{"attribution":"This Pulumi package is based on the [`akeyless` Terraform Provider](https://github.com/akeyless-community/terraform-provider-akeyless).","config":{"variables":{"apiGatewayAddress":{"description":"Origin URL of the API Gateway server. This is a URL with a scheme, a hostname and a port.","type":"string"},"apiKeyLogins":{"description":"A configuration block, described below, that attempts to authenticate using API-Key.","items":{"$ref":"#/types/akeyless:config%2FapiKeyLogins:apiKeyLogins"},"type":"array"},"awsIamLogins":{"description":"A configuration block, described below, that attempts to authenticate using AWS-IAM authentication credentials.","items":{"$ref":"#/types/akeyless:config%2FawsIamLogins:awsIamLogins"},"type":"array"},"azureAdLogins":{"description":"A configuration block, described below, that attempts to authenticate using Azure Active Directory authentication.","items":{"$ref":"#/types/akeyless:config%2FazureAdLogins:azureAdLogins"},"type":"array"},"certLogins":{"description":"A configuration block, described below, that attempts to authenticate using Certificate authentication.  The Certificate and the Private key can be provided as a command line variable or it will be pulled out of an environment variable named AKEYLESS_AUTH_CERT and AKEYLESS_AUTH_KEY.","items":{"$ref":"#/types/akeyless:config%2FcertLogins:certLogins"},"type":"array"},"emailLogins":{"description":"A configuration block, described below, that attempts to authenticate using email and password.","items":{"$ref":"#/types/akeyless:config%2FemailLogins:emailLogins"},"type":"array"},"gcpLogins":{"description":"A configuration block, described below, that attempts to authenticate using GCP-IAM authentication credentials.","items":{"$ref":"#/types/akeyless:config%2FgcpLogins:gcpLogins"},"type":"array"},"jwtLogins":{"description":"A configuration block, described below, that attempts to authenticate using JWT authentication.  The JWT can be provided as a command line variable or it will be pulled out of an environment variable named AKEYLESS_AUTH_JWT.","items":{"$ref":"#/types/akeyless:config%2FjwtLogins:jwtLogins"},"type":"array"},"tokenLogins":{"description":"A configuration block, described below, that attempts to authenticate using akeyless token. The token can be provided as a command line variable or it will be pulled out of an environment variable named AKEYLESS_AUTH_TOKEN.","items":{"$ref":"#/types/akeyless:config%2FtokenLogins:tokenLogins"},"type":"array"},"uidLogins":{"description":"A configuration block, described below, that attempts to authenticate using Universal Identity authentication.","items":{"$ref":"#/types/akeyless:config%2FuidLogins:uidLogins"},"type":"array"}}},"description":"A Pulumi provider dynamically bridged from akeyless.","functions":{"akeyless:index/getAuth:getAuth":{"description":"Authenticate to Akeyless and returns a token to be used by the provider\n","inputs":{"description":"A collection of arguments for invoking getAuth.\n","properties":{"apiKeyLogins":{"description":"A configuration block, described below, that attempts to authenticate using API-Key.\n","items":{"$ref":"#/types/akeyless:index%2FgetAuthApiKeyLogin:getAuthApiKeyLogin"},"type":"array"},"awsIamLogins":{"description":"A configuration block, described below, that attempts to authenticate using AWS-IAM authentication credentials.\n","items":{"$ref":"#/types/akeyless:index%2FgetAuthAwsIamLogin:getAuthAwsIamLogin"},"type":"array"},"azureAdLogins":{"description":"A configuration block, described below, that attempts to authenticate using Azure Active Directory authentication.\n","items":{"$ref":"#/types/akeyless:index%2FgetAuthAzureAdLogin:getAuthAzureAdLogin"},"type":"array"},"certLogins":{"description":"A configuration block, described below, that attempts to authenticate using Certificate authentication.  The Certificate and the Private key can be provided as a command line variable or it will be pulled out of an environment variable named AKEYLESS*AUTH*CERT and AKEYLESS*AUTH*KEY.\n","items":{"$ref":"#/types/akeyless:index%2FgetAuthCertLogin:getAuthCertLogin"},"type":"array"},"emailLogins":{"description":"A configuration block, described below, that attempts to authenticate using email and password.\n","items":{"$ref":"#/types/akeyless:index%2FgetAuthEmailLogin:getAuthEmailLogin"},"type":"array"},"gcpLogins":{"description":"A configuration block, described below, that attempts to authenticate using GCP-IAM authentication credentials.\n","items":{"$ref":"#/types/akeyless:index%2FgetAuthGcpLogin:getAuthGcpLogin"},"type":"array"},"id":{"description":"The ID of this resource.\n","type":"string"},"jwtLogins":{"description":"A configuration block, described below, that attempts to authenticate using JWT authentication.  The JWT can be provided as a command line variable or it will be pulled out of an environment variable named AKEYLESS*AUTH*JWT.\n","items":{"$ref":"#/types/akeyless:index%2FgetAuthJwtLogin:getAuthJwtLogin"},"type":"array"},"uidLogins":{"description":"A configuration block, described below, that attempts to authenticate using Universal Identity authentication.\n","items":{"$ref":"#/types/akeyless:index%2FgetAuthUidLogin:getAuthUidLogin"},"type":"array"}},"type":"object"},"outputs":{"description":"A collection of values returned by getAuth.\n","properties":{"apiKeyLogins":{"description":"A configuration block, described below, that attempts to authenticate using API-Key.\n","items":{"$ref":"#/types/akeyless:index%2FgetAuthApiKeyLogin:getAuthApiKeyLogin"},"type":"array"},"awsIamLogins":{"description":"A configuration block, described below, that attempts to authenticate using AWS-IAM authentication credentials.\n","items":{"$ref":"#/types/akeyless:index%2FgetAuthAwsIamLogin:getAuthAwsIamLogin"},"type":"array"},"azureAdLogins":{"description":"A configuration block, described below, that attempts to authenticate using Azure Active Directory authentication.\n","items":{"$ref":"#/types/akeyless:index%2FgetAuthAzureAdLogin:getAuthAzureAdLogin"},"type":"array"},"certLogins":{"description":"A configuration block, described below, that attempts to authenticate using Certificate authentication.  The Certificate and the Private key can be provided as a command line variable or it will be pulled out of an environment variable named AKEYLESS*AUTH*CERT and AKEYLESS*AUTH*KEY.\n","items":{"$ref":"#/types/akeyless:index%2FgetAuthCertLogin:getAuthCertLogin"},"type":"array"},"completeAuthLink":{"description":"Complete authentication link\n","type":"string"},"emailLogins":{"description":"A configuration block, described below, that attempts to authenticate using email and password.\n","items":{"$ref":"#/types/akeyless:index%2FgetAuthEmailLogin:getAuthEmailLogin"},"type":"array"},"expiration":{"description":"Token expiration time\n","type":"string"},"gcpLogins":{"description":"A configuration block, described below, that attempts to authenticate using GCP-IAM authentication credentials.\n","items":{"$ref":"#/types/akeyless:index%2FgetAuthGcpLogin:getAuthGcpLogin"},"type":"array"},"id":{"description":"The ID of this resource.\n","type":"string"},"jwtLogins":{"description":"A configuration block, described below, that attempts to authenticate using JWT authentication.  The JWT can be provided as a command line variable or it will be pulled out of an environment variable named AKEYLESS*AUTH*JWT.\n","items":{"$ref":"#/types/akeyless:index%2FgetAuthJwtLogin:getAuthJwtLogin"},"type":"array"},"token":{"description":"The token\n","secret":true,"type":"string"},"uidLogins":{"description":"A configuration block, described below, that attempts to authenticate using Universal Identity authentication.\n","items":{"$ref":"#/types/akeyless:index%2FgetAuthUidLogin:getAuthUidLogin"},"type":"array"}},"required":["completeAuthLink","expiration","id","token"],"type":"object"}},"akeyless:index/getAuthMethod:getAuthMethod":{"description":"Auth Method data source\n\n## Example Usage\n\n<!--Start PulumiCodeChooser -->\n```typescript\nimport * as pulumi from \"@pulumi/pulumi\";\nimport * as akeyless from \"@pulumi/akeyless\";\n\nconst apiKey = akeyless.getAuthMethod({\n    path: \"terraform/auth-method-api-key\",\n});\n```\n```python\nimport pulumi\nimport pulumi_akeyless as akeyless\n\napi_key = akeyless.get_auth_method(path=\"terraform/auth-method-api-key\")\n```\n```csharp\nusing System.Collections.Generic;\nusing System.Linq;\nusing Pulumi;\nusing Akeyless = Pulumi.Akeyless;\n\nreturn await Deployment.RunAsync(() => \n{\n    var apiKey = Akeyless.GetAuthMethod.Invoke(new()\n    {\n        Path = \"terraform/auth-method-api-key\",\n    });\n\n});\n```\n```go\npackage main\n\nimport (\n\t\"github.com/pulumi/pulumi-terraform-provider/sdks/go/akeyless/v2/akeyless\"\n\t\"github.com/pulumi/pulumi/sdk/v3/go/pulumi\"\n)\n\nfunc main() {\n\tpulumi.Run(func(ctx *pulumi.Context) error {\n\t\t_, err := akeyless.GetAuthMethod(ctx, &akeyless.GetAuthMethodArgs{\n\t\t\tPath: \"terraform/auth-method-api-key\",\n\t\t}, nil)\n\t\tif err != nil {\n\t\t\treturn err\n\t\t}\n\t\treturn nil\n\t})\n}\n```\n```java\npackage generated_program;\n\nimport com.pulumi.Context;\nimport com.pulumi.Pulumi;\nimport com.pulumi.core.Output;\nimport com.pulumi.akeyless.AkeylessFunctions;\nimport com.pulumi.akeyless.inputs.GetAuthMethodArgs;\nimport java.util.List;\nimport java.util.ArrayList;\nimport java.util.Map;\nimport java.io.File;\nimport java.nio.file.Files;\nimport java.nio.file.Paths;\n\npublic class App {\n    public static void main(String[] args) {\n        Pulumi.run(App::stack);\n    }\n\n    public static void stack(Context ctx) {\n        final var apiKey = AkeylessFunctions.getAuthMethod(GetAuthMethodArgs.builder()\n            .path(\"terraform/auth-method-api-key\")\n            .build());\n\n    }\n}\n```\n```yaml\nvariables:\n  apiKey:\n    fn::invoke:\n      function: akeyless:getAuthMethod\n      arguments:\n        path: terraform/auth-method-api-key\n```\n<!--End PulumiCodeChooser -->\n","inputs":{"description":"A collection of arguments for invoking getAuthMethod.\n","properties":{"id":{"description":"The ID of this resource.\n","type":"string"},"path":{"description":"The path where the auth method is stored.\n","type":"string"}},"required":["path"],"type":"object"},"outputs":{"description":"A collection of values returned by getAuthMethod.\n","properties":{"accessDate":{"description":"The access date of the auth method.\n","type":"string"},"accessDateDisplay":{"description":"The display format of the access date.\n","type":"string"},"accessId":{"description":"The access ID of the auth method.\n","type":"string"},"accountId":{"description":"The account ID associated with the auth method.\n","type":"string"},"associatedGwIds":{"description":"The list of gateway IDs associated with the auth method.\n","items":{"type":"number"},"type":"array"},"authMethodId":{"description":"The unique identifier of the auth method.\n","type":"number"},"authMethodName":{"description":"The name of the auth method.\n","type":"string"},"clientPermissions":{"description":"The list of client permissions.\n","items":{"type":"string"},"type":"array"},"creationDate":{"description":"The creation date of the auth method.\n","type":"string"},"deleteProtection":{"description":"Whether delete protection is enabled.\n","type":"boolean"},"description":{"description":"The description of the auth method.\n","type":"string"},"id":{"description":"The ID of this resource.\n","type":"string"},"isApproved":{"description":"Whether the auth method is approved.\n","type":"boolean"},"modificationDate":{"description":"The modification date of the auth method.\n","type":"string"},"path":{"description":"The path where the auth method is stored.\n","type":"string"}},"required":["accessDate","accessDateDisplay","accessId","accountId","associatedGwIds","authMethodId","authMethodName","clientPermissions","creationDate","deleteProtection","description","id","isApproved","modificationDate","path"],"type":"object"}},"akeyless:index/getCertificate:getCertificate":{"description":"Certificate data source\n","inputs":{"description":"A collection of arguments for invoking getCertificate.\n","properties":{"id":{"description":"The ID of this resource.\n","type":"string"},"ignoreCache":{"description":"Retrieve the Secret value without checking the Gateway's cache [true/false]\n","type":"string"},"name":{"description":"Certificate name\n","type":"string"},"version":{"description":"Certificate version\n","type":"number"}},"type":"object"},"outputs":{"description":"A collection of values returned by getCertificate.\n","properties":{"certificatePem":{"description":"The certificate value in pem format\n","secret":true,"type":"string"},"id":{"description":"The ID of this resource.\n","type":"string"},"ignoreCache":{"description":"Retrieve the Secret value without checking the Gateway's cache [true/false]\n","type":"string"},"name":{"description":"Certificate name\n","type":"string"},"privateKeyPem":{"description":"The private key value in pem format\n","secret":true,"type":"string"},"version":{"description":"Certificate version\n","type":"number"}},"required":["certificatePem","id","privateKeyPem"],"type":"object"}},"akeyless:index/getCsr:getCsr":{"description":"Generate a new CSR data source\n","inputs":{"description":"A collection of arguments for invoking getCsr.\n","properties":{"alg":{"description":"The algorithm (RSA/Elliptic-curve) to use for generating the new key\n","type":"string"},"altNames":{"description":"A comma-separated list of dns alternative names\n","type":"string"},"certificateType":{"description":"The certificate type to be included in the CSR certificate (ssl-client/ssl-server/certificate-signing)\n","type":"string"},"city":{"description":"The city to be included in the CSR\n","type":"string"},"commonName":{"description":"The common name to be included in the CSR certificate\n","type":"string"},"country":{"description":"The country to be included in the CSR\n","type":"string"},"critical":{"description":"Add critical to the key usage extension (will be false if not added)\n","type":"boolean"},"dep":{"description":"The department to be included in the CSR\n","type":"string"},"emailAddresses":{"description":"A comma-separated list of email addresses alternative names\n","type":"string"},"generateKey":{"description":"Generate a new classic key for the csr\n","type":"boolean"},"id":{"description":"The ID of this resource.\n","type":"string"},"ipAddresses":{"description":"A comma-separated list of ip addresses alternative names\n","type":"string"},"keyType":{"description":"The type of the key to generate (classic-key/dfc)\n","type":"string"},"name":{"description":"The classic key name\n","type":"string"},"org":{"description":"The organization to be included in the CSR\n","type":"string"},"splitLevel":{"description":"The number of fragments that the item will be split into (not includes customer fragment, relevant only for dfc keys)\n","type":"number"},"state":{"description":"The state to be included in the CSR\n","type":"string"},"uriSans":{"description":"A comma-separated list of uri alternative names\n","type":"string"}},"required":["commonName","name"],"type":"object"},"outputs":{"description":"A collection of values returned by getCsr.\n","properties":{"alg":{"description":"The algorithm (RSA/Elliptic-curve) to use for generating the new key\n","type":"string"},"altNames":{"description":"A comma-separated list of dns alternative names\n","type":"string"},"certificateType":{"description":"The certificate type to be included in the CSR certificate (ssl-client/ssl-server/certificate-signing)\n","type":"string"},"city":{"description":"The city to be included in the CSR\n","type":"string"},"commonName":{"description":"The common name to be included in the CSR certificate\n","type":"string"},"country":{"description":"The country to be included in the CSR\n","type":"string"},"critical":{"description":"Add critical to the key usage extension (will be false if not added)\n","type":"boolean"},"data":{"description":"The generated CSR data\n","type":"string"},"dep":{"description":"The department to be included in the CSR\n","type":"string"},"emailAddresses":{"description":"A comma-separated list of email addresses alternative names\n","type":"string"},"generateKey":{"description":"Generate a new classic key for the csr\n","type":"boolean"},"id":{"description":"The ID of this resource.\n","type":"string"},"ipAddresses":{"description":"A comma-separated list of ip addresses alternative names\n","type":"string"},"keyType":{"description":"The type of the key to generate (classic-key/dfc)\n","type":"string"},"name":{"description":"The classic key name\n","type":"string"},"org":{"description":"The organization to be included in the CSR\n","type":"string"},"splitLevel":{"description":"The number of fragments that the item will be split into (not includes customer fragment, relevant only for dfc keys)\n","type":"number"},"state":{"description":"The state to be included in the CSR\n","type":"string"},"uriSans":{"description":"A comma-separated list of uri alternative names\n","type":"string"}},"required":["commonName","data","id","name"],"type":"object"}},"akeyless:index/getDetokenize:getDetokenize":{"description":"Decrypts text with a tokenizer data source\n","inputs":{"description":"A collection of arguments for invoking getDetokenize.\n","properties":{"ciphertext":{"description":"Data to be decrypted\n","type":"string"},"id":{"description":"The ID of this resource.\n","type":"string"},"tokenizerName":{"description":"The name of the tokenizer to use in the decryption process\n","type":"string"},"tweak":{"description":"Base64 encoded tweak for vaultless encryption\n","type":"string"}},"required":["ciphertext","tokenizerName"],"type":"object"},"outputs":{"description":"A collection of values returned by getDetokenize.\n","properties":{"ciphertext":{"description":"Data to be decrypted\n","type":"string"},"id":{"description":"The ID of this resource.\n","type":"string"},"result":{"type":"string"},"tokenizerName":{"description":"The name of the tokenizer to use in the decryption process\n","type":"string"},"tweak":{"description":"Base64 encoded tweak for vaultless encryption\n","type":"string"}},"required":["ciphertext","id","result","tokenizerName","tweak"],"type":"object"}},"akeyless:index/getDynamicSecret:getDynamicSecret":{"description":"Dynamic Secret data source\n\n## Example Usage\n\n<!--Start PulumiCodeChooser -->\n```typescript\nimport * as pulumi from \"@pulumi/pulumi\";\nimport * as akeyless from \"@pulumi/akeyless\";\n\nconst secret = akeyless.getDynamicSecret({\n    path: \"terraform/dynamic-secret\",\n});\n```\n```python\nimport pulumi\nimport pulumi_akeyless as akeyless\n\nsecret = akeyless.get_dynamic_secret(path=\"terraform/dynamic-secret\")\n```\n```csharp\nusing System.Collections.Generic;\nusing System.Linq;\nusing Pulumi;\nusing Akeyless = Pulumi.Akeyless;\n\nreturn await Deployment.RunAsync(() => \n{\n    var secret = Akeyless.GetDynamicSecret.Invoke(new()\n    {\n        Path = \"terraform/dynamic-secret\",\n    });\n\n});\n```\n```go\npackage main\n\nimport (\n\t\"github.com/pulumi/pulumi-terraform-provider/sdks/go/akeyless/v2/akeyless\"\n\t\"github.com/pulumi/pulumi/sdk/v3/go/pulumi\"\n)\n\nfunc main() {\n\tpulumi.Run(func(ctx *pulumi.Context) error {\n\t\t_, err := akeyless.GetDynamicSecret(ctx, &akeyless.GetDynamicSecretArgs{\n\t\t\tPath: \"terraform/dynamic-secret\",\n\t\t}, nil)\n\t\tif err != nil {\n\t\t\treturn err\n\t\t}\n\t\treturn nil\n\t})\n}\n```\n```java\npackage generated_program;\n\nimport com.pulumi.Context;\nimport com.pulumi.Pulumi;\nimport com.pulumi.core.Output;\nimport com.pulumi.akeyless.AkeylessFunctions;\nimport com.pulumi.akeyless.inputs.GetDynamicSecretArgs;\nimport java.util.List;\nimport java.util.ArrayList;\nimport java.util.Map;\nimport java.io.File;\nimport java.nio.file.Files;\nimport java.nio.file.Paths;\n\npublic class App {\n    public static void main(String[] args) {\n        Pulumi.run(App::stack);\n    }\n\n    public static void stack(Context ctx) {\n        final var secret = AkeylessFunctions.getDynamicSecret(GetDynamicSecretArgs.builder()\n            .path(\"terraform/dynamic-secret\")\n            .build());\n\n    }\n}\n```\n```yaml\nvariables:\n  secret:\n    fn::invoke:\n      function: akeyless:getDynamicSecret\n      arguments:\n        path: terraform/dynamic-secret\n```\n<!--End PulumiCodeChooser -->\n","inputs":{"description":"A collection of arguments for invoking getDynamicSecret.\n","properties":{"args":{"description":"Optional arguments as key=value pairs or JSON strings, e.g - \"--args=csr=base64*encoded*csr --args=common*name=bar\" or args='{\"csr\":\"base64*encoded_csr\"}. It is possible to combine both formats.'\n","items":{"type":"string"},"type":"array"},"dbname":{"description":"DBName: Optional override DB name (works only if DS allows it. only relevant for MSSQL)\n","type":"string"},"host":{"description":"Host\n","type":"string"},"id":{"description":"The ID of this resource.\n","type":"string"},"path":{"description":"The path where the secret is stored. Defaults to the latest version.\n","type":"string"},"target":{"description":"Target Name\n","type":"string"},"timeout":{"description":"Timeout in seconds\n","type":"number"}},"required":["path"],"type":"object"},"outputs":{"description":"A collection of values returned by getDynamicSecret.\n","properties":{"args":{"description":"Optional arguments as key=value pairs or JSON strings, e.g - \"--args=csr=base64*encoded*csr --args=common*name=bar\" or args='{\"csr\":\"base64*encoded_csr\"}. It is possible to combine both formats.'\n","items":{"type":"string"},"type":"array"},"dbname":{"description":"DBName: Optional override DB name (works only if DS allows it. only relevant for MSSQL)\n","type":"string"},"host":{"description":"Host\n","type":"string"},"id":{"description":"The ID of this resource.\n","type":"string"},"path":{"description":"The path where the secret is stored. Defaults to the latest version.\n","type":"string"},"target":{"description":"Target Name\n","type":"string"},"timeout":{"description":"Timeout in seconds\n","type":"number"},"value":{"description":"The secret contents.\n","secret":true,"type":"string"}},"required":["id","path","value"],"type":"object"}},"akeyless:index/getDynamicSecretTmpCreds:getDynamicSecretTmpCreds":{"description":"Get dynamic secret temporary credentials list data source\n","inputs":{"description":"A collection of arguments for invoking getDynamicSecretTmpCreds.\n","properties":{"id":{"description":"The ID of this resource.\n","type":"string"},"name":{"description":"Dynamic Secret Name\n","type":"string"}},"required":["name"],"type":"object"},"outputs":{"description":"A collection of values returned by getDynamicSecretTmpCreds.\n","properties":{"id":{"description":"The ID of this resource.\n","type":"string"},"name":{"description":"Dynamic Secret Name\n","type":"string"},"value":{"description":"JSON-encoded list of temporary credentials data\n","type":"string"}},"required":["id","name","value"],"type":"object"}},"akeyless:index/getItems:getItems":{"description":"Get items data source\n","inputs":{"description":"A collection of arguments for invoking getItems.\n","properties":{"id":{"description":"The ID of this resource.\n","type":"string"},"path":{"description":"The path where the items are stored.\n","type":"string"}},"required":["path"],"type":"object"},"outputs":{"description":"A collection of values returned by getItems.\n","properties":{"id":{"description":"The ID of this resource.\n","type":"string"},"items":{"description":"List of items on a given path\n","items":{"$ref":"#/types/akeyless:index%2FgetItemsItem:getItemsItem"},"type":"array"},"path":{"description":"The path where the items are stored.\n","type":"string"}},"required":["id","items","path"],"type":"object"}},"akeyless:index/getK8sAuthConfig:getK8sAuthConfig":{"description":"Gets K8S Auth config data source\n","inputs":{"description":"A collection of arguments for invoking getK8sAuthConfig.\n","properties":{"name":{"description":"K8S Auth config name\n","type":"string"}},"required":["name"],"type":"object"},"outputs":{"description":"A collection of values returned by getK8sAuthConfig.\n","properties":{"amTokenExpiration":{"description":"AuthMethodTokenExpiration is time in seconds of expiration of the Akeyless Kube Auth Method token\n","type":"number"},"authMethodAccessId":{"description":"AuthMethodAccessId of the Kubernetes auth method\n","type":"string"},"authMethodPrvKeyPem":{"description":"AuthMethodSigningKey is the private key (in base64 of the PEM format) associated with the public key defined in the Kubernetes auth method, that used to sign the internal token for the Akeyless Kubernetes Auth Method\n","secret":true,"type":"string"},"clusterApiType":{"description":"Defines types of API access to cluster\n","type":"string"},"disableIssValidation":{"description":"DisableISSValidation is optional parameter to disable ISS validation\n","type":"boolean"},"id":{"description":"K8S Auth config ID\n","type":"string"},"k8sAuthType":{"description":"Kubernetes authentication type\n","type":"string"},"k8sCaCert":{"description":"K8SCACert is the CA Cert to use to call into the kubernetes API\n","type":"string"},"k8sClientCertData":{"description":"K8sClientCertData is the client certificate for k8s client certificate authentication\n","type":"string"},"k8sClientKeyData":{"description":"K8sClientKeyData is the client key for k8s client certificate authentication\n","type":"string"},"k8sHost":{"description":"K8SHost is the url string for the kubernetes API\n","type":"string"},"k8sIssuer":{"description":"K8SIssuer is the claim that specifies who issued the Kubernetes token\n","type":"string"},"k8sPubKeysPems":{"description":"K8SPublicKeysPEM is the list of public key in PEM format\n","items":{"type":"string"},"type":"array"},"k8sTokenReviewerJwt":{"description":"K8STokenReviewerJWT is the bearer for clusterApiTypeK8s, used during TokenReview API call\n","type":"string"},"name":{"description":"K8S Auth config name\n","type":"string"},"protectionKey":{"description":"The name of the key that protects the K8S Auth config\n","type":"string"},"rancherApiKey":{"description":"RancherApiKey the bear token for clusterApiTypeRancher\n","type":"string"},"rancherClusterId":{"description":"RancherClusterId cluster id as define in rancher (in case of clusterApiTypeRancher)\n","type":"string"},"useLocalCaJwt":{"description":"UseLocalCAJwt is an optional parameter to set defaulting to using the local service account when running in a Kubernetes pod\n","type":"boolean"}},"required":["amTokenExpiration","authMethodAccessId","authMethodPrvKeyPem","clusterApiType","disableIssValidation","id","k8sAuthType","k8sCaCert","k8sClientCertData","k8sClientKeyData","k8sHost","k8sIssuer","k8sPubKeysPems","k8sTokenReviewerJwt","name","protectionKey","rancherApiKey","rancherClusterId","useLocalCaJwt"],"type":"object"}},"akeyless:index/getKubeExecCreds:getKubeExecCreds":{"description":"Get credentials for authentication with Kubernetes cluster based on a PKI Cert Issuer data source\n","inputs":{"description":"A collection of arguments for invoking getKubeExecCreds.\n","properties":{"altNames":{"description":"The Subject Alternative Names to be included in the PKI certificate (in a comma-delimited list)\n","type":"string"},"certIssuerName":{"description":"The name of the PKI certificate issuer\n","type":"string"},"commonName":{"description":"The common name to be included in the PKI certificate\n","type":"string"},"csrDataBase64":{"description":"Certificate Signing Request contents encoded in base64 to generate the certificate with\n","type":"string"},"extendedKeyUsage":{"description":"A comma-separated list of extended key usage requests which will be used for certificate issuance. Supported values: 'clientauth', 'serverauth', 'codesigning'\n","type":"string"},"extraExtensions":{"description":"A json string that defines the requested extra extensions for the certificate\n","type":"string"},"id":{"description":"The ID of this resource.\n","type":"string"},"keyDataBase64":{"description":"pki key file contents encoded using Base64. If this option is used, the certificate will be printed to stdout\n","secret":true,"type":"string"},"maxPathLen":{"description":"The maximum path length for the generated certificate. -1 means unlimited unless the signing certificate has a maximum path length set\n","type":"number"},"ttl":{"description":"Updated certificate lifetime in seconds (must be less than the Certificate Issuer default TTL)\n","type":"string"},"uriSans":{"description":"The URI Subject Alternative Names to be included in the PKI certificate (in a comma-delimited list)\n","type":"string"}},"required":["certIssuerName"],"type":"object"},"outputs":{"description":"A collection of values returned by getKubeExecCreds.\n","properties":{"altNames":{"description":"The Subject Alternative Names to be included in the PKI certificate (in a comma-delimited list)\n","type":"string"},"apiVersion":{"description":"The API version of the Kubernetes exec credential\n","type":"string"},"certIssuerName":{"description":"The name of the PKI certificate issuer\n","type":"string"},"clientCertificateData":{"description":"The client certificate data for Kubernetes authentication\n","type":"string"},"clientKeyData":{"description":"The client key data for Kubernetes authentication\n","type":"string"},"commonName":{"description":"The common name to be included in the PKI certificate\n","type":"string"},"csrDataBase64":{"description":"Certificate Signing Request contents encoded in base64 to generate the certificate with\n","type":"string"},"extendedKeyUsage":{"description":"A comma-separated list of extended key usage requests which will be used for certificate issuance. Supported values: 'clientauth', 'serverauth', 'codesigning'\n","type":"string"},"extraExtensions":{"description":"A json string that defines the requested extra extensions for the certificate\n","type":"string"},"id":{"description":"The ID of this resource.\n","type":"string"},"keyDataBase64":{"description":"pki key file contents encoded using Base64. If this option is used, the certificate will be printed to stdout\n","secret":true,"type":"string"},"kind":{"description":"The kind of the Kubernetes exec credential\n","type":"string"},"maxPathLen":{"description":"The maximum path length for the generated certificate. -1 means unlimited unless the signing certificate has a maximum path length set\n","type":"number"},"parentCertificateData":{"description":"The parent certificate data for Kubernetes authentication\n","type":"string"},"ttl":{"description":"Updated certificate lifetime in seconds (must be less than the Certificate Issuer default TTL)\n","type":"string"},"uriSans":{"description":"The URI Subject Alternative Names to be included in the PKI certificate (in a comma-delimited list)\n","type":"string"}},"required":["apiVersion","certIssuerName","clientCertificateData","clientKeyData","id","kind","parentCertificateData"],"type":"object"}},"akeyless:index/getPkiCertificate:getPkiCertificate":{"description":"Generates PKI certificate data source\n","inputs":{"description":"A collection of arguments for invoking getPkiCertificate.\n","properties":{"altNames":{"description":"The Subject Alternative Names to be included in the PKI certificate (in a comma-delimited list)\n","type":"string"},"certIssuerName":{"description":"The name of the PKI certificate issuer\n","type":"string"},"commonName":{"description":"The common name to be included in the PKI certificate\n","type":"string"},"csrDataBase64":{"description":"Certificate Signing Request contents encoded in base64 to generate the certificate with\n","type":"string"},"extendedKeyUsage":{"description":"A comma-separated list of extended key usage requests which will be used for certificate issuance. Supported values: 'clientauth', 'serverauth', 'codesigning'.\n","type":"string"},"id":{"description":"The ID of this resource.\n","type":"string"},"keyDataBase64":{"description":"pki key file contents encoded using Base64\n","secret":true,"type":"string"},"ttl":{"description":"Updated certificate lifetime in seconds (must be less than the Certificate Issuer default TTL)\n","type":"number"},"uriSans":{"description":"The URI Subject Alternative Names to be included in the PKI certificate (in a comma-delimited list)\n","type":"string"}},"required":["certIssuerName"],"type":"object"},"outputs":{"description":"A collection of values returned by getPkiCertificate.\n","properties":{"altNames":{"description":"The Subject Alternative Names to be included in the PKI certificate (in a comma-delimited list)\n","type":"string"},"certDisplayId":{"description":"The certificate display ID\n","type":"string"},"certIssuerName":{"description":"The name of the PKI certificate issuer\n","type":"string"},"certItemId":{"description":"The certificate item ID\n","type":"number"},"commonName":{"description":"The common name to be included in the PKI certificate\n","type":"string"},"csrDataBase64":{"description":"Certificate Signing Request contents encoded in base64 to generate the certificate with\n","type":"string"},"data":{"description":"The certificate data\n","type":"string"},"extendedKeyUsage":{"description":"A comma-separated list of extended key usage requests which will be used for certificate issuance. Supported values: 'clientauth', 'serverauth', 'codesigning'.\n","type":"string"},"id":{"description":"The ID of this resource.\n","type":"string"},"keyDataBase64":{"description":"pki key file contents encoded using Base64\n","secret":true,"type":"string"},"parentCert":{"description":"The parent certificate\n","type":"string"},"path":{"description":"The path of the certificate\n","type":"string"},"readingToken":{"description":"The reading token\n","type":"string"},"ttl":{"description":"Updated certificate lifetime in seconds (must be less than the Certificate Issuer default TTL)\n","type":"number"},"uriSans":{"description":"The URI Subject Alternative Names to be included in the PKI certificate (in a comma-delimited list)\n","type":"string"}},"required":["certDisplayId","certIssuerName","certItemId","data","id","parentCert","path","readingToken"],"type":"object"}},"akeyless:index/getProducerTmpCreds:getProducerTmpCreds":{"description":"Get producer temporary credentials list data source\n","inputs":{"description":"A collection of arguments for invoking getProducerTmpCreds.\n","properties":{"id":{"description":"The ID of this resource.\n","type":"string"},"name":{"description":"Dynamic Secret Name\n","type":"string"}},"required":["name"],"type":"object"},"outputs":{"description":"A collection of values returned by getProducerTmpCreds.\n","properties":{"id":{"description":"The ID of this resource.\n","type":"string"},"name":{"description":"Dynamic Secret Name\n","type":"string"},"value":{"description":"JSON-encoded list of temporary credentials data\n","type":"string"}},"required":["id","name","value"],"type":"object"}},"akeyless:index/getResetAccessKey:getResetAccessKey":{"description":"Reset an Auth Method access key and return the new key\n","inputs":{"description":"A collection of arguments for invoking getResetAccessKey.\n","properties":{"id":{"description":"The ID of this resource.\n","type":"string"},"name":{"description":"Auth Method name\n","type":"string"}},"required":["name"],"type":"object"},"outputs":{"description":"A collection of values returned by getResetAccessKey.\n","properties":{"accessKey":{"description":"The newly generated access key\n","secret":true,"type":"string"},"id":{"description":"The ID of this resource.\n","type":"string"},"name":{"description":"Auth Method name\n","type":"string"}},"required":["accessKey","id","name"],"type":"object"}},"akeyless:index/getRole:getRole":{"description":"Role data source\n\n## Example Usage\n\n<!--Start PulumiCodeChooser -->\n```typescript\nimport * as pulumi from \"@pulumi/pulumi\";\nimport * as akeyless from \"@pulumi/akeyless\";\n\nconst demo_role = akeyless.getRole({\n    name: \"terraform/demo-role\",\n});\n```\n```python\nimport pulumi\nimport pulumi_akeyless as akeyless\n\ndemo_role = akeyless.get_role(name=\"terraform/demo-role\")\n```\n```csharp\nusing System.Collections.Generic;\nusing System.Linq;\nusing Pulumi;\nusing Akeyless = Pulumi.Akeyless;\n\nreturn await Deployment.RunAsync(() => \n{\n    var demo_role = Akeyless.GetRole.Invoke(new()\n    {\n        Name = \"terraform/demo-role\",\n    });\n\n});\n```\n```go\npackage main\n\nimport (\n\t\"github.com/pulumi/pulumi-terraform-provider/sdks/go/akeyless/v2/akeyless\"\n\t\"github.com/pulumi/pulumi/sdk/v3/go/pulumi\"\n)\n\nfunc main() {\n\tpulumi.Run(func(ctx *pulumi.Context) error {\n\t\t_, err := akeyless.LookupRole(ctx, &akeyless.LookupRoleArgs{\n\t\t\tName: \"terraform/demo-role\",\n\t\t}, nil)\n\t\tif err != nil {\n\t\t\treturn err\n\t\t}\n\t\treturn nil\n\t})\n}\n```\n```java\npackage generated_program;\n\nimport com.pulumi.Context;\nimport com.pulumi.Pulumi;\nimport com.pulumi.core.Output;\nimport com.pulumi.akeyless.AkeylessFunctions;\nimport com.pulumi.akeyless.inputs.GetRoleArgs;\nimport java.util.List;\nimport java.util.ArrayList;\nimport java.util.Map;\nimport java.io.File;\nimport java.nio.file.Files;\nimport java.nio.file.Paths;\n\npublic class App {\n    public static void main(String[] args) {\n        Pulumi.run(App::stack);\n    }\n\n    public static void stack(Context ctx) {\n        final var demo-role = AkeylessFunctions.getRole(GetRoleArgs.builder()\n            .name(\"terraform/demo-role\")\n            .build());\n\n    }\n}\n```\n```yaml\nvariables:\n  demo-role:\n    fn::invoke:\n      function: akeyless:getRole\n      arguments:\n        name: terraform/demo-role\n```\n<!--End PulumiCodeChooser -->\n","inputs":{"description":"A collection of arguments for invoking getRole.\n","properties":{"id":{"description":"The ID of this resource.\n","type":"string"},"name":{"description":"The Role name\n","type":"string"}},"required":["name"],"type":"object"},"outputs":{"description":"A collection of values returned by getRole.\n","properties":{"accessDate":{"description":"Access date of the role\n","type":"string"},"accessDateDisplay":{"description":"Access date display format\n","type":"string"},"assocAuthMethodWithRules":{"description":"Association between auth method and role with rules (JSON format)\n","type":"string"},"clientPermissions":{"description":"Client permissions associated with the role\n","items":{"type":"string"},"type":"array"},"creationDate":{"description":"Creation date of the role\n","type":"string"},"deleteProtection":{"description":"Protection from accidental deletion\n","type":"boolean"},"description":{"description":"Description of the role\n","type":"string"},"id":{"description":"The ID of this resource.\n","type":"string"},"modificationDate":{"description":"Last modification date of the role\n","type":"string"},"name":{"description":"The Role name\n","type":"string"},"roleAuthMethodsAssoc":{"description":"Role auth methods association (JSON format)\n","type":"string"},"roleId":{"description":"Role ID\n","type":"number"},"roleName":{"description":"Role name\n","type":"string"},"rules":{"description":"Role rules (JSON format)\n","type":"string"}},"required":["accessDate","accessDateDisplay","assocAuthMethodWithRules","clientPermissions","creationDate","deleteProtection","description","id","modificationDate","name","roleAuthMethodsAssoc","roleId","roleName","rules"],"type":"object"}},"akeyless:index/getRotatedSecret:getRotatedSecret":{"description":"Get rotated secret value data source\n","inputs":{"description":"A collection of arguments for invoking getRotatedSecret.\n","properties":{"host":{"description":"Get rotated secret value of specific Host (relevant only for Linked Target)\n","type":"string"},"id":{"description":"The ID of this resource.\n","type":"string"},"ignoreCache":{"description":"Retrieve the Secret value without checking the Gateway's cache [true/false]\n","type":"string"},"name":{"description":"Secret name\n","type":"string"},"version":{"description":"Secret version\n","type":"number"}},"required":["name"],"type":"object"},"outputs":{"description":"A collection of values returned by getRotatedSecret.\n","properties":{"host":{"description":"Get rotated secret value of specific Host (relevant only for Linked Target)\n","type":"string"},"id":{"description":"The ID of this resource.\n","type":"string"},"ignoreCache":{"description":"Retrieve the Secret value without checking the Gateway's cache [true/false]\n","type":"string"},"name":{"description":"Secret name\n","type":"string"},"value":{"description":"output\n","secret":true,"type":"string"},"version":{"description":"Secret version\n","type":"number"}},"required":["id","name","value"],"type":"object"}},"akeyless:index/getRsaPub:getRsaPub":{"description":"Obtain the public key from a specific RSA private key data source\n","inputs":{"description":"A collection of arguments for invoking getRsaPub.\n","properties":{"id":{"description":"The ID of this resource.\n","type":"string"},"name":{"description":"Name of RSA key to extract the public key from\n","type":"string"}},"required":["name"],"type":"object"},"outputs":{"description":"A collection of values returned by getRsaPub.\n","properties":{"id":{"description":"The ID of this resource.\n","type":"string"},"name":{"description":"Name of RSA key to extract the public key from\n","type":"string"},"pem":{"description":"PEM formatted public key\n","type":"string"},"raw":{"description":"Raw format of the public key\n","type":"string"},"ssh":{"description":"SSH format of the public key\n","type":"string"}},"required":["id","name","pem","raw","ssh"],"type":"object"}},"akeyless:index/getSecret:getSecret":{"description":"Reads any secret data (currently support Static/Dynamic)\n\n## Example Usage\n\n<!--Start PulumiCodeChooser -->\n```typescript\nimport * as pulumi from \"@pulumi/pulumi\";\nimport * as akeyless from \"@pulumi/akeyless\";\n\nconst secret = akeyless.getSecret({\n    path: \"terraform/MyFirstSecret\",\n});\n```\n```python\nimport pulumi\nimport pulumi_akeyless as akeyless\n\nsecret = akeyless.get_secret(path=\"terraform/MyFirstSecret\")\n```\n```csharp\nusing System.Collections.Generic;\nusing System.Linq;\nusing Pulumi;\nusing Akeyless = Pulumi.Akeyless;\n\nreturn await Deployment.RunAsync(() => \n{\n    var secret = Akeyless.GetSecret.Invoke(new()\n    {\n        Path = \"terraform/MyFirstSecret\",\n    });\n\n});\n```\n```go\npackage main\n\nimport (\n\t\"github.com/pulumi/pulumi-terraform-provider/sdks/go/akeyless/v2/akeyless\"\n\t\"github.com/pulumi/pulumi/sdk/v3/go/pulumi\"\n)\n\nfunc main() {\n\tpulumi.Run(func(ctx *pulumi.Context) error {\n\t\t_, err := akeyless.GetSecret(ctx, &akeyless.GetSecretArgs{\n\t\t\tPath: \"terraform/MyFirstSecret\",\n\t\t}, nil)\n\t\tif err != nil {\n\t\t\treturn err\n\t\t}\n\t\treturn nil\n\t})\n}\n```\n```java\npackage generated_program;\n\nimport com.pulumi.Context;\nimport com.pulumi.Pulumi;\nimport com.pulumi.core.Output;\nimport com.pulumi.akeyless.AkeylessFunctions;\nimport com.pulumi.akeyless.inputs.GetSecretArgs;\nimport java.util.List;\nimport java.util.ArrayList;\nimport java.util.Map;\nimport java.io.File;\nimport java.nio.file.Files;\nimport java.nio.file.Paths;\n\npublic class App {\n    public static void main(String[] args) {\n        Pulumi.run(App::stack);\n    }\n\n    public static void stack(Context ctx) {\n        final var secret = AkeylessFunctions.getSecret(GetSecretArgs.builder()\n            .path(\"terraform/MyFirstSecret\")\n            .build());\n\n    }\n}\n```\n```yaml\nvariables:\n  secret:\n    fn::invoke:\n      function: akeyless:getSecret\n      arguments:\n        path: terraform/MyFirstSecret\n```\n<!--End PulumiCodeChooser -->\n","inputs":{"description":"A collection of arguments for invoking getSecret.\n","properties":{"id":{"description":"The ID of this resource.\n","type":"string"},"path":{"description":"The path where the secret is stored\n","type":"string"}},"required":["path"],"type":"object"},"outputs":{"description":"A collection of values returned by getSecret.\n","properties":{"id":{"description":"The ID of this resource.\n","type":"string"},"path":{"description":"The path where the secret is stored\n","type":"string"},"value":{"description":"The secret contents\n","secret":true,"type":"string"},"version":{"description":"The version of the secret.\n","type":"number"}},"required":["id","path","value","version"],"type":"object"}},"akeyless:index/getSshCertificate:getSshCertificate":{"description":"Generates SSH certificate data source\n","inputs":{"description":"A collection of arguments for invoking getSshCertificate.\n","properties":{"certIssuerName":{"description":"The name of the SSH certificate issuer\n","type":"string"},"certUsername":{"description":"The username to sign in the SSH certificate\n","type":"string"},"id":{"description":"The ID of this resource.\n","type":"string"},"legacySigningAlgName":{"description":"Set this option to output legacy ('ssh-rsa-cert-v01@openssh.com') signing algorithm name in the certificate.\n","type":"boolean"},"publicKeyData":{"description":"SSH public key file contents. If this option is used, the certificate will be printed to stdout\n","type":"string"},"ttl":{"description":"Updated certificate lifetime in seconds (must be less than the Certificate Issuer default TTL)\n","type":"number"}},"required":["certIssuerName","certUsername","publicKeyData"],"type":"object"},"outputs":{"description":"A collection of values returned by getSshCertificate.\n","properties":{"certIssuerName":{"description":"The name of the SSH certificate issuer\n","type":"string"},"certUsername":{"description":"The username to sign in the SSH certificate\n","type":"string"},"data":{"secret":true,"type":"string"},"id":{"description":"The ID of this resource.\n","type":"string"},"legacySigningAlgName":{"description":"Set this option to output legacy ('ssh-rsa-cert-v01@openssh.com') signing algorithm name in the certificate.\n","type":"boolean"},"path":{"description":"The path of the SSH certificate\n","type":"string"},"publicKeyData":{"description":"SSH public key file contents. If this option is used, the certificate will be printed to stdout\n","type":"string"},"ttl":{"description":"Updated certificate lifetime in seconds (must be less than the Certificate Issuer default TTL)\n","type":"number"}},"required":["certIssuerName","certUsername","data","id","path","publicKeyData"],"type":"object"}},"akeyless:index/getStaticSecret:getStaticSecret":{"description":"Static secret data source\n\n## Example Usage\n\n<!--Start PulumiCodeChooser -->\n```typescript\nimport * as pulumi from \"@pulumi/pulumi\";\nimport * as akeyless from \"@pulumi/akeyless\";\n\nconst secret = akeyless.getStaticSecret({\n    path: \"terraform/MyFirstSecret\",\n});\n```\n```python\nimport pulumi\nimport pulumi_akeyless as akeyless\n\nsecret = akeyless.get_static_secret(path=\"terraform/MyFirstSecret\")\n```\n```csharp\nusing System.Collections.Generic;\nusing System.Linq;\nusing Pulumi;\nusing Akeyless = Pulumi.Akeyless;\n\nreturn await Deployment.RunAsync(() => \n{\n    var secret = Akeyless.GetStaticSecret.Invoke(new()\n    {\n        Path = \"terraform/MyFirstSecret\",\n    });\n\n});\n```\n```go\npackage main\n\nimport (\n\t\"github.com/pulumi/pulumi-terraform-provider/sdks/go/akeyless/v2/akeyless\"\n\t\"github.com/pulumi/pulumi/sdk/v3/go/pulumi\"\n)\n\nfunc main() {\n\tpulumi.Run(func(ctx *pulumi.Context) error {\n\t\t_, err := akeyless.LookupStaticSecret(ctx, &akeyless.LookupStaticSecretArgs{\n\t\t\tPath: \"terraform/MyFirstSecret\",\n\t\t}, nil)\n\t\tif err != nil {\n\t\t\treturn err\n\t\t}\n\t\treturn nil\n\t})\n}\n```\n```java\npackage generated_program;\n\nimport com.pulumi.Context;\nimport com.pulumi.Pulumi;\nimport com.pulumi.core.Output;\nimport com.pulumi.akeyless.AkeylessFunctions;\nimport com.pulumi.akeyless.inputs.GetStaticSecretArgs;\nimport java.util.List;\nimport java.util.ArrayList;\nimport java.util.Map;\nimport java.io.File;\nimport java.nio.file.Files;\nimport java.nio.file.Paths;\n\npublic class App {\n    public static void main(String[] args) {\n        Pulumi.run(App::stack);\n    }\n\n    public static void stack(Context ctx) {\n        final var secret = AkeylessFunctions.getStaticSecret(GetStaticSecretArgs.builder()\n            .path(\"terraform/MyFirstSecret\")\n            .build());\n\n    }\n}\n```\n```yaml\nvariables:\n  secret:\n    fn::invoke:\n      function: akeyless:getStaticSecret\n      arguments:\n        path: terraform/MyFirstSecret\n```\n<!--End PulumiCodeChooser -->\n","inputs":{"description":"A collection of arguments for invoking getStaticSecret.\n","properties":{"id":{"description":"The ID of this resource.\n","type":"string"},"ignoreCache":{"description":"Retrieve the Secret value without checking the Gateway's cache [true/false]\n","type":"string"},"path":{"description":"The path where the secret is stored. Defaults to the latest version.\n","type":"string"},"version":{"description":"The version of the secret.\n","type":"number"}},"required":["path"],"type":"object"},"outputs":{"description":"A collection of values returned by getStaticSecret.\n","properties":{"customField":{"additionalProperties":{"type":"string"},"description":"Additional custom fields to associate with the item (e.g fieldName1=value1) (relevant only for type 'password')\n","secret":true,"type":"object"},"format":{"description":"StaticSecretFormat defines the format of static secret (e.g. Text)\n","type":"string"},"id":{"description":"The ID of this resource.\n","type":"string"},"ignoreCache":{"description":"Retrieve the Secret value without checking the Gateway's cache [true/false]\n","type":"string"},"injectUrls":{"description":"List of URLs associated with the item (relevant only for type 'password')\n","items":{"type":"string"},"type":"array"},"keyValuePairs":{"additionalProperties":{"type":"string"},"description":"The key value pairs for key/value secrets.\n","secret":true,"type":"object"},"maxVersions":{"description":"The maximum number of versions to keep for the secret.\n","type":"number"},"notifyOnChangeEvent":{"description":"Whether to send notifications on secret change events.\n","type":"boolean"},"password":{"description":"Password value (relevant only for type 'password')\n","secret":true,"type":"string"},"passwordSecurityInfos":{"description":"Password security information (relevant only for type 'password')\n","items":{"$ref":"#/types/akeyless:index%2FgetStaticSecretPasswordSecurityInfo:getStaticSecretPasswordSecurityInfo"},"type":"array"},"path":{"description":"The path where the secret is stored. Defaults to the latest version.\n","type":"string"},"username":{"description":"Username value (relevant only for type 'password')\n","type":"string"},"value":{"description":"The secret contents.\n","secret":true,"type":"string"},"version":{"description":"The version of the secret.\n","type":"number"}},"required":["customField","format","id","injectUrls","keyValuePairs","maxVersions","notifyOnChangeEvent","password","passwordSecurityInfos","path","username","value","version"],"type":"object"}},"akeyless:index/getTags:getTags":{"description":"Get tags data source\n","inputs":{"description":"A collection of arguments for invoking getTags.\n","properties":{"id":{"description":"The ID of this resource.\n","type":"string"},"name":{"description":"Item name\n","type":"string"}},"required":["name"],"type":"object"},"outputs":{"description":"A collection of values returned by getTags.\n","properties":{"id":{"description":"The ID of this resource.\n","type":"string"},"name":{"description":"Item name\n","type":"string"},"tags":{"description":"List of item tags\n","items":{"type":"string"},"type":"array"}},"required":["id","name","tags"],"type":"object"}},"akeyless:index/getTarget:getTarget":{"description":"Get target data source\n","inputs":{"description":"A collection of arguments for invoking getTarget.\n","properties":{"id":{"description":"The ID of this resource.\n","type":"string"},"name":{"description":"Target name\n","type":"string"},"showVersions":{"description":"Include all target versions in reply\n","type":"boolean"}},"required":["name"],"type":"object"},"outputs":{"description":"A collection of values returned by getTarget.\n","properties":{"accessDate":{"description":"Access date of the target\n","type":"string"},"accessDateDisplay":{"description":"Access date display of the target\n","type":"string"},"accessRequestStatus":{"description":"Access request status of the target\n","type":"string"},"attributes":{"additionalProperties":{"type":"string"},"description":"Target attributes\n","type":"object"},"clientPermissions":{"items":{"type":"string"},"type":"array"},"creationDate":{"description":"Creation date of the target\n","type":"string"},"description":{"type":"string"},"id":{"description":"The ID of this resource.\n","type":"string"},"isAccessRequestEnabled":{"description":"Whether access request is enabled for the target\n","type":"boolean"},"lastVersion":{"type":"number"},"modificationDate":{"description":"Modification date of the target\n","type":"string"},"name":{"description":"Target name\n","type":"string"},"parentTargetName":{"description":"Parent target name\n","type":"string"},"protectionKeyName":{"type":"string"},"showVersions":{"description":"Include all target versions in reply\n","type":"boolean"},"targetDetails":{"description":"Target details\n","type":"string"},"targetId":{"type":"number"},"targetItemsAssoc":{"type":"string"},"targetName":{"type":"string"},"targetSubType":{"description":"Target sub type\n","type":"string"},"targetType":{"type":"string"},"targetVersions":{"type":"string"},"withCustomerFragment":{"type":"boolean"}},"required":["accessDate","accessDateDisplay","accessRequestStatus","attributes","clientPermissions","creationDate","description","id","isAccessRequestEnabled","lastVersion","modificationDate","name","parentTargetName","protectionKeyName","targetDetails","targetId","targetItemsAssoc","targetName","targetSubType","targetType","targetVersions","withCustomerFragment"],"type":"object"}},"akeyless:index/getTargetDetails:getTargetDetails":{"description":"Get target details data source\n","inputs":{"description":"A collection of arguments for invoking getTargetDetails.\n","properties":{"id":{"description":"The ID of this resource.\n","type":"string"},"name":{"description":"Target name\n","type":"string"},"showVersions":{"description":"Include all target versions in reply\n","type":"boolean"},"targetVersion":{"description":"Target version\n","type":"number"}},"required":["name"],"type":"object"},"outputs":{"description":"A collection of values returned by getTargetDetails.\n","properties":{"accessDate":{"description":"Access date\n","type":"string"},"accessDateDisplay":{"description":"Access date display\n","type":"string"},"accessRequestStatus":{"description":"Access request status\n","type":"string"},"attributes":{"additionalProperties":{"type":"string"},"description":"Target attributes\n","type":"object"},"clientPermissions":{"description":"Client permissions\n","items":{"type":"string"},"type":"array"},"creationDate":{"description":"Creation date\n","type":"string"},"description":{"description":"Description of the target\n","type":"string"},"id":{"description":"The ID of this resource.\n","type":"string"},"isAccessRequestEnabled":{"description":"Whether access request is enabled for this target\n","type":"boolean"},"lastVersion":{"description":"Last version of the target\n","type":"number"},"modificationDate":{"description":"Modification date\n","type":"string"},"name":{"description":"Target name\n","type":"string"},"parentTargetName":{"description":"Parent target name\n","type":"string"},"protectionKeyName":{"description":"Protection key name\n","type":"string"},"showVersions":{"description":"Include all target versions in reply\n","type":"boolean"},"targetDetails":{"description":"Target details\n","type":"string"},"targetId":{"description":"Target ID\n","type":"number"},"targetName":{"description":"Target name\n","type":"string"},"targetSubType":{"description":"Target sub type\n","type":"string"},"targetType":{"description":"Target type\n","type":"string"},"targetVersion":{"description":"Target version\n","type":"number"},"value":{"additionalProperties":{"type":"string"},"type":"object"},"withCustomerFragment":{"description":"Whether the target has customer fragment\n","type":"boolean"}},"required":["accessDate","accessDateDisplay","accessRequestStatus","attributes","clientPermissions","creationDate","description","id","isAccessRequestEnabled","lastVersion","modificationDate","name","parentTargetName","protectionKeyName","targetDetails","targetId","targetName","targetSubType","targetType","value","withCustomerFragment"],"type":"object"}},"akeyless:index/getTokenize:getTokenize":{"description":"Encrypts text with a tokenizer data source\n","inputs":{"description":"A collection of arguments for invoking getTokenize.\n","properties":{"id":{"description":"The ID of this resource.\n","type":"string"},"plaintext":{"description":"Data to be encrypted\n","type":"string"},"tokenizerName":{"description":"The name of the tokenizer to use in the encryption process\n","type":"string"},"tweak":{"description":"Base64 encoded tweak for vaultless encryption\n","type":"string"}},"required":["plaintext","tokenizerName"],"type":"object"},"outputs":{"description":"A collection of values returned by getTokenize.\n","properties":{"id":{"description":"The ID of this resource.\n","type":"string"},"plaintext":{"description":"Data to be encrypted\n","type":"string"},"result":{"description":"The encrypted result\n","type":"string"},"tokenizerName":{"description":"The name of the tokenizer to use in the encryption process\n","type":"string"},"tweak":{"description":"Base64 encoded tweak for vaultless encryption\n","type":"string"}},"required":["id","plaintext","result","tokenizerName","tweak"],"type":"object"}},"pulumi:providers:akeyless/terraformConfig":{"description":"This function returns a Terraform config object with terraform-namecased keys,to be used with the Terraform Module Provider.","inputs":{"properties":{"__self__":{"$ref":"#/resources/pulumi:providers:akeyless"}},"required":["__self__"],"type":"object"},"outputs":{"properties":{"result":{"additionalProperties":{"$ref":"pulumi.json#/Any"},"type":"object"}},"required":["result"],"type":"object"}}},"language":{"csharp":{"compatibility":"tfbridge20","liftSingleValueMethodReturns":true,"respectSchemaVersion":true},"go":{"generateExtraInputTypes":true,"importBasePath":"github.com/pulumi/pulumi-terraform-provider/sdks/go/akeyless/v2/akeyless","liftSingleValueMethodReturns":true,"respectSchemaVersion":true,"rootPackageName":"akeyless"},"java":{"basePackage":"","buildFiles":"","gradleNexusPublishPluginVersion":"","gradleTest":""},"nodejs":{"compatibility":"tfbridge20","disableUnionOutputTypes":true,"liftSingleValueMethodReturns":true,"packageDescription":"A Pulumi provider dynamically bridged from akeyless.","readme":"> This provider is a derived work of the [Terraform Provider](https://github.com/akeyless-community/terraform-provider-akeyless)\n> distributed under [MPL 2.0](https://www.mozilla.org/en-US/MPL/2.0/). If you encounter a bug or missing feature,\n> please consult the source [`terraform-provider-akeyless` repo](https://github.com/akeyless-community/terraform-provider-akeyless/issues).","respectSchemaVersion":true},"python":{"compatibility":"tfbridge20","pyproject":{"enabled":true},"readme":"> This provider is a derived work of the [Terraform Provider](https://github.com/akeyless-community/terraform-provider-akeyless)\n> distributed under [MPL 2.0](https://www.mozilla.org/en-US/MPL/2.0/). If you encounter a bug or missing feature,\n> please consult the source [`terraform-provider-akeyless` repo](https://github.com/akeyless-community/terraform-provider-akeyless/issues).","respectSchemaVersion":true}},"meta":{"moduleFormat":"(.*)(?:/[^/]*)"},"name":"akeyless","parameterization":{"baseProvider":{"name":"terraform-provider","version":"1.0.1"},"parameter":"eyJyZW1vdGUiOnsidXJsIjoicmVnaXN0cnkub3BlbnRvZnUub3JnL2FrZXlsZXNzLWNvbW11bml0eS9ha2V5bGVzcyIsInZlcnNpb24iOiIyLjAuMSJ9fQ=="},"provider":{"description":"The provider type for the akeyless package. By default, resources use package-wide configuration\nsettings, however an explicit `Provider` instance may be created and passed during resource\nconstruction to achieve fine-grained programmatic control over provider settings. See the\n[documentation](https://www.pulumi.com/docs/reference/programming-model/#providers) for more information.\n","inputProperties":{"apiGatewayAddress":{"description":"Origin URL of the API Gateway server. This is a URL with a scheme, a hostname and a port.","type":"string"},"apiKeyLogins":{"description":"A configuration block, described below, that attempts to authenticate using API-Key.","items":{"$ref":"#/types/akeyless:index%2FProviderApiKeyLogin:ProviderApiKeyLogin"},"type":"array"},"awsIamLogins":{"description":"A configuration block, described below, that attempts to authenticate using AWS-IAM authentication credentials.","items":{"$ref":"#/types/akeyless:index%2FProviderAwsIamLogin:ProviderAwsIamLogin"},"type":"array"},"azureAdLogins":{"description":"A configuration block, described below, that attempts to authenticate using Azure Active Directory authentication.","items":{"$ref":"#/types/akeyless:index%2FProviderAzureAdLogin:ProviderAzureAdLogin"},"type":"array"},"certLogins":{"description":"A configuration block, described below, that attempts to authenticate using Certificate authentication.  The Certificate and the Private key can be provided as a command line variable or it will be pulled out of an environment variable named AKEYLESS_AUTH_CERT and AKEYLESS_AUTH_KEY.","items":{"$ref":"#/types/akeyless:index%2FProviderCertLogin:ProviderCertLogin"},"type":"array"},"emailLogins":{"description":"A configuration block, described below, that attempts to authenticate using email and password.","items":{"$ref":"#/types/akeyless:index%2FProviderEmailLogin:ProviderEmailLogin"},"type":"array"},"gcpLogins":{"description":"A configuration block, described below, that attempts to authenticate using GCP-IAM authentication credentials.","items":{"$ref":"#/types/akeyless:index%2FProviderGcpLogin:ProviderGcpLogin"},"type":"array"},"jwtLogins":{"description":"A configuration block, described below, that attempts to authenticate using JWT authentication.  The JWT can be provided as a command line variable or it will be pulled out of an environment variable named AKEYLESS_AUTH_JWT.","items":{"$ref":"#/types/akeyless:index%2FProviderJwtLogin:ProviderJwtLogin"},"type":"array"},"tokenLogins":{"description":"A configuration block, described below, that attempts to authenticate using akeyless token. The token can be provided as a command line variable or it will be pulled out of an environment variable named AKEYLESS_AUTH_TOKEN.","items":{"$ref":"#/types/akeyless:index%2FProviderTokenLogin:ProviderTokenLogin"},"type":"array"},"uidLogins":{"description":"A configuration block, described below, that attempts to authenticate using Universal Identity authentication.","items":{"$ref":"#/types/akeyless:index%2FProviderUidLogin:ProviderUidLogin"},"type":"array"}},"methods":{"terraformConfig":"pulumi:providers:akeyless/terraformConfig"},"properties":{"apiGatewayAddress":{"description":"Origin URL of the API Gateway server. This is a URL with a scheme, a hostname and a port.","type":"string"}},"type":"object"},"publisher":"akeyless-community","repository":"https://github.com/akeyless-community/terraform-provider-akeyless","resources":{"akeyless:index/accountCustomField:AccountCustomField":{"description":"Account Custom Field resource\n","inputProperties":{"accountCustomFieldId":{"description":"The ID of this resource.\n","type":"string"},"name":{"description":"The name of the custom field\n","type":"string"},"object":{"description":"The object the custom field applies to\n","type":"string"},"objectType":{"description":"The type of object [STATIC*SECRET, DYNAMIC*SECRET, ROTATED_SECRET]\n","type":"string"},"required":{"description":"Whether the custom field is mandatory\n","type":"boolean"}},"properties":{"accountCustomFieldId":{"description":"The ID of this resource.\n","type":"string"},"name":{"description":"The name of the custom field\n","type":"string"},"object":{"description":"The object the custom field applies to\n","type":"string"},"objectType":{"description":"The type of object [STATIC*SECRET, DYNAMIC*SECRET, ROTATED_SECRET]\n","type":"string"},"required":{"description":"Whether the custom field is mandatory\n","type":"boolean"}},"required":["accountCustomFieldId","name","objectType"],"requiredInputs":["objectType"],"stateInputs":{"description":"Input properties used for looking up and filtering AccountCustomField resources.\n","properties":{"accountCustomFieldId":{"description":"The ID of this resource.\n","type":"string"},"name":{"description":"The name of the custom field\n","type":"string"},"object":{"description":"The object the custom field applies to\n","type":"string"},"objectType":{"description":"The type of object [STATIC*SECRET, DYNAMIC*SECRET, ROTATED_SECRET]\n","type":"string"},"required":{"description":"Whether the custom field is mandatory\n","type":"boolean"}},"type":"object"},"type":"object"},"akeyless:index/accountSettings:AccountSettings":{"description":"Account Settings resource\n","inputProperties":{"accountSettingsId":{"description":"The ID of this resource.\n","type":"string"},"companyName":{"description":"Company name\n","type":"string"},"defaultShareLinkTtlMinutes":{"description":"Default share link TTL in minutes\n","type":"string"},"defaultVersioning":{"description":"Default versioning setting [true/false]\n","type":"string"},"dynamicSecretMaxTtl":{"description":"Maximum dynamic secret TTL in minutes\n","type":"number"},"dynamicSecretMaxTtlEnable":{"description":"Enable maximum dynamic secret TTL [true/false]\n","type":"string"},"enableItemSharing":{"description":"Enable item sharing [true/false]\n","type":"string"},"enablePasswordExpiration":{"description":"Enable password expiration [true/false]\n","type":"string"},"hidePersonalFolder":{"description":"Hide personal folder [true/false]\n","type":"string"},"hideStaticPassword":{"description":"Hide static password [true/false]\n","type":"string"},"invalidCharacters":{"description":"Characters not allowed in item names\n","type":"string"},"itemLockingEnabled":{"description":"Enable item locking [true/false]\n","type":"string"},"itemsDeletionProtection":{"description":"Items deletion protection [true/false]\n","type":"string"},"jwtTtlDefault":{"description":"Default JWT TTL in minutes\n","type":"number"},"jwtTtlMax":{"description":"Maximum JWT TTL in minutes\n","type":"number"},"jwtTtlMin":{"description":"Minimum JWT TTL in minutes\n","type":"number"},"maxVersions":{"description":"Maximum number of versions\n","type":"string"},"passwordExpirationDays":{"description":"Number of days before password expires\n","type":"string"},"passwordExpirationNotificationDays":{"description":"Number of days before password expiration to send notification\n","type":"string"},"passwordLength":{"description":"Minimum password length\n","type":"number"},"useCapitalLetters":{"description":"Require capital letters in passwords [true/false]\n","type":"string"},"useLowerLetters":{"description":"Require lower-case letters in passwords [true/false]\n","type":"string"},"useNumbers":{"description":"Require numbers in passwords [true/false]\n","type":"string"},"useSpecialCharacters":{"description":"Require special characters in passwords [true/false]\n","type":"string"}},"properties":{"accountSettingsId":{"description":"The ID of this resource.\n","type":"string"},"companyName":{"description":"Company name\n","type":"string"},"defaultShareLinkTtlMinutes":{"description":"Default share link TTL in minutes\n","type":"string"},"defaultVersioning":{"description":"Default versioning setting [true/false]\n","type":"string"},"dynamicSecretMaxTtl":{"description":"Maximum dynamic secret TTL in minutes\n","type":"number"},"dynamicSecretMaxTtlEnable":{"description":"Enable maximum dynamic secret TTL [true/false]\n","type":"string"},"enableItemSharing":{"description":"Enable item sharing [true/false]\n","type":"string"},"enablePasswordExpiration":{"description":"Enable password expiration [true/false]\n","type":"string"},"hidePersonalFolder":{"description":"Hide personal folder [true/false]\n","type":"string"},"hideStaticPassword":{"description":"Hide static password [true/false]\n","type":"string"},"invalidCharacters":{"description":"Characters not allowed in item names\n","type":"string"},"itemLockingEnabled":{"description":"Enable item locking [true/false]\n","type":"string"},"itemsDeletionProtection":{"description":"Items deletion protection [true/false]\n","type":"string"},"jwtTtlDefault":{"description":"Default JWT TTL in minutes\n","type":"number"},"jwtTtlMax":{"description":"Maximum JWT TTL in minutes\n","type":"number"},"jwtTtlMin":{"description":"Minimum JWT TTL in minutes\n","type":"number"},"maxVersions":{"description":"Maximum number of versions\n","type":"string"},"passwordExpirationDays":{"description":"Number of days before password expires\n","type":"string"},"passwordExpirationNotificationDays":{"description":"Number of days before password expiration to send notification\n","type":"string"},"passwordLength":{"description":"Minimum password length\n","type":"number"},"useCapitalLetters":{"description":"Require capital letters in passwords [true/false]\n","type":"string"},"useLowerLetters":{"description":"Require lower-case letters in passwords [true/false]\n","type":"string"},"useNumbers":{"description":"Require numbers in passwords [true/false]\n","type":"string"},"useSpecialCharacters":{"description":"Require special characters in passwords [true/false]\n","type":"string"}},"required":["accountSettingsId","companyName","defaultVersioning","dynamicSecretMaxTtl","enableItemSharing","enablePasswordExpiration","hidePersonalFolder","hideStaticPassword","itemLockingEnabled","itemsDeletionProtection","useCapitalLetters","useLowerLetters","useNumbers","useSpecialCharacters"],"stateInputs":{"description":"Input properties used for looking up and filtering AccountSettings resources.\n","properties":{"accountSettingsId":{"description":"The ID of this resource.\n","type":"string"},"companyName":{"description":"Company name\n","type":"string"},"defaultShareLinkTtlMinutes":{"description":"Default share link TTL in minutes\n","type":"string"},"defaultVersioning":{"description":"Default versioning setting [true/false]\n","type":"string"},"dynamicSecretMaxTtl":{"description":"Maximum dynamic secret TTL in minutes\n","type":"number"},"dynamicSecretMaxTtlEnable":{"description":"Enable maximum dynamic secret TTL [true/false]\n","type":"string"},"enableItemSharing":{"description":"Enable item sharing [true/false]\n","type":"string"},"enablePasswordExpiration":{"description":"Enable password expiration [true/false]\n","type":"string"},"hidePersonalFolder":{"description":"Hide personal folder [true/false]\n","type":"string"},"hideStaticPassword":{"description":"Hide static password [true/false]\n","type":"string"},"invalidCharacters":{"description":"Characters not allowed in item names\n","type":"string"},"itemLockingEnabled":{"description":"Enable item locking [true/false]\n","type":"string"},"itemsDeletionProtection":{"description":"Items deletion protection [true/false]\n","type":"string"},"jwtTtlDefault":{"description":"Default JWT TTL in minutes\n","type":"number"},"jwtTtlMax":{"description":"Maximum JWT TTL in minutes\n","type":"number"},"jwtTtlMin":{"description":"Minimum JWT TTL in minutes\n","type":"number"},"maxVersions":{"description":"Maximum number of versions\n","type":"string"},"passwordExpirationDays":{"description":"Number of days before password expires\n","type":"string"},"passwordExpirationNotificationDays":{"description":"Number of days before password expiration to send notification\n","type":"string"},"passwordLength":{"description":"Minimum password length\n","type":"number"},"useCapitalLetters":{"description":"Require capital letters in passwords [true/false]\n","type":"string"},"useLowerLetters":{"description":"Require lower-case letters in passwords [true/false]\n","type":"string"},"useNumbers":{"description":"Require numbers in passwords [true/false]\n","type":"string"},"useSpecialCharacters":{"description":"Require special characters in passwords [true/false]\n","type":"string"}},"type":"object"},"type":"object"},"akeyless:index/associateRoleAuthMethod:AssociateRoleAuthMethod":{"description":"Association between role and auth method\n","inputProperties":{"amName":{"description":"The auth method to associate\n","type":"string"},"associateRoleAuthMethodId":{"description":"The ID of this resource.\n","type":"string"},"caseSensitive":{"description":"Treat sub claims as case-sensitive\n","type":"string"},"roleName":{"description":"The role to associate\n","type":"string"},"subClaims":{"additionalProperties":{"type":"string"},"description":"key/val of sub claims, e.g group=admins,developers\n","type":"object"}},"properties":{"amName":{"description":"The auth method to associate\n","type":"string"},"associateRoleAuthMethodId":{"description":"The ID of this resource.\n","type":"string"},"caseSensitive":{"description":"Treat sub claims as case-sensitive\n","type":"string"},"roleName":{"description":"The role to associate\n","type":"string"},"subClaims":{"additionalProperties":{"type":"string"},"description":"key/val of sub claims, e.g group=admins,developers\n","type":"object"}},"required":["amName","associateRoleAuthMethodId","roleName"],"requiredInputs":["amName","roleName"],"stateInputs":{"description":"Input properties used for looking up and filtering AssociateRoleAuthMethod resources.\n","properties":{"amName":{"description":"The auth method to associate\n","type":"string"},"associateRoleAuthMethodId":{"description":"The ID of this resource.\n","type":"string"},"caseSensitive":{"description":"Treat sub claims as case-sensitive\n","type":"string"},"roleName":{"description":"The role to associate\n","type":"string"},"subClaims":{"additionalProperties":{"type":"string"},"description":"key/val of sub claims, e.g group=admins,developers\n","type":"object"}},"type":"object"},"type":"object"},"akeyless:index/authMethodApiKey:AuthMethodApiKey":{"description":"API Key Auth Method Resource\n","inputProperties":{"accessExpires":{"description":"Access expiration date in Unix timestamp (select 0 for access without expiry date)\n","type":"number"},"allowedClientTypes":{"description":"limit the auth method usage for specific client types [cli,ui,gateway-admin,sdk,mobile,extension]\n","items":{"type":"string"},"type":"array"},"auditLogsClaims":{"description":"Subclaims to include in audit logs, e.g \"--audit-logs-claims email --audit-logs-claims username\"\n","items":{"type":"string"},"type":"array"},"authMethodApiKeyId":{"description":"The ID of this resource.\n","type":"string"},"boundIps":{"description":"A CIDR whitelist with the IPs that the access is restricted to\n","items":{"type":"string"},"type":"array"},"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"string"},"description":{"description":"Auth Method description\n","type":"string"},"expirationEventIns":{"description":"How many days before the expiration of the auth method would you like to be notified.\n","items":{"type":"string"},"type":"array"},"forceSubClaims":{"description":"if true: enforce role-association must include sub claims\n","type":"boolean"},"gwBoundIps":{"description":"A CIDR whitelist with the GW IPs that the access is restricted to\n","items":{"type":"string"},"type":"array"},"jwtTtl":{"description":"Jwt TTL\n","type":"number"},"name":{"description":"Auth Method name\n","type":"string"},"productTypes":{"description":"Choose the relevant product type for the auth method [sm, sra, pm, dp, ca]\n","items":{"type":"string"},"type":"array"}},"properties":{"accessExpires":{"description":"Access expiration date in Unix timestamp (select 0 for access without expiry date)\n","type":"number"},"accessId":{"description":"Auth Method access ID\n","type":"string"},"accessKey":{"description":"Auth Method access key\n","secret":true,"type":"string"},"allowedClientTypes":{"description":"limit the auth method usage for specific client types [cli,ui,gateway-admin,sdk,mobile,extension]\n","items":{"type":"string"},"type":"array"},"auditLogsClaims":{"description":"Subclaims to include in audit logs, e.g \"--audit-logs-claims email --audit-logs-claims username\"\n","items":{"type":"string"},"type":"array"},"authMethodApiKeyId":{"description":"The ID of this resource.\n","type":"string"},"boundIps":{"description":"A CIDR whitelist with the IPs that the access is restricted to\n","items":{"type":"string"},"type":"array"},"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"string"},"description":{"description":"Auth Method description\n","type":"string"},"expirationEventIns":{"description":"How many days before the expiration of the auth method would you like to be notified.\n","items":{"type":"string"},"type":"array"},"forceSubClaims":{"description":"if true: enforce role-association must include sub claims\n","type":"boolean"},"gwBoundIps":{"description":"A CIDR whitelist with the GW IPs that the access is restricted to\n","items":{"type":"string"},"type":"array"},"jwtTtl":{"description":"Jwt TTL\n","type":"number"},"name":{"description":"Auth Method name\n","type":"string"},"productTypes":{"description":"Choose the relevant product type for the auth method [sm, sra, pm, dp, ca]\n","items":{"type":"string"},"type":"array"}},"required":["accessId","accessKey","authMethodApiKeyId","name"],"stateInputs":{"description":"Input properties used for looking up and filtering AuthMethodApiKey resources.\n","properties":{"accessExpires":{"description":"Access expiration date in Unix timestamp (select 0 for access without expiry date)\n","type":"number"},"accessId":{"description":"Auth Method access ID\n","type":"string"},"accessKey":{"description":"Auth Method access key\n","secret":true,"type":"string"},"allowedClientTypes":{"description":"limit the auth method usage for specific client types [cli,ui,gateway-admin,sdk,mobile,extension]\n","items":{"type":"string"},"type":"array"},"auditLogsClaims":{"description":"Subclaims to include in audit logs, e.g \"--audit-logs-claims email --audit-logs-claims username\"\n","items":{"type":"string"},"type":"array"},"authMethodApiKeyId":{"description":"The ID of this resource.\n","type":"string"},"boundIps":{"description":"A CIDR whitelist with the IPs that the access is restricted to\n","items":{"type":"string"},"type":"array"},"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"string"},"description":{"description":"Auth Method description\n","type":"string"},"expirationEventIns":{"description":"How many days before the expiration of the auth method would you like to be notified.\n","items":{"type":"string"},"type":"array"},"forceSubClaims":{"description":"if true: enforce role-association must include sub claims\n","type":"boolean"},"gwBoundIps":{"description":"A CIDR whitelist with the GW IPs that the access is restricted to\n","items":{"type":"string"},"type":"array"},"jwtTtl":{"description":"Jwt TTL\n","type":"number"},"name":{"description":"Auth Method name\n","type":"string"},"productTypes":{"description":"Choose the relevant product type for the auth method [sm, sra, pm, dp, ca]\n","items":{"type":"string"},"type":"array"}},"type":"object"},"type":"object"},"akeyless:index/authMethodAwsIam:AuthMethodAwsIam":{"description":"AWS IAM Auth Method Resource\n","inputProperties":{"accessExpires":{"description":"Access expiration date in Unix timestamp (select 0 for access without expiry date)\n","type":"number"},"allowedClientTypes":{"description":"limit the auth method usage for specific client types [cli,ui,gateway-admin,sdk,mobile,extension]\n","items":{"type":"string"},"type":"array"},"auditLogsClaims":{"description":"Subclaims to include in audit logs, e.g \"--audit-logs-claims email --audit-logs-claims username\"\n","items":{"type":"string"},"type":"array"},"authMethodAwsIamId":{"description":"The ID of this resource.\n","type":"string"},"boundArns":{"description":"A list of full arns that the access is restricted to\n","items":{"type":"string"},"type":"array"},"boundAwsAccountIds":{"description":"A list of AWS account-IDs that the access is restricted to\n","items":{"type":"string"},"type":"array"},"boundIps":{"description":"A CIDR whitelist with the IPs that the access is restricted to\n","items":{"type":"string"},"type":"array"},"boundResourceIds":{"description":"A list of full resource ids that the access is restricted to\n","items":{"type":"string"},"type":"array"},"boundRoleIds":{"description":"A list of full role ids that the access is restricted to\n","items":{"type":"string"},"type":"array"},"boundRoleNames":{"description":"A list of full role-name that the access is restricted to\n","items":{"type":"string"},"type":"array"},"boundUserIds":{"description":"A list of full user ids that the access is restricted to\n","items":{"type":"string"},"type":"array"},"boundUserNames":{"description":"A list of full user-name that the access is restricted to\n","items":{"type":"string"},"type":"array"},"deleteProtection":{"description":"Protection from accidental deletion of this auth method, [true/false]\n","type":"string"},"description":{"description":"Auth Method description\n","type":"string"},"expirationEventIns":{"description":"How many days before the expiration of the auth method would you like to be notified.\n","items":{"type":"string"},"type":"array"},"forceSubClaims":{"description":"if true: enforce role-association must include sub claims\n","type":"boolean"},"gwBoundIps":{"description":"A CIDR whitelist with the GW IPs that the access is restricted to\n","items":{"type":"string"},"type":"array"},"jwtTtl":{"description":"Jwt TTL\n","type":"number"},"name":{"description":"Auth Method name\n","type":"string"},"productTypes":{"description":"Choose the relevant product type for the auth method [sm, sra, pm, dp, ca]\n","items":{"type":"string"},"type":"array"},"stsUrl":{"description":"sts URL\n","type":"string"},"uniqueIdentifier":{"description":"A unique identifier (ID) value which is a \"sub claim\" name that contains details uniquely identifying that resource. This \"sub claim\" is used to distinguish between different identities.\n","type":"string"}},"properties":{"accessExpires":{"description":"Access expiration date in Unix timestamp (select 0 for access without expiry date)\n","type":"number"},"accessId":{"description":"Auth Method access ID\n","type":"string"},"allowedClientTypes":{"description":"limit the auth method usage for specific client types [cli,ui,gateway-admin,sdk,mobile,extension]\n","items":{"type":"string"},"type":"array"},"auditLogsClaims":{"description":"Subclaims to include in audit logs, e.g \"--audit-logs-claims email --audit-logs-claims username\"\n","items":{"type":"string"},"type":"array"},"authMethodAwsIamId":{"description":"The ID of this resource.\n","type":"string"},"boundArns":{"description":"A list of full arns that the access is restricted to\n","items":{"type":"string"},"type":"array"},"boundAwsAccountIds":{"description":"A list of AWS account-IDs that the access is restricted to\n","items":{"type":"string"},"type":"array"},"boundIps":{"description":"A CIDR whitelist with the IPs that the access is restricted to\n","items":{"type":"string"},"type":"array"},"boundResourceIds":{"description":"A list of full resource ids that the access is restricted to\n","items":{"type":"string"},"type":"array"},"boundRoleIds":{"description":"A list of full role ids that the access is restricted to\n","items":{"type":"string"},"type":"array"},"boundRoleNames":{"description":"A list of full role-name that the access is restricted to\n","items":{"type":"string"},"type":"array"},"boundUserIds":{"description":"A list of full user ids that the access is restricted to\n","items":{"type":"string"},"type":"array"},"boundUserNames":{"description":"A list of full user-name that the access is restricted to\n","items":{"type":"string"},"type":"array"},"deleteProtection":{"description":"Protection from accidental deletion of this auth method, [true/false]\n","type":"string"},"description":{"description":"Auth Method description\n","type":"string"},"expirationEventIns":{"description":"How many days before the expiration of the auth method would you like to be notified.\n","items":{"type":"string"},"type":"array"},"forceSubClaims":{"description":"if true: enforce role-association must include sub claims\n","type":"boolean"},"gwBoundIps":{"description":"A CIDR whitelist with the GW IPs that the access is restricted to\n","items":{"type":"string"},"type":"array"},"jwtTtl":{"description":"Jwt TTL\n","type":"number"},"name":{"description":"Auth Method name\n","type":"string"},"productTypes":{"description":"Choose the relevant product type for the auth method [sm, sra, pm, dp, ca]\n","items":{"type":"string"},"type":"array"},"stsUrl":{"description":"sts URL\n","type":"string"},"uniqueIdentifier":{"description":"A unique identifier (ID) value which is a \"sub claim\" name that contains details uniquely identifying that resource. This \"sub claim\" is used to distinguish between different identities.\n","type":"string"}},"required":["accessId","authMethodAwsIamId","boundAwsAccountIds","name"],"requiredInputs":["boundAwsAccountIds"],"stateInputs":{"description":"Input properties used for looking up and filtering AuthMethodAwsIam resources.\n","properties":{"accessExpires":{"description":"Access expiration date in Unix timestamp (select 0 for access without expiry date)\n","type":"number"},"accessId":{"description":"Auth Method access ID\n","type":"string"},"allowedClientTypes":{"description":"limit the auth method usage for specific client types [cli,ui,gateway-admin,sdk,mobile,extension]\n","items":{"type":"string"},"type":"array"},"auditLogsClaims":{"description":"Subclaims to include in audit logs, e.g \"--audit-logs-claims email --audit-logs-claims username\"\n","items":{"type":"string"},"type":"array"},"authMethodAwsIamId":{"description":"The ID of this resource.\n","type":"string"},"boundArns":{"description":"A list of full arns that the access is restricted to\n","items":{"type":"string"},"type":"array"},"boundAwsAccountIds":{"description":"A list of AWS account-IDs that the access is restricted to\n","items":{"type":"string"},"type":"array"},"boundIps":{"description":"A CIDR whitelist with the IPs that the access is restricted to\n","items":{"type":"string"},"type":"array"},"boundResourceIds":{"description":"A list of full resource ids that the access is restricted to\n","items":{"type":"string"},"type":"array"},"boundRoleIds":{"description":"A list of full role ids that the access is restricted to\n","items":{"type":"string"},"type":"array"},"boundRoleNames":{"description":"A list of full role-name that the access is restricted to\n","items":{"type":"string"},"type":"array"},"boundUserIds":{"description":"A list of full user ids that the access is restricted to\n","items":{"type":"string"},"type":"array"},"boundUserNames":{"description":"A list of full user-name that the access is restricted to\n","items":{"type":"string"},"type":"array"},"deleteProtection":{"description":"Protection from accidental deletion of this auth method, [true/false]\n","type":"string"},"description":{"description":"Auth Method description\n","type":"string"},"expirationEventIns":{"description":"How many days before the expiration of the auth method would you like to be notified.\n","items":{"type":"string"},"type":"array"},"forceSubClaims":{"description":"if true: enforce role-association must include sub claims\n","type":"boolean"},"gwBoundIps":{"description":"A CIDR whitelist with the GW IPs that the access is restricted to\n","items":{"type":"string"},"type":"array"},"jwtTtl":{"description":"Jwt TTL\n","type":"number"},"name":{"description":"Auth Method name\n","type":"string"},"productTypes":{"description":"Choose the relevant product type for the auth method [sm, sra, pm, dp, ca]\n","items":{"type":"string"},"type":"array"},"stsUrl":{"description":"sts URL\n","type":"string"},"uniqueIdentifier":{"description":"A unique identifier (ID) value which is a \"sub claim\" name that contains details uniquely identifying that resource. This \"sub claim\" is used to distinguish between different identities.\n","type":"string"}},"type":"object"},"type":"object"},"akeyless:index/authMethodAzureAd:AuthMethodAzureAd":{"description":"Azure Active Directory Auth Method Resource\n","inputProperties":{"accessExpires":{"description":"Access expiration date in Unix timestamp (select 0 for access without expiry date)\n","type":"number"},"allowedClientTypes":{"description":"limit the auth method usage for specific client types [cli,ui,gateway-admin,sdk,mobile,extension]\n","items":{"type":"string"},"type":"array"},"audience":{"description":"Deprecated (Deprecated) The audience in the JWT\n","type":"string"},"auditLogsClaims":{"description":"Subclaims to include in audit logs, e.g \"--audit-logs-claims email --audit-logs-claims username\"\n","items":{"type":"string"},"type":"array"},"authMethodAzureAdId":{"description":"The ID of this resource.\n","type":"string"},"boundGroupIds":{"description":"A list of group ids that the access is restricted to\n","items":{"type":"string"},"type":"array"},"boundIps":{"description":"A CIDR whitelist with the IPs that the access is restricted to\n","items":{"type":"string"},"type":"array"},"boundProviders":{"description":"A list of resource providers that the access is restricted to (e.g, Microsoft.Compute, Microsoft.ManagedIdentity, etc)\n","items":{"type":"string"},"type":"array"},"boundResourceIds":{"description":"A list of full resource ids that the access is restricted to\n","items":{"type":"string"},"type":"array"},"boundResourceNames":{"description":"A list of resource names that the access is restricted to (e.g, a virtual machine name, scale set name, etc).\n","items":{"type":"string"},"type":"array"},"boundResourceTypes":{"description":"A list of resource types that the access is restricted to (e.g, virtualMachines, userAssignedIdentities, etc)\n","items":{"type":"string"},"type":"array"},"boundRgIds":{"description":"A list of resource groups that the access is restricted to\n","items":{"type":"string"},"type":"array"},"boundSpids":{"description":"A list of service principal IDs that the access is restricted to\n","items":{"type":"string"},"type":"array"},"boundSubIds":{"description":"A list of subscription ids that the access is restricted to\n","items":{"type":"string"},"type":"array"},"boundTenantId":{"description":"The Azure tenant id that the access is restricted to\n","type":"string"},"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"string"},"description":{"description":"Auth Method description\n","type":"string"},"expirationEventIns":{"description":"How many days before the expiration of the auth method would you like to be notified.\n","items":{"type":"string"},"type":"array"},"forceSubClaims":{"description":"enforce role-association must include sub claims\n","type":"boolean"},"gwBoundIps":{"description":"A CIDR whitelist with the GW IPs that the access is restricted to\n","items":{"type":"string"},"type":"array"},"issuer":{"description":"Issuer URL\n","type":"string"},"jwksUri":{"description":"The URL to the JSON Web Key Set (JWKS) that containing the public keys that should be used to verify any JSON Web Token (JWT) issued by the authorization server.\n","type":"string"},"jwtTtl":{"description":"Creds expiration time in minutes\n","type":"number"},"name":{"description":"Auth Method name\n","type":"string"},"productTypes":{"description":"Choose the relevant product type for the auth method [sm, sra, pm, dp, ca]\n","items":{"type":"string"},"type":"array"},"uniqueIdentifier":{"description":"A unique identifier (ID) value which is a \"sub claim\" name that contains details uniquely identifying that resource. This \"sub claim\" is used to distinguish between different identities.\n","type":"string"}},"properties":{"accessExpires":{"description":"Access expiration date in Unix timestamp (select 0 for access without expiry date)\n","type":"number"},"accessId":{"description":"Auth Method access ID\n","type":"string"},"allowedClientTypes":{"description":"limit the auth method usage for specific client types [cli,ui,gateway-admin,sdk,mobile,extension]\n","items":{"type":"string"},"type":"array"},"audience":{"description":"Deprecated (Deprecated) The audience in the JWT\n","type":"string"},"auditLogsClaims":{"description":"Subclaims to include in audit logs, e.g \"--audit-logs-claims email --audit-logs-claims username\"\n","items":{"type":"string"},"type":"array"},"authMethodAzureAdId":{"description":"The ID of this resource.\n","type":"string"},"boundGroupIds":{"description":"A list of group ids that the access is restricted to\n","items":{"type":"string"},"type":"array"},"boundIps":{"description":"A CIDR whitelist with the IPs that the access is restricted to\n","items":{"type":"string"},"type":"array"},"boundProviders":{"description":"A list of resource providers that the access is restricted to (e.g, Microsoft.Compute, Microsoft.ManagedIdentity, etc)\n","items":{"type":"string"},"type":"array"},"boundResourceIds":{"description":"A list of full resource ids that the access is restricted to\n","items":{"type":"string"},"type":"array"},"boundResourceNames":{"description":"A list of resource names that the access is restricted to (e.g, a virtual machine name, scale set name, etc).\n","items":{"type":"string"},"type":"array"},"boundResourceTypes":{"description":"A list of resource types that the access is restricted to (e.g, virtualMachines, userAssignedIdentities, etc)\n","items":{"type":"string"},"type":"array"},"boundRgIds":{"description":"A list of resource groups that the access is restricted to\n","items":{"type":"string"},"type":"array"},"boundSpids":{"description":"A list of service principal IDs that the access is restricted to\n","items":{"type":"string"},"type":"array"},"boundSubIds":{"description":"A list of subscription ids that the access is restricted to\n","items":{"type":"string"},"type":"array"},"boundTenantId":{"description":"The Azure tenant id that the access is restricted to\n","type":"string"},"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"string"},"description":{"description":"Auth Method description\n","type":"string"},"expirationEventIns":{"description":"How many days before the expiration of the auth method would you like to be notified.\n","items":{"type":"string"},"type":"array"},"forceSubClaims":{"description":"enforce role-association must include sub claims\n","type":"boolean"},"gwBoundIps":{"description":"A CIDR whitelist with the GW IPs that the access is restricted to\n","items":{"type":"string"},"type":"array"},"issuer":{"description":"Issuer URL\n","type":"string"},"jwksUri":{"description":"The URL to the JSON Web Key Set (JWKS) that containing the public keys that should be used to verify any JSON Web Token (JWT) issued by the authorization server.\n","type":"string"},"jwtTtl":{"description":"Creds expiration time in minutes\n","type":"number"},"name":{"description":"Auth Method name\n","type":"string"},"productTypes":{"description":"Choose the relevant product type for the auth method [sm, sra, pm, dp, ca]\n","items":{"type":"string"},"type":"array"},"uniqueIdentifier":{"description":"A unique identifier (ID) value which is a \"sub claim\" name that contains details uniquely identifying that resource. This \"sub claim\" is used to distinguish between different identities.\n","type":"string"}},"required":["accessId","authMethodAzureAdId","boundTenantId","name"],"requiredInputs":["boundTenantId"],"stateInputs":{"description":"Input properties used for looking up and filtering AuthMethodAzureAd resources.\n","properties":{"accessExpires":{"description":"Access expiration date in Unix timestamp (select 0 for access without expiry date)\n","type":"number"},"accessId":{"description":"Auth Method access ID\n","type":"string"},"allowedClientTypes":{"description":"limit the auth method usage for specific client types [cli,ui,gateway-admin,sdk,mobile,extension]\n","items":{"type":"string"},"type":"array"},"audience":{"description":"Deprecated (Deprecated) The audience in the JWT\n","type":"string"},"auditLogsClaims":{"description":"Subclaims to include in audit logs, e.g \"--audit-logs-claims email --audit-logs-claims username\"\n","items":{"type":"string"},"type":"array"},"authMethodAzureAdId":{"description":"The ID of this resource.\n","type":"string"},"boundGroupIds":{"description":"A list of group ids that the access is restricted to\n","items":{"type":"string"},"type":"array"},"boundIps":{"description":"A CIDR whitelist with the IPs that the access is restricted to\n","items":{"type":"string"},"type":"array"},"boundProviders":{"description":"A list of resource providers that the access is restricted to (e.g, Microsoft.Compute, Microsoft.ManagedIdentity, etc)\n","items":{"type":"string"},"type":"array"},"boundResourceIds":{"description":"A list of full resource ids that the access is restricted to\n","items":{"type":"string"},"type":"array"},"boundResourceNames":{"description":"A list of resource names that the access is restricted to (e.g, a virtual machine name, scale set name, etc).\n","items":{"type":"string"},"type":"array"},"boundResourceTypes":{"description":"A list of resource types that the access is restricted to (e.g, virtualMachines, userAssignedIdentities, etc)\n","items":{"type":"string"},"type":"array"},"boundRgIds":{"description":"A list of resource groups that the access is restricted to\n","items":{"type":"string"},"type":"array"},"boundSpids":{"description":"A list of service principal IDs that the access is restricted to\n","items":{"type":"string"},"type":"array"},"boundSubIds":{"description":"A list of subscription ids that the access is restricted to\n","items":{"type":"string"},"type":"array"},"boundTenantId":{"description":"The Azure tenant id that the access is restricted to\n","type":"string"},"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"string"},"description":{"description":"Auth Method description\n","type":"string"},"expirationEventIns":{"description":"How many days before the expiration of the auth method would you like to be notified.\n","items":{"type":"string"},"type":"array"},"forceSubClaims":{"description":"enforce role-association must include sub claims\n","type":"boolean"},"gwBoundIps":{"description":"A CIDR whitelist with the GW IPs that the access is restricted to\n","items":{"type":"string"},"type":"array"},"issuer":{"description":"Issuer URL\n","type":"string"},"jwksUri":{"description":"The URL to the JSON Web Key Set (JWKS) that containing the public keys that should be used to verify any JSON Web Token (JWT) issued by the authorization server.\n","type":"string"},"jwtTtl":{"description":"Creds expiration time in minutes\n","type":"number"},"name":{"description":"Auth Method name\n","type":"string"},"productTypes":{"description":"Choose the relevant product type for the auth method [sm, sra, pm, dp, ca]\n","items":{"type":"string"},"type":"array"},"uniqueIdentifier":{"description":"A unique identifier (ID) value which is a \"sub claim\" name that contains details uniquely identifying that resource. This \"sub claim\" is used to distinguish between different identities.\n","type":"string"}},"type":"object"},"type":"object"},"akeyless:index/authMethodCert:AuthMethodCert":{"description":"Cert Auth Method Resource\n","inputProperties":{"accessExpires":{"description":"Access expiration date in Unix timestamp (select 0 for access without expiry date)\n","type":"number"},"allowedClientTypes":{"description":"limit the auth method usage for specific client types [cli,ui,gateway-admin,sdk,mobile,extension]\n","items":{"type":"string"},"type":"array"},"allowedCors":{"description":"Comma separated list of allowed CORS domains to be validated as part of the authentication flow.\n","type":"string"},"auditLogsClaims":{"description":"Subclaims to include in audit logs, e.g \"--audit-logs-claims email --audit-logs-claims username\"\n","items":{"type":"string"},"type":"array"},"authMethodCertId":{"description":"The ID of this resource.\n","type":"string"},"boundCommonNames":{"description":"A list of names. At least one must exist in the Common Name. Supports globbing.\n","items":{"type":"string"},"type":"array"},"boundDnsSans":{"description":"A list of DNS names. At least one must exist in the SANs. Supports globbing.\n","items":{"type":"string"},"type":"array"},"boundEmailSans":{"description":"A list of Email Addresses. At least one must exist in the SANs. Supports globbing.\n","items":{"type":"string"},"type":"array"},"boundExtensions":{"description":"A list of extensions formatted as 'oid:value'. Expects the extension value to be some type of ASN1 encoded string. All values much match. Supports globbing on 'value'.\n","items":{"type":"string"},"type":"array"},"boundIps":{"description":"A CIDR whitelist with the IPs that the access is restricted to\n","items":{"type":"string"},"type":"array"},"boundOrganizationalUnits":{"description":"A list of Organizational Units names. At least one must exist in the OU field.\n","items":{"type":"string"},"type":"array"},"boundUriSans":{"description":"A list of URIs. At least one must exist in the SANs. Supports globbing.\n","items":{"type":"string"},"type":"array"},"certificateData":{"description":"The certificate data in base64, if no file was provided\n","type":"string"},"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"string"},"description":{"description":"Auth Method description\n","type":"string"},"expirationEventIns":{"description":"How many days before the expiration of the auth method would you like to be notified.\n","items":{"type":"string"},"type":"array"},"forceSubClaims":{"description":"if true: enforce role-association must include sub claims\n","type":"boolean"},"gwBoundIps":{"description":"A CIDR whitelist with the GW IPs that the access is restricted to\n","items":{"type":"string"},"type":"array"},"jwtTtl":{"description":"Jwt TTL\n","type":"number"},"name":{"description":"Auth Method name\n","type":"string"},"productTypes":{"description":"Choose the relevant product type for the auth method [sm, sra, pm, dp, ca]\n","items":{"type":"string"},"type":"array"},"revokedCertIds":{"description":"A list of revoked cert ids\n","items":{"type":"string"},"type":"array"},"uniqueIdentifier":{"description":"A unique identifier (ID) value should be configured, such as common*name or organizational*unit Whenever a user logs in with a token, these authentication types issue a \"sub claim\" that contains details uniquely identifying that user. This sub claim includes a key containing the ID value that you configured, and is used to distinguish between different users from within the same organization.\n","type":"string"}},"properties":{"accessExpires":{"description":"Access expiration date in Unix timestamp (select 0 for access without expiry date)\n","type":"number"},"accessId":{"description":"Auth Method access ID\n","type":"string"},"allowedClientTypes":{"description":"limit the auth method usage for specific client types [cli,ui,gateway-admin,sdk,mobile,extension]\n","items":{"type":"string"},"type":"array"},"allowedCors":{"description":"Comma separated list of allowed CORS domains to be validated as part of the authentication flow.\n","type":"string"},"auditLogsClaims":{"description":"Subclaims to include in audit logs, e.g \"--audit-logs-claims email --audit-logs-claims username\"\n","items":{"type":"string"},"type":"array"},"authMethodCertId":{"description":"The ID of this resource.\n","type":"string"},"boundCommonNames":{"description":"A list of names. At least one must exist in the Common Name. Supports globbing.\n","items":{"type":"string"},"type":"array"},"boundDnsSans":{"description":"A list of DNS names. At least one must exist in the SANs. Supports globbing.\n","items":{"type":"string"},"type":"array"},"boundEmailSans":{"description":"A list of Email Addresses. At least one must exist in the SANs. Supports globbing.\n","items":{"type":"string"},"type":"array"},"boundExtensions":{"description":"A list of extensions formatted as 'oid:value'. Expects the extension value to be some type of ASN1 encoded string. All values much match. Supports globbing on 'value'.\n","items":{"type":"string"},"type":"array"},"boundIps":{"description":"A CIDR whitelist with the IPs that the access is restricted to\n","items":{"type":"string"},"type":"array"},"boundOrganizationalUnits":{"description":"A list of Organizational Units names. At least one must exist in the OU field.\n","items":{"type":"string"},"type":"array"},"boundUriSans":{"description":"A list of URIs. At least one must exist in the SANs. Supports globbing.\n","items":{"type":"string"},"type":"array"},"certificateData":{"description":"The certificate data in base64, if no file was provided\n","type":"string"},"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"string"},"description":{"description":"Auth Method description\n","type":"string"},"expirationEventIns":{"description":"How many days before the expiration of the auth method would you like to be notified.\n","items":{"type":"string"},"type":"array"},"forceSubClaims":{"description":"if true: enforce role-association must include sub claims\n","type":"boolean"},"gwBoundIps":{"description":"A CIDR whitelist with the GW IPs that the access is restricted to\n","items":{"type":"string"},"type":"array"},"jwtTtl":{"description":"Jwt TTL\n","type":"number"},"name":{"description":"Auth Method name\n","type":"string"},"productTypes":{"description":"Choose the relevant product type for the auth method [sm, sra, pm, dp, ca]\n","items":{"type":"string"},"type":"array"},"revokedCertIds":{"description":"A list of revoked cert ids\n","items":{"type":"string"},"type":"array"},"uniqueIdentifier":{"description":"A unique identifier (ID) value should be configured, such as common*name or organizational*unit Whenever a user logs in with a token, these authentication types issue a \"sub claim\" that contains details uniquely identifying that user. This sub claim includes a key containing the ID value that you configured, and is used to distinguish between different users from within the same organization.\n","type":"string"}},"required":["accessId","authMethodCertId","name","uniqueIdentifier"],"requiredInputs":["uniqueIdentifier"],"stateInputs":{"description":"Input properties used for looking up and filtering AuthMethodCert resources.\n","properties":{"accessExpires":{"description":"Access expiration date in Unix timestamp (select 0 for access without expiry date)\n","type":"number"},"accessId":{"description":"Auth Method access ID\n","type":"string"},"allowedClientTypes":{"description":"limit the auth method usage for specific client types [cli,ui,gateway-admin,sdk,mobile,extension]\n","items":{"type":"string"},"type":"array"},"allowedCors":{"description":"Comma separated list of allowed CORS domains to be validated as part of the authentication flow.\n","type":"string"},"auditLogsClaims":{"description":"Subclaims to include in audit logs, e.g \"--audit-logs-claims email --audit-logs-claims username\"\n","items":{"type":"string"},"type":"array"},"authMethodCertId":{"description":"The ID of this resource.\n","type":"string"},"boundCommonNames":{"description":"A list of names. At least one must exist in the Common Name. Supports globbing.\n","items":{"type":"string"},"type":"array"},"boundDnsSans":{"description":"A list of DNS names. At least one must exist in the SANs. Supports globbing.\n","items":{"type":"string"},"type":"array"},"boundEmailSans":{"description":"A list of Email Addresses. At least one must exist in the SANs. Supports globbing.\n","items":{"type":"string"},"type":"array"},"boundExtensions":{"description":"A list of extensions formatted as 'oid:value'. Expects the extension value to be some type of ASN1 encoded string. All values much match. Supports globbing on 'value'.\n","items":{"type":"string"},"type":"array"},"boundIps":{"description":"A CIDR whitelist with the IPs that the access is restricted to\n","items":{"type":"string"},"type":"array"},"boundOrganizationalUnits":{"description":"A list of Organizational Units names. At least one must exist in the OU field.\n","items":{"type":"string"},"type":"array"},"boundUriSans":{"description":"A list of URIs. At least one must exist in the SANs. Supports globbing.\n","items":{"type":"string"},"type":"array"},"certificateData":{"description":"The certificate data in base64, if no file was provided\n","type":"string"},"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"string"},"description":{"description":"Auth Method description\n","type":"string"},"expirationEventIns":{"description":"How many days before the expiration of the auth method would you like to be notified.\n","items":{"type":"string"},"type":"array"},"forceSubClaims":{"description":"if true: enforce role-association must include sub claims\n","type":"boolean"},"gwBoundIps":{"description":"A CIDR whitelist with the GW IPs that the access is restricted to\n","items":{"type":"string"},"type":"array"},"jwtTtl":{"description":"Jwt TTL\n","type":"number"},"name":{"description":"Auth Method name\n","type":"string"},"productTypes":{"description":"Choose the relevant product type for the auth method [sm, sra, pm, dp, ca]\n","items":{"type":"string"},"type":"array"},"revokedCertIds":{"description":"A list of revoked cert ids\n","items":{"type":"string"},"type":"array"},"uniqueIdentifier":{"description":"A unique identifier (ID) value should be configured, such as common*name or organizational*unit Whenever a user logs in with a token, these authentication types issue a \"sub claim\" that contains details uniquely identifying that user. This sub claim includes a key containing the ID value that you configured, and is used to distinguish between different users from within the same organization.\n","type":"string"}},"type":"object"},"type":"object"},"akeyless:index/authMethodEmail:AuthMethodEmail":{"description":"Email Auth Method Resource\n","inputProperties":{"accessExpires":{"description":"Access expiration date in Unix timestamp (select 0 for access without expiry date)\n","type":"number"},"allowedClientTypes":{"description":"Limit the auth method usage for specific client types [cli,ui,gateway-admin,sdk,mobile,extension]\n","items":{"type":"string"},"type":"array"},"auditLogsClaims":{"description":"Subclaims to include in audit logs, e.g \"--audit-logs-claims email --audit-logs-claims username\"\n","items":{"type":"string"},"type":"array"},"authMethodEmailId":{"description":"The ID of this resource.\n","type":"string"},"boundIps":{"description":"A CIDR whitelist with the IPs that the access is restricted to\n","items":{"type":"string"},"type":"array"},"deleteProtection":{"description":"Protection from accidental deletion of this auth method, [true/false]\n","type":"string"},"description":{"description":"Auth Method description\n","type":"string"},"email":{"description":"An email address to be invited to have access\n","type":"string"},"expirationEventIns":{"description":"How many days before the expiration of the auth method would you like to be notified.\n","items":{"type":"string"},"type":"array"},"forceSubClaims":{"description":"if true: enforce role-association must include sub claims\n","type":"boolean"},"gwBoundIps":{"description":"A CIDR whitelist with the GW IPs that the access is restricted to\n","items":{"type":"string"},"type":"array"},"jwtTtl":{"description":"Creds expiration time in minutes\n","type":"number"},"name":{"description":"Auth Method name\n","type":"string"},"productTypes":{"description":"Choose the relevant product type for the auth method [sm, sra, pm, dp, ca]\n","items":{"type":"string"},"type":"array"}},"properties":{"accessExpires":{"description":"Access expiration date in Unix timestamp (select 0 for access without expiry date)\n","type":"number"},"accessId":{"description":"Auth Method access ID\n","type":"string"},"allowedClientTypes":{"description":"Limit the auth method usage for specific client types [cli,ui,gateway-admin,sdk,mobile,extension]\n","items":{"type":"string"},"type":"array"},"auditLogsClaims":{"description":"Subclaims to include in audit logs, e.g \"--audit-logs-claims email --audit-logs-claims username\"\n","items":{"type":"string"},"type":"array"},"authMethodEmailId":{"description":"The ID of this resource.\n","type":"string"},"boundIps":{"description":"A CIDR whitelist with the IPs that the access is restricted to\n","items":{"type":"string"},"type":"array"},"deleteProtection":{"description":"Protection from accidental deletion of this auth method, [true/false]\n","type":"string"},"description":{"description":"Auth Method description\n","type":"string"},"email":{"description":"An email address to be invited to have access\n","type":"string"},"expirationEventIns":{"description":"How many days before the expiration of the auth method would you like to be notified.\n","items":{"type":"string"},"type":"array"},"forceSubClaims":{"description":"if true: enforce role-association must include sub claims\n","type":"boolean"},"gwBoundIps":{"description":"A CIDR whitelist with the GW IPs that the access is restricted to\n","items":{"type":"string"},"type":"array"},"jwtTtl":{"description":"Creds expiration time in minutes\n","type":"number"},"name":{"description":"Auth Method name\n","type":"string"},"productTypes":{"description":"Choose the relevant product type for the auth method [sm, sra, pm, dp, ca]\n","items":{"type":"string"},"type":"array"}},"required":["accessId","authMethodEmailId","email","name"],"requiredInputs":["email"],"stateInputs":{"description":"Input properties used for looking up and filtering AuthMethodEmail resources.\n","properties":{"accessExpires":{"description":"Access expiration date in Unix timestamp (select 0 for access without expiry date)\n","type":"number"},"accessId":{"description":"Auth Method access ID\n","type":"string"},"allowedClientTypes":{"description":"Limit the auth method usage for specific client types [cli,ui,gateway-admin,sdk,mobile,extension]\n","items":{"type":"string"},"type":"array"},"auditLogsClaims":{"description":"Subclaims to include in audit logs, e.g \"--audit-logs-claims email --audit-logs-claims username\"\n","items":{"type":"string"},"type":"array"},"authMethodEmailId":{"description":"The ID of this resource.\n","type":"string"},"boundIps":{"description":"A CIDR whitelist with the IPs that the access is restricted to\n","items":{"type":"string"},"type":"array"},"deleteProtection":{"description":"Protection from accidental deletion of this auth method, [true/false]\n","type":"string"},"description":{"description":"Auth Method description\n","type":"string"},"email":{"description":"An email address to be invited to have access\n","type":"string"},"expirationEventIns":{"description":"How many days before the expiration of the auth method would you like to be notified.\n","items":{"type":"string"},"type":"array"},"forceSubClaims":{"description":"if true: enforce role-association must include sub claims\n","type":"boolean"},"gwBoundIps":{"description":"A CIDR whitelist with the GW IPs that the access is restricted to\n","items":{"type":"string"},"type":"array"},"jwtTtl":{"description":"Creds expiration time in minutes\n","type":"number"},"name":{"description":"Auth Method name\n","type":"string"},"productTypes":{"description":"Choose the relevant product type for the auth method [sm, sra, pm, dp, ca]\n","items":{"type":"string"},"type":"array"}},"type":"object"},"type":"object"},"akeyless:index/authMethodGcp:AuthMethodGcp":{"description":"GCE Auth Method Resource\n","inputProperties":{"accessExpires":{"description":"Access expiration date in Unix timestamp (select 0 for access without expiry date)\n","type":"number"},"allowedClientTypes":{"description":"limit the auth method usage for specific client types [cli,ui,gateway-admin,sdk,mobile,extension]\n","items":{"type":"string"},"type":"array"},"audience":{"description":"The audience to verify in the JWT received by the client\n","type":"string"},"auditLogsClaims":{"description":"Subclaims to include in audit logs, e.g \"--audit-logs-claims email --audit-logs-claims username\"\n","items":{"type":"string"},"type":"array"},"authMethodGcpId":{"description":"The ID of this resource.\n","type":"string"},"boundIps":{"description":"A CIDR whitelist with the IPs that the access is restricted to\n","items":{"type":"string"},"type":"array"},"boundLabels":{"description":"A comma-separated list of GCP labels formatted as \"key:value\" strings that must be set on authorized GCE instances. TODO: Because GCP labels are not currently ACL'd ....\n","items":{"type":"string"},"type":"array"},"boundProjects":{"description":"=== Human and Machine authentication section === Array of GCP project IDs. Only entities belonging to any of the provided projects can authenticate.\n","items":{"type":"string"},"type":"array"},"boundRegions":{"description":"List of regions that a GCE instance must belong to in order to be authenticated. TODO: If bound*instance*groups is provided, it is assumed to be a regional group and the group must belong to this region. If<span pulumi-lang-nodejs=\" boundZones \" pulumi-lang-dotnet=\" BoundZones \" pulumi-lang-go=\" boundZones \" pulumi-lang-python=\" bound_zones \" pulumi-lang-yaml=\" boundZones \" pulumi-lang-java=\" boundZones \"> bound_zones </span>are provided, this attribute is ignored.\n","items":{"type":"string"},"type":"array"},"boundServiceAccounts":{"description":"List of service accounts the service account must be part of in order to be authenticated.\n","items":{"type":"string"},"type":"array"},"boundZones":{"description":"=== Machine authentication section === List of zones that a GCE instance must belong to in order to be authenticated. TODO: If bound*instance*groups is provided, it is assumed to be a zonal group and the group must belong to this zone.\n","items":{"type":"string"},"type":"array"},"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"string"},"description":{"description":"Auth Method description\n","type":"string"},"expirationEventIns":{"description":"How many days before the expiration of the auth method would you like to be notified.\n","items":{"type":"string"},"type":"array"},"forceSubClaims":{"description":"if true: enforce role-association must include sub claims\n","type":"boolean"},"gwBoundIps":{"description":"A CIDR whitelist with the GW IPs that the access is restricted to\n","items":{"type":"string"},"type":"array"},"jwtTtl":{"description":"Jwt TTL\n","type":"number"},"name":{"description":"Auth Method name\n","type":"string"},"productTypes":{"description":"Choose the relevant product type for the auth method [sm, sra, pm, dp, ca]\n","items":{"type":"string"},"type":"array"},"serviceAccountCredsData":{"description":"ServiceAccount credentials data instead of giving a file path, base64 encoded\n","type":"string"},"type":{"description":"Type of the GCP Access Rules\n","type":"string"},"uniqueIdentifier":{"description":"A unique identifier (ID) value which is a \"sub claim\" name that contains details uniquely identifying that resource. This \"sub claim\" is used to distinguish between different identities.\n","type":"string"}},"properties":{"accessExpires":{"description":"Access expiration date in Unix timestamp (select 0 for access without expiry date)\n","type":"number"},"accessId":{"description":"Auth Method access ID\n","type":"string"},"allowedClientTypes":{"description":"limit the auth method usage for specific client types [cli,ui,gateway-admin,sdk,mobile,extension]\n","items":{"type":"string"},"type":"array"},"audience":{"description":"The audience to verify in the JWT received by the client\n","type":"string"},"auditLogsClaims":{"description":"Subclaims to include in audit logs, e.g \"--audit-logs-claims email --audit-logs-claims username\"\n","items":{"type":"string"},"type":"array"},"authMethodGcpId":{"description":"The ID of this resource.\n","type":"string"},"boundIps":{"description":"A CIDR whitelist with the IPs that the access is restricted to\n","items":{"type":"string"},"type":"array"},"boundLabels":{"description":"A comma-separated list of GCP labels formatted as \"key:value\" strings that must be set on authorized GCE instances. TODO: Because GCP labels are not currently ACL'd ....\n","items":{"type":"string"},"type":"array"},"boundProjects":{"description":"=== Human and Machine authentication section === Array of GCP project IDs. Only entities belonging to any of the provided projects can authenticate.\n","items":{"type":"string"},"type":"array"},"boundRegions":{"description":"List of regions that a GCE instance must belong to in order to be authenticated. TODO: If bound*instance*groups is provided, it is assumed to be a regional group and the group must belong to this region. If<span pulumi-lang-nodejs=\" boundZones \" pulumi-lang-dotnet=\" BoundZones \" pulumi-lang-go=\" boundZones \" pulumi-lang-python=\" bound_zones \" pulumi-lang-yaml=\" boundZones \" pulumi-lang-java=\" boundZones \"> bound_zones </span>are provided, this attribute is ignored.\n","items":{"type":"string"},"type":"array"},"boundServiceAccounts":{"description":"List of service accounts the service account must be part of in order to be authenticated.\n","items":{"type":"string"},"type":"array"},"boundZones":{"description":"=== Machine authentication section === List of zones that a GCE instance must belong to in order to be authenticated. TODO: If bound*instance*groups is provided, it is assumed to be a zonal group and the group must belong to this zone.\n","items":{"type":"string"},"type":"array"},"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"string"},"description":{"description":"Auth Method description\n","type":"string"},"expirationEventIns":{"description":"How many days before the expiration of the auth method would you like to be notified.\n","items":{"type":"string"},"type":"array"},"forceSubClaims":{"description":"if true: enforce role-association must include sub claims\n","type":"boolean"},"gwBoundIps":{"description":"A CIDR whitelist with the GW IPs that the access is restricted to\n","items":{"type":"string"},"type":"array"},"jwtTtl":{"description":"Jwt TTL\n","type":"number"},"name":{"description":"Auth Method name\n","type":"string"},"productTypes":{"description":"Choose the relevant product type for the auth method [sm, sra, pm, dp, ca]\n","items":{"type":"string"},"type":"array"},"serviceAccountCredsData":{"description":"ServiceAccount credentials data instead of giving a file path, base64 encoded\n","type":"string"},"type":{"description":"Type of the GCP Access Rules\n","type":"string"},"uniqueIdentifier":{"description":"A unique identifier (ID) value which is a \"sub claim\" name that contains details uniquely identifying that resource. This \"sub claim\" is used to distinguish between different identities.\n","type":"string"}},"required":["accessId","authMethodGcpId","name","type"],"requiredInputs":["type"],"stateInputs":{"description":"Input properties used for looking up and filtering AuthMethodGcp resources.\n","properties":{"accessExpires":{"description":"Access expiration date in Unix timestamp (select 0 for access without expiry date)\n","type":"number"},"accessId":{"description":"Auth Method access ID\n","type":"string"},"allowedClientTypes":{"description":"limit the auth method usage for specific client types [cli,ui,gateway-admin,sdk,mobile,extension]\n","items":{"type":"string"},"type":"array"},"audience":{"description":"The audience to verify in the JWT received by the client\n","type":"string"},"auditLogsClaims":{"description":"Subclaims to include in audit logs, e.g \"--audit-logs-claims email --audit-logs-claims username\"\n","items":{"type":"string"},"type":"array"},"authMethodGcpId":{"description":"The ID of this resource.\n","type":"string"},"boundIps":{"description":"A CIDR whitelist with the IPs that the access is restricted to\n","items":{"type":"string"},"type":"array"},"boundLabels":{"description":"A comma-separated list of GCP labels formatted as \"key:value\" strings that must be set on authorized GCE instances. TODO: Because GCP labels are not currently ACL'd ....\n","items":{"type":"string"},"type":"array"},"boundProjects":{"description":"=== Human and Machine authentication section === Array of GCP project IDs. Only entities belonging to any of the provided projects can authenticate.\n","items":{"type":"string"},"type":"array"},"boundRegions":{"description":"List of regions that a GCE instance must belong to in order to be authenticated. TODO: If bound*instance*groups is provided, it is assumed to be a regional group and the group must belong to this region. If<span pulumi-lang-nodejs=\" boundZones \" pulumi-lang-dotnet=\" BoundZones \" pulumi-lang-go=\" boundZones \" pulumi-lang-python=\" bound_zones \" pulumi-lang-yaml=\" boundZones \" pulumi-lang-java=\" boundZones \"> bound_zones </span>are provided, this attribute is ignored.\n","items":{"type":"string"},"type":"array"},"boundServiceAccounts":{"description":"List of service accounts the service account must be part of in order to be authenticated.\n","items":{"type":"string"},"type":"array"},"boundZones":{"description":"=== Machine authentication section === List of zones that a GCE instance must belong to in order to be authenticated. TODO: If bound*instance*groups is provided, it is assumed to be a zonal group and the group must belong to this zone.\n","items":{"type":"string"},"type":"array"},"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"string"},"description":{"description":"Auth Method description\n","type":"string"},"expirationEventIns":{"description":"How many days before the expiration of the auth method would you like to be notified.\n","items":{"type":"string"},"type":"array"},"forceSubClaims":{"description":"if true: enforce role-association must include sub claims\n","type":"boolean"},"gwBoundIps":{"description":"A CIDR whitelist with the GW IPs that the access is restricted to\n","items":{"type":"string"},"type":"array"},"jwtTtl":{"description":"Jwt TTL\n","type":"number"},"name":{"description":"Auth Method name\n","type":"string"},"productTypes":{"description":"Choose the relevant product type for the auth method [sm, sra, pm, dp, ca]\n","items":{"type":"string"},"type":"array"},"serviceAccountCredsData":{"description":"ServiceAccount credentials data instead of giving a file path, base64 encoded\n","type":"string"},"type":{"description":"Type of the GCP Access Rules\n","type":"string"},"uniqueIdentifier":{"description":"A unique identifier (ID) value which is a \"sub claim\" name that contains details uniquely identifying that resource. This \"sub claim\" is used to distinguish between different identities.\n","type":"string"}},"type":"object"},"type":"object"},"akeyless:index/authMethodK8s:AuthMethodK8s":{"description":"Kubernetes Auth Method Resource\n","inputProperties":{"accessExpires":{"description":"Access expiration date in Unix timestamp (select 0 for access without expiry date)\n","type":"number"},"allowedClientTypes":{"description":"Limit the auth method usage for specific client types [cli,ui,gateway-admin,sdk,mobile,extension]\n","items":{"type":"string"},"type":"array"},"audience":{"description":"The audience in the Kubernetes JWT that the access is restricted to\n","type":"string"},"auditLogsClaims":{"description":"Subclaims to include in audit logs, e.g \"--audit-logs-claims email --audit-logs-claims username\"\n","items":{"type":"string"},"type":"array"},"authMethodK8sId":{"description":"The ID of this resource.\n","type":"string"},"boundIps":{"description":"A CIDR whitelist with the IPs that the access is restricted to\n","items":{"type":"string"},"type":"array"},"boundNamespaces":{"description":"A list of namespaces that the access is restricted to\n","items":{"type":"string"},"type":"array"},"boundPodNames":{"description":"A list of pod names that the access is restricted to\n","items":{"type":"string"},"type":"array"},"boundSaNames":{"description":"A list of service account names that the access is restricted to\n","items":{"type":"string"},"type":"array"},"deleteProtection":{"description":"Protection from accidental deletion of this auth method, [true/false]\n","type":"string"},"description":{"description":"Auth Method description\n","type":"string"},"expirationEventIns":{"description":"How many days before the expiration of the auth method would you like to be notified.\n","items":{"type":"string"},"type":"array"},"forceSubClaims":{"description":"enforce role-association must include sub claims\n","type":"boolean"},"genKey":{"description":"Automatically generate key-pair for K8S configuration. If set to false, a public key needs to be provided [true/false]\n","type":"string"},"gwBoundIps":{"description":"A CIDR whitelist with the GW IPs that the access is restricted to\n","items":{"type":"string"},"type":"array"},"jwtTtl":{"description":"Creds expiration time in minutes\n","type":"number"},"name":{"description":"Auth Method name\n","type":"string"},"productTypes":{"description":"Choose the relevant product type for the auth method [sm, sra, pm, dp, ca]\n","items":{"type":"string"},"type":"array"},"publicKey":{"description":"The generated public key\n","type":"string"}},"properties":{"accessExpires":{"description":"Access expiration date in Unix timestamp (select 0 for access without expiry date)\n","type":"number"},"accessId":{"description":"Auth Method access ID\n","type":"string"},"allowedClientTypes":{"description":"Limit the auth method usage for specific client types [cli,ui,gateway-admin,sdk,mobile,extension]\n","items":{"type":"string"},"type":"array"},"audience":{"description":"The audience in the Kubernetes JWT that the access is restricted to\n","type":"string"},"auditLogsClaims":{"description":"Subclaims to include in audit logs, e.g \"--audit-logs-claims email --audit-logs-claims username\"\n","items":{"type":"string"},"type":"array"},"authMethodK8sId":{"description":"The ID of this resource.\n","type":"string"},"boundIps":{"description":"A CIDR whitelist with the IPs that the access is restricted to\n","items":{"type":"string"},"type":"array"},"boundNamespaces":{"description":"A list of namespaces that the access is restricted to\n","items":{"type":"string"},"type":"array"},"boundPodNames":{"description":"A list of pod names that the access is restricted to\n","items":{"type":"string"},"type":"array"},"boundSaNames":{"description":"A list of service account names that the access is restricted to\n","items":{"type":"string"},"type":"array"},"deleteProtection":{"description":"Protection from accidental deletion of this auth method, [true/false]\n","type":"string"},"description":{"description":"Auth Method description\n","type":"string"},"expirationEventIns":{"description":"How many days before the expiration of the auth method would you like to be notified.\n","items":{"type":"string"},"type":"array"},"forceSubClaims":{"description":"enforce role-association must include sub claims\n","type":"boolean"},"genKey":{"description":"Automatically generate key-pair for K8S configuration. If set to false, a public key needs to be provided [true/false]\n","type":"string"},"gwBoundIps":{"description":"A CIDR whitelist with the GW IPs that the access is restricted to\n","items":{"type":"string"},"type":"array"},"jwtTtl":{"description":"Creds expiration time in minutes\n","type":"number"},"name":{"description":"Auth Method name\n","type":"string"},"privateKey":{"description":"The generated private key\n","type":"string"},"productTypes":{"description":"Choose the relevant product type for the auth method [sm, sra, pm, dp, ca]\n","items":{"type":"string"},"type":"array"},"publicKey":{"description":"The generated public key\n","type":"string"}},"required":["accessId","authMethodK8sId","name","privateKey","publicKey"],"stateInputs":{"description":"Input properties used for looking up and filtering AuthMethodK8s resources.\n","properties":{"accessExpires":{"description":"Access expiration date in Unix timestamp (select 0 for access without expiry date)\n","type":"number"},"accessId":{"description":"Auth Method access ID\n","type":"string"},"allowedClientTypes":{"description":"Limit the auth method usage for specific client types [cli,ui,gateway-admin,sdk,mobile,extension]\n","items":{"type":"string"},"type":"array"},"audience":{"description":"The audience in the Kubernetes JWT that the access is restricted to\n","type":"string"},"auditLogsClaims":{"description":"Subclaims to include in audit logs, e.g \"--audit-logs-claims email --audit-logs-claims username\"\n","items":{"type":"string"},"type":"array"},"authMethodK8sId":{"description":"The ID of this resource.\n","type":"string"},"boundIps":{"description":"A CIDR whitelist with the IPs that the access is restricted to\n","items":{"type":"string"},"type":"array"},"boundNamespaces":{"description":"A list of namespaces that the access is restricted to\n","items":{"type":"string"},"type":"array"},"boundPodNames":{"description":"A list of pod names that the access is restricted to\n","items":{"type":"string"},"type":"array"},"boundSaNames":{"description":"A list of service account names that the access is restricted to\n","items":{"type":"string"},"type":"array"},"deleteProtection":{"description":"Protection from accidental deletion of this auth method, [true/false]\n","type":"string"},"description":{"description":"Auth Method description\n","type":"string"},"expirationEventIns":{"description":"How many days before the expiration of the auth method would you like to be notified.\n","items":{"type":"string"},"type":"array"},"forceSubClaims":{"description":"enforce role-association must include sub claims\n","type":"boolean"},"genKey":{"description":"Automatically generate key-pair for K8S configuration. If set to false, a public key needs to be provided [true/false]\n","type":"string"},"gwBoundIps":{"description":"A CIDR whitelist with the GW IPs that the access is restricted to\n","items":{"type":"string"},"type":"array"},"jwtTtl":{"description":"Creds expiration time in minutes\n","type":"number"},"name":{"description":"Auth Method name\n","type":"string"},"privateKey":{"description":"The generated private key\n","type":"string"},"productTypes":{"description":"Choose the relevant product type for the auth method [sm, sra, pm, dp, ca]\n","items":{"type":"string"},"type":"array"},"publicKey":{"description":"The generated public key\n","type":"string"}},"type":"object"},"type":"object"},"akeyless:index/authMethodKerberos:AuthMethodKerberos":{"description":"Kerberos Auth Method Resource\n","inputProperties":{"accessExpires":{"description":"Access expiration date in Unix timestamp (select 0 for access without expiry date)\n","type":"number"},"allowedClientTypes":{"description":"Limit the auth method usage for specific client types [cli,ui,gateway-admin,sdk,mobile,extension]\n","items":{"type":"string"},"type":"array"},"auditLogsClaims":{"description":"Subclaims to include in audit logs\n","items":{"type":"string"},"type":"array"},"authMethodKerberosId":{"description":"The ID of this resource.\n","type":"string"},"bindDn":{"description":"Bind DN\n","type":"string"},"bindDnPassword":{"description":"Bind DN password\n","secret":true,"type":"string"},"boundIps":{"description":"A comma-separated CIDR block list to allow client access\n","items":{"type":"string"},"type":"array"},"deleteProtection":{"description":"Protection from accidental deletion of this object, [true/false]\n","type":"string"},"description":{"description":"Auth Method description\n","type":"string"},"expirationEventIns":{"description":"How many days before the expiration of the auth method would you like to be notified\n","items":{"type":"string"},"type":"array"},"forceSubClaims":{"description":"enforce role-association must include sub claims\n","type":"boolean"},"groupAttr":{"description":"Group attribute\n","type":"string"},"groupDn":{"description":"Group DN\n","type":"string"},"groupFilter":{"description":"Group filter\n","type":"string"},"gwBoundIps":{"description":"A comma-separated CIDR block list as a trusted Gateway entity\n","items":{"type":"string"},"type":"array"},"jwtTtl":{"description":"creds expiration time in minutes. If not set, use default according to account settings (see get-account-settings)\n","type":"number"},"keytabFileData":{"description":"Keytab file data (base64 encoded)\n","secret":true,"type":"string"},"krb5ConfData":{"description":"Kerberos configuration file data (base64 encoded)\n","type":"string"},"ldapAnonymousSearch":{"description":"Enable LDAP anonymous search\n","type":"boolean"},"ldapCaCert":{"description":"LDAP CA certificate\n","type":"string"},"ldapUrl":{"description":"LDAP URL\n","type":"string"},"name":{"description":"Auth Method name\n","type":"string"},"productTypes":{"description":"Choose the relevant product type for the auth method [sm, sra, pm, dp, ca]\n","items":{"type":"string"},"type":"array"},"subclaimsDelimiters":{"description":"A list of additional sub claims delimiters\n","items":{"type":"string"},"type":"array"},"uniqueIdentifier":{"description":"A unique identifier (ID) value should be configured. Whenever a user logs in with a token, these authentication types issue a sub claim that contains details uniquely identifying that user. This sub claim includes a key containing the ID value that you configured, and is used to distinguish between different users from within the same organization.\n","type":"string"},"userAttribute":{"description":"User attribute\n","type":"string"},"userDn":{"description":"User DN\n","type":"string"}},"properties":{"accessExpires":{"description":"Access expiration date in Unix timestamp (select 0 for access without expiry date)\n","type":"number"},"accessId":{"description":"Auth Method access ID\n","type":"string"},"allowedClientTypes":{"description":"Limit the auth method usage for specific client types [cli,ui,gateway-admin,sdk,mobile,extension]\n","items":{"type":"string"},"type":"array"},"auditLogsClaims":{"description":"Subclaims to include in audit logs\n","items":{"type":"string"},"type":"array"},"authMethodKerberosId":{"description":"The ID of this resource.\n","type":"string"},"bindDn":{"description":"Bind DN\n","type":"string"},"bindDnPassword":{"description":"Bind DN password\n","secret":true,"type":"string"},"boundIps":{"description":"A comma-separated CIDR block list to allow client access\n","items":{"type":"string"},"type":"array"},"deleteProtection":{"description":"Protection from accidental deletion of this object, [true/false]\n","type":"string"},"description":{"description":"Auth Method description\n","type":"string"},"expirationEventIns":{"description":"How many days before the expiration of the auth method would you like to be notified\n","items":{"type":"string"},"type":"array"},"forceSubClaims":{"description":"enforce role-association must include sub claims\n","type":"boolean"},"groupAttr":{"description":"Group attribute\n","type":"string"},"groupDn":{"description":"Group DN\n","type":"string"},"groupFilter":{"description":"Group filter\n","type":"string"},"gwBoundIps":{"description":"A comma-separated CIDR block list as a trusted Gateway entity\n","items":{"type":"string"},"type":"array"},"jwtTtl":{"description":"creds expiration time in minutes. If not set, use default according to account settings (see get-account-settings)\n","type":"number"},"keytabFileData":{"description":"Keytab file data (base64 encoded)\n","secret":true,"type":"string"},"krb5ConfData":{"description":"Kerberos configuration file data (base64 encoded)\n","type":"string"},"ldapAnonymousSearch":{"description":"Enable LDAP anonymous search\n","type":"boolean"},"ldapCaCert":{"description":"LDAP CA certificate\n","type":"string"},"ldapUrl":{"description":"LDAP URL\n","type":"string"},"name":{"description":"Auth Method name\n","type":"string"},"productTypes":{"description":"Choose the relevant product type for the auth method [sm, sra, pm, dp, ca]\n","items":{"type":"string"},"type":"array"},"subclaimsDelimiters":{"description":"A list of additional sub claims delimiters\n","items":{"type":"string"},"type":"array"},"uniqueIdentifier":{"description":"A unique identifier (ID) value should be configured. Whenever a user logs in with a token, these authentication types issue a sub claim that contains details uniquely identifying that user. This sub claim includes a key containing the ID value that you configured, and is used to distinguish between different users from within the same organization.\n","type":"string"},"userAttribute":{"description":"User attribute\n","type":"string"},"userDn":{"description":"User DN\n","type":"string"}},"required":["accessId","authMethodKerberosId","name"],"stateInputs":{"description":"Input properties used for looking up and filtering AuthMethodKerberos resources.\n","properties":{"accessExpires":{"description":"Access expiration date in Unix timestamp (select 0 for access without expiry date)\n","type":"number"},"accessId":{"description":"Auth Method access ID\n","type":"string"},"allowedClientTypes":{"description":"Limit the auth method usage for specific client types [cli,ui,gateway-admin,sdk,mobile,extension]\n","items":{"type":"string"},"type":"array"},"auditLogsClaims":{"description":"Subclaims to include in audit logs\n","items":{"type":"string"},"type":"array"},"authMethodKerberosId":{"description":"The ID of this resource.\n","type":"string"},"bindDn":{"description":"Bind DN\n","type":"string"},"bindDnPassword":{"description":"Bind DN password\n","secret":true,"type":"string"},"boundIps":{"description":"A comma-separated CIDR block list to allow client access\n","items":{"type":"string"},"type":"array"},"deleteProtection":{"description":"Protection from accidental deletion of this object, [true/false]\n","type":"string"},"description":{"description":"Auth Method description\n","type":"string"},"expirationEventIns":{"description":"How many days before the expiration of the auth method would you like to be notified\n","items":{"type":"string"},"type":"array"},"forceSubClaims":{"description":"enforce role-association must include sub claims\n","type":"boolean"},"groupAttr":{"description":"Group attribute\n","type":"string"},"groupDn":{"description":"Group DN\n","type":"string"},"groupFilter":{"description":"Group filter\n","type":"string"},"gwBoundIps":{"description":"A comma-separated CIDR block list as a trusted Gateway entity\n","items":{"type":"string"},"type":"array"},"jwtTtl":{"description":"creds expiration time in minutes. If not set, use default according to account settings (see get-account-settings)\n","type":"number"},"keytabFileData":{"description":"Keytab file data (base64 encoded)\n","secret":true,"type":"string"},"krb5ConfData":{"description":"Kerberos configuration file data (base64 encoded)\n","type":"string"},"ldapAnonymousSearch":{"description":"Enable LDAP anonymous search\n","type":"boolean"},"ldapCaCert":{"description":"LDAP CA certificate\n","type":"string"},"ldapUrl":{"description":"LDAP URL\n","type":"string"},"name":{"description":"Auth Method name\n","type":"string"},"productTypes":{"description":"Choose the relevant product type for the auth method [sm, sra, pm, dp, ca]\n","items":{"type":"string"},"type":"array"},"subclaimsDelimiters":{"description":"A list of additional sub claims delimiters\n","items":{"type":"string"},"type":"array"},"uniqueIdentifier":{"description":"A unique identifier (ID) value should be configured. Whenever a user logs in with a token, these authentication types issue a sub claim that contains details uniquely identifying that user. This sub claim includes a key containing the ID value that you configured, and is used to distinguish between different users from within the same organization.\n","type":"string"},"userAttribute":{"description":"User attribute\n","type":"string"},"userDn":{"description":"User DN\n","type":"string"}},"type":"object"},"type":"object"},"akeyless:index/authMethodLdap:AuthMethodLdap":{"description":"LDAP Auth Method Resource\n","inputProperties":{"accessExpires":{"description":"Access expiration date in Unix timestamp (select 0 for access without expiry date)\n","type":"number"},"allowedClientTypes":{"description":"Limit the auth method usage for specific client types [cli,ui,gateway-admin,sdk,mobile,extension]\n","items":{"type":"string"},"type":"array"},"auditLogsClaims":{"description":"Subclaims to include in audit logs, e.g \"--audit-logs-claims email --audit-logs-claims username\"\n","items":{"type":"string"},"type":"array"},"authMethodLdapId":{"description":"The ID of this resource.\n","type":"string"},"boundIps":{"description":"A CIDR whitelist with the IPs that the access is restricted to\n","items":{"type":"string"},"type":"array"},"deleteProtection":{"description":"Protection from accidental deletion of this object, [true/false]\n","type":"string"},"description":{"description":"Auth Method description\n","type":"string"},"expirationEventIns":{"description":"How many days before the expiration of the auth method would you like to be notified\n","items":{"type":"string"},"type":"array"},"forceSubClaims":{"description":"enforce role-association must include sub claims\n","type":"boolean"},"genKey":{"description":"Automatically generate key-pair for LDAP configuration. If set to false, a public key needs to be provided\n","type":"string"},"gwBoundIps":{"description":"A CIDR whitelist with the GW IPs that the access is restricted to\n","items":{"type":"string"},"type":"array"},"jwtTtl":{"description":"creds expiration time in minutes. If not set, use default according to account settings (see get-account-settings)\n","type":"number"},"name":{"description":"Auth Method name\n","type":"string"},"productTypes":{"description":"Choose the relevant product type for the auth method [sm, sra, pm, dp, ca]\n","items":{"type":"string"},"type":"array"},"publicKeyData":{"description":"A public key generated for LDAP authentication method on Akeyless in base64 or PEM format [RSA2048]\n","type":"string"},"uniqueIdentifier":{"description":"A unique identifier (ID) value should be configured for OAuth2, LDAP and SAML authentication method types and is usually a value such as the email, username, or upn for example. Whenever a user logs in with a token, these authentication types issue a \"sub claim\" that contains details uniquely identifying that user. This sub claim includes a key containing the ID value that you configured, and is used to distinguish between different users from within the same organization.\n","type":"string"}},"properties":{"accessExpires":{"description":"Access expiration date in Unix timestamp (select 0 for access without expiry date)\n","type":"number"},"accessId":{"description":"Auth Method access ID\n","type":"string"},"allowedClientTypes":{"description":"Limit the auth method usage for specific client types [cli,ui,gateway-admin,sdk,mobile,extension]\n","items":{"type":"string"},"type":"array"},"auditLogsClaims":{"description":"Subclaims to include in audit logs, e.g \"--audit-logs-claims email --audit-logs-claims username\"\n","items":{"type":"string"},"type":"array"},"authMethodLdapId":{"description":"The ID of this resource.\n","type":"string"},"boundIps":{"description":"A CIDR whitelist with the IPs that the access is restricted to\n","items":{"type":"string"},"type":"array"},"deleteProtection":{"description":"Protection from accidental deletion of this object, [true/false]\n","type":"string"},"description":{"description":"Auth Method description\n","type":"string"},"expirationEventIns":{"description":"How many days before the expiration of the auth method would you like to be notified\n","items":{"type":"string"},"type":"array"},"forceSubClaims":{"description":"enforce role-association must include sub claims\n","type":"boolean"},"genKey":{"description":"Automatically generate key-pair for LDAP configuration. If set to false, a public key needs to be provided\n","type":"string"},"gwBoundIps":{"description":"A CIDR whitelist with the GW IPs that the access is restricted to\n","items":{"type":"string"},"type":"array"},"jwtTtl":{"description":"creds expiration time in minutes. If not set, use default according to account settings (see get-account-settings)\n","type":"number"},"name":{"description":"Auth Method name\n","type":"string"},"privateKeyData":{"description":"Private key data in Base64 format. This is only returned if the<span pulumi-lang-nodejs=\" genKey \" pulumi-lang-dotnet=\" GenKey \" pulumi-lang-go=\" genKey \" pulumi-lang-python=\" gen_key \" pulumi-lang-yaml=\" genKey \" pulumi-lang-java=\" genKey \"> gen_key </span>parameter is set to true.\n","secret":true,"type":"string"},"productTypes":{"description":"Choose the relevant product type for the auth method [sm, sra, pm, dp, ca]\n","items":{"type":"string"},"type":"array"},"publicKeyData":{"description":"A public key generated for LDAP authentication method on Akeyless in base64 or PEM format [RSA2048]\n","type":"string"},"uniqueIdentifier":{"description":"A unique identifier (ID) value should be configured for OAuth2, LDAP and SAML authentication method types and is usually a value such as the email, username, or upn for example. Whenever a user logs in with a token, these authentication types issue a \"sub claim\" that contains details uniquely identifying that user. This sub claim includes a key containing the ID value that you configured, and is used to distinguish between different users from within the same organization.\n","type":"string"}},"required":["accessId","authMethodLdapId","name","privateKeyData","publicKeyData"],"stateInputs":{"description":"Input properties used for looking up and filtering AuthMethodLdap resources.\n","properties":{"accessExpires":{"description":"Access expiration date in Unix timestamp (select 0 for access without expiry date)\n","type":"number"},"accessId":{"description":"Auth Method access ID\n","type":"string"},"allowedClientTypes":{"description":"Limit the auth method usage for specific client types [cli,ui,gateway-admin,sdk,mobile,extension]\n","items":{"type":"string"},"type":"array"},"auditLogsClaims":{"description":"Subclaims to include in audit logs, e.g \"--audit-logs-claims email --audit-logs-claims username\"\n","items":{"type":"string"},"type":"array"},"authMethodLdapId":{"description":"The ID of this resource.\n","type":"string"},"boundIps":{"description":"A CIDR whitelist with the IPs that the access is restricted to\n","items":{"type":"string"},"type":"array"},"deleteProtection":{"description":"Protection from accidental deletion of this object, [true/false]\n","type":"string"},"description":{"description":"Auth Method description\n","type":"string"},"expirationEventIns":{"description":"How many days before the expiration of the auth method would you like to be notified\n","items":{"type":"string"},"type":"array"},"forceSubClaims":{"description":"enforce role-association must include sub claims\n","type":"boolean"},"genKey":{"description":"Automatically generate key-pair for LDAP configuration. If set to false, a public key needs to be provided\n","type":"string"},"gwBoundIps":{"description":"A CIDR whitelist with the GW IPs that the access is restricted to\n","items":{"type":"string"},"type":"array"},"jwtTtl":{"description":"creds expiration time in minutes. If not set, use default according to account settings (see get-account-settings)\n","type":"number"},"name":{"description":"Auth Method name\n","type":"string"},"privateKeyData":{"description":"Private key data in Base64 format. This is only returned if the<span pulumi-lang-nodejs=\" genKey \" pulumi-lang-dotnet=\" GenKey \" pulumi-lang-go=\" genKey \" pulumi-lang-python=\" gen_key \" pulumi-lang-yaml=\" genKey \" pulumi-lang-java=\" genKey \"> gen_key </span>parameter is set to true.\n","secret":true,"type":"string"},"productTypes":{"description":"Choose the relevant product type for the auth method [sm, sra, pm, dp, ca]\n","items":{"type":"string"},"type":"array"},"publicKeyData":{"description":"A public key generated for LDAP authentication method on Akeyless in base64 or PEM format [RSA2048]\n","type":"string"},"uniqueIdentifier":{"description":"A unique identifier (ID) value should be configured for OAuth2, LDAP and SAML authentication method types and is usually a value such as the email, username, or upn for example. Whenever a user logs in with a token, these authentication types issue a \"sub claim\" that contains details uniquely identifying that user. This sub claim includes a key containing the ID value that you configured, and is used to distinguish between different users from within the same organization.\n","type":"string"}},"type":"object"},"type":"object"},"akeyless:index/authMethodOauth2:AuthMethodOauth2":{"description":"AOAuth2 Auth Method Resource\n","inputProperties":{"accessExpires":{"description":"Access expiration date in Unix timestamp (select 0 for access without expiry date)\n","type":"number"},"allowedClientTypes":{"description":"Limit the auth method usage for specific client types [cli,ui,gateway-admin,sdk,mobile,extension]\n","items":{"type":"string"},"type":"array"},"audience":{"description":"The audience in the JWT\n","type":"string"},"auditLogsClaims":{"description":"Subclaims to include in audit logs, e.g \"--audit-logs-claims email --audit-logs-claims username\"\n","items":{"type":"string"},"type":"array"},"authMethodOauth2Id":{"description":"The ID of this resource.\n","type":"string"},"boundClientIds":{"description":"The clients ids that the access is restricted to\n","items":{"type":"string"},"type":"array"},"boundIps":{"description":"A CIDR whitelist with the IPs that the access is restricted to\n","items":{"type":"string"},"type":"array"},"cert":{"description":"CertificateFile Path to a file that contain the certificate in a PEM format.\n","type":"string"},"certFileData":{"description":"CertificateFileData PEM Certificate in a Base64 format.\n","type":"string"},"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"string"},"description":{"description":"Auth Method description\n","type":"string"},"expirationEventIns":{"description":"How many days before the expiration of the auth method would you like to be notified\n","items":{"type":"string"},"type":"array"},"forceSubClaims":{"description":"if true: enforce role-association must include sub claims\n","type":"boolean"},"gatewayUrl":{"description":"Akeyless Gateway URL (Configuration Management port). Relevant only when the jwks-uri is accessible only from the gateway.\n","type":"string"},"gwBoundIps":{"description":"A CIDR whitelist with the GW IPs that the access is restricted to\n","items":{"type":"string"},"type":"array"},"issuer":{"description":"Issuer URL\n","type":"string"},"jwksJsonData":{"description":"The JSON Web Key Set (JWKS) that containing the public keys that should be used to verify any JSON Web Token (JWT) issued by the authorization server. base64 encoded string\n","type":"string"},"jwksUri":{"description":"The URL to the JSON Web Key Set (JWKS) that containing the public keys that should be used to verify any JSON Web Token (JWT) issued by the authorization server.\n","type":"string"},"jwtTtl":{"description":"Jwt TTL\n","type":"number"},"name":{"description":"Auth Method name\n","type":"string"},"productTypes":{"description":"Choose the relevant product type for the auth method [sm, sra, pm, dp, ca]\n","items":{"type":"string"},"type":"array"},"subclaimsDelimiters":{"description":"A list of additional sub claims delimiters (relevant only for SAML, OIDC, OAuth2/JWT)\n","items":{"type":"string"},"type":"array"},"uniqueIdentifier":{"description":"A unique identifier (ID) value should be configured for OAuth2, LDAP and SAML authentication method types and is usually a value such as the email, username, or upn for example. Whenever a user logs in with a token, these authentication types issue a sub claim that contains details uniquely identifying that user. This sub claim includes a key containing the ID value that you configured, and is used to distinguish between different users from within the same organization.\n","type":"string"}},"properties":{"accessExpires":{"description":"Access expiration date in Unix timestamp (select 0 for access without expiry date)\n","type":"number"},"accessId":{"description":"Auth Method access ID\n","type":"string"},"allowedClientTypes":{"description":"Limit the auth method usage for specific client types [cli,ui,gateway-admin,sdk,mobile,extension]\n","items":{"type":"string"},"type":"array"},"audience":{"description":"The audience in the JWT\n","type":"string"},"auditLogsClaims":{"description":"Subclaims to include in audit logs, e.g \"--audit-logs-claims email --audit-logs-claims username\"\n","items":{"type":"string"},"type":"array"},"authMethodOauth2Id":{"description":"The ID of this resource.\n","type":"string"},"boundClientIds":{"description":"The clients ids that the access is restricted to\n","items":{"type":"string"},"type":"array"},"boundIps":{"description":"A CIDR whitelist with the IPs that the access is restricted to\n","items":{"type":"string"},"type":"array"},"cert":{"description":"CertificateFile Path to a file that contain the certificate in a PEM format.\n","type":"string"},"certFileData":{"description":"CertificateFileData PEM Certificate in a Base64 format.\n","type":"string"},"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"string"},"description":{"description":"Auth Method description\n","type":"string"},"expirationEventIns":{"description":"How many days before the expiration of the auth method would you like to be notified\n","items":{"type":"string"},"type":"array"},"forceSubClaims":{"description":"if true: enforce role-association must include sub claims\n","type":"boolean"},"gatewayUrl":{"description":"Akeyless Gateway URL (Configuration Management port). Relevant only when the jwks-uri is accessible only from the gateway.\n","type":"string"},"gwBoundIps":{"description":"A CIDR whitelist with the GW IPs that the access is restricted to\n","items":{"type":"string"},"type":"array"},"issuer":{"description":"Issuer URL\n","type":"string"},"jwksJsonData":{"description":"The JSON Web Key Set (JWKS) that containing the public keys that should be used to verify any JSON Web Token (JWT) issued by the authorization server. base64 encoded string\n","type":"string"},"jwksUri":{"description":"The URL to the JSON Web Key Set (JWKS) that containing the public keys that should be used to verify any JSON Web Token (JWT) issued by the authorization server.\n","type":"string"},"jwtTtl":{"description":"Jwt TTL\n","type":"number"},"name":{"description":"Auth Method name\n","type":"string"},"productTypes":{"description":"Choose the relevant product type for the auth method [sm, sra, pm, dp, ca]\n","items":{"type":"string"},"type":"array"},"subclaimsDelimiters":{"description":"A list of additional sub claims delimiters (relevant only for SAML, OIDC, OAuth2/JWT)\n","items":{"type":"string"},"type":"array"},"uniqueIdentifier":{"description":"A unique identifier (ID) value should be configured for OAuth2, LDAP and SAML authentication method types and is usually a value such as the email, username, or upn for example. Whenever a user logs in with a token, these authentication types issue a sub claim that contains details uniquely identifying that user. This sub claim includes a key containing the ID value that you configured, and is used to distinguish between different users from within the same organization.\n","type":"string"}},"required":["accessId","authMethodOauth2Id","name","uniqueIdentifier"],"requiredInputs":["uniqueIdentifier"],"stateInputs":{"description":"Input properties used for looking up and filtering AuthMethodOauth2 resources.\n","properties":{"accessExpires":{"description":"Access expiration date in Unix timestamp (select 0 for access without expiry date)\n","type":"number"},"accessId":{"description":"Auth Method access ID\n","type":"string"},"allowedClientTypes":{"description":"Limit the auth method usage for specific client types [cli,ui,gateway-admin,sdk,mobile,extension]\n","items":{"type":"string"},"type":"array"},"audience":{"description":"The audience in the JWT\n","type":"string"},"auditLogsClaims":{"description":"Subclaims to include in audit logs, e.g \"--audit-logs-claims email --audit-logs-claims username\"\n","items":{"type":"string"},"type":"array"},"authMethodOauth2Id":{"description":"The ID of this resource.\n","type":"string"},"boundClientIds":{"description":"The clients ids that the access is restricted to\n","items":{"type":"string"},"type":"array"},"boundIps":{"description":"A CIDR whitelist with the IPs that the access is restricted to\n","items":{"type":"string"},"type":"array"},"cert":{"description":"CertificateFile Path to a file that contain the certificate in a PEM format.\n","type":"string"},"certFileData":{"description":"CertificateFileData PEM Certificate in a Base64 format.\n","type":"string"},"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"string"},"description":{"description":"Auth Method description\n","type":"string"},"expirationEventIns":{"description":"How many days before the expiration of the auth method would you like to be notified\n","items":{"type":"string"},"type":"array"},"forceSubClaims":{"description":"if true: enforce role-association must include sub claims\n","type":"boolean"},"gatewayUrl":{"description":"Akeyless Gateway URL (Configuration Management port). Relevant only when the jwks-uri is accessible only from the gateway.\n","type":"string"},"gwBoundIps":{"description":"A CIDR whitelist with the GW IPs that the access is restricted to\n","items":{"type":"string"},"type":"array"},"issuer":{"description":"Issuer URL\n","type":"string"},"jwksJsonData":{"description":"The JSON Web Key Set (JWKS) that containing the public keys that should be used to verify any JSON Web Token (JWT) issued by the authorization server. base64 encoded string\n","type":"string"},"jwksUri":{"description":"The URL to the JSON Web Key Set (JWKS) that containing the public keys that should be used to verify any JSON Web Token (JWT) issued by the authorization server.\n","type":"string"},"jwtTtl":{"description":"Jwt TTL\n","type":"number"},"name":{"description":"Auth Method name\n","type":"string"},"productTypes":{"description":"Choose the relevant product type for the auth method [sm, sra, pm, dp, ca]\n","items":{"type":"string"},"type":"array"},"subclaimsDelimiters":{"description":"A list of additional sub claims delimiters (relevant only for SAML, OIDC, OAuth2/JWT)\n","items":{"type":"string"},"type":"array"},"uniqueIdentifier":{"description":"A unique identifier (ID) value should be configured for OAuth2, LDAP and SAML authentication method types and is usually a value such as the email, username, or upn for example. Whenever a user logs in with a token, these authentication types issue a sub claim that contains details uniquely identifying that user. This sub claim includes a key containing the ID value that you configured, and is used to distinguish between different users from within the same organization.\n","type":"string"}},"type":"object"},"type":"object"},"akeyless:index/authMethodOci:AuthMethodOci":{"description":"Oracle Cloud Infrastructure (OCI) Auth Method Resource\n","inputProperties":{"accessExpires":{"description":"Access expiration date in Unix timestamp (select 0 for access without expiry date)\n","type":"number"},"allowedClientTypes":{"description":"Limit the auth method usage for specific client types [cli,ui,gateway-admin,sdk,mobile,extension]\n","items":{"type":"string"},"type":"array"},"auditLogsClaims":{"description":"Subclaims to include in audit logs, e.g \"--audit-logs-claims email --audit-logs-claims username\"\n","items":{"type":"string"},"type":"array"},"authMethodOciId":{"description":"The ID of this resource.\n","type":"string"},"boundIps":{"description":"A CIDR whitelist with the IPs that the access is restricted to\n","items":{"type":"string"},"type":"array"},"deleteProtection":{"description":"Protection from accidental deletion of this auth method, [true/false]\n","type":"string"},"description":{"description":"Auth Method description\n","type":"string"},"expirationEventIns":{"description":"How many days before the expiration of the auth method would you like to be notified.\n","items":{"type":"string"},"type":"array"},"forceSubClaims":{"description":"if true: enforce role-association must include sub claims\n","type":"boolean"},"groupOcids":{"description":"A list of required groups ocids\n","items":{"type":"string"},"type":"array"},"gwBoundIps":{"description":"A CIDR whitelist with the GW IPs that the access is restricted to\n","items":{"type":"string"},"type":"array"},"jwtTtl":{"description":"Jwt TTL\n","type":"number"},"name":{"description":"Auth Method name\n","type":"string"},"productTypes":{"description":"Choose the relevant product type for the auth method [sm, sra, pm, dp, ca]\n","items":{"type":"string"},"type":"array"},"tenantOcid":{"description":"The Oracle Cloud tenant ID\n","type":"string"}},"properties":{"accessExpires":{"description":"Access expiration date in Unix timestamp (select 0 for access without expiry date)\n","type":"number"},"accessId":{"description":"Auth Method access ID\n","type":"string"},"allowedClientTypes":{"description":"Limit the auth method usage for specific client types [cli,ui,gateway-admin,sdk,mobile,extension]\n","items":{"type":"string"},"type":"array"},"auditLogsClaims":{"description":"Subclaims to include in audit logs, e.g \"--audit-logs-claims email --audit-logs-claims username\"\n","items":{"type":"string"},"type":"array"},"authMethodOciId":{"description":"The ID of this resource.\n","type":"string"},"boundIps":{"description":"A CIDR whitelist with the IPs that the access is restricted to\n","items":{"type":"string"},"type":"array"},"deleteProtection":{"description":"Protection from accidental deletion of this auth method, [true/false]\n","type":"string"},"description":{"description":"Auth Method description\n","type":"string"},"expirationEventIns":{"description":"How many days before the expiration of the auth method would you like to be notified.\n","items":{"type":"string"},"type":"array"},"forceSubClaims":{"description":"if true: enforce role-association must include sub claims\n","type":"boolean"},"groupOcids":{"description":"A list of required groups ocids\n","items":{"type":"string"},"type":"array"},"gwBoundIps":{"description":"A CIDR whitelist with the GW IPs that the access is restricted to\n","items":{"type":"string"},"type":"array"},"jwtTtl":{"description":"Jwt TTL\n","type":"number"},"name":{"description":"Auth Method name\n","type":"string"},"productTypes":{"description":"Choose the relevant product type for the auth method [sm, sra, pm, dp, ca]\n","items":{"type":"string"},"type":"array"},"tenantOcid":{"description":"The Oracle Cloud tenant ID\n","type":"string"}},"required":["accessId","authMethodOciId","groupOcids","name","tenantOcid"],"requiredInputs":["groupOcids","tenantOcid"],"stateInputs":{"description":"Input properties used for looking up and filtering AuthMethodOci resources.\n","properties":{"accessExpires":{"description":"Access expiration date in Unix timestamp (select 0 for access without expiry date)\n","type":"number"},"accessId":{"description":"Auth Method access ID\n","type":"string"},"allowedClientTypes":{"description":"Limit the auth method usage for specific client types [cli,ui,gateway-admin,sdk,mobile,extension]\n","items":{"type":"string"},"type":"array"},"auditLogsClaims":{"description":"Subclaims to include in audit logs, e.g \"--audit-logs-claims email --audit-logs-claims username\"\n","items":{"type":"string"},"type":"array"},"authMethodOciId":{"description":"The ID of this resource.\n","type":"string"},"boundIps":{"description":"A CIDR whitelist with the IPs that the access is restricted to\n","items":{"type":"string"},"type":"array"},"deleteProtection":{"description":"Protection from accidental deletion of this auth method, [true/false]\n","type":"string"},"description":{"description":"Auth Method description\n","type":"string"},"expirationEventIns":{"description":"How many days before the expiration of the auth method would you like to be notified.\n","items":{"type":"string"},"type":"array"},"forceSubClaims":{"description":"if true: enforce role-association must include sub claims\n","type":"boolean"},"groupOcids":{"description":"A list of required groups ocids\n","items":{"type":"string"},"type":"array"},"gwBoundIps":{"description":"A CIDR whitelist with the GW IPs that the access is restricted to\n","items":{"type":"string"},"type":"array"},"jwtTtl":{"description":"Jwt TTL\n","type":"number"},"name":{"description":"Auth Method name\n","type":"string"},"productTypes":{"description":"Choose the relevant product type for the auth method [sm, sra, pm, dp, ca]\n","items":{"type":"string"},"type":"array"},"tenantOcid":{"description":"The Oracle Cloud tenant ID\n","type":"string"}},"type":"object"},"type":"object"},"akeyless:index/authMethodOidc:AuthMethodOidc":{"description":"OIDC Auth Method Resource\n","inputProperties":{"accessExpires":{"description":"Access expiration date in Unix timestamp (select 0 for access without expiry date)\n","type":"number"},"allowedClientTypes":{"description":"limit the auth method usage for specific client types [cli,ui,gateway-admin,sdk,mobile,extension]\n","items":{"type":"string"},"type":"array"},"allowedRedirectUris":{"description":"Allowed redirect URIs after the authentication\n","items":{"type":"string"},"type":"array"},"audience":{"description":"Audience claim to be used as part of the authentication flow. In case set, it must match the one configured on the Identity Provider's Application\n","type":"string"},"auditLogsClaims":{"description":"Subclaims to include in audit logs, e.g \"--audit-logs-claims email --audit-logs-claims username\"\n","items":{"type":"string"},"type":"array"},"authMethodOidcId":{"description":"The ID of this resource.\n","type":"string"},"boundIps":{"description":"A CIDR whitelist with the IPs that the access is restricted to\n","items":{"type":"string"},"type":"array"},"clientId":{"description":"Client ID\n","type":"string"},"clientSecret":{"description":"Client Secret\n","type":"string"},"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"string"},"description":{"description":"Auth Method description\n","type":"string"},"expirationEventIns":{"description":"How many days before the expiration of the auth method would you like to be notified.\n","items":{"type":"string"},"type":"array"},"forceSubClaims":{"description":"if true: enforce role-association must include sub claims\n","type":"boolean"},"gwBoundIps":{"description":"A CIDR whitelist with the GW IPs that the access is restricted to\n","items":{"type":"string"},"type":"array"},"issuer":{"description":"Issuer URL\n","type":"string"},"jwtTtl":{"description":"Jwt TTL\n","type":"number"},"name":{"description":"Auth Method name\n","type":"string"},"productTypes":{"description":"Choose the relevant product type for the auth method [sm, sra, pm, dp, ca]\n","items":{"type":"string"},"type":"array"},"requiredScopes":{"description":"RequiredScopes is a list of required scopes that the oidc method will request from the oidc provider and the user must approve\n","items":{"type":"string"},"type":"array"},"requiredScopesPrefix":{"description":"RequiredScopesPrefix is a a prefix to add to all required-scopes when requesting them from the oidc server (for example, azures' Application ID URI)\n","type":"string"},"subclaimsDelimiters":{"description":"A list of additional sub claims delimiters (relevant only for SAML, OIDC, OAuth2/JWT)\n","items":{"type":"string"},"type":"array"},"uniqueIdentifier":{"description":"A unique identifier (ID) value should be configured for OIDC, OAuth2, LDAP and SAML authentication method types and is usually a value such as the email, username, or upn for example. Whenever a user logs in with a token, these authentication types issue a sub claim that contains details uniquely identifying that user. This sub claim includes a key containing the ID value that you configured, and is used to distinguish between different users from within the same organization.\n","type":"string"}},"properties":{"accessExpires":{"description":"Access expiration date in Unix timestamp (select 0 for access without expiry date)\n","type":"number"},"accessId":{"description":"Auth Method access ID\n","type":"string"},"allowedClientTypes":{"description":"limit the auth method usage for specific client types [cli,ui,gateway-admin,sdk,mobile,extension]\n","items":{"type":"string"},"type":"array"},"allowedRedirectUris":{"description":"Allowed redirect URIs after the authentication\n","items":{"type":"string"},"type":"array"},"audience":{"description":"Audience claim to be used as part of the authentication flow. In case set, it must match the one configured on the Identity Provider's Application\n","type":"string"},"auditLogsClaims":{"description":"Subclaims to include in audit logs, e.g \"--audit-logs-claims email --audit-logs-claims username\"\n","items":{"type":"string"},"type":"array"},"authMethodOidcId":{"description":"The ID of this resource.\n","type":"string"},"boundIps":{"description":"A CIDR whitelist with the IPs that the access is restricted to\n","items":{"type":"string"},"type":"array"},"clientId":{"description":"Client ID\n","type":"string"},"clientSecret":{"description":"Client Secret\n","type":"string"},"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"string"},"description":{"description":"Auth Method description\n","type":"string"},"expirationEventIns":{"description":"How many days before the expiration of the auth method would you like to be notified.\n","items":{"type":"string"},"type":"array"},"forceSubClaims":{"description":"if true: enforce role-association must include sub claims\n","type":"boolean"},"gwBoundIps":{"description":"A CIDR whitelist with the GW IPs that the access is restricted to\n","items":{"type":"string"},"type":"array"},"issuer":{"description":"Issuer URL\n","type":"string"},"jwtTtl":{"description":"Jwt TTL\n","type":"number"},"name":{"description":"Auth Method name\n","type":"string"},"productTypes":{"description":"Choose the relevant product type for the auth method [sm, sra, pm, dp, ca]\n","items":{"type":"string"},"type":"array"},"requiredScopes":{"description":"RequiredScopes is a list of required scopes that the oidc method will request from the oidc provider and the user must approve\n","items":{"type":"string"},"type":"array"},"requiredScopesPrefix":{"description":"RequiredScopesPrefix is a a prefix to add to all required-scopes when requesting them from the oidc server (for example, azures' Application ID URI)\n","type":"string"},"subclaimsDelimiters":{"description":"A list of additional sub claims delimiters (relevant only for SAML, OIDC, OAuth2/JWT)\n","items":{"type":"string"},"type":"array"},"uniqueIdentifier":{"description":"A unique identifier (ID) value should be configured for OIDC, OAuth2, LDAP and SAML authentication method types and is usually a value such as the email, username, or upn for example. Whenever a user logs in with a token, these authentication types issue a sub claim that contains details uniquely identifying that user. This sub claim includes a key containing the ID value that you configured, and is used to distinguish between different users from within the same organization.\n","type":"string"}},"required":["accessId","authMethodOidcId","name","uniqueIdentifier"],"requiredInputs":["uniqueIdentifier"],"stateInputs":{"description":"Input properties used for looking up and filtering AuthMethodOidc resources.\n","properties":{"accessExpires":{"description":"Access expiration date in Unix timestamp (select 0 for access without expiry date)\n","type":"number"},"accessId":{"description":"Auth Method access ID\n","type":"string"},"allowedClientTypes":{"description":"limit the auth method usage for specific client types [cli,ui,gateway-admin,sdk,mobile,extension]\n","items":{"type":"string"},"type":"array"},"allowedRedirectUris":{"description":"Allowed redirect URIs after the authentication\n","items":{"type":"string"},"type":"array"},"audience":{"description":"Audience claim to be used as part of the authentication flow. In case set, it must match the one configured on the Identity Provider's Application\n","type":"string"},"auditLogsClaims":{"description":"Subclaims to include in audit logs, e.g \"--audit-logs-claims email --audit-logs-claims username\"\n","items":{"type":"string"},"type":"array"},"authMethodOidcId":{"description":"The ID of this resource.\n","type":"string"},"boundIps":{"description":"A CIDR whitelist with the IPs that the access is restricted to\n","items":{"type":"string"},"type":"array"},"clientId":{"description":"Client ID\n","type":"string"},"clientSecret":{"description":"Client Secret\n","type":"string"},"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"string"},"description":{"description":"Auth Method description\n","type":"string"},"expirationEventIns":{"description":"How many days before the expiration of the auth method would you like to be notified.\n","items":{"type":"string"},"type":"array"},"forceSubClaims":{"description":"if true: enforce role-association must include sub claims\n","type":"boolean"},"gwBoundIps":{"description":"A CIDR whitelist with the GW IPs that the access is restricted to\n","items":{"type":"string"},"type":"array"},"issuer":{"description":"Issuer URL\n","type":"string"},"jwtTtl":{"description":"Jwt TTL\n","type":"number"},"name":{"description":"Auth Method name\n","type":"string"},"productTypes":{"description":"Choose the relevant product type for the auth method [sm, sra, pm, dp, ca]\n","items":{"type":"string"},"type":"array"},"requiredScopes":{"description":"RequiredScopes is a list of required scopes that the oidc method will request from the oidc provider and the user must approve\n","items":{"type":"string"},"type":"array"},"requiredScopesPrefix":{"description":"RequiredScopesPrefix is a a prefix to add to all required-scopes when requesting them from the oidc server (for example, azures' Application ID URI)\n","type":"string"},"subclaimsDelimiters":{"description":"A list of additional sub claims delimiters (relevant only for SAML, OIDC, OAuth2/JWT)\n","items":{"type":"string"},"type":"array"},"uniqueIdentifier":{"description":"A unique identifier (ID) value should be configured for OIDC, OAuth2, LDAP and SAML authentication method types and is usually a value such as the email, username, or upn for example. Whenever a user logs in with a token, these authentication types issue a sub claim that contains details uniquely identifying that user. This sub claim includes a key containing the ID value that you configured, and is used to distinguish between different users from within the same organization.\n","type":"string"}},"type":"object"},"type":"object"},"akeyless:index/authMethodSaml:AuthMethodSaml":{"description":"SAML Auth Method Resource\n\n## Import\n\n```sh\n$ pulumi import akeyless:index/authMethodSaml:AuthMethodSaml example /full-auth-method-saml-path/and-name-in-akeyless\n```\n\n","inputProperties":{"accessExpires":{"description":"Access expiration date in Unix timestamp (select 0 for access without expiry date)\n","type":"number"},"allowedClientTypes":{"description":"Limit the auth method usage for specific client types [cli,ui,gateway-admin,sdk,mobile,extension]\n","items":{"type":"string"},"type":"array"},"allowedRedirectUris":{"description":"Allowed redirect URIs after the authentication\n","items":{"type":"string"},"type":"array"},"auditLogsClaims":{"description":"Subclaims to include in audit logs, e.g \"--audit-logs-claims email --audit-logs-claims username\"\n","items":{"type":"string"},"type":"array"},"authMethodSamlId":{"description":"The ID of this resource.\n","type":"string"},"boundIps":{"description":"A CIDR whitelist with the IPs that the access is restricted to\n","items":{"type":"string"},"type":"array"},"deleteProtection":{"description":"Protection from accidental deletion of this auth method, [true/false]\n","type":"string"},"description":{"description":"Auth Method description\n","type":"string"},"expirationEventIns":{"description":"How many days before the expiration of the auth method would you like to be notified.\n","items":{"type":"string"},"type":"array"},"forceSubClaims":{"description":"if true: enforce role-association must include sub claims\n","type":"boolean"},"gwBoundIps":{"description":"A CIDR whitelist with the GW IPs that the access is restricted to\n","items":{"type":"string"},"type":"array"},"idpMetadataUrl":{"description":"IDP metadata url\n","type":"string"},"idpMetadataXmlData":{"description":"IDP metadata xml data\n","type":"string"},"jwtTtl":{"description":"Creds expiration time in minutes\n","type":"number"},"name":{"description":"Auth Method name\n","type":"string"},"productTypes":{"description":"Choose the relevant product type for the auth method [sm, sra, pm, dp, ca]\n","items":{"type":"string"},"type":"array"},"subclaimsDelimiters":{"description":"A list of additional sub claims delimiters (relevant only for SAML, OIDC, OAuth2/JWT)\n","items":{"type":"string"},"type":"array"},"uniqueIdentifier":{"description":"A unique identifier (ID) value should be configured for OAuth2, LDAP and SAML authentication method types and is usually a value such as the email, username, or upn for example. Whenever a user logs in with a token, these authentication types issue a sub claim that contains details uniquely identifying that user. This sub claim includes a key containing the ID value that you configured, and is used to distinguish between different users from within the same organization.\n","type":"string"}},"properties":{"accessExpires":{"description":"Access expiration date in Unix timestamp (select 0 for access without expiry date)\n","type":"number"},"accessId":{"description":"Auth Method access ID\n","type":"string"},"allowedClientTypes":{"description":"Limit the auth method usage for specific client types [cli,ui,gateway-admin,sdk,mobile,extension]\n","items":{"type":"string"},"type":"array"},"allowedRedirectUris":{"description":"Allowed redirect URIs after the authentication\n","items":{"type":"string"},"type":"array"},"auditLogsClaims":{"description":"Subclaims to include in audit logs, e.g \"--audit-logs-claims email --audit-logs-claims username\"\n","items":{"type":"string"},"type":"array"},"authMethodSamlId":{"description":"The ID of this resource.\n","type":"string"},"boundIps":{"description":"A CIDR whitelist with the IPs that the access is restricted to\n","items":{"type":"string"},"type":"array"},"deleteProtection":{"description":"Protection from accidental deletion of this auth method, [true/false]\n","type":"string"},"description":{"description":"Auth Method description\n","type":"string"},"expirationEventIns":{"description":"How many days before the expiration of the auth method would you like to be notified.\n","items":{"type":"string"},"type":"array"},"forceSubClaims":{"description":"if true: enforce role-association must include sub claims\n","type":"boolean"},"gwBoundIps":{"description":"A CIDR whitelist with the GW IPs that the access is restricted to\n","items":{"type":"string"},"type":"array"},"idpMetadataUrl":{"description":"IDP metadata url\n","type":"string"},"idpMetadataXmlData":{"description":"IDP metadata xml data\n","type":"string"},"jwtTtl":{"description":"Creds expiration time in minutes\n","type":"number"},"name":{"description":"Auth Method name\n","type":"string"},"productTypes":{"description":"Choose the relevant product type for the auth method [sm, sra, pm, dp, ca]\n","items":{"type":"string"},"type":"array"},"subclaimsDelimiters":{"description":"A list of additional sub claims delimiters (relevant only for SAML, OIDC, OAuth2/JWT)\n","items":{"type":"string"},"type":"array"},"uniqueIdentifier":{"description":"A unique identifier (ID) value should be configured for OAuth2, LDAP and SAML authentication method types and is usually a value such as the email, username, or upn for example. Whenever a user logs in with a token, these authentication types issue a sub claim that contains details uniquely identifying that user. This sub claim includes a key containing the ID value that you configured, and is used to distinguish between different users from within the same organization.\n","type":"string"}},"required":["accessId","authMethodSamlId","name","uniqueIdentifier"],"requiredInputs":["uniqueIdentifier"],"stateInputs":{"description":"Input properties used for looking up and filtering AuthMethodSaml resources.\n","properties":{"accessExpires":{"description":"Access expiration date in Unix timestamp (select 0 for access without expiry date)\n","type":"number"},"accessId":{"description":"Auth Method access ID\n","type":"string"},"allowedClientTypes":{"description":"Limit the auth method usage for specific client types [cli,ui,gateway-admin,sdk,mobile,extension]\n","items":{"type":"string"},"type":"array"},"allowedRedirectUris":{"description":"Allowed redirect URIs after the authentication\n","items":{"type":"string"},"type":"array"},"auditLogsClaims":{"description":"Subclaims to include in audit logs, e.g \"--audit-logs-claims email --audit-logs-claims username\"\n","items":{"type":"string"},"type":"array"},"authMethodSamlId":{"description":"The ID of this resource.\n","type":"string"},"boundIps":{"description":"A CIDR whitelist with the IPs that the access is restricted to\n","items":{"type":"string"},"type":"array"},"deleteProtection":{"description":"Protection from accidental deletion of this auth method, [true/false]\n","type":"string"},"description":{"description":"Auth Method description\n","type":"string"},"expirationEventIns":{"description":"How many days before the expiration of the auth method would you like to be notified.\n","items":{"type":"string"},"type":"array"},"forceSubClaims":{"description":"if true: enforce role-association must include sub claims\n","type":"boolean"},"gwBoundIps":{"description":"A CIDR whitelist with the GW IPs that the access is restricted to\n","items":{"type":"string"},"type":"array"},"idpMetadataUrl":{"description":"IDP metadata url\n","type":"string"},"idpMetadataXmlData":{"description":"IDP metadata xml data\n","type":"string"},"jwtTtl":{"description":"Creds expiration time in minutes\n","type":"number"},"name":{"description":"Auth Method name\n","type":"string"},"productTypes":{"description":"Choose the relevant product type for the auth method [sm, sra, pm, dp, ca]\n","items":{"type":"string"},"type":"array"},"subclaimsDelimiters":{"description":"A list of additional sub claims delimiters (relevant only for SAML, OIDC, OAuth2/JWT)\n","items":{"type":"string"},"type":"array"},"uniqueIdentifier":{"description":"A unique identifier (ID) value should be configured for OAuth2, LDAP and SAML authentication method types and is usually a value such as the email, username, or upn for example. Whenever a user logs in with a token, these authentication types issue a sub claim that contains details uniquely identifying that user. This sub claim includes a key containing the ID value that you configured, and is used to distinguish between different users from within the same organization.\n","type":"string"}},"type":"object"},"type":"object"},"akeyless:index/authMethodUniversalIdentity:AuthMethodUniversalIdentity":{"description":"Akeyless Universal Identity Auth Method Resource\n","inputProperties":{"accessExpires":{"description":"Access expiration date in Unix timestamp (select 0 for access without expiry date)\n","type":"number"},"allowedClientTypes":{"description":"limit the auth method usage for specific client types [cli,ui,gateway-admin,sdk,mobile,extension]\n","items":{"type":"string"},"type":"array"},"auditLogsClaims":{"description":"Subclaims to include in audit logs, e.g \"--audit-logs-claims email --audit-logs-claims username\"\n","items":{"type":"string"},"type":"array"},"authMethodUniversalIdentityId":{"description":"The ID of this resource.\n","type":"string"},"boundIps":{"description":"A CIDR whitelist with the IPs that the access is restricted to\n","items":{"type":"string"},"type":"array"},"deleteProtection":{"description":"Protection from accidental deletion of this auth method, [true/false]\n","type":"string"},"denyInheritance":{"description":"Deny from root to create children\n","type":"boolean"},"denyRotate":{"description":"Deny from the token to rotate\n","type":"boolean"},"description":{"description":"Auth Method description\n","type":"string"},"expirationEventIns":{"description":"How many days before the expiration of the auth method would you like to be notified.\n","items":{"type":"string"},"type":"array"},"forceSubClaims":{"description":"if true: enforce role-association must include sub claims\n","type":"boolean"},"gwBoundIps":{"description":"A CIDR whitelist with the GW IPs that the access is restricted to\n","items":{"type":"string"},"type":"array"},"jwtTtl":{"description":"Creds expiration time in minutes\n","type":"number"},"name":{"description":"Auth Method name\n","type":"string"},"productTypes":{"description":"Choose the relevant product type for the auth method [sm, sra, pm, dp, ca]\n","items":{"type":"string"},"type":"array"},"ttl":{"description":"Token ttl (in minutes)\n","type":"number"}},"properties":{"accessExpires":{"description":"Access expiration date in Unix timestamp (select 0 for access without expiry date)\n","type":"number"},"accessId":{"description":"Auth Method access ID\n","type":"string"},"allowedClientTypes":{"description":"limit the auth method usage for specific client types [cli,ui,gateway-admin,sdk,mobile,extension]\n","items":{"type":"string"},"type":"array"},"auditLogsClaims":{"description":"Subclaims to include in audit logs, e.g \"--audit-logs-claims email --audit-logs-claims username\"\n","items":{"type":"string"},"type":"array"},"authMethodUniversalIdentityId":{"description":"The ID of this resource.\n","type":"string"},"boundIps":{"description":"A CIDR whitelist with the IPs that the access is restricted to\n","items":{"type":"string"},"type":"array"},"deleteProtection":{"description":"Protection from accidental deletion of this auth method, [true/false]\n","type":"string"},"denyInheritance":{"description":"Deny from root to create children\n","type":"boolean"},"denyRotate":{"description":"Deny from the token to rotate\n","type":"boolean"},"description":{"description":"Auth Method description\n","type":"string"},"expirationEventIns":{"description":"How many days before the expiration of the auth method would you like to be notified.\n","items":{"type":"string"},"type":"array"},"forceSubClaims":{"description":"if true: enforce role-association must include sub claims\n","type":"boolean"},"gwBoundIps":{"description":"A CIDR whitelist with the GW IPs that the access is restricted to\n","items":{"type":"string"},"type":"array"},"jwtTtl":{"description":"Creds expiration time in minutes\n","type":"number"},"name":{"description":"Auth Method name\n","type":"string"},"productTypes":{"description":"Choose the relevant product type for the auth method [sm, sra, pm, dp, ca]\n","items":{"type":"string"},"type":"array"},"ttl":{"description":"Token ttl (in minutes)\n","type":"number"}},"required":["accessId","authMethodUniversalIdentityId","name"],"stateInputs":{"description":"Input properties used for looking up and filtering AuthMethodUniversalIdentity resources.\n","properties":{"accessExpires":{"description":"Access expiration date in Unix timestamp (select 0 for access without expiry date)\n","type":"number"},"accessId":{"description":"Auth Method access ID\n","type":"string"},"allowedClientTypes":{"description":"limit the auth method usage for specific client types [cli,ui,gateway-admin,sdk,mobile,extension]\n","items":{"type":"string"},"type":"array"},"auditLogsClaims":{"description":"Subclaims to include in audit logs, e.g \"--audit-logs-claims email --audit-logs-claims username\"\n","items":{"type":"string"},"type":"array"},"authMethodUniversalIdentityId":{"description":"The ID of this resource.\n","type":"string"},"boundIps":{"description":"A CIDR whitelist with the IPs that the access is restricted to\n","items":{"type":"string"},"type":"array"},"deleteProtection":{"description":"Protection from accidental deletion of this auth method, [true/false]\n","type":"string"},"denyInheritance":{"description":"Deny from root to create children\n","type":"boolean"},"denyRotate":{"description":"Deny from the token to rotate\n","type":"boolean"},"description":{"description":"Auth Method description\n","type":"string"},"expirationEventIns":{"description":"How many days before the expiration of the auth method would you like to be notified.\n","items":{"type":"string"},"type":"array"},"forceSubClaims":{"description":"if true: enforce role-association must include sub claims\n","type":"boolean"},"gwBoundIps":{"description":"A CIDR whitelist with the GW IPs that the access is restricted to\n","items":{"type":"string"},"type":"array"},"jwtTtl":{"description":"Creds expiration time in minutes\n","type":"number"},"name":{"description":"Auth Method name\n","type":"string"},"productTypes":{"description":"Choose the relevant product type for the auth method [sm, sra, pm, dp, ca]\n","items":{"type":"string"},"type":"array"},"ttl":{"description":"Token ttl (in minutes)\n","type":"number"}},"type":"object"},"type":"object"},"akeyless:index/certificate:Certificate":{"description":"Certificate Resource\n","inputProperties":{"certificateData":{"description":"Content of the certificate in a Base64 format.\n","secret":true,"type":"string"},"certificateId":{"description":"The ID of this resource.\n","type":"string"},"deleteProtection":{"description":"Protection from accidental deletion of this object, [true/false]\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"expirationEventIns":{"description":"How many days before the expiration of the certificate would you like to be notified.\n","items":{"type":"string"},"type":"array"},"format":{"description":"CertificateFormat of the certificate and private key, possible values: cer,crt,pem,pfx,p12. Required when passing inline certificate content with --certificate-data or --key-data, otherwise format is derived from the file extension.\n","type":"string"},"itemCustomFields":{"additionalProperties":{"type":"string"},"description":"Additional custom fields to associate with the item\n","type":"object"},"keepPrevVersion":{"description":"Whether to keep previous version [true/false]. If not set, use default according to account settings\n","type":"string"},"key":{"description":"The name of a key to use to encrypt the certificate's key (if empty, the account default protectionKey key will be used)\n","type":"string"},"keyData":{"description":"Content of the certificate's private key in a Base64 format.\n","secret":true,"type":"string"},"name":{"description":"Certificate name\n","type":"string"},"tags":{"description":"Add tags attached to this object\n","items":{"type":"string"},"type":"array"}},"properties":{"certificateData":{"description":"Content of the certificate in a Base64 format.\n","secret":true,"type":"string"},"certificateId":{"description":"The ID of this resource.\n","type":"string"},"deleteProtection":{"description":"Protection from accidental deletion of this object, [true/false]\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"expirationEventIns":{"description":"How many days before the expiration of the certificate would you like to be notified.\n","items":{"type":"string"},"type":"array"},"format":{"description":"CertificateFormat of the certificate and private key, possible values: cer,crt,pem,pfx,p12. Required when passing inline certificate content with --certificate-data or --key-data, otherwise format is derived from the file extension.\n","type":"string"},"itemCustomFields":{"additionalProperties":{"type":"string"},"description":"Additional custom fields to associate with the item\n","type":"object"},"keepPrevVersion":{"description":"Whether to keep previous version [true/false]. If not set, use default according to account settings\n","type":"string"},"key":{"description":"The name of a key to use to encrypt the certificate's key (if empty, the account default protectionKey key will be used)\n","type":"string"},"keyData":{"description":"Content of the certificate's private key in a Base64 format.\n","secret":true,"type":"string"},"name":{"description":"Certificate name\n","type":"string"},"tags":{"description":"Add tags attached to this object\n","items":{"type":"string"},"type":"array"}},"required":["certificateData","certificateId","key","name"],"stateInputs":{"description":"Input properties used for looking up and filtering Certificate resources.\n","properties":{"certificateData":{"description":"Content of the certificate in a Base64 format.\n","secret":true,"type":"string"},"certificateId":{"description":"The ID of this resource.\n","type":"string"},"deleteProtection":{"description":"Protection from accidental deletion of this object, [true/false]\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"expirationEventIns":{"description":"How many days before the expiration of the certificate would you like to be notified.\n","items":{"type":"string"},"type":"array"},"format":{"description":"CertificateFormat of the certificate and private key, possible values: cer,crt,pem,pfx,p12. Required when passing inline certificate content with --certificate-data or --key-data, otherwise format is derived from the file extension.\n","type":"string"},"itemCustomFields":{"additionalProperties":{"type":"string"},"description":"Additional custom fields to associate with the item\n","type":"object"},"keepPrevVersion":{"description":"Whether to keep previous version [true/false]. If not set, use default according to account settings\n","type":"string"},"key":{"description":"The name of a key to use to encrypt the certificate's key (if empty, the account default protectionKey key will be used)\n","type":"string"},"keyData":{"description":"Content of the certificate's private key in a Base64 format.\n","secret":true,"type":"string"},"name":{"description":"Certificate name\n","type":"string"},"tags":{"description":"Add tags attached to this object\n","items":{"type":"string"},"type":"array"}},"type":"object"},"type":"object"},"akeyless:index/classicKey:ClassicKey":{"description":"Classic Key resource\n","inputProperties":{"alg":{"description":"Classic Key type; options: [AES128GCM, AES256GCM, AES128SIV, AES256SIV, AES128CBC, AES256CBC, RSA1024, RSA2048, RSA3072, RSA4096, EC256, EC384, GPG]\n","type":"string"},"autoRotate":{"description":"Whether to automatically rotate every<span pulumi-lang-nodejs=\" rotationInterval \" pulumi-lang-dotnet=\" RotationInterval \" pulumi-lang-go=\" rotationInterval \" pulumi-lang-python=\" rotation_interval \" pulumi-lang-yaml=\" rotationInterval \" pulumi-lang-java=\" rotationInterval \"> rotation_interval </span>days, or disable existing automatic rotation [true/false]\n","type":"string"},"certFileData":{"description":"Certificate in a PEM format.\n","type":"string"},"certificateCommonName":{"description":"Common name for the generated certificate. Relevant only for generate-self-signed-certificate.\n","type":"string"},"certificateCountry":{"description":"Country name for the generated certificate. Relevant only for generate-self-signed-certificate.\n","type":"string"},"certificateDigestAlgo":{"description":"Digest algorithm to be used for the certificate key signing.\n","type":"string"},"certificateFormat":{"description":"The format of the returned certificate [pem/der]\n","type":"string"},"certificateLocality":{"description":"Locality for the generated certificate. Relevant only for generate-self-signed-certificate.\n","type":"string"},"certificateOrganization":{"description":"Organization name for the generated certificate. Relevant only for generate-self-signed-certificate.\n","type":"string"},"certificateProvince":{"description":"Province name for the generated certificate. Relevant only for generate-self-signed-certificate.\n","type":"string"},"certificateTtl":{"description":"TTL in days for the generated certificate. Required only for generate-self-signed-certificate.\n","type":"number"},"classicKeyId":{"description":"The ID of this resource.\n","type":"string"},"confFileData":{"description":"The csr config data in base64 encoding\n","type":"string"},"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"expirationEventIns":{"description":"How many days before the expiration of the certificate would you like to be notified.\n","items":{"type":"string"},"type":"array"},"generateSelfSignedCertificate":{"description":"Whether to generate a self signed certificate with the key. If set, --certificate-ttl must be provided.\n","type":"boolean"},"gpgAlg":{"description":"gpg alg: Relevant only if GPG key type selected; options: [RSA1024, RSA2048, RSA3072, RSA4096, Ed25519]\n","type":"string"},"hashAlgorithm":{"description":"Specifies the hash algorithm used for the encryption key's operations, available options: [SHA256, SHA384, SHA512]\n","type":"string"},"itemCustomFields":{"additionalProperties":{"type":"string"},"description":"Additional custom fields to associate with the item\n","type":"object"},"keyData":{"description":"Base64-encoded classic key value\n","secret":true,"type":"string"},"name":{"description":"Classic key name\n","type":"string"},"protectionKeyName":{"description":"The name of a key that used to encrypt the secret value (if empty, the account default protectionKey key will be used)\n","type":"string"},"rotationEventIns":{"description":"How many days before the rotation of the item would you like to be notified\n","items":{"type":"string"},"type":"array"},"rotationInterval":{"description":"The number of days to wait between every automatic rotation (1-365)\n","type":"string"},"tags":{"description":"Add tags attached to this object\n","items":{"type":"string"},"type":"array"}},"properties":{"alg":{"description":"Classic Key type; options: [AES128GCM, AES256GCM, AES128SIV, AES256SIV, AES128CBC, AES256CBC, RSA1024, RSA2048, RSA3072, RSA4096, EC256, EC384, GPG]\n","type":"string"},"autoRotate":{"description":"Whether to automatically rotate every<span pulumi-lang-nodejs=\" rotationInterval \" pulumi-lang-dotnet=\" RotationInterval \" pulumi-lang-go=\" rotationInterval \" pulumi-lang-python=\" rotation_interval \" pulumi-lang-yaml=\" rotationInterval \" pulumi-lang-java=\" rotationInterval \"> rotation_interval </span>days, or disable existing automatic rotation [true/false]\n","type":"string"},"certFileData":{"description":"Certificate in a PEM format.\n","type":"string"},"certificateCommonName":{"description":"Common name for the generated certificate. Relevant only for generate-self-signed-certificate.\n","type":"string"},"certificateCountry":{"description":"Country name for the generated certificate. Relevant only for generate-self-signed-certificate.\n","type":"string"},"certificateDigestAlgo":{"description":"Digest algorithm to be used for the certificate key signing.\n","type":"string"},"certificateFormat":{"description":"The format of the returned certificate [pem/der]\n","type":"string"},"certificateLocality":{"description":"Locality for the generated certificate. Relevant only for generate-self-signed-certificate.\n","type":"string"},"certificateOrganization":{"description":"Organization name for the generated certificate. Relevant only for generate-self-signed-certificate.\n","type":"string"},"certificateProvince":{"description":"Province name for the generated certificate. Relevant only for generate-self-signed-certificate.\n","type":"string"},"certificateTtl":{"description":"TTL in days for the generated certificate. Required only for generate-self-signed-certificate.\n","type":"number"},"classicKeyId":{"description":"The ID of this resource.\n","type":"string"},"confFileData":{"description":"The csr config data in base64 encoding\n","type":"string"},"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"expirationEventIns":{"description":"How many days before the expiration of the certificate would you like to be notified.\n","items":{"type":"string"},"type":"array"},"generateSelfSignedCertificate":{"description":"Whether to generate a self signed certificate with the key. If set, --certificate-ttl must be provided.\n","type":"boolean"},"gpgAlg":{"description":"gpg alg: Relevant only if GPG key type selected; options: [RSA1024, RSA2048, RSA3072, RSA4096, Ed25519]\n","type":"string"},"hashAlgorithm":{"description":"Specifies the hash algorithm used for the encryption key's operations, available options: [SHA256, SHA384, SHA512]\n","type":"string"},"itemCustomFields":{"additionalProperties":{"type":"string"},"description":"Additional custom fields to associate with the item\n","type":"object"},"keyData":{"description":"Base64-encoded classic key value\n","secret":true,"type":"string"},"name":{"description":"Classic key name\n","type":"string"},"protectionKeyName":{"description":"The name of a key that used to encrypt the secret value (if empty, the account default protectionKey key will be used)\n","type":"string"},"rotationEventIns":{"description":"How many days before the rotation of the item would you like to be notified\n","items":{"type":"string"},"type":"array"},"rotationInterval":{"description":"The number of days to wait between every automatic rotation (1-365)\n","type":"string"},"tags":{"description":"Add tags attached to this object\n","items":{"type":"string"},"type":"array"}},"required":["alg","certFileData","classicKeyId","name","protectionKeyName"],"requiredInputs":["alg"],"stateInputs":{"description":"Input properties used for looking up and filtering ClassicKey resources.\n","properties":{"alg":{"description":"Classic Key type; options: [AES128GCM, AES256GCM, AES128SIV, AES256SIV, AES128CBC, AES256CBC, RSA1024, RSA2048, RSA3072, RSA4096, EC256, EC384, GPG]\n","type":"string"},"autoRotate":{"description":"Whether to automatically rotate every<span pulumi-lang-nodejs=\" rotationInterval \" pulumi-lang-dotnet=\" RotationInterval \" pulumi-lang-go=\" rotationInterval \" pulumi-lang-python=\" rotation_interval \" pulumi-lang-yaml=\" rotationInterval \" pulumi-lang-java=\" rotationInterval \"> rotation_interval </span>days, or disable existing automatic rotation [true/false]\n","type":"string"},"certFileData":{"description":"Certificate in a PEM format.\n","type":"string"},"certificateCommonName":{"description":"Common name for the generated certificate. Relevant only for generate-self-signed-certificate.\n","type":"string"},"certificateCountry":{"description":"Country name for the generated certificate. Relevant only for generate-self-signed-certificate.\n","type":"string"},"certificateDigestAlgo":{"description":"Digest algorithm to be used for the certificate key signing.\n","type":"string"},"certificateFormat":{"description":"The format of the returned certificate [pem/der]\n","type":"string"},"certificateLocality":{"description":"Locality for the generated certificate. Relevant only for generate-self-signed-certificate.\n","type":"string"},"certificateOrganization":{"description":"Organization name for the generated certificate. Relevant only for generate-self-signed-certificate.\n","type":"string"},"certificateProvince":{"description":"Province name for the generated certificate. Relevant only for generate-self-signed-certificate.\n","type":"string"},"certificateTtl":{"description":"TTL in days for the generated certificate. Required only for generate-self-signed-certificate.\n","type":"number"},"classicKeyId":{"description":"The ID of this resource.\n","type":"string"},"confFileData":{"description":"The csr config data in base64 encoding\n","type":"string"},"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"expirationEventIns":{"description":"How many days before the expiration of the certificate would you like to be notified.\n","items":{"type":"string"},"type":"array"},"generateSelfSignedCertificate":{"description":"Whether to generate a self signed certificate with the key. If set, --certificate-ttl must be provided.\n","type":"boolean"},"gpgAlg":{"description":"gpg alg: Relevant only if GPG key type selected; options: [RSA1024, RSA2048, RSA3072, RSA4096, Ed25519]\n","type":"string"},"hashAlgorithm":{"description":"Specifies the hash algorithm used for the encryption key's operations, available options: [SHA256, SHA384, SHA512]\n","type":"string"},"itemCustomFields":{"additionalProperties":{"type":"string"},"description":"Additional custom fields to associate with the item\n","type":"object"},"keyData":{"description":"Base64-encoded classic key value\n","secret":true,"type":"string"},"name":{"description":"Classic key name\n","type":"string"},"protectionKeyName":{"description":"The name of a key that used to encrypt the secret value (if empty, the account default protectionKey key will be used)\n","type":"string"},"rotationEventIns":{"description":"How many days before the rotation of the item would you like to be notified\n","items":{"type":"string"},"type":"array"},"rotationInterval":{"description":"The number of days to wait between every automatic rotation (1-365)\n","type":"string"},"tags":{"description":"Add tags attached to this object\n","items":{"type":"string"},"type":"array"}},"type":"object"},"type":"object"},"akeyless:index/dfcKey:DfcKey":{"description":"DFC Key resource\n","inputProperties":{"alg":{"description":"DFCKey type; options: [AES128GCM, AES256GCM, AES128SIV, AES256SIV, AES128CBC, AES256CBC, RSA1024, RSA2048, RSA3072, RSA4096]\n","type":"string"},"autoRotate":{"description":"Whether to automatically rotate every<span pulumi-lang-nodejs=\" rotationInterval \" pulumi-lang-dotnet=\" RotationInterval \" pulumi-lang-go=\" rotationInterval \" pulumi-lang-python=\" rotation_interval \" pulumi-lang-yaml=\" rotationInterval \" pulumi-lang-java=\" rotationInterval \"> rotation_interval </span>days, or disable existing automatic rotation [true/false]\n","type":"string"},"certDataBase64":{"description":"PEM Certificate in a Base64 format. Used for updating RSA keys' certificates\n","type":"string"},"certificateCommonName":{"description":"Common name for the generated certificate. Relevant only for generate-self-signed-certificate.\n","type":"string"},"certificateCountry":{"description":"Country name for the generated certificate. Relevant only for generate-self-signed-certificate.\n","type":"string"},"certificateDigestAlgo":{"description":"Digest algorithm to be used for the certificate key signing.\n","type":"string"},"certificateFormat":{"description":"The format of the returned certificate [pem/der]\n","type":"string"},"certificateLocality":{"description":"Locality for the generated certificate. Relevant only for generate-self-signed-certificate.\n","type":"string"},"certificateOrganization":{"description":"Organization name for the generated certificate. Relevant only for generate-self-signed-certificate.\n","type":"string"},"certificateProvince":{"description":"Province name for the generated certificate. Relevant only for generate-self-signed-certificate.\n","type":"string"},"certificateTtl":{"description":"TTL in days for the generated certificate. Required only for generate-self-signed-certificate.\n","type":"number"},"confFileData":{"description":"The csr config data in base64 encoding\n","type":"string"},"customerFrgId":{"description":"The customer fragment ID that will be used to create the DFC key (if empty, the key will be created independently of a customer fragment)\n","type":"string"},"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"boolean"},"description":{"description":"Description of the object\n","type":"string"},"dfcKeyId":{"description":"The ID of this resource.\n","type":"string"},"expirationEventIns":{"description":"How many days before the expiration of the certificate would you like to be notified.\n","items":{"type":"string"},"type":"array"},"generateSelfSignedCertificate":{"description":"Whether to generate a self signed certificate with the key. If set, certificate-ttl must be provided.\n","type":"boolean"},"hashAlgorithm":{"description":"Specifies the hash algorithm used for the encryption key's operations, available options: [SHA256, SHA384, SHA512]\n","type":"string"},"itemCustomFields":{"additionalProperties":{"type":"string"},"description":"Additional custom fields to associate with the item\n","type":"object"},"name":{"description":"DFCKey name\n","type":"string"},"rotationEventIns":{"description":"How many days before the rotation of the item would you like to be notified.\n","items":{"type":"string"},"type":"array"},"rotationInterval":{"description":"The number of days to wait between every automatic rotation (7-365)\n","type":"string"},"splitLevel":{"description":"The number of fragments that the item will be split into (not includes customer fragment)\n","type":"number"},"tags":{"description":"List of the tags attached to this DFC key\n","items":{"type":"string"},"type":"array"}},"properties":{"alg":{"description":"DFCKey type; options: [AES128GCM, AES256GCM, AES128SIV, AES256SIV, AES128CBC, AES256CBC, RSA1024, RSA2048, RSA3072, RSA4096]\n","type":"string"},"autoRotate":{"description":"Whether to automatically rotate every<span pulumi-lang-nodejs=\" rotationInterval \" pulumi-lang-dotnet=\" RotationInterval \" pulumi-lang-go=\" rotationInterval \" pulumi-lang-python=\" rotation_interval \" pulumi-lang-yaml=\" rotationInterval \" pulumi-lang-java=\" rotationInterval \"> rotation_interval </span>days, or disable existing automatic rotation [true/false]\n","type":"string"},"certDataBase64":{"description":"PEM Certificate in a Base64 format. Used for updating RSA keys' certificates\n","type":"string"},"certificateCommonName":{"description":"Common name for the generated certificate. Relevant only for generate-self-signed-certificate.\n","type":"string"},"certificateCountry":{"description":"Country name for the generated certificate. Relevant only for generate-self-signed-certificate.\n","type":"string"},"certificateDigestAlgo":{"description":"Digest algorithm to be used for the certificate key signing.\n","type":"string"},"certificateFormat":{"description":"The format of the returned certificate [pem/der]\n","type":"string"},"certificateLocality":{"description":"Locality for the generated certificate. Relevant only for generate-self-signed-certificate.\n","type":"string"},"certificateOrganization":{"description":"Organization name for the generated certificate. Relevant only for generate-self-signed-certificate.\n","type":"string"},"certificateProvince":{"description":"Province name for the generated certificate. Relevant only for generate-self-signed-certificate.\n","type":"string"},"certificateTtl":{"description":"TTL in days for the generated certificate. Required only for generate-self-signed-certificate.\n","type":"number"},"confFileData":{"description":"The csr config data in base64 encoding\n","type":"string"},"customerFrgId":{"description":"The customer fragment ID that will be used to create the DFC key (if empty, the key will be created independently of a customer fragment)\n","type":"string"},"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"boolean"},"description":{"description":"Description of the object\n","type":"string"},"dfcKeyId":{"description":"The ID of this resource.\n","type":"string"},"expirationEventIns":{"description":"How many days before the expiration of the certificate would you like to be notified.\n","items":{"type":"string"},"type":"array"},"generateSelfSignedCertificate":{"description":"Whether to generate a self signed certificate with the key. If set, certificate-ttl must be provided.\n","type":"boolean"},"hashAlgorithm":{"description":"Specifies the hash algorithm used for the encryption key's operations, available options: [SHA256, SHA384, SHA512]\n","type":"string"},"itemCustomFields":{"additionalProperties":{"type":"string"},"description":"Additional custom fields to associate with the item\n","type":"object"},"name":{"description":"DFCKey name\n","type":"string"},"rotationEventIns":{"description":"How many days before the rotation of the item would you like to be notified.\n","items":{"type":"string"},"type":"array"},"rotationInterval":{"description":"The number of days to wait between every automatic rotation (7-365)\n","type":"string"},"splitLevel":{"description":"The number of fragments that the item will be split into (not includes customer fragment)\n","type":"number"},"tags":{"description":"List of the tags attached to this DFC key\n","items":{"type":"string"},"type":"array"}},"required":["alg","certDataBase64","dfcKeyId","name"],"requiredInputs":["alg"],"stateInputs":{"description":"Input properties used for looking up and filtering DfcKey resources.\n","properties":{"alg":{"description":"DFCKey type; options: [AES128GCM, AES256GCM, AES128SIV, AES256SIV, AES128CBC, AES256CBC, RSA1024, RSA2048, RSA3072, RSA4096]\n","type":"string"},"autoRotate":{"description":"Whether to automatically rotate every<span pulumi-lang-nodejs=\" rotationInterval \" pulumi-lang-dotnet=\" RotationInterval \" pulumi-lang-go=\" rotationInterval \" pulumi-lang-python=\" rotation_interval \" pulumi-lang-yaml=\" rotationInterval \" pulumi-lang-java=\" rotationInterval \"> rotation_interval </span>days, or disable existing automatic rotation [true/false]\n","type":"string"},"certDataBase64":{"description":"PEM Certificate in a Base64 format. Used for updating RSA keys' certificates\n","type":"string"},"certificateCommonName":{"description":"Common name for the generated certificate. Relevant only for generate-self-signed-certificate.\n","type":"string"},"certificateCountry":{"description":"Country name for the generated certificate. Relevant only for generate-self-signed-certificate.\n","type":"string"},"certificateDigestAlgo":{"description":"Digest algorithm to be used for the certificate key signing.\n","type":"string"},"certificateFormat":{"description":"The format of the returned certificate [pem/der]\n","type":"string"},"certificateLocality":{"description":"Locality for the generated certificate. Relevant only for generate-self-signed-certificate.\n","type":"string"},"certificateOrganization":{"description":"Organization name for the generated certificate. Relevant only for generate-self-signed-certificate.\n","type":"string"},"certificateProvince":{"description":"Province name for the generated certificate. Relevant only for generate-self-signed-certificate.\n","type":"string"},"certificateTtl":{"description":"TTL in days for the generated certificate. Required only for generate-self-signed-certificate.\n","type":"number"},"confFileData":{"description":"The csr config data in base64 encoding\n","type":"string"},"customerFrgId":{"description":"The customer fragment ID that will be used to create the DFC key (if empty, the key will be created independently of a customer fragment)\n","type":"string"},"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"boolean"},"description":{"description":"Description of the object\n","type":"string"},"dfcKeyId":{"description":"The ID of this resource.\n","type":"string"},"expirationEventIns":{"description":"How many days before the expiration of the certificate would you like to be notified.\n","items":{"type":"string"},"type":"array"},"generateSelfSignedCertificate":{"description":"Whether to generate a self signed certificate with the key. If set, certificate-ttl must be provided.\n","type":"boolean"},"hashAlgorithm":{"description":"Specifies the hash algorithm used for the encryption key's operations, available options: [SHA256, SHA384, SHA512]\n","type":"string"},"itemCustomFields":{"additionalProperties":{"type":"string"},"description":"Additional custom fields to associate with the item\n","type":"object"},"name":{"description":"DFCKey name\n","type":"string"},"rotationEventIns":{"description":"How many days before the rotation of the item would you like to be notified.\n","items":{"type":"string"},"type":"array"},"rotationInterval":{"description":"The number of days to wait between every automatic rotation (7-365)\n","type":"string"},"splitLevel":{"description":"The number of fragments that the item will be split into (not includes customer fragment)\n","type":"number"},"tags":{"description":"List of the tags attached to this DFC key\n","items":{"type":"string"},"type":"array"}},"type":"object"},"type":"object"},"akeyless:index/dynamicSecretArtifactory:DynamicSecretArtifactory":{"description":"Artifactory dynamic secret resource\n","inputProperties":{"artifactoryAdminName":{"description":"Admin name\n","type":"string"},"artifactoryAdminPwd":{"description":"Admin API Key/Password\n","type":"string"},"artifactoryTokenAudience":{"description":"A space-separate list of the other Artifactory instances or services that should accept this token., for example: jfrt@*\n","type":"string"},"artifactoryTokenScope":{"description":"Token scope provided as a space-separated list, for example: member-of-groups:readers\n","type":"string"},"baseUrl":{"description":"Artifactory REST URL, must end with artifactory postfix\n","type":"string"},"customUsernameTemplate":{"description":"Customize how temporary usernames are generated using go template\n","type":"string"},"deleteProtection":{"description":"Protection from accidental deletion of this item\n","type":"boolean"},"description":{"description":"Description of the object\n","type":"string"},"dynamicSecretArtifactoryId":{"description":"The ID of this resource.\n","type":"string"},"encryptionKeyName":{"description":"Encrypt dynamic secret details with following key\n","type":"string"},"itemCustomFields":{"additionalProperties":{"type":"string"},"description":"Additional custom fields to associate with the item\n","type":"object"},"name":{"description":"Dynamic Secret name\n","type":"string"},"tags":{"description":"List of the tags attached to this secret. To specify multiple tags use argument multiple times: -t Tag1 -t Tag2\n","items":{"type":"string"},"type":"array"},"targetName":{"description":"Name of existing target to use in dynamic secret creation\n","type":"string"},"userTtl":{"description":"User TTL\n","type":"string"}},"properties":{"artifactoryAdminName":{"description":"Admin name\n","type":"string"},"artifactoryAdminPwd":{"description":"Admin API Key/Password\n","type":"string"},"artifactoryTokenAudience":{"description":"A space-separate list of the other Artifactory instances or services that should accept this token., for example: jfrt@*\n","type":"string"},"artifactoryTokenScope":{"description":"Token scope provided as a space-separated list, for example: member-of-groups:readers\n","type":"string"},"baseUrl":{"description":"Artifactory REST URL, must end with artifactory postfix\n","type":"string"},"customUsernameTemplate":{"description":"Customize how temporary usernames are generated using go template\n","type":"string"},"deleteProtection":{"description":"Protection from accidental deletion of this item\n","type":"boolean"},"description":{"description":"Description of the object\n","type":"string"},"dynamicSecretArtifactoryId":{"description":"The ID of this resource.\n","type":"string"},"encryptionKeyName":{"description":"Encrypt dynamic secret details with following key\n","type":"string"},"itemCustomFields":{"additionalProperties":{"type":"string"},"description":"Additional custom fields to associate with the item\n","type":"object"},"name":{"description":"Dynamic Secret name\n","type":"string"},"tags":{"description":"List of the tags attached to this secret. To specify multiple tags use argument multiple times: -t Tag1 -t Tag2\n","items":{"type":"string"},"type":"array"},"targetName":{"description":"Name of existing target to use in dynamic secret creation\n","type":"string"},"userTtl":{"description":"User TTL\n","type":"string"}},"required":["artifactoryTokenAudience","artifactoryTokenScope","dynamicSecretArtifactoryId","encryptionKeyName","name"],"requiredInputs":["artifactoryTokenAudience","artifactoryTokenScope"],"stateInputs":{"description":"Input properties used for looking up and filtering DynamicSecretArtifactory resources.\n","properties":{"artifactoryAdminName":{"description":"Admin name\n","type":"string"},"artifactoryAdminPwd":{"description":"Admin API Key/Password\n","type":"string"},"artifactoryTokenAudience":{"description":"A space-separate list of the other Artifactory instances or services that should accept this token., for example: jfrt@*\n","type":"string"},"artifactoryTokenScope":{"description":"Token scope provided as a space-separated list, for example: member-of-groups:readers\n","type":"string"},"baseUrl":{"description":"Artifactory REST URL, must end with artifactory postfix\n","type":"string"},"customUsernameTemplate":{"description":"Customize how temporary usernames are generated using go template\n","type":"string"},"deleteProtection":{"description":"Protection from accidental deletion of this item\n","type":"boolean"},"description":{"description":"Description of the object\n","type":"string"},"dynamicSecretArtifactoryId":{"description":"The ID of this resource.\n","type":"string"},"encryptionKeyName":{"description":"Encrypt dynamic secret details with following key\n","type":"string"},"itemCustomFields":{"additionalProperties":{"type":"string"},"description":"Additional custom fields to associate with the item\n","type":"object"},"name":{"description":"Dynamic Secret name\n","type":"string"},"tags":{"description":"List of the tags attached to this secret. To specify multiple tags use argument multiple times: -t Tag1 -t Tag2\n","items":{"type":"string"},"type":"array"},"targetName":{"description":"Name of existing target to use in dynamic secret creation\n","type":"string"},"userTtl":{"description":"User TTL\n","type":"string"}},"type":"object"},"type":"object"},"akeyless:index/dynamicSecretAws:DynamicSecretAws":{"description":"AWS dynamic secret resource\n","inputProperties":{"accessMode":{"description":"The types of credentials to retrieve from AWS. Options:[iam*user,assume*role]\n","type":"string"},"adminRotationIntervalDays":{"description":"Admin credentials rotation interval (days)\n","type":"number"},"awsAccessKeyId":{"description":"Access Key ID\n","type":"string"},"awsAccessSecretKey":{"description":"Access Secret Key\n","secret":true,"type":"string"},"awsExternalId":{"description":"The AWS External ID associated with the AWS role (relevant only for<span pulumi-lang-nodejs=\" assumeRole \" pulumi-lang-dotnet=\" AssumeRole \" pulumi-lang-go=\" assumeRole \" pulumi-lang-python=\" assume_role \" pulumi-lang-yaml=\" assumeRole \" pulumi-lang-java=\" assumeRole \"> assume_role </span>mode)\n","type":"string"},"awsRoleArns":{"description":"AWS Role ARNs to be use in the Assume Role operation. Multiple values should be separated by comma\n","type":"string"},"awsUserConsoleAccess":{"description":"Enable AWS User console access\n","type":"boolean"},"awsUserGroups":{"description":"UserGroup name(s). Multiple values should be separated by comma\n","type":"string"},"awsUserPolicies":{"description":"Policy ARN(s). Multiple values should be separated by comma\n","type":"string"},"awsUserProgrammaticAccess":{"description":"Enable AWS User programmatic access\n","type":"boolean"},"customUsernameTemplate":{"description":"Customize how temporary usernames are generated using go template\n","type":"string"},"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"dynamicSecretAwsId":{"description":"The ID of this resource.\n","type":"string"},"enableAdminRotation":{"description":"Automatic admin credentials rotation\n","type":"boolean"},"encryptionKeyName":{"description":"Encrypt dynamic secret details with following key\n","type":"string"},"itemCustomFields":{"additionalProperties":{"type":"string"},"description":"Additional custom fields to associate with the item\n","type":"object"},"name":{"description":"Dynamic secret name\n","type":"string"},"passwordLength":{"description":"The length of the password to be generated\n","type":"string"},"region":{"description":"Region\n","type":"string"},"secureAccessAwsAccountId":{"description":"The aws account id\n","type":"string"},"secureAccessAwsNativeCli":{"description":"The aws native cli\n","type":"boolean"},"secureAccessAwsRegion":{"type":"string"},"secureAccessBastionIssuer":{"deprecationMessage":"Deprecated","description":"Path to the SSH Certificate Issuer for your Akeyless Bastion\n","type":"string"},"secureAccessCertificateIssuer":{"description":"Path to the SSH Certificate Issuer for your Akeyless Secure Access\n","type":"string"},"secureAccessDelay":{"description":"The delay duration, in seconds, to wait after generating just-in-time credentials. Accepted range: 0-120 seconds\n","type":"number"},"secureAccessEnable":{"description":"Enable/Disable secure remote access, [true/false]\n","type":"string"},"secureAccessUrl":{"type":"string"},"secureAccessWeb":{"description":"Enable Web Secure Remote Access\n","type":"boolean"},"secureAccessWebBrowsing":{"description":"Secure browser via Akeyless Web Access Bastion\n","type":"boolean"},"secureAccessWebProxy":{"description":"Web-Proxy via Akeyless's Secure Remote Access (SRA)\n","type":"boolean"},"sessionTags":{"description":"Session tags, space separated, relevant only for Assumed Role. Format: Key=name,Value=val Key=name2,Value=val2\n","type":"string"},"tags":{"description":"List of the tags attached to this secret. To specify multiple tags use argument multiple times: -t Tag1 -t Tag2\n","items":{"type":"string"},"type":"array"},"targetName":{"description":"Name of existing target to use in dynamic secret creation\n","type":"string"},"transitiveTagKeys":{"description":"Transitive tag keys, space separated, relevant only for Assumed Role\n","type":"string"},"userTtl":{"description":"User TTL\n","type":"string"}},"properties":{"accessMode":{"description":"The types of credentials to retrieve from AWS. Options:[iam*user,assume*role]\n","type":"string"},"adminRotationIntervalDays":{"description":"Admin credentials rotation interval (days)\n","type":"number"},"awsAccessKeyId":{"description":"Access Key ID\n","type":"string"},"awsAccessSecretKey":{"description":"Access Secret Key\n","secret":true,"type":"string"},"awsExternalId":{"description":"The AWS External ID associated with the AWS role (relevant only for<span pulumi-lang-nodejs=\" assumeRole \" pulumi-lang-dotnet=\" AssumeRole \" pulumi-lang-go=\" assumeRole \" pulumi-lang-python=\" assume_role \" pulumi-lang-yaml=\" assumeRole \" pulumi-lang-java=\" assumeRole \"> assume_role </span>mode)\n","type":"string"},"awsRoleArns":{"description":"AWS Role ARNs to be use in the Assume Role operation. Multiple values should be separated by comma\n","type":"string"},"awsUserConsoleAccess":{"description":"Enable AWS User console access\n","type":"boolean"},"awsUserGroups":{"description":"UserGroup name(s). Multiple values should be separated by comma\n","type":"string"},"awsUserPolicies":{"description":"Policy ARN(s). Multiple values should be separated by comma\n","type":"string"},"awsUserProgrammaticAccess":{"description":"Enable AWS User programmatic access\n","type":"boolean"},"customUsernameTemplate":{"description":"Customize how temporary usernames are generated using go template\n","type":"string"},"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"dynamicSecretAwsId":{"description":"The ID of this resource.\n","type":"string"},"enableAdminRotation":{"description":"Automatic admin credentials rotation\n","type":"boolean"},"encryptionKeyName":{"description":"Encrypt dynamic secret details with following key\n","type":"string"},"itemCustomFields":{"additionalProperties":{"type":"string"},"description":"Additional custom fields to associate with the item\n","type":"object"},"name":{"description":"Dynamic secret name\n","type":"string"},"passwordLength":{"description":"The length of the password to be generated\n","type":"string"},"region":{"description":"Region\n","type":"string"},"secureAccessAwsAccountId":{"description":"The aws account id\n","type":"string"},"secureAccessAwsNativeCli":{"description":"The aws native cli\n","type":"boolean"},"secureAccessAwsRegion":{"type":"string"},"secureAccessBastionIssuer":{"deprecationMessage":"Deprecated","description":"Path to the SSH Certificate Issuer for your Akeyless Bastion\n","type":"string"},"secureAccessCertificateIssuer":{"description":"Path to the SSH Certificate Issuer for your Akeyless Secure Access\n","type":"string"},"secureAccessDelay":{"description":"The delay duration, in seconds, to wait after generating just-in-time credentials. Accepted range: 0-120 seconds\n","type":"number"},"secureAccessEnable":{"description":"Enable/Disable secure remote access, [true/false]\n","type":"string"},"secureAccessUrl":{"type":"string"},"secureAccessWeb":{"description":"Enable Web Secure Remote Access\n","type":"boolean"},"secureAccessWebBrowsing":{"description":"Secure browser via Akeyless Web Access Bastion\n","type":"boolean"},"secureAccessWebProxy":{"description":"Web-Proxy via Akeyless's Secure Remote Access (SRA)\n","type":"boolean"},"sessionTags":{"description":"Session tags, space separated, relevant only for Assumed Role. Format: Key=name,Value=val Key=name2,Value=val2\n","type":"string"},"tags":{"description":"List of the tags attached to this secret. To specify multiple tags use argument multiple times: -t Tag1 -t Tag2\n","items":{"type":"string"},"type":"array"},"targetName":{"description":"Name of existing target to use in dynamic secret creation\n","type":"string"},"transitiveTagKeys":{"description":"Transitive tag keys, space separated, relevant only for Assumed Role\n","type":"string"},"useGwCloudIdentity":{"description":"Use the GW's Cloud IAM\n","type":"boolean"},"userTtl":{"description":"User TTL\n","type":"string"}},"required":["dynamicSecretAwsId","encryptionKeyName","name","secureAccessAwsRegion","secureAccessUrl","useGwCloudIdentity"],"stateInputs":{"description":"Input properties used for looking up and filtering DynamicSecretAws resources.\n","properties":{"accessMode":{"description":"The types of credentials to retrieve from AWS. Options:[iam*user,assume*role]\n","type":"string"},"adminRotationIntervalDays":{"description":"Admin credentials rotation interval (days)\n","type":"number"},"awsAccessKeyId":{"description":"Access Key ID\n","type":"string"},"awsAccessSecretKey":{"description":"Access Secret Key\n","secret":true,"type":"string"},"awsExternalId":{"description":"The AWS External ID associated with the AWS role (relevant only for<span pulumi-lang-nodejs=\" assumeRole \" pulumi-lang-dotnet=\" AssumeRole \" pulumi-lang-go=\" assumeRole \" pulumi-lang-python=\" assume_role \" pulumi-lang-yaml=\" assumeRole \" pulumi-lang-java=\" assumeRole \"> assume_role </span>mode)\n","type":"string"},"awsRoleArns":{"description":"AWS Role ARNs to be use in the Assume Role operation. Multiple values should be separated by comma\n","type":"string"},"awsUserConsoleAccess":{"description":"Enable AWS User console access\n","type":"boolean"},"awsUserGroups":{"description":"UserGroup name(s). Multiple values should be separated by comma\n","type":"string"},"awsUserPolicies":{"description":"Policy ARN(s). Multiple values should be separated by comma\n","type":"string"},"awsUserProgrammaticAccess":{"description":"Enable AWS User programmatic access\n","type":"boolean"},"customUsernameTemplate":{"description":"Customize how temporary usernames are generated using go template\n","type":"string"},"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"dynamicSecretAwsId":{"description":"The ID of this resource.\n","type":"string"},"enableAdminRotation":{"description":"Automatic admin credentials rotation\n","type":"boolean"},"encryptionKeyName":{"description":"Encrypt dynamic secret details with following key\n","type":"string"},"itemCustomFields":{"additionalProperties":{"type":"string"},"description":"Additional custom fields to associate with the item\n","type":"object"},"name":{"description":"Dynamic secret name\n","type":"string"},"passwordLength":{"description":"The length of the password to be generated\n","type":"string"},"region":{"description":"Region\n","type":"string"},"secureAccessAwsAccountId":{"description":"The aws account id\n","type":"string"},"secureAccessAwsNativeCli":{"description":"The aws native cli\n","type":"boolean"},"secureAccessAwsRegion":{"type":"string"},"secureAccessBastionIssuer":{"deprecationMessage":"Deprecated","description":"Path to the SSH Certificate Issuer for your Akeyless Bastion\n","type":"string"},"secureAccessCertificateIssuer":{"description":"Path to the SSH Certificate Issuer for your Akeyless Secure Access\n","type":"string"},"secureAccessDelay":{"description":"The delay duration, in seconds, to wait after generating just-in-time credentials. Accepted range: 0-120 seconds\n","type":"number"},"secureAccessEnable":{"description":"Enable/Disable secure remote access, [true/false]\n","type":"string"},"secureAccessUrl":{"type":"string"},"secureAccessWeb":{"description":"Enable Web Secure Remote Access\n","type":"boolean"},"secureAccessWebBrowsing":{"description":"Secure browser via Akeyless Web Access Bastion\n","type":"boolean"},"secureAccessWebProxy":{"description":"Web-Proxy via Akeyless's Secure Remote Access (SRA)\n","type":"boolean"},"sessionTags":{"description":"Session tags, space separated, relevant only for Assumed Role. Format: Key=name,Value=val Key=name2,Value=val2\n","type":"string"},"tags":{"description":"List of the tags attached to this secret. To specify multiple tags use argument multiple times: -t Tag1 -t Tag2\n","items":{"type":"string"},"type":"array"},"targetName":{"description":"Name of existing target to use in dynamic secret creation\n","type":"string"},"transitiveTagKeys":{"description":"Transitive tag keys, space separated, relevant only for Assumed Role\n","type":"string"},"useGwCloudIdentity":{"description":"Use the GW's Cloud IAM\n","type":"boolean"},"userTtl":{"description":"User TTL\n","type":"string"}},"type":"object"},"type":"object"},"akeyless:index/dynamicSecretAzure:DynamicSecretAzure":{"description":"Azure AD dynamic secret resource\n","inputProperties":{"appObjId":{"description":"Azure App Object Id\n","type":"string"},"azureAdministrativeUnit":{"description":"Azure AD administrative unit (relevant only when azure-user-portal-access=true)\n","type":"string"},"azureClientId":{"description":"Azure Client ID\n","type":"string"},"azureClientSecret":{"description":"Azure Client Secret\n","secret":true,"type":"string"},"azureTenantId":{"description":"Azure Tenant ID\n","type":"string"},"customUsernameTemplate":{"description":"Customize how temporary usernames are generated using go template\n","type":"string"},"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"dynamicSecretAzureId":{"description":"The ID of this resource.\n","type":"string"},"encryptionKeyName":{"description":"Dynamic secret encryption key\n","type":"string"},"fixedUserClaimKeyname":{"description":"FixedUserClaimKeyname\n","type":"string"},"fixedUserOnly":{"description":"Fixed user\n","type":"boolean"},"itemCustomFields":{"additionalProperties":{"type":"string"},"description":"Additional custom fields to associate with the item\n","type":"object"},"name":{"description":"Dynamic secret name\n","type":"string"},"passwordLength":{"description":"The length of the password to be generated\n","type":"string"},"secureAccessEnable":{"description":"Enable/Disable secure remote access [true/false]\n","type":"string"},"secureAccessUrl":{"type":"string"},"secureAccessWeb":{"description":"Enable Web Secure Remote Access\n","type":"boolean"},"secureAccessWebBrowsing":{"description":"Secure browser via Akeyless's Secure Remote Access (SRA)\n","type":"boolean"},"secureAccessWebProxy":{"description":"Web-Proxy via Akeyless's Secure Remote Access (SRA)\n","type":"boolean"},"tags":{"description":"Add tags attached to this object\n","items":{"type":"string"},"type":"array"},"targetName":{"description":"Target name\n","type":"string"},"userGroupObjId":{"description":"User Group Object Id\n","type":"string"},"userPortalAccess":{"description":"Azure User portal access\n","type":"boolean"},"userPrincipalName":{"description":"User Principal Name\n","type":"string"},"userProgrammaticAccess":{"description":"Azure User programmatic access\n","type":"boolean"},"userRoleTemplateId":{"description":"User Role Template Id\n","type":"string"},"userTtl":{"description":"User TTL\n","type":"string"}},"properties":{"appObjId":{"description":"Azure App Object Id\n","type":"string"},"azureAdministrativeUnit":{"description":"Azure AD administrative unit (relevant only when azure-user-portal-access=true)\n","type":"string"},"azureClientId":{"description":"Azure Client ID\n","type":"string"},"azureClientSecret":{"description":"Azure Client Secret\n","secret":true,"type":"string"},"azureTenantId":{"description":"Azure Tenant ID\n","type":"string"},"customUsernameTemplate":{"description":"Customize how temporary usernames are generated using go template\n","type":"string"},"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"dynamicSecretAzureId":{"description":"The ID of this resource.\n","type":"string"},"encryptionKeyName":{"description":"Dynamic secret encryption key\n","type":"string"},"fixedUserClaimKeyname":{"description":"FixedUserClaimKeyname\n","type":"string"},"fixedUserOnly":{"description":"Fixed user\n","type":"boolean"},"itemCustomFields":{"additionalProperties":{"type":"string"},"description":"Additional custom fields to associate with the item\n","type":"object"},"name":{"description":"Dynamic secret name\n","type":"string"},"passwordLength":{"description":"The length of the password to be generated\n","type":"string"},"secureAccessEnable":{"description":"Enable/Disable secure remote access [true/false]\n","type":"string"},"secureAccessUrl":{"type":"string"},"secureAccessWeb":{"description":"Enable Web Secure Remote Access\n","type":"boolean"},"secureAccessWebBrowsing":{"description":"Secure browser via Akeyless's Secure Remote Access (SRA)\n","type":"boolean"},"secureAccessWebProxy":{"description":"Web-Proxy via Akeyless's Secure Remote Access (SRA)\n","type":"boolean"},"tags":{"description":"Add tags attached to this object\n","items":{"type":"string"},"type":"array"},"targetName":{"description":"Target name\n","type":"string"},"userGroupObjId":{"description":"User Group Object Id\n","type":"string"},"userPortalAccess":{"description":"Azure User portal access\n","type":"boolean"},"userPrincipalName":{"description":"User Principal Name\n","type":"string"},"userProgrammaticAccess":{"description":"Azure User programmatic access\n","type":"boolean"},"userRoleTemplateId":{"description":"User Role Template Id\n","type":"string"},"userTtl":{"description":"User TTL\n","type":"string"}},"required":["dynamicSecretAzureId","encryptionKeyName","name","secureAccessUrl"],"stateInputs":{"description":"Input properties used for looking up and filtering DynamicSecretAzure resources.\n","properties":{"appObjId":{"description":"Azure App Object Id\n","type":"string"},"azureAdministrativeUnit":{"description":"Azure AD administrative unit (relevant only when azure-user-portal-access=true)\n","type":"string"},"azureClientId":{"description":"Azure Client ID\n","type":"string"},"azureClientSecret":{"description":"Azure Client Secret\n","secret":true,"type":"string"},"azureTenantId":{"description":"Azure Tenant ID\n","type":"string"},"customUsernameTemplate":{"description":"Customize how temporary usernames are generated using go template\n","type":"string"},"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"dynamicSecretAzureId":{"description":"The ID of this resource.\n","type":"string"},"encryptionKeyName":{"description":"Dynamic secret encryption key\n","type":"string"},"fixedUserClaimKeyname":{"description":"FixedUserClaimKeyname\n","type":"string"},"fixedUserOnly":{"description":"Fixed user\n","type":"boolean"},"itemCustomFields":{"additionalProperties":{"type":"string"},"description":"Additional custom fields to associate with the item\n","type":"object"},"name":{"description":"Dynamic secret name\n","type":"string"},"passwordLength":{"description":"The length of the password to be generated\n","type":"string"},"secureAccessEnable":{"description":"Enable/Disable secure remote access [true/false]\n","type":"string"},"secureAccessUrl":{"type":"string"},"secureAccessWeb":{"description":"Enable Web Secure Remote Access\n","type":"boolean"},"secureAccessWebBrowsing":{"description":"Secure browser via Akeyless's Secure Remote Access (SRA)\n","type":"boolean"},"secureAccessWebProxy":{"description":"Web-Proxy via Akeyless's Secure Remote Access (SRA)\n","type":"boolean"},"tags":{"description":"Add tags attached to this object\n","items":{"type":"string"},"type":"array"},"targetName":{"description":"Target name\n","type":"string"},"userGroupObjId":{"description":"User Group Object Id\n","type":"string"},"userPortalAccess":{"description":"Azure User portal access\n","type":"boolean"},"userPrincipalName":{"description":"User Principal Name\n","type":"string"},"userProgrammaticAccess":{"description":"Azure User programmatic access\n","type":"boolean"},"userRoleTemplateId":{"description":"User Role Template Id\n","type":"string"},"userTtl":{"description":"User TTL\n","type":"string"}},"type":"object"},"type":"object"},"akeyless:index/dynamicSecretCassandra:DynamicSecretCassandra":{"description":"Cassandra dynamic secret resource\n","inputProperties":{"cassandraCreationStatements":{"description":"Cassandra creation statements\n","type":"string"},"cassandraHosts":{"description":"Cassandra hosts IP or addresses, comma separated\n","type":"string"},"cassandraPassword":{"description":"Cassandra superuser password\n","type":"string"},"cassandraPort":{"description":"Cassandra port\n","type":"string"},"cassandraUsername":{"description":"Cassandra superuser username\n","type":"string"},"customUsernameTemplate":{"description":"Customize how temporary usernames are generated using go template\n","type":"string"},"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"dynamicSecretCassandraId":{"description":"The ID of this resource.\n","type":"string"},"encryptionKeyName":{"description":"Dynamic producer encryption key\n","type":"string"},"itemCustomFields":{"additionalProperties":{"type":"string"},"description":"Additional custom fields to associate with the item\n","type":"object"},"name":{"description":"Dynamic secret name\n","type":"string"},"passwordLength":{"description":"The length of the password to be generated\n","type":"string"},"ssl":{"description":"Enable/Disable SSL [true/false]\n","type":"boolean"},"sslCertificate":{"description":"SSL CA certificate in base64 encoding generated from a trusted Certificate Authority (CA)\n","type":"string"},"tags":{"description":"Add tags attached to this object\n","items":{"type":"string"},"type":"array"},"targetName":{"description":"Target name\n","type":"string"},"userTtl":{"description":"User TTL\n","type":"string"}},"properties":{"cassandraCreationStatements":{"description":"Cassandra creation statements\n","type":"string"},"cassandraHosts":{"description":"Cassandra hosts IP or addresses, comma separated\n","type":"string"},"cassandraPassword":{"description":"Cassandra superuser password\n","type":"string"},"cassandraPort":{"description":"Cassandra port\n","type":"string"},"cassandraUsername":{"description":"Cassandra superuser username\n","type":"string"},"customUsernameTemplate":{"description":"Customize how temporary usernames are generated using go template\n","type":"string"},"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"dynamicSecretCassandraId":{"description":"The ID of this resource.\n","type":"string"},"encryptionKeyName":{"description":"Dynamic producer encryption key\n","type":"string"},"itemCustomFields":{"additionalProperties":{"type":"string"},"description":"Additional custom fields to associate with the item\n","type":"object"},"name":{"description":"Dynamic secret name\n","type":"string"},"passwordLength":{"description":"The length of the password to be generated\n","type":"string"},"ssl":{"description":"Enable/Disable SSL [true/false]\n","type":"boolean"},"sslCertificate":{"description":"SSL CA certificate in base64 encoding generated from a trusted Certificate Authority (CA)\n","type":"string"},"tags":{"description":"Add tags attached to this object\n","items":{"type":"string"},"type":"array"},"targetName":{"description":"Target name\n","type":"string"},"userTtl":{"description":"User TTL\n","type":"string"}},"required":["dynamicSecretCassandraId","encryptionKeyName","name"],"stateInputs":{"description":"Input properties used for looking up and filtering DynamicSecretCassandra resources.\n","properties":{"cassandraCreationStatements":{"description":"Cassandra creation statements\n","type":"string"},"cassandraHosts":{"description":"Cassandra hosts IP or addresses, comma separated\n","type":"string"},"cassandraPassword":{"description":"Cassandra superuser password\n","type":"string"},"cassandraPort":{"description":"Cassandra port\n","type":"string"},"cassandraUsername":{"description":"Cassandra superuser username\n","type":"string"},"customUsernameTemplate":{"description":"Customize how temporary usernames are generated using go template\n","type":"string"},"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"dynamicSecretCassandraId":{"description":"The ID of this resource.\n","type":"string"},"encryptionKeyName":{"description":"Dynamic producer encryption key\n","type":"string"},"itemCustomFields":{"additionalProperties":{"type":"string"},"description":"Additional custom fields to associate with the item\n","type":"object"},"name":{"description":"Dynamic secret name\n","type":"string"},"passwordLength":{"description":"The length of the password to be generated\n","type":"string"},"ssl":{"description":"Enable/Disable SSL [true/false]\n","type":"boolean"},"sslCertificate":{"description":"SSL CA certificate in base64 encoding generated from a trusted Certificate Authority (CA)\n","type":"string"},"tags":{"description":"Add tags attached to this object\n","items":{"type":"string"},"type":"array"},"targetName":{"description":"Target name\n","type":"string"},"userTtl":{"description":"User TTL\n","type":"string"}},"type":"object"},"type":"object"},"akeyless:index/dynamicSecretCustom:DynamicSecretCustom":{"description":"Custom dynamic secret resource\n","inputProperties":{"adminRotationIntervalDays":{"description":"Define rotation interval in days\n","type":"number"},"createSyncUrl":{"description":"URL of an endpoint that implements /sync/create method, for example https://webhook.example.com/sync/create\n","type":"string"},"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"dynamicSecretCustomId":{"description":"The ID of this resource.\n","type":"string"},"enableAdminRotation":{"description":"Should admin credentials be rotated\n","type":"boolean"},"encryptionKeyName":{"description":"Dynamic producer encryption key\n","type":"string"},"itemCustomFields":{"additionalProperties":{"type":"string"},"description":"Additional custom fields to associate with the item\n","type":"object"},"name":{"description":"Dynamic secret name\n","type":"string"},"payload":{"description":"Secret payload to be sent with each create/revoke webhook request\n","type":"string"},"revokeSyncUrl":{"description":"URL of an endpoint that implements /sync/revoke method, for example https://webhook.example.com/sync/revoke\n","type":"string"},"rotateSyncUrl":{"description":"URL of an endpoint that implements /sync/rotate method, for example https://webhook.example.com/sync/rotate\n","type":"string"},"tags":{"description":"Add tags attached to this object\n","items":{"type":"string"},"type":"array"},"timeoutSec":{"description":"Maximum allowed time in seconds for the webhook to return the results\n","type":"number"},"userTtl":{"description":"User TTL\n","type":"string"}},"properties":{"adminRotationIntervalDays":{"description":"Define rotation interval in days\n","type":"number"},"createSyncUrl":{"description":"URL of an endpoint that implements /sync/create method, for example https://webhook.example.com/sync/create\n","type":"string"},"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"dynamicSecretCustomId":{"description":"The ID of this resource.\n","type":"string"},"enableAdminRotation":{"description":"Should admin credentials be rotated\n","type":"boolean"},"encryptionKeyName":{"description":"Dynamic producer encryption key\n","type":"string"},"itemCustomFields":{"additionalProperties":{"type":"string"},"description":"Additional custom fields to associate with the item\n","type":"object"},"name":{"description":"Dynamic secret name\n","type":"string"},"payload":{"description":"Secret payload to be sent with each create/revoke webhook request\n","type":"string"},"revokeSyncUrl":{"description":"URL of an endpoint that implements /sync/revoke method, for example https://webhook.example.com/sync/revoke\n","type":"string"},"rotateSyncUrl":{"description":"URL of an endpoint that implements /sync/rotate method, for example https://webhook.example.com/sync/rotate\n","type":"string"},"tags":{"description":"Add tags attached to this object\n","items":{"type":"string"},"type":"array"},"timeoutSec":{"description":"Maximum allowed time in seconds for the webhook to return the results\n","type":"number"},"userTtl":{"description":"User TTL\n","type":"string"}},"required":["createSyncUrl","dynamicSecretCustomId","encryptionKeyName","name","revokeSyncUrl"],"requiredInputs":["createSyncUrl","revokeSyncUrl"],"stateInputs":{"description":"Input properties used for looking up and filtering DynamicSecretCustom resources.\n","properties":{"adminRotationIntervalDays":{"description":"Define rotation interval in days\n","type":"number"},"createSyncUrl":{"description":"URL of an endpoint that implements /sync/create method, for example https://webhook.example.com/sync/create\n","type":"string"},"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"dynamicSecretCustomId":{"description":"The ID of this resource.\n","type":"string"},"enableAdminRotation":{"description":"Should admin credentials be rotated\n","type":"boolean"},"encryptionKeyName":{"description":"Dynamic producer encryption key\n","type":"string"},"itemCustomFields":{"additionalProperties":{"type":"string"},"description":"Additional custom fields to associate with the item\n","type":"object"},"name":{"description":"Dynamic secret name\n","type":"string"},"payload":{"description":"Secret payload to be sent with each create/revoke webhook request\n","type":"string"},"revokeSyncUrl":{"description":"URL of an endpoint that implements /sync/revoke method, for example https://webhook.example.com/sync/revoke\n","type":"string"},"rotateSyncUrl":{"description":"URL of an endpoint that implements /sync/rotate method, for example https://webhook.example.com/sync/rotate\n","type":"string"},"tags":{"description":"Add tags attached to this object\n","items":{"type":"string"},"type":"array"},"timeoutSec":{"description":"Maximum allowed time in seconds for the webhook to return the results\n","type":"number"},"userTtl":{"description":"User TTL\n","type":"string"}},"type":"object"},"type":"object"},"akeyless:index/dynamicSecretDockerhub:DynamicSecretDockerhub":{"description":"Dockerhub dynamic secret resource\n","inputProperties":{"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"string"},"dockerhubPassword":{"description":"DockerhubPassword is either the user's password access token to manage the repository\n","secret":true,"type":"string"},"dockerhubTokenScopes":{"description":"Access token scopes list (comma-separated) to give the dynamic secret valid options are in \"repo:admin\", \"repo:write\", \"repo:read\", \"repo:public_read\"\n","type":"string"},"dockerhubUsername":{"description":"DockerhubUsername is the name of the user in dockerhub\n","type":"string"},"dynamicSecretDockerhubId":{"description":"The ID of this resource.\n","type":"string"},"itemCustomFields":{"additionalProperties":{"type":"string"},"description":"Additional custom fields to associate with the item\n","type":"object"},"name":{"description":"Dynamic secret name\n","type":"string"},"producerEncryptionKeyName":{"description":"Dynamic producer encryption key\n","type":"string"},"tags":{"description":"Add tags attached to this object\n","items":{"type":"string"},"type":"array"},"targetName":{"description":"Target name\n","type":"string"},"userTtl":{"description":"User TTL\n","type":"string"}},"properties":{"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"string"},"dockerhubPassword":{"description":"DockerhubPassword is either the user's password access token to manage the repository\n","secret":true,"type":"string"},"dockerhubTokenScopes":{"description":"Access token scopes list (comma-separated) to give the dynamic secret valid options are in \"repo:admin\", \"repo:write\", \"repo:read\", \"repo:public_read\"\n","type":"string"},"dockerhubUsername":{"description":"DockerhubUsername is the name of the user in dockerhub\n","type":"string"},"dynamicSecretDockerhubId":{"description":"The ID of this resource.\n","type":"string"},"itemCustomFields":{"additionalProperties":{"type":"string"},"description":"Additional custom fields to associate with the item\n","type":"object"},"name":{"description":"Dynamic secret name\n","type":"string"},"producerEncryptionKeyName":{"description":"Dynamic producer encryption key\n","type":"string"},"tags":{"description":"Add tags attached to this object\n","items":{"type":"string"},"type":"array"},"targetName":{"description":"Target name\n","type":"string"},"userTtl":{"description":"User TTL\n","type":"string"}},"required":["dynamicSecretDockerhubId","name","producerEncryptionKeyName"],"stateInputs":{"description":"Input properties used for looking up and filtering DynamicSecretDockerhub resources.\n","properties":{"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"string"},"dockerhubPassword":{"description":"DockerhubPassword is either the user's password access token to manage the repository\n","secret":true,"type":"string"},"dockerhubTokenScopes":{"description":"Access token scopes list (comma-separated) to give the dynamic secret valid options are in \"repo:admin\", \"repo:write\", \"repo:read\", \"repo:public_read\"\n","type":"string"},"dockerhubUsername":{"description":"DockerhubUsername is the name of the user in dockerhub\n","type":"string"},"dynamicSecretDockerhubId":{"description":"The ID of this resource.\n","type":"string"},"itemCustomFields":{"additionalProperties":{"type":"string"},"description":"Additional custom fields to associate with the item\n","type":"object"},"name":{"description":"Dynamic secret name\n","type":"string"},"producerEncryptionKeyName":{"description":"Dynamic producer encryption key\n","type":"string"},"tags":{"description":"Add tags attached to this object\n","items":{"type":"string"},"type":"array"},"targetName":{"description":"Target name\n","type":"string"},"userTtl":{"description":"User TTL\n","type":"string"}},"type":"object"},"type":"object"},"akeyless:index/dynamicSecretEks:DynamicSecretEks":{"description":"Amazon Elastic Kubernetes Service (Amazon EKS) dynamic secret\n","inputProperties":{"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"dynamicSecretEksId":{"description":"The ID of this resource.\n","type":"string"},"eksAccessKeyId":{"description":"EKS Access Key ID\n","type":"string"},"eksAssumeRole":{"description":"Role ARN. Role to assume when connecting to the EKS cluster\n","type":"string"},"eksClusterCaCert":{"description":"EKS Cluster certificate. Base 64 encoded certificate.\n","secret":true,"type":"string"},"eksClusterEndpoint":{"description":"EKS Cluster endpoint. https:// , \\n\\n of the cluster.\n","type":"string"},"eksClusterName":{"description":"EKS cluster name. Must match the EKS cluster name you want to connect to.\n","type":"string"},"eksRegion":{"description":"EKS Region\n","type":"string"},"eksSecretAccessKey":{"description":"EKS Secret Access Key\n","secret":true,"type":"string"},"encryptionKeyName":{"description":"Encrypt dynamic secret details with following key\n","type":"string"},"itemCustomFields":{"additionalProperties":{"type":"string"},"description":"Additional custom fields to associate with the item\n","type":"object"},"name":{"description":"Dynamic secret name\n","type":"string"},"secureAccessAllowPortForwading":{"description":"Enable Port forwarding while using CLI access.\n","type":"boolean"},"secureAccessBastionIssuer":{"deprecationMessage":"Deprecated","description":"Path to the SSH Certificate Issuer for your Akeyless Bastion\n","type":"string"},"secureAccessCertificateIssuer":{"description":"Path to the SSH Certificate Issuer for your Akeyless Secure Access\n","type":"string"},"secureAccessClusterEndpoint":{"description":"The K8s cluster endpoint URL\n","type":"string"},"secureAccessDelay":{"description":"The delay duration, in seconds, to wait after generating just-in-time credentials. Accepted range: 0-120 seconds\n","type":"number"},"secureAccessEnable":{"description":"Enable/Disable secure remote access, [true/false]\n","type":"string"},"secureAccessWeb":{"description":"Enable Web Secure Remote Access\n","type":"boolean"},"tags":{"description":"List of the tags attached to this secret. To specify multiple tags use argument multiple times: -t Tag1 -t Tag2\n","items":{"type":"string"},"type":"array"},"targetName":{"description":"Name of existing target to use in dynamic secret creation\n","type":"string"},"userTtl":{"description":"User TTL\n","type":"string"}},"properties":{"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"dynamicSecretEksId":{"description":"The ID of this resource.\n","type":"string"},"eksAccessKeyId":{"description":"EKS Access Key ID\n","type":"string"},"eksAssumeRole":{"description":"Role ARN. Role to assume when connecting to the EKS cluster\n","type":"string"},"eksClusterCaCert":{"description":"EKS Cluster certificate. Base 64 encoded certificate.\n","secret":true,"type":"string"},"eksClusterEndpoint":{"description":"EKS Cluster endpoint. https:// , \\n\\n of the cluster.\n","type":"string"},"eksClusterName":{"description":"EKS cluster name. Must match the EKS cluster name you want to connect to.\n","type":"string"},"eksRegion":{"description":"EKS Region\n","type":"string"},"eksSecretAccessKey":{"description":"EKS Secret Access Key\n","secret":true,"type":"string"},"encryptionKeyName":{"description":"Encrypt dynamic secret details with following key\n","type":"string"},"itemCustomFields":{"additionalProperties":{"type":"string"},"description":"Additional custom fields to associate with the item\n","type":"object"},"name":{"description":"Dynamic secret name\n","type":"string"},"secureAccessAllowPortForwading":{"description":"Enable Port forwarding while using CLI access.\n","type":"boolean"},"secureAccessBastionIssuer":{"deprecationMessage":"Deprecated","description":"Path to the SSH Certificate Issuer for your Akeyless Bastion\n","type":"string"},"secureAccessCertificateIssuer":{"description":"Path to the SSH Certificate Issuer for your Akeyless Secure Access\n","type":"string"},"secureAccessClusterEndpoint":{"description":"The K8s cluster endpoint URL\n","type":"string"},"secureAccessDelay":{"description":"The delay duration, in seconds, to wait after generating just-in-time credentials. Accepted range: 0-120 seconds\n","type":"number"},"secureAccessEnable":{"description":"Enable/Disable secure remote access, [true/false]\n","type":"string"},"secureAccessWeb":{"description":"Enable Web Secure Remote Access\n","type":"boolean"},"tags":{"description":"List of the tags attached to this secret. To specify multiple tags use argument multiple times: -t Tag1 -t Tag2\n","items":{"type":"string"},"type":"array"},"targetName":{"description":"Name of existing target to use in dynamic secret creation\n","type":"string"},"userTtl":{"description":"User TTL\n","type":"string"}},"required":["dynamicSecretEksId","encryptionKeyName","name"],"stateInputs":{"description":"Input properties used for looking up and filtering DynamicSecretEks resources.\n","properties":{"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"dynamicSecretEksId":{"description":"The ID of this resource.\n","type":"string"},"eksAccessKeyId":{"description":"EKS Access Key ID\n","type":"string"},"eksAssumeRole":{"description":"Role ARN. Role to assume when connecting to the EKS cluster\n","type":"string"},"eksClusterCaCert":{"description":"EKS Cluster certificate. Base 64 encoded certificate.\n","secret":true,"type":"string"},"eksClusterEndpoint":{"description":"EKS Cluster endpoint. https:// , \\n\\n of the cluster.\n","type":"string"},"eksClusterName":{"description":"EKS cluster name. Must match the EKS cluster name you want to connect to.\n","type":"string"},"eksRegion":{"description":"EKS Region\n","type":"string"},"eksSecretAccessKey":{"description":"EKS Secret Access Key\n","secret":true,"type":"string"},"encryptionKeyName":{"description":"Encrypt dynamic secret details with following key\n","type":"string"},"itemCustomFields":{"additionalProperties":{"type":"string"},"description":"Additional custom fields to associate with the item\n","type":"object"},"name":{"description":"Dynamic secret name\n","type":"string"},"secureAccessAllowPortForwading":{"description":"Enable Port forwarding while using CLI access.\n","type":"boolean"},"secureAccessBastionIssuer":{"deprecationMessage":"Deprecated","description":"Path to the SSH Certificate Issuer for your Akeyless Bastion\n","type":"string"},"secureAccessCertificateIssuer":{"description":"Path to the SSH Certificate Issuer for your Akeyless Secure Access\n","type":"string"},"secureAccessClusterEndpoint":{"description":"The K8s cluster endpoint URL\n","type":"string"},"secureAccessDelay":{"description":"The delay duration, in seconds, to wait after generating just-in-time credentials. Accepted range: 0-120 seconds\n","type":"number"},"secureAccessEnable":{"description":"Enable/Disable secure remote access, [true/false]\n","type":"string"},"secureAccessWeb":{"description":"Enable Web Secure Remote Access\n","type":"boolean"},"tags":{"description":"List of the tags attached to this secret. To specify multiple tags use argument multiple times: -t Tag1 -t Tag2\n","items":{"type":"string"},"type":"array"},"targetName":{"description":"Name of existing target to use in dynamic secret creation\n","type":"string"},"userTtl":{"description":"User TTL\n","type":"string"}},"type":"object"},"type":"object"},"akeyless:index/dynamicSecretGcp:DynamicSecretGcp":{"description":"Google Cloud Provider (GCP) dynamic secret resource\n","inputProperties":{"accessType":{"description":"The type of the GCP dynamic secret, options are [sa, external]\n","type":"string"},"customUsernameTemplate":{"description":"Customize how temporary usernames are generated using go template\n","type":"string"},"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"dynamicSecretGcpId":{"description":"The ID of this resource.\n","type":"string"},"encryptionKeyName":{"description":"Dynamic producer encryption key\n","type":"string"},"fixedUserClaimKeyname":{"description":"For externally provided users, denotes the key-name of IdP claim to extract the username from (Relevant only when --access-type=external)\n","type":"string"},"gcpCredType":{"description":"Credentials type, options are [token, key]\n","type":"string"},"gcpKey":{"description":"Base64-encoded service account private key text\n","type":"string"},"gcpKeyAlgo":{"description":"Service account key algorithm, e.g. KEY*ALG*RSA_1024 (Relevant only when --access-type=sa and --gcp-cred-type=key)\n","type":"string"},"gcpProjectId":{"description":"GCP Project ID override for dynamic secret operations\n","type":"string"},"gcpSaEmail":{"description":"The email of the fixed service account to generate keys or tokens for (Relevant only when --access-type=sa and --service-account-type=fixed)\n","type":"string"},"gcpTokenScopes":{"description":"Access token scopes list, e.g. scope1,scope2 (Relevant only when --access-type=sa; required when --gcp-cred-type=token)\n","type":"string"},"itemCustomFields":{"additionalProperties":{"type":"string"},"description":"Additional custom fields to associate with the item\n","type":"object"},"name":{"description":"Dynamic secret name\n","type":"string"},"projectId":{"description":"GCP Project ID override for dynamic secret operations\n","type":"string"},"roleBinding":{"description":"Role binding definitions in JSON format (Relevant only when --access-type=sa and --service-account-type=dynamic)\n","type":"string"},"roleNames":{"description":"Comma-separated list of GCP roles to assign to the user (Relevant only when --access-type=external)\n","type":"string"},"secureAccessDelay":{"description":"The delay duration, in seconds, to wait after generating just-in-time credentials. Accepted range: 0-120 seconds\n","type":"number"},"secureAccessEnable":{"description":"Enable/Disable secure remote access [true/false]\n","type":"string"},"secureAccessUrl":{"description":"Destination URL to inject secrets\n","type":"string"},"secureAccessWebBrowsing":{"description":"Secure browser via Akeyless's Secure Remote Access (SRA)\n","type":"boolean"},"secureAccessWebProxy":{"description":"Web-Proxy via Akeyless's Secure Remote Access (SRA)\n","type":"boolean"},"serviceAccountType":{"description":"The type of the GCP service account. Options fixed, dynamic\n","type":"string"},"tags":{"description":"Add tags attached to this object\n","items":{"type":"string"},"type":"array"},"targetName":{"description":"Target name\n","type":"string"},"userTtl":{"description":"User TTL\n","type":"string"}},"properties":{"accessType":{"description":"The type of the GCP dynamic secret, options are [sa, external]\n","type":"string"},"customUsernameTemplate":{"description":"Customize how temporary usernames are generated using go template\n","type":"string"},"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"dynamicSecretGcpId":{"description":"The ID of this resource.\n","type":"string"},"encryptionKeyName":{"description":"Dynamic producer encryption key\n","type":"string"},"fixedUserClaimKeyname":{"description":"For externally provided users, denotes the key-name of IdP claim to extract the username from (Relevant only when --access-type=external)\n","type":"string"},"gcpCredType":{"description":"Credentials type, options are [token, key]\n","type":"string"},"gcpKey":{"description":"Base64-encoded service account private key text\n","type":"string"},"gcpKeyAlgo":{"description":"Service account key algorithm, e.g. KEY*ALG*RSA_1024 (Relevant only when --access-type=sa and --gcp-cred-type=key)\n","type":"string"},"gcpProjectId":{"description":"GCP Project ID override for dynamic secret operations\n","type":"string"},"gcpSaEmail":{"description":"The email of the fixed service account to generate keys or tokens for (Relevant only when --access-type=sa and --service-account-type=fixed)\n","type":"string"},"gcpTokenScopes":{"description":"Access token scopes list, e.g. scope1,scope2 (Relevant only when --access-type=sa; required when --gcp-cred-type=token)\n","type":"string"},"itemCustomFields":{"additionalProperties":{"type":"string"},"description":"Additional custom fields to associate with the item\n","type":"object"},"name":{"description":"Dynamic secret name\n","type":"string"},"projectId":{"description":"GCP Project ID override for dynamic secret operations\n","type":"string"},"roleBinding":{"description":"Role binding definitions in JSON format (Relevant only when --access-type=sa and --service-account-type=dynamic)\n","type":"string"},"roleNames":{"description":"Comma-separated list of GCP roles to assign to the user (Relevant only when --access-type=external)\n","type":"string"},"secureAccessDelay":{"description":"The delay duration, in seconds, to wait after generating just-in-time credentials. Accepted range: 0-120 seconds\n","type":"number"},"secureAccessEnable":{"description":"Enable/Disable secure remote access [true/false]\n","type":"string"},"secureAccessUrl":{"description":"Destination URL to inject secrets\n","type":"string"},"secureAccessWebBrowsing":{"description":"Secure browser via Akeyless's Secure Remote Access (SRA)\n","type":"boolean"},"secureAccessWebProxy":{"description":"Web-Proxy via Akeyless's Secure Remote Access (SRA)\n","type":"boolean"},"serviceAccountType":{"description":"The type of the GCP service account. Options fixed, dynamic\n","type":"string"},"tags":{"description":"Add tags attached to this object\n","items":{"type":"string"},"type":"array"},"targetName":{"description":"Target name\n","type":"string"},"userTtl":{"description":"User TTL\n","type":"string"}},"required":["dynamicSecretGcpId","encryptionKeyName","name"],"stateInputs":{"description":"Input properties used for looking up and filtering DynamicSecretGcp resources.\n","properties":{"accessType":{"description":"The type of the GCP dynamic secret, options are [sa, external]\n","type":"string"},"customUsernameTemplate":{"description":"Customize how temporary usernames are generated using go template\n","type":"string"},"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"dynamicSecretGcpId":{"description":"The ID of this resource.\n","type":"string"},"encryptionKeyName":{"description":"Dynamic producer encryption key\n","type":"string"},"fixedUserClaimKeyname":{"description":"For externally provided users, denotes the key-name of IdP claim to extract the username from (Relevant only when --access-type=external)\n","type":"string"},"gcpCredType":{"description":"Credentials type, options are [token, key]\n","type":"string"},"gcpKey":{"description":"Base64-encoded service account private key text\n","type":"string"},"gcpKeyAlgo":{"description":"Service account key algorithm, e.g. KEY*ALG*RSA_1024 (Relevant only when --access-type=sa and --gcp-cred-type=key)\n","type":"string"},"gcpProjectId":{"description":"GCP Project ID override for dynamic secret operations\n","type":"string"},"gcpSaEmail":{"description":"The email of the fixed service account to generate keys or tokens for (Relevant only when --access-type=sa and --service-account-type=fixed)\n","type":"string"},"gcpTokenScopes":{"description":"Access token scopes list, e.g. scope1,scope2 (Relevant only when --access-type=sa; required when --gcp-cred-type=token)\n","type":"string"},"itemCustomFields":{"additionalProperties":{"type":"string"},"description":"Additional custom fields to associate with the item\n","type":"object"},"name":{"description":"Dynamic secret name\n","type":"string"},"projectId":{"description":"GCP Project ID override for dynamic secret operations\n","type":"string"},"roleBinding":{"description":"Role binding definitions in JSON format (Relevant only when --access-type=sa and --service-account-type=dynamic)\n","type":"string"},"roleNames":{"description":"Comma-separated list of GCP roles to assign to the user (Relevant only when --access-type=external)\n","type":"string"},"secureAccessDelay":{"description":"The delay duration, in seconds, to wait after generating just-in-time credentials. Accepted range: 0-120 seconds\n","type":"number"},"secureAccessEnable":{"description":"Enable/Disable secure remote access [true/false]\n","type":"string"},"secureAccessUrl":{"description":"Destination URL to inject secrets\n","type":"string"},"secureAccessWebBrowsing":{"description":"Secure browser via Akeyless's Secure Remote Access (SRA)\n","type":"boolean"},"secureAccessWebProxy":{"description":"Web-Proxy via Akeyless's Secure Remote Access (SRA)\n","type":"boolean"},"serviceAccountType":{"description":"The type of the GCP service account. Options fixed, dynamic\n","type":"string"},"tags":{"description":"Add tags attached to this object\n","items":{"type":"string"},"type":"array"},"targetName":{"description":"Target name\n","type":"string"},"userTtl":{"description":"User TTL\n","type":"string"}},"type":"object"},"type":"object"},"akeyless:index/dynamicSecretGithub:DynamicSecretGithub":{"description":"Github dynamic secret resource\n","inputProperties":{"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"dynamicSecretGithubId":{"description":"The ID of this resource.\n","type":"string"},"githubAppId":{"description":"Github app id\n","type":"number"},"githubAppPrivateKey":{"description":"App private key\n","type":"string"},"githubBaseUrl":{"description":"Base URL\n","type":"string"},"installationId":{"description":"GitHub application installation id\n","type":"number"},"installationOrganization":{"description":"Optional, mutually exclusive with installation id, GitHub organization name\n","type":"string"},"installationRepository":{"description":"Optional, mutually exclusive with installation id, GitHub repository '\\n\\n/\\n\\n'\n","type":"string"},"itemCustomFields":{"additionalProperties":{"type":"string"},"description":"Additional custom fields to associate with the item\n","type":"object"},"name":{"description":"Dynamic secret name\n","type":"string"},"tags":{"description":"Add tags attached to this object\n","items":{"type":"string"},"type":"array"},"targetName":{"description":"Target name\n","type":"string"},"tokenPermissions":{"description":"Optional - installation token's allowed permissions\n","items":{"type":"string"},"type":"array"},"tokenRepositories":{"description":"Optional - installation token's allowed repositories\n","items":{"type":"string"},"type":"array"},"tokenTtl":{"description":"Token TTL\n","type":"string"}},"properties":{"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"dynamicSecretGithubId":{"description":"The ID of this resource.\n","type":"string"},"githubAppId":{"description":"Github app id\n","type":"number"},"githubAppPrivateKey":{"description":"App private key\n","type":"string"},"githubBaseUrl":{"description":"Base URL\n","type":"string"},"installationId":{"description":"GitHub application installation id\n","type":"number"},"installationOrganization":{"description":"Optional, mutually exclusive with installation id, GitHub organization name\n","type":"string"},"installationRepository":{"description":"Optional, mutually exclusive with installation id, GitHub repository '\\n\\n/\\n\\n'\n","type":"string"},"itemCustomFields":{"additionalProperties":{"type":"string"},"description":"Additional custom fields to associate with the item\n","type":"object"},"name":{"description":"Dynamic secret name\n","type":"string"},"tags":{"description":"Add tags attached to this object\n","items":{"type":"string"},"type":"array"},"targetName":{"description":"Target name\n","type":"string"},"tokenPermissions":{"description":"Optional - installation token's allowed permissions\n","items":{"type":"string"},"type":"array"},"tokenRepositories":{"description":"Optional - installation token's allowed repositories\n","items":{"type":"string"},"type":"array"},"tokenTtl":{"description":"Token TTL\n","type":"string"}},"required":["dynamicSecretGithubId","name"],"stateInputs":{"description":"Input properties used for looking up and filtering DynamicSecretGithub resources.\n","properties":{"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"dynamicSecretGithubId":{"description":"The ID of this resource.\n","type":"string"},"githubAppId":{"description":"Github app id\n","type":"number"},"githubAppPrivateKey":{"description":"App private key\n","type":"string"},"githubBaseUrl":{"description":"Base URL\n","type":"string"},"installationId":{"description":"GitHub application installation id\n","type":"number"},"installationOrganization":{"description":"Optional, mutually exclusive with installation id, GitHub organization name\n","type":"string"},"installationRepository":{"description":"Optional, mutually exclusive with installation id, GitHub repository '\\n\\n/\\n\\n'\n","type":"string"},"itemCustomFields":{"additionalProperties":{"type":"string"},"description":"Additional custom fields to associate with the item\n","type":"object"},"name":{"description":"Dynamic secret name\n","type":"string"},"tags":{"description":"Add tags attached to this object\n","items":{"type":"string"},"type":"array"},"targetName":{"description":"Target name\n","type":"string"},"tokenPermissions":{"description":"Optional - installation token's allowed permissions\n","items":{"type":"string"},"type":"array"},"tokenRepositories":{"description":"Optional - installation token's allowed repositories\n","items":{"type":"string"},"type":"array"},"tokenTtl":{"description":"Token TTL\n","type":"string"}},"type":"object"},"type":"object"},"akeyless:index/dynamicSecretGitlab:DynamicSecretGitlab":{"description":"Gitlab dynamic secret resource.\n","inputProperties":{"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"dynamicSecretGitlabId":{"description":"The ID of this resource.\n","type":"string"},"gitlabAccessToken":{"description":"Gitlab access token\n","secret":true,"type":"string"},"gitlabAccessType":{"description":"Gitlab access token type [project,group]\n","type":"string"},"gitlabCertificate":{"description":"Gitlab tls certificate (base64 encoded)\n","secret":true,"type":"string"},"gitlabRole":{"description":"Gitlab role\n","type":"string"},"gitlabTokenScopes":{"description":"Comma-separated list of access token scopes to grant\n","type":"string"},"gitlabUrl":{"description":"Gitlab base url\n","type":"string"},"groupName":{"description":"Gitlab group name, required for access-type=group\n","type":"string"},"installationOrganization":{"description":"Gitlab project name, required for access-type=project\n","type":"string"},"itemCustomFields":{"additionalProperties":{"type":"string"},"description":"Additional custom fields to associate with the item\n","type":"object"},"name":{"description":"Dynamic secret name\n","type":"string"},"tags":{"description":"Add tags attached to this object\n","items":{"type":"string"},"type":"array"},"targetName":{"description":"Target name\n","type":"string"},"ttl":{"description":"Access Token TTL\n","type":"string"}},"properties":{"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"dynamicSecretGitlabId":{"description":"The ID of this resource.\n","type":"string"},"gitlabAccessToken":{"description":"Gitlab access token\n","secret":true,"type":"string"},"gitlabAccessType":{"description":"Gitlab access token type [project,group]\n","type":"string"},"gitlabCertificate":{"description":"Gitlab tls certificate (base64 encoded)\n","secret":true,"type":"string"},"gitlabRole":{"description":"Gitlab role\n","type":"string"},"gitlabTokenScopes":{"description":"Comma-separated list of access token scopes to grant\n","type":"string"},"gitlabUrl":{"description":"Gitlab base url\n","type":"string"},"groupName":{"description":"Gitlab group name, required for access-type=group\n","type":"string"},"installationOrganization":{"description":"Gitlab project name, required for access-type=project\n","type":"string"},"itemCustomFields":{"additionalProperties":{"type":"string"},"description":"Additional custom fields to associate with the item\n","type":"object"},"name":{"description":"Dynamic secret name\n","type":"string"},"tags":{"description":"Add tags attached to this object\n","items":{"type":"string"},"type":"array"},"targetName":{"description":"Target name\n","type":"string"},"ttl":{"description":"Access Token TTL\n","type":"string"}},"required":["dynamicSecretGitlabId","name"],"stateInputs":{"description":"Input properties used for looking up and filtering DynamicSecretGitlab resources.\n","properties":{"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"dynamicSecretGitlabId":{"description":"The ID of this resource.\n","type":"string"},"gitlabAccessToken":{"description":"Gitlab access token\n","secret":true,"type":"string"},"gitlabAccessType":{"description":"Gitlab access token type [project,group]\n","type":"string"},"gitlabCertificate":{"description":"Gitlab tls certificate (base64 encoded)\n","secret":true,"type":"string"},"gitlabRole":{"description":"Gitlab role\n","type":"string"},"gitlabTokenScopes":{"description":"Comma-separated list of access token scopes to grant\n","type":"string"},"gitlabUrl":{"description":"Gitlab base url\n","type":"string"},"groupName":{"description":"Gitlab group name, required for access-type=group\n","type":"string"},"installationOrganization":{"description":"Gitlab project name, required for access-type=project\n","type":"string"},"itemCustomFields":{"additionalProperties":{"type":"string"},"description":"Additional custom fields to associate with the item\n","type":"object"},"name":{"description":"Dynamic secret name\n","type":"string"},"tags":{"description":"Add tags attached to this object\n","items":{"type":"string"},"type":"array"},"targetName":{"description":"Target name\n","type":"string"},"ttl":{"description":"Access Token TTL\n","type":"string"}},"type":"object"},"type":"object"},"akeyless:index/dynamicSecretGke:DynamicSecretGke":{"description":"Google Kubernetes Engine (GKE) dynamic secret resource\n","inputProperties":{"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"dynamicSecretGkeId":{"description":"The ID of this resource.\n","type":"string"},"encryptionKeyName":{"description":"Dynamic producer encryption key\n","type":"string"},"gkeAccountKey":{"description":"GKE Service Account key file path\n","type":"string"},"gkeClusterCert":{"description":"GKE cluster CA certificate\n","type":"string"},"gkeClusterEndpoint":{"description":"GKE cluster URL endpoint\n","type":"string"},"gkeClusterName":{"description":"GKE cluster name\n","type":"string"},"gkeServiceAccountEmail":{"description":"GKE service account email\n","type":"string"},"itemCustomFields":{"additionalProperties":{"type":"string"},"description":"Additional custom fields to associate with the item\n","type":"object"},"name":{"description":"Dynamic secret name\n","type":"string"},"secureAccessAllowPortForwading":{"description":"Enable Port forwarding while using CLI access.\n","type":"boolean"},"secureAccessBastionIssuer":{"deprecationMessage":"Deprecated","description":"Path to the SSH Certificate Issuer for your Akeyless Bastion\n","type":"string"},"secureAccessCertificateIssuer":{"description":"Path to the SSH Certificate Issuer for your Akeyless Secure Access\n","type":"string"},"secureAccessClusterEndpoint":{"description":"The K8s cluster endpoint URL\n","type":"string"},"secureAccessDelay":{"description":"The delay duration, in seconds, to wait after generating just-in-time credentials. Accepted range: 0-120 seconds\n","type":"number"},"secureAccessEnable":{"description":"Enable/Disable secure remote access, [true/false]\n","type":"string"},"secureAccessWeb":{"description":"Enable Web Secure Remote Access\n","type":"boolean"},"tags":{"description":"List of the tags attached to this secret. To specify multiple tags use argument multiple times: -t Tag1 -t Tag2\n","items":{"type":"string"},"type":"array"},"targetName":{"description":"Name of existing target to use in dynamic secret creation\n","type":"string"},"userTtl":{"description":"User TTL\n","type":"string"}},"properties":{"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"dynamicSecretGkeId":{"description":"The ID of this resource.\n","type":"string"},"encryptionKeyName":{"description":"Dynamic producer encryption key\n","type":"string"},"gkeAccountKey":{"description":"GKE Service Account key file path\n","type":"string"},"gkeClusterCert":{"description":"GKE cluster CA certificate\n","type":"string"},"gkeClusterEndpoint":{"description":"GKE cluster URL endpoint\n","type":"string"},"gkeClusterName":{"description":"GKE cluster name\n","type":"string"},"gkeServiceAccountEmail":{"description":"GKE service account email\n","type":"string"},"itemCustomFields":{"additionalProperties":{"type":"string"},"description":"Additional custom fields to associate with the item\n","type":"object"},"name":{"description":"Dynamic secret name\n","type":"string"},"secureAccessAllowPortForwading":{"description":"Enable Port forwarding while using CLI access.\n","type":"boolean"},"secureAccessBastionIssuer":{"deprecationMessage":"Deprecated","description":"Path to the SSH Certificate Issuer for your Akeyless Bastion\n","type":"string"},"secureAccessCertificateIssuer":{"description":"Path to the SSH Certificate Issuer for your Akeyless Secure Access\n","type":"string"},"secureAccessClusterEndpoint":{"description":"The K8s cluster endpoint URL\n","type":"string"},"secureAccessDelay":{"description":"The delay duration, in seconds, to wait after generating just-in-time credentials. Accepted range: 0-120 seconds\n","type":"number"},"secureAccessEnable":{"description":"Enable/Disable secure remote access, [true/false]\n","type":"string"},"secureAccessWeb":{"description":"Enable Web Secure Remote Access\n","type":"boolean"},"tags":{"description":"List of the tags attached to this secret. To specify multiple tags use argument multiple times: -t Tag1 -t Tag2\n","items":{"type":"string"},"type":"array"},"targetName":{"description":"Name of existing target to use in dynamic secret creation\n","type":"string"},"userTtl":{"description":"User TTL\n","type":"string"}},"required":["dynamicSecretGkeId","encryptionKeyName","name"],"stateInputs":{"description":"Input properties used for looking up and filtering DynamicSecretGke resources.\n","properties":{"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"dynamicSecretGkeId":{"description":"The ID of this resource.\n","type":"string"},"encryptionKeyName":{"description":"Dynamic producer encryption key\n","type":"string"},"gkeAccountKey":{"description":"GKE Service Account key file path\n","type":"string"},"gkeClusterCert":{"description":"GKE cluster CA certificate\n","type":"string"},"gkeClusterEndpoint":{"description":"GKE cluster URL endpoint\n","type":"string"},"gkeClusterName":{"description":"GKE cluster name\n","type":"string"},"gkeServiceAccountEmail":{"description":"GKE service account email\n","type":"string"},"itemCustomFields":{"additionalProperties":{"type":"string"},"description":"Additional custom fields to associate with the item\n","type":"object"},"name":{"description":"Dynamic secret name\n","type":"string"},"secureAccessAllowPortForwading":{"description":"Enable Port forwarding while using CLI access.\n","type":"boolean"},"secureAccessBastionIssuer":{"deprecationMessage":"Deprecated","description":"Path to the SSH Certificate Issuer for your Akeyless Bastion\n","type":"string"},"secureAccessCertificateIssuer":{"description":"Path to the SSH Certificate Issuer for your Akeyless Secure Access\n","type":"string"},"secureAccessClusterEndpoint":{"description":"The K8s cluster endpoint URL\n","type":"string"},"secureAccessDelay":{"description":"The delay duration, in seconds, to wait after generating just-in-time credentials. Accepted range: 0-120 seconds\n","type":"number"},"secureAccessEnable":{"description":"Enable/Disable secure remote access, [true/false]\n","type":"string"},"secureAccessWeb":{"description":"Enable Web Secure Remote Access\n","type":"boolean"},"tags":{"description":"List of the tags attached to this secret. To specify multiple tags use argument multiple times: -t Tag1 -t Tag2\n","items":{"type":"string"},"type":"array"},"targetName":{"description":"Name of existing target to use in dynamic secret creation\n","type":"string"},"userTtl":{"description":"User TTL\n","type":"string"}},"type":"object"},"type":"object"},"akeyless:index/dynamicSecretGoogleWorkspace:DynamicSecretGoogleWorkspace":{"description":"Google Workspace dynamic secret resource\n","inputProperties":{"accessMode":{"description":"Adding a user to an existing group or assign an admin role to a user [group/role]\n","type":"string"},"adminEmail":{"description":"Admin user email\n","type":"string"},"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"dynamicSecretGoogleWorkspaceId":{"description":"The ID of this resource.\n","type":"string"},"fixedUserClaimKeyname":{"description":"For externally provided users, denotes the key-name of IdP claim to extract the username from\n","type":"string"},"gcpKey":{"description":"Base64-encoded service account private key text\n","secret":true,"type":"string"},"groupEmail":{"description":"A group email, relevant only for group access-mode\n","type":"string"},"groupRole":{"description":"Group role [OWNER/MANAGER/MEMBER], relevant only for group access-mode\n","type":"string"},"itemCustomFields":{"additionalProperties":{"type":"string"},"description":"Additional custom fields to associate with the item\n","type":"object"},"name":{"description":"Dynamic secret name\n","type":"string"},"producerEncryptionKeyName":{"description":"Dynamic producer encryption key\n","type":"string"},"roleName":{"description":"Name of the admin role to assign to the user, relevant only for role access-mode\n","type":"string"},"roleScope":{"description":"The scope in which this role is assigned [CUSTOMER/ORG_UNIT], relevant only for role access-mode\n","type":"string"},"secureAccessEnable":{"description":"Enable/Disable secure remote access [true/false]\n","type":"string"},"secureAccessUrl":{"description":"Destination URL to inject secrets\n","type":"string"},"secureAccessWeb":{"description":"Enable Web Secure Remote Access\n","type":"boolean"},"secureAccessWebBrowsing":{"description":"Secure browser via Akeyless's Secure Remote Access (SRA)\n","type":"boolean"},"secureAccessWebProxy":{"description":"Web-Proxy via Akeyless's Secure Remote Access (SRA)\n","type":"boolean"},"tags":{"description":"Add tags attached to this object\n","items":{"type":"string"},"type":"array"},"targetName":{"description":"Name of existing target to use in dynamic secret creation\n","type":"string"},"userTtl":{"description":"User TTL\n","type":"string"}},"properties":{"accessMode":{"description":"Adding a user to an existing group or assign an admin role to a user [group/role]\n","type":"string"},"adminEmail":{"description":"Admin user email\n","type":"string"},"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"dynamicSecretGoogleWorkspaceId":{"description":"The ID of this resource.\n","type":"string"},"fixedUserClaimKeyname":{"description":"For externally provided users, denotes the key-name of IdP claim to extract the username from\n","type":"string"},"gcpKey":{"description":"Base64-encoded service account private key text\n","secret":true,"type":"string"},"groupEmail":{"description":"A group email, relevant only for group access-mode\n","type":"string"},"groupRole":{"description":"Group role [OWNER/MANAGER/MEMBER], relevant only for group access-mode\n","type":"string"},"itemCustomFields":{"additionalProperties":{"type":"string"},"description":"Additional custom fields to associate with the item\n","type":"object"},"name":{"description":"Dynamic secret name\n","type":"string"},"producerEncryptionKeyName":{"description":"Dynamic producer encryption key\n","type":"string"},"roleName":{"description":"Name of the admin role to assign to the user, relevant only for role access-mode\n","type":"string"},"roleScope":{"description":"The scope in which this role is assigned [CUSTOMER/ORG_UNIT], relevant only for role access-mode\n","type":"string"},"secureAccessEnable":{"description":"Enable/Disable secure remote access [true/false]\n","type":"string"},"secureAccessUrl":{"description":"Destination URL to inject secrets\n","type":"string"},"secureAccessWeb":{"description":"Enable Web Secure Remote Access\n","type":"boolean"},"secureAccessWebBrowsing":{"description":"Secure browser via Akeyless's Secure Remote Access (SRA)\n","type":"boolean"},"secureAccessWebProxy":{"description":"Web-Proxy via Akeyless's Secure Remote Access (SRA)\n","type":"boolean"},"tags":{"description":"Add tags attached to this object\n","items":{"type":"string"},"type":"array"},"targetName":{"description":"Name of existing target to use in dynamic secret creation\n","type":"string"},"userTtl":{"description":"User TTL\n","type":"string"}},"required":["accessMode","adminEmail","dynamicSecretGoogleWorkspaceId","name","producerEncryptionKeyName"],"requiredInputs":["accessMode","adminEmail"],"stateInputs":{"description":"Input properties used for looking up and filtering DynamicSecretGoogleWorkspace resources.\n","properties":{"accessMode":{"description":"Adding a user to an existing group or assign an admin role to a user [group/role]\n","type":"string"},"adminEmail":{"description":"Admin user email\n","type":"string"},"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"dynamicSecretGoogleWorkspaceId":{"description":"The ID of this resource.\n","type":"string"},"fixedUserClaimKeyname":{"description":"For externally provided users, denotes the key-name of IdP claim to extract the username from\n","type":"string"},"gcpKey":{"description":"Base64-encoded service account private key text\n","secret":true,"type":"string"},"groupEmail":{"description":"A group email, relevant only for group access-mode\n","type":"string"},"groupRole":{"description":"Group role [OWNER/MANAGER/MEMBER], relevant only for group access-mode\n","type":"string"},"itemCustomFields":{"additionalProperties":{"type":"string"},"description":"Additional custom fields to associate with the item\n","type":"object"},"name":{"description":"Dynamic secret name\n","type":"string"},"producerEncryptionKeyName":{"description":"Dynamic producer encryption key\n","type":"string"},"roleName":{"description":"Name of the admin role to assign to the user, relevant only for role access-mode\n","type":"string"},"roleScope":{"description":"The scope in which this role is assigned [CUSTOMER/ORG_UNIT], relevant only for role access-mode\n","type":"string"},"secureAccessEnable":{"description":"Enable/Disable secure remote access [true/false]\n","type":"string"},"secureAccessUrl":{"description":"Destination URL to inject secrets\n","type":"string"},"secureAccessWeb":{"description":"Enable Web Secure Remote Access\n","type":"boolean"},"secureAccessWebBrowsing":{"description":"Secure browser via Akeyless's Secure Remote Access (SRA)\n","type":"boolean"},"secureAccessWebProxy":{"description":"Web-Proxy via Akeyless's Secure Remote Access (SRA)\n","type":"boolean"},"tags":{"description":"Add tags attached to this object\n","items":{"type":"string"},"type":"array"},"targetName":{"description":"Name of existing target to use in dynamic secret creation\n","type":"string"},"userTtl":{"description":"User TTL\n","type":"string"}},"type":"object"},"type":"object"},"akeyless:index/dynamicSecretHanaDb:DynamicSecretHanaDb":{"description":"HanaDb dynamic secret resource\n","inputProperties":{"customUsernameTemplate":{"description":"Customize how temporary usernames are generated using go template\n","type":"string"},"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"string"},"dynamicSecretHanaDbId":{"description":"The ID of this resource.\n","type":"string"},"hanaDbname":{"description":"HanaDb Name\n","type":"string"},"hanadbCreateStatements":{"description":"HanaDb Creation statements\n","type":"string"},"hanadbHost":{"description":"HanaDb Host\n","type":"string"},"hanadbPassword":{"description":"HanaDb Password\n","secret":true,"type":"string"},"hanadbPort":{"description":"HanaDb Port\n","type":"string"},"hanadbRevocationStatements":{"description":"HanaDb Revocation statements\n","type":"string"},"hanadbUsername":{"description":"HanaDb Username\n","type":"string"},"itemCustomFields":{"additionalProperties":{"type":"string"},"description":"Additional custom fields to associate with the item\n","type":"object"},"name":{"description":"Dynamic secret name\n","type":"string"},"passwordLength":{"description":"The length of the password to be generated\n","type":"string"},"producerEncryptionKeyName":{"description":"Dynamic producer encryption key\n","type":"string"},"secureAccessCertificateIssuer":{"description":"Path to the SSH Certificate Issuer for your Akeyless Secure Access\n","type":"string"},"secureAccessDbName":{"description":"The DB name (relevant only for DB Dynamic-Secret)\n","type":"string"},"secureAccessDbSchema":{"description":"The DB schema\n","type":"string"},"secureAccessEnable":{"description":"Enable/Disable secure remote access [true/false]\n","type":"string"},"secureAccessHosts":{"description":"Target DB servers for connections (In case of Linked Target association, host(s) will inherit Linked Target hosts)\n","items":{"type":"string"},"type":"array"},"secureAccessWeb":{"description":"Enable Web Secure Remote Access\n","type":"boolean"},"tags":{"description":"Add tags attached to this object\n","items":{"type":"string"},"type":"array"},"targetName":{"description":"Target name\n","type":"string"},"userTtl":{"description":"User TTL\n","type":"string"}},"properties":{"customUsernameTemplate":{"description":"Customize how temporary usernames are generated using go template\n","type":"string"},"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"string"},"dynamicSecretHanaDbId":{"description":"The ID of this resource.\n","type":"string"},"hanaDbname":{"description":"HanaDb Name\n","type":"string"},"hanadbCreateStatements":{"description":"HanaDb Creation statements\n","type":"string"},"hanadbHost":{"description":"HanaDb Host\n","type":"string"},"hanadbPassword":{"description":"HanaDb Password\n","secret":true,"type":"string"},"hanadbPort":{"description":"HanaDb Port\n","type":"string"},"hanadbRevocationStatements":{"description":"HanaDb Revocation statements\n","type":"string"},"hanadbUsername":{"description":"HanaDb Username\n","type":"string"},"itemCustomFields":{"additionalProperties":{"type":"string"},"description":"Additional custom fields to associate with the item\n","type":"object"},"name":{"description":"Dynamic secret name\n","type":"string"},"passwordLength":{"description":"The length of the password to be generated\n","type":"string"},"producerEncryptionKeyName":{"description":"Dynamic producer encryption key\n","type":"string"},"secureAccessCertificateIssuer":{"description":"Path to the SSH Certificate Issuer for your Akeyless Secure Access\n","type":"string"},"secureAccessDbName":{"description":"The DB name (relevant only for DB Dynamic-Secret)\n","type":"string"},"secureAccessDbSchema":{"description":"The DB schema\n","type":"string"},"secureAccessEnable":{"description":"Enable/Disable secure remote access [true/false]\n","type":"string"},"secureAccessHosts":{"description":"Target DB servers for connections (In case of Linked Target association, host(s) will inherit Linked Target hosts)\n","items":{"type":"string"},"type":"array"},"secureAccessWeb":{"description":"Enable Web Secure Remote Access\n","type":"boolean"},"tags":{"description":"Add tags attached to this object\n","items":{"type":"string"},"type":"array"},"targetName":{"description":"Target name\n","type":"string"},"userTtl":{"description":"User TTL\n","type":"string"}},"required":["dynamicSecretHanaDbId","name","producerEncryptionKeyName"],"stateInputs":{"description":"Input properties used for looking up and filtering DynamicSecretHanaDb resources.\n","properties":{"customUsernameTemplate":{"description":"Customize how temporary usernames are generated using go template\n","type":"string"},"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"string"},"dynamicSecretHanaDbId":{"description":"The ID of this resource.\n","type":"string"},"hanaDbname":{"description":"HanaDb Name\n","type":"string"},"hanadbCreateStatements":{"description":"HanaDb Creation statements\n","type":"string"},"hanadbHost":{"description":"HanaDb Host\n","type":"string"},"hanadbPassword":{"description":"HanaDb Password\n","secret":true,"type":"string"},"hanadbPort":{"description":"HanaDb Port\n","type":"string"},"hanadbRevocationStatements":{"description":"HanaDb Revocation statements\n","type":"string"},"hanadbUsername":{"description":"HanaDb Username\n","type":"string"},"itemCustomFields":{"additionalProperties":{"type":"string"},"description":"Additional custom fields to associate with the item\n","type":"object"},"name":{"description":"Dynamic secret name\n","type":"string"},"passwordLength":{"description":"The length of the password to be generated\n","type":"string"},"producerEncryptionKeyName":{"description":"Dynamic producer encryption key\n","type":"string"},"secureAccessCertificateIssuer":{"description":"Path to the SSH Certificate Issuer for your Akeyless Secure Access\n","type":"string"},"secureAccessDbName":{"description":"The DB name (relevant only for DB Dynamic-Secret)\n","type":"string"},"secureAccessDbSchema":{"description":"The DB schema\n","type":"string"},"secureAccessEnable":{"description":"Enable/Disable secure remote access [true/false]\n","type":"string"},"secureAccessHosts":{"description":"Target DB servers for connections (In case of Linked Target association, host(s) will inherit Linked Target hosts)\n","items":{"type":"string"},"type":"array"},"secureAccessWeb":{"description":"Enable Web Secure Remote Access\n","type":"boolean"},"tags":{"description":"Add tags attached to this object\n","items":{"type":"string"},"type":"array"},"targetName":{"description":"Target name\n","type":"string"},"userTtl":{"description":"User TTL\n","type":"string"}},"type":"object"},"type":"object"},"akeyless:index/dynamicSecretK8s:DynamicSecretK8s":{"description":"Native Kubernetes Service dynamic secret resource\n","inputProperties":{"customUsernameTemplate":{"description":"Customize how temporary usernames are generated using go template\n","type":"string"},"deleteProtection":{"description":"Protection from accidental deletion of this item [true/false]\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"dynamicSecretK8sId":{"description":"The ID of this resource.\n","type":"string"},"encryptionKeyName":{"description":"Dynamic producer encryption key\n","type":"string"},"itemCustomFields":{"additionalProperties":{"type":"string"},"description":"Additional custom fields to associate with the item\n","type":"object"},"k8sAllowedNamespaces":{"description":"Comma-separated list of allowed K8S namespaces for the generated ServiceAccount (relevant only for k8s-service-account-type=dynamic).\n","type":"string"},"k8sClusterCaCert":{"description":"K8S cluster CA certificate\n","secret":true,"type":"string"},"k8sClusterEndpoint":{"description":"K8S cluster URL endpoint\n","type":"string"},"k8sClusterName":{"description":"K8S cluster name\n","type":"string"},"k8sClusterToken":{"description":"K8S cluster Bearer token\n","secret":true,"type":"string"},"k8sNamespace":{"description":"K8S Namespace where the ServiceAccount exists.\n","type":"string"},"k8sPredefinedRoleName":{"description":"The pre-existing Role or ClusterRole name to bind the generated ServiceAccount to (relevant only for k8s-service-account-type=dynamic).\n","type":"string"},"k8sPredefinedRoleType":{"description":"Specifies the type of the pre-existing K8S role Role, ClusterRole.\n","type":"string"},"k8sRolebindingYamlData":{"description":"Content of the yaml in a Base64 format.\n","type":"string"},"k8sRolebindingYamlDef":{"description":"Path to yaml file that contains definitions of K8S role and role binding (relevant only for k8s-service-account-type=dynamic)\n","type":"string"},"k8sServiceAccount":{"description":"K8S ServiceAccount to extract token from.\n","type":"string"},"k8sServiceAccountType":{"description":"K8S ServiceAccount type [fixed, dynamic].\n","type":"string"},"name":{"description":"Dynamic secret name\n","type":"string"},"secureAccessAllowPortForwading":{"description":"Enable Port forwarding while using CLI access\n","type":"boolean"},"secureAccessBastionIssuer":{"deprecationMessage":"Deprecated","description":"Path to the SSH Certificate Issuer for your Akeyless Bastion\n","type":"string"},"secureAccessCertificateIssuer":{"description":"Path to the SSH Certificate Issuer for your Akeyless Secure Access\n","type":"string"},"secureAccessClusterEndpoint":{"description":"The K8s cluster endpoint URL\n","type":"string"},"secureAccessDashboardUrl":{"description":"The K8s dashboard url\n","type":"string"},"secureAccessDelay":{"description":"The delay duration, in seconds, to wait after generating just-in-time credentials. Accepted range: 0-120 seconds\n","type":"number"},"secureAccessEnable":{"description":"Enable/Disable secure remote access, [true/false]\n","type":"string"},"secureAccessWeb":{"description":"Enable Web Secure Remote Access\n","type":"boolean"},"secureAccessWebBrowsing":{"description":"Secure browser via Akeyless's Secure Remote Access (SRA)\n","type":"boolean"},"secureAccessWebProxy":{"description":"Web-Proxy via Akeyless's Secure Remote Access (SRA)\n","type":"boolean"},"tags":{"description":"Add tags attached to this object\n","items":{"type":"string"},"type":"array"},"targetName":{"description":"Target name\n","type":"string"},"useGwServiceAccount":{"description":"Use the GW's service account\n","type":"boolean"},"userTtl":{"description":"User TTL\n","type":"string"}},"properties":{"customUsernameTemplate":{"description":"Customize how temporary usernames are generated using go template\n","type":"string"},"deleteProtection":{"description":"Protection from accidental deletion of this item [true/false]\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"dynamicSecretK8sId":{"description":"The ID of this resource.\n","type":"string"},"encryptionKeyName":{"description":"Dynamic producer encryption key\n","type":"string"},"itemCustomFields":{"additionalProperties":{"type":"string"},"description":"Additional custom fields to associate with the item\n","type":"object"},"k8sAllowedNamespaces":{"description":"Comma-separated list of allowed K8S namespaces for the generated ServiceAccount (relevant only for k8s-service-account-type=dynamic).\n","type":"string"},"k8sClusterCaCert":{"description":"K8S cluster CA certificate\n","secret":true,"type":"string"},"k8sClusterEndpoint":{"description":"K8S cluster URL endpoint\n","type":"string"},"k8sClusterName":{"description":"K8S cluster name\n","type":"string"},"k8sClusterToken":{"description":"K8S cluster Bearer token\n","secret":true,"type":"string"},"k8sNamespace":{"description":"K8S Namespace where the ServiceAccount exists.\n","type":"string"},"k8sPredefinedRoleName":{"description":"The pre-existing Role or ClusterRole name to bind the generated ServiceAccount to (relevant only for k8s-service-account-type=dynamic).\n","type":"string"},"k8sPredefinedRoleType":{"description":"Specifies the type of the pre-existing K8S role Role, ClusterRole.\n","type":"string"},"k8sRolebindingYamlData":{"description":"Content of the yaml in a Base64 format.\n","type":"string"},"k8sRolebindingYamlDef":{"description":"Path to yaml file that contains definitions of K8S role and role binding (relevant only for k8s-service-account-type=dynamic)\n","type":"string"},"k8sServiceAccount":{"description":"K8S ServiceAccount to extract token from.\n","type":"string"},"k8sServiceAccountType":{"description":"K8S ServiceAccount type [fixed, dynamic].\n","type":"string"},"name":{"description":"Dynamic secret name\n","type":"string"},"secureAccessAllowPortForwading":{"description":"Enable Port forwarding while using CLI access\n","type":"boolean"},"secureAccessBastionIssuer":{"deprecationMessage":"Deprecated","description":"Path to the SSH Certificate Issuer for your Akeyless Bastion\n","type":"string"},"secureAccessCertificateIssuer":{"description":"Path to the SSH Certificate Issuer for your Akeyless Secure Access\n","type":"string"},"secureAccessClusterEndpoint":{"description":"The K8s cluster endpoint URL\n","type":"string"},"secureAccessDashboardUrl":{"description":"The K8s dashboard url\n","type":"string"},"secureAccessDelay":{"description":"The delay duration, in seconds, to wait after generating just-in-time credentials. Accepted range: 0-120 seconds\n","type":"number"},"secureAccessEnable":{"description":"Enable/Disable secure remote access, [true/false]\n","type":"string"},"secureAccessWeb":{"description":"Enable Web Secure Remote Access\n","type":"boolean"},"secureAccessWebBrowsing":{"description":"Secure browser via Akeyless's Secure Remote Access (SRA)\n","type":"boolean"},"secureAccessWebProxy":{"description":"Web-Proxy via Akeyless's Secure Remote Access (SRA)\n","type":"boolean"},"tags":{"description":"Add tags attached to this object\n","items":{"type":"string"},"type":"array"},"targetName":{"description":"Target name\n","type":"string"},"useGwServiceAccount":{"description":"Use the GW's service account\n","type":"boolean"},"userTtl":{"description":"User TTL\n","type":"string"}},"required":["dynamicSecretK8sId","encryptionKeyName","name"],"stateInputs":{"description":"Input properties used for looking up and filtering DynamicSecretK8s resources.\n","properties":{"customUsernameTemplate":{"description":"Customize how temporary usernames are generated using go template\n","type":"string"},"deleteProtection":{"description":"Protection from accidental deletion of this item [true/false]\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"dynamicSecretK8sId":{"description":"The ID of this resource.\n","type":"string"},"encryptionKeyName":{"description":"Dynamic producer encryption key\n","type":"string"},"itemCustomFields":{"additionalProperties":{"type":"string"},"description":"Additional custom fields to associate with the item\n","type":"object"},"k8sAllowedNamespaces":{"description":"Comma-separated list of allowed K8S namespaces for the generated ServiceAccount (relevant only for k8s-service-account-type=dynamic).\n","type":"string"},"k8sClusterCaCert":{"description":"K8S cluster CA certificate\n","secret":true,"type":"string"},"k8sClusterEndpoint":{"description":"K8S cluster URL endpoint\n","type":"string"},"k8sClusterName":{"description":"K8S cluster name\n","type":"string"},"k8sClusterToken":{"description":"K8S cluster Bearer token\n","secret":true,"type":"string"},"k8sNamespace":{"description":"K8S Namespace where the ServiceAccount exists.\n","type":"string"},"k8sPredefinedRoleName":{"description":"The pre-existing Role or ClusterRole name to bind the generated ServiceAccount to (relevant only for k8s-service-account-type=dynamic).\n","type":"string"},"k8sPredefinedRoleType":{"description":"Specifies the type of the pre-existing K8S role Role, ClusterRole.\n","type":"string"},"k8sRolebindingYamlData":{"description":"Content of the yaml in a Base64 format.\n","type":"string"},"k8sRolebindingYamlDef":{"description":"Path to yaml file that contains definitions of K8S role and role binding (relevant only for k8s-service-account-type=dynamic)\n","type":"string"},"k8sServiceAccount":{"description":"K8S ServiceAccount to extract token from.\n","type":"string"},"k8sServiceAccountType":{"description":"K8S ServiceAccount type [fixed, dynamic].\n","type":"string"},"name":{"description":"Dynamic secret name\n","type":"string"},"secureAccessAllowPortForwading":{"description":"Enable Port forwarding while using CLI access\n","type":"boolean"},"secureAccessBastionIssuer":{"deprecationMessage":"Deprecated","description":"Path to the SSH Certificate Issuer for your Akeyless Bastion\n","type":"string"},"secureAccessCertificateIssuer":{"description":"Path to the SSH Certificate Issuer for your Akeyless Secure Access\n","type":"string"},"secureAccessClusterEndpoint":{"description":"The K8s cluster endpoint URL\n","type":"string"},"secureAccessDashboardUrl":{"description":"The K8s dashboard url\n","type":"string"},"secureAccessDelay":{"description":"The delay duration, in seconds, to wait after generating just-in-time credentials. Accepted range: 0-120 seconds\n","type":"number"},"secureAccessEnable":{"description":"Enable/Disable secure remote access, [true/false]\n","type":"string"},"secureAccessWeb":{"description":"Enable Web Secure Remote Access\n","type":"boolean"},"secureAccessWebBrowsing":{"description":"Secure browser via Akeyless's Secure Remote Access (SRA)\n","type":"boolean"},"secureAccessWebProxy":{"description":"Web-Proxy via Akeyless's Secure Remote Access (SRA)\n","type":"boolean"},"tags":{"description":"Add tags attached to this object\n","items":{"type":"string"},"type":"array"},"targetName":{"description":"Target name\n","type":"string"},"useGwServiceAccount":{"description":"Use the GW's service account\n","type":"boolean"},"userTtl":{"description":"User TTL\n","type":"string"}},"type":"object"},"type":"object"},"akeyless:index/dynamicSecretLdap:DynamicSecretLdap":{"description":"LDAP dynamic secret resource\n","inputProperties":{"bindDn":{"description":"Bind DN\n","type":"string"},"bindDnPassword":{"description":"Bind DN Password\n","secret":true,"type":"string"},"customUsernameTemplate":{"description":"Customize how temporary usernames are generated using go template\n","type":"string"},"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"string"},"dynamicSecretLdapId":{"description":"The ID of this resource.\n","type":"string"},"externalUsername":{"description":"Externally provided username [true/false]\n","type":"string"},"fixedUserClaimKeyname":{"description":"For externally provided users, denotes the key-name of IdP claim to extract the username from (relevant only for external-username=true)\n","type":"string"},"groupDn":{"description":"Group DN which the temporary user should be added\n","type":"string"},"hostProvider":{"description":"Host provider type [explicit/target], Default Host provider is explicit, Relevant only for Secure Remote Access of ssh cert issuer, ldap rotated secret and ldap dynamic secret\n","type":"string"},"itemCustomFields":{"additionalProperties":{"type":"string"},"description":"Additional custom fields to associate with the item\n","type":"object"},"ldapCaCert":{"description":"CA Certificate File Content\n","type":"string"},"ldapUrl":{"description":"LDAP Server URL\n","type":"string"},"name":{"description":"Dynamic secret name\n","type":"string"},"passwordLength":{"description":"The length of the password to be generated\n","type":"string"},"producerEncryptionKeyName":{"description":"Dynamic producer encryption key\n","type":"string"},"providerType":{"description":"Provider type\n","type":"string"},"secureAccessCertificateIssuer":{"description":"Path to the SSH Certificate Issuer for your Akeyless Secure Access\n","type":"string"},"secureAccessDelay":{"description":"The delay duration, in seconds, to wait after generating just-in-time credentials. Accepted range: 0-120 seconds\n","type":"number"},"secureAccessEnable":{"description":"Enable/Disable secure remote access [true/false]\n","type":"string"},"secureAccessHosts":{"description":"Target servers for connections (In case of Linked Target association, host(s) will inherit Linked Target hosts - Relevant only for Dynamic Secrets/producers)\n","items":{"type":"string"},"type":"array"},"secureAccessRdGatewayServer":{"description":"RD Gateway server\n","type":"string"},"secureAccessRdpDomain":{"description":"Required when the Dynamic Secret is used for a domain user\n","type":"string"},"tags":{"description":"Add tags attached to this object\n","items":{"type":"string"},"type":"array"},"targetName":{"description":"Target name\n","type":"string"},"targets":{"description":"A list of linked targets to be associated, Relevant only for Secure Remote Access for ssh cert issuer, ldap rotated secret and ldap dynamic secret, To specify multiple targets use argument multiple times\n","items":{"type":"string"},"type":"array"},"tokenExpiration":{"description":"Token expiration\n","type":"string"},"userAttribute":{"description":"User Attribute\n","type":"string"},"userDn":{"description":"User DN\n","type":"string"},"userTtl":{"description":"User TTL\n","type":"string"}},"properties":{"bindDn":{"description":"Bind DN\n","type":"string"},"bindDnPassword":{"description":"Bind DN Password\n","secret":true,"type":"string"},"customUsernameTemplate":{"description":"Customize how temporary usernames are generated using go template\n","type":"string"},"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"string"},"dynamicSecretLdapId":{"description":"The ID of this resource.\n","type":"string"},"externalUsername":{"description":"Externally provided username [true/false]\n","type":"string"},"fixedUserClaimKeyname":{"description":"For externally provided users, denotes the key-name of IdP claim to extract the username from (relevant only for external-username=true)\n","type":"string"},"groupDn":{"description":"Group DN which the temporary user should be added\n","type":"string"},"hostProvider":{"description":"Host provider type [explicit/target], Default Host provider is explicit, Relevant only for Secure Remote Access of ssh cert issuer, ldap rotated secret and ldap dynamic secret\n","type":"string"},"itemCustomFields":{"additionalProperties":{"type":"string"},"description":"Additional custom fields to associate with the item\n","type":"object"},"ldapCaCert":{"description":"CA Certificate File Content\n","type":"string"},"ldapUrl":{"description":"LDAP Server URL\n","type":"string"},"name":{"description":"Dynamic secret name\n","type":"string"},"passwordLength":{"description":"The length of the password to be generated\n","type":"string"},"producerEncryptionKeyName":{"description":"Dynamic producer encryption key\n","type":"string"},"providerType":{"description":"Provider type\n","type":"string"},"secureAccessCertificateIssuer":{"description":"Path to the SSH Certificate Issuer for your Akeyless Secure Access\n","type":"string"},"secureAccessDelay":{"description":"The delay duration, in seconds, to wait after generating just-in-time credentials. Accepted range: 0-120 seconds\n","type":"number"},"secureAccessEnable":{"description":"Enable/Disable secure remote access [true/false]\n","type":"string"},"secureAccessHosts":{"description":"Target servers for connections (In case of Linked Target association, host(s) will inherit Linked Target hosts - Relevant only for Dynamic Secrets/producers)\n","items":{"type":"string"},"type":"array"},"secureAccessRdGatewayServer":{"description":"RD Gateway server\n","type":"string"},"secureAccessRdpDomain":{"description":"Required when the Dynamic Secret is used for a domain user\n","type":"string"},"tags":{"description":"Add tags attached to this object\n","items":{"type":"string"},"type":"array"},"targetName":{"description":"Target name\n","type":"string"},"targets":{"description":"A list of linked targets to be associated, Relevant only for Secure Remote Access for ssh cert issuer, ldap rotated secret and ldap dynamic secret, To specify multiple targets use argument multiple times\n","items":{"type":"string"},"type":"array"},"tokenExpiration":{"description":"Token expiration\n","type":"string"},"userAttribute":{"description":"User Attribute\n","type":"string"},"userDn":{"description":"User DN\n","type":"string"},"userTtl":{"description":"User TTL\n","type":"string"}},"required":["dynamicSecretLdapId","name","producerEncryptionKeyName"],"stateInputs":{"description":"Input properties used for looking up and filtering DynamicSecretLdap resources.\n","properties":{"bindDn":{"description":"Bind DN\n","type":"string"},"bindDnPassword":{"description":"Bind DN Password\n","secret":true,"type":"string"},"customUsernameTemplate":{"description":"Customize how temporary usernames are generated using go template\n","type":"string"},"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"string"},"dynamicSecretLdapId":{"description":"The ID of this resource.\n","type":"string"},"externalUsername":{"description":"Externally provided username [true/false]\n","type":"string"},"fixedUserClaimKeyname":{"description":"For externally provided users, denotes the key-name of IdP claim to extract the username from (relevant only for external-username=true)\n","type":"string"},"groupDn":{"description":"Group DN which the temporary user should be added\n","type":"string"},"hostProvider":{"description":"Host provider type [explicit/target], Default Host provider is explicit, Relevant only for Secure Remote Access of ssh cert issuer, ldap rotated secret and ldap dynamic secret\n","type":"string"},"itemCustomFields":{"additionalProperties":{"type":"string"},"description":"Additional custom fields to associate with the item\n","type":"object"},"ldapCaCert":{"description":"CA Certificate File Content\n","type":"string"},"ldapUrl":{"description":"LDAP Server URL\n","type":"string"},"name":{"description":"Dynamic secret name\n","type":"string"},"passwordLength":{"description":"The length of the password to be generated\n","type":"string"},"producerEncryptionKeyName":{"description":"Dynamic producer encryption key\n","type":"string"},"providerType":{"description":"Provider type\n","type":"string"},"secureAccessCertificateIssuer":{"description":"Path to the SSH Certificate Issuer for your Akeyless Secure Access\n","type":"string"},"secureAccessDelay":{"description":"The delay duration, in seconds, to wait after generating just-in-time credentials. Accepted range: 0-120 seconds\n","type":"number"},"secureAccessEnable":{"description":"Enable/Disable secure remote access [true/false]\n","type":"string"},"secureAccessHosts":{"description":"Target servers for connections (In case of Linked Target association, host(s) will inherit Linked Target hosts - Relevant only for Dynamic Secrets/producers)\n","items":{"type":"string"},"type":"array"},"secureAccessRdGatewayServer":{"description":"RD Gateway server\n","type":"string"},"secureAccessRdpDomain":{"description":"Required when the Dynamic Secret is used for a domain user\n","type":"string"},"tags":{"description":"Add tags attached to this object\n","items":{"type":"string"},"type":"array"},"targetName":{"description":"Target name\n","type":"string"},"targets":{"description":"A list of linked targets to be associated, Relevant only for Secure Remote Access for ssh cert issuer, ldap rotated secret and ldap dynamic secret, To specify multiple targets use argument multiple times\n","items":{"type":"string"},"type":"array"},"tokenExpiration":{"description":"Token expiration\n","type":"string"},"userAttribute":{"description":"User Attribute\n","type":"string"},"userDn":{"description":"User DN\n","type":"string"},"userTtl":{"description":"User TTL\n","type":"string"}},"type":"object"},"type":"object"},"akeyless:index/dynamicSecretMongodb:DynamicSecretMongodb":{"description":"Mongo DB dynamic secret resource\n","inputProperties":{"customUsernameTemplate":{"description":"Customize how temporary usernames are generated using go template\n","type":"string"},"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"dynamicSecretMongodbId":{"description":"The ID of this resource.\n","type":"string"},"encryptionKeyName":{"description":"Encrypt producer with following key\n","type":"string"},"itemCustomFields":{"additionalProperties":{"type":"string"},"description":"Additional custom fields to associate with the item\n","type":"object"},"mongodbAtlasApiPrivateKey":{"description":"MongoDB Atlas private key\n","secret":true,"type":"string"},"mongodbAtlasApiPublicKey":{"description":"MongoDB Atlas public key\n","type":"string"},"mongodbAtlasProjectId":{"description":"MongoDB Atlas project ID\n","type":"string"},"mongodbCustomData":{"description":"MongoDB custom data\n","type":"string"},"mongodbDefaultAuthDb":{"description":"MongoDB server default authentication database\n","type":"string"},"mongodbHostPort":{"description":"MongoDB server host and port\n","type":"string"},"mongodbName":{"description":"MongoDB Name\n","type":"string"},"mongodbPassword":{"description":"MongoDB server password. You will prompted to provide a password if it will not appear in CLI parameters\n","secret":true,"type":"string"},"mongodbRoles":{"description":"MongoDB Roles\n","type":"string"},"mongodbScopes":{"description":"MongoDB Scopes (Atlas only)\n","type":"string"},"mongodbServerUri":{"description":"MongoDB server URI\n","type":"string"},"mongodbUriOptions":{"description":"MongoDB server URI options\n","type":"string"},"mongodbUsername":{"description":"MongoDB server username\n","type":"string"},"name":{"description":"Dynamic secret name\n","type":"string"},"passwordLength":{"description":"The length of the password to be generated\n","type":"string"},"secureAccessBastionIssuer":{"deprecationMessage":"Deprecated","description":"Path to the SSH Certificate Issuer for your Akeyless Bastion\n","type":"string"},"secureAccessCertificateIssuer":{"description":"Path to the SSH Certificate Issuer for your Akeyless Secure Access\n","type":"string"},"secureAccessDbName":{"description":"The DB name\n","type":"string"},"secureAccessDelay":{"description":"The delay duration, in seconds, to wait after generating just-in-time credentials. Accepted range: 0-120 seconds\n","type":"number"},"secureAccessEnable":{"description":"Enable/Disable secure remote access, [true/false]\n","type":"string"},"secureAccessHosts":{"description":"Target DB servers for connections (In case of Linked Target association, host(s) will inherit Linked Target hosts)\n","items":{"type":"string"},"type":"array"},"secureAccessWeb":{"description":"Enable Web Secure Remote Access\n","type":"boolean"},"tags":{"description":"Add tags attached to this object\n","items":{"type":"string"},"type":"array"},"targetName":{"description":"Target name\n","type":"string"},"userTtl":{"description":"User TTL (e.g. 60s, 60m, 60h)\n","type":"string"}},"properties":{"customUsernameTemplate":{"description":"Customize how temporary usernames are generated using go template\n","type":"string"},"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"dynamicSecretMongodbId":{"description":"The ID of this resource.\n","type":"string"},"encryptionKeyName":{"description":"Encrypt producer with following key\n","type":"string"},"itemCustomFields":{"additionalProperties":{"type":"string"},"description":"Additional custom fields to associate with the item\n","type":"object"},"mongodbAtlasApiPrivateKey":{"description":"MongoDB Atlas private key\n","secret":true,"type":"string"},"mongodbAtlasApiPublicKey":{"description":"MongoDB Atlas public key\n","type":"string"},"mongodbAtlasProjectId":{"description":"MongoDB Atlas project ID\n","type":"string"},"mongodbCustomData":{"description":"MongoDB custom data\n","type":"string"},"mongodbDefaultAuthDb":{"description":"MongoDB server default authentication database\n","type":"string"},"mongodbHostPort":{"description":"MongoDB server host and port\n","type":"string"},"mongodbName":{"description":"MongoDB Name\n","type":"string"},"mongodbPassword":{"description":"MongoDB server password. You will prompted to provide a password if it will not appear in CLI parameters\n","secret":true,"type":"string"},"mongodbRoles":{"description":"MongoDB Roles\n","type":"string"},"mongodbScopes":{"description":"MongoDB Scopes (Atlas only)\n","type":"string"},"mongodbServerUri":{"description":"MongoDB server URI\n","type":"string"},"mongodbUriOptions":{"description":"MongoDB server URI options\n","type":"string"},"mongodbUsername":{"description":"MongoDB server username\n","type":"string"},"name":{"description":"Dynamic secret name\n","type":"string"},"passwordLength":{"description":"The length of the password to be generated\n","type":"string"},"secureAccessBastionIssuer":{"deprecationMessage":"Deprecated","description":"Path to the SSH Certificate Issuer for your Akeyless Bastion\n","type":"string"},"secureAccessCertificateIssuer":{"description":"Path to the SSH Certificate Issuer for your Akeyless Secure Access\n","type":"string"},"secureAccessDbName":{"description":"The DB name\n","type":"string"},"secureAccessDelay":{"description":"The delay duration, in seconds, to wait after generating just-in-time credentials. Accepted range: 0-120 seconds\n","type":"number"},"secureAccessEnable":{"description":"Enable/Disable secure remote access, [true/false]\n","type":"string"},"secureAccessHosts":{"description":"Target DB servers for connections (In case of Linked Target association, host(s) will inherit Linked Target hosts)\n","items":{"type":"string"},"type":"array"},"secureAccessWeb":{"description":"Enable Web Secure Remote Access\n","type":"boolean"},"tags":{"description":"Add tags attached to this object\n","items":{"type":"string"},"type":"array"},"targetName":{"description":"Target name\n","type":"string"},"userTtl":{"description":"User TTL (e.g. 60s, 60m, 60h)\n","type":"string"}},"required":["dynamicSecretMongodbId","encryptionKeyName","name","secureAccessDbName"],"stateInputs":{"description":"Input properties used for looking up and filtering DynamicSecretMongodb resources.\n","properties":{"customUsernameTemplate":{"description":"Customize how temporary usernames are generated using go template\n","type":"string"},"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"dynamicSecretMongodbId":{"description":"The ID of this resource.\n","type":"string"},"encryptionKeyName":{"description":"Encrypt producer with following key\n","type":"string"},"itemCustomFields":{"additionalProperties":{"type":"string"},"description":"Additional custom fields to associate with the item\n","type":"object"},"mongodbAtlasApiPrivateKey":{"description":"MongoDB Atlas private key\n","secret":true,"type":"string"},"mongodbAtlasApiPublicKey":{"description":"MongoDB Atlas public key\n","type":"string"},"mongodbAtlasProjectId":{"description":"MongoDB Atlas project ID\n","type":"string"},"mongodbCustomData":{"description":"MongoDB custom data\n","type":"string"},"mongodbDefaultAuthDb":{"description":"MongoDB server default authentication database\n","type":"string"},"mongodbHostPort":{"description":"MongoDB server host and port\n","type":"string"},"mongodbName":{"description":"MongoDB Name\n","type":"string"},"mongodbPassword":{"description":"MongoDB server password. You will prompted to provide a password if it will not appear in CLI parameters\n","secret":true,"type":"string"},"mongodbRoles":{"description":"MongoDB Roles\n","type":"string"},"mongodbScopes":{"description":"MongoDB Scopes (Atlas only)\n","type":"string"},"mongodbServerUri":{"description":"MongoDB server URI\n","type":"string"},"mongodbUriOptions":{"description":"MongoDB server URI options\n","type":"string"},"mongodbUsername":{"description":"MongoDB server username\n","type":"string"},"name":{"description":"Dynamic secret name\n","type":"string"},"passwordLength":{"description":"The length of the password to be generated\n","type":"string"},"secureAccessBastionIssuer":{"deprecationMessage":"Deprecated","description":"Path to the SSH Certificate Issuer for your Akeyless Bastion\n","type":"string"},"secureAccessCertificateIssuer":{"description":"Path to the SSH Certificate Issuer for your Akeyless Secure Access\n","type":"string"},"secureAccessDbName":{"description":"The DB name\n","type":"string"},"secureAccessDelay":{"description":"The delay duration, in seconds, to wait after generating just-in-time credentials. Accepted range: 0-120 seconds\n","type":"number"},"secureAccessEnable":{"description":"Enable/Disable secure remote access, [true/false]\n","type":"string"},"secureAccessHosts":{"description":"Target DB servers for connections (In case of Linked Target association, host(s) will inherit Linked Target hosts)\n","items":{"type":"string"},"type":"array"},"secureAccessWeb":{"description":"Enable Web Secure Remote Access\n","type":"boolean"},"tags":{"description":"Add tags attached to this object\n","items":{"type":"string"},"type":"array"},"targetName":{"description":"Target name\n","type":"string"},"userTtl":{"description":"User TTL (e.g. 60s, 60m, 60h)\n","type":"string"}},"type":"object"},"type":"object"},"akeyless:index/dynamicSecretMssql:DynamicSecretMssql":{"description":"Microsoft SQL Server dynamic secret resource\n","inputProperties":{"customUsernameTemplate":{"description":"Customize how temporary usernames are generated using go template\n","type":"string"},"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"dynamicSecretMssqlId":{"description":"The ID of this resource.\n","type":"string"},"encryptionKeyName":{"description":"Encrypt dynamic secret details with following key\n","type":"string"},"itemCustomFields":{"additionalProperties":{"type":"string"},"description":"Additional custom fields to associate with the item\n","type":"object"},"mssqlAllowedDbNames":{"description":"CSV of allowed DB names for runtime selection when getting the secret value. Empty => use target DB only; \"*\" => any DB allowed; One or more names => user must choose from this list\n","type":"string"},"mssqlCreateStatements":{"description":"MSSQL Creation statements\n","type":"string"},"mssqlDbname":{"description":"MSSQL Name\n","type":"string"},"mssqlHost":{"description":"MSSQL Host\n","type":"string"},"mssqlPassword":{"description":"MSSQL Password\n","secret":true,"type":"string"},"mssqlPort":{"description":"MSSQL Port\n","type":"string"},"mssqlRevocationStatements":{"description":"MSSQL Revocation statements\n","type":"string"},"mssqlUsername":{"description":"MSSQL Username\n","type":"string"},"name":{"description":"Dynamic secret name\n","type":"string"},"passwordLength":{"description":"The length of the password to be generated\n","type":"string"},"secureAccessBastionIssuer":{"deprecationMessage":"Deprecated","description":"Path to the SSH Certificate Issuer for your Akeyless Bastion\n","type":"string"},"secureAccessCertificateIssuer":{"description":"Path to the SSH Certificate Issuer for your Akeyless Secure Access\n","type":"string"},"secureAccessDbName":{"description":"The DB Name\n","type":"string"},"secureAccessDbSchema":{"description":"The db schema\n","type":"string"},"secureAccessDelay":{"description":"The delay duration, in seconds, to wait after generating just-in-time credentials. Accepted range: 0-120 seconds\n","type":"number"},"secureAccessEnable":{"description":"Enable/Disable secure remote access, [true/false]\n","type":"string"},"secureAccessHosts":{"description":"Target DB servers for connections (In case of Linked Target association, host(s) will inherit Linked Target hosts)\n","items":{"type":"string"},"type":"array"},"secureAccessWeb":{"description":"Enable Web Secure Remote Access\n","type":"boolean"},"tags":{"description":"List of the tags attached to this secret. To specify multiple tags use argument multiple times: -t Tag1 -t Tag2\n","items":{"type":"string"},"type":"array"},"targetName":{"description":"Name of existing target to use in dynamic secret creation\n","type":"string"},"userTtl":{"description":"User TTL\n","type":"string"}},"properties":{"customUsernameTemplate":{"description":"Customize how temporary usernames are generated using go template\n","type":"string"},"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"dynamicSecretMssqlId":{"description":"The ID of this resource.\n","type":"string"},"encryptionKeyName":{"description":"Encrypt dynamic secret details with following key\n","type":"string"},"itemCustomFields":{"additionalProperties":{"type":"string"},"description":"Additional custom fields to associate with the item\n","type":"object"},"mssqlAllowedDbNames":{"description":"CSV of allowed DB names for runtime selection when getting the secret value. Empty => use target DB only; \"*\" => any DB allowed; One or more names => user must choose from this list\n","type":"string"},"mssqlCreateStatements":{"description":"MSSQL Creation statements\n","type":"string"},"mssqlDbname":{"description":"MSSQL Name\n","type":"string"},"mssqlHost":{"description":"MSSQL Host\n","type":"string"},"mssqlPassword":{"description":"MSSQL Password\n","secret":true,"type":"string"},"mssqlPort":{"description":"MSSQL Port\n","type":"string"},"mssqlRevocationStatements":{"description":"MSSQL Revocation statements\n","type":"string"},"mssqlUsername":{"description":"MSSQL Username\n","type":"string"},"name":{"description":"Dynamic secret name\n","type":"string"},"passwordLength":{"description":"The length of the password to be generated\n","type":"string"},"secureAccessBastionIssuer":{"deprecationMessage":"Deprecated","description":"Path to the SSH Certificate Issuer for your Akeyless Bastion\n","type":"string"},"secureAccessCertificateIssuer":{"description":"Path to the SSH Certificate Issuer for your Akeyless Secure Access\n","type":"string"},"secureAccessDbName":{"description":"The DB Name\n","type":"string"},"secureAccessDbSchema":{"description":"The db schema\n","type":"string"},"secureAccessDelay":{"description":"The delay duration, in seconds, to wait after generating just-in-time credentials. Accepted range: 0-120 seconds\n","type":"number"},"secureAccessEnable":{"description":"Enable/Disable secure remote access, [true/false]\n","type":"string"},"secureAccessHosts":{"description":"Target DB servers for connections (In case of Linked Target association, host(s) will inherit Linked Target hosts)\n","items":{"type":"string"},"type":"array"},"secureAccessWeb":{"description":"Enable Web Secure Remote Access\n","type":"boolean"},"tags":{"description":"List of the tags attached to this secret. To specify multiple tags use argument multiple times: -t Tag1 -t Tag2\n","items":{"type":"string"},"type":"array"},"targetName":{"description":"Name of existing target to use in dynamic secret creation\n","type":"string"},"userTtl":{"description":"User TTL\n","type":"string"}},"required":["dynamicSecretMssqlId","encryptionKeyName","name","secureAccessDbName"],"stateInputs":{"description":"Input properties used for looking up and filtering DynamicSecretMssql resources.\n","properties":{"customUsernameTemplate":{"description":"Customize how temporary usernames are generated using go template\n","type":"string"},"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"dynamicSecretMssqlId":{"description":"The ID of this resource.\n","type":"string"},"encryptionKeyName":{"description":"Encrypt dynamic secret details with following key\n","type":"string"},"itemCustomFields":{"additionalProperties":{"type":"string"},"description":"Additional custom fields to associate with the item\n","type":"object"},"mssqlAllowedDbNames":{"description":"CSV of allowed DB names for runtime selection when getting the secret value. Empty => use target DB only; \"*\" => any DB allowed; One or more names => user must choose from this list\n","type":"string"},"mssqlCreateStatements":{"description":"MSSQL Creation statements\n","type":"string"},"mssqlDbname":{"description":"MSSQL Name\n","type":"string"},"mssqlHost":{"description":"MSSQL Host\n","type":"string"},"mssqlPassword":{"description":"MSSQL Password\n","secret":true,"type":"string"},"mssqlPort":{"description":"MSSQL Port\n","type":"string"},"mssqlRevocationStatements":{"description":"MSSQL Revocation statements\n","type":"string"},"mssqlUsername":{"description":"MSSQL Username\n","type":"string"},"name":{"description":"Dynamic secret name\n","type":"string"},"passwordLength":{"description":"The length of the password to be generated\n","type":"string"},"secureAccessBastionIssuer":{"deprecationMessage":"Deprecated","description":"Path to the SSH Certificate Issuer for your Akeyless Bastion\n","type":"string"},"secureAccessCertificateIssuer":{"description":"Path to the SSH Certificate Issuer for your Akeyless Secure Access\n","type":"string"},"secureAccessDbName":{"description":"The DB Name\n","type":"string"},"secureAccessDbSchema":{"description":"The db schema\n","type":"string"},"secureAccessDelay":{"description":"The delay duration, in seconds, to wait after generating just-in-time credentials. Accepted range: 0-120 seconds\n","type":"number"},"secureAccessEnable":{"description":"Enable/Disable secure remote access, [true/false]\n","type":"string"},"secureAccessHosts":{"description":"Target DB servers for connections (In case of Linked Target association, host(s) will inherit Linked Target hosts)\n","items":{"type":"string"},"type":"array"},"secureAccessWeb":{"description":"Enable Web Secure Remote Access\n","type":"boolean"},"tags":{"description":"List of the tags attached to this secret. To specify multiple tags use argument multiple times: -t Tag1 -t Tag2\n","items":{"type":"string"},"type":"array"},"targetName":{"description":"Name of existing target to use in dynamic secret creation\n","type":"string"},"userTtl":{"description":"User TTL\n","type":"string"}},"type":"object"},"type":"object"},"akeyless:index/dynamicSecretMysql:DynamicSecretMysql":{"description":"MySQL dynamic secret resource\n","inputProperties":{"customUsernameTemplate":{"description":"Customize how temporary usernames are generated using go template\n","type":"string"},"dbServerCertificates":{"description":"(Optional) DB server certificates\n","type":"string"},"dbServerName":{"description":"(Optional) Server name for certificate verification\n","type":"string"},"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"dynamicSecretMysqlId":{"description":"The ID of this resource.\n","type":"string"},"encryptionKeyName":{"description":"Dynamic producer encryption key\n","type":"string"},"itemCustomFields":{"additionalProperties":{"type":"string"},"description":"Additional custom fields to associate with the item\n","type":"object"},"mysqlCreationStatements":{"description":"MySQL Creation Statements\n","type":"string"},"mysqlDbname":{"description":"MySQL DB name\n","type":"string"},"mysqlHost":{"description":"MySQL Host\n","type":"string"},"mysqlPassword":{"description":"MySQL password\n","secret":true,"type":"string"},"mysqlPort":{"description":"MySQL port\n","type":"string"},"mysqlRevocationStatements":{"description":"MySQL Revocation Statements\n","type":"string"},"mysqlUsername":{"description":"MySQL Username\n","type":"string"},"name":{"description":"Dynamic secret name\n","type":"string"},"passwordLength":{"description":"The length of the password to be generated\n","type":"string"},"secureAccessBastionIssuer":{"deprecationMessage":"Deprecated","description":"Path to the SSH Certificate Issuer for your Akeyless Bastion\n","type":"string"},"secureAccessCertificateIssuer":{"description":"Path to the SSH Certificate Issuer for your Akeyless Secure Access\n","type":"string"},"secureAccessDbName":{"description":"The DB name (relevant only for DB Dynamic-Secret)\n","type":"string"},"secureAccessDelay":{"description":"The delay duration, in seconds, to wait after generating just-in-time credentials. Accepted range: 0-120 seconds\n","type":"number"},"secureAccessEnable":{"description":"Enable/Disable secure remote access, [true/false]\n","type":"string"},"secureAccessHosts":{"description":"Target DB servers for connections (In case of Linked Target association, host(s) will inherit Linked Target hosts)\n","items":{"type":"string"},"type":"array"},"secureAccessWeb":{"description":"Enable Web Secure Remote Access\n","type":"boolean"},"ssl":{"description":"Enable/Disable SSL [true/false]\n","type":"boolean"},"sslCertificate":{"description":"SSL connection certificate\n","type":"string"},"tags":{"description":"Add tags attached to this object\n","items":{"type":"string"},"type":"array"},"targetName":{"description":"Target name\n","type":"string"},"userTtl":{"description":"User TTL\n","type":"string"}},"properties":{"customUsernameTemplate":{"description":"Customize how temporary usernames are generated using go template\n","type":"string"},"dbServerCertificates":{"description":"(Optional) DB server certificates\n","type":"string"},"dbServerName":{"description":"(Optional) Server name for certificate verification\n","type":"string"},"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"dynamicSecretMysqlId":{"description":"The ID of this resource.\n","type":"string"},"encryptionKeyName":{"description":"Dynamic producer encryption key\n","type":"string"},"itemCustomFields":{"additionalProperties":{"type":"string"},"description":"Additional custom fields to associate with the item\n","type":"object"},"mysqlCreationStatements":{"description":"MySQL Creation Statements\n","type":"string"},"mysqlDbname":{"description":"MySQL DB name\n","type":"string"},"mysqlHost":{"description":"MySQL Host\n","type":"string"},"mysqlPassword":{"description":"MySQL password\n","secret":true,"type":"string"},"mysqlPort":{"description":"MySQL port\n","type":"string"},"mysqlRevocationStatements":{"description":"MySQL Revocation Statements\n","type":"string"},"mysqlUsername":{"description":"MySQL Username\n","type":"string"},"name":{"description":"Dynamic secret name\n","type":"string"},"passwordLength":{"description":"The length of the password to be generated\n","type":"string"},"secureAccessBastionIssuer":{"deprecationMessage":"Deprecated","description":"Path to the SSH Certificate Issuer for your Akeyless Bastion\n","type":"string"},"secureAccessCertificateIssuer":{"description":"Path to the SSH Certificate Issuer for your Akeyless Secure Access\n","type":"string"},"secureAccessDbName":{"description":"The DB name (relevant only for DB Dynamic-Secret)\n","type":"string"},"secureAccessDelay":{"description":"The delay duration, in seconds, to wait after generating just-in-time credentials. Accepted range: 0-120 seconds\n","type":"number"},"secureAccessEnable":{"description":"Enable/Disable secure remote access, [true/false]\n","type":"string"},"secureAccessHosts":{"description":"Target DB servers for connections (In case of Linked Target association, host(s) will inherit Linked Target hosts)\n","items":{"type":"string"},"type":"array"},"secureAccessWeb":{"description":"Enable Web Secure Remote Access\n","type":"boolean"},"ssl":{"description":"Enable/Disable SSL [true/false]\n","type":"boolean"},"sslCertificate":{"description":"SSL connection certificate\n","type":"string"},"tags":{"description":"Add tags attached to this object\n","items":{"type":"string"},"type":"array"},"targetName":{"description":"Target name\n","type":"string"},"userTtl":{"description":"User TTL\n","type":"string"}},"required":["dynamicSecretMysqlId","encryptionKeyName","name","secureAccessDbName"],"stateInputs":{"description":"Input properties used for looking up and filtering DynamicSecretMysql resources.\n","properties":{"customUsernameTemplate":{"description":"Customize how temporary usernames are generated using go template\n","type":"string"},"dbServerCertificates":{"description":"(Optional) DB server certificates\n","type":"string"},"dbServerName":{"description":"(Optional) Server name for certificate verification\n","type":"string"},"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"dynamicSecretMysqlId":{"description":"The ID of this resource.\n","type":"string"},"encryptionKeyName":{"description":"Dynamic producer encryption key\n","type":"string"},"itemCustomFields":{"additionalProperties":{"type":"string"},"description":"Additional custom fields to associate with the item\n","type":"object"},"mysqlCreationStatements":{"description":"MySQL Creation Statements\n","type":"string"},"mysqlDbname":{"description":"MySQL DB name\n","type":"string"},"mysqlHost":{"description":"MySQL Host\n","type":"string"},"mysqlPassword":{"description":"MySQL password\n","secret":true,"type":"string"},"mysqlPort":{"description":"MySQL port\n","type":"string"},"mysqlRevocationStatements":{"description":"MySQL Revocation Statements\n","type":"string"},"mysqlUsername":{"description":"MySQL Username\n","type":"string"},"name":{"description":"Dynamic secret name\n","type":"string"},"passwordLength":{"description":"The length of the password to be generated\n","type":"string"},"secureAccessBastionIssuer":{"deprecationMessage":"Deprecated","description":"Path to the SSH Certificate Issuer for your Akeyless Bastion\n","type":"string"},"secureAccessCertificateIssuer":{"description":"Path to the SSH Certificate Issuer for your Akeyless Secure Access\n","type":"string"},"secureAccessDbName":{"description":"The DB name (relevant only for DB Dynamic-Secret)\n","type":"string"},"secureAccessDelay":{"description":"The delay duration, in seconds, to wait after generating just-in-time credentials. Accepted range: 0-120 seconds\n","type":"number"},"secureAccessEnable":{"description":"Enable/Disable secure remote access, [true/false]\n","type":"string"},"secureAccessHosts":{"description":"Target DB servers for connections (In case of Linked Target association, host(s) will inherit Linked Target hosts)\n","items":{"type":"string"},"type":"array"},"secureAccessWeb":{"description":"Enable Web Secure Remote Access\n","type":"boolean"},"ssl":{"description":"Enable/Disable SSL [true/false]\n","type":"boolean"},"sslCertificate":{"description":"SSL connection certificate\n","type":"string"},"tags":{"description":"Add tags attached to this object\n","items":{"type":"string"},"type":"array"},"targetName":{"description":"Target name\n","type":"string"},"userTtl":{"description":"User TTL\n","type":"string"}},"type":"object"},"type":"object"},"akeyless:index/dynamicSecretOpenai:DynamicSecretOpenai":{"description":"OpenAI dynamic secret resource\n","inputProperties":{"customUsernameTemplate":{"description":"Customize how temporary usernames are generated using go template\n","type":"string"},"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"dynamicSecretOpenaiId":{"description":"The ID of this resource.\n","type":"string"},"itemCustomFields":{"additionalProperties":{"type":"string"},"description":"Additional custom fields to associate with the item\n","type":"object"},"name":{"description":"Dynamic secret name\n","type":"string"},"producerEncryptionKeyName":{"description":"Dynamic producer encryption key\n","type":"string"},"projectId":{"description":"Project ID\n","type":"string"},"tags":{"description":"Add tags attached to this object\n","items":{"type":"string"},"type":"array"},"targetName":{"description":"Target name\n","type":"string"},"userTtl":{"description":"User TTL\n","type":"string"}},"properties":{"customUsernameTemplate":{"description":"Customize how temporary usernames are generated using go template\n","type":"string"},"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"dynamicSecretOpenaiId":{"description":"The ID of this resource.\n","type":"string"},"itemCustomFields":{"additionalProperties":{"type":"string"},"description":"Additional custom fields to associate with the item\n","type":"object"},"name":{"description":"Dynamic secret name\n","type":"string"},"producerEncryptionKeyName":{"description":"Dynamic producer encryption key\n","type":"string"},"projectId":{"description":"Project ID\n","type":"string"},"tags":{"description":"Add tags attached to this object\n","items":{"type":"string"},"type":"array"},"targetName":{"description":"Target name\n","type":"string"},"userTtl":{"description":"User TTL\n","type":"string"}},"required":["dynamicSecretOpenaiId","name","producerEncryptionKeyName"],"stateInputs":{"description":"Input properties used for looking up and filtering DynamicSecretOpenai resources.\n","properties":{"customUsernameTemplate":{"description":"Customize how temporary usernames are generated using go template\n","type":"string"},"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"dynamicSecretOpenaiId":{"description":"The ID of this resource.\n","type":"string"},"itemCustomFields":{"additionalProperties":{"type":"string"},"description":"Additional custom fields to associate with the item\n","type":"object"},"name":{"description":"Dynamic secret name\n","type":"string"},"producerEncryptionKeyName":{"description":"Dynamic producer encryption key\n","type":"string"},"projectId":{"description":"Project ID\n","type":"string"},"tags":{"description":"Add tags attached to this object\n","items":{"type":"string"},"type":"array"},"targetName":{"description":"Target name\n","type":"string"},"userTtl":{"description":"User TTL\n","type":"string"}},"type":"object"},"type":"object"},"akeyless:index/dynamicSecretOracle:DynamicSecretOracle":{"description":"Oracle DB dynamic secret resource\n","inputProperties":{"customUsernameTemplate":{"description":"Customize how temporary usernames are generated using go template\n","type":"string"},"dbServerCertificates":{"description":"(Optional) DB server certificates\n","type":"string"},"dbServerName":{"description":"(Optional) Server name for certificate verification\n","type":"string"},"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"dynamicSecretOracleId":{"description":"The ID of this resource.\n","type":"string"},"encryptionKeyName":{"description":"Dynamic producer encryption key\n","type":"string"},"itemCustomFields":{"additionalProperties":{"type":"string"},"description":"Additional custom fields to associate with the item\n","type":"object"},"name":{"description":"Dynamic secret name\n","type":"string"},"oracleCreationStatements":{"description":"Oracle Creation statements\n","type":"string"},"oracleHost":{"description":"Oracle Host\n","type":"string"},"oraclePassword":{"description":"Oracle Password\n","type":"string"},"oraclePort":{"description":"Oracle Port\n","type":"string"},"oracleRevocationStatements":{"description":"Oracle Revocation statements\n","type":"string"},"oracleServiceName":{"description":"Oracle DB Name\n","type":"string"},"oracleUsername":{"description":"Oracle Username\n","type":"string"},"passwordLength":{"description":"The length of the password to be generated\n","type":"string"},"secureAccessCertificateIssuer":{"description":"Path to the SSH Certificate Issuer for your Akeyless Secure Access\n","type":"string"},"secureAccessEnable":{"description":"Enable/Disable secure remote access [true/false]\n","type":"string"},"secureAccessHosts":{"description":"Target DB servers for connections (In case of Linked Target association, host(s) will inherit Linked Target hosts)\n","items":{"type":"string"},"type":"array"},"secureAccessWeb":{"description":"Enable Web Secure Remote Access\n","type":"boolean"},"tags":{"description":"Add tags attached to this object\n","items":{"type":"string"},"type":"array"},"targetName":{"description":"Target name\n","type":"string"},"userTtl":{"description":"User TTL\n","type":"string"}},"properties":{"customUsernameTemplate":{"description":"Customize how temporary usernames are generated using go template\n","type":"string"},"dbServerCertificates":{"description":"(Optional) DB server certificates\n","type":"string"},"dbServerName":{"description":"(Optional) Server name for certificate verification\n","type":"string"},"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"dynamicSecretOracleId":{"description":"The ID of this resource.\n","type":"string"},"encryptionKeyName":{"description":"Dynamic producer encryption key\n","type":"string"},"itemCustomFields":{"additionalProperties":{"type":"string"},"description":"Additional custom fields to associate with the item\n","type":"object"},"name":{"description":"Dynamic secret name\n","type":"string"},"oracleCreationStatements":{"description":"Oracle Creation statements\n","type":"string"},"oracleHost":{"description":"Oracle Host\n","type":"string"},"oraclePassword":{"description":"Oracle Password\n","type":"string"},"oraclePort":{"description":"Oracle Port\n","type":"string"},"oracleRevocationStatements":{"description":"Oracle Revocation statements\n","type":"string"},"oracleServiceName":{"description":"Oracle DB Name\n","type":"string"},"oracleUsername":{"description":"Oracle Username\n","type":"string"},"passwordLength":{"description":"The length of the password to be generated\n","type":"string"},"secureAccessCertificateIssuer":{"description":"Path to the SSH Certificate Issuer for your Akeyless Secure Access\n","type":"string"},"secureAccessEnable":{"description":"Enable/Disable secure remote access [true/false]\n","type":"string"},"secureAccessHosts":{"description":"Target DB servers for connections (In case of Linked Target association, host(s) will inherit Linked Target hosts)\n","items":{"type":"string"},"type":"array"},"secureAccessWeb":{"description":"Enable Web Secure Remote Access\n","type":"boolean"},"tags":{"description":"Add tags attached to this object\n","items":{"type":"string"},"type":"array"},"targetName":{"description":"Target name\n","type":"string"},"userTtl":{"description":"User TTL\n","type":"string"}},"required":["dynamicSecretOracleId","encryptionKeyName","name"],"stateInputs":{"description":"Input properties used for looking up and filtering DynamicSecretOracle resources.\n","properties":{"customUsernameTemplate":{"description":"Customize how temporary usernames are generated using go template\n","type":"string"},"dbServerCertificates":{"description":"(Optional) DB server certificates\n","type":"string"},"dbServerName":{"description":"(Optional) Server name for certificate verification\n","type":"string"},"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"dynamicSecretOracleId":{"description":"The ID of this resource.\n","type":"string"},"encryptionKeyName":{"description":"Dynamic producer encryption key\n","type":"string"},"itemCustomFields":{"additionalProperties":{"type":"string"},"description":"Additional custom fields to associate with the item\n","type":"object"},"name":{"description":"Dynamic secret name\n","type":"string"},"oracleCreationStatements":{"description":"Oracle Creation statements\n","type":"string"},"oracleHost":{"description":"Oracle Host\n","type":"string"},"oraclePassword":{"description":"Oracle Password\n","type":"string"},"oraclePort":{"description":"Oracle Port\n","type":"string"},"oracleRevocationStatements":{"description":"Oracle Revocation statements\n","type":"string"},"oracleServiceName":{"description":"Oracle DB Name\n","type":"string"},"oracleUsername":{"description":"Oracle Username\n","type":"string"},"passwordLength":{"description":"The length of the password to be generated\n","type":"string"},"secureAccessCertificateIssuer":{"description":"Path to the SSH Certificate Issuer for your Akeyless Secure Access\n","type":"string"},"secureAccessEnable":{"description":"Enable/Disable secure remote access [true/false]\n","type":"string"},"secureAccessHosts":{"description":"Target DB servers for connections (In case of Linked Target association, host(s) will inherit Linked Target hosts)\n","items":{"type":"string"},"type":"array"},"secureAccessWeb":{"description":"Enable Web Secure Remote Access\n","type":"boolean"},"tags":{"description":"Add tags attached to this object\n","items":{"type":"string"},"type":"array"},"targetName":{"description":"Target name\n","type":"string"},"userTtl":{"description":"User TTL\n","type":"string"}},"type":"object"},"type":"object"},"akeyless:index/dynamicSecretPing:DynamicSecretPing":{"description":"Ping dynamic secret resource\n","inputProperties":{"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"string"},"dynamicSecretPingId":{"description":"The ID of this resource.\n","type":"string"},"itemCustomFields":{"additionalProperties":{"type":"string"},"description":"Additional custom fields to associate with the item\n","type":"object"},"name":{"description":"Dynamic secret name\n","type":"string"},"pingAdministrativePort":{"description":"Ping Federate administrative port\n","type":"string"},"pingAtmId":{"description":"Set a specific Access Token Management (ATM) instance for the created OAuth Client by providing the ATM Id. If no explicit value is given, the default pingfederate server ATM will be set.\n","type":"string"},"pingAuthorizationPort":{"description":"Ping Federate authorization port\n","type":"string"},"pingCertSubjectDn":{"description":"The subject DN of the client certificate. If no explicit value is given, the producer will create CA certificate and matched client certificate and return it as value. Used in conjunction with ping-issuer-dn (relevant for CLIENT*TLS*CERTIFICATE authentication method)\n","type":"string"},"pingClientAuthenticationType":{"description":"OAuth Client Authentication Type [CLIENT*SECRET, PRIVATE*KEY*JWT, CLIENT*TLS_CERTIFICATE]\n","type":"string"},"pingEnforceReplayPrevention":{"description":"Determines whether PingFederate requires a unique signed JWT from the client for each action (relevant for PRIVATE*KEY*JWT authentication method) [true/false]\n","type":"string"},"pingGrantTypes":{"description":"List of OAuth client grant types [IMPLICIT, AUTHORIZATION*CODE, CLIENT*CREDENTIALS, TOKEN*EXCHANGE, REFRESH*TOKEN, ASSERTION*GRANTS, PASSWORD, RESOURCE*OWNER*CREDENTIALS]. If no explicit value is given, AUTHORIZATION*CODE will be selected as default.\n","items":{"type":"string"},"type":"array"},"pingIssuerDn":{"description":"Issuer DN of trusted CA certificate that imported into Ping Federate server. You may select \"Trust Any\" to trust all the existing issuers in Ping Federate server. Used in conjunction with ping-cert-subject-dn (relevant for CLIENT*TLS*CERTIFICATE authentication method)\n","type":"string"},"pingJwks":{"description":"Base64-encoded JSON Web Key Set (JWKS). If no explicit value is given, the producer will create JWKs and matched signed JWT (Sign Algo: RS256) and return it as value (relevant for PRIVATE*KEY*JWT authentication method)\n","type":"string"},"pingJwksUrl":{"description":"The URL of the JSON Web Key Set (JWKS). If no explicit value is given, the producer will create JWKs and matched signed JWT and return it as value (relevant for PRIVATE*KEY*JWT authentication method)\n","type":"string"},"pingPassword":{"description":"Ping Federate privileged user password\n","secret":true,"type":"string"},"pingPrivilegedUser":{"description":"Ping Federate privileged user\n","type":"string"},"pingRedirectUris":{"description":"List of URIs to which the OAuth authorization server may redirect the resource owner's user agent after authorization is obtained. At least one redirection URI is required for the AUTHORIZATION_CODE and IMPLICIT grant types.\n","items":{"type":"string"},"type":"array"},"pingRestrictedScopes":{"description":"Limit the OAuth client to specific scopes list\n","items":{"type":"string"},"type":"array"},"pingSigningAlgo":{"description":"The signing algorithm that the client must use to sign its request objects [RS256,RS384,RS512,ES256,ES384,ES512,PS256,PS384,PS512] If no explicit value is given, the client can use any of the supported signing algorithms (relevant for PRIVATE*KEY*JWT authentication method)\n","type":"string"},"pingUrl":{"description":"Ping URL\n","type":"string"},"producerEncryptionKeyName":{"description":"Dynamic producer encryption key\n","type":"string"},"tags":{"description":"Add tags attached to this object\n","items":{"type":"string"},"type":"array"},"targetName":{"description":"Target name\n","type":"string"},"userTtl":{"description":"The time from dynamic secret creation to expiration.\n","type":"string"}},"properties":{"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"string"},"dynamicSecretPingId":{"description":"The ID of this resource.\n","type":"string"},"itemCustomFields":{"additionalProperties":{"type":"string"},"description":"Additional custom fields to associate with the item\n","type":"object"},"name":{"description":"Dynamic secret name\n","type":"string"},"pingAdministrativePort":{"description":"Ping Federate administrative port\n","type":"string"},"pingAtmId":{"description":"Set a specific Access Token Management (ATM) instance for the created OAuth Client by providing the ATM Id. If no explicit value is given, the default pingfederate server ATM will be set.\n","type":"string"},"pingAuthorizationPort":{"description":"Ping Federate authorization port\n","type":"string"},"pingCertSubjectDn":{"description":"The subject DN of the client certificate. If no explicit value is given, the producer will create CA certificate and matched client certificate and return it as value. Used in conjunction with ping-issuer-dn (relevant for CLIENT*TLS*CERTIFICATE authentication method)\n","type":"string"},"pingClientAuthenticationType":{"description":"OAuth Client Authentication Type [CLIENT*SECRET, PRIVATE*KEY*JWT, CLIENT*TLS_CERTIFICATE]\n","type":"string"},"pingEnforceReplayPrevention":{"description":"Determines whether PingFederate requires a unique signed JWT from the client for each action (relevant for PRIVATE*KEY*JWT authentication method) [true/false]\n","type":"string"},"pingGrantTypes":{"description":"List of OAuth client grant types [IMPLICIT, AUTHORIZATION*CODE, CLIENT*CREDENTIALS, TOKEN*EXCHANGE, REFRESH*TOKEN, ASSERTION*GRANTS, PASSWORD, RESOURCE*OWNER*CREDENTIALS]. If no explicit value is given, AUTHORIZATION*CODE will be selected as default.\n","items":{"type":"string"},"type":"array"},"pingIssuerDn":{"description":"Issuer DN of trusted CA certificate that imported into Ping Federate server. You may select \"Trust Any\" to trust all the existing issuers in Ping Federate server. Used in conjunction with ping-cert-subject-dn (relevant for CLIENT*TLS*CERTIFICATE authentication method)\n","type":"string"},"pingJwks":{"description":"Base64-encoded JSON Web Key Set (JWKS). If no explicit value is given, the producer will create JWKs and matched signed JWT (Sign Algo: RS256) and return it as value (relevant for PRIVATE*KEY*JWT authentication method)\n","type":"string"},"pingJwksUrl":{"description":"The URL of the JSON Web Key Set (JWKS). If no explicit value is given, the producer will create JWKs and matched signed JWT and return it as value (relevant for PRIVATE*KEY*JWT authentication method)\n","type":"string"},"pingPassword":{"description":"Ping Federate privileged user password\n","secret":true,"type":"string"},"pingPrivilegedUser":{"description":"Ping Federate privileged user\n","type":"string"},"pingRedirectUris":{"description":"List of URIs to which the OAuth authorization server may redirect the resource owner's user agent after authorization is obtained. At least one redirection URI is required for the AUTHORIZATION_CODE and IMPLICIT grant types.\n","items":{"type":"string"},"type":"array"},"pingRestrictedScopes":{"description":"Limit the OAuth client to specific scopes list\n","items":{"type":"string"},"type":"array"},"pingSigningAlgo":{"description":"The signing algorithm that the client must use to sign its request objects [RS256,RS384,RS512,ES256,ES384,ES512,PS256,PS384,PS512] If no explicit value is given, the client can use any of the supported signing algorithms (relevant for PRIVATE*KEY*JWT authentication method)\n","type":"string"},"pingUrl":{"description":"Ping URL\n","type":"string"},"producerEncryptionKeyName":{"description":"Dynamic producer encryption key\n","type":"string"},"tags":{"description":"Add tags attached to this object\n","items":{"type":"string"},"type":"array"},"targetName":{"description":"Target name\n","type":"string"},"userTtl":{"description":"The time from dynamic secret creation to expiration.\n","type":"string"}},"required":["dynamicSecretPingId","name","producerEncryptionKeyName"],"stateInputs":{"description":"Input properties used for looking up and filtering DynamicSecretPing resources.\n","properties":{"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"string"},"dynamicSecretPingId":{"description":"The ID of this resource.\n","type":"string"},"itemCustomFields":{"additionalProperties":{"type":"string"},"description":"Additional custom fields to associate with the item\n","type":"object"},"name":{"description":"Dynamic secret name\n","type":"string"},"pingAdministrativePort":{"description":"Ping Federate administrative port\n","type":"string"},"pingAtmId":{"description":"Set a specific Access Token Management (ATM) instance for the created OAuth Client by providing the ATM Id. If no explicit value is given, the default pingfederate server ATM will be set.\n","type":"string"},"pingAuthorizationPort":{"description":"Ping Federate authorization port\n","type":"string"},"pingCertSubjectDn":{"description":"The subject DN of the client certificate. If no explicit value is given, the producer will create CA certificate and matched client certificate and return it as value. Used in conjunction with ping-issuer-dn (relevant for CLIENT*TLS*CERTIFICATE authentication method)\n","type":"string"},"pingClientAuthenticationType":{"description":"OAuth Client Authentication Type [CLIENT*SECRET, PRIVATE*KEY*JWT, CLIENT*TLS_CERTIFICATE]\n","type":"string"},"pingEnforceReplayPrevention":{"description":"Determines whether PingFederate requires a unique signed JWT from the client for each action (relevant for PRIVATE*KEY*JWT authentication method) [true/false]\n","type":"string"},"pingGrantTypes":{"description":"List of OAuth client grant types [IMPLICIT, AUTHORIZATION*CODE, CLIENT*CREDENTIALS, TOKEN*EXCHANGE, REFRESH*TOKEN, ASSERTION*GRANTS, PASSWORD, RESOURCE*OWNER*CREDENTIALS]. If no explicit value is given, AUTHORIZATION*CODE will be selected as default.\n","items":{"type":"string"},"type":"array"},"pingIssuerDn":{"description":"Issuer DN of trusted CA certificate that imported into Ping Federate server. You may select \"Trust Any\" to trust all the existing issuers in Ping Federate server. Used in conjunction with ping-cert-subject-dn (relevant for CLIENT*TLS*CERTIFICATE authentication method)\n","type":"string"},"pingJwks":{"description":"Base64-encoded JSON Web Key Set (JWKS). If no explicit value is given, the producer will create JWKs and matched signed JWT (Sign Algo: RS256) and return it as value (relevant for PRIVATE*KEY*JWT authentication method)\n","type":"string"},"pingJwksUrl":{"description":"The URL of the JSON Web Key Set (JWKS). If no explicit value is given, the producer will create JWKs and matched signed JWT and return it as value (relevant for PRIVATE*KEY*JWT authentication method)\n","type":"string"},"pingPassword":{"description":"Ping Federate privileged user password\n","secret":true,"type":"string"},"pingPrivilegedUser":{"description":"Ping Federate privileged user\n","type":"string"},"pingRedirectUris":{"description":"List of URIs to which the OAuth authorization server may redirect the resource owner's user agent after authorization is obtained. At least one redirection URI is required for the AUTHORIZATION_CODE and IMPLICIT grant types.\n","items":{"type":"string"},"type":"array"},"pingRestrictedScopes":{"description":"Limit the OAuth client to specific scopes list\n","items":{"type":"string"},"type":"array"},"pingSigningAlgo":{"description":"The signing algorithm that the client must use to sign its request objects [RS256,RS384,RS512,ES256,ES384,ES512,PS256,PS384,PS512] If no explicit value is given, the client can use any of the supported signing algorithms (relevant for PRIVATE*KEY*JWT authentication method)\n","type":"string"},"pingUrl":{"description":"Ping URL\n","type":"string"},"producerEncryptionKeyName":{"description":"Dynamic producer encryption key\n","type":"string"},"tags":{"description":"Add tags attached to this object\n","items":{"type":"string"},"type":"array"},"targetName":{"description":"Target name\n","type":"string"},"userTtl":{"description":"The time from dynamic secret creation to expiration.\n","type":"string"}},"type":"object"},"type":"object"},"akeyless:index/dynamicSecretPostgresql:DynamicSecretPostgresql":{"description":"PostgreSQL dynamic secret resource\n","inputProperties":{"creationStatements":{"description":"PostgreSQL Creation statements\n","type":"string"},"customUsernameTemplate":{"description":"Customize how temporary usernames are generated using go template\n","type":"string"},"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"dynamicSecretPostgresqlId":{"description":"The ID of this resource.\n","type":"string"},"encryptionKeyName":{"description":"Dynamic producer encryption key\n","type":"string"},"itemCustomFields":{"additionalProperties":{"type":"string"},"description":"Additional custom fields to associate with the item\n","type":"object"},"name":{"description":"Dynamic secret name\n","type":"string"},"passwordLength":{"description":"The length of the password to be generated\n","type":"string"},"postgresqlDbName":{"description":"PostgreSQL DB Name\n","type":"string"},"postgresqlHost":{"description":"PostgreSQL Host\n","type":"string"},"postgresqlPassword":{"description":"PostgreSQL Password\n","secret":true,"type":"string"},"postgresqlPort":{"description":"PostgreSQL Port\n","type":"string"},"postgresqlUsername":{"description":"PostgreSQL Username\n","type":"string"},"revocationStatements":{"description":"PostgreSQL Revocation statements\n","type":"string"},"secureAccessBastionIssuer":{"deprecationMessage":"Deprecated","description":"Path to the SSH Certificate Issuer for your Akeyless Bastion\n","type":"string"},"secureAccessCertificateIssuer":{"description":"Path to the SSH Certificate Issuer for your Akeyless Secure Access\n","type":"string"},"secureAccessDbName":{"description":"The DB Name\n","type":"string"},"secureAccessDbSchema":{"description":"The db schema\n","type":"string"},"secureAccessDelay":{"description":"The delay duration, in seconds, to wait after generating just-in-time credentials. Accepted range: 0-120 seconds\n","type":"number"},"secureAccessEnable":{"description":"Enable/Disable secure remote access, [true/false]\n","type":"string"},"secureAccessHosts":{"description":"Target DB servers for connections (In case of Linked Target association, host(s) will inherit Linked Target hosts)\n","items":{"type":"string"},"type":"array"},"secureAccessWeb":{"description":"Enable Web Secure Remote Access\n","type":"boolean"},"ssl":{"description":"Enable/Disable SSL [true/false]\n","type":"boolean"},"tags":{"description":"Add tags attached to this object\n","items":{"type":"string"},"type":"array"},"targetName":{"description":"Target name\n","type":"string"},"userTtl":{"description":"User TTL\n","type":"string"}},"properties":{"creationStatements":{"description":"PostgreSQL Creation statements\n","type":"string"},"customUsernameTemplate":{"description":"Customize how temporary usernames are generated using go template\n","type":"string"},"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"dynamicSecretPostgresqlId":{"description":"The ID of this resource.\n","type":"string"},"encryptionKeyName":{"description":"Dynamic producer encryption key\n","type":"string"},"itemCustomFields":{"additionalProperties":{"type":"string"},"description":"Additional custom fields to associate with the item\n","type":"object"},"name":{"description":"Dynamic secret name\n","type":"string"},"passwordLength":{"description":"The length of the password to be generated\n","type":"string"},"postgresqlDbName":{"description":"PostgreSQL DB Name\n","type":"string"},"postgresqlHost":{"description":"PostgreSQL Host\n","type":"string"},"postgresqlPassword":{"description":"PostgreSQL Password\n","secret":true,"type":"string"},"postgresqlPort":{"description":"PostgreSQL Port\n","type":"string"},"postgresqlUsername":{"description":"PostgreSQL Username\n","type":"string"},"revocationStatements":{"description":"PostgreSQL Revocation statements\n","type":"string"},"secureAccessBastionIssuer":{"deprecationMessage":"Deprecated","description":"Path to the SSH Certificate Issuer for your Akeyless Bastion\n","type":"string"},"secureAccessCertificateIssuer":{"description":"Path to the SSH Certificate Issuer for your Akeyless Secure Access\n","type":"string"},"secureAccessDbName":{"description":"The DB Name\n","type":"string"},"secureAccessDbSchema":{"description":"The db schema\n","type":"string"},"secureAccessDelay":{"description":"The delay duration, in seconds, to wait after generating just-in-time credentials. Accepted range: 0-120 seconds\n","type":"number"},"secureAccessEnable":{"description":"Enable/Disable secure remote access, [true/false]\n","type":"string"},"secureAccessHosts":{"description":"Target DB servers for connections (In case of Linked Target association, host(s) will inherit Linked Target hosts)\n","items":{"type":"string"},"type":"array"},"secureAccessWeb":{"description":"Enable Web Secure Remote Access\n","type":"boolean"},"ssl":{"description":"Enable/Disable SSL [true/false]\n","type":"boolean"},"tags":{"description":"Add tags attached to this object\n","items":{"type":"string"},"type":"array"},"targetName":{"description":"Target name\n","type":"string"},"userTtl":{"description":"User TTL\n","type":"string"}},"required":["dynamicSecretPostgresqlId","encryptionKeyName","name","secureAccessDbName"],"stateInputs":{"description":"Input properties used for looking up and filtering DynamicSecretPostgresql resources.\n","properties":{"creationStatements":{"description":"PostgreSQL Creation statements\n","type":"string"},"customUsernameTemplate":{"description":"Customize how temporary usernames are generated using go template\n","type":"string"},"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"dynamicSecretPostgresqlId":{"description":"The ID of this resource.\n","type":"string"},"encryptionKeyName":{"description":"Dynamic producer encryption key\n","type":"string"},"itemCustomFields":{"additionalProperties":{"type":"string"},"description":"Additional custom fields to associate with the item\n","type":"object"},"name":{"description":"Dynamic secret name\n","type":"string"},"passwordLength":{"description":"The length of the password to be generated\n","type":"string"},"postgresqlDbName":{"description":"PostgreSQL DB Name\n","type":"string"},"postgresqlHost":{"description":"PostgreSQL Host\n","type":"string"},"postgresqlPassword":{"description":"PostgreSQL Password\n","secret":true,"type":"string"},"postgresqlPort":{"description":"PostgreSQL Port\n","type":"string"},"postgresqlUsername":{"description":"PostgreSQL Username\n","type":"string"},"revocationStatements":{"description":"PostgreSQL Revocation statements\n","type":"string"},"secureAccessBastionIssuer":{"deprecationMessage":"Deprecated","description":"Path to the SSH Certificate Issuer for your Akeyless Bastion\n","type":"string"},"secureAccessCertificateIssuer":{"description":"Path to the SSH Certificate Issuer for your Akeyless Secure Access\n","type":"string"},"secureAccessDbName":{"description":"The DB Name\n","type":"string"},"secureAccessDbSchema":{"description":"The db schema\n","type":"string"},"secureAccessDelay":{"description":"The delay duration, in seconds, to wait after generating just-in-time credentials. Accepted range: 0-120 seconds\n","type":"number"},"secureAccessEnable":{"description":"Enable/Disable secure remote access, [true/false]\n","type":"string"},"secureAccessHosts":{"description":"Target DB servers for connections (In case of Linked Target association, host(s) will inherit Linked Target hosts)\n","items":{"type":"string"},"type":"array"},"secureAccessWeb":{"description":"Enable Web Secure Remote Access\n","type":"boolean"},"ssl":{"description":"Enable/Disable SSL [true/false]\n","type":"boolean"},"tags":{"description":"Add tags attached to this object\n","items":{"type":"string"},"type":"array"},"targetName":{"description":"Target name\n","type":"string"},"userTtl":{"description":"User TTL\n","type":"string"}},"type":"object"},"type":"object"},"akeyless:index/dynamicSecretRabbitmq:DynamicSecretRabbitmq":{"description":"RabbitMQ dynamic secret resource\n","inputProperties":{"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"string"},"dynamicSecretRabbitmqId":{"description":"The ID of this resource.\n","type":"string"},"itemCustomFields":{"additionalProperties":{"type":"string"},"description":"Additional custom fields to associate with the item\n","type":"object"},"name":{"description":"Dynamic secret name\n","type":"string"},"passwordLength":{"description":"The length of the password to be generated\n","type":"string"},"producerEncryptionKeyName":{"description":"Dynamic producer encryption key\n","type":"string"},"rabbitmqAdminPwd":{"description":"RabbitMQ Admin password\n","secret":true,"type":"string"},"rabbitmqAdminUser":{"description":"RabbitMQ Admin User\n","type":"string"},"rabbitmqServerUri":{"description":"Server URI\n","type":"string"},"rabbitmqUserConfPermission":{"description":"User configuration permission\n","type":"string"},"rabbitmqUserReadPermission":{"description":"User read permission\n","type":"string"},"rabbitmqUserTags":{"description":"User Tags\n","type":"string"},"rabbitmqUserVhost":{"description":"User Virtual Host\n","type":"string"},"rabbitmqUserWritePermission":{"description":"User write permission\n","type":"string"},"secureAccessEnable":{"description":"Enable/Disable secure remote access [true/false]\n","type":"string"},"secureAccessUrl":{"description":"Destination URL to inject secrets\n","type":"string"},"secureAccessWeb":{"description":"Enable Web Secure Remote Access\n","type":"boolean"},"secureAccessWebBrowsing":{"description":"Secure browser via Akeyless's Secure Remote Access (SRA)\n","type":"boolean"},"secureAccessWebProxy":{"description":"Web-Proxy via Akeyless's Secure Remote Access (SRA)\n","type":"boolean"},"tags":{"description":"Add tags attached to this object\n","items":{"type":"string"},"type":"array"},"targetName":{"description":"Target name\n","type":"string"},"userTtl":{"description":"User TTL\n","type":"string"}},"properties":{"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"string"},"dynamicSecretRabbitmqId":{"description":"The ID of this resource.\n","type":"string"},"itemCustomFields":{"additionalProperties":{"type":"string"},"description":"Additional custom fields to associate with the item\n","type":"object"},"name":{"description":"Dynamic secret name\n","type":"string"},"passwordLength":{"description":"The length of the password to be generated\n","type":"string"},"producerEncryptionKeyName":{"description":"Dynamic producer encryption key\n","type":"string"},"rabbitmqAdminPwd":{"description":"RabbitMQ Admin password\n","secret":true,"type":"string"},"rabbitmqAdminUser":{"description":"RabbitMQ Admin User\n","type":"string"},"rabbitmqServerUri":{"description":"Server URI\n","type":"string"},"rabbitmqUserConfPermission":{"description":"User configuration permission\n","type":"string"},"rabbitmqUserReadPermission":{"description":"User read permission\n","type":"string"},"rabbitmqUserTags":{"description":"User Tags\n","type":"string"},"rabbitmqUserVhost":{"description":"User Virtual Host\n","type":"string"},"rabbitmqUserWritePermission":{"description":"User write permission\n","type":"string"},"secureAccessEnable":{"description":"Enable/Disable secure remote access [true/false]\n","type":"string"},"secureAccessUrl":{"description":"Destination URL to inject secrets\n","type":"string"},"secureAccessWeb":{"description":"Enable Web Secure Remote Access\n","type":"boolean"},"secureAccessWebBrowsing":{"description":"Secure browser via Akeyless's Secure Remote Access (SRA)\n","type":"boolean"},"secureAccessWebProxy":{"description":"Web-Proxy via Akeyless's Secure Remote Access (SRA)\n","type":"boolean"},"tags":{"description":"Add tags attached to this object\n","items":{"type":"string"},"type":"array"},"targetName":{"description":"Target name\n","type":"string"},"userTtl":{"description":"User TTL\n","type":"string"}},"required":["dynamicSecretRabbitmqId","name","producerEncryptionKeyName"],"stateInputs":{"description":"Input properties used for looking up and filtering DynamicSecretRabbitmq resources.\n","properties":{"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"string"},"dynamicSecretRabbitmqId":{"description":"The ID of this resource.\n","type":"string"},"itemCustomFields":{"additionalProperties":{"type":"string"},"description":"Additional custom fields to associate with the item\n","type":"object"},"name":{"description":"Dynamic secret name\n","type":"string"},"passwordLength":{"description":"The length of the password to be generated\n","type":"string"},"producerEncryptionKeyName":{"description":"Dynamic producer encryption key\n","type":"string"},"rabbitmqAdminPwd":{"description":"RabbitMQ Admin password\n","secret":true,"type":"string"},"rabbitmqAdminUser":{"description":"RabbitMQ Admin User\n","type":"string"},"rabbitmqServerUri":{"description":"Server URI\n","type":"string"},"rabbitmqUserConfPermission":{"description":"User configuration permission\n","type":"string"},"rabbitmqUserReadPermission":{"description":"User read permission\n","type":"string"},"rabbitmqUserTags":{"description":"User Tags\n","type":"string"},"rabbitmqUserVhost":{"description":"User Virtual Host\n","type":"string"},"rabbitmqUserWritePermission":{"description":"User write permission\n","type":"string"},"secureAccessEnable":{"description":"Enable/Disable secure remote access [true/false]\n","type":"string"},"secureAccessUrl":{"description":"Destination URL to inject secrets\n","type":"string"},"secureAccessWeb":{"description":"Enable Web Secure Remote Access\n","type":"boolean"},"secureAccessWebBrowsing":{"description":"Secure browser via Akeyless's Secure Remote Access (SRA)\n","type":"boolean"},"secureAccessWebProxy":{"description":"Web-Proxy via Akeyless's Secure Remote Access (SRA)\n","type":"boolean"},"tags":{"description":"Add tags attached to this object\n","items":{"type":"string"},"type":"array"},"targetName":{"description":"Target name\n","type":"string"},"userTtl":{"description":"User TTL\n","type":"string"}},"type":"object"},"type":"object"},"akeyless:index/dynamicSecretRdp:DynamicSecretRdp":{"description":"RDP dynamic secret resource\n","inputProperties":{"allowUserExtendSession":{"description":"Allow user to extend session\n","type":"number"},"customUsernameTemplate":{"description":"Customize how temporary usernames are generated using go template\n","type":"string"},"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"dynamicSecretRdpId":{"description":"The ID of this resource.\n","type":"string"},"encryptionKeyName":{"description":"Dynamic producer encryption key\n","type":"string"},"fixedUserClaimKeyname":{"description":"For externally provided users, denotes the key-name of IdP claim to extract the username from (relevant only for fixed-user-only=true)\n","type":"string"},"fixedUserOnly":{"description":"Allow access using externally (IdP) provided username [true/false]\n","type":"string"},"itemCustomFields":{"additionalProperties":{"type":"string"},"description":"Additional custom fields to associate with the item\n","type":"object"},"name":{"description":"Dynamic secret name\n","type":"string"},"passwordLength":{"description":"The length of the password to be generated\n","type":"string"},"rdpAdminName":{"description":"RDP Admin Name\n","type":"string"},"rdpAdminPwd":{"description":"RDP Admin password\n","type":"string"},"rdpHostName":{"description":"Hostname\n","type":"string"},"rdpHostPort":{"description":"Port\n","type":"string"},"rdpUserGroups":{"description":"Groups\n","type":"string"},"secureAccessAllowExternalUser":{"description":"Allow providing external user for a domain users\n","type":"boolean"},"secureAccessCertificateIssuer":{"description":"Path to the SSH Certificate Issuer for your Akeyless Secure Access\n","type":"string"},"secureAccessDelay":{"description":"The delay duration, in seconds, to wait after generating just-in-time credentials. Accepted range: 0-120 seconds\n","type":"number"},"secureAccessEnable":{"description":"Enable/Disable secure remote access, [true/false]\n","type":"string"},"secureAccessHosts":{"description":"Target servers for connections (In case of Linked Target association, host(s) will inherit Linked Target hosts - Relevant only for Dynamic Secrets/producers)\n","items":{"type":"string"},"type":"array"},"secureAccessRdGatewayServer":{"description":"RD Gateway server\n","type":"string"},"secureAccessRdpDomain":{"description":"Required when the Dynamic Secret is used for a domain user\n","type":"string"},"secureAccessRdpUser":{"description":"Override the RDP Domain username\n","type":"string"},"secureAccessWeb":{"description":"Enable Web Secure Remote Access\n","type":"boolean"},"tags":{"description":"List of the tags attached to this secret. To specify multiple tags use argument multiple times: -t Tag1 -t Tag2\n","items":{"type":"string"},"type":"array"},"targetName":{"description":"Target name\n","type":"string"},"userTtl":{"description":"User TTL\n","type":"string"},"warnUserBeforeExpiration":{"description":"Warn user before expiration in minutes\n","type":"number"}},"properties":{"allowUserExtendSession":{"description":"Allow user to extend session\n","type":"number"},"customUsernameTemplate":{"description":"Customize how temporary usernames are generated using go template\n","type":"string"},"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"dynamicSecretRdpId":{"description":"The ID of this resource.\n","type":"string"},"encryptionKeyName":{"description":"Dynamic producer encryption key\n","type":"string"},"fixedUserClaimKeyname":{"description":"For externally provided users, denotes the key-name of IdP claim to extract the username from (relevant only for fixed-user-only=true)\n","type":"string"},"fixedUserOnly":{"description":"Allow access using externally (IdP) provided username [true/false]\n","type":"string"},"itemCustomFields":{"additionalProperties":{"type":"string"},"description":"Additional custom fields to associate with the item\n","type":"object"},"name":{"description":"Dynamic secret name\n","type":"string"},"passwordLength":{"description":"The length of the password to be generated\n","type":"string"},"rdpAdminName":{"description":"RDP Admin Name\n","type":"string"},"rdpAdminPwd":{"description":"RDP Admin password\n","type":"string"},"rdpHostName":{"description":"Hostname\n","type":"string"},"rdpHostPort":{"description":"Port\n","type":"string"},"rdpUserGroups":{"description":"Groups\n","type":"string"},"secureAccessAllowExternalUser":{"description":"Allow providing external user for a domain users\n","type":"boolean"},"secureAccessCertificateIssuer":{"description":"Path to the SSH Certificate Issuer for your Akeyless Secure Access\n","type":"string"},"secureAccessDelay":{"description":"The delay duration, in seconds, to wait after generating just-in-time credentials. Accepted range: 0-120 seconds\n","type":"number"},"secureAccessEnable":{"description":"Enable/Disable secure remote access, [true/false]\n","type":"string"},"secureAccessHosts":{"description":"Target servers for connections (In case of Linked Target association, host(s) will inherit Linked Target hosts - Relevant only for Dynamic Secrets/producers)\n","items":{"type":"string"},"type":"array"},"secureAccessRdGatewayServer":{"description":"RD Gateway server\n","type":"string"},"secureAccessRdpDomain":{"description":"Required when the Dynamic Secret is used for a domain user\n","type":"string"},"secureAccessRdpUser":{"description":"Override the RDP Domain username\n","type":"string"},"secureAccessWeb":{"description":"Enable Web Secure Remote Access\n","type":"boolean"},"tags":{"description":"List of the tags attached to this secret. To specify multiple tags use argument multiple times: -t Tag1 -t Tag2\n","items":{"type":"string"},"type":"array"},"targetName":{"description":"Target name\n","type":"string"},"userTtl":{"description":"User TTL\n","type":"string"},"warnUserBeforeExpiration":{"description":"Warn user before expiration in minutes\n","type":"number"}},"required":["dynamicSecretRdpId","encryptionKeyName","name","secureAccessWeb"],"stateInputs":{"description":"Input properties used for looking up and filtering DynamicSecretRdp resources.\n","properties":{"allowUserExtendSession":{"description":"Allow user to extend session\n","type":"number"},"customUsernameTemplate":{"description":"Customize how temporary usernames are generated using go template\n","type":"string"},"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"dynamicSecretRdpId":{"description":"The ID of this resource.\n","type":"string"},"encryptionKeyName":{"description":"Dynamic producer encryption key\n","type":"string"},"fixedUserClaimKeyname":{"description":"For externally provided users, denotes the key-name of IdP claim to extract the username from (relevant only for fixed-user-only=true)\n","type":"string"},"fixedUserOnly":{"description":"Allow access using externally (IdP) provided username [true/false]\n","type":"string"},"itemCustomFields":{"additionalProperties":{"type":"string"},"description":"Additional custom fields to associate with the item\n","type":"object"},"name":{"description":"Dynamic secret name\n","type":"string"},"passwordLength":{"description":"The length of the password to be generated\n","type":"string"},"rdpAdminName":{"description":"RDP Admin Name\n","type":"string"},"rdpAdminPwd":{"description":"RDP Admin password\n","type":"string"},"rdpHostName":{"description":"Hostname\n","type":"string"},"rdpHostPort":{"description":"Port\n","type":"string"},"rdpUserGroups":{"description":"Groups\n","type":"string"},"secureAccessAllowExternalUser":{"description":"Allow providing external user for a domain users\n","type":"boolean"},"secureAccessCertificateIssuer":{"description":"Path to the SSH Certificate Issuer for your Akeyless Secure Access\n","type":"string"},"secureAccessDelay":{"description":"The delay duration, in seconds, to wait after generating just-in-time credentials. Accepted range: 0-120 seconds\n","type":"number"},"secureAccessEnable":{"description":"Enable/Disable secure remote access, [true/false]\n","type":"string"},"secureAccessHosts":{"description":"Target servers for connections (In case of Linked Target association, host(s) will inherit Linked Target hosts - Relevant only for Dynamic Secrets/producers)\n","items":{"type":"string"},"type":"array"},"secureAccessRdGatewayServer":{"description":"RD Gateway server\n","type":"string"},"secureAccessRdpDomain":{"description":"Required when the Dynamic Secret is used for a domain user\n","type":"string"},"secureAccessRdpUser":{"description":"Override the RDP Domain username\n","type":"string"},"secureAccessWeb":{"description":"Enable Web Secure Remote Access\n","type":"boolean"},"tags":{"description":"List of the tags attached to this secret. To specify multiple tags use argument multiple times: -t Tag1 -t Tag2\n","items":{"type":"string"},"type":"array"},"targetName":{"description":"Target name\n","type":"string"},"userTtl":{"description":"User TTL\n","type":"string"},"warnUserBeforeExpiration":{"description":"Warn user before expiration in minutes\n","type":"number"}},"type":"object"},"type":"object"},"akeyless:index/dynamicSecretRedis:DynamicSecretRedis":{"description":"Redis dynamic secret resource\n","inputProperties":{"aclRules":{"description":"A JSON array list of redis ACL rules to attach to the created user. For available rules see the ACL CAT command https://redis.io/commands/acl-cat By default the user will have permissions to read all keys '[\"~*\", \"+@read\"]'\n","type":"string"},"customUsernameTemplate":{"description":"Customize how temporary usernames are generated using go template\n","type":"string"},"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"string"},"dynamicSecretRedisId":{"description":"The ID of this resource.\n","type":"string"},"host":{"description":"Redis Host\n","type":"string"},"itemCustomFields":{"additionalProperties":{"type":"string"},"description":"Additional custom fields to associate with the item\n","type":"object"},"name":{"description":"Dynamic secret name\n","type":"string"},"password":{"description":"Redis Password\n","secret":true,"type":"string"},"passwordLength":{"description":"The length of the password to be generated\n","type":"string"},"port":{"description":"Redis Port\n","type":"string"},"producerEncryptionKeyName":{"description":"Dynamic producer encryption key\n","type":"string"},"ssl":{"description":"Enable/Disable SSL [true/false]\n","type":"boolean"},"sslCertificate":{"description":"SSL CA certificate in base64 encoding generated from a trusted Certificate Authority (CA)\n","type":"string"},"tags":{"description":"Add tags attached to this object\n","items":{"type":"string"},"type":"array"},"targetName":{"description":"Target name\n","type":"string"},"userTtl":{"description":"User TTL\n","type":"string"},"username":{"description":"Redis Username\n","type":"string"}},"properties":{"aclRules":{"description":"A JSON array list of redis ACL rules to attach to the created user. For available rules see the ACL CAT command https://redis.io/commands/acl-cat By default the user will have permissions to read all keys '[\"~*\", \"+@read\"]'\n","type":"string"},"customUsernameTemplate":{"description":"Customize how temporary usernames are generated using go template\n","type":"string"},"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"string"},"dynamicSecretRedisId":{"description":"The ID of this resource.\n","type":"string"},"host":{"description":"Redis Host\n","type":"string"},"itemCustomFields":{"additionalProperties":{"type":"string"},"description":"Additional custom fields to associate with the item\n","type":"object"},"name":{"description":"Dynamic secret name\n","type":"string"},"password":{"description":"Redis Password\n","secret":true,"type":"string"},"passwordLength":{"description":"The length of the password to be generated\n","type":"string"},"port":{"description":"Redis Port\n","type":"string"},"producerEncryptionKeyName":{"description":"Dynamic producer encryption key\n","type":"string"},"ssl":{"description":"Enable/Disable SSL [true/false]\n","type":"boolean"},"sslCertificate":{"description":"SSL CA certificate in base64 encoding generated from a trusted Certificate Authority (CA)\n","type":"string"},"tags":{"description":"Add tags attached to this object\n","items":{"type":"string"},"type":"array"},"targetName":{"description":"Target name\n","type":"string"},"userTtl":{"description":"User TTL\n","type":"string"},"username":{"description":"Redis Username\n","type":"string"}},"required":["dynamicSecretRedisId","name","producerEncryptionKeyName"],"stateInputs":{"description":"Input properties used for looking up and filtering DynamicSecretRedis resources.\n","properties":{"aclRules":{"description":"A JSON array list of redis ACL rules to attach to the created user. For available rules see the ACL CAT command https://redis.io/commands/acl-cat By default the user will have permissions to read all keys '[\"~*\", \"+@read\"]'\n","type":"string"},"customUsernameTemplate":{"description":"Customize how temporary usernames are generated using go template\n","type":"string"},"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"string"},"dynamicSecretRedisId":{"description":"The ID of this resource.\n","type":"string"},"host":{"description":"Redis Host\n","type":"string"},"itemCustomFields":{"additionalProperties":{"type":"string"},"description":"Additional custom fields to associate with the item\n","type":"object"},"name":{"description":"Dynamic secret name\n","type":"string"},"password":{"description":"Redis Password\n","secret":true,"type":"string"},"passwordLength":{"description":"The length of the password to be generated\n","type":"string"},"port":{"description":"Redis Port\n","type":"string"},"producerEncryptionKeyName":{"description":"Dynamic producer encryption key\n","type":"string"},"ssl":{"description":"Enable/Disable SSL [true/false]\n","type":"boolean"},"sslCertificate":{"description":"SSL CA certificate in base64 encoding generated from a trusted Certificate Authority (CA)\n","type":"string"},"tags":{"description":"Add tags attached to this object\n","items":{"type":"string"},"type":"array"},"targetName":{"description":"Target name\n","type":"string"},"userTtl":{"description":"User TTL\n","type":"string"},"username":{"description":"Redis Username\n","type":"string"}},"type":"object"},"type":"object"},"akeyless:index/dynamicSecretRedshift:DynamicSecretRedshift":{"description":"Redshift dynamic secret resource\n","inputProperties":{"creationStatements":{"description":"Redshift Creation statements\n","type":"string"},"customUsernameTemplate":{"description":"Customize how temporary usernames are generated using go template\n","type":"string"},"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"dynamicSecretRedshiftId":{"description":"The ID of this resource.\n","type":"string"},"encryptionKeyName":{"description":"Dynamic producer encryption key\n","type":"string"},"itemCustomFields":{"additionalProperties":{"type":"string"},"description":"Additional custom fields to associate with the item\n","type":"object"},"name":{"description":"Dynamic Secret name\n","type":"string"},"passwordLength":{"description":"The length of the password to be generated\n","type":"string"},"redshiftDbName":{"description":"Redshift DB Name\n","type":"string"},"redshiftHost":{"description":"Redshift Host\n","type":"string"},"redshiftPassword":{"description":"Redshift Password\n","type":"string"},"redshiftPort":{"description":"Redshift Port\n","type":"string"},"redshiftUsername":{"description":"Redshift Username\n","type":"string"},"secureAccessDbName":{"description":"The DB Name\n","type":"string"},"secureAccessEnable":{"description":"Enable/Disable secure remote access, [true/false]\n","type":"string"},"secureAccessHosts":{"description":"Target DB servers for connections (In case of Linked Target association, host(s) will inherit Linked Target hosts)\n","items":{"type":"string"},"type":"array"},"secureAccessWeb":{"description":"Enable Web Secure Remote Access\n","type":"boolean"},"ssl":{"description":"Enable/Disable SSL [true/false]\n","type":"boolean"},"tags":{"description":"Add tags attached to this object\n","items":{"type":"string"},"type":"array"},"targetName":{"description":"Target name\n","type":"string"},"userTtl":{"description":"User TTL\n","type":"string"}},"properties":{"creationStatements":{"description":"Redshift Creation statements\n","type":"string"},"customUsernameTemplate":{"description":"Customize how temporary usernames are generated using go template\n","type":"string"},"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"dynamicSecretRedshiftId":{"description":"The ID of this resource.\n","type":"string"},"encryptionKeyName":{"description":"Dynamic producer encryption key\n","type":"string"},"itemCustomFields":{"additionalProperties":{"type":"string"},"description":"Additional custom fields to associate with the item\n","type":"object"},"name":{"description":"Dynamic Secret name\n","type":"string"},"passwordLength":{"description":"The length of the password to be generated\n","type":"string"},"redshiftDbName":{"description":"Redshift DB Name\n","type":"string"},"redshiftHost":{"description":"Redshift Host\n","type":"string"},"redshiftPassword":{"description":"Redshift Password\n","type":"string"},"redshiftPort":{"description":"Redshift Port\n","type":"string"},"redshiftUsername":{"description":"Redshift Username\n","type":"string"},"secureAccessDbName":{"description":"The DB Name\n","type":"string"},"secureAccessEnable":{"description":"Enable/Disable secure remote access, [true/false]\n","type":"string"},"secureAccessHosts":{"description":"Target DB servers for connections (In case of Linked Target association, host(s) will inherit Linked Target hosts)\n","items":{"type":"string"},"type":"array"},"secureAccessWeb":{"description":"Enable Web Secure Remote Access\n","type":"boolean"},"ssl":{"description":"Enable/Disable SSL [true/false]\n","type":"boolean"},"tags":{"description":"Add tags attached to this object\n","items":{"type":"string"},"type":"array"},"targetName":{"description":"Target name\n","type":"string"},"userTtl":{"description":"User TTL\n","type":"string"}},"required":["dynamicSecretRedshiftId","encryptionKeyName","name","secureAccessDbName","secureAccessWeb"],"stateInputs":{"description":"Input properties used for looking up and filtering DynamicSecretRedshift resources.\n","properties":{"creationStatements":{"description":"Redshift Creation statements\n","type":"string"},"customUsernameTemplate":{"description":"Customize how temporary usernames are generated using go template\n","type":"string"},"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"dynamicSecretRedshiftId":{"description":"The ID of this resource.\n","type":"string"},"encryptionKeyName":{"description":"Dynamic producer encryption key\n","type":"string"},"itemCustomFields":{"additionalProperties":{"type":"string"},"description":"Additional custom fields to associate with the item\n","type":"object"},"name":{"description":"Dynamic Secret name\n","type":"string"},"passwordLength":{"description":"The length of the password to be generated\n","type":"string"},"redshiftDbName":{"description":"Redshift DB Name\n","type":"string"},"redshiftHost":{"description":"Redshift Host\n","type":"string"},"redshiftPassword":{"description":"Redshift Password\n","type":"string"},"redshiftPort":{"description":"Redshift Port\n","type":"string"},"redshiftUsername":{"description":"Redshift Username\n","type":"string"},"secureAccessDbName":{"description":"The DB Name\n","type":"string"},"secureAccessEnable":{"description":"Enable/Disable secure remote access, [true/false]\n","type":"string"},"secureAccessHosts":{"description":"Target DB servers for connections (In case of Linked Target association, host(s) will inherit Linked Target hosts)\n","items":{"type":"string"},"type":"array"},"secureAccessWeb":{"description":"Enable Web Secure Remote Access\n","type":"boolean"},"ssl":{"description":"Enable/Disable SSL [true/false]\n","type":"boolean"},"tags":{"description":"Add tags attached to this object\n","items":{"type":"string"},"type":"array"},"targetName":{"description":"Target name\n","type":"string"},"userTtl":{"description":"User TTL\n","type":"string"}},"type":"object"},"type":"object"},"akeyless:index/dynamicSecretSnowflake:DynamicSecretSnowflake":{"description":"Snowflake dynamic secret resource\n","inputProperties":{"account":{"description":"Account name\n","type":"string"},"accountPassword":{"description":"Database Password\n","secret":true,"type":"string"},"accountUsername":{"description":"Database Username\n","type":"string"},"authMode":{"description":"The authentication mode for the temporary user [password/key]\n","type":"string"},"customUsernameTemplate":{"description":"Customize how temporary usernames are generated using go template\n","type":"string"},"dbName":{"description":"Database name\n","type":"string"},"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"string"},"dynamicSecretSnowflakeId":{"description":"The ID of this resource.\n","type":"string"},"itemCustomFields":{"additionalProperties":{"type":"string"},"description":"Additional custom fields to associate with the item\n","type":"object"},"keyAlgo":{"description":"Key algorithm\n","type":"string"},"name":{"description":"Dynamic secret name\n","type":"string"},"passwordLength":{"description":"The length of the password to be generated\n","type":"string"},"privateKey":{"description":"RSA Private key (base64 encoded)\n","secret":true,"type":"string"},"privateKeyPassphrase":{"description":"The Private key passphrase\n","secret":true,"type":"string"},"role":{"description":"User role\n","type":"string"},"tags":{"description":"Add tags attached to this object\n","items":{"type":"string"},"type":"array"},"targetName":{"description":"Target name\n","type":"string"},"userTtl":{"description":"User TTL\n","type":"string"},"warehouse":{"description":"Warehouse name\n","type":"string"}},"properties":{"account":{"description":"Account name\n","type":"string"},"accountPassword":{"description":"Database Password\n","secret":true,"type":"string"},"accountUsername":{"description":"Database Username\n","type":"string"},"authMode":{"description":"The authentication mode for the temporary user [password/key]\n","type":"string"},"customUsernameTemplate":{"description":"Customize how temporary usernames are generated using go template\n","type":"string"},"dbName":{"description":"Database name\n","type":"string"},"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"string"},"dynamicSecretSnowflakeId":{"description":"The ID of this resource.\n","type":"string"},"itemCustomFields":{"additionalProperties":{"type":"string"},"description":"Additional custom fields to associate with the item\n","type":"object"},"keyAlgo":{"description":"Key algorithm\n","type":"string"},"name":{"description":"Dynamic secret name\n","type":"string"},"passwordLength":{"description":"The length of the password to be generated\n","type":"string"},"privateKey":{"description":"RSA Private key (base64 encoded)\n","secret":true,"type":"string"},"privateKeyPassphrase":{"description":"The Private key passphrase\n","secret":true,"type":"string"},"role":{"description":"User role\n","type":"string"},"tags":{"description":"Add tags attached to this object\n","items":{"type":"string"},"type":"array"},"targetName":{"description":"Target name\n","type":"string"},"userTtl":{"description":"User TTL\n","type":"string"},"warehouse":{"description":"Warehouse name\n","type":"string"}},"required":["dynamicSecretSnowflakeId","name"],"stateInputs":{"description":"Input properties used for looking up and filtering DynamicSecretSnowflake resources.\n","properties":{"account":{"description":"Account name\n","type":"string"},"accountPassword":{"description":"Database Password\n","secret":true,"type":"string"},"accountUsername":{"description":"Database Username\n","type":"string"},"authMode":{"description":"The authentication mode for the temporary user [password/key]\n","type":"string"},"customUsernameTemplate":{"description":"Customize how temporary usernames are generated using go template\n","type":"string"},"dbName":{"description":"Database name\n","type":"string"},"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"string"},"dynamicSecretSnowflakeId":{"description":"The ID of this resource.\n","type":"string"},"itemCustomFields":{"additionalProperties":{"type":"string"},"description":"Additional custom fields to associate with the item\n","type":"object"},"keyAlgo":{"description":"Key algorithm\n","type":"string"},"name":{"description":"Dynamic secret name\n","type":"string"},"passwordLength":{"description":"The length of the password to be generated\n","type":"string"},"privateKey":{"description":"RSA Private key (base64 encoded)\n","secret":true,"type":"string"},"privateKeyPassphrase":{"description":"The Private key passphrase\n","secret":true,"type":"string"},"role":{"description":"User role\n","type":"string"},"tags":{"description":"Add tags attached to this object\n","items":{"type":"string"},"type":"array"},"targetName":{"description":"Target name\n","type":"string"},"userTtl":{"description":"User TTL\n","type":"string"},"warehouse":{"description":"Warehouse name\n","type":"string"}},"type":"object"},"type":"object"},"akeyless:index/dynamicSecretTmpCreds:DynamicSecretTmpCreds":{"description":"Manage dynamic secret temporary credentials\n","inputProperties":{"dynamicSecretTmpCredsId":{"description":"The ID of this resource.\n","type":"string"},"host":{"description":"Host\n","type":"string"},"name":{"description":"Dynamic secret name\n","type":"string"},"newTtlMin":{"description":"New TTL in minutes\n","type":"number"},"tmpCredsId":{"description":"Tmp Creds ID\n","type":"string"}},"properties":{"dynamicSecretTmpCredsId":{"description":"The ID of this resource.\n","type":"string"},"host":{"description":"Host\n","type":"string"},"name":{"description":"Dynamic secret name\n","type":"string"},"newTtlMin":{"description":"New TTL in minutes\n","type":"number"},"tmpCredsId":{"description":"Tmp Creds ID\n","type":"string"}},"required":["dynamicSecretTmpCredsId","name","newTtlMin","tmpCredsId"],"requiredInputs":["newTtlMin","tmpCredsId"],"stateInputs":{"description":"Input properties used for looking up and filtering DynamicSecretTmpCreds resources.\n","properties":{"dynamicSecretTmpCredsId":{"description":"The ID of this resource.\n","type":"string"},"host":{"description":"Host\n","type":"string"},"name":{"description":"Dynamic secret name\n","type":"string"},"newTtlMin":{"description":"New TTL in minutes\n","type":"number"},"tmpCredsId":{"description":"Tmp Creds ID\n","type":"string"}},"type":"object"},"type":"object"},"akeyless:index/dynamicSecretVenafi:DynamicSecretVenafi":{"description":"Venafi dynamic secret resource\n","inputProperties":{"adminRotationIntervalDays":{"description":"Admin credentials rotation interval (days)\n","type":"number"},"allowSubdomains":{"description":"Allow subdomains\n","type":"boolean"},"allowedDomains":{"description":"Allowed domains\n","items":{"type":"string"},"type":"array"},"autoGeneratedFolder":{"description":"Auto generated folder\n","type":"string"},"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"string"},"dynamicSecretVenafiId":{"description":"The ID of this resource.\n","type":"string"},"enableAdminRotation":{"description":"Automatic admin credentials rotation\n","type":"boolean"},"itemCustomFields":{"additionalProperties":{"type":"string"},"description":"Additional custom fields to associate with the item\n","type":"object"},"name":{"description":"Dynamic secret name\n","type":"string"},"producerEncryptionKeyName":{"description":"Dynamic producer encryption key\n","type":"string"},"rootFirstInChain":{"description":"Root first in chain\n","type":"boolean"},"signUsingAkeylessPki":{"description":"Use Akeyless PKI issuer or Venafi issuer\n","type":"boolean"},"signerKeyName":{"description":"Signer key name\n","type":"string"},"storePrivateKey":{"description":"Store private key\n","type":"boolean"},"tags":{"description":"Add tags attached to this object\n","items":{"type":"string"},"type":"array"},"targetName":{"description":"Target name\n","type":"string"},"userTtl":{"description":"User TTL in time.Duration format (2160h / 129600m / etc...). When using sign-using-akeyless-pki certificates created will have this validity period, otherwise the user-ttl is taken from the Validity Period field of the Zone's' Issuing Template. When using cert-manager it is advised to have a TTL of above 60 days (1440h). For more information - https://cert-manager.io/docs/usage/certificate/\n","type":"string"},"venafiAccessToken":{"description":"Venafi Access Token to use to access the TPP environment (Relevant when using TPP)\n","secret":true,"type":"string"},"venafiApiKey":{"description":"Venafi API key\n","secret":true,"type":"string"},"venafiBaseurl":{"description":"Venafi Baseurl\n","type":"string"},"venafiClientId":{"description":"Venafi Client ID that was used when the access token was generated\n","type":"string"},"venafiRefreshToken":{"description":"Venafi Refresh Token to use when the Access Token is expired (Relevant when using TPP)\n","secret":true,"type":"string"},"venafiUseTpp":{"description":"Venafi using TPP\n","type":"boolean"},"venafiZone":{"description":"Venafi Zone\n","type":"string"}},"properties":{"adminRotationIntervalDays":{"description":"Admin credentials rotation interval (days)\n","type":"number"},"allowSubdomains":{"description":"Allow subdomains\n","type":"boolean"},"allowedDomains":{"description":"Allowed domains\n","items":{"type":"string"},"type":"array"},"autoGeneratedFolder":{"description":"Auto generated folder\n","type":"string"},"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"string"},"dynamicSecretVenafiId":{"description":"The ID of this resource.\n","type":"string"},"enableAdminRotation":{"description":"Automatic admin credentials rotation\n","type":"boolean"},"itemCustomFields":{"additionalProperties":{"type":"string"},"description":"Additional custom fields to associate with the item\n","type":"object"},"name":{"description":"Dynamic secret name\n","type":"string"},"producerEncryptionKeyName":{"description":"Dynamic producer encryption key\n","type":"string"},"rootFirstInChain":{"description":"Root first in chain\n","type":"boolean"},"signUsingAkeylessPki":{"description":"Use Akeyless PKI issuer or Venafi issuer\n","type":"boolean"},"signerKeyName":{"description":"Signer key name\n","type":"string"},"storePrivateKey":{"description":"Store private key\n","type":"boolean"},"tags":{"description":"Add tags attached to this object\n","items":{"type":"string"},"type":"array"},"targetName":{"description":"Target name\n","type":"string"},"userTtl":{"description":"User TTL in time.Duration format (2160h / 129600m / etc...). When using sign-using-akeyless-pki certificates created will have this validity period, otherwise the user-ttl is taken from the Validity Period field of the Zone's' Issuing Template. When using cert-manager it is advised to have a TTL of above 60 days (1440h). For more information - https://cert-manager.io/docs/usage/certificate/\n","type":"string"},"venafiAccessToken":{"description":"Venafi Access Token to use to access the TPP environment (Relevant when using TPP)\n","secret":true,"type":"string"},"venafiApiKey":{"description":"Venafi API key\n","secret":true,"type":"string"},"venafiBaseurl":{"description":"Venafi Baseurl\n","type":"string"},"venafiClientId":{"description":"Venafi Client ID that was used when the access token was generated\n","type":"string"},"venafiRefreshToken":{"description":"Venafi Refresh Token to use when the Access Token is expired (Relevant when using TPP)\n","secret":true,"type":"string"},"venafiUseTpp":{"description":"Venafi using TPP\n","type":"boolean"},"venafiZone":{"description":"Venafi Zone\n","type":"string"}},"required":["dynamicSecretVenafiId","name","producerEncryptionKeyName"],"stateInputs":{"description":"Input properties used for looking up and filtering DynamicSecretVenafi resources.\n","properties":{"adminRotationIntervalDays":{"description":"Admin credentials rotation interval (days)\n","type":"number"},"allowSubdomains":{"description":"Allow subdomains\n","type":"boolean"},"allowedDomains":{"description":"Allowed domains\n","items":{"type":"string"},"type":"array"},"autoGeneratedFolder":{"description":"Auto generated folder\n","type":"string"},"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"string"},"dynamicSecretVenafiId":{"description":"The ID of this resource.\n","type":"string"},"enableAdminRotation":{"description":"Automatic admin credentials rotation\n","type":"boolean"},"itemCustomFields":{"additionalProperties":{"type":"string"},"description":"Additional custom fields to associate with the item\n","type":"object"},"name":{"description":"Dynamic secret name\n","type":"string"},"producerEncryptionKeyName":{"description":"Dynamic producer encryption key\n","type":"string"},"rootFirstInChain":{"description":"Root first in chain\n","type":"boolean"},"signUsingAkeylessPki":{"description":"Use Akeyless PKI issuer or Venafi issuer\n","type":"boolean"},"signerKeyName":{"description":"Signer key name\n","type":"string"},"storePrivateKey":{"description":"Store private key\n","type":"boolean"},"tags":{"description":"Add tags attached to this object\n","items":{"type":"string"},"type":"array"},"targetName":{"description":"Target name\n","type":"string"},"userTtl":{"description":"User TTL in time.Duration format (2160h / 129600m / etc...). When using sign-using-akeyless-pki certificates created will have this validity period, otherwise the user-ttl is taken from the Validity Period field of the Zone's' Issuing Template. When using cert-manager it is advised to have a TTL of above 60 days (1440h). For more information - https://cert-manager.io/docs/usage/certificate/\n","type":"string"},"venafiAccessToken":{"description":"Venafi Access Token to use to access the TPP environment (Relevant when using TPP)\n","secret":true,"type":"string"},"venafiApiKey":{"description":"Venafi API key\n","secret":true,"type":"string"},"venafiBaseurl":{"description":"Venafi Baseurl\n","type":"string"},"venafiClientId":{"description":"Venafi Client ID that was used when the access token was generated\n","type":"string"},"venafiRefreshToken":{"description":"Venafi Refresh Token to use when the Access Token is expired (Relevant when using TPP)\n","secret":true,"type":"string"},"venafiUseTpp":{"description":"Venafi using TPP\n","type":"boolean"},"venafiZone":{"description":"Venafi Zone\n","type":"string"}},"type":"object"},"type":"object"},"akeyless:index/eventForwarderEmail:EventForwarderEmail":{"description":"Event Forwarder Email resource\n","inputProperties":{"authMethodsEventSourceLocations":{"description":"Auth Method Event sources\n","items":{"type":"string"},"type":"array"},"description":{"description":"Description of the object\n","type":"string"},"emailTo":{"description":"A comma seperated list of email addresses to send event to\n","type":"string"},"enable":{"description":"Enable/Disable Event Forwarder [true/false]\n","type":"string"},"eventForwarderEmailId":{"description":"The ID of this resource.\n","type":"string"},"eventTypes":{"description":"List of event types to notify about [request-access, certificate-pending-expiration, certificate-expired, certificate-provisioning-success, certificate-provisioning-failure, auth-method-pending-expiration, auth-method-expired, next-automatic-rotation, rotated-secret-success, rotated-secret-failure, dynamic-secret-failure, multi-auth-failure, uid-rotation-failure, apply-justification, email-auth-method-approved, usage, rotation-usage, gateway-inactive, static-secret-updated, rate-limiting, usage-report, secret-sync]\n","items":{"type":"string"},"type":"array"},"every":{"description":"Rate of periodic runner repetition in hours\n","type":"string"},"gatewaysEventSourceLocations":{"description":"Event sources\n","items":{"type":"string"},"type":"array"},"includeError":{"description":"Set this option to include event errors details [true/false]\n","type":"string"},"itemsEventSourceLocations":{"description":"Items Event sources\n","items":{"type":"string"},"type":"array"},"keepPrevVersion":{"description":"Whether to keep previous version [true/false]. If not set, use default according to account settings\n","type":"string"},"key":{"description":"The name of a key that used to encrypt the EventForwarder secret value (if empty, the account default protectionKey key will be used)\n","type":"string"},"name":{"description":"Event Forwarder name\n","type":"string"},"overrideUrl":{"description":"Override Akeyless default URL with your Gateway url (port 18888)\n","type":"string"},"runnerType":{"description":"Event Forwarder runner type [immediate/periodic]\n","type":"string"},"targetsEventSourceLocations":{"description":"Targets Event sources\n","items":{"type":"string"},"type":"array"}},"properties":{"authMethodsEventSourceLocations":{"description":"Auth Method Event sources\n","items":{"type":"string"},"type":"array"},"description":{"description":"Description of the object\n","type":"string"},"emailTo":{"description":"A comma seperated list of email addresses to send event to\n","type":"string"},"enable":{"description":"Enable/Disable Event Forwarder [true/false]\n","type":"string"},"eventForwarderEmailId":{"description":"The ID of this resource.\n","type":"string"},"eventTypes":{"description":"List of event types to notify about [request-access, certificate-pending-expiration, certificate-expired, certificate-provisioning-success, certificate-provisioning-failure, auth-method-pending-expiration, auth-method-expired, next-automatic-rotation, rotated-secret-success, rotated-secret-failure, dynamic-secret-failure, multi-auth-failure, uid-rotation-failure, apply-justification, email-auth-method-approved, usage, rotation-usage, gateway-inactive, static-secret-updated, rate-limiting, usage-report, secret-sync]\n","items":{"type":"string"},"type":"array"},"every":{"description":"Rate of periodic runner repetition in hours\n","type":"string"},"gatewaysEventSourceLocations":{"description":"Event sources\n","items":{"type":"string"},"type":"array"},"includeError":{"description":"Set this option to include event errors details [true/false]\n","type":"string"},"itemsEventSourceLocations":{"description":"Items Event sources\n","items":{"type":"string"},"type":"array"},"keepPrevVersion":{"description":"Whether to keep previous version [true/false]. If not set, use default according to account settings\n","type":"string"},"key":{"description":"The name of a key that used to encrypt the EventForwarder secret value (if empty, the account default protectionKey key will be used)\n","type":"string"},"name":{"description":"Event Forwarder name\n","type":"string"},"overrideUrl":{"description":"Override Akeyless default URL with your Gateway url (port 18888)\n","type":"string"},"runnerType":{"description":"Event Forwarder runner type [immediate/periodic]\n","type":"string"},"targetsEventSourceLocations":{"description":"Targets Event sources\n","items":{"type":"string"},"type":"array"}},"required":["eventForwarderEmailId","key","name"],"stateInputs":{"description":"Input properties used for looking up and filtering EventForwarderEmail resources.\n","properties":{"authMethodsEventSourceLocations":{"description":"Auth Method Event sources\n","items":{"type":"string"},"type":"array"},"description":{"description":"Description of the object\n","type":"string"},"emailTo":{"description":"A comma seperated list of email addresses to send event to\n","type":"string"},"enable":{"description":"Enable/Disable Event Forwarder [true/false]\n","type":"string"},"eventForwarderEmailId":{"description":"The ID of this resource.\n","type":"string"},"eventTypes":{"description":"List of event types to notify about [request-access, certificate-pending-expiration, certificate-expired, certificate-provisioning-success, certificate-provisioning-failure, auth-method-pending-expiration, auth-method-expired, next-automatic-rotation, rotated-secret-success, rotated-secret-failure, dynamic-secret-failure, multi-auth-failure, uid-rotation-failure, apply-justification, email-auth-method-approved, usage, rotation-usage, gateway-inactive, static-secret-updated, rate-limiting, usage-report, secret-sync]\n","items":{"type":"string"},"type":"array"},"every":{"description":"Rate of periodic runner repetition in hours\n","type":"string"},"gatewaysEventSourceLocations":{"description":"Event sources\n","items":{"type":"string"},"type":"array"},"includeError":{"description":"Set this option to include event errors details [true/false]\n","type":"string"},"itemsEventSourceLocations":{"description":"Items Event sources\n","items":{"type":"string"},"type":"array"},"keepPrevVersion":{"description":"Whether to keep previous version [true/false]. If not set, use default according to account settings\n","type":"string"},"key":{"description":"The name of a key that used to encrypt the EventForwarder secret value (if empty, the account default protectionKey key will be used)\n","type":"string"},"name":{"description":"Event Forwarder name\n","type":"string"},"overrideUrl":{"description":"Override Akeyless default URL with your Gateway url (port 18888)\n","type":"string"},"runnerType":{"description":"Event Forwarder runner type [immediate/periodic]\n","type":"string"},"targetsEventSourceLocations":{"description":"Targets Event sources\n","items":{"type":"string"},"type":"array"}},"type":"object"},"type":"object"},"akeyless:index/eventForwarderServiceNow:EventForwarderServiceNow":{"description":"Event Forwarder Service Now resource\n","inputProperties":{"adminName":{"description":"Workstation Admin Name\n","type":"string"},"adminPwd":{"description":"Workstation Admin Password\n","secret":true,"type":"string"},"appPrivateKeyBase64":{"description":"The RSA Private Key to use when connecting with jwt authentication\n","secret":true,"type":"string"},"authMethodsEventSourceLocations":{"description":"Auth Method Event sources\n","items":{"type":"string"},"type":"array"},"authType":{"description":"The authentication type to use [user-pass/jwt]\n","type":"string"},"clientId":{"description":"The client ID to use when connecting with jwt authentication\n","type":"string"},"clientSecret":{"description":"The client secret to use when connecting with jwt authentication\n","secret":true,"type":"string"},"description":{"description":"Description of the object\n","type":"string"},"enable":{"description":"Enable/Disable Event Forwarder [true/false]\n","type":"string"},"eventForwarderServiceNowId":{"description":"The ID of this resource.\n","type":"string"},"eventTypes":{"description":"List of event types to notify about [request-access, certificate-pending-expiration, certificate-expired, certificate-provisioning-success, certificate-provisioning-failure, auth-method-pending-expiration, auth-method-expired, next-automatic-rotation, rotated-secret-success, rotated-secret-failure, dynamic-secret-failure, multi-auth-failure, uid-rotation-failure, apply-justification, email-auth-method-approved, usage, rotation-usage, gateway-inactive, static-secret-updated, rate-limiting, usage-report, secret-sync]\n","items":{"type":"string"},"type":"array"},"every":{"description":"Rate of periodic runner repetition in hours\n","type":"string"},"gatewaysEventSourceLocations":{"description":"Event sources\n","items":{"type":"string"},"type":"array"},"host":{"description":"Workstation Host\n","type":"string"},"itemsEventSourceLocations":{"description":"Items Event sources\n","items":{"type":"string"},"type":"array"},"keepPrevVersion":{"description":"Whether to keep previous version [true/false]. If not set, use default according to account settings\n","type":"string"},"key":{"description":"The name of a key that used to encrypt the EventForwarder secret value (if empty, the account default protectionKey key will be used)\n","type":"string"},"name":{"description":"Event Forwarder name\n","type":"string"},"runnerType":{"description":"Event Forwarder runner type [immediate/periodic]\n","type":"string"},"targetsEventSourceLocations":{"description":"Targets Event sources\n","items":{"type":"string"},"type":"array"},"userEmail":{"description":"The user email to identify with when connecting with jwt authentication\n","type":"string"}},"properties":{"adminName":{"description":"Workstation Admin Name\n","type":"string"},"adminPwd":{"description":"Workstation Admin Password\n","secret":true,"type":"string"},"appPrivateKeyBase64":{"description":"The RSA Private Key to use when connecting with jwt authentication\n","secret":true,"type":"string"},"authMethodsEventSourceLocations":{"description":"Auth Method Event sources\n","items":{"type":"string"},"type":"array"},"authType":{"description":"The authentication type to use [user-pass/jwt]\n","type":"string"},"clientId":{"description":"The client ID to use when connecting with jwt authentication\n","type":"string"},"clientSecret":{"description":"The client secret to use when connecting with jwt authentication\n","secret":true,"type":"string"},"description":{"description":"Description of the object\n","type":"string"},"enable":{"description":"Enable/Disable Event Forwarder [true/false]\n","type":"string"},"eventForwarderServiceNowId":{"description":"The ID of this resource.\n","type":"string"},"eventTypes":{"description":"List of event types to notify about [request-access, certificate-pending-expiration, certificate-expired, certificate-provisioning-success, certificate-provisioning-failure, auth-method-pending-expiration, auth-method-expired, next-automatic-rotation, rotated-secret-success, rotated-secret-failure, dynamic-secret-failure, multi-auth-failure, uid-rotation-failure, apply-justification, email-auth-method-approved, usage, rotation-usage, gateway-inactive, static-secret-updated, rate-limiting, usage-report, secret-sync]\n","items":{"type":"string"},"type":"array"},"every":{"description":"Rate of periodic runner repetition in hours\n","type":"string"},"gatewaysEventSourceLocations":{"description":"Event sources\n","items":{"type":"string"},"type":"array"},"host":{"description":"Workstation Host\n","type":"string"},"itemsEventSourceLocations":{"description":"Items Event sources\n","items":{"type":"string"},"type":"array"},"keepPrevVersion":{"description":"Whether to keep previous version [true/false]. If not set, use default according to account settings\n","type":"string"},"key":{"description":"The name of a key that used to encrypt the EventForwarder secret value (if empty, the account default protectionKey key will be used)\n","type":"string"},"name":{"description":"Event Forwarder name\n","type":"string"},"runnerType":{"description":"Event Forwarder runner type [immediate/periodic]\n","type":"string"},"targetsEventSourceLocations":{"description":"Targets Event sources\n","items":{"type":"string"},"type":"array"},"userEmail":{"description":"The user email to identify with when connecting with jwt authentication\n","type":"string"}},"required":["eventForwarderServiceNowId","key","name"],"stateInputs":{"description":"Input properties used for looking up and filtering EventForwarderServiceNow resources.\n","properties":{"adminName":{"description":"Workstation Admin Name\n","type":"string"},"adminPwd":{"description":"Workstation Admin Password\n","secret":true,"type":"string"},"appPrivateKeyBase64":{"description":"The RSA Private Key to use when connecting with jwt authentication\n","secret":true,"type":"string"},"authMethodsEventSourceLocations":{"description":"Auth Method Event sources\n","items":{"type":"string"},"type":"array"},"authType":{"description":"The authentication type to use [user-pass/jwt]\n","type":"string"},"clientId":{"description":"The client ID to use when connecting with jwt authentication\n","type":"string"},"clientSecret":{"description":"The client secret to use when connecting with jwt authentication\n","secret":true,"type":"string"},"description":{"description":"Description of the object\n","type":"string"},"enable":{"description":"Enable/Disable Event Forwarder [true/false]\n","type":"string"},"eventForwarderServiceNowId":{"description":"The ID of this resource.\n","type":"string"},"eventTypes":{"description":"List of event types to notify about [request-access, certificate-pending-expiration, certificate-expired, certificate-provisioning-success, certificate-provisioning-failure, auth-method-pending-expiration, auth-method-expired, next-automatic-rotation, rotated-secret-success, rotated-secret-failure, dynamic-secret-failure, multi-auth-failure, uid-rotation-failure, apply-justification, email-auth-method-approved, usage, rotation-usage, gateway-inactive, static-secret-updated, rate-limiting, usage-report, secret-sync]\n","items":{"type":"string"},"type":"array"},"every":{"description":"Rate of periodic runner repetition in hours\n","type":"string"},"gatewaysEventSourceLocations":{"description":"Event sources\n","items":{"type":"string"},"type":"array"},"host":{"description":"Workstation Host\n","type":"string"},"itemsEventSourceLocations":{"description":"Items Event sources\n","items":{"type":"string"},"type":"array"},"keepPrevVersion":{"description":"Whether to keep previous version [true/false]. If not set, use default according to account settings\n","type":"string"},"key":{"description":"The name of a key that used to encrypt the EventForwarder secret value (if empty, the account default protectionKey key will be used)\n","type":"string"},"name":{"description":"Event Forwarder name\n","type":"string"},"runnerType":{"description":"Event Forwarder runner type [immediate/periodic]\n","type":"string"},"targetsEventSourceLocations":{"description":"Targets Event sources\n","items":{"type":"string"},"type":"array"},"userEmail":{"description":"The user email to identify with when connecting with jwt authentication\n","type":"string"}},"type":"object"},"type":"object"},"akeyless:index/eventForwarderSlack:EventForwarderSlack":{"description":"Event Forwarder Slack resource\n","inputProperties":{"authMethodsEventSourceLocations":{"description":"Auth Method Event sources\n","items":{"type":"string"},"type":"array"},"description":{"description":"Description of the object\n","type":"string"},"enable":{"description":"Enable/Disable Event Forwarder [true/false]\n","type":"string"},"eventForwarderSlackId":{"description":"The ID of this resource.\n","type":"string"},"eventTypes":{"description":"List of event types to notify about [request-access, certificate-pending-expiration, certificate-expired, certificate-provisioning-success, certificate-provisioning-failure, auth-method-pending-expiration, auth-method-expired, next-automatic-rotation, rotated-secret-success, rotated-secret-failure, dynamic-secret-failure, multi-auth-failure, uid-rotation-failure, apply-justification, email-auth-method-approved, usage, rotation-usage, gateway-inactive, static-secret-updated, rate-limiting, usage-report, secret-sync]\n","items":{"type":"string"},"type":"array"},"every":{"description":"Rate of periodic runner repetition in hours\n","type":"string"},"gatewaysEventSourceLocations":{"description":"Event sources\n","items":{"type":"string"},"type":"array"},"itemsEventSourceLocations":{"description":"Items Event sources\n","items":{"type":"string"},"type":"array"},"keepPrevVersion":{"description":"Whether to keep previous version [true/false]. If not set, use default according to account settings\n","type":"string"},"key":{"description":"Key name. The key will be used to encrypt the Event Forwarder secret value. If key name is not specified, the account default protection key is used\n","type":"string"},"name":{"description":"Event Forwarder name\n","type":"string"},"runnerType":{"description":"Event Forwarder runner type [immediate/periodic]\n","type":"string"},"targetsEventSourceLocations":{"description":"Targets Event sources\n","items":{"type":"string"},"type":"array"},"url":{"description":"Slack Webhook URL\n","secret":true,"type":"string"}},"properties":{"authMethodsEventSourceLocations":{"description":"Auth Method Event sources\n","items":{"type":"string"},"type":"array"},"description":{"description":"Description of the object\n","type":"string"},"enable":{"description":"Enable/Disable Event Forwarder [true/false]\n","type":"string"},"eventForwarderSlackId":{"description":"The ID of this resource.\n","type":"string"},"eventTypes":{"description":"List of event types to notify about [request-access, certificate-pending-expiration, certificate-expired, certificate-provisioning-success, certificate-provisioning-failure, auth-method-pending-expiration, auth-method-expired, next-automatic-rotation, rotated-secret-success, rotated-secret-failure, dynamic-secret-failure, multi-auth-failure, uid-rotation-failure, apply-justification, email-auth-method-approved, usage, rotation-usage, gateway-inactive, static-secret-updated, rate-limiting, usage-report, secret-sync]\n","items":{"type":"string"},"type":"array"},"every":{"description":"Rate of periodic runner repetition in hours\n","type":"string"},"gatewaysEventSourceLocations":{"description":"Event sources\n","items":{"type":"string"},"type":"array"},"itemsEventSourceLocations":{"description":"Items Event sources\n","items":{"type":"string"},"type":"array"},"keepPrevVersion":{"description":"Whether to keep previous version [true/false]. If not set, use default according to account settings\n","type":"string"},"key":{"description":"Key name. The key will be used to encrypt the Event Forwarder secret value. If key name is not specified, the account default protection key is used\n","type":"string"},"name":{"description":"Event Forwarder name\n","type":"string"},"runnerType":{"description":"Event Forwarder runner type [immediate/periodic]\n","type":"string"},"targetsEventSourceLocations":{"description":"Targets Event sources\n","items":{"type":"string"},"type":"array"},"url":{"description":"Slack Webhook URL\n","secret":true,"type":"string"}},"required":["eventForwarderSlackId","key","name","url"],"requiredInputs":["url"],"stateInputs":{"description":"Input properties used for looking up and filtering EventForwarderSlack resources.\n","properties":{"authMethodsEventSourceLocations":{"description":"Auth Method Event sources\n","items":{"type":"string"},"type":"array"},"description":{"description":"Description of the object\n","type":"string"},"enable":{"description":"Enable/Disable Event Forwarder [true/false]\n","type":"string"},"eventForwarderSlackId":{"description":"The ID of this resource.\n","type":"string"},"eventTypes":{"description":"List of event types to notify about [request-access, certificate-pending-expiration, certificate-expired, certificate-provisioning-success, certificate-provisioning-failure, auth-method-pending-expiration, auth-method-expired, next-automatic-rotation, rotated-secret-success, rotated-secret-failure, dynamic-secret-failure, multi-auth-failure, uid-rotation-failure, apply-justification, email-auth-method-approved, usage, rotation-usage, gateway-inactive, static-secret-updated, rate-limiting, usage-report, secret-sync]\n","items":{"type":"string"},"type":"array"},"every":{"description":"Rate of periodic runner repetition in hours\n","type":"string"},"gatewaysEventSourceLocations":{"description":"Event sources\n","items":{"type":"string"},"type":"array"},"itemsEventSourceLocations":{"description":"Items Event sources\n","items":{"type":"string"},"type":"array"},"keepPrevVersion":{"description":"Whether to keep previous version [true/false]. If not set, use default according to account settings\n","type":"string"},"key":{"description":"Key name. The key will be used to encrypt the Event Forwarder secret value. If key name is not specified, the account default protection key is used\n","type":"string"},"name":{"description":"Event Forwarder name\n","type":"string"},"runnerType":{"description":"Event Forwarder runner type [immediate/periodic]\n","type":"string"},"targetsEventSourceLocations":{"description":"Targets Event sources\n","items":{"type":"string"},"type":"array"},"url":{"description":"Slack Webhook URL\n","secret":true,"type":"string"}},"type":"object"},"type":"object"},"akeyless:index/eventForwarderTeams:EventForwarderTeams":{"description":"Event Forwarder Microsoft Teams resource\n","inputProperties":{"authMethodsEventSourceLocations":{"description":"Auth Method Event sources\n","items":{"type":"string"},"type":"array"},"description":{"description":"Description of the object\n","type":"string"},"enable":{"description":"Enable/Disable Event Forwarder [true/false]\n","type":"string"},"eventForwarderTeamsId":{"description":"The ID of this resource.\n","type":"string"},"eventTypes":{"description":"List of event types to notify about [request-access, certificate-pending-expiration, certificate-expired, certificate-provisioning-success, certificate-provisioning-failure, auth-method-pending-expiration, auth-method-expired, next-automatic-rotation, rotated-secret-success, rotated-secret-failure, dynamic-secret-failure, multi-auth-failure, uid-rotation-failure, apply-justification, email-auth-method-approved, usage, rotation-usage, gateway-inactive, static-secret-updated, rate-limiting, usage-report, secret-sync]\n","items":{"type":"string"},"type":"array"},"every":{"description":"Rate of periodic runner repetition in hours\n","type":"string"},"gatewayEventSourceLocations":{"description":"Event sources\n","items":{"type":"string"},"type":"array"},"itemsEventSourceLocations":{"description":"Items Event sources\n","items":{"type":"string"},"type":"array"},"keepPrevVersion":{"description":"Whether to keep previous version [true/false]. If not set, use default according to account settings\n","type":"string"},"key":{"description":"The name of a key that used to encrypt the EventForwarder secret value (if empty, the account default protectionKey key will be used)\n","type":"string"},"name":{"description":"EventForwarder name\n","type":"string"},"runnerType":{"description":"Event Forwarder runner type [immediate/periodic]\n","type":"string"},"targetsEventSourceLocations":{"description":"Targets Event sources\n","items":{"type":"string"},"type":"array"},"url":{"description":"Teams Webhook URL\n","secret":true,"type":"string"}},"properties":{"authMethodsEventSourceLocations":{"description":"Auth Method Event sources\n","items":{"type":"string"},"type":"array"},"description":{"description":"Description of the object\n","type":"string"},"enable":{"description":"Enable/Disable Event Forwarder [true/false]\n","type":"string"},"eventForwarderTeamsId":{"description":"The ID of this resource.\n","type":"string"},"eventTypes":{"description":"List of event types to notify about [request-access, certificate-pending-expiration, certificate-expired, certificate-provisioning-success, certificate-provisioning-failure, auth-method-pending-expiration, auth-method-expired, next-automatic-rotation, rotated-secret-success, rotated-secret-failure, dynamic-secret-failure, multi-auth-failure, uid-rotation-failure, apply-justification, email-auth-method-approved, usage, rotation-usage, gateway-inactive, static-secret-updated, rate-limiting, usage-report, secret-sync]\n","items":{"type":"string"},"type":"array"},"every":{"description":"Rate of periodic runner repetition in hours\n","type":"string"},"gatewayEventSourceLocations":{"description":"Event sources\n","items":{"type":"string"},"type":"array"},"itemsEventSourceLocations":{"description":"Items Event sources\n","items":{"type":"string"},"type":"array"},"keepPrevVersion":{"description":"Whether to keep previous version [true/false]. If not set, use default according to account settings\n","type":"string"},"key":{"description":"The name of a key that used to encrypt the EventForwarder secret value (if empty, the account default protectionKey key will be used)\n","type":"string"},"name":{"description":"EventForwarder name\n","type":"string"},"runnerType":{"description":"Event Forwarder runner type [immediate/periodic]\n","type":"string"},"targetsEventSourceLocations":{"description":"Targets Event sources\n","items":{"type":"string"},"type":"array"},"url":{"description":"Teams Webhook URL\n","secret":true,"type":"string"}},"required":["eventForwarderTeamsId","gatewayEventSourceLocations","key","name","runnerType","url"],"requiredInputs":["gatewayEventSourceLocations","runnerType","url"],"stateInputs":{"description":"Input properties used for looking up and filtering EventForwarderTeams resources.\n","properties":{"authMethodsEventSourceLocations":{"description":"Auth Method Event sources\n","items":{"type":"string"},"type":"array"},"description":{"description":"Description of the object\n","type":"string"},"enable":{"description":"Enable/Disable Event Forwarder [true/false]\n","type":"string"},"eventForwarderTeamsId":{"description":"The ID of this resource.\n","type":"string"},"eventTypes":{"description":"List of event types to notify about [request-access, certificate-pending-expiration, certificate-expired, certificate-provisioning-success, certificate-provisioning-failure, auth-method-pending-expiration, auth-method-expired, next-automatic-rotation, rotated-secret-success, rotated-secret-failure, dynamic-secret-failure, multi-auth-failure, uid-rotation-failure, apply-justification, email-auth-method-approved, usage, rotation-usage, gateway-inactive, static-secret-updated, rate-limiting, usage-report, secret-sync]\n","items":{"type":"string"},"type":"array"},"every":{"description":"Rate of periodic runner repetition in hours\n","type":"string"},"gatewayEventSourceLocations":{"description":"Event sources\n","items":{"type":"string"},"type":"array"},"itemsEventSourceLocations":{"description":"Items Event sources\n","items":{"type":"string"},"type":"array"},"keepPrevVersion":{"description":"Whether to keep previous version [true/false]. If not set, use default according to account settings\n","type":"string"},"key":{"description":"The name of a key that used to encrypt the EventForwarder secret value (if empty, the account default protectionKey key will be used)\n","type":"string"},"name":{"description":"EventForwarder name\n","type":"string"},"runnerType":{"description":"Event Forwarder runner type [immediate/periodic]\n","type":"string"},"targetsEventSourceLocations":{"description":"Targets Event sources\n","items":{"type":"string"},"type":"array"},"url":{"description":"Teams Webhook URL\n","secret":true,"type":"string"}},"type":"object"},"type":"object"},"akeyless:index/eventForwarderWebhook:EventForwarderWebhook":{"description":"Event Forwarder Webhook resource\n","inputProperties":{"authMethodsEventSourceLocations":{"description":"Auth Methods event sources to forward events about, for example: /abc/*\n","items":{"type":"string"},"type":"array"},"authToken":{"description":"Base64 encoded Token string for authentication type Token\n","secret":true,"type":"string"},"authType":{"description":"The Webhook authentication type [user-pass, bearer-token, certificate]\n","type":"string"},"clientCertData":{"description":"Base64 encoded PEM certificate, relevant for certificate auth-type\n","secret":true,"type":"string"},"description":{"description":"Description of the object\n","type":"string"},"enable":{"description":"Enable/Disable Event Forwarder [true/false]\n","type":"string"},"eventForwarderWebhookId":{"description":"The ID of this resource.\n","type":"string"},"eventTypes":{"description":"List of event types to notify about [request-access, certificate-pending-expiration, certificate-expired, certificate-provisioning-success, certificate-provisioning-failure, auth-method-pending-expiration, auth-method-expired, next-automatic-rotation, rotated-secret-success, rotated-secret-failure, dynamic-secret-failure, multi-auth-failure, uid-rotation-failure, apply-justification, email-auth-method-approved, usage, rotation-usage, gateway-inactive, static-secret-updated, rate-limiting, usage-report, secret-sync]\n","items":{"type":"string"},"type":"array"},"every":{"description":"Rate of periodic runner repetition in hours\n","type":"string"},"gatewaysEventSourceLocations":{"description":"Gateways event sources to forward events about, for example the relevant Gateways cluster urls: http://localhost:8000.\n","items":{"type":"string"},"type":"array"},"itemsEventSourceLocations":{"description":"Items event sources to forward events about, for example: /abc/*\n","items":{"type":"string"},"type":"array"},"keepPrevVersion":{"description":"Whether to keep previous version [true/false]. If not set, use default according to account settings\n","type":"string"},"key":{"description":"The name of a key that used to encrypt the EventForwarder secret value (if empty, the account default protectionKey key will be used)\n","type":"string"},"name":{"description":"Event Forwarder name\n","type":"string"},"password":{"description":"Password for authentication relevant for user-pass auth-type\n","secret":true,"type":"string"},"privateKeyData":{"description":"Base64 encoded PEM RSA Private Key, relevant for certificate auth-type\n","secret":true,"type":"string"},"runnerType":{"description":"Event Forwarder runner type [immediate/periodic]\n","type":"string"},"serverCertificates":{"description":"Base64 encoded PEM certificate of the Webhook\n","secret":true,"type":"string"},"targetsEventSourceLocations":{"description":"Targets event sources to forward events about, for example: /abc/*\n","items":{"type":"string"},"type":"array"},"url":{"description":"Webhook URL\n","type":"string"},"username":{"description":"Username for authentication relevant for user-pass auth-type\n","type":"string"}},"properties":{"authMethodsEventSourceLocations":{"description":"Auth Methods event sources to forward events about, for example: /abc/*\n","items":{"type":"string"},"type":"array"},"authToken":{"description":"Base64 encoded Token string for authentication type Token\n","secret":true,"type":"string"},"authType":{"description":"The Webhook authentication type [user-pass, bearer-token, certificate]\n","type":"string"},"clientCertData":{"description":"Base64 encoded PEM certificate, relevant for certificate auth-type\n","secret":true,"type":"string"},"description":{"description":"Description of the object\n","type":"string"},"enable":{"description":"Enable/Disable Event Forwarder [true/false]\n","type":"string"},"eventForwarderWebhookId":{"description":"The ID of this resource.\n","type":"string"},"eventTypes":{"description":"List of event types to notify about [request-access, certificate-pending-expiration, certificate-expired, certificate-provisioning-success, certificate-provisioning-failure, auth-method-pending-expiration, auth-method-expired, next-automatic-rotation, rotated-secret-success, rotated-secret-failure, dynamic-secret-failure, multi-auth-failure, uid-rotation-failure, apply-justification, email-auth-method-approved, usage, rotation-usage, gateway-inactive, static-secret-updated, rate-limiting, usage-report, secret-sync]\n","items":{"type":"string"},"type":"array"},"every":{"description":"Rate of periodic runner repetition in hours\n","type":"string"},"gatewaysEventSourceLocations":{"description":"Gateways event sources to forward events about, for example the relevant Gateways cluster urls: http://localhost:8000.\n","items":{"type":"string"},"type":"array"},"itemsEventSourceLocations":{"description":"Items event sources to forward events about, for example: /abc/*\n","items":{"type":"string"},"type":"array"},"keepPrevVersion":{"description":"Whether to keep previous version [true/false]. If not set, use default according to account settings\n","type":"string"},"key":{"description":"The name of a key that used to encrypt the EventForwarder secret value (if empty, the account default protectionKey key will be used)\n","type":"string"},"name":{"description":"Event Forwarder name\n","type":"string"},"password":{"description":"Password for authentication relevant for user-pass auth-type\n","secret":true,"type":"string"},"privateKeyData":{"description":"Base64 encoded PEM RSA Private Key, relevant for certificate auth-type\n","secret":true,"type":"string"},"runnerType":{"description":"Event Forwarder runner type [immediate/periodic]\n","type":"string"},"serverCertificates":{"description":"Base64 encoded PEM certificate of the Webhook\n","secret":true,"type":"string"},"targetsEventSourceLocations":{"description":"Targets event sources to forward events about, for example: /abc/*\n","items":{"type":"string"},"type":"array"},"url":{"description":"Webhook URL\n","type":"string"},"username":{"description":"Username for authentication relevant for user-pass auth-type\n","type":"string"}},"required":["eventForwarderWebhookId","key","name"],"stateInputs":{"description":"Input properties used for looking up and filtering EventForwarderWebhook resources.\n","properties":{"authMethodsEventSourceLocations":{"description":"Auth Methods event sources to forward events about, for example: /abc/*\n","items":{"type":"string"},"type":"array"},"authToken":{"description":"Base64 encoded Token string for authentication type Token\n","secret":true,"type":"string"},"authType":{"description":"The Webhook authentication type [user-pass, bearer-token, certificate]\n","type":"string"},"clientCertData":{"description":"Base64 encoded PEM certificate, relevant for certificate auth-type\n","secret":true,"type":"string"},"description":{"description":"Description of the object\n","type":"string"},"enable":{"description":"Enable/Disable Event Forwarder [true/false]\n","type":"string"},"eventForwarderWebhookId":{"description":"The ID of this resource.\n","type":"string"},"eventTypes":{"description":"List of event types to notify about [request-access, certificate-pending-expiration, certificate-expired, certificate-provisioning-success, certificate-provisioning-failure, auth-method-pending-expiration, auth-method-expired, next-automatic-rotation, rotated-secret-success, rotated-secret-failure, dynamic-secret-failure, multi-auth-failure, uid-rotation-failure, apply-justification, email-auth-method-approved, usage, rotation-usage, gateway-inactive, static-secret-updated, rate-limiting, usage-report, secret-sync]\n","items":{"type":"string"},"type":"array"},"every":{"description":"Rate of periodic runner repetition in hours\n","type":"string"},"gatewaysEventSourceLocations":{"description":"Gateways event sources to forward events about, for example the relevant Gateways cluster urls: http://localhost:8000.\n","items":{"type":"string"},"type":"array"},"itemsEventSourceLocations":{"description":"Items event sources to forward events about, for example: /abc/*\n","items":{"type":"string"},"type":"array"},"keepPrevVersion":{"description":"Whether to keep previous version [true/false]. If not set, use default according to account settings\n","type":"string"},"key":{"description":"The name of a key that used to encrypt the EventForwarder secret value (if empty, the account default protectionKey key will be used)\n","type":"string"},"name":{"description":"Event Forwarder name\n","type":"string"},"password":{"description":"Password for authentication relevant for user-pass auth-type\n","secret":true,"type":"string"},"privateKeyData":{"description":"Base64 encoded PEM RSA Private Key, relevant for certificate auth-type\n","secret":true,"type":"string"},"runnerType":{"description":"Event Forwarder runner type [immediate/periodic]\n","type":"string"},"serverCertificates":{"description":"Base64 encoded PEM certificate of the Webhook\n","secret":true,"type":"string"},"targetsEventSourceLocations":{"description":"Targets event sources to forward events about, for example: /abc/*\n","items":{"type":"string"},"type":"array"},"url":{"description":"Webhook URL\n","type":"string"},"username":{"description":"Username for authentication relevant for user-pass auth-type\n","type":"string"}},"type":"object"},"type":"object"},"akeyless:index/folder:Folder":{"description":"Folder Resource\n","inputProperties":{"akeylessFolderId":{"description":"The ID of this resource.\n","type":"string"},"deleteProtection":{"description":"Protection from accidental deletion of this folder [true/false]\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"name":{"description":"The name to the folder\n","type":"string"},"tags":{"description":"List of tags attached to this folder\n","items":{"type":"string"},"type":"array"}},"properties":{"akeylessFolderId":{"description":"The ID of this resource.\n","type":"string"},"deleteProtection":{"description":"Protection from accidental deletion of this folder [true/false]\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"folderId":{"description":"The ID of the folder\n","type":"number"},"name":{"description":"The name to the folder\n","type":"string"},"tags":{"description":"List of tags attached to this folder\n","items":{"type":"string"},"type":"array"}},"required":["akeylessFolderId","folderId","name"],"stateInputs":{"description":"Input properties used for looking up and filtering Folder resources.\n","properties":{"akeylessFolderId":{"description":"The ID of this resource.\n","type":"string"},"deleteProtection":{"description":"Protection from accidental deletion of this folder [true/false]\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"folderId":{"description":"The ID of the folder\n","type":"number"},"name":{"description":"The name to the folder\n","type":"string"},"tags":{"description":"List of tags attached to this folder\n","items":{"type":"string"},"type":"array"}},"type":"object"},"type":"object"},"akeyless:index/gatewayAllowedAccess:GatewayAllowedAccess":{"description":"Create gateway allowed access\n","inputProperties":{"accessId":{"description":"The access id to be attached to this allowed access. Auth method with this access id should already exist.\n","type":"string"},"accessType":{"description":"Access type\n","type":"string"},"caseSensitive":{"description":"Treat sub claims as case-sensitive [true/false]\n","type":"string"},"clusterId":{"description":"Cluster ID\n","type":"number"},"createdAt":{"description":"Creation timestamp\n","type":"string"},"description":{"description":"Allowed access description\n","type":"string"},"editable":{"description":"Whether the allowed access is editable\n","type":"boolean"},"error":{"description":"Error message if any\n","type":"string"},"gatewayAllowedAccessId":{"description":"The ID of this resource.\n","type":"string"},"idInt":{"description":"Internal ID\n","type":"number"},"isValid":{"description":"Whether the allowed access is valid\n","type":"boolean"},"name":{"description":"Allowed access name\n","type":"string"},"permissions":{"description":"Permissions Comma-seperated list of permissions for this allowed access. Available permissions: [defaults,targets,classic*keys,automatic*migration,ldap*auth,dynamic*secret,k8s*auth,log*forwarding,zero*knowledge*encryption,rotated*secret,caching,event*forwarding,admin,kmip,general,rotate*secret*value]\n","type":"string"},"subClaims":{"additionalProperties":{"type":"string"},"description":"Sub claims key/val of sub claims, e.g group=admins,developers\n","type":"object"},"subClaimsCaseInsensitive":{"description":"Treat sub claims as case-insensitive\n","type":"boolean"},"updatedAt":{"description":"Last update timestamp\n","type":"string"}},"properties":{"accessId":{"description":"The access id to be attached to this allowed access. Auth method with this access id should already exist.\n","type":"string"},"accessType":{"description":"Access type\n","type":"string"},"caseSensitive":{"description":"Treat sub claims as case-sensitive [true/false]\n","type":"string"},"clusterId":{"description":"Cluster ID\n","type":"number"},"createdAt":{"description":"Creation timestamp\n","type":"string"},"description":{"description":"Allowed access description\n","type":"string"},"editable":{"description":"Whether the allowed access is editable\n","type":"boolean"},"error":{"description":"Error message if any\n","type":"string"},"gatewayAllowedAccessId":{"description":"The ID of this resource.\n","type":"string"},"idInt":{"description":"Internal ID\n","type":"number"},"isValid":{"description":"Whether the allowed access is valid\n","type":"boolean"},"name":{"description":"Allowed access name\n","type":"string"},"permissions":{"description":"Permissions Comma-seperated list of permissions for this allowed access. Available permissions: [defaults,targets,classic*keys,automatic*migration,ldap*auth,dynamic*secret,k8s*auth,log*forwarding,zero*knowledge*encryption,rotated*secret,caching,event*forwarding,admin,kmip,general,rotate*secret*value]\n","type":"string"},"subClaims":{"additionalProperties":{"type":"string"},"description":"Sub claims key/val of sub claims, e.g group=admins,developers\n","type":"object"},"subClaimsCaseInsensitive":{"description":"Treat sub claims as case-insensitive\n","type":"boolean"},"updatedAt":{"description":"Last update timestamp\n","type":"string"}},"required":["accessId","accessType","clusterId","createdAt","editable","error","gatewayAllowedAccessId","idInt","isValid","name","updatedAt"],"requiredInputs":["accessId"],"stateInputs":{"description":"Input properties used for looking up and filtering GatewayAllowedAccess resources.\n","properties":{"accessId":{"description":"The access id to be attached to this allowed access. Auth method with this access id should already exist.\n","type":"string"},"accessType":{"description":"Access type\n","type":"string"},"caseSensitive":{"description":"Treat sub claims as case-sensitive [true/false]\n","type":"string"},"clusterId":{"description":"Cluster ID\n","type":"number"},"createdAt":{"description":"Creation timestamp\n","type":"string"},"description":{"description":"Allowed access description\n","type":"string"},"editable":{"description":"Whether the allowed access is editable\n","type":"boolean"},"error":{"description":"Error message if any\n","type":"string"},"gatewayAllowedAccessId":{"description":"The ID of this resource.\n","type":"string"},"idInt":{"description":"Internal ID\n","type":"number"},"isValid":{"description":"Whether the allowed access is valid\n","type":"boolean"},"name":{"description":"Allowed access name\n","type":"string"},"permissions":{"description":"Permissions Comma-seperated list of permissions for this allowed access. Available permissions: [defaults,targets,classic*keys,automatic*migration,ldap*auth,dynamic*secret,k8s*auth,log*forwarding,zero*knowledge*encryption,rotated*secret,caching,event*forwarding,admin,kmip,general,rotate*secret*value]\n","type":"string"},"subClaims":{"additionalProperties":{"type":"string"},"description":"Sub claims key/val of sub claims, e.g group=admins,developers\n","type":"object"},"subClaimsCaseInsensitive":{"description":"Treat sub claims as case-insensitive\n","type":"boolean"},"updatedAt":{"description":"Last update timestamp\n","type":"string"}},"type":"object"},"type":"object"},"akeyless:index/gatewayCache:GatewayCache":{"description":"Cache settings\n","inputProperties":{"backupInterval":{"description":"Secure backup interval in minutes. To ensure service continuity in case of power cycle and network outage secrets will be backed up periodically per backup interval\n","type":"string"},"enableCache":{"description":"Enable cache [true/false]\n","type":"string"},"enableProactive":{"description":"Enable proactive caching [true/false]\n","type":"string"},"gatewayCacheId":{"description":"The ID of this resource.\n","type":"string"},"minimumFetchInterval":{"description":"When using Cache or/and Proactive Cache, additional secrets will be fetched upon requesting a secret, based on the requestor's access policy. Define minimum fetching interval to avoid over fetching in a given time frame\n","type":"string"},"staleTimeout":{"description":"Stale timeout in minutes, cache entries which are not accessed within timeout will be removed from cache\n","type":"string"}},"properties":{"backupInterval":{"description":"Secure backup interval in minutes. To ensure service continuity in case of power cycle and network outage secrets will be backed up periodically per backup interval\n","type":"string"},"cacheEncryptionKey":{"description":"Cache encryption key\n","type":"string"},"enableCache":{"description":"Enable cache [true/false]\n","type":"string"},"enableProactive":{"description":"Enable proactive caching [true/false]\n","type":"string"},"gatewayCacheId":{"description":"The ID of this resource.\n","type":"string"},"minimumFetchInterval":{"description":"When using Cache or/and Proactive Cache, additional secrets will be fetched upon requesting a secret, based on the requestor's access policy. Define minimum fetching interval to avoid over fetching in a given time frame\n","type":"string"},"newProactiveCacheEnable":{"description":"New proactive cache enable flag\n","type":"boolean"},"staleTimeout":{"description":"Stale timeout in minutes, cache entries which are not accessed within timeout will be removed from cache\n","type":"string"}},"required":["cacheEncryptionKey","gatewayCacheId","newProactiveCacheEnable"],"stateInputs":{"description":"Input properties used for looking up and filtering GatewayCache resources.\n","properties":{"backupInterval":{"description":"Secure backup interval in minutes. To ensure service continuity in case of power cycle and network outage secrets will be backed up periodically per backup interval\n","type":"string"},"cacheEncryptionKey":{"description":"Cache encryption key\n","type":"string"},"enableCache":{"description":"Enable cache [true/false]\n","type":"string"},"enableProactive":{"description":"Enable proactive caching [true/false]\n","type":"string"},"gatewayCacheId":{"description":"The ID of this resource.\n","type":"string"},"minimumFetchInterval":{"description":"When using Cache or/and Proactive Cache, additional secrets will be fetched upon requesting a secret, based on the requestor's access policy. Define minimum fetching interval to avoid over fetching in a given time frame\n","type":"string"},"newProactiveCacheEnable":{"description":"New proactive cache enable flag\n","type":"boolean"},"staleTimeout":{"description":"Stale timeout in minutes, cache entries which are not accessed within timeout will be removed from cache\n","type":"string"}},"type":"object"},"type":"object"},"akeyless:index/gatewayDefaults:GatewayDefaults":{"description":"Defaults settings\n","inputProperties":{"certAccessId":{"description":"Default Certificate access-id for UI login\n","type":"string"},"eventOnStatusChange":{"description":"Trigger an event when Gateway status is changed [true/false]\n","type":"string"},"gatewayDefaultsId":{"description":"The ID of this resource.\n","type":"string"},"hvpRouteVersion":{"description":"Hvp route version to use [1/2]\n","type":"number"},"key":{"description":"The name of the gateway default encryption key\n","type":"string"},"oidcAccessId":{"description":"Default OIDC access-id for UI login\n","type":"string"},"samlAccessId":{"description":"Default SAML access-id for UI login\n","type":"string"}},"properties":{"certAccessId":{"description":"Default Certificate access-id for UI login\n","type":"string"},"eventOnStatusChange":{"description":"Trigger an event when Gateway status is changed [true/false]\n","type":"string"},"gatewayDefaultsId":{"description":"The ID of this resource.\n","type":"string"},"hvpRouteVersion":{"description":"Hvp route version to use [1/2]\n","type":"number"},"key":{"description":"The name of the gateway default encryption key\n","type":"string"},"oidcAccessId":{"description":"Default OIDC access-id for UI login\n","type":"string"},"samlAccessId":{"description":"Default SAML access-id for UI login\n","type":"string"}},"required":["gatewayDefaultsId","hvpRouteVersion","key"],"stateInputs":{"description":"Input properties used for looking up and filtering GatewayDefaults resources.\n","properties":{"certAccessId":{"description":"Default Certificate access-id for UI login\n","type":"string"},"eventOnStatusChange":{"description":"Trigger an event when Gateway status is changed [true/false]\n","type":"string"},"gatewayDefaultsId":{"description":"The ID of this resource.\n","type":"string"},"hvpRouteVersion":{"description":"Hvp route version to use [1/2]\n","type":"number"},"key":{"description":"The name of the gateway default encryption key\n","type":"string"},"oidcAccessId":{"description":"Default OIDC access-id for UI login\n","type":"string"},"samlAccessId":{"description":"Default SAML access-id for UI login\n","type":"string"}},"type":"object"},"type":"object"},"akeyless:index/gatewayLdapAuthConfig:GatewayLdapAuthConfig":{"description":"LDAP auth config for gateway\n","inputProperties":{"accessId":{"description":"The access ID of the auth method associated with the LDAP config\n","type":"string"},"bindDn":{"description":"Bind DN\n","type":"string"},"bindDnPassword":{"description":"Bind DN password\n","secret":true,"type":"string"},"gatewayLdapAuthConfigId":{"description":"The ID of this resource.\n","type":"string"},"groupAttr":{"description":"LDAP attribute to follow on objects returned by ldap*group*filter in order to enumerate user group membership\n","type":"string"},"groupDn":{"description":"Base DN to perform group membership search\n","type":"string"},"groupFilter":{"description":"Go template used when constructing the group membership query. The template can access the following context variables: [UserDN, Username]\n","type":"string"},"ldapCaCert":{"description":"LDAP CA Certificate (base64 encoded)\n","type":"string"},"ldapEnable":{"description":"Enable LDAP auth [true/false]\n","type":"string"},"ldapUrl":{"description":"LDAP server URL\n","type":"string"},"signingKeyData":{"description":"The private key (base64 encoded), associated with the public key defined in the Ldap auth\n","secret":true,"type":"string"},"userAttribute":{"description":"LDAP user attribute\n","type":"string"},"userDn":{"description":"LDAP user DN\n","type":"string"}},"properties":{"accessId":{"description":"The access ID of the auth method associated with the LDAP config\n","type":"string"},"bindDn":{"description":"Bind DN\n","type":"string"},"bindDnPassword":{"description":"Bind DN password\n","secret":true,"type":"string"},"gatewayLdapAuthConfigId":{"description":"The ID of this resource.\n","type":"string"},"groupAttr":{"description":"LDAP attribute to follow on objects returned by ldap*group*filter in order to enumerate user group membership\n","type":"string"},"groupDn":{"description":"Base DN to perform group membership search\n","type":"string"},"groupFilter":{"description":"Go template used when constructing the group membership query. The template can access the following context variables: [UserDN, Username]\n","type":"string"},"ldapCaCert":{"description":"LDAP CA Certificate (base64 encoded)\n","type":"string"},"ldapEnable":{"description":"Enable LDAP auth [true/false]\n","type":"string"},"ldapUrl":{"description":"LDAP server URL\n","type":"string"},"signingKeyData":{"description":"The private key (base64 encoded), associated with the public key defined in the Ldap auth\n","secret":true,"type":"string"},"userAttribute":{"description":"LDAP user attribute\n","type":"string"},"userDn":{"description":"LDAP user DN\n","type":"string"}},"required":["gatewayLdapAuthConfigId"],"stateInputs":{"description":"Input properties used for looking up and filtering GatewayLdapAuthConfig resources.\n","properties":{"accessId":{"description":"The access ID of the auth method associated with the LDAP config\n","type":"string"},"bindDn":{"description":"Bind DN\n","type":"string"},"bindDnPassword":{"description":"Bind DN password\n","secret":true,"type":"string"},"gatewayLdapAuthConfigId":{"description":"The ID of this resource.\n","type":"string"},"groupAttr":{"description":"LDAP attribute to follow on objects returned by ldap*group*filter in order to enumerate user group membership\n","type":"string"},"groupDn":{"description":"Base DN to perform group membership search\n","type":"string"},"groupFilter":{"description":"Go template used when constructing the group membership query. The template can access the following context variables: [UserDN, Username]\n","type":"string"},"ldapCaCert":{"description":"LDAP CA Certificate (base64 encoded)\n","type":"string"},"ldapEnable":{"description":"Enable LDAP auth [true/false]\n","type":"string"},"ldapUrl":{"description":"LDAP server URL\n","type":"string"},"signingKeyData":{"description":"The private key (base64 encoded), associated with the public key defined in the Ldap auth\n","secret":true,"type":"string"},"userAttribute":{"description":"LDAP user attribute\n","type":"string"},"userDn":{"description":"LDAP user DN\n","type":"string"}},"type":"object"},"type":"object"},"akeyless:index/gatewayLogForwardingAwsS3:GatewayLogForwardingAwsS3":{"description":"Log Forwarding config for aws-s3\n","inputProperties":{"accessId":{"description":"AWS access id relevant for<span pulumi-lang-nodejs=\" accessKey \" pulumi-lang-dotnet=\" AccessKey \" pulumi-lang-go=\" accessKey \" pulumi-lang-python=\" access_key \" pulumi-lang-yaml=\" accessKey \" pulumi-lang-java=\" accessKey \"> access_key </span>auth-type\n","type":"string"},"accessKey":{"description":"AWS access key relevant for<span pulumi-lang-nodejs=\" accessKey \" pulumi-lang-dotnet=\" AccessKey \" pulumi-lang-go=\" accessKey \" pulumi-lang-python=\" access_key \" pulumi-lang-yaml=\" accessKey \" pulumi-lang-java=\" accessKey \"> access_key </span>auth-type\n","secret":true,"type":"string"},"authType":{"description":"AWS auth type [access*key/cloud*id/assume_role]\n","type":"string"},"bucketName":{"description":"AWS S3 bucket name\n","type":"string"},"enable":{"description":"Enable Log Forwarding [true/false]\n","type":"string"},"gatewayLogForwardingAwsS3Id":{"description":"The ID of this resource.\n","type":"string"},"logFolder":{"description":"AWS S3 destination folder for logs\n","type":"string"},"outputFormat":{"description":"Logs format [text/json]\n","type":"string"},"pullInterval":{"description":"Pull interval in seconds\n","type":"string"},"region":{"description":"AWS region\n","type":"string"},"roleArn":{"description":"AWS role arn relevant for<span pulumi-lang-nodejs=\" assumeRole \" pulumi-lang-dotnet=\" AssumeRole \" pulumi-lang-go=\" assumeRole \" pulumi-lang-python=\" assume_role \" pulumi-lang-yaml=\" assumeRole \" pulumi-lang-java=\" assumeRole \"> assume_role </span>auth-type\n","type":"string"}},"properties":{"accessId":{"description":"AWS access id relevant for<span pulumi-lang-nodejs=\" accessKey \" pulumi-lang-dotnet=\" AccessKey \" pulumi-lang-go=\" accessKey \" pulumi-lang-python=\" access_key \" pulumi-lang-yaml=\" accessKey \" pulumi-lang-java=\" accessKey \"> access_key </span>auth-type\n","type":"string"},"accessKey":{"description":"AWS access key relevant for<span pulumi-lang-nodejs=\" accessKey \" pulumi-lang-dotnet=\" AccessKey \" pulumi-lang-go=\" accessKey \" pulumi-lang-python=\" access_key \" pulumi-lang-yaml=\" accessKey \" pulumi-lang-java=\" accessKey \"> access_key </span>auth-type\n","secret":true,"type":"string"},"authType":{"description":"AWS auth type [access*key/cloud*id/assume_role]\n","type":"string"},"bucketName":{"description":"AWS S3 bucket name\n","type":"string"},"enable":{"description":"Enable Log Forwarding [true/false]\n","type":"string"},"gatewayLogForwardingAwsS3Id":{"description":"The ID of this resource.\n","type":"string"},"logFolder":{"description":"AWS S3 destination folder for logs\n","type":"string"},"outputFormat":{"description":"Logs format [text/json]\n","type":"string"},"pullInterval":{"description":"Pull interval in seconds\n","type":"string"},"region":{"description":"AWS region\n","type":"string"},"roleArn":{"description":"AWS role arn relevant for<span pulumi-lang-nodejs=\" assumeRole \" pulumi-lang-dotnet=\" AssumeRole \" pulumi-lang-go=\" assumeRole \" pulumi-lang-python=\" assume_role \" pulumi-lang-yaml=\" assumeRole \" pulumi-lang-java=\" assumeRole \"> assume_role </span>auth-type\n","type":"string"}},"required":["gatewayLogForwardingAwsS3Id"],"stateInputs":{"description":"Input properties used for looking up and filtering GatewayLogForwardingAwsS3 resources.\n","properties":{"accessId":{"description":"AWS access id relevant for<span pulumi-lang-nodejs=\" accessKey \" pulumi-lang-dotnet=\" AccessKey \" pulumi-lang-go=\" accessKey \" pulumi-lang-python=\" access_key \" pulumi-lang-yaml=\" accessKey \" pulumi-lang-java=\" accessKey \"> access_key </span>auth-type\n","type":"string"},"accessKey":{"description":"AWS access key relevant for<span pulumi-lang-nodejs=\" accessKey \" pulumi-lang-dotnet=\" AccessKey \" pulumi-lang-go=\" accessKey \" pulumi-lang-python=\" access_key \" pulumi-lang-yaml=\" accessKey \" pulumi-lang-java=\" accessKey \"> access_key </span>auth-type\n","secret":true,"type":"string"},"authType":{"description":"AWS auth type [access*key/cloud*id/assume_role]\n","type":"string"},"bucketName":{"description":"AWS S3 bucket name\n","type":"string"},"enable":{"description":"Enable Log Forwarding [true/false]\n","type":"string"},"gatewayLogForwardingAwsS3Id":{"description":"The ID of this resource.\n","type":"string"},"logFolder":{"description":"AWS S3 destination folder for logs\n","type":"string"},"outputFormat":{"description":"Logs format [text/json]\n","type":"string"},"pullInterval":{"description":"Pull interval in seconds\n","type":"string"},"region":{"description":"AWS region\n","type":"string"},"roleArn":{"description":"AWS role arn relevant for<span pulumi-lang-nodejs=\" assumeRole \" pulumi-lang-dotnet=\" AssumeRole \" pulumi-lang-go=\" assumeRole \" pulumi-lang-python=\" assume_role \" pulumi-lang-yaml=\" assumeRole \" pulumi-lang-java=\" assumeRole \"> assume_role </span>auth-type\n","type":"string"}},"type":"object"},"type":"object"},"akeyless:index/gatewayLogForwardingAzureAnalytics:GatewayLogForwardingAzureAnalytics":{"description":"Log Forwarding config for azure-analytics\n","inputProperties":{"enable":{"description":"Enable Log Forwarding [true/false]\n","type":"string"},"enableBatch":{"description":"Enable batch forwarding [true/false]\n","type":"string"},"gatewayLogForwardingAzureAnalyticsId":{"description":"The ID of this resource.\n","type":"string"},"outputFormat":{"description":"Logs format [text/json]\n","type":"string"},"pullInterval":{"description":"Pull interval in seconds\n","type":"string"},"workspaceId":{"description":"Azure workspace id\n","type":"string"},"workspaceKey":{"description":"Azure workspace key\n","secret":true,"type":"string"}},"properties":{"enable":{"description":"Enable Log Forwarding [true/false]\n","type":"string"},"enableBatch":{"description":"Enable batch forwarding [true/false]\n","type":"string"},"gatewayLogForwardingAzureAnalyticsId":{"description":"The ID of this resource.\n","type":"string"},"outputFormat":{"description":"Logs format [text/json]\n","type":"string"},"pullInterval":{"description":"Pull interval in seconds\n","type":"string"},"workspaceId":{"description":"Azure workspace id\n","type":"string"},"workspaceKey":{"description":"Azure workspace key\n","secret":true,"type":"string"}},"required":["gatewayLogForwardingAzureAnalyticsId"],"stateInputs":{"description":"Input properties used for looking up and filtering GatewayLogForwardingAzureAnalytics resources.\n","properties":{"enable":{"description":"Enable Log Forwarding [true/false]\n","type":"string"},"enableBatch":{"description":"Enable batch forwarding [true/false]\n","type":"string"},"gatewayLogForwardingAzureAnalyticsId":{"description":"The ID of this resource.\n","type":"string"},"outputFormat":{"description":"Logs format [text/json]\n","type":"string"},"pullInterval":{"description":"Pull interval in seconds\n","type":"string"},"workspaceId":{"description":"Azure workspace id\n","type":"string"},"workspaceKey":{"description":"Azure workspace key\n","secret":true,"type":"string"}},"type":"object"},"type":"object"},"akeyless:index/gatewayLogForwardingDatadog:GatewayLogForwardingDatadog":{"description":"Log Forwarding config for datadog\n","inputProperties":{"apiKey":{"description":"Datadog api key\n","secret":true,"type":"string"},"enable":{"description":"Enable Log Forwarding [true/false]\n","type":"string"},"gatewayLogForwardingDatadogId":{"description":"The ID of this resource.\n","type":"string"},"host":{"description":"Datadog host\n","type":"string"},"logService":{"description":"Datadog log service\n","type":"string"},"logSource":{"description":"Datadog log source\n","type":"string"},"logTags":{"description":"A comma-separated list of Datadog log tags formatted as key:value strings\n","type":"string"},"outputFormat":{"description":"Logs format [text/json]\n","type":"string"},"pullInterval":{"description":"Pull interval in seconds\n","type":"string"}},"properties":{"apiKey":{"description":"Datadog api key\n","secret":true,"type":"string"},"enable":{"description":"Enable Log Forwarding [true/false]\n","type":"string"},"gatewayLogForwardingDatadogId":{"description":"The ID of this resource.\n","type":"string"},"host":{"description":"Datadog host\n","type":"string"},"logService":{"description":"Datadog log service\n","type":"string"},"logSource":{"description":"Datadog log source\n","type":"string"},"logTags":{"description":"A comma-separated list of Datadog log tags formatted as key:value strings\n","type":"string"},"outputFormat":{"description":"Logs format [text/json]\n","type":"string"},"pullInterval":{"description":"Pull interval in seconds\n","type":"string"}},"required":["gatewayLogForwardingDatadogId"],"stateInputs":{"description":"Input properties used for looking up and filtering GatewayLogForwardingDatadog resources.\n","properties":{"apiKey":{"description":"Datadog api key\n","secret":true,"type":"string"},"enable":{"description":"Enable Log Forwarding [true/false]\n","type":"string"},"gatewayLogForwardingDatadogId":{"description":"The ID of this resource.\n","type":"string"},"host":{"description":"Datadog host\n","type":"string"},"logService":{"description":"Datadog log service\n","type":"string"},"logSource":{"description":"Datadog log source\n","type":"string"},"logTags":{"description":"A comma-separated list of Datadog log tags formatted as key:value strings\n","type":"string"},"outputFormat":{"description":"Logs format [text/json]\n","type":"string"},"pullInterval":{"description":"Pull interval in seconds\n","type":"string"}},"type":"object"},"type":"object"},"akeyless:index/gatewayLogForwardingElasticsearch:GatewayLogForwardingElasticsearch":{"description":"Log Forwarding config for elasticsearch\n","inputProperties":{"apiKey":{"description":"Elasticsearch api key relevant only for<span pulumi-lang-nodejs=\" apiKey \" pulumi-lang-dotnet=\" ApiKey \" pulumi-lang-go=\" apiKey \" pulumi-lang-python=\" api_key \" pulumi-lang-yaml=\" apiKey \" pulumi-lang-java=\" apiKey \"> api_key </span>auth-type\n","secret":true,"type":"string"},"authType":{"description":"Elasticsearch auth type [api_key/password]\n","type":"string"},"cloudId":{"description":"Elasticsearch cloud id relevant only for cloud server-type\n","type":"string"},"enable":{"description":"Enable Log Forwarding [true/false]\n","type":"string"},"enableTls":{"description":"Enable tls\n","type":"boolean"},"gatewayLogForwardingElasticsearchId":{"description":"The ID of this resource.\n","type":"string"},"index":{"description":"Elasticsearch index\n","type":"string"},"nodes":{"description":"Elasticsearch nodes relevant only for nodes server-type\n","type":"string"},"outputFormat":{"description":"Logs format [text/json]\n","type":"string"},"password":{"description":"Elasticsearch password relevant only for password auth-type\n","secret":true,"type":"string"},"pullInterval":{"description":"Pull interval in seconds\n","type":"string"},"serverType":{"description":"Elasticsearch server type [cloud/nodes]\n","type":"string"},"tlsCertificate":{"description":"Elasticsearch tls certificate (PEM format) in a Base64 format\n","secret":true,"type":"string"},"userName":{"description":"Elasticsearch user name relevant only for password auth-type\n","type":"string"}},"properties":{"apiKey":{"description":"Elasticsearch api key relevant only for<span pulumi-lang-nodejs=\" apiKey \" pulumi-lang-dotnet=\" ApiKey \" pulumi-lang-go=\" apiKey \" pulumi-lang-python=\" api_key \" pulumi-lang-yaml=\" apiKey \" pulumi-lang-java=\" apiKey \"> api_key </span>auth-type\n","secret":true,"type":"string"},"authType":{"description":"Elasticsearch auth type [api_key/password]\n","type":"string"},"cloudId":{"description":"Elasticsearch cloud id relevant only for cloud server-type\n","type":"string"},"enable":{"description":"Enable Log Forwarding [true/false]\n","type":"string"},"enableTls":{"description":"Enable tls\n","type":"boolean"},"gatewayLogForwardingElasticsearchId":{"description":"The ID of this resource.\n","type":"string"},"index":{"description":"Elasticsearch index\n","type":"string"},"nodes":{"description":"Elasticsearch nodes relevant only for nodes server-type\n","type":"string"},"outputFormat":{"description":"Logs format [text/json]\n","type":"string"},"password":{"description":"Elasticsearch password relevant only for password auth-type\n","secret":true,"type":"string"},"pullInterval":{"description":"Pull interval in seconds\n","type":"string"},"serverType":{"description":"Elasticsearch server type [cloud/nodes]\n","type":"string"},"tlsCertificate":{"description":"Elasticsearch tls certificate (PEM format) in a Base64 format\n","secret":true,"type":"string"},"userName":{"description":"Elasticsearch user name relevant only for password auth-type\n","type":"string"}},"required":["gatewayLogForwardingElasticsearchId"],"stateInputs":{"description":"Input properties used for looking up and filtering GatewayLogForwardingElasticsearch resources.\n","properties":{"apiKey":{"description":"Elasticsearch api key relevant only for<span pulumi-lang-nodejs=\" apiKey \" pulumi-lang-dotnet=\" ApiKey \" pulumi-lang-go=\" apiKey \" pulumi-lang-python=\" api_key \" pulumi-lang-yaml=\" apiKey \" pulumi-lang-java=\" apiKey \"> api_key </span>auth-type\n","secret":true,"type":"string"},"authType":{"description":"Elasticsearch auth type [api_key/password]\n","type":"string"},"cloudId":{"description":"Elasticsearch cloud id relevant only for cloud server-type\n","type":"string"},"enable":{"description":"Enable Log Forwarding [true/false]\n","type":"string"},"enableTls":{"description":"Enable tls\n","type":"boolean"},"gatewayLogForwardingElasticsearchId":{"description":"The ID of this resource.\n","type":"string"},"index":{"description":"Elasticsearch index\n","type":"string"},"nodes":{"description":"Elasticsearch nodes relevant only for nodes server-type\n","type":"string"},"outputFormat":{"description":"Logs format [text/json]\n","type":"string"},"password":{"description":"Elasticsearch password relevant only for password auth-type\n","secret":true,"type":"string"},"pullInterval":{"description":"Pull interval in seconds\n","type":"string"},"serverType":{"description":"Elasticsearch server type [cloud/nodes]\n","type":"string"},"tlsCertificate":{"description":"Elasticsearch tls certificate (PEM format) in a Base64 format\n","secret":true,"type":"string"},"userName":{"description":"Elasticsearch user name relevant only for password auth-type\n","type":"string"}},"type":"object"},"type":"object"},"akeyless:index/gatewayLogForwardingGoogleChronicle:GatewayLogForwardingGoogleChronicle":{"description":"Log Forwarding config for google-chronicle\n","inputProperties":{"customerId":{"description":"Google chronicle customer id\n","type":"string"},"enable":{"description":"Enable Log Forwarding [true/false]\n","type":"string"},"gatewayLogForwardingGoogleChronicleId":{"description":"The ID of this resource.\n","type":"string"},"gcpKey":{"description":"Base64-encoded service account private key text\n","secret":true,"type":"string"},"logType":{"description":"Google chronicle log type\n","type":"string"},"outputFormat":{"description":"Logs format [text/json]\n","type":"string"},"pullInterval":{"description":"Pull interval in seconds\n","type":"string"},"region":{"description":"Google chronicle region [eu*multi*region/london/us*multi*region/singapore/tel_aviv]\n","type":"string"}},"properties":{"customerId":{"description":"Google chronicle customer id\n","type":"string"},"enable":{"description":"Enable Log Forwarding [true/false]\n","type":"string"},"gatewayLogForwardingGoogleChronicleId":{"description":"The ID of this resource.\n","type":"string"},"gcpKey":{"description":"Base64-encoded service account private key text\n","secret":true,"type":"string"},"logType":{"description":"Google chronicle log type\n","type":"string"},"outputFormat":{"description":"Logs format [text/json]\n","type":"string"},"pullInterval":{"description":"Pull interval in seconds\n","type":"string"},"region":{"description":"Google chronicle region [eu*multi*region/london/us*multi*region/singapore/tel_aviv]\n","type":"string"}},"required":["gatewayLogForwardingGoogleChronicleId"],"stateInputs":{"description":"Input properties used for looking up and filtering GatewayLogForwardingGoogleChronicle resources.\n","properties":{"customerId":{"description":"Google chronicle customer id\n","type":"string"},"enable":{"description":"Enable Log Forwarding [true/false]\n","type":"string"},"gatewayLogForwardingGoogleChronicleId":{"description":"The ID of this resource.\n","type":"string"},"gcpKey":{"description":"Base64-encoded service account private key text\n","secret":true,"type":"string"},"logType":{"description":"Google chronicle log type\n","type":"string"},"outputFormat":{"description":"Logs format [text/json]\n","type":"string"},"pullInterval":{"description":"Pull interval in seconds\n","type":"string"},"region":{"description":"Google chronicle region [eu*multi*region/london/us*multi*region/singapore/tel_aviv]\n","type":"string"}},"type":"object"},"type":"object"},"akeyless:index/gatewayLogForwardingLogstash:GatewayLogForwardingLogstash":{"description":"Log Forwarding config for logstash\n","inputProperties":{"dns":{"description":"Logstash dns\n","type":"string"},"enable":{"description":"Enable Log Forwarding [true/false]\n","type":"string"},"enableTls":{"description":"Enable tls\n","type":"boolean"},"gatewayLogForwardingLogstashId":{"description":"The ID of this resource.\n","type":"string"},"outputFormat":{"description":"Logs format [text/json]\n","type":"string"},"protocol":{"description":"Logstash protocol [tcp/udp]\n","type":"string"},"pullInterval":{"description":"Pull interval in seconds\n","type":"string"},"tlsCertificate":{"description":"Logstash tls certificate (PEM format) in a Base64 format\n","secret":true,"type":"string"}},"properties":{"dns":{"description":"Logstash dns\n","type":"string"},"enable":{"description":"Enable Log Forwarding [true/false]\n","type":"string"},"enableTls":{"description":"Enable tls\n","type":"boolean"},"gatewayLogForwardingLogstashId":{"description":"The ID of this resource.\n","type":"string"},"outputFormat":{"description":"Logs format [text/json]\n","type":"string"},"protocol":{"description":"Logstash protocol [tcp/udp]\n","type":"string"},"pullInterval":{"description":"Pull interval in seconds\n","type":"string"},"tlsCertificate":{"description":"Logstash tls certificate (PEM format) in a Base64 format\n","secret":true,"type":"string"}},"required":["gatewayLogForwardingLogstashId"],"stateInputs":{"description":"Input properties used for looking up and filtering GatewayLogForwardingLogstash resources.\n","properties":{"dns":{"description":"Logstash dns\n","type":"string"},"enable":{"description":"Enable Log Forwarding [true/false]\n","type":"string"},"enableTls":{"description":"Enable tls\n","type":"boolean"},"gatewayLogForwardingLogstashId":{"description":"The ID of this resource.\n","type":"string"},"outputFormat":{"description":"Logs format [text/json]\n","type":"string"},"protocol":{"description":"Logstash protocol [tcp/udp]\n","type":"string"},"pullInterval":{"description":"Pull interval in seconds\n","type":"string"},"tlsCertificate":{"description":"Logstash tls certificate (PEM format) in a Base64 format\n","secret":true,"type":"string"}},"type":"object"},"type":"object"},"akeyless:index/gatewayLogForwardingLogzIo:GatewayLogForwardingLogzIo":{"description":"Log Forwarding config for logz-io\n","inputProperties":{"enable":{"description":"Enable Log Forwarding [true/false]\n","type":"string"},"gatewayLogForwardingLogzIoId":{"description":"The ID of this resource.\n","type":"string"},"logzIoToken":{"description":"Logz-io token\n","secret":true,"type":"string"},"outputFormat":{"description":"Logs format [text/json]\n","type":"string"},"protocol":{"description":"LogzIo protocol [tcp/https]\n","type":"string"},"pullInterval":{"description":"Pull interval in seconds\n","type":"string"}},"properties":{"enable":{"description":"Enable Log Forwarding [true/false]\n","type":"string"},"gatewayLogForwardingLogzIoId":{"description":"The ID of this resource.\n","type":"string"},"logzIoToken":{"description":"Logz-io token\n","secret":true,"type":"string"},"outputFormat":{"description":"Logs format [text/json]\n","type":"string"},"protocol":{"description":"LogzIo protocol [tcp/https]\n","type":"string"},"pullInterval":{"description":"Pull interval in seconds\n","type":"string"}},"required":["gatewayLogForwardingLogzIoId"],"stateInputs":{"description":"Input properties used for looking up and filtering GatewayLogForwardingLogzIo resources.\n","properties":{"enable":{"description":"Enable Log Forwarding [true/false]\n","type":"string"},"gatewayLogForwardingLogzIoId":{"description":"The ID of this resource.\n","type":"string"},"logzIoToken":{"description":"Logz-io token\n","secret":true,"type":"string"},"outputFormat":{"description":"Logs format [text/json]\n","type":"string"},"protocol":{"description":"LogzIo protocol [tcp/https]\n","type":"string"},"pullInterval":{"description":"Pull interval in seconds\n","type":"string"}},"type":"object"},"type":"object"},"akeyless:index/gatewayLogForwardingSplunk:GatewayLogForwardingSplunk":{"description":"Log Forwarding config for splunk\n","inputProperties":{"enable":{"description":"Enable Log Forwarding [true/false]\n","type":"string"},"enableBatch":{"description":"Enable batch forwarding [true/false]\n","type":"string"},"enableTls":{"description":"Enable tls\n","type":"boolean"},"gatewayLogForwardingSplunkId":{"description":"The ID of this resource.\n","type":"string"},"index":{"description":"Splunk index\n","type":"string"},"outputFormat":{"description":"Logs format [text/json]\n","type":"string"},"pullInterval":{"description":"Pull interval in seconds\n","type":"string"},"source":{"description":"Splunk source\n","type":"string"},"sourceType":{"description":"Splunk source type\n","type":"string"},"splunkToken":{"description":"Splunk token\n","secret":true,"type":"string"},"splunkUrl":{"description":"Splunk server URL\n","type":"string"},"tlsCertificate":{"description":"Splunk tls certificate (PEM format) in a Base64 format\n","secret":true,"type":"string"}},"properties":{"enable":{"description":"Enable Log Forwarding [true/false]\n","type":"string"},"enableBatch":{"description":"Enable batch forwarding [true/false]\n","type":"string"},"enableTls":{"description":"Enable tls\n","type":"boolean"},"gatewayLogForwardingSplunkId":{"description":"The ID of this resource.\n","type":"string"},"index":{"description":"Splunk index\n","type":"string"},"outputFormat":{"description":"Logs format [text/json]\n","type":"string"},"pullInterval":{"description":"Pull interval in seconds\n","type":"string"},"source":{"description":"Splunk source\n","type":"string"},"sourceType":{"description":"Splunk source type\n","type":"string"},"splunkToken":{"description":"Splunk token\n","secret":true,"type":"string"},"splunkUrl":{"description":"Splunk server URL\n","type":"string"},"tlsCertificate":{"description":"Splunk tls certificate (PEM format) in a Base64 format\n","secret":true,"type":"string"}},"required":["gatewayLogForwardingSplunkId"],"stateInputs":{"description":"Input properties used for looking up and filtering GatewayLogForwardingSplunk resources.\n","properties":{"enable":{"description":"Enable Log Forwarding [true/false]\n","type":"string"},"enableBatch":{"description":"Enable batch forwarding [true/false]\n","type":"string"},"enableTls":{"description":"Enable tls\n","type":"boolean"},"gatewayLogForwardingSplunkId":{"description":"The ID of this resource.\n","type":"string"},"index":{"description":"Splunk index\n","type":"string"},"outputFormat":{"description":"Logs format [text/json]\n","type":"string"},"pullInterval":{"description":"Pull interval in seconds\n","type":"string"},"source":{"description":"Splunk source\n","type":"string"},"sourceType":{"description":"Splunk source type\n","type":"string"},"splunkToken":{"description":"Splunk token\n","secret":true,"type":"string"},"splunkUrl":{"description":"Splunk server URL\n","type":"string"},"tlsCertificate":{"description":"Splunk tls certificate (PEM format) in a Base64 format\n","secret":true,"type":"string"}},"type":"object"},"type":"object"},"akeyless:index/gatewayLogForwardingStdout:GatewayLogForwardingStdout":{"description":"Log Forwarding config for standard output\n","inputProperties":{"enable":{"description":"Enable Log Forwarding [true/false]\n","type":"string"},"gatewayLogForwardingStdoutId":{"description":"The ID of this resource.\n","type":"string"},"outputFormat":{"description":"Logs format [text/json]\n","type":"string"},"pullInterval":{"description":"Pull interval in seconds\n","type":"string"}},"properties":{"enable":{"description":"Enable Log Forwarding [true/false]\n","type":"string"},"gatewayLogForwardingStdoutId":{"description":"The ID of this resource.\n","type":"string"},"outputFormat":{"description":"Logs format [text/json]\n","type":"string"},"pullInterval":{"description":"Pull interval in seconds\n","type":"string"}},"required":["gatewayLogForwardingStdoutId"],"stateInputs":{"description":"Input properties used for looking up and filtering GatewayLogForwardingStdout resources.\n","properties":{"enable":{"description":"Enable Log Forwarding [true/false]\n","type":"string"},"gatewayLogForwardingStdoutId":{"description":"The ID of this resource.\n","type":"string"},"outputFormat":{"description":"Logs format [text/json]\n","type":"string"},"pullInterval":{"description":"Pull interval in seconds\n","type":"string"}},"type":"object"},"type":"object"},"akeyless:index/gatewayLogForwardingSumologic:GatewayLogForwardingSumologic":{"description":"Log Forwarding config for sumologic\n","inputProperties":{"enable":{"description":"Enable Log Forwarding [true/false]\n","type":"string"},"endpoint":{"description":"Sumologic endpoint URL\n","secret":true,"type":"string"},"gatewayLogForwardingSumologicId":{"description":"The ID of this resource.\n","type":"string"},"host":{"description":"Sumologic host\n","type":"string"},"outputFormat":{"description":"Logs format [text/json]\n","type":"string"},"pullInterval":{"description":"Pull interval in seconds\n","type":"string"},"sumologicTags":{"description":"A comma-separated list of Sumologic tags\n","type":"string"}},"properties":{"enable":{"description":"Enable Log Forwarding [true/false]\n","type":"string"},"endpoint":{"description":"Sumologic endpoint URL\n","secret":true,"type":"string"},"gatewayLogForwardingSumologicId":{"description":"The ID of this resource.\n","type":"string"},"host":{"description":"Sumologic host\n","type":"string"},"outputFormat":{"description":"Logs format [text/json]\n","type":"string"},"pullInterval":{"description":"Pull interval in seconds\n","type":"string"},"sumologicTags":{"description":"A comma-separated list of Sumologic tags\n","type":"string"}},"required":["gatewayLogForwardingSumologicId"],"stateInputs":{"description":"Input properties used for looking up and filtering GatewayLogForwardingSumologic resources.\n","properties":{"enable":{"description":"Enable Log Forwarding [true/false]\n","type":"string"},"endpoint":{"description":"Sumologic endpoint URL\n","secret":true,"type":"string"},"gatewayLogForwardingSumologicId":{"description":"The ID of this resource.\n","type":"string"},"host":{"description":"Sumologic host\n","type":"string"},"outputFormat":{"description":"Logs format [text/json]\n","type":"string"},"pullInterval":{"description":"Pull interval in seconds\n","type":"string"},"sumologicTags":{"description":"A comma-separated list of Sumologic tags\n","type":"string"}},"type":"object"},"type":"object"},"akeyless:index/gatewayLogForwardingSyslog:GatewayLogForwardingSyslog":{"description":"Log Forwarding config for syslog\n","inputProperties":{"enable":{"description":"Enable Log Forwarding [true/false]\n","type":"string"},"enableTls":{"description":"Enable tls relevant only for network type TCP\n","type":"boolean"},"formatter":{"description":"Syslog formatter [text/cef]\n","type":"string"},"gatewayLogForwardingSyslogId":{"description":"The ID of this resource.\n","type":"string"},"host":{"description":"Syslog host\n","type":"string"},"network":{"description":"Syslog network [tcp/udp]\n","type":"string"},"outputFormat":{"description":"Logs format [text/json]\n","type":"string"},"pullInterval":{"description":"Pull interval in seconds\n","type":"string"},"targetTag":{"description":"Syslog target tag\n","type":"string"},"tlsCertificate":{"description":"Syslog tls certificate (PEM format) in a Base64 format\n","secret":true,"type":"string"}},"properties":{"enable":{"description":"Enable Log Forwarding [true/false]\n","type":"string"},"enableTls":{"description":"Enable tls relevant only for network type TCP\n","type":"boolean"},"formatter":{"description":"Syslog formatter [text/cef]\n","type":"string"},"gatewayLogForwardingSyslogId":{"description":"The ID of this resource.\n","type":"string"},"host":{"description":"Syslog host\n","type":"string"},"network":{"description":"Syslog network [tcp/udp]\n","type":"string"},"outputFormat":{"description":"Logs format [text/json]\n","type":"string"},"pullInterval":{"description":"Pull interval in seconds\n","type":"string"},"targetTag":{"description":"Syslog target tag\n","type":"string"},"tlsCertificate":{"description":"Syslog tls certificate (PEM format) in a Base64 format\n","secret":true,"type":"string"}},"required":["gatewayLogForwardingSyslogId"],"stateInputs":{"description":"Input properties used for looking up and filtering GatewayLogForwardingSyslog resources.\n","properties":{"enable":{"description":"Enable Log Forwarding [true/false]\n","type":"string"},"enableTls":{"description":"Enable tls relevant only for network type TCP\n","type":"boolean"},"formatter":{"description":"Syslog formatter [text/cef]\n","type":"string"},"gatewayLogForwardingSyslogId":{"description":"The ID of this resource.\n","type":"string"},"host":{"description":"Syslog host\n","type":"string"},"network":{"description":"Syslog network [tcp/udp]\n","type":"string"},"outputFormat":{"description":"Logs format [text/json]\n","type":"string"},"pullInterval":{"description":"Pull interval in seconds\n","type":"string"},"targetTag":{"description":"Syslog target tag\n","type":"string"},"tlsCertificate":{"description":"Syslog tls certificate (PEM format) in a Base64 format\n","secret":true,"type":"string"}},"type":"object"},"type":"object"},"akeyless:index/gatewayMigrationActiveDirectory:GatewayMigrationActiveDirectory":{"description":"Active Directory Migration resource\n","inputProperties":{"adAutoRotate":{"description":"Enable/Disable automatic/recurrent rotation for migrated secrets\n","type":"string"},"adComputerBaseDn":{"description":"Distinguished Name of Computer objects to search in Active Directory\n","type":"string"},"adDiscoverIisApp":{"description":"Enable/Disable discovery of IIS application from each domain server\n","type":"string"},"adDiscoverServices":{"description":"Enable/Disable discovery of Windows services from each domain server\n","type":"string"},"adDiscoveryTypes":{"description":"Set migration discovery types (domain-users, computers, local-users)\n","items":{"type":"string"},"type":"array"},"adDomainName":{"description":"Active Directory Domain Name\n","type":"string"},"adDomainUsersPathTemplate":{"description":"Path location template for migrating domain users as Rotated Secrets\n","type":"string"},"adLocalUsersIgnore":{"description":"Comma-separated list of Local Users which should not be migrated\n","type":"string"},"adLocalUsersPathTemplate":{"description":"Path location template for migrating local users as Rotated Secrets\n","type":"string"},"adOsFilter":{"description":"Filter by Operating System to run the migration\n","type":"string"},"adRotationHour":{"description":"The hour of the scheduled rotation in UTC\n","type":"number"},"adRotationInterval":{"description":"The number of days to wait between every automatic rotation [1-365]\n","type":"number"},"adSraEnableRdp":{"description":"Enable/Disable RDP Secure Remote Access for the migrated local users rotated secrets\n","type":"string"},"adSshPort":{"description":"Set the SSH Port for further connection to the domain servers\n","type":"string"},"adTargetFormat":{"description":"Target format for computers migration (linked/regular)\n","type":"string"},"adTargetName":{"description":"Active Directory LDAP Target Name\n","type":"string"},"adTargetsPathTemplate":{"description":"Path location template for migrating domain servers as SSH/Windows Targets\n","type":"string"},"adTargetsType":{"description":"Set the target type of the domain servers [ssh/windows]\n","type":"string"},"adUserBaseDn":{"description":"Distinguished Name of User objects to search in Active Directory\n","type":"string"},"adUserGroups":{"description":"Comma-separated list of domain groups from which privileged domain users will be migrated\n","type":"string"},"adWinrmOverHttp":{"description":"Use WinRM over HTTP\n","type":"string"},"adWinrmPort":{"description":"Set the WinRM Port for further connection to the domain servers\n","type":"string"},"gatewayMigrationActiveDirectoryId":{"description":"The ID of this resource.\n","type":"string"},"name":{"description":"Migration name\n","type":"string"},"protectionKey":{"description":"The name of a key that used to encrypt the secret value (if empty, the account default protectionKey key will be used)\n","type":"string"},"targetLocation":{"description":"Target location in Akeyless for imported secrets\n","type":"string"}},"properties":{"adAutoRotate":{"description":"Enable/Disable automatic/recurrent rotation for migrated secrets\n","type":"string"},"adComputerBaseDn":{"description":"Distinguished Name of Computer objects to search in Active Directory\n","type":"string"},"adDiscoverIisApp":{"description":"Enable/Disable discovery of IIS application from each domain server\n","type":"string"},"adDiscoverServices":{"description":"Enable/Disable discovery of Windows services from each domain server\n","type":"string"},"adDiscoveryTypes":{"description":"Set migration discovery types (domain-users, computers, local-users)\n","items":{"type":"string"},"type":"array"},"adDomainName":{"description":"Active Directory Domain Name\n","type":"string"},"adDomainUsersPathTemplate":{"description":"Path location template for migrating domain users as Rotated Secrets\n","type":"string"},"adLocalUsersIgnore":{"description":"Comma-separated list of Local Users which should not be migrated\n","type":"string"},"adLocalUsersPathTemplate":{"description":"Path location template for migrating local users as Rotated Secrets\n","type":"string"},"adOsFilter":{"description":"Filter by Operating System to run the migration\n","type":"string"},"adRotationHour":{"description":"The hour of the scheduled rotation in UTC\n","type":"number"},"adRotationInterval":{"description":"The number of days to wait between every automatic rotation [1-365]\n","type":"number"},"adSraEnableRdp":{"description":"Enable/Disable RDP Secure Remote Access for the migrated local users rotated secrets\n","type":"string"},"adSshPort":{"description":"Set the SSH Port for further connection to the domain servers\n","type":"string"},"adTargetFormat":{"description":"Target format for computers migration (linked/regular)\n","type":"string"},"adTargetName":{"description":"Active Directory LDAP Target Name\n","type":"string"},"adTargetsPathTemplate":{"description":"Path location template for migrating domain servers as SSH/Windows Targets\n","type":"string"},"adTargetsType":{"description":"Set the target type of the domain servers [ssh/windows]\n","type":"string"},"adUserBaseDn":{"description":"Distinguished Name of User objects to search in Active Directory\n","type":"string"},"adUserGroups":{"description":"Comma-separated list of domain groups from which privileged domain users will be migrated\n","type":"string"},"adWinrmOverHttp":{"description":"Use WinRM over HTTP\n","type":"string"},"adWinrmPort":{"description":"Set the WinRM Port for further connection to the domain servers\n","type":"string"},"gatewayMigrationActiveDirectoryId":{"description":"The ID of this resource.\n","type":"string"},"migrationId":{"description":"Migration ID\n","type":"string"},"name":{"description":"Migration name\n","type":"string"},"protectionKey":{"description":"The name of a key that used to encrypt the secret value (if empty, the account default protectionKey key will be used)\n","type":"string"},"targetLocation":{"description":"Target location in Akeyless for imported secrets\n","type":"string"}},"required":["gatewayMigrationActiveDirectoryId","migrationId","name","targetLocation"],"requiredInputs":["targetLocation"],"stateInputs":{"description":"Input properties used for looking up and filtering GatewayMigrationActiveDirectory resources.\n","properties":{"adAutoRotate":{"description":"Enable/Disable automatic/recurrent rotation for migrated secrets\n","type":"string"},"adComputerBaseDn":{"description":"Distinguished Name of Computer objects to search in Active Directory\n","type":"string"},"adDiscoverIisApp":{"description":"Enable/Disable discovery of IIS application from each domain server\n","type":"string"},"adDiscoverServices":{"description":"Enable/Disable discovery of Windows services from each domain server\n","type":"string"},"adDiscoveryTypes":{"description":"Set migration discovery types (domain-users, computers, local-users)\n","items":{"type":"string"},"type":"array"},"adDomainName":{"description":"Active Directory Domain Name\n","type":"string"},"adDomainUsersPathTemplate":{"description":"Path location template for migrating domain users as Rotated Secrets\n","type":"string"},"adLocalUsersIgnore":{"description":"Comma-separated list of Local Users which should not be migrated\n","type":"string"},"adLocalUsersPathTemplate":{"description":"Path location template for migrating local users as Rotated Secrets\n","type":"string"},"adOsFilter":{"description":"Filter by Operating System to run the migration\n","type":"string"},"adRotationHour":{"description":"The hour of the scheduled rotation in UTC\n","type":"number"},"adRotationInterval":{"description":"The number of days to wait between every automatic rotation [1-365]\n","type":"number"},"adSraEnableRdp":{"description":"Enable/Disable RDP Secure Remote Access for the migrated local users rotated secrets\n","type":"string"},"adSshPort":{"description":"Set the SSH Port for further connection to the domain servers\n","type":"string"},"adTargetFormat":{"description":"Target format for computers migration (linked/regular)\n","type":"string"},"adTargetName":{"description":"Active Directory LDAP Target Name\n","type":"string"},"adTargetsPathTemplate":{"description":"Path location template for migrating domain servers as SSH/Windows Targets\n","type":"string"},"adTargetsType":{"description":"Set the target type of the domain servers [ssh/windows]\n","type":"string"},"adUserBaseDn":{"description":"Distinguished Name of User objects to search in Active Directory\n","type":"string"},"adUserGroups":{"description":"Comma-separated list of domain groups from which privileged domain users will be migrated\n","type":"string"},"adWinrmOverHttp":{"description":"Use WinRM over HTTP\n","type":"string"},"adWinrmPort":{"description":"Set the WinRM Port for further connection to the domain servers\n","type":"string"},"gatewayMigrationActiveDirectoryId":{"description":"The ID of this resource.\n","type":"string"},"migrationId":{"description":"Migration ID\n","type":"string"},"name":{"description":"Migration name\n","type":"string"},"protectionKey":{"description":"The name of a key that used to encrypt the secret value (if empty, the account default protectionKey key will be used)\n","type":"string"},"targetLocation":{"description":"Target location in Akeyless for imported secrets\n","type":"string"}},"type":"object"},"type":"object"},"akeyless:index/gatewayMigrationAws:GatewayMigrationAws":{"description":"AWS Migration resource\n","inputProperties":{"awsKey":{"description":"AWS Secret Access Key (relevant only for AWS migration)\n","secret":true,"type":"string"},"awsKeyId":{"description":"AWS Access Key ID with sufficient permissions to get all secrets, e.g. 'arn:aws:secretsmanager:[Region]:[AccountId]:secret:[/path/to/secrets/_*]' (relevant only for AWS migration)\n","type":"string"},"awsRegion":{"description":"AWS region of the required Secrets Manager (relevant only for AWS migration)\n","type":"string"},"gatewayMigrationAwsId":{"description":"The ID of this resource.\n","type":"string"},"name":{"description":"Migration name\n","type":"string"},"protectionKey":{"description":"The name of the key that protects the classic key value (if empty, the account default key will be used)\n","type":"string"},"targetLocation":{"description":"Target location in Akeyless for imported secrets\n","type":"string"}},"properties":{"awsKey":{"description":"AWS Secret Access Key (relevant only for AWS migration)\n","secret":true,"type":"string"},"awsKeyId":{"description":"AWS Access Key ID with sufficient permissions to get all secrets, e.g. 'arn:aws:secretsmanager:[Region]:[AccountId]:secret:[/path/to/secrets/_*]' (relevant only for AWS migration)\n","type":"string"},"awsRegion":{"description":"AWS region of the required Secrets Manager (relevant only for AWS migration)\n","type":"string"},"gatewayMigrationAwsId":{"description":"The ID of this resource.\n","type":"string"},"migrationId":{"description":"Migration ID\n","type":"string"},"name":{"description":"Migration name\n","type":"string"},"protectionKey":{"description":"The name of the key that protects the classic key value (if empty, the account default key will be used)\n","type":"string"},"targetLocation":{"description":"Target location in Akeyless for imported secrets\n","type":"string"}},"required":["gatewayMigrationAwsId","migrationId","name","targetLocation"],"requiredInputs":["targetLocation"],"stateInputs":{"description":"Input properties used for looking up and filtering GatewayMigrationAws resources.\n","properties":{"awsKey":{"description":"AWS Secret Access Key (relevant only for AWS migration)\n","secret":true,"type":"string"},"awsKeyId":{"description":"AWS Access Key ID with sufficient permissions to get all secrets, e.g. 'arn:aws:secretsmanager:[Region]:[AccountId]:secret:[/path/to/secrets/_*]' (relevant only for AWS migration)\n","type":"string"},"awsRegion":{"description":"AWS region of the required Secrets Manager (relevant only for AWS migration)\n","type":"string"},"gatewayMigrationAwsId":{"description":"The ID of this resource.\n","type":"string"},"migrationId":{"description":"Migration ID\n","type":"string"},"name":{"description":"Migration name\n","type":"string"},"protectionKey":{"description":"The name of the key that protects the classic key value (if empty, the account default key will be used)\n","type":"string"},"targetLocation":{"description":"Target location in Akeyless for imported secrets\n","type":"string"}},"type":"object"},"type":"object"},"akeyless:index/gatewayMigrationAzureKv:GatewayMigrationAzureKv":{"description":"Azure Key Vault Migration resource\n","inputProperties":{"azureClientId":{"description":"Azure Key Vault Access client ID, should be Azure AD App with a service principal (relevant only for Azure Key Vault migration)\n","type":"string"},"azureKvName":{"description":"Azure Key Vault Name (relevant only for Azure Key Vault migration)\n","type":"string"},"azureSecret":{"description":"Azure Key Vault secret (relevant only for Azure Key Vault migration)\n","secret":true,"type":"string"},"azureTenantId":{"description":"Azure Key Vault Access tenant ID (relevant only for Azure Key Vault migration)\n","type":"string"},"expirationEventIns":{"description":"How many days before the expiration of the certificate would you like to be notified.\n","items":{"type":"string"},"type":"array"},"gatewayMigrationAzureKvId":{"description":"The ID of this resource.\n","type":"string"},"name":{"description":"Migration name\n","type":"string"},"protectionKey":{"description":"The name of the key that protects the classic key value (if empty, the account default key will be used)\n","type":"string"},"targetLocation":{"description":"Target location in Akeyless for imported secrets\n","type":"string"}},"properties":{"azureClientId":{"description":"Azure Key Vault Access client ID, should be Azure AD App with a service principal (relevant only for Azure Key Vault migration)\n","type":"string"},"azureKvName":{"description":"Azure Key Vault Name (relevant only for Azure Key Vault migration)\n","type":"string"},"azureSecret":{"description":"Azure Key Vault secret (relevant only for Azure Key Vault migration)\n","secret":true,"type":"string"},"azureTenantId":{"description":"Azure Key Vault Access tenant ID (relevant only for Azure Key Vault migration)\n","type":"string"},"expirationEventIns":{"description":"How many days before the expiration of the certificate would you like to be notified.\n","items":{"type":"string"},"type":"array"},"gatewayMigrationAzureKvId":{"description":"The ID of this resource.\n","type":"string"},"migrationId":{"description":"Migration ID\n","type":"string"},"name":{"description":"Migration name\n","type":"string"},"protectionKey":{"description":"The name of the key that protects the classic key value (if empty, the account default key will be used)\n","type":"string"},"targetLocation":{"description":"Target location in Akeyless for imported secrets\n","type":"string"}},"required":["gatewayMigrationAzureKvId","migrationId","name","targetLocation"],"requiredInputs":["targetLocation"],"stateInputs":{"description":"Input properties used for looking up and filtering GatewayMigrationAzureKv resources.\n","properties":{"azureClientId":{"description":"Azure Key Vault Access client ID, should be Azure AD App with a service principal (relevant only for Azure Key Vault migration)\n","type":"string"},"azureKvName":{"description":"Azure Key Vault Name (relevant only for Azure Key Vault migration)\n","type":"string"},"azureSecret":{"description":"Azure Key Vault secret (relevant only for Azure Key Vault migration)\n","secret":true,"type":"string"},"azureTenantId":{"description":"Azure Key Vault Access tenant ID (relevant only for Azure Key Vault migration)\n","type":"string"},"expirationEventIns":{"description":"How many days before the expiration of the certificate would you like to be notified.\n","items":{"type":"string"},"type":"array"},"gatewayMigrationAzureKvId":{"description":"The ID of this resource.\n","type":"string"},"migrationId":{"description":"Migration ID\n","type":"string"},"name":{"description":"Migration name\n","type":"string"},"protectionKey":{"description":"The name of the key that protects the classic key value (if empty, the account default key will be used)\n","type":"string"},"targetLocation":{"description":"Target location in Akeyless for imported secrets\n","type":"string"}},"type":"object"},"type":"object"},"akeyless:index/gatewayMigrationCertificate:GatewayMigrationCertificate":{"description":"Certificate Migration resource\n","inputProperties":{"expirationEventIns":{"description":"How many days before the expiration of the certificate would you like to be notified\n","items":{"type":"string"},"type":"array"},"gatewayMigrationCertificateId":{"description":"The ID of this resource.\n","type":"string"},"hosts":{"description":"A comma separated list of IPs, CIDR ranges, or DNS names to scan\n","type":"string"},"name":{"description":"Migration name\n","type":"string"},"portRanges":{"description":"A comma separated list of port ranges Examples: \"80,443\" or \"80,443,8080-8090\" or \"443\"\n","type":"string"},"protectionKey":{"description":"The name of the key that protects the classic key value (if empty, the account default key will be used)\n","type":"string"},"targetLocation":{"description":"Target location in Akeyless for imported secrets\n","type":"string"}},"properties":{"expirationEventIns":{"description":"How many days before the expiration of the certificate would you like to be notified\n","items":{"type":"string"},"type":"array"},"gatewayMigrationCertificateId":{"description":"The ID of this resource.\n","type":"string"},"hosts":{"description":"A comma separated list of IPs, CIDR ranges, or DNS names to scan\n","type":"string"},"migrationId":{"description":"Migration ID\n","type":"string"},"name":{"description":"Migration name\n","type":"string"},"portRanges":{"description":"A comma separated list of port ranges Examples: \"80,443\" or \"80,443,8080-8090\" or \"443\"\n","type":"string"},"protectionKey":{"description":"The name of the key that protects the classic key value (if empty, the account default key will be used)\n","type":"string"},"targetLocation":{"description":"Target location in Akeyless for imported secrets\n","type":"string"}},"required":["gatewayMigrationCertificateId","hosts","migrationId","name","targetLocation"],"requiredInputs":["hosts","targetLocation"],"stateInputs":{"description":"Input properties used for looking up and filtering GatewayMigrationCertificate resources.\n","properties":{"expirationEventIns":{"description":"How many days before the expiration of the certificate would you like to be notified\n","items":{"type":"string"},"type":"array"},"gatewayMigrationCertificateId":{"description":"The ID of this resource.\n","type":"string"},"hosts":{"description":"A comma separated list of IPs, CIDR ranges, or DNS names to scan\n","type":"string"},"migrationId":{"description":"Migration ID\n","type":"string"},"name":{"description":"Migration name\n","type":"string"},"portRanges":{"description":"A comma separated list of port ranges Examples: \"80,443\" or \"80,443,8080-8090\" or \"443\"\n","type":"string"},"protectionKey":{"description":"The name of the key that protects the classic key value (if empty, the account default key will be used)\n","type":"string"},"targetLocation":{"description":"Target location in Akeyless for imported secrets\n","type":"string"}},"type":"object"},"type":"object"},"akeyless:index/gatewayMigrationGcp:GatewayMigrationGcp":{"description":"GCP Migration resource\n","inputProperties":{"gatewayMigrationGcpId":{"description":"The ID of this resource.\n","type":"string"},"gcpKey":{"description":"Base64-encoded GCP Service Account private key text with sufficient permissions to Secrets Manager, Minimum required permission is Secret Manager Secret Accessor, e.g. 'roles/secretmanager.secretAccessor' (relevant only for GCP migration)\n","secret":true,"type":"string"},"name":{"description":"Migration name\n","type":"string"},"protectionKey":{"description":"The name of the key that protects the classic key value (if empty, the account default key will be used)\n","type":"string"},"targetLocation":{"description":"Target location in Akeyless for imported secrets\n","type":"string"}},"properties":{"gatewayMigrationGcpId":{"description":"The ID of this resource.\n","type":"string"},"gcpKey":{"description":"Base64-encoded GCP Service Account private key text with sufficient permissions to Secrets Manager, Minimum required permission is Secret Manager Secret Accessor, e.g. 'roles/secretmanager.secretAccessor' (relevant only for GCP migration)\n","secret":true,"type":"string"},"migrationId":{"description":"Migration ID\n","type":"string"},"name":{"description":"Migration name\n","type":"string"},"protectionKey":{"description":"The name of the key that protects the classic key value (if empty, the account default key will be used)\n","type":"string"},"targetLocation":{"description":"Target location in Akeyless for imported secrets\n","type":"string"}},"required":["gatewayMigrationGcpId","migrationId","name","targetLocation"],"requiredInputs":["targetLocation"],"stateInputs":{"description":"Input properties used for looking up and filtering GatewayMigrationGcp resources.\n","properties":{"gatewayMigrationGcpId":{"description":"The ID of this resource.\n","type":"string"},"gcpKey":{"description":"Base64-encoded GCP Service Account private key text with sufficient permissions to Secrets Manager, Minimum required permission is Secret Manager Secret Accessor, e.g. 'roles/secretmanager.secretAccessor' (relevant only for GCP migration)\n","secret":true,"type":"string"},"migrationId":{"description":"Migration ID\n","type":"string"},"name":{"description":"Migration name\n","type":"string"},"protectionKey":{"description":"The name of the key that protects the classic key value (if empty, the account default key will be used)\n","type":"string"},"targetLocation":{"description":"Target location in Akeyless for imported secrets\n","type":"string"}},"type":"object"},"type":"object"},"akeyless:index/gatewayMigrationHashi:GatewayMigrationHashi":{"description":"HashiCorp Vault Migration resource\n","inputProperties":{"gatewayMigrationHashiId":{"description":"The ID of this resource.\n","type":"string"},"hashiJson":{"description":"Import secret key as json value or independent secrets (relevant only for HasiCorp Vault migration) [true/false]\n","type":"string"},"hashiNs":{"description":"HashiCorp Vault Namespaces is a comma-separated list of namespaces which need to be imported into Akeyless Vault. For every provided namespace, all its child namespaces are imported as well, e.g. nmsp/subnmsp1/subnmsp2,nmsp/anothernmsp. By default, import all namespaces (relevant only for HasiCorp Vault migration)\n","items":{"type":"string"},"type":"array"},"hashiToken":{"description":"HashiCorp Vault access token with sufficient permissions to preform list & read operations on secrets objects (relevant only for HasiCorp Vault migration)\n","secret":true,"type":"string"},"hashiUrl":{"description":"HashiCorp Vault API URL, e.g. https://vault-mgr01:8200 (relevant only for HasiCorp Vault migration)\n","type":"string"},"name":{"description":"Migration name\n","type":"string"},"protectionKey":{"description":"The name of a key that used to encrypt the secret value (if empty, the account default protectionKey key will be used)\n","type":"string"},"targetLocation":{"description":"Target location in Akeyless for imported secrets\n","type":"string"}},"properties":{"gatewayMigrationHashiId":{"description":"The ID of this resource.\n","type":"string"},"hashiJson":{"description":"Import secret key as json value or independent secrets (relevant only for HasiCorp Vault migration) [true/false]\n","type":"string"},"hashiNs":{"description":"HashiCorp Vault Namespaces is a comma-separated list of namespaces which need to be imported into Akeyless Vault. For every provided namespace, all its child namespaces are imported as well, e.g. nmsp/subnmsp1/subnmsp2,nmsp/anothernmsp. By default, import all namespaces (relevant only for HasiCorp Vault migration)\n","items":{"type":"string"},"type":"array"},"hashiToken":{"description":"HashiCorp Vault access token with sufficient permissions to preform list & read operations on secrets objects (relevant only for HasiCorp Vault migration)\n","secret":true,"type":"string"},"hashiUrl":{"description":"HashiCorp Vault API URL, e.g. https://vault-mgr01:8200 (relevant only for HasiCorp Vault migration)\n","type":"string"},"migrationId":{"description":"Migration ID\n","type":"string"},"name":{"description":"Migration name\n","type":"string"},"protectionKey":{"description":"The name of a key that used to encrypt the secret value (if empty, the account default protectionKey key will be used)\n","type":"string"},"targetLocation":{"description":"Target location in Akeyless for imported secrets\n","type":"string"}},"required":["gatewayMigrationHashiId","migrationId","name","targetLocation"],"requiredInputs":["targetLocation"],"stateInputs":{"description":"Input properties used for looking up and filtering GatewayMigrationHashi resources.\n","properties":{"gatewayMigrationHashiId":{"description":"The ID of this resource.\n","type":"string"},"hashiJson":{"description":"Import secret key as json value or independent secrets (relevant only for HasiCorp Vault migration) [true/false]\n","type":"string"},"hashiNs":{"description":"HashiCorp Vault Namespaces is a comma-separated list of namespaces which need to be imported into Akeyless Vault. For every provided namespace, all its child namespaces are imported as well, e.g. nmsp/subnmsp1/subnmsp2,nmsp/anothernmsp. By default, import all namespaces (relevant only for HasiCorp Vault migration)\n","items":{"type":"string"},"type":"array"},"hashiToken":{"description":"HashiCorp Vault access token with sufficient permissions to preform list & read operations on secrets objects (relevant only for HasiCorp Vault migration)\n","secret":true,"type":"string"},"hashiUrl":{"description":"HashiCorp Vault API URL, e.g. https://vault-mgr01:8200 (relevant only for HasiCorp Vault migration)\n","type":"string"},"migrationId":{"description":"Migration ID\n","type":"string"},"name":{"description":"Migration name\n","type":"string"},"protectionKey":{"description":"The name of a key that used to encrypt the secret value (if empty, the account default protectionKey key will be used)\n","type":"string"},"targetLocation":{"description":"Target location in Akeyless for imported secrets\n","type":"string"}},"type":"object"},"type":"object"},"akeyless:index/gatewayMigrationK8s:GatewayMigrationK8s":{"description":"Kubernetes Migration resource\n","inputProperties":{"gatewayMigrationK8sId":{"description":"The ID of this resource.\n","type":"string"},"k8sCaCertificates":{"description":"For Certificate Authentication method K8s Cluster CA certificate (relevant only for K8s migration with Certificate Authentication method)\n","items":{"type":"number"},"type":"array"},"k8sClientCertificates":{"description":"K8s Client certificate with sufficient permission to list and get secrets in the namespace(s) you selected (relevant only for K8s migration with Certificate Authentication method)\n","items":{"type":"number"},"type":"array"},"k8sClientKeys":{"description":"K8s Client key (relevant only for K8s migration with Certificate Authentication method)\n","items":{"type":"number"},"type":"array"},"k8sNamespace":{"description":"K8s Namespace, Use this field to import secrets from a particular namespace only. By default, the secrets are imported from all namespaces (relevant only for K8s migration)\n","type":"string"},"k8sPassword":{"description":"K8s Client password (relevant only for K8s migration with Password Authentication method)\n","secret":true,"type":"string"},"k8sSkipSystem":{"description":"K8s Skip Control Plane Secrets, This option allows to avoid importing secrets from system namespaces (relevant only for K8s migration)\n","type":"boolean"},"k8sToken":{"description":"For Token Authentication method K8s Bearer Token with sufficient permission to list and get secrets in the namespace(s) you selected (relevant only for K8s migration with Token Authentication method)\n","secret":true,"type":"string"},"k8sUrl":{"description":"K8s API Server URL, e.g. https://k8s-api.mycompany.com:6443 (relevant only for K8s migration)\n","type":"string"},"k8sUsername":{"description":"For Password Authentication method K8s Client username with sufficient permission to list and get secrets in the namespace(s) you selected (relevant only for K8s migration with Password Authentication method)\n","type":"string"},"name":{"description":"Migration name\n","type":"string"},"protectionKey":{"description":"The name of a key that used to encrypt the secret value (if empty, the account default protectionKey key will be used)\n","type":"string"},"targetLocation":{"description":"Target location in Akeyless for imported secrets\n","type":"string"}},"properties":{"gatewayMigrationK8sId":{"description":"The ID of this resource.\n","type":"string"},"k8sCaCertificates":{"description":"For Certificate Authentication method K8s Cluster CA certificate (relevant only for K8s migration with Certificate Authentication method)\n","items":{"type":"number"},"type":"array"},"k8sClientCertificates":{"description":"K8s Client certificate with sufficient permission to list and get secrets in the namespace(s) you selected (relevant only for K8s migration with Certificate Authentication method)\n","items":{"type":"number"},"type":"array"},"k8sClientKeys":{"description":"K8s Client key (relevant only for K8s migration with Certificate Authentication method)\n","items":{"type":"number"},"type":"array"},"k8sNamespace":{"description":"K8s Namespace, Use this field to import secrets from a particular namespace only. By default, the secrets are imported from all namespaces (relevant only for K8s migration)\n","type":"string"},"k8sPassword":{"description":"K8s Client password (relevant only for K8s migration with Password Authentication method)\n","secret":true,"type":"string"},"k8sSkipSystem":{"description":"K8s Skip Control Plane Secrets, This option allows to avoid importing secrets from system namespaces (relevant only for K8s migration)\n","type":"boolean"},"k8sToken":{"description":"For Token Authentication method K8s Bearer Token with sufficient permission to list and get secrets in the namespace(s) you selected (relevant only for K8s migration with Token Authentication method)\n","secret":true,"type":"string"},"k8sUrl":{"description":"K8s API Server URL, e.g. https://k8s-api.mycompany.com:6443 (relevant only for K8s migration)\n","type":"string"},"k8sUsername":{"description":"For Password Authentication method K8s Client username with sufficient permission to list and get secrets in the namespace(s) you selected (relevant only for K8s migration with Password Authentication method)\n","type":"string"},"migrationId":{"description":"Migration ID\n","type":"string"},"name":{"description":"Migration name\n","type":"string"},"protectionKey":{"description":"The name of a key that used to encrypt the secret value (if empty, the account default protectionKey key will be used)\n","type":"string"},"targetLocation":{"description":"Target location in Akeyless for imported secrets\n","type":"string"}},"required":["gatewayMigrationK8sId","migrationId","name","targetLocation"],"requiredInputs":["targetLocation"],"stateInputs":{"description":"Input properties used for looking up and filtering GatewayMigrationK8s resources.\n","properties":{"gatewayMigrationK8sId":{"description":"The ID of this resource.\n","type":"string"},"k8sCaCertificates":{"description":"For Certificate Authentication method K8s Cluster CA certificate (relevant only for K8s migration with Certificate Authentication method)\n","items":{"type":"number"},"type":"array"},"k8sClientCertificates":{"description":"K8s Client certificate with sufficient permission to list and get secrets in the namespace(s) you selected (relevant only for K8s migration with Certificate Authentication method)\n","items":{"type":"number"},"type":"array"},"k8sClientKeys":{"description":"K8s Client key (relevant only for K8s migration with Certificate Authentication method)\n","items":{"type":"number"},"type":"array"},"k8sNamespace":{"description":"K8s Namespace, Use this field to import secrets from a particular namespace only. By default, the secrets are imported from all namespaces (relevant only for K8s migration)\n","type":"string"},"k8sPassword":{"description":"K8s Client password (relevant only for K8s migration with Password Authentication method)\n","secret":true,"type":"string"},"k8sSkipSystem":{"description":"K8s Skip Control Plane Secrets, This option allows to avoid importing secrets from system namespaces (relevant only for K8s migration)\n","type":"boolean"},"k8sToken":{"description":"For Token Authentication method K8s Bearer Token with sufficient permission to list and get secrets in the namespace(s) you selected (relevant only for K8s migration with Token Authentication method)\n","secret":true,"type":"string"},"k8sUrl":{"description":"K8s API Server URL, e.g. https://k8s-api.mycompany.com:6443 (relevant only for K8s migration)\n","type":"string"},"k8sUsername":{"description":"For Password Authentication method K8s Client username with sufficient permission to list and get secrets in the namespace(s) you selected (relevant only for K8s migration with Password Authentication method)\n","type":"string"},"migrationId":{"description":"Migration ID\n","type":"string"},"name":{"description":"Migration name\n","type":"string"},"protectionKey":{"description":"The name of a key that used to encrypt the secret value (if empty, the account default protectionKey key will be used)\n","type":"string"},"targetLocation":{"description":"Target location in Akeyless for imported secrets\n","type":"string"}},"type":"object"},"type":"object"},"akeyless:index/gatewayMigrationServerInventory:GatewayMigrationServerInventory":{"description":"Server Inventory Migration resource\n","inputProperties":{"gatewayMigrationServerInventoryId":{"description":"The ID of this resource.\n","type":"string"},"hosts":{"description":"A comma separated list of IPs, CIDR ranges, or DNS names to scan\n","type":"string"},"name":{"description":"Migration name\n","type":"string"},"protectionKey":{"description":"The name of a key that used to encrypt the secret value (if empty, the account default protectionKey key will be used)\n","type":"string"},"siAutoRotate":{"description":"Enable/Disable automatic/recurrent rotation for migrated secrets. Default is false: only manual rotation is allowed for migrated secrets. If set to true, this command should be combined with --si-rotation-interval and --si-rotation-hour parameters (Relevant only for Server Inventory migration)\n","type":"string"},"siRotationHour":{"description":"The hour of the scheduled rotation in UTC (Relevant only for Server Inventory migration)\n","type":"number"},"siRotationInterval":{"description":"The number of days to wait between every automatic rotation 1-365\n","type":"number"},"siSraEnableRdp":{"description":"Enable/Disable RDP Secure Remote Access for the migrated local users rotated secrets. Default is false: rotated secrets will not be created with SRA (Relevant only for Server Inventory migration)\n","type":"string"},"siTargetName":{"description":"SSH, Windows or Linked Target Name. (Relevant only for Server Inventory migration)\n","type":"string"},"siUserGroups":{"description":"Comma-separated list of groups to migrate users from. If empty, all users from all groups will be migrated (Relevant only for Server Inventory migration)\n","type":"string"},"siUsersIgnore":{"description":"Comma-separated list of Local Users which should not be migrated (Relevant only for Server Inventory migration)\n","type":"string"},"siUsersPathTemplate":{"description":"Path location template for migrating users as Rotated Secrets e.g.: .../Users/{COMPUTER_NAME}/{USERNAME} (Relevant only for Server Inventory migration)\n","type":"string"},"targetLocation":{"description":"Target location in Akeyless for imported secrets\n","type":"string"}},"properties":{"gatewayMigrationServerInventoryId":{"description":"The ID of this resource.\n","type":"string"},"hosts":{"description":"A comma separated list of IPs, CIDR ranges, or DNS names to scan\n","type":"string"},"migrationId":{"description":"Migration ID\n","type":"string"},"name":{"description":"Migration name\n","type":"string"},"protectionKey":{"description":"The name of a key that used to encrypt the secret value (if empty, the account default protectionKey key will be used)\n","type":"string"},"siAutoRotate":{"description":"Enable/Disable automatic/recurrent rotation for migrated secrets. Default is false: only manual rotation is allowed for migrated secrets. If set to true, this command should be combined with --si-rotation-interval and --si-rotation-hour parameters (Relevant only for Server Inventory migration)\n","type":"string"},"siRotationHour":{"description":"The hour of the scheduled rotation in UTC (Relevant only for Server Inventory migration)\n","type":"number"},"siRotationInterval":{"description":"The number of days to wait between every automatic rotation 1-365\n","type":"number"},"siSraEnableRdp":{"description":"Enable/Disable RDP Secure Remote Access for the migrated local users rotated secrets. Default is false: rotated secrets will not be created with SRA (Relevant only for Server Inventory migration)\n","type":"string"},"siTargetName":{"description":"SSH, Windows or Linked Target Name. (Relevant only for Server Inventory migration)\n","type":"string"},"siUserGroups":{"description":"Comma-separated list of groups to migrate users from. If empty, all users from all groups will be migrated (Relevant only for Server Inventory migration)\n","type":"string"},"siUsersIgnore":{"description":"Comma-separated list of Local Users which should not be migrated (Relevant only for Server Inventory migration)\n","type":"string"},"siUsersPathTemplate":{"description":"Path location template for migrating users as Rotated Secrets e.g.: .../Users/{COMPUTER_NAME}/{USERNAME} (Relevant only for Server Inventory migration)\n","type":"string"},"targetLocation":{"description":"Target location in Akeyless for imported secrets\n","type":"string"}},"required":["gatewayMigrationServerInventoryId","hosts","migrationId","name","siTargetName","siUsersPathTemplate","targetLocation"],"requiredInputs":["hosts","siTargetName","siUsersPathTemplate","targetLocation"],"stateInputs":{"description":"Input properties used for looking up and filtering GatewayMigrationServerInventory resources.\n","properties":{"gatewayMigrationServerInventoryId":{"description":"The ID of this resource.\n","type":"string"},"hosts":{"description":"A comma separated list of IPs, CIDR ranges, or DNS names to scan\n","type":"string"},"migrationId":{"description":"Migration ID\n","type":"string"},"name":{"description":"Migration name\n","type":"string"},"protectionKey":{"description":"The name of a key that used to encrypt the secret value (if empty, the account default protectionKey key will be used)\n","type":"string"},"siAutoRotate":{"description":"Enable/Disable automatic/recurrent rotation for migrated secrets. Default is false: only manual rotation is allowed for migrated secrets. If set to true, this command should be combined with --si-rotation-interval and --si-rotation-hour parameters (Relevant only for Server Inventory migration)\n","type":"string"},"siRotationHour":{"description":"The hour of the scheduled rotation in UTC (Relevant only for Server Inventory migration)\n","type":"number"},"siRotationInterval":{"description":"The number of days to wait between every automatic rotation 1-365\n","type":"number"},"siSraEnableRdp":{"description":"Enable/Disable RDP Secure Remote Access for the migrated local users rotated secrets. Default is false: rotated secrets will not be created with SRA (Relevant only for Server Inventory migration)\n","type":"string"},"siTargetName":{"description":"SSH, Windows or Linked Target Name. (Relevant only for Server Inventory migration)\n","type":"string"},"siUserGroups":{"description":"Comma-separated list of groups to migrate users from. If empty, all users from all groups will be migrated (Relevant only for Server Inventory migration)\n","type":"string"},"siUsersIgnore":{"description":"Comma-separated list of Local Users which should not be migrated (Relevant only for Server Inventory migration)\n","type":"string"},"siUsersPathTemplate":{"description":"Path location template for migrating users as Rotated Secrets e.g.: .../Users/{COMPUTER_NAME}/{USERNAME} (Relevant only for Server Inventory migration)\n","type":"string"},"targetLocation":{"description":"Target location in Akeyless for imported secrets\n","type":"string"}},"type":"object"},"type":"object"},"akeyless:index/gatewayRemoteAccess:GatewayRemoteAccess":{"description":"Remote access config\n","inputProperties":{"allowedSshUrl":{"description":"Specify a valid SSH-URL to tunnel to SSH session\n","type":"string"},"allowedUrls":{"description":"List of valid URLs to redirect from the Portal back to the remote access server (in a comma-delimited list)\n","type":"string"},"defaultSessionTtlMinutes":{"description":"Default session TTL in minutes\n","type":"string"},"gatewayRemoteAccessId":{"description":"The ID of this resource.\n","type":"string"},"hideSessionRecording":{"description":"Specifies whether to show/hide if the session is currently recorded [true/false]\n","type":"string"},"kexalgs":{"description":"Decide which algorithm will be used as part of the SSH initial hand-shake process\n","type":"string"},"keyboardLayout":{"description":"Enable support for additional keyboard layouts\n","type":"string"},"legacySshAlgorithm":{"description":"Signs SSH certificates using legacy ssh-rsa-cert-01@openssh.com signing algorithm [true/false]\n","type":"string"},"rdpTargetConfiguration":{"description":"Specify the usernameSubClaim that exists inside the IDP JWT, e.g. email\n","type":"string"},"sshTargetConfiguration":{"description":"Specify the usernameSubClaim that exists inside the IDP JWT, e.g. email\n","type":"string"}},"properties":{"allowedSshUrl":{"description":"Specify a valid SSH-URL to tunnel to SSH session\n","type":"string"},"allowedUrls":{"description":"List of valid URLs to redirect from the Portal back to the remote access server (in a comma-delimited list)\n","type":"string"},"defaultSessionTtlMinutes":{"description":"Default session TTL in minutes\n","type":"string"},"gatewayRemoteAccessId":{"description":"The ID of this resource.\n","type":"string"},"hideSessionRecording":{"description":"Specifies whether to show/hide if the session is currently recorded [true/false]\n","type":"string"},"kexalgs":{"description":"Decide which algorithm will be used as part of the SSH initial hand-shake process\n","type":"string"},"keyboardLayout":{"description":"Enable support for additional keyboard layouts\n","type":"string"},"legacySshAlgorithm":{"description":"Signs SSH certificates using legacy ssh-rsa-cert-01@openssh.com signing algorithm [true/false]\n","type":"string"},"rdpTargetConfiguration":{"description":"Specify the usernameSubClaim that exists inside the IDP JWT, e.g. email\n","type":"string"},"sshTargetConfiguration":{"description":"Specify the usernameSubClaim that exists inside the IDP JWT, e.g. email\n","type":"string"}},"required":["gatewayRemoteAccessId"],"stateInputs":{"description":"Input properties used for looking up and filtering GatewayRemoteAccess resources.\n","properties":{"allowedSshUrl":{"description":"Specify a valid SSH-URL to tunnel to SSH session\n","type":"string"},"allowedUrls":{"description":"List of valid URLs to redirect from the Portal back to the remote access server (in a comma-delimited list)\n","type":"string"},"defaultSessionTtlMinutes":{"description":"Default session TTL in minutes\n","type":"string"},"gatewayRemoteAccessId":{"description":"The ID of this resource.\n","type":"string"},"hideSessionRecording":{"description":"Specifies whether to show/hide if the session is currently recorded [true/false]\n","type":"string"},"kexalgs":{"description":"Decide which algorithm will be used as part of the SSH initial hand-shake process\n","type":"string"},"keyboardLayout":{"description":"Enable support for additional keyboard layouts\n","type":"string"},"legacySshAlgorithm":{"description":"Signs SSH certificates using legacy ssh-rsa-cert-01@openssh.com signing algorithm [true/false]\n","type":"string"},"rdpTargetConfiguration":{"description":"Specify the usernameSubClaim that exists inside the IDP JWT, e.g. email\n","type":"string"},"sshTargetConfiguration":{"description":"Specify the usernameSubClaim that exists inside the IDP JWT, e.g. email\n","type":"string"}},"type":"object"},"type":"object"},"akeyless:index/gatewayRemoteAccessDesktopApp:GatewayRemoteAccessDesktopApp":{"description":"Remote access desktop app config\n","inputProperties":{"desktopAppSecureWebAccessUrl":{"description":"Specify the Web Access URL to be used by the Desktop Application\n","type":"string"},"desktopAppSecureWebProxy":{"description":"Specify the URL for secure web proxy to be used by the Desktop Application\n","type":"string"},"desktopAppSshCertIssuer":{"description":"Specify the default SSH-CERT-ISSUER that will be used as a fallback for Desktop Application\n","type":"string"},"gatewayRemoteAccessDesktopAppId":{"description":"The ID of this resource.\n","type":"string"}},"properties":{"desktopAppSecureWebAccessUrl":{"description":"Specify the Web Access URL to be used by the Desktop Application\n","type":"string"},"desktopAppSecureWebProxy":{"description":"Specify the URL for secure web proxy to be used by the Desktop Application\n","type":"string"},"desktopAppSshCertIssuer":{"description":"Specify the default SSH-CERT-ISSUER that will be used as a fallback for Desktop Application\n","type":"string"},"gatewayRemoteAccessDesktopAppId":{"description":"The ID of this resource.\n","type":"string"}},"required":["gatewayRemoteAccessDesktopAppId"],"stateInputs":{"description":"Input properties used for looking up and filtering GatewayRemoteAccessDesktopApp resources.\n","properties":{"desktopAppSecureWebAccessUrl":{"description":"Specify the Web Access URL to be used by the Desktop Application\n","type":"string"},"desktopAppSecureWebProxy":{"description":"Specify the URL for secure web proxy to be used by the Desktop Application\n","type":"string"},"desktopAppSshCertIssuer":{"description":"Specify the default SSH-CERT-ISSUER that will be used as a fallback for Desktop Application\n","type":"string"},"gatewayRemoteAccessDesktopAppId":{"description":"The ID of this resource.\n","type":"string"}},"type":"object"},"type":"object"},"akeyless:index/gatewayRemoteAccessRdpRecording:GatewayRemoteAccessRdpRecording":{"description":"Remote access rdp recording config\n","inputProperties":{"awsStorageAccessKeyId":{"description":"AWS access key id. For more information refer to https://docs.aws.amazon.com/IAM/latest/UserGuide/id*credentials*access-keys.html\n","type":"string"},"awsStorageBucketName":{"description":"The AWS bucket name. For more information refer to https://docs.aws.amazon.com/s3/\n","type":"string"},"awsStorageBucketPrefix":{"description":"The folder name in S3 bucket. For more information refer to https://docs.aws.amazon.com/s3/\n","type":"string"},"awsStorageRegion":{"description":"The region where the storage is located\n","type":"string"},"awsStorageSecretAccessKey":{"description":"AWS secret access key. For more information refer to https://docs.aws.amazon.com/IAM/latest/UserGuide/id*credentials*access-keys.html\n","secret":true,"type":"string"},"azureStorageAccountName":{"description":"Azure account name. For more information refer to https://learn.microsoft.com/en-us/azure/storage/common/storage-account-overview\n","type":"string"},"azureStorageClientId":{"description":"Azure client id. For more information refer to https://learn.microsoft.com/en-us/azure/storage/common/storage-account-get-info?tabs=portal\n","type":"string"},"azureStorageClientSecret":{"description":"Azure client secret. For more information refer to https://learn.microsoft.com/en-us/azure/storage/common/storage-account-get-info?tabs=portal\n","secret":true,"type":"string"},"azureStorageContainerName":{"description":"Azure container name. For more information refer to https://learn.microsoft.com/en-us/rest/api/storageservices/naming-and-referencing-containers--blobs--and-metadata\n","type":"string"},"azureStorageTenantId":{"description":"Azure tenant id. For more information refer to https://learn.microsoft.com/en-us/entra/fundamentals/how-to-find-tenant\n","type":"string"},"gatewayRemoteAccessRdpRecordingId":{"description":"The ID of this resource.\n","type":"string"},"rdpSessionRecording":{"description":"Enable recording of rdp session [true/false]\n","type":"string"},"rdpSessionRecordingCompress":{"description":"Whether to compress recording files before upload\n","type":"boolean"},"rdpSessionRecordingEncryptionKey":{"description":"If provided, this key will be used to encrypt uploaded recordings.\n","secret":true,"type":"string"},"rdpSessionRecordingQuality":{"description":"RDP session recording quality [low/medium/high]\n","type":"string"},"rdpSessionStorage":{"description":"Rdp session recording storage destination [local/aws/azure]\n","type":"string"}},"properties":{"awsStorageAccessKeyId":{"description":"AWS access key id. For more information refer to https://docs.aws.amazon.com/IAM/latest/UserGuide/id*credentials*access-keys.html\n","type":"string"},"awsStorageBucketName":{"description":"The AWS bucket name. For more information refer to https://docs.aws.amazon.com/s3/\n","type":"string"},"awsStorageBucketPrefix":{"description":"The folder name in S3 bucket. For more information refer to https://docs.aws.amazon.com/s3/\n","type":"string"},"awsStorageRegion":{"description":"The region where the storage is located\n","type":"string"},"awsStorageSecretAccessKey":{"description":"AWS secret access key. For more information refer to https://docs.aws.amazon.com/IAM/latest/UserGuide/id*credentials*access-keys.html\n","secret":true,"type":"string"},"azureStorageAccountName":{"description":"Azure account name. For more information refer to https://learn.microsoft.com/en-us/azure/storage/common/storage-account-overview\n","type":"string"},"azureStorageClientId":{"description":"Azure client id. For more information refer to https://learn.microsoft.com/en-us/azure/storage/common/storage-account-get-info?tabs=portal\n","type":"string"},"azureStorageClientSecret":{"description":"Azure client secret. For more information refer to https://learn.microsoft.com/en-us/azure/storage/common/storage-account-get-info?tabs=portal\n","secret":true,"type":"string"},"azureStorageContainerName":{"description":"Azure container name. For more information refer to https://learn.microsoft.com/en-us/rest/api/storageservices/naming-and-referencing-containers--blobs--and-metadata\n","type":"string"},"azureStorageTenantId":{"description":"Azure tenant id. For more information refer to https://learn.microsoft.com/en-us/entra/fundamentals/how-to-find-tenant\n","type":"string"},"gatewayRemoteAccessRdpRecordingId":{"description":"The ID of this resource.\n","type":"string"},"rdpSessionRecording":{"description":"Enable recording of rdp session [true/false]\n","type":"string"},"rdpSessionRecordingCompress":{"description":"Whether to compress recording files before upload\n","type":"boolean"},"rdpSessionRecordingEncryptionKey":{"description":"If provided, this key will be used to encrypt uploaded recordings.\n","secret":true,"type":"string"},"rdpSessionRecordingQuality":{"description":"RDP session recording quality [low/medium/high]\n","type":"string"},"rdpSessionStorage":{"description":"Rdp session recording storage destination [local/aws/azure]\n","type":"string"}},"required":["gatewayRemoteAccessRdpRecordingId"],"stateInputs":{"description":"Input properties used for looking up and filtering GatewayRemoteAccessRdpRecording resources.\n","properties":{"awsStorageAccessKeyId":{"description":"AWS access key id. For more information refer to https://docs.aws.amazon.com/IAM/latest/UserGuide/id*credentials*access-keys.html\n","type":"string"},"awsStorageBucketName":{"description":"The AWS bucket name. For more information refer to https://docs.aws.amazon.com/s3/\n","type":"string"},"awsStorageBucketPrefix":{"description":"The folder name in S3 bucket. For more information refer to https://docs.aws.amazon.com/s3/\n","type":"string"},"awsStorageRegion":{"description":"The region where the storage is located\n","type":"string"},"awsStorageSecretAccessKey":{"description":"AWS secret access key. For more information refer to https://docs.aws.amazon.com/IAM/latest/UserGuide/id*credentials*access-keys.html\n","secret":true,"type":"string"},"azureStorageAccountName":{"description":"Azure account name. For more information refer to https://learn.microsoft.com/en-us/azure/storage/common/storage-account-overview\n","type":"string"},"azureStorageClientId":{"description":"Azure client id. For more information refer to https://learn.microsoft.com/en-us/azure/storage/common/storage-account-get-info?tabs=portal\n","type":"string"},"azureStorageClientSecret":{"description":"Azure client secret. For more information refer to https://learn.microsoft.com/en-us/azure/storage/common/storage-account-get-info?tabs=portal\n","secret":true,"type":"string"},"azureStorageContainerName":{"description":"Azure container name. For more information refer to https://learn.microsoft.com/en-us/rest/api/storageservices/naming-and-referencing-containers--blobs--and-metadata\n","type":"string"},"azureStorageTenantId":{"description":"Azure tenant id. For more information refer to https://learn.microsoft.com/en-us/entra/fundamentals/how-to-find-tenant\n","type":"string"},"gatewayRemoteAccessRdpRecordingId":{"description":"The ID of this resource.\n","type":"string"},"rdpSessionRecording":{"description":"Enable recording of rdp session [true/false]\n","type":"string"},"rdpSessionRecordingCompress":{"description":"Whether to compress recording files before upload\n","type":"boolean"},"rdpSessionRecordingEncryptionKey":{"description":"If provided, this key will be used to encrypt uploaded recordings.\n","secret":true,"type":"string"},"rdpSessionRecordingQuality":{"description":"RDP session recording quality [low/medium/high]\n","type":"string"},"rdpSessionStorage":{"description":"Rdp session recording storage destination [local/aws/azure]\n","type":"string"}},"type":"object"},"type":"object"},"akeyless:index/gatewayRemoteAccessSessionForwardingAwsS3:GatewayRemoteAccessSessionForwardingAwsS3":{"description":"Session Forwarding config for aws-s3\n","inputProperties":{"accessId":{"description":"AWS access id relevant for<span pulumi-lang-nodejs=\" accessKey \" pulumi-lang-dotnet=\" AccessKey \" pulumi-lang-go=\" accessKey \" pulumi-lang-python=\" access_key \" pulumi-lang-yaml=\" accessKey \" pulumi-lang-java=\" accessKey \"> access_key </span>auth-type\n","type":"string"},"accessKey":{"description":"AWS access key relevant for<span pulumi-lang-nodejs=\" accessKey \" pulumi-lang-dotnet=\" AccessKey \" pulumi-lang-go=\" accessKey \" pulumi-lang-python=\" access_key \" pulumi-lang-yaml=\" accessKey \" pulumi-lang-java=\" accessKey \"> access_key </span>auth-type\n","secret":true,"type":"string"},"authType":{"description":"AWS auth type [access*key/cloud*id/assume_role]\n","type":"string"},"bucketName":{"description":"AWS S3 bucket name\n","type":"string"},"enable":{"description":"Enable Log Forwarding [true/false]\n","type":"string"},"gatewayRemoteAccessSessionForwardingAwsS3Id":{"description":"The ID of this resource.\n","type":"string"},"logFolder":{"description":"AWS S3 destination folder for logs\n","type":"string"},"outputFormat":{"description":"Logs format [text/json]\n","type":"string"},"pullInterval":{"description":"Pull interval in seconds\n","type":"string"},"region":{"description":"AWS region\n","type":"string"},"roleArn":{"description":"AWS role arn relevant for<span pulumi-lang-nodejs=\" assumeRole \" pulumi-lang-dotnet=\" AssumeRole \" pulumi-lang-go=\" assumeRole \" pulumi-lang-python=\" assume_role \" pulumi-lang-yaml=\" assumeRole \" pulumi-lang-java=\" assumeRole \"> assume_role </span>auth-type\n","type":"string"}},"properties":{"accessId":{"description":"AWS access id relevant for<span pulumi-lang-nodejs=\" accessKey \" pulumi-lang-dotnet=\" AccessKey \" pulumi-lang-go=\" accessKey \" pulumi-lang-python=\" access_key \" pulumi-lang-yaml=\" accessKey \" pulumi-lang-java=\" accessKey \"> access_key </span>auth-type\n","type":"string"},"accessKey":{"description":"AWS access key relevant for<span pulumi-lang-nodejs=\" accessKey \" pulumi-lang-dotnet=\" AccessKey \" pulumi-lang-go=\" accessKey \" pulumi-lang-python=\" access_key \" pulumi-lang-yaml=\" accessKey \" pulumi-lang-java=\" accessKey \"> access_key </span>auth-type\n","secret":true,"type":"string"},"authType":{"description":"AWS auth type [access*key/cloud*id/assume_role]\n","type":"string"},"bucketName":{"description":"AWS S3 bucket name\n","type":"string"},"enable":{"description":"Enable Log Forwarding [true/false]\n","type":"string"},"gatewayRemoteAccessSessionForwardingAwsS3Id":{"description":"The ID of this resource.\n","type":"string"},"logFolder":{"description":"AWS S3 destination folder for logs\n","type":"string"},"outputFormat":{"description":"Logs format [text/json]\n","type":"string"},"pullInterval":{"description":"Pull interval in seconds\n","type":"string"},"region":{"description":"AWS region\n","type":"string"},"roleArn":{"description":"AWS role arn relevant for<span pulumi-lang-nodejs=\" assumeRole \" pulumi-lang-dotnet=\" AssumeRole \" pulumi-lang-go=\" assumeRole \" pulumi-lang-python=\" assume_role \" pulumi-lang-yaml=\" assumeRole \" pulumi-lang-java=\" assumeRole \"> assume_role </span>auth-type\n","type":"string"}},"required":["gatewayRemoteAccessSessionForwardingAwsS3Id"],"stateInputs":{"description":"Input properties used for looking up and filtering GatewayRemoteAccessSessionForwardingAwsS3 resources.\n","properties":{"accessId":{"description":"AWS access id relevant for<span pulumi-lang-nodejs=\" accessKey \" pulumi-lang-dotnet=\" AccessKey \" pulumi-lang-go=\" accessKey \" pulumi-lang-python=\" access_key \" pulumi-lang-yaml=\" accessKey \" pulumi-lang-java=\" accessKey \"> access_key </span>auth-type\n","type":"string"},"accessKey":{"description":"AWS access key relevant for<span pulumi-lang-nodejs=\" accessKey \" pulumi-lang-dotnet=\" AccessKey \" pulumi-lang-go=\" accessKey \" pulumi-lang-python=\" access_key \" pulumi-lang-yaml=\" accessKey \" pulumi-lang-java=\" accessKey \"> access_key </span>auth-type\n","secret":true,"type":"string"},"authType":{"description":"AWS auth type [access*key/cloud*id/assume_role]\n","type":"string"},"bucketName":{"description":"AWS S3 bucket name\n","type":"string"},"enable":{"description":"Enable Log Forwarding [true/false]\n","type":"string"},"gatewayRemoteAccessSessionForwardingAwsS3Id":{"description":"The ID of this resource.\n","type":"string"},"logFolder":{"description":"AWS S3 destination folder for logs\n","type":"string"},"outputFormat":{"description":"Logs format [text/json]\n","type":"string"},"pullInterval":{"description":"Pull interval in seconds\n","type":"string"},"region":{"description":"AWS region\n","type":"string"},"roleArn":{"description":"AWS role arn relevant for<span pulumi-lang-nodejs=\" assumeRole \" pulumi-lang-dotnet=\" AssumeRole \" pulumi-lang-go=\" assumeRole \" pulumi-lang-python=\" assume_role \" pulumi-lang-yaml=\" assumeRole \" pulumi-lang-java=\" assumeRole \"> assume_role </span>auth-type\n","type":"string"}},"type":"object"},"type":"object"},"akeyless:index/gatewayRemoteAccessSessionForwardingAzureAnalytics:GatewayRemoteAccessSessionForwardingAzureAnalytics":{"description":"Session Forwarding config for azure-analytics\n","inputProperties":{"enable":{"description":"Enable Log Forwarding [true/false]\n","type":"string"},"enableBatch":{"description":"Enable batch forwarding [true/false]\n","type":"string"},"gatewayRemoteAccessSessionForwardingAzureAnalyticsId":{"description":"The ID of this resource.\n","type":"string"},"outputFormat":{"description":"Logs format [text/json]\n","type":"string"},"pullInterval":{"description":"Pull interval in seconds\n","type":"string"},"workspaceId":{"description":"Azure workspace id\n","type":"string"},"workspaceKey":{"description":"Azure workspace key\n","secret":true,"type":"string"}},"properties":{"enable":{"description":"Enable Log Forwarding [true/false]\n","type":"string"},"enableBatch":{"description":"Enable batch forwarding [true/false]\n","type":"string"},"gatewayRemoteAccessSessionForwardingAzureAnalyticsId":{"description":"The ID of this resource.\n","type":"string"},"outputFormat":{"description":"Logs format [text/json]\n","type":"string"},"pullInterval":{"description":"Pull interval in seconds\n","type":"string"},"workspaceId":{"description":"Azure workspace id\n","type":"string"},"workspaceKey":{"description":"Azure workspace key\n","secret":true,"type":"string"}},"required":["gatewayRemoteAccessSessionForwardingAzureAnalyticsId"],"stateInputs":{"description":"Input properties used for looking up and filtering GatewayRemoteAccessSessionForwardingAzureAnalytics resources.\n","properties":{"enable":{"description":"Enable Log Forwarding [true/false]\n","type":"string"},"enableBatch":{"description":"Enable batch forwarding [true/false]\n","type":"string"},"gatewayRemoteAccessSessionForwardingAzureAnalyticsId":{"description":"The ID of this resource.\n","type":"string"},"outputFormat":{"description":"Logs format [text/json]\n","type":"string"},"pullInterval":{"description":"Pull interval in seconds\n","type":"string"},"workspaceId":{"description":"Azure workspace id\n","type":"string"},"workspaceKey":{"description":"Azure workspace key\n","secret":true,"type":"string"}},"type":"object"},"type":"object"},"akeyless:index/gatewayRemoteAccessSessionForwardingDatadog:GatewayRemoteAccessSessionForwardingDatadog":{"description":"Session Forwarding config for datadog\n","inputProperties":{"apiKey":{"description":"Datadog api key\n","secret":true,"type":"string"},"enable":{"description":"Enable Log Forwarding [true/false]\n","type":"string"},"gatewayRemoteAccessSessionForwardingDatadogId":{"description":"The ID of this resource.\n","type":"string"},"host":{"description":"Datadog host\n","type":"string"},"logService":{"description":"Datadog log service\n","type":"string"},"logSource":{"description":"Datadog log source\n","type":"string"},"logTags":{"description":"A comma-separated list of Datadog log tags formatted as key:value strings\n","type":"string"},"outputFormat":{"description":"Logs format [text/json]\n","type":"string"},"pullInterval":{"description":"Pull interval in seconds\n","type":"string"}},"properties":{"apiKey":{"description":"Datadog api key\n","secret":true,"type":"string"},"enable":{"description":"Enable Log Forwarding [true/false]\n","type":"string"},"gatewayRemoteAccessSessionForwardingDatadogId":{"description":"The ID of this resource.\n","type":"string"},"host":{"description":"Datadog host\n","type":"string"},"logService":{"description":"Datadog log service\n","type":"string"},"logSource":{"description":"Datadog log source\n","type":"string"},"logTags":{"description":"A comma-separated list of Datadog log tags formatted as key:value strings\n","type":"string"},"outputFormat":{"description":"Logs format [text/json]\n","type":"string"},"pullInterval":{"description":"Pull interval in seconds\n","type":"string"}},"required":["gatewayRemoteAccessSessionForwardingDatadogId"],"stateInputs":{"description":"Input properties used for looking up and filtering GatewayRemoteAccessSessionForwardingDatadog resources.\n","properties":{"apiKey":{"description":"Datadog api key\n","secret":true,"type":"string"},"enable":{"description":"Enable Log Forwarding [true/false]\n","type":"string"},"gatewayRemoteAccessSessionForwardingDatadogId":{"description":"The ID of this resource.\n","type":"string"},"host":{"description":"Datadog host\n","type":"string"},"logService":{"description":"Datadog log service\n","type":"string"},"logSource":{"description":"Datadog log source\n","type":"string"},"logTags":{"description":"A comma-separated list of Datadog log tags formatted as key:value strings\n","type":"string"},"outputFormat":{"description":"Logs format [text/json]\n","type":"string"},"pullInterval":{"description":"Pull interval in seconds\n","type":"string"}},"type":"object"},"type":"object"},"akeyless:index/gatewayRemoteAccessSessionForwardingElasticsearch:GatewayRemoteAccessSessionForwardingElasticsearch":{"description":"Session Forwarding config for elasticsearch\n","inputProperties":{"apiKey":{"description":"Elasticsearch api key relevant only for<span pulumi-lang-nodejs=\" apiKey \" pulumi-lang-dotnet=\" ApiKey \" pulumi-lang-go=\" apiKey \" pulumi-lang-python=\" api_key \" pulumi-lang-yaml=\" apiKey \" pulumi-lang-java=\" apiKey \"> api_key </span>auth-type\n","secret":true,"type":"string"},"authType":{"description":"Elasticsearch auth type [api_key/password]\n","type":"string"},"cloudId":{"description":"Elasticsearch cloud id relevant only for cloud server-type\n","type":"string"},"enable":{"description":"Enable Log Forwarding [true/false]\n","type":"string"},"enableTls":{"description":"Enable tls\n","type":"boolean"},"gatewayRemoteAccessSessionForwardingElasticsearchId":{"description":"The ID of this resource.\n","type":"string"},"index":{"description":"Elasticsearch index\n","type":"string"},"nodes":{"description":"Elasticsearch nodes relevant only for nodes server-type\n","type":"string"},"outputFormat":{"description":"Logs format [text/json]\n","type":"string"},"password":{"description":"Elasticsearch password relevant only for password auth-type\n","secret":true,"type":"string"},"pullInterval":{"description":"Pull interval in seconds\n","type":"string"},"serverType":{"description":"Elasticsearch server type [cloud/nodes]\n","type":"string"},"tlsCertificate":{"description":"Elasticsearch tls certificate (PEM format) in a Base64 format\n","secret":true,"type":"string"},"userName":{"description":"Elasticsearch user name relevant only for password auth-type\n","type":"string"}},"properties":{"apiKey":{"description":"Elasticsearch api key relevant only for<span pulumi-lang-nodejs=\" apiKey \" pulumi-lang-dotnet=\" ApiKey \" pulumi-lang-go=\" apiKey \" pulumi-lang-python=\" api_key \" pulumi-lang-yaml=\" apiKey \" pulumi-lang-java=\" apiKey \"> api_key </span>auth-type\n","secret":true,"type":"string"},"authType":{"description":"Elasticsearch auth type [api_key/password]\n","type":"string"},"cloudId":{"description":"Elasticsearch cloud id relevant only for cloud server-type\n","type":"string"},"enable":{"description":"Enable Log Forwarding [true/false]\n","type":"string"},"enableTls":{"description":"Enable tls\n","type":"boolean"},"gatewayRemoteAccessSessionForwardingElasticsearchId":{"description":"The ID of this resource.\n","type":"string"},"index":{"description":"Elasticsearch index\n","type":"string"},"nodes":{"description":"Elasticsearch nodes relevant only for nodes server-type\n","type":"string"},"outputFormat":{"description":"Logs format [text/json]\n","type":"string"},"password":{"description":"Elasticsearch password relevant only for password auth-type\n","secret":true,"type":"string"},"pullInterval":{"description":"Pull interval in seconds\n","type":"string"},"serverType":{"description":"Elasticsearch server type [cloud/nodes]\n","type":"string"},"tlsCertificate":{"description":"Elasticsearch tls certificate (PEM format) in a Base64 format\n","secret":true,"type":"string"},"userName":{"description":"Elasticsearch user name relevant only for password auth-type\n","type":"string"}},"required":["gatewayRemoteAccessSessionForwardingElasticsearchId"],"stateInputs":{"description":"Input properties used for looking up and filtering GatewayRemoteAccessSessionForwardingElasticsearch resources.\n","properties":{"apiKey":{"description":"Elasticsearch api key relevant only for<span pulumi-lang-nodejs=\" apiKey \" pulumi-lang-dotnet=\" ApiKey \" pulumi-lang-go=\" apiKey \" pulumi-lang-python=\" api_key \" pulumi-lang-yaml=\" apiKey \" pulumi-lang-java=\" apiKey \"> api_key </span>auth-type\n","secret":true,"type":"string"},"authType":{"description":"Elasticsearch auth type [api_key/password]\n","type":"string"},"cloudId":{"description":"Elasticsearch cloud id relevant only for cloud server-type\n","type":"string"},"enable":{"description":"Enable Log Forwarding [true/false]\n","type":"string"},"enableTls":{"description":"Enable tls\n","type":"boolean"},"gatewayRemoteAccessSessionForwardingElasticsearchId":{"description":"The ID of this resource.\n","type":"string"},"index":{"description":"Elasticsearch index\n","type":"string"},"nodes":{"description":"Elasticsearch nodes relevant only for nodes server-type\n","type":"string"},"outputFormat":{"description":"Logs format [text/json]\n","type":"string"},"password":{"description":"Elasticsearch password relevant only for password auth-type\n","secret":true,"type":"string"},"pullInterval":{"description":"Pull interval in seconds\n","type":"string"},"serverType":{"description":"Elasticsearch server type [cloud/nodes]\n","type":"string"},"tlsCertificate":{"description":"Elasticsearch tls certificate (PEM format) in a Base64 format\n","secret":true,"type":"string"},"userName":{"description":"Elasticsearch user name relevant only for password auth-type\n","type":"string"}},"type":"object"},"type":"object"},"akeyless:index/gatewayRemoteAccessSessionForwardingGoogleChronicle:GatewayRemoteAccessSessionForwardingGoogleChronicle":{"description":"Session Forwarding config for google-chronicle\n","inputProperties":{"customerId":{"description":"Google chronicle customer id\n","type":"string"},"enable":{"description":"Enable Log Forwarding [true/false]\n","type":"string"},"gatewayRemoteAccessSessionForwardingGoogleChronicleId":{"description":"The ID of this resource.\n","type":"string"},"gcpKey":{"description":"Base64-encoded service account private key text\n","secret":true,"type":"string"},"logType":{"description":"Google chronicle log type\n","type":"string"},"outputFormat":{"description":"Logs format [text/json]\n","type":"string"},"pullInterval":{"description":"Pull interval in seconds\n","type":"string"},"region":{"description":"Google chronicle region [eu*multi*region/london/us*multi*region/singapore/tel_aviv]\n","type":"string"}},"properties":{"customerId":{"description":"Google chronicle customer id\n","type":"string"},"enable":{"description":"Enable Log Forwarding [true/false]\n","type":"string"},"gatewayRemoteAccessSessionForwardingGoogleChronicleId":{"description":"The ID of this resource.\n","type":"string"},"gcpKey":{"description":"Base64-encoded service account private key text\n","secret":true,"type":"string"},"logType":{"description":"Google chronicle log type\n","type":"string"},"outputFormat":{"description":"Logs format [text/json]\n","type":"string"},"pullInterval":{"description":"Pull interval in seconds\n","type":"string"},"region":{"description":"Google chronicle region [eu*multi*region/london/us*multi*region/singapore/tel_aviv]\n","type":"string"}},"required":["gatewayRemoteAccessSessionForwardingGoogleChronicleId"],"stateInputs":{"description":"Input properties used for looking up and filtering GatewayRemoteAccessSessionForwardingGoogleChronicle resources.\n","properties":{"customerId":{"description":"Google chronicle customer id\n","type":"string"},"enable":{"description":"Enable Log Forwarding [true/false]\n","type":"string"},"gatewayRemoteAccessSessionForwardingGoogleChronicleId":{"description":"The ID of this resource.\n","type":"string"},"gcpKey":{"description":"Base64-encoded service account private key text\n","secret":true,"type":"string"},"logType":{"description":"Google chronicle log type\n","type":"string"},"outputFormat":{"description":"Logs format [text/json]\n","type":"string"},"pullInterval":{"description":"Pull interval in seconds\n","type":"string"},"region":{"description":"Google chronicle region [eu*multi*region/london/us*multi*region/singapore/tel_aviv]\n","type":"string"}},"type":"object"},"type":"object"},"akeyless:index/gatewayRemoteAccessSessionForwardingLogstash:GatewayRemoteAccessSessionForwardingLogstash":{"description":"Session Forwarding config for logstash\n","inputProperties":{"dns":{"description":"Logstash dns\n","type":"string"},"enable":{"description":"Enable Log Forwarding [true/false]\n","type":"string"},"enableTls":{"description":"Enable tls\n","type":"boolean"},"gatewayRemoteAccessSessionForwardingLogstashId":{"description":"The ID of this resource.\n","type":"string"},"outputFormat":{"description":"Logs format [text/json]\n","type":"string"},"protocol":{"description":"Logstash protocol [tcp/udp]\n","type":"string"},"pullInterval":{"description":"Pull interval in seconds\n","type":"string"},"tlsCertificate":{"description":"Logstash tls certificate (PEM format) in a Base64 format\n","secret":true,"type":"string"}},"properties":{"dns":{"description":"Logstash dns\n","type":"string"},"enable":{"description":"Enable Log Forwarding [true/false]\n","type":"string"},"enableTls":{"description":"Enable tls\n","type":"boolean"},"gatewayRemoteAccessSessionForwardingLogstashId":{"description":"The ID of this resource.\n","type":"string"},"outputFormat":{"description":"Logs format [text/json]\n","type":"string"},"protocol":{"description":"Logstash protocol [tcp/udp]\n","type":"string"},"pullInterval":{"description":"Pull interval in seconds\n","type":"string"},"tlsCertificate":{"description":"Logstash tls certificate (PEM format) in a Base64 format\n","secret":true,"type":"string"}},"required":["gatewayRemoteAccessSessionForwardingLogstashId"],"stateInputs":{"description":"Input properties used for looking up and filtering GatewayRemoteAccessSessionForwardingLogstash resources.\n","properties":{"dns":{"description":"Logstash dns\n","type":"string"},"enable":{"description":"Enable Log Forwarding [true/false]\n","type":"string"},"enableTls":{"description":"Enable tls\n","type":"boolean"},"gatewayRemoteAccessSessionForwardingLogstashId":{"description":"The ID of this resource.\n","type":"string"},"outputFormat":{"description":"Logs format [text/json]\n","type":"string"},"protocol":{"description":"Logstash protocol [tcp/udp]\n","type":"string"},"pullInterval":{"description":"Pull interval in seconds\n","type":"string"},"tlsCertificate":{"description":"Logstash tls certificate (PEM format) in a Base64 format\n","secret":true,"type":"string"}},"type":"object"},"type":"object"},"akeyless:index/gatewayRemoteAccessSessionForwardingLogzIo:GatewayRemoteAccessSessionForwardingLogzIo":{"description":"Session Forwarding config for logz-io\n","inputProperties":{"enable":{"description":"Enable Log Forwarding [true/false]\n","type":"string"},"gatewayRemoteAccessSessionForwardingLogzIoId":{"description":"The ID of this resource.\n","type":"string"},"logzIoToken":{"description":"Logz-io token\n","secret":true,"type":"string"},"outputFormat":{"description":"Logs format [text/json]\n","type":"string"},"protocol":{"description":"LogzIo protocol [tcp/https]\n","type":"string"},"pullInterval":{"description":"Pull interval in seconds\n","type":"string"}},"properties":{"enable":{"description":"Enable Log Forwarding [true/false]\n","type":"string"},"gatewayRemoteAccessSessionForwardingLogzIoId":{"description":"The ID of this resource.\n","type":"string"},"logzIoToken":{"description":"Logz-io token\n","secret":true,"type":"string"},"outputFormat":{"description":"Logs format [text/json]\n","type":"string"},"protocol":{"description":"LogzIo protocol [tcp/https]\n","type":"string"},"pullInterval":{"description":"Pull interval in seconds\n","type":"string"}},"required":["gatewayRemoteAccessSessionForwardingLogzIoId"],"stateInputs":{"description":"Input properties used for looking up and filtering GatewayRemoteAccessSessionForwardingLogzIo resources.\n","properties":{"enable":{"description":"Enable Log Forwarding [true/false]\n","type":"string"},"gatewayRemoteAccessSessionForwardingLogzIoId":{"description":"The ID of this resource.\n","type":"string"},"logzIoToken":{"description":"Logz-io token\n","secret":true,"type":"string"},"outputFormat":{"description":"Logs format [text/json]\n","type":"string"},"protocol":{"description":"LogzIo protocol [tcp/https]\n","type":"string"},"pullInterval":{"description":"Pull interval in seconds\n","type":"string"}},"type":"object"},"type":"object"},"akeyless:index/gatewayRemoteAccessSessionForwardingSplunk:GatewayRemoteAccessSessionForwardingSplunk":{"description":"Session Forwarding config for splunk\n","inputProperties":{"enable":{"description":"Enable Log Forwarding [true/false]\n","type":"string"},"enableBatch":{"description":"Enable batch forwarding [true/false]\n","type":"string"},"enableTls":{"description":"Enable tls\n","type":"boolean"},"gatewayRemoteAccessSessionForwardingSplunkId":{"description":"The ID of this resource.\n","type":"string"},"index":{"description":"Splunk index\n","type":"string"},"outputFormat":{"description":"Logs format [text/json]\n","type":"string"},"pullInterval":{"description":"Pull interval in seconds\n","type":"string"},"source":{"description":"Splunk source\n","type":"string"},"sourceType":{"description":"Splunk source type\n","type":"string"},"splunkToken":{"description":"Splunk token\n","secret":true,"type":"string"},"splunkUrl":{"description":"Splunk server URL\n","type":"string"},"tlsCertificate":{"description":"Splunk tls certificate (PEM format) in a Base64 format\n","secret":true,"type":"string"}},"properties":{"enable":{"description":"Enable Log Forwarding [true/false]\n","type":"string"},"enableBatch":{"description":"Enable batch forwarding [true/false]\n","type":"string"},"enableTls":{"description":"Enable tls\n","type":"boolean"},"gatewayRemoteAccessSessionForwardingSplunkId":{"description":"The ID of this resource.\n","type":"string"},"index":{"description":"Splunk index\n","type":"string"},"outputFormat":{"description":"Logs format [text/json]\n","type":"string"},"pullInterval":{"description":"Pull interval in seconds\n","type":"string"},"source":{"description":"Splunk source\n","type":"string"},"sourceType":{"description":"Splunk source type\n","type":"string"},"splunkToken":{"description":"Splunk token\n","secret":true,"type":"string"},"splunkUrl":{"description":"Splunk server URL\n","type":"string"},"tlsCertificate":{"description":"Splunk tls certificate (PEM format) in a Base64 format\n","secret":true,"type":"string"}},"required":["gatewayRemoteAccessSessionForwardingSplunkId"],"stateInputs":{"description":"Input properties used for looking up and filtering GatewayRemoteAccessSessionForwardingSplunk resources.\n","properties":{"enable":{"description":"Enable Log Forwarding [true/false]\n","type":"string"},"enableBatch":{"description":"Enable batch forwarding [true/false]\n","type":"string"},"enableTls":{"description":"Enable tls\n","type":"boolean"},"gatewayRemoteAccessSessionForwardingSplunkId":{"description":"The ID of this resource.\n","type":"string"},"index":{"description":"Splunk index\n","type":"string"},"outputFormat":{"description":"Logs format [text/json]\n","type":"string"},"pullInterval":{"description":"Pull interval in seconds\n","type":"string"},"source":{"description":"Splunk source\n","type":"string"},"sourceType":{"description":"Splunk source type\n","type":"string"},"splunkToken":{"description":"Splunk token\n","secret":true,"type":"string"},"splunkUrl":{"description":"Splunk server URL\n","type":"string"},"tlsCertificate":{"description":"Splunk tls certificate (PEM format) in a Base64 format\n","secret":true,"type":"string"}},"type":"object"},"type":"object"},"akeyless:index/gatewayRemoteAccessSessionForwardingStdout:GatewayRemoteAccessSessionForwardingStdout":{"description":"Session Forwarding config for standard output\n","inputProperties":{"enable":{"description":"Enable Log Forwarding [true/false]\n","type":"string"},"gatewayRemoteAccessSessionForwardingStdoutId":{"description":"The ID of this resource.\n","type":"string"},"outputFormat":{"description":"Logs format [text/json]\n","type":"string"},"pullInterval":{"description":"Pull interval in seconds\n","type":"string"}},"properties":{"enable":{"description":"Enable Log Forwarding [true/false]\n","type":"string"},"gatewayRemoteAccessSessionForwardingStdoutId":{"description":"The ID of this resource.\n","type":"string"},"outputFormat":{"description":"Logs format [text/json]\n","type":"string"},"pullInterval":{"description":"Pull interval in seconds\n","type":"string"}},"required":["gatewayRemoteAccessSessionForwardingStdoutId"],"stateInputs":{"description":"Input properties used for looking up and filtering GatewayRemoteAccessSessionForwardingStdout resources.\n","properties":{"enable":{"description":"Enable Log Forwarding [true/false]\n","type":"string"},"gatewayRemoteAccessSessionForwardingStdoutId":{"description":"The ID of this resource.\n","type":"string"},"outputFormat":{"description":"Logs format [text/json]\n","type":"string"},"pullInterval":{"description":"Pull interval in seconds\n","type":"string"}},"type":"object"},"type":"object"},"akeyless:index/gatewayRemoteAccessSessionForwardingSumologic:GatewayRemoteAccessSessionForwardingSumologic":{"description":"Session Forwarding config for sumologic\n","inputProperties":{"enable":{"description":"Enable Log Forwarding [true/false]\n","type":"string"},"endpoint":{"description":"Sumologic endpoint URL\n","secret":true,"type":"string"},"gatewayRemoteAccessSessionForwardingSumologicId":{"description":"The ID of this resource.\n","type":"string"},"host":{"description":"Sumologic host\n","type":"string"},"outputFormat":{"description":"Logs format [text/json]\n","type":"string"},"pullInterval":{"description":"Pull interval in seconds\n","type":"string"},"sumologicTags":{"description":"A comma-separated list of Sumologic tags\n","type":"string"}},"properties":{"enable":{"description":"Enable Log Forwarding [true/false]\n","type":"string"},"endpoint":{"description":"Sumologic endpoint URL\n","secret":true,"type":"string"},"gatewayRemoteAccessSessionForwardingSumologicId":{"description":"The ID of this resource.\n","type":"string"},"host":{"description":"Sumologic host\n","type":"string"},"outputFormat":{"description":"Logs format [text/json]\n","type":"string"},"pullInterval":{"description":"Pull interval in seconds\n","type":"string"},"sumologicTags":{"description":"A comma-separated list of Sumologic tags\n","type":"string"}},"required":["gatewayRemoteAccessSessionForwardingSumologicId"],"stateInputs":{"description":"Input properties used for looking up and filtering GatewayRemoteAccessSessionForwardingSumologic resources.\n","properties":{"enable":{"description":"Enable Log Forwarding [true/false]\n","type":"string"},"endpoint":{"description":"Sumologic endpoint URL\n","secret":true,"type":"string"},"gatewayRemoteAccessSessionForwardingSumologicId":{"description":"The ID of this resource.\n","type":"string"},"host":{"description":"Sumologic host\n","type":"string"},"outputFormat":{"description":"Logs format [text/json]\n","type":"string"},"pullInterval":{"description":"Pull interval in seconds\n","type":"string"},"sumologicTags":{"description":"A comma-separated list of Sumologic tags\n","type":"string"}},"type":"object"},"type":"object"},"akeyless:index/gatewayRemoteAccessSessionForwardingSyslog:GatewayRemoteAccessSessionForwardingSyslog":{"description":"Session Forwarding config for syslog\n","inputProperties":{"enable":{"description":"Enable Log Forwarding [true/false]\n","type":"string"},"enableTls":{"description":"Enable tls relevant only for network type TCP\n","type":"boolean"},"formatter":{"description":"Syslog formatter [text/cef]\n","type":"string"},"gatewayRemoteAccessSessionForwardingSyslogId":{"description":"The ID of this resource.\n","type":"string"},"host":{"description":"Syslog host\n","type":"string"},"network":{"description":"Syslog network [tcp/udp]\n","type":"string"},"outputFormat":{"description":"Logs format [text/json]\n","type":"string"},"pullInterval":{"description":"Pull interval in seconds\n","type":"string"},"targetTag":{"description":"Syslog target tag\n","type":"string"},"tlsCertificate":{"description":"Syslog tls certificate (PEM format) in a Base64 format\n","secret":true,"type":"string"}},"properties":{"enable":{"description":"Enable Log Forwarding [true/false]\n","type":"string"},"enableTls":{"description":"Enable tls relevant only for network type TCP\n","type":"boolean"},"formatter":{"description":"Syslog formatter [text/cef]\n","type":"string"},"gatewayRemoteAccessSessionForwardingSyslogId":{"description":"The ID of this resource.\n","type":"string"},"host":{"description":"Syslog host\n","type":"string"},"network":{"description":"Syslog network [tcp/udp]\n","type":"string"},"outputFormat":{"description":"Logs format [text/json]\n","type":"string"},"pullInterval":{"description":"Pull interval in seconds\n","type":"string"},"targetTag":{"description":"Syslog target tag\n","type":"string"},"tlsCertificate":{"description":"Syslog tls certificate (PEM format) in a Base64 format\n","secret":true,"type":"string"}},"required":["gatewayRemoteAccessSessionForwardingSyslogId"],"stateInputs":{"description":"Input properties used for looking up and filtering GatewayRemoteAccessSessionForwardingSyslog resources.\n","properties":{"enable":{"description":"Enable Log Forwarding [true/false]\n","type":"string"},"enableTls":{"description":"Enable tls relevant only for network type TCP\n","type":"boolean"},"formatter":{"description":"Syslog formatter [text/cef]\n","type":"string"},"gatewayRemoteAccessSessionForwardingSyslogId":{"description":"The ID of this resource.\n","type":"string"},"host":{"description":"Syslog host\n","type":"string"},"network":{"description":"Syslog network [tcp/udp]\n","type":"string"},"outputFormat":{"description":"Logs format [text/json]\n","type":"string"},"pullInterval":{"description":"Pull interval in seconds\n","type":"string"},"targetTag":{"description":"Syslog target tag\n","type":"string"},"tlsCertificate":{"description":"Syslog tls certificate (PEM format) in a Base64 format\n","secret":true,"type":"string"}},"type":"object"},"type":"object"},"akeyless:index/gatewayTlsCert:GatewayTlsCert":{"description":"TLS certificate config for gateway\n","inputProperties":{"certData":{"description":"TLS certificate data (PEM format)\n","secret":true,"type":"string"},"expirationEventIns":{"description":"How many days before the TLS certificate expiration to trigger an expiration event (e.g. [60, 30, 10])\n","items":{"type":"string"},"type":"array"},"gatewayTlsCertId":{"description":"The ID of this resource.\n","type":"string"},"keyData":{"description":"TLS private key data (PEM format)\n","secret":true,"type":"string"}},"properties":{"certData":{"description":"TLS certificate data (PEM format)\n","secret":true,"type":"string"},"expirationEventIns":{"description":"How many days before the TLS certificate expiration to trigger an expiration event (e.g. [60, 30, 10])\n","items":{"type":"string"},"type":"array"},"gatewayTlsCertId":{"description":"The ID of this resource.\n","type":"string"},"keyData":{"description":"TLS private key data (PEM format)\n","secret":true,"type":"string"}},"required":["gatewayTlsCertId"],"stateInputs":{"description":"Input properties used for looking up and filtering GatewayTlsCert resources.\n","properties":{"certData":{"description":"TLS certificate data (PEM format)\n","secret":true,"type":"string"},"expirationEventIns":{"description":"How many days before the TLS certificate expiration to trigger an expiration event (e.g. [60, 30, 10])\n","items":{"type":"string"},"type":"array"},"gatewayTlsCertId":{"description":"The ID of this resource.\n","type":"string"},"keyData":{"description":"TLS private key data (PEM format)\n","secret":true,"type":"string"}},"type":"object"},"type":"object"},"akeyless:index/group:Group":{"description":"Group resource\n","inputProperties":{"description":{"description":"Description of the object\n","type":"string"},"groupAlias":{"description":"A short group alias\n","type":"string"},"groupId":{"description":"The ID of this resource.\n","type":"string"},"name":{"description":"Group name\n","type":"string"},"userAssignment":{"description":"A json array string defining the access permission assignment for this group. Format: [{\"access*id\":\"p-abc123\",\"sub*claims\":{\"email\":[\"user@example.com\"]}}]. The access*id is the auth method access ID, and sub*claims is a map of claim names to arrays of allowed values.\n","type":"string"}},"properties":{"description":{"description":"Description of the object\n","type":"string"},"groupAlias":{"description":"A short group alias\n","type":"string"},"groupId":{"description":"The ID of this resource.\n","type":"string"},"name":{"description":"Group name\n","type":"string"},"userAssignment":{"description":"A json array string defining the access permission assignment for this group. Format: [{\"access*id\":\"p-abc123\",\"sub*claims\":{\"email\":[\"user@example.com\"]}}]. The access*id is the auth method access ID, and sub*claims is a map of claim names to arrays of allowed values.\n","type":"string"}},"required":["groupAlias","groupId","name","userAssignment"],"requiredInputs":["groupAlias","userAssignment"],"stateInputs":{"description":"Input properties used for looking up and filtering Group resources.\n","properties":{"description":{"description":"Description of the object\n","type":"string"},"groupAlias":{"description":"A short group alias\n","type":"string"},"groupId":{"description":"The ID of this resource.\n","type":"string"},"name":{"description":"Group name\n","type":"string"},"userAssignment":{"description":"A json array string defining the access permission assignment for this group. Format: [{\"access*id\":\"p-abc123\",\"sub*claims\":{\"email\":[\"user@example.com\"]}}]. The access*id is the auth method access ID, and sub*claims is a map of claim names to arrays of allowed values.\n","type":"string"}},"type":"object"},"type":"object"},"akeyless:index/k8sAuthConfig:K8sAuthConfig":{"description":"K8S Auth config\n","inputProperties":{"accessId":{"description":"The access ID of the Kubernetes auth method\n","type":"string"},"clusterApiType":{"description":"Cluster access type. options: [native_k8s, rancher]\n","type":"string"},"disableIssuerValidation":{"description":"Disable issuer validation [true/false]\n","type":"string"},"k8sAuthConfigId":{"description":"The ID of this resource.\n","type":"string"},"k8sAuthType":{"description":"K8S auth type [token/certificate]. (relevant for <span pulumi-lang-nodejs=\"\"nativeK8s\"\" pulumi-lang-dotnet=\"\"NativeK8s\"\" pulumi-lang-go=\"\"nativeK8s\"\" pulumi-lang-python=\"\"native_k8s\"\" pulumi-lang-yaml=\"\"nativeK8s\"\" pulumi-lang-java=\"\"nativeK8s\"\">\"native_k8s\"</span> only)\n","type":"string"},"k8sCaCert":{"description":"The CA Certificate (base64 encoded) to use to call into the kubernetes API server\n","type":"string"},"k8sClientCertificate":{"description":"Content of the k8 client certificate (PEM format) in a Base64 format (relevant for <span pulumi-lang-nodejs=\"\"nativeK8s\"\" pulumi-lang-dotnet=\"\"NativeK8s\"\" pulumi-lang-go=\"\"nativeK8s\"\" pulumi-lang-python=\"\"native_k8s\"\" pulumi-lang-yaml=\"\"nativeK8s\"\" pulumi-lang-java=\"\"nativeK8s\"\">\"native_k8s\"</span> only)\n","type":"string"},"k8sClientKey":{"description":"Content of the k8 client private key (PEM format) in a Base64 format (relevant for <span pulumi-lang-nodejs=\"\"nativeK8s\"\" pulumi-lang-dotnet=\"\"NativeK8s\"\" pulumi-lang-go=\"\"nativeK8s\"\" pulumi-lang-python=\"\"native_k8s\"\" pulumi-lang-yaml=\"\"nativeK8s\"\" pulumi-lang-java=\"\"nativeK8s\"\">\"native_k8s\"</span> only)\n","secret":true,"type":"string"},"k8sHost":{"description":"The URL of the kubernetes API server\n","type":"string"},"k8sIssuer":{"description":"The Kubernetes JWT issuer name. K8SIssuer is the claim that specifies who issued the Kubernetes token\n","type":"string"},"name":{"description":"K8S Auth config name\n","type":"string"},"rancherApiKey":{"description":"The api key used to access the TokenReview API to validate other JWTs (relevant for \"rancher\" only)\n","type":"string"},"rancherClusterId":{"description":"The cluster id as define in rancher (relevant for \"rancher\" only)\n","type":"string"},"signingKey":{"description":"The private key (in base64 encoded of the PEM format) associated with the public key defined in the Kubernetes auth\n","secret":true,"type":"string"},"tokenExp":{"description":"Time in seconds of expiration of the Akeyless Kube Auth Method token\n","type":"number"},"tokenReviewerJwt":{"description":"A Kubernetes service account JWT used to access the TokenReview API to validate other JWTs (relevant for <span pulumi-lang-nodejs=\"\"nativeK8s\"\" pulumi-lang-dotnet=\"\"NativeK8s\"\" pulumi-lang-go=\"\"nativeK8s\"\" pulumi-lang-python=\"\"native_k8s\"\" pulumi-lang-yaml=\"\"nativeK8s\"\" pulumi-lang-java=\"\"nativeK8s\"\">\"native_k8s\"</span> only). If not set, the JWT submitted in the authentication process will be used to access the Kubernetes TokenReview API.\n","secret":true,"type":"string"},"useLocalCaJwt":{"description":"Use the GW's service account\n","type":"boolean"}},"properties":{"accessId":{"description":"The access ID of the Kubernetes auth method\n","type":"string"},"clusterApiType":{"description":"Cluster access type. options: [native_k8s, rancher]\n","type":"string"},"disableIssuerValidation":{"description":"Disable issuer validation [true/false]\n","type":"string"},"k8sAuthConfigId":{"description":"The ID of this resource.\n","type":"string"},"k8sAuthType":{"description":"K8S auth type [token/certificate]. (relevant for <span pulumi-lang-nodejs=\"\"nativeK8s\"\" pulumi-lang-dotnet=\"\"NativeK8s\"\" pulumi-lang-go=\"\"nativeK8s\"\" pulumi-lang-python=\"\"native_k8s\"\" pulumi-lang-yaml=\"\"nativeK8s\"\" pulumi-lang-java=\"\"nativeK8s\"\">\"native_k8s\"</span> only)\n","type":"string"},"k8sCaCert":{"description":"The CA Certificate (base64 encoded) to use to call into the kubernetes API server\n","type":"string"},"k8sClientCertificate":{"description":"Content of the k8 client certificate (PEM format) in a Base64 format (relevant for <span pulumi-lang-nodejs=\"\"nativeK8s\"\" pulumi-lang-dotnet=\"\"NativeK8s\"\" pulumi-lang-go=\"\"nativeK8s\"\" pulumi-lang-python=\"\"native_k8s\"\" pulumi-lang-yaml=\"\"nativeK8s\"\" pulumi-lang-java=\"\"nativeK8s\"\">\"native_k8s\"</span> only)\n","type":"string"},"k8sClientKey":{"description":"Content of the k8 client private key (PEM format) in a Base64 format (relevant for <span pulumi-lang-nodejs=\"\"nativeK8s\"\" pulumi-lang-dotnet=\"\"NativeK8s\"\" pulumi-lang-go=\"\"nativeK8s\"\" pulumi-lang-python=\"\"native_k8s\"\" pulumi-lang-yaml=\"\"nativeK8s\"\" pulumi-lang-java=\"\"nativeK8s\"\">\"native_k8s\"</span> only)\n","secret":true,"type":"string"},"k8sHost":{"description":"The URL of the kubernetes API server\n","type":"string"},"k8sIssuer":{"description":"The Kubernetes JWT issuer name. K8SIssuer is the claim that specifies who issued the Kubernetes token\n","type":"string"},"name":{"description":"K8S Auth config name\n","type":"string"},"rancherApiKey":{"description":"The api key used to access the TokenReview API to validate other JWTs (relevant for \"rancher\" only)\n","type":"string"},"rancherClusterId":{"description":"The cluster id as define in rancher (relevant for \"rancher\" only)\n","type":"string"},"signingKey":{"description":"The private key (in base64 encoded of the PEM format) associated with the public key defined in the Kubernetes auth\n","secret":true,"type":"string"},"tokenExp":{"description":"Time in seconds of expiration of the Akeyless Kube Auth Method token\n","type":"number"},"tokenReviewerJwt":{"description":"A Kubernetes service account JWT used to access the TokenReview API to validate other JWTs (relevant for <span pulumi-lang-nodejs=\"\"nativeK8s\"\" pulumi-lang-dotnet=\"\"NativeK8s\"\" pulumi-lang-go=\"\"nativeK8s\"\" pulumi-lang-python=\"\"native_k8s\"\" pulumi-lang-yaml=\"\"nativeK8s\"\" pulumi-lang-java=\"\"nativeK8s\"\">\"native_k8s\"</span> only). If not set, the JWT submitted in the authentication process will be used to access the Kubernetes TokenReview API.\n","secret":true,"type":"string"},"useLocalCaJwt":{"description":"Use the GW's service account\n","type":"boolean"}},"required":["accessId","k8sAuthConfigId","name"],"requiredInputs":["accessId"],"stateInputs":{"description":"Input properties used for looking up and filtering K8sAuthConfig resources.\n","properties":{"accessId":{"description":"The access ID of the Kubernetes auth method\n","type":"string"},"clusterApiType":{"description":"Cluster access type. options: [native_k8s, rancher]\n","type":"string"},"disableIssuerValidation":{"description":"Disable issuer validation [true/false]\n","type":"string"},"k8sAuthConfigId":{"description":"The ID of this resource.\n","type":"string"},"k8sAuthType":{"description":"K8S auth type [token/certificate]. (relevant for <span pulumi-lang-nodejs=\"\"nativeK8s\"\" pulumi-lang-dotnet=\"\"NativeK8s\"\" pulumi-lang-go=\"\"nativeK8s\"\" pulumi-lang-python=\"\"native_k8s\"\" pulumi-lang-yaml=\"\"nativeK8s\"\" pulumi-lang-java=\"\"nativeK8s\"\">\"native_k8s\"</span> only)\n","type":"string"},"k8sCaCert":{"description":"The CA Certificate (base64 encoded) to use to call into the kubernetes API server\n","type":"string"},"k8sClientCertificate":{"description":"Content of the k8 client certificate (PEM format) in a Base64 format (relevant for <span pulumi-lang-nodejs=\"\"nativeK8s\"\" pulumi-lang-dotnet=\"\"NativeK8s\"\" pulumi-lang-go=\"\"nativeK8s\"\" pulumi-lang-python=\"\"native_k8s\"\" pulumi-lang-yaml=\"\"nativeK8s\"\" pulumi-lang-java=\"\"nativeK8s\"\">\"native_k8s\"</span> only)\n","type":"string"},"k8sClientKey":{"description":"Content of the k8 client private key (PEM format) in a Base64 format (relevant for <span pulumi-lang-nodejs=\"\"nativeK8s\"\" pulumi-lang-dotnet=\"\"NativeK8s\"\" pulumi-lang-go=\"\"nativeK8s\"\" pulumi-lang-python=\"\"native_k8s\"\" pulumi-lang-yaml=\"\"nativeK8s\"\" pulumi-lang-java=\"\"nativeK8s\"\">\"native_k8s\"</span> only)\n","secret":true,"type":"string"},"k8sHost":{"description":"The URL of the kubernetes API server\n","type":"string"},"k8sIssuer":{"description":"The Kubernetes JWT issuer name. K8SIssuer is the claim that specifies who issued the Kubernetes token\n","type":"string"},"name":{"description":"K8S Auth config name\n","type":"string"},"rancherApiKey":{"description":"The api key used to access the TokenReview API to validate other JWTs (relevant for \"rancher\" only)\n","type":"string"},"rancherClusterId":{"description":"The cluster id as define in rancher (relevant for \"rancher\" only)\n","type":"string"},"signingKey":{"description":"The private key (in base64 encoded of the PEM format) associated with the public key defined in the Kubernetes auth\n","secret":true,"type":"string"},"tokenExp":{"description":"Time in seconds of expiration of the Akeyless Kube Auth Method token\n","type":"number"},"tokenReviewerJwt":{"description":"A Kubernetes service account JWT used to access the TokenReview API to validate other JWTs (relevant for <span pulumi-lang-nodejs=\"\"nativeK8s\"\" pulumi-lang-dotnet=\"\"NativeK8s\"\" pulumi-lang-go=\"\"nativeK8s\"\" pulumi-lang-python=\"\"native_k8s\"\" pulumi-lang-yaml=\"\"nativeK8s\"\" pulumi-lang-java=\"\"nativeK8s\"\">\"native_k8s\"</span> only). If not set, the JWT submitted in the authentication process will be used to access the Kubernetes TokenReview API.\n","secret":true,"type":"string"},"useLocalCaJwt":{"description":"Use the GW's service account\n","type":"boolean"}},"type":"object"},"type":"object"},"akeyless:index/oidcApp:OidcApp":{"description":"OIDC App resource\n","inputProperties":{"accessibility":{"description":"For personal password manager\n","type":"string"},"audience":{"description":"A comma separated list of allowed audiences\n","type":"string"},"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"itemCustomFields":{"additionalProperties":{"type":"string"},"description":"Additional custom fields to associate with the item\n","type":"object"},"key":{"description":"The name of a key that used to encrypt the OIDC application (if empty, the account default protectionKey key will be used)\n","type":"string"},"name":{"description":"OIDC App name\n","type":"string"},"oidcAppId":{"description":"The ID of this resource.\n","type":"string"},"permissionAssignment":{"description":"A json array string defining the access permission assignment for this OIDC app. Supports two formats: 1) Auth method: [{\"assignment*type\":\"AUTH*METHOD\",\"access*id\":\"p-abc123\",\"sub*claims\":{\"email\":[\"user@example.com\"]}}] 2) Group: [{\"assignment*type\":\"GROUP\",\"group*id\":\"grp-xyz789\"}]\n","type":"string"},"public":{"description":"Set to true if the app is public (cannot keep secrets)\n","type":"boolean"},"redirectUris":{"description":"A comma separated list of allowed redirect uris\n","items":{"type":"string"},"type":"array"},"scopes":{"description":"A comma separated list of allowed scopes\n","items":{"type":"string"},"type":"array"},"tags":{"description":"Add tags attached to this object\n","items":{"type":"string"},"type":"array"}},"properties":{"accessibility":{"description":"For personal password manager\n","type":"string"},"audience":{"description":"A comma separated list of allowed audiences\n","type":"string"},"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"itemCustomFields":{"additionalProperties":{"type":"string"},"description":"Additional custom fields to associate with the item\n","type":"object"},"key":{"description":"The name of a key that used to encrypt the OIDC application (if empty, the account default protectionKey key will be used)\n","type":"string"},"name":{"description":"OIDC App name\n","type":"string"},"oidcAppId":{"description":"The ID of this resource.\n","type":"string"},"permissionAssignment":{"description":"A json array string defining the access permission assignment for this OIDC app. Supports two formats: 1) Auth method: [{\"assignment*type\":\"AUTH*METHOD\",\"access*id\":\"p-abc123\",\"sub*claims\":{\"email\":[\"user@example.com\"]}}] 2) Group: [{\"assignment*type\":\"GROUP\",\"group*id\":\"grp-xyz789\"}]\n","type":"string"},"public":{"description":"Set to true if the app is public (cannot keep secrets)\n","type":"boolean"},"redirectUris":{"description":"A comma separated list of allowed redirect uris\n","items":{"type":"string"},"type":"array"},"scopes":{"description":"A comma separated list of allowed scopes\n","items":{"type":"string"},"type":"array"},"tags":{"description":"Add tags attached to this object\n","items":{"type":"string"},"type":"array"}},"required":["key","name","oidcAppId","permissionAssignment"],"requiredInputs":["permissionAssignment"],"stateInputs":{"description":"Input properties used for looking up and filtering OidcApp resources.\n","properties":{"accessibility":{"description":"For personal password manager\n","type":"string"},"audience":{"description":"A comma separated list of allowed audiences\n","type":"string"},"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"itemCustomFields":{"additionalProperties":{"type":"string"},"description":"Additional custom fields to associate with the item\n","type":"object"},"key":{"description":"The name of a key that used to encrypt the OIDC application (if empty, the account default protectionKey key will be used)\n","type":"string"},"name":{"description":"OIDC App name\n","type":"string"},"oidcAppId":{"description":"The ID of this resource.\n","type":"string"},"permissionAssignment":{"description":"A json array string defining the access permission assignment for this OIDC app. Supports two formats: 1) Auth method: [{\"assignment*type\":\"AUTH*METHOD\",\"access*id\":\"p-abc123\",\"sub*claims\":{\"email\":[\"user@example.com\"]}}] 2) Group: [{\"assignment*type\":\"GROUP\",\"group*id\":\"grp-xyz789\"}]\n","type":"string"},"public":{"description":"Set to true if the app is public (cannot keep secrets)\n","type":"boolean"},"redirectUris":{"description":"A comma separated list of allowed redirect uris\n","items":{"type":"string"},"type":"array"},"scopes":{"description":"A comma separated list of allowed scopes\n","items":{"type":"string"},"type":"array"},"tags":{"description":"Add tags attached to this object\n","items":{"type":"string"},"type":"array"}},"type":"object"},"type":"object"},"akeyless:index/passkey:Passkey":{"description":"Passkey resource\n","inputProperties":{"accessibility":{"description":"For personal password manager\n","type":"string"},"alg":{"description":"Passkey type; options: [EC256, EC384, EC512]\n","type":"string"},"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"name":{"description":"ClassicKey name\n","type":"string"},"originUrls":{"description":"Originating websites for this passkey\n","items":{"type":"string"},"type":"array"},"passkeyId":{"description":"The ID of this resource.\n","type":"string"},"protectionKeyName":{"description":"The name of a key that used to encrypt the secret value (if empty, the account default protectionKey key will be used)\n","type":"string"},"tags":{"description":"Add tags attached to this object\n","items":{"type":"string"},"type":"array"},"username":{"description":"For Password Management use\n","type":"string"}},"properties":{"accessibility":{"description":"For personal password manager\n","type":"string"},"alg":{"description":"Passkey type; options: [EC256, EC384, EC512]\n","type":"string"},"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"name":{"description":"ClassicKey name\n","type":"string"},"originUrls":{"description":"Originating websites for this passkey\n","items":{"type":"string"},"type":"array"},"passkeyId":{"description":"The ID of this resource.\n","type":"string"},"protectionKeyName":{"description":"The name of a key that used to encrypt the secret value (if empty, the account default protectionKey key will be used)\n","type":"string"},"tags":{"description":"Add tags attached to this object\n","items":{"type":"string"},"type":"array"},"username":{"description":"For Password Management use\n","type":"string"}},"required":["alg","name","passkeyId","protectionKeyName"],"requiredInputs":["alg"],"stateInputs":{"description":"Input properties used for looking up and filtering Passkey resources.\n","properties":{"accessibility":{"description":"For personal password manager\n","type":"string"},"alg":{"description":"Passkey type; options: [EC256, EC384, EC512]\n","type":"string"},"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"name":{"description":"ClassicKey name\n","type":"string"},"originUrls":{"description":"Originating websites for this passkey\n","items":{"type":"string"},"type":"array"},"passkeyId":{"description":"The ID of this resource.\n","type":"string"},"protectionKeyName":{"description":"The name of a key that used to encrypt the secret value (if empty, the account default protectionKey key will be used)\n","type":"string"},"tags":{"description":"Add tags attached to this object\n","items":{"type":"string"},"type":"array"},"username":{"description":"For Password Management use\n","type":"string"}},"type":"object"},"type":"object"},"akeyless:index/pkiCertIssuer:PkiCertIssuer":{"description":"PKI Cert Issuer  resource\n","inputProperties":{"allowAnyName":{"description":"If set, clients can request certificates for any CN\n","type":"boolean"},"allowCopyExtFromCsr":{"description":"If set, will allow copying the extra extensions from the csr file (if given)\n","type":"boolean"},"allowSubdomains":{"description":"If set, clients can request certificates for subdomains and wildcard subdomains of the allowed domains\n","type":"boolean"},"allowedDomains":{"description":"A list of the allowed domains that clients can request to be included in the certificate (in a comma-delimited list)\n","type":"string"},"allowedExtraExtensions":{"description":"A json string containing the allowed extra extensions for the pki cert issuer\n","type":"string"},"allowedIpSans":{"description":"A list of the allowed CIDRs for ips that clients can request to be included in the certificate as part of the IP Subject Alternative Names (in a comma-delimited list)\n","type":"string"},"allowedUriSans":{"description":"A list of the allowed URIs that clients can request to be included in the certificate as part of the URI Subject Alternative Names (in a comma-delimited list)\n","type":"string"},"autoRenew":{"description":"Automatically renew certificates before expiration\n","type":"boolean"},"caTarget":{"description":"The name of an existing CA target to attach this PKI Certificate Issuer to, required in Public CA mode\n","type":"string"},"clientFlag":{"description":"If set, certificates will be flagged for client auth use\n","type":"boolean"},"codeSigningFlag":{"description":"If set, certificates will be flagged for code signing use\n","type":"boolean"},"country":{"description":"A comma-separated list of countries that will be set in the issued certificate\n","type":"string"},"createPrivateCrl":{"description":"Set this to allow the issuer will expose a CRL endpoint in the Gateway\n","type":"boolean"},"createPrivateOcsp":{"description":"Set this to enable an OCSP endpoint in the Gateway and include its URL in AIA\n","type":"boolean"},"createPublicCrl":{"description":"Set this to allow the cert issuer will expose a public CRL endpoint\n","type":"boolean"},"createPublicOcsp":{"description":"Set this to enable a public OCSP endpoint and include its URL in AIA (served by UAM and includes account id)\n","type":"boolean"},"criticalKeyUsage":{"description":"Mark key usage as critical [true/false]\n","type":"string"},"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"boolean"},"description":{"description":"Description of the object\n","type":"string"},"destinationPath":{"description":"A path in which to save generated certificates\n","type":"string"},"disableWildcards":{"description":"If set, generation of wildcard certificates will be disabled.\n","type":"boolean"},"enableAcme":{"description":"If set, the cert issuer will support the acme protocol\n","type":"boolean"},"expirationEventIns":{"description":"How many days before the expiration of the certificate would you like to be notified.\n","items":{"type":"string"},"type":"array"},"gwClusterUrl":{"description":"The GW cluster URL to issue the certificate from. Required in Public CA mode, to allow CRLs on private CA, or to enable ACME\n","type":"string"},"isCa":{"description":"If set, the basic constraints extension will be added to certificate\n","type":"boolean"},"itemCustomFields":{"additionalProperties":{"type":"string"},"description":"Additional custom fields to associate with the item\n","type":"object"},"keyUsage":{"description":"A comma-separated string or list of key usages\n","type":"string"},"locality":{"description":"A comma-separated list of localities that will be set in the issued certificate\n","type":"string"},"maxPathLen":{"description":"The maximum path length for the generated certificate. -1 means unlimited\n","type":"number"},"name":{"description":"PKI certificate issuer name\n","type":"string"},"notEnforceHostnames":{"description":"If set, any names are allowed for CN and SANs in the certificate and not only a valid host name\n","type":"boolean"},"notRequireCn":{"description":"If set, clients can request certificates without a CN\n","type":"boolean"},"ocspTtl":{"description":"OCSP NextUpdate window for OCSP responses (min 10m). Supports s,m,h,d suffix.\n","type":"string"},"organizationalUnits":{"description":"A comma-separated list of organizational units (OU) that will be set in the issued certificate\n","type":"string"},"organizations":{"description":"A comma-separated list of organizations (O) that will be set in the issued certificate\n","type":"string"},"pkiCertIssuerId":{"description":"The ID of this resource.\n","type":"string"},"postalCode":{"description":"A comma-separated list of postal codes that will be set in the issued certificate\n","type":"string"},"protectCertificates":{"description":"Whether to protect generated certificates from deletion\n","type":"boolean"},"province":{"description":"A comma-separated list of provinces that will be set in the issued certificate\n","type":"string"},"scheduledRenew":{"description":"Number of days before expiration to renew certificates\n","type":"number"},"serverFlag":{"description":"If set, certificates will be flagged for server auth use\n","type":"boolean"},"signerKeyName":{"description":"A key to sign the certificate with, required in Private CA mode\n","type":"string"},"streetAddress":{"description":"A comma-separated list of street addresses that will be set in the issued certificate\n","type":"string"},"tags":{"description":"List of the tags attached to this key\n","items":{"type":"string"},"type":"array"},"ttl":{"description":"The maximum requested Time To Live for issued certificates, in seconds. In case of Public CA, this is based on the CA target's supported maximum TTLs\n","type":"string"}},"properties":{"allowAnyName":{"description":"If set, clients can request certificates for any CN\n","type":"boolean"},"allowCopyExtFromCsr":{"description":"If set, will allow copying the extra extensions from the csr file (if given)\n","type":"boolean"},"allowSubdomains":{"description":"If set, clients can request certificates for subdomains and wildcard subdomains of the allowed domains\n","type":"boolean"},"allowedDomains":{"description":"A list of the allowed domains that clients can request to be included in the certificate (in a comma-delimited list)\n","type":"string"},"allowedExtraExtensions":{"description":"A json string containing the allowed extra extensions for the pki cert issuer\n","type":"string"},"allowedIpSans":{"description":"A list of the allowed CIDRs for ips that clients can request to be included in the certificate as part of the IP Subject Alternative Names (in a comma-delimited list)\n","type":"string"},"allowedUriSans":{"description":"A list of the allowed URIs that clients can request to be included in the certificate as part of the URI Subject Alternative Names (in a comma-delimited list)\n","type":"string"},"autoRenew":{"description":"Automatically renew certificates before expiration\n","type":"boolean"},"caTarget":{"description":"The name of an existing CA target to attach this PKI Certificate Issuer to, required in Public CA mode\n","type":"string"},"clientFlag":{"description":"If set, certificates will be flagged for client auth use\n","type":"boolean"},"codeSigningFlag":{"description":"If set, certificates will be flagged for code signing use\n","type":"boolean"},"country":{"description":"A comma-separated list of countries that will be set in the issued certificate\n","type":"string"},"createPrivateCrl":{"description":"Set this to allow the issuer will expose a CRL endpoint in the Gateway\n","type":"boolean"},"createPrivateOcsp":{"description":"Set this to enable an OCSP endpoint in the Gateway and include its URL in AIA\n","type":"boolean"},"createPublicCrl":{"description":"Set this to allow the cert issuer will expose a public CRL endpoint\n","type":"boolean"},"createPublicOcsp":{"description":"Set this to enable a public OCSP endpoint and include its URL in AIA (served by UAM and includes account id)\n","type":"boolean"},"criticalKeyUsage":{"description":"Mark key usage as critical [true/false]\n","type":"string"},"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"boolean"},"description":{"description":"Description of the object\n","type":"string"},"destinationPath":{"description":"A path in which to save generated certificates\n","type":"string"},"disableWildcards":{"description":"If set, generation of wildcard certificates will be disabled.\n","type":"boolean"},"enableAcme":{"description":"If set, the cert issuer will support the acme protocol\n","type":"boolean"},"expirationEventIns":{"description":"How many days before the expiration of the certificate would you like to be notified.\n","items":{"type":"string"},"type":"array"},"gwClusterUrl":{"description":"The GW cluster URL to issue the certificate from. Required in Public CA mode, to allow CRLs on private CA, or to enable ACME\n","type":"string"},"isCa":{"description":"If set, the basic constraints extension will be added to certificate\n","type":"boolean"},"itemCustomFields":{"additionalProperties":{"type":"string"},"description":"Additional custom fields to associate with the item\n","type":"object"},"keyUsage":{"description":"A comma-separated string or list of key usages\n","type":"string"},"locality":{"description":"A comma-separated list of localities that will be set in the issued certificate\n","type":"string"},"maxPathLen":{"description":"The maximum path length for the generated certificate. -1 means unlimited\n","type":"number"},"name":{"description":"PKI certificate issuer name\n","type":"string"},"notEnforceHostnames":{"description":"If set, any names are allowed for CN and SANs in the certificate and not only a valid host name\n","type":"boolean"},"notRequireCn":{"description":"If set, clients can request certificates without a CN\n","type":"boolean"},"ocspTtl":{"description":"OCSP NextUpdate window for OCSP responses (min 10m). Supports s,m,h,d suffix.\n","type":"string"},"organizationalUnits":{"description":"A comma-separated list of organizational units (OU) that will be set in the issued certificate\n","type":"string"},"organizations":{"description":"A comma-separated list of organizations (O) that will be set in the issued certificate\n","type":"string"},"pkiCertIssuerId":{"description":"The ID of this resource.\n","type":"string"},"postalCode":{"description":"A comma-separated list of postal codes that will be set in the issued certificate\n","type":"string"},"protectCertificates":{"description":"Whether to protect generated certificates from deletion\n","type":"boolean"},"province":{"description":"A comma-separated list of provinces that will be set in the issued certificate\n","type":"string"},"scheduledRenew":{"description":"Number of days before expiration to renew certificates\n","type":"number"},"serverFlag":{"description":"If set, certificates will be flagged for server auth use\n","type":"boolean"},"signerKeyName":{"description":"A key to sign the certificate with, required in Private CA mode\n","type":"string"},"streetAddress":{"description":"A comma-separated list of street addresses that will be set in the issued certificate\n","type":"string"},"tags":{"description":"List of the tags attached to this key\n","items":{"type":"string"},"type":"array"},"ttl":{"description":"The maximum requested Time To Live for issued certificates, in seconds. In case of Public CA, this is based on the CA target's supported maximum TTLs\n","type":"string"}},"required":["name","pkiCertIssuerId","ttl"],"requiredInputs":["ttl"],"stateInputs":{"description":"Input properties used for looking up and filtering PkiCertIssuer resources.\n","properties":{"allowAnyName":{"description":"If set, clients can request certificates for any CN\n","type":"boolean"},"allowCopyExtFromCsr":{"description":"If set, will allow copying the extra extensions from the csr file (if given)\n","type":"boolean"},"allowSubdomains":{"description":"If set, clients can request certificates for subdomains and wildcard subdomains of the allowed domains\n","type":"boolean"},"allowedDomains":{"description":"A list of the allowed domains that clients can request to be included in the certificate (in a comma-delimited list)\n","type":"string"},"allowedExtraExtensions":{"description":"A json string containing the allowed extra extensions for the pki cert issuer\n","type":"string"},"allowedIpSans":{"description":"A list of the allowed CIDRs for ips that clients can request to be included in the certificate as part of the IP Subject Alternative Names (in a comma-delimited list)\n","type":"string"},"allowedUriSans":{"description":"A list of the allowed URIs that clients can request to be included in the certificate as part of the URI Subject Alternative Names (in a comma-delimited list)\n","type":"string"},"autoRenew":{"description":"Automatically renew certificates before expiration\n","type":"boolean"},"caTarget":{"description":"The name of an existing CA target to attach this PKI Certificate Issuer to, required in Public CA mode\n","type":"string"},"clientFlag":{"description":"If set, certificates will be flagged for client auth use\n","type":"boolean"},"codeSigningFlag":{"description":"If set, certificates will be flagged for code signing use\n","type":"boolean"},"country":{"description":"A comma-separated list of countries that will be set in the issued certificate\n","type":"string"},"createPrivateCrl":{"description":"Set this to allow the issuer will expose a CRL endpoint in the Gateway\n","type":"boolean"},"createPrivateOcsp":{"description":"Set this to enable an OCSP endpoint in the Gateway and include its URL in AIA\n","type":"boolean"},"createPublicCrl":{"description":"Set this to allow the cert issuer will expose a public CRL endpoint\n","type":"boolean"},"createPublicOcsp":{"description":"Set this to enable a public OCSP endpoint and include its URL in AIA (served by UAM and includes account id)\n","type":"boolean"},"criticalKeyUsage":{"description":"Mark key usage as critical [true/false]\n","type":"string"},"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"boolean"},"description":{"description":"Description of the object\n","type":"string"},"destinationPath":{"description":"A path in which to save generated certificates\n","type":"string"},"disableWildcards":{"description":"If set, generation of wildcard certificates will be disabled.\n","type":"boolean"},"enableAcme":{"description":"If set, the cert issuer will support the acme protocol\n","type":"boolean"},"expirationEventIns":{"description":"How many days before the expiration of the certificate would you like to be notified.\n","items":{"type":"string"},"type":"array"},"gwClusterUrl":{"description":"The GW cluster URL to issue the certificate from. Required in Public CA mode, to allow CRLs on private CA, or to enable ACME\n","type":"string"},"isCa":{"description":"If set, the basic constraints extension will be added to certificate\n","type":"boolean"},"itemCustomFields":{"additionalProperties":{"type":"string"},"description":"Additional custom fields to associate with the item\n","type":"object"},"keyUsage":{"description":"A comma-separated string or list of key usages\n","type":"string"},"locality":{"description":"A comma-separated list of localities that will be set in the issued certificate\n","type":"string"},"maxPathLen":{"description":"The maximum path length for the generated certificate. -1 means unlimited\n","type":"number"},"name":{"description":"PKI certificate issuer name\n","type":"string"},"notEnforceHostnames":{"description":"If set, any names are allowed for CN and SANs in the certificate and not only a valid host name\n","type":"boolean"},"notRequireCn":{"description":"If set, clients can request certificates without a CN\n","type":"boolean"},"ocspTtl":{"description":"OCSP NextUpdate window for OCSP responses (min 10m). Supports s,m,h,d suffix.\n","type":"string"},"organizationalUnits":{"description":"A comma-separated list of organizational units (OU) that will be set in the issued certificate\n","type":"string"},"organizations":{"description":"A comma-separated list of organizations (O) that will be set in the issued certificate\n","type":"string"},"pkiCertIssuerId":{"description":"The ID of this resource.\n","type":"string"},"postalCode":{"description":"A comma-separated list of postal codes that will be set in the issued certificate\n","type":"string"},"protectCertificates":{"description":"Whether to protect generated certificates from deletion\n","type":"boolean"},"province":{"description":"A comma-separated list of provinces that will be set in the issued certificate\n","type":"string"},"scheduledRenew":{"description":"Number of days before expiration to renew certificates\n","type":"number"},"serverFlag":{"description":"If set, certificates will be flagged for server auth use\n","type":"boolean"},"signerKeyName":{"description":"A key to sign the certificate with, required in Private CA mode\n","type":"string"},"streetAddress":{"description":"A comma-separated list of street addresses that will be set in the issued certificate\n","type":"string"},"tags":{"description":"List of the tags attached to this key\n","items":{"type":"string"},"type":"array"},"ttl":{"description":"The maximum requested Time To Live for issued certificates, in seconds. In case of Public CA, this is based on the CA target's supported maximum TTLs\n","type":"string"}},"type":"object"},"type":"object"},"akeyless:index/policyKeys:PolicyKeys":{"description":"Policy Keys Resource\n","inputProperties":{"allowedAlgorithms":{"description":"Specify allowed key algorithms (e.g., [RSA2048,AES128GCM])\n","items":{"type":"string"},"type":"array"},"allowedKeyNames":{"description":"Specify allowed protection key names\n","items":{"type":"string"},"type":"array"},"allowedKeyTypes":{"description":"Specify allowed key protection types (dfc, classic-key)\n","items":{"type":"string"},"type":"array"},"maxRotationIntervalDays":{"description":"Set the maximum rotation interval for automatic key rotation\n","type":"number"},"objectTypes":{"description":"The object types this policy will apply to (items, targets)\n","items":{"type":"string"},"type":"array"},"path":{"description":"The path the policy refers to\n","type":"string"},"policyKeysId":{"description":"The ID of this resource.\n","type":"string"}},"properties":{"allowedAlgorithms":{"description":"Specify allowed key algorithms (e.g., [RSA2048,AES128GCM])\n","items":{"type":"string"},"type":"array"},"allowedKeyNames":{"description":"Specify allowed protection key names\n","items":{"type":"string"},"type":"array"},"allowedKeyTypes":{"description":"Specify allowed key protection types (dfc, classic-key)\n","items":{"type":"string"},"type":"array"},"maxRotationIntervalDays":{"description":"Set the maximum rotation interval for automatic key rotation\n","type":"number"},"objectTypes":{"description":"The object types this policy will apply to (items, targets)\n","items":{"type":"string"},"type":"array"},"path":{"description":"The path the policy refers to\n","type":"string"},"policyKeysId":{"description":"The ID of this resource.\n","type":"string"}},"required":["path","policyKeysId"],"requiredInputs":["path"],"stateInputs":{"description":"Input properties used for looking up and filtering PolicyKeys resources.\n","properties":{"allowedAlgorithms":{"description":"Specify allowed key algorithms (e.g., [RSA2048,AES128GCM])\n","items":{"type":"string"},"type":"array"},"allowedKeyNames":{"description":"Specify allowed protection key names\n","items":{"type":"string"},"type":"array"},"allowedKeyTypes":{"description":"Specify allowed key protection types (dfc, classic-key)\n","items":{"type":"string"},"type":"array"},"maxRotationIntervalDays":{"description":"Set the maximum rotation interval for automatic key rotation\n","type":"number"},"objectTypes":{"description":"The object types this policy will apply to (items, targets)\n","items":{"type":"string"},"type":"array"},"path":{"description":"The path the policy refers to\n","type":"string"},"policyKeysId":{"description":"The ID of this resource.\n","type":"string"}},"type":"object"},"type":"object"},"akeyless:index/role:Role":{"description":"Role Resource\n\n## Example Usage\n\n<!--Start PulumiCodeChooser -->\n```typescript\nimport * as pulumi from \"@pulumi/pulumi\";\nimport * as akeyless from \"@pulumi/akeyless\";\n\nexport = async () => {\n    const apiKey = new akeyless.index.AuthMethod(\"api_key\", {\n        apiKey: [{}],\n        path: \"auth-method-api-key-demo\",\n    });\n    const role = new akeyless.Role(\"role\", {\n        name: \"demo-role\",\n        assocAuthMethods: [{\n            amName: \"auth-method-api-key-demo\",\n            subClaims: {\n                groups: \"developers,readers\",\n                users: \"bob\",\n            },\n        }],\n        rules: [{\n            capabilities: [\"read\"],\n            path: \"/*\",\n            ruleType: \"auth-method-rule\",\n        }],\n    }, {\n        dependsOn: [apiKey],\n    });\n    const demo_role = akeyless.getRoleOutput({\n        name: role.roleId,\n    });\n    return {\n        \"demo-role\": demo_role,\n    };\n}\n```\n```python\nimport pulumi\nimport pulumi_akeyless as akeyless\n\napi_key = akeyless.index.AuthMethod(\"api_key\",\n    api_key=[{}],\n    path=auth-method-api-key-demo)\nrole = akeyless.Role(\"role\",\n    name=\"demo-role\",\n    assoc_auth_methods=[{\n        \"am_name\": \"auth-method-api-key-demo\",\n        \"sub_claims\": {\n            \"groups\": \"developers,readers\",\n            \"users\": \"bob\",\n        },\n    }],\n    rules=[{\n        \"capabilities\": [\"read\"],\n        \"path\": \"/*\",\n        \"rule_type\": \"auth-method-rule\",\n    }],\n    opts = pulumi.ResourceOptions(depends_on=[api_key]))\ndemo_role = akeyless.get_role_output(name=role.role_id)\npulumi.export(\"demo-role\", demo_role)\n```\n```csharp\nusing System.Collections.Generic;\nusing System.Linq;\nusing Pulumi;\nusing Akeyless = Pulumi.Akeyless;\n\nreturn await Deployment.RunAsync(() => \n{\n    var apiKey = new Akeyless.Index.AuthMethod(\"api_key\", new()\n    {\n        ApiKey = new[]\n        {\n            null,\n        },\n        Path = \"auth-method-api-key-demo\",\n    });\n\n    var role = new Akeyless.Role(\"role\", new()\n    {\n        Name = \"demo-role\",\n        AssocAuthMethods = new[]\n        {\n            new Akeyless.Inputs.RoleAssocAuthMethodArgs\n            {\n                AmName = \"auth-method-api-key-demo\",\n                SubClaims = \n                {\n                    { \"groups\", \"developers,readers\" },\n                    { \"users\", \"bob\" },\n                },\n            },\n        },\n        Rules = new[]\n        {\n            new Akeyless.Inputs.RoleRuleArgs\n            {\n                Capabilities = new[]\n                {\n                    \"read\",\n                },\n                Path = \"/*\",\n                RuleType = \"auth-method-rule\",\n            },\n        },\n    }, new CustomResourceOptions\n    {\n        DependsOn =\n        {\n            apiKey,\n        },\n    });\n\n    var demo_role = Akeyless.GetRole.Invoke(new()\n    {\n        Name = role.RoleId,\n    });\n\n    return new Dictionary<string, object?>\n    {\n        [\"demo-role\"] = demo_role,\n    };\n});\n```\n```go\npackage main\n\nimport (\n\t\"github.com/pulumi/pulumi-terraform-provider/sdks/go/akeyless/v2/akeyless\"\n\t\"github.com/pulumi/pulumi/sdk/v3/go/pulumi\"\n)\n\nfunc main() {\n\tpulumi.Run(func(ctx *pulumi.Context) error {\n\t\tapiKey, err := akeyless.NewAuthMethod(ctx, \"api_key\", &akeyless.AuthMethodArgs{\n\t\t\tApiKey: []map[string]interface{}{\n\t\t\t\tmap[string]interface{}{},\n\t\t\t},\n\t\t\tPath: \"auth-method-api-key-demo\",\n\t\t})\n\t\tif err != nil {\n\t\t\treturn err\n\t\t}\n\t\trole, err := akeyless.NewRole(ctx, \"role\", &akeyless.RoleArgs{\n\t\t\tName: pulumi.String(\"demo-role\"),\n\t\t\tAssocAuthMethods: akeyless.RoleAssocAuthMethodArray{\n\t\t\t\t&akeyless.RoleAssocAuthMethodArgs{\n\t\t\t\t\tAmName: pulumi.String(\"auth-method-api-key-demo\"),\n\t\t\t\t\tSubClaims: pulumi.StringMap{\n\t\t\t\t\t\t\"groups\": pulumi.String(\"developers,readers\"),\n\t\t\t\t\t\t\"users\":  pulumi.String(\"bob\"),\n\t\t\t\t\t},\n\t\t\t\t},\n\t\t\t},\n\t\t\tRules: akeyless.RoleRuleArray{\n\t\t\t\t&akeyless.RoleRuleArgs{\n\t\t\t\t\tCapabilities: pulumi.StringArray{\n\t\t\t\t\t\tpulumi.String(\"read\"),\n\t\t\t\t\t},\n\t\t\t\t\tPath:     pulumi.String(\"/*\"),\n\t\t\t\t\tRuleType: pulumi.String(\"auth-method-rule\"),\n\t\t\t\t},\n\t\t\t},\n\t\t}, pulumi.DependsOn([]pulumi.Resource{\n\t\t\tapiKey,\n\t\t}))\n\t\tif err != nil {\n\t\t\treturn err\n\t\t}\n\t\tdemo_role := akeyless.LookupRoleOutput(ctx, akeyless.GetRoleOutputArgs{\n\t\t\tName: role.RoleId,\n\t\t}, nil)\n\t\tctx.Export(\"demo-role\", demo_role)\n\t\treturn nil\n\t})\n}\n```\n```java\npackage generated_program;\n\nimport com.pulumi.Context;\nimport com.pulumi.Pulumi;\nimport com.pulumi.core.Output;\nimport com.pulumi.akeyless.AuthMethod;\nimport com.pulumi.akeyless.AuthMethodArgs;\nimport com.pulumi.akeyless.Role;\nimport com.pulumi.akeyless.RoleArgs;\nimport com.pulumi.akeyless.inputs.RoleAssocAuthMethodArgs;\nimport com.pulumi.akeyless.inputs.RoleRuleArgs;\nimport com.pulumi.akeyless.AkeylessFunctions;\nimport com.pulumi.akeyless.inputs.GetRoleArgs;\nimport com.pulumi.resources.CustomResourceOptions;\nimport java.util.List;\nimport java.util.ArrayList;\nimport java.util.Map;\nimport java.io.File;\nimport java.nio.file.Files;\nimport java.nio.file.Paths;\n\npublic class App {\n    public static void main(String[] args) {\n        Pulumi.run(App::stack);\n    }\n\n    public static void stack(Context ctx) {\n        var apiKey = new AuthMethod(\"apiKey\", AuthMethodArgs.builder()\n            .apiKey(List.of(Map.ofEntries(\n            )))\n            .path(\"auth-method-api-key-demo\")\n            .build());\n\n        var role = new Role(\"role\", RoleArgs.builder()\n            .name(\"demo-role\")\n            .assocAuthMethods(RoleAssocAuthMethodArgs.builder()\n                .amName(\"auth-method-api-key-demo\")\n                .subClaims(Map.ofEntries(\n                    Map.entry(\"groups\", \"developers,readers\"),\n                    Map.entry(\"users\", \"bob\")\n                ))\n                .build())\n            .rules(RoleRuleArgs.builder()\n                .capabilities(\"read\")\n                .path(\"/*\")\n                .ruleType(\"auth-method-rule\")\n                .build())\n            .build(), CustomResourceOptions.builder()\n                .dependsOn(apiKey)\n                .build());\n\n        final var demo-role = AkeylessFunctions.getRole(GetRoleArgs.builder()\n            .name(role.roleId())\n            .build());\n\n        ctx.export(\"demo-role\", demo_role);\n    }\n}\n```\n```yaml\nresources:\n  apiKey:\n    type: akeyless:AuthMethod\n    name: api_key\n    properties:\n      apiKey:\n        - {}\n      path: auth-method-api-key-demo\n  role:\n    type: akeyless:Role\n    properties:\n      name: demo-role\n      assocAuthMethods:\n        - amName: auth-method-api-key-demo\n          subClaims:\n            groups: developers,readers\n            users: bob\n      rules:\n        - capabilities:\n            - read\n          path: /*\n          ruleType: auth-method-rule\n    options:\n      dependsOn:\n        - ${apiKey}\nvariables:\n  demo-role:\n    fn::invoke:\n      function: akeyless:getRole\n      arguments:\n        name: ${role.roleId}\noutputs:\n  demo-role: ${[\"demo-role\"]}\n```\n<!--End PulumiCodeChooser -->\n\n## Import\n\n```sh\n$ pulumi import akeyless:index/role:Role example /full-role-path/and-name-in-akeyless\n```\n\n","inputProperties":{"analyticsAccess":{"description":"Allow this role to view analytics. Currently only 'none', 'own' and 'all' values are supported, allowing associated auth methods to view reports produced by the same auth methods.\n","type":"string"},"assocAuthMethods":{"deprecationMessage":"Deprecated","description":"Create an association between role and auth method\n","items":{"$ref":"#/types/akeyless:index%2FRoleAssocAuthMethod:RoleAssocAuthMethod"},"type":"array"},"auditAccess":{"description":"Allow this role to view audit logs. Currently only 'none', 'own', 'scoped' and 'all' values are supported, allowing associated auth methods to view audit logs produced by the same auth methods.\n","type":"string"},"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"eventCenterAccess":{"description":"Allow this role to view Event Center. Currently only 'none', 'scoped' and 'all' values are supported.\n","type":"string"},"eventForwardersAccess":{"description":"Allow this role to manage Event Forwarders. Currently only 'none' and 'all' values are supported.\n","type":"string"},"eventForwardersNames":{"description":"Allow this role to manage the following Event Forwarders.\n","items":{"type":"string"},"type":"array"},"gwAnalyticsAccess":{"description":"Allow this role to view gw analytics. Currently only 'none', 'scoped', 'all' values are supported, allowing associated auth methods to view reports produced by the same auth methods.\n","type":"string"},"name":{"description":"Role name\n","type":"string"},"reverseRbacAccess":{"description":"Allow this role to view Reverse RBAC. Supported values: 'scoped', 'all'.\n","type":"string"},"roleId":{"description":"The ID of this resource.\n","type":"string"},"rules":{"description":"Set a rule to a role\n","items":{"$ref":"#/types/akeyless:index%2FRoleRule:RoleRule"},"type":"array"},"sraReportsAccess":{"description":"Allow this role to view SRA Clusters. Currently only 'none', 'scoped', 'all' values are supported.\n","type":"string"},"usageReportsAccess":{"description":"Allow this role to view Usage Report. Currently only 'none' and 'all' values are supported.\n","type":"string"}},"properties":{"analyticsAccess":{"description":"Allow this role to view analytics. Currently only 'none', 'own' and 'all' values are supported, allowing associated auth methods to view reports produced by the same auth methods.\n","type":"string"},"assocAuthMethods":{"deprecationMessage":"Deprecated","description":"Create an association between role and auth method\n","items":{"$ref":"#/types/akeyless:index%2FRoleAssocAuthMethod:RoleAssocAuthMethod"},"type":"array"},"auditAccess":{"description":"Allow this role to view audit logs. Currently only 'none', 'own', 'scoped' and 'all' values are supported, allowing associated auth methods to view audit logs produced by the same auth methods.\n","type":"string"},"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"eventCenterAccess":{"description":"Allow this role to view Event Center. Currently only 'none', 'scoped' and 'all' values are supported.\n","type":"string"},"eventForwardersAccess":{"description":"Allow this role to manage Event Forwarders. Currently only 'none' and 'all' values are supported.\n","type":"string"},"eventForwardersNames":{"description":"Allow this role to manage the following Event Forwarders.\n","items":{"type":"string"},"type":"array"},"gwAnalyticsAccess":{"description":"Allow this role to view gw analytics. Currently only 'none', 'scoped', 'all' values are supported, allowing associated auth methods to view reports produced by the same auth methods.\n","type":"string"},"name":{"description":"Role name\n","type":"string"},"restrictedRules":{"items":{"$ref":"#/types/akeyless:index%2FRoleRestrictedRule:RoleRestrictedRule"},"type":"array"},"reverseRbacAccess":{"description":"Allow this role to view Reverse RBAC. Supported values: 'scoped', 'all'.\n","type":"string"},"roleId":{"description":"The ID of this resource.\n","type":"string"},"rules":{"description":"Set a rule to a role\n","items":{"$ref":"#/types/akeyless:index%2FRoleRule:RoleRule"},"type":"array"},"sraReportsAccess":{"description":"Allow this role to view SRA Clusters. Currently only 'none', 'scoped', 'all' values are supported.\n","type":"string"},"usageReportsAccess":{"description":"Allow this role to view Usage Report. Currently only 'none' and 'all' values are supported.\n","type":"string"}},"required":["name","restrictedRules","roleId"],"stateInputs":{"description":"Input properties used for looking up and filtering Role resources.\n","properties":{"analyticsAccess":{"description":"Allow this role to view analytics. Currently only 'none', 'own' and 'all' values are supported, allowing associated auth methods to view reports produced by the same auth methods.\n","type":"string"},"assocAuthMethods":{"deprecationMessage":"Deprecated","description":"Create an association between role and auth method\n","items":{"$ref":"#/types/akeyless:index%2FRoleAssocAuthMethod:RoleAssocAuthMethod"},"type":"array"},"auditAccess":{"description":"Allow this role to view audit logs. Currently only 'none', 'own', 'scoped' and 'all' values are supported, allowing associated auth methods to view audit logs produced by the same auth methods.\n","type":"string"},"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"eventCenterAccess":{"description":"Allow this role to view Event Center. Currently only 'none', 'scoped' and 'all' values are supported.\n","type":"string"},"eventForwardersAccess":{"description":"Allow this role to manage Event Forwarders. Currently only 'none' and 'all' values are supported.\n","type":"string"},"eventForwardersNames":{"description":"Allow this role to manage the following Event Forwarders.\n","items":{"type":"string"},"type":"array"},"gwAnalyticsAccess":{"description":"Allow this role to view gw analytics. Currently only 'none', 'scoped', 'all' values are supported, allowing associated auth methods to view reports produced by the same auth methods.\n","type":"string"},"name":{"description":"Role name\n","type":"string"},"restrictedRules":{"items":{"$ref":"#/types/akeyless:index%2FRoleRestrictedRule:RoleRestrictedRule"},"type":"array"},"reverseRbacAccess":{"description":"Allow this role to view Reverse RBAC. Supported values: 'scoped', 'all'.\n","type":"string"},"roleId":{"description":"The ID of this resource.\n","type":"string"},"rules":{"description":"Set a rule to a role\n","items":{"$ref":"#/types/akeyless:index%2FRoleRule:RoleRule"},"type":"array"},"sraReportsAccess":{"description":"Allow this role to view SRA Clusters. Currently only 'none', 'scoped', 'all' values are supported.\n","type":"string"},"usageReportsAccess":{"description":"Allow this role to view Usage Report. Currently only 'none' and 'all' values are supported.\n","type":"string"}},"type":"object"},"type":"object"},"akeyless:index/rotatedSecretAws:RotatedSecretAws":{"description":"Aws rotated secret resource\n","inputProperties":{"apiId":{"description":"API ID to rotate (relevant only for rotator-type=api-key)\n","type":"string"},"apiKey":{"description":"API key to rotate (relevant only for rotator-type=api-key)\n","type":"string"},"authenticationCredentials":{"description":"The credentials to connect with use-self-creds/use-target-creds\n","type":"string"},"autoRotate":{"description":"Whether to automatically rotate every --rotation-interval days, or disable existing automatic rotation [true/false]\n","type":"string"},"awsRegion":{"description":"Aws Region\n","type":"string"},"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"graceRotation":{"description":"Create a new access key without deleting the old key from AWS/Azure/GCP for backup (relevant only for AWS/Azure/GCP) [true/false]\n","type":"string"},"graceRotationHour":{"description":"The Hour of the grace rotation in UTC\n","type":"number"},"graceRotationInterval":{"description":"The number of days to wait before deleting the old key (must be bigger than rotation-interval)\n","type":"string"},"itemCustomFields":{"additionalProperties":{"type":"string"},"description":"Additional custom fields to associate with the item\n","type":"object"},"keepPrevVersion":{"description":"Whether to keep previous version [true/false]. If not set, use default according to account settings\n","type":"string"},"key":{"description":"The name of a key that is used to encrypt the secret value (if empty, the account default protectionKey key will be used)\n","type":"string"},"maxVersions":{"description":"Set the maximum number of versions, limited by the account settings defaults.\n","type":"string"},"name":{"description":"Rotated secret name\n","type":"string"},"passwordLength":{"description":"The length of the password to be generated\n","type":"string"},"rotateAfterDisconnect":{"description":"Rotate the value of the secret after SRA session ends [true/false]\n","type":"string"},"rotatedSecretAwsId":{"description":"The ID of this resource.\n","type":"string"},"rotationEventIns":{"description":"How many days before the rotation of the item would you like to be notified\n","items":{"type":"string"},"type":"array"},"rotationHour":{"description":"The Hour of the rotation in UTC\n","type":"number"},"rotationInterval":{"description":"The number of days to wait between every automatic key rotation (1-365)\n","type":"string"},"rotatorType":{"description":"The rotator type. options: [target/api-key]\n","type":"string"},"secureAccessAwsAccountId":{"description":"The AWS account id\n","type":"string"},"secureAccessAwsNativeCli":{"description":"The AWS native cli\n","type":"boolean"},"secureAccessCertificateIssuer":{"description":"Path to the SSH Certificate Issuer for your Akeyless Secure Access\n","type":"string"},"secureAccessEnable":{"description":"Enable/Disable secure remote access [true/false]\n","type":"string"},"tags":{"description":"Add tags attached to this object\n","items":{"type":"string"},"type":"array"},"targetName":{"description":"Target name\n","type":"string"}},"properties":{"apiId":{"description":"API ID to rotate (relevant only for rotator-type=api-key)\n","type":"string"},"apiKey":{"description":"API key to rotate (relevant only for rotator-type=api-key)\n","type":"string"},"authenticationCredentials":{"description":"The credentials to connect with use-self-creds/use-target-creds\n","type":"string"},"autoRotate":{"description":"Whether to automatically rotate every --rotation-interval days, or disable existing automatic rotation [true/false]\n","type":"string"},"awsRegion":{"description":"Aws Region\n","type":"string"},"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"graceRotation":{"description":"Create a new access key without deleting the old key from AWS/Azure/GCP for backup (relevant only for AWS/Azure/GCP) [true/false]\n","type":"string"},"graceRotationHour":{"description":"The Hour of the grace rotation in UTC\n","type":"number"},"graceRotationInterval":{"description":"The number of days to wait before deleting the old key (must be bigger than rotation-interval)\n","type":"string"},"itemCustomFields":{"additionalProperties":{"type":"string"},"description":"Additional custom fields to associate with the item\n","type":"object"},"keepPrevVersion":{"description":"Whether to keep previous version [true/false]. If not set, use default according to account settings\n","type":"string"},"key":{"description":"The name of a key that is used to encrypt the secret value (if empty, the account default protectionKey key will be used)\n","type":"string"},"maxVersions":{"description":"Set the maximum number of versions, limited by the account settings defaults.\n","type":"string"},"name":{"description":"Rotated secret name\n","type":"string"},"passwordLength":{"description":"The length of the password to be generated\n","type":"string"},"rotateAfterDisconnect":{"description":"Rotate the value of the secret after SRA session ends [true/false]\n","type":"string"},"rotatedSecretAwsId":{"description":"The ID of this resource.\n","type":"string"},"rotationEventIns":{"description":"How many days before the rotation of the item would you like to be notified\n","items":{"type":"string"},"type":"array"},"rotationHour":{"description":"The Hour of the rotation in UTC\n","type":"number"},"rotationInterval":{"description":"The number of days to wait between every automatic key rotation (1-365)\n","type":"string"},"rotatorType":{"description":"The rotator type. options: [target/api-key]\n","type":"string"},"secureAccessAwsAccountId":{"description":"The AWS account id\n","type":"string"},"secureAccessAwsNativeCli":{"description":"The AWS native cli\n","type":"boolean"},"secureAccessCertificateIssuer":{"description":"Path to the SSH Certificate Issuer for your Akeyless Secure Access\n","type":"string"},"secureAccessEnable":{"description":"Enable/Disable secure remote access [true/false]\n","type":"string"},"tags":{"description":"Add tags attached to this object\n","items":{"type":"string"},"type":"array"},"targetName":{"description":"Target name\n","type":"string"}},"required":["apiId","apiKey","key","maxVersions","name","rotatedSecretAwsId","rotatorType","targetName"],"requiredInputs":["rotatorType","targetName"],"stateInputs":{"description":"Input properties used for looking up and filtering RotatedSecretAws resources.\n","properties":{"apiId":{"description":"API ID to rotate (relevant only for rotator-type=api-key)\n","type":"string"},"apiKey":{"description":"API key to rotate (relevant only for rotator-type=api-key)\n","type":"string"},"authenticationCredentials":{"description":"The credentials to connect with use-self-creds/use-target-creds\n","type":"string"},"autoRotate":{"description":"Whether to automatically rotate every --rotation-interval days, or disable existing automatic rotation [true/false]\n","type":"string"},"awsRegion":{"description":"Aws Region\n","type":"string"},"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"graceRotation":{"description":"Create a new access key without deleting the old key from AWS/Azure/GCP for backup (relevant only for AWS/Azure/GCP) [true/false]\n","type":"string"},"graceRotationHour":{"description":"The Hour of the grace rotation in UTC\n","type":"number"},"graceRotationInterval":{"description":"The number of days to wait before deleting the old key (must be bigger than rotation-interval)\n","type":"string"},"itemCustomFields":{"additionalProperties":{"type":"string"},"description":"Additional custom fields to associate with the item\n","type":"object"},"keepPrevVersion":{"description":"Whether to keep previous version [true/false]. If not set, use default according to account settings\n","type":"string"},"key":{"description":"The name of a key that is used to encrypt the secret value (if empty, the account default protectionKey key will be used)\n","type":"string"},"maxVersions":{"description":"Set the maximum number of versions, limited by the account settings defaults.\n","type":"string"},"name":{"description":"Rotated secret name\n","type":"string"},"passwordLength":{"description":"The length of the password to be generated\n","type":"string"},"rotateAfterDisconnect":{"description":"Rotate the value of the secret after SRA session ends [true/false]\n","type":"string"},"rotatedSecretAwsId":{"description":"The ID of this resource.\n","type":"string"},"rotationEventIns":{"description":"How many days before the rotation of the item would you like to be notified\n","items":{"type":"string"},"type":"array"},"rotationHour":{"description":"The Hour of the rotation in UTC\n","type":"number"},"rotationInterval":{"description":"The number of days to wait between every automatic key rotation (1-365)\n","type":"string"},"rotatorType":{"description":"The rotator type. options: [target/api-key]\n","type":"string"},"secureAccessAwsAccountId":{"description":"The AWS account id\n","type":"string"},"secureAccessAwsNativeCli":{"description":"The AWS native cli\n","type":"boolean"},"secureAccessCertificateIssuer":{"description":"Path to the SSH Certificate Issuer for your Akeyless Secure Access\n","type":"string"},"secureAccessEnable":{"description":"Enable/Disable secure remote access [true/false]\n","type":"string"},"tags":{"description":"Add tags attached to this object\n","items":{"type":"string"},"type":"array"},"targetName":{"description":"Target name\n","type":"string"}},"type":"object"},"type":"object"},"akeyless:index/rotatedSecretAzure:RotatedSecretAzure":{"description":"Azure rotated secret resource\n","inputProperties":{"apiId":{"description":"API ID to rotate (relevant only for rotator-type=api-key)\n","type":"string"},"apiKey":{"description":"API key to rotate (relevant only for rotator-type=api-key)\n","type":"string"},"appId":{"description":"Id of the azure app that hold the serect to be rotated (relevant only for rotator-type=api-key & authentication-credentials=use-target-creds)\n","type":"string"},"authenticationCredentials":{"description":"The credentials to connect with use-self-creds/use-target-creds\n","type":"string"},"autoRotate":{"description":"Whether to automatically rotate every --rotation-interval days, or disable existing automatic rotation\n","type":"string"},"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"explicitlySetSa":{"description":"If set, explicitly provide the storage account details [true/false]\n","type":"string"},"graceRotation":{"description":"Create a new access key without deleting the old key from AWS/Azure/GCP for backup (relevant only for AWS/Azure/GCP) [true/false]\n","type":"string"},"graceRotationHour":{"description":"The Hour of the grace rotation in UTC\n","type":"number"},"graceRotationInterval":{"description":"The number of days to wait before deleting the old key (must be bigger than rotation-interval)\n","type":"string"},"itemCustomFields":{"additionalProperties":{"type":"string"},"description":"Additional custom fields to associate with the item\n","type":"object"},"keepPrevVersion":{"description":"Whether to keep previous version [true/false]. If not set, use default according to account settings\n","type":"string"},"key":{"description":"The name of a key that is used to encrypt the secret value (if empty, the account default protectionKey key will be used)\n","type":"string"},"maxVersions":{"description":"Set the maximum number of versions, limited by the account settings defaults.\n","type":"string"},"name":{"description":"Rotated secret name\n","type":"string"},"passwordLength":{"description":"The length of the password to be generated\n","type":"string"},"resourceGroupName":{"description":"The resource group name (only relevant when explicitly-set-sa=true)\n","type":"string"},"resourceName":{"description":"The name of the storage account (only relevant when explicitly-set-sa=true)\n","type":"string"},"rotateAfterDisconnect":{"description":"Rotate the value of the secret after SRA session ends [true/false]\n","type":"string"},"rotatedSecretAzureId":{"description":"The ID of this resource.\n","type":"string"},"rotationEventIns":{"description":"How many days before the rotation of the item would you like to be notified\n","items":{"type":"string"},"type":"array"},"rotationHour":{"description":"The Hour of the rotation in UTC\n","type":"number"},"rotationInterval":{"description":"The number of days to wait between every automatic key rotation (1-365)\n","type":"string"},"rotatorType":{"description":"The rotator type. options: [target/password/api-key/azure-storage-account]\n","type":"string"},"secureAccessDisableConcurrentConnections":{"description":"Enable this flag to prevent simultaneous use of the same secret\n","type":"boolean"},"secureAccessEnable":{"description":"Enable/Disable secure remote access [true/false]\n","type":"string"},"secureAccessUrl":{"description":"Destination URL to inject secrets\n","type":"string"},"secureAccessWeb":{"description":"Enable Web Secure Remote Access\n","type":"boolean"},"secureAccessWebBrowsing":{"description":"Secure browser via Akeyless's Secure Remote Access (SRA)\n","type":"boolean"},"secureAccessWebProxy":{"description":"Web-Proxy via Akeyless's Secure Remote Access (SRA)\n","type":"boolean"},"storageAccountKeyName":{"description":"The name of the storage account key to rotate key1/key2/kerb1/kerb2\n","type":"string"},"tags":{"description":"List of the tags attached to this secret. To specify multiple tags use argument multiple times: -t Tag1 -t Tag2\n","items":{"type":"string"},"type":"array"},"targetName":{"description":"Target name\n","type":"string"},"username":{"description":"The user principal name to rotate his password (relevant only for rotator-type=password)\n","type":"string"}},"properties":{"apiId":{"description":"API ID to rotate (relevant only for rotator-type=api-key)\n","type":"string"},"apiKey":{"description":"API key to rotate (relevant only for rotator-type=api-key)\n","type":"string"},"appId":{"description":"Id of the azure app that hold the serect to be rotated (relevant only for rotator-type=api-key & authentication-credentials=use-target-creds)\n","type":"string"},"authenticationCredentials":{"description":"The credentials to connect with use-self-creds/use-target-creds\n","type":"string"},"autoRotate":{"description":"Whether to automatically rotate every --rotation-interval days, or disable existing automatic rotation\n","type":"string"},"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"explicitlySetSa":{"description":"If set, explicitly provide the storage account details [true/false]\n","type":"string"},"graceRotation":{"description":"Create a new access key without deleting the old key from AWS/Azure/GCP for backup (relevant only for AWS/Azure/GCP) [true/false]\n","type":"string"},"graceRotationHour":{"description":"The Hour of the grace rotation in UTC\n","type":"number"},"graceRotationInterval":{"description":"The number of days to wait before deleting the old key (must be bigger than rotation-interval)\n","type":"string"},"itemCustomFields":{"additionalProperties":{"type":"string"},"description":"Additional custom fields to associate with the item\n","type":"object"},"keepPrevVersion":{"description":"Whether to keep previous version [true/false]. If not set, use default according to account settings\n","type":"string"},"key":{"description":"The name of a key that is used to encrypt the secret value (if empty, the account default protectionKey key will be used)\n","type":"string"},"maxVersions":{"description":"Set the maximum number of versions, limited by the account settings defaults.\n","type":"string"},"name":{"description":"Rotated secret name\n","type":"string"},"passwordLength":{"description":"The length of the password to be generated\n","type":"string"},"resourceGroupName":{"description":"The resource group name (only relevant when explicitly-set-sa=true)\n","type":"string"},"resourceName":{"description":"The name of the storage account (only relevant when explicitly-set-sa=true)\n","type":"string"},"rotateAfterDisconnect":{"description":"Rotate the value of the secret after SRA session ends [true/false]\n","type":"string"},"rotatedSecretAzureId":{"description":"The ID of this resource.\n","type":"string"},"rotationEventIns":{"description":"How many days before the rotation of the item would you like to be notified\n","items":{"type":"string"},"type":"array"},"rotationHour":{"description":"The Hour of the rotation in UTC\n","type":"number"},"rotationInterval":{"description":"The number of days to wait between every automatic key rotation (1-365)\n","type":"string"},"rotatorType":{"description":"The rotator type. options: [target/password/api-key/azure-storage-account]\n","type":"string"},"secureAccessDisableConcurrentConnections":{"description":"Enable this flag to prevent simultaneous use of the same secret\n","type":"boolean"},"secureAccessEnable":{"description":"Enable/Disable secure remote access [true/false]\n","type":"string"},"secureAccessUrl":{"description":"Destination URL to inject secrets\n","type":"string"},"secureAccessWeb":{"description":"Enable Web Secure Remote Access\n","type":"boolean"},"secureAccessWebBrowsing":{"description":"Secure browser via Akeyless's Secure Remote Access (SRA)\n","type":"boolean"},"secureAccessWebProxy":{"description":"Web-Proxy via Akeyless's Secure Remote Access (SRA)\n","type":"boolean"},"storageAccountKeyName":{"description":"The name of the storage account key to rotate key1/key2/kerb1/kerb2\n","type":"string"},"tags":{"description":"List of the tags attached to this secret. To specify multiple tags use argument multiple times: -t Tag1 -t Tag2\n","items":{"type":"string"},"type":"array"},"targetName":{"description":"Target name\n","type":"string"},"username":{"description":"The user principal name to rotate his password (relevant only for rotator-type=password)\n","type":"string"}},"required":["apiId","apiKey","key","maxVersions","name","rotatedSecretAzureId","rotatorType","targetName"],"requiredInputs":["rotatorType","targetName"],"stateInputs":{"description":"Input properties used for looking up and filtering RotatedSecretAzure resources.\n","properties":{"apiId":{"description":"API ID to rotate (relevant only for rotator-type=api-key)\n","type":"string"},"apiKey":{"description":"API key to rotate (relevant only for rotator-type=api-key)\n","type":"string"},"appId":{"description":"Id of the azure app that hold the serect to be rotated (relevant only for rotator-type=api-key & authentication-credentials=use-target-creds)\n","type":"string"},"authenticationCredentials":{"description":"The credentials to connect with use-self-creds/use-target-creds\n","type":"string"},"autoRotate":{"description":"Whether to automatically rotate every --rotation-interval days, or disable existing automatic rotation\n","type":"string"},"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"explicitlySetSa":{"description":"If set, explicitly provide the storage account details [true/false]\n","type":"string"},"graceRotation":{"description":"Create a new access key without deleting the old key from AWS/Azure/GCP for backup (relevant only for AWS/Azure/GCP) [true/false]\n","type":"string"},"graceRotationHour":{"description":"The Hour of the grace rotation in UTC\n","type":"number"},"graceRotationInterval":{"description":"The number of days to wait before deleting the old key (must be bigger than rotation-interval)\n","type":"string"},"itemCustomFields":{"additionalProperties":{"type":"string"},"description":"Additional custom fields to associate with the item\n","type":"object"},"keepPrevVersion":{"description":"Whether to keep previous version [true/false]. If not set, use default according to account settings\n","type":"string"},"key":{"description":"The name of a key that is used to encrypt the secret value (if empty, the account default protectionKey key will be used)\n","type":"string"},"maxVersions":{"description":"Set the maximum number of versions, limited by the account settings defaults.\n","type":"string"},"name":{"description":"Rotated secret name\n","type":"string"},"passwordLength":{"description":"The length of the password to be generated\n","type":"string"},"resourceGroupName":{"description":"The resource group name (only relevant when explicitly-set-sa=true)\n","type":"string"},"resourceName":{"description":"The name of the storage account (only relevant when explicitly-set-sa=true)\n","type":"string"},"rotateAfterDisconnect":{"description":"Rotate the value of the secret after SRA session ends [true/false]\n","type":"string"},"rotatedSecretAzureId":{"description":"The ID of this resource.\n","type":"string"},"rotationEventIns":{"description":"How many days before the rotation of the item would you like to be notified\n","items":{"type":"string"},"type":"array"},"rotationHour":{"description":"The Hour of the rotation in UTC\n","type":"number"},"rotationInterval":{"description":"The number of days to wait between every automatic key rotation (1-365)\n","type":"string"},"rotatorType":{"description":"The rotator type. options: [target/password/api-key/azure-storage-account]\n","type":"string"},"secureAccessDisableConcurrentConnections":{"description":"Enable this flag to prevent simultaneous use of the same secret\n","type":"boolean"},"secureAccessEnable":{"description":"Enable/Disable secure remote access [true/false]\n","type":"string"},"secureAccessUrl":{"description":"Destination URL to inject secrets\n","type":"string"},"secureAccessWeb":{"description":"Enable Web Secure Remote Access\n","type":"boolean"},"secureAccessWebBrowsing":{"description":"Secure browser via Akeyless's Secure Remote Access (SRA)\n","type":"boolean"},"secureAccessWebProxy":{"description":"Web-Proxy via Akeyless's Secure Remote Access (SRA)\n","type":"boolean"},"storageAccountKeyName":{"description":"The name of the storage account key to rotate key1/key2/kerb1/kerb2\n","type":"string"},"tags":{"description":"List of the tags attached to this secret. To specify multiple tags use argument multiple times: -t Tag1 -t Tag2\n","items":{"type":"string"},"type":"array"},"targetName":{"description":"Target name\n","type":"string"},"username":{"description":"The user principal name to rotate his password (relevant only for rotator-type=password)\n","type":"string"}},"type":"object"},"type":"object"},"akeyless:index/rotatedSecretCassandra:RotatedSecretCassandra":{"description":"Cassandra rotated secret resource\n","inputProperties":{"authenticationCredentials":{"description":"The credentials to connect with use-self-creds/use-target-creds\n","type":"string"},"autoRotate":{"description":"Whether to automatically rotate every --rotation-interval days, or disable existing automatic rotation\n","type":"string"},"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"itemCustomFields":{"additionalProperties":{"type":"string"},"description":"Additional custom fields to associate with the item\n","type":"object"},"keepPrevVersion":{"description":"Whether to keep previous version [true/false]. If not set, use default according to account settings\n","type":"string"},"key":{"description":"The name of a key that is used to encrypt the secret value (if empty, the account default protectionKey key will be used)\n","type":"string"},"maxVersions":{"description":"Set the maximum number of versions, limited by the account settings defaults\n","type":"string"},"name":{"description":"Secret name\n","type":"string"},"passwordLength":{"description":"The length of the password to be generated\n","type":"string"},"rotatedPassword":{"description":"rotated-username password (relevant only for rotator-type=password)\n","type":"string"},"rotatedSecretCassandraId":{"description":"The ID of this resource.\n","type":"string"},"rotatedUsername":{"description":"username to be rotated, if selected use-self-creds at rotator-creds-type, this username will try to rotate it's own password, if use-target-creds is selected, target credentials will be use to rotate the rotated-password (relevant only for rotator-type=password)\n","type":"string"},"rotationEventIns":{"description":"How many days before the rotation of the item would you like to be notified\n","items":{"type":"string"},"type":"array"},"rotationHour":{"description":"The Hour of the rotation in UTC\n","type":"number"},"rotationInterval":{"description":"The number of days to wait between every automatic key rotation (1-365)\n","type":"string"},"rotatorType":{"description":"The rotator type [target/password]\n","type":"string"},"tags":{"description":"List of the tags attached to this secret. To specify multiple tags use argument multiple times: -t Tag1 -t Tag2\n","items":{"type":"string"},"type":"array"},"targetName":{"description":"The target name to associate\n","type":"string"}},"properties":{"authenticationCredentials":{"description":"The credentials to connect with use-self-creds/use-target-creds\n","type":"string"},"autoRotate":{"description":"Whether to automatically rotate every --rotation-interval days, or disable existing automatic rotation\n","type":"string"},"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"itemCustomFields":{"additionalProperties":{"type":"string"},"description":"Additional custom fields to associate with the item\n","type":"object"},"keepPrevVersion":{"description":"Whether to keep previous version [true/false]. If not set, use default according to account settings\n","type":"string"},"key":{"description":"The name of a key that is used to encrypt the secret value (if empty, the account default protectionKey key will be used)\n","type":"string"},"maxVersions":{"description":"Set the maximum number of versions, limited by the account settings defaults\n","type":"string"},"name":{"description":"Secret name\n","type":"string"},"passwordLength":{"description":"The length of the password to be generated\n","type":"string"},"rotatedPassword":{"description":"rotated-username password (relevant only for rotator-type=password)\n","type":"string"},"rotatedSecretCassandraId":{"description":"The ID of this resource.\n","type":"string"},"rotatedUsername":{"description":"username to be rotated, if selected use-self-creds at rotator-creds-type, this username will try to rotate it's own password, if use-target-creds is selected, target credentials will be use to rotate the rotated-password (relevant only for rotator-type=password)\n","type":"string"},"rotationEventIns":{"description":"How many days before the rotation of the item would you like to be notified\n","items":{"type":"string"},"type":"array"},"rotationHour":{"description":"The Hour of the rotation in UTC\n","type":"number"},"rotationInterval":{"description":"The number of days to wait between every automatic key rotation (1-365)\n","type":"string"},"rotatorType":{"description":"The rotator type [target/password]\n","type":"string"},"tags":{"description":"List of the tags attached to this secret. To specify multiple tags use argument multiple times: -t Tag1 -t Tag2\n","items":{"type":"string"},"type":"array"},"targetName":{"description":"The target name to associate\n","type":"string"}},"required":["key","maxVersions","name","rotatedPassword","rotatedSecretCassandraId","rotatedUsername","rotatorType","targetName"],"requiredInputs":["rotatorType","targetName"],"stateInputs":{"description":"Input properties used for looking up and filtering RotatedSecretCassandra resources.\n","properties":{"authenticationCredentials":{"description":"The credentials to connect with use-self-creds/use-target-creds\n","type":"string"},"autoRotate":{"description":"Whether to automatically rotate every --rotation-interval days, or disable existing automatic rotation\n","type":"string"},"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"itemCustomFields":{"additionalProperties":{"type":"string"},"description":"Additional custom fields to associate with the item\n","type":"object"},"keepPrevVersion":{"description":"Whether to keep previous version [true/false]. If not set, use default according to account settings\n","type":"string"},"key":{"description":"The name of a key that is used to encrypt the secret value (if empty, the account default protectionKey key will be used)\n","type":"string"},"maxVersions":{"description":"Set the maximum number of versions, limited by the account settings defaults\n","type":"string"},"name":{"description":"Secret name\n","type":"string"},"passwordLength":{"description":"The length of the password to be generated\n","type":"string"},"rotatedPassword":{"description":"rotated-username password (relevant only for rotator-type=password)\n","type":"string"},"rotatedSecretCassandraId":{"description":"The ID of this resource.\n","type":"string"},"rotatedUsername":{"description":"username to be rotated, if selected use-self-creds at rotator-creds-type, this username will try to rotate it's own password, if use-target-creds is selected, target credentials will be use to rotate the rotated-password (relevant only for rotator-type=password)\n","type":"string"},"rotationEventIns":{"description":"How many days before the rotation of the item would you like to be notified\n","items":{"type":"string"},"type":"array"},"rotationHour":{"description":"The Hour of the rotation in UTC\n","type":"number"},"rotationInterval":{"description":"The number of days to wait between every automatic key rotation (1-365)\n","type":"string"},"rotatorType":{"description":"The rotator type [target/password]\n","type":"string"},"tags":{"description":"List of the tags attached to this secret. To specify multiple tags use argument multiple times: -t Tag1 -t Tag2\n","items":{"type":"string"},"type":"array"},"targetName":{"description":"The target name to associate\n","type":"string"}},"type":"object"},"type":"object"},"akeyless:index/rotatedSecretCustom:RotatedSecretCustom":{"description":"Custom rotated secret resource\n","inputProperties":{"authenticationCredentials":{"description":"The credentials to connect with use-self-creds/use-target-creds\n","type":"string"},"autoRotate":{"description":"Whether to automatically rotate every --rotation-interval days, or disable existing automatic rotation [true/false]\n","type":"string"},"customPayload":{"description":"Secret payload to be sent with rotation request\n","type":"string"},"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"enablePasswordPolicy":{"description":"Enable password policy\n","type":"string"},"itemCustomFields":{"additionalProperties":{"type":"string"},"description":"Additional custom fields to associate with the item\n","type":"object"},"keepPrevVersion":{"description":"Whether to keep previous version [true/false]. If not set, use default according to account settings\n","type":"string"},"key":{"description":"The name of a key that is used to encrypt the secret value (if empty, the account default protectionKey key will be used)\n","type":"string"},"maxVersions":{"description":"Set the maximum number of versions, limited by the account settings defaults\n","type":"string"},"name":{"description":"Secret name\n","type":"string"},"passwordLength":{"description":"The length of the password to be generated\n","type":"string"},"rotateAfterDisconnect":{"description":"Rotate the value of the secret after SRA session ends [true/false]\n","type":"string"},"rotatedSecretCustomId":{"description":"The ID of this resource.\n","type":"string"},"rotationEventIns":{"description":"How many days before the rotation of the item would you like to be notified\n","items":{"type":"string"},"type":"array"},"rotationHour":{"description":"The Hour of the rotation in UTC\n","type":"number"},"rotationInterval":{"description":"The number of days to wait between every automatic key rotation (1-365)\n","type":"string"},"secureAccessAllowExternalUser":{"description":"Allow providing external user for a domain users\n","type":"boolean"},"secureAccessCertificateIssuer":{"description":"Path to the SSH Certificate Issuer for your Akeyless Secure Access\n","type":"string"},"secureAccessEnable":{"description":"Enable/Disable secure remote access [true/false]\n","type":"string"},"secureAccessHosts":{"description":"Target servers for connections (In case of Linked Target association, host(s) will inherit Linked Target hosts - Relevant only for Dynamic Secrets/producers)\n","items":{"type":"string"},"type":"array"},"secureAccessRdpDomain":{"description":"Default domain name server. i.e. microsoft.com\n","type":"string"},"secureAccessRdpUser":{"description":"Override the RDP Domain username\n","type":"string"},"secureAccessSshUser":{"description":"Override the SSH username as indicated in SSH Certificate Issuer\n","type":"string"},"secureAccessUrl":{"description":"Destination URL to inject secrets\n","type":"string"},"secureAccessWeb":{"description":"Enable Web Secure Remote Access\n","type":"boolean"},"secureAccessWebBrowsing":{"description":"Secure browser via Akeyless's Secure Remote Access (SRA)\n","type":"boolean"},"secureAccessWebProxy":{"description":"Web-Proxy via Akeyless's Secure Remote Access (SRA)\n","type":"boolean"},"tags":{"description":"List of the tags attached to this secret. To specify multiple tags use argument multiple times: -t Tag1 -t Tag2\n","items":{"type":"string"},"type":"array"},"targetName":{"description":"The target name to associate\n","type":"string"},"timeoutSec":{"description":"Maximum allowed time in seconds for the custom rotator to return the results\n","type":"number"},"useCapitalLetters":{"description":"Password must contain capital letters [true/false]\n","type":"string"},"useLowerLetters":{"description":"Password must contain lower case letters [true/false]\n","type":"string"},"useNumbers":{"description":"Password must contain numbers [true/false]\n","type":"string"},"useSpecialCharacters":{"description":"Password must contain special characters [true/false]\n","type":"string"}},"properties":{"authenticationCredentials":{"description":"The credentials to connect with use-self-creds/use-target-creds\n","type":"string"},"autoRotate":{"description":"Whether to automatically rotate every --rotation-interval days, or disable existing automatic rotation [true/false]\n","type":"string"},"customPayload":{"description":"Secret payload to be sent with rotation request\n","type":"string"},"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"enablePasswordPolicy":{"description":"Enable password policy\n","type":"string"},"itemCustomFields":{"additionalProperties":{"type":"string"},"description":"Additional custom fields to associate with the item\n","type":"object"},"keepPrevVersion":{"description":"Whether to keep previous version [true/false]. If not set, use default according to account settings\n","type":"string"},"key":{"description":"The name of a key that is used to encrypt the secret value (if empty, the account default protectionKey key will be used)\n","type":"string"},"maxVersions":{"description":"Set the maximum number of versions, limited by the account settings defaults\n","type":"string"},"name":{"description":"Secret name\n","type":"string"},"passwordLength":{"description":"The length of the password to be generated\n","type":"string"},"rotateAfterDisconnect":{"description":"Rotate the value of the secret after SRA session ends [true/false]\n","type":"string"},"rotatedSecretCustomId":{"description":"The ID of this resource.\n","type":"string"},"rotationEventIns":{"description":"How many days before the rotation of the item would you like to be notified\n","items":{"type":"string"},"type":"array"},"rotationHour":{"description":"The Hour of the rotation in UTC\n","type":"number"},"rotationInterval":{"description":"The number of days to wait between every automatic key rotation (1-365)\n","type":"string"},"secureAccessAllowExternalUser":{"description":"Allow providing external user for a domain users\n","type":"boolean"},"secureAccessCertificateIssuer":{"description":"Path to the SSH Certificate Issuer for your Akeyless Secure Access\n","type":"string"},"secureAccessEnable":{"description":"Enable/Disable secure remote access [true/false]\n","type":"string"},"secureAccessHosts":{"description":"Target servers for connections (In case of Linked Target association, host(s) will inherit Linked Target hosts - Relevant only for Dynamic Secrets/producers)\n","items":{"type":"string"},"type":"array"},"secureAccessRdpDomain":{"description":"Default domain name server. i.e. microsoft.com\n","type":"string"},"secureAccessRdpUser":{"description":"Override the RDP Domain username\n","type":"string"},"secureAccessSshUser":{"description":"Override the SSH username as indicated in SSH Certificate Issuer\n","type":"string"},"secureAccessUrl":{"description":"Destination URL to inject secrets\n","type":"string"},"secureAccessWeb":{"description":"Enable Web Secure Remote Access\n","type":"boolean"},"secureAccessWebBrowsing":{"description":"Secure browser via Akeyless's Secure Remote Access (SRA)\n","type":"boolean"},"secureAccessWebProxy":{"description":"Web-Proxy via Akeyless's Secure Remote Access (SRA)\n","type":"boolean"},"tags":{"description":"List of the tags attached to this secret. To specify multiple tags use argument multiple times: -t Tag1 -t Tag2\n","items":{"type":"string"},"type":"array"},"targetName":{"description":"The target name to associate\n","type":"string"},"timeoutSec":{"description":"Maximum allowed time in seconds for the custom rotator to return the results\n","type":"number"},"useCapitalLetters":{"description":"Password must contain capital letters [true/false]\n","type":"string"},"useLowerLetters":{"description":"Password must contain lower case letters [true/false]\n","type":"string"},"useNumbers":{"description":"Password must contain numbers [true/false]\n","type":"string"},"useSpecialCharacters":{"description":"Password must contain special characters [true/false]\n","type":"string"}},"required":["customPayload","key","maxVersions","name","rotatedSecretCustomId","targetName"],"requiredInputs":["targetName"],"stateInputs":{"description":"Input properties used for looking up and filtering RotatedSecretCustom resources.\n","properties":{"authenticationCredentials":{"description":"The credentials to connect with use-self-creds/use-target-creds\n","type":"string"},"autoRotate":{"description":"Whether to automatically rotate every --rotation-interval days, or disable existing automatic rotation [true/false]\n","type":"string"},"customPayload":{"description":"Secret payload to be sent with rotation request\n","type":"string"},"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"enablePasswordPolicy":{"description":"Enable password policy\n","type":"string"},"itemCustomFields":{"additionalProperties":{"type":"string"},"description":"Additional custom fields to associate with the item\n","type":"object"},"keepPrevVersion":{"description":"Whether to keep previous version [true/false]. If not set, use default according to account settings\n","type":"string"},"key":{"description":"The name of a key that is used to encrypt the secret value (if empty, the account default protectionKey key will be used)\n","type":"string"},"maxVersions":{"description":"Set the maximum number of versions, limited by the account settings defaults\n","type":"string"},"name":{"description":"Secret name\n","type":"string"},"passwordLength":{"description":"The length of the password to be generated\n","type":"string"},"rotateAfterDisconnect":{"description":"Rotate the value of the secret after SRA session ends [true/false]\n","type":"string"},"rotatedSecretCustomId":{"description":"The ID of this resource.\n","type":"string"},"rotationEventIns":{"description":"How many days before the rotation of the item would you like to be notified\n","items":{"type":"string"},"type":"array"},"rotationHour":{"description":"The Hour of the rotation in UTC\n","type":"number"},"rotationInterval":{"description":"The number of days to wait between every automatic key rotation (1-365)\n","type":"string"},"secureAccessAllowExternalUser":{"description":"Allow providing external user for a domain users\n","type":"boolean"},"secureAccessCertificateIssuer":{"description":"Path to the SSH Certificate Issuer for your Akeyless Secure Access\n","type":"string"},"secureAccessEnable":{"description":"Enable/Disable secure remote access [true/false]\n","type":"string"},"secureAccessHosts":{"description":"Target servers for connections (In case of Linked Target association, host(s) will inherit Linked Target hosts - Relevant only for Dynamic Secrets/producers)\n","items":{"type":"string"},"type":"array"},"secureAccessRdpDomain":{"description":"Default domain name server. i.e. microsoft.com\n","type":"string"},"secureAccessRdpUser":{"description":"Override the RDP Domain username\n","type":"string"},"secureAccessSshUser":{"description":"Override the SSH username as indicated in SSH Certificate Issuer\n","type":"string"},"secureAccessUrl":{"description":"Destination URL to inject secrets\n","type":"string"},"secureAccessWeb":{"description":"Enable Web Secure Remote Access\n","type":"boolean"},"secureAccessWebBrowsing":{"description":"Secure browser via Akeyless's Secure Remote Access (SRA)\n","type":"boolean"},"secureAccessWebProxy":{"description":"Web-Proxy via Akeyless's Secure Remote Access (SRA)\n","type":"boolean"},"tags":{"description":"List of the tags attached to this secret. To specify multiple tags use argument multiple times: -t Tag1 -t Tag2\n","items":{"type":"string"},"type":"array"},"targetName":{"description":"The target name to associate\n","type":"string"},"timeoutSec":{"description":"Maximum allowed time in seconds for the custom rotator to return the results\n","type":"number"},"useCapitalLetters":{"description":"Password must contain capital letters [true/false]\n","type":"string"},"useLowerLetters":{"description":"Password must contain lower case letters [true/false]\n","type":"string"},"useNumbers":{"description":"Password must contain numbers [true/false]\n","type":"string"},"useSpecialCharacters":{"description":"Password must contain special characters [true/false]\n","type":"string"}},"type":"object"},"type":"object"},"akeyless:index/rotatedSecretDockerhub:RotatedSecretDockerhub":{"description":"Dockerhub rotated secret resource\n","inputProperties":{"authenticationCredentials":{"description":"The credentials to connect with use-self-creds/use-target-creds\n","type":"string"},"autoRotate":{"description":"Whether to automatically rotate every --rotation-interval days, or disable existing automatic rotation [true/false]\n","type":"string"},"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"itemCustomFields":{"additionalProperties":{"type":"string"},"description":"Additional custom fields to associate with the item\n","type":"object"},"keepPrevVersion":{"description":"Whether to keep previous version [true/false]. If not set, use default according to account settings\n","type":"string"},"key":{"description":"The name of a key that is used to encrypt the secret value (if empty, the account default protectionKey key will be used)\n","type":"string"},"maxVersions":{"description":"Set the maximum number of versions, limited by the account settings defaults.\n","type":"string"},"name":{"description":"Secret name\n","type":"string"},"passwordLength":{"description":"The length of the password to be generated\n","type":"string"},"rotatedSecretDockerhubId":{"description":"The ID of this resource.\n","type":"string"},"rotationEventIns":{"description":"How many days before the rotation of the item would you like to be notified\n","items":{"type":"string"},"type":"array"},"rotationHour":{"description":"The Hour of the rotation in UTC\n","type":"number"},"rotationInterval":{"description":"The number of days to wait between every automatic key rotation (1-365)\n","type":"string"},"tags":{"description":"List of the tags attached to this secret. To specify multiple tags use argument multiple times: -t Tag1 -t Tag2\n","items":{"type":"string"},"type":"array"},"targetName":{"description":"The target name to associate\n","type":"string"}},"properties":{"authenticationCredentials":{"description":"The credentials to connect with use-self-creds/use-target-creds\n","type":"string"},"autoRotate":{"description":"Whether to automatically rotate every --rotation-interval days, or disable existing automatic rotation [true/false]\n","type":"string"},"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"itemCustomFields":{"additionalProperties":{"type":"string"},"description":"Additional custom fields to associate with the item\n","type":"object"},"keepPrevVersion":{"description":"Whether to keep previous version [true/false]. If not set, use default according to account settings\n","type":"string"},"key":{"description":"The name of a key that is used to encrypt the secret value (if empty, the account default protectionKey key will be used)\n","type":"string"},"maxVersions":{"description":"Set the maximum number of versions, limited by the account settings defaults.\n","type":"string"},"name":{"description":"Secret name\n","type":"string"},"passwordLength":{"description":"The length of the password to be generated\n","type":"string"},"rotatedSecretDockerhubId":{"description":"The ID of this resource.\n","type":"string"},"rotationEventIns":{"description":"How many days before the rotation of the item would you like to be notified\n","items":{"type":"string"},"type":"array"},"rotationHour":{"description":"The Hour of the rotation in UTC\n","type":"number"},"rotationInterval":{"description":"The number of days to wait between every automatic key rotation (1-365)\n","type":"string"},"tags":{"description":"List of the tags attached to this secret. To specify multiple tags use argument multiple times: -t Tag1 -t Tag2\n","items":{"type":"string"},"type":"array"},"targetName":{"description":"The target name to associate\n","type":"string"}},"required":["key","maxVersions","name","rotatedSecretDockerhubId","targetName"],"requiredInputs":["targetName"],"stateInputs":{"description":"Input properties used for looking up and filtering RotatedSecretDockerhub resources.\n","properties":{"authenticationCredentials":{"description":"The credentials to connect with use-self-creds/use-target-creds\n","type":"string"},"autoRotate":{"description":"Whether to automatically rotate every --rotation-interval days, or disable existing automatic rotation [true/false]\n","type":"string"},"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"itemCustomFields":{"additionalProperties":{"type":"string"},"description":"Additional custom fields to associate with the item\n","type":"object"},"keepPrevVersion":{"description":"Whether to keep previous version [true/false]. If not set, use default according to account settings\n","type":"string"},"key":{"description":"The name of a key that is used to encrypt the secret value (if empty, the account default protectionKey key will be used)\n","type":"string"},"maxVersions":{"description":"Set the maximum number of versions, limited by the account settings defaults.\n","type":"string"},"name":{"description":"Secret name\n","type":"string"},"passwordLength":{"description":"The length of the password to be generated\n","type":"string"},"rotatedSecretDockerhubId":{"description":"The ID of this resource.\n","type":"string"},"rotationEventIns":{"description":"How many days before the rotation of the item would you like to be notified\n","items":{"type":"string"},"type":"array"},"rotationHour":{"description":"The Hour of the rotation in UTC\n","type":"number"},"rotationInterval":{"description":"The number of days to wait between every automatic key rotation (1-365)\n","type":"string"},"tags":{"description":"List of the tags attached to this secret. To specify multiple tags use argument multiple times: -t Tag1 -t Tag2\n","items":{"type":"string"},"type":"array"},"targetName":{"description":"The target name to associate\n","type":"string"}},"type":"object"},"type":"object"},"akeyless:index/rotatedSecretGcp:RotatedSecretGcp":{"description":"Gcp rotated secret resource\n","inputProperties":{"authenticationCredentials":{"description":"The credentials to connect with use-self-creds/use-target-creds\n","type":"string"},"autoRotate":{"description":"Whether to automatically rotate every --rotation-interval days, or disable existing automatic rotation [true/false]\n","type":"string"},"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"gcpKey":{"description":"Base64-encoded service account private key text\n","type":"string"},"gcpServiceAccountEmail":{"description":"The email of the gcp service account to rotate\n","type":"string"},"gcpServiceAccountKeyId":{"description":"The key id of the gcp service account to rotate\n","type":"string"},"graceRotation":{"description":"Create a new access key without deleting the old key from AWS/Azure/GCP for backup (relevant only for AWS/Azure/GCP) [true/false]\n","type":"string"},"graceRotationHour":{"description":"The Hour of the grace rotation in UTC\n","type":"number"},"graceRotationInterval":{"description":"The number of days to wait before deleting the old key (must be bigger than rotation-interval)\n","type":"string"},"itemCustomFields":{"additionalProperties":{"type":"string"},"description":"Additional custom fields to associate with the item\n","type":"object"},"keepPrevVersion":{"description":"Whether to keep previous version [true/false]. If not set, use default according to account settings\n","type":"string"},"key":{"description":"The name of a key that is used to encrypt the secret value (if empty, the account default protectionKey key will be used)\n","type":"string"},"maxVersions":{"description":"Set the maximum number of versions, limited by the account settings defaults.\n","type":"string"},"name":{"description":"Rotated secret name\n","type":"string"},"passwordLength":{"description":"The length of the password to be generated\n","type":"string"},"rotatedSecretGcpId":{"description":"The ID of this resource.\n","type":"string"},"rotationEventIns":{"description":"How many days before the rotation of the item would you like to be notified\n","items":{"type":"string"},"type":"array"},"rotationHour":{"description":"The Hour of the rotation in UTC\n","type":"number"},"rotationInterval":{"description":"The number of days to wait between every automatic key rotation (1-365)\n","type":"string"},"rotatorType":{"description":"The rotator type. options: [target/service-account-rotator]\n","type":"string"},"tags":{"description":"Add tags attached to this object\n","items":{"type":"string"},"type":"array"},"targetName":{"description":"Target name\n","type":"string"}},"properties":{"authenticationCredentials":{"description":"The credentials to connect with use-self-creds/use-target-creds\n","type":"string"},"autoRotate":{"description":"Whether to automatically rotate every --rotation-interval days, or disable existing automatic rotation [true/false]\n","type":"string"},"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"gcpKey":{"description":"Base64-encoded service account private key text\n","type":"string"},"gcpServiceAccountEmail":{"description":"The email of the gcp service account to rotate\n","type":"string"},"gcpServiceAccountKeyId":{"description":"The key id of the gcp service account to rotate\n","type":"string"},"graceRotation":{"description":"Create a new access key without deleting the old key from AWS/Azure/GCP for backup (relevant only for AWS/Azure/GCP) [true/false]\n","type":"string"},"graceRotationHour":{"description":"The Hour of the grace rotation in UTC\n","type":"number"},"graceRotationInterval":{"description":"The number of days to wait before deleting the old key (must be bigger than rotation-interval)\n","type":"string"},"itemCustomFields":{"additionalProperties":{"type":"string"},"description":"Additional custom fields to associate with the item\n","type":"object"},"keepPrevVersion":{"description":"Whether to keep previous version [true/false]. If not set, use default according to account settings\n","type":"string"},"key":{"description":"The name of a key that is used to encrypt the secret value (if empty, the account default protectionKey key will be used)\n","type":"string"},"maxVersions":{"description":"Set the maximum number of versions, limited by the account settings defaults.\n","type":"string"},"name":{"description":"Rotated secret name\n","type":"string"},"passwordLength":{"description":"The length of the password to be generated\n","type":"string"},"rotatedSecretGcpId":{"description":"The ID of this resource.\n","type":"string"},"rotationEventIns":{"description":"How many days before the rotation of the item would you like to be notified\n","items":{"type":"string"},"type":"array"},"rotationHour":{"description":"The Hour of the rotation in UTC\n","type":"number"},"rotationInterval":{"description":"The number of days to wait between every automatic key rotation (1-365)\n","type":"string"},"rotatorType":{"description":"The rotator type. options: [target/service-account-rotator]\n","type":"string"},"tags":{"description":"Add tags attached to this object\n","items":{"type":"string"},"type":"array"},"targetName":{"description":"Target name\n","type":"string"}},"required":["gcpKey","key","maxVersions","name","rotatedSecretGcpId","rotatorType","targetName"],"requiredInputs":["rotatorType","targetName"],"stateInputs":{"description":"Input properties used for looking up and filtering RotatedSecretGcp resources.\n","properties":{"authenticationCredentials":{"description":"The credentials to connect with use-self-creds/use-target-creds\n","type":"string"},"autoRotate":{"description":"Whether to automatically rotate every --rotation-interval days, or disable existing automatic rotation [true/false]\n","type":"string"},"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"gcpKey":{"description":"Base64-encoded service account private key text\n","type":"string"},"gcpServiceAccountEmail":{"description":"The email of the gcp service account to rotate\n","type":"string"},"gcpServiceAccountKeyId":{"description":"The key id of the gcp service account to rotate\n","type":"string"},"graceRotation":{"description":"Create a new access key without deleting the old key from AWS/Azure/GCP for backup (relevant only for AWS/Azure/GCP) [true/false]\n","type":"string"},"graceRotationHour":{"description":"The Hour of the grace rotation in UTC\n","type":"number"},"graceRotationInterval":{"description":"The number of days to wait before deleting the old key (must be bigger than rotation-interval)\n","type":"string"},"itemCustomFields":{"additionalProperties":{"type":"string"},"description":"Additional custom fields to associate with the item\n","type":"object"},"keepPrevVersion":{"description":"Whether to keep previous version [true/false]. If not set, use default according to account settings\n","type":"string"},"key":{"description":"The name of a key that is used to encrypt the secret value (if empty, the account default protectionKey key will be used)\n","type":"string"},"maxVersions":{"description":"Set the maximum number of versions, limited by the account settings defaults.\n","type":"string"},"name":{"description":"Rotated secret name\n","type":"string"},"passwordLength":{"description":"The length of the password to be generated\n","type":"string"},"rotatedSecretGcpId":{"description":"The ID of this resource.\n","type":"string"},"rotationEventIns":{"description":"How many days before the rotation of the item would you like to be notified\n","items":{"type":"string"},"type":"array"},"rotationHour":{"description":"The Hour of the rotation in UTC\n","type":"number"},"rotationInterval":{"description":"The number of days to wait between every automatic key rotation (1-365)\n","type":"string"},"rotatorType":{"description":"The rotator type. options: [target/service-account-rotator]\n","type":"string"},"tags":{"description":"Add tags attached to this object\n","items":{"type":"string"},"type":"array"},"targetName":{"description":"Target name\n","type":"string"}},"type":"object"},"type":"object"},"akeyless:index/rotatedSecretHanadb:RotatedSecretHanadb":{"description":"Hanadb rotated secret resource\n","inputProperties":{"authenticationCredentials":{"description":"The credentials to connect with use-self-creds/use-target-creds\n","type":"string"},"autoRotate":{"description":"Whether to automatically rotate every --rotation-interval days, or disable existing automatic rotation [true/false]\n","type":"string"},"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"itemCustomFields":{"additionalProperties":{"type":"string"},"description":"Additional custom fields to associate with the item\n","type":"object"},"keepPrevVersion":{"description":"Whether to keep previous version [true/false]. If not set, use default according to account settings\n","type":"string"},"key":{"description":"The name of a key that is used to encrypt the secret value (if empty, the account default protectionKey key will be used)\n","type":"string"},"maxVersions":{"description":"Set the maximum number of versions, limited by the account settings defaults.\n","type":"string"},"name":{"description":"Rotated secret name\n","type":"string"},"passwordLength":{"description":"The length of the password to be generated\n","type":"string"},"rotatedPassword":{"description":"rotated-username password (relevant only for rotator-type=password)\n","type":"string"},"rotatedSecretHanadbId":{"description":"The ID of this resource.\n","type":"string"},"rotatedUsername":{"description":"username to be rotated, if selected use-self-creds at rotator-creds-type, this username will try to rotate it's own password, if use-target-creds is selected, target credentials will be use to rotate the rotated-password (relevant only for rotator-type=password)\n","type":"string"},"rotationEventIns":{"description":"How many days before the rotation of the item would you like to be notified\n","items":{"type":"string"},"type":"array"},"rotationHour":{"description":"The Hour of the rotation in UTC\n","type":"number"},"rotationInterval":{"description":"The number of days to wait between every automatic key rotation (1-365)\n","type":"string"},"rotatorType":{"description":"The rotator type. options: [target/password]\n","type":"string"},"tags":{"description":"List of the tags attached to this secret. To specify multiple tags use argument multiple times: -t Tag1 -t Tag2\n","items":{"type":"string"},"type":"array"},"targetName":{"description":"Target name\n","type":"string"}},"properties":{"authenticationCredentials":{"description":"The credentials to connect with use-self-creds/use-target-creds\n","type":"string"},"autoRotate":{"description":"Whether to automatically rotate every --rotation-interval days, or disable existing automatic rotation [true/false]\n","type":"string"},"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"itemCustomFields":{"additionalProperties":{"type":"string"},"description":"Additional custom fields to associate with the item\n","type":"object"},"keepPrevVersion":{"description":"Whether to keep previous version [true/false]. If not set, use default according to account settings\n","type":"string"},"key":{"description":"The name of a key that is used to encrypt the secret value (if empty, the account default protectionKey key will be used)\n","type":"string"},"maxVersions":{"description":"Set the maximum number of versions, limited by the account settings defaults.\n","type":"string"},"name":{"description":"Rotated secret name\n","type":"string"},"passwordLength":{"description":"The length of the password to be generated\n","type":"string"},"rotatedPassword":{"description":"rotated-username password (relevant only for rotator-type=password)\n","type":"string"},"rotatedSecretHanadbId":{"description":"The ID of this resource.\n","type":"string"},"rotatedUsername":{"description":"username to be rotated, if selected use-self-creds at rotator-creds-type, this username will try to rotate it's own password, if use-target-creds is selected, target credentials will be use to rotate the rotated-password (relevant only for rotator-type=password)\n","type":"string"},"rotationEventIns":{"description":"How many days before the rotation of the item would you like to be notified\n","items":{"type":"string"},"type":"array"},"rotationHour":{"description":"The Hour of the rotation in UTC\n","type":"number"},"rotationInterval":{"description":"The number of days to wait between every automatic key rotation (1-365)\n","type":"string"},"rotatorType":{"description":"The rotator type. options: [target/password]\n","type":"string"},"tags":{"description":"List of the tags attached to this secret. To specify multiple tags use argument multiple times: -t Tag1 -t Tag2\n","items":{"type":"string"},"type":"array"},"targetName":{"description":"Target name\n","type":"string"}},"required":["key","maxVersions","name","rotatedPassword","rotatedSecretHanadbId","rotatedUsername","rotatorType","targetName"],"requiredInputs":["rotatorType","targetName"],"stateInputs":{"description":"Input properties used for looking up and filtering RotatedSecretHanadb resources.\n","properties":{"authenticationCredentials":{"description":"The credentials to connect with use-self-creds/use-target-creds\n","type":"string"},"autoRotate":{"description":"Whether to automatically rotate every --rotation-interval days, or disable existing automatic rotation [true/false]\n","type":"string"},"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"itemCustomFields":{"additionalProperties":{"type":"string"},"description":"Additional custom fields to associate with the item\n","type":"object"},"keepPrevVersion":{"description":"Whether to keep previous version [true/false]. If not set, use default according to account settings\n","type":"string"},"key":{"description":"The name of a key that is used to encrypt the secret value (if empty, the account default protectionKey key will be used)\n","type":"string"},"maxVersions":{"description":"Set the maximum number of versions, limited by the account settings defaults.\n","type":"string"},"name":{"description":"Rotated secret name\n","type":"string"},"passwordLength":{"description":"The length of the password to be generated\n","type":"string"},"rotatedPassword":{"description":"rotated-username password (relevant only for rotator-type=password)\n","type":"string"},"rotatedSecretHanadbId":{"description":"The ID of this resource.\n","type":"string"},"rotatedUsername":{"description":"username to be rotated, if selected use-self-creds at rotator-creds-type, this username will try to rotate it's own password, if use-target-creds is selected, target credentials will be use to rotate the rotated-password (relevant only for rotator-type=password)\n","type":"string"},"rotationEventIns":{"description":"How many days before the rotation of the item would you like to be notified\n","items":{"type":"string"},"type":"array"},"rotationHour":{"description":"The Hour of the rotation in UTC\n","type":"number"},"rotationInterval":{"description":"The number of days to wait between every automatic key rotation (1-365)\n","type":"string"},"rotatorType":{"description":"The rotator type. options: [target/password]\n","type":"string"},"tags":{"description":"List of the tags attached to this secret. To specify multiple tags use argument multiple times: -t Tag1 -t Tag2\n","items":{"type":"string"},"type":"array"},"targetName":{"description":"Target name\n","type":"string"}},"type":"object"},"type":"object"},"akeyless:index/rotatedSecretLdap:RotatedSecretLdap":{"description":"Ldap rotated secret resource\n","inputProperties":{"authenticationCredentials":{"description":"The credentials to connect with use-self-creds/use-target-creds\n","type":"string"},"autoRotate":{"description":"Whether to automatically rotate every --rotation-interval days, or disable existing automatic rotation [true/false]\n","type":"string"},"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"hostProvider":{"description":"Host provider type [explicit/target], Default Host provider is explicit, Relevant only for Secure Remote Access of ssh cert issuer, ldap rotated secret and ldap dynamic secret\n","type":"string"},"itemCustomFields":{"additionalProperties":{"type":"string"},"description":"Additional custom fields to associate with the item\n","type":"object"},"keepPrevVersion":{"description":"Whether to keep previous version [true/false]. If not set, use default according to account settings\n","type":"string"},"key":{"description":"The name of a key that is used to encrypt the secret value (if empty, the account default protectionKey key will be used)\n","type":"string"},"maxVersions":{"description":"Set the maximum number of versions, limited by the account settings defaults.\n","type":"string"},"name":{"description":"Rotated secret name\n","type":"string"},"passwordLength":{"description":"The length of the password to be generated\n","type":"string"},"rotateAfterDisconnect":{"description":"Rotate the value of the secret after SRA session ends [true/false]\n","type":"string"},"rotatedPassword":{"description":"rotated-username password (relevant only for rotator-type=ldap)\n","type":"string"},"rotatedSecretLdapId":{"description":"The ID of this resource.\n","type":"string"},"rotatedUsername":{"description":"username to be rotated, if selected use-self-creds at rotator-creds-type, this username will try to rotate it's own password, if use-target-creds is selected, target credentials will be use to rotate the rotated-password (relevant only for rotator-type=ldap)\n","type":"string"},"rotationEventIns":{"description":"How many days before the rotation of the item would you like to be notified\n","items":{"type":"string"},"type":"array"},"rotationHour":{"description":"The Hour of the rotation in UTC\n","type":"number"},"rotationInterval":{"description":"The number of days to wait between every automatic key rotation (1-365)\n","type":"string"},"rotatorType":{"description":"The rotator type. options: [target/ldap]\n","type":"string"},"secureAccessCertificateIssuer":{"description":"Path to the SSH Certificate Issuer for your Akeyless Secure Access\n","type":"string"},"secureAccessEnable":{"description":"Enable/Disable secure remote access [true/false]\n","type":"string"},"secureAccessHosts":{"description":"Target servers for connections (In case of Linked Target association, host(s) will inherit Linked Target hosts - Relevant only for Dynamic Secrets/producers)\n","items":{"type":"string"},"type":"array"},"secureAccessRdpDomain":{"description":"Default domain name server. i.e. microsoft.com\n","type":"string"},"secureAccessUrl":{"description":"Destination URL to inject secrets\n","type":"string"},"secureAccessWeb":{"description":"Enable Web Secure Remote Access\n","type":"boolean"},"secureAccessWebBrowsing":{"description":"Secure browser via Akeyless's Secure Remote Access (SRA)\n","type":"boolean"},"secureAccessWebProxy":{"description":"Web-Proxy via Akeyless's Secure Remote Access (SRA)\n","type":"boolean"},"tags":{"description":"List of the tags attached to this secret. To specify multiple tags use argument multiple times: -t Tag1 -t Tag2\n","items":{"type":"string"},"type":"array"},"targetName":{"description":"Target name\n","type":"string"},"targets":{"description":"A list of linked targets to be associated, Relevant only for Secure Remote Access for ssh cert issuer, ldap rotated secret and ldap dynamic secret, To specify multiple targets use argument multiple times\n","items":{"type":"string"},"type":"array"},"userAttribute":{"description":"LDAP User Attribute, Default value \"cn\"\n","type":"string"},"userDn":{"description":"Base DN to Perform User Search\n","type":"string"}},"properties":{"authenticationCredentials":{"description":"The credentials to connect with use-self-creds/use-target-creds\n","type":"string"},"autoRotate":{"description":"Whether to automatically rotate every --rotation-interval days, or disable existing automatic rotation [true/false]\n","type":"string"},"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"hostProvider":{"description":"Host provider type [explicit/target], Default Host provider is explicit, Relevant only for Secure Remote Access of ssh cert issuer, ldap rotated secret and ldap dynamic secret\n","type":"string"},"itemCustomFields":{"additionalProperties":{"type":"string"},"description":"Additional custom fields to associate with the item\n","type":"object"},"keepPrevVersion":{"description":"Whether to keep previous version [true/false]. If not set, use default according to account settings\n","type":"string"},"key":{"description":"The name of a key that is used to encrypt the secret value (if empty, the account default protectionKey key will be used)\n","type":"string"},"maxVersions":{"description":"Set the maximum number of versions, limited by the account settings defaults.\n","type":"string"},"name":{"description":"Rotated secret name\n","type":"string"},"passwordLength":{"description":"The length of the password to be generated\n","type":"string"},"rotateAfterDisconnect":{"description":"Rotate the value of the secret after SRA session ends [true/false]\n","type":"string"},"rotatedPassword":{"description":"rotated-username password (relevant only for rotator-type=ldap)\n","type":"string"},"rotatedSecretLdapId":{"description":"The ID of this resource.\n","type":"string"},"rotatedUsername":{"description":"username to be rotated, if selected use-self-creds at rotator-creds-type, this username will try to rotate it's own password, if use-target-creds is selected, target credentials will be use to rotate the rotated-password (relevant only for rotator-type=ldap)\n","type":"string"},"rotationEventIns":{"description":"How many days before the rotation of the item would you like to be notified\n","items":{"type":"string"},"type":"array"},"rotationHour":{"description":"The Hour of the rotation in UTC\n","type":"number"},"rotationInterval":{"description":"The number of days to wait between every automatic key rotation (1-365)\n","type":"string"},"rotatorType":{"description":"The rotator type. options: [target/ldap]\n","type":"string"},"secureAccessCertificateIssuer":{"description":"Path to the SSH Certificate Issuer for your Akeyless Secure Access\n","type":"string"},"secureAccessEnable":{"description":"Enable/Disable secure remote access [true/false]\n","type":"string"},"secureAccessHosts":{"description":"Target servers for connections (In case of Linked Target association, host(s) will inherit Linked Target hosts - Relevant only for Dynamic Secrets/producers)\n","items":{"type":"string"},"type":"array"},"secureAccessRdpDomain":{"description":"Default domain name server. i.e. microsoft.com\n","type":"string"},"secureAccessUrl":{"description":"Destination URL to inject secrets\n","type":"string"},"secureAccessWeb":{"description":"Enable Web Secure Remote Access\n","type":"boolean"},"secureAccessWebBrowsing":{"description":"Secure browser via Akeyless's Secure Remote Access (SRA)\n","type":"boolean"},"secureAccessWebProxy":{"description":"Web-Proxy via Akeyless's Secure Remote Access (SRA)\n","type":"boolean"},"tags":{"description":"List of the tags attached to this secret. To specify multiple tags use argument multiple times: -t Tag1 -t Tag2\n","items":{"type":"string"},"type":"array"},"targetName":{"description":"Target name\n","type":"string"},"targets":{"description":"A list of linked targets to be associated, Relevant only for Secure Remote Access for ssh cert issuer, ldap rotated secret and ldap dynamic secret, To specify multiple targets use argument multiple times\n","items":{"type":"string"},"type":"array"},"userAttribute":{"description":"LDAP User Attribute, Default value \"cn\"\n","type":"string"},"userDn":{"description":"Base DN to Perform User Search\n","type":"string"}},"required":["key","maxVersions","name","rotatedPassword","rotatedSecretLdapId","rotatedUsername","rotatorType","targetName","userAttribute","userDn"],"requiredInputs":["rotatorType","targetName"],"stateInputs":{"description":"Input properties used for looking up and filtering RotatedSecretLdap resources.\n","properties":{"authenticationCredentials":{"description":"The credentials to connect with use-self-creds/use-target-creds\n","type":"string"},"autoRotate":{"description":"Whether to automatically rotate every --rotation-interval days, or disable existing automatic rotation [true/false]\n","type":"string"},"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"hostProvider":{"description":"Host provider type [explicit/target], Default Host provider is explicit, Relevant only for Secure Remote Access of ssh cert issuer, ldap rotated secret and ldap dynamic secret\n","type":"string"},"itemCustomFields":{"additionalProperties":{"type":"string"},"description":"Additional custom fields to associate with the item\n","type":"object"},"keepPrevVersion":{"description":"Whether to keep previous version [true/false]. If not set, use default according to account settings\n","type":"string"},"key":{"description":"The name of a key that is used to encrypt the secret value (if empty, the account default protectionKey key will be used)\n","type":"string"},"maxVersions":{"description":"Set the maximum number of versions, limited by the account settings defaults.\n","type":"string"},"name":{"description":"Rotated secret name\n","type":"string"},"passwordLength":{"description":"The length of the password to be generated\n","type":"string"},"rotateAfterDisconnect":{"description":"Rotate the value of the secret after SRA session ends [true/false]\n","type":"string"},"rotatedPassword":{"description":"rotated-username password (relevant only for rotator-type=ldap)\n","type":"string"},"rotatedSecretLdapId":{"description":"The ID of this resource.\n","type":"string"},"rotatedUsername":{"description":"username to be rotated, if selected use-self-creds at rotator-creds-type, this username will try to rotate it's own password, if use-target-creds is selected, target credentials will be use to rotate the rotated-password (relevant only for rotator-type=ldap)\n","type":"string"},"rotationEventIns":{"description":"How many days before the rotation of the item would you like to be notified\n","items":{"type":"string"},"type":"array"},"rotationHour":{"description":"The Hour of the rotation in UTC\n","type":"number"},"rotationInterval":{"description":"The number of days to wait between every automatic key rotation (1-365)\n","type":"string"},"rotatorType":{"description":"The rotator type. options: [target/ldap]\n","type":"string"},"secureAccessCertificateIssuer":{"description":"Path to the SSH Certificate Issuer for your Akeyless Secure Access\n","type":"string"},"secureAccessEnable":{"description":"Enable/Disable secure remote access [true/false]\n","type":"string"},"secureAccessHosts":{"description":"Target servers for connections (In case of Linked Target association, host(s) will inherit Linked Target hosts - Relevant only for Dynamic Secrets/producers)\n","items":{"type":"string"},"type":"array"},"secureAccessRdpDomain":{"description":"Default domain name server. i.e. microsoft.com\n","type":"string"},"secureAccessUrl":{"description":"Destination URL to inject secrets\n","type":"string"},"secureAccessWeb":{"description":"Enable Web Secure Remote Access\n","type":"boolean"},"secureAccessWebBrowsing":{"description":"Secure browser via Akeyless's Secure Remote Access (SRA)\n","type":"boolean"},"secureAccessWebProxy":{"description":"Web-Proxy via Akeyless's Secure Remote Access (SRA)\n","type":"boolean"},"tags":{"description":"List of the tags attached to this secret. To specify multiple tags use argument multiple times: -t Tag1 -t Tag2\n","items":{"type":"string"},"type":"array"},"targetName":{"description":"Target name\n","type":"string"},"targets":{"description":"A list of linked targets to be associated, Relevant only for Secure Remote Access for ssh cert issuer, ldap rotated secret and ldap dynamic secret, To specify multiple targets use argument multiple times\n","items":{"type":"string"},"type":"array"},"userAttribute":{"description":"LDAP User Attribute, Default value \"cn\"\n","type":"string"},"userDn":{"description":"Base DN to Perform User Search\n","type":"string"}},"type":"object"},"type":"object"},"akeyless:index/rotatedSecretMongodb:RotatedSecretMongodb":{"description":"Mongodb rotated secret resource\n","inputProperties":{"authenticationCredentials":{"description":"The credentials to connect with use-self-creds/use-target-creds\n","type":"string"},"autoRotate":{"description":"Whether to automatically rotate every --rotation-interval days, or disable existing automatic rotation [true/false]\n","type":"string"},"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"itemCustomFields":{"additionalProperties":{"type":"string"},"description":"Additional custom fields to associate with the item\n","type":"object"},"keepPrevVersion":{"description":"Whether to keep previous version [true/false]. If not set, use default according to account settings\n","type":"string"},"key":{"description":"The name of a key that is used to encrypt the secret value (if empty, the account default protectionKey key will be used)\n","type":"string"},"maxVersions":{"description":"Set the maximum number of versions, limited by the account settings defaults.\n","type":"string"},"name":{"description":"Rotated secret name\n","type":"string"},"passwordLength":{"description":"The length of the password to be generated\n","type":"string"},"rotateAfterDisconnect":{"description":"Rotate the value of the secret after SRA session ends [true/false]\n","type":"string"},"rotatedPassword":{"description":"rotated-username password (relevant only for rotator-type=password)\n","type":"string"},"rotatedSecretMongodbId":{"description":"The ID of this resource.\n","type":"string"},"rotatedUsername":{"description":"username to be rotated, if selected use-self-creds at rotator-creds-type, this username will try to rotate it's own password, if use-target-creds is selected, target credentials will be use to rotate the rotated-password (relevant only for rotator-type=password)\n","type":"string"},"rotationEventIns":{"description":"How many days before the rotation of the item would you like to be notified\n","items":{"type":"string"},"type":"array"},"rotationHour":{"description":"The Hour of the rotation in UTC\n","type":"number"},"rotationInterval":{"description":"The number of days to wait between every automatic key rotation (1-365)\n","type":"string"},"rotatorType":{"description":"The rotator type. options: [target/password]\n","type":"string"},"secureAccessCertificateIssuer":{"description":"Path to the SSH Certificate Issuer for your Akeyless Secure Access\n","type":"string"},"secureAccessDbName":{"description":"The DB name (relevant only for DB Dynamic-Secret)\n","type":"string"},"secureAccessEnable":{"description":"Enable/Disable secure remote access [true/false]\n","type":"string"},"secureAccessHosts":{"description":"Target servers for connections (In case of Linked Target association, host(s) will inherit Linked Target hosts - Relevant only for Dynamic Secrets/producers)\n","items":{"type":"string"},"type":"array"},"secureAccessWeb":{"description":"Enable Web Secure Remote Access\n","type":"boolean"},"tags":{"description":"Add tags attached to this object\n","items":{"type":"string"},"type":"array"},"targetName":{"description":"Target name\n","type":"string"}},"properties":{"authenticationCredentials":{"description":"The credentials to connect with use-self-creds/use-target-creds\n","type":"string"},"autoRotate":{"description":"Whether to automatically rotate every --rotation-interval days, or disable existing automatic rotation [true/false]\n","type":"string"},"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"itemCustomFields":{"additionalProperties":{"type":"string"},"description":"Additional custom fields to associate with the item\n","type":"object"},"keepPrevVersion":{"description":"Whether to keep previous version [true/false]. If not set, use default according to account settings\n","type":"string"},"key":{"description":"The name of a key that is used to encrypt the secret value (if empty, the account default protectionKey key will be used)\n","type":"string"},"maxVersions":{"description":"Set the maximum number of versions, limited by the account settings defaults.\n","type":"string"},"name":{"description":"Rotated secret name\n","type":"string"},"passwordLength":{"description":"The length of the password to be generated\n","type":"string"},"rotateAfterDisconnect":{"description":"Rotate the value of the secret after SRA session ends [true/false]\n","type":"string"},"rotatedPassword":{"description":"rotated-username password (relevant only for rotator-type=password)\n","type":"string"},"rotatedSecretMongodbId":{"description":"The ID of this resource.\n","type":"string"},"rotatedUsername":{"description":"username to be rotated, if selected use-self-creds at rotator-creds-type, this username will try to rotate it's own password, if use-target-creds is selected, target credentials will be use to rotate the rotated-password (relevant only for rotator-type=password)\n","type":"string"},"rotationEventIns":{"description":"How many days before the rotation of the item would you like to be notified\n","items":{"type":"string"},"type":"array"},"rotationHour":{"description":"The Hour of the rotation in UTC\n","type":"number"},"rotationInterval":{"description":"The number of days to wait between every automatic key rotation (1-365)\n","type":"string"},"rotatorType":{"description":"The rotator type. options: [target/password]\n","type":"string"},"secureAccessCertificateIssuer":{"description":"Path to the SSH Certificate Issuer for your Akeyless Secure Access\n","type":"string"},"secureAccessDbName":{"description":"The DB name (relevant only for DB Dynamic-Secret)\n","type":"string"},"secureAccessEnable":{"description":"Enable/Disable secure remote access [true/false]\n","type":"string"},"secureAccessHosts":{"description":"Target servers for connections (In case of Linked Target association, host(s) will inherit Linked Target hosts - Relevant only for Dynamic Secrets/producers)\n","items":{"type":"string"},"type":"array"},"secureAccessWeb":{"description":"Enable Web Secure Remote Access\n","type":"boolean"},"tags":{"description":"Add tags attached to this object\n","items":{"type":"string"},"type":"array"},"targetName":{"description":"Target name\n","type":"string"}},"required":["key","maxVersions","name","rotatedPassword","rotatedSecretMongodbId","rotatedUsername","rotatorType","targetName"],"requiredInputs":["rotatorType","targetName"],"stateInputs":{"description":"Input properties used for looking up and filtering RotatedSecretMongodb resources.\n","properties":{"authenticationCredentials":{"description":"The credentials to connect with use-self-creds/use-target-creds\n","type":"string"},"autoRotate":{"description":"Whether to automatically rotate every --rotation-interval days, or disable existing automatic rotation [true/false]\n","type":"string"},"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"itemCustomFields":{"additionalProperties":{"type":"string"},"description":"Additional custom fields to associate with the item\n","type":"object"},"keepPrevVersion":{"description":"Whether to keep previous version [true/false]. If not set, use default according to account settings\n","type":"string"},"key":{"description":"The name of a key that is used to encrypt the secret value (if empty, the account default protectionKey key will be used)\n","type":"string"},"maxVersions":{"description":"Set the maximum number of versions, limited by the account settings defaults.\n","type":"string"},"name":{"description":"Rotated secret name\n","type":"string"},"passwordLength":{"description":"The length of the password to be generated\n","type":"string"},"rotateAfterDisconnect":{"description":"Rotate the value of the secret after SRA session ends [true/false]\n","type":"string"},"rotatedPassword":{"description":"rotated-username password (relevant only for rotator-type=password)\n","type":"string"},"rotatedSecretMongodbId":{"description":"The ID of this resource.\n","type":"string"},"rotatedUsername":{"description":"username to be rotated, if selected use-self-creds at rotator-creds-type, this username will try to rotate it's own password, if use-target-creds is selected, target credentials will be use to rotate the rotated-password (relevant only for rotator-type=password)\n","type":"string"},"rotationEventIns":{"description":"How many days before the rotation of the item would you like to be notified\n","items":{"type":"string"},"type":"array"},"rotationHour":{"description":"The Hour of the rotation in UTC\n","type":"number"},"rotationInterval":{"description":"The number of days to wait between every automatic key rotation (1-365)\n","type":"string"},"rotatorType":{"description":"The rotator type. options: [target/password]\n","type":"string"},"secureAccessCertificateIssuer":{"description":"Path to the SSH Certificate Issuer for your Akeyless Secure Access\n","type":"string"},"secureAccessDbName":{"description":"The DB name (relevant only for DB Dynamic-Secret)\n","type":"string"},"secureAccessEnable":{"description":"Enable/Disable secure remote access [true/false]\n","type":"string"},"secureAccessHosts":{"description":"Target servers for connections (In case of Linked Target association, host(s) will inherit Linked Target hosts - Relevant only for Dynamic Secrets/producers)\n","items":{"type":"string"},"type":"array"},"secureAccessWeb":{"description":"Enable Web Secure Remote Access\n","type":"boolean"},"tags":{"description":"Add tags attached to this object\n","items":{"type":"string"},"type":"array"},"targetName":{"description":"Target name\n","type":"string"}},"type":"object"},"type":"object"},"akeyless:index/rotatedSecretMssql:RotatedSecretMssql":{"description":"Mssql rotated secret resource\n","inputProperties":{"authenticationCredentials":{"description":"The credentials to connect with use-self-creds/use-target-creds\n","type":"string"},"autoRotate":{"description":"Whether to automatically rotate every --rotation-interval days, or disable existing automatic rotation\n","type":"string"},"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"itemCustomFields":{"additionalProperties":{"type":"string"},"description":"Additional custom fields to associate with the item\n","type":"object"},"keepPrevVersion":{"description":"Whether to keep previous version [true/false]. If not set, use default according to account settings\n","type":"string"},"key":{"description":"The name of a key that is used to encrypt the secret value (if empty, the account default protectionKey key will be used)\n","type":"string"},"maxVersions":{"description":"Set the maximum number of versions, limited by the account settings defaults\n","type":"string"},"name":{"description":"Secret name\n","type":"string"},"passwordLength":{"description":"The length of the password to be generated\n","type":"string"},"rotateAfterDisconnect":{"description":"Rotate the value of the secret after SRA session ends [true/false]\n","type":"string"},"rotatedPassword":{"description":"rotated-username password (relevant only for rotator-type=password)\n","type":"string"},"rotatedSecretMssqlId":{"description":"The ID of this resource.\n","type":"string"},"rotatedUsername":{"description":"username to be rotated, if selected use-self-creds at rotator-creds-type, this username will try to rotate it's own password, if use-target-creds is selected, target credentials will be use to rotate the rotated-password (relevant only for rotator-type=password)\n","type":"string"},"rotationEventIns":{"description":"How many days before the rotation of the item would you like to be notified\n","items":{"type":"string"},"type":"array"},"rotationHour":{"description":"The Hour of the rotation in UTC\n","type":"number"},"rotationInterval":{"description":"The number of days to wait between every automatic rotation (1-365),custom rotator interval will be set in minutes\n","type":"string"},"rotatorType":{"description":"The rotator type [target/password]\n","type":"string"},"secureAccessCertificateIssuer":{"description":"Path to the SSH Certificate Issuer for your Akeyless Secure Access\n","type":"string"},"secureAccessDbName":{"description":"The DB name (relevant only for DB Dynamic-Secret)\n","type":"string"},"secureAccessDbSchema":{"description":"The DB schema\n","type":"string"},"secureAccessEnable":{"description":"Enable/Disable secure remote access [true/false]\n","type":"string"},"secureAccessHosts":{"description":"Target servers for connections (In case of Linked Target association, host(s) will inherit Linked Target hosts)\n","items":{"type":"string"},"type":"array"},"secureAccessWeb":{"description":"Enable Web Secure Remote Access\n","type":"boolean"},"tags":{"description":"List of the tags attached to this secret. To specify multiple tags use argument multiple times: -t Tag1 -t Tag2\n","items":{"type":"string"},"type":"array"},"targetName":{"description":"The target name to associate\n","type":"string"}},"properties":{"authenticationCredentials":{"description":"The credentials to connect with use-self-creds/use-target-creds\n","type":"string"},"autoRotate":{"description":"Whether to automatically rotate every --rotation-interval days, or disable existing automatic rotation\n","type":"string"},"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"itemCustomFields":{"additionalProperties":{"type":"string"},"description":"Additional custom fields to associate with the item\n","type":"object"},"keepPrevVersion":{"description":"Whether to keep previous version [true/false]. If not set, use default according to account settings\n","type":"string"},"key":{"description":"The name of a key that is used to encrypt the secret value (if empty, the account default protectionKey key will be used)\n","type":"string"},"maxVersions":{"description":"Set the maximum number of versions, limited by the account settings defaults\n","type":"string"},"name":{"description":"Secret name\n","type":"string"},"passwordLength":{"description":"The length of the password to be generated\n","type":"string"},"rotateAfterDisconnect":{"description":"Rotate the value of the secret after SRA session ends [true/false]\n","type":"string"},"rotatedPassword":{"description":"rotated-username password (relevant only for rotator-type=password)\n","type":"string"},"rotatedSecretMssqlId":{"description":"The ID of this resource.\n","type":"string"},"rotatedUsername":{"description":"username to be rotated, if selected use-self-creds at rotator-creds-type, this username will try to rotate it's own password, if use-target-creds is selected, target credentials will be use to rotate the rotated-password (relevant only for rotator-type=password)\n","type":"string"},"rotationEventIns":{"description":"How many days before the rotation of the item would you like to be notified\n","items":{"type":"string"},"type":"array"},"rotationHour":{"description":"The Hour of the rotation in UTC\n","type":"number"},"rotationInterval":{"description":"The number of days to wait between every automatic rotation (1-365),custom rotator interval will be set in minutes\n","type":"string"},"rotatorType":{"description":"The rotator type [target/password]\n","type":"string"},"secureAccessCertificateIssuer":{"description":"Path to the SSH Certificate Issuer for your Akeyless Secure Access\n","type":"string"},"secureAccessDbName":{"description":"The DB name (relevant only for DB Dynamic-Secret)\n","type":"string"},"secureAccessDbSchema":{"description":"The DB schema\n","type":"string"},"secureAccessEnable":{"description":"Enable/Disable secure remote access [true/false]\n","type":"string"},"secureAccessHosts":{"description":"Target servers for connections (In case of Linked Target association, host(s) will inherit Linked Target hosts)\n","items":{"type":"string"},"type":"array"},"secureAccessWeb":{"description":"Enable Web Secure Remote Access\n","type":"boolean"},"tags":{"description":"List of the tags attached to this secret. To specify multiple tags use argument multiple times: -t Tag1 -t Tag2\n","items":{"type":"string"},"type":"array"},"targetName":{"description":"The target name to associate\n","type":"string"}},"required":["key","maxVersions","name","rotatedPassword","rotatedSecretMssqlId","rotatedUsername","rotatorType","targetName"],"requiredInputs":["rotatorType","targetName"],"stateInputs":{"description":"Input properties used for looking up and filtering RotatedSecretMssql resources.\n","properties":{"authenticationCredentials":{"description":"The credentials to connect with use-self-creds/use-target-creds\n","type":"string"},"autoRotate":{"description":"Whether to automatically rotate every --rotation-interval days, or disable existing automatic rotation\n","type":"string"},"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"itemCustomFields":{"additionalProperties":{"type":"string"},"description":"Additional custom fields to associate with the item\n","type":"object"},"keepPrevVersion":{"description":"Whether to keep previous version [true/false]. If not set, use default according to account settings\n","type":"string"},"key":{"description":"The name of a key that is used to encrypt the secret value (if empty, the account default protectionKey key will be used)\n","type":"string"},"maxVersions":{"description":"Set the maximum number of versions, limited by the account settings defaults\n","type":"string"},"name":{"description":"Secret name\n","type":"string"},"passwordLength":{"description":"The length of the password to be generated\n","type":"string"},"rotateAfterDisconnect":{"description":"Rotate the value of the secret after SRA session ends [true/false]\n","type":"string"},"rotatedPassword":{"description":"rotated-username password (relevant only for rotator-type=password)\n","type":"string"},"rotatedSecretMssqlId":{"description":"The ID of this resource.\n","type":"string"},"rotatedUsername":{"description":"username to be rotated, if selected use-self-creds at rotator-creds-type, this username will try to rotate it's own password, if use-target-creds is selected, target credentials will be use to rotate the rotated-password (relevant only for rotator-type=password)\n","type":"string"},"rotationEventIns":{"description":"How many days before the rotation of the item would you like to be notified\n","items":{"type":"string"},"type":"array"},"rotationHour":{"description":"The Hour of the rotation in UTC\n","type":"number"},"rotationInterval":{"description":"The number of days to wait between every automatic rotation (1-365),custom rotator interval will be set in minutes\n","type":"string"},"rotatorType":{"description":"The rotator type [target/password]\n","type":"string"},"secureAccessCertificateIssuer":{"description":"Path to the SSH Certificate Issuer for your Akeyless Secure Access\n","type":"string"},"secureAccessDbName":{"description":"The DB name (relevant only for DB Dynamic-Secret)\n","type":"string"},"secureAccessDbSchema":{"description":"The DB schema\n","type":"string"},"secureAccessEnable":{"description":"Enable/Disable secure remote access [true/false]\n","type":"string"},"secureAccessHosts":{"description":"Target servers for connections (In case of Linked Target association, host(s) will inherit Linked Target hosts)\n","items":{"type":"string"},"type":"array"},"secureAccessWeb":{"description":"Enable Web Secure Remote Access\n","type":"boolean"},"tags":{"description":"List of the tags attached to this secret. To specify multiple tags use argument multiple times: -t Tag1 -t Tag2\n","items":{"type":"string"},"type":"array"},"targetName":{"description":"The target name to associate\n","type":"string"}},"type":"object"},"type":"object"},"akeyless:index/rotatedSecretMysql:RotatedSecretMysql":{"description":"Mysql rotated secret resource\n","inputProperties":{"authenticationCredentials":{"description":"The credentials to connect with [use-self-creds/use-target-creds]\n","type":"string"},"autoRotate":{"description":"Whether to automatically rotate every<span pulumi-lang-nodejs=\" rotationInterval \" pulumi-lang-dotnet=\" RotationInterval \" pulumi-lang-go=\" rotationInterval \" pulumi-lang-python=\" rotation_interval \" pulumi-lang-yaml=\" rotationInterval \" pulumi-lang-java=\" rotationInterval \"> rotation_interval </span>days, or disable existing automatic rotation\n","type":"string"},"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"itemCustomFields":{"additionalProperties":{"type":"string"},"description":"Additional custom fields to associate with the item\n","type":"object"},"keepPrevVersion":{"description":"Whether to keep previous version [true/false]. If not set, use default according to account settings\n","type":"string"},"key":{"description":"The name of a key that is used to encrypt the secret value (if empty, the account default protectionKey key will be used)\n","type":"string"},"maxVersions":{"description":"Set the maximum number of versions, limited by the account settings defaults\n","type":"string"},"name":{"description":"Secret name\n","type":"string"},"passwordLength":{"description":"The length of the password to be generated\n","type":"string"},"rotateAfterDisconnect":{"description":"Rotate the value of the secret after SRA session ends [true/false]\n","type":"string"},"rotatedPassword":{"description":"rotated-username password (relevant only for rotator-type=password)\n","type":"string"},"rotatedSecretMysqlId":{"description":"The ID of this resource.\n","type":"string"},"rotatedUsername":{"description":"username to be rotated, if selected use-self-creds at rotator-creds-type, this username will try to rotate it's own password, if use-target-creds is selected, target credentials will be use to rotate the rotated-password (relevant only for rotator-type=password)\n","type":"string"},"rotationEventIns":{"description":"How many days before the rotation of the item would you like to be notified\n","items":{"type":"string"},"type":"array"},"rotationHour":{"description":"The Hour of the rotation in UTC\n","type":"number"},"rotationInterval":{"description":"The number of days to wait between every automatic rotation (1-365),custom rotator interval will be set in minutes\n","type":"string"},"rotatorType":{"description":"The rotator type [target/password]\n","type":"string"},"secureAccessCertificateIssuer":{"description":"Path to the SSH Certificate Issuer for your Akeyless Secure Access\n","type":"string"},"secureAccessDbName":{"description":"The DB name (relevant only for DB Dynamic-Secret)\n","type":"string"},"secureAccessEnable":{"description":"Enable/Disable secure remote access [true/false]\n","type":"string"},"secureAccessHosts":{"description":"Target servers for connections (In case of Linked Target association, host(s) will inherit Linked Target hosts - Relevant only for Dynamic Secrets/producers)\n","items":{"type":"string"},"type":"array"},"secureAccessWeb":{"description":"Enable Web Secure Remote Access\n","type":"boolean"},"tags":{"description":"List of the tags attached to this secret. To specify multiple tags use argument multiple times: -t Tag1 -t Tag2\n","items":{"type":"string"},"type":"array"},"targetName":{"description":"The target name to associate\n","type":"string"}},"properties":{"authenticationCredentials":{"description":"The credentials to connect with [use-self-creds/use-target-creds]\n","type":"string"},"autoRotate":{"description":"Whether to automatically rotate every<span pulumi-lang-nodejs=\" rotationInterval \" pulumi-lang-dotnet=\" RotationInterval \" pulumi-lang-go=\" rotationInterval \" pulumi-lang-python=\" rotation_interval \" pulumi-lang-yaml=\" rotationInterval \" pulumi-lang-java=\" rotationInterval \"> rotation_interval </span>days, or disable existing automatic rotation\n","type":"string"},"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"itemCustomFields":{"additionalProperties":{"type":"string"},"description":"Additional custom fields to associate with the item\n","type":"object"},"keepPrevVersion":{"description":"Whether to keep previous version [true/false]. If not set, use default according to account settings\n","type":"string"},"key":{"description":"The name of a key that is used to encrypt the secret value (if empty, the account default protectionKey key will be used)\n","type":"string"},"maxVersions":{"description":"Set the maximum number of versions, limited by the account settings defaults\n","type":"string"},"name":{"description":"Secret name\n","type":"string"},"passwordLength":{"description":"The length of the password to be generated\n","type":"string"},"rotateAfterDisconnect":{"description":"Rotate the value of the secret after SRA session ends [true/false]\n","type":"string"},"rotatedPassword":{"description":"rotated-username password (relevant only for rotator-type=password)\n","type":"string"},"rotatedSecretMysqlId":{"description":"The ID of this resource.\n","type":"string"},"rotatedUsername":{"description":"username to be rotated, if selected use-self-creds at rotator-creds-type, this username will try to rotate it's own password, if use-target-creds is selected, target credentials will be use to rotate the rotated-password (relevant only for rotator-type=password)\n","type":"string"},"rotationEventIns":{"description":"How many days before the rotation of the item would you like to be notified\n","items":{"type":"string"},"type":"array"},"rotationHour":{"description":"The Hour of the rotation in UTC\n","type":"number"},"rotationInterval":{"description":"The number of days to wait between every automatic rotation (1-365),custom rotator interval will be set in minutes\n","type":"string"},"rotatorType":{"description":"The rotator type [target/password]\n","type":"string"},"secureAccessCertificateIssuer":{"description":"Path to the SSH Certificate Issuer for your Akeyless Secure Access\n","type":"string"},"secureAccessDbName":{"description":"The DB name (relevant only for DB Dynamic-Secret)\n","type":"string"},"secureAccessEnable":{"description":"Enable/Disable secure remote access [true/false]\n","type":"string"},"secureAccessHosts":{"description":"Target servers for connections (In case of Linked Target association, host(s) will inherit Linked Target hosts - Relevant only for Dynamic Secrets/producers)\n","items":{"type":"string"},"type":"array"},"secureAccessWeb":{"description":"Enable Web Secure Remote Access\n","type":"boolean"},"tags":{"description":"List of the tags attached to this secret. To specify multiple tags use argument multiple times: -t Tag1 -t Tag2\n","items":{"type":"string"},"type":"array"},"targetName":{"description":"The target name to associate\n","type":"string"}},"required":["key","maxVersions","name","rotatedPassword","rotatedSecretMysqlId","rotatedUsername","rotatorType","targetName"],"requiredInputs":["rotatorType","targetName"],"stateInputs":{"description":"Input properties used for looking up and filtering RotatedSecretMysql resources.\n","properties":{"authenticationCredentials":{"description":"The credentials to connect with [use-self-creds/use-target-creds]\n","type":"string"},"autoRotate":{"description":"Whether to automatically rotate every<span pulumi-lang-nodejs=\" rotationInterval \" pulumi-lang-dotnet=\" RotationInterval \" pulumi-lang-go=\" rotationInterval \" pulumi-lang-python=\" rotation_interval \" pulumi-lang-yaml=\" rotationInterval \" pulumi-lang-java=\" rotationInterval \"> rotation_interval </span>days, or disable existing automatic rotation\n","type":"string"},"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"itemCustomFields":{"additionalProperties":{"type":"string"},"description":"Additional custom fields to associate with the item\n","type":"object"},"keepPrevVersion":{"description":"Whether to keep previous version [true/false]. If not set, use default according to account settings\n","type":"string"},"key":{"description":"The name of a key that is used to encrypt the secret value (if empty, the account default protectionKey key will be used)\n","type":"string"},"maxVersions":{"description":"Set the maximum number of versions, limited by the account settings defaults\n","type":"string"},"name":{"description":"Secret name\n","type":"string"},"passwordLength":{"description":"The length of the password to be generated\n","type":"string"},"rotateAfterDisconnect":{"description":"Rotate the value of the secret after SRA session ends [true/false]\n","type":"string"},"rotatedPassword":{"description":"rotated-username password (relevant only for rotator-type=password)\n","type":"string"},"rotatedSecretMysqlId":{"description":"The ID of this resource.\n","type":"string"},"rotatedUsername":{"description":"username to be rotated, if selected use-self-creds at rotator-creds-type, this username will try to rotate it's own password, if use-target-creds is selected, target credentials will be use to rotate the rotated-password (relevant only for rotator-type=password)\n","type":"string"},"rotationEventIns":{"description":"How many days before the rotation of the item would you like to be notified\n","items":{"type":"string"},"type":"array"},"rotationHour":{"description":"The Hour of the rotation in UTC\n","type":"number"},"rotationInterval":{"description":"The number of days to wait between every automatic rotation (1-365),custom rotator interval will be set in minutes\n","type":"string"},"rotatorType":{"description":"The rotator type [target/password]\n","type":"string"},"secureAccessCertificateIssuer":{"description":"Path to the SSH Certificate Issuer for your Akeyless Secure Access\n","type":"string"},"secureAccessDbName":{"description":"The DB name (relevant only for DB Dynamic-Secret)\n","type":"string"},"secureAccessEnable":{"description":"Enable/Disable secure remote access [true/false]\n","type":"string"},"secureAccessHosts":{"description":"Target servers for connections (In case of Linked Target association, host(s) will inherit Linked Target hosts - Relevant only for Dynamic Secrets/producers)\n","items":{"type":"string"},"type":"array"},"secureAccessWeb":{"description":"Enable Web Secure Remote Access\n","type":"boolean"},"tags":{"description":"List of the tags attached to this secret. To specify multiple tags use argument multiple times: -t Tag1 -t Tag2\n","items":{"type":"string"},"type":"array"},"targetName":{"description":"The target name to associate\n","type":"string"}},"type":"object"},"type":"object"},"akeyless:index/rotatedSecretOpenai:RotatedSecretOpenai":{"description":"OpenAI rotated secret resource\n","inputProperties":{"apiKey":{"description":"Admin API key value to rotate (relevant only for rotator-type=api-key)\n","secret":true,"type":"string"},"apiKeyId":{"description":"Admin API key ID to rotate (relevant only for rotator-type=api-key)\n","type":"string"},"authenticationCredentials":{"description":"The credentials to connect with use-user-creds/use-target-creds\n","type":"string"},"autoRotate":{"description":"Whether to automatically rotate every --rotation-interval days, or disable existing automatic rotation [true/false]\n","type":"string"},"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"itemCustomFields":{"additionalProperties":{"type":"string"},"description":"Additional custom fields to associate with the item\n","type":"object"},"keepPrevVersion":{"description":"Whether to keep previous version [true/false]. If not set, use default according to account settings\n","type":"string"},"key":{"description":"The name of a key that is used to encrypt the secret value (if empty, the account default protectionKey key will be used)\n","type":"string"},"maxVersions":{"description":"Set the maximum number of versions, limited by the account settings defaults.\n","type":"string"},"name":{"description":"Secret name\n","type":"string"},"passwordLength":{"description":"The length of the password to be generated\n","type":"string"},"rotatedSecretOpenaiId":{"description":"The ID of this resource.\n","type":"string"},"rotationEventIns":{"description":"How many days before the rotation of the item would you like to be notified\n","items":{"type":"string"},"type":"array"},"rotationHour":{"description":"The Hour of the rotation in UTC\n","type":"number"},"rotationInterval":{"description":"The number of days to wait between every automatic key rotation (1-365)\n","type":"string"},"rotatorType":{"description":"The rotator type. options: [target/api-key]\n","type":"string"},"tags":{"description":"List of the tags attached to this secret. To specify multiple tags use argument multiple times: -t Tag1 -t Tag2\n","items":{"type":"string"},"type":"array"},"targetName":{"description":"The target name to associate\n","type":"string"}},"properties":{"apiKey":{"description":"Admin API key value to rotate (relevant only for rotator-type=api-key)\n","secret":true,"type":"string"},"apiKeyId":{"description":"Admin API key ID to rotate (relevant only for rotator-type=api-key)\n","type":"string"},"authenticationCredentials":{"description":"The credentials to connect with use-user-creds/use-target-creds\n","type":"string"},"autoRotate":{"description":"Whether to automatically rotate every --rotation-interval days, or disable existing automatic rotation [true/false]\n","type":"string"},"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"itemCustomFields":{"additionalProperties":{"type":"string"},"description":"Additional custom fields to associate with the item\n","type":"object"},"keepPrevVersion":{"description":"Whether to keep previous version [true/false]. If not set, use default according to account settings\n","type":"string"},"key":{"description":"The name of a key that is used to encrypt the secret value (if empty, the account default protectionKey key will be used)\n","type":"string"},"maxVersions":{"description":"Set the maximum number of versions, limited by the account settings defaults.\n","type":"string"},"name":{"description":"Secret name\n","type":"string"},"passwordLength":{"description":"The length of the password to be generated\n","type":"string"},"rotatedSecretOpenaiId":{"description":"The ID of this resource.\n","type":"string"},"rotationEventIns":{"description":"How many days before the rotation of the item would you like to be notified\n","items":{"type":"string"},"type":"array"},"rotationHour":{"description":"The Hour of the rotation in UTC\n","type":"number"},"rotationInterval":{"description":"The number of days to wait between every automatic key rotation (1-365)\n","type":"string"},"rotatorType":{"description":"The rotator type. options: [target/api-key]\n","type":"string"},"tags":{"description":"List of the tags attached to this secret. To specify multiple tags use argument multiple times: -t Tag1 -t Tag2\n","items":{"type":"string"},"type":"array"},"targetName":{"description":"The target name to associate\n","type":"string"}},"required":["key","maxVersions","name","rotatedSecretOpenaiId","rotatorType","targetName"],"requiredInputs":["rotatorType","targetName"],"stateInputs":{"description":"Input properties used for looking up and filtering RotatedSecretOpenai resources.\n","properties":{"apiKey":{"description":"Admin API key value to rotate (relevant only for rotator-type=api-key)\n","secret":true,"type":"string"},"apiKeyId":{"description":"Admin API key ID to rotate (relevant only for rotator-type=api-key)\n","type":"string"},"authenticationCredentials":{"description":"The credentials to connect with use-user-creds/use-target-creds\n","type":"string"},"autoRotate":{"description":"Whether to automatically rotate every --rotation-interval days, or disable existing automatic rotation [true/false]\n","type":"string"},"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"itemCustomFields":{"additionalProperties":{"type":"string"},"description":"Additional custom fields to associate with the item\n","type":"object"},"keepPrevVersion":{"description":"Whether to keep previous version [true/false]. If not set, use default according to account settings\n","type":"string"},"key":{"description":"The name of a key that is used to encrypt the secret value (if empty, the account default protectionKey key will be used)\n","type":"string"},"maxVersions":{"description":"Set the maximum number of versions, limited by the account settings defaults.\n","type":"string"},"name":{"description":"Secret name\n","type":"string"},"passwordLength":{"description":"The length of the password to be generated\n","type":"string"},"rotatedSecretOpenaiId":{"description":"The ID of this resource.\n","type":"string"},"rotationEventIns":{"description":"How many days before the rotation of the item would you like to be notified\n","items":{"type":"string"},"type":"array"},"rotationHour":{"description":"The Hour of the rotation in UTC\n","type":"number"},"rotationInterval":{"description":"The number of days to wait between every automatic key rotation (1-365)\n","type":"string"},"rotatorType":{"description":"The rotator type. options: [target/api-key]\n","type":"string"},"tags":{"description":"List of the tags attached to this secret. To specify multiple tags use argument multiple times: -t Tag1 -t Tag2\n","items":{"type":"string"},"type":"array"},"targetName":{"description":"The target name to associate\n","type":"string"}},"type":"object"},"type":"object"},"akeyless:index/rotatedSecretOracle:RotatedSecretOracle":{"description":"Oracle rotated secret resource\n","inputProperties":{"authenticationCredentials":{"description":"The credentials to connect with use-self-creds/use-target-creds\n","type":"string"},"autoRotate":{"description":"Whether to automatically rotate every --rotation-interval days, or disable existing automatic rotation [true/false]\n","type":"string"},"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"itemCustomFields":{"additionalProperties":{"type":"string"},"description":"Additional custom fields to associate with the item\n","type":"object"},"keepPrevVersion":{"description":"Whether to keep previous version [true/false]. If not set, use default according to account settings\n","type":"string"},"key":{"description":"The name of a key that is used to encrypt the secret value (if empty, the account default protectionKey key will be used)\n","type":"string"},"maxVersions":{"description":"Set the maximum number of versions, limited by the account settings defaults\n","type":"string"},"name":{"description":"Secret name\n","type":"string"},"passwordLength":{"description":"The length of the password to be generated\n","type":"string"},"rotateAfterDisconnect":{"description":"Rotate the value of the secret after SRA session ends [true/false]\n","type":"string"},"rotatedPassword":{"description":"rotated-username password (relevant only for rotator-type=password)\n","type":"string"},"rotatedSecretOracleId":{"description":"The ID of this resource.\n","type":"string"},"rotatedUsername":{"description":"username to be rotated, if selected use-self-creds at rotator-creds-type, this username will try to rotate it's own password, if use-target-creds is selected, target credentials will be use to rotate the rotated-password (relevant only for rotator-type=password)\n","type":"string"},"rotationEventIns":{"description":"How many days before the rotation of the item would you like to be notified\n","items":{"type":"string"},"type":"array"},"rotationHour":{"description":"The Hour of the rotation in UTC\n","type":"number"},"rotationInterval":{"description":"The number of days to wait between every automatic key rotation (1-365)\n","type":"string"},"rotatorType":{"description":"The rotator type [target/password]\n","type":"string"},"secureAccessDbName":{"description":"The DB name (relevant only for DB Dynamic-Secret)\n","type":"string"},"secureAccessEnable":{"description":"Enable/Disable secure remote access [true/false]\n","type":"string"},"secureAccessHosts":{"description":"Target servers for connections (In case of Linked Target association, host(s) will inherit Linked Target hosts - Relevant only for Dynamic Secrets/producers)\n","items":{"type":"string"},"type":"array"},"secureAccessWeb":{"description":"Enable Web Secure Remote Access\n","type":"boolean"},"tags":{"description":"List of the tags attached to this secret. To specify multiple tags use argument multiple times: -t Tag1 -t Tag2\n","items":{"type":"string"},"type":"array"},"targetName":{"description":"The target name to associate\n","type":"string"}},"properties":{"authenticationCredentials":{"description":"The credentials to connect with use-self-creds/use-target-creds\n","type":"string"},"autoRotate":{"description":"Whether to automatically rotate every --rotation-interval days, or disable existing automatic rotation [true/false]\n","type":"string"},"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"itemCustomFields":{"additionalProperties":{"type":"string"},"description":"Additional custom fields to associate with the item\n","type":"object"},"keepPrevVersion":{"description":"Whether to keep previous version [true/false]. If not set, use default according to account settings\n","type":"string"},"key":{"description":"The name of a key that is used to encrypt the secret value (if empty, the account default protectionKey key will be used)\n","type":"string"},"maxVersions":{"description":"Set the maximum number of versions, limited by the account settings defaults\n","type":"string"},"name":{"description":"Secret name\n","type":"string"},"passwordLength":{"description":"The length of the password to be generated\n","type":"string"},"rotateAfterDisconnect":{"description":"Rotate the value of the secret after SRA session ends [true/false]\n","type":"string"},"rotatedPassword":{"description":"rotated-username password (relevant only for rotator-type=password)\n","type":"string"},"rotatedSecretOracleId":{"description":"The ID of this resource.\n","type":"string"},"rotatedUsername":{"description":"username to be rotated, if selected use-self-creds at rotator-creds-type, this username will try to rotate it's own password, if use-target-creds is selected, target credentials will be use to rotate the rotated-password (relevant only for rotator-type=password)\n","type":"string"},"rotationEventIns":{"description":"How many days before the rotation of the item would you like to be notified\n","items":{"type":"string"},"type":"array"},"rotationHour":{"description":"The Hour of the rotation in UTC\n","type":"number"},"rotationInterval":{"description":"The number of days to wait between every automatic key rotation (1-365)\n","type":"string"},"rotatorType":{"description":"The rotator type [target/password]\n","type":"string"},"secureAccessDbName":{"description":"The DB name (relevant only for DB Dynamic-Secret)\n","type":"string"},"secureAccessEnable":{"description":"Enable/Disable secure remote access [true/false]\n","type":"string"},"secureAccessHosts":{"description":"Target servers for connections (In case of Linked Target association, host(s) will inherit Linked Target hosts - Relevant only for Dynamic Secrets/producers)\n","items":{"type":"string"},"type":"array"},"secureAccessWeb":{"description":"Enable Web Secure Remote Access\n","type":"boolean"},"tags":{"description":"List of the tags attached to this secret. To specify multiple tags use argument multiple times: -t Tag1 -t Tag2\n","items":{"type":"string"},"type":"array"},"targetName":{"description":"The target name to associate\n","type":"string"}},"required":["key","maxVersions","name","rotatedPassword","rotatedSecretOracleId","rotatedUsername","rotatorType","targetName"],"requiredInputs":["rotatorType","targetName"],"stateInputs":{"description":"Input properties used for looking up and filtering RotatedSecretOracle resources.\n","properties":{"authenticationCredentials":{"description":"The credentials to connect with use-self-creds/use-target-creds\n","type":"string"},"autoRotate":{"description":"Whether to automatically rotate every --rotation-interval days, or disable existing automatic rotation [true/false]\n","type":"string"},"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"itemCustomFields":{"additionalProperties":{"type":"string"},"description":"Additional custom fields to associate with the item\n","type":"object"},"keepPrevVersion":{"description":"Whether to keep previous version [true/false]. If not set, use default according to account settings\n","type":"string"},"key":{"description":"The name of a key that is used to encrypt the secret value (if empty, the account default protectionKey key will be used)\n","type":"string"},"maxVersions":{"description":"Set the maximum number of versions, limited by the account settings defaults\n","type":"string"},"name":{"description":"Secret name\n","type":"string"},"passwordLength":{"description":"The length of the password to be generated\n","type":"string"},"rotateAfterDisconnect":{"description":"Rotate the value of the secret after SRA session ends [true/false]\n","type":"string"},"rotatedPassword":{"description":"rotated-username password (relevant only for rotator-type=password)\n","type":"string"},"rotatedSecretOracleId":{"description":"The ID of this resource.\n","type":"string"},"rotatedUsername":{"description":"username to be rotated, if selected use-self-creds at rotator-creds-type, this username will try to rotate it's own password, if use-target-creds is selected, target credentials will be use to rotate the rotated-password (relevant only for rotator-type=password)\n","type":"string"},"rotationEventIns":{"description":"How many days before the rotation of the item would you like to be notified\n","items":{"type":"string"},"type":"array"},"rotationHour":{"description":"The Hour of the rotation in UTC\n","type":"number"},"rotationInterval":{"description":"The number of days to wait between every automatic key rotation (1-365)\n","type":"string"},"rotatorType":{"description":"The rotator type [target/password]\n","type":"string"},"secureAccessDbName":{"description":"The DB name (relevant only for DB Dynamic-Secret)\n","type":"string"},"secureAccessEnable":{"description":"Enable/Disable secure remote access [true/false]\n","type":"string"},"secureAccessHosts":{"description":"Target servers for connections (In case of Linked Target association, host(s) will inherit Linked Target hosts - Relevant only for Dynamic Secrets/producers)\n","items":{"type":"string"},"type":"array"},"secureAccessWeb":{"description":"Enable Web Secure Remote Access\n","type":"boolean"},"tags":{"description":"List of the tags attached to this secret. To specify multiple tags use argument multiple times: -t Tag1 -t Tag2\n","items":{"type":"string"},"type":"array"},"targetName":{"description":"The target name to associate\n","type":"string"}},"type":"object"},"type":"object"},"akeyless:index/rotatedSecretPostgresql:RotatedSecretPostgresql":{"description":"Postgresql rotated secret resource\n","inputProperties":{"authenticationCredentials":{"description":"The credentials to connect with use-self-creds/use-target-creds\n","type":"string"},"autoRotate":{"description":"Whether to automatically rotate every --rotation-interval days, or disable existing automatic rotation [true/false]\n","type":"string"},"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"itemCustomFields":{"additionalProperties":{"type":"string"},"description":"Additional custom fields to associate with the item\n","type":"object"},"keepPrevVersion":{"description":"Whether to keep previous version [true/false]. If not set, use default according to account settings\n","type":"string"},"key":{"description":"The name of a key that is used to encrypt the secret value (if empty, the account default protectionKey key will be used)\n","type":"string"},"maxVersions":{"description":"Set the maximum number of versions, limited by the account settings defaults.\n","type":"string"},"name":{"description":"Rotated secret name\n","type":"string"},"passwordLength":{"description":"The length of the password to be generated\n","type":"string"},"rotateAfterDisconnect":{"description":"Rotate the value of the secret after SRA session ends [true/false]\n","type":"string"},"rotatedPassword":{"description":"rotated-username password (relevant only for rotator-type=password)\n","type":"string"},"rotatedSecretPostgresqlId":{"description":"The ID of this resource.\n","type":"string"},"rotatedUsername":{"description":"username to be rotated, if selected use-self-creds at rotator-creds-type, this username will try to rotate it's own password, if use-target-creds is selected, target credentials will be use to rotate the rotated-password (relevant only for rotator-type=password)\n","type":"string"},"rotationEventIns":{"description":"How many days before the rotation of the item would you like to be notified\n","items":{"type":"string"},"type":"array"},"rotationHour":{"description":"The Hour of the rotation in UTC\n","type":"number"},"rotationInterval":{"description":"The number of days to wait between every automatic key rotation (1-365)\n","type":"string"},"rotatorType":{"description":"The rotator type. options: [target/password]\n","type":"string"},"secureAccessCertificateIssuer":{"description":"Path to the SSH Certificate Issuer for your Akeyless Secure Access\n","type":"string"},"secureAccessDbName":{"description":"The DB name (relevant only for DB Dynamic-Secret)\n","type":"string"},"secureAccessDbSchema":{"description":"The DB schema\n","type":"string"},"secureAccessEnable":{"description":"Enable/Disable secure remote access [true/false]\n","type":"string"},"secureAccessHosts":{"description":"Target servers for connections (In case of Linked Target association, host(s) will inherit Linked Target hosts - Relevant only for Dynamic Secrets/producers)\n","items":{"type":"string"},"type":"array"},"secureAccessWeb":{"description":"Enable Web Secure Remote Access\n","type":"boolean"},"tags":{"description":"List of the tags attached to this secret. To specify multiple tags use argument multiple times: -t Tag1 -t Tag2\n","items":{"type":"string"},"type":"array"},"targetName":{"description":"Target name\n","type":"string"}},"properties":{"authenticationCredentials":{"description":"The credentials to connect with use-self-creds/use-target-creds\n","type":"string"},"autoRotate":{"description":"Whether to automatically rotate every --rotation-interval days, or disable existing automatic rotation [true/false]\n","type":"string"},"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"itemCustomFields":{"additionalProperties":{"type":"string"},"description":"Additional custom fields to associate with the item\n","type":"object"},"keepPrevVersion":{"description":"Whether to keep previous version [true/false]. If not set, use default according to account settings\n","type":"string"},"key":{"description":"The name of a key that is used to encrypt the secret value (if empty, the account default protectionKey key will be used)\n","type":"string"},"maxVersions":{"description":"Set the maximum number of versions, limited by the account settings defaults.\n","type":"string"},"name":{"description":"Rotated secret name\n","type":"string"},"passwordLength":{"description":"The length of the password to be generated\n","type":"string"},"rotateAfterDisconnect":{"description":"Rotate the value of the secret after SRA session ends [true/false]\n","type":"string"},"rotatedPassword":{"description":"rotated-username password (relevant only for rotator-type=password)\n","type":"string"},"rotatedSecretPostgresqlId":{"description":"The ID of this resource.\n","type":"string"},"rotatedUsername":{"description":"username to be rotated, if selected use-self-creds at rotator-creds-type, this username will try to rotate it's own password, if use-target-creds is selected, target credentials will be use to rotate the rotated-password (relevant only for rotator-type=password)\n","type":"string"},"rotationEventIns":{"description":"How many days before the rotation of the item would you like to be notified\n","items":{"type":"string"},"type":"array"},"rotationHour":{"description":"The Hour of the rotation in UTC\n","type":"number"},"rotationInterval":{"description":"The number of days to wait between every automatic key rotation (1-365)\n","type":"string"},"rotatorType":{"description":"The rotator type. options: [target/password]\n","type":"string"},"secureAccessCertificateIssuer":{"description":"Path to the SSH Certificate Issuer for your Akeyless Secure Access\n","type":"string"},"secureAccessDbName":{"description":"The DB name (relevant only for DB Dynamic-Secret)\n","type":"string"},"secureAccessDbSchema":{"description":"The DB schema\n","type":"string"},"secureAccessEnable":{"description":"Enable/Disable secure remote access [true/false]\n","type":"string"},"secureAccessHosts":{"description":"Target servers for connections (In case of Linked Target association, host(s) will inherit Linked Target hosts - Relevant only for Dynamic Secrets/producers)\n","items":{"type":"string"},"type":"array"},"secureAccessWeb":{"description":"Enable Web Secure Remote Access\n","type":"boolean"},"tags":{"description":"List of the tags attached to this secret. To specify multiple tags use argument multiple times: -t Tag1 -t Tag2\n","items":{"type":"string"},"type":"array"},"targetName":{"description":"Target name\n","type":"string"}},"required":["key","maxVersions","name","rotatedPassword","rotatedSecretPostgresqlId","rotatedUsername","rotatorType","targetName"],"requiredInputs":["rotatorType","targetName"],"stateInputs":{"description":"Input properties used for looking up and filtering RotatedSecretPostgresql resources.\n","properties":{"authenticationCredentials":{"description":"The credentials to connect with use-self-creds/use-target-creds\n","type":"string"},"autoRotate":{"description":"Whether to automatically rotate every --rotation-interval days, or disable existing automatic rotation [true/false]\n","type":"string"},"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"itemCustomFields":{"additionalProperties":{"type":"string"},"description":"Additional custom fields to associate with the item\n","type":"object"},"keepPrevVersion":{"description":"Whether to keep previous version [true/false]. If not set, use default according to account settings\n","type":"string"},"key":{"description":"The name of a key that is used to encrypt the secret value (if empty, the account default protectionKey key will be used)\n","type":"string"},"maxVersions":{"description":"Set the maximum number of versions, limited by the account settings defaults.\n","type":"string"},"name":{"description":"Rotated secret name\n","type":"string"},"passwordLength":{"description":"The length of the password to be generated\n","type":"string"},"rotateAfterDisconnect":{"description":"Rotate the value of the secret after SRA session ends [true/false]\n","type":"string"},"rotatedPassword":{"description":"rotated-username password (relevant only for rotator-type=password)\n","type":"string"},"rotatedSecretPostgresqlId":{"description":"The ID of this resource.\n","type":"string"},"rotatedUsername":{"description":"username to be rotated, if selected use-self-creds at rotator-creds-type, this username will try to rotate it's own password, if use-target-creds is selected, target credentials will be use to rotate the rotated-password (relevant only for rotator-type=password)\n","type":"string"},"rotationEventIns":{"description":"How many days before the rotation of the item would you like to be notified\n","items":{"type":"string"},"type":"array"},"rotationHour":{"description":"The Hour of the rotation in UTC\n","type":"number"},"rotationInterval":{"description":"The number of days to wait between every automatic key rotation (1-365)\n","type":"string"},"rotatorType":{"description":"The rotator type. options: [target/password]\n","type":"string"},"secureAccessCertificateIssuer":{"description":"Path to the SSH Certificate Issuer for your Akeyless Secure Access\n","type":"string"},"secureAccessDbName":{"description":"The DB name (relevant only for DB Dynamic-Secret)\n","type":"string"},"secureAccessDbSchema":{"description":"The DB schema\n","type":"string"},"secureAccessEnable":{"description":"Enable/Disable secure remote access [true/false]\n","type":"string"},"secureAccessHosts":{"description":"Target servers for connections (In case of Linked Target association, host(s) will inherit Linked Target hosts - Relevant only for Dynamic Secrets/producers)\n","items":{"type":"string"},"type":"array"},"secureAccessWeb":{"description":"Enable Web Secure Remote Access\n","type":"boolean"},"tags":{"description":"List of the tags attached to this secret. To specify multiple tags use argument multiple times: -t Tag1 -t Tag2\n","items":{"type":"string"},"type":"array"},"targetName":{"description":"Target name\n","type":"string"}},"type":"object"},"type":"object"},"akeyless:index/rotatedSecretRedis:RotatedSecretRedis":{"description":"Redis rotated secret resource\n","inputProperties":{"authenticationCredentials":{"description":"The credentials to connect with use-self-creds/use-target-creds\n","type":"string"},"autoRotate":{"description":"Whether to automatically rotate every --rotation-interval days, or disable existing automatic rotation [true/false]\n","type":"string"},"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"itemCustomFields":{"additionalProperties":{"type":"string"},"description":"Additional custom fields to associate with the item\n","type":"object"},"keepPrevVersion":{"description":"Whether to keep previous version [true/false]. If not set, use default according to account settings\n","type":"string"},"key":{"description":"The name of a key that is used to encrypt the secret value (if empty, the account default protectionKey key will be used)\n","type":"string"},"maxVersions":{"description":"Set the maximum number of versions, limited by the account settings defaults.\n","type":"string"},"name":{"description":"Rotated secret name\n","type":"string"},"passwordLength":{"description":"The length of the password to be generated\n","type":"string"},"rotatedPassword":{"description":"rotated-username password (relevant only for rotator-type=password)\n","type":"string"},"rotatedSecretRedisId":{"description":"The ID of this resource.\n","type":"string"},"rotatedUsername":{"description":"username to be rotated, if selected use-self-creds at rotator-creds-type, this username will try to rotate it's own password, if use-target-creds is selected, target credentials will be use to rotate the rotated-password (relevant only for rotator-type=password)\n","type":"string"},"rotationEventIns":{"description":"How many days before the rotation of the item would you like to be notified\n","items":{"type":"string"},"type":"array"},"rotationHour":{"description":"The Hour of the rotation in UTC\n","type":"number"},"rotationInterval":{"description":"The number of days to wait between every automatic key rotation (1-365)\n","type":"string"},"rotatorType":{"description":"The rotator type. options: [target/password]\n","type":"string"},"tags":{"description":"Add tags attached to this object\n","items":{"type":"string"},"type":"array"},"targetName":{"description":"Target name\n","type":"string"}},"properties":{"authenticationCredentials":{"description":"The credentials to connect with use-self-creds/use-target-creds\n","type":"string"},"autoRotate":{"description":"Whether to automatically rotate every --rotation-interval days, or disable existing automatic rotation [true/false]\n","type":"string"},"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"itemCustomFields":{"additionalProperties":{"type":"string"},"description":"Additional custom fields to associate with the item\n","type":"object"},"keepPrevVersion":{"description":"Whether to keep previous version [true/false]. If not set, use default according to account settings\n","type":"string"},"key":{"description":"The name of a key that is used to encrypt the secret value (if empty, the account default protectionKey key will be used)\n","type":"string"},"maxVersions":{"description":"Set the maximum number of versions, limited by the account settings defaults.\n","type":"string"},"name":{"description":"Rotated secret name\n","type":"string"},"passwordLength":{"description":"The length of the password to be generated\n","type":"string"},"rotatedPassword":{"description":"rotated-username password (relevant only for rotator-type=password)\n","type":"string"},"rotatedSecretRedisId":{"description":"The ID of this resource.\n","type":"string"},"rotatedUsername":{"description":"username to be rotated, if selected use-self-creds at rotator-creds-type, this username will try to rotate it's own password, if use-target-creds is selected, target credentials will be use to rotate the rotated-password (relevant only for rotator-type=password)\n","type":"string"},"rotationEventIns":{"description":"How many days before the rotation of the item would you like to be notified\n","items":{"type":"string"},"type":"array"},"rotationHour":{"description":"The Hour of the rotation in UTC\n","type":"number"},"rotationInterval":{"description":"The number of days to wait between every automatic key rotation (1-365)\n","type":"string"},"rotatorType":{"description":"The rotator type. options: [target/password]\n","type":"string"},"tags":{"description":"Add tags attached to this object\n","items":{"type":"string"},"type":"array"},"targetName":{"description":"Target name\n","type":"string"}},"required":["key","maxVersions","name","rotatedPassword","rotatedSecretRedisId","rotatedUsername","rotatorType","targetName"],"requiredInputs":["rotatorType","targetName"],"stateInputs":{"description":"Input properties used for looking up and filtering RotatedSecretRedis resources.\n","properties":{"authenticationCredentials":{"description":"The credentials to connect with use-self-creds/use-target-creds\n","type":"string"},"autoRotate":{"description":"Whether to automatically rotate every --rotation-interval days, or disable existing automatic rotation [true/false]\n","type":"string"},"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"itemCustomFields":{"additionalProperties":{"type":"string"},"description":"Additional custom fields to associate with the item\n","type":"object"},"keepPrevVersion":{"description":"Whether to keep previous version [true/false]. If not set, use default according to account settings\n","type":"string"},"key":{"description":"The name of a key that is used to encrypt the secret value (if empty, the account default protectionKey key will be used)\n","type":"string"},"maxVersions":{"description":"Set the maximum number of versions, limited by the account settings defaults.\n","type":"string"},"name":{"description":"Rotated secret name\n","type":"string"},"passwordLength":{"description":"The length of the password to be generated\n","type":"string"},"rotatedPassword":{"description":"rotated-username password (relevant only for rotator-type=password)\n","type":"string"},"rotatedSecretRedisId":{"description":"The ID of this resource.\n","type":"string"},"rotatedUsername":{"description":"username to be rotated, if selected use-self-creds at rotator-creds-type, this username will try to rotate it's own password, if use-target-creds is selected, target credentials will be use to rotate the rotated-password (relevant only for rotator-type=password)\n","type":"string"},"rotationEventIns":{"description":"How many days before the rotation of the item would you like to be notified\n","items":{"type":"string"},"type":"array"},"rotationHour":{"description":"The Hour of the rotation in UTC\n","type":"number"},"rotationInterval":{"description":"The number of days to wait between every automatic key rotation (1-365)\n","type":"string"},"rotatorType":{"description":"The rotator type. options: [target/password]\n","type":"string"},"tags":{"description":"Add tags attached to this object\n","items":{"type":"string"},"type":"array"},"targetName":{"description":"Target name\n","type":"string"}},"type":"object"},"type":"object"},"akeyless:index/rotatedSecretRedshift:RotatedSecretRedshift":{"description":"Redshift rotated secret resource\n","inputProperties":{"authenticationCredentials":{"description":"The credentials to connect with use-self-creds/use-target-creds\n","type":"string"},"autoRotate":{"description":"Whether to automatically rotate every --rotation-interval days, or disable existing automatic rotation\n","type":"string"},"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"itemCustomFields":{"additionalProperties":{"type":"string"},"description":"Additional custom fields to associate with the item\n","type":"object"},"keepPrevVersion":{"description":"Whether to keep previous version [true/false]. If not set, use default according to account settings\n","type":"string"},"key":{"description":"The name of a key that is used to encrypt the secret value (if empty, the account default protectionKey key will be used)\n","type":"string"},"maxVersions":{"description":"Set the maximum number of versions, limited by the account settings defaults\n","type":"string"},"name":{"description":"Secret name\n","type":"string"},"passwordLength":{"description":"The length of the password to be generated\n","type":"string"},"rotateAfterDisconnect":{"description":"Rotate the value of the secret after SRA session ends [true/false]\n","type":"string"},"rotatedPassword":{"description":"rotated-username password (relevant only for rotator-type=password)\n","type":"string"},"rotatedSecretRedshiftId":{"description":"The ID of this resource.\n","type":"string"},"rotatedUsername":{"description":"username to be rotated, if selected use-self-creds at rotator-creds-type, this username will try to rotate it's own password, if use-target-creds is selected, target credentials will be use to rotate the rotated-password (relevant only for rotator-type=password)\n","type":"string"},"rotationEventIns":{"description":"How many days before the rotation of the item would you like to be notified\n","items":{"type":"string"},"type":"array"},"rotationHour":{"description":"The Hour of the rotation in UTC\n","type":"number"},"rotationInterval":{"description":"The number of days to wait between every automatic rotation (1-365),custom rotator interval will be set in minutes\n","type":"string"},"rotatorType":{"description":"The rotator type. options: [target/password]\n","type":"string"},"secureAccessDbName":{"description":"The DB name (relevant only for DB Dynamic-Secret)\n","type":"string"},"secureAccessEnable":{"description":"Enable/Disable secure remote access [true/false]\n","type":"string"},"secureAccessHosts":{"description":"Target servers for connections (In case of Linked Target association, host(s) will inherit Linked Target hosts - Relevant only for Dynamic Secrets/producers)\n","items":{"type":"string"},"type":"array"},"tags":{"description":"List of the tags attached to this secret. To specify multiple tags use argument multiple times: -t Tag1 -t Tag2\n","items":{"type":"string"},"type":"array"},"targetName":{"description":"The target name to associate\n","type":"string"}},"properties":{"authenticationCredentials":{"description":"The credentials to connect with use-self-creds/use-target-creds\n","type":"string"},"autoRotate":{"description":"Whether to automatically rotate every --rotation-interval days, or disable existing automatic rotation\n","type":"string"},"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"itemCustomFields":{"additionalProperties":{"type":"string"},"description":"Additional custom fields to associate with the item\n","type":"object"},"keepPrevVersion":{"description":"Whether to keep previous version [true/false]. If not set, use default according to account settings\n","type":"string"},"key":{"description":"The name of a key that is used to encrypt the secret value (if empty, the account default protectionKey key will be used)\n","type":"string"},"maxVersions":{"description":"Set the maximum number of versions, limited by the account settings defaults\n","type":"string"},"name":{"description":"Secret name\n","type":"string"},"passwordLength":{"description":"The length of the password to be generated\n","type":"string"},"rotateAfterDisconnect":{"description":"Rotate the value of the secret after SRA session ends [true/false]\n","type":"string"},"rotatedPassword":{"description":"rotated-username password (relevant only for rotator-type=password)\n","type":"string"},"rotatedSecretRedshiftId":{"description":"The ID of this resource.\n","type":"string"},"rotatedUsername":{"description":"username to be rotated, if selected use-self-creds at rotator-creds-type, this username will try to rotate it's own password, if use-target-creds is selected, target credentials will be use to rotate the rotated-password (relevant only for rotator-type=password)\n","type":"string"},"rotationEventIns":{"description":"How many days before the rotation of the item would you like to be notified\n","items":{"type":"string"},"type":"array"},"rotationHour":{"description":"The Hour of the rotation in UTC\n","type":"number"},"rotationInterval":{"description":"The number of days to wait between every automatic rotation (1-365),custom rotator interval will be set in minutes\n","type":"string"},"rotatorType":{"description":"The rotator type. options: [target/password]\n","type":"string"},"secureAccessDbName":{"description":"The DB name (relevant only for DB Dynamic-Secret)\n","type":"string"},"secureAccessEnable":{"description":"Enable/Disable secure remote access [true/false]\n","type":"string"},"secureAccessHosts":{"description":"Target servers for connections (In case of Linked Target association, host(s) will inherit Linked Target hosts - Relevant only for Dynamic Secrets/producers)\n","items":{"type":"string"},"type":"array"},"tags":{"description":"List of the tags attached to this secret. To specify multiple tags use argument multiple times: -t Tag1 -t Tag2\n","items":{"type":"string"},"type":"array"},"targetName":{"description":"The target name to associate\n","type":"string"}},"required":["key","maxVersions","name","rotatedPassword","rotatedSecretRedshiftId","rotatedUsername","rotatorType","targetName"],"requiredInputs":["rotatorType","targetName"],"stateInputs":{"description":"Input properties used for looking up and filtering RotatedSecretRedshift resources.\n","properties":{"authenticationCredentials":{"description":"The credentials to connect with use-self-creds/use-target-creds\n","type":"string"},"autoRotate":{"description":"Whether to automatically rotate every --rotation-interval days, or disable existing automatic rotation\n","type":"string"},"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"itemCustomFields":{"additionalProperties":{"type":"string"},"description":"Additional custom fields to associate with the item\n","type":"object"},"keepPrevVersion":{"description":"Whether to keep previous version [true/false]. If not set, use default according to account settings\n","type":"string"},"key":{"description":"The name of a key that is used to encrypt the secret value (if empty, the account default protectionKey key will be used)\n","type":"string"},"maxVersions":{"description":"Set the maximum number of versions, limited by the account settings defaults\n","type":"string"},"name":{"description":"Secret name\n","type":"string"},"passwordLength":{"description":"The length of the password to be generated\n","type":"string"},"rotateAfterDisconnect":{"description":"Rotate the value of the secret after SRA session ends [true/false]\n","type":"string"},"rotatedPassword":{"description":"rotated-username password (relevant only for rotator-type=password)\n","type":"string"},"rotatedSecretRedshiftId":{"description":"The ID of this resource.\n","type":"string"},"rotatedUsername":{"description":"username to be rotated, if selected use-self-creds at rotator-creds-type, this username will try to rotate it's own password, if use-target-creds is selected, target credentials will be use to rotate the rotated-password (relevant only for rotator-type=password)\n","type":"string"},"rotationEventIns":{"description":"How many days before the rotation of the item would you like to be notified\n","items":{"type":"string"},"type":"array"},"rotationHour":{"description":"The Hour of the rotation in UTC\n","type":"number"},"rotationInterval":{"description":"The number of days to wait between every automatic rotation (1-365),custom rotator interval will be set in minutes\n","type":"string"},"rotatorType":{"description":"The rotator type. options: [target/password]\n","type":"string"},"secureAccessDbName":{"description":"The DB name (relevant only for DB Dynamic-Secret)\n","type":"string"},"secureAccessEnable":{"description":"Enable/Disable secure remote access [true/false]\n","type":"string"},"secureAccessHosts":{"description":"Target servers for connections (In case of Linked Target association, host(s) will inherit Linked Target hosts - Relevant only for Dynamic Secrets/producers)\n","items":{"type":"string"},"type":"array"},"tags":{"description":"List of the tags attached to this secret. To specify multiple tags use argument multiple times: -t Tag1 -t Tag2\n","items":{"type":"string"},"type":"array"},"targetName":{"description":"The target name to associate\n","type":"string"}},"type":"object"},"type":"object"},"akeyless:index/rotatedSecretSnowflake:RotatedSecretSnowflake":{"description":"Snowflake rotated secret resource\n","inputProperties":{"authenticationCredentials":{"description":"The credentials to connect with use-self-creds/use-target-creds\n","type":"string"},"autoRotate":{"description":"Whether to automatically rotate every --rotation-interval days, or disable existing automatic rotation [true/false]\n","type":"string"},"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"itemCustomFields":{"additionalProperties":{"type":"string"},"description":"Additional custom fields to associate with the item\n","type":"object"},"keepPrevVersion":{"description":"Whether to keep previous version [true/false]. If not set, use default according to account settings\n","type":"string"},"key":{"description":"The name of a key that is used to encrypt the secret value (if empty, the account default protectionKey key will be used)\n","type":"string"},"maxVersions":{"description":"Set the maximum number of versions, limited by the account settings defaults.\n","type":"string"},"name":{"description":"Rotated secret name\n","type":"string"},"passwordLength":{"description":"The length of the password to be generated\n","type":"string"},"privateKey":{"description":"RSA Private key (base64 encoded) to rotate (relevant only for rotator-type=key)\n","secret":true,"type":"string"},"privateKeyFileName":{"description":"The path to the file containing the private key (relevant only for rotator-type=key)\n","type":"string"},"rotatedPassword":{"description":"rotated-username password (relevant only for rotator-type=password)\n","type":"string"},"rotatedSecretSnowflakeId":{"description":"The ID of this resource.\n","type":"string"},"rotatedUsername":{"description":"username to be rotated, if selected use-self-creds at rotator-creds-type, this username will try to rotate it's own password, if use-target-creds is selected, target credentials will be use to rotate the rotated-password (relevant only for rotator-type=password or rotator-type=key)\n","type":"string"},"rotationEventIns":{"description":"How many days before the rotation of the item would you like to be notified\n","items":{"type":"string"},"type":"array"},"rotationHour":{"description":"The Hour of the rotation in UTC\n","type":"number"},"rotationInterval":{"description":"The number of days to wait between every automatic key rotation (1-365)\n","type":"string"},"rotatorType":{"description":"The rotator type. options: [target/password/key]\n","type":"string"},"tags":{"description":"List of the tags attached to this secret. To specify multiple tags use argument multiple times: -t Tag1 -t Tag2\n","items":{"type":"string"},"type":"array"},"targetName":{"description":"Target name\n","type":"string"}},"properties":{"authenticationCredentials":{"description":"The credentials to connect with use-self-creds/use-target-creds\n","type":"string"},"autoRotate":{"description":"Whether to automatically rotate every --rotation-interval days, or disable existing automatic rotation [true/false]\n","type":"string"},"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"itemCustomFields":{"additionalProperties":{"type":"string"},"description":"Additional custom fields to associate with the item\n","type":"object"},"keepPrevVersion":{"description":"Whether to keep previous version [true/false]. If not set, use default according to account settings\n","type":"string"},"key":{"description":"The name of a key that is used to encrypt the secret value (if empty, the account default protectionKey key will be used)\n","type":"string"},"maxVersions":{"description":"Set the maximum number of versions, limited by the account settings defaults.\n","type":"string"},"name":{"description":"Rotated secret name\n","type":"string"},"passwordLength":{"description":"The length of the password to be generated\n","type":"string"},"privateKey":{"description":"RSA Private key (base64 encoded) to rotate (relevant only for rotator-type=key)\n","secret":true,"type":"string"},"privateKeyFileName":{"description":"The path to the file containing the private key (relevant only for rotator-type=key)\n","type":"string"},"rotatedPassword":{"description":"rotated-username password (relevant only for rotator-type=password)\n","type":"string"},"rotatedSecretSnowflakeId":{"description":"The ID of this resource.\n","type":"string"},"rotatedUsername":{"description":"username to be rotated, if selected use-self-creds at rotator-creds-type, this username will try to rotate it's own password, if use-target-creds is selected, target credentials will be use to rotate the rotated-password (relevant only for rotator-type=password or rotator-type=key)\n","type":"string"},"rotationEventIns":{"description":"How many days before the rotation of the item would you like to be notified\n","items":{"type":"string"},"type":"array"},"rotationHour":{"description":"The Hour of the rotation in UTC\n","type":"number"},"rotationInterval":{"description":"The number of days to wait between every automatic key rotation (1-365)\n","type":"string"},"rotatorType":{"description":"The rotator type. options: [target/password/key]\n","type":"string"},"tags":{"description":"List of the tags attached to this secret. To specify multiple tags use argument multiple times: -t Tag1 -t Tag2\n","items":{"type":"string"},"type":"array"},"targetName":{"description":"Target name\n","type":"string"}},"required":["key","maxVersions","name","rotatedPassword","rotatedSecretSnowflakeId","rotatedUsername","rotatorType","targetName"],"requiredInputs":["rotatorType","targetName"],"stateInputs":{"description":"Input properties used for looking up and filtering RotatedSecretSnowflake resources.\n","properties":{"authenticationCredentials":{"description":"The credentials to connect with use-self-creds/use-target-creds\n","type":"string"},"autoRotate":{"description":"Whether to automatically rotate every --rotation-interval days, or disable existing automatic rotation [true/false]\n","type":"string"},"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"itemCustomFields":{"additionalProperties":{"type":"string"},"description":"Additional custom fields to associate with the item\n","type":"object"},"keepPrevVersion":{"description":"Whether to keep previous version [true/false]. If not set, use default according to account settings\n","type":"string"},"key":{"description":"The name of a key that is used to encrypt the secret value (if empty, the account default protectionKey key will be used)\n","type":"string"},"maxVersions":{"description":"Set the maximum number of versions, limited by the account settings defaults.\n","type":"string"},"name":{"description":"Rotated secret name\n","type":"string"},"passwordLength":{"description":"The length of the password to be generated\n","type":"string"},"privateKey":{"description":"RSA Private key (base64 encoded) to rotate (relevant only for rotator-type=key)\n","secret":true,"type":"string"},"privateKeyFileName":{"description":"The path to the file containing the private key (relevant only for rotator-type=key)\n","type":"string"},"rotatedPassword":{"description":"rotated-username password (relevant only for rotator-type=password)\n","type":"string"},"rotatedSecretSnowflakeId":{"description":"The ID of this resource.\n","type":"string"},"rotatedUsername":{"description":"username to be rotated, if selected use-self-creds at rotator-creds-type, this username will try to rotate it's own password, if use-target-creds is selected, target credentials will be use to rotate the rotated-password (relevant only for rotator-type=password or rotator-type=key)\n","type":"string"},"rotationEventIns":{"description":"How many days before the rotation of the item would you like to be notified\n","items":{"type":"string"},"type":"array"},"rotationHour":{"description":"The Hour of the rotation in UTC\n","type":"number"},"rotationInterval":{"description":"The number of days to wait between every automatic key rotation (1-365)\n","type":"string"},"rotatorType":{"description":"The rotator type. options: [target/password/key]\n","type":"string"},"tags":{"description":"List of the tags attached to this secret. To specify multiple tags use argument multiple times: -t Tag1 -t Tag2\n","items":{"type":"string"},"type":"array"},"targetName":{"description":"Target name\n","type":"string"}},"type":"object"},"type":"object"},"akeyless:index/rotatedSecretSplunk:RotatedSecretSplunk":{"description":"Splunk rotated secret resource\n","inputProperties":{"audience":{"description":"Token audience for Splunk token creation (required for rotator-type=token)\n","type":"string"},"authenticationCredentials":{"description":"The credentials to connect with use-user-creds/use-target-creds\n","type":"string"},"autoRotate":{"description":"Whether to automatically rotate every --rotation-interval days, or disable existing automatic rotation [true/false]\n","type":"string"},"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"expirationDate":{"description":"Token expiration date in YYYY-MM-DD format (relevant only for rotator-type=token when manual rotation is selected)\n","type":"string"},"hecToken":{"description":"Current Splunk HEC token value to store (relevant only for rotator-type=hec-token)\n","secret":true,"type":"string"},"hecTokenName":{"description":"Splunk HEC input name to manage (required for rotator-type=hec-token)\n","type":"string"},"itemCustomFields":{"additionalProperties":{"type":"string"},"description":"Additional custom fields to associate with the item\n","type":"object"},"keepPrevVersion":{"description":"Whether to keep previous version [true/false]. If not set, use default according to account settings\n","type":"string"},"key":{"description":"The name of a key that is used to encrypt the secret value (if empty, the account default protectionKey key will be used)\n","type":"string"},"maxVersions":{"description":"Set the maximum number of versions, limited by the account settings defaults.\n","type":"string"},"name":{"description":"Secret name\n","type":"string"},"passwordLength":{"description":"The length of the password to be generated\n","type":"string"},"rotatedPassword":{"description":"Rotated-username password (relevant only for rotator-type=password)\n","secret":true,"type":"string"},"rotatedSecretSplunkId":{"description":"The ID of this resource.\n","type":"string"},"rotatedUsername":{"description":"Username to be rotated (relevant only for rotator-type=password)\n","type":"string"},"rotationEventIns":{"description":"How many days before the rotation of the item would you like to be notified\n","items":{"type":"string"},"type":"array"},"rotationHour":{"description":"The Hour of the rotation in UTC\n","type":"number"},"rotationInterval":{"description":"The number of days to wait between every automatic key rotation (1-365)\n","type":"string"},"rotatorType":{"description":"The rotator type. options: [target/password/token/hec-token]\n","type":"string"},"splunkToken":{"description":"Current Splunk authentication token to store (relevant only for rotator-type=token)\n","secret":true,"type":"string"},"tags":{"description":"List of the tags attached to this secret. To specify multiple tags use argument multiple times: -t Tag1 -t Tag2\n","items":{"type":"string"},"type":"array"},"targetName":{"description":"The target name to associate\n","type":"string"},"tokenOwner":{"description":"Splunk token owner username (relevant only for rotator-type=token)\n","type":"string"}},"properties":{"audience":{"description":"Token audience for Splunk token creation (required for rotator-type=token)\n","type":"string"},"authenticationCredentials":{"description":"The credentials to connect with use-user-creds/use-target-creds\n","type":"string"},"autoRotate":{"description":"Whether to automatically rotate every --rotation-interval days, or disable existing automatic rotation [true/false]\n","type":"string"},"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"expirationDate":{"description":"Token expiration date in YYYY-MM-DD format (relevant only for rotator-type=token when manual rotation is selected)\n","type":"string"},"hecToken":{"description":"Current Splunk HEC token value to store (relevant only for rotator-type=hec-token)\n","secret":true,"type":"string"},"hecTokenName":{"description":"Splunk HEC input name to manage (required for rotator-type=hec-token)\n","type":"string"},"itemCustomFields":{"additionalProperties":{"type":"string"},"description":"Additional custom fields to associate with the item\n","type":"object"},"keepPrevVersion":{"description":"Whether to keep previous version [true/false]. If not set, use default according to account settings\n","type":"string"},"key":{"description":"The name of a key that is used to encrypt the secret value (if empty, the account default protectionKey key will be used)\n","type":"string"},"maxVersions":{"description":"Set the maximum number of versions, limited by the account settings defaults.\n","type":"string"},"name":{"description":"Secret name\n","type":"string"},"passwordLength":{"description":"The length of the password to be generated\n","type":"string"},"rotatedPassword":{"description":"Rotated-username password (relevant only for rotator-type=password)\n","secret":true,"type":"string"},"rotatedSecretSplunkId":{"description":"The ID of this resource.\n","type":"string"},"rotatedUsername":{"description":"Username to be rotated (relevant only for rotator-type=password)\n","type":"string"},"rotationEventIns":{"description":"How many days before the rotation of the item would you like to be notified\n","items":{"type":"string"},"type":"array"},"rotationHour":{"description":"The Hour of the rotation in UTC\n","type":"number"},"rotationInterval":{"description":"The number of days to wait between every automatic key rotation (1-365)\n","type":"string"},"rotatorType":{"description":"The rotator type. options: [target/password/token/hec-token]\n","type":"string"},"splunkToken":{"description":"Current Splunk authentication token to store (relevant only for rotator-type=token)\n","secret":true,"type":"string"},"tags":{"description":"List of the tags attached to this secret. To specify multiple tags use argument multiple times: -t Tag1 -t Tag2\n","items":{"type":"string"},"type":"array"},"targetName":{"description":"The target name to associate\n","type":"string"},"tokenOwner":{"description":"Splunk token owner username (relevant only for rotator-type=token)\n","type":"string"}},"required":["key","maxVersions","name","rotatedSecretSplunkId","rotatorType","targetName"],"requiredInputs":["rotatorType","targetName"],"stateInputs":{"description":"Input properties used for looking up and filtering RotatedSecretSplunk resources.\n","properties":{"audience":{"description":"Token audience for Splunk token creation (required for rotator-type=token)\n","type":"string"},"authenticationCredentials":{"description":"The credentials to connect with use-user-creds/use-target-creds\n","type":"string"},"autoRotate":{"description":"Whether to automatically rotate every --rotation-interval days, or disable existing automatic rotation [true/false]\n","type":"string"},"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"expirationDate":{"description":"Token expiration date in YYYY-MM-DD format (relevant only for rotator-type=token when manual rotation is selected)\n","type":"string"},"hecToken":{"description":"Current Splunk HEC token value to store (relevant only for rotator-type=hec-token)\n","secret":true,"type":"string"},"hecTokenName":{"description":"Splunk HEC input name to manage (required for rotator-type=hec-token)\n","type":"string"},"itemCustomFields":{"additionalProperties":{"type":"string"},"description":"Additional custom fields to associate with the item\n","type":"object"},"keepPrevVersion":{"description":"Whether to keep previous version [true/false]. If not set, use default according to account settings\n","type":"string"},"key":{"description":"The name of a key that is used to encrypt the secret value (if empty, the account default protectionKey key will be used)\n","type":"string"},"maxVersions":{"description":"Set the maximum number of versions, limited by the account settings defaults.\n","type":"string"},"name":{"description":"Secret name\n","type":"string"},"passwordLength":{"description":"The length of the password to be generated\n","type":"string"},"rotatedPassword":{"description":"Rotated-username password (relevant only for rotator-type=password)\n","secret":true,"type":"string"},"rotatedSecretSplunkId":{"description":"The ID of this resource.\n","type":"string"},"rotatedUsername":{"description":"Username to be rotated (relevant only for rotator-type=password)\n","type":"string"},"rotationEventIns":{"description":"How many days before the rotation of the item would you like to be notified\n","items":{"type":"string"},"type":"array"},"rotationHour":{"description":"The Hour of the rotation in UTC\n","type":"number"},"rotationInterval":{"description":"The number of days to wait between every automatic key rotation (1-365)\n","type":"string"},"rotatorType":{"description":"The rotator type. options: [target/password/token/hec-token]\n","type":"string"},"splunkToken":{"description":"Current Splunk authentication token to store (relevant only for rotator-type=token)\n","secret":true,"type":"string"},"tags":{"description":"List of the tags attached to this secret. To specify multiple tags use argument multiple times: -t Tag1 -t Tag2\n","items":{"type":"string"},"type":"array"},"targetName":{"description":"The target name to associate\n","type":"string"},"tokenOwner":{"description":"Splunk token owner username (relevant only for rotator-type=token)\n","type":"string"}},"type":"object"},"type":"object"},"akeyless:index/rotatedSecretSsh:RotatedSecretSsh":{"description":"Ssh rotated secret resource\n","inputProperties":{"authenticationCredentials":{"description":"The credentials to connect with use-self-creds/use-target-creds\n","type":"string"},"autoRotate":{"description":"Whether to automatically rotate every --rotation-interval days, or disable existing automatic rotation\n","type":"string"},"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"itemCustomFields":{"additionalProperties":{"type":"string"},"description":"Additional custom fields to associate with the item\n","type":"object"},"keepPrevVersion":{"description":"Whether to keep previous version [true/false]. If not set, use default according to account settings\n","type":"string"},"key":{"description":"The name of a key that is used to encrypt the secret value (if empty, the account default protectionKey key will be used)\n","type":"string"},"keyDataBase64":{"description":"Private key file contents encoded using base64\n","type":"string"},"maxVersions":{"description":"Set the maximum number of versions, limited by the account settings defaults\n","type":"string"},"name":{"description":"Secret name\n","type":"string"},"passwordLength":{"description":"The length of the password to be generated\n","type":"string"},"publicKeyRemotePath":{"description":"The path to the public key that will be rotated on the server\n","type":"string"},"rotateAfterDisconnect":{"description":"Rotate the value of the secret after SRA session ends [true/false]\n","type":"string"},"rotatedPassword":{"description":"rotated-username password (relevant only for rotator-type=password)\n","type":"string"},"rotatedSecretSshId":{"description":"The ID of this resource.\n","type":"string"},"rotatedUsername":{"description":"username to be rotated, if selected use-self-creds at rotator-creds-type, this username will try to rotate it's own password, if use-target-creds is selected, target credentials will be use to rotate the rotated-password (relevant only for rotator-type=password)\n","type":"string"},"rotationEventIns":{"description":"How many days before the rotation of the item would you like to be notified\n","items":{"type":"string"},"type":"array"},"rotationHour":{"description":"The Hour of the rotation in UTC\n","type":"number"},"rotationInterval":{"description":"The number of days to wait between every automatic key rotation (1-365)\n","type":"string"},"rotatorCustomCmd":{"description":"Custom rotation command\n","type":"string"},"rotatorType":{"description":"The rotator type. options: [target/password/key]\n","type":"string"},"samePassword":{"description":"Rotate same password for each host from the Linked Target (relevant only for Linked Target)\n","type":"string"},"secureAccessAllowExternalUser":{"description":"Allow providing external user for a domain users\n","type":"boolean"},"secureAccessCertificateIssuer":{"description":"Path to the SSH Certificate Issuer for your Akeyless Secure Access\n","type":"string"},"secureAccessEnable":{"description":"Enable/Disable secure remote access [true/false]\n","type":"string"},"secureAccessHosts":{"description":"Target servers for connections (In case of Linked Target association, host(s) will inherit Linked Target hosts - Relevant only for Dynamic Secrets/producers)\n","items":{"type":"string"},"type":"array"},"secureAccessRdpDomain":{"description":"Default domain name server. i.e. microsoft.com\n","type":"string"},"secureAccessRdpUser":{"description":"Override the RDP Domain username\n","type":"string"},"secureAccessSshUser":{"description":"Override the SSH username as indicated in SSH Certificate Issuer\n","type":"string"},"secureAccessTargetType":{"description":"Specify target type. Options are ssh or rdp\n","type":"string"},"tags":{"description":"List of the tags attached to this secret. To specify multiple tags use argument multiple times: -t Tag1 -t Tag2\n","items":{"type":"string"},"type":"array"},"targetName":{"description":"The target name to associate\n","type":"string"}},"properties":{"authenticationCredentials":{"description":"The credentials to connect with use-self-creds/use-target-creds\n","type":"string"},"autoRotate":{"description":"Whether to automatically rotate every --rotation-interval days, or disable existing automatic rotation\n","type":"string"},"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"itemCustomFields":{"additionalProperties":{"type":"string"},"description":"Additional custom fields to associate with the item\n","type":"object"},"keepPrevVersion":{"description":"Whether to keep previous version [true/false]. If not set, use default according to account settings\n","type":"string"},"key":{"description":"The name of a key that is used to encrypt the secret value (if empty, the account default protectionKey key will be used)\n","type":"string"},"keyDataBase64":{"description":"Private key file contents encoded using base64\n","type":"string"},"maxVersions":{"description":"Set the maximum number of versions, limited by the account settings defaults\n","type":"string"},"name":{"description":"Secret name\n","type":"string"},"passwordLength":{"description":"The length of the password to be generated\n","type":"string"},"publicKeyRemotePath":{"description":"The path to the public key that will be rotated on the server\n","type":"string"},"rotateAfterDisconnect":{"description":"Rotate the value of the secret after SRA session ends [true/false]\n","type":"string"},"rotatedPassword":{"description":"rotated-username password (relevant only for rotator-type=password)\n","type":"string"},"rotatedSecretSshId":{"description":"The ID of this resource.\n","type":"string"},"rotatedUsername":{"description":"username to be rotated, if selected use-self-creds at rotator-creds-type, this username will try to rotate it's own password, if use-target-creds is selected, target credentials will be use to rotate the rotated-password (relevant only for rotator-type=password)\n","type":"string"},"rotationEventIns":{"description":"How many days before the rotation of the item would you like to be notified\n","items":{"type":"string"},"type":"array"},"rotationHour":{"description":"The Hour of the rotation in UTC\n","type":"number"},"rotationInterval":{"description":"The number of days to wait between every automatic key rotation (1-365)\n","type":"string"},"rotatorCustomCmd":{"description":"Custom rotation command\n","type":"string"},"rotatorType":{"description":"The rotator type. options: [target/password/key]\n","type":"string"},"samePassword":{"description":"Rotate same password for each host from the Linked Target (relevant only for Linked Target)\n","type":"string"},"secureAccessAllowExternalUser":{"description":"Allow providing external user for a domain users\n","type":"boolean"},"secureAccessCertificateIssuer":{"description":"Path to the SSH Certificate Issuer for your Akeyless Secure Access\n","type":"string"},"secureAccessEnable":{"description":"Enable/Disable secure remote access [true/false]\n","type":"string"},"secureAccessHosts":{"description":"Target servers for connections (In case of Linked Target association, host(s) will inherit Linked Target hosts - Relevant only for Dynamic Secrets/producers)\n","items":{"type":"string"},"type":"array"},"secureAccessRdpDomain":{"description":"Default domain name server. i.e. microsoft.com\n","type":"string"},"secureAccessRdpUser":{"description":"Override the RDP Domain username\n","type":"string"},"secureAccessSshUser":{"description":"Override the SSH username as indicated in SSH Certificate Issuer\n","type":"string"},"secureAccessTargetType":{"description":"Specify target type. Options are ssh or rdp\n","type":"string"},"tags":{"description":"List of the tags attached to this secret. To specify multiple tags use argument multiple times: -t Tag1 -t Tag2\n","items":{"type":"string"},"type":"array"},"targetName":{"description":"The target name to associate\n","type":"string"}},"required":["key","maxVersions","name","rotatedPassword","rotatedSecretSshId","rotatedUsername","rotatorType","targetName"],"requiredInputs":["rotatorType","targetName"],"stateInputs":{"description":"Input properties used for looking up and filtering RotatedSecretSsh resources.\n","properties":{"authenticationCredentials":{"description":"The credentials to connect with use-self-creds/use-target-creds\n","type":"string"},"autoRotate":{"description":"Whether to automatically rotate every --rotation-interval days, or disable existing automatic rotation\n","type":"string"},"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"itemCustomFields":{"additionalProperties":{"type":"string"},"description":"Additional custom fields to associate with the item\n","type":"object"},"keepPrevVersion":{"description":"Whether to keep previous version [true/false]. If not set, use default according to account settings\n","type":"string"},"key":{"description":"The name of a key that is used to encrypt the secret value (if empty, the account default protectionKey key will be used)\n","type":"string"},"keyDataBase64":{"description":"Private key file contents encoded using base64\n","type":"string"},"maxVersions":{"description":"Set the maximum number of versions, limited by the account settings defaults\n","type":"string"},"name":{"description":"Secret name\n","type":"string"},"passwordLength":{"description":"The length of the password to be generated\n","type":"string"},"publicKeyRemotePath":{"description":"The path to the public key that will be rotated on the server\n","type":"string"},"rotateAfterDisconnect":{"description":"Rotate the value of the secret after SRA session ends [true/false]\n","type":"string"},"rotatedPassword":{"description":"rotated-username password (relevant only for rotator-type=password)\n","type":"string"},"rotatedSecretSshId":{"description":"The ID of this resource.\n","type":"string"},"rotatedUsername":{"description":"username to be rotated, if selected use-self-creds at rotator-creds-type, this username will try to rotate it's own password, if use-target-creds is selected, target credentials will be use to rotate the rotated-password (relevant only for rotator-type=password)\n","type":"string"},"rotationEventIns":{"description":"How many days before the rotation of the item would you like to be notified\n","items":{"type":"string"},"type":"array"},"rotationHour":{"description":"The Hour of the rotation in UTC\n","type":"number"},"rotationInterval":{"description":"The number of days to wait between every automatic key rotation (1-365)\n","type":"string"},"rotatorCustomCmd":{"description":"Custom rotation command\n","type":"string"},"rotatorType":{"description":"The rotator type. options: [target/password/key]\n","type":"string"},"samePassword":{"description":"Rotate same password for each host from the Linked Target (relevant only for Linked Target)\n","type":"string"},"secureAccessAllowExternalUser":{"description":"Allow providing external user for a domain users\n","type":"boolean"},"secureAccessCertificateIssuer":{"description":"Path to the SSH Certificate Issuer for your Akeyless Secure Access\n","type":"string"},"secureAccessEnable":{"description":"Enable/Disable secure remote access [true/false]\n","type":"string"},"secureAccessHosts":{"description":"Target servers for connections (In case of Linked Target association, host(s) will inherit Linked Target hosts - Relevant only for Dynamic Secrets/producers)\n","items":{"type":"string"},"type":"array"},"secureAccessRdpDomain":{"description":"Default domain name server. i.e. microsoft.com\n","type":"string"},"secureAccessRdpUser":{"description":"Override the RDP Domain username\n","type":"string"},"secureAccessSshUser":{"description":"Override the SSH username as indicated in SSH Certificate Issuer\n","type":"string"},"secureAccessTargetType":{"description":"Specify target type. Options are ssh or rdp\n","type":"string"},"tags":{"description":"List of the tags attached to this secret. To specify multiple tags use argument multiple times: -t Tag1 -t Tag2\n","items":{"type":"string"},"type":"array"},"targetName":{"description":"The target name to associate\n","type":"string"}},"type":"object"},"type":"object"},"akeyless:index/rotatedSecretSync:RotatedSecretSync":{"description":"Sync Rotated Secret with Universal Secrets Connector resource\n","inputProperties":{"deleteFromUsc":{"description":"Delete the secret from the remote target USC as well\n","type":"boolean"},"deleteRemote":{"description":"Delete the secret from remote secret manager (for association create/update)\n","type":"boolean"},"filterSecretValue":{"description":"JQ expression to filter or transform the secret value\n","type":"string"},"name":{"description":"Rotated Secret name\n","type":"string"},"namespace":{"type":"string"},"remoteSecretName":{"description":"Remote Secret Name that will be synced on the remote endpoint\n","type":"string"},"rotatedSecretSyncId":{"description":"The ID of this resource.\n","type":"string"},"uscName":{"description":"Universal Secret Connector name\n","type":"string"}},"properties":{"deleteFromUsc":{"description":"Delete the secret from the remote target USC as well\n","type":"boolean"},"deleteRemote":{"description":"Delete the secret from remote secret manager (for association create/update)\n","type":"boolean"},"filterSecretValue":{"description":"JQ expression to filter or transform the secret value\n","type":"string"},"name":{"description":"Rotated Secret name\n","type":"string"},"namespace":{"type":"string"},"remoteSecretName":{"description":"Remote Secret Name that will be synced on the remote endpoint\n","type":"string"},"rotatedSecretSyncId":{"description":"The ID of this resource.\n","type":"string"},"uscName":{"description":"Universal Secret Connector name\n","type":"string"}},"required":["name","remoteSecretName","rotatedSecretSyncId","uscName"],"requiredInputs":["remoteSecretName","uscName"],"stateInputs":{"description":"Input properties used for looking up and filtering RotatedSecretSync resources.\n","properties":{"deleteFromUsc":{"description":"Delete the secret from the remote target USC as well\n","type":"boolean"},"deleteRemote":{"description":"Delete the secret from remote secret manager (for association create/update)\n","type":"boolean"},"filterSecretValue":{"description":"JQ expression to filter or transform the secret value\n","type":"string"},"name":{"description":"Rotated Secret name\n","type":"string"},"namespace":{"type":"string"},"remoteSecretName":{"description":"Remote Secret Name that will be synced on the remote endpoint\n","type":"string"},"rotatedSecretSyncId":{"description":"The ID of this resource.\n","type":"string"},"uscName":{"description":"Universal Secret Connector name\n","type":"string"}},"type":"object"},"type":"object"},"akeyless:index/rotatedSecretWindows:RotatedSecretWindows":{"description":"Windows rotated secret resource\n","inputProperties":{"authenticationCredentials":{"description":"The credentials to connect with use-self-creds/use-target-creds\n","type":"string"},"autoRotate":{"description":"Whether to automatically rotate every --rotation-interval days, or disable existing automatic rotation\n","type":"string"},"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"itemCustomFields":{"additionalProperties":{"type":"string"},"description":"Additional custom fields to associate with the item\n","type":"object"},"keepPrevVersion":{"description":"Whether to keep previous version [true/false]. If not set, use default according to account settings\n","type":"string"},"key":{"description":"The name of a key that is used to encrypt the secret value (if empty, the account default protectionKey key will be used)\n","type":"string"},"maxVersions":{"description":"Set the maximum number of versions, limited by the account settings defaults\n","type":"string"},"name":{"description":"Secret name\n","type":"string"},"passwordLength":{"description":"The length of the password to be generated\n","type":"string"},"rotateAfterDisconnect":{"description":"Rotate the value of the secret after SRA session ends [true/false]\n","type":"string"},"rotatedPassword":{"description":"rotated-username password (relevant only for rotator-type=password)\n","type":"string"},"rotatedSecretWindowsId":{"description":"The ID of this resource.\n","type":"string"},"rotatedUsername":{"description":"username to be rotated, if selected use-self-creds at rotator-creds-type, this username will try to rotate it's own password, if use-target-creds is selected, target credentials will be use to rotate the rotated-password (relevant only for rotator-type=password)\n","type":"string"},"rotationEventIns":{"description":"How many days before the rotation of the item would you like to be notified\n","items":{"type":"string"},"type":"array"},"rotationHour":{"description":"The Hour of the rotation in UTC\n","type":"number"},"rotationInterval":{"description":"The number of days to wait between every automatic rotation (1-365),custom rotator interval will be set in minutes\n","type":"string"},"rotatorType":{"description":"The rotator type [target/password]\n","type":"string"},"samePassword":{"description":"Rotate same password for each host from the Linked Target (relevant only for Linked Target)\n","type":"string"},"secureAccessAllowExternalUser":{"description":"Allow providing external user for a domain users\n","type":"boolean"},"secureAccessCertificateIssuer":{"description":"Path to the SSH Certificate Issuer for your Akeyless Secure Access\n","type":"string"},"secureAccessEnable":{"description":"Enable/Disable secure remote access [true/false]\n","type":"string"},"secureAccessHosts":{"description":"Target servers for connections (In case of Linked Target association, host(s) will inherit Linked Target hosts - Relevant only for Dynamic Secrets/producers)\n","items":{"type":"string"},"type":"array"},"secureAccessRdpDomain":{"description":"Default domain name server. i.e. microsoft.com\n","type":"string"},"secureAccessRdpUser":{"description":"Override the RDP Domain username\n","type":"string"},"tags":{"description":"List of the tags attached to this secret. To specify multiple tags use argument multiple times: -t Tag1 -t Tag2\n","items":{"type":"string"},"type":"array"},"targetName":{"description":"The target name to associate\n","type":"string"}},"properties":{"authenticationCredentials":{"description":"The credentials to connect with use-self-creds/use-target-creds\n","type":"string"},"autoRotate":{"description":"Whether to automatically rotate every --rotation-interval days, or disable existing automatic rotation\n","type":"string"},"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"itemCustomFields":{"additionalProperties":{"type":"string"},"description":"Additional custom fields to associate with the item\n","type":"object"},"keepPrevVersion":{"description":"Whether to keep previous version [true/false]. If not set, use default according to account settings\n","type":"string"},"key":{"description":"The name of a key that is used to encrypt the secret value (if empty, the account default protectionKey key will be used)\n","type":"string"},"maxVersions":{"description":"Set the maximum number of versions, limited by the account settings defaults\n","type":"string"},"name":{"description":"Secret name\n","type":"string"},"passwordLength":{"description":"The length of the password to be generated\n","type":"string"},"rotateAfterDisconnect":{"description":"Rotate the value of the secret after SRA session ends [true/false]\n","type":"string"},"rotatedPassword":{"description":"rotated-username password (relevant only for rotator-type=password)\n","type":"string"},"rotatedSecretWindowsId":{"description":"The ID of this resource.\n","type":"string"},"rotatedUsername":{"description":"username to be rotated, if selected use-self-creds at rotator-creds-type, this username will try to rotate it's own password, if use-target-creds is selected, target credentials will be use to rotate the rotated-password (relevant only for rotator-type=password)\n","type":"string"},"rotationEventIns":{"description":"How many days before the rotation of the item would you like to be notified\n","items":{"type":"string"},"type":"array"},"rotationHour":{"description":"The Hour of the rotation in UTC\n","type":"number"},"rotationInterval":{"description":"The number of days to wait between every automatic rotation (1-365),custom rotator interval will be set in minutes\n","type":"string"},"rotatorType":{"description":"The rotator type [target/password]\n","type":"string"},"samePassword":{"description":"Rotate same password for each host from the Linked Target (relevant only for Linked Target)\n","type":"string"},"secureAccessAllowExternalUser":{"description":"Allow providing external user for a domain users\n","type":"boolean"},"secureAccessCertificateIssuer":{"description":"Path to the SSH Certificate Issuer for your Akeyless Secure Access\n","type":"string"},"secureAccessEnable":{"description":"Enable/Disable secure remote access [true/false]\n","type":"string"},"secureAccessHosts":{"description":"Target servers for connections (In case of Linked Target association, host(s) will inherit Linked Target hosts - Relevant only for Dynamic Secrets/producers)\n","items":{"type":"string"},"type":"array"},"secureAccessRdpDomain":{"description":"Default domain name server. i.e. microsoft.com\n","type":"string"},"secureAccessRdpUser":{"description":"Override the RDP Domain username\n","type":"string"},"tags":{"description":"List of the tags attached to this secret. To specify multiple tags use argument multiple times: -t Tag1 -t Tag2\n","items":{"type":"string"},"type":"array"},"targetName":{"description":"The target name to associate\n","type":"string"}},"required":["key","maxVersions","name","rotatedPassword","rotatedSecretWindowsId","rotatedUsername","rotatorType","targetName"],"requiredInputs":["rotatorType","targetName"],"stateInputs":{"description":"Input properties used for looking up and filtering RotatedSecretWindows resources.\n","properties":{"authenticationCredentials":{"description":"The credentials to connect with use-self-creds/use-target-creds\n","type":"string"},"autoRotate":{"description":"Whether to automatically rotate every --rotation-interval days, or disable existing automatic rotation\n","type":"string"},"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"itemCustomFields":{"additionalProperties":{"type":"string"},"description":"Additional custom fields to associate with the item\n","type":"object"},"keepPrevVersion":{"description":"Whether to keep previous version [true/false]. If not set, use default according to account settings\n","type":"string"},"key":{"description":"The name of a key that is used to encrypt the secret value (if empty, the account default protectionKey key will be used)\n","type":"string"},"maxVersions":{"description":"Set the maximum number of versions, limited by the account settings defaults\n","type":"string"},"name":{"description":"Secret name\n","type":"string"},"passwordLength":{"description":"The length of the password to be generated\n","type":"string"},"rotateAfterDisconnect":{"description":"Rotate the value of the secret after SRA session ends [true/false]\n","type":"string"},"rotatedPassword":{"description":"rotated-username password (relevant only for rotator-type=password)\n","type":"string"},"rotatedSecretWindowsId":{"description":"The ID of this resource.\n","type":"string"},"rotatedUsername":{"description":"username to be rotated, if selected use-self-creds at rotator-creds-type, this username will try to rotate it's own password, if use-target-creds is selected, target credentials will be use to rotate the rotated-password (relevant only for rotator-type=password)\n","type":"string"},"rotationEventIns":{"description":"How many days before the rotation of the item would you like to be notified\n","items":{"type":"string"},"type":"array"},"rotationHour":{"description":"The Hour of the rotation in UTC\n","type":"number"},"rotationInterval":{"description":"The number of days to wait between every automatic rotation (1-365),custom rotator interval will be set in minutes\n","type":"string"},"rotatorType":{"description":"The rotator type [target/password]\n","type":"string"},"samePassword":{"description":"Rotate same password for each host from the Linked Target (relevant only for Linked Target)\n","type":"string"},"secureAccessAllowExternalUser":{"description":"Allow providing external user for a domain users\n","type":"boolean"},"secureAccessCertificateIssuer":{"description":"Path to the SSH Certificate Issuer for your Akeyless Secure Access\n","type":"string"},"secureAccessEnable":{"description":"Enable/Disable secure remote access [true/false]\n","type":"string"},"secureAccessHosts":{"description":"Target servers for connections (In case of Linked Target association, host(s) will inherit Linked Target hosts - Relevant only for Dynamic Secrets/producers)\n","items":{"type":"string"},"type":"array"},"secureAccessRdpDomain":{"description":"Default domain name server. i.e. microsoft.com\n","type":"string"},"secureAccessRdpUser":{"description":"Override the RDP Domain username\n","type":"string"},"tags":{"description":"List of the tags attached to this secret. To specify multiple tags use argument multiple times: -t Tag1 -t Tag2\n","items":{"type":"string"},"type":"array"},"targetName":{"description":"The target name to associate\n","type":"string"}},"type":"object"},"type":"object"},"akeyless:index/sshCertIssuer:SshCertIssuer":{"description":"SSH Cert Issuer  resource\n","inputProperties":{"allowedUsers":{"description":"Users allowed to fetch the certificate, e.g root,ubuntu\n","type":"string"},"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"boolean"},"description":{"description":"Description of the object\n","type":"string"},"extensions":{"additionalProperties":{"type":"string"},"description":"Signed certificates with extensions, e.g permit-port-forwarding=\"\"\n","type":"object"},"fixedUserClaimKeyname":{"description":"For externally provided users, denotes the key-name of IdP claim to extract the username from (relevant only for external-username=true)\n","type":"string"},"hostProvider":{"description":"Host provider type [explicit/target], Default Host provider is explicit, Relevant only for Secure Remote Access of ssh cert issuer, ldap rotated secret and ldap dynamic secret\n","type":"string"},"itemCustomFields":{"additionalProperties":{"type":"string"},"description":"Additional custom fields to associate with the item\n","type":"object"},"name":{"description":"SSH certificate issuer name\n","type":"string"},"principals":{"description":"Signed certificates with principal, e.g example*role1,example*role2\n","type":"string"},"providerType":{"description":"Provider type\n","type":"string"},"secureAccessApi":{"description":"Secure Access SSH control API endpoint. E.g. https://my.sra-server:9900\n","type":"string"},"secureAccessBastionApi":{"description":"Deprecated. use secure-access-api\n","type":"string"},"secureAccessBastionSsh":{"description":"Deprecated. use secure-access-ssh\n","type":"string"},"secureAccessEnable":{"description":"Enable/Disable secure remote access [true/false]\n","type":"string"},"secureAccessEnforceHostsRestriction":{"description":"Enable this flag to enforce connections only to the hosts listed in --secure-access-host\n","type":"boolean"},"secureAccessGateway":{"description":"Secure Access Gateway\n","type":"string"},"secureAccessHosts":{"description":"Target servers for connections (In case of Linked Target association, host(s) will inherit Linked Target hosts - Relevant only for Dynamic Secrets/producers)\n","items":{"type":"string"},"type":"array"},"secureAccessSsh":{"description":"Bastion's SSH server. E.g. my.sra-server:22\n","type":"string"},"secureAccessSshCredsUser":{"description":"SSH username to connect to target server, must be in 'Allowed Users' list\n","type":"string"},"secureAccessUseInternalBastion":{"description":"Deprecated. Use secure-access-use-internal-ssh-access\n","type":"boolean"},"secureAccessUseInternalSshAccess":{"description":"Use internal SSH Access\n","type":"boolean"},"signerKeyName":{"description":"A key to sign the certificate with\n","type":"string"},"sshCertIssuerId":{"description":"The ID of this resource.\n","type":"string"},"tags":{"description":"List of the tags attached to this key\n","items":{"type":"string"},"type":"array"},"targets":{"description":"A list of linked targets to be associated, Relevant only for Secure Remote Access for ssh cert issuer, ldap rotated secret and ldap dynamic secret, To specify multiple targets use argument multiple times\n","items":{"type":"string"},"type":"array"},"ttl":{"description":"The requested Time To Live for the certificate, in seconds\n","type":"number"}},"properties":{"allowedUsers":{"description":"Users allowed to fetch the certificate, e.g root,ubuntu\n","type":"string"},"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"boolean"},"description":{"description":"Description of the object\n","type":"string"},"extensions":{"additionalProperties":{"type":"string"},"description":"Signed certificates with extensions, e.g permit-port-forwarding=\"\"\n","type":"object"},"fixedUserClaimKeyname":{"description":"For externally provided users, denotes the key-name of IdP claim to extract the username from (relevant only for external-username=true)\n","type":"string"},"hostProvider":{"description":"Host provider type [explicit/target], Default Host provider is explicit, Relevant only for Secure Remote Access of ssh cert issuer, ldap rotated secret and ldap dynamic secret\n","type":"string"},"itemCustomFields":{"additionalProperties":{"type":"string"},"description":"Additional custom fields to associate with the item\n","type":"object"},"name":{"description":"SSH certificate issuer name\n","type":"string"},"principals":{"description":"Signed certificates with principal, e.g example*role1,example*role2\n","type":"string"},"providerType":{"description":"Provider type\n","type":"string"},"secureAccessApi":{"description":"Secure Access SSH control API endpoint. E.g. https://my.sra-server:9900\n","type":"string"},"secureAccessBastionApi":{"description":"Deprecated. use secure-access-api\n","type":"string"},"secureAccessBastionSsh":{"description":"Deprecated. use secure-access-ssh\n","type":"string"},"secureAccessEnable":{"description":"Enable/Disable secure remote access [true/false]\n","type":"string"},"secureAccessEnforceHostsRestriction":{"description":"Enable this flag to enforce connections only to the hosts listed in --secure-access-host\n","type":"boolean"},"secureAccessGateway":{"description":"Secure Access Gateway\n","type":"string"},"secureAccessHosts":{"description":"Target servers for connections (In case of Linked Target association, host(s) will inherit Linked Target hosts - Relevant only for Dynamic Secrets/producers)\n","items":{"type":"string"},"type":"array"},"secureAccessSsh":{"description":"Bastion's SSH server. E.g. my.sra-server:22\n","type":"string"},"secureAccessSshCredsUser":{"description":"SSH username to connect to target server, must be in 'Allowed Users' list\n","type":"string"},"secureAccessUseInternalBastion":{"description":"Deprecated. Use secure-access-use-internal-ssh-access\n","type":"boolean"},"secureAccessUseInternalSshAccess":{"description":"Use internal SSH Access\n","type":"boolean"},"signerKeyName":{"description":"A key to sign the certificate with\n","type":"string"},"sshCertIssuerId":{"description":"The ID of this resource.\n","type":"string"},"tags":{"description":"List of the tags attached to this key\n","items":{"type":"string"},"type":"array"},"targets":{"description":"A list of linked targets to be associated, Relevant only for Secure Remote Access for ssh cert issuer, ldap rotated secret and ldap dynamic secret, To specify multiple targets use argument multiple times\n","items":{"type":"string"},"type":"array"},"ttl":{"description":"The requested Time To Live for the certificate, in seconds\n","type":"number"}},"required":["allowedUsers","name","signerKeyName","sshCertIssuerId","ttl"],"requiredInputs":["allowedUsers","signerKeyName","ttl"],"stateInputs":{"description":"Input properties used for looking up and filtering SshCertIssuer resources.\n","properties":{"allowedUsers":{"description":"Users allowed to fetch the certificate, e.g root,ubuntu\n","type":"string"},"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"boolean"},"description":{"description":"Description of the object\n","type":"string"},"extensions":{"additionalProperties":{"type":"string"},"description":"Signed certificates with extensions, e.g permit-port-forwarding=\"\"\n","type":"object"},"fixedUserClaimKeyname":{"description":"For externally provided users, denotes the key-name of IdP claim to extract the username from (relevant only for external-username=true)\n","type":"string"},"hostProvider":{"description":"Host provider type [explicit/target], Default Host provider is explicit, Relevant only for Secure Remote Access of ssh cert issuer, ldap rotated secret and ldap dynamic secret\n","type":"string"},"itemCustomFields":{"additionalProperties":{"type":"string"},"description":"Additional custom fields to associate with the item\n","type":"object"},"name":{"description":"SSH certificate issuer name\n","type":"string"},"principals":{"description":"Signed certificates with principal, e.g example*role1,example*role2\n","type":"string"},"providerType":{"description":"Provider type\n","type":"string"},"secureAccessApi":{"description":"Secure Access SSH control API endpoint. E.g. https://my.sra-server:9900\n","type":"string"},"secureAccessBastionApi":{"description":"Deprecated. use secure-access-api\n","type":"string"},"secureAccessBastionSsh":{"description":"Deprecated. use secure-access-ssh\n","type":"string"},"secureAccessEnable":{"description":"Enable/Disable secure remote access [true/false]\n","type":"string"},"secureAccessEnforceHostsRestriction":{"description":"Enable this flag to enforce connections only to the hosts listed in --secure-access-host\n","type":"boolean"},"secureAccessGateway":{"description":"Secure Access Gateway\n","type":"string"},"secureAccessHosts":{"description":"Target servers for connections (In case of Linked Target association, host(s) will inherit Linked Target hosts - Relevant only for Dynamic Secrets/producers)\n","items":{"type":"string"},"type":"array"},"secureAccessSsh":{"description":"Bastion's SSH server. E.g. my.sra-server:22\n","type":"string"},"secureAccessSshCredsUser":{"description":"SSH username to connect to target server, must be in 'Allowed Users' list\n","type":"string"},"secureAccessUseInternalBastion":{"description":"Deprecated. Use secure-access-use-internal-ssh-access\n","type":"boolean"},"secureAccessUseInternalSshAccess":{"description":"Use internal SSH Access\n","type":"boolean"},"signerKeyName":{"description":"A key to sign the certificate with\n","type":"string"},"sshCertIssuerId":{"description":"The ID of this resource.\n","type":"string"},"tags":{"description":"List of the tags attached to this key\n","items":{"type":"string"},"type":"array"},"targets":{"description":"A list of linked targets to be associated, Relevant only for Secure Remote Access for ssh cert issuer, ldap rotated secret and ldap dynamic secret, To specify multiple targets use argument multiple times\n","items":{"type":"string"},"type":"array"},"ttl":{"description":"The requested Time To Live for the certificate, in seconds\n","type":"number"}},"type":"object"},"type":"object"},"akeyless:index/staticSecret:StaticSecret":{"description":"Static secret Resource\n\n## Example Usage\n\n<!--Start PulumiCodeChooser -->\n```typescript\nimport * as pulumi from \"@pulumi/pulumi\";\nimport * as akeyless from \"@pulumi/akeyless\";\n\nconst secret = new akeyless.StaticSecret(\"secret\", {\n    path: \"terraform/secret\",\n    value: \"this value was set from terraform\",\n});\n```\n```python\nimport pulumi\nimport pulumi_akeyless as akeyless\n\nsecret = akeyless.StaticSecret(\"secret\",\n    path=\"terraform/secret\",\n    value=\"this value was set from terraform\")\n```\n```csharp\nusing System.Collections.Generic;\nusing System.Linq;\nusing Pulumi;\nusing Akeyless = Pulumi.Akeyless;\n\nreturn await Deployment.RunAsync(() => \n{\n    var secret = new Akeyless.StaticSecret(\"secret\", new()\n    {\n        Path = \"terraform/secret\",\n        Value = \"this value was set from terraform\",\n    });\n\n});\n```\n```go\npackage main\n\nimport (\n\t\"github.com/pulumi/pulumi-terraform-provider/sdks/go/akeyless/v2/akeyless\"\n\t\"github.com/pulumi/pulumi/sdk/v3/go/pulumi\"\n)\n\nfunc main() {\n\tpulumi.Run(func(ctx *pulumi.Context) error {\n\t\t_, err := akeyless.NewStaticSecret(ctx, \"secret\", &akeyless.StaticSecretArgs{\n\t\t\tPath:  pulumi.String(\"terraform/secret\"),\n\t\t\tValue: pulumi.String(\"this value was set from terraform\"),\n\t\t})\n\t\tif err != nil {\n\t\t\treturn err\n\t\t}\n\t\treturn nil\n\t})\n}\n```\n```java\npackage generated_program;\n\nimport com.pulumi.Context;\nimport com.pulumi.Pulumi;\nimport com.pulumi.core.Output;\nimport com.pulumi.akeyless.StaticSecret;\nimport com.pulumi.akeyless.StaticSecretArgs;\nimport java.util.List;\nimport java.util.ArrayList;\nimport java.util.Map;\nimport java.io.File;\nimport java.nio.file.Files;\nimport java.nio.file.Paths;\n\npublic class App {\n    public static void main(String[] args) {\n        Pulumi.run(App::stack);\n    }\n\n    public static void stack(Context ctx) {\n        var secret = new StaticSecret(\"secret\", StaticSecretArgs.builder()\n            .path(\"terraform/secret\")\n            .value(\"this value was set from terraform\")\n            .build());\n\n    }\n}\n```\n```yaml\nresources:\n  secret:\n    type: akeyless:StaticSecret\n    properties:\n      path: terraform/secret\n      value: this value was set from terraform\n```\n<!--End PulumiCodeChooser -->\n\n## Import\n\n```sh\n$ pulumi import akeyless:index/staticSecret:StaticSecret example /full-secret-path/and-name-in-akeyless\n```\n\n","inputProperties":{"accessibility":{"description":"For personal password manager\n","type":"string"},"changeEvent":{"description":"Trigger an event when a secret value changed true/false\n","type":"string"},"customField":{"additionalProperties":{"type":"string"},"description":"Additional custom fields to associate with the item (e.g fieldName1=value1) (relevant only for type 'password')\n","secret":true,"type":"object"},"deleteProtection":{"description":"Protection from accidental deletion of this auth method, [true/false]\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"format":{"description":"Secret format text/json/key-value\n","type":"string"},"ignoreCache":{"description":"Retrieve the Secret value without checking the Gateway's cache [true/false]\n","type":"string"},"injectUrls":{"description":"List of URLs associated with the item (relevant only for type 'password')\n","items":{"type":"string"},"type":"array"},"itemCustomFields":{"additionalProperties":{"type":"string"},"description":"Additional custom fields to associate with the item\n","type":"object"},"keepPrevVersion":{"description":"Whether to keep previous version [true/false]. If not set, use default according to account settings\n","type":"string"},"maxVersions":{"description":"Set the maximum number of versions, limited by the account settings defaults\n","type":"string"},"multilineValue":{"description":"The provided value is a multiline value (separated by '\n')\n","type":"boolean"},"password":{"description":"Password value (relevant only for type 'password')\n","secret":true,"type":"string"},"path":{"description":"The path where the secret will be stored.\n","type":"string"},"protectionKey":{"description":"The name of a key that is used to encrypt the secret value (if empty, the account default protectionKey key will be used)\n","type":"string"},"secureAccessCertificateIssuer":{"description":"Path to the SSH Certificate Issuer for your Akeyless Secure Access\n","type":"string"},"secureAccessEnable":{"description":"Enable/Disable secure remote access, [true/false]\n","type":"string"},"secureAccessGateway":{"description":"Secure Remote Access Gateway\n","type":"string"},"secureAccessHosts":{"description":"Target servers for connections., For multiple values repeat this flag.\n","items":{"type":"string"},"type":"array"},"secureAccessRdpUser":{"description":"Remote Desktop Username\n","type":"string"},"secureAccessSshCreds":{"description":"Static-Secret values contains SSH Credentials, either Private Key or Password [password/private-key]\n","type":"string"},"secureAccessSshUser":{"description":"Override the SSH username as indicated in SSH Certificate Issuer\n","type":"string"},"secureAccessUrl":{"description":"Destination URL to inject secrets.\n","type":"string"},"secureAccessWeb":{"description":"Enable Web Secure Remote Access\n","type":"boolean"},"secureAccessWebBrowsing":{"description":"Secure browser via Akeyless's Secure Remote Access (SRA)\n","type":"boolean"},"secureAccessWebProxy":{"description":"Web-Proxy via Akeyless's Secure Remote Access (SRA)\n","type":"boolean"},"staticSecretId":{"description":"The ID of this resource.\n","type":"string"},"tags":{"description":"List of the tags attached to this secret. To specify multiple tags use argument multiple times: -t Tag1 -t Tag2\n","items":{"type":"string"},"type":"array"},"type":{"description":"Secret type [generic/password]\n","type":"string"},"username":{"description":"Username value (relevant only for type 'password')\n","type":"string"},"value":{"description":"The secret content.\n","secret":true,"type":"string"}},"properties":{"accessibility":{"description":"For personal password manager\n","type":"string"},"changeEvent":{"description":"Trigger an event when a secret value changed true/false\n","type":"string"},"customField":{"additionalProperties":{"type":"string"},"description":"Additional custom fields to associate with the item (e.g fieldName1=value1) (relevant only for type 'password')\n","secret":true,"type":"object"},"deleteProtection":{"description":"Protection from accidental deletion of this auth method, [true/false]\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"format":{"description":"Secret format text/json/key-value\n","type":"string"},"ignoreCache":{"description":"Retrieve the Secret value without checking the Gateway's cache [true/false]\n","type":"string"},"injectUrls":{"description":"List of URLs associated with the item (relevant only for type 'password')\n","items":{"type":"string"},"type":"array"},"itemCustomFields":{"additionalProperties":{"type":"string"},"description":"Additional custom fields to associate with the item\n","type":"object"},"keepPrevVersion":{"description":"Whether to keep previous version [true/false]. If not set, use default according to account settings\n","type":"string"},"maxVersions":{"description":"Set the maximum number of versions, limited by the account settings defaults\n","type":"string"},"multilineValue":{"description":"The provided value is a multiline value (separated by '\n')\n","type":"boolean"},"password":{"description":"Password value (relevant only for type 'password')\n","secret":true,"type":"string"},"path":{"description":"The path where the secret will be stored.\n","type":"string"},"protectionKey":{"description":"The name of a key that is used to encrypt the secret value (if empty, the account default protectionKey key will be used)\n","type":"string"},"secureAccessCertificateIssuer":{"description":"Path to the SSH Certificate Issuer for your Akeyless Secure Access\n","type":"string"},"secureAccessEnable":{"description":"Enable/Disable secure remote access, [true/false]\n","type":"string"},"secureAccessGateway":{"description":"Secure Remote Access Gateway\n","type":"string"},"secureAccessHosts":{"description":"Target servers for connections., For multiple values repeat this flag.\n","items":{"type":"string"},"type":"array"},"secureAccessRdpUser":{"description":"Remote Desktop Username\n","type":"string"},"secureAccessSshCreds":{"description":"Static-Secret values contains SSH Credentials, either Private Key or Password [password/private-key]\n","type":"string"},"secureAccessSshUser":{"description":"Override the SSH username as indicated in SSH Certificate Issuer\n","type":"string"},"secureAccessUrl":{"description":"Destination URL to inject secrets.\n","type":"string"},"secureAccessWeb":{"description":"Enable Web Secure Remote Access\n","type":"boolean"},"secureAccessWebBrowsing":{"description":"Secure browser via Akeyless's Secure Remote Access (SRA)\n","type":"boolean"},"secureAccessWebProxy":{"description":"Web-Proxy via Akeyless's Secure Remote Access (SRA)\n","type":"boolean"},"staticSecretId":{"description":"The ID of this resource.\n","type":"string"},"tags":{"description":"List of the tags attached to this secret. To specify multiple tags use argument multiple times: -t Tag1 -t Tag2\n","items":{"type":"string"},"type":"array"},"type":{"description":"Secret type [generic/password]\n","type":"string"},"username":{"description":"Username value (relevant only for type 'password')\n","type":"string"},"value":{"description":"The secret content.\n","secret":true,"type":"string"},"version":{"description":"The version of the secret.\n","type":"number"}},"required":["path","protectionKey","secureAccessWeb","staticSecretId","version"],"requiredInputs":["path"],"stateInputs":{"description":"Input properties used for looking up and filtering StaticSecret resources.\n","properties":{"accessibility":{"description":"For personal password manager\n","type":"string"},"changeEvent":{"description":"Trigger an event when a secret value changed true/false\n","type":"string"},"customField":{"additionalProperties":{"type":"string"},"description":"Additional custom fields to associate with the item (e.g fieldName1=value1) (relevant only for type 'password')\n","secret":true,"type":"object"},"deleteProtection":{"description":"Protection from accidental deletion of this auth method, [true/false]\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"format":{"description":"Secret format text/json/key-value\n","type":"string"},"ignoreCache":{"description":"Retrieve the Secret value without checking the Gateway's cache [true/false]\n","type":"string"},"injectUrls":{"description":"List of URLs associated with the item (relevant only for type 'password')\n","items":{"type":"string"},"type":"array"},"itemCustomFields":{"additionalProperties":{"type":"string"},"description":"Additional custom fields to associate with the item\n","type":"object"},"keepPrevVersion":{"description":"Whether to keep previous version [true/false]. If not set, use default according to account settings\n","type":"string"},"maxVersions":{"description":"Set the maximum number of versions, limited by the account settings defaults\n","type":"string"},"multilineValue":{"description":"The provided value is a multiline value (separated by '\n')\n","type":"boolean"},"password":{"description":"Password value (relevant only for type 'password')\n","secret":true,"type":"string"},"path":{"description":"The path where the secret will be stored.\n","type":"string"},"protectionKey":{"description":"The name of a key that is used to encrypt the secret value (if empty, the account default protectionKey key will be used)\n","type":"string"},"secureAccessCertificateIssuer":{"description":"Path to the SSH Certificate Issuer for your Akeyless Secure Access\n","type":"string"},"secureAccessEnable":{"description":"Enable/Disable secure remote access, [true/false]\n","type":"string"},"secureAccessGateway":{"description":"Secure Remote Access Gateway\n","type":"string"},"secureAccessHosts":{"description":"Target servers for connections., For multiple values repeat this flag.\n","items":{"type":"string"},"type":"array"},"secureAccessRdpUser":{"description":"Remote Desktop Username\n","type":"string"},"secureAccessSshCreds":{"description":"Static-Secret values contains SSH Credentials, either Private Key or Password [password/private-key]\n","type":"string"},"secureAccessSshUser":{"description":"Override the SSH username as indicated in SSH Certificate Issuer\n","type":"string"},"secureAccessUrl":{"description":"Destination URL to inject secrets.\n","type":"string"},"secureAccessWeb":{"description":"Enable Web Secure Remote Access\n","type":"boolean"},"secureAccessWebBrowsing":{"description":"Secure browser via Akeyless's Secure Remote Access (SRA)\n","type":"boolean"},"secureAccessWebProxy":{"description":"Web-Proxy via Akeyless's Secure Remote Access (SRA)\n","type":"boolean"},"staticSecretId":{"description":"The ID of this resource.\n","type":"string"},"tags":{"description":"List of the tags attached to this secret. To specify multiple tags use argument multiple times: -t Tag1 -t Tag2\n","items":{"type":"string"},"type":"array"},"type":{"description":"Secret type [generic/password]\n","type":"string"},"username":{"description":"Username value (relevant only for type 'password')\n","type":"string"},"value":{"description":"The secret content.\n","secret":true,"type":"string"},"version":{"description":"The version of the secret.\n","type":"number"}},"type":"object"},"type":"object"},"akeyless:index/staticSecretSync:StaticSecretSync":{"description":"Sync Static Secret with Universal Secrets Connector resource\n","inputProperties":{"deleteFromUsc":{"description":"Delete the secret from the remote target USC as well\n","type":"boolean"},"deleteRemote":{"description":"Delete the secret from remote secret manager (for association create/update)\n","type":"boolean"},"filterSecretValue":{"description":"JQ expression to filter or transform the secret value\n","type":"string"},"name":{"description":"Static Secret name\n","type":"string"},"namespace":{"type":"string"},"remoteSecretName":{"description":"Remote Secret Name that will be synced on the remote endpoint\n","type":"string"},"staticSecretSyncId":{"description":"The ID of this resource.\n","type":"string"},"uscName":{"description":"Universal Secret Connector name, If not provided all attached USC's will be synced\n","type":"string"}},"properties":{"deleteFromUsc":{"description":"Delete the secret from the remote target USC as well\n","type":"boolean"},"deleteRemote":{"description":"Delete the secret from remote secret manager (for association create/update)\n","type":"boolean"},"filterSecretValue":{"description":"JQ expression to filter or transform the secret value\n","type":"string"},"name":{"description":"Static Secret name\n","type":"string"},"namespace":{"type":"string"},"remoteSecretName":{"description":"Remote Secret Name that will be synced on the remote endpoint\n","type":"string"},"staticSecretSyncId":{"description":"The ID of this resource.\n","type":"string"},"uscName":{"description":"Universal Secret Connector name, If not provided all attached USC's will be synced\n","type":"string"}},"required":["name","remoteSecretName","staticSecretSyncId","uscName"],"requiredInputs":["remoteSecretName","uscName"],"stateInputs":{"description":"Input properties used for looking up and filtering StaticSecretSync resources.\n","properties":{"deleteFromUsc":{"description":"Delete the secret from the remote target USC as well\n","type":"boolean"},"deleteRemote":{"description":"Delete the secret from remote secret manager (for association create/update)\n","type":"boolean"},"filterSecretValue":{"description":"JQ expression to filter or transform the secret value\n","type":"string"},"name":{"description":"Static Secret name\n","type":"string"},"namespace":{"type":"string"},"remoteSecretName":{"description":"Remote Secret Name that will be synced on the remote endpoint\n","type":"string"},"staticSecretSyncId":{"description":"The ID of this resource.\n","type":"string"},"uscName":{"description":"Universal Secret Connector name, If not provided all attached USC's will be synced\n","type":"string"}},"type":"object"},"type":"object"},"akeyless:index/targetArtifactory:TargetArtifactory":{"description":"Artifactory Target resource\n","inputProperties":{"artifactoryAdminName":{"description":"Artifactory Admin Name\n","type":"string"},"artifactoryAdminPwd":{"description":"Artifactory Admin password\n","type":"string"},"baseUrl":{"description":"Base URL\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"keepPrevVersion":{"description":"Whether to keep previous version [true/false]. If not set, use default according to account settings\n","type":"string"},"key":{"description":"The name of a key used to encrypt the target secret value (if empty, the account default protectionKey key will be used)\n","type":"string"},"maxVersions":{"description":"Set the maximum number of versions, limited by the account settings defaults.\n","type":"string"},"name":{"description":"Target name\n","type":"string"},"targetArtifactoryId":{"description":"The ID of this resource.\n","type":"string"}},"properties":{"artifactoryAdminName":{"description":"Artifactory Admin Name\n","type":"string"},"artifactoryAdminPwd":{"description":"Artifactory Admin password\n","type":"string"},"baseUrl":{"description":"Base URL\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"keepPrevVersion":{"description":"Whether to keep previous version [true/false]. If not set, use default according to account settings\n","type":"string"},"key":{"description":"The name of a key used to encrypt the target secret value (if empty, the account default protectionKey key will be used)\n","type":"string"},"maxVersions":{"description":"Set the maximum number of versions, limited by the account settings defaults.\n","type":"string"},"name":{"description":"Target name\n","type":"string"},"targetArtifactoryId":{"description":"The ID of this resource.\n","type":"string"}},"required":["artifactoryAdminName","artifactoryAdminPwd","baseUrl","key","name","targetArtifactoryId"],"requiredInputs":["artifactoryAdminName","artifactoryAdminPwd","baseUrl"],"stateInputs":{"description":"Input properties used for looking up and filtering TargetArtifactory resources.\n","properties":{"artifactoryAdminName":{"description":"Artifactory Admin Name\n","type":"string"},"artifactoryAdminPwd":{"description":"Artifactory Admin password\n","type":"string"},"baseUrl":{"description":"Base URL\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"keepPrevVersion":{"description":"Whether to keep previous version [true/false]. If not set, use default according to account settings\n","type":"string"},"key":{"description":"The name of a key used to encrypt the target secret value (if empty, the account default protectionKey key will be used)\n","type":"string"},"maxVersions":{"description":"Set the maximum number of versions, limited by the account settings defaults.\n","type":"string"},"name":{"description":"Target name\n","type":"string"},"targetArtifactoryId":{"description":"The ID of this resource.\n","type":"string"}},"type":"object"},"type":"object"},"akeyless:index/targetAws:TargetAws":{"description":"AWS Target resource\n","inputProperties":{"accessKey":{"description":"AWS secret access key\n","type":"string"},"accessKeyId":{"description":"AWS access key ID\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"generateExternalId":{"description":"A unique auto-generated value used in your AWS account when configuring your AWS IAM role to securely delegate access to Akeyless. Relevant only when using GW cloud ID\n","type":"boolean"},"keepPrevVersion":{"description":"Whether to keep previous version [true/false]. If not set, use default according to account settings\n","type":"string"},"key":{"description":"The name of a key that used to encrypt the target secret value (if empty, the account default protectionKey key will be used)\n","type":"string"},"maxVersions":{"description":"Set the maximum number of versions, limited by the account settings defaults.\n","type":"string"},"name":{"description":"Target name\n","type":"string"},"region":{"description":"AWS region\n","type":"string"},"roleArn":{"description":"AWS IAM role identifier that Gateway will assume in your AWS account, relevant only when using external ID\n","type":"string"},"sessionToken":{"description":"Required only for temporary security credentials retrieved using STS\n","type":"string"},"targetAwsId":{"description":"The ID of this resource.\n","type":"string"},"useGwCloudIdentity":{"description":"Use the GW's Cloud IAM\n","type":"boolean"}},"properties":{"accessKey":{"description":"AWS secret access key\n","type":"string"},"accessKeyId":{"description":"AWS access key ID\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"generateExternalId":{"description":"A unique auto-generated value used in your AWS account when configuring your AWS IAM role to securely delegate access to Akeyless. Relevant only when using GW cloud ID\n","type":"boolean"},"keepPrevVersion":{"description":"Whether to keep previous version [true/false]. If not set, use default according to account settings\n","type":"string"},"key":{"description":"The name of a key that used to encrypt the target secret value (if empty, the account default protectionKey key will be used)\n","type":"string"},"maxVersions":{"description":"Set the maximum number of versions, limited by the account settings defaults.\n","type":"string"},"name":{"description":"Target name\n","type":"string"},"region":{"description":"AWS region\n","type":"string"},"roleArn":{"description":"AWS IAM role identifier that Gateway will assume in your AWS account, relevant only when using external ID\n","type":"string"},"sessionToken":{"description":"Required only for temporary security credentials retrieved using STS\n","type":"string"},"targetAwsId":{"description":"The ID of this resource.\n","type":"string"},"useGwCloudIdentity":{"description":"Use the GW's Cloud IAM\n","type":"boolean"}},"required":["accessKeyId","key","name","targetAwsId"],"requiredInputs":["accessKeyId"],"stateInputs":{"description":"Input properties used for looking up and filtering TargetAws resources.\n","properties":{"accessKey":{"description":"AWS secret access key\n","type":"string"},"accessKeyId":{"description":"AWS access key ID\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"generateExternalId":{"description":"A unique auto-generated value used in your AWS account when configuring your AWS IAM role to securely delegate access to Akeyless. Relevant only when using GW cloud ID\n","type":"boolean"},"keepPrevVersion":{"description":"Whether to keep previous version [true/false]. If not set, use default according to account settings\n","type":"string"},"key":{"description":"The name of a key that used to encrypt the target secret value (if empty, the account default protectionKey key will be used)\n","type":"string"},"maxVersions":{"description":"Set the maximum number of versions, limited by the account settings defaults.\n","type":"string"},"name":{"description":"Target name\n","type":"string"},"region":{"description":"AWS region\n","type":"string"},"roleArn":{"description":"AWS IAM role identifier that Gateway will assume in your AWS account, relevant only when using external ID\n","type":"string"},"sessionToken":{"description":"Required only for temporary security credentials retrieved using STS\n","type":"string"},"targetAwsId":{"description":"The ID of this resource.\n","type":"string"},"useGwCloudIdentity":{"description":"Use the GW's Cloud IAM\n","type":"boolean"}},"type":"object"},"type":"object"},"akeyless:index/targetAzure:TargetAzure":{"description":"Azure Target resource\n","inputProperties":{"clientId":{"description":"Azure client/application id\n","type":"string"},"clientSecret":{"description":"Azure client secret\n","type":"string"},"connectionType":{"description":"Type of connection [credentials/cloud-identity]\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"keepPrevVersion":{"description":"Whether to keep previous version [true/false]. If not set, use default according to account settings\n","type":"string"},"key":{"description":"Key name. The key is used to encrypt the target secret value. If the key name is not specified, the account default protection key is used\n","type":"string"},"maxVersions":{"description":"Set the maximum number of versions, limited by the account settings defaults\n","type":"string"},"name":{"description":"Target name\n","type":"string"},"resourceGroupName":{"description":"The Resource Group name in your Azure subscription\n","type":"string"},"resourceName":{"description":"The name of the relevant Resource\n","type":"string"},"subscriptionId":{"description":"Azure Subscription Id\n","type":"string"},"targetAzureId":{"description":"The ID of this resource.\n","type":"string"},"tenantId":{"description":"Azure tenant id\n","type":"string"},"useGwCloudIdentity":{"description":"Use the GW's Cloud IAM\n","type":"boolean"}},"properties":{"clientId":{"description":"Azure client/application id\n","type":"string"},"clientSecret":{"description":"Azure client secret\n","type":"string"},"connectionType":{"description":"Type of connection [credentials/cloud-identity]\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"keepPrevVersion":{"description":"Whether to keep previous version [true/false]. If not set, use default according to account settings\n","type":"string"},"key":{"description":"Key name. The key is used to encrypt the target secret value. If the key name is not specified, the account default protection key is used\n","type":"string"},"maxVersions":{"description":"Set the maximum number of versions, limited by the account settings defaults\n","type":"string"},"name":{"description":"Target name\n","type":"string"},"resourceGroupName":{"description":"The Resource Group name in your Azure subscription\n","type":"string"},"resourceName":{"description":"The name of the relevant Resource\n","type":"string"},"subscriptionId":{"description":"Azure Subscription Id\n","type":"string"},"targetAzureId":{"description":"The ID of this resource.\n","type":"string"},"tenantId":{"description":"Azure tenant id\n","type":"string"},"useGwCloudIdentity":{"description":"Use the GW's Cloud IAM\n","type":"boolean"}},"required":["key","name","targetAzureId"],"stateInputs":{"description":"Input properties used for looking up and filtering TargetAzure resources.\n","properties":{"clientId":{"description":"Azure client/application id\n","type":"string"},"clientSecret":{"description":"Azure client secret\n","type":"string"},"connectionType":{"description":"Type of connection [credentials/cloud-identity]\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"keepPrevVersion":{"description":"Whether to keep previous version [true/false]. If not set, use default according to account settings\n","type":"string"},"key":{"description":"Key name. The key is used to encrypt the target secret value. If the key name is not specified, the account default protection key is used\n","type":"string"},"maxVersions":{"description":"Set the maximum number of versions, limited by the account settings defaults\n","type":"string"},"name":{"description":"Target name\n","type":"string"},"resourceGroupName":{"description":"The Resource Group name in your Azure subscription\n","type":"string"},"resourceName":{"description":"The name of the relevant Resource\n","type":"string"},"subscriptionId":{"description":"Azure Subscription Id\n","type":"string"},"targetAzureId":{"description":"The ID of this resource.\n","type":"string"},"tenantId":{"description":"Azure tenant id\n","type":"string"},"useGwCloudIdentity":{"description":"Use the GW's Cloud IAM\n","type":"boolean"}},"type":"object"},"type":"object"},"akeyless:index/targetDb:TargetDb":{"description":"DB Target resource\n","inputProperties":{"azureClientId":{"description":"(Optional) Client id (relevant for \"cloud-service-provider\" only)\n","type":"string"},"azureClientSecret":{"description":"(Optional) Client secret (relevant for \"cloud-service-provider\" only)\n","secret":true,"type":"string"},"azureTenantId":{"description":"(Optional) Tenant id (relevant for \"cloud-service-provider\" only)\n","type":"string"},"cloudServiceProvider":{"description":"(Optional) Cloud service provider (currently only supports Azure)\n","type":"string"},"clusterMode":{"description":"Cluster Mode\n","type":"boolean"},"connectionType":{"description":"Type of connection to mssql database [credentials/cloud-identity/wallet/parent-target]\n","type":"string"},"dbName":{"description":"Database name\n","type":"string"},"dbServerCertificates":{"description":"(Optional) DB server certificates\n","type":"string"},"dbServerName":{"description":"(Optional) Server name for certificate verification\n","type":"string"},"dbType":{"description":"Database type: mysql/mssql/postgres/mongodb/snowflake/oracle/cassandra/redshift\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"host":{"description":"Database host\n","type":"string"},"key":{"description":"The name of a key that used to encrypt the target secret value (if empty, the account default protectionKey key will be used)\n","type":"string"},"maxVersions":{"description":"Set the maximum number of versions, limited by the account settings defaults.\n","type":"string"},"mongodbAtlas":{"description":"Flag, set database type to mongodb and the flag to true to create Mongo Atlas target\n","type":"boolean"},"mongodbAtlasApiPrivateKey":{"description":"MongoDB Atlas private key\n","secret":true,"type":"string"},"mongodbAtlasApiPublicKey":{"description":"MongoDB Atlas public key\n","type":"string"},"mongodbAtlasProjectId":{"description":"MongoDB Atlas project ID\n","type":"string"},"mongodbDefaultAuthDb":{"description":"MongoDB server default authentication database\n","type":"string"},"mongodbUriOptions":{"description":"MongoDB server URI options (e.g. replicaSet=mySet&authSource=authDB)\n","type":"string"},"name":{"description":"Target name\n","type":"string"},"oracleServiceName":{"description":"Oracle db service name\n","type":"string"},"oracleWalletLoginType":{"description":"Oracle Wallet login type (password/mtls)\n","type":"string"},"oracleWalletP12FileData":{"description":"Oracle wallet p12 file data in base64\n","secret":true,"type":"string"},"oracleWalletSsoFileData":{"description":"Oracle wallet sso file data in base64\n","type":"string"},"parentTargetName":{"description":"Name of the parent target, relevant only when connection-type is parent-target\n","type":"string"},"port":{"description":"Database port\n","type":"string"},"pwd":{"description":"Database password\n","secret":true,"type":"string"},"snowflakeAccount":{"description":"Snowflake account name\n","type":"string"},"snowflakeApiPrivateKey":{"description":"RSA Private key (base64 encoded)\n","secret":true,"type":"string"},"snowflakeApiPrivateKeyPassword":{"description":"The Private key passphrase\n","secret":true,"type":"string"},"ssl":{"description":"Enable/Disable SSL [true/false]\n","type":"boolean"},"sslCertificate":{"description":"SSL connection certificate\n","type":"string"},"targetDbId":{"description":"The ID of this resource.\n","type":"string"},"userName":{"description":"Database user name\n","type":"string"}},"properties":{"azureClientId":{"description":"(Optional) Client id (relevant for \"cloud-service-provider\" only)\n","type":"string"},"azureClientSecret":{"description":"(Optional) Client secret (relevant for \"cloud-service-provider\" only)\n","secret":true,"type":"string"},"azureTenantId":{"description":"(Optional) Tenant id (relevant for \"cloud-service-provider\" only)\n","type":"string"},"cloudServiceProvider":{"description":"(Optional) Cloud service provider (currently only supports Azure)\n","type":"string"},"clusterMode":{"description":"Cluster Mode\n","type":"boolean"},"connectionType":{"description":"Type of connection to mssql database [credentials/cloud-identity/wallet/parent-target]\n","type":"string"},"dbName":{"description":"Database name\n","type":"string"},"dbServerCertificates":{"description":"(Optional) DB server certificates\n","type":"string"},"dbServerName":{"description":"(Optional) Server name for certificate verification\n","type":"string"},"dbType":{"description":"Database type: mysql/mssql/postgres/mongodb/snowflake/oracle/cassandra/redshift\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"host":{"description":"Database host\n","type":"string"},"key":{"description":"The name of a key that used to encrypt the target secret value (if empty, the account default protectionKey key will be used)\n","type":"string"},"maxVersions":{"description":"Set the maximum number of versions, limited by the account settings defaults.\n","type":"string"},"mongodbAtlas":{"description":"Flag, set database type to mongodb and the flag to true to create Mongo Atlas target\n","type":"boolean"},"mongodbAtlasApiPrivateKey":{"description":"MongoDB Atlas private key\n","secret":true,"type":"string"},"mongodbAtlasApiPublicKey":{"description":"MongoDB Atlas public key\n","type":"string"},"mongodbAtlasProjectId":{"description":"MongoDB Atlas project ID\n","type":"string"},"mongodbDefaultAuthDb":{"description":"MongoDB server default authentication database\n","type":"string"},"mongodbUriOptions":{"description":"MongoDB server URI options (e.g. replicaSet=mySet&authSource=authDB)\n","type":"string"},"name":{"description":"Target name\n","type":"string"},"oracleServiceName":{"description":"Oracle db service name\n","type":"string"},"oracleWalletLoginType":{"description":"Oracle Wallet login type (password/mtls)\n","type":"string"},"oracleWalletP12FileData":{"description":"Oracle wallet p12 file data in base64\n","secret":true,"type":"string"},"oracleWalletSsoFileData":{"description":"Oracle wallet sso file data in base64\n","type":"string"},"parentTargetName":{"description":"Name of the parent target, relevant only when connection-type is parent-target\n","type":"string"},"port":{"description":"Database port\n","type":"string"},"pwd":{"description":"Database password\n","secret":true,"type":"string"},"snowflakeAccount":{"description":"Snowflake account name\n","type":"string"},"snowflakeApiPrivateKey":{"description":"RSA Private key (base64 encoded)\n","secret":true,"type":"string"},"snowflakeApiPrivateKeyPassword":{"description":"The Private key passphrase\n","secret":true,"type":"string"},"ssl":{"description":"Enable/Disable SSL [true/false]\n","type":"boolean"},"sslCertificate":{"description":"SSL connection certificate\n","type":"string"},"targetDbId":{"description":"The ID of this resource.\n","type":"string"},"userName":{"description":"Database user name\n","type":"string"}},"required":["dbType","key","name","targetDbId"],"requiredInputs":["dbType"],"stateInputs":{"description":"Input properties used for looking up and filtering TargetDb resources.\n","properties":{"azureClientId":{"description":"(Optional) Client id (relevant for \"cloud-service-provider\" only)\n","type":"string"},"azureClientSecret":{"description":"(Optional) Client secret (relevant for \"cloud-service-provider\" only)\n","secret":true,"type":"string"},"azureTenantId":{"description":"(Optional) Tenant id (relevant for \"cloud-service-provider\" only)\n","type":"string"},"cloudServiceProvider":{"description":"(Optional) Cloud service provider (currently only supports Azure)\n","type":"string"},"clusterMode":{"description":"Cluster Mode\n","type":"boolean"},"connectionType":{"description":"Type of connection to mssql database [credentials/cloud-identity/wallet/parent-target]\n","type":"string"},"dbName":{"description":"Database name\n","type":"string"},"dbServerCertificates":{"description":"(Optional) DB server certificates\n","type":"string"},"dbServerName":{"description":"(Optional) Server name for certificate verification\n","type":"string"},"dbType":{"description":"Database type: mysql/mssql/postgres/mongodb/snowflake/oracle/cassandra/redshift\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"host":{"description":"Database host\n","type":"string"},"key":{"description":"The name of a key that used to encrypt the target secret value (if empty, the account default protectionKey key will be used)\n","type":"string"},"maxVersions":{"description":"Set the maximum number of versions, limited by the account settings defaults.\n","type":"string"},"mongodbAtlas":{"description":"Flag, set database type to mongodb and the flag to true to create Mongo Atlas target\n","type":"boolean"},"mongodbAtlasApiPrivateKey":{"description":"MongoDB Atlas private key\n","secret":true,"type":"string"},"mongodbAtlasApiPublicKey":{"description":"MongoDB Atlas public key\n","type":"string"},"mongodbAtlasProjectId":{"description":"MongoDB Atlas project ID\n","type":"string"},"mongodbDefaultAuthDb":{"description":"MongoDB server default authentication database\n","type":"string"},"mongodbUriOptions":{"description":"MongoDB server URI options (e.g. replicaSet=mySet&authSource=authDB)\n","type":"string"},"name":{"description":"Target name\n","type":"string"},"oracleServiceName":{"description":"Oracle db service name\n","type":"string"},"oracleWalletLoginType":{"description":"Oracle Wallet login type (password/mtls)\n","type":"string"},"oracleWalletP12FileData":{"description":"Oracle wallet p12 file data in base64\n","secret":true,"type":"string"},"oracleWalletSsoFileData":{"description":"Oracle wallet sso file data in base64\n","type":"string"},"parentTargetName":{"description":"Name of the parent target, relevant only when connection-type is parent-target\n","type":"string"},"port":{"description":"Database port\n","type":"string"},"pwd":{"description":"Database password\n","secret":true,"type":"string"},"snowflakeAccount":{"description":"Snowflake account name\n","type":"string"},"snowflakeApiPrivateKey":{"description":"RSA Private key (base64 encoded)\n","secret":true,"type":"string"},"snowflakeApiPrivateKeyPassword":{"description":"The Private key passphrase\n","secret":true,"type":"string"},"ssl":{"description":"Enable/Disable SSL [true/false]\n","type":"boolean"},"sslCertificate":{"description":"SSL connection certificate\n","type":"string"},"targetDbId":{"description":"The ID of this resource.\n","type":"string"},"userName":{"description":"Database user name\n","type":"string"}},"type":"object"},"type":"object"},"akeyless:index/targetDigicert:TargetDigicert":{"description":"DigiCert Target resource\n","inputProperties":{"acmeChallenge":{"description":"ACME challenge type. Options: [dns]\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"digicertUrl":{"description":"DigiCert ACME endpoint selector. Options: [us-production/eu-production/us-demo/eu-demo]\n","type":"string"},"dnsTargetCreds":{"description":"Name of existing cloud target for DNS credentials. Required when challenge type is dns. Supported providers: AWS, Azure, GCP\n","type":"string"},"eabHmacKey":{"description":"External Account Binding HMAC key (required for ACME account bootstrap on create)\n","secret":true,"type":"string"},"eabKeyId":{"description":"External Account Binding key identifier (required for ACME account bootstrap on create)\n","type":"string"},"email":{"description":"Email address for ACME account registration\n","type":"string"},"gcpProject":{"description":"GCP Cloud DNS project ID. Optional and can be derived from service account\n","type":"string"},"hostedZone":{"description":"AWS Route53 hosted zone ID. Required when DNS credentials target is AWS\n","type":"string"},"keepPrevVersion":{"description":"Whether to keep previous version [true/false]. If not set, use default according to account settings\n","type":"string"},"key":{"description":"The name of a key that used to encrypt the target secret value (if empty, the account default protectionKey key will be used)\n","type":"string"},"maxVersions":{"description":"Set the maximum number of versions, limited by the account settings defaults.\n","type":"string"},"name":{"description":"Target name\n","type":"string"},"resourceGroup":{"description":"Azure resource group name. Required when DNS credentials target is Azure\n","type":"string"},"targetDigicertId":{"description":"The ID of this resource.\n","type":"string"},"timeout":{"description":"Timeout for challenge validation\n","type":"string"}},"properties":{"acmeChallenge":{"description":"ACME challenge type. Options: [dns]\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"digicertUrl":{"description":"DigiCert ACME endpoint selector. Options: [us-production/eu-production/us-demo/eu-demo]\n","type":"string"},"dnsTargetCreds":{"description":"Name of existing cloud target for DNS credentials. Required when challenge type is dns. Supported providers: AWS, Azure, GCP\n","type":"string"},"eabHmacKey":{"description":"External Account Binding HMAC key (required for ACME account bootstrap on create)\n","secret":true,"type":"string"},"eabKeyId":{"description":"External Account Binding key identifier (required for ACME account bootstrap on create)\n","type":"string"},"email":{"description":"Email address for ACME account registration\n","type":"string"},"gcpProject":{"description":"GCP Cloud DNS project ID. Optional and can be derived from service account\n","type":"string"},"hostedZone":{"description":"AWS Route53 hosted zone ID. Required when DNS credentials target is AWS\n","type":"string"},"keepPrevVersion":{"description":"Whether to keep previous version [true/false]. If not set, use default according to account settings\n","type":"string"},"key":{"description":"The name of a key that used to encrypt the target secret value (if empty, the account default protectionKey key will be used)\n","type":"string"},"maxVersions":{"description":"Set the maximum number of versions, limited by the account settings defaults.\n","type":"string"},"name":{"description":"Target name\n","type":"string"},"resourceGroup":{"description":"Azure resource group name. Required when DNS credentials target is Azure\n","type":"string"},"targetDigicertId":{"description":"The ID of this resource.\n","type":"string"},"timeout":{"description":"Timeout for challenge validation\n","type":"string"}},"required":["email","key","name","targetDigicertId"],"requiredInputs":["email"],"stateInputs":{"description":"Input properties used for looking up and filtering TargetDigicert resources.\n","properties":{"acmeChallenge":{"description":"ACME challenge type. Options: [dns]\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"digicertUrl":{"description":"DigiCert ACME endpoint selector. Options: [us-production/eu-production/us-demo/eu-demo]\n","type":"string"},"dnsTargetCreds":{"description":"Name of existing cloud target for DNS credentials. Required when challenge type is dns. Supported providers: AWS, Azure, GCP\n","type":"string"},"eabHmacKey":{"description":"External Account Binding HMAC key (required for ACME account bootstrap on create)\n","secret":true,"type":"string"},"eabKeyId":{"description":"External Account Binding key identifier (required for ACME account bootstrap on create)\n","type":"string"},"email":{"description":"Email address for ACME account registration\n","type":"string"},"gcpProject":{"description":"GCP Cloud DNS project ID. Optional and can be derived from service account\n","type":"string"},"hostedZone":{"description":"AWS Route53 hosted zone ID. Required when DNS credentials target is AWS\n","type":"string"},"keepPrevVersion":{"description":"Whether to keep previous version [true/false]. If not set, use default according to account settings\n","type":"string"},"key":{"description":"The name of a key that used to encrypt the target secret value (if empty, the account default protectionKey key will be used)\n","type":"string"},"maxVersions":{"description":"Set the maximum number of versions, limited by the account settings defaults.\n","type":"string"},"name":{"description":"Target name\n","type":"string"},"resourceGroup":{"description":"Azure resource group name. Required when DNS credentials target is Azure\n","type":"string"},"targetDigicertId":{"description":"The ID of this resource.\n","type":"string"},"timeout":{"description":"Timeout for challenge validation\n","type":"string"}},"type":"object"},"type":"object"},"akeyless:index/targetDockerhub:TargetDockerhub":{"description":"Docker Hub Target resource\n","inputProperties":{"description":{"description":"Description of the object\n","type":"string"},"dockerhubPassword":{"description":"Password for docker repository\n","secret":true,"type":"string"},"dockerhubUsername":{"description":"Username for docker repository\n","type":"string"},"keepPrevVersion":{"description":"Whether to keep previous version [true/false]. If not set, use default according to account settings\n","type":"string"},"key":{"description":"The name of a key that used to encrypt the target secret value (if empty, the account default protectionKey key will be used)\n","type":"string"},"maxVersions":{"description":"Set the maximum number of versions, limited by the account settings defaults\n","type":"string"},"name":{"description":"Target name\n","type":"string"},"targetDockerhubId":{"description":"The ID of this resource.\n","type":"string"}},"properties":{"description":{"description":"Description of the object\n","type":"string"},"dockerhubPassword":{"description":"Password for docker repository\n","secret":true,"type":"string"},"dockerhubUsername":{"description":"Username for docker repository\n","type":"string"},"keepPrevVersion":{"description":"Whether to keep previous version [true/false]. If not set, use default according to account settings\n","type":"string"},"key":{"description":"The name of a key that used to encrypt the target secret value (if empty, the account default protectionKey key will be used)\n","type":"string"},"maxVersions":{"description":"Set the maximum number of versions, limited by the account settings defaults\n","type":"string"},"name":{"description":"Target name\n","type":"string"},"targetDockerhubId":{"description":"The ID of this resource.\n","type":"string"}},"required":["key","name","targetDockerhubId"],"stateInputs":{"description":"Input properties used for looking up and filtering TargetDockerhub resources.\n","properties":{"description":{"description":"Description of the object\n","type":"string"},"dockerhubPassword":{"description":"Password for docker repository\n","secret":true,"type":"string"},"dockerhubUsername":{"description":"Username for docker repository\n","type":"string"},"keepPrevVersion":{"description":"Whether to keep previous version [true/false]. If not set, use default according to account settings\n","type":"string"},"key":{"description":"The name of a key that used to encrypt the target secret value (if empty, the account default protectionKey key will be used)\n","type":"string"},"maxVersions":{"description":"Set the maximum number of versions, limited by the account settings defaults\n","type":"string"},"name":{"description":"Target name\n","type":"string"},"targetDockerhubId":{"description":"The ID of this resource.\n","type":"string"}},"type":"object"},"type":"object"},"akeyless:index/targetEks:TargetEks":{"description":"EKS Target resource\n","inputProperties":{"description":{"description":"Description of the object\n","type":"string"},"eksAccessKeyId":{"description":"Access Key ID\n","type":"string"},"eksClusterCaCert":{"description":"EKS cluster CA certificate\n","secret":true,"type":"string"},"eksClusterEndpoint":{"description":"EKS cluster URL endpoint\n","type":"string"},"eksClusterName":{"description":"EKS cluster name\n","type":"string"},"eksRegion":{"description":"Region\n","type":"string"},"eksSecretAccessKey":{"description":"Secret Access Key\n","secret":true,"type":"string"},"keepPrevVersion":{"description":"Whether to keep previous version [true/false]. If not set, use default according to account settings\n","type":"string"},"key":{"description":"The name of a key that used to encrypt the target secret value (if empty, the account default protectionKey key will be used)\n","type":"string"},"maxVersions":{"description":"Set the maximum number of versions, limited by the account settings defaults.\n","type":"string"},"name":{"description":"Target name\n","type":"string"},"targetEksId":{"description":"The ID of this resource.\n","type":"string"},"useGwCloudIdentity":{"description":"Use the GW's Cloud IAM\n","type":"boolean"}},"properties":{"description":{"description":"Description of the object\n","type":"string"},"eksAccessKeyId":{"description":"Access Key ID\n","type":"string"},"eksClusterCaCert":{"description":"EKS cluster CA certificate\n","secret":true,"type":"string"},"eksClusterEndpoint":{"description":"EKS cluster URL endpoint\n","type":"string"},"eksClusterName":{"description":"EKS cluster name\n","type":"string"},"eksRegion":{"description":"Region\n","type":"string"},"eksSecretAccessKey":{"description":"Secret Access Key\n","secret":true,"type":"string"},"keepPrevVersion":{"description":"Whether to keep previous version [true/false]. If not set, use default according to account settings\n","type":"string"},"key":{"description":"The name of a key that used to encrypt the target secret value (if empty, the account default protectionKey key will be used)\n","type":"string"},"maxVersions":{"description":"Set the maximum number of versions, limited by the account settings defaults.\n","type":"string"},"name":{"description":"Target name\n","type":"string"},"targetEksId":{"description":"The ID of this resource.\n","type":"string"},"useGwCloudIdentity":{"description":"Use the GW's Cloud IAM\n","type":"boolean"}},"required":["eksAccessKeyId","eksClusterCaCert","eksClusterEndpoint","eksClusterName","eksSecretAccessKey","key","name","targetEksId"],"requiredInputs":["eksAccessKeyId","eksClusterCaCert","eksClusterEndpoint","eksClusterName","eksSecretAccessKey"],"stateInputs":{"description":"Input properties used for looking up and filtering TargetEks resources.\n","properties":{"description":{"description":"Description of the object\n","type":"string"},"eksAccessKeyId":{"description":"Access Key ID\n","type":"string"},"eksClusterCaCert":{"description":"EKS cluster CA certificate\n","secret":true,"type":"string"},"eksClusterEndpoint":{"description":"EKS cluster URL endpoint\n","type":"string"},"eksClusterName":{"description":"EKS cluster name\n","type":"string"},"eksRegion":{"description":"Region\n","type":"string"},"eksSecretAccessKey":{"description":"Secret Access Key\n","secret":true,"type":"string"},"keepPrevVersion":{"description":"Whether to keep previous version [true/false]. If not set, use default according to account settings\n","type":"string"},"key":{"description":"The name of a key that used to encrypt the target secret value (if empty, the account default protectionKey key will be used)\n","type":"string"},"maxVersions":{"description":"Set the maximum number of versions, limited by the account settings defaults.\n","type":"string"},"name":{"description":"Target name\n","type":"string"},"targetEksId":{"description":"The ID of this resource.\n","type":"string"},"useGwCloudIdentity":{"description":"Use the GW's Cloud IAM\n","type":"boolean"}},"type":"object"},"type":"object"},"akeyless:index/targetGcp:TargetGcp":{"description":"GCP Target resource\n","inputProperties":{"description":{"description":"Description of the object\n","type":"string"},"gcpKey":{"description":"Base64-encoded service account private key text\n","secret":true,"type":"string"},"gcpSaEmail":{"description":"GCP service account email\n","type":"string"},"keepPrevVersion":{"description":"Whether to keep previous version [true/false]. If not set, use default according to account settings\n","type":"string"},"key":{"description":"The name of a key that used to encrypt the target secret value (if empty, the account default protectionKey key will be used)\n","type":"string"},"maxVersions":{"description":"Set the maximum number of versions, limited by the account settings defaults.\n","type":"string"},"name":{"description":"Target name\n","type":"string"},"targetGcpId":{"description":"The ID of this resource.\n","type":"string"},"useGwCloudIdentity":{"description":"Use the GW's Cloud IAM\n","type":"boolean"}},"properties":{"description":{"description":"Description of the object\n","type":"string"},"gcpKey":{"description":"Base64-encoded service account private key text\n","secret":true,"type":"string"},"gcpSaEmail":{"description":"GCP service account email\n","type":"string"},"keepPrevVersion":{"description":"Whether to keep previous version [true/false]. If not set, use default according to account settings\n","type":"string"},"key":{"description":"The name of a key that used to encrypt the target secret value (if empty, the account default protectionKey key will be used)\n","type":"string"},"maxVersions":{"description":"Set the maximum number of versions, limited by the account settings defaults.\n","type":"string"},"name":{"description":"Target name\n","type":"string"},"targetGcpId":{"description":"The ID of this resource.\n","type":"string"},"useGwCloudIdentity":{"description":"Use the GW's Cloud IAM\n","type":"boolean"}},"required":["key","name","targetGcpId"],"stateInputs":{"description":"Input properties used for looking up and filtering TargetGcp resources.\n","properties":{"description":{"description":"Description of the object\n","type":"string"},"gcpKey":{"description":"Base64-encoded service account private key text\n","secret":true,"type":"string"},"gcpSaEmail":{"description":"GCP service account email\n","type":"string"},"keepPrevVersion":{"description":"Whether to keep previous version [true/false]. If not set, use default according to account settings\n","type":"string"},"key":{"description":"The name of a key that used to encrypt the target secret value (if empty, the account default protectionKey key will be used)\n","type":"string"},"maxVersions":{"description":"Set the maximum number of versions, limited by the account settings defaults.\n","type":"string"},"name":{"description":"Target name\n","type":"string"},"targetGcpId":{"description":"The ID of this resource.\n","type":"string"},"useGwCloudIdentity":{"description":"Use the GW's Cloud IAM\n","type":"boolean"}},"type":"object"},"type":"object"},"akeyless:index/targetGemini:TargetGemini":{"description":"Gemini Target resource\n","inputProperties":{"apiKey":{"description":"API key for Gemini\n","secret":true,"type":"string"},"description":{"description":"Description of the object\n","type":"string"},"geminiUrl":{"description":"Base URL of the Gemini API\n","type":"string"},"keepPrevVersion":{"description":"Whether to keep previous version [true/false]. If not set, use default according to account settings\n","type":"string"},"key":{"description":"The name of a key that used to encrypt the target secret value (if empty, the account default protectionKey key will be used)\n","type":"string"},"maxVersions":{"description":"Set the maximum number of versions, limited by the account settings defaults.\n","type":"string"},"name":{"description":"Target name\n","type":"string"},"targetGeminiId":{"description":"The ID of this resource.\n","type":"string"}},"properties":{"apiKey":{"description":"API key for Gemini\n","secret":true,"type":"string"},"description":{"description":"Description of the object\n","type":"string"},"geminiUrl":{"description":"Base URL of the Gemini API\n","type":"string"},"keepPrevVersion":{"description":"Whether to keep previous version [true/false]. If not set, use default according to account settings\n","type":"string"},"key":{"description":"The name of a key that used to encrypt the target secret value (if empty, the account default protectionKey key will be used)\n","type":"string"},"maxVersions":{"description":"Set the maximum number of versions, limited by the account settings defaults.\n","type":"string"},"name":{"description":"Target name\n","type":"string"},"targetGeminiId":{"description":"The ID of this resource.\n","type":"string"}},"required":["key","name","targetGeminiId"],"stateInputs":{"description":"Input properties used for looking up and filtering TargetGemini resources.\n","properties":{"apiKey":{"description":"API key for Gemini\n","secret":true,"type":"string"},"description":{"description":"Description of the object\n","type":"string"},"geminiUrl":{"description":"Base URL of the Gemini API\n","type":"string"},"keepPrevVersion":{"description":"Whether to keep previous version [true/false]. If not set, use default according to account settings\n","type":"string"},"key":{"description":"The name of a key that used to encrypt the target secret value (if empty, the account default protectionKey key will be used)\n","type":"string"},"maxVersions":{"description":"Set the maximum number of versions, limited by the account settings defaults.\n","type":"string"},"name":{"description":"Target name\n","type":"string"},"targetGeminiId":{"description":"The ID of this resource.\n","type":"string"}},"type":"object"},"type":"object"},"akeyless:index/targetGithub:TargetGithub":{"description":"Github Target resource\n","inputProperties":{"description":{"description":"Description of the object\n","type":"string"},"githubAppId":{"description":"Github application id\n","type":"number"},"githubAppPrivateKey":{"description":"App private key\n","type":"string"},"githubBaseUrl":{"description":"Base URL\n","type":"string"},"keepPrevVersion":{"description":"Whether to keep previous version [true/false]. If not set, use default according to account settings\n","type":"string"},"key":{"description":"The name of a key that used to encrypt the target secret value (if empty, the account default protectionKey key will be used)\n","type":"string"},"maxVersions":{"description":"Set the maximum number of versions, limited by the account settings defaults\n","type":"string"},"name":{"description":"Target name\n","type":"string"},"targetGithubId":{"description":"The ID of this resource.\n","type":"string"}},"properties":{"description":{"description":"Description of the object\n","type":"string"},"githubAppId":{"description":"Github application id\n","type":"number"},"githubAppPrivateKey":{"description":"App private key\n","type":"string"},"githubBaseUrl":{"description":"Base URL\n","type":"string"},"keepPrevVersion":{"description":"Whether to keep previous version [true/false]. If not set, use default according to account settings\n","type":"string"},"key":{"description":"The name of a key that used to encrypt the target secret value (if empty, the account default protectionKey key will be used)\n","type":"string"},"maxVersions":{"description":"Set the maximum number of versions, limited by the account settings defaults\n","type":"string"},"name":{"description":"Target name\n","type":"string"},"targetGithubId":{"description":"The ID of this resource.\n","type":"string"}},"required":["key","name","targetGithubId"],"stateInputs":{"description":"Input properties used for looking up and filtering TargetGithub resources.\n","properties":{"description":{"description":"Description of the object\n","type":"string"},"githubAppId":{"description":"Github application id\n","type":"number"},"githubAppPrivateKey":{"description":"App private key\n","type":"string"},"githubBaseUrl":{"description":"Base URL\n","type":"string"},"keepPrevVersion":{"description":"Whether to keep previous version [true/false]. If not set, use default according to account settings\n","type":"string"},"key":{"description":"The name of a key that used to encrypt the target secret value (if empty, the account default protectionKey key will be used)\n","type":"string"},"maxVersions":{"description":"Set the maximum number of versions, limited by the account settings defaults\n","type":"string"},"name":{"description":"Target name\n","type":"string"},"targetGithubId":{"description":"The ID of this resource.\n","type":"string"}},"type":"object"},"type":"object"},"akeyless:index/targetGitlab:TargetGitlab":{"description":"Gitlab Target resource\n","inputProperties":{"description":{"description":"Description of the object\n","type":"string"},"gitlabAccessToken":{"description":"Gitlab access token\n","secret":true,"type":"string"},"gitlabCertificate":{"description":"Gitlab tls certificate (base64 encoded)\n","secret":true,"type":"string"},"gitlabUrl":{"description":"Gitlab base url\n","type":"string"},"keepPrevVersion":{"description":"Whether to keep previous version [true/false]. If not set, use default according to account settings\n","type":"string"},"key":{"description":"Key name. The key will be used to encrypt the target secret value. If key name is not specified, the account default protection key is used.\n","type":"string"},"maxVersions":{"description":"Set the maximum number of versions, limited by the account settings defaults\n","type":"string"},"name":{"description":"Target name\n","type":"string"},"targetGitlabId":{"description":"The ID of this resource.\n","type":"string"}},"properties":{"description":{"description":"Description of the object\n","type":"string"},"gitlabAccessToken":{"description":"Gitlab access token\n","secret":true,"type":"string"},"gitlabCertificate":{"description":"Gitlab tls certificate (base64 encoded)\n","secret":true,"type":"string"},"gitlabUrl":{"description":"Gitlab base url\n","type":"string"},"keepPrevVersion":{"description":"Whether to keep previous version [true/false]. If not set, use default according to account settings\n","type":"string"},"key":{"description":"Key name. The key will be used to encrypt the target secret value. If key name is not specified, the account default protection key is used.\n","type":"string"},"maxVersions":{"description":"Set the maximum number of versions, limited by the account settings defaults\n","type":"string"},"name":{"description":"Target name\n","type":"string"},"targetGitlabId":{"description":"The ID of this resource.\n","type":"string"}},"required":["key","name","targetGitlabId"],"stateInputs":{"description":"Input properties used for looking up and filtering TargetGitlab resources.\n","properties":{"description":{"description":"Description of the object\n","type":"string"},"gitlabAccessToken":{"description":"Gitlab access token\n","secret":true,"type":"string"},"gitlabCertificate":{"description":"Gitlab tls certificate (base64 encoded)\n","secret":true,"type":"string"},"gitlabUrl":{"description":"Gitlab base url\n","type":"string"},"keepPrevVersion":{"description":"Whether to keep previous version [true/false]. If not set, use default according to account settings\n","type":"string"},"key":{"description":"Key name. The key will be used to encrypt the target secret value. If key name is not specified, the account default protection key is used.\n","type":"string"},"maxVersions":{"description":"Set the maximum number of versions, limited by the account settings defaults\n","type":"string"},"name":{"description":"Target name\n","type":"string"},"targetGitlabId":{"description":"The ID of this resource.\n","type":"string"}},"type":"object"},"type":"object"},"akeyless:index/targetGke:TargetGke":{"description":"GKE Target resource\n","inputProperties":{"description":{"description":"Description of the object\n","type":"string"},"gkeAccountKey":{"description":"GKE Service Account key file path\n","type":"string"},"gkeClusterCert":{"description":"GKE cluster CA certificate\n","type":"string"},"gkeClusterEndpoint":{"description":"GKE cluster URL endpoint\n","type":"string"},"gkeClusterName":{"description":"GKE cluster name\n","type":"string"},"gkeServiceAccountEmail":{"description":"GKE service account email\n","type":"string"},"keepPrevVersion":{"description":"Whether to keep previous version [true/false]. If not set, use default according to account settings\n","type":"string"},"key":{"description":"The name of a key that used to encrypt the target secret value (if empty, the account default protectionKey key will be used)\n","type":"string"},"maxVersions":{"description":"Set the maximum number of versions, limited by the account settings defaults.\n","type":"string"},"name":{"description":"Target name\n","type":"string"},"targetGkeId":{"description":"The ID of this resource.\n","type":"string"},"useGwCloudIdentity":{"description":"Use the GW's Cloud IAM\n","type":"boolean"}},"properties":{"description":{"description":"Description of the object\n","type":"string"},"gkeAccountKey":{"description":"GKE Service Account key file path\n","type":"string"},"gkeClusterCert":{"description":"GKE cluster CA certificate\n","type":"string"},"gkeClusterEndpoint":{"description":"GKE cluster URL endpoint\n","type":"string"},"gkeClusterName":{"description":"GKE cluster name\n","type":"string"},"gkeServiceAccountEmail":{"description":"GKE service account email\n","type":"string"},"keepPrevVersion":{"description":"Whether to keep previous version [true/false]. If not set, use default according to account settings\n","type":"string"},"key":{"description":"The name of a key that used to encrypt the target secret value (if empty, the account default protectionKey key will be used)\n","type":"string"},"maxVersions":{"description":"Set the maximum number of versions, limited by the account settings defaults.\n","type":"string"},"name":{"description":"Target name\n","type":"string"},"targetGkeId":{"description":"The ID of this resource.\n","type":"string"},"useGwCloudIdentity":{"description":"Use the GW's Cloud IAM\n","type":"boolean"}},"required":["key","name","targetGkeId"],"stateInputs":{"description":"Input properties used for looking up and filtering TargetGke resources.\n","properties":{"description":{"description":"Description of the object\n","type":"string"},"gkeAccountKey":{"description":"GKE Service Account key file path\n","type":"string"},"gkeClusterCert":{"description":"GKE cluster CA certificate\n","type":"string"},"gkeClusterEndpoint":{"description":"GKE cluster URL endpoint\n","type":"string"},"gkeClusterName":{"description":"GKE cluster name\n","type":"string"},"gkeServiceAccountEmail":{"description":"GKE service account email\n","type":"string"},"keepPrevVersion":{"description":"Whether to keep previous version [true/false]. If not set, use default according to account settings\n","type":"string"},"key":{"description":"The name of a key that used to encrypt the target secret value (if empty, the account default protectionKey key will be used)\n","type":"string"},"maxVersions":{"description":"Set the maximum number of versions, limited by the account settings defaults.\n","type":"string"},"name":{"description":"Target name\n","type":"string"},"targetGkeId":{"description":"The ID of this resource.\n","type":"string"},"useGwCloudIdentity":{"description":"Use the GW's Cloud IAM\n","type":"boolean"}},"type":"object"},"type":"object"},"akeyless:index/targetGlobalsign:TargetGlobalsign":{"description":"GlobalSign Target resource\n","inputProperties":{"contactEmail":{"description":"Email of the GlobalSign GCC account contact\n","type":"string"},"contactFirstName":{"description":"First name of the GlobalSign GCC account contact\n","type":"string"},"contactLastName":{"description":"Last name of the GlobalSign GCC account contact\n","type":"string"},"contactPhone":{"description":"Telephone of the GlobalSign GCC account contact\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"keepPrevVersion":{"description":"Whether to keep previous version [true/false]. If not set, use default according to account settings\n","type":"string"},"key":{"description":"The name of a key that used to encrypt the target secret value (if empty, the account default protectionKey key will be used)\n","type":"string"},"maxVersions":{"description":"Set the maximum number of versions, limited by the account settings defaults.\n","type":"string"},"name":{"description":"Target name\n","type":"string"},"password":{"description":"Password of the GlobalSign GCC account\n","secret":true,"type":"string"},"profileId":{"description":"Profile ID of the GlobalSign GCC account\n","type":"string"},"targetGlobalsignId":{"description":"The ID of this resource.\n","type":"string"},"timeout":{"description":"Timeout waiting for certificate validation in Duration format (1h - 1 Hour, 20m - 20 Minutes, 33m3s - 33 Minutes and 3 Seconds), maximum 1h.\n","type":"string"},"username":{"description":"Username of the GlobalSign GCC account\n","type":"string"}},"properties":{"contactEmail":{"description":"Email of the GlobalSign GCC account contact\n","type":"string"},"contactFirstName":{"description":"First name of the GlobalSign GCC account contact\n","type":"string"},"contactLastName":{"description":"Last name of the GlobalSign GCC account contact\n","type":"string"},"contactPhone":{"description":"Telephone of the GlobalSign GCC account contact\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"keepPrevVersion":{"description":"Whether to keep previous version [true/false]. If not set, use default according to account settings\n","type":"string"},"key":{"description":"The name of a key that used to encrypt the target secret value (if empty, the account default protectionKey key will be used)\n","type":"string"},"maxVersions":{"description":"Set the maximum number of versions, limited by the account settings defaults.\n","type":"string"},"name":{"description":"Target name\n","type":"string"},"password":{"description":"Password of the GlobalSign GCC account\n","secret":true,"type":"string"},"profileId":{"description":"Profile ID of the GlobalSign GCC account\n","type":"string"},"targetGlobalsignId":{"description":"The ID of this resource.\n","type":"string"},"timeout":{"description":"Timeout waiting for certificate validation in Duration format (1h - 1 Hour, 20m - 20 Minutes, 33m3s - 33 Minutes and 3 Seconds), maximum 1h.\n","type":"string"},"username":{"description":"Username of the GlobalSign GCC account\n","type":"string"}},"required":["contactEmail","contactFirstName","contactLastName","contactPhone","key","name","password","profileId","targetGlobalsignId","username"],"requiredInputs":["contactEmail","contactFirstName","contactLastName","contactPhone","password","profileId","username"],"stateInputs":{"description":"Input properties used for looking up and filtering TargetGlobalsign resources.\n","properties":{"contactEmail":{"description":"Email of the GlobalSign GCC account contact\n","type":"string"},"contactFirstName":{"description":"First name of the GlobalSign GCC account contact\n","type":"string"},"contactLastName":{"description":"Last name of the GlobalSign GCC account contact\n","type":"string"},"contactPhone":{"description":"Telephone of the GlobalSign GCC account contact\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"keepPrevVersion":{"description":"Whether to keep previous version [true/false]. If not set, use default according to account settings\n","type":"string"},"key":{"description":"The name of a key that used to encrypt the target secret value (if empty, the account default protectionKey key will be used)\n","type":"string"},"maxVersions":{"description":"Set the maximum number of versions, limited by the account settings defaults.\n","type":"string"},"name":{"description":"Target name\n","type":"string"},"password":{"description":"Password of the GlobalSign GCC account\n","secret":true,"type":"string"},"profileId":{"description":"Profile ID of the GlobalSign GCC account\n","type":"string"},"targetGlobalsignId":{"description":"The ID of this resource.\n","type":"string"},"timeout":{"description":"Timeout waiting for certificate validation in Duration format (1h - 1 Hour, 20m - 20 Minutes, 33m3s - 33 Minutes and 3 Seconds), maximum 1h.\n","type":"string"},"username":{"description":"Username of the GlobalSign GCC account\n","type":"string"}},"type":"object"},"type":"object"},"akeyless:index/targetGlobalsignAtlas:TargetGlobalsignAtlas":{"description":"GlobalSign Atlas Target resource\n","inputProperties":{"apiKey":{"description":"API Key of the GlobalSign Atlas account\n","type":"string"},"apiSecret":{"description":"API Secret of the GlobalSign Atlas account\n","secret":true,"type":"string"},"description":{"description":"Description of the object\n","type":"string"},"keepPrevVersion":{"description":"Whether to keep previous version [true/false]. If not set, use default according to account settings\n","type":"string"},"key":{"description":"Key name. The key will be used to encrypt the target secret value. If key name is not specified, the account default protection key is used\n","type":"string"},"maxVersions":{"description":"Set the maximum number of versions, limited by the account settings defaults\n","type":"string"},"mtlsCertDataBase64":{"description":"Mutual TLS Certificate contents of the GlobalSign Atlas account encoded in base64\n","type":"string"},"mtlsKeyDataBase64":{"description":"Mutual TLS Key contents of the GlobalSign Atlas account encoded in base64\n","secret":true,"type":"string"},"name":{"description":"Target name\n","type":"string"},"targetGlobalsignAtlasId":{"description":"The ID of this resource.\n","type":"string"},"timeout":{"description":"Timeout waiting for certificate validation in Duration format (1h - 1 Hour, 20m - 20 Minutes, 33m3s - 33 Minutes and 3 Seconds), maximum 1h\n","type":"string"}},"properties":{"apiKey":{"description":"API Key of the GlobalSign Atlas account\n","type":"string"},"apiSecret":{"description":"API Secret of the GlobalSign Atlas account\n","secret":true,"type":"string"},"description":{"description":"Description of the object\n","type":"string"},"keepPrevVersion":{"description":"Whether to keep previous version [true/false]. If not set, use default according to account settings\n","type":"string"},"key":{"description":"Key name. The key will be used to encrypt the target secret value. If key name is not specified, the account default protection key is used\n","type":"string"},"maxVersions":{"description":"Set the maximum number of versions, limited by the account settings defaults\n","type":"string"},"mtlsCertDataBase64":{"description":"Mutual TLS Certificate contents of the GlobalSign Atlas account encoded in base64\n","type":"string"},"mtlsKeyDataBase64":{"description":"Mutual TLS Key contents of the GlobalSign Atlas account encoded in base64\n","secret":true,"type":"string"},"name":{"description":"Target name\n","type":"string"},"targetGlobalsignAtlasId":{"description":"The ID of this resource.\n","type":"string"},"timeout":{"description":"Timeout waiting for certificate validation in Duration format (1h - 1 Hour, 20m - 20 Minutes, 33m3s - 33 Minutes and 3 Seconds), maximum 1h\n","type":"string"}},"required":["apiKey","apiSecret","key","name","targetGlobalsignAtlasId"],"requiredInputs":["apiKey","apiSecret"],"stateInputs":{"description":"Input properties used for looking up and filtering TargetGlobalsignAtlas resources.\n","properties":{"apiKey":{"description":"API Key of the GlobalSign Atlas account\n","type":"string"},"apiSecret":{"description":"API Secret of the GlobalSign Atlas account\n","secret":true,"type":"string"},"description":{"description":"Description of the object\n","type":"string"},"keepPrevVersion":{"description":"Whether to keep previous version [true/false]. If not set, use default according to account settings\n","type":"string"},"key":{"description":"Key name. The key will be used to encrypt the target secret value. If key name is not specified, the account default protection key is used\n","type":"string"},"maxVersions":{"description":"Set the maximum number of versions, limited by the account settings defaults\n","type":"string"},"mtlsCertDataBase64":{"description":"Mutual TLS Certificate contents of the GlobalSign Atlas account encoded in base64\n","type":"string"},"mtlsKeyDataBase64":{"description":"Mutual TLS Key contents of the GlobalSign Atlas account encoded in base64\n","secret":true,"type":"string"},"name":{"description":"Target name\n","type":"string"},"targetGlobalsignAtlasId":{"description":"The ID of this resource.\n","type":"string"},"timeout":{"description":"Timeout waiting for certificate validation in Duration format (1h - 1 Hour, 20m - 20 Minutes, 33m3s - 33 Minutes and 3 Seconds), maximum 1h\n","type":"string"}},"type":"object"},"type":"object"},"akeyless:index/targetGodaddy:TargetGodaddy":{"description":"GoDaddy Target resource\n","inputProperties":{"apiKey":{"description":"Key of the api credentials to the Godaddy account\n","secret":true,"type":"string"},"customerId":{"description":"Customer ID (ShopperId) required for renewal of imported certificates\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"imapFqdn":{"description":"ImapFQDN of the IMAP service, FQDN or IPv4 address. Must be FQDN if the IMAP is using TLS\n","type":"string"},"imapPassword":{"description":"ImapPassword to access the IMAP service\n","secret":true,"type":"string"},"imapPort":{"description":"ImapPort of the IMAP service\n","type":"string"},"imapUsername":{"description":"ImapUsername to access the IMAP service\n","type":"string"},"keepPrevVersion":{"description":"Whether to keep previous version [true/false]. If not set, use default according to account settings\n","type":"string"},"key":{"description":"The name of a key that used to encrypt the target secret value (if empty, the account default protectionKey key will be used)\n","type":"string"},"maxVersions":{"description":"Set the maximum number of versions, limited by the account settings defaults.\n","type":"string"},"name":{"description":"Target name\n","type":"string"},"secret":{"description":"Secret of the api credentials to the Godaddy account\n","secret":true,"type":"string"},"targetGodaddyId":{"description":"The ID of this resource.\n","type":"string"},"timeout":{"description":"Timeout waiting for certificate validation in Duration format (1h - 1 Hour, 20m - 20 Minutes, 33m3s - 33 Minutes and 3 Seconds), maximum 1h.\n","type":"string"},"validationEmail":{"description":"Email address for certificate validation\n","type":"string"}},"properties":{"apiKey":{"description":"Key of the api credentials to the Godaddy account\n","secret":true,"type":"string"},"customerId":{"description":"Customer ID (ShopperId) required for renewal of imported certificates\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"imapFqdn":{"description":"ImapFQDN of the IMAP service, FQDN or IPv4 address. Must be FQDN if the IMAP is using TLS\n","type":"string"},"imapPassword":{"description":"ImapPassword to access the IMAP service\n","secret":true,"type":"string"},"imapPort":{"description":"ImapPort of the IMAP service\n","type":"string"},"imapUsername":{"description":"ImapUsername to access the IMAP service\n","type":"string"},"keepPrevVersion":{"description":"Whether to keep previous version [true/false]. If not set, use default according to account settings\n","type":"string"},"key":{"description":"The name of a key that used to encrypt the target secret value (if empty, the account default protectionKey key will be used)\n","type":"string"},"maxVersions":{"description":"Set the maximum number of versions, limited by the account settings defaults.\n","type":"string"},"name":{"description":"Target name\n","type":"string"},"secret":{"description":"Secret of the api credentials to the Godaddy account\n","secret":true,"type":"string"},"targetGodaddyId":{"description":"The ID of this resource.\n","type":"string"},"timeout":{"description":"Timeout waiting for certificate validation in Duration format (1h - 1 Hour, 20m - 20 Minutes, 33m3s - 33 Minutes and 3 Seconds), maximum 1h.\n","type":"string"},"validationEmail":{"description":"Email address for certificate validation\n","type":"string"}},"required":["apiKey","imapFqdn","imapPassword","imapUsername","key","name","secret","targetGodaddyId"],"requiredInputs":["apiKey","imapFqdn","imapPassword","imapUsername","secret"],"stateInputs":{"description":"Input properties used for looking up and filtering TargetGodaddy resources.\n","properties":{"apiKey":{"description":"Key of the api credentials to the Godaddy account\n","secret":true,"type":"string"},"customerId":{"description":"Customer ID (ShopperId) required for renewal of imported certificates\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"imapFqdn":{"description":"ImapFQDN of the IMAP service, FQDN or IPv4 address. Must be FQDN if the IMAP is using TLS\n","type":"string"},"imapPassword":{"description":"ImapPassword to access the IMAP service\n","secret":true,"type":"string"},"imapPort":{"description":"ImapPort of the IMAP service\n","type":"string"},"imapUsername":{"description":"ImapUsername to access the IMAP service\n","type":"string"},"keepPrevVersion":{"description":"Whether to keep previous version [true/false]. If not set, use default according to account settings\n","type":"string"},"key":{"description":"The name of a key that used to encrypt the target secret value (if empty, the account default protectionKey key will be used)\n","type":"string"},"maxVersions":{"description":"Set the maximum number of versions, limited by the account settings defaults.\n","type":"string"},"name":{"description":"Target name\n","type":"string"},"secret":{"description":"Secret of the api credentials to the Godaddy account\n","secret":true,"type":"string"},"targetGodaddyId":{"description":"The ID of this resource.\n","type":"string"},"timeout":{"description":"Timeout waiting for certificate validation in Duration format (1h - 1 Hour, 20m - 20 Minutes, 33m3s - 33 Minutes and 3 Seconds), maximum 1h.\n","type":"string"},"validationEmail":{"description":"Email address for certificate validation\n","type":"string"}},"type":"object"},"type":"object"},"akeyless:index/targetGoogleTrust:TargetGoogleTrust":{"description":"Google Trust Target resource\n","inputProperties":{"acmeChallenge":{"description":"ACME challenge type. Options: [dns]\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"dnsTargetCreds":{"description":"Name of existing cloud target for DNS credentials. Required when challenge type is dns. Supported providers: AWS, Azure, GCP\n","type":"string"},"eabHmacKey":{"description":"External Account Binding HMAC key (required for ACME account bootstrap on create)\n","secret":true,"type":"string"},"eabKeyId":{"description":"External Account Binding key identifier (required for ACME account bootstrap on create)\n","type":"string"},"email":{"description":"Email address for ACME account registration\n","type":"string"},"gcpProject":{"description":"GCP Cloud DNS project ID. Optional and can be derived from service account\n","type":"string"},"googleTrustUrl":{"description":"Google Trust directory environment. Options: [production/staging]\n","type":"string"},"hostedZone":{"description":"AWS Route53 hosted zone ID. Required when DNS credentials target is AWS\n","type":"string"},"keepPrevVersion":{"description":"Whether to keep previous version [true/false]. If not set, use default according to account settings\n","type":"string"},"key":{"description":"The name of a key that used to encrypt the target secret value (if empty, the account default protectionKey key will be used)\n","type":"string"},"maxVersions":{"description":"Set the maximum number of versions, limited by the account settings defaults.\n","type":"string"},"name":{"description":"Target name\n","type":"string"},"resourceGroup":{"description":"Azure resource group name. Required when DNS credentials target is Azure\n","type":"string"},"targetGoogleTrustId":{"description":"The ID of this resource.\n","type":"string"},"timeout":{"description":"Timeout for challenge validation\n","type":"string"}},"properties":{"acmeChallenge":{"description":"ACME challenge type. Options: [dns]\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"dnsTargetCreds":{"description":"Name of existing cloud target for DNS credentials. Required when challenge type is dns. Supported providers: AWS, Azure, GCP\n","type":"string"},"eabHmacKey":{"description":"External Account Binding HMAC key (required for ACME account bootstrap on create)\n","secret":true,"type":"string"},"eabKeyId":{"description":"External Account Binding key identifier (required for ACME account bootstrap on create)\n","type":"string"},"email":{"description":"Email address for ACME account registration\n","type":"string"},"gcpProject":{"description":"GCP Cloud DNS project ID. Optional and can be derived from service account\n","type":"string"},"googleTrustUrl":{"description":"Google Trust directory environment. Options: [production/staging]\n","type":"string"},"hostedZone":{"description":"AWS Route53 hosted zone ID. Required when DNS credentials target is AWS\n","type":"string"},"keepPrevVersion":{"description":"Whether to keep previous version [true/false]. If not set, use default according to account settings\n","type":"string"},"key":{"description":"The name of a key that used to encrypt the target secret value (if empty, the account default protectionKey key will be used)\n","type":"string"},"maxVersions":{"description":"Set the maximum number of versions, limited by the account settings defaults.\n","type":"string"},"name":{"description":"Target name\n","type":"string"},"resourceGroup":{"description":"Azure resource group name. Required when DNS credentials target is Azure\n","type":"string"},"targetGoogleTrustId":{"description":"The ID of this resource.\n","type":"string"},"timeout":{"description":"Timeout for challenge validation\n","type":"string"}},"required":["email","key","name","targetGoogleTrustId"],"requiredInputs":["email"],"stateInputs":{"description":"Input properties used for looking up and filtering TargetGoogleTrust resources.\n","properties":{"acmeChallenge":{"description":"ACME challenge type. Options: [dns]\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"dnsTargetCreds":{"description":"Name of existing cloud target for DNS credentials. Required when challenge type is dns. Supported providers: AWS, Azure, GCP\n","type":"string"},"eabHmacKey":{"description":"External Account Binding HMAC key (required for ACME account bootstrap on create)\n","secret":true,"type":"string"},"eabKeyId":{"description":"External Account Binding key identifier (required for ACME account bootstrap on create)\n","type":"string"},"email":{"description":"Email address for ACME account registration\n","type":"string"},"gcpProject":{"description":"GCP Cloud DNS project ID. Optional and can be derived from service account\n","type":"string"},"googleTrustUrl":{"description":"Google Trust directory environment. Options: [production/staging]\n","type":"string"},"hostedZone":{"description":"AWS Route53 hosted zone ID. Required when DNS credentials target is AWS\n","type":"string"},"keepPrevVersion":{"description":"Whether to keep previous version [true/false]. If not set, use default according to account settings\n","type":"string"},"key":{"description":"The name of a key that used to encrypt the target secret value (if empty, the account default protectionKey key will be used)\n","type":"string"},"maxVersions":{"description":"Set the maximum number of versions, limited by the account settings defaults.\n","type":"string"},"name":{"description":"Target name\n","type":"string"},"resourceGroup":{"description":"Azure resource group name. Required when DNS credentials target is Azure\n","type":"string"},"targetGoogleTrustId":{"description":"The ID of this resource.\n","type":"string"},"timeout":{"description":"Timeout for challenge validation\n","type":"string"}},"type":"object"},"type":"object"},"akeyless:index/targetHashivault:TargetHashivault":{"description":"HashiCorp Vault Target resource\n","inputProperties":{"description":{"description":"Description of the object\n","type":"string"},"hashiUrl":{"description":"HashiCorp Vault API URL, e.g. https://vault-mgr01:8200\n","type":"string"},"keepPrevVersion":{"description":"Whether to keep previous version [true/false]. If not set, use default according to account settings\n","type":"string"},"key":{"description":"The name of a key that used to encrypt the target secret value (if empty, the account default protectionKey key will be used)\n","type":"string"},"maxVersions":{"description":"Set the maximum number of versions, limited by the account settings defaults\n","type":"string"},"name":{"description":"Target name\n","type":"string"},"namespaces":{"description":"Comma-separated list of vault namespaces\n","items":{"type":"string"},"type":"array"},"targetHashivaultId":{"description":"The ID of this resource.\n","type":"string"},"vaultToken":{"description":"Vault access token with sufficient permissions\n","secret":true,"type":"string"}},"properties":{"description":{"description":"Description of the object\n","type":"string"},"hashiUrl":{"description":"HashiCorp Vault API URL, e.g. https://vault-mgr01:8200\n","type":"string"},"keepPrevVersion":{"description":"Whether to keep previous version [true/false]. If not set, use default according to account settings\n","type":"string"},"key":{"description":"The name of a key that used to encrypt the target secret value (if empty, the account default protectionKey key will be used)\n","type":"string"},"maxVersions":{"description":"Set the maximum number of versions, limited by the account settings defaults\n","type":"string"},"name":{"description":"Target name\n","type":"string"},"namespaces":{"description":"Comma-separated list of vault namespaces\n","items":{"type":"string"},"type":"array"},"targetHashivaultId":{"description":"The ID of this resource.\n","type":"string"},"vaultToken":{"description":"Vault access token with sufficient permissions\n","secret":true,"type":"string"}},"required":["key","name","targetHashivaultId"],"stateInputs":{"description":"Input properties used for looking up and filtering TargetHashivault resources.\n","properties":{"description":{"description":"Description of the object\n","type":"string"},"hashiUrl":{"description":"HashiCorp Vault API URL, e.g. https://vault-mgr01:8200\n","type":"string"},"keepPrevVersion":{"description":"Whether to keep previous version [true/false]. If not set, use default according to account settings\n","type":"string"},"key":{"description":"The name of a key that used to encrypt the target secret value (if empty, the account default protectionKey key will be used)\n","type":"string"},"maxVersions":{"description":"Set the maximum number of versions, limited by the account settings defaults\n","type":"string"},"name":{"description":"Target name\n","type":"string"},"namespaces":{"description":"Comma-separated list of vault namespaces\n","items":{"type":"string"},"type":"array"},"targetHashivaultId":{"description":"The ID of this resource.\n","type":"string"},"vaultToken":{"description":"Vault access token with sufficient permissions\n","secret":true,"type":"string"}},"type":"object"},"type":"object"},"akeyless:index/targetK8s:TargetK8s":{"description":"K8S Target resource\n","inputProperties":{"description":{"description":"Description of the object\n","type":"string"},"k8sAuthType":{"description":"K8S auth type [token/certificate]\n","type":"string"},"k8sClientCertificate":{"description":"Content of the k8 client certificate (PEM format) in a Base64 format\n","secret":true,"type":"string"},"k8sClientKey":{"description":"Content of the k8 client private key (PEM format) in a Base64 format\n","secret":true,"type":"string"},"k8sClusterCaCert":{"description":"K8S cluster CA certificate\n","secret":true,"type":"string"},"k8sClusterEndpoint":{"description":"K8S cluster URL endpoint\n","type":"string"},"k8sClusterName":{"description":"K8S cluster name\n","type":"string"},"k8sClusterToken":{"description":"K8S cluster Bearer token\n","type":"string"},"keepPrevVersion":{"description":"Whether to keep previous version [true/false]. If not set, use default according to account settings\n","type":"string"},"key":{"description":"The name of a key that used to encrypt the target secret value (if empty, the account default protectionKey key will be used)\n","type":"string"},"maxVersions":{"description":"Set the maximum number of versions, limited by the account settings defaults.\n","type":"string"},"name":{"description":"Target name\n","type":"string"},"targetK8sId":{"description":"The ID of this resource.\n","type":"string"},"useGwServiceAccount":{"description":"Use the GW's service account\n","type":"boolean"}},"properties":{"description":{"description":"Description of the object\n","type":"string"},"k8sAuthType":{"description":"K8S auth type [token/certificate]\n","type":"string"},"k8sClientCertificate":{"description":"Content of the k8 client certificate (PEM format) in a Base64 format\n","secret":true,"type":"string"},"k8sClientKey":{"description":"Content of the k8 client private key (PEM format) in a Base64 format\n","secret":true,"type":"string"},"k8sClusterCaCert":{"description":"K8S cluster CA certificate\n","secret":true,"type":"string"},"k8sClusterEndpoint":{"description":"K8S cluster URL endpoint\n","type":"string"},"k8sClusterName":{"description":"K8S cluster name\n","type":"string"},"k8sClusterToken":{"description":"K8S cluster Bearer token\n","type":"string"},"keepPrevVersion":{"description":"Whether to keep previous version [true/false]. If not set, use default according to account settings\n","type":"string"},"key":{"description":"The name of a key that used to encrypt the target secret value (if empty, the account default protectionKey key will be used)\n","type":"string"},"maxVersions":{"description":"Set the maximum number of versions, limited by the account settings defaults.\n","type":"string"},"name":{"description":"Target name\n","type":"string"},"targetK8sId":{"description":"The ID of this resource.\n","type":"string"},"useGwServiceAccount":{"description":"Use the GW's service account\n","type":"boolean"}},"required":["k8sClusterCaCert","k8sClusterEndpoint","k8sClusterToken","key","name","targetK8sId"],"requiredInputs":["k8sClusterCaCert","k8sClusterEndpoint","k8sClusterToken"],"stateInputs":{"description":"Input properties used for looking up and filtering TargetK8s resources.\n","properties":{"description":{"description":"Description of the object\n","type":"string"},"k8sAuthType":{"description":"K8S auth type [token/certificate]\n","type":"string"},"k8sClientCertificate":{"description":"Content of the k8 client certificate (PEM format) in a Base64 format\n","secret":true,"type":"string"},"k8sClientKey":{"description":"Content of the k8 client private key (PEM format) in a Base64 format\n","secret":true,"type":"string"},"k8sClusterCaCert":{"description":"K8S cluster CA certificate\n","secret":true,"type":"string"},"k8sClusterEndpoint":{"description":"K8S cluster URL endpoint\n","type":"string"},"k8sClusterName":{"description":"K8S cluster name\n","type":"string"},"k8sClusterToken":{"description":"K8S cluster Bearer token\n","type":"string"},"keepPrevVersion":{"description":"Whether to keep previous version [true/false]. If not set, use default according to account settings\n","type":"string"},"key":{"description":"The name of a key that used to encrypt the target secret value (if empty, the account default protectionKey key will be used)\n","type":"string"},"maxVersions":{"description":"Set the maximum number of versions, limited by the account settings defaults.\n","type":"string"},"name":{"description":"Target name\n","type":"string"},"targetK8sId":{"description":"The ID of this resource.\n","type":"string"},"useGwServiceAccount":{"description":"Use the GW's service account\n","type":"boolean"}},"type":"object"},"type":"object"},"akeyless:index/targetLdap:TargetLdap":{"description":"LDAP Target resource\n","inputProperties":{"bindDn":{"description":"Bind DN\n","type":"string"},"bindDnPassword":{"description":"Bind DN Password\n","secret":true,"type":"string"},"description":{"description":"Description of the object\n","type":"string"},"keepPrevVersion":{"description":"Whether to keep previous version [true/false]. If not set, use default according to account settings\n","type":"string"},"key":{"description":"The name of a key that used to encrypt the target secret value (if empty, the account default protectionKey key will be used)\n","type":"string"},"ldapCaCert":{"description":"CA Certificate File Content\n","type":"string"},"ldapUrl":{"description":"LDAP Server URL\n","type":"string"},"maxVersions":{"description":"Set the maximum number of versions, limited by the account settings defaults.\n","type":"string"},"name":{"description":"Target name\n","type":"string"},"serverType":{"description":"Set Ldap server type, Options:[OpenLDAP, ActiveDirectory]. Default is OpenLDAP\n","type":"string"},"targetLdapId":{"description":"The ID of this resource.\n","type":"string"},"tokenExpiration":{"description":"Token expiration\n","type":"string"}},"properties":{"bindDn":{"description":"Bind DN\n","type":"string"},"bindDnPassword":{"description":"Bind DN Password\n","secret":true,"type":"string"},"description":{"description":"Description of the object\n","type":"string"},"keepPrevVersion":{"description":"Whether to keep previous version [true/false]. If not set, use default according to account settings\n","type":"string"},"key":{"description":"The name of a key that used to encrypt the target secret value (if empty, the account default protectionKey key will be used)\n","type":"string"},"ldapCaCert":{"description":"CA Certificate File Content\n","type":"string"},"ldapUrl":{"description":"LDAP Server URL\n","type":"string"},"maxVersions":{"description":"Set the maximum number of versions, limited by the account settings defaults.\n","type":"string"},"name":{"description":"Target name\n","type":"string"},"serverType":{"description":"Set Ldap server type, Options:[OpenLDAP, ActiveDirectory]. Default is OpenLDAP\n","type":"string"},"targetLdapId":{"description":"The ID of this resource.\n","type":"string"},"tokenExpiration":{"description":"Token expiration\n","type":"string"}},"required":["bindDn","bindDnPassword","key","ldapUrl","name","targetLdapId"],"requiredInputs":["bindDn","bindDnPassword","ldapUrl"],"stateInputs":{"description":"Input properties used for looking up and filtering TargetLdap resources.\n","properties":{"bindDn":{"description":"Bind DN\n","type":"string"},"bindDnPassword":{"description":"Bind DN Password\n","secret":true,"type":"string"},"description":{"description":"Description of the object\n","type":"string"},"keepPrevVersion":{"description":"Whether to keep previous version [true/false]. If not set, use default according to account settings\n","type":"string"},"key":{"description":"The name of a key that used to encrypt the target secret value (if empty, the account default protectionKey key will be used)\n","type":"string"},"ldapCaCert":{"description":"CA Certificate File Content\n","type":"string"},"ldapUrl":{"description":"LDAP Server URL\n","type":"string"},"maxVersions":{"description":"Set the maximum number of versions, limited by the account settings defaults.\n","type":"string"},"name":{"description":"Target name\n","type":"string"},"serverType":{"description":"Set Ldap server type, Options:[OpenLDAP, ActiveDirectory]. Default is OpenLDAP\n","type":"string"},"targetLdapId":{"description":"The ID of this resource.\n","type":"string"},"tokenExpiration":{"description":"Token expiration\n","type":"string"}},"type":"object"},"type":"object"},"akeyless:index/targetLetsEncrypt:TargetLetsEncrypt":{"description":"Let's Encrypt Target resource\n","inputProperties":{"acmeChallenge":{"description":"ACME challenge type. Options: [http/dns]\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"dnsTargetCreds":{"description":"Name of existing cloud target for DNS credentials. Required when acme-challenge=dns. Supported: AWS, Azure, GCP targets\n","type":"string"},"email":{"description":"Email address for ACME account registration\n","type":"string"},"gcpProject":{"description":"GCP Cloud DNS: Project ID. Optional - can be derived from service account\n","type":"string"},"hostedZone":{"description":"AWS Route53 hosted zone ID. Required when dns-target-creds points to AWS target\n","type":"string"},"keepPrevVersion":{"description":"Whether to keep previous version [true/false]. If not set, use default according to account settings\n","type":"string"},"key":{"description":"The name of a key that used to encrypt the target secret value (if empty, the account default protectionKey key will be used)\n","type":"string"},"letsEncryptUrl":{"description":"Let's Encrypt directory environment\n","type":"string"},"maxVersions":{"description":"Set the maximum number of versions, limited by the account settings defaults.\n","type":"string"},"name":{"description":"Target name\n","type":"string"},"resourceGroup":{"description":"Azure resource group name. Required when dns-target-creds points to Azure target\n","type":"string"},"targetLetsEncryptId":{"description":"The ID of this resource.\n","type":"string"},"timeout":{"description":"Timeout for challenge validation\n","type":"string"}},"properties":{"acmeChallenge":{"description":"ACME challenge type. Options: [http/dns]\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"dnsTargetCreds":{"description":"Name of existing cloud target for DNS credentials. Required when acme-challenge=dns. Supported: AWS, Azure, GCP targets\n","type":"string"},"email":{"description":"Email address for ACME account registration\n","type":"string"},"gcpProject":{"description":"GCP Cloud DNS: Project ID. Optional - can be derived from service account\n","type":"string"},"hostedZone":{"description":"AWS Route53 hosted zone ID. Required when dns-target-creds points to AWS target\n","type":"string"},"keepPrevVersion":{"description":"Whether to keep previous version [true/false]. If not set, use default according to account settings\n","type":"string"},"key":{"description":"The name of a key that used to encrypt the target secret value (if empty, the account default protectionKey key will be used)\n","type":"string"},"letsEncryptUrl":{"description":"Let's Encrypt directory environment\n","type":"string"},"maxVersions":{"description":"Set the maximum number of versions, limited by the account settings defaults.\n","type":"string"},"name":{"description":"Target name\n","type":"string"},"resourceGroup":{"description":"Azure resource group name. Required when dns-target-creds points to Azure target\n","type":"string"},"targetLetsEncryptId":{"description":"The ID of this resource.\n","type":"string"},"timeout":{"description":"Timeout for challenge validation\n","type":"string"}},"required":["email","key","name","targetLetsEncryptId"],"requiredInputs":["email"],"stateInputs":{"description":"Input properties used for looking up and filtering TargetLetsEncrypt resources.\n","properties":{"acmeChallenge":{"description":"ACME challenge type. Options: [http/dns]\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"dnsTargetCreds":{"description":"Name of existing cloud target for DNS credentials. Required when acme-challenge=dns. Supported: AWS, Azure, GCP targets\n","type":"string"},"email":{"description":"Email address for ACME account registration\n","type":"string"},"gcpProject":{"description":"GCP Cloud DNS: Project ID. Optional - can be derived from service account\n","type":"string"},"hostedZone":{"description":"AWS Route53 hosted zone ID. Required when dns-target-creds points to AWS target\n","type":"string"},"keepPrevVersion":{"description":"Whether to keep previous version [true/false]. If not set, use default according to account settings\n","type":"string"},"key":{"description":"The name of a key that used to encrypt the target secret value (if empty, the account default protectionKey key will be used)\n","type":"string"},"letsEncryptUrl":{"description":"Let's Encrypt directory environment\n","type":"string"},"maxVersions":{"description":"Set the maximum number of versions, limited by the account settings defaults.\n","type":"string"},"name":{"description":"Target name\n","type":"string"},"resourceGroup":{"description":"Azure resource group name. Required when dns-target-creds points to Azure target\n","type":"string"},"targetLetsEncryptId":{"description":"The ID of this resource.\n","type":"string"},"timeout":{"description":"Timeout for challenge validation\n","type":"string"}},"type":"object"},"type":"object"},"akeyless:index/targetLinked:TargetLinked":{"description":"Linked Target resource\n","inputProperties":{"addHosts":{"description":"A comma seperated list of new server hosts and server descriptions joined by semicolon ';' that will be added to the Linked Target hosts.\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"hosts":{"description":"A comma seperated list of server hosts and server descriptions joined by semicolon ';' (i.e. 'server-dev.com;My Dev server,server-prod.com;My Prod server description')\n","type":"string"},"keepPrevVersion":{"description":"Whether to keep previous version [true/false]. If not set, use default according to account settings\n","type":"string"},"name":{"description":"Linked Target name\n","type":"string"},"parentTargetName":{"description":"The parent Target name\n","type":"string"},"rmHosts":{"description":"Comma separated list of existing hosts that will be removed from Linked Target hosts.\n","type":"string"},"targetLinkedId":{"description":"The ID of this resource.\n","type":"string"},"type":{"description":"Specifies the hosts type, relevant only when working without parent target\n","type":"string"}},"properties":{"addHosts":{"description":"A comma seperated list of new server hosts and server descriptions joined by semicolon ';' that will be added to the Linked Target hosts.\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"hosts":{"description":"A comma seperated list of server hosts and server descriptions joined by semicolon ';' (i.e. 'server-dev.com;My Dev server,server-prod.com;My Prod server description')\n","type":"string"},"keepPrevVersion":{"description":"Whether to keep previous version [true/false]. If not set, use default according to account settings\n","type":"string"},"name":{"description":"Linked Target name\n","type":"string"},"parentTargetName":{"description":"The parent Target name\n","type":"string"},"rmHosts":{"description":"Comma separated list of existing hosts that will be removed from Linked Target hosts.\n","type":"string"},"targetLinkedId":{"description":"The ID of this resource.\n","type":"string"},"type":{"description":"Specifies the hosts type, relevant only when working without parent target\n","type":"string"}},"required":["name","targetLinkedId"],"stateInputs":{"description":"Input properties used for looking up and filtering TargetLinked resources.\n","properties":{"addHosts":{"description":"A comma seperated list of new server hosts and server descriptions joined by semicolon ';' that will be added to the Linked Target hosts.\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"hosts":{"description":"A comma seperated list of server hosts and server descriptions joined by semicolon ';' (i.e. 'server-dev.com;My Dev server,server-prod.com;My Prod server description')\n","type":"string"},"keepPrevVersion":{"description":"Whether to keep previous version [true/false]. If not set, use default according to account settings\n","type":"string"},"name":{"description":"Linked Target name\n","type":"string"},"parentTargetName":{"description":"The parent Target name\n","type":"string"},"rmHosts":{"description":"Comma separated list of existing hosts that will be removed from Linked Target hosts.\n","type":"string"},"targetLinkedId":{"description":"The ID of this resource.\n","type":"string"},"type":{"description":"Specifies the hosts type, relevant only when working without parent target\n","type":"string"}},"type":"object"},"type":"object"},"akeyless:index/targetOpenai:TargetOpenai":{"description":"OpenAI Target resource\n","inputProperties":{"apiKey":{"description":"API key for OpenAI\n","secret":true,"type":"string"},"apiKeyId":{"description":"API key ID\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"keepPrevVersion":{"description":"Whether to keep previous version [true/false]. If not set, use default according to account settings\n","type":"string"},"key":{"description":"The name of a key that used to encrypt the target secret value (if empty, the account default protectionKey key will be used)\n","type":"string"},"maxVersions":{"description":"Set the maximum number of versions, limited by the account settings defaults.\n","type":"string"},"model":{"description":"Default model to use with OpenAI\n","type":"string"},"name":{"description":"Target name\n","type":"string"},"openaiUrl":{"description":"Base URL of the OpenAI API\n","type":"string"},"organizationId":{"description":"Organization ID\n","type":"string"},"targetOpenaiId":{"description":"The ID of this resource.\n","type":"string"}},"properties":{"apiKey":{"description":"API key for OpenAI\n","secret":true,"type":"string"},"apiKeyId":{"description":"API key ID\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"keepPrevVersion":{"description":"Whether to keep previous version [true/false]. If not set, use default according to account settings\n","type":"string"},"key":{"description":"The name of a key that used to encrypt the target secret value (if empty, the account default protectionKey key will be used)\n","type":"string"},"maxVersions":{"description":"Set the maximum number of versions, limited by the account settings defaults.\n","type":"string"},"model":{"description":"Default model to use with OpenAI\n","type":"string"},"name":{"description":"Target name\n","type":"string"},"openaiUrl":{"description":"Base URL of the OpenAI API\n","type":"string"},"organizationId":{"description":"Organization ID\n","type":"string"},"projectId":{"description":"Project ID\n","type":"string"},"targetOpenaiId":{"description":"The ID of this resource.\n","type":"string"}},"required":["key","name","projectId","targetOpenaiId"],"stateInputs":{"description":"Input properties used for looking up and filtering TargetOpenai resources.\n","properties":{"apiKey":{"description":"API key for OpenAI\n","secret":true,"type":"string"},"apiKeyId":{"description":"API key ID\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"keepPrevVersion":{"description":"Whether to keep previous version [true/false]. If not set, use default according to account settings\n","type":"string"},"key":{"description":"The name of a key that used to encrypt the target secret value (if empty, the account default protectionKey key will be used)\n","type":"string"},"maxVersions":{"description":"Set the maximum number of versions, limited by the account settings defaults.\n","type":"string"},"model":{"description":"Default model to use with OpenAI\n","type":"string"},"name":{"description":"Target name\n","type":"string"},"openaiUrl":{"description":"Base URL of the OpenAI API\n","type":"string"},"organizationId":{"description":"Organization ID\n","type":"string"},"projectId":{"description":"Project ID\n","type":"string"},"targetOpenaiId":{"description":"The ID of this resource.\n","type":"string"}},"type":"object"},"type":"object"},"akeyless:index/targetPing:TargetPing":{"description":"Ping Federate Target resource\n","inputProperties":{"administrativePort":{"description":"Ping Federate administrative port\n","type":"string"},"authorizationPort":{"description":"Ping Federate authorization port\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"keepPrevVersion":{"description":"Whether to keep previous version [true/false]. If not set, use default according to account settings\n","type":"string"},"key":{"description":"Key name. The key will be used to encrypt the target secret value. If key name is not specified, the account default protection key is used\n","type":"string"},"maxVersions":{"description":"Set the maximum number of versions, limited by the account settings defaults\n","type":"string"},"name":{"description":"Target name\n","type":"string"},"password":{"description":"Ping Federate privileged user password\n","secret":true,"type":"string"},"pingUrl":{"description":"Ping URL\n","type":"string"},"privilegedUser":{"description":"Ping Federate privileged user\n","type":"string"},"targetPingId":{"description":"The ID of this resource.\n","type":"string"}},"properties":{"administrativePort":{"description":"Ping Federate administrative port\n","type":"string"},"authorizationPort":{"description":"Ping Federate authorization port\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"keepPrevVersion":{"description":"Whether to keep previous version [true/false]. If not set, use default according to account settings\n","type":"string"},"key":{"description":"Key name. The key will be used to encrypt the target secret value. If key name is not specified, the account default protection key is used\n","type":"string"},"maxVersions":{"description":"Set the maximum number of versions, limited by the account settings defaults\n","type":"string"},"name":{"description":"Target name\n","type":"string"},"password":{"description":"Ping Federate privileged user password\n","secret":true,"type":"string"},"pingUrl":{"description":"Ping URL\n","type":"string"},"privilegedUser":{"description":"Ping Federate privileged user\n","type":"string"},"targetPingId":{"description":"The ID of this resource.\n","type":"string"}},"required":["key","name","targetPingId"],"stateInputs":{"description":"Input properties used for looking up and filtering TargetPing resources.\n","properties":{"administrativePort":{"description":"Ping Federate administrative port\n","type":"string"},"authorizationPort":{"description":"Ping Federate authorization port\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"keepPrevVersion":{"description":"Whether to keep previous version [true/false]. If not set, use default according to account settings\n","type":"string"},"key":{"description":"Key name. The key will be used to encrypt the target secret value. If key name is not specified, the account default protection key is used\n","type":"string"},"maxVersions":{"description":"Set the maximum number of versions, limited by the account settings defaults\n","type":"string"},"name":{"description":"Target name\n","type":"string"},"password":{"description":"Ping Federate privileged user password\n","secret":true,"type":"string"},"pingUrl":{"description":"Ping URL\n","type":"string"},"privilegedUser":{"description":"Ping Federate privileged user\n","type":"string"},"targetPingId":{"description":"The ID of this resource.\n","type":"string"}},"type":"object"},"type":"object"},"akeyless:index/targetRabbit:TargetRabbit":{"description":"RabbitMQT Target resource\n","inputProperties":{"description":{"description":"Description of the object\n","type":"string"},"keepPrevVersion":{"description":"Whether to keep previous version [true/false]. If not set, use default according to account settings\n","type":"string"},"key":{"description":"The name of a key that used to encrypt the target secret value (if empty, the account default protectionKey key will be used)\n","type":"string"},"maxVersions":{"description":"Set the maximum number of versions, limited by the account settings defaults.\n","type":"string"},"name":{"description":"Target name\n","type":"string"},"rabbitmqServerPassword":{"description":"RabbitMQ server password\n","type":"string"},"rabbitmqServerUri":{"description":"RabbitMQ server URI\n","type":"string"},"rabbitmqServerUser":{"description":"RabbitMQ server user\n","type":"string"},"targetRabbitId":{"description":"The ID of this resource.\n","type":"string"}},"properties":{"description":{"description":"Description of the object\n","type":"string"},"keepPrevVersion":{"description":"Whether to keep previous version [true/false]. If not set, use default according to account settings\n","type":"string"},"key":{"description":"The name of a key that used to encrypt the target secret value (if empty, the account default protectionKey key will be used)\n","type":"string"},"maxVersions":{"description":"Set the maximum number of versions, limited by the account settings defaults.\n","type":"string"},"name":{"description":"Target name\n","type":"string"},"rabbitmqServerPassword":{"description":"RabbitMQ server password\n","type":"string"},"rabbitmqServerUri":{"description":"RabbitMQ server URI\n","type":"string"},"rabbitmqServerUser":{"description":"RabbitMQ server user\n","type":"string"},"targetRabbitId":{"description":"The ID of this resource.\n","type":"string"}},"required":["key","name","rabbitmqServerUri","rabbitmqServerUser","targetRabbitId"],"requiredInputs":["rabbitmqServerUri","rabbitmqServerUser"],"stateInputs":{"description":"Input properties used for looking up and filtering TargetRabbit resources.\n","properties":{"description":{"description":"Description of the object\n","type":"string"},"keepPrevVersion":{"description":"Whether to keep previous version [true/false]. If not set, use default according to account settings\n","type":"string"},"key":{"description":"The name of a key that used to encrypt the target secret value (if empty, the account default protectionKey key will be used)\n","type":"string"},"maxVersions":{"description":"Set the maximum number of versions, limited by the account settings defaults.\n","type":"string"},"name":{"description":"Target name\n","type":"string"},"rabbitmqServerPassword":{"description":"RabbitMQ server password\n","type":"string"},"rabbitmqServerUri":{"description":"RabbitMQ server URI\n","type":"string"},"rabbitmqServerUser":{"description":"RabbitMQ server user\n","type":"string"},"targetRabbitId":{"description":"The ID of this resource.\n","type":"string"}},"type":"object"},"type":"object"},"akeyless:index/targetSalesforce:TargetSalesforce":{"description":"Salesforce Target resource\n","inputProperties":{"appPrivateKeyData":{"description":"Base64 encoded PEM of the connected app private key (relevant for JWT auth only)\n","secret":true,"type":"string"},"authFlow":{"description":"type of the auth flow ('jwt' / 'user-password')\n","type":"string"},"caCertData":{"description":"Base64 encoded PEM cert to use when uploading a new key to Salesforce\n","type":"string"},"caCertName":{"description":"name of the certificate in Salesforce tenant to use when uploading new key\n","type":"string"},"clientId":{"description":"Client ID of the oauth2 app to use for connecting to Salesforce\n","type":"string"},"clientSecret":{"description":"Client secret of the oauth2 app to use for connecting to Salesforce (required for password flow)\n","secret":true,"type":"string"},"description":{"description":"Description of the object\n","type":"string"},"email":{"description":"The email of the user attached to the oauth2 app used for connecting to Salesforce\n","type":"string"},"keepPrevVersion":{"description":"Whether to keep previous version [true/false]. If not set, use default according to account settings\n","type":"string"},"key":{"description":"The name of a key that used to encrypt the target secret value (if empty, the account default protectionKey key will be used)\n","type":"string"},"maxVersions":{"description":"Set the maximum number of versions, limited by the account settings defaults.\n","type":"string"},"name":{"description":"Target name\n","type":"string"},"password":{"description":"The password of the user attached to the oauth2 app used for connecting to Salesforce (required for user-password flow)\n","secret":true,"type":"string"},"securityToken":{"description":"The security token of the user attached to the oauth2 app used for connecting to Salesforce  (required for user-password flow)\n","secret":true,"type":"string"},"targetSalesforceId":{"description":"The ID of this resource.\n","type":"string"},"tenantUrl":{"description":"Url of the Salesforce tenant\n","type":"string"}},"properties":{"appPrivateKeyData":{"description":"Base64 encoded PEM of the connected app private key (relevant for JWT auth only)\n","secret":true,"type":"string"},"authFlow":{"description":"type of the auth flow ('jwt' / 'user-password')\n","type":"string"},"caCertData":{"description":"Base64 encoded PEM cert to use when uploading a new key to Salesforce\n","type":"string"},"caCertName":{"description":"name of the certificate in Salesforce tenant to use when uploading new key\n","type":"string"},"clientId":{"description":"Client ID of the oauth2 app to use for connecting to Salesforce\n","type":"string"},"clientSecret":{"description":"Client secret of the oauth2 app to use for connecting to Salesforce (required for password flow)\n","secret":true,"type":"string"},"description":{"description":"Description of the object\n","type":"string"},"email":{"description":"The email of the user attached to the oauth2 app used for connecting to Salesforce\n","type":"string"},"keepPrevVersion":{"description":"Whether to keep previous version [true/false]. If not set, use default according to account settings\n","type":"string"},"key":{"description":"The name of a key that used to encrypt the target secret value (if empty, the account default protectionKey key will be used)\n","type":"string"},"maxVersions":{"description":"Set the maximum number of versions, limited by the account settings defaults.\n","type":"string"},"name":{"description":"Target name\n","type":"string"},"password":{"description":"The password of the user attached to the oauth2 app used for connecting to Salesforce (required for user-password flow)\n","secret":true,"type":"string"},"securityToken":{"description":"The security token of the user attached to the oauth2 app used for connecting to Salesforce  (required for user-password flow)\n","secret":true,"type":"string"},"targetSalesforceId":{"description":"The ID of this resource.\n","type":"string"},"tenantUrl":{"description":"Url of the Salesforce tenant\n","type":"string"}},"required":["authFlow","clientId","email","key","name","targetSalesforceId","tenantUrl"],"requiredInputs":["authFlow","clientId","email","tenantUrl"],"stateInputs":{"description":"Input properties used for looking up and filtering TargetSalesforce resources.\n","properties":{"appPrivateKeyData":{"description":"Base64 encoded PEM of the connected app private key (relevant for JWT auth only)\n","secret":true,"type":"string"},"authFlow":{"description":"type of the auth flow ('jwt' / 'user-password')\n","type":"string"},"caCertData":{"description":"Base64 encoded PEM cert to use when uploading a new key to Salesforce\n","type":"string"},"caCertName":{"description":"name of the certificate in Salesforce tenant to use when uploading new key\n","type":"string"},"clientId":{"description":"Client ID of the oauth2 app to use for connecting to Salesforce\n","type":"string"},"clientSecret":{"description":"Client secret of the oauth2 app to use for connecting to Salesforce (required for password flow)\n","secret":true,"type":"string"},"description":{"description":"Description of the object\n","type":"string"},"email":{"description":"The email of the user attached to the oauth2 app used for connecting to Salesforce\n","type":"string"},"keepPrevVersion":{"description":"Whether to keep previous version [true/false]. If not set, use default according to account settings\n","type":"string"},"key":{"description":"The name of a key that used to encrypt the target secret value (if empty, the account default protectionKey key will be used)\n","type":"string"},"maxVersions":{"description":"Set the maximum number of versions, limited by the account settings defaults.\n","type":"string"},"name":{"description":"Target name\n","type":"string"},"password":{"description":"The password of the user attached to the oauth2 app used for connecting to Salesforce (required for user-password flow)\n","secret":true,"type":"string"},"securityToken":{"description":"The security token of the user attached to the oauth2 app used for connecting to Salesforce  (required for user-password flow)\n","secret":true,"type":"string"},"targetSalesforceId":{"description":"The ID of this resource.\n","type":"string"},"tenantUrl":{"description":"Url of the Salesforce tenant\n","type":"string"}},"type":"object"},"type":"object"},"akeyless:index/targetSectigo:TargetSectigo":{"description":"Sectigo Target resource\n","inputProperties":{"certificateProfileId":{"description":"Certificate Profile ID in Sectigo account\n","type":"number"},"customerUri":{"description":"Customer URI in Sectigo account\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"externalRequester":{"description":"External Requester - a comma separated list of emails\n","type":"string"},"keepPrevVersion":{"description":"Whether to keep previous version [true/false]. If not set, use default according to account settings\n","type":"string"},"key":{"description":"Key name. The key will be used to encrypt the target secret value. If key name is not specified, the account default protection key is used.\n","type":"string"},"maxVersions":{"description":"Set the maximum number of versions, limited by the account settings defaults\n","type":"string"},"name":{"description":"Target name\n","type":"string"},"organizationId":{"description":"Organization ID in Sectigo account\n","type":"number"},"password":{"description":"Password for Sectigo account\n","secret":true,"type":"string"},"targetSectigoId":{"description":"The ID of this resource.\n","type":"string"},"timeout":{"description":"Timeout waiting for certificate validation in Duration format (1h - 1 Hour, 20m - 20 Minutes, 33m3s - 33 Minutes and 3 Seconds), maximum 1h.\n","type":"string"},"username":{"description":"Username for Sectigo account\n","type":"string"}},"properties":{"certificateProfileId":{"description":"Certificate Profile ID in Sectigo account\n","type":"number"},"customerUri":{"description":"Customer URI in Sectigo account\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"externalRequester":{"description":"External Requester - a comma separated list of emails\n","type":"string"},"keepPrevVersion":{"description":"Whether to keep previous version [true/false]. If not set, use default according to account settings\n","type":"string"},"key":{"description":"Key name. The key will be used to encrypt the target secret value. If key name is not specified, the account default protection key is used.\n","type":"string"},"maxVersions":{"description":"Set the maximum number of versions, limited by the account settings defaults\n","type":"string"},"name":{"description":"Target name\n","type":"string"},"organizationId":{"description":"Organization ID in Sectigo account\n","type":"number"},"password":{"description":"Password for Sectigo account\n","secret":true,"type":"string"},"targetSectigoId":{"description":"The ID of this resource.\n","type":"string"},"timeout":{"description":"Timeout waiting for certificate validation in Duration format (1h - 1 Hour, 20m - 20 Minutes, 33m3s - 33 Minutes and 3 Seconds), maximum 1h.\n","type":"string"},"username":{"description":"Username for Sectigo account\n","type":"string"}},"required":["certificateProfileId","customerUri","externalRequester","key","name","organizationId","password","targetSectigoId","username"],"requiredInputs":["certificateProfileId","customerUri","externalRequester","organizationId","password","username"],"stateInputs":{"description":"Input properties used for looking up and filtering TargetSectigo resources.\n","properties":{"certificateProfileId":{"description":"Certificate Profile ID in Sectigo account\n","type":"number"},"customerUri":{"description":"Customer URI in Sectigo account\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"externalRequester":{"description":"External Requester - a comma separated list of emails\n","type":"string"},"keepPrevVersion":{"description":"Whether to keep previous version [true/false]. If not set, use default according to account settings\n","type":"string"},"key":{"description":"Key name. The key will be used to encrypt the target secret value. If key name is not specified, the account default protection key is used.\n","type":"string"},"maxVersions":{"description":"Set the maximum number of versions, limited by the account settings defaults\n","type":"string"},"name":{"description":"Target name\n","type":"string"},"organizationId":{"description":"Organization ID in Sectigo account\n","type":"number"},"password":{"description":"Password for Sectigo account\n","secret":true,"type":"string"},"targetSectigoId":{"description":"The ID of this resource.\n","type":"string"},"timeout":{"description":"Timeout waiting for certificate validation in Duration format (1h - 1 Hour, 20m - 20 Minutes, 33m3s - 33 Minutes and 3 Seconds), maximum 1h.\n","type":"string"},"username":{"description":"Username for Sectigo account\n","type":"string"}},"type":"object"},"type":"object"},"akeyless:index/targetSsh:TargetSsh":{"description":"SSH Target resource\n","inputProperties":{"description":{"description":"Description of the object\n","type":"string"},"host":{"description":"SSH host name\n","type":"string"},"keepPrevVersion":{"description":"Whether to keep previous version [true/false]. If not set, use default according to account settings\n","type":"string"},"key":{"description":"The name of a key that used to encrypt the target secret value (if empty, the account default protectionKey key will be used)\n","type":"string"},"maxVersions":{"description":"Set the maximum number of versions, limited by the account settings defaults.\n","type":"string"},"name":{"description":"Target name\n","type":"string"},"port":{"description":"SSH port\n","type":"string"},"privateKey":{"description":"SSH private key\n","type":"string"},"privateKeyPassword":{"description":"SSH private key password\n","type":"string"},"sshPassword":{"description":"SSH password to rotate\n","type":"string"},"sshUsername":{"description":"SSH username\n","type":"string"},"targetSshId":{"description":"The ID of this resource.\n","type":"string"}},"properties":{"description":{"description":"Description of the object\n","type":"string"},"host":{"description":"SSH host name\n","type":"string"},"keepPrevVersion":{"description":"Whether to keep previous version [true/false]. If not set, use default according to account settings\n","type":"string"},"key":{"description":"The name of a key that used to encrypt the target secret value (if empty, the account default protectionKey key will be used)\n","type":"string"},"maxVersions":{"description":"Set the maximum number of versions, limited by the account settings defaults.\n","type":"string"},"name":{"description":"Target name\n","type":"string"},"port":{"description":"SSH port\n","type":"string"},"privateKey":{"description":"SSH private key\n","type":"string"},"privateKeyPassword":{"description":"SSH private key password\n","type":"string"},"sshPassword":{"description":"SSH password to rotate\n","type":"string"},"sshUsername":{"description":"SSH username\n","type":"string"},"targetSshId":{"description":"The ID of this resource.\n","type":"string"}},"required":["key","name","targetSshId"],"stateInputs":{"description":"Input properties used for looking up and filtering TargetSsh resources.\n","properties":{"description":{"description":"Description of the object\n","type":"string"},"host":{"description":"SSH host name\n","type":"string"},"keepPrevVersion":{"description":"Whether to keep previous version [true/false]. If not set, use default according to account settings\n","type":"string"},"key":{"description":"The name of a key that used to encrypt the target secret value (if empty, the account default protectionKey key will be used)\n","type":"string"},"maxVersions":{"description":"Set the maximum number of versions, limited by the account settings defaults.\n","type":"string"},"name":{"description":"Target name\n","type":"string"},"port":{"description":"SSH port\n","type":"string"},"privateKey":{"description":"SSH private key\n","type":"string"},"privateKeyPassword":{"description":"SSH private key password\n","type":"string"},"sshPassword":{"description":"SSH password to rotate\n","type":"string"},"sshUsername":{"description":"SSH username\n","type":"string"},"targetSshId":{"description":"The ID of this resource.\n","type":"string"}},"type":"object"},"type":"object"},"akeyless:index/targetWeb:TargetWeb":{"description":"Web Target resource\n","inputProperties":{"description":{"description":"Description of the object\n","type":"string"},"keepPrevVersion":{"description":"Whether to keep previous version [true/false]. If not set, use default according to account settings\n","type":"string"},"key":{"description":"The name of a key that used to encrypt the target secret value (if empty, the account default protectionKey key will be used)\n","type":"string"},"maxVersions":{"description":"Set the maximum number of versions, limited by the account settings defaults.\n","type":"string"},"name":{"description":"Target name\n","type":"string"},"targetWebId":{"description":"The ID of this resource.\n","type":"string"},"url":{"description":"The url\n","type":"string"}},"properties":{"description":{"description":"Description of the object\n","type":"string"},"keepPrevVersion":{"description":"Whether to keep previous version [true/false]. If not set, use default according to account settings\n","type":"string"},"key":{"description":"The name of a key that used to encrypt the target secret value (if empty, the account default protectionKey key will be used)\n","type":"string"},"maxVersions":{"description":"Set the maximum number of versions, limited by the account settings defaults.\n","type":"string"},"name":{"description":"Target name\n","type":"string"},"targetWebId":{"description":"The ID of this resource.\n","type":"string"},"url":{"description":"The url\n","type":"string"}},"required":["key","name","targetWebId","url"],"requiredInputs":["url"],"stateInputs":{"description":"Input properties used for looking up and filtering TargetWeb resources.\n","properties":{"description":{"description":"Description of the object\n","type":"string"},"keepPrevVersion":{"description":"Whether to keep previous version [true/false]. If not set, use default according to account settings\n","type":"string"},"key":{"description":"The name of a key that used to encrypt the target secret value (if empty, the account default protectionKey key will be used)\n","type":"string"},"maxVersions":{"description":"Set the maximum number of versions, limited by the account settings defaults.\n","type":"string"},"name":{"description":"Target name\n","type":"string"},"targetWebId":{"description":"The ID of this resource.\n","type":"string"},"url":{"description":"The url\n","type":"string"}},"type":"object"},"type":"object"},"akeyless:index/targetWindows:TargetWindows":{"description":"windows Target resource\n","inputProperties":{"certificate":{"description":"SSL CA certificate in base64 encoding generated from a trusted Certificate Authority (CA)\n","secret":true,"type":"string"},"connectionType":{"description":"Type of connection to Windows Server [credentials/parent-target]\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"domain":{"description":"User domain name\n","type":"string"},"hostname":{"description":"server hostname or IP Address\n","type":"string"},"keepPrevVersion":{"description":"Whether to keep previous version [true/false]. If not set, use default according to account settings\n","type":"string"},"key":{"description":"Key name. The key is used to encrypt the target secret value. If the key name is not specified, the account default protection key is used\n","type":"string"},"maxVersions":{"description":"Set the maximum number of versions, limited by the account settings defaults\n","type":"string"},"name":{"description":"Target name\n","type":"string"},"parentTargetName":{"description":"Name of the parent target, relevant only when connection-type is parent-target\n","type":"string"},"password":{"description":"Privileged user password\n","secret":true,"type":"string"},"port":{"description":"Server WinRM port\n","type":"string"},"targetWindowsId":{"description":"The ID of this resource.\n","type":"string"},"useTls":{"description":"Enable/Disable TLS for WinRM over HTTPS [true/false]\n","type":"string"},"username":{"description":"Privileged username\n","type":"string"}},"properties":{"certificate":{"description":"SSL CA certificate in base64 encoding generated from a trusted Certificate Authority (CA)\n","secret":true,"type":"string"},"connectionType":{"description":"Type of connection to Windows Server [credentials/parent-target]\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"domain":{"description":"User domain name\n","type":"string"},"hostname":{"description":"server hostname or IP Address\n","type":"string"},"keepPrevVersion":{"description":"Whether to keep previous version [true/false]. If not set, use default according to account settings\n","type":"string"},"key":{"description":"Key name. The key is used to encrypt the target secret value. If the key name is not specified, the account default protection key is used\n","type":"string"},"maxVersions":{"description":"Set the maximum number of versions, limited by the account settings defaults\n","type":"string"},"name":{"description":"Target name\n","type":"string"},"parentTargetName":{"description":"Name of the parent target, relevant only when connection-type is parent-target\n","type":"string"},"password":{"description":"Privileged user password\n","secret":true,"type":"string"},"port":{"description":"Server WinRM port\n","type":"string"},"targetWindowsId":{"description":"The ID of this resource.\n","type":"string"},"useTls":{"description":"Enable/Disable TLS for WinRM over HTTPS [true/false]\n","type":"string"},"username":{"description":"Privileged username\n","type":"string"}},"required":["hostname","key","name","password","targetWindowsId","username"],"requiredInputs":["hostname","password","username"],"stateInputs":{"description":"Input properties used for looking up and filtering TargetWindows resources.\n","properties":{"certificate":{"description":"SSL CA certificate in base64 encoding generated from a trusted Certificate Authority (CA)\n","secret":true,"type":"string"},"connectionType":{"description":"Type of connection to Windows Server [credentials/parent-target]\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"domain":{"description":"User domain name\n","type":"string"},"hostname":{"description":"server hostname or IP Address\n","type":"string"},"keepPrevVersion":{"description":"Whether to keep previous version [true/false]. If not set, use default according to account settings\n","type":"string"},"key":{"description":"Key name. The key is used to encrypt the target secret value. If the key name is not specified, the account default protection key is used\n","type":"string"},"maxVersions":{"description":"Set the maximum number of versions, limited by the account settings defaults\n","type":"string"},"name":{"description":"Target name\n","type":"string"},"parentTargetName":{"description":"Name of the parent target, relevant only when connection-type is parent-target\n","type":"string"},"password":{"description":"Privileged user password\n","secret":true,"type":"string"},"port":{"description":"Server WinRM port\n","type":"string"},"targetWindowsId":{"description":"The ID of this resource.\n","type":"string"},"useTls":{"description":"Enable/Disable TLS for WinRM over HTTPS [true/false]\n","type":"string"},"username":{"description":"Privileged username\n","type":"string"}},"type":"object"},"type":"object"},"akeyless:index/targetZerossl:TargetZerossl":{"description":"ZeroSSL Target resource\n","inputProperties":{"apiKey":{"description":"API Key of the ZeroSSLTarget account\n","secret":true,"type":"string"},"description":{"description":"Description of the object\n","type":"string"},"imapFqdn":{"description":"FQDN or IPv4 address of the IMAP service. Must be FQDN if the IMAP is using TLS\n","type":"string"},"imapPassword":{"description":"Password to access the IMAP service\n","secret":true,"type":"string"},"imapPort":{"description":"Port of the IMAP service\n","type":"string"},"imapTargetEmail":{"description":"Validation email to use when asking ZeroSSL to send a validation email, if empty will use imap-username\n","type":"string"},"imapUsername":{"description":"Username to access the IMAP service\n","type":"string"},"keepPrevVersion":{"description":"Whether to keep previous version [true/false]. If not set, use default according to account settings\n","type":"string"},"key":{"description":"Key name. The key will be used to encrypt the target secret value. If key name is not specified, the account default protection key is used\n","type":"string"},"maxVersions":{"description":"Set the maximum number of versions, limited by the account settings defaults\n","type":"string"},"name":{"description":"Target name\n","type":"string"},"targetZerosslId":{"description":"The ID of this resource.\n","type":"string"},"timeout":{"description":"Timeout waiting for certificate validation in Duration format (1h - 1 Hour, 20m - 20 Minutes, 33m3s - 33 Minutes and 3 Seconds), maximum 1h\n","type":"string"}},"properties":{"apiKey":{"description":"API Key of the ZeroSSLTarget account\n","secret":true,"type":"string"},"description":{"description":"Description of the object\n","type":"string"},"imapFqdn":{"description":"FQDN or IPv4 address of the IMAP service. Must be FQDN if the IMAP is using TLS\n","type":"string"},"imapPassword":{"description":"Password to access the IMAP service\n","secret":true,"type":"string"},"imapPort":{"description":"Port of the IMAP service\n","type":"string"},"imapTargetEmail":{"description":"Validation email to use when asking ZeroSSL to send a validation email, if empty will use imap-username\n","type":"string"},"imapUsername":{"description":"Username to access the IMAP service\n","type":"string"},"keepPrevVersion":{"description":"Whether to keep previous version [true/false]. If not set, use default according to account settings\n","type":"string"},"key":{"description":"Key name. The key will be used to encrypt the target secret value. If key name is not specified, the account default protection key is used\n","type":"string"},"maxVersions":{"description":"Set the maximum number of versions, limited by the account settings defaults\n","type":"string"},"name":{"description":"Target name\n","type":"string"},"targetZerosslId":{"description":"The ID of this resource.\n","type":"string"},"timeout":{"description":"Timeout waiting for certificate validation in Duration format (1h - 1 Hour, 20m - 20 Minutes, 33m3s - 33 Minutes and 3 Seconds), maximum 1h\n","type":"string"}},"required":["apiKey","imapFqdn","imapPassword","imapUsername","key","name","targetZerosslId"],"requiredInputs":["apiKey","imapFqdn","imapPassword","imapUsername"],"stateInputs":{"description":"Input properties used for looking up and filtering TargetZerossl resources.\n","properties":{"apiKey":{"description":"API Key of the ZeroSSLTarget account\n","secret":true,"type":"string"},"description":{"description":"Description of the object\n","type":"string"},"imapFqdn":{"description":"FQDN or IPv4 address of the IMAP service. Must be FQDN if the IMAP is using TLS\n","type":"string"},"imapPassword":{"description":"Password to access the IMAP service\n","secret":true,"type":"string"},"imapPort":{"description":"Port of the IMAP service\n","type":"string"},"imapTargetEmail":{"description":"Validation email to use when asking ZeroSSL to send a validation email, if empty will use imap-username\n","type":"string"},"imapUsername":{"description":"Username to access the IMAP service\n","type":"string"},"keepPrevVersion":{"description":"Whether to keep previous version [true/false]. If not set, use default according to account settings\n","type":"string"},"key":{"description":"Key name. The key will be used to encrypt the target secret value. If key name is not specified, the account default protection key is used\n","type":"string"},"maxVersions":{"description":"Set the maximum number of versions, limited by the account settings defaults\n","type":"string"},"name":{"description":"Target name\n","type":"string"},"targetZerosslId":{"description":"The ID of this resource.\n","type":"string"},"timeout":{"description":"Timeout waiting for certificate validation in Duration format (1h - 1 Hour, 20m - 20 Minutes, 33m3s - 33 Minutes and 3 Seconds), maximum 1h\n","type":"string"}},"type":"object"},"type":"object"},"akeyless:index/tokenizer:Tokenizer":{"description":"Tokenizer resource\n","inputProperties":{"alphabet":{"description":"Alphabet to use in regexp vaultless tokenization\n","type":"string"},"decodingTemplate":{"description":"The Decoding output template to use in regexp vaultless tokenization\n","type":"string"},"deleteProtection":{"description":"Protection from accidental deletion of this item, [true/false]\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"encodingTemplate":{"description":"The Encoding output template to use in regexp vaultless tokenization\n","type":"string"},"encryptionKeyName":{"description":"AES key name to use in vaultless tokenization\n","type":"string"},"itemCustomFields":{"additionalProperties":{"type":"string"},"description":"Additional custom fields to associate with the item\n","type":"object"},"name":{"description":"Tokenizer name\n","type":"string"},"pattern":{"description":"Pattern to use in regexp vaultless tokenization\n","type":"string"},"tags":{"description":"List of the tags attached to this key. To specify multiple tags use argument multiple times: --tag Tag1 --tag Tag2\n","items":{"type":"string"},"type":"array"},"templateType":{"description":"Which template type this tokenizer is used for [SSN,CreditCard,USPhoneNumber,Email,Regexp]\n","type":"string"},"tokenizerId":{"description":"The ID of this resource.\n","type":"string"},"tokenizerType":{"description":"Tokenizer type(vaultless)\n","type":"string"},"tweakType":{"description":"The tweak type to use in vaultless tokenization [Supplied, Generated, Internal, Masking]\n","type":"string"}},"properties":{"alphabet":{"description":"Alphabet to use in regexp vaultless tokenization\n","type":"string"},"decodingTemplate":{"description":"The Decoding output template to use in regexp vaultless tokenization\n","type":"string"},"deleteProtection":{"description":"Protection from accidental deletion of this item, [true/false]\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"encodingTemplate":{"description":"The Encoding output template to use in regexp vaultless tokenization\n","type":"string"},"encryptionKeyName":{"description":"AES key name to use in vaultless tokenization\n","type":"string"},"itemCustomFields":{"additionalProperties":{"type":"string"},"description":"Additional custom fields to associate with the item\n","type":"object"},"name":{"description":"Tokenizer name\n","type":"string"},"pattern":{"description":"Pattern to use in regexp vaultless tokenization\n","type":"string"},"tags":{"description":"List of the tags attached to this key. To specify multiple tags use argument multiple times: --tag Tag1 --tag Tag2\n","items":{"type":"string"},"type":"array"},"templateType":{"description":"Which template type this tokenizer is used for [SSN,CreditCard,USPhoneNumber,Email,Regexp]\n","type":"string"},"tokenizerId":{"description":"The ID of this resource.\n","type":"string"},"tokenizerType":{"description":"Tokenizer type(vaultless)\n","type":"string"},"tweak":{"type":"string"},"tweakType":{"description":"The tweak type to use in vaultless tokenization [Supplied, Generated, Internal, Masking]\n","type":"string"}},"required":["encryptionKeyName","name","templateType","tokenizerId","tweak"],"requiredInputs":["templateType"],"stateInputs":{"description":"Input properties used for looking up and filtering Tokenizer resources.\n","properties":{"alphabet":{"description":"Alphabet to use in regexp vaultless tokenization\n","type":"string"},"decodingTemplate":{"description":"The Decoding output template to use in regexp vaultless tokenization\n","type":"string"},"deleteProtection":{"description":"Protection from accidental deletion of this item, [true/false]\n","type":"string"},"description":{"description":"Description of the object\n","type":"string"},"encodingTemplate":{"description":"The Encoding output template to use in regexp vaultless tokenization\n","type":"string"},"encryptionKeyName":{"description":"AES key name to use in vaultless tokenization\n","type":"string"},"itemCustomFields":{"additionalProperties":{"type":"string"},"description":"Additional custom fields to associate with the item\n","type":"object"},"name":{"description":"Tokenizer name\n","type":"string"},"pattern":{"description":"Pattern to use in regexp vaultless tokenization\n","type":"string"},"tags":{"description":"List of the tags attached to this key. To specify multiple tags use argument multiple times: --tag Tag1 --tag Tag2\n","items":{"type":"string"},"type":"array"},"templateType":{"description":"Which template type this tokenizer is used for [SSN,CreditCard,USPhoneNumber,Email,Regexp]\n","type":"string"},"tokenizerId":{"description":"The ID of this resource.\n","type":"string"},"tokenizerType":{"description":"Tokenizer type(vaultless)\n","type":"string"},"tweak":{"type":"string"},"tweakType":{"description":"The tweak type to use in vaultless tokenization [Supplied, Generated, Internal, Masking]\n","type":"string"}},"type":"object"},"type":"object"},"akeyless:index/usc:Usc":{"description":"Universal Secrets Connector resource\n","inputProperties":{"azureKvName":{"description":"Azure Key Vault name (Relevant only for Azure targets)\n","type":"string"},"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"string"},"description":{"description":"Description of the Universal Secrets Connector\n","type":"string"},"gcpProjectId":{"description":"GCP Project ID (Relevant only for GCP targets)\n","type":"string"},"gcpSmRegions":{"description":"GCP Secret Manager regions to query for regional secrets (comma-separated, e.g., us-east1,us-west1). Max 12 regions. Required when listing with object-type=regional-secrets\n","type":"string"},"itemCustomFields":{"additionalProperties":{"type":"string"},"description":"Additional custom fields to associate with the item\n","type":"object"},"k8sNamespace":{"description":"K8s namespace (Relevant to Kubernetes targets)\n","type":"string"},"name":{"description":"Universal Secrets Connector name\n","type":"string"},"tags":{"description":"List of the tags attached to this Universal Secrets Connector\n","items":{"type":"string"},"type":"array"},"targetToAssociate":{"description":"Target Universal Secrets Connector to connect\n","type":"string"},"uscId":{"description":"The ID of this resource.\n","type":"string"},"uscPrefix":{"description":"Prefix for all secrets created in AWS Secrets Manager\n","type":"string"},"usePrefixAsFilter":{"description":"Whether to filter the USC secret list using the specified usc-prefix [true/false]\n","type":"string"}},"properties":{"azureKvName":{"description":"Azure Key Vault name (Relevant only for Azure targets)\n","type":"string"},"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"string"},"description":{"description":"Description of the Universal Secrets Connector\n","type":"string"},"gcpProjectId":{"description":"GCP Project ID (Relevant only for GCP targets)\n","type":"string"},"gcpSmRegions":{"description":"GCP Secret Manager regions to query for regional secrets (comma-separated, e.g., us-east1,us-west1). Max 12 regions. Required when listing with object-type=regional-secrets\n","type":"string"},"itemCustomFields":{"additionalProperties":{"type":"string"},"description":"Additional custom fields to associate with the item\n","type":"object"},"k8sNamespace":{"description":"K8s namespace (Relevant to Kubernetes targets)\n","type":"string"},"name":{"description":"Universal Secrets Connector name\n","type":"string"},"tags":{"description":"List of the tags attached to this Universal Secrets Connector\n","items":{"type":"string"},"type":"array"},"targetToAssociate":{"description":"Target Universal Secrets Connector to connect\n","type":"string"},"uscId":{"description":"The ID of this resource.\n","type":"string"},"uscPrefix":{"description":"Prefix for all secrets created in AWS Secrets Manager\n","type":"string"},"usePrefixAsFilter":{"description":"Whether to filter the USC secret list using the specified usc-prefix [true/false]\n","type":"string"}},"required":["name","targetToAssociate","uscId"],"requiredInputs":["targetToAssociate"],"stateInputs":{"description":"Input properties used for looking up and filtering Usc resources.\n","properties":{"azureKvName":{"description":"Azure Key Vault name (Relevant only for Azure targets)\n","type":"string"},"deleteProtection":{"description":"Protection from accidental deletion of this object [true/false]\n","type":"string"},"description":{"description":"Description of the Universal Secrets Connector\n","type":"string"},"gcpProjectId":{"description":"GCP Project ID (Relevant only for GCP targets)\n","type":"string"},"gcpSmRegions":{"description":"GCP Secret Manager regions to query for regional secrets (comma-separated, e.g., us-east1,us-west1). Max 12 regions. Required when listing with object-type=regional-secrets\n","type":"string"},"itemCustomFields":{"additionalProperties":{"type":"string"},"description":"Additional custom fields to associate with the item\n","type":"object"},"k8sNamespace":{"description":"K8s namespace (Relevant to Kubernetes targets)\n","type":"string"},"name":{"description":"Universal Secrets Connector name\n","type":"string"},"tags":{"description":"List of the tags attached to this Universal Secrets Connector\n","items":{"type":"string"},"type":"array"},"targetToAssociate":{"description":"Target Universal Secrets Connector to connect\n","type":"string"},"uscId":{"description":"The ID of this resource.\n","type":"string"},"uscPrefix":{"description":"Prefix for all secrets created in AWS Secrets Manager\n","type":"string"},"usePrefixAsFilter":{"description":"Whether to filter the USC secret list using the specified usc-prefix [true/false]\n","type":"string"}},"type":"object"},"type":"object"},"akeyless:index/uscSecret:UscSecret":{"description":"Universal Secrets Connector secret resource\n","inputProperties":{"binaryValue":{"description":"Use this option if the universal secrets value is a base64 encoded binary\n","type":"boolean"},"description":{"description":"Description of the universal secrets\n","type":"string"},"forceDelete":{"description":"Force delete objects that are soft deleted by default (relevant only for Azure target)\n","type":"boolean"},"namespace":{"description":"The namespace (relevant for Hashi vault target)\n","type":"string"},"objectType":{"description":"Either secret or certificate (Relevant only for Azure KV targets)\n","type":"string"},"pfxPassword":{"description":"Optional, the passphrase that protects the private key within the pfx certificate (Relevant only for Azure KV certificates)\n","secret":true,"type":"string"},"region":{"description":"Optional, create secret in a specific region (GCP only). If empty, a global secret will be created (provider default).\n","type":"string"},"secretName":{"description":"Name for the new universal secrets\n","type":"string"},"tags":{"description":"Tags for the universal secrets\n","items":{"type":"string"},"type":"array"},"uscEncryptionKey":{"description":"Optional, The name of the remote key that used to encrypt the secret value (if empty, the default key will be used)\n","type":"string"},"uscName":{"description":"Name of the Universal Secrets Connector item\n","type":"string"},"uscSecretId":{"description":"The ID of this resource.\n","type":"string"},"value":{"description":"Value of the universal secrets item, either text or base64 encoded binary\n","secret":true,"type":"string"},"versionId":{"description":"The version id (if not specified, will retrieve the last version)\n","type":"string"}},"properties":{"binaryValue":{"description":"Use this option if the universal secrets value is a base64 encoded binary\n","type":"boolean"},"description":{"description":"Description of the universal secrets\n","type":"string"},"forceDelete":{"description":"Force delete objects that are soft deleted by default (relevant only for Azure target)\n","type":"boolean"},"namespace":{"description":"The namespace (relevant for Hashi vault target)\n","type":"string"},"objectType":{"description":"Either secret or certificate (Relevant only for Azure KV targets)\n","type":"string"},"pfxPassword":{"description":"Optional, the passphrase that protects the private key within the pfx certificate (Relevant only for Azure KV certificates)\n","secret":true,"type":"string"},"region":{"description":"Optional, create secret in a specific region (GCP only). If empty, a global secret will be created (provider default).\n","type":"string"},"secretId":{"description":"The ID of the universal secrets item\n","type":"string"},"secretName":{"description":"Name for the new universal secrets\n","type":"string"},"tags":{"description":"Tags for the universal secrets\n","items":{"type":"string"},"type":"array"},"uscEncryptionKey":{"description":"Optional, The name of the remote key that used to encrypt the secret value (if empty, the default key will be used)\n","type":"string"},"uscName":{"description":"Name of the Universal Secrets Connector item\n","type":"string"},"uscSecretId":{"description":"The ID of this resource.\n","type":"string"},"value":{"description":"Value of the universal secrets item, either text or base64 encoded binary\n","secret":true,"type":"string"},"versionId":{"description":"The version id (if not specified, will retrieve the last version)\n","type":"string"}},"required":["secretId","secretName","uscName","uscSecretId","value"],"requiredInputs":["secretName","uscName"],"stateInputs":{"description":"Input properties used for looking up and filtering UscSecret resources.\n","properties":{"binaryValue":{"description":"Use this option if the universal secrets value is a base64 encoded binary\n","type":"boolean"},"description":{"description":"Description of the universal secrets\n","type":"string"},"forceDelete":{"description":"Force delete objects that are soft deleted by default (relevant only for Azure target)\n","type":"boolean"},"namespace":{"description":"The namespace (relevant for Hashi vault target)\n","type":"string"},"objectType":{"description":"Either secret or certificate (Relevant only for Azure KV targets)\n","type":"string"},"pfxPassword":{"description":"Optional, the passphrase that protects the private key within the pfx certificate (Relevant only for Azure KV certificates)\n","secret":true,"type":"string"},"region":{"description":"Optional, create secret in a specific region (GCP only). If empty, a global secret will be created (provider default).\n","type":"string"},"secretId":{"description":"The ID of the universal secrets item\n","type":"string"},"secretName":{"description":"Name for the new universal secrets\n","type":"string"},"tags":{"description":"Tags for the universal secrets\n","items":{"type":"string"},"type":"array"},"uscEncryptionKey":{"description":"Optional, The name of the remote key that used to encrypt the secret value (if empty, the default key will be used)\n","type":"string"},"uscName":{"description":"Name of the Universal Secrets Connector item\n","type":"string"},"uscSecretId":{"description":"The ID of this resource.\n","type":"string"},"value":{"description":"Value of the universal secrets item, either text or base64 encoded binary\n","secret":true,"type":"string"},"versionId":{"description":"The version id (if not specified, will retrieve the last version)\n","type":"string"}},"type":"object"},"type":"object"}},"types":{"akeyless:config/apiKeyLogins:apiKeyLogins":{"language":{"nodejs":{"requiredInputs":[]}},"properties":{"accessId":{"type":"string"},"accessKey":{"secret":true,"type":"string"}},"required":["accessId","accessKey"],"type":"object"},"akeyless:config/awsIamLogins:awsIamLogins":{"language":{"nodejs":{"requiredInputs":[]}},"properties":{"accessId":{"type":"string"}},"required":["accessId"],"type":"object"},"akeyless:config/azureAdLogins:azureAdLogins":{"language":{"nodejs":{"requiredInputs":[]}},"properties":{"accessId":{"type":"string"}},"required":["accessId"],"type":"object"},"akeyless:config/certLogins:certLogins":{"language":{"nodejs":{"requiredInputs":[]}},"properties":{"accessId":{"type":"string"},"certData":{"secret":true,"type":"string"},"certFileName":{"type":"string"},"keyData":{"secret":true,"type":"string"},"keyFileName":{"type":"string"}},"required":["accessId"],"type":"object"},"akeyless:config/emailLogins:emailLogins":{"language":{"nodejs":{"requiredInputs":[]}},"properties":{"adminEmail":{"type":"string"},"adminPassword":{"type":"string"}},"required":["adminEmail","adminPassword"],"type":"object"},"akeyless:config/gcpLogins:gcpLogins":{"language":{"nodejs":{"requiredInputs":[]}},"properties":{"accessId":{"type":"string"},"audience":{"type":"string"}},"required":["accessId"],"type":"object"},"akeyless:config/jwtLogins:jwtLogins":{"language":{"nodejs":{"requiredInputs":[]}},"properties":{"accessId":{"type":"string"},"jwt":{"secret":true,"type":"string"}},"required":["accessId","jwt"],"type":"object"},"akeyless:config/tokenLogins:tokenLogins":{"language":{"nodejs":{"requiredInputs":[]}},"properties":{"token":{"secret":true,"type":"string"}},"required":["token"],"type":"object"},"akeyless:config/uidLogins:uidLogins":{"language":{"nodejs":{"requiredInputs":[]}},"properties":{"accessId":{"type":"string"},"uidToken":{"secret":true,"type":"string"}},"required":["uidToken"],"type":"object"},"akeyless:index/ProviderApiKeyLogin:ProviderApiKeyLogin":{"language":{"nodejs":{"requiredOutputs":[]}},"properties":{"accessId":{"type":"string"},"accessKey":{"secret":true,"type":"string"}},"required":["accessId","accessKey"],"type":"object"},"akeyless:index/ProviderAwsIamLogin:ProviderAwsIamLogin":{"language":{"nodejs":{"requiredOutputs":[]}},"properties":{"accessId":{"type":"string"}},"required":["accessId"],"type":"object"},"akeyless:index/ProviderAzureAdLogin:ProviderAzureAdLogin":{"language":{"nodejs":{"requiredOutputs":[]}},"properties":{"accessId":{"type":"string"}},"required":["accessId"],"type":"object"},"akeyless:index/ProviderCertLogin:ProviderCertLogin":{"language":{"nodejs":{"requiredOutputs":[]}},"properties":{"accessId":{"type":"string"},"certData":{"secret":true,"type":"string"},"certFileName":{"type":"string"},"keyData":{"secret":true,"type":"string"},"keyFileName":{"type":"string"}},"required":["accessId"],"type":"object"},"akeyless:index/ProviderEmailLogin:ProviderEmailLogin":{"language":{"nodejs":{"requiredOutputs":[]}},"properties":{"adminEmail":{"type":"string"},"adminPassword":{"type":"string"}},"required":["adminEmail","adminPassword"],"type":"object"},"akeyless:index/ProviderGcpLogin:ProviderGcpLogin":{"language":{"nodejs":{"requiredOutputs":[]}},"properties":{"accessId":{"type":"string"},"audience":{"type":"string"}},"required":["accessId"],"type":"object"},"akeyless:index/ProviderJwtLogin:ProviderJwtLogin":{"language":{"nodejs":{"requiredOutputs":[]}},"properties":{"accessId":{"type":"string"},"jwt":{"secret":true,"type":"string"}},"required":["accessId","jwt"],"type":"object"},"akeyless:index/ProviderTokenLogin:ProviderTokenLogin":{"language":{"nodejs":{"requiredOutputs":[]}},"properties":{"token":{"secret":true,"type":"string"}},"required":["token"],"type":"object"},"akeyless:index/ProviderUidLogin:ProviderUidLogin":{"language":{"nodejs":{"requiredOutputs":[]}},"properties":{"accessId":{"type":"string"},"uidToken":{"secret":true,"type":"string"}},"required":["uidToken"],"type":"object"},"akeyless:index/RoleAssocAuthMethod:RoleAssocAuthMethod":{"language":{"nodejs":{"requiredOutputs":["accessId","amName","assocId"]}},"properties":{"accessId":{"description":"The access ID of the auth method\n","type":"string"},"amName":{"description":"The auth method to associate\n","type":"string"},"assocId":{"description":"The association ID\n","type":"string"},"caseSensitive":{"description":"Treat sub claims as case-sensitive\n","type":"string"},"subClaims":{"additionalProperties":{"type":"string"},"description":"key/val of sub claims, e.g group=admins,developers\n","type":"object"}},"required":["amName"],"type":"object"},"akeyless:index/RoleRestrictedRule:RoleRestrictedRule":{"properties":{"capabilities":{"items":{"type":"string"},"type":"array"},"path":{"type":"string"},"ruleType":{"type":"string"}},"required":["capabilities","path","ruleType"],"type":"object"},"akeyless:index/RoleRule:RoleRule":{"properties":{"capabilities":{"description":"List of the approved/denied capabilities in the path options: [read, create, update, delete, list, deny] for sra-rule type: [allow*access, request*access, justify*access*only, approval*authority, upload*files,<span pulumi-lang-nodejs=\" downloadFiles]\" pulumi-lang-dotnet=\" DownloadFiles]\" pulumi-lang-go=\" downloadFiles]\" pulumi-lang-python=\" download_files]\" pulumi-lang-yaml=\" downloadFiles]\" pulumi-lang-java=\" downloadFiles]\"> download_files]</span>\n","items":{"type":"string"},"type":"array"},"path":{"description":"The path the rule refers to\n","type":"string"},"ruleType":{"description":"item-rule, target-rule, role-rule, auth-method-rule, sra-rule\n","type":"string"}},"required":["capabilities","path"],"type":"object"},"akeyless:index/getAuthApiKeyLogin:getAuthApiKeyLogin":{"properties":{"accessId":{"type":"string"},"accessKey":{"secret":true,"type":"string"}},"required":["accessId","accessKey"],"type":"object"},"akeyless:index/getAuthAwsIamLogin:getAuthAwsIamLogin":{"properties":{"accessId":{"type":"string"}},"required":["accessId"],"type":"object"},"akeyless:index/getAuthAzureAdLogin:getAuthAzureAdLogin":{"properties":{"accessId":{"type":"string"}},"required":["accessId"],"type":"object"},"akeyless:index/getAuthCertLogin:getAuthCertLogin":{"properties":{"accessId":{"type":"string"},"certData":{"secret":true,"type":"string"},"certFileName":{"type":"string"},"keyData":{"secret":true,"type":"string"},"keyFileName":{"type":"string"}},"required":["accessId"],"type":"object"},"akeyless:index/getAuthEmailLogin:getAuthEmailLogin":{"properties":{"adminEmail":{"type":"string"},"adminPassword":{"type":"string"}},"required":["adminEmail","adminPassword"],"type":"object"},"akeyless:index/getAuthGcpLogin:getAuthGcpLogin":{"properties":{"accessId":{"type":"string"},"audience":{"type":"string"}},"required":["accessId"],"type":"object"},"akeyless:index/getAuthJwtLogin:getAuthJwtLogin":{"properties":{"accessId":{"type":"string"},"jwt":{"secret":true,"type":"string"}},"required":["accessId","jwt"],"type":"object"},"akeyless:index/getAuthUidLogin:getAuthUidLogin":{"properties":{"accessId":{"type":"string"},"uidToken":{"secret":true,"type":"string"}},"required":["uidToken"],"type":"object"},"akeyless:index/getItemsItem:getItemsItem":{"language":{"nodejs":{"requiredInputs":[]}},"properties":{"displayId":{"type":"string"},"id":{"type":"number"},"isEnabled":{"type":"boolean"},"lastVersion":{"type":"number"},"name":{"type":"string"},"type":{"type":"string"}},"required":["displayId","id","isEnabled","lastVersion","name","type"],"type":"object"},"akeyless:index/getStaticSecretPasswordSecurityInfo:getStaticSecretPasswordSecurityInfo":{"language":{"nodejs":{"requiredInputs":[]}},"properties":{"breachInfos":{"items":{"$ref":"#/types/akeyless:index%2FgetStaticSecretPasswordSecurityInfoBreachInfo:getStaticSecretPasswordSecurityInfoBreachInfo"},"type":"array"},"scoreInfos":{"items":{"$ref":"#/types/akeyless:index%2FgetStaticSecretPasswordSecurityInfoScoreInfo:getStaticSecretPasswordSecurityInfoScoreInfo"},"type":"array"}},"required":["breachInfos","scoreInfos"],"type":"object"},"akeyless:index/getStaticSecretPasswordSecurityInfoBreachInfo:getStaticSecretPasswordSecurityInfoBreachInfo":{"language":{"nodejs":{"requiredInputs":[]}},"properties":{"breachCheckDate":{"type":"string"},"breachCount":{"type":"number"},"breachSuggestions":{"items":{"type":"string"},"type":"array"},"status":{"type":"string"}},"required":["breachCheckDate","breachCount","breachSuggestions","status"],"type":"object"},"akeyless:index/getStaticSecretPasswordSecurityInfoScoreInfo:getStaticSecretPasswordSecurityInfoScoreInfo":{"language":{"nodejs":{"requiredInputs":[]}},"properties":{"score":{"type":"number"},"status":{"type":"string"},"suggestions":{"items":{"type":"string"},"type":"array"}},"required":["score","status","suggestions"],"type":"object"}},"version":"2.0.1"}