identity

package
v3.6.0 Latest Latest
Warning

This package is not in the latest version of its module.

 Go to latest Published: Apr 12, 2021 License: Apache-2.0 Imports: 7 Imported by: 0

Documentation

Index

Constants

This section is empty.

Variables

This section is empty.

Functions

This section is empty.

Types

type Entity 

type Entity struct {
	pulumi.CustomResourceState

	// True/false Is this entity currently disabled. Defaults to `false`
	Disabled pulumi.BoolPtrOutput `pulumi:"disabled"`
	// `false` by default. If set to `true`, this resource will ignore any policies return from Vault or specified in the resource. You can use `identity.EntityPolicies` to manage policies for this entity in a decoupled manner.
	ExternalPolicies pulumi.BoolPtrOutput `pulumi:"externalPolicies"`
	// A Map of additional metadata to associate with the user.
	Metadata pulumi.StringMapOutput `pulumi:"metadata"`
	// Name of the identity entity to create.
	Name pulumi.StringOutput `pulumi:"name"`
	// A list of policies to apply to the entity.
	Policies pulumi.StringArrayOutput `pulumi:"policies"`
}

## Import

Identity entity can be imported using the `id`, e.g.

```sh 

$ pulumi import vault:identity/entity:Entity test "ae6f8ued-0f1a-9f6b-2915-1a2be20dc053"

```

func GetEntity 

func GetEntity(ctx *pulumi.Context,
	name string, id pulumi.IDInput, state *EntityState, opts ...pulumi.ResourceOption) (*Entity, error)

GetEntity gets an existing Entity resource's state with the given name, ID, and optional state properties that are used to uniquely qualify the lookup (nil if not required).

func NewEntity 

func NewEntity(ctx *pulumi.Context,
	name string, args *EntityArgs, opts ...pulumi.ResourceOption) (*Entity, error)

NewEntity registers a new resource with the given unique name, arguments, and options.

func (*Entity) ElementType added in v3.0.2 

func (*Entity) ElementType() reflect.Type

func (*Entity) ToEntityOutput added in v3.0.2 

func (i *Entity) ToEntityOutput() EntityOutput

func (*Entity) ToEntityOutputWithContext added in v3.0.2 

func (i *Entity) ToEntityOutputWithContext(ctx context.Context) EntityOutput

func (*Entity) ToEntityPtrOutput added in v3.4.1 

func (i *Entity) ToEntityPtrOutput() EntityPtrOutput

func (*Entity) ToEntityPtrOutputWithContext added in v3.4.1 

func (i *Entity) ToEntityPtrOutputWithContext(ctx context.Context) EntityPtrOutput

type EntityAlias 

type EntityAlias struct {
	pulumi.CustomResourceState

	// Entity ID to which this alias belongs to.
	CanonicalId pulumi.StringOutput `pulumi:"canonicalId"`
	// Accessor of the mount to which the alias should belong to.
	MountAccessor pulumi.StringOutput `pulumi:"mountAccessor"`
	// Name of the alias. Name should be the identifier of the client in the authentication source. For example, if the alias belongs to userpass backend, the name should be a valid username within userpass backend. If alias belongs to GitHub, it should be the GitHub username.
	Name pulumi.StringOutput `pulumi:"name"`
}

## Import

Identity entity alias can be imported using the `id`, e.g.

```sh 

$ pulumi import vault:identity/entityAlias:EntityAlias test "3856fb4d-3c91-dcaf-2401-68f446796bfb"

```

func GetEntityAlias 

func GetEntityAlias(ctx *pulumi.Context,
	name string, id pulumi.IDInput, state *EntityAliasState, opts ...pulumi.ResourceOption) (*EntityAlias, error)

GetEntityAlias gets an existing EntityAlias resource's state with the given name, ID, and optional state properties that are used to uniquely qualify the lookup (nil if not required).

func NewEntityAlias 

func NewEntityAlias(ctx *pulumi.Context,
	name string, args *EntityAliasArgs, opts ...pulumi.ResourceOption) (*EntityAlias, error)

NewEntityAlias registers a new resource with the given unique name, arguments, and options.

func (*EntityAlias) ElementType added in v3.0.2 

func (*EntityAlias) ElementType() reflect.Type

func (*EntityAlias) ToEntityAliasOutput added in v3.0.2 

func (i *EntityAlias) ToEntityAliasOutput() EntityAliasOutput

func (*EntityAlias) ToEntityAliasOutputWithContext added in v3.0.2 

func (i *EntityAlias) ToEntityAliasOutputWithContext(ctx context.Context) EntityAliasOutput

func (*EntityAlias) ToEntityAliasPtrOutput added in v3.4.1 

func (i *EntityAlias) ToEntityAliasPtrOutput() EntityAliasPtrOutput

func (*EntityAlias) ToEntityAliasPtrOutputWithContext added in v3.4.1 

func (i *EntityAlias) ToEntityAliasPtrOutputWithContext(ctx context.Context) EntityAliasPtrOutput

type EntityAliasArgs 

type EntityAliasArgs struct {
	// Entity ID to which this alias belongs to.
	CanonicalId pulumi.StringInput
	// Accessor of the mount to which the alias should belong to.
	MountAccessor pulumi.StringInput
	// Name of the alias. Name should be the identifier of the client in the authentication source. For example, if the alias belongs to userpass backend, the name should be a valid username within userpass backend. If alias belongs to GitHub, it should be the GitHub username.
	Name pulumi.StringPtrInput
}

The set of arguments for constructing a EntityAlias resource.

func (EntityAliasArgs) ElementType 

func (EntityAliasArgs) ElementType() reflect.Type

type EntityAliasArray added in v3.4.1 

type EntityAliasArray []EntityAliasInput

func (EntityAliasArray) ElementType added in v3.4.1 

func (EntityAliasArray) ElementType() reflect.Type

func (EntityAliasArray) ToEntityAliasArrayOutput added in v3.4.1 

func (i EntityAliasArray) ToEntityAliasArrayOutput() EntityAliasArrayOutput

func (EntityAliasArray) ToEntityAliasArrayOutputWithContext added in v3.4.1 

func (i EntityAliasArray) ToEntityAliasArrayOutputWithContext(ctx context.Context) EntityAliasArrayOutput

type EntityAliasArrayInput added in v3.4.1 

type EntityAliasArrayInput interface {
	pulumi.Input

	ToEntityAliasArrayOutput() EntityAliasArrayOutput
	ToEntityAliasArrayOutputWithContext(context.Context) EntityAliasArrayOutput
}

EntityAliasArrayInput is an input type that accepts EntityAliasArray and EntityAliasArrayOutput values. You can construct a concrete instance of `EntityAliasArrayInput` via: 

EntityAliasArray{ EntityAliasArgs{...} }

type EntityAliasArrayOutput added in v3.4.1 

type EntityAliasArrayOutput struct{ *pulumi.OutputState }

func (EntityAliasArrayOutput) ElementType added in v3.4.1 

func (EntityAliasArrayOutput) ElementType() reflect.Type

func (EntityAliasArrayOutput) Index added in v3.4.1 

func (o EntityAliasArrayOutput) Index(i pulumi.IntInput) EntityAliasOutput

func (EntityAliasArrayOutput) ToEntityAliasArrayOutput added in v3.4.1 

func (o EntityAliasArrayOutput) ToEntityAliasArrayOutput() EntityAliasArrayOutput

func (EntityAliasArrayOutput) ToEntityAliasArrayOutputWithContext added in v3.4.1 

func (o EntityAliasArrayOutput) ToEntityAliasArrayOutputWithContext(ctx context.Context) EntityAliasArrayOutput

type EntityAliasInput added in v3.0.2 

type EntityAliasInput interface {
	pulumi.Input

	ToEntityAliasOutput() EntityAliasOutput
	ToEntityAliasOutputWithContext(ctx context.Context) EntityAliasOutput
}

type EntityAliasMap added in v3.4.1 

type EntityAliasMap map[string]EntityAliasInput

func (EntityAliasMap) ElementType added in v3.4.1 

func (EntityAliasMap) ElementType() reflect.Type

func (EntityAliasMap) ToEntityAliasMapOutput added in v3.4.1 

func (i EntityAliasMap) ToEntityAliasMapOutput() EntityAliasMapOutput

func (EntityAliasMap) ToEntityAliasMapOutputWithContext added in v3.4.1 

func (i EntityAliasMap) ToEntityAliasMapOutputWithContext(ctx context.Context) EntityAliasMapOutput

type EntityAliasMapInput added in v3.4.1 

type EntityAliasMapInput interface {
	pulumi.Input

	ToEntityAliasMapOutput() EntityAliasMapOutput
	ToEntityAliasMapOutputWithContext(context.Context) EntityAliasMapOutput
}

EntityAliasMapInput is an input type that accepts EntityAliasMap and EntityAliasMapOutput values. You can construct a concrete instance of `EntityAliasMapInput` via: 

EntityAliasMap{ "key": EntityAliasArgs{...} }

type EntityAliasMapOutput added in v3.4.1 

type EntityAliasMapOutput struct{ *pulumi.OutputState }

func (EntityAliasMapOutput) ElementType added in v3.4.1 

func (EntityAliasMapOutput) ElementType() reflect.Type

func (EntityAliasMapOutput) MapIndex added in v3.4.1 

func (o EntityAliasMapOutput) MapIndex(k pulumi.StringInput) EntityAliasOutput

func (EntityAliasMapOutput) ToEntityAliasMapOutput added in v3.4.1 

func (o EntityAliasMapOutput) ToEntityAliasMapOutput() EntityAliasMapOutput

func (EntityAliasMapOutput) ToEntityAliasMapOutputWithContext added in v3.4.1 

func (o EntityAliasMapOutput) ToEntityAliasMapOutputWithContext(ctx context.Context) EntityAliasMapOutput

type EntityAliasOutput added in v3.0.2 

type EntityAliasOutput struct {
	*pulumi.OutputState
}

func (EntityAliasOutput) ElementType added in v3.0.2 

func (EntityAliasOutput) ElementType() reflect.Type

func (EntityAliasOutput) ToEntityAliasOutput added in v3.0.2 

func (o EntityAliasOutput) ToEntityAliasOutput() EntityAliasOutput

func (EntityAliasOutput) ToEntityAliasOutputWithContext added in v3.0.2 

func (o EntityAliasOutput) ToEntityAliasOutputWithContext(ctx context.Context) EntityAliasOutput

func (EntityAliasOutput) ToEntityAliasPtrOutput added in v3.4.1 

func (o EntityAliasOutput) ToEntityAliasPtrOutput() EntityAliasPtrOutput

func (EntityAliasOutput) ToEntityAliasPtrOutputWithContext added in v3.4.1 

func (o EntityAliasOutput) ToEntityAliasPtrOutputWithContext(ctx context.Context) EntityAliasPtrOutput

type EntityAliasPtrInput added in v3.4.1 

type EntityAliasPtrInput interface {
	pulumi.Input

	ToEntityAliasPtrOutput() EntityAliasPtrOutput
	ToEntityAliasPtrOutputWithContext(ctx context.Context) EntityAliasPtrOutput
}

type EntityAliasPtrOutput added in v3.4.1 

type EntityAliasPtrOutput struct {
	*pulumi.OutputState
}

func (EntityAliasPtrOutput) ElementType added in v3.4.1 

func (EntityAliasPtrOutput) ElementType() reflect.Type

func (EntityAliasPtrOutput) ToEntityAliasPtrOutput added in v3.4.1 

func (o EntityAliasPtrOutput) ToEntityAliasPtrOutput() EntityAliasPtrOutput

func (EntityAliasPtrOutput) ToEntityAliasPtrOutputWithContext added in v3.4.1 

func (o EntityAliasPtrOutput) ToEntityAliasPtrOutputWithContext(ctx context.Context) EntityAliasPtrOutput

type EntityAliasState 

type EntityAliasState struct {
	// Entity ID to which this alias belongs to.
	CanonicalId pulumi.StringPtrInput
	// Accessor of the mount to which the alias should belong to.
	MountAccessor pulumi.StringPtrInput
	// Name of the alias. Name should be the identifier of the client in the authentication source. For example, if the alias belongs to userpass backend, the name should be a valid username within userpass backend. If alias belongs to GitHub, it should be the GitHub username.
	Name pulumi.StringPtrInput
}

func (EntityAliasState) ElementType 

func (EntityAliasState) ElementType() reflect.Type

type EntityArgs 

type EntityArgs struct {
	// True/false Is this entity currently disabled. Defaults to `false`
	Disabled pulumi.BoolPtrInput
	// `false` by default. If set to `true`, this resource will ignore any policies return from Vault or specified in the resource. You can use `identity.EntityPolicies` to manage policies for this entity in a decoupled manner.
	ExternalPolicies pulumi.BoolPtrInput
	// A Map of additional metadata to associate with the user.
	Metadata pulumi.StringMapInput
	// Name of the identity entity to create.
	Name pulumi.StringPtrInput
	// A list of policies to apply to the entity.
	Policies pulumi.StringArrayInput
}

The set of arguments for constructing a Entity resource.

func (EntityArgs) ElementType 

func (EntityArgs) ElementType() reflect.Type

type EntityArray added in v3.4.1 

type EntityArray []EntityInput

func (EntityArray) ElementType added in v3.4.1 

func (EntityArray) ElementType() reflect.Type

func (EntityArray) ToEntityArrayOutput added in v3.4.1 

func (i EntityArray) ToEntityArrayOutput() EntityArrayOutput

func (EntityArray) ToEntityArrayOutputWithContext added in v3.4.1 

func (i EntityArray) ToEntityArrayOutputWithContext(ctx context.Context) EntityArrayOutput

type EntityArrayInput added in v3.4.1 

type EntityArrayInput interface {
	pulumi.Input

	ToEntityArrayOutput() EntityArrayOutput
	ToEntityArrayOutputWithContext(context.Context) EntityArrayOutput
}

EntityArrayInput is an input type that accepts EntityArray and EntityArrayOutput values. You can construct a concrete instance of `EntityArrayInput` via: 

EntityArray{ EntityArgs{...} }

type EntityArrayOutput added in v3.4.1 

type EntityArrayOutput struct{ *pulumi.OutputState }

func (EntityArrayOutput) ElementType added in v3.4.1 

func (EntityArrayOutput) ElementType() reflect.Type

func (EntityArrayOutput) Index added in v3.4.1 

func (o EntityArrayOutput) Index(i pulumi.IntInput) EntityOutput

func (EntityArrayOutput) ToEntityArrayOutput added in v3.4.1 

func (o EntityArrayOutput) ToEntityArrayOutput() EntityArrayOutput

func (EntityArrayOutput) ToEntityArrayOutputWithContext added in v3.4.1 

func (o EntityArrayOutput) ToEntityArrayOutputWithContext(ctx context.Context) EntityArrayOutput

type EntityInput added in v3.0.2 

type EntityInput interface {
	pulumi.Input

	ToEntityOutput() EntityOutput
	ToEntityOutputWithContext(ctx context.Context) EntityOutput
}

type EntityMap added in v3.4.1 

type EntityMap map[string]EntityInput

func (EntityMap) ElementType added in v3.4.1 

func (EntityMap) ElementType() reflect.Type

func (EntityMap) ToEntityMapOutput added in v3.4.1 

func (i EntityMap) ToEntityMapOutput() EntityMapOutput

func (EntityMap) ToEntityMapOutputWithContext added in v3.4.1 

func (i EntityMap) ToEntityMapOutputWithContext(ctx context.Context) EntityMapOutput

type EntityMapInput added in v3.4.1 

type EntityMapInput interface {
	pulumi.Input

	ToEntityMapOutput() EntityMapOutput
	ToEntityMapOutputWithContext(context.Context) EntityMapOutput
}

EntityMapInput is an input type that accepts EntityMap and EntityMapOutput values. You can construct a concrete instance of `EntityMapInput` via: 

EntityMap{ "key": EntityArgs{...} }

type EntityMapOutput added in v3.4.1 

type EntityMapOutput struct{ *pulumi.OutputState }

func (EntityMapOutput) ElementType added in v3.4.1 

func (EntityMapOutput) ElementType() reflect.Type

func (EntityMapOutput) MapIndex added in v3.4.1 

func (o EntityMapOutput) MapIndex(k pulumi.StringInput) EntityOutput

func (EntityMapOutput) ToEntityMapOutput added in v3.4.1 

func (o EntityMapOutput) ToEntityMapOutput() EntityMapOutput

func (EntityMapOutput) ToEntityMapOutputWithContext added in v3.4.1 

func (o EntityMapOutput) ToEntityMapOutputWithContext(ctx context.Context) EntityMapOutput

type EntityOutput added in v3.0.2 

type EntityOutput struct {
	*pulumi.OutputState
}

func (EntityOutput) ElementType added in v3.0.2 

func (EntityOutput) ElementType() reflect.Type

func (EntityOutput) ToEntityOutput added in v3.0.2 

func (o EntityOutput) ToEntityOutput() EntityOutput

func (EntityOutput) ToEntityOutputWithContext added in v3.0.2 

func (o EntityOutput) ToEntityOutputWithContext(ctx context.Context) EntityOutput

func (EntityOutput) ToEntityPtrOutput added in v3.4.1 

func (o EntityOutput) ToEntityPtrOutput() EntityPtrOutput

func (EntityOutput) ToEntityPtrOutputWithContext added in v3.4.1 

func (o EntityOutput) ToEntityPtrOutputWithContext(ctx context.Context) EntityPtrOutput

type EntityPolicies 

type EntityPolicies struct {
	pulumi.CustomResourceState

	// Entity ID to assign policies to.
	EntityId pulumi.StringOutput `pulumi:"entityId"`
	// The name of the entity that are assigned the policies.
	EntityName pulumi.StringOutput `pulumi:"entityName"`
	// Defaults to `true`.
	Exclusive pulumi.BoolPtrOutput `pulumi:"exclusive"`
	// List of policies to assign to the entity
	Policies pulumi.StringArrayOutput `pulumi:"policies"`
}

Manages policies for an Identity Entity for Vault. The [Identity secrets engine](https://www.vaultproject.io/docs/secrets/identity/index.html) is the identity management solution for Vault.

## Example Usage ### Exclusive Policies

```go package main

import ( 

"github.com/pulumi/pulumi-vault/sdk/v3/go/vault/identity"
"github.com/pulumi/pulumi/sdk/v2/go/pulumi"

) 

func main() {
	pulumi.Run(func(ctx *pulumi.Context) error {
		entity, err := identity.NewEntity(ctx, "entity", &identity.EntityArgs{
			ExternalPolicies: pulumi.Bool(true),
		})
		if err != nil {
			return err
		}
		_, err = identity.NewEntityPolicies(ctx, "policies", &identity.EntityPoliciesArgs{
			Policies: pulumi.StringArray{
				pulumi.String("default"),
				pulumi.String("test"),
			},
			Exclusive: pulumi.Bool(true),
			EntityId:  entity.ID(),
		})
		if err != nil {
			return err
		}
		return nil
	})
}

``` ### Non-exclusive Policies

```go package main

import ( 

"github.com/pulumi/pulumi-vault/sdk/v3/go/vault/identity"
"github.com/pulumi/pulumi/sdk/v2/go/pulumi"

) 

func main() {
	pulumi.Run(func(ctx *pulumi.Context) error {
		entity, err := identity.NewEntity(ctx, "entity", &identity.EntityArgs{
			ExternalPolicies: pulumi.Bool(true),
		})
		if err != nil {
			return err
		}
		_, err = identity.NewEntityPolicies(ctx, "_default", &identity.EntityPoliciesArgs{
			Policies: pulumi.StringArray{
				pulumi.String("default"),
				pulumi.String("test"),
			},
			Exclusive: pulumi.Bool(false),
			EntityId:  entity.ID(),
		})
		if err != nil {
			return err
		}
		_, err = identity.NewEntityPolicies(ctx, "others", &identity.EntityPoliciesArgs{
			Policies: pulumi.StringArray{
				pulumi.String("others"),
			},
			Exclusive: pulumi.Bool(false),
			EntityId:  entity.ID(),
		})
		if err != nil {
			return err
		}
		return nil
	})
}

```

func GetEntityPolicies 

func GetEntityPolicies(ctx *pulumi.Context,
	name string, id pulumi.IDInput, state *EntityPoliciesState, opts ...pulumi.ResourceOption) (*EntityPolicies, error)

GetEntityPolicies gets an existing EntityPolicies resource's state with the given name, ID, and optional state properties that are used to uniquely qualify the lookup (nil if not required).

func NewEntityPolicies 

func NewEntityPolicies(ctx *pulumi.Context,
	name string, args *EntityPoliciesArgs, opts ...pulumi.ResourceOption) (*EntityPolicies, error)

NewEntityPolicies registers a new resource with the given unique name, arguments, and options.

func (*EntityPolicies) ElementType added in v3.0.2 

func (*EntityPolicies) ElementType() reflect.Type

func (*EntityPolicies) ToEntityPoliciesOutput added in v3.0.2 

func (i *EntityPolicies) ToEntityPoliciesOutput() EntityPoliciesOutput

func (*EntityPolicies) ToEntityPoliciesOutputWithContext added in v3.0.2 

func (i *EntityPolicies) ToEntityPoliciesOutputWithContext(ctx context.Context) EntityPoliciesOutput

func (*EntityPolicies) ToEntityPoliciesPtrOutput added in v3.4.1 

func (i *EntityPolicies) ToEntityPoliciesPtrOutput() EntityPoliciesPtrOutput

func (*EntityPolicies) ToEntityPoliciesPtrOutputWithContext added in v3.4.1 

func (i *EntityPolicies) ToEntityPoliciesPtrOutputWithContext(ctx context.Context) EntityPoliciesPtrOutput

type EntityPoliciesArgs 

type EntityPoliciesArgs struct {
	// Entity ID to assign policies to.
	EntityId pulumi.StringInput
	// Defaults to `true`.
	Exclusive pulumi.BoolPtrInput
	// List of policies to assign to the entity
	Policies pulumi.StringArrayInput
}

The set of arguments for constructing a EntityPolicies resource.

func (EntityPoliciesArgs) ElementType 

func (EntityPoliciesArgs) ElementType() reflect.Type

type EntityPoliciesArray added in v3.4.1 

type EntityPoliciesArray []EntityPoliciesInput

func (EntityPoliciesArray) ElementType added in v3.4.1 

func (EntityPoliciesArray) ElementType() reflect.Type

func (EntityPoliciesArray) ToEntityPoliciesArrayOutput added in v3.4.1 

func (i EntityPoliciesArray) ToEntityPoliciesArrayOutput() EntityPoliciesArrayOutput

func (EntityPoliciesArray) ToEntityPoliciesArrayOutputWithContext added in v3.4.1 

func (i EntityPoliciesArray) ToEntityPoliciesArrayOutputWithContext(ctx context.Context) EntityPoliciesArrayOutput

type EntityPoliciesArrayInput added in v3.4.1 

type EntityPoliciesArrayInput interface {
	pulumi.Input

	ToEntityPoliciesArrayOutput() EntityPoliciesArrayOutput
	ToEntityPoliciesArrayOutputWithContext(context.Context) EntityPoliciesArrayOutput
}

EntityPoliciesArrayInput is an input type that accepts EntityPoliciesArray and EntityPoliciesArrayOutput values. You can construct a concrete instance of `EntityPoliciesArrayInput` via: 

EntityPoliciesArray{ EntityPoliciesArgs{...} }

type EntityPoliciesArrayOutput added in v3.4.1 

type EntityPoliciesArrayOutput struct{ *pulumi.OutputState }

func (EntityPoliciesArrayOutput) ElementType added in v3.4.1 

func (EntityPoliciesArrayOutput) ElementType() reflect.Type

func (EntityPoliciesArrayOutput) Index added in v3.4.1 

func (o EntityPoliciesArrayOutput) Index(i pulumi.IntInput) EntityPoliciesOutput

func (EntityPoliciesArrayOutput) ToEntityPoliciesArrayOutput added in v3.4.1 

func (o EntityPoliciesArrayOutput) ToEntityPoliciesArrayOutput() EntityPoliciesArrayOutput

func (EntityPoliciesArrayOutput) ToEntityPoliciesArrayOutputWithContext added in v3.4.1 

func (o EntityPoliciesArrayOutput) ToEntityPoliciesArrayOutputWithContext(ctx context.Context) EntityPoliciesArrayOutput

type EntityPoliciesInput added in v3.0.2 

type EntityPoliciesInput interface {
	pulumi.Input

	ToEntityPoliciesOutput() EntityPoliciesOutput
	ToEntityPoliciesOutputWithContext(ctx context.Context) EntityPoliciesOutput
}

type EntityPoliciesMap added in v3.4.1 

type EntityPoliciesMap map[string]EntityPoliciesInput

func (EntityPoliciesMap) ElementType added in v3.4.1 

func (EntityPoliciesMap) ElementType() reflect.Type

func (EntityPoliciesMap) ToEntityPoliciesMapOutput added in v3.4.1 

func (i EntityPoliciesMap) ToEntityPoliciesMapOutput() EntityPoliciesMapOutput

func (EntityPoliciesMap) ToEntityPoliciesMapOutputWithContext added in v3.4.1 

func (i EntityPoliciesMap) ToEntityPoliciesMapOutputWithContext(ctx context.Context) EntityPoliciesMapOutput

type EntityPoliciesMapInput added in v3.4.1 

type EntityPoliciesMapInput interface {
	pulumi.Input

	ToEntityPoliciesMapOutput() EntityPoliciesMapOutput
	ToEntityPoliciesMapOutputWithContext(context.Context) EntityPoliciesMapOutput
}

EntityPoliciesMapInput is an input type that accepts EntityPoliciesMap and EntityPoliciesMapOutput values. You can construct a concrete instance of `EntityPoliciesMapInput` via: 

EntityPoliciesMap{ "key": EntityPoliciesArgs{...} }

type EntityPoliciesMapOutput added in v3.4.1 

type EntityPoliciesMapOutput struct{ *pulumi.OutputState }

func (EntityPoliciesMapOutput) ElementType added in v3.4.1 

func (EntityPoliciesMapOutput) ElementType() reflect.Type

func (EntityPoliciesMapOutput) MapIndex added in v3.4.1 

func (o EntityPoliciesMapOutput) MapIndex(k pulumi.StringInput) EntityPoliciesOutput

func (EntityPoliciesMapOutput) ToEntityPoliciesMapOutput added in v3.4.1 

func (o EntityPoliciesMapOutput) ToEntityPoliciesMapOutput() EntityPoliciesMapOutput

func (EntityPoliciesMapOutput) ToEntityPoliciesMapOutputWithContext added in v3.4.1 

func (o EntityPoliciesMapOutput) ToEntityPoliciesMapOutputWithContext(ctx context.Context) EntityPoliciesMapOutput

type EntityPoliciesOutput added in v3.0.2 

type EntityPoliciesOutput struct {
	*pulumi.OutputState
}

func (EntityPoliciesOutput) ElementType added in v3.0.2 

func (EntityPoliciesOutput) ElementType() reflect.Type

func (EntityPoliciesOutput) ToEntityPoliciesOutput added in v3.0.2 

func (o EntityPoliciesOutput) ToEntityPoliciesOutput() EntityPoliciesOutput

func (EntityPoliciesOutput) ToEntityPoliciesOutputWithContext added in v3.0.2 

func (o EntityPoliciesOutput) ToEntityPoliciesOutputWithContext(ctx context.Context) EntityPoliciesOutput

func (EntityPoliciesOutput) ToEntityPoliciesPtrOutput added in v3.4.1 

func (o EntityPoliciesOutput) ToEntityPoliciesPtrOutput() EntityPoliciesPtrOutput

func (EntityPoliciesOutput) ToEntityPoliciesPtrOutputWithContext added in v3.4.1 

func (o EntityPoliciesOutput) ToEntityPoliciesPtrOutputWithContext(ctx context.Context) EntityPoliciesPtrOutput

type EntityPoliciesPtrInput added in v3.4.1 

type EntityPoliciesPtrInput interface {
	pulumi.Input

	ToEntityPoliciesPtrOutput() EntityPoliciesPtrOutput
	ToEntityPoliciesPtrOutputWithContext(ctx context.Context) EntityPoliciesPtrOutput
}

type EntityPoliciesPtrOutput added in v3.4.1 

type EntityPoliciesPtrOutput struct {
	*pulumi.OutputState
}

func (EntityPoliciesPtrOutput) ElementType added in v3.4.1 

func (EntityPoliciesPtrOutput) ElementType() reflect.Type

func (EntityPoliciesPtrOutput) ToEntityPoliciesPtrOutput added in v3.4.1 

func (o EntityPoliciesPtrOutput) ToEntityPoliciesPtrOutput() EntityPoliciesPtrOutput

func (EntityPoliciesPtrOutput) ToEntityPoliciesPtrOutputWithContext added in v3.4.1 

func (o EntityPoliciesPtrOutput) ToEntityPoliciesPtrOutputWithContext(ctx context.Context) EntityPoliciesPtrOutput

type EntityPoliciesState 

type EntityPoliciesState struct {
	// Entity ID to assign policies to.
	EntityId pulumi.StringPtrInput
	// The name of the entity that are assigned the policies.
	EntityName pulumi.StringPtrInput
	// Defaults to `true`.
	Exclusive pulumi.BoolPtrInput
	// List of policies to assign to the entity
	Policies pulumi.StringArrayInput
}

func (EntityPoliciesState) ElementType 

func (EntityPoliciesState) ElementType() reflect.Type

type EntityPtrInput added in v3.4.1 

type EntityPtrInput interface {
	pulumi.Input

	ToEntityPtrOutput() EntityPtrOutput
	ToEntityPtrOutputWithContext(ctx context.Context) EntityPtrOutput
}

type EntityPtrOutput added in v3.4.1 

type EntityPtrOutput struct {
	*pulumi.OutputState
}

func (EntityPtrOutput) ElementType added in v3.4.1 

func (EntityPtrOutput) ElementType() reflect.Type

func (EntityPtrOutput) ToEntityPtrOutput added in v3.4.1 

func (o EntityPtrOutput) ToEntityPtrOutput() EntityPtrOutput

func (EntityPtrOutput) ToEntityPtrOutputWithContext added in v3.4.1 

func (o EntityPtrOutput) ToEntityPtrOutputWithContext(ctx context.Context) EntityPtrOutput

type EntityState 

type EntityState struct {
	// True/false Is this entity currently disabled. Defaults to `false`
	Disabled pulumi.BoolPtrInput
	// `false` by default. If set to `true`, this resource will ignore any policies return from Vault or specified in the resource. You can use `identity.EntityPolicies` to manage policies for this entity in a decoupled manner.
	ExternalPolicies pulumi.BoolPtrInput
	// A Map of additional metadata to associate with the user.
	Metadata pulumi.StringMapInput
	// Name of the identity entity to create.
	Name pulumi.StringPtrInput
	// A list of policies to apply to the entity.
	Policies pulumi.StringArrayInput
}

func (EntityState) ElementType 

func (EntityState) ElementType() reflect.Type

type GetEntityAliasType 

type GetEntityAliasType struct {
	// Canonical ID of the Alias
	CanonicalId string `pulumi:"canonicalId"`
	// Creation time of the Alias
	CreationTime string `pulumi:"creationTime"`
	// ID of the alias
	Id string `pulumi:"id"`
	// Last update time of the alias
	LastUpdateTime string `pulumi:"lastUpdateTime"`
	// List of canonical IDs merged with this alias
	MergedFromCanonicalIds []string `pulumi:"mergedFromCanonicalIds"`
	// Arbitrary metadata
	Metadata map[string]interface{} `pulumi:"metadata"`
	// Authentication mount acccessor which this alias belongs to
	MountAccessor string `pulumi:"mountAccessor"`
	// Authentication mount path which this alias belongs to
	MountPath string `pulumi:"mountPath"`
	// Authentication mount type which this alias belongs to
	MountType string `pulumi:"mountType"`
	// Name of the alias
	Name string `pulumi:"name"`
}

type GetEntityAliasTypeArgs 

type GetEntityAliasTypeArgs struct {
	// Canonical ID of the Alias
	CanonicalId pulumi.StringInput `pulumi:"canonicalId"`
	// Creation time of the Alias
	CreationTime pulumi.StringInput `pulumi:"creationTime"`
	// ID of the alias
	Id pulumi.StringInput `pulumi:"id"`
	// Last update time of the alias
	LastUpdateTime pulumi.StringInput `pulumi:"lastUpdateTime"`
	// List of canonical IDs merged with this alias
	MergedFromCanonicalIds pulumi.StringArrayInput `pulumi:"mergedFromCanonicalIds"`
	// Arbitrary metadata
	Metadata pulumi.MapInput `pulumi:"metadata"`
	// Authentication mount acccessor which this alias belongs to
	MountAccessor pulumi.StringInput `pulumi:"mountAccessor"`
	// Authentication mount path which this alias belongs to
	MountPath pulumi.StringInput `pulumi:"mountPath"`
	// Authentication mount type which this alias belongs to
	MountType pulumi.StringInput `pulumi:"mountType"`
	// Name of the alias
	Name pulumi.StringInput `pulumi:"name"`
}

func (GetEntityAliasTypeArgs) ElementType 

func (GetEntityAliasTypeArgs) ElementType() reflect.Type

func (GetEntityAliasTypeArgs) ToGetEntityAliasTypeOutput 

func (i GetEntityAliasTypeArgs) ToGetEntityAliasTypeOutput() GetEntityAliasTypeOutput

func (GetEntityAliasTypeArgs) ToGetEntityAliasTypeOutputWithContext 

func (i GetEntityAliasTypeArgs) ToGetEntityAliasTypeOutputWithContext(ctx context.Context) GetEntityAliasTypeOutput

type GetEntityAliasTypeArray 

type GetEntityAliasTypeArray []GetEntityAliasTypeInput

func (GetEntityAliasTypeArray) ElementType 

func (GetEntityAliasTypeArray) ElementType() reflect.Type

func (GetEntityAliasTypeArray) ToGetEntityAliasTypeArrayOutput 

func (i GetEntityAliasTypeArray) ToGetEntityAliasTypeArrayOutput() GetEntityAliasTypeArrayOutput

func (GetEntityAliasTypeArray) ToGetEntityAliasTypeArrayOutputWithContext 

func (i GetEntityAliasTypeArray) ToGetEntityAliasTypeArrayOutputWithContext(ctx context.Context) GetEntityAliasTypeArrayOutput

type GetEntityAliasTypeArrayInput 

type GetEntityAliasTypeArrayInput interface {
	pulumi.Input

	ToGetEntityAliasTypeArrayOutput() GetEntityAliasTypeArrayOutput
	ToGetEntityAliasTypeArrayOutputWithContext(context.Context) GetEntityAliasTypeArrayOutput
}

GetEntityAliasTypeArrayInput is an input type that accepts GetEntityAliasTypeArray and GetEntityAliasTypeArrayOutput values. You can construct a concrete instance of `GetEntityAliasTypeArrayInput` via: 

GetEntityAliasTypeArray{ GetEntityAliasTypeArgs{...} }

type GetEntityAliasTypeArrayOutput 

type GetEntityAliasTypeArrayOutput struct{ *pulumi.OutputState }

func (GetEntityAliasTypeArrayOutput) ElementType 

func (GetEntityAliasTypeArrayOutput) ElementType() reflect.Type

func (GetEntityAliasTypeArrayOutput) Index 

func (o GetEntityAliasTypeArrayOutput) Index(i pulumi.IntInput) GetEntityAliasTypeOutput

func (GetEntityAliasTypeArrayOutput) ToGetEntityAliasTypeArrayOutput 

func (o GetEntityAliasTypeArrayOutput) ToGetEntityAliasTypeArrayOutput() GetEntityAliasTypeArrayOutput

func (GetEntityAliasTypeArrayOutput) ToGetEntityAliasTypeArrayOutputWithContext 

func (o GetEntityAliasTypeArrayOutput) ToGetEntityAliasTypeArrayOutputWithContext(ctx context.Context) GetEntityAliasTypeArrayOutput

type GetEntityAliasTypeInput 

type GetEntityAliasTypeInput interface {
	pulumi.Input

	ToGetEntityAliasTypeOutput() GetEntityAliasTypeOutput
	ToGetEntityAliasTypeOutputWithContext(context.Context) GetEntityAliasTypeOutput
}

GetEntityAliasTypeInput is an input type that accepts GetEntityAliasTypeArgs and GetEntityAliasTypeOutput values. You can construct a concrete instance of `GetEntityAliasTypeInput` via: 

GetEntityAliasTypeArgs{...}

type GetEntityAliasTypeOutput 

type GetEntityAliasTypeOutput struct{ *pulumi.OutputState }

func (GetEntityAliasTypeOutput) CanonicalId 

func (o GetEntityAliasTypeOutput) CanonicalId() pulumi.StringOutput

Canonical ID of the Alias

func (GetEntityAliasTypeOutput) CreationTime 

func (o GetEntityAliasTypeOutput) CreationTime() pulumi.StringOutput

Creation time of the Alias

func (GetEntityAliasTypeOutput) ElementType 

func (GetEntityAliasTypeOutput) ElementType() reflect.Type

func (GetEntityAliasTypeOutput) Id 

func (o GetEntityAliasTypeOutput) Id() pulumi.StringOutput

ID of the alias

func (GetEntityAliasTypeOutput) LastUpdateTime 

func (o GetEntityAliasTypeOutput) LastUpdateTime() pulumi.StringOutput

Last update time of the alias

func (GetEntityAliasTypeOutput) MergedFromCanonicalIds 

func (o GetEntityAliasTypeOutput) MergedFromCanonicalIds() pulumi.StringArrayOutput

List of canonical IDs merged with this alias

func (GetEntityAliasTypeOutput) Metadata 

func (o GetEntityAliasTypeOutput) Metadata() pulumi.MapOutput

Arbitrary metadata

func (GetEntityAliasTypeOutput) MountAccessor 

func (o GetEntityAliasTypeOutput) MountAccessor() pulumi.StringOutput

Authentication mount acccessor which this alias belongs to

func (GetEntityAliasTypeOutput) MountPath 

func (o GetEntityAliasTypeOutput) MountPath() pulumi.StringOutput

Authentication mount path which this alias belongs to

func (GetEntityAliasTypeOutput) MountType 

func (o GetEntityAliasTypeOutput) MountType() pulumi.StringOutput

Authentication mount type which this alias belongs to

func (GetEntityAliasTypeOutput) Name 

func (o GetEntityAliasTypeOutput) Name() pulumi.StringOutput

Name of the alias

func (GetEntityAliasTypeOutput) ToGetEntityAliasTypeOutput 

func (o GetEntityAliasTypeOutput) ToGetEntityAliasTypeOutput() GetEntityAliasTypeOutput

func (GetEntityAliasTypeOutput) ToGetEntityAliasTypeOutputWithContext 

func (o GetEntityAliasTypeOutput) ToGetEntityAliasTypeOutputWithContext(ctx context.Context) GetEntityAliasTypeOutput

type Group 

type Group struct {
	pulumi.CustomResourceState

	// `false` by default. If set to `true`, this resource will ignore any Entity IDs returned from Vault or specified in the resource. You can use `identity.GroupMemberEntityIds` to manage Entity IDs for this group in a decoupled manner.
	ExternalMemberEntityIds pulumi.BoolPtrOutput `pulumi:"externalMemberEntityIds"`
	// `false` by default. If set to `true`, this resource will ignore any policies returned from Vault or specified in the resource. You can use `identity.GroupPolicies` to manage policies for this group in a decoupled manner.
	ExternalPolicies pulumi.BoolPtrOutput `pulumi:"externalPolicies"`
	// A list of Entity IDs to be assigned as group members. Not allowed on `external` groups.
	MemberEntityIds pulumi.StringArrayOutput `pulumi:"memberEntityIds"`
	// A list of Group IDs to be assigned as group members. Not allowed on `external` groups.
	MemberGroupIds pulumi.StringArrayOutput `pulumi:"memberGroupIds"`
	// A Map of additional metadata to associate with the group.
	Metadata pulumi.StringMapOutput `pulumi:"metadata"`
	// Name of the identity group to create.
	Name pulumi.StringOutput `pulumi:"name"`
	// A list of policies to apply to the group.
	Policies pulumi.StringArrayOutput `pulumi:"policies"`
	// Type of the group, internal or external. Defaults to `internal`.
	Type pulumi.StringPtrOutput `pulumi:"type"`
}

Creates an Identity Group for Vault. The [Identity secrets engine](https://www.vaultproject.io/docs/secrets/identity/index.html) is the identity management solution for Vault.

A group can contain multiple entities as its members. A group can also have subgroups. Policies set on the group is granted to all members of the group. During request time, when the token's entity ID is being evaluated for the policies that it has access to; along with the policies on the entity itself, policies that are inherited due to group memberships are also granted.

## Example Usage ### Internal Group

```go package main

import ( 

"github.com/pulumi/pulumi-vault/sdk/v3/go/vault/identity"
"github.com/pulumi/pulumi/sdk/v2/go/pulumi"

) 

func main() {
	pulumi.Run(func(ctx *pulumi.Context) error {
		_, err := identity.NewGroup(ctx, "internal", &identity.GroupArgs{
			Metadata: pulumi.StringMap{
				"version": pulumi.String("2"),
			},
			Policies: pulumi.StringArray{
				pulumi.String("dev"),
				pulumi.String("test"),
			},
			Type: pulumi.String("internal"),
		})
		if err != nil {
			return err
		}
		return nil
	})
}

``` ### External Group

```go package main

import ( 

"github.com/pulumi/pulumi-vault/sdk/v3/go/vault/identity"
"github.com/pulumi/pulumi/sdk/v2/go/pulumi"

) 

func main() {
	pulumi.Run(func(ctx *pulumi.Context) error {
		_, err := identity.NewGroup(ctx, "group", &identity.GroupArgs{
			Metadata: pulumi.StringMap{
				"version": pulumi.String("1"),
			},
			Policies: pulumi.StringArray{
				pulumi.String("test"),
			},
			Type: pulumi.String("external"),
		})
		if err != nil {
			return err
		}
		return nil
	})
}

```

func GetGroup 

func GetGroup(ctx *pulumi.Context,
	name string, id pulumi.IDInput, state *GroupState, opts ...pulumi.ResourceOption) (*Group, error)

GetGroup gets an existing Group resource's state with the given name, ID, and optional state properties that are used to uniquely qualify the lookup (nil if not required).

func NewGroup 

func NewGroup(ctx *pulumi.Context,
	name string, args *GroupArgs, opts ...pulumi.ResourceOption) (*Group, error)

NewGroup registers a new resource with the given unique name, arguments, and options.

func (*Group) ElementType added in v3.0.2 

func (*Group) ElementType() reflect.Type

func (*Group) ToGroupOutput added in v3.0.2 

func (i *Group) ToGroupOutput() GroupOutput

func (*Group) ToGroupOutputWithContext added in v3.0.2 

func (i *Group) ToGroupOutputWithContext(ctx context.Context) GroupOutput

func (*Group) ToGroupPtrOutput added in v3.4.1 

func (i *Group) ToGroupPtrOutput() GroupPtrOutput

func (*Group) ToGroupPtrOutputWithContext added in v3.4.1 

func (i *Group) ToGroupPtrOutputWithContext(ctx context.Context) GroupPtrOutput

type GroupAlias 

type GroupAlias struct {
	pulumi.CustomResourceState

	// ID of the group to which this is an alias.
	CanonicalId pulumi.StringOutput `pulumi:"canonicalId"`
	// Mount accessor of the authentication backend to which this alias belongs to.
	MountAccessor pulumi.StringOutput `pulumi:"mountAccessor"`
	// Name of the group alias to create.
	Name pulumi.StringOutput `pulumi:"name"`
}

Creates an Identity Group Alias for Vault. The [Identity secrets engine](https://www.vaultproject.io/docs/secrets/identity/index.html) is the identity management solution for Vault.

Group aliases allows entity membership in external groups to be managed semi-automatically. External group serves as a mapping to a group that is outside of the identity store. External groups can have one (and only one) alias. This alias should map to a notion of group that is outside of the identity store. For example, groups in LDAP, and teams in GitHub. A username in LDAP, belonging to a group in LDAP, can get its entity ID added as a member of a group in Vault automatically during logins and token renewals. This works only if the group in Vault is an external group and has an alias that maps to the group in LDAP. If the user is removed from the group in LDAP, that change gets reflected in Vault only upon the subsequent login or renewal operation.

## Example Usage

```go package main

import ( 

"github.com/pulumi/pulumi-vault/sdk/v3/go/vault"
"github.com/pulumi/pulumi-vault/sdk/v3/go/vault/identity"
"github.com/pulumi/pulumi/sdk/v2/go/pulumi"

) 

func main() {
	pulumi.Run(func(ctx *pulumi.Context) error {
		group, err := identity.NewGroup(ctx, "group", &identity.GroupArgs{
			Policies: pulumi.StringArray{
				pulumi.String("test"),
			},
			Type: pulumi.String("external"),
		})
		if err != nil {
			return err
		}
		github, err := vault.NewAuthBackend(ctx, "github", &vault.AuthBackendArgs{
			Path: pulumi.String("github"),
			Type: pulumi.String("github"),
		})
		if err != nil {
			return err
		}
		_, err = identity.NewGroupAlias(ctx, "group_alias", &identity.GroupAliasArgs{
			CanonicalId:   group.ID(),
			MountAccessor: github.Accessor,
			Name:          pulumi.String("Github_Team_Slug"),
		})
		if err != nil {
			return err
		}
		return nil
	})
}

```

func GetGroupAlias 

func GetGroupAlias(ctx *pulumi.Context,
	name string, id pulumi.IDInput, state *GroupAliasState, opts ...pulumi.ResourceOption) (*GroupAlias, error)

GetGroupAlias gets an existing GroupAlias resource's state with the given name, ID, and optional state properties that are used to uniquely qualify the lookup (nil if not required).

func NewGroupAlias 

func NewGroupAlias(ctx *pulumi.Context,
	name string, args *GroupAliasArgs, opts ...pulumi.ResourceOption) (*GroupAlias, error)

NewGroupAlias registers a new resource with the given unique name, arguments, and options.

func (*GroupAlias) ElementType added in v3.0.2 

func (*GroupAlias) ElementType() reflect.Type

func (*GroupAlias) ToGroupAliasOutput added in v3.0.2 

func (i *GroupAlias) ToGroupAliasOutput() GroupAliasOutput

func (*GroupAlias) ToGroupAliasOutputWithContext added in v3.0.2 

func (i *GroupAlias) ToGroupAliasOutputWithContext(ctx context.Context) GroupAliasOutput

func (*GroupAlias) ToGroupAliasPtrOutput added in v3.4.1 

func (i *GroupAlias) ToGroupAliasPtrOutput() GroupAliasPtrOutput

func (*GroupAlias) ToGroupAliasPtrOutputWithContext added in v3.4.1 

func (i *GroupAlias) ToGroupAliasPtrOutputWithContext(ctx context.Context) GroupAliasPtrOutput

type GroupAliasArgs 

type GroupAliasArgs struct {
	// ID of the group to which this is an alias.
	CanonicalId pulumi.StringInput
	// Mount accessor of the authentication backend to which this alias belongs to.
	MountAccessor pulumi.StringInput
	// Name of the group alias to create.
	Name pulumi.StringInput
}

The set of arguments for constructing a GroupAlias resource.

func (GroupAliasArgs) ElementType 

func (GroupAliasArgs) ElementType() reflect.Type

type GroupAliasArray added in v3.4.1 

type GroupAliasArray []GroupAliasInput

func (GroupAliasArray) ElementType added in v3.4.1 

func (GroupAliasArray) ElementType() reflect.Type

func (GroupAliasArray) ToGroupAliasArrayOutput added in v3.4.1 

func (i GroupAliasArray) ToGroupAliasArrayOutput() GroupAliasArrayOutput

func (GroupAliasArray) ToGroupAliasArrayOutputWithContext added in v3.4.1 

func (i GroupAliasArray) ToGroupAliasArrayOutputWithContext(ctx context.Context) GroupAliasArrayOutput

type GroupAliasArrayInput added in v3.4.1 

type GroupAliasArrayInput interface {
	pulumi.Input

	ToGroupAliasArrayOutput() GroupAliasArrayOutput
	ToGroupAliasArrayOutputWithContext(context.Context) GroupAliasArrayOutput
}

GroupAliasArrayInput is an input type that accepts GroupAliasArray and GroupAliasArrayOutput values. You can construct a concrete instance of `GroupAliasArrayInput` via: 

GroupAliasArray{ GroupAliasArgs{...} }

type GroupAliasArrayOutput added in v3.4.1 

type GroupAliasArrayOutput struct{ *pulumi.OutputState }

func (GroupAliasArrayOutput) ElementType added in v3.4.1 

func (GroupAliasArrayOutput) ElementType() reflect.Type

func (GroupAliasArrayOutput) Index added in v3.4.1 

func (o GroupAliasArrayOutput) Index(i pulumi.IntInput) GroupAliasOutput

func (GroupAliasArrayOutput) ToGroupAliasArrayOutput added in v3.4.1 

func (o GroupAliasArrayOutput) ToGroupAliasArrayOutput() GroupAliasArrayOutput

func (GroupAliasArrayOutput) ToGroupAliasArrayOutputWithContext added in v3.4.1 

func (o GroupAliasArrayOutput) ToGroupAliasArrayOutputWithContext(ctx context.Context) GroupAliasArrayOutput

type GroupAliasInput added in v3.0.2 

type GroupAliasInput interface {
	pulumi.Input

	ToGroupAliasOutput() GroupAliasOutput
	ToGroupAliasOutputWithContext(ctx context.Context) GroupAliasOutput
}

type GroupAliasMap added in v3.4.1 

type GroupAliasMap map[string]GroupAliasInput

func (GroupAliasMap) ElementType added in v3.4.1 

func (GroupAliasMap) ElementType() reflect.Type

func (GroupAliasMap) ToGroupAliasMapOutput added in v3.4.1 

func (i GroupAliasMap) ToGroupAliasMapOutput() GroupAliasMapOutput

func (GroupAliasMap) ToGroupAliasMapOutputWithContext added in v3.4.1 

func (i GroupAliasMap) ToGroupAliasMapOutputWithContext(ctx context.Context) GroupAliasMapOutput

type GroupAliasMapInput added in v3.4.1 

type GroupAliasMapInput interface {
	pulumi.Input

	ToGroupAliasMapOutput() GroupAliasMapOutput
	ToGroupAliasMapOutputWithContext(context.Context) GroupAliasMapOutput
}

GroupAliasMapInput is an input type that accepts GroupAliasMap and GroupAliasMapOutput values. You can construct a concrete instance of `GroupAliasMapInput` via: 

GroupAliasMap{ "key": GroupAliasArgs{...} }

type GroupAliasMapOutput added in v3.4.1 

type GroupAliasMapOutput struct{ *pulumi.OutputState }

func (GroupAliasMapOutput) ElementType added in v3.4.1 

func (GroupAliasMapOutput) ElementType() reflect.Type

func (GroupAliasMapOutput) MapIndex added in v3.4.1 

func (o GroupAliasMapOutput) MapIndex(k pulumi.StringInput) GroupAliasOutput

func (GroupAliasMapOutput) ToGroupAliasMapOutput added in v3.4.1 

func (o GroupAliasMapOutput) ToGroupAliasMapOutput() GroupAliasMapOutput

func (GroupAliasMapOutput) ToGroupAliasMapOutputWithContext added in v3.4.1 

func (o GroupAliasMapOutput) ToGroupAliasMapOutputWithContext(ctx context.Context) GroupAliasMapOutput

type GroupAliasOutput added in v3.0.2 

type GroupAliasOutput struct {
	*pulumi.OutputState
}

func (GroupAliasOutput) ElementType added in v3.0.2 

func (GroupAliasOutput) ElementType() reflect.Type

func (GroupAliasOutput) ToGroupAliasOutput added in v3.0.2 

func (o GroupAliasOutput) ToGroupAliasOutput() GroupAliasOutput

func (GroupAliasOutput) ToGroupAliasOutputWithContext added in v3.0.2 

func (o GroupAliasOutput) ToGroupAliasOutputWithContext(ctx context.Context) GroupAliasOutput

func (GroupAliasOutput) ToGroupAliasPtrOutput added in v3.4.1 

func (o GroupAliasOutput) ToGroupAliasPtrOutput() GroupAliasPtrOutput

func (GroupAliasOutput) ToGroupAliasPtrOutputWithContext added in v3.4.1 

func (o GroupAliasOutput) ToGroupAliasPtrOutputWithContext(ctx context.Context) GroupAliasPtrOutput

type GroupAliasPtrInput added in v3.4.1 

type GroupAliasPtrInput interface {
	pulumi.Input

	ToGroupAliasPtrOutput() GroupAliasPtrOutput
	ToGroupAliasPtrOutputWithContext(ctx context.Context) GroupAliasPtrOutput
}

type GroupAliasPtrOutput added in v3.4.1 

type GroupAliasPtrOutput struct {
	*pulumi.OutputState
}

func (GroupAliasPtrOutput) ElementType added in v3.4.1 

func (GroupAliasPtrOutput) ElementType() reflect.Type

func (GroupAliasPtrOutput) ToGroupAliasPtrOutput added in v3.4.1 

func (o GroupAliasPtrOutput) ToGroupAliasPtrOutput() GroupAliasPtrOutput

func (GroupAliasPtrOutput) ToGroupAliasPtrOutputWithContext added in v3.4.1 

func (o GroupAliasPtrOutput) ToGroupAliasPtrOutputWithContext(ctx context.Context) GroupAliasPtrOutput

type GroupAliasState 

type GroupAliasState struct {
	// ID of the group to which this is an alias.
	CanonicalId pulumi.StringPtrInput
	// Mount accessor of the authentication backend to which this alias belongs to.
	MountAccessor pulumi.StringPtrInput
	// Name of the group alias to create.
	Name pulumi.StringPtrInput
}

func (GroupAliasState) ElementType 

func (GroupAliasState) ElementType() reflect.Type

type GroupArgs 

type GroupArgs struct {
	// `false` by default. If set to `true`, this resource will ignore any Entity IDs returned from Vault or specified in the resource. You can use `identity.GroupMemberEntityIds` to manage Entity IDs for this group in a decoupled manner.
	ExternalMemberEntityIds pulumi.BoolPtrInput
	// `false` by default. If set to `true`, this resource will ignore any policies returned from Vault or specified in the resource. You can use `identity.GroupPolicies` to manage policies for this group in a decoupled manner.
	ExternalPolicies pulumi.BoolPtrInput
	// A list of Entity IDs to be assigned as group members. Not allowed on `external` groups.
	MemberEntityIds pulumi.StringArrayInput
	// A list of Group IDs to be assigned as group members. Not allowed on `external` groups.
	MemberGroupIds pulumi.StringArrayInput
	// A Map of additional metadata to associate with the group.
	Metadata pulumi.StringMapInput
	// Name of the identity group to create.
	Name pulumi.StringPtrInput
	// A list of policies to apply to the group.
	Policies pulumi.StringArrayInput
	// Type of the group, internal or external. Defaults to `internal`.
	Type pulumi.StringPtrInput
}

The set of arguments for constructing a Group resource.

func (GroupArgs) ElementType 

func (GroupArgs) ElementType() reflect.Type

type GroupArray added in v3.4.1 

type GroupArray []GroupInput

func (GroupArray) ElementType added in v3.4.1 

func (GroupArray) ElementType() reflect.Type

func (GroupArray) ToGroupArrayOutput added in v3.4.1 

func (i GroupArray) ToGroupArrayOutput() GroupArrayOutput

func (GroupArray) ToGroupArrayOutputWithContext added in v3.4.1 

func (i GroupArray) ToGroupArrayOutputWithContext(ctx context.Context) GroupArrayOutput

type GroupArrayInput added in v3.4.1 

type GroupArrayInput interface {
	pulumi.Input

	ToGroupArrayOutput() GroupArrayOutput
	ToGroupArrayOutputWithContext(context.Context) GroupArrayOutput
}

GroupArrayInput is an input type that accepts GroupArray and GroupArrayOutput values. You can construct a concrete instance of `GroupArrayInput` via: 

GroupArray{ GroupArgs{...} }

type GroupArrayOutput added in v3.4.1 

type GroupArrayOutput struct{ *pulumi.OutputState }

func (GroupArrayOutput) ElementType added in v3.4.1 

func (GroupArrayOutput) ElementType() reflect.Type

func (GroupArrayOutput) Index added in v3.4.1 

func (o GroupArrayOutput) Index(i pulumi.IntInput) GroupOutput

func (GroupArrayOutput) ToGroupArrayOutput added in v3.4.1 

func (o GroupArrayOutput) ToGroupArrayOutput() GroupArrayOutput

func (GroupArrayOutput) ToGroupArrayOutputWithContext added in v3.4.1 

func (o GroupArrayOutput) ToGroupArrayOutputWithContext(ctx context.Context) GroupArrayOutput

type GroupInput added in v3.0.2 

type GroupInput interface {
	pulumi.Input

	ToGroupOutput() GroupOutput
	ToGroupOutputWithContext(ctx context.Context) GroupOutput
}

type GroupMap added in v3.4.1 

type GroupMap map[string]GroupInput

func (GroupMap) ElementType added in v3.4.1 

func (GroupMap) ElementType() reflect.Type

func (GroupMap) ToGroupMapOutput added in v3.4.1 

func (i GroupMap) ToGroupMapOutput() GroupMapOutput

func (GroupMap) ToGroupMapOutputWithContext added in v3.4.1 

func (i GroupMap) ToGroupMapOutputWithContext(ctx context.Context) GroupMapOutput

type GroupMapInput added in v3.4.1 

type GroupMapInput interface {
	pulumi.Input

	ToGroupMapOutput() GroupMapOutput
	ToGroupMapOutputWithContext(context.Context) GroupMapOutput
}

GroupMapInput is an input type that accepts GroupMap and GroupMapOutput values. You can construct a concrete instance of `GroupMapInput` via: 

GroupMap{ "key": GroupArgs{...} }

type GroupMapOutput added in v3.4.1 

type GroupMapOutput struct{ *pulumi.OutputState }

func (GroupMapOutput) ElementType added in v3.4.1 

func (GroupMapOutput) ElementType() reflect.Type

func (GroupMapOutput) MapIndex added in v3.4.1 

func (o GroupMapOutput) MapIndex(k pulumi.StringInput) GroupOutput

func (GroupMapOutput) ToGroupMapOutput added in v3.4.1 

func (o GroupMapOutput) ToGroupMapOutput() GroupMapOutput

func (GroupMapOutput) ToGroupMapOutputWithContext added in v3.4.1 

func (o GroupMapOutput) ToGroupMapOutputWithContext(ctx context.Context) GroupMapOutput

type GroupMemberEntityIds 

type GroupMemberEntityIds struct {
	pulumi.CustomResourceState

	// Defaults to `true`.
	Exclusive pulumi.BoolPtrOutput `pulumi:"exclusive"`
	// Group ID to assign member entities to.
	GroupId pulumi.StringOutput `pulumi:"groupId"`
	// The name of the group that are assigned the member entities.
	GroupName pulumi.StringOutput `pulumi:"groupName"`
	// List of member entities that belong to the group
	MemberEntityIds pulumi.StringArrayOutput `pulumi:"memberEntityIds"`
}

Manages member entities for an Identity Group for Vault. The [Identity secrets engine](https://www.vaultproject.io/docs/secrets/identity/index.html) is the identity management solution for Vault.

## Example Usage ### Exclusive Member Entities

```go package main

import ( 

"github.com/pulumi/pulumi-vault/sdk/v3/go/vault/identity"
"github.com/pulumi/pulumi/sdk/v2/go/pulumi"

) 

func main() {
	pulumi.Run(func(ctx *pulumi.Context) error {
		internal, err := identity.NewGroup(ctx, "internal", &identity.GroupArgs{
			Type:                    pulumi.String("internal"),
			ExternalMemberEntityIds: pulumi.Bool(true),
			Metadata: pulumi.StringMap{
				"version": pulumi.String("2"),
			},
		})
		if err != nil {
			return err
		}
		user, err := identity.NewEntity(ctx, "user", nil)
		if err != nil {
			return err
		}
		_, err = identity.NewGroupMemberEntityIds(ctx, "members", &identity.GroupMemberEntityIdsArgs{
			Exclusive: pulumi.Bool(true),
			MemberEntityIds: pulumi.StringArray{
				user.ID(),
			},
			GroupId: internal.ID(),
		})
		if err != nil {
			return err
		}
		return nil
	})
}

``` ### Non-exclusive Member Entities

```go package main

import ( 

"github.com/pulumi/pulumi-vault/sdk/v3/go/vault/identity"
"github.com/pulumi/pulumi/sdk/v2/go/pulumi"

) 

func main() {
	pulumi.Run(func(ctx *pulumi.Context) error {
		internal, err := identity.NewGroup(ctx, "internal", &identity.GroupArgs{
			Type:                    pulumi.String("internal"),
			ExternalMemberEntityIds: pulumi.Bool(true),
			Metadata: pulumi.StringMap{
				"version": pulumi.String("2"),
			},
		})
		if err != nil {
			return err
		}
		testUser, err := identity.NewEntity(ctx, "testUser", nil)
		if err != nil {
			return err
		}
		secondTestUser, err := identity.NewEntity(ctx, "secondTestUser", nil)
		if err != nil {
			return err
		}
		devUser, err := identity.NewEntity(ctx, "devUser", nil)
		if err != nil {
			return err
		}
		_, err = identity.NewGroupMemberEntityIds(ctx, "test", &identity.GroupMemberEntityIdsArgs{
			MemberEntityIds: pulumi.StringArray{
				testUser.ID(),
				secondTestUser.ID(),
			},
			Exclusive: pulumi.Bool(false),
			GroupId:   internal.ID(),
		})
		if err != nil {
			return err
		}
		_, err = identity.NewGroupMemberEntityIds(ctx, "others", &identity.GroupMemberEntityIdsArgs{
			MemberEntityIds: pulumi.StringArray{
				devUser.ID(),
			},
			Exclusive: pulumi.Bool(false),
			GroupId:   internal.ID(),
		})
		if err != nil {
			return err
		}
		return nil
	})
}

```

func GetGroupMemberEntityIds 

func GetGroupMemberEntityIds(ctx *pulumi.Context,
	name string, id pulumi.IDInput, state *GroupMemberEntityIdsState, opts ...pulumi.ResourceOption) (*GroupMemberEntityIds, error)

GetGroupMemberEntityIds gets an existing GroupMemberEntityIds resource's state with the given name, ID, and optional state properties that are used to uniquely qualify the lookup (nil if not required).

func NewGroupMemberEntityIds 

func NewGroupMemberEntityIds(ctx *pulumi.Context,
	name string, args *GroupMemberEntityIdsArgs, opts ...pulumi.ResourceOption) (*GroupMemberEntityIds, error)

NewGroupMemberEntityIds registers a new resource with the given unique name, arguments, and options.

func (*GroupMemberEntityIds) ElementType added in v3.0.2 

func (*GroupMemberEntityIds) ElementType() reflect.Type

func (*GroupMemberEntityIds) ToGroupMemberEntityIdsOutput added in v3.0.2 

func (i *GroupMemberEntityIds) ToGroupMemberEntityIdsOutput() GroupMemberEntityIdsOutput

func (*GroupMemberEntityIds) ToGroupMemberEntityIdsOutputWithContext added in v3.0.2 

func (i *GroupMemberEntityIds) ToGroupMemberEntityIdsOutputWithContext(ctx context.Context) GroupMemberEntityIdsOutput

func (*GroupMemberEntityIds) ToGroupMemberEntityIdsPtrOutput added in v3.4.1 

func (i *GroupMemberEntityIds) ToGroupMemberEntityIdsPtrOutput() GroupMemberEntityIdsPtrOutput

func (*GroupMemberEntityIds) ToGroupMemberEntityIdsPtrOutputWithContext added in v3.4.1 

func (i *GroupMemberEntityIds) ToGroupMemberEntityIdsPtrOutputWithContext(ctx context.Context) GroupMemberEntityIdsPtrOutput

type GroupMemberEntityIdsArgs 

type GroupMemberEntityIdsArgs struct {
	// Defaults to `true`.
	Exclusive pulumi.BoolPtrInput
	// Group ID to assign member entities to.
	GroupId pulumi.StringInput
	// List of member entities that belong to the group
	MemberEntityIds pulumi.StringArrayInput
}

The set of arguments for constructing a GroupMemberEntityIds resource.

func (GroupMemberEntityIdsArgs) ElementType 

func (GroupMemberEntityIdsArgs) ElementType() reflect.Type

type GroupMemberEntityIdsArray added in v3.4.1 

type GroupMemberEntityIdsArray []GroupMemberEntityIdsInput

func (GroupMemberEntityIdsArray) ElementType added in v3.4.1 

func (GroupMemberEntityIdsArray) ElementType() reflect.Type

func (GroupMemberEntityIdsArray) ToGroupMemberEntityIdsArrayOutput added in v3.4.1 

func (i GroupMemberEntityIdsArray) ToGroupMemberEntityIdsArrayOutput() GroupMemberEntityIdsArrayOutput

func (GroupMemberEntityIdsArray) ToGroupMemberEntityIdsArrayOutputWithContext added in v3.4.1 

func (i GroupMemberEntityIdsArray) ToGroupMemberEntityIdsArrayOutputWithContext(ctx context.Context) GroupMemberEntityIdsArrayOutput

type GroupMemberEntityIdsArrayInput added in v3.4.1 

type GroupMemberEntityIdsArrayInput interface {
	pulumi.Input

	ToGroupMemberEntityIdsArrayOutput() GroupMemberEntityIdsArrayOutput
	ToGroupMemberEntityIdsArrayOutputWithContext(context.Context) GroupMemberEntityIdsArrayOutput
}

GroupMemberEntityIdsArrayInput is an input type that accepts GroupMemberEntityIdsArray and GroupMemberEntityIdsArrayOutput values. You can construct a concrete instance of `GroupMemberEntityIdsArrayInput` via: 

GroupMemberEntityIdsArray{ GroupMemberEntityIdsArgs{...} }

type GroupMemberEntityIdsArrayOutput added in v3.4.1 

type GroupMemberEntityIdsArrayOutput struct{ *pulumi.OutputState }

func (GroupMemberEntityIdsArrayOutput) ElementType added in v3.4.1 

func (GroupMemberEntityIdsArrayOutput) ElementType() reflect.Type

func (GroupMemberEntityIdsArrayOutput) Index added in v3.4.1 

func (o GroupMemberEntityIdsArrayOutput) Index(i pulumi.IntInput) GroupMemberEntityIdsOutput

func (GroupMemberEntityIdsArrayOutput) ToGroupMemberEntityIdsArrayOutput added in v3.4.1 

func (o GroupMemberEntityIdsArrayOutput) ToGroupMemberEntityIdsArrayOutput() GroupMemberEntityIdsArrayOutput

func (GroupMemberEntityIdsArrayOutput) ToGroupMemberEntityIdsArrayOutputWithContext added in v3.4.1 

func (o GroupMemberEntityIdsArrayOutput) ToGroupMemberEntityIdsArrayOutputWithContext(ctx context.Context) GroupMemberEntityIdsArrayOutput

type GroupMemberEntityIdsInput added in v3.0.2 

type GroupMemberEntityIdsInput interface {
	pulumi.Input

	ToGroupMemberEntityIdsOutput() GroupMemberEntityIdsOutput
	ToGroupMemberEntityIdsOutputWithContext(ctx context.Context) GroupMemberEntityIdsOutput
}

type GroupMemberEntityIdsMap added in v3.4.1 

type GroupMemberEntityIdsMap map[string]GroupMemberEntityIdsInput

func (GroupMemberEntityIdsMap) ElementType added in v3.4.1 

func (GroupMemberEntityIdsMap) ElementType() reflect.Type

func (GroupMemberEntityIdsMap) ToGroupMemberEntityIdsMapOutput added in v3.4.1 

func (i GroupMemberEntityIdsMap) ToGroupMemberEntityIdsMapOutput() GroupMemberEntityIdsMapOutput

func (GroupMemberEntityIdsMap) ToGroupMemberEntityIdsMapOutputWithContext added in v3.4.1 

func (i GroupMemberEntityIdsMap) ToGroupMemberEntityIdsMapOutputWithContext(ctx context.Context) GroupMemberEntityIdsMapOutput

type GroupMemberEntityIdsMapInput added in v3.4.1 

type GroupMemberEntityIdsMapInput interface {
	pulumi.Input

	ToGroupMemberEntityIdsMapOutput() GroupMemberEntityIdsMapOutput
	ToGroupMemberEntityIdsMapOutputWithContext(context.Context) GroupMemberEntityIdsMapOutput
}

GroupMemberEntityIdsMapInput is an input type that accepts GroupMemberEntityIdsMap and GroupMemberEntityIdsMapOutput values. You can construct a concrete instance of `GroupMemberEntityIdsMapInput` via: 

GroupMemberEntityIdsMap{ "key": GroupMemberEntityIdsArgs{...} }

type GroupMemberEntityIdsMapOutput added in v3.4.1 

type GroupMemberEntityIdsMapOutput struct{ *pulumi.OutputState }

func (GroupMemberEntityIdsMapOutput) ElementType added in v3.4.1 

func (GroupMemberEntityIdsMapOutput) ElementType() reflect.Type

func (GroupMemberEntityIdsMapOutput) MapIndex added in v3.4.1 

func (o GroupMemberEntityIdsMapOutput) MapIndex(k pulumi.StringInput) GroupMemberEntityIdsOutput

func (GroupMemberEntityIdsMapOutput) ToGroupMemberEntityIdsMapOutput added in v3.4.1 

func (o GroupMemberEntityIdsMapOutput) ToGroupMemberEntityIdsMapOutput() GroupMemberEntityIdsMapOutput

func (GroupMemberEntityIdsMapOutput) ToGroupMemberEntityIdsMapOutputWithContext added in v3.4.1 

func (o GroupMemberEntityIdsMapOutput) ToGroupMemberEntityIdsMapOutputWithContext(ctx context.Context) GroupMemberEntityIdsMapOutput

type GroupMemberEntityIdsOutput added in v3.0.2 

type GroupMemberEntityIdsOutput struct {
	*pulumi.OutputState
}

func (GroupMemberEntityIdsOutput) ElementType added in v3.0.2 

func (GroupMemberEntityIdsOutput) ElementType() reflect.Type

func (GroupMemberEntityIdsOutput) ToGroupMemberEntityIdsOutput added in v3.0.2 

func (o GroupMemberEntityIdsOutput) ToGroupMemberEntityIdsOutput() GroupMemberEntityIdsOutput

func (GroupMemberEntityIdsOutput) ToGroupMemberEntityIdsOutputWithContext added in v3.0.2 

func (o GroupMemberEntityIdsOutput) ToGroupMemberEntityIdsOutputWithContext(ctx context.Context) GroupMemberEntityIdsOutput

func (GroupMemberEntityIdsOutput) ToGroupMemberEntityIdsPtrOutput added in v3.4.1 

func (o GroupMemberEntityIdsOutput) ToGroupMemberEntityIdsPtrOutput() GroupMemberEntityIdsPtrOutput

func (GroupMemberEntityIdsOutput) ToGroupMemberEntityIdsPtrOutputWithContext added in v3.4.1 

func (o GroupMemberEntityIdsOutput) ToGroupMemberEntityIdsPtrOutputWithContext(ctx context.Context) GroupMemberEntityIdsPtrOutput

type GroupMemberEntityIdsPtrInput added in v3.4.1 

type GroupMemberEntityIdsPtrInput interface {
	pulumi.Input

	ToGroupMemberEntityIdsPtrOutput() GroupMemberEntityIdsPtrOutput
	ToGroupMemberEntityIdsPtrOutputWithContext(ctx context.Context) GroupMemberEntityIdsPtrOutput
}

type GroupMemberEntityIdsPtrOutput added in v3.4.1 

type GroupMemberEntityIdsPtrOutput struct {
	*pulumi.OutputState
}

func (GroupMemberEntityIdsPtrOutput) ElementType added in v3.4.1 

func (GroupMemberEntityIdsPtrOutput) ElementType() reflect.Type

func (GroupMemberEntityIdsPtrOutput) ToGroupMemberEntityIdsPtrOutput added in v3.4.1 

func (o GroupMemberEntityIdsPtrOutput) ToGroupMemberEntityIdsPtrOutput() GroupMemberEntityIdsPtrOutput

func (GroupMemberEntityIdsPtrOutput) ToGroupMemberEntityIdsPtrOutputWithContext added in v3.4.1 

func (o GroupMemberEntityIdsPtrOutput) ToGroupMemberEntityIdsPtrOutputWithContext(ctx context.Context) GroupMemberEntityIdsPtrOutput

type GroupMemberEntityIdsState 

type GroupMemberEntityIdsState struct {
	// Defaults to `true`.
	Exclusive pulumi.BoolPtrInput
	// Group ID to assign member entities to.
	GroupId pulumi.StringPtrInput
	// The name of the group that are assigned the member entities.
	GroupName pulumi.StringPtrInput
	// List of member entities that belong to the group
	MemberEntityIds pulumi.StringArrayInput
}

func (GroupMemberEntityIdsState) ElementType 

func (GroupMemberEntityIdsState) ElementType() reflect.Type

type GroupOutput added in v3.0.2 

type GroupOutput struct {
	*pulumi.OutputState
}

func (GroupOutput) ElementType added in v3.0.2 

func (GroupOutput) ElementType() reflect.Type

func (GroupOutput) ToGroupOutput added in v3.0.2 

func (o GroupOutput) ToGroupOutput() GroupOutput

func (GroupOutput) ToGroupOutputWithContext added in v3.0.2 

func (o GroupOutput) ToGroupOutputWithContext(ctx context.Context) GroupOutput

func (GroupOutput) ToGroupPtrOutput added in v3.4.1 

func (o GroupOutput) ToGroupPtrOutput() GroupPtrOutput

func (GroupOutput) ToGroupPtrOutputWithContext added in v3.4.1 

func (o GroupOutput) ToGroupPtrOutputWithContext(ctx context.Context) GroupPtrOutput

type GroupPolicies 

type GroupPolicies struct {
	pulumi.CustomResourceState

	// Defaults to `true`.
	Exclusive pulumi.BoolPtrOutput `pulumi:"exclusive"`
	// Group ID to assign policies to.
	GroupId pulumi.StringOutput `pulumi:"groupId"`
	// The name of the group that are assigned the policies.
	GroupName pulumi.StringOutput `pulumi:"groupName"`
	// List of policies to assign to the group
	Policies pulumi.StringArrayOutput `pulumi:"policies"`
}

Manages policies for an Identity Group for Vault. The [Identity secrets engine](https://www.vaultproject.io/docs/secrets/identity/index.html) is the identity management solution for Vault.

## Example Usage ### Exclusive Policies

```go package main

import ( 

"github.com/pulumi/pulumi-vault/sdk/v3/go/vault/identity"
"github.com/pulumi/pulumi/sdk/v2/go/pulumi"

) 

func main() {
	pulumi.Run(func(ctx *pulumi.Context) error {
		internal, err := identity.NewGroup(ctx, "internal", &identity.GroupArgs{
			Type:             pulumi.String("internal"),
			ExternalPolicies: pulumi.Bool(true),
			Metadata: pulumi.StringMap{
				"version": pulumi.String("2"),
			},
		})
		if err != nil {
			return err
		}
		_, err = identity.NewGroupPolicies(ctx, "policies", &identity.GroupPoliciesArgs{
			Policies: pulumi.StringArray{
				pulumi.String("default"),
				pulumi.String("test"),
			},
			Exclusive: pulumi.Bool(true),
			GroupId:   internal.ID(),
		})
		if err != nil {
			return err
		}
		return nil
	})
}

``` ### Non-exclusive Policies

```go package main

import ( 

"github.com/pulumi/pulumi-vault/sdk/v3/go/vault/identity"
"github.com/pulumi/pulumi/sdk/v2/go/pulumi"

) 

func main() {
	pulumi.Run(func(ctx *pulumi.Context) error {
		internal, err := identity.NewGroup(ctx, "internal", &identity.GroupArgs{
			Type:             pulumi.String("internal"),
			ExternalPolicies: pulumi.Bool(true),
			Metadata: pulumi.StringMap{
				"version": pulumi.String("2"),
			},
		})
		if err != nil {
			return err
		}
		_, err = identity.NewGroupPolicies(ctx, "_default", &identity.GroupPoliciesArgs{
			Policies: pulumi.StringArray{
				pulumi.String("default"),
				pulumi.String("test"),
			},
			Exclusive: pulumi.Bool(false),
			GroupId:   internal.ID(),
		})
		if err != nil {
			return err
		}
		_, err = identity.NewGroupPolicies(ctx, "others", &identity.GroupPoliciesArgs{
			Policies: pulumi.StringArray{
				pulumi.String("others"),
			},
			Exclusive: pulumi.Bool(false),
			GroupId:   internal.ID(),
		})
		if err != nil {
			return err
		}
		return nil
	})
}

```

func GetGroupPolicies 

func GetGroupPolicies(ctx *pulumi.Context,
	name string, id pulumi.IDInput, state *GroupPoliciesState, opts ...pulumi.ResourceOption) (*GroupPolicies, error)

GetGroupPolicies gets an existing GroupPolicies resource's state with the given name, ID, and optional state properties that are used to uniquely qualify the lookup (nil if not required).

func NewGroupPolicies 

func NewGroupPolicies(ctx *pulumi.Context,
	name string, args *GroupPoliciesArgs, opts ...pulumi.ResourceOption) (*GroupPolicies, error)

NewGroupPolicies registers a new resource with the given unique name, arguments, and options.

func (*GroupPolicies) ElementType added in v3.0.2 

func (*GroupPolicies) ElementType() reflect.Type

func (*GroupPolicies) ToGroupPoliciesOutput added in v3.0.2 

func (i *GroupPolicies) ToGroupPoliciesOutput() GroupPoliciesOutput

func (*GroupPolicies) ToGroupPoliciesOutputWithContext added in v3.0.2 

func (i *GroupPolicies) ToGroupPoliciesOutputWithContext(ctx context.Context) GroupPoliciesOutput

func (*GroupPolicies) ToGroupPoliciesPtrOutput added in v3.4.1 

func (i *GroupPolicies) ToGroupPoliciesPtrOutput() GroupPoliciesPtrOutput

func (*GroupPolicies) ToGroupPoliciesPtrOutputWithContext added in v3.4.1 

func (i *GroupPolicies) ToGroupPoliciesPtrOutputWithContext(ctx context.Context) GroupPoliciesPtrOutput

type GroupPoliciesArgs 

type GroupPoliciesArgs struct {
	// Defaults to `true`.
	Exclusive pulumi.BoolPtrInput
	// Group ID to assign policies to.
	GroupId pulumi.StringInput
	// List of policies to assign to the group
	Policies pulumi.StringArrayInput
}

The set of arguments for constructing a GroupPolicies resource.

func (GroupPoliciesArgs) ElementType 

func (GroupPoliciesArgs) ElementType() reflect.Type

type GroupPoliciesArray added in v3.4.1 

type GroupPoliciesArray []GroupPoliciesInput

func (GroupPoliciesArray) ElementType added in v3.4.1 

func (GroupPoliciesArray) ElementType() reflect.Type

func (GroupPoliciesArray) ToGroupPoliciesArrayOutput added in v3.4.1 

func (i GroupPoliciesArray) ToGroupPoliciesArrayOutput() GroupPoliciesArrayOutput

func (GroupPoliciesArray) ToGroupPoliciesArrayOutputWithContext added in v3.4.1 

func (i GroupPoliciesArray) ToGroupPoliciesArrayOutputWithContext(ctx context.Context) GroupPoliciesArrayOutput

type GroupPoliciesArrayInput added in v3.4.1 

type GroupPoliciesArrayInput interface {
	pulumi.Input

	ToGroupPoliciesArrayOutput() GroupPoliciesArrayOutput
	ToGroupPoliciesArrayOutputWithContext(context.Context) GroupPoliciesArrayOutput
}

GroupPoliciesArrayInput is an input type that accepts GroupPoliciesArray and GroupPoliciesArrayOutput values. You can construct a concrete instance of `GroupPoliciesArrayInput` via: 

GroupPoliciesArray{ GroupPoliciesArgs{...} }

type GroupPoliciesArrayOutput added in v3.4.1 

type GroupPoliciesArrayOutput struct{ *pulumi.OutputState }

func (GroupPoliciesArrayOutput) ElementType added in v3.4.1 

func (GroupPoliciesArrayOutput) ElementType() reflect.Type

func (GroupPoliciesArrayOutput) Index added in v3.4.1 

func (o GroupPoliciesArrayOutput) Index(i pulumi.IntInput) GroupPoliciesOutput

func (GroupPoliciesArrayOutput) ToGroupPoliciesArrayOutput added in v3.4.1 

func (o GroupPoliciesArrayOutput) ToGroupPoliciesArrayOutput() GroupPoliciesArrayOutput

func (GroupPoliciesArrayOutput) ToGroupPoliciesArrayOutputWithContext added in v3.4.1 

func (o GroupPoliciesArrayOutput) ToGroupPoliciesArrayOutputWithContext(ctx context.Context) GroupPoliciesArrayOutput

type GroupPoliciesInput added in v3.0.2 

type GroupPoliciesInput interface {
	pulumi.Input

	ToGroupPoliciesOutput() GroupPoliciesOutput
	ToGroupPoliciesOutputWithContext(ctx context.Context) GroupPoliciesOutput
}

type GroupPoliciesMap added in v3.4.1 

type GroupPoliciesMap map[string]GroupPoliciesInput

func (GroupPoliciesMap) ElementType added in v3.4.1 

func (GroupPoliciesMap) ElementType() reflect.Type

func (GroupPoliciesMap) ToGroupPoliciesMapOutput added in v3.4.1 

func (i GroupPoliciesMap) ToGroupPoliciesMapOutput() GroupPoliciesMapOutput

func (GroupPoliciesMap) ToGroupPoliciesMapOutputWithContext added in v3.4.1 

func (i GroupPoliciesMap) ToGroupPoliciesMapOutputWithContext(ctx context.Context) GroupPoliciesMapOutput

type GroupPoliciesMapInput added in v3.4.1 

type GroupPoliciesMapInput interface {
	pulumi.Input

	ToGroupPoliciesMapOutput() GroupPoliciesMapOutput
	ToGroupPoliciesMapOutputWithContext(context.Context) GroupPoliciesMapOutput
}

GroupPoliciesMapInput is an input type that accepts GroupPoliciesMap and GroupPoliciesMapOutput values. You can construct a concrete instance of `GroupPoliciesMapInput` via: 

GroupPoliciesMap{ "key": GroupPoliciesArgs{...} }

type GroupPoliciesMapOutput added in v3.4.1 

type GroupPoliciesMapOutput struct{ *pulumi.OutputState }

func (GroupPoliciesMapOutput) ElementType added in v3.4.1 

func (GroupPoliciesMapOutput) ElementType() reflect.Type

func (GroupPoliciesMapOutput) MapIndex added in v3.4.1 

func (o GroupPoliciesMapOutput) MapIndex(k pulumi.StringInput) GroupPoliciesOutput

func (GroupPoliciesMapOutput) ToGroupPoliciesMapOutput added in v3.4.1 

func (o GroupPoliciesMapOutput) ToGroupPoliciesMapOutput() GroupPoliciesMapOutput

func (GroupPoliciesMapOutput) ToGroupPoliciesMapOutputWithContext added in v3.4.1 

func (o GroupPoliciesMapOutput) ToGroupPoliciesMapOutputWithContext(ctx context.Context) GroupPoliciesMapOutput

type GroupPoliciesOutput added in v3.0.2 

type GroupPoliciesOutput struct {
	*pulumi.OutputState
}

func (GroupPoliciesOutput) ElementType added in v3.0.2 

func (GroupPoliciesOutput) ElementType() reflect.Type

func (GroupPoliciesOutput) ToGroupPoliciesOutput added in v3.0.2 

func (o GroupPoliciesOutput) ToGroupPoliciesOutput() GroupPoliciesOutput

func (GroupPoliciesOutput) ToGroupPoliciesOutputWithContext added in v3.0.2 

func (o GroupPoliciesOutput) ToGroupPoliciesOutputWithContext(ctx context.Context) GroupPoliciesOutput

func (GroupPoliciesOutput) ToGroupPoliciesPtrOutput added in v3.4.1 

func (o GroupPoliciesOutput) ToGroupPoliciesPtrOutput() GroupPoliciesPtrOutput

func (GroupPoliciesOutput) ToGroupPoliciesPtrOutputWithContext added in v3.4.1 

func (o GroupPoliciesOutput) ToGroupPoliciesPtrOutputWithContext(ctx context.Context) GroupPoliciesPtrOutput

type GroupPoliciesPtrInput added in v3.4.1 

type GroupPoliciesPtrInput interface {
	pulumi.Input

	ToGroupPoliciesPtrOutput() GroupPoliciesPtrOutput
	ToGroupPoliciesPtrOutputWithContext(ctx context.Context) GroupPoliciesPtrOutput
}

type GroupPoliciesPtrOutput added in v3.4.1 

type GroupPoliciesPtrOutput struct {
	*pulumi.OutputState
}

func (GroupPoliciesPtrOutput) ElementType added in v3.4.1 

func (GroupPoliciesPtrOutput) ElementType() reflect.Type

func (GroupPoliciesPtrOutput) ToGroupPoliciesPtrOutput added in v3.4.1 

func (o GroupPoliciesPtrOutput) ToGroupPoliciesPtrOutput() GroupPoliciesPtrOutput

func (GroupPoliciesPtrOutput) ToGroupPoliciesPtrOutputWithContext added in v3.4.1 

func (o GroupPoliciesPtrOutput) ToGroupPoliciesPtrOutputWithContext(ctx context.Context) GroupPoliciesPtrOutput

type GroupPoliciesState 

type GroupPoliciesState struct {
	// Defaults to `true`.
	Exclusive pulumi.BoolPtrInput
	// Group ID to assign policies to.
	GroupId pulumi.StringPtrInput
	// The name of the group that are assigned the policies.
	GroupName pulumi.StringPtrInput
	// List of policies to assign to the group
	Policies pulumi.StringArrayInput
}

func (GroupPoliciesState) ElementType 

func (GroupPoliciesState) ElementType() reflect.Type

type GroupPtrInput added in v3.4.1 

type GroupPtrInput interface {
	pulumi.Input

	ToGroupPtrOutput() GroupPtrOutput
	ToGroupPtrOutputWithContext(ctx context.Context) GroupPtrOutput
}

type GroupPtrOutput added in v3.4.1 

type GroupPtrOutput struct {
	*pulumi.OutputState
}

func (GroupPtrOutput) ElementType added in v3.4.1 

func (GroupPtrOutput) ElementType() reflect.Type

func (GroupPtrOutput) ToGroupPtrOutput added in v3.4.1 

func (o GroupPtrOutput) ToGroupPtrOutput() GroupPtrOutput

func (GroupPtrOutput) ToGroupPtrOutputWithContext added in v3.4.1 

func (o GroupPtrOutput) ToGroupPtrOutputWithContext(ctx context.Context) GroupPtrOutput

type GroupState 

type GroupState struct {
	// `false` by default. If set to `true`, this resource will ignore any Entity IDs returned from Vault or specified in the resource. You can use `identity.GroupMemberEntityIds` to manage Entity IDs for this group in a decoupled manner.
	ExternalMemberEntityIds pulumi.BoolPtrInput
	// `false` by default. If set to `true`, this resource will ignore any policies returned from Vault or specified in the resource. You can use `identity.GroupPolicies` to manage policies for this group in a decoupled manner.
	ExternalPolicies pulumi.BoolPtrInput
	// A list of Entity IDs to be assigned as group members. Not allowed on `external` groups.
	MemberEntityIds pulumi.StringArrayInput
	// A list of Group IDs to be assigned as group members. Not allowed on `external` groups.
	MemberGroupIds pulumi.StringArrayInput
	// A Map of additional metadata to associate with the group.
	Metadata pulumi.StringMapInput
	// Name of the identity group to create.
	Name pulumi.StringPtrInput
	// A list of policies to apply to the group.
	Policies pulumi.StringArrayInput
	// Type of the group, internal or external. Defaults to `internal`.
	Type pulumi.StringPtrInput
}

func (GroupState) ElementType 

func (GroupState) ElementType() reflect.Type

type LookupEntityArgs 

type LookupEntityArgs struct {
	// ID of the alias.
	AliasId *string `pulumi:"aliasId"`
	// Accessor of the mount to which the alias belongs to.
	// This should be supplied in conjunction with `aliasName`.
	AliasMountAccessor *string `pulumi:"aliasMountAccessor"`
	// Name of the alias. This should be supplied in conjunction with
	// `aliasMountAccessor`.
	AliasName *string `pulumi:"aliasName"`
	// ID of the entity.
	EntityId *string `pulumi:"entityId"`
	// Name of the entity.
	EntityName *string `pulumi:"entityName"`
}

A collection of arguments for invoking getEntity.

type LookupEntityResult 

type LookupEntityResult struct {
	AliasId            string `pulumi:"aliasId"`
	AliasMountAccessor string `pulumi:"aliasMountAccessor"`
	AliasName          string `pulumi:"aliasName"`
	// A list of entity alias. Structure is documented below.
	Aliases []GetEntityAliasType `pulumi:"aliases"`
	// Creation time of the Alias
	CreationTime string `pulumi:"creationTime"`
	// A string containing the full data payload retrieved from
	// Vault, serialized in JSON format.
	DataJson string `pulumi:"dataJson"`
	// List of Group IDs of which the entity is directly a member of
	DirectGroupIds []string `pulumi:"directGroupIds"`
	// Whether the entity is disabled
	Disabled   bool   `pulumi:"disabled"`
	EntityId   string `pulumi:"entityId"`
	EntityName string `pulumi:"entityName"`
	// List of all Group IDs of which the entity is a member of
	GroupIds []string `pulumi:"groupIds"`
	// The provider-assigned unique ID for this managed resource.
	Id string `pulumi:"id"`
	// List of all Group IDs of which the entity is a member of transitively
	InheritedGroupIds []string `pulumi:"inheritedGroupIds"`
	// Last update time of the alias
	LastUpdateTime string `pulumi:"lastUpdateTime"`
	// Other entity IDs which is merged with this entity
	MergedEntityIds []string `pulumi:"mergedEntityIds"`
	// Arbitrary metadata
	Metadata map[string]interface{} `pulumi:"metadata"`
	// Namespace of which the entity is part of
	NamespaceId string `pulumi:"namespaceId"`
	// List of policies attached to the entity
	Policies []string `pulumi:"policies"`
}

A collection of values returned by getEntity.

func LookupEntity 

func LookupEntity(ctx *pulumi.Context, args *LookupEntityArgs, opts ...pulumi.InvokeOption) (*LookupEntityResult, error)

type LookupGroupArgs 

type LookupGroupArgs struct {
	// ID of the alias.
	AliasId *string `pulumi:"aliasId"`
	// Accessor of the mount to which the alias belongs to.
	// This should be supplied in conjunction with `aliasName`.
	AliasMountAccessor *string `pulumi:"aliasMountAccessor"`
	// Name of the alias. This should be supplied in conjunction with
	// `aliasMountAccessor`.
	AliasName *string `pulumi:"aliasName"`
	// ID of the group.
	GroupId *string `pulumi:"groupId"`
	// Name of the group.
	GroupName *string `pulumi:"groupName"`
}

A collection of arguments for invoking getGroup.

type LookupGroupResult 

type LookupGroupResult struct {
	// Canonical ID of the Alias
	AliasCanonicalId string `pulumi:"aliasCanonicalId"`
	// Creation time of the Alias
	AliasCreationTime string `pulumi:"aliasCreationTime"`
	AliasId           string `pulumi:"aliasId"`
	// Last update time of the alias
	AliasLastUpdateTime string `pulumi:"aliasLastUpdateTime"`
	// List of canonical IDs merged with this alias
	AliasMergedFromCanonicalIds []string `pulumi:"aliasMergedFromCanonicalIds"`
	// Arbitrary metadata
	AliasMetadata      map[string]interface{} `pulumi:"aliasMetadata"`
	AliasMountAccessor string                 `pulumi:"aliasMountAccessor"`
	// Authentication mount path which this alias belongs to
	AliasMountPath string `pulumi:"aliasMountPath"`
	// Authentication mount type which this alias belongs to
	AliasMountType string `pulumi:"aliasMountType"`
	AliasName      string `pulumi:"aliasName"`
	// Creation timestamp of the group
	CreationTime string `pulumi:"creationTime"`
	// A string containing the full data payload retrieved from
	// Vault, serialized in JSON format.
	DataJson  string `pulumi:"dataJson"`
	GroupId   string `pulumi:"groupId"`
	GroupName string `pulumi:"groupName"`
	// The provider-assigned unique ID for this managed resource.
	Id string `pulumi:"id"`
	// Last updated time of the group
	LastUpdateTime string `pulumi:"lastUpdateTime"`
	// List of Entity IDs which are members of this group
	MemberEntityIds []string `pulumi:"memberEntityIds"`
	// List of Group IDs which are members of this group
	MemberGroupIds []string `pulumi:"memberGroupIds"`
	// Arbitrary metadata
	Metadata map[string]interface{} `pulumi:"metadata"`
	// Modify index of the group
	ModifyIndex int `pulumi:"modifyIndex"`
	// Namespace of which the group is part of
	NamespaceId string `pulumi:"namespaceId"`
	// List of Group IDs which are parents of this group.
	ParentGroupIds []string `pulumi:"parentGroupIds"`
	// List of policies attached to the group
	Policies []string `pulumi:"policies"`
	// Type of group
	Type string `pulumi:"type"`
}

A collection of values returned by getGroup.

func LookupGroup 

func LookupGroup(ctx *pulumi.Context, args *LookupGroupArgs, opts ...pulumi.InvokeOption) (*LookupGroupResult, error)

type Oidc 

type Oidc struct {
	pulumi.CustomResourceState

	// Issuer URL to be used in the iss claim of the token. If not set, Vault's
	// `apiAddr` will be used. The issuer is a case sensitive URL using the https scheme that contains
	// scheme, host, and optionally, port number and path components, but no query or fragment
	// components.
	Issuer pulumi.StringOutput `pulumi:"issuer"`
}

Configure the [Identity Tokens Backend](https://www.vaultproject.io/docs/secrets/identity/index.html#identity-tokens).

The Identity secrets engine is the identity management solution for Vault. It internally maintains the clients who are recognized by Vault.

> **NOTE:** Each Vault server may only have one Identity Tokens Backend configuration. Multiple configurations of the resource against the same Vault server will cause a perpetual difference.

## Example Usage

```go package main

import ( 

"github.com/pulumi/pulumi-vault/sdk/v3/go/vault/identity"
"github.com/pulumi/pulumi/sdk/v2/go/pulumi"

) 

func main() {
	pulumi.Run(func(ctx *pulumi.Context) error {
		_, err := identity.NewOidc(ctx, "server", &identity.OidcArgs{
			Issuer: pulumi.String("https://www.acme.com"),
		})
		if err != nil {
			return err
		}
		return nil
	})
}

```

func GetOidc 

func GetOidc(ctx *pulumi.Context,
	name string, id pulumi.IDInput, state *OidcState, opts ...pulumi.ResourceOption) (*Oidc, error)

GetOidc gets an existing Oidc resource's state with the given name, ID, and optional state properties that are used to uniquely qualify the lookup (nil if not required).

func NewOidc 

func NewOidc(ctx *pulumi.Context,
	name string, args *OidcArgs, opts ...pulumi.ResourceOption) (*Oidc, error)

NewOidc registers a new resource with the given unique name, arguments, and options.

func (*Oidc) ElementType added in v3.0.2 

func (*Oidc) ElementType() reflect.Type

func (*Oidc) ToOidcOutput added in v3.0.2 

func (i *Oidc) ToOidcOutput() OidcOutput

func (*Oidc) ToOidcOutputWithContext added in v3.0.2 

func (i *Oidc) ToOidcOutputWithContext(ctx context.Context) OidcOutput

func (*Oidc) ToOidcPtrOutput added in v3.4.1 

func (i *Oidc) ToOidcPtrOutput() OidcPtrOutput

func (*Oidc) ToOidcPtrOutputWithContext added in v3.4.1 

func (i *Oidc) ToOidcPtrOutputWithContext(ctx context.Context) OidcPtrOutput

type OidcArgs 

type OidcArgs struct {
	// Issuer URL to be used in the iss claim of the token. If not set, Vault's
	// `apiAddr` will be used. The issuer is a case sensitive URL using the https scheme that contains
	// scheme, host, and optionally, port number and path components, but no query or fragment
	// components.
	Issuer pulumi.StringPtrInput
}

The set of arguments for constructing a Oidc resource.

func (OidcArgs) ElementType 

func (OidcArgs) ElementType() reflect.Type

type OidcArray added in v3.4.1 

type OidcArray []OidcInput

func (OidcArray) ElementType added in v3.4.1 

func (OidcArray) ElementType() reflect.Type

func (OidcArray) ToOidcArrayOutput added in v3.4.1 

func (i OidcArray) ToOidcArrayOutput() OidcArrayOutput

func (OidcArray) ToOidcArrayOutputWithContext added in v3.4.1 

func (i OidcArray) ToOidcArrayOutputWithContext(ctx context.Context) OidcArrayOutput

type OidcArrayInput added in v3.4.1 

type OidcArrayInput interface {
	pulumi.Input

	ToOidcArrayOutput() OidcArrayOutput
	ToOidcArrayOutputWithContext(context.Context) OidcArrayOutput
}

OidcArrayInput is an input type that accepts OidcArray and OidcArrayOutput values. You can construct a concrete instance of `OidcArrayInput` via: 

OidcArray{ OidcArgs{...} }

type OidcArrayOutput added in v3.4.1 

type OidcArrayOutput struct{ *pulumi.OutputState }

func (OidcArrayOutput) ElementType added in v3.4.1 

func (OidcArrayOutput) ElementType() reflect.Type

func (OidcArrayOutput) Index added in v3.4.1 

func (o OidcArrayOutput) Index(i pulumi.IntInput) OidcOutput

func (OidcArrayOutput) ToOidcArrayOutput added in v3.4.1 

func (o OidcArrayOutput) ToOidcArrayOutput() OidcArrayOutput

func (OidcArrayOutput) ToOidcArrayOutputWithContext added in v3.4.1 

func (o OidcArrayOutput) ToOidcArrayOutputWithContext(ctx context.Context) OidcArrayOutput

type OidcInput added in v3.0.2 

type OidcInput interface {
	pulumi.Input

	ToOidcOutput() OidcOutput
	ToOidcOutputWithContext(ctx context.Context) OidcOutput
}

type OidcKey 

type OidcKey struct {
	pulumi.CustomResourceState

	// Signing algorithm to use. Signing algorithm to use.
	// Allowed values are: RS256 (default), RS384, RS512, ES256, ES384, ES512, EdDSA.
	Algorithm pulumi.StringPtrOutput `pulumi:"algorithm"`
	// Array of role client ids allowed to use this key for signing. If empty, no roles are allowed. If "*", all roles are
	// allowed.
	AllowedClientIds pulumi.StringArrayOutput `pulumi:"allowedClientIds"`
	// Name of the OIDC Key to create.
	Name pulumi.StringOutput `pulumi:"name"`
	// How often to generate a new signing key in number of seconds
	RotationPeriod pulumi.IntPtrOutput `pulumi:"rotationPeriod"`
	// "Controls how long the public portion of a signing key will be
	// available for verification after being rotated in seconds.
	VerificationTtl pulumi.IntPtrOutput `pulumi:"verificationTtl"`
}

## Import

The key can be imported with the key name, for example

```sh 

$ pulumi import vault:identity/oidcKey:OidcKey key key

```

func GetOidcKey 

func GetOidcKey(ctx *pulumi.Context,
	name string, id pulumi.IDInput, state *OidcKeyState, opts ...pulumi.ResourceOption) (*OidcKey, error)

GetOidcKey gets an existing OidcKey resource's state with the given name, ID, and optional state properties that are used to uniquely qualify the lookup (nil if not required).

func NewOidcKey 

func NewOidcKey(ctx *pulumi.Context,
	name string, args *OidcKeyArgs, opts ...pulumi.ResourceOption) (*OidcKey, error)

NewOidcKey registers a new resource with the given unique name, arguments, and options.

func (*OidcKey) ElementType added in v3.0.2 

func (*OidcKey) ElementType() reflect.Type

func (*OidcKey) ToOidcKeyOutput added in v3.0.2 

func (i *OidcKey) ToOidcKeyOutput() OidcKeyOutput

func (*OidcKey) ToOidcKeyOutputWithContext added in v3.0.2 

func (i *OidcKey) ToOidcKeyOutputWithContext(ctx context.Context) OidcKeyOutput

func (*OidcKey) ToOidcKeyPtrOutput added in v3.4.1 

func (i *OidcKey) ToOidcKeyPtrOutput() OidcKeyPtrOutput

func (*OidcKey) ToOidcKeyPtrOutputWithContext added in v3.4.1 

func (i *OidcKey) ToOidcKeyPtrOutputWithContext(ctx context.Context) OidcKeyPtrOutput

type OidcKeyAllowedClientID 

type OidcKeyAllowedClientID struct {
	pulumi.CustomResourceState

	// Client ID to allow usage with the OIDC named key
	AllowedClientId pulumi.StringOutput `pulumi:"allowedClientId"`
	// Name of the OIDC Key allow the Client ID.
	KeyName pulumi.StringOutput `pulumi:"keyName"`
}

func GetOidcKeyAllowedClientID 

func GetOidcKeyAllowedClientID(ctx *pulumi.Context,
	name string, id pulumi.IDInput, state *OidcKeyAllowedClientIDState, opts ...pulumi.ResourceOption) (*OidcKeyAllowedClientID, error)

GetOidcKeyAllowedClientID gets an existing OidcKeyAllowedClientID resource's state with the given name, ID, and optional state properties that are used to uniquely qualify the lookup (nil if not required).

func NewOidcKeyAllowedClientID 

func NewOidcKeyAllowedClientID(ctx *pulumi.Context,
	name string, args *OidcKeyAllowedClientIDArgs, opts ...pulumi.ResourceOption) (*OidcKeyAllowedClientID, error)

NewOidcKeyAllowedClientID registers a new resource with the given unique name, arguments, and options.

func (*OidcKeyAllowedClientID) ElementType added in v3.0.2 

func (*OidcKeyAllowedClientID) ElementType() reflect.Type

func (*OidcKeyAllowedClientID) ToOidcKeyAllowedClientIDOutput added in v3.0.2 

func (i *OidcKeyAllowedClientID) ToOidcKeyAllowedClientIDOutput() OidcKeyAllowedClientIDOutput

func (*OidcKeyAllowedClientID) ToOidcKeyAllowedClientIDOutputWithContext added in v3.0.2 

func (i *OidcKeyAllowedClientID) ToOidcKeyAllowedClientIDOutputWithContext(ctx context.Context) OidcKeyAllowedClientIDOutput

func (*OidcKeyAllowedClientID) ToOidcKeyAllowedClientIDPtrOutput added in v3.4.1 

func (i *OidcKeyAllowedClientID) ToOidcKeyAllowedClientIDPtrOutput() OidcKeyAllowedClientIDPtrOutput

func (*OidcKeyAllowedClientID) ToOidcKeyAllowedClientIDPtrOutputWithContext added in v3.4.1 

func (i *OidcKeyAllowedClientID) ToOidcKeyAllowedClientIDPtrOutputWithContext(ctx context.Context) OidcKeyAllowedClientIDPtrOutput

type OidcKeyAllowedClientIDArgs 

type OidcKeyAllowedClientIDArgs struct {
	// Client ID to allow usage with the OIDC named key
	AllowedClientId pulumi.StringInput
	// Name of the OIDC Key allow the Client ID.
	KeyName pulumi.StringInput
}

The set of arguments for constructing a OidcKeyAllowedClientID resource.

func (OidcKeyAllowedClientIDArgs) ElementType 

func (OidcKeyAllowedClientIDArgs) ElementType() reflect.Type

type OidcKeyAllowedClientIDArray added in v3.4.1 

type OidcKeyAllowedClientIDArray []OidcKeyAllowedClientIDInput

func (OidcKeyAllowedClientIDArray) ElementType added in v3.4.1 

func (OidcKeyAllowedClientIDArray) ElementType() reflect.Type

func (OidcKeyAllowedClientIDArray) ToOidcKeyAllowedClientIDArrayOutput added in v3.4.1 

func (i OidcKeyAllowedClientIDArray) ToOidcKeyAllowedClientIDArrayOutput() OidcKeyAllowedClientIDArrayOutput

func (OidcKeyAllowedClientIDArray) ToOidcKeyAllowedClientIDArrayOutputWithContext added in v3.4.1 

func (i OidcKeyAllowedClientIDArray) ToOidcKeyAllowedClientIDArrayOutputWithContext(ctx context.Context) OidcKeyAllowedClientIDArrayOutput

type OidcKeyAllowedClientIDArrayInput added in v3.4.1 

type OidcKeyAllowedClientIDArrayInput interface {
	pulumi.Input

	ToOidcKeyAllowedClientIDArrayOutput() OidcKeyAllowedClientIDArrayOutput
	ToOidcKeyAllowedClientIDArrayOutputWithContext(context.Context) OidcKeyAllowedClientIDArrayOutput
}

OidcKeyAllowedClientIDArrayInput is an input type that accepts OidcKeyAllowedClientIDArray and OidcKeyAllowedClientIDArrayOutput values. You can construct a concrete instance of `OidcKeyAllowedClientIDArrayInput` via: 

OidcKeyAllowedClientIDArray{ OidcKeyAllowedClientIDArgs{...} }

type OidcKeyAllowedClientIDArrayOutput added in v3.4.1 

type OidcKeyAllowedClientIDArrayOutput struct{ *pulumi.OutputState }

func (OidcKeyAllowedClientIDArrayOutput) ElementType added in v3.4.1 

func (OidcKeyAllowedClientIDArrayOutput) ElementType() reflect.Type

func (OidcKeyAllowedClientIDArrayOutput) Index added in v3.4.1 

func (o OidcKeyAllowedClientIDArrayOutput) Index(i pulumi.IntInput) OidcKeyAllowedClientIDOutput

func (OidcKeyAllowedClientIDArrayOutput) ToOidcKeyAllowedClientIDArrayOutput added in v3.4.1 

func (o OidcKeyAllowedClientIDArrayOutput) ToOidcKeyAllowedClientIDArrayOutput() OidcKeyAllowedClientIDArrayOutput

func (OidcKeyAllowedClientIDArrayOutput) ToOidcKeyAllowedClientIDArrayOutputWithContext added in v3.4.1 

func (o OidcKeyAllowedClientIDArrayOutput) ToOidcKeyAllowedClientIDArrayOutputWithContext(ctx context.Context) OidcKeyAllowedClientIDArrayOutput

type OidcKeyAllowedClientIDInput added in v3.0.2 

type OidcKeyAllowedClientIDInput interface {
	pulumi.Input

	ToOidcKeyAllowedClientIDOutput() OidcKeyAllowedClientIDOutput
	ToOidcKeyAllowedClientIDOutputWithContext(ctx context.Context) OidcKeyAllowedClientIDOutput
}

type OidcKeyAllowedClientIDMap added in v3.4.1 

type OidcKeyAllowedClientIDMap map[string]OidcKeyAllowedClientIDInput

func (OidcKeyAllowedClientIDMap) ElementType added in v3.4.1 

func (OidcKeyAllowedClientIDMap) ElementType() reflect.Type

func (OidcKeyAllowedClientIDMap) ToOidcKeyAllowedClientIDMapOutput added in v3.4.1 

func (i OidcKeyAllowedClientIDMap) ToOidcKeyAllowedClientIDMapOutput() OidcKeyAllowedClientIDMapOutput

func (OidcKeyAllowedClientIDMap) ToOidcKeyAllowedClientIDMapOutputWithContext added in v3.4.1 

func (i OidcKeyAllowedClientIDMap) ToOidcKeyAllowedClientIDMapOutputWithContext(ctx context.Context) OidcKeyAllowedClientIDMapOutput

type OidcKeyAllowedClientIDMapInput added in v3.4.1 

type OidcKeyAllowedClientIDMapInput interface {
	pulumi.Input

	ToOidcKeyAllowedClientIDMapOutput() OidcKeyAllowedClientIDMapOutput
	ToOidcKeyAllowedClientIDMapOutputWithContext(context.Context) OidcKeyAllowedClientIDMapOutput
}

OidcKeyAllowedClientIDMapInput is an input type that accepts OidcKeyAllowedClientIDMap and OidcKeyAllowedClientIDMapOutput values. You can construct a concrete instance of `OidcKeyAllowedClientIDMapInput` via: 

OidcKeyAllowedClientIDMap{ "key": OidcKeyAllowedClientIDArgs{...} }

type OidcKeyAllowedClientIDMapOutput added in v3.4.1 

type OidcKeyAllowedClientIDMapOutput struct{ *pulumi.OutputState }

func (OidcKeyAllowedClientIDMapOutput) ElementType added in v3.4.1 

func (OidcKeyAllowedClientIDMapOutput) ElementType() reflect.Type

func (OidcKeyAllowedClientIDMapOutput) MapIndex added in v3.4.1 

func (o OidcKeyAllowedClientIDMapOutput) MapIndex(k pulumi.StringInput) OidcKeyAllowedClientIDOutput

func (OidcKeyAllowedClientIDMapOutput) ToOidcKeyAllowedClientIDMapOutput added in v3.4.1 

func (o OidcKeyAllowedClientIDMapOutput) ToOidcKeyAllowedClientIDMapOutput() OidcKeyAllowedClientIDMapOutput

func (OidcKeyAllowedClientIDMapOutput) ToOidcKeyAllowedClientIDMapOutputWithContext added in v3.4.1 

func (o OidcKeyAllowedClientIDMapOutput) ToOidcKeyAllowedClientIDMapOutputWithContext(ctx context.Context) OidcKeyAllowedClientIDMapOutput

type OidcKeyAllowedClientIDOutput added in v3.0.2 

type OidcKeyAllowedClientIDOutput struct {
	*pulumi.OutputState
}

func (OidcKeyAllowedClientIDOutput) ElementType added in v3.0.2 

func (OidcKeyAllowedClientIDOutput) ElementType() reflect.Type

func (OidcKeyAllowedClientIDOutput) ToOidcKeyAllowedClientIDOutput added in v3.0.2 

func (o OidcKeyAllowedClientIDOutput) ToOidcKeyAllowedClientIDOutput() OidcKeyAllowedClientIDOutput

func (OidcKeyAllowedClientIDOutput) ToOidcKeyAllowedClientIDOutputWithContext added in v3.0.2 

func (o OidcKeyAllowedClientIDOutput) ToOidcKeyAllowedClientIDOutputWithContext(ctx context.Context) OidcKeyAllowedClientIDOutput

func (OidcKeyAllowedClientIDOutput) ToOidcKeyAllowedClientIDPtrOutput added in v3.4.1 

func (o OidcKeyAllowedClientIDOutput) ToOidcKeyAllowedClientIDPtrOutput() OidcKeyAllowedClientIDPtrOutput

func (OidcKeyAllowedClientIDOutput) ToOidcKeyAllowedClientIDPtrOutputWithContext added in v3.4.1 

func (o OidcKeyAllowedClientIDOutput) ToOidcKeyAllowedClientIDPtrOutputWithContext(ctx context.Context) OidcKeyAllowedClientIDPtrOutput

type OidcKeyAllowedClientIDPtrInput added in v3.4.1 

type OidcKeyAllowedClientIDPtrInput interface {
	pulumi.Input

	ToOidcKeyAllowedClientIDPtrOutput() OidcKeyAllowedClientIDPtrOutput
	ToOidcKeyAllowedClientIDPtrOutputWithContext(ctx context.Context) OidcKeyAllowedClientIDPtrOutput
}

type OidcKeyAllowedClientIDPtrOutput added in v3.4.1 

type OidcKeyAllowedClientIDPtrOutput struct {
	*pulumi.OutputState
}

func (OidcKeyAllowedClientIDPtrOutput) ElementType added in v3.4.1 

func (OidcKeyAllowedClientIDPtrOutput) ElementType() reflect.Type

func (OidcKeyAllowedClientIDPtrOutput) ToOidcKeyAllowedClientIDPtrOutput added in v3.4.1 

func (o OidcKeyAllowedClientIDPtrOutput) ToOidcKeyAllowedClientIDPtrOutput() OidcKeyAllowedClientIDPtrOutput

func (OidcKeyAllowedClientIDPtrOutput) ToOidcKeyAllowedClientIDPtrOutputWithContext added in v3.4.1 

func (o OidcKeyAllowedClientIDPtrOutput) ToOidcKeyAllowedClientIDPtrOutputWithContext(ctx context.Context) OidcKeyAllowedClientIDPtrOutput

type OidcKeyAllowedClientIDState 

type OidcKeyAllowedClientIDState struct {
	// Client ID to allow usage with the OIDC named key
	AllowedClientId pulumi.StringPtrInput
	// Name of the OIDC Key allow the Client ID.
	KeyName pulumi.StringPtrInput
}

func (OidcKeyAllowedClientIDState) ElementType 

func (OidcKeyAllowedClientIDState) ElementType() reflect.Type

type OidcKeyArgs 

type OidcKeyArgs struct {
	// Signing algorithm to use. Signing algorithm to use.
	// Allowed values are: RS256 (default), RS384, RS512, ES256, ES384, ES512, EdDSA.
	Algorithm pulumi.StringPtrInput
	// Array of role client ids allowed to use this key for signing. If empty, no roles are allowed. If "*", all roles are
	// allowed.
	AllowedClientIds pulumi.StringArrayInput
	// Name of the OIDC Key to create.
	Name pulumi.StringPtrInput
	// How often to generate a new signing key in number of seconds
	RotationPeriod pulumi.IntPtrInput
	// "Controls how long the public portion of a signing key will be
	// available for verification after being rotated in seconds.
	VerificationTtl pulumi.IntPtrInput
}

The set of arguments for constructing a OidcKey resource.

func (OidcKeyArgs) ElementType 

func (OidcKeyArgs) ElementType() reflect.Type

type OidcKeyArray added in v3.4.1 

type OidcKeyArray []OidcKeyInput

func (OidcKeyArray) ElementType added in v3.4.1 

func (OidcKeyArray) ElementType() reflect.Type

func (OidcKeyArray) ToOidcKeyArrayOutput added in v3.4.1 

func (i OidcKeyArray) ToOidcKeyArrayOutput() OidcKeyArrayOutput

func (OidcKeyArray) ToOidcKeyArrayOutputWithContext added in v3.4.1 

func (i OidcKeyArray) ToOidcKeyArrayOutputWithContext(ctx context.Context) OidcKeyArrayOutput

type OidcKeyArrayInput added in v3.4.1 

type OidcKeyArrayInput interface {
	pulumi.Input

	ToOidcKeyArrayOutput() OidcKeyArrayOutput
	ToOidcKeyArrayOutputWithContext(context.Context) OidcKeyArrayOutput
}

OidcKeyArrayInput is an input type that accepts OidcKeyArray and OidcKeyArrayOutput values. You can construct a concrete instance of `OidcKeyArrayInput` via: 

OidcKeyArray{ OidcKeyArgs{...} }

type OidcKeyArrayOutput added in v3.4.1 

type OidcKeyArrayOutput struct{ *pulumi.OutputState }

func (OidcKeyArrayOutput) ElementType added in v3.4.1 

func (OidcKeyArrayOutput) ElementType() reflect.Type

func (OidcKeyArrayOutput) Index added in v3.4.1 

func (o OidcKeyArrayOutput) Index(i pulumi.IntInput) OidcKeyOutput

func (OidcKeyArrayOutput) ToOidcKeyArrayOutput added in v3.4.1 

func (o OidcKeyArrayOutput) ToOidcKeyArrayOutput() OidcKeyArrayOutput

func (OidcKeyArrayOutput) ToOidcKeyArrayOutputWithContext added in v3.4.1 

func (o OidcKeyArrayOutput) ToOidcKeyArrayOutputWithContext(ctx context.Context) OidcKeyArrayOutput

type OidcKeyInput added in v3.0.2 

type OidcKeyInput interface {
	pulumi.Input

	ToOidcKeyOutput() OidcKeyOutput
	ToOidcKeyOutputWithContext(ctx context.Context) OidcKeyOutput
}

type OidcKeyMap added in v3.4.1 

type OidcKeyMap map[string]OidcKeyInput

func (OidcKeyMap) ElementType added in v3.4.1 

func (OidcKeyMap) ElementType() reflect.Type

func (OidcKeyMap) ToOidcKeyMapOutput added in v3.4.1 

func (i OidcKeyMap) ToOidcKeyMapOutput() OidcKeyMapOutput

func (OidcKeyMap) ToOidcKeyMapOutputWithContext added in v3.4.1 

func (i OidcKeyMap) ToOidcKeyMapOutputWithContext(ctx context.Context) OidcKeyMapOutput

type OidcKeyMapInput added in v3.4.1 

type OidcKeyMapInput interface {
	pulumi.Input

	ToOidcKeyMapOutput() OidcKeyMapOutput
	ToOidcKeyMapOutputWithContext(context.Context) OidcKeyMapOutput
}

OidcKeyMapInput is an input type that accepts OidcKeyMap and OidcKeyMapOutput values. You can construct a concrete instance of `OidcKeyMapInput` via: 

OidcKeyMap{ "key": OidcKeyArgs{...} }

type OidcKeyMapOutput added in v3.4.1 

type OidcKeyMapOutput struct{ *pulumi.OutputState }

func (OidcKeyMapOutput) ElementType added in v3.4.1 

func (OidcKeyMapOutput) ElementType() reflect.Type

func (OidcKeyMapOutput) MapIndex added in v3.4.1 

func (o OidcKeyMapOutput) MapIndex(k pulumi.StringInput) OidcKeyOutput

func (OidcKeyMapOutput) ToOidcKeyMapOutput added in v3.4.1 

func (o OidcKeyMapOutput) ToOidcKeyMapOutput() OidcKeyMapOutput

func (OidcKeyMapOutput) ToOidcKeyMapOutputWithContext added in v3.4.1 

func (o OidcKeyMapOutput) ToOidcKeyMapOutputWithContext(ctx context.Context) OidcKeyMapOutput

type OidcKeyOutput added in v3.0.2 

type OidcKeyOutput struct {
	*pulumi.OutputState
}

func (OidcKeyOutput) ElementType added in v3.0.2 

func (OidcKeyOutput) ElementType() reflect.Type

func (OidcKeyOutput) ToOidcKeyOutput added in v3.0.2 

func (o OidcKeyOutput) ToOidcKeyOutput() OidcKeyOutput

func (OidcKeyOutput) ToOidcKeyOutputWithContext added in v3.0.2 

func (o OidcKeyOutput) ToOidcKeyOutputWithContext(ctx context.Context) OidcKeyOutput

func (OidcKeyOutput) ToOidcKeyPtrOutput added in v3.4.1 

func (o OidcKeyOutput) ToOidcKeyPtrOutput() OidcKeyPtrOutput

func (OidcKeyOutput) ToOidcKeyPtrOutputWithContext added in v3.4.1 

func (o OidcKeyOutput) ToOidcKeyPtrOutputWithContext(ctx context.Context) OidcKeyPtrOutput

type OidcKeyPtrInput added in v3.4.1 

type OidcKeyPtrInput interface {
	pulumi.Input

	ToOidcKeyPtrOutput() OidcKeyPtrOutput
	ToOidcKeyPtrOutputWithContext(ctx context.Context) OidcKeyPtrOutput
}

type OidcKeyPtrOutput added in v3.4.1 

type OidcKeyPtrOutput struct {
	*pulumi.OutputState
}

func (OidcKeyPtrOutput) ElementType added in v3.4.1 

func (OidcKeyPtrOutput) ElementType() reflect.Type

func (OidcKeyPtrOutput) ToOidcKeyPtrOutput added in v3.4.1 

func (o OidcKeyPtrOutput) ToOidcKeyPtrOutput() OidcKeyPtrOutput

func (OidcKeyPtrOutput) ToOidcKeyPtrOutputWithContext added in v3.4.1 

func (o OidcKeyPtrOutput) ToOidcKeyPtrOutputWithContext(ctx context.Context) OidcKeyPtrOutput

type OidcKeyState 

type OidcKeyState struct {
	// Signing algorithm to use. Signing algorithm to use.
	// Allowed values are: RS256 (default), RS384, RS512, ES256, ES384, ES512, EdDSA.
	Algorithm pulumi.StringPtrInput
	// Array of role client ids allowed to use this key for signing. If empty, no roles are allowed. If "*", all roles are
	// allowed.
	AllowedClientIds pulumi.StringArrayInput
	// Name of the OIDC Key to create.
	Name pulumi.StringPtrInput
	// How often to generate a new signing key in number of seconds
	RotationPeriod pulumi.IntPtrInput
	// "Controls how long the public portion of a signing key will be
	// available for verification after being rotated in seconds.
	VerificationTtl pulumi.IntPtrInput
}

func (OidcKeyState) ElementType 

func (OidcKeyState) ElementType() reflect.Type

type OidcMap added in v3.4.1 

type OidcMap map[string]OidcInput

func (OidcMap) ElementType added in v3.4.1 

func (OidcMap) ElementType() reflect.Type

func (OidcMap) ToOidcMapOutput added in v3.4.1 

func (i OidcMap) ToOidcMapOutput() OidcMapOutput

func (OidcMap) ToOidcMapOutputWithContext added in v3.4.1 

func (i OidcMap) ToOidcMapOutputWithContext(ctx context.Context) OidcMapOutput

type OidcMapInput added in v3.4.1 

type OidcMapInput interface {
	pulumi.Input

	ToOidcMapOutput() OidcMapOutput
	ToOidcMapOutputWithContext(context.Context) OidcMapOutput
}

OidcMapInput is an input type that accepts OidcMap and OidcMapOutput values. You can construct a concrete instance of `OidcMapInput` via: 

OidcMap{ "key": OidcArgs{...} }

type OidcMapOutput added in v3.4.1 

type OidcMapOutput struct{ *pulumi.OutputState }

func (OidcMapOutput) ElementType added in v3.4.1 

func (OidcMapOutput) ElementType() reflect.Type

func (OidcMapOutput) MapIndex added in v3.4.1 

func (o OidcMapOutput) MapIndex(k pulumi.StringInput) OidcOutput

func (OidcMapOutput) ToOidcMapOutput added in v3.4.1 

func (o OidcMapOutput) ToOidcMapOutput() OidcMapOutput

func (OidcMapOutput) ToOidcMapOutputWithContext added in v3.4.1 

func (o OidcMapOutput) ToOidcMapOutputWithContext(ctx context.Context) OidcMapOutput

type OidcOutput added in v3.0.2 

type OidcOutput struct {
	*pulumi.OutputState
}

func (OidcOutput) ElementType added in v3.0.2 

func (OidcOutput) ElementType() reflect.Type

func (OidcOutput) ToOidcOutput added in v3.0.2 

func (o OidcOutput) ToOidcOutput() OidcOutput

func (OidcOutput) ToOidcOutputWithContext added in v3.0.2 

func (o OidcOutput) ToOidcOutputWithContext(ctx context.Context) OidcOutput

func (OidcOutput) ToOidcPtrOutput added in v3.4.1 

func (o OidcOutput) ToOidcPtrOutput() OidcPtrOutput

func (OidcOutput) ToOidcPtrOutputWithContext added in v3.4.1 

func (o OidcOutput) ToOidcPtrOutputWithContext(ctx context.Context) OidcPtrOutput

type OidcPtrInput added in v3.4.1 

type OidcPtrInput interface {
	pulumi.Input

	ToOidcPtrOutput() OidcPtrOutput
	ToOidcPtrOutputWithContext(ctx context.Context) OidcPtrOutput
}

type OidcPtrOutput added in v3.4.1 

type OidcPtrOutput struct {
	*pulumi.OutputState
}

func (OidcPtrOutput) ElementType added in v3.4.1 

func (OidcPtrOutput) ElementType() reflect.Type

func (OidcPtrOutput) ToOidcPtrOutput added in v3.4.1 

func (o OidcPtrOutput) ToOidcPtrOutput() OidcPtrOutput

func (OidcPtrOutput) ToOidcPtrOutputWithContext added in v3.4.1 

func (o OidcPtrOutput) ToOidcPtrOutputWithContext(ctx context.Context) OidcPtrOutput

type OidcRole 

type OidcRole struct {
	pulumi.CustomResourceState

	// The value that will be included in the `aud` field of all the OIDC identity
	// tokens issued by this role
	ClientId pulumi.StringOutput `pulumi:"clientId"`
	// A configured named key, the key must already exist
	// before tokens can be issued.
	Key pulumi.StringOutput `pulumi:"key"`
	// Name of the OIDC Role to create.
	Name pulumi.StringOutput `pulumi:"name"`
	// The template string to use for generating tokens. This may be in
	// string-ified JSON or base64 format. See the
	// [documentation](https://www.vaultproject.io/docs/secrets/identity/index.html#token-contents-and-templates)
	// for the template format.
	Template pulumi.StringPtrOutput `pulumi:"template"`
	// TTL of the tokens generated against the role in number of seconds.
	Ttl pulumi.IntPtrOutput `pulumi:"ttl"`
}

## Import

The key can be imported with the role name, for example

```sh 

$ pulumi import vault:identity/oidcRole:OidcRole role role

```

func GetOidcRole 

func GetOidcRole(ctx *pulumi.Context,
	name string, id pulumi.IDInput, state *OidcRoleState, opts ...pulumi.ResourceOption) (*OidcRole, error)

GetOidcRole gets an existing OidcRole resource's state with the given name, ID, and optional state properties that are used to uniquely qualify the lookup (nil if not required).

func NewOidcRole 

func NewOidcRole(ctx *pulumi.Context,
	name string, args *OidcRoleArgs, opts ...pulumi.ResourceOption) (*OidcRole, error)

NewOidcRole registers a new resource with the given unique name, arguments, and options.

func (*OidcRole) ElementType added in v3.0.2 

func (*OidcRole) ElementType() reflect.Type

func (*OidcRole) ToOidcRoleOutput added in v3.0.2 

func (i *OidcRole) ToOidcRoleOutput() OidcRoleOutput

func (*OidcRole) ToOidcRoleOutputWithContext added in v3.0.2 

func (i *OidcRole) ToOidcRoleOutputWithContext(ctx context.Context) OidcRoleOutput

func (*OidcRole) ToOidcRolePtrOutput added in v3.4.1 

func (i *OidcRole) ToOidcRolePtrOutput() OidcRolePtrOutput

func (*OidcRole) ToOidcRolePtrOutputWithContext added in v3.4.1 

func (i *OidcRole) ToOidcRolePtrOutputWithContext(ctx context.Context) OidcRolePtrOutput

type OidcRoleArgs 

type OidcRoleArgs struct {
	// The value that will be included in the `aud` field of all the OIDC identity
	// tokens issued by this role
	ClientId pulumi.StringPtrInput
	// A configured named key, the key must already exist
	// before tokens can be issued.
	Key pulumi.StringInput
	// Name of the OIDC Role to create.
	Name pulumi.StringPtrInput
	// The template string to use for generating tokens. This may be in
	// string-ified JSON or base64 format. See the
	// [documentation](https://www.vaultproject.io/docs/secrets/identity/index.html#token-contents-and-templates)
	// for the template format.
	Template pulumi.StringPtrInput
	// TTL of the tokens generated against the role in number of seconds.
	Ttl pulumi.IntPtrInput
}

The set of arguments for constructing a OidcRole resource.

func (OidcRoleArgs) ElementType 

func (OidcRoleArgs) ElementType() reflect.Type

type OidcRoleArray added in v3.4.1 

type OidcRoleArray []OidcRoleInput

func (OidcRoleArray) ElementType added in v3.4.1 

func (OidcRoleArray) ElementType() reflect.Type

func (OidcRoleArray) ToOidcRoleArrayOutput added in v3.4.1 

func (i OidcRoleArray) ToOidcRoleArrayOutput() OidcRoleArrayOutput

func (OidcRoleArray) ToOidcRoleArrayOutputWithContext added in v3.4.1 

func (i OidcRoleArray) ToOidcRoleArrayOutputWithContext(ctx context.Context) OidcRoleArrayOutput

type OidcRoleArrayInput added in v3.4.1 

type OidcRoleArrayInput interface {
	pulumi.Input

	ToOidcRoleArrayOutput() OidcRoleArrayOutput
	ToOidcRoleArrayOutputWithContext(context.Context) OidcRoleArrayOutput
}

OidcRoleArrayInput is an input type that accepts OidcRoleArray and OidcRoleArrayOutput values. You can construct a concrete instance of `OidcRoleArrayInput` via: 

OidcRoleArray{ OidcRoleArgs{...} }

type OidcRoleArrayOutput added in v3.4.1 

type OidcRoleArrayOutput struct{ *pulumi.OutputState }

func (OidcRoleArrayOutput) ElementType added in v3.4.1 

func (OidcRoleArrayOutput) ElementType() reflect.Type

func (OidcRoleArrayOutput) Index added in v3.4.1 

func (o OidcRoleArrayOutput) Index(i pulumi.IntInput) OidcRoleOutput

func (OidcRoleArrayOutput) ToOidcRoleArrayOutput added in v3.4.1 

func (o OidcRoleArrayOutput) ToOidcRoleArrayOutput() OidcRoleArrayOutput

func (OidcRoleArrayOutput) ToOidcRoleArrayOutputWithContext added in v3.4.1 

func (o OidcRoleArrayOutput) ToOidcRoleArrayOutputWithContext(ctx context.Context) OidcRoleArrayOutput

type OidcRoleInput added in v3.0.2 

type OidcRoleInput interface {
	pulumi.Input

	ToOidcRoleOutput() OidcRoleOutput
	ToOidcRoleOutputWithContext(ctx context.Context) OidcRoleOutput
}

type OidcRoleMap added in v3.4.1 

type OidcRoleMap map[string]OidcRoleInput

func (OidcRoleMap) ElementType added in v3.4.1 

func (OidcRoleMap) ElementType() reflect.Type

func (OidcRoleMap) ToOidcRoleMapOutput added in v3.4.1 

func (i OidcRoleMap) ToOidcRoleMapOutput() OidcRoleMapOutput

func (OidcRoleMap) ToOidcRoleMapOutputWithContext added in v3.4.1 

func (i OidcRoleMap) ToOidcRoleMapOutputWithContext(ctx context.Context) OidcRoleMapOutput

type OidcRoleMapInput added in v3.4.1 

type OidcRoleMapInput interface {
	pulumi.Input

	ToOidcRoleMapOutput() OidcRoleMapOutput
	ToOidcRoleMapOutputWithContext(context.Context) OidcRoleMapOutput
}

OidcRoleMapInput is an input type that accepts OidcRoleMap and OidcRoleMapOutput values. You can construct a concrete instance of `OidcRoleMapInput` via: 

OidcRoleMap{ "key": OidcRoleArgs{...} }

type OidcRoleMapOutput added in v3.4.1 

type OidcRoleMapOutput struct{ *pulumi.OutputState }

func (OidcRoleMapOutput) ElementType added in v3.4.1 

func (OidcRoleMapOutput) ElementType() reflect.Type

func (OidcRoleMapOutput) MapIndex added in v3.4.1 

func (o OidcRoleMapOutput) MapIndex(k pulumi.StringInput) OidcRoleOutput

func (OidcRoleMapOutput) ToOidcRoleMapOutput added in v3.4.1 

func (o OidcRoleMapOutput) ToOidcRoleMapOutput() OidcRoleMapOutput

func (OidcRoleMapOutput) ToOidcRoleMapOutputWithContext added in v3.4.1 

func (o OidcRoleMapOutput) ToOidcRoleMapOutputWithContext(ctx context.Context) OidcRoleMapOutput

type OidcRoleOutput added in v3.0.2 

type OidcRoleOutput struct {
	*pulumi.OutputState
}

func (OidcRoleOutput) ElementType added in v3.0.2 

func (OidcRoleOutput) ElementType() reflect.Type

func (OidcRoleOutput) ToOidcRoleOutput added in v3.0.2 

func (o OidcRoleOutput) ToOidcRoleOutput() OidcRoleOutput

func (OidcRoleOutput) ToOidcRoleOutputWithContext added in v3.0.2 

func (o OidcRoleOutput) ToOidcRoleOutputWithContext(ctx context.Context) OidcRoleOutput

func (OidcRoleOutput) ToOidcRolePtrOutput added in v3.4.1 

func (o OidcRoleOutput) ToOidcRolePtrOutput() OidcRolePtrOutput

func (OidcRoleOutput) ToOidcRolePtrOutputWithContext added in v3.4.1 

func (o OidcRoleOutput) ToOidcRolePtrOutputWithContext(ctx context.Context) OidcRolePtrOutput

type OidcRolePtrInput added in v3.4.1 

type OidcRolePtrInput interface {
	pulumi.Input

	ToOidcRolePtrOutput() OidcRolePtrOutput
	ToOidcRolePtrOutputWithContext(ctx context.Context) OidcRolePtrOutput
}

type OidcRolePtrOutput added in v3.4.1 

type OidcRolePtrOutput struct {
	*pulumi.OutputState
}

func (OidcRolePtrOutput) ElementType added in v3.4.1 

func (OidcRolePtrOutput) ElementType() reflect.Type

func (OidcRolePtrOutput) ToOidcRolePtrOutput added in v3.4.1 

func (o OidcRolePtrOutput) ToOidcRolePtrOutput() OidcRolePtrOutput

func (OidcRolePtrOutput) ToOidcRolePtrOutputWithContext added in v3.4.1 

func (o OidcRolePtrOutput) ToOidcRolePtrOutputWithContext(ctx context.Context) OidcRolePtrOutput

type OidcRoleState 

type OidcRoleState struct {
	// The value that will be included in the `aud` field of all the OIDC identity
	// tokens issued by this role
	ClientId pulumi.StringPtrInput
	// A configured named key, the key must already exist
	// before tokens can be issued.
	Key pulumi.StringPtrInput
	// Name of the OIDC Role to create.
	Name pulumi.StringPtrInput
	// The template string to use for generating tokens. This may be in
	// string-ified JSON or base64 format. See the
	// [documentation](https://www.vaultproject.io/docs/secrets/identity/index.html#token-contents-and-templates)
	// for the template format.
	Template pulumi.StringPtrInput
	// TTL of the tokens generated against the role in number of seconds.
	Ttl pulumi.IntPtrInput
}

func (OidcRoleState) ElementType 

func (OidcRoleState) ElementType() reflect.Type

type OidcState 

type OidcState struct {
	// Issuer URL to be used in the iss claim of the token. If not set, Vault's
	// `apiAddr` will be used. The issuer is a case sensitive URL using the https scheme that contains
	// scheme, host, and optionally, port number and path components, but no query or fragment
	// components.
	Issuer pulumi.StringPtrInput
}

func (OidcState) ElementType 

func (OidcState) ElementType() reflect.Type

Source Files

View all Source files

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f or F : Jump to
y or Y : Canonical URL
go.dev uses cookies from Google to deliver and enhance the quality of its services and to analyze traffic. Learn more.