pulumi-azure-kotlin/com.pulumi.azure.cdn.kotlin/FrontdoorSecretArgs

FrontdoorSecretArgs

data class FrontdoorSecretArgs(val cdnFrontdoorProfileId: Output<String>? = null, val name: Output<String>? = null, val secret: Output<FrontdoorSecretSecretArgs>? = null) : ConvertibleToJava<FrontdoorSecretArgs>

Manages a Front Door (standard/premium) Secret.

Example Usage

package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.azure.core.CoreFunctions;
import com.pulumi.azuread.AzureadFunctions;
import com.pulumi.azuread.inputs.GetServicePrincipalArgs;
import com.pulumi.azure.core.ResourceGroup;
import com.pulumi.azure.core.ResourceGroupArgs;
import com.pulumi.azure.keyvault.KeyVault;
import com.pulumi.azure.keyvault.KeyVaultArgs;
import com.pulumi.azure.keyvault.inputs.KeyVaultNetworkAclsArgs;
import com.pulumi.azure.keyvault.inputs.KeyVaultAccessPolicyArgs;
import com.pulumi.azure.keyvault.Certificate;
import com.pulumi.azure.keyvault.CertificateArgs;
import com.pulumi.azure.keyvault.inputs.CertificateCertificateArgs;
import com.pulumi.azure.cdn.FrontdoorProfile;
import com.pulumi.azure.cdn.FrontdoorProfileArgs;
import com.pulumi.azure.cdn.FrontdoorSecret;
import com.pulumi.azure.cdn.FrontdoorSecretArgs;
import com.pulumi.azure.cdn.inputs.FrontdoorSecretSecretArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
    public static void main(String[] args) {
        Pulumi.run(App::stack);
    }
    public static void stack(Context ctx) {
        final var current = CoreFunctions.getClientConfig();
        final var frontdoor = AzureadFunctions.getServicePrincipal(GetServicePrincipalArgs.builder()
            .displayName("Microsoft.Azure.Cdn")
            .build());
        var exampleResourceGroup = new ResourceGroup("exampleResourceGroup", ResourceGroupArgs.builder()
            .location("West Europe")
            .build());
        var exampleKeyVault = new KeyVault("exampleKeyVault", KeyVaultArgs.builder()
            .location(exampleResourceGroup.location())
            .resourceGroupName(exampleResourceGroup.name())
            .tenantId(current.applyValue(getClientConfigResult -> getClientConfigResult.tenantId()))
            .skuName("premium")
            .softDeleteRetentionDays(7)
            .networkAcls(KeyVaultNetworkAclsArgs.builder()
                .defaultAction("Deny")
                .bypass("AzureServices")
                .ipRules("10.0.0.0/24")
                .build())
            .accessPolicies(
                KeyVaultAccessPolicyArgs.builder()
                    .tenantId(current.applyValue(getClientConfigResult -> getClientConfigResult.tenantId()))
                    .objectId(frontdoor.applyValue(getServicePrincipalResult -> getServicePrincipalResult.objectId()))
                    .secretPermissions("Get")
                    .build(),
                KeyVaultAccessPolicyArgs.builder()
                    .tenantId(current.applyValue(getClientConfigResult -> getClientConfigResult.tenantId()))
                    .objectId(current.applyValue(getClientConfigResult -> getClientConfigResult.objectId()))
                    .certificatePermissions(
                        "Get",
                        "Import",
                        "Delete",
                        "Purge")
                    .secretPermissions("Get")
                    .build())
            .build());
        var exampleCertificate = new Certificate("exampleCertificate", CertificateArgs.builder()
            .keyVaultId(exampleKeyVault.id())
            .certificate(CertificateCertificateArgs.builder()
                .contents(Base64.getEncoder().encodeToString(Files.readAllBytes(Paths.get("my-certificate.pfx"))))
                .build())
            .build());
        var exampleFrontdoorProfile = new FrontdoorProfile("exampleFrontdoorProfile", FrontdoorProfileArgs.builder()
            .resourceGroupName(exampleResourceGroup.name())
            .skuName("Standard_AzureFrontDoor")
            .build());
        var exampleFrontdoorSecret = new FrontdoorSecret("exampleFrontdoorSecret", FrontdoorSecretArgs.builder()
            .cdnFrontdoorProfileId(exampleFrontdoorProfile.id())
            .secret(FrontdoorSecretSecretArgs.builder()
                .customerCertificates(FrontdoorSecretSecretCustomerCertificateArgs.builder()
                    .keyVaultCertificateId(exampleCertificate.id())
                    .build())
                .build())
            .build());
    }
}
Content copied to clipboard

Import

Front Door Secrets can be imported using the resource id, e.g.

$ pulumi import azure:cdn/frontdoorSecret:FrontdoorSecret example /subscriptions/00000000-0000-0000-0000-000000000000/resourceGroups/resourceGroup1/providers/Microsoft.Cdn/profiles/profile1/secrets/secrets1
Content copied to clipboard

Constructors

Link copied to clipboard
fun FrontdoorSecretArgs(cdnFrontdoorProfileId: Output<String>? = null, name: Output<String>? = null, secret: Output<FrontdoorSecretSecretArgs>? = null)

Functions

Link copied to clipboard
open override fun toJava(): FrontdoorSecretArgs

Properties

Link copied to clipboard
val cdnFrontdoorProfileId: Output<String>? = null

The Resource ID of the Front Door Profile. Changing this forces a new Front Door Secret to be created.

Link copied to clipboard
val name: Output<String>? = null

The name which should be used for this Front Door Secret. Possible values must start with a letter or a number, only contain letters, numbers and hyphens and have a length of between 2 and 260 characters. Changing this forces a new Front Door Secret to be created.

Link copied to clipboard
val secret: Output<FrontdoorSecretSecretArgs>? = null

A secret block as defined below. Changing this forces a new Front Door Secret to be created.