managed

package
v6.1.0 Latest Latest
Warning

This package is not in the latest version of its module.

 Go to latest Published: Apr 4, 2024 License: Apache-2.0 Imports: 6 Imported by: 0

Documentation

Index

Constants

This section is empty.

Variables

This section is empty.

Functions

This section is empty.

Types

type Keys 

type Keys struct {
	pulumi.CustomResourceState

	// Configuration block for AWS Managed Keys
	Aws KeysAwArrayOutput `pulumi:"aws"`
	// Configuration block for Azure Managed Keys
	Azures KeysAzureArrayOutput `pulumi:"azures"`
	// The namespace to provision the resource in.
	// The value should not contain leading or trailing forward slashes.
	// The `namespace` is always relative to the provider's configured namespace.
	// *Available only for Vault Enterprise*.
	Namespace pulumi.StringPtrOutput `pulumi:"namespace"`
	// Configuration block for PKCS Managed Keys
	Pkcs KeysPkcArrayOutput `pulumi:"pkcs"`
}

A resource that manages the lifecycle of all [Managed Keys](https://www.vaultproject.io/docs/enterprise/managed-keys) in Vault.

**Note** this feature is available only with Vault Enterprise.

## Import

Mounts can be imported using the `id` of `default`, e.g.

```sh $ pulumi import vault:managed/keys:Keys keys default ```

func GetKeys 

func GetKeys(ctx *pulumi.Context,
	name string, id pulumi.IDInput, state *KeysState, opts ...pulumi.ResourceOption) (*Keys, error)

GetKeys gets an existing Keys resource's state with the given name, ID, and optional state properties that are used to uniquely qualify the lookup (nil if not required).

func NewKeys 

func NewKeys(ctx *pulumi.Context,
	name string, args *KeysArgs, opts ...pulumi.ResourceOption) (*Keys, error)

NewKeys registers a new resource with the given unique name, arguments, and options.

func (*Keys) ElementType 

func (*Keys) ElementType() reflect.Type

func (*Keys) ToKeysOutput 

func (i *Keys) ToKeysOutput() KeysOutput

func (*Keys) ToKeysOutputWithContext 

func (i *Keys) ToKeysOutputWithContext(ctx context.Context) KeysOutput

type KeysArgs 

type KeysArgs struct {
	// Configuration block for AWS Managed Keys
	Aws KeysAwArrayInput
	// Configuration block for Azure Managed Keys
	Azures KeysAzureArrayInput
	// The namespace to provision the resource in.
	// The value should not contain leading or trailing forward slashes.
	// The `namespace` is always relative to the provider's configured namespace.
	// *Available only for Vault Enterprise*.
	Namespace pulumi.StringPtrInput
	// Configuration block for PKCS Managed Keys
	Pkcs KeysPkcArrayInput
}

The set of arguments for constructing a Keys resource.

func (KeysArgs) ElementType 

func (KeysArgs) ElementType() reflect.Type

type KeysArray 

type KeysArray []KeysInput

func (KeysArray) ElementType 

func (KeysArray) ElementType() reflect.Type

func (KeysArray) ToKeysArrayOutput 

func (i KeysArray) ToKeysArrayOutput() KeysArrayOutput

func (KeysArray) ToKeysArrayOutputWithContext 

func (i KeysArray) ToKeysArrayOutputWithContext(ctx context.Context) KeysArrayOutput

type KeysArrayInput 

type KeysArrayInput interface {
	pulumi.Input

	ToKeysArrayOutput() KeysArrayOutput
	ToKeysArrayOutputWithContext(context.Context) KeysArrayOutput
}

KeysArrayInput is an input type that accepts KeysArray and KeysArrayOutput values. You can construct a concrete instance of `KeysArrayInput` via: 

KeysArray{ KeysArgs{...} }

type KeysArrayOutput 

type KeysArrayOutput struct{ *pulumi.OutputState }

func (KeysArrayOutput) ElementType 

func (KeysArrayOutput) ElementType() reflect.Type

func (KeysArrayOutput) Index 

func (o KeysArrayOutput) Index(i pulumi.IntInput) KeysOutput

func (KeysArrayOutput) ToKeysArrayOutput 

func (o KeysArrayOutput) ToKeysArrayOutput() KeysArrayOutput

func (KeysArrayOutput) ToKeysArrayOutputWithContext 

func (o KeysArrayOutput) ToKeysArrayOutputWithContext(ctx context.Context) KeysArrayOutput

type KeysAw 

type KeysAw struct {
	// The AWS access key to use.
	AccessKey string `pulumi:"accessKey"`
	// If no existing key can be found in
	// the referenced backend, instructs Vault to generate a key within the backend.
	AllowGenerateKey *bool `pulumi:"allowGenerateKey"`
	// Controls the ability for Vault to replace through
	// generation or importing a key into the configured backend even
	// if a key is present, if set to `false` those operations are forbidden
	// if a key exists.
	AllowReplaceKey *bool `pulumi:"allowReplaceKey"`
	// Controls the ability for Vault to import a key to the
	// configured backend, if `false`, those operations will be forbidden.
	AllowStoreKey *bool `pulumi:"allowStoreKey"`
	// If `true`, allows usage from any mount point within the
	// namespace.
	AnyMount *bool `pulumi:"anyMount"`
	// The curve to use for an ECDSA key. Used when `keyType`
	// is `ECDSA`. Required if `allowGenerateKey` is `true`.
	Curve *string `pulumi:"curve"`
	// Used to specify a custom AWS endpoint.
	Endpoint *string `pulumi:"endpoint"`
	// The size in bits for an RSA key.
	KeyBits string `pulumi:"keyBits"`
	// The type of key to use.
	KeyType string `pulumi:"keyType"`
	// An identifier for the key.
	KmsKey string `pulumi:"kmsKey"`
	// A unique lowercase name that serves as identifying the key.
	Name string `pulumi:"name"`
	// The AWS region where the keys are stored (or will be stored).
	Region *string `pulumi:"region"`
	// The AWS access key to use.
	SecretKey string `pulumi:"secretKey"`
	// ID of the managed key read from Vault
	Uuid *string `pulumi:"uuid"`
}

type KeysAwArgs 

type KeysAwArgs struct {
	// The AWS access key to use.
	AccessKey pulumi.StringInput `pulumi:"accessKey"`
	// If no existing key can be found in
	// the referenced backend, instructs Vault to generate a key within the backend.
	AllowGenerateKey pulumi.BoolPtrInput `pulumi:"allowGenerateKey"`
	// Controls the ability for Vault to replace through
	// generation or importing a key into the configured backend even
	// if a key is present, if set to `false` those operations are forbidden
	// if a key exists.
	AllowReplaceKey pulumi.BoolPtrInput `pulumi:"allowReplaceKey"`
	// Controls the ability for Vault to import a key to the
	// configured backend, if `false`, those operations will be forbidden.
	AllowStoreKey pulumi.BoolPtrInput `pulumi:"allowStoreKey"`
	// If `true`, allows usage from any mount point within the
	// namespace.
	AnyMount pulumi.BoolPtrInput `pulumi:"anyMount"`
	// The curve to use for an ECDSA key. Used when `keyType`
	// is `ECDSA`. Required if `allowGenerateKey` is `true`.
	Curve pulumi.StringPtrInput `pulumi:"curve"`
	// Used to specify a custom AWS endpoint.
	Endpoint pulumi.StringPtrInput `pulumi:"endpoint"`
	// The size in bits for an RSA key.
	KeyBits pulumi.StringInput `pulumi:"keyBits"`
	// The type of key to use.
	KeyType pulumi.StringInput `pulumi:"keyType"`
	// An identifier for the key.
	KmsKey pulumi.StringInput `pulumi:"kmsKey"`
	// A unique lowercase name that serves as identifying the key.
	Name pulumi.StringInput `pulumi:"name"`
	// The AWS region where the keys are stored (or will be stored).
	Region pulumi.StringPtrInput `pulumi:"region"`
	// The AWS access key to use.
	SecretKey pulumi.StringInput `pulumi:"secretKey"`
	// ID of the managed key read from Vault
	Uuid pulumi.StringPtrInput `pulumi:"uuid"`
}

func (KeysAwArgs) ElementType 

func (KeysAwArgs) ElementType() reflect.Type

func (KeysAwArgs) ToKeysAwOutput 

func (i KeysAwArgs) ToKeysAwOutput() KeysAwOutput

func (KeysAwArgs) ToKeysAwOutputWithContext 

func (i KeysAwArgs) ToKeysAwOutputWithContext(ctx context.Context) KeysAwOutput

type KeysAwArray 

type KeysAwArray []KeysAwInput

func (KeysAwArray) ElementType 

func (KeysAwArray) ElementType() reflect.Type

func (KeysAwArray) ToKeysAwArrayOutput 

func (i KeysAwArray) ToKeysAwArrayOutput() KeysAwArrayOutput

func (KeysAwArray) ToKeysAwArrayOutputWithContext 

func (i KeysAwArray) ToKeysAwArrayOutputWithContext(ctx context.Context) KeysAwArrayOutput

type KeysAwArrayInput 

type KeysAwArrayInput interface {
	pulumi.Input

	ToKeysAwArrayOutput() KeysAwArrayOutput
	ToKeysAwArrayOutputWithContext(context.Context) KeysAwArrayOutput
}

KeysAwArrayInput is an input type that accepts KeysAwArray and KeysAwArrayOutput values. You can construct a concrete instance of `KeysAwArrayInput` via: 

KeysAwArray{ KeysAwArgs{...} }

type KeysAwArrayOutput 

type KeysAwArrayOutput struct{ *pulumi.OutputState }

func (KeysAwArrayOutput) ElementType 

func (KeysAwArrayOutput) ElementType() reflect.Type

func (KeysAwArrayOutput) Index 

func (o KeysAwArrayOutput) Index(i pulumi.IntInput) KeysAwOutput

func (KeysAwArrayOutput) ToKeysAwArrayOutput 

func (o KeysAwArrayOutput) ToKeysAwArrayOutput() KeysAwArrayOutput

func (KeysAwArrayOutput) ToKeysAwArrayOutputWithContext 

func (o KeysAwArrayOutput) ToKeysAwArrayOutputWithContext(ctx context.Context) KeysAwArrayOutput

type KeysAwInput 

type KeysAwInput interface {
	pulumi.Input

	ToKeysAwOutput() KeysAwOutput
	ToKeysAwOutputWithContext(context.Context) KeysAwOutput
}

KeysAwInput is an input type that accepts KeysAwArgs and KeysAwOutput values. You can construct a concrete instance of `KeysAwInput` via: 

KeysAwArgs{...}

type KeysAwOutput 

type KeysAwOutput struct{ *pulumi.OutputState }

func (KeysAwOutput) AccessKey 

func (o KeysAwOutput) AccessKey() pulumi.StringOutput

The AWS access key to use.

func (KeysAwOutput) AllowGenerateKey 

func (o KeysAwOutput) AllowGenerateKey() pulumi.BoolPtrOutput

If no existing key can be found in the referenced backend, instructs Vault to generate a key within the backend.

func (KeysAwOutput) AllowReplaceKey 

func (o KeysAwOutput) AllowReplaceKey() pulumi.BoolPtrOutput

Controls the ability for Vault to replace through generation or importing a key into the configured backend even if a key is present, if set to `false` those operations are forbidden if a key exists.

func (KeysAwOutput) AllowStoreKey 

func (o KeysAwOutput) AllowStoreKey() pulumi.BoolPtrOutput

Controls the ability for Vault to import a key to the configured backend, if `false`, those operations will be forbidden.

func (KeysAwOutput) AnyMount 

func (o KeysAwOutput) AnyMount() pulumi.BoolPtrOutput

If `true`, allows usage from any mount point within the namespace.

func (KeysAwOutput) Curve 

func (o KeysAwOutput) Curve() pulumi.StringPtrOutput

The curve to use for an ECDSA key. Used when `keyType` is `ECDSA`. Required if `allowGenerateKey` is `true`.

func (KeysAwOutput) ElementType 

func (KeysAwOutput) ElementType() reflect.Type

func (KeysAwOutput) Endpoint 

func (o KeysAwOutput) Endpoint() pulumi.StringPtrOutput

Used to specify a custom AWS endpoint.

func (KeysAwOutput) KeyBits 

func (o KeysAwOutput) KeyBits() pulumi.StringOutput

The size in bits for an RSA key.

func (KeysAwOutput) KeyType 

func (o KeysAwOutput) KeyType() pulumi.StringOutput

The type of key to use.

func (KeysAwOutput) KmsKey 

func (o KeysAwOutput) KmsKey() pulumi.StringOutput

An identifier for the key.

func (KeysAwOutput) Name 

func (o KeysAwOutput) Name() pulumi.StringOutput

A unique lowercase name that serves as identifying the key.

func (KeysAwOutput) Region 

func (o KeysAwOutput) Region() pulumi.StringPtrOutput

The AWS region where the keys are stored (or will be stored).

func (KeysAwOutput) SecretKey 

func (o KeysAwOutput) SecretKey() pulumi.StringOutput

The AWS access key to use.

func (KeysAwOutput) ToKeysAwOutput 

func (o KeysAwOutput) ToKeysAwOutput() KeysAwOutput

func (KeysAwOutput) ToKeysAwOutputWithContext 

func (o KeysAwOutput) ToKeysAwOutputWithContext(ctx context.Context) KeysAwOutput

func (KeysAwOutput) Uuid 

func (o KeysAwOutput) Uuid() pulumi.StringPtrOutput

ID of the managed key read from Vault

type KeysAzure 

type KeysAzure struct {
	// If no existing key can be found in
	// the referenced backend, instructs Vault to generate a key within the backend.
	AllowGenerateKey *bool `pulumi:"allowGenerateKey"`
	// Controls the ability for Vault to replace through
	// generation or importing a key into the configured backend even
	// if a key is present, if set to `false` those operations are forbidden
	// if a key exists.
	AllowReplaceKey *bool `pulumi:"allowReplaceKey"`
	// Controls the ability for Vault to import a key to the
	// configured backend, if `false`, those operations will be forbidden.
	AllowStoreKey *bool `pulumi:"allowStoreKey"`
	// If `true`, allows usage from any mount point within the
	// namespace.
	AnyMount *bool `pulumi:"anyMount"`
	// The client id for credentials to query the Azure APIs.
	ClientId string `pulumi:"clientId"`
	// The client secret for credentials to query the Azure APIs.
	ClientSecret string `pulumi:"clientSecret"`
	// The Azure Cloud environment API endpoints to use.
	Environment *string `pulumi:"environment"`
	// The size in bits for an RSA key.
	KeyBits *string `pulumi:"keyBits"`
	// The Key Vault key to use for encryption and decryption.
	KeyName string `pulumi:"keyName"`
	// The type of key to use.
	KeyType string `pulumi:"keyType"`
	// A unique lowercase name that serves as identifying the key.
	Name string `pulumi:"name"`
	// The Azure Key Vault resource's DNS Suffix to connect to.
	Resource *string `pulumi:"resource"`
	// The tenant id for the Azure Active Directory organization.
	TenantId string `pulumi:"tenantId"`
	// ID of the managed key read from Vault
	Uuid *string `pulumi:"uuid"`
	// The Key Vault vault to use for encryption and decryption.
	VaultName string `pulumi:"vaultName"`
}

type KeysAzureArgs 

type KeysAzureArgs struct {
	// If no existing key can be found in
	// the referenced backend, instructs Vault to generate a key within the backend.
	AllowGenerateKey pulumi.BoolPtrInput `pulumi:"allowGenerateKey"`
	// Controls the ability for Vault to replace through
	// generation or importing a key into the configured backend even
	// if a key is present, if set to `false` those operations are forbidden
	// if a key exists.
	AllowReplaceKey pulumi.BoolPtrInput `pulumi:"allowReplaceKey"`
	// Controls the ability for Vault to import a key to the
	// configured backend, if `false`, those operations will be forbidden.
	AllowStoreKey pulumi.BoolPtrInput `pulumi:"allowStoreKey"`
	// If `true`, allows usage from any mount point within the
	// namespace.
	AnyMount pulumi.BoolPtrInput `pulumi:"anyMount"`
	// The client id for credentials to query the Azure APIs.
	ClientId pulumi.StringInput `pulumi:"clientId"`
	// The client secret for credentials to query the Azure APIs.
	ClientSecret pulumi.StringInput `pulumi:"clientSecret"`
	// The Azure Cloud environment API endpoints to use.
	Environment pulumi.StringPtrInput `pulumi:"environment"`
	// The size in bits for an RSA key.
	KeyBits pulumi.StringPtrInput `pulumi:"keyBits"`
	// The Key Vault key to use for encryption and decryption.
	KeyName pulumi.StringInput `pulumi:"keyName"`
	// The type of key to use.
	KeyType pulumi.StringInput `pulumi:"keyType"`
	// A unique lowercase name that serves as identifying the key.
	Name pulumi.StringInput `pulumi:"name"`
	// The Azure Key Vault resource's DNS Suffix to connect to.
	Resource pulumi.StringPtrInput `pulumi:"resource"`
	// The tenant id for the Azure Active Directory organization.
	TenantId pulumi.StringInput `pulumi:"tenantId"`
	// ID of the managed key read from Vault
	Uuid pulumi.StringPtrInput `pulumi:"uuid"`
	// The Key Vault vault to use for encryption and decryption.
	VaultName pulumi.StringInput `pulumi:"vaultName"`
}

func (KeysAzureArgs) ElementType 

func (KeysAzureArgs) ElementType() reflect.Type

func (KeysAzureArgs) ToKeysAzureOutput 

func (i KeysAzureArgs) ToKeysAzureOutput() KeysAzureOutput

func (KeysAzureArgs) ToKeysAzureOutputWithContext 

func (i KeysAzureArgs) ToKeysAzureOutputWithContext(ctx context.Context) KeysAzureOutput

type KeysAzureArray 

type KeysAzureArray []KeysAzureInput

func (KeysAzureArray) ElementType 

func (KeysAzureArray) ElementType() reflect.Type

func (KeysAzureArray) ToKeysAzureArrayOutput 

func (i KeysAzureArray) ToKeysAzureArrayOutput() KeysAzureArrayOutput

func (KeysAzureArray) ToKeysAzureArrayOutputWithContext 

func (i KeysAzureArray) ToKeysAzureArrayOutputWithContext(ctx context.Context) KeysAzureArrayOutput

type KeysAzureArrayInput 

type KeysAzureArrayInput interface {
	pulumi.Input

	ToKeysAzureArrayOutput() KeysAzureArrayOutput
	ToKeysAzureArrayOutputWithContext(context.Context) KeysAzureArrayOutput
}

KeysAzureArrayInput is an input type that accepts KeysAzureArray and KeysAzureArrayOutput values. You can construct a concrete instance of `KeysAzureArrayInput` via: 

KeysAzureArray{ KeysAzureArgs{...} }

type KeysAzureArrayOutput 

type KeysAzureArrayOutput struct{ *pulumi.OutputState }

func (KeysAzureArrayOutput) ElementType 

func (KeysAzureArrayOutput) ElementType() reflect.Type

func (KeysAzureArrayOutput) Index 

func (o KeysAzureArrayOutput) Index(i pulumi.IntInput) KeysAzureOutput

func (KeysAzureArrayOutput) ToKeysAzureArrayOutput 

func (o KeysAzureArrayOutput) ToKeysAzureArrayOutput() KeysAzureArrayOutput

func (KeysAzureArrayOutput) ToKeysAzureArrayOutputWithContext 

func (o KeysAzureArrayOutput) ToKeysAzureArrayOutputWithContext(ctx context.Context) KeysAzureArrayOutput

type KeysAzureInput 

type KeysAzureInput interface {
	pulumi.Input

	ToKeysAzureOutput() KeysAzureOutput
	ToKeysAzureOutputWithContext(context.Context) KeysAzureOutput
}

KeysAzureInput is an input type that accepts KeysAzureArgs and KeysAzureOutput values. You can construct a concrete instance of `KeysAzureInput` via: 

KeysAzureArgs{...}

type KeysAzureOutput 

type KeysAzureOutput struct{ *pulumi.OutputState }

func (KeysAzureOutput) AllowGenerateKey 

func (o KeysAzureOutput) AllowGenerateKey() pulumi.BoolPtrOutput

If no existing key can be found in the referenced backend, instructs Vault to generate a key within the backend.

func (KeysAzureOutput) AllowReplaceKey 

func (o KeysAzureOutput) AllowReplaceKey() pulumi.BoolPtrOutput

Controls the ability for Vault to replace through generation or importing a key into the configured backend even if a key is present, if set to `false` those operations are forbidden if a key exists.

func (KeysAzureOutput) AllowStoreKey 

func (o KeysAzureOutput) AllowStoreKey() pulumi.BoolPtrOutput

Controls the ability for Vault to import a key to the configured backend, if `false`, those operations will be forbidden.

func (KeysAzureOutput) AnyMount 

func (o KeysAzureOutput) AnyMount() pulumi.BoolPtrOutput

If `true`, allows usage from any mount point within the namespace.

func (KeysAzureOutput) ClientId 

func (o KeysAzureOutput) ClientId() pulumi.StringOutput

The client id for credentials to query the Azure APIs.

func (KeysAzureOutput) ClientSecret 

func (o KeysAzureOutput) ClientSecret() pulumi.StringOutput

The client secret for credentials to query the Azure APIs.

func (KeysAzureOutput) ElementType 

func (KeysAzureOutput) ElementType() reflect.Type

func (KeysAzureOutput) Environment 

func (o KeysAzureOutput) Environment() pulumi.StringPtrOutput

The Azure Cloud environment API endpoints to use.

func (KeysAzureOutput) KeyBits 

func (o KeysAzureOutput) KeyBits() pulumi.StringPtrOutput

The size in bits for an RSA key.

func (KeysAzureOutput) KeyName 

func (o KeysAzureOutput) KeyName() pulumi.StringOutput

The Key Vault key to use for encryption and decryption.

func (KeysAzureOutput) KeyType 

func (o KeysAzureOutput) KeyType() pulumi.StringOutput

The type of key to use.

func (KeysAzureOutput) Name 

func (o KeysAzureOutput) Name() pulumi.StringOutput

A unique lowercase name that serves as identifying the key.

func (KeysAzureOutput) Resource 

func (o KeysAzureOutput) Resource() pulumi.StringPtrOutput

The Azure Key Vault resource's DNS Suffix to connect to.

func (KeysAzureOutput) TenantId 

func (o KeysAzureOutput) TenantId() pulumi.StringOutput

The tenant id for the Azure Active Directory organization.

func (KeysAzureOutput) ToKeysAzureOutput 

func (o KeysAzureOutput) ToKeysAzureOutput() KeysAzureOutput

func (KeysAzureOutput) ToKeysAzureOutputWithContext 

func (o KeysAzureOutput) ToKeysAzureOutputWithContext(ctx context.Context) KeysAzureOutput

func (KeysAzureOutput) Uuid 

func (o KeysAzureOutput) Uuid() pulumi.StringPtrOutput

ID of the managed key read from Vault

func (KeysAzureOutput) VaultName 

func (o KeysAzureOutput) VaultName() pulumi.StringOutput

The Key Vault vault to use for encryption and decryption.

type KeysInput 

type KeysInput interface {
	pulumi.Input

	ToKeysOutput() KeysOutput
	ToKeysOutputWithContext(ctx context.Context) KeysOutput
}

type KeysMap 

type KeysMap map[string]KeysInput

func (KeysMap) ElementType 

func (KeysMap) ElementType() reflect.Type

func (KeysMap) ToKeysMapOutput 

func (i KeysMap) ToKeysMapOutput() KeysMapOutput

func (KeysMap) ToKeysMapOutputWithContext 

func (i KeysMap) ToKeysMapOutputWithContext(ctx context.Context) KeysMapOutput

type KeysMapInput 

type KeysMapInput interface {
	pulumi.Input

	ToKeysMapOutput() KeysMapOutput
	ToKeysMapOutputWithContext(context.Context) KeysMapOutput
}

KeysMapInput is an input type that accepts KeysMap and KeysMapOutput values. You can construct a concrete instance of `KeysMapInput` via: 

KeysMap{ "key": KeysArgs{...} }

type KeysMapOutput 

type KeysMapOutput struct{ *pulumi.OutputState }

func (KeysMapOutput) ElementType 

func (KeysMapOutput) ElementType() reflect.Type

func (KeysMapOutput) MapIndex 

func (o KeysMapOutput) MapIndex(k pulumi.StringInput) KeysOutput

func (KeysMapOutput) ToKeysMapOutput 

func (o KeysMapOutput) ToKeysMapOutput() KeysMapOutput

func (KeysMapOutput) ToKeysMapOutputWithContext 

func (o KeysMapOutput) ToKeysMapOutputWithContext(ctx context.Context) KeysMapOutput

type KeysOutput 

type KeysOutput struct{ *pulumi.OutputState }

func (KeysOutput) Aws 

func (o KeysOutput) Aws() KeysAwArrayOutput

Configuration block for AWS Managed Keys

func (KeysOutput) Azures 

func (o KeysOutput) Azures() KeysAzureArrayOutput

Configuration block for Azure Managed Keys

func (KeysOutput) ElementType 

func (KeysOutput) ElementType() reflect.Type

func (KeysOutput) Namespace 

func (o KeysOutput) Namespace() pulumi.StringPtrOutput

The namespace to provision the resource in. The value should not contain leading or trailing forward slashes. The `namespace` is always relative to the provider's configured namespace. *Available only for Vault Enterprise*.

func (KeysOutput) Pkcs 

func (o KeysOutput) Pkcs() KeysPkcArrayOutput

Configuration block for PKCS Managed Keys

func (KeysOutput) ToKeysOutput 

func (o KeysOutput) ToKeysOutput() KeysOutput

func (KeysOutput) ToKeysOutputWithContext 

func (o KeysOutput) ToKeysOutputWithContext(ctx context.Context) KeysOutput

type KeysPkc 

type KeysPkc struct {
	// If no existing key can be found in
	// the referenced backend, instructs Vault to generate a key within the backend.
	AllowGenerateKey *bool `pulumi:"allowGenerateKey"`
	// Controls the ability for Vault to replace through
	// generation or importing a key into the configured backend even
	// if a key is present, if set to `false` those operations are forbidden
	// if a key exists.
	AllowReplaceKey *bool `pulumi:"allowReplaceKey"`
	// Controls the ability for Vault to import a key to the
	// configured backend, if `false`, those operations will be forbidden.
	AllowStoreKey *bool `pulumi:"allowStoreKey"`
	// If `true`, allows usage from any mount point within the
	// namespace.
	AnyMount *bool `pulumi:"anyMount"`
	// The curve to use for an ECDSA key. Used when `keyType`
	// is `ECDSA`. Required if `allowGenerateKey` is `true`.
	Curve *string `pulumi:"curve"`
	// Force all operations to open up a read-write session to
	// the HSM.
	ForceRwSession *string `pulumi:"forceRwSession"`
	// The size in bits for an RSA key.
	KeyBits *string `pulumi:"keyBits"`
	// The id of a PKCS#11 key to use.
	KeyId string `pulumi:"keyId"`
	// The label of the key to use.
	KeyLabel string `pulumi:"keyLabel"`
	// The name of the kmsLibrary stanza to use from Vault's config
	// to lookup the local library path.
	Library string `pulumi:"library"`
	// The encryption/decryption mechanism to use, specified as a
	// hexadecimal (prefixed by 0x) string.
	Mechanism string `pulumi:"mechanism"`
	// A unique lowercase name that serves as identifying the key.
	Name string `pulumi:"name"`
	// The PIN for login.
	Pin string `pulumi:"pin"`
	// The slot number to use, specified as a string in a decimal format
	// (e.g. `2305843009213693953`).
	Slot *string `pulumi:"slot"`
	// The slot token label to use.
	TokenLabel *string `pulumi:"tokenLabel"`
	// ID of the managed key read from Vault
	Uuid *string `pulumi:"uuid"`
}

type KeysPkcArgs 

type KeysPkcArgs struct {
	// If no existing key can be found in
	// the referenced backend, instructs Vault to generate a key within the backend.
	AllowGenerateKey pulumi.BoolPtrInput `pulumi:"allowGenerateKey"`
	// Controls the ability for Vault to replace through
	// generation or importing a key into the configured backend even
	// if a key is present, if set to `false` those operations are forbidden
	// if a key exists.
	AllowReplaceKey pulumi.BoolPtrInput `pulumi:"allowReplaceKey"`
	// Controls the ability for Vault to import a key to the
	// configured backend, if `false`, those operations will be forbidden.
	AllowStoreKey pulumi.BoolPtrInput `pulumi:"allowStoreKey"`
	// If `true`, allows usage from any mount point within the
	// namespace.
	AnyMount pulumi.BoolPtrInput `pulumi:"anyMount"`
	// The curve to use for an ECDSA key. Used when `keyType`
	// is `ECDSA`. Required if `allowGenerateKey` is `true`.
	Curve pulumi.StringPtrInput `pulumi:"curve"`
	// Force all operations to open up a read-write session to
	// the HSM.
	ForceRwSession pulumi.StringPtrInput `pulumi:"forceRwSession"`
	// The size in bits for an RSA key.
	KeyBits pulumi.StringPtrInput `pulumi:"keyBits"`
	// The id of a PKCS#11 key to use.
	KeyId pulumi.StringInput `pulumi:"keyId"`
	// The label of the key to use.
	KeyLabel pulumi.StringInput `pulumi:"keyLabel"`
	// The name of the kmsLibrary stanza to use from Vault's config
	// to lookup the local library path.
	Library pulumi.StringInput `pulumi:"library"`
	// The encryption/decryption mechanism to use, specified as a
	// hexadecimal (prefixed by 0x) string.
	Mechanism pulumi.StringInput `pulumi:"mechanism"`
	// A unique lowercase name that serves as identifying the key.
	Name pulumi.StringInput `pulumi:"name"`
	// The PIN for login.
	Pin pulumi.StringInput `pulumi:"pin"`
	// The slot number to use, specified as a string in a decimal format
	// (e.g. `2305843009213693953`).
	Slot pulumi.StringPtrInput `pulumi:"slot"`
	// The slot token label to use.
	TokenLabel pulumi.StringPtrInput `pulumi:"tokenLabel"`
	// ID of the managed key read from Vault
	Uuid pulumi.StringPtrInput `pulumi:"uuid"`
}

func (KeysPkcArgs) ElementType 

func (KeysPkcArgs) ElementType() reflect.Type

func (KeysPkcArgs) ToKeysPkcOutput 

func (i KeysPkcArgs) ToKeysPkcOutput() KeysPkcOutput

func (KeysPkcArgs) ToKeysPkcOutputWithContext 

func (i KeysPkcArgs) ToKeysPkcOutputWithContext(ctx context.Context) KeysPkcOutput

type KeysPkcArray 

type KeysPkcArray []KeysPkcInput

func (KeysPkcArray) ElementType 

func (KeysPkcArray) ElementType() reflect.Type

func (KeysPkcArray) ToKeysPkcArrayOutput 

func (i KeysPkcArray) ToKeysPkcArrayOutput() KeysPkcArrayOutput

func (KeysPkcArray) ToKeysPkcArrayOutputWithContext 

func (i KeysPkcArray) ToKeysPkcArrayOutputWithContext(ctx context.Context) KeysPkcArrayOutput

type KeysPkcArrayInput 

type KeysPkcArrayInput interface {
	pulumi.Input

	ToKeysPkcArrayOutput() KeysPkcArrayOutput
	ToKeysPkcArrayOutputWithContext(context.Context) KeysPkcArrayOutput
}

KeysPkcArrayInput is an input type that accepts KeysPkcArray and KeysPkcArrayOutput values. You can construct a concrete instance of `KeysPkcArrayInput` via: 

KeysPkcArray{ KeysPkcArgs{...} }

type KeysPkcArrayOutput 

type KeysPkcArrayOutput struct{ *pulumi.OutputState }

func (KeysPkcArrayOutput) ElementType 

func (KeysPkcArrayOutput) ElementType() reflect.Type

func (KeysPkcArrayOutput) Index 

func (o KeysPkcArrayOutput) Index(i pulumi.IntInput) KeysPkcOutput

func (KeysPkcArrayOutput) ToKeysPkcArrayOutput 

func (o KeysPkcArrayOutput) ToKeysPkcArrayOutput() KeysPkcArrayOutput

func (KeysPkcArrayOutput) ToKeysPkcArrayOutputWithContext 

func (o KeysPkcArrayOutput) ToKeysPkcArrayOutputWithContext(ctx context.Context) KeysPkcArrayOutput

type KeysPkcInput 

type KeysPkcInput interface {
	pulumi.Input

	ToKeysPkcOutput() KeysPkcOutput
	ToKeysPkcOutputWithContext(context.Context) KeysPkcOutput
}

KeysPkcInput is an input type that accepts KeysPkcArgs and KeysPkcOutput values. You can construct a concrete instance of `KeysPkcInput` via: 

KeysPkcArgs{...}

type KeysPkcOutput 

type KeysPkcOutput struct{ *pulumi.OutputState }

func (KeysPkcOutput) AllowGenerateKey 

func (o KeysPkcOutput) AllowGenerateKey() pulumi.BoolPtrOutput

If no existing key can be found in the referenced backend, instructs Vault to generate a key within the backend.

func (KeysPkcOutput) AllowReplaceKey 

func (o KeysPkcOutput) AllowReplaceKey() pulumi.BoolPtrOutput

Controls the ability for Vault to replace through generation or importing a key into the configured backend even if a key is present, if set to `false` those operations are forbidden if a key exists.

func (KeysPkcOutput) AllowStoreKey 

func (o KeysPkcOutput) AllowStoreKey() pulumi.BoolPtrOutput

Controls the ability for Vault to import a key to the configured backend, if `false`, those operations will be forbidden.

func (KeysPkcOutput) AnyMount 

func (o KeysPkcOutput) AnyMount() pulumi.BoolPtrOutput

If `true`, allows usage from any mount point within the namespace.

func (KeysPkcOutput) Curve 

func (o KeysPkcOutput) Curve() pulumi.StringPtrOutput

The curve to use for an ECDSA key. Used when `keyType` is `ECDSA`. Required if `allowGenerateKey` is `true`.

func (KeysPkcOutput) ElementType 

func (KeysPkcOutput) ElementType() reflect.Type

func (KeysPkcOutput) ForceRwSession 

func (o KeysPkcOutput) ForceRwSession() pulumi.StringPtrOutput

Force all operations to open up a read-write session to the HSM.

func (KeysPkcOutput) KeyBits 

func (o KeysPkcOutput) KeyBits() pulumi.StringPtrOutput

The size in bits for an RSA key.

func (KeysPkcOutput) KeyId 

func (o KeysPkcOutput) KeyId() pulumi.StringOutput

The id of a PKCS#11 key to use.

func (KeysPkcOutput) KeyLabel 

func (o KeysPkcOutput) KeyLabel() pulumi.StringOutput

The label of the key to use.

func (KeysPkcOutput) Library 

func (o KeysPkcOutput) Library() pulumi.StringOutput

The name of the kmsLibrary stanza to use from Vault's config to lookup the local library path.

func (KeysPkcOutput) Mechanism 

func (o KeysPkcOutput) Mechanism() pulumi.StringOutput

The encryption/decryption mechanism to use, specified as a hexadecimal (prefixed by 0x) string.

func (KeysPkcOutput) Name 

func (o KeysPkcOutput) Name() pulumi.StringOutput

A unique lowercase name that serves as identifying the key.

func (KeysPkcOutput) Pin 

func (o KeysPkcOutput) Pin() pulumi.StringOutput

The PIN for login.

func (KeysPkcOutput) Slot 

func (o KeysPkcOutput) Slot() pulumi.StringPtrOutput

The slot number to use, specified as a string in a decimal format (e.g. `2305843009213693953`).

func (KeysPkcOutput) ToKeysPkcOutput 

func (o KeysPkcOutput) ToKeysPkcOutput() KeysPkcOutput

func (KeysPkcOutput) ToKeysPkcOutputWithContext 

func (o KeysPkcOutput) ToKeysPkcOutputWithContext(ctx context.Context) KeysPkcOutput

func (KeysPkcOutput) TokenLabel 

func (o KeysPkcOutput) TokenLabel() pulumi.StringPtrOutput

The slot token label to use.

func (KeysPkcOutput) Uuid 

func (o KeysPkcOutput) Uuid() pulumi.StringPtrOutput

ID of the managed key read from Vault

type KeysState 

type KeysState struct {
	// Configuration block for AWS Managed Keys
	Aws KeysAwArrayInput
	// Configuration block for Azure Managed Keys
	Azures KeysAzureArrayInput
	// The namespace to provision the resource in.
	// The value should not contain leading or trailing forward slashes.
	// The `namespace` is always relative to the provider's configured namespace.
	// *Available only for Vault Enterprise*.
	Namespace pulumi.StringPtrInput
	// Configuration block for PKCS Managed Keys
	Pkcs KeysPkcArrayInput
}

func (KeysState) ElementType 

func (KeysState) ElementType() reflect.Type

Source Files

View all Source files

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f or F : Jump to
y or Y : Canonical URL
go.dev uses cookies from Google to deliver and enhance the quality of its services and to analyze traffic. Learn more.