Namespace Pulumi.Vault

Classes

Example Usage (file audit device)

using Pulumi;
using Vault = Pulumi.Vault;

class MyStack : Stack
{
public MyStack()
{
    var test = new Vault.Audit(&quot;test&quot;, new Vault.AuditArgs
    {
        Options = 
        {
            { &quot;file_path&quot;, &quot;C:/temp/audit.txt&quot; },
        },
        Type = &quot;file&quot;,
    });
}

}

Example Usage (socket audit device)

using Pulumi;
using Vault = Pulumi.Vault;

class MyStack : Stack
{
public MyStack()
{
    var test = new Vault.Audit(&quot;test&quot;, new Vault.AuditArgs
    {
        Options = 
        {
            { &quot;address&quot;, &quot;127.0.0.1:8000&quot; },
            { &quot;description&quot;, &quot;application x socket&quot; },
            { &quot;socket_type&quot;, &quot;tcp&quot; },
        },
        Path = &quot;app_socket&quot;,
        Type = &quot;socket&quot;,
    });
}

}

Example Usage

using Pulumi;
using Vault = Pulumi.Vault;

class MyStack : Stack
{
public MyStack()
{
    var example = new Vault.AuthBackend(&quot;example&quot;, new Vault.AuthBackendArgs
    {
        Tune = new Vault.Inputs.AuthBackendTuneArgs
        {
            ListingVisibility = &quot;unauth&quot;,
            MaxLeaseTtl = &quot;90000s&quot;,
        },
        Type = &quot;github&quot;,
    });
}

}

CertAuthBackendRole

Provides a resource to create a role in an Cert auth backend within Vault.

Example Usage

using System.IO;
using Pulumi;
using Vault = Pulumi.Vault;

class MyStack : Stack
{
public MyStack()
{
    var certAuthBackend = new Vault.AuthBackend(&quot;certAuthBackend&quot;, new Vault.AuthBackendArgs
    {
        Path = &quot;cert&quot;,
        Type = &quot;cert&quot;,
    });
    var certCertAuthBackendRole = new Vault.CertAuthBackendRole(&quot;certCertAuthBackendRole&quot;, new Vault.CertAuthBackendRoleArgs
    {
        Certificate = File.ReadAllText(&quot;/path/to/certs/ca-cert.pem&quot;),
        Backend = certAuthBackend.Path,
        AllowedNames = 
        {
            &quot;foo.example.org&quot;,
            &quot;baz.example.org&quot;,
        },
        TokenTtl = 300,
        TokenMaxTtl = 600,
        TokenPolicies = 
        {
            &quot;foo&quot;,
        },
    });
}

}

EgpPolicy

Provides a resource to manage Endpoint Governing Policy (EGP) via Sentinel.

Note this feature is available only with Vault Enterprise.

Example Usage

using Pulumi;
using Vault = Pulumi.Vault;

class MyStack : Stack
{
public MyStack()
{
    var allow_all = new Vault.EgpPolicy(&quot;allow-all&quot;, new Vault.EgpPolicyArgs
    {
        EnforcementLevel = &quot;soft-mandatory&quot;,
        Paths = 
        {
            &quot;*&quot;,
        },
        Policy = @&quot;main = rule {
true
}

&quot;,
    });
}

}

MfaDuo

Provides a resource to manage Duo MFA.

Note this feature is available only with Vault Enterprise.

Example Usage

using Pulumi;
using Vault = Pulumi.Vault;

class MyStack : Stack
{
public MyStack()
{
    var userpass = new Vault.AuthBackend(&quot;userpass&quot;, new Vault.AuthBackendArgs
    {
        Path = &quot;userpass&quot;,
        Type = &quot;userpass&quot;,
    });
    var myDuo = new Vault.MfaDuo(&quot;myDuo&quot;, new Vault.MfaDuoArgs
    {
        ApiHostname = &quot;api-2b5c39f5.duosecurity.com&quot;,
        IntegrationKey = &quot;BIACEUEAXI20BNWTEYXT&quot;,
        MountAccessor = userpass.Accessor,
        SecretKey = &quot;8C7THtrIigh2rPZQMbguugt8IUftWhMRCOBzbuyz&quot;,
    });
}

}

Example Usage

using Pulumi;
using Vault = Pulumi.Vault;

class MyStack : Stack
{
public MyStack()
{
    var example = new Vault.Mount(&quot;example&quot;, new Vault.MountArgs
    {
        Description = &quot;This is an example mount&quot;,
        Path = &quot;dummy&quot;,
        Type = &quot;generic&quot;,
    });
}

}

Namespace

Provides a resource to manage Namespaces.

Note this feature is available only with Vault Enterprise.

Example Usage

using Pulumi;
using Vault = Pulumi.Vault;

class MyStack : Stack
{
public MyStack()
{
    var ns1 = new Vault.Namespace(&quot;ns1&quot;, new Vault.NamespaceArgs
    {
        Path = &quot;ns1&quot;,
    });
}

}

Example Usage

using Pulumi;
using Vault = Pulumi.Vault;

class MyStack : Stack
{
public MyStack()
{
    var example = new Vault.Policy(&quot;example&quot;, new Vault.PolicyArgs
    {
        Policy = @&quot;path &quot;&quot;secret/my_app&quot;&quot; {
capabilities = [&quot;&quot;write&quot;&quot;]
}

&quot;,
    });
}

}

The provider type for the vault package. By default, resources use package-wide configuration settings, however an explicit Provider instance may be created and passed during resource construction to achieve fine-grained programmatic control over provider settings. See the documentation for more information.

ProviderArgs

RgpPolicy

Provides a resource to manage Role Governing Policy (RGP) via Sentinel.

Note this feature is available only with Vault Enterprise.

Example Usage

using Pulumi;
using Vault = Pulumi.Vault;

class MyStack : Stack
{
public MyStack()
{
    var allow_all = new Vault.RgpPolicy(&quot;allow-all&quot;, new Vault.RgpPolicyArgs
    {
        EnforcementLevel = &quot;soft-mandatory&quot;,
        Policy = @&quot;main = rule {
true
}

&quot;,
    });
}

}