pulumi-gcp-kotlin/com.pulumi.gcp.networkservices.kotlin/EdgeCacheKeysetArgs

EdgeCacheKeysetArgs

data class EdgeCacheKeysetArgs(val description: Output<String>? = null, val labels: Output<Map<String, String>>? = null, val name: Output<String>? = null, val project: Output<String>? = null, val publicKeys: Output<List<EdgeCacheKeysetPublicKeyArgs>>? = null, val validationSharedKeys: Output<List<EdgeCacheKeysetValidationSharedKeyArgs>>? = null) : ConvertibleToJava<EdgeCacheKeysetArgs>

EdgeCacheKeyset represents a collection of public keys used for validating signed requests. To get more information about EdgeCacheKeyset, see:

Warning: All arguments including the following potentially sensitive values will be stored in the raw state as plain text: public_key.public_key.value. Read more about sensitive data in state.

Example Usage

Network Services Edge Cache Keyset Basic

package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.gcp.networkservices.EdgeCacheKeyset;
import com.pulumi.gcp.networkservices.EdgeCacheKeysetArgs;
import com.pulumi.gcp.networkservices.inputs.EdgeCacheKeysetPublicKeyArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
    public static void main(String[] args) {
        Pulumi.run(App::stack);
    }
    public static void stack(Context ctx) {
        var default_ = new EdgeCacheKeyset("default", EdgeCacheKeysetArgs.builder()
            .description("The default keyset")
            .publicKeys(
                EdgeCacheKeysetPublicKeyArgs.builder()
                    .id("my-public-key")
                    .value("FHsTyFHNmvNpw4o7-rp-M1yqMyBF8vXSBRkZtkQ0RKY")
                    .build(),
                EdgeCacheKeysetPublicKeyArgs.builder()
                    .id("my-public-key-2")
                    .value("hzd03llxB1u5FOLKFkZ6_wCJqC7jtN0bg7xlBqS6WVM")
                    .build())
            .build());
    }
}
Content copied to clipboard

Network Services Edge Cache Keyset Dual Token

package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.gcp.secretmanager.Secret;
import com.pulumi.gcp.secretmanager.SecretArgs;
import com.pulumi.gcp.secretmanager.inputs.SecretReplicationArgs;
import com.pulumi.gcp.secretmanager.inputs.SecretReplicationAutoArgs;
import com.pulumi.gcp.secretmanager.SecretVersion;
import com.pulumi.gcp.secretmanager.SecretVersionArgs;
import com.pulumi.gcp.networkservices.EdgeCacheKeyset;
import com.pulumi.gcp.networkservices.EdgeCacheKeysetArgs;
import com.pulumi.gcp.networkservices.inputs.EdgeCacheKeysetPublicKeyArgs;
import com.pulumi.gcp.networkservices.inputs.EdgeCacheKeysetValidationSharedKeyArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
    public static void main(String[] args) {
        Pulumi.run(App::stack);
    }
    public static void stack(Context ctx) {
        var secret_basic = new Secret("secret-basic", SecretArgs.builder()
            .secretId("secret-name")
            .replication(SecretReplicationArgs.builder()
                .auto()
                .build())
            .build());
        var secret_version_basic = new SecretVersion("secret-version-basic", SecretVersionArgs.builder()
            .secret(secret_basic.id())
            .secretData("secret-data")
            .build());
        var default_ = new EdgeCacheKeyset("default", EdgeCacheKeysetArgs.builder()
            .description("The default keyset")
            .publicKeys(EdgeCacheKeysetPublicKeyArgs.builder()
                .id("my-public-key")
                .managed(true)
                .build())
            .validationSharedKeys(EdgeCacheKeysetValidationSharedKeyArgs.builder()
                .secretVersion(secret_version_basic.id())
                .build())
            .build());
    }
}
Content copied to clipboard

Import

EdgeCacheKeyset can be imported using any of these accepted formats

$ pulumi import gcp:networkservices/edgeCacheKeyset:EdgeCacheKeyset default projects/{{project}}/locations/global/edgeCacheKeysets/{{name}}
Content copied to clipboard
$ pulumi import gcp:networkservices/edgeCacheKeyset:EdgeCacheKeyset default {{project}}/{{name}}
Content copied to clipboard
$ pulumi import gcp:networkservices/edgeCacheKeyset:EdgeCacheKeyset default {{name}}
Content copied to clipboard

Constructors

Link copied to clipboard
constructor(description: Output<String>? = null, labels: Output<Map<String, String>>? = null, name: Output<String>? = null, project: Output<String>? = null, publicKeys: Output<List<EdgeCacheKeysetPublicKeyArgs>>? = null, validationSharedKeys: Output<List<EdgeCacheKeysetValidationSharedKeyArgs>>? = null)

Properties

Link copied to clipboard
val description: Output<String>? = null

A human-readable description of the resource.

Link copied to clipboard
val labels: Output<Map<String, String>>? = null

Set of label tags associated with the EdgeCache resource.

Link copied to clipboard
val name: Output<String>? = null

Name of the resource; provided by the client when the resource is created. The name must be 1-64 characters long, and match the regular expression a-zA-Z0-9_-* which means the first character must be a letter, and all following characters must be a dash, underscore, letter or digit.

Link copied to clipboard
val project: Output<String>? = null

The ID of the project in which the resource belongs. If it is not provided, the provider project is used.

Link copied to clipboard
val publicKeys: Output<List<EdgeCacheKeysetPublicKeyArgs>>? = null

An ordered list of Ed25519 public keys to use for validating signed requests. You must specify public_keys or validation_shared_keys (or both). The keys in public_keys are checked first. You may specify no more than one Google-managed public key. If you specify public_keys, you must specify at least one (1) key and may specify up to three (3) keys. Ed25519 public keys are not secret, and only allow Google to validate a request was signed by your corresponding private key. Ensure that the private key is kept secret, and that only authorized users can add public keys to a keyset. Structure is documented below.

Link copied to clipboard
val validationSharedKeys: Output<List<EdgeCacheKeysetValidationSharedKeyArgs>>? = null

An ordered list of shared keys to use for validating signed requests. Shared keys are secret. Ensure that only authorized users can add validation_shared_keys to a keyset. You can rotate keys by appending (pushing) a new key to the list of validation_shared_keys and removing any superseded keys. You must specify public_keys or validation_shared_keys (or both). The keys in public_keys are checked first. Structure is documented below.

Functions

Link copied to clipboard
open override fun toJava(): EdgeCacheKeysetArgs