pulumi-vault 7.2.0a1753339763__py3-none-any.whl → 7.2.0a1753512474__py3-none-any.whl

pulumi_vault/aws/auth_backend_login.py

@@ -2,8 +2,7 @@
 # *** WARNING: this file was generated by pulumi-language-python. ***
 # *** Do not edit by hand unless you're certain you know what you are doing! ***
 
-import builtins
-import copy
+import builtins as _builtins
 import warnings
 import sys
 import pulumi
@@ -20,45 +19,45 @@ __all__ = ['AuthBackendLoginArgs', 'AuthBackendLogin']
 @pulumi.input_type
 class AuthBackendLoginArgs:
     def __init__(__self__, *,
-                 backend: Optional[pulumi.Input[builtins.str]] = None,
-                 iam_http_request_method: Optional[pulumi.Input[builtins.str]] = None,
-                 iam_request_body: Optional[pulumi.Input[builtins.str]] = None,
-                 iam_request_headers: Optional[pulumi.Input[builtins.str]] = None,
-                 iam_request_url: Optional[pulumi.Input[builtins.str]] = None,
-                 identity: Optional[pulumi.Input[builtins.str]] = None,
-                 namespace: Optional[pulumi.Input[builtins.str]] = None,
-                 nonce: Optional[pulumi.Input[builtins.str]] = None,
-                 pkcs7: Optional[pulumi.Input[builtins.str]] = None,
-                 role: Optional[pulumi.Input[builtins.str]] = None,
-                 signature: Optional[pulumi.Input[builtins.str]] = None):
+                 backend: Optional[pulumi.Input[_builtins.str]] = None,
+                 iam_http_request_method: Optional[pulumi.Input[_builtins.str]] = None,
+                 iam_request_body: Optional[pulumi.Input[_builtins.str]] = None,
+                 iam_request_headers: Optional[pulumi.Input[_builtins.str]] = None,
+                 iam_request_url: Optional[pulumi.Input[_builtins.str]] = None,
+                 identity: Optional[pulumi.Input[_builtins.str]] = None,
+                 namespace: Optional[pulumi.Input[_builtins.str]] = None,
+                 nonce: Optional[pulumi.Input[_builtins.str]] = None,
+                 pkcs7: Optional[pulumi.Input[_builtins.str]] = None,
+                 role: Optional[pulumi.Input[_builtins.str]] = None,
+                 signature: Optional[pulumi.Input[_builtins.str]] = None):
         """
         The set of arguments for constructing a AuthBackendLogin resource.
-        :param pulumi.Input[builtins.str] backend: The unique name of the AWS auth backend. Defaults to
+        :param pulumi.Input[_builtins.str] backend: The unique name of the AWS auth backend. Defaults to
                'aws'.
-        :param pulumi.Input[builtins.str] iam_http_request_method: The HTTP method used in the signed IAM
+        :param pulumi.Input[_builtins.str] iam_http_request_method: The HTTP method used in the signed IAM
                request.
-        :param pulumi.Input[builtins.str] iam_request_body: The base64-encoded body of the signed
+        :param pulumi.Input[_builtins.str] iam_request_body: The base64-encoded body of the signed
                request.
-        :param pulumi.Input[builtins.str] iam_request_headers: The base64-encoded, JSON serialized
+        :param pulumi.Input[_builtins.str] iam_request_headers: The base64-encoded, JSON serialized
                representation of the GetCallerIdentity HTTP request headers.
-        :param pulumi.Input[builtins.str] iam_request_url: The base64-encoded HTTP URL used in the signed
+        :param pulumi.Input[_builtins.str] iam_request_url: The base64-encoded HTTP URL used in the signed
                request.
-        :param pulumi.Input[builtins.str] identity: The base64-encoded EC2 instance identity document to
+        :param pulumi.Input[_builtins.str] identity: The base64-encoded EC2 instance identity document to
                authenticate with. Can be retrieved from the EC2 metadata server.
-        :param pulumi.Input[builtins.str] namespace: The namespace to provision the resource in.
+        :param pulumi.Input[_builtins.str] namespace: The namespace to provision the resource in.
                The value should not contain leading or trailing forward slashes.
                The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault/index.html#namespace).
                *Available only for Vault Enterprise*.
-        :param pulumi.Input[builtins.str] nonce: The unique nonce to be used for login requests. Can be
+        :param pulumi.Input[_builtins.str] nonce: The unique nonce to be used for login requests. Can be
                set to a user-specified value, or will contain the server-generated value
                once a token is issued. EC2 instances can only acquire a single token until
                the whitelist is tidied again unless they keep track of this nonce.
-        :param pulumi.Input[builtins.str] pkcs7: The PKCS#7 signature of the identity document to
+        :param pulumi.Input[_builtins.str] pkcs7: The PKCS#7 signature of the identity document to
                authenticate with, with all newline characters removed. Can be retrieved from
                the EC2 metadata server.
-        :param pulumi.Input[builtins.str] role: The name of the AWS auth backend role to create tokens
+        :param pulumi.Input[_builtins.str] role: The name of the AWS auth backend role to create tokens
                against.
-        :param pulumi.Input[builtins.str] signature: The base64-encoded SHA256 RSA signature of the
+        :param pulumi.Input[_builtins.str] signature: The base64-encoded SHA256 RSA signature of the
                instance identity document to authenticate with, with all newline characters
                removed. Can be retrieved from the EC2 metadata server.
         """
@@ -85,9 +84,9 @@ class AuthBackendLoginArgs:
         if signature is not None:
             pulumi.set(__self__, "signature", signature)
 
-    @property
+    @_builtins.property
     @pulumi.getter
-    def backend(self) -> Optional[pulumi.Input[builtins.str]]:
+    def backend(self) -> Optional[pulumi.Input[_builtins.str]]:
         """
         The unique name of the AWS auth backend. Defaults to
         'aws'.
@@ -95,12 +94,12 @@ class AuthBackendLoginArgs:
         return pulumi.get(self, "backend")
 
     @backend.setter
-    def backend(self, value: Optional[pulumi.Input[builtins.str]]):
+    def backend(self, value: Optional[pulumi.Input[_builtins.str]]):
         pulumi.set(self, "backend", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="iamHttpRequestMethod")
-    def iam_http_request_method(self) -> Optional[pulumi.Input[builtins.str]]:
+    def iam_http_request_method(self) -> Optional[pulumi.Input[_builtins.str]]:
         """
         The HTTP method used in the signed IAM
         request.
@@ -108,12 +107,12 @@ class AuthBackendLoginArgs:
         return pulumi.get(self, "iam_http_request_method")
 
     @iam_http_request_method.setter
-    def iam_http_request_method(self, value: Optional[pulumi.Input[builtins.str]]):
+    def iam_http_request_method(self, value: Optional[pulumi.Input[_builtins.str]]):
         pulumi.set(self, "iam_http_request_method", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="iamRequestBody")
-    def iam_request_body(self) -> Optional[pulumi.Input[builtins.str]]:
+    def iam_request_body(self) -> Optional[pulumi.Input[_builtins.str]]:
         """
         The base64-encoded body of the signed
         request.
@@ -121,12 +120,12 @@ class AuthBackendLoginArgs:
         return pulumi.get(self, "iam_request_body")
 
     @iam_request_body.setter
-    def iam_request_body(self, value: Optional[pulumi.Input[builtins.str]]):
+    def iam_request_body(self, value: Optional[pulumi.Input[_builtins.str]]):
         pulumi.set(self, "iam_request_body", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="iamRequestHeaders")
-    def iam_request_headers(self) -> Optional[pulumi.Input[builtins.str]]:
+    def iam_request_headers(self) -> Optional[pulumi.Input[_builtins.str]]:
         """
         The base64-encoded, JSON serialized
         representation of the GetCallerIdentity HTTP request headers.
@@ -134,12 +133,12 @@ class AuthBackendLoginArgs:
         return pulumi.get(self, "iam_request_headers")
 
     @iam_request_headers.setter
-    def iam_request_headers(self, value: Optional[pulumi.Input[builtins.str]]):
+    def iam_request_headers(self, value: Optional[pulumi.Input[_builtins.str]]):
         pulumi.set(self, "iam_request_headers", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="iamRequestUrl")
-    def iam_request_url(self) -> Optional[pulumi.Input[builtins.str]]:
+    def iam_request_url(self) -> Optional[pulumi.Input[_builtins.str]]:
         """
         The base64-encoded HTTP URL used in the signed
         request.
@@ -147,12 +146,12 @@ class AuthBackendLoginArgs:
         return pulumi.get(self, "iam_request_url")
 
     @iam_request_url.setter
-    def iam_request_url(self, value: Optional[pulumi.Input[builtins.str]]):
+    def iam_request_url(self, value: Optional[pulumi.Input[_builtins.str]]):
         pulumi.set(self, "iam_request_url", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter
-    def identity(self) -> Optional[pulumi.Input[builtins.str]]:
+    def identity(self) -> Optional[pulumi.Input[_builtins.str]]:
         """
         The base64-encoded EC2 instance identity document to
         authenticate with. Can be retrieved from the EC2 metadata server.
@@ -160,12 +159,12 @@ class AuthBackendLoginArgs:
         return pulumi.get(self, "identity")
 
     @identity.setter
-    def identity(self, value: Optional[pulumi.Input[builtins.str]]):
+    def identity(self, value: Optional[pulumi.Input[_builtins.str]]):
         pulumi.set(self, "identity", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter
-    def namespace(self) -> Optional[pulumi.Input[builtins.str]]:
+    def namespace(self) -> Optional[pulumi.Input[_builtins.str]]:
         """
         The namespace to provision the resource in.
         The value should not contain leading or trailing forward slashes.
@@ -175,12 +174,12 @@ class AuthBackendLoginArgs:
         return pulumi.get(self, "namespace")
 
     @namespace.setter
-    def namespace(self, value: Optional[pulumi.Input[builtins.str]]):
+    def namespace(self, value: Optional[pulumi.Input[_builtins.str]]):
         pulumi.set(self, "namespace", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter
-    def nonce(self) -> Optional[pulumi.Input[builtins.str]]:
+    def nonce(self) -> Optional[pulumi.Input[_builtins.str]]:
         """
         The unique nonce to be used for login requests. Can be
         set to a user-specified value, or will contain the server-generated value
@@ -190,12 +189,12 @@ class AuthBackendLoginArgs:
         return pulumi.get(self, "nonce")
 
     @nonce.setter
-    def nonce(self, value: Optional[pulumi.Input[builtins.str]]):
+    def nonce(self, value: Optional[pulumi.Input[_builtins.str]]):
         pulumi.set(self, "nonce", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter
-    def pkcs7(self) -> Optional[pulumi.Input[builtins.str]]:
+    def pkcs7(self) -> Optional[pulumi.Input[_builtins.str]]:
         """
         The PKCS#7 signature of the identity document to
         authenticate with, with all newline characters removed. Can be retrieved from
@@ -204,12 +203,12 @@ class AuthBackendLoginArgs:
         return pulumi.get(self, "pkcs7")
 
     @pkcs7.setter
-    def pkcs7(self, value: Optional[pulumi.Input[builtins.str]]):
+    def pkcs7(self, value: Optional[pulumi.Input[_builtins.str]]):
         pulumi.set(self, "pkcs7", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter
-    def role(self) -> Optional[pulumi.Input[builtins.str]]:
+    def role(self) -> Optional[pulumi.Input[_builtins.str]]:
         """
         The name of the AWS auth backend role to create tokens
         against.
@@ -217,12 +216,12 @@ class AuthBackendLoginArgs:
         return pulumi.get(self, "role")
 
     @role.setter
-    def role(self, value: Optional[pulumi.Input[builtins.str]]):
+    def role(self, value: Optional[pulumi.Input[_builtins.str]]):
         pulumi.set(self, "role", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter
-    def signature(self) -> Optional[pulumi.Input[builtins.str]]:
+    def signature(self) -> Optional[pulumi.Input[_builtins.str]]:
         """
         The base64-encoded SHA256 RSA signature of the
         instance identity document to authenticate with, with all newline characters
@@ -231,69 +230,69 @@ class AuthBackendLoginArgs:
         return pulumi.get(self, "signature")
 
     @signature.setter
-    def signature(self, value: Optional[pulumi.Input[builtins.str]]):
+    def signature(self, value: Optional[pulumi.Input[_builtins.str]]):
         pulumi.set(self, "signature", value)
 
 
 @pulumi.input_type
 class _AuthBackendLoginState:
     def __init__(__self__, *,
-                 accessor: Optional[pulumi.Input[builtins.str]] = None,
-                 auth_type: Optional[pulumi.Input[builtins.str]] = None,
-                 backend: Optional[pulumi.Input[builtins.str]] = None,
-                 client_token: Optional[pulumi.Input[builtins.str]] = None,
-                 iam_http_request_method: Optional[pulumi.Input[builtins.str]] = None,
-                 iam_request_body: Optional[pulumi.Input[builtins.str]] = None,
-                 iam_request_headers: Optional[pulumi.Input[builtins.str]] = None,
-                 iam_request_url: Optional[pulumi.Input[builtins.str]] = None,
-                 identity: Optional[pulumi.Input[builtins.str]] = None,
-                 lease_duration: Optional[pulumi.Input[builtins.int]] = None,
-                 lease_start_time: Optional[pulumi.Input[builtins.str]] = None,
-                 metadata: Optional[pulumi.Input[Mapping[str, pulumi.Input[builtins.str]]]] = None,
-                 namespace: Optional[pulumi.Input[builtins.str]] = None,
-                 nonce: Optional[pulumi.Input[builtins.str]] = None,
-                 pkcs7: Optional[pulumi.Input[builtins.str]] = None,
-                 policies: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
-                 renewable: Optional[pulumi.Input[builtins.bool]] = None,
-                 role: Optional[pulumi.Input[builtins.str]] = None,
-                 signature: Optional[pulumi.Input[builtins.str]] = None):
+                 accessor: Optional[pulumi.Input[_builtins.str]] = None,
+                 auth_type: Optional[pulumi.Input[_builtins.str]] = None,
+                 backend: Optional[pulumi.Input[_builtins.str]] = None,
+                 client_token: Optional[pulumi.Input[_builtins.str]] = None,
+                 iam_http_request_method: Optional[pulumi.Input[_builtins.str]] = None,
+                 iam_request_body: Optional[pulumi.Input[_builtins.str]] = None,
+                 iam_request_headers: Optional[pulumi.Input[_builtins.str]] = None,
+                 iam_request_url: Optional[pulumi.Input[_builtins.str]] = None,
+                 identity: Optional[pulumi.Input[_builtins.str]] = None,
+                 lease_duration: Optional[pulumi.Input[_builtins.int]] = None,
+                 lease_start_time: Optional[pulumi.Input[_builtins.str]] = None,
+                 metadata: Optional[pulumi.Input[Mapping[str, pulumi.Input[_builtins.str]]]] = None,
+                 namespace: Optional[pulumi.Input[_builtins.str]] = None,
+                 nonce: Optional[pulumi.Input[_builtins.str]] = None,
+                 pkcs7: Optional[pulumi.Input[_builtins.str]] = None,
+                 policies: Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]] = None,
+                 renewable: Optional[pulumi.Input[_builtins.bool]] = None,
+                 role: Optional[pulumi.Input[_builtins.str]] = None,
+                 signature: Optional[pulumi.Input[_builtins.str]] = None):
         """
         Input properties used for looking up and filtering AuthBackendLogin resources.
-        :param pulumi.Input[builtins.str] accessor: The token's accessor.
-        :param pulumi.Input[builtins.str] auth_type: The authentication type used to generate this token.
-        :param pulumi.Input[builtins.str] backend: The unique name of the AWS auth backend. Defaults to
+        :param pulumi.Input[_builtins.str] accessor: The token's accessor.
+        :param pulumi.Input[_builtins.str] auth_type: The authentication type used to generate this token.
+        :param pulumi.Input[_builtins.str] backend: The unique name of the AWS auth backend. Defaults to
                'aws'.
-        :param pulumi.Input[builtins.str] client_token: The token returned by Vault.
-        :param pulumi.Input[builtins.str] iam_http_request_method: The HTTP method used in the signed IAM
+        :param pulumi.Input[_builtins.str] client_token: The token returned by Vault.
+        :param pulumi.Input[_builtins.str] iam_http_request_method: The HTTP method used in the signed IAM
                request.
-        :param pulumi.Input[builtins.str] iam_request_body: The base64-encoded body of the signed
+        :param pulumi.Input[_builtins.str] iam_request_body: The base64-encoded body of the signed
                request.
-        :param pulumi.Input[builtins.str] iam_request_headers: The base64-encoded, JSON serialized
+        :param pulumi.Input[_builtins.str] iam_request_headers: The base64-encoded, JSON serialized
                representation of the GetCallerIdentity HTTP request headers.
-        :param pulumi.Input[builtins.str] iam_request_url: The base64-encoded HTTP URL used in the signed
+        :param pulumi.Input[_builtins.str] iam_request_url: The base64-encoded HTTP URL used in the signed
                request.
-        :param pulumi.Input[builtins.str] identity: The base64-encoded EC2 instance identity document to
+        :param pulumi.Input[_builtins.str] identity: The base64-encoded EC2 instance identity document to
                authenticate with. Can be retrieved from the EC2 metadata server.
-        :param pulumi.Input[builtins.int] lease_duration: The duration in seconds the token will be valid, relative
+        :param pulumi.Input[_builtins.int] lease_duration: The duration in seconds the token will be valid, relative
                to the time in `lease_start_time`.
-        :param pulumi.Input[Mapping[str, pulumi.Input[builtins.str]]] metadata: A map of information returned by the Vault server about the
+        :param pulumi.Input[Mapping[str, pulumi.Input[_builtins.str]]] metadata: A map of information returned by the Vault server about the
                authentication used to generate this token.
-        :param pulumi.Input[builtins.str] namespace: The namespace to provision the resource in.
+        :param pulumi.Input[_builtins.str] namespace: The namespace to provision the resource in.
                The value should not contain leading or trailing forward slashes.
                The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault/index.html#namespace).
                *Available only for Vault Enterprise*.
-        :param pulumi.Input[builtins.str] nonce: The unique nonce to be used for login requests. Can be
+        :param pulumi.Input[_builtins.str] nonce: The unique nonce to be used for login requests. Can be
                set to a user-specified value, or will contain the server-generated value
                once a token is issued. EC2 instances can only acquire a single token until
                the whitelist is tidied again unless they keep track of this nonce.
-        :param pulumi.Input[builtins.str] pkcs7: The PKCS#7 signature of the identity document to
+        :param pulumi.Input[_builtins.str] pkcs7: The PKCS#7 signature of the identity document to
                authenticate with, with all newline characters removed. Can be retrieved from
                the EC2 metadata server.
-        :param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] policies: The Vault policies assigned to this token.
-        :param pulumi.Input[builtins.bool] renewable: Set to true if the token can be extended through renewal.
-        :param pulumi.Input[builtins.str] role: The name of the AWS auth backend role to create tokens
+        :param pulumi.Input[Sequence[pulumi.Input[_builtins.str]]] policies: The Vault policies assigned to this token.
+        :param pulumi.Input[_builtins.bool] renewable: Set to true if the token can be extended through renewal.
+        :param pulumi.Input[_builtins.str] role: The name of the AWS auth backend role to create tokens
                against.
-        :param pulumi.Input[builtins.str] signature: The base64-encoded SHA256 RSA signature of the
+        :param pulumi.Input[_builtins.str] signature: The base64-encoded SHA256 RSA signature of the
                instance identity document to authenticate with, with all newline characters
                removed. Can be retrieved from the EC2 metadata server.
         """
@@ -336,33 +335,33 @@ class _AuthBackendLoginState:
         if signature is not None:
             pulumi.set(__self__, "signature", signature)
 
-    @property
+    @_builtins.property
     @pulumi.getter
-    def accessor(self) -> Optional[pulumi.Input[builtins.str]]:
+    def accessor(self) -> Optional[pulumi.Input[_builtins.str]]:
         """
         The token's accessor.
         """
         return pulumi.get(self, "accessor")
 
     @accessor.setter
-    def accessor(self, value: Optional[pulumi.Input[builtins.str]]):
+    def accessor(self, value: Optional[pulumi.Input[_builtins.str]]):
         pulumi.set(self, "accessor", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="authType")
-    def auth_type(self) -> Optional[pulumi.Input[builtins.str]]:
+    def auth_type(self) -> Optional[pulumi.Input[_builtins.str]]:
         """
         The authentication type used to generate this token.
         """
         return pulumi.get(self, "auth_type")
 
     @auth_type.setter
-    def auth_type(self, value: Optional[pulumi.Input[builtins.str]]):
+    def auth_type(self, value: Optional[pulumi.Input[_builtins.str]]):
         pulumi.set(self, "auth_type", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter
-    def backend(self) -> Optional[pulumi.Input[builtins.str]]:
+    def backend(self) -> Optional[pulumi.Input[_builtins.str]]:
         """
         The unique name of the AWS auth backend. Defaults to
         'aws'.
@@ -370,24 +369,24 @@ class _AuthBackendLoginState:
         return pulumi.get(self, "backend")
 
     @backend.setter
-    def backend(self, value: Optional[pulumi.Input[builtins.str]]):
+    def backend(self, value: Optional[pulumi.Input[_builtins.str]]):
         pulumi.set(self, "backend", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="clientToken")
-    def client_token(self) -> Optional[pulumi.Input[builtins.str]]:
+    def client_token(self) -> Optional[pulumi.Input[_builtins.str]]:
         """
         The token returned by Vault.
         """
         return pulumi.get(self, "client_token")
 
     @client_token.setter
-    def client_token(self, value: Optional[pulumi.Input[builtins.str]]):
+    def client_token(self, value: Optional[pulumi.Input[_builtins.str]]):
         pulumi.set(self, "client_token", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="iamHttpRequestMethod")
-    def iam_http_request_method(self) -> Optional[pulumi.Input[builtins.str]]:
+    def iam_http_request_method(self) -> Optional[pulumi.Input[_builtins.str]]:
         """
         The HTTP method used in the signed IAM
         request.
@@ -395,12 +394,12 @@ class _AuthBackendLoginState:
         return pulumi.get(self, "iam_http_request_method")
 
     @iam_http_request_method.setter
-    def iam_http_request_method(self, value: Optional[pulumi.Input[builtins.str]]):
+    def iam_http_request_method(self, value: Optional[pulumi.Input[_builtins.str]]):
         pulumi.set(self, "iam_http_request_method", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="iamRequestBody")
-    def iam_request_body(self) -> Optional[pulumi.Input[builtins.str]]:
+    def iam_request_body(self) -> Optional[pulumi.Input[_builtins.str]]:
         """
         The base64-encoded body of the signed
         request.
@@ -408,12 +407,12 @@ class _AuthBackendLoginState:
         return pulumi.get(self, "iam_request_body")
 
     @iam_request_body.setter
-    def iam_request_body(self, value: Optional[pulumi.Input[builtins.str]]):
+    def iam_request_body(self, value: Optional[pulumi.Input[_builtins.str]]):
         pulumi.set(self, "iam_request_body", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="iamRequestHeaders")
-    def iam_request_headers(self) -> Optional[pulumi.Input[builtins.str]]:
+    def iam_request_headers(self) -> Optional[pulumi.Input[_builtins.str]]:
         """
         The base64-encoded, JSON serialized
         representation of the GetCallerIdentity HTTP request headers.
@@ -421,12 +420,12 @@ class _AuthBackendLoginState:
         return pulumi.get(self, "iam_request_headers")
 
     @iam_request_headers.setter
-    def iam_request_headers(self, value: Optional[pulumi.Input[builtins.str]]):
+    def iam_request_headers(self, value: Optional[pulumi.Input[_builtins.str]]):
         pulumi.set(self, "iam_request_headers", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="iamRequestUrl")
-    def iam_request_url(self) -> Optional[pulumi.Input[builtins.str]]:
+    def iam_request_url(self) -> Optional[pulumi.Input[_builtins.str]]:
         """
         The base64-encoded HTTP URL used in the signed
         request.
@@ -434,12 +433,12 @@ class _AuthBackendLoginState:
         return pulumi.get(self, "iam_request_url")
 
     @iam_request_url.setter
-    def iam_request_url(self, value: Optional[pulumi.Input[builtins.str]]):
+    def iam_request_url(self, value: Optional[pulumi.Input[_builtins.str]]):
         pulumi.set(self, "iam_request_url", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter
-    def identity(self) -> Optional[pulumi.Input[builtins.str]]:
+    def identity(self) -> Optional[pulumi.Input[_builtins.str]]:
         """
         The base64-encoded EC2 instance identity document to
         authenticate with. Can be retrieved from the EC2 metadata server.
@@ -447,12 +446,12 @@ class _AuthBackendLoginState:
         return pulumi.get(self, "identity")
 
     @identity.setter
-    def identity(self, value: Optional[pulumi.Input[builtins.str]]):
+    def identity(self, value: Optional[pulumi.Input[_builtins.str]]):
         pulumi.set(self, "identity", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="leaseDuration")
-    def lease_duration(self) -> Optional[pulumi.Input[builtins.int]]:
+    def lease_duration(self) -> Optional[pulumi.Input[_builtins.int]]:
         """
         The duration in seconds the token will be valid, relative
         to the time in `lease_start_time`.
@@ -460,21 +459,21 @@ class _AuthBackendLoginState:
         return pulumi.get(self, "lease_duration")
 
     @lease_duration.setter
-    def lease_duration(self, value: Optional[pulumi.Input[builtins.int]]):
+    def lease_duration(self, value: Optional[pulumi.Input[_builtins.int]]):
         pulumi.set(self, "lease_duration", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="leaseStartTime")
-    def lease_start_time(self) -> Optional[pulumi.Input[builtins.str]]:
+    def lease_start_time(self) -> Optional[pulumi.Input[_builtins.str]]:
         return pulumi.get(self, "lease_start_time")
 
     @lease_start_time.setter
-    def lease_start_time(self, value: Optional[pulumi.Input[builtins.str]]):
+    def lease_start_time(self, value: Optional[pulumi.Input[_builtins.str]]):
         pulumi.set(self, "lease_start_time", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter
-    def metadata(self) -> Optional[pulumi.Input[Mapping[str, pulumi.Input[builtins.str]]]]:
+    def metadata(self) -> Optional[pulumi.Input[Mapping[str, pulumi.Input[_builtins.str]]]]:
         """
         A map of information returned by the Vault server about the
         authentication used to generate this token.
@@ -482,12 +481,12 @@ class _AuthBackendLoginState:
         return pulumi.get(self, "metadata")
 
     @metadata.setter
-    def metadata(self, value: Optional[pulumi.Input[Mapping[str, pulumi.Input[builtins.str]]]]):
+    def metadata(self, value: Optional[pulumi.Input[Mapping[str, pulumi.Input[_builtins.str]]]]):
         pulumi.set(self, "metadata", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter
-    def namespace(self) -> Optional[pulumi.Input[builtins.str]]:
+    def namespace(self) -> Optional[pulumi.Input[_builtins.str]]:
         """
         The namespace to provision the resource in.
         The value should not contain leading or trailing forward slashes.
@@ -497,12 +496,12 @@ class _AuthBackendLoginState:
         return pulumi.get(self, "namespace")
 
     @namespace.setter
-    def namespace(self, value: Optional[pulumi.Input[builtins.str]]):
+    def namespace(self, value: Optional[pulumi.Input[_builtins.str]]):
         pulumi.set(self, "namespace", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter
-    def nonce(self) -> Optional[pulumi.Input[builtins.str]]:
+    def nonce(self) -> Optional[pulumi.Input[_builtins.str]]:
         """
         The unique nonce to be used for login requests. Can be
         set to a user-specified value, or will contain the server-generated value
@@ -512,12 +511,12 @@ class _AuthBackendLoginState:
         return pulumi.get(self, "nonce")
 
     @nonce.setter
-    def nonce(self, value: Optional[pulumi.Input[builtins.str]]):
+    def nonce(self, value: Optional[pulumi.Input[_builtins.str]]):
         pulumi.set(self, "nonce", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter
-    def pkcs7(self) -> Optional[pulumi.Input[builtins.str]]:
+    def pkcs7(self) -> Optional[pulumi.Input[_builtins.str]]:
         """
         The PKCS#7 signature of the identity document to
         authenticate with, with all newline characters removed. Can be retrieved from
@@ -526,36 +525,36 @@ class _AuthBackendLoginState:
         return pulumi.get(self, "pkcs7")
 
     @pkcs7.setter
-    def pkcs7(self, value: Optional[pulumi.Input[builtins.str]]):
+    def pkcs7(self, value: Optional[pulumi.Input[_builtins.str]]):
         pulumi.set(self, "pkcs7", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter
-    def policies(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]:
+    def policies(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]]:
         """
         The Vault policies assigned to this token.
         """
         return pulumi.get(self, "policies")
 
     @policies.setter
-    def policies(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]):
+    def policies(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]]):
         pulumi.set(self, "policies", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter
-    def renewable(self) -> Optional[pulumi.Input[builtins.bool]]:
+    def renewable(self) -> Optional[pulumi.Input[_builtins.bool]]:
         """
         Set to true if the token can be extended through renewal.
         """
         return pulumi.get(self, "renewable")
 
     @renewable.setter
-    def renewable(self, value: Optional[pulumi.Input[builtins.bool]]):
+    def renewable(self, value: Optional[pulumi.Input[_builtins.bool]]):
         pulumi.set(self, "renewable", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter
-    def role(self) -> Optional[pulumi.Input[builtins.str]]:
+    def role(self) -> Optional[pulumi.Input[_builtins.str]]:
         """
         The name of the AWS auth backend role to create tokens
         against.
@@ -563,12 +562,12 @@ class _AuthBackendLoginState:
         return pulumi.get(self, "role")
 
     @role.setter
-    def role(self, value: Optional[pulumi.Input[builtins.str]]):
+    def role(self, value: Optional[pulumi.Input[_builtins.str]]):
         pulumi.set(self, "role", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter
-    def signature(self) -> Optional[pulumi.Input[builtins.str]]:
+    def signature(self) -> Optional[pulumi.Input[_builtins.str]]:
         """
         The base64-encoded SHA256 RSA signature of the
         instance identity document to authenticate with, with all newline characters
@@ -577,7 +576,7 @@ class _AuthBackendLoginState:
         return pulumi.get(self, "signature")
 
     @signature.setter
-    def signature(self, value: Optional[pulumi.Input[builtins.str]]):
+    def signature(self, value: Optional[pulumi.Input[_builtins.str]]):
         pulumi.set(self, "signature", value)
 
 
@@ -587,17 +586,17 @@ class AuthBackendLogin(pulumi.CustomResource):
     def __init__(__self__,
                  resource_name: str,
                  opts: Optional[pulumi.ResourceOptions] = None,
-                 backend: Optional[pulumi.Input[builtins.str]] = None,
-                 iam_http_request_method: Optional[pulumi.Input[builtins.str]] = None,
-                 iam_request_body: Optional[pulumi.Input[builtins.str]] = None,
-                 iam_request_headers: Optional[pulumi.Input[builtins.str]] = None,
-                 iam_request_url: Optional[pulumi.Input[builtins.str]] = None,
-                 identity: Optional[pulumi.Input[builtins.str]] = None,
-                 namespace: Optional[pulumi.Input[builtins.str]] = None,
-                 nonce: Optional[pulumi.Input[builtins.str]] = None,
-                 pkcs7: Optional[pulumi.Input[builtins.str]] = None,
-                 role: Optional[pulumi.Input[builtins.str]] = None,
-                 signature: Optional[pulumi.Input[builtins.str]] = None,
+                 backend: Optional[pulumi.Input[_builtins.str]] = None,
+                 iam_http_request_method: Optional[pulumi.Input[_builtins.str]] = None,
+                 iam_request_body: Optional[pulumi.Input[_builtins.str]] = None,
+                 iam_request_headers: Optional[pulumi.Input[_builtins.str]] = None,
+                 iam_request_url: Optional[pulumi.Input[_builtins.str]] = None,
+                 identity: Optional[pulumi.Input[_builtins.str]] = None,
+                 namespace: Optional[pulumi.Input[_builtins.str]] = None,
+                 nonce: Optional[pulumi.Input[_builtins.str]] = None,
+                 pkcs7: Optional[pulumi.Input[_builtins.str]] = None,
+                 role: Optional[pulumi.Input[_builtins.str]] = None,
+                 signature: Optional[pulumi.Input[_builtins.str]] = None,
                  __props__=None):
         """
         Logs into a Vault server using an AWS auth backend. Login can be
@@ -607,32 +606,32 @@ class AuthBackendLogin(pulumi.CustomResource):
 
         :param str resource_name: The name of the resource.
         :param pulumi.ResourceOptions opts: Options for the resource.
-        :param pulumi.Input[builtins.str] backend: The unique name of the AWS auth backend. Defaults to
+        :param pulumi.Input[_builtins.str] backend: The unique name of the AWS auth backend. Defaults to
                'aws'.
-        :param pulumi.Input[builtins.str] iam_http_request_method: The HTTP method used in the signed IAM
+        :param pulumi.Input[_builtins.str] iam_http_request_method: The HTTP method used in the signed IAM
                request.
-        :param pulumi.Input[builtins.str] iam_request_body: The base64-encoded body of the signed
+        :param pulumi.Input[_builtins.str] iam_request_body: The base64-encoded body of the signed
                request.
-        :param pulumi.Input[builtins.str] iam_request_headers: The base64-encoded, JSON serialized
+        :param pulumi.Input[_builtins.str] iam_request_headers: The base64-encoded, JSON serialized
                representation of the GetCallerIdentity HTTP request headers.
-        :param pulumi.Input[builtins.str] iam_request_url: The base64-encoded HTTP URL used in the signed
+        :param pulumi.Input[_builtins.str] iam_request_url: The base64-encoded HTTP URL used in the signed
                request.
-        :param pulumi.Input[builtins.str] identity: The base64-encoded EC2 instance identity document to
+        :param pulumi.Input[_builtins.str] identity: The base64-encoded EC2 instance identity document to
                authenticate with. Can be retrieved from the EC2 metadata server.
-        :param pulumi.Input[builtins.str] namespace: The namespace to provision the resource in.
+        :param pulumi.Input[_builtins.str] namespace: The namespace to provision the resource in.
                The value should not contain leading or trailing forward slashes.
                The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault/index.html#namespace).
                *Available only for Vault Enterprise*.
-        :param pulumi.Input[builtins.str] nonce: The unique nonce to be used for login requests. Can be
+        :param pulumi.Input[_builtins.str] nonce: The unique nonce to be used for login requests. Can be
                set to a user-specified value, or will contain the server-generated value
                once a token is issued. EC2 instances can only acquire a single token until
                the whitelist is tidied again unless they keep track of this nonce.
-        :param pulumi.Input[builtins.str] pkcs7: The PKCS#7 signature of the identity document to
+        :param pulumi.Input[_builtins.str] pkcs7: The PKCS#7 signature of the identity document to
                authenticate with, with all newline characters removed. Can be retrieved from
                the EC2 metadata server.
-        :param pulumi.Input[builtins.str] role: The name of the AWS auth backend role to create tokens
+        :param pulumi.Input[_builtins.str] role: The name of the AWS auth backend role to create tokens
                against.
-        :param pulumi.Input[builtins.str] signature: The base64-encoded SHA256 RSA signature of the
+        :param pulumi.Input[_builtins.str] signature: The base64-encoded SHA256 RSA signature of the
                instance identity document to authenticate with, with all newline characters
                removed. Can be retrieved from the EC2 metadata server.
         """
@@ -663,17 +662,17 @@ class AuthBackendLogin(pulumi.CustomResource):
     def _internal_init(__self__,
                  resource_name: str,
                  opts: Optional[pulumi.ResourceOptions] = None,
-                 backend: Optional[pulumi.Input[builtins.str]] = None,
-                 iam_http_request_method: Optional[pulumi.Input[builtins.str]] = None,
-                 iam_request_body: Optional[pulumi.Input[builtins.str]] = None,
-                 iam_request_headers: Optional[pulumi.Input[builtins.str]] = None,
-                 iam_request_url: Optional[pulumi.Input[builtins.str]] = None,
-                 identity: Optional[pulumi.Input[builtins.str]] = None,
-                 namespace: Optional[pulumi.Input[builtins.str]] = None,
-                 nonce: Optional[pulumi.Input[builtins.str]] = None,
-                 pkcs7: Optional[pulumi.Input[builtins.str]] = None,
-                 role: Optional[pulumi.Input[builtins.str]] = None,
-                 signature: Optional[pulumi.Input[builtins.str]] = None,
+                 backend: Optional[pulumi.Input[_builtins.str]] = None,
+                 iam_http_request_method: Optional[pulumi.Input[_builtins.str]] = None,
+                 iam_request_body: Optional[pulumi.Input[_builtins.str]] = None,
+                 iam_request_headers: Optional[pulumi.Input[_builtins.str]] = None,
+                 iam_request_url: Optional[pulumi.Input[_builtins.str]] = None,
+                 identity: Optional[pulumi.Input[_builtins.str]] = None,
+                 namespace: Optional[pulumi.Input[_builtins.str]] = None,
+                 nonce: Optional[pulumi.Input[_builtins.str]] = None,
+                 pkcs7: Optional[pulumi.Input[_builtins.str]] = None,
+                 role: Optional[pulumi.Input[_builtins.str]] = None,
+                 signature: Optional[pulumi.Input[_builtins.str]] = None,
                  __props__=None):
         opts = pulumi.ResourceOptions.merge(_utilities.get_resource_opts_defaults(), opts)
         if not isinstance(opts, pulumi.ResourceOptions):
@@ -714,25 +713,25 @@ class AuthBackendLogin(pulumi.CustomResource):
     def get(resource_name: str,
             id: pulumi.Input[str],
             opts: Optional[pulumi.ResourceOptions] = None,
-            accessor: Optional[pulumi.Input[builtins.str]] = None,
-            auth_type: Optional[pulumi.Input[builtins.str]] = None,
-            backend: Optional[pulumi.Input[builtins.str]] = None,
-            client_token: Optional[pulumi.Input[builtins.str]] = None,
-            iam_http_request_method: Optional[pulumi.Input[builtins.str]] = None,
-            iam_request_body: Optional[pulumi.Input[builtins.str]] = None,
-            iam_request_headers: Optional[pulumi.Input[builtins.str]] = None,
-            iam_request_url: Optional[pulumi.Input[builtins.str]] = None,
-            identity: Optional[pulumi.Input[builtins.str]] = None,
-            lease_duration: Optional[pulumi.Input[builtins.int]] = None,
-            lease_start_time: Optional[pulumi.Input[builtins.str]] = None,
-            metadata: Optional[pulumi.Input[Mapping[str, pulumi.Input[builtins.str]]]] = None,
-            namespace: Optional[pulumi.Input[builtins.str]] = None,
-            nonce: Optional[pulumi.Input[builtins.str]] = None,
-            pkcs7: Optional[pulumi.Input[builtins.str]] = None,
-            policies: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
-            renewable: Optional[pulumi.Input[builtins.bool]] = None,
-            role: Optional[pulumi.Input[builtins.str]] = None,
-            signature: Optional[pulumi.Input[builtins.str]] = None) -> 'AuthBackendLogin':
+            accessor: Optional[pulumi.Input[_builtins.str]] = None,
+            auth_type: Optional[pulumi.Input[_builtins.str]] = None,
+            backend: Optional[pulumi.Input[_builtins.str]] = None,
+            client_token: Optional[pulumi.Input[_builtins.str]] = None,
+            iam_http_request_method: Optional[pulumi.Input[_builtins.str]] = None,
+            iam_request_body: Optional[pulumi.Input[_builtins.str]] = None,
+            iam_request_headers: Optional[pulumi.Input[_builtins.str]] = None,
+            iam_request_url: Optional[pulumi.Input[_builtins.str]] = None,
+            identity: Optional[pulumi.Input[_builtins.str]] = None,
+            lease_duration: Optional[pulumi.Input[_builtins.int]] = None,
+            lease_start_time: Optional[pulumi.Input[_builtins.str]] = None,
+            metadata: Optional[pulumi.Input[Mapping[str, pulumi.Input[_builtins.str]]]] = None,
+            namespace: Optional[pulumi.Input[_builtins.str]] = None,
+            nonce: Optional[pulumi.Input[_builtins.str]] = None,
+            pkcs7: Optional[pulumi.Input[_builtins.str]] = None,
+            policies: Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]] = None,
+            renewable: Optional[pulumi.Input[_builtins.bool]] = None,
+            role: Optional[pulumi.Input[_builtins.str]] = None,
+            signature: Optional[pulumi.Input[_builtins.str]] = None) -> 'AuthBackendLogin':
         """
         Get an existing AuthBackendLogin resource's state with the given name, id, and optional extra
         properties used to qualify the lookup.
@@ -740,41 +739,41 @@ class AuthBackendLogin(pulumi.CustomResource):
         :param str resource_name: The unique name of the resulting resource.
         :param pulumi.Input[str] id: The unique provider ID of the resource to lookup.
         :param pulumi.ResourceOptions opts: Options for the resource.
-        :param pulumi.Input[builtins.str] accessor: The token's accessor.
-        :param pulumi.Input[builtins.str] auth_type: The authentication type used to generate this token.
-        :param pulumi.Input[builtins.str] backend: The unique name of the AWS auth backend. Defaults to
+        :param pulumi.Input[_builtins.str] accessor: The token's accessor.
+        :param pulumi.Input[_builtins.str] auth_type: The authentication type used to generate this token.
+        :param pulumi.Input[_builtins.str] backend: The unique name of the AWS auth backend. Defaults to
                'aws'.
-        :param pulumi.Input[builtins.str] client_token: The token returned by Vault.
-        :param pulumi.Input[builtins.str] iam_http_request_method: The HTTP method used in the signed IAM
+        :param pulumi.Input[_builtins.str] client_token: The token returned by Vault.
+        :param pulumi.Input[_builtins.str] iam_http_request_method: The HTTP method used in the signed IAM
                request.
-        :param pulumi.Input[builtins.str] iam_request_body: The base64-encoded body of the signed
+        :param pulumi.Input[_builtins.str] iam_request_body: The base64-encoded body of the signed
                request.
-        :param pulumi.Input[builtins.str] iam_request_headers: The base64-encoded, JSON serialized
+        :param pulumi.Input[_builtins.str] iam_request_headers: The base64-encoded, JSON serialized
                representation of the GetCallerIdentity HTTP request headers.
-        :param pulumi.Input[builtins.str] iam_request_url: The base64-encoded HTTP URL used in the signed
+        :param pulumi.Input[_builtins.str] iam_request_url: The base64-encoded HTTP URL used in the signed
                request.
-        :param pulumi.Input[builtins.str] identity: The base64-encoded EC2 instance identity document to
+        :param pulumi.Input[_builtins.str] identity: The base64-encoded EC2 instance identity document to
                authenticate with. Can be retrieved from the EC2 metadata server.
-        :param pulumi.Input[builtins.int] lease_duration: The duration in seconds the token will be valid, relative
+        :param pulumi.Input[_builtins.int] lease_duration: The duration in seconds the token will be valid, relative
                to the time in `lease_start_time`.
-        :param pulumi.Input[Mapping[str, pulumi.Input[builtins.str]]] metadata: A map of information returned by the Vault server about the
+        :param pulumi.Input[Mapping[str, pulumi.Input[_builtins.str]]] metadata: A map of information returned by the Vault server about the
                authentication used to generate this token.
-        :param pulumi.Input[builtins.str] namespace: The namespace to provision the resource in.
+        :param pulumi.Input[_builtins.str] namespace: The namespace to provision the resource in.
                The value should not contain leading or trailing forward slashes.
                The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault/index.html#namespace).
                *Available only for Vault Enterprise*.
-        :param pulumi.Input[builtins.str] nonce: The unique nonce to be used for login requests. Can be
+        :param pulumi.Input[_builtins.str] nonce: The unique nonce to be used for login requests. Can be
                set to a user-specified value, or will contain the server-generated value
                once a token is issued. EC2 instances can only acquire a single token until
                the whitelist is tidied again unless they keep track of this nonce.
-        :param pulumi.Input[builtins.str] pkcs7: The PKCS#7 signature of the identity document to
+        :param pulumi.Input[_builtins.str] pkcs7: The PKCS#7 signature of the identity document to
                authenticate with, with all newline characters removed. Can be retrieved from
                the EC2 metadata server.
-        :param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] policies: The Vault policies assigned to this token.
-        :param pulumi.Input[builtins.bool] renewable: Set to true if the token can be extended through renewal.
-        :param pulumi.Input[builtins.str] role: The name of the AWS auth backend role to create tokens
+        :param pulumi.Input[Sequence[pulumi.Input[_builtins.str]]] policies: The Vault policies assigned to this token.
+        :param pulumi.Input[_builtins.bool] renewable: Set to true if the token can be extended through renewal.
+        :param pulumi.Input[_builtins.str] role: The name of the AWS auth backend role to create tokens
                against.
-        :param pulumi.Input[builtins.str] signature: The base64-encoded SHA256 RSA signature of the
+        :param pulumi.Input[_builtins.str] signature: The base64-encoded SHA256 RSA signature of the
                instance identity document to authenticate with, with all newline characters
                removed. Can be retrieved from the EC2 metadata server.
         """
@@ -803,110 +802,110 @@ class AuthBackendLogin(pulumi.CustomResource):
         __props__.__dict__["signature"] = signature
         return AuthBackendLogin(resource_name, opts=opts, __props__=__props__)
 
-    @property
+    @_builtins.property
     @pulumi.getter
-    def accessor(self) -> pulumi.Output[builtins.str]:
+    def accessor(self) -> pulumi.Output[_builtins.str]:
         """
         The token's accessor.
         """
         return pulumi.get(self, "accessor")
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="authType")
-    def auth_type(self) -> pulumi.Output[builtins.str]:
+    def auth_type(self) -> pulumi.Output[_builtins.str]:
         """
         The authentication type used to generate this token.
         """
         return pulumi.get(self, "auth_type")
 
-    @property
+    @_builtins.property
     @pulumi.getter
-    def backend(self) -> pulumi.Output[Optional[builtins.str]]:
+    def backend(self) -> pulumi.Output[Optional[_builtins.str]]:
         """
         The unique name of the AWS auth backend. Defaults to
         'aws'.
         """
         return pulumi.get(self, "backend")
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="clientToken")
-    def client_token(self) -> pulumi.Output[builtins.str]:
+    def client_token(self) -> pulumi.Output[_builtins.str]:
         """
         The token returned by Vault.
         """
         return pulumi.get(self, "client_token")
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="iamHttpRequestMethod")
-    def iam_http_request_method(self) -> pulumi.Output[Optional[builtins.str]]:
+    def iam_http_request_method(self) -> pulumi.Output[Optional[_builtins.str]]:
         """
         The HTTP method used in the signed IAM
         request.
         """
         return pulumi.get(self, "iam_http_request_method")
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="iamRequestBody")
-    def iam_request_body(self) -> pulumi.Output[Optional[builtins.str]]:
+    def iam_request_body(self) -> pulumi.Output[Optional[_builtins.str]]:
         """
         The base64-encoded body of the signed
         request.
         """
         return pulumi.get(self, "iam_request_body")
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="iamRequestHeaders")
-    def iam_request_headers(self) -> pulumi.Output[Optional[builtins.str]]:
+    def iam_request_headers(self) -> pulumi.Output[Optional[_builtins.str]]:
         """
         The base64-encoded, JSON serialized
         representation of the GetCallerIdentity HTTP request headers.
         """
         return pulumi.get(self, "iam_request_headers")
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="iamRequestUrl")
-    def iam_request_url(self) -> pulumi.Output[Optional[builtins.str]]:
+    def iam_request_url(self) -> pulumi.Output[Optional[_builtins.str]]:
         """
         The base64-encoded HTTP URL used in the signed
         request.
         """
         return pulumi.get(self, "iam_request_url")
 
-    @property
+    @_builtins.property
     @pulumi.getter
-    def identity(self) -> pulumi.Output[Optional[builtins.str]]:
+    def identity(self) -> pulumi.Output[Optional[_builtins.str]]:
         """
         The base64-encoded EC2 instance identity document to
         authenticate with. Can be retrieved from the EC2 metadata server.
         """
         return pulumi.get(self, "identity")
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="leaseDuration")
-    def lease_duration(self) -> pulumi.Output[builtins.int]:
+    def lease_duration(self) -> pulumi.Output[_builtins.int]:
         """
         The duration in seconds the token will be valid, relative
         to the time in `lease_start_time`.
         """
         return pulumi.get(self, "lease_duration")
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="leaseStartTime")
-    def lease_start_time(self) -> pulumi.Output[builtins.str]:
+    def lease_start_time(self) -> pulumi.Output[_builtins.str]:
         return pulumi.get(self, "lease_start_time")
 
-    @property
+    @_builtins.property
     @pulumi.getter
-    def metadata(self) -> pulumi.Output[Mapping[str, builtins.str]]:
+    def metadata(self) -> pulumi.Output[Mapping[str, _builtins.str]]:
         """
         A map of information returned by the Vault server about the
         authentication used to generate this token.
         """
         return pulumi.get(self, "metadata")
 
-    @property
+    @_builtins.property
     @pulumi.getter
-    def namespace(self) -> pulumi.Output[Optional[builtins.str]]:
+    def namespace(self) -> pulumi.Output[Optional[_builtins.str]]:
         """
         The namespace to provision the resource in.
         The value should not contain leading or trailing forward slashes.
@@ -915,9 +914,9 @@ class AuthBackendLogin(pulumi.CustomResource):
         """
         return pulumi.get(self, "namespace")
 
-    @property
+    @_builtins.property
     @pulumi.getter
-    def nonce(self) -> pulumi.Output[builtins.str]:
+    def nonce(self) -> pulumi.Output[_builtins.str]:
         """
         The unique nonce to be used for login requests. Can be
         set to a user-specified value, or will contain the server-generated value
@@ -926,9 +925,9 @@ class AuthBackendLogin(pulumi.CustomResource):
         """
         return pulumi.get(self, "nonce")
 
-    @property
+    @_builtins.property
     @pulumi.getter
-    def pkcs7(self) -> pulumi.Output[Optional[builtins.str]]:
+    def pkcs7(self) -> pulumi.Output[Optional[_builtins.str]]:
         """
         The PKCS#7 signature of the identity document to
         authenticate with, with all newline characters removed. Can be retrieved from
@@ -936,34 +935,34 @@ class AuthBackendLogin(pulumi.CustomResource):
         """
         return pulumi.get(self, "pkcs7")
 
-    @property
+    @_builtins.property
     @pulumi.getter
-    def policies(self) -> pulumi.Output[Sequence[builtins.str]]:
+    def policies(self) -> pulumi.Output[Sequence[_builtins.str]]:
         """
         The Vault policies assigned to this token.
         """
         return pulumi.get(self, "policies")
 
-    @property
+    @_builtins.property
     @pulumi.getter
-    def renewable(self) -> pulumi.Output[builtins.bool]:
+    def renewable(self) -> pulumi.Output[_builtins.bool]:
         """
         Set to true if the token can be extended through renewal.
         """
         return pulumi.get(self, "renewable")
 
-    @property
+    @_builtins.property
     @pulumi.getter
-    def role(self) -> pulumi.Output[builtins.str]:
+    def role(self) -> pulumi.Output[_builtins.str]:
         """
         The name of the AWS auth backend role to create tokens
         against.
         """
         return pulumi.get(self, "role")
 
-    @property
+    @_builtins.property
     @pulumi.getter
-    def signature(self) -> pulumi.Output[Optional[builtins.str]]:
+    def signature(self) -> pulumi.Output[Optional[_builtins.str]]:
         """
         The base64-encoded SHA256 RSA signature of the
         instance identity document to authenticate with, with all newline characters