identity

package
v4.6.0 Latest Latest
Warning

This package is not in the latest version of its module.

 Go to latest Published: Nov 11, 2021 License: Apache-2.0 Imports: 7 Imported by: 0

Documentation

Index

Constants

This section is empty.

Variables

This section is empty.

Functions

This section is empty.

Types

type Entity 

type Entity struct {
	pulumi.CustomResourceState

	// True/false Is this entity currently disabled. Defaults to `false`
	Disabled pulumi.BoolPtrOutput `pulumi:"disabled"`
	// `false` by default. If set to `true`, this resource will ignore any policies return from Vault or specified in the resource. You can use `identity.EntityPolicies` to manage policies for this entity in a decoupled manner.
	ExternalPolicies pulumi.BoolPtrOutput `pulumi:"externalPolicies"`
	// A Map of additional metadata to associate with the user.
	Metadata pulumi.StringMapOutput `pulumi:"metadata"`
	// Name of the identity entity to create.
	Name pulumi.StringOutput `pulumi:"name"`
	// A list of policies to apply to the entity.
	Policies pulumi.StringArrayOutput `pulumi:"policies"`
}

## Import

Identity entity can be imported using the `id`, e.g.

```sh 

$ pulumi import vault:identity/entity:Entity test "ae6f8ued-0f1a-9f6b-2915-1a2be20dc053"

```

func GetEntity 

func GetEntity(ctx *pulumi.Context,
	name string, id pulumi.IDInput, state *EntityState, opts ...pulumi.ResourceOption) (*Entity, error)

GetEntity gets an existing Entity resource's state with the given name, ID, and optional state properties that are used to uniquely qualify the lookup (nil if not required).

func NewEntity 

func NewEntity(ctx *pulumi.Context,
	name string, args *EntityArgs, opts ...pulumi.ResourceOption) (*Entity, error)

NewEntity registers a new resource with the given unique name, arguments, and options.

func (*Entity) ElementType 

func (*Entity) ElementType() reflect.Type

func (*Entity) ToEntityOutput 

func (i *Entity) ToEntityOutput() EntityOutput

func (*Entity) ToEntityOutputWithContext 

func (i *Entity) ToEntityOutputWithContext(ctx context.Context) EntityOutput

func (*Entity) ToEntityPtrOutput 

func (i *Entity) ToEntityPtrOutput() EntityPtrOutput

func (*Entity) ToEntityPtrOutputWithContext 

func (i *Entity) ToEntityPtrOutputWithContext(ctx context.Context) EntityPtrOutput

type EntityAlias 

type EntityAlias struct {
	pulumi.CustomResourceState

	// Entity ID to which this alias belongs to.
	CanonicalId pulumi.StringOutput `pulumi:"canonicalId"`
	// Accessor of the mount to which the alias should belong to.
	MountAccessor pulumi.StringOutput `pulumi:"mountAccessor"`
	// Name of the alias. Name should be the identifier of the client in the authentication source. For example, if the alias belongs to userpass backend, the name should be a valid username within userpass backend. If alias belongs to GitHub, it should be the GitHub username.
	Name pulumi.StringOutput `pulumi:"name"`
}

## Import

Identity entity alias can be imported using the `id`, e.g.

```sh 

$ pulumi import vault:identity/entityAlias:EntityAlias test "3856fb4d-3c91-dcaf-2401-68f446796bfb"

```

func GetEntityAlias 

func GetEntityAlias(ctx *pulumi.Context,
	name string, id pulumi.IDInput, state *EntityAliasState, opts ...pulumi.ResourceOption) (*EntityAlias, error)

GetEntityAlias gets an existing EntityAlias resource's state with the given name, ID, and optional state properties that are used to uniquely qualify the lookup (nil if not required).

func NewEntityAlias 

func NewEntityAlias(ctx *pulumi.Context,
	name string, args *EntityAliasArgs, opts ...pulumi.ResourceOption) (*EntityAlias, error)

NewEntityAlias registers a new resource with the given unique name, arguments, and options.

func (*EntityAlias) ElementType 

func (*EntityAlias) ElementType() reflect.Type

func (*EntityAlias) ToEntityAliasOutput 

func (i *EntityAlias) ToEntityAliasOutput() EntityAliasOutput

func (*EntityAlias) ToEntityAliasOutputWithContext 

func (i *EntityAlias) ToEntityAliasOutputWithContext(ctx context.Context) EntityAliasOutput

func (*EntityAlias) ToEntityAliasPtrOutput 

func (i *EntityAlias) ToEntityAliasPtrOutput() EntityAliasPtrOutput

func (*EntityAlias) ToEntityAliasPtrOutputWithContext 

func (i *EntityAlias) ToEntityAliasPtrOutputWithContext(ctx context.Context) EntityAliasPtrOutput

type EntityAliasArgs 

type EntityAliasArgs struct {
	// Entity ID to which this alias belongs to.
	CanonicalId pulumi.StringInput
	// Accessor of the mount to which the alias should belong to.
	MountAccessor pulumi.StringInput
	// Name of the alias. Name should be the identifier of the client in the authentication source. For example, if the alias belongs to userpass backend, the name should be a valid username within userpass backend. If alias belongs to GitHub, it should be the GitHub username.
	Name pulumi.StringPtrInput
}

The set of arguments for constructing a EntityAlias resource.

func (EntityAliasArgs) ElementType 

func (EntityAliasArgs) ElementType() reflect.Type

type EntityAliasArray 

type EntityAliasArray []EntityAliasInput

func (EntityAliasArray) ElementType 

func (EntityAliasArray) ElementType() reflect.Type

func (EntityAliasArray) ToEntityAliasArrayOutput 

func (i EntityAliasArray) ToEntityAliasArrayOutput() EntityAliasArrayOutput

func (EntityAliasArray) ToEntityAliasArrayOutputWithContext 

func (i EntityAliasArray) ToEntityAliasArrayOutputWithContext(ctx context.Context) EntityAliasArrayOutput

type EntityAliasArrayInput 

type EntityAliasArrayInput interface {
	pulumi.Input

	ToEntityAliasArrayOutput() EntityAliasArrayOutput
	ToEntityAliasArrayOutputWithContext(context.Context) EntityAliasArrayOutput
}

EntityAliasArrayInput is an input type that accepts EntityAliasArray and EntityAliasArrayOutput values. You can construct a concrete instance of `EntityAliasArrayInput` via: 

EntityAliasArray{ EntityAliasArgs{...} }

type EntityAliasArrayOutput 

type EntityAliasArrayOutput struct{ *pulumi.OutputState }

func (EntityAliasArrayOutput) ElementType 

func (EntityAliasArrayOutput) ElementType() reflect.Type

func (EntityAliasArrayOutput) Index 

func (o EntityAliasArrayOutput) Index(i pulumi.IntInput) EntityAliasOutput

func (EntityAliasArrayOutput) ToEntityAliasArrayOutput 

func (o EntityAliasArrayOutput) ToEntityAliasArrayOutput() EntityAliasArrayOutput

func (EntityAliasArrayOutput) ToEntityAliasArrayOutputWithContext 

func (o EntityAliasArrayOutput) ToEntityAliasArrayOutputWithContext(ctx context.Context) EntityAliasArrayOutput

type EntityAliasInput 

type EntityAliasInput interface {
	pulumi.Input

	ToEntityAliasOutput() EntityAliasOutput
	ToEntityAliasOutputWithContext(ctx context.Context) EntityAliasOutput
}

type EntityAliasMap 

type EntityAliasMap map[string]EntityAliasInput

func (EntityAliasMap) ElementType 

func (EntityAliasMap) ElementType() reflect.Type

func (EntityAliasMap) ToEntityAliasMapOutput 

func (i EntityAliasMap) ToEntityAliasMapOutput() EntityAliasMapOutput

func (EntityAliasMap) ToEntityAliasMapOutputWithContext 

func (i EntityAliasMap) ToEntityAliasMapOutputWithContext(ctx context.Context) EntityAliasMapOutput

type EntityAliasMapInput 

type EntityAliasMapInput interface {
	pulumi.Input

	ToEntityAliasMapOutput() EntityAliasMapOutput
	ToEntityAliasMapOutputWithContext(context.Context) EntityAliasMapOutput
}

EntityAliasMapInput is an input type that accepts EntityAliasMap and EntityAliasMapOutput values. You can construct a concrete instance of `EntityAliasMapInput` via: 

EntityAliasMap{ "key": EntityAliasArgs{...} }

type EntityAliasMapOutput 

type EntityAliasMapOutput struct{ *pulumi.OutputState }

func (EntityAliasMapOutput) ElementType 

func (EntityAliasMapOutput) ElementType() reflect.Type

func (EntityAliasMapOutput) MapIndex 

func (o EntityAliasMapOutput) MapIndex(k pulumi.StringInput) EntityAliasOutput

func (EntityAliasMapOutput) ToEntityAliasMapOutput 

func (o EntityAliasMapOutput) ToEntityAliasMapOutput() EntityAliasMapOutput

func (EntityAliasMapOutput) ToEntityAliasMapOutputWithContext 

func (o EntityAliasMapOutput) ToEntityAliasMapOutputWithContext(ctx context.Context) EntityAliasMapOutput

type EntityAliasOutput 

type EntityAliasOutput struct{ *pulumi.OutputState }

func (EntityAliasOutput) ElementType 

func (EntityAliasOutput) ElementType() reflect.Type

func (EntityAliasOutput) ToEntityAliasOutput 

func (o EntityAliasOutput) ToEntityAliasOutput() EntityAliasOutput

func (EntityAliasOutput) ToEntityAliasOutputWithContext 

func (o EntityAliasOutput) ToEntityAliasOutputWithContext(ctx context.Context) EntityAliasOutput

func (EntityAliasOutput) ToEntityAliasPtrOutput 

func (o EntityAliasOutput) ToEntityAliasPtrOutput() EntityAliasPtrOutput

func (EntityAliasOutput) ToEntityAliasPtrOutputWithContext 

func (o EntityAliasOutput) ToEntityAliasPtrOutputWithContext(ctx context.Context) EntityAliasPtrOutput

type EntityAliasPtrInput 

type EntityAliasPtrInput interface {
	pulumi.Input

	ToEntityAliasPtrOutput() EntityAliasPtrOutput
	ToEntityAliasPtrOutputWithContext(ctx context.Context) EntityAliasPtrOutput
}

type EntityAliasPtrOutput 

type EntityAliasPtrOutput struct{ *pulumi.OutputState }

func (EntityAliasPtrOutput) Elem added in v4.6.0 

func (o EntityAliasPtrOutput) Elem() EntityAliasOutput

func (EntityAliasPtrOutput) ElementType 

func (EntityAliasPtrOutput) ElementType() reflect.Type

func (EntityAliasPtrOutput) ToEntityAliasPtrOutput 

func (o EntityAliasPtrOutput) ToEntityAliasPtrOutput() EntityAliasPtrOutput

func (EntityAliasPtrOutput) ToEntityAliasPtrOutputWithContext 

func (o EntityAliasPtrOutput) ToEntityAliasPtrOutputWithContext(ctx context.Context) EntityAliasPtrOutput

type EntityAliasState 

type EntityAliasState struct {
	// Entity ID to which this alias belongs to.
	CanonicalId pulumi.StringPtrInput
	// Accessor of the mount to which the alias should belong to.
	MountAccessor pulumi.StringPtrInput
	// Name of the alias. Name should be the identifier of the client in the authentication source. For example, if the alias belongs to userpass backend, the name should be a valid username within userpass backend. If alias belongs to GitHub, it should be the GitHub username.
	Name pulumi.StringPtrInput
}

func (EntityAliasState) ElementType 

func (EntityAliasState) ElementType() reflect.Type

type EntityArgs 

type EntityArgs struct {
	// True/false Is this entity currently disabled. Defaults to `false`
	Disabled pulumi.BoolPtrInput
	// `false` by default. If set to `true`, this resource will ignore any policies return from Vault or specified in the resource. You can use `identity.EntityPolicies` to manage policies for this entity in a decoupled manner.
	ExternalPolicies pulumi.BoolPtrInput
	// A Map of additional metadata to associate with the user.
	Metadata pulumi.StringMapInput
	// Name of the identity entity to create.
	Name pulumi.StringPtrInput
	// A list of policies to apply to the entity.
	Policies pulumi.StringArrayInput
}

The set of arguments for constructing a Entity resource.

func (EntityArgs) ElementType 

func (EntityArgs) ElementType() reflect.Type

type EntityArray 

type EntityArray []EntityInput

func (EntityArray) ElementType 

func (EntityArray) ElementType() reflect.Type

func (EntityArray) ToEntityArrayOutput 

func (i EntityArray) ToEntityArrayOutput() EntityArrayOutput

func (EntityArray) ToEntityArrayOutputWithContext 

func (i EntityArray) ToEntityArrayOutputWithContext(ctx context.Context) EntityArrayOutput

type EntityArrayInput 

type EntityArrayInput interface {
	pulumi.Input

	ToEntityArrayOutput() EntityArrayOutput
	ToEntityArrayOutputWithContext(context.Context) EntityArrayOutput
}

EntityArrayInput is an input type that accepts EntityArray and EntityArrayOutput values. You can construct a concrete instance of `EntityArrayInput` via: 

EntityArray{ EntityArgs{...} }

type EntityArrayOutput 

type EntityArrayOutput struct{ *pulumi.OutputState }

func (EntityArrayOutput) ElementType 

func (EntityArrayOutput) ElementType() reflect.Type

func (EntityArrayOutput) Index 

func (o EntityArrayOutput) Index(i pulumi.IntInput) EntityOutput

func (EntityArrayOutput) ToEntityArrayOutput 

func (o EntityArrayOutput) ToEntityArrayOutput() EntityArrayOutput

func (EntityArrayOutput) ToEntityArrayOutputWithContext 

func (o EntityArrayOutput) ToEntityArrayOutputWithContext(ctx context.Context) EntityArrayOutput

type EntityInput 

type EntityInput interface {
	pulumi.Input

	ToEntityOutput() EntityOutput
	ToEntityOutputWithContext(ctx context.Context) EntityOutput
}

type EntityMap 

type EntityMap map[string]EntityInput

func (EntityMap) ElementType 

func (EntityMap) ElementType() reflect.Type

func (EntityMap) ToEntityMapOutput 

func (i EntityMap) ToEntityMapOutput() EntityMapOutput

func (EntityMap) ToEntityMapOutputWithContext 

func (i EntityMap) ToEntityMapOutputWithContext(ctx context.Context) EntityMapOutput

type EntityMapInput 

type EntityMapInput interface {
	pulumi.Input

	ToEntityMapOutput() EntityMapOutput
	ToEntityMapOutputWithContext(context.Context) EntityMapOutput
}

EntityMapInput is an input type that accepts EntityMap and EntityMapOutput values. You can construct a concrete instance of `EntityMapInput` via: 

EntityMap{ "key": EntityArgs{...} }

type EntityMapOutput 

type EntityMapOutput struct{ *pulumi.OutputState }

func (EntityMapOutput) ElementType 

func (EntityMapOutput) ElementType() reflect.Type

func (EntityMapOutput) MapIndex 

func (o EntityMapOutput) MapIndex(k pulumi.StringInput) EntityOutput

func (EntityMapOutput) ToEntityMapOutput 

func (o EntityMapOutput) ToEntityMapOutput() EntityMapOutput

func (EntityMapOutput) ToEntityMapOutputWithContext 

func (o EntityMapOutput) ToEntityMapOutputWithContext(ctx context.Context) EntityMapOutput

type EntityOutput 

type EntityOutput struct{ *pulumi.OutputState }

func (EntityOutput) ElementType 

func (EntityOutput) ElementType() reflect.Type

func (EntityOutput) ToEntityOutput 

func (o EntityOutput) ToEntityOutput() EntityOutput

func (EntityOutput) ToEntityOutputWithContext 

func (o EntityOutput) ToEntityOutputWithContext(ctx context.Context) EntityOutput

func (EntityOutput) ToEntityPtrOutput 

func (o EntityOutput) ToEntityPtrOutput() EntityPtrOutput

func (EntityOutput) ToEntityPtrOutputWithContext 

func (o EntityOutput) ToEntityPtrOutputWithContext(ctx context.Context) EntityPtrOutput

type EntityPolicies 

type EntityPolicies struct {
	pulumi.CustomResourceState

	// Entity ID to assign policies to.
	EntityId pulumi.StringOutput `pulumi:"entityId"`
	// The name of the entity that are assigned the policies.
	EntityName pulumi.StringOutput `pulumi:"entityName"`
	// Defaults to `true`.
	Exclusive pulumi.BoolPtrOutput `pulumi:"exclusive"`
	// List of policies to assign to the entity
	Policies pulumi.StringArrayOutput `pulumi:"policies"`
}

Manages policies for an Identity Entity for Vault. The [Identity secrets engine](https://www.vaultproject.io/docs/secrets/identity/index.html) is the identity management solution for Vault.

## Example Usage ### Exclusive Policies

```go package main

import ( 

"github.com/pulumi/pulumi-vault/sdk/v4/go/vault/identity"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"

) 

func main() {
	pulumi.Run(func(ctx *pulumi.Context) error {
		entity, err := identity.NewEntity(ctx, "entity", &identity.EntityArgs{
			ExternalPolicies: pulumi.Bool(true),
		})
		if err != nil {
			return err
		}
		_, err = identity.NewEntityPolicies(ctx, "policies", &identity.EntityPoliciesArgs{
			Policies: pulumi.StringArray{
				pulumi.String("default"),
				pulumi.String("test"),
			},
			Exclusive: pulumi.Bool(true),
			EntityId:  entity.ID(),
		})
		if err != nil {
			return err
		}
		return nil
	})
}

``` ### Non-exclusive Policies

```go package main

import ( 

"github.com/pulumi/pulumi-vault/sdk/v4/go/vault/identity"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"

) 

func main() {
	pulumi.Run(func(ctx *pulumi.Context) error {
		entity, err := identity.NewEntity(ctx, "entity", &identity.EntityArgs{
			ExternalPolicies: pulumi.Bool(true),
		})
		if err != nil {
			return err
		}
		_, err = identity.NewEntityPolicies(ctx, "_default", &identity.EntityPoliciesArgs{
			Policies: pulumi.StringArray{
				pulumi.String("default"),
				pulumi.String("test"),
			},
			Exclusive: pulumi.Bool(false),
			EntityId:  entity.ID(),
		})
		if err != nil {
			return err
		}
		_, err = identity.NewEntityPolicies(ctx, "others", &identity.EntityPoliciesArgs{
			Policies: pulumi.StringArray{
				pulumi.String("others"),
			},
			Exclusive: pulumi.Bool(false),
			EntityId:  entity.ID(),
		})
		if err != nil {
			return err
		}
		return nil
	})
}

```

func GetEntityPolicies 

func GetEntityPolicies(ctx *pulumi.Context,
	name string, id pulumi.IDInput, state *EntityPoliciesState, opts ...pulumi.ResourceOption) (*EntityPolicies, error)

GetEntityPolicies gets an existing EntityPolicies resource's state with the given name, ID, and optional state properties that are used to uniquely qualify the lookup (nil if not required).

func NewEntityPolicies 

func NewEntityPolicies(ctx *pulumi.Context,
	name string, args *EntityPoliciesArgs, opts ...pulumi.ResourceOption) (*EntityPolicies, error)

NewEntityPolicies registers a new resource with the given unique name, arguments, and options.

func (*EntityPolicies) ElementType 

func (*EntityPolicies) ElementType() reflect.Type

func (*EntityPolicies) ToEntityPoliciesOutput 

func (i *EntityPolicies) ToEntityPoliciesOutput() EntityPoliciesOutput

func (*EntityPolicies) ToEntityPoliciesOutputWithContext 

func (i *EntityPolicies) ToEntityPoliciesOutputWithContext(ctx context.Context) EntityPoliciesOutput

func (*EntityPolicies) ToEntityPoliciesPtrOutput 

func (i *EntityPolicies) ToEntityPoliciesPtrOutput() EntityPoliciesPtrOutput

func (*EntityPolicies) ToEntityPoliciesPtrOutputWithContext 

func (i *EntityPolicies) ToEntityPoliciesPtrOutputWithContext(ctx context.Context) EntityPoliciesPtrOutput

type EntityPoliciesArgs 

type EntityPoliciesArgs struct {
	// Entity ID to assign policies to.
	EntityId pulumi.StringInput
	// Defaults to `true`.
	Exclusive pulumi.BoolPtrInput
	// List of policies to assign to the entity
	Policies pulumi.StringArrayInput
}

The set of arguments for constructing a EntityPolicies resource.

func (EntityPoliciesArgs) ElementType 

func (EntityPoliciesArgs) ElementType() reflect.Type

type EntityPoliciesArray 

type EntityPoliciesArray []EntityPoliciesInput

func (EntityPoliciesArray) ElementType 

func (EntityPoliciesArray) ElementType() reflect.Type

func (EntityPoliciesArray) ToEntityPoliciesArrayOutput 

func (i EntityPoliciesArray) ToEntityPoliciesArrayOutput() EntityPoliciesArrayOutput

func (EntityPoliciesArray) ToEntityPoliciesArrayOutputWithContext 

func (i EntityPoliciesArray) ToEntityPoliciesArrayOutputWithContext(ctx context.Context) EntityPoliciesArrayOutput

type EntityPoliciesArrayInput 

type EntityPoliciesArrayInput interface {
	pulumi.Input

	ToEntityPoliciesArrayOutput() EntityPoliciesArrayOutput
	ToEntityPoliciesArrayOutputWithContext(context.Context) EntityPoliciesArrayOutput
}

EntityPoliciesArrayInput is an input type that accepts EntityPoliciesArray and EntityPoliciesArrayOutput values. You can construct a concrete instance of `EntityPoliciesArrayInput` via: 

EntityPoliciesArray{ EntityPoliciesArgs{...} }

type EntityPoliciesArrayOutput 

type EntityPoliciesArrayOutput struct{ *pulumi.OutputState }

func (EntityPoliciesArrayOutput) ElementType 

func (EntityPoliciesArrayOutput) ElementType() reflect.Type

func (EntityPoliciesArrayOutput) Index 

func (o EntityPoliciesArrayOutput) Index(i pulumi.IntInput) EntityPoliciesOutput

func (EntityPoliciesArrayOutput) ToEntityPoliciesArrayOutput 

func (o EntityPoliciesArrayOutput) ToEntityPoliciesArrayOutput() EntityPoliciesArrayOutput

func (EntityPoliciesArrayOutput) ToEntityPoliciesArrayOutputWithContext 

func (o EntityPoliciesArrayOutput) ToEntityPoliciesArrayOutputWithContext(ctx context.Context) EntityPoliciesArrayOutput

type EntityPoliciesInput 

type EntityPoliciesInput interface {
	pulumi.Input

	ToEntityPoliciesOutput() EntityPoliciesOutput
	ToEntityPoliciesOutputWithContext(ctx context.Context) EntityPoliciesOutput
}

type EntityPoliciesMap 

type EntityPoliciesMap map[string]EntityPoliciesInput

func (EntityPoliciesMap) ElementType 

func (EntityPoliciesMap) ElementType() reflect.Type

func (EntityPoliciesMap) ToEntityPoliciesMapOutput 

func (i EntityPoliciesMap) ToEntityPoliciesMapOutput() EntityPoliciesMapOutput

func (EntityPoliciesMap) ToEntityPoliciesMapOutputWithContext 

func (i EntityPoliciesMap) ToEntityPoliciesMapOutputWithContext(ctx context.Context) EntityPoliciesMapOutput

type EntityPoliciesMapInput 

type EntityPoliciesMapInput interface {
	pulumi.Input

	ToEntityPoliciesMapOutput() EntityPoliciesMapOutput
	ToEntityPoliciesMapOutputWithContext(context.Context) EntityPoliciesMapOutput
}

EntityPoliciesMapInput is an input type that accepts EntityPoliciesMap and EntityPoliciesMapOutput values. You can construct a concrete instance of `EntityPoliciesMapInput` via: 

EntityPoliciesMap{ "key": EntityPoliciesArgs{...} }

type EntityPoliciesMapOutput 

type EntityPoliciesMapOutput struct{ *pulumi.OutputState }

func (EntityPoliciesMapOutput) ElementType 

func (EntityPoliciesMapOutput) ElementType() reflect.Type

func (EntityPoliciesMapOutput) MapIndex 

func (o EntityPoliciesMapOutput) MapIndex(k pulumi.StringInput) EntityPoliciesOutput

func (EntityPoliciesMapOutput) ToEntityPoliciesMapOutput 

func (o EntityPoliciesMapOutput) ToEntityPoliciesMapOutput() EntityPoliciesMapOutput

func (EntityPoliciesMapOutput) ToEntityPoliciesMapOutputWithContext 

func (o EntityPoliciesMapOutput) ToEntityPoliciesMapOutputWithContext(ctx context.Context) EntityPoliciesMapOutput

type EntityPoliciesOutput 

type EntityPoliciesOutput struct{ *pulumi.OutputState }

func (EntityPoliciesOutput) ElementType 

func (EntityPoliciesOutput) ElementType() reflect.Type

func (EntityPoliciesOutput) ToEntityPoliciesOutput 

func (o EntityPoliciesOutput) ToEntityPoliciesOutput() EntityPoliciesOutput

func (EntityPoliciesOutput) ToEntityPoliciesOutputWithContext 

func (o EntityPoliciesOutput) ToEntityPoliciesOutputWithContext(ctx context.Context) EntityPoliciesOutput

func (EntityPoliciesOutput) ToEntityPoliciesPtrOutput 

func (o EntityPoliciesOutput) ToEntityPoliciesPtrOutput() EntityPoliciesPtrOutput

func (EntityPoliciesOutput) ToEntityPoliciesPtrOutputWithContext 

func (o EntityPoliciesOutput) ToEntityPoliciesPtrOutputWithContext(ctx context.Context) EntityPoliciesPtrOutput

type EntityPoliciesPtrInput 

type EntityPoliciesPtrInput interface {
	pulumi.Input

	ToEntityPoliciesPtrOutput() EntityPoliciesPtrOutput
	ToEntityPoliciesPtrOutputWithContext(ctx context.Context) EntityPoliciesPtrOutput
}

type EntityPoliciesPtrOutput 

type EntityPoliciesPtrOutput struct{ *pulumi.OutputState }

func (EntityPoliciesPtrOutput) Elem added in v4.6.0 

func (o EntityPoliciesPtrOutput) Elem() EntityPoliciesOutput

func (EntityPoliciesPtrOutput) ElementType 

func (EntityPoliciesPtrOutput) ElementType() reflect.Type

func (EntityPoliciesPtrOutput) ToEntityPoliciesPtrOutput 

func (o EntityPoliciesPtrOutput) ToEntityPoliciesPtrOutput() EntityPoliciesPtrOutput

func (EntityPoliciesPtrOutput) ToEntityPoliciesPtrOutputWithContext 

func (o EntityPoliciesPtrOutput) ToEntityPoliciesPtrOutputWithContext(ctx context.Context) EntityPoliciesPtrOutput

type EntityPoliciesState 

type EntityPoliciesState struct {
	// Entity ID to assign policies to.
	EntityId pulumi.StringPtrInput
	// The name of the entity that are assigned the policies.
	EntityName pulumi.StringPtrInput
	// Defaults to `true`.
	Exclusive pulumi.BoolPtrInput
	// List of policies to assign to the entity
	Policies pulumi.StringArrayInput
}

func (EntityPoliciesState) ElementType 

func (EntityPoliciesState) ElementType() reflect.Type

type EntityPtrInput 

type EntityPtrInput interface {
	pulumi.Input

	ToEntityPtrOutput() EntityPtrOutput
	ToEntityPtrOutputWithContext(ctx context.Context) EntityPtrOutput
}

type EntityPtrOutput 

type EntityPtrOutput struct{ *pulumi.OutputState }

func (EntityPtrOutput) Elem added in v4.6.0 

func (o EntityPtrOutput) Elem() EntityOutput

func (EntityPtrOutput) ElementType 

func (EntityPtrOutput) ElementType() reflect.Type

func (EntityPtrOutput) ToEntityPtrOutput 

func (o EntityPtrOutput) ToEntityPtrOutput() EntityPtrOutput

func (EntityPtrOutput) ToEntityPtrOutputWithContext 

func (o EntityPtrOutput) ToEntityPtrOutputWithContext(ctx context.Context) EntityPtrOutput

type EntityState 

type EntityState struct {
	// True/false Is this entity currently disabled. Defaults to `false`
	Disabled pulumi.BoolPtrInput
	// `false` by default. If set to `true`, this resource will ignore any policies return from Vault or specified in the resource. You can use `identity.EntityPolicies` to manage policies for this entity in a decoupled manner.
	ExternalPolicies pulumi.BoolPtrInput
	// A Map of additional metadata to associate with the user.
	Metadata pulumi.StringMapInput
	// Name of the identity entity to create.
	Name pulumi.StringPtrInput
	// A list of policies to apply to the entity.
	Policies pulumi.StringArrayInput
}

func (EntityState) ElementType 

func (EntityState) ElementType() reflect.Type

type GetEntityAliasType 

type GetEntityAliasType struct {
	// Canonical ID of the Alias
	CanonicalId string `pulumi:"canonicalId"`
	// Creation time of the Alias
	CreationTime string `pulumi:"creationTime"`
	// ID of the alias
	Id string `pulumi:"id"`
	// Last update time of the alias
	LastUpdateTime string `pulumi:"lastUpdateTime"`
	// List of canonical IDs merged with this alias
	MergedFromCanonicalIds []string `pulumi:"mergedFromCanonicalIds"`
	// Arbitrary metadata
	Metadata map[string]interface{} `pulumi:"metadata"`
	// Authentication mount acccessor which this alias belongs to
	MountAccessor string `pulumi:"mountAccessor"`
	// Authentication mount path which this alias belongs to
	MountPath string `pulumi:"mountPath"`
	// Authentication mount type which this alias belongs to
	MountType string `pulumi:"mountType"`
	// Name of the alias
	Name string `pulumi:"name"`
}

type GetEntityAliasTypeArgs 

type GetEntityAliasTypeArgs struct {
	// Canonical ID of the Alias
	CanonicalId pulumi.StringInput `pulumi:"canonicalId"`
	// Creation time of the Alias
	CreationTime pulumi.StringInput `pulumi:"creationTime"`
	// ID of the alias
	Id pulumi.StringInput `pulumi:"id"`
	// Last update time of the alias
	LastUpdateTime pulumi.StringInput `pulumi:"lastUpdateTime"`
	// List of canonical IDs merged with this alias
	MergedFromCanonicalIds pulumi.StringArrayInput `pulumi:"mergedFromCanonicalIds"`
	// Arbitrary metadata
	Metadata pulumi.MapInput `pulumi:"metadata"`
	// Authentication mount acccessor which this alias belongs to
	MountAccessor pulumi.StringInput `pulumi:"mountAccessor"`
	// Authentication mount path which this alias belongs to
	MountPath pulumi.StringInput `pulumi:"mountPath"`
	// Authentication mount type which this alias belongs to
	MountType pulumi.StringInput `pulumi:"mountType"`
	// Name of the alias
	Name pulumi.StringInput `pulumi:"name"`
}

func (GetEntityAliasTypeArgs) ElementType 

func (GetEntityAliasTypeArgs) ElementType() reflect.Type

func (GetEntityAliasTypeArgs) ToGetEntityAliasTypeOutput 

func (i GetEntityAliasTypeArgs) ToGetEntityAliasTypeOutput() GetEntityAliasTypeOutput

func (GetEntityAliasTypeArgs) ToGetEntityAliasTypeOutputWithContext 

func (i GetEntityAliasTypeArgs) ToGetEntityAliasTypeOutputWithContext(ctx context.Context) GetEntityAliasTypeOutput

type GetEntityAliasTypeArray 

type GetEntityAliasTypeArray []GetEntityAliasTypeInput

func (GetEntityAliasTypeArray) ElementType 

func (GetEntityAliasTypeArray) ElementType() reflect.Type

func (GetEntityAliasTypeArray) ToGetEntityAliasTypeArrayOutput 

func (i GetEntityAliasTypeArray) ToGetEntityAliasTypeArrayOutput() GetEntityAliasTypeArrayOutput

func (GetEntityAliasTypeArray) ToGetEntityAliasTypeArrayOutputWithContext 

func (i GetEntityAliasTypeArray) ToGetEntityAliasTypeArrayOutputWithContext(ctx context.Context) GetEntityAliasTypeArrayOutput

type GetEntityAliasTypeArrayInput 

type GetEntityAliasTypeArrayInput interface {
	pulumi.Input

	ToGetEntityAliasTypeArrayOutput() GetEntityAliasTypeArrayOutput
	ToGetEntityAliasTypeArrayOutputWithContext(context.Context) GetEntityAliasTypeArrayOutput
}

GetEntityAliasTypeArrayInput is an input type that accepts GetEntityAliasTypeArray and GetEntityAliasTypeArrayOutput values. You can construct a concrete instance of `GetEntityAliasTypeArrayInput` via: 

GetEntityAliasTypeArray{ GetEntityAliasTypeArgs{...} }

type GetEntityAliasTypeArrayOutput 

type GetEntityAliasTypeArrayOutput struct{ *pulumi.OutputState }

func (GetEntityAliasTypeArrayOutput) ElementType 

func (GetEntityAliasTypeArrayOutput) ElementType() reflect.Type

func (GetEntityAliasTypeArrayOutput) Index 

func (o GetEntityAliasTypeArrayOutput) Index(i pulumi.IntInput) GetEntityAliasTypeOutput

func (GetEntityAliasTypeArrayOutput) ToGetEntityAliasTypeArrayOutput 

func (o GetEntityAliasTypeArrayOutput) ToGetEntityAliasTypeArrayOutput() GetEntityAliasTypeArrayOutput

func (GetEntityAliasTypeArrayOutput) ToGetEntityAliasTypeArrayOutputWithContext 

func (o GetEntityAliasTypeArrayOutput) ToGetEntityAliasTypeArrayOutputWithContext(ctx context.Context) GetEntityAliasTypeArrayOutput

type GetEntityAliasTypeInput 

type GetEntityAliasTypeInput interface {
	pulumi.Input

	ToGetEntityAliasTypeOutput() GetEntityAliasTypeOutput
	ToGetEntityAliasTypeOutputWithContext(context.Context) GetEntityAliasTypeOutput
}

GetEntityAliasTypeInput is an input type that accepts GetEntityAliasTypeArgs and GetEntityAliasTypeOutput values. You can construct a concrete instance of `GetEntityAliasTypeInput` via: 

GetEntityAliasTypeArgs{...}

type GetEntityAliasTypeOutput 

type GetEntityAliasTypeOutput struct{ *pulumi.OutputState }

func (GetEntityAliasTypeOutput) CanonicalId 

func (o GetEntityAliasTypeOutput) CanonicalId() pulumi.StringOutput

Canonical ID of the Alias

func (GetEntityAliasTypeOutput) CreationTime 

func (o GetEntityAliasTypeOutput) CreationTime() pulumi.StringOutput

Creation time of the Alias

func (GetEntityAliasTypeOutput) ElementType 

func (GetEntityAliasTypeOutput) ElementType() reflect.Type

func (GetEntityAliasTypeOutput) Id 

func (o GetEntityAliasTypeOutput) Id() pulumi.StringOutput

ID of the alias

func (GetEntityAliasTypeOutput) LastUpdateTime 

func (o GetEntityAliasTypeOutput) LastUpdateTime() pulumi.StringOutput

Last update time of the alias

func (GetEntityAliasTypeOutput) MergedFromCanonicalIds 

func (o GetEntityAliasTypeOutput) MergedFromCanonicalIds() pulumi.StringArrayOutput

List of canonical IDs merged with this alias

func (GetEntityAliasTypeOutput) Metadata 

func (o GetEntityAliasTypeOutput) Metadata() pulumi.MapOutput

Arbitrary metadata

func (GetEntityAliasTypeOutput) MountAccessor 

func (o GetEntityAliasTypeOutput) MountAccessor() pulumi.StringOutput

Authentication mount acccessor which this alias belongs to

func (GetEntityAliasTypeOutput) MountPath 

func (o GetEntityAliasTypeOutput) MountPath() pulumi.StringOutput

Authentication mount path which this alias belongs to

func (GetEntityAliasTypeOutput) MountType 

func (o GetEntityAliasTypeOutput) MountType() pulumi.StringOutput

Authentication mount type which this alias belongs to

func (GetEntityAliasTypeOutput) Name 

func (o GetEntityAliasTypeOutput) Name() pulumi.StringOutput

Name of the alias

func (GetEntityAliasTypeOutput) ToGetEntityAliasTypeOutput 

func (o GetEntityAliasTypeOutput) ToGetEntityAliasTypeOutput() GetEntityAliasTypeOutput

func (GetEntityAliasTypeOutput) ToGetEntityAliasTypeOutputWithContext 

func (o GetEntityAliasTypeOutput) ToGetEntityAliasTypeOutputWithContext(ctx context.Context) GetEntityAliasTypeOutput

type Group 

type Group struct {
	pulumi.CustomResourceState

	// `false` by default. If set to `true`, this resource will ignore any Entity IDs returned from Vault or specified in the resource. You can use `identity.GroupMemberEntityIds` to manage Entity IDs for this group in a decoupled manner.
	ExternalMemberEntityIds pulumi.BoolPtrOutput `pulumi:"externalMemberEntityIds"`
	// `false` by default. If set to `true`, this resource will ignore any policies returned from Vault or specified in the resource. You can use `identity.GroupPolicies` to manage policies for this group in a decoupled manner.
	ExternalPolicies pulumi.BoolPtrOutput `pulumi:"externalPolicies"`
	// A list of Entity IDs to be assigned as group members. Not allowed on `external` groups.
	MemberEntityIds pulumi.StringArrayOutput `pulumi:"memberEntityIds"`
	// A list of Group IDs to be assigned as group members. Not allowed on `external` groups.
	MemberGroupIds pulumi.StringArrayOutput `pulumi:"memberGroupIds"`
	// A Map of additional metadata to associate with the group.
	Metadata pulumi.StringMapOutput `pulumi:"metadata"`
	// Name of the identity group to create.
	Name pulumi.StringOutput `pulumi:"name"`
	// A list of policies to apply to the group.
	Policies pulumi.StringArrayOutput `pulumi:"policies"`
	// Type of the group, internal or external. Defaults to `internal`.
	Type pulumi.StringPtrOutput `pulumi:"type"`
}

Creates an Identity Group for Vault. The [Identity secrets engine](https://www.vaultproject.io/docs/secrets/identity/index.html) is the identity management solution for Vault.

A group can contain multiple entities as its members. A group can also have subgroups. Policies set on the group is granted to all members of the group. During request time, when the token's entity ID is being evaluated for the policies that it has access to; along with the policies on the entity itself, policies that are inherited due to group memberships are also granted.

## Example Usage ### Internal Group

```go package main

import ( 

"github.com/pulumi/pulumi-vault/sdk/v4/go/vault/identity"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"

) 

func main() {
	pulumi.Run(func(ctx *pulumi.Context) error {
		_, err := identity.NewGroup(ctx, "internal", &identity.GroupArgs{
			Metadata: pulumi.StringMap{
				"version": pulumi.String("2"),
			},
			Policies: pulumi.StringArray{
				pulumi.String("dev"),
				pulumi.String("test"),
			},
			Type: pulumi.String("internal"),
		})
		if err != nil {
			return err
		}
		return nil
	})
}

``` ### External Group

```go package main

import ( 

"github.com/pulumi/pulumi-vault/sdk/v4/go/vault/identity"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"

) 

func main() {
	pulumi.Run(func(ctx *pulumi.Context) error {
		_, err := identity.NewGroup(ctx, "group", &identity.GroupArgs{
			Metadata: pulumi.StringMap{
				"version": pulumi.String("1"),
			},
			Policies: pulumi.StringArray{
				pulumi.String("test"),
			},
			Type: pulumi.String("external"),
		})
		if err != nil {
			return err
		}
		return nil
	})
}

```

## Import

Identity group can be imported using the `id`, e.g.

```sh 

$ pulumi import vault:identity/group:Group test 'fcbf1efb-2b69-4209-bed8-811e3475dad3'

```

func GetGroup 

func GetGroup(ctx *pulumi.Context,
	name string, id pulumi.IDInput, state *GroupState, opts ...pulumi.ResourceOption) (*Group, error)

GetGroup gets an existing Group resource's state with the given name, ID, and optional state properties that are used to uniquely qualify the lookup (nil if not required).

func NewGroup 

func NewGroup(ctx *pulumi.Context,
	name string, args *GroupArgs, opts ...pulumi.ResourceOption) (*Group, error)

NewGroup registers a new resource with the given unique name, arguments, and options.

func (*Group) ElementType 

func (*Group) ElementType() reflect.Type

func (*Group) ToGroupOutput 

func (i *Group) ToGroupOutput() GroupOutput

func (*Group) ToGroupOutputWithContext 

func (i *Group) ToGroupOutputWithContext(ctx context.Context) GroupOutput

func (*Group) ToGroupPtrOutput 

func (i *Group) ToGroupPtrOutput() GroupPtrOutput

func (*Group) ToGroupPtrOutputWithContext 

func (i *Group) ToGroupPtrOutputWithContext(ctx context.Context) GroupPtrOutput

type GroupAlias 

type GroupAlias struct {
	pulumi.CustomResourceState

	// ID of the group to which this is an alias.
	CanonicalId pulumi.StringOutput `pulumi:"canonicalId"`
	// Mount accessor of the authentication backend to which this alias belongs to.
	MountAccessor pulumi.StringOutput `pulumi:"mountAccessor"`
	// Name of the group alias to create.
	Name pulumi.StringOutput `pulumi:"name"`
}

Creates an Identity Group Alias for Vault. The [Identity secrets engine](https://www.vaultproject.io/docs/secrets/identity/index.html) is the identity management solution for Vault.

Group aliases allows entity membership in external groups to be managed semi-automatically. External group serves as a mapping to a group that is outside of the identity store. External groups can have one (and only one) alias. This alias should map to a notion of group that is outside of the identity store. For example, groups in LDAP, and teams in GitHub. A username in LDAP, belonging to a group in LDAP, can get its entity ID added as a member of a group in Vault automatically during logins and token renewals. This works only if the group in Vault is an external group and has an alias that maps to the group in LDAP. If the user is removed from the group in LDAP, that change gets reflected in Vault only upon the subsequent login or renewal operation.

## Example Usage

```go package main

import ( 

"github.com/pulumi/pulumi-vault/sdk/v4/go/vault"
"github.com/pulumi/pulumi-vault/sdk/v4/go/vault/identity"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"

) 

func main() {
	pulumi.Run(func(ctx *pulumi.Context) error {
		group, err := identity.NewGroup(ctx, "group", &identity.GroupArgs{
			Type: pulumi.String("external"),
			Policies: pulumi.StringArray{
				pulumi.String("test"),
			},
		})
		if err != nil {
			return err
		}
		github, err := vault.NewAuthBackend(ctx, "github", &vault.AuthBackendArgs{
			Type: pulumi.String("github"),
			Path: pulumi.String("github"),
		})
		if err != nil {
			return err
		}
		_, err = identity.NewGroupAlias(ctx, "group_alias", &identity.GroupAliasArgs{
			Name:          pulumi.String("Github_Team_Slug"),
			MountAccessor: github.Accessor,
			CanonicalId:   group.ID(),
		})
		if err != nil {
			return err
		}
		return nil
	})
}

```

## Import

The group alias can be imported with the group alias `id`, for example

```sh 

$ pulumi import vault:identity/groupAlias:GroupAlias group-alias id

``` 

Group aliases can also be imported using the UUID of the alias record, e.g.

```sh 

$ pulumi import vault:identity/groupAlias:GroupAlias alias_name 63104e20-88e4-11eb-8d04-cf7ac9d60157

```

func GetGroupAlias 

func GetGroupAlias(ctx *pulumi.Context,
	name string, id pulumi.IDInput, state *GroupAliasState, opts ...pulumi.ResourceOption) (*GroupAlias, error)

GetGroupAlias gets an existing GroupAlias resource's state with the given name, ID, and optional state properties that are used to uniquely qualify the lookup (nil if not required).

func NewGroupAlias 

func NewGroupAlias(ctx *pulumi.Context,
	name string, args *GroupAliasArgs, opts ...pulumi.ResourceOption) (*GroupAlias, error)

NewGroupAlias registers a new resource with the given unique name, arguments, and options.

func (*GroupAlias) ElementType 

func (*GroupAlias) ElementType() reflect.Type

func (*GroupAlias) ToGroupAliasOutput 

func (i *GroupAlias) ToGroupAliasOutput() GroupAliasOutput

func (*GroupAlias) ToGroupAliasOutputWithContext 

func (i *GroupAlias) ToGroupAliasOutputWithContext(ctx context.Context) GroupAliasOutput

func (*GroupAlias) ToGroupAliasPtrOutput 

func (i *GroupAlias) ToGroupAliasPtrOutput() GroupAliasPtrOutput

func (*GroupAlias) ToGroupAliasPtrOutputWithContext 

func (i *GroupAlias) ToGroupAliasPtrOutputWithContext(ctx context.Context) GroupAliasPtrOutput

type GroupAliasArgs 

type GroupAliasArgs struct {
	// ID of the group to which this is an alias.
	CanonicalId pulumi.StringInput
	// Mount accessor of the authentication backend to which this alias belongs to.
	MountAccessor pulumi.StringInput
	// Name of the group alias to create.
	Name pulumi.StringInput
}

The set of arguments for constructing a GroupAlias resource.

func (GroupAliasArgs) ElementType 

func (GroupAliasArgs) ElementType() reflect.Type

type GroupAliasArray 

type GroupAliasArray []GroupAliasInput

func (GroupAliasArray) ElementType 

func (GroupAliasArray) ElementType() reflect.Type

func (GroupAliasArray) ToGroupAliasArrayOutput 

func (i GroupAliasArray) ToGroupAliasArrayOutput() GroupAliasArrayOutput

func (GroupAliasArray) ToGroupAliasArrayOutputWithContext 

func (i GroupAliasArray) ToGroupAliasArrayOutputWithContext(ctx context.Context) GroupAliasArrayOutput

type GroupAliasArrayInput 

type GroupAliasArrayInput interface {
	pulumi.Input

	ToGroupAliasArrayOutput() GroupAliasArrayOutput
	ToGroupAliasArrayOutputWithContext(context.Context) GroupAliasArrayOutput
}

GroupAliasArrayInput is an input type that accepts GroupAliasArray and GroupAliasArrayOutput values. You can construct a concrete instance of `GroupAliasArrayInput` via: 

GroupAliasArray{ GroupAliasArgs{...} }

type GroupAliasArrayOutput 

type GroupAliasArrayOutput struct{ *pulumi.OutputState }

func (GroupAliasArrayOutput) ElementType 

func (GroupAliasArrayOutput) ElementType() reflect.Type

func (GroupAliasArrayOutput) Index 

func (o GroupAliasArrayOutput) Index(i pulumi.IntInput) GroupAliasOutput

func (GroupAliasArrayOutput) ToGroupAliasArrayOutput 

func (o GroupAliasArrayOutput) ToGroupAliasArrayOutput() GroupAliasArrayOutput

func (GroupAliasArrayOutput) ToGroupAliasArrayOutputWithContext 

func (o GroupAliasArrayOutput) ToGroupAliasArrayOutputWithContext(ctx context.Context) GroupAliasArrayOutput

type GroupAliasInput 

type GroupAliasInput interface {
	pulumi.Input

	ToGroupAliasOutput() GroupAliasOutput
	ToGroupAliasOutputWithContext(ctx context.Context) GroupAliasOutput
}

type GroupAliasMap 

type GroupAliasMap map[string]GroupAliasInput

func (GroupAliasMap) ElementType 

func (GroupAliasMap) ElementType() reflect.Type

func (GroupAliasMap) ToGroupAliasMapOutput 

func (i GroupAliasMap) ToGroupAliasMapOutput() GroupAliasMapOutput

func (GroupAliasMap) ToGroupAliasMapOutputWithContext 

func (i GroupAliasMap) ToGroupAliasMapOutputWithContext(ctx context.Context) GroupAliasMapOutput

type GroupAliasMapInput 

type GroupAliasMapInput interface {
	pulumi.Input

	ToGroupAliasMapOutput() GroupAliasMapOutput
	ToGroupAliasMapOutputWithContext(context.Context) GroupAliasMapOutput
}

GroupAliasMapInput is an input type that accepts GroupAliasMap and GroupAliasMapOutput values. You can construct a concrete instance of `GroupAliasMapInput` via: 

GroupAliasMap{ "key": GroupAliasArgs{...} }

type GroupAliasMapOutput 

type GroupAliasMapOutput struct{ *pulumi.OutputState }

func (GroupAliasMapOutput) ElementType 

func (GroupAliasMapOutput) ElementType() reflect.Type

func (GroupAliasMapOutput) MapIndex 

func (o GroupAliasMapOutput) MapIndex(k pulumi.StringInput) GroupAliasOutput

func (GroupAliasMapOutput) ToGroupAliasMapOutput 

func (o GroupAliasMapOutput) ToGroupAliasMapOutput() GroupAliasMapOutput

func (GroupAliasMapOutput) ToGroupAliasMapOutputWithContext 

func (o GroupAliasMapOutput) ToGroupAliasMapOutputWithContext(ctx context.Context) GroupAliasMapOutput

type GroupAliasOutput 

type GroupAliasOutput struct{ *pulumi.OutputState }

func (GroupAliasOutput) ElementType 

func (GroupAliasOutput) ElementType() reflect.Type

func (GroupAliasOutput) ToGroupAliasOutput 

func (o GroupAliasOutput) ToGroupAliasOutput() GroupAliasOutput

func (GroupAliasOutput) ToGroupAliasOutputWithContext 

func (o GroupAliasOutput) ToGroupAliasOutputWithContext(ctx context.Context) GroupAliasOutput

func (GroupAliasOutput) ToGroupAliasPtrOutput 

func (o GroupAliasOutput) ToGroupAliasPtrOutput() GroupAliasPtrOutput

func (GroupAliasOutput) ToGroupAliasPtrOutputWithContext 

func (o GroupAliasOutput) ToGroupAliasPtrOutputWithContext(ctx context.Context) GroupAliasPtrOutput

type GroupAliasPtrInput 

type GroupAliasPtrInput interface {
	pulumi.Input

	ToGroupAliasPtrOutput() GroupAliasPtrOutput
	ToGroupAliasPtrOutputWithContext(ctx context.Context) GroupAliasPtrOutput
}

type GroupAliasPtrOutput 

type GroupAliasPtrOutput struct{ *pulumi.OutputState }

func (GroupAliasPtrOutput) Elem added in v4.6.0 

func (o GroupAliasPtrOutput) Elem() GroupAliasOutput

func (GroupAliasPtrOutput) ElementType 

func (GroupAliasPtrOutput) ElementType() reflect.Type

func (GroupAliasPtrOutput) ToGroupAliasPtrOutput 

func (o GroupAliasPtrOutput) ToGroupAliasPtrOutput() GroupAliasPtrOutput

func (GroupAliasPtrOutput) ToGroupAliasPtrOutputWithContext 

func (o GroupAliasPtrOutput) ToGroupAliasPtrOutputWithContext(ctx context.Context) GroupAliasPtrOutput

type GroupAliasState 

type GroupAliasState struct {
	// ID of the group to which this is an alias.
	CanonicalId pulumi.StringPtrInput
	// Mount accessor of the authentication backend to which this alias belongs to.
	MountAccessor pulumi.StringPtrInput
	// Name of the group alias to create.
	Name pulumi.StringPtrInput
}

func (GroupAliasState) ElementType 

func (GroupAliasState) ElementType() reflect.Type

type GroupArgs 

type GroupArgs struct {
	// `false` by default. If set to `true`, this resource will ignore any Entity IDs returned from Vault or specified in the resource. You can use `identity.GroupMemberEntityIds` to manage Entity IDs for this group in a decoupled manner.
	ExternalMemberEntityIds pulumi.BoolPtrInput
	// `false` by default. If set to `true`, this resource will ignore any policies returned from Vault or specified in the resource. You can use `identity.GroupPolicies` to manage policies for this group in a decoupled manner.
	ExternalPolicies pulumi.BoolPtrInput
	// A list of Entity IDs to be assigned as group members. Not allowed on `external` groups.
	MemberEntityIds pulumi.StringArrayInput
	// A list of Group IDs to be assigned as group members. Not allowed on `external` groups.
	MemberGroupIds pulumi.StringArrayInput
	// A Map of additional metadata to associate with the group.
	Metadata pulumi.StringMapInput
	// Name of the identity group to create.
	Name pulumi.StringPtrInput
	// A list of policies to apply to the group.
	Policies pulumi.StringArrayInput
	// Type of the group, internal or external. Defaults to `internal`.
	Type pulumi.StringPtrInput
}

The set of arguments for constructing a Group resource.

func (GroupArgs) ElementType 

func (GroupArgs) ElementType() reflect.Type

type GroupArray 

type GroupArray []GroupInput

func (GroupArray) ElementType 

func (GroupArray) ElementType() reflect.Type

func (GroupArray) ToGroupArrayOutput 

func (i GroupArray) ToGroupArrayOutput() GroupArrayOutput

func (GroupArray) ToGroupArrayOutputWithContext 

func (i GroupArray) ToGroupArrayOutputWithContext(ctx context.Context) GroupArrayOutput

type GroupArrayInput 

type GroupArrayInput interface {
	pulumi.Input

	ToGroupArrayOutput() GroupArrayOutput
	ToGroupArrayOutputWithContext(context.Context) GroupArrayOutput
}

GroupArrayInput is an input type that accepts GroupArray and GroupArrayOutput values. You can construct a concrete instance of `GroupArrayInput` via: 

GroupArray{ GroupArgs{...} }

type GroupArrayOutput 

type GroupArrayOutput struct{ *pulumi.OutputState }

func (GroupArrayOutput) ElementType 

func (GroupArrayOutput) ElementType() reflect.Type

func (GroupArrayOutput) Index 

func (o GroupArrayOutput) Index(i pulumi.IntInput) GroupOutput

func (GroupArrayOutput) ToGroupArrayOutput 

func (o GroupArrayOutput) ToGroupArrayOutput() GroupArrayOutput

func (GroupArrayOutput) ToGroupArrayOutputWithContext 

func (o GroupArrayOutput) ToGroupArrayOutputWithContext(ctx context.Context) GroupArrayOutput

type GroupInput 

type GroupInput interface {
	pulumi.Input

	ToGroupOutput() GroupOutput
	ToGroupOutputWithContext(ctx context.Context) GroupOutput
}

type GroupMap 

type GroupMap map[string]GroupInput

func (GroupMap) ElementType 

func (GroupMap) ElementType() reflect.Type

func (GroupMap) ToGroupMapOutput 

func (i GroupMap) ToGroupMapOutput() GroupMapOutput

func (GroupMap) ToGroupMapOutputWithContext 

func (i GroupMap) ToGroupMapOutputWithContext(ctx context.Context) GroupMapOutput

type GroupMapInput 

type GroupMapInput interface {
	pulumi.Input

	ToGroupMapOutput() GroupMapOutput
	ToGroupMapOutputWithContext(context.Context) GroupMapOutput
}

GroupMapInput is an input type that accepts GroupMap and GroupMapOutput values. You can construct a concrete instance of `GroupMapInput` via: 

GroupMap{ "key": GroupArgs{...} }

type GroupMapOutput 

type GroupMapOutput struct{ *pulumi.OutputState }

func (GroupMapOutput) ElementType 

func (GroupMapOutput) ElementType() reflect.Type

func (GroupMapOutput) MapIndex 

func (o GroupMapOutput) MapIndex(k pulumi.StringInput) GroupOutput

func (GroupMapOutput) ToGroupMapOutput 

func (o GroupMapOutput) ToGroupMapOutput() GroupMapOutput

func (GroupMapOutput) ToGroupMapOutputWithContext 

func (o GroupMapOutput) ToGroupMapOutputWithContext(ctx context.Context) GroupMapOutput

type GroupMemberEntityIds 

type GroupMemberEntityIds struct {
	pulumi.CustomResourceState

	// Defaults to `true`.
	Exclusive pulumi.BoolPtrOutput `pulumi:"exclusive"`
	// Group ID to assign member entities to.
	GroupId pulumi.StringOutput `pulumi:"groupId"`
	// The name of the group that are assigned the member entities.
	GroupName pulumi.StringOutput `pulumi:"groupName"`
	// List of member entities that belong to the group
	MemberEntityIds pulumi.StringArrayOutput `pulumi:"memberEntityIds"`
}

Manages member entities for an Identity Group for Vault. The [Identity secrets engine](https://www.vaultproject.io/docs/secrets/identity/index.html) is the identity management solution for Vault.

## Example Usage ### Exclusive Member Entities

```go package main

import ( 

"github.com/pulumi/pulumi-vault/sdk/v4/go/vault/identity"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"

) 

func main() {
	pulumi.Run(func(ctx *pulumi.Context) error {
		internal, err := identity.NewGroup(ctx, "internal", &identity.GroupArgs{
			Type:                    pulumi.String("internal"),
			ExternalMemberEntityIds: pulumi.Bool(true),
			Metadata: pulumi.StringMap{
				"version": pulumi.String("2"),
			},
		})
		if err != nil {
			return err
		}
		user, err := identity.NewEntity(ctx, "user", nil)
		if err != nil {
			return err
		}
		_, err = identity.NewGroupMemberEntityIds(ctx, "members", &identity.GroupMemberEntityIdsArgs{
			Exclusive: pulumi.Bool(true),
			MemberEntityIds: pulumi.StringArray{
				user.ID(),
			},
			GroupId: internal.ID(),
		})
		if err != nil {
			return err
		}
		return nil
	})
}

``` ### Non-exclusive Member Entities

```go package main

import ( 

"github.com/pulumi/pulumi-vault/sdk/v4/go/vault/identity"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"

) 

func main() {
	pulumi.Run(func(ctx *pulumi.Context) error {
		internal, err := identity.NewGroup(ctx, "internal", &identity.GroupArgs{
			Type:                    pulumi.String("internal"),
			ExternalMemberEntityIds: pulumi.Bool(true),
			Metadata: pulumi.StringMap{
				"version": pulumi.String("2"),
			},
		})
		if err != nil {
			return err
		}
		testUser, err := identity.NewEntity(ctx, "testUser", nil)
		if err != nil {
			return err
		}
		secondTestUser, err := identity.NewEntity(ctx, "secondTestUser", nil)
		if err != nil {
			return err
		}
		devUser, err := identity.NewEntity(ctx, "devUser", nil)
		if err != nil {
			return err
		}
		_, err = identity.NewGroupMemberEntityIds(ctx, "test", &identity.GroupMemberEntityIdsArgs{
			MemberEntityIds: pulumi.StringArray{
				testUser.ID(),
				secondTestUser.ID(),
			},
			Exclusive: pulumi.Bool(false),
			GroupId:   internal.ID(),
		})
		if err != nil {
			return err
		}
		_, err = identity.NewGroupMemberEntityIds(ctx, "others", &identity.GroupMemberEntityIdsArgs{
			MemberEntityIds: pulumi.StringArray{
				devUser.ID(),
			},
			Exclusive: pulumi.Bool(false),
			GroupId:   internal.ID(),
		})
		if err != nil {
			return err
		}
		return nil
	})
}

```

func GetGroupMemberEntityIds 

func GetGroupMemberEntityIds(ctx *pulumi.Context,
	name string, id pulumi.IDInput, state *GroupMemberEntityIdsState, opts ...pulumi.ResourceOption) (*GroupMemberEntityIds, error)

GetGroupMemberEntityIds gets an existing GroupMemberEntityIds resource's state with the given name, ID, and optional state properties that are used to uniquely qualify the lookup (nil if not required).

func NewGroupMemberEntityIds 

func NewGroupMemberEntityIds(ctx *pulumi.Context,
	name string, args *GroupMemberEntityIdsArgs, opts ...pulumi.ResourceOption) (*GroupMemberEntityIds, error)

NewGroupMemberEntityIds registers a new resource with the given unique name, arguments, and options.

func (*GroupMemberEntityIds) ElementType 

func (*GroupMemberEntityIds) ElementType() reflect.Type

func (*GroupMemberEntityIds) ToGroupMemberEntityIdsOutput 

func (i *GroupMemberEntityIds) ToGroupMemberEntityIdsOutput() GroupMemberEntityIdsOutput

func (*GroupMemberEntityIds) ToGroupMemberEntityIdsOutputWithContext 

func (i *GroupMemberEntityIds) ToGroupMemberEntityIdsOutputWithContext(ctx context.Context) GroupMemberEntityIdsOutput

func (*GroupMemberEntityIds) ToGroupMemberEntityIdsPtrOutput 

func (i *GroupMemberEntityIds) ToGroupMemberEntityIdsPtrOutput() GroupMemberEntityIdsPtrOutput

func (*GroupMemberEntityIds) ToGroupMemberEntityIdsPtrOutputWithContext 

func (i *GroupMemberEntityIds) ToGroupMemberEntityIdsPtrOutputWithContext(ctx context.Context) GroupMemberEntityIdsPtrOutput

type GroupMemberEntityIdsArgs 

type GroupMemberEntityIdsArgs struct {
	// Defaults to `true`.
	Exclusive pulumi.BoolPtrInput
	// Group ID to assign member entities to.
	GroupId pulumi.StringInput
	// List of member entities that belong to the group
	MemberEntityIds pulumi.StringArrayInput
}

The set of arguments for constructing a GroupMemberEntityIds resource.

func (GroupMemberEntityIdsArgs) ElementType 

func (GroupMemberEntityIdsArgs) ElementType() reflect.Type

type GroupMemberEntityIdsArray 

type GroupMemberEntityIdsArray []GroupMemberEntityIdsInput

func (GroupMemberEntityIdsArray) ElementType 

func (GroupMemberEntityIdsArray) ElementType() reflect.Type

func (GroupMemberEntityIdsArray) ToGroupMemberEntityIdsArrayOutput 

func (i GroupMemberEntityIdsArray) ToGroupMemberEntityIdsArrayOutput() GroupMemberEntityIdsArrayOutput

func (GroupMemberEntityIdsArray) ToGroupMemberEntityIdsArrayOutputWithContext 

func (i GroupMemberEntityIdsArray) ToGroupMemberEntityIdsArrayOutputWithContext(ctx context.Context) GroupMemberEntityIdsArrayOutput

type GroupMemberEntityIdsArrayInput 

type GroupMemberEntityIdsArrayInput interface {
	pulumi.Input

	ToGroupMemberEntityIdsArrayOutput() GroupMemberEntityIdsArrayOutput
	ToGroupMemberEntityIdsArrayOutputWithContext(context.Context) GroupMemberEntityIdsArrayOutput
}

GroupMemberEntityIdsArrayInput is an input type that accepts GroupMemberEntityIdsArray and GroupMemberEntityIdsArrayOutput values. You can construct a concrete instance of `GroupMemberEntityIdsArrayInput` via: 

GroupMemberEntityIdsArray{ GroupMemberEntityIdsArgs{...} }

type GroupMemberEntityIdsArrayOutput 

type GroupMemberEntityIdsArrayOutput struct{ *pulumi.OutputState }

func (GroupMemberEntityIdsArrayOutput) ElementType 

func (GroupMemberEntityIdsArrayOutput) ElementType() reflect.Type

func (GroupMemberEntityIdsArrayOutput) Index 

func (o GroupMemberEntityIdsArrayOutput) Index(i pulumi.IntInput) GroupMemberEntityIdsOutput

func (GroupMemberEntityIdsArrayOutput) ToGroupMemberEntityIdsArrayOutput 

func (o GroupMemberEntityIdsArrayOutput) ToGroupMemberEntityIdsArrayOutput() GroupMemberEntityIdsArrayOutput

func (GroupMemberEntityIdsArrayOutput) ToGroupMemberEntityIdsArrayOutputWithContext 

func (o GroupMemberEntityIdsArrayOutput) ToGroupMemberEntityIdsArrayOutputWithContext(ctx context.Context) GroupMemberEntityIdsArrayOutput

type GroupMemberEntityIdsInput 

type GroupMemberEntityIdsInput interface {
	pulumi.Input

	ToGroupMemberEntityIdsOutput() GroupMemberEntityIdsOutput
	ToGroupMemberEntityIdsOutputWithContext(ctx context.Context) GroupMemberEntityIdsOutput
}

type GroupMemberEntityIdsMap 

type GroupMemberEntityIdsMap map[string]GroupMemberEntityIdsInput

func (GroupMemberEntityIdsMap) ElementType 

func (GroupMemberEntityIdsMap) ElementType() reflect.Type

func (GroupMemberEntityIdsMap) ToGroupMemberEntityIdsMapOutput 

func (i GroupMemberEntityIdsMap) ToGroupMemberEntityIdsMapOutput() GroupMemberEntityIdsMapOutput

func (GroupMemberEntityIdsMap) ToGroupMemberEntityIdsMapOutputWithContext 

func (i GroupMemberEntityIdsMap) ToGroupMemberEntityIdsMapOutputWithContext(ctx context.Context) GroupMemberEntityIdsMapOutput

type GroupMemberEntityIdsMapInput 

type GroupMemberEntityIdsMapInput interface {
	pulumi.Input

	ToGroupMemberEntityIdsMapOutput() GroupMemberEntityIdsMapOutput
	ToGroupMemberEntityIdsMapOutputWithContext(context.Context) GroupMemberEntityIdsMapOutput
}

GroupMemberEntityIdsMapInput is an input type that accepts GroupMemberEntityIdsMap and GroupMemberEntityIdsMapOutput values. You can construct a concrete instance of `GroupMemberEntityIdsMapInput` via: 

GroupMemberEntityIdsMap{ "key": GroupMemberEntityIdsArgs{...} }

type GroupMemberEntityIdsMapOutput 

type GroupMemberEntityIdsMapOutput struct{ *pulumi.OutputState }

func (GroupMemberEntityIdsMapOutput) ElementType 

func (GroupMemberEntityIdsMapOutput) ElementType() reflect.Type

func (GroupMemberEntityIdsMapOutput) MapIndex 

func (o GroupMemberEntityIdsMapOutput) MapIndex(k pulumi.StringInput) GroupMemberEntityIdsOutput

func (GroupMemberEntityIdsMapOutput) ToGroupMemberEntityIdsMapOutput 

func (o GroupMemberEntityIdsMapOutput) ToGroupMemberEntityIdsMapOutput() GroupMemberEntityIdsMapOutput

func (GroupMemberEntityIdsMapOutput) ToGroupMemberEntityIdsMapOutputWithContext 

func (o GroupMemberEntityIdsMapOutput) ToGroupMemberEntityIdsMapOutputWithContext(ctx context.Context) GroupMemberEntityIdsMapOutput

type GroupMemberEntityIdsOutput 

type GroupMemberEntityIdsOutput struct{ *pulumi.OutputState }

func (GroupMemberEntityIdsOutput) ElementType 

func (GroupMemberEntityIdsOutput) ElementType() reflect.Type

func (GroupMemberEntityIdsOutput) ToGroupMemberEntityIdsOutput 

func (o GroupMemberEntityIdsOutput) ToGroupMemberEntityIdsOutput() GroupMemberEntityIdsOutput

func (GroupMemberEntityIdsOutput) ToGroupMemberEntityIdsOutputWithContext 

func (o GroupMemberEntityIdsOutput) ToGroupMemberEntityIdsOutputWithContext(ctx context.Context) GroupMemberEntityIdsOutput

func (GroupMemberEntityIdsOutput) ToGroupMemberEntityIdsPtrOutput 

func (o GroupMemberEntityIdsOutput) ToGroupMemberEntityIdsPtrOutput() GroupMemberEntityIdsPtrOutput

func (GroupMemberEntityIdsOutput) ToGroupMemberEntityIdsPtrOutputWithContext 

func (o GroupMemberEntityIdsOutput) ToGroupMemberEntityIdsPtrOutputWithContext(ctx context.Context) GroupMemberEntityIdsPtrOutput

type GroupMemberEntityIdsPtrInput 

type GroupMemberEntityIdsPtrInput interface {
	pulumi.Input

	ToGroupMemberEntityIdsPtrOutput() GroupMemberEntityIdsPtrOutput
	ToGroupMemberEntityIdsPtrOutputWithContext(ctx context.Context) GroupMemberEntityIdsPtrOutput
}

type GroupMemberEntityIdsPtrOutput 

type GroupMemberEntityIdsPtrOutput struct{ *pulumi.OutputState }

func (GroupMemberEntityIdsPtrOutput) Elem added in v4.6.0 

func (o GroupMemberEntityIdsPtrOutput) Elem() GroupMemberEntityIdsOutput

func (GroupMemberEntityIdsPtrOutput) ElementType 

func (GroupMemberEntityIdsPtrOutput) ElementType() reflect.Type

func (GroupMemberEntityIdsPtrOutput) ToGroupMemberEntityIdsPtrOutput 

func (o GroupMemberEntityIdsPtrOutput) ToGroupMemberEntityIdsPtrOutput() GroupMemberEntityIdsPtrOutput

func (GroupMemberEntityIdsPtrOutput) ToGroupMemberEntityIdsPtrOutputWithContext 

func (o GroupMemberEntityIdsPtrOutput) ToGroupMemberEntityIdsPtrOutputWithContext(ctx context.Context) GroupMemberEntityIdsPtrOutput

type GroupMemberEntityIdsState 

type GroupMemberEntityIdsState struct {
	// Defaults to `true`.
	Exclusive pulumi.BoolPtrInput
	// Group ID to assign member entities to.
	GroupId pulumi.StringPtrInput
	// The name of the group that are assigned the member entities.
	GroupName pulumi.StringPtrInput
	// List of member entities that belong to the group
	MemberEntityIds pulumi.StringArrayInput
}

func (GroupMemberEntityIdsState) ElementType 

func (GroupMemberEntityIdsState) ElementType() reflect.Type

type GroupOutput 

type GroupOutput struct{ *pulumi.OutputState }

func (GroupOutput) ElementType 

func (GroupOutput) ElementType() reflect.Type

func (GroupOutput) ToGroupOutput 

func (o GroupOutput) ToGroupOutput() GroupOutput

func (GroupOutput) ToGroupOutputWithContext 

func (o GroupOutput) ToGroupOutputWithContext(ctx context.Context) GroupOutput

func (GroupOutput) ToGroupPtrOutput 

func (o GroupOutput) ToGroupPtrOutput() GroupPtrOutput

func (GroupOutput) ToGroupPtrOutputWithContext 

func (o GroupOutput) ToGroupPtrOutputWithContext(ctx context.Context) GroupPtrOutput

type GroupPolicies 

type GroupPolicies struct {
	pulumi.CustomResourceState

	// Defaults to `true`.
	Exclusive pulumi.BoolPtrOutput `pulumi:"exclusive"`
	// Group ID to assign policies to.
	GroupId pulumi.StringOutput `pulumi:"groupId"`
	// The name of the group that are assigned the policies.
	GroupName pulumi.StringOutput `pulumi:"groupName"`
	// List of policies to assign to the group
	Policies pulumi.StringArrayOutput `pulumi:"policies"`
}

Manages policies for an Identity Group for Vault. The [Identity secrets engine](https://www.vaultproject.io/docs/secrets/identity/index.html) is the identity management solution for Vault.

## Example Usage ### Exclusive Policies

```go package main

import ( 

"github.com/pulumi/pulumi-vault/sdk/v4/go/vault/identity"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"

) 

func main() {
	pulumi.Run(func(ctx *pulumi.Context) error {
		internal, err := identity.NewGroup(ctx, "internal", &identity.GroupArgs{
			Type:             pulumi.String("internal"),
			ExternalPolicies: pulumi.Bool(true),
			Metadata: pulumi.StringMap{
				"version": pulumi.String("2"),
			},
		})
		if err != nil {
			return err
		}
		_, err = identity.NewGroupPolicies(ctx, "policies", &identity.GroupPoliciesArgs{
			Policies: pulumi.StringArray{
				pulumi.String("default"),
				pulumi.String("test"),
			},
			Exclusive: pulumi.Bool(true),
			GroupId:   internal.ID(),
		})
		if err != nil {
			return err
		}
		return nil
	})
}

``` ### Non-exclusive Policies

```go package main

import ( 

"github.com/pulumi/pulumi-vault/sdk/v4/go/vault/identity"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"

) 

func main() {
	pulumi.Run(func(ctx *pulumi.Context) error {
		internal, err := identity.NewGroup(ctx, "internal", &identity.GroupArgs{
			Type:             pulumi.String("internal"),
			ExternalPolicies: pulumi.Bool(true),
			Metadata: pulumi.StringMap{
				"version": pulumi.String("2"),
			},
		})
		if err != nil {
			return err
		}
		_, err = identity.NewGroupPolicies(ctx, "_default", &identity.GroupPoliciesArgs{
			Policies: pulumi.StringArray{
				pulumi.String("default"),
				pulumi.String("test"),
			},
			Exclusive: pulumi.Bool(false),
			GroupId:   internal.ID(),
		})
		if err != nil {
			return err
		}
		_, err = identity.NewGroupPolicies(ctx, "others", &identity.GroupPoliciesArgs{
			Policies: pulumi.StringArray{
				pulumi.String("others"),
			},
			Exclusive: pulumi.Bool(false),
			GroupId:   internal.ID(),
		})
		if err != nil {
			return err
		}
		return nil
	})
}

```

func GetGroupPolicies 

func GetGroupPolicies(ctx *pulumi.Context,
	name string, id pulumi.IDInput, state *GroupPoliciesState, opts ...pulumi.ResourceOption) (*GroupPolicies, error)

GetGroupPolicies gets an existing GroupPolicies resource's state with the given name, ID, and optional state properties that are used to uniquely qualify the lookup (nil if not required).

func NewGroupPolicies 

func NewGroupPolicies(ctx *pulumi.Context,
	name string, args *GroupPoliciesArgs, opts ...pulumi.ResourceOption) (*GroupPolicies, error)

NewGroupPolicies registers a new resource with the given unique name, arguments, and options.

func (*GroupPolicies) ElementType 

func (*GroupPolicies) ElementType() reflect.Type

func (*GroupPolicies) ToGroupPoliciesOutput 

func (i *GroupPolicies) ToGroupPoliciesOutput() GroupPoliciesOutput

func (*GroupPolicies) ToGroupPoliciesOutputWithContext 

func (i *GroupPolicies) ToGroupPoliciesOutputWithContext(ctx context.Context) GroupPoliciesOutput

func (*GroupPolicies) ToGroupPoliciesPtrOutput 

func (i *GroupPolicies) ToGroupPoliciesPtrOutput() GroupPoliciesPtrOutput

func (*GroupPolicies) ToGroupPoliciesPtrOutputWithContext 

func (i *GroupPolicies) ToGroupPoliciesPtrOutputWithContext(ctx context.Context) GroupPoliciesPtrOutput

type GroupPoliciesArgs 

type GroupPoliciesArgs struct {
	// Defaults to `true`.
	Exclusive pulumi.BoolPtrInput
	// Group ID to assign policies to.
	GroupId pulumi.StringInput
	// List of policies to assign to the group
	Policies pulumi.StringArrayInput
}

The set of arguments for constructing a GroupPolicies resource.

func (GroupPoliciesArgs) ElementType 

func (GroupPoliciesArgs) ElementType() reflect.Type

type GroupPoliciesArray 

type GroupPoliciesArray []GroupPoliciesInput

func (GroupPoliciesArray) ElementType 

func (GroupPoliciesArray) ElementType() reflect.Type

func (GroupPoliciesArray) ToGroupPoliciesArrayOutput 

func (i GroupPoliciesArray) ToGroupPoliciesArrayOutput() GroupPoliciesArrayOutput

func (GroupPoliciesArray) ToGroupPoliciesArrayOutputWithContext 

func (i GroupPoliciesArray) ToGroupPoliciesArrayOutputWithContext(ctx context.Context) GroupPoliciesArrayOutput

type GroupPoliciesArrayInput 

type GroupPoliciesArrayInput interface {
	pulumi.Input

	ToGroupPoliciesArrayOutput() GroupPoliciesArrayOutput
	ToGroupPoliciesArrayOutputWithContext(context.Context) GroupPoliciesArrayOutput
}

GroupPoliciesArrayInput is an input type that accepts GroupPoliciesArray and GroupPoliciesArrayOutput values. You can construct a concrete instance of `GroupPoliciesArrayInput` via: 

GroupPoliciesArray{ GroupPoliciesArgs{...} }

type GroupPoliciesArrayOutput 

type GroupPoliciesArrayOutput struct{ *pulumi.OutputState }

func (GroupPoliciesArrayOutput) ElementType 

func (GroupPoliciesArrayOutput) ElementType() reflect.Type

func (GroupPoliciesArrayOutput) Index 

func (o GroupPoliciesArrayOutput) Index(i pulumi.IntInput) GroupPoliciesOutput

func (GroupPoliciesArrayOutput) ToGroupPoliciesArrayOutput 

func (o GroupPoliciesArrayOutput) ToGroupPoliciesArrayOutput() GroupPoliciesArrayOutput

func (GroupPoliciesArrayOutput) ToGroupPoliciesArrayOutputWithContext 

func (o GroupPoliciesArrayOutput) ToGroupPoliciesArrayOutputWithContext(ctx context.Context) GroupPoliciesArrayOutput

type GroupPoliciesInput 

type GroupPoliciesInput interface {
	pulumi.Input

	ToGroupPoliciesOutput() GroupPoliciesOutput
	ToGroupPoliciesOutputWithContext(ctx context.Context) GroupPoliciesOutput
}

type GroupPoliciesMap 

type GroupPoliciesMap map[string]GroupPoliciesInput

func (GroupPoliciesMap) ElementType 

func (GroupPoliciesMap) ElementType() reflect.Type

func (GroupPoliciesMap) ToGroupPoliciesMapOutput 

func (i GroupPoliciesMap) ToGroupPoliciesMapOutput() GroupPoliciesMapOutput

func (GroupPoliciesMap) ToGroupPoliciesMapOutputWithContext 

func (i GroupPoliciesMap) ToGroupPoliciesMapOutputWithContext(ctx context.Context) GroupPoliciesMapOutput

type GroupPoliciesMapInput 

type GroupPoliciesMapInput interface {
	pulumi.Input

	ToGroupPoliciesMapOutput() GroupPoliciesMapOutput
	ToGroupPoliciesMapOutputWithContext(context.Context) GroupPoliciesMapOutput
}

GroupPoliciesMapInput is an input type that accepts GroupPoliciesMap and GroupPoliciesMapOutput values. You can construct a concrete instance of `GroupPoliciesMapInput` via: 

GroupPoliciesMap{ "key": GroupPoliciesArgs{...} }

type GroupPoliciesMapOutput 

type GroupPoliciesMapOutput struct{ *pulumi.OutputState }

func (GroupPoliciesMapOutput) ElementType 

func (GroupPoliciesMapOutput) ElementType() reflect.Type

func (GroupPoliciesMapOutput) MapIndex 

func (o GroupPoliciesMapOutput) MapIndex(k pulumi.StringInput) GroupPoliciesOutput

func (GroupPoliciesMapOutput) ToGroupPoliciesMapOutput 

func (o GroupPoliciesMapOutput) ToGroupPoliciesMapOutput() GroupPoliciesMapOutput

func (GroupPoliciesMapOutput) ToGroupPoliciesMapOutputWithContext 

func (o GroupPoliciesMapOutput) ToGroupPoliciesMapOutputWithContext(ctx context.Context) GroupPoliciesMapOutput

type GroupPoliciesOutput 

type GroupPoliciesOutput struct{ *pulumi.OutputState }

func (GroupPoliciesOutput) ElementType 

func (GroupPoliciesOutput) ElementType() reflect.Type

func (GroupPoliciesOutput) ToGroupPoliciesOutput 

func (o GroupPoliciesOutput) ToGroupPoliciesOutput() GroupPoliciesOutput

func (GroupPoliciesOutput) ToGroupPoliciesOutputWithContext 

func (o GroupPoliciesOutput) ToGroupPoliciesOutputWithContext(ctx context.Context) GroupPoliciesOutput

func (GroupPoliciesOutput) ToGroupPoliciesPtrOutput 

func (o GroupPoliciesOutput) ToGroupPoliciesPtrOutput() GroupPoliciesPtrOutput

func (GroupPoliciesOutput) ToGroupPoliciesPtrOutputWithContext 

func (o GroupPoliciesOutput) ToGroupPoliciesPtrOutputWithContext(ctx context.Context) GroupPoliciesPtrOutput

type GroupPoliciesPtrInput 

type GroupPoliciesPtrInput interface {
	pulumi.Input

	ToGroupPoliciesPtrOutput() GroupPoliciesPtrOutput
	ToGroupPoliciesPtrOutputWithContext(ctx context.Context) GroupPoliciesPtrOutput
}

type GroupPoliciesPtrOutput 

type GroupPoliciesPtrOutput struct{ *pulumi.OutputState }

func (GroupPoliciesPtrOutput) Elem added in v4.6.0 

func (o GroupPoliciesPtrOutput) Elem() GroupPoliciesOutput

func (GroupPoliciesPtrOutput) ElementType 

func (GroupPoliciesPtrOutput) ElementType() reflect.Type

func (GroupPoliciesPtrOutput) ToGroupPoliciesPtrOutput 

func (o GroupPoliciesPtrOutput) ToGroupPoliciesPtrOutput() GroupPoliciesPtrOutput

func (GroupPoliciesPtrOutput) ToGroupPoliciesPtrOutputWithContext 

func (o GroupPoliciesPtrOutput) ToGroupPoliciesPtrOutputWithContext(ctx context.Context) GroupPoliciesPtrOutput

type GroupPoliciesState 

type GroupPoliciesState struct {
	// Defaults to `true`.
	Exclusive pulumi.BoolPtrInput
	// Group ID to assign policies to.
	GroupId pulumi.StringPtrInput
	// The name of the group that are assigned the policies.
	GroupName pulumi.StringPtrInput
	// List of policies to assign to the group
	Policies pulumi.StringArrayInput
}

func (GroupPoliciesState) ElementType 

func (GroupPoliciesState) ElementType() reflect.Type

type GroupPtrInput 

type GroupPtrInput interface {
	pulumi.Input

	ToGroupPtrOutput() GroupPtrOutput
	ToGroupPtrOutputWithContext(ctx context.Context) GroupPtrOutput
}

type GroupPtrOutput 

type GroupPtrOutput struct{ *pulumi.OutputState }

func (GroupPtrOutput) Elem added in v4.6.0 

func (o GroupPtrOutput) Elem() GroupOutput

func (GroupPtrOutput) ElementType 

func (GroupPtrOutput) ElementType() reflect.Type

func (GroupPtrOutput) ToGroupPtrOutput 

func (o GroupPtrOutput) ToGroupPtrOutput() GroupPtrOutput

func (GroupPtrOutput) ToGroupPtrOutputWithContext 

func (o GroupPtrOutput) ToGroupPtrOutputWithContext(ctx context.Context) GroupPtrOutput

type GroupState 

type GroupState struct {
	// `false` by default. If set to `true`, this resource will ignore any Entity IDs returned from Vault or specified in the resource. You can use `identity.GroupMemberEntityIds` to manage Entity IDs for this group in a decoupled manner.
	ExternalMemberEntityIds pulumi.BoolPtrInput
	// `false` by default. If set to `true`, this resource will ignore any policies returned from Vault or specified in the resource. You can use `identity.GroupPolicies` to manage policies for this group in a decoupled manner.
	ExternalPolicies pulumi.BoolPtrInput
	// A list of Entity IDs to be assigned as group members. Not allowed on `external` groups.
	MemberEntityIds pulumi.StringArrayInput
	// A list of Group IDs to be assigned as group members. Not allowed on `external` groups.
	MemberGroupIds pulumi.StringArrayInput
	// A Map of additional metadata to associate with the group.
	Metadata pulumi.StringMapInput
	// Name of the identity group to create.
	Name pulumi.StringPtrInput
	// A list of policies to apply to the group.
	Policies pulumi.StringArrayInput
	// Type of the group, internal or external. Defaults to `internal`.
	Type pulumi.StringPtrInput
}

func (GroupState) ElementType 

func (GroupState) ElementType() reflect.Type

type LookupEntityArgs 

type LookupEntityArgs struct {
	// ID of the alias.
	AliasId *string `pulumi:"aliasId"`
	// Accessor of the mount to which the alias belongs to.
	// This should be supplied in conjunction with `aliasName`.
	AliasMountAccessor *string `pulumi:"aliasMountAccessor"`
	// Name of the alias. This should be supplied in conjunction with
	// `aliasMountAccessor`.
	AliasName *string `pulumi:"aliasName"`
	// ID of the entity.
	EntityId *string `pulumi:"entityId"`
	// Name of the entity.
	EntityName *string `pulumi:"entityName"`
}

A collection of arguments for invoking getEntity.

type LookupEntityOutputArgs added in v4.6.0 

type LookupEntityOutputArgs struct {
	// ID of the alias.
	AliasId pulumi.StringPtrInput `pulumi:"aliasId"`
	// Accessor of the mount to which the alias belongs to.
	// This should be supplied in conjunction with `aliasName`.
	AliasMountAccessor pulumi.StringPtrInput `pulumi:"aliasMountAccessor"`
	// Name of the alias. This should be supplied in conjunction with
	// `aliasMountAccessor`.
	AliasName pulumi.StringPtrInput `pulumi:"aliasName"`
	// ID of the entity.
	EntityId pulumi.StringPtrInput `pulumi:"entityId"`
	// Name of the entity.
	EntityName pulumi.StringPtrInput `pulumi:"entityName"`
}

A collection of arguments for invoking getEntity.

func (LookupEntityOutputArgs) ElementType added in v4.6.0 

func (LookupEntityOutputArgs) ElementType() reflect.Type

type LookupEntityResult 

type LookupEntityResult struct {
	AliasId            string `pulumi:"aliasId"`
	AliasMountAccessor string `pulumi:"aliasMountAccessor"`
	AliasName          string `pulumi:"aliasName"`
	// A list of entity alias. Structure is documented below.
	Aliases []GetEntityAliasType `pulumi:"aliases"`
	// Creation time of the Alias
	CreationTime string `pulumi:"creationTime"`
	// A string containing the full data payload retrieved from
	// Vault, serialized in JSON format.
	DataJson string `pulumi:"dataJson"`
	// List of Group IDs of which the entity is directly a member of
	DirectGroupIds []string `pulumi:"directGroupIds"`
	// Whether the entity is disabled
	Disabled   bool   `pulumi:"disabled"`
	EntityId   string `pulumi:"entityId"`
	EntityName string `pulumi:"entityName"`
	// List of all Group IDs of which the entity is a member of
	GroupIds []string `pulumi:"groupIds"`
	// The provider-assigned unique ID for this managed resource.
	Id string `pulumi:"id"`
	// List of all Group IDs of which the entity is a member of transitively
	InheritedGroupIds []string `pulumi:"inheritedGroupIds"`
	// Last update time of the alias
	LastUpdateTime string `pulumi:"lastUpdateTime"`
	// Other entity IDs which is merged with this entity
	MergedEntityIds []string `pulumi:"mergedEntityIds"`
	// Arbitrary metadata
	Metadata map[string]interface{} `pulumi:"metadata"`
	// Namespace of which the entity is part of
	NamespaceId string `pulumi:"namespaceId"`
	// List of policies attached to the entity
	Policies []string `pulumi:"policies"`
}

A collection of values returned by getEntity.

func LookupEntity 

func LookupEntity(ctx *pulumi.Context, args *LookupEntityArgs, opts ...pulumi.InvokeOption) (*LookupEntityResult, error)

type LookupEntityResultOutput added in v4.6.0 

type LookupEntityResultOutput struct{ *pulumi.OutputState }

A collection of values returned by getEntity.

func LookupEntityOutput added in v4.6.0 

func LookupEntityOutput(ctx *pulumi.Context, args LookupEntityOutputArgs, opts ...pulumi.InvokeOption) LookupEntityResultOutput

func (LookupEntityResultOutput) AliasId added in v4.6.0 

func (o LookupEntityResultOutput) AliasId() pulumi.StringOutput

func (LookupEntityResultOutput) AliasMountAccessor added in v4.6.0 

func (o LookupEntityResultOutput) AliasMountAccessor() pulumi.StringOutput

func (LookupEntityResultOutput) AliasName added in v4.6.0 

func (o LookupEntityResultOutput) AliasName() pulumi.StringOutput

func (LookupEntityResultOutput) Aliases added in v4.6.0 

func (o LookupEntityResultOutput) Aliases() GetEntityAliasTypeArrayOutput

A list of entity alias. Structure is documented below.

func (LookupEntityResultOutput) CreationTime added in v4.6.0 

func (o LookupEntityResultOutput) CreationTime() pulumi.StringOutput

Creation time of the Alias

func (LookupEntityResultOutput) DataJson added in v4.6.0 

func (o LookupEntityResultOutput) DataJson() pulumi.StringOutput

A string containing the full data payload retrieved from Vault, serialized in JSON format.

func (LookupEntityResultOutput) DirectGroupIds added in v4.6.0 

func (o LookupEntityResultOutput) DirectGroupIds() pulumi.StringArrayOutput

List of Group IDs of which the entity is directly a member of

func (LookupEntityResultOutput) Disabled added in v4.6.0 

func (o LookupEntityResultOutput) Disabled() pulumi.BoolOutput

Whether the entity is disabled

func (LookupEntityResultOutput) ElementType added in v4.6.0 

func (LookupEntityResultOutput) ElementType() reflect.Type

func (LookupEntityResultOutput) EntityId added in v4.6.0 

func (o LookupEntityResultOutput) EntityId() pulumi.StringOutput

func (LookupEntityResultOutput) EntityName added in v4.6.0 

func (o LookupEntityResultOutput) EntityName() pulumi.StringOutput

func (LookupEntityResultOutput) GroupIds added in v4.6.0 

func (o LookupEntityResultOutput) GroupIds() pulumi.StringArrayOutput

List of all Group IDs of which the entity is a member of

func (LookupEntityResultOutput) Id added in v4.6.0 

func (o LookupEntityResultOutput) Id() pulumi.StringOutput

The provider-assigned unique ID for this managed resource.

func (LookupEntityResultOutput) InheritedGroupIds added in v4.6.0 

func (o LookupEntityResultOutput) InheritedGroupIds() pulumi.StringArrayOutput

List of all Group IDs of which the entity is a member of transitively

func (LookupEntityResultOutput) LastUpdateTime added in v4.6.0 

func (o LookupEntityResultOutput) LastUpdateTime() pulumi.StringOutput

Last update time of the alias

func (LookupEntityResultOutput) MergedEntityIds added in v4.6.0 

func (o LookupEntityResultOutput) MergedEntityIds() pulumi.StringArrayOutput

Other entity IDs which is merged with this entity

func (LookupEntityResultOutput) Metadata added in v4.6.0 

func (o LookupEntityResultOutput) Metadata() pulumi.MapOutput

Arbitrary metadata

func (LookupEntityResultOutput) NamespaceId added in v4.6.0 

func (o LookupEntityResultOutput) NamespaceId() pulumi.StringOutput

Namespace of which the entity is part of

func (LookupEntityResultOutput) Policies added in v4.6.0 

func (o LookupEntityResultOutput) Policies() pulumi.StringArrayOutput

List of policies attached to the entity

func (LookupEntityResultOutput) ToLookupEntityResultOutput added in v4.6.0 

func (o LookupEntityResultOutput) ToLookupEntityResultOutput() LookupEntityResultOutput

func (LookupEntityResultOutput) ToLookupEntityResultOutputWithContext added in v4.6.0 

func (o LookupEntityResultOutput) ToLookupEntityResultOutputWithContext(ctx context.Context) LookupEntityResultOutput

type LookupGroupArgs 

type LookupGroupArgs struct {
	// ID of the alias.
	AliasId *string `pulumi:"aliasId"`
	// Accessor of the mount to which the alias belongs to.
	// This should be supplied in conjunction with `aliasName`.
	AliasMountAccessor *string `pulumi:"aliasMountAccessor"`
	// Name of the alias. This should be supplied in conjunction with
	// `aliasMountAccessor`.
	AliasName *string `pulumi:"aliasName"`
	// ID of the group.
	GroupId *string `pulumi:"groupId"`
	// Name of the group.
	GroupName *string `pulumi:"groupName"`
}

A collection of arguments for invoking getGroup.

type LookupGroupOutputArgs added in v4.6.0 

type LookupGroupOutputArgs struct {
	// ID of the alias.
	AliasId pulumi.StringPtrInput `pulumi:"aliasId"`
	// Accessor of the mount to which the alias belongs to.
	// This should be supplied in conjunction with `aliasName`.
	AliasMountAccessor pulumi.StringPtrInput `pulumi:"aliasMountAccessor"`
	// Name of the alias. This should be supplied in conjunction with
	// `aliasMountAccessor`.
	AliasName pulumi.StringPtrInput `pulumi:"aliasName"`
	// ID of the group.
	GroupId pulumi.StringPtrInput `pulumi:"groupId"`
	// Name of the group.
	GroupName pulumi.StringPtrInput `pulumi:"groupName"`
}

A collection of arguments for invoking getGroup.

func (LookupGroupOutputArgs) ElementType added in v4.6.0 

func (LookupGroupOutputArgs) ElementType() reflect.Type

type LookupGroupResult 

type LookupGroupResult struct {
	// Canonical ID of the Alias
	AliasCanonicalId string `pulumi:"aliasCanonicalId"`
	// Creation time of the Alias
	AliasCreationTime string `pulumi:"aliasCreationTime"`
	AliasId           string `pulumi:"aliasId"`
	// Last update time of the alias
	AliasLastUpdateTime string `pulumi:"aliasLastUpdateTime"`
	// List of canonical IDs merged with this alias
	AliasMergedFromCanonicalIds []string `pulumi:"aliasMergedFromCanonicalIds"`
	// Arbitrary metadata
	AliasMetadata      map[string]interface{} `pulumi:"aliasMetadata"`
	AliasMountAccessor string                 `pulumi:"aliasMountAccessor"`
	// Authentication mount path which this alias belongs to
	AliasMountPath string `pulumi:"aliasMountPath"`
	// Authentication mount type which this alias belongs to
	AliasMountType string `pulumi:"aliasMountType"`
	AliasName      string `pulumi:"aliasName"`
	// Creation timestamp of the group
	CreationTime string `pulumi:"creationTime"`
	// A string containing the full data payload retrieved from
	// Vault, serialized in JSON format.
	DataJson  string `pulumi:"dataJson"`
	GroupId   string `pulumi:"groupId"`
	GroupName string `pulumi:"groupName"`
	// The provider-assigned unique ID for this managed resource.
	Id string `pulumi:"id"`
	// Last updated time of the group
	LastUpdateTime string `pulumi:"lastUpdateTime"`
	// List of Entity IDs which are members of this group
	MemberEntityIds []string `pulumi:"memberEntityIds"`
	// List of Group IDs which are members of this group
	MemberGroupIds []string `pulumi:"memberGroupIds"`
	// Arbitrary metadata
	Metadata map[string]interface{} `pulumi:"metadata"`
	// Modify index of the group
	ModifyIndex int `pulumi:"modifyIndex"`
	// Namespace of which the group is part of
	NamespaceId string `pulumi:"namespaceId"`
	// List of Group IDs which are parents of this group.
	ParentGroupIds []string `pulumi:"parentGroupIds"`
	// List of policies attached to the group
	Policies []string `pulumi:"policies"`
	// Type of group
	Type string `pulumi:"type"`
}

A collection of values returned by getGroup.

func LookupGroup 

func LookupGroup(ctx *pulumi.Context, args *LookupGroupArgs, opts ...pulumi.InvokeOption) (*LookupGroupResult, error)

type LookupGroupResultOutput added in v4.6.0 

type LookupGroupResultOutput struct{ *pulumi.OutputState }

A collection of values returned by getGroup.

func LookupGroupOutput added in v4.6.0 

func LookupGroupOutput(ctx *pulumi.Context, args LookupGroupOutputArgs, opts ...pulumi.InvokeOption) LookupGroupResultOutput

func (LookupGroupResultOutput) AliasCanonicalId added in v4.6.0 

func (o LookupGroupResultOutput) AliasCanonicalId() pulumi.StringOutput

Canonical ID of the Alias

func (LookupGroupResultOutput) AliasCreationTime added in v4.6.0 

func (o LookupGroupResultOutput) AliasCreationTime() pulumi.StringOutput

Creation time of the Alias

func (LookupGroupResultOutput) AliasId added in v4.6.0 

func (o LookupGroupResultOutput) AliasId() pulumi.StringOutput

func (LookupGroupResultOutput) AliasLastUpdateTime added in v4.6.0 

func (o LookupGroupResultOutput) AliasLastUpdateTime() pulumi.StringOutput

Last update time of the alias

func (LookupGroupResultOutput) AliasMergedFromCanonicalIds added in v4.6.0 

func (o LookupGroupResultOutput) AliasMergedFromCanonicalIds() pulumi.StringArrayOutput

List of canonical IDs merged with this alias

func (LookupGroupResultOutput) AliasMetadata added in v4.6.0 

func (o LookupGroupResultOutput) AliasMetadata() pulumi.MapOutput

Arbitrary metadata

func (LookupGroupResultOutput) AliasMountAccessor added in v4.6.0 

func (o LookupGroupResultOutput) AliasMountAccessor() pulumi.StringOutput

func (LookupGroupResultOutput) AliasMountPath added in v4.6.0 

func (o LookupGroupResultOutput) AliasMountPath() pulumi.StringOutput

Authentication mount path which this alias belongs to

func (LookupGroupResultOutput) AliasMountType added in v4.6.0 

func (o LookupGroupResultOutput) AliasMountType() pulumi.StringOutput

Authentication mount type which this alias belongs to

func (LookupGroupResultOutput) AliasName added in v4.6.0 

func (o LookupGroupResultOutput) AliasName() pulumi.StringOutput

func (LookupGroupResultOutput) CreationTime added in v4.6.0 

func (o LookupGroupResultOutput) CreationTime() pulumi.StringOutput

Creation timestamp of the group

func (LookupGroupResultOutput) DataJson added in v4.6.0 

func (o LookupGroupResultOutput) DataJson() pulumi.StringOutput

A string containing the full data payload retrieved from Vault, serialized in JSON format.

func (LookupGroupResultOutput) ElementType added in v4.6.0 

func (LookupGroupResultOutput) ElementType() reflect.Type

func (LookupGroupResultOutput) GroupId added in v4.6.0 

func (o LookupGroupResultOutput) GroupId() pulumi.StringOutput

func (LookupGroupResultOutput) GroupName added in v4.6.0 

func (o LookupGroupResultOutput) GroupName() pulumi.StringOutput

func (LookupGroupResultOutput) Id added in v4.6.0 

func (o LookupGroupResultOutput) Id() pulumi.StringOutput

The provider-assigned unique ID for this managed resource.

func (LookupGroupResultOutput) LastUpdateTime added in v4.6.0 

func (o LookupGroupResultOutput) LastUpdateTime() pulumi.StringOutput

Last updated time of the group

func (LookupGroupResultOutput) MemberEntityIds added in v4.6.0 

func (o LookupGroupResultOutput) MemberEntityIds() pulumi.StringArrayOutput

List of Entity IDs which are members of this group

func (LookupGroupResultOutput) MemberGroupIds added in v4.6.0 

func (o LookupGroupResultOutput) MemberGroupIds() pulumi.StringArrayOutput

List of Group IDs which are members of this group

func (LookupGroupResultOutput) Metadata added in v4.6.0 

func (o LookupGroupResultOutput) Metadata() pulumi.MapOutput

Arbitrary metadata

func (LookupGroupResultOutput) ModifyIndex added in v4.6.0 

func (o LookupGroupResultOutput) ModifyIndex() pulumi.IntOutput

Modify index of the group

func (LookupGroupResultOutput) NamespaceId added in v4.6.0 

func (o LookupGroupResultOutput) NamespaceId() pulumi.StringOutput

Namespace of which the group is part of

func (LookupGroupResultOutput) ParentGroupIds added in v4.6.0 

func (o LookupGroupResultOutput) ParentGroupIds() pulumi.StringArrayOutput

List of Group IDs which are parents of this group.

func (LookupGroupResultOutput) Policies added in v4.6.0 

func (o LookupGroupResultOutput) Policies() pulumi.StringArrayOutput

List of policies attached to the group

func (LookupGroupResultOutput) ToLookupGroupResultOutput added in v4.6.0 

func (o LookupGroupResultOutput) ToLookupGroupResultOutput() LookupGroupResultOutput

func (LookupGroupResultOutput) ToLookupGroupResultOutputWithContext added in v4.6.0 

func (o LookupGroupResultOutput) ToLookupGroupResultOutputWithContext(ctx context.Context) LookupGroupResultOutput

func (LookupGroupResultOutput) Type added in v4.6.0 

func (o LookupGroupResultOutput) Type() pulumi.StringOutput

Type of group

type Oidc 

type Oidc struct {
	pulumi.CustomResourceState

	// Issuer URL to be used in the iss claim of the token. If not set, Vault's
	// `apiAddr` will be used. The issuer is a case sensitive URL using the https scheme that contains
	// scheme, host, and optionally, port number and path components, but no query or fragment
	// components.
	Issuer pulumi.StringOutput `pulumi:"issuer"`
}

Configure the [Identity Tokens Backend](https://www.vaultproject.io/docs/secrets/identity/index.html#identity-tokens).

The Identity secrets engine is the identity management solution for Vault. It internally maintains the clients who are recognized by Vault.

> **NOTE:** Each Vault server may only have one Identity Tokens Backend configuration. Multiple configurations of the resource against the same Vault server will cause a perpetual difference.

## Example Usage

```go package main

import ( 

"github.com/pulumi/pulumi-vault/sdk/v4/go/vault/identity"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"

) 

func main() {
	pulumi.Run(func(ctx *pulumi.Context) error {
		_, err := identity.NewOidc(ctx, "server", &identity.OidcArgs{
			Issuer: pulumi.String("https://www.acme.com"),
		})
		if err != nil {
			return err
		}
		return nil
	})
}

```

func GetOidc 

func GetOidc(ctx *pulumi.Context,
	name string, id pulumi.IDInput, state *OidcState, opts ...pulumi.ResourceOption) (*Oidc, error)

GetOidc gets an existing Oidc resource's state with the given name, ID, and optional state properties that are used to uniquely qualify the lookup (nil if not required).

func NewOidc 

func NewOidc(ctx *pulumi.Context,
	name string, args *OidcArgs, opts ...pulumi.ResourceOption) (*Oidc, error)

NewOidc registers a new resource with the given unique name, arguments, and options.

func (*Oidc) ElementType 

func (*Oidc) ElementType() reflect.Type

func (*Oidc) ToOidcOutput 

func (i *Oidc) ToOidcOutput() OidcOutput

func (*Oidc) ToOidcOutputWithContext 

func (i *Oidc) ToOidcOutputWithContext(ctx context.Context) OidcOutput

func (*Oidc) ToOidcPtrOutput 

func (i *Oidc) ToOidcPtrOutput() OidcPtrOutput

func (*Oidc) ToOidcPtrOutputWithContext 

func (i *Oidc) ToOidcPtrOutputWithContext(ctx context.Context) OidcPtrOutput

type OidcArgs 

type OidcArgs struct {
	// Issuer URL to be used in the iss claim of the token. If not set, Vault's
	// `apiAddr` will be used. The issuer is a case sensitive URL using the https scheme that contains
	// scheme, host, and optionally, port number and path components, but no query or fragment
	// components.
	Issuer pulumi.StringPtrInput
}

The set of arguments for constructing a Oidc resource.

func (OidcArgs) ElementType 

func (OidcArgs) ElementType() reflect.Type

type OidcArray 

type OidcArray []OidcInput

func (OidcArray) ElementType 

func (OidcArray) ElementType() reflect.Type

func (OidcArray) ToOidcArrayOutput 

func (i OidcArray) ToOidcArrayOutput() OidcArrayOutput

func (OidcArray) ToOidcArrayOutputWithContext 

func (i OidcArray) ToOidcArrayOutputWithContext(ctx context.Context) OidcArrayOutput

type OidcArrayInput 

type OidcArrayInput interface {
	pulumi.Input

	ToOidcArrayOutput() OidcArrayOutput
	ToOidcArrayOutputWithContext(context.Context) OidcArrayOutput
}

OidcArrayInput is an input type that accepts OidcArray and OidcArrayOutput values. You can construct a concrete instance of `OidcArrayInput` via: 

OidcArray{ OidcArgs{...} }

type OidcArrayOutput 

type OidcArrayOutput struct{ *pulumi.OutputState }

func (OidcArrayOutput) ElementType 

func (OidcArrayOutput) ElementType() reflect.Type

func (OidcArrayOutput) Index 

func (o OidcArrayOutput) Index(i pulumi.IntInput) OidcOutput

func (OidcArrayOutput) ToOidcArrayOutput 

func (o OidcArrayOutput) ToOidcArrayOutput() OidcArrayOutput

func (OidcArrayOutput) ToOidcArrayOutputWithContext 

func (o OidcArrayOutput) ToOidcArrayOutputWithContext(ctx context.Context) OidcArrayOutput

type OidcInput 

type OidcInput interface {
	pulumi.Input

	ToOidcOutput() OidcOutput
	ToOidcOutputWithContext(ctx context.Context) OidcOutput
}

type OidcKey 

type OidcKey struct {
	pulumi.CustomResourceState

	// Signing algorithm to use. Signing algorithm to use.
	// Allowed values are: RS256 (default), RS384, RS512, ES256, ES384, ES512, EdDSA.
	Algorithm pulumi.StringPtrOutput `pulumi:"algorithm"`
	// Array of role client ids allowed to use this key for signing. If empty, no roles are allowed. If "*", all roles are
	// allowed.
	AllowedClientIds pulumi.StringArrayOutput `pulumi:"allowedClientIds"`
	// Name of the OIDC Key to create.
	Name pulumi.StringOutput `pulumi:"name"`
	// How often to generate a new signing key in number of seconds
	RotationPeriod pulumi.IntPtrOutput `pulumi:"rotationPeriod"`
	// "Controls how long the public portion of a signing key will be
	// available for verification after being rotated in seconds.
	VerificationTtl pulumi.IntPtrOutput `pulumi:"verificationTtl"`
}

## Import

The key can be imported with the key name, for example

```sh 

$ pulumi import vault:identity/oidcKey:OidcKey key key

```

func GetOidcKey 

func GetOidcKey(ctx *pulumi.Context,
	name string, id pulumi.IDInput, state *OidcKeyState, opts ...pulumi.ResourceOption) (*OidcKey, error)

GetOidcKey gets an existing OidcKey resource's state with the given name, ID, and optional state properties that are used to uniquely qualify the lookup (nil if not required).

func NewOidcKey 

func NewOidcKey(ctx *pulumi.Context,
	name string, args *OidcKeyArgs, opts ...pulumi.ResourceOption) (*OidcKey, error)

NewOidcKey registers a new resource with the given unique name, arguments, and options.

func (*OidcKey) ElementType 

func (*OidcKey) ElementType() reflect.Type

func (*OidcKey) ToOidcKeyOutput 

func (i *OidcKey) ToOidcKeyOutput() OidcKeyOutput

func (*OidcKey) ToOidcKeyOutputWithContext 

func (i *OidcKey) ToOidcKeyOutputWithContext(ctx context.Context) OidcKeyOutput

func (*OidcKey) ToOidcKeyPtrOutput 

func (i *OidcKey) ToOidcKeyPtrOutput() OidcKeyPtrOutput

func (*OidcKey) ToOidcKeyPtrOutputWithContext 

func (i *OidcKey) ToOidcKeyPtrOutputWithContext(ctx context.Context) OidcKeyPtrOutput

type OidcKeyAllowedClientID 

type OidcKeyAllowedClientID struct {
	pulumi.CustomResourceState

	// Client ID to allow usage with the OIDC named key
	AllowedClientId pulumi.StringOutput `pulumi:"allowedClientId"`
	// Name of the OIDC Key allow the Client ID.
	KeyName pulumi.StringOutput `pulumi:"keyName"`
}

func GetOidcKeyAllowedClientID 

func GetOidcKeyAllowedClientID(ctx *pulumi.Context,
	name string, id pulumi.IDInput, state *OidcKeyAllowedClientIDState, opts ...pulumi.ResourceOption) (*OidcKeyAllowedClientID, error)

GetOidcKeyAllowedClientID gets an existing OidcKeyAllowedClientID resource's state with the given name, ID, and optional state properties that are used to uniquely qualify the lookup (nil if not required).

func NewOidcKeyAllowedClientID 

func NewOidcKeyAllowedClientID(ctx *pulumi.Context,
	name string, args *OidcKeyAllowedClientIDArgs, opts ...pulumi.ResourceOption) (*OidcKeyAllowedClientID, error)

NewOidcKeyAllowedClientID registers a new resource with the given unique name, arguments, and options.

func (*OidcKeyAllowedClientID) ElementType 

func (*OidcKeyAllowedClientID) ElementType() reflect.Type

func (*OidcKeyAllowedClientID) ToOidcKeyAllowedClientIDOutput 

func (i *OidcKeyAllowedClientID) ToOidcKeyAllowedClientIDOutput() OidcKeyAllowedClientIDOutput

func (*OidcKeyAllowedClientID) ToOidcKeyAllowedClientIDOutputWithContext 

func (i *OidcKeyAllowedClientID) ToOidcKeyAllowedClientIDOutputWithContext(ctx context.Context) OidcKeyAllowedClientIDOutput

func (*OidcKeyAllowedClientID) ToOidcKeyAllowedClientIDPtrOutput 

func (i *OidcKeyAllowedClientID) ToOidcKeyAllowedClientIDPtrOutput() OidcKeyAllowedClientIDPtrOutput

func (*OidcKeyAllowedClientID) ToOidcKeyAllowedClientIDPtrOutputWithContext 

func (i *OidcKeyAllowedClientID) ToOidcKeyAllowedClientIDPtrOutputWithContext(ctx context.Context) OidcKeyAllowedClientIDPtrOutput

type OidcKeyAllowedClientIDArgs 

type OidcKeyAllowedClientIDArgs struct {
	// Client ID to allow usage with the OIDC named key
	AllowedClientId pulumi.StringInput
	// Name of the OIDC Key allow the Client ID.
	KeyName pulumi.StringInput
}

The set of arguments for constructing a OidcKeyAllowedClientID resource.

func (OidcKeyAllowedClientIDArgs) ElementType 

func (OidcKeyAllowedClientIDArgs) ElementType() reflect.Type

type OidcKeyAllowedClientIDArray 

type OidcKeyAllowedClientIDArray []OidcKeyAllowedClientIDInput

func (OidcKeyAllowedClientIDArray) ElementType 

func (OidcKeyAllowedClientIDArray) ElementType() reflect.Type

func (OidcKeyAllowedClientIDArray) ToOidcKeyAllowedClientIDArrayOutput 

func (i OidcKeyAllowedClientIDArray) ToOidcKeyAllowedClientIDArrayOutput() OidcKeyAllowedClientIDArrayOutput

func (OidcKeyAllowedClientIDArray) ToOidcKeyAllowedClientIDArrayOutputWithContext 

func (i OidcKeyAllowedClientIDArray) ToOidcKeyAllowedClientIDArrayOutputWithContext(ctx context.Context) OidcKeyAllowedClientIDArrayOutput

type OidcKeyAllowedClientIDArrayInput 

type OidcKeyAllowedClientIDArrayInput interface {
	pulumi.Input

	ToOidcKeyAllowedClientIDArrayOutput() OidcKeyAllowedClientIDArrayOutput
	ToOidcKeyAllowedClientIDArrayOutputWithContext(context.Context) OidcKeyAllowedClientIDArrayOutput
}

OidcKeyAllowedClientIDArrayInput is an input type that accepts OidcKeyAllowedClientIDArray and OidcKeyAllowedClientIDArrayOutput values. You can construct a concrete instance of `OidcKeyAllowedClientIDArrayInput` via: 

OidcKeyAllowedClientIDArray{ OidcKeyAllowedClientIDArgs{...} }

type OidcKeyAllowedClientIDArrayOutput 

type OidcKeyAllowedClientIDArrayOutput struct{ *pulumi.OutputState }

func (OidcKeyAllowedClientIDArrayOutput) ElementType 

func (OidcKeyAllowedClientIDArrayOutput) ElementType() reflect.Type

func (OidcKeyAllowedClientIDArrayOutput) Index 

func (o OidcKeyAllowedClientIDArrayOutput) Index(i pulumi.IntInput) OidcKeyAllowedClientIDOutput

func (OidcKeyAllowedClientIDArrayOutput) ToOidcKeyAllowedClientIDArrayOutput 

func (o OidcKeyAllowedClientIDArrayOutput) ToOidcKeyAllowedClientIDArrayOutput() OidcKeyAllowedClientIDArrayOutput

func (OidcKeyAllowedClientIDArrayOutput) ToOidcKeyAllowedClientIDArrayOutputWithContext 

func (o OidcKeyAllowedClientIDArrayOutput) ToOidcKeyAllowedClientIDArrayOutputWithContext(ctx context.Context) OidcKeyAllowedClientIDArrayOutput

type OidcKeyAllowedClientIDInput 

type OidcKeyAllowedClientIDInput interface {
	pulumi.Input

	ToOidcKeyAllowedClientIDOutput() OidcKeyAllowedClientIDOutput
	ToOidcKeyAllowedClientIDOutputWithContext(ctx context.Context) OidcKeyAllowedClientIDOutput
}

type OidcKeyAllowedClientIDMap 

type OidcKeyAllowedClientIDMap map[string]OidcKeyAllowedClientIDInput

func (OidcKeyAllowedClientIDMap) ElementType 

func (OidcKeyAllowedClientIDMap) ElementType() reflect.Type

func (OidcKeyAllowedClientIDMap) ToOidcKeyAllowedClientIDMapOutput 

func (i OidcKeyAllowedClientIDMap) ToOidcKeyAllowedClientIDMapOutput() OidcKeyAllowedClientIDMapOutput

func (OidcKeyAllowedClientIDMap) ToOidcKeyAllowedClientIDMapOutputWithContext 

func (i OidcKeyAllowedClientIDMap) ToOidcKeyAllowedClientIDMapOutputWithContext(ctx context.Context) OidcKeyAllowedClientIDMapOutput

type OidcKeyAllowedClientIDMapInput 

type OidcKeyAllowedClientIDMapInput interface {
	pulumi.Input

	ToOidcKeyAllowedClientIDMapOutput() OidcKeyAllowedClientIDMapOutput
	ToOidcKeyAllowedClientIDMapOutputWithContext(context.Context) OidcKeyAllowedClientIDMapOutput
}

OidcKeyAllowedClientIDMapInput is an input type that accepts OidcKeyAllowedClientIDMap and OidcKeyAllowedClientIDMapOutput values. You can construct a concrete instance of `OidcKeyAllowedClientIDMapInput` via: 

OidcKeyAllowedClientIDMap{ "key": OidcKeyAllowedClientIDArgs{...} }

type OidcKeyAllowedClientIDMapOutput 

type OidcKeyAllowedClientIDMapOutput struct{ *pulumi.OutputState }

func (OidcKeyAllowedClientIDMapOutput) ElementType 

func (OidcKeyAllowedClientIDMapOutput) ElementType() reflect.Type

func (OidcKeyAllowedClientIDMapOutput) MapIndex 

func (o OidcKeyAllowedClientIDMapOutput) MapIndex(k pulumi.StringInput) OidcKeyAllowedClientIDOutput

func (OidcKeyAllowedClientIDMapOutput) ToOidcKeyAllowedClientIDMapOutput 

func (o OidcKeyAllowedClientIDMapOutput) ToOidcKeyAllowedClientIDMapOutput() OidcKeyAllowedClientIDMapOutput

func (OidcKeyAllowedClientIDMapOutput) ToOidcKeyAllowedClientIDMapOutputWithContext 

func (o OidcKeyAllowedClientIDMapOutput) ToOidcKeyAllowedClientIDMapOutputWithContext(ctx context.Context) OidcKeyAllowedClientIDMapOutput

type OidcKeyAllowedClientIDOutput 

type OidcKeyAllowedClientIDOutput struct{ *pulumi.OutputState }

func (OidcKeyAllowedClientIDOutput) ElementType 

func (OidcKeyAllowedClientIDOutput) ElementType() reflect.Type

func (OidcKeyAllowedClientIDOutput) ToOidcKeyAllowedClientIDOutput 

func (o OidcKeyAllowedClientIDOutput) ToOidcKeyAllowedClientIDOutput() OidcKeyAllowedClientIDOutput

func (OidcKeyAllowedClientIDOutput) ToOidcKeyAllowedClientIDOutputWithContext 

func (o OidcKeyAllowedClientIDOutput) ToOidcKeyAllowedClientIDOutputWithContext(ctx context.Context) OidcKeyAllowedClientIDOutput

func (OidcKeyAllowedClientIDOutput) ToOidcKeyAllowedClientIDPtrOutput 

func (o OidcKeyAllowedClientIDOutput) ToOidcKeyAllowedClientIDPtrOutput() OidcKeyAllowedClientIDPtrOutput

func (OidcKeyAllowedClientIDOutput) ToOidcKeyAllowedClientIDPtrOutputWithContext 

func (o OidcKeyAllowedClientIDOutput) ToOidcKeyAllowedClientIDPtrOutputWithContext(ctx context.Context) OidcKeyAllowedClientIDPtrOutput

type OidcKeyAllowedClientIDPtrInput 

type OidcKeyAllowedClientIDPtrInput interface {
	pulumi.Input

	ToOidcKeyAllowedClientIDPtrOutput() OidcKeyAllowedClientIDPtrOutput
	ToOidcKeyAllowedClientIDPtrOutputWithContext(ctx context.Context) OidcKeyAllowedClientIDPtrOutput
}

type OidcKeyAllowedClientIDPtrOutput 

type OidcKeyAllowedClientIDPtrOutput struct{ *pulumi.OutputState }

func (OidcKeyAllowedClientIDPtrOutput) Elem added in v4.6.0 

func (o OidcKeyAllowedClientIDPtrOutput) Elem() OidcKeyAllowedClientIDOutput

func (OidcKeyAllowedClientIDPtrOutput) ElementType 

func (OidcKeyAllowedClientIDPtrOutput) ElementType() reflect.Type

func (OidcKeyAllowedClientIDPtrOutput) ToOidcKeyAllowedClientIDPtrOutput 

func (o OidcKeyAllowedClientIDPtrOutput) ToOidcKeyAllowedClientIDPtrOutput() OidcKeyAllowedClientIDPtrOutput

func (OidcKeyAllowedClientIDPtrOutput) ToOidcKeyAllowedClientIDPtrOutputWithContext 

func (o OidcKeyAllowedClientIDPtrOutput) ToOidcKeyAllowedClientIDPtrOutputWithContext(ctx context.Context) OidcKeyAllowedClientIDPtrOutput

type OidcKeyAllowedClientIDState 

type OidcKeyAllowedClientIDState struct {
	// Client ID to allow usage with the OIDC named key
	AllowedClientId pulumi.StringPtrInput
	// Name of the OIDC Key allow the Client ID.
	KeyName pulumi.StringPtrInput
}

func (OidcKeyAllowedClientIDState) ElementType 

func (OidcKeyAllowedClientIDState) ElementType() reflect.Type

type OidcKeyArgs 

type OidcKeyArgs struct {
	// Signing algorithm to use. Signing algorithm to use.
	// Allowed values are: RS256 (default), RS384, RS512, ES256, ES384, ES512, EdDSA.
	Algorithm pulumi.StringPtrInput
	// Array of role client ids allowed to use this key for signing. If empty, no roles are allowed. If "*", all roles are
	// allowed.
	AllowedClientIds pulumi.StringArrayInput
	// Name of the OIDC Key to create.
	Name pulumi.StringPtrInput
	// How often to generate a new signing key in number of seconds
	RotationPeriod pulumi.IntPtrInput
	// "Controls how long the public portion of a signing key will be
	// available for verification after being rotated in seconds.
	VerificationTtl pulumi.IntPtrInput
}

The set of arguments for constructing a OidcKey resource.

func (OidcKeyArgs) ElementType 

func (OidcKeyArgs) ElementType() reflect.Type

type OidcKeyArray 

type OidcKeyArray []OidcKeyInput

func (OidcKeyArray) ElementType 

func (OidcKeyArray) ElementType() reflect.Type

func (OidcKeyArray) ToOidcKeyArrayOutput 

func (i OidcKeyArray) ToOidcKeyArrayOutput() OidcKeyArrayOutput

func (OidcKeyArray) ToOidcKeyArrayOutputWithContext 

func (i OidcKeyArray) ToOidcKeyArrayOutputWithContext(ctx context.Context) OidcKeyArrayOutput

type OidcKeyArrayInput 

type OidcKeyArrayInput interface {
	pulumi.Input

	ToOidcKeyArrayOutput() OidcKeyArrayOutput
	ToOidcKeyArrayOutputWithContext(context.Context) OidcKeyArrayOutput
}

OidcKeyArrayInput is an input type that accepts OidcKeyArray and OidcKeyArrayOutput values. You can construct a concrete instance of `OidcKeyArrayInput` via: 

OidcKeyArray{ OidcKeyArgs{...} }

type OidcKeyArrayOutput 

type OidcKeyArrayOutput struct{ *pulumi.OutputState }

func (OidcKeyArrayOutput) ElementType 

func (OidcKeyArrayOutput) ElementType() reflect.Type

func (OidcKeyArrayOutput) Index 

func (o OidcKeyArrayOutput) Index(i pulumi.IntInput) OidcKeyOutput

func (OidcKeyArrayOutput) ToOidcKeyArrayOutput 

func (o OidcKeyArrayOutput) ToOidcKeyArrayOutput() OidcKeyArrayOutput

func (OidcKeyArrayOutput) ToOidcKeyArrayOutputWithContext 

func (o OidcKeyArrayOutput) ToOidcKeyArrayOutputWithContext(ctx context.Context) OidcKeyArrayOutput

type OidcKeyInput 

type OidcKeyInput interface {
	pulumi.Input

	ToOidcKeyOutput() OidcKeyOutput
	ToOidcKeyOutputWithContext(ctx context.Context) OidcKeyOutput
}

type OidcKeyMap 

type OidcKeyMap map[string]OidcKeyInput

func (OidcKeyMap) ElementType 

func (OidcKeyMap) ElementType() reflect.Type

func (OidcKeyMap) ToOidcKeyMapOutput 

func (i OidcKeyMap) ToOidcKeyMapOutput() OidcKeyMapOutput

func (OidcKeyMap) ToOidcKeyMapOutputWithContext 

func (i OidcKeyMap) ToOidcKeyMapOutputWithContext(ctx context.Context) OidcKeyMapOutput

type OidcKeyMapInput 

type OidcKeyMapInput interface {
	pulumi.Input

	ToOidcKeyMapOutput() OidcKeyMapOutput
	ToOidcKeyMapOutputWithContext(context.Context) OidcKeyMapOutput
}

OidcKeyMapInput is an input type that accepts OidcKeyMap and OidcKeyMapOutput values. You can construct a concrete instance of `OidcKeyMapInput` via: 

OidcKeyMap{ "key": OidcKeyArgs{...} }

type OidcKeyMapOutput 

type OidcKeyMapOutput struct{ *pulumi.OutputState }

func (OidcKeyMapOutput) ElementType 

func (OidcKeyMapOutput) ElementType() reflect.Type

func (OidcKeyMapOutput) MapIndex 

func (o OidcKeyMapOutput) MapIndex(k pulumi.StringInput) OidcKeyOutput

func (OidcKeyMapOutput) ToOidcKeyMapOutput 

func (o OidcKeyMapOutput) ToOidcKeyMapOutput() OidcKeyMapOutput

func (OidcKeyMapOutput) ToOidcKeyMapOutputWithContext 

func (o OidcKeyMapOutput) ToOidcKeyMapOutputWithContext(ctx context.Context) OidcKeyMapOutput

type OidcKeyOutput 

type OidcKeyOutput struct{ *pulumi.OutputState }

func (OidcKeyOutput) ElementType 

func (OidcKeyOutput) ElementType() reflect.Type

func (OidcKeyOutput) ToOidcKeyOutput 

func (o OidcKeyOutput) ToOidcKeyOutput() OidcKeyOutput

func (OidcKeyOutput) ToOidcKeyOutputWithContext 

func (o OidcKeyOutput) ToOidcKeyOutputWithContext(ctx context.Context) OidcKeyOutput

func (OidcKeyOutput) ToOidcKeyPtrOutput 

func (o OidcKeyOutput) ToOidcKeyPtrOutput() OidcKeyPtrOutput

func (OidcKeyOutput) ToOidcKeyPtrOutputWithContext 

func (o OidcKeyOutput) ToOidcKeyPtrOutputWithContext(ctx context.Context) OidcKeyPtrOutput

type OidcKeyPtrInput 

type OidcKeyPtrInput interface {
	pulumi.Input

	ToOidcKeyPtrOutput() OidcKeyPtrOutput
	ToOidcKeyPtrOutputWithContext(ctx context.Context) OidcKeyPtrOutput
}

type OidcKeyPtrOutput 

type OidcKeyPtrOutput struct{ *pulumi.OutputState }

func (OidcKeyPtrOutput) Elem added in v4.6.0 

func (o OidcKeyPtrOutput) Elem() OidcKeyOutput

func (OidcKeyPtrOutput) ElementType 

func (OidcKeyPtrOutput) ElementType() reflect.Type

func (OidcKeyPtrOutput) ToOidcKeyPtrOutput 

func (o OidcKeyPtrOutput) ToOidcKeyPtrOutput() OidcKeyPtrOutput

func (OidcKeyPtrOutput) ToOidcKeyPtrOutputWithContext 

func (o OidcKeyPtrOutput) ToOidcKeyPtrOutputWithContext(ctx context.Context) OidcKeyPtrOutput

type OidcKeyState 

type OidcKeyState struct {
	// Signing algorithm to use. Signing algorithm to use.
	// Allowed values are: RS256 (default), RS384, RS512, ES256, ES384, ES512, EdDSA.
	Algorithm pulumi.StringPtrInput
	// Array of role client ids allowed to use this key for signing. If empty, no roles are allowed. If "*", all roles are
	// allowed.
	AllowedClientIds pulumi.StringArrayInput
	// Name of the OIDC Key to create.
	Name pulumi.StringPtrInput
	// How often to generate a new signing key in number of seconds
	RotationPeriod pulumi.IntPtrInput
	// "Controls how long the public portion of a signing key will be
	// available for verification after being rotated in seconds.
	VerificationTtl pulumi.IntPtrInput
}

func (OidcKeyState) ElementType 

func (OidcKeyState) ElementType() reflect.Type

type OidcMap 

type OidcMap map[string]OidcInput

func (OidcMap) ElementType 

func (OidcMap) ElementType() reflect.Type

func (OidcMap) ToOidcMapOutput 

func (i OidcMap) ToOidcMapOutput() OidcMapOutput

func (OidcMap) ToOidcMapOutputWithContext 

func (i OidcMap) ToOidcMapOutputWithContext(ctx context.Context) OidcMapOutput

type OidcMapInput 

type OidcMapInput interface {
	pulumi.Input

	ToOidcMapOutput() OidcMapOutput
	ToOidcMapOutputWithContext(context.Context) OidcMapOutput
}

OidcMapInput is an input type that accepts OidcMap and OidcMapOutput values. You can construct a concrete instance of `OidcMapInput` via: 

OidcMap{ "key": OidcArgs{...} }

type OidcMapOutput 

type OidcMapOutput struct{ *pulumi.OutputState }

func (OidcMapOutput) ElementType 

func (OidcMapOutput) ElementType() reflect.Type

func (OidcMapOutput) MapIndex 

func (o OidcMapOutput) MapIndex(k pulumi.StringInput) OidcOutput

func (OidcMapOutput) ToOidcMapOutput 

func (o OidcMapOutput) ToOidcMapOutput() OidcMapOutput

func (OidcMapOutput) ToOidcMapOutputWithContext 

func (o OidcMapOutput) ToOidcMapOutputWithContext(ctx context.Context) OidcMapOutput

type OidcOutput 

type OidcOutput struct{ *pulumi.OutputState }

func (OidcOutput) ElementType 

func (OidcOutput) ElementType() reflect.Type

func (OidcOutput) ToOidcOutput 

func (o OidcOutput) ToOidcOutput() OidcOutput

func (OidcOutput) ToOidcOutputWithContext 

func (o OidcOutput) ToOidcOutputWithContext(ctx context.Context) OidcOutput

func (OidcOutput) ToOidcPtrOutput 

func (o OidcOutput) ToOidcPtrOutput() OidcPtrOutput

func (OidcOutput) ToOidcPtrOutputWithContext 

func (o OidcOutput) ToOidcPtrOutputWithContext(ctx context.Context) OidcPtrOutput

type OidcPtrInput 

type OidcPtrInput interface {
	pulumi.Input

	ToOidcPtrOutput() OidcPtrOutput
	ToOidcPtrOutputWithContext(ctx context.Context) OidcPtrOutput
}

type OidcPtrOutput 

type OidcPtrOutput struct{ *pulumi.OutputState }

func (OidcPtrOutput) Elem added in v4.6.0 

func (o OidcPtrOutput) Elem() OidcOutput

func (OidcPtrOutput) ElementType 

func (OidcPtrOutput) ElementType() reflect.Type

func (OidcPtrOutput) ToOidcPtrOutput 

func (o OidcPtrOutput) ToOidcPtrOutput() OidcPtrOutput

func (OidcPtrOutput) ToOidcPtrOutputWithContext 

func (o OidcPtrOutput) ToOidcPtrOutputWithContext(ctx context.Context) OidcPtrOutput

type OidcRole 

type OidcRole struct {
	pulumi.CustomResourceState

	// The value that will be included in the `aud` field of all the OIDC identity
	// tokens issued by this role
	ClientId pulumi.StringOutput `pulumi:"clientId"`
	// A configured named key, the key must already exist
	// before tokens can be issued.
	Key pulumi.StringOutput `pulumi:"key"`
	// Name of the OIDC Role to create.
	Name pulumi.StringOutput `pulumi:"name"`
	// The template string to use for generating tokens. This may be in
	// string-ified JSON or base64 format. See the
	// [documentation](https://www.vaultproject.io/docs/secrets/identity/index.html#token-contents-and-templates)
	// for the template format.
	Template pulumi.StringPtrOutput `pulumi:"template"`
	// TTL of the tokens generated against the role in number of seconds.
	Ttl pulumi.IntPtrOutput `pulumi:"ttl"`
}

## Import

The key can be imported with the role name, for example

```sh 

$ pulumi import vault:identity/oidcRole:OidcRole role role

```

func GetOidcRole 

func GetOidcRole(ctx *pulumi.Context,
	name string, id pulumi.IDInput, state *OidcRoleState, opts ...pulumi.ResourceOption) (*OidcRole, error)

GetOidcRole gets an existing OidcRole resource's state with the given name, ID, and optional state properties that are used to uniquely qualify the lookup (nil if not required).

func NewOidcRole 

func NewOidcRole(ctx *pulumi.Context,
	name string, args *OidcRoleArgs, opts ...pulumi.ResourceOption) (*OidcRole, error)

NewOidcRole registers a new resource with the given unique name, arguments, and options.

func (*OidcRole) ElementType 

func (*OidcRole) ElementType() reflect.Type

func (*OidcRole) ToOidcRoleOutput 

func (i *OidcRole) ToOidcRoleOutput() OidcRoleOutput

func (*OidcRole) ToOidcRoleOutputWithContext 

func (i *OidcRole) ToOidcRoleOutputWithContext(ctx context.Context) OidcRoleOutput

func (*OidcRole) ToOidcRolePtrOutput 

func (i *OidcRole) ToOidcRolePtrOutput() OidcRolePtrOutput

func (*OidcRole) ToOidcRolePtrOutputWithContext 

func (i *OidcRole) ToOidcRolePtrOutputWithContext(ctx context.Context) OidcRolePtrOutput

type OidcRoleArgs 

type OidcRoleArgs struct {
	// The value that will be included in the `aud` field of all the OIDC identity
	// tokens issued by this role
	ClientId pulumi.StringPtrInput
	// A configured named key, the key must already exist
	// before tokens can be issued.
	Key pulumi.StringInput
	// Name of the OIDC Role to create.
	Name pulumi.StringPtrInput
	// The template string to use for generating tokens. This may be in
	// string-ified JSON or base64 format. See the
	// [documentation](https://www.vaultproject.io/docs/secrets/identity/index.html#token-contents-and-templates)
	// for the template format.
	Template pulumi.StringPtrInput
	// TTL of the tokens generated against the role in number of seconds.
	Ttl pulumi.IntPtrInput
}

The set of arguments for constructing a OidcRole resource.

func (OidcRoleArgs) ElementType 

func (OidcRoleArgs) ElementType() reflect.Type

type OidcRoleArray 

type OidcRoleArray []OidcRoleInput

func (OidcRoleArray) ElementType 

func (OidcRoleArray) ElementType() reflect.Type

func (OidcRoleArray) ToOidcRoleArrayOutput 

func (i OidcRoleArray) ToOidcRoleArrayOutput() OidcRoleArrayOutput

func (OidcRoleArray) ToOidcRoleArrayOutputWithContext 

func (i OidcRoleArray) ToOidcRoleArrayOutputWithContext(ctx context.Context) OidcRoleArrayOutput

type OidcRoleArrayInput 

type OidcRoleArrayInput interface {
	pulumi.Input

	ToOidcRoleArrayOutput() OidcRoleArrayOutput
	ToOidcRoleArrayOutputWithContext(context.Context) OidcRoleArrayOutput
}

OidcRoleArrayInput is an input type that accepts OidcRoleArray and OidcRoleArrayOutput values. You can construct a concrete instance of `OidcRoleArrayInput` via: 

OidcRoleArray{ OidcRoleArgs{...} }

type OidcRoleArrayOutput 

type OidcRoleArrayOutput struct{ *pulumi.OutputState }

func (OidcRoleArrayOutput) ElementType 

func (OidcRoleArrayOutput) ElementType() reflect.Type

func (OidcRoleArrayOutput) Index 

func (o OidcRoleArrayOutput) Index(i pulumi.IntInput) OidcRoleOutput

func (OidcRoleArrayOutput) ToOidcRoleArrayOutput 

func (o OidcRoleArrayOutput) ToOidcRoleArrayOutput() OidcRoleArrayOutput

func (OidcRoleArrayOutput) ToOidcRoleArrayOutputWithContext 

func (o OidcRoleArrayOutput) ToOidcRoleArrayOutputWithContext(ctx context.Context) OidcRoleArrayOutput

type OidcRoleInput 

type OidcRoleInput interface {
	pulumi.Input

	ToOidcRoleOutput() OidcRoleOutput
	ToOidcRoleOutputWithContext(ctx context.Context) OidcRoleOutput
}

type OidcRoleMap 

type OidcRoleMap map[string]OidcRoleInput

func (OidcRoleMap) ElementType 

func (OidcRoleMap) ElementType() reflect.Type

func (OidcRoleMap) ToOidcRoleMapOutput 

func (i OidcRoleMap) ToOidcRoleMapOutput() OidcRoleMapOutput

func (OidcRoleMap) ToOidcRoleMapOutputWithContext 

func (i OidcRoleMap) ToOidcRoleMapOutputWithContext(ctx context.Context) OidcRoleMapOutput

type OidcRoleMapInput 

type OidcRoleMapInput interface {
	pulumi.Input

	ToOidcRoleMapOutput() OidcRoleMapOutput
	ToOidcRoleMapOutputWithContext(context.Context) OidcRoleMapOutput
}

OidcRoleMapInput is an input type that accepts OidcRoleMap and OidcRoleMapOutput values. You can construct a concrete instance of `OidcRoleMapInput` via: 

OidcRoleMap{ "key": OidcRoleArgs{...} }

type OidcRoleMapOutput 

type OidcRoleMapOutput struct{ *pulumi.OutputState }

func (OidcRoleMapOutput) ElementType 

func (OidcRoleMapOutput) ElementType() reflect.Type

func (OidcRoleMapOutput) MapIndex 

func (o OidcRoleMapOutput) MapIndex(k pulumi.StringInput) OidcRoleOutput

func (OidcRoleMapOutput) ToOidcRoleMapOutput 

func (o OidcRoleMapOutput) ToOidcRoleMapOutput() OidcRoleMapOutput

func (OidcRoleMapOutput) ToOidcRoleMapOutputWithContext 

func (o OidcRoleMapOutput) ToOidcRoleMapOutputWithContext(ctx context.Context) OidcRoleMapOutput

type OidcRoleOutput 

type OidcRoleOutput struct{ *pulumi.OutputState }

func (OidcRoleOutput) ElementType 

func (OidcRoleOutput) ElementType() reflect.Type

func (OidcRoleOutput) ToOidcRoleOutput 

func (o OidcRoleOutput) ToOidcRoleOutput() OidcRoleOutput

func (OidcRoleOutput) ToOidcRoleOutputWithContext 

func (o OidcRoleOutput) ToOidcRoleOutputWithContext(ctx context.Context) OidcRoleOutput

func (OidcRoleOutput) ToOidcRolePtrOutput 

func (o OidcRoleOutput) ToOidcRolePtrOutput() OidcRolePtrOutput

func (OidcRoleOutput) ToOidcRolePtrOutputWithContext 

func (o OidcRoleOutput) ToOidcRolePtrOutputWithContext(ctx context.Context) OidcRolePtrOutput

type OidcRolePtrInput 

type OidcRolePtrInput interface {
	pulumi.Input

	ToOidcRolePtrOutput() OidcRolePtrOutput
	ToOidcRolePtrOutputWithContext(ctx context.Context) OidcRolePtrOutput
}

type OidcRolePtrOutput 

type OidcRolePtrOutput struct{ *pulumi.OutputState }

func (OidcRolePtrOutput) Elem added in v4.6.0 

func (o OidcRolePtrOutput) Elem() OidcRoleOutput

func (OidcRolePtrOutput) ElementType 

func (OidcRolePtrOutput) ElementType() reflect.Type

func (OidcRolePtrOutput) ToOidcRolePtrOutput 

func (o OidcRolePtrOutput) ToOidcRolePtrOutput() OidcRolePtrOutput

func (OidcRolePtrOutput) ToOidcRolePtrOutputWithContext 

func (o OidcRolePtrOutput) ToOidcRolePtrOutputWithContext(ctx context.Context) OidcRolePtrOutput

type OidcRoleState 

type OidcRoleState struct {
	// The value that will be included in the `aud` field of all the OIDC identity
	// tokens issued by this role
	ClientId pulumi.StringPtrInput
	// A configured named key, the key must already exist
	// before tokens can be issued.
	Key pulumi.StringPtrInput
	// Name of the OIDC Role to create.
	Name pulumi.StringPtrInput
	// The template string to use for generating tokens. This may be in
	// string-ified JSON or base64 format. See the
	// [documentation](https://www.vaultproject.io/docs/secrets/identity/index.html#token-contents-and-templates)
	// for the template format.
	Template pulumi.StringPtrInput
	// TTL of the tokens generated against the role in number of seconds.
	Ttl pulumi.IntPtrInput
}

func (OidcRoleState) ElementType 

func (OidcRoleState) ElementType() reflect.Type

type OidcState 

type OidcState struct {
	// Issuer URL to be used in the iss claim of the token. If not set, Vault's
	// `apiAddr` will be used. The issuer is a case sensitive URL using the https scheme that contains
	// scheme, host, and optionally, port number and path components, but no query or fragment
	// components.
	Issuer pulumi.StringPtrInput
}

func (OidcState) ElementType 

func (OidcState) ElementType() reflect.Type

Source Files

View all Source files

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f or F : Jump to
y or Y : Canonical URL
go.dev uses cookies from Google to deliver and enhance the quality of its services and to analyze traffic. Learn more.