Docs Home
Auth0 v3.24.0 published on Saturday, Aug 2, 2025 by Pulumi
auth0.getConnectionKeys
Explore with Pulumi AI
Retrieve the list of signing keys for a specific Auth0 connection. (Okta/OIDC only)
Example Usage
import * as pulumi from "@pulumi/pulumi";
import * as auth0 from "@pulumi/auth0";
// An Auth0 Connection Keys loaded using its Connection ID.
const myKeys = auth0.getConnectionKeys({
connectionId: "con_xxxxxxxxxxxxx",
});
import pulumi
import pulumi_auth0 as auth0
# An Auth0 Connection Keys loaded using its Connection ID.
my_keys = auth0.get_connection_keys(connection_id="con_xxxxxxxxxxxxx")
package main
import (
"github.com/pulumi/pulumi-auth0/sdk/v3/go/auth0"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
// An Auth0 Connection Keys loaded using its Connection ID.
_, err := auth0.LookupConnectionKeys(ctx, &auth0.LookupConnectionKeysArgs{
ConnectionId: "con_xxxxxxxxxxxxx",
}, nil)
if err != nil {
return err
}
return nil
})
}
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using Auth0 = Pulumi.Auth0;
return await Deployment.RunAsync(() =>
{
// An Auth0 Connection Keys loaded using its Connection ID.
var myKeys = Auth0.GetConnectionKeys.Invoke(new()
{
ConnectionId = "con_xxxxxxxxxxxxx",
});
});
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.auth0.Auth0Functions;
import com.pulumi.auth0.inputs.GetConnectionKeysArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
// An Auth0 Connection Keys loaded using its Connection ID.
final var myKeys = Auth0Functions.getConnectionKeys(GetConnectionKeysArgs.builder()
.connectionId("con_xxxxxxxxxxxxx")
.build());
}
}
variables:
# An Auth0 Connection Keys loaded using its Connection ID.
myKeys:
fn::invoke:
function: auth0:getConnectionKeys
arguments:
connectionId: con_xxxxxxxxxxxxx
Using getConnectionKeys
Two invocation forms are available. The direct form accepts plain arguments and either blocks until the result value is available, or returns a Promise-wrapped result. The output form accepts Input-wrapped arguments and returns an Output-wrapped result.
function getConnectionKeys(args: GetConnectionKeysArgs, opts?: InvokeOptions): Promise<GetConnectionKeysResult>
function getConnectionKeysOutput(args: GetConnectionKeysOutputArgs, opts?: InvokeOptions): Output<GetConnectionKeysResult>def get_connection_keys(connection_id: Optional[str] = None,
opts: Optional[InvokeOptions] = None) -> GetConnectionKeysResult
def get_connection_keys_output(connection_id: Optional[pulumi.Input[str]] = None,
opts: Optional[InvokeOptions] = None) -> Output[GetConnectionKeysResult]func LookupConnectionKeys(ctx *Context, args *LookupConnectionKeysArgs, opts ...InvokeOption) (*LookupConnectionKeysResult, error)
func LookupConnectionKeysOutput(ctx *Context, args *LookupConnectionKeysOutputArgs, opts ...InvokeOption) LookupConnectionKeysResultOutput> Note: This function is named LookupConnectionKeys in the Go SDK.
public static class GetConnectionKeys
{
public static Task<GetConnectionKeysResult> InvokeAsync(GetConnectionKeysArgs args, InvokeOptions? opts = null)
public static Output<GetConnectionKeysResult> Invoke(GetConnectionKeysInvokeArgs args, InvokeOptions? opts = null)
}public static CompletableFuture<GetConnectionKeysResult> getConnectionKeys(GetConnectionKeysArgs args, InvokeOptions options)
public static Output<GetConnectionKeysResult> getConnectionKeys(GetConnectionKeysArgs args, InvokeOptions options)
fn::invoke:
function: auth0:index/getConnectionKeys:getConnectionKeys
arguments:
# arguments dictionaryThe following arguments are supported:
- Connection
Id string - The ID of the connection to retrieve keys for.
- Connection
Id string - The ID of the connection to retrieve keys for.
- connection
Id String - The ID of the connection to retrieve keys for.
- connection
Id string - The ID of the connection to retrieve keys for.
- connection_
id str - The ID of the connection to retrieve keys for.
- connection
Id String - The ID of the connection to retrieve keys for.
getConnectionKeys Result
The following output properties are available:
- Connection
Id string - The ID of the connection to retrieve keys for.
- Id string
- The provider-assigned unique ID for this managed resource.
- Keys
List<Get
Connection Keys Key> - List of signing keys associated with the connection.
- Connection
Id string - The ID of the connection to retrieve keys for.
- Id string
- The provider-assigned unique ID for this managed resource.
- Keys
[]Get
Connection Keys Key - List of signing keys associated with the connection.
- connection
Id String - The ID of the connection to retrieve keys for.
- id String
- The provider-assigned unique ID for this managed resource.
- keys
List<Get
Connection Keys Key> - List of signing keys associated with the connection.
- connection
Id string - The ID of the connection to retrieve keys for.
- id string
- The provider-assigned unique ID for this managed resource.
- keys
Get
Connection Keys Key[] - List of signing keys associated with the connection.
- connection_
id str - The ID of the connection to retrieve keys for.
- id str
- The provider-assigned unique ID for this managed resource.
- keys
Sequence[Get
Connection Keys Key] - List of signing keys associated with the connection.
- connection
Id String - The ID of the connection to retrieve keys for.
- id String
- The provider-assigned unique ID for this managed resource.
- keys List<Property Map>
- List of signing keys associated with the connection.
Supporting Types
GetConnectionKeysKey
- Algorithm string
- The signing key algorithm.
- Cert string
- The public certificate of the signing key.
- Connection
Id string - Current bool
- True if the key is the current key.
- Current
Since string - The date and time when the key became the current key.
- Fingerprint string
- The certificate fingerprint.
- Key
Use string - The signing key use, whether for encryption or signing.
- Kid string
- The key ID of the signing key.
- Next bool
- True if the key is the next key.
- Pkcs string
- The public certificate of the signing key in PKCS7 format.
- Previous bool
- True if the key is the previous key.
- Subject
Dn string - The subject distinguished name (DN) of the certificate.
- Thumbprint string
- The certificate thumbprint.
- Triggers Dictionary<string, string>
- This is an arbitrary map, which when edited shall perform rotation of keys for the corresponding connection. It can host keys like version, timestamp of last rotation etc.The field has no association with API
- Algorithm string
- The signing key algorithm.
- Cert string
- The public certificate of the signing key.
- Connection
Id string - Current bool
- True if the key is the current key.
- Current
Since string - The date and time when the key became the current key.
- Fingerprint string
- The certificate fingerprint.
- Key
Use string - The signing key use, whether for encryption or signing.
- Kid string
- The key ID of the signing key.
- Next bool
- True if the key is the next key.
- Pkcs string
- The public certificate of the signing key in PKCS7 format.
- Previous bool
- True if the key is the previous key.
- Subject
Dn string - The subject distinguished name (DN) of the certificate.
- Thumbprint string
- The certificate thumbprint.
- Triggers map[string]string
- This is an arbitrary map, which when edited shall perform rotation of keys for the corresponding connection. It can host keys like version, timestamp of last rotation etc.The field has no association with API
- algorithm String
- The signing key algorithm.
- cert String
- The public certificate of the signing key.
- connection
Id String - current Boolean
- True if the key is the current key.
- current
Since String - The date and time when the key became the current key.
- fingerprint String
- The certificate fingerprint.
- key
Use String - The signing key use, whether for encryption or signing.
- kid String
- The key ID of the signing key.
- next Boolean
- True if the key is the next key.
- pkcs String
- The public certificate of the signing key in PKCS7 format.
- previous Boolean
- True if the key is the previous key.
- subject
Dn String - The subject distinguished name (DN) of the certificate.
- thumbprint String
- The certificate thumbprint.
- triggers Map<String,String>
- This is an arbitrary map, which when edited shall perform rotation of keys for the corresponding connection. It can host keys like version, timestamp of last rotation etc.The field has no association with API
- algorithm string
- The signing key algorithm.
- cert string
- The public certificate of the signing key.
- connection
Id string - current boolean
- True if the key is the current key.
- current
Since string - The date and time when the key became the current key.
- fingerprint string
- The certificate fingerprint.
- key
Use string - The signing key use, whether for encryption or signing.
- kid string
- The key ID of the signing key.
- next boolean
- True if the key is the next key.
- pkcs string
- The public certificate of the signing key in PKCS7 format.
- previous boolean
- True if the key is the previous key.
- subject
Dn string - The subject distinguished name (DN) of the certificate.
- thumbprint string
- The certificate thumbprint.
- triggers {[key: string]: string}
- This is an arbitrary map, which when edited shall perform rotation of keys for the corresponding connection. It can host keys like version, timestamp of last rotation etc.The field has no association with API
- algorithm str
- The signing key algorithm.
- cert str
- The public certificate of the signing key.
- connection_
id str - current bool
- True if the key is the current key.
- current_
since str - The date and time when the key became the current key.
- fingerprint str
- The certificate fingerprint.
- key_
use str - The signing key use, whether for encryption or signing.
- kid str
- The key ID of the signing key.
- next bool
- True if the key is the next key.
- pkcs str
- The public certificate of the signing key in PKCS7 format.
- previous bool
- True if the key is the previous key.
- subject_
dn str - The subject distinguished name (DN) of the certificate.
- thumbprint str
- The certificate thumbprint.
- triggers Mapping[str, str]
- This is an arbitrary map, which when edited shall perform rotation of keys for the corresponding connection. It can host keys like version, timestamp of last rotation etc.The field has no association with API
- algorithm String
- The signing key algorithm.
- cert String
- The public certificate of the signing key.
- connection
Id String - current Boolean
- True if the key is the current key.
- current
Since String - The date and time when the key became the current key.
- fingerprint String
- The certificate fingerprint.
- key
Use String - The signing key use, whether for encryption or signing.
- kid String
- The key ID of the signing key.
- next Boolean
- True if the key is the next key.
- pkcs String
- The public certificate of the signing key in PKCS7 format.
- previous Boolean
- True if the key is the previous key.
- subject
Dn String - The subject distinguished name (DN) of the certificate.
- thumbprint String
- The certificate thumbprint.
- triggers Map<String>
- This is an arbitrary map, which when edited shall perform rotation of keys for the corresponding connection. It can host keys like version, timestamp of last rotation etc.The field has no association with API
Package Details
- Repository
- Auth0 pulumi/pulumi-auth0
- License
- Apache-2.0
- Notes
- This Pulumi package is based on the
auth0Terraform Provider.