pulumi-vault-kotlin/com.pulumi.vault.aws.kotlin

Package-level declarations

Types

Link copied to clipboard
class AuthBackendCert : KotlinCustomResource

AWS auth backend certificates can be imported using auth/, the backend path, /config/certificate/, and the cert_name e.g.

Link copied to clipboard
data class AuthBackendCertArgs(val awsPublicCert: Output<String>? = null, val backend: Output<String>? = null, val certName: Output<String>? = null, val namespace: Output<String>? = null, val type: Output<String>? = null) : ConvertibleToJava<AuthBackendCertArgs>

AWS auth backend certificates can be imported using auth/, the backend path, /config/certificate/, and the cert_name e.g.

Link copied to clipboard
Link copied to clipboard
object AuthBackendCertMapper : ResourceMapper<AuthBackendCert>
Link copied to clipboard
Link copied to clipboard
class AuthBackendClient : KotlinCustomResource

You can setup the AWS auth engine with Workload Identity Federation (WIF) for a secret-less configuration:

Link copied to clipboard
data class AuthBackendClientArgs(val accessKey: Output<String>? = null, val backend: Output<String>? = null, val disableAutomatedRotation: Output<Boolean>? = null, val ec2Endpoint: Output<String>? = null, val iamEndpoint: Output<String>? = null, val iamServerIdHeaderValue: Output<String>? = null, val identityTokenAudience: Output<String>? = null, val identityTokenTtl: Output<Int>? = null, val maxRetries: Output<Int>? = null, val namespace: Output<String>? = null, val roleArn: Output<String>? = null, val rotationPeriod: Output<Int>? = null, val rotationSchedule: Output<String>? = null, val rotationWindow: Output<Int>? = null, val secretKey: Output<String>? = null, val stsEndpoint: Output<String>? = null, val stsRegion: Output<String>? = null, val useStsRegionFromClient: Output<Boolean>? = null) : ConvertibleToJava<AuthBackendClientArgs>

You can setup the AWS auth engine with Workload Identity Federation (WIF) for a secret-less configuration:

Link copied to clipboard
Link copied to clipboard
object AuthBackendClientMapper : ResourceMapper<AuthBackendClient>
Link copied to clipboard
Link copied to clipboard
class AuthBackendConfigIdentity : KotlinCustomResource

Manages an AWS auth backend identity configuration in a Vault server. This configuration defines how Vault interacts with the identity store. See the Vault documentation for more information.

Link copied to clipboard
data class AuthBackendConfigIdentityArgs(val backend: Output<String>? = null, val ec2Alias: Output<String>? = null, val ec2Metadatas: Output<List<String>>? = null, val iamAlias: Output<String>? = null, val iamMetadatas: Output<List<String>>? = null, val namespace: Output<String>? = null) : ConvertibleToJava<AuthBackendConfigIdentityArgs>

Manages an AWS auth backend identity configuration in a Vault server. This configuration defines how Vault interacts with the identity store. See the Vault documentation for more information.

Link copied to clipboard
Link copied to clipboard
Link copied to clipboard
Link copied to clipboard
class AuthBackendIdentityWhitelist : KotlinCustomResource

Configures the periodic tidying operation of the whitelisted identity entries. For more information, see the Vault docs.

Link copied to clipboard
data class AuthBackendIdentityWhitelistArgs(val backend: Output<String>? = null, val disablePeriodicTidy: Output<Boolean>? = null, val namespace: Output<String>? = null, val safetyBuffer: Output<Int>? = null) : ConvertibleToJava<AuthBackendIdentityWhitelistArgs>

Configures the periodic tidying operation of the whitelisted identity entries. For more information, see the Vault docs.

Link copied to clipboard
Link copied to clipboard
Link copied to clipboard
class AuthBackendLogin : KotlinCustomResource

Logs into a Vault server using an AWS auth backend. Login can be accomplished using a signed identity request from IAM or using ec2 instance metadata. For more information, see the [Vault

Link copied to clipboard
data class AuthBackendLoginArgs(val backend: Output<String>? = null, val iamHttpRequestMethod: Output<String>? = null, val iamRequestBody: Output<String>? = null, val iamRequestHeaders: Output<String>? = null, val iamRequestUrl: Output<String>? = null, val identity: Output<String>? = null, val namespace: Output<String>? = null, val nonce: Output<String>? = null, val pkcs7: Output<String>? = null, val role: Output<String>? = null, val signature: Output<String>? = null) : ConvertibleToJava<AuthBackendLoginArgs>

Logs into a Vault server using an AWS auth backend. Login can be accomplished using a signed identity request from IAM or using ec2 instance metadata. For more information, see the [Vault

Link copied to clipboard
Link copied to clipboard
object AuthBackendLoginMapper : ResourceMapper<AuthBackendLogin>
Link copied to clipboard
Link copied to clipboard
class AuthBackendRole : KotlinCustomResource

Manages an AWS auth backend role in a Vault server. Roles constrain the instances or principals that can perform the login operation against the backend. See the [Vault

Link copied to clipboard
data class AuthBackendRoleArgs(val allowInstanceMigration: Output<Boolean>? = null, val authType: Output<String>? = null, val backend: Output<String>? = null, val boundAccountIds: Output<List<String>>? = null, val boundAmiIds: Output<List<String>>? = null, val boundEc2InstanceIds: Output<List<String>>? = null, val boundIamInstanceProfileArns: Output<List<String>>? = null, val boundIamPrincipalArns: Output<List<String>>? = null, val boundIamRoleArns: Output<List<String>>? = null, val boundRegions: Output<List<String>>? = null, val boundSubnetIds: Output<List<String>>? = null, val boundVpcIds: Output<List<String>>? = null, val disallowReauthentication: Output<Boolean>? = null, val inferredAwsRegion: Output<String>? = null, val inferredEntityType: Output<String>? = null, val namespace: Output<String>? = null, val resolveAwsUniqueIds: Output<Boolean>? = null, val role: Output<String>? = null, val roleTag: Output<String>? = null, val tokenBoundCidrs: Output<List<String>>? = null, val tokenExplicitMaxTtl: Output<Int>? = null, val tokenMaxTtl: Output<Int>? = null, val tokenNoDefaultPolicy: Output<Boolean>? = null, val tokenNumUses: Output<Int>? = null, val tokenPeriod: Output<Int>? = null, val tokenPolicies: Output<List<String>>? = null, val tokenTtl: Output<Int>? = null, val tokenType: Output<String>? = null) : ConvertibleToJava<AuthBackendRoleArgs>

Manages an AWS auth backend role in a Vault server. Roles constrain the instances or principals that can perform the login operation against the backend. See the [Vault

Link copied to clipboard
Link copied to clipboard
object AuthBackendRoleMapper : ResourceMapper<AuthBackendRole>
Link copied to clipboard
Link copied to clipboard
class AuthBackendRoleTag : KotlinCustomResource

Reads role tag information from an AWS auth backend in Vault.

Link copied to clipboard
data class AuthBackendRoleTagArgs(val allowInstanceMigration: Output<Boolean>? = null, val backend: Output<String>? = null, val disallowReauthentication: Output<Boolean>? = null, val instanceId: Output<String>? = null, val maxTtl: Output<String>? = null, val namespace: Output<String>? = null, val policies: Output<List<String>>? = null, val role: Output<String>? = null) : ConvertibleToJava<AuthBackendRoleTagArgs>

Reads role tag information from an AWS auth backend in Vault.

Link copied to clipboard
Link copied to clipboard
class AuthBackendRoletagBlacklist : KotlinCustomResource

Configures the periodic tidying operation of the blacklisted role tag entries.

Link copied to clipboard
data class AuthBackendRoletagBlacklistArgs(val backend: Output<String>? = null, val disablePeriodicTidy: Output<Boolean>? = null, val namespace: Output<String>? = null, val safetyBuffer: Output<Int>? = null) : ConvertibleToJava<AuthBackendRoletagBlacklistArgs>

Configures the periodic tidying operation of the blacklisted role tag entries.

Link copied to clipboard
Link copied to clipboard
Link copied to clipboard
object AuthBackendRoleTagMapper : ResourceMapper<AuthBackendRoleTag>
Link copied to clipboard
Link copied to clipboard
class AuthBackendStsRole : KotlinCustomResource
Link copied to clipboard
data class AuthBackendStsRoleArgs(val accountId: Output<String>? = null, val backend: Output<String>? = null, val externalId: Output<String>? = null, val namespace: Output<String>? = null, val stsRole: Output<String>? = null) : ConvertibleToJava<AuthBackendStsRoleArgs>
Link copied to clipboard
Link copied to clipboard
object AuthBackendStsRoleMapper : ResourceMapper<AuthBackendStsRole>
Link copied to clipboard
Link copied to clipboard
object AwsFunctions
Link copied to clipboard
class SecretBackend : KotlinCustomResource

AWS secret backends can be imported using the path, e.g.

Link copied to clipboard
data class SecretBackendArgs(val accessKey: Output<String>? = null, val defaultLeaseTtlSeconds: Output<Int>? = null, val description: Output<String>? = null, val disableAutomatedRotation: Output<Boolean>? = null, val disableRemount: Output<Boolean>? = null, val iamEndpoint: Output<String>? = null, val identityTokenAudience: Output<String>? = null, val identityTokenKey: Output<String>? = null, val identityTokenTtl: Output<Int>? = null, val local: Output<Boolean>? = null, val maxLeaseTtlSeconds: Output<Int>? = null, val namespace: Output<String>? = null, val path: Output<String>? = null, val region: Output<String>? = null, val roleArn: Output<String>? = null, val rotationPeriod: Output<Int>? = null, val rotationSchedule: Output<String>? = null, val rotationWindow: Output<Int>? = null, val secretKey: Output<String>? = null, val stsEndpoint: Output<String>? = null, val stsFallbackEndpoints: Output<List<String>>? = null, val stsFallbackRegions: Output<List<String>>? = null, val stsRegion: Output<String>? = null, val usernameTemplate: Output<String>? = null) : ConvertibleToJava<SecretBackendArgs>

AWS secret backends can be imported using the path, e.g.

Link copied to clipboard
Link copied to clipboard
object SecretBackendMapper : ResourceMapper<SecretBackend>
Link copied to clipboard
Link copied to clipboard
class SecretBackendRole : KotlinCustomResource
Link copied to clipboard
data class SecretBackendRoleArgs(val backend: Output<String>? = null, val credentialType: Output<String>? = null, val defaultStsTtl: Output<Int>? = null, val externalId: Output<String>? = null, val iamGroups: Output<List<String>>? = null, val iamTags: Output<Map<String, String>>? = null, val maxStsTtl: Output<Int>? = null, val name: Output<String>? = null, val namespace: Output<String>? = null, val permissionsBoundaryArn: Output<String>? = null, val policyArns: Output<List<String>>? = null, val policyDocument: Output<String>? = null, val roleArns: Output<List<String>>? = null, val sessionTags: Output<Map<String, String>>? = null, val userPath: Output<String>? = null) : ConvertibleToJava<SecretBackendRoleArgs>
Link copied to clipboard
Link copied to clipboard
object SecretBackendRoleMapper : ResourceMapper<SecretBackendRole>
Link copied to clipboard
Link copied to clipboard
class SecretBackendStaticRole : KotlinCustomResource
Link copied to clipboard
data class SecretBackendStaticRoleArgs(val assumeRoleArn: Output<String>? = null, val assumeRoleSessionName: Output<String>? = null, val backend: Output<String>? = null, val externalId: Output<String>? = null, val name: Output<String>? = null, val namespace: Output<String>? = null, val rotationPeriod: Output<Int>? = null, val username: Output<String>? = null) : ConvertibleToJava<SecretBackendStaticRoleArgs>
Link copied to clipboard
Link copied to clipboard
Link copied to clipboard

Functions

Link copied to clipboard
Link copied to clipboard
Link copied to clipboard
Link copied to clipboard
Link copied to clipboard
Link copied to clipboard
Link copied to clipboard
Link copied to clipboard
Link copied to clipboard
Link copied to clipboard
Link copied to clipboard
Link copied to clipboard