SecretBackendCert

Create a SecretBackendCert Resource

new SecretBackendCert(name: string, args: SecretBackendCertArgs, opts?: CustomResourceOptions);
@overload
def SecretBackendCert(resource_name: str,
                      opts: Optional[ResourceOptions] = None,
                      alt_names: Optional[Sequence[str]] = None,
                      auto_renew: Optional[bool] = None,
                      backend: Optional[str] = None,
                      common_name: Optional[str] = None,
                      exclude_cn_from_sans: Optional[bool] = None,
                      format: Optional[str] = None,
                      ip_sans: Optional[Sequence[str]] = None,
                      min_seconds_remaining: Optional[int] = None,
                      name: Optional[str] = None,
                      other_sans: Optional[Sequence[str]] = None,
                      private_key_format: Optional[str] = None,
                      ttl: Optional[str] = None,
                      uri_sans: Optional[Sequence[str]] = None)
@overload
def SecretBackendCert(resource_name: str,
                      args: SecretBackendCertArgs,
                      opts: Optional[ResourceOptions] = None)
func NewSecretBackendCert(ctx *Context, name string, args SecretBackendCertArgs, opts ...ResourceOption) (*SecretBackendCert, error)
public SecretBackendCert(string name, SecretBackendCertArgs args, CustomResourceOptions? opts = null)
name string
The unique name of the resource.
args SecretBackendCertArgs
The arguments to resource properties.
opts CustomResourceOptions
Bag of options to control resource's behavior.
resource_name str
The unique name of the resource.
args SecretBackendCertArgs
The arguments to resource properties.
opts ResourceOptions
Bag of options to control resource's behavior.
ctx Context
Context object for the current deployment.
name string
The unique name of the resource.
args SecretBackendCertArgs
The arguments to resource properties.
opts ResourceOption
Bag of options to control resource's behavior.
name string
The unique name of the resource.
args SecretBackendCertArgs
The arguments to resource properties.
opts CustomResourceOptions
Bag of options to control resource's behavior.

SecretBackendCert Resource Properties

To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.

Inputs

The SecretBackendCert resource accepts the following input properties:

Backend string
The PKI secret backend the resource belongs to.
CommonName string
CN of certificate to create
AltNames List<string>
List of alternative names
AutoRenew bool
If set to true, certs will be renewed if the expiration is within min_seconds_remaining. Default false
ExcludeCnFromSans bool
Flag to exclude CN from SANs
Format string
The format of data
IpSans List<string>
List of alternative IPs
MinSecondsRemaining int
Generate a new certificate when the expiration is within this number of seconds, default is 604800 (7 days)
Name string
Name of the role to create the certificate against
OtherSans List<string>
List of other SANs
PrivateKeyFormat string
The private key format
Ttl string
Time to live
UriSans List<string>
List of alternative URIs
Backend string
The PKI secret backend the resource belongs to.
CommonName string
CN of certificate to create
AltNames []string
List of alternative names
AutoRenew bool
If set to true, certs will be renewed if the expiration is within min_seconds_remaining. Default false
ExcludeCnFromSans bool
Flag to exclude CN from SANs
Format string
The format of data
IpSans []string
List of alternative IPs
MinSecondsRemaining int
Generate a new certificate when the expiration is within this number of seconds, default is 604800 (7 days)
Name string
Name of the role to create the certificate against
OtherSans []string
List of other SANs
PrivateKeyFormat string
The private key format
Ttl string
Time to live
UriSans []string
List of alternative URIs
backend string
The PKI secret backend the resource belongs to.
commonName string
CN of certificate to create
altNames string[]
List of alternative names
autoRenew boolean
If set to true, certs will be renewed if the expiration is within min_seconds_remaining. Default false
excludeCnFromSans boolean
Flag to exclude CN from SANs
format string
The format of data
ipSans string[]
List of alternative IPs
minSecondsRemaining number
Generate a new certificate when the expiration is within this number of seconds, default is 604800 (7 days)
name string
Name of the role to create the certificate against
otherSans string[]
List of other SANs
privateKeyFormat string
The private key format
ttl string
Time to live
uriSans string[]
List of alternative URIs
backend str
The PKI secret backend the resource belongs to.
common_name str
CN of certificate to create
alt_names Sequence[str]
List of alternative names
auto_renew bool
If set to true, certs will be renewed if the expiration is within min_seconds_remaining. Default false
exclude_cn_from_sans bool
Flag to exclude CN from SANs
format str
The format of data
ip_sans Sequence[str]
List of alternative IPs
min_seconds_remaining int
Generate a new certificate when the expiration is within this number of seconds, default is 604800 (7 days)
name str
Name of the role to create the certificate against
other_sans Sequence[str]
List of other SANs
private_key_format str
The private key format
ttl str
Time to live
uri_sans Sequence[str]
List of alternative URIs

Outputs

All input properties are implicitly available as output properties. Additionally, the SecretBackendCert resource produces the following output properties:

CaChain string
The CA chain
Certificate string
The certificate
Expiration int
The expiration date of the certificate in unix epoch format
Id string
The provider-assigned unique ID for this managed resource.
IssuingCa string
The issuing CA
PrivateKey string
The private key
PrivateKeyType string
The private key type
SerialNumber string
The serial number
CaChain string
The CA chain
Certificate string
The certificate
Expiration int
The expiration date of the certificate in unix epoch format
Id string
The provider-assigned unique ID for this managed resource.
IssuingCa string
The issuing CA
PrivateKey string
The private key
PrivateKeyType string
The private key type
SerialNumber string
The serial number
caChain string
The CA chain
certificate string
The certificate
expiration number
The expiration date of the certificate in unix epoch format
id string
The provider-assigned unique ID for this managed resource.
issuingCa string
The issuing CA
privateKey string
The private key
privateKeyType string
The private key type
serialNumber string
The serial number
ca_chain str
The CA chain
certificate str
The certificate
expiration int
The expiration date of the certificate in unix epoch format
id str
The provider-assigned unique ID for this managed resource.
issuing_ca str
The issuing CA
private_key str
The private key
private_key_type str
The private key type
serial_number str
The serial number

Look up an Existing SecretBackendCert Resource

Get an existing SecretBackendCert resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.

public static get(name: string, id: Input<ID>, state?: SecretBackendCertState, opts?: CustomResourceOptions): SecretBackendCert
@staticmethod
def get(resource_name: str,
        id: str,
        opts: Optional[ResourceOptions] = None,
        alt_names: Optional[Sequence[str]] = None,
        auto_renew: Optional[bool] = None,
        backend: Optional[str] = None,
        ca_chain: Optional[str] = None,
        certificate: Optional[str] = None,
        common_name: Optional[str] = None,
        exclude_cn_from_sans: Optional[bool] = None,
        expiration: Optional[int] = None,
        format: Optional[str] = None,
        ip_sans: Optional[Sequence[str]] = None,
        issuing_ca: Optional[str] = None,
        min_seconds_remaining: Optional[int] = None,
        name: Optional[str] = None,
        other_sans: Optional[Sequence[str]] = None,
        private_key: Optional[str] = None,
        private_key_format: Optional[str] = None,
        private_key_type: Optional[str] = None,
        serial_number: Optional[str] = None,
        ttl: Optional[str] = None,
        uri_sans: Optional[Sequence[str]] = None) -> SecretBackendCert
func GetSecretBackendCert(ctx *Context, name string, id IDInput, state *SecretBackendCertState, opts ...ResourceOption) (*SecretBackendCert, error)
public static SecretBackendCert Get(string name, Input<string> id, SecretBackendCertState? state, CustomResourceOptions? opts = null)
name
The unique name of the resulting resource.
id
The unique provider ID of the resource to lookup.
state
Any extra arguments used during the lookup.
opts
A bag of options that control this resource's behavior.
resource_name
The unique name of the resulting resource.
id
The unique provider ID of the resource to lookup.
name
The unique name of the resulting resource.
id
The unique provider ID of the resource to lookup.
state
Any extra arguments used during the lookup.
opts
A bag of options that control this resource's behavior.
name
The unique name of the resulting resource.
id
The unique provider ID of the resource to lookup.
state
Any extra arguments used during the lookup.
opts
A bag of options that control this resource's behavior.

The following state arguments are supported:

AltNames List<string>
List of alternative names
AutoRenew bool
If set to true, certs will be renewed if the expiration is within min_seconds_remaining. Default false
Backend string
The PKI secret backend the resource belongs to.
CaChain string
The CA chain
Certificate string
The certificate
CommonName string
CN of certificate to create
ExcludeCnFromSans bool
Flag to exclude CN from SANs
Expiration int
The expiration date of the certificate in unix epoch format
Format string
The format of data
IpSans List<string>
List of alternative IPs
IssuingCa string
The issuing CA
MinSecondsRemaining int
Generate a new certificate when the expiration is within this number of seconds, default is 604800 (7 days)
Name string
Name of the role to create the certificate against
OtherSans List<string>
List of other SANs
PrivateKey string
The private key
PrivateKeyFormat string
The private key format
PrivateKeyType string
The private key type
SerialNumber string
The serial number
Ttl string
Time to live
UriSans List<string>
List of alternative URIs
AltNames []string
List of alternative names
AutoRenew bool
If set to true, certs will be renewed if the expiration is within min_seconds_remaining. Default false
Backend string
The PKI secret backend the resource belongs to.
CaChain string
The CA chain
Certificate string
The certificate
CommonName string
CN of certificate to create
ExcludeCnFromSans bool
Flag to exclude CN from SANs
Expiration int
The expiration date of the certificate in unix epoch format
Format string
The format of data
IpSans []string
List of alternative IPs
IssuingCa string
The issuing CA
MinSecondsRemaining int
Generate a new certificate when the expiration is within this number of seconds, default is 604800 (7 days)
Name string
Name of the role to create the certificate against
OtherSans []string
List of other SANs
PrivateKey string
The private key
PrivateKeyFormat string
The private key format
PrivateKeyType string
The private key type
SerialNumber string
The serial number
Ttl string
Time to live
UriSans []string
List of alternative URIs
altNames string[]
List of alternative names
autoRenew boolean
If set to true, certs will be renewed if the expiration is within min_seconds_remaining. Default false
backend string
The PKI secret backend the resource belongs to.
caChain string
The CA chain
certificate string
The certificate
commonName string
CN of certificate to create
excludeCnFromSans boolean
Flag to exclude CN from SANs
expiration number
The expiration date of the certificate in unix epoch format
format string
The format of data
ipSans string[]
List of alternative IPs
issuingCa string
The issuing CA
minSecondsRemaining number
Generate a new certificate when the expiration is within this number of seconds, default is 604800 (7 days)
name string
Name of the role to create the certificate against
otherSans string[]
List of other SANs
privateKey string
The private key
privateKeyFormat string
The private key format
privateKeyType string
The private key type
serialNumber string
The serial number
ttl string
Time to live
uriSans string[]
List of alternative URIs
alt_names Sequence[str]
List of alternative names
auto_renew bool
If set to true, certs will be renewed if the expiration is within min_seconds_remaining. Default false
backend str
The PKI secret backend the resource belongs to.
ca_chain str
The CA chain
certificate str
The certificate
common_name str
CN of certificate to create
exclude_cn_from_sans bool
Flag to exclude CN from SANs
expiration int
The expiration date of the certificate in unix epoch format
format str
The format of data
ip_sans Sequence[str]
List of alternative IPs
issuing_ca str
The issuing CA
min_seconds_remaining int
Generate a new certificate when the expiration is within this number of seconds, default is 604800 (7 days)
name str
Name of the role to create the certificate against
other_sans Sequence[str]
List of other SANs
private_key str
The private key
private_key_format str
The private key format
private_key_type str
The private key type
serial_number str
The serial number
ttl str
Time to live
uri_sans Sequence[str]
List of alternative URIs

Package Details

Repository
https://github.com/pulumi/pulumi-vault
License
Apache-2.0
Notes
This Pulumi package is based on the vault Terraform Provider.