pulumi-vault 7.2.0a1753339763__py3-none-any.whl → 7.2.0a1753398491__py3-none-any.whl

pulumi_vault/pkisecret/backend_config_auto_tidy.py

@@ -2,8 +2,7 @@
 # *** WARNING: this file was generated by pulumi-language-python. ***
 # *** Do not edit by hand unless you're certain you know what you are doing! ***
 
-import builtins
-import copy
+import builtins as _builtins
 import warnings
 import sys
 import pulumi
@@ -20,73 +19,73 @@ __all__ = ['BackendConfigAutoTidyArgs', 'BackendConfigAutoTidy']
 @pulumi.input_type
 class BackendConfigAutoTidyArgs:
     def __init__(__self__, *,
-                 backend: pulumi.Input[builtins.str],
-                 enabled: pulumi.Input[builtins.bool],
-                 acme_account_safety_buffer: Optional[pulumi.Input[builtins.str]] = None,
-                 interval_duration: Optional[pulumi.Input[builtins.str]] = None,
-                 issuer_safety_buffer: Optional[pulumi.Input[builtins.str]] = None,
-                 maintain_stored_certificate_counts: Optional[pulumi.Input[builtins.bool]] = None,
-                 max_startup_backoff_duration: Optional[pulumi.Input[builtins.str]] = None,
-                 min_startup_backoff_duration: Optional[pulumi.Input[builtins.str]] = None,
-                 namespace: Optional[pulumi.Input[builtins.str]] = None,
-                 pause_duration: Optional[pulumi.Input[builtins.str]] = None,
-                 publish_stored_certificate_count_metrics: Optional[pulumi.Input[builtins.bool]] = None,
-                 revocation_queue_safety_buffer: Optional[pulumi.Input[builtins.str]] = None,
-                 safety_buffer: Optional[pulumi.Input[builtins.str]] = None,
-                 tidy_acme: Optional[pulumi.Input[builtins.bool]] = None,
-                 tidy_cert_metadata: Optional[pulumi.Input[builtins.bool]] = None,
-                 tidy_cert_store: Optional[pulumi.Input[builtins.bool]] = None,
-                 tidy_cmpv2_nonce_store: Optional[pulumi.Input[builtins.bool]] = None,
-                 tidy_cross_cluster_revoked_certs: Optional[pulumi.Input[builtins.bool]] = None,
-                 tidy_expired_issuers: Optional[pulumi.Input[builtins.bool]] = None,
-                 tidy_move_legacy_ca_bundle: Optional[pulumi.Input[builtins.bool]] = None,
-                 tidy_revocation_queue: Optional[pulumi.Input[builtins.bool]] = None,
-                 tidy_revoked_cert_issuer_associations: Optional[pulumi.Input[builtins.bool]] = None,
-                 tidy_revoked_certs: Optional[pulumi.Input[builtins.bool]] = None):
+                 backend: pulumi.Input[_builtins.str],
+                 enabled: pulumi.Input[_builtins.bool],
+                 acme_account_safety_buffer: Optional[pulumi.Input[_builtins.str]] = None,
+                 interval_duration: Optional[pulumi.Input[_builtins.str]] = None,
+                 issuer_safety_buffer: Optional[pulumi.Input[_builtins.str]] = None,
+                 maintain_stored_certificate_counts: Optional[pulumi.Input[_builtins.bool]] = None,
+                 max_startup_backoff_duration: Optional[pulumi.Input[_builtins.str]] = None,
+                 min_startup_backoff_duration: Optional[pulumi.Input[_builtins.str]] = None,
+                 namespace: Optional[pulumi.Input[_builtins.str]] = None,
+                 pause_duration: Optional[pulumi.Input[_builtins.str]] = None,
+                 publish_stored_certificate_count_metrics: Optional[pulumi.Input[_builtins.bool]] = None,
+                 revocation_queue_safety_buffer: Optional[pulumi.Input[_builtins.str]] = None,
+                 safety_buffer: Optional[pulumi.Input[_builtins.str]] = None,
+                 tidy_acme: Optional[pulumi.Input[_builtins.bool]] = None,
+                 tidy_cert_metadata: Optional[pulumi.Input[_builtins.bool]] = None,
+                 tidy_cert_store: Optional[pulumi.Input[_builtins.bool]] = None,
+                 tidy_cmpv2_nonce_store: Optional[pulumi.Input[_builtins.bool]] = None,
+                 tidy_cross_cluster_revoked_certs: Optional[pulumi.Input[_builtins.bool]] = None,
+                 tidy_expired_issuers: Optional[pulumi.Input[_builtins.bool]] = None,
+                 tidy_move_legacy_ca_bundle: Optional[pulumi.Input[_builtins.bool]] = None,
+                 tidy_revocation_queue: Optional[pulumi.Input[_builtins.bool]] = None,
+                 tidy_revoked_cert_issuer_associations: Optional[pulumi.Input[_builtins.bool]] = None,
+                 tidy_revoked_certs: Optional[pulumi.Input[_builtins.bool]] = None):
         """
         The set of arguments for constructing a BackendConfigAutoTidy resource.
-        :param pulumi.Input[builtins.str] backend: The path to the PKI secret backend to
+        :param pulumi.Input[_builtins.str] backend: The path to the PKI secret backend to
                read the configuration from, with no leading or trailing `/`s.
-        :param pulumi.Input[builtins.bool] enabled: Specifies whether automatic tidy is enabled or not.
-        :param pulumi.Input[builtins.str] acme_account_safety_buffer: The amount of time that must pass after creation that an account with no orders is marked revoked, and the amount of
+        :param pulumi.Input[_builtins.bool] enabled: Specifies whether automatic tidy is enabled or not.
+        :param pulumi.Input[_builtins.str] acme_account_safety_buffer: The amount of time that must pass after creation that an account with no orders is marked revoked, and the amount of
                time after being marked revoked or deactivated.
-        :param pulumi.Input[builtins.str] interval_duration: Interval at which to run an auto-tidy operation. This is the time
+        :param pulumi.Input[_builtins.str] interval_duration: Interval at which to run an auto-tidy operation. This is the time
                between tidy invocations (after one finishes to the start of the next).
-        :param pulumi.Input[builtins.str] issuer_safety_buffer: The amount of extra time that must have passed beyond issuer's
+        :param pulumi.Input[_builtins.str] issuer_safety_buffer: The amount of extra time that must have passed beyond issuer's
                expiration before it is removed from the backend storage.
-        :param pulumi.Input[builtins.bool] maintain_stored_certificate_counts: This configures whether stored certificate are
+        :param pulumi.Input[_builtins.bool] maintain_stored_certificate_counts: This configures whether stored certificate are
                counted upon initialization of the backend, and whether during normal operation, a running count
                of certificates stored is maintained.
-        :param pulumi.Input[builtins.str] max_startup_backoff_duration: The maximum amount of time auto-tidy will be delayed
+        :param pulumi.Input[_builtins.str] max_startup_backoff_duration: The maximum amount of time auto-tidy will be delayed
                after startup.
-        :param pulumi.Input[builtins.str] min_startup_backoff_duration: The minimum amount of time auto-tidy will be delayed
+        :param pulumi.Input[_builtins.str] min_startup_backoff_duration: The minimum amount of time auto-tidy will be delayed
                after startup.
-        :param pulumi.Input[builtins.str] namespace: The namespace of the target resource.
+        :param pulumi.Input[_builtins.str] namespace: The namespace of the target resource.
                The value should not contain leading or trailing forward slashes.
                The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault/index.html#namespace).
                *Available only for Vault Enterprise*.
-        :param pulumi.Input[builtins.str] pause_duration: The amount of time to wait between processing certificates.
-        :param pulumi.Input[builtins.bool] publish_stored_certificate_count_metrics: This configures whether the stored
+        :param pulumi.Input[_builtins.str] pause_duration: The amount of time to wait between processing certificates.
+        :param pulumi.Input[_builtins.bool] publish_stored_certificate_count_metrics: This configures whether the stored
                certificate count is published to the metrics consumer.
-        :param pulumi.Input[builtins.str] revocation_queue_safety_buffer: The amount of time that must pass from the
+        :param pulumi.Input[_builtins.str] revocation_queue_safety_buffer: The amount of time that must pass from the
                cross-cluster revocation request being initiated to when it will be slated for removal.
-        :param pulumi.Input[builtins.str] safety_buffer: The amount of extra time that must have passed beyond certificate
+        :param pulumi.Input[_builtins.str] safety_buffer: The amount of extra time that must have passed beyond certificate
                expiration before it is removed from the backend storage and/or revocation list.
-        :param pulumi.Input[builtins.bool] tidy_acme: Set to true to enable tidying ACME accounts, orders and authorizations.
-        :param pulumi.Input[builtins.bool] tidy_cert_metadata: Set to true to enable tidying up certificate metadata.
-        :param pulumi.Input[builtins.bool] tidy_cert_store: Set to true to enable tidying up the certificate store
-        :param pulumi.Input[builtins.bool] tidy_cmpv2_nonce_store: Set to true to enable tidying up the CMPv2 nonce store.
-        :param pulumi.Input[builtins.bool] tidy_cross_cluster_revoked_certs: Set to true to enable tidying up the cross-cluster
+        :param pulumi.Input[_builtins.bool] tidy_acme: Set to true to enable tidying ACME accounts, orders and authorizations.
+        :param pulumi.Input[_builtins.bool] tidy_cert_metadata: Set to true to enable tidying up certificate metadata.
+        :param pulumi.Input[_builtins.bool] tidy_cert_store: Set to true to enable tidying up the certificate store
+        :param pulumi.Input[_builtins.bool] tidy_cmpv2_nonce_store: Set to true to enable tidying up the CMPv2 nonce store.
+        :param pulumi.Input[_builtins.bool] tidy_cross_cluster_revoked_certs: Set to true to enable tidying up the cross-cluster
                revoked certificate store.
-        :param pulumi.Input[builtins.bool] tidy_expired_issuers: Set to true to automatically remove expired issuers past the
+        :param pulumi.Input[_builtins.bool] tidy_expired_issuers: Set to true to automatically remove expired issuers past the
                `issuer_safety_buffer`. No keys will be removed as part of this operation.
-        :param pulumi.Input[builtins.bool] tidy_move_legacy_ca_bundle: Set to true to move the legacy `ca_bundle` from
+        :param pulumi.Input[_builtins.bool] tidy_move_legacy_ca_bundle: Set to true to move the legacy `ca_bundle` from
                `/config/ca_bundle` to `/config/ca_bundle.bak`.
-        :param pulumi.Input[builtins.bool] tidy_revocation_queue: Set to true to remove stale revocation queue entries that
+        :param pulumi.Input[_builtins.bool] tidy_revocation_queue: Set to true to remove stale revocation queue entries that
                haven't been confirmed by any active cluster.
-        :param pulumi.Input[builtins.bool] tidy_revoked_cert_issuer_associations: Set to true to validate issuer associations
+        :param pulumi.Input[_builtins.bool] tidy_revoked_cert_issuer_associations: Set to true to validate issuer associations
                on revocation entries. This helps increase the performance of CRL building and OCSP responses.
-        :param pulumi.Input[builtins.bool] tidy_revoked_certs: Set to true to remove all invalid and expired certificates from
+        :param pulumi.Input[_builtins.bool] tidy_revoked_certs: Set to true to remove all invalid and expired certificates from
                storage. A revoked storage entry is considered invalid if the entry is empty, or the value within
                the entry is empty. If a certificate is removed due to expiry, the entry will also be removed from
                the CRL, and the CRL will be rotated.
@@ -136,9 +135,9 @@ class BackendConfigAutoTidyArgs:
         if tidy_revoked_certs is not None:
             pulumi.set(__self__, "tidy_revoked_certs", tidy_revoked_certs)
 
-    @property
+    @_builtins.property
     @pulumi.getter
-    def backend(self) -> pulumi.Input[builtins.str]:
+    def backend(self) -> pulumi.Input[_builtins.str]:
         """
         The path to the PKI secret backend to
         read the configuration from, with no leading or trailing `/`s.
@@ -146,24 +145,24 @@ class BackendConfigAutoTidyArgs:
         return pulumi.get(self, "backend")
 
     @backend.setter
-    def backend(self, value: pulumi.Input[builtins.str]):
+    def backend(self, value: pulumi.Input[_builtins.str]):
         pulumi.set(self, "backend", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter
-    def enabled(self) -> pulumi.Input[builtins.bool]:
+    def enabled(self) -> pulumi.Input[_builtins.bool]:
         """
         Specifies whether automatic tidy is enabled or not.
         """
         return pulumi.get(self, "enabled")
 
     @enabled.setter
-    def enabled(self, value: pulumi.Input[builtins.bool]):
+    def enabled(self, value: pulumi.Input[_builtins.bool]):
         pulumi.set(self, "enabled", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="acmeAccountSafetyBuffer")
-    def acme_account_safety_buffer(self) -> Optional[pulumi.Input[builtins.str]]:
+    def acme_account_safety_buffer(self) -> Optional[pulumi.Input[_builtins.str]]:
         """
         The amount of time that must pass after creation that an account with no orders is marked revoked, and the amount of
         time after being marked revoked or deactivated.
@@ -171,12 +170,12 @@ class BackendConfigAutoTidyArgs:
         return pulumi.get(self, "acme_account_safety_buffer")
 
     @acme_account_safety_buffer.setter
-    def acme_account_safety_buffer(self, value: Optional[pulumi.Input[builtins.str]]):
+    def acme_account_safety_buffer(self, value: Optional[pulumi.Input[_builtins.str]]):
         pulumi.set(self, "acme_account_safety_buffer", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="intervalDuration")
-    def interval_duration(self) -> Optional[pulumi.Input[builtins.str]]:
+    def interval_duration(self) -> Optional[pulumi.Input[_builtins.str]]:
         """
         Interval at which to run an auto-tidy operation. This is the time
         between tidy invocations (after one finishes to the start of the next).
@@ -184,12 +183,12 @@ class BackendConfigAutoTidyArgs:
         return pulumi.get(self, "interval_duration")
 
     @interval_duration.setter
-    def interval_duration(self, value: Optional[pulumi.Input[builtins.str]]):
+    def interval_duration(self, value: Optional[pulumi.Input[_builtins.str]]):
         pulumi.set(self, "interval_duration", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="issuerSafetyBuffer")
-    def issuer_safety_buffer(self) -> Optional[pulumi.Input[builtins.str]]:
+    def issuer_safety_buffer(self) -> Optional[pulumi.Input[_builtins.str]]:
         """
         The amount of extra time that must have passed beyond issuer's
         expiration before it is removed from the backend storage.
@@ -197,12 +196,12 @@ class BackendConfigAutoTidyArgs:
         return pulumi.get(self, "issuer_safety_buffer")
 
     @issuer_safety_buffer.setter
-    def issuer_safety_buffer(self, value: Optional[pulumi.Input[builtins.str]]):
+    def issuer_safety_buffer(self, value: Optional[pulumi.Input[_builtins.str]]):
         pulumi.set(self, "issuer_safety_buffer", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="maintainStoredCertificateCounts")
-    def maintain_stored_certificate_counts(self) -> Optional[pulumi.Input[builtins.bool]]:
+    def maintain_stored_certificate_counts(self) -> Optional[pulumi.Input[_builtins.bool]]:
         """
         This configures whether stored certificate are
         counted upon initialization of the backend, and whether during normal operation, a running count
@@ -211,12 +210,12 @@ class BackendConfigAutoTidyArgs:
         return pulumi.get(self, "maintain_stored_certificate_counts")
 
     @maintain_stored_certificate_counts.setter
-    def maintain_stored_certificate_counts(self, value: Optional[pulumi.Input[builtins.bool]]):
+    def maintain_stored_certificate_counts(self, value: Optional[pulumi.Input[_builtins.bool]]):
         pulumi.set(self, "maintain_stored_certificate_counts", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="maxStartupBackoffDuration")
-    def max_startup_backoff_duration(self) -> Optional[pulumi.Input[builtins.str]]:
+    def max_startup_backoff_duration(self) -> Optional[pulumi.Input[_builtins.str]]:
         """
         The maximum amount of time auto-tidy will be delayed
         after startup.
@@ -224,12 +223,12 @@ class BackendConfigAutoTidyArgs:
         return pulumi.get(self, "max_startup_backoff_duration")
 
     @max_startup_backoff_duration.setter
-    def max_startup_backoff_duration(self, value: Optional[pulumi.Input[builtins.str]]):
+    def max_startup_backoff_duration(self, value: Optional[pulumi.Input[_builtins.str]]):
         pulumi.set(self, "max_startup_backoff_duration", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="minStartupBackoffDuration")
-    def min_startup_backoff_duration(self) -> Optional[pulumi.Input[builtins.str]]:
+    def min_startup_backoff_duration(self) -> Optional[pulumi.Input[_builtins.str]]:
         """
         The minimum amount of time auto-tidy will be delayed
         after startup.
@@ -237,12 +236,12 @@ class BackendConfigAutoTidyArgs:
         return pulumi.get(self, "min_startup_backoff_duration")
 
     @min_startup_backoff_duration.setter
-    def min_startup_backoff_duration(self, value: Optional[pulumi.Input[builtins.str]]):
+    def min_startup_backoff_duration(self, value: Optional[pulumi.Input[_builtins.str]]):
         pulumi.set(self, "min_startup_backoff_duration", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter
-    def namespace(self) -> Optional[pulumi.Input[builtins.str]]:
+    def namespace(self) -> Optional[pulumi.Input[_builtins.str]]:
         """
         The namespace of the target resource.
         The value should not contain leading or trailing forward slashes.
@@ -252,24 +251,24 @@ class BackendConfigAutoTidyArgs:
         return pulumi.get(self, "namespace")
 
     @namespace.setter
-    def namespace(self, value: Optional[pulumi.Input[builtins.str]]):
+    def namespace(self, value: Optional[pulumi.Input[_builtins.str]]):
         pulumi.set(self, "namespace", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="pauseDuration")
-    def pause_duration(self) -> Optional[pulumi.Input[builtins.str]]:
+    def pause_duration(self) -> Optional[pulumi.Input[_builtins.str]]:
         """
         The amount of time to wait between processing certificates.
         """
         return pulumi.get(self, "pause_duration")
 
     @pause_duration.setter
-    def pause_duration(self, value: Optional[pulumi.Input[builtins.str]]):
+    def pause_duration(self, value: Optional[pulumi.Input[_builtins.str]]):
         pulumi.set(self, "pause_duration", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="publishStoredCertificateCountMetrics")
-    def publish_stored_certificate_count_metrics(self) -> Optional[pulumi.Input[builtins.bool]]:
+    def publish_stored_certificate_count_metrics(self) -> Optional[pulumi.Input[_builtins.bool]]:
         """
         This configures whether the stored
         certificate count is published to the metrics consumer.
@@ -277,12 +276,12 @@ class BackendConfigAutoTidyArgs:
         return pulumi.get(self, "publish_stored_certificate_count_metrics")
 
     @publish_stored_certificate_count_metrics.setter
-    def publish_stored_certificate_count_metrics(self, value: Optional[pulumi.Input[builtins.bool]]):
+    def publish_stored_certificate_count_metrics(self, value: Optional[pulumi.Input[_builtins.bool]]):
         pulumi.set(self, "publish_stored_certificate_count_metrics", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="revocationQueueSafetyBuffer")
-    def revocation_queue_safety_buffer(self) -> Optional[pulumi.Input[builtins.str]]:
+    def revocation_queue_safety_buffer(self) -> Optional[pulumi.Input[_builtins.str]]:
         """
         The amount of time that must pass from the
         cross-cluster revocation request being initiated to when it will be slated for removal.
@@ -290,12 +289,12 @@ class BackendConfigAutoTidyArgs:
         return pulumi.get(self, "revocation_queue_safety_buffer")
 
     @revocation_queue_safety_buffer.setter
-    def revocation_queue_safety_buffer(self, value: Optional[pulumi.Input[builtins.str]]):
+    def revocation_queue_safety_buffer(self, value: Optional[pulumi.Input[_builtins.str]]):
         pulumi.set(self, "revocation_queue_safety_buffer", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="safetyBuffer")
-    def safety_buffer(self) -> Optional[pulumi.Input[builtins.str]]:
+    def safety_buffer(self) -> Optional[pulumi.Input[_builtins.str]]:
         """
         The amount of extra time that must have passed beyond certificate
         expiration before it is removed from the backend storage and/or revocation list.
@@ -303,60 +302,60 @@ class BackendConfigAutoTidyArgs:
         return pulumi.get(self, "safety_buffer")
 
     @safety_buffer.setter
-    def safety_buffer(self, value: Optional[pulumi.Input[builtins.str]]):
+    def safety_buffer(self, value: Optional[pulumi.Input[_builtins.str]]):
         pulumi.set(self, "safety_buffer", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="tidyAcme")
-    def tidy_acme(self) -> Optional[pulumi.Input[builtins.bool]]:
+    def tidy_acme(self) -> Optional[pulumi.Input[_builtins.bool]]:
         """
         Set to true to enable tidying ACME accounts, orders and authorizations.
         """
         return pulumi.get(self, "tidy_acme")
 
     @tidy_acme.setter
-    def tidy_acme(self, value: Optional[pulumi.Input[builtins.bool]]):
+    def tidy_acme(self, value: Optional[pulumi.Input[_builtins.bool]]):
         pulumi.set(self, "tidy_acme", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="tidyCertMetadata")
-    def tidy_cert_metadata(self) -> Optional[pulumi.Input[builtins.bool]]:
+    def tidy_cert_metadata(self) -> Optional[pulumi.Input[_builtins.bool]]:
         """
         Set to true to enable tidying up certificate metadata.
         """
         return pulumi.get(self, "tidy_cert_metadata")
 
     @tidy_cert_metadata.setter
-    def tidy_cert_metadata(self, value: Optional[pulumi.Input[builtins.bool]]):
+    def tidy_cert_metadata(self, value: Optional[pulumi.Input[_builtins.bool]]):
         pulumi.set(self, "tidy_cert_metadata", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="tidyCertStore")
-    def tidy_cert_store(self) -> Optional[pulumi.Input[builtins.bool]]:
+    def tidy_cert_store(self) -> Optional[pulumi.Input[_builtins.bool]]:
         """
         Set to true to enable tidying up the certificate store
         """
         return pulumi.get(self, "tidy_cert_store")
 
     @tidy_cert_store.setter
-    def tidy_cert_store(self, value: Optional[pulumi.Input[builtins.bool]]):
+    def tidy_cert_store(self, value: Optional[pulumi.Input[_builtins.bool]]):
         pulumi.set(self, "tidy_cert_store", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="tidyCmpv2NonceStore")
-    def tidy_cmpv2_nonce_store(self) -> Optional[pulumi.Input[builtins.bool]]:
+    def tidy_cmpv2_nonce_store(self) -> Optional[pulumi.Input[_builtins.bool]]:
         """
         Set to true to enable tidying up the CMPv2 nonce store.
         """
         return pulumi.get(self, "tidy_cmpv2_nonce_store")
 
     @tidy_cmpv2_nonce_store.setter
-    def tidy_cmpv2_nonce_store(self, value: Optional[pulumi.Input[builtins.bool]]):
+    def tidy_cmpv2_nonce_store(self, value: Optional[pulumi.Input[_builtins.bool]]):
         pulumi.set(self, "tidy_cmpv2_nonce_store", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="tidyCrossClusterRevokedCerts")
-    def tidy_cross_cluster_revoked_certs(self) -> Optional[pulumi.Input[builtins.bool]]:
+    def tidy_cross_cluster_revoked_certs(self) -> Optional[pulumi.Input[_builtins.bool]]:
         """
         Set to true to enable tidying up the cross-cluster
         revoked certificate store.
@@ -364,12 +363,12 @@ class BackendConfigAutoTidyArgs:
         return pulumi.get(self, "tidy_cross_cluster_revoked_certs")
 
     @tidy_cross_cluster_revoked_certs.setter
-    def tidy_cross_cluster_revoked_certs(self, value: Optional[pulumi.Input[builtins.bool]]):
+    def tidy_cross_cluster_revoked_certs(self, value: Optional[pulumi.Input[_builtins.bool]]):
         pulumi.set(self, "tidy_cross_cluster_revoked_certs", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="tidyExpiredIssuers")
-    def tidy_expired_issuers(self) -> Optional[pulumi.Input[builtins.bool]]:
+    def tidy_expired_issuers(self) -> Optional[pulumi.Input[_builtins.bool]]:
         """
         Set to true to automatically remove expired issuers past the
         `issuer_safety_buffer`. No keys will be removed as part of this operation.
@@ -377,12 +376,12 @@ class BackendConfigAutoTidyArgs:
         return pulumi.get(self, "tidy_expired_issuers")
 
     @tidy_expired_issuers.setter
-    def tidy_expired_issuers(self, value: Optional[pulumi.Input[builtins.bool]]):
+    def tidy_expired_issuers(self, value: Optional[pulumi.Input[_builtins.bool]]):
         pulumi.set(self, "tidy_expired_issuers", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="tidyMoveLegacyCaBundle")
-    def tidy_move_legacy_ca_bundle(self) -> Optional[pulumi.Input[builtins.bool]]:
+    def tidy_move_legacy_ca_bundle(self) -> Optional[pulumi.Input[_builtins.bool]]:
         """
         Set to true to move the legacy `ca_bundle` from
         `/config/ca_bundle` to `/config/ca_bundle.bak`.
@@ -390,12 +389,12 @@ class BackendConfigAutoTidyArgs:
         return pulumi.get(self, "tidy_move_legacy_ca_bundle")
 
     @tidy_move_legacy_ca_bundle.setter
-    def tidy_move_legacy_ca_bundle(self, value: Optional[pulumi.Input[builtins.bool]]):
+    def tidy_move_legacy_ca_bundle(self, value: Optional[pulumi.Input[_builtins.bool]]):
         pulumi.set(self, "tidy_move_legacy_ca_bundle", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="tidyRevocationQueue")
-    def tidy_revocation_queue(self) -> Optional[pulumi.Input[builtins.bool]]:
+    def tidy_revocation_queue(self) -> Optional[pulumi.Input[_builtins.bool]]:
         """
         Set to true to remove stale revocation queue entries that
         haven't been confirmed by any active cluster.
@@ -403,12 +402,12 @@ class BackendConfigAutoTidyArgs:
         return pulumi.get(self, "tidy_revocation_queue")
 
     @tidy_revocation_queue.setter
-    def tidy_revocation_queue(self, value: Optional[pulumi.Input[builtins.bool]]):
+    def tidy_revocation_queue(self, value: Optional[pulumi.Input[_builtins.bool]]):
         pulumi.set(self, "tidy_revocation_queue", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="tidyRevokedCertIssuerAssociations")
-    def tidy_revoked_cert_issuer_associations(self) -> Optional[pulumi.Input[builtins.bool]]:
+    def tidy_revoked_cert_issuer_associations(self) -> Optional[pulumi.Input[_builtins.bool]]:
         """
         Set to true to validate issuer associations
         on revocation entries. This helps increase the performance of CRL building and OCSP responses.
@@ -416,12 +415,12 @@ class BackendConfigAutoTidyArgs:
         return pulumi.get(self, "tidy_revoked_cert_issuer_associations")
 
     @tidy_revoked_cert_issuer_associations.setter
-    def tidy_revoked_cert_issuer_associations(self, value: Optional[pulumi.Input[builtins.bool]]):
+    def tidy_revoked_cert_issuer_associations(self, value: Optional[pulumi.Input[_builtins.bool]]):
         pulumi.set(self, "tidy_revoked_cert_issuer_associations", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="tidyRevokedCerts")
-    def tidy_revoked_certs(self) -> Optional[pulumi.Input[builtins.bool]]:
+    def tidy_revoked_certs(self) -> Optional[pulumi.Input[_builtins.bool]]:
         """
         Set to true to remove all invalid and expired certificates from
         storage. A revoked storage entry is considered invalid if the entry is empty, or the value within
@@ -431,80 +430,80 @@ class BackendConfigAutoTidyArgs:
         return pulumi.get(self, "tidy_revoked_certs")
 
     @tidy_revoked_certs.setter
-    def tidy_revoked_certs(self, value: Optional[pulumi.Input[builtins.bool]]):
+    def tidy_revoked_certs(self, value: Optional[pulumi.Input[_builtins.bool]]):
         pulumi.set(self, "tidy_revoked_certs", value)
 
 
 @pulumi.input_type
 class _BackendConfigAutoTidyState:
     def __init__(__self__, *,
-                 acme_account_safety_buffer: Optional[pulumi.Input[builtins.str]] = None,
-                 backend: Optional[pulumi.Input[builtins.str]] = None,
-                 enabled: Optional[pulumi.Input[builtins.bool]] = None,
-                 interval_duration: Optional[pulumi.Input[builtins.str]] = None,
-                 issuer_safety_buffer: Optional[pulumi.Input[builtins.str]] = None,
-                 maintain_stored_certificate_counts: Optional[pulumi.Input[builtins.bool]] = None,
-                 max_startup_backoff_duration: Optional[pulumi.Input[builtins.str]] = None,
-                 min_startup_backoff_duration: Optional[pulumi.Input[builtins.str]] = None,
-                 namespace: Optional[pulumi.Input[builtins.str]] = None,
-                 pause_duration: Optional[pulumi.Input[builtins.str]] = None,
-                 publish_stored_certificate_count_metrics: Optional[pulumi.Input[builtins.bool]] = None,
-                 revocation_queue_safety_buffer: Optional[pulumi.Input[builtins.str]] = None,
-                 safety_buffer: Optional[pulumi.Input[builtins.str]] = None,
-                 tidy_acme: Optional[pulumi.Input[builtins.bool]] = None,
-                 tidy_cert_metadata: Optional[pulumi.Input[builtins.bool]] = None,
-                 tidy_cert_store: Optional[pulumi.Input[builtins.bool]] = None,
-                 tidy_cmpv2_nonce_store: Optional[pulumi.Input[builtins.bool]] = None,
-                 tidy_cross_cluster_revoked_certs: Optional[pulumi.Input[builtins.bool]] = None,
-                 tidy_expired_issuers: Optional[pulumi.Input[builtins.bool]] = None,
-                 tidy_move_legacy_ca_bundle: Optional[pulumi.Input[builtins.bool]] = None,
-                 tidy_revocation_queue: Optional[pulumi.Input[builtins.bool]] = None,
-                 tidy_revoked_cert_issuer_associations: Optional[pulumi.Input[builtins.bool]] = None,
-                 tidy_revoked_certs: Optional[pulumi.Input[builtins.bool]] = None):
+                 acme_account_safety_buffer: Optional[pulumi.Input[_builtins.str]] = None,
+                 backend: Optional[pulumi.Input[_builtins.str]] = None,
+                 enabled: Optional[pulumi.Input[_builtins.bool]] = None,
+                 interval_duration: Optional[pulumi.Input[_builtins.str]] = None,
+                 issuer_safety_buffer: Optional[pulumi.Input[_builtins.str]] = None,
+                 maintain_stored_certificate_counts: Optional[pulumi.Input[_builtins.bool]] = None,
+                 max_startup_backoff_duration: Optional[pulumi.Input[_builtins.str]] = None,
+                 min_startup_backoff_duration: Optional[pulumi.Input[_builtins.str]] = None,
+                 namespace: Optional[pulumi.Input[_builtins.str]] = None,
+                 pause_duration: Optional[pulumi.Input[_builtins.str]] = None,
+                 publish_stored_certificate_count_metrics: Optional[pulumi.Input[_builtins.bool]] = None,
+                 revocation_queue_safety_buffer: Optional[pulumi.Input[_builtins.str]] = None,
+                 safety_buffer: Optional[pulumi.Input[_builtins.str]] = None,
+                 tidy_acme: Optional[pulumi.Input[_builtins.bool]] = None,
+                 tidy_cert_metadata: Optional[pulumi.Input[_builtins.bool]] = None,
+                 tidy_cert_store: Optional[pulumi.Input[_builtins.bool]] = None,
+                 tidy_cmpv2_nonce_store: Optional[pulumi.Input[_builtins.bool]] = None,
+                 tidy_cross_cluster_revoked_certs: Optional[pulumi.Input[_builtins.bool]] = None,
+                 tidy_expired_issuers: Optional[pulumi.Input[_builtins.bool]] = None,
+                 tidy_move_legacy_ca_bundle: Optional[pulumi.Input[_builtins.bool]] = None,
+                 tidy_revocation_queue: Optional[pulumi.Input[_builtins.bool]] = None,
+                 tidy_revoked_cert_issuer_associations: Optional[pulumi.Input[_builtins.bool]] = None,
+                 tidy_revoked_certs: Optional[pulumi.Input[_builtins.bool]] = None):
         """
         Input properties used for looking up and filtering BackendConfigAutoTidy resources.
-        :param pulumi.Input[builtins.str] acme_account_safety_buffer: The amount of time that must pass after creation that an account with no orders is marked revoked, and the amount of
+        :param pulumi.Input[_builtins.str] acme_account_safety_buffer: The amount of time that must pass after creation that an account with no orders is marked revoked, and the amount of
                time after being marked revoked or deactivated.
-        :param pulumi.Input[builtins.str] backend: The path to the PKI secret backend to
+        :param pulumi.Input[_builtins.str] backend: The path to the PKI secret backend to
                read the configuration from, with no leading or trailing `/`s.
-        :param pulumi.Input[builtins.bool] enabled: Specifies whether automatic tidy is enabled or not.
-        :param pulumi.Input[builtins.str] interval_duration: Interval at which to run an auto-tidy operation. This is the time
+        :param pulumi.Input[_builtins.bool] enabled: Specifies whether automatic tidy is enabled or not.
+        :param pulumi.Input[_builtins.str] interval_duration: Interval at which to run an auto-tidy operation. This is the time
                between tidy invocations (after one finishes to the start of the next).
-        :param pulumi.Input[builtins.str] issuer_safety_buffer: The amount of extra time that must have passed beyond issuer's
+        :param pulumi.Input[_builtins.str] issuer_safety_buffer: The amount of extra time that must have passed beyond issuer's
                expiration before it is removed from the backend storage.
-        :param pulumi.Input[builtins.bool] maintain_stored_certificate_counts: This configures whether stored certificate are
+        :param pulumi.Input[_builtins.bool] maintain_stored_certificate_counts: This configures whether stored certificate are
                counted upon initialization of the backend, and whether during normal operation, a running count
                of certificates stored is maintained.
-        :param pulumi.Input[builtins.str] max_startup_backoff_duration: The maximum amount of time auto-tidy will be delayed
+        :param pulumi.Input[_builtins.str] max_startup_backoff_duration: The maximum amount of time auto-tidy will be delayed
                after startup.
-        :param pulumi.Input[builtins.str] min_startup_backoff_duration: The minimum amount of time auto-tidy will be delayed
+        :param pulumi.Input[_builtins.str] min_startup_backoff_duration: The minimum amount of time auto-tidy will be delayed
                after startup.
-        :param pulumi.Input[builtins.str] namespace: The namespace of the target resource.
+        :param pulumi.Input[_builtins.str] namespace: The namespace of the target resource.
                The value should not contain leading or trailing forward slashes.
                The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault/index.html#namespace).
                *Available only for Vault Enterprise*.
-        :param pulumi.Input[builtins.str] pause_duration: The amount of time to wait between processing certificates.
-        :param pulumi.Input[builtins.bool] publish_stored_certificate_count_metrics: This configures whether the stored
+        :param pulumi.Input[_builtins.str] pause_duration: The amount of time to wait between processing certificates.
+        :param pulumi.Input[_builtins.bool] publish_stored_certificate_count_metrics: This configures whether the stored
                certificate count is published to the metrics consumer.
-        :param pulumi.Input[builtins.str] revocation_queue_safety_buffer: The amount of time that must pass from the
+        :param pulumi.Input[_builtins.str] revocation_queue_safety_buffer: The amount of time that must pass from the
                cross-cluster revocation request being initiated to when it will be slated for removal.
-        :param pulumi.Input[builtins.str] safety_buffer: The amount of extra time that must have passed beyond certificate
+        :param pulumi.Input[_builtins.str] safety_buffer: The amount of extra time that must have passed beyond certificate
                expiration before it is removed from the backend storage and/or revocation list.
-        :param pulumi.Input[builtins.bool] tidy_acme: Set to true to enable tidying ACME accounts, orders and authorizations.
-        :param pulumi.Input[builtins.bool] tidy_cert_metadata: Set to true to enable tidying up certificate metadata.
-        :param pulumi.Input[builtins.bool] tidy_cert_store: Set to true to enable tidying up the certificate store
-        :param pulumi.Input[builtins.bool] tidy_cmpv2_nonce_store: Set to true to enable tidying up the CMPv2 nonce store.
-        :param pulumi.Input[builtins.bool] tidy_cross_cluster_revoked_certs: Set to true to enable tidying up the cross-cluster
+        :param pulumi.Input[_builtins.bool] tidy_acme: Set to true to enable tidying ACME accounts, orders and authorizations.
+        :param pulumi.Input[_builtins.bool] tidy_cert_metadata: Set to true to enable tidying up certificate metadata.
+        :param pulumi.Input[_builtins.bool] tidy_cert_store: Set to true to enable tidying up the certificate store
+        :param pulumi.Input[_builtins.bool] tidy_cmpv2_nonce_store: Set to true to enable tidying up the CMPv2 nonce store.
+        :param pulumi.Input[_builtins.bool] tidy_cross_cluster_revoked_certs: Set to true to enable tidying up the cross-cluster
                revoked certificate store.
-        :param pulumi.Input[builtins.bool] tidy_expired_issuers: Set to true to automatically remove expired issuers past the
+        :param pulumi.Input[_builtins.bool] tidy_expired_issuers: Set to true to automatically remove expired issuers past the
                `issuer_safety_buffer`. No keys will be removed as part of this operation.
-        :param pulumi.Input[builtins.bool] tidy_move_legacy_ca_bundle: Set to true to move the legacy `ca_bundle` from
+        :param pulumi.Input[_builtins.bool] tidy_move_legacy_ca_bundle: Set to true to move the legacy `ca_bundle` from
                `/config/ca_bundle` to `/config/ca_bundle.bak`.
-        :param pulumi.Input[builtins.bool] tidy_revocation_queue: Set to true to remove stale revocation queue entries that
+        :param pulumi.Input[_builtins.bool] tidy_revocation_queue: Set to true to remove stale revocation queue entries that
                haven't been confirmed by any active cluster.
-        :param pulumi.Input[builtins.bool] tidy_revoked_cert_issuer_associations: Set to true to validate issuer associations
+        :param pulumi.Input[_builtins.bool] tidy_revoked_cert_issuer_associations: Set to true to validate issuer associations
                on revocation entries. This helps increase the performance of CRL building and OCSP responses.
-        :param pulumi.Input[builtins.bool] tidy_revoked_certs: Set to true to remove all invalid and expired certificates from
+        :param pulumi.Input[_builtins.bool] tidy_revoked_certs: Set to true to remove all invalid and expired certificates from
                storage. A revoked storage entry is considered invalid if the entry is empty, or the value within
                the entry is empty. If a certificate is removed due to expiry, the entry will also be removed from
                the CRL, and the CRL will be rotated.
@@ -556,9 +555,9 @@ class _BackendConfigAutoTidyState:
         if tidy_revoked_certs is not None:
             pulumi.set(__self__, "tidy_revoked_certs", tidy_revoked_certs)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="acmeAccountSafetyBuffer")
-    def acme_account_safety_buffer(self) -> Optional[pulumi.Input[builtins.str]]:
+    def acme_account_safety_buffer(self) -> Optional[pulumi.Input[_builtins.str]]:
         """
         The amount of time that must pass after creation that an account with no orders is marked revoked, and the amount of
         time after being marked revoked or deactivated.
@@ -566,12 +565,12 @@ class _BackendConfigAutoTidyState:
         return pulumi.get(self, "acme_account_safety_buffer")
 
     @acme_account_safety_buffer.setter
-    def acme_account_safety_buffer(self, value: Optional[pulumi.Input[builtins.str]]):
+    def acme_account_safety_buffer(self, value: Optional[pulumi.Input[_builtins.str]]):
         pulumi.set(self, "acme_account_safety_buffer", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter
-    def backend(self) -> Optional[pulumi.Input[builtins.str]]:
+    def backend(self) -> Optional[pulumi.Input[_builtins.str]]:
         """
         The path to the PKI secret backend to
         read the configuration from, with no leading or trailing `/`s.
@@ -579,24 +578,24 @@ class _BackendConfigAutoTidyState:
         return pulumi.get(self, "backend")
 
     @backend.setter
-    def backend(self, value: Optional[pulumi.Input[builtins.str]]):
+    def backend(self, value: Optional[pulumi.Input[_builtins.str]]):
         pulumi.set(self, "backend", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter
-    def enabled(self) -> Optional[pulumi.Input[builtins.bool]]:
+    def enabled(self) -> Optional[pulumi.Input[_builtins.bool]]:
         """
         Specifies whether automatic tidy is enabled or not.
         """
         return pulumi.get(self, "enabled")
 
     @enabled.setter
-    def enabled(self, value: Optional[pulumi.Input[builtins.bool]]):
+    def enabled(self, value: Optional[pulumi.Input[_builtins.bool]]):
         pulumi.set(self, "enabled", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="intervalDuration")
-    def interval_duration(self) -> Optional[pulumi.Input[builtins.str]]:
+    def interval_duration(self) -> Optional[pulumi.Input[_builtins.str]]:
         """
         Interval at which to run an auto-tidy operation. This is the time
         between tidy invocations (after one finishes to the start of the next).
@@ -604,12 +603,12 @@ class _BackendConfigAutoTidyState:
         return pulumi.get(self, "interval_duration")
 
     @interval_duration.setter
-    def interval_duration(self, value: Optional[pulumi.Input[builtins.str]]):
+    def interval_duration(self, value: Optional[pulumi.Input[_builtins.str]]):
         pulumi.set(self, "interval_duration", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="issuerSafetyBuffer")
-    def issuer_safety_buffer(self) -> Optional[pulumi.Input[builtins.str]]:
+    def issuer_safety_buffer(self) -> Optional[pulumi.Input[_builtins.str]]:
         """
         The amount of extra time that must have passed beyond issuer's
         expiration before it is removed from the backend storage.
@@ -617,12 +616,12 @@ class _BackendConfigAutoTidyState:
         return pulumi.get(self, "issuer_safety_buffer")
 
     @issuer_safety_buffer.setter
-    def issuer_safety_buffer(self, value: Optional[pulumi.Input[builtins.str]]):
+    def issuer_safety_buffer(self, value: Optional[pulumi.Input[_builtins.str]]):
         pulumi.set(self, "issuer_safety_buffer", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="maintainStoredCertificateCounts")
-    def maintain_stored_certificate_counts(self) -> Optional[pulumi.Input[builtins.bool]]:
+    def maintain_stored_certificate_counts(self) -> Optional[pulumi.Input[_builtins.bool]]:
         """
         This configures whether stored certificate are
         counted upon initialization of the backend, and whether during normal operation, a running count
@@ -631,12 +630,12 @@ class _BackendConfigAutoTidyState:
         return pulumi.get(self, "maintain_stored_certificate_counts")
 
     @maintain_stored_certificate_counts.setter
-    def maintain_stored_certificate_counts(self, value: Optional[pulumi.Input[builtins.bool]]):
+    def maintain_stored_certificate_counts(self, value: Optional[pulumi.Input[_builtins.bool]]):
         pulumi.set(self, "maintain_stored_certificate_counts", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="maxStartupBackoffDuration")
-    def max_startup_backoff_duration(self) -> Optional[pulumi.Input[builtins.str]]:
+    def max_startup_backoff_duration(self) -> Optional[pulumi.Input[_builtins.str]]:
         """
         The maximum amount of time auto-tidy will be delayed
         after startup.
@@ -644,12 +643,12 @@ class _BackendConfigAutoTidyState:
         return pulumi.get(self, "max_startup_backoff_duration")
 
     @max_startup_backoff_duration.setter
-    def max_startup_backoff_duration(self, value: Optional[pulumi.Input[builtins.str]]):
+    def max_startup_backoff_duration(self, value: Optional[pulumi.Input[_builtins.str]]):
         pulumi.set(self, "max_startup_backoff_duration", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="minStartupBackoffDuration")
-    def min_startup_backoff_duration(self) -> Optional[pulumi.Input[builtins.str]]:
+    def min_startup_backoff_duration(self) -> Optional[pulumi.Input[_builtins.str]]:
         """
         The minimum amount of time auto-tidy will be delayed
         after startup.
@@ -657,12 +656,12 @@ class _BackendConfigAutoTidyState:
         return pulumi.get(self, "min_startup_backoff_duration")
 
     @min_startup_backoff_duration.setter
-    def min_startup_backoff_duration(self, value: Optional[pulumi.Input[builtins.str]]):
+    def min_startup_backoff_duration(self, value: Optional[pulumi.Input[_builtins.str]]):
         pulumi.set(self, "min_startup_backoff_duration", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter
-    def namespace(self) -> Optional[pulumi.Input[builtins.str]]:
+    def namespace(self) -> Optional[pulumi.Input[_builtins.str]]:
         """
         The namespace of the target resource.
         The value should not contain leading or trailing forward slashes.
@@ -672,24 +671,24 @@ class _BackendConfigAutoTidyState:
         return pulumi.get(self, "namespace")
 
     @namespace.setter
-    def namespace(self, value: Optional[pulumi.Input[builtins.str]]):
+    def namespace(self, value: Optional[pulumi.Input[_builtins.str]]):
         pulumi.set(self, "namespace", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="pauseDuration")
-    def pause_duration(self) -> Optional[pulumi.Input[builtins.str]]:
+    def pause_duration(self) -> Optional[pulumi.Input[_builtins.str]]:
         """
         The amount of time to wait between processing certificates.
         """
         return pulumi.get(self, "pause_duration")
 
     @pause_duration.setter
-    def pause_duration(self, value: Optional[pulumi.Input[builtins.str]]):
+    def pause_duration(self, value: Optional[pulumi.Input[_builtins.str]]):
         pulumi.set(self, "pause_duration", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="publishStoredCertificateCountMetrics")
-    def publish_stored_certificate_count_metrics(self) -> Optional[pulumi.Input[builtins.bool]]:
+    def publish_stored_certificate_count_metrics(self) -> Optional[pulumi.Input[_builtins.bool]]:
         """
         This configures whether the stored
         certificate count is published to the metrics consumer.
@@ -697,12 +696,12 @@ class _BackendConfigAutoTidyState:
         return pulumi.get(self, "publish_stored_certificate_count_metrics")
 
     @publish_stored_certificate_count_metrics.setter
-    def publish_stored_certificate_count_metrics(self, value: Optional[pulumi.Input[builtins.bool]]):
+    def publish_stored_certificate_count_metrics(self, value: Optional[pulumi.Input[_builtins.bool]]):
         pulumi.set(self, "publish_stored_certificate_count_metrics", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="revocationQueueSafetyBuffer")
-    def revocation_queue_safety_buffer(self) -> Optional[pulumi.Input[builtins.str]]:
+    def revocation_queue_safety_buffer(self) -> Optional[pulumi.Input[_builtins.str]]:
         """
         The amount of time that must pass from the
         cross-cluster revocation request being initiated to when it will be slated for removal.
@@ -710,12 +709,12 @@ class _BackendConfigAutoTidyState:
         return pulumi.get(self, "revocation_queue_safety_buffer")
 
     @revocation_queue_safety_buffer.setter
-    def revocation_queue_safety_buffer(self, value: Optional[pulumi.Input[builtins.str]]):
+    def revocation_queue_safety_buffer(self, value: Optional[pulumi.Input[_builtins.str]]):
         pulumi.set(self, "revocation_queue_safety_buffer", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="safetyBuffer")
-    def safety_buffer(self) -> Optional[pulumi.Input[builtins.str]]:
+    def safety_buffer(self) -> Optional[pulumi.Input[_builtins.str]]:
         """
         The amount of extra time that must have passed beyond certificate
         expiration before it is removed from the backend storage and/or revocation list.
@@ -723,60 +722,60 @@ class _BackendConfigAutoTidyState:
         return pulumi.get(self, "safety_buffer")
 
     @safety_buffer.setter
-    def safety_buffer(self, value: Optional[pulumi.Input[builtins.str]]):
+    def safety_buffer(self, value: Optional[pulumi.Input[_builtins.str]]):
         pulumi.set(self, "safety_buffer", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="tidyAcme")
-    def tidy_acme(self) -> Optional[pulumi.Input[builtins.bool]]:
+    def tidy_acme(self) -> Optional[pulumi.Input[_builtins.bool]]:
         """
         Set to true to enable tidying ACME accounts, orders and authorizations.
         """
         return pulumi.get(self, "tidy_acme")
 
     @tidy_acme.setter
-    def tidy_acme(self, value: Optional[pulumi.Input[builtins.bool]]):
+    def tidy_acme(self, value: Optional[pulumi.Input[_builtins.bool]]):
         pulumi.set(self, "tidy_acme", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="tidyCertMetadata")
-    def tidy_cert_metadata(self) -> Optional[pulumi.Input[builtins.bool]]:
+    def tidy_cert_metadata(self) -> Optional[pulumi.Input[_builtins.bool]]:
         """
         Set to true to enable tidying up certificate metadata.
         """
         return pulumi.get(self, "tidy_cert_metadata")
 
     @tidy_cert_metadata.setter
-    def tidy_cert_metadata(self, value: Optional[pulumi.Input[builtins.bool]]):
+    def tidy_cert_metadata(self, value: Optional[pulumi.Input[_builtins.bool]]):
         pulumi.set(self, "tidy_cert_metadata", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="tidyCertStore")
-    def tidy_cert_store(self) -> Optional[pulumi.Input[builtins.bool]]:
+    def tidy_cert_store(self) -> Optional[pulumi.Input[_builtins.bool]]:
         """
         Set to true to enable tidying up the certificate store
         """
         return pulumi.get(self, "tidy_cert_store")
 
     @tidy_cert_store.setter
-    def tidy_cert_store(self, value: Optional[pulumi.Input[builtins.bool]]):
+    def tidy_cert_store(self, value: Optional[pulumi.Input[_builtins.bool]]):
         pulumi.set(self, "tidy_cert_store", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="tidyCmpv2NonceStore")
-    def tidy_cmpv2_nonce_store(self) -> Optional[pulumi.Input[builtins.bool]]:
+    def tidy_cmpv2_nonce_store(self) -> Optional[pulumi.Input[_builtins.bool]]:
         """
         Set to true to enable tidying up the CMPv2 nonce store.
         """
         return pulumi.get(self, "tidy_cmpv2_nonce_store")
 
     @tidy_cmpv2_nonce_store.setter
-    def tidy_cmpv2_nonce_store(self, value: Optional[pulumi.Input[builtins.bool]]):
+    def tidy_cmpv2_nonce_store(self, value: Optional[pulumi.Input[_builtins.bool]]):
         pulumi.set(self, "tidy_cmpv2_nonce_store", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="tidyCrossClusterRevokedCerts")
-    def tidy_cross_cluster_revoked_certs(self) -> Optional[pulumi.Input[builtins.bool]]:
+    def tidy_cross_cluster_revoked_certs(self) -> Optional[pulumi.Input[_builtins.bool]]:
         """
         Set to true to enable tidying up the cross-cluster
         revoked certificate store.
@@ -784,12 +783,12 @@ class _BackendConfigAutoTidyState:
         return pulumi.get(self, "tidy_cross_cluster_revoked_certs")
 
     @tidy_cross_cluster_revoked_certs.setter
-    def tidy_cross_cluster_revoked_certs(self, value: Optional[pulumi.Input[builtins.bool]]):
+    def tidy_cross_cluster_revoked_certs(self, value: Optional[pulumi.Input[_builtins.bool]]):
         pulumi.set(self, "tidy_cross_cluster_revoked_certs", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="tidyExpiredIssuers")
-    def tidy_expired_issuers(self) -> Optional[pulumi.Input[builtins.bool]]:
+    def tidy_expired_issuers(self) -> Optional[pulumi.Input[_builtins.bool]]:
         """
         Set to true to automatically remove expired issuers past the
         `issuer_safety_buffer`. No keys will be removed as part of this operation.
@@ -797,12 +796,12 @@ class _BackendConfigAutoTidyState:
         return pulumi.get(self, "tidy_expired_issuers")
 
     @tidy_expired_issuers.setter
-    def tidy_expired_issuers(self, value: Optional[pulumi.Input[builtins.bool]]):
+    def tidy_expired_issuers(self, value: Optional[pulumi.Input[_builtins.bool]]):
         pulumi.set(self, "tidy_expired_issuers", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="tidyMoveLegacyCaBundle")
-    def tidy_move_legacy_ca_bundle(self) -> Optional[pulumi.Input[builtins.bool]]:
+    def tidy_move_legacy_ca_bundle(self) -> Optional[pulumi.Input[_builtins.bool]]:
         """
         Set to true to move the legacy `ca_bundle` from
         `/config/ca_bundle` to `/config/ca_bundle.bak`.
@@ -810,12 +809,12 @@ class _BackendConfigAutoTidyState:
         return pulumi.get(self, "tidy_move_legacy_ca_bundle")
 
     @tidy_move_legacy_ca_bundle.setter
-    def tidy_move_legacy_ca_bundle(self, value: Optional[pulumi.Input[builtins.bool]]):
+    def tidy_move_legacy_ca_bundle(self, value: Optional[pulumi.Input[_builtins.bool]]):
         pulumi.set(self, "tidy_move_legacy_ca_bundle", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="tidyRevocationQueue")
-    def tidy_revocation_queue(self) -> Optional[pulumi.Input[builtins.bool]]:
+    def tidy_revocation_queue(self) -> Optional[pulumi.Input[_builtins.bool]]:
         """
         Set to true to remove stale revocation queue entries that
         haven't been confirmed by any active cluster.
@@ -823,12 +822,12 @@ class _BackendConfigAutoTidyState:
         return pulumi.get(self, "tidy_revocation_queue")
 
     @tidy_revocation_queue.setter
-    def tidy_revocation_queue(self, value: Optional[pulumi.Input[builtins.bool]]):
+    def tidy_revocation_queue(self, value: Optional[pulumi.Input[_builtins.bool]]):
         pulumi.set(self, "tidy_revocation_queue", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="tidyRevokedCertIssuerAssociations")
-    def tidy_revoked_cert_issuer_associations(self) -> Optional[pulumi.Input[builtins.bool]]:
+    def tidy_revoked_cert_issuer_associations(self) -> Optional[pulumi.Input[_builtins.bool]]:
         """
         Set to true to validate issuer associations
         on revocation entries. This helps increase the performance of CRL building and OCSP responses.
@@ -836,12 +835,12 @@ class _BackendConfigAutoTidyState:
         return pulumi.get(self, "tidy_revoked_cert_issuer_associations")
 
     @tidy_revoked_cert_issuer_associations.setter
-    def tidy_revoked_cert_issuer_associations(self, value: Optional[pulumi.Input[builtins.bool]]):
+    def tidy_revoked_cert_issuer_associations(self, value: Optional[pulumi.Input[_builtins.bool]]):
         pulumi.set(self, "tidy_revoked_cert_issuer_associations", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="tidyRevokedCerts")
-    def tidy_revoked_certs(self) -> Optional[pulumi.Input[builtins.bool]]:
+    def tidy_revoked_certs(self) -> Optional[pulumi.Input[_builtins.bool]]:
         """
         Set to true to remove all invalid and expired certificates from
         storage. A revoked storage entry is considered invalid if the entry is empty, or the value within
@@ -851,7 +850,7 @@ class _BackendConfigAutoTidyState:
         return pulumi.get(self, "tidy_revoked_certs")
 
     @tidy_revoked_certs.setter
-    def tidy_revoked_certs(self, value: Optional[pulumi.Input[builtins.bool]]):
+    def tidy_revoked_certs(self, value: Optional[pulumi.Input[_builtins.bool]]):
         pulumi.set(self, "tidy_revoked_certs", value)
 
 
@@ -861,29 +860,29 @@ class BackendConfigAutoTidy(pulumi.CustomResource):
     def __init__(__self__,
                  resource_name: str,
                  opts: Optional[pulumi.ResourceOptions] = None,
-                 acme_account_safety_buffer: Optional[pulumi.Input[builtins.str]] = None,
-                 backend: Optional[pulumi.Input[builtins.str]] = None,
-                 enabled: Optional[pulumi.Input[builtins.bool]] = None,
-                 interval_duration: Optional[pulumi.Input[builtins.str]] = None,
-                 issuer_safety_buffer: Optional[pulumi.Input[builtins.str]] = None,
-                 maintain_stored_certificate_counts: Optional[pulumi.Input[builtins.bool]] = None,
-                 max_startup_backoff_duration: Optional[pulumi.Input[builtins.str]] = None,
-                 min_startup_backoff_duration: Optional[pulumi.Input[builtins.str]] = None,
-                 namespace: Optional[pulumi.Input[builtins.str]] = None,
-                 pause_duration: Optional[pulumi.Input[builtins.str]] = None,
-                 publish_stored_certificate_count_metrics: Optional[pulumi.Input[builtins.bool]] = None,
-                 revocation_queue_safety_buffer: Optional[pulumi.Input[builtins.str]] = None,
-                 safety_buffer: Optional[pulumi.Input[builtins.str]] = None,
-                 tidy_acme: Optional[pulumi.Input[builtins.bool]] = None,
-                 tidy_cert_metadata: Optional[pulumi.Input[builtins.bool]] = None,
-                 tidy_cert_store: Optional[pulumi.Input[builtins.bool]] = None,
-                 tidy_cmpv2_nonce_store: Optional[pulumi.Input[builtins.bool]] = None,
-                 tidy_cross_cluster_revoked_certs: Optional[pulumi.Input[builtins.bool]] = None,
-                 tidy_expired_issuers: Optional[pulumi.Input[builtins.bool]] = None,
-                 tidy_move_legacy_ca_bundle: Optional[pulumi.Input[builtins.bool]] = None,
-                 tidy_revocation_queue: Optional[pulumi.Input[builtins.bool]] = None,
-                 tidy_revoked_cert_issuer_associations: Optional[pulumi.Input[builtins.bool]] = None,
-                 tidy_revoked_certs: Optional[pulumi.Input[builtins.bool]] = None,
+                 acme_account_safety_buffer: Optional[pulumi.Input[_builtins.str]] = None,
+                 backend: Optional[pulumi.Input[_builtins.str]] = None,
+                 enabled: Optional[pulumi.Input[_builtins.bool]] = None,
+                 interval_duration: Optional[pulumi.Input[_builtins.str]] = None,
+                 issuer_safety_buffer: Optional[pulumi.Input[_builtins.str]] = None,
+                 maintain_stored_certificate_counts: Optional[pulumi.Input[_builtins.bool]] = None,
+                 max_startup_backoff_duration: Optional[pulumi.Input[_builtins.str]] = None,
+                 min_startup_backoff_duration: Optional[pulumi.Input[_builtins.str]] = None,
+                 namespace: Optional[pulumi.Input[_builtins.str]] = None,
+                 pause_duration: Optional[pulumi.Input[_builtins.str]] = None,
+                 publish_stored_certificate_count_metrics: Optional[pulumi.Input[_builtins.bool]] = None,
+                 revocation_queue_safety_buffer: Optional[pulumi.Input[_builtins.str]] = None,
+                 safety_buffer: Optional[pulumi.Input[_builtins.str]] = None,
+                 tidy_acme: Optional[pulumi.Input[_builtins.bool]] = None,
+                 tidy_cert_metadata: Optional[pulumi.Input[_builtins.bool]] = None,
+                 tidy_cert_store: Optional[pulumi.Input[_builtins.bool]] = None,
+                 tidy_cmpv2_nonce_store: Optional[pulumi.Input[_builtins.bool]] = None,
+                 tidy_cross_cluster_revoked_certs: Optional[pulumi.Input[_builtins.bool]] = None,
+                 tidy_expired_issuers: Optional[pulumi.Input[_builtins.bool]] = None,
+                 tidy_move_legacy_ca_bundle: Optional[pulumi.Input[_builtins.bool]] = None,
+                 tidy_revocation_queue: Optional[pulumi.Input[_builtins.bool]] = None,
+                 tidy_revoked_cert_issuer_associations: Optional[pulumi.Input[_builtins.bool]] = None,
+                 tidy_revoked_certs: Optional[pulumi.Input[_builtins.bool]] = None,
                  __props__=None):
         """
         Allows setting the Auto Tidy configuration on a PKI Secret Backend
@@ -899,7 +898,7 @@ class BackendConfigAutoTidy(pulumi.CustomResource):
             type="pki",
             default_lease_ttl_seconds=3600,
             max_lease_ttl_seconds=86400)
-        test = vault.pki_secret.BackendConfigAutoTidy("test",
+        test = vault.pkisecret.BackendConfigAutoTidy("test",
             backend=pki.path,
             enabled=True,
             tidy_cert_store=True,
@@ -908,48 +907,48 @@ class BackendConfigAutoTidy(pulumi.CustomResource):
 
         :param str resource_name: The name of the resource.
         :param pulumi.ResourceOptions opts: Options for the resource.
-        :param pulumi.Input[builtins.str] acme_account_safety_buffer: The amount of time that must pass after creation that an account with no orders is marked revoked, and the amount of
+        :param pulumi.Input[_builtins.str] acme_account_safety_buffer: The amount of time that must pass after creation that an account with no orders is marked revoked, and the amount of
                time after being marked revoked or deactivated.
-        :param pulumi.Input[builtins.str] backend: The path to the PKI secret backend to
+        :param pulumi.Input[_builtins.str] backend: The path to the PKI secret backend to
                read the configuration from, with no leading or trailing `/`s.
-        :param pulumi.Input[builtins.bool] enabled: Specifies whether automatic tidy is enabled or not.
-        :param pulumi.Input[builtins.str] interval_duration: Interval at which to run an auto-tidy operation. This is the time
+        :param pulumi.Input[_builtins.bool] enabled: Specifies whether automatic tidy is enabled or not.
+        :param pulumi.Input[_builtins.str] interval_duration: Interval at which to run an auto-tidy operation. This is the time
                between tidy invocations (after one finishes to the start of the next).
-        :param pulumi.Input[builtins.str] issuer_safety_buffer: The amount of extra time that must have passed beyond issuer's
+        :param pulumi.Input[_builtins.str] issuer_safety_buffer: The amount of extra time that must have passed beyond issuer's
                expiration before it is removed from the backend storage.
-        :param pulumi.Input[builtins.bool] maintain_stored_certificate_counts: This configures whether stored certificate are
+        :param pulumi.Input[_builtins.bool] maintain_stored_certificate_counts: This configures whether stored certificate are
                counted upon initialization of the backend, and whether during normal operation, a running count
                of certificates stored is maintained.
-        :param pulumi.Input[builtins.str] max_startup_backoff_duration: The maximum amount of time auto-tidy will be delayed
+        :param pulumi.Input[_builtins.str] max_startup_backoff_duration: The maximum amount of time auto-tidy will be delayed
                after startup.
-        :param pulumi.Input[builtins.str] min_startup_backoff_duration: The minimum amount of time auto-tidy will be delayed
+        :param pulumi.Input[_builtins.str] min_startup_backoff_duration: The minimum amount of time auto-tidy will be delayed
                after startup.
-        :param pulumi.Input[builtins.str] namespace: The namespace of the target resource.
+        :param pulumi.Input[_builtins.str] namespace: The namespace of the target resource.
                The value should not contain leading or trailing forward slashes.
                The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault/index.html#namespace).
                *Available only for Vault Enterprise*.
-        :param pulumi.Input[builtins.str] pause_duration: The amount of time to wait between processing certificates.
-        :param pulumi.Input[builtins.bool] publish_stored_certificate_count_metrics: This configures whether the stored
+        :param pulumi.Input[_builtins.str] pause_duration: The amount of time to wait between processing certificates.
+        :param pulumi.Input[_builtins.bool] publish_stored_certificate_count_metrics: This configures whether the stored
                certificate count is published to the metrics consumer.
-        :param pulumi.Input[builtins.str] revocation_queue_safety_buffer: The amount of time that must pass from the
+        :param pulumi.Input[_builtins.str] revocation_queue_safety_buffer: The amount of time that must pass from the
                cross-cluster revocation request being initiated to when it will be slated for removal.
-        :param pulumi.Input[builtins.str] safety_buffer: The amount of extra time that must have passed beyond certificate
+        :param pulumi.Input[_builtins.str] safety_buffer: The amount of extra time that must have passed beyond certificate
                expiration before it is removed from the backend storage and/or revocation list.
-        :param pulumi.Input[builtins.bool] tidy_acme: Set to true to enable tidying ACME accounts, orders and authorizations.
-        :param pulumi.Input[builtins.bool] tidy_cert_metadata: Set to true to enable tidying up certificate metadata.
-        :param pulumi.Input[builtins.bool] tidy_cert_store: Set to true to enable tidying up the certificate store
-        :param pulumi.Input[builtins.bool] tidy_cmpv2_nonce_store: Set to true to enable tidying up the CMPv2 nonce store.
-        :param pulumi.Input[builtins.bool] tidy_cross_cluster_revoked_certs: Set to true to enable tidying up the cross-cluster
+        :param pulumi.Input[_builtins.bool] tidy_acme: Set to true to enable tidying ACME accounts, orders and authorizations.
+        :param pulumi.Input[_builtins.bool] tidy_cert_metadata: Set to true to enable tidying up certificate metadata.
+        :param pulumi.Input[_builtins.bool] tidy_cert_store: Set to true to enable tidying up the certificate store
+        :param pulumi.Input[_builtins.bool] tidy_cmpv2_nonce_store: Set to true to enable tidying up the CMPv2 nonce store.
+        :param pulumi.Input[_builtins.bool] tidy_cross_cluster_revoked_certs: Set to true to enable tidying up the cross-cluster
                revoked certificate store.
-        :param pulumi.Input[builtins.bool] tidy_expired_issuers: Set to true to automatically remove expired issuers past the
+        :param pulumi.Input[_builtins.bool] tidy_expired_issuers: Set to true to automatically remove expired issuers past the
                `issuer_safety_buffer`. No keys will be removed as part of this operation.
-        :param pulumi.Input[builtins.bool] tidy_move_legacy_ca_bundle: Set to true to move the legacy `ca_bundle` from
+        :param pulumi.Input[_builtins.bool] tidy_move_legacy_ca_bundle: Set to true to move the legacy `ca_bundle` from
                `/config/ca_bundle` to `/config/ca_bundle.bak`.
-        :param pulumi.Input[builtins.bool] tidy_revocation_queue: Set to true to remove stale revocation queue entries that
+        :param pulumi.Input[_builtins.bool] tidy_revocation_queue: Set to true to remove stale revocation queue entries that
                haven't been confirmed by any active cluster.
-        :param pulumi.Input[builtins.bool] tidy_revoked_cert_issuer_associations: Set to true to validate issuer associations
+        :param pulumi.Input[_builtins.bool] tidy_revoked_cert_issuer_associations: Set to true to validate issuer associations
                on revocation entries. This helps increase the performance of CRL building and OCSP responses.
-        :param pulumi.Input[builtins.bool] tidy_revoked_certs: Set to true to remove all invalid and expired certificates from
+        :param pulumi.Input[_builtins.bool] tidy_revoked_certs: Set to true to remove all invalid and expired certificates from
                storage. A revoked storage entry is considered invalid if the entry is empty, or the value within
                the entry is empty. If a certificate is removed due to expiry, the entry will also be removed from
                the CRL, and the CRL will be rotated.
@@ -974,7 +973,7 @@ class BackendConfigAutoTidy(pulumi.CustomResource):
             type="pki",
             default_lease_ttl_seconds=3600,
             max_lease_ttl_seconds=86400)
-        test = vault.pki_secret.BackendConfigAutoTidy("test",
+        test = vault.pkisecret.BackendConfigAutoTidy("test",
             backend=pki.path,
             enabled=True,
             tidy_cert_store=True,
@@ -996,29 +995,29 @@ class BackendConfigAutoTidy(pulumi.CustomResource):
     def _internal_init(__self__,
                  resource_name: str,
                  opts: Optional[pulumi.ResourceOptions] = None,
-                 acme_account_safety_buffer: Optional[pulumi.Input[builtins.str]] = None,
-                 backend: Optional[pulumi.Input[builtins.str]] = None,
-                 enabled: Optional[pulumi.Input[builtins.bool]] = None,
-                 interval_duration: Optional[pulumi.Input[builtins.str]] = None,
-                 issuer_safety_buffer: Optional[pulumi.Input[builtins.str]] = None,
-                 maintain_stored_certificate_counts: Optional[pulumi.Input[builtins.bool]] = None,
-                 max_startup_backoff_duration: Optional[pulumi.Input[builtins.str]] = None,
-                 min_startup_backoff_duration: Optional[pulumi.Input[builtins.str]] = None,
-                 namespace: Optional[pulumi.Input[builtins.str]] = None,
-                 pause_duration: Optional[pulumi.Input[builtins.str]] = None,
-                 publish_stored_certificate_count_metrics: Optional[pulumi.Input[builtins.bool]] = None,
-                 revocation_queue_safety_buffer: Optional[pulumi.Input[builtins.str]] = None,
-                 safety_buffer: Optional[pulumi.Input[builtins.str]] = None,
-                 tidy_acme: Optional[pulumi.Input[builtins.bool]] = None,
-                 tidy_cert_metadata: Optional[pulumi.Input[builtins.bool]] = None,
-                 tidy_cert_store: Optional[pulumi.Input[builtins.bool]] = None,
-                 tidy_cmpv2_nonce_store: Optional[pulumi.Input[builtins.bool]] = None,
-                 tidy_cross_cluster_revoked_certs: Optional[pulumi.Input[builtins.bool]] = None,
-                 tidy_expired_issuers: Optional[pulumi.Input[builtins.bool]] = None,
-                 tidy_move_legacy_ca_bundle: Optional[pulumi.Input[builtins.bool]] = None,
-                 tidy_revocation_queue: Optional[pulumi.Input[builtins.bool]] = None,
-                 tidy_revoked_cert_issuer_associations: Optional[pulumi.Input[builtins.bool]] = None,
-                 tidy_revoked_certs: Optional[pulumi.Input[builtins.bool]] = None,
+                 acme_account_safety_buffer: Optional[pulumi.Input[_builtins.str]] = None,
+                 backend: Optional[pulumi.Input[_builtins.str]] = None,
+                 enabled: Optional[pulumi.Input[_builtins.bool]] = None,
+                 interval_duration: Optional[pulumi.Input[_builtins.str]] = None,
+                 issuer_safety_buffer: Optional[pulumi.Input[_builtins.str]] = None,
+                 maintain_stored_certificate_counts: Optional[pulumi.Input[_builtins.bool]] = None,
+                 max_startup_backoff_duration: Optional[pulumi.Input[_builtins.str]] = None,
+                 min_startup_backoff_duration: Optional[pulumi.Input[_builtins.str]] = None,
+                 namespace: Optional[pulumi.Input[_builtins.str]] = None,
+                 pause_duration: Optional[pulumi.Input[_builtins.str]] = None,
+                 publish_stored_certificate_count_metrics: Optional[pulumi.Input[_builtins.bool]] = None,
+                 revocation_queue_safety_buffer: Optional[pulumi.Input[_builtins.str]] = None,
+                 safety_buffer: Optional[pulumi.Input[_builtins.str]] = None,
+                 tidy_acme: Optional[pulumi.Input[_builtins.bool]] = None,
+                 tidy_cert_metadata: Optional[pulumi.Input[_builtins.bool]] = None,
+                 tidy_cert_store: Optional[pulumi.Input[_builtins.bool]] = None,
+                 tidy_cmpv2_nonce_store: Optional[pulumi.Input[_builtins.bool]] = None,
+                 tidy_cross_cluster_revoked_certs: Optional[pulumi.Input[_builtins.bool]] = None,
+                 tidy_expired_issuers: Optional[pulumi.Input[_builtins.bool]] = None,
+                 tidy_move_legacy_ca_bundle: Optional[pulumi.Input[_builtins.bool]] = None,
+                 tidy_revocation_queue: Optional[pulumi.Input[_builtins.bool]] = None,
+                 tidy_revoked_cert_issuer_associations: Optional[pulumi.Input[_builtins.bool]] = None,
+                 tidy_revoked_certs: Optional[pulumi.Input[_builtins.bool]] = None,
                  __props__=None):
         opts = pulumi.ResourceOptions.merge(_utilities.get_resource_opts_defaults(), opts)
         if not isinstance(opts, pulumi.ResourceOptions):
@@ -1065,29 +1064,29 @@ class BackendConfigAutoTidy(pulumi.CustomResource):
     def get(resource_name: str,
             id: pulumi.Input[str],
             opts: Optional[pulumi.ResourceOptions] = None,
-            acme_account_safety_buffer: Optional[pulumi.Input[builtins.str]] = None,
-            backend: Optional[pulumi.Input[builtins.str]] = None,
-            enabled: Optional[pulumi.Input[builtins.bool]] = None,
-            interval_duration: Optional[pulumi.Input[builtins.str]] = None,
-            issuer_safety_buffer: Optional[pulumi.Input[builtins.str]] = None,
-            maintain_stored_certificate_counts: Optional[pulumi.Input[builtins.bool]] = None,
-            max_startup_backoff_duration: Optional[pulumi.Input[builtins.str]] = None,
-            min_startup_backoff_duration: Optional[pulumi.Input[builtins.str]] = None,
-            namespace: Optional[pulumi.Input[builtins.str]] = None,
-            pause_duration: Optional[pulumi.Input[builtins.str]] = None,
-            publish_stored_certificate_count_metrics: Optional[pulumi.Input[builtins.bool]] = None,
-            revocation_queue_safety_buffer: Optional[pulumi.Input[builtins.str]] = None,
-            safety_buffer: Optional[pulumi.Input[builtins.str]] = None,
-            tidy_acme: Optional[pulumi.Input[builtins.bool]] = None,
-            tidy_cert_metadata: Optional[pulumi.Input[builtins.bool]] = None,
-            tidy_cert_store: Optional[pulumi.Input[builtins.bool]] = None,
-            tidy_cmpv2_nonce_store: Optional[pulumi.Input[builtins.bool]] = None,
-            tidy_cross_cluster_revoked_certs: Optional[pulumi.Input[builtins.bool]] = None,
-            tidy_expired_issuers: Optional[pulumi.Input[builtins.bool]] = None,
-            tidy_move_legacy_ca_bundle: Optional[pulumi.Input[builtins.bool]] = None,
-            tidy_revocation_queue: Optional[pulumi.Input[builtins.bool]] = None,
-            tidy_revoked_cert_issuer_associations: Optional[pulumi.Input[builtins.bool]] = None,
-            tidy_revoked_certs: Optional[pulumi.Input[builtins.bool]] = None) -> 'BackendConfigAutoTidy':
+            acme_account_safety_buffer: Optional[pulumi.Input[_builtins.str]] = None,
+            backend: Optional[pulumi.Input[_builtins.str]] = None,
+            enabled: Optional[pulumi.Input[_builtins.bool]] = None,
+            interval_duration: Optional[pulumi.Input[_builtins.str]] = None,
+            issuer_safety_buffer: Optional[pulumi.Input[_builtins.str]] = None,
+            maintain_stored_certificate_counts: Optional[pulumi.Input[_builtins.bool]] = None,
+            max_startup_backoff_duration: Optional[pulumi.Input[_builtins.str]] = None,
+            min_startup_backoff_duration: Optional[pulumi.Input[_builtins.str]] = None,
+            namespace: Optional[pulumi.Input[_builtins.str]] = None,
+            pause_duration: Optional[pulumi.Input[_builtins.str]] = None,
+            publish_stored_certificate_count_metrics: Optional[pulumi.Input[_builtins.bool]] = None,
+            revocation_queue_safety_buffer: Optional[pulumi.Input[_builtins.str]] = None,
+            safety_buffer: Optional[pulumi.Input[_builtins.str]] = None,
+            tidy_acme: Optional[pulumi.Input[_builtins.bool]] = None,
+            tidy_cert_metadata: Optional[pulumi.Input[_builtins.bool]] = None,
+            tidy_cert_store: Optional[pulumi.Input[_builtins.bool]] = None,
+            tidy_cmpv2_nonce_store: Optional[pulumi.Input[_builtins.bool]] = None,
+            tidy_cross_cluster_revoked_certs: Optional[pulumi.Input[_builtins.bool]] = None,
+            tidy_expired_issuers: Optional[pulumi.Input[_builtins.bool]] = None,
+            tidy_move_legacy_ca_bundle: Optional[pulumi.Input[_builtins.bool]] = None,
+            tidy_revocation_queue: Optional[pulumi.Input[_builtins.bool]] = None,
+            tidy_revoked_cert_issuer_associations: Optional[pulumi.Input[_builtins.bool]] = None,
+            tidy_revoked_certs: Optional[pulumi.Input[_builtins.bool]] = None) -> 'BackendConfigAutoTidy':
         """
         Get an existing BackendConfigAutoTidy resource's state with the given name, id, and optional extra
         properties used to qualify the lookup.
@@ -1095,48 +1094,48 @@ class BackendConfigAutoTidy(pulumi.CustomResource):
         :param str resource_name: The unique name of the resulting resource.
         :param pulumi.Input[str] id: The unique provider ID of the resource to lookup.
         :param pulumi.ResourceOptions opts: Options for the resource.
-        :param pulumi.Input[builtins.str] acme_account_safety_buffer: The amount of time that must pass after creation that an account with no orders is marked revoked, and the amount of
+        :param pulumi.Input[_builtins.str] acme_account_safety_buffer: The amount of time that must pass after creation that an account with no orders is marked revoked, and the amount of
                time after being marked revoked or deactivated.
-        :param pulumi.Input[builtins.str] backend: The path to the PKI secret backend to
+        :param pulumi.Input[_builtins.str] backend: The path to the PKI secret backend to
                read the configuration from, with no leading or trailing `/`s.
-        :param pulumi.Input[builtins.bool] enabled: Specifies whether automatic tidy is enabled or not.
-        :param pulumi.Input[builtins.str] interval_duration: Interval at which to run an auto-tidy operation. This is the time
+        :param pulumi.Input[_builtins.bool] enabled: Specifies whether automatic tidy is enabled or not.
+        :param pulumi.Input[_builtins.str] interval_duration: Interval at which to run an auto-tidy operation. This is the time
                between tidy invocations (after one finishes to the start of the next).
-        :param pulumi.Input[builtins.str] issuer_safety_buffer: The amount of extra time that must have passed beyond issuer's
+        :param pulumi.Input[_builtins.str] issuer_safety_buffer: The amount of extra time that must have passed beyond issuer's
                expiration before it is removed from the backend storage.
-        :param pulumi.Input[builtins.bool] maintain_stored_certificate_counts: This configures whether stored certificate are
+        :param pulumi.Input[_builtins.bool] maintain_stored_certificate_counts: This configures whether stored certificate are
                counted upon initialization of the backend, and whether during normal operation, a running count
                of certificates stored is maintained.
-        :param pulumi.Input[builtins.str] max_startup_backoff_duration: The maximum amount of time auto-tidy will be delayed
+        :param pulumi.Input[_builtins.str] max_startup_backoff_duration: The maximum amount of time auto-tidy will be delayed
                after startup.
-        :param pulumi.Input[builtins.str] min_startup_backoff_duration: The minimum amount of time auto-tidy will be delayed
+        :param pulumi.Input[_builtins.str] min_startup_backoff_duration: The minimum amount of time auto-tidy will be delayed
                after startup.
-        :param pulumi.Input[builtins.str] namespace: The namespace of the target resource.
+        :param pulumi.Input[_builtins.str] namespace: The namespace of the target resource.
                The value should not contain leading or trailing forward slashes.
                The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault/index.html#namespace).
                *Available only for Vault Enterprise*.
-        :param pulumi.Input[builtins.str] pause_duration: The amount of time to wait between processing certificates.
-        :param pulumi.Input[builtins.bool] publish_stored_certificate_count_metrics: This configures whether the stored
+        :param pulumi.Input[_builtins.str] pause_duration: The amount of time to wait between processing certificates.
+        :param pulumi.Input[_builtins.bool] publish_stored_certificate_count_metrics: This configures whether the stored
                certificate count is published to the metrics consumer.
-        :param pulumi.Input[builtins.str] revocation_queue_safety_buffer: The amount of time that must pass from the
+        :param pulumi.Input[_builtins.str] revocation_queue_safety_buffer: The amount of time that must pass from the
                cross-cluster revocation request being initiated to when it will be slated for removal.
-        :param pulumi.Input[builtins.str] safety_buffer: The amount of extra time that must have passed beyond certificate
+        :param pulumi.Input[_builtins.str] safety_buffer: The amount of extra time that must have passed beyond certificate
                expiration before it is removed from the backend storage and/or revocation list.
-        :param pulumi.Input[builtins.bool] tidy_acme: Set to true to enable tidying ACME accounts, orders and authorizations.
-        :param pulumi.Input[builtins.bool] tidy_cert_metadata: Set to true to enable tidying up certificate metadata.
-        :param pulumi.Input[builtins.bool] tidy_cert_store: Set to true to enable tidying up the certificate store
-        :param pulumi.Input[builtins.bool] tidy_cmpv2_nonce_store: Set to true to enable tidying up the CMPv2 nonce store.
-        :param pulumi.Input[builtins.bool] tidy_cross_cluster_revoked_certs: Set to true to enable tidying up the cross-cluster
+        :param pulumi.Input[_builtins.bool] tidy_acme: Set to true to enable tidying ACME accounts, orders and authorizations.
+        :param pulumi.Input[_builtins.bool] tidy_cert_metadata: Set to true to enable tidying up certificate metadata.
+        :param pulumi.Input[_builtins.bool] tidy_cert_store: Set to true to enable tidying up the certificate store
+        :param pulumi.Input[_builtins.bool] tidy_cmpv2_nonce_store: Set to true to enable tidying up the CMPv2 nonce store.
+        :param pulumi.Input[_builtins.bool] tidy_cross_cluster_revoked_certs: Set to true to enable tidying up the cross-cluster
                revoked certificate store.
-        :param pulumi.Input[builtins.bool] tidy_expired_issuers: Set to true to automatically remove expired issuers past the
+        :param pulumi.Input[_builtins.bool] tidy_expired_issuers: Set to true to automatically remove expired issuers past the
                `issuer_safety_buffer`. No keys will be removed as part of this operation.
-        :param pulumi.Input[builtins.bool] tidy_move_legacy_ca_bundle: Set to true to move the legacy `ca_bundle` from
+        :param pulumi.Input[_builtins.bool] tidy_move_legacy_ca_bundle: Set to true to move the legacy `ca_bundle` from
                `/config/ca_bundle` to `/config/ca_bundle.bak`.
-        :param pulumi.Input[builtins.bool] tidy_revocation_queue: Set to true to remove stale revocation queue entries that
+        :param pulumi.Input[_builtins.bool] tidy_revocation_queue: Set to true to remove stale revocation queue entries that
                haven't been confirmed by any active cluster.
-        :param pulumi.Input[builtins.bool] tidy_revoked_cert_issuer_associations: Set to true to validate issuer associations
+        :param pulumi.Input[_builtins.bool] tidy_revoked_cert_issuer_associations: Set to true to validate issuer associations
                on revocation entries. This helps increase the performance of CRL building and OCSP responses.
-        :param pulumi.Input[builtins.bool] tidy_revoked_certs: Set to true to remove all invalid and expired certificates from
+        :param pulumi.Input[_builtins.bool] tidy_revoked_certs: Set to true to remove all invalid and expired certificates from
                storage. A revoked storage entry is considered invalid if the entry is empty, or the value within
                the entry is empty. If a certificate is removed due to expiry, the entry will also be removed from
                the CRL, and the CRL will be rotated.
@@ -1170,53 +1169,53 @@ class BackendConfigAutoTidy(pulumi.CustomResource):
         __props__.__dict__["tidy_revoked_certs"] = tidy_revoked_certs
         return BackendConfigAutoTidy(resource_name, opts=opts, __props__=__props__)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="acmeAccountSafetyBuffer")
-    def acme_account_safety_buffer(self) -> pulumi.Output[builtins.str]:
+    def acme_account_safety_buffer(self) -> pulumi.Output[_builtins.str]:
         """
         The amount of time that must pass after creation that an account with no orders is marked revoked, and the amount of
         time after being marked revoked or deactivated.
         """
         return pulumi.get(self, "acme_account_safety_buffer")
 
-    @property
+    @_builtins.property
     @pulumi.getter
-    def backend(self) -> pulumi.Output[builtins.str]:
+    def backend(self) -> pulumi.Output[_builtins.str]:
         """
         The path to the PKI secret backend to
         read the configuration from, with no leading or trailing `/`s.
         """
         return pulumi.get(self, "backend")
 
-    @property
+    @_builtins.property
     @pulumi.getter
-    def enabled(self) -> pulumi.Output[builtins.bool]:
+    def enabled(self) -> pulumi.Output[_builtins.bool]:
         """
         Specifies whether automatic tidy is enabled or not.
         """
         return pulumi.get(self, "enabled")
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="intervalDuration")
-    def interval_duration(self) -> pulumi.Output[builtins.str]:
+    def interval_duration(self) -> pulumi.Output[_builtins.str]:
         """
         Interval at which to run an auto-tidy operation. This is the time
         between tidy invocations (after one finishes to the start of the next).
         """
         return pulumi.get(self, "interval_duration")
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="issuerSafetyBuffer")
-    def issuer_safety_buffer(self) -> pulumi.Output[builtins.str]:
+    def issuer_safety_buffer(self) -> pulumi.Output[_builtins.str]:
         """
         The amount of extra time that must have passed beyond issuer's
         expiration before it is removed from the backend storage.
         """
         return pulumi.get(self, "issuer_safety_buffer")
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="maintainStoredCertificateCounts")
-    def maintain_stored_certificate_counts(self) -> pulumi.Output[Optional[builtins.bool]]:
+    def maintain_stored_certificate_counts(self) -> pulumi.Output[Optional[_builtins.bool]]:
         """
         This configures whether stored certificate are
         counted upon initialization of the backend, and whether during normal operation, a running count
@@ -1224,27 +1223,27 @@ class BackendConfigAutoTidy(pulumi.CustomResource):
         """
         return pulumi.get(self, "maintain_stored_certificate_counts")
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="maxStartupBackoffDuration")
-    def max_startup_backoff_duration(self) -> pulumi.Output[builtins.str]:
+    def max_startup_backoff_duration(self) -> pulumi.Output[_builtins.str]:
         """
         The maximum amount of time auto-tidy will be delayed
         after startup.
         """
         return pulumi.get(self, "max_startup_backoff_duration")
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="minStartupBackoffDuration")
-    def min_startup_backoff_duration(self) -> pulumi.Output[builtins.str]:
+    def min_startup_backoff_duration(self) -> pulumi.Output[_builtins.str]:
         """
         The minimum amount of time auto-tidy will be delayed
         after startup.
         """
         return pulumi.get(self, "min_startup_backoff_duration")
 
-    @property
+    @_builtins.property
     @pulumi.getter
-    def namespace(self) -> pulumi.Output[Optional[builtins.str]]:
+    def namespace(self) -> pulumi.Output[Optional[_builtins.str]]:
         """
         The namespace of the target resource.
         The value should not contain leading or trailing forward slashes.
@@ -1253,121 +1252,121 @@ class BackendConfigAutoTidy(pulumi.CustomResource):
         """
         return pulumi.get(self, "namespace")
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="pauseDuration")
-    def pause_duration(self) -> pulumi.Output[builtins.str]:
+    def pause_duration(self) -> pulumi.Output[_builtins.str]:
         """
         The amount of time to wait between processing certificates.
         """
         return pulumi.get(self, "pause_duration")
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="publishStoredCertificateCountMetrics")
-    def publish_stored_certificate_count_metrics(self) -> pulumi.Output[Optional[builtins.bool]]:
+    def publish_stored_certificate_count_metrics(self) -> pulumi.Output[Optional[_builtins.bool]]:
         """
         This configures whether the stored
         certificate count is published to the metrics consumer.
         """
         return pulumi.get(self, "publish_stored_certificate_count_metrics")
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="revocationQueueSafetyBuffer")
-    def revocation_queue_safety_buffer(self) -> pulumi.Output[builtins.str]:
+    def revocation_queue_safety_buffer(self) -> pulumi.Output[_builtins.str]:
         """
         The amount of time that must pass from the
         cross-cluster revocation request being initiated to when it will be slated for removal.
         """
         return pulumi.get(self, "revocation_queue_safety_buffer")
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="safetyBuffer")
-    def safety_buffer(self) -> pulumi.Output[builtins.str]:
+    def safety_buffer(self) -> pulumi.Output[_builtins.str]:
         """
         The amount of extra time that must have passed beyond certificate
         expiration before it is removed from the backend storage and/or revocation list.
         """
         return pulumi.get(self, "safety_buffer")
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="tidyAcme")
-    def tidy_acme(self) -> pulumi.Output[Optional[builtins.bool]]:
+    def tidy_acme(self) -> pulumi.Output[Optional[_builtins.bool]]:
         """
         Set to true to enable tidying ACME accounts, orders and authorizations.
         """
         return pulumi.get(self, "tidy_acme")
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="tidyCertMetadata")
-    def tidy_cert_metadata(self) -> pulumi.Output[Optional[builtins.bool]]:
+    def tidy_cert_metadata(self) -> pulumi.Output[Optional[_builtins.bool]]:
         """
         Set to true to enable tidying up certificate metadata.
         """
         return pulumi.get(self, "tidy_cert_metadata")
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="tidyCertStore")
-    def tidy_cert_store(self) -> pulumi.Output[Optional[builtins.bool]]:
+    def tidy_cert_store(self) -> pulumi.Output[Optional[_builtins.bool]]:
         """
         Set to true to enable tidying up the certificate store
         """
         return pulumi.get(self, "tidy_cert_store")
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="tidyCmpv2NonceStore")
-    def tidy_cmpv2_nonce_store(self) -> pulumi.Output[Optional[builtins.bool]]:
+    def tidy_cmpv2_nonce_store(self) -> pulumi.Output[Optional[_builtins.bool]]:
         """
         Set to true to enable tidying up the CMPv2 nonce store.
         """
         return pulumi.get(self, "tidy_cmpv2_nonce_store")
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="tidyCrossClusterRevokedCerts")
-    def tidy_cross_cluster_revoked_certs(self) -> pulumi.Output[Optional[builtins.bool]]:
+    def tidy_cross_cluster_revoked_certs(self) -> pulumi.Output[Optional[_builtins.bool]]:
         """
         Set to true to enable tidying up the cross-cluster
         revoked certificate store.
         """
         return pulumi.get(self, "tidy_cross_cluster_revoked_certs")
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="tidyExpiredIssuers")
-    def tidy_expired_issuers(self) -> pulumi.Output[Optional[builtins.bool]]:
+    def tidy_expired_issuers(self) -> pulumi.Output[Optional[_builtins.bool]]:
         """
         Set to true to automatically remove expired issuers past the
         `issuer_safety_buffer`. No keys will be removed as part of this operation.
         """
         return pulumi.get(self, "tidy_expired_issuers")
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="tidyMoveLegacyCaBundle")
-    def tidy_move_legacy_ca_bundle(self) -> pulumi.Output[Optional[builtins.bool]]:
+    def tidy_move_legacy_ca_bundle(self) -> pulumi.Output[Optional[_builtins.bool]]:
         """
         Set to true to move the legacy `ca_bundle` from
         `/config/ca_bundle` to `/config/ca_bundle.bak`.
         """
         return pulumi.get(self, "tidy_move_legacy_ca_bundle")
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="tidyRevocationQueue")
-    def tidy_revocation_queue(self) -> pulumi.Output[Optional[builtins.bool]]:
+    def tidy_revocation_queue(self) -> pulumi.Output[Optional[_builtins.bool]]:
         """
         Set to true to remove stale revocation queue entries that
         haven't been confirmed by any active cluster.
         """
         return pulumi.get(self, "tidy_revocation_queue")
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="tidyRevokedCertIssuerAssociations")
-    def tidy_revoked_cert_issuer_associations(self) -> pulumi.Output[Optional[builtins.bool]]:
+    def tidy_revoked_cert_issuer_associations(self) -> pulumi.Output[Optional[_builtins.bool]]:
         """
         Set to true to validate issuer associations
         on revocation entries. This helps increase the performance of CRL building and OCSP responses.
         """
         return pulumi.get(self, "tidy_revoked_cert_issuer_associations")
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="tidyRevokedCerts")
-    def tidy_revoked_certs(self) -> pulumi.Output[Optional[builtins.bool]]:
+    def tidy_revoked_certs(self) -> pulumi.Output[Optional[_builtins.bool]]:
         """
         Set to true to remove all invalid and expired certificates from
         storage. A revoked storage entry is considered invalid if the entry is empty, or the value within