Federated
data class FederatedIdentityCredentialArgs(val audiences: Output<List<String>>? = null, val federatedIdentityCredentialResourceName: Output<String>? = null, val issuer: Output<String>? = null, val resourceGroupName: Output<String>? = null, val resourceName: Output<String>? = null, val subject: Output<String>? = null) : ConvertibleToJava<FederatedIdentityCredentialArgs>
Describes a federated identity credential. Uses Azure REST API version 2023-01-31. In version 1.x of the Azure Native provider, it used API version 2022-01-31-preview. Other available API versions: 2023-07-31-preview, 2024-11-30, 2025-01-31-preview.
Example Usage
FederatedIdentityCredentialCreate
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using AzureNative = Pulumi.AzureNative;
return await Deployment.RunAsync(() =>
{
var federatedIdentityCredential = new AzureNative.ManagedIdentity.FederatedIdentityCredential("federatedIdentityCredential", new()
{
Audiences = new[]
{
"api://AzureADTokenExchange",
},
FederatedIdentityCredentialResourceName = "ficResourceName",
Issuer = "https://oidc.prod-aks.azure.com/TenantGUID/IssuerGUID",
ResourceGroupName = "rgName",
ResourceName = "resourceName",
Subject = "system:serviceaccount:ns:svcaccount",
});
});Content copied to clipboard
package main
import (
managedidentity "github.com/pulumi/pulumi-azure-native-sdk/managedidentity/v2"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
_, err := managedidentity.NewFederatedIdentityCredential(ctx, "federatedIdentityCredential", &managedidentity.FederatedIdentityCredentialArgs{
Audiences: pulumi.StringArray{
pulumi.String("api://AzureADTokenExchange"),
},
FederatedIdentityCredentialResourceName: pulumi.String("ficResourceName"),
Issuer: pulumi.String("https://oidc.prod-aks.azure.com/TenantGUID/IssuerGUID"),
ResourceGroupName: pulumi.String("rgName"),
ResourceName: pulumi.String("resourceName"),
Subject: pulumi.String("system:serviceaccount:ns:svcaccount"),
})
if err != nil {
return err
}
return nil
})
}Content copied to clipboard
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.azurenative.managedidentity.FederatedIdentityCredential;
import com.pulumi.azurenative.managedidentity.FederatedIdentityCredentialArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
var federatedIdentityCredential = new FederatedIdentityCredential("federatedIdentityCredential", FederatedIdentityCredentialArgs.builder()
.audiences("api://AzureADTokenExchange")
.federatedIdentityCredentialResourceName("ficResourceName")
.issuer("https://oidc.prod-aks.azure.com/TenantGUID/IssuerGUID")
.resourceGroupName("rgName")
.resourceName("resourceName")
.subject("system:serviceaccount:ns:svcaccount")
.build());
}
}Content copied to clipboard
Import
An existing resource can be imported using its type token, name, and identifier, e.g.
$ pulumi import azure-native:managedidentity:FederatedIdentityCredential ficResourceName /subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.ManagedIdentity/userAssignedIdentities/{resourceName}/federatedIdentityCredentials/{federatedIdentityCredentialResourceName}Content copied to clipboard