SecretBackendSign

Create a SecretBackendSign Resource

new SecretBackendSign(name: string, args: SecretBackendSignArgs, opts?: CustomResourceOptions);

def SecretBackendSign(resource_name, opts=None, alt_names=None, auto_renew=None, backend=None, common_name=None, csr=None, exclude_cn_from_sans=None, format=None, ip_sans=None, min_seconds_remaining=None, name=None, other_sans=None, ttl=None, uri_sans=None, __props__=None);

func NewSecretBackendSign(ctx *Context, name string, args SecretBackendSignArgs, opts ...ResourceOption) (*SecretBackendSign, error)

public SecretBackendSign(string name, SecretBackendSignArgs args, CustomResourceOptions? opts = null)

name string: The unique name of the resource.
args SecretBackendSignArgs: The arguments to resource properties.
opts CustomResourceOptions: Bag of options to control resource's behavior.

resource_name str: The unique name of the resource.
opts ResourceOptions: A bag of options that control this resource's behavior.

ctx Context: Context object for the current deployment.
name string: The unique name of the resource.
args SecretBackendSignArgs: The arguments to resource properties.
opts ResourceOption: Bag of options to control resource's behavior.

name string: The unique name of the resource.
args SecretBackendSignArgs: The arguments to resource properties.
opts CustomResourceOptions: Bag of options to control resource's behavior.

SecretBackendSign Resource Properties

To learn more about resource properties and how to use them, see Inputs and Outputs in the Programming Model docs.

Inputs

The SecretBackendSign resource accepts the following input properties:

Backend string: The PKI secret backend the resource belongs to.
CommonName string: CN of certificate to create
Csr string: The CSR
AltNames List<string>: List of alternative names
AutoRenew bool: If set to true, certs will be renewed if the expiration is within min_seconds_remaining. Default false
ExcludeCnFromSans bool: Flag to exclude CN from SANs
Format string: The format of data
IpSans List<string>: List of alternative IPs
MinSecondsRemaining int: Generate a new certificate when the expiration is within this number of seconds, default is 604800 (7 days)
Name string: Name of the role to create the certificate against
OtherSans List<string>: List of other SANs
Ttl string: Time to live
UriSans List<string>: List of alterative URIs

Backend string: The PKI secret backend the resource belongs to.
CommonName string: CN of certificate to create
Csr string: The CSR
AltNames []string: List of alternative names
AutoRenew bool: If set to true, certs will be renewed if the expiration is within min_seconds_remaining. Default false
ExcludeCnFromSans bool: Flag to exclude CN from SANs
Format string: The format of data
IpSans []string: List of alternative IPs
MinSecondsRemaining int: Generate a new certificate when the expiration is within this number of seconds, default is 604800 (7 days)
Name string: Name of the role to create the certificate against
OtherSans []string: List of other SANs
Ttl string: Time to live
UriSans []string: List of alterative URIs

backend string: The PKI secret backend the resource belongs to.
commonName string: CN of certificate to create
csr string: The CSR
altNames string[]: List of alternative names
autoRenew boolean: If set to true, certs will be renewed if the expiration is within min_seconds_remaining. Default false
excludeCnFromSans boolean: Flag to exclude CN from SANs
format string: The format of data
ipSans string[]: List of alternative IPs
minSecondsRemaining number: Generate a new certificate when the expiration is within this number of seconds, default is 604800 (7 days)
name string: Name of the role to create the certificate against
otherSans string[]: List of other SANs
ttl string: Time to live
uriSans string[]: List of alterative URIs

backend str: The PKI secret backend the resource belongs to.
common_name str: CN of certificate to create
csr str: The CSR
alt_names List[str]: List of alternative names
auto_renew bool: If set to true, certs will be renewed if the expiration is within min_seconds_remaining. Default false
exclude_cn_from_sans bool: Flag to exclude CN from SANs
format str: The format of data
ip_sans List[str]: List of alternative IPs
min_seconds_remaining float: Generate a new certificate when the expiration is within this number of seconds, default is 604800 (7 days)
name str: Name of the role to create the certificate against
other_sans List[str]: List of other SANs
ttl str: Time to live
uri_sans List[str]: List of alterative URIs

Outputs

All input properties are implicitly available as output properties. Additionally, the SecretBackendSign resource produces the following output properties:

CaChains List<string>: The CA chain
Certificate string: The certificate
Expiration int: The expiration date of the certificate in unix epoch format
Id string: The provider-assigned unique ID for this managed resource.
IssuingCa string: The issuing CA
Serial string: The serial

CaChains []string: The CA chain
Certificate string: The certificate
Expiration int: The expiration date of the certificate in unix epoch format
Id string: The provider-assigned unique ID for this managed resource.
IssuingCa string: The issuing CA
Serial string: The serial

caChains string[]: The CA chain
certificate string: The certificate
expiration number: The expiration date of the certificate in unix epoch format
id string: The provider-assigned unique ID for this managed resource.
issuingCa string: The issuing CA
serial string: The serial

ca_chains List[str]: The CA chain
certificate str: The certificate
expiration float: The expiration date of the certificate in unix epoch format
id str: The provider-assigned unique ID for this managed resource.
issuing_ca str: The issuing CA
serial str: The serial

Look up an Existing SecretBackendSign Resource

Get an existing SecretBackendSign resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.

public static get(name: string, id: Input<ID>, state?: SecretBackendSignState, opts?: CustomResourceOptions): SecretBackendSign

static get(resource_name, id, opts=None, alt_names=None, auto_renew=None, backend=None, ca_chains=None, certificate=None, common_name=None, csr=None, exclude_cn_from_sans=None, expiration=None, format=None, ip_sans=None, issuing_ca=None, min_seconds_remaining=None, name=None, other_sans=None, serial=None, ttl=None, uri_sans=None, __props__=None);

func GetSecretBackendSign(ctx *Context, name string, id IDInput, state *SecretBackendSignState, opts ...ResourceOption) (*SecretBackendSign, error)

public static SecretBackendSign Get(string name, Input<string> id, SecretBackendSignState? state, CustomResourceOptions? opts = null)

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

resource_name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

The following state arguments are supported:

AltNames List<string>: List of alternative names
AutoRenew bool: If set to true, certs will be renewed if the expiration is within min_seconds_remaining. Default false
Backend string: The PKI secret backend the resource belongs to.
CaChains List<string>: The CA chain
Certificate string: The certificate
CommonName string: CN of certificate to create
Csr string: The CSR
ExcludeCnFromSans bool: Flag to exclude CN from SANs
Expiration int: The expiration date of the certificate in unix epoch format
Format string: The format of data
IpSans List<string>: List of alternative IPs
IssuingCa string: The issuing CA
MinSecondsRemaining int: Generate a new certificate when the expiration is within this number of seconds, default is 604800 (7 days)
Name string: Name of the role to create the certificate against
OtherSans List<string>: List of other SANs
Serial string: The serial
Ttl string: Time to live
UriSans List<string>: List of alterative URIs

AltNames []string: List of alternative names
AutoRenew bool: If set to true, certs will be renewed if the expiration is within min_seconds_remaining. Default false
Backend string: The PKI secret backend the resource belongs to.
CaChains []string: The CA chain
Certificate string: The certificate
CommonName string: CN of certificate to create
Csr string: The CSR
ExcludeCnFromSans bool: Flag to exclude CN from SANs
Expiration int: The expiration date of the certificate in unix epoch format
Format string: The format of data
IpSans []string: List of alternative IPs
IssuingCa string: The issuing CA
MinSecondsRemaining int: Generate a new certificate when the expiration is within this number of seconds, default is 604800 (7 days)
Name string: Name of the role to create the certificate against
OtherSans []string: List of other SANs
Serial string: The serial
Ttl string: Time to live
UriSans []string: List of alterative URIs

altNames string[]: List of alternative names
autoRenew boolean: If set to true, certs will be renewed if the expiration is within min_seconds_remaining. Default false
backend string: The PKI secret backend the resource belongs to.
caChains string[]: The CA chain
certificate string: The certificate
commonName string: CN of certificate to create
csr string: The CSR
excludeCnFromSans boolean: Flag to exclude CN from SANs
expiration number: The expiration date of the certificate in unix epoch format
format string: The format of data
ipSans string[]: List of alternative IPs
issuingCa string: The issuing CA
minSecondsRemaining number: Generate a new certificate when the expiration is within this number of seconds, default is 604800 (7 days)
name string: Name of the role to create the certificate against
otherSans string[]: List of other SANs
serial string: The serial
ttl string: Time to live
uriSans string[]: List of alterative URIs

alt_names List[str]: List of alternative names
auto_renew bool: If set to true, certs will be renewed if the expiration is within min_seconds_remaining. Default false
backend str: The PKI secret backend the resource belongs to.
ca_chains List[str]: The CA chain
certificate str: The certificate
common_name str: CN of certificate to create
csr str: The CSR
exclude_cn_from_sans bool: Flag to exclude CN from SANs
expiration float: The expiration date of the certificate in unix epoch format
format str: The format of data
ip_sans List[str]: List of alternative IPs
issuing_ca str: The issuing CA
min_seconds_remaining float: Generate a new certificate when the expiration is within this number of seconds, default is 604800 (7 days)
name str: Name of the role to create the certificate against
other_sans List[str]: List of other SANs
serial str: The serial
ttl str: Time to live
uri_sans List[str]: List of alterative URIs

Package Details

Repository: https://github.com/pulumi/pulumi-vault
License: Apache-2.0
Notes: This Pulumi package is based on the vault Terraform Provider.

The Pulumi Platform

Get Started

Migrate to Pulumi

Solutions for All Teams and Engineers

Any Code

Any Cloud