Azure Native v2.63.0, Sep 24 24

This is the latest version of Azure Native. Use the Azure Native v1 docs if using the v1 version of this package.

Azure Native v2.63.0 published on Tuesday, Sep 24, 2024 by Pulumi

pulumi/pulumi-azure-native

azure-native.app.ContainerAppsAuthConfig

Explore with Pulumi AI

This is the latest version of Azure Native. Use the Azure Native v1 docs if using the v1 version of this package.

Azure Native v2.63.0 published on Tuesday, Sep 24, 2024 by Pulumi

pulumi/pulumi-azure-native

Example Usage

Create or Update Container App AuthConfig

using System.Collections.Generic;
using System.Linq;
using Pulumi;
using AzureNative = Pulumi.AzureNative;

return await Deployment.RunAsync(() => 
{
    var containerAppsAuthConfig = new AzureNative.App.ContainerAppsAuthConfig("containerAppsAuthConfig", new()
    {
        AuthConfigName = "current",
        ContainerAppName = "testcanadacentral",
        GlobalValidation = new AzureNative.App.Inputs.GlobalValidationArgs
        {
            UnauthenticatedClientAction = AzureNative.App.UnauthenticatedClientActionV2.AllowAnonymous,
        },
        IdentityProviders = new AzureNative.App.Inputs.IdentityProvidersArgs
        {
            Facebook = new AzureNative.App.Inputs.FacebookArgs
            {
                Registration = new AzureNative.App.Inputs.AppRegistrationArgs
                {
                    AppId = "123",
                    AppSecretSettingName = "facebook-secret",
                },
            },
        },
        Platform = new AzureNative.App.Inputs.AuthPlatformArgs
        {
            Enabled = true,
        },
        ResourceGroupName = "workerapps-rg-xj",
    });

});

package main

import (
	app "github.com/pulumi/pulumi-azure-native-sdk/app/v2"
	"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)

func main() {
	pulumi.Run(func(ctx *pulumi.Context) error {
		_, err := app.NewContainerAppsAuthConfig(ctx, "containerAppsAuthConfig", &app.ContainerAppsAuthConfigArgs{
			AuthConfigName:   pulumi.String("current"),
			ContainerAppName: pulumi.String("testcanadacentral"),
			GlobalValidation: &app.GlobalValidationArgs{
				UnauthenticatedClientAction: app.UnauthenticatedClientActionV2AllowAnonymous,
			},
			IdentityProviders: &app.IdentityProvidersArgs{
				Facebook: &app.FacebookArgs{
					Registration: &app.AppRegistrationArgs{
						AppId:                pulumi.String("123"),
						AppSecretSettingName: pulumi.String("facebook-secret"),
					},
				},
			},
			Platform: &app.AuthPlatformArgs{
				Enabled: pulumi.Bool(true),
			},
			ResourceGroupName: pulumi.String("workerapps-rg-xj"),
		})
		if err != nil {
			return err
		}
		return nil
	})
}

package generated_program;

import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.azurenative.app.ContainerAppsAuthConfig;
import com.pulumi.azurenative.app.ContainerAppsAuthConfigArgs;
import com.pulumi.azurenative.app.inputs.GlobalValidationArgs;
import com.pulumi.azurenative.app.inputs.IdentityProvidersArgs;
import com.pulumi.azurenative.app.inputs.FacebookArgs;
import com.pulumi.azurenative.app.inputs.AppRegistrationArgs;
import com.pulumi.azurenative.app.inputs.AuthPlatformArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;

public class App {
    public static void main(String[] args) {
        Pulumi.run(App::stack);
    }

    public static void stack(Context ctx) {
        var containerAppsAuthConfig = new ContainerAppsAuthConfig("containerAppsAuthConfig", ContainerAppsAuthConfigArgs.builder()
            .authConfigName("current")
            .containerAppName("testcanadacentral")
            .globalValidation(GlobalValidationArgs.builder()
                .unauthenticatedClientAction("AllowAnonymous")
                .build())
            .identityProviders(IdentityProvidersArgs.builder()
                .facebook(FacebookArgs.builder()
                    .registration(AppRegistrationArgs.builder()
                        .appId("123")
                        .appSecretSettingName("facebook-secret")
                        .build())
                    .build())
                .build())
            .platform(AuthPlatformArgs.builder()
                .enabled(true)
                .build())
            .resourceGroupName("workerapps-rg-xj")
            .build());

    }
}

import pulumi
import pulumi_azure_native as azure_native

container_apps_auth_config = azure_native.app.ContainerAppsAuthConfig("containerAppsAuthConfig",
    auth_config_name="current",
    container_app_name="testcanadacentral",
    global_validation={
        "unauthenticated_client_action": azure_native.app.UnauthenticatedClientActionV2.ALLOW_ANONYMOUS,
    },
    identity_providers={
        "facebook": {
            "registration": {
                "app_id": "123",
                "app_secret_setting_name": "facebook-secret",
            },
        },
    },
    platform={
        "enabled": True,
    },
    resource_group_name="workerapps-rg-xj")

import * as pulumi from "@pulumi/pulumi";
import * as azure_native from "@pulumi/azure-native";

const containerAppsAuthConfig = new azure_native.app.ContainerAppsAuthConfig("containerAppsAuthConfig", {
    authConfigName: "current",
    containerAppName: "testcanadacentral",
    globalValidation: {
        unauthenticatedClientAction: azure_native.app.UnauthenticatedClientActionV2.AllowAnonymous,
    },
    identityProviders: {
        facebook: {
            registration: {
                appId: "123",
                appSecretSettingName: "facebook-secret",
            },
        },
    },
    platform: {
        enabled: true,
    },
    resourceGroupName: "workerapps-rg-xj",
});

resources:
  containerAppsAuthConfig:
    type: azure-native:app:ContainerAppsAuthConfig
    properties:
      authConfigName: current
      containerAppName: testcanadacentral
      globalValidation:
        unauthenticatedClientAction: AllowAnonymous
      identityProviders:
        facebook:
          registration:
            appId: '123'
            appSecretSettingName: facebook-secret
      platform:
        enabled: true
      resourceGroupName: workerapps-rg-xj

Create ContainerAppsAuthConfig Resource

Resources are created with functions called constructors. To learn more about declaring and configuring resources, see Resources.

Constructor syntax

new ContainerAppsAuthConfig(name: string, args: ContainerAppsAuthConfigArgs, opts?: CustomResourceOptions);

@overload
def ContainerAppsAuthConfig(resource_name: str,
                            args: ContainerAppsAuthConfigArgs,
                            opts: Optional[ResourceOptions] = None)

@overload
def ContainerAppsAuthConfig(resource_name: str,
                            opts: Optional[ResourceOptions] = None,
                            container_app_name: Optional[str] = None,
                            resource_group_name: Optional[str] = None,
                            auth_config_name: Optional[str] = None,
                            global_validation: Optional[GlobalValidationArgs] = None,
                            http_settings: Optional[HttpSettingsArgs] = None,
                            identity_providers: Optional[IdentityProvidersArgs] = None,
                            login: Optional[LoginArgs] = None,
                            platform: Optional[AuthPlatformArgs] = None)

func NewContainerAppsAuthConfig(ctx *Context, name string, args ContainerAppsAuthConfigArgs, opts ...ResourceOption) (*ContainerAppsAuthConfig, error)

public ContainerAppsAuthConfig(string name, ContainerAppsAuthConfigArgs args, CustomResourceOptions? opts = null)

public ContainerAppsAuthConfig(String name, ContainerAppsAuthConfigArgs args)
public ContainerAppsAuthConfig(String name, ContainerAppsAuthConfigArgs args, CustomResourceOptions options)

type: azure-native:app:ContainerAppsAuthConfig
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.

Parameters

name string: The unique name of the resource.
args ContainerAppsAuthConfigArgs: The arguments to resource properties.
opts CustomResourceOptions: Bag of options to control resource's behavior.

resource_name str: The unique name of the resource.
args ContainerAppsAuthConfigArgs: The arguments to resource properties.
opts ResourceOptions: Bag of options to control resource's behavior.

ctx Context: Context object for the current deployment.
name string: The unique name of the resource.
args ContainerAppsAuthConfigArgs: The arguments to resource properties.
opts ResourceOption: Bag of options to control resource's behavior.

name string: The unique name of the resource.
args ContainerAppsAuthConfigArgs: The arguments to resource properties.
opts CustomResourceOptions: Bag of options to control resource's behavior.

name String: The unique name of the resource.
args ContainerAppsAuthConfigArgs: The arguments to resource properties.
options CustomResourceOptions: Bag of options to control resource's behavior.

Constructor example

The following reference example uses placeholder values for all input properties.

var containerAppsAuthConfigResource = new AzureNative.App.ContainerAppsAuthConfig("containerAppsAuthConfigResource", new()
{
    ContainerAppName = "string",
    ResourceGroupName = "string",
    AuthConfigName = "string",
    GlobalValidation = new AzureNative.App.Inputs.GlobalValidationArgs
    {
        ExcludedPaths = new[]
        {
            "string",
        },
        RedirectToProvider = "string",
        UnauthenticatedClientAction = AzureNative.App.UnauthenticatedClientActionV2.RedirectToLoginPage,
    },
    HttpSettings = new AzureNative.App.Inputs.HttpSettingsArgs
    {
        ForwardProxy = new AzureNative.App.Inputs.ForwardProxyArgs
        {
            Convention = AzureNative.App.ForwardProxyConvention.NoProxy,
            CustomHostHeaderName = "string",
            CustomProtoHeaderName = "string",
        },
        RequireHttps = false,
        Routes = new AzureNative.App.Inputs.HttpSettingsRoutesArgs
        {
            ApiPrefix = "string",
        },
    },
    IdentityProviders = new AzureNative.App.Inputs.IdentityProvidersArgs
    {
        Apple = new AzureNative.App.Inputs.AppleArgs
        {
            Enabled = false,
            Login = new AzureNative.App.Inputs.LoginScopesArgs
            {
                Scopes = new[]
                {
                    "string",
                },
            },
            Registration = new AzureNative.App.Inputs.AppleRegistrationArgs
            {
                ClientId = "string",
                ClientSecretSettingName = "string",
            },
        },
        AzureActiveDirectory = new AzureNative.App.Inputs.AzureActiveDirectoryArgs
        {
            Enabled = false,
            IsAutoProvisioned = false,
            Login = new AzureNative.App.Inputs.AzureActiveDirectoryLoginArgs
            {
                DisableWWWAuthenticate = false,
                LoginParameters = new[]
                {
                    "string",
                },
            },
            Registration = new AzureNative.App.Inputs.AzureActiveDirectoryRegistrationArgs
            {
                ClientId = "string",
                ClientSecretCertificateIssuer = "string",
                ClientSecretCertificateSubjectAlternativeName = "string",
                ClientSecretCertificateThumbprint = "string",
                ClientSecretSettingName = "string",
                OpenIdIssuer = "string",
            },
            Validation = new AzureNative.App.Inputs.AzureActiveDirectoryValidationArgs
            {
                AllowedAudiences = new[]
                {
                    "string",
                },
                DefaultAuthorizationPolicy = new AzureNative.App.Inputs.DefaultAuthorizationPolicyArgs
                {
                    AllowedApplications = new[]
                    {
                        "string",
                    },
                    AllowedPrincipals = new AzureNative.App.Inputs.AllowedPrincipalsArgs
                    {
                        Groups = new[]
                        {
                            "string",
                        },
                        Identities = new[]
                        {
                            "string",
                        },
                    },
                },
                JwtClaimChecks = new AzureNative.App.Inputs.JwtClaimChecksArgs
                {
                    AllowedClientApplications = new[]
                    {
                        "string",
                    },
                    AllowedGroups = new[]
                    {
                        "string",
                    },
                },
            },
        },
        AzureStaticWebApps = new AzureNative.App.Inputs.AzureStaticWebAppsArgs
        {
            Enabled = false,
            Registration = new AzureNative.App.Inputs.AzureStaticWebAppsRegistrationArgs
            {
                ClientId = "string",
            },
        },
        CustomOpenIdConnectProviders = 
        {
            { "string", new AzureNative.App.Inputs.CustomOpenIdConnectProviderArgs
            {
                Enabled = false,
                Login = new AzureNative.App.Inputs.OpenIdConnectLoginArgs
                {
                    NameClaimType = "string",
                    Scopes = new[]
                    {
                        "string",
                    },
                },
                Registration = new AzureNative.App.Inputs.OpenIdConnectRegistrationArgs
                {
                    ClientCredential = new AzureNative.App.Inputs.OpenIdConnectClientCredentialArgs
                    {
                        ClientSecretSettingName = "string",
                        Method = AzureNative.App.ClientCredentialMethod.ClientSecretPost,
                    },
                    ClientId = "string",
                    OpenIdConnectConfiguration = new AzureNative.App.Inputs.OpenIdConnectConfigArgs
                    {
                        AuthorizationEndpoint = "string",
                        CertificationUri = "string",
                        Issuer = "string",
                        TokenEndpoint = "string",
                        WellKnownOpenIdConfiguration = "string",
                    },
                },
            } },
        },
        Facebook = new AzureNative.App.Inputs.FacebookArgs
        {
            Enabled = false,
            GraphApiVersion = "string",
            Login = new AzureNative.App.Inputs.LoginScopesArgs
            {
                Scopes = new[]
                {
                    "string",
                },
            },
            Registration = new AzureNative.App.Inputs.AppRegistrationArgs
            {
                AppId = "string",
                AppSecretSettingName = "string",
            },
        },
        GitHub = new AzureNative.App.Inputs.GitHubArgs
        {
            Enabled = false,
            Login = new AzureNative.App.Inputs.LoginScopesArgs
            {
                Scopes = new[]
                {
                    "string",
                },
            },
            Registration = new AzureNative.App.Inputs.ClientRegistrationArgs
            {
                ClientId = "string",
                ClientSecretSettingName = "string",
            },
        },
        Google = new AzureNative.App.Inputs.GoogleArgs
        {
            Enabled = false,
            Login = new AzureNative.App.Inputs.LoginScopesArgs
            {
                Scopes = new[]
                {
                    "string",
                },
            },
            Registration = new AzureNative.App.Inputs.ClientRegistrationArgs
            {
                ClientId = "string",
                ClientSecretSettingName = "string",
            },
            Validation = new AzureNative.App.Inputs.AllowedAudiencesValidationArgs
            {
                AllowedAudiences = new[]
                {
                    "string",
                },
            },
        },
        Twitter = new AzureNative.App.Inputs.TwitterArgs
        {
            Enabled = false,
            Registration = new AzureNative.App.Inputs.TwitterRegistrationArgs
            {
                ConsumerKey = "string",
                ConsumerSecretSettingName = "string",
            },
        },
    },
    Login = new AzureNative.App.Inputs.LoginArgs
    {
        AllowedExternalRedirectUrls = new[]
        {
            "string",
        },
        CookieExpiration = new AzureNative.App.Inputs.CookieExpirationArgs
        {
            Convention = AzureNative.App.CookieExpirationConvention.FixedTime,
            TimeToExpiration = "string",
        },
        Nonce = new AzureNative.App.Inputs.NonceArgs
        {
            NonceExpirationInterval = "string",
            ValidateNonce = false,
        },
        PreserveUrlFragmentsForLogins = false,
        Routes = new AzureNative.App.Inputs.LoginRoutesArgs
        {
            LogoutEndpoint = "string",
        },
    },
    Platform = new AzureNative.App.Inputs.AuthPlatformArgs
    {
        Enabled = false,
        RuntimeVersion = "string",
    },
});

example, err := app.NewContainerAppsAuthConfig(ctx, "containerAppsAuthConfigResource", &app.ContainerAppsAuthConfigArgs{
	ContainerAppName:  pulumi.String("string"),
	ResourceGroupName: pulumi.String("string"),
	AuthConfigName:    pulumi.String("string"),
	GlobalValidation: &app.GlobalValidationArgs{
		ExcludedPaths: pulumi.StringArray{
			pulumi.String("string"),
		},
		RedirectToProvider:          pulumi.String("string"),
		UnauthenticatedClientAction: app.UnauthenticatedClientActionV2RedirectToLoginPage,
	},
	HttpSettings: &app.HttpSettingsArgs{
		ForwardProxy: &app.ForwardProxyArgs{
			Convention:            app.ForwardProxyConventionNoProxy,
			CustomHostHeaderName:  pulumi.String("string"),
			CustomProtoHeaderName: pulumi.String("string"),
		},
		RequireHttps: pulumi.Bool(false),
		Routes: &app.HttpSettingsRoutesArgs{
			ApiPrefix: pulumi.String("string"),
		},
	},
	IdentityProviders: &app.IdentityProvidersArgs{
		Apple: &app.AppleArgs{
			Enabled: pulumi.Bool(false),
			Login: &app.LoginScopesArgs{
				Scopes: pulumi.StringArray{
					pulumi.String("string"),
				},
			},
			Registration: &app.AppleRegistrationArgs{
				ClientId:                pulumi.String("string"),
				ClientSecretSettingName: pulumi.String("string"),
			},
		},
		AzureActiveDirectory: &app.AzureActiveDirectoryArgs{
			Enabled:           pulumi.Bool(false),
			IsAutoProvisioned: pulumi.Bool(false),
			Login: &app.AzureActiveDirectoryLoginArgs{
				DisableWWWAuthenticate: pulumi.Bool(false),
				LoginParameters: pulumi.StringArray{
					pulumi.String("string"),
				},
			},
			Registration: &app.AzureActiveDirectoryRegistrationArgs{
				ClientId:                      pulumi.String("string"),
				ClientSecretCertificateIssuer: pulumi.String("string"),
				ClientSecretCertificateSubjectAlternativeName: pulumi.String("string"),
				ClientSecretCertificateThumbprint:             pulumi.String("string"),
				ClientSecretSettingName:                       pulumi.String("string"),
				OpenIdIssuer:                                  pulumi.String("string"),
			},
			Validation: &app.AzureActiveDirectoryValidationArgs{
				AllowedAudiences: pulumi.StringArray{
					pulumi.String("string"),
				},
				DefaultAuthorizationPolicy: &app.DefaultAuthorizationPolicyArgs{
					AllowedApplications: pulumi.StringArray{
						pulumi.String("string"),
					},
					AllowedPrincipals: &app.AllowedPrincipalsArgs{
						Groups: pulumi.StringArray{
							pulumi.String("string"),
						},
						Identities: pulumi.StringArray{
							pulumi.String("string"),
						},
					},
				},
				JwtClaimChecks: &app.JwtClaimChecksArgs{
					AllowedClientApplications: pulumi.StringArray{
						pulumi.String("string"),
					},
					AllowedGroups: pulumi.StringArray{
						pulumi.String("string"),
					},
				},
			},
		},
		AzureStaticWebApps: &app.AzureStaticWebAppsArgs{
			Enabled: pulumi.Bool(false),
			Registration: &app.AzureStaticWebAppsRegistrationArgs{
				ClientId: pulumi.String("string"),
			},
		},
		CustomOpenIdConnectProviders: app.CustomOpenIdConnectProviderMap{
			"string": &app.CustomOpenIdConnectProviderArgs{
				Enabled: pulumi.Bool(false),
				Login: &app.OpenIdConnectLoginArgs{
					NameClaimType: pulumi.String("string"),
					Scopes: pulumi.StringArray{
						pulumi.String("string"),
					},
				},
				Registration: &app.OpenIdConnectRegistrationArgs{
					ClientCredential: &app.OpenIdConnectClientCredentialArgs{
						ClientSecretSettingName: pulumi.String("string"),
						Method:                  app.ClientCredentialMethodClientSecretPost,
					},
					ClientId: pulumi.String("string"),
					OpenIdConnectConfiguration: &app.OpenIdConnectConfigArgs{
						AuthorizationEndpoint:        pulumi.String("string"),
						CertificationUri:             pulumi.String("string"),
						Issuer:                       pulumi.String("string"),
						TokenEndpoint:                pulumi.String("string"),
						WellKnownOpenIdConfiguration: pulumi.String("string"),
					},
				},
			},
		},
		Facebook: &app.FacebookArgs{
			Enabled:         pulumi.Bool(false),
			GraphApiVersion: pulumi.String("string"),
			Login: &app.LoginScopesArgs{
				Scopes: pulumi.StringArray{
					pulumi.String("string"),
				},
			},
			Registration: &app.AppRegistrationArgs{
				AppId:                pulumi.String("string"),
				AppSecretSettingName: pulumi.String("string"),
			},
		},
		GitHub: &app.GitHubArgs{
			Enabled: pulumi.Bool(false),
			Login: &app.LoginScopesArgs{
				Scopes: pulumi.StringArray{
					pulumi.String("string"),
				},
			},
			Registration: &app.ClientRegistrationArgs{
				ClientId:                pulumi.String("string"),
				ClientSecretSettingName: pulumi.String("string"),
			},
		},
		Google: &app.GoogleArgs{
			Enabled: pulumi.Bool(false),
			Login: &app.LoginScopesArgs{
				Scopes: pulumi.StringArray{
					pulumi.String("string"),
				},
			},
			Registration: &app.ClientRegistrationArgs{
				ClientId:                pulumi.String("string"),
				ClientSecretSettingName: pulumi.String("string"),
			},
			Validation: &app.AllowedAudiencesValidationArgs{
				AllowedAudiences: pulumi.StringArray{
					pulumi.String("string"),
				},
			},
		},
		Twitter: &app.TwitterArgs{
			Enabled: pulumi.Bool(false),
			Registration: &app.TwitterRegistrationArgs{
				ConsumerKey:               pulumi.String("string"),
				ConsumerSecretSettingName: pulumi.String("string"),
			},
		},
	},
	Login: &app.LoginArgs{
		AllowedExternalRedirectUrls: pulumi.StringArray{
			pulumi.String("string"),
		},
		CookieExpiration: &app.CookieExpirationArgs{
			Convention:       app.CookieExpirationConventionFixedTime,
			TimeToExpiration: pulumi.String("string"),
		},
		Nonce: &app.NonceArgs{
			NonceExpirationInterval: pulumi.String("string"),
			ValidateNonce:           pulumi.Bool(false),
		},
		PreserveUrlFragmentsForLogins: pulumi.Bool(false),
		Routes: &app.LoginRoutesArgs{
			LogoutEndpoint: pulumi.String("string"),
		},
	},
	Platform: &app.AuthPlatformArgs{
		Enabled:        pulumi.Bool(false),
		RuntimeVersion: pulumi.String("string"),
	},
})

var containerAppsAuthConfigResource = new ContainerAppsAuthConfig("containerAppsAuthConfigResource", ContainerAppsAuthConfigArgs.builder()
    .containerAppName("string")
    .resourceGroupName("string")
    .authConfigName("string")
    .globalValidation(GlobalValidationArgs.builder()
        .excludedPaths("string")
        .redirectToProvider("string")
        .unauthenticatedClientAction("RedirectToLoginPage")
        .build())
    .httpSettings(HttpSettingsArgs.builder()
        .forwardProxy(ForwardProxyArgs.builder()
            .convention("NoProxy")
            .customHostHeaderName("string")
            .customProtoHeaderName("string")
            .build())
        .requireHttps(false)
        .routes(HttpSettingsRoutesArgs.builder()
            .apiPrefix("string")
            .build())
        .build())
    .identityProviders(IdentityProvidersArgs.builder()
        .apple(AppleArgs.builder()
            .enabled(false)
            .login(LoginScopesArgs.builder()
                .scopes("string")
                .build())
            .registration(AppleRegistrationArgs.builder()
                .clientId("string")
                .clientSecretSettingName("string")
                .build())
            .build())
        .azureActiveDirectory(AzureActiveDirectoryArgs.builder()
            .enabled(false)
            .isAutoProvisioned(false)
            .login(AzureActiveDirectoryLoginArgs.builder()
                .disableWWWAuthenticate(false)
                .loginParameters("string")
                .build())
            .registration(AzureActiveDirectoryRegistrationArgs.builder()
                .clientId("string")
                .clientSecretCertificateIssuer("string")
                .clientSecretCertificateSubjectAlternativeName("string")
                .clientSecretCertificateThumbprint("string")
                .clientSecretSettingName("string")
                .openIdIssuer("string")
                .build())
            .validation(AzureActiveDirectoryValidationArgs.builder()
                .allowedAudiences("string")
                .defaultAuthorizationPolicy(DefaultAuthorizationPolicyArgs.builder()
                    .allowedApplications("string")
                    .allowedPrincipals(AllowedPrincipalsArgs.builder()
                        .groups("string")
                        .identities("string")
                        .build())
                    .build())
                .jwtClaimChecks(JwtClaimChecksArgs.builder()
                    .allowedClientApplications("string")
                    .allowedGroups("string")
                    .build())
                .build())
            .build())
        .azureStaticWebApps(AzureStaticWebAppsArgs.builder()
            .enabled(false)
            .registration(AzureStaticWebAppsRegistrationArgs.builder()
                .clientId("string")
                .build())
            .build())
        .customOpenIdConnectProviders(Map.of("string", Map.ofEntries(
            Map.entry("enabled", false),
            Map.entry("login", Map.ofEntries(
                Map.entry("nameClaimType", "string"),
                Map.entry("scopes", "string")
            )),
            Map.entry("registration", Map.ofEntries(
                Map.entry("clientCredential", Map.ofEntries(
                    Map.entry("clientSecretSettingName", "string"),
                    Map.entry("method", "ClientSecretPost")
                )),
                Map.entry("clientId", "string"),
                Map.entry("openIdConnectConfiguration", Map.ofEntries(
                    Map.entry("authorizationEndpoint", "string"),
                    Map.entry("certificationUri", "string"),
                    Map.entry("issuer", "string"),
                    Map.entry("tokenEndpoint", "string"),
                    Map.entry("wellKnownOpenIdConfiguration", "string")
                ))
            ))
        )))
        .facebook(FacebookArgs.builder()
            .enabled(false)
            .graphApiVersion("string")
            .login(LoginScopesArgs.builder()
                .scopes("string")
                .build())
            .registration(AppRegistrationArgs.builder()
                .appId("string")
                .appSecretSettingName("string")
                .build())
            .build())
        .gitHub(GitHubArgs.builder()
            .enabled(false)
            .login(LoginScopesArgs.builder()
                .scopes("string")
                .build())
            .registration(ClientRegistrationArgs.builder()
                .clientId("string")
                .clientSecretSettingName("string")
                .build())
            .build())
        .google(GoogleArgs.builder()
            .enabled(false)
            .login(LoginScopesArgs.builder()
                .scopes("string")
                .build())
            .registration(ClientRegistrationArgs.builder()
                .clientId("string")
                .clientSecretSettingName("string")
                .build())
            .validation(AllowedAudiencesValidationArgs.builder()
                .allowedAudiences("string")
                .build())
            .build())
        .twitter(TwitterArgs.builder()
            .enabled(false)
            .registration(TwitterRegistrationArgs.builder()
                .consumerKey("string")
                .consumerSecretSettingName("string")
                .build())
            .build())
        .build())
    .login(LoginArgs.builder()
        .allowedExternalRedirectUrls("string")
        .cookieExpiration(CookieExpirationArgs.builder()
            .convention("FixedTime")
            .timeToExpiration("string")
            .build())
        .nonce(NonceArgs.builder()
            .nonceExpirationInterval("string")
            .validateNonce(false)
            .build())
        .preserveUrlFragmentsForLogins(false)
        .routes(LoginRoutesArgs.builder()
            .logoutEndpoint("string")
            .build())
        .build())
    .platform(AuthPlatformArgs.builder()
        .enabled(false)
        .runtimeVersion("string")
        .build())
    .build());

container_apps_auth_config_resource = azure_native.app.ContainerAppsAuthConfig("containerAppsAuthConfigResource",
    container_app_name="string",
    resource_group_name="string",
    auth_config_name="string",
    global_validation={
        "excludedPaths": ["string"],
        "redirectToProvider": "string",
        "unauthenticatedClientAction": azure_native.app.UnauthenticatedClientActionV2.REDIRECT_TO_LOGIN_PAGE,
    },
    http_settings={
        "forwardProxy": {
            "convention": azure_native.app.ForwardProxyConvention.NO_PROXY,
            "customHostHeaderName": "string",
            "customProtoHeaderName": "string",
        },
        "requireHttps": False,
        "routes": {
            "apiPrefix": "string",
        },
    },
    identity_providers={
        "apple": {
            "enabled": False,
            "login": {
                "scopes": ["string"],
            },
            "registration": {
                "clientId": "string",
                "clientSecretSettingName": "string",
            },
        },
        "azureActiveDirectory": {
            "enabled": False,
            "isAutoProvisioned": False,
            "login": {
                "disableWWWAuthenticate": False,
                "loginParameters": ["string"],
            },
            "registration": {
                "clientId": "string",
                "clientSecretCertificateIssuer": "string",
                "clientSecretCertificateSubjectAlternativeName": "string",
                "clientSecretCertificateThumbprint": "string",
                "clientSecretSettingName": "string",
                "openIdIssuer": "string",
            },
            "validation": {
                "allowedAudiences": ["string"],
                "defaultAuthorizationPolicy": {
                    "allowedApplications": ["string"],
                    "allowedPrincipals": {
                        "groups": ["string"],
                        "identities": ["string"],
                    },
                },
                "jwtClaimChecks": {
                    "allowedClientApplications": ["string"],
                    "allowedGroups": ["string"],
                },
            },
        },
        "azureStaticWebApps": {
            "enabled": False,
            "registration": {
                "clientId": "string",
            },
        },
        "customOpenIdConnectProviders": {
            "string": {
                "enabled": False,
                "login": {
                    "nameClaimType": "string",
                    "scopes": ["string"],
                },
                "registration": {
                    "clientCredential": {
                        "clientSecretSettingName": "string",
                        "method": azure_native.app.ClientCredentialMethod.CLIENT_SECRET_POST,
                    },
                    "clientId": "string",
                    "openIdConnectConfiguration": {
                        "authorizationEndpoint": "string",
                        "certificationUri": "string",
                        "issuer": "string",
                        "tokenEndpoint": "string",
                        "wellKnownOpenIdConfiguration": "string",
                    },
                },
            },
        },
        "facebook": {
            "enabled": False,
            "graphApiVersion": "string",
            "login": {
                "scopes": ["string"],
            },
            "registration": {
                "appId": "string",
                "appSecretSettingName": "string",
            },
        },
        "gitHub": {
            "enabled": False,
            "login": {
                "scopes": ["string"],
            },
            "registration": {
                "clientId": "string",
                "clientSecretSettingName": "string",
            },
        },
        "google": {
            "enabled": False,
            "login": {
                "scopes": ["string"],
            },
            "registration": {
                "clientId": "string",
                "clientSecretSettingName": "string",
            },
            "validation": {
                "allowedAudiences": ["string"],
            },
        },
        "twitter": {
            "enabled": False,
            "registration": {
                "consumerKey": "string",
                "consumerSecretSettingName": "string",
            },
        },
    },
    login={
        "allowedExternalRedirectUrls": ["string"],
        "cookieExpiration": {
            "convention": azure_native.app.CookieExpirationConvention.FIXED_TIME,
            "timeToExpiration": "string",
        },
        "nonce": {
            "nonceExpirationInterval": "string",
            "validateNonce": False,
        },
        "preserveUrlFragmentsForLogins": False,
        "routes": {
            "logoutEndpoint": "string",
        },
    },
    platform={
        "enabled": False,
        "runtimeVersion": "string",
    })

const containerAppsAuthConfigResource = new azure_native.app.ContainerAppsAuthConfig("containerAppsAuthConfigResource", {
    containerAppName: "string",
    resourceGroupName: "string",
    authConfigName: "string",
    globalValidation: {
        excludedPaths: ["string"],
        redirectToProvider: "string",
        unauthenticatedClientAction: azure_native.app.UnauthenticatedClientActionV2.RedirectToLoginPage,
    },
    httpSettings: {
        forwardProxy: {
            convention: azure_native.app.ForwardProxyConvention.NoProxy,
            customHostHeaderName: "string",
            customProtoHeaderName: "string",
        },
        requireHttps: false,
        routes: {
            apiPrefix: "string",
        },
    },
    identityProviders: {
        apple: {
            enabled: false,
            login: {
                scopes: ["string"],
            },
            registration: {
                clientId: "string",
                clientSecretSettingName: "string",
            },
        },
        azureActiveDirectory: {
            enabled: false,
            isAutoProvisioned: false,
            login: {
                disableWWWAuthenticate: false,
                loginParameters: ["string"],
            },
            registration: {
                clientId: "string",
                clientSecretCertificateIssuer: "string",
                clientSecretCertificateSubjectAlternativeName: "string",
                clientSecretCertificateThumbprint: "string",
                clientSecretSettingName: "string",
                openIdIssuer: "string",
            },
            validation: {
                allowedAudiences: ["string"],
                defaultAuthorizationPolicy: {
                    allowedApplications: ["string"],
                    allowedPrincipals: {
                        groups: ["string"],
                        identities: ["string"],
                    },
                },
                jwtClaimChecks: {
                    allowedClientApplications: ["string"],
                    allowedGroups: ["string"],
                },
            },
        },
        azureStaticWebApps: {
            enabled: false,
            registration: {
                clientId: "string",
            },
        },
        customOpenIdConnectProviders: {
            string: {
                enabled: false,
                login: {
                    nameClaimType: "string",
                    scopes: ["string"],
                },
                registration: {
                    clientCredential: {
                        clientSecretSettingName: "string",
                        method: azure_native.app.ClientCredentialMethod.ClientSecretPost,
                    },
                    clientId: "string",
                    openIdConnectConfiguration: {
                        authorizationEndpoint: "string",
                        certificationUri: "string",
                        issuer: "string",
                        tokenEndpoint: "string",
                        wellKnownOpenIdConfiguration: "string",
                    },
                },
            },
        },
        facebook: {
            enabled: false,
            graphApiVersion: "string",
            login: {
                scopes: ["string"],
            },
            registration: {
                appId: "string",
                appSecretSettingName: "string",
            },
        },
        gitHub: {
            enabled: false,
            login: {
                scopes: ["string"],
            },
            registration: {
                clientId: "string",
                clientSecretSettingName: "string",
            },
        },
        google: {
            enabled: false,
            login: {
                scopes: ["string"],
            },
            registration: {
                clientId: "string",
                clientSecretSettingName: "string",
            },
            validation: {
                allowedAudiences: ["string"],
            },
        },
        twitter: {
            enabled: false,
            registration: {
                consumerKey: "string",
                consumerSecretSettingName: "string",
            },
        },
    },
    login: {
        allowedExternalRedirectUrls: ["string"],
        cookieExpiration: {
            convention: azure_native.app.CookieExpirationConvention.FixedTime,
            timeToExpiration: "string",
        },
        nonce: {
            nonceExpirationInterval: "string",
            validateNonce: false,
        },
        preserveUrlFragmentsForLogins: false,
        routes: {
            logoutEndpoint: "string",
        },
    },
    platform: {
        enabled: false,
        runtimeVersion: "string",
    },
});

type: azure-native:app:ContainerAppsAuthConfig
properties:
    authConfigName: string
    containerAppName: string
    globalValidation:
        excludedPaths:
            - string
        redirectToProvider: string
        unauthenticatedClientAction: RedirectToLoginPage
    httpSettings:
        forwardProxy:
            convention: NoProxy
            customHostHeaderName: string
            customProtoHeaderName: string
        requireHttps: false
        routes:
            apiPrefix: string
    identityProviders:
        apple:
            enabled: false
            login:
                scopes:
                    - string
            registration:
                clientId: string
                clientSecretSettingName: string
        azureActiveDirectory:
            enabled: false
            isAutoProvisioned: false
            login:
                disableWWWAuthenticate: false
                loginParameters:
                    - string
            registration:
                clientId: string
                clientSecretCertificateIssuer: string
                clientSecretCertificateSubjectAlternativeName: string
                clientSecretCertificateThumbprint: string
                clientSecretSettingName: string
                openIdIssuer: string
            validation:
                allowedAudiences:
                    - string
                defaultAuthorizationPolicy:
                    allowedApplications:
                        - string
                    allowedPrincipals:
                        groups:
                            - string
                        identities:
                            - string
                jwtClaimChecks:
                    allowedClientApplications:
                        - string
                    allowedGroups:
                        - string
        azureStaticWebApps:
            enabled: false
            registration:
                clientId: string
        customOpenIdConnectProviders:
            string:
                enabled: false
                login:
                    nameClaimType: string
                    scopes:
                        - string
                registration:
                    clientCredential:
                        clientSecretSettingName: string
                        method: ClientSecretPost
                    clientId: string
                    openIdConnectConfiguration:
                        authorizationEndpoint: string
                        certificationUri: string
                        issuer: string
                        tokenEndpoint: string
                        wellKnownOpenIdConfiguration: string
        facebook:
            enabled: false
            graphApiVersion: string
            login:
                scopes:
                    - string
            registration:
                appId: string
                appSecretSettingName: string
        gitHub:
            enabled: false
            login:
                scopes:
                    - string
            registration:
                clientId: string
                clientSecretSettingName: string
        google:
            enabled: false
            login:
                scopes:
                    - string
            registration:
                clientId: string
                clientSecretSettingName: string
            validation:
                allowedAudiences:
                    - string
        twitter:
            enabled: false
            registration:
                consumerKey: string
                consumerSecretSettingName: string
    login:
        allowedExternalRedirectUrls:
            - string
        cookieExpiration:
            convention: FixedTime
            timeToExpiration: string
        nonce:
            nonceExpirationInterval: string
            validateNonce: false
        preserveUrlFragmentsForLogins: false
        routes:
            logoutEndpoint: string
    platform:
        enabled: false
        runtimeVersion: string
    resourceGroupName: string

ContainerAppsAuthConfig Resource Properties

To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.

Inputs

The ContainerAppsAuthConfig resource accepts the following input properties:

ContainerAppName string: Name of the Container App.
ResourceGroupName string: The name of the resource group. The name is case insensitive.
AuthConfigName string: Name of the Container App AuthConfig.
GlobalValidation Pulumi.AzureNative.App.Inputs.GlobalValidation: The configuration settings that determines the validation flow of users using Service Authentication/Authorization.
HttpSettings Pulumi.AzureNative.App.Inputs.HttpSettings: The configuration settings of the HTTP requests for authentication and authorization requests made against ContainerApp Service Authentication/Authorization.
IdentityProviders Pulumi.AzureNative.App.Inputs.IdentityProviders: The configuration settings of each of the identity providers used to configure ContainerApp Service Authentication/Authorization.
Login Pulumi.AzureNative.App.Inputs.Login: The configuration settings of the login flow of users using ContainerApp Service Authentication/Authorization.
Platform Pulumi.AzureNative.App.Inputs.AuthPlatform: The configuration settings of the platform of ContainerApp Service Authentication/Authorization.

ContainerAppName string: Name of the Container App.
ResourceGroupName string: The name of the resource group. The name is case insensitive.
AuthConfigName string: Name of the Container App AuthConfig.
GlobalValidation GlobalValidationArgs: The configuration settings that determines the validation flow of users using Service Authentication/Authorization.
HttpSettings HttpSettingsArgs: The configuration settings of the HTTP requests for authentication and authorization requests made against ContainerApp Service Authentication/Authorization.
IdentityProviders IdentityProvidersArgs: The configuration settings of each of the identity providers used to configure ContainerApp Service Authentication/Authorization.
Login LoginArgs: The configuration settings of the login flow of users using ContainerApp Service Authentication/Authorization.
Platform AuthPlatformArgs: The configuration settings of the platform of ContainerApp Service Authentication/Authorization.

containerAppName String: Name of the Container App.
resourceGroupName String: The name of the resource group. The name is case insensitive.
authConfigName String: Name of the Container App AuthConfig.
globalValidation GlobalValidation: The configuration settings that determines the validation flow of users using Service Authentication/Authorization.
httpSettings HttpSettings: The configuration settings of the HTTP requests for authentication and authorization requests made against ContainerApp Service Authentication/Authorization.
identityProviders IdentityProviders: The configuration settings of each of the identity providers used to configure ContainerApp Service Authentication/Authorization.
login Login: The configuration settings of the login flow of users using ContainerApp Service Authentication/Authorization.
platform AuthPlatform: The configuration settings of the platform of ContainerApp Service Authentication/Authorization.

containerAppName string: Name of the Container App.
resourceGroupName string: The name of the resource group. The name is case insensitive.
authConfigName string: Name of the Container App AuthConfig.
globalValidation GlobalValidation: The configuration settings that determines the validation flow of users using Service Authentication/Authorization.
httpSettings HttpSettings: The configuration settings of the HTTP requests for authentication and authorization requests made against ContainerApp Service Authentication/Authorization.
identityProviders IdentityProviders: The configuration settings of each of the identity providers used to configure ContainerApp Service Authentication/Authorization.
login Login: The configuration settings of the login flow of users using ContainerApp Service Authentication/Authorization.
platform AuthPlatform: The configuration settings of the platform of ContainerApp Service Authentication/Authorization.

container_app_name str: Name of the Container App.
resource_group_name str: The name of the resource group. The name is case insensitive.
auth_config_name str: Name of the Container App AuthConfig.
global_validation GlobalValidationArgs: The configuration settings that determines the validation flow of users using Service Authentication/Authorization.
http_settings HttpSettingsArgs: The configuration settings of the HTTP requests for authentication and authorization requests made against ContainerApp Service Authentication/Authorization.
identity_providers IdentityProvidersArgs: The configuration settings of each of the identity providers used to configure ContainerApp Service Authentication/Authorization.
login LoginArgs: The configuration settings of the login flow of users using ContainerApp Service Authentication/Authorization.
platform AuthPlatformArgs: The configuration settings of the platform of ContainerApp Service Authentication/Authorization.

containerAppName String: Name of the Container App.
resourceGroupName String: The name of the resource group. The name is case insensitive.
authConfigName String: Name of the Container App AuthConfig.
globalValidation Property Map: The configuration settings that determines the validation flow of users using Service Authentication/Authorization.
httpSettings Property Map: The configuration settings of the HTTP requests for authentication and authorization requests made against ContainerApp Service Authentication/Authorization.
identityProviders Property Map: The configuration settings of each of the identity providers used to configure ContainerApp Service Authentication/Authorization.
login Property Map: The configuration settings of the login flow of users using ContainerApp Service Authentication/Authorization.
platform Property Map: The configuration settings of the platform of ContainerApp Service Authentication/Authorization.

Outputs

All input properties are implicitly available as output properties. Additionally, the ContainerAppsAuthConfig resource produces the following output properties:

Id string: The provider-assigned unique ID for this managed resource.
Name string: The name of the resource
SystemData Pulumi.AzureNative.App.Outputs.SystemDataResponse: Azure Resource Manager metadata containing createdBy and modifiedBy information.
Type string: The type of the resource. E.g. "Microsoft.Compute/virtualMachines" or "Microsoft.Storage/storageAccounts"

Id string: The provider-assigned unique ID for this managed resource.
Name string: The name of the resource
SystemData SystemDataResponse: Azure Resource Manager metadata containing createdBy and modifiedBy information.
Type string: The type of the resource. E.g. "Microsoft.Compute/virtualMachines" or "Microsoft.Storage/storageAccounts"

id String: The provider-assigned unique ID for this managed resource.
name String: The name of the resource
systemData SystemDataResponse: Azure Resource Manager metadata containing createdBy and modifiedBy information.
type String: The type of the resource. E.g. "Microsoft.Compute/virtualMachines" or "Microsoft.Storage/storageAccounts"

id string: The provider-assigned unique ID for this managed resource.
name string: The name of the resource
systemData SystemDataResponse: Azure Resource Manager metadata containing createdBy and modifiedBy information.
type string: The type of the resource. E.g. "Microsoft.Compute/virtualMachines" or "Microsoft.Storage/storageAccounts"

id str: The provider-assigned unique ID for this managed resource.
name str: The name of the resource
system_data SystemDataResponse: Azure Resource Manager metadata containing createdBy and modifiedBy information.
type str: The type of the resource. E.g. "Microsoft.Compute/virtualMachines" or "Microsoft.Storage/storageAccounts"

id String: The provider-assigned unique ID for this managed resource.
name String: The name of the resource
systemData Property Map: Azure Resource Manager metadata containing createdBy and modifiedBy information.
type String: The type of the resource. E.g. "Microsoft.Compute/virtualMachines" or "Microsoft.Storage/storageAccounts"

Supporting Types

AllowedAudiencesValidation, AllowedAudiencesValidationArgs

AllowedAudiences List<string>: The configuration settings of the allowed list of audiences from which to validate the JWT token.

AllowedAudiences []string: The configuration settings of the allowed list of audiences from which to validate the JWT token.

allowedAudiences List<String>: The configuration settings of the allowed list of audiences from which to validate the JWT token.

allowedAudiences string[]: The configuration settings of the allowed list of audiences from which to validate the JWT token.

allowed_audiences Sequence[str]: The configuration settings of the allowed list of audiences from which to validate the JWT token.

allowedAudiences List<String>: The configuration settings of the allowed list of audiences from which to validate the JWT token.

AllowedAudiencesValidationResponse, AllowedAudiencesValidationResponseArgs

AllowedAudiences List<string>: The configuration settings of the allowed list of audiences from which to validate the JWT token.

AllowedAudiences []string: The configuration settings of the allowed list of audiences from which to validate the JWT token.

allowedAudiences List<String>: The configuration settings of the allowed list of audiences from which to validate the JWT token.

allowedAudiences string[]: The configuration settings of the allowed list of audiences from which to validate the JWT token.

allowed_audiences Sequence[str]: The configuration settings of the allowed list of audiences from which to validate the JWT token.

allowedAudiences List<String>: The configuration settings of the allowed list of audiences from which to validate the JWT token.

AllowedPrincipals, AllowedPrincipalsArgs

Groups List<string>: The list of the allowed groups.
Identities List<string>: The list of the allowed identities.

Groups []string: The list of the allowed groups.
Identities []string: The list of the allowed identities.

groups List<String>: The list of the allowed groups.
identities List<String>: The list of the allowed identities.

groups string[]: The list of the allowed groups.
identities string[]: The list of the allowed identities.

groups Sequence[str]: The list of the allowed groups.
identities Sequence[str]: The list of the allowed identities.

groups List<String>: The list of the allowed groups.
identities List<String>: The list of the allowed identities.

AllowedPrincipalsResponse, AllowedPrincipalsResponseArgs

Groups List<string>: The list of the allowed groups.
Identities List<string>: The list of the allowed identities.

Groups []string: The list of the allowed groups.
Identities []string: The list of the allowed identities.

groups List<String>: The list of the allowed groups.
identities List<String>: The list of the allowed identities.

groups string[]: The list of the allowed groups.
identities string[]: The list of the allowed identities.

groups Sequence[str]: The list of the allowed groups.
identities Sequence[str]: The list of the allowed identities.

groups List<String>: The list of the allowed groups.
identities List<String>: The list of the allowed identities.

AppRegistration, AppRegistrationArgs

AppId string: The App ID of the app used for login.
AppSecretSettingName string: The app setting name that contains the app secret.

AppId string: The App ID of the app used for login.
AppSecretSettingName string: The app setting name that contains the app secret.

appId String: The App ID of the app used for login.
appSecretSettingName String: The app setting name that contains the app secret.

appId string: The App ID of the app used for login.
appSecretSettingName string: The app setting name that contains the app secret.

app_id str: The App ID of the app used for login.
app_secret_setting_name str: The app setting name that contains the app secret.

appId String: The App ID of the app used for login.
appSecretSettingName String: The app setting name that contains the app secret.

AppRegistrationResponse, AppRegistrationResponseArgs

AppId string: The App ID of the app used for login.
AppSecretSettingName string: The app setting name that contains the app secret.

AppId string: The App ID of the app used for login.
AppSecretSettingName string: The app setting name that contains the app secret.

appId String: The App ID of the app used for login.
appSecretSettingName String: The app setting name that contains the app secret.

appId string: The App ID of the app used for login.
appSecretSettingName string: The app setting name that contains the app secret.

app_id str: The App ID of the app used for login.
app_secret_setting_name str: The app setting name that contains the app secret.

appId String: The App ID of the app used for login.
appSecretSettingName String: The app setting name that contains the app secret.

Apple, AppleArgs

Enabled bool: false if the Apple provider should not be enabled despite the set registration; otherwise, true.
Login Pulumi.AzureNative.App.Inputs.LoginScopes: The configuration settings of the login flow.
Registration Pulumi.AzureNative.App.Inputs.AppleRegistration: The configuration settings of the Apple registration.

Enabled bool: false if the Apple provider should not be enabled despite the set registration; otherwise, true.
Login LoginScopes: The configuration settings of the login flow.
Registration AppleRegistration: The configuration settings of the Apple registration.

enabled Boolean: false if the Apple provider should not be enabled despite the set registration; otherwise, true.
login LoginScopes: The configuration settings of the login flow.
registration AppleRegistration: The configuration settings of the Apple registration.

enabled boolean: false if the Apple provider should not be enabled despite the set registration; otherwise, true.
login LoginScopes: The configuration settings of the login flow.
registration AppleRegistration: The configuration settings of the Apple registration.

enabled bool: false if the Apple provider should not be enabled despite the set registration; otherwise, true.
login LoginScopes: The configuration settings of the login flow.
registration AppleRegistration: The configuration settings of the Apple registration.

enabled Boolean: false if the Apple provider should not be enabled despite the set registration; otherwise, true.
login Property Map: The configuration settings of the login flow.
registration Property Map: The configuration settings of the Apple registration.

AppleRegistration, AppleRegistrationArgs

ClientId string: The Client ID of the app used for login.
ClientSecretSettingName string: The app setting name that contains the client secret.

ClientId string: The Client ID of the app used for login.
ClientSecretSettingName string: The app setting name that contains the client secret.

clientId String: The Client ID of the app used for login.
clientSecretSettingName String: The app setting name that contains the client secret.

clientId string: The Client ID of the app used for login.
clientSecretSettingName string: The app setting name that contains the client secret.

client_id str: The Client ID of the app used for login.
client_secret_setting_name str: The app setting name that contains the client secret.

clientId String: The Client ID of the app used for login.
clientSecretSettingName String: The app setting name that contains the client secret.

AppleRegistrationResponse, AppleRegistrationResponseArgs

ClientId string: The Client ID of the app used for login.
ClientSecretSettingName string: The app setting name that contains the client secret.

ClientId string: The Client ID of the app used for login.
ClientSecretSettingName string: The app setting name that contains the client secret.

clientId String: The Client ID of the app used for login.
clientSecretSettingName String: The app setting name that contains the client secret.

clientId string: The Client ID of the app used for login.
clientSecretSettingName string: The app setting name that contains the client secret.

client_id str: The Client ID of the app used for login.
client_secret_setting_name str: The app setting name that contains the client secret.

clientId String: The Client ID of the app used for login.
clientSecretSettingName String: The app setting name that contains the client secret.

AppleResponse, AppleResponseArgs

Enabled bool: false if the Apple provider should not be enabled despite the set registration; otherwise, true.
Login Pulumi.AzureNative.App.Inputs.LoginScopesResponse: The configuration settings of the login flow.
Registration Pulumi.AzureNative.App.Inputs.AppleRegistrationResponse: The configuration settings of the Apple registration.

Enabled bool: false if the Apple provider should not be enabled despite the set registration; otherwise, true.
Login LoginScopesResponse: The configuration settings of the login flow.
Registration AppleRegistrationResponse: The configuration settings of the Apple registration.

enabled Boolean: false if the Apple provider should not be enabled despite the set registration; otherwise, true.
login LoginScopesResponse: The configuration settings of the login flow.
registration AppleRegistrationResponse: The configuration settings of the Apple registration.

enabled boolean: false if the Apple provider should not be enabled despite the set registration; otherwise, true.
login LoginScopesResponse: The configuration settings of the login flow.
registration AppleRegistrationResponse: The configuration settings of the Apple registration.

enabled bool: false if the Apple provider should not be enabled despite the set registration; otherwise, true.
login LoginScopesResponse: The configuration settings of the login flow.
registration AppleRegistrationResponse: The configuration settings of the Apple registration.

enabled Boolean: false if the Apple provider should not be enabled despite the set registration; otherwise, true.
login Property Map: The configuration settings of the login flow.
registration Property Map: The configuration settings of the Apple registration.

AuthPlatform, AuthPlatformArgs

Enabled bool: true if the Authentication / Authorization feature is enabled for the current app; otherwise, false.
RuntimeVersion string: The RuntimeVersion of the Authentication / Authorization feature in use for the current app. The setting in this value can control the behavior of certain features in the Authentication / Authorization module.

Enabled bool: true if the Authentication / Authorization feature is enabled for the current app; otherwise, false.
RuntimeVersion string: The RuntimeVersion of the Authentication / Authorization feature in use for the current app. The setting in this value can control the behavior of certain features in the Authentication / Authorization module.

enabled Boolean: true if the Authentication / Authorization feature is enabled for the current app; otherwise, false.
runtimeVersion String: The RuntimeVersion of the Authentication / Authorization feature in use for the current app. The setting in this value can control the behavior of certain features in the Authentication / Authorization module.

enabled boolean: true if the Authentication / Authorization feature is enabled for the current app; otherwise, false.
runtimeVersion string: The RuntimeVersion of the Authentication / Authorization feature in use for the current app. The setting in this value can control the behavior of certain features in the Authentication / Authorization module.

enabled bool: true if the Authentication / Authorization feature is enabled for the current app; otherwise, false.
runtime_version str: The RuntimeVersion of the Authentication / Authorization feature in use for the current app. The setting in this value can control the behavior of certain features in the Authentication / Authorization module.

enabled Boolean: true if the Authentication / Authorization feature is enabled for the current app; otherwise, false.
runtimeVersion String: The RuntimeVersion of the Authentication / Authorization feature in use for the current app. The setting in this value can control the behavior of certain features in the Authentication / Authorization module.

AuthPlatformResponse, AuthPlatformResponseArgs

Enabled bool: true if the Authentication / Authorization feature is enabled for the current app; otherwise, false.
RuntimeVersion string: The RuntimeVersion of the Authentication / Authorization feature in use for the current app. The setting in this value can control the behavior of certain features in the Authentication / Authorization module.

Enabled bool: true if the Authentication / Authorization feature is enabled for the current app; otherwise, false.
RuntimeVersion string: The RuntimeVersion of the Authentication / Authorization feature in use for the current app. The setting in this value can control the behavior of certain features in the Authentication / Authorization module.

enabled Boolean: true if the Authentication / Authorization feature is enabled for the current app; otherwise, false.
runtimeVersion String: The RuntimeVersion of the Authentication / Authorization feature in use for the current app. The setting in this value can control the behavior of certain features in the Authentication / Authorization module.

enabled boolean: true if the Authentication / Authorization feature is enabled for the current app; otherwise, false.
runtimeVersion string: The RuntimeVersion of the Authentication / Authorization feature in use for the current app. The setting in this value can control the behavior of certain features in the Authentication / Authorization module.

enabled bool: true if the Authentication / Authorization feature is enabled for the current app; otherwise, false.
runtime_version str: The RuntimeVersion of the Authentication / Authorization feature in use for the current app. The setting in this value can control the behavior of certain features in the Authentication / Authorization module.

enabled Boolean: true if the Authentication / Authorization feature is enabled for the current app; otherwise, false.
runtimeVersion String: The RuntimeVersion of the Authentication / Authorization feature in use for the current app. The setting in this value can control the behavior of certain features in the Authentication / Authorization module.

AzureActiveDirectory, AzureActiveDirectoryArgs

Enabled bool: false if the Azure Active Directory provider should not be enabled despite the set registration; otherwise, true.
IsAutoProvisioned bool: Gets a value indicating whether the Azure AD configuration was auto-provisioned using 1st party tooling. This is an internal flag primarily intended to support the Azure Management Portal. Users should not read or write to this property.
Login Pulumi.AzureNative.App.Inputs.AzureActiveDirectoryLogin: The configuration settings of the Azure Active Directory login flow.
Registration Pulumi.AzureNative.App.Inputs.AzureActiveDirectoryRegistration: The configuration settings of the Azure Active Directory app registration.
Validation Pulumi.AzureNative.App.Inputs.AzureActiveDirectoryValidation: The configuration settings of the Azure Active Directory token validation flow.

Enabled bool: false if the Azure Active Directory provider should not be enabled despite the set registration; otherwise, true.
IsAutoProvisioned bool: Gets a value indicating whether the Azure AD configuration was auto-provisioned using 1st party tooling. This is an internal flag primarily intended to support the Azure Management Portal. Users should not read or write to this property.
Login AzureActiveDirectoryLogin: The configuration settings of the Azure Active Directory login flow.
Registration AzureActiveDirectoryRegistration: The configuration settings of the Azure Active Directory app registration.
Validation AzureActiveDirectoryValidation: The configuration settings of the Azure Active Directory token validation flow.

enabled Boolean: false if the Azure Active Directory provider should not be enabled despite the set registration; otherwise, true.
isAutoProvisioned Boolean: Gets a value indicating whether the Azure AD configuration was auto-provisioned using 1st party tooling. This is an internal flag primarily intended to support the Azure Management Portal. Users should not read or write to this property.
login AzureActiveDirectoryLogin: The configuration settings of the Azure Active Directory login flow.
registration AzureActiveDirectoryRegistration: The configuration settings of the Azure Active Directory app registration.
validation AzureActiveDirectoryValidation: The configuration settings of the Azure Active Directory token validation flow.

enabled boolean: false if the Azure Active Directory provider should not be enabled despite the set registration; otherwise, true.
isAutoProvisioned boolean: Gets a value indicating whether the Azure AD configuration was auto-provisioned using 1st party tooling. This is an internal flag primarily intended to support the Azure Management Portal. Users should not read or write to this property.
login AzureActiveDirectoryLogin: The configuration settings of the Azure Active Directory login flow.
registration AzureActiveDirectoryRegistration: The configuration settings of the Azure Active Directory app registration.
validation AzureActiveDirectoryValidation: The configuration settings of the Azure Active Directory token validation flow.

enabled bool: false if the Azure Active Directory provider should not be enabled despite the set registration; otherwise, true.
is_auto_provisioned bool: Gets a value indicating whether the Azure AD configuration was auto-provisioned using 1st party tooling. This is an internal flag primarily intended to support the Azure Management Portal. Users should not read or write to this property.
login AzureActiveDirectoryLogin: The configuration settings of the Azure Active Directory login flow.
registration AzureActiveDirectoryRegistration: The configuration settings of the Azure Active Directory app registration.
validation AzureActiveDirectoryValidation: The configuration settings of the Azure Active Directory token validation flow.

enabled Boolean: false if the Azure Active Directory provider should not be enabled despite the set registration; otherwise, true.
isAutoProvisioned Boolean: Gets a value indicating whether the Azure AD configuration was auto-provisioned using 1st party tooling. This is an internal flag primarily intended to support the Azure Management Portal. Users should not read or write to this property.
login Property Map: The configuration settings of the Azure Active Directory login flow.
registration Property Map: The configuration settings of the Azure Active Directory app registration.
validation Property Map: The configuration settings of the Azure Active Directory token validation flow.

AzureActiveDirectoryLogin, AzureActiveDirectoryLoginArgs

DisableWWWAuthenticate bool: true if the www-authenticate provider should be omitted from the request; otherwise, false.
LoginParameters List<string>: Login parameters to send to the OpenID Connect authorization endpoint when a user logs in. Each parameter must be in the form "key=value".

DisableWWWAuthenticate bool: true if the www-authenticate provider should be omitted from the request; otherwise, false.
LoginParameters []string: Login parameters to send to the OpenID Connect authorization endpoint when a user logs in. Each parameter must be in the form "key=value".

disableWWWAuthenticate Boolean: true if the www-authenticate provider should be omitted from the request; otherwise, false.
loginParameters List<String>: Login parameters to send to the OpenID Connect authorization endpoint when a user logs in. Each parameter must be in the form "key=value".

disableWWWAuthenticate boolean: true if the www-authenticate provider should be omitted from the request; otherwise, false.
loginParameters string[]: Login parameters to send to the OpenID Connect authorization endpoint when a user logs in. Each parameter must be in the form "key=value".

disable_www_authenticate bool: true if the www-authenticate provider should be omitted from the request; otherwise, false.
login_parameters Sequence[str]: Login parameters to send to the OpenID Connect authorization endpoint when a user logs in. Each parameter must be in the form "key=value".

disableWWWAuthenticate Boolean: true if the www-authenticate provider should be omitted from the request; otherwise, false.
loginParameters List<String>: Login parameters to send to the OpenID Connect authorization endpoint when a user logs in. Each parameter must be in the form "key=value".

AzureActiveDirectoryLoginResponse, AzureActiveDirectoryLoginResponseArgs

DisableWWWAuthenticate bool: true if the www-authenticate provider should be omitted from the request; otherwise, false.
LoginParameters List<string>: Login parameters to send to the OpenID Connect authorization endpoint when a user logs in. Each parameter must be in the form "key=value".

DisableWWWAuthenticate bool: true if the www-authenticate provider should be omitted from the request; otherwise, false.
LoginParameters []string: Login parameters to send to the OpenID Connect authorization endpoint when a user logs in. Each parameter must be in the form "key=value".

disableWWWAuthenticate Boolean: true if the www-authenticate provider should be omitted from the request; otherwise, false.
loginParameters List<String>: Login parameters to send to the OpenID Connect authorization endpoint when a user logs in. Each parameter must be in the form "key=value".

disableWWWAuthenticate boolean: true if the www-authenticate provider should be omitted from the request; otherwise, false.
loginParameters string[]: Login parameters to send to the OpenID Connect authorization endpoint when a user logs in. Each parameter must be in the form "key=value".

disable_www_authenticate bool: true if the www-authenticate provider should be omitted from the request; otherwise, false.
login_parameters Sequence[str]: Login parameters to send to the OpenID Connect authorization endpoint when a user logs in. Each parameter must be in the form "key=value".

disableWWWAuthenticate Boolean: true if the www-authenticate provider should be omitted from the request; otherwise, false.
loginParameters List<String>: Login parameters to send to the OpenID Connect authorization endpoint when a user logs in. Each parameter must be in the form "key=value".

AzureActiveDirectoryRegistration, AzureActiveDirectoryRegistrationArgs

ClientId string: The Client ID of this relying party application, known as the client_id. This setting is required for enabling OpenID Connection authentication with Azure Active Directory or other 3rd party OpenID Connect providers. More information on OpenID Connect: http://openid.net/specs/openid-connect-core-1_0.html
ClientSecretCertificateIssuer string: An alternative to the client secret thumbprint, that is the issuer of a certificate used for signing purposes. This property acts as a replacement for the Client Secret Certificate Thumbprint. It is also optional.
ClientSecretCertificateSubjectAlternativeName string: An alternative to the client secret thumbprint, that is the subject alternative name of a certificate used for signing purposes. This property acts as a replacement for the Client Secret Certificate Thumbprint. It is also optional.
ClientSecretCertificateThumbprint string: An alternative to the client secret, that is the thumbprint of a certificate used for signing purposes. This property acts as a replacement for the Client Secret. It is also optional.
ClientSecretSettingName string: The app setting name that contains the client secret of the relying party application.
OpenIdIssuer string: The OpenID Connect Issuer URI that represents the entity which issues access tokens for this application. When using Azure Active Directory, this value is the URI of the directory tenant, e.g. https://login.microsoftonline.com/v2.0/{tenant-guid}/. This URI is a case-sensitive identifier for the token issuer. More information on OpenID Connect Discovery: http://openid.net/specs/openid-connect-discovery-1_0.html

ClientId string: The Client ID of this relying party application, known as the client_id. This setting is required for enabling OpenID Connection authentication with Azure Active Directory or other 3rd party OpenID Connect providers. More information on OpenID Connect: http://openid.net/specs/openid-connect-core-1_0.html
ClientSecretCertificateIssuer string: An alternative to the client secret thumbprint, that is the issuer of a certificate used for signing purposes. This property acts as a replacement for the Client Secret Certificate Thumbprint. It is also optional.
ClientSecretCertificateSubjectAlternativeName string: An alternative to the client secret thumbprint, that is the subject alternative name of a certificate used for signing purposes. This property acts as a replacement for the Client Secret Certificate Thumbprint. It is also optional.
ClientSecretCertificateThumbprint string: An alternative to the client secret, that is the thumbprint of a certificate used for signing purposes. This property acts as a replacement for the Client Secret. It is also optional.
ClientSecretSettingName string: The app setting name that contains the client secret of the relying party application.
OpenIdIssuer string: The OpenID Connect Issuer URI that represents the entity which issues access tokens for this application. When using Azure Active Directory, this value is the URI of the directory tenant, e.g. https://login.microsoftonline.com/v2.0/{tenant-guid}/. This URI is a case-sensitive identifier for the token issuer. More information on OpenID Connect Discovery: http://openid.net/specs/openid-connect-discovery-1_0.html

clientId String: The Client ID of this relying party application, known as the client_id. This setting is required for enabling OpenID Connection authentication with Azure Active Directory or other 3rd party OpenID Connect providers. More information on OpenID Connect: http://openid.net/specs/openid-connect-core-1_0.html
clientSecretCertificateIssuer String: An alternative to the client secret thumbprint, that is the issuer of a certificate used for signing purposes. This property acts as a replacement for the Client Secret Certificate Thumbprint. It is also optional.
clientSecretCertificateSubjectAlternativeName String: An alternative to the client secret thumbprint, that is the subject alternative name of a certificate used for signing purposes. This property acts as a replacement for the Client Secret Certificate Thumbprint. It is also optional.
clientSecretCertificateThumbprint String: An alternative to the client secret, that is the thumbprint of a certificate used for signing purposes. This property acts as a replacement for the Client Secret. It is also optional.
clientSecretSettingName String: The app setting name that contains the client secret of the relying party application.
openIdIssuer String: The OpenID Connect Issuer URI that represents the entity which issues access tokens for this application. When using Azure Active Directory, this value is the URI of the directory tenant, e.g. https://login.microsoftonline.com/v2.0/{tenant-guid}/. This URI is a case-sensitive identifier for the token issuer. More information on OpenID Connect Discovery: http://openid.net/specs/openid-connect-discovery-1_0.html

clientId string: The Client ID of this relying party application, known as the client_id. This setting is required for enabling OpenID Connection authentication with Azure Active Directory or other 3rd party OpenID Connect providers. More information on OpenID Connect: http://openid.net/specs/openid-connect-core-1_0.html
clientSecretCertificateIssuer string: An alternative to the client secret thumbprint, that is the issuer of a certificate used for signing purposes. This property acts as a replacement for the Client Secret Certificate Thumbprint. It is also optional.
clientSecretCertificateSubjectAlternativeName string: An alternative to the client secret thumbprint, that is the subject alternative name of a certificate used for signing purposes. This property acts as a replacement for the Client Secret Certificate Thumbprint. It is also optional.
clientSecretCertificateThumbprint string: An alternative to the client secret, that is the thumbprint of a certificate used for signing purposes. This property acts as a replacement for the Client Secret. It is also optional.
clientSecretSettingName string: The app setting name that contains the client secret of the relying party application.
openIdIssuer string: The OpenID Connect Issuer URI that represents the entity which issues access tokens for this application. When using Azure Active Directory, this value is the URI of the directory tenant, e.g. https://login.microsoftonline.com/v2.0/{tenant-guid}/. This URI is a case-sensitive identifier for the token issuer. More information on OpenID Connect Discovery: http://openid.net/specs/openid-connect-discovery-1_0.html

client_id str: The Client ID of this relying party application, known as the client_id. This setting is required for enabling OpenID Connection authentication with Azure Active Directory or other 3rd party OpenID Connect providers. More information on OpenID Connect: http://openid.net/specs/openid-connect-core-1_0.html
client_secret_certificate_issuer str: An alternative to the client secret thumbprint, that is the issuer of a certificate used for signing purposes. This property acts as a replacement for the Client Secret Certificate Thumbprint. It is also optional.
client_secret_certificate_subject_alternative_name str: An alternative to the client secret thumbprint, that is the subject alternative name of a certificate used for signing purposes. This property acts as a replacement for the Client Secret Certificate Thumbprint. It is also optional.
client_secret_certificate_thumbprint str: An alternative to the client secret, that is the thumbprint of a certificate used for signing purposes. This property acts as a replacement for the Client Secret. It is also optional.
client_secret_setting_name str: The app setting name that contains the client secret of the relying party application.
open_id_issuer str: The OpenID Connect Issuer URI that represents the entity which issues access tokens for this application. When using Azure Active Directory, this value is the URI of the directory tenant, e.g. https://login.microsoftonline.com/v2.0/{tenant-guid}/. This URI is a case-sensitive identifier for the token issuer. More information on OpenID Connect Discovery: http://openid.net/specs/openid-connect-discovery-1_0.html

clientId String: The Client ID of this relying party application, known as the client_id. This setting is required for enabling OpenID Connection authentication with Azure Active Directory or other 3rd party OpenID Connect providers. More information on OpenID Connect: http://openid.net/specs/openid-connect-core-1_0.html
clientSecretCertificateIssuer String: An alternative to the client secret thumbprint, that is the issuer of a certificate used for signing purposes. This property acts as a replacement for the Client Secret Certificate Thumbprint. It is also optional.
clientSecretCertificateSubjectAlternativeName String: An alternative to the client secret thumbprint, that is the subject alternative name of a certificate used for signing purposes. This property acts as a replacement for the Client Secret Certificate Thumbprint. It is also optional.
clientSecretCertificateThumbprint String: An alternative to the client secret, that is the thumbprint of a certificate used for signing purposes. This property acts as a replacement for the Client Secret. It is also optional.
clientSecretSettingName String: The app setting name that contains the client secret of the relying party application.
openIdIssuer String: The OpenID Connect Issuer URI that represents the entity which issues access tokens for this application. When using Azure Active Directory, this value is the URI of the directory tenant, e.g. https://login.microsoftonline.com/v2.0/{tenant-guid}/. This URI is a case-sensitive identifier for the token issuer. More information on OpenID Connect Discovery: http://openid.net/specs/openid-connect-discovery-1_0.html

AzureActiveDirectoryRegistrationResponse, AzureActiveDirectoryRegistrationResponseArgs

ClientId string: The Client ID of this relying party application, known as the client_id. This setting is required for enabling OpenID Connection authentication with Azure Active Directory or other 3rd party OpenID Connect providers. More information on OpenID Connect: http://openid.net/specs/openid-connect-core-1_0.html
ClientSecretCertificateIssuer string: An alternative to the client secret thumbprint, that is the issuer of a certificate used for signing purposes. This property acts as a replacement for the Client Secret Certificate Thumbprint. It is also optional.
ClientSecretCertificateSubjectAlternativeName string: An alternative to the client secret thumbprint, that is the subject alternative name of a certificate used for signing purposes. This property acts as a replacement for the Client Secret Certificate Thumbprint. It is also optional.
ClientSecretCertificateThumbprint string: An alternative to the client secret, that is the thumbprint of a certificate used for signing purposes. This property acts as a replacement for the Client Secret. It is also optional.
ClientSecretSettingName string: The app setting name that contains the client secret of the relying party application.
OpenIdIssuer string: The OpenID Connect Issuer URI that represents the entity which issues access tokens for this application. When using Azure Active Directory, this value is the URI of the directory tenant, e.g. https://login.microsoftonline.com/v2.0/{tenant-guid}/. This URI is a case-sensitive identifier for the token issuer. More information on OpenID Connect Discovery: http://openid.net/specs/openid-connect-discovery-1_0.html

ClientId string: The Client ID of this relying party application, known as the client_id. This setting is required for enabling OpenID Connection authentication with Azure Active Directory or other 3rd party OpenID Connect providers. More information on OpenID Connect: http://openid.net/specs/openid-connect-core-1_0.html
ClientSecretCertificateIssuer string: An alternative to the client secret thumbprint, that is the issuer of a certificate used for signing purposes. This property acts as a replacement for the Client Secret Certificate Thumbprint. It is also optional.
ClientSecretCertificateSubjectAlternativeName string: An alternative to the client secret thumbprint, that is the subject alternative name of a certificate used for signing purposes. This property acts as a replacement for the Client Secret Certificate Thumbprint. It is also optional.
ClientSecretCertificateThumbprint string: An alternative to the client secret, that is the thumbprint of a certificate used for signing purposes. This property acts as a replacement for the Client Secret. It is also optional.
ClientSecretSettingName string: The app setting name that contains the client secret of the relying party application.
OpenIdIssuer string: The OpenID Connect Issuer URI that represents the entity which issues access tokens for this application. When using Azure Active Directory, this value is the URI of the directory tenant, e.g. https://login.microsoftonline.com/v2.0/{tenant-guid}/. This URI is a case-sensitive identifier for the token issuer. More information on OpenID Connect Discovery: http://openid.net/specs/openid-connect-discovery-1_0.html

clientId String: The Client ID of this relying party application, known as the client_id. This setting is required for enabling OpenID Connection authentication with Azure Active Directory or other 3rd party OpenID Connect providers. More information on OpenID Connect: http://openid.net/specs/openid-connect-core-1_0.html
clientSecretCertificateIssuer String: An alternative to the client secret thumbprint, that is the issuer of a certificate used for signing purposes. This property acts as a replacement for the Client Secret Certificate Thumbprint. It is also optional.
clientSecretCertificateSubjectAlternativeName String: An alternative to the client secret thumbprint, that is the subject alternative name of a certificate used for signing purposes. This property acts as a replacement for the Client Secret Certificate Thumbprint. It is also optional.
clientSecretCertificateThumbprint String: An alternative to the client secret, that is the thumbprint of a certificate used for signing purposes. This property acts as a replacement for the Client Secret. It is also optional.
clientSecretSettingName String: The app setting name that contains the client secret of the relying party application.
openIdIssuer String: The OpenID Connect Issuer URI that represents the entity which issues access tokens for this application. When using Azure Active Directory, this value is the URI of the directory tenant, e.g. https://login.microsoftonline.com/v2.0/{tenant-guid}/. This URI is a case-sensitive identifier for the token issuer. More information on OpenID Connect Discovery: http://openid.net/specs/openid-connect-discovery-1_0.html

clientId string: The Client ID of this relying party application, known as the client_id. This setting is required for enabling OpenID Connection authentication with Azure Active Directory or other 3rd party OpenID Connect providers. More information on OpenID Connect: http://openid.net/specs/openid-connect-core-1_0.html
clientSecretCertificateIssuer string: An alternative to the client secret thumbprint, that is the issuer of a certificate used for signing purposes. This property acts as a replacement for the Client Secret Certificate Thumbprint. It is also optional.
clientSecretCertificateSubjectAlternativeName string: An alternative to the client secret thumbprint, that is the subject alternative name of a certificate used for signing purposes. This property acts as a replacement for the Client Secret Certificate Thumbprint. It is also optional.
clientSecretCertificateThumbprint string: An alternative to the client secret, that is the thumbprint of a certificate used for signing purposes. This property acts as a replacement for the Client Secret. It is also optional.
clientSecretSettingName string: The app setting name that contains the client secret of the relying party application.
openIdIssuer string: The OpenID Connect Issuer URI that represents the entity which issues access tokens for this application. When using Azure Active Directory, this value is the URI of the directory tenant, e.g. https://login.microsoftonline.com/v2.0/{tenant-guid}/. This URI is a case-sensitive identifier for the token issuer. More information on OpenID Connect Discovery: http://openid.net/specs/openid-connect-discovery-1_0.html

client_id str: The Client ID of this relying party application, known as the client_id. This setting is required for enabling OpenID Connection authentication with Azure Active Directory or other 3rd party OpenID Connect providers. More information on OpenID Connect: http://openid.net/specs/openid-connect-core-1_0.html
client_secret_certificate_issuer str: An alternative to the client secret thumbprint, that is the issuer of a certificate used for signing purposes. This property acts as a replacement for the Client Secret Certificate Thumbprint. It is also optional.
client_secret_certificate_subject_alternative_name str: An alternative to the client secret thumbprint, that is the subject alternative name of a certificate used for signing purposes. This property acts as a replacement for the Client Secret Certificate Thumbprint. It is also optional.
client_secret_certificate_thumbprint str: An alternative to the client secret, that is the thumbprint of a certificate used for signing purposes. This property acts as a replacement for the Client Secret. It is also optional.
client_secret_setting_name str: The app setting name that contains the client secret of the relying party application.
open_id_issuer str: The OpenID Connect Issuer URI that represents the entity which issues access tokens for this application. When using Azure Active Directory, this value is the URI of the directory tenant, e.g. https://login.microsoftonline.com/v2.0/{tenant-guid}/. This URI is a case-sensitive identifier for the token issuer. More information on OpenID Connect Discovery: http://openid.net/specs/openid-connect-discovery-1_0.html

clientId String: The Client ID of this relying party application, known as the client_id. This setting is required for enabling OpenID Connection authentication with Azure Active Directory or other 3rd party OpenID Connect providers. More information on OpenID Connect: http://openid.net/specs/openid-connect-core-1_0.html
clientSecretCertificateIssuer String: An alternative to the client secret thumbprint, that is the issuer of a certificate used for signing purposes. This property acts as a replacement for the Client Secret Certificate Thumbprint. It is also optional.
clientSecretCertificateSubjectAlternativeName String: An alternative to the client secret thumbprint, that is the subject alternative name of a certificate used for signing purposes. This property acts as a replacement for the Client Secret Certificate Thumbprint. It is also optional.
clientSecretCertificateThumbprint String: An alternative to the client secret, that is the thumbprint of a certificate used for signing purposes. This property acts as a replacement for the Client Secret. It is also optional.
clientSecretSettingName String: The app setting name that contains the client secret of the relying party application.
openIdIssuer String: The OpenID Connect Issuer URI that represents the entity which issues access tokens for this application. When using Azure Active Directory, this value is the URI of the directory tenant, e.g. https://login.microsoftonline.com/v2.0/{tenant-guid}/. This URI is a case-sensitive identifier for the token issuer. More information on OpenID Connect Discovery: http://openid.net/specs/openid-connect-discovery-1_0.html

AzureActiveDirectoryResponse, AzureActiveDirectoryResponseArgs

Enabled bool: false if the Azure Active Directory provider should not be enabled despite the set registration; otherwise, true.
IsAutoProvisioned bool: Gets a value indicating whether the Azure AD configuration was auto-provisioned using 1st party tooling. This is an internal flag primarily intended to support the Azure Management Portal. Users should not read or write to this property.
Login Pulumi.AzureNative.App.Inputs.AzureActiveDirectoryLoginResponse: The configuration settings of the Azure Active Directory login flow.
Registration Pulumi.AzureNative.App.Inputs.AzureActiveDirectoryRegistrationResponse: The configuration settings of the Azure Active Directory app registration.
Validation Pulumi.AzureNative.App.Inputs.AzureActiveDirectoryValidationResponse: The configuration settings of the Azure Active Directory token validation flow.

Enabled bool: false if the Azure Active Directory provider should not be enabled despite the set registration; otherwise, true.
IsAutoProvisioned bool: Gets a value indicating whether the Azure AD configuration was auto-provisioned using 1st party tooling. This is an internal flag primarily intended to support the Azure Management Portal. Users should not read or write to this property.
Login AzureActiveDirectoryLoginResponse: The configuration settings of the Azure Active Directory login flow.
Registration AzureActiveDirectoryRegistrationResponse: The configuration settings of the Azure Active Directory app registration.
Validation AzureActiveDirectoryValidationResponse: The configuration settings of the Azure Active Directory token validation flow.

enabled Boolean: false if the Azure Active Directory provider should not be enabled despite the set registration; otherwise, true.
isAutoProvisioned Boolean: Gets a value indicating whether the Azure AD configuration was auto-provisioned using 1st party tooling. This is an internal flag primarily intended to support the Azure Management Portal. Users should not read or write to this property.
login AzureActiveDirectoryLoginResponse: The configuration settings of the Azure Active Directory login flow.
registration AzureActiveDirectoryRegistrationResponse: The configuration settings of the Azure Active Directory app registration.
validation AzureActiveDirectoryValidationResponse: The configuration settings of the Azure Active Directory token validation flow.

enabled boolean: false if the Azure Active Directory provider should not be enabled despite the set registration; otherwise, true.
isAutoProvisioned boolean: Gets a value indicating whether the Azure AD configuration was auto-provisioned using 1st party tooling. This is an internal flag primarily intended to support the Azure Management Portal. Users should not read or write to this property.
login AzureActiveDirectoryLoginResponse: The configuration settings of the Azure Active Directory login flow.
registration AzureActiveDirectoryRegistrationResponse: The configuration settings of the Azure Active Directory app registration.
validation AzureActiveDirectoryValidationResponse: The configuration settings of the Azure Active Directory token validation flow.

enabled bool: false if the Azure Active Directory provider should not be enabled despite the set registration; otherwise, true.
is_auto_provisioned bool: Gets a value indicating whether the Azure AD configuration was auto-provisioned using 1st party tooling. This is an internal flag primarily intended to support the Azure Management Portal. Users should not read or write to this property.
login AzureActiveDirectoryLoginResponse: The configuration settings of the Azure Active Directory login flow.
registration AzureActiveDirectoryRegistrationResponse: The configuration settings of the Azure Active Directory app registration.
validation AzureActiveDirectoryValidationResponse: The configuration settings of the Azure Active Directory token validation flow.

enabled Boolean: false if the Azure Active Directory provider should not be enabled despite the set registration; otherwise, true.
isAutoProvisioned Boolean: Gets a value indicating whether the Azure AD configuration was auto-provisioned using 1st party tooling. This is an internal flag primarily intended to support the Azure Management Portal. Users should not read or write to this property.
login Property Map: The configuration settings of the Azure Active Directory login flow.
registration Property Map: The configuration settings of the Azure Active Directory app registration.
validation Property Map: The configuration settings of the Azure Active Directory token validation flow.

AzureActiveDirectoryValidation, AzureActiveDirectoryValidationArgs

AllowedAudiences List<string>: The list of audiences that can make successful authentication/authorization requests.
DefaultAuthorizationPolicy Pulumi.AzureNative.App.Inputs.DefaultAuthorizationPolicy: The configuration settings of the default authorization policy.
JwtClaimChecks Pulumi.AzureNative.App.Inputs.JwtClaimChecks: The configuration settings of the checks that should be made while validating the JWT Claims.

AllowedAudiences []string: The list of audiences that can make successful authentication/authorization requests.
DefaultAuthorizationPolicy DefaultAuthorizationPolicy: The configuration settings of the default authorization policy.
JwtClaimChecks JwtClaimChecks: The configuration settings of the checks that should be made while validating the JWT Claims.

allowedAudiences List<String>: The list of audiences that can make successful authentication/authorization requests.
defaultAuthorizationPolicy DefaultAuthorizationPolicy: The configuration settings of the default authorization policy.
jwtClaimChecks JwtClaimChecks: The configuration settings of the checks that should be made while validating the JWT Claims.

allowedAudiences string[]: The list of audiences that can make successful authentication/authorization requests.
defaultAuthorizationPolicy DefaultAuthorizationPolicy: The configuration settings of the default authorization policy.
jwtClaimChecks JwtClaimChecks: The configuration settings of the checks that should be made while validating the JWT Claims.

allowed_audiences Sequence[str]: The list of audiences that can make successful authentication/authorization requests.
default_authorization_policy DefaultAuthorizationPolicy: The configuration settings of the default authorization policy.
jwt_claim_checks JwtClaimChecks: The configuration settings of the checks that should be made while validating the JWT Claims.

allowedAudiences List<String>: The list of audiences that can make successful authentication/authorization requests.
defaultAuthorizationPolicy Property Map: The configuration settings of the default authorization policy.
jwtClaimChecks Property Map: The configuration settings of the checks that should be made while validating the JWT Claims.

AzureActiveDirectoryValidationResponse, AzureActiveDirectoryValidationResponseArgs

AllowedAudiences List<string>: The list of audiences that can make successful authentication/authorization requests.
DefaultAuthorizationPolicy Pulumi.AzureNative.App.Inputs.DefaultAuthorizationPolicyResponse: The configuration settings of the default authorization policy.
JwtClaimChecks Pulumi.AzureNative.App.Inputs.JwtClaimChecksResponse: The configuration settings of the checks that should be made while validating the JWT Claims.

AllowedAudiences []string: The list of audiences that can make successful authentication/authorization requests.
DefaultAuthorizationPolicy DefaultAuthorizationPolicyResponse: The configuration settings of the default authorization policy.
JwtClaimChecks JwtClaimChecksResponse: The configuration settings of the checks that should be made while validating the JWT Claims.

allowedAudiences List<String>: The list of audiences that can make successful authentication/authorization requests.
defaultAuthorizationPolicy DefaultAuthorizationPolicyResponse: The configuration settings of the default authorization policy.
jwtClaimChecks JwtClaimChecksResponse: The configuration settings of the checks that should be made while validating the JWT Claims.

allowedAudiences string[]: The list of audiences that can make successful authentication/authorization requests.
defaultAuthorizationPolicy DefaultAuthorizationPolicyResponse: The configuration settings of the default authorization policy.
jwtClaimChecks JwtClaimChecksResponse: The configuration settings of the checks that should be made while validating the JWT Claims.

allowed_audiences Sequence[str]: The list of audiences that can make successful authentication/authorization requests.
default_authorization_policy DefaultAuthorizationPolicyResponse: The configuration settings of the default authorization policy.
jwt_claim_checks JwtClaimChecksResponse: The configuration settings of the checks that should be made while validating the JWT Claims.

allowedAudiences List<String>: The list of audiences that can make successful authentication/authorization requests.
defaultAuthorizationPolicy Property Map: The configuration settings of the default authorization policy.
jwtClaimChecks Property Map: The configuration settings of the checks that should be made while validating the JWT Claims.

AzureStaticWebApps, AzureStaticWebAppsArgs

Enabled bool: false if the Azure Static Web Apps provider should not be enabled despite the set registration; otherwise, true.
Registration Pulumi.AzureNative.App.Inputs.AzureStaticWebAppsRegistration: The configuration settings of the Azure Static Web Apps registration.

Enabled bool: false if the Azure Static Web Apps provider should not be enabled despite the set registration; otherwise, true.
Registration AzureStaticWebAppsRegistration: The configuration settings of the Azure Static Web Apps registration.

enabled Boolean: false if the Azure Static Web Apps provider should not be enabled despite the set registration; otherwise, true.
registration AzureStaticWebAppsRegistration: The configuration settings of the Azure Static Web Apps registration.

enabled boolean: false if the Azure Static Web Apps provider should not be enabled despite the set registration; otherwise, true.
registration AzureStaticWebAppsRegistration: The configuration settings of the Azure Static Web Apps registration.

enabled bool: false if the Azure Static Web Apps provider should not be enabled despite the set registration; otherwise, true.
registration AzureStaticWebAppsRegistration: The configuration settings of the Azure Static Web Apps registration.

enabled Boolean: false if the Azure Static Web Apps provider should not be enabled despite the set registration; otherwise, true.
registration Property Map: The configuration settings of the Azure Static Web Apps registration.

AzureStaticWebAppsRegistration, AzureStaticWebAppsRegistrationArgs

ClientId string: The Client ID of the app used for login.

ClientId string: The Client ID of the app used for login.

clientId String: The Client ID of the app used for login.

clientId string: The Client ID of the app used for login.

client_id str: The Client ID of the app used for login.

clientId String: The Client ID of the app used for login.

AzureStaticWebAppsRegistrationResponse, AzureStaticWebAppsRegistrationResponseArgs

ClientId string: The Client ID of the app used for login.

ClientId string: The Client ID of the app used for login.

clientId String: The Client ID of the app used for login.

clientId string: The Client ID of the app used for login.

client_id str: The Client ID of the app used for login.

clientId String: The Client ID of the app used for login.

AzureStaticWebAppsResponse, AzureStaticWebAppsResponseArgs

Enabled bool: false if the Azure Static Web Apps provider should not be enabled despite the set registration; otherwise, true.
Registration Pulumi.AzureNative.App.Inputs.AzureStaticWebAppsRegistrationResponse: The configuration settings of the Azure Static Web Apps registration.

Enabled bool: false if the Azure Static Web Apps provider should not be enabled despite the set registration; otherwise, true.
Registration AzureStaticWebAppsRegistrationResponse: The configuration settings of the Azure Static Web Apps registration.

enabled Boolean: false if the Azure Static Web Apps provider should not be enabled despite the set registration; otherwise, true.
registration AzureStaticWebAppsRegistrationResponse: The configuration settings of the Azure Static Web Apps registration.

enabled boolean: false if the Azure Static Web Apps provider should not be enabled despite the set registration; otherwise, true.
registration AzureStaticWebAppsRegistrationResponse: The configuration settings of the Azure Static Web Apps registration.

enabled bool: false if the Azure Static Web Apps provider should not be enabled despite the set registration; otherwise, true.
registration AzureStaticWebAppsRegistrationResponse: The configuration settings of the Azure Static Web Apps registration.

enabled Boolean: false if the Azure Static Web Apps provider should not be enabled despite the set registration; otherwise, true.
registration Property Map: The configuration settings of the Azure Static Web Apps registration.

ClientCredentialMethod, ClientCredentialMethodArgs

ClientSecretPost: ClientSecretPost

ClientCredentialMethodClientSecretPost: ClientSecretPost

ClientSecretPost: ClientSecretPost

ClientSecretPost: ClientSecretPost

CLIENT_SECRET_POST: ClientSecretPost

"ClientSecretPost": ClientSecretPost

ClientRegistration, ClientRegistrationArgs

ClientId string: The Client ID of the app used for login.
ClientSecretSettingName string: The app setting name that contains the client secret.

ClientId string: The Client ID of the app used for login.
ClientSecretSettingName string: The app setting name that contains the client secret.

clientId String: The Client ID of the app used for login.
clientSecretSettingName String: The app setting name that contains the client secret.

clientId string: The Client ID of the app used for login.
clientSecretSettingName string: The app setting name that contains the client secret.

client_id str: The Client ID of the app used for login.
client_secret_setting_name str: The app setting name that contains the client secret.

clientId String: The Client ID of the app used for login.
clientSecretSettingName String: The app setting name that contains the client secret.

ClientRegistrationResponse, ClientRegistrationResponseArgs

ClientId string: The Client ID of the app used for login.
ClientSecretSettingName string: The app setting name that contains the client secret.

ClientId string: The Client ID of the app used for login.
ClientSecretSettingName string: The app setting name that contains the client secret.

clientId String: The Client ID of the app used for login.
clientSecretSettingName String: The app setting name that contains the client secret.

clientId string: The Client ID of the app used for login.
clientSecretSettingName string: The app setting name that contains the client secret.

client_id str: The Client ID of the app used for login.
client_secret_setting_name str: The app setting name that contains the client secret.

clientId String: The Client ID of the app used for login.
clientSecretSettingName String: The app setting name that contains the client secret.

CookieExpiration, CookieExpirationArgs

Convention Pulumi.AzureNative.App.CookieExpirationConvention: The convention used when determining the session cookie's expiration.
TimeToExpiration string: The time after the request is made when the session cookie should expire.

Convention CookieExpirationConvention: The convention used when determining the session cookie's expiration.
TimeToExpiration string: The time after the request is made when the session cookie should expire.

convention CookieExpirationConvention: The convention used when determining the session cookie's expiration.
timeToExpiration String: The time after the request is made when the session cookie should expire.

convention CookieExpirationConvention: The convention used when determining the session cookie's expiration.
timeToExpiration string: The time after the request is made when the session cookie should expire.

convention CookieExpirationConvention: The convention used when determining the session cookie's expiration.
time_to_expiration str: The time after the request is made when the session cookie should expire.

convention "FixedTime" | "IdentityProviderDerived": The convention used when determining the session cookie's expiration.
timeToExpiration String: The time after the request is made when the session cookie should expire.

CookieExpirationConvention, CookieExpirationConventionArgs

FixedTime: FixedTime
IdentityProviderDerived: IdentityProviderDerived

CookieExpirationConventionFixedTime: FixedTime
CookieExpirationConventionIdentityProviderDerived: IdentityProviderDerived

FixedTime: FixedTime
IdentityProviderDerived: IdentityProviderDerived

FixedTime: FixedTime
IdentityProviderDerived: IdentityProviderDerived

FIXED_TIME: FixedTime
IDENTITY_PROVIDER_DERIVED: IdentityProviderDerived

"FixedTime": FixedTime
"IdentityProviderDerived": IdentityProviderDerived

CookieExpirationResponse, CookieExpirationResponseArgs

Convention string: The convention used when determining the session cookie's expiration.
TimeToExpiration string: The time after the request is made when the session cookie should expire.

Convention string: The convention used when determining the session cookie's expiration.
TimeToExpiration string: The time after the request is made when the session cookie should expire.

convention String: The convention used when determining the session cookie's expiration.
timeToExpiration String: The time after the request is made when the session cookie should expire.

convention string: The convention used when determining the session cookie's expiration.
timeToExpiration string: The time after the request is made when the session cookie should expire.

convention str: The convention used when determining the session cookie's expiration.
time_to_expiration str: The time after the request is made when the session cookie should expire.

convention String: The convention used when determining the session cookie's expiration.
timeToExpiration String: The time after the request is made when the session cookie should expire.

CustomOpenIdConnectProvider, CustomOpenIdConnectProviderArgs

Enabled bool: false if the custom Open ID provider provider should not be enabled; otherwise, true.
Login Pulumi.AzureNative.App.Inputs.OpenIdConnectLogin: The configuration settings of the login flow of the custom Open ID Connect provider.
Registration Pulumi.AzureNative.App.Inputs.OpenIdConnectRegistration: The configuration settings of the app registration for the custom Open ID Connect provider.

Enabled bool: false if the custom Open ID provider provider should not be enabled; otherwise, true.
Login OpenIdConnectLogin: The configuration settings of the login flow of the custom Open ID Connect provider.
Registration OpenIdConnectRegistration: The configuration settings of the app registration for the custom Open ID Connect provider.

enabled Boolean: false if the custom Open ID provider provider should not be enabled; otherwise, true.
login OpenIdConnectLogin: The configuration settings of the login flow of the custom Open ID Connect provider.
registration OpenIdConnectRegistration: The configuration settings of the app registration for the custom Open ID Connect provider.

enabled boolean: false if the custom Open ID provider provider should not be enabled; otherwise, true.
login OpenIdConnectLogin: The configuration settings of the login flow of the custom Open ID Connect provider.
registration OpenIdConnectRegistration: The configuration settings of the app registration for the custom Open ID Connect provider.

enabled bool: false if the custom Open ID provider provider should not be enabled; otherwise, true.
login OpenIdConnectLogin: The configuration settings of the login flow of the custom Open ID Connect provider.
registration OpenIdConnectRegistration: The configuration settings of the app registration for the custom Open ID Connect provider.

enabled Boolean: false if the custom Open ID provider provider should not be enabled; otherwise, true.
login Property Map: The configuration settings of the login flow of the custom Open ID Connect provider.
registration Property Map: The configuration settings of the app registration for the custom Open ID Connect provider.

CustomOpenIdConnectProviderResponse, CustomOpenIdConnectProviderResponseArgs

Enabled bool: false if the custom Open ID provider provider should not be enabled; otherwise, true.
Login Pulumi.AzureNative.App.Inputs.OpenIdConnectLoginResponse: The configuration settings of the login flow of the custom Open ID Connect provider.
Registration Pulumi.AzureNative.App.Inputs.OpenIdConnectRegistrationResponse: The configuration settings of the app registration for the custom Open ID Connect provider.

Enabled bool: false if the custom Open ID provider provider should not be enabled; otherwise, true.
Login OpenIdConnectLoginResponse: The configuration settings of the login flow of the custom Open ID Connect provider.
Registration OpenIdConnectRegistrationResponse: The configuration settings of the app registration for the custom Open ID Connect provider.

enabled Boolean: false if the custom Open ID provider provider should not be enabled; otherwise, true.
login OpenIdConnectLoginResponse: The configuration settings of the login flow of the custom Open ID Connect provider.
registration OpenIdConnectRegistrationResponse: The configuration settings of the app registration for the custom Open ID Connect provider.

enabled boolean: false if the custom Open ID provider provider should not be enabled; otherwise, true.
login OpenIdConnectLoginResponse: The configuration settings of the login flow of the custom Open ID Connect provider.
registration OpenIdConnectRegistrationResponse: The configuration settings of the app registration for the custom Open ID Connect provider.

enabled bool: false if the custom Open ID provider provider should not be enabled; otherwise, true.
login OpenIdConnectLoginResponse: The configuration settings of the login flow of the custom Open ID Connect provider.
registration OpenIdConnectRegistrationResponse: The configuration settings of the app registration for the custom Open ID Connect provider.

enabled Boolean: false if the custom Open ID provider provider should not be enabled; otherwise, true.
login Property Map: The configuration settings of the login flow of the custom Open ID Connect provider.
registration Property Map: The configuration settings of the app registration for the custom Open ID Connect provider.

DefaultAuthorizationPolicy, DefaultAuthorizationPolicyArgs

AllowedApplications List<string>: The configuration settings of the Azure Active Directory allowed applications.
AllowedPrincipals Pulumi.AzureNative.App.Inputs.AllowedPrincipals: The configuration settings of the Azure Active Directory allowed principals.

AllowedApplications []string: The configuration settings of the Azure Active Directory allowed applications.
AllowedPrincipals AllowedPrincipals: The configuration settings of the Azure Active Directory allowed principals.

allowedApplications List<String>: The configuration settings of the Azure Active Directory allowed applications.
allowedPrincipals AllowedPrincipals: The configuration settings of the Azure Active Directory allowed principals.

allowedApplications string[]: The configuration settings of the Azure Active Directory allowed applications.
allowedPrincipals AllowedPrincipals: The configuration settings of the Azure Active Directory allowed principals.

allowed_applications Sequence[str]: The configuration settings of the Azure Active Directory allowed applications.
allowed_principals AllowedPrincipals: The configuration settings of the Azure Active Directory allowed principals.

allowedApplications List<String>: The configuration settings of the Azure Active Directory allowed applications.
allowedPrincipals Property Map: The configuration settings of the Azure Active Directory allowed principals.

DefaultAuthorizationPolicyResponse, DefaultAuthorizationPolicyResponseArgs

AllowedApplications List<string>: The configuration settings of the Azure Active Directory allowed applications.
AllowedPrincipals Pulumi.AzureNative.App.Inputs.AllowedPrincipalsResponse: The configuration settings of the Azure Active Directory allowed principals.

AllowedApplications []string: The configuration settings of the Azure Active Directory allowed applications.
AllowedPrincipals AllowedPrincipalsResponse: The configuration settings of the Azure Active Directory allowed principals.

allowedApplications List<String>: The configuration settings of the Azure Active Directory allowed applications.
allowedPrincipals AllowedPrincipalsResponse: The configuration settings of the Azure Active Directory allowed principals.

allowedApplications string[]: The configuration settings of the Azure Active Directory allowed applications.
allowedPrincipals AllowedPrincipalsResponse: The configuration settings of the Azure Active Directory allowed principals.

allowed_applications Sequence[str]: The configuration settings of the Azure Active Directory allowed applications.
allowed_principals AllowedPrincipalsResponse: The configuration settings of the Azure Active Directory allowed principals.

allowedApplications List<String>: The configuration settings of the Azure Active Directory allowed applications.
allowedPrincipals Property Map: The configuration settings of the Azure Active Directory allowed principals.

Facebook, FacebookArgs

Enabled bool: false if the Facebook provider should not be enabled despite the set registration; otherwise, true.
GraphApiVersion string: The version of the Facebook api to be used while logging in.
Login Pulumi.AzureNative.App.Inputs.LoginScopes: The configuration settings of the login flow.
Registration Pulumi.AzureNative.App.Inputs.AppRegistration: The configuration settings of the app registration for the Facebook provider.

Enabled bool: false if the Facebook provider should not be enabled despite the set registration; otherwise, true.
GraphApiVersion string: The version of the Facebook api to be used while logging in.
Login LoginScopes: The configuration settings of the login flow.
Registration AppRegistration: The configuration settings of the app registration for the Facebook provider.

enabled Boolean: false if the Facebook provider should not be enabled despite the set registration; otherwise, true.
graphApiVersion String: The version of the Facebook api to be used while logging in.
login LoginScopes: The configuration settings of the login flow.
registration AppRegistration: The configuration settings of the app registration for the Facebook provider.

enabled boolean: false if the Facebook provider should not be enabled despite the set registration; otherwise, true.
graphApiVersion string: The version of the Facebook api to be used while logging in.
login LoginScopes: The configuration settings of the login flow.
registration AppRegistration: The configuration settings of the app registration for the Facebook provider.

enabled bool: false if the Facebook provider should not be enabled despite the set registration; otherwise, true.
graph_api_version str: The version of the Facebook api to be used while logging in.
login LoginScopes: The configuration settings of the login flow.
registration AppRegistration: The configuration settings of the app registration for the Facebook provider.

enabled Boolean: false if the Facebook provider should not be enabled despite the set registration; otherwise, true.
graphApiVersion String: The version of the Facebook api to be used while logging in.
login Property Map: The configuration settings of the login flow.
registration Property Map: The configuration settings of the app registration for the Facebook provider.

FacebookResponse, FacebookResponseArgs

Enabled bool: false if the Facebook provider should not be enabled despite the set registration; otherwise, true.
GraphApiVersion string: The version of the Facebook api to be used while logging in.
Login Pulumi.AzureNative.App.Inputs.LoginScopesResponse: The configuration settings of the login flow.
Registration Pulumi.AzureNative.App.Inputs.AppRegistrationResponse: The configuration settings of the app registration for the Facebook provider.

Enabled bool: false if the Facebook provider should not be enabled despite the set registration; otherwise, true.
GraphApiVersion string: The version of the Facebook api to be used while logging in.
Login LoginScopesResponse: The configuration settings of the login flow.
Registration AppRegistrationResponse: The configuration settings of the app registration for the Facebook provider.

enabled Boolean: false if the Facebook provider should not be enabled despite the set registration; otherwise, true.
graphApiVersion String: The version of the Facebook api to be used while logging in.
login LoginScopesResponse: The configuration settings of the login flow.
registration AppRegistrationResponse: The configuration settings of the app registration for the Facebook provider.

enabled boolean: false if the Facebook provider should not be enabled despite the set registration; otherwise, true.
graphApiVersion string: The version of the Facebook api to be used while logging in.
login LoginScopesResponse: The configuration settings of the login flow.
registration AppRegistrationResponse: The configuration settings of the app registration for the Facebook provider.

enabled bool: false if the Facebook provider should not be enabled despite the set registration; otherwise, true.
graph_api_version str: The version of the Facebook api to be used while logging in.
login LoginScopesResponse: The configuration settings of the login flow.
registration AppRegistrationResponse: The configuration settings of the app registration for the Facebook provider.

enabled Boolean: false if the Facebook provider should not be enabled despite the set registration; otherwise, true.
graphApiVersion String: The version of the Facebook api to be used while logging in.
login Property Map: The configuration settings of the login flow.
registration Property Map: The configuration settings of the app registration for the Facebook provider.

ForwardProxy, ForwardProxyArgs

Convention Pulumi.AzureNative.App.ForwardProxyConvention: The convention used to determine the url of the request made.
CustomHostHeaderName string: The name of the header containing the host of the request.
CustomProtoHeaderName string: The name of the header containing the scheme of the request.

Convention ForwardProxyConvention: The convention used to determine the url of the request made.
CustomHostHeaderName string: The name of the header containing the host of the request.
CustomProtoHeaderName string: The name of the header containing the scheme of the request.

convention ForwardProxyConvention: The convention used to determine the url of the request made.
customHostHeaderName String: The name of the header containing the host of the request.
customProtoHeaderName String: The name of the header containing the scheme of the request.

convention ForwardProxyConvention: The convention used to determine the url of the request made.
customHostHeaderName string: The name of the header containing the host of the request.
customProtoHeaderName string: The name of the header containing the scheme of the request.

convention ForwardProxyConvention: The convention used to determine the url of the request made.
custom_host_header_name str: The name of the header containing the host of the request.
custom_proto_header_name str: The name of the header containing the scheme of the request.

convention "NoProxy" | "Standard" | "Custom": The convention used to determine the url of the request made.
customHostHeaderName String: The name of the header containing the host of the request.
customProtoHeaderName String: The name of the header containing the scheme of the request.

ForwardProxyConvention, ForwardProxyConventionArgs

NoProxy: NoProxy
Standard: Standard
Custom: Custom

ForwardProxyConventionNoProxy: NoProxy
ForwardProxyConventionStandard: Standard
ForwardProxyConventionCustom: Custom

NoProxy: NoProxy
Standard: Standard
Custom: Custom

NoProxy: NoProxy
Standard: Standard
Custom: Custom

NO_PROXY: NoProxy
STANDARD: Standard
CUSTOM: Custom

"NoProxy": NoProxy
"Standard": Standard
"Custom": Custom

ForwardProxyResponse, ForwardProxyResponseArgs

Convention string: The convention used to determine the url of the request made.
CustomHostHeaderName string: The name of the header containing the host of the request.
CustomProtoHeaderName string: The name of the header containing the scheme of the request.

Convention string: The convention used to determine the url of the request made.
CustomHostHeaderName string: The name of the header containing the host of the request.
CustomProtoHeaderName string: The name of the header containing the scheme of the request.

convention String: The convention used to determine the url of the request made.
customHostHeaderName String: The name of the header containing the host of the request.
customProtoHeaderName String: The name of the header containing the scheme of the request.

convention string: The convention used to determine the url of the request made.
customHostHeaderName string: The name of the header containing the host of the request.
customProtoHeaderName string: The name of the header containing the scheme of the request.

convention str: The convention used to determine the url of the request made.
custom_host_header_name str: The name of the header containing the host of the request.
custom_proto_header_name str: The name of the header containing the scheme of the request.

convention String: The convention used to determine the url of the request made.
customHostHeaderName String: The name of the header containing the host of the request.
customProtoHeaderName String: The name of the header containing the scheme of the request.

GitHub, GitHubArgs

Enabled bool: false if the GitHub provider should not be enabled despite the set registration; otherwise, true.
Login Pulumi.AzureNative.App.Inputs.LoginScopes: The configuration settings of the login flow.
Registration Pulumi.AzureNative.App.Inputs.ClientRegistration: The configuration settings of the app registration for the GitHub provider.

Enabled bool: false if the GitHub provider should not be enabled despite the set registration; otherwise, true.
Login LoginScopes: The configuration settings of the login flow.
Registration ClientRegistration: The configuration settings of the app registration for the GitHub provider.

enabled Boolean: false if the GitHub provider should not be enabled despite the set registration; otherwise, true.
login LoginScopes: The configuration settings of the login flow.
registration ClientRegistration: The configuration settings of the app registration for the GitHub provider.

enabled boolean: false if the GitHub provider should not be enabled despite the set registration; otherwise, true.
login LoginScopes: The configuration settings of the login flow.
registration ClientRegistration: The configuration settings of the app registration for the GitHub provider.

enabled bool: false if the GitHub provider should not be enabled despite the set registration; otherwise, true.
login LoginScopes: The configuration settings of the login flow.
registration ClientRegistration: The configuration settings of the app registration for the GitHub provider.

enabled Boolean: false if the GitHub provider should not be enabled despite the set registration; otherwise, true.
login Property Map: The configuration settings of the login flow.
registration Property Map: The configuration settings of the app registration for the GitHub provider.

GitHubResponse, GitHubResponseArgs

Enabled bool: false if the GitHub provider should not be enabled despite the set registration; otherwise, true.
Login Pulumi.AzureNative.App.Inputs.LoginScopesResponse: The configuration settings of the login flow.
Registration Pulumi.AzureNative.App.Inputs.ClientRegistrationResponse: The configuration settings of the app registration for the GitHub provider.

Enabled bool: false if the GitHub provider should not be enabled despite the set registration; otherwise, true.
Login LoginScopesResponse: The configuration settings of the login flow.
Registration ClientRegistrationResponse: The configuration settings of the app registration for the GitHub provider.

enabled Boolean: false if the GitHub provider should not be enabled despite the set registration; otherwise, true.
login LoginScopesResponse: The configuration settings of the login flow.
registration ClientRegistrationResponse: The configuration settings of the app registration for the GitHub provider.

enabled boolean: false if the GitHub provider should not be enabled despite the set registration; otherwise, true.
login LoginScopesResponse: The configuration settings of the login flow.
registration ClientRegistrationResponse: The configuration settings of the app registration for the GitHub provider.

enabled bool: false if the GitHub provider should not be enabled despite the set registration; otherwise, true.
login LoginScopesResponse: The configuration settings of the login flow.
registration ClientRegistrationResponse: The configuration settings of the app registration for the GitHub provider.

enabled Boolean: false if the GitHub provider should not be enabled despite the set registration; otherwise, true.
login Property Map: The configuration settings of the login flow.
registration Property Map: The configuration settings of the app registration for the GitHub provider.

GlobalValidation, GlobalValidationArgs

ExcludedPaths List<string>: The paths for which unauthenticated flow would not be redirected to the login page.
RedirectToProvider string: The default authentication provider to use when multiple providers are configured. This setting is only needed if multiple providers are configured and the unauthenticated client action is set to "RedirectToLoginPage".
UnauthenticatedClientAction Pulumi.AzureNative.App.UnauthenticatedClientActionV2: The action to take when an unauthenticated client attempts to access the app.

ExcludedPaths []string: The paths for which unauthenticated flow would not be redirected to the login page.
RedirectToProvider string: The default authentication provider to use when multiple providers are configured. This setting is only needed if multiple providers are configured and the unauthenticated client action is set to "RedirectToLoginPage".
UnauthenticatedClientAction UnauthenticatedClientActionV2: The action to take when an unauthenticated client attempts to access the app.

excludedPaths List<String>: The paths for which unauthenticated flow would not be redirected to the login page.
redirectToProvider String: The default authentication provider to use when multiple providers are configured. This setting is only needed if multiple providers are configured and the unauthenticated client action is set to "RedirectToLoginPage".
unauthenticatedClientAction UnauthenticatedClientActionV2: The action to take when an unauthenticated client attempts to access the app.

excludedPaths string[]: The paths for which unauthenticated flow would not be redirected to the login page.
redirectToProvider string: The default authentication provider to use when multiple providers are configured. This setting is only needed if multiple providers are configured and the unauthenticated client action is set to "RedirectToLoginPage".
unauthenticatedClientAction UnauthenticatedClientActionV2: The action to take when an unauthenticated client attempts to access the app.

excluded_paths Sequence[str]: The paths for which unauthenticated flow would not be redirected to the login page.
redirect_to_provider str: The default authentication provider to use when multiple providers are configured. This setting is only needed if multiple providers are configured and the unauthenticated client action is set to "RedirectToLoginPage".
unauthenticated_client_action UnauthenticatedClientActionV2: The action to take when an unauthenticated client attempts to access the app.

excludedPaths List<String>: The paths for which unauthenticated flow would not be redirected to the login page.
redirectToProvider String: The default authentication provider to use when multiple providers are configured. This setting is only needed if multiple providers are configured and the unauthenticated client action is set to "RedirectToLoginPage".
unauthenticatedClientAction "RedirectToLoginPage" | "AllowAnonymous" | "Return401" | "Return403": The action to take when an unauthenticated client attempts to access the app.

GlobalValidationResponse, GlobalValidationResponseArgs

ExcludedPaths List<string>: The paths for which unauthenticated flow would not be redirected to the login page.
RedirectToProvider string: The default authentication provider to use when multiple providers are configured. This setting is only needed if multiple providers are configured and the unauthenticated client action is set to "RedirectToLoginPage".
UnauthenticatedClientAction string: The action to take when an unauthenticated client attempts to access the app.

ExcludedPaths []string: The paths for which unauthenticated flow would not be redirected to the login page.
RedirectToProvider string: The default authentication provider to use when multiple providers are configured. This setting is only needed if multiple providers are configured and the unauthenticated client action is set to "RedirectToLoginPage".
UnauthenticatedClientAction string: The action to take when an unauthenticated client attempts to access the app.

excludedPaths List<String>: The paths for which unauthenticated flow would not be redirected to the login page.
redirectToProvider String: The default authentication provider to use when multiple providers are configured. This setting is only needed if multiple providers are configured and the unauthenticated client action is set to "RedirectToLoginPage".
unauthenticatedClientAction String: The action to take when an unauthenticated client attempts to access the app.

excludedPaths string[]: The paths for which unauthenticated flow would not be redirected to the login page.
redirectToProvider string: The default authentication provider to use when multiple providers are configured. This setting is only needed if multiple providers are configured and the unauthenticated client action is set to "RedirectToLoginPage".
unauthenticatedClientAction string: The action to take when an unauthenticated client attempts to access the app.

excluded_paths Sequence[str]: The paths for which unauthenticated flow would not be redirected to the login page.
redirect_to_provider str: The default authentication provider to use when multiple providers are configured. This setting is only needed if multiple providers are configured and the unauthenticated client action is set to "RedirectToLoginPage".
unauthenticated_client_action str: The action to take when an unauthenticated client attempts to access the app.

excludedPaths List<String>: The paths for which unauthenticated flow would not be redirected to the login page.
redirectToProvider String: The default authentication provider to use when multiple providers are configured. This setting is only needed if multiple providers are configured and the unauthenticated client action is set to "RedirectToLoginPage".
unauthenticatedClientAction String: The action to take when an unauthenticated client attempts to access the app.

Google, GoogleArgs

Enabled bool: false if the Google provider should not be enabled despite the set registration; otherwise, true.
Login Pulumi.AzureNative.App.Inputs.LoginScopes: The configuration settings of the login flow.
Registration Pulumi.AzureNative.App.Inputs.ClientRegistration: The configuration settings of the app registration for the Google provider.
Validation Pulumi.AzureNative.App.Inputs.AllowedAudiencesValidation: The configuration settings of the Azure Active Directory token validation flow.

Enabled bool: false if the Google provider should not be enabled despite the set registration; otherwise, true.
Login LoginScopes: The configuration settings of the login flow.
Registration ClientRegistration: The configuration settings of the app registration for the Google provider.
Validation AllowedAudiencesValidation: The configuration settings of the Azure Active Directory token validation flow.

enabled Boolean: false if the Google provider should not be enabled despite the set registration; otherwise, true.
login LoginScopes: The configuration settings of the login flow.
registration ClientRegistration: The configuration settings of the app registration for the Google provider.
validation AllowedAudiencesValidation: The configuration settings of the Azure Active Directory token validation flow.

enabled boolean: false if the Google provider should not be enabled despite the set registration; otherwise, true.
login LoginScopes: The configuration settings of the login flow.
registration ClientRegistration: The configuration settings of the app registration for the Google provider.
validation AllowedAudiencesValidation: The configuration settings of the Azure Active Directory token validation flow.

enabled bool: false if the Google provider should not be enabled despite the set registration; otherwise, true.
login LoginScopes: The configuration settings of the login flow.
registration ClientRegistration: The configuration settings of the app registration for the Google provider.
validation AllowedAudiencesValidation: The configuration settings of the Azure Active Directory token validation flow.

enabled Boolean: false if the Google provider should not be enabled despite the set registration; otherwise, true.
login Property Map: The configuration settings of the login flow.
registration Property Map: The configuration settings of the app registration for the Google provider.
validation Property Map: The configuration settings of the Azure Active Directory token validation flow.

GoogleResponse, GoogleResponseArgs

Enabled bool: false if the Google provider should not be enabled despite the set registration; otherwise, true.
Login Pulumi.AzureNative.App.Inputs.LoginScopesResponse: The configuration settings of the login flow.
Registration Pulumi.AzureNative.App.Inputs.ClientRegistrationResponse: The configuration settings of the app registration for the Google provider.
Validation Pulumi.AzureNative.App.Inputs.AllowedAudiencesValidationResponse: The configuration settings of the Azure Active Directory token validation flow.

Enabled bool: false if the Google provider should not be enabled despite the set registration; otherwise, true.
Login LoginScopesResponse: The configuration settings of the login flow.
Registration ClientRegistrationResponse: The configuration settings of the app registration for the Google provider.
Validation AllowedAudiencesValidationResponse: The configuration settings of the Azure Active Directory token validation flow.

enabled Boolean: false if the Google provider should not be enabled despite the set registration; otherwise, true.
login LoginScopesResponse: The configuration settings of the login flow.
registration ClientRegistrationResponse: The configuration settings of the app registration for the Google provider.
validation AllowedAudiencesValidationResponse: The configuration settings of the Azure Active Directory token validation flow.

enabled boolean: false if the Google provider should not be enabled despite the set registration; otherwise, true.
login LoginScopesResponse: The configuration settings of the login flow.
registration ClientRegistrationResponse: The configuration settings of the app registration for the Google provider.
validation AllowedAudiencesValidationResponse: The configuration settings of the Azure Active Directory token validation flow.

enabled bool: false if the Google provider should not be enabled despite the set registration; otherwise, true.
login LoginScopesResponse: The configuration settings of the login flow.
registration ClientRegistrationResponse: The configuration settings of the app registration for the Google provider.
validation AllowedAudiencesValidationResponse: The configuration settings of the Azure Active Directory token validation flow.

enabled Boolean: false if the Google provider should not be enabled despite the set registration; otherwise, true.
login Property Map: The configuration settings of the login flow.
registration Property Map: The configuration settings of the app registration for the Google provider.
validation Property Map: The configuration settings of the Azure Active Directory token validation flow.

HttpSettings, HttpSettingsArgs

ForwardProxy Pulumi.AzureNative.App.Inputs.ForwardProxy: The configuration settings of a forward proxy used to make the requests.
RequireHttps bool: false if the authentication/authorization responses not having the HTTPS scheme are permissible; otherwise, true.
Routes Pulumi.AzureNative.App.Inputs.HttpSettingsRoutes: The configuration settings of the paths HTTP requests.

ForwardProxy ForwardProxy: The configuration settings of a forward proxy used to make the requests.
RequireHttps bool: false if the authentication/authorization responses not having the HTTPS scheme are permissible; otherwise, true.
Routes HttpSettingsRoutes: The configuration settings of the paths HTTP requests.

forwardProxy ForwardProxy: The configuration settings of a forward proxy used to make the requests.
requireHttps Boolean: false if the authentication/authorization responses not having the HTTPS scheme are permissible; otherwise, true.
routes HttpSettingsRoutes: The configuration settings of the paths HTTP requests.

forwardProxy ForwardProxy: The configuration settings of a forward proxy used to make the requests.
requireHttps boolean: false if the authentication/authorization responses not having the HTTPS scheme are permissible; otherwise, true.
routes HttpSettingsRoutes: The configuration settings of the paths HTTP requests.

forward_proxy ForwardProxy: The configuration settings of a forward proxy used to make the requests.
require_https bool: false if the authentication/authorization responses not having the HTTPS scheme are permissible; otherwise, true.
routes HttpSettingsRoutes: The configuration settings of the paths HTTP requests.

forwardProxy Property Map: The configuration settings of a forward proxy used to make the requests.
requireHttps Boolean: false if the authentication/authorization responses not having the HTTPS scheme are permissible; otherwise, true.
routes Property Map: The configuration settings of the paths HTTP requests.

HttpSettingsResponse, HttpSettingsResponseArgs

ForwardProxy Pulumi.AzureNative.App.Inputs.ForwardProxyResponse: The configuration settings of a forward proxy used to make the requests.
RequireHttps bool: false if the authentication/authorization responses not having the HTTPS scheme are permissible; otherwise, true.
Routes Pulumi.AzureNative.App.Inputs.HttpSettingsRoutesResponse: The configuration settings of the paths HTTP requests.

ForwardProxy ForwardProxyResponse: The configuration settings of a forward proxy used to make the requests.
RequireHttps bool: false if the authentication/authorization responses not having the HTTPS scheme are permissible; otherwise, true.
Routes HttpSettingsRoutesResponse: The configuration settings of the paths HTTP requests.

forwardProxy ForwardProxyResponse: The configuration settings of a forward proxy used to make the requests.
requireHttps Boolean: false if the authentication/authorization responses not having the HTTPS scheme are permissible; otherwise, true.
routes HttpSettingsRoutesResponse: The configuration settings of the paths HTTP requests.

forwardProxy ForwardProxyResponse: The configuration settings of a forward proxy used to make the requests.
requireHttps boolean: false if the authentication/authorization responses not having the HTTPS scheme are permissible; otherwise, true.
routes HttpSettingsRoutesResponse: The configuration settings of the paths HTTP requests.

forward_proxy ForwardProxyResponse: The configuration settings of a forward proxy used to make the requests.
require_https bool: false if the authentication/authorization responses not having the HTTPS scheme are permissible; otherwise, true.
routes HttpSettingsRoutesResponse: The configuration settings of the paths HTTP requests.

forwardProxy Property Map: The configuration settings of a forward proxy used to make the requests.
requireHttps Boolean: false if the authentication/authorization responses not having the HTTPS scheme are permissible; otherwise, true.
routes Property Map: The configuration settings of the paths HTTP requests.

HttpSettingsRoutes, HttpSettingsRoutesArgs

ApiPrefix string: The prefix that should precede all the authentication/authorization paths.

ApiPrefix string: The prefix that should precede all the authentication/authorization paths.

apiPrefix String: The prefix that should precede all the authentication/authorization paths.

apiPrefix string: The prefix that should precede all the authentication/authorization paths.

api_prefix str: The prefix that should precede all the authentication/authorization paths.

apiPrefix String: The prefix that should precede all the authentication/authorization paths.

HttpSettingsRoutesResponse, HttpSettingsRoutesResponseArgs

ApiPrefix string: The prefix that should precede all the authentication/authorization paths.

ApiPrefix string: The prefix that should precede all the authentication/authorization paths.

apiPrefix String: The prefix that should precede all the authentication/authorization paths.

apiPrefix string: The prefix that should precede all the authentication/authorization paths.

api_prefix str: The prefix that should precede all the authentication/authorization paths.

apiPrefix String: The prefix that should precede all the authentication/authorization paths.

IdentityProviders, IdentityProvidersArgs

Apple Pulumi.AzureNative.App.Inputs.Apple: The configuration settings of the Apple provider.
AzureActiveDirectory Pulumi.AzureNative.App.Inputs.AzureActiveDirectory: The configuration settings of the Azure Active directory provider.
AzureStaticWebApps Pulumi.AzureNative.App.Inputs.AzureStaticWebApps: The configuration settings of the Azure Static Web Apps provider.
CustomOpenIdConnectProviders Dictionary<string, Pulumi.AzureNative.App.Inputs.CustomOpenIdConnectProvider>: The map of the name of the alias of each custom Open ID Connect provider to the configuration settings of the custom Open ID Connect provider.
Facebook Pulumi.AzureNative.App.Inputs.Facebook: The configuration settings of the Facebook provider.
GitHub Pulumi.AzureNative.App.Inputs.GitHub: The configuration settings of the GitHub provider.
Google Pulumi.AzureNative.App.Inputs.Google: The configuration settings of the Google provider.
Twitter Pulumi.AzureNative.App.Inputs.Twitter: The configuration settings of the Twitter provider.

Apple Apple: The configuration settings of the Apple provider.
AzureActiveDirectory AzureActiveDirectory: The configuration settings of the Azure Active directory provider.
AzureStaticWebApps AzureStaticWebApps: The configuration settings of the Azure Static Web Apps provider.
CustomOpenIdConnectProviders map[string]CustomOpenIdConnectProvider: The map of the name of the alias of each custom Open ID Connect provider to the configuration settings of the custom Open ID Connect provider.
Facebook Facebook: The configuration settings of the Facebook provider.
GitHub GitHub: The configuration settings of the GitHub provider.
Google Google: The configuration settings of the Google provider.
Twitter Twitter: The configuration settings of the Twitter provider.

apple Apple: The configuration settings of the Apple provider.
azureActiveDirectory AzureActiveDirectory: The configuration settings of the Azure Active directory provider.
azureStaticWebApps AzureStaticWebApps: The configuration settings of the Azure Static Web Apps provider.
customOpenIdConnectProviders Map<String,CustomOpenIdConnectProvider>: The map of the name of the alias of each custom Open ID Connect provider to the configuration settings of the custom Open ID Connect provider.
facebook Facebook: The configuration settings of the Facebook provider.
gitHub GitHub: The configuration settings of the GitHub provider.
google Google: The configuration settings of the Google provider.
twitter Twitter: The configuration settings of the Twitter provider.

apple Apple: The configuration settings of the Apple provider.
azureActiveDirectory AzureActiveDirectory: The configuration settings of the Azure Active directory provider.
azureStaticWebApps AzureStaticWebApps: The configuration settings of the Azure Static Web Apps provider.
customOpenIdConnectProviders {[key: string]: CustomOpenIdConnectProvider}: The map of the name of the alias of each custom Open ID Connect provider to the configuration settings of the custom Open ID Connect provider.
facebook Facebook: The configuration settings of the Facebook provider.
gitHub GitHub: The configuration settings of the GitHub provider.
google Google: The configuration settings of the Google provider.
twitter Twitter: The configuration settings of the Twitter provider.

apple Apple: The configuration settings of the Apple provider.
azure_active_directory AzureActiveDirectory: The configuration settings of the Azure Active directory provider.
azure_static_web_apps AzureStaticWebApps: The configuration settings of the Azure Static Web Apps provider.
custom_open_id_connect_providers Mapping[str, CustomOpenIdConnectProvider]: The map of the name of the alias of each custom Open ID Connect provider to the configuration settings of the custom Open ID Connect provider.
facebook Facebook: The configuration settings of the Facebook provider.
git_hub GitHub: The configuration settings of the GitHub provider.
google Google: The configuration settings of the Google provider.
twitter Twitter: The configuration settings of the Twitter provider.

apple Property Map: The configuration settings of the Apple provider.
azureActiveDirectory Property Map: The configuration settings of the Azure Active directory provider.
azureStaticWebApps Property Map: The configuration settings of the Azure Static Web Apps provider.
customOpenIdConnectProviders Map<Property Map>: The map of the name of the alias of each custom Open ID Connect provider to the configuration settings of the custom Open ID Connect provider.
facebook Property Map: The configuration settings of the Facebook provider.
gitHub Property Map: The configuration settings of the GitHub provider.
google Property Map: The configuration settings of the Google provider.
twitter Property Map: The configuration settings of the Twitter provider.

IdentityProvidersResponse, IdentityProvidersResponseArgs

Apple Pulumi.AzureNative.App.Inputs.AppleResponse: The configuration settings of the Apple provider.
AzureActiveDirectory Pulumi.AzureNative.App.Inputs.AzureActiveDirectoryResponse: The configuration settings of the Azure Active directory provider.
AzureStaticWebApps Pulumi.AzureNative.App.Inputs.AzureStaticWebAppsResponse: The configuration settings of the Azure Static Web Apps provider.
CustomOpenIdConnectProviders Dictionary<string, Pulumi.AzureNative.App.Inputs.CustomOpenIdConnectProviderResponse>: The map of the name of the alias of each custom Open ID Connect provider to the configuration settings of the custom Open ID Connect provider.
Facebook Pulumi.AzureNative.App.Inputs.FacebookResponse: The configuration settings of the Facebook provider.
GitHub Pulumi.AzureNative.App.Inputs.GitHubResponse: The configuration settings of the GitHub provider.
Google Pulumi.AzureNative.App.Inputs.GoogleResponse: The configuration settings of the Google provider.
Twitter Pulumi.AzureNative.App.Inputs.TwitterResponse: The configuration settings of the Twitter provider.

Apple AppleResponse: The configuration settings of the Apple provider.
AzureActiveDirectory AzureActiveDirectoryResponse: The configuration settings of the Azure Active directory provider.
AzureStaticWebApps AzureStaticWebAppsResponse: The configuration settings of the Azure Static Web Apps provider.
CustomOpenIdConnectProviders map[string]CustomOpenIdConnectProviderResponse: The map of the name of the alias of each custom Open ID Connect provider to the configuration settings of the custom Open ID Connect provider.
Facebook FacebookResponse: The configuration settings of the Facebook provider.
GitHub GitHubResponse: The configuration settings of the GitHub provider.
Google GoogleResponse: The configuration settings of the Google provider.
Twitter TwitterResponse: The configuration settings of the Twitter provider.

apple AppleResponse: The configuration settings of the Apple provider.
azureActiveDirectory AzureActiveDirectoryResponse: The configuration settings of the Azure Active directory provider.
azureStaticWebApps AzureStaticWebAppsResponse: The configuration settings of the Azure Static Web Apps provider.
customOpenIdConnectProviders Map<String,CustomOpenIdConnectProviderResponse>: The map of the name of the alias of each custom Open ID Connect provider to the configuration settings of the custom Open ID Connect provider.
facebook FacebookResponse: The configuration settings of the Facebook provider.
gitHub GitHubResponse: The configuration settings of the GitHub provider.
google GoogleResponse: The configuration settings of the Google provider.
twitter TwitterResponse: The configuration settings of the Twitter provider.

apple AppleResponse: The configuration settings of the Apple provider.
azureActiveDirectory AzureActiveDirectoryResponse: The configuration settings of the Azure Active directory provider.
azureStaticWebApps AzureStaticWebAppsResponse: The configuration settings of the Azure Static Web Apps provider.
customOpenIdConnectProviders {[key: string]: CustomOpenIdConnectProviderResponse}: The map of the name of the alias of each custom Open ID Connect provider to the configuration settings of the custom Open ID Connect provider.
facebook FacebookResponse: The configuration settings of the Facebook provider.
gitHub GitHubResponse: The configuration settings of the GitHub provider.
google GoogleResponse: The configuration settings of the Google provider.
twitter TwitterResponse: The configuration settings of the Twitter provider.

apple AppleResponse: The configuration settings of the Apple provider.
azure_active_directory AzureActiveDirectoryResponse: The configuration settings of the Azure Active directory provider.
azure_static_web_apps AzureStaticWebAppsResponse: The configuration settings of the Azure Static Web Apps provider.
custom_open_id_connect_providers Mapping[str, CustomOpenIdConnectProviderResponse]: The map of the name of the alias of each custom Open ID Connect provider to the configuration settings of the custom Open ID Connect provider.
facebook FacebookResponse: The configuration settings of the Facebook provider.
git_hub GitHubResponse: The configuration settings of the GitHub provider.
google GoogleResponse: The configuration settings of the Google provider.
twitter TwitterResponse: The configuration settings of the Twitter provider.

apple Property Map: The configuration settings of the Apple provider.
azureActiveDirectory Property Map: The configuration settings of the Azure Active directory provider.
azureStaticWebApps Property Map: The configuration settings of the Azure Static Web Apps provider.
customOpenIdConnectProviders Map<Property Map>: The map of the name of the alias of each custom Open ID Connect provider to the configuration settings of the custom Open ID Connect provider.
facebook Property Map: The configuration settings of the Facebook provider.
gitHub Property Map: The configuration settings of the GitHub provider.
google Property Map: The configuration settings of the Google provider.
twitter Property Map: The configuration settings of the Twitter provider.

JwtClaimChecks, JwtClaimChecksArgs

AllowedClientApplications List<string>: The list of the allowed client applications.
AllowedGroups List<string>: The list of the allowed groups.

AllowedClientApplications []string: The list of the allowed client applications.
AllowedGroups []string: The list of the allowed groups.

allowedClientApplications List<String>: The list of the allowed client applications.
allowedGroups List<String>: The list of the allowed groups.

allowedClientApplications string[]: The list of the allowed client applications.
allowedGroups string[]: The list of the allowed groups.

allowed_client_applications Sequence[str]: The list of the allowed client applications.
allowed_groups Sequence[str]: The list of the allowed groups.

allowedClientApplications List<String>: The list of the allowed client applications.
allowedGroups List<String>: The list of the allowed groups.

JwtClaimChecksResponse, JwtClaimChecksResponseArgs

AllowedClientApplications List<string>: The list of the allowed client applications.
AllowedGroups List<string>: The list of the allowed groups.

AllowedClientApplications []string: The list of the allowed client applications.
AllowedGroups []string: The list of the allowed groups.

allowedClientApplications List<String>: The list of the allowed client applications.
allowedGroups List<String>: The list of the allowed groups.

allowedClientApplications string[]: The list of the allowed client applications.
allowedGroups string[]: The list of the allowed groups.

allowed_client_applications Sequence[str]: The list of the allowed client applications.
allowed_groups Sequence[str]: The list of the allowed groups.

allowedClientApplications List<String>: The list of the allowed client applications.
allowedGroups List<String>: The list of the allowed groups.

AllowedExternalRedirectUrls List<string>: External URLs that can be redirected to as part of logging in or logging out of the app. Note that the query string part of the URL is ignored. This is an advanced setting typically only needed by Windows Store application backends. Note that URLs within the current domain are always implicitly allowed.
CookieExpiration Pulumi.AzureNative.App.Inputs.CookieExpiration: The configuration settings of the session cookie's expiration.
Nonce Pulumi.AzureNative.App.Inputs.Nonce: The configuration settings of the nonce used in the login flow.
PreserveUrlFragmentsForLogins bool: true if the fragments from the request are preserved after the login request is made; otherwise, false.
Routes Pulumi.AzureNative.App.Inputs.LoginRoutes: The routes that specify the endpoints used for login and logout requests.

AllowedExternalRedirectUrls []string: External URLs that can be redirected to as part of logging in or logging out of the app. Note that the query string part of the URL is ignored. This is an advanced setting typically only needed by Windows Store application backends. Note that URLs within the current domain are always implicitly allowed.
CookieExpiration CookieExpiration: The configuration settings of the session cookie's expiration.
Nonce Nonce: The configuration settings of the nonce used in the login flow.
PreserveUrlFragmentsForLogins bool: true if the fragments from the request are preserved after the login request is made; otherwise, false.
Routes LoginRoutes: The routes that specify the endpoints used for login and logout requests.

allowedExternalRedirectUrls List<String>: External URLs that can be redirected to as part of logging in or logging out of the app. Note that the query string part of the URL is ignored. This is an advanced setting typically only needed by Windows Store application backends. Note that URLs within the current domain are always implicitly allowed.
cookieExpiration CookieExpiration: The configuration settings of the session cookie's expiration.
nonce Nonce: The configuration settings of the nonce used in the login flow.
preserveUrlFragmentsForLogins Boolean: true if the fragments from the request are preserved after the login request is made; otherwise, false.
routes LoginRoutes: The routes that specify the endpoints used for login and logout requests.

allowedExternalRedirectUrls string[]: External URLs that can be redirected to as part of logging in or logging out of the app. Note that the query string part of the URL is ignored. This is an advanced setting typically only needed by Windows Store application backends. Note that URLs within the current domain are always implicitly allowed.
cookieExpiration CookieExpiration: The configuration settings of the session cookie's expiration.
nonce Nonce: The configuration settings of the nonce used in the login flow.
preserveUrlFragmentsForLogins boolean: true if the fragments from the request are preserved after the login request is made; otherwise, false.
routes LoginRoutes: The routes that specify the endpoints used for login and logout requests.

allowed_external_redirect_urls Sequence[str]: External URLs that can be redirected to as part of logging in or logging out of the app. Note that the query string part of the URL is ignored. This is an advanced setting typically only needed by Windows Store application backends. Note that URLs within the current domain are always implicitly allowed.
cookie_expiration CookieExpiration: The configuration settings of the session cookie's expiration.
nonce Nonce: The configuration settings of the nonce used in the login flow.
preserve_url_fragments_for_logins bool: true if the fragments from the request are preserved after the login request is made; otherwise, false.
routes LoginRoutes: The routes that specify the endpoints used for login and logout requests.

allowedExternalRedirectUrls List<String>: External URLs that can be redirected to as part of logging in or logging out of the app. Note that the query string part of the URL is ignored. This is an advanced setting typically only needed by Windows Store application backends. Note that URLs within the current domain are always implicitly allowed.
cookieExpiration Property Map: The configuration settings of the session cookie's expiration.
nonce Property Map: The configuration settings of the nonce used in the login flow.
preserveUrlFragmentsForLogins Boolean: true if the fragments from the request are preserved after the login request is made; otherwise, false.
routes Property Map: The routes that specify the endpoints used for login and logout requests.

LoginResponse, LoginResponseArgs

AllowedExternalRedirectUrls List<string>: External URLs that can be redirected to as part of logging in or logging out of the app. Note that the query string part of the URL is ignored. This is an advanced setting typically only needed by Windows Store application backends. Note that URLs within the current domain are always implicitly allowed.
CookieExpiration Pulumi.AzureNative.App.Inputs.CookieExpirationResponse: The configuration settings of the session cookie's expiration.
Nonce Pulumi.AzureNative.App.Inputs.NonceResponse: The configuration settings of the nonce used in the login flow.
PreserveUrlFragmentsForLogins bool: true if the fragments from the request are preserved after the login request is made; otherwise, false.
Routes Pulumi.AzureNative.App.Inputs.LoginRoutesResponse: The routes that specify the endpoints used for login and logout requests.

AllowedExternalRedirectUrls []string: External URLs that can be redirected to as part of logging in or logging out of the app. Note that the query string part of the URL is ignored. This is an advanced setting typically only needed by Windows Store application backends. Note that URLs within the current domain are always implicitly allowed.
CookieExpiration CookieExpirationResponse: The configuration settings of the session cookie's expiration.
Nonce NonceResponse: The configuration settings of the nonce used in the login flow.
PreserveUrlFragmentsForLogins bool: true if the fragments from the request are preserved after the login request is made; otherwise, false.
Routes LoginRoutesResponse: The routes that specify the endpoints used for login and logout requests.

allowedExternalRedirectUrls List<String>: External URLs that can be redirected to as part of logging in or logging out of the app. Note that the query string part of the URL is ignored. This is an advanced setting typically only needed by Windows Store application backends. Note that URLs within the current domain are always implicitly allowed.
cookieExpiration CookieExpirationResponse: The configuration settings of the session cookie's expiration.
nonce NonceResponse: The configuration settings of the nonce used in the login flow.
preserveUrlFragmentsForLogins Boolean: true if the fragments from the request are preserved after the login request is made; otherwise, false.
routes LoginRoutesResponse: The routes that specify the endpoints used for login and logout requests.

allowedExternalRedirectUrls string[]: External URLs that can be redirected to as part of logging in or logging out of the app. Note that the query string part of the URL is ignored. This is an advanced setting typically only needed by Windows Store application backends. Note that URLs within the current domain are always implicitly allowed.
cookieExpiration CookieExpirationResponse: The configuration settings of the session cookie's expiration.
nonce NonceResponse: The configuration settings of the nonce used in the login flow.
preserveUrlFragmentsForLogins boolean: true if the fragments from the request are preserved after the login request is made; otherwise, false.
routes LoginRoutesResponse: The routes that specify the endpoints used for login and logout requests.

allowed_external_redirect_urls Sequence[str]: External URLs that can be redirected to as part of logging in or logging out of the app. Note that the query string part of the URL is ignored. This is an advanced setting typically only needed by Windows Store application backends. Note that URLs within the current domain are always implicitly allowed.
cookie_expiration CookieExpirationResponse: The configuration settings of the session cookie's expiration.
nonce NonceResponse: The configuration settings of the nonce used in the login flow.
preserve_url_fragments_for_logins bool: true if the fragments from the request are preserved after the login request is made; otherwise, false.
routes LoginRoutesResponse: The routes that specify the endpoints used for login and logout requests.

allowedExternalRedirectUrls List<String>: External URLs that can be redirected to as part of logging in or logging out of the app. Note that the query string part of the URL is ignored. This is an advanced setting typically only needed by Windows Store application backends. Note that URLs within the current domain are always implicitly allowed.
cookieExpiration Property Map: The configuration settings of the session cookie's expiration.
nonce Property Map: The configuration settings of the nonce used in the login flow.
preserveUrlFragmentsForLogins Boolean: true if the fragments from the request are preserved after the login request is made; otherwise, false.
routes Property Map: The routes that specify the endpoints used for login and logout requests.

LoginRoutes, LoginRoutesArgs

LogoutEndpoint string: The endpoint at which a logout request should be made.

LogoutEndpoint string: The endpoint at which a logout request should be made.

logoutEndpoint String: The endpoint at which a logout request should be made.

logoutEndpoint string: The endpoint at which a logout request should be made.

logout_endpoint str: The endpoint at which a logout request should be made.

logoutEndpoint String: The endpoint at which a logout request should be made.

LoginRoutesResponse, LoginRoutesResponseArgs

LogoutEndpoint string: The endpoint at which a logout request should be made.

LogoutEndpoint string: The endpoint at which a logout request should be made.

logoutEndpoint String: The endpoint at which a logout request should be made.

logoutEndpoint string: The endpoint at which a logout request should be made.

logout_endpoint str: The endpoint at which a logout request should be made.

logoutEndpoint String: The endpoint at which a logout request should be made.

LoginScopes, LoginScopesArgs

Scopes List<string>: A list of the scopes that should be requested while authenticating.

Scopes []string: A list of the scopes that should be requested while authenticating.

scopes List<String>: A list of the scopes that should be requested while authenticating.

scopes string[]: A list of the scopes that should be requested while authenticating.

scopes Sequence[str]: A list of the scopes that should be requested while authenticating.

scopes List<String>: A list of the scopes that should be requested while authenticating.

LoginScopesResponse, LoginScopesResponseArgs

Scopes List<string>: A list of the scopes that should be requested while authenticating.

Scopes []string: A list of the scopes that should be requested while authenticating.

scopes List<String>: A list of the scopes that should be requested while authenticating.

scopes string[]: A list of the scopes that should be requested while authenticating.

scopes Sequence[str]: A list of the scopes that should be requested while authenticating.

scopes List<String>: A list of the scopes that should be requested while authenticating.

Nonce, NonceArgs

NonceExpirationInterval string: The time after the request is made when the nonce should expire.
ValidateNonce bool: false if the nonce should not be validated while completing the login flow; otherwise, true.

NonceExpirationInterval string: The time after the request is made when the nonce should expire.
ValidateNonce bool: false if the nonce should not be validated while completing the login flow; otherwise, true.

nonceExpirationInterval String: The time after the request is made when the nonce should expire.
validateNonce Boolean: false if the nonce should not be validated while completing the login flow; otherwise, true.

nonceExpirationInterval string: The time after the request is made when the nonce should expire.
validateNonce boolean: false if the nonce should not be validated while completing the login flow; otherwise, true.

nonce_expiration_interval str: The time after the request is made when the nonce should expire.
validate_nonce bool: false if the nonce should not be validated while completing the login flow; otherwise, true.

nonceExpirationInterval String: The time after the request is made when the nonce should expire.
validateNonce Boolean: false if the nonce should not be validated while completing the login flow; otherwise, true.

NonceResponse, NonceResponseArgs

NonceExpirationInterval string: The time after the request is made when the nonce should expire.
ValidateNonce bool: false if the nonce should not be validated while completing the login flow; otherwise, true.

NonceExpirationInterval string: The time after the request is made when the nonce should expire.
ValidateNonce bool: false if the nonce should not be validated while completing the login flow; otherwise, true.

nonceExpirationInterval String: The time after the request is made when the nonce should expire.
validateNonce Boolean: false if the nonce should not be validated while completing the login flow; otherwise, true.

nonceExpirationInterval string: The time after the request is made when the nonce should expire.
validateNonce boolean: false if the nonce should not be validated while completing the login flow; otherwise, true.

nonce_expiration_interval str: The time after the request is made when the nonce should expire.
validate_nonce bool: false if the nonce should not be validated while completing the login flow; otherwise, true.

nonceExpirationInterval String: The time after the request is made when the nonce should expire.
validateNonce Boolean: false if the nonce should not be validated while completing the login flow; otherwise, true.

OpenIdConnectClientCredential, OpenIdConnectClientCredentialArgs

ClientSecretSettingName string: The app setting that contains the client secret for the custom Open ID Connect provider.
Method Pulumi.AzureNative.App.ClientCredentialMethod: The method that should be used to authenticate the user.

ClientSecretSettingName string: The app setting that contains the client secret for the custom Open ID Connect provider.
Method ClientCredentialMethod: The method that should be used to authenticate the user.

clientSecretSettingName String: The app setting that contains the client secret for the custom Open ID Connect provider.
method ClientCredentialMethod: The method that should be used to authenticate the user.

clientSecretSettingName string: The app setting that contains the client secret for the custom Open ID Connect provider.
method ClientCredentialMethod: The method that should be used to authenticate the user.

client_secret_setting_name str: The app setting that contains the client secret for the custom Open ID Connect provider.
method ClientCredentialMethod: The method that should be used to authenticate the user.

clientSecretSettingName String: The app setting that contains the client secret for the custom Open ID Connect provider.
method "ClientSecretPost": The method that should be used to authenticate the user.

OpenIdConnectClientCredentialResponse, OpenIdConnectClientCredentialResponseArgs

ClientSecretSettingName string: The app setting that contains the client secret for the custom Open ID Connect provider.
Method string: The method that should be used to authenticate the user.

ClientSecretSettingName string: The app setting that contains the client secret for the custom Open ID Connect provider.
Method string: The method that should be used to authenticate the user.

clientSecretSettingName String: The app setting that contains the client secret for the custom Open ID Connect provider.
method String: The method that should be used to authenticate the user.

clientSecretSettingName string: The app setting that contains the client secret for the custom Open ID Connect provider.
method string: The method that should be used to authenticate the user.

client_secret_setting_name str: The app setting that contains the client secret for the custom Open ID Connect provider.
method str: The method that should be used to authenticate the user.

clientSecretSettingName String: The app setting that contains the client secret for the custom Open ID Connect provider.
method String: The method that should be used to authenticate the user.

OpenIdConnectConfig, OpenIdConnectConfigArgs

AuthorizationEndpoint string: The endpoint to be used to make an authorization request.
CertificationUri string: The endpoint that provides the keys necessary to validate the token.
Issuer string: The endpoint that issues the token.
TokenEndpoint string: The endpoint to be used to request a token.
WellKnownOpenIdConfiguration string: The endpoint that contains all the configuration endpoints for the provider.

AuthorizationEndpoint string: The endpoint to be used to make an authorization request.
CertificationUri string: The endpoint that provides the keys necessary to validate the token.
Issuer string: The endpoint that issues the token.
TokenEndpoint string: The endpoint to be used to request a token.
WellKnownOpenIdConfiguration string: The endpoint that contains all the configuration endpoints for the provider.

authorizationEndpoint String: The endpoint to be used to make an authorization request.
certificationUri String: The endpoint that provides the keys necessary to validate the token.
issuer String: The endpoint that issues the token.
tokenEndpoint String: The endpoint to be used to request a token.
wellKnownOpenIdConfiguration String: The endpoint that contains all the configuration endpoints for the provider.

authorizationEndpoint string: The endpoint to be used to make an authorization request.
certificationUri string: The endpoint that provides the keys necessary to validate the token.
issuer string: The endpoint that issues the token.
tokenEndpoint string: The endpoint to be used to request a token.
wellKnownOpenIdConfiguration string: The endpoint that contains all the configuration endpoints for the provider.

authorization_endpoint str: The endpoint to be used to make an authorization request.
certification_uri str: The endpoint that provides the keys necessary to validate the token.
issuer str: The endpoint that issues the token.
token_endpoint str: The endpoint to be used to request a token.
well_known_open_id_configuration str: The endpoint that contains all the configuration endpoints for the provider.

authorizationEndpoint String: The endpoint to be used to make an authorization request.
certificationUri String: The endpoint that provides the keys necessary to validate the token.
issuer String: The endpoint that issues the token.
tokenEndpoint String: The endpoint to be used to request a token.
wellKnownOpenIdConfiguration String: The endpoint that contains all the configuration endpoints for the provider.

OpenIdConnectConfigResponse, OpenIdConnectConfigResponseArgs

AuthorizationEndpoint string: The endpoint to be used to make an authorization request.
CertificationUri string: The endpoint that provides the keys necessary to validate the token.
Issuer string: The endpoint that issues the token.
TokenEndpoint string: The endpoint to be used to request a token.
WellKnownOpenIdConfiguration string: The endpoint that contains all the configuration endpoints for the provider.

AuthorizationEndpoint string: The endpoint to be used to make an authorization request.
CertificationUri string: The endpoint that provides the keys necessary to validate the token.
Issuer string: The endpoint that issues the token.
TokenEndpoint string: The endpoint to be used to request a token.
WellKnownOpenIdConfiguration string: The endpoint that contains all the configuration endpoints for the provider.

authorizationEndpoint String: The endpoint to be used to make an authorization request.
certificationUri String: The endpoint that provides the keys necessary to validate the token.
issuer String: The endpoint that issues the token.
tokenEndpoint String: The endpoint to be used to request a token.
wellKnownOpenIdConfiguration String: The endpoint that contains all the configuration endpoints for the provider.

authorizationEndpoint string: The endpoint to be used to make an authorization request.
certificationUri string: The endpoint that provides the keys necessary to validate the token.
issuer string: The endpoint that issues the token.
tokenEndpoint string: The endpoint to be used to request a token.
wellKnownOpenIdConfiguration string: The endpoint that contains all the configuration endpoints for the provider.

authorization_endpoint str: The endpoint to be used to make an authorization request.
certification_uri str: The endpoint that provides the keys necessary to validate the token.
issuer str: The endpoint that issues the token.
token_endpoint str: The endpoint to be used to request a token.
well_known_open_id_configuration str: The endpoint that contains all the configuration endpoints for the provider.

authorizationEndpoint String: The endpoint to be used to make an authorization request.
certificationUri String: The endpoint that provides the keys necessary to validate the token.
issuer String: The endpoint that issues the token.
tokenEndpoint String: The endpoint to be used to request a token.
wellKnownOpenIdConfiguration String: The endpoint that contains all the configuration endpoints for the provider.

OpenIdConnectLogin, OpenIdConnectLoginArgs

NameClaimType string: The name of the claim that contains the users name.
Scopes List<string>: A list of the scopes that should be requested while authenticating.

NameClaimType string: The name of the claim that contains the users name.
Scopes []string: A list of the scopes that should be requested while authenticating.

nameClaimType String: The name of the claim that contains the users name.
scopes List<String>: A list of the scopes that should be requested while authenticating.

nameClaimType string: The name of the claim that contains the users name.
scopes string[]: A list of the scopes that should be requested while authenticating.

name_claim_type str: The name of the claim that contains the users name.
scopes Sequence[str]: A list of the scopes that should be requested while authenticating.

nameClaimType String: The name of the claim that contains the users name.
scopes List<String>: A list of the scopes that should be requested while authenticating.

OpenIdConnectLoginResponse, OpenIdConnectLoginResponseArgs

NameClaimType string: The name of the claim that contains the users name.
Scopes List<string>: A list of the scopes that should be requested while authenticating.

NameClaimType string: The name of the claim that contains the users name.
Scopes []string: A list of the scopes that should be requested while authenticating.

nameClaimType String: The name of the claim that contains the users name.
scopes List<String>: A list of the scopes that should be requested while authenticating.

nameClaimType string: The name of the claim that contains the users name.
scopes string[]: A list of the scopes that should be requested while authenticating.

name_claim_type str: The name of the claim that contains the users name.
scopes Sequence[str]: A list of the scopes that should be requested while authenticating.

nameClaimType String: The name of the claim that contains the users name.
scopes List<String>: A list of the scopes that should be requested while authenticating.

OpenIdConnectRegistration, OpenIdConnectRegistrationArgs

ClientCredential Pulumi.AzureNative.App.Inputs.OpenIdConnectClientCredential: The authentication credentials of the custom Open ID Connect provider.
ClientId string: The client id of the custom Open ID Connect provider.
OpenIdConnectConfiguration Pulumi.AzureNative.App.Inputs.OpenIdConnectConfig: The configuration settings of the endpoints used for the custom Open ID Connect provider.

ClientCredential OpenIdConnectClientCredential: The authentication credentials of the custom Open ID Connect provider.
ClientId string: The client id of the custom Open ID Connect provider.
OpenIdConnectConfiguration OpenIdConnectConfig: The configuration settings of the endpoints used for the custom Open ID Connect provider.

clientCredential OpenIdConnectClientCredential: The authentication credentials of the custom Open ID Connect provider.
clientId String: The client id of the custom Open ID Connect provider.
openIdConnectConfiguration OpenIdConnectConfig: The configuration settings of the endpoints used for the custom Open ID Connect provider.

clientCredential OpenIdConnectClientCredential: The authentication credentials of the custom Open ID Connect provider.
clientId string: The client id of the custom Open ID Connect provider.
openIdConnectConfiguration OpenIdConnectConfig: The configuration settings of the endpoints used for the custom Open ID Connect provider.

client_credential OpenIdConnectClientCredential: The authentication credentials of the custom Open ID Connect provider.
client_id str: The client id of the custom Open ID Connect provider.
open_id_connect_configuration OpenIdConnectConfig: The configuration settings of the endpoints used for the custom Open ID Connect provider.

clientCredential Property Map: The authentication credentials of the custom Open ID Connect provider.
clientId String: The client id of the custom Open ID Connect provider.
openIdConnectConfiguration Property Map: The configuration settings of the endpoints used for the custom Open ID Connect provider.

OpenIdConnectRegistrationResponse, OpenIdConnectRegistrationResponseArgs

ClientCredential Pulumi.AzureNative.App.Inputs.OpenIdConnectClientCredentialResponse: The authentication credentials of the custom Open ID Connect provider.
ClientId string: The client id of the custom Open ID Connect provider.
OpenIdConnectConfiguration Pulumi.AzureNative.App.Inputs.OpenIdConnectConfigResponse: The configuration settings of the endpoints used for the custom Open ID Connect provider.

ClientCredential OpenIdConnectClientCredentialResponse: The authentication credentials of the custom Open ID Connect provider.
ClientId string: The client id of the custom Open ID Connect provider.
OpenIdConnectConfiguration OpenIdConnectConfigResponse: The configuration settings of the endpoints used for the custom Open ID Connect provider.

clientCredential OpenIdConnectClientCredentialResponse: The authentication credentials of the custom Open ID Connect provider.
clientId String: The client id of the custom Open ID Connect provider.
openIdConnectConfiguration OpenIdConnectConfigResponse: The configuration settings of the endpoints used for the custom Open ID Connect provider.

clientCredential OpenIdConnectClientCredentialResponse: The authentication credentials of the custom Open ID Connect provider.
clientId string: The client id of the custom Open ID Connect provider.
openIdConnectConfiguration OpenIdConnectConfigResponse: The configuration settings of the endpoints used for the custom Open ID Connect provider.

client_credential OpenIdConnectClientCredentialResponse: The authentication credentials of the custom Open ID Connect provider.
client_id str: The client id of the custom Open ID Connect provider.
open_id_connect_configuration OpenIdConnectConfigResponse: The configuration settings of the endpoints used for the custom Open ID Connect provider.

clientCredential Property Map: The authentication credentials of the custom Open ID Connect provider.
clientId String: The client id of the custom Open ID Connect provider.
openIdConnectConfiguration Property Map: The configuration settings of the endpoints used for the custom Open ID Connect provider.

SystemDataResponse, SystemDataResponseArgs

CreatedAt string: The timestamp of resource creation (UTC).
CreatedBy string: The identity that created the resource.
CreatedByType string: The type of identity that created the resource.
LastModifiedAt string: The timestamp of resource last modification (UTC)
LastModifiedBy string: The identity that last modified the resource.
LastModifiedByType string: The type of identity that last modified the resource.

CreatedAt string: The timestamp of resource creation (UTC).
CreatedBy string: The identity that created the resource.
CreatedByType string: The type of identity that created the resource.
LastModifiedAt string: The timestamp of resource last modification (UTC)
LastModifiedBy string: The identity that last modified the resource.
LastModifiedByType string: The type of identity that last modified the resource.

createdAt String: The timestamp of resource creation (UTC).
createdBy String: The identity that created the resource.
createdByType String: The type of identity that created the resource.
lastModifiedAt String: The timestamp of resource last modification (UTC)
lastModifiedBy String: The identity that last modified the resource.
lastModifiedByType String: The type of identity that last modified the resource.

createdAt string: The timestamp of resource creation (UTC).
createdBy string: The identity that created the resource.
createdByType string: The type of identity that created the resource.
lastModifiedAt string: The timestamp of resource last modification (UTC)
lastModifiedBy string: The identity that last modified the resource.
lastModifiedByType string: The type of identity that last modified the resource.

created_at str: The timestamp of resource creation (UTC).
created_by str: The identity that created the resource.
created_by_type str: The type of identity that created the resource.
last_modified_at str: The timestamp of resource last modification (UTC)
last_modified_by str: The identity that last modified the resource.
last_modified_by_type str: The type of identity that last modified the resource.

createdAt String: The timestamp of resource creation (UTC).
createdBy String: The identity that created the resource.
createdByType String: The type of identity that created the resource.
lastModifiedAt String: The timestamp of resource last modification (UTC)
lastModifiedBy String: The identity that last modified the resource.
lastModifiedByType String: The type of identity that last modified the resource.

Twitter, TwitterArgs

Enabled bool: false if the Twitter provider should not be enabled despite the set registration; otherwise, true.
Registration Pulumi.AzureNative.App.Inputs.TwitterRegistration: The configuration settings of the app registration for the Twitter provider.

Enabled bool: false if the Twitter provider should not be enabled despite the set registration; otherwise, true.
Registration TwitterRegistration: The configuration settings of the app registration for the Twitter provider.

enabled Boolean: false if the Twitter provider should not be enabled despite the set registration; otherwise, true.
registration TwitterRegistration: The configuration settings of the app registration for the Twitter provider.

enabled boolean: false if the Twitter provider should not be enabled despite the set registration; otherwise, true.
registration TwitterRegistration: The configuration settings of the app registration for the Twitter provider.

enabled bool: false if the Twitter provider should not be enabled despite the set registration; otherwise, true.
registration TwitterRegistration: The configuration settings of the app registration for the Twitter provider.

enabled Boolean: false if the Twitter provider should not be enabled despite the set registration; otherwise, true.
registration Property Map: The configuration settings of the app registration for the Twitter provider.

TwitterRegistration, TwitterRegistrationArgs

ConsumerKey string: The OAuth 1.0a consumer key of the Twitter application used for sign-in. This setting is required for enabling Twitter Sign-In. Twitter Sign-In documentation: https://dev.twitter.com/web/sign-in
ConsumerSecretSettingName string: The app setting name that contains the OAuth 1.0a consumer secret of the Twitter application used for sign-in.

ConsumerKey string: The OAuth 1.0a consumer key of the Twitter application used for sign-in. This setting is required for enabling Twitter Sign-In. Twitter Sign-In documentation: https://dev.twitter.com/web/sign-in
ConsumerSecretSettingName string: The app setting name that contains the OAuth 1.0a consumer secret of the Twitter application used for sign-in.

consumerKey String: The OAuth 1.0a consumer key of the Twitter application used for sign-in. This setting is required for enabling Twitter Sign-In. Twitter Sign-In documentation: https://dev.twitter.com/web/sign-in
consumerSecretSettingName String: The app setting name that contains the OAuth 1.0a consumer secret of the Twitter application used for sign-in.

consumerKey string: The OAuth 1.0a consumer key of the Twitter application used for sign-in. This setting is required for enabling Twitter Sign-In. Twitter Sign-In documentation: https://dev.twitter.com/web/sign-in
consumerSecretSettingName string: The app setting name that contains the OAuth 1.0a consumer secret of the Twitter application used for sign-in.

consumer_key str: The OAuth 1.0a consumer key of the Twitter application used for sign-in. This setting is required for enabling Twitter Sign-In. Twitter Sign-In documentation: https://dev.twitter.com/web/sign-in
consumer_secret_setting_name str: The app setting name that contains the OAuth 1.0a consumer secret of the Twitter application used for sign-in.

consumerKey String: The OAuth 1.0a consumer key of the Twitter application used for sign-in. This setting is required for enabling Twitter Sign-In. Twitter Sign-In documentation: https://dev.twitter.com/web/sign-in
consumerSecretSettingName String: The app setting name that contains the OAuth 1.0a consumer secret of the Twitter application used for sign-in.

TwitterRegistrationResponse, TwitterRegistrationResponseArgs

ConsumerKey string: The OAuth 1.0a consumer key of the Twitter application used for sign-in. This setting is required for enabling Twitter Sign-In. Twitter Sign-In documentation: https://dev.twitter.com/web/sign-in
ConsumerSecretSettingName string: The app setting name that contains the OAuth 1.0a consumer secret of the Twitter application used for sign-in.

ConsumerKey string: The OAuth 1.0a consumer key of the Twitter application used for sign-in. This setting is required for enabling Twitter Sign-In. Twitter Sign-In documentation: https://dev.twitter.com/web/sign-in
ConsumerSecretSettingName string: The app setting name that contains the OAuth 1.0a consumer secret of the Twitter application used for sign-in.

consumerKey String: The OAuth 1.0a consumer key of the Twitter application used for sign-in. This setting is required for enabling Twitter Sign-In. Twitter Sign-In documentation: https://dev.twitter.com/web/sign-in
consumerSecretSettingName String: The app setting name that contains the OAuth 1.0a consumer secret of the Twitter application used for sign-in.

consumerKey string: The OAuth 1.0a consumer key of the Twitter application used for sign-in. This setting is required for enabling Twitter Sign-In. Twitter Sign-In documentation: https://dev.twitter.com/web/sign-in
consumerSecretSettingName string: The app setting name that contains the OAuth 1.0a consumer secret of the Twitter application used for sign-in.

consumer_key str: The OAuth 1.0a consumer key of the Twitter application used for sign-in. This setting is required for enabling Twitter Sign-In. Twitter Sign-In documentation: https://dev.twitter.com/web/sign-in
consumer_secret_setting_name str: The app setting name that contains the OAuth 1.0a consumer secret of the Twitter application used for sign-in.

consumerKey String: The OAuth 1.0a consumer key of the Twitter application used for sign-in. This setting is required for enabling Twitter Sign-In. Twitter Sign-In documentation: https://dev.twitter.com/web/sign-in
consumerSecretSettingName String: The app setting name that contains the OAuth 1.0a consumer secret of the Twitter application used for sign-in.

TwitterResponse, TwitterResponseArgs

Enabled bool: false if the Twitter provider should not be enabled despite the set registration; otherwise, true.
Registration Pulumi.AzureNative.App.Inputs.TwitterRegistrationResponse: The configuration settings of the app registration for the Twitter provider.

Enabled bool: false if the Twitter provider should not be enabled despite the set registration; otherwise, true.
Registration TwitterRegistrationResponse: The configuration settings of the app registration for the Twitter provider.

enabled Boolean: false if the Twitter provider should not be enabled despite the set registration; otherwise, true.
registration TwitterRegistrationResponse: The configuration settings of the app registration for the Twitter provider.

enabled boolean: false if the Twitter provider should not be enabled despite the set registration; otherwise, true.
registration TwitterRegistrationResponse: The configuration settings of the app registration for the Twitter provider.

enabled bool: false if the Twitter provider should not be enabled despite the set registration; otherwise, true.
registration TwitterRegistrationResponse: The configuration settings of the app registration for the Twitter provider.

enabled Boolean: false if the Twitter provider should not be enabled despite the set registration; otherwise, true.
registration Property Map: The configuration settings of the app registration for the Twitter provider.

UnauthenticatedClientActionV2, UnauthenticatedClientActionV2Args

RedirectToLoginPage: RedirectToLoginPage
AllowAnonymous: AllowAnonymous
Return401: Return401
Return403: Return403

UnauthenticatedClientActionV2RedirectToLoginPage: RedirectToLoginPage
UnauthenticatedClientActionV2AllowAnonymous: AllowAnonymous
UnauthenticatedClientActionV2Return401: Return401
UnauthenticatedClientActionV2Return403: Return403

RedirectToLoginPage: RedirectToLoginPage
AllowAnonymous: AllowAnonymous
Return401: Return401
Return403: Return403

RedirectToLoginPage: RedirectToLoginPage
AllowAnonymous: AllowAnonymous
Return401: Return401
Return403: Return403

REDIRECT_TO_LOGIN_PAGE: RedirectToLoginPage
ALLOW_ANONYMOUS: AllowAnonymous
RETURN401: Return401
RETURN403: Return403

"RedirectToLoginPage": RedirectToLoginPage
"AllowAnonymous": AllowAnonymous
"Return401": Return401
"Return403": Return403

Import

An existing resource can be imported using its type token, name, and identifier, e.g.

$ pulumi import azure-native:app:ContainerAppsAuthConfig current /subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.App/containerApps/{containerAppName}/authConfigs/{authConfigName}

To learn more about importing existing cloud resources, see Importing resources.

Package Details

Repository: Azure Native pulumi/pulumi-azure-native
License: Apache-2.0

This is the latest version of Azure Native. Use the Azure Native v1 docs if using the v1 version of this package.

Azure Native v2.63.0 published on Tuesday, Sep 24, 2024 by Pulumi

pulumi/pulumi-azure-native

azure-native.app.ContainerAppsAuthConfig

On this page

On this page

Example Usage

Create or Update Container App AuthConfig

Create ContainerAppsAuthConfig Resource

Constructor syntax

Parameters

Constructor example

ContainerAppsAuthConfig Resource Properties

Inputs

Outputs

Supporting Types

AllowedAudiencesValidation, AllowedAudiencesValidationArgs

AllowedAudiencesValidationResponse, AllowedAudiencesValidationResponseArgs

AllowedPrincipals, AllowedPrincipalsArgs

AllowedPrincipalsResponse, AllowedPrincipalsResponseArgs

AppRegistration, AppRegistrationArgs

AppRegistrationResponse, AppRegistrationResponseArgs

Apple, AppleArgs

AppleRegistration, AppleRegistrationArgs

AppleRegistrationResponse, AppleRegistrationResponseArgs

AppleResponse, AppleResponseArgs

AuthPlatform, AuthPlatformArgs

AuthPlatformResponse, AuthPlatformResponseArgs

AzureActiveDirectory, AzureActiveDirectoryArgs

AzureActiveDirectoryLogin, AzureActiveDirectoryLoginArgs

AzureActiveDirectoryLoginResponse, AzureActiveDirectoryLoginResponseArgs

AzureActiveDirectoryRegistration, AzureActiveDirectoryRegistrationArgs

AzureActiveDirectoryRegistrationResponse, AzureActiveDirectoryRegistrationResponseArgs

AzureActiveDirectoryResponse, AzureActiveDirectoryResponseArgs

AzureActiveDirectoryValidation, AzureActiveDirectoryValidationArgs

AzureActiveDirectoryValidationResponse, AzureActiveDirectoryValidationResponseArgs

AzureStaticWebApps, AzureStaticWebAppsArgs

AzureStaticWebAppsRegistration, AzureStaticWebAppsRegistrationArgs

AzureStaticWebAppsRegistrationResponse, AzureStaticWebAppsRegistrationResponseArgs

AzureStaticWebAppsResponse, AzureStaticWebAppsResponseArgs

ClientCredentialMethod, ClientCredentialMethodArgs

ClientRegistration, ClientRegistrationArgs

ClientRegistrationResponse, ClientRegistrationResponseArgs

CookieExpiration, CookieExpirationArgs

CookieExpirationConvention, CookieExpirationConventionArgs

CookieExpirationResponse, CookieExpirationResponseArgs

CustomOpenIdConnectProvider, CustomOpenIdConnectProviderArgs

CustomOpenIdConnectProviderResponse, CustomOpenIdConnectProviderResponseArgs

DefaultAuthorizationPolicy, DefaultAuthorizationPolicyArgs

DefaultAuthorizationPolicyResponse, DefaultAuthorizationPolicyResponseArgs

Facebook, FacebookArgs

FacebookResponse, FacebookResponseArgs

ForwardProxy, ForwardProxyArgs

ForwardProxyConvention, ForwardProxyConventionArgs

ForwardProxyResponse, ForwardProxyResponseArgs

GitHub, GitHubArgs

GitHubResponse, GitHubResponseArgs

GlobalValidation, GlobalValidationArgs

GlobalValidationResponse, GlobalValidationResponseArgs

Google, GoogleArgs

GoogleResponse, GoogleResponseArgs

HttpSettings, HttpSettingsArgs

HttpSettingsResponse, HttpSettingsResponseArgs

HttpSettingsRoutes, HttpSettingsRoutesArgs

HttpSettingsRoutesResponse, HttpSettingsRoutesResponseArgs

IdentityProviders, IdentityProvidersArgs

IdentityProvidersResponse, IdentityProvidersResponseArgs

JwtClaimChecks, JwtClaimChecksArgs

JwtClaimChecksResponse, JwtClaimChecksResponseArgs

Login, LoginArgs

LoginResponse, LoginResponseArgs

LoginRoutes, LoginRoutesArgs

LoginRoutesResponse, LoginRoutesResponseArgs

LoginScopes, LoginScopesArgs

LoginScopesResponse, LoginScopesResponseArgs

Nonce, NonceArgs

NonceResponse, NonceResponseArgs

OpenIdConnectClientCredential, OpenIdConnectClientCredentialArgs

OpenIdConnectClientCredentialResponse, OpenIdConnectClientCredentialResponseArgs

OpenIdConnectConfig, OpenIdConnectConfigArgs

OpenIdConnectConfigResponse, OpenIdConnectConfigResponseArgs

OpenIdConnectLogin, OpenIdConnectLoginArgs

OpenIdConnectLoginResponse, OpenIdConnectLoginResponseArgs