harness.platform.getVaultConnector
DataSource for looking up a Vault connector in Harness.
Example Usage
using System.Collections.Generic;
using Pulumi;
using Harness = Pulumi.Harness;
return await Deployment.RunAsync(() =>
{
var example = Harness.Platform.GetVaultConnector.Invoke(new()
{
Identifier = "identifier",
});
});
package main
import (
"github.com/lbrlabs/pulumi-harness/sdk/go/harness/platform"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
_, err = platform.LookupVaultConnector(ctx, &platform.LookupVaultConnectorArgs{
Identifier: pulumi.StringRef("identifier"),
}, nil)
if err != nil {
return err
}
return nil
})
}
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.harness.platform.PlatformFunctions;
import com.pulumi.harness.platform.inputs.GetVaultConnectorArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
final var example = PlatformFunctions.getVaultConnector(GetVaultConnectorArgs.builder()
.identifier("identifier")
.build());
}
}
import pulumi
import pulumi_harness as harness
example = harness.platform.get_vault_connector(identifier="identifier")
import * as pulumi from "@pulumi/pulumi";
import * as harness from "@pulumi/harness";
const example = pulumi.output(harness.platform.getVaultConnector({
identifier: "identifier",
}));
variables:
example:
fn::invoke:
Function: harness:platform:getVaultConnector
Arguments:
identifier: identifier
Using getVaultConnector
Two invocation forms are available. The direct form accepts plain arguments and either blocks until the result value is available, or returns a Promise-wrapped result. The output form accepts Input-wrapped arguments and returns an Output-wrapped result.
function getVaultConnector(args: GetVaultConnectorArgs, opts?: InvokeOptions): Promise<GetVaultConnectorResult>
function getVaultConnectorOutput(args: GetVaultConnectorOutputArgs, opts?: InvokeOptions): Output<GetVaultConnectorResult>def get_vault_connector(identifier: Optional[str] = None,
name: Optional[str] = None,
org_id: Optional[str] = None,
project_id: Optional[str] = None,
opts: Optional[InvokeOptions] = None) -> GetVaultConnectorResult
def get_vault_connector_output(identifier: Optional[pulumi.Input[str]] = None,
name: Optional[pulumi.Input[str]] = None,
org_id: Optional[pulumi.Input[str]] = None,
project_id: Optional[pulumi.Input[str]] = None,
opts: Optional[InvokeOptions] = None) -> Output[GetVaultConnectorResult]func LookupVaultConnector(ctx *Context, args *LookupVaultConnectorArgs, opts ...InvokeOption) (*LookupVaultConnectorResult, error)
func LookupVaultConnectorOutput(ctx *Context, args *LookupVaultConnectorOutputArgs, opts ...InvokeOption) LookupVaultConnectorResultOutput> Note: This function is named LookupVaultConnector in the Go SDK.
public static class GetVaultConnector
{
public static Task<GetVaultConnectorResult> InvokeAsync(GetVaultConnectorArgs args, InvokeOptions? opts = null)
public static Output<GetVaultConnectorResult> Invoke(GetVaultConnectorInvokeArgs args, InvokeOptions? opts = null)
}public static CompletableFuture<GetVaultConnectorResult> getVaultConnector(GetVaultConnectorArgs args, InvokeOptions options)
// Output-based functions aren't available in Java yet
fn::invoke:
function: harness:platform/getVaultConnector:getVaultConnector
arguments:
# arguments dictionaryThe following arguments are supported:
- Identifier string
Unique identifier of the resource.
- Name string
Name of the resource.
- Org
Id string Unique identifier of the Organization.
- Project
Id string Unique identifier of the Project.
- Identifier string
Unique identifier of the resource.
- Name string
Name of the resource.
- Org
Id string Unique identifier of the Organization.
- Project
Id string Unique identifier of the Project.
- identifier String
Unique identifier of the resource.
- name String
Name of the resource.
- org
Id String Unique identifier of the Organization.
- project
Id String Unique identifier of the Project.
- identifier string
Unique identifier of the resource.
- name string
Name of the resource.
- org
Id string Unique identifier of the Organization.
- project
Id string Unique identifier of the Project.
- identifier str
Unique identifier of the resource.
- name str
Name of the resource.
- org_
id str Unique identifier of the Organization.
- project_
id str Unique identifier of the Project.
- identifier String
Unique identifier of the resource.
- name String
Name of the resource.
- org
Id String Unique identifier of the Organization.
- project
Id String Unique identifier of the Project.
getVaultConnector Result
The following output properties are available:
- Access
Type string Access type.
- App
Role stringId ID of App Role.
- Auth
Token string The authentication token for Vault.
- Aws
Region string The AWS region where AWS IAM auth will happen.
- Base
Path string The location of the Vault directory where Secret will be stored.
- Default bool
Is default or not.
- Delegate
Selectors List<string> List of Delegate Selectors that belong to the same Delegate and are used to connect to the Secret Manager.
- Description string
Description of the resource.
- Id string
The provider-assigned unique ID for this managed resource.
- Is
Default bool Is default or not.
- Is
Read boolOnly Read only or not.
- K8s
Auth stringEndpoint The path where kubernetes auth is enabled in Vault.
- Namespace string
The Vault namespace where Secret will be created.
- Read
Only bool Read only.
- Renew
App boolRole Token Boolean value to indicate if appRole token renewal is enabled or not.
- Renewal
Interval intMinutes The time interval for token renewal.
- Secret
Engine boolManually Configured Manually entered Secret Engine.
- Secret
Engine stringName Name of the Secret Engine.
- Secret
Engine intVersion Version of Secret Engine.
- Secret
Id string ID of the Secret.
- Service
Account stringToken Path The SA token path where the token is mounted in the K8s Pod.
- Sink
Path string The location at which auth token is to be read from.
- List<string>
Tags to associate with the resource. Tags should be in the form
name:value.- Use
Aws boolIam Boolean value to indicate if AWS IAM is used for authentication.
- Use
K8s boolAuth Boolean value to indicate if K8s Auth is used for authentication.
- Use
Vault boolAgent Boolean value to indicate if Vault Agent is used for authentication.
- Vault
Aws stringIam Role The Vault role defined to bind to AWS IAM account/role being accessed.
- Vault
K8s stringAuth Role The role where K8s auth will happen.
- Vault
Url string URL of the HashiCorp Vault.
- Xvault
Aws stringIam Server Id The AWS IAM Header Server ID that has been configured for this AWS IAM instance.
- Identifier string
Unique identifier of the resource.
- Name string
Name of the resource.
- Org
Id string Unique identifier of the Organization.
- Project
Id string Unique identifier of the Project.
- Access
Type string Access type.
- App
Role stringId ID of App Role.
- Auth
Token string The authentication token for Vault.
- Aws
Region string The AWS region where AWS IAM auth will happen.
- Base
Path string The location of the Vault directory where Secret will be stored.
- Default bool
Is default or not.
- Delegate
Selectors []string List of Delegate Selectors that belong to the same Delegate and are used to connect to the Secret Manager.
- Description string
Description of the resource.
- Id string
The provider-assigned unique ID for this managed resource.
- Is
Default bool Is default or not.
- Is
Read boolOnly Read only or not.
- K8s
Auth stringEndpoint The path where kubernetes auth is enabled in Vault.
- Namespace string
The Vault namespace where Secret will be created.
- Read
Only bool Read only.
- Renew
App boolRole Token Boolean value to indicate if appRole token renewal is enabled or not.
- Renewal
Interval intMinutes The time interval for token renewal.
- Secret
Engine boolManually Configured Manually entered Secret Engine.
- Secret
Engine stringName Name of the Secret Engine.
- Secret
Engine intVersion Version of Secret Engine.
- Secret
Id string ID of the Secret.
- Service
Account stringToken Path The SA token path where the token is mounted in the K8s Pod.
- Sink
Path string The location at which auth token is to be read from.
- []string
Tags to associate with the resource. Tags should be in the form
name:value.- Use
Aws boolIam Boolean value to indicate if AWS IAM is used for authentication.
- Use
K8s boolAuth Boolean value to indicate if K8s Auth is used for authentication.
- Use
Vault boolAgent Boolean value to indicate if Vault Agent is used for authentication.
- Vault
Aws stringIam Role The Vault role defined to bind to AWS IAM account/role being accessed.
- Vault
K8s stringAuth Role The role where K8s auth will happen.
- Vault
Url string URL of the HashiCorp Vault.
- Xvault
Aws stringIam Server Id The AWS IAM Header Server ID that has been configured for this AWS IAM instance.
- Identifier string
Unique identifier of the resource.
- Name string
Name of the resource.
- Org
Id string Unique identifier of the Organization.
- Project
Id string Unique identifier of the Project.
- access
Type String Access type.
- app
Role StringId ID of App Role.
- auth
Token String The authentication token for Vault.
- aws
Region String The AWS region where AWS IAM auth will happen.
- base
Path String The location of the Vault directory where Secret will be stored.
- default_ Boolean
Is default or not.
- delegate
Selectors List<String> List of Delegate Selectors that belong to the same Delegate and are used to connect to the Secret Manager.
- description String
Description of the resource.
- id String
The provider-assigned unique ID for this managed resource.
- is
Default Boolean Is default or not.
- is
Read BooleanOnly Read only or not.
- k8s
Auth StringEndpoint The path where kubernetes auth is enabled in Vault.
- namespace String
The Vault namespace where Secret will be created.
- read
Only Boolean Read only.
- renew
App BooleanRole Token Boolean value to indicate if appRole token renewal is enabled or not.
- renewal
Interval IntegerMinutes The time interval for token renewal.
- secret
Engine BooleanManually Configured Manually entered Secret Engine.
- secret
Engine StringName Name of the Secret Engine.
- secret
Engine IntegerVersion Version of Secret Engine.
- secret
Id String ID of the Secret.
- service
Account StringToken Path The SA token path where the token is mounted in the K8s Pod.
- sink
Path String The location at which auth token is to be read from.
- List<String>
Tags to associate with the resource. Tags should be in the form
name:value.- use
Aws BooleanIam Boolean value to indicate if AWS IAM is used for authentication.
- use
K8s BooleanAuth Boolean value to indicate if K8s Auth is used for authentication.
- use
Vault BooleanAgent Boolean value to indicate if Vault Agent is used for authentication.
- vault
Aws StringIam Role The Vault role defined to bind to AWS IAM account/role being accessed.
- vault
K8s StringAuth Role The role where K8s auth will happen.
- vault
Url String URL of the HashiCorp Vault.
- xvault
Aws StringIam Server Id The AWS IAM Header Server ID that has been configured for this AWS IAM instance.
- identifier String
Unique identifier of the resource.
- name String
Name of the resource.
- org
Id String Unique identifier of the Organization.
- project
Id String Unique identifier of the Project.
- access
Type string Access type.
- app
Role stringId ID of App Role.
- auth
Token string The authentication token for Vault.
- aws
Region string The AWS region where AWS IAM auth will happen.
- base
Path string The location of the Vault directory where Secret will be stored.
- default boolean
Is default or not.
- delegate
Selectors string[] List of Delegate Selectors that belong to the same Delegate and are used to connect to the Secret Manager.
- description string
Description of the resource.
- id string
The provider-assigned unique ID for this managed resource.
- is
Default boolean Is default or not.
- is
Read booleanOnly Read only or not.
- k8s
Auth stringEndpoint The path where kubernetes auth is enabled in Vault.
- namespace string
The Vault namespace where Secret will be created.
- read
Only boolean Read only.
- renew
App booleanRole Token Boolean value to indicate if appRole token renewal is enabled or not.
- renewal
Interval numberMinutes The time interval for token renewal.
- secret
Engine booleanManually Configured Manually entered Secret Engine.
- secret
Engine stringName Name of the Secret Engine.
- secret
Engine numberVersion Version of Secret Engine.
- secret
Id string ID of the Secret.
- service
Account stringToken Path The SA token path where the token is mounted in the K8s Pod.
- sink
Path string The location at which auth token is to be read from.
- string[]
Tags to associate with the resource. Tags should be in the form
name:value.- use
Aws booleanIam Boolean value to indicate if AWS IAM is used for authentication.
- use
K8s booleanAuth Boolean value to indicate if K8s Auth is used for authentication.
- use
Vault booleanAgent Boolean value to indicate if Vault Agent is used for authentication.
- vault
Aws stringIam Role The Vault role defined to bind to AWS IAM account/role being accessed.
- vault
K8s stringAuth Role The role where K8s auth will happen.
- vault
Url string URL of the HashiCorp Vault.
- xvault
Aws stringIam Server Id The AWS IAM Header Server ID that has been configured for this AWS IAM instance.
- identifier string
Unique identifier of the resource.
- name string
Name of the resource.
- org
Id string Unique identifier of the Organization.
- project
Id string Unique identifier of the Project.
- access_
type str Access type.
- app_
role_ strid ID of App Role.
- auth_
token str The authentication token for Vault.
- aws_
region str The AWS region where AWS IAM auth will happen.
- base_
path str The location of the Vault directory where Secret will be stored.
- default bool
Is default or not.
- delegate_
selectors Sequence[str] List of Delegate Selectors that belong to the same Delegate and are used to connect to the Secret Manager.
- description str
Description of the resource.
- id str
The provider-assigned unique ID for this managed resource.
- is_
default bool Is default or not.
- is_
read_ boolonly Read only or not.
- k8s_
auth_ strendpoint The path where kubernetes auth is enabled in Vault.
- namespace str
The Vault namespace where Secret will be created.
- read_
only bool Read only.
- renew_
app_ boolrole_ token Boolean value to indicate if appRole token renewal is enabled or not.
- renewal_
interval_ intminutes The time interval for token renewal.
- secret_
engine_ boolmanually_ configured Manually entered Secret Engine.
- secret_
engine_ strname Name of the Secret Engine.
- secret_
engine_ intversion Version of Secret Engine.
- secret_
id str ID of the Secret.
- service_
account_ strtoken_ path The SA token path where the token is mounted in the K8s Pod.
- sink_
path str The location at which auth token is to be read from.
- Sequence[str]
Tags to associate with the resource. Tags should be in the form
name:value.- use_
aws_ booliam Boolean value to indicate if AWS IAM is used for authentication.
- use_
k8s_ boolauth Boolean value to indicate if K8s Auth is used for authentication.
- use_
vault_ boolagent Boolean value to indicate if Vault Agent is used for authentication.
- vault_
aws_ striam_ role The Vault role defined to bind to AWS IAM account/role being accessed.
- vault_
k8s_ strauth_ role The role where K8s auth will happen.
- vault_
url str URL of the HashiCorp Vault.
- xvault_
aws_ striam_ server_ id The AWS IAM Header Server ID that has been configured for this AWS IAM instance.
- identifier str
Unique identifier of the resource.
- name str
Name of the resource.
- org_
id str Unique identifier of the Organization.
- project_
id str Unique identifier of the Project.
- access
Type String Access type.
- app
Role StringId ID of App Role.
- auth
Token String The authentication token for Vault.
- aws
Region String The AWS region where AWS IAM auth will happen.
- base
Path String The location of the Vault directory where Secret will be stored.
- default Boolean
Is default or not.
- delegate
Selectors List<String> List of Delegate Selectors that belong to the same Delegate and are used to connect to the Secret Manager.
- description String
Description of the resource.
- id String
The provider-assigned unique ID for this managed resource.
- is
Default Boolean Is default or not.
- is
Read BooleanOnly Read only or not.
- k8s
Auth StringEndpoint The path where kubernetes auth is enabled in Vault.
- namespace String
The Vault namespace where Secret will be created.
- read
Only Boolean Read only.
- renew
App BooleanRole Token Boolean value to indicate if appRole token renewal is enabled or not.
- renewal
Interval NumberMinutes The time interval for token renewal.
- secret
Engine BooleanManually Configured Manually entered Secret Engine.
- secret
Engine StringName Name of the Secret Engine.
- secret
Engine NumberVersion Version of Secret Engine.
- secret
Id String ID of the Secret.
- service
Account StringToken Path The SA token path where the token is mounted in the K8s Pod.
- sink
Path String The location at which auth token is to be read from.
- List<String>
Tags to associate with the resource. Tags should be in the form
name:value.- use
Aws BooleanIam Boolean value to indicate if AWS IAM is used for authentication.
- use
K8s BooleanAuth Boolean value to indicate if K8s Auth is used for authentication.
- use
Vault BooleanAgent Boolean value to indicate if Vault Agent is used for authentication.
- vault
Aws StringIam Role The Vault role defined to bind to AWS IAM account/role being accessed.
- vault
K8s StringAuth Role The role where K8s auth will happen.
- vault
Url String URL of the HashiCorp Vault.
- xvault
Aws StringIam Server Id The AWS IAM Header Server ID that has been configured for this AWS IAM instance.
- identifier String
Unique identifier of the resource.
- name String
Name of the resource.
- org
Id String Unique identifier of the Organization.
- project
Id String Unique identifier of the Project.
Package Details
- Repository
- harness lbrlabs/pulumi-harness
- License
- Apache-2.0
- Notes
This Pulumi package is based on the
harnessTerraform Provider.