pulumi-vault-kotlin/com.pulumi.vault.pkiSecret.kotlin/SecretBackendKeyArgs

SecretBackendKeyArgs

data class SecretBackendKeyArgs(val backend: Output<String>? = null, val keyBits: Output<Int>? = null, val keyName: Output<String>? = null, val keyType: Output<String>? = null, val managedKeyId: Output<String>? = null, val managedKeyName: Output<String>? = null, val namespace: Output<String>? = null, val type: Output<String>? = null) : ConvertibleToJava<SecretBackendKeyArgs>

Creates a key on a PKI Secret Backend for Vault.

Example Usage

resources:
  pki:
    type: vault:Mount
    properties:
      path: pki
      type: pki
      defaultLeaseTtlSeconds: 3600
      maxLeaseTtlSeconds: 86400
  key:
    type: vault:pkiSecret:SecretBackendKey
    properties:
      mount: ${pki.path}
      type: exported
      keyName: example-key
      keyType: rsa
      keyBits: '2048'
Content copied to clipboard

Import

PKI secret backend key can be imported using the id, e.g.

$ pulumi import vault:pkiSecret/secretBackendKey:SecretBackendKey key pki/key/bf9b0d48-d0dd-652c-30be-77d04fc7e94d
Content copied to clipboard

Constructors

Link copied to clipboard
constructor(backend: Output<String>? = null, keyBits: Output<Int>? = null, keyName: Output<String>? = null, keyType: Output<String>? = null, managedKeyId: Output<String>? = null, managedKeyName: Output<String>? = null, namespace: Output<String>? = null, type: Output<String>? = null)

Properties

Link copied to clipboard
val backend: Output<String>? = null

The path the PKI secret backend is mounted at, with no leading or trailing /s.

Link copied to clipboard
val keyBits: Output<Int>? = null

Specifies the number of bits to use for the generated keys. Allowed values are 0 (universal default); with key_type=rsa, allowed values are: 2048 (default), 3072, or 4096; with key_type=ec, allowed values are: 224, 256 (default), 384, or 521; ignored with key_type=ed25519.

Link copied to clipboard
val keyName: Output<String>? = null

When a new key is created with this request, optionally specifies the name for this. The global ref default may not be used as a name.

Link copied to clipboard
val keyType: Output<String>? = null

Specifies the desired key type; must be rsa, ed25519 or ec.

Link copied to clipboard
val managedKeyId: Output<String>? = null

The managed key's UUID.

Link copied to clipboard
val managedKeyName: Output<String>? = null

The managed key's configured name.

Link copied to clipboard
val namespace: Output<String>? = null

The namespace to provision the resource in. The value should not contain leading or trailing forward slashes. The namespace is always relative to the provider's configured namespace. Available only for Vault Enterprise.

Link copied to clipboard
val type: Output<String>? = null

Specifies the type of the key to create. Can be exported,internal or kms.

Functions

Link copied to clipboard
open override fun toJava(): SecretBackendKeyArgs