Namespace Pulumi.Vault.Database

Classes

Creates a Database Secret Backend static role in Vault. Database secret backend static roles can be used to manage 1-to-1 mapping of a Vault Role to a user in a database for the database.

Example Usage

using Pulumi;
using Vault = Pulumi.Vault;

class MyStack : Stack
{
public MyStack()
{
    var db = new Vault.Mount(&quot;db&quot;, new Vault.MountArgs
    {
        Path = &quot;postgres&quot;,
        Type = &quot;database&quot;,
    });
    var postgres = new Vault.Database.SecretBackendConnection(&quot;postgres&quot;, new Vault.Database.SecretBackendConnectionArgs
    {
        AllowedRoles = 
        {
            &quot;*&quot;,
        },
        Backend = db.Path,
        Postgresql = new Vault.Database.Inputs.SecretBackendConnectionPostgresqlArgs
        {
            ConnectionUrl = &quot;postgres://username:password@host:port/database&quot;,
        },
    });
    var staticRole = new Vault.Database.SecretBackendStaticRole(&quot;staticRole&quot;, new Vault.Database.SecretBackendStaticRoleArgs
    {
        Backend = db.Path,
        DbName = postgres.Name,
        RotationPeriod = &quot;3600&quot;,
        RotationStatements = 
        {
            &quot;ALTER USER \&quot;{{name}}\&quot; WITH PASSWORD &apos;{{password}}&apos;;&quot;,
        },
        Username = &quot;example&quot;,
    });
}

}

Namespace Pulumi.Vault.Database

Classes

SecretBackendConnection

SecretBackendConnectionArgs

SecretBackendConnectionState

SecretBackendRole

SecretBackendRoleArgs

SecretBackendRoleState

SecretBackendStaticRole

Example Usage

SecretBackendStaticRoleArgs

SecretBackendStaticRoleState