Federated
data class FederatedIdentityCredentialArgs(val audience: Output<String>? = null, val issuer: Output<String>? = null, val name: Output<String>? = null, val parentId: Output<String>? = null, val resourceGroupName: Output<String>? = null, val subject: Output<String>? = null) : ConvertibleToJava<FederatedIdentityCredentialArgs>
Manages a Federated Identity Credential.
Example Usage
import * as pulumi from "@pulumi/pulumi";
import * as azure from "@pulumi/azure";
const example = new azure.core.ResourceGroup("example", {
name: "example",
location: "West Europe",
});
const exampleUserAssignedIdentity = new azure.authorization.UserAssignedIdentity("example", {
location: example.location,
name: "example",
resourceGroupName: example.name,
});
const exampleFederatedIdentityCredential = new azure.armmsi.FederatedIdentityCredential("example", {
name: "example",
resourceGroupName: example.name,
audience: "foo",
issuer: "https://foo",
parentId: exampleUserAssignedIdentity.id,
subject: "foo",
});Content copied to clipboard
import pulumi
import pulumi_azure as azure
example = azure.core.ResourceGroup("example",
name="example",
location="West Europe")
example_user_assigned_identity = azure.authorization.UserAssignedIdentity("example",
location=example.location,
name="example",
resource_group_name=example.name)
example_federated_identity_credential = azure.armmsi.FederatedIdentityCredential("example",
name="example",
resource_group_name=example.name,
audience="foo",
issuer="https://foo",
parent_id=example_user_assigned_identity.id,
subject="foo")Content copied to clipboard
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using Azure = Pulumi.Azure;
return await Deployment.RunAsync(() =>
{
var example = new Azure.Core.ResourceGroup("example", new()
{
Name = "example",
Location = "West Europe",
});
var exampleUserAssignedIdentity = new Azure.Authorization.UserAssignedIdentity("example", new()
{
Location = example.Location,
Name = "example",
ResourceGroupName = example.Name,
});
var exampleFederatedIdentityCredential = new Azure.ArmMsi.FederatedIdentityCredential("example", new()
{
Name = "example",
ResourceGroupName = example.Name,
Audience = "foo",
Issuer = "https://foo",
ParentId = exampleUserAssignedIdentity.Id,
Subject = "foo",
});
});Content copied to clipboard
package main
import (
"github.com/pulumi/pulumi-azure/sdk/v6/go/azure/armmsi"
"github.com/pulumi/pulumi-azure/sdk/v6/go/azure/authorization"
"github.com/pulumi/pulumi-azure/sdk/v6/go/azure/core"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
example, err := core.NewResourceGroup(ctx, "example", &core.ResourceGroupArgs{
Name: pulumi.String("example"),
Location: pulumi.String("West Europe"),
})
if err != nil {
return err
}
exampleUserAssignedIdentity, err := authorization.NewUserAssignedIdentity(ctx, "example", &authorization.UserAssignedIdentityArgs{
Location: example.Location,
Name: pulumi.String("example"),
ResourceGroupName: example.Name,
})
if err != nil {
return err
}
_, err = armmsi.NewFederatedIdentityCredential(ctx, "example", &armmsi.FederatedIdentityCredentialArgs{
Name: pulumi.String("example"),
ResourceGroupName: example.Name,
Audience: pulumi.String("foo"),
Issuer: pulumi.String("https://foo"),
ParentId: exampleUserAssignedIdentity.ID(),
Subject: pulumi.String("foo"),
})
if err != nil {
return err
}
return nil
})
}Content copied to clipboard
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.azure.core.ResourceGroup;
import com.pulumi.azure.core.ResourceGroupArgs;
import com.pulumi.azure.authorization.UserAssignedIdentity;
import com.pulumi.azure.authorization.UserAssignedIdentityArgs;
import com.pulumi.azure.armmsi.FederatedIdentityCredential;
import com.pulumi.azure.armmsi.FederatedIdentityCredentialArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
var example = new ResourceGroup("example", ResourceGroupArgs.builder()
.name("example")
.location("West Europe")
.build());
var exampleUserAssignedIdentity = new UserAssignedIdentity("exampleUserAssignedIdentity", UserAssignedIdentityArgs.builder()
.location(example.location())
.name("example")
.resourceGroupName(example.name())
.build());
var exampleFederatedIdentityCredential = new FederatedIdentityCredential("exampleFederatedIdentityCredential", FederatedIdentityCredentialArgs.builder()
.name("example")
.resourceGroupName(example.name())
.audience("foo")
.issuer("https://foo")
.parentId(exampleUserAssignedIdentity.id())
.subject("foo")
.build());
}
}Content copied to clipboard
resources:
example:
type: azure:core:ResourceGroup
properties:
name: example
location: West Europe
exampleUserAssignedIdentity:
type: azure:authorization:UserAssignedIdentity
name: example
properties:
location: ${example.location}
name: example
resourceGroupName: ${example.name}
exampleFederatedIdentityCredential:
type: azure:armmsi:FederatedIdentityCredential
name: example
properties:
name: example
resourceGroupName: ${example.name}
audience: foo
issuer: https://foo
parentId: ${exampleUserAssignedIdentity.id}
subject: fooContent copied to clipboard
Import
An existing Federated Identity Credential can be imported into Pulumi using the resource id, e.g.
$ pulumi import azure:armmsi/federatedIdentityCredential:FederatedIdentityCredential example /subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.ManagedIdentity/userAssignedIdentities/{parentIdentityName}/federatedIdentityCredentials/{resourceName}Content copied to clipboard