SecretBackendCa

Provides a resource to manage CA information in an SSH secret backend SSH secret backend within Vault.

Example Usage

using Pulumi;
using Vault = Pulumi.Vault;

class MyStack : Stack
{
    public MyStack()
    {
        var example = new Vault.Mount("example", new Vault.MountArgs
        {
            Type = "ssh",
        });
        var foo = new Vault.Ssh.SecretBackendCa("foo", new Vault.Ssh.SecretBackendCaArgs
        {
            Backend = example.Path,
        });
    }

}

Coming soon!

import pulumi
import pulumi_vault as vault

example = vault.Mount("example", type="ssh")
foo = vault.ssh.SecretBackendCa("foo", backend=example.path)

import * as pulumi from "@pulumi/pulumi";
import * as vault from "@pulumi/vault";

const example = new vault.Mount("example", {
    type: "ssh",
});
const foo = new vault.ssh.SecretBackendCa("foo", {
    backend: example.path,
});

Create a SecretBackendCa Resource

new SecretBackendCa(name: string, args?: SecretBackendCaArgs, opts?: CustomResourceOptions);

def SecretBackendCa(resource_name, opts=None, backend=None, generate_signing_key=None, private_key=None, public_key=None, __props__=None);

func NewSecretBackendCa(ctx *Context, name string, args *SecretBackendCaArgs, opts ...ResourceOption) (*SecretBackendCa, error)

public SecretBackendCa(string name, SecretBackendCaArgs? args = null, CustomResourceOptions? opts = null)

name string: The unique name of the resource.
args SecretBackendCaArgs: The arguments to resource properties.
opts CustomResourceOptions: Bag of options to control resource's behavior.

resource_name str: The unique name of the resource.
opts ResourceOptions: A bag of options that control this resource's behavior.

ctx Context: Context object for the current deployment.
name string: The unique name of the resource.
args SecretBackendCaArgs: The arguments to resource properties.
opts ResourceOption: Bag of options to control resource's behavior.

name string: The unique name of the resource.
args SecretBackendCaArgs: The arguments to resource properties.
opts CustomResourceOptions: Bag of options to control resource's behavior.

SecretBackendCa Resource Properties

To learn more about resource properties and how to use them, see Inputs and Outputs in the Programming Model docs.

Inputs

The SecretBackendCa resource accepts the following input properties:

Backend string: The path where the SSH secret backend is mounted. Defaults to ‘ssh’
GenerateSigningKey bool: Whether Vault should generate the signing key pair internally. Defaults to true
PrivateKey string: The private key part the SSH CA key pair; required if generate_signing_key is false.
PublicKey string: The public key part the SSH CA key pair; required if generate_signing_key is false.

Backend string: The path where the SSH secret backend is mounted. Defaults to ‘ssh’
GenerateSigningKey bool: Whether Vault should generate the signing key pair internally. Defaults to true
PrivateKey string: The private key part the SSH CA key pair; required if generate_signing_key is false.
PublicKey string: The public key part the SSH CA key pair; required if generate_signing_key is false.

backend string: The path where the SSH secret backend is mounted. Defaults to ‘ssh’
generateSigningKey boolean: Whether Vault should generate the signing key pair internally. Defaults to true
privateKey string: The private key part the SSH CA key pair; required if generate_signing_key is false.
publicKey string: The public key part the SSH CA key pair; required if generate_signing_key is false.

backend str: The path where the SSH secret backend is mounted. Defaults to ‘ssh’
generate_signing_key bool: Whether Vault should generate the signing key pair internally. Defaults to true
private_key str: The private key part the SSH CA key pair; required if generate_signing_key is false.
public_key str: The public key part the SSH CA key pair; required if generate_signing_key is false.

Outputs

All input properties are implicitly available as output properties. Additionally, the SecretBackendCa resource produces the following output properties:

Id string: The provider-assigned unique ID for this managed resource.

Id string: The provider-assigned unique ID for this managed resource.

id string: The provider-assigned unique ID for this managed resource.

id str: The provider-assigned unique ID for this managed resource.

Look up an Existing SecretBackendCa Resource

Get an existing SecretBackendCa resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.

public static get(name: string, id: Input<ID>, state?: SecretBackendCaState, opts?: CustomResourceOptions): SecretBackendCa

static get(resource_name, id, opts=None, backend=None, generate_signing_key=None, private_key=None, public_key=None, __props__=None);

func GetSecretBackendCa(ctx *Context, name string, id IDInput, state *SecretBackendCaState, opts ...ResourceOption) (*SecretBackendCa, error)

public static SecretBackendCa Get(string name, Input<string> id, SecretBackendCaState? state, CustomResourceOptions? opts = null)

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

resource_name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

The following state arguments are supported:

Backend string: The path where the SSH secret backend is mounted. Defaults to ‘ssh’
GenerateSigningKey bool: Whether Vault should generate the signing key pair internally. Defaults to true
PrivateKey string: The private key part the SSH CA key pair; required if generate_signing_key is false.
PublicKey string: The public key part the SSH CA key pair; required if generate_signing_key is false.

Backend string: The path where the SSH secret backend is mounted. Defaults to ‘ssh’
GenerateSigningKey bool: Whether Vault should generate the signing key pair internally. Defaults to true
PrivateKey string: The private key part the SSH CA key pair; required if generate_signing_key is false.
PublicKey string: The public key part the SSH CA key pair; required if generate_signing_key is false.

backend string: The path where the SSH secret backend is mounted. Defaults to ‘ssh’
generateSigningKey boolean: Whether Vault should generate the signing key pair internally. Defaults to true
privateKey string: The private key part the SSH CA key pair; required if generate_signing_key is false.
publicKey string: The public key part the SSH CA key pair; required if generate_signing_key is false.

backend str: The path where the SSH secret backend is mounted. Defaults to ‘ssh’
generate_signing_key bool: Whether Vault should generate the signing key pair internally. Defaults to true
private_key str: The private key part the SSH CA key pair; required if generate_signing_key is false.
public_key str: The public key part the SSH CA key pair; required if generate_signing_key is false.

Package Details

Repository: https://github.com/pulumi/pulumi-vault
License: Apache-2.0
Notes: This Pulumi package is based on the vault Terraform Provider.

The Pulumi Platform

Get Started

Migrate to Pulumi

Solutions for All Teams and Engineers

Any Code

Any Cloud