Docs Home
hsdp 0.65.3 published on Tuesday, Apr 15, 2025 by philips-software
hsdp.PkiTenant
Explore with Pulumi AI
hsdp 0.65.3 published on Tuesday, Apr 15, 2025 by philips-software
Onboard tenant to PKI Service. Cloud foundry users with SpaceDeveloper role can onboard tenant
This resource is only available when
uaa_*(Cloud foundry) andiamcredentials are set
Example Usage
import * as pulumi from "@pulumi/pulumi";
import * as hsdp from "@pulumi/hsdp";
const tenant = new hsdp.PkiTenant("tenant", {
organizationName: "client-my-org",
spaceName: "prod",
iamOrgs: [_var.iam_org_id],
ca: {
commonName: "common.name",
},
roles: [{
name: "ec384",
allowAnyName: true,
allowIpSans: true,
allowSubdomains: true,
allowedDomains: [],
allowedOtherSans: ["*"],
allowedUriSans: ["*"],
clientFlag: true,
serverFlag: true,
enforceHostnames: false,
keyBits: 384,
keyType: "ec",
}],
});
import pulumi
import pulumi_hsdp as hsdp
tenant = hsdp.PkiTenant("tenant",
organization_name="client-my-org",
space_name="prod",
iam_orgs=[var["iam_org_id"]],
ca={
"common_name": "common.name",
},
roles=[{
"name": "ec384",
"allow_any_name": True,
"allow_ip_sans": True,
"allow_subdomains": True,
"allowed_domains": [],
"allowed_other_sans": ["*"],
"allowed_uri_sans": ["*"],
"client_flag": True,
"server_flag": True,
"enforce_hostnames": False,
"key_bits": 384,
"key_type": "ec",
}])
package main
import (
"github.com/pulumi/pulumi-terraform-provider/sdks/go/hsdp/hsdp"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
_, err := hsdp.NewPkiTenant(ctx, "tenant", &hsdp.PkiTenantArgs{
OrganizationName: pulumi.String("client-my-org"),
SpaceName: pulumi.String("prod"),
IamOrgs: pulumi.StringArray{
_var.Iam_org_id,
},
Ca: &hsdp.PkiTenantCaArgs{
CommonName: pulumi.String("common.name"),
},
Roles: hsdp.PkiTenantRoleArray{
&hsdp.PkiTenantRoleArgs{
Name: pulumi.String("ec384"),
AllowAnyName: pulumi.Bool(true),
AllowIpSans: pulumi.Bool(true),
AllowSubdomains: pulumi.Bool(true),
AllowedDomains: pulumi.StringArray{},
AllowedOtherSans: pulumi.StringArray{
pulumi.String("*"),
},
AllowedUriSans: pulumi.StringArray{
pulumi.String("*"),
},
ClientFlag: pulumi.Bool(true),
ServerFlag: pulumi.Bool(true),
EnforceHostnames: pulumi.Bool(false),
KeyBits: pulumi.Float64(384),
KeyType: pulumi.String("ec"),
},
},
})
if err != nil {
return err
}
return nil
})
}
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using Hsdp = Pulumi.Hsdp;
return await Deployment.RunAsync(() =>
{
var tenant = new Hsdp.PkiTenant("tenant", new()
{
OrganizationName = "client-my-org",
SpaceName = "prod",
IamOrgs = new[]
{
@var.Iam_org_id,
},
Ca = new Hsdp.Inputs.PkiTenantCaArgs
{
CommonName = "common.name",
},
Roles = new[]
{
new Hsdp.Inputs.PkiTenantRoleArgs
{
Name = "ec384",
AllowAnyName = true,
AllowIpSans = true,
AllowSubdomains = true,
AllowedDomains = new() { },
AllowedOtherSans = new[]
{
"*",
},
AllowedUriSans = new[]
{
"*",
},
ClientFlag = true,
ServerFlag = true,
EnforceHostnames = false,
KeyBits = 384,
KeyType = "ec",
},
},
});
});
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.hsdp.PkiTenant;
import com.pulumi.hsdp.PkiTenantArgs;
import com.pulumi.hsdp.inputs.PkiTenantCaArgs;
import com.pulumi.hsdp.inputs.PkiTenantRoleArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
var tenant = new PkiTenant("tenant", PkiTenantArgs.builder()
.organizationName("client-my-org")
.spaceName("prod")
.iamOrgs(var_.iam_org_id())
.ca(PkiTenantCaArgs.builder()
.commonName("common.name")
.build())
.roles(PkiTenantRoleArgs.builder()
.name("ec384")
.allowAnyName(true)
.allowIpSans(true)
.allowSubdomains(true)
.allowedDomains()
.allowedOtherSans("*")
.allowedUriSans("*")
.clientFlag(true)
.serverFlag(true)
.enforceHostnames(false)
.keyBits(384)
.keyType("ec")
.build())
.build());
}
}
resources:
tenant:
type: hsdp:PkiTenant
properties:
organizationName: client-my-org
spaceName: prod
iamOrgs:
- ${var.iam_org_id}
ca:
commonName: common.name
roles:
- name: ec384
allowAnyName: true
allowIpSans: true
allowSubdomains: true
allowedDomains: []
allowedOtherSans:
- '*'
allowedUriSans:
- '*'
clientFlag: true
serverFlag: true
enforceHostnames: false
keyBits: 384
keyType: ec
Create PkiTenant Resource
Resources are created with functions called constructors. To learn more about declaring and configuring resources, see Resources.
Constructor syntax
new PkiTenant(name: string, args: PkiTenantArgs, opts?: CustomResourceOptions);@overload
def PkiTenant(resource_name: str,
args: PkiTenantArgs,
opts: Optional[ResourceOptions] = None)
@overload
def PkiTenant(resource_name: str,
opts: Optional[ResourceOptions] = None,
ca: Optional[PkiTenantCaArgs] = None,
iam_orgs: Optional[Sequence[str]] = None,
organization_name: Optional[str] = None,
roles: Optional[Sequence[PkiTenantRoleArgs]] = None,
space_name: Optional[str] = None,
pki_tenant_id: Optional[str] = None,
triggers: Optional[Mapping[str, str]] = None)func NewPkiTenant(ctx *Context, name string, args PkiTenantArgs, opts ...ResourceOption) (*PkiTenant, error)public PkiTenant(string name, PkiTenantArgs args, CustomResourceOptions? opts = null)
public PkiTenant(String name, PkiTenantArgs args)
public PkiTenant(String name, PkiTenantArgs args, CustomResourceOptions options)
type: hsdp:PkiTenant
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.
Parameters
- name string
- The unique name of the resource.
- args PkiTenantArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- resource_name str
- The unique name of the resource.
- args PkiTenantArgs
- The arguments to resource properties.
- opts ResourceOptions
- Bag of options to control resource's behavior.
- ctx Context
- Context object for the current deployment.
- name string
- The unique name of the resource.
- args PkiTenantArgs
- The arguments to resource properties.
- opts ResourceOption
- Bag of options to control resource's behavior.
- name string
- The unique name of the resource.
- args PkiTenantArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- name String
- The unique name of the resource.
- args PkiTenantArgs
- The arguments to resource properties.
- options CustomResourceOptions
- Bag of options to control resource's behavior.
Constructor example
The following reference example uses placeholder values for all input properties.
var pkiTenantResource = new Hsdp.PkiTenant("pkiTenantResource", new()
{
Ca = new Hsdp.Inputs.PkiTenantCaArgs
{
CommonName = "string",
Ttl = "string",
},
IamOrgs = new[]
{
"string",
},
OrganizationName = "string",
Roles = new[]
{
new Hsdp.Inputs.PkiTenantRoleArgs
{
KeyBits = 0,
AllowIpSans = false,
AllowSubdomains = false,
AllowedOtherSans = new[]
{
"string",
},
AllowedUriSans = new[]
{
"string",
},
ClientFlag = false,
AllowAnyName = false,
KeyType = "string",
Name = "string",
ServerFlag = false,
AllowedDomains = new[]
{
"string",
},
AllowedSerialNumbers = new[]
{
"string",
},
EnforceHostnames = false,
},
},
SpaceName = "string",
PkiTenantId = "string",
Triggers =
{
{ "string", "string" },
},
});
example, err := hsdp.NewPkiTenant(ctx, "pkiTenantResource", &hsdp.PkiTenantArgs{
Ca: &hsdp.PkiTenantCaArgs{
CommonName: pulumi.String("string"),
Ttl: pulumi.String("string"),
},
IamOrgs: pulumi.StringArray{
pulumi.String("string"),
},
OrganizationName: pulumi.String("string"),
Roles: hsdp.PkiTenantRoleArray{
&hsdp.PkiTenantRoleArgs{
KeyBits: pulumi.Float64(0),
AllowIpSans: pulumi.Bool(false),
AllowSubdomains: pulumi.Bool(false),
AllowedOtherSans: pulumi.StringArray{
pulumi.String("string"),
},
AllowedUriSans: pulumi.StringArray{
pulumi.String("string"),
},
ClientFlag: pulumi.Bool(false),
AllowAnyName: pulumi.Bool(false),
KeyType: pulumi.String("string"),
Name: pulumi.String("string"),
ServerFlag: pulumi.Bool(false),
AllowedDomains: pulumi.StringArray{
pulumi.String("string"),
},
AllowedSerialNumbers: pulumi.StringArray{
pulumi.String("string"),
},
EnforceHostnames: pulumi.Bool(false),
},
},
SpaceName: pulumi.String("string"),
PkiTenantId: pulumi.String("string"),
Triggers: pulumi.StringMap{
"string": pulumi.String("string"),
},
})
var pkiTenantResource = new PkiTenant("pkiTenantResource", PkiTenantArgs.builder()
.ca(PkiTenantCaArgs.builder()
.commonName("string")
.ttl("string")
.build())
.iamOrgs("string")
.organizationName("string")
.roles(PkiTenantRoleArgs.builder()
.keyBits(0)
.allowIpSans(false)
.allowSubdomains(false)
.allowedOtherSans("string")
.allowedUriSans("string")
.clientFlag(false)
.allowAnyName(false)
.keyType("string")
.name("string")
.serverFlag(false)
.allowedDomains("string")
.allowedSerialNumbers("string")
.enforceHostnames(false)
.build())
.spaceName("string")
.pkiTenantId("string")
.triggers(Map.of("string", "string"))
.build());
pki_tenant_resource = hsdp.PkiTenant("pkiTenantResource",
ca={
"common_name": "string",
"ttl": "string",
},
iam_orgs=["string"],
organization_name="string",
roles=[{
"key_bits": 0,
"allow_ip_sans": False,
"allow_subdomains": False,
"allowed_other_sans": ["string"],
"allowed_uri_sans": ["string"],
"client_flag": False,
"allow_any_name": False,
"key_type": "string",
"name": "string",
"server_flag": False,
"allowed_domains": ["string"],
"allowed_serial_numbers": ["string"],
"enforce_hostnames": False,
}],
space_name="string",
pki_tenant_id="string",
triggers={
"string": "string",
})
const pkiTenantResource = new hsdp.PkiTenant("pkiTenantResource", {
ca: {
commonName: "string",
ttl: "string",
},
iamOrgs: ["string"],
organizationName: "string",
roles: [{
keyBits: 0,
allowIpSans: false,
allowSubdomains: false,
allowedOtherSans: ["string"],
allowedUriSans: ["string"],
clientFlag: false,
allowAnyName: false,
keyType: "string",
name: "string",
serverFlag: false,
allowedDomains: ["string"],
allowedSerialNumbers: ["string"],
enforceHostnames: false,
}],
spaceName: "string",
pkiTenantId: "string",
triggers: {
string: "string",
},
});
type: hsdp:PkiTenant
properties:
ca:
commonName: string
ttl: string
iamOrgs:
- string
organizationName: string
pkiTenantId: string
roles:
- allowAnyName: false
allowIpSans: false
allowSubdomains: false
allowedDomains:
- string
allowedOtherSans:
- string
allowedSerialNumbers:
- string
allowedUriSans:
- string
clientFlag: false
enforceHostnames: false
keyBits: 0
keyType: string
name: string
serverFlag: false
spaceName: string
triggers:
string: string
PkiTenant Resource Properties
To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.
Inputs
In Python, inputs that are objects can be passed either as argument classes or as dictionary literals.
The PkiTenant resource accepts the following input properties:
- Ca
Pki
Tenant Ca - The Certificate Authority information to use.
- Iam
Orgs List<string> - Organization
Name string - The CF organization name to use
- Roles
List<Pki
Tenant Role> - A role definition. Muliple roles are supported
- Space
Name string - The CF space name to verify the user is part of
- Pki
Tenant stringId - Triggers Dictionary<string, string>
- A map of arbitrary strings that, when changed, will force the resource to be replaced.
- Ca
Pki
Tenant Ca Args - The Certificate Authority information to use.
- Iam
Orgs []string - Organization
Name string - The CF organization name to use
- Roles
[]Pki
Tenant Role Args - A role definition. Muliple roles are supported
- Space
Name string - The CF space name to verify the user is part of
- Pki
Tenant stringId - Triggers map[string]string
- A map of arbitrary strings that, when changed, will force the resource to be replaced.
- ca
Pki
Tenant Ca - The Certificate Authority information to use.
- iam
Orgs List<String> - organization
Name String - The CF organization name to use
- roles
List<Pki
Tenant Role> - A role definition. Muliple roles are supported
- space
Name String - The CF space name to verify the user is part of
- pki
Tenant StringId - triggers Map<String,String>
- A map of arbitrary strings that, when changed, will force the resource to be replaced.
- ca
Pki
Tenant Ca - The Certificate Authority information to use.
- iam
Orgs string[] - organization
Name string - The CF organization name to use
- roles
Pki
Tenant Role[] - A role definition. Muliple roles are supported
- space
Name string - The CF space name to verify the user is part of
- pki
Tenant stringId - triggers {[key: string]: string}
- A map of arbitrary strings that, when changed, will force the resource to be replaced.
- ca
Pki
Tenant Ca Args - The Certificate Authority information to use.
- iam_
orgs Sequence[str] - organization_
name str - The CF organization name to use
- roles
Sequence[Pki
Tenant Role Args] - A role definition. Muliple roles are supported
- space_
name str - The CF space name to verify the user is part of
- pki_
tenant_ strid - triggers Mapping[str, str]
- A map of arbitrary strings that, when changed, will force the resource to be replaced.
- ca Property Map
- The Certificate Authority information to use.
- iam
Orgs List<String> - organization
Name String - The CF organization name to use
- roles List<Property Map>
- A role definition. Muliple roles are supported
- space
Name String - The CF space name to verify the user is part of
- pki
Tenant StringId - triggers Map<String>
- A map of arbitrary strings that, when changed, will force the resource to be replaced.
Outputs
All input properties are implicitly available as output properties. Additionally, the PkiTenant resource produces the following output properties:
- Api
Endpoint string - Id string
- The provider-assigned unique ID for this managed resource.
- Logical
Path string - Same as
id. This is for consistency. - Plan
Name string - Service
Name string
- Api
Endpoint string - Id string
- The provider-assigned unique ID for this managed resource.
- Logical
Path string - Same as
id. This is for consistency. - Plan
Name string - Service
Name string
- api
Endpoint String - id String
- The provider-assigned unique ID for this managed resource.
- logical
Path String - Same as
id. This is for consistency. - plan
Name String - service
Name String
- api
Endpoint string - id string
- The provider-assigned unique ID for this managed resource.
- logical
Path string - Same as
id. This is for consistency. - plan
Name string - service
Name string
- api_
endpoint str - id str
- The provider-assigned unique ID for this managed resource.
- logical_
path str - Same as
id. This is for consistency. - plan_
name str - service_
name str
- api
Endpoint String - id String
- The provider-assigned unique ID for this managed resource.
- logical
Path String - Same as
id. This is for consistency. - plan
Name String - service
Name String
Look up Existing PkiTenant Resource
Get an existing PkiTenant resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.
public static get(name: string, id: Input<ID>, state?: PkiTenantState, opts?: CustomResourceOptions): PkiTenant@staticmethod
def get(resource_name: str,
id: str,
opts: Optional[ResourceOptions] = None,
api_endpoint: Optional[str] = None,
ca: Optional[PkiTenantCaArgs] = None,
iam_orgs: Optional[Sequence[str]] = None,
logical_path: Optional[str] = None,
organization_name: Optional[str] = None,
pki_tenant_id: Optional[str] = None,
plan_name: Optional[str] = None,
roles: Optional[Sequence[PkiTenantRoleArgs]] = None,
service_name: Optional[str] = None,
space_name: Optional[str] = None,
triggers: Optional[Mapping[str, str]] = None) -> PkiTenantfunc GetPkiTenant(ctx *Context, name string, id IDInput, state *PkiTenantState, opts ...ResourceOption) (*PkiTenant, error)public static PkiTenant Get(string name, Input<string> id, PkiTenantState? state, CustomResourceOptions? opts = null)public static PkiTenant get(String name, Output<String> id, PkiTenantState state, CustomResourceOptions options)resources: _: type: hsdp:PkiTenant get: id: ${id}- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- resource_name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- Api
Endpoint string - Ca
Pki
Tenant Ca - The Certificate Authority information to use.
- Iam
Orgs List<string> - Logical
Path string - Same as
id. This is for consistency. - Organization
Name string - The CF organization name to use
- Pki
Tenant stringId - Plan
Name string - Roles
List<Pki
Tenant Role> - A role definition. Muliple roles are supported
- Service
Name string - Space
Name string - The CF space name to verify the user is part of
- Triggers Dictionary<string, string>
- A map of arbitrary strings that, when changed, will force the resource to be replaced.
- Api
Endpoint string - Ca
Pki
Tenant Ca Args - The Certificate Authority information to use.
- Iam
Orgs []string - Logical
Path string - Same as
id. This is for consistency. - Organization
Name string - The CF organization name to use
- Pki
Tenant stringId - Plan
Name string - Roles
[]Pki
Tenant Role Args - A role definition. Muliple roles are supported
- Service
Name string - Space
Name string - The CF space name to verify the user is part of
- Triggers map[string]string
- A map of arbitrary strings that, when changed, will force the resource to be replaced.
- api
Endpoint String - ca
Pki
Tenant Ca - The Certificate Authority information to use.
- iam
Orgs List<String> - logical
Path String - Same as
id. This is for consistency. - organization
Name String - The CF organization name to use
- pki
Tenant StringId - plan
Name String - roles
List<Pki
Tenant Role> - A role definition. Muliple roles are supported
- service
Name String - space
Name String - The CF space name to verify the user is part of
- triggers Map<String,String>
- A map of arbitrary strings that, when changed, will force the resource to be replaced.
- api
Endpoint string - ca
Pki
Tenant Ca - The Certificate Authority information to use.
- iam
Orgs string[] - logical
Path string - Same as
id. This is for consistency. - organization
Name string - The CF organization name to use
- pki
Tenant stringId - plan
Name string - roles
Pki
Tenant Role[] - A role definition. Muliple roles are supported
- service
Name string - space
Name string - The CF space name to verify the user is part of
- triggers {[key: string]: string}
- A map of arbitrary strings that, when changed, will force the resource to be replaced.
- api_
endpoint str - ca
Pki
Tenant Ca Args - The Certificate Authority information to use.
- iam_
orgs Sequence[str] - logical_
path str - Same as
id. This is for consistency. - organization_
name str - The CF organization name to use
- pki_
tenant_ strid - plan_
name str - roles
Sequence[Pki
Tenant Role Args] - A role definition. Muliple roles are supported
- service_
name str - space_
name str - The CF space name to verify the user is part of
- triggers Mapping[str, str]
- A map of arbitrary strings that, when changed, will force the resource to be replaced.
- api
Endpoint String - ca Property Map
- The Certificate Authority information to use.
- iam
Orgs List<String> - logical
Path String - Same as
id. This is for consistency. - organization
Name String - The CF organization name to use
- pki
Tenant StringId - plan
Name String - roles List<Property Map>
- A role definition. Muliple roles are supported
- service
Name String - space
Name String - The CF space name to verify the user is part of
- triggers Map<String>
- A map of arbitrary strings that, when changed, will force the resource to be replaced.
Supporting Types
PkiTenantCa, PkiTenantCaArgs
- Common
Name string - The common name to use
- Ttl string
- The TTL, example
8760hfor 1 year
- Common
Name string - The common name to use
- Ttl string
- The TTL, example
8760hfor 1 year
- common
Name String - The common name to use
- ttl String
- The TTL, example
8760hfor 1 year
- common
Name string - The common name to use
- ttl string
- The TTL, example
8760hfor 1 year
- common_
name str - The common name to use
- ttl str
- The TTL, example
8760hfor 1 year
- common
Name String - The common name to use
- ttl String
- The TTL, example
8760hfor 1 year
PkiTenantRole, PkiTenantRoleArgs
- Allow
Any boolName - Allow any name to be used
- Allow
Ip boolSans - Allow IP Subject Alternative Names (SAN)
- Allow
Subdomains bool - Allow subdomains to be created
- Allowed
Other List<string>Sans - ) List of allowed other SANs. Specifying a single '*' entry will allow any other sans
- Allowed
Uri List<string>Sans - ) List of allowed
URI SANs. Values can contain glob patterns (e.g.
spiffe://hostname/*) - Client
Flag bool - Key
Bits double - Key length. Typically
384foreckey types. - Key
Type string - The key type. Values [
ec,rsa] - Name string
- The role name. This is used for lookup
- Server
Flag bool - Allowed
Domains List<string> - ) List of allowed domains
- Allowed
Serial List<string>Numbers - Enforce
Hostnames bool - Enforce hostnames. Default:
false
- Allow
Any boolName - Allow any name to be used
- Allow
Ip boolSans - Allow IP Subject Alternative Names (SAN)
- Allow
Subdomains bool - Allow subdomains to be created
- Allowed
Other []stringSans - ) List of allowed other SANs. Specifying a single '*' entry will allow any other sans
- Allowed
Uri []stringSans - ) List of allowed
URI SANs. Values can contain glob patterns (e.g.
spiffe://hostname/*) - Client
Flag bool - Key
Bits float64 - Key length. Typically
384foreckey types. - Key
Type string - The key type. Values [
ec,rsa] - Name string
- The role name. This is used for lookup
- Server
Flag bool - Allowed
Domains []string - ) List of allowed domains
- Allowed
Serial []stringNumbers - Enforce
Hostnames bool - Enforce hostnames. Default:
false
- allow
Any BooleanName - Allow any name to be used
- allow
Ip BooleanSans - Allow IP Subject Alternative Names (SAN)
- allow
Subdomains Boolean - Allow subdomains to be created
- allowed
Other List<String>Sans - ) List of allowed other SANs. Specifying a single '*' entry will allow any other sans
- allowed
Uri List<String>Sans - ) List of allowed
URI SANs. Values can contain glob patterns (e.g.
spiffe://hostname/*) - client
Flag Boolean - key
Bits Double - Key length. Typically
384foreckey types. - key
Type String - The key type. Values [
ec,rsa] - name String
- The role name. This is used for lookup
- server
Flag Boolean - allowed
Domains List<String> - ) List of allowed domains
- allowed
Serial List<String>Numbers - enforce
Hostnames Boolean - Enforce hostnames. Default:
false
- allow
Any booleanName - Allow any name to be used
- allow
Ip booleanSans - Allow IP Subject Alternative Names (SAN)
- allow
Subdomains boolean - Allow subdomains to be created
- allowed
Other string[]Sans - ) List of allowed other SANs. Specifying a single '*' entry will allow any other sans
- allowed
Uri string[]Sans - ) List of allowed
URI SANs. Values can contain glob patterns (e.g.
spiffe://hostname/*) - client
Flag boolean - key
Bits number - Key length. Typically
384foreckey types. - key
Type string - The key type. Values [
ec,rsa] - name string
- The role name. This is used for lookup
- server
Flag boolean - allowed
Domains string[] - ) List of allowed domains
- allowed
Serial string[]Numbers - enforce
Hostnames boolean - Enforce hostnames. Default:
false
- allow_
any_ boolname - Allow any name to be used
- allow_
ip_ boolsans - Allow IP Subject Alternative Names (SAN)
- allow_
subdomains bool - Allow subdomains to be created
- allowed_
other_ Sequence[str]sans - ) List of allowed other SANs. Specifying a single '*' entry will allow any other sans
- allowed_
uri_ Sequence[str]sans - ) List of allowed
URI SANs. Values can contain glob patterns (e.g.
spiffe://hostname/*) - client_
flag bool - key_
bits float - Key length. Typically
384foreckey types. - key_
type str - The key type. Values [
ec,rsa] - name str
- The role name. This is used for lookup
- server_
flag bool - allowed_
domains Sequence[str] - ) List of allowed domains
- allowed_
serial_ Sequence[str]numbers - enforce_
hostnames bool - Enforce hostnames. Default:
false
- allow
Any BooleanName - Allow any name to be used
- allow
Ip BooleanSans - Allow IP Subject Alternative Names (SAN)
- allow
Subdomains Boolean - Allow subdomains to be created
- allowed
Other List<String>Sans - ) List of allowed other SANs. Specifying a single '*' entry will allow any other sans
- allowed
Uri List<String>Sans - ) List of allowed
URI SANs. Values can contain glob patterns (e.g.
spiffe://hostname/*) - client
Flag Boolean - key
Bits Number - Key length. Typically
384foreckey types. - key
Type String - The key type. Values [
ec,rsa] - name String
- The role name. This is used for lookup
- server
Flag Boolean - allowed
Domains List<String> - ) List of allowed domains
- allowed
Serial List<String>Numbers - enforce
Hostnames Boolean - Enforce hostnames. Default:
false
Package Details
- Repository
- hsdp philips-software/terraform-provider-hsdp
- License
- Notes
- This Pulumi package is based on the
hsdpTerraform Provider.
hsdp 0.65.3 published on Tuesday, Apr 15, 2025 by philips-software