Client
data class ClientKeyArgs(val aapName: Output<String>? = null, val notAfter: Output<String>? = null, val notBefore: Output<String>? = null, val password: Output<String>? = null, val privateKeyDataFile: Output<String>? = null) : ConvertibleToJava<ClientKeyArgs>
Provides a KMS Client Key resource. Client key (of Application Access Point). For information about KMS Client Key and how to use it, see What is Client Key.
NOTE: Available since v1.210.0.
Example Usage
Basic Usage
import * as pulumi from "@pulumi/pulumi";
import * as alicloud from "@pulumi/alicloud";
const config = new pulumi.Config();
const name = config.get("name") || "terraform-example";
const AAP0 = new alicloud.kms.ApplicationAccessPoint("AAP0", {
policies: ["aa"],
description: "aa",
applicationAccessPointName: name,
});
const _default = new alicloud.kms.ClientKey("default", {
aapName: AAP0.applicationAccessPointName,
password: "YouPassword123!",
notBefore: "2023-09-01T14:11:22Z",
notAfter: "2028-09-01T14:11:22Z",
privateKeyDataFile: "./private_key_data_file.txt",
});Content copied to clipboard
import pulumi
import pulumi_alicloud as alicloud
config = pulumi.Config()
name = config.get("name")
if name is None:
name = "terraform-example"
aap0 = alicloud.kms.ApplicationAccessPoint("AAP0",
policies=["aa"],
description="aa",
application_access_point_name=name)
default = alicloud.kms.ClientKey("default",
aap_name=aap0.application_access_point_name,
password="YouPassword123!",
not_before="2023-09-01T14:11:22Z",
not_after="2028-09-01T14:11:22Z",
private_key_data_file="./private_key_data_file.txt")Content copied to clipboard
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using AliCloud = Pulumi.AliCloud;
return await Deployment.RunAsync(() =>
{
var config = new Config();
var name = config.Get("name") ?? "terraform-example";
var AAP0 = new AliCloud.Kms.ApplicationAccessPoint("AAP0", new()
{
Policies = new[]
{
"aa",
},
Description = "aa",
ApplicationAccessPointName = name,
});
var @default = new AliCloud.Kms.ClientKey("default", new()
{
AapName = AAP0.ApplicationAccessPointName,
Password = "YouPassword123!",
NotBefore = "2023-09-01T14:11:22Z",
NotAfter = "2028-09-01T14:11:22Z",
PrivateKeyDataFile = "./private_key_data_file.txt",
});
});Content copied to clipboard
package main
import (
"github.com/pulumi/pulumi-alicloud/sdk/v3/go/alicloud/kms"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi/config"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
cfg := config.New(ctx, "")
name := "terraform-example"
if param := cfg.Get("name"); param != "" {
name = param
}
AAP0, err := kms.NewApplicationAccessPoint(ctx, "AAP0", &kms.ApplicationAccessPointArgs{
Policies: pulumi.StringArray{
pulumi.String("aa"),
},
Description: pulumi.String("aa"),
ApplicationAccessPointName: pulumi.String(name),
})
if err != nil {
return err
}
_, err = kms.NewClientKey(ctx, "default", &kms.ClientKeyArgs{
AapName: AAP0.ApplicationAccessPointName,
Password: pulumi.String("YouPassword123!"),
NotBefore: pulumi.String("2023-09-01T14:11:22Z"),
NotAfter: pulumi.String("2028-09-01T14:11:22Z"),
PrivateKeyDataFile: pulumi.String("./private_key_data_file.txt"),
})
if err != nil {
return err
}
return nil
})
}Content copied to clipboard
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.alicloud.kms.ApplicationAccessPoint;
import com.pulumi.alicloud.kms.ApplicationAccessPointArgs;
import com.pulumi.alicloud.kms.ClientKey;
import com.pulumi.alicloud.kms.ClientKeyArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
final var config = ctx.config();
final var name = config.get("name").orElse("terraform-example");
var aAP0 = new ApplicationAccessPoint("AAP0", ApplicationAccessPointArgs.builder()
.policies("aa")
.description("aa")
.applicationAccessPointName(name)
.build());
var default_ = new ClientKey("default", ClientKeyArgs.builder()
.aapName(AAP0.applicationAccessPointName())
.password("YouPassword123!")
.notBefore("2023-09-01T14:11:22Z")
.notAfter("2028-09-01T14:11:22Z")
.privateKeyDataFile("./private_key_data_file.txt")
.build());
}
}Content copied to clipboard
configuration:
name:
type: string
default: terraform-example
resources:
AAP0:
type: alicloud:kms:ApplicationAccessPoint
properties:
policies:
- aa
description: aa
applicationAccessPointName: ${name}
default:
type: alicloud:kms:ClientKey
properties:
aapName: ${AAP0.applicationAccessPointName}
password: YouPassword123!
notBefore: 2023-09-01T14:11:22Z
notAfter: 2028-09-01T14:11:22Z
privateKeyDataFile: ./private_key_data_file.txtContent copied to clipboard
Import
KMS Client Key can be imported using the id, e.g.
$ pulumi import alicloud:kms/clientKey:ClientKey example <id>Content copied to clipboard
Resource attributes such as password, private_key_data_file are not available for imported resources as this information cannot be read from the KMS API.