harness.platform.AwsSecretManagerConnector
Explore with Pulumi AI
Example Usage
Create AwsSecretManagerConnector Resource
Resources are created with functions called constructors. To learn more about declaring and configuring resources, see Resources.
Constructor syntax
new AwsSecretManagerConnector(name: string, args: AwsSecretManagerConnectorArgs, opts?: CustomResourceOptions);
@overload
def AwsSecretManagerConnector(resource_name: str,
args: AwsSecretManagerConnectorArgs,
opts: Optional[ResourceOptions] = None)
@overload
def AwsSecretManagerConnector(resource_name: str,
opts: Optional[ResourceOptions] = None,
credentials: Optional[AwsSecretManagerConnectorCredentialsArgs] = None,
region: Optional[str] = None,
identifier: Optional[str] = None,
description: Optional[str] = None,
execute_on_delegate: Optional[bool] = None,
force_delete_without_recovery: Optional[bool] = None,
delegate_selectors: Optional[Sequence[str]] = None,
name: Optional[str] = None,
org_id: Optional[str] = None,
project_id: Optional[str] = None,
recovery_window_in_days: Optional[int] = None,
default: Optional[bool] = None,
secret_name_prefix: Optional[str] = None,
tags: Optional[Sequence[str]] = None,
use_put_secret: Optional[bool] = None)
func NewAwsSecretManagerConnector(ctx *Context, name string, args AwsSecretManagerConnectorArgs, opts ...ResourceOption) (*AwsSecretManagerConnector, error)
public AwsSecretManagerConnector(string name, AwsSecretManagerConnectorArgs args, CustomResourceOptions? opts = null)
public AwsSecretManagerConnector(String name, AwsSecretManagerConnectorArgs args)
public AwsSecretManagerConnector(String name, AwsSecretManagerConnectorArgs args, CustomResourceOptions options)
type: harness:platform:AwsSecretManagerConnector
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.
Parameters
- name string
- The unique name of the resource.
- args AwsSecretManagerConnectorArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- resource_name str
- The unique name of the resource.
- args AwsSecretManagerConnectorArgs
- The arguments to resource properties.
- opts ResourceOptions
- Bag of options to control resource's behavior.
- ctx Context
- Context object for the current deployment.
- name string
- The unique name of the resource.
- args AwsSecretManagerConnectorArgs
- The arguments to resource properties.
- opts ResourceOption
- Bag of options to control resource's behavior.
- name string
- The unique name of the resource.
- args AwsSecretManagerConnectorArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- name String
- The unique name of the resource.
- args AwsSecretManagerConnectorArgs
- The arguments to resource properties.
- options CustomResourceOptions
- Bag of options to control resource's behavior.
Constructor example
The following reference example uses placeholder values for all input properties.
var awsSecretManagerConnectorResource = new Harness.Platform.AwsSecretManagerConnector("awsSecretManagerConnectorResource", new()
{
Credentials = new Harness.Platform.Inputs.AwsSecretManagerConnectorCredentialsArgs
{
AssumeRole = new Harness.Platform.Inputs.AwsSecretManagerConnectorCredentialsAssumeRoleArgs
{
Duration = 0,
RoleArn = "string",
ExternalId = "string",
},
InheritFromDelegate = false,
Manual = new Harness.Platform.Inputs.AwsSecretManagerConnectorCredentialsManualArgs
{
SecretKeyRef = "string",
AccessKeyPlainText = "string",
AccessKeyRef = "string",
},
OidcAuthentication = new Harness.Platform.Inputs.AwsSecretManagerConnectorCredentialsOidcAuthenticationArgs
{
IamRoleArn = "string",
},
},
Region = "string",
Identifier = "string",
Description = "string",
ExecuteOnDelegate = false,
ForceDeleteWithoutRecovery = false,
DelegateSelectors = new[]
{
"string",
},
Name = "string",
OrgId = "string",
ProjectId = "string",
RecoveryWindowInDays = 0,
Default = false,
SecretNamePrefix = "string",
Tags = new[]
{
"string",
},
UsePutSecret = false,
});
example, err := platform.NewAwsSecretManagerConnector(ctx, "awsSecretManagerConnectorResource", &platform.AwsSecretManagerConnectorArgs{
Credentials: &platform.AwsSecretManagerConnectorCredentialsArgs{
AssumeRole: &platform.AwsSecretManagerConnectorCredentialsAssumeRoleArgs{
Duration: pulumi.Int(0),
RoleArn: pulumi.String("string"),
ExternalId: pulumi.String("string"),
},
InheritFromDelegate: pulumi.Bool(false),
Manual: &platform.AwsSecretManagerConnectorCredentialsManualArgs{
SecretKeyRef: pulumi.String("string"),
AccessKeyPlainText: pulumi.String("string"),
AccessKeyRef: pulumi.String("string"),
},
OidcAuthentication: &platform.AwsSecretManagerConnectorCredentialsOidcAuthenticationArgs{
IamRoleArn: pulumi.String("string"),
},
},
Region: pulumi.String("string"),
Identifier: pulumi.String("string"),
Description: pulumi.String("string"),
ExecuteOnDelegate: pulumi.Bool(false),
ForceDeleteWithoutRecovery: pulumi.Bool(false),
DelegateSelectors: pulumi.StringArray{
pulumi.String("string"),
},
Name: pulumi.String("string"),
OrgId: pulumi.String("string"),
ProjectId: pulumi.String("string"),
RecoveryWindowInDays: pulumi.Int(0),
Default: pulumi.Bool(false),
SecretNamePrefix: pulumi.String("string"),
Tags: pulumi.StringArray{
pulumi.String("string"),
},
UsePutSecret: pulumi.Bool(false),
})
var awsSecretManagerConnectorResource = new AwsSecretManagerConnector("awsSecretManagerConnectorResource", AwsSecretManagerConnectorArgs.builder()
.credentials(AwsSecretManagerConnectorCredentialsArgs.builder()
.assumeRole(AwsSecretManagerConnectorCredentialsAssumeRoleArgs.builder()
.duration(0)
.roleArn("string")
.externalId("string")
.build())
.inheritFromDelegate(false)
.manual(AwsSecretManagerConnectorCredentialsManualArgs.builder()
.secretKeyRef("string")
.accessKeyPlainText("string")
.accessKeyRef("string")
.build())
.oidcAuthentication(AwsSecretManagerConnectorCredentialsOidcAuthenticationArgs.builder()
.iamRoleArn("string")
.build())
.build())
.region("string")
.identifier("string")
.description("string")
.executeOnDelegate(false)
.forceDeleteWithoutRecovery(false)
.delegateSelectors("string")
.name("string")
.orgId("string")
.projectId("string")
.recoveryWindowInDays(0)
.default_(false)
.secretNamePrefix("string")
.tags("string")
.usePutSecret(false)
.build());
aws_secret_manager_connector_resource = harness.platform.AwsSecretManagerConnector("awsSecretManagerConnectorResource",
credentials={
"assume_role": {
"duration": 0,
"role_arn": "string",
"external_id": "string",
},
"inherit_from_delegate": False,
"manual": {
"secret_key_ref": "string",
"access_key_plain_text": "string",
"access_key_ref": "string",
},
"oidc_authentication": {
"iam_role_arn": "string",
},
},
region="string",
identifier="string",
description="string",
execute_on_delegate=False,
force_delete_without_recovery=False,
delegate_selectors=["string"],
name="string",
org_id="string",
project_id="string",
recovery_window_in_days=0,
default=False,
secret_name_prefix="string",
tags=["string"],
use_put_secret=False)
const awsSecretManagerConnectorResource = new harness.platform.AwsSecretManagerConnector("awsSecretManagerConnectorResource", {
credentials: {
assumeRole: {
duration: 0,
roleArn: "string",
externalId: "string",
},
inheritFromDelegate: false,
manual: {
secretKeyRef: "string",
accessKeyPlainText: "string",
accessKeyRef: "string",
},
oidcAuthentication: {
iamRoleArn: "string",
},
},
region: "string",
identifier: "string",
description: "string",
executeOnDelegate: false,
forceDeleteWithoutRecovery: false,
delegateSelectors: ["string"],
name: "string",
orgId: "string",
projectId: "string",
recoveryWindowInDays: 0,
"default": false,
secretNamePrefix: "string",
tags: ["string"],
usePutSecret: false,
});
type: harness:platform:AwsSecretManagerConnector
properties:
credentials:
assumeRole:
duration: 0
externalId: string
roleArn: string
inheritFromDelegate: false
manual:
accessKeyPlainText: string
accessKeyRef: string
secretKeyRef: string
oidcAuthentication:
iamRoleArn: string
default: false
delegateSelectors:
- string
description: string
executeOnDelegate: false
forceDeleteWithoutRecovery: false
identifier: string
name: string
orgId: string
projectId: string
recoveryWindowInDays: 0
region: string
secretNamePrefix: string
tags:
- string
usePutSecret: false
AwsSecretManagerConnector Resource Properties
To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.
Inputs
In Python, inputs that are objects can be passed either as argument classes or as dictionary literals.
The AwsSecretManagerConnector resource accepts the following input properties:
- Credentials
Aws
Secret Manager Connector Credentials - Credentials to connect to AWS.
- Identifier string
- Unique identifier of the resource.
- Region string
- The AWS region where the AWS Secret Manager is.
- Default bool
- Use as Default Secrets Manager.
- Delegate
Selectors List<string> - Tags to filter delegates for connection.
- Description string
- Description of the resource.
- Execute
On boolDelegate - Run the operation on the delegate or harness platform.
- Force
Delete boolWithout Recovery - Whether to force delete secret value or not.
- Name string
- Name of the resource.
- Org
Id string - Unique identifier of the organization.
- Project
Id string - Unique identifier of the project.
- Recovery
Window intIn Days - recovery duration in days in AWS Secrets Manager.
- Secret
Name stringPrefix - A prefix to be added to all secrets.
- List<string>
- Tags to associate with the resource.
- Use
Put boolSecret - Whether to update secret value using putSecretValue action.
- Credentials
Aws
Secret Manager Connector Credentials Args - Credentials to connect to AWS.
- Identifier string
- Unique identifier of the resource.
- Region string
- The AWS region where the AWS Secret Manager is.
- Default bool
- Use as Default Secrets Manager.
- Delegate
Selectors []string - Tags to filter delegates for connection.
- Description string
- Description of the resource.
- Execute
On boolDelegate - Run the operation on the delegate or harness platform.
- Force
Delete boolWithout Recovery - Whether to force delete secret value or not.
- Name string
- Name of the resource.
- Org
Id string - Unique identifier of the organization.
- Project
Id string - Unique identifier of the project.
- Recovery
Window intIn Days - recovery duration in days in AWS Secrets Manager.
- Secret
Name stringPrefix - A prefix to be added to all secrets.
- []string
- Tags to associate with the resource.
- Use
Put boolSecret - Whether to update secret value using putSecretValue action.
- credentials
Aws
Secret Manager Connector Credentials - Credentials to connect to AWS.
- identifier String
- Unique identifier of the resource.
- region String
- The AWS region where the AWS Secret Manager is.
- default_ Boolean
- Use as Default Secrets Manager.
- delegate
Selectors List<String> - Tags to filter delegates for connection.
- description String
- Description of the resource.
- execute
On BooleanDelegate - Run the operation on the delegate or harness platform.
- force
Delete BooleanWithout Recovery - Whether to force delete secret value or not.
- name String
- Name of the resource.
- org
Id String - Unique identifier of the organization.
- project
Id String - Unique identifier of the project.
- recovery
Window IntegerIn Days - recovery duration in days in AWS Secrets Manager.
- secret
Name StringPrefix - A prefix to be added to all secrets.
- List<String>
- Tags to associate with the resource.
- use
Put BooleanSecret - Whether to update secret value using putSecretValue action.
- credentials
Aws
Secret Manager Connector Credentials - Credentials to connect to AWS.
- identifier string
- Unique identifier of the resource.
- region string
- The AWS region where the AWS Secret Manager is.
- default boolean
- Use as Default Secrets Manager.
- delegate
Selectors string[] - Tags to filter delegates for connection.
- description string
- Description of the resource.
- execute
On booleanDelegate - Run the operation on the delegate or harness platform.
- force
Delete booleanWithout Recovery - Whether to force delete secret value or not.
- name string
- Name of the resource.
- org
Id string - Unique identifier of the organization.
- project
Id string - Unique identifier of the project.
- recovery
Window numberIn Days - recovery duration in days in AWS Secrets Manager.
- secret
Name stringPrefix - A prefix to be added to all secrets.
- string[]
- Tags to associate with the resource.
- use
Put booleanSecret - Whether to update secret value using putSecretValue action.
- credentials
Aws
Secret Manager Connector Credentials Args - Credentials to connect to AWS.
- identifier str
- Unique identifier of the resource.
- region str
- The AWS region where the AWS Secret Manager is.
- default bool
- Use as Default Secrets Manager.
- delegate_
selectors Sequence[str] - Tags to filter delegates for connection.
- description str
- Description of the resource.
- execute_
on_ booldelegate - Run the operation on the delegate or harness platform.
- force_
delete_ boolwithout_ recovery - Whether to force delete secret value or not.
- name str
- Name of the resource.
- org_
id str - Unique identifier of the organization.
- project_
id str - Unique identifier of the project.
- recovery_
window_ intin_ days - recovery duration in days in AWS Secrets Manager.
- secret_
name_ strprefix - A prefix to be added to all secrets.
- Sequence[str]
- Tags to associate with the resource.
- use_
put_ boolsecret - Whether to update secret value using putSecretValue action.
- credentials Property Map
- Credentials to connect to AWS.
- identifier String
- Unique identifier of the resource.
- region String
- The AWS region where the AWS Secret Manager is.
- default Boolean
- Use as Default Secrets Manager.
- delegate
Selectors List<String> - Tags to filter delegates for connection.
- description String
- Description of the resource.
- execute
On BooleanDelegate - Run the operation on the delegate or harness platform.
- force
Delete BooleanWithout Recovery - Whether to force delete secret value or not.
- name String
- Name of the resource.
- org
Id String - Unique identifier of the organization.
- project
Id String - Unique identifier of the project.
- recovery
Window NumberIn Days - recovery duration in days in AWS Secrets Manager.
- secret
Name StringPrefix - A prefix to be added to all secrets.
- List<String>
- Tags to associate with the resource.
- use
Put BooleanSecret - Whether to update secret value using putSecretValue action.
Outputs
All input properties are implicitly available as output properties. Additionally, the AwsSecretManagerConnector resource produces the following output properties:
- Id string
- The provider-assigned unique ID for this managed resource.
- Id string
- The provider-assigned unique ID for this managed resource.
- id String
- The provider-assigned unique ID for this managed resource.
- id string
- The provider-assigned unique ID for this managed resource.
- id str
- The provider-assigned unique ID for this managed resource.
- id String
- The provider-assigned unique ID for this managed resource.
Look up Existing AwsSecretManagerConnector Resource
Get an existing AwsSecretManagerConnector resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.
public static get(name: string, id: Input<ID>, state?: AwsSecretManagerConnectorState, opts?: CustomResourceOptions): AwsSecretManagerConnector
@staticmethod
def get(resource_name: str,
id: str,
opts: Optional[ResourceOptions] = None,
credentials: Optional[AwsSecretManagerConnectorCredentialsArgs] = None,
default: Optional[bool] = None,
delegate_selectors: Optional[Sequence[str]] = None,
description: Optional[str] = None,
execute_on_delegate: Optional[bool] = None,
force_delete_without_recovery: Optional[bool] = None,
identifier: Optional[str] = None,
name: Optional[str] = None,
org_id: Optional[str] = None,
project_id: Optional[str] = None,
recovery_window_in_days: Optional[int] = None,
region: Optional[str] = None,
secret_name_prefix: Optional[str] = None,
tags: Optional[Sequence[str]] = None,
use_put_secret: Optional[bool] = None) -> AwsSecretManagerConnector
func GetAwsSecretManagerConnector(ctx *Context, name string, id IDInput, state *AwsSecretManagerConnectorState, opts ...ResourceOption) (*AwsSecretManagerConnector, error)
public static AwsSecretManagerConnector Get(string name, Input<string> id, AwsSecretManagerConnectorState? state, CustomResourceOptions? opts = null)
public static AwsSecretManagerConnector get(String name, Output<String> id, AwsSecretManagerConnectorState state, CustomResourceOptions options)
resources: _: type: harness:platform:AwsSecretManagerConnector get: id: ${id}
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- resource_name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- Credentials
Aws
Secret Manager Connector Credentials - Credentials to connect to AWS.
- Default bool
- Use as Default Secrets Manager.
- Delegate
Selectors List<string> - Tags to filter delegates for connection.
- Description string
- Description of the resource.
- Execute
On boolDelegate - Run the operation on the delegate or harness platform.
- Force
Delete boolWithout Recovery - Whether to force delete secret value or not.
- Identifier string
- Unique identifier of the resource.
- Name string
- Name of the resource.
- Org
Id string - Unique identifier of the organization.
- Project
Id string - Unique identifier of the project.
- Recovery
Window intIn Days - recovery duration in days in AWS Secrets Manager.
- Region string
- The AWS region where the AWS Secret Manager is.
- Secret
Name stringPrefix - A prefix to be added to all secrets.
- List<string>
- Tags to associate with the resource.
- Use
Put boolSecret - Whether to update secret value using putSecretValue action.
- Credentials
Aws
Secret Manager Connector Credentials Args - Credentials to connect to AWS.
- Default bool
- Use as Default Secrets Manager.
- Delegate
Selectors []string - Tags to filter delegates for connection.
- Description string
- Description of the resource.
- Execute
On boolDelegate - Run the operation on the delegate or harness platform.
- Force
Delete boolWithout Recovery - Whether to force delete secret value or not.
- Identifier string
- Unique identifier of the resource.
- Name string
- Name of the resource.
- Org
Id string - Unique identifier of the organization.
- Project
Id string - Unique identifier of the project.
- Recovery
Window intIn Days - recovery duration in days in AWS Secrets Manager.
- Region string
- The AWS region where the AWS Secret Manager is.
- Secret
Name stringPrefix - A prefix to be added to all secrets.
- []string
- Tags to associate with the resource.
- Use
Put boolSecret - Whether to update secret value using putSecretValue action.
- credentials
Aws
Secret Manager Connector Credentials - Credentials to connect to AWS.
- default_ Boolean
- Use as Default Secrets Manager.
- delegate
Selectors List<String> - Tags to filter delegates for connection.
- description String
- Description of the resource.
- execute
On BooleanDelegate - Run the operation on the delegate or harness platform.
- force
Delete BooleanWithout Recovery - Whether to force delete secret value or not.
- identifier String
- Unique identifier of the resource.
- name String
- Name of the resource.
- org
Id String - Unique identifier of the organization.
- project
Id String - Unique identifier of the project.
- recovery
Window IntegerIn Days - recovery duration in days in AWS Secrets Manager.
- region String
- The AWS region where the AWS Secret Manager is.
- secret
Name StringPrefix - A prefix to be added to all secrets.
- List<String>
- Tags to associate with the resource.
- use
Put BooleanSecret - Whether to update secret value using putSecretValue action.
- credentials
Aws
Secret Manager Connector Credentials - Credentials to connect to AWS.
- default boolean
- Use as Default Secrets Manager.
- delegate
Selectors string[] - Tags to filter delegates for connection.
- description string
- Description of the resource.
- execute
On booleanDelegate - Run the operation on the delegate or harness platform.
- force
Delete booleanWithout Recovery - Whether to force delete secret value or not.
- identifier string
- Unique identifier of the resource.
- name string
- Name of the resource.
- org
Id string - Unique identifier of the organization.
- project
Id string - Unique identifier of the project.
- recovery
Window numberIn Days - recovery duration in days in AWS Secrets Manager.
- region string
- The AWS region where the AWS Secret Manager is.
- secret
Name stringPrefix - A prefix to be added to all secrets.
- string[]
- Tags to associate with the resource.
- use
Put booleanSecret - Whether to update secret value using putSecretValue action.
- credentials
Aws
Secret Manager Connector Credentials Args - Credentials to connect to AWS.
- default bool
- Use as Default Secrets Manager.
- delegate_
selectors Sequence[str] - Tags to filter delegates for connection.
- description str
- Description of the resource.
- execute_
on_ booldelegate - Run the operation on the delegate or harness platform.
- force_
delete_ boolwithout_ recovery - Whether to force delete secret value or not.
- identifier str
- Unique identifier of the resource.
- name str
- Name of the resource.
- org_
id str - Unique identifier of the organization.
- project_
id str - Unique identifier of the project.
- recovery_
window_ intin_ days - recovery duration in days in AWS Secrets Manager.
- region str
- The AWS region where the AWS Secret Manager is.
- secret_
name_ strprefix - A prefix to be added to all secrets.
- Sequence[str]
- Tags to associate with the resource.
- use_
put_ boolsecret - Whether to update secret value using putSecretValue action.
- credentials Property Map
- Credentials to connect to AWS.
- default Boolean
- Use as Default Secrets Manager.
- delegate
Selectors List<String> - Tags to filter delegates for connection.
- description String
- Description of the resource.
- execute
On BooleanDelegate - Run the operation on the delegate or harness platform.
- force
Delete BooleanWithout Recovery - Whether to force delete secret value or not.
- identifier String
- Unique identifier of the resource.
- name String
- Name of the resource.
- org
Id String - Unique identifier of the organization.
- project
Id String - Unique identifier of the project.
- recovery
Window NumberIn Days - recovery duration in days in AWS Secrets Manager.
- region String
- The AWS region where the AWS Secret Manager is.
- secret
Name StringPrefix - A prefix to be added to all secrets.
- List<String>
- Tags to associate with the resource.
- use
Put BooleanSecret - Whether to update secret value using putSecretValue action.
Supporting Types
AwsSecretManagerConnectorCredentials, AwsSecretManagerConnectorCredentialsArgs
- Assume
Role AwsSecret Manager Connector Credentials Assume Role - Connect using STS assume role.
- Inherit
From boolDelegate - Inherit the credentials from from the delegate.
- Manual
Aws
Secret Manager Connector Credentials Manual - Specify the AWS key and secret used for authenticating.
- Oidc
Authentication AwsSecret Manager Connector Credentials Oidc Authentication - Authentication using harness oidc.
- Assume
Role AwsSecret Manager Connector Credentials Assume Role - Connect using STS assume role.
- Inherit
From boolDelegate - Inherit the credentials from from the delegate.
- Manual
Aws
Secret Manager Connector Credentials Manual - Specify the AWS key and secret used for authenticating.
- Oidc
Authentication AwsSecret Manager Connector Credentials Oidc Authentication - Authentication using harness oidc.
- assume
Role AwsSecret Manager Connector Credentials Assume Role - Connect using STS assume role.
- inherit
From BooleanDelegate - Inherit the credentials from from the delegate.
- manual
Aws
Secret Manager Connector Credentials Manual - Specify the AWS key and secret used for authenticating.
- oidc
Authentication AwsSecret Manager Connector Credentials Oidc Authentication - Authentication using harness oidc.
- assume
Role AwsSecret Manager Connector Credentials Assume Role - Connect using STS assume role.
- inherit
From booleanDelegate - Inherit the credentials from from the delegate.
- manual
Aws
Secret Manager Connector Credentials Manual - Specify the AWS key and secret used for authenticating.
- oidc
Authentication AwsSecret Manager Connector Credentials Oidc Authentication - Authentication using harness oidc.
- assume_
role AwsSecret Manager Connector Credentials Assume Role - Connect using STS assume role.
- inherit_
from_ booldelegate - Inherit the credentials from from the delegate.
- manual
Aws
Secret Manager Connector Credentials Manual - Specify the AWS key and secret used for authenticating.
- oidc_
authentication AwsSecret Manager Connector Credentials Oidc Authentication - Authentication using harness oidc.
- assume
Role Property Map - Connect using STS assume role.
- inherit
From BooleanDelegate - Inherit the credentials from from the delegate.
- manual Property Map
- Specify the AWS key and secret used for authenticating.
- oidc
Authentication Property Map - Authentication using harness oidc.
AwsSecretManagerConnectorCredentialsAssumeRole, AwsSecretManagerConnectorCredentialsAssumeRoleArgs
- Duration int
- The duration, in seconds, of the role session. The value can range from 900 seconds (15 minutes) to 3600 seconds (1 hour). By default, the value is set to 3600 seconds. An expiration can also be specified in the client request body. The minimum value is 1 hour.
- Role
Arn string - The ARN of the role to assume.
- External
Id string - If the administrator of the account to which the role belongs provided you with an external ID, then enter that value.
- Duration int
- The duration, in seconds, of the role session. The value can range from 900 seconds (15 minutes) to 3600 seconds (1 hour). By default, the value is set to 3600 seconds. An expiration can also be specified in the client request body. The minimum value is 1 hour.
- Role
Arn string - The ARN of the role to assume.
- External
Id string - If the administrator of the account to which the role belongs provided you with an external ID, then enter that value.
- duration Integer
- The duration, in seconds, of the role session. The value can range from 900 seconds (15 minutes) to 3600 seconds (1 hour). By default, the value is set to 3600 seconds. An expiration can also be specified in the client request body. The minimum value is 1 hour.
- role
Arn String - The ARN of the role to assume.
- external
Id String - If the administrator of the account to which the role belongs provided you with an external ID, then enter that value.
- duration number
- The duration, in seconds, of the role session. The value can range from 900 seconds (15 minutes) to 3600 seconds (1 hour). By default, the value is set to 3600 seconds. An expiration can also be specified in the client request body. The minimum value is 1 hour.
- role
Arn string - The ARN of the role to assume.
- external
Id string - If the administrator of the account to which the role belongs provided you with an external ID, then enter that value.
- duration int
- The duration, in seconds, of the role session. The value can range from 900 seconds (15 minutes) to 3600 seconds (1 hour). By default, the value is set to 3600 seconds. An expiration can also be specified in the client request body. The minimum value is 1 hour.
- role_
arn str - The ARN of the role to assume.
- external_
id str - If the administrator of the account to which the role belongs provided you with an external ID, then enter that value.
- duration Number
- The duration, in seconds, of the role session. The value can range from 900 seconds (15 minutes) to 3600 seconds (1 hour). By default, the value is set to 3600 seconds. An expiration can also be specified in the client request body. The minimum value is 1 hour.
- role
Arn String - The ARN of the role to assume.
- external
Id String - If the administrator of the account to which the role belongs provided you with an external ID, then enter that value.
AwsSecretManagerConnectorCredentialsManual, AwsSecretManagerConnectorCredentialsManualArgs
- Secret
Key stringRef - The reference to the Harness secret containing the AWS secret key. To reference a secret at the organization scope, prefix 'org' to the expression: org.{identifier}. To reference a secret at the account scope, prefix 'account` to the expression: account.{identifier}.
- Access
Key stringPlain Text - The plain text AWS access key. This is required if the accesskeyref is not provided.
- Access
Key stringRef - The reference to the Harness secret containing the AWS access key. To reference a secret at the organization scope, prefix 'org' to the expression: org.{identifier}. To reference a secret at the account scope, prefix 'account` to the expression: account.{identifier}.
- Secret
Key stringRef - The reference to the Harness secret containing the AWS secret key. To reference a secret at the organization scope, prefix 'org' to the expression: org.{identifier}. To reference a secret at the account scope, prefix 'account` to the expression: account.{identifier}.
- Access
Key stringPlain Text - The plain text AWS access key. This is required if the accesskeyref is not provided.
- Access
Key stringRef - The reference to the Harness secret containing the AWS access key. To reference a secret at the organization scope, prefix 'org' to the expression: org.{identifier}. To reference a secret at the account scope, prefix 'account` to the expression: account.{identifier}.
- secret
Key StringRef - The reference to the Harness secret containing the AWS secret key. To reference a secret at the organization scope, prefix 'org' to the expression: org.{identifier}. To reference a secret at the account scope, prefix 'account` to the expression: account.{identifier}.
- access
Key StringPlain Text - The plain text AWS access key. This is required if the accesskeyref is not provided.
- access
Key StringRef - The reference to the Harness secret containing the AWS access key. To reference a secret at the organization scope, prefix 'org' to the expression: org.{identifier}. To reference a secret at the account scope, prefix 'account` to the expression: account.{identifier}.
- secret
Key stringRef - The reference to the Harness secret containing the AWS secret key. To reference a secret at the organization scope, prefix 'org' to the expression: org.{identifier}. To reference a secret at the account scope, prefix 'account` to the expression: account.{identifier}.
- access
Key stringPlain Text - The plain text AWS access key. This is required if the accesskeyref is not provided.
- access
Key stringRef - The reference to the Harness secret containing the AWS access key. To reference a secret at the organization scope, prefix 'org' to the expression: org.{identifier}. To reference a secret at the account scope, prefix 'account` to the expression: account.{identifier}.
- secret_
key_ strref - The reference to the Harness secret containing the AWS secret key. To reference a secret at the organization scope, prefix 'org' to the expression: org.{identifier}. To reference a secret at the account scope, prefix 'account` to the expression: account.{identifier}.
- access_
key_ strplain_ text - The plain text AWS access key. This is required if the accesskeyref is not provided.
- access_
key_ strref - The reference to the Harness secret containing the AWS access key. To reference a secret at the organization scope, prefix 'org' to the expression: org.{identifier}. To reference a secret at the account scope, prefix 'account` to the expression: account.{identifier}.
- secret
Key StringRef - The reference to the Harness secret containing the AWS secret key. To reference a secret at the organization scope, prefix 'org' to the expression: org.{identifier}. To reference a secret at the account scope, prefix 'account` to the expression: account.{identifier}.
- access
Key StringPlain Text - The plain text AWS access key. This is required if the accesskeyref is not provided.
- access
Key StringRef - The reference to the Harness secret containing the AWS access key. To reference a secret at the organization scope, prefix 'org' to the expression: org.{identifier}. To reference a secret at the account scope, prefix 'account` to the expression: account.{identifier}.
AwsSecretManagerConnectorCredentialsOidcAuthentication, AwsSecretManagerConnectorCredentialsOidcAuthenticationArgs
- Iam
Role stringArn - The IAM role ARN.
- Iam
Role stringArn - The IAM role ARN.
- iam
Role StringArn - The IAM role ARN.
- iam
Role stringArn - The IAM role ARN.
- iam_
role_ strarn - The IAM role ARN.
- iam
Role StringArn - The IAM role ARN.
Import
Import account level aws secret manager connector
$ pulumi import harness:platform/awsSecretManagerConnector:AwsSecretManagerConnector example <connector_id>
Import org level aws secret manager connector
$ pulumi import harness:platform/awsSecretManagerConnector:AwsSecretManagerConnector example <ord_id>/<connector_id>
Import project level aws secret manager connector
$ pulumi import harness:platform/awsSecretManagerConnector:AwsSecretManagerConnector example <org_id>/<project_id>/<connector_id>
To learn more about importing existing cloud resources, see Importing resources.
Package Details
- Repository
- harness pulumi/pulumi-harness
- License
- Apache-2.0
- Notes
- This Pulumi package is based on the
harness
Terraform Provider.