1. Packages
  2. Azure Native
  3. API Docs
  4. apimanagement
  5. AuthorizationServer
This is the latest version of Azure Native. Use the Azure Native v1 docs if using the v1 version of this package.
Azure Native v2.8.0 published on Monday, Sep 18, 2023 by Pulumi

azure-native.apimanagement.AuthorizationServer

Explore with Pulumi AI

azure-native logo
This is the latest version of Azure Native. Use the Azure Native v1 docs if using the v1 version of this package.
Azure Native v2.8.0 published on Monday, Sep 18, 2023 by Pulumi

    External OAuth authorization server settings. Azure REST API version: 2022-08-01. Prior API version in Azure Native 1.x: 2020-12-01

    Example Usage

    ApiManagementCreateAuthorizationServer

    using System.Collections.Generic;
    using System.Linq;
    using Pulumi;
    using AzureNative = Pulumi.AzureNative;
    
    return await Deployment.RunAsync(() => 
    {
        var authorizationServer = new AzureNative.ApiManagement.AuthorizationServer("authorizationServer", new()
        {
            AuthorizationEndpoint = "https://www.contoso.com/oauth2/auth",
            AuthorizationMethods = new[]
            {
                AzureNative.ApiManagement.AuthorizationMethod.GET,
            },
            Authsid = "newauthServer",
            BearerTokenSendingMethods = new[]
            {
                "authorizationHeader",
            },
            ClientId = "1",
            ClientRegistrationEndpoint = "https://www.contoso.com/apps",
            ClientSecret = "2",
            DefaultScope = "read write",
            Description = "test server",
            DisplayName = "test2",
            GrantTypes = new[]
            {
                "authorizationCode",
                "implicit",
            },
            ResourceGroupName = "rg1",
            ResourceOwnerPassword = "pwd",
            ResourceOwnerUsername = "un",
            ServiceName = "apimService1",
            SupportState = true,
            TokenEndpoint = "https://www.contoso.com/oauth2/token",
            UseInApiDocumentation = true,
            UseInTestConsole = false,
        });
    
    });
    
    package main
    
    import (
    	"github.com/pulumi/pulumi-azure-native-sdk/apimanagement/v2"
    	"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
    )
    
    func main() {
    	pulumi.Run(func(ctx *pulumi.Context) error {
    		_, err := apimanagement.NewAuthorizationServer(ctx, "authorizationServer", &apimanagement.AuthorizationServerArgs{
    			AuthorizationEndpoint: pulumi.String("https://www.contoso.com/oauth2/auth"),
    			AuthorizationMethods: []apimanagement.AuthorizationMethod{
    				apimanagement.AuthorizationMethodGET,
    			},
    			Authsid: pulumi.String("newauthServer"),
    			BearerTokenSendingMethods: pulumi.StringArray{
    				pulumi.String("authorizationHeader"),
    			},
    			ClientId:                   pulumi.String("1"),
    			ClientRegistrationEndpoint: pulumi.String("https://www.contoso.com/apps"),
    			ClientSecret:               pulumi.String("2"),
    			DefaultScope:               pulumi.String("read write"),
    			Description:                pulumi.String("test server"),
    			DisplayName:                pulumi.String("test2"),
    			GrantTypes: pulumi.StringArray{
    				pulumi.String("authorizationCode"),
    				pulumi.String("implicit"),
    			},
    			ResourceGroupName:     pulumi.String("rg1"),
    			ResourceOwnerPassword: pulumi.String("pwd"),
    			ResourceOwnerUsername: pulumi.String("un"),
    			ServiceName:           pulumi.String("apimService1"),
    			SupportState:          pulumi.Bool(true),
    			TokenEndpoint:         pulumi.String("https://www.contoso.com/oauth2/token"),
    			UseInApiDocumentation: pulumi.Bool(true),
    			UseInTestConsole:      pulumi.Bool(false),
    		})
    		if err != nil {
    			return err
    		}
    		return nil
    	})
    }
    
    package generated_program;
    
    import com.pulumi.Context;
    import com.pulumi.Pulumi;
    import com.pulumi.core.Output;
    import com.pulumi.azurenative.apimanagement.AuthorizationServer;
    import com.pulumi.azurenative.apimanagement.AuthorizationServerArgs;
    import java.util.List;
    import java.util.ArrayList;
    import java.util.Map;
    import java.io.File;
    import java.nio.file.Files;
    import java.nio.file.Paths;
    
    public class App {
        public static void main(String[] args) {
            Pulumi.run(App::stack);
        }
    
        public static void stack(Context ctx) {
            var authorizationServer = new AuthorizationServer("authorizationServer", AuthorizationServerArgs.builder()        
                .authorizationEndpoint("https://www.contoso.com/oauth2/auth")
                .authorizationMethods("GET")
                .authsid("newauthServer")
                .bearerTokenSendingMethods("authorizationHeader")
                .clientId("1")
                .clientRegistrationEndpoint("https://www.contoso.com/apps")
                .clientSecret("2")
                .defaultScope("read write")
                .description("test server")
                .displayName("test2")
                .grantTypes(            
                    "authorizationCode",
                    "implicit")
                .resourceGroupName("rg1")
                .resourceOwnerPassword("pwd")
                .resourceOwnerUsername("un")
                .serviceName("apimService1")
                .supportState(true)
                .tokenEndpoint("https://www.contoso.com/oauth2/token")
                .useInApiDocumentation(true)
                .useInTestConsole(false)
                .build());
    
        }
    }
    
    import pulumi
    import pulumi_azure_native as azure_native
    
    authorization_server = azure_native.apimanagement.AuthorizationServer("authorizationServer",
        authorization_endpoint="https://www.contoso.com/oauth2/auth",
        authorization_methods=[azure_native.apimanagement.AuthorizationMethod.GET],
        authsid="newauthServer",
        bearer_token_sending_methods=["authorizationHeader"],
        client_id="1",
        client_registration_endpoint="https://www.contoso.com/apps",
        client_secret="2",
        default_scope="read write",
        description="test server",
        display_name="test2",
        grant_types=[
            "authorizationCode",
            "implicit",
        ],
        resource_group_name="rg1",
        resource_owner_password="pwd",
        resource_owner_username="un",
        service_name="apimService1",
        support_state=True,
        token_endpoint="https://www.contoso.com/oauth2/token",
        use_in_api_documentation=True,
        use_in_test_console=False)
    
    import * as pulumi from "@pulumi/pulumi";
    import * as azure_native from "@pulumi/azure-native";
    
    const authorizationServer = new azure_native.apimanagement.AuthorizationServer("authorizationServer", {
        authorizationEndpoint: "https://www.contoso.com/oauth2/auth",
        authorizationMethods: [azure_native.apimanagement.AuthorizationMethod.GET],
        authsid: "newauthServer",
        bearerTokenSendingMethods: ["authorizationHeader"],
        clientId: "1",
        clientRegistrationEndpoint: "https://www.contoso.com/apps",
        clientSecret: "2",
        defaultScope: "read write",
        description: "test server",
        displayName: "test2",
        grantTypes: [
            "authorizationCode",
            "implicit",
        ],
        resourceGroupName: "rg1",
        resourceOwnerPassword: "pwd",
        resourceOwnerUsername: "un",
        serviceName: "apimService1",
        supportState: true,
        tokenEndpoint: "https://www.contoso.com/oauth2/token",
        useInApiDocumentation: true,
        useInTestConsole: false,
    });
    
    resources:
      authorizationServer:
        type: azure-native:apimanagement:AuthorizationServer
        properties:
          authorizationEndpoint: https://www.contoso.com/oauth2/auth
          authorizationMethods:
            - GET
          authsid: newauthServer
          bearerTokenSendingMethods:
            - authorizationHeader
          clientId: '1'
          clientRegistrationEndpoint: https://www.contoso.com/apps
          clientSecret: '2'
          defaultScope: read write
          description: test server
          displayName: test2
          grantTypes:
            - authorizationCode
            - implicit
          resourceGroupName: rg1
          resourceOwnerPassword: pwd
          resourceOwnerUsername: un
          serviceName: apimService1
          supportState: true
          tokenEndpoint: https://www.contoso.com/oauth2/token
          useInApiDocumentation: true
          useInTestConsole: false
    

    Create AuthorizationServer Resource

    new AuthorizationServer(name: string, args: AuthorizationServerArgs, opts?: CustomResourceOptions);
    @overload
    def AuthorizationServer(resource_name: str,
                            opts: Optional[ResourceOptions] = None,
                            authorization_endpoint: Optional[str] = None,
                            authorization_methods: Optional[Sequence[AuthorizationMethod]] = None,
                            authsid: Optional[str] = None,
                            bearer_token_sending_methods: Optional[Sequence[Union[str, BearerTokenSendingMethod]]] = None,
                            client_authentication_method: Optional[Sequence[Union[str, ClientAuthenticationMethod]]] = None,
                            client_id: Optional[str] = None,
                            client_registration_endpoint: Optional[str] = None,
                            client_secret: Optional[str] = None,
                            default_scope: Optional[str] = None,
                            description: Optional[str] = None,
                            display_name: Optional[str] = None,
                            grant_types: Optional[Sequence[Union[str, GrantType]]] = None,
                            resource_group_name: Optional[str] = None,
                            resource_owner_password: Optional[str] = None,
                            resource_owner_username: Optional[str] = None,
                            service_name: Optional[str] = None,
                            support_state: Optional[bool] = None,
                            token_body_parameters: Optional[Sequence[TokenBodyParameterContractArgs]] = None,
                            token_endpoint: Optional[str] = None,
                            use_in_api_documentation: Optional[bool] = None,
                            use_in_test_console: Optional[bool] = None)
    @overload
    def AuthorizationServer(resource_name: str,
                            args: AuthorizationServerArgs,
                            opts: Optional[ResourceOptions] = None)
    func NewAuthorizationServer(ctx *Context, name string, args AuthorizationServerArgs, opts ...ResourceOption) (*AuthorizationServer, error)
    public AuthorizationServer(string name, AuthorizationServerArgs args, CustomResourceOptions? opts = null)
    public AuthorizationServer(String name, AuthorizationServerArgs args)
    public AuthorizationServer(String name, AuthorizationServerArgs args, CustomResourceOptions options)
    
    type: azure-native:apimanagement:AuthorizationServer
    properties: # The arguments to resource properties.
    options: # Bag of options to control resource's behavior.
    
    
    name string
    The unique name of the resource.
    args AuthorizationServerArgs
    The arguments to resource properties.
    opts CustomResourceOptions
    Bag of options to control resource's behavior.
    resource_name str
    The unique name of the resource.
    args AuthorizationServerArgs
    The arguments to resource properties.
    opts ResourceOptions
    Bag of options to control resource's behavior.
    ctx Context
    Context object for the current deployment.
    name string
    The unique name of the resource.
    args AuthorizationServerArgs
    The arguments to resource properties.
    opts ResourceOption
    Bag of options to control resource's behavior.
    name string
    The unique name of the resource.
    args AuthorizationServerArgs
    The arguments to resource properties.
    opts CustomResourceOptions
    Bag of options to control resource's behavior.
    name String
    The unique name of the resource.
    args AuthorizationServerArgs
    The arguments to resource properties.
    options CustomResourceOptions
    Bag of options to control resource's behavior.

    AuthorizationServer Resource Properties

    To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.

    Inputs

    The AuthorizationServer resource accepts the following input properties:

    AuthorizationEndpoint string

    OAuth authorization endpoint. See http://tools.ietf.org/html/rfc6749#section-3.2.

    ClientId string

    Client or app id registered with this authorization server.

    ClientRegistrationEndpoint string

    Optional reference to a page where client or app registration for this authorization server is performed. Contains absolute URL to entity being referenced.

    DisplayName string

    User-friendly authorization server name.

    GrantTypes List<Union<string, Pulumi.AzureNative.ApiManagement.GrantType>>

    Form of an authorization grant, which the client uses to request the access token.

    ResourceGroupName string

    The name of the resource group. The name is case insensitive.

    ServiceName string

    The name of the API Management service.

    AuthorizationMethods List<Pulumi.AzureNative.ApiManagement.AuthorizationMethod>

    HTTP verbs supported by the authorization endpoint. GET must be always present. POST is optional.

    Authsid string

    Identifier of the authorization server.

    BearerTokenSendingMethods List<Union<string, Pulumi.AzureNative.ApiManagement.BearerTokenSendingMethod>>

    Specifies the mechanism by which access token is passed to the API.

    ClientAuthenticationMethod List<Union<string, Pulumi.AzureNative.ApiManagement.ClientAuthenticationMethod>>

    Method of authentication supported by the token endpoint of this authorization server. Possible values are Basic and/or Body. When Body is specified, client credentials and other parameters are passed within the request body in the application/x-www-form-urlencoded format.

    ClientSecret string

    Client or app secret registered with this authorization server. This property will not be filled on 'GET' operations! Use '/listSecrets' POST request to get the value.

    DefaultScope string

    Access token scope that is going to be requested by default. Can be overridden at the API level. Should be provided in the form of a string containing space-delimited values.

    Description string

    Description of the authorization server. Can contain HTML formatting tags.

    ResourceOwnerPassword string

    Can be optionally specified when resource owner password grant type is supported by this authorization server. Default resource owner password.

    ResourceOwnerUsername string

    Can be optionally specified when resource owner password grant type is supported by this authorization server. Default resource owner username.

    SupportState bool

    If true, authorization server will include state parameter from the authorization request to its response. Client may use state parameter to raise protocol security.

    TokenBodyParameters List<Pulumi.AzureNative.ApiManagement.Inputs.TokenBodyParameterContract>

    Additional parameters required by the token endpoint of this authorization server represented as an array of JSON objects with name and value string properties, i.e. {"name" : "name value", "value": "a value"}.

    TokenEndpoint string

    OAuth token endpoint. Contains absolute URI to entity being referenced.

    UseInApiDocumentation bool

    If true, the authorization server will be used in the API documentation in the developer portal. False by default if no value is provided.

    UseInTestConsole bool

    If true, the authorization server may be used in the developer portal test console. True by default if no value is provided.

    AuthorizationEndpoint string

    OAuth authorization endpoint. See http://tools.ietf.org/html/rfc6749#section-3.2.

    ClientId string

    Client or app id registered with this authorization server.

    ClientRegistrationEndpoint string

    Optional reference to a page where client or app registration for this authorization server is performed. Contains absolute URL to entity being referenced.

    DisplayName string

    User-friendly authorization server name.

    GrantTypes []string

    Form of an authorization grant, which the client uses to request the access token.

    ResourceGroupName string

    The name of the resource group. The name is case insensitive.

    ServiceName string

    The name of the API Management service.

    AuthorizationMethods []AuthorizationMethod

    HTTP verbs supported by the authorization endpoint. GET must be always present. POST is optional.

    Authsid string

    Identifier of the authorization server.

    BearerTokenSendingMethods []string

    Specifies the mechanism by which access token is passed to the API.

    ClientAuthenticationMethod []string

    Method of authentication supported by the token endpoint of this authorization server. Possible values are Basic and/or Body. When Body is specified, client credentials and other parameters are passed within the request body in the application/x-www-form-urlencoded format.

    ClientSecret string

    Client or app secret registered with this authorization server. This property will not be filled on 'GET' operations! Use '/listSecrets' POST request to get the value.

    DefaultScope string

    Access token scope that is going to be requested by default. Can be overridden at the API level. Should be provided in the form of a string containing space-delimited values.

    Description string

    Description of the authorization server. Can contain HTML formatting tags.

    ResourceOwnerPassword string

    Can be optionally specified when resource owner password grant type is supported by this authorization server. Default resource owner password.

    ResourceOwnerUsername string

    Can be optionally specified when resource owner password grant type is supported by this authorization server. Default resource owner username.

    SupportState bool

    If true, authorization server will include state parameter from the authorization request to its response. Client may use state parameter to raise protocol security.

    TokenBodyParameters []TokenBodyParameterContractArgs

    Additional parameters required by the token endpoint of this authorization server represented as an array of JSON objects with name and value string properties, i.e. {"name" : "name value", "value": "a value"}.

    TokenEndpoint string

    OAuth token endpoint. Contains absolute URI to entity being referenced.

    UseInApiDocumentation bool

    If true, the authorization server will be used in the API documentation in the developer portal. False by default if no value is provided.

    UseInTestConsole bool

    If true, the authorization server may be used in the developer portal test console. True by default if no value is provided.

    authorizationEndpoint String

    OAuth authorization endpoint. See http://tools.ietf.org/html/rfc6749#section-3.2.

    clientId String

    Client or app id registered with this authorization server.

    clientRegistrationEndpoint String

    Optional reference to a page where client or app registration for this authorization server is performed. Contains absolute URL to entity being referenced.

    displayName String

    User-friendly authorization server name.

    grantTypes List<Either<String,GrantType>>

    Form of an authorization grant, which the client uses to request the access token.

    resourceGroupName String

    The name of the resource group. The name is case insensitive.

    serviceName String

    The name of the API Management service.

    authorizationMethods List<AuthorizationMethod>

    HTTP verbs supported by the authorization endpoint. GET must be always present. POST is optional.

    authsid String

    Identifier of the authorization server.

    bearerTokenSendingMethods List<Either<String,BearerTokenSendingMethod>>

    Specifies the mechanism by which access token is passed to the API.

    clientAuthenticationMethod List<Either<String,ClientAuthenticationMethod>>

    Method of authentication supported by the token endpoint of this authorization server. Possible values are Basic and/or Body. When Body is specified, client credentials and other parameters are passed within the request body in the application/x-www-form-urlencoded format.

    clientSecret String

    Client or app secret registered with this authorization server. This property will not be filled on 'GET' operations! Use '/listSecrets' POST request to get the value.

    defaultScope String

    Access token scope that is going to be requested by default. Can be overridden at the API level. Should be provided in the form of a string containing space-delimited values.

    description String

    Description of the authorization server. Can contain HTML formatting tags.

    resourceOwnerPassword String

    Can be optionally specified when resource owner password grant type is supported by this authorization server. Default resource owner password.

    resourceOwnerUsername String

    Can be optionally specified when resource owner password grant type is supported by this authorization server. Default resource owner username.

    supportState Boolean

    If true, authorization server will include state parameter from the authorization request to its response. Client may use state parameter to raise protocol security.

    tokenBodyParameters List<TokenBodyParameterContract>

    Additional parameters required by the token endpoint of this authorization server represented as an array of JSON objects with name and value string properties, i.e. {"name" : "name value", "value": "a value"}.

    tokenEndpoint String

    OAuth token endpoint. Contains absolute URI to entity being referenced.

    useInApiDocumentation Boolean

    If true, the authorization server will be used in the API documentation in the developer portal. False by default if no value is provided.

    useInTestConsole Boolean

    If true, the authorization server may be used in the developer portal test console. True by default if no value is provided.

    authorizationEndpoint string

    OAuth authorization endpoint. See http://tools.ietf.org/html/rfc6749#section-3.2.

    clientId string

    Client or app id registered with this authorization server.

    clientRegistrationEndpoint string

    Optional reference to a page where client or app registration for this authorization server is performed. Contains absolute URL to entity being referenced.

    displayName string

    User-friendly authorization server name.

    grantTypes (string | GrantType)[]

    Form of an authorization grant, which the client uses to request the access token.

    resourceGroupName string

    The name of the resource group. The name is case insensitive.

    serviceName string

    The name of the API Management service.

    authorizationMethods AuthorizationMethod[]

    HTTP verbs supported by the authorization endpoint. GET must be always present. POST is optional.

    authsid string

    Identifier of the authorization server.

    bearerTokenSendingMethods (string | BearerTokenSendingMethod)[]

    Specifies the mechanism by which access token is passed to the API.

    clientAuthenticationMethod (string | ClientAuthenticationMethod)[]

    Method of authentication supported by the token endpoint of this authorization server. Possible values are Basic and/or Body. When Body is specified, client credentials and other parameters are passed within the request body in the application/x-www-form-urlencoded format.

    clientSecret string

    Client or app secret registered with this authorization server. This property will not be filled on 'GET' operations! Use '/listSecrets' POST request to get the value.

    defaultScope string

    Access token scope that is going to be requested by default. Can be overridden at the API level. Should be provided in the form of a string containing space-delimited values.

    description string

    Description of the authorization server. Can contain HTML formatting tags.

    resourceOwnerPassword string

    Can be optionally specified when resource owner password grant type is supported by this authorization server. Default resource owner password.

    resourceOwnerUsername string

    Can be optionally specified when resource owner password grant type is supported by this authorization server. Default resource owner username.

    supportState boolean

    If true, authorization server will include state parameter from the authorization request to its response. Client may use state parameter to raise protocol security.

    tokenBodyParameters TokenBodyParameterContract[]

    Additional parameters required by the token endpoint of this authorization server represented as an array of JSON objects with name and value string properties, i.e. {"name" : "name value", "value": "a value"}.

    tokenEndpoint string

    OAuth token endpoint. Contains absolute URI to entity being referenced.

    useInApiDocumentation boolean

    If true, the authorization server will be used in the API documentation in the developer portal. False by default if no value is provided.

    useInTestConsole boolean

    If true, the authorization server may be used in the developer portal test console. True by default if no value is provided.

    authorization_endpoint str

    OAuth authorization endpoint. See http://tools.ietf.org/html/rfc6749#section-3.2.

    client_id str

    Client or app id registered with this authorization server.

    client_registration_endpoint str

    Optional reference to a page where client or app registration for this authorization server is performed. Contains absolute URL to entity being referenced.

    display_name str

    User-friendly authorization server name.

    grant_types Sequence[Union[str, GrantType]]

    Form of an authorization grant, which the client uses to request the access token.

    resource_group_name str

    The name of the resource group. The name is case insensitive.

    service_name str

    The name of the API Management service.

    authorization_methods Sequence[AuthorizationMethod]

    HTTP verbs supported by the authorization endpoint. GET must be always present. POST is optional.

    authsid str

    Identifier of the authorization server.

    bearer_token_sending_methods Sequence[Union[str, BearerTokenSendingMethod]]

    Specifies the mechanism by which access token is passed to the API.

    client_authentication_method Sequence[Union[str, ClientAuthenticationMethod]]

    Method of authentication supported by the token endpoint of this authorization server. Possible values are Basic and/or Body. When Body is specified, client credentials and other parameters are passed within the request body in the application/x-www-form-urlencoded format.

    client_secret str

    Client or app secret registered with this authorization server. This property will not be filled on 'GET' operations! Use '/listSecrets' POST request to get the value.

    default_scope str

    Access token scope that is going to be requested by default. Can be overridden at the API level. Should be provided in the form of a string containing space-delimited values.

    description str

    Description of the authorization server. Can contain HTML formatting tags.

    resource_owner_password str

    Can be optionally specified when resource owner password grant type is supported by this authorization server. Default resource owner password.

    resource_owner_username str

    Can be optionally specified when resource owner password grant type is supported by this authorization server. Default resource owner username.

    support_state bool

    If true, authorization server will include state parameter from the authorization request to its response. Client may use state parameter to raise protocol security.

    token_body_parameters Sequence[TokenBodyParameterContractArgs]

    Additional parameters required by the token endpoint of this authorization server represented as an array of JSON objects with name and value string properties, i.e. {"name" : "name value", "value": "a value"}.

    token_endpoint str

    OAuth token endpoint. Contains absolute URI to entity being referenced.

    use_in_api_documentation bool

    If true, the authorization server will be used in the API documentation in the developer portal. False by default if no value is provided.

    use_in_test_console bool

    If true, the authorization server may be used in the developer portal test console. True by default if no value is provided.

    authorizationEndpoint String

    OAuth authorization endpoint. See http://tools.ietf.org/html/rfc6749#section-3.2.

    clientId String

    Client or app id registered with this authorization server.

    clientRegistrationEndpoint String

    Optional reference to a page where client or app registration for this authorization server is performed. Contains absolute URL to entity being referenced.

    displayName String

    User-friendly authorization server name.

    grantTypes List<String | "authorizationCode" | "implicit" | "resourceOwnerPassword" | "clientCredentials">

    Form of an authorization grant, which the client uses to request the access token.

    resourceGroupName String

    The name of the resource group. The name is case insensitive.

    serviceName String

    The name of the API Management service.

    authorizationMethods List<"HEAD" | "OPTIONS" | "TRACE" | "GET" | "POST" | "PUT" | "PATCH" | "DELETE">

    HTTP verbs supported by the authorization endpoint. GET must be always present. POST is optional.

    authsid String

    Identifier of the authorization server.

    bearerTokenSendingMethods List<String | "authorizationHeader" | "query">

    Specifies the mechanism by which access token is passed to the API.

    clientAuthenticationMethod List<String | "Basic" | "Body">

    Method of authentication supported by the token endpoint of this authorization server. Possible values are Basic and/or Body. When Body is specified, client credentials and other parameters are passed within the request body in the application/x-www-form-urlencoded format.

    clientSecret String

    Client or app secret registered with this authorization server. This property will not be filled on 'GET' operations! Use '/listSecrets' POST request to get the value.

    defaultScope String

    Access token scope that is going to be requested by default. Can be overridden at the API level. Should be provided in the form of a string containing space-delimited values.

    description String

    Description of the authorization server. Can contain HTML formatting tags.

    resourceOwnerPassword String

    Can be optionally specified when resource owner password grant type is supported by this authorization server. Default resource owner password.

    resourceOwnerUsername String

    Can be optionally specified when resource owner password grant type is supported by this authorization server. Default resource owner username.

    supportState Boolean

    If true, authorization server will include state parameter from the authorization request to its response. Client may use state parameter to raise protocol security.

    tokenBodyParameters List<Property Map>

    Additional parameters required by the token endpoint of this authorization server represented as an array of JSON objects with name and value string properties, i.e. {"name" : "name value", "value": "a value"}.

    tokenEndpoint String

    OAuth token endpoint. Contains absolute URI to entity being referenced.

    useInApiDocumentation Boolean

    If true, the authorization server will be used in the API documentation in the developer portal. False by default if no value is provided.

    useInTestConsole Boolean

    If true, the authorization server may be used in the developer portal test console. True by default if no value is provided.

    Outputs

    All input properties are implicitly available as output properties. Additionally, the AuthorizationServer resource produces the following output properties:

    Id string

    The provider-assigned unique ID for this managed resource.

    Name string

    The name of the resource

    Type string

    The type of the resource. E.g. "Microsoft.Compute/virtualMachines" or "Microsoft.Storage/storageAccounts"

    Id string

    The provider-assigned unique ID for this managed resource.

    Name string

    The name of the resource

    Type string

    The type of the resource. E.g. "Microsoft.Compute/virtualMachines" or "Microsoft.Storage/storageAccounts"

    id String

    The provider-assigned unique ID for this managed resource.

    name String

    The name of the resource

    type String

    The type of the resource. E.g. "Microsoft.Compute/virtualMachines" or "Microsoft.Storage/storageAccounts"

    id string

    The provider-assigned unique ID for this managed resource.

    name string

    The name of the resource

    type string

    The type of the resource. E.g. "Microsoft.Compute/virtualMachines" or "Microsoft.Storage/storageAccounts"

    id str

    The provider-assigned unique ID for this managed resource.

    name str

    The name of the resource

    type str

    The type of the resource. E.g. "Microsoft.Compute/virtualMachines" or "Microsoft.Storage/storageAccounts"

    id String

    The provider-assigned unique ID for this managed resource.

    name String

    The name of the resource

    type String

    The type of the resource. E.g. "Microsoft.Compute/virtualMachines" or "Microsoft.Storage/storageAccounts"

    Supporting Types

    AuthorizationMethod, AuthorizationMethodArgs

    HEAD
    HEAD
    OPTIONS
    OPTIONS
    TRACE
    TRACE
    GET
    GET
    POST
    POST
    PUT
    PUT
    PATCH
    PATCH
    DELETE
    DELETE
    AuthorizationMethodHEAD
    HEAD
    AuthorizationMethodOPTIONS
    OPTIONS
    AuthorizationMethodTRACE
    TRACE
    AuthorizationMethodGET
    GET
    AuthorizationMethodPOST
    POST
    AuthorizationMethodPUT
    PUT
    AuthorizationMethodPATCH
    PATCH
    AuthorizationMethodDELETE
    DELETE
    HEAD
    HEAD
    OPTIONS
    OPTIONS
    TRACE
    TRACE
    GET
    GET
    POST
    POST
    PUT
    PUT
    PATCH
    PATCH
    DELETE
    DELETE
    HEAD
    HEAD
    OPTIONS
    OPTIONS
    TRACE
    TRACE
    GET
    GET
    POST
    POST
    PUT
    PUT
    PATCH
    PATCH
    DELETE
    DELETE
    HEAD
    HEAD
    OPTIONS
    OPTIONS
    TRACE
    TRACE
    GET
    GET
    POST
    POST
    PUT
    PUT
    PATCH
    PATCH
    DELETE
    DELETE
    "HEAD"
    HEAD
    "OPTIONS"
    OPTIONS
    "TRACE"
    TRACE
    "GET"
    GET
    "POST"
    POST
    "PUT"
    PUT
    "PATCH"
    PATCH
    "DELETE"
    DELETE

    BearerTokenSendingMethod, BearerTokenSendingMethodArgs

    AuthorizationHeader
    authorizationHeader
    Query
    query
    BearerTokenSendingMethodAuthorizationHeader
    authorizationHeader
    BearerTokenSendingMethodQuery
    query
    AuthorizationHeader
    authorizationHeader
    Query
    query
    AuthorizationHeader
    authorizationHeader
    Query
    query
    AUTHORIZATION_HEADER
    authorizationHeader
    QUERY
    query
    "authorizationHeader"
    authorizationHeader
    "query"
    query

    ClientAuthenticationMethod, ClientAuthenticationMethodArgs

    Basic
    Basic

    Basic Client Authentication method.

    Body
    Body

    Body based Authentication method.

    ClientAuthenticationMethodBasic
    Basic

    Basic Client Authentication method.

    ClientAuthenticationMethodBody
    Body

    Body based Authentication method.

    Basic
    Basic

    Basic Client Authentication method.

    Body
    Body

    Body based Authentication method.

    Basic
    Basic

    Basic Client Authentication method.

    Body
    Body

    Body based Authentication method.

    BASIC
    Basic

    Basic Client Authentication method.

    BODY
    Body

    Body based Authentication method.

    "Basic"
    Basic

    Basic Client Authentication method.

    "Body"
    Body

    Body based Authentication method.

    GrantType, GrantTypeArgs

    AuthorizationCode
    authorizationCode

    Authorization Code Grant flow as described https://tools.ietf.org/html/rfc6749#section-4.1.

    @Implicit
    implicit

    Implicit Code Grant flow as described https://tools.ietf.org/html/rfc6749#section-4.2.

    ResourceOwnerPassword
    resourceOwnerPassword

    Resource Owner Password Grant flow as described https://tools.ietf.org/html/rfc6749#section-4.3.

    ClientCredentials
    clientCredentials

    Client Credentials Grant flow as described https://tools.ietf.org/html/rfc6749#section-4.4.

    GrantTypeAuthorizationCode
    authorizationCode

    Authorization Code Grant flow as described https://tools.ietf.org/html/rfc6749#section-4.1.

    GrantTypeImplicit
    implicit

    Implicit Code Grant flow as described https://tools.ietf.org/html/rfc6749#section-4.2.

    GrantTypeResourceOwnerPassword
    resourceOwnerPassword

    Resource Owner Password Grant flow as described https://tools.ietf.org/html/rfc6749#section-4.3.

    GrantTypeClientCredentials
    clientCredentials

    Client Credentials Grant flow as described https://tools.ietf.org/html/rfc6749#section-4.4.

    AuthorizationCode
    authorizationCode

    Authorization Code Grant flow as described https://tools.ietf.org/html/rfc6749#section-4.1.

    Implicit
    implicit

    Implicit Code Grant flow as described https://tools.ietf.org/html/rfc6749#section-4.2.

    ResourceOwnerPassword
    resourceOwnerPassword

    Resource Owner Password Grant flow as described https://tools.ietf.org/html/rfc6749#section-4.3.

    ClientCredentials
    clientCredentials

    Client Credentials Grant flow as described https://tools.ietf.org/html/rfc6749#section-4.4.

    AuthorizationCode
    authorizationCode

    Authorization Code Grant flow as described https://tools.ietf.org/html/rfc6749#section-4.1.

    Implicit
    implicit

    Implicit Code Grant flow as described https://tools.ietf.org/html/rfc6749#section-4.2.

    ResourceOwnerPassword
    resourceOwnerPassword

    Resource Owner Password Grant flow as described https://tools.ietf.org/html/rfc6749#section-4.3.

    ClientCredentials
    clientCredentials

    Client Credentials Grant flow as described https://tools.ietf.org/html/rfc6749#section-4.4.

    AUTHORIZATION_CODE
    authorizationCode

    Authorization Code Grant flow as described https://tools.ietf.org/html/rfc6749#section-4.1.

    IMPLICIT
    implicit

    Implicit Code Grant flow as described https://tools.ietf.org/html/rfc6749#section-4.2.

    RESOURCE_OWNER_PASSWORD
    resourceOwnerPassword

    Resource Owner Password Grant flow as described https://tools.ietf.org/html/rfc6749#section-4.3.

    CLIENT_CREDENTIALS
    clientCredentials

    Client Credentials Grant flow as described https://tools.ietf.org/html/rfc6749#section-4.4.

    "authorizationCode"
    authorizationCode

    Authorization Code Grant flow as described https://tools.ietf.org/html/rfc6749#section-4.1.

    "implicit"
    implicit

    Implicit Code Grant flow as described https://tools.ietf.org/html/rfc6749#section-4.2.

    "resourceOwnerPassword"
    resourceOwnerPassword

    Resource Owner Password Grant flow as described https://tools.ietf.org/html/rfc6749#section-4.3.

    "clientCredentials"
    clientCredentials

    Client Credentials Grant flow as described https://tools.ietf.org/html/rfc6749#section-4.4.

    TokenBodyParameterContract, TokenBodyParameterContractArgs

    Name string

    body parameter name.

    Value string

    body parameter value.

    Name string

    body parameter name.

    Value string

    body parameter value.

    name String

    body parameter name.

    value String

    body parameter value.

    name string

    body parameter name.

    value string

    body parameter value.

    name str

    body parameter name.

    value str

    body parameter value.

    name String

    body parameter name.

    value String

    body parameter value.

    TokenBodyParameterContractResponse, TokenBodyParameterContractResponseArgs

    Name string

    body parameter name.

    Value string

    body parameter value.

    Name string

    body parameter name.

    Value string

    body parameter value.

    name String

    body parameter name.

    value String

    body parameter value.

    name string

    body parameter name.

    value string

    body parameter value.

    name str

    body parameter name.

    value str

    body parameter value.

    name String

    body parameter name.

    value String

    body parameter value.

    Import

    An existing resource can be imported using its type token, name, and identifier, e.g.

    $ pulumi import azure-native:apimanagement:AuthorizationServer newauthServer /subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.ApiManagement/service/{serviceName}/authorizationServers/{authsid} 
    

    Package Details

    Repository
    Azure Native pulumi/pulumi-azure-native
    License
    Apache-2.0
    azure-native logo
    This is the latest version of Azure Native. Use the Azure Native v1 docs if using the v1 version of this package.
    Azure Native v2.8.0 published on Monday, Sep 18, 2023 by Pulumi