1. Packages
  2. Azure Classic
  3. API Docs
  4. appservice
  5. LinuxFunctionAppSlot

We recommend using Azure Native.

Azure v6.12.0 published on Monday, Dec 2, 2024 by Pulumi

azure.appservice.LinuxFunctionAppSlot

Explore with Pulumi AI

azure logo

We recommend using Azure Native.

Azure v6.12.0 published on Monday, Dec 2, 2024 by Pulumi

    Manages a Linux Function App Slot.

    Example Usage

    import * as pulumi from "@pulumi/pulumi";
    import * as azure from "@pulumi/azure";
    
    const example = new azure.core.ResourceGroup("example", {
        name: "example-resources",
        location: "West Europe",
    });
    const exampleAccount = new azure.storage.Account("example", {
        name: "linuxfunctionappsa",
        resourceGroupName: example.name,
        location: example.location,
        accountTier: "Standard",
        accountReplicationType: "LRS",
    });
    const exampleServicePlan = new azure.appservice.ServicePlan("example", {
        name: "example-app-service-plan",
        resourceGroupName: example.name,
        location: example.location,
        osType: "Linux",
        skuName: "Y1",
    });
    const exampleLinuxFunctionApp = new azure.appservice.LinuxFunctionApp("example", {
        name: "example-linux-function-app",
        resourceGroupName: example.name,
        location: example.location,
        servicePlanId: exampleServicePlan.id,
        storageAccountName: exampleAccount.name,
        siteConfig: {},
    });
    const exampleLinuxFunctionAppSlot = new azure.appservice.LinuxFunctionAppSlot("example", {
        name: "example-linux-function-app-slot",
        functionAppId: exampleLinuxFunctionApp.id,
        storageAccountName: exampleAccount.name,
        siteConfig: {},
    });
    
    import pulumi
    import pulumi_azure as azure
    
    example = azure.core.ResourceGroup("example",
        name="example-resources",
        location="West Europe")
    example_account = azure.storage.Account("example",
        name="linuxfunctionappsa",
        resource_group_name=example.name,
        location=example.location,
        account_tier="Standard",
        account_replication_type="LRS")
    example_service_plan = azure.appservice.ServicePlan("example",
        name="example-app-service-plan",
        resource_group_name=example.name,
        location=example.location,
        os_type="Linux",
        sku_name="Y1")
    example_linux_function_app = azure.appservice.LinuxFunctionApp("example",
        name="example-linux-function-app",
        resource_group_name=example.name,
        location=example.location,
        service_plan_id=example_service_plan.id,
        storage_account_name=example_account.name,
        site_config={})
    example_linux_function_app_slot = azure.appservice.LinuxFunctionAppSlot("example",
        name="example-linux-function-app-slot",
        function_app_id=example_linux_function_app.id,
        storage_account_name=example_account.name,
        site_config={})
    
    package main
    
    import (
    	"github.com/pulumi/pulumi-azure/sdk/v6/go/azure/appservice"
    	"github.com/pulumi/pulumi-azure/sdk/v6/go/azure/core"
    	"github.com/pulumi/pulumi-azure/sdk/v6/go/azure/storage"
    	"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
    )
    
    func main() {
    	pulumi.Run(func(ctx *pulumi.Context) error {
    		example, err := core.NewResourceGroup(ctx, "example", &core.ResourceGroupArgs{
    			Name:     pulumi.String("example-resources"),
    			Location: pulumi.String("West Europe"),
    		})
    		if err != nil {
    			return err
    		}
    		exampleAccount, err := storage.NewAccount(ctx, "example", &storage.AccountArgs{
    			Name:                   pulumi.String("linuxfunctionappsa"),
    			ResourceGroupName:      example.Name,
    			Location:               example.Location,
    			AccountTier:            pulumi.String("Standard"),
    			AccountReplicationType: pulumi.String("LRS"),
    		})
    		if err != nil {
    			return err
    		}
    		exampleServicePlan, err := appservice.NewServicePlan(ctx, "example", &appservice.ServicePlanArgs{
    			Name:              pulumi.String("example-app-service-plan"),
    			ResourceGroupName: example.Name,
    			Location:          example.Location,
    			OsType:            pulumi.String("Linux"),
    			SkuName:           pulumi.String("Y1"),
    		})
    		if err != nil {
    			return err
    		}
    		exampleLinuxFunctionApp, err := appservice.NewLinuxFunctionApp(ctx, "example", &appservice.LinuxFunctionAppArgs{
    			Name:               pulumi.String("example-linux-function-app"),
    			ResourceGroupName:  example.Name,
    			Location:           example.Location,
    			ServicePlanId:      exampleServicePlan.ID(),
    			StorageAccountName: exampleAccount.Name,
    			SiteConfig:         &appservice.LinuxFunctionAppSiteConfigArgs{},
    		})
    		if err != nil {
    			return err
    		}
    		_, err = appservice.NewLinuxFunctionAppSlot(ctx, "example", &appservice.LinuxFunctionAppSlotArgs{
    			Name:               pulumi.String("example-linux-function-app-slot"),
    			FunctionAppId:      exampleLinuxFunctionApp.ID(),
    			StorageAccountName: exampleAccount.Name,
    			SiteConfig:         &appservice.LinuxFunctionAppSlotSiteConfigArgs{},
    		})
    		if err != nil {
    			return err
    		}
    		return nil
    	})
    }
    
    using System.Collections.Generic;
    using System.Linq;
    using Pulumi;
    using Azure = Pulumi.Azure;
    
    return await Deployment.RunAsync(() => 
    {
        var example = new Azure.Core.ResourceGroup("example", new()
        {
            Name = "example-resources",
            Location = "West Europe",
        });
    
        var exampleAccount = new Azure.Storage.Account("example", new()
        {
            Name = "linuxfunctionappsa",
            ResourceGroupName = example.Name,
            Location = example.Location,
            AccountTier = "Standard",
            AccountReplicationType = "LRS",
        });
    
        var exampleServicePlan = new Azure.AppService.ServicePlan("example", new()
        {
            Name = "example-app-service-plan",
            ResourceGroupName = example.Name,
            Location = example.Location,
            OsType = "Linux",
            SkuName = "Y1",
        });
    
        var exampleLinuxFunctionApp = new Azure.AppService.LinuxFunctionApp("example", new()
        {
            Name = "example-linux-function-app",
            ResourceGroupName = example.Name,
            Location = example.Location,
            ServicePlanId = exampleServicePlan.Id,
            StorageAccountName = exampleAccount.Name,
            SiteConfig = null,
        });
    
        var exampleLinuxFunctionAppSlot = new Azure.AppService.LinuxFunctionAppSlot("example", new()
        {
            Name = "example-linux-function-app-slot",
            FunctionAppId = exampleLinuxFunctionApp.Id,
            StorageAccountName = exampleAccount.Name,
            SiteConfig = null,
        });
    
    });
    
    package generated_program;
    
    import com.pulumi.Context;
    import com.pulumi.Pulumi;
    import com.pulumi.core.Output;
    import com.pulumi.azure.core.ResourceGroup;
    import com.pulumi.azure.core.ResourceGroupArgs;
    import com.pulumi.azure.storage.Account;
    import com.pulumi.azure.storage.AccountArgs;
    import com.pulumi.azure.appservice.ServicePlan;
    import com.pulumi.azure.appservice.ServicePlanArgs;
    import com.pulumi.azure.appservice.LinuxFunctionApp;
    import com.pulumi.azure.appservice.LinuxFunctionAppArgs;
    import com.pulumi.azure.appservice.inputs.LinuxFunctionAppSiteConfigArgs;
    import com.pulumi.azure.appservice.LinuxFunctionAppSlot;
    import com.pulumi.azure.appservice.LinuxFunctionAppSlotArgs;
    import com.pulumi.azure.appservice.inputs.LinuxFunctionAppSlotSiteConfigArgs;
    import java.util.List;
    import java.util.ArrayList;
    import java.util.Map;
    import java.io.File;
    import java.nio.file.Files;
    import java.nio.file.Paths;
    
    public class App {
        public static void main(String[] args) {
            Pulumi.run(App::stack);
        }
    
        public static void stack(Context ctx) {
            var example = new ResourceGroup("example", ResourceGroupArgs.builder()
                .name("example-resources")
                .location("West Europe")
                .build());
    
            var exampleAccount = new Account("exampleAccount", AccountArgs.builder()
                .name("linuxfunctionappsa")
                .resourceGroupName(example.name())
                .location(example.location())
                .accountTier("Standard")
                .accountReplicationType("LRS")
                .build());
    
            var exampleServicePlan = new ServicePlan("exampleServicePlan", ServicePlanArgs.builder()
                .name("example-app-service-plan")
                .resourceGroupName(example.name())
                .location(example.location())
                .osType("Linux")
                .skuName("Y1")
                .build());
    
            var exampleLinuxFunctionApp = new LinuxFunctionApp("exampleLinuxFunctionApp", LinuxFunctionAppArgs.builder()
                .name("example-linux-function-app")
                .resourceGroupName(example.name())
                .location(example.location())
                .servicePlanId(exampleServicePlan.id())
                .storageAccountName(exampleAccount.name())
                .siteConfig()
                .build());
    
            var exampleLinuxFunctionAppSlot = new LinuxFunctionAppSlot("exampleLinuxFunctionAppSlot", LinuxFunctionAppSlotArgs.builder()
                .name("example-linux-function-app-slot")
                .functionAppId(exampleLinuxFunctionApp.id())
                .storageAccountName(exampleAccount.name())
                .siteConfig()
                .build());
    
        }
    }
    
    resources:
      example:
        type: azure:core:ResourceGroup
        properties:
          name: example-resources
          location: West Europe
      exampleAccount:
        type: azure:storage:Account
        name: example
        properties:
          name: linuxfunctionappsa
          resourceGroupName: ${example.name}
          location: ${example.location}
          accountTier: Standard
          accountReplicationType: LRS
      exampleServicePlan:
        type: azure:appservice:ServicePlan
        name: example
        properties:
          name: example-app-service-plan
          resourceGroupName: ${example.name}
          location: ${example.location}
          osType: Linux
          skuName: Y1
      exampleLinuxFunctionApp:
        type: azure:appservice:LinuxFunctionApp
        name: example
        properties:
          name: example-linux-function-app
          resourceGroupName: ${example.name}
          location: ${example.location}
          servicePlanId: ${exampleServicePlan.id}
          storageAccountName: ${exampleAccount.name}
          siteConfig: {}
      exampleLinuxFunctionAppSlot:
        type: azure:appservice:LinuxFunctionAppSlot
        name: example
        properties:
          name: example-linux-function-app-slot
          functionAppId: ${exampleLinuxFunctionApp.id}
          storageAccountName: ${exampleAccount.name}
          siteConfig: {}
    

    Create LinuxFunctionAppSlot Resource

    Resources are created with functions called constructors. To learn more about declaring and configuring resources, see Resources.

    Constructor syntax

    new LinuxFunctionAppSlot(name: string, args: LinuxFunctionAppSlotArgs, opts?: CustomResourceOptions);
    @overload
    def LinuxFunctionAppSlot(resource_name: str,
                             args: LinuxFunctionAppSlotArgs,
                             opts: Optional[ResourceOptions] = None)
    
    @overload
    def LinuxFunctionAppSlot(resource_name: str,
                             opts: Optional[ResourceOptions] = None,
                             function_app_id: Optional[str] = None,
                             site_config: Optional[LinuxFunctionAppSlotSiteConfigArgs] = None,
                             client_certificate_mode: Optional[str] = None,
                             client_certificate_exclusion_paths: Optional[str] = None,
                             identity: Optional[LinuxFunctionAppSlotIdentityArgs] = None,
                             client_certificate_enabled: Optional[bool] = None,
                             key_vault_reference_identity_id: Optional[str] = None,
                             app_settings: Optional[Mapping[str, str]] = None,
                             connection_strings: Optional[Sequence[LinuxFunctionAppSlotConnectionStringArgs]] = None,
                             content_share_force_disabled: Optional[bool] = None,
                             daily_memory_time_quota: Optional[int] = None,
                             enabled: Optional[bool] = None,
                             ftp_publish_basic_authentication_enabled: Optional[bool] = None,
                             name: Optional[str] = None,
                             functions_extension_version: Optional[str] = None,
                             https_only: Optional[bool] = None,
                             builtin_logging_enabled: Optional[bool] = None,
                             backup: Optional[LinuxFunctionAppSlotBackupArgs] = None,
                             auth_settings_v2: Optional[LinuxFunctionAppSlotAuthSettingsV2Args] = None,
                             public_network_access_enabled: Optional[bool] = None,
                             service_plan_id: Optional[str] = None,
                             auth_settings: Optional[LinuxFunctionAppSlotAuthSettingsArgs] = None,
                             storage_account_access_key: Optional[str] = None,
                             storage_account_name: Optional[str] = None,
                             storage_accounts: Optional[Sequence[LinuxFunctionAppSlotStorageAccountArgs]] = None,
                             storage_key_vault_secret_id: Optional[str] = None,
                             storage_uses_managed_identity: Optional[bool] = None,
                             tags: Optional[Mapping[str, str]] = None,
                             virtual_network_subnet_id: Optional[str] = None,
                             vnet_image_pull_enabled: Optional[bool] = None,
                             webdeploy_publish_basic_authentication_enabled: Optional[bool] = None)
    func NewLinuxFunctionAppSlot(ctx *Context, name string, args LinuxFunctionAppSlotArgs, opts ...ResourceOption) (*LinuxFunctionAppSlot, error)
    public LinuxFunctionAppSlot(string name, LinuxFunctionAppSlotArgs args, CustomResourceOptions? opts = null)
    public LinuxFunctionAppSlot(String name, LinuxFunctionAppSlotArgs args)
    public LinuxFunctionAppSlot(String name, LinuxFunctionAppSlotArgs args, CustomResourceOptions options)
    
    type: azure:appservice:LinuxFunctionAppSlot
    properties: # The arguments to resource properties.
    options: # Bag of options to control resource's behavior.
    
    

    Parameters

    name string
    The unique name of the resource.
    args LinuxFunctionAppSlotArgs
    The arguments to resource properties.
    opts CustomResourceOptions
    Bag of options to control resource's behavior.
    resource_name str
    The unique name of the resource.
    args LinuxFunctionAppSlotArgs
    The arguments to resource properties.
    opts ResourceOptions
    Bag of options to control resource's behavior.
    ctx Context
    Context object for the current deployment.
    name string
    The unique name of the resource.
    args LinuxFunctionAppSlotArgs
    The arguments to resource properties.
    opts ResourceOption
    Bag of options to control resource's behavior.
    name string
    The unique name of the resource.
    args LinuxFunctionAppSlotArgs
    The arguments to resource properties.
    opts CustomResourceOptions
    Bag of options to control resource's behavior.
    name String
    The unique name of the resource.
    args LinuxFunctionAppSlotArgs
    The arguments to resource properties.
    options CustomResourceOptions
    Bag of options to control resource's behavior.

    Constructor example

    The following reference example uses placeholder values for all input properties.

    var linuxFunctionAppSlotResource = new Azure.AppService.LinuxFunctionAppSlot("linuxFunctionAppSlotResource", new()
    {
        FunctionAppId = "string",
        SiteConfig = new Azure.AppService.Inputs.LinuxFunctionAppSlotSiteConfigArgs
        {
            AlwaysOn = false,
            ApiDefinitionUrl = "string",
            ApiManagementApiId = "string",
            AppCommandLine = "string",
            AppScaleLimit = 0,
            AppServiceLogs = new Azure.AppService.Inputs.LinuxFunctionAppSlotSiteConfigAppServiceLogsArgs
            {
                DiskQuotaMb = 0,
                RetentionPeriodDays = 0,
            },
            ApplicationInsightsConnectionString = "string",
            ApplicationInsightsKey = "string",
            ApplicationStack = new Azure.AppService.Inputs.LinuxFunctionAppSlotSiteConfigApplicationStackArgs
            {
                Dockers = new[]
                {
                    new Azure.AppService.Inputs.LinuxFunctionAppSlotSiteConfigApplicationStackDockerArgs
                    {
                        ImageName = "string",
                        ImageTag = "string",
                        RegistryUrl = "string",
                        RegistryPassword = "string",
                        RegistryUsername = "string",
                    },
                },
                DotnetVersion = "string",
                JavaVersion = "string",
                NodeVersion = "string",
                PowershellCoreVersion = "string",
                PythonVersion = "string",
                UseCustomRuntime = false,
                UseDotnetIsolatedRuntime = false,
            },
            AutoSwapSlotName = "string",
            ContainerRegistryManagedIdentityClientId = "string",
            ContainerRegistryUseManagedIdentity = false,
            Cors = new Azure.AppService.Inputs.LinuxFunctionAppSlotSiteConfigCorsArgs
            {
                AllowedOrigins = new[]
                {
                    "string",
                },
                SupportCredentials = false,
            },
            DefaultDocuments = new[]
            {
                "string",
            },
            DetailedErrorLoggingEnabled = false,
            ElasticInstanceMinimum = 0,
            FtpsState = "string",
            HealthCheckEvictionTimeInMin = 0,
            HealthCheckPath = "string",
            Http2Enabled = false,
            IpRestrictionDefaultAction = "string",
            IpRestrictions = new[]
            {
                new Azure.AppService.Inputs.LinuxFunctionAppSlotSiteConfigIpRestrictionArgs
                {
                    Action = "string",
                    Description = "string",
                    Headers = new Azure.AppService.Inputs.LinuxFunctionAppSlotSiteConfigIpRestrictionHeadersArgs
                    {
                        XAzureFdids = new[]
                        {
                            "string",
                        },
                        XFdHealthProbe = "string",
                        XForwardedFors = new[]
                        {
                            "string",
                        },
                        XForwardedHosts = new[]
                        {
                            "string",
                        },
                    },
                    IpAddress = "string",
                    Name = "string",
                    Priority = 0,
                    ServiceTag = "string",
                    VirtualNetworkSubnetId = "string",
                },
            },
            LinuxFxVersion = "string",
            LoadBalancingMode = "string",
            ManagedPipelineMode = "string",
            MinimumTlsVersion = "string",
            PreWarmedInstanceCount = 0,
            RemoteDebuggingEnabled = false,
            RemoteDebuggingVersion = "string",
            RuntimeScaleMonitoringEnabled = false,
            ScmIpRestrictionDefaultAction = "string",
            ScmIpRestrictions = new[]
            {
                new Azure.AppService.Inputs.LinuxFunctionAppSlotSiteConfigScmIpRestrictionArgs
                {
                    Action = "string",
                    Description = "string",
                    Headers = new Azure.AppService.Inputs.LinuxFunctionAppSlotSiteConfigScmIpRestrictionHeadersArgs
                    {
                        XAzureFdids = new[]
                        {
                            "string",
                        },
                        XFdHealthProbe = "string",
                        XForwardedFors = new[]
                        {
                            "string",
                        },
                        XForwardedHosts = new[]
                        {
                            "string",
                        },
                    },
                    IpAddress = "string",
                    Name = "string",
                    Priority = 0,
                    ServiceTag = "string",
                    VirtualNetworkSubnetId = "string",
                },
            },
            ScmMinimumTlsVersion = "string",
            ScmType = "string",
            ScmUseMainIpRestriction = false,
            Use32BitWorker = false,
            VnetRouteAllEnabled = false,
            WebsocketsEnabled = false,
            WorkerCount = 0,
        },
        ClientCertificateMode = "string",
        ClientCertificateExclusionPaths = "string",
        Identity = new Azure.AppService.Inputs.LinuxFunctionAppSlotIdentityArgs
        {
            Type = "string",
            IdentityIds = new[]
            {
                "string",
            },
            PrincipalId = "string",
            TenantId = "string",
        },
        ClientCertificateEnabled = false,
        KeyVaultReferenceIdentityId = "string",
        AppSettings = 
        {
            { "string", "string" },
        },
        ConnectionStrings = new[]
        {
            new Azure.AppService.Inputs.LinuxFunctionAppSlotConnectionStringArgs
            {
                Name = "string",
                Type = "string",
                Value = "string",
            },
        },
        ContentShareForceDisabled = false,
        DailyMemoryTimeQuota = 0,
        Enabled = false,
        FtpPublishBasicAuthenticationEnabled = false,
        Name = "string",
        FunctionsExtensionVersion = "string",
        HttpsOnly = false,
        BuiltinLoggingEnabled = false,
        Backup = new Azure.AppService.Inputs.LinuxFunctionAppSlotBackupArgs
        {
            Name = "string",
            Schedule = new Azure.AppService.Inputs.LinuxFunctionAppSlotBackupScheduleArgs
            {
                FrequencyInterval = 0,
                FrequencyUnit = "string",
                KeepAtLeastOneBackup = false,
                LastExecutionTime = "string",
                RetentionPeriodDays = 0,
                StartTime = "string",
            },
            StorageAccountUrl = "string",
            Enabled = false,
        },
        AuthSettingsV2 = new Azure.AppService.Inputs.LinuxFunctionAppSlotAuthSettingsV2Args
        {
            Login = new Azure.AppService.Inputs.LinuxFunctionAppSlotAuthSettingsV2LoginArgs
            {
                AllowedExternalRedirectUrls = new[]
                {
                    "string",
                },
                CookieExpirationConvention = "string",
                CookieExpirationTime = "string",
                LogoutEndpoint = "string",
                NonceExpirationTime = "string",
                PreserveUrlFragmentsForLogins = false,
                TokenRefreshExtensionTime = 0,
                TokenStoreEnabled = false,
                TokenStorePath = "string",
                TokenStoreSasSettingName = "string",
                ValidateNonce = false,
            },
            CustomOidcV2s = new[]
            {
                new Azure.AppService.Inputs.LinuxFunctionAppSlotAuthSettingsV2CustomOidcV2Args
                {
                    ClientId = "string",
                    Name = "string",
                    OpenidConfigurationEndpoint = "string",
                    AuthorisationEndpoint = "string",
                    CertificationUri = "string",
                    ClientCredentialMethod = "string",
                    ClientSecretSettingName = "string",
                    IssuerEndpoint = "string",
                    NameClaimType = "string",
                    Scopes = new[]
                    {
                        "string",
                    },
                    TokenEndpoint = "string",
                },
            },
            ActiveDirectoryV2 = new Azure.AppService.Inputs.LinuxFunctionAppSlotAuthSettingsV2ActiveDirectoryV2Args
            {
                ClientId = "string",
                TenantAuthEndpoint = "string",
                AllowedApplications = new[]
                {
                    "string",
                },
                AllowedAudiences = new[]
                {
                    "string",
                },
                AllowedGroups = new[]
                {
                    "string",
                },
                AllowedIdentities = new[]
                {
                    "string",
                },
                ClientSecretCertificateThumbprint = "string",
                ClientSecretSettingName = "string",
                JwtAllowedClientApplications = new[]
                {
                    "string",
                },
                JwtAllowedGroups = new[]
                {
                    "string",
                },
                LoginParameters = 
                {
                    { "string", "string" },
                },
                WwwAuthenticationDisabled = false,
            },
            ForwardProxyCustomSchemeHeaderName = "string",
            GoogleV2 = new Azure.AppService.Inputs.LinuxFunctionAppSlotAuthSettingsV2GoogleV2Args
            {
                ClientId = "string",
                ClientSecretSettingName = "string",
                AllowedAudiences = new[]
                {
                    "string",
                },
                LoginScopes = new[]
                {
                    "string",
                },
            },
            GithubV2 = new Azure.AppService.Inputs.LinuxFunctionAppSlotAuthSettingsV2GithubV2Args
            {
                ClientId = "string",
                ClientSecretSettingName = "string",
                LoginScopes = new[]
                {
                    "string",
                },
            },
            DefaultProvider = "string",
            ExcludedPaths = new[]
            {
                "string",
            },
            FacebookV2 = new Azure.AppService.Inputs.LinuxFunctionAppSlotAuthSettingsV2FacebookV2Args
            {
                AppId = "string",
                AppSecretSettingName = "string",
                GraphApiVersion = "string",
                LoginScopes = new[]
                {
                    "string",
                },
            },
            ForwardProxyConvention = "string",
            ForwardProxyCustomHostHeaderName = "string",
            AzureStaticWebAppV2 = new Azure.AppService.Inputs.LinuxFunctionAppSlotAuthSettingsV2AzureStaticWebAppV2Args
            {
                ClientId = "string",
            },
            AuthEnabled = false,
            ConfigFilePath = "string",
            HttpRouteApiPrefix = "string",
            AppleV2 = new Azure.AppService.Inputs.LinuxFunctionAppSlotAuthSettingsV2AppleV2Args
            {
                ClientId = "string",
                ClientSecretSettingName = "string",
                LoginScopes = new[]
                {
                    "string",
                },
            },
            MicrosoftV2 = new Azure.AppService.Inputs.LinuxFunctionAppSlotAuthSettingsV2MicrosoftV2Args
            {
                ClientId = "string",
                ClientSecretSettingName = "string",
                AllowedAudiences = new[]
                {
                    "string",
                },
                LoginScopes = new[]
                {
                    "string",
                },
            },
            RequireAuthentication = false,
            RequireHttps = false,
            RuntimeVersion = "string",
            TwitterV2 = new Azure.AppService.Inputs.LinuxFunctionAppSlotAuthSettingsV2TwitterV2Args
            {
                ConsumerKey = "string",
                ConsumerSecretSettingName = "string",
            },
            UnauthenticatedAction = "string",
        },
        PublicNetworkAccessEnabled = false,
        ServicePlanId = "string",
        AuthSettings = new Azure.AppService.Inputs.LinuxFunctionAppSlotAuthSettingsArgs
        {
            Enabled = false,
            Github = new Azure.AppService.Inputs.LinuxFunctionAppSlotAuthSettingsGithubArgs
            {
                ClientId = "string",
                ClientSecret = "string",
                ClientSecretSettingName = "string",
                OauthScopes = new[]
                {
                    "string",
                },
            },
            Issuer = "string",
            DefaultProvider = "string",
            AdditionalLoginParameters = 
            {
                { "string", "string" },
            },
            Facebook = new Azure.AppService.Inputs.LinuxFunctionAppSlotAuthSettingsFacebookArgs
            {
                AppId = "string",
                AppSecret = "string",
                AppSecretSettingName = "string",
                OauthScopes = new[]
                {
                    "string",
                },
            },
            ActiveDirectory = new Azure.AppService.Inputs.LinuxFunctionAppSlotAuthSettingsActiveDirectoryArgs
            {
                ClientId = "string",
                AllowedAudiences = new[]
                {
                    "string",
                },
                ClientSecret = "string",
                ClientSecretSettingName = "string",
            },
            Google = new Azure.AppService.Inputs.LinuxFunctionAppSlotAuthSettingsGoogleArgs
            {
                ClientId = "string",
                ClientSecret = "string",
                ClientSecretSettingName = "string",
                OauthScopes = new[]
                {
                    "string",
                },
            },
            AllowedExternalRedirectUrls = new[]
            {
                "string",
            },
            Microsoft = new Azure.AppService.Inputs.LinuxFunctionAppSlotAuthSettingsMicrosoftArgs
            {
                ClientId = "string",
                ClientSecret = "string",
                ClientSecretSettingName = "string",
                OauthScopes = new[]
                {
                    "string",
                },
            },
            RuntimeVersion = "string",
            TokenRefreshExtensionHours = 0,
            TokenStoreEnabled = false,
            Twitter = new Azure.AppService.Inputs.LinuxFunctionAppSlotAuthSettingsTwitterArgs
            {
                ConsumerKey = "string",
                ConsumerSecret = "string",
                ConsumerSecretSettingName = "string",
            },
            UnauthenticatedClientAction = "string",
        },
        StorageAccountAccessKey = "string",
        StorageAccountName = "string",
        StorageAccounts = new[]
        {
            new Azure.AppService.Inputs.LinuxFunctionAppSlotStorageAccountArgs
            {
                AccessKey = "string",
                AccountName = "string",
                Name = "string",
                ShareName = "string",
                Type = "string",
                MountPath = "string",
            },
        },
        StorageKeyVaultSecretId = "string",
        StorageUsesManagedIdentity = false,
        Tags = 
        {
            { "string", "string" },
        },
        VirtualNetworkSubnetId = "string",
        VnetImagePullEnabled = false,
        WebdeployPublishBasicAuthenticationEnabled = false,
    });
    
    example, err := appservice.NewLinuxFunctionAppSlot(ctx, "linuxFunctionAppSlotResource", &appservice.LinuxFunctionAppSlotArgs{
    	FunctionAppId: pulumi.String("string"),
    	SiteConfig: &appservice.LinuxFunctionAppSlotSiteConfigArgs{
    		AlwaysOn:           pulumi.Bool(false),
    		ApiDefinitionUrl:   pulumi.String("string"),
    		ApiManagementApiId: pulumi.String("string"),
    		AppCommandLine:     pulumi.String("string"),
    		AppScaleLimit:      pulumi.Int(0),
    		AppServiceLogs: &appservice.LinuxFunctionAppSlotSiteConfigAppServiceLogsArgs{
    			DiskQuotaMb:         pulumi.Int(0),
    			RetentionPeriodDays: pulumi.Int(0),
    		},
    		ApplicationInsightsConnectionString: pulumi.String("string"),
    		ApplicationInsightsKey:              pulumi.String("string"),
    		ApplicationStack: &appservice.LinuxFunctionAppSlotSiteConfigApplicationStackArgs{
    			Dockers: appservice.LinuxFunctionAppSlotSiteConfigApplicationStackDockerArray{
    				&appservice.LinuxFunctionAppSlotSiteConfigApplicationStackDockerArgs{
    					ImageName:        pulumi.String("string"),
    					ImageTag:         pulumi.String("string"),
    					RegistryUrl:      pulumi.String("string"),
    					RegistryPassword: pulumi.String("string"),
    					RegistryUsername: pulumi.String("string"),
    				},
    			},
    			DotnetVersion:            pulumi.String("string"),
    			JavaVersion:              pulumi.String("string"),
    			NodeVersion:              pulumi.String("string"),
    			PowershellCoreVersion:    pulumi.String("string"),
    			PythonVersion:            pulumi.String("string"),
    			UseCustomRuntime:         pulumi.Bool(false),
    			UseDotnetIsolatedRuntime: pulumi.Bool(false),
    		},
    		AutoSwapSlotName:                         pulumi.String("string"),
    		ContainerRegistryManagedIdentityClientId: pulumi.String("string"),
    		ContainerRegistryUseManagedIdentity:      pulumi.Bool(false),
    		Cors: &appservice.LinuxFunctionAppSlotSiteConfigCorsArgs{
    			AllowedOrigins: pulumi.StringArray{
    				pulumi.String("string"),
    			},
    			SupportCredentials: pulumi.Bool(false),
    		},
    		DefaultDocuments: pulumi.StringArray{
    			pulumi.String("string"),
    		},
    		DetailedErrorLoggingEnabled:  pulumi.Bool(false),
    		ElasticInstanceMinimum:       pulumi.Int(0),
    		FtpsState:                    pulumi.String("string"),
    		HealthCheckEvictionTimeInMin: pulumi.Int(0),
    		HealthCheckPath:              pulumi.String("string"),
    		Http2Enabled:                 pulumi.Bool(false),
    		IpRestrictionDefaultAction:   pulumi.String("string"),
    		IpRestrictions: appservice.LinuxFunctionAppSlotSiteConfigIpRestrictionArray{
    			&appservice.LinuxFunctionAppSlotSiteConfigIpRestrictionArgs{
    				Action:      pulumi.String("string"),
    				Description: pulumi.String("string"),
    				Headers: &appservice.LinuxFunctionAppSlotSiteConfigIpRestrictionHeadersArgs{
    					XAzureFdids: pulumi.StringArray{
    						pulumi.String("string"),
    					},
    					XFdHealthProbe: pulumi.String("string"),
    					XForwardedFors: pulumi.StringArray{
    						pulumi.String("string"),
    					},
    					XForwardedHosts: pulumi.StringArray{
    						pulumi.String("string"),
    					},
    				},
    				IpAddress:              pulumi.String("string"),
    				Name:                   pulumi.String("string"),
    				Priority:               pulumi.Int(0),
    				ServiceTag:             pulumi.String("string"),
    				VirtualNetworkSubnetId: pulumi.String("string"),
    			},
    		},
    		LinuxFxVersion:                pulumi.String("string"),
    		LoadBalancingMode:             pulumi.String("string"),
    		ManagedPipelineMode:           pulumi.String("string"),
    		MinimumTlsVersion:             pulumi.String("string"),
    		PreWarmedInstanceCount:        pulumi.Int(0),
    		RemoteDebuggingEnabled:        pulumi.Bool(false),
    		RemoteDebuggingVersion:        pulumi.String("string"),
    		RuntimeScaleMonitoringEnabled: pulumi.Bool(false),
    		ScmIpRestrictionDefaultAction: pulumi.String("string"),
    		ScmIpRestrictions: appservice.LinuxFunctionAppSlotSiteConfigScmIpRestrictionArray{
    			&appservice.LinuxFunctionAppSlotSiteConfigScmIpRestrictionArgs{
    				Action:      pulumi.String("string"),
    				Description: pulumi.String("string"),
    				Headers: &appservice.LinuxFunctionAppSlotSiteConfigScmIpRestrictionHeadersArgs{
    					XAzureFdids: pulumi.StringArray{
    						pulumi.String("string"),
    					},
    					XFdHealthProbe: pulumi.String("string"),
    					XForwardedFors: pulumi.StringArray{
    						pulumi.String("string"),
    					},
    					XForwardedHosts: pulumi.StringArray{
    						pulumi.String("string"),
    					},
    				},
    				IpAddress:              pulumi.String("string"),
    				Name:                   pulumi.String("string"),
    				Priority:               pulumi.Int(0),
    				ServiceTag:             pulumi.String("string"),
    				VirtualNetworkSubnetId: pulumi.String("string"),
    			},
    		},
    		ScmMinimumTlsVersion:    pulumi.String("string"),
    		ScmType:                 pulumi.String("string"),
    		ScmUseMainIpRestriction: pulumi.Bool(false),
    		Use32BitWorker:          pulumi.Bool(false),
    		VnetRouteAllEnabled:     pulumi.Bool(false),
    		WebsocketsEnabled:       pulumi.Bool(false),
    		WorkerCount:             pulumi.Int(0),
    	},
    	ClientCertificateMode:           pulumi.String("string"),
    	ClientCertificateExclusionPaths: pulumi.String("string"),
    	Identity: &appservice.LinuxFunctionAppSlotIdentityArgs{
    		Type: pulumi.String("string"),
    		IdentityIds: pulumi.StringArray{
    			pulumi.String("string"),
    		},
    		PrincipalId: pulumi.String("string"),
    		TenantId:    pulumi.String("string"),
    	},
    	ClientCertificateEnabled:    pulumi.Bool(false),
    	KeyVaultReferenceIdentityId: pulumi.String("string"),
    	AppSettings: pulumi.StringMap{
    		"string": pulumi.String("string"),
    	},
    	ConnectionStrings: appservice.LinuxFunctionAppSlotConnectionStringArray{
    		&appservice.LinuxFunctionAppSlotConnectionStringArgs{
    			Name:  pulumi.String("string"),
    			Type:  pulumi.String("string"),
    			Value: pulumi.String("string"),
    		},
    	},
    	ContentShareForceDisabled:            pulumi.Bool(false),
    	DailyMemoryTimeQuota:                 pulumi.Int(0),
    	Enabled:                              pulumi.Bool(false),
    	FtpPublishBasicAuthenticationEnabled: pulumi.Bool(false),
    	Name:                                 pulumi.String("string"),
    	FunctionsExtensionVersion:            pulumi.String("string"),
    	HttpsOnly:                            pulumi.Bool(false),
    	BuiltinLoggingEnabled:                pulumi.Bool(false),
    	Backup: &appservice.LinuxFunctionAppSlotBackupArgs{
    		Name: pulumi.String("string"),
    		Schedule: &appservice.LinuxFunctionAppSlotBackupScheduleArgs{
    			FrequencyInterval:    pulumi.Int(0),
    			FrequencyUnit:        pulumi.String("string"),
    			KeepAtLeastOneBackup: pulumi.Bool(false),
    			LastExecutionTime:    pulumi.String("string"),
    			RetentionPeriodDays:  pulumi.Int(0),
    			StartTime:            pulumi.String("string"),
    		},
    		StorageAccountUrl: pulumi.String("string"),
    		Enabled:           pulumi.Bool(false),
    	},
    	AuthSettingsV2: &appservice.LinuxFunctionAppSlotAuthSettingsV2Args{
    		Login: &appservice.LinuxFunctionAppSlotAuthSettingsV2LoginArgs{
    			AllowedExternalRedirectUrls: pulumi.StringArray{
    				pulumi.String("string"),
    			},
    			CookieExpirationConvention:    pulumi.String("string"),
    			CookieExpirationTime:          pulumi.String("string"),
    			LogoutEndpoint:                pulumi.String("string"),
    			NonceExpirationTime:           pulumi.String("string"),
    			PreserveUrlFragmentsForLogins: pulumi.Bool(false),
    			TokenRefreshExtensionTime:     pulumi.Float64(0),
    			TokenStoreEnabled:             pulumi.Bool(false),
    			TokenStorePath:                pulumi.String("string"),
    			TokenStoreSasSettingName:      pulumi.String("string"),
    			ValidateNonce:                 pulumi.Bool(false),
    		},
    		CustomOidcV2s: appservice.LinuxFunctionAppSlotAuthSettingsV2CustomOidcV2Array{
    			&appservice.LinuxFunctionAppSlotAuthSettingsV2CustomOidcV2Args{
    				ClientId:                    pulumi.String("string"),
    				Name:                        pulumi.String("string"),
    				OpenidConfigurationEndpoint: pulumi.String("string"),
    				AuthorisationEndpoint:       pulumi.String("string"),
    				CertificationUri:            pulumi.String("string"),
    				ClientCredentialMethod:      pulumi.String("string"),
    				ClientSecretSettingName:     pulumi.String("string"),
    				IssuerEndpoint:              pulumi.String("string"),
    				NameClaimType:               pulumi.String("string"),
    				Scopes: pulumi.StringArray{
    					pulumi.String("string"),
    				},
    				TokenEndpoint: pulumi.String("string"),
    			},
    		},
    		ActiveDirectoryV2: &appservice.LinuxFunctionAppSlotAuthSettingsV2ActiveDirectoryV2Args{
    			ClientId:           pulumi.String("string"),
    			TenantAuthEndpoint: pulumi.String("string"),
    			AllowedApplications: pulumi.StringArray{
    				pulumi.String("string"),
    			},
    			AllowedAudiences: pulumi.StringArray{
    				pulumi.String("string"),
    			},
    			AllowedGroups: pulumi.StringArray{
    				pulumi.String("string"),
    			},
    			AllowedIdentities: pulumi.StringArray{
    				pulumi.String("string"),
    			},
    			ClientSecretCertificateThumbprint: pulumi.String("string"),
    			ClientSecretSettingName:           pulumi.String("string"),
    			JwtAllowedClientApplications: pulumi.StringArray{
    				pulumi.String("string"),
    			},
    			JwtAllowedGroups: pulumi.StringArray{
    				pulumi.String("string"),
    			},
    			LoginParameters: pulumi.StringMap{
    				"string": pulumi.String("string"),
    			},
    			WwwAuthenticationDisabled: pulumi.Bool(false),
    		},
    		ForwardProxyCustomSchemeHeaderName: pulumi.String("string"),
    		GoogleV2: &appservice.LinuxFunctionAppSlotAuthSettingsV2GoogleV2Args{
    			ClientId:                pulumi.String("string"),
    			ClientSecretSettingName: pulumi.String("string"),
    			AllowedAudiences: pulumi.StringArray{
    				pulumi.String("string"),
    			},
    			LoginScopes: pulumi.StringArray{
    				pulumi.String("string"),
    			},
    		},
    		GithubV2: &appservice.LinuxFunctionAppSlotAuthSettingsV2GithubV2Args{
    			ClientId:                pulumi.String("string"),
    			ClientSecretSettingName: pulumi.String("string"),
    			LoginScopes: pulumi.StringArray{
    				pulumi.String("string"),
    			},
    		},
    		DefaultProvider: pulumi.String("string"),
    		ExcludedPaths: pulumi.StringArray{
    			pulumi.String("string"),
    		},
    		FacebookV2: &appservice.LinuxFunctionAppSlotAuthSettingsV2FacebookV2Args{
    			AppId:                pulumi.String("string"),
    			AppSecretSettingName: pulumi.String("string"),
    			GraphApiVersion:      pulumi.String("string"),
    			LoginScopes: pulumi.StringArray{
    				pulumi.String("string"),
    			},
    		},
    		ForwardProxyConvention:           pulumi.String("string"),
    		ForwardProxyCustomHostHeaderName: pulumi.String("string"),
    		AzureStaticWebAppV2: &appservice.LinuxFunctionAppSlotAuthSettingsV2AzureStaticWebAppV2Args{
    			ClientId: pulumi.String("string"),
    		},
    		AuthEnabled:        pulumi.Bool(false),
    		ConfigFilePath:     pulumi.String("string"),
    		HttpRouteApiPrefix: pulumi.String("string"),
    		AppleV2: &appservice.LinuxFunctionAppSlotAuthSettingsV2AppleV2Args{
    			ClientId:                pulumi.String("string"),
    			ClientSecretSettingName: pulumi.String("string"),
    			LoginScopes: pulumi.StringArray{
    				pulumi.String("string"),
    			},
    		},
    		MicrosoftV2: &appservice.LinuxFunctionAppSlotAuthSettingsV2MicrosoftV2Args{
    			ClientId:                pulumi.String("string"),
    			ClientSecretSettingName: pulumi.String("string"),
    			AllowedAudiences: pulumi.StringArray{
    				pulumi.String("string"),
    			},
    			LoginScopes: pulumi.StringArray{
    				pulumi.String("string"),
    			},
    		},
    		RequireAuthentication: pulumi.Bool(false),
    		RequireHttps:          pulumi.Bool(false),
    		RuntimeVersion:        pulumi.String("string"),
    		TwitterV2: &appservice.LinuxFunctionAppSlotAuthSettingsV2TwitterV2Args{
    			ConsumerKey:               pulumi.String("string"),
    			ConsumerSecretSettingName: pulumi.String("string"),
    		},
    		UnauthenticatedAction: pulumi.String("string"),
    	},
    	PublicNetworkAccessEnabled: pulumi.Bool(false),
    	ServicePlanId:              pulumi.String("string"),
    	AuthSettings: &appservice.LinuxFunctionAppSlotAuthSettingsArgs{
    		Enabled: pulumi.Bool(false),
    		Github: &appservice.LinuxFunctionAppSlotAuthSettingsGithubArgs{
    			ClientId:                pulumi.String("string"),
    			ClientSecret:            pulumi.String("string"),
    			ClientSecretSettingName: pulumi.String("string"),
    			OauthScopes: pulumi.StringArray{
    				pulumi.String("string"),
    			},
    		},
    		Issuer:          pulumi.String("string"),
    		DefaultProvider: pulumi.String("string"),
    		AdditionalLoginParameters: pulumi.StringMap{
    			"string": pulumi.String("string"),
    		},
    		Facebook: &appservice.LinuxFunctionAppSlotAuthSettingsFacebookArgs{
    			AppId:                pulumi.String("string"),
    			AppSecret:            pulumi.String("string"),
    			AppSecretSettingName: pulumi.String("string"),
    			OauthScopes: pulumi.StringArray{
    				pulumi.String("string"),
    			},
    		},
    		ActiveDirectory: &appservice.LinuxFunctionAppSlotAuthSettingsActiveDirectoryArgs{
    			ClientId: pulumi.String("string"),
    			AllowedAudiences: pulumi.StringArray{
    				pulumi.String("string"),
    			},
    			ClientSecret:            pulumi.String("string"),
    			ClientSecretSettingName: pulumi.String("string"),
    		},
    		Google: &appservice.LinuxFunctionAppSlotAuthSettingsGoogleArgs{
    			ClientId:                pulumi.String("string"),
    			ClientSecret:            pulumi.String("string"),
    			ClientSecretSettingName: pulumi.String("string"),
    			OauthScopes: pulumi.StringArray{
    				pulumi.String("string"),
    			},
    		},
    		AllowedExternalRedirectUrls: pulumi.StringArray{
    			pulumi.String("string"),
    		},
    		Microsoft: &appservice.LinuxFunctionAppSlotAuthSettingsMicrosoftArgs{
    			ClientId:                pulumi.String("string"),
    			ClientSecret:            pulumi.String("string"),
    			ClientSecretSettingName: pulumi.String("string"),
    			OauthScopes: pulumi.StringArray{
    				pulumi.String("string"),
    			},
    		},
    		RuntimeVersion:             pulumi.String("string"),
    		TokenRefreshExtensionHours: pulumi.Float64(0),
    		TokenStoreEnabled:          pulumi.Bool(false),
    		Twitter: &appservice.LinuxFunctionAppSlotAuthSettingsTwitterArgs{
    			ConsumerKey:               pulumi.String("string"),
    			ConsumerSecret:            pulumi.String("string"),
    			ConsumerSecretSettingName: pulumi.String("string"),
    		},
    		UnauthenticatedClientAction: pulumi.String("string"),
    	},
    	StorageAccountAccessKey: pulumi.String("string"),
    	StorageAccountName:      pulumi.String("string"),
    	StorageAccounts: appservice.LinuxFunctionAppSlotStorageAccountArray{
    		&appservice.LinuxFunctionAppSlotStorageAccountArgs{
    			AccessKey:   pulumi.String("string"),
    			AccountName: pulumi.String("string"),
    			Name:        pulumi.String("string"),
    			ShareName:   pulumi.String("string"),
    			Type:        pulumi.String("string"),
    			MountPath:   pulumi.String("string"),
    		},
    	},
    	StorageKeyVaultSecretId:    pulumi.String("string"),
    	StorageUsesManagedIdentity: pulumi.Bool(false),
    	Tags: pulumi.StringMap{
    		"string": pulumi.String("string"),
    	},
    	VirtualNetworkSubnetId:                     pulumi.String("string"),
    	VnetImagePullEnabled:                       pulumi.Bool(false),
    	WebdeployPublishBasicAuthenticationEnabled: pulumi.Bool(false),
    })
    
    var linuxFunctionAppSlotResource = new LinuxFunctionAppSlot("linuxFunctionAppSlotResource", LinuxFunctionAppSlotArgs.builder()
        .functionAppId("string")
        .siteConfig(LinuxFunctionAppSlotSiteConfigArgs.builder()
            .alwaysOn(false)
            .apiDefinitionUrl("string")
            .apiManagementApiId("string")
            .appCommandLine("string")
            .appScaleLimit(0)
            .appServiceLogs(LinuxFunctionAppSlotSiteConfigAppServiceLogsArgs.builder()
                .diskQuotaMb(0)
                .retentionPeriodDays(0)
                .build())
            .applicationInsightsConnectionString("string")
            .applicationInsightsKey("string")
            .applicationStack(LinuxFunctionAppSlotSiteConfigApplicationStackArgs.builder()
                .dockers(LinuxFunctionAppSlotSiteConfigApplicationStackDockerArgs.builder()
                    .imageName("string")
                    .imageTag("string")
                    .registryUrl("string")
                    .registryPassword("string")
                    .registryUsername("string")
                    .build())
                .dotnetVersion("string")
                .javaVersion("string")
                .nodeVersion("string")
                .powershellCoreVersion("string")
                .pythonVersion("string")
                .useCustomRuntime(false)
                .useDotnetIsolatedRuntime(false)
                .build())
            .autoSwapSlotName("string")
            .containerRegistryManagedIdentityClientId("string")
            .containerRegistryUseManagedIdentity(false)
            .cors(LinuxFunctionAppSlotSiteConfigCorsArgs.builder()
                .allowedOrigins("string")
                .supportCredentials(false)
                .build())
            .defaultDocuments("string")
            .detailedErrorLoggingEnabled(false)
            .elasticInstanceMinimum(0)
            .ftpsState("string")
            .healthCheckEvictionTimeInMin(0)
            .healthCheckPath("string")
            .http2Enabled(false)
            .ipRestrictionDefaultAction("string")
            .ipRestrictions(LinuxFunctionAppSlotSiteConfigIpRestrictionArgs.builder()
                .action("string")
                .description("string")
                .headers(LinuxFunctionAppSlotSiteConfigIpRestrictionHeadersArgs.builder()
                    .xAzureFdids("string")
                    .xFdHealthProbe("string")
                    .xForwardedFors("string")
                    .xForwardedHosts("string")
                    .build())
                .ipAddress("string")
                .name("string")
                .priority(0)
                .serviceTag("string")
                .virtualNetworkSubnetId("string")
                .build())
            .linuxFxVersion("string")
            .loadBalancingMode("string")
            .managedPipelineMode("string")
            .minimumTlsVersion("string")
            .preWarmedInstanceCount(0)
            .remoteDebuggingEnabled(false)
            .remoteDebuggingVersion("string")
            .runtimeScaleMonitoringEnabled(false)
            .scmIpRestrictionDefaultAction("string")
            .scmIpRestrictions(LinuxFunctionAppSlotSiteConfigScmIpRestrictionArgs.builder()
                .action("string")
                .description("string")
                .headers(LinuxFunctionAppSlotSiteConfigScmIpRestrictionHeadersArgs.builder()
                    .xAzureFdids("string")
                    .xFdHealthProbe("string")
                    .xForwardedFors("string")
                    .xForwardedHosts("string")
                    .build())
                .ipAddress("string")
                .name("string")
                .priority(0)
                .serviceTag("string")
                .virtualNetworkSubnetId("string")
                .build())
            .scmMinimumTlsVersion("string")
            .scmType("string")
            .scmUseMainIpRestriction(false)
            .use32BitWorker(false)
            .vnetRouteAllEnabled(false)
            .websocketsEnabled(false)
            .workerCount(0)
            .build())
        .clientCertificateMode("string")
        .clientCertificateExclusionPaths("string")
        .identity(LinuxFunctionAppSlotIdentityArgs.builder()
            .type("string")
            .identityIds("string")
            .principalId("string")
            .tenantId("string")
            .build())
        .clientCertificateEnabled(false)
        .keyVaultReferenceIdentityId("string")
        .appSettings(Map.of("string", "string"))
        .connectionStrings(LinuxFunctionAppSlotConnectionStringArgs.builder()
            .name("string")
            .type("string")
            .value("string")
            .build())
        .contentShareForceDisabled(false)
        .dailyMemoryTimeQuota(0)
        .enabled(false)
        .ftpPublishBasicAuthenticationEnabled(false)
        .name("string")
        .functionsExtensionVersion("string")
        .httpsOnly(false)
        .builtinLoggingEnabled(false)
        .backup(LinuxFunctionAppSlotBackupArgs.builder()
            .name("string")
            .schedule(LinuxFunctionAppSlotBackupScheduleArgs.builder()
                .frequencyInterval(0)
                .frequencyUnit("string")
                .keepAtLeastOneBackup(false)
                .lastExecutionTime("string")
                .retentionPeriodDays(0)
                .startTime("string")
                .build())
            .storageAccountUrl("string")
            .enabled(false)
            .build())
        .authSettingsV2(LinuxFunctionAppSlotAuthSettingsV2Args.builder()
            .login(LinuxFunctionAppSlotAuthSettingsV2LoginArgs.builder()
                .allowedExternalRedirectUrls("string")
                .cookieExpirationConvention("string")
                .cookieExpirationTime("string")
                .logoutEndpoint("string")
                .nonceExpirationTime("string")
                .preserveUrlFragmentsForLogins(false)
                .tokenRefreshExtensionTime(0)
                .tokenStoreEnabled(false)
                .tokenStorePath("string")
                .tokenStoreSasSettingName("string")
                .validateNonce(false)
                .build())
            .customOidcV2s(LinuxFunctionAppSlotAuthSettingsV2CustomOidcV2Args.builder()
                .clientId("string")
                .name("string")
                .openidConfigurationEndpoint("string")
                .authorisationEndpoint("string")
                .certificationUri("string")
                .clientCredentialMethod("string")
                .clientSecretSettingName("string")
                .issuerEndpoint("string")
                .nameClaimType("string")
                .scopes("string")
                .tokenEndpoint("string")
                .build())
            .activeDirectoryV2(LinuxFunctionAppSlotAuthSettingsV2ActiveDirectoryV2Args.builder()
                .clientId("string")
                .tenantAuthEndpoint("string")
                .allowedApplications("string")
                .allowedAudiences("string")
                .allowedGroups("string")
                .allowedIdentities("string")
                .clientSecretCertificateThumbprint("string")
                .clientSecretSettingName("string")
                .jwtAllowedClientApplications("string")
                .jwtAllowedGroups("string")
                .loginParameters(Map.of("string", "string"))
                .wwwAuthenticationDisabled(false)
                .build())
            .forwardProxyCustomSchemeHeaderName("string")
            .googleV2(LinuxFunctionAppSlotAuthSettingsV2GoogleV2Args.builder()
                .clientId("string")
                .clientSecretSettingName("string")
                .allowedAudiences("string")
                .loginScopes("string")
                .build())
            .githubV2(LinuxFunctionAppSlotAuthSettingsV2GithubV2Args.builder()
                .clientId("string")
                .clientSecretSettingName("string")
                .loginScopes("string")
                .build())
            .defaultProvider("string")
            .excludedPaths("string")
            .facebookV2(LinuxFunctionAppSlotAuthSettingsV2FacebookV2Args.builder()
                .appId("string")
                .appSecretSettingName("string")
                .graphApiVersion("string")
                .loginScopes("string")
                .build())
            .forwardProxyConvention("string")
            .forwardProxyCustomHostHeaderName("string")
            .azureStaticWebAppV2(LinuxFunctionAppSlotAuthSettingsV2AzureStaticWebAppV2Args.builder()
                .clientId("string")
                .build())
            .authEnabled(false)
            .configFilePath("string")
            .httpRouteApiPrefix("string")
            .appleV2(LinuxFunctionAppSlotAuthSettingsV2AppleV2Args.builder()
                .clientId("string")
                .clientSecretSettingName("string")
                .loginScopes("string")
                .build())
            .microsoftV2(LinuxFunctionAppSlotAuthSettingsV2MicrosoftV2Args.builder()
                .clientId("string")
                .clientSecretSettingName("string")
                .allowedAudiences("string")
                .loginScopes("string")
                .build())
            .requireAuthentication(false)
            .requireHttps(false)
            .runtimeVersion("string")
            .twitterV2(LinuxFunctionAppSlotAuthSettingsV2TwitterV2Args.builder()
                .consumerKey("string")
                .consumerSecretSettingName("string")
                .build())
            .unauthenticatedAction("string")
            .build())
        .publicNetworkAccessEnabled(false)
        .servicePlanId("string")
        .authSettings(LinuxFunctionAppSlotAuthSettingsArgs.builder()
            .enabled(false)
            .github(LinuxFunctionAppSlotAuthSettingsGithubArgs.builder()
                .clientId("string")
                .clientSecret("string")
                .clientSecretSettingName("string")
                .oauthScopes("string")
                .build())
            .issuer("string")
            .defaultProvider("string")
            .additionalLoginParameters(Map.of("string", "string"))
            .facebook(LinuxFunctionAppSlotAuthSettingsFacebookArgs.builder()
                .appId("string")
                .appSecret("string")
                .appSecretSettingName("string")
                .oauthScopes("string")
                .build())
            .activeDirectory(LinuxFunctionAppSlotAuthSettingsActiveDirectoryArgs.builder()
                .clientId("string")
                .allowedAudiences("string")
                .clientSecret("string")
                .clientSecretSettingName("string")
                .build())
            .google(LinuxFunctionAppSlotAuthSettingsGoogleArgs.builder()
                .clientId("string")
                .clientSecret("string")
                .clientSecretSettingName("string")
                .oauthScopes("string")
                .build())
            .allowedExternalRedirectUrls("string")
            .microsoft(LinuxFunctionAppSlotAuthSettingsMicrosoftArgs.builder()
                .clientId("string")
                .clientSecret("string")
                .clientSecretSettingName("string")
                .oauthScopes("string")
                .build())
            .runtimeVersion("string")
            .tokenRefreshExtensionHours(0)
            .tokenStoreEnabled(false)
            .twitter(LinuxFunctionAppSlotAuthSettingsTwitterArgs.builder()
                .consumerKey("string")
                .consumerSecret("string")
                .consumerSecretSettingName("string")
                .build())
            .unauthenticatedClientAction("string")
            .build())
        .storageAccountAccessKey("string")
        .storageAccountName("string")
        .storageAccounts(LinuxFunctionAppSlotStorageAccountArgs.builder()
            .accessKey("string")
            .accountName("string")
            .name("string")
            .shareName("string")
            .type("string")
            .mountPath("string")
            .build())
        .storageKeyVaultSecretId("string")
        .storageUsesManagedIdentity(false)
        .tags(Map.of("string", "string"))
        .virtualNetworkSubnetId("string")
        .vnetImagePullEnabled(false)
        .webdeployPublishBasicAuthenticationEnabled(false)
        .build());
    
    linux_function_app_slot_resource = azure.appservice.LinuxFunctionAppSlot("linuxFunctionAppSlotResource",
        function_app_id="string",
        site_config={
            "always_on": False,
            "api_definition_url": "string",
            "api_management_api_id": "string",
            "app_command_line": "string",
            "app_scale_limit": 0,
            "app_service_logs": {
                "disk_quota_mb": 0,
                "retention_period_days": 0,
            },
            "application_insights_connection_string": "string",
            "application_insights_key": "string",
            "application_stack": {
                "dockers": [{
                    "image_name": "string",
                    "image_tag": "string",
                    "registry_url": "string",
                    "registry_password": "string",
                    "registry_username": "string",
                }],
                "dotnet_version": "string",
                "java_version": "string",
                "node_version": "string",
                "powershell_core_version": "string",
                "python_version": "string",
                "use_custom_runtime": False,
                "use_dotnet_isolated_runtime": False,
            },
            "auto_swap_slot_name": "string",
            "container_registry_managed_identity_client_id": "string",
            "container_registry_use_managed_identity": False,
            "cors": {
                "allowed_origins": ["string"],
                "support_credentials": False,
            },
            "default_documents": ["string"],
            "detailed_error_logging_enabled": False,
            "elastic_instance_minimum": 0,
            "ftps_state": "string",
            "health_check_eviction_time_in_min": 0,
            "health_check_path": "string",
            "http2_enabled": False,
            "ip_restriction_default_action": "string",
            "ip_restrictions": [{
                "action": "string",
                "description": "string",
                "headers": {
                    "x_azure_fdids": ["string"],
                    "x_fd_health_probe": "string",
                    "x_forwarded_fors": ["string"],
                    "x_forwarded_hosts": ["string"],
                },
                "ip_address": "string",
                "name": "string",
                "priority": 0,
                "service_tag": "string",
                "virtual_network_subnet_id": "string",
            }],
            "linux_fx_version": "string",
            "load_balancing_mode": "string",
            "managed_pipeline_mode": "string",
            "minimum_tls_version": "string",
            "pre_warmed_instance_count": 0,
            "remote_debugging_enabled": False,
            "remote_debugging_version": "string",
            "runtime_scale_monitoring_enabled": False,
            "scm_ip_restriction_default_action": "string",
            "scm_ip_restrictions": [{
                "action": "string",
                "description": "string",
                "headers": {
                    "x_azure_fdids": ["string"],
                    "x_fd_health_probe": "string",
                    "x_forwarded_fors": ["string"],
                    "x_forwarded_hosts": ["string"],
                },
                "ip_address": "string",
                "name": "string",
                "priority": 0,
                "service_tag": "string",
                "virtual_network_subnet_id": "string",
            }],
            "scm_minimum_tls_version": "string",
            "scm_type": "string",
            "scm_use_main_ip_restriction": False,
            "use32_bit_worker": False,
            "vnet_route_all_enabled": False,
            "websockets_enabled": False,
            "worker_count": 0,
        },
        client_certificate_mode="string",
        client_certificate_exclusion_paths="string",
        identity={
            "type": "string",
            "identity_ids": ["string"],
            "principal_id": "string",
            "tenant_id": "string",
        },
        client_certificate_enabled=False,
        key_vault_reference_identity_id="string",
        app_settings={
            "string": "string",
        },
        connection_strings=[{
            "name": "string",
            "type": "string",
            "value": "string",
        }],
        content_share_force_disabled=False,
        daily_memory_time_quota=0,
        enabled=False,
        ftp_publish_basic_authentication_enabled=False,
        name="string",
        functions_extension_version="string",
        https_only=False,
        builtin_logging_enabled=False,
        backup={
            "name": "string",
            "schedule": {
                "frequency_interval": 0,
                "frequency_unit": "string",
                "keep_at_least_one_backup": False,
                "last_execution_time": "string",
                "retention_period_days": 0,
                "start_time": "string",
            },
            "storage_account_url": "string",
            "enabled": False,
        },
        auth_settings_v2={
            "login": {
                "allowed_external_redirect_urls": ["string"],
                "cookie_expiration_convention": "string",
                "cookie_expiration_time": "string",
                "logout_endpoint": "string",
                "nonce_expiration_time": "string",
                "preserve_url_fragments_for_logins": False,
                "token_refresh_extension_time": 0,
                "token_store_enabled": False,
                "token_store_path": "string",
                "token_store_sas_setting_name": "string",
                "validate_nonce": False,
            },
            "custom_oidc_v2s": [{
                "client_id": "string",
                "name": "string",
                "openid_configuration_endpoint": "string",
                "authorisation_endpoint": "string",
                "certification_uri": "string",
                "client_credential_method": "string",
                "client_secret_setting_name": "string",
                "issuer_endpoint": "string",
                "name_claim_type": "string",
                "scopes": ["string"],
                "token_endpoint": "string",
            }],
            "active_directory_v2": {
                "client_id": "string",
                "tenant_auth_endpoint": "string",
                "allowed_applications": ["string"],
                "allowed_audiences": ["string"],
                "allowed_groups": ["string"],
                "allowed_identities": ["string"],
                "client_secret_certificate_thumbprint": "string",
                "client_secret_setting_name": "string",
                "jwt_allowed_client_applications": ["string"],
                "jwt_allowed_groups": ["string"],
                "login_parameters": {
                    "string": "string",
                },
                "www_authentication_disabled": False,
            },
            "forward_proxy_custom_scheme_header_name": "string",
            "google_v2": {
                "client_id": "string",
                "client_secret_setting_name": "string",
                "allowed_audiences": ["string"],
                "login_scopes": ["string"],
            },
            "github_v2": {
                "client_id": "string",
                "client_secret_setting_name": "string",
                "login_scopes": ["string"],
            },
            "default_provider": "string",
            "excluded_paths": ["string"],
            "facebook_v2": {
                "app_id": "string",
                "app_secret_setting_name": "string",
                "graph_api_version": "string",
                "login_scopes": ["string"],
            },
            "forward_proxy_convention": "string",
            "forward_proxy_custom_host_header_name": "string",
            "azure_static_web_app_v2": {
                "client_id": "string",
            },
            "auth_enabled": False,
            "config_file_path": "string",
            "http_route_api_prefix": "string",
            "apple_v2": {
                "client_id": "string",
                "client_secret_setting_name": "string",
                "login_scopes": ["string"],
            },
            "microsoft_v2": {
                "client_id": "string",
                "client_secret_setting_name": "string",
                "allowed_audiences": ["string"],
                "login_scopes": ["string"],
            },
            "require_authentication": False,
            "require_https": False,
            "runtime_version": "string",
            "twitter_v2": {
                "consumer_key": "string",
                "consumer_secret_setting_name": "string",
            },
            "unauthenticated_action": "string",
        },
        public_network_access_enabled=False,
        service_plan_id="string",
        auth_settings={
            "enabled": False,
            "github": {
                "client_id": "string",
                "client_secret": "string",
                "client_secret_setting_name": "string",
                "oauth_scopes": ["string"],
            },
            "issuer": "string",
            "default_provider": "string",
            "additional_login_parameters": {
                "string": "string",
            },
            "facebook": {
                "app_id": "string",
                "app_secret": "string",
                "app_secret_setting_name": "string",
                "oauth_scopes": ["string"],
            },
            "active_directory": {
                "client_id": "string",
                "allowed_audiences": ["string"],
                "client_secret": "string",
                "client_secret_setting_name": "string",
            },
            "google": {
                "client_id": "string",
                "client_secret": "string",
                "client_secret_setting_name": "string",
                "oauth_scopes": ["string"],
            },
            "allowed_external_redirect_urls": ["string"],
            "microsoft": {
                "client_id": "string",
                "client_secret": "string",
                "client_secret_setting_name": "string",
                "oauth_scopes": ["string"],
            },
            "runtime_version": "string",
            "token_refresh_extension_hours": 0,
            "token_store_enabled": False,
            "twitter": {
                "consumer_key": "string",
                "consumer_secret": "string",
                "consumer_secret_setting_name": "string",
            },
            "unauthenticated_client_action": "string",
        },
        storage_account_access_key="string",
        storage_account_name="string",
        storage_accounts=[{
            "access_key": "string",
            "account_name": "string",
            "name": "string",
            "share_name": "string",
            "type": "string",
            "mount_path": "string",
        }],
        storage_key_vault_secret_id="string",
        storage_uses_managed_identity=False,
        tags={
            "string": "string",
        },
        virtual_network_subnet_id="string",
        vnet_image_pull_enabled=False,
        webdeploy_publish_basic_authentication_enabled=False)
    
    const linuxFunctionAppSlotResource = new azure.appservice.LinuxFunctionAppSlot("linuxFunctionAppSlotResource", {
        functionAppId: "string",
        siteConfig: {
            alwaysOn: false,
            apiDefinitionUrl: "string",
            apiManagementApiId: "string",
            appCommandLine: "string",
            appScaleLimit: 0,
            appServiceLogs: {
                diskQuotaMb: 0,
                retentionPeriodDays: 0,
            },
            applicationInsightsConnectionString: "string",
            applicationInsightsKey: "string",
            applicationStack: {
                dockers: [{
                    imageName: "string",
                    imageTag: "string",
                    registryUrl: "string",
                    registryPassword: "string",
                    registryUsername: "string",
                }],
                dotnetVersion: "string",
                javaVersion: "string",
                nodeVersion: "string",
                powershellCoreVersion: "string",
                pythonVersion: "string",
                useCustomRuntime: false,
                useDotnetIsolatedRuntime: false,
            },
            autoSwapSlotName: "string",
            containerRegistryManagedIdentityClientId: "string",
            containerRegistryUseManagedIdentity: false,
            cors: {
                allowedOrigins: ["string"],
                supportCredentials: false,
            },
            defaultDocuments: ["string"],
            detailedErrorLoggingEnabled: false,
            elasticInstanceMinimum: 0,
            ftpsState: "string",
            healthCheckEvictionTimeInMin: 0,
            healthCheckPath: "string",
            http2Enabled: false,
            ipRestrictionDefaultAction: "string",
            ipRestrictions: [{
                action: "string",
                description: "string",
                headers: {
                    xAzureFdids: ["string"],
                    xFdHealthProbe: "string",
                    xForwardedFors: ["string"],
                    xForwardedHosts: ["string"],
                },
                ipAddress: "string",
                name: "string",
                priority: 0,
                serviceTag: "string",
                virtualNetworkSubnetId: "string",
            }],
            linuxFxVersion: "string",
            loadBalancingMode: "string",
            managedPipelineMode: "string",
            minimumTlsVersion: "string",
            preWarmedInstanceCount: 0,
            remoteDebuggingEnabled: false,
            remoteDebuggingVersion: "string",
            runtimeScaleMonitoringEnabled: false,
            scmIpRestrictionDefaultAction: "string",
            scmIpRestrictions: [{
                action: "string",
                description: "string",
                headers: {
                    xAzureFdids: ["string"],
                    xFdHealthProbe: "string",
                    xForwardedFors: ["string"],
                    xForwardedHosts: ["string"],
                },
                ipAddress: "string",
                name: "string",
                priority: 0,
                serviceTag: "string",
                virtualNetworkSubnetId: "string",
            }],
            scmMinimumTlsVersion: "string",
            scmType: "string",
            scmUseMainIpRestriction: false,
            use32BitWorker: false,
            vnetRouteAllEnabled: false,
            websocketsEnabled: false,
            workerCount: 0,
        },
        clientCertificateMode: "string",
        clientCertificateExclusionPaths: "string",
        identity: {
            type: "string",
            identityIds: ["string"],
            principalId: "string",
            tenantId: "string",
        },
        clientCertificateEnabled: false,
        keyVaultReferenceIdentityId: "string",
        appSettings: {
            string: "string",
        },
        connectionStrings: [{
            name: "string",
            type: "string",
            value: "string",
        }],
        contentShareForceDisabled: false,
        dailyMemoryTimeQuota: 0,
        enabled: false,
        ftpPublishBasicAuthenticationEnabled: false,
        name: "string",
        functionsExtensionVersion: "string",
        httpsOnly: false,
        builtinLoggingEnabled: false,
        backup: {
            name: "string",
            schedule: {
                frequencyInterval: 0,
                frequencyUnit: "string",
                keepAtLeastOneBackup: false,
                lastExecutionTime: "string",
                retentionPeriodDays: 0,
                startTime: "string",
            },
            storageAccountUrl: "string",
            enabled: false,
        },
        authSettingsV2: {
            login: {
                allowedExternalRedirectUrls: ["string"],
                cookieExpirationConvention: "string",
                cookieExpirationTime: "string",
                logoutEndpoint: "string",
                nonceExpirationTime: "string",
                preserveUrlFragmentsForLogins: false,
                tokenRefreshExtensionTime: 0,
                tokenStoreEnabled: false,
                tokenStorePath: "string",
                tokenStoreSasSettingName: "string",
                validateNonce: false,
            },
            customOidcV2s: [{
                clientId: "string",
                name: "string",
                openidConfigurationEndpoint: "string",
                authorisationEndpoint: "string",
                certificationUri: "string",
                clientCredentialMethod: "string",
                clientSecretSettingName: "string",
                issuerEndpoint: "string",
                nameClaimType: "string",
                scopes: ["string"],
                tokenEndpoint: "string",
            }],
            activeDirectoryV2: {
                clientId: "string",
                tenantAuthEndpoint: "string",
                allowedApplications: ["string"],
                allowedAudiences: ["string"],
                allowedGroups: ["string"],
                allowedIdentities: ["string"],
                clientSecretCertificateThumbprint: "string",
                clientSecretSettingName: "string",
                jwtAllowedClientApplications: ["string"],
                jwtAllowedGroups: ["string"],
                loginParameters: {
                    string: "string",
                },
                wwwAuthenticationDisabled: false,
            },
            forwardProxyCustomSchemeHeaderName: "string",
            googleV2: {
                clientId: "string",
                clientSecretSettingName: "string",
                allowedAudiences: ["string"],
                loginScopes: ["string"],
            },
            githubV2: {
                clientId: "string",
                clientSecretSettingName: "string",
                loginScopes: ["string"],
            },
            defaultProvider: "string",
            excludedPaths: ["string"],
            facebookV2: {
                appId: "string",
                appSecretSettingName: "string",
                graphApiVersion: "string",
                loginScopes: ["string"],
            },
            forwardProxyConvention: "string",
            forwardProxyCustomHostHeaderName: "string",
            azureStaticWebAppV2: {
                clientId: "string",
            },
            authEnabled: false,
            configFilePath: "string",
            httpRouteApiPrefix: "string",
            appleV2: {
                clientId: "string",
                clientSecretSettingName: "string",
                loginScopes: ["string"],
            },
            microsoftV2: {
                clientId: "string",
                clientSecretSettingName: "string",
                allowedAudiences: ["string"],
                loginScopes: ["string"],
            },
            requireAuthentication: false,
            requireHttps: false,
            runtimeVersion: "string",
            twitterV2: {
                consumerKey: "string",
                consumerSecretSettingName: "string",
            },
            unauthenticatedAction: "string",
        },
        publicNetworkAccessEnabled: false,
        servicePlanId: "string",
        authSettings: {
            enabled: false,
            github: {
                clientId: "string",
                clientSecret: "string",
                clientSecretSettingName: "string",
                oauthScopes: ["string"],
            },
            issuer: "string",
            defaultProvider: "string",
            additionalLoginParameters: {
                string: "string",
            },
            facebook: {
                appId: "string",
                appSecret: "string",
                appSecretSettingName: "string",
                oauthScopes: ["string"],
            },
            activeDirectory: {
                clientId: "string",
                allowedAudiences: ["string"],
                clientSecret: "string",
                clientSecretSettingName: "string",
            },
            google: {
                clientId: "string",
                clientSecret: "string",
                clientSecretSettingName: "string",
                oauthScopes: ["string"],
            },
            allowedExternalRedirectUrls: ["string"],
            microsoft: {
                clientId: "string",
                clientSecret: "string",
                clientSecretSettingName: "string",
                oauthScopes: ["string"],
            },
            runtimeVersion: "string",
            tokenRefreshExtensionHours: 0,
            tokenStoreEnabled: false,
            twitter: {
                consumerKey: "string",
                consumerSecret: "string",
                consumerSecretSettingName: "string",
            },
            unauthenticatedClientAction: "string",
        },
        storageAccountAccessKey: "string",
        storageAccountName: "string",
        storageAccounts: [{
            accessKey: "string",
            accountName: "string",
            name: "string",
            shareName: "string",
            type: "string",
            mountPath: "string",
        }],
        storageKeyVaultSecretId: "string",
        storageUsesManagedIdentity: false,
        tags: {
            string: "string",
        },
        virtualNetworkSubnetId: "string",
        vnetImagePullEnabled: false,
        webdeployPublishBasicAuthenticationEnabled: false,
    });
    
    type: azure:appservice:LinuxFunctionAppSlot
    properties:
        appSettings:
            string: string
        authSettings:
            activeDirectory:
                allowedAudiences:
                    - string
                clientId: string
                clientSecret: string
                clientSecretSettingName: string
            additionalLoginParameters:
                string: string
            allowedExternalRedirectUrls:
                - string
            defaultProvider: string
            enabled: false
            facebook:
                appId: string
                appSecret: string
                appSecretSettingName: string
                oauthScopes:
                    - string
            github:
                clientId: string
                clientSecret: string
                clientSecretSettingName: string
                oauthScopes:
                    - string
            google:
                clientId: string
                clientSecret: string
                clientSecretSettingName: string
                oauthScopes:
                    - string
            issuer: string
            microsoft:
                clientId: string
                clientSecret: string
                clientSecretSettingName: string
                oauthScopes:
                    - string
            runtimeVersion: string
            tokenRefreshExtensionHours: 0
            tokenStoreEnabled: false
            twitter:
                consumerKey: string
                consumerSecret: string
                consumerSecretSettingName: string
            unauthenticatedClientAction: string
        authSettingsV2:
            activeDirectoryV2:
                allowedApplications:
                    - string
                allowedAudiences:
                    - string
                allowedGroups:
                    - string
                allowedIdentities:
                    - string
                clientId: string
                clientSecretCertificateThumbprint: string
                clientSecretSettingName: string
                jwtAllowedClientApplications:
                    - string
                jwtAllowedGroups:
                    - string
                loginParameters:
                    string: string
                tenantAuthEndpoint: string
                wwwAuthenticationDisabled: false
            appleV2:
                clientId: string
                clientSecretSettingName: string
                loginScopes:
                    - string
            authEnabled: false
            azureStaticWebAppV2:
                clientId: string
            configFilePath: string
            customOidcV2s:
                - authorisationEndpoint: string
                  certificationUri: string
                  clientCredentialMethod: string
                  clientId: string
                  clientSecretSettingName: string
                  issuerEndpoint: string
                  name: string
                  nameClaimType: string
                  openidConfigurationEndpoint: string
                  scopes:
                    - string
                  tokenEndpoint: string
            defaultProvider: string
            excludedPaths:
                - string
            facebookV2:
                appId: string
                appSecretSettingName: string
                graphApiVersion: string
                loginScopes:
                    - string
            forwardProxyConvention: string
            forwardProxyCustomHostHeaderName: string
            forwardProxyCustomSchemeHeaderName: string
            githubV2:
                clientId: string
                clientSecretSettingName: string
                loginScopes:
                    - string
            googleV2:
                allowedAudiences:
                    - string
                clientId: string
                clientSecretSettingName: string
                loginScopes:
                    - string
            httpRouteApiPrefix: string
            login:
                allowedExternalRedirectUrls:
                    - string
                cookieExpirationConvention: string
                cookieExpirationTime: string
                logoutEndpoint: string
                nonceExpirationTime: string
                preserveUrlFragmentsForLogins: false
                tokenRefreshExtensionTime: 0
                tokenStoreEnabled: false
                tokenStorePath: string
                tokenStoreSasSettingName: string
                validateNonce: false
            microsoftV2:
                allowedAudiences:
                    - string
                clientId: string
                clientSecretSettingName: string
                loginScopes:
                    - string
            requireAuthentication: false
            requireHttps: false
            runtimeVersion: string
            twitterV2:
                consumerKey: string
                consumerSecretSettingName: string
            unauthenticatedAction: string
        backup:
            enabled: false
            name: string
            schedule:
                frequencyInterval: 0
                frequencyUnit: string
                keepAtLeastOneBackup: false
                lastExecutionTime: string
                retentionPeriodDays: 0
                startTime: string
            storageAccountUrl: string
        builtinLoggingEnabled: false
        clientCertificateEnabled: false
        clientCertificateExclusionPaths: string
        clientCertificateMode: string
        connectionStrings:
            - name: string
              type: string
              value: string
        contentShareForceDisabled: false
        dailyMemoryTimeQuota: 0
        enabled: false
        ftpPublishBasicAuthenticationEnabled: false
        functionAppId: string
        functionsExtensionVersion: string
        httpsOnly: false
        identity:
            identityIds:
                - string
            principalId: string
            tenantId: string
            type: string
        keyVaultReferenceIdentityId: string
        name: string
        publicNetworkAccessEnabled: false
        servicePlanId: string
        siteConfig:
            alwaysOn: false
            apiDefinitionUrl: string
            apiManagementApiId: string
            appCommandLine: string
            appScaleLimit: 0
            appServiceLogs:
                diskQuotaMb: 0
                retentionPeriodDays: 0
            applicationInsightsConnectionString: string
            applicationInsightsKey: string
            applicationStack:
                dockers:
                    - imageName: string
                      imageTag: string
                      registryPassword: string
                      registryUrl: string
                      registryUsername: string
                dotnetVersion: string
                javaVersion: string
                nodeVersion: string
                powershellCoreVersion: string
                pythonVersion: string
                useCustomRuntime: false
                useDotnetIsolatedRuntime: false
            autoSwapSlotName: string
            containerRegistryManagedIdentityClientId: string
            containerRegistryUseManagedIdentity: false
            cors:
                allowedOrigins:
                    - string
                supportCredentials: false
            defaultDocuments:
                - string
            detailedErrorLoggingEnabled: false
            elasticInstanceMinimum: 0
            ftpsState: string
            healthCheckEvictionTimeInMin: 0
            healthCheckPath: string
            http2Enabled: false
            ipRestrictionDefaultAction: string
            ipRestrictions:
                - action: string
                  description: string
                  headers:
                    xAzureFdids:
                        - string
                    xFdHealthProbe: string
                    xForwardedFors:
                        - string
                    xForwardedHosts:
                        - string
                  ipAddress: string
                  name: string
                  priority: 0
                  serviceTag: string
                  virtualNetworkSubnetId: string
            linuxFxVersion: string
            loadBalancingMode: string
            managedPipelineMode: string
            minimumTlsVersion: string
            preWarmedInstanceCount: 0
            remoteDebuggingEnabled: false
            remoteDebuggingVersion: string
            runtimeScaleMonitoringEnabled: false
            scmIpRestrictionDefaultAction: string
            scmIpRestrictions:
                - action: string
                  description: string
                  headers:
                    xAzureFdids:
                        - string
                    xFdHealthProbe: string
                    xForwardedFors:
                        - string
                    xForwardedHosts:
                        - string
                  ipAddress: string
                  name: string
                  priority: 0
                  serviceTag: string
                  virtualNetworkSubnetId: string
            scmMinimumTlsVersion: string
            scmType: string
            scmUseMainIpRestriction: false
            use32BitWorker: false
            vnetRouteAllEnabled: false
            websocketsEnabled: false
            workerCount: 0
        storageAccountAccessKey: string
        storageAccountName: string
        storageAccounts:
            - accessKey: string
              accountName: string
              mountPath: string
              name: string
              shareName: string
              type: string
        storageKeyVaultSecretId: string
        storageUsesManagedIdentity: false
        tags:
            string: string
        virtualNetworkSubnetId: string
        vnetImagePullEnabled: false
        webdeployPublishBasicAuthenticationEnabled: false
    

    LinuxFunctionAppSlot Resource Properties

    To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.

    Inputs

    In Python, inputs that are objects can be passed either as argument classes or as dictionary literals.

    The LinuxFunctionAppSlot resource accepts the following input properties:

    FunctionAppId string
    The ID of the Linux Function App this Slot is a member of. Changing this forces a new resource to be created.
    SiteConfig LinuxFunctionAppSlotSiteConfig
    a site_config block as detailed below.
    AppSettings Dictionary<string, string>
    A map of key-value pairs for App Settings and custom values.
    AuthSettings LinuxFunctionAppSlotAuthSettings
    an auth_settings block as detailed below.
    AuthSettingsV2 LinuxFunctionAppSlotAuthSettingsV2
    an auth_settings_v2 block as detailed below.
    Backup LinuxFunctionAppSlotBackup
    a backup block as detailed below.
    BuiltinLoggingEnabled bool
    Should built in logging be enabled. Configures AzureWebJobsDashboard app setting based on the configured storage setting. Defaults to true.
    ClientCertificateEnabled bool
    Should the Function App Slot use Client Certificates.
    ClientCertificateExclusionPaths string
    Paths to exclude when using client certificates, separated by ;
    ClientCertificateMode string
    The mode of the Function App Slot's client certificates requirement for incoming requests. Possible values are Required, Optional, and OptionalInteractiveUser. Defaults to Optional.
    ConnectionStrings List<LinuxFunctionAppSlotConnectionString>
    a connection_string block as detailed below.
    ContentShareForceDisabled bool
    Force disable the content share settings.
    DailyMemoryTimeQuota int
    The amount of memory in gigabyte-seconds that your application is allowed to consume per day. Setting this value only affects function apps in Consumption Plans. Defaults to 0.
    Enabled bool
    Is the Linux Function App Slot enabled. Defaults to true.
    FtpPublishBasicAuthenticationEnabled bool
    Are the default FTP Basic Authentication publishing credentials enabled. Defaults to true.
    FunctionsExtensionVersion string
    The runtime version associated with the Function App Slot. Defaults to ~4.
    HttpsOnly bool
    Can the Function App Slot only be accessed via HTTPS?. Defaults to false.
    Identity LinuxFunctionAppSlotIdentity
    An identity block as detailed below.
    KeyVaultReferenceIdentityId string
    The User Assigned Identity ID used for accessing KeyVault secrets. The identity must be assigned to the application in the identity block. For more information see - Access vaults with a user-assigned identity
    Name string
    Specifies the name of the Function App Slot. Changing this forces a new resource to be created.
    PublicNetworkAccessEnabled bool
    Should public network access be enabled for the Function App. Defaults to true.
    ServicePlanId string
    The ID of the Service Plan in which to run this slot. If not specified the same Service Plan as the Linux Function App will be used.
    StorageAccountAccessKey string
    The access key which will be used to access the storage account for the Function App Slot.
    StorageAccountName string
    The backend storage account name which will be used by this Function App Slot.
    StorageAccounts List<LinuxFunctionAppSlotStorageAccount>
    One or more storage_account blocks as defined below.
    StorageKeyVaultSecretId string

    The Key Vault Secret ID, optionally including version, that contains the Connection String to connect to the storage account for this Function App.

    NOTE: storage_key_vault_secret_id cannot be used with storage_account_name.

    NOTE: storage_key_vault_secret_id used without a version will use the latest version of the secret, however, the service can take up to 24h to pick up a rotation of the latest version. See the official docs for more information.

    StorageUsesManagedIdentity bool

    Should the Function App Slot use its Managed Identity to access storage.

    NOTE: One of storage_account_access_key or storage_uses_managed_identity must be specified when using storage_account_name.

    Tags Dictionary<string, string>
    A mapping of tags which should be assigned to the Linux Function App.
    VirtualNetworkSubnetId string
    VnetImagePullEnabled bool
    Is container image pull over virtual network enabled? Defaults to false.
    WebdeployPublishBasicAuthenticationEnabled bool
    Should the default WebDeploy Basic Authentication publishing credentials enabled. Defaults to true.
    FunctionAppId string
    The ID of the Linux Function App this Slot is a member of. Changing this forces a new resource to be created.
    SiteConfig LinuxFunctionAppSlotSiteConfigArgs
    a site_config block as detailed below.
    AppSettings map[string]string
    A map of key-value pairs for App Settings and custom values.
    AuthSettings LinuxFunctionAppSlotAuthSettingsArgs
    an auth_settings block as detailed below.
    AuthSettingsV2 LinuxFunctionAppSlotAuthSettingsV2Args
    an auth_settings_v2 block as detailed below.
    Backup LinuxFunctionAppSlotBackupArgs
    a backup block as detailed below.
    BuiltinLoggingEnabled bool
    Should built in logging be enabled. Configures AzureWebJobsDashboard app setting based on the configured storage setting. Defaults to true.
    ClientCertificateEnabled bool
    Should the Function App Slot use Client Certificates.
    ClientCertificateExclusionPaths string
    Paths to exclude when using client certificates, separated by ;
    ClientCertificateMode string
    The mode of the Function App Slot's client certificates requirement for incoming requests. Possible values are Required, Optional, and OptionalInteractiveUser. Defaults to Optional.
    ConnectionStrings []LinuxFunctionAppSlotConnectionStringArgs
    a connection_string block as detailed below.
    ContentShareForceDisabled bool
    Force disable the content share settings.
    DailyMemoryTimeQuota int
    The amount of memory in gigabyte-seconds that your application is allowed to consume per day. Setting this value only affects function apps in Consumption Plans. Defaults to 0.
    Enabled bool
    Is the Linux Function App Slot enabled. Defaults to true.
    FtpPublishBasicAuthenticationEnabled bool
    Are the default FTP Basic Authentication publishing credentials enabled. Defaults to true.
    FunctionsExtensionVersion string
    The runtime version associated with the Function App Slot. Defaults to ~4.
    HttpsOnly bool
    Can the Function App Slot only be accessed via HTTPS?. Defaults to false.
    Identity LinuxFunctionAppSlotIdentityArgs
    An identity block as detailed below.
    KeyVaultReferenceIdentityId string
    The User Assigned Identity ID used for accessing KeyVault secrets. The identity must be assigned to the application in the identity block. For more information see - Access vaults with a user-assigned identity
    Name string
    Specifies the name of the Function App Slot. Changing this forces a new resource to be created.
    PublicNetworkAccessEnabled bool
    Should public network access be enabled for the Function App. Defaults to true.
    ServicePlanId string
    The ID of the Service Plan in which to run this slot. If not specified the same Service Plan as the Linux Function App will be used.
    StorageAccountAccessKey string
    The access key which will be used to access the storage account for the Function App Slot.
    StorageAccountName string
    The backend storage account name which will be used by this Function App Slot.
    StorageAccounts []LinuxFunctionAppSlotStorageAccountArgs
    One or more storage_account blocks as defined below.
    StorageKeyVaultSecretId string

    The Key Vault Secret ID, optionally including version, that contains the Connection String to connect to the storage account for this Function App.

    NOTE: storage_key_vault_secret_id cannot be used with storage_account_name.

    NOTE: storage_key_vault_secret_id used without a version will use the latest version of the secret, however, the service can take up to 24h to pick up a rotation of the latest version. See the official docs for more information.

    StorageUsesManagedIdentity bool

    Should the Function App Slot use its Managed Identity to access storage.

    NOTE: One of storage_account_access_key or storage_uses_managed_identity must be specified when using storage_account_name.

    Tags map[string]string
    A mapping of tags which should be assigned to the Linux Function App.
    VirtualNetworkSubnetId string
    VnetImagePullEnabled bool
    Is container image pull over virtual network enabled? Defaults to false.
    WebdeployPublishBasicAuthenticationEnabled bool
    Should the default WebDeploy Basic Authentication publishing credentials enabled. Defaults to true.
    functionAppId String
    The ID of the Linux Function App this Slot is a member of. Changing this forces a new resource to be created.
    siteConfig LinuxFunctionAppSlotSiteConfig
    a site_config block as detailed below.
    appSettings Map<String,String>
    A map of key-value pairs for App Settings and custom values.
    authSettings LinuxFunctionAppSlotAuthSettings
    an auth_settings block as detailed below.
    authSettingsV2 LinuxFunctionAppSlotAuthSettingsV2
    an auth_settings_v2 block as detailed below.
    backup LinuxFunctionAppSlotBackup
    a backup block as detailed below.
    builtinLoggingEnabled Boolean
    Should built in logging be enabled. Configures AzureWebJobsDashboard app setting based on the configured storage setting. Defaults to true.
    clientCertificateEnabled Boolean
    Should the Function App Slot use Client Certificates.
    clientCertificateExclusionPaths String
    Paths to exclude when using client certificates, separated by ;
    clientCertificateMode String
    The mode of the Function App Slot's client certificates requirement for incoming requests. Possible values are Required, Optional, and OptionalInteractiveUser. Defaults to Optional.
    connectionStrings List<LinuxFunctionAppSlotConnectionString>
    a connection_string block as detailed below.
    contentShareForceDisabled Boolean
    Force disable the content share settings.
    dailyMemoryTimeQuota Integer
    The amount of memory in gigabyte-seconds that your application is allowed to consume per day. Setting this value only affects function apps in Consumption Plans. Defaults to 0.
    enabled Boolean
    Is the Linux Function App Slot enabled. Defaults to true.
    ftpPublishBasicAuthenticationEnabled Boolean
    Are the default FTP Basic Authentication publishing credentials enabled. Defaults to true.
    functionsExtensionVersion String
    The runtime version associated with the Function App Slot. Defaults to ~4.
    httpsOnly Boolean
    Can the Function App Slot only be accessed via HTTPS?. Defaults to false.
    identity LinuxFunctionAppSlotIdentity
    An identity block as detailed below.
    keyVaultReferenceIdentityId String
    The User Assigned Identity ID used for accessing KeyVault secrets. The identity must be assigned to the application in the identity block. For more information see - Access vaults with a user-assigned identity
    name String
    Specifies the name of the Function App Slot. Changing this forces a new resource to be created.
    publicNetworkAccessEnabled Boolean
    Should public network access be enabled for the Function App. Defaults to true.
    servicePlanId String
    The ID of the Service Plan in which to run this slot. If not specified the same Service Plan as the Linux Function App will be used.
    storageAccountAccessKey String
    The access key which will be used to access the storage account for the Function App Slot.
    storageAccountName String
    The backend storage account name which will be used by this Function App Slot.
    storageAccounts List<LinuxFunctionAppSlotStorageAccount>
    One or more storage_account blocks as defined below.
    storageKeyVaultSecretId String

    The Key Vault Secret ID, optionally including version, that contains the Connection String to connect to the storage account for this Function App.

    NOTE: storage_key_vault_secret_id cannot be used with storage_account_name.

    NOTE: storage_key_vault_secret_id used without a version will use the latest version of the secret, however, the service can take up to 24h to pick up a rotation of the latest version. See the official docs for more information.

    storageUsesManagedIdentity Boolean

    Should the Function App Slot use its Managed Identity to access storage.

    NOTE: One of storage_account_access_key or storage_uses_managed_identity must be specified when using storage_account_name.

    tags Map<String,String>
    A mapping of tags which should be assigned to the Linux Function App.
    virtualNetworkSubnetId String
    vnetImagePullEnabled Boolean
    Is container image pull over virtual network enabled? Defaults to false.
    webdeployPublishBasicAuthenticationEnabled Boolean
    Should the default WebDeploy Basic Authentication publishing credentials enabled. Defaults to true.
    functionAppId string
    The ID of the Linux Function App this Slot is a member of. Changing this forces a new resource to be created.
    siteConfig LinuxFunctionAppSlotSiteConfig
    a site_config block as detailed below.
    appSettings {[key: string]: string}
    A map of key-value pairs for App Settings and custom values.
    authSettings LinuxFunctionAppSlotAuthSettings
    an auth_settings block as detailed below.
    authSettingsV2 LinuxFunctionAppSlotAuthSettingsV2
    an auth_settings_v2 block as detailed below.
    backup LinuxFunctionAppSlotBackup
    a backup block as detailed below.
    builtinLoggingEnabled boolean
    Should built in logging be enabled. Configures AzureWebJobsDashboard app setting based on the configured storage setting. Defaults to true.
    clientCertificateEnabled boolean
    Should the Function App Slot use Client Certificates.
    clientCertificateExclusionPaths string
    Paths to exclude when using client certificates, separated by ;
    clientCertificateMode string
    The mode of the Function App Slot's client certificates requirement for incoming requests. Possible values are Required, Optional, and OptionalInteractiveUser. Defaults to Optional.
    connectionStrings LinuxFunctionAppSlotConnectionString[]
    a connection_string block as detailed below.
    contentShareForceDisabled boolean
    Force disable the content share settings.
    dailyMemoryTimeQuota number
    The amount of memory in gigabyte-seconds that your application is allowed to consume per day. Setting this value only affects function apps in Consumption Plans. Defaults to 0.
    enabled boolean
    Is the Linux Function App Slot enabled. Defaults to true.
    ftpPublishBasicAuthenticationEnabled boolean
    Are the default FTP Basic Authentication publishing credentials enabled. Defaults to true.
    functionsExtensionVersion string
    The runtime version associated with the Function App Slot. Defaults to ~4.
    httpsOnly boolean
    Can the Function App Slot only be accessed via HTTPS?. Defaults to false.
    identity LinuxFunctionAppSlotIdentity
    An identity block as detailed below.
    keyVaultReferenceIdentityId string
    The User Assigned Identity ID used for accessing KeyVault secrets. The identity must be assigned to the application in the identity block. For more information see - Access vaults with a user-assigned identity
    name string
    Specifies the name of the Function App Slot. Changing this forces a new resource to be created.
    publicNetworkAccessEnabled boolean
    Should public network access be enabled for the Function App. Defaults to true.
    servicePlanId string
    The ID of the Service Plan in which to run this slot. If not specified the same Service Plan as the Linux Function App will be used.
    storageAccountAccessKey string
    The access key which will be used to access the storage account for the Function App Slot.
    storageAccountName string
    The backend storage account name which will be used by this Function App Slot.
    storageAccounts LinuxFunctionAppSlotStorageAccount[]
    One or more storage_account blocks as defined below.
    storageKeyVaultSecretId string

    The Key Vault Secret ID, optionally including version, that contains the Connection String to connect to the storage account for this Function App.

    NOTE: storage_key_vault_secret_id cannot be used with storage_account_name.

    NOTE: storage_key_vault_secret_id used without a version will use the latest version of the secret, however, the service can take up to 24h to pick up a rotation of the latest version. See the official docs for more information.

    storageUsesManagedIdentity boolean

    Should the Function App Slot use its Managed Identity to access storage.

    NOTE: One of storage_account_access_key or storage_uses_managed_identity must be specified when using storage_account_name.

    tags {[key: string]: string}
    A mapping of tags which should be assigned to the Linux Function App.
    virtualNetworkSubnetId string
    vnetImagePullEnabled boolean
    Is container image pull over virtual network enabled? Defaults to false.
    webdeployPublishBasicAuthenticationEnabled boolean
    Should the default WebDeploy Basic Authentication publishing credentials enabled. Defaults to true.
    function_app_id str
    The ID of the Linux Function App this Slot is a member of. Changing this forces a new resource to be created.
    site_config LinuxFunctionAppSlotSiteConfigArgs
    a site_config block as detailed below.
    app_settings Mapping[str, str]
    A map of key-value pairs for App Settings and custom values.
    auth_settings LinuxFunctionAppSlotAuthSettingsArgs
    an auth_settings block as detailed below.
    auth_settings_v2 LinuxFunctionAppSlotAuthSettingsV2Args
    an auth_settings_v2 block as detailed below.
    backup LinuxFunctionAppSlotBackupArgs
    a backup block as detailed below.
    builtin_logging_enabled bool
    Should built in logging be enabled. Configures AzureWebJobsDashboard app setting based on the configured storage setting. Defaults to true.
    client_certificate_enabled bool
    Should the Function App Slot use Client Certificates.
    client_certificate_exclusion_paths str
    Paths to exclude when using client certificates, separated by ;
    client_certificate_mode str
    The mode of the Function App Slot's client certificates requirement for incoming requests. Possible values are Required, Optional, and OptionalInteractiveUser. Defaults to Optional.
    connection_strings Sequence[LinuxFunctionAppSlotConnectionStringArgs]
    a connection_string block as detailed below.
    content_share_force_disabled bool
    Force disable the content share settings.
    daily_memory_time_quota int
    The amount of memory in gigabyte-seconds that your application is allowed to consume per day. Setting this value only affects function apps in Consumption Plans. Defaults to 0.
    enabled bool
    Is the Linux Function App Slot enabled. Defaults to true.
    ftp_publish_basic_authentication_enabled bool
    Are the default FTP Basic Authentication publishing credentials enabled. Defaults to true.
    functions_extension_version str
    The runtime version associated with the Function App Slot. Defaults to ~4.
    https_only bool
    Can the Function App Slot only be accessed via HTTPS?. Defaults to false.
    identity LinuxFunctionAppSlotIdentityArgs
    An identity block as detailed below.
    key_vault_reference_identity_id str
    The User Assigned Identity ID used for accessing KeyVault secrets. The identity must be assigned to the application in the identity block. For more information see - Access vaults with a user-assigned identity
    name str
    Specifies the name of the Function App Slot. Changing this forces a new resource to be created.
    public_network_access_enabled bool
    Should public network access be enabled for the Function App. Defaults to true.
    service_plan_id str
    The ID of the Service Plan in which to run this slot. If not specified the same Service Plan as the Linux Function App will be used.
    storage_account_access_key str
    The access key which will be used to access the storage account for the Function App Slot.
    storage_account_name str
    The backend storage account name which will be used by this Function App Slot.
    storage_accounts Sequence[LinuxFunctionAppSlotStorageAccountArgs]
    One or more storage_account blocks as defined below.
    storage_key_vault_secret_id str

    The Key Vault Secret ID, optionally including version, that contains the Connection String to connect to the storage account for this Function App.

    NOTE: storage_key_vault_secret_id cannot be used with storage_account_name.

    NOTE: storage_key_vault_secret_id used without a version will use the latest version of the secret, however, the service can take up to 24h to pick up a rotation of the latest version. See the official docs for more information.

    storage_uses_managed_identity bool

    Should the Function App Slot use its Managed Identity to access storage.

    NOTE: One of storage_account_access_key or storage_uses_managed_identity must be specified when using storage_account_name.

    tags Mapping[str, str]
    A mapping of tags which should be assigned to the Linux Function App.
    virtual_network_subnet_id str
    vnet_image_pull_enabled bool
    Is container image pull over virtual network enabled? Defaults to false.
    webdeploy_publish_basic_authentication_enabled bool
    Should the default WebDeploy Basic Authentication publishing credentials enabled. Defaults to true.
    functionAppId String
    The ID of the Linux Function App this Slot is a member of. Changing this forces a new resource to be created.
    siteConfig Property Map
    a site_config block as detailed below.
    appSettings Map<String>
    A map of key-value pairs for App Settings and custom values.
    authSettings Property Map
    an auth_settings block as detailed below.
    authSettingsV2 Property Map
    an auth_settings_v2 block as detailed below.
    backup Property Map
    a backup block as detailed below.
    builtinLoggingEnabled Boolean
    Should built in logging be enabled. Configures AzureWebJobsDashboard app setting based on the configured storage setting. Defaults to true.
    clientCertificateEnabled Boolean
    Should the Function App Slot use Client Certificates.
    clientCertificateExclusionPaths String
    Paths to exclude when using client certificates, separated by ;
    clientCertificateMode String
    The mode of the Function App Slot's client certificates requirement for incoming requests. Possible values are Required, Optional, and OptionalInteractiveUser. Defaults to Optional.
    connectionStrings List<Property Map>
    a connection_string block as detailed below.
    contentShareForceDisabled Boolean
    Force disable the content share settings.
    dailyMemoryTimeQuota Number
    The amount of memory in gigabyte-seconds that your application is allowed to consume per day. Setting this value only affects function apps in Consumption Plans. Defaults to 0.
    enabled Boolean
    Is the Linux Function App Slot enabled. Defaults to true.
    ftpPublishBasicAuthenticationEnabled Boolean
    Are the default FTP Basic Authentication publishing credentials enabled. Defaults to true.
    functionsExtensionVersion String
    The runtime version associated with the Function App Slot. Defaults to ~4.
    httpsOnly Boolean
    Can the Function App Slot only be accessed via HTTPS?. Defaults to false.
    identity Property Map
    An identity block as detailed below.
    keyVaultReferenceIdentityId String
    The User Assigned Identity ID used for accessing KeyVault secrets. The identity must be assigned to the application in the identity block. For more information see - Access vaults with a user-assigned identity
    name String
    Specifies the name of the Function App Slot. Changing this forces a new resource to be created.
    publicNetworkAccessEnabled Boolean
    Should public network access be enabled for the Function App. Defaults to true.
    servicePlanId String
    The ID of the Service Plan in which to run this slot. If not specified the same Service Plan as the Linux Function App will be used.
    storageAccountAccessKey String
    The access key which will be used to access the storage account for the Function App Slot.
    storageAccountName String
    The backend storage account name which will be used by this Function App Slot.
    storageAccounts List<Property Map>
    One or more storage_account blocks as defined below.
    storageKeyVaultSecretId String

    The Key Vault Secret ID, optionally including version, that contains the Connection String to connect to the storage account for this Function App.

    NOTE: storage_key_vault_secret_id cannot be used with storage_account_name.

    NOTE: storage_key_vault_secret_id used without a version will use the latest version of the secret, however, the service can take up to 24h to pick up a rotation of the latest version. See the official docs for more information.

    storageUsesManagedIdentity Boolean

    Should the Function App Slot use its Managed Identity to access storage.

    NOTE: One of storage_account_access_key or storage_uses_managed_identity must be specified when using storage_account_name.

    tags Map<String>
    A mapping of tags which should be assigned to the Linux Function App.
    virtualNetworkSubnetId String
    vnetImagePullEnabled Boolean
    Is container image pull over virtual network enabled? Defaults to false.
    webdeployPublishBasicAuthenticationEnabled Boolean
    Should the default WebDeploy Basic Authentication publishing credentials enabled. Defaults to true.

    Outputs

    All input properties are implicitly available as output properties. Additionally, the LinuxFunctionAppSlot resource produces the following output properties:

    CustomDomainVerificationId string
    The identifier used by App Service to perform domain ownership verification via DNS TXT record.
    DefaultHostname string
    The default hostname of the Linux Function App Slot.
    HostingEnvironmentId string
    The ID of the App Service Environment used by Function App Slot.
    Id string
    The provider-assigned unique ID for this managed resource.
    Kind string
    The Kind value for this Linux Function App Slot.
    OutboundIpAddressLists List<string>
    A list of outbound IP addresses. For example ["52.23.25.3", "52.143.43.12"]
    OutboundIpAddresses string
    A comma separated list of outbound IP addresses as a string. For example 52.23.25.3,52.143.43.12.
    PossibleOutboundIpAddressLists List<string>
    A list of possible outbound IP addresses, not all of which are necessarily in use. This is a superset of outbound_ip_address_list. For example ["52.23.25.3", "52.143.43.12"].
    PossibleOutboundIpAddresses string
    A comma separated list of possible outbound IP addresses as a string. For example 52.23.25.3,52.143.43.12,52.143.43.17. This is a superset of outbound_ip_addresses. For example ["52.23.25.3", "52.143.43.12","52.143.43.17"].
    SiteCredentials List<LinuxFunctionAppSlotSiteCredential>
    A site_credential block as defined below.
    CustomDomainVerificationId string
    The identifier used by App Service to perform domain ownership verification via DNS TXT record.
    DefaultHostname string
    The default hostname of the Linux Function App Slot.
    HostingEnvironmentId string
    The ID of the App Service Environment used by Function App Slot.
    Id string
    The provider-assigned unique ID for this managed resource.
    Kind string
    The Kind value for this Linux Function App Slot.
    OutboundIpAddressLists []string
    A list of outbound IP addresses. For example ["52.23.25.3", "52.143.43.12"]
    OutboundIpAddresses string
    A comma separated list of outbound IP addresses as a string. For example 52.23.25.3,52.143.43.12.
    PossibleOutboundIpAddressLists []string
    A list of possible outbound IP addresses, not all of which are necessarily in use. This is a superset of outbound_ip_address_list. For example ["52.23.25.3", "52.143.43.12"].
    PossibleOutboundIpAddresses string
    A comma separated list of possible outbound IP addresses as a string. For example 52.23.25.3,52.143.43.12,52.143.43.17. This is a superset of outbound_ip_addresses. For example ["52.23.25.3", "52.143.43.12","52.143.43.17"].
    SiteCredentials []LinuxFunctionAppSlotSiteCredential
    A site_credential block as defined below.
    customDomainVerificationId String
    The identifier used by App Service to perform domain ownership verification via DNS TXT record.
    defaultHostname String
    The default hostname of the Linux Function App Slot.
    hostingEnvironmentId String
    The ID of the App Service Environment used by Function App Slot.
    id String
    The provider-assigned unique ID for this managed resource.
    kind String
    The Kind value for this Linux Function App Slot.
    outboundIpAddressLists List<String>
    A list of outbound IP addresses. For example ["52.23.25.3", "52.143.43.12"]
    outboundIpAddresses String
    A comma separated list of outbound IP addresses as a string. For example 52.23.25.3,52.143.43.12.
    possibleOutboundIpAddressLists List<String>
    A list of possible outbound IP addresses, not all of which are necessarily in use. This is a superset of outbound_ip_address_list. For example ["52.23.25.3", "52.143.43.12"].
    possibleOutboundIpAddresses String
    A comma separated list of possible outbound IP addresses as a string. For example 52.23.25.3,52.143.43.12,52.143.43.17. This is a superset of outbound_ip_addresses. For example ["52.23.25.3", "52.143.43.12","52.143.43.17"].
    siteCredentials List<LinuxFunctionAppSlotSiteCredential>
    A site_credential block as defined below.
    customDomainVerificationId string
    The identifier used by App Service to perform domain ownership verification via DNS TXT record.
    defaultHostname string
    The default hostname of the Linux Function App Slot.
    hostingEnvironmentId string
    The ID of the App Service Environment used by Function App Slot.
    id string
    The provider-assigned unique ID for this managed resource.
    kind string
    The Kind value for this Linux Function App Slot.
    outboundIpAddressLists string[]
    A list of outbound IP addresses. For example ["52.23.25.3", "52.143.43.12"]
    outboundIpAddresses string
    A comma separated list of outbound IP addresses as a string. For example 52.23.25.3,52.143.43.12.
    possibleOutboundIpAddressLists string[]
    A list of possible outbound IP addresses, not all of which are necessarily in use. This is a superset of outbound_ip_address_list. For example ["52.23.25.3", "52.143.43.12"].
    possibleOutboundIpAddresses string
    A comma separated list of possible outbound IP addresses as a string. For example 52.23.25.3,52.143.43.12,52.143.43.17. This is a superset of outbound_ip_addresses. For example ["52.23.25.3", "52.143.43.12","52.143.43.17"].
    siteCredentials LinuxFunctionAppSlotSiteCredential[]
    A site_credential block as defined below.
    custom_domain_verification_id str
    The identifier used by App Service to perform domain ownership verification via DNS TXT record.
    default_hostname str
    The default hostname of the Linux Function App Slot.
    hosting_environment_id str
    The ID of the App Service Environment used by Function App Slot.
    id str
    The provider-assigned unique ID for this managed resource.
    kind str
    The Kind value for this Linux Function App Slot.
    outbound_ip_address_lists Sequence[str]
    A list of outbound IP addresses. For example ["52.23.25.3", "52.143.43.12"]
    outbound_ip_addresses str
    A comma separated list of outbound IP addresses as a string. For example 52.23.25.3,52.143.43.12.
    possible_outbound_ip_address_lists Sequence[str]
    A list of possible outbound IP addresses, not all of which are necessarily in use. This is a superset of outbound_ip_address_list. For example ["52.23.25.3", "52.143.43.12"].
    possible_outbound_ip_addresses str
    A comma separated list of possible outbound IP addresses as a string. For example 52.23.25.3,52.143.43.12,52.143.43.17. This is a superset of outbound_ip_addresses. For example ["52.23.25.3", "52.143.43.12","52.143.43.17"].
    site_credentials Sequence[LinuxFunctionAppSlotSiteCredential]
    A site_credential block as defined below.
    customDomainVerificationId String
    The identifier used by App Service to perform domain ownership verification via DNS TXT record.
    defaultHostname String
    The default hostname of the Linux Function App Slot.
    hostingEnvironmentId String
    The ID of the App Service Environment used by Function App Slot.
    id String
    The provider-assigned unique ID for this managed resource.
    kind String
    The Kind value for this Linux Function App Slot.
    outboundIpAddressLists List<String>
    A list of outbound IP addresses. For example ["52.23.25.3", "52.143.43.12"]
    outboundIpAddresses String
    A comma separated list of outbound IP addresses as a string. For example 52.23.25.3,52.143.43.12.
    possibleOutboundIpAddressLists List<String>
    A list of possible outbound IP addresses, not all of which are necessarily in use. This is a superset of outbound_ip_address_list. For example ["52.23.25.3", "52.143.43.12"].
    possibleOutboundIpAddresses String
    A comma separated list of possible outbound IP addresses as a string. For example 52.23.25.3,52.143.43.12,52.143.43.17. This is a superset of outbound_ip_addresses. For example ["52.23.25.3", "52.143.43.12","52.143.43.17"].
    siteCredentials List<Property Map>
    A site_credential block as defined below.

    Look up Existing LinuxFunctionAppSlot Resource

    Get an existing LinuxFunctionAppSlot resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.

    public static get(name: string, id: Input<ID>, state?: LinuxFunctionAppSlotState, opts?: CustomResourceOptions): LinuxFunctionAppSlot
    @staticmethod
    def get(resource_name: str,
            id: str,
            opts: Optional[ResourceOptions] = None,
            app_settings: Optional[Mapping[str, str]] = None,
            auth_settings: Optional[LinuxFunctionAppSlotAuthSettingsArgs] = None,
            auth_settings_v2: Optional[LinuxFunctionAppSlotAuthSettingsV2Args] = None,
            backup: Optional[LinuxFunctionAppSlotBackupArgs] = None,
            builtin_logging_enabled: Optional[bool] = None,
            client_certificate_enabled: Optional[bool] = None,
            client_certificate_exclusion_paths: Optional[str] = None,
            client_certificate_mode: Optional[str] = None,
            connection_strings: Optional[Sequence[LinuxFunctionAppSlotConnectionStringArgs]] = None,
            content_share_force_disabled: Optional[bool] = None,
            custom_domain_verification_id: Optional[str] = None,
            daily_memory_time_quota: Optional[int] = None,
            default_hostname: Optional[str] = None,
            enabled: Optional[bool] = None,
            ftp_publish_basic_authentication_enabled: Optional[bool] = None,
            function_app_id: Optional[str] = None,
            functions_extension_version: Optional[str] = None,
            hosting_environment_id: Optional[str] = None,
            https_only: Optional[bool] = None,
            identity: Optional[LinuxFunctionAppSlotIdentityArgs] = None,
            key_vault_reference_identity_id: Optional[str] = None,
            kind: Optional[str] = None,
            name: Optional[str] = None,
            outbound_ip_address_lists: Optional[Sequence[str]] = None,
            outbound_ip_addresses: Optional[str] = None,
            possible_outbound_ip_address_lists: Optional[Sequence[str]] = None,
            possible_outbound_ip_addresses: Optional[str] = None,
            public_network_access_enabled: Optional[bool] = None,
            service_plan_id: Optional[str] = None,
            site_config: Optional[LinuxFunctionAppSlotSiteConfigArgs] = None,
            site_credentials: Optional[Sequence[LinuxFunctionAppSlotSiteCredentialArgs]] = None,
            storage_account_access_key: Optional[str] = None,
            storage_account_name: Optional[str] = None,
            storage_accounts: Optional[Sequence[LinuxFunctionAppSlotStorageAccountArgs]] = None,
            storage_key_vault_secret_id: Optional[str] = None,
            storage_uses_managed_identity: Optional[bool] = None,
            tags: Optional[Mapping[str, str]] = None,
            virtual_network_subnet_id: Optional[str] = None,
            vnet_image_pull_enabled: Optional[bool] = None,
            webdeploy_publish_basic_authentication_enabled: Optional[bool] = None) -> LinuxFunctionAppSlot
    func GetLinuxFunctionAppSlot(ctx *Context, name string, id IDInput, state *LinuxFunctionAppSlotState, opts ...ResourceOption) (*LinuxFunctionAppSlot, error)
    public static LinuxFunctionAppSlot Get(string name, Input<string> id, LinuxFunctionAppSlotState? state, CustomResourceOptions? opts = null)
    public static LinuxFunctionAppSlot get(String name, Output<String> id, LinuxFunctionAppSlotState state, CustomResourceOptions options)
    Resource lookup is not supported in YAML
    name
    The unique name of the resulting resource.
    id
    The unique provider ID of the resource to lookup.
    state
    Any extra arguments used during the lookup.
    opts
    A bag of options that control this resource's behavior.
    resource_name
    The unique name of the resulting resource.
    id
    The unique provider ID of the resource to lookup.
    name
    The unique name of the resulting resource.
    id
    The unique provider ID of the resource to lookup.
    state
    Any extra arguments used during the lookup.
    opts
    A bag of options that control this resource's behavior.
    name
    The unique name of the resulting resource.
    id
    The unique provider ID of the resource to lookup.
    state
    Any extra arguments used during the lookup.
    opts
    A bag of options that control this resource's behavior.
    name
    The unique name of the resulting resource.
    id
    The unique provider ID of the resource to lookup.
    state
    Any extra arguments used during the lookup.
    opts
    A bag of options that control this resource's behavior.
    The following state arguments are supported:
    AppSettings Dictionary<string, string>
    A map of key-value pairs for App Settings and custom values.
    AuthSettings LinuxFunctionAppSlotAuthSettings
    an auth_settings block as detailed below.
    AuthSettingsV2 LinuxFunctionAppSlotAuthSettingsV2
    an auth_settings_v2 block as detailed below.
    Backup LinuxFunctionAppSlotBackup
    a backup block as detailed below.
    BuiltinLoggingEnabled bool
    Should built in logging be enabled. Configures AzureWebJobsDashboard app setting based on the configured storage setting. Defaults to true.
    ClientCertificateEnabled bool
    Should the Function App Slot use Client Certificates.
    ClientCertificateExclusionPaths string
    Paths to exclude when using client certificates, separated by ;
    ClientCertificateMode string
    The mode of the Function App Slot's client certificates requirement for incoming requests. Possible values are Required, Optional, and OptionalInteractiveUser. Defaults to Optional.
    ConnectionStrings List<LinuxFunctionAppSlotConnectionString>
    a connection_string block as detailed below.
    ContentShareForceDisabled bool
    Force disable the content share settings.
    CustomDomainVerificationId string
    The identifier used by App Service to perform domain ownership verification via DNS TXT record.
    DailyMemoryTimeQuota int
    The amount of memory in gigabyte-seconds that your application is allowed to consume per day. Setting this value only affects function apps in Consumption Plans. Defaults to 0.
    DefaultHostname string
    The default hostname of the Linux Function App Slot.
    Enabled bool
    Is the Linux Function App Slot enabled. Defaults to true.
    FtpPublishBasicAuthenticationEnabled bool
    Are the default FTP Basic Authentication publishing credentials enabled. Defaults to true.
    FunctionAppId string
    The ID of the Linux Function App this Slot is a member of. Changing this forces a new resource to be created.
    FunctionsExtensionVersion string
    The runtime version associated with the Function App Slot. Defaults to ~4.
    HostingEnvironmentId string
    The ID of the App Service Environment used by Function App Slot.
    HttpsOnly bool
    Can the Function App Slot only be accessed via HTTPS?. Defaults to false.
    Identity LinuxFunctionAppSlotIdentity
    An identity block as detailed below.
    KeyVaultReferenceIdentityId string
    The User Assigned Identity ID used for accessing KeyVault secrets. The identity must be assigned to the application in the identity block. For more information see - Access vaults with a user-assigned identity
    Kind string
    The Kind value for this Linux Function App Slot.
    Name string
    Specifies the name of the Function App Slot. Changing this forces a new resource to be created.
    OutboundIpAddressLists List<string>
    A list of outbound IP addresses. For example ["52.23.25.3", "52.143.43.12"]
    OutboundIpAddresses string
    A comma separated list of outbound IP addresses as a string. For example 52.23.25.3,52.143.43.12.
    PossibleOutboundIpAddressLists List<string>
    A list of possible outbound IP addresses, not all of which are necessarily in use. This is a superset of outbound_ip_address_list. For example ["52.23.25.3", "52.143.43.12"].
    PossibleOutboundIpAddresses string
    A comma separated list of possible outbound IP addresses as a string. For example 52.23.25.3,52.143.43.12,52.143.43.17. This is a superset of outbound_ip_addresses. For example ["52.23.25.3", "52.143.43.12","52.143.43.17"].
    PublicNetworkAccessEnabled bool
    Should public network access be enabled for the Function App. Defaults to true.
    ServicePlanId string
    The ID of the Service Plan in which to run this slot. If not specified the same Service Plan as the Linux Function App will be used.
    SiteConfig LinuxFunctionAppSlotSiteConfig
    a site_config block as detailed below.
    SiteCredentials List<LinuxFunctionAppSlotSiteCredential>
    A site_credential block as defined below.
    StorageAccountAccessKey string
    The access key which will be used to access the storage account for the Function App Slot.
    StorageAccountName string
    The backend storage account name which will be used by this Function App Slot.
    StorageAccounts List<LinuxFunctionAppSlotStorageAccount>
    One or more storage_account blocks as defined below.
    StorageKeyVaultSecretId string

    The Key Vault Secret ID, optionally including version, that contains the Connection String to connect to the storage account for this Function App.

    NOTE: storage_key_vault_secret_id cannot be used with storage_account_name.

    NOTE: storage_key_vault_secret_id used without a version will use the latest version of the secret, however, the service can take up to 24h to pick up a rotation of the latest version. See the official docs for more information.

    StorageUsesManagedIdentity bool

    Should the Function App Slot use its Managed Identity to access storage.

    NOTE: One of storage_account_access_key or storage_uses_managed_identity must be specified when using storage_account_name.

    Tags Dictionary<string, string>
    A mapping of tags which should be assigned to the Linux Function App.
    VirtualNetworkSubnetId string
    VnetImagePullEnabled bool
    Is container image pull over virtual network enabled? Defaults to false.
    WebdeployPublishBasicAuthenticationEnabled bool
    Should the default WebDeploy Basic Authentication publishing credentials enabled. Defaults to true.
    AppSettings map[string]string
    A map of key-value pairs for App Settings and custom values.
    AuthSettings LinuxFunctionAppSlotAuthSettingsArgs
    an auth_settings block as detailed below.
    AuthSettingsV2 LinuxFunctionAppSlotAuthSettingsV2Args
    an auth_settings_v2 block as detailed below.
    Backup LinuxFunctionAppSlotBackupArgs
    a backup block as detailed below.
    BuiltinLoggingEnabled bool
    Should built in logging be enabled. Configures AzureWebJobsDashboard app setting based on the configured storage setting. Defaults to true.
    ClientCertificateEnabled bool
    Should the Function App Slot use Client Certificates.
    ClientCertificateExclusionPaths string
    Paths to exclude when using client certificates, separated by ;
    ClientCertificateMode string
    The mode of the Function App Slot's client certificates requirement for incoming requests. Possible values are Required, Optional, and OptionalInteractiveUser. Defaults to Optional.
    ConnectionStrings []LinuxFunctionAppSlotConnectionStringArgs
    a connection_string block as detailed below.
    ContentShareForceDisabled bool
    Force disable the content share settings.
    CustomDomainVerificationId string
    The identifier used by App Service to perform domain ownership verification via DNS TXT record.
    DailyMemoryTimeQuota int
    The amount of memory in gigabyte-seconds that your application is allowed to consume per day. Setting this value only affects function apps in Consumption Plans. Defaults to 0.
    DefaultHostname string
    The default hostname of the Linux Function App Slot.
    Enabled bool
    Is the Linux Function App Slot enabled. Defaults to true.
    FtpPublishBasicAuthenticationEnabled bool
    Are the default FTP Basic Authentication publishing credentials enabled. Defaults to true.
    FunctionAppId string
    The ID of the Linux Function App this Slot is a member of. Changing this forces a new resource to be created.
    FunctionsExtensionVersion string
    The runtime version associated with the Function App Slot. Defaults to ~4.
    HostingEnvironmentId string
    The ID of the App Service Environment used by Function App Slot.
    HttpsOnly bool
    Can the Function App Slot only be accessed via HTTPS?. Defaults to false.
    Identity LinuxFunctionAppSlotIdentityArgs
    An identity block as detailed below.
    KeyVaultReferenceIdentityId string
    The User Assigned Identity ID used for accessing KeyVault secrets. The identity must be assigned to the application in the identity block. For more information see - Access vaults with a user-assigned identity
    Kind string
    The Kind value for this Linux Function App Slot.
    Name string
    Specifies the name of the Function App Slot. Changing this forces a new resource to be created.
    OutboundIpAddressLists []string
    A list of outbound IP addresses. For example ["52.23.25.3", "52.143.43.12"]
    OutboundIpAddresses string
    A comma separated list of outbound IP addresses as a string. For example 52.23.25.3,52.143.43.12.
    PossibleOutboundIpAddressLists []string
    A list of possible outbound IP addresses, not all of which are necessarily in use. This is a superset of outbound_ip_address_list. For example ["52.23.25.3", "52.143.43.12"].
    PossibleOutboundIpAddresses string
    A comma separated list of possible outbound IP addresses as a string. For example 52.23.25.3,52.143.43.12,52.143.43.17. This is a superset of outbound_ip_addresses. For example ["52.23.25.3", "52.143.43.12","52.143.43.17"].
    PublicNetworkAccessEnabled bool
    Should public network access be enabled for the Function App. Defaults to true.
    ServicePlanId string
    The ID of the Service Plan in which to run this slot. If not specified the same Service Plan as the Linux Function App will be used.
    SiteConfig LinuxFunctionAppSlotSiteConfigArgs
    a site_config block as detailed below.
    SiteCredentials []LinuxFunctionAppSlotSiteCredentialArgs
    A site_credential block as defined below.
    StorageAccountAccessKey string
    The access key which will be used to access the storage account for the Function App Slot.
    StorageAccountName string
    The backend storage account name which will be used by this Function App Slot.
    StorageAccounts []LinuxFunctionAppSlotStorageAccountArgs
    One or more storage_account blocks as defined below.
    StorageKeyVaultSecretId string

    The Key Vault Secret ID, optionally including version, that contains the Connection String to connect to the storage account for this Function App.

    NOTE: storage_key_vault_secret_id cannot be used with storage_account_name.

    NOTE: storage_key_vault_secret_id used without a version will use the latest version of the secret, however, the service can take up to 24h to pick up a rotation of the latest version. See the official docs for more information.

    StorageUsesManagedIdentity bool

    Should the Function App Slot use its Managed Identity to access storage.

    NOTE: One of storage_account_access_key or storage_uses_managed_identity must be specified when using storage_account_name.

    Tags map[string]string
    A mapping of tags which should be assigned to the Linux Function App.
    VirtualNetworkSubnetId string
    VnetImagePullEnabled bool
    Is container image pull over virtual network enabled? Defaults to false.
    WebdeployPublishBasicAuthenticationEnabled bool
    Should the default WebDeploy Basic Authentication publishing credentials enabled. Defaults to true.
    appSettings Map<String,String>
    A map of key-value pairs for App Settings and custom values.
    authSettings LinuxFunctionAppSlotAuthSettings
    an auth_settings block as detailed below.
    authSettingsV2 LinuxFunctionAppSlotAuthSettingsV2
    an auth_settings_v2 block as detailed below.
    backup LinuxFunctionAppSlotBackup
    a backup block as detailed below.
    builtinLoggingEnabled Boolean
    Should built in logging be enabled. Configures AzureWebJobsDashboard app setting based on the configured storage setting. Defaults to true.
    clientCertificateEnabled Boolean
    Should the Function App Slot use Client Certificates.
    clientCertificateExclusionPaths String
    Paths to exclude when using client certificates, separated by ;
    clientCertificateMode String
    The mode of the Function App Slot's client certificates requirement for incoming requests. Possible values are Required, Optional, and OptionalInteractiveUser. Defaults to Optional.
    connectionStrings List<LinuxFunctionAppSlotConnectionString>
    a connection_string block as detailed below.
    contentShareForceDisabled Boolean
    Force disable the content share settings.
    customDomainVerificationId String
    The identifier used by App Service to perform domain ownership verification via DNS TXT record.
    dailyMemoryTimeQuota Integer
    The amount of memory in gigabyte-seconds that your application is allowed to consume per day. Setting this value only affects function apps in Consumption Plans. Defaults to 0.
    defaultHostname String
    The default hostname of the Linux Function App Slot.
    enabled Boolean
    Is the Linux Function App Slot enabled. Defaults to true.
    ftpPublishBasicAuthenticationEnabled Boolean
    Are the default FTP Basic Authentication publishing credentials enabled. Defaults to true.
    functionAppId String
    The ID of the Linux Function App this Slot is a member of. Changing this forces a new resource to be created.
    functionsExtensionVersion String
    The runtime version associated with the Function App Slot. Defaults to ~4.
    hostingEnvironmentId String
    The ID of the App Service Environment used by Function App Slot.
    httpsOnly Boolean
    Can the Function App Slot only be accessed via HTTPS?. Defaults to false.
    identity LinuxFunctionAppSlotIdentity
    An identity block as detailed below.
    keyVaultReferenceIdentityId String
    The User Assigned Identity ID used for accessing KeyVault secrets. The identity must be assigned to the application in the identity block. For more information see - Access vaults with a user-assigned identity
    kind String
    The Kind value for this Linux Function App Slot.
    name String
    Specifies the name of the Function App Slot. Changing this forces a new resource to be created.
    outboundIpAddressLists List<String>
    A list of outbound IP addresses. For example ["52.23.25.3", "52.143.43.12"]
    outboundIpAddresses String
    A comma separated list of outbound IP addresses as a string. For example 52.23.25.3,52.143.43.12.
    possibleOutboundIpAddressLists List<String>
    A list of possible outbound IP addresses, not all of which are necessarily in use. This is a superset of outbound_ip_address_list. For example ["52.23.25.3", "52.143.43.12"].
    possibleOutboundIpAddresses String
    A comma separated list of possible outbound IP addresses as a string. For example 52.23.25.3,52.143.43.12,52.143.43.17. This is a superset of outbound_ip_addresses. For example ["52.23.25.3", "52.143.43.12","52.143.43.17"].
    publicNetworkAccessEnabled Boolean
    Should public network access be enabled for the Function App. Defaults to true.
    servicePlanId String
    The ID of the Service Plan in which to run this slot. If not specified the same Service Plan as the Linux Function App will be used.
    siteConfig LinuxFunctionAppSlotSiteConfig
    a site_config block as detailed below.
    siteCredentials List<LinuxFunctionAppSlotSiteCredential>
    A site_credential block as defined below.
    storageAccountAccessKey String
    The access key which will be used to access the storage account for the Function App Slot.
    storageAccountName String
    The backend storage account name which will be used by this Function App Slot.
    storageAccounts List<LinuxFunctionAppSlotStorageAccount>
    One or more storage_account blocks as defined below.
    storageKeyVaultSecretId String

    The Key Vault Secret ID, optionally including version, that contains the Connection String to connect to the storage account for this Function App.

    NOTE: storage_key_vault_secret_id cannot be used with storage_account_name.

    NOTE: storage_key_vault_secret_id used without a version will use the latest version of the secret, however, the service can take up to 24h to pick up a rotation of the latest version. See the official docs for more information.

    storageUsesManagedIdentity Boolean

    Should the Function App Slot use its Managed Identity to access storage.

    NOTE: One of storage_account_access_key or storage_uses_managed_identity must be specified when using storage_account_name.

    tags Map<String,String>
    A mapping of tags which should be assigned to the Linux Function App.
    virtualNetworkSubnetId String
    vnetImagePullEnabled Boolean
    Is container image pull over virtual network enabled? Defaults to false.
    webdeployPublishBasicAuthenticationEnabled Boolean
    Should the default WebDeploy Basic Authentication publishing credentials enabled. Defaults to true.
    appSettings {[key: string]: string}
    A map of key-value pairs for App Settings and custom values.
    authSettings LinuxFunctionAppSlotAuthSettings
    an auth_settings block as detailed below.
    authSettingsV2 LinuxFunctionAppSlotAuthSettingsV2
    an auth_settings_v2 block as detailed below.
    backup LinuxFunctionAppSlotBackup
    a backup block as detailed below.
    builtinLoggingEnabled boolean
    Should built in logging be enabled. Configures AzureWebJobsDashboard app setting based on the configured storage setting. Defaults to true.
    clientCertificateEnabled boolean
    Should the Function App Slot use Client Certificates.
    clientCertificateExclusionPaths string
    Paths to exclude when using client certificates, separated by ;
    clientCertificateMode string
    The mode of the Function App Slot's client certificates requirement for incoming requests. Possible values are Required, Optional, and OptionalInteractiveUser. Defaults to Optional.
    connectionStrings LinuxFunctionAppSlotConnectionString[]
    a connection_string block as detailed below.
    contentShareForceDisabled boolean
    Force disable the content share settings.
    customDomainVerificationId string
    The identifier used by App Service to perform domain ownership verification via DNS TXT record.
    dailyMemoryTimeQuota number
    The amount of memory in gigabyte-seconds that your application is allowed to consume per day. Setting this value only affects function apps in Consumption Plans. Defaults to 0.
    defaultHostname string
    The default hostname of the Linux Function App Slot.
    enabled boolean
    Is the Linux Function App Slot enabled. Defaults to true.
    ftpPublishBasicAuthenticationEnabled boolean
    Are the default FTP Basic Authentication publishing credentials enabled. Defaults to true.
    functionAppId string
    The ID of the Linux Function App this Slot is a member of. Changing this forces a new resource to be created.
    functionsExtensionVersion string
    The runtime version associated with the Function App Slot. Defaults to ~4.
    hostingEnvironmentId string
    The ID of the App Service Environment used by Function App Slot.
    httpsOnly boolean
    Can the Function App Slot only be accessed via HTTPS?. Defaults to false.
    identity LinuxFunctionAppSlotIdentity
    An identity block as detailed below.
    keyVaultReferenceIdentityId string
    The User Assigned Identity ID used for accessing KeyVault secrets. The identity must be assigned to the application in the identity block. For more information see - Access vaults with a user-assigned identity
    kind string
    The Kind value for this Linux Function App Slot.
    name string
    Specifies the name of the Function App Slot. Changing this forces a new resource to be created.
    outboundIpAddressLists string[]
    A list of outbound IP addresses. For example ["52.23.25.3", "52.143.43.12"]
    outboundIpAddresses string
    A comma separated list of outbound IP addresses as a string. For example 52.23.25.3,52.143.43.12.
    possibleOutboundIpAddressLists string[]
    A list of possible outbound IP addresses, not all of which are necessarily in use. This is a superset of outbound_ip_address_list. For example ["52.23.25.3", "52.143.43.12"].
    possibleOutboundIpAddresses string
    A comma separated list of possible outbound IP addresses as a string. For example 52.23.25.3,52.143.43.12,52.143.43.17. This is a superset of outbound_ip_addresses. For example ["52.23.25.3", "52.143.43.12","52.143.43.17"].
    publicNetworkAccessEnabled boolean
    Should public network access be enabled for the Function App. Defaults to true.
    servicePlanId string
    The ID of the Service Plan in which to run this slot. If not specified the same Service Plan as the Linux Function App will be used.
    siteConfig LinuxFunctionAppSlotSiteConfig
    a site_config block as detailed below.
    siteCredentials LinuxFunctionAppSlotSiteCredential[]
    A site_credential block as defined below.
    storageAccountAccessKey string
    The access key which will be used to access the storage account for the Function App Slot.
    storageAccountName string
    The backend storage account name which will be used by this Function App Slot.
    storageAccounts LinuxFunctionAppSlotStorageAccount[]
    One or more storage_account blocks as defined below.
    storageKeyVaultSecretId string

    The Key Vault Secret ID, optionally including version, that contains the Connection String to connect to the storage account for this Function App.

    NOTE: storage_key_vault_secret_id cannot be used with storage_account_name.

    NOTE: storage_key_vault_secret_id used without a version will use the latest version of the secret, however, the service can take up to 24h to pick up a rotation of the latest version. See the official docs for more information.

    storageUsesManagedIdentity boolean

    Should the Function App Slot use its Managed Identity to access storage.

    NOTE: One of storage_account_access_key or storage_uses_managed_identity must be specified when using storage_account_name.

    tags {[key: string]: string}
    A mapping of tags which should be assigned to the Linux Function App.
    virtualNetworkSubnetId string
    vnetImagePullEnabled boolean
    Is container image pull over virtual network enabled? Defaults to false.
    webdeployPublishBasicAuthenticationEnabled boolean
    Should the default WebDeploy Basic Authentication publishing credentials enabled. Defaults to true.
    app_settings Mapping[str, str]
    A map of key-value pairs for App Settings and custom values.
    auth_settings LinuxFunctionAppSlotAuthSettingsArgs
    an auth_settings block as detailed below.
    auth_settings_v2 LinuxFunctionAppSlotAuthSettingsV2Args
    an auth_settings_v2 block as detailed below.
    backup LinuxFunctionAppSlotBackupArgs
    a backup block as detailed below.
    builtin_logging_enabled bool
    Should built in logging be enabled. Configures AzureWebJobsDashboard app setting based on the configured storage setting. Defaults to true.
    client_certificate_enabled bool
    Should the Function App Slot use Client Certificates.
    client_certificate_exclusion_paths str
    Paths to exclude when using client certificates, separated by ;
    client_certificate_mode str
    The mode of the Function App Slot's client certificates requirement for incoming requests. Possible values are Required, Optional, and OptionalInteractiveUser. Defaults to Optional.
    connection_strings Sequence[LinuxFunctionAppSlotConnectionStringArgs]
    a connection_string block as detailed below.
    content_share_force_disabled bool
    Force disable the content share settings.
    custom_domain_verification_id str
    The identifier used by App Service to perform domain ownership verification via DNS TXT record.
    daily_memory_time_quota int
    The amount of memory in gigabyte-seconds that your application is allowed to consume per day. Setting this value only affects function apps in Consumption Plans. Defaults to 0.
    default_hostname str
    The default hostname of the Linux Function App Slot.
    enabled bool
    Is the Linux Function App Slot enabled. Defaults to true.
    ftp_publish_basic_authentication_enabled bool
    Are the default FTP Basic Authentication publishing credentials enabled. Defaults to true.
    function_app_id str
    The ID of the Linux Function App this Slot is a member of. Changing this forces a new resource to be created.
    functions_extension_version str
    The runtime version associated with the Function App Slot. Defaults to ~4.
    hosting_environment_id str
    The ID of the App Service Environment used by Function App Slot.
    https_only bool
    Can the Function App Slot only be accessed via HTTPS?. Defaults to false.
    identity LinuxFunctionAppSlotIdentityArgs
    An identity block as detailed below.
    key_vault_reference_identity_id str
    The User Assigned Identity ID used for accessing KeyVault secrets. The identity must be assigned to the application in the identity block. For more information see - Access vaults with a user-assigned identity
    kind str
    The Kind value for this Linux Function App Slot.
    name str
    Specifies the name of the Function App Slot. Changing this forces a new resource to be created.
    outbound_ip_address_lists Sequence[str]
    A list of outbound IP addresses. For example ["52.23.25.3", "52.143.43.12"]
    outbound_ip_addresses str
    A comma separated list of outbound IP addresses as a string. For example 52.23.25.3,52.143.43.12.
    possible_outbound_ip_address_lists Sequence[str]
    A list of possible outbound IP addresses, not all of which are necessarily in use. This is a superset of outbound_ip_address_list. For example ["52.23.25.3", "52.143.43.12"].
    possible_outbound_ip_addresses str
    A comma separated list of possible outbound IP addresses as a string. For example 52.23.25.3,52.143.43.12,52.143.43.17. This is a superset of outbound_ip_addresses. For example ["52.23.25.3", "52.143.43.12","52.143.43.17"].
    public_network_access_enabled bool
    Should public network access be enabled for the Function App. Defaults to true.
    service_plan_id str
    The ID of the Service Plan in which to run this slot. If not specified the same Service Plan as the Linux Function App will be used.
    site_config LinuxFunctionAppSlotSiteConfigArgs
    a site_config block as detailed below.
    site_credentials Sequence[LinuxFunctionAppSlotSiteCredentialArgs]
    A site_credential block as defined below.
    storage_account_access_key str
    The access key which will be used to access the storage account for the Function App Slot.
    storage_account_name str
    The backend storage account name which will be used by this Function App Slot.
    storage_accounts Sequence[LinuxFunctionAppSlotStorageAccountArgs]
    One or more storage_account blocks as defined below.
    storage_key_vault_secret_id str

    The Key Vault Secret ID, optionally including version, that contains the Connection String to connect to the storage account for this Function App.

    NOTE: storage_key_vault_secret_id cannot be used with storage_account_name.

    NOTE: storage_key_vault_secret_id used without a version will use the latest version of the secret, however, the service can take up to 24h to pick up a rotation of the latest version. See the official docs for more information.

    storage_uses_managed_identity bool

    Should the Function App Slot use its Managed Identity to access storage.

    NOTE: One of storage_account_access_key or storage_uses_managed_identity must be specified when using storage_account_name.

    tags Mapping[str, str]
    A mapping of tags which should be assigned to the Linux Function App.
    virtual_network_subnet_id str
    vnet_image_pull_enabled bool
    Is container image pull over virtual network enabled? Defaults to false.
    webdeploy_publish_basic_authentication_enabled bool
    Should the default WebDeploy Basic Authentication publishing credentials enabled. Defaults to true.
    appSettings Map<String>
    A map of key-value pairs for App Settings and custom values.
    authSettings Property Map
    an auth_settings block as detailed below.
    authSettingsV2 Property Map
    an auth_settings_v2 block as detailed below.
    backup Property Map
    a backup block as detailed below.
    builtinLoggingEnabled Boolean
    Should built in logging be enabled. Configures AzureWebJobsDashboard app setting based on the configured storage setting. Defaults to true.
    clientCertificateEnabled Boolean
    Should the Function App Slot use Client Certificates.
    clientCertificateExclusionPaths String
    Paths to exclude when using client certificates, separated by ;
    clientCertificateMode String
    The mode of the Function App Slot's client certificates requirement for incoming requests. Possible values are Required, Optional, and OptionalInteractiveUser. Defaults to Optional.
    connectionStrings List<Property Map>
    a connection_string block as detailed below.
    contentShareForceDisabled Boolean
    Force disable the content share settings.
    customDomainVerificationId String
    The identifier used by App Service to perform domain ownership verification via DNS TXT record.
    dailyMemoryTimeQuota Number
    The amount of memory in gigabyte-seconds that your application is allowed to consume per day. Setting this value only affects function apps in Consumption Plans. Defaults to 0.
    defaultHostname String
    The default hostname of the Linux Function App Slot.
    enabled Boolean
    Is the Linux Function App Slot enabled. Defaults to true.
    ftpPublishBasicAuthenticationEnabled Boolean
    Are the default FTP Basic Authentication publishing credentials enabled. Defaults to true.
    functionAppId String
    The ID of the Linux Function App this Slot is a member of. Changing this forces a new resource to be created.
    functionsExtensionVersion String
    The runtime version associated with the Function App Slot. Defaults to ~4.
    hostingEnvironmentId String
    The ID of the App Service Environment used by Function App Slot.
    httpsOnly Boolean
    Can the Function App Slot only be accessed via HTTPS?. Defaults to false.
    identity Property Map
    An identity block as detailed below.
    keyVaultReferenceIdentityId String
    The User Assigned Identity ID used for accessing KeyVault secrets. The identity must be assigned to the application in the identity block. For more information see - Access vaults with a user-assigned identity
    kind String
    The Kind value for this Linux Function App Slot.
    name String
    Specifies the name of the Function App Slot. Changing this forces a new resource to be created.
    outboundIpAddressLists List<String>
    A list of outbound IP addresses. For example ["52.23.25.3", "52.143.43.12"]
    outboundIpAddresses String
    A comma separated list of outbound IP addresses as a string. For example 52.23.25.3,52.143.43.12.
    possibleOutboundIpAddressLists List<String>
    A list of possible outbound IP addresses, not all of which are necessarily in use. This is a superset of outbound_ip_address_list. For example ["52.23.25.3", "52.143.43.12"].
    possibleOutboundIpAddresses String
    A comma separated list of possible outbound IP addresses as a string. For example 52.23.25.3,52.143.43.12,52.143.43.17. This is a superset of outbound_ip_addresses. For example ["52.23.25.3", "52.143.43.12","52.143.43.17"].
    publicNetworkAccessEnabled Boolean
    Should public network access be enabled for the Function App. Defaults to true.
    servicePlanId String
    The ID of the Service Plan in which to run this slot. If not specified the same Service Plan as the Linux Function App will be used.
    siteConfig Property Map
    a site_config block as detailed below.
    siteCredentials List<Property Map>
    A site_credential block as defined below.
    storageAccountAccessKey String
    The access key which will be used to access the storage account for the Function App Slot.
    storageAccountName String
    The backend storage account name which will be used by this Function App Slot.
    storageAccounts List<Property Map>
    One or more storage_account blocks as defined below.
    storageKeyVaultSecretId String

    The Key Vault Secret ID, optionally including version, that contains the Connection String to connect to the storage account for this Function App.

    NOTE: storage_key_vault_secret_id cannot be used with storage_account_name.

    NOTE: storage_key_vault_secret_id used without a version will use the latest version of the secret, however, the service can take up to 24h to pick up a rotation of the latest version. See the official docs for more information.

    storageUsesManagedIdentity Boolean

    Should the Function App Slot use its Managed Identity to access storage.

    NOTE: One of storage_account_access_key or storage_uses_managed_identity must be specified when using storage_account_name.

    tags Map<String>
    A mapping of tags which should be assigned to the Linux Function App.
    virtualNetworkSubnetId String
    vnetImagePullEnabled Boolean
    Is container image pull over virtual network enabled? Defaults to false.
    webdeployPublishBasicAuthenticationEnabled Boolean
    Should the default WebDeploy Basic Authentication publishing credentials enabled. Defaults to true.

    Supporting Types

    LinuxFunctionAppSlotAuthSettings, LinuxFunctionAppSlotAuthSettingsArgs

    Enabled bool
    Should the Authentication / Authorization feature be enabled?
    ActiveDirectory LinuxFunctionAppSlotAuthSettingsActiveDirectory
    an active_directory block as detailed below.
    AdditionalLoginParameters Dictionary<string, string>
    Specifies a map of login Parameters to send to the OpenID Connect authorization endpoint when a user logs in.
    AllowedExternalRedirectUrls List<string>
    Specifies a list of External URLs that can be redirected to as part of logging in or logging out of the Windows Web App.
    DefaultProvider string

    The default authentication provider to use when multiple providers are configured. Possible values include: AzureActiveDirectory, Facebook, Google, MicrosoftAccount, Twitter, Github.

    NOTE: This setting is only needed if multiple providers are configured, and the unauthenticated_client_action is set to "RedirectToLoginPage".

    Facebook LinuxFunctionAppSlotAuthSettingsFacebook
    a facebook block as detailed below.
    Github LinuxFunctionAppSlotAuthSettingsGithub
    a github block as detailed below.
    Google LinuxFunctionAppSlotAuthSettingsGoogle
    a google block as detailed below.
    Issuer string

    The OpenID Connect Issuer URI that represents the entity which issues access tokens.

    NOTE: When using Azure Active Directory, this value is the URI of the directory tenant, e.g. https://sts.windows.net/{tenant-guid}/.

    Microsoft LinuxFunctionAppSlotAuthSettingsMicrosoft
    a microsoft block as detailed below.
    RuntimeVersion string
    The RuntimeVersion of the Authentication / Authorization feature in use.
    TokenRefreshExtensionHours double
    The number of hours after session token expiration that a session token can be used to call the token refresh API. Defaults to 72 hours.
    TokenStoreEnabled bool
    Should the Linux Web App durably store platform-specific security tokens that are obtained during login flows? Defaults to false.
    Twitter LinuxFunctionAppSlotAuthSettingsTwitter
    a twitter block as detailed below.
    UnauthenticatedClientAction string
    The action to take when an unauthenticated client attempts to access the app. Possible values include: RedirectToLoginPage, AllowAnonymous.
    Enabled bool
    Should the Authentication / Authorization feature be enabled?
    ActiveDirectory LinuxFunctionAppSlotAuthSettingsActiveDirectory
    an active_directory block as detailed below.
    AdditionalLoginParameters map[string]string
    Specifies a map of login Parameters to send to the OpenID Connect authorization endpoint when a user logs in.
    AllowedExternalRedirectUrls []string
    Specifies a list of External URLs that can be redirected to as part of logging in or logging out of the Windows Web App.
    DefaultProvider string

    The default authentication provider to use when multiple providers are configured. Possible values include: AzureActiveDirectory, Facebook, Google, MicrosoftAccount, Twitter, Github.

    NOTE: This setting is only needed if multiple providers are configured, and the unauthenticated_client_action is set to "RedirectToLoginPage".

    Facebook LinuxFunctionAppSlotAuthSettingsFacebook
    a facebook block as detailed below.
    Github LinuxFunctionAppSlotAuthSettingsGithub
    a github block as detailed below.
    Google LinuxFunctionAppSlotAuthSettingsGoogle
    a google block as detailed below.
    Issuer string

    The OpenID Connect Issuer URI that represents the entity which issues access tokens.

    NOTE: When using Azure Active Directory, this value is the URI of the directory tenant, e.g. https://sts.windows.net/{tenant-guid}/.

    Microsoft LinuxFunctionAppSlotAuthSettingsMicrosoft
    a microsoft block as detailed below.
    RuntimeVersion string
    The RuntimeVersion of the Authentication / Authorization feature in use.
    TokenRefreshExtensionHours float64
    The number of hours after session token expiration that a session token can be used to call the token refresh API. Defaults to 72 hours.
    TokenStoreEnabled bool
    Should the Linux Web App durably store platform-specific security tokens that are obtained during login flows? Defaults to false.
    Twitter LinuxFunctionAppSlotAuthSettingsTwitter
    a twitter block as detailed below.
    UnauthenticatedClientAction string
    The action to take when an unauthenticated client attempts to access the app. Possible values include: RedirectToLoginPage, AllowAnonymous.
    enabled Boolean
    Should the Authentication / Authorization feature be enabled?
    activeDirectory LinuxFunctionAppSlotAuthSettingsActiveDirectory
    an active_directory block as detailed below.
    additionalLoginParameters Map<String,String>
    Specifies a map of login Parameters to send to the OpenID Connect authorization endpoint when a user logs in.
    allowedExternalRedirectUrls List<String>
    Specifies a list of External URLs that can be redirected to as part of logging in or logging out of the Windows Web App.
    defaultProvider String

    The default authentication provider to use when multiple providers are configured. Possible values include: AzureActiveDirectory, Facebook, Google, MicrosoftAccount, Twitter, Github.

    NOTE: This setting is only needed if multiple providers are configured, and the unauthenticated_client_action is set to "RedirectToLoginPage".

    facebook LinuxFunctionAppSlotAuthSettingsFacebook
    a facebook block as detailed below.
    github LinuxFunctionAppSlotAuthSettingsGithub
    a github block as detailed below.
    google LinuxFunctionAppSlotAuthSettingsGoogle
    a google block as detailed below.
    issuer String

    The OpenID Connect Issuer URI that represents the entity which issues access tokens.

    NOTE: When using Azure Active Directory, this value is the URI of the directory tenant, e.g. https://sts.windows.net/{tenant-guid}/.

    microsoft LinuxFunctionAppSlotAuthSettingsMicrosoft
    a microsoft block as detailed below.
    runtimeVersion String
    The RuntimeVersion of the Authentication / Authorization feature in use.
    tokenRefreshExtensionHours Double
    The number of hours after session token expiration that a session token can be used to call the token refresh API. Defaults to 72 hours.
    tokenStoreEnabled Boolean
    Should the Linux Web App durably store platform-specific security tokens that are obtained during login flows? Defaults to false.
    twitter LinuxFunctionAppSlotAuthSettingsTwitter
    a twitter block as detailed below.
    unauthenticatedClientAction String
    The action to take when an unauthenticated client attempts to access the app. Possible values include: RedirectToLoginPage, AllowAnonymous.
    enabled boolean
    Should the Authentication / Authorization feature be enabled?
    activeDirectory LinuxFunctionAppSlotAuthSettingsActiveDirectory
    an active_directory block as detailed below.
    additionalLoginParameters {[key: string]: string}
    Specifies a map of login Parameters to send to the OpenID Connect authorization endpoint when a user logs in.
    allowedExternalRedirectUrls string[]
    Specifies a list of External URLs that can be redirected to as part of logging in or logging out of the Windows Web App.
    defaultProvider string

    The default authentication provider to use when multiple providers are configured. Possible values include: AzureActiveDirectory, Facebook, Google, MicrosoftAccount, Twitter, Github.

    NOTE: This setting is only needed if multiple providers are configured, and the unauthenticated_client_action is set to "RedirectToLoginPage".

    facebook LinuxFunctionAppSlotAuthSettingsFacebook
    a facebook block as detailed below.
    github LinuxFunctionAppSlotAuthSettingsGithub
    a github block as detailed below.
    google LinuxFunctionAppSlotAuthSettingsGoogle
    a google block as detailed below.
    issuer string

    The OpenID Connect Issuer URI that represents the entity which issues access tokens.

    NOTE: When using Azure Active Directory, this value is the URI of the directory tenant, e.g. https://sts.windows.net/{tenant-guid}/.

    microsoft LinuxFunctionAppSlotAuthSettingsMicrosoft
    a microsoft block as detailed below.
    runtimeVersion string
    The RuntimeVersion of the Authentication / Authorization feature in use.
    tokenRefreshExtensionHours number
    The number of hours after session token expiration that a session token can be used to call the token refresh API. Defaults to 72 hours.
    tokenStoreEnabled boolean
    Should the Linux Web App durably store platform-specific security tokens that are obtained during login flows? Defaults to false.
    twitter LinuxFunctionAppSlotAuthSettingsTwitter
    a twitter block as detailed below.
    unauthenticatedClientAction string
    The action to take when an unauthenticated client attempts to access the app. Possible values include: RedirectToLoginPage, AllowAnonymous.
    enabled bool
    Should the Authentication / Authorization feature be enabled?
    active_directory LinuxFunctionAppSlotAuthSettingsActiveDirectory
    an active_directory block as detailed below.
    additional_login_parameters Mapping[str, str]
    Specifies a map of login Parameters to send to the OpenID Connect authorization endpoint when a user logs in.
    allowed_external_redirect_urls Sequence[str]
    Specifies a list of External URLs that can be redirected to as part of logging in or logging out of the Windows Web App.
    default_provider str

    The default authentication provider to use when multiple providers are configured. Possible values include: AzureActiveDirectory, Facebook, Google, MicrosoftAccount, Twitter, Github.

    NOTE: This setting is only needed if multiple providers are configured, and the unauthenticated_client_action is set to "RedirectToLoginPage".

    facebook LinuxFunctionAppSlotAuthSettingsFacebook
    a facebook block as detailed below.
    github LinuxFunctionAppSlotAuthSettingsGithub
    a github block as detailed below.
    google LinuxFunctionAppSlotAuthSettingsGoogle
    a google block as detailed below.
    issuer str

    The OpenID Connect Issuer URI that represents the entity which issues access tokens.

    NOTE: When using Azure Active Directory, this value is the URI of the directory tenant, e.g. https://sts.windows.net/{tenant-guid}/.

    microsoft LinuxFunctionAppSlotAuthSettingsMicrosoft
    a microsoft block as detailed below.
    runtime_version str
    The RuntimeVersion of the Authentication / Authorization feature in use.
    token_refresh_extension_hours float
    The number of hours after session token expiration that a session token can be used to call the token refresh API. Defaults to 72 hours.
    token_store_enabled bool
    Should the Linux Web App durably store platform-specific security tokens that are obtained during login flows? Defaults to false.
    twitter LinuxFunctionAppSlotAuthSettingsTwitter
    a twitter block as detailed below.
    unauthenticated_client_action str
    The action to take when an unauthenticated client attempts to access the app. Possible values include: RedirectToLoginPage, AllowAnonymous.
    enabled Boolean
    Should the Authentication / Authorization feature be enabled?
    activeDirectory Property Map
    an active_directory block as detailed below.
    additionalLoginParameters Map<String>
    Specifies a map of login Parameters to send to the OpenID Connect authorization endpoint when a user logs in.
    allowedExternalRedirectUrls List<String>
    Specifies a list of External URLs that can be redirected to as part of logging in or logging out of the Windows Web App.
    defaultProvider String

    The default authentication provider to use when multiple providers are configured. Possible values include: AzureActiveDirectory, Facebook, Google, MicrosoftAccount, Twitter, Github.

    NOTE: This setting is only needed if multiple providers are configured, and the unauthenticated_client_action is set to "RedirectToLoginPage".

    facebook Property Map
    a facebook block as detailed below.
    github Property Map
    a github block as detailed below.
    google Property Map
    a google block as detailed below.
    issuer String

    The OpenID Connect Issuer URI that represents the entity which issues access tokens.

    NOTE: When using Azure Active Directory, this value is the URI of the directory tenant, e.g. https://sts.windows.net/{tenant-guid}/.

    microsoft Property Map
    a microsoft block as detailed below.
    runtimeVersion String
    The RuntimeVersion of the Authentication / Authorization feature in use.
    tokenRefreshExtensionHours Number
    The number of hours after session token expiration that a session token can be used to call the token refresh API. Defaults to 72 hours.
    tokenStoreEnabled Boolean
    Should the Linux Web App durably store platform-specific security tokens that are obtained during login flows? Defaults to false.
    twitter Property Map
    a twitter block as detailed below.
    unauthenticatedClientAction String
    The action to take when an unauthenticated client attempts to access the app. Possible values include: RedirectToLoginPage, AllowAnonymous.

    LinuxFunctionAppSlotAuthSettingsActiveDirectory, LinuxFunctionAppSlotAuthSettingsActiveDirectoryArgs

    ClientId string
    The ID of the Client to use to authenticate with Azure Active Directory.
    AllowedAudiences List<string>

    Specifies a list of Allowed audience values to consider when validating JWTs issued by Azure Active Directory.

    Note: The client_id value is always considered an allowed audience.

    ClientSecret string
    The Client Secret for the Client ID. Cannot be used with client_secret_setting_name.
    ClientSecretSettingName string
    The App Setting name that contains the client secret of the Client. Cannot be used with client_secret.
    ClientId string
    The ID of the Client to use to authenticate with Azure Active Directory.
    AllowedAudiences []string

    Specifies a list of Allowed audience values to consider when validating JWTs issued by Azure Active Directory.

    Note: The client_id value is always considered an allowed audience.

    ClientSecret string
    The Client Secret for the Client ID. Cannot be used with client_secret_setting_name.
    ClientSecretSettingName string
    The App Setting name that contains the client secret of the Client. Cannot be used with client_secret.
    clientId String
    The ID of the Client to use to authenticate with Azure Active Directory.
    allowedAudiences List<String>

    Specifies a list of Allowed audience values to consider when validating JWTs issued by Azure Active Directory.

    Note: The client_id value is always considered an allowed audience.

    clientSecret String
    The Client Secret for the Client ID. Cannot be used with client_secret_setting_name.
    clientSecretSettingName String
    The App Setting name that contains the client secret of the Client. Cannot be used with client_secret.
    clientId string
    The ID of the Client to use to authenticate with Azure Active Directory.
    allowedAudiences string[]

    Specifies a list of Allowed audience values to consider when validating JWTs issued by Azure Active Directory.

    Note: The client_id value is always considered an allowed audience.

    clientSecret string
    The Client Secret for the Client ID. Cannot be used with client_secret_setting_name.
    clientSecretSettingName string
    The App Setting name that contains the client secret of the Client. Cannot be used with client_secret.
    client_id str
    The ID of the Client to use to authenticate with Azure Active Directory.
    allowed_audiences Sequence[str]

    Specifies a list of Allowed audience values to consider when validating JWTs issued by Azure Active Directory.

    Note: The client_id value is always considered an allowed audience.

    client_secret str
    The Client Secret for the Client ID. Cannot be used with client_secret_setting_name.
    client_secret_setting_name str
    The App Setting name that contains the client secret of the Client. Cannot be used with client_secret.
    clientId String
    The ID of the Client to use to authenticate with Azure Active Directory.
    allowedAudiences List<String>

    Specifies a list of Allowed audience values to consider when validating JWTs issued by Azure Active Directory.

    Note: The client_id value is always considered an allowed audience.

    clientSecret String
    The Client Secret for the Client ID. Cannot be used with client_secret_setting_name.
    clientSecretSettingName String
    The App Setting name that contains the client secret of the Client. Cannot be used with client_secret.

    LinuxFunctionAppSlotAuthSettingsFacebook, LinuxFunctionAppSlotAuthSettingsFacebookArgs

    AppId string
    The App ID of the Facebook app used for login.
    AppSecret string
    The App Secret of the Facebook app used for Facebook login. Cannot be specified with app_secret_setting_name.
    AppSecretSettingName string
    The app setting name that contains the app_secret value used for Facebook login. Cannot be specified with app_secret.
    OauthScopes List<string>
    Specifies a list of OAuth 2.0 scopes to be requested as part of Facebook login authentication.
    AppId string
    The App ID of the Facebook app used for login.
    AppSecret string
    The App Secret of the Facebook app used for Facebook login. Cannot be specified with app_secret_setting_name.
    AppSecretSettingName string
    The app setting name that contains the app_secret value used for Facebook login. Cannot be specified with app_secret.
    OauthScopes []string
    Specifies a list of OAuth 2.0 scopes to be requested as part of Facebook login authentication.
    appId String
    The App ID of the Facebook app used for login.
    appSecret String
    The App Secret of the Facebook app used for Facebook login. Cannot be specified with app_secret_setting_name.
    appSecretSettingName String
    The app setting name that contains the app_secret value used for Facebook login. Cannot be specified with app_secret.
    oauthScopes List<String>
    Specifies a list of OAuth 2.0 scopes to be requested as part of Facebook login authentication.
    appId string
    The App ID of the Facebook app used for login.
    appSecret string
    The App Secret of the Facebook app used for Facebook login. Cannot be specified with app_secret_setting_name.
    appSecretSettingName string
    The app setting name that contains the app_secret value used for Facebook login. Cannot be specified with app_secret.
    oauthScopes string[]
    Specifies a list of OAuth 2.0 scopes to be requested as part of Facebook login authentication.
    app_id str
    The App ID of the Facebook app used for login.
    app_secret str
    The App Secret of the Facebook app used for Facebook login. Cannot be specified with app_secret_setting_name.
    app_secret_setting_name str
    The app setting name that contains the app_secret value used for Facebook login. Cannot be specified with app_secret.
    oauth_scopes Sequence[str]
    Specifies a list of OAuth 2.0 scopes to be requested as part of Facebook login authentication.
    appId String
    The App ID of the Facebook app used for login.
    appSecret String
    The App Secret of the Facebook app used for Facebook login. Cannot be specified with app_secret_setting_name.
    appSecretSettingName String
    The app setting name that contains the app_secret value used for Facebook login. Cannot be specified with app_secret.
    oauthScopes List<String>
    Specifies a list of OAuth 2.0 scopes to be requested as part of Facebook login authentication.

    LinuxFunctionAppSlotAuthSettingsGithub, LinuxFunctionAppSlotAuthSettingsGithubArgs

    ClientId string
    The ID of the GitHub app used for login.
    ClientSecret string
    The Client Secret of the GitHub app used for GitHub login. Cannot be specified with client_secret_setting_name.
    ClientSecretSettingName string
    The app setting name that contains the client_secret value used for GitHub login. Cannot be specified with client_secret.
    OauthScopes List<string>
    Specifies a list of OAuth 2.0 scopes that will be requested as part of GitHub login authentication.
    ClientId string
    The ID of the GitHub app used for login.
    ClientSecret string
    The Client Secret of the GitHub app used for GitHub login. Cannot be specified with client_secret_setting_name.
    ClientSecretSettingName string
    The app setting name that contains the client_secret value used for GitHub login. Cannot be specified with client_secret.
    OauthScopes []string
    Specifies a list of OAuth 2.0 scopes that will be requested as part of GitHub login authentication.
    clientId String
    The ID of the GitHub app used for login.
    clientSecret String
    The Client Secret of the GitHub app used for GitHub login. Cannot be specified with client_secret_setting_name.
    clientSecretSettingName String
    The app setting name that contains the client_secret value used for GitHub login. Cannot be specified with client_secret.
    oauthScopes List<String>
    Specifies a list of OAuth 2.0 scopes that will be requested as part of GitHub login authentication.
    clientId string
    The ID of the GitHub app used for login.
    clientSecret string
    The Client Secret of the GitHub app used for GitHub login. Cannot be specified with client_secret_setting_name.
    clientSecretSettingName string
    The app setting name that contains the client_secret value used for GitHub login. Cannot be specified with client_secret.
    oauthScopes string[]
    Specifies a list of OAuth 2.0 scopes that will be requested as part of GitHub login authentication.
    client_id str
    The ID of the GitHub app used for login.
    client_secret str
    The Client Secret of the GitHub app used for GitHub login. Cannot be specified with client_secret_setting_name.
    client_secret_setting_name str
    The app setting name that contains the client_secret value used for GitHub login. Cannot be specified with client_secret.
    oauth_scopes Sequence[str]
    Specifies a list of OAuth 2.0 scopes that will be requested as part of GitHub login authentication.
    clientId String
    The ID of the GitHub app used for login.
    clientSecret String
    The Client Secret of the GitHub app used for GitHub login. Cannot be specified with client_secret_setting_name.
    clientSecretSettingName String
    The app setting name that contains the client_secret value used for GitHub login. Cannot be specified with client_secret.
    oauthScopes List<String>
    Specifies a list of OAuth 2.0 scopes that will be requested as part of GitHub login authentication.

    LinuxFunctionAppSlotAuthSettingsGoogle, LinuxFunctionAppSlotAuthSettingsGoogleArgs

    ClientId string
    The OpenID Connect Client ID for the Google web application.
    ClientSecret string
    The client secret associated with the Google web application. Cannot be specified with client_secret_setting_name.
    ClientSecretSettingName string
    The app setting name that contains the client_secret value used for Google login. Cannot be specified with client_secret.
    OauthScopes List<string>
    Specifies a list of OAuth 2.0 scopes that will be requested as part of Google Sign-In authentication. If not specified, openid, profile, and email are used as default scopes.
    ClientId string
    The OpenID Connect Client ID for the Google web application.
    ClientSecret string
    The client secret associated with the Google web application. Cannot be specified with client_secret_setting_name.
    ClientSecretSettingName string
    The app setting name that contains the client_secret value used for Google login. Cannot be specified with client_secret.
    OauthScopes []string
    Specifies a list of OAuth 2.0 scopes that will be requested as part of Google Sign-In authentication. If not specified, openid, profile, and email are used as default scopes.
    clientId String
    The OpenID Connect Client ID for the Google web application.
    clientSecret String
    The client secret associated with the Google web application. Cannot be specified with client_secret_setting_name.
    clientSecretSettingName String
    The app setting name that contains the client_secret value used for Google login. Cannot be specified with client_secret.
    oauthScopes List<String>
    Specifies a list of OAuth 2.0 scopes that will be requested as part of Google Sign-In authentication. If not specified, openid, profile, and email are used as default scopes.
    clientId string
    The OpenID Connect Client ID for the Google web application.
    clientSecret string
    The client secret associated with the Google web application. Cannot be specified with client_secret_setting_name.
    clientSecretSettingName string
    The app setting name that contains the client_secret value used for Google login. Cannot be specified with client_secret.
    oauthScopes string[]
    Specifies a list of OAuth 2.0 scopes that will be requested as part of Google Sign-In authentication. If not specified, openid, profile, and email are used as default scopes.
    client_id str
    The OpenID Connect Client ID for the Google web application.
    client_secret str
    The client secret associated with the Google web application. Cannot be specified with client_secret_setting_name.
    client_secret_setting_name str
    The app setting name that contains the client_secret value used for Google login. Cannot be specified with client_secret.
    oauth_scopes Sequence[str]
    Specifies a list of OAuth 2.0 scopes that will be requested as part of Google Sign-In authentication. If not specified, openid, profile, and email are used as default scopes.
    clientId String
    The OpenID Connect Client ID for the Google web application.
    clientSecret String
    The client secret associated with the Google web application. Cannot be specified with client_secret_setting_name.
    clientSecretSettingName String
    The app setting name that contains the client_secret value used for Google login. Cannot be specified with client_secret.
    oauthScopes List<String>
    Specifies a list of OAuth 2.0 scopes that will be requested as part of Google Sign-In authentication. If not specified, openid, profile, and email are used as default scopes.

    LinuxFunctionAppSlotAuthSettingsMicrosoft, LinuxFunctionAppSlotAuthSettingsMicrosoftArgs

    ClientId string
    The OAuth 2.0 client ID that was created for the app used for authentication.
    ClientSecret string
    The OAuth 2.0 client secret that was created for the app used for authentication. Cannot be specified with client_secret_setting_name.
    ClientSecretSettingName string
    The app setting name containing the OAuth 2.0 client secret that was created for the app used for authentication. Cannot be specified with client_secret.
    OauthScopes List<string>
    Specifies a list of OAuth 2.0 scopes that will be requested as part of Microsoft Account authentication. If not specified, wl.basic is used as the default scope.
    ClientId string
    The OAuth 2.0 client ID that was created for the app used for authentication.
    ClientSecret string
    The OAuth 2.0 client secret that was created for the app used for authentication. Cannot be specified with client_secret_setting_name.
    ClientSecretSettingName string
    The app setting name containing the OAuth 2.0 client secret that was created for the app used for authentication. Cannot be specified with client_secret.
    OauthScopes []string
    Specifies a list of OAuth 2.0 scopes that will be requested as part of Microsoft Account authentication. If not specified, wl.basic is used as the default scope.
    clientId String
    The OAuth 2.0 client ID that was created for the app used for authentication.
    clientSecret String
    The OAuth 2.0 client secret that was created for the app used for authentication. Cannot be specified with client_secret_setting_name.
    clientSecretSettingName String
    The app setting name containing the OAuth 2.0 client secret that was created for the app used for authentication. Cannot be specified with client_secret.
    oauthScopes List<String>
    Specifies a list of OAuth 2.0 scopes that will be requested as part of Microsoft Account authentication. If not specified, wl.basic is used as the default scope.
    clientId string
    The OAuth 2.0 client ID that was created for the app used for authentication.
    clientSecret string
    The OAuth 2.0 client secret that was created for the app used for authentication. Cannot be specified with client_secret_setting_name.
    clientSecretSettingName string
    The app setting name containing the OAuth 2.0 client secret that was created for the app used for authentication. Cannot be specified with client_secret.
    oauthScopes string[]
    Specifies a list of OAuth 2.0 scopes that will be requested as part of Microsoft Account authentication. If not specified, wl.basic is used as the default scope.
    client_id str
    The OAuth 2.0 client ID that was created for the app used for authentication.
    client_secret str
    The OAuth 2.0 client secret that was created for the app used for authentication. Cannot be specified with client_secret_setting_name.
    client_secret_setting_name str
    The app setting name containing the OAuth 2.0 client secret that was created for the app used for authentication. Cannot be specified with client_secret.
    oauth_scopes Sequence[str]
    Specifies a list of OAuth 2.0 scopes that will be requested as part of Microsoft Account authentication. If not specified, wl.basic is used as the default scope.
    clientId String
    The OAuth 2.0 client ID that was created for the app used for authentication.
    clientSecret String
    The OAuth 2.0 client secret that was created for the app used for authentication. Cannot be specified with client_secret_setting_name.
    clientSecretSettingName String
    The app setting name containing the OAuth 2.0 client secret that was created for the app used for authentication. Cannot be specified with client_secret.
    oauthScopes List<String>
    Specifies a list of OAuth 2.0 scopes that will be requested as part of Microsoft Account authentication. If not specified, wl.basic is used as the default scope.

    LinuxFunctionAppSlotAuthSettingsTwitter, LinuxFunctionAppSlotAuthSettingsTwitterArgs

    ConsumerKey string
    The OAuth 1.0a consumer key of the Twitter application used for sign-in.
    ConsumerSecret string
    The OAuth 1.0a consumer secret of the Twitter application used for sign-in. Cannot be specified with consumer_secret_setting_name.
    ConsumerSecretSettingName string
    The app setting name that contains the OAuth 1.0a consumer secret of the Twitter application used for sign-in. Cannot be specified with consumer_secret.
    ConsumerKey string
    The OAuth 1.0a consumer key of the Twitter application used for sign-in.
    ConsumerSecret string
    The OAuth 1.0a consumer secret of the Twitter application used for sign-in. Cannot be specified with consumer_secret_setting_name.
    ConsumerSecretSettingName string
    The app setting name that contains the OAuth 1.0a consumer secret of the Twitter application used for sign-in. Cannot be specified with consumer_secret.
    consumerKey String
    The OAuth 1.0a consumer key of the Twitter application used for sign-in.
    consumerSecret String
    The OAuth 1.0a consumer secret of the Twitter application used for sign-in. Cannot be specified with consumer_secret_setting_name.
    consumerSecretSettingName String
    The app setting name that contains the OAuth 1.0a consumer secret of the Twitter application used for sign-in. Cannot be specified with consumer_secret.
    consumerKey string
    The OAuth 1.0a consumer key of the Twitter application used for sign-in.
    consumerSecret string
    The OAuth 1.0a consumer secret of the Twitter application used for sign-in. Cannot be specified with consumer_secret_setting_name.
    consumerSecretSettingName string
    The app setting name that contains the OAuth 1.0a consumer secret of the Twitter application used for sign-in. Cannot be specified with consumer_secret.
    consumer_key str
    The OAuth 1.0a consumer key of the Twitter application used for sign-in.
    consumer_secret str
    The OAuth 1.0a consumer secret of the Twitter application used for sign-in. Cannot be specified with consumer_secret_setting_name.
    consumer_secret_setting_name str
    The app setting name that contains the OAuth 1.0a consumer secret of the Twitter application used for sign-in. Cannot be specified with consumer_secret.
    consumerKey String
    The OAuth 1.0a consumer key of the Twitter application used for sign-in.
    consumerSecret String
    The OAuth 1.0a consumer secret of the Twitter application used for sign-in. Cannot be specified with consumer_secret_setting_name.
    consumerSecretSettingName String
    The app setting name that contains the OAuth 1.0a consumer secret of the Twitter application used for sign-in. Cannot be specified with consumer_secret.

    LinuxFunctionAppSlotAuthSettingsV2, LinuxFunctionAppSlotAuthSettingsV2Args

    Login LinuxFunctionAppSlotAuthSettingsV2Login
    A login block as defined below.
    ActiveDirectoryV2 LinuxFunctionAppSlotAuthSettingsV2ActiveDirectoryV2
    An active_directory_v2 block as defined below.
    AppleV2 LinuxFunctionAppSlotAuthSettingsV2AppleV2
    An apple_v2 block as defined below.
    AuthEnabled bool
    Should the AuthV2 Settings be enabled. Defaults to false.
    AzureStaticWebAppV2 LinuxFunctionAppSlotAuthSettingsV2AzureStaticWebAppV2
    An azure_static_web_app_v2 block as defined below.
    ConfigFilePath string

    The path to the App Auth settings.

    Note: Relative Paths are evaluated from the Site Root directory.

    CustomOidcV2s List<LinuxFunctionAppSlotAuthSettingsV2CustomOidcV2>
    Zero or more custom_oidc_v2 blocks as defined below.
    DefaultProvider string

    The Default Authentication Provider to use when the unauthenticated_action is set to RedirectToLoginPage. Possible values include: apple, azureactivedirectory, facebook, github, google, twitter and the name of your custom_oidc_v2 provider.

    NOTE: Whilst any value will be accepted by the API for default_provider, it can leave the app in an unusable state if this value does not correspond to the name of a known provider (either built-in value, or custom_oidc name) as it is used to build the auth endpoint URI.

    ExcludedPaths List<string>

    The paths which should be excluded from the unauthenticated_action when it is set to RedirectToLoginPage.

    NOTE: This list should be used instead of setting WEBSITE_WARMUP_PATH in app_settings as it takes priority.

    FacebookV2 LinuxFunctionAppSlotAuthSettingsV2FacebookV2
    A facebook_v2 block as defined below.
    ForwardProxyConvention string
    The convention used to determine the url of the request made. Possible values include NoProxy, Standard, Custom. Defaults to NoProxy.
    ForwardProxyCustomHostHeaderName string
    The name of the custom header containing the host of the request.
    ForwardProxyCustomSchemeHeaderName string
    The name of the custom header containing the scheme of the request.
    GithubV2 LinuxFunctionAppSlotAuthSettingsV2GithubV2
    A github_v2 block as defined below.
    GoogleV2 LinuxFunctionAppSlotAuthSettingsV2GoogleV2
    A google_v2 block as defined below.
    HttpRouteApiPrefix string
    The prefix that should precede all the authentication and authorisation paths. Defaults to /.auth.
    MicrosoftV2 LinuxFunctionAppSlotAuthSettingsV2MicrosoftV2
    A microsoft_v2 block as defined below.
    RequireAuthentication bool
    Should the authentication flow be used for all requests.
    RequireHttps bool
    Should HTTPS be required on connections? Defaults to true.
    RuntimeVersion string
    The Runtime Version of the Authentication and Authorisation feature of this App. Defaults to ~1.
    TwitterV2 LinuxFunctionAppSlotAuthSettingsV2TwitterV2
    A twitter_v2 block as defined below.
    UnauthenticatedAction string
    The action to take for requests made without authentication. Possible values include RedirectToLoginPage, AllowAnonymous, Return401, and Return403. Defaults to RedirectToLoginPage.
    Login LinuxFunctionAppSlotAuthSettingsV2Login
    A login block as defined below.
    ActiveDirectoryV2 LinuxFunctionAppSlotAuthSettingsV2ActiveDirectoryV2
    An active_directory_v2 block as defined below.
    AppleV2 LinuxFunctionAppSlotAuthSettingsV2AppleV2
    An apple_v2 block as defined below.
    AuthEnabled bool
    Should the AuthV2 Settings be enabled. Defaults to false.
    AzureStaticWebAppV2 LinuxFunctionAppSlotAuthSettingsV2AzureStaticWebAppV2
    An azure_static_web_app_v2 block as defined below.
    ConfigFilePath string

    The path to the App Auth settings.

    Note: Relative Paths are evaluated from the Site Root directory.

    CustomOidcV2s []LinuxFunctionAppSlotAuthSettingsV2CustomOidcV2
    Zero or more custom_oidc_v2 blocks as defined below.
    DefaultProvider string

    The Default Authentication Provider to use when the unauthenticated_action is set to RedirectToLoginPage. Possible values include: apple, azureactivedirectory, facebook, github, google, twitter and the name of your custom_oidc_v2 provider.

    NOTE: Whilst any value will be accepted by the API for default_provider, it can leave the app in an unusable state if this value does not correspond to the name of a known provider (either built-in value, or custom_oidc name) as it is used to build the auth endpoint URI.

    ExcludedPaths []string

    The paths which should be excluded from the unauthenticated_action when it is set to RedirectToLoginPage.

    NOTE: This list should be used instead of setting WEBSITE_WARMUP_PATH in app_settings as it takes priority.

    FacebookV2 LinuxFunctionAppSlotAuthSettingsV2FacebookV2
    A facebook_v2 block as defined below.
    ForwardProxyConvention string
    The convention used to determine the url of the request made. Possible values include NoProxy, Standard, Custom. Defaults to NoProxy.
    ForwardProxyCustomHostHeaderName string
    The name of the custom header containing the host of the request.
    ForwardProxyCustomSchemeHeaderName string
    The name of the custom header containing the scheme of the request.
    GithubV2 LinuxFunctionAppSlotAuthSettingsV2GithubV2
    A github_v2 block as defined below.
    GoogleV2 LinuxFunctionAppSlotAuthSettingsV2GoogleV2
    A google_v2 block as defined below.
    HttpRouteApiPrefix string
    The prefix that should precede all the authentication and authorisation paths. Defaults to /.auth.
    MicrosoftV2 LinuxFunctionAppSlotAuthSettingsV2MicrosoftV2
    A microsoft_v2 block as defined below.
    RequireAuthentication bool
    Should the authentication flow be used for all requests.
    RequireHttps bool
    Should HTTPS be required on connections? Defaults to true.
    RuntimeVersion string
    The Runtime Version of the Authentication and Authorisation feature of this App. Defaults to ~1.
    TwitterV2 LinuxFunctionAppSlotAuthSettingsV2TwitterV2
    A twitter_v2 block as defined below.
    UnauthenticatedAction string
    The action to take for requests made without authentication. Possible values include RedirectToLoginPage, AllowAnonymous, Return401, and Return403. Defaults to RedirectToLoginPage.
    login LinuxFunctionAppSlotAuthSettingsV2Login
    A login block as defined below.
    activeDirectoryV2 LinuxFunctionAppSlotAuthSettingsV2ActiveDirectoryV2
    An active_directory_v2 block as defined below.
    appleV2 LinuxFunctionAppSlotAuthSettingsV2AppleV2
    An apple_v2 block as defined below.
    authEnabled Boolean
    Should the AuthV2 Settings be enabled. Defaults to false.
    azureStaticWebAppV2 LinuxFunctionAppSlotAuthSettingsV2AzureStaticWebAppV2
    An azure_static_web_app_v2 block as defined below.
    configFilePath String

    The path to the App Auth settings.

    Note: Relative Paths are evaluated from the Site Root directory.

    customOidcV2s List<LinuxFunctionAppSlotAuthSettingsV2CustomOidcV2>
    Zero or more custom_oidc_v2 blocks as defined below.
    defaultProvider String

    The Default Authentication Provider to use when the unauthenticated_action is set to RedirectToLoginPage. Possible values include: apple, azureactivedirectory, facebook, github, google, twitter and the name of your custom_oidc_v2 provider.

    NOTE: Whilst any value will be accepted by the API for default_provider, it can leave the app in an unusable state if this value does not correspond to the name of a known provider (either built-in value, or custom_oidc name) as it is used to build the auth endpoint URI.

    excludedPaths List<String>

    The paths which should be excluded from the unauthenticated_action when it is set to RedirectToLoginPage.

    NOTE: This list should be used instead of setting WEBSITE_WARMUP_PATH in app_settings as it takes priority.

    facebookV2 LinuxFunctionAppSlotAuthSettingsV2FacebookV2
    A facebook_v2 block as defined below.
    forwardProxyConvention String
    The convention used to determine the url of the request made. Possible values include NoProxy, Standard, Custom. Defaults to NoProxy.
    forwardProxyCustomHostHeaderName String
    The name of the custom header containing the host of the request.
    forwardProxyCustomSchemeHeaderName String
    The name of the custom header containing the scheme of the request.
    githubV2 LinuxFunctionAppSlotAuthSettingsV2GithubV2
    A github_v2 block as defined below.
    googleV2 LinuxFunctionAppSlotAuthSettingsV2GoogleV2
    A google_v2 block as defined below.
    httpRouteApiPrefix String
    The prefix that should precede all the authentication and authorisation paths. Defaults to /.auth.
    microsoftV2 LinuxFunctionAppSlotAuthSettingsV2MicrosoftV2
    A microsoft_v2 block as defined below.
    requireAuthentication Boolean
    Should the authentication flow be used for all requests.
    requireHttps Boolean
    Should HTTPS be required on connections? Defaults to true.
    runtimeVersion String
    The Runtime Version of the Authentication and Authorisation feature of this App. Defaults to ~1.
    twitterV2 LinuxFunctionAppSlotAuthSettingsV2TwitterV2
    A twitter_v2 block as defined below.
    unauthenticatedAction String
    The action to take for requests made without authentication. Possible values include RedirectToLoginPage, AllowAnonymous, Return401, and Return403. Defaults to RedirectToLoginPage.
    login LinuxFunctionAppSlotAuthSettingsV2Login
    A login block as defined below.
    activeDirectoryV2 LinuxFunctionAppSlotAuthSettingsV2ActiveDirectoryV2
    An active_directory_v2 block as defined below.
    appleV2 LinuxFunctionAppSlotAuthSettingsV2AppleV2
    An apple_v2 block as defined below.
    authEnabled boolean
    Should the AuthV2 Settings be enabled. Defaults to false.
    azureStaticWebAppV2 LinuxFunctionAppSlotAuthSettingsV2AzureStaticWebAppV2
    An azure_static_web_app_v2 block as defined below.
    configFilePath string

    The path to the App Auth settings.

    Note: Relative Paths are evaluated from the Site Root directory.

    customOidcV2s LinuxFunctionAppSlotAuthSettingsV2CustomOidcV2[]
    Zero or more custom_oidc_v2 blocks as defined below.
    defaultProvider string

    The Default Authentication Provider to use when the unauthenticated_action is set to RedirectToLoginPage. Possible values include: apple, azureactivedirectory, facebook, github, google, twitter and the name of your custom_oidc_v2 provider.

    NOTE: Whilst any value will be accepted by the API for default_provider, it can leave the app in an unusable state if this value does not correspond to the name of a known provider (either built-in value, or custom_oidc name) as it is used to build the auth endpoint URI.

    excludedPaths string[]

    The paths which should be excluded from the unauthenticated_action when it is set to RedirectToLoginPage.

    NOTE: This list should be used instead of setting WEBSITE_WARMUP_PATH in app_settings as it takes priority.

    facebookV2 LinuxFunctionAppSlotAuthSettingsV2FacebookV2
    A facebook_v2 block as defined below.
    forwardProxyConvention string
    The convention used to determine the url of the request made. Possible values include NoProxy, Standard, Custom. Defaults to NoProxy.
    forwardProxyCustomHostHeaderName string
    The name of the custom header containing the host of the request.
    forwardProxyCustomSchemeHeaderName string
    The name of the custom header containing the scheme of the request.
    githubV2 LinuxFunctionAppSlotAuthSettingsV2GithubV2
    A github_v2 block as defined below.
    googleV2 LinuxFunctionAppSlotAuthSettingsV2GoogleV2
    A google_v2 block as defined below.
    httpRouteApiPrefix string
    The prefix that should precede all the authentication and authorisation paths. Defaults to /.auth.
    microsoftV2 LinuxFunctionAppSlotAuthSettingsV2MicrosoftV2
    A microsoft_v2 block as defined below.
    requireAuthentication boolean
    Should the authentication flow be used for all requests.
    requireHttps boolean
    Should HTTPS be required on connections? Defaults to true.
    runtimeVersion string
    The Runtime Version of the Authentication and Authorisation feature of this App. Defaults to ~1.
    twitterV2 LinuxFunctionAppSlotAuthSettingsV2TwitterV2
    A twitter_v2 block as defined below.
    unauthenticatedAction string
    The action to take for requests made without authentication. Possible values include RedirectToLoginPage, AllowAnonymous, Return401, and Return403. Defaults to RedirectToLoginPage.
    login LinuxFunctionAppSlotAuthSettingsV2Login
    A login block as defined below.
    active_directory_v2 LinuxFunctionAppSlotAuthSettingsV2ActiveDirectoryV2
    An active_directory_v2 block as defined below.
    apple_v2 LinuxFunctionAppSlotAuthSettingsV2AppleV2
    An apple_v2 block as defined below.
    auth_enabled bool
    Should the AuthV2 Settings be enabled. Defaults to false.
    azure_static_web_app_v2 LinuxFunctionAppSlotAuthSettingsV2AzureStaticWebAppV2
    An azure_static_web_app_v2 block as defined below.
    config_file_path str

    The path to the App Auth settings.

    Note: Relative Paths are evaluated from the Site Root directory.

    custom_oidc_v2s Sequence[LinuxFunctionAppSlotAuthSettingsV2CustomOidcV2]
    Zero or more custom_oidc_v2 blocks as defined below.
    default_provider str

    The Default Authentication Provider to use when the unauthenticated_action is set to RedirectToLoginPage. Possible values include: apple, azureactivedirectory, facebook, github, google, twitter and the name of your custom_oidc_v2 provider.

    NOTE: Whilst any value will be accepted by the API for default_provider, it can leave the app in an unusable state if this value does not correspond to the name of a known provider (either built-in value, or custom_oidc name) as it is used to build the auth endpoint URI.

    excluded_paths Sequence[str]

    The paths which should be excluded from the unauthenticated_action when it is set to RedirectToLoginPage.

    NOTE: This list should be used instead of setting WEBSITE_WARMUP_PATH in app_settings as it takes priority.

    facebook_v2 LinuxFunctionAppSlotAuthSettingsV2FacebookV2
    A facebook_v2 block as defined below.
    forward_proxy_convention str
    The convention used to determine the url of the request made. Possible values include NoProxy, Standard, Custom. Defaults to NoProxy.
    forward_proxy_custom_host_header_name str
    The name of the custom header containing the host of the request.
    forward_proxy_custom_scheme_header_name str
    The name of the custom header containing the scheme of the request.
    github_v2 LinuxFunctionAppSlotAuthSettingsV2GithubV2
    A github_v2 block as defined below.
    google_v2 LinuxFunctionAppSlotAuthSettingsV2GoogleV2
    A google_v2 block as defined below.
    http_route_api_prefix str
    The prefix that should precede all the authentication and authorisation paths. Defaults to /.auth.
    microsoft_v2 LinuxFunctionAppSlotAuthSettingsV2MicrosoftV2
    A microsoft_v2 block as defined below.
    require_authentication bool
    Should the authentication flow be used for all requests.
    require_https bool
    Should HTTPS be required on connections? Defaults to true.
    runtime_version str
    The Runtime Version of the Authentication and Authorisation feature of this App. Defaults to ~1.
    twitter_v2 LinuxFunctionAppSlotAuthSettingsV2TwitterV2
    A twitter_v2 block as defined below.
    unauthenticated_action str
    The action to take for requests made without authentication. Possible values include RedirectToLoginPage, AllowAnonymous, Return401, and Return403. Defaults to RedirectToLoginPage.
    login Property Map
    A login block as defined below.
    activeDirectoryV2 Property Map
    An active_directory_v2 block as defined below.
    appleV2 Property Map
    An apple_v2 block as defined below.
    authEnabled Boolean
    Should the AuthV2 Settings be enabled. Defaults to false.
    azureStaticWebAppV2 Property Map
    An azure_static_web_app_v2 block as defined below.
    configFilePath String

    The path to the App Auth settings.

    Note: Relative Paths are evaluated from the Site Root directory.

    customOidcV2s List<Property Map>
    Zero or more custom_oidc_v2 blocks as defined below.
    defaultProvider String

    The Default Authentication Provider to use when the unauthenticated_action is set to RedirectToLoginPage. Possible values include: apple, azureactivedirectory, facebook, github, google, twitter and the name of your custom_oidc_v2 provider.

    NOTE: Whilst any value will be accepted by the API for default_provider, it can leave the app in an unusable state if this value does not correspond to the name of a known provider (either built-in value, or custom_oidc name) as it is used to build the auth endpoint URI.

    excludedPaths List<String>

    The paths which should be excluded from the unauthenticated_action when it is set to RedirectToLoginPage.

    NOTE: This list should be used instead of setting WEBSITE_WARMUP_PATH in app_settings as it takes priority.

    facebookV2 Property Map
    A facebook_v2 block as defined below.
    forwardProxyConvention String
    The convention used to determine the url of the request made. Possible values include NoProxy, Standard, Custom. Defaults to NoProxy.
    forwardProxyCustomHostHeaderName String
    The name of the custom header containing the host of the request.
    forwardProxyCustomSchemeHeaderName String
    The name of the custom header containing the scheme of the request.
    githubV2 Property Map
    A github_v2 block as defined below.
    googleV2 Property Map
    A google_v2 block as defined below.
    httpRouteApiPrefix String
    The prefix that should precede all the authentication and authorisation paths. Defaults to /.auth.
    microsoftV2 Property Map
    A microsoft_v2 block as defined below.
    requireAuthentication Boolean
    Should the authentication flow be used for all requests.
    requireHttps Boolean
    Should HTTPS be required on connections? Defaults to true.
    runtimeVersion String
    The Runtime Version of the Authentication and Authorisation feature of this App. Defaults to ~1.
    twitterV2 Property Map
    A twitter_v2 block as defined below.
    unauthenticatedAction String
    The action to take for requests made without authentication. Possible values include RedirectToLoginPage, AllowAnonymous, Return401, and Return403. Defaults to RedirectToLoginPage.

    LinuxFunctionAppSlotAuthSettingsV2ActiveDirectoryV2, LinuxFunctionAppSlotAuthSettingsV2ActiveDirectoryV2Args

    ClientId string
    The ID of the Client to use to authenticate with Azure Active Directory.
    TenantAuthEndpoint string

    The Azure Tenant Endpoint for the Authenticating Tenant. e.g. https://login.microsoftonline.com/{tenant-guid}/v2.0/

    NOTE: Here is a list of possible authentication endpoints based on the cloud environment. Here is more information to better understand how to configure authentication for Azure App Service or Azure Functions.

    AllowedApplications List<string>
    The list of allowed Applications for the Default Authorisation Policy.
    AllowedAudiences List<string>

    Specifies a list of Allowed audience values to consider when validating JWTs issued by Azure Active Directory.

    NOTE: This is configured on the Authentication Provider side and is Read Only here.

    AllowedGroups List<string>
    The list of allowed Group Names for the Default Authorisation Policy.
    AllowedIdentities List<string>
    The list of allowed Identities for the Default Authorisation Policy.
    ClientSecretCertificateThumbprint string
    The thumbprint of the certificate used for signing purposes.
    ClientSecretSettingName string

    The App Setting name that contains the client secret of the Client.

    !> NOTE: A setting with this name must exist in app_settings to function correctly.

    JwtAllowedClientApplications List<string>
    A list of Allowed Client Applications in the JWT Claim.
    JwtAllowedGroups List<string>
    A list of Allowed Groups in the JWT Claim.
    LoginParameters Dictionary<string, string>
    A map of key-value pairs to send to the Authorisation Endpoint when a user logs in.
    WwwAuthenticationDisabled bool
    Should the www-authenticate provider should be omitted from the request? Defaults to false.
    ClientId string
    The ID of the Client to use to authenticate with Azure Active Directory.
    TenantAuthEndpoint string

    The Azure Tenant Endpoint for the Authenticating Tenant. e.g. https://login.microsoftonline.com/{tenant-guid}/v2.0/

    NOTE: Here is a list of possible authentication endpoints based on the cloud environment. Here is more information to better understand how to configure authentication for Azure App Service or Azure Functions.

    AllowedApplications []string
    The list of allowed Applications for the Default Authorisation Policy.
    AllowedAudiences []string

    Specifies a list of Allowed audience values to consider when validating JWTs issued by Azure Active Directory.

    NOTE: This is configured on the Authentication Provider side and is Read Only here.

    AllowedGroups []string
    The list of allowed Group Names for the Default Authorisation Policy.
    AllowedIdentities []string
    The list of allowed Identities for the Default Authorisation Policy.
    ClientSecretCertificateThumbprint string
    The thumbprint of the certificate used for signing purposes.
    ClientSecretSettingName string

    The App Setting name that contains the client secret of the Client.

    !> NOTE: A setting with this name must exist in app_settings to function correctly.

    JwtAllowedClientApplications []string
    A list of Allowed Client Applications in the JWT Claim.
    JwtAllowedGroups []string
    A list of Allowed Groups in the JWT Claim.
    LoginParameters map[string]string
    A map of key-value pairs to send to the Authorisation Endpoint when a user logs in.
    WwwAuthenticationDisabled bool
    Should the www-authenticate provider should be omitted from the request? Defaults to false.
    clientId String
    The ID of the Client to use to authenticate with Azure Active Directory.
    tenantAuthEndpoint String

    The Azure Tenant Endpoint for the Authenticating Tenant. e.g. https://login.microsoftonline.com/{tenant-guid}/v2.0/

    NOTE: Here is a list of possible authentication endpoints based on the cloud environment. Here is more information to better understand how to configure authentication for Azure App Service or Azure Functions.

    allowedApplications List<String>
    The list of allowed Applications for the Default Authorisation Policy.
    allowedAudiences List<String>

    Specifies a list of Allowed audience values to consider when validating JWTs issued by Azure Active Directory.

    NOTE: This is configured on the Authentication Provider side and is Read Only here.

    allowedGroups List<String>
    The list of allowed Group Names for the Default Authorisation Policy.
    allowedIdentities List<String>
    The list of allowed Identities for the Default Authorisation Policy.
    clientSecretCertificateThumbprint String
    The thumbprint of the certificate used for signing purposes.
    clientSecretSettingName String

    The App Setting name that contains the client secret of the Client.

    !> NOTE: A setting with this name must exist in app_settings to function correctly.

    jwtAllowedClientApplications List<String>
    A list of Allowed Client Applications in the JWT Claim.
    jwtAllowedGroups List<String>
    A list of Allowed Groups in the JWT Claim.
    loginParameters Map<String,String>
    A map of key-value pairs to send to the Authorisation Endpoint when a user logs in.
    wwwAuthenticationDisabled Boolean
    Should the www-authenticate provider should be omitted from the request? Defaults to false.
    clientId string
    The ID of the Client to use to authenticate with Azure Active Directory.
    tenantAuthEndpoint string

    The Azure Tenant Endpoint for the Authenticating Tenant. e.g. https://login.microsoftonline.com/{tenant-guid}/v2.0/

    NOTE: Here is a list of possible authentication endpoints based on the cloud environment. Here is more information to better understand how to configure authentication for Azure App Service or Azure Functions.

    allowedApplications string[]
    The list of allowed Applications for the Default Authorisation Policy.
    allowedAudiences string[]

    Specifies a list of Allowed audience values to consider when validating JWTs issued by Azure Active Directory.

    NOTE: This is configured on the Authentication Provider side and is Read Only here.

    allowedGroups string[]
    The list of allowed Group Names for the Default Authorisation Policy.
    allowedIdentities string[]
    The list of allowed Identities for the Default Authorisation Policy.
    clientSecretCertificateThumbprint string
    The thumbprint of the certificate used for signing purposes.
    clientSecretSettingName string

    The App Setting name that contains the client secret of the Client.

    !> NOTE: A setting with this name must exist in app_settings to function correctly.

    jwtAllowedClientApplications string[]
    A list of Allowed Client Applications in the JWT Claim.
    jwtAllowedGroups string[]
    A list of Allowed Groups in the JWT Claim.
    loginParameters {[key: string]: string}
    A map of key-value pairs to send to the Authorisation Endpoint when a user logs in.
    wwwAuthenticationDisabled boolean
    Should the www-authenticate provider should be omitted from the request? Defaults to false.
    client_id str
    The ID of the Client to use to authenticate with Azure Active Directory.
    tenant_auth_endpoint str

    The Azure Tenant Endpoint for the Authenticating Tenant. e.g. https://login.microsoftonline.com/{tenant-guid}/v2.0/

    NOTE: Here is a list of possible authentication endpoints based on the cloud environment. Here is more information to better understand how to configure authentication for Azure App Service or Azure Functions.

    allowed_applications Sequence[str]
    The list of allowed Applications for the Default Authorisation Policy.
    allowed_audiences Sequence[str]

    Specifies a list of Allowed audience values to consider when validating JWTs issued by Azure Active Directory.

    NOTE: This is configured on the Authentication Provider side and is Read Only here.

    allowed_groups Sequence[str]
    The list of allowed Group Names for the Default Authorisation Policy.
    allowed_identities Sequence[str]
    The list of allowed Identities for the Default Authorisation Policy.
    client_secret_certificate_thumbprint str
    The thumbprint of the certificate used for signing purposes.
    client_secret_setting_name str

    The App Setting name that contains the client secret of the Client.

    !> NOTE: A setting with this name must exist in app_settings to function correctly.

    jwt_allowed_client_applications Sequence[str]
    A list of Allowed Client Applications in the JWT Claim.
    jwt_allowed_groups Sequence[str]
    A list of Allowed Groups in the JWT Claim.
    login_parameters Mapping[str, str]
    A map of key-value pairs to send to the Authorisation Endpoint when a user logs in.
    www_authentication_disabled bool
    Should the www-authenticate provider should be omitted from the request? Defaults to false.
    clientId String
    The ID of the Client to use to authenticate with Azure Active Directory.
    tenantAuthEndpoint String

    The Azure Tenant Endpoint for the Authenticating Tenant. e.g. https://login.microsoftonline.com/{tenant-guid}/v2.0/

    NOTE: Here is a list of possible authentication endpoints based on the cloud environment. Here is more information to better understand how to configure authentication for Azure App Service or Azure Functions.

    allowedApplications List<String>
    The list of allowed Applications for the Default Authorisation Policy.
    allowedAudiences List<String>

    Specifies a list of Allowed audience values to consider when validating JWTs issued by Azure Active Directory.

    NOTE: This is configured on the Authentication Provider side and is Read Only here.

    allowedGroups List<String>
    The list of allowed Group Names for the Default Authorisation Policy.
    allowedIdentities List<String>
    The list of allowed Identities for the Default Authorisation Policy.
    clientSecretCertificateThumbprint String
    The thumbprint of the certificate used for signing purposes.
    clientSecretSettingName String

    The App Setting name that contains the client secret of the Client.

    !> NOTE: A setting with this name must exist in app_settings to function correctly.

    jwtAllowedClientApplications List<String>
    A list of Allowed Client Applications in the JWT Claim.
    jwtAllowedGroups List<String>
    A list of Allowed Groups in the JWT Claim.
    loginParameters Map<String>
    A map of key-value pairs to send to the Authorisation Endpoint when a user logs in.
    wwwAuthenticationDisabled Boolean
    Should the www-authenticate provider should be omitted from the request? Defaults to false.

    LinuxFunctionAppSlotAuthSettingsV2AppleV2, LinuxFunctionAppSlotAuthSettingsV2AppleV2Args

    ClientId string
    The OpenID Connect Client ID for the Apple web application.
    ClientSecretSettingName string

    The app setting name that contains the client_secret value used for Apple Login.

    !> NOTE: A setting with this name must exist in app_settings to function correctly.

    LoginScopes List<string>

    A list of Login Scopes provided by this Authentication Provider.

    NOTE: This is configured on the Authentication Provider side and is Read Only here.

    ClientId string
    The OpenID Connect Client ID for the Apple web application.
    ClientSecretSettingName string

    The app setting name that contains the client_secret value used for Apple Login.

    !> NOTE: A setting with this name must exist in app_settings to function correctly.

    LoginScopes []string

    A list of Login Scopes provided by this Authentication Provider.

    NOTE: This is configured on the Authentication Provider side and is Read Only here.

    clientId String
    The OpenID Connect Client ID for the Apple web application.
    clientSecretSettingName String

    The app setting name that contains the client_secret value used for Apple Login.

    !> NOTE: A setting with this name must exist in app_settings to function correctly.

    loginScopes List<String>

    A list of Login Scopes provided by this Authentication Provider.

    NOTE: This is configured on the Authentication Provider side and is Read Only here.

    clientId string
    The OpenID Connect Client ID for the Apple web application.
    clientSecretSettingName string

    The app setting name that contains the client_secret value used for Apple Login.

    !> NOTE: A setting with this name must exist in app_settings to function correctly.

    loginScopes string[]

    A list of Login Scopes provided by this Authentication Provider.

    NOTE: This is configured on the Authentication Provider side and is Read Only here.

    client_id str
    The OpenID Connect Client ID for the Apple web application.
    client_secret_setting_name str

    The app setting name that contains the client_secret value used for Apple Login.

    !> NOTE: A setting with this name must exist in app_settings to function correctly.

    login_scopes Sequence[str]

    A list of Login Scopes provided by this Authentication Provider.

    NOTE: This is configured on the Authentication Provider side and is Read Only here.

    clientId String
    The OpenID Connect Client ID for the Apple web application.
    clientSecretSettingName String

    The app setting name that contains the client_secret value used for Apple Login.

    !> NOTE: A setting with this name must exist in app_settings to function correctly.

    loginScopes List<String>

    A list of Login Scopes provided by this Authentication Provider.

    NOTE: This is configured on the Authentication Provider side and is Read Only here.

    LinuxFunctionAppSlotAuthSettingsV2AzureStaticWebAppV2, LinuxFunctionAppSlotAuthSettingsV2AzureStaticWebAppV2Args

    ClientId string
    The ID of the Client to use to authenticate with Azure Static Web App Authentication.
    ClientId string
    The ID of the Client to use to authenticate with Azure Static Web App Authentication.
    clientId String
    The ID of the Client to use to authenticate with Azure Static Web App Authentication.
    clientId string
    The ID of the Client to use to authenticate with Azure Static Web App Authentication.
    client_id str
    The ID of the Client to use to authenticate with Azure Static Web App Authentication.
    clientId String
    The ID of the Client to use to authenticate with Azure Static Web App Authentication.

    LinuxFunctionAppSlotAuthSettingsV2CustomOidcV2, LinuxFunctionAppSlotAuthSettingsV2CustomOidcV2Args

    ClientId string
    The ID of the Client to use to authenticate with the Custom OIDC.
    Name string

    The name of the Custom OIDC Authentication Provider.

    NOTE: An app_setting matching this value in upper case with the suffix of _PROVIDER_AUTHENTICATION_SECRET is required. e.g. MYOIDC_PROVIDER_AUTHENTICATION_SECRET for a value of myoidc.

    OpenidConfigurationEndpoint string
    The app setting name that contains the client_secret value used for the Custom OIDC Login.
    AuthorisationEndpoint string
    The endpoint to make the Authorisation Request as supplied by openid_configuration_endpoint response.
    CertificationUri string
    The endpoint that provides the keys necessary to validate the token as supplied by openid_configuration_endpoint response.
    ClientCredentialMethod string
    The Client Credential Method used.
    ClientSecretSettingName string
    The App Setting name that contains the secret for this Custom OIDC Client. This is generated from name above and suffixed with _PROVIDER_AUTHENTICATION_SECRET.
    IssuerEndpoint string
    The endpoint that issued the Token as supplied by openid_configuration_endpoint response.
    NameClaimType string
    The name of the claim that contains the users name.
    Scopes List<string>
    The list of the scopes that should be requested while authenticating.
    TokenEndpoint string
    The endpoint used to request a Token as supplied by openid_configuration_endpoint response.
    ClientId string
    The ID of the Client to use to authenticate with the Custom OIDC.
    Name string

    The name of the Custom OIDC Authentication Provider.

    NOTE: An app_setting matching this value in upper case with the suffix of _PROVIDER_AUTHENTICATION_SECRET is required. e.g. MYOIDC_PROVIDER_AUTHENTICATION_SECRET for a value of myoidc.

    OpenidConfigurationEndpoint string
    The app setting name that contains the client_secret value used for the Custom OIDC Login.
    AuthorisationEndpoint string
    The endpoint to make the Authorisation Request as supplied by openid_configuration_endpoint response.
    CertificationUri string
    The endpoint that provides the keys necessary to validate the token as supplied by openid_configuration_endpoint response.
    ClientCredentialMethod string
    The Client Credential Method used.
    ClientSecretSettingName string
    The App Setting name that contains the secret for this Custom OIDC Client. This is generated from name above and suffixed with _PROVIDER_AUTHENTICATION_SECRET.
    IssuerEndpoint string
    The endpoint that issued the Token as supplied by openid_configuration_endpoint response.
    NameClaimType string
    The name of the claim that contains the users name.
    Scopes []string
    The list of the scopes that should be requested while authenticating.
    TokenEndpoint string
    The endpoint used to request a Token as supplied by openid_configuration_endpoint response.
    clientId String
    The ID of the Client to use to authenticate with the Custom OIDC.
    name String

    The name of the Custom OIDC Authentication Provider.

    NOTE: An app_setting matching this value in upper case with the suffix of _PROVIDER_AUTHENTICATION_SECRET is required. e.g. MYOIDC_PROVIDER_AUTHENTICATION_SECRET for a value of myoidc.

    openidConfigurationEndpoint String
    The app setting name that contains the client_secret value used for the Custom OIDC Login.
    authorisationEndpoint String
    The endpoint to make the Authorisation Request as supplied by openid_configuration_endpoint response.
    certificationUri String
    The endpoint that provides the keys necessary to validate the token as supplied by openid_configuration_endpoint response.
    clientCredentialMethod String
    The Client Credential Method used.
    clientSecretSettingName String
    The App Setting name that contains the secret for this Custom OIDC Client. This is generated from name above and suffixed with _PROVIDER_AUTHENTICATION_SECRET.
    issuerEndpoint String
    The endpoint that issued the Token as supplied by openid_configuration_endpoint response.
    nameClaimType String
    The name of the claim that contains the users name.
    scopes List<String>
    The list of the scopes that should be requested while authenticating.
    tokenEndpoint String
    The endpoint used to request a Token as supplied by openid_configuration_endpoint response.
    clientId string
    The ID of the Client to use to authenticate with the Custom OIDC.
    name string

    The name of the Custom OIDC Authentication Provider.

    NOTE: An app_setting matching this value in upper case with the suffix of _PROVIDER_AUTHENTICATION_SECRET is required. e.g. MYOIDC_PROVIDER_AUTHENTICATION_SECRET for a value of myoidc.

    openidConfigurationEndpoint string
    The app setting name that contains the client_secret value used for the Custom OIDC Login.
    authorisationEndpoint string
    The endpoint to make the Authorisation Request as supplied by openid_configuration_endpoint response.
    certificationUri string
    The endpoint that provides the keys necessary to validate the token as supplied by openid_configuration_endpoint response.
    clientCredentialMethod string
    The Client Credential Method used.
    clientSecretSettingName string
    The App Setting name that contains the secret for this Custom OIDC Client. This is generated from name above and suffixed with _PROVIDER_AUTHENTICATION_SECRET.
    issuerEndpoint string
    The endpoint that issued the Token as supplied by openid_configuration_endpoint response.
    nameClaimType string
    The name of the claim that contains the users name.
    scopes string[]
    The list of the scopes that should be requested while authenticating.
    tokenEndpoint string
    The endpoint used to request a Token as supplied by openid_configuration_endpoint response.
    client_id str
    The ID of the Client to use to authenticate with the Custom OIDC.
    name str

    The name of the Custom OIDC Authentication Provider.

    NOTE: An app_setting matching this value in upper case with the suffix of _PROVIDER_AUTHENTICATION_SECRET is required. e.g. MYOIDC_PROVIDER_AUTHENTICATION_SECRET for a value of myoidc.

    openid_configuration_endpoint str
    The app setting name that contains the client_secret value used for the Custom OIDC Login.
    authorisation_endpoint str
    The endpoint to make the Authorisation Request as supplied by openid_configuration_endpoint response.
    certification_uri str
    The endpoint that provides the keys necessary to validate the token as supplied by openid_configuration_endpoint response.
    client_credential_method str
    The Client Credential Method used.
    client_secret_setting_name str
    The App Setting name that contains the secret for this Custom OIDC Client. This is generated from name above and suffixed with _PROVIDER_AUTHENTICATION_SECRET.
    issuer_endpoint str
    The endpoint that issued the Token as supplied by openid_configuration_endpoint response.
    name_claim_type str
    The name of the claim that contains the users name.
    scopes Sequence[str]
    The list of the scopes that should be requested while authenticating.
    token_endpoint str
    The endpoint used to request a Token as supplied by openid_configuration_endpoint response.
    clientId String
    The ID of the Client to use to authenticate with the Custom OIDC.
    name String

    The name of the Custom OIDC Authentication Provider.

    NOTE: An app_setting matching this value in upper case with the suffix of _PROVIDER_AUTHENTICATION_SECRET is required. e.g. MYOIDC_PROVIDER_AUTHENTICATION_SECRET for a value of myoidc.

    openidConfigurationEndpoint String
    The app setting name that contains the client_secret value used for the Custom OIDC Login.
    authorisationEndpoint String
    The endpoint to make the Authorisation Request as supplied by openid_configuration_endpoint response.
    certificationUri String
    The endpoint that provides the keys necessary to validate the token as supplied by openid_configuration_endpoint response.
    clientCredentialMethod String
    The Client Credential Method used.
    clientSecretSettingName String
    The App Setting name that contains the secret for this Custom OIDC Client. This is generated from name above and suffixed with _PROVIDER_AUTHENTICATION_SECRET.
    issuerEndpoint String
    The endpoint that issued the Token as supplied by openid_configuration_endpoint response.
    nameClaimType String
    The name of the claim that contains the users name.
    scopes List<String>
    The list of the scopes that should be requested while authenticating.
    tokenEndpoint String
    The endpoint used to request a Token as supplied by openid_configuration_endpoint response.

    LinuxFunctionAppSlotAuthSettingsV2FacebookV2, LinuxFunctionAppSlotAuthSettingsV2FacebookV2Args

    AppId string
    The App ID of the Facebook app used for login.
    AppSecretSettingName string

    The app setting name that contains the app_secret value used for Facebook Login.

    !> NOTE: A setting with this name must exist in app_settings to function correctly.

    GraphApiVersion string
    The version of the Facebook API to be used while logging in.
    LoginScopes List<string>
    The list of scopes that should be requested as part of Facebook Login authentication.
    AppId string
    The App ID of the Facebook app used for login.
    AppSecretSettingName string

    The app setting name that contains the app_secret value used for Facebook Login.

    !> NOTE: A setting with this name must exist in app_settings to function correctly.

    GraphApiVersion string
    The version of the Facebook API to be used while logging in.
    LoginScopes []string
    The list of scopes that should be requested as part of Facebook Login authentication.
    appId String
    The App ID of the Facebook app used for login.
    appSecretSettingName String

    The app setting name that contains the app_secret value used for Facebook Login.

    !> NOTE: A setting with this name must exist in app_settings to function correctly.

    graphApiVersion String
    The version of the Facebook API to be used while logging in.
    loginScopes List<String>
    The list of scopes that should be requested as part of Facebook Login authentication.
    appId string
    The App ID of the Facebook app used for login.
    appSecretSettingName string

    The app setting name that contains the app_secret value used for Facebook Login.

    !> NOTE: A setting with this name must exist in app_settings to function correctly.

    graphApiVersion string
    The version of the Facebook API to be used while logging in.
    loginScopes string[]
    The list of scopes that should be requested as part of Facebook Login authentication.
    app_id str
    The App ID of the Facebook app used for login.
    app_secret_setting_name str

    The app setting name that contains the app_secret value used for Facebook Login.

    !> NOTE: A setting with this name must exist in app_settings to function correctly.

    graph_api_version str
    The version of the Facebook API to be used while logging in.
    login_scopes Sequence[str]
    The list of scopes that should be requested as part of Facebook Login authentication.
    appId String
    The App ID of the Facebook app used for login.
    appSecretSettingName String

    The app setting name that contains the app_secret value used for Facebook Login.

    !> NOTE: A setting with this name must exist in app_settings to function correctly.

    graphApiVersion String
    The version of the Facebook API to be used while logging in.
    loginScopes List<String>
    The list of scopes that should be requested as part of Facebook Login authentication.

    LinuxFunctionAppSlotAuthSettingsV2GithubV2, LinuxFunctionAppSlotAuthSettingsV2GithubV2Args

    ClientId string
    The ID of the GitHub app used for login..
    ClientSecretSettingName string

    The app setting name that contains the client_secret value used for GitHub Login.

    !> NOTE: A setting with this name must exist in app_settings to function correctly.

    LoginScopes List<string>
    The list of OAuth 2.0 scopes that should be requested as part of GitHub Login authentication.
    ClientId string
    The ID of the GitHub app used for login..
    ClientSecretSettingName string

    The app setting name that contains the client_secret value used for GitHub Login.

    !> NOTE: A setting with this name must exist in app_settings to function correctly.

    LoginScopes []string
    The list of OAuth 2.0 scopes that should be requested as part of GitHub Login authentication.
    clientId String
    The ID of the GitHub app used for login..
    clientSecretSettingName String

    The app setting name that contains the client_secret value used for GitHub Login.

    !> NOTE: A setting with this name must exist in app_settings to function correctly.

    loginScopes List<String>
    The list of OAuth 2.0 scopes that should be requested as part of GitHub Login authentication.
    clientId string
    The ID of the GitHub app used for login..
    clientSecretSettingName string

    The app setting name that contains the client_secret value used for GitHub Login.

    !> NOTE: A setting with this name must exist in app_settings to function correctly.

    loginScopes string[]
    The list of OAuth 2.0 scopes that should be requested as part of GitHub Login authentication.
    client_id str
    The ID of the GitHub app used for login..
    client_secret_setting_name str

    The app setting name that contains the client_secret value used for GitHub Login.

    !> NOTE: A setting with this name must exist in app_settings to function correctly.

    login_scopes Sequence[str]
    The list of OAuth 2.0 scopes that should be requested as part of GitHub Login authentication.
    clientId String
    The ID of the GitHub app used for login..
    clientSecretSettingName String

    The app setting name that contains the client_secret value used for GitHub Login.

    !> NOTE: A setting with this name must exist in app_settings to function correctly.

    loginScopes List<String>
    The list of OAuth 2.0 scopes that should be requested as part of GitHub Login authentication.

    LinuxFunctionAppSlotAuthSettingsV2GoogleV2, LinuxFunctionAppSlotAuthSettingsV2GoogleV2Args

    ClientId string
    The OpenID Connect Client ID for the Google web application.
    ClientSecretSettingName string

    The app setting name that contains the client_secret value used for Google Login.

    !> NOTE: A setting with this name must exist in app_settings to function correctly.

    AllowedAudiences List<string>
    Specifies a list of Allowed Audiences that should be requested as part of Google Sign-In authentication.
    LoginScopes List<string>
    The list of OAuth 2.0 scopes that should be requested as part of Google Sign-In authentication.
    ClientId string
    The OpenID Connect Client ID for the Google web application.
    ClientSecretSettingName string

    The app setting name that contains the client_secret value used for Google Login.

    !> NOTE: A setting with this name must exist in app_settings to function correctly.

    AllowedAudiences []string
    Specifies a list of Allowed Audiences that should be requested as part of Google Sign-In authentication.
    LoginScopes []string
    The list of OAuth 2.0 scopes that should be requested as part of Google Sign-In authentication.
    clientId String
    The OpenID Connect Client ID for the Google web application.
    clientSecretSettingName String

    The app setting name that contains the client_secret value used for Google Login.

    !> NOTE: A setting with this name must exist in app_settings to function correctly.

    allowedAudiences List<String>
    Specifies a list of Allowed Audiences that should be requested as part of Google Sign-In authentication.
    loginScopes List<String>
    The list of OAuth 2.0 scopes that should be requested as part of Google Sign-In authentication.
    clientId string
    The OpenID Connect Client ID for the Google web application.
    clientSecretSettingName string

    The app setting name that contains the client_secret value used for Google Login.

    !> NOTE: A setting with this name must exist in app_settings to function correctly.

    allowedAudiences string[]
    Specifies a list of Allowed Audiences that should be requested as part of Google Sign-In authentication.
    loginScopes string[]
    The list of OAuth 2.0 scopes that should be requested as part of Google Sign-In authentication.
    client_id str
    The OpenID Connect Client ID for the Google web application.
    client_secret_setting_name str

    The app setting name that contains the client_secret value used for Google Login.

    !> NOTE: A setting with this name must exist in app_settings to function correctly.

    allowed_audiences Sequence[str]
    Specifies a list of Allowed Audiences that should be requested as part of Google Sign-In authentication.
    login_scopes Sequence[str]
    The list of OAuth 2.0 scopes that should be requested as part of Google Sign-In authentication.
    clientId String
    The OpenID Connect Client ID for the Google web application.
    clientSecretSettingName String

    The app setting name that contains the client_secret value used for Google Login.

    !> NOTE: A setting with this name must exist in app_settings to function correctly.

    allowedAudiences List<String>
    Specifies a list of Allowed Audiences that should be requested as part of Google Sign-In authentication.
    loginScopes List<String>
    The list of OAuth 2.0 scopes that should be requested as part of Google Sign-In authentication.

    LinuxFunctionAppSlotAuthSettingsV2Login, LinuxFunctionAppSlotAuthSettingsV2LoginArgs

    AllowedExternalRedirectUrls List<string>

    External URLs that can be redirected to as part of logging in or logging out of the app. This is an advanced setting typically only needed by Windows Store application backends.

    Note: URLs within the current domain are always implicitly allowed.

    CookieExpirationConvention string
    The method by which cookies expire. Possible values include: FixedTime, and IdentityProviderDerived. Defaults to FixedTime.
    CookieExpirationTime string
    The time after the request is made when the session cookie should expire. Defaults to 08:00:00.
    LogoutEndpoint string
    The endpoint to which logout requests should be made.
    NonceExpirationTime string
    The time after the request is made when the nonce should expire. Defaults to 00:05:00.
    PreserveUrlFragmentsForLogins bool
    Should the fragments from the request be preserved after the login request is made. Defaults to false.
    TokenRefreshExtensionTime double
    The number of hours after session token expiration that a session token can be used to call the token refresh API. Defaults to 72 hours.
    TokenStoreEnabled bool
    Should the Token Store configuration Enabled. Defaults to false
    TokenStorePath string
    The directory path in the App Filesystem in which the tokens will be stored.
    TokenStoreSasSettingName string
    The name of the app setting which contains the SAS URL of the blob storage containing the tokens.
    ValidateNonce bool
    Should the nonce be validated while completing the login flow. Defaults to true.
    AllowedExternalRedirectUrls []string

    External URLs that can be redirected to as part of logging in or logging out of the app. This is an advanced setting typically only needed by Windows Store application backends.

    Note: URLs within the current domain are always implicitly allowed.

    CookieExpirationConvention string
    The method by which cookies expire. Possible values include: FixedTime, and IdentityProviderDerived. Defaults to FixedTime.
    CookieExpirationTime string
    The time after the request is made when the session cookie should expire. Defaults to 08:00:00.
    LogoutEndpoint string
    The endpoint to which logout requests should be made.
    NonceExpirationTime string
    The time after the request is made when the nonce should expire. Defaults to 00:05:00.
    PreserveUrlFragmentsForLogins bool
    Should the fragments from the request be preserved after the login request is made. Defaults to false.
    TokenRefreshExtensionTime float64
    The number of hours after session token expiration that a session token can be used to call the token refresh API. Defaults to 72 hours.
    TokenStoreEnabled bool
    Should the Token Store configuration Enabled. Defaults to false
    TokenStorePath string
    The directory path in the App Filesystem in which the tokens will be stored.
    TokenStoreSasSettingName string
    The name of the app setting which contains the SAS URL of the blob storage containing the tokens.
    ValidateNonce bool
    Should the nonce be validated while completing the login flow. Defaults to true.
    allowedExternalRedirectUrls List<String>

    External URLs that can be redirected to as part of logging in or logging out of the app. This is an advanced setting typically only needed by Windows Store application backends.

    Note: URLs within the current domain are always implicitly allowed.

    cookieExpirationConvention String
    The method by which cookies expire. Possible values include: FixedTime, and IdentityProviderDerived. Defaults to FixedTime.
    cookieExpirationTime String
    The time after the request is made when the session cookie should expire. Defaults to 08:00:00.
    logoutEndpoint String
    The endpoint to which logout requests should be made.
    nonceExpirationTime String
    The time after the request is made when the nonce should expire. Defaults to 00:05:00.
    preserveUrlFragmentsForLogins Boolean
    Should the fragments from the request be preserved after the login request is made. Defaults to false.
    tokenRefreshExtensionTime Double
    The number of hours after session token expiration that a session token can be used to call the token refresh API. Defaults to 72 hours.
    tokenStoreEnabled Boolean
    Should the Token Store configuration Enabled. Defaults to false
    tokenStorePath String
    The directory path in the App Filesystem in which the tokens will be stored.
    tokenStoreSasSettingName String
    The name of the app setting which contains the SAS URL of the blob storage containing the tokens.
    validateNonce Boolean
    Should the nonce be validated while completing the login flow. Defaults to true.
    allowedExternalRedirectUrls string[]

    External URLs that can be redirected to as part of logging in or logging out of the app. This is an advanced setting typically only needed by Windows Store application backends.

    Note: URLs within the current domain are always implicitly allowed.

    cookieExpirationConvention string
    The method by which cookies expire. Possible values include: FixedTime, and IdentityProviderDerived. Defaults to FixedTime.
    cookieExpirationTime string
    The time after the request is made when the session cookie should expire. Defaults to 08:00:00.
    logoutEndpoint string
    The endpoint to which logout requests should be made.
    nonceExpirationTime string
    The time after the request is made when the nonce should expire. Defaults to 00:05:00.
    preserveUrlFragmentsForLogins boolean
    Should the fragments from the request be preserved after the login request is made. Defaults to false.
    tokenRefreshExtensionTime number
    The number of hours after session token expiration that a session token can be used to call the token refresh API. Defaults to 72 hours.
    tokenStoreEnabled boolean
    Should the Token Store configuration Enabled. Defaults to false
    tokenStorePath string
    The directory path in the App Filesystem in which the tokens will be stored.
    tokenStoreSasSettingName string
    The name of the app setting which contains the SAS URL of the blob storage containing the tokens.
    validateNonce boolean
    Should the nonce be validated while completing the login flow. Defaults to true.
    allowed_external_redirect_urls Sequence[str]

    External URLs that can be redirected to as part of logging in or logging out of the app. This is an advanced setting typically only needed by Windows Store application backends.

    Note: URLs within the current domain are always implicitly allowed.

    cookie_expiration_convention str
    The method by which cookies expire. Possible values include: FixedTime, and IdentityProviderDerived. Defaults to FixedTime.
    cookie_expiration_time str
    The time after the request is made when the session cookie should expire. Defaults to 08:00:00.
    logout_endpoint str
    The endpoint to which logout requests should be made.
    nonce_expiration_time str
    The time after the request is made when the nonce should expire. Defaults to 00:05:00.
    preserve_url_fragments_for_logins bool
    Should the fragments from the request be preserved after the login request is made. Defaults to false.
    token_refresh_extension_time float
    The number of hours after session token expiration that a session token can be used to call the token refresh API. Defaults to 72 hours.
    token_store_enabled bool
    Should the Token Store configuration Enabled. Defaults to false
    token_store_path str
    The directory path in the App Filesystem in which the tokens will be stored.
    token_store_sas_setting_name str
    The name of the app setting which contains the SAS URL of the blob storage containing the tokens.
    validate_nonce bool
    Should the nonce be validated while completing the login flow. Defaults to true.
    allowedExternalRedirectUrls List<String>

    External URLs that can be redirected to as part of logging in or logging out of the app. This is an advanced setting typically only needed by Windows Store application backends.

    Note: URLs within the current domain are always implicitly allowed.

    cookieExpirationConvention String
    The method by which cookies expire. Possible values include: FixedTime, and IdentityProviderDerived. Defaults to FixedTime.
    cookieExpirationTime String
    The time after the request is made when the session cookie should expire. Defaults to 08:00:00.
    logoutEndpoint String
    The endpoint to which logout requests should be made.
    nonceExpirationTime String
    The time after the request is made when the nonce should expire. Defaults to 00:05:00.
    preserveUrlFragmentsForLogins Boolean
    Should the fragments from the request be preserved after the login request is made. Defaults to false.
    tokenRefreshExtensionTime Number
    The number of hours after session token expiration that a session token can be used to call the token refresh API. Defaults to 72 hours.
    tokenStoreEnabled Boolean
    Should the Token Store configuration Enabled. Defaults to false
    tokenStorePath String
    The directory path in the App Filesystem in which the tokens will be stored.
    tokenStoreSasSettingName String
    The name of the app setting which contains the SAS URL of the blob storage containing the tokens.
    validateNonce Boolean
    Should the nonce be validated while completing the login flow. Defaults to true.

    LinuxFunctionAppSlotAuthSettingsV2MicrosoftV2, LinuxFunctionAppSlotAuthSettingsV2MicrosoftV2Args

    ClientId string
    The OAuth 2.0 client ID that was created for the app used for authentication.
    ClientSecretSettingName string

    The app setting name containing the OAuth 2.0 client secret that was created for the app used for authentication.

    !> NOTE: A setting with this name must exist in app_settings to function correctly.

    AllowedAudiences List<string>
    Specifies a list of Allowed Audiences that will be requested as part of Microsoft Sign-In authentication.
    LoginScopes List<string>
    The list of Login scopes that should be requested as part of Microsoft Account authentication.
    ClientId string
    The OAuth 2.0 client ID that was created for the app used for authentication.
    ClientSecretSettingName string

    The app setting name containing the OAuth 2.0 client secret that was created for the app used for authentication.

    !> NOTE: A setting with this name must exist in app_settings to function correctly.

    AllowedAudiences []string
    Specifies a list of Allowed Audiences that will be requested as part of Microsoft Sign-In authentication.
    LoginScopes []string
    The list of Login scopes that should be requested as part of Microsoft Account authentication.
    clientId String
    The OAuth 2.0 client ID that was created for the app used for authentication.
    clientSecretSettingName String

    The app setting name containing the OAuth 2.0 client secret that was created for the app used for authentication.

    !> NOTE: A setting with this name must exist in app_settings to function correctly.