pulumi-azure-kotlin/com.pulumi.azure.appconfiguration.kotlin/ConfigurationStoreArgs

ConfigurationStoreArgs

data class ConfigurationStoreArgs(val encryption: Output<ConfigurationStoreEncryptionArgs>? = null, val identity: Output<ConfigurationStoreIdentityArgs>? = null, val localAuthEnabled: Output<Boolean>? = null, val location: Output<String>? = null, val name: Output<String>? = null, val publicNetworkAccess: Output<String>? = null, val purgeProtectionEnabled: Output<Boolean>? = null, val replicas: Output<List<ConfigurationStoreReplicaArgs>>? = null, val resourceGroupName: Output<String>? = null, val sku: Output<String>? = null, val softDeleteRetentionDays: Output<Int>? = null, val tags: Output<Map<String, String>>? = null) : ConvertibleToJava<ConfigurationStoreArgs>

Example Usage

package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.azure.core.ResourceGroup;
import com.pulumi.azure.core.ResourceGroupArgs;
import com.pulumi.azure.appconfiguration.ConfigurationStore;
import com.pulumi.azure.appconfiguration.ConfigurationStoreArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
    public static void main(String[] args) {
        Pulumi.run(App::stack);
    }
    public static void stack(Context ctx) {
        var example = new ResourceGroup("example", ResourceGroupArgs.builder()
            .location("West Europe")
            .build());
        var appconf = new ConfigurationStore("appconf", ConfigurationStoreArgs.builder()
            .resourceGroupName(example.name())
            .location(example.location())
            .build());
    }
}

Encryption)

package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.azure.core.ResourceGroup;
import com.pulumi.azure.core.ResourceGroupArgs;
import com.pulumi.azure.authorization.UserAssignedIdentity;
import com.pulumi.azure.authorization.UserAssignedIdentityArgs;
import com.pulumi.azure.core.CoreFunctions;
import com.pulumi.azure.keyvault.KeyVault;
import com.pulumi.azure.keyvault.KeyVaultArgs;
import com.pulumi.azure.keyvault.AccessPolicy;
import com.pulumi.azure.keyvault.AccessPolicyArgs;
import com.pulumi.azure.keyvault.Key;
import com.pulumi.azure.keyvault.KeyArgs;
import com.pulumi.azure.appconfiguration.ConfigurationStore;
import com.pulumi.azure.appconfiguration.ConfigurationStoreArgs;
import com.pulumi.azure.appconfiguration.inputs.ConfigurationStoreIdentityArgs;
import com.pulumi.azure.appconfiguration.inputs.ConfigurationStoreEncryptionArgs;
import com.pulumi.azure.appconfiguration.inputs.ConfigurationStoreReplicaArgs;
import com.pulumi.resources.CustomResourceOptions;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
    public static void main(String[] args) {
        Pulumi.run(App::stack);
    }
    public static void stack(Context ctx) {
        var exampleResourceGroup = new ResourceGroup("exampleResourceGroup", ResourceGroupArgs.builder()
            .location("West Europe")
            .build());
        var exampleUserAssignedIdentity = new UserAssignedIdentity("exampleUserAssignedIdentity", UserAssignedIdentityArgs.builder()
            .location(exampleResourceGroup.location())
            .resourceGroupName(exampleResourceGroup.name())
            .build());
        final var current = CoreFunctions.getClientConfig();
        var exampleKeyVault = new KeyVault("exampleKeyVault", KeyVaultArgs.builder()
            .location(exampleResourceGroup.location())
            .resourceGroupName(exampleResourceGroup.name())
            .tenantId(current.applyValue(getClientConfigResult -> getClientConfigResult.tenantId()))
            .skuName("standard")
            .softDeleteRetentionDays(7)
            .purgeProtectionEnabled(true)
            .build());
        var server = new AccessPolicy("server", AccessPolicyArgs.builder()
            .keyVaultId(exampleKeyVault.id())
            .tenantId(current.applyValue(getClientConfigResult -> getClientConfigResult.tenantId()))
            .objectId(exampleUserAssignedIdentity.principalId())
            .keyPermissions(
                "Get",
                "UnwrapKey",
                "WrapKey")
            .secretPermissions("Get")
            .build());
        var client = new AccessPolicy("client", AccessPolicyArgs.builder()
            .keyVaultId(exampleKeyVault.id())
            .tenantId(current.applyValue(getClientConfigResult -> getClientConfigResult.tenantId()))
            .objectId(current.applyValue(getClientConfigResult -> getClientConfigResult.objectId()))
            .keyPermissions(
                "Get",
                "Create",
                "Delete",
                "List",
                "Restore",
                "Recover",
                "UnwrapKey",
                "WrapKey",
                "Purge",
                "Encrypt",
                "Decrypt",
                "Sign",
                "Verify",
                "GetRotationPolicy")
            .secretPermissions("Get")
            .build());
        var exampleKey = new Key("exampleKey", KeyArgs.builder()
            .keyVaultId(exampleKeyVault.id())
            .keyType("RSA")
            .keySize(2048)
            .keyOpts(
                "decrypt",
                "encrypt",
                "sign",
                "unwrapKey",
                "verify",
                "wrapKey")
            .build(), CustomResourceOptions.builder()
                .dependsOn(
                    client,
                    server)
                .build());
        var exampleConfigurationStore = new ConfigurationStore("exampleConfigurationStore", ConfigurationStoreArgs.builder()
            .resourceGroupName(exampleResourceGroup.name())
            .location(exampleResourceGroup.location())
            .sku("standard")
            .localAuthEnabled(true)
            .publicNetworkAccess("Enabled")
            .purgeProtectionEnabled(false)
            .softDeleteRetentionDays(1)
            .identity(ConfigurationStoreIdentityArgs.builder()
                .type("UserAssigned")
                .identityIds(exampleUserAssignedIdentity.id())
                .build())
            .encryption(ConfigurationStoreEncryptionArgs.builder()
                .keyVaultKeyIdentifier(exampleKey.id())
                .identityClientId(exampleUserAssignedIdentity.clientId())
                .build())
            .replicas(ConfigurationStoreReplicaArgs.builder()
                .name("replica1")
                .location("West US")
                .build())
            .tags(Map.of("environment", "development"))
            .build(), CustomResourceOptions.builder()
                .dependsOn(
                    client,
                    server)
                .build());
    }
}

Import

App Configurations can be imported using the resource id, e.g.

$ pulumi import azure:appconfiguration/configurationStore:ConfigurationStore appconf /subscriptions/00000000-0000-0000-0000-000000000000/resourceGroups/resourceGroup1/providers/Microsoft.AppConfiguration/configurationStores/appConf1

Constructors

ConfigurationStoreArgs

fun ConfigurationStoreArgs(encryption: Output<ConfigurationStoreEncryptionArgs>? = null, identity: Output<ConfigurationStoreIdentityArgs>? = null, localAuthEnabled: Output<Boolean>? = null, location: Output<String>? = null, name: Output<String>? = null, publicNetworkAccess: Output<String>? = null, purgeProtectionEnabled: Output<Boolean>? = null, replicas: Output<List<ConfigurationStoreReplicaArgs>>? = null, resourceGroupName: Output<String>? = null, sku: Output<String>? = null, softDeleteRetentionDays: Output<Int>? = null, tags: Output<Map<String, String>>? = null)

Functions

toJava

open override fun toJava(): ConfigurationStoreArgs

Properties

encryption

val encryption: Output<ConfigurationStoreEncryptionArgs>? = null

An encryption block as defined below.

identity

val identity: Output<ConfigurationStoreIdentityArgs>? = null

An identity block as defined below.

localAuthEnabled

val localAuthEnabled: Output<Boolean>? = null

Whether local authentication methods is enabled. Defaults to true.

location

val location: Output<String>? = null

Specifies the supported Azure location where the resource exists. Changing this forces a new resource to be created.

name

val name: Output<String>? = null

Specifies the name of the App Configuration. Changing this forces a new resource to be created.

publicNetworkAccess

val publicNetworkAccess: Output<String>? = null

The Public Network Access setting of the App Configuration. Possible values are Enabled and Disabled.

purgeProtectionEnabled

val purgeProtectionEnabled: Output<Boolean>? = null

Whether Purge Protection is enabled. This field only works for standard sku. Defaults to false. !>Note: Once Purge Protection has been enabled it's not possible to disable it. Deleting the App Configuration with Purge Protection enabled will schedule the App Configuration to be deleted (which will happen by Azure in the configured number of days).

replicas

val replicas: Output<List<ConfigurationStoreReplicaArgs>>? = null

One or more replica blocks as defined below.

resourceGroupName

val resourceGroupName: Output<String>? = null

The name of the resource group in which to create the App Configuration. Changing this forces a new resource to be created.

sku

val sku: Output<String>? = null

The SKU name of the App Configuration. Possible values are free and standard. Defaults to free.

softDeleteRetentionDays

val softDeleteRetentionDays: Output<Int>? = null

The number of days that items should be retained for once soft-deleted. This field only works for standard sku. This value can be between 1 and 7 days. Defaults to 7. Changing this forces a new resource to be created.