pulumi-vault 7.2.0a1753339763__py3-none-any.whl → 7.2.0a1753398491__py3-none-any.whl

pulumi_vault/pkisecret/secret_backend_issuer.py

@@ -2,8 +2,7 @@
 # *** WARNING: this file was generated by pulumi-language-python. ***
 # *** Do not edit by hand unless you're certain you know what you are doing! ***
 
-import builtins
-import copy
+import builtins as _builtins
 import warnings
 import sys
 import pulumi
@@ -20,61 +19,61 @@ __all__ = ['SecretBackendIssuerArgs', 'SecretBackendIssuer']
 @pulumi.input_type
 class SecretBackendIssuerArgs:
     def __init__(__self__, *,
-                 backend: pulumi.Input[builtins.str],
-                 issuer_ref: pulumi.Input[builtins.str],
-                 crl_distribution_points: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
-                 disable_critical_extension_checks: Optional[pulumi.Input[builtins.bool]] = None,
-                 disable_name_checks: Optional[pulumi.Input[builtins.bool]] = None,
-                 disable_name_constraint_checks: Optional[pulumi.Input[builtins.bool]] = None,
-                 disable_path_length_checks: Optional[pulumi.Input[builtins.bool]] = None,
-                 enable_aia_url_templating: Optional[pulumi.Input[builtins.bool]] = None,
-                 issuer_name: Optional[pulumi.Input[builtins.str]] = None,
-                 issuing_certificates: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
-                 leaf_not_after_behavior: Optional[pulumi.Input[builtins.str]] = None,
-                 manual_chains: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
-                 namespace: Optional[pulumi.Input[builtins.str]] = None,
-                 ocsp_servers: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
-                 revocation_signature_algorithm: Optional[pulumi.Input[builtins.str]] = None,
-                 usage: Optional[pulumi.Input[builtins.str]] = None):
+                 backend: pulumi.Input[_builtins.str],
+                 issuer_ref: pulumi.Input[_builtins.str],
+                 crl_distribution_points: Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]] = None,
+                 disable_critical_extension_checks: Optional[pulumi.Input[_builtins.bool]] = None,
+                 disable_name_checks: Optional[pulumi.Input[_builtins.bool]] = None,
+                 disable_name_constraint_checks: Optional[pulumi.Input[_builtins.bool]] = None,
+                 disable_path_length_checks: Optional[pulumi.Input[_builtins.bool]] = None,
+                 enable_aia_url_templating: Optional[pulumi.Input[_builtins.bool]] = None,
+                 issuer_name: Optional[pulumi.Input[_builtins.str]] = None,
+                 issuing_certificates: Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]] = None,
+                 leaf_not_after_behavior: Optional[pulumi.Input[_builtins.str]] = None,
+                 manual_chains: Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]] = None,
+                 namespace: Optional[pulumi.Input[_builtins.str]] = None,
+                 ocsp_servers: Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]] = None,
+                 revocation_signature_algorithm: Optional[pulumi.Input[_builtins.str]] = None,
+                 usage: Optional[pulumi.Input[_builtins.str]] = None):
         """
         The set of arguments for constructing a SecretBackendIssuer resource.
-        :param pulumi.Input[builtins.str] backend: The path the PKI secret backend is mounted at, with no
+        :param pulumi.Input[_builtins.str] backend: The path the PKI secret backend is mounted at, with no
                leading or trailing `/`s.
-        :param pulumi.Input[builtins.str] issuer_ref: Reference to an existing issuer.
-        :param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] crl_distribution_points: Specifies the URL values for the CRL
+        :param pulumi.Input[_builtins.str] issuer_ref: Reference to an existing issuer.
+        :param pulumi.Input[Sequence[pulumi.Input[_builtins.str]]] crl_distribution_points: Specifies the URL values for the CRL
                Distribution Points field.
-        :param pulumi.Input[builtins.bool] disable_critical_extension_checks: This determines whether this
+        :param pulumi.Input[_builtins.bool] disable_critical_extension_checks: This determines whether this
                issuer is able to issue certificates where the chain of trust (including the
                issued certificate) contain critical extensions not processed by Vault.
-        :param pulumi.Input[builtins.bool] disable_name_checks: This determines whether this issuer is able
+        :param pulumi.Input[_builtins.bool] disable_name_checks: This determines whether this issuer is able
                to issue certificates where the chain of trust (including the final issued
                certificate) contains a link in which the subject of the issuing certificate
                does not match the named issuer of the certificate it signed.
-        :param pulumi.Input[builtins.bool] disable_name_constraint_checks: This determines whether this
+        :param pulumi.Input[_builtins.bool] disable_name_constraint_checks: This determines whether this
                issuer is able to issue certificates where the chain of trust (including the
                final issued certificate) violates the name constraints critical extension of
                one of the issuer certificates in the chain.
-        :param pulumi.Input[builtins.bool] disable_path_length_checks: This determines whether this issuer
+        :param pulumi.Input[_builtins.bool] disable_path_length_checks: This determines whether this issuer
                is able to issue certificates where the chain of trust (including the final
                issued certificate) is longer than allowed by a certificate authority in that
                chain.
-        :param pulumi.Input[builtins.bool] enable_aia_url_templating: Specifies that the AIA URL values should
+        :param pulumi.Input[_builtins.bool] enable_aia_url_templating: Specifies that the AIA URL values should
                be templated.
-        :param pulumi.Input[builtins.str] issuer_name: Name of the issuer.
-        :param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] issuing_certificates: Specifies the URL values for the Issuing
+        :param pulumi.Input[_builtins.str] issuer_name: Name of the issuer.
+        :param pulumi.Input[Sequence[pulumi.Input[_builtins.str]]] issuing_certificates: Specifies the URL values for the Issuing
                Certificate field.
-        :param pulumi.Input[builtins.str] leaf_not_after_behavior: Behavior of a leaf's NotAfter field during
+        :param pulumi.Input[_builtins.str] leaf_not_after_behavior: Behavior of a leaf's NotAfter field during
                issuance.
-        :param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] manual_chains: Chain of issuer references to build this issuer's
+        :param pulumi.Input[Sequence[pulumi.Input[_builtins.str]]] manual_chains: Chain of issuer references to build this issuer's
                computed CAChain field from, when non-empty.
-        :param pulumi.Input[builtins.str] namespace: The namespace to provision the resource in.
+        :param pulumi.Input[_builtins.str] namespace: The namespace to provision the resource in.
                The value should not contain leading or trailing forward slashes.
                The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault/index.html#namespace).
                *Available only for Vault Enterprise*.
-        :param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] ocsp_servers: Specifies the URL values for the OCSP Servers field.
-        :param pulumi.Input[builtins.str] revocation_signature_algorithm: Which signature algorithm to use
+        :param pulumi.Input[Sequence[pulumi.Input[_builtins.str]]] ocsp_servers: Specifies the URL values for the OCSP Servers field.
+        :param pulumi.Input[_builtins.str] revocation_signature_algorithm: Which signature algorithm to use
                when building CRLs.
-        :param pulumi.Input[builtins.str] usage: Allowed usages for this issuer.
+        :param pulumi.Input[_builtins.str] usage: Allowed usages for this issuer.
         """
         pulumi.set(__self__, "backend", backend)
         pulumi.set(__self__, "issuer_ref", issuer_ref)
@@ -107,9 +106,9 @@ class SecretBackendIssuerArgs:
         if usage is not None:
             pulumi.set(__self__, "usage", usage)
 
-    @property
+    @_builtins.property
     @pulumi.getter
-    def backend(self) -> pulumi.Input[builtins.str]:
+    def backend(self) -> pulumi.Input[_builtins.str]:
         """
         The path the PKI secret backend is mounted at, with no
         leading or trailing `/`s.
@@ -117,24 +116,24 @@ class SecretBackendIssuerArgs:
         return pulumi.get(self, "backend")
 
     @backend.setter
-    def backend(self, value: pulumi.Input[builtins.str]):
+    def backend(self, value: pulumi.Input[_builtins.str]):
         pulumi.set(self, "backend", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="issuerRef")
-    def issuer_ref(self) -> pulumi.Input[builtins.str]:
+    def issuer_ref(self) -> pulumi.Input[_builtins.str]:
         """
         Reference to an existing issuer.
         """
         return pulumi.get(self, "issuer_ref")
 
     @issuer_ref.setter
-    def issuer_ref(self, value: pulumi.Input[builtins.str]):
+    def issuer_ref(self, value: pulumi.Input[_builtins.str]):
         pulumi.set(self, "issuer_ref", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="crlDistributionPoints")
-    def crl_distribution_points(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]:
+    def crl_distribution_points(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]]:
         """
         Specifies the URL values for the CRL
         Distribution Points field.
@@ -142,12 +141,12 @@ class SecretBackendIssuerArgs:
         return pulumi.get(self, "crl_distribution_points")
 
     @crl_distribution_points.setter
-    def crl_distribution_points(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]):
+    def crl_distribution_points(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]]):
         pulumi.set(self, "crl_distribution_points", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="disableCriticalExtensionChecks")
-    def disable_critical_extension_checks(self) -> Optional[pulumi.Input[builtins.bool]]:
+    def disable_critical_extension_checks(self) -> Optional[pulumi.Input[_builtins.bool]]:
         """
         This determines whether this
         issuer is able to issue certificates where the chain of trust (including the
@@ -156,12 +155,12 @@ class SecretBackendIssuerArgs:
         return pulumi.get(self, "disable_critical_extension_checks")
 
     @disable_critical_extension_checks.setter
-    def disable_critical_extension_checks(self, value: Optional[pulumi.Input[builtins.bool]]):
+    def disable_critical_extension_checks(self, value: Optional[pulumi.Input[_builtins.bool]]):
         pulumi.set(self, "disable_critical_extension_checks", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="disableNameChecks")
-    def disable_name_checks(self) -> Optional[pulumi.Input[builtins.bool]]:
+    def disable_name_checks(self) -> Optional[pulumi.Input[_builtins.bool]]:
         """
         This determines whether this issuer is able
         to issue certificates where the chain of trust (including the final issued
@@ -171,12 +170,12 @@ class SecretBackendIssuerArgs:
         return pulumi.get(self, "disable_name_checks")
 
     @disable_name_checks.setter
-    def disable_name_checks(self, value: Optional[pulumi.Input[builtins.bool]]):
+    def disable_name_checks(self, value: Optional[pulumi.Input[_builtins.bool]]):
         pulumi.set(self, "disable_name_checks", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="disableNameConstraintChecks")
-    def disable_name_constraint_checks(self) -> Optional[pulumi.Input[builtins.bool]]:
+    def disable_name_constraint_checks(self) -> Optional[pulumi.Input[_builtins.bool]]:
         """
         This determines whether this
         issuer is able to issue certificates where the chain of trust (including the
@@ -186,12 +185,12 @@ class SecretBackendIssuerArgs:
         return pulumi.get(self, "disable_name_constraint_checks")
 
     @disable_name_constraint_checks.setter
-    def disable_name_constraint_checks(self, value: Optional[pulumi.Input[builtins.bool]]):
+    def disable_name_constraint_checks(self, value: Optional[pulumi.Input[_builtins.bool]]):
         pulumi.set(self, "disable_name_constraint_checks", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="disablePathLengthChecks")
-    def disable_path_length_checks(self) -> Optional[pulumi.Input[builtins.bool]]:
+    def disable_path_length_checks(self) -> Optional[pulumi.Input[_builtins.bool]]:
         """
         This determines whether this issuer
         is able to issue certificates where the chain of trust (including the final
@@ -201,12 +200,12 @@ class SecretBackendIssuerArgs:
         return pulumi.get(self, "disable_path_length_checks")
 
     @disable_path_length_checks.setter
-    def disable_path_length_checks(self, value: Optional[pulumi.Input[builtins.bool]]):
+    def disable_path_length_checks(self, value: Optional[pulumi.Input[_builtins.bool]]):
         pulumi.set(self, "disable_path_length_checks", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="enableAiaUrlTemplating")
-    def enable_aia_url_templating(self) -> Optional[pulumi.Input[builtins.bool]]:
+    def enable_aia_url_templating(self) -> Optional[pulumi.Input[_builtins.bool]]:
         """
         Specifies that the AIA URL values should
         be templated.
@@ -214,24 +213,24 @@ class SecretBackendIssuerArgs:
         return pulumi.get(self, "enable_aia_url_templating")
 
     @enable_aia_url_templating.setter
-    def enable_aia_url_templating(self, value: Optional[pulumi.Input[builtins.bool]]):
+    def enable_aia_url_templating(self, value: Optional[pulumi.Input[_builtins.bool]]):
         pulumi.set(self, "enable_aia_url_templating", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="issuerName")
-    def issuer_name(self) -> Optional[pulumi.Input[builtins.str]]:
+    def issuer_name(self) -> Optional[pulumi.Input[_builtins.str]]:
         """
         Name of the issuer.
         """
         return pulumi.get(self, "issuer_name")
 
     @issuer_name.setter
-    def issuer_name(self, value: Optional[pulumi.Input[builtins.str]]):
+    def issuer_name(self, value: Optional[pulumi.Input[_builtins.str]]):
         pulumi.set(self, "issuer_name", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="issuingCertificates")
-    def issuing_certificates(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]:
+    def issuing_certificates(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]]:
         """
         Specifies the URL values for the Issuing
         Certificate field.
@@ -239,12 +238,12 @@ class SecretBackendIssuerArgs:
         return pulumi.get(self, "issuing_certificates")
 
     @issuing_certificates.setter
-    def issuing_certificates(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]):
+    def issuing_certificates(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]]):
         pulumi.set(self, "issuing_certificates", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="leafNotAfterBehavior")
-    def leaf_not_after_behavior(self) -> Optional[pulumi.Input[builtins.str]]:
+    def leaf_not_after_behavior(self) -> Optional[pulumi.Input[_builtins.str]]:
         """
         Behavior of a leaf's NotAfter field during
         issuance.
@@ -252,12 +251,12 @@ class SecretBackendIssuerArgs:
         return pulumi.get(self, "leaf_not_after_behavior")
 
     @leaf_not_after_behavior.setter
-    def leaf_not_after_behavior(self, value: Optional[pulumi.Input[builtins.str]]):
+    def leaf_not_after_behavior(self, value: Optional[pulumi.Input[_builtins.str]]):
         pulumi.set(self, "leaf_not_after_behavior", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="manualChains")
-    def manual_chains(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]:
+    def manual_chains(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]]:
         """
         Chain of issuer references to build this issuer's
         computed CAChain field from, when non-empty.
@@ -265,12 +264,12 @@ class SecretBackendIssuerArgs:
         return pulumi.get(self, "manual_chains")
 
     @manual_chains.setter
-    def manual_chains(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]):
+    def manual_chains(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]]):
         pulumi.set(self, "manual_chains", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter
-    def namespace(self) -> Optional[pulumi.Input[builtins.str]]:
+    def namespace(self) -> Optional[pulumi.Input[_builtins.str]]:
         """
         The namespace to provision the resource in.
         The value should not contain leading or trailing forward slashes.
@@ -280,24 +279,24 @@ class SecretBackendIssuerArgs:
         return pulumi.get(self, "namespace")
 
     @namespace.setter
-    def namespace(self, value: Optional[pulumi.Input[builtins.str]]):
+    def namespace(self, value: Optional[pulumi.Input[_builtins.str]]):
         pulumi.set(self, "namespace", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="ocspServers")
-    def ocsp_servers(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]:
+    def ocsp_servers(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]]:
         """
         Specifies the URL values for the OCSP Servers field.
         """
         return pulumi.get(self, "ocsp_servers")
 
     @ocsp_servers.setter
-    def ocsp_servers(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]):
+    def ocsp_servers(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]]):
         pulumi.set(self, "ocsp_servers", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="revocationSignatureAlgorithm")
-    def revocation_signature_algorithm(self) -> Optional[pulumi.Input[builtins.str]]:
+    def revocation_signature_algorithm(self) -> Optional[pulumi.Input[_builtins.str]]:
         """
         Which signature algorithm to use
         when building CRLs.
@@ -305,82 +304,82 @@ class SecretBackendIssuerArgs:
         return pulumi.get(self, "revocation_signature_algorithm")
 
     @revocation_signature_algorithm.setter
-    def revocation_signature_algorithm(self, value: Optional[pulumi.Input[builtins.str]]):
+    def revocation_signature_algorithm(self, value: Optional[pulumi.Input[_builtins.str]]):
         pulumi.set(self, "revocation_signature_algorithm", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter
-    def usage(self) -> Optional[pulumi.Input[builtins.str]]:
+    def usage(self) -> Optional[pulumi.Input[_builtins.str]]:
         """
         Allowed usages for this issuer.
         """
         return pulumi.get(self, "usage")
 
     @usage.setter
-    def usage(self, value: Optional[pulumi.Input[builtins.str]]):
+    def usage(self, value: Optional[pulumi.Input[_builtins.str]]):
         pulumi.set(self, "usage", value)
 
 
 @pulumi.input_type
 class _SecretBackendIssuerState:
     def __init__(__self__, *,
-                 backend: Optional[pulumi.Input[builtins.str]] = None,
-                 crl_distribution_points: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
-                 disable_critical_extension_checks: Optional[pulumi.Input[builtins.bool]] = None,
-                 disable_name_checks: Optional[pulumi.Input[builtins.bool]] = None,
-                 disable_name_constraint_checks: Optional[pulumi.Input[builtins.bool]] = None,
-                 disable_path_length_checks: Optional[pulumi.Input[builtins.bool]] = None,
-                 enable_aia_url_templating: Optional[pulumi.Input[builtins.bool]] = None,
-                 issuer_id: Optional[pulumi.Input[builtins.str]] = None,
-                 issuer_name: Optional[pulumi.Input[builtins.str]] = None,
-                 issuer_ref: Optional[pulumi.Input[builtins.str]] = None,
-                 issuing_certificates: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
-                 leaf_not_after_behavior: Optional[pulumi.Input[builtins.str]] = None,
-                 manual_chains: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
-                 namespace: Optional[pulumi.Input[builtins.str]] = None,
-                 ocsp_servers: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
-                 revocation_signature_algorithm: Optional[pulumi.Input[builtins.str]] = None,
-                 usage: Optional[pulumi.Input[builtins.str]] = None):
+                 backend: Optional[pulumi.Input[_builtins.str]] = None,
+                 crl_distribution_points: Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]] = None,
+                 disable_critical_extension_checks: Optional[pulumi.Input[_builtins.bool]] = None,
+                 disable_name_checks: Optional[pulumi.Input[_builtins.bool]] = None,
+                 disable_name_constraint_checks: Optional[pulumi.Input[_builtins.bool]] = None,
+                 disable_path_length_checks: Optional[pulumi.Input[_builtins.bool]] = None,
+                 enable_aia_url_templating: Optional[pulumi.Input[_builtins.bool]] = None,
+                 issuer_id: Optional[pulumi.Input[_builtins.str]] = None,
+                 issuer_name: Optional[pulumi.Input[_builtins.str]] = None,
+                 issuer_ref: Optional[pulumi.Input[_builtins.str]] = None,
+                 issuing_certificates: Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]] = None,
+                 leaf_not_after_behavior: Optional[pulumi.Input[_builtins.str]] = None,
+                 manual_chains: Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]] = None,
+                 namespace: Optional[pulumi.Input[_builtins.str]] = None,
+                 ocsp_servers: Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]] = None,
+                 revocation_signature_algorithm: Optional[pulumi.Input[_builtins.str]] = None,
+                 usage: Optional[pulumi.Input[_builtins.str]] = None):
         """
         Input properties used for looking up and filtering SecretBackendIssuer resources.
-        :param pulumi.Input[builtins.str] backend: The path the PKI secret backend is mounted at, with no
+        :param pulumi.Input[_builtins.str] backend: The path the PKI secret backend is mounted at, with no
                leading or trailing `/`s.
-        :param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] crl_distribution_points: Specifies the URL values for the CRL
+        :param pulumi.Input[Sequence[pulumi.Input[_builtins.str]]] crl_distribution_points: Specifies the URL values for the CRL
                Distribution Points field.
-        :param pulumi.Input[builtins.bool] disable_critical_extension_checks: This determines whether this
+        :param pulumi.Input[_builtins.bool] disable_critical_extension_checks: This determines whether this
                issuer is able to issue certificates where the chain of trust (including the
                issued certificate) contain critical extensions not processed by Vault.
-        :param pulumi.Input[builtins.bool] disable_name_checks: This determines whether this issuer is able
+        :param pulumi.Input[_builtins.bool] disable_name_checks: This determines whether this issuer is able
                to issue certificates where the chain of trust (including the final issued
                certificate) contains a link in which the subject of the issuing certificate
                does not match the named issuer of the certificate it signed.
-        :param pulumi.Input[builtins.bool] disable_name_constraint_checks: This determines whether this
+        :param pulumi.Input[_builtins.bool] disable_name_constraint_checks: This determines whether this
                issuer is able to issue certificates where the chain of trust (including the
                final issued certificate) violates the name constraints critical extension of
                one of the issuer certificates in the chain.
-        :param pulumi.Input[builtins.bool] disable_path_length_checks: This determines whether this issuer
+        :param pulumi.Input[_builtins.bool] disable_path_length_checks: This determines whether this issuer
                is able to issue certificates where the chain of trust (including the final
                issued certificate) is longer than allowed by a certificate authority in that
                chain.
-        :param pulumi.Input[builtins.bool] enable_aia_url_templating: Specifies that the AIA URL values should
+        :param pulumi.Input[_builtins.bool] enable_aia_url_templating: Specifies that the AIA URL values should
                be templated.
-        :param pulumi.Input[builtins.str] issuer_id: ID of the issuer.
-        :param pulumi.Input[builtins.str] issuer_name: Name of the issuer.
-        :param pulumi.Input[builtins.str] issuer_ref: Reference to an existing issuer.
-        :param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] issuing_certificates: Specifies the URL values for the Issuing
+        :param pulumi.Input[_builtins.str] issuer_id: ID of the issuer.
+        :param pulumi.Input[_builtins.str] issuer_name: Name of the issuer.
+        :param pulumi.Input[_builtins.str] issuer_ref: Reference to an existing issuer.
+        :param pulumi.Input[Sequence[pulumi.Input[_builtins.str]]] issuing_certificates: Specifies the URL values for the Issuing
                Certificate field.
-        :param pulumi.Input[builtins.str] leaf_not_after_behavior: Behavior of a leaf's NotAfter field during
+        :param pulumi.Input[_builtins.str] leaf_not_after_behavior: Behavior of a leaf's NotAfter field during
                issuance.
-        :param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] manual_chains: Chain of issuer references to build this issuer's
+        :param pulumi.Input[Sequence[pulumi.Input[_builtins.str]]] manual_chains: Chain of issuer references to build this issuer's
                computed CAChain field from, when non-empty.
-        :param pulumi.Input[builtins.str] namespace: The namespace to provision the resource in.
+        :param pulumi.Input[_builtins.str] namespace: The namespace to provision the resource in.
                The value should not contain leading or trailing forward slashes.
                The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault/index.html#namespace).
                *Available only for Vault Enterprise*.
-        :param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] ocsp_servers: Specifies the URL values for the OCSP Servers field.
-        :param pulumi.Input[builtins.str] revocation_signature_algorithm: Which signature algorithm to use
+        :param pulumi.Input[Sequence[pulumi.Input[_builtins.str]]] ocsp_servers: Specifies the URL values for the OCSP Servers field.
+        :param pulumi.Input[_builtins.str] revocation_signature_algorithm: Which signature algorithm to use
                when building CRLs.
-        :param pulumi.Input[builtins.str] usage: Allowed usages for this issuer.
+        :param pulumi.Input[_builtins.str] usage: Allowed usages for this issuer.
         """
         if backend is not None:
             pulumi.set(__self__, "backend", backend)
@@ -417,9 +416,9 @@ class _SecretBackendIssuerState:
         if usage is not None:
             pulumi.set(__self__, "usage", usage)
 
-    @property
+    @_builtins.property
     @pulumi.getter
-    def backend(self) -> Optional[pulumi.Input[builtins.str]]:
+    def backend(self) -> Optional[pulumi.Input[_builtins.str]]:
         """
         The path the PKI secret backend is mounted at, with no
         leading or trailing `/`s.
@@ -427,12 +426,12 @@ class _SecretBackendIssuerState:
         return pulumi.get(self, "backend")
 
     @backend.setter
-    def backend(self, value: Optional[pulumi.Input[builtins.str]]):
+    def backend(self, value: Optional[pulumi.Input[_builtins.str]]):
         pulumi.set(self, "backend", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="crlDistributionPoints")
-    def crl_distribution_points(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]:
+    def crl_distribution_points(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]]:
         """
         Specifies the URL values for the CRL
         Distribution Points field.
@@ -440,12 +439,12 @@ class _SecretBackendIssuerState:
         return pulumi.get(self, "crl_distribution_points")
 
     @crl_distribution_points.setter
-    def crl_distribution_points(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]):
+    def crl_distribution_points(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]]):
         pulumi.set(self, "crl_distribution_points", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="disableCriticalExtensionChecks")
-    def disable_critical_extension_checks(self) -> Optional[pulumi.Input[builtins.bool]]:
+    def disable_critical_extension_checks(self) -> Optional[pulumi.Input[_builtins.bool]]:
         """
         This determines whether this
         issuer is able to issue certificates where the chain of trust (including the
@@ -454,12 +453,12 @@ class _SecretBackendIssuerState:
         return pulumi.get(self, "disable_critical_extension_checks")
 
     @disable_critical_extension_checks.setter
-    def disable_critical_extension_checks(self, value: Optional[pulumi.Input[builtins.bool]]):
+    def disable_critical_extension_checks(self, value: Optional[pulumi.Input[_builtins.bool]]):
         pulumi.set(self, "disable_critical_extension_checks", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="disableNameChecks")
-    def disable_name_checks(self) -> Optional[pulumi.Input[builtins.bool]]:
+    def disable_name_checks(self) -> Optional[pulumi.Input[_builtins.bool]]:
         """
         This determines whether this issuer is able
         to issue certificates where the chain of trust (including the final issued
@@ -469,12 +468,12 @@ class _SecretBackendIssuerState:
         return pulumi.get(self, "disable_name_checks")
 
     @disable_name_checks.setter
-    def disable_name_checks(self, value: Optional[pulumi.Input[builtins.bool]]):
+    def disable_name_checks(self, value: Optional[pulumi.Input[_builtins.bool]]):
         pulumi.set(self, "disable_name_checks", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="disableNameConstraintChecks")
-    def disable_name_constraint_checks(self) -> Optional[pulumi.Input[builtins.bool]]:
+    def disable_name_constraint_checks(self) -> Optional[pulumi.Input[_builtins.bool]]:
         """
         This determines whether this
         issuer is able to issue certificates where the chain of trust (including the
@@ -484,12 +483,12 @@ class _SecretBackendIssuerState:
         return pulumi.get(self, "disable_name_constraint_checks")
 
     @disable_name_constraint_checks.setter
-    def disable_name_constraint_checks(self, value: Optional[pulumi.Input[builtins.bool]]):
+    def disable_name_constraint_checks(self, value: Optional[pulumi.Input[_builtins.bool]]):
         pulumi.set(self, "disable_name_constraint_checks", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="disablePathLengthChecks")
-    def disable_path_length_checks(self) -> Optional[pulumi.Input[builtins.bool]]:
+    def disable_path_length_checks(self) -> Optional[pulumi.Input[_builtins.bool]]:
         """
         This determines whether this issuer
         is able to issue certificates where the chain of trust (including the final
@@ -499,12 +498,12 @@ class _SecretBackendIssuerState:
         return pulumi.get(self, "disable_path_length_checks")
 
     @disable_path_length_checks.setter
-    def disable_path_length_checks(self, value: Optional[pulumi.Input[builtins.bool]]):
+    def disable_path_length_checks(self, value: Optional[pulumi.Input[_builtins.bool]]):
         pulumi.set(self, "disable_path_length_checks", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="enableAiaUrlTemplating")
-    def enable_aia_url_templating(self) -> Optional[pulumi.Input[builtins.bool]]:
+    def enable_aia_url_templating(self) -> Optional[pulumi.Input[_builtins.bool]]:
         """
         Specifies that the AIA URL values should
         be templated.
@@ -512,48 +511,48 @@ class _SecretBackendIssuerState:
         return pulumi.get(self, "enable_aia_url_templating")
 
     @enable_aia_url_templating.setter
-    def enable_aia_url_templating(self, value: Optional[pulumi.Input[builtins.bool]]):
+    def enable_aia_url_templating(self, value: Optional[pulumi.Input[_builtins.bool]]):
         pulumi.set(self, "enable_aia_url_templating", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="issuerId")
-    def issuer_id(self) -> Optional[pulumi.Input[builtins.str]]:
+    def issuer_id(self) -> Optional[pulumi.Input[_builtins.str]]:
         """
         ID of the issuer.
         """
         return pulumi.get(self, "issuer_id")
 
     @issuer_id.setter
-    def issuer_id(self, value: Optional[pulumi.Input[builtins.str]]):
+    def issuer_id(self, value: Optional[pulumi.Input[_builtins.str]]):
         pulumi.set(self, "issuer_id", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="issuerName")
-    def issuer_name(self) -> Optional[pulumi.Input[builtins.str]]:
+    def issuer_name(self) -> Optional[pulumi.Input[_builtins.str]]:
         """
         Name of the issuer.
         """
         return pulumi.get(self, "issuer_name")
 
     @issuer_name.setter
-    def issuer_name(self, value: Optional[pulumi.Input[builtins.str]]):
+    def issuer_name(self, value: Optional[pulumi.Input[_builtins.str]]):
         pulumi.set(self, "issuer_name", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="issuerRef")
-    def issuer_ref(self) -> Optional[pulumi.Input[builtins.str]]:
+    def issuer_ref(self) -> Optional[pulumi.Input[_builtins.str]]:
         """
         Reference to an existing issuer.
         """
         return pulumi.get(self, "issuer_ref")
 
     @issuer_ref.setter
-    def issuer_ref(self, value: Optional[pulumi.Input[builtins.str]]):
+    def issuer_ref(self, value: Optional[pulumi.Input[_builtins.str]]):
         pulumi.set(self, "issuer_ref", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="issuingCertificates")
-    def issuing_certificates(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]:
+    def issuing_certificates(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]]:
         """
         Specifies the URL values for the Issuing
         Certificate field.
@@ -561,12 +560,12 @@ class _SecretBackendIssuerState:
         return pulumi.get(self, "issuing_certificates")
 
     @issuing_certificates.setter
-    def issuing_certificates(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]):
+    def issuing_certificates(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]]):
         pulumi.set(self, "issuing_certificates", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="leafNotAfterBehavior")
-    def leaf_not_after_behavior(self) -> Optional[pulumi.Input[builtins.str]]:
+    def leaf_not_after_behavior(self) -> Optional[pulumi.Input[_builtins.str]]:
         """
         Behavior of a leaf's NotAfter field during
         issuance.
@@ -574,12 +573,12 @@ class _SecretBackendIssuerState:
         return pulumi.get(self, "leaf_not_after_behavior")
 
     @leaf_not_after_behavior.setter
-    def leaf_not_after_behavior(self, value: Optional[pulumi.Input[builtins.str]]):
+    def leaf_not_after_behavior(self, value: Optional[pulumi.Input[_builtins.str]]):
         pulumi.set(self, "leaf_not_after_behavior", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="manualChains")
-    def manual_chains(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]:
+    def manual_chains(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]]:
         """
         Chain of issuer references to build this issuer's
         computed CAChain field from, when non-empty.
@@ -587,12 +586,12 @@ class _SecretBackendIssuerState:
         return pulumi.get(self, "manual_chains")
 
     @manual_chains.setter
-    def manual_chains(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]):
+    def manual_chains(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]]):
         pulumi.set(self, "manual_chains", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter
-    def namespace(self) -> Optional[pulumi.Input[builtins.str]]:
+    def namespace(self) -> Optional[pulumi.Input[_builtins.str]]:
         """
         The namespace to provision the resource in.
         The value should not contain leading or trailing forward slashes.
@@ -602,24 +601,24 @@ class _SecretBackendIssuerState:
         return pulumi.get(self, "namespace")
 
     @namespace.setter
-    def namespace(self, value: Optional[pulumi.Input[builtins.str]]):
+    def namespace(self, value: Optional[pulumi.Input[_builtins.str]]):
         pulumi.set(self, "namespace", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="ocspServers")
-    def ocsp_servers(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]:
+    def ocsp_servers(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]]:
         """
         Specifies the URL values for the OCSP Servers field.
         """
         return pulumi.get(self, "ocsp_servers")
 
     @ocsp_servers.setter
-    def ocsp_servers(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]):
+    def ocsp_servers(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]]):
         pulumi.set(self, "ocsp_servers", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="revocationSignatureAlgorithm")
-    def revocation_signature_algorithm(self) -> Optional[pulumi.Input[builtins.str]]:
+    def revocation_signature_algorithm(self) -> Optional[pulumi.Input[_builtins.str]]:
         """
         Which signature algorithm to use
         when building CRLs.
@@ -627,19 +626,19 @@ class _SecretBackendIssuerState:
         return pulumi.get(self, "revocation_signature_algorithm")
 
     @revocation_signature_algorithm.setter
-    def revocation_signature_algorithm(self, value: Optional[pulumi.Input[builtins.str]]):
+    def revocation_signature_algorithm(self, value: Optional[pulumi.Input[_builtins.str]]):
         pulumi.set(self, "revocation_signature_algorithm", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter
-    def usage(self) -> Optional[pulumi.Input[builtins.str]]:
+    def usage(self) -> Optional[pulumi.Input[_builtins.str]]:
         """
         Allowed usages for this issuer.
         """
         return pulumi.get(self, "usage")
 
     @usage.setter
-    def usage(self, value: Optional[pulumi.Input[builtins.str]]):
+    def usage(self, value: Optional[pulumi.Input[_builtins.str]]):
         pulumi.set(self, "usage", value)
 
 
@@ -649,22 +648,22 @@ class SecretBackendIssuer(pulumi.CustomResource):
     def __init__(__self__,
                  resource_name: str,
                  opts: Optional[pulumi.ResourceOptions] = None,
-                 backend: Optional[pulumi.Input[builtins.str]] = None,
-                 crl_distribution_points: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
-                 disable_critical_extension_checks: Optional[pulumi.Input[builtins.bool]] = None,
-                 disable_name_checks: Optional[pulumi.Input[builtins.bool]] = None,
-                 disable_name_constraint_checks: Optional[pulumi.Input[builtins.bool]] = None,
-                 disable_path_length_checks: Optional[pulumi.Input[builtins.bool]] = None,
-                 enable_aia_url_templating: Optional[pulumi.Input[builtins.bool]] = None,
-                 issuer_name: Optional[pulumi.Input[builtins.str]] = None,
-                 issuer_ref: Optional[pulumi.Input[builtins.str]] = None,
-                 issuing_certificates: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
-                 leaf_not_after_behavior: Optional[pulumi.Input[builtins.str]] = None,
-                 manual_chains: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
-                 namespace: Optional[pulumi.Input[builtins.str]] = None,
-                 ocsp_servers: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
-                 revocation_signature_algorithm: Optional[pulumi.Input[builtins.str]] = None,
-                 usage: Optional[pulumi.Input[builtins.str]] = None,
+                 backend: Optional[pulumi.Input[_builtins.str]] = None,
+                 crl_distribution_points: Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]] = None,
+                 disable_critical_extension_checks: Optional[pulumi.Input[_builtins.bool]] = None,
+                 disable_name_checks: Optional[pulumi.Input[_builtins.bool]] = None,
+                 disable_name_constraint_checks: Optional[pulumi.Input[_builtins.bool]] = None,
+                 disable_path_length_checks: Optional[pulumi.Input[_builtins.bool]] = None,
+                 enable_aia_url_templating: Optional[pulumi.Input[_builtins.bool]] = None,
+                 issuer_name: Optional[pulumi.Input[_builtins.str]] = None,
+                 issuer_ref: Optional[pulumi.Input[_builtins.str]] = None,
+                 issuing_certificates: Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]] = None,
+                 leaf_not_after_behavior: Optional[pulumi.Input[_builtins.str]] = None,
+                 manual_chains: Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]] = None,
+                 namespace: Optional[pulumi.Input[_builtins.str]] = None,
+                 ocsp_servers: Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]] = None,
+                 revocation_signature_algorithm: Optional[pulumi.Input[_builtins.str]] = None,
+                 usage: Optional[pulumi.Input[_builtins.str]] = None,
                  __props__=None):
         """
         ## Example Usage
@@ -678,12 +677,12 @@ class SecretBackendIssuer(pulumi.CustomResource):
             type="pki",
             default_lease_ttl_seconds=3600,
             max_lease_ttl_seconds=86400)
-        root = vault.pki_secret.SecretBackendRootCert("root",
+        root = vault.pkisecret.SecretBackendRootCert("root",
             backend=pki.path,
             type="internal",
             common_name="test",
             ttl="86400")
-        example = vault.pki_secret.SecretBackendIssuer("example",
+        example = vault.pkisecret.SecretBackendIssuer("example",
             backend=root.backend,
             issuer_ref=root.issuer_id,
             issuer_name="example-issuer")
@@ -699,43 +698,43 @@ class SecretBackendIssuer(pulumi.CustomResource):
 
         :param str resource_name: The name of the resource.
         :param pulumi.ResourceOptions opts: Options for the resource.
-        :param pulumi.Input[builtins.str] backend: The path the PKI secret backend is mounted at, with no
+        :param pulumi.Input[_builtins.str] backend: The path the PKI secret backend is mounted at, with no
                leading or trailing `/`s.
-        :param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] crl_distribution_points: Specifies the URL values for the CRL
+        :param pulumi.Input[Sequence[pulumi.Input[_builtins.str]]] crl_distribution_points: Specifies the URL values for the CRL
                Distribution Points field.
-        :param pulumi.Input[builtins.bool] disable_critical_extension_checks: This determines whether this
+        :param pulumi.Input[_builtins.bool] disable_critical_extension_checks: This determines whether this
                issuer is able to issue certificates where the chain of trust (including the
                issued certificate) contain critical extensions not processed by Vault.
-        :param pulumi.Input[builtins.bool] disable_name_checks: This determines whether this issuer is able
+        :param pulumi.Input[_builtins.bool] disable_name_checks: This determines whether this issuer is able
                to issue certificates where the chain of trust (including the final issued
                certificate) contains a link in which the subject of the issuing certificate
                does not match the named issuer of the certificate it signed.
-        :param pulumi.Input[builtins.bool] disable_name_constraint_checks: This determines whether this
+        :param pulumi.Input[_builtins.bool] disable_name_constraint_checks: This determines whether this
                issuer is able to issue certificates where the chain of trust (including the
                final issued certificate) violates the name constraints critical extension of
                one of the issuer certificates in the chain.
-        :param pulumi.Input[builtins.bool] disable_path_length_checks: This determines whether this issuer
+        :param pulumi.Input[_builtins.bool] disable_path_length_checks: This determines whether this issuer
                is able to issue certificates where the chain of trust (including the final
                issued certificate) is longer than allowed by a certificate authority in that
                chain.
-        :param pulumi.Input[builtins.bool] enable_aia_url_templating: Specifies that the AIA URL values should
+        :param pulumi.Input[_builtins.bool] enable_aia_url_templating: Specifies that the AIA URL values should
                be templated.
-        :param pulumi.Input[builtins.str] issuer_name: Name of the issuer.
-        :param pulumi.Input[builtins.str] issuer_ref: Reference to an existing issuer.
-        :param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] issuing_certificates: Specifies the URL values for the Issuing
+        :param pulumi.Input[_builtins.str] issuer_name: Name of the issuer.
+        :param pulumi.Input[_builtins.str] issuer_ref: Reference to an existing issuer.
+        :param pulumi.Input[Sequence[pulumi.Input[_builtins.str]]] issuing_certificates: Specifies the URL values for the Issuing
                Certificate field.
-        :param pulumi.Input[builtins.str] leaf_not_after_behavior: Behavior of a leaf's NotAfter field during
+        :param pulumi.Input[_builtins.str] leaf_not_after_behavior: Behavior of a leaf's NotAfter field during
                issuance.
-        :param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] manual_chains: Chain of issuer references to build this issuer's
+        :param pulumi.Input[Sequence[pulumi.Input[_builtins.str]]] manual_chains: Chain of issuer references to build this issuer's
                computed CAChain field from, when non-empty.
-        :param pulumi.Input[builtins.str] namespace: The namespace to provision the resource in.
+        :param pulumi.Input[_builtins.str] namespace: The namespace to provision the resource in.
                The value should not contain leading or trailing forward slashes.
                The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault/index.html#namespace).
                *Available only for Vault Enterprise*.
-        :param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] ocsp_servers: Specifies the URL values for the OCSP Servers field.
-        :param pulumi.Input[builtins.str] revocation_signature_algorithm: Which signature algorithm to use
+        :param pulumi.Input[Sequence[pulumi.Input[_builtins.str]]] ocsp_servers: Specifies the URL values for the OCSP Servers field.
+        :param pulumi.Input[_builtins.str] revocation_signature_algorithm: Which signature algorithm to use
                when building CRLs.
-        :param pulumi.Input[builtins.str] usage: Allowed usages for this issuer.
+        :param pulumi.Input[_builtins.str] usage: Allowed usages for this issuer.
         """
         ...
     @overload
@@ -755,12 +754,12 @@ class SecretBackendIssuer(pulumi.CustomResource):
             type="pki",
             default_lease_ttl_seconds=3600,
             max_lease_ttl_seconds=86400)
-        root = vault.pki_secret.SecretBackendRootCert("root",
+        root = vault.pkisecret.SecretBackendRootCert("root",
             backend=pki.path,
             type="internal",
             common_name="test",
             ttl="86400")
-        example = vault.pki_secret.SecretBackendIssuer("example",
+        example = vault.pkisecret.SecretBackendIssuer("example",
             backend=root.backend,
             issuer_ref=root.issuer_id,
             issuer_name="example-issuer")
@@ -789,22 +788,22 @@ class SecretBackendIssuer(pulumi.CustomResource):
     def _internal_init(__self__,
                  resource_name: str,
                  opts: Optional[pulumi.ResourceOptions] = None,
-                 backend: Optional[pulumi.Input[builtins.str]] = None,
-                 crl_distribution_points: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
-                 disable_critical_extension_checks: Optional[pulumi.Input[builtins.bool]] = None,
-                 disable_name_checks: Optional[pulumi.Input[builtins.bool]] = None,
-                 disable_name_constraint_checks: Optional[pulumi.Input[builtins.bool]] = None,
-                 disable_path_length_checks: Optional[pulumi.Input[builtins.bool]] = None,
-                 enable_aia_url_templating: Optional[pulumi.Input[builtins.bool]] = None,
-                 issuer_name: Optional[pulumi.Input[builtins.str]] = None,
-                 issuer_ref: Optional[pulumi.Input[builtins.str]] = None,
-                 issuing_certificates: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
-                 leaf_not_after_behavior: Optional[pulumi.Input[builtins.str]] = None,
-                 manual_chains: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
-                 namespace: Optional[pulumi.Input[builtins.str]] = None,
-                 ocsp_servers: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
-                 revocation_signature_algorithm: Optional[pulumi.Input[builtins.str]] = None,
-                 usage: Optional[pulumi.Input[builtins.str]] = None,
+                 backend: Optional[pulumi.Input[_builtins.str]] = None,
+                 crl_distribution_points: Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]] = None,
+                 disable_critical_extension_checks: Optional[pulumi.Input[_builtins.bool]] = None,
+                 disable_name_checks: Optional[pulumi.Input[_builtins.bool]] = None,
+                 disable_name_constraint_checks: Optional[pulumi.Input[_builtins.bool]] = None,
+                 disable_path_length_checks: Optional[pulumi.Input[_builtins.bool]] = None,
+                 enable_aia_url_templating: Optional[pulumi.Input[_builtins.bool]] = None,
+                 issuer_name: Optional[pulumi.Input[_builtins.str]] = None,
+                 issuer_ref: Optional[pulumi.Input[_builtins.str]] = None,
+                 issuing_certificates: Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]] = None,
+                 leaf_not_after_behavior: Optional[pulumi.Input[_builtins.str]] = None,
+                 manual_chains: Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]] = None,
+                 namespace: Optional[pulumi.Input[_builtins.str]] = None,
+                 ocsp_servers: Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]] = None,
+                 revocation_signature_algorithm: Optional[pulumi.Input[_builtins.str]] = None,
+                 usage: Optional[pulumi.Input[_builtins.str]] = None,
                  __props__=None):
         opts = pulumi.ResourceOptions.merge(_utilities.get_resource_opts_defaults(), opts)
         if not isinstance(opts, pulumi.ResourceOptions):
@@ -845,23 +844,23 @@ class SecretBackendIssuer(pulumi.CustomResource):
     def get(resource_name: str,
             id: pulumi.Input[str],
             opts: Optional[pulumi.ResourceOptions] = None,
-            backend: Optional[pulumi.Input[builtins.str]] = None,
-            crl_distribution_points: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
-            disable_critical_extension_checks: Optional[pulumi.Input[builtins.bool]] = None,
-            disable_name_checks: Optional[pulumi.Input[builtins.bool]] = None,
-            disable_name_constraint_checks: Optional[pulumi.Input[builtins.bool]] = None,
-            disable_path_length_checks: Optional[pulumi.Input[builtins.bool]] = None,
-            enable_aia_url_templating: Optional[pulumi.Input[builtins.bool]] = None,
-            issuer_id: Optional[pulumi.Input[builtins.str]] = None,
-            issuer_name: Optional[pulumi.Input[builtins.str]] = None,
-            issuer_ref: Optional[pulumi.Input[builtins.str]] = None,
-            issuing_certificates: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
-            leaf_not_after_behavior: Optional[pulumi.Input[builtins.str]] = None,
-            manual_chains: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
-            namespace: Optional[pulumi.Input[builtins.str]] = None,
-            ocsp_servers: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
-            revocation_signature_algorithm: Optional[pulumi.Input[builtins.str]] = None,
-            usage: Optional[pulumi.Input[builtins.str]] = None) -> 'SecretBackendIssuer':
+            backend: Optional[pulumi.Input[_builtins.str]] = None,
+            crl_distribution_points: Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]] = None,
+            disable_critical_extension_checks: Optional[pulumi.Input[_builtins.bool]] = None,
+            disable_name_checks: Optional[pulumi.Input[_builtins.bool]] = None,
+            disable_name_constraint_checks: Optional[pulumi.Input[_builtins.bool]] = None,
+            disable_path_length_checks: Optional[pulumi.Input[_builtins.bool]] = None,
+            enable_aia_url_templating: Optional[pulumi.Input[_builtins.bool]] = None,
+            issuer_id: Optional[pulumi.Input[_builtins.str]] = None,
+            issuer_name: Optional[pulumi.Input[_builtins.str]] = None,
+            issuer_ref: Optional[pulumi.Input[_builtins.str]] = None,
+            issuing_certificates: Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]] = None,
+            leaf_not_after_behavior: Optional[pulumi.Input[_builtins.str]] = None,
+            manual_chains: Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]] = None,
+            namespace: Optional[pulumi.Input[_builtins.str]] = None,
+            ocsp_servers: Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]] = None,
+            revocation_signature_algorithm: Optional[pulumi.Input[_builtins.str]] = None,
+            usage: Optional[pulumi.Input[_builtins.str]] = None) -> 'SecretBackendIssuer':
         """
         Get an existing SecretBackendIssuer resource's state with the given name, id, and optional extra
         properties used to qualify the lookup.
@@ -869,44 +868,44 @@ class SecretBackendIssuer(pulumi.CustomResource):
         :param str resource_name: The unique name of the resulting resource.
         :param pulumi.Input[str] id: The unique provider ID of the resource to lookup.
         :param pulumi.ResourceOptions opts: Options for the resource.
-        :param pulumi.Input[builtins.str] backend: The path the PKI secret backend is mounted at, with no
+        :param pulumi.Input[_builtins.str] backend: The path the PKI secret backend is mounted at, with no
                leading or trailing `/`s.
-        :param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] crl_distribution_points: Specifies the URL values for the CRL
+        :param pulumi.Input[Sequence[pulumi.Input[_builtins.str]]] crl_distribution_points: Specifies the URL values for the CRL
                Distribution Points field.
-        :param pulumi.Input[builtins.bool] disable_critical_extension_checks: This determines whether this
+        :param pulumi.Input[_builtins.bool] disable_critical_extension_checks: This determines whether this
                issuer is able to issue certificates where the chain of trust (including the
                issued certificate) contain critical extensions not processed by Vault.
-        :param pulumi.Input[builtins.bool] disable_name_checks: This determines whether this issuer is able
+        :param pulumi.Input[_builtins.bool] disable_name_checks: This determines whether this issuer is able
                to issue certificates where the chain of trust (including the final issued
                certificate) contains a link in which the subject of the issuing certificate
                does not match the named issuer of the certificate it signed.
-        :param pulumi.Input[builtins.bool] disable_name_constraint_checks: This determines whether this
+        :param pulumi.Input[_builtins.bool] disable_name_constraint_checks: This determines whether this
                issuer is able to issue certificates where the chain of trust (including the
                final issued certificate) violates the name constraints critical extension of
                one of the issuer certificates in the chain.
-        :param pulumi.Input[builtins.bool] disable_path_length_checks: This determines whether this issuer
+        :param pulumi.Input[_builtins.bool] disable_path_length_checks: This determines whether this issuer
                is able to issue certificates where the chain of trust (including the final
                issued certificate) is longer than allowed by a certificate authority in that
                chain.
-        :param pulumi.Input[builtins.bool] enable_aia_url_templating: Specifies that the AIA URL values should
+        :param pulumi.Input[_builtins.bool] enable_aia_url_templating: Specifies that the AIA URL values should
                be templated.
-        :param pulumi.Input[builtins.str] issuer_id: ID of the issuer.
-        :param pulumi.Input[builtins.str] issuer_name: Name of the issuer.
-        :param pulumi.Input[builtins.str] issuer_ref: Reference to an existing issuer.
-        :param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] issuing_certificates: Specifies the URL values for the Issuing
+        :param pulumi.Input[_builtins.str] issuer_id: ID of the issuer.
+        :param pulumi.Input[_builtins.str] issuer_name: Name of the issuer.
+        :param pulumi.Input[_builtins.str] issuer_ref: Reference to an existing issuer.
+        :param pulumi.Input[Sequence[pulumi.Input[_builtins.str]]] issuing_certificates: Specifies the URL values for the Issuing
                Certificate field.
-        :param pulumi.Input[builtins.str] leaf_not_after_behavior: Behavior of a leaf's NotAfter field during
+        :param pulumi.Input[_builtins.str] leaf_not_after_behavior: Behavior of a leaf's NotAfter field during
                issuance.
-        :param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] manual_chains: Chain of issuer references to build this issuer's
+        :param pulumi.Input[Sequence[pulumi.Input[_builtins.str]]] manual_chains: Chain of issuer references to build this issuer's
                computed CAChain field from, when non-empty.
-        :param pulumi.Input[builtins.str] namespace: The namespace to provision the resource in.
+        :param pulumi.Input[_builtins.str] namespace: The namespace to provision the resource in.
                The value should not contain leading or trailing forward slashes.
                The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault/index.html#namespace).
                *Available only for Vault Enterprise*.
-        :param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] ocsp_servers: Specifies the URL values for the OCSP Servers field.
-        :param pulumi.Input[builtins.str] revocation_signature_algorithm: Which signature algorithm to use
+        :param pulumi.Input[Sequence[pulumi.Input[_builtins.str]]] ocsp_servers: Specifies the URL values for the OCSP Servers field.
+        :param pulumi.Input[_builtins.str] revocation_signature_algorithm: Which signature algorithm to use
                when building CRLs.
-        :param pulumi.Input[builtins.str] usage: Allowed usages for this issuer.
+        :param pulumi.Input[_builtins.str] usage: Allowed usages for this issuer.
         """
         opts = pulumi.ResourceOptions.merge(opts, pulumi.ResourceOptions(id=id))
 
@@ -931,27 +930,27 @@ class SecretBackendIssuer(pulumi.CustomResource):
         __props__.__dict__["usage"] = usage
         return SecretBackendIssuer(resource_name, opts=opts, __props__=__props__)
 
-    @property
+    @_builtins.property
     @pulumi.getter
-    def backend(self) -> pulumi.Output[builtins.str]:
+    def backend(self) -> pulumi.Output[_builtins.str]:
         """
         The path the PKI secret backend is mounted at, with no
         leading or trailing `/`s.
         """
         return pulumi.get(self, "backend")
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="crlDistributionPoints")
-    def crl_distribution_points(self) -> pulumi.Output[Optional[Sequence[builtins.str]]]:
+    def crl_distribution_points(self) -> pulumi.Output[Optional[Sequence[_builtins.str]]]:
         """
         Specifies the URL values for the CRL
         Distribution Points field.
         """
         return pulumi.get(self, "crl_distribution_points")
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="disableCriticalExtensionChecks")
-    def disable_critical_extension_checks(self) -> pulumi.Output[Optional[builtins.bool]]:
+    def disable_critical_extension_checks(self) -> pulumi.Output[Optional[_builtins.bool]]:
         """
         This determines whether this
         issuer is able to issue certificates where the chain of trust (including the
@@ -959,9 +958,9 @@ class SecretBackendIssuer(pulumi.CustomResource):
         """
         return pulumi.get(self, "disable_critical_extension_checks")
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="disableNameChecks")
-    def disable_name_checks(self) -> pulumi.Output[Optional[builtins.bool]]:
+    def disable_name_checks(self) -> pulumi.Output[Optional[_builtins.bool]]:
         """
         This determines whether this issuer is able
         to issue certificates where the chain of trust (including the final issued
@@ -970,9 +969,9 @@ class SecretBackendIssuer(pulumi.CustomResource):
         """
         return pulumi.get(self, "disable_name_checks")
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="disableNameConstraintChecks")
-    def disable_name_constraint_checks(self) -> pulumi.Output[Optional[builtins.bool]]:
+    def disable_name_constraint_checks(self) -> pulumi.Output[Optional[_builtins.bool]]:
         """
         This determines whether this
         issuer is able to issue certificates where the chain of trust (including the
@@ -981,9 +980,9 @@ class SecretBackendIssuer(pulumi.CustomResource):
         """
         return pulumi.get(self, "disable_name_constraint_checks")
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="disablePathLengthChecks")
-    def disable_path_length_checks(self) -> pulumi.Output[Optional[builtins.bool]]:
+    def disable_path_length_checks(self) -> pulumi.Output[Optional[_builtins.bool]]:
         """
         This determines whether this issuer
         is able to issue certificates where the chain of trust (including the final
@@ -992,69 +991,69 @@ class SecretBackendIssuer(pulumi.CustomResource):
         """
         return pulumi.get(self, "disable_path_length_checks")
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="enableAiaUrlTemplating")
-    def enable_aia_url_templating(self) -> pulumi.Output[Optional[builtins.bool]]:
+    def enable_aia_url_templating(self) -> pulumi.Output[Optional[_builtins.bool]]:
         """
         Specifies that the AIA URL values should
         be templated.
         """
         return pulumi.get(self, "enable_aia_url_templating")
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="issuerId")
-    def issuer_id(self) -> pulumi.Output[builtins.str]:
+    def issuer_id(self) -> pulumi.Output[_builtins.str]:
         """
         ID of the issuer.
         """
         return pulumi.get(self, "issuer_id")
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="issuerName")
-    def issuer_name(self) -> pulumi.Output[Optional[builtins.str]]:
+    def issuer_name(self) -> pulumi.Output[Optional[_builtins.str]]:
         """
         Name of the issuer.
         """
         return pulumi.get(self, "issuer_name")
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="issuerRef")
-    def issuer_ref(self) -> pulumi.Output[builtins.str]:
+    def issuer_ref(self) -> pulumi.Output[_builtins.str]:
         """
         Reference to an existing issuer.
         """
         return pulumi.get(self, "issuer_ref")
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="issuingCertificates")
-    def issuing_certificates(self) -> pulumi.Output[Optional[Sequence[builtins.str]]]:
+    def issuing_certificates(self) -> pulumi.Output[Optional[Sequence[_builtins.str]]]:
         """
         Specifies the URL values for the Issuing
         Certificate field.
         """
         return pulumi.get(self, "issuing_certificates")
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="leafNotAfterBehavior")
-    def leaf_not_after_behavior(self) -> pulumi.Output[builtins.str]:
+    def leaf_not_after_behavior(self) -> pulumi.Output[_builtins.str]:
         """
         Behavior of a leaf's NotAfter field during
         issuance.
         """
         return pulumi.get(self, "leaf_not_after_behavior")
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="manualChains")
-    def manual_chains(self) -> pulumi.Output[Optional[Sequence[builtins.str]]]:
+    def manual_chains(self) -> pulumi.Output[Optional[Sequence[_builtins.str]]]:
         """
         Chain of issuer references to build this issuer's
         computed CAChain field from, when non-empty.
         """
         return pulumi.get(self, "manual_chains")
 
-    @property
+    @_builtins.property
     @pulumi.getter
-    def namespace(self) -> pulumi.Output[Optional[builtins.str]]:
+    def namespace(self) -> pulumi.Output[Optional[_builtins.str]]:
         """
         The namespace to provision the resource in.
         The value should not contain leading or trailing forward slashes.
@@ -1063,26 +1062,26 @@ class SecretBackendIssuer(pulumi.CustomResource):
         """
         return pulumi.get(self, "namespace")
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="ocspServers")
-    def ocsp_servers(self) -> pulumi.Output[Optional[Sequence[builtins.str]]]:
+    def ocsp_servers(self) -> pulumi.Output[Optional[Sequence[_builtins.str]]]:
         """
         Specifies the URL values for the OCSP Servers field.
         """
         return pulumi.get(self, "ocsp_servers")
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="revocationSignatureAlgorithm")
-    def revocation_signature_algorithm(self) -> pulumi.Output[builtins.str]:
+    def revocation_signature_algorithm(self) -> pulumi.Output[_builtins.str]:
         """
         Which signature algorithm to use
         when building CRLs.
         """
         return pulumi.get(self, "revocation_signature_algorithm")
 
-    @property
+    @_builtins.property
     @pulumi.getter
-    def usage(self) -> pulumi.Output[builtins.str]:
+    def usage(self) -> pulumi.Output[_builtins.str]:
         """
         Allowed usages for this issuer.
         """