UNPKG

@pulumi/aws

Version:

A Pulumi package for creating and managing Amazon Web Services (AWS) cloud resources.

pulumi.io

pulumi/pulumi-aws

124 lines (123 loc) 5.68 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
import * as pulumi from "@pulumi/pulumi"; /** * Provides redshift cluster temporary credentials. * * ## Example Usage * * ```typescript * import * as pulumi from "@pulumi/pulumi"; * import * as aws from "@pulumi/aws"; * * const example = aws.redshift.getClusterCredentials({ * clusterIdentifier: exampleAwsRedshiftCluster.clusterIdentifier, * dbUser: exampleAwsRedshiftCluster.masterUsername, * }); * ``` */ export declare function getClusterCredentials(args: GetClusterCredentialsArgs, opts?: pulumi.InvokeOptions): Promise<GetClusterCredentialsResult>; /** * A collection of arguments for invoking getClusterCredentials. */ export interface GetClusterCredentialsArgs { /** * Create a database user with the name specified for the user named in `dbUser` if one does not exist. */ autoCreate?: boolean; /** * Unique identifier of the cluster that contains the database for which your are requesting credentials. */ clusterIdentifier: string; /** * List of the names of existing database groups that the user named in `dbUser` will join for the current session, in addition to any group memberships for an existing user. If not specified, a new user is added only to `PUBLIC`. */ dbGroups?: string[]; /** * Name of a database that DbUser is authorized to log on to. If `dbName` is not specified, `dbUser` can log on to any existing database. */ dbName?: string; /** * Name of a database user. If a user name matching `dbUser` exists in the database, the temporary user credentials have the same permissions as the existing user. If `dbUser` doesn't exist in the database and `autoCreate` is `True`, a new user is created using the value for `dbUser` with `PUBLIC` permissions. If a database user matching the value for `dbUser` doesn't exist and `not` is `False`, then the command succeeds but the connection attempt will fail because the user doesn't exist in the database. */ dbUser: string; /** * The number of seconds until the returned temporary password expires. Valid values are between `900` and `3600`. Default value is `900`. */ durationSeconds?: number; /** * Region where this resource will be [managed](https://docs.aws.amazon.com/general/latest/gr/rande.html#regional-endpoints). Defaults to the Region set in the provider configuration. */ region?: string; } /** * A collection of values returned by getClusterCredentials. */ export interface GetClusterCredentialsResult { readonly autoCreate?: boolean; readonly clusterIdentifier: string; readonly dbGroups?: string[]; readonly dbName?: string; /** * Temporary password that authorizes the user name returned by `dbUser` to log on to the database `dbName`. */ readonly dbPassword: string; readonly dbUser: string; readonly durationSeconds?: number; /** * Date and time the password in `dbPassword` expires. */ readonly expiration: string; /** * The provider-assigned unique ID for this managed resource. */ readonly id: string; readonly region: string; } /** * Provides redshift cluster temporary credentials. * * ## Example Usage * * ```typescript * import * as pulumi from "@pulumi/pulumi"; * import * as aws from "@pulumi/aws"; * * const example = aws.redshift.getClusterCredentials({ * clusterIdentifier: exampleAwsRedshiftCluster.clusterIdentifier, * dbUser: exampleAwsRedshiftCluster.masterUsername, * }); * ``` */ export declare function getClusterCredentialsOutput(args: GetClusterCredentialsOutputArgs, opts?: pulumi.InvokeOutputOptions): pulumi.Output<GetClusterCredentialsResult>; /** * A collection of arguments for invoking getClusterCredentials. */ export interface GetClusterCredentialsOutputArgs { /** * Create a database user with the name specified for the user named in `dbUser` if one does not exist. */ autoCreate?: pulumi.Input<boolean>; /** * Unique identifier of the cluster that contains the database for which your are requesting credentials. */ clusterIdentifier: pulumi.Input<string>; /** * List of the names of existing database groups that the user named in `dbUser` will join for the current session, in addition to any group memberships for an existing user. If not specified, a new user is added only to `PUBLIC`. */ dbGroups?: pulumi.Input<pulumi.Input<string>[]>; /** * Name of a database that DbUser is authorized to log on to. If `dbName` is not specified, `dbUser` can log on to any existing database. */ dbName?: pulumi.Input<string>; /** * Name of a database user. If a user name matching `dbUser` exists in the database, the temporary user credentials have the same permissions as the existing user. If `dbUser` doesn't exist in the database and `autoCreate` is `True`, a new user is created using the value for `dbUser` with `PUBLIC` permissions. If a database user matching the value for `dbUser` doesn't exist and `not` is `False`, then the command succeeds but the connection attempt will fail because the user doesn't exist in the database. */ dbUser: pulumi.Input<string>; /** * The number of seconds until the returned temporary password expires. Valid values are between `900` and `3600`. Default value is `900`. */ durationSeconds?: pulumi.Input<number>; /** * Region where this resource will be [managed](https://docs.aws.amazon.com/general/latest/gr/rande.html#regional-endpoints). Defaults to the Region set in the provider configuration. */ region?: pulumi.Input<string>; }