Docs
Packages
HashiCorp Vault v5.11.0, Apr 25 23
HashiCorp Vault v5.11.0, Apr 25 23
vault.AuthBackend
Explore with Pulumi AI
Import
Auth methods can be imported using the path, e.g.
$ pulumi import vault:index/authBackend:AuthBackend example github
Create AuthBackend Resource
new AuthBackend(name: string, args: AuthBackendArgs, opts?: CustomResourceOptions);@overload
def AuthBackend(resource_name: str,
opts: Optional[ResourceOptions] = None,
description: Optional[str] = None,
disable_remount: Optional[bool] = None,
local: Optional[bool] = None,
namespace: Optional[str] = None,
path: Optional[str] = None,
tune: Optional[AuthBackendTuneArgs] = None,
type: Optional[str] = None)
@overload
def AuthBackend(resource_name: str,
args: AuthBackendArgs,
opts: Optional[ResourceOptions] = None)func NewAuthBackend(ctx *Context, name string, args AuthBackendArgs, opts ...ResourceOption) (*AuthBackend, error)public AuthBackend(string name, AuthBackendArgs args, CustomResourceOptions? opts = null)
public AuthBackend(String name, AuthBackendArgs args)
public AuthBackend(String name, AuthBackendArgs args, CustomResourceOptions options)
type: vault:AuthBackend
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.
- name string
- The unique name of the resource.
- args AuthBackendArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- resource_name str
- The unique name of the resource.
- args AuthBackendArgs
- The arguments to resource properties.
- opts ResourceOptions
- Bag of options to control resource's behavior.
- ctx Context
- Context object for the current deployment.
- name string
- The unique name of the resource.
- args AuthBackendArgs
- The arguments to resource properties.
- opts ResourceOption
- Bag of options to control resource's behavior.
- name string
- The unique name of the resource.
- args AuthBackendArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- name String
- The unique name of the resource.
- args AuthBackendArgs
- The arguments to resource properties.
- options CustomResourceOptions
- Bag of options to control resource's behavior.
AuthBackend Resource Properties
To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.
Inputs
The AuthBackend resource accepts the following input properties:
- Type string
The name of the auth method type.
- Description string
A description of the auth method.
- Disable
Remount bool If set, opts out of mount migration on path updates. See here for more info on Mount Migration
- Local bool
Specifies if the auth method is local only.
- Namespace string
The namespace to provision the resource in. The value should not contain leading or trailing forward slashes. The
namespaceis always relative to the provider's configured namespace. Available only for Vault Enterprise.- Path string
The path to mount the auth method — this defaults to the name of the type.
- Tune
Auth
Backend Tune Args Extra configuration block. Structure is documented below.
- Type string
The name of the auth method type.
- Description string
A description of the auth method.
- Disable
Remount bool If set, opts out of mount migration on path updates. See here for more info on Mount Migration
- Local bool
Specifies if the auth method is local only.
- Namespace string
The namespace to provision the resource in. The value should not contain leading or trailing forward slashes. The
namespaceis always relative to the provider's configured namespace. Available only for Vault Enterprise.- Path string
The path to mount the auth method — this defaults to the name of the type.
- Tune
Auth
Backend Tune Args Extra configuration block. Structure is documented below.
- type String
The name of the auth method type.
- description String
A description of the auth method.
- disable
Remount Boolean If set, opts out of mount migration on path updates. See here for more info on Mount Migration
- local Boolean
Specifies if the auth method is local only.
- namespace String
The namespace to provision the resource in. The value should not contain leading or trailing forward slashes. The
namespaceis always relative to the provider's configured namespace. Available only for Vault Enterprise.- path String
The path to mount the auth method — this defaults to the name of the type.
- tune
Auth
Backend Tune Args Extra configuration block. Structure is documented below.
- type string
The name of the auth method type.
- description string
A description of the auth method.
- disable
Remount boolean If set, opts out of mount migration on path updates. See here for more info on Mount Migration
- local boolean
Specifies if the auth method is local only.
- namespace string
The namespace to provision the resource in. The value should not contain leading or trailing forward slashes. The
namespaceis always relative to the provider's configured namespace. Available only for Vault Enterprise.- path string
The path to mount the auth method — this defaults to the name of the type.
- tune
Auth
Backend Tune Args Extra configuration block. Structure is documented below.
- type str
The name of the auth method type.
- description str
A description of the auth method.
- disable_
remount bool If set, opts out of mount migration on path updates. See here for more info on Mount Migration
- local bool
Specifies if the auth method is local only.
- namespace str
The namespace to provision the resource in. The value should not contain leading or trailing forward slashes. The
namespaceis always relative to the provider's configured namespace. Available only for Vault Enterprise.- path str
The path to mount the auth method — this defaults to the name of the type.
- tune
Auth
Backend Tune Args Extra configuration block. Structure is documented below.
- type String
The name of the auth method type.
- description String
A description of the auth method.
- disable
Remount Boolean If set, opts out of mount migration on path updates. See here for more info on Mount Migration
- local Boolean
Specifies if the auth method is local only.
- namespace String
The namespace to provision the resource in. The value should not contain leading or trailing forward slashes. The
namespaceis always relative to the provider's configured namespace. Available only for Vault Enterprise.- path String
The path to mount the auth method — this defaults to the name of the type.
- tune Property Map
Extra configuration block. Structure is documented below.
Outputs
All input properties are implicitly available as output properties. Additionally, the AuthBackend resource produces the following output properties:
Look up Existing AuthBackend Resource
Get an existing AuthBackend resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.
public static get(name: string, id: Input<ID>, state?: AuthBackendState, opts?: CustomResourceOptions): AuthBackend@staticmethod
def get(resource_name: str,
id: str,
opts: Optional[ResourceOptions] = None,
accessor: Optional[str] = None,
description: Optional[str] = None,
disable_remount: Optional[bool] = None,
local: Optional[bool] = None,
namespace: Optional[str] = None,
path: Optional[str] = None,
tune: Optional[AuthBackendTuneArgs] = None,
type: Optional[str] = None) -> AuthBackendfunc GetAuthBackend(ctx *Context, name string, id IDInput, state *AuthBackendState, opts ...ResourceOption) (*AuthBackend, error)public static AuthBackend Get(string name, Input<string> id, AuthBackendState? state, CustomResourceOptions? opts = null)public static AuthBackend get(String name, Output<String> id, AuthBackendState state, CustomResourceOptions options)Resource lookup is not supported in YAML- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- resource_name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- Accessor string
The accessor for this auth method
- Description string
A description of the auth method.
- Disable
Remount bool If set, opts out of mount migration on path updates. See here for more info on Mount Migration
- Local bool
Specifies if the auth method is local only.
- Namespace string
The namespace to provision the resource in. The value should not contain leading or trailing forward slashes. The
namespaceis always relative to the provider's configured namespace. Available only for Vault Enterprise.- Path string
The path to mount the auth method — this defaults to the name of the type.
- Tune
Auth
Backend Tune Args Extra configuration block. Structure is documented below.
- Type string
The name of the auth method type.
- Accessor string
The accessor for this auth method
- Description string
A description of the auth method.
- Disable
Remount bool If set, opts out of mount migration on path updates. See here for more info on Mount Migration
- Local bool
Specifies if the auth method is local only.
- Namespace string
The namespace to provision the resource in. The value should not contain leading or trailing forward slashes. The
namespaceis always relative to the provider's configured namespace. Available only for Vault Enterprise.- Path string
The path to mount the auth method — this defaults to the name of the type.
- Tune
Auth
Backend Tune Args Extra configuration block. Structure is documented below.
- Type string
The name of the auth method type.
- accessor String
The accessor for this auth method
- description String
A description of the auth method.
- disable
Remount Boolean If set, opts out of mount migration on path updates. See here for more info on Mount Migration
- local Boolean
Specifies if the auth method is local only.
- namespace String
The namespace to provision the resource in. The value should not contain leading or trailing forward slashes. The
namespaceis always relative to the provider's configured namespace. Available only for Vault Enterprise.- path String
The path to mount the auth method — this defaults to the name of the type.
- tune
Auth
Backend Tune Args Extra configuration block. Structure is documented below.
- type String
The name of the auth method type.
- accessor string
The accessor for this auth method
- description string
A description of the auth method.
- disable
Remount boolean If set, opts out of mount migration on path updates. See here for more info on Mount Migration
- local boolean
Specifies if the auth method is local only.
- namespace string
The namespace to provision the resource in. The value should not contain leading or trailing forward slashes. The
namespaceis always relative to the provider's configured namespace. Available only for Vault Enterprise.- path string
The path to mount the auth method — this defaults to the name of the type.
- tune
Auth
Backend Tune Args Extra configuration block. Structure is documented below.
- type string
The name of the auth method type.
- accessor str
The accessor for this auth method
- description str
A description of the auth method.
- disable_
remount bool If set, opts out of mount migration on path updates. See here for more info on Mount Migration
- local bool
Specifies if the auth method is local only.
- namespace str
The namespace to provision the resource in. The value should not contain leading or trailing forward slashes. The
namespaceis always relative to the provider's configured namespace. Available only for Vault Enterprise.- path str
The path to mount the auth method — this defaults to the name of the type.
- tune
Auth
Backend Tune Args Extra configuration block. Structure is documented below.
- type str
The name of the auth method type.
- accessor String
The accessor for this auth method
- description String
A description of the auth method.
- disable
Remount Boolean If set, opts out of mount migration on path updates. See here for more info on Mount Migration
- local Boolean
Specifies if the auth method is local only.
- namespace String
The namespace to provision the resource in. The value should not contain leading or trailing forward slashes. The
namespaceis always relative to the provider's configured namespace. Available only for Vault Enterprise.- path String
The path to mount the auth method — this defaults to the name of the type.
- tune Property Map
Extra configuration block. Structure is documented below.
- type String
The name of the auth method type.
Supporting Types
AuthBackendTune
- Allowed
Response List<string>Headers List of headers to whitelist and allowing a plugin to include them in the response.
- Audit
Non List<string>Hmac Request Keys Specifies the list of keys that will not be HMAC'd by audit devices in the request data object.
- Audit
Non List<string>Hmac Response Keys Specifies the list of keys that will not be HMAC'd by audit devices in the response data object.
- Default
Lease stringTtl Specifies the default time-to-live. If set, this overrides the global default. Must be a valid duration string
- Listing
Visibility string Specifies whether to show this mount in the UI-specific listing endpoint. Valid values are "unauth" or "hidden".
- Max
Lease stringTtl Specifies the maximum time-to-live. If set, this overrides the global default. Must be a valid duration string
- Passthrough
Request List<string>Headers List of headers to whitelist and pass from the request to the backend.
- Token
Type string Specifies the type of tokens that should be returned by the mount. Valid values are "default-service", "default-batch", "service", "batch".
- Allowed
Response []stringHeaders List of headers to whitelist and allowing a plugin to include them in the response.
- Audit
Non []stringHmac Request Keys Specifies the list of keys that will not be HMAC'd by audit devices in the request data object.
- Audit
Non []stringHmac Response Keys Specifies the list of keys that will not be HMAC'd by audit devices in the response data object.
- Default
Lease stringTtl Specifies the default time-to-live. If set, this overrides the global default. Must be a valid duration string
- Listing
Visibility string Specifies whether to show this mount in the UI-specific listing endpoint. Valid values are "unauth" or "hidden".
- Max
Lease stringTtl Specifies the maximum time-to-live. If set, this overrides the global default. Must be a valid duration string
- Passthrough
Request []stringHeaders List of headers to whitelist and pass from the request to the backend.
- Token
Type string Specifies the type of tokens that should be returned by the mount. Valid values are "default-service", "default-batch", "service", "batch".
- allowed
Response List<String>Headers List of headers to whitelist and allowing a plugin to include them in the response.
- audit
Non List<String>Hmac Request Keys Specifies the list of keys that will not be HMAC'd by audit devices in the request data object.
- audit
Non List<String>Hmac Response Keys Specifies the list of keys that will not be HMAC'd by audit devices in the response data object.
- default
Lease StringTtl Specifies the default time-to-live. If set, this overrides the global default. Must be a valid duration string
- listing
Visibility String Specifies whether to show this mount in the UI-specific listing endpoint. Valid values are "unauth" or "hidden".
- max
Lease StringTtl Specifies the maximum time-to-live. If set, this overrides the global default. Must be a valid duration string
- passthrough
Request List<String>Headers List of headers to whitelist and pass from the request to the backend.
- token
Type String Specifies the type of tokens that should be returned by the mount. Valid values are "default-service", "default-batch", "service", "batch".
- allowed
Response string[]Headers List of headers to whitelist and allowing a plugin to include them in the response.
- audit
Non string[]Hmac Request Keys Specifies the list of keys that will not be HMAC'd by audit devices in the request data object.
- audit
Non string[]Hmac Response Keys Specifies the list of keys that will not be HMAC'd by audit devices in the response data object.
- default
Lease stringTtl Specifies the default time-to-live. If set, this overrides the global default. Must be a valid duration string
- listing
Visibility string Specifies whether to show this mount in the UI-specific listing endpoint. Valid values are "unauth" or "hidden".
- max
Lease stringTtl Specifies the maximum time-to-live. If set, this overrides the global default. Must be a valid duration string
- passthrough
Request string[]Headers List of headers to whitelist and pass from the request to the backend.
- token
Type string Specifies the type of tokens that should be returned by the mount. Valid values are "default-service", "default-batch", "service", "batch".
- allowed_
response_ Sequence[str]headers List of headers to whitelist and allowing a plugin to include them in the response.
- audit_
non_ Sequence[str]hmac_ request_ keys Specifies the list of keys that will not be HMAC'd by audit devices in the request data object.
- audit_
non_ Sequence[str]hmac_ response_ keys Specifies the list of keys that will not be HMAC'd by audit devices in the response data object.
- default_
lease_ strttl Specifies the default time-to-live. If set, this overrides the global default. Must be a valid duration string
- listing_
visibility str Specifies whether to show this mount in the UI-specific listing endpoint. Valid values are "unauth" or "hidden".
- max_
lease_ strttl Specifies the maximum time-to-live. If set, this overrides the global default. Must be a valid duration string
- passthrough_
request_ Sequence[str]headers List of headers to whitelist and pass from the request to the backend.
- token_
type str Specifies the type of tokens that should be returned by the mount. Valid values are "default-service", "default-batch", "service", "batch".
- allowed
Response List<String>Headers List of headers to whitelist and allowing a plugin to include them in the response.
- audit
Non List<String>Hmac Request Keys Specifies the list of keys that will not be HMAC'd by audit devices in the request data object.
- audit
Non List<String>Hmac Response Keys Specifies the list of keys that will not be HMAC'd by audit devices in the response data object.
- default
Lease StringTtl Specifies the default time-to-live. If set, this overrides the global default. Must be a valid duration string
- listing
Visibility String Specifies whether to show this mount in the UI-specific listing endpoint. Valid values are "unauth" or "hidden".
- max
Lease StringTtl Specifies the maximum time-to-live. If set, this overrides the global default. Must be a valid duration string
- passthrough
Request List<String>Headers List of headers to whitelist and pass from the request to the backend.
- token
Type String Specifies the type of tokens that should be returned by the mount. Valid values are "default-service", "default-batch", "service", "batch".
Package Details
- Repository
- Vault pulumi/pulumi-vault
- License
- Apache-2.0
- Notes
This Pulumi package is based on the
vaultTerraform Provider.