pulumi-azure-kotlin/com.pulumi.azure.cdn.kotlin/FrontdoorSecurityPolicy

FrontdoorSecurityPolicy

class FrontdoorSecurityPolicy : KotlinCustomResource

Manages a Front Door (standard/premium) Security Policy.

Example Usage

package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.azure.core.ResourceGroup;
import com.pulumi.azure.core.ResourceGroupArgs;
import com.pulumi.azure.cdn.FrontdoorProfile;
import com.pulumi.azure.cdn.FrontdoorProfileArgs;
import com.pulumi.azure.cdn.FrontdoorFirewallPolicy;
import com.pulumi.azure.cdn.FrontdoorFirewallPolicyArgs;
import com.pulumi.azure.cdn.inputs.FrontdoorFirewallPolicyCustomRuleArgs;
import com.pulumi.azure.dns.Zone;
import com.pulumi.azure.dns.ZoneArgs;
import com.pulumi.azure.cdn.FrontdoorCustomDomain;
import com.pulumi.azure.cdn.FrontdoorCustomDomainArgs;
import com.pulumi.azure.cdn.inputs.FrontdoorCustomDomainTlsArgs;
import com.pulumi.azure.cdn.FrontdoorSecurityPolicy;
import com.pulumi.azure.cdn.FrontdoorSecurityPolicyArgs;
import com.pulumi.azure.cdn.inputs.FrontdoorSecurityPolicySecurityPoliciesArgs;
import com.pulumi.azure.cdn.inputs.FrontdoorSecurityPolicySecurityPoliciesFirewallArgs;
import com.pulumi.azure.cdn.inputs.FrontdoorSecurityPolicySecurityPoliciesFirewallAssociationArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
    public static void main(String[] args) {
        Pulumi.run(App::stack);
    }
    public static void stack(Context ctx) {
        var exampleResourceGroup = new ResourceGroup("exampleResourceGroup", ResourceGroupArgs.builder()
            .location("West Europe")
            .build());
        var exampleFrontdoorProfile = new FrontdoorProfile("exampleFrontdoorProfile", FrontdoorProfileArgs.builder()
            .resourceGroupName(exampleResourceGroup.name())
            .skuName("Standard_AzureFrontDoor")
            .build());
        var exampleFrontdoorFirewallPolicy = new FrontdoorFirewallPolicy("exampleFrontdoorFirewallPolicy", FrontdoorFirewallPolicyArgs.builder()
            .resourceGroupName(exampleResourceGroup.name())
            .skuName(exampleFrontdoorProfile.skuName())
            .enabled(true)
            .mode("Prevention")
            .redirectUrl("https://www.contoso.com")
            .customBlockResponseStatusCode(403)
            .customBlockResponseBody("PGh0bWw+CjxoZWFkZXI+PHRpdGxlPkhlbGxvPC90aXRsZT48L2hlYWRlcj4KPGJvZHk+CkhlbGxvIHdvcmxkCjwvYm9keT4KPC9odG1sPg==")
            .customRules(FrontdoorFirewallPolicyCustomRuleArgs.builder()
                .name("Rule1")
                .enabled(true)
                .priority(1)
                .rateLimitDurationInMinutes(1)
                .rateLimitThreshold(10)
                .type("MatchRule")
                .action("Block")
                .matchConditions(FrontdoorFirewallPolicyCustomRuleMatchConditionArgs.builder()
                    .matchVariable("RemoteAddr")
                    .operator("IPMatch")
                    .negationCondition(false)
                    .matchValues(
                        "192.168.1.0/24",
                        "10.0.1.0/24")
                    .build())
                .build())
            .build());
        var exampleZone = new Zone("exampleZone", ZoneArgs.builder()
            .resourceGroupName(exampleResourceGroup.name())
            .build());
        var exampleFrontdoorCustomDomain = new FrontdoorCustomDomain("exampleFrontdoorCustomDomain", FrontdoorCustomDomainArgs.builder()
            .cdnFrontdoorProfileId(exampleFrontdoorProfile.id())
            .dnsZoneId(exampleZone.id())
            .hostName("contoso.fabrikam.com")
            .tls(FrontdoorCustomDomainTlsArgs.builder()
                .certificateType("ManagedCertificate")
                .minimumTlsVersion("TLS12")
                .build())
            .build());
        var exampleFrontdoorSecurityPolicy = new FrontdoorSecurityPolicy("exampleFrontdoorSecurityPolicy", FrontdoorSecurityPolicyArgs.builder()
            .cdnFrontdoorProfileId(exampleFrontdoorProfile.id())
            .securityPolicies(FrontdoorSecurityPolicySecurityPoliciesArgs.builder()
                .firewall(FrontdoorSecurityPolicySecurityPoliciesFirewallArgs.builder()
                    .cdnFrontdoorFirewallPolicyId(exampleFrontdoorFirewallPolicy.id())
                    .association(FrontdoorSecurityPolicySecurityPoliciesFirewallAssociationArgs.builder()
                        .domains(FrontdoorSecurityPolicySecurityPoliciesFirewallAssociationDomainArgs.builder()
                            .cdnFrontdoorDomainId(exampleFrontdoorCustomDomain.id())
                            .build())
                        .patternsToMatch("/*")
                        .build())
                    .build())
                .build())
            .build());
    }
}
Content copied to clipboard

Import

Front Door Security Policies can be imported using the resource id, e.g.

$ pulumi import azure:cdn/frontdoorSecurityPolicy:FrontdoorSecurityPolicy example /subscriptions/00000000-0000-0000-0000-000000000000/resourceGroups/resourceGroup1/providers/Microsoft.Cdn/profiles/profile1/securityPolicies/policy1
Content copied to clipboard

*/

Properties

Link copied to clipboard
val cdnFrontdoorProfileId: Output<String>

The Front Door Profile Resource Id that is linked to this Front Door Security Policy. Changing this forces a new Front Door Security Policy to be created.

Link copied to clipboard
val id: Output<String>
Link copied to clipboard
val name: Output<String>

The name which should be used for this Front Door Security Policy. Possible values must not be an empty string. Changing this forces a new Front Door Security Policy to be created.

Link copied to clipboard
val pulumiChildResources: Set<KotlinResource>
Link copied to clipboard
Link copied to clipboard
Link copied to clipboard
val securityPolicies: Output<FrontdoorSecurityPolicySecurityPolicies>

An security_policies block as defined below. Changing this forces a new Front Door Security Policy to be created.

Link copied to clipboard
val urn: Output<String>