@pulumi/vault
Version:
A Pulumi package for creating and managing HashiCorp Vault cloud resources.
169 lines • 8.72 kB
JavaScript
;
// *** WARNING: this file was generated by pulumi-language-nodejs. ***
// *** Do not edit by hand unless you're certain you know what you are doing! ***
Object.defineProperty(exports, "__esModule", { value: true });
exports.AuthBackend = void 0;
const pulumi = require("@pulumi/pulumi");
const utilities = require("../utilities");
/**
* Provides a resource for managing an [LDAP auth backend within Vault](https://www.vaultproject.io/docs/auth/ldap.html).
*
* ## Example Usage
*
* ```typescript
* import * as pulumi from "@pulumi/pulumi";
* import * as vault from "@pulumi/vault";
*
* const ldap = new vault.ldap.AuthBackend("ldap", {
* path: "ldap",
* url: "ldaps://dc-01.example.org",
* userdn: "OU=Users,OU=Accounts,DC=example,DC=org",
* userattr: "sAMAccountName",
* upndomain: "EXAMPLE.ORG",
* discoverdn: false,
* groupdn: "OU=Groups,DC=example,DC=org",
* groupfilter: "(&(objectClass=group)(member:1.2.840.113556.1.4.1941:={{.UserDN}}))",
* rotationSchedule: "0 * * * SAT",
* rotationWindow: 3600,
* });
* ```
*
* ## Import
*
* LDAP authentication backends can be imported using the `path`, e.g.
*
* ```sh
* $ pulumi import vault:ldap/authBackend:AuthBackend ldap ldap
* ```
*/
class AuthBackend extends pulumi.CustomResource {
/**
* Get an existing AuthBackend resource's state with the given name, ID, and optional extra
* properties used to qualify the lookup.
*
* @param name The _unique_ name of the resulting resource.
* @param id The _unique_ provider ID of the resource to lookup.
* @param state Any extra arguments used during the lookup.
* @param opts Optional settings to control the behavior of the CustomResource.
*/
static get(name, id, state, opts) {
return new AuthBackend(name, state, { ...opts, id: id });
}
/**
* Returns true if the given object is an instance of AuthBackend. This is designed to work even
* when multiple copies of the Pulumi SDK have been loaded into the same process.
*/
static isInstance(obj) {
if (obj === undefined || obj === null) {
return false;
}
return obj['__pulumiType'] === AuthBackend.__pulumiType;
}
constructor(name, argsOrState, opts) {
let resourceInputs = {};
opts = opts || {};
if (opts.id) {
const state = argsOrState;
resourceInputs["accessor"] = state?.accessor;
resourceInputs["binddn"] = state?.binddn;
resourceInputs["bindpass"] = state?.bindpass;
resourceInputs["caseSensitiveNames"] = state?.caseSensitiveNames;
resourceInputs["certificate"] = state?.certificate;
resourceInputs["clientTlsCert"] = state?.clientTlsCert;
resourceInputs["clientTlsKey"] = state?.clientTlsKey;
resourceInputs["connectionTimeout"] = state?.connectionTimeout;
resourceInputs["denyNullBind"] = state?.denyNullBind;
resourceInputs["description"] = state?.description;
resourceInputs["disableAutomatedRotation"] = state?.disableAutomatedRotation;
resourceInputs["disableRemount"] = state?.disableRemount;
resourceInputs["discoverdn"] = state?.discoverdn;
resourceInputs["groupattr"] = state?.groupattr;
resourceInputs["groupdn"] = state?.groupdn;
resourceInputs["groupfilter"] = state?.groupfilter;
resourceInputs["insecureTls"] = state?.insecureTls;
resourceInputs["local"] = state?.local;
resourceInputs["maxPageSize"] = state?.maxPageSize;
resourceInputs["namespace"] = state?.namespace;
resourceInputs["path"] = state?.path;
resourceInputs["rotationPeriod"] = state?.rotationPeriod;
resourceInputs["rotationSchedule"] = state?.rotationSchedule;
resourceInputs["rotationWindow"] = state?.rotationWindow;
resourceInputs["starttls"] = state?.starttls;
resourceInputs["tlsMaxVersion"] = state?.tlsMaxVersion;
resourceInputs["tlsMinVersion"] = state?.tlsMinVersion;
resourceInputs["tokenBoundCidrs"] = state?.tokenBoundCidrs;
resourceInputs["tokenExplicitMaxTtl"] = state?.tokenExplicitMaxTtl;
resourceInputs["tokenMaxTtl"] = state?.tokenMaxTtl;
resourceInputs["tokenNoDefaultPolicy"] = state?.tokenNoDefaultPolicy;
resourceInputs["tokenNumUses"] = state?.tokenNumUses;
resourceInputs["tokenPeriod"] = state?.tokenPeriod;
resourceInputs["tokenPolicies"] = state?.tokenPolicies;
resourceInputs["tokenTtl"] = state?.tokenTtl;
resourceInputs["tokenType"] = state?.tokenType;
resourceInputs["upndomain"] = state?.upndomain;
resourceInputs["url"] = state?.url;
resourceInputs["useTokenGroups"] = state?.useTokenGroups;
resourceInputs["userattr"] = state?.userattr;
resourceInputs["userdn"] = state?.userdn;
resourceInputs["userfilter"] = state?.userfilter;
resourceInputs["usernameAsAlias"] = state?.usernameAsAlias;
}
else {
const args = argsOrState;
if (args?.url === undefined && !opts.urn) {
throw new Error("Missing required property 'url'");
}
resourceInputs["binddn"] = args?.binddn;
resourceInputs["bindpass"] = args?.bindpass ? pulumi.secret(args.bindpass) : undefined;
resourceInputs["caseSensitiveNames"] = args?.caseSensitiveNames;
resourceInputs["certificate"] = args?.certificate;
resourceInputs["clientTlsCert"] = args?.clientTlsCert;
resourceInputs["clientTlsKey"] = args?.clientTlsKey ? pulumi.secret(args.clientTlsKey) : undefined;
resourceInputs["connectionTimeout"] = args?.connectionTimeout;
resourceInputs["denyNullBind"] = args?.denyNullBind;
resourceInputs["description"] = args?.description;
resourceInputs["disableAutomatedRotation"] = args?.disableAutomatedRotation;
resourceInputs["disableRemount"] = args?.disableRemount;
resourceInputs["discoverdn"] = args?.discoverdn;
resourceInputs["groupattr"] = args?.groupattr;
resourceInputs["groupdn"] = args?.groupdn;
resourceInputs["groupfilter"] = args?.groupfilter;
resourceInputs["insecureTls"] = args?.insecureTls;
resourceInputs["local"] = args?.local;
resourceInputs["maxPageSize"] = args?.maxPageSize;
resourceInputs["namespace"] = args?.namespace;
resourceInputs["path"] = args?.path;
resourceInputs["rotationPeriod"] = args?.rotationPeriod;
resourceInputs["rotationSchedule"] = args?.rotationSchedule;
resourceInputs["rotationWindow"] = args?.rotationWindow;
resourceInputs["starttls"] = args?.starttls;
resourceInputs["tlsMaxVersion"] = args?.tlsMaxVersion;
resourceInputs["tlsMinVersion"] = args?.tlsMinVersion;
resourceInputs["tokenBoundCidrs"] = args?.tokenBoundCidrs;
resourceInputs["tokenExplicitMaxTtl"] = args?.tokenExplicitMaxTtl;
resourceInputs["tokenMaxTtl"] = args?.tokenMaxTtl;
resourceInputs["tokenNoDefaultPolicy"] = args?.tokenNoDefaultPolicy;
resourceInputs["tokenNumUses"] = args?.tokenNumUses;
resourceInputs["tokenPeriod"] = args?.tokenPeriod;
resourceInputs["tokenPolicies"] = args?.tokenPolicies;
resourceInputs["tokenTtl"] = args?.tokenTtl;
resourceInputs["tokenType"] = args?.tokenType;
resourceInputs["upndomain"] = args?.upndomain;
resourceInputs["url"] = args?.url;
resourceInputs["useTokenGroups"] = args?.useTokenGroups;
resourceInputs["userattr"] = args?.userattr;
resourceInputs["userdn"] = args?.userdn;
resourceInputs["userfilter"] = args?.userfilter;
resourceInputs["usernameAsAlias"] = args?.usernameAsAlias;
resourceInputs["accessor"] = undefined /*out*/;
}
opts = pulumi.mergeOptions(utilities.resourceOptsDefaults(), opts);
const secretOpts = { additionalSecretOutputs: ["bindpass", "clientTlsKey"] };
opts = pulumi.mergeOptions(opts, secretOpts);
super(AuthBackend.__pulumiType, name, resourceInputs, opts);
}
}
exports.AuthBackend = AuthBackend;
/** @internal */
AuthBackend.__pulumiType = 'vault:ldap/authBackend:AuthBackend';
//# sourceMappingURL=authBackend.js.map