| BindSecretId |
Pointer to bool |
Impose secret ID to be presented when logging in using this role. |
[optional] |
| LocalSecretIds |
Pointer to bool |
If true, the secret identifiers generated using this role will be cluster local. This can only be set during role creation and once set, it can't be reset later |
[optional] |
| Period |
Pointer to int64 |
Use "token_period" instead. If this and "token_period" are both specified, only "token_period" will be used. |
[optional] |
| Policies |
Pointer to []string |
Use "token_policies" instead. If this and "token_policies" are both specified, only "token_policies" will be used. |
[optional] |
| SecretIdBoundCidrs |
Pointer to []string |
Comma separated string or list of CIDR blocks. If set, specifies the blocks of IP addresses which can perform the login operation. |
[optional] |
| SecretIdNumUses |
Pointer to int32 |
Number of times a secret ID can access the role, after which the secret ID will expire. |
[optional] |
| SecretIdTtl |
Pointer to int64 |
Duration in seconds after which the issued secret ID expires. |
[optional] |
| TokenBoundCidrs |
Pointer to []string |
Comma separated string or JSON list of CIDR blocks. If set, specifies the blocks of IP addresses which are allowed to use the generated token. |
[optional] |
| TokenExplicitMaxTtl |
Pointer to int64 |
If set, tokens created via this role carry an explicit maximum TTL. During renewal, the current maximum TTL values of the role and the mount are not checked for changes, and any updates to these values will have no effect on the token being renewed. |
[optional] |
| TokenMaxTtl |
Pointer to int64 |
The maximum lifetime of the generated token |
[optional] |
| TokenNoDefaultPolicy |
Pointer to bool |
If true, the 'default' policy will not automatically be added to generated tokens |
[optional] |
| TokenNumUses |
Pointer to int32 |
The maximum number of times a token may be used, a value of zero means unlimited |
[optional] |
| TokenPeriod |
Pointer to int64 |
If set, tokens created via this role will have no max lifetime; instead, their renewal period will be fixed to this value. |
[optional] |
| TokenPolicies |
Pointer to []string |
Comma-separated list of policies |
[optional] |
| TokenTtl |
Pointer to int64 |
The initial ttl of the token to generate |
[optional] |
| TokenType |
Pointer to string |
The type of token to generate, service or batch |
[optional] [default to "default-service"] |