getAuthBackendConfig

Reads the Role of an Kubernetes from a Vault server. See the Vault documentation for more information.

Using getAuthBackendConfig

function getAuthBackendConfig(args: GetAuthBackendConfigArgs, opts?: InvokeOptions): Promise<GetAuthBackendConfigResult>
def get_auth_backend_config(backend: Optional[str] = None,
                            disable_iss_validation: Optional[bool] = None,
                            disable_local_ca_jwt: Optional[bool] = None,
                            issuer: Optional[str] = None,
                            kubernetes_ca_cert: Optional[str] = None,
                            kubernetes_host: Optional[str] = None,
                            pem_keys: Optional[Sequence[str]] = None,
                            opts: Optional[InvokeOptions] = None) -> GetAuthBackendConfigResult
func LookupAuthBackendConfig(ctx *Context, args *LookupAuthBackendConfigArgs, opts ...InvokeOption) (*LookupAuthBackendConfigResult, error)

Note: This function is named LookupAuthBackendConfig in the Go SDK.

public static class GetAuthBackendConfig {
    public static Task<GetAuthBackendConfigResult> InvokeAsync(GetAuthBackendConfigArgs args, InvokeOptions? opts = null)
}

The following arguments are supported:

Backend string
The unique name for the Kubernetes backend the config to retrieve Role attributes for resides in. Defaults to “kubernetes”.
DisableIssValidation bool
DisableLocalCaJwt bool
Issuer string
Optional JWT issuer. If no issuer is specified, kubernetes.io/serviceaccount will be used as the default issuer.
KubernetesCaCert string
PEM encoded CA cert for use by the TLS client used to talk with the Kubernetes API.
KubernetesHost string
Host must be a host string, a host:port pair, or a URL to the base of the Kubernetes API server.
PemKeys List<string>
Optional list of PEM-formatted public keys or certificates used to verify the signatures of Kubernetes service account JWTs. If a certificate is given, its public key will be extracted. Not every installation of Kubernetes exposes these keys.
Backend string
The unique name for the Kubernetes backend the config to retrieve Role attributes for resides in. Defaults to “kubernetes”.
DisableIssValidation bool
DisableLocalCaJwt bool
Issuer string
Optional JWT issuer. If no issuer is specified, kubernetes.io/serviceaccount will be used as the default issuer.
KubernetesCaCert string
PEM encoded CA cert for use by the TLS client used to talk with the Kubernetes API.
KubernetesHost string
Host must be a host string, a host:port pair, or a URL to the base of the Kubernetes API server.
PemKeys []string
Optional list of PEM-formatted public keys or certificates used to verify the signatures of Kubernetes service account JWTs. If a certificate is given, its public key will be extracted. Not every installation of Kubernetes exposes these keys.
backend string
The unique name for the Kubernetes backend the config to retrieve Role attributes for resides in. Defaults to “kubernetes”.
disableIssValidation boolean
disableLocalCaJwt boolean
issuer string
Optional JWT issuer. If no issuer is specified, kubernetes.io/serviceaccount will be used as the default issuer.
kubernetesCaCert string
PEM encoded CA cert for use by the TLS client used to talk with the Kubernetes API.
kubernetesHost string
Host must be a host string, a host:port pair, or a URL to the base of the Kubernetes API server.
pemKeys string[]
Optional list of PEM-formatted public keys or certificates used to verify the signatures of Kubernetes service account JWTs. If a certificate is given, its public key will be extracted. Not every installation of Kubernetes exposes these keys.
backend str
The unique name for the Kubernetes backend the config to retrieve Role attributes for resides in. Defaults to “kubernetes”.
disable_iss_validation bool
disable_local_ca_jwt bool
issuer str
Optional JWT issuer. If no issuer is specified, kubernetes.io/serviceaccount will be used as the default issuer.
kubernetes_ca_cert str
PEM encoded CA cert for use by the TLS client used to talk with the Kubernetes API.
kubernetes_host str
Host must be a host string, a host:port pair, or a URL to the base of the Kubernetes API server.
pem_keys Sequence[str]
Optional list of PEM-formatted public keys or certificates used to verify the signatures of Kubernetes service account JWTs. If a certificate is given, its public key will be extracted. Not every installation of Kubernetes exposes these keys.

getAuthBackendConfig Result

The following output properties are available:

DisableIssValidation bool
DisableLocalCaJwt bool
Id string
The provider-assigned unique ID for this managed resource.
Issuer string
Optional JWT issuer. If no issuer is specified, kubernetes.io/serviceaccount will be used as the default issuer.
KubernetesCaCert string
PEM encoded CA cert for use by the TLS client used to talk with the Kubernetes API.
KubernetesHost string
Host must be a host string, a host:port pair, or a URL to the base of the Kubernetes API server.
PemKeys List<string>
Optional list of PEM-formatted public keys or certificates used to verify the signatures of Kubernetes service account JWTs. If a certificate is given, its public key will be extracted. Not every installation of Kubernetes exposes these keys.
Backend string
DisableIssValidation bool
DisableLocalCaJwt bool
Id string
The provider-assigned unique ID for this managed resource.
Issuer string
Optional JWT issuer. If no issuer is specified, kubernetes.io/serviceaccount will be used as the default issuer.
KubernetesCaCert string
PEM encoded CA cert for use by the TLS client used to talk with the Kubernetes API.
KubernetesHost string
Host must be a host string, a host:port pair, or a URL to the base of the Kubernetes API server.
PemKeys []string
Optional list of PEM-formatted public keys or certificates used to verify the signatures of Kubernetes service account JWTs. If a certificate is given, its public key will be extracted. Not every installation of Kubernetes exposes these keys.
Backend string
disableIssValidation boolean
disableLocalCaJwt boolean
id string
The provider-assigned unique ID for this managed resource.
issuer string
Optional JWT issuer. If no issuer is specified, kubernetes.io/serviceaccount will be used as the default issuer.
kubernetesCaCert string
PEM encoded CA cert for use by the TLS client used to talk with the Kubernetes API.
kubernetesHost string
Host must be a host string, a host:port pair, or a URL to the base of the Kubernetes API server.
pemKeys string[]
Optional list of PEM-formatted public keys or certificates used to verify the signatures of Kubernetes service account JWTs. If a certificate is given, its public key will be extracted. Not every installation of Kubernetes exposes these keys.
backend string
disable_iss_validation bool
disable_local_ca_jwt bool
id str
The provider-assigned unique ID for this managed resource.
issuer str
Optional JWT issuer. If no issuer is specified, kubernetes.io/serviceaccount will be used as the default issuer.
kubernetes_ca_cert str
PEM encoded CA cert for use by the TLS client used to talk with the Kubernetes API.
kubernetes_host str
Host must be a host string, a host:port pair, or a URL to the base of the Kubernetes API server.
pem_keys Sequence[str]
Optional list of PEM-formatted public keys or certificates used to verify the signatures of Kubernetes service account JWTs. If a certificate is given, its public key will be extracted. Not every installation of Kubernetes exposes these keys.
backend str

Package Details

Repository
https://github.com/pulumi/pulumi-vault
License
Apache-2.0
Notes
This Pulumi package is based on the vault Terraform Provider.