Namespace Pulumi.OpenStack.KeyManager
Classes
ContainerV1
Manages a V1 Barbican container resource within OpenStack.
Example Usage
Simple secret
using System.IO;
using Pulumi;
using OpenStack = Pulumi.OpenStack;
class MyStack : Stack
{
public MyStack()
{
var certificate1 = new OpenStack.KeyManager.SecretV1("certificate1", new OpenStack.KeyManager.SecretV1Args
{
Payload = File.ReadAllText("cert.pem"),
PayloadContentType = "text/plain",
SecretType = "certificate",
});
var privateKey1 = new OpenStack.KeyManager.SecretV1("privateKey1", new OpenStack.KeyManager.SecretV1Args
{
Payload = File.ReadAllText("cert-key.pem"),
PayloadContentType = "text/plain",
SecretType = "private",
});
var intermediate1 = new OpenStack.KeyManager.SecretV1("intermediate1", new OpenStack.KeyManager.SecretV1Args
{
Payload = File.ReadAllText("intermediate-ca.pem"),
PayloadContentType = "text/plain",
SecretType = "certificate",
});
var tls1 = new OpenStack.KeyManager.ContainerV1("tls1", new OpenStack.KeyManager.ContainerV1Args
{
SecretRefs =
{
new OpenStack.KeyManager.Inputs.ContainerV1SecretRefArgs
{
Name = "certificate",
SecretRef = certificate1.SecretRef,
},
new OpenStack.KeyManager.Inputs.ContainerV1SecretRefArgs
{
Name = "private_key",
SecretRef = privateKey1.SecretRef,
},
new OpenStack.KeyManager.Inputs.ContainerV1SecretRefArgs
{
Name = "intermediates",
SecretRef = intermediate1.SecretRef,
},
},
Type = "certificate",
});
var subnet1 = Output.Create(OpenStack.Networking.GetSubnet.InvokeAsync(new OpenStack.Networking.GetSubnetArgs
{
Name = "my-subnet",
}));
var lb1 = new OpenStack.LoadBalancer.LoadBalancer("lb1", new OpenStack.LoadBalancer.LoadBalancerArgs
{
VipSubnetId = subnet1.Apply(subnet1 => subnet1.Id),
});
var listener1 = new OpenStack.LoadBalancer.Listener("listener1", new OpenStack.LoadBalancer.ListenerArgs
{
DefaultTlsContainerRef = tls1.ContainerRef,
LoadbalancerId = lb1.Id,
Protocol = "TERMINATED_HTTPS",
ProtocolPort = 443,
});
}
}
Container with the ACL
using Pulumi;
using OpenStack = Pulumi.OpenStack;
class MyStack : Stack
{
public MyStack()
{
var tls1 = new OpenStack.KeyManager.ContainerV1("tls1", new OpenStack.KeyManager.ContainerV1Args
{
Acl = new OpenStack.KeyManager.Inputs.ContainerV1AclArgs
{
Read = new OpenStack.KeyManager.Inputs.ContainerV1AclReadArgs
{
ProjectAccess = false,
Users =
{
"userid1",
"userid2",
},
},
},
SecretRefs =
{
new OpenStack.KeyManager.Inputs.ContainerV1SecretRefArgs
{
Name = "certificate",
SecretRef = openstack_keymanager_secret_v1.Certificate_1.Secret_ref,
},
new OpenStack.KeyManager.Inputs.ContainerV1SecretRefArgs
{
Name = "private_key",
SecretRef = openstack_keymanager_secret_v1.Private_key_1.Secret_ref,
},
new OpenStack.KeyManager.Inputs.ContainerV1SecretRefArgs
{
Name = "intermediates",
SecretRef = openstack_keymanager_secret_v1.Intermediate_1.Secret_ref,
},
},
Type = "certificate",
});
}
}
ContainerV1Args
ContainerV1State
GetContainer
GetContainerArgs
GetContainerResult
GetSecret
GetSecretArgs
GetSecretResult
OrderV1
Manages a V1 Barbican order resource within OpenStack.
Example Usage
Symmetric key order
using Pulumi;
using OpenStack = Pulumi.OpenStack;
class MyStack : Stack
{
public MyStack()
{
var order1 = new OpenStack.KeyManager.OrderV1("order1", new OpenStack.KeyManager.OrderV1Args
{
Meta = new OpenStack.KeyManager.Inputs.OrderV1MetaArgs
{
Algorithm = "aes",
BitLength = 256,
Mode = "cbc",
Name = "mysecret",
},
Type = "key",
});
}
}
Asymmetric key pair order
using Pulumi;
using OpenStack = Pulumi.OpenStack;
class MyStack : Stack
{
public MyStack()
{
var order1 = new OpenStack.KeyManager.OrderV1("order1", new OpenStack.KeyManager.OrderV1Args
{
Meta = new OpenStack.KeyManager.Inputs.OrderV1MetaArgs
{
Algorithm = "rsa",
BitLength = 4096,
Name = "mysecret",
},
Type = "asymmetric",
});
}
}