pulumi-vault 7.2.0a1753339763__py3-none-any.whl → 7.2.0a1753512474__py3-none-any.whl

pulumi_vault/azure/backend_role.py

@@ -2,8 +2,7 @@
 # *** WARNING: this file was generated by pulumi-language-python. ***
 # *** Do not edit by hand unless you're certain you know what you are doing! ***
 
-import builtins
-import copy
+import builtins as _builtins
 import warnings
 import sys
 import pulumi
@@ -22,41 +21,41 @@ __all__ = ['BackendRoleArgs', 'BackendRole']
 @pulumi.input_type
 class BackendRoleArgs:
     def __init__(__self__, *,
-                 role: pulumi.Input[builtins.str],
-                 application_object_id: Optional[pulumi.Input[builtins.str]] = None,
+                 role: pulumi.Input[_builtins.str],
+                 application_object_id: Optional[pulumi.Input[_builtins.str]] = None,
                  azure_groups: Optional[pulumi.Input[Sequence[pulumi.Input['BackendRoleAzureGroupArgs']]]] = None,
                  azure_roles: Optional[pulumi.Input[Sequence[pulumi.Input['BackendRoleAzureRoleArgs']]]] = None,
-                 backend: Optional[pulumi.Input[builtins.str]] = None,
-                 description: Optional[pulumi.Input[builtins.str]] = None,
-                 explicit_max_ttl: Optional[pulumi.Input[builtins.str]] = None,
-                 max_ttl: Optional[pulumi.Input[builtins.str]] = None,
-                 namespace: Optional[pulumi.Input[builtins.str]] = None,
-                 permanently_delete: Optional[pulumi.Input[builtins.bool]] = None,
-                 sign_in_audience: Optional[pulumi.Input[builtins.str]] = None,
-                 tags: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
-                 ttl: Optional[pulumi.Input[builtins.str]] = None):
+                 backend: Optional[pulumi.Input[_builtins.str]] = None,
+                 description: Optional[pulumi.Input[_builtins.str]] = None,
+                 explicit_max_ttl: Optional[pulumi.Input[_builtins.str]] = None,
+                 max_ttl: Optional[pulumi.Input[_builtins.str]] = None,
+                 namespace: Optional[pulumi.Input[_builtins.str]] = None,
+                 permanently_delete: Optional[pulumi.Input[_builtins.bool]] = None,
+                 sign_in_audience: Optional[pulumi.Input[_builtins.str]] = None,
+                 tags: Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]] = None,
+                 ttl: Optional[pulumi.Input[_builtins.str]] = None):
         """
         The set of arguments for constructing a BackendRole resource.
-        :param pulumi.Input[builtins.str] role: Name of the Azure role
-        :param pulumi.Input[builtins.str] application_object_id: Application Object ID for an existing service principal that will
+        :param pulumi.Input[_builtins.str] role: Name of the Azure role
+        :param pulumi.Input[_builtins.str] application_object_id: Application Object ID for an existing service principal that will
                be used instead of creating dynamic service principals. If present, `azure_roles` and `permanently_delete` will be ignored.
         :param pulumi.Input[Sequence[pulumi.Input['BackendRoleAzureGroupArgs']]] azure_groups: List of Azure groups to be assigned to the generated service principal.
         :param pulumi.Input[Sequence[pulumi.Input['BackendRoleAzureRoleArgs']]] azure_roles: List of Azure roles to be assigned to the generated service principal.
-        :param pulumi.Input[builtins.str] backend: Path to the mounted Azure auth backend
-        :param pulumi.Input[builtins.str] description: Human-friendly description of the mount for the backend.
-        :param pulumi.Input[builtins.str] explicit_max_ttl: Specifies the explicit maximum lifetime of the lease and service principal generated using this role. If not set or set to 0, will use the system default (10 years). Requires Vault 1.18+.
-        :param pulumi.Input[builtins.str] max_ttl: Specifies the maximum TTL for service principals generated using this role. Accepts time
+        :param pulumi.Input[_builtins.str] backend: Path to the mounted Azure auth backend
+        :param pulumi.Input[_builtins.str] description: Human-friendly description of the mount for the backend.
+        :param pulumi.Input[_builtins.str] explicit_max_ttl: Specifies the explicit maximum lifetime of the lease and service principal generated using this role. If not set or set to 0, will use the system default (10 years). Requires Vault 1.18+.
+        :param pulumi.Input[_builtins.str] max_ttl: Specifies the maximum TTL for service principals generated using this role. Accepts time
                suffixed strings ("1h") or an integer number of seconds. Defaults to the system/engine max TTL time.
-        :param pulumi.Input[builtins.str] namespace: The namespace to provision the resource in.
+        :param pulumi.Input[_builtins.str] namespace: The namespace to provision the resource in.
                The value should not contain leading or trailing forward slashes.
                The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault/index.html#namespace).
                *Available only for Vault Enterprise*.
-        :param pulumi.Input[builtins.bool] permanently_delete: Indicates whether the applications and service principals created by Vault will be permanently
+        :param pulumi.Input[_builtins.bool] permanently_delete: Indicates whether the applications and service principals created by Vault will be permanently
                deleted when the corresponding leases expire. Defaults to `false`. For Vault v1.12+.
-        :param pulumi.Input[builtins.str] sign_in_audience: Specifies the security principal types that are allowed to sign in to the application.
+        :param pulumi.Input[_builtins.str] sign_in_audience: Specifies the security principal types that are allowed to sign in to the application.
                Valid values are: AzureADMyOrg, AzureADMultipleOrgs, AzureADandPersonalMicrosoftAccount, PersonalMicrosoftAccount. Requires Vault 1.16+.
-        :param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] tags: A list of Azure tags to attach to an application. Requires Vault 1.16+.
-        :param pulumi.Input[builtins.str] ttl: Specifies the default TTL for service principals generated using this role.
+        :param pulumi.Input[Sequence[pulumi.Input[_builtins.str]]] tags: A list of Azure tags to attach to an application. Requires Vault 1.16+.
+        :param pulumi.Input[_builtins.str] ttl: Specifies the default TTL for service principals generated using this role.
                Accepts time suffixed strings ("1h") or an integer number of seconds. Defaults to the system/engine default TTL time.
         """
         pulumi.set(__self__, "role", role)
@@ -85,21 +84,21 @@ class BackendRoleArgs:
         if ttl is not None:
             pulumi.set(__self__, "ttl", ttl)
 
-    @property
+    @_builtins.property
     @pulumi.getter
-    def role(self) -> pulumi.Input[builtins.str]:
+    def role(self) -> pulumi.Input[_builtins.str]:
         """
         Name of the Azure role
         """
         return pulumi.get(self, "role")
 
     @role.setter
-    def role(self, value: pulumi.Input[builtins.str]):
+    def role(self, value: pulumi.Input[_builtins.str]):
         pulumi.set(self, "role", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="applicationObjectId")
-    def application_object_id(self) -> Optional[pulumi.Input[builtins.str]]:
+    def application_object_id(self) -> Optional[pulumi.Input[_builtins.str]]:
         """
         Application Object ID for an existing service principal that will
         be used instead of creating dynamic service principals. If present, `azure_roles` and `permanently_delete` will be ignored.
@@ -107,10 +106,10 @@ class BackendRoleArgs:
         return pulumi.get(self, "application_object_id")
 
     @application_object_id.setter
-    def application_object_id(self, value: Optional[pulumi.Input[builtins.str]]):
+    def application_object_id(self, value: Optional[pulumi.Input[_builtins.str]]):
         pulumi.set(self, "application_object_id", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="azureGroups")
     def azure_groups(self) -> Optional[pulumi.Input[Sequence[pulumi.Input['BackendRoleAzureGroupArgs']]]]:
         """
@@ -122,7 +121,7 @@ class BackendRoleArgs:
     def azure_groups(self, value: Optional[pulumi.Input[Sequence[pulumi.Input['BackendRoleAzureGroupArgs']]]]):
         pulumi.set(self, "azure_groups", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="azureRoles")
     def azure_roles(self) -> Optional[pulumi.Input[Sequence[pulumi.Input['BackendRoleAzureRoleArgs']]]]:
         """
@@ -134,45 +133,45 @@ class BackendRoleArgs:
     def azure_roles(self, value: Optional[pulumi.Input[Sequence[pulumi.Input['BackendRoleAzureRoleArgs']]]]):
         pulumi.set(self, "azure_roles", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter
-    def backend(self) -> Optional[pulumi.Input[builtins.str]]:
+    def backend(self) -> Optional[pulumi.Input[_builtins.str]]:
         """
         Path to the mounted Azure auth backend
         """
         return pulumi.get(self, "backend")
 
     @backend.setter
-    def backend(self, value: Optional[pulumi.Input[builtins.str]]):
+    def backend(self, value: Optional[pulumi.Input[_builtins.str]]):
         pulumi.set(self, "backend", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter
-    def description(self) -> Optional[pulumi.Input[builtins.str]]:
+    def description(self) -> Optional[pulumi.Input[_builtins.str]]:
         """
         Human-friendly description of the mount for the backend.
         """
         return pulumi.get(self, "description")
 
     @description.setter
-    def description(self, value: Optional[pulumi.Input[builtins.str]]):
+    def description(self, value: Optional[pulumi.Input[_builtins.str]]):
         pulumi.set(self, "description", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="explicitMaxTtl")
-    def explicit_max_ttl(self) -> Optional[pulumi.Input[builtins.str]]:
+    def explicit_max_ttl(self) -> Optional[pulumi.Input[_builtins.str]]:
         """
         Specifies the explicit maximum lifetime of the lease and service principal generated using this role. If not set or set to 0, will use the system default (10 years). Requires Vault 1.18+.
         """
         return pulumi.get(self, "explicit_max_ttl")
 
     @explicit_max_ttl.setter
-    def explicit_max_ttl(self, value: Optional[pulumi.Input[builtins.str]]):
+    def explicit_max_ttl(self, value: Optional[pulumi.Input[_builtins.str]]):
         pulumi.set(self, "explicit_max_ttl", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="maxTtl")
-    def max_ttl(self) -> Optional[pulumi.Input[builtins.str]]:
+    def max_ttl(self) -> Optional[pulumi.Input[_builtins.str]]:
         """
         Specifies the maximum TTL for service principals generated using this role. Accepts time
         suffixed strings ("1h") or an integer number of seconds. Defaults to the system/engine max TTL time.
@@ -180,12 +179,12 @@ class BackendRoleArgs:
         return pulumi.get(self, "max_ttl")
 
     @max_ttl.setter
-    def max_ttl(self, value: Optional[pulumi.Input[builtins.str]]):
+    def max_ttl(self, value: Optional[pulumi.Input[_builtins.str]]):
         pulumi.set(self, "max_ttl", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter
-    def namespace(self) -> Optional[pulumi.Input[builtins.str]]:
+    def namespace(self) -> Optional[pulumi.Input[_builtins.str]]:
         """
         The namespace to provision the resource in.
         The value should not contain leading or trailing forward slashes.
@@ -195,12 +194,12 @@ class BackendRoleArgs:
         return pulumi.get(self, "namespace")
 
     @namespace.setter
-    def namespace(self, value: Optional[pulumi.Input[builtins.str]]):
+    def namespace(self, value: Optional[pulumi.Input[_builtins.str]]):
         pulumi.set(self, "namespace", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="permanentlyDelete")
-    def permanently_delete(self) -> Optional[pulumi.Input[builtins.bool]]:
+    def permanently_delete(self) -> Optional[pulumi.Input[_builtins.bool]]:
         """
         Indicates whether the applications and service principals created by Vault will be permanently
         deleted when the corresponding leases expire. Defaults to `false`. For Vault v1.12+.
@@ -208,12 +207,12 @@ class BackendRoleArgs:
         return pulumi.get(self, "permanently_delete")
 
     @permanently_delete.setter
-    def permanently_delete(self, value: Optional[pulumi.Input[builtins.bool]]):
+    def permanently_delete(self, value: Optional[pulumi.Input[_builtins.bool]]):
         pulumi.set(self, "permanently_delete", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="signInAudience")
-    def sign_in_audience(self) -> Optional[pulumi.Input[builtins.str]]:
+    def sign_in_audience(self) -> Optional[pulumi.Input[_builtins.str]]:
         """
         Specifies the security principal types that are allowed to sign in to the application.
         Valid values are: AzureADMyOrg, AzureADMultipleOrgs, AzureADandPersonalMicrosoftAccount, PersonalMicrosoftAccount. Requires Vault 1.16+.
@@ -221,24 +220,24 @@ class BackendRoleArgs:
         return pulumi.get(self, "sign_in_audience")
 
     @sign_in_audience.setter
-    def sign_in_audience(self, value: Optional[pulumi.Input[builtins.str]]):
+    def sign_in_audience(self, value: Optional[pulumi.Input[_builtins.str]]):
         pulumi.set(self, "sign_in_audience", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter
-    def tags(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]:
+    def tags(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]]:
         """
         A list of Azure tags to attach to an application. Requires Vault 1.16+.
         """
         return pulumi.get(self, "tags")
 
     @tags.setter
-    def tags(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]):
+    def tags(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]]):
         pulumi.set(self, "tags", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter
-    def ttl(self) -> Optional[pulumi.Input[builtins.str]]:
+    def ttl(self) -> Optional[pulumi.Input[_builtins.str]]:
         """
         Specifies the default TTL for service principals generated using this role.
         Accepts time suffixed strings ("1h") or an integer number of seconds. Defaults to the system/engine default TTL time.
@@ -246,48 +245,48 @@ class BackendRoleArgs:
         return pulumi.get(self, "ttl")
 
     @ttl.setter
-    def ttl(self, value: Optional[pulumi.Input[builtins.str]]):
+    def ttl(self, value: Optional[pulumi.Input[_builtins.str]]):
         pulumi.set(self, "ttl", value)
 
 
 @pulumi.input_type
 class _BackendRoleState:
     def __init__(__self__, *,
-                 application_object_id: Optional[pulumi.Input[builtins.str]] = None,
+                 application_object_id: Optional[pulumi.Input[_builtins.str]] = None,
                  azure_groups: Optional[pulumi.Input[Sequence[pulumi.Input['BackendRoleAzureGroupArgs']]]] = None,
                  azure_roles: Optional[pulumi.Input[Sequence[pulumi.Input['BackendRoleAzureRoleArgs']]]] = None,
-                 backend: Optional[pulumi.Input[builtins.str]] = None,
-                 description: Optional[pulumi.Input[builtins.str]] = None,
-                 explicit_max_ttl: Optional[pulumi.Input[builtins.str]] = None,
-                 max_ttl: Optional[pulumi.Input[builtins.str]] = None,
-                 namespace: Optional[pulumi.Input[builtins.str]] = None,
-                 permanently_delete: Optional[pulumi.Input[builtins.bool]] = None,
-                 role: Optional[pulumi.Input[builtins.str]] = None,
-                 sign_in_audience: Optional[pulumi.Input[builtins.str]] = None,
-                 tags: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
-                 ttl: Optional[pulumi.Input[builtins.str]] = None):
+                 backend: Optional[pulumi.Input[_builtins.str]] = None,
+                 description: Optional[pulumi.Input[_builtins.str]] = None,
+                 explicit_max_ttl: Optional[pulumi.Input[_builtins.str]] = None,
+                 max_ttl: Optional[pulumi.Input[_builtins.str]] = None,
+                 namespace: Optional[pulumi.Input[_builtins.str]] = None,
+                 permanently_delete: Optional[pulumi.Input[_builtins.bool]] = None,
+                 role: Optional[pulumi.Input[_builtins.str]] = None,
+                 sign_in_audience: Optional[pulumi.Input[_builtins.str]] = None,
+                 tags: Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]] = None,
+                 ttl: Optional[pulumi.Input[_builtins.str]] = None):
         """
         Input properties used for looking up and filtering BackendRole resources.
-        :param pulumi.Input[builtins.str] application_object_id: Application Object ID for an existing service principal that will
+        :param pulumi.Input[_builtins.str] application_object_id: Application Object ID for an existing service principal that will
                be used instead of creating dynamic service principals. If present, `azure_roles` and `permanently_delete` will be ignored.
         :param pulumi.Input[Sequence[pulumi.Input['BackendRoleAzureGroupArgs']]] azure_groups: List of Azure groups to be assigned to the generated service principal.
         :param pulumi.Input[Sequence[pulumi.Input['BackendRoleAzureRoleArgs']]] azure_roles: List of Azure roles to be assigned to the generated service principal.
-        :param pulumi.Input[builtins.str] backend: Path to the mounted Azure auth backend
-        :param pulumi.Input[builtins.str] description: Human-friendly description of the mount for the backend.
-        :param pulumi.Input[builtins.str] explicit_max_ttl: Specifies the explicit maximum lifetime of the lease and service principal generated using this role. If not set or set to 0, will use the system default (10 years). Requires Vault 1.18+.
-        :param pulumi.Input[builtins.str] max_ttl: Specifies the maximum TTL for service principals generated using this role. Accepts time
+        :param pulumi.Input[_builtins.str] backend: Path to the mounted Azure auth backend
+        :param pulumi.Input[_builtins.str] description: Human-friendly description of the mount for the backend.
+        :param pulumi.Input[_builtins.str] explicit_max_ttl: Specifies the explicit maximum lifetime of the lease and service principal generated using this role. If not set or set to 0, will use the system default (10 years). Requires Vault 1.18+.
+        :param pulumi.Input[_builtins.str] max_ttl: Specifies the maximum TTL for service principals generated using this role. Accepts time
                suffixed strings ("1h") or an integer number of seconds. Defaults to the system/engine max TTL time.
-        :param pulumi.Input[builtins.str] namespace: The namespace to provision the resource in.
+        :param pulumi.Input[_builtins.str] namespace: The namespace to provision the resource in.
                The value should not contain leading or trailing forward slashes.
                The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault/index.html#namespace).
                *Available only for Vault Enterprise*.
-        :param pulumi.Input[builtins.bool] permanently_delete: Indicates whether the applications and service principals created by Vault will be permanently
+        :param pulumi.Input[_builtins.bool] permanently_delete: Indicates whether the applications and service principals created by Vault will be permanently
                deleted when the corresponding leases expire. Defaults to `false`. For Vault v1.12+.
-        :param pulumi.Input[builtins.str] role: Name of the Azure role
-        :param pulumi.Input[builtins.str] sign_in_audience: Specifies the security principal types that are allowed to sign in to the application.
+        :param pulumi.Input[_builtins.str] role: Name of the Azure role
+        :param pulumi.Input[_builtins.str] sign_in_audience: Specifies the security principal types that are allowed to sign in to the application.
                Valid values are: AzureADMyOrg, AzureADMultipleOrgs, AzureADandPersonalMicrosoftAccount, PersonalMicrosoftAccount. Requires Vault 1.16+.
-        :param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] tags: A list of Azure tags to attach to an application. Requires Vault 1.16+.
-        :param pulumi.Input[builtins.str] ttl: Specifies the default TTL for service principals generated using this role.
+        :param pulumi.Input[Sequence[pulumi.Input[_builtins.str]]] tags: A list of Azure tags to attach to an application. Requires Vault 1.16+.
+        :param pulumi.Input[_builtins.str] ttl: Specifies the default TTL for service principals generated using this role.
                Accepts time suffixed strings ("1h") or an integer number of seconds. Defaults to the system/engine default TTL time.
         """
         if application_object_id is not None:
@@ -317,9 +316,9 @@ class _BackendRoleState:
         if ttl is not None:
             pulumi.set(__self__, "ttl", ttl)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="applicationObjectId")
-    def application_object_id(self) -> Optional[pulumi.Input[builtins.str]]:
+    def application_object_id(self) -> Optional[pulumi.Input[_builtins.str]]:
         """
         Application Object ID for an existing service principal that will
         be used instead of creating dynamic service principals. If present, `azure_roles` and `permanently_delete` will be ignored.
@@ -327,10 +326,10 @@ class _BackendRoleState:
         return pulumi.get(self, "application_object_id")
 
     @application_object_id.setter
-    def application_object_id(self, value: Optional[pulumi.Input[builtins.str]]):
+    def application_object_id(self, value: Optional[pulumi.Input[_builtins.str]]):
         pulumi.set(self, "application_object_id", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="azureGroups")
     def azure_groups(self) -> Optional[pulumi.Input[Sequence[pulumi.Input['BackendRoleAzureGroupArgs']]]]:
         """
@@ -342,7 +341,7 @@ class _BackendRoleState:
     def azure_groups(self, value: Optional[pulumi.Input[Sequence[pulumi.Input['BackendRoleAzureGroupArgs']]]]):
         pulumi.set(self, "azure_groups", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="azureRoles")
     def azure_roles(self) -> Optional[pulumi.Input[Sequence[pulumi.Input['BackendRoleAzureRoleArgs']]]]:
         """
@@ -354,45 +353,45 @@ class _BackendRoleState:
     def azure_roles(self, value: Optional[pulumi.Input[Sequence[pulumi.Input['BackendRoleAzureRoleArgs']]]]):
         pulumi.set(self, "azure_roles", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter
-    def backend(self) -> Optional[pulumi.Input[builtins.str]]:
+    def backend(self) -> Optional[pulumi.Input[_builtins.str]]:
         """
         Path to the mounted Azure auth backend
         """
         return pulumi.get(self, "backend")
 
     @backend.setter
-    def backend(self, value: Optional[pulumi.Input[builtins.str]]):
+    def backend(self, value: Optional[pulumi.Input[_builtins.str]]):
         pulumi.set(self, "backend", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter
-    def description(self) -> Optional[pulumi.Input[builtins.str]]:
+    def description(self) -> Optional[pulumi.Input[_builtins.str]]:
         """
         Human-friendly description of the mount for the backend.
         """
         return pulumi.get(self, "description")
 
     @description.setter
-    def description(self, value: Optional[pulumi.Input[builtins.str]]):
+    def description(self, value: Optional[pulumi.Input[_builtins.str]]):
         pulumi.set(self, "description", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="explicitMaxTtl")
-    def explicit_max_ttl(self) -> Optional[pulumi.Input[builtins.str]]:
+    def explicit_max_ttl(self) -> Optional[pulumi.Input[_builtins.str]]:
         """
         Specifies the explicit maximum lifetime of the lease and service principal generated using this role. If not set or set to 0, will use the system default (10 years). Requires Vault 1.18+.
         """
         return pulumi.get(self, "explicit_max_ttl")
 
     @explicit_max_ttl.setter
-    def explicit_max_ttl(self, value: Optional[pulumi.Input[builtins.str]]):
+    def explicit_max_ttl(self, value: Optional[pulumi.Input[_builtins.str]]):
         pulumi.set(self, "explicit_max_ttl", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="maxTtl")
-    def max_ttl(self) -> Optional[pulumi.Input[builtins.str]]:
+    def max_ttl(self) -> Optional[pulumi.Input[_builtins.str]]:
         """
         Specifies the maximum TTL for service principals generated using this role. Accepts time
         suffixed strings ("1h") or an integer number of seconds. Defaults to the system/engine max TTL time.
@@ -400,12 +399,12 @@ class _BackendRoleState:
         return pulumi.get(self, "max_ttl")
 
     @max_ttl.setter
-    def max_ttl(self, value: Optional[pulumi.Input[builtins.str]]):
+    def max_ttl(self, value: Optional[pulumi.Input[_builtins.str]]):
         pulumi.set(self, "max_ttl", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter
-    def namespace(self) -> Optional[pulumi.Input[builtins.str]]:
+    def namespace(self) -> Optional[pulumi.Input[_builtins.str]]:
         """
         The namespace to provision the resource in.
         The value should not contain leading or trailing forward slashes.
@@ -415,12 +414,12 @@ class _BackendRoleState:
         return pulumi.get(self, "namespace")
 
     @namespace.setter
-    def namespace(self, value: Optional[pulumi.Input[builtins.str]]):
+    def namespace(self, value: Optional[pulumi.Input[_builtins.str]]):
         pulumi.set(self, "namespace", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="permanentlyDelete")
-    def permanently_delete(self) -> Optional[pulumi.Input[builtins.bool]]:
+    def permanently_delete(self) -> Optional[pulumi.Input[_builtins.bool]]:
         """
         Indicates whether the applications and service principals created by Vault will be permanently
         deleted when the corresponding leases expire. Defaults to `false`. For Vault v1.12+.
@@ -428,24 +427,24 @@ class _BackendRoleState:
         return pulumi.get(self, "permanently_delete")
 
     @permanently_delete.setter
-    def permanently_delete(self, value: Optional[pulumi.Input[builtins.bool]]):
+    def permanently_delete(self, value: Optional[pulumi.Input[_builtins.bool]]):
         pulumi.set(self, "permanently_delete", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter
-    def role(self) -> Optional[pulumi.Input[builtins.str]]:
+    def role(self) -> Optional[pulumi.Input[_builtins.str]]:
         """
         Name of the Azure role
         """
         return pulumi.get(self, "role")
 
     @role.setter
-    def role(self, value: Optional[pulumi.Input[builtins.str]]):
+    def role(self, value: Optional[pulumi.Input[_builtins.str]]):
         pulumi.set(self, "role", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="signInAudience")
-    def sign_in_audience(self) -> Optional[pulumi.Input[builtins.str]]:
+    def sign_in_audience(self) -> Optional[pulumi.Input[_builtins.str]]:
         """
         Specifies the security principal types that are allowed to sign in to the application.
         Valid values are: AzureADMyOrg, AzureADMultipleOrgs, AzureADandPersonalMicrosoftAccount, PersonalMicrosoftAccount. Requires Vault 1.16+.
@@ -453,24 +452,24 @@ class _BackendRoleState:
         return pulumi.get(self, "sign_in_audience")
 
     @sign_in_audience.setter
-    def sign_in_audience(self, value: Optional[pulumi.Input[builtins.str]]):
+    def sign_in_audience(self, value: Optional[pulumi.Input[_builtins.str]]):
         pulumi.set(self, "sign_in_audience", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter
-    def tags(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]:
+    def tags(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]]:
         """
         A list of Azure tags to attach to an application. Requires Vault 1.16+.
         """
         return pulumi.get(self, "tags")
 
     @tags.setter
-    def tags(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]):
+    def tags(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]]):
         pulumi.set(self, "tags", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter
-    def ttl(self) -> Optional[pulumi.Input[builtins.str]]:
+    def ttl(self) -> Optional[pulumi.Input[_builtins.str]]:
         """
         Specifies the default TTL for service principals generated using this role.
         Accepts time suffixed strings ("1h") or an integer number of seconds. Defaults to the system/engine default TTL time.
@@ -478,7 +477,7 @@ class _BackendRoleState:
         return pulumi.get(self, "ttl")
 
     @ttl.setter
-    def ttl(self, value: Optional[pulumi.Input[builtins.str]]):
+    def ttl(self, value: Optional[pulumi.Input[_builtins.str]]):
         pulumi.set(self, "ttl", value)
 
 
@@ -488,19 +487,19 @@ class BackendRole(pulumi.CustomResource):
     def __init__(__self__,
                  resource_name: str,
                  opts: Optional[pulumi.ResourceOptions] = None,
-                 application_object_id: Optional[pulumi.Input[builtins.str]] = None,
+                 application_object_id: Optional[pulumi.Input[_builtins.str]] = None,
                  azure_groups: Optional[pulumi.Input[Sequence[pulumi.Input[Union['BackendRoleAzureGroupArgs', 'BackendRoleAzureGroupArgsDict']]]]] = None,
                  azure_roles: Optional[pulumi.Input[Sequence[pulumi.Input[Union['BackendRoleAzureRoleArgs', 'BackendRoleAzureRoleArgsDict']]]]] = None,
-                 backend: Optional[pulumi.Input[builtins.str]] = None,
-                 description: Optional[pulumi.Input[builtins.str]] = None,
-                 explicit_max_ttl: Optional[pulumi.Input[builtins.str]] = None,
-                 max_ttl: Optional[pulumi.Input[builtins.str]] = None,
-                 namespace: Optional[pulumi.Input[builtins.str]] = None,
-                 permanently_delete: Optional[pulumi.Input[builtins.bool]] = None,
-                 role: Optional[pulumi.Input[builtins.str]] = None,
-                 sign_in_audience: Optional[pulumi.Input[builtins.str]] = None,
-                 tags: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
-                 ttl: Optional[pulumi.Input[builtins.str]] = None,
+                 backend: Optional[pulumi.Input[_builtins.str]] = None,
+                 description: Optional[pulumi.Input[_builtins.str]] = None,
+                 explicit_max_ttl: Optional[pulumi.Input[_builtins.str]] = None,
+                 max_ttl: Optional[pulumi.Input[_builtins.str]] = None,
+                 namespace: Optional[pulumi.Input[_builtins.str]] = None,
+                 permanently_delete: Optional[pulumi.Input[_builtins.bool]] = None,
+                 role: Optional[pulumi.Input[_builtins.str]] = None,
+                 sign_in_audience: Optional[pulumi.Input[_builtins.str]] = None,
+                 tags: Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]] = None,
+                 ttl: Optional[pulumi.Input[_builtins.str]] = None,
                  __props__=None):
         """
         ## Example Usage
@@ -538,26 +537,26 @@ class BackendRole(pulumi.CustomResource):
 
         :param str resource_name: The name of the resource.
         :param pulumi.ResourceOptions opts: Options for the resource.
-        :param pulumi.Input[builtins.str] application_object_id: Application Object ID for an existing service principal that will
+        :param pulumi.Input[_builtins.str] application_object_id: Application Object ID for an existing service principal that will
                be used instead of creating dynamic service principals. If present, `azure_roles` and `permanently_delete` will be ignored.
         :param pulumi.Input[Sequence[pulumi.Input[Union['BackendRoleAzureGroupArgs', 'BackendRoleAzureGroupArgsDict']]]] azure_groups: List of Azure groups to be assigned to the generated service principal.
         :param pulumi.Input[Sequence[pulumi.Input[Union['BackendRoleAzureRoleArgs', 'BackendRoleAzureRoleArgsDict']]]] azure_roles: List of Azure roles to be assigned to the generated service principal.
-        :param pulumi.Input[builtins.str] backend: Path to the mounted Azure auth backend
-        :param pulumi.Input[builtins.str] description: Human-friendly description of the mount for the backend.
-        :param pulumi.Input[builtins.str] explicit_max_ttl: Specifies the explicit maximum lifetime of the lease and service principal generated using this role. If not set or set to 0, will use the system default (10 years). Requires Vault 1.18+.
-        :param pulumi.Input[builtins.str] max_ttl: Specifies the maximum TTL for service principals generated using this role. Accepts time
+        :param pulumi.Input[_builtins.str] backend: Path to the mounted Azure auth backend
+        :param pulumi.Input[_builtins.str] description: Human-friendly description of the mount for the backend.
+        :param pulumi.Input[_builtins.str] explicit_max_ttl: Specifies the explicit maximum lifetime of the lease and service principal generated using this role. If not set or set to 0, will use the system default (10 years). Requires Vault 1.18+.
+        :param pulumi.Input[_builtins.str] max_ttl: Specifies the maximum TTL for service principals generated using this role. Accepts time
                suffixed strings ("1h") or an integer number of seconds. Defaults to the system/engine max TTL time.
-        :param pulumi.Input[builtins.str] namespace: The namespace to provision the resource in.
+        :param pulumi.Input[_builtins.str] namespace: The namespace to provision the resource in.
                The value should not contain leading or trailing forward slashes.
                The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault/index.html#namespace).
                *Available only for Vault Enterprise*.
-        :param pulumi.Input[builtins.bool] permanently_delete: Indicates whether the applications and service principals created by Vault will be permanently
+        :param pulumi.Input[_builtins.bool] permanently_delete: Indicates whether the applications and service principals created by Vault will be permanently
                deleted when the corresponding leases expire. Defaults to `false`. For Vault v1.12+.
-        :param pulumi.Input[builtins.str] role: Name of the Azure role
-        :param pulumi.Input[builtins.str] sign_in_audience: Specifies the security principal types that are allowed to sign in to the application.
+        :param pulumi.Input[_builtins.str] role: Name of the Azure role
+        :param pulumi.Input[_builtins.str] sign_in_audience: Specifies the security principal types that are allowed to sign in to the application.
                Valid values are: AzureADMyOrg, AzureADMultipleOrgs, AzureADandPersonalMicrosoftAccount, PersonalMicrosoftAccount. Requires Vault 1.16+.
-        :param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] tags: A list of Azure tags to attach to an application. Requires Vault 1.16+.
-        :param pulumi.Input[builtins.str] ttl: Specifies the default TTL for service principals generated using this role.
+        :param pulumi.Input[Sequence[pulumi.Input[_builtins.str]]] tags: A list of Azure tags to attach to an application. Requires Vault 1.16+.
+        :param pulumi.Input[_builtins.str] ttl: Specifies the default TTL for service principals generated using this role.
                Accepts time suffixed strings ("1h") or an integer number of seconds. Defaults to the system/engine default TTL time.
         """
         ...
@@ -615,19 +614,19 @@ class BackendRole(pulumi.CustomResource):
     def _internal_init(__self__,
                  resource_name: str,
                  opts: Optional[pulumi.ResourceOptions] = None,
-                 application_object_id: Optional[pulumi.Input[builtins.str]] = None,
+                 application_object_id: Optional[pulumi.Input[_builtins.str]] = None,
                  azure_groups: Optional[pulumi.Input[Sequence[pulumi.Input[Union['BackendRoleAzureGroupArgs', 'BackendRoleAzureGroupArgsDict']]]]] = None,
                  azure_roles: Optional[pulumi.Input[Sequence[pulumi.Input[Union['BackendRoleAzureRoleArgs', 'BackendRoleAzureRoleArgsDict']]]]] = None,
-                 backend: Optional[pulumi.Input[builtins.str]] = None,
-                 description: Optional[pulumi.Input[builtins.str]] = None,
-                 explicit_max_ttl: Optional[pulumi.Input[builtins.str]] = None,
-                 max_ttl: Optional[pulumi.Input[builtins.str]] = None,
-                 namespace: Optional[pulumi.Input[builtins.str]] = None,
-                 permanently_delete: Optional[pulumi.Input[builtins.bool]] = None,
-                 role: Optional[pulumi.Input[builtins.str]] = None,
-                 sign_in_audience: Optional[pulumi.Input[builtins.str]] = None,
-                 tags: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
-                 ttl: Optional[pulumi.Input[builtins.str]] = None,
+                 backend: Optional[pulumi.Input[_builtins.str]] = None,
+                 description: Optional[pulumi.Input[_builtins.str]] = None,
+                 explicit_max_ttl: Optional[pulumi.Input[_builtins.str]] = None,
+                 max_ttl: Optional[pulumi.Input[_builtins.str]] = None,
+                 namespace: Optional[pulumi.Input[_builtins.str]] = None,
+                 permanently_delete: Optional[pulumi.Input[_builtins.bool]] = None,
+                 role: Optional[pulumi.Input[_builtins.str]] = None,
+                 sign_in_audience: Optional[pulumi.Input[_builtins.str]] = None,
+                 tags: Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]] = None,
+                 ttl: Optional[pulumi.Input[_builtins.str]] = None,
                  __props__=None):
         opts = pulumi.ResourceOptions.merge(_utilities.get_resource_opts_defaults(), opts)
         if not isinstance(opts, pulumi.ResourceOptions):
@@ -662,19 +661,19 @@ class BackendRole(pulumi.CustomResource):
     def get(resource_name: str,
             id: pulumi.Input[str],
             opts: Optional[pulumi.ResourceOptions] = None,
-            application_object_id: Optional[pulumi.Input[builtins.str]] = None,
+            application_object_id: Optional[pulumi.Input[_builtins.str]] = None,
             azure_groups: Optional[pulumi.Input[Sequence[pulumi.Input[Union['BackendRoleAzureGroupArgs', 'BackendRoleAzureGroupArgsDict']]]]] = None,
             azure_roles: Optional[pulumi.Input[Sequence[pulumi.Input[Union['BackendRoleAzureRoleArgs', 'BackendRoleAzureRoleArgsDict']]]]] = None,
-            backend: Optional[pulumi.Input[builtins.str]] = None,
-            description: Optional[pulumi.Input[builtins.str]] = None,
-            explicit_max_ttl: Optional[pulumi.Input[builtins.str]] = None,
-            max_ttl: Optional[pulumi.Input[builtins.str]] = None,
-            namespace: Optional[pulumi.Input[builtins.str]] = None,
-            permanently_delete: Optional[pulumi.Input[builtins.bool]] = None,
-            role: Optional[pulumi.Input[builtins.str]] = None,
-            sign_in_audience: Optional[pulumi.Input[builtins.str]] = None,
-            tags: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
-            ttl: Optional[pulumi.Input[builtins.str]] = None) -> 'BackendRole':
+            backend: Optional[pulumi.Input[_builtins.str]] = None,
+            description: Optional[pulumi.Input[_builtins.str]] = None,
+            explicit_max_ttl: Optional[pulumi.Input[_builtins.str]] = None,
+            max_ttl: Optional[pulumi.Input[_builtins.str]] = None,
+            namespace: Optional[pulumi.Input[_builtins.str]] = None,
+            permanently_delete: Optional[pulumi.Input[_builtins.bool]] = None,
+            role: Optional[pulumi.Input[_builtins.str]] = None,
+            sign_in_audience: Optional[pulumi.Input[_builtins.str]] = None,
+            tags: Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]] = None,
+            ttl: Optional[pulumi.Input[_builtins.str]] = None) -> 'BackendRole':
         """
         Get an existing BackendRole resource's state with the given name, id, and optional extra
         properties used to qualify the lookup.
@@ -682,26 +681,26 @@ class BackendRole(pulumi.CustomResource):
         :param str resource_name: The unique name of the resulting resource.
         :param pulumi.Input[str] id: The unique provider ID of the resource to lookup.
         :param pulumi.ResourceOptions opts: Options for the resource.
-        :param pulumi.Input[builtins.str] application_object_id: Application Object ID for an existing service principal that will
+        :param pulumi.Input[_builtins.str] application_object_id: Application Object ID for an existing service principal that will
                be used instead of creating dynamic service principals. If present, `azure_roles` and `permanently_delete` will be ignored.
         :param pulumi.Input[Sequence[pulumi.Input[Union['BackendRoleAzureGroupArgs', 'BackendRoleAzureGroupArgsDict']]]] azure_groups: List of Azure groups to be assigned to the generated service principal.
         :param pulumi.Input[Sequence[pulumi.Input[Union['BackendRoleAzureRoleArgs', 'BackendRoleAzureRoleArgsDict']]]] azure_roles: List of Azure roles to be assigned to the generated service principal.
-        :param pulumi.Input[builtins.str] backend: Path to the mounted Azure auth backend
-        :param pulumi.Input[builtins.str] description: Human-friendly description of the mount for the backend.
-        :param pulumi.Input[builtins.str] explicit_max_ttl: Specifies the explicit maximum lifetime of the lease and service principal generated using this role. If not set or set to 0, will use the system default (10 years). Requires Vault 1.18+.
-        :param pulumi.Input[builtins.str] max_ttl: Specifies the maximum TTL for service principals generated using this role. Accepts time
+        :param pulumi.Input[_builtins.str] backend: Path to the mounted Azure auth backend
+        :param pulumi.Input[_builtins.str] description: Human-friendly description of the mount for the backend.
+        :param pulumi.Input[_builtins.str] explicit_max_ttl: Specifies the explicit maximum lifetime of the lease and service principal generated using this role. If not set or set to 0, will use the system default (10 years). Requires Vault 1.18+.
+        :param pulumi.Input[_builtins.str] max_ttl: Specifies the maximum TTL for service principals generated using this role. Accepts time
                suffixed strings ("1h") or an integer number of seconds. Defaults to the system/engine max TTL time.
-        :param pulumi.Input[builtins.str] namespace: The namespace to provision the resource in.
+        :param pulumi.Input[_builtins.str] namespace: The namespace to provision the resource in.
                The value should not contain leading or trailing forward slashes.
                The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault/index.html#namespace).
                *Available only for Vault Enterprise*.
-        :param pulumi.Input[builtins.bool] permanently_delete: Indicates whether the applications and service principals created by Vault will be permanently
+        :param pulumi.Input[_builtins.bool] permanently_delete: Indicates whether the applications and service principals created by Vault will be permanently
                deleted when the corresponding leases expire. Defaults to `false`. For Vault v1.12+.
-        :param pulumi.Input[builtins.str] role: Name of the Azure role
-        :param pulumi.Input[builtins.str] sign_in_audience: Specifies the security principal types that are allowed to sign in to the application.
+        :param pulumi.Input[_builtins.str] role: Name of the Azure role
+        :param pulumi.Input[_builtins.str] sign_in_audience: Specifies the security principal types that are allowed to sign in to the application.
                Valid values are: AzureADMyOrg, AzureADMultipleOrgs, AzureADandPersonalMicrosoftAccount, PersonalMicrosoftAccount. Requires Vault 1.16+.
-        :param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] tags: A list of Azure tags to attach to an application. Requires Vault 1.16+.
-        :param pulumi.Input[builtins.str] ttl: Specifies the default TTL for service principals generated using this role.
+        :param pulumi.Input[Sequence[pulumi.Input[_builtins.str]]] tags: A list of Azure tags to attach to an application. Requires Vault 1.16+.
+        :param pulumi.Input[_builtins.str] ttl: Specifies the default TTL for service principals generated using this role.
                Accepts time suffixed strings ("1h") or an integer number of seconds. Defaults to the system/engine default TTL time.
         """
         opts = pulumi.ResourceOptions.merge(opts, pulumi.ResourceOptions(id=id))
@@ -723,16 +722,16 @@ class BackendRole(pulumi.CustomResource):
         __props__.__dict__["ttl"] = ttl
         return BackendRole(resource_name, opts=opts, __props__=__props__)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="applicationObjectId")
-    def application_object_id(self) -> pulumi.Output[Optional[builtins.str]]:
+    def application_object_id(self) -> pulumi.Output[Optional[_builtins.str]]:
         """
         Application Object ID for an existing service principal that will
         be used instead of creating dynamic service principals. If present, `azure_roles` and `permanently_delete` will be ignored.
         """
         return pulumi.get(self, "application_object_id")
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="azureGroups")
     def azure_groups(self) -> pulumi.Output[Optional[Sequence['outputs.BackendRoleAzureGroup']]]:
         """
@@ -740,7 +739,7 @@ class BackendRole(pulumi.CustomResource):
         """
         return pulumi.get(self, "azure_groups")
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="azureRoles")
     def azure_roles(self) -> pulumi.Output[Optional[Sequence['outputs.BackendRoleAzureRole']]]:
         """
@@ -748,42 +747,42 @@ class BackendRole(pulumi.CustomResource):
         """
         return pulumi.get(self, "azure_roles")
 
-    @property
+    @_builtins.property
     @pulumi.getter
-    def backend(self) -> pulumi.Output[Optional[builtins.str]]:
+    def backend(self) -> pulumi.Output[Optional[_builtins.str]]:
         """
         Path to the mounted Azure auth backend
         """
         return pulumi.get(self, "backend")
 
-    @property
+    @_builtins.property
     @pulumi.getter
-    def description(self) -> pulumi.Output[Optional[builtins.str]]:
+    def description(self) -> pulumi.Output[Optional[_builtins.str]]:
         """
         Human-friendly description of the mount for the backend.
         """
         return pulumi.get(self, "description")
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="explicitMaxTtl")
-    def explicit_max_ttl(self) -> pulumi.Output[Optional[builtins.str]]:
+    def explicit_max_ttl(self) -> pulumi.Output[Optional[_builtins.str]]:
         """
         Specifies the explicit maximum lifetime of the lease and service principal generated using this role. If not set or set to 0, will use the system default (10 years). Requires Vault 1.18+.
         """
         return pulumi.get(self, "explicit_max_ttl")
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="maxTtl")
-    def max_ttl(self) -> pulumi.Output[Optional[builtins.str]]:
+    def max_ttl(self) -> pulumi.Output[Optional[_builtins.str]]:
         """
         Specifies the maximum TTL for service principals generated using this role. Accepts time
         suffixed strings ("1h") or an integer number of seconds. Defaults to the system/engine max TTL time.
         """
         return pulumi.get(self, "max_ttl")
 
-    @property
+    @_builtins.property
     @pulumi.getter
-    def namespace(self) -> pulumi.Output[Optional[builtins.str]]:
+    def namespace(self) -> pulumi.Output[Optional[_builtins.str]]:
         """
         The namespace to provision the resource in.
         The value should not contain leading or trailing forward slashes.
@@ -792,43 +791,43 @@ class BackendRole(pulumi.CustomResource):
         """
         return pulumi.get(self, "namespace")
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="permanentlyDelete")
-    def permanently_delete(self) -> pulumi.Output[builtins.bool]:
+    def permanently_delete(self) -> pulumi.Output[_builtins.bool]:
         """
         Indicates whether the applications and service principals created by Vault will be permanently
         deleted when the corresponding leases expire. Defaults to `false`. For Vault v1.12+.
         """
         return pulumi.get(self, "permanently_delete")
 
-    @property
+    @_builtins.property
     @pulumi.getter
-    def role(self) -> pulumi.Output[builtins.str]:
+    def role(self) -> pulumi.Output[_builtins.str]:
         """
         Name of the Azure role
         """
         return pulumi.get(self, "role")
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="signInAudience")
-    def sign_in_audience(self) -> pulumi.Output[Optional[builtins.str]]:
+    def sign_in_audience(self) -> pulumi.Output[Optional[_builtins.str]]:
         """
         Specifies the security principal types that are allowed to sign in to the application.
         Valid values are: AzureADMyOrg, AzureADMultipleOrgs, AzureADandPersonalMicrosoftAccount, PersonalMicrosoftAccount. Requires Vault 1.16+.
         """
         return pulumi.get(self, "sign_in_audience")
 
-    @property
+    @_builtins.property
     @pulumi.getter
-    def tags(self) -> pulumi.Output[Optional[Sequence[builtins.str]]]:
+    def tags(self) -> pulumi.Output[Optional[Sequence[_builtins.str]]]:
         """
         A list of Azure tags to attach to an application. Requires Vault 1.16+.
         """
         return pulumi.get(self, "tags")
 
-    @property
+    @_builtins.property
     @pulumi.getter
-    def ttl(self) -> pulumi.Output[Optional[builtins.str]]:
+    def ttl(self) -> pulumi.Output[Optional[_builtins.str]]:
         """
         Specifies the default TTL for service principals generated using this role.
         Accepts time suffixed strings ("1h") or an integer number of seconds. Defaults to the system/engine default TTL time.