pulumi-azure-kotlin/com.pulumi.azure.appconfiguration.kotlin/ConfigurationStore

ConfigurationStore

class ConfigurationStore : KotlinCustomResource

Example Usage

package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.azure.core.ResourceGroup;
import com.pulumi.azure.core.ResourceGroupArgs;
import com.pulumi.azure.appconfiguration.ConfigurationStore;
import com.pulumi.azure.appconfiguration.ConfigurationStoreArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
    public static void main(String[] args) {
        Pulumi.run(App::stack);
    }
    public static void stack(Context ctx) {
        var example = new ResourceGroup("example", ResourceGroupArgs.builder()
            .location("West Europe")
            .build());
        var appconf = new ConfigurationStore("appconf", ConfigurationStoreArgs.builder()
            .resourceGroupName(example.name())
            .location(example.location())
            .build());
    }
}

Encryption)

package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.azure.core.ResourceGroup;
import com.pulumi.azure.core.ResourceGroupArgs;
import com.pulumi.azure.authorization.UserAssignedIdentity;
import com.pulumi.azure.authorization.UserAssignedIdentityArgs;
import com.pulumi.azure.core.CoreFunctions;
import com.pulumi.azure.keyvault.KeyVault;
import com.pulumi.azure.keyvault.KeyVaultArgs;
import com.pulumi.azure.keyvault.AccessPolicy;
import com.pulumi.azure.keyvault.AccessPolicyArgs;
import com.pulumi.azure.keyvault.Key;
import com.pulumi.azure.keyvault.KeyArgs;
import com.pulumi.azure.appconfiguration.ConfigurationStore;
import com.pulumi.azure.appconfiguration.ConfigurationStoreArgs;
import com.pulumi.azure.appconfiguration.inputs.ConfigurationStoreIdentityArgs;
import com.pulumi.azure.appconfiguration.inputs.ConfigurationStoreEncryptionArgs;
import com.pulumi.azure.appconfiguration.inputs.ConfigurationStoreReplicaArgs;
import com.pulumi.resources.CustomResourceOptions;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
    public static void main(String[] args) {
        Pulumi.run(App::stack);
    }
    public static void stack(Context ctx) {
        var exampleResourceGroup = new ResourceGroup("exampleResourceGroup", ResourceGroupArgs.builder()
            .location("West Europe")
            .build());
        var exampleUserAssignedIdentity = new UserAssignedIdentity("exampleUserAssignedIdentity", UserAssignedIdentityArgs.builder()
            .location(exampleResourceGroup.location())
            .resourceGroupName(exampleResourceGroup.name())
            .build());
        final var current = CoreFunctions.getClientConfig();
        var exampleKeyVault = new KeyVault("exampleKeyVault", KeyVaultArgs.builder()
            .location(exampleResourceGroup.location())
            .resourceGroupName(exampleResourceGroup.name())
            .tenantId(current.applyValue(getClientConfigResult -> getClientConfigResult.tenantId()))
            .skuName("standard")
            .softDeleteRetentionDays(7)
            .purgeProtectionEnabled(true)
            .build());
        var server = new AccessPolicy("server", AccessPolicyArgs.builder()
            .keyVaultId(exampleKeyVault.id())
            .tenantId(current.applyValue(getClientConfigResult -> getClientConfigResult.tenantId()))
            .objectId(exampleUserAssignedIdentity.principalId())
            .keyPermissions(
                "Get",
                "UnwrapKey",
                "WrapKey")
            .secretPermissions("Get")
            .build());
        var client = new AccessPolicy("client", AccessPolicyArgs.builder()
            .keyVaultId(exampleKeyVault.id())
            .tenantId(current.applyValue(getClientConfigResult -> getClientConfigResult.tenantId()))
            .objectId(current.applyValue(getClientConfigResult -> getClientConfigResult.objectId()))
            .keyPermissions(
                "Get",
                "Create",
                "Delete",
                "List",
                "Restore",
                "Recover",
                "UnwrapKey",
                "WrapKey",
                "Purge",
                "Encrypt",
                "Decrypt",
                "Sign",
                "Verify",
                "GetRotationPolicy")
            .secretPermissions("Get")
            .build());
        var exampleKey = new Key("exampleKey", KeyArgs.builder()
            .keyVaultId(exampleKeyVault.id())
            .keyType("RSA")
            .keySize(2048)
            .keyOpts(
                "decrypt",
                "encrypt",
                "sign",
                "unwrapKey",
                "verify",
                "wrapKey")
            .build(), CustomResourceOptions.builder()
                .dependsOn(
                    client,
                    server)
                .build());
        var exampleConfigurationStore = new ConfigurationStore("exampleConfigurationStore", ConfigurationStoreArgs.builder()
            .resourceGroupName(exampleResourceGroup.name())
            .location(exampleResourceGroup.location())
            .sku("standard")
            .localAuthEnabled(true)
            .publicNetworkAccess("Enabled")
            .purgeProtectionEnabled(false)
            .softDeleteRetentionDays(1)
            .identity(ConfigurationStoreIdentityArgs.builder()
                .type("UserAssigned")
                .identityIds(exampleUserAssignedIdentity.id())
                .build())
            .encryption(ConfigurationStoreEncryptionArgs.builder()
                .keyVaultKeyIdentifier(exampleKey.id())
                .identityClientId(exampleUserAssignedIdentity.clientId())
                .build())
            .replicas(ConfigurationStoreReplicaArgs.builder()
                .name("replica1")
                .location("West US")
                .build())
            .tags(Map.of("environment", "development"))
            .build(), CustomResourceOptions.builder()
                .dependsOn(
                    client,
                    server)
                .build());
    }
}

Import

App Configurations can be imported using the resource id, e.g.

$ pulumi import azure:appconfiguration/configurationStore:ConfigurationStore appconf /subscriptions/00000000-0000-0000-0000-000000000000/resourceGroups/resourceGroup1/providers/Microsoft.AppConfiguration/configurationStores/appConf1

Properties

encryption

val encryption: Output<ConfigurationStoreEncryption>?

An encryption block as defined below.

endpoint

val endpoint: Output<String>

The URL of the App Configuration Replica.

val id: Output<String>

identity

val identity: Output<ConfigurationStoreIdentity>?

An identity block as defined below.

localAuthEnabled

val localAuthEnabled: Output<Boolean>?

Whether local authentication methods is enabled. Defaults to true.

location

val location: Output<String>

Specifies the supported Azure location where the resource exists. Changing this forces a new resource to be created.

name

val name: Output<String>

Specifies the name of the App Configuration. Changing this forces a new resource to be created.

primaryReadKeys

val primaryReadKeys: Output<List<ConfigurationStorePrimaryReadKey>>

A primary_read_key block as defined below containing the primary read access key.

primaryWriteKeys

val primaryWriteKeys: Output<List<ConfigurationStorePrimaryWriteKey>>

A primary_write_key block as defined below containing the primary write access key.

publicNetworkAccess

val publicNetworkAccess: Output<String>?

The Public Network Access setting of the App Configuration. Possible values are Enabled and Disabled.

pulumiChildResources

val pulumiChildResources: Set<KotlinResource>

pulumiResourceName

val pulumiResourceName: String

pulumiResourceType

val pulumiResourceType: String

purgeProtectionEnabled

val purgeProtectionEnabled: Output<Boolean>?

Whether Purge Protection is enabled. This field only works for standard sku. Defaults to false. !>Note: Once Purge Protection has been enabled it's not possible to disable it. Deleting the App Configuration with Purge Protection enabled will schedule the App Configuration to be deleted (which will happen by Azure in the configured number of days).

replicas

val replicas: Output<List<ConfigurationStoreReplica>>?

One or more replica blocks as defined below.

resourceGroupName

val resourceGroupName: Output<String>

The name of the resource group in which to create the App Configuration. Changing this forces a new resource to be created.

secondaryReadKeys

val secondaryReadKeys: Output<List<ConfigurationStoreSecondaryReadKey>>

A secondary_read_key block as defined below containing the secondary read access key.

secondaryWriteKeys

val secondaryWriteKeys: Output<List<ConfigurationStoreSecondaryWriteKey>>

A secondary_write_key block as defined below containing the secondary write access key.

sku

val sku: Output<String>?

The SKU name of the App Configuration. Possible values are free and standard. Defaults to free.

softDeleteRetentionDays

val softDeleteRetentionDays: Output<Int>?

The number of days that items should be retained for once soft-deleted. This field only works for standard sku. This value can be between 1 and 7 days. Defaults to 7. Changing this forces a new resource to be created.