Namespace Pulumi.AzureAD
Classes
Application
Manages an Application within Azure Active Directory.
NOTE: If you're authenticating using a Service Principal then it must have permissions to both
Read and write owned by applicationsandSign in and read user profilewithin theWindows Azure Active DirectoryAPI.
Example Usage
using Pulumi;
using AzureAD = Pulumi.AzureAD;
class MyStack : Stack
{
public MyStack()
{
var example = new AzureAD.Application("example", new AzureAD.ApplicationArgs
{
AppRoles =
{
new AzureAD.Inputs.ApplicationAppRoleArgs
{
AllowedMemberTypes =
{
"User",
"Application",
},
Description = "Admins can manage roles and perform all task actions",
DisplayName = "Admin",
IsEnabled = true,
Value = "Admin",
},
},
AvailableToOtherTenants = false,
Homepage = "https://homepage",
IdentifierUris =
{
"https://uri",
},
Oauth2AllowImplicitFlow = true,
Owners =
{
"00000004-0000-0000-c000-000000000000",
},
ReplyUrls =
{
"https://replyurl",
},
RequiredResourceAccesses =
{
new AzureAD.Inputs.ApplicationRequiredResourceAccessArgs
{
ResourceAccess =
{
{
{ "id", "..." },
{ "type", "Role" },
},
{
{ "id", "..." },
{ "type", "Scope" },
},
{
{ "id", "..." },
{ "type", "Scope" },
},
},
ResourceAppId = "00000003-0000-0000-c000-000000000000",
},
new AzureAD.Inputs.ApplicationRequiredResourceAccessArgs
{
ResourceAccess =
{
{
{ "id", "..." },
{ "type", "Scope" },
},
},
ResourceAppId = "00000002-0000-0000-c000-000000000000",
},
},
Type = "webapp/api",
});
}
}
ApplicationArgs
ApplicationPassword
Manages a Password associated with an Application within Azure Active Directory.
NOTE: If you're authenticating using a Service Principal then it must have permissions to both
Read and write all applicationsandSign in and read user profilewithin theWindows Azure Active DirectoryAPI.
Example Usage
using Pulumi;
using AzureAD = Pulumi.AzureAD;
class MyStack : Stack
{
public MyStack()
{
var exampleApplication = new AzureAD.Application("exampleApplication", new AzureAD.ApplicationArgs
{
AvailableToOtherTenants = false,
Homepage = "http://homepage",
IdentifierUris =
{
"http://uri",
},
Oauth2AllowImplicitFlow = true,
ReplyUrls =
{
"http://replyurl",
},
});
var exampleApplicationPassword = new AzureAD.ApplicationPassword("exampleApplicationPassword", new AzureAD.ApplicationPasswordArgs
{
ApplicationId = exampleApplication.Id,
EndDate = "2099-01-01T01:02:03Z",
Value = "VT=uSgbTanZhyz@%nL9Hpd+Tfay_MRV#",
});
}
}
ApplicationPasswordArgs
ApplicationPasswordState
ApplicationState
Config
GetApplication
GetApplicationArgs
GetApplicationResult
GetClientConfig
GetClientConfigResult
GetDomains
GetDomainsArgs
GetDomainsResult
GetGroup
GetGroupArgs
GetGroupResult
GetGroups
GetGroupsArgs
GetGroupsResult
GetServicePrincipal
GetServicePrincipalArgs
GetServicePrincipalResult
GetUser
GetUserArgs
GetUserResult
GetUsers
GetUsersArgs
GetUsersResult
Group
GroupArgs
GroupMember
Manages a single Group Membership within Azure Active Directory.
NOTE: Do not use this resource at the same time as
azuread_group.members.
Example Usage
using Pulumi;
using AzureAD = Pulumi.AzureAD;
class MyStack : Stack
{
public MyStack()
{
var exampleUser = Output.Create(AzureAD.GetUser.InvokeAsync(new AzureAD.GetUserArgs
{
UserPrincipalName = "jdoe@hashicorp.com",
}));
var exampleGroup = new AzureAD.Group("exampleGroup", new AzureAD.GroupArgs
{
});
var exampleGroupMember = new AzureAD.GroupMember("exampleGroupMember", new AzureAD.GroupMemberArgs
{
GroupObjectId = exampleGroup.Id,
MemberObjectId = exampleUser.Apply(exampleUser => exampleUser.Id),
});
}
}
GroupMemberArgs
GroupMemberState
GroupState
Provider
The provider type for the azuread package. By default, resources use package-wide configuration
settings, however an explicit Provider instance may be created and passed during resource
construction to achieve fine-grained programmatic control over provider settings. See the
documentation for more information.
ProviderArgs
ServicePrincipal
Manages a Service Principal associated with an Application within Azure Active Directory.
NOTE: If you're authenticating using a Service Principal then it must have permissions to both
Read and write all applicationsandSign in and read user profilewithin theWindows Azure Active DirectoryAPI. Please see The Granting a Service Principal permission to manage AAD for the required steps.
Example Usage
using Pulumi;
using AzureAD = Pulumi.AzureAD;
class MyStack : Stack
{
public MyStack()
{
var exampleApplication = new AzureAD.Application("exampleApplication", new AzureAD.ApplicationArgs
{
AvailableToOtherTenants = false,
Homepage = "http://homepage",
IdentifierUris =
{
"http://uri",
},
Oauth2AllowImplicitFlow = true,
ReplyUrls =
{
"http://replyurl",
},
});
var exampleServicePrincipal = new AzureAD.ServicePrincipal("exampleServicePrincipal", new AzureAD.ServicePrincipalArgs
{
AppRoleAssignmentRequired = false,
ApplicationId = exampleApplication.ApplicationId,
Tags =
{
"example",
"tags",
"here",
},
});
}
}
ServicePrincipalArgs
ServicePrincipalPassword
Manages a Password associated with a Service Principal within Azure Active Directory.
NOTE: If you're authenticating using a Service Principal then it must have permissions to both
Read and write all applicationsandSign in and read user profilewithin theWindows Azure Active DirectoryAPI.
Example Usage
using Pulumi;
using AzureAD = Pulumi.AzureAD;
class MyStack : Stack
{
public MyStack()
{
var exampleApplication = new AzureAD.Application("exampleApplication", new AzureAD.ApplicationArgs
{
AvailableToOtherTenants = false,
Homepage = "http://homepage",
IdentifierUris =
{
"http://uri",
},
Oauth2AllowImplicitFlow = true,
ReplyUrls =
{
"http://replyurl",
},
});
var exampleServicePrincipal = new AzureAD.ServicePrincipal("exampleServicePrincipal", new AzureAD.ServicePrincipalArgs
{
ApplicationId = exampleApplication.ApplicationId,
});
var exampleServicePrincipalPassword = new AzureAD.ServicePrincipalPassword("exampleServicePrincipalPassword", new AzureAD.ServicePrincipalPasswordArgs
{
EndDate = "2099-01-01T01:02:03Z",
ServicePrincipalId = exampleServicePrincipal.Id,
Value = "VT=uSgbTanZhyz@%nL9Hpd+Tfay_MRV#",
});
}
}
ServicePrincipalPasswordArgs
ServicePrincipalPasswordState
ServicePrincipalState
User
Manages a User within Azure Active Directory.
NOTE: If you're authenticating using a Service Principal then it must have permissions to
Directory.ReadWrite.Allwithin theWindows Azure Active DirectoryAPI.
Example Usage
using Pulumi;
using AzureAD = Pulumi.AzureAD;
class MyStack : Stack
{
public MyStack()
{
var example = new AzureAD.User("example", new AzureAD.UserArgs
{
DisplayName = "J. Doe",
MailNickname = "jdoe",
Password = "SecretP@sswd99!",
UserPrincipalName = "jdo@hashicorp.com",
});
}
}