UNPKG

@pulumi/kubernetes

Version:

[![Actions Status](https://github.com/pulumi/pulumi-kubernetes/workflows/main/badge.svg)](https://github.com/pulumi/pulumi-kubernetes/actions) [![Slack](http://www.pulumi.com/images/docs/badges/slack.svg)](https://slack.pulumi.com) [![NPM version](https:/

pulumi.com

pulumi/pulumi-kubernetes

80 lines 3.72 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
"use strict"; // *** WARNING: this file was generated by pulumigen. *** // *** Do not edit by hand unless you're certain you know what you are doing! *** Object.defineProperty(exports, "__esModule", { value: true }); exports.Secret = void 0; const pulumi = require("@pulumi/pulumi"); const utilities = require("../../utilities"); /** * Secret holds secret data of a certain type. The total bytes of the values in the Data field must be less than MaxSecretSize bytes. * * Note: While Pulumi automatically encrypts the 'data' and 'stringData' * fields, this encryption only applies to Pulumi's context, including the state file, * the Service, the CLI, etc. Kubernetes does not encrypt Secret resources by default, * and the contents are visible to users with access to the Secret in Kubernetes using * tools like 'kubectl'. * * For more information on securing Kubernetes Secrets, see the following links: * https://kubernetes.io/docs/concepts/configuration/secret/#security-properties * https://kubernetes.io/docs/concepts/configuration/secret/#risks */ class Secret extends pulumi.CustomResource { /** * Get an existing Secret resource's state with the given name, ID, and optional extra * properties used to qualify the lookup. * * @param name The _unique_ name of the resulting resource. * @param id The _unique_ provider ID of the resource to lookup. * @param opts Optional settings to control the behavior of the CustomResource. */ static get(name, id, opts) { return new Secret(name, undefined, { ...opts, id: id }); } /** * Returns true if the given object is an instance of Secret. This is designed to work even * when multiple copies of the Pulumi SDK have been loaded into the same process. */ static isInstance(obj) { if (obj === undefined || obj === null) { return false; } return obj['__pulumiType'] === Secret.__pulumiType; } /** * Create a Secret resource with the given unique name, arguments, and options. * * @param name The _unique_ name of the resource. * @param args The arguments to use to populate this resource's properties. * @param opts A bag of options that control this resource's behavior. */ constructor(name, args, opts) { let resourceInputs = {}; opts = opts || {}; if (!opts.id) { resourceInputs["apiVersion"] = "v1"; resourceInputs["data"] = args?.data ? pulumi.secret(args.data) : undefined; resourceInputs["immutable"] = args?.immutable; resourceInputs["kind"] = "Secret"; resourceInputs["metadata"] = args?.metadata; resourceInputs["stringData"] = args?.stringData ? pulumi.secret(args.stringData) : undefined; resourceInputs["type"] = args?.type; } else { resourceInputs["apiVersion"] = undefined /*out*/; resourceInputs["data"] = undefined /*out*/; resourceInputs["immutable"] = undefined /*out*/; resourceInputs["kind"] = undefined /*out*/; resourceInputs["metadata"] = undefined /*out*/; resourceInputs["stringData"] = undefined /*out*/; resourceInputs["type"] = undefined /*out*/; } opts = pulumi.mergeOptions(utilities.resourceOptsDefaults(), opts); const secretOpts = { additionalSecretOutputs: ["data", "stringData"] }; opts = pulumi.mergeOptions(opts, secretOpts); super(Secret.__pulumiType, name, resourceInputs, opts); } } exports.Secret = Secret; /** @internal */ Secret.__pulumiType = 'kubernetes:core/v1:Secret'; //# sourceMappingURL=secret.js.map