Docs Home
HashiCorp Vault v6.7.0 published on Thursday, Apr 24, 2025 by Pulumi
vault.RaftSnapshotAgentConfig
Explore with Pulumi AI
Example Usage
Local Storage
import * as pulumi from "@pulumi/pulumi";
import * as vault from "@pulumi/vault";
const localBackups = new vault.RaftSnapshotAgentConfig("local_backups", {
name: "local",
intervalSeconds: 86400,
retain: 7,
pathPrefix: "/opt/vault/snapshots/",
storageType: "local",
localMaxSpace: 10000000,
});
import pulumi
import pulumi_vault as vault
local_backups = vault.RaftSnapshotAgentConfig("local_backups",
name="local",
interval_seconds=86400,
retain=7,
path_prefix="/opt/vault/snapshots/",
storage_type="local",
local_max_space=10000000)
package main
import (
"github.com/pulumi/pulumi-vault/sdk/v6/go/vault"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
_, err := vault.NewRaftSnapshotAgentConfig(ctx, "local_backups", &vault.RaftSnapshotAgentConfigArgs{
Name: pulumi.String("local"),
IntervalSeconds: pulumi.Int(86400),
Retain: pulumi.Int(7),
PathPrefix: pulumi.String("/opt/vault/snapshots/"),
StorageType: pulumi.String("local"),
LocalMaxSpace: pulumi.Int(10000000),
})
if err != nil {
return err
}
return nil
})
}
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using Vault = Pulumi.Vault;
return await Deployment.RunAsync(() =>
{
var localBackups = new Vault.RaftSnapshotAgentConfig("local_backups", new()
{
Name = "local",
IntervalSeconds = 86400,
Retain = 7,
PathPrefix = "/opt/vault/snapshots/",
StorageType = "local",
LocalMaxSpace = 10000000,
});
});
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.vault.RaftSnapshotAgentConfig;
import com.pulumi.vault.RaftSnapshotAgentConfigArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
var localBackups = new RaftSnapshotAgentConfig("localBackups", RaftSnapshotAgentConfigArgs.builder()
.name("local")
.intervalSeconds(86400)
.retain(7)
.pathPrefix("/opt/vault/snapshots/")
.storageType("local")
.localMaxSpace(10000000)
.build());
}
}
resources:
localBackups:
type: vault:RaftSnapshotAgentConfig
name: local_backups
properties:
name: local
intervalSeconds: 86400 # 24h
retain: 7
pathPrefix: /opt/vault/snapshots/
storageType: local
localMaxSpace: 1e+07
AWS S3
import * as pulumi from "@pulumi/pulumi";
import * as aws from "@pulumi/aws";
import * as vault from "@pulumi/vault";
const config = new pulumi.Config();
const awsAccessKeyId = config.requireObject<any>("awsAccessKeyId");
const awsSecretAccessKey = config.requireObject<any>("awsSecretAccessKey");
const current = aws.getRegion({});
const s3Backups = new vault.RaftSnapshotAgentConfig("s3_backups", {
name: "s3",
intervalSeconds: 86400,
retain: 7,
pathPrefix: "/path/in/bucket",
storageType: "aws-s3",
awsS3Bucket: "my-bucket",
awsS3Region: current.then(current => current.name),
awsAccessKeyId: awsAccessKeyId,
awsSecretAccessKey: awsSecretAccessKey,
awsS3EnableKms: true,
});
import pulumi
import pulumi_aws as aws
import pulumi_vault as vault
config = pulumi.Config()
aws_access_key_id = config.require_object("awsAccessKeyId")
aws_secret_access_key = config.require_object("awsSecretAccessKey")
current = aws.get_region()
s3_backups = vault.RaftSnapshotAgentConfig("s3_backups",
name="s3",
interval_seconds=86400,
retain=7,
path_prefix="/path/in/bucket",
storage_type="aws-s3",
aws_s3_bucket="my-bucket",
aws_s3_region=current.name,
aws_access_key_id=aws_access_key_id,
aws_secret_access_key=aws_secret_access_key,
aws_s3_enable_kms=True)
package main
import (
"github.com/pulumi/pulumi-aws/sdk/v5/go/aws"
"github.com/pulumi/pulumi-vault/sdk/v6/go/vault"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi/config"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
cfg := config.New(ctx, "")
awsAccessKeyId := cfg.RequireObject("awsAccessKeyId")
awsSecretAccessKey := cfg.RequireObject("awsSecretAccessKey")
current, err := aws.GetRegion(ctx, &aws.GetRegionArgs{}, nil)
if err != nil {
return err
}
_, err = vault.NewRaftSnapshotAgentConfig(ctx, "s3_backups", &vault.RaftSnapshotAgentConfigArgs{
Name: pulumi.String("s3"),
IntervalSeconds: pulumi.Int(86400),
Retain: pulumi.Int(7),
PathPrefix: pulumi.String("/path/in/bucket"),
StorageType: pulumi.String("aws-s3"),
AwsS3Bucket: pulumi.String("my-bucket"),
AwsS3Region: pulumi.String(current.Name),
AwsAccessKeyId: pulumi.Any(awsAccessKeyId),
AwsSecretAccessKey: pulumi.Any(awsSecretAccessKey),
AwsS3EnableKms: pulumi.Bool(true),
})
if err != nil {
return err
}
return nil
})
}
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using Aws = Pulumi.Aws;
using Vault = Pulumi.Vault;
return await Deployment.RunAsync(() =>
{
var config = new Config();
var awsAccessKeyId = config.RequireObject<dynamic>("awsAccessKeyId");
var awsSecretAccessKey = config.RequireObject<dynamic>("awsSecretAccessKey");
var current = Aws.GetRegion.Invoke();
var s3Backups = new Vault.RaftSnapshotAgentConfig("s3_backups", new()
{
Name = "s3",
IntervalSeconds = 86400,
Retain = 7,
PathPrefix = "/path/in/bucket",
StorageType = "aws-s3",
AwsS3Bucket = "my-bucket",
AwsS3Region = current.Apply(getRegionResult => getRegionResult.Name),
AwsAccessKeyId = awsAccessKeyId,
AwsSecretAccessKey = awsSecretAccessKey,
AwsS3EnableKms = true,
});
});
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.aws.AwsFunctions;
import com.pulumi.aws.inputs.GetRegionArgs;
import com.pulumi.vault.RaftSnapshotAgentConfig;
import com.pulumi.vault.RaftSnapshotAgentConfigArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
final var config = ctx.config();
final var awsAccessKeyId = config.get("awsAccessKeyId");
final var awsSecretAccessKey = config.get("awsSecretAccessKey");
final var current = AwsFunctions.getRegion(GetRegionArgs.builder()
.build());
var s3Backups = new RaftSnapshotAgentConfig("s3Backups", RaftSnapshotAgentConfigArgs.builder()
.name("s3")
.intervalSeconds(86400)
.retain(7)
.pathPrefix("/path/in/bucket")
.storageType("aws-s3")
.awsS3Bucket("my-bucket")
.awsS3Region(current.name())
.awsAccessKeyId(awsAccessKeyId)
.awsSecretAccessKey(awsSecretAccessKey)
.awsS3EnableKms(true)
.build());
}
}
configuration:
awsAccessKeyId:
type: dynamic
awsSecretAccessKey:
type: dynamic
resources:
s3Backups:
type: vault:RaftSnapshotAgentConfig
name: s3_backups
properties:
name: s3
intervalSeconds: 86400 # 24h
retain: 7
pathPrefix: /path/in/bucket
storageType: aws-s3
awsS3Bucket: my-bucket
awsS3Region: ${current.name}
awsAccessKeyId: ${awsAccessKeyId}
awsSecretAccessKey: ${awsSecretAccessKey}
awsS3EnableKms: true
variables:
current:
fn::invoke:
function: aws:getRegion
arguments: {}
Azure BLOB
import * as pulumi from "@pulumi/pulumi";
import * as vault from "@pulumi/vault";
const config = new pulumi.Config();
const azureAccountName = config.requireObject<any>("azureAccountName");
const azureAccountKey = config.requireObject<any>("azureAccountKey");
const azureBackups = new vault.RaftSnapshotAgentConfig("azure_backups", {
name: "azure_backup",
intervalSeconds: 86400,
retain: 7,
pathPrefix: "/",
storageType: "azure-blob",
azureContainerName: "vault-blob",
azureAccountName: azureAccountName,
azureAccountKey: azureAccountKey,
});
import pulumi
import pulumi_vault as vault
config = pulumi.Config()
azure_account_name = config.require_object("azureAccountName")
azure_account_key = config.require_object("azureAccountKey")
azure_backups = vault.RaftSnapshotAgentConfig("azure_backups",
name="azure_backup",
interval_seconds=86400,
retain=7,
path_prefix="/",
storage_type="azure-blob",
azure_container_name="vault-blob",
azure_account_name=azure_account_name,
azure_account_key=azure_account_key)
package main
import (
"github.com/pulumi/pulumi-vault/sdk/v6/go/vault"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi/config"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
cfg := config.New(ctx, "")
azureAccountName := cfg.RequireObject("azureAccountName")
azureAccountKey := cfg.RequireObject("azureAccountKey")
_, err := vault.NewRaftSnapshotAgentConfig(ctx, "azure_backups", &vault.RaftSnapshotAgentConfigArgs{
Name: pulumi.String("azure_backup"),
IntervalSeconds: pulumi.Int(86400),
Retain: pulumi.Int(7),
PathPrefix: pulumi.String("/"),
StorageType: pulumi.String("azure-blob"),
AzureContainerName: pulumi.String("vault-blob"),
AzureAccountName: pulumi.Any(azureAccountName),
AzureAccountKey: pulumi.Any(azureAccountKey),
})
if err != nil {
return err
}
return nil
})
}
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using Vault = Pulumi.Vault;
return await Deployment.RunAsync(() =>
{
var config = new Config();
var azureAccountName = config.RequireObject<dynamic>("azureAccountName");
var azureAccountKey = config.RequireObject<dynamic>("azureAccountKey");
var azureBackups = new Vault.RaftSnapshotAgentConfig("azure_backups", new()
{
Name = "azure_backup",
IntervalSeconds = 86400,
Retain = 7,
PathPrefix = "/",
StorageType = "azure-blob",
AzureContainerName = "vault-blob",
AzureAccountName = azureAccountName,
AzureAccountKey = azureAccountKey,
});
});
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.vault.RaftSnapshotAgentConfig;
import com.pulumi.vault.RaftSnapshotAgentConfigArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
final var config = ctx.config();
final var azureAccountName = config.get("azureAccountName");
final var azureAccountKey = config.get("azureAccountKey");
var azureBackups = new RaftSnapshotAgentConfig("azureBackups", RaftSnapshotAgentConfigArgs.builder()
.name("azure_backup")
.intervalSeconds(86400)
.retain(7)
.pathPrefix("/")
.storageType("azure-blob")
.azureContainerName("vault-blob")
.azureAccountName(azureAccountName)
.azureAccountKey(azureAccountKey)
.build());
}
}
configuration:
azureAccountName:
type: dynamic
azureAccountKey:
type: dynamic
resources:
azureBackups:
type: vault:RaftSnapshotAgentConfig
name: azure_backups
properties:
name: azure_backup
intervalSeconds: 86400 # 24h
retain: 7
pathPrefix: /
storageType: azure-blob
azureContainerName: vault-blob
azureAccountName: ${azureAccountName}
azureAccountKey: ${azureAccountKey}
Create RaftSnapshotAgentConfig Resource
Resources are created with functions called constructors. To learn more about declaring and configuring resources, see Resources.
Constructor syntax
new RaftSnapshotAgentConfig(name: string, args: RaftSnapshotAgentConfigArgs, opts?: CustomResourceOptions);@overload
def RaftSnapshotAgentConfig(resource_name: str,
args: RaftSnapshotAgentConfigArgs,
opts: Optional[ResourceOptions] = None)
@overload
def RaftSnapshotAgentConfig(resource_name: str,
opts: Optional[ResourceOptions] = None,
interval_seconds: Optional[int] = None,
storage_type: Optional[str] = None,
path_prefix: Optional[str] = None,
aws_s3_region: Optional[str] = None,
file_prefix: Optional[str] = None,
aws_s3_force_path_style: Optional[bool] = None,
aws_s3_kms_key: Optional[str] = None,
aws_access_key_id: Optional[str] = None,
aws_s3_server_side_encryption: Optional[bool] = None,
aws_secret_access_key: Optional[str] = None,
aws_session_token: Optional[str] = None,
azure_account_key: Optional[str] = None,
azure_account_name: Optional[str] = None,
azure_blob_environment: Optional[str] = None,
azure_container_name: Optional[str] = None,
azure_endpoint: Optional[str] = None,
aws_s3_endpoint: Optional[str] = None,
google_disable_tls: Optional[bool] = None,
google_endpoint: Optional[str] = None,
google_gcs_bucket: Optional[str] = None,
google_service_account_key: Optional[str] = None,
aws_s3_enable_kms: Optional[bool] = None,
local_max_space: Optional[int] = None,
name: Optional[str] = None,
namespace: Optional[str] = None,
aws_s3_disable_tls: Optional[bool] = None,
retain: Optional[int] = None,
aws_s3_bucket: Optional[str] = None)func NewRaftSnapshotAgentConfig(ctx *Context, name string, args RaftSnapshotAgentConfigArgs, opts ...ResourceOption) (*RaftSnapshotAgentConfig, error)public RaftSnapshotAgentConfig(string name, RaftSnapshotAgentConfigArgs args, CustomResourceOptions? opts = null)
public RaftSnapshotAgentConfig(String name, RaftSnapshotAgentConfigArgs args)
public RaftSnapshotAgentConfig(String name, RaftSnapshotAgentConfigArgs args, CustomResourceOptions options)
type: vault:RaftSnapshotAgentConfig
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.
Parameters
- name string
- The unique name of the resource.
- args RaftSnapshotAgentConfigArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- resource_name str
- The unique name of the resource.
- args RaftSnapshotAgentConfigArgs
- The arguments to resource properties.
- opts ResourceOptions
- Bag of options to control resource's behavior.
- ctx Context
- Context object for the current deployment.
- name string
- The unique name of the resource.
- args RaftSnapshotAgentConfigArgs
- The arguments to resource properties.
- opts ResourceOption
- Bag of options to control resource's behavior.
- name string
- The unique name of the resource.
- args RaftSnapshotAgentConfigArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- name String
- The unique name of the resource.
- args RaftSnapshotAgentConfigArgs
- The arguments to resource properties.
- options CustomResourceOptions
- Bag of options to control resource's behavior.
Constructor example
The following reference example uses placeholder values for all input properties.
var raftSnapshotAgentConfigResource = new Vault.RaftSnapshotAgentConfig("raftSnapshotAgentConfigResource", new()
{
IntervalSeconds = 0,
StorageType = "string",
PathPrefix = "string",
AwsS3Region = "string",
FilePrefix = "string",
AwsS3ForcePathStyle = false,
AwsS3KmsKey = "string",
AwsAccessKeyId = "string",
AwsS3ServerSideEncryption = false,
AwsSecretAccessKey = "string",
AwsSessionToken = "string",
AzureAccountKey = "string",
AzureAccountName = "string",
AzureBlobEnvironment = "string",
AzureContainerName = "string",
AzureEndpoint = "string",
AwsS3Endpoint = "string",
GoogleDisableTls = false,
GoogleEndpoint = "string",
GoogleGcsBucket = "string",
GoogleServiceAccountKey = "string",
AwsS3EnableKms = false,
LocalMaxSpace = 0,
Name = "string",
Namespace = "string",
AwsS3DisableTls = false,
Retain = 0,
AwsS3Bucket = "string",
});
example, err := vault.NewRaftSnapshotAgentConfig(ctx, "raftSnapshotAgentConfigResource", &vault.RaftSnapshotAgentConfigArgs{
IntervalSeconds: pulumi.Int(0),
StorageType: pulumi.String("string"),
PathPrefix: pulumi.String("string"),
AwsS3Region: pulumi.String("string"),
FilePrefix: pulumi.String("string"),
AwsS3ForcePathStyle: pulumi.Bool(false),
AwsS3KmsKey: pulumi.String("string"),
AwsAccessKeyId: pulumi.String("string"),
AwsS3ServerSideEncryption: pulumi.Bool(false),
AwsSecretAccessKey: pulumi.String("string"),
AwsSessionToken: pulumi.String("string"),
AzureAccountKey: pulumi.String("string"),
AzureAccountName: pulumi.String("string"),
AzureBlobEnvironment: pulumi.String("string"),
AzureContainerName: pulumi.String("string"),
AzureEndpoint: pulumi.String("string"),
AwsS3Endpoint: pulumi.String("string"),
GoogleDisableTls: pulumi.Bool(false),
GoogleEndpoint: pulumi.String("string"),
GoogleGcsBucket: pulumi.String("string"),
GoogleServiceAccountKey: pulumi.String("string"),
AwsS3EnableKms: pulumi.Bool(false),
LocalMaxSpace: pulumi.Int(0),
Name: pulumi.String("string"),
Namespace: pulumi.String("string"),
AwsS3DisableTls: pulumi.Bool(false),
Retain: pulumi.Int(0),
AwsS3Bucket: pulumi.String("string"),
})
var raftSnapshotAgentConfigResource = new RaftSnapshotAgentConfig("raftSnapshotAgentConfigResource", RaftSnapshotAgentConfigArgs.builder()
.intervalSeconds(0)
.storageType("string")
.pathPrefix("string")
.awsS3Region("string")
.filePrefix("string")
.awsS3ForcePathStyle(false)
.awsS3KmsKey("string")
.awsAccessKeyId("string")
.awsS3ServerSideEncryption(false)
.awsSecretAccessKey("string")
.awsSessionToken("string")
.azureAccountKey("string")
.azureAccountName("string")
.azureBlobEnvironment("string")
.azureContainerName("string")
.azureEndpoint("string")
.awsS3Endpoint("string")
.googleDisableTls(false)
.googleEndpoint("string")
.googleGcsBucket("string")
.googleServiceAccountKey("string")
.awsS3EnableKms(false)
.localMaxSpace(0)
.name("string")
.namespace("string")
.awsS3DisableTls(false)
.retain(0)
.awsS3Bucket("string")
.build());
raft_snapshot_agent_config_resource = vault.RaftSnapshotAgentConfig("raftSnapshotAgentConfigResource",
interval_seconds=0,
storage_type="string",
path_prefix="string",
aws_s3_region="string",
file_prefix="string",
aws_s3_force_path_style=False,
aws_s3_kms_key="string",
aws_access_key_id="string",
aws_s3_server_side_encryption=False,
aws_secret_access_key="string",
aws_session_token="string",
azure_account_key="string",
azure_account_name="string",
azure_blob_environment="string",
azure_container_name="string",
azure_endpoint="string",
aws_s3_endpoint="string",
google_disable_tls=False,
google_endpoint="string",
google_gcs_bucket="string",
google_service_account_key="string",
aws_s3_enable_kms=False,
local_max_space=0,
name="string",
namespace="string",
aws_s3_disable_tls=False,
retain=0,
aws_s3_bucket="string")
const raftSnapshotAgentConfigResource = new vault.RaftSnapshotAgentConfig("raftSnapshotAgentConfigResource", {
intervalSeconds: 0,
storageType: "string",
pathPrefix: "string",
awsS3Region: "string",
filePrefix: "string",
awsS3ForcePathStyle: false,
awsS3KmsKey: "string",
awsAccessKeyId: "string",
awsS3ServerSideEncryption: false,
awsSecretAccessKey: "string",
awsSessionToken: "string",
azureAccountKey: "string",
azureAccountName: "string",
azureBlobEnvironment: "string",
azureContainerName: "string",
azureEndpoint: "string",
awsS3Endpoint: "string",
googleDisableTls: false,
googleEndpoint: "string",
googleGcsBucket: "string",
googleServiceAccountKey: "string",
awsS3EnableKms: false,
localMaxSpace: 0,
name: "string",
namespace: "string",
awsS3DisableTls: false,
retain: 0,
awsS3Bucket: "string",
});
type: vault:RaftSnapshotAgentConfig
properties:
awsAccessKeyId: string
awsS3Bucket: string
awsS3DisableTls: false
awsS3EnableKms: false
awsS3Endpoint: string
awsS3ForcePathStyle: false
awsS3KmsKey: string
awsS3Region: string
awsS3ServerSideEncryption: false
awsSecretAccessKey: string
awsSessionToken: string
azureAccountKey: string
azureAccountName: string
azureBlobEnvironment: string
azureContainerName: string
azureEndpoint: string
filePrefix: string
googleDisableTls: false
googleEndpoint: string
googleGcsBucket: string
googleServiceAccountKey: string
intervalSeconds: 0
localMaxSpace: 0
name: string
namespace: string
pathPrefix: string
retain: 0
storageType: string
RaftSnapshotAgentConfig Resource Properties
To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.
Inputs
In Python, inputs that are objects can be passed either as argument classes or as dictionary literals.
The RaftSnapshotAgentConfig resource accepts the following input properties:
- Interval
Seconds int <required>- Time (in seconds) between snapshots.- Path
Prefix string <required>- Forstorage_type = "local", the directory to write the snapshots in. For cloud storage types, the bucket prefix to use. Typesazure-s3andgoogle-gcsrequire a trailing/(slash). Typeslocalandaws-s3the trailing/is optional.- Storage
Type string <required>- One of "local", "azure-blob", "aws-s3", or "google-gcs". The remaining parameters described below are all specific to the selectedstorage_typeand prefixed accordingly.- Aws
Access stringKey Id - AWS access key ID.
- Aws
S3Bucket string - S3 bucket to write snapshots to.
- Aws
S3Disable boolTls - Disable TLS for the S3 endpoint. This should only be used for testing purposes.
- Aws
S3Enable boolKms - Use KMS to encrypt bucket contents.
- Aws
S3Endpoint string - AWS endpoint. This is typically only set when using a non-AWS S3 implementation like Minio.
- Aws
S3Force boolPath Style - Use the endpoint/bucket URL style instead of bucket.endpoint.
- Aws
S3Kms stringKey - Use named KMS key, when aws_s3_enable_kms=true
- Aws
S3Region string - AWS region bucket is in.
- Aws
S3Server boolSide Encryption - Use AES256 to encrypt bucket contents.
- Aws
Secret stringAccess Key - AWS secret access key.
- Aws
Session stringToken - AWS session token.
- Azure
Account stringKey - Azure account key.
- Azure
Account stringName - Azure account name.
- Azure
Blob stringEnvironment - Azure blob environment.
- Azure
Container stringName - Azure container name to write snapshots to.
- Azure
Endpoint string - Azure blob storage endpoint. This is typically only set when using a non-Azure implementation like Azurite.
- File
Prefix string - Within the directory or bucket
prefix given by
path_prefix, the file or object name of snapshot files will start with this string. - Google
Disable boolTls - Disable TLS for the GCS endpoint.
- Google
Endpoint string - GCS endpoint. This is typically only set when using a non-Google GCS implementation like fake-gcs-server.
- Google
Gcs stringBucket - GCS bucket to write snapshots to.
- Google
Service stringAccount Key - Google service account key in JSON format.
- Local
Max intSpace - The maximum space, in bytes, to use for snapshots.
- Name string
<required>– Name of the configuration to modify.- Namespace string
- The namespace to provision the resource in.
The value should not contain leading or trailing forward slashes.
The
namespaceis always relative to the provider's configured namespace. Available only for Vault Enterprise. - Retain int
- How many snapshots are to be kept; when writing a snapshot, if there are more snapshots already stored than this number, the oldest ones will be deleted.
- Interval
Seconds int <required>- Time (in seconds) between snapshots.- Path
Prefix string <required>- Forstorage_type = "local", the directory to write the snapshots in. For cloud storage types, the bucket prefix to use. Typesazure-s3andgoogle-gcsrequire a trailing/(slash). Typeslocalandaws-s3the trailing/is optional.- Storage
Type string <required>- One of "local", "azure-blob", "aws-s3", or "google-gcs". The remaining parameters described below are all specific to the selectedstorage_typeand prefixed accordingly.- Aws
Access stringKey Id - AWS access key ID.
- Aws
S3Bucket string - S3 bucket to write snapshots to.
- Aws
S3Disable boolTls - Disable TLS for the S3 endpoint. This should only be used for testing purposes.
- Aws
S3Enable boolKms - Use KMS to encrypt bucket contents.
- Aws
S3Endpoint string - AWS endpoint. This is typically only set when using a non-AWS S3 implementation like Minio.
- Aws
S3Force boolPath Style - Use the endpoint/bucket URL style instead of bucket.endpoint.
- Aws
S3Kms stringKey - Use named KMS key, when aws_s3_enable_kms=true
- Aws
S3Region string - AWS region bucket is in.
- Aws
S3Server boolSide Encryption - Use AES256 to encrypt bucket contents.
- Aws
Secret stringAccess Key - AWS secret access key.
- Aws
Session stringToken - AWS session token.
- Azure
Account stringKey - Azure account key.
- Azure
Account stringName - Azure account name.
- Azure
Blob stringEnvironment - Azure blob environment.
- Azure
Container stringName - Azure container name to write snapshots to.
- Azure
Endpoint string - Azure blob storage endpoint. This is typically only set when using a non-Azure implementation like Azurite.
- File
Prefix string - Within the directory or bucket
prefix given by
path_prefix, the file or object name of snapshot files will start with this string. - Google
Disable boolTls - Disable TLS for the GCS endpoint.
- Google
Endpoint string - GCS endpoint. This is typically only set when using a non-Google GCS implementation like fake-gcs-server.
- Google
Gcs stringBucket - GCS bucket to write snapshots to.
- Google
Service stringAccount Key - Google service account key in JSON format.
- Local
Max intSpace - The maximum space, in bytes, to use for snapshots.
- Name string
<required>– Name of the configuration to modify.- Namespace string
- The namespace to provision the resource in.
The value should not contain leading or trailing forward slashes.
The
namespaceis always relative to the provider's configured namespace. Available only for Vault Enterprise. - Retain int
- How many snapshots are to be kept; when writing a snapshot, if there are more snapshots already stored than this number, the oldest ones will be deleted.
- interval
Seconds Integer <required>- Time (in seconds) between snapshots.- path
Prefix String <required>- Forstorage_type = "local", the directory to write the snapshots in. For cloud storage types, the bucket prefix to use. Typesazure-s3andgoogle-gcsrequire a trailing/(slash). Typeslocalandaws-s3the trailing/is optional.- storage
Type String <required>- One of "local", "azure-blob", "aws-s3", or "google-gcs". The remaining parameters described below are all specific to the selectedstorage_typeand prefixed accordingly.- aws
Access StringKey Id - AWS access key ID.
- aws
S3Bucket String - S3 bucket to write snapshots to.
- aws
S3Disable BooleanTls - Disable TLS for the S3 endpoint. This should only be used for testing purposes.
- aws
S3Enable BooleanKms - Use KMS to encrypt bucket contents.
- aws
S3Endpoint String - AWS endpoint. This is typically only set when using a non-AWS S3 implementation like Minio.
- aws
S3Force BooleanPath Style - Use the endpoint/bucket URL style instead of bucket.endpoint.
- aws
S3Kms StringKey - Use named KMS key, when aws_s3_enable_kms=true
- aws
S3Region String - AWS region bucket is in.
- aws
S3Server BooleanSide Encryption - Use AES256 to encrypt bucket contents.
- aws
Secret StringAccess Key - AWS secret access key.
- aws
Session StringToken - AWS session token.
- azure
Account StringKey - Azure account key.
- azure
Account StringName - Azure account name.
- azure
Blob StringEnvironment - Azure blob environment.
- azure
Container StringName - Azure container name to write snapshots to.
- azure
Endpoint String - Azure blob storage endpoint. This is typically only set when using a non-Azure implementation like Azurite.
- file
Prefix String - Within the directory or bucket
prefix given by
path_prefix, the file or object name of snapshot files will start with this string. - google
Disable BooleanTls - Disable TLS for the GCS endpoint.
- google
Endpoint String - GCS endpoint. This is typically only set when using a non-Google GCS implementation like fake-gcs-server.
- google
Gcs StringBucket - GCS bucket to write snapshots to.
- google
Service StringAccount Key - Google service account key in JSON format.
- local
Max IntegerSpace - The maximum space, in bytes, to use for snapshots.
- name String
<required>– Name of the configuration to modify.- namespace String
- The namespace to provision the resource in.
The value should not contain leading or trailing forward slashes.
The
namespaceis always relative to the provider's configured namespace. Available only for Vault Enterprise. - retain Integer
- How many snapshots are to be kept; when writing a snapshot, if there are more snapshots already stored than this number, the oldest ones will be deleted.
- interval
Seconds number <required>- Time (in seconds) between snapshots.- path
Prefix string <required>- Forstorage_type = "local", the directory to write the snapshots in. For cloud storage types, the bucket prefix to use. Typesazure-s3andgoogle-gcsrequire a trailing/(slash). Typeslocalandaws-s3the trailing/is optional.- storage
Type string <required>- One of "local", "azure-blob", "aws-s3", or "google-gcs". The remaining parameters described below are all specific to the selectedstorage_typeand prefixed accordingly.- aws
Access stringKey Id - AWS access key ID.
- aws
S3Bucket string - S3 bucket to write snapshots to.
- aws
S3Disable booleanTls - Disable TLS for the S3 endpoint. This should only be used for testing purposes.
- aws
S3Enable booleanKms - Use KMS to encrypt bucket contents.
- aws
S3Endpoint string - AWS endpoint. This is typically only set when using a non-AWS S3 implementation like Minio.
- aws
S3Force booleanPath Style - Use the endpoint/bucket URL style instead of bucket.endpoint.
- aws
S3Kms stringKey - Use named KMS key, when aws_s3_enable_kms=true
- aws
S3Region string - AWS region bucket is in.
- aws
S3Server booleanSide Encryption - Use AES256 to encrypt bucket contents.
- aws
Secret stringAccess Key - AWS secret access key.
- aws
Session stringToken - AWS session token.
- azure
Account stringKey - Azure account key.
- azure
Account stringName - Azure account name.
- azure
Blob stringEnvironment - Azure blob environment.
- azure
Container stringName - Azure container name to write snapshots to.
- azure
Endpoint string - Azure blob storage endpoint. This is typically only set when using a non-Azure implementation like Azurite.
- file
Prefix string - Within the directory or bucket
prefix given by
path_prefix, the file or object name of snapshot files will start with this string. - google
Disable booleanTls - Disable TLS for the GCS endpoint.
- google
Endpoint string - GCS endpoint. This is typically only set when using a non-Google GCS implementation like fake-gcs-server.
- google
Gcs stringBucket - GCS bucket to write snapshots to.
- google
Service stringAccount Key - Google service account key in JSON format.
- local
Max numberSpace - The maximum space, in bytes, to use for snapshots.
- name string
<required>– Name of the configuration to modify.- namespace string
- The namespace to provision the resource in.
The value should not contain leading or trailing forward slashes.
The
namespaceis always relative to the provider's configured namespace. Available only for Vault Enterprise. - retain number
- How many snapshots are to be kept; when writing a snapshot, if there are more snapshots already stored than this number, the oldest ones will be deleted.
- interval_
seconds int <required>- Time (in seconds) between snapshots.- path_
prefix str <required>- Forstorage_type = "local", the directory to write the snapshots in. For cloud storage types, the bucket prefix to use. Typesazure-s3andgoogle-gcsrequire a trailing/(slash). Typeslocalandaws-s3the trailing/is optional.- storage_
type str <required>- One of "local", "azure-blob", "aws-s3", or "google-gcs". The remaining parameters described below are all specific to the selectedstorage_typeand prefixed accordingly.- aws_
access_ strkey_ id - AWS access key ID.
- aws_
s3_ strbucket - S3 bucket to write snapshots to.
- aws_
s3_ booldisable_ tls - Disable TLS for the S3 endpoint. This should only be used for testing purposes.
- aws_
s3_ boolenable_ kms - Use KMS to encrypt bucket contents.
- aws_
s3_ strendpoint - AWS endpoint. This is typically only set when using a non-AWS S3 implementation like Minio.
- aws_
s3_ boolforce_ path_ style - Use the endpoint/bucket URL style instead of bucket.endpoint.
- aws_
s3_ strkms_ key - Use named KMS key, when aws_s3_enable_kms=true
- aws_
s3_ strregion - AWS region bucket is in.
- aws_
s3_ boolserver_ side_ encryption - Use AES256 to encrypt bucket contents.
- aws_
secret_ straccess_ key - AWS secret access key.
- aws_
session_ strtoken - AWS session token.
- azure_
account_ strkey - Azure account key.
- azure_
account_ strname - Azure account name.
- azure_
blob_ strenvironment - Azure blob environment.
- azure_
container_ strname - Azure container name to write snapshots to.
- azure_
endpoint str - Azure blob storage endpoint. This is typically only set when using a non-Azure implementation like Azurite.
- file_
prefix str - Within the directory or bucket
prefix given by
path_prefix, the file or object name of snapshot files will start with this string. - google_
disable_ booltls - Disable TLS for the GCS endpoint.
- google_
endpoint str - GCS endpoint. This is typically only set when using a non-Google GCS implementation like fake-gcs-server.
- google_
gcs_ strbucket - GCS bucket to write snapshots to.
- google_
service_ straccount_ key - Google service account key in JSON format.
- local_
max_ intspace - The maximum space, in bytes, to use for snapshots.
- name str
<required>– Name of the configuration to modify.- namespace str
- The namespace to provision the resource in.
The value should not contain leading or trailing forward slashes.
The
namespaceis always relative to the provider's configured namespace. Available only for Vault Enterprise. - retain int
- How many snapshots are to be kept; when writing a snapshot, if there are more snapshots already stored than this number, the oldest ones will be deleted.
- interval
Seconds Number <required>- Time (in seconds) between snapshots.- path
Prefix String <required>- Forstorage_type = "local", the directory to write the snapshots in. For cloud storage types, the bucket prefix to use. Typesazure-s3andgoogle-gcsrequire a trailing/(slash). Typeslocalandaws-s3the trailing/is optional.- storage
Type String <required>- One of "local", "azure-blob", "aws-s3", or "google-gcs". The remaining parameters described below are all specific to the selectedstorage_typeand prefixed accordingly.- aws
Access StringKey Id - AWS access key ID.
- aws
S3Bucket String - S3 bucket to write snapshots to.
- aws
S3Disable BooleanTls - Disable TLS for the S3 endpoint. This should only be used for testing purposes.
- aws
S3Enable BooleanKms - Use KMS to encrypt bucket contents.
- aws
S3Endpoint String - AWS endpoint. This is typically only set when using a non-AWS S3 implementation like Minio.
- aws
S3Force BooleanPath Style - Use the endpoint/bucket URL style instead of bucket.endpoint.
- aws
S3Kms StringKey - Use named KMS key, when aws_s3_enable_kms=true
- aws
S3Region String - AWS region bucket is in.
- aws
S3Server BooleanSide Encryption - Use AES256 to encrypt bucket contents.
- aws
Secret StringAccess Key - AWS secret access key.
- aws
Session StringToken - AWS session token.
- azure
Account StringKey - Azure account key.
- azure
Account StringName - Azure account name.
- azure
Blob StringEnvironment - Azure blob environment.
- azure
Container StringName - Azure container name to write snapshots to.
- azure
Endpoint String - Azure blob storage endpoint. This is typically only set when using a non-Azure implementation like Azurite.
- file
Prefix String - Within the directory or bucket
prefix given by
path_prefix, the file or object name of snapshot files will start with this string. - google
Disable BooleanTls - Disable TLS for the GCS endpoint.
- google
Endpoint String - GCS endpoint. This is typically only set when using a non-Google GCS implementation like fake-gcs-server.
- google
Gcs StringBucket - GCS bucket to write snapshots to.
- google
Service StringAccount Key - Google service account key in JSON format.
- local
Max NumberSpace - The maximum space, in bytes, to use for snapshots.
- name String
<required>– Name of the configuration to modify.- namespace String
- The namespace to provision the resource in.
The value should not contain leading or trailing forward slashes.
The
namespaceis always relative to the provider's configured namespace. Available only for Vault Enterprise. - retain Number
- How many snapshots are to be kept; when writing a snapshot, if there are more snapshots already stored than this number, the oldest ones will be deleted.
Outputs
All input properties are implicitly available as output properties. Additionally, the RaftSnapshotAgentConfig resource produces the following output properties:
- Id string
- The provider-assigned unique ID for this managed resource.
- Id string
- The provider-assigned unique ID for this managed resource.
- id String
- The provider-assigned unique ID for this managed resource.
- id string
- The provider-assigned unique ID for this managed resource.
- id str
- The provider-assigned unique ID for this managed resource.
- id String
- The provider-assigned unique ID for this managed resource.
Look up Existing RaftSnapshotAgentConfig Resource
Get an existing RaftSnapshotAgentConfig resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.
public static get(name: string, id: Input<ID>, state?: RaftSnapshotAgentConfigState, opts?: CustomResourceOptions): RaftSnapshotAgentConfig@staticmethod
def get(resource_name: str,
id: str,
opts: Optional[ResourceOptions] = None,
aws_access_key_id: Optional[str] = None,
aws_s3_bucket: Optional[str] = None,
aws_s3_disable_tls: Optional[bool] = None,
aws_s3_enable_kms: Optional[bool] = None,
aws_s3_endpoint: Optional[str] = None,
aws_s3_force_path_style: Optional[bool] = None,
aws_s3_kms_key: Optional[str] = None,
aws_s3_region: Optional[str] = None,
aws_s3_server_side_encryption: Optional[bool] = None,
aws_secret_access_key: Optional[str] = None,
aws_session_token: Optional[str] = None,
azure_account_key: Optional[str] = None,
azure_account_name: Optional[str] = None,
azure_blob_environment: Optional[str] = None,
azure_container_name: Optional[str] = None,
azure_endpoint: Optional[str] = None,
file_prefix: Optional[str] = None,
google_disable_tls: Optional[bool] = None,
google_endpoint: Optional[str] = None,
google_gcs_bucket: Optional[str] = None,
google_service_account_key: Optional[str] = None,
interval_seconds: Optional[int] = None,
local_max_space: Optional[int] = None,
name: Optional[str] = None,
namespace: Optional[str] = None,
path_prefix: Optional[str] = None,
retain: Optional[int] = None,
storage_type: Optional[str] = None) -> RaftSnapshotAgentConfigfunc GetRaftSnapshotAgentConfig(ctx *Context, name string, id IDInput, state *RaftSnapshotAgentConfigState, opts ...ResourceOption) (*RaftSnapshotAgentConfig, error)public static RaftSnapshotAgentConfig Get(string name, Input<string> id, RaftSnapshotAgentConfigState? state, CustomResourceOptions? opts = null)public static RaftSnapshotAgentConfig get(String name, Output<String> id, RaftSnapshotAgentConfigState state, CustomResourceOptions options)resources: _: type: vault:RaftSnapshotAgentConfig get: id: ${id}- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- resource_name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- Aws
Access stringKey Id - AWS access key ID.
- Aws
S3Bucket string - S3 bucket to write snapshots to.
- Aws
S3Disable boolTls - Disable TLS for the S3 endpoint. This should only be used for testing purposes.
- Aws
S3Enable boolKms - Use KMS to encrypt bucket contents.
- Aws
S3Endpoint string - AWS endpoint. This is typically only set when using a non-AWS S3 implementation like Minio.
- Aws
S3Force boolPath Style - Use the endpoint/bucket URL style instead of bucket.endpoint.
- Aws
S3Kms stringKey - Use named KMS key, when aws_s3_enable_kms=true
- Aws
S3Region string - AWS region bucket is in.
- Aws
S3Server boolSide Encryption - Use AES256 to encrypt bucket contents.
- Aws
Secret stringAccess Key - AWS secret access key.
- Aws
Session stringToken - AWS session token.
- Azure
Account stringKey - Azure account key.
- Azure
Account stringName - Azure account name.
- Azure
Blob stringEnvironment - Azure blob environment.
- Azure
Container stringName - Azure container name to write snapshots to.
- Azure
Endpoint string - Azure blob storage endpoint. This is typically only set when using a non-Azure implementation like Azurite.
- File
Prefix string - Within the directory or bucket
prefix given by
path_prefix, the file or object name of snapshot files will start with this string. - Google
Disable boolTls - Disable TLS for the GCS endpoint.
- Google
Endpoint string - GCS endpoint. This is typically only set when using a non-Google GCS implementation like fake-gcs-server.
- Google
Gcs stringBucket - GCS bucket to write snapshots to.
- Google
Service stringAccount Key - Google service account key in JSON format.
- Interval
Seconds int <required>- Time (in seconds) between snapshots.- Local
Max intSpace - The maximum space, in bytes, to use for snapshots.
- Name string
<required>– Name of the configuration to modify.- Namespace string
- The namespace to provision the resource in.
The value should not contain leading or trailing forward slashes.
The
namespaceis always relative to the provider's configured namespace. Available only for Vault Enterprise. - Path
Prefix string <required>- Forstorage_type = "local", the directory to write the snapshots in. For cloud storage types, the bucket prefix to use. Typesazure-s3andgoogle-gcsrequire a trailing/(slash). Typeslocalandaws-s3the trailing/is optional.- Retain int
- How many snapshots are to be kept; when writing a snapshot, if there are more snapshots already stored than this number, the oldest ones will be deleted.
- Storage
Type string <required>- One of "local", "azure-blob", "aws-s3", or "google-gcs". The remaining parameters described below are all specific to the selectedstorage_typeand prefixed accordingly.
- Aws
Access stringKey Id - AWS access key ID.
- Aws
S3Bucket string - S3 bucket to write snapshots to.
- Aws
S3Disable boolTls - Disable TLS for the S3 endpoint. This should only be used for testing purposes.
- Aws
S3Enable boolKms - Use KMS to encrypt bucket contents.
- Aws
S3Endpoint string - AWS endpoint. This is typically only set when using a non-AWS S3 implementation like Minio.
- Aws
S3Force boolPath Style - Use the endpoint/bucket URL style instead of bucket.endpoint.
- Aws
S3Kms stringKey - Use named KMS key, when aws_s3_enable_kms=true
- Aws
S3Region string - AWS region bucket is in.
- Aws
S3Server boolSide Encryption - Use AES256 to encrypt bucket contents.
- Aws
Secret stringAccess Key - AWS secret access key.
- Aws
Session stringToken - AWS session token.
- Azure
Account stringKey - Azure account key.
- Azure
Account stringName - Azure account name.
- Azure
Blob stringEnvironment - Azure blob environment.
- Azure
Container stringName - Azure container name to write snapshots to.
- Azure
Endpoint string - Azure blob storage endpoint. This is typically only set when using a non-Azure implementation like Azurite.
- File
Prefix string - Within the directory or bucket
prefix given by
path_prefix, the file or object name of snapshot files will start with this string. - Google
Disable boolTls - Disable TLS for the GCS endpoint.
- Google
Endpoint string - GCS endpoint. This is typically only set when using a non-Google GCS implementation like fake-gcs-server.
- Google
Gcs stringBucket - GCS bucket to write snapshots to.
- Google
Service stringAccount Key - Google service account key in JSON format.
- Interval
Seconds int <required>- Time (in seconds) between snapshots.- Local
Max intSpace - The maximum space, in bytes, to use for snapshots.
- Name string
<required>– Name of the configuration to modify.- Namespace string
- The namespace to provision the resource in.
The value should not contain leading or trailing forward slashes.
The
namespaceis always relative to the provider's configured namespace. Available only for Vault Enterprise. - Path
Prefix string <required>- Forstorage_type = "local", the directory to write the snapshots in. For cloud storage types, the bucket prefix to use. Typesazure-s3andgoogle-gcsrequire a trailing/(slash). Typeslocalandaws-s3the trailing/is optional.- Retain int
- How many snapshots are to be kept; when writing a snapshot, if there are more snapshots already stored than this number, the oldest ones will be deleted.
- Storage
Type string <required>- One of "local", "azure-blob", "aws-s3", or "google-gcs". The remaining parameters described below are all specific to the selectedstorage_typeand prefixed accordingly.
- aws
Access StringKey Id - AWS access key ID.
- aws
S3Bucket String - S3 bucket to write snapshots to.
- aws
S3Disable BooleanTls - Disable TLS for the S3 endpoint. This should only be used for testing purposes.
- aws
S3Enable BooleanKms - Use KMS to encrypt bucket contents.
- aws
S3Endpoint String - AWS endpoint. This is typically only set when using a non-AWS S3 implementation like Minio.
- aws
S3Force BooleanPath Style - Use the endpoint/bucket URL style instead of bucket.endpoint.
- aws
S3Kms StringKey - Use named KMS key, when aws_s3_enable_kms=true
- aws
S3Region String - AWS region bucket is in.
- aws
S3Server BooleanSide Encryption - Use AES256 to encrypt bucket contents.
- aws
Secret StringAccess Key - AWS secret access key.
- aws
Session StringToken - AWS session token.
- azure
Account StringKey - Azure account key.
- azure
Account StringName - Azure account name.
- azure
Blob StringEnvironment - Azure blob environment.
- azure
Container StringName - Azure container name to write snapshots to.
- azure
Endpoint String - Azure blob storage endpoint. This is typically only set when using a non-Azure implementation like Azurite.
- file
Prefix String - Within the directory or bucket
prefix given by
path_prefix, the file or object name of snapshot files will start with this string. - google
Disable BooleanTls - Disable TLS for the GCS endpoint.
- google
Endpoint String - GCS endpoint. This is typically only set when using a non-Google GCS implementation like fake-gcs-server.
- google
Gcs StringBucket - GCS bucket to write snapshots to.
- google
Service StringAccount Key - Google service account key in JSON format.
- interval
Seconds Integer <required>- Time (in seconds) between snapshots.- local
Max IntegerSpace - The maximum space, in bytes, to use for snapshots.
- name String
<required>– Name of the configuration to modify.- namespace String
- The namespace to provision the resource in.
The value should not contain leading or trailing forward slashes.
The
namespaceis always relative to the provider's configured namespace. Available only for Vault Enterprise. - path
Prefix String <required>- Forstorage_type = "local", the directory to write the snapshots in. For cloud storage types, the bucket prefix to use. Typesazure-s3andgoogle-gcsrequire a trailing/(slash). Typeslocalandaws-s3the trailing/is optional.- retain Integer
- How many snapshots are to be kept; when writing a snapshot, if there are more snapshots already stored than this number, the oldest ones will be deleted.
- storage
Type String <required>- One of "local", "azure-blob", "aws-s3", or "google-gcs". The remaining parameters described below are all specific to the selectedstorage_typeand prefixed accordingly.
- aws
Access stringKey Id - AWS access key ID.
- aws
S3Bucket string - S3 bucket to write snapshots to.
- aws
S3Disable booleanTls - Disable TLS for the S3 endpoint. This should only be used for testing purposes.
- aws
S3Enable booleanKms - Use KMS to encrypt bucket contents.
- aws
S3Endpoint string - AWS endpoint. This is typically only set when using a non-AWS S3 implementation like Minio.
- aws
S3Force booleanPath Style - Use the endpoint/bucket URL style instead of bucket.endpoint.
- aws
S3Kms stringKey - Use named KMS key, when aws_s3_enable_kms=true
- aws
S3Region string - AWS region bucket is in.
- aws
S3Server booleanSide Encryption - Use AES256 to encrypt bucket contents.
- aws
Secret stringAccess Key - AWS secret access key.
- aws
Session stringToken - AWS session token.
- azure
Account stringKey - Azure account key.
- azure
Account stringName - Azure account name.
- azure
Blob stringEnvironment - Azure blob environment.
- azure
Container stringName - Azure container name to write snapshots to.
- azure
Endpoint string - Azure blob storage endpoint. This is typically only set when using a non-Azure implementation like Azurite.
- file
Prefix string - Within the directory or bucket
prefix given by
path_prefix, the file or object name of snapshot files will start with this string. - google
Disable booleanTls - Disable TLS for the GCS endpoint.
- google
Endpoint string - GCS endpoint. This is typically only set when using a non-Google GCS implementation like fake-gcs-server.
- google
Gcs stringBucket - GCS bucket to write snapshots to.
- google
Service stringAccount Key - Google service account key in JSON format.
- interval
Seconds number <required>- Time (in seconds) between snapshots.- local
Max numberSpace - The maximum space, in bytes, to use for snapshots.
- name string
<required>– Name of the configuration to modify.- namespace string
- The namespace to provision the resource in.
The value should not contain leading or trailing forward slashes.
The
namespaceis always relative to the provider's configured namespace. Available only for Vault Enterprise. - path
Prefix string <required>- Forstorage_type = "local", the directory to write the snapshots in. For cloud storage types, the bucket prefix to use. Typesazure-s3andgoogle-gcsrequire a trailing/(slash). Typeslocalandaws-s3the trailing/is optional.- retain number
- How many snapshots are to be kept; when writing a snapshot, if there are more snapshots already stored than this number, the oldest ones will be deleted.
- storage
Type string <required>- One of "local", "azure-blob", "aws-s3", or "google-gcs". The remaining parameters described below are all specific to the selectedstorage_typeand prefixed accordingly.
- aws_
access_ strkey_ id - AWS access key ID.
- aws_
s3_ strbucket - S3 bucket to write snapshots to.
- aws_
s3_ booldisable_ tls - Disable TLS for the S3 endpoint. This should only be used for testing purposes.
- aws_
s3_ boolenable_ kms - Use KMS to encrypt bucket contents.
- aws_
s3_ strendpoint - AWS endpoint. This is typically only set when using a non-AWS S3 implementation like Minio.
- aws_
s3_ boolforce_ path_ style - Use the endpoint/bucket URL style instead of bucket.endpoint.
- aws_
s3_ strkms_ key - Use named KMS key, when aws_s3_enable_kms=true
- aws_
s3_ strregion - AWS region bucket is in.
- aws_
s3_ boolserver_ side_ encryption - Use AES256 to encrypt bucket contents.
- aws_
secret_ straccess_ key - AWS secret access key.
- aws_
session_ strtoken - AWS session token.
- azure_
account_ strkey - Azure account key.
- azure_
account_ strname - Azure account name.
- azure_
blob_ strenvironment - Azure blob environment.
- azure_
container_ strname - Azure container name to write snapshots to.
- azure_
endpoint str - Azure blob storage endpoint. This is typically only set when using a non-Azure implementation like Azurite.
- file_
prefix str - Within the directory or bucket
prefix given by
path_prefix, the file or object name of snapshot files will start with this string. - google_
disable_ booltls - Disable TLS for the GCS endpoint.
- google_
endpoint str - GCS endpoint. This is typically only set when using a non-Google GCS implementation like fake-gcs-server.
- google_
gcs_ strbucket - GCS bucket to write snapshots to.
- google_
service_ straccount_ key - Google service account key in JSON format.
- interval_
seconds int <required>- Time (in seconds) between snapshots.- local_
max_ intspace - The maximum space, in bytes, to use for snapshots.
- name str
<required>– Name of the configuration to modify.- namespace str
- The namespace to provision the resource in.
The value should not contain leading or trailing forward slashes.
The
namespaceis always relative to the provider's configured namespace. Available only for Vault Enterprise. - path_
prefix str <required>- Forstorage_type = "local", the directory to write the snapshots in. For cloud storage types, the bucket prefix to use. Typesazure-s3andgoogle-gcsrequire a trailing/(slash). Typeslocalandaws-s3the trailing/is optional.- retain int
- How many snapshots are to be kept; when writing a snapshot, if there are more snapshots already stored than this number, the oldest ones will be deleted.
- storage_
type str <required>- One of "local", "azure-blob", "aws-s3", or "google-gcs". The remaining parameters described below are all specific to the selectedstorage_typeand prefixed accordingly.
- aws
Access StringKey Id - AWS access key ID.
- aws
S3Bucket String - S3 bucket to write snapshots to.
- aws
S3Disable BooleanTls - Disable TLS for the S3 endpoint. This should only be used for testing purposes.
- aws
S3Enable BooleanKms - Use KMS to encrypt bucket contents.
- aws
S3Endpoint String - AWS endpoint. This is typically only set when using a non-AWS S3 implementation like Minio.
- aws
S3Force BooleanPath Style - Use the endpoint/bucket URL style instead of bucket.endpoint.
- aws
S3Kms StringKey - Use named KMS key, when aws_s3_enable_kms=true
- aws
S3Region String - AWS region bucket is in.
- aws
S3Server BooleanSide Encryption - Use AES256 to encrypt bucket contents.
- aws
Secret StringAccess Key - AWS secret access key.
- aws
Session StringToken - AWS session token.
- azure
Account StringKey - Azure account key.
- azure
Account StringName - Azure account name.
- azure
Blob StringEnvironment - Azure blob environment.
- azure
Container StringName - Azure container name to write snapshots to.
- azure
Endpoint String - Azure blob storage endpoint. This is typically only set when using a non-Azure implementation like Azurite.
- file
Prefix String - Within the directory or bucket
prefix given by
path_prefix, the file or object name of snapshot files will start with this string. - google
Disable BooleanTls - Disable TLS for the GCS endpoint.
- google
Endpoint String - GCS endpoint. This is typically only set when using a non-Google GCS implementation like fake-gcs-server.
- google
Gcs StringBucket - GCS bucket to write snapshots to.
- google
Service StringAccount Key - Google service account key in JSON format.
- interval
Seconds Number <required>- Time (in seconds) between snapshots.- local
Max NumberSpace - The maximum space, in bytes, to use for snapshots.
- name String
<required>– Name of the configuration to modify.- namespace String
- The namespace to provision the resource in.
The value should not contain leading or trailing forward slashes.
The
namespaceis always relative to the provider's configured namespace. Available only for Vault Enterprise. - path
Prefix String <required>- Forstorage_type = "local", the directory to write the snapshots in. For cloud storage types, the bucket prefix to use. Typesazure-s3andgoogle-gcsrequire a trailing/(slash). Typeslocalandaws-s3the trailing/is optional.- retain Number
- How many snapshots are to be kept; when writing a snapshot, if there are more snapshots already stored than this number, the oldest ones will be deleted.
- storage
Type String <required>- One of "local", "azure-blob", "aws-s3", or "google-gcs". The remaining parameters described below are all specific to the selectedstorage_typeand prefixed accordingly.
Import
Raft Snapshot Agent Configurations can be imported using the name, e.g.
$ pulumi import vault:index/raftSnapshotAgentConfig:RaftSnapshotAgentConfig local local
To learn more about importing existing cloud resources, see Importing resources.
Package Details
- Repository
- Vault pulumi/pulumi-vault
- License
- Apache-2.0
- Notes
- This Pulumi package is based on the
vaultTerraform Provider.