1. Docs
  2. Pulumi ESC
  3. Integrations
  4. Dynamic login credentials
  5. azure-login

azure-login

    The azure-login provider enables you to log in to Azure using OpenID Connect or by providing static credentials. The provider will return a set of credentials that can be used to access Azure resources or fetch secrets using the azure-secrets provider.

    Example

      azure:
        login:
          fn::open::azure-login:
            clientId: aaaaaaaa-bbbb-cccc-dddd-eeeeeeeeeeee
            tenantId: aaaaaaaa-bbbb-cccc-dddd-eeeeeeeeeeee
            subscriptionId: /subscriptions/00000000-0000-0000-0000-000000000000
            oidc: true
    

    Configuring OIDC

    To learn how to configure OpenID Connect (OIDC) between Pulumi Cloud and Azure, see the OpenID Connect integration documentation.

    Inputs

    PropertyTypeDescription
    clientIdstringThe client ID to use
    tenantIdstringThe tenant ID to use
    subscriptionIdstringThe subscription ID to use
    clientSecretstring[Optional] - The client secret to use for authentication, if any.
    oidcbool[Optional] - Whether to use OIDC to log in. Defaults to false.
    subjectAttributesstring[][Optional] - Subject attributes to be included in the OIDC token. For more information see the see the OpenID subject customization documentation

    Outputs

    PropertyTypeDescription
    clientIdstringThe configured client ID
    tenantIdstringThe configured tenant ID
    subscriptionIdstringThe configured subscription ID
    clientSecretstring[Optional] - The client secret used for authentication, if any.
    oidcAzureLoginOIDC[Optional] - OIDC-related data, if OIDC is used for authentication.

    AzureLoginOIDC

    PropertyTypeDescription
    tokenstringThe OIDC token to use for authentication.
      PulumiUP 2024. Watch On Demand.