Class SecretBackendKeyArgs

Inheritance

System.Object

InputArgs

ResourceArgs

SecretBackendKeyArgs

Inherited Members

ResourceArgs.Empty

System.Object.Equals(System.Object)

System.Object.Equals(System.Object, System.Object)

System.Object.GetHashCode()

System.Object.GetType()

System.Object.MemberwiseClone()

System.Object.ReferenceEquals(System.Object, System.Object)

System.Object.ToString()

Namespace: Pulumi.Vault.Transit

Assembly: Pulumi.Vault.dll

Syntax

public sealed class SecretBackendKeyArgs : ResourceArgs

Constructors

View Source

SecretBackendKeyArgs()

Declaration

public SecretBackendKeyArgs()

Properties

View Source

AllowPlaintextBackup

Enables taking backup of entire keyring in the plaintext format. Once set, this cannot be disabled.

Refer to Vault API documentation on key backups for more information: Backup Key

Declaration

public Input<bool> AllowPlaintextBackup { get; set; }

Property Value

Type	Description
Input<System.Boolean>

View Source

Backend

The path the transit secret backend is mounted at, with no leading or trailing /s.

Declaration

public Input<string> Backend { get; set; }

Property Value

Type	Description
Input<System.String>

View Source

ConvergentEncryption

Whether or not to support convergent encryption, where the same plaintext creates the same ciphertext. This requires derived to be set to true.

Declaration

public Input<bool> ConvergentEncryption { get; set; }

Property Value

Type	Description
Input<System.Boolean>

View Source

DeletionAllowed

Specifies if the key is allowed to be deleted.

Declaration

public Input<bool> DeletionAllowed { get; set; }

Property Value

Type	Description
Input<System.Boolean>

View Source

Derived

Specifies if key derivation is to be used. If enabled, all encrypt/decrypt requests to this key must provide a context which is used for key derivation.

Declaration

public Input<bool> Derived { get; set; }

Property Value

Type	Description
Input<System.Boolean>

View Source

Exportable

Enables keys to be exportable. This allows for all valid private keys in the keyring to be exported. Once set, this cannot be disabled.

Declaration

public Input<bool> Exportable { get; set; }

Property Value

Type	Description
Input<System.Boolean>

View Source

MinDecryptionVersion

Minimum key version to use for decryption.

Declaration

public Input<int> MinDecryptionVersion { get; set; }

Property Value

Type	Description
Input<System.Int32>

View Source

MinEncryptionVersion

Minimum key version to use for encryption

Declaration

public Input<int> MinEncryptionVersion { get; set; }

Property Value

Type	Description
Input<System.Int32>

View Source

Name

The name to identify this key within the backend. Must be unique within the backend.

Declaration

public Input<string> Name { get; set; }

Property Value

Type	Description
Input<System.String>

View Source

Type

Specifies the type of key to create. The currently-supported types are: aes256-gcm96 (default), chacha20-poly1305, ed25519, ecdsa-p256, rsa-2048 and rsa-4096.

Refer to the Vault documentation on transit key types for more information: Key Types

Declaration

public Input<string> Type { get; set; }

Property Value

Type	Description
Input<System.String>