pulumi-azure-kotlin/com.pulumi.azure.keyvault.kotlin/KeyvaultFunctions/getCertificateData

getCertificateData

suspend fun getCertificateData(argument: GetCertificateDataPlainArgs): GetCertificateDataResult

Use this data source to access data stored in an existing Key Vault Certificate.

Note: This data source uses the GetSecret function of the Azure API, to get the key of the certificate. Therefore you need secret/get permission

Example Usage

import * as pulumi from "@pulumi/pulumi";
import * as azure from "@pulumi/azure";
const example = azure.keyvault.getKeyVault({
    name: "examplekv",
    resourceGroupName: "some-resource-group",
});
const exampleGetCertificateData = example.then(example => azure.keyvault.getCertificateData({
    name: "secret-sauce",
    keyVaultId: example.id,
}));
export const examplePem = exampleGetCertificateData.then(exampleGetCertificateData => exampleGetCertificateData.pem);
Content copied to clipboard
import pulumi
import pulumi_azure as azure
example = azure.keyvault.get_key_vault(name="examplekv",
    resource_group_name="some-resource-group")
example_get_certificate_data = azure.keyvault.get_certificate_data(name="secret-sauce",
    key_vault_id=example.id)
pulumi.export("examplePem", example_get_certificate_data.pem)
Content copied to clipboard
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using Azure = Pulumi.Azure;
return await Deployment.RunAsync(() =>
{
    var example = Azure.KeyVault.GetKeyVault.Invoke(new()
    {
        Name = "examplekv",
        ResourceGroupName = "some-resource-group",
    });
    var exampleGetCertificateData = Azure.KeyVault.GetCertificateData.Invoke(new()
    {
        Name = "secret-sauce",
        KeyVaultId = example.Apply(getKeyVaultResult => getKeyVaultResult.Id),
    });
    return new Dictionary<string, object?>
    {
        ["examplePem"] = exampleGetCertificateData.Apply(getCertificateDataResult => getCertificateDataResult.Pem),
    };
});
Content copied to clipboard
package main
import (
	"github.com/pulumi/pulumi-azure/sdk/v6/go/azure/keyvault"
	"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
	pulumi.Run(func(ctx *pulumi.Context) error {
		example, err := keyvault.LookupKeyVault(ctx, &keyvault.LookupKeyVaultArgs{
			Name:              "examplekv",
			ResourceGroupName: "some-resource-group",
		}, nil)
		if err != nil {
			return err
		}
		exampleGetCertificateData, err := keyvault.GetCertificateData(ctx, &keyvault.GetCertificateDataArgs{
			Name:       "secret-sauce",
			KeyVaultId: example.Id,
		}, nil)
		if err != nil {
			return err
		}
		ctx.Export("examplePem", exampleGetCertificateData.Pem)
		return nil
	})
}
Content copied to clipboard
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.azure.keyvault.KeyvaultFunctions;
import com.pulumi.azure.keyvault.inputs.GetKeyVaultArgs;
import com.pulumi.azure.keyvault.inputs.GetCertificateDataArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
    public static void main(String[] args) {
        Pulumi.run(App::stack);
    }
    public static void stack(Context ctx) {
        final var example = KeyvaultFunctions.getKeyVault(GetKeyVaultArgs.builder()
            .name("examplekv")
            .resourceGroupName("some-resource-group")
            .build());
        final var exampleGetCertificateData = KeyvaultFunctions.getCertificateData(GetCertificateDataArgs.builder()
            .name("secret-sauce")
            .keyVaultId(example.applyValue(getKeyVaultResult -> getKeyVaultResult.id()))
            .build());
        ctx.export("examplePem", exampleGetCertificateData.applyValue(getCertificateDataResult -> getCertificateDataResult.pem()));
    }
}
Content copied to clipboard
variables:
  example:
    fn::invoke:
      function: azure:keyvault:getKeyVault
      arguments:
        name: examplekv
        resourceGroupName: some-resource-group
  exampleGetCertificateData:
    fn::invoke:
      function: azure:keyvault:getCertificateData
      arguments:
        name: secret-sauce
        keyVaultId: ${example.id}
outputs:
  examplePem: ${exampleGetCertificateData.pem}
Content copied to clipboard

Return

A collection of values returned by getCertificateData.

Parameters

argument

A collection of arguments for invoking getCertificateData.

suspend fun getCertificateData(keyVaultId: String, name: String, version: String? = null): GetCertificateDataResult

Return

A collection of values returned by getCertificateData.

Parameters

keyVaultId

Specifies the ID of the Key Vault instance where the Secret resides, available on the azure.keyvault.KeyVault Data Source / Resource.

name

Specifies the name of the Key Vault Secret.

version

Specifies the version of the certificate to look up. (Defaults to latest)

NOTE: The vault must be in the same subscription as the provider. If the vault is in another subscription, you must create an aliased provider for that subscription.

See also

.

suspend fun getCertificateData(argument: suspend GetCertificateDataPlainArgsBuilder.() -> Unit): GetCertificateDataResult

Return

A collection of values returned by getCertificateData.

Parameters

argument

Builder for com.pulumi.azure.keyvault.kotlin.inputs.GetCertificateDataPlainArgs.

See also

.