Docs Home
Harness v0.7.1 published on Saturday, Mar 29, 2025 by Pulumi
harness.platform.getAwsKmsConnector
Explore with Pulumi AI
Example Usage
import * as pulumi from "@pulumi/pulumi";
import * as harness from "@pulumi/harness";
const example = harness.platform.getAwsKmsConnector({
identifier: "identifier",
});
import pulumi
import pulumi_harness as harness
example = harness.platform.get_aws_kms_connector(identifier="identifier")
package main
import (
"github.com/pulumi/pulumi-harness/sdk/go/harness/platform"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
_, err := platform.LookupAwsKmsConnector(ctx, &platform.LookupAwsKmsConnectorArgs{
Identifier: "identifier",
}, nil)
if err != nil {
return err
}
return nil
})
}
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using Harness = Pulumi.Harness;
return await Deployment.RunAsync(() =>
{
var example = Harness.Platform.GetAwsKmsConnector.Invoke(new()
{
Identifier = "identifier",
});
});
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.harness.platform.PlatformFunctions;
import com.pulumi.harness.platform.inputs.GetAwsKmsConnectorArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
final var example = PlatformFunctions.getAwsKmsConnector(GetAwsKmsConnectorArgs.builder()
.identifier("identifier")
.build());
}
}
variables:
example:
fn::invoke:
function: harness:platform:getAwsKmsConnector
arguments:
identifier: identifier
Using getAwsKmsConnector
Two invocation forms are available. The direct form accepts plain arguments and either blocks until the result value is available, or returns a Promise-wrapped result. The output form accepts Input-wrapped arguments and returns an Output-wrapped result.
function getAwsKmsConnector(args: GetAwsKmsConnectorArgs, opts?: InvokeOptions): Promise<GetAwsKmsConnectorResult>
function getAwsKmsConnectorOutput(args: GetAwsKmsConnectorOutputArgs, opts?: InvokeOptions): Output<GetAwsKmsConnectorResult>def get_aws_kms_connector(identifier: Optional[str] = None,
name: Optional[str] = None,
org_id: Optional[str] = None,
project_id: Optional[str] = None,
opts: Optional[InvokeOptions] = None) -> GetAwsKmsConnectorResult
def get_aws_kms_connector_output(identifier: Optional[pulumi.Input[str]] = None,
name: Optional[pulumi.Input[str]] = None,
org_id: Optional[pulumi.Input[str]] = None,
project_id: Optional[pulumi.Input[str]] = None,
opts: Optional[InvokeOptions] = None) -> Output[GetAwsKmsConnectorResult]func LookupAwsKmsConnector(ctx *Context, args *LookupAwsKmsConnectorArgs, opts ...InvokeOption) (*LookupAwsKmsConnectorResult, error)
func LookupAwsKmsConnectorOutput(ctx *Context, args *LookupAwsKmsConnectorOutputArgs, opts ...InvokeOption) LookupAwsKmsConnectorResultOutput> Note: This function is named LookupAwsKmsConnector in the Go SDK.
public static class GetAwsKmsConnector
{
public static Task<GetAwsKmsConnectorResult> InvokeAsync(GetAwsKmsConnectorArgs args, InvokeOptions? opts = null)
public static Output<GetAwsKmsConnectorResult> Invoke(GetAwsKmsConnectorInvokeArgs args, InvokeOptions? opts = null)
}public static CompletableFuture<GetAwsKmsConnectorResult> getAwsKmsConnector(GetAwsKmsConnectorArgs args, InvokeOptions options)
public static Output<GetAwsKmsConnectorResult> getAwsKmsConnector(GetAwsKmsConnectorArgs args, InvokeOptions options)
fn::invoke:
function: harness:platform/getAwsKmsConnector:getAwsKmsConnector
arguments:
# arguments dictionaryThe following arguments are supported:
- Identifier
string
This property is required. 
Changes to this property will trigger replacement. - Unique identifier of the resource.
- Name string
- Name of the resource.
- Org
Id string - Unique identifier of the organization.
- Project
Id string - Unique identifier of the project.
- Identifier
string
This property is required. Changes to this property will trigger replacement. - Unique identifier of the resource.
- Name string
- Name of the resource.
- Org
Id string - Unique identifier of the organization.
- Project
Id string - Unique identifier of the project.
- identifier
String
This property is required. Changes to this property will trigger replacement. - Unique identifier of the resource.
- name String
- Name of the resource.
- org
Id String - Unique identifier of the organization.
- project
Id String - Unique identifier of the project.
- identifier
string
This property is required. Changes to this property will trigger replacement. - Unique identifier of the resource.
- name string
- Name of the resource.
- org
Id string - Unique identifier of the organization.
- project
Id string - Unique identifier of the project.
- identifier
str
This property is required. Changes to this property will trigger replacement. - Unique identifier of the resource.
- name str
- Name of the resource.
- org_
id str - Unique identifier of the organization.
- project_
id str - Unique identifier of the project.
- identifier
String
This property is required. Changes to this property will trigger replacement. - Unique identifier of the resource.
- name String
- Name of the resource.
- org
Id String - Unique identifier of the organization.
- project
Id String - Unique identifier of the project.
getAwsKmsConnector Result
The following output properties are available:
- Arn
Ref string - A reference to the Harness secret containing the ARN of the AWS KMS. To reference a secret at the organization scope, prefix 'org' to the expression: org.{identifier}. To reference a secret at the account scope, prefix 'account` to the expression: account.{identifier}.
- Credentials
List<Get
Aws Kms Connector Credential> - Credentials to connect to AWS.
- Default bool
- Whether this is the default connector.
- Delegate
Selectors List<string> - Tags to filter delegates for connection.
- Description string
- Description of the resource.
- Execute
On boolDelegate - The delegate to execute the action on.
- Id string
- The provider-assigned unique ID for this managed resource.
- Identifier string
- Unique identifier of the resource.
- Region string
- The AWS region where the AWS Secret Manager is.
- List<string>
- Tags to associate with the resource.
- Name string
- Name of the resource.
- Org
Id string - Unique identifier of the organization.
- Project
Id string - Unique identifier of the project.
- Arn
Ref string - A reference to the Harness secret containing the ARN of the AWS KMS. To reference a secret at the organization scope, prefix 'org' to the expression: org.{identifier}. To reference a secret at the account scope, prefix 'account` to the expression: account.{identifier}.
- Credentials
[]Get
Aws Kms Connector Credential - Credentials to connect to AWS.
- Default bool
- Whether this is the default connector.
- Delegate
Selectors []string - Tags to filter delegates for connection.
- Description string
- Description of the resource.
- Execute
On boolDelegate - The delegate to execute the action on.
- Id string
- The provider-assigned unique ID for this managed resource.
- Identifier string
- Unique identifier of the resource.
- Region string
- The AWS region where the AWS Secret Manager is.
- []string
- Tags to associate with the resource.
- Name string
- Name of the resource.
- Org
Id string - Unique identifier of the organization.
- Project
Id string - Unique identifier of the project.
- arn
Ref String - A reference to the Harness secret containing the ARN of the AWS KMS. To reference a secret at the organization scope, prefix 'org' to the expression: org.{identifier}. To reference a secret at the account scope, prefix 'account` to the expression: account.{identifier}.
- credentials
List<Get
Aws Kms Connector Credential> - Credentials to connect to AWS.
- default_ Boolean
- Whether this is the default connector.
- delegate
Selectors List<String> - Tags to filter delegates for connection.
- description String
- Description of the resource.
- execute
On BooleanDelegate - The delegate to execute the action on.
- id String
- The provider-assigned unique ID for this managed resource.
- identifier String
- Unique identifier of the resource.
- region String
- The AWS region where the AWS Secret Manager is.
- List<String>
- Tags to associate with the resource.
- name String
- Name of the resource.
- org
Id String - Unique identifier of the organization.
- project
Id String - Unique identifier of the project.
- arn
Ref string - A reference to the Harness secret containing the ARN of the AWS KMS. To reference a secret at the organization scope, prefix 'org' to the expression: org.{identifier}. To reference a secret at the account scope, prefix 'account` to the expression: account.{identifier}.
- credentials
Get
Aws Kms Connector Credential[] - Credentials to connect to AWS.
- default boolean
- Whether this is the default connector.
- delegate
Selectors string[] - Tags to filter delegates for connection.
- description string
- Description of the resource.
- execute
On booleanDelegate - The delegate to execute the action on.
- id string
- The provider-assigned unique ID for this managed resource.
- identifier string
- Unique identifier of the resource.
- region string
- The AWS region where the AWS Secret Manager is.
- string[]
- Tags to associate with the resource.
- name string
- Name of the resource.
- org
Id string - Unique identifier of the organization.
- project
Id string - Unique identifier of the project.
- arn_
ref str - A reference to the Harness secret containing the ARN of the AWS KMS. To reference a secret at the organization scope, prefix 'org' to the expression: org.{identifier}. To reference a secret at the account scope, prefix 'account` to the expression: account.{identifier}.
- credentials
Sequence[Get
Aws Kms Connector Credential] - Credentials to connect to AWS.
- default bool
- Whether this is the default connector.
- delegate_
selectors Sequence[str] - Tags to filter delegates for connection.
- description str
- Description of the resource.
- execute_
on_ booldelegate - The delegate to execute the action on.
- id str
- The provider-assigned unique ID for this managed resource.
- identifier str
- Unique identifier of the resource.
- region str
- The AWS region where the AWS Secret Manager is.
- Sequence[str]
- Tags to associate with the resource.
- name str
- Name of the resource.
- org_
id str - Unique identifier of the organization.
- project_
id str - Unique identifier of the project.
- arn
Ref String - A reference to the Harness secret containing the ARN of the AWS KMS. To reference a secret at the organization scope, prefix 'org' to the expression: org.{identifier}. To reference a secret at the account scope, prefix 'account` to the expression: account.{identifier}.
- credentials List<Property Map>
- Credentials to connect to AWS.
- default Boolean
- Whether this is the default connector.
- delegate
Selectors List<String> - Tags to filter delegates for connection.
- description String
- Description of the resource.
- execute
On BooleanDelegate - The delegate to execute the action on.
- id String
- The provider-assigned unique ID for this managed resource.
- identifier String
- Unique identifier of the resource.
- region String
- The AWS region where the AWS Secret Manager is.
- List<String>
- Tags to associate with the resource.
- name String
- Name of the resource.
- org
Id String - Unique identifier of the organization.
- project
Id String - Unique identifier of the project.
Supporting Types
GetAwsKmsConnectorCredential
- Assume
Roles This property is required. List<GetAws Kms Connector Credential Assume Role> - Connect using STS assume role.
- Inherit
From Delegate This property is required. bool - Inherit the credentials from from the delegate.
- Manuals
This property is required. List<GetAws Kms Connector Credential Manual> - Specify the AWS key and secret used for authenticating.
- Oidc
Authentications This property is required. List<GetAws Kms Connector Credential Oidc Authentication> - Authentication using OIDC.
- Assume
Roles This property is required. []GetAws Kms Connector Credential Assume Role - Connect using STS assume role.
- Inherit
From Delegate This property is required. bool - Inherit the credentials from from the delegate.
- Manuals
This property is required. []GetAws Kms Connector Credential Manual - Specify the AWS key and secret used for authenticating.
- Oidc
Authentications This property is required. []GetAws Kms Connector Credential Oidc Authentication - Authentication using OIDC.
- assume
Roles This property is required. List<GetAws Kms Connector Credential Assume Role> - Connect using STS assume role.
- inherit
From Delegate This property is required. Boolean - Inherit the credentials from from the delegate.
- manuals
This property is required. List<GetAws Kms Connector Credential Manual> - Specify the AWS key and secret used for authenticating.
- oidc
Authentications This property is required. List<GetAws Kms Connector Credential Oidc Authentication> - Authentication using OIDC.
- assume
Roles This property is required. GetAws Kms Connector Credential Assume Role[] - Connect using STS assume role.
- inherit
From Delegate This property is required. boolean - Inherit the credentials from from the delegate.
- manuals
This property is required. GetAws Kms Connector Credential Manual[] - Specify the AWS key and secret used for authenticating.
- oidc
Authentications This property is required. GetAws Kms Connector Credential Oidc Authentication[] - Authentication using OIDC.
- assume_
roles This property is required. Sequence[GetAws Kms Connector Credential Assume Role] - Connect using STS assume role.
- inherit_
from_ delegate This property is required. bool - Inherit the credentials from from the delegate.
- manuals
This property is required. Sequence[GetAws Kms Connector Credential Manual] - Specify the AWS key and secret used for authenticating.
- oidc_
authentications This property is required. Sequence[GetAws Kms Connector Credential Oidc Authentication] - Authentication using OIDC.
- assume
Roles This property is required. List<Property Map> - Connect using STS assume role.
- inherit
From Delegate This property is required. Boolean - Inherit the credentials from from the delegate.
- manuals
This property is required. List<Property Map> - Specify the AWS key and secret used for authenticating.
- oidc
Authentications This property is required. List<Property Map> - Authentication using OIDC.
GetAwsKmsConnectorCredentialAssumeRole
- Duration
This property is required. int - The duration, in seconds, of the role session. The value can range from 900 seconds (15 minutes) to 3600 seconds (1 hour). By default, the value is set to 3600 seconds. An expiration can also be specified in the client request body. The minimum value is 1 hour.
- External
Id This property is required. string - If the administrator of the account to which the role belongs provided you with an external ID, then enter that value.
- Role
Arn This property is required. string - The ARN of the role to assume.
- Duration
This property is required. int - The duration, in seconds, of the role session. The value can range from 900 seconds (15 minutes) to 3600 seconds (1 hour). By default, the value is set to 3600 seconds. An expiration can also be specified in the client request body. The minimum value is 1 hour.
- External
Id This property is required. string - If the administrator of the account to which the role belongs provided you with an external ID, then enter that value.
- Role
Arn This property is required. string - The ARN of the role to assume.
- duration
This property is required. Integer - The duration, in seconds, of the role session. The value can range from 900 seconds (15 minutes) to 3600 seconds (1 hour). By default, the value is set to 3600 seconds. An expiration can also be specified in the client request body. The minimum value is 1 hour.
- external
Id This property is required. String - If the administrator of the account to which the role belongs provided you with an external ID, then enter that value.
- role
Arn This property is required. String - The ARN of the role to assume.
- duration
This property is required. number - The duration, in seconds, of the role session. The value can range from 900 seconds (15 minutes) to 3600 seconds (1 hour). By default, the value is set to 3600 seconds. An expiration can also be specified in the client request body. The minimum value is 1 hour.
- external
Id This property is required. string - If the administrator of the account to which the role belongs provided you with an external ID, then enter that value.
- role
Arn This property is required. string - The ARN of the role to assume.
- duration
This property is required. int - The duration, in seconds, of the role session. The value can range from 900 seconds (15 minutes) to 3600 seconds (1 hour). By default, the value is set to 3600 seconds. An expiration can also be specified in the client request body. The minimum value is 1 hour.
- external_
id This property is required. str - If the administrator of the account to which the role belongs provided you with an external ID, then enter that value.
- role_
arn This property is required. str - The ARN of the role to assume.
- duration
This property is required. Number - The duration, in seconds, of the role session. The value can range from 900 seconds (15 minutes) to 3600 seconds (1 hour). By default, the value is set to 3600 seconds. An expiration can also be specified in the client request body. The minimum value is 1 hour.
- external
Id This property is required. String - If the administrator of the account to which the role belongs provided you with an external ID, then enter that value.
- role
Arn This property is required. String - The ARN of the role to assume.
GetAwsKmsConnectorCredentialManual
- Access
Key Ref This property is required. string - The reference to the Harness secret containing the AWS access key. To reference a secret at the organization scope, prefix 'org' to the expression: org.{identifier}. To reference a secret at the account scope, prefix 'account` to the expression: account.{identifier}.
- Secret
Key Ref This property is required. string - The reference to the Harness secret containing the AWS secret key. To reference a secret at the organization scope, prefix 'org' to the expression: org.{identifier}. To reference a secret at the account scope, prefix 'account` to the expression: account.{identifier}.
- Access
Key Ref This property is required. string - The reference to the Harness secret containing the AWS access key. To reference a secret at the organization scope, prefix 'org' to the expression: org.{identifier}. To reference a secret at the account scope, prefix 'account` to the expression: account.{identifier}.
- Secret
Key Ref This property is required. string - The reference to the Harness secret containing the AWS secret key. To reference a secret at the organization scope, prefix 'org' to the expression: org.{identifier}. To reference a secret at the account scope, prefix 'account` to the expression: account.{identifier}.
- access
Key Ref This property is required. String - The reference to the Harness secret containing the AWS access key. To reference a secret at the organization scope, prefix 'org' to the expression: org.{identifier}. To reference a secret at the account scope, prefix 'account` to the expression: account.{identifier}.
- secret
Key Ref This property is required. String - The reference to the Harness secret containing the AWS secret key. To reference a secret at the organization scope, prefix 'org' to the expression: org.{identifier}. To reference a secret at the account scope, prefix 'account` to the expression: account.{identifier}.
- access
Key Ref This property is required. string - The reference to the Harness secret containing the AWS access key. To reference a secret at the organization scope, prefix 'org' to the expression: org.{identifier}. To reference a secret at the account scope, prefix 'account` to the expression: account.{identifier}.
- secret
Key Ref This property is required. string - The reference to the Harness secret containing the AWS secret key. To reference a secret at the organization scope, prefix 'org' to the expression: org.{identifier}. To reference a secret at the account scope, prefix 'account` to the expression: account.{identifier}.
- access_
key_ ref This property is required. str - The reference to the Harness secret containing the AWS access key. To reference a secret at the organization scope, prefix 'org' to the expression: org.{identifier}. To reference a secret at the account scope, prefix 'account` to the expression: account.{identifier}.
- secret_
key_ ref This property is required. str - The reference to the Harness secret containing the AWS secret key. To reference a secret at the organization scope, prefix 'org' to the expression: org.{identifier}. To reference a secret at the account scope, prefix 'account` to the expression: account.{identifier}.
- access
Key Ref This property is required. String - The reference to the Harness secret containing the AWS access key. To reference a secret at the organization scope, prefix 'org' to the expression: org.{identifier}. To reference a secret at the account scope, prefix 'account` to the expression: account.{identifier}.
- secret
Key Ref This property is required. String - The reference to the Harness secret containing the AWS secret key. To reference a secret at the organization scope, prefix 'org' to the expression: org.{identifier}. To reference a secret at the account scope, prefix 'account` to the expression: account.{identifier}.
GetAwsKmsConnectorCredentialOidcAuthentication
- Iam
Role Arn This property is required. string - The IAM role ARN to assume.
- Iam
Role Arn This property is required. string - The IAM role ARN to assume.
- iam
Role Arn This property is required. String - The IAM role ARN to assume.
- iam
Role Arn This property is required. string - The IAM role ARN to assume.
- iam_
role_ arn This property is required. str - The IAM role ARN to assume.
- iam
Role Arn This property is required. String - The IAM role ARN to assume.
Package Details
- Repository
- harness pulumi/pulumi-harness
- License
- Apache-2.0
- Notes
- This Pulumi package is based on the
harnessTerraform Provider.