Skip to content

Instantly share code, notes, and snippets.

@jen20
Created May 13, 2021 19:04
Show Gist options
  • Star 0 You must be signed in to star a gist
  • Fork 0 You must be signed in to fork a gist
  • Save jen20/863c558e4c8ec88ed6e584e4916c9894 to your computer and use it in GitHub Desktop.
Save jen20/863c558e4c8ec88ed6e584e4916c9894 to your computer and use it in GitHub Desktop.
Provider diff for pulumi-aws
diff --git a/provider/cmd/pulumi-resource-aws/schema.json b/provider/cmd/pulumi-resource-aws/schema.json
index 4b9553258..72bdfca93 100644
--- a/provider/cmd/pulumi-resource-aws/schema.json
+++ b/provider/cmd/pulumi-resource-aws/schema.json
@@ -148781,6 +148781,93 @@
},
"provider": {
"description": "The provider type for the aws package. By default, resources use package-wide configuration\nsettings, however an explicit `Provider` instance may be created and passed during resource\nconstruction to achieve fine-grained programmatic control over provider settings. See the\n[documentation](https://www.pulumi.com/docs/reference/programming-model/#providers) for more information.\n",
+ "properties": {
+ "accessKey": {
+ "type": "string",
+ "description": "The access key for API operations. You can retrieve this from the 'Security \u0026 Credentials' section of the AWS console.\n"
+ },
+ "allowedAccountIds": {
+ "type": "array",
+ "items": {
+ "type": "string"
+ }
+ },
+ "assumeRole": {
+ "$ref": "#/types/aws:index/ProviderAssumeRole:ProviderAssumeRole"
+ },
+ "defaultTags": {
+ "$ref": "#/types/aws:index/ProviderDefaultTags:ProviderDefaultTags",
+ "description": "Configuration block with settings to default resource tags across all resources.\n"
+ },
+ "endpoints": {
+ "type": "array",
+ "items": {
+ "$ref": "#/types/aws:index/ProviderEndpoint:ProviderEndpoint"
+ }
+ },
+ "forbiddenAccountIds": {
+ "type": "array",
+ "items": {
+ "type": "string"
+ }
+ },
+ "ignoreTags": {
+ "$ref": "#/types/aws:index/ProviderIgnoreTags:ProviderIgnoreTags",
+ "description": "Configuration block with settings to ignore resource tags across all resources.\n"
+ },
+ "insecure": {
+ "type": "boolean",
+ "description": "Explicitly allow the provider to perform \"insecure\" SSL requests. If omitted,default value is `false`\n"
+ },
+ "maxRetries": {
+ "type": "integer",
+ "description": "The maximum number of times an AWS API request is being executed. If the API request still fails, an error is thrown.\n"
+ },
+ "profile": {
+ "type": "string",
+ "description": "The profile for API operations. If not set, the default profile created with `aws configure` will be used.\n"
+ },
+ "region": {
+ "type": "string",
+ "$ref": "#/types/aws:index/region:Region",
+ "description": "The region where AWS operations will take place. Examples are us-east-1, us-west-2, etc.\n"
+ },
+ "s3ForcePathStyle": {
+ "type": "boolean",
+ "description": "Set this to true to force the request to use path-style addressing, i.e., http://s3.amazonaws.com/BUCKET/KEY. By\ndefault, the S3 client will use virtual hosted bucket addressing when possible (http://BUCKET.s3.amazonaws.com/KEY).\nSpecific to the Amazon S3 service.\n"
+ },
+ "secretKey": {
+ "type": "string",
+ "description": "The secret key for API operations. You can retrieve this from the 'Security \u0026 Credentials' section of the AWS console.\n"
+ },
+ "sharedCredentialsFile": {
+ "type": "string",
+ "description": "The path to the shared credentials file. If not set this defaults to ~/.aws/credentials.\n"
+ },
+ "skipCredentialsValidation": {
+ "type": "boolean",
+ "description": "Skip the credentials validation via STS API. Used for AWS API implementations that do not have STS\navailable/implemented.\n"
+ },
+ "skipGetEc2Platforms": {
+ "type": "boolean",
+ "description": "Skip getting the supported EC2 platforms. Used by users that don't have ec2:DescribeAccountAttributes permissions.\n"
+ },
+ "skipMetadataApiCheck": {
+ "type": "boolean"
+ },
+ "skipRegionValidation": {
+ "type": "boolean",
+ "description": "Skip static validation of region name. Used by users of alternative AWS-like APIs or users w/ access to regions that are\nnot public (yet).\n"
+ },
+ "skipRequestingAccountId": {
+ "type": "boolean",
+ "description": "Skip requesting the account ID. Used for AWS API implementations that do not have IAM/STS API and/or metadata API.\n"
+ },
+ "token": {
+ "type": "string",
+ "description": "session token. A session token is only required if you are using temporary security credentials.\n"
+ }
+ },
"inputProperties": {
"accessKey": {
"type": "string",
diff --git a/sdk/dotnet/Provider.cs b/sdk/dotnet/Provider.cs
index dd1b4ced3..d0090640e 100644
--- a/sdk/dotnet/Provider.cs
+++ b/sdk/dotnet/Provider.cs
@@ -18,6 +18,116 @@ namespace Pulumi.Aws
[AwsResourceType("pulumi:providers:aws")]
public partial class Provider : Pulumi.ProviderResource
{
+ /// <summary>
+ /// The access key for API operations. You can retrieve this from the 'Security &amp; Credentials' section of the AWS console.
+ /// </summary>
+ [Output("accessKey")]
+ public Output<string?> AccessKey { get; private set; } = null!;
+
+ [Output("allowedAccountIds")]
+ public Output<string?> AllowedAccountIds { get; private set; } = null!;
+
+ [Output("assumeRole")]
+ public Output<string?> AssumeRole { get; private set; } = null!;
+
+ /// <summary>
+ /// Configuration block with settings to default resource tags across all resources.
+ /// </summary>
+ [Output("defaultTags")]
+ public Output<string?> DefaultTags { get; private set; } = null!;
+
+ [Output("endpoints")]
+ public Output<string?> Endpoints { get; private set; } = null!;
+
+ [Output("forbiddenAccountIds")]
+ public Output<string?> ForbiddenAccountIds { get; private set; } = null!;
+
+ /// <summary>
+ /// Configuration block with settings to ignore resource tags across all resources.
+ /// </summary>
+ [Output("ignoreTags")]
+ public Output<string?> IgnoreTags { get; private set; } = null!;
+
+ /// <summary>
+ /// Explicitly allow the provider to perform "insecure" SSL requests. If omitted,default value is `false`
+ /// </summary>
+ [Output("insecure")]
+ public Output<bool?> Insecure { get; private set; } = null!;
+
+ /// <summary>
+ /// The maximum number of times an AWS API request is being executed. If the API request still fails, an error is thrown.
+ /// </summary>
+ [Output("maxRetries")]
+ public Output<int?> MaxRetries { get; private set; } = null!;
+
+ /// <summary>
+ /// The profile for API operations. If not set, the default profile created with `aws configure` will be used.
+ /// </summary>
+ [Output("profile")]
+ public Output<string?> Profile { get; private set; } = null!;
+
+ /// <summary>
+ /// The region where AWS operations will take place. Examples are us-east-1, us-west-2, etc.
+ /// </summary>
+ [Output("region")]
+ public Output<string?> Region { get; private set; } = null!;
+
+ /// <summary>
+ /// Set this to true to force the request to use path-style addressing, i.e., http://s3.amazonaws.com/BUCKET/KEY. By
+ /// default, the S3 client will use virtual hosted bucket addressing when possible (http://BUCKET.s3.amazonaws.com/KEY).
+ /// Specific to the Amazon S3 service.
+ /// </summary>
+ [Output("s3ForcePathStyle")]
+ public Output<bool?> S3ForcePathStyle { get; private set; } = null!;
+
+ /// <summary>
+ /// The secret key for API operations. You can retrieve this from the 'Security &amp; Credentials' section of the AWS console.
+ /// </summary>
+ [Output("secretKey")]
+ public Output<string?> SecretKey { get; private set; } = null!;
+
+ /// <summary>
+ /// The path to the shared credentials file. If not set this defaults to ~/.aws/credentials.
+ /// </summary>
+ [Output("sharedCredentialsFile")]
+ public Output<string?> SharedCredentialsFile { get; private set; } = null!;
+
+ /// <summary>
+ /// Skip the credentials validation via STS API. Used for AWS API implementations that do not have STS
+ /// available/implemented.
+ /// </summary>
+ [Output("skipCredentialsValidation")]
+ public Output<bool?> SkipCredentialsValidation { get; private set; } = null!;
+
+ /// <summary>
+ /// Skip getting the supported EC2 platforms. Used by users that don't have ec2:DescribeAccountAttributes permissions.
+ /// </summary>
+ [Output("skipGetEc2Platforms")]
+ public Output<bool?> SkipGetEc2Platforms { get; private set; } = null!;
+
+ [Output("skipMetadataApiCheck")]
+ public Output<bool?> SkipMetadataApiCheck { get; private set; } = null!;
+
+ /// <summary>
+ /// Skip static validation of region name. Used by users of alternative AWS-like APIs or users w/ access to regions that are
+ /// not public (yet).
+ /// </summary>
+ [Output("skipRegionValidation")]
+ public Output<bool?> SkipRegionValidation { get; private set; } = null!;
+
+ /// <summary>
+ /// Skip requesting the account ID. Used for AWS API implementations that do not have IAM/STS API and/or metadata API.
+ /// </summary>
+ [Output("skipRequestingAccountId")]
+ public Output<bool?> SkipRequestingAccountId { get; private set; } = null!;
+
+ /// <summary>
+ /// session token. A session token is only required if you are using temporary security credentials.
+ /// </summary>
+ [Output("token")]
+ public Output<string?> Token { get; private set; } = null!;
+
+
/// <summary>
/// Create a Provider resource with the given unique name, arguments, and options.
/// </summary>
diff --git a/sdk/go/aws/provider.go b/sdk/go/aws/provider.go
index 0cc0e0fe9..92daddb41 100644
--- a/sdk/go/aws/provider.go
+++ b/sdk/go/aws/provider.go
@@ -16,6 +16,46 @@ import (
// [documentation](https://www.pulumi.com/docs/reference/programming-model/#providers) for more information.
type Provider struct {
pulumi.ProviderResourceState
+
+ // The access key for API operations. You can retrieve this from the 'Security & Credentials' section of the AWS console.
+ AccessKey pulumi.StringPtrOutput `pulumi:"accessKey"`
+ AllowedAccountIds pulumi.StringArrayOutput `pulumi:"allowedAccountIds"`
+ AssumeRole ProviderAssumeRolePtrOutput `pulumi:"assumeRole"`
+ // Configuration block with settings to default resource tags across all resources.
+ DefaultTags ProviderDefaultTagsPtrOutput `pulumi:"defaultTags"`
+ Endpoints ProviderEndpointArrayOutput `pulumi:"endpoints"`
+ ForbiddenAccountIds pulumi.StringArrayOutput `pulumi:"forbiddenAccountIds"`
+ // Configuration block with settings to ignore resource tags across all resources.
+ IgnoreTags ProviderIgnoreTagsPtrOutput `pulumi:"ignoreTags"`
+ // Explicitly allow the provider to perform "insecure" SSL requests. If omitted,default value is `false`
+ Insecure pulumi.BoolPtrOutput `pulumi:"insecure"`
+ // The maximum number of times an AWS API request is being executed. If the API request still fails, an error is thrown.
+ MaxRetries pulumi.IntPtrOutput `pulumi:"maxRetries"`
+ // The profile for API operations. If not set, the default profile created with `aws configure` will be used.
+ Profile pulumi.StringPtrOutput `pulumi:"profile"`
+ // The region where AWS operations will take place. Examples are us-east-1, us-west-2, etc.
+ Region pulumi.StringPtrOutput `pulumi:"region"`
+ // Set this to true to force the request to use path-style addressing, i.e., http://s3.amazonaws.com/BUCKET/KEY. By
+ // default, the S3 client will use virtual hosted bucket addressing when possible (http://BUCKET.s3.amazonaws.com/KEY).
+ // Specific to the Amazon S3 service.
+ S3ForcePathStyle pulumi.BoolPtrOutput `pulumi:"s3ForcePathStyle"`
+ // The secret key for API operations. You can retrieve this from the 'Security & Credentials' section of the AWS console.
+ SecretKey pulumi.StringPtrOutput `pulumi:"secretKey"`
+ // The path to the shared credentials file. If not set this defaults to ~/.aws/credentials.
+ SharedCredentialsFile pulumi.StringPtrOutput `pulumi:"sharedCredentialsFile"`
+ // Skip the credentials validation via STS API. Used for AWS API implementations that do not have STS
+ // available/implemented.
+ SkipCredentialsValidation pulumi.BoolPtrOutput `pulumi:"skipCredentialsValidation"`
+ // Skip getting the supported EC2 platforms. Used by users that don't have ec2:DescribeAccountAttributes permissions.
+ SkipGetEc2Platforms pulumi.BoolPtrOutput `pulumi:"skipGetEc2Platforms"`
+ SkipMetadataApiCheck pulumi.BoolPtrOutput `pulumi:"skipMetadataApiCheck"`
+ // Skip static validation of region name. Used by users of alternative AWS-like APIs or users w/ access to regions that are
+ // not public (yet).
+ SkipRegionValidation pulumi.BoolPtrOutput `pulumi:"skipRegionValidation"`
+ // Skip requesting the account ID. Used for AWS API implementations that do not have IAM/STS API and/or metadata API.
+ SkipRequestingAccountId pulumi.BoolPtrOutput `pulumi:"skipRequestingAccountId"`
+ // session token. A session token is only required if you are using temporary security credentials.
+ Token pulumi.StringPtrOutput `pulumi:"token"`
}
// NewProvider registers a new resource with the given unique name, arguments, and options.
diff --git a/sdk/nodejs/provider.ts b/sdk/nodejs/provider.ts
index 849a4503d..619d8fc8b 100644
--- a/sdk/nodejs/provider.ts
+++ b/sdk/nodejs/provider.ts
@@ -28,6 +28,75 @@ export class Provider extends pulumi.ProviderResource {
return obj['__pulumiType'] === Provider.__pulumiType;
}
+ /**
+ * The access key for API operations. You can retrieve this from the 'Security & Credentials' section of the AWS console.
+ */
+ public readonly accessKey!: pulumi.Output<string | undefined>;
+ public readonly allowedAccountIds!: pulumi.Output<string[] | undefined>;
+ public readonly assumeRole!: pulumi.Output<outputs.ProviderAssumeRole | undefined>;
+ /**
+ * Configuration block with settings to default resource tags across all resources.
+ */
+ public readonly defaultTags!: pulumi.Output<outputs.ProviderDefaultTags | undefined>;
+ public readonly endpoints!: pulumi.Output<outputs.ProviderEndpoint[] | undefined>;
+ public readonly forbiddenAccountIds!: pulumi.Output<string[] | undefined>;
+ /**
+ * Configuration block with settings to ignore resource tags across all resources.
+ */
+ public readonly ignoreTags!: pulumi.Output<outputs.ProviderIgnoreTags | undefined>;
+ /**
+ * Explicitly allow the provider to perform "insecure" SSL requests. If omitted,default value is `false`
+ */
+ public readonly insecure!: pulumi.Output<boolean | undefined>;
+ /**
+ * The maximum number of times an AWS API request is being executed. If the API request still fails, an error is thrown.
+ */
+ public readonly maxRetries!: pulumi.Output<number | undefined>;
+ /**
+ * The profile for API operations. If not set, the default profile created with `aws configure` will be used.
+ */
+ public readonly profile!: pulumi.Output<string | undefined>;
+ /**
+ * The region where AWS operations will take place. Examples are us-east-1, us-west-2, etc.
+ */
+ public readonly region!: pulumi.Output<Region | undefined>;
+ /**
+ * Set this to true to force the request to use path-style addressing, i.e., http://s3.amazonaws.com/BUCKET/KEY. By
+ * default, the S3 client will use virtual hosted bucket addressing when possible (http://BUCKET.s3.amazonaws.com/KEY).
+ * Specific to the Amazon S3 service.
+ */
+ public readonly s3ForcePathStyle!: pulumi.Output<boolean | undefined>;
+ /**
+ * The secret key for API operations. You can retrieve this from the 'Security & Credentials' section of the AWS console.
+ */
+ public readonly secretKey!: pulumi.Output<string | undefined>;
+ /**
+ * The path to the shared credentials file. If not set this defaults to ~/.aws/credentials.
+ */
+ public readonly sharedCredentialsFile!: pulumi.Output<string | undefined>;
+ /**
+ * Skip the credentials validation via STS API. Used for AWS API implementations that do not have STS
+ * available/implemented.
+ */
+ public readonly skipCredentialsValidation!: pulumi.Output<boolean | undefined>;
+ /**
+ * Skip getting the supported EC2 platforms. Used by users that don't have ec2:DescribeAccountAttributes permissions.
+ */
+ public readonly skipGetEc2Platforms!: pulumi.Output<boolean | undefined>;
+ public readonly skipMetadataApiCheck!: pulumi.Output<boolean | undefined>;
+ /**
+ * Skip static validation of region name. Used by users of alternative AWS-like APIs or users w/ access to regions that are
+ * not public (yet).
+ */
+ public readonly skipRegionValidation!: pulumi.Output<boolean | undefined>;
+ /**
+ * Skip requesting the account ID. Used for AWS API implementations that do not have IAM/STS API and/or metadata API.
+ */
+ public readonly skipRequestingAccountId!: pulumi.Output<boolean | undefined>;
+ /**
+ * session token. A session token is only required if you are using temporary security credentials.
+ */
+ public readonly token!: pulumi.Output<string | undefined>;
/**
* Create a Provider resource with the given unique name, arguments, and options.
diff --git a/sdk/python/pulumi_aws/provider.py b/sdk/python/pulumi_aws/provider.py
index e56f1542e..2fd0e6cc9 100644
--- a/sdk/python/pulumi_aws/provider.py
+++ b/sdk/python/pulumi_aws/provider.py
@@ -7,6 +7,7 @@ import pulumi
import pulumi.runtime
from typing import Any, Mapping, Optional, Sequence, Union, overload
from . import _utilities
+from . import outputs
from ._inputs import *
__all__ = ['ProviderArgs', 'Provider']
@@ -490,3 +491,152 @@ class Provider(pulumi.ProviderResource):
__props__,
opts)
+ @property
+ @pulumi.getter(name="accessKey")
+ def access_key(self) -> pulumi.Output[Optional[str]]:
+ """
+ The access key for API operations. You can retrieve this from the 'Security & Credentials' section of the AWS console.
+ """
+ return pulumi.get(self, "access_key")
+
+ @property
+ @pulumi.getter(name="allowedAccountIds")
+ def allowed_account_ids(self) -> pulumi.Output[Optional[Sequence[str]]]:
+ return pulumi.get(self, "allowed_account_ids")
+
+ @property
+ @pulumi.getter(name="assumeRole")
+ def assume_role(self) -> pulumi.Output[Optional['outputs.ProviderAssumeRole']]:
+ return pulumi.get(self, "assume_role")
+
+ @property
+ @pulumi.getter(name="defaultTags")
+ def default_tags(self) -> pulumi.Output[Optional['outputs.ProviderDefaultTags']]:
+ """
+ Configuration block with settings to default resource tags across all resources.
+ """
+ return pulumi.get(self, "default_tags")
+
+ @property
+ @pulumi.getter
+ def endpoints(self) -> pulumi.Output[Optional[Sequence['outputs.ProviderEndpoint']]]:
+ return pulumi.get(self, "endpoints")
+
+ @property
+ @pulumi.getter(name="forbiddenAccountIds")
+ def forbidden_account_ids(self) -> pulumi.Output[Optional[Sequence[str]]]:
+ return pulumi.get(self, "forbidden_account_ids")
+
+ @property
+ @pulumi.getter(name="ignoreTags")
+ def ignore_tags(self) -> pulumi.Output[Optional['outputs.ProviderIgnoreTags']]:
+ """
+ Configuration block with settings to ignore resource tags across all resources.
+ """
+ return pulumi.get(self, "ignore_tags")
+
+ @property
+ @pulumi.getter
+ def insecure(self) -> pulumi.Output[Optional[bool]]:
+ """
+ Explicitly allow the provider to perform "insecure" SSL requests. If omitted,default value is `false`
+ """
+ return pulumi.get(self, "insecure")
+
+ @property
+ @pulumi.getter(name="maxRetries")
+ def max_retries(self) -> pulumi.Output[Optional[int]]:
+ """
+ The maximum number of times an AWS API request is being executed. If the API request still fails, an error is thrown.
+ """
+ return pulumi.get(self, "max_retries")
+
+ @property
+ @pulumi.getter
+ def profile(self) -> pulumi.Output[Optional[str]]:
+ """
+ The profile for API operations. If not set, the default profile created with `aws configure` will be used.
+ """
+ return pulumi.get(self, "profile")
+
+ @property
+ @pulumi.getter
+ def region(self) -> pulumi.Output[Optional[str]]:
+ """
+ The region where AWS operations will take place. Examples are us-east-1, us-west-2, etc.
+ """
+ return pulumi.get(self, "region")
+
+ @property
+ @pulumi.getter(name="s3ForcePathStyle")
+ def s3_force_path_style(self) -> pulumi.Output[Optional[bool]]:
+ """
+ Set this to true to force the request to use path-style addressing, i.e., http://s3.amazonaws.com/BUCKET/KEY. By
+ default, the S3 client will use virtual hosted bucket addressing when possible (http://BUCKET.s3.amazonaws.com/KEY).
+ Specific to the Amazon S3 service.
+ """
+ return pulumi.get(self, "s3_force_path_style")
+
+ @property
+ @pulumi.getter(name="secretKey")
+ def secret_key(self) -> pulumi.Output[Optional[str]]:
+ """
+ The secret key for API operations. You can retrieve this from the 'Security & Credentials' section of the AWS console.
+ """
+ return pulumi.get(self, "secret_key")
+
+ @property
+ @pulumi.getter(name="sharedCredentialsFile")
+ def shared_credentials_file(self) -> pulumi.Output[Optional[str]]:
+ """
+ The path to the shared credentials file. If not set this defaults to ~/.aws/credentials.
+ """
+ return pulumi.get(self, "shared_credentials_file")
+
+ @property
+ @pulumi.getter(name="skipCredentialsValidation")
+ def skip_credentials_validation(self) -> pulumi.Output[Optional[bool]]:
+ """
+ Skip the credentials validation via STS API. Used for AWS API implementations that do not have STS
+ available/implemented.
+ """
+ return pulumi.get(self, "skip_credentials_validation")
+
+ @property
+ @pulumi.getter(name="skipGetEc2Platforms")
+ def skip_get_ec2_platforms(self) -> pulumi.Output[Optional[bool]]:
+ """
+ Skip getting the supported EC2 platforms. Used by users that don't have ec2:DescribeAccountAttributes permissions.
+ """
+ return pulumi.get(self, "skip_get_ec2_platforms")
+
+ @property
+ @pulumi.getter(name="skipMetadataApiCheck")
+ def skip_metadata_api_check(self) -> pulumi.Output[Optional[bool]]:
+ return pulumi.get(self, "skip_metadata_api_check")
+
+ @property
+ @pulumi.getter(name="skipRegionValidation")
+ def skip_region_validation(self) -> pulumi.Output[Optional[bool]]:
+ """
+ Skip static validation of region name. Used by users of alternative AWS-like APIs or users w/ access to regions that are
+ not public (yet).
+ """
+ return pulumi.get(self, "skip_region_validation")
+
+ @property
+ @pulumi.getter(name="skipRequestingAccountId")
+ def skip_requesting_account_id(self) -> pulumi.Output[Optional[bool]]:
+ """
+ Skip requesting the account ID. Used for AWS API implementations that do not have IAM/STS API and/or metadata API.
+ """
+ return pulumi.get(self, "skip_requesting_account_id")
+
+ @property
+ @pulumi.getter
+ def token(self) -> pulumi.Output[Optional[str]]:
+ """
+ session token. A session token is only required if you are using temporary security credentials.
+ """
+ return pulumi.get(self, "token")
+
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment