pulumi-vault-kotlin/com.pulumi.vault.alicloud.kotlin/AuthBackendRoleArgs

AuthBackendRoleArgs

data class AuthBackendRoleArgs(val arn: Output<String>? = null, val backend: Output<String>? = null, val namespace: Output<String>? = null, val role: Output<String>? = null, val tokenBoundCidrs: Output<List<String>>? = null, val tokenExplicitMaxTtl: Output<Int>? = null, val tokenMaxTtl: Output<Int>? = null, val tokenNoDefaultPolicy: Output<Boolean>? = null, val tokenNumUses: Output<Int>? = null, val tokenPeriod: Output<Int>? = null, val tokenPolicies: Output<List<String>>? = null, val tokenTtl: Output<Int>? = null, val tokenType: Output<String>? = null) : ConvertibleToJava<AuthBackendRoleArgs>

Provides a resource to create a role in an AliCloud auth backend within Vault.

Example Usage

import * as pulumi from "@pulumi/pulumi";
import * as vault from "@pulumi/vault";
const alicloud = new vault.AuthBackend("alicloud", {
    type: "alicloud",
    path: "alicloud",
});
const alicloudAuthBackendRole = new vault.alicloud.AuthBackendRole("alicloud", {
    backend: alicloud.path,
    role: "example",
    arn: "acs:ram:123456:tf:role/foobar",
});
Content copied to clipboard
import pulumi
import pulumi_vault as vault
alicloud = vault.AuthBackend("alicloud",
    type="alicloud",
    path="alicloud")
alicloud_auth_backend_role = vault.alicloud.AuthBackendRole("alicloud",
    backend=alicloud.path,
    role="example",
    arn="acs:ram:123456:tf:role/foobar")
Content copied to clipboard
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using Vault = Pulumi.Vault;
return await Deployment.RunAsync(() =>
{
    var alicloud = new Vault.AuthBackend("alicloud", new()
    {
        Type = "alicloud",
        Path = "alicloud",
    });
    var alicloudAuthBackendRole = new Vault.AliCloud.AuthBackendRole("alicloud", new()
    {
        Backend = alicloud.Path,
        Role = "example",
        Arn = "acs:ram:123456:tf:role/foobar",
    });
});
Content copied to clipboard
package main
import (
	"github.com/pulumi/pulumi-vault/sdk/v6/go/vault"
	"github.com/pulumi/pulumi-vault/sdk/v6/go/vault/alicloud"
	"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
	pulumi.Run(func(ctx *pulumi.Context) error {
		alicloud, err := vault.NewAuthBackend(ctx, "alicloud", &vault.AuthBackendArgs{
			Type: pulumi.String("alicloud"),
			Path: pulumi.String("alicloud"),
		})
		if err != nil {
			return err
		}
		_, err = alicloud.NewAuthBackendRole(ctx, "alicloud", &alicloud.AuthBackendRoleArgs{
			Backend: alicloud.Path,
			Role:    pulumi.String("example"),
			Arn:     pulumi.String("acs:ram:123456:tf:role/foobar"),
		})
		if err != nil {
			return err
		}
		return nil
	})
}
Content copied to clipboard
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.vault.AuthBackend;
import com.pulumi.vault.AuthBackendArgs;
import com.pulumi.vault.alicloud.AuthBackendRole;
import com.pulumi.vault.alicloud.AuthBackendRoleArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
    public static void main(String[] args) {
        Pulumi.run(App::stack);
    }
    public static void stack(Context ctx) {
        var alicloud = new AuthBackend("alicloud", AuthBackendArgs.builder()
            .type("alicloud")
            .path("alicloud")
            .build());
        var alicloudAuthBackendRole = new AuthBackendRole("alicloudAuthBackendRole", AuthBackendRoleArgs.builder()
            .backend(alicloud.path())
            .role("example")
            .arn("acs:ram:123456:tf:role/foobar")
            .build());
    }
}
Content copied to clipboard
resources:
  alicloud:
    type: vault:AuthBackend
    properties:
      type: alicloud
      path: alicloud
  alicloudAuthBackendRole:
    type: vault:alicloud:AuthBackendRole
    name: alicloud
    properties:
      backend: ${alicloud.path}
      role: example
      arn: acs:ram:123456:tf:role/foobar
Content copied to clipboard

Import

Alicloud authentication roles can be imported using the path, e.g.

$ pulumi import vault:alicloud/authBackendRole:AuthBackendRole my_role auth/alicloud/role/my_role
Content copied to clipboard

Constructors

Link copied to clipboard
constructor(arn: Output<String>? = null, backend: Output<String>? = null, namespace: Output<String>? = null, role: Output<String>? = null, tokenBoundCidrs: Output<List<String>>? = null, tokenExplicitMaxTtl: Output<Int>? = null, tokenMaxTtl: Output<Int>? = null, tokenNoDefaultPolicy: Output<Boolean>? = null, tokenNumUses: Output<Int>? = null, tokenPeriod: Output<Int>? = null, tokenPolicies: Output<List<String>>? = null, tokenTtl: Output<Int>? = null, tokenType: Output<String>? = null)

Properties

Link copied to clipboard
val arn: Output<String>? = null

The role's arn.

Link copied to clipboard
val backend: Output<String>? = null

Path to the mounted AliCloud auth backend. Defaults to alicloud For more details on the usage of each argument consult the Vault AliCloud API documentation.

Link copied to clipboard
val namespace: Output<String>? = null

The namespace to provision the resource in. The value should not contain leading or trailing forward slashes. The namespace is always relative to the provider's configured namespace. Available only for Vault Enterprise.

Link copied to clipboard
val role: Output<String>? = null

Name of the role. Must correspond with the name of the role reflected in the arn.

Link copied to clipboard
val tokenBoundCidrs: Output<List<String>>? = null

Specifies the blocks of IP addresses which are allowed to use the generated token

Link copied to clipboard
val tokenExplicitMaxTtl: Output<Int>? = null

Generated Token's Explicit Maximum TTL in seconds

Link copied to clipboard
val tokenMaxTtl: Output<Int>? = null

The maximum lifetime of the generated token

Link copied to clipboard
val tokenNoDefaultPolicy: Output<Boolean>? = null

If true, the 'default' policy will not automatically be added to generated tokens

Link copied to clipboard
val tokenNumUses: Output<Int>? = null

The maximum number of times a token may be used, a value of zero means unlimited

Link copied to clipboard
val tokenPeriod: Output<Int>? = null

Generated Token's Period

Link copied to clipboard
val tokenPolicies: Output<List<String>>? = null

Generated Token's Policies

Link copied to clipboard
val tokenTtl: Output<Int>? = null

The initial ttl of the token to generate in seconds

Link copied to clipboard
val tokenType: Output<String>? = null

The type of token to generate, service or batch

Functions

Link copied to clipboard
open override fun toJava(): AuthBackendRoleArgs