HashiCorp Vault

v5.0.0 published on Tuesday, Nov 30, 2021 by Pulumi

SecretLibrary

Create a SecretLibrary Resource

new SecretLibrary(name: string, args: SecretLibraryArgs, opts?: CustomResourceOptions);

@overload
def SecretLibrary(resource_name: str,
                  opts: Optional[ResourceOptions] = None,
                  backend: Optional[str] = None,
                  disable_check_in_enforcement: Optional[bool] = None,
                  max_ttl: Optional[int] = None,
                  name: Optional[str] = None,
                  service_account_names: Optional[Sequence[str]] = None,
                  ttl: Optional[int] = None)
@overload
def SecretLibrary(resource_name: str,
                  args: SecretLibraryArgs,
                  opts: Optional[ResourceOptions] = None)

func NewSecretLibrary(ctx *Context, name string, args SecretLibraryArgs, opts ...ResourceOption) (*SecretLibrary, error)

public SecretLibrary(string name, SecretLibraryArgs args, CustomResourceOptions? opts = null)

name string: The unique name of the resource.
args SecretLibraryArgs: The arguments to resource properties.
opts CustomResourceOptions: Bag of options to control resource's behavior.

resource_name str: The unique name of the resource.
args SecretLibraryArgs: The arguments to resource properties.
opts ResourceOptions: Bag of options to control resource's behavior.

ctx Context: Context object for the current deployment.
name string: The unique name of the resource.
args SecretLibraryArgs: The arguments to resource properties.
opts ResourceOption: Bag of options to control resource's behavior.

name string: The unique name of the resource.
args SecretLibraryArgs: The arguments to resource properties.
opts CustomResourceOptions: Bag of options to control resource's behavior.

SecretLibrary Resource Properties

To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.

Inputs

The SecretLibrary resource accepts the following input properties:

Backend string: The mount path for the AD backend.
ServiceAccountNames List<string>: The names of all the service accounts that can be checked out from this set. These service accounts must already exist in Active Directory.
DisableCheckInEnforcement bool: Disable enforcing that service accounts must be checked in by the entity or client token that checked them out.
MaxTtl int: The maximum amount of time, in seconds, a check-out last with renewal before Vault automatically checks it back in.
Name string: The name of the set of service accounts.
Ttl int: The amount of time, in seconds, a single check-out lasts before Vault automatically checks it back in.

Backend string: The mount path for the AD backend.
ServiceAccountNames []string: The names of all the service accounts that can be checked out from this set. These service accounts must already exist in Active Directory.
DisableCheckInEnforcement bool: Disable enforcing that service accounts must be checked in by the entity or client token that checked them out.
MaxTtl int: The maximum amount of time, in seconds, a check-out last with renewal before Vault automatically checks it back in.
Name string: The name of the set of service accounts.
Ttl int: The amount of time, in seconds, a single check-out lasts before Vault automatically checks it back in.

backend string: The mount path for the AD backend.
serviceAccountNames string[]: The names of all the service accounts that can be checked out from this set. These service accounts must already exist in Active Directory.
disableCheckInEnforcement boolean: Disable enforcing that service accounts must be checked in by the entity or client token that checked them out.
maxTtl number: The maximum amount of time, in seconds, a check-out last with renewal before Vault automatically checks it back in.
name string: The name of the set of service accounts.
ttl number: The amount of time, in seconds, a single check-out lasts before Vault automatically checks it back in.

backend str: The mount path for the AD backend.
service_account_names Sequence[str]: The names of all the service accounts that can be checked out from this set. These service accounts must already exist in Active Directory.
disable_check_in_enforcement bool: Disable enforcing that service accounts must be checked in by the entity or client token that checked them out.
max_ttl int: The maximum amount of time, in seconds, a check-out last with renewal before Vault automatically checks it back in.
name str: The name of the set of service accounts.
ttl int: The amount of time, in seconds, a single check-out lasts before Vault automatically checks it back in.

Outputs

All input properties are implicitly available as output properties. Additionally, the SecretLibrary resource produces the following output properties:

Id string: The provider-assigned unique ID for this managed resource.

Id string: The provider-assigned unique ID for this managed resource.

id string: The provider-assigned unique ID for this managed resource.

id str: The provider-assigned unique ID for this managed resource.

Look up an Existing SecretLibrary Resource

Get an existing SecretLibrary resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.

public static get(name: string, id: Input<ID>, state?: SecretLibraryState, opts?: CustomResourceOptions): SecretLibrary

@staticmethod
def get(resource_name: str,
        id: str,
        opts: Optional[ResourceOptions] = None,
        backend: Optional[str] = None,
        disable_check_in_enforcement: Optional[bool] = None,
        max_ttl: Optional[int] = None,
        name: Optional[str] = None,
        service_account_names: Optional[Sequence[str]] = None,
        ttl: Optional[int] = None) -> SecretLibrary

func GetSecretLibrary(ctx *Context, name string, id IDInput, state *SecretLibraryState, opts ...ResourceOption) (*SecretLibrary, error)

public static SecretLibrary Get(string name, Input<string> id, SecretLibraryState? state, CustomResourceOptions? opts = null)

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

resource_name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

The following state arguments are supported:

Backend string: The mount path for the AD backend.
DisableCheckInEnforcement bool: Disable enforcing that service accounts must be checked in by the entity or client token that checked them out.
MaxTtl int: The maximum amount of time, in seconds, a check-out last with renewal before Vault automatically checks it back in.
Name string: The name of the set of service accounts.
ServiceAccountNames List<string>: The names of all the service accounts that can be checked out from this set. These service accounts must already exist in Active Directory.
Ttl int: The amount of time, in seconds, a single check-out lasts before Vault automatically checks it back in.

Backend string: The mount path for the AD backend.
DisableCheckInEnforcement bool: Disable enforcing that service accounts must be checked in by the entity or client token that checked them out.
MaxTtl int: The maximum amount of time, in seconds, a check-out last with renewal before Vault automatically checks it back in.
Name string: The name of the set of service accounts.
ServiceAccountNames []string: The names of all the service accounts that can be checked out from this set. These service accounts must already exist in Active Directory.
Ttl int: The amount of time, in seconds, a single check-out lasts before Vault automatically checks it back in.

backend string: The mount path for the AD backend.
disableCheckInEnforcement boolean: Disable enforcing that service accounts must be checked in by the entity or client token that checked them out.
maxTtl number: The maximum amount of time, in seconds, a check-out last with renewal before Vault automatically checks it back in.
name string: The name of the set of service accounts.
serviceAccountNames string[]: The names of all the service accounts that can be checked out from this set. These service accounts must already exist in Active Directory.
ttl number: The amount of time, in seconds, a single check-out lasts before Vault automatically checks it back in.

backend str: The mount path for the AD backend.
disable_check_in_enforcement bool: Disable enforcing that service accounts must be checked in by the entity or client token that checked them out.
max_ttl int: The maximum amount of time, in seconds, a check-out last with renewal before Vault automatically checks it back in.
name str: The name of the set of service accounts.
service_account_names Sequence[str]: The names of all the service accounts that can be checked out from this set. These service accounts must already exist in Active Directory.
ttl int: The amount of time, in seconds, a single check-out lasts before Vault automatically checks it back in.

Package Details

Repository: https://github.com/pulumi/pulumi-vault
License: Apache-2.0
Notes: This Pulumi package is based on the vault Terraform Provider.