HashiCorp Vault

v5.0.0 published on Tuesday, Nov 30, 2021 by Pulumi

SecretLibrary

Create a SecretLibrary Resource

new SecretLibrary(name: string, args: SecretLibraryArgs, opts?: CustomResourceOptions);
@overload
def SecretLibrary(resource_name: str,
                  opts: Optional[ResourceOptions] = None,
                  backend: Optional[str] = None,
                  disable_check_in_enforcement: Optional[bool] = None,
                  max_ttl: Optional[int] = None,
                  name: Optional[str] = None,
                  service_account_names: Optional[Sequence[str]] = None,
                  ttl: Optional[int] = None)
@overload
def SecretLibrary(resource_name: str,
                  args: SecretLibraryArgs,
                  opts: Optional[ResourceOptions] = None)
func NewSecretLibrary(ctx *Context, name string, args SecretLibraryArgs, opts ...ResourceOption) (*SecretLibrary, error)
public SecretLibrary(string name, SecretLibraryArgs args, CustomResourceOptions? opts = null)
name string
The unique name of the resource.
args SecretLibraryArgs
The arguments to resource properties.
opts CustomResourceOptions
Bag of options to control resource's behavior.
resource_name str
The unique name of the resource.
args SecretLibraryArgs
The arguments to resource properties.
opts ResourceOptions
Bag of options to control resource's behavior.
ctx Context
Context object for the current deployment.
name string
The unique name of the resource.
args SecretLibraryArgs
The arguments to resource properties.
opts ResourceOption
Bag of options to control resource's behavior.
name string
The unique name of the resource.
args SecretLibraryArgs
The arguments to resource properties.
opts CustomResourceOptions
Bag of options to control resource's behavior.

SecretLibrary Resource Properties

To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.

Inputs

The SecretLibrary resource accepts the following input properties:

Backend string
The mount path for the AD backend.
ServiceAccountNames List<string>
The names of all the service accounts that can be checked out from this set. These service accounts must already exist in Active Directory.
DisableCheckInEnforcement bool
Disable enforcing that service accounts must be checked in by the entity or client token that checked them out.
MaxTtl int
The maximum amount of time, in seconds, a check-out last with renewal before Vault automatically checks it back in.
Name string
The name of the set of service accounts.
Ttl int
The amount of time, in seconds, a single check-out lasts before Vault automatically checks it back in.
Backend string
The mount path for the AD backend.
ServiceAccountNames []string
The names of all the service accounts that can be checked out from this set. These service accounts must already exist in Active Directory.
DisableCheckInEnforcement bool
Disable enforcing that service accounts must be checked in by the entity or client token that checked them out.
MaxTtl int
The maximum amount of time, in seconds, a check-out last with renewal before Vault automatically checks it back in.
Name string
The name of the set of service accounts.
Ttl int
The amount of time, in seconds, a single check-out lasts before Vault automatically checks it back in.
backend string
The mount path for the AD backend.
serviceAccountNames string[]
The names of all the service accounts that can be checked out from this set. These service accounts must already exist in Active Directory.
disableCheckInEnforcement boolean
Disable enforcing that service accounts must be checked in by the entity or client token that checked them out.
maxTtl number
The maximum amount of time, in seconds, a check-out last with renewal before Vault automatically checks it back in.
name string
The name of the set of service accounts.
ttl number
The amount of time, in seconds, a single check-out lasts before Vault automatically checks it back in.
backend str
The mount path for the AD backend.
service_account_names Sequence[str]
The names of all the service accounts that can be checked out from this set. These service accounts must already exist in Active Directory.
disable_check_in_enforcement bool
Disable enforcing that service accounts must be checked in by the entity or client token that checked them out.
max_ttl int
The maximum amount of time, in seconds, a check-out last with renewal before Vault automatically checks it back in.
name str
The name of the set of service accounts.
ttl int
The amount of time, in seconds, a single check-out lasts before Vault automatically checks it back in.

Outputs

All input properties are implicitly available as output properties. Additionally, the SecretLibrary resource produces the following output properties:

Id string
The provider-assigned unique ID for this managed resource.
Id string
The provider-assigned unique ID for this managed resource.
id string
The provider-assigned unique ID for this managed resource.
id str
The provider-assigned unique ID for this managed resource.

Look up an Existing SecretLibrary Resource

Get an existing SecretLibrary resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.

public static get(name: string, id: Input<ID>, state?: SecretLibraryState, opts?: CustomResourceOptions): SecretLibrary
@staticmethod
def get(resource_name: str,
        id: str,
        opts: Optional[ResourceOptions] = None,
        backend: Optional[str] = None,
        disable_check_in_enforcement: Optional[bool] = None,
        max_ttl: Optional[int] = None,
        name: Optional[str] = None,
        service_account_names: Optional[Sequence[str]] = None,
        ttl: Optional[int] = None) -> SecretLibrary
func GetSecretLibrary(ctx *Context, name string, id IDInput, state *SecretLibraryState, opts ...ResourceOption) (*SecretLibrary, error)
public static SecretLibrary Get(string name, Input<string> id, SecretLibraryState? state, CustomResourceOptions? opts = null)
name
The unique name of the resulting resource.
id
The unique provider ID of the resource to lookup.
state
Any extra arguments used during the lookup.
opts
A bag of options that control this resource's behavior.
resource_name
The unique name of the resulting resource.
id
The unique provider ID of the resource to lookup.
name
The unique name of the resulting resource.
id
The unique provider ID of the resource to lookup.
state
Any extra arguments used during the lookup.
opts
A bag of options that control this resource's behavior.
name
The unique name of the resulting resource.
id
The unique provider ID of the resource to lookup.
state
Any extra arguments used during the lookup.
opts
A bag of options that control this resource's behavior.

The following state arguments are supported:

Backend string
The mount path for the AD backend.
DisableCheckInEnforcement bool
Disable enforcing that service accounts must be checked in by the entity or client token that checked them out.
MaxTtl int
The maximum amount of time, in seconds, a check-out last with renewal before Vault automatically checks it back in.
Name string
The name of the set of service accounts.
ServiceAccountNames List<string>
The names of all the service accounts that can be checked out from this set. These service accounts must already exist in Active Directory.
Ttl int
The amount of time, in seconds, a single check-out lasts before Vault automatically checks it back in.
Backend string
The mount path for the AD backend.
DisableCheckInEnforcement bool
Disable enforcing that service accounts must be checked in by the entity or client token that checked them out.
MaxTtl int
The maximum amount of time, in seconds, a check-out last with renewal before Vault automatically checks it back in.
Name string
The name of the set of service accounts.
ServiceAccountNames []string
The names of all the service accounts that can be checked out from this set. These service accounts must already exist in Active Directory.
Ttl int
The amount of time, in seconds, a single check-out lasts before Vault automatically checks it back in.
backend string
The mount path for the AD backend.
disableCheckInEnforcement boolean
Disable enforcing that service accounts must be checked in by the entity or client token that checked them out.
maxTtl number
The maximum amount of time, in seconds, a check-out last with renewal before Vault automatically checks it back in.
name string
The name of the set of service accounts.
serviceAccountNames string[]
The names of all the service accounts that can be checked out from this set. These service accounts must already exist in Active Directory.
ttl number
The amount of time, in seconds, a single check-out lasts before Vault automatically checks it back in.
backend str
The mount path for the AD backend.
disable_check_in_enforcement bool
Disable enforcing that service accounts must be checked in by the entity or client token that checked them out.
max_ttl int
The maximum amount of time, in seconds, a check-out last with renewal before Vault automatically checks it back in.
name str
The name of the set of service accounts.
service_account_names Sequence[str]
The names of all the service accounts that can be checked out from this set. These service accounts must already exist in Active Directory.
ttl int
The amount of time, in seconds, a single check-out lasts before Vault automatically checks it back in.

Package Details

Repository
https://github.com/pulumi/pulumi-vault
License
Apache-2.0
Notes
This Pulumi package is based on the vault Terraform Provider.