstAuthenticatorsArgs', 'BackendConfigEstAuthenticatorsArgsDict']] authenticators: Lists the mount accessors EST should delegate authentication requests towards (see below for nested schema).
-        :param pulumi.Input[builtins.str] backend: The path to the PKI secret backend to
+        :param pulumi.Input[_builtins.str] backend: The path to the PKI secret backend to
                read the EST configuration from, with no leading or trailing `/`s.
-        :param pulumi.Input[builtins.bool] default_mount: If set, this mount will register the default `.well-known/est` URL path. Only a single mount can enable this across a Vault cluster.
-        :param pulumi.Input[builtins.str] default_path_policy: Required to be set if default_mount is enabled. Specifies the behavior for requests using the default EST label. Can be sign-verbatim or a role given by role:<role_name>.
-        :param pulumi.Input[builtins.bool] enable_sentinel_parsing: If set, parse out fields from the provided CSR making them available for Sentinel policies.
-        :param pulumi.Input[builtins.bool] enabled: Specifies whether EST is enabled.
-        :param pulumi.Input[Mapping[str, pulumi.Input[builtins.str]]] label_to_path_policy: Configures a pairing of an EST label with the redirected behavior for requests hitting that role. The path policy can be sign-verbatim or a role given by role:<role_name>. Labels must be unique across Vault cluster, and will register .well-known/est/<label> URL paths.
-        :param pulumi.Input[builtins.str] last_updated: A read-only timestamp representing the last time the configuration was updated.
-        :param pulumi.Input[builtins.str] namespace: The namespace of the target resource.
+        :param pulumi.Input[_builtins.bool] default_mount: If set, this mount will register the default `.well-known/est` URL path. Only a single mount can enable this across a Vault cluster.
+        :param pulumi.Input[_builtins.str] default_path_policy: Required to be set if default_mount is enabled. Specifies the behavior for requests using the default EST label. Can be sign-verbatim or a role given by role:<role_name>.
+        :param pulumi.Input[_builtins.bool] enable_sentinel_parsing: If set, parse out fields from the provided CSR making them available for Sentinel policies.
+        :param pulumi.Input[_builtins.bool] enabled: Specifies whether EST is enabled.
+        :param pulumi.Input[Mapping[str, pulumi.Input[_builtins.str]]] label_to_path_policy: Configures a pairing of an EST label with the redirected behavior for requests hitting that role. The path policy can be sign-verbatim or a role given by role:<role_name>. Labels must be unique across Vault cluster, and will register .well-known/est/<label> URL paths.
+        :param pulumi.Input[_builtins.str] last_updated: A read-only timestamp representing the last time the configuration was updated.
+        :param pulumi.Input[_builtins.str] namespace: The namespace of the target resource.
                The value should not contain leading or trailing forward slashes.
                The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault/index.html#namespace).
                *Available only for Vault Enterprise*.
@@ -533,9 +532,9 @@ class BackendConfigEst(pulumi.CustomResource):
         __props__.__dict__["namespace"] = namespace
         return BackendConfigEst(resource_name, opts=opts, __props__=__props__)
-    @property
+    @_builtins.property
     @pulumi.getter(name="auditFields")
-    def audit_fields(self) -> pulumi.Output[Sequence[builtins.str]]:
+    def audit_fields(self) -> pulumi.Output[Sequence[_builtins.str]]:
         """
         Fields parsed from the CSR that appear in the audit and can be used by sentinel policies.
@@ -543,7 +542,7 @@ class BackendConfigEst(pulumi.CustomResource):
         """
         return pulumi.get(self, "audit_fields")
-    @property
+    @_builtins.property
     @pulumi.getter
     def authenticators(self) -> pulumi.Output['outputs.BackendConfigEstAuthenticators']:
         """
@@ -551,66 +550,66 @@ class BackendConfigEst(pulumi.CustomResource):
         """
         return pulumi.get(self, "authenticators")
-    @property
+    @_builtins.property
     @pulumi.getter
-    def backend(self) -> pulumi.Output[builtins.str]:
+    def backend(self) -> pulumi.Output[_builtins.str]:
         """
         The path to the PKI secret backend to
         read the EST configuration from, with no leading or trailing `/`s.
         """
         return pulumi.get(self, "backend")
-    @property
+    @_builtins.property
     @pulumi.getter(name="defaultMount")
-    def default_mount(self) -> pulumi.Output[Optional[builtins.bool]]:
+    def default_mount(self) -> pulumi.Output[Optional[_builtins.bool]]:
         """
         If set, this mount will register the default `.well-known/est` URL path. Only a single mount can enable this across a Vault cluster.
         """
         return pulumi.get(self, "default_mount")
-    @property
+    @_builtins.property
     @pulumi.getter(name="defaultPathPolicy")
-    def default_path_policy(self) -> pulumi.Output[Optional[builtins.str]]:
+    def default_path_policy(self) -> pulumi.Output[Optional[_builtins.str]]:
         """
         Required to be set if default_mount is enabled. Specifies the behavior for requests using the default EST label. Can be sign-verbatim or a role given by role:<role_name>.
         """
         return pulumi.get(self, "default_path_policy")
-    @property
+    @_builtins.property
     @pulumi.getter(name="enableSentinelParsing")
-    def enable_sentinel_parsing(self) -> pulumi.Output[Optional[builtins.bool]]:
+    def enable_sentinel_parsing(self) -> pulumi.Output[Optional[_builtins.bool]]:
         """
         If set, parse out fields from the provided CSR making them available for Sentinel policies.
         """
         return pulumi.get(self, "enable_sentinel_parsing")
-    @property
+    @_builtins.property
     @pulumi.getter
-    def enabled(self) -> pulumi.Output[Optional[builtins.bool]]:
+    def enabled(self) -> pulumi.Output[Optional[_builtins.bool]]:
         """
         Specifies whether EST is enabled.
         """
         return pulumi.get(self, "enabled")
-    @property
+    @_builtins.property
     @pulumi.getter(name="labelToPathPolicy")
-    def label_to_path_policy(self) -> pulumi.Output[Optional[Mapping[str, builtins.str]]]:
+    def label_to_path_policy(self) -> pulumi.Output[Optional[Mapping[str, _builtins.str]]]:
         """
         Configures a pairing of an EST label with the redirected behavior for requests hitting that role. The path policy can be sign-verbatim or a role given by role:<role_name>. Labels must be unique across Vault cluster, and will register .well-known/est/<label> URL paths.
         """
         return pulumi.get(self, "label_to_path_policy")
-    @property
+    @_builtins.property
     @pulumi.getter(name="lastUpdated")
-    def last_updated(self) -> pulumi.Output[builtins.str]:
+    def last_updated(self) -> pulumi.Output[_builtins.str]:
         """
         A read-only timestamp representing the last time the configuration was updated.
         """
         return pulumi.get(self, "last_updated")
-    @property
+    @_builtins.property
     @pulumi.getter
-    def namespace(self) -> pulumi.Output[Optional[builtins.str]]:
+    def namespace(self) -> pulumi.Output[Optional[_builtins.str]]:
         """
         The namespace of the target resource.
         The value should not contain leading or trailing forward slashes.

pulumi-vault 7.1.0__py3-none-any.whl → 7.2.0__py3-none-any.whl

pulumi-vault 7.1.0py3-none-any.whl → 7.2.0py3-none-any.whl