Package com.pulumi.aws.secretsmanager

Class SecretRotationArgs

  • public final class SecretRotationArgs
extends com.pulumi.resources.ResourceArgs

    • Method Detail

      • rotateImmediately

        public java.util.Optional<com.pulumi.core.Output<java.lang.Boolean>> rotateImmediately()
        Returns:
        Specifies whether to rotate the secret immediately or wait until the next scheduled rotation window. The rotation schedule is defined in `rotation_rules`. For secrets that use a Lambda rotation function to rotate, if you don't immediately rotate the secret, Secrets Manager tests the rotation configuration by running the testSecret step (https://docs.aws.amazon.com/secretsmanager/latest/userguide/rotate-secrets_how.html) of the Lambda rotation function. The test creates an AWSPENDING version of the secret and then removes it. Defaults to `true`.

      • rotationLambdaArn

        public java.util.Optional<com.pulumi.core.Output<java.lang.String>> rotationLambdaArn()
        Returns:
        Specifies the ARN of the Lambda function that can rotate the secret. Must be supplied if the secret is not managed by AWS.

      • rotationRules

        public com.pulumi.core.Output<SecretRotationRotationRulesArgs> rotationRules()
        Returns:
        A structure that defines the rotation configuration for this secret. Defined below.

      • secretId

        public com.pulumi.core.Output<java.lang.String> secretId()
        Returns:
        Specifies the secret to which you want to add a new version. You can specify either the Amazon Resource Name (ARN) or the friendly name of the secret. The secret must already exist.