pulumi-vault-kotlin/com.pulumi.vault.pkiSecret.kotlin/SecretBackendCertArgs

SecretBackendCertArgs

data class SecretBackendCertArgs(val altNames: Output<List<String>>? = null, val autoRenew: Output<Boolean>? = null, val backend: Output<String>? = null, val certMetadata: Output<String>? = null, val commonName: Output<String>? = null, val excludeCnFromSans: Output<Boolean>? = null, val format: Output<String>? = null, val ipSans: Output<List<String>>? = null, val issuerRef: Output<String>? = null, val minSecondsRemaining: Output<Int>? = null, val name: Output<String>? = null, val namespace: Output<String>? = null, val notAfter: Output<String>? = null, val otherSans: Output<List<String>>? = null, val privateKeyFormat: Output<String>? = null, val revoke: Output<Boolean>? = null, val revokeWithKey: Output<Boolean>? = null, val ttl: Output<String>? = null, val uriSans: Output<List<String>>? = null, val userIds: Output<List<String>>? = null) : ConvertibleToJava<SecretBackendCertArgs>

Example Usage

import * as pulumi from "@pulumi/pulumi";
import * as vault from "@pulumi/vault";
const app = new vault.pkisecret.SecretBackendCert("app", {
    backend: intermediate.path,
    name: test.name,
    commonName: "app.my.domain",
}, {
    dependsOn: [admin],
});
Content copied to clipboard
import pulumi
import pulumi_vault as vault
app = vault.pki_secret.SecretBackendCert("app",
    backend=intermediate["path"],
    name=test["name"],
    common_name="app.my.domain",
    opts = pulumi.ResourceOptions(depends_on=[admin]))
Content copied to clipboard
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using Vault = Pulumi.Vault;
return await Deployment.RunAsync(() =>
{
    var app = new Vault.PkiSecret.SecretBackendCert("app", new()
    {
        Backend = intermediate.Path,
        Name = test.Name,
        CommonName = "app.my.domain",
    }, new CustomResourceOptions
    {
        DependsOn =
        {
            admin,
        },
    });
});
Content copied to clipboard
package main
import (
	"github.com/pulumi/pulumi-vault/sdk/v6/go/vault/pkisecret"
	"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
	pulumi.Run(func(ctx *pulumi.Context) error {
		_, err := pkisecret.NewSecretBackendCert(ctx, "app", &pkisecret.SecretBackendCertArgs{
			Backend:    pulumi.Any(intermediate.Path),
			Name:       pulumi.Any(test.Name),
			CommonName: pulumi.String("app.my.domain"),
		}, pulumi.DependsOn([]pulumi.Resource{
			admin,
		}))
		if err != nil {
			return err
		}
		return nil
	})
}
Content copied to clipboard
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.vault.pkiSecret.SecretBackendCert;
import com.pulumi.vault.pkiSecret.SecretBackendCertArgs;
import com.pulumi.resources.CustomResourceOptions;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
    public static void main(String[] args) {
        Pulumi.run(App::stack);
    }
    public static void stack(Context ctx) {
        var app = new SecretBackendCert("app", SecretBackendCertArgs.builder()
            .backend(intermediate.path())
            .name(test.name())
            .commonName("app.my.domain")
            .build(), CustomResourceOptions.builder()
                .dependsOn(admin)
                .build());
    }
}
Content copied to clipboard
resources:
  app:
    type: vault:pkiSecret:SecretBackendCert
    properties:
      backend: ${intermediate.path}
      name: ${test.name}
      commonName: app.my.domain
    options:
      dependsOn:
        - ${admin}
Content copied to clipboard

Constructors

Link copied to clipboard
constructor(altNames: Output<List<String>>? = null, autoRenew: Output<Boolean>? = null, backend: Output<String>? = null, certMetadata: Output<String>? = null, commonName: Output<String>? = null, excludeCnFromSans: Output<Boolean>? = null, format: Output<String>? = null, ipSans: Output<List<String>>? = null, issuerRef: Output<String>? = null, minSecondsRemaining: Output<Int>? = null, name: Output<String>? = null, namespace: Output<String>? = null, notAfter: Output<String>? = null, otherSans: Output<List<String>>? = null, privateKeyFormat: Output<String>? = null, revoke: Output<Boolean>? = null, revokeWithKey: Output<Boolean>? = null, ttl: Output<String>? = null, uriSans: Output<List<String>>? = null, userIds: Output<List<String>>? = null)

Properties

Link copied to clipboard
val altNames: Output<List<String>>? = null

List of alternative names

Link copied to clipboard
val autoRenew: Output<Boolean>? = null

If set to true, certs will be renewed if the expiration is within min_seconds_remaining. Default false

Link copied to clipboard
val backend: Output<String>? = null

The PKI secret backend the resource belongs to.

Link copied to clipboard
val certMetadata: Output<String>? = null

A base 64 encoded value or an empty string to associate with the certificate's serial number. The role's no_store_metadata must be set to false, otherwise an error is returned when specified.

Link copied to clipboard
val commonName: Output<String>? = null

CN of certificate to create

Link copied to clipboard
val excludeCnFromSans: Output<Boolean>? = null

Flag to exclude CN from SANs

Link copied to clipboard
val format: Output<String>? = null

The format of data

Link copied to clipboard
val ipSans: Output<List<String>>? = null

List of alternative IPs

Link copied to clipboard
val issuerRef: Output<String>? = null

Specifies the default issuer of this request.

Link copied to clipboard
val minSecondsRemaining: Output<Int>? = null

Generate a new certificate when the expiration is within this number of seconds, default is 604800 (7 days)

Link copied to clipboard
val name: Output<String>? = null

Name of the role to create the certificate against

Link copied to clipboard
val namespace: Output<String>? = null

The namespace to provision the resource in. The value should not contain leading or trailing forward slashes. The namespace is always relative to the provider's configured namespace. Available only for Vault Enterprise.

Link copied to clipboard
val notAfter: Output<String>? = null

Set the Not After field of the certificate with specified date value. The value format should be given in UTC format YYYY-MM-ddTHH:MM:SSZ. Supports the Y10K end date for IEEE 802.1AR-2018 standard devices, 9999-12-31T23:59:59Z.

Link copied to clipboard
val otherSans: Output<List<String>>? = null

List of other SANs

Link copied to clipboard
val privateKeyFormat: Output<String>? = null

The private key format

Link copied to clipboard
val revoke: Output<Boolean>? = null

If set to true, the certificate will be revoked on resource destruction using the revoke PKI API. Conflicts with revoke_with_key. Default false.

Link copied to clipboard
val revokeWithKey: Output<Boolean>? = null

If set to true, the certificate will be revoked on resource destruction using the revoke-with-key PKI API. Conflicts with revoke. Default false

Link copied to clipboard
val ttl: Output<String>? = null

Time to live

Link copied to clipboard
val uriSans: Output<List<String>>? = null

List of alternative URIs

Link copied to clipboard
val userIds: Output<List<String>>? = null

List of Subject User IDs

Functions

Link copied to clipboard
open override fun toJava(): SecretBackendCertArgs