Provider

bitwarden 0.17.3, Feb 8 26

Viewing docs for bitwarden 0.17.3
published on Sunday, Feb 8, 2026 by maxlaverse

Schema (JSON)

maxlaverse/terraform-provider-bitwarden

Viewing docs for bitwarden 0.17.3
published on Sunday, Feb 8, 2026 by maxlaverse

Schema (JSON)

maxlaverse/terraform-provider-bitwarden

The provider type for the bitwarden package. By default, resources use package-wide configuration settings, however an explicit Provider instance may be created and passed during resource construction to achieve fine-grained programmatic control over provider settings. See the documentation for more information.

Create Provider Resource

Resources are created with functions called constructors. To learn more about declaring and configuring resources, see Resources.

Constructor syntax

new Provider(name: string, args?: ProviderArgs, opts?: CustomResourceOptions);

@overload
def Provider(resource_name: str,
             args: Optional[ProviderArgs] = None,
             opts: Optional[ResourceOptions] = None)

@overload
def Provider(resource_name: str,
             opts: Optional[ResourceOptions] = None,
             access_token: Optional[str] = None,
             client_id: Optional[str] = None,
             client_implementation: Optional[str] = None,
             client_secret: Optional[str] = None,
             email: Optional[str] = None,
             experimentals: Optional[Sequence[ProviderExperimentalArgs]] = None,
             extra_ca_certs: Optional[str] = None,
             master_password: Optional[str] = None,
             server: Optional[str] = None,
             session_key: Optional[str] = None,
             vault_path: Optional[str] = None)

func NewProvider(ctx *Context, name string, args *ProviderArgs, opts ...ResourceOption) (*Provider, error)

public Provider(string name, ProviderArgs? args = null, CustomResourceOptions? opts = null)

public Provider(String name, ProviderArgs args)
public Provider(String name, ProviderArgs args, CustomResourceOptions options)

type: pulumi:providers:bitwarden
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.

Parameters

name string: The unique name of the resource.
args ProviderArgs: The arguments to resource properties.
opts CustomResourceOptions: Bag of options to control resource's behavior.

resource_name str: The unique name of the resource.
args ProviderArgs: The arguments to resource properties.
opts ResourceOptions: Bag of options to control resource's behavior.

ctx Context: Context object for the current deployment.
name string: The unique name of the resource.
args ProviderArgs: The arguments to resource properties.
opts ResourceOption: Bag of options to control resource's behavior.

name string: The unique name of the resource.
args ProviderArgs: The arguments to resource properties.
opts CustomResourceOptions: Bag of options to control resource's behavior.

name String: The unique name of the resource.
args ProviderArgs: The arguments to resource properties.
options CustomResourceOptions: Bag of options to control resource's behavior.

Provider Resource Properties

To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.

Inputs

In Python, inputs that are objects can be passed either as argument classes or as dictionary literals.

The Provider resource accepts the following input properties:

AccessToken string: Machine Account Access Token (env: BWS_ACCESS_TOKEN)).
ClientId string: Client ID (env: BW_CLIENTID)
ClientImplementation string: Client implementation type. Valid values are "embedded" (use embedded client) or "cli" (use CLI binaries, default).
ClientSecret string
Email string: Login Email of the Vault (env: BW_EMAIL).
Experimentals List<ProviderExperimental>: Enable experimental features.
ExtraCaCerts string: Extends the well known 'root' CAs (like VeriSign) with the extra certificates in file (env: NODE_EXTRA_CA_CERTS, doesn't work with embedded client).
MasterPassword string
Server string: Bitwarden Server URL (default: https://vault.bitwarden.com, env: BW_URL or BWS_SERVER_URL).
SessionKey string: A Bitwarden Session Key (env: BW_SESSION)
VaultPath string: Alternative directory for storing the Vault locally (default: .bitwarden/, env: BITWARDENCLI_APPDATA_DIR; set to empty string to use CLI default).

AccessToken string: Machine Account Access Token (env: BWS_ACCESS_TOKEN)).
ClientId string: Client ID (env: BW_CLIENTID)
ClientImplementation string: Client implementation type. Valid values are "embedded" (use embedded client) or "cli" (use CLI binaries, default).
ClientSecret string
Email string: Login Email of the Vault (env: BW_EMAIL).
Experimentals []ProviderExperimentalArgs: Enable experimental features.
ExtraCaCerts string: Extends the well known 'root' CAs (like VeriSign) with the extra certificates in file (env: NODE_EXTRA_CA_CERTS, doesn't work with embedded client).
MasterPassword string
Server string: Bitwarden Server URL (default: https://vault.bitwarden.com, env: BW_URL or BWS_SERVER_URL).
SessionKey string: A Bitwarden Session Key (env: BW_SESSION)
VaultPath string: Alternative directory for storing the Vault locally (default: .bitwarden/, env: BITWARDENCLI_APPDATA_DIR; set to empty string to use CLI default).

accessToken String: Machine Account Access Token (env: BWS_ACCESS_TOKEN)).
clientId String: Client ID (env: BW_CLIENTID)
clientImplementation String: Client implementation type. Valid values are "embedded" (use embedded client) or "cli" (use CLI binaries, default).
clientSecret String
email String: Login Email of the Vault (env: BW_EMAIL).
experimentals List<ProviderExperimental>: Enable experimental features.
extraCaCerts String: Extends the well known 'root' CAs (like VeriSign) with the extra certificates in file (env: NODE_EXTRA_CA_CERTS, doesn't work with embedded client).
masterPassword String
server String: Bitwarden Server URL (default: https://vault.bitwarden.com, env: BW_URL or BWS_SERVER_URL).
sessionKey String: A Bitwarden Session Key (env: BW_SESSION)
vaultPath String: Alternative directory for storing the Vault locally (default: .bitwarden/, env: BITWARDENCLI_APPDATA_DIR; set to empty string to use CLI default).

accessToken string: Machine Account Access Token (env: BWS_ACCESS_TOKEN)).
clientId string: Client ID (env: BW_CLIENTID)
clientImplementation string: Client implementation type. Valid values are "embedded" (use embedded client) or "cli" (use CLI binaries, default).
clientSecret string
email string: Login Email of the Vault (env: BW_EMAIL).
experimentals ProviderExperimental[]: Enable experimental features.
extraCaCerts string: Extends the well known 'root' CAs (like VeriSign) with the extra certificates in file (env: NODE_EXTRA_CA_CERTS, doesn't work with embedded client).
masterPassword string
server string: Bitwarden Server URL (default: https://vault.bitwarden.com, env: BW_URL or BWS_SERVER_URL).
sessionKey string: A Bitwarden Session Key (env: BW_SESSION)
vaultPath string: Alternative directory for storing the Vault locally (default: .bitwarden/, env: BITWARDENCLI_APPDATA_DIR; set to empty string to use CLI default).

access_token str: Machine Account Access Token (env: BWS_ACCESS_TOKEN)).
client_id str: Client ID (env: BW_CLIENTID)
client_implementation str: Client implementation type. Valid values are "embedded" (use embedded client) or "cli" (use CLI binaries, default).
client_secret str
email str: Login Email of the Vault (env: BW_EMAIL).
experimentals Sequence[ProviderExperimentalArgs]: Enable experimental features.
extra_ca_certs str: Extends the well known 'root' CAs (like VeriSign) with the extra certificates in file (env: NODE_EXTRA_CA_CERTS, doesn't work with embedded client).
master_password str
server str: Bitwarden Server URL (default: https://vault.bitwarden.com, env: BW_URL or BWS_SERVER_URL).
session_key str: A Bitwarden Session Key (env: BW_SESSION)
vault_path str: Alternative directory for storing the Vault locally (default: .bitwarden/, env: BITWARDENCLI_APPDATA_DIR; set to empty string to use CLI default).

accessToken String: Machine Account Access Token (env: BWS_ACCESS_TOKEN)).
clientId String: Client ID (env: BW_CLIENTID)
clientImplementation String: Client implementation type. Valid values are "embedded" (use embedded client) or "cli" (use CLI binaries, default).
clientSecret String
email String: Login Email of the Vault (env: BW_EMAIL).
experimentals List<Property Map>: Enable experimental features.
extraCaCerts String: Extends the well known 'root' CAs (like VeriSign) with the extra certificates in file (env: NODE_EXTRA_CA_CERTS, doesn't work with embedded client).
masterPassword String
server String: Bitwarden Server URL (default: https://vault.bitwarden.com, env: BW_URL or BWS_SERVER_URL).
sessionKey String: A Bitwarden Session Key (env: BW_SESSION)
vaultPath String: Alternative directory for storing the Vault locally (default: .bitwarden/, env: BITWARDENCLI_APPDATA_DIR; set to empty string to use CLI default).

Outputs

All input properties are implicitly available as output properties. Additionally, the Provider resource produces the following output properties:

Id string: The provider-assigned unique ID for this managed resource.

Id string: The provider-assigned unique ID for this managed resource.

id String: The provider-assigned unique ID for this managed resource.

id string: The provider-assigned unique ID for this managed resource.

id str: The provider-assigned unique ID for this managed resource.

id String: The provider-assigned unique ID for this managed resource.

Provider Resource Methods

TerraformConfig Method

This function returns a Terraform config object with terraform-namecased keys,to be used with the Terraform Module Provider.

Using TerraformConfig

terraformConfig(): Output<{[key: string]: any}>

def terraform_config() -> Output[Provider.Terraform_configResult]

func (r *Provider) TerraformConfig() (pulumi.MapOutput, error)

public Output<ImmutableDictionary<string, object>> TerraformConfig()

TerraformConfig Result

Result Dictionary<string, object>

Result map[string]interface{}

result Map<String,Object>

result {[key: string]: any}

result Mapping[str, Any]

result Map<Any>

Supporting Types

ProviderExperimental, ProviderExperimentalArgs

DisableSyncAfterWriteVerification bool: Skip verification of server-side modifications (like timestamp updates) after write operations - useful when the Bitwarden server makes minor, non-functional changes to objects.
EmbeddedClient bool: Use the embedded client instead of an external binary.
Deprecated: Deprecated

DisableSyncAfterWriteVerification bool: Skip verification of server-side modifications (like timestamp updates) after write operations - useful when the Bitwarden server makes minor, non-functional changes to objects.
EmbeddedClient bool: Use the embedded client instead of an external binary.
Deprecated: Deprecated

disableSyncAfterWriteVerification Boolean: Skip verification of server-side modifications (like timestamp updates) after write operations - useful when the Bitwarden server makes minor, non-functional changes to objects.
embeddedClient Boolean: Use the embedded client instead of an external binary.
Deprecated: Deprecated

disableSyncAfterWriteVerification boolean: Skip verification of server-side modifications (like timestamp updates) after write operations - useful when the Bitwarden server makes minor, non-functional changes to objects.
embeddedClient boolean: Use the embedded client instead of an external binary.
Deprecated: Deprecated

disable_sync_after_write_verification bool: Skip verification of server-side modifications (like timestamp updates) after write operations - useful when the Bitwarden server makes minor, non-functional changes to objects.
embedded_client bool: Use the embedded client instead of an external binary.
Deprecated: Deprecated

disableSyncAfterWriteVerification Boolean: Skip verification of server-side modifications (like timestamp updates) after write operations - useful when the Bitwarden server makes minor, non-functional changes to objects.
embeddedClient Boolean: Use the embedded client instead of an external binary.
Deprecated: Deprecated

Package Details

Repository: bitwarden maxlaverse/terraform-provider-bitwarden
License
Notes: This Pulumi package is based on the bitwarden Terraform Provider.

Viewing docs for bitwarden 0.17.3
published on Sunday, Feb 8, 2026 by maxlaverse

Schema (JSON)

maxlaverse/terraform-provider-bitwarden

bitwarden.Provider

On this page

On this page

Create Provider Resource

Constructor syntax

Parameters

Provider Resource Properties

Inputs

Outputs

Provider Resource Methods

TerraformConfig Method

Using TerraformConfig

TerraformConfig Result

Supporting Types

ProviderExperimental, ProviderExperimentalArgs

Package Details

On this page

On this page